~ ZHPDiag v2015.11.20.171 Par Nicolas Coolman (2015/11/20)
~ Démarré par Justine (Administrator)  (2015/11/21 15:03:11)
~ Site: http://www.nicolascoolman.fr
~ Facebook: https://www.facebook.com/nicolascoolman1
~ Etat de la version:  Version OK
~ Mode: Scanner
~ Rapport: C:\Users\Justine\Desktop\ZHPDiag.txt
~ Rapport: C:\Users\Justine\AppData\Roaming\ZHP\ZHPDiag.txt
~ UAC: Activate
~ Démarrage du système: Normal (Normal boot)
Windows 7 Professional, 32-bit  (Build 7600)

---\\ Navigateurs Internet (3) - 0s
GCIE: Google Chrome v44.0.2403.89
MFIE: Mozilla Firefox 37.0.2 (x86 fr) v37.0.2
MSIE: Internet Explorer v9.0.8112.16421

---\\ Informations sur les produits Windows (9) - 0s
~ Windows Server License Manager Script : OK
~ Licence Script File Génération : OK
Windows Automatic Updates : OK
Windows Activation Technologies : OK
~ Windows Operating System - Windows(R) 7, VOLUME_MAK channel
Windows ID Activation : OK
~ Windows Partial Key : VRFH3
Windows License : OK
~ Windows Remaining Initializations Number :  3

---\\ Logiciels de protection (3) - 4s
Avira Antivirus v15.0.13.210
Malwarebytes Anti-Malware version 2.2.0.1024
Windows Defender W7 (Deactivate)

---\\ Logiciels d'optimisation (1) - 5s
CCleaner v3.03

---\\ Surveillance de Logiciels (2) - 5s
Adobe Flash Player 19 NPAPI
Adobe Reader XI

---\\ Informations sur le système (8) - 0s
~ Operating System: x86 Family 6 Model 15 Stepping 13, GenuineIntel
~ Operating System:  32-bit 
~ Boot mode: Normal (Normal boot)
Total RAM: 3145.048 MB (38% free)
System Restore: Activé (Enable)
System drive C: has 22 GB () free of 76 GB
Total RAM: 3145.048 MB (36% free)
System drive C: has 23 GB () free of 76 GB

---\\ Mode de connexion au système (3) - 0s
~ Computer Name: JUSTINE-PC
~ User Name: Justine
~ Logged in as Administrator

---\\ Enumération des unités disques (3) - 0s
~ Drive C: has 22 GB free of 76 GB  (System)
~ Drive D: has 12 GB free of 66 GB
~ Drive C: has 23 GB free of 76 GB  (System)

---\\ Etat du Centre de Sécurité Windows (11) - 0s
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKCU\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] Load: OK
[HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK

---\\ Recherche particulière de fichiers génériques (26) - 1s
[MD5.2AF58D15EDC06EC6FDACCE1F19482BBF] - 26/02/2011 - (.Microsoft Corporation - Explorateur Windows.) -- C:\Windows\Explorer.exe [2614784] ©
[MD5.51138BEEA3E2C21EC44D0932C71762A8] - 14/07/2009 - (.Microsoft Corporation - Processus hôte Windows (Rundll32).) -- C:\Windows\System32\rundll32.exe [44544] ©
[MD5.B5C5DCAD3899512020D135600129D665] - 14/07/2009 - (.Microsoft Corporation - Application de démarrage de Windows.) -- C:\Windows\System32\Wininit.exe [96256] ©
[MD5.C5B6468422DB1C8AA36C32CBB0197E5E] - 22/02/2013 - (.Microsoft Corporation - Extensions Internet pour Win32.) -- C:\Windows\System32\wininet.dll [1129472] ©
[MD5.37CDB7E72EB66BA85A87CBE37E7F03FD] - 28/10/2009 - (.Microsoft Corporation - Application d’ouverture de session Windows.) -- C:\Windows\System32\Winlogon.exe [285696] ©
[MD5.58C94EAE54BF0C5E2B80B2E5E7744D4C] - 14/07/2009 - (.Microsoft Corporation - Bibliothèque de licences.) -- C:\Windows\System32\sppcomapi.dll [193024] ©
[MD5.F22523802157C461B06EDE64AF402B8A] - 01/10/2015 - (.Microsoft Corporation - DNS DLL de l’API Client.) -- C:\Windows\System32\dnsapi.dll [269824] ©  =>Hijacker.DNS.Hosts
[MD5.D8714A5FB3141F8226D16861F20C5AC4] - 14/07/2009 - (.Microsoft Corporation - DLL client de l’API uilisateur de Windows m.) -- C:\Windows\System32\fr-FR\user32.dll.mui [19968] ©
[MD5.0DB7A48388D54D154EBEC120461A0FCD] - 25/04/2011 - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) -- C:\Windows\System32\drivers\AFD.sys [338944] ©
[MD5.338C86357871C167A96AB976519BF59E] - 14/07/2009 - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) -- C:\Windows\System32\drivers\atapi.sys [21584] ©
[MD5.77EA11B065E0A8AB902D78145CA51E10] - 14/07/2009 - (.Microsoft Corporation - CD-ROM File System Driver.) -- C:\Windows\System32\drivers\Cdfs.sys [70656] ©
[MD5.BA6E70AA0E6091BC39DE29477D866A77] - 14/07/2009 - (.Microsoft Corporation - SCSI CD-ROM Driver.) -- C:\Windows\System32\drivers\Cdrom.sys [108544] ©
[MD5.83D1ECEA8FAAE75604C0FA49AC7AD996] - 27/04/2011 - (.Microsoft Corporation - DFS Namespace Client Driver.) -- C:\Windows\System32\drivers\DfsC.sys [78336] ©
[MD5.717A2207FD6F13AD3E664C7D5A43C7BF] - 14/07/2009 - (.Microsoft Corporation - High Definition Audio Bus Driver.) -- C:\Windows\System32\drivers\HDAudBus.sys [108544] ©
[MD5.F151F0BDC47F4A28B1B20A0818EA36D6] - 14/07/2009 - (.Microsoft Corporation - Pilote de port i8042.) -- C:\Windows\System32\drivers\i8042prt.sys [80896] ©
[MD5.A5FA468D67ABCDAA36264E463A7BB0CD] - 14/07/2009 - (.Microsoft Corporation - IP Network Address Translator.) -- C:\Windows\System32\drivers\IpNat.sys [101888] ©
[MD5.CA7570E42522E24324A12161DB14EC02] - 04/05/2011 - (.Microsoft Corporation - Windows NT SMB Minirdr.) -- C:\Windows\System32\drivers\MRxSmb.sys [123392] ©
[MD5.DD52A733BF4CA5AF84562A5E2F963B91] - 14/07/2009 - (.Microsoft Corporation - MBT Transport driver.) -- C:\Windows\System32\drivers\netBT.sys [187904] ©
[MD5.5126C5402C730C2A953275D8497A4715] - 31/08/2012 - (.Microsoft Corporation - Pilote du système de fichiers NT.) -- C:\Windows\System32\drivers\ntfs.sys [1210736] ©
[MD5.2EA877ED5DD9713C5AC74E8EA7348D14] - 14/07/2009 - (.Microsoft Corporation - Pilote de port parallèle.) -- C:\Windows\System32\drivers\Parport.sys [79360] ©
[MD5.D9F91EAFEC2815365CBE6D167E4E332A] - 14/07/2009 - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) -- C:\Windows\System32\drivers\Rasl2tp.sys [78848] ©
[MD5.C5FF95883FFEF704D50C40D21CFB3AB5] - 14/07/2009 - (.Microsoft Corporation - Microsoft RDP Device redirector.) -- C:\Windows\System32\drivers\rdpdr.sys [133120] ©
[MD5.3E21C083B8A01CB70BA1F09303010FCE] - 14/07/2009 - (.Microsoft Corporation - SMB Transport driver.) -- C:\Windows\System32\drivers\smb.sys [71168] ©
[MD5.CB39E896A2A83702D1737BFD402B3542] - 14/07/2009 - (.Microsoft Corporation - TDI Translation Driver.) -- C:\Windows\System32\drivers\tdx.sys [74240] ©
[MD5.59F06B4968E58BC83DFC56CA4517960E] - 06/09/2012 - (.Microsoft Corporation - Pilote de cliché instantané du volume.) -- C:\Windows\System32\drivers\volsnap.sys [245616] ©
[MD5.62390F4ACE9E2B63E3CA26B7F7497897] - 03/03/2011 - (.Microsoft Corporation - DNS DLL de l’API Client.) -- C:\Windows\System32\dnsapi.dll [269824] ©

---\\ Liste des services NT non Microsoft et non désactivés (13) - 0s
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe ©
O23 - Service: Avira Protection e-mail (AntiVirMailService) . (.Avira Operations GmbH & Co. KG - Antivirus MailScanner WFP Service.) - C:\Program Files\Avira\AntiVir Desktop\avmailc7.exe ©
O23 - Service: Avira Planificateur (AntiVirSchedulerService) . (.Avira Operations GmbH & Co. KG - Antivirus Host Framework Service.) - C:\Program Files\Avira\AntiVir Desktop\sched.exe ©
O23 - Service: Avira Protection temps réel (AntiVirService) . (.Avira Operations GmbH & Co. KG - Antivirus Host Framework Service.) - C:\Program Files\Avira\AntiVir Desktop\avguard.exe ©
O23 - Service: Service de mise à jour Ask (APNMCP) . (...) - C:\Program Files\AskPartnerNetwork\Toolbar\apnmcp.exe (.not file.)  =>Toolbar.Ask
O23 - Service: Avira Service Host (Avira.ServiceHost) . (.Avira Operations GmbH & Co. KG - Avira.ServiceHost.) - C:\Program Files\Avira\Launcher\Avira.ServiceHost.exe ©
O23 - Service: Service Google Update (gupdate) (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files\Google\Update\GoogleUpdate.exe ©
O23 - Service: IB Updater (IB Updater) . (...) - C:\Program Files\IB Updater\ExtensionUpdaterService.exe (.not file.)  =>PUP.Optional.IncrediBar
O23 - Service:  (IBUpdaterService) . (...) - C:\Windows\System32\dmwu.exe  =>PUP.Optional.InstallBrain
O23 - Service:  (MBAMService) . (.Malwarebytes - Malwarebytes Anti-Malware.) - C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe ©
O23 - Service: NVIDIA Display Driver Service (nvsvc) . (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 258.9.) - C:\Windows\System32\nvvsvc.exe ©
O23 - Service: Skype Updater (SkypeUpdate) . (.Skype Technologies - Skype Updater Service.) - C:\Program Files\Skype\Updater\Updater.exe ©
O23 - Service: Software Update Service (supdate) (supdate) . (...) - C:\Program Files\Software\Update\SoftwareUpdate.exe (.not file.)  =>PUP.Optional.SoftwareUpdater

---\\ Tâches planifiées en automatique (14) - 3s
[MD5.B89A82FB10E98F2FDF51FA82C7366DD3] [APT] [Adobe Acrobat Update Task] (.Adobe Systems Incorporated.) -- C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe   [1067736] ©
[MD5.280A526E8111AC6A5BCC1A059E1E0340] [APT] [Adobe Flash Player Updater] (.Adobe Systems Incorporated.) -- C:\Windows\System32\Macromed\Flash\FlashPlayerUpdateService.exe   [269000] ©
[MD5.E1B44A75947137F4143308D566889837] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files\Google\Update\GoogleUpdate.exe   [107848] ©
[MD5.E1B44A75947137F4143308D566889837] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files\Google\Update\GoogleUpdate.exe   [107848] ©
[MD5.00000000000000000000000000000000] [APT] [SoftwareUpdateTaskMachineUA] (...) -- C:\Program Files\Software\Update\SoftwareUpdate.exe (.not file.)   [0]  =>PUP.Optional.Boxore
O39 - APT: Adobe Flash Player Updater - (.Adobe Systems Incorporated.) -- C:\Windows\Tasks\Adobe Flash Player Updater.job   [1002] ©
O39 - APT: GoogleUpdateTaskMachineCore - (.Google Inc..) -- C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job   [1054] ©
O39 - APT: GoogleUpdateTaskMachineUA - (.Google Inc..) -- C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job   [1058] ©
O39 - APT: SoftwareUpdateTaskMachineUA - (...) -- C:\Windows\Tasks\SoftwareUpdateTaskMachineUA.job   [1076]  =>PUP.Optional.Boxore
O39 - APT: Adobe Acrobat Update Task - (.Adobe Systems Incorporated.) -- C:\Windows\System32\Tasks\Adobe Acrobat Update Task   [3874] ©
O39 - APT: Adobe Flash Player Updater - (.Adobe Systems Incorporated.) -- C:\Windows\System32\Tasks\Adobe Flash Player Updater   [3940] ©
O39 - APT: GoogleUpdateTaskMachineCore - (.Google Inc..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore   [3802] ©
O39 - APT: GoogleUpdateTaskMachineUA - (.Google Inc..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA   [4054] ©
O39 - APT: SoftwareUpdateTaskMachineUA - (...) -- C:\Windows\System32\Tasks\SoftwareUpdateTaskMachineUA   [4072]  =>PUP.Optional.Boxore

---\\ Processus lancés (28) - 1s
[MD5.4ED813EFD77A9B7E57E341CDC1C5CBC4] - (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 258.9.) -- C:\Windows\System32\nvvsvc.exe [129640] [PID.668] ©
[MD5.4ED813EFD77A9B7E57E341CDC1C5CBC4] - (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 258.9.) -- C:\Windows\System32\nvvsvc.exe [129640] [PID.1352] ©
[MD5.18B0643B3B504E0FDCFCE0C8743B29C7] - (.Avira Operations GmbH & Co. KG - Antivirus Host Framework Service.) -- C:\Program Files\Avira\AntiVir Desktop\sched.exe [461672] [PID.1416] ©
[MD5.E1B44A75947137F4143308D566889837] - (.Google Inc. - Programme d'installation de Google.) -- C:\Program Files\Google\Update\GoogleUpdate.exe [107848] [PID.1820] ©
[MD5.5DB2C6B908C50767E2EDAA294A7566B5] - (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [82128] [PID.1980] ©
[MD5.18B0643B3B504E0FDCFCE0C8743B29C7] - (.Avira Operations GmbH & Co. KG - Antivirus Host Framework Service.) -- C:\Program Files\Avira\AntiVir Desktop\avguard.exe [461672] [PID.284] ©
[MD5.18ED81DDC13ABDADD370945405CC0376] - (...) -- C:\Windows\System32\dmwu.exe [2470704] [PID.1828]
[MD5.21293443961A4E2597453EE7A9347F22] - (.Hewlett-Packard - hpwuSchd Application.) -- C:\Program Files\HP\HP Software Update\hpwuSchd2.exe [54840] [PID.1568] ©
[MD5.45945F39F2F6D08A0FAEC275E68FFC5A] - (.SweetIM Technologies Ltd. - Update Manager for SweetPacks.) -- C:\Program Files\SweetIM\Communicator\SweetPacksUpdateManager.exe [295728] [PID.2000]  =>PUP.Optional.SweetIM
[MD5.12916E0642E92561C98B18A2A2D01B14] - (.Sun Microsystems, Inc. - Java(TM) Update Scheduler.) -- C:\Program Files\Common Files\Java\Java Update\jusched.exe [252848] [PID.2076] ©
[MD5.C1A86A6D6847DEFF009EAE85BA0C1F20] - (.Avira Operations GmbH & Co. KG - Avira system tray application.) -- C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [782520] [PID.2084] ©
[MD5.ECF45E3FC8C63E44ED45D38A8672E7F1] - (.Hewlett-Packard Co. - HP Digital Imaging Monitor.) -- C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe [275768] [PID.2152] ©
[MD5.FB01D4AE207B9EFDBABFC55DC95C7E31] - (.Microsoft Corp. - Microsoft® Windows Live ID Service.) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [1713536] [PID.2476] ©
[MD5.6C4B9A2FF6924405E9ABFB558049D4DD] - (.Avira Operations GmbH & Co. KG - Avira.ServiceHost.) -- C:\Program Files\Avira\Launcher\Avira.ServiceHost.exe [243968] [PID.2528] ©
[MD5.C649F293B8B047A2694F3C615D09BF17] - (.Microsoft Corp. - Microsoft® Windows Live ID Service Monitor.) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE [193920] [PID.2580] ©
[MD5.B2CF341204E5FF0353F6421E2D3C8701] - (...) -- C:\Windows\System32\mjcm\dnkt.exe [781616] [PID.2716]
[MD5.8B588AF403C9D68EDFF154E3A73A1514] - (.Avira Operations GmbH & Co. KG - Avira Launcher.) -- C:\Program Files\Avira\Launcher\Avira.Systray.exe [137360] [PID.3104] ©
[MD5.4522792B6F9525DA41E5C95761F7736A] - (.Avira Operations GmbH & Co. KG - AntiVir shadow copy service.) -- C:\Program Files\Avira\AntiVir Desktop\avshadow.exe [433400] [PID.3352] ©
[MD5.D0D99257DDDCDDBE998AF7CA14E85BD0] - (.Hewlett-Packard Co. - HP CUE Status Root.) -- C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe [168960] [PID.468] ©
[MD5.9843F58DF3E2908D1FED4DF4B8747E51] - (.Hewlett-Packard Co. - HP CUE Alert Popup Window Objects.) -- C:\Program Files\HP\Digital Imaging\bin\hpqbam08.exe [559104] [PID.3520] ©
[MD5.883008A9B5BFF94A153D99DBA54CB5C1] - (.Hewlett-Packard - GPCore COM object.) -- C:\Program Files\HP\Digital Imaging\bin\hpqgpc01.exe [362496] [PID.324] ©
[MD5.E10A9F8891C670F7C54A4CAACEF2C19E] - (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe [813896] [PID.1388] ©
[MD5.E10A9F8891C670F7C54A4CAACEF2C19E] - (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe [813896] [PID.1616] ©
[MD5.E10A9F8891C670F7C54A4CAACEF2C19E] - (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe [813896] [PID.5696] ©
[MD5.E10A9F8891C670F7C54A4CAACEF2C19E] - (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe [813896] [PID.4344] ©
[MD5.E10A9F8891C670F7C54A4CAACEF2C19E] - (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe [813896] [PID.6000] ©
[MD5.E10A9F8891C670F7C54A4CAACEF2C19E] - (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe [813896] [PID.5672] ©
[MD5.085256441230B4E5E7A135A739DF8951] - (.Copyright (C) 2015 Nicolas Coolman - ZHPDiag.) -- C:\Users\Justine\Downloads\ZHPDiag3.exe [1971200] [PID.2664] ©

---\\ Google Chrome, Démarrage,Recherche,Extensions (11) - 0s
G2 - GCE: Preference [User Data\Default] [aapocclcgogkmnckokdopfmhonfmgoek] Google Chrome manifest  =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [aohghmighlieiainnegkcijnfilokake] Google Chrome manifest  =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [apdfllckaahabafndbhieahigkjlhalf] Google Chrome manifest  =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [blpcfgokakmgnkcojhhkbfbldkacnbeo] Google Chrome manifest  =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [coobgpohoikkiipiblmjeljniedjpjpf] Google Chrome manifest  =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [felcaaldnbdncclmgdcncolpebgiejap] Google Chrome manifest  =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [flliilndjeohchalpbbcdekjklbdgfkk] Avira Browser Safety
G2 - GCE: Preference [User Data\Default] [gighmmpiobklfepjocnamgkkbiglidom] AdBlock
G2 - GCE: Preference [User Data\Default] [lccekmodgklaepjeofjdjpbminllajkg] Chrome Hotword Shared Module
G2 - GCE: Preference [User Data\Default] [nmmhkkegccagdldgiimedpiccmgmieda] Google Chrome manifest  =>.Google Inc.
G2 - GCE: Preference [User Data\Default] [pjkljhegncpnkpknbcohdijeoejaedia] Google Chrome manifest  =>.Google Inc.

---\\ Firefox, Plugins,Demarrage,Recherche,Extensions (29) - 4s
M0 - MFSP: prefs.js [Justine - qut8qp7p.default] user_pref( sweetim.toolbar.previous.browser.startup.homepage ,  http://mystart.incredibar.com/mb165?a=6OyXmg5Hsz&i=26   =>PUP.Optional.IncrediBar
P2 - EXT: (...) -- C:\Program Files\Mozilla Firefox\Plugins\nppdf32.FRA
P2 - EXT FILE: (...) -- C:\Users\Justine\AppData\Roaming\Mozilla\Firefox\Profiles\qut8qp7p.default\extensions\jid1-FCM5fDwCW5M3AQ@jetpack.xpi
P2 - EXT FILE: (...) -- C:\Users\Justine\AppData\Roaming\Mozilla\Firefox\Profiles\qut8qp7p.default\extensions\toolbar@ask.com.xpi  =>Toolbar.Ask
P2 - EXT FILE: (...) -- C:\Users\Justine\AppData\Roaming\Mozilla\Firefox\Profiles\qut8qp7p.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
P2 - EXT FILE: (...) -- C:\Users\Justine\AppData\Roaming\Mozilla\Firefox\Profiles\qut8qp7p.default\extensions\{E77F341C-F32E-40AA-8829-AA785C7D9316}.xpi  =>PUP.Optional.Boxore
P2 - EXT FILE: (...) -- C:\Users\Justine\AppData\Roaming\Mozilla\Firefox\Profiles\qut8qp7p.default\extensions\{EEE6C361-6118-11DC-9C72-001320C79847}.xpi
P2 - EXT FILE: (...) -- C:\Users\Justine\AppData\Roaming\Mozilla\Firefox\Profiles\qut8qp7p.default\searchplugins\askcom.xml
P2 - EXT FILE: (...) -- C:\Users\Justine\AppData\Roaming\Mozilla\Firefox\Profiles\qut8qp7p.default\searchplugins\babylon.xml  =>PUP.Optional.Babylon
P2 - EXT FILE: (...) -- C:\Users\Justine\AppData\Roaming\Mozilla\Firefox\Profiles\qut8qp7p.default\searchplugins\babylon1.xml  =>PUP.Optional.Babylon
P2 - EXT FILE: (...) -- C:\Users\Justine\AppData\Roaming\Mozilla\Firefox\Profiles\qut8qp7p.default\searchplugins\delta.xml
P2 - EXT FILE: (...) -- C:\Users\Justine\AppData\Roaming\Mozilla\Firefox\Profiles\qut8qp7p.default\searchplugins\MyStart Search.xml  =>PUP.Optional.VMNToolbar
P2 - EXT FILE: (...) -- C:\Users\Justine\AppData\Roaming\Mozilla\Firefox\Profiles\qut8qp7p.default\searchplugins\SweetIM Search.xml  =>PUP.Optional.SweetIM
P2 - EXT FILE: (...) -- C:\Users\Justine\AppData\Roaming\Mozilla\Firefox\Profiles\qut8qp7p.default\searchplugins\sweetim.xml  =>PUP.Optional.SweetIM
P2 - EXT: (...) -- C:\Program Files\Mozilla Firefox\browser\searchplugins\amazon-france.xml
P2 - EXT: (...) -- C:\Program Files\Mozilla Firefox\browser\searchplugins\bing.xml
P2 - EXT: (...) -- C:\Program Files\Mozilla Firefox\browser\searchplugins\cnrtl-tlfi-fr.xml
P2 - EXT: (...) -- C:\Program Files\Mozilla Firefox\browser\searchplugins\ddg.xml
P2 - EXT: (...) -- C:\Program Files\Mozilla Firefox\browser\searchplugins\eBay-france.xml
P2 - EXT: (...) -- C:\Program Files\Mozilla Firefox\browser\searchplugins\google.xml
P2 - EXT: (...) -- C:\Program Files\Mozilla Firefox\browser\searchplugins\wikipedia-fr.xml
P2 - EXT: (...) -- C:\Program Files\Mozilla Firefox\browser\searchplugins\yahoo-france.xml
P2 - EXT: (.Mozilla - Default.) -- C:\Program Files\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} ©
P2 - EXT: (.Avira - Segurança do navegador Avira.) -- C:\Users\Justine\AppData\Roaming\Mozilla\Firefox\Profiles\qut8qp7p.default\extensions\abs@avira.com
P2 - EXT: (.http://www.cacaoweb.org/ - cacaoweb.) -- C:\Users\Justine\AppData\Roaming\Mozilla\Firefox\Profiles\qut8qp7p.default\extensions\cacaoweb@cacaoweb.org  =>.Superfluous.CacaoWeb
P2 - EXT: (.215 Apps - Savings Sidekick.) -- C:\Users\Justine\AppData\Roaming\Mozilla\Firefox\Profiles\qut8qp7p.default\extensions\crossriderapp5060@crossrider.com  =>PUP.Optional.CrossRider
P2 - EXT: (.incredibar.com - incredibar.com.) -- C:\Users\Justine\AppData\Roaming\Mozilla\Firefox\Profiles\qut8qp7p.default\extensions\ffxtlbr@incredibar.com  =>PUP.Optional.IncrediBar
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (.Adobe Systems Incorporated.) -- C:\Windows\System32\Macromed\Flash\NPSWF32_19_0_0_245.dll ©
P2 - FPN: [HKLM] [@www.dlmanager.net/omaha/tools//Software Update;version=8] - (.Boxore OU..) -- C:\Program Files\Software\Update\1.2.201.0\npSoftwareOneClick8.dll  =>PUP.Optional.Boxore

---\\ Internet Explorer,Démarrage,Recherche,URLSearchHook (11) - 0s
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://safesearch.avira.com/
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://safesearch.avira.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://safesearch.avira.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://safesearch.avira.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs,Tabs = res://ieframe.dll/tabswelcome.htm
R3 - URLSearchHook: (no name) - {00000000-6E41-4FD3-8538-502F5495E5FC} Orphean
R3 - URLSearchHook: (no name) - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} Orphean  =>.Microsoft Internet Explorer

---\\ Internet Explorer,Proxy Management (4) - 0s
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll

---\\ Internet Explorer,IniFiles, Autoloading programs (3) - 0s
F2 - REG:system.ini: UserInit=C:\Windows\System32\Userinit.exe (.Microsoft Corporation.) ©
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe (.Microsoft Corporation.) ©
F2 - REG:system.ini: VMApplet=C:\Windows\system32\SystemPropertiesPerformance.exe (.Microsoft Corporation.) ©

---\\ Etude du fichier hosts (1) - 0s
~ Le fichier hôte est sain (The hosts file is clean) (21)

---\\ Browser Helper Object de navigateur (BHO) (13) - 0s
O2 - BHO: Claro LTD Helper Object - {000F18F2-09EB-4A59-82B2-5AE4184C39C3} . (.Montera Technologeis LTD - .) -- C:\Program Files\Claro LTD\claro\1.6.4.1\bh\claro.dll  =>PUP.Optional.ClaroSearch
O2 - BHO: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} . (.Hewlett-Packard Co. - HP Smart Web Printing add-on for Internet E.) -- C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll ©
O2 - BHO: IB Updater Helper - {336D0C35-8A85-403a-B9D2-65C292C39087} . (...) -- C:\Program Files\IB Updater\Extension32.dll (.not file.)  =>PUP.Optional.InstallBrain
O2 - BHO: Incredibar.com Helper Object - {6E13DDE1-2B6E-46CE-8B66-DC8BF36F6B99}  (Orphean)  =>PUP.Optional.IncrediBar
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} . (.Microsoft Corporation - GrooveShellExtensions Module.) -- C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll ©
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre7\bin\ssv.dll ©
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corp. - Microsoft® Windows Live ID Login Helper.) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll ©
O2 - BHO: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} . (.Microsoft Corporation - Windows Live Messenger Companion Core.) -- C:\Program Files\Windows Live\Companion\companioncore.dll ©
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} . (.Google Inc. - Google Toolbar.) -- C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll ©
O2 - BHO: Ask Shopping Toolbar BHO - {D4027C7F-154A-4066-A1AD-4243D8127440} . (...) -- "C:\Program Files\AskPartnerNetwork\Toolbar\ORJ\Passport.dll" (.not file.)  =>PUP.Optional.Bandoo
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre7\bin\jp2ssv.dll ©
O2 - BHO: SWEETIE - {EEE6C35C-6118-11DC-9C72-001320C79847} . (...) -- C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll (.not file.)  =>PUP.Optional.SweetIM
O2 - BHO: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} . (.Hewlett-Packard Co. - HP Smart Web Printing add-on for Internet E.) -- C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll ©

---\\ Internet Explorer, Barre d'outil (5) - 1s
O3 - Toolbar: Claro LTD Toolbar - [HKLM]{9E131A93-EED7-4BEB-B015-A0ADB30B5646} . (.Montera Technologeis LTD - .) -- C:\Program Files\Claro LTD\claro\1.6.4.1\claroTlbr.dll  =>PUP.Optional.ClaroSearch
O3 - Toolbar: Babylon Toolbar - [HKLM]{98889811-442D-49dd-99D7-DC866BE87DBC} . (.Montera Technologeis LTD - .) --  (.not file.)  =>PUP.Optional.Babylon
O3 - Toolbar: Incredibar Toolbar - [HKLM]{F9639E4A-801B-4843-AEE3-03D9DA199E77} . (.Montera Technologeis LTD - .) --  (.not file.)  =>PUP.Optional.IncrediBar
O3 - Toolbar: 0x00 - [HKLM]{EEE6C35B-6118-11DC-9C72-001320C79847} . (...) -- C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll (.not file.)  =>PUP.Optional.SweetIM
O3 - Toolbar: (no name) - [HKLM]{D4027C7F-154A-4066-A1AD-4243D8127440}  (Orphean)  =>Toolbar.AskBar

---\\ Applications lancées au démarrage du système (12) - 0s
O4 - HKLM\..\Run: [GrooveMonitor] . (.Microsoft Corporation - GrooveMonitor Utility.) -- C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe ©
O4 - HKLM\..\Run: [HP Software Update] . (.Hewlett-Packard - hpwuSchd Application.) -- C:\Program Files\HP\HP Software Update\HPWuSchd2.exe ©
O4 - HKLM\..\Run: [SweetIM] C:\Program Files\SweetIM\Messenger\SweetIM.exe (.not file.)  =>PUP.Optional.SweetIM
O4 - HKLM\..\Run: [Sweetpacks Communicator] . (.SweetIM Technologies Ltd. - Update Manager for SweetPacks.) -- C:\Program Files\SweetIM\Communicator\SweetPacksUpdateManager.exe  =>PUP.Optional.SweetIM
O4 - HKLM\..\Run: [SunJavaUpdateSched] . (.Sun Microsystems, Inc. - Java(TM) Update Scheduler.) -- C:\Program Files\Common Files\Java\Java Update\jusched.exe ©
O4 - HKLM\..\Run: [avgnt] . (.Avira Operations GmbH & Co. KG - Avira system tray application.) -- C:\Program Files\Avira\AntiVir Desktop\avgnt.exe ©
O4 - HKLM\..\Run: [ApnTBMon] C:\Program Files\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe (.not file.)  =>Toolbar.AskBar
O4 - HKLM\..\Run: [Avira SystrayStartTrigger] . (.Avira Operations GmbH & Co. KG - Avira.SystrayStartTrigger.) -- C:\Program Files\Avira\Launcher\Avira.SystrayStartTrigger.exe ©
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe ©
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe ©
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe ©
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe ©

---\\ Modification Domaine/Adresses DNS (3) - 0s
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 192.168.1.1
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 192.168.1.1
O17 - HKLM\System\CS2\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 192.168.1.1

---\\ Protocole additionnel (25) - 0s
O18 - Handler: about - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll ©
O18 - Handler: cdl - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll ©
O18 - Handler: dvd - {12D51199-0DB5-46FE-A120-47A3D7D937CC} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\System32\MSVidCtl.dll ©
O18 - Handler: file - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll ©
O18 - Handler: ftp - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll ©
O18 - Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} . (.Microsoft Corporation - GrooveSystemServices Module.) -- C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll ©
O18 - Handler: http - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll ©
O18 - Handler: https - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll ©
O18 - Handler: its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll ©
O18 - Handler: javascript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll ©
O18 - Handler: local - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll ©
O18 - Handler: mailto - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll ©
O18 - Handler: mhtml - {05300401-BCBC-11d0-85E3-00C04FD85AB4} . (.Microsoft Corporation - Microsoft Internet Messaging API Resources.) -- C:\Windows\System32\inetcomm.dll ©
O18 - Handler: mk - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll ©
O18 - Handler: ms-help - {314111c7-a502-11d2-bbca-00c04f8ec294} . (.Microsoft Corporation - Microsoft® Help Data Services Module.) -- C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll ©
O18 - Handler: ms-its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} . (.Microsoft Corporation - Microsoft® InfoTech Storage System Library.) -- C:\Windows\System32\itss.dll ©
O18 - Handler: res - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll ©
O18 - Handler: tv - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} . (.Microsoft Corporation - Contrôle ActiveX pour le flux vidéo.) -- C:\Windows\System32\MSVidCtl.dll ©
O18 - Handler: vbscript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll ©
O18 - Handler: wlmailhtml - {03C514A3-1EFB-4856-9F99-10D7BE1653C0} . (.Microsoft Corporation - Windows Live Mail.) -- C:\Program Files\Windows Live\Mail\mailcomm.dll ©
O18 - Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} . (.Microsoft Corporation - Windows Live Album Download Protocol Handle.) -- C:\Program Files\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll ©
O18 - Filter: application/octet-stream - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll ©
O18 - Filter: application/x-complus - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll ©
O18 - Filter: application/x-msdownload - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll ©
O18 - Filter: text/xml - {807563E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL ©

---\\ Logiciels installés (55) - 10s
O42 - Logiciel: 32 Bit HP CIO Components Installer - (.Hewlett-Packard.) [HKLM] -- {92127AF5-FDD8-4ADF-BC40-C356C9EE0B7D} ©
O42 - Logiciel: Adobe Flash Player 19 ActiveX - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player ActiveX ©
O42 - Logiciel: Adobe Flash Player 19 NPAPI - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player NPAPI ©
O42 - Logiciel: Adobe Reader XI (11.0.13) - Français - (.Adobe Systems Incorporated.) [HKLM] -- {AC76BA86-7AD7-1036-7B44-AB0000000001} ©
O42 - Logiciel: Adobe Refresh Manager - (.Adobe Systems Incorporated.) [HKLM] -- {AC76BA86-0804-1033-1959-001824161310} ©
O42 - Logiciel: Ask Shopping Toolbar - (.APN, LLC.) [HKLM] -- {4F524A00-6A76-A76A-76A7-A758B70C2300}  =>PUP.Optional.Bandoo
O42 - Logiciel: Avira Antivirus v15.0.13.210 - (.Avira Operations GmbH & Co. KG.) [HKLM] -- Avira Antivirus ©
O42 - Logiciel: Avira Launcher v1.1.49.18939 - (.Avira Operations GmbH & Co. KG.) [HKLM] -- {18BD67B4-2BB3-4D1B-A33A-1B57A3BB7A1C} ©
O42 - Logiciel: Avira Launcher v1.1.49.18939 - (.Avira Operations GmbH & Co. KG.) [HKLM] -- {59c4462d-a177-4d44-a95b-deda1be79844} ©
O42 - Logiciel: Battle.net - (.Blizzard Entertainment.) [HKLM] -- Battle.net ©
O42 - Logiciel: Boxore Client - (.Boxore OU.) [HKLM] -- {DE778E8E-5286-41FF-A85E-D41A6384DD83}  =>PUP.Optional.Boxore
O42 - Logiciel: CCleaner - (.Piriform.) [HKLM] -- CCleaner ©
O42 - Logiciel: Claro LTD toolbar   - (.Claro LTD.) [HKLM] -- claro
O42 - Logiciel: Complément Messenger - (.Microsoft Corporation.) [HKLM] -- {6E5324C1-84FC-4F76-9A3A-C65E07F80EE6} ©
O42 - Logiciel: Complément Office 2007 - Microsoft Enregistrer en tant que PDF ou XPS (Beta - (.Microsoft Corporation.) [HKLM] -- {30120000-00B2-040C-0000-0000000FF1CE} ©
O42 - Logiciel: D3DX10 - (.Microsoft.) [HKLM] -- {E09C4DB7-630C-4F06-A631-8EA7239923AF} ©
O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM] -- Google Chrome ©
O42 - Logiciel: Google Toolbar for Internet Explorer - (.Google Inc..) [HKLM] -- {18455581-E099-4BA8-BC6B-F34B2F06600C} ©
O42 - Logiciel: Google Toolbar for Internet Explorer - (.Google Inc..) [HKLM] -- {2318C2B1-4965-11d4-9B18-009027A5CD4F} ©
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM] -- {60EC980A-BDA2-4CB6-A427-B07A5498B4CA} ©
O42 - Logiciel: Hearthstone - (.Blizzard Entertainment.) [HKLM] -- Hearthstone ©
O42 - Logiciel: HP Customer Participation Program 13.0 - (.HP.) [HKLM] -- HPExtendedCapabilities ©
O42 - Logiciel: HP Imaging Device Functions 13.0 - (.HP.) [HKLM] -- HP Imaging Device Functions ©
O42 - Logiciel: HP Photosmart Wireless B109n-z All-In-One Driver Software 13.0 Rel .6 - (.HP.) [HKLM] -- {722B4A13-F24D-43AE-8813-5DB82C0B23C2} ©
O42 - Logiciel: HP Print Projects 1.0 - (.HP.) [HKLM] -- HP Print Projects ©
O42 - Logiciel: HP Smart Web Printing 4.5 - (.HP.) [HKLM] -- HP Smart Web Printing ©
O42 - Logiciel: HP Solution Center 13.0 - (.HP.) [HKLM] -- HP Solution Center & Imaging Support Tools ©
O42 - Logiciel: HP Update - (.Hewlett-Packard.) [HKLM] -- {7059BDA7-E1DB-442C-B7A1-6144596720A4} ©
O42 - Logiciel: IB Updater 2.0.0.575 - (.IncrediBar.) [HKLM] -- {336D0C35-8A85-403a-B9D2-65C292C39087}_is1  =>PUP.Optional.InstallBrain
O42 - Logiciel: IB Updater Service - (...) [HKLM] -- WNLT  =>PUP.Optional.InstallBrain
O42 - Logiciel: Java 7 Update 13 - (.Oracle.) [HKLM] -- {26A24AE4-039D-4CA4-87B4-2F83217013FF} ©
O42 - Logiciel: Java(TM) 6 Update 31 - (.Oracle.) [HKLM] -- {26A24AE4-039D-4CA4-87B4-2F83216031FF} ©
O42 - Logiciel: Junk Mail filter update - (.Microsoft Corporation.) [HKLM] -- {1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4} ©
O42 - Logiciel: Les Sims 2 - (...) [HKLM] -- {6E7DD182-9FC6-4651-0095-2E666CC6AF35}
O42 - Logiciel: Malwarebytes Anti-Malware version 2.2.0.1024 - (.Malwarebytes.) [HKLM] -- Malwarebytes Anti-Malware_is1 ©
O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00} ©
O42 - Logiciel: Mozilla Firefox 37.0.2 (x86 fr) - (.Mozilla.) [HKLM] -- Mozilla Firefox 37.0.2 (x86 fr) ©
O42 - Logiciel: Mozilla Maintenance Service - (.Mozilla.) [HKLM] -- MozillaMaintenanceService ©
O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM] -- {8DD46C6A-0056-4FEC-B70A-28BB16A1F11F} ©
O42 - Logiciel: msvcrt_installer - (.SAH.) [HKLM] -- {6068A42A-C1CF-45F2-9859-5DB16287FE5D} ©
O42 - Logiciel: MSXML 4.0 SP2 (KB954430) - (.Microsoft Corporation.) [HKLM] -- {86493ADD-824D-4B8E-BD72-8C5DCDC52A71} ©
O42 - Logiciel: MSXML 4.0 SP2 (KB973688) - (.Microsoft Corporation.) [HKLM] -- {F662A8E6-F4DC-41A2-901E-8C11F044BDEC} ©
O42 - Logiciel: NVIDIA Display Control Panel - (.NVIDIA Corporation.) [HKLM] -- NVIDIA Display Control Panel ©
O42 - Logiciel: NVIDIA Drivers - (.NVIDIA Corporation.) [HKLM] -- NVIDIA Drivers ©
O42 - Logiciel: PlayReady PC Runtime x86 - (.Microsoft Corporation.) [HKLM] -- {CCA5EAAD-92F4-4B7A-B5EE-14294C66AB61} ©
O42 - Logiciel: RICOH Media Driver - (.RICOH.) [HKLM] -- {F5CC2EF8-20A4-4366-A681-3FE849E65809} ©
O42 - Logiciel: Savings Sidekick - (.215 Apps.) [HKLM] -- Savings Sidekick  =>PUP.Optional.VidSaver
O42 - Logiciel: Shop for HP Supplies - (.HP.) [HKLM] -- Shop for HP Supplies ©
O42 - Logiciel: Skype™ 7.0 - (.Skype Technologies S.A..) [HKLM] -- {24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7} ©
O42 - Logiciel: Software Update Helper - (.Boxore OU..) [HKLM] -- {006E6A46-8D55-4F10-BBA8-2C9653B4278B}  =>PUP.Optional.Boxore
O42 - Logiciel: SUPER © Version 2009.bld.36 (June 10, 2009) - (.eRightSoft.) [HKLM] -- SUPER © ©
O42 - Logiciel: SweetIM for Messenger 3.6 - (.SweetIM Technologies Ltd..) [HKLM] -- {0965F857-DAAD-4F93-8054-0E2EC3C8C5B0}  =>PUP.Optional.SweetIM
O42 - Logiciel: SweetPacks Toolbar for Internet Explorer 4.6 - (.SweetIM Technologies Ltd..) [HKLM] -- {4183178B-4D4E-48A7-9257-454BA90A760E}  =>PUP.Optional.SweetIM
O42 - Logiciel: Update Manager for SweetPacks 1.0 - (.SweetIM Technologies Ltd..) [HKLM] -- {FB697452-8CA4-46B4-98B1-165C922A2EF3}  =>PUP.Optional.SweetIM
O42 - Logiciel: Vittalia Installer - (.www.TELECHARGERSTOP.com.) [HKLM] -- Vittalia  =>PUP.Optional.Vittalia

---\\ HKCU & HKLM Software Keys (92) - 10s
HKLM\SOFTWARE\Adobe
HKLM\SOFTWARE\ATI Technologies
HKLM\SOFTWARE\Avira
HKLM\SOFTWARE\AviSynth
HKLM\SOFTWARE\Babylon  =>PUP.Optional.Babylon
HKLM\SOFTWARE\Blizzard Entertainment
HKLM\SOFTWARE\BrowserChoice
HKLM\SOFTWARE\Claro LTD
HKLM\SOFTWARE\Cygnus Solutions
HKLM\SOFTWARE\DVDVideoSoft
HKLM\SOFTWARE\EA GAMES
HKLM\SOFTWARE\Electronic Arts
HKLM\SOFTWARE\Google
HKLM\SOFTWARE\Hewlett-Packard
HKLM\SOFTWARE\HPS
HKLM\SOFTWARE\IB Updater  =>PUP.Optional.InstallBrain
HKLM\SOFTWARE\IM Providers
HKLM\SOFTWARE\Incredibar.com  =>PUP.Optional.IncrediBar
HKLM\SOFTWARE\IncrediMail
HKLM\SOFTWARE\Intel
HKLM\SOFTWARE\JavaSoft
HKLM\SOFTWARE\JreMetrics
HKLM\SOFTWARE\Khronos
HKLM\SOFTWARE\Macromedia
HKLM\SOFTWARE\mcafeeupdater
HKLM\SOFTWARE\Mozilla
HKLM\SOFTWARE\mozilla.org
HKLM\SOFTWARE\MozillaPlugins
HKLM\SOFTWARE\NVIDIA Corporation
HKLM\SOFTWARE\ODBC
HKLM\SOFTWARE\Piriform
HKLM\SOFTWARE\RegisteredApplications
HKLM\SOFTWARE\RICOH
HKLM\SOFTWARE\Skype
HKLM\SOFTWARE\Software
HKLM\SOFTWARE\Sonic
HKLM\SOFTWARE\SRS Labs
HKLM\SOFTWARE\SweetIM  =>PUP.Optional.SweetIM
HKLM\SOFTWARE\webtogo
HKLM\SOFTWARE\WNLT  =>PUP.Optional.IncrediBar
HKLM\SOFTWARE\Wow6432Node
HKLM\SOFTWARE\X-AVCSD
HKCU\SOFTWARE\5828f8ce569ef10  =>PUP.Optional.Heuristic
HKCU\SOFTWARE\AC3Filter
HKCU\SOFTWARE\Adobe
HKCU\SOFTWARE\AppDataLow
HKCU\SOFTWARE\AskPartnerNetwork  =>Toolbar.AskBar
HKCU\SOFTWARE\Avira
HKCU\SOFTWARE\BabSolution  =>PUP.Optional.BabSolution
HKCU\SOFTWARE\Blizzard Entertainment
HKCU\SOFTWARE\Boxore  =>PUP.Optional.Boxore
HKCU\SOFTWARE\cacaoweb  =>.Superfluous.CacaoWeb
HKCU\SOFTWARE\CeWe Color
HKCU\SOFTWARE\Claro LTD
HKCU\SOFTWARE\CoreAAC
HKCU\SOFTWARE\Cr_Installer  =>PUP.Optional.CrossRider
HKCU\SOFTWARE\Cygnus Solutions
HKCU\SOFTWARE\delta LTD  =>Toolbar.DeltaSearch
HKCU\SOFTWARE\DVDVideoSoft
HKCU\SOFTWARE\Google
HKCU\SOFTWARE\Hewlett-Packard
HKCU\SOFTWARE\HP
HKCU\SOFTWARE\IM
HKCU\SOFTWARE\IM Providers
HKCU\SOFTWARE\ImInstaller  =>Toolbar.IncrediMail
HKCU\SOFTWARE\IncrediMail
HKCU\SOFTWARE\InstalledBrowserExtensions  =>PUP.Optional.BrowserExtensions
HKCU\SOFTWARE\JavaSoft
HKCU\SOFTWARE\Local AppWizard-Generated Applications
HKCU\SOFTWARE\Macromedia
HKCU\SOFTWARE\MCAFEE
HKCU\SOFTWARE\MediaHuman
HKCU\SOFTWARE\Mozilla
HKCU\SOFTWARE\MozillaPlugins
HKCU\SOFTWARE\Netscape
HKCU\SOFTWARE\Nosibay  =>PUP.Optional.SPointer
HKCU\SOFTWARE\NVIDIA Corporation
HKCU\SOFTWARE\ODBC
HKCU\SOFTWARE\Piriform
HKCU\SOFTWARE\SecuROM
HKCU\SOFTWARE\Skype
HKCU\SOFTWARE\Softonic  =>PUP.Optional.Softonic
HKCU\SOFTWARE\Spointer  =>PUP.Optional.SPointer
HKCU\SOFTWARE\SweetIM  =>PUP.Optional.SweetIM
HKCU\SOFTWARE\Trolltech
HKCU\SOFTWARE\Unity
HKCU\SOFTWARE\WNLT  =>PUP.Optional.IncrediBar
HKCU\SOFTWARE\ZebHelpProcess Helper
HKCU\SOFTWARE\AppDataLow\Software
HKCU\SOFTWARE\AppDataLow\Software\Crossrider  =>PUP.Optional.CrossRider
HKCU\SOFTWARE\AppDataLow\Software\JavaSoft
HKCU\SOFTWARE\AppDataLow\Software\Savings Sidekick

---\\ Contenu des dossiers Programmes (459) - 72s
O43 - CFD: 03/08/2013 - [] D -- C:\Program Files\Adobe
O43 - CFD: 22/03/2014 - [] D -- C:\Program Files\AskPartnerNetwork  =>Toolbar.AskBar
O43 - CFD: 01/10/2015 - [] D -- C:\Program Files\Avira
O43 - CFD: 07/04/2012 - [] D -- C:\Program Files\AviSynth 2.5
O43 - CFD: 19/11/2015 - [] D -- C:\Program Files\Battle.net
O43 - CFD: 01/11/2015 - [] D -- C:\Program Files\BD Accuri
O43 - CFD: 09/02/2011 - [] D -- C:\Program Files\CCleaner
O43 - CFD: 12/10/2012 - [] D -- C:\Program Files\Claro LTD  =>PUP.Optional.ClaroSearch
O43 - CFD: 03/05/2015 - [] D -- C:\Program Files\Common Files
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files\DVD Maker
O43 - CFD: 19/12/2012 - [0] D -- C:\Program Files\DVDVideoSoft
O43 - CFD: 03/01/2013 - [] D -- C:\Program Files\EA GAMES
O43 - CFD: 07/04/2012 - [] D -- C:\Program Files\eRightSoft
O43 - CFD: 09/02/2011 - [0] SHD -- C:\Program Files\Fichiers communs
O43 - CFD: 11/05/2012 - [0] D -- C:\Program Files\Fluendo  =>PUP.Optional.SPointer
O43 - CFD: 06/02/2013 - [0] D -- C:\Program Files\Fnac
O43 - CFD: 25/10/2015 - [] D -- C:\Program Files\Google
O43 - CFD: 12/11/2015 - [] D -- C:\Program Files\Hearthstone
O43 - CFD: 04/05/2011 - [] D -- C:\Program Files\HP
O43 - CFD: 10/02/2011 - [] HD -- C:\Program Files\InstallShield Installation Information
O43 - CFD: 13/04/2013 - [] D -- C:\Program Files\Internet Explorer
O43 - CFD: 06/02/2013 - [] D -- C:\Program Files\Java
O43 - CFD: 11/11/2015 - [] D -- C:\Program Files\Malwarebytes Anti-Malware
O43 - CFD: 25/10/2015 - [] D -- C:\Program Files\McAfee Security Scan
O43 - CFD: 21/05/2012 - [] D -- C:\Program Files\Microsoft Office
O43 - CFD: 22/10/2015 - [] D -- C:\Program Files\Microsoft Silverlight
O43 - CFD: 23/05/2013 - [] D -- C:\Program Files\Microsoft SQL Server Compact Edition
O43 - CFD: 09/02/2011 - [] D -- C:\Program Files\Microsoft Visual Studio
O43 - CFD: 09/02/2011 - [] D -- C:\Program Files\Microsoft Visual Studio 8
O43 - CFD: 12/03/2011 - [] D -- C:\Program Files\Microsoft Works
O43 - CFD: 10/02/2011 - [] D -- C:\Program Files\Microsoft.NET
O43 - CFD: 01/05/2015 - [] D -- C:\Program Files\Mozilla Firefox
O43 - CFD: 03/05/2015 - [] D -- C:\Program Files\Mozilla Maintenance Service
O43 - CFD: 09/02/2011 - [] D -- C:\Program Files\MSBuild
O43 - CFD: 09/02/2011 - [] D -- C:\Program Files\MSECache
O43 - CFD: 07/05/2011 - [0] D -- C:\Program Files\MSXML 4.0
O43 - CFD: 16/12/2012 - [] D -- C:\Program Files\Nosibay  =>PUP.Optional.SPointer
O43 - CFD: 09/02/2011 - [] D -- C:\Program Files\NVIDIA Corporation
O43 - CFD: 09/02/2011 - [] D -- C:\Program Files\PlayReady
O43 - CFD: 10/02/2011 - [] D -- C:\Program Files\Realtek
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files\Reference Assemblies
O43 - CFD: 03/05/2015 - [] RD -- C:\Program Files\Skype
O43 - CFD: 16/12/2012 - [] D -- C:\Program Files\Software  =>PUP.Optional.Boxore
O43 - CFD: 03/01/2013 - [] D -- C:\Program Files\SweetIM  =>PUP.Optional.SweetIM
O43 - CFD: 10/02/2011 - [0] HD -- C:\Program Files\Temp
O43 - CFD: 14/07/2009 - [0] HD -- C:\Program Files\Uninstall Information
O43 - CFD: 23/05/2013 - [] D -- C:\Program Files\Vittalia  =>PUP.Optional.Vittalia
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files\Windows Defender
O43 - CFD: 12/05/2012 - [] D -- C:\Program Files\Windows Journal
O43 - CFD: 05/06/2013 - [] D -- C:\Program Files\Windows Live
O43 - CFD: 10/02/2011 - [] D -- C:\Program Files\Windows Mail
O43 - CFD: 10/02/2011 - [] D -- C:\Program Files\Windows Media Player
O43 - CFD: 09/02/2011 - [] D -- C:\Program Files\Windows NT
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files\Windows Photo Viewer
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files\Windows Portable Devices
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files\Windows Sidebar
O43 - CFD: 09/02/2011 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 09/02/2011 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 07/11/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
O43 - CFD: 11/11/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battle.net
O43 - CFD: 01/11/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BD Accuri
O43 - CFD: 09/02/2011 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
O43 - CFD: 11/11/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDVideoSoft
O43 - CFD: 03/01/2013 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EA GAMES
O43 - CFD: 12/10/2012 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FastStone Image Viewer
O43 - CFD: 03/01/2013 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
O43 - CFD: 25/10/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
O43 - CFD: 11/11/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hearthstone
O43 - CFD: 04/05/2011 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP
O43 - CFD: 14/07/2009 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 11/11/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
O43 - CFD: 16/12/2012 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MediaHuman
O43 - CFD: 15/03/2011 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
O43 - CFD: 21/10/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
O43 - CFD: 03/05/2015 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
O43 - CFD: 25/10/2015 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 07/04/2012 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SUPER © Version 2009.bld.36 (June 10, 2009)
O43 - CFD: 14/07/2009 - [0] RHD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tablet PC
O43 - CFD: 03/08/2013 - [] D -- C:\ProgramData\Adobe
O43 - CFD: 22/03/2014 - [] D -- C:\ProgramData\APN  =>Toolbar.Ask
O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Application Data
O43 - CFD: 26/04/2012 - [] D -- C:\ProgramData\Ask
O43 - CFD: 22/03/2014 - [] D -- C:\ProgramData\AskPartnerNetwork  =>Toolbar.YahooPartner
O43 - CFD: 20/10/2015 - [] D -- C:\ProgramData\Avira
O43 - CFD: 12/10/2012 - [0] D -- C:\ProgramData\Babylon  =>PUP.Optional.Babylon
O43 - CFD: 11/11/2015 - [] D -- C:\ProgramData\Battle.net
O43 - CFD: 11/11/2015 - [] D -- C:\ProgramData\Blizzard Entertainment
O43 - CFD: 14/09/2013 - [] D -- C:\ProgramData\BoxUpdChk  =>PUP.Optional.Boxore
O43 - CFD: 09/02/2011 - [0] SHD -- C:\ProgramData\Bureau
O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Desktop
O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Documents
O43 - CFD: 09/02/2011 - [0] SHD -- C:\ProgramData\Favoris
O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Favorites
O43 - CFD: 25/10/2015 - [] D -- C:\ProgramData\Google
O43 - CFD: 04/05/2011 - [] D -- C:\ProgramData\HP
O43 - CFD: 04/05/2011 - [] D -- C:\ProgramData\HP Product Assistant
O43 - CFD: 06/02/2013 - [] D -- C:\ProgramData\hps
O43 - CFD: 12/10/2012 - [] D -- C:\ProgramData\IBUpdaterService  =>PUP.Optional.InstallBrain
O43 - CFD: 11/11/2015 - [] D -- C:\ProgramData\Malwarebytes
O43 - CFD: 04/12/2011 - [] D -- C:\ProgramData\McAfee
O43 - CFD: 09/02/2011 - [0] SHD -- C:\ProgramData\Menu Démarrer
O43 - CFD: 13/02/2015 - [] SD -- C:\ProgramData\Microsoft
O43 - CFD: 12/11/2015 - [] D -- C:\ProgramData\Microsoft Help
O43 - CFD: 09/02/2011 - [0] SHD -- C:\ProgramData\Modèles
O43 - CFD: 07/06/2012 - [] D -- C:\ProgramData\Mozilla
O43 - CFD: 09/02/2011 - [] D -- C:\ProgramData\NVIDIA
O43 - CFD: 09/02/2011 - [] D -- C:\ProgramData\NVIDIA Corporation
O43 - CFD: 09/11/2015 - [] D -- C:\ProgramData\Package Cache
O43 - CFD: 03/05/2015 - [] D -- C:\ProgramData\Skype
O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Start Menu
O43 - CFD: 26/04/2012 - [] D -- C:\ProgramData\Sun
O43 - CFD: 03/01/2013 - [] D -- C:\ProgramData\SweetIM  =>PUP.Optional.SweetIM
O43 - CFD: 14/07/2009 - [0] SHD -- C:\ProgramData\Templates
O43 - CFD: 06/02/2013 - [] D -- C:\ProgramData\tmp
O43 - CFD: 04/05/2011 - [] D -- C:\ProgramData\WEBREG
O43 - CFD: 03/08/2013 - [] D -- C:\Program Files\Common Files\Adobe
O43 - CFD: 11/06/2014 - [] D -- C:\Program Files\Common Files\DESIGNER
O43 - CFD: 04/05/2011 - [] D -- C:\Program Files\Common Files\Hewlett-Packard
O43 - CFD: 04/05/2011 - [] D -- C:\Program Files\Common Files\HP
O43 - CFD: 09/02/2011 - [] D -- C:\Program Files\Common Files\InstallShield
O43 - CFD: 06/02/2013 - [] D -- C:\Program Files\Common Files\Java
O43 - CFD: 23/05/2013 - [] D -- C:\Program Files\Common Files\microsoft shared
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files\Common Files\Services
O43 - CFD: 03/05/2015 - [] D -- C:\Program Files\Common Files\Skype
O43 - CFD: 14/07/2009 - [] D -- C:\Program Files\Common Files\SpeechEngines
O43 - CFD: 13/08/2012 - [] D -- C:\Program Files\Common Files\System
O43 - CFD: 09/02/2011 - [] D -- C:\Program Files\Common Files\Windows Live
O43 - CFD: 18/02/2011 - [] D -- C:\Users\Justine\AppData\Roaming\Adobe
O43 - CFD: 21/04/2015 - [] D -- C:\Users\Justine\AppData\Roaming\Avira
O43 - CFD: 12/10/2012 - [] D -- C:\Users\Justine\AppData\Roaming\Babylon  =>PUP.Optional.Babylon
O43 - CFD: 11/11/2015 - [] D -- C:\Users\Justine\AppData\Roaming\Battle.net
O43 - CFD: 01/05/2015 - [] D -- C:\Users\Justine\AppData\Roaming\cacaoweb  =>.Superfluous.CacaoWeb
O43 - CFD: 28/08/2012 - [] D -- C:\Users\Justine\AppData\Roaming\Dropbox
O43 - CFD: 16/12/2012 - [] D -- C:\Users\Justine\AppData\Roaming\DVDVideoSoft
O43 - CFD: 16/12/2012 - [] D -- C:\Users\Justine\AppData\Roaming\DVDVideoSoftIEHelpers
O43 - CFD: 12/10/2012 - [] D -- C:\Users\Justine\AppData\Roaming\FastStone
O43 - CFD: 04/05/2011 - [] D -- C:\Users\Justine\AppData\Roaming\HP
O43 - CFD: 09/02/2011 - [] D -- C:\Users\Justine\AppData\Roaming\Identities
O43 - CFD: 18/02/2011 - [] D -- C:\Users\Justine\AppData\Roaming\Macromedia
O43 - CFD: 14/07/2009 - [0] D -- C:\Users\Justine\AppData\Roaming\Media Center Programs
O43 - CFD: 05/11/2015 - [] SD -- C:\Users\Justine\AppData\Roaming\Microsoft
O43 - CFD: 31/08/2011 - [] D -- C:\Users\Justine\AppData\Roaming\moovida-1  =>PUP.Optional.SPointer
O43 - CFD: 09/02/2011 - [] D -- C:\Users\Justine\AppData\Roaming\Mozilla
O43 - CFD: 16/12/2012 - [] D -- C:\Users\Justine\AppData\Roaming\OpenCandy  =>PUP.Optional.OpenCandy
O43 - CFD: 11/11/2013 - [] D -- C:\Users\Justine\AppData\Roaming\Skype
O43 - CFD: 21/11/2015 - [] D -- C:\Users\Justine\AppData\Roaming\ZHP
O43 - CFD: 25/10/2015 - [] D -- C:\Users\Justine\AppData\Local\Adobe
O43 - CFD: 09/02/2011 - [0] SHD -- C:\Users\Justine\AppData\Local\Application Data
O43 - CFD: 05/07/2014 - [] D -- C:\Users\Justine\AppData\Local\AskPartnerNetwork  =>Toolbar.AskBar
O43 - CFD: 19/11/2015 - [] D -- C:\Users\Justine\AppData\Local\Battle.net
O43 - CFD: 12/11/2015 - [] D -- C:\Users\Justine\AppData\Local\Blizzard
O43 - CFD: 11/11/2015 - [] D -- C:\Users\Justine\AppData\Local\Blizzard Entertainment
O43 - CFD: 22/10/2015 - [] D -- C:\Users\Justine\AppData\Local\Diagnostics
O43 - CFD: 08/07/2014 - [0] D -- C:\Users\Justine\AppData\Local\ElevatedDiagnostics
O43 - CFD: 25/10/2015 - [] D -- C:\Users\Justine\AppData\Local\Google
O43 - CFD: 09/02/2011 - [0] SHD -- C:\Users\Justine\AppData\Local\Historique
O43 - CFD: 03/01/2013 - [] D -- C:\Users\Justine\AppData\Local\HP
O43 - CFD: 17/10/2014 - [] D -- C:\Users\Justine\AppData\Local\Microsoft
O43 - CFD: 03/05/2011 - [] D -- C:\Users\Justine\AppData\Local\Microsoft Help
O43 - CFD: 11/05/2012 - [] D -- C:\Users\Justine\AppData\Local\moovida Air  =>PUP.Optional.SPointer
O43 - CFD: 06/10/2013 - [] D -- C:\Users\Justine\AppData\Local\Mozilla
O43 - CFD: 11/11/2015 - [] D -- C:\Users\Justine\AppData\Local\Programs
O43 - CFD: 12/10/2012 - [] D -- C:\Users\Justine\AppData\Local\Savings Sidekick  =>PUP.Optional.GamePlayLabs
O43 - CFD: 16/12/2012 - [] D -- C:\Users\Justine\AppData\Local\Software  =>PUP.Optional.Boxore
O43 - CFD: 14/11/2015 - [] D -- C:\Users\Justine\AppData\Local\SWDS
O43 - CFD: 21/11/2015 - [] D -- C:\Users\Justine\AppData\Local\Temp
O43 - CFD: 09/02/2011 - [0] SHD -- C:\Users\Justine\AppData\Local\Temporary Internet Files
O43 - CFD: 07/04/2012 - [] D -- C:\Users\Justine\AppData\Local\VirtualStore
O43 - CFD: 21/06/2013 - [] D -- C:\Users\Justine\AppData\Local\Windows Live
O43 - CFD: 08/04/2012 - [0] D -- C:\Users\Justine\AppData\Local\WMTools Downloaded Files
O43 - CFD: 05/12/2012 - [0] D -- C:\Users\Justine\AppData\Local\{02ACCB7C-C58F-4BB7-9222-B8AF4B9DBACC}
O43 - CFD: 16/08/2012 - [0] D -- C:\Users\Justine\AppData\Local\{02E65DA0-BCC4-4A7D-9368-4ADE7A225C38}
O43 - CFD: 14/02/2013 - [0] D -- C:\Users\Justine\AppData\Local\{03D5524C-0FF2-4D24-8EBB-41DA679FC968}
O43 - CFD: 06/01/2012 - [0] D -- C:\Users\Justine\AppData\Local\{07994D72-AEEF-4FA9-9F6F-9ECFBC11C7B9}
O43 - CFD: 16/12/2012 - [0] D -- C:\Users\Justine\AppData\Local\{087D4B58-1985-43C5-BE66-60E630336DD4}
O43 - CFD: 15/09/2012 - [0] D -- C:\Users\Justine\AppData\Local\{08D40E09-8EA6-42CA-ABB5-F7FA50F74025}
O43 - CFD: 20/06/2013 - [0] D -- C:\Users\Justine\AppData\Local\{0A16B76D-C1C6-4067-90F0-E800B02F1B7B}
O43 - CFD: 04/11/2012 - [0] D -- C:\Users\Justine\AppData\Local\{0A984ECD-F510-4F0F-914C-341D6E291B7B}
O43 - CFD: 19/06/2013 - [0] D -- C:\Users\Justine\AppData\Local\{0AB5696F-9387-4707-BA29-2CA4B3588135}
O43 - CFD: 24/11/2012 - [0] D -- C:\Users\Justine\AppData\Local\{0ADEED19-4164-4177-A677-FD772697D7F7}
O43 - CFD: 30/06/2012 - [0] D -- C:\Users\Justine\AppData\Local\{0CDD76EA-14A6-4E15-9059-945F1778BB13}
O43 - CFD: 28/11/2012 - [0] D -- C:\Users\Justine\AppData\Local\{0D66682E-0799-471C-9D7B-7003F4164C57}
O43 - CFD: 10/11/2012 - [0] D -- C:\Users\Justine\AppData\Local\{0D8A9511-9489-4FE9-9391-78C0B3593E3D}
O43 - CFD: 30/06/2012 - [0] D -- C:\Users\Justine\AppData\Local\{0E47EDA9-5CB6-4B92-B62E-DAF0250EE683}
O43 - CFD: 12/12/2012 - [0] D -- C:\Users\Justine\AppData\Local\{0EFEE557-1D77-4322-AE09-C1ED01C30B55}
O43 - CFD: 15/10/2012 - [0] D -- C:\Users\Justine\AppData\Local\{101A8D29-68D2-44A2-9A39-94E2F6B9232C}
O43 - CFD: 23/05/2013 - [0] D -- C:\Users\Justine\AppData\Local\{10409C6A-629F-4E90-B71A-A0A8F47DA99A}
O43 - CFD: 13/09/2012 - [0] D -- C:\Users\Justine\AppData\Local\{10698D43-6250-4DCB-BED9-8CF79AC67CC4}
O43 - CFD: 22/09/2012 - [0] D -- C:\Users\Justine\AppData\Local\{10DBE52B-8960-4771-BF8D-6CE14A48A3C1}
O43 - CFD: 29/11/2012 - [0] D -- C:\Users\Justine\AppData\Local\{11B0CC20-8EA5-4D91-8CA9-1678C08EA9CC}
O43 - CFD: 04/09/2012 - [0] D -- C:\Users\Justine\AppData\Local\{123DF0AC-5601-4F24-91A5-CE1032666F5A}
O43 - CFD: 03/12/2012 - [0] D -- C:\Users\Justine\AppData\Local\{12DD6F30-B254-446A-8E4F-464878C690EB}
O43 - CFD: 21/09/2012 - [0] D -- C:\Users\Justine\AppData\Local\{1365177F-D817-4B8D-A15C-DF4C728B85D1}
O43 - CFD: 11/10/2012 - [0] D -- C:\Users\Justine\AppData\Local\{13941795-56A1-4B4F-8437-3046B8146ECE}
O43 - CFD: 17/10/2012 - [0] D -- C:\Users\Justine\AppData\Local\{149CA2F1-DE89-41AE-9D8E-0D18DD7AB7DE}
O43 - CFD: 31/08/2012 - [0] D -- C:\Users\Justine\AppData\Local\{159DCF92-7670-4DF0-B44C-134344DA455D}
O43 - CFD: 26/11/2012 - [0] D -- C:\Users\Justine\AppData\Local\{15F05674-4353-466D-9CA4-BBBFB27D97E6}
O43 - CFD: 16/09/2012 - [0] D -- C:\Users\Justine\AppData\Local\{16520D2F-2BE3-4BA6-AEE6-98D5FEEC336D}
O43 - CFD: 16/10/2012 - [0] D -- C:\Users\Justine\AppData\Local\{174E4AF3-CD84-4868-95DE-6E8D8338F83D}
O43 - CFD: 01/12/2012 - [0] D -- C:\Users\Justine\AppData\Local\{19357033-7582-4A7C-B9CF-908D5D6C8F1E}
O43 - CFD: 07/07/2012 - [0] D -- C:\Users\Justine\AppData\Local\{1A472FA7-5948-4477-80AF-5B74D92D2B1C}
O43 - CFD: 16/08/2012 - [0] D -- C:\Users\Justine\AppData\Local\{1AE3CE58-41D4-4185-81ED-76A1E74132BC}
O43 - CFD: 17/08/2012 - [0] D -- C:\Users\Justine\AppData\Local\{1B6AED9E-D16F-4206-B627-DBC64B3A0929}
O43 - CFD: 20/12/2012 - [0] D -- C:\Users\Justine\AppData\Local\{1CC0132A-1AFD-4F31-BD91-86609D589085}
O43 - CFD: 03/09/2012 - [0] D -- C:\Users\Justine\AppData\Local\{1DAC5ADD-9459-499D-B383-8E7060AF6971}
O43 - CFD: 26/11/2012 - [0] D -- C:\Users\Justine\AppData\Local\{1F6EE314-E236-422E-A34B-9727CB581FA2}
O43 - CFD: 12/06/2012 - [0] D -- C:\Users\Justine\AppData\Local\{210051EE-DA4D-450E-882B-1DC2B16647DC}
O43 - CFD: 20/12/2012 - [0] D -- C:\Users\Justine\AppData\Local\{21CA27AF-D039-4D1A-B087-8D35C17E9CA2}
O43 - CFD: 02/07/2012 - [0] D -- C:\Users\Justine\AppData\Local\{22BEC477-3C81-47F6-AC40-84AE2D0C05D8}
O43 - CFD: 07/02/2013 - [0] D -- C:\Users\Justine\AppData\Local\{2351082F-F778-457A-B3F0-88EBACD6579D}
O43 - CFD: 20/05/2013 - [0] D -- C:\Users\Justine\AppData\Local\{256412DB-4E96-4E2E-95EB-CA320E6485BF}
O43 - CFD: 26/11/2012 - [0] D -- C:\Users\Justine\AppData\Local\{2709F230-51C1-4515-9549-25F3CA8409CB}
O43 - CFD: 19/02/2013 - [0] D -- C:\Users\Justine\AppData\Local\{27867C30-DF56-4351-AFB4-9A8D0FB0DA6A}
O43 - CFD: 30/12/2012 - [0] D -- C:\Users\Justine\AppData\Local\{278E3860-A51B-41DC-A108-828E695F6C47}
O43 - CFD: 15/06/2012 - [0] D -- C:\Users\Justine\AppData\Local\{279622DE-6154-46A7-9112-3666784C2FF2}
O43 - CFD: 30/06/2012 - [0] D -- C:\Users\Justine\AppData\Local\{2BE87954-29F2-4BC1-8BA3-F875C9730E11}
O43 - CFD: 23/09/2012 - [0] D -- C:\Users\Justine\AppData\Local\{2E9C02EC-5130-4FA2-8D0A-063BDEAD21A7}
O43 - CFD: 24/04/2013 - [0] D -- C:\Users\Justine\AppData\Local\{2ECDAD26-AD4D-4BAA-B3B6-86757C59F86C}
O43 - CFD: 06/01/2012 - [0] D -- C:\Users\Justine\AppData\Local\{32934F1C-157E-4E50-ABD1-482638187DF2}
O43 - CFD: 27/11/2012 - [0] D -- C:\Users\Justine\AppData\Local\{337A3A93-F910-419C-9236-0BF26388B1F3}
O43 - CFD: 13/04/2013 - [0] D -- C:\Users\Justine\AppData\Local\{3436EFF1-EE6B-49CE-8960-1DE4231B2168}
O43 - CFD: 27/11/2012 - [0] D -- C:\Users\Justine\AppData\Local\{3481F1DA-1E43-4389-8BFD-88405D1982FA}
O43 - CFD: 05/06/2013 - [0] D -- C:\Users\Justine\AppData\Local\{34DFBE76-2B67-4B81-8F9D-08737904635C}
O43 - CFD: 14/09/2012 - [0] D -- C:\Users\Justine\AppData\Local\{351E0C8F-98D8-47AF-952F-CF48D27BCC7E}
O43 - CFD: 17/12/2012 - [0] D -- C:\Users\Justine\AppData\Local\{391A00E5-2849-4904-8A72-E17D272053AE}
O43 - CFD: 25/06/2012 - [0] D -- C:\Users\Justine\AppData\Local\{3D78821A-C900-4370-BBE3-B74627964830}
O43 - CFD: 04/12/2012 - [0] D -- C:\Users\Justine\AppData\Local\{3DD25BDD-FE63-4C5B-8C1C-207FFD7C1FB4}
O43 - CFD: 06/12/2012 - [0] D -- C:\Users\Justine\AppData\Local\{3E28B390-89BD-4969-A1AC-22FC39E882DE}
O43 - CFD: 25/10/2012 - [0] D -- C:\Users\Justine\AppData\Local\{3E30DA79-A633-4622-9A0C-B3334A5AE5DE}
O43 - CFD: 06/11/2012 - [0] D -- C:\Users\Justine\AppData\Local\{3E6B3EE9-FC6B-45B8-912C-EBEEECE3CF55}
O43 - CFD: 11/06/2012 - [0] D -- C:\Users\Justine\AppData\Local\{3E7511F1-7DD3-4511-9364-6681BF0FF1A3}
O43 - CFD: 26/08/2012 - [0] D -- C:\Users\Justine\AppData\Local\{3ECF2780-C340-4E85-8A69-6516AAC49CE4}
O43 - CFD: 12/12/2012 - [0] D -- C:\Users\Justine\AppData\Local\{3F8DC2E1-23EA-4E9E-AE15-961BD73AEF5A}
O43 - CFD: 14/11/2012 - [0] D -- C:\Users\Justine\AppData\Local\{400FDABF-CA23-4958-8E30-445119530429}
O43 - CFD: 26/02/2013 - [0] D -- C:\Users\Justine\AppData\Local\{4151D01C-15F7-433B-9456-F60DFB9F03AC}
O43 - CFD: 25/05/2013 - [0] D -- C:\Users\Justine\AppData\Local\{4290C52D-E681-480C-B7C9-C255F4DA6BF5}
O43 - CFD: 20/11/2012 - [0] D -- C:\Users\Justine\AppData\Local\{42F16630-DB8A-48FA-A62B-FBEE61C06853}
O43 - CFD: 14/11/2012 - [0] D -- C:\Users\Justine\AppData\Local\{42F4CB73-4D77-4C1F-9A05-D69D3D959B25}
O43 - CFD: 29/03/2011 - [0] D -- C:\Users\Justine\AppData\Local\{4451E7DA-15DE-464B-AD83-29E7CD344709}
O43 - CFD: 07/11/2012 - [0] D -- C:\Users\Justine\AppData\Local\{445BAFD0-B528-4312-B811-BE530172153E}
O43 - CFD: 21/06/2013 - [0] D -- C:\Users\Justine\AppData\Local\{45273931-6AD6-4947-AEBA-E09858EF15A7}
O43 - CFD: 10/12/2012 - [0] D -- C:\Users\Justine\AppData\Local\{469B73A4-5A64-4F09-B24D-F6A1FBB6385C}
O43 - CFD: 02/12/2012 - [0] D -- C:\Users\Justine\AppData\Local\{47C35BFB-EB06-4F5D-B7EA-7EF1903AA8A5}
O43 - CFD: 14/12/2012 - [0] D -- C:\Users\Justine\AppData\Local\{487C97A5-9486-4880-905E-25C6929C539B}
O43 - CFD: 18/07/2012 - [0] D -- C:\Users\Justine\AppData\Local\{488CC5F4-2560-479A-9B58-5FF58287ADCF}
O43 - CFD: 10/12/2012 - [0] D -- C:\Users\Justine\AppData\Local\{488E930A-7165-4BFE-B1CF-CC60C6465BC8}
O43 - CFD: 08/07/2012 - [0] D -- C:\Users\Justine\AppData\Local\{4922B0DE-70B4-4D27-A5E1-0EE1D6C13A67}
O43 - CFD: 31/05/2013 - [0] D -- C:\Users\Justine\AppData\Local\{49D808BC-1E94-4097-A647-B997BE152003}
O43 - CFD: 07/01/2013 - [0] D -- C:\Users\Justine\AppData\Local\{4C58F3E5-1276-4566-ACA5-315F98028D78}
O43 - CFD: 12/10/2012 - [0] D -- C:\Users\Justine\AppData\Local\{4CE830F1-A726-4591-8C30-1AD622D4AEC9}
O43 - CFD: 23/05/2013 - [0] D -- C:\Users\Justine\AppData\Local\{50E81F0F-5BE4-4668-B828-91DE56555716}
O43 - CFD: 24/10/2012 - [0] D -- C:\Users\Justine\AppData\Local\{50F39AB7-70C8-4694-8011-EAED0F56F1AE}
O43 - CFD: 25/11/2012 - [0] D -- C:\Users\Justine\AppData\Local\{50F727EB-8326-49B3-A4CD-69A3F310CB4F}
O43 - CFD: 04/09/2012 - [0] D -- C:\Users\Justine\AppData\Local\{510D2490-066F-43E9-8B92-AF75A595C778}
O43 - CFD: 29/08/2012 - [0] D -- C:\Users\Justine\AppData\Local\{512EE937-DA1F-42DC-B06A-344766B2FBD9}
O43 - CFD: 11/02/2013 - [0] D -- C:\Users\Justine\AppData\Local\{514A9630-8104-46D5-A8E1-5586E1F69387}
O43 - CFD: 26/01/2013 - [0] D -- C:\Users\Justine\AppData\Local\{549C7E51-EE84-4590-9C02-138FC62172B5}
O43 - CFD: 30/05/2013 - [0] D -- C:\Users\Justine\AppData\Local\{54B1642B-0813-4002-AED9-7D457B25BEF6}
O43 - CFD: 12/03/2013 - [0] D -- C:\Users\Justine\AppData\Local\{55093953-1893-40E8-9937-8AEAF3688676}
O43 - CFD: 20/11/2012 - [0] D -- C:\Users\Justine\AppData\Local\{5595828C-29B2-4A6F-981C-03093741E86D}
O43 - CFD: 29/11/2012 - [0] D -- C:\Users\Justine\AppData\Local\{55AC679F-91C8-4707-BA82-B5C16B9FE752}
O43 - CFD: 15/12/2012 - [0] D -- C:\Users\Justine\AppData\Local\{55BBF25D-9D9C-4A4E-9D47-F75112019CEA}
O43 - CFD: 03/11/2012 - [0] D -- C:\Users\Justine\AppData\Local\{5624EF06-C713-475A-B227-661C38DF5B31}
O43 - CFD: 16/11/2012 - [0] D -- C:\Users\Justine\AppData\Local\{56B68678-89DF-4287-9538-3E30F5966C88}
O43 - CFD: 10/08/2012 - [0] D -- C:\Users\Justine\AppData\Local\{57BE6086-14CF-4842-A1E9-22430DC5C7AF}
O43 - CFD: 16/06/2012 - [0] D -- C:\Users\Justine\AppData\Local\{5865C43A-E7F9-408B-B1A9-68B0C5BB3359}
O43 - CFD: 17/06/2012 - [0] D -- C:\Users\Justine\AppData\Local\{58B51F28-6C15-4E8A-8E22-B5929C96E019}
O43 - CFD: 22/04/2013 - [0] D -- C:\Users\Justine\AppData\Local\{591520B8-0559-45F9-84B0-C62E8F03F39A}
O43 - CFD: 29/12/2011 - [0] D -- C:\Users\Justine\AppData\Local\{5C07CA11-0179-4B11-8269-90231BF5C7B8}
O43 - CFD: 13/02/2013 - [0] D -- C:\Users\Justine\AppData\Local\{5D0A09E9-F925-4891-9C96-CE35E366A798}
O43 - CFD: 04/01/2013 - [0] D -- C:\Users\Justine\AppData\Local\{5F1F1B0A-3956-435E-8CBB-E1C4B1E8EA1A}
O43 - CFD: 23/11/2012 - [0] D -- C:\Users\Justine\AppData\Local\{5F597A4F-2035-4B9F-9C7C-0CAFE58528BF}
O43 - CFD: 22/06/2013 - [0] D -- C:\Users\Justine\AppData\Local\{60F58CBD-3B06-492D-A1CB-06802D56C4BC}
O43 - CFD: 17/09/2012 - [0] D -- C:\Users\Justine\AppData\Local\{63D093DA-FF1B-4E8D-82F2-68EC8F12BE29}
O43 - CFD: 30/05/2013 - [0] D -- C:\Users\Justine\AppData\Local\{6436F620-9B2B-4C77-B304-FC8980D9142C}
O43 - CFD: 12/02/2013 - [0] D -- C:\Users\Justine\AppData\Local\{64C3F315-786A-4A6A-86F2-F11FAE2FD118}
O43 - CFD: 29/08/2012 - [0] D -- C:\Users\Justine\AppData\Local\{6629CA7A-6FD0-432E-A69B-F733620C742E}
O43 - CFD: 21/11/2012 - [0] D -- C:\Users\Justine\AppData\Local\{677F5B94-75B4-42BA-97C3-EF6AAC50176D}
O43 - CFD: 17/06/2012 - [0] D -- C:\Users\Justine\AppData\Local\{6A8340D3-CCCD-4013-BF11-1E2DE06587E1}
O43 - CFD: 28/11/2012 - [0] D -- C:\Users\Justine\AppData\Local\{6B1C4A70-0690-4EA6-B94D-C82707F39B10}
O43 - CFD: 23/03/2013 - [0] D -- C:\Users\Justine\AppData\Local\{6B82BDA4-AEF5-44DA-9063-12F58FA390A7}
O43 - CFD: 02/12/2012 - [0] D -- C:\Users\Justine\AppData\Local\{6D222D5D-459B-4836-A76A-45B17A52ED87}
O43 - CFD: 26/12/2012 - [0] D -- C:\Users\Justine\AppData\Local\{6F4911CF-09D7-4C6D-A3FF-2285F0082580}
O43 - CFD: 17/08/2012 - [0] D -- C:\Users\Justine\AppData\Local\{70E27E5B-C41B-4B29-87DB-F33CE8123434}
O43 - CFD: 29/08/2012 - [0] D -- C:\Users\Justine\AppData\Local\{711ACDBA-3BBC-4C4A-9053-DC407426BD0C}
O43 - CFD: 25/09/2012 - [0] D -- C:\Users\Justine\AppData\Local\{71BCD63C-F8F6-4267-B047-45FFA7AC3258}
O43 - CFD: 08/11/2012 - [0] D -- C:\Users\Justine\AppData\Local\{71D17AB4-4819-409B-A038-1CAA7E645BA1}
O43 - CFD: 15/12/2012 - [0] D -- C:\Users\Justine\AppData\Local\{724C3B88-3B7C-4B66-984A-7A2C10409033}
O43 - CFD: 09/02/2011 - [0] D -- C:\Users\Justine\AppData\Local\{73436B49-DC47-4C94-A8F1-9D53B8651419}
O43 - CFD: 01/11/2012 - [0] D -- C:\Users\Justine\AppData\Local\{73EB47A5-5C23-402A-BAB0-D29BB7903EEE}
O43 - CFD: 04/10/2012 - [0] D -- C:\Users\Justine\AppData\Local\{741F8071-5353-4025-9076-F5C8698D016C}
O43 - CFD: 21/02/2013 - [0] D -- C:\Users\Justine\AppData\Local\{749883C3-1B0D-41A8-B0A2-49905E28B5E9}
O43 - CFD: 30/03/2013 - [0] D -- C:\Users\Justine\AppData\Local\{74B61EF2-6E04-4832-A734-2E2310CBB4AE}
O43 - CFD: 13/11/2012 - [0] D -- C:\Users\Justine\AppData\Local\{760F6D14-6588-47C0-BA41-9DAC81FB065F}
O43 - CFD: 08/10/2012 - [0] D -- C:\Users\Justine\AppData\Local\{77AECECB-03B3-46AF-A023-1CAB8B9A510B}
O43 - CFD: 13/12/2012 - [0] D -- C:\Users\Justine\AppData\Local\{780505C1-2D92-4DEE-82A8-B1DD0E6193B5}
O43 - CFD: 06/09/2012 - [0] D -- C:\Users\Justine\AppData\Local\{7CA6EC05-C143-4C44-8F82-FCC2E2BDE0DC}
O43 - CFD: 19/07/2012 - [0] D -- C:\Users\Justine\AppData\Local\{7D3AA41F-E093-4EC3-A99B-E8597234D4F8}
O43 - CFD: 17/11/2012 - [0] D -- C:\Users\Justine\AppData\Local\{7DA73881-BC01-4460-A917-212145A81706}
O43 - CFD: 10/09/2012 - [0] D -- C:\Users\Justine\AppData\Local\{7DC49234-AF4D-4265-8783-6B3AF5C62BA6}
O43 - CFD: 29/12/2012 - [0] D -- C:\Users\Justine\AppData\Local\{7E4A764F-32AA-4D33-9A49-A740E3D56996}
O43 - CFD: 05/03/2013 - [0] D -- C:\Users\Justine\AppData\Local\{7F0913BA-5ABE-4A8C-8661-59CA97C8C943}
O43 - CFD: 22/11/2012 - [0] D -- C:\Users\Justine\AppData\Local\{7F21104E-4E80-4059-A770-BB779F2A01A4}
O43 - CFD: 21/10/2012 - [0] D -- C:\Users\Justine\AppData\Local\{8016C3EB-8490-4FEF-AAAC-FFCD3FCBF0B3}
O43 - CFD: 19/11/2012 - [0] D -- C:\Users\Justine\AppData\Local\{811050F5-3E4F-466E-AA21-F140F81E82B6}
O43 - CFD: 30/01/2013 - [0] D -- C:\Users\Justine\AppData\Local\{84B50A81-6227-4D36-8E83-FB0FDAA0865A}
O43 - CFD: 01/02/2013 - [0] D -- C:\Users\Justine\AppData\Local\{86B85ACF-CF0E-46A1-A21F-F360A6637A61}
O43 - CFD: 18/10/2012 - [0] D -- C:\Users\Justine\AppData\Local\{8711D726-8BC7-4C7C-B2D3-ABB88EDF9B9A}
O43 - CFD: 14/06/2012 - [0] D -- C:\Users\Justine\AppData\Local\{872BF25B-22F0-4476-B4C9-84E6B5DEF2E3}
O43 - CFD: 13/10/2012 - [0] D -- C:\Users\Justine\AppData\Local\{87354C81-E606-4354-B679-30E55DFE077D}
O43 - CFD: 28/12/2012 - [0] D -- C:\Users\Justine\AppData\Local\{889F915A-948F-4670-ADEC-97B81904234D}
O43 - CFD: 12/09/2012 - [0] D -- C:\Users\Justine\AppData\Local\{8BDF1893-82AC-40A2-9444-18EA50A8F19E}
O43 - CFD: 07/03/2013 - [0] D -- C:\Users\Justine\AppData\Local\{8BEEF110-08E2-4C4A-AC21-E4427236571B}
O43 - CFD: 16/06/2012 - [0] D -- C:\Users\Justine\AppData\Local\{8C52B5C0-018B-415D-AF34-FC531063F0BB}
O43 - CFD: 13/12/2012 - [0] D -- C:\Users\Justine\AppData\Local\{8CABD53D-38F4-4B23-A5B4-5A71579DEDC3}
O43 - CFD: 09/02/2013 - [0] D -- C:\Users\Justine\AppData\Local\{8EF6B6AD-475F-4471-A7F2-2D27FC42A581}
O43 - CFD: 26/11/2012 - [0] D -- C:\Users\Justine\AppData\Local\{907172F2-AFA2-4C71-9C7F-078A22FE4CFE}
O43 - CFD: 14/12/2012 - [0] D -- C:\Users\Justine\AppData\Local\{90A030BD-0840-4B1A-9EB9-37A53E0C2EAD}
O43 - CFD: 28/12/2012 - [0] D -- C:\Users\Justine\AppData\Local\{911396BE-1098-4316-89EE-96A8098BEAC4}
O43 - CFD: 14/12/2012 - [0] D -- C:\Users\Justine\AppData\Local\{912A5E6C-0752-47DB-9CF1-8F3D69CAC25B}
O43 - CFD: 03/12/2012 - [0] D -- C:\Users\Justine\AppData\Local\{9150B9AA-FE52-4B62-BDF6-09268BFF2266}
O43 - CFD: 01/09/2012 - [0] D -- C:\Users\Justine\AppData\Local\{917F1551-8B83-49E7-A6F2-A266FDE7FBBA}
O43 - CFD: 13/08/2012 - [0] D -- C:\Users\Justine\AppData\Local\{919D647C-3A30-479C-AE10-E381952EDBB0}
O43 - CFD: 30/06/2012 - [0] D -- C:\Users\Justine\AppData\Local\{91EAAB58-C72D-414B-838E-84B0EAF5E22B}
O43 - CFD: 28/09/2012 - [0] D -- C:\Users\Justine\AppData\Local\{91F417E5-859F-43DF-A3BA-16542CE827BC}
O43 - CFD: 19/11/2012 - [0] D -- C:\Users\Justine\AppData\Local\{925EDF82-6061-4DCB-BD79-D8B2CE31285C}
O43 - CFD: 21/06/2012 - [0] D -- C:\Users\Justine\AppData\Local\{94DFF94E-5FD5-4621-AE5E-F1804654AFCA}
O43 - CFD: 26/11/2012 - [0] D -- C:\Users\Justine\AppData\Local\{978F0BF4-9200-43B5-96C9-75FD79253590}
O43 - CFD: 16/03/2013 - [0] D -- C:\Users\Justine\AppData\Local\{987933CE-2F3E-4150-AF95-2A9A41C6D813}
O43 - CFD: 20/09/2012 - [0] D -- C:\Users\Justine\AppData\Local\{9AD85F5E-2305-4D04-A508-F26D60C08D05}
O43 - CFD: 17/04/2013 - [0] D -- C:\Users\Justine\AppData\Local\{9EB1BD68-CAC7-4C3D-A2DA-7F405574B3C9}
O43 - CFD: 15/11/2012 - [0] D -- C:\Users\Justine\AppData\Local\{A11B29F3-A27E-4102-9545-F7F2DA0F9687}
O43 - CFD: 31/12/2012 - [0] D -- C:\Users\Justine\AppData\Local\{A2683A41-708F-4727-8C88-D5196E8335C8}
O43 - CFD: 01/10/2012 - [0] D -- C:\Users\Justine\AppData\Local\{A40DC131-25DB-4782-96C0-C066F93E8775}
O43 - CFD: 31/10/2012 - [0] D -- C:\Users\Justine\AppData\Local\{A7321EFD-445D-4397-9401-2A8B0E70E8FA}
O43 - CFD: 06/01/2013 - [0] D -- C:\Users\Justine\AppData\Local\{A84C3546-FAA1-4F3D-BA6D-730E5BC9CD5A}
O43 - CFD: 29/03/2011 - [0] D -- C:\Users\Justine\AppData\Local\{A88869E6-1D75-4F42-ACC5-3E3B70E163A3}
O43 - CFD: 21/06/2012 - [0] D -- C:\Users\Justine\AppData\Local\{A912E444-E252-4859-B0CF-FA36B1391499}
O43 - CFD: 21/11/2012 - [0] D -- C:\Users\Justine\AppData\Local\{A943399C-7B2B-467D-B4D0-A9176C0CF4C7}
O43 - CFD: 03/01/2013 - [0] D -- C:\Users\Justine\AppData\Local\{A997629A-142C-41E2-A02B-F15CEB54C26C}
O43 - CFD: 27/10/2012 - [0] D -- C:\Users\Justine\AppData\Local\{A9986D48-E28D-44EF-A02A-02DA975D2E40}
O43 - CFD: 20/06/2012 - [0] D -- C:\Users\Justine\AppData\Local\{AB53FA41-BAF0-4FB9-A521-3A621D0C00FC}
O43 - CFD: 02/06/2013 - [0] D -- C:\Users\Justine\AppData\Local\{ABC4264C-534D-43C4-97CF-E42AF42B85CA}
O43 - CFD: 30/09/2012 - [0] D -- C:\Users\Justine\AppData\Local\{AC74BFF5-40F4-4D57-98FD-C593E256D6ED}
O43 - CFD: 17/08/2012 - [0] D -- C:\Users\Justine\AppData\Local\{ACB15129-2A19-43AD-8534-97C0B4CD3DE1}
O43 - CFD: 17/03/2013 - [0] D -- C:\Users\Justine\AppData\Local\{AD2F0392-5C80-4234-91D9-B85D7FF8FACF}
O43 - CFD: 09/07/2012 - [0] D -- C:\Users\Justine\AppData\Local\{ADAFD186-0330-464A-901C-180AD7C6A908}
O43 - CFD: 05/12/2012 - [0] D -- C:\Users\Justine\AppData\Local\{AE4BE0D4-12C1-4E0B-B1E1-C3D0AB12BBC1}
O43 - CFD: 14/10/2012 - [0] D -- C:\Users\Justine\AppData\Local\{AE5D4E78-67B9-4B4A-A4D2-C7FB62D9448A}
O43 - CFD: 07/09/2012 - [0] D -- C:\Users\Justine\AppData\Local\{AEBFDD78-5F8C-4A0E-9FBD-A3E8D5816D39}
O43 - CFD: 07/02/2013 - [0] D -- C:\Users\Justine\AppData\Local\{B00F8D4C-3922-4A78-940A-487726CF1188}
O43 - CFD: 11/02/2013 - [0] D -- C:\Users\Justine\AppData\Local\{B0308D07-37EE-4F72-97ED-74F0AA8ABEB0}
O43 - CFD: 29/08/2012 - [0] D -- C:\Users\Justine\AppData\Local\{B1943604-FE8E-4868-9612-EDA5340F2320}
O43 - CFD: 27/04/2013 - [0] D -- C:\Users\Justine\AppData\Local\{B1EC9D1C-5CB7-4840-A248-4C88084580A7}
O43 - CFD: 19/12/2012 - [0] D -- C:\Users\Justine\AppData\Local\{B2279067-4DED-4EDF-8BBE-5FB9C38DC2D3}
O43 - CFD: 02/09/2012 - [0] D -- C:\Users\Justine\AppData\Local\{B22B3023-9AF6-4FA7-8EF7-178077664F09}
O43 - CFD: 16/07/2012 - [0] D -- C:\Users\Justine\AppData\Local\{B22E3B51-2B98-4D5E-8259-BC906BD25CE9}
O43 - CFD: 19/06/2012 - [0] D -- C:\Users\Justine\AppData\Local\{B2A8E679-9214-460D-B836-E7A28889B5EF}
O43 - CFD: 08/07/2012 - [0] D -- C:\Users\Justine\AppData\Local\{B2FC6BBF-BF54-4624-B2A8-01389EFBE82F}
O43 - CFD: 21/01/2013 - [0] D -- C:\Users\Justine\AppData\Local\{B334D2A6-F5CE-4D4B-8F2F-5A90325B01F2}
O43 - CFD: 26/10/2012 - [0] D -- C:\Users\Justine\AppData\Local\{B4C2EAAC-2DA0-4CEF-B705-E5396B40AB1D}
O43 - CFD: 07/01/2013 - [0] D -- C:\Users\Justine\AppData\Local\{B5101A22-3A90-49CE-9D9B-0E41BA98D9C5}
O43 - CFD: 13/06/2012 - [0] D -- C:\Users\Justine\AppData\Local\{B57E8467-FC7A-43A4-8195-340255D5CB42}
O43 - CFD: 05/02/2013 - [0] D -- C:\Users\Justine\AppData\Local\{B6119C94-ED67-4109-BEBD-434C3C2891F4}
O43 - CFD: 18/04/2013 - [0] D -- C:\Users\Justine\AppData\Local\{B613E08E-49D0-4763-9EB8-B644FC1A1D61}
O43 - CFD: 21/09/2012 - [0] D -- C:\Users\Justine\AppData\Local\{B7F97C07-443F-4C14-AACA-42EBEF8325B3}
O43 - CFD: 02/01/2013 - [0] D -- C:\Users\Justine\AppData\Local\{B80251F5-BD06-4E5A-AC71-2FE14E2EDA64}
O43 - CFD: 29/08/2012 - [0] D -- C:\Users\Justine\AppData\Local\{B8089276-A474-4C95-902C-4934769255FC}
O43 - CFD: 01/01/2013 - [0] D -- C:\Users\Justine\AppData\Local\{B8126735-056B-412B-9C4C-AA3F609F8D9D}
O43 - CFD: 21/05/2013 - [0] D -- C:\Users\Justine\AppData\Local\{B837EED3-9DAF-4AD6-978E-4E18E8ADFA25}
O43 - CFD: 18/09/2012 - [0] D -- C:\Users\Justine\AppData\Local\{B8D4E3BD-F745-4F7D-AA8E-02A05667C42E}
O43 - CFD: 29/11/2012 - [0] D -- C:\Users\Justine\AppData\Local\{B916829C-F0B2-4B2B-AD0A-26053750657E}
O43 - CFD: 26/08/2012 - [0] D -- C:\Users\Justine\AppData\Local\{B945D19F-1D82-4015-A28A-2B56810E60E7}
O43 - CFD: 13/11/2012 - [0] D -- C:\Users\Justine\AppData\Local\{BB0E007B-912A-41D3-98BF-E1BF7B32D4D5}
O43 - CFD: 17/08/2012 - [0] D -- C:\Users\Justine\AppData\Local\{BC9A75AE-304D-49ED-ABCE-C1F776E1D73C}
O43 - CFD: 29/10/2012 - [0] D -- C:\Users\Justine\AppData\Local\{BDD8B488-7E30-41E7-8F76-219FA37A37E2}
O43 - CFD: 12/11/2012 - [0] D -- C:\Users\Justine\AppData\Local\{BE40806D-2C2D-4601-8045-CF48C8DA6720}
O43 - CFD: 16/08/2012 - [0] D -- C:\Users\Justine\AppData\Local\{BEE3121C-AB02-46D0-8F8B-471A40C0B417}
O43 - CFD: 07/07/2012 - [0] D -- C:\Users\Justine\AppData\Local\{BF1BB993-7DFD-4157-99A0-5B2EBC5C1716}
O43 - CFD: 24/09/2012 - [0] D -- C:\Users\Justine\AppData\Local\{C1031A69-6924-4D9C-AEF8-82690A638C3A}
O43 - CFD: 11/01/2013 - [0] D -- C:\Users\Justine\AppData\Local\{C132A2FC-70F5-4813-9F4F-4FA12497E17C}
O43 - CFD: 02/01/2013 - [0] D -- C:\Users\Justine\AppData\Local\{C261DE60-C126-45B0-94E7-D40D9561C4C8}
O43 - CFD: 29/09/2012 - [0] D -- C:\Users\Justine\AppData\Local\{C3185238-DF03-42FB-84DD-34CF560E9ED2}
O43 - CFD: 23/06/2013 - [0] D -- C:\Users\Justine\AppData\Local\{C3F2E77D-6F08-42E1-A112-09B168AEC4EA}
O43 - CFD: 16/08/2012 - [0] D -- C:\Users\Justine\AppData\Local\{C41D27BD-5DF4-49B9-8DC2-295BAC40C7FB}
O43 - CFD: 04/01/2013 - [0] D -- C:\Users\Justine\AppData\Local\{C4DD31F2-E664-47B9-9E58-4AB417437112}
O43 - CFD: 09/10/2012 - [0] D -- C:\Users\Justine\AppData\Local\{C530E4CD-8474-4850-A5C6-91C99CE5612F}
O43 - CFD: 07/10/2012 - [0] D -- C:\Users\Justine\AppData\Local\{C8B76C7B-62B2-498E-98B6-BE68BAFC4D32}
O43 - CFD: 27/06/2012 - [0] D -- C:\Users\Justine\AppData\Local\{CA78FD08-E293-49A4-BA81-CF5B0B087DCA}
O43 - CFD: 23/11/2012 - [0] D -- C:\Users\Justine\AppData\Local\{CD1115E6-7066-4C68-8EDB-97E460A4B41F}
O43 - CFD: 08/01/2013 - [0] D -- C:\Users\Justine\AppData\Local\{CD53CEF3-9A54-40FD-9DB8-24C448F38679}
O43 - CFD: 30/08/2012 - [0] D -- C:\Users\Justine\AppData\Local\{CFB6004E-1381-4AE4-9A53-4C22A78E7E01}
O43 - CFD: 10/10/2012 - [0] D -- C:\Users\Justine\AppData\Local\{CFFDCB96-C3B5-41C0-A41E-900471FA936A}
O43 - CFD: 09/03/2013 - [0] D -- C:\Users\Justine\AppData\Local\{D0FB0D39-C6C1-4642-A70B-78A09427E3EE}
O43 - CFD: 04/06/2013 - [0] D -- C:\Users\Justine\AppData\Local\{D22F17CC-4CEB-48DC-8F1D-D87C6F5EAB18}
O43 - CFD: 05/10/2012 - [0] D -- C:\Users\Justine\AppData\Local\{D46F705E-1C74-4882-953F-6A0C1E9A0606}
O43 - CFD: 30/11/2012 - [0] D -- C:\Users\Justine\AppData\Local\{D4F9A367-47EC-4843-B9F6-E19C48302B44}
O43 - CFD: 26/06/2012 - [0] D -- C:\Users\Justine\AppData\Local\{D544C175-0AA5-4577-8596-52692B7263E3}
O43 - CFD: 06/02/2013 - [0] D -- C:\Users\Justine\AppData\Local\{D6437BE4-D013-41FB-887A-03D06E076931}
O43 - CFD: 27/11/2012 - [0] D -- C:\Users\Justine\AppData\Local\{D7437C8E-62AA-422E-84AD-2B33F2A22724}
O43 - CFD: 20/09/2012 - [0] D -- C:\Users\Justine\AppData\Local\{D7650524-EF3A-4258-B58B-A1A21BF3B9C0}
O43 - CFD: 04/11/2012 - [0] D -- C:\Users\Justine\AppData\Local\{D87EF4CC-BB9E-45CF-9581-47FD7384ED7C}
O43 - CFD: 30/10/2012 - [0] D -- C:\Users\Justine\AppData\Local\{D8ED51E3-39D5-48CE-84D1-874685CAA300}
O43 - CFD: 18/06/2012 - [0] D -- C:\Users\Justine\AppData\Local\{DB115ABC-44ED-4A25-ADA8-31022A23F306}
O43 - CFD: 11/09/2012 - [0] D -- C:\Users\Justine\AppData\Local\{DC5E5DFE-B905-4016-817B-20AB93F2C292}
O43 - CFD: 09/10/2012 - [0] D -- C:\Users\Justine\AppData\Local\{DC6BBD08-BB2F-4D64-B063-585DAD77A8B7}
O43 - CFD: 21/11/2012 - [0] D -- C:\Users\Justine\AppData\Local\{DC753823-8CE8-470E-BA46-13B7B47B2FE4}
O43 - CFD: 29/08/2012 - [0] D -- C:\Users\Justine\AppData\Local\{DC77B153-76D1-497B-ACBE-0D62854D35B4}
O43 - CFD: 15/10/2012 - [0] D -- C:\Users\Justine\AppData\Local\{DCB4A81C-EBF0-4B5D-8A54-0475F3B0A787}
O43 - CFD: 18/02/2013 - [0] D -- C:\Users\Justine\AppData\Local\{DDBCE071-54C7-40BA-904D-8EA210FAD823}
O43 - CFD: 02/11/2012 - [0] D -- C:\Users\Justine\AppData\Local\{DE333C39-29CB-4495-81E4-4DBD404F6064}
O43 - CFD: 20/11/2012 - [0] D -- C:\Users\Justine\AppData\Local\{DFF7CDA0-78D1-464F-9E0F-BF70B47A6132}
O43 - CFD: 22/02/2013 - [0] D -- C:\Users\Justine\AppData\Local\{E1F231B0-B186-42B9-8CEA-4DF30AB3FBF4}
O43 - CFD: 09/11/2012 - [0] D -- C:\Users\Justine\AppData\Local\{E25B02BF-381E-41FB-8F65-A03A4ED9A4FA}
O43 - CFD: 20/10/2012 - [0] D -- C:\Users\Justine\AppData\Local\{E353B210-A961-45B1-8720-235F499B0365}
O43 - CFD: 31/01/2013 - [0] D -- C:\Users\Justine\AppData\Local\{E35B3356-8A1B-40EB-A3EB-38839CBA78FA}
O43 - CFD: 13/08/2012 - [0] D -- C:\Users\Justine\AppData\Local\{E368D892-232D-40CA-8F7F-5D2C0AE41D30}
O43 - CFD: 06/12/2012 - [0] D -- C:\Users\Justine\AppData\Local\{E3D6E22C-F8D9-4A06-B7A7-17EC61C89915}
O43 - CFD: 04/12/2012 - [0] D -- C:\Users\Justine\AppData\Local\{E53BA753-A4CB-4342-8EF3-CC058485696F}
O43 - CFD: 13/08/2012 - [0] D -- C:\Users\Justine\AppData\Local\{E5AB4AF8-0844-4FF9-ABA7-E26250EA319A}
O43 - CFD: 12/01/2013 - [0] D -- C:\Users\Justine\AppData\Local\{E6480176-58C2-4C45-963B-ED4D543F4691}
O43 - CFD: 27/12/2012 - [0] D -- C:\Users\Justine\AppData\Local\{E7624E80-8EB7-4CD7-AB9A-31E5F1894AAE}
O43 - CFD: 26/09/2012 - [0] D -- C:\Users\Justine\AppData\Local\{E80B3012-DB40-47CC-85AB-DD64FB0B42E2}
O43 - CFD: 13/08/2012 - [0] D -- C:\Users\Justine\AppData\Local\{E81516F7-9C36-4C15-B400-A639223A380C}
O43 - CFD: 03/06/2013 - [0] D -- C:\Users\Justine\AppData\Local\{EA6D02CF-24FA-4FFA-97C5-0E91528D7D11}
O43 - CFD: 03/07/2012 - [0] D -- C:\Users\Justine\AppData\Local\{EB4FF5B8-99BE-4DB6-90DF-1F1C8EC24CF9}
O43 - CFD: 08/02/2013 - [0] D -- C:\Users\Justine\AppData\Local\{EB8E5F22-6A11-45CD-93C3-BF8C5071BD7C}
O43 - CFD: 23/11/2012 - [0] D -- C:\Users\Justine\AppData\Local\{EDD85866-9AD0-4674-BB8A-CE5DF1ED38D5}
O43 - CFD: 30/01/2013 - [0] D -- C:\Users\Justine\AppData\Local\{EE1E52C6-59E3-4EBE-A2C1-890777D7D49A}
O43 - CFD: 29/06/2012 - [0] D -- C:\Users\Justine\AppData\Local\{EF16AEAA-38BD-487F-80E0-67E4879DE26B}
O43 - CFD: 25/11/2012 - [0] D -- C:\Users\Justine\AppData\Local\{EF1992E5-649C-4609-ADCA-8657D5E8EA52}
O43 - CFD: 15/10/2012 - [0] D -- C:\Users\Justine\AppData\Local\{F14DD59F-FA25-4D55-8E96-66F1A4ECE0E8}
O43 - CFD: 19/09/2012 - [0] D -- C:\Users\Justine\AppData\Local\{F224331D-1B3A-4613-BDC8-0EFBC239EC1D}
O43 - CFD: 27/10/2012 - [0] D -- C:\Users\Justine\AppData\Local\{F2C3862E-8A46-4F9C-B54F-8C79A95DA90F}
O43 - CFD: 03/07/2012 - [0] D -- C:\Users\Justine\AppData\Local\{F2E5EAE7-D98B-4126-899A-41DF5E5C8A4F}
O43 - CFD: 18/11/2012 - [0] D -- C:\Users\Justine\AppData\Local\{F3399AC1-674A-4CC3-8EBA-21A0E814C08E}
O43 - CFD: 28/08/2012 - [0] D -- C:\Users\Justine\AppData\Local\{F3A7997A-EE3D-47A2-AAC2-3B615B345935}
O43 - CFD: 07/11/2012 - [0] D -- C:\Users\Justine\AppData\Local\{F4165A91-D41E-4AF1-97E1-D71041441F2C}
O43 - CFD: 20/01/2013 - [0] D -- C:\Users\Justine\AppData\Local\{F49356BB-03AF-49BF-9DD3-8381AFA3AD93}
O43 - CFD: 04/09/2012 - [0] D -- C:\Users\Justine\AppData\Local\{F5631C8D-CF70-48E0-865B-22A389FB045C}
O43 - CFD: 25/02/2013 - [0] D -- C:\Users\Justine\AppData\Local\{F7841138-B0F1-4236-9C5C-F4F8AD45DD2D}
O43 - CFD: 07/12/2012 - [0] D -- C:\Users\Justine\AppData\Local\{F867825A-87FA-4917-920C-056AB275E090}
O43 - CFD: 28/08/2012 - [0] D -- C:\Users\Justine\AppData\Local\{F9FDD4CB-E5B5-421C-97AB-ACC4C3CAA916}
O43 - CFD: 28/05/2013 - [0] D -- C:\Users\Justine\AppData\Local\{FC818D1F-1BB1-4EF4-AD10-481230EC3507}
O43 - CFD: 03/10/2012 - [0] D -- C:\Users\Justine\AppData\Local\{FCF1F5B5-BD3E-4B80-BAB9-74DFA7A4F609}
O43 - CFD: 18/06/2013 - [0] D -- C:\Users\Justine\AppData\Local\{FCF637A6-307B-42FD-824D-9D219FE4D5C2}
O43 - CFD: 14/02/2013 - [0] D -- C:\Users\Justine\AppData\Local\{FD1FAFD8-EC8D-4308-8DFD-A5F780E59789}
O43 - CFD: 28/10/2012 - [0] D -- C:\Users\Justine\AppData\Local\{FE245895-B362-4711-BBFC-A0035B6D5AB9}
O43 - CFD: 10/08/2012 - [0] D -- C:\Users\Justine\AppData\Local\{FE619973-7BD1-491F-98FB-E173F32EB722}
O43 - CFD: 22/05/2013 - [0] D -- C:\Users\Justine\AppData\Local\{FE836966-CE72-418E-A2EB-E5E668369F24}
O43 - CFD: 28/06/2012 - [0] D -- C:\Users\Justine\AppData\Local\{FEA0D2F0-34CC-4CA6-BC68-AB6E6714F20E}
O43 - CFD: 05/12/2012 - [0] D -- C:\Users\Justine\AppData\Local\{FED1E439-7281-4423-B327-754ABDC6043B}
O43 - CFD: 26/12/2012 - [0] D -- C:\Users\Justine\AppData\Local\{FF0C3EEF-7B9B-4432-9E35-426A7F05618D}
O43 - CFD: 14/07/2009 - [] RD -- C:\Users\Justine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 13/08/2012 - [] RD -- C:\Users\Justine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 01/11/2015 - [0] D -- C:\Users\Justine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BD Accuri
O43 - CFD: 26/12/2011 - [] D -- C:\Users\Justine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
O43 - CFD: 14/07/2009 - [] RD -- C:\Users\Justine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 17/10/2014 - [] RD -- C:\Users\Justine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup

---\\ ShellIconOverlayIdentifiers (SIOI) (8) - 0s
O106 - SIOI: Enhanced Storage Icon Overlay Handler Class [EnhancedStorageShell] - {D9144DCD-E998-4ECA-AB6A-DCD83CCBA16D}. (.Microsoft Corporation - DLL d’extension d’environnement de stockage.) -- C:\Windows\System32\EhStorShell.dll ©
O106 - SIOI: Groove Explorer Icon Overlay 1 (GFS Unread Stub) [Groove Explorer Icon Overlay 1 (GFS Unread Stub)] - {99FD978C-D287-4F50-827F-B2C658EDA8E7}. (.Microsoft Corporation - GrooveShellExtensions Module.) -- C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll ©
O106 - SIOI: Groove Explorer Icon Overlay 2 (GFS Stub) [Groove Explorer Icon Overlay 2 (GFS Stub)] - {AB5C5600-7E6E-4B06-9197-9ECEF74D31CC}. (.Microsoft Corporation - GrooveShellExtensions Module.) -- C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll ©
O106 - SIOI: Groove Explorer Icon Overlay 2.5 (GFS Unread Folder) [Groove Explorer Icon Overlay 2.5 (GFS Unread Folder)] - {920E6DB1-9907-4370-B3A0-BAFC03D81399}. (.Microsoft Corporation - GrooveShellExtensions Module.) -- C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll ©
O106 - SIOI: Groove Explorer Icon Overlay 3 (GFS Folder) [Groove Explorer Icon Overlay 3 (GFS Folder)] - {16F3DD56-1AF5-4347-846D-7C10C4192619}. (.Microsoft Corporation - GrooveShellExtensions Module.) -- C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll ©
O106 - SIOI: Groove Explorer Icon Overlay 4 (GFS Unread Mark) [Groove Explorer Icon Overlay 4 (GFS Unread Mark)] - {2916C86E-86A6-43FE-8112-43ABE6BF8DCC}. (.Microsoft Corporation - GrooveShellExtensions Module.) -- C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll ©
O106 - SIOI:  [Offline Files] - {4E77131D-3629-431c-9818-C5679DC83E81}. (.Microsoft Corporation - IU de cache côté client.) -- C:\Windows\System32\cscui.dll ©
O106 - SIOI: Sharing Overlay (Private) [SharingPrivate] - {08244EE6-92F0-47f2-9FC9-929BAA2E7235}. (.Microsoft Corporation - Extensions de l’interpréteur de commandes p.) -- C:\Windows\System32\ntshrui.dll ©

---\\ Liste des pilotes du système (73) - 3s
O58 - SDL:2009/07/14 02:26:15 A . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\System32\drivers\adp94xx.sys   [422976] ©
O58 - SDL:2009/07/14 02:26:17 A . (.Adaptec, Inc. - Adaptec Windows SATA Storport Driver.) -- C:\Windows\System32\drivers\adpahci.sys   [297552] ©
O58 - SDL:2009/07/14 02:26:15 A . (.Adaptec, Inc. - Adaptec StorPort Ultra320 SCSI Driver.) -- C:\Windows\System32\drivers\adpu320.sys   [146512] ©
O58 - SDL:2009/07/14 02:26:15 A . (.Acer Laboratories Inc. - ALi mini IDE Driver.) -- C:\Windows\System32\drivers\aliide.sys   [14400] ©
O58 - SDL:2011/03/11 06:43:46 A . (.Advanced Micro Devices - AHCI 1.2 Device Driver.) -- C:\Windows\System32\drivers\amdsata.sys   [80256] ©
O58 - SDL:2009/07/14 02:26:15 A . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller D.) -- C:\Windows\System32\drivers\amdsbs.sys   [159312] ©
O58 - SDL:2011/03/11 06:43:46 A . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\Windows\System32\drivers\amdxata.sys   [22400] ©
O58 - SDL:2009/07/14 02:26:15 A . (.Adaptec, Inc. - Adaptec RAID Storport Driver.) -- C:\Windows\System32\drivers\arc.sys   [76368] ©
O58 - SDL:2009/07/14 02:26:15 A . (.Adaptec, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\System32\drivers\arcsas.sys   [86608] ©
O58 - SDL:2009/10/05 16:31:50 A . (.Atheros Communications, Inc. - Atheros Extensible Wireless LAN device driv.) -- C:\Windows\System32\drivers\athr.sys   [1221632] ©
O58 - SDL:2007/07/31 02:39:00 A . (.ATK0100 - ATK0100 ACPI Utility.) -- C:\Windows\System32\drivers\ATKACPI.sys   [7680]
O58 - SDL:2015/10/27 20:30:29 A . (.Avira Operations GmbH & Co. KG - Avira Minifilter Driver.) -- C:\Windows\System32\drivers\avgntflt.sys   [108448] ©
O58 - SDL:2015/10/25 12:19:00 A . (.Avira Operations GmbH & Co. KG - Avira Driver for Security Enhancement.) -- C:\Windows\System32\drivers\avipbb.sys   [136728] ©
O58 - SDL:2013/12/18 10:19:24 A . (.Avira Operations GmbH & Co. KG - Avira Manager Driver.) -- C:\Windows\System32\drivers\avkmgr.sys   [37352] ©
O58 - SDL:2015/10/27 20:30:29 A . (.Avira Operations GmbH & Co. KG - Avira WFP Network Driver.) -- C:\Windows\System32\drivers\avnetflt.sys   [55912] ©
O58 - SDL:2009/07/13 23:02:49 A . (.Broadcom Corporation - Pilote unifié NDIS6.x Broadcom NetXtreme Gi.) -- C:\Windows\System32\drivers\b57nd60x.sys   [229888] ©
O58 - SDL:2009/07/13 23:53:28 A . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Lower.) -- C:\Windows\System32\drivers\BrFiltLo.sys   [13568] ©
O58 - SDL:2009/07/13 23:53:28 A . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Upper.) -- C:\Windows\System32\drivers\BrFiltUp.sys   [5248] ©
O58 - SDL:2009/07/14 01:57:25 A . (.Brother Industries Ltd. - Pilote Brother Série I/F (WDM).) -- C:\Windows\System32\drivers\BrSerId.sys   [272128] ©
O58 - SDL:2009/07/13 23:53:32 A . (.Brother Industries Ltd. - Brother Serial driver (WDM version).) -- C:\Windows\System32\drivers\BrSerWdm.sys   [62336] ©
O58 - SDL:2009/07/13 23:53:33 A . (.Brother Industries Ltd. - Brother USB MDM Driver.) -- C:\Windows\System32\drivers\BrUsbMdm.sys   [12160] ©
O58 - SDL:2009/07/13 23:53:33 A . (.Brother Industries Ltd. - Brother USB Serial Driver.) -- C:\Windows\System32\drivers\BrUsbSer.sys   [11904] ©
O58 - SDL:2009/07/13 23:02:48 A . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\Windows\System32\drivers\bxvbdx.sys   [430080] ©
O58 - SDL:2009/07/14 02:26:21 A . (.CMD Technology, Inc. - CMD PCI IDE Bus Driver.) -- C:\Windows\System32\drivers\cmdide.sys   [15952] ©
O58 - SDL:2009/07/14 02:20:28 A . (.Adaptec, Inc. - Adaptec Ultra SCSI miniport.) -- C:\Windows\System32\drivers\djsvs.sys   [70720] ©
O58 - SDL:2009/07/14 02:20:28 A . (.Emulex - Storport Miniport Driver for LightPulse HBA.) -- C:\Windows\System32\drivers\elxstor.sys   [453712] ©
O58 - SDL:2009/07/13 23:02:48 A . (.Broadcom Corporation - Broadcom NetXtreme II 10 GigE VBD.) -- C:\Windows\System32\drivers\evbdx.sys   [3100160] ©
O58 - SDL:2009/07/13 23:54:14 A . (.Hauppauge Computer Works, Inc. - Hauppauge WinTV 885 Consumer IR Driver for.) -- C:\Windows\System32\drivers\hcw85cir.sys   [26624] ©
O58 - SDL:2009/07/14 02:20:28 A . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Drive.) -- C:\Windows\System32\drivers\HpSAMD.sys   [67152] ©
O58 - SDL:2011/03/11 06:43:55 A . (.Intel Corporation - Intel Matrix Storage Manager driver - ia32.) -- C:\Windows\System32\drivers\iaStorV.sys   [332160] ©
O58 - SDL:2009/07/14 02:20:36 A . (.Intel Corp./ICP vortex GmbH - Intel/ICP Raid Storport Driver.) -- C:\Windows\System32\drivers\iirsp.sys   [41040] ©
O58 - SDL:2009/07/14 02:20:36 A . (.LSI Corporation - LSI Fusion-MPT FC Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_fc.sys   [95824] ©
O58 - SDL:2009/07/14 02:20:37 A . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas.sys   [89168] ©
O58 - SDL:2009/07/14 02:20:36 A . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas2.sys   [54864] ©
O58 - SDL:2009/07/14 02:20:36 A . (.LSI Corporation - LSI Fusion-MPT SCSI Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_scsi.sys   [96848] ©
O58 - SDL:2015/10/05 09:50:04 A . (.Malwarebytes - Malwarebytes Anti-Malware.) -- C:\Windows\System32\drivers\mbam.sys   [23256] ©
O58 - SDL:2015/10/05 09:50:08 A . (.Malwarebytes - Malwarebytes Chameleon Protection Driver.) -- C:\Windows\System32\drivers\mbamchameleon.sys   [94936] ©
O58 - SDL:2015/11/13 00:06:38 A . (.Malwarebytes - Malwarebytes Anti-Malware.) -- C:\Windows\System32\drivers\MBAMSwissArmy.sys   [170200] ©
O58 - SDL:2009/07/14 02:20:36 A . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows.) -- C:\Windows\System32\drivers\megasas.sys   [30800] ©
O58 - SDL:2009/07/14 02:20:36 A . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\Windows\System32\drivers\MegaSR.sys   [235584] ©
O58 - SDL:2015/10/05 09:50:16 A . (.Malwarebytes Corporation - Malwarebytes Web Access Control.) -- C:\Windows\System32\drivers\mwac.sys   [51928] ©
O58 - SDL:2009/07/14 02:20:44 A . (.IBM Corporation - IBM ServeRAID Controller Driver.) -- C:\Windows\System32\drivers\nfrd960.sys   [44624] ©
O58 - SDL:2010/07/09 23:37:00 A . (.NVIDIA Corporation - NVIDIA Windows Kernel Mode Driver, Version.) -- C:\Windows\System32\drivers\nvlddmkm.sys   [11008040] ©
O58 - SDL:2011/03/11 06:44:01 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\Windows\System32\drivers\nvraid.sys   [117120] ©
O58 - SDL:2011/03/11 06:44:01 A . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\Windows\System32\drivers\nvstor.sys   [143744] ©
O58 - SDL:2009/07/14 02:19:04 A . (.QLogic Corporation - QLogic Fibre Channel Stor Miniport Driver.) -- C:\Windows\System32\drivers\ql2300.sys   [1383488] ©
O58 - SDL:2009/07/14 02:19:04 A . (.QLogic Corporation - QLogic iSCSI Storport Miniport Driver.) -- C:\Windows\System32\drivers\ql40xx.sys   [106064] ©
O58 - SDL:2009/06/25 16:58:10 A . (.REDC - RICOH SD/MMC Driver.) -- C:\Windows\System32\drivers\rimmptsk.sys   [48128] ©
O58 - SDL:2009/06/25 16:10:48 A . (.REDC - RICOH MS Driver.) -- C:\Windows\System32\drivers\rimsptsk.sys   [44544] ©
O58 - SDL:2009/06/25 16:25:58 A . (.REDC - RICOH XD SM Driver.) -- C:\Windows\System32\drivers\rixdptsk.sys   [38400] ©
O58 - SDL:2009/07/13 21:50:20 A . (.Macrovision Corporation, Macrovision Europe Limited, - Macrovision SECURITY Driver.) -- C:\Windows\System32\drivers\secdrv.sys   [20480] ©
O58 - SDL:2009/07/13 23:02:53 A . (.Silicon Integrated Systems Corp. - NDIS 6.0 Miniport Driver for SiS191/SiS190.) -- C:\Windows\System32\drivers\SiSGB6.sys   [48128] ©
O58 - SDL:2009/07/14 02:19:04 A . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\Windows\System32\drivers\sisraid2.sys   [40016] ©
O58 - SDL:2009/07/14 02:19:04 A . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\System32\drivers\sisraid4.sys   [77888] ©
O58 - SDL:2015/10/25 12:19:00 A . (.Avira Operations GmbH & Co. KG - AVIRA SnapShot Driver.) -- C:\Windows\System32\drivers\ssmdrv.sys   [31848] ©
O58 - SDL:2009/07/14 02:19:04 A . (.Promise Technology - Promise  SuperTrak EX Series Driver for Win.) -- C:\Windows\System32\drivers\stexstor.sys   [21072] ©
O58 - SDL:2009/07/14 02:19:10 A . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\Windows\System32\drivers\viaide.sys   [16976] ©
O58 - SDL:2009/07/14 02:19:11 A . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\Windows\System32\drivers\vsmraid.sys   [141904] ©
O58 - SDL:2009/07/13 22:40:41 A . (...) -- C:\Windows\System32\ANSI.SYS   [9029]
O58 - SDL:2009/07/13 22:40:44 A . (...) -- C:\Windows\System32\country.sys   [27097]
O58 - SDL:2009/07/13 22:40:40 A . (...) -- C:\Windows\System32\HIMEM.SYS   [4768]
O58 - SDL:2009/07/13 22:40:43 A . (...) -- C:\Windows\System32\KEY01.SYS   [42809]
O58 - SDL:2009/07/13 22:40:43 A . (...) -- C:\Windows\System32\KEYBOARD.SYS   [42537]
O58 - SDL:2009/07/13 22:40:23 A . (...) -- C:\Windows\System32\NTDOS.SYS   [27866]
O58 - SDL:2009/07/13 22:40:31 A . (...) -- C:\Windows\System32\NTDOS404.SYS   [29146]
O58 - SDL:2009/07/13 22:40:35 A . (...) -- C:\Windows\System32\NTDOS411.SYS   [29370]
O58 - SDL:2009/07/13 22:40:39 A . (...) -- C:\Windows\System32\NTDOS412.SYS   [29274]
O58 - SDL:2009/07/13 22:40:27 A . (...) -- C:\Windows\System32\NTDOS804.SYS   [29146]
O58 - SDL:2009/07/13 22:40:11 A . (...) -- C:\Windows\System32\NTIO.SYS   [33952]
O58 - SDL:2009/07/13 22:40:15 A . (...) -- C:\Windows\System32\NTIO404.SYS   [34672]
O58 - SDL:2009/07/13 22:40:17 A . (...) -- C:\Windows\System32\NTIO411.SYS   [35776]
O58 - SDL:2009/07/13 22:40:19 A . (...) -- C:\Windows\System32\NTIO412.SYS   [35536]
O58 - SDL:2009/07/13 22:40:13 A . (...) -- C:\Windows\System32\NTIO804.SYS   [34672]

---\\ Derniers fichiers modifiés ou crées (Utilisateur) (3) - 4s
O61 - LFC: 2015/11/19 10:13:26 A . (..) -- C:\Users\Justine\AppData\LocalLow\SkwConfig.bin   [18688]
O61 - LFC: 2015/11/21 12:08:27 A . (..) -- C:\Users\Justine\AppData\Local\SWDS\SWDS.bin   [6980]
O61 - LFC: 2015/11/21 11:54:03 A . (..) -- C:\Users\Justine\AppData\Local\Google\Chrome\User Data\ev_hashes_whitelist.bin   [674082]

---\\ Associations Shell Spawning (10) - 0s
O67 - Shell Spawning: <.bat> <batfile>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl> <cplfile>[HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe ©
O67 - Shell Spawning: <.cmd> <cmdfile>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com> <comfile>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.evt> <evtfile>[HKLM\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Ob.) -- C:\Windows\System32\eventvwr.exe ©
O67 - Shell Spawning: <.exe> <exefile>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html> <ChromeHTML>[HKLM\..\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe ©
O67 - Shell Spawning: <.js> <JSFile>[HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\wscript.exe ©
O67 - Shell Spawning: <.reg> <regfile>[HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe ©
O67 - Shell Spawning: <.scr> <scrfile>[HKLM\..\open\Command] (...) -- "%1" /S

---\\ Menu de démarrage Internet (10) - 0s
O68 - StartMenuInternet: <Google Chrome> <Google Chrome>[HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe  ©
O68 - StartMenuInternet: <FIREFOX.EXE> <Mozilla Firefox>[HKLM\..\InstallInfo\ShowIconsCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files\Mozilla Firefox\uninstall\helper.exe ©
O68 - StartMenuInternet: <Google Chrome> <Google Chrome>[HKLM\..\InstallInfo\ShowIconsCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe ©
O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\InstallInfo\ShowIconsCommand] (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe ©
O68 - StartMenuInternet: <FIREFOX.EXE> <Mozilla Firefox>[HKLM\..\InstallInfo\ReinstallCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files\Mozilla Firefox\uninstall\helper.exe ©
O68 - StartMenuInternet: <Google Chrome> <Google Chrome>[HKLM\..\InstallInfo\ReinstallCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe ©
O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\InstallInfo\ReinstallCommand] (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe ©
O68 - StartMenuInternet: <FIREFOX.EXE> <Mozilla Firefox>[HKLM\..\InstallInfo\HideIconsCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files\Mozilla Firefox\uninstall\helper.exe ©
O68 - StartMenuInternet: <Google Chrome> <Google Chrome>[HKLM\..\InstallInfo\HideIconsCommand] (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe ©
O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\InstallInfo\HideIconsCommand] (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe ©

---\\ Recherche d'infection sur les navigateurs (264) - 32s
O69 - SBI: C:\Users\Justine\AppData\Roaming\Mozilla\Firefox\Profiles\qut8qp7p.default\searchplugins\askcom.xml
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("browser.babylon.HPOnNewTab", "search.babylon.com");  =>PUP.Optional.Babylon
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("browser.search.defaultengine", "Ask.com");  =>Toolbar.Ask
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("extensions.BabylonToolbar.admin", false);  =>PUP.Optional.Babylon
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("extensions.BabylonToolbar.aflt", "babsst");  =>PUP.Optional.Babylon
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("extensions.BabylonToolbar.appId", "{BDB69379-802F-4eaf-B541-F8DE92DD98DB}");  =>PUP.Optional.Babylon
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("extensions.BabylonToolbar.autoRvrt", "false");  =>PUP.Optional.Babylon
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("extensions.BabylonToolbar.babExt", "");  =>PUP.Optional.Babylon
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("extensions.BabylonToolbar.babTrack", "affID=10588&tl=gkn305623&tt=180312_cp2");  =>PUP.Optional.Babylon
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("extensions.BabylonToolbar.bbDpng", 20);  =>PUP.Optional.Babylon
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("extensions.BabylonToolbar.cntry", "FR");  =>PUP.Optional.Babylon
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("extensions.BabylonToolbar.dfltLng", "fr");  =>PUP.Optional.Babylon
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("extensions.BabylonToolbar.dfltSrch", true);  =>PUP.Optional.Babylon
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("extensions.BabylonToolbar.dpkLst", "");  =>PUP.Optional.Babylon
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("extensions.BabylonToolbar.excTlbr", false);  =>PUP.Optional.Babylon
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("extensions.BabylonToolbar.hdrMd5", "27C73DB12763BCD23FDA81F37EEDC5B0");  =>PUP.Optional.Babylon
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("extensions.BabylonToolbar.hmpg", true);  =>PUP.Optional.Babylon
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("extensions.BabylonToolbar.id", "34aeae3a000000000000062243219f94");  =>PUP.Optional.Babylon
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("extensions.BabylonToolbar.instlDay", "15680");  =>PUP.Optional.Babylon
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("extensions.BabylonToolbar.instlRef", "na");  =>PUP.Optional.Babylon
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("extensions.BabylonToolbar.keyWordUrl", "http://search.babylon.com/?affID=10588&tl=gkn305623&tt=180312_cp2&babsrc=KW_def[...]  =>PUP.Optional.Babylon
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("extensions.BabylonToolbar.lastDP", 20);  =>PUP.Optional.Babylon
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("extensions.BabylonToolbar.lastVrsnTs", "1.5.3.1718:33:31");  =>PUP.Optional.Babylon
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("extensions.BabylonToolbar.mntrFFxVrsn", "3.6");  =>PUP.Optional.Babylon
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("extensions.BabylonToolbar.newTab", true);  =>PUP.Optional.Babylon
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("extensions.BabylonToolbar.newTabUrl", "http://search.babylon.com/?babsrc=NT_bb");  =>PUP.Optional.Babylon
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("extensions.BabylonToolbar.noFFXTlbr", false);  =>PUP.Optional.Babylon
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("extensions.BabylonToolbar.pnu_base", "{\"newVrsn\":\"69\",\"lastVrsn\":\"69\",\"vrsnLoad\":\"\",\"showMsg\":\"false\",\[...]  =>PUP.Optional.Babylon
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("extensions.BabylonToolbar.prdct", "BabylonToolbar");  =>PUP.Optional.Babylon
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("extensions.BabylonToolbar.propectorlck", 76088984);  =>PUP.Optional.Babylon
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("extensions.BabylonToolbar.prtkDS", 1);  =>PUP.Optional.Babylon
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("extensions.BabylonToolbar.prtkHmpg", 1);  =>PUP.Optional.Babylon
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("extensions.BabylonToolbar.prtnrId", "babylon");  =>PUP.Optional.Babylon
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("extensions.BabylonToolbar.ptch_0717", true);  =>PUP.Optional.Babylon
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("extensions.BabylonToolbar.rvrt", "false");  =>PUP.Optional.Babylon
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("extensions.BabylonToolbar.sg", "azb");  =>PUP.Optional.Babylon
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("extensions.BabylonToolbar.smplGrp", "azb");  =>PUP.Optional.Babylon
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("extensions.BabylonToolbar.srcExt", "def");  =>PUP.Optional.Babylon
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("extensions.BabylonToolbar.tlbrId", "base");  =>PUP.Optional.Babylon
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("extensions.BabylonToolbar.tlbrSrchUrl", "http://search.babylon.com/?babsrc=TB_def&mntrId=34aeae3a000000000000062243219f[...]  =>PUP.Optional.Babylon
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("extensions.BabylonToolbar.vrsn", "1.8.4.9");  =>PUP.Optional.Babylon
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("extensions.BabylonToolbar.vrsnTs", "1.5.3.1718:33:31");  =>PUP.Optional.Babylon
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("extensions.BabylonToolbar.vrsni", "1.8.4.9");  =>PUP.Optional.Babylon
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("extensions.BabylonToolbar_i.aflt", "babclient");  =>PUP.Optional.Babylon
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("extensions.BabylonToolbar_i.babExt", "");  =>PUP.Optional.Babylon
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("extensions.BabylonToolbar_i.babTrack", "affID=110649");  =>PUP.Optional.Babylon
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("extensions.BabylonToolbar_i.excTlbr", false);  =>PUP.Optional.Babylon
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("extensions.BabylonToolbar_i.hardId", "34aeae3a000000000000002243219f94");  =>PUP.Optional.Babylon
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("extensions.BabylonToolbar_i.id", "34aeae3a000000000000002243219f94");  =>PUP.Optional.Babylon
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("extensions.BabylonToolbar_i.instlDay", "15467");  =>PUP.Optional.Babylon
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("extensions.BabylonToolbar_i.instlRef", "std");  =>PUP.Optional.Babylon
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("extensions.BabylonToolbar_i.newTab", false);  =>PUP.Optional.Babylon
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("extensions.BabylonToolbar_i.newTabUrl", "about:home");  =>PUP.Optional.Babylon
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("extensions.BabylonToolbar_i.prdct", "BabylonToolbar");  =>PUP.Optional.Babylon
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("extensions.BabylonToolbar_i.prtnrId", "babylon");  =>PUP.Optional.Babylon
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("extensions.BabylonToolbar_i.smplGrp", "none");  =>PUP.Optional.Babylon
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("extensions.BabylonToolbar_i.srcExt", "def");  =>PUP.Optional.Babylon
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("extensions.BabylonToolbar_i.tlbrId", "base");  =>PUP.Optional.Babylon
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("extensions.BabylonToolbar_i.vrsn", "1.5.3.17");  =>PUP.Optional.Babylon
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("extensions.BabylonToolbar_i.vrsnTs", "1.8.4.922:55:05");  =>PUP.Optional.Babylon
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("extensions.BabylonToolbar_i.vrsni", "1.5.3.17");  =>PUP.Optional.Babylon
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("extensions.ORJ.InstallDir", "\"C:\\\\Program Files\\\\Ask.com\\\\\"");  =>Toolbar.Ask
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("extensions.ORJ.domain", "\"www.search.ask.com\"");  =>Toolbar.Ask
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("extensions.bootstrappedAddons", "{\"{E77F341C-F32E-40AA-8829-AA785C7D9316}\":{\"version\":\"2.5\",\"type\":\"extension\[...]  =>PUP.Optional.Boxore
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("extensions.cacaoweb.firstRun", 0);  =>.Superfluous.CacaoWeb
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("extensions.claro.admin", false);  =>PUP.Optional.ClaroSearch
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("extensions.claro.aflt", "babsst");  =>PUP.Optional.ClaroSearch
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("extensions.claro.dfltLng", "en");  =>PUP.Optional.ClaroSearch
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("extensions.claro.excTlbr", false);  =>PUP.Optional.ClaroSearch
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("extensions.claro.id", "34aeae3a000000000000002243219f94");  =>PUP.Optional.ClaroSearch
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("extensions.claro.instlDay", "15625");  =>PUP.Optional.ClaroSearch
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("extensions.claro.instlRef", "sst");  =>PUP.Optional.ClaroSearch
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("extensions.claro.prdct", "claro");  =>PUP.Optional.ClaroSearch
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("extensions.claro.prtnrId", "claro");  =>PUP.Optional.ClaroSearch
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("extensions.claro.tlbrId", "claro");  =>PUP.Optional.ClaroSearch
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("extensions.claro.vrsn", "1.6.4.1");  =>PUP.Optional.ClaroSearch
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("extensions.claro.vrsni", "1.6.4.1");  =>PUP.Optional.ClaroSearch
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("extensions.claro_i.smplGrp", "none");  =>PUP.Optional.ClaroSearch
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("extensions.claro_i.vrsnTs", "1.6.4.114:43:16");  =>PUP.Optional.ClaroSearch
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("extensions.crossriderapp5060.adsOldValue", -1);  =>PUP.Optional.CrossRider
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("extensions.delta.admin", false);  =>Toolbar.DeltaSearch
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("extensions.delta.aflt", "babsst");  =>Toolbar.DeltaSearch
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("extensions.delta.appId", "{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}");  =>Toolbar.DeltaSearch
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("extensions.delta.autoRvrt", "false");  =>Toolbar.DeltaSearch
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("extensions.delta.babTrack", "affID=110649");  =>Toolbar.DeltaSearch
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("extensions.delta.bbDpng", "23");  =>Toolbar.DeltaSearch
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("extensions.delta.cntry", "FR");  =>Toolbar.DeltaSearch
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("extensions.delta.dfltLng", "en");  =>Toolbar.DeltaSearch
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("extensions.delta.excTlbr", false);  =>Toolbar.DeltaSearch
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("extensions.delta.ffxUnstlRst", true);  =>Toolbar.DeltaSearch
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("extensions.delta.hdrMd5", "19446D837622274B70EA19857D39F441");  =>Toolbar.DeltaSearch
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("extensions.delta.id", "34aeae3a000000000000062243219f94");  =>Toolbar.DeltaSearch
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("extensions.delta.instlDay", "15848");  =>Toolbar.DeltaSearch
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("extensions.delta.instlRef", "sst");  =>Toolbar.DeltaSearch
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("extensions.delta.lastVrsnTs", "1.8.21.516:29:37");  =>Toolbar.DeltaSearch
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("extensions.delta.newTab", false);  =>Toolbar.DeltaSearch
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("extensions.delta.prdct", "delta");  =>Toolbar.DeltaSearch
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("extensions.delta.prtnrId", "delta");  =>Toolbar.DeltaSearch
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("extensions.delta.rvrt", "false");  =>Toolbar.DeltaSearch
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("extensions.delta.sg", "azb");  =>Toolbar.DeltaSearch
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("extensions.delta.smplGrp", "none");  =>Toolbar.DeltaSearch
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("extensions.delta.tlbrId", "base");  =>Toolbar.DeltaSearch
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("extensions.delta.tlbrSrchUrl", "");  =>Toolbar.DeltaSearch
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("extensions.delta.vrsn", "1.8.21.5");  =>Toolbar.DeltaSearch
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("extensions.delta.vrsnTs", "1.8.21.516:29:37");  =>Toolbar.DeltaSearch
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("extensions.delta.vrsni", "1.8.21.5");  =>Toolbar.DeltaSearch
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("extensions.delta_i.babExt", "");  =>Toolbar.DeltaSearch
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("extensions.delta_i.babTrack", "affID=119894&tt=gc_");  =>Toolbar.DeltaSearch
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("extensions.delta_i.srcExt", "ss");  =>Toolbar.DeltaSearch
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("extensions.enabledAddons", "%7BEEE6C361-6118-11DC-9C72-001320C79847%7D:1.9.0.0,cacaoweb%40cacaoweb.org:1.0.34,toolbar%4[...]  =>.Superfluous.CacaoWeb
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("extensions.incredibar.actvtyRptTime", "1364631648277");  =>PUP.Optional.IncrediBar
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("extensions.incredibar.admin", false);  =>PUP.Optional.IncrediBar
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("extensions.incredibar.aflt", "orgnl");  =>PUP.Optional.IncrediBar
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("extensions.incredibar.afterInstallRpt", "sent");  =>PUP.Optional.IncrediBar
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("extensions.incredibar.cntry", "FR");  =>PUP.Optional.IncrediBar
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("extensions.incredibar.dfltlng", "EN");  =>PUP.Optional.IncrediBar
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("extensions.incredibar.dfltsrch", "false");  =>PUP.Optional.IncrediBar
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("extensions.incredibar.did", "10665");  =>PUP.Optional.IncrediBar
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("extensions.incredibar.envrmnt", "production");  =>PUP.Optional.IncrediBar
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("extensions.incredibar.excTlbr", false);  =>PUP.Optional.IncrediBar
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("extensions.incredibar.hdrMd5", "5AD433D58FAEE3CF96F1043A53FFCEC9");  =>PUP.Optional.IncrediBar
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("extensions.incredibar.hmpg", false);  =>PUP.Optional.IncrediBar
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("extensions.incredibar.hrdid", "34aeae3a000000000000002243219f94");  =>PUP.Optional.IncrediBar
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("extensions.incredibar.id", "34aeae3a000000000000002243219f94");  =>PUP.Optional.IncrediBar
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("extensions.incredibar.installerproductid", "26");  =>PUP.Optional.IncrediBar
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("extensions.incredibar.instlday", "15690");  =>PUP.Optional.IncrediBar
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("extensions.incredibar.instlref", "");  =>PUP.Optional.IncrediBar
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("extensions.incredibar.isdcmntcmplt", "false");  =>PUP.Optional.IncrediBar
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("extensions.incredibar.keywordurl", "");  =>PUP.Optional.IncrediBar
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("extensions.incredibar.lastVrsnTs", "1.5.11.1412:41:31");  =>PUP.Optional.IncrediBar
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("extensions.incredibar.mntrvrsn", "1.2.0");  =>PUP.Optional.IncrediBar
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("extensions.incredibar.newtab", "false");  =>PUP.Optional.IncrediBar
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("extensions.incredibar.newtaburl", "");  =>PUP.Optional.IncrediBar
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("extensions.incredibar.noFFXTlbr", false);  =>PUP.Optional.IncrediBar
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("extensions.incredibar.ppd", "");  =>PUP.Optional.IncrediBar
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("extensions.incredibar.prdct", "incredibar");  =>PUP.Optional.IncrediBar
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("extensions.incredibar.productid", "26");  =>PUP.Optional.IncrediBar
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("extensions.incredibar.prtnrid", "Incredibar");  =>PUP.Optional.IncrediBar
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("extensions.incredibar.sg", "none");  =>PUP.Optional.IncrediBar
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("extensions.incredibar.smplgrp", "none");  =>PUP.Optional.IncrediBar
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("extensions.incredibar.srch", "");  =>PUP.Optional.IncrediBar
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("extensions.incredibar.srchprvdr", "");  =>PUP.Optional.IncrediBar
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("extensions.incredibar.tlbrid", "base");  =>PUP.Optional.IncrediBar
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("extensions.incredibar.tlbrsrchurl", "http://mystart.Incredibar.com/?a=6OyXmg5Hsz&loc=IB_TB&i=26&search=");  =>PUP.Optional.IncrediBar
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("extensions.incredibar.upn2", "6OyXmg5Hsz");  =>PUP.Optional.IncrediBar
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("extensions.incredibar.upn2n", "92262631060039023");  =>PUP.Optional.IncrediBar
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("extensions.incredibar.vrsn", "1.5.11.14");  =>PUP.Optional.IncrediBar
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("extensions.incredibar.vrsni", "1.5.11.14");  =>PUP.Optional.IncrediBar
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("extensions.incredibar.vrsnts", "1.5.11.1412:41:31");  =>PUP.Optional.IncrediBar
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("extensions.incredibar_i.aflt", "orgnl");  =>PUP.Optional.IncrediBar
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("extensions.incredibar_i.dfltLng", "");  =>PUP.Optional.IncrediBar
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("extensions.incredibar_i.did", "10665");  =>PUP.Optional.IncrediBar
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("extensions.incredibar_i.excTlbr", false);  =>PUP.Optional.IncrediBar
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("extensions.incredibar_i.id", "34aeae3a000000000000002243219f94");  =>PUP.Optional.IncrediBar
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("extensions.incredibar_i.installerproductid", "26");  =>PUP.Optional.IncrediBar
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("extensions.incredibar_i.instlDay", "15690");  =>PUP.Optional.IncrediBar
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("extensions.incredibar_i.instlRef", "");  =>PUP.Optional.IncrediBar
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("extensions.incredibar_i.ms_url_id", "");  =>PUP.Optional.IncrediBar
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("extensions.incredibar_i.newTab", false);  =>PUP.Optional.IncrediBar
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("extensions.incredibar_i.ppd", "");  =>PUP.Optional.IncrediBar
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("extensions.incredibar_i.prdct", "incredibar");  =>PUP.Optional.IncrediBar
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("extensions.incredibar_i.productid", "26");  =>PUP.Optional.IncrediBar
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("extensions.incredibar_i.prtnrId", "Incredibar");  =>PUP.Optional.IncrediBar
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("extensions.incredibar_i.smplGrp", "none");  =>PUP.Optional.IncrediBar
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("extensions.incredibar_i.tlbrId", "base");  =>PUP.Optional.IncrediBar
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("extensions.incredibar_i.tlbrSrchUrl", "http://mystart.Incredibar.com/?a=6OyXmg5Hsz&loc=IB_TB&i=26&search=");  =>PUP.Optional.IncrediBar
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("extensions.incredibar_i.upn2", "6OyXmg5Hsz");  =>PUP.Optional.IncrediBar
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("extensions.incredibar_i.upn2n", "92262631060039023");  =>PUP.Optional.IncrediBar
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("extensions.incredibar_i.vrsn", "1.5.11.14");  =>PUP.Optional.IncrediBar
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("extensions.incredibar_i.vrsnTs", "1.5.11.1412:41:31");  =>PUP.Optional.IncrediBar
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("extensions.incredibar_i.vrsni", "1.5.11.14");  =>PUP.Optional.IncrediBar
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("sweetim.toolbar.RevertDialog.enable", "false");  =>PUP.Optional.SweetIM
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("sweetim.toolbar.UserSelectedSaveSettings", "true");  =>PUP.Optional.SweetIM
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("sweetim.toolbar.Visibility.VisibilityGuardLastUnHide", "0");  =>PUP.Optional.SweetIM
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("sweetim.toolbar.Visibility.enable", "true");  =>PUP.Optional.SweetIM
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("sweetim.toolbar.Visibility.intervaldays", "7");  =>PUP.Optional.SweetIM
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("sweetim.toolbar.cargo", "3.1010000.10020");  =>PUP.Optional.SweetIM
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("sweetim.toolbar.cda.DisableOveride.enable", "true");  =>PUP.Optional.SweetIM
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("sweetim.toolbar.cda.HideOveride.enable", "true");  =>PUP.Optional.SweetIM
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("sweetim.toolbar.cda.RemoveOveride.enable", "true");  =>PUP.Optional.SweetIM
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("sweetim.toolbar.cda.returnValue", "hide");  =>PUP.Optional.SweetIM
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("sweetim.toolbar.dialogs.0.enable", "true");  =>PUP.Optional.SweetIM
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("sweetim.toolbar.dialogs.0.handler", "chrome://sim_toolbar_package/content/optionsdialog-handler.js");  =>PUP.Optional.SweetIM
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("sweetim.toolbar.dialogs.0.height", "335");  =>PUP.Optional.SweetIM
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("sweetim.toolbar.dialogs.0.id", "id_options_dialog");  =>PUP.Optional.SweetIM
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("sweetim.toolbar.dialogs.0.title", "$string.config.label;");  =>PUP.Optional.SweetIM
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("sweetim.toolbar.dialogs.0.url", "http://www.sweetim.com/simffbar/options_remote_ff.asp?lang=$locale_id;&toolbar_version[...]  =>PUP.Optional.SweetIM
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("sweetim.toolbar.dialogs.0.width", "761");  =>PUP.Optional.SweetIM
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("sweetim.toolbar.dialogs.1.enable", "true");  =>PUP.Optional.SweetIM
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("sweetim.toolbar.dialogs.1.handler", "chrome://sim_toolbar_package/content/exampledialog-handler.js");  =>PUP.Optional.SweetIM
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("sweetim.toolbar.dialogs.1.height", "300");  =>PUP.Optional.SweetIM
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("sweetim.toolbar.dialogs.1.id", "id_example_dialog");  =>PUP.Optional.SweetIM
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("sweetim.toolbar.dialogs.1.title", "Example (unit-test) dialog");  =>PUP.Optional.SweetIM
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("sweetim.toolbar.dialogs.1.url", "chrome://sim_toolbar_package/content/exampledialog.html");  =>PUP.Optional.SweetIM
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("sweetim.toolbar.dialogs.1.width", "500");  =>PUP.Optional.SweetIM
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("sweetim.toolbar.dialogs.2.enable", "true");  =>PUP.Optional.SweetIM
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("sweetim.toolbar.dialogs.2.handler", "chrome://sim_toolbar_package/content/cdadialog-handler.js");  =>PUP.Optional.SweetIM
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("sweetim.toolbar.dialogs.2.height", "150");  =>PUP.Optional.SweetIM
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("sweetim.toolbar.dialogs.2.id", "id_dialog_hide_disable_remove");  =>PUP.Optional.SweetIM
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("sweetim.toolbar.dialogs.2.title", "Option Dialog");  =>PUP.Optional.SweetIM
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("sweetim.toolbar.dialogs.2.url", "http://www.sweetim.com/simffbar/simcdadialog.asp");  =>PUP.Optional.SweetIM
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("sweetim.toolbar.dialogs.2.width", "530");  =>PUP.Optional.SweetIM
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("sweetim.toolbar.dnscatch.domain-blacklist", ".*.sweetim.com/.*.*.facebook.com/.*.*.google.com/.*.*.google.co.in/.*.[...]  =>PUP.Optional.SweetIM
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("sweetim.toolbar.highlight.colors", "#FFFF00,#00FFE4,#5AFF00,#0087FF,#FFCC00,#FF00F0");  =>PUP.Optional.SweetIM
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("sweetim.toolbar.keywordUrlGuard.enable", "false");  =>PUP.Optional.SweetIM
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("sweetim.toolbar.logger.ConsoleHandler.MinReportLevel", "7");  =>PUP.Optional.SweetIM
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("sweetim.toolbar.logger.FileHandler.FileName", "ff-toolbar.log");  =>PUP.Optional.SweetIM
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("sweetim.toolbar.logger.FileHandler.MaxFileSize", "200000");  =>PUP.Optional.SweetIM
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("sweetim.toolbar.logger.FileHandler.MinReportLevel", "7");  =>PUP.Optional.SweetIM
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("sweetim.toolbar.mode.debug", "false");  =>PUP.Optional.SweetIM
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("sweetim.toolbar.newtab.created", "true");  =>PUP.Optional.SweetIM
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("sweetim.toolbar.newtab.enable", "true");  =>PUP.Optional.SweetIM
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("sweetim.toolbar.previous.browser.startup.homepage", "http://mystart.incredibar.com/mb165?a=6OyXmg5Hsz&i=26");  =>PUP.Optional.IncrediBar
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("sweetim.toolbar.previous.keyword.URL", "");  =>PUP.Optional.SweetIM
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("sweetim.toolbar.rc.url", "http://www.sweetim.com/simffbar/rc.html?toolbar_version=$ITEM_VERSION;&crg=$cargo;");  =>PUP.Optional.SweetIM
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("sweetim.toolbar.scripts.0.addcontextdiv", "true");  =>PUP.Optional.SweetIM
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("sweetim.toolbar.scripts.0.callback", "simVerification");  =>PUP.Optional.SweetIM
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("sweetim.toolbar.scripts.0.domain-blacklist", "");  =>PUP.Optional.SweetIM
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("sweetim.toolbar.scripts.0.domain-whitelist", "http://(www.apps.)?facebook\\.com.*");  =>PUP.Optional.SweetIM
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("sweetim.toolbar.scripts.0.elementid", "id_script_sim_fb");  =>PUP.Optional.SweetIM
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("sweetim.toolbar.scripts.0.enable", "false");  =>PUP.Optional.SweetIM
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("sweetim.toolbar.scripts.0.id", "id_script_fb");  =>PUP.Optional.SweetIM
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("sweetim.toolbar.scripts.0.url", "http://sc.sweetim.com/apps/in/fb/infb.js");  =>PUP.Optional.SweetIM
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("sweetim.toolbar.scripts.1.addcontextdiv", "true");  =>PUP.Optional.SweetIM
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("sweetim.toolbar.scripts.1.callback", "simVerification");  =>PUP.Optional.SweetIM
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("sweetim.toolbar.scripts.1.domain-blacklist", "");  =>PUP.Optional.SweetIM
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("sweetim.toolbar.scripts.1.domain-whitelist", "https://(www.O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("sweetim.toolbar.scripts.1.elementid", "id_script_sim_fb");  =>PUP.Optional.SweetIM
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("sweetim.toolbar.scripts.1.enable", "false");  =>PUP.Optional.SweetIM
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("sweetim.toolbar.scripts.1.id", "id_script_fb_httpS");  =>PUP.Optional.SweetIM
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("sweetim.toolbar.scripts.1.url", "https://sc.sweetim.com/apps/in/fb/infb.js");  =>PUP.Optional.SweetIM
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("sweetim.toolbar.scripts.2.addcontextdiv", "false");  =>PUP.Optional.SweetIM
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("sweetim.toolbar.scripts.2.callback", "");  =>PUP.Optional.SweetIM
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("sweetim.toolbar.scripts.2.domain-blacklist", ".*.google..*.*.bing..*.*.live..*.*.msn..*.*.yahoo..*.*.youtube.com.*[...]  =>PUP.Optional.SweetIM
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("sweetim.toolbar.scripts.2.domain-whitelist", "");  =>PUP.Optional.SweetIM
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("sweetim.toolbar.scripts.2.elementid", "id_predict_include_script");  =>PUP.Optional.SweetIM
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("sweetim.toolbar.scripts.2.enable", "false");  =>PUP.Optional.SweetIM
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("sweetim.toolbar.scripts.2.id", "id_script_prad");  =>PUP.Optional.SweetIM
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("sweetim.toolbar.scripts.2.url", "http://cdn1.certified-apps.com/scripts/shared/enable.js?si=3104&tid=chff1");  =>PUP.Optional.SweetIM
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("sweetim.toolbar.search.external", "<?xml version=\"1.0\"?><TOOLBAR><EXTERNAL_SEARCH engine=\"http://*google.*\" param=\[...]  =>PUP.Optional.SweetIM
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("sweetim.toolbar.search.history", "youtube,mercato");  =>PUP.Optional.SweetIM
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("sweetim.toolbar.search.history.capacity", "10");  =>PUP.Optional.SweetIM
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("sweetim.toolbar.searchguard.enable", "false");  =>PUP.Optional.SweetIM
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("sweetim.toolbar.searchguard.initialized_by_rc", "true");  =>PUP.Optional.SweetIM
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("sweetim.toolbar.version", "1.9.0.0");  =>PUP.Optional.SweetIM
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("{FE1DEEEA-DB6D-44b8-83F0-34FC0F9D1052}.ScriptData_WSG_referrer", "http://search.babylon.com/?affID=110649&babsrc=NT_def[...]  =>PUP.Optional.Babylon
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("{FE1DEEEA-DB6D-44b8-83F0-34FC0F9D1052}.ScriptData_WSG_whiteList", "{\"search.babylon.com\":\"q\",\"search.imesh.net\":\[...]  =>PUP.Optional.Babylon
O69 - SBI: prefs.js [Justine - qut8qp7p.default] user_pref("{FE1DEEEA-DB6D-44b8-83F0-34FC0F9D1052}.ScriptData_product_name", "IB Updater");  =>PUP.Optional.IncrediBar
O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (Bing) - http://www.bing.com/
O69 - SBI: SearchScopes [HKCU] {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} - (Search the web (Babylon)) - http://search.babylon.com/
O69 - SBI: SearchScopes [HKCU] {5931A1FE-D9CA-4F5A-A381-8169A768FECB} - (Bing.com) - http://search.conduit.com/
O69 - SBI: SearchScopes [HKCU] {C75066ED-C33B-434D-8083-F6135BEFD5CD} - (Ask Search) - http://websearch.ask.com/
O69 - SBI: SearchScopes [HKCU] {CFF4DB9B-135F-47c0-9269-B4C6572FD61A} - (MyStart Search) - http://mystart.incredibar.com/
O69 - SBI: SearchScopes [HKCU] {EEE6C360-6118-11DC-9C72-001320C79847} [DefaultScope] - (SweetIM Search) - http://search.sweetim.com/

---\\ Enumère les services démarrés par Svchost (33) - 0s
O83 - Search Svchost Services: AeLookupSvc (AeLookupSvc) . (.Microsoft Corporation - Service Expérience d’application.) -- C:\Windows\System32\aelupsvc.dll   [62464] ©
O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Service de propagation de certificats de ca.) -- C:\Windows\System32\certprop.dll   [67584] ©
O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Service de propagation de certificats de ca.) -- C:\Windows\System32\certprop.dll   [67584] ©
O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL du service Serveur.) -- C:\Windows\System32\srvsvc.dll   [168448] ©
O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Client de stratégie de groupe.) -- C:\Windows\System32\gpsvc.dll   [591360] ©
O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - Extension IKE.) -- C:\Windows\System32\IKEEXT.DLL   [667136] ©
O83 - Search Svchost Services: AudioSrv (AudioSrv) . (.Microsoft Corporation - Service Audio Windows.) -- C:\Windows\System32\audiosrv.dll   [473088] ©
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gestionnaire de numérotation automatique d’.) -- C:\Windows\System32\rasauto.dll   [90624] ©
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Gestionnaire de connexions d’accès distant.) -- C:\Windows\System32\rasmans.dll   [285184] ©
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gestionnaire d’interface dynamique.) -- C:\Windows\System32\mprdim.dll   [75264] ©
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Service de notification d’événements systèm.) -- C:\Windows\System32\Sens.dll   [49664] ©
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de l’application d’assistance à.) -- C:\Windows\System32\ipnathlp.dll   [300544] ©
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de téléphonie Microsoft® Windows(TM.) -- C:\Windows\System32\tapisrv.dll   [241664] ©
O83 - Search Svchost Services: TermService (TermService) . (.Microsoft Corporation - Gestionnaire des connexions distantes du se.) -- C:\Windows\System32\termsrv.dll   [543232] ©
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Agent de mise à jour automatique Windows Up.) -- C:\Windows\System32\wuaueng.dll   [1933848] ©
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arrière.) -- C:\Windows\System32\qmgr.dll   [589312] ©
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\Windows\System32\shsvcs.dll   [328192] ©
O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service offrant une connectivité IPv6 sur u.) -- C:\Windows\System32\iphlpsvc.dll   [497152] ©
O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - DLL de service d’ouverture de session secon.) -- C:\Windows\System32\seclogon.dll   [21504] ©
O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Service Informations d’application.) -- C:\Windows\System32\appinfo.dll   [46592] ©
O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Service de découverte iSCSI.) -- C:\Windows\System32\iscsiexe.dll   [114688] ©
O83 - Search Svchost Services: MMCSS (MMCSS) . (.Microsoft Corporation - Service Planificateur de classes multimédia.) -- C:\Windows\System32\mmcss.dll   [49664] ©
O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Rapports et solutions aux problèmes.) -- C:\Windows\System32\wercplsupport.dll   [61440] ©
O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Service EAPHost Microsoft.) -- C:\Windows\System32\eapsvc.dll   [98304] ©
O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\System32\profsvc.dll   [163328] ©
O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Service du Planificateur de tâches.) -- C:\Windows\System32\schedsvc.dll   [749056] ©
O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Service Gestion des clés.) -- C:\Windows\System32\KMSVC.DLL   [71168] ©
O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Service Configuration des services Bureau à.) -- C:\Windows\System32\SessEnv.dll   [99328] ©
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\System32\wbem\WMIsvc.dll   [168960] ©
O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - DLL du service Explorateur d’ordinateurs.) -- C:\Windows\System32\browser.dll   [102912] ©
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - DLL du service des thèmes Windows Shell.) -- C:\Windows\System32\themeservice.dll   [37376] ©
O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - Service BDE.) -- C:\Windows\System32\bdesvc.dll   [76800] ©
O83 - Search Svchost Services: AppMgmt (AppMgmt) . (.Microsoft Corporation - Service Installation de logiciels.) -- C:\Windows\System32\appmgmts.dll   [149504] ©

---\\ Liste des exceptions du parefeu Windows (20) - 3s
O87 - FAEL: "{348691DC-ADAF-413A-9F25-C86DA60781A4}" [In-None-P17-TRUE] .(...) -- C:\Program Files\Windows Live\Messenger\msnmsgr.exe (.not file.)
O87 - FAEL: "{9BBBC1E1-F6A6-4C3C-A7D2-0F8E3E224809}" [In-None-P17-TRUE] .(...) -- E:\setup\hpznui01.exe (.not file.)
O87 - FAEL: "TCP Query User{0A86105D-96AC-4095-9252-BA61BA1B1410}C:\users\justine\appdata\roaming\cacaoweb\cacaoweb.exe" [In-None-P6-TRUE] .(...) -- C:\users\justine\appdata\roaming\cacaoweb\cacaoweb.exe  =>.Superfluous.CacaoWeb
O87 - FAEL: "UDP Query User{014157F0-2B8B-48F1-849B-ED83A5361A3A}C:\users\justine\appdata\roaming\cacaoweb\cacaoweb.exe" [In-None-P17-TRUE] .(...) -- C:\users\justine\appdata\roaming\cacaoweb\cacaoweb.exe  =>.Superfluous.CacaoWeb
O87 - FAEL: "{9D612FAF-0F90-4D5E-A6AC-E1A736BFCDAF}" [In-None-P6-TRUE] .(...) -- C:\Windows\System32\dmwu.exe
O87 - FAEL: "{47288310-B4ED-4941-A461-2967D2B07265}" [In-None-P17-TRUE] .(...) -- C:\Windows\System32\dmwu.exe
O87 - FAEL: "{C152B29A-87F4-4FF6-BB9A-3EE9077EB144}" [In-None-P6-TRUE] .(...) -- C:\Windows\System32\ARFC\wrtc.exe (.not file.)
O87 - FAEL: "{31447F7C-1DEA-4D11-BBAA-7F479B6FD62D}" [In-None-P17-TRUE] .(...) -- C:\Windows\System32\ARFC\wrtc.exe (.not file.)
O87 - FAEL: "{33D08018-1C84-4F01-9F7B-CDF9089F4934}" [In-None-P6-TRUE] .(.SweetIM Technologies Ltd. - Update Manager for SweetPacks.) -- C:\Program Files\SweetIM\Communicator\SweetPacksUpdateManager.exe  =>PUP.Optional.SweetIM
O87 - FAEL: "{6AF147F4-09BC-41CE-A4D9-1E40D30D80F8}" [In-None-P17-TRUE] .(.SweetIM Technologies Ltd. - Update Manager for SweetPacks.) -- C:\Program Files\SweetIM\Communicator\SweetPacksUpdateManager.exe  =>PUP.Optional.SweetIM
O87 - FAEL: "{F3BDCD6C-5E02-4E45-A39C-6C37C9E01F74}" [In-None-P6-TRUE] .(...) -- C:\Windows\System32\dmwu.exe
O87 - FAEL: "{1ECADBB4-E78D-4181-9EEB-24281D827825}" [In-None-P17-TRUE] .(...) -- C:\Windows\System32\dmwu.exe
O87 - FAEL: "{81EB2BFB-D4B8-4895-A3B6-ADD0EDFC8A7F}" [In-None-P6-TRUE] .(...) -- C:\Windows\System32\ARFC\wrtc.exe (.not file.)
O87 - FAEL: "{2839BBA3-965F-43F1-8510-0EE0D67076DE}" [In-None-P17-TRUE] .(...) -- C:\Windows\System32\ARFC\wrtc.exe (.not file.)
O87 - FAEL: "{E34FAA79-0D15-42A8-996A-9BB92133F537}" [In-None-P6-TRUE] .(...) -- E:\fscommand\CKSocketServer.exe (.not file.)
O87 - FAEL: "{43CA336B-C232-4721-A0A8-DED9C62A5E0E}" [In-None-P17-TRUE] .(...) -- E:\fscommand\CKSocketServer.exe (.not file.)
O87 - FAEL: "TCP Query User{C16E38FE-B000-48A7-973D-AD0ED256CB0D}C:\users\justine\appdata\roaming\cacaoweb\cacaoweb.exe" [In-None-P6-TRUE] .(...) -- C:\users\justine\appdata\roaming\cacaoweb\cacaoweb.exe  =>.Superfluous.CacaoWeb
O87 - FAEL: "UDP Query User{EDE916B2-8F9E-4829-BDF2-BD48EE885FC0}C:\users\justine\appdata\roaming\cacaoweb\cacaoweb.exe" [In-None-P17-TRUE] .(...) -- C:\users\justine\appdata\roaming\cacaoweb\cacaoweb.exe  =>.Superfluous.CacaoWeb
O87 - FAEL: "TCP Query User{EA034BCB-29B3-4D79-9AD5-EC06597ACCE1}C:\program files\hearthstone\hearthstone.exe" [In-None-P6-TRUE] .(...) -- C:\program files\hearthstone\hearthstone.exe
O87 - FAEL: "UDP Query User{2E76EDAD-9680-4767-A34B-B82386EDD5D0}C:\program files\hearthstone\hearthstone.exe" [In-None-P17-TRUE] .(...) -- C:\program files\hearthstone\hearthstone.exe

---\\ Enumère les codes produits des logiciels (2) - 5s
O90 - PUC: "758F5690DAAD39F40845E0E23C8C5C0B" . (.SweetIM for Messenger 3.6.) -- C:\Windows\Installer\{0965F857-DAAD-4F93-8054-0E2EC3C8C5B0}\ARPPRODUCTICON.exe  =>PUP.Optional.SweetIM
O90 - PUC: "E8E877ED6825FF148AE54DA13648DD38" . (.Boxore Client.) -- C:\Windows\Installer\{DE778E8E-5286-41FF-A85E-D41A6384DD83}\Boxore.ico  =>PUP.Optional.Boxore

---\\ Services non Microsoft (SR=Démarré,SS=Stoppé) (17) - 27s

SR - Auto   [28/10/2015] [   82128]  Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated.) - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe ©
SS - Demand [11/11/2015] [  269000]  Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\Windows\System32\Macromed\Flash\FlashPlayerUpdateService.exe ©
SS - Auto   [27/10/2015] [  932912]  Avira Protection e-mail (AntiVirMailService) . (.Avira Operations GmbH & Co. KG.) - C:\Program Files\Avira\AntiVir Desktop\avmailc7.exe ©
SR - Auto   [27/10/2015] [  461672]  Avira Planificateur (AntiVirSchedulerService) . (.Avira Operations GmbH & Co. KG.) - C:\Program Files\Avira\AntiVir Desktop\sched.exe ©
SR - Auto   [27/10/2015] [  461672]  Avira Protection temps réel (AntiVirService) . (.Avira Operations GmbH & Co. KG.) - C:\Program Files\Avira\AntiVir Desktop\avguard.exe ©
SS - Disabled [25/10/2015] [ 1212048]  Avira Protection Web (AntiVirWebService) . (.Avira Operations GmbH & Co. KG.) - C:\Program Files\Avira\AntiVir Desktop\avwebgrd.exe ©
SR - Auto   [14/10/2015] [  243968]  Avira Service Host (Avira.ServiceHost) . (.Avira Operations GmbH & Co. KG.) - C:\Program Files\Avira\Launcher\Avira.ServiceHost.exe ©
SS - Auto   [25/10/2015] [  107848]  Service Google Update (gupdate) (gupdate) . (.Google Inc..) - C:\Program Files\Google\Update\GoogleUpdate.exe ©
SS - Demand [25/10/2015] [  107848]  Service Google Update (gupdatem) (gupdatem) . (.Google Inc..) - C:\Program Files\Google\Update\GoogleUpdate.exe ©
SS - Demand [25/10/2015] [  194032]  Google Software Updater (gusvc) . (.Google.) - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe ©
SR - Auto   [05/01/2015] [ 2470704]   (IBUpdaterService) . (...) - C:\Windows\System32\dmwu.exe  =>PUP.Optional.InstallBrain
SS - Disabled [05/10/2015] [ 1513784]   (MBAMScheduler) . (.Malwarebytes.) - C:\Program Files\Malwarebytes Anti-Malware\mbamscheduler.exe ©
SS - Auto   [05/10/2015] [ 1135416]   (MBAMService) . (.Malwarebytes.) - C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe ©
SS - Demand [01/05/2015] [  148080]  Mozilla Maintenance Service (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe ©
SR - Auto   [09/07/2010] [  129640]  NVIDIA Display Driver Service (nvsvc) . (.NVIDIA Corporation.) - C:\Windows\System32\nvvsvc.exe ©
SS - Auto   [11/12/2014] [  315496]  Skype Updater (SkypeUpdate) . (.Skype Technologies.) - C:\Program Files\Skype\Updater\Updater.exe ©

---\\ Recherche de clés de registre Tracing (2) - 3s
HKLM\SOFTWARE\Microsoft\Tracing\SweetIM_RASAPI32  =>PUP.Optional.SweetIM
HKLM\SOFTWARE\Microsoft\Tracing\SweetIM_RASMANCS  =>PUP.Optional.SweetIM

---\\ Scan Additionnel (87) - 0s
HKLM\SYSTEM\CurrentControlSet\Services\APNMCP  =>Toolbar.Ask
HKLM\SYSTEM\CurrentControlSet\Services\IB Updater  =>PUP.Optional.IncrediBar
HKLM\SYSTEM\CurrentControlSet\Services\IBUpdaterService  =>PUP.Optional.InstallBrain
C:\Windows\System32\dmwu.exe  =>PUP.Optional.InstallBrain
HKLM\SYSTEM\CurrentControlSet\Services\supdate  =>PUP.Optional.SoftwareUpdater
C:\Windows\Tasks\SoftwareUpdateTaskMachineUA.job  =>PUP.Optional.Boxore
C:\Windows\System32\Tasks\SoftwareUpdateTaskMachineUA  =>PUP.Optional.Boxore
C:\Program Files\SweetIM\Communicator\SweetPacksUpdateManager.exe  =>PUP.Optional.SweetIM
C:\Users\Justine\AppData\Roaming\Mozilla\Firefox\Profiles\qut8qp7p.default\extensions\toolbar@ask.com.xpi  =>Toolbar.Ask
C:\Users\Justine\AppData\Roaming\Mozilla\Firefox\Profiles\qut8qp7p.default\extensions\{E77F341C-F32E-40AA-8829-AA785C7D9316}.xpi  =>PUP.Optional.Boxore
C:\Users\Justine\AppData\Roaming\Mozilla\Firefox\Profiles\qut8qp7p.default\searchplugins\babylon.xml  =>PUP.Optional.Babylon
C:\Users\Justine\AppData\Roaming\Mozilla\Firefox\Profiles\qut8qp7p.default\searchplugins\babylon1.xml  =>PUP.Optional.Babylon
C:\Users\Justine\AppData\Roaming\Mozilla\Firefox\Profiles\qut8qp7p.default\searchplugins\MyStart Search.xml  =>PUP.Optional.VMNToolbar
C:\Users\Justine\AppData\Roaming\Mozilla\Firefox\Profiles\qut8qp7p.default\searchplugins\SweetIM Search.xml  =>PUP.Optional.SweetIM
C:\Users\Justine\AppData\Roaming\Mozilla\Firefox\Profiles\qut8qp7p.default\searchplugins\sweetim.xml  =>PUP.Optional.SweetIM
C:\Users\Justine\AppData\Roaming\Mozilla\Firefox\Profiles\qut8qp7p.default\extensions\cacaoweb@cacaoweb.org  =>.Superfluous.CacaoWeb
C:\Users\Justine\AppData\Roaming\Mozilla\Firefox\Profiles\qut8qp7p.default\extensions\crossriderapp5060@crossrider.com  =>PUP.Optional.CrossRider
C:\Users\Justine\AppData\Roaming\Mozilla\Firefox\Profiles\qut8qp7p.default\extensions\ffxtlbr@incredibar.com  =>PUP.Optional.IncrediBar
C:\Program Files\Software\Update\1.2.201.0\npSoftwareOneClick8.dll  =>PUP.Optional.Boxore
C:\Program Files\Claro LTD\claro\1.6.4.1\bh\claro.dll  =>PUP.Optional.ClaroSearch
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{000F18F2-09EB-4A59-82B2-5AE4184C39C3}  =>PUP.Optional.ClaroSearch
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{336D0C35-8A85-403a-B9D2-65C292C39087}  =>PUP.Optional.InstallBrain
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6E13DDE1-2B6E-46CE-8B66-DC8BF36F6B99}  =>PUP.Optional.IncrediBar
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}  =>PUP.Optional.Bandoo
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EEE6C35C-6118-11DC-9C72-001320C79847}  =>PUP.Optional.SweetIM
C:\Program Files\Claro LTD\claro\1.6.4.1\claroTlbr.dll  =>PUP.Optional.ClaroSearch
C:\Program Files\AskPartnerNetwork\Toolbar\ORJ\Passport.dll  =>Toolbar.AskBar
HKLM64\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Savings Sidekick  =>PUP.Optional.VidSaver
HKLM64\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Vittalia  =>PUP.Optional.Vittalia
HKLM64\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\WNLT  =>PUP.Optional.InstallBrain
HKLM64\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{006E6A46-8D55-4F10-BBA8-2C9653B4278B}  =>PUP.Optional.Boxore
HKLM64\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{0965F857-DAAD-4F93-8054-0E2EC3C8C5B0}  =>PUP.Optional.SweetIM
HKLM64\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{336D0C35-8A85-403a-B9D2-65C292C39087}_is1  =>PUP.Optional.InstallBrain
HKLM64\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{4183178B-4D4E-48A7-9257-454BA90A760E}  =>PUP.Optional.SweetIM
HKLM64\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{4F524A00-6A76-A76A-76A7-A758B70C2300}  =>PUP.Optional.Bandoo
HKLM64\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{DE778E8E-5286-41FF-A85E-D41A6384DD83}  =>PUP.Optional.Boxore
HKLM64\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{FB697452-8CA4-46B4-98B1-165C922A2EF3}  =>PUP.Optional.SweetIM
HKLM\SOFTWARE\Babylon  =>PUP.Optional.Babylon
HKLM\SOFTWARE\IB Updater  =>PUP.Optional.InstallBrain
HKLM\SOFTWARE\Incredibar.com  =>PUP.Optional.IncrediBar
HKLM\SOFTWARE\SweetIM  =>PUP.Optional.SweetIM
HKLM\SOFTWARE\WNLT  =>PUP.Optional.IncrediBar
HKCU\SOFTWARE\5828f8ce569ef10  =>PUP.Optional.Heuristic
HKCU\SOFTWARE\AskPartnerNetwork  =>Toolbar.AskBar
HKCU\SOFTWARE\BabSolution  =>PUP.Optional.BabSolution
HKCU\SOFTWARE\Boxore  =>PUP.Optional.Boxore
HKCU\SOFTWARE\cacaoweb  =>.Superfluous.CacaoWeb
HKCU\SOFTWARE\Cr_Installer  =>PUP.Optional.CrossRider
HKCU\SOFTWARE\delta LTD  =>Toolbar.DeltaSearch
HKCU\SOFTWARE\ImInstaller  =>Toolbar.IncrediMail
HKCU\SOFTWARE\InstalledBrowserExtensions  =>PUP.Optional.BrowserExtensions
HKCU\SOFTWARE\Nosibay  =>PUP.Optional.SPointer
HKCU\SOFTWARE\Softonic  =>PUP.Optional.Softonic
HKCU\SOFTWARE\Spointer  =>PUP.Optional.SPointer
HKCU\SOFTWARE\SweetIM  =>PUP.Optional.SweetIM
HKCU\SOFTWARE\WNLT  =>PUP.Optional.IncrediBar
HKCU\SOFTWARE\AppDataLow\Software\Crossrider  =>PUP.Optional.CrossRider
C:\Program Files\AskPartnerNetwork  =>Toolbar.AskBar
C:\Program Files\Claro LTD  =>PUP.Optional.ClaroSearch
C:\Program Files\Fluendo  =>PUP.Optional.SPointer
C:\Program Files\Nosibay  =>PUP.Optional.SPointer
C:\Program Files\Software  =>PUP.Optional.Boxore
C:\Program Files\SweetIM  =>PUP.Optional.SweetIM
C:\Program Files\Vittalia  =>PUP.Optional.Vittalia
C:\ProgramData\APN  =>Toolbar.Ask
C:\ProgramData\AskPartnerNetwork  =>Toolbar.YahooPartner
C:\ProgramData\Babylon  =>PUP.Optional.Babylon
C:\ProgramData\BoxUpdChk  =>PUP.Optional.Boxore
C:\ProgramData\IBUpdaterService  =>PUP.Optional.InstallBrain
C:\ProgramData\SweetIM  =>PUP.Optional.SweetIM
C:\Users\Justine\AppData\Roaming\Babylon  =>PUP.Optional.Babylon
C:\Users\Justine\AppData\Roaming\cacaoweb  =>.Superfluous.CacaoWeb
C:\Users\Justine\AppData\Roaming\moovida-1  =>PUP.Optional.SPointer
C:\Users\Justine\AppData\Roaming\OpenCandy  =>PUP.Optional.OpenCandy
C:\Users\Justine\AppData\Local\AskPartnerNetwork  =>Toolbar.AskBar
C:\Users\Justine\AppData\Local\moovida Air  =>PUP.Optional.SPointer
C:\Users\Justine\AppData\Local\Savings Sidekick  =>PUP.Optional.GamePlayLabs
C:\Users\Justine\AppData\Local\Software  =>PUP.Optional.Boxore
C:\users\justine\appdata\roaming\cacaoweb\cacaoweb.exe  =>.Superfluous.CacaoWeb
C:\Windows\Installer\{0965F857-DAAD-4F93-8054-0E2EC3C8C5B0}\ARPPRODUCTICON.exe  =>PUP.Optional.SweetIM
HKLM\Software\Classes\Installer\Products\758F5690DAAD39F40845E0E23C8C5C0B  =>PUP.Optional.SweetIM
HKLM\Software\Classes\Installer\Features\758F5690DAAD39F40845E0E23C8C5C0B  =>PUP.Optional.SweetIM
C:\Windows\Installer\{DE778E8E-5286-41FF-A85E-D41A6384DD83}\Boxore.ico  =>PUP.Optional.Boxore
HKLM\Software\Classes\Installer\Products\E8E877ED6825FF148AE54DA13648DD38  =>PUP.Optional.Boxore
HKLM\Software\Classes\Installer\Features\E8E877ED6825FF148AE54DA13648DD38  =>PUP.Optional.Boxore
HKLM\SOFTWARE\Microsoft\Tracing\SweetIM_RASAPI32  =>PUP.Optional.SweetIM
HKLM\SOFTWARE\Microsoft\Tracing\SweetIM_RASMANCS  =>PUP.Optional.SweetIM

---\\ Récapitulatif des éléments trouvées sur votre station (26) - 0s
http://www.nicolascoolman.fr/?p=4664  =>Hijacker.DNS.Hosts
http://www.nicolascoolman.fr/?p=235  =>Toolbar.Ask
http://www.nicolascoolman.fr/adware-incredibar/  =>PUP.Optional.IncrediBar
http://www.nicolascoolman.fr/adware-installbrain/  =>PUP.Optional.InstallBrain
http://www.nicolascoolman.fr/pup-software-updater/  =>PUP.Optional.SoftwareUpdater
http://www.nicolascoolman.fr/adware-boxore/  =>PUP.Optional.Boxore
http://www.nicolascoolman.fr/pup-sweetim/  =>PUP.Optional.SweetIM
http://www.nicolascoolman.fr/pup-babylon/  =>PUP.Optional.Babylon
http://www.nicolascoolman.fr/spyware-vmntoolbar/  =>PUP.Optional.VMNToolbar
http://www.nicolascoolman.fr/pup-cacaoweb/  =>.Superfluous.CacaoWeb
http://www.nicolascoolman.fr/pup-crossrider/  =>PUP.Optional.CrossRider
http://www.nicolascoolman.fr/pup-clarosearch/  =>PUP.Optional.ClaroSearch
http://www.nicolascoolman.fr/?p=237  =>PUP.Optional.Bandoo
http://www.nicolascoolman.fr/?p=4664  =>Toolbar.AskBar
http://www.nicolascoolman.fr/adware-vidsaver/  =>PUP.Optional.VidSaver
http://www.nicolascoolman.fr/pup-vittalia/  =>PUP.Optional.Vittalia
http://www.nicolascoolman.fr/?p=4664  =>PUP.Optional.Heuristic
http://www.nicolascoolman.fr/?p=440  =>PUP.Optional.BabSolution
http://www.nicolascoolman.fr/?p=273  =>Toolbar.DeltaSearch
http://www.nicolascoolman.fr/?p=4664  =>Toolbar.IncrediMail
http://www.nicolascoolman.fr/?p=4664  =>PUP.Optional.BrowserExtensions
http://www.nicolascoolman.fr/adware-spointer/  =>PUP.Optional.SPointer
http://www.nicolascoolman.fr/?p=4664  =>PUP.Optional.Softonic
http://www.nicolascoolman.fr/?p=4664  =>Toolbar.YahooPartner
http://www.nicolascoolman.fr/adware-opencandy/  =>PUP.Optional.OpenCandy
http://www.nicolascoolman.fr/pup-specialsavings/  =>PUP.Optional.GamePlayLabs

~ End of the scan, 67958 items in 189 seconds (1442)(0)