cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

~ Rapport de ZHPDiag v2013.10.27.68 - Nicolas Coolman (27/10/2013)
~ Lanc� par QUENTIN (27/10/2013 12:18:32)
~ Adresse du Site Web http://nicolascoolman.webs.com
~ Forums gratuits d'Assistance � la d�sinfection : http://nicolascoolman.webs.com/apps/links/
~ Traduit par Nicolas Coolman
~ Etat de la version :
~ Liste blanche : D�sactiv�e par l'utilisateur
~ El�vation des Privil�ges : OK
~ User Account Control (UAC): Deactivate by program


---\\ Navigateurs Internet
MSIE: Internet Explorer v10.0.9200.16721
MFIE: Mozilla Firefox 24.0 (Defaut)
GCIE: Google Chrome v30.0.1599.101

---\\ Informations sur les produits Windows
~ Langage: Fran�ais
Windows Vista Home Premium Edition, 64-bit (Build 6000)
Windows Server License Manager Script : OK
~ Windows(R) 7, OEM_SLP channel
System Locked Preinstallation (OEM_SLP) : OK
Windows ID Activation : OK
~ Windows Partial Key : 3Q6C9
Windows License : OK
~ Windows Remaining Initializations Number : 0
Software Protection Service (Protection logicielle) : OK
Windows Automatic Updates : OK

---\\ Logiciels de protection du syst�me
Kaspersky Internet Security 2013 v13.0.1.4190

---\\ Logiciels d'optimisation du syst�me

---\\ Logiciels de partage PeerToPeer

---\\ Surveillance de Logiciels
Adobe Flash Player 11 Plugin
Adobe Reader XI
Java 7 Update 45

---\\ Informations sur le syst�me
~ Processor: Intel64 Family 6 Model 42 Stepping 7, GenuineIntel
~ Operating System: 64 Bits
Boot mode: Normal (Normal boot)
Total RAM: 3994 MB (33% free)
System Restore: Activ� (Enable)
System drive C: has 454 GB (79%) free of 574 GB

---\\ Mode de connexion au syst�me
~ Computer Name: QUENTIN-HP
~ User Name: QUENTIN
~ All Users Names: QUENTIN, HomeGroupUser$, Administrateur,
~ Unselected Option: None
Logged in as Administrator

---\\ Variables d'environnement
~ System Unit : C:\
~ %AppZHP% : C:\Users\QUENTIN\AppData\Roaming\ZHP\
~ %AppData% : C:\Users\QUENTIN\AppData\Roaming\
~ %Desktop% : C:\Users\QUENTIN\Desktop\
~ %Favorites% : C:\Users\QUENTIN\Favorites\
~ %LocalAppData% : C:\Users\QUENTIN\AppData\Local\
~ %StartMenu% : C:\Users\QUENTIN\AppData\Roaming\Microsoft\Windows\Start Menu\
~ %Windir% : C:\Windows\
~ %System% : C:\Windows\System32\

---\\ Enum�ration des unit�s disques
C: Hard drive, Flash drive, Thumb drive (Free 454 Go of 574 Go)
D: Hard drive, Flash drive, Thumb drive (Free 2 Go of 21 Go)
E: CD-ROM drive (Not Inserted)
F: Hard drive, Flash drive, Thumb drive (Free 0 Go of 0 Go)



---\\ Etat du Centre de S�curit� Windows
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK
~ Security Center: 44 Scanned in 00mn 00s



---\\ Recherche particuli�re de fichiers g�n�riques
[MD5.332FEAB1435662FC6C672E25BEB37BE3] - (.Microsoft Corporation - Explorateur Windows.) (.10/02/2012 - 03:16:54.) -- C:\Windows\Explorer.exe [2871808]
[MD5.94355C28C1970635A31B3FE52EB7CEBA] - (.Microsoft Corporation - Application de d�marrage de Windows.) (.14/07/2009 - 02:39:52.) -- C:\Windows\System32\Wininit.exe [129024]
[MD5.D28B35DE88D27EFB27DF4B1E8319E3C0] - (.Microsoft Corporation - Internet Extensions for Win32.) (.22/09/2013 - 23:55:10.) -- C:\Windows\System32\wininet.dll [2241024]
[MD5.1151B1BAA6F350B1DB6598E0FEA7C457] - (.Microsoft Corporation - Application d�ouverture de session Windows.) (.21/11/2010 - 04:24:29.) -- C:\Windows\System32\Winlogon.exe [390656]
[MD5.067FA52BFB59A56110A12312EF9AF243] - (.Microsoft Corporation - Biblioth�que de licences.) (.21/11/2010 - 04:24:16.) -- C:\Windows\System32\sppcomapi.dll [232448]
[MD5.314C17917AC8523EC77A710215012A65] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) (.14/09/2013 - 02:10:19.) -- C:\Windows\system32\Drivers\AFD.sys [497152]
[MD5.02062C0B390B7729EDC9E69C680A6F3C] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.14/07/2009 - 02:52:21.) -- C:\Windows\system32\Drivers\atapi.sys [24128]
[MD5.B8BD2BB284668C84865658C77574381A] - (.Microsoft Corporation - CD-ROM File System Driver.) (.14/07/2009 - 00:19:47.) -- C:\Windows\system32\Drivers\Cdfs.sys [92160]
[MD5.F036CE71586E93D94DAB220D7BDF4416] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.21/11/2010 - 04:23:47.) -- C:\Windows\system32\Drivers\Cdrom.sys [147456]
[MD5.9BB2EF44EAA163B29C4A4587887A0FE4] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.21/11/2010 - 04:24:32.) -- C:\Windows\system32\Drivers\DfsC.sys [102400]
[MD5.97BFED39B6B79EB12CDDBFEED51F56BB] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.21/11/2010 - 04:23:47.) -- C:\Windows\system32\Drivers\HDAudBus.sys [122368]
[MD5.FA55C73D4AFFA7EE23AC4BE53B4592D3] - (.Microsoft Corporation - Pilote de port i8042.) (.14/07/2009 - 00:19:57.) -- C:\Windows\system32\Drivers\i8042prt.sys [105472]
[MD5.AF9B39A7E7B6CAA203B3862582E9F2D0] - (.Microsoft Corporation - IP Network Address Translator.) (.14/07/2009 - 01:10:03.) -- C:\Windows\system32\Drivers\IpNat.sys [116224]
[MD5.A5D9106A73DC88564C825D317CAC68AC] - (.Microsoft Corporation - Windows NT SMB Minirdr.) (.10/02/2012 - 03:18:52.) -- C:\Windows\system32\Drivers\MRxSmb.sys [158208]
[MD5.09594D1089C523423B32A4229263F068] - (.Microsoft Corporation - MBT Transport driver.) (.21/11/2010 - 04:23:51.) -- C:\Windows\system32\Drivers\netBT.sys [261632]
[MD5.B98F8C6E31CD07B2E6F71F7F648E38C0] - (.Microsoft Corporation - Pilote du syst�me de fichiers NT.) (.12/04/2013 - 15:45:08.) -- C:\Windows\system32\Drivers\ntfs.sys [1656680]
[MD5.0086431C29C35BE1DBC43F52CC273887] - (.Microsoft Corporation - Pilote de port parall�le.) (.14/07/2009 - 01:00:41.) -- C:\Windows\system32\Drivers\Parport.sys [97280]
[MD5.471815800AE33E6F1C32FB1B97C490CA] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.21/11/2010 - 04:24:33.) -- C:\Windows\system32\Drivers\Rasl2tp.sys [129536]
[MD5.548260A7B8654E024DC30BF8A7C5BAA4] - (.Microsoft Corporation - SMB Transport driver.) (.14/07/2009 - 01:09:09.) -- C:\Windows\system32\Drivers\smb.sys [93184]
[MD5.DDAD5A7AB24D8B65F8D724F5C20FD806] - (.Microsoft Corporation - TDI Translation Driver.) (.21/11/2010 - 04:24:32.) -- C:\Windows\system32\Drivers\tdx.sys [119296]
[MD5.DF8126BD41180351A093A3AD2FC8903B] - (.Microsoft Corporation - Pilote de clich� instantan� du volume.) (.10/02/2012 - 03:15:09.) -- C:\Windows\system32\Drivers\volsnap.sys [296320]
~ Generic Processes: Scanned in 00mn 00s



---\\ Etat des fichiers cach�s (Cach�/Total)
~ Mes musiques (My Musics) : 1/8
~ Mes Favoris (My Favorites) : 1/14
~ Mes Documents (My Documents) : 1/99
~ Mon Bureau (My Desktop) : 1/8
~ Menu demarrer (Programs) : 1/35
~ Hidden Files: Scanned in 00mn 00s



---\\ Processus lanc�s
[MD5.A118CF34E0055BB3D4AA8A20EBEEFB2F] - (...) -- C:\Users\QUENTIN\AppData\Local\fst_fr_6\upfst_fr_6.exe [3154416] [PID.3996] =>PUA.FSTfr9
[MD5.C72FB9CC856ECFF3B6459B27CB674638] - (.PixArt Imaging Incorporation - Registry Monitor.) -- C:\Windows\PixArt\PAP7501\GUCI_AVS.exe [323584] [PID.3248]
[MD5.2D45B4E8B952227EFF5FF7C9FD893C36] - (.PixArt Imaging Incorporation - PixArt Camera Tray.) -- C:\Windows\PixArt\PAP7501\PACTray.exe [319488] [PID.3452]
[MD5.7D677B93A0CFA26C8A4029ABA71C2EA6] - (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe [20472992] [PID.3396]
[MD5.10E89F598469C60D8C87A8218089A87D] - (.Akamai Technologies, Inc. - Akamai NetSession Client.) -- C:\Users\QUENTIN\AppData\Local\Akamai\netsession_win.exe [4489472] [PID.3516]
[MD5.749949494676218FFA99501F4AA22ECC] - (.OpenOffice.org - OpenOffice.org 3.4.1.) -- C:\Program Files (x86)\OpenOffice.org 3\program\soffice.exe [10376704] [PID.4408]
[MD5.4EE367B8B1964160A1F1B80095183D3A] - (.OpenOffice.org - OpenOffice.org 3.4.1.) -- C:\Program Files (x86)\OpenOffice.org 3\program\soffice.bin [10368512] [PID.4436]
[MD5.6364FA7D825B600251A4D1DE7D6FF695] - (.Intel Corporation - Intel(R) USB 3.0 Monitor.) -- C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [291608] [PID.4504]
[MD5.8A3B69683E63808719D24E1C68C21CC7] - (.Hewlett-Packard Development Company, L.P. - HP On Screen Display.) -- C:\Program Files (x86)\Hewlett-Packard\HP On Screen Display\HPOSD.exe [379960] [PID.4544]
[MD5.D1C8B0DC04347B6B9B5B3B9204DF6756] - (.Hewlett-Packard Development Company, L.P. - HP CoolSense.) -- C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe [1343904] [PID.4556]
[MD5.1ACBA585D47FB69C12F26074517EFE5A] - (.Ask - Ask Updater.) -- C:\Program Files (x86)\Ask.com\Updater\Updater.exe [1644680] [PID.4564]
[MD5.D3AC38E80E928CC61A22650E04423BB8] - (.SEIKO EPSON CORPORATION - EEventManager Application.) -- C:\Program Files (x86)\EPSON Software\Event Manager\EEventManager.exe [979328] [PID.4576]
[MD5.15D2DB9BFA8E833ED31FAB2BB088FDDA] - (.Kaspersky Lab ZAO - Kaspersky Anti-Virus.) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe [356128] [PID.1968]
[MD5.4AFFDCAADCB1DBBFFAF06C7F82E7F6FC] - (.Apple Inc. - iTunesHelper.) -- C:\Program Files (x86)\iTunes\iTunesHelper.exe [421776] [PID.4644]
[MD5.8192B2E274607D1D530F5C191698C544] - (.Hewlett-Packard Development Company, L.P. - HP Message Service.) -- C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe [578944] [PID.4660]
[MD5.5B6E8E09BE6401A7E022F52FDFCB2FF8] - (.Oracle Corporation - Java(TM) Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336] [PID.4784]
[MD5.79B9C5886DDCBF729320277B7C80E22D] - (...) -- C:\Program Files (x86)\fst_fr_6\fst_fr_6.exe [3990000] [PID.3996] =>PUA.FSTfr9
[MD5.B7F55E2AE978D3D34F7876EE5D689AAE] - (.CyberLink - YouCam Mirage.) -- C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe [136488] [PID.4248]
[MD5.5397E32E882C0148CEC13D9EACFB7157] - (.Microsoft Corporation - Internet Low-Mic Utility Tool.) -- C:\Program Files (x86)\Internet Explorer\IELowutil.exe [222208] [PID.4348]
[MD5.F6C30F1B0EDF56F51467CA2EFDB139C1] - (...) -- C:\Program Files (x86)\GameforgeLive\gfl_client.exe [2899840] [PID.5432]
[MD5.A9182CE59CFC56F9C1DDE8B3C0AE8378] - (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe [274840] [PID.6796]
[MD5.12FD4EF8F2CBBF98E0A5CED88258DDF3] - (.Mozilla Corporation - Plugin Container for Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe [17816] [PID.5796]
[MD5.EB68851F020D35293EADAADEB18B8220] - (.Adobe Systems, Inc. - Adobe Flash Player 11.9 r900.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_9_900_117.exe [1862536] [PID.1212]
[MD5.084D14D1283EC4D78A1D0B8C3D0187DD] - (.Nicolas Coolman - ZHPDiag.) -- C:\Program Files (x86)\ZHPDiag\ZHPDiag.exe [8137728] [PID.7500]
[MD5.79AC0B163AE32F959162B7C146CCB68D] - (...) -- C:\Program Files (x86)\Optimizer Pro\OptProCrash.exe [143488] [PID.1840] =>PUP.OptimizerPro
[MD5.B33CF4DE909A5B30F526D82053A63C8E] - (.ABBYY - ABBYY network license server.) -- C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe [759048] [PID.1888]
[MD5.ADDA5E1951B90D3D23C56D3CF0622ADC] - (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [65640] [PID.1920]
[MD5.A5299D04ED225D64CF07A568A3E1BF8C] - (.Apple Inc. - MobileDeviceService.) -- C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [55184] [PID.1940]
[MD5.CA793DCC1D5F619021EF1D37CC7A831E] - (.EasyBits Software AS - Shared EasyBits services for Windows.) -- C:\Windows\SysWOW64\ezSharedSvcHost.exe [514232] [PID.1412]
[MD5.2BEC76BDCD1BC080210325E7B5094834] - (.Hewlett-Packard Development Company, L.P. - HP Quick Launch WMI Service.) -- C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe [35200] [PID.2108]
[MD5.C9DCE1CB628AEED3C0C30ABBF4F1E718] - (...) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [128280] [PID.2220]
[MD5.3628933AF5305EAB8173949BFF912F04] - (.Intel Corporation - Intel(R) Dynamic Application Loader Host In.) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [161560] [PID.2244]
[MD5.3A2E85F7D90D15460C337CE80C2E3B29] - (...) -- C:\Windows\SysWOW64\PnkBstrA.exe [76888] [PID.2304]
[MD5.5FEF2DD4926E1A9CFA8037120312CE72] - (.glindorus - glindorus.) -- C:\Program Files (x86)\glindorus\updateglindorus.exe [65312] [PID.2452] =>PUP.Glindorus
[MD5.5FEF2DD4926E1A9CFA8037120312CE72] - (.glindorus - glindorus.) -- C:\Program Files (x86)\glindorus\bin\utilglindorus.exe [65312] [PID.2520] =>PUP.Glindorus
[MD5.514455F6586473791C5C6B25BA4E1BAB] - (.Hewlett-Packard Company - HP Software Framework WMI Service.) -- C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe [1001376] [PID.4444]
[MD5.7D4B9A48430ED57ACA6373B71D5904CA] - (.Intel Corporation - IAStorDataSvc.) -- C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [13592] [PID.4272]
[MD5.BF22ACF4CF3734D61357E67F0521BC03] - (.Intel Corporation - Local Manageability Service.) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [277784] [PID.2500]
[MD5.B097EBA0E3FEB020BB65FE43AF5ECCFF] - (.Intel Corporation - User Notification Service.) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [363800] [PID.3100]
~ Processes Running: Scanned in 00mn 02s



---\\ Google Chrome, D�marrage,Recherche,Extensions (G0,G1,G2)
C:\Users\QUENTIN\AppData\Local\Google\Chrome\User Data\Default\Preferences
~ Google Browser: 0 Scanned in 00mn 00s



---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3)
C:\Users\QUENTIN\AppData\Roaming\Mozilla\Firefox\Profiles\1b6sfmvq.default\prefs.js
C:\Users\QUENTIN\AppData\Roaming\Mozilla\Firefox\Profiles\1b6sfmvq.default\user.js
M3 - MFPP: Plugins - [QUENTIN] -- C:\Users\QUENTIN\AppData\Roaming\Mozilla\Firefox\Profiles\1b6sfmvq.default\searchplugins\askcom.xml
M3 - MFPP: Plugins - [QUENTIN] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\babylon.xml =>Toolbar.Babylon
M3 - MFPP: Plugins - [QUENTIN] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\StartWeb.xml
M0 - MFSP: prefs.js [QUENTIN - 1b6sfmvq.default] http://start.iminent.com =>Adware.IMBooster
M2 - MFEP: prefs.js [QUENTIN - 1b6sfmvq.default\6c937ed6-be66-4f72-9a60-ce5789cc7f09@53ba6712-2cae-46e2-b821-95baea44e049.com] [] Plus-HD-1.6 v (..) =>Adware.PlusHD
M2 - MFEP: prefs.js [QUENTIN - 1b6sfmvq.default\ffxtlbr@delta.com] [] Delta Toolbar v1.5.0 (..) =>Toolbar.DeltaSearch
M2 - MFEP: prefs.js [QUENTIN - 1b6sfmvq.default\toolbar@ask.com] [] v (..)
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (...) -- C:\Windows\system32\Macromed\Flash\NPSWF64_11_9_900_117.dll
P2 - FPN: [HKLM] [@Microsoft.com/NpCtrl,version=1.0] - (. Microsoft Corporation - 5.1.20913.0.) -- c:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll
P2 - FPN: [HKLM] [@microsoft.com/OfficeAuthz,version=14.0] - (.Microsoft Corporation - Office Authorization plug-in for NPAPI browsers.) -- C:\Program Files\Microsoft Office\Office14\NPAUTHZ.dll
P2 - FPN: [HKCU] [@Skype Limited.com/Facebook Video Calling Plugin] - (.Skype Limited - Facebook Video Calling Plugin.) -- C:\Users\QUENTIN\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll
P2 - FPN: [HKCU] [@unity3d.com/UnityPlayer,version=1.0] - (.Unity Technologies ApS - Unity Player 4.2.0f4.) -- C:\Users\QUENTIN\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll
~ Firefox Browser: 12 Scanned in 00mn 00s



---\\ Internet Explorer, D�marrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://g.uk.msn.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R3 - URLSearchHook: UrlSearchHook Class [64Bits] - {00000000-6E41-4FD3-8538-502F5495E5FC} . (.Ask - Ask Toolbar.) (5.15.15.36191) -- C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll =>Toolbar.Ask
R3 - URLSearchHook: Microsoft Url Search Hook [64Bits] - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Internet Browser.) (10.00.9200.16521 (win8_gdr_soc_ie.130216-2100)) -- C:\Windows\SysWOW64\ieframe.dll
R3 - URLSearchHook: (no name) [64Bits] - {84FF7BD6-B47F-46F8-9130-01B2696B36CB} . (.Microsoft Corporation - Internet Browser.) (No version) -- (.not file.)
R4 - HKLM\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 1
R4 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 1
~ IE Browser: 17 Scanned in 00mn 00s



---\\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local;
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
~ Proxy management: Scanned in 00mn 00s



---\\ Analyse des lignes F0, F1, F2, F3 - IniFiles, Autoloading programs
F2 - REG:system.ini: USERINIT=C:\Windows\system32\userinit.exe,
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe
F2 - REG:system.ini: VMApplet=C:\Windows\System32\SystemPropertiesPerformance.exe
~ Keys: Scanned in 00mn 00s



---\\ Hosts file redirection (O1)
~ Le fichier hosts est sain (The hosts file is clean).
~ Hosts File: Scanned in 00mn 00s
~ Nombre de lignes (Lines number): 21



---\\ Browser Helper Objects de navigateur (O2)
O2 - BHO: CrossriderApp0032002 [64Bits] - {11111111-1111-1111-1111-110311201102} . (.Plus HD - Plus-HD-1.6 BHO.) -- C:\Program Files (x86)\Plus-HD-1.6\Plus-HD-1.6-bho.dll =>Adware.PlusHD
O2 - BHO: Bing Bar Helper [64Bits] - {1dad3af3-ef2f-4f64-ac4b-11789189fcb6} . (.Microsoft Corporation. - Extensions du client Bing.) -- C:\Program Files (x86)\Microsoft\BingBar\7.2.241.0\BingExt.dll =>Toolbar.Bing
O2 - BHO: Babylon toolbar helper [64Bits] - {2EECD738-5844-4a99-B4B6-146BF802613B} . (.Babylon BHO - Pas de description.) -- C:\Program Files (x86)\BabylonToolbar\BabylonToolbar\1.8.3.8\bh\BabylonToolbar.dll =>Toolbar.Babylon
O2 - BHO: ContentBlockerBrowserHelperObject [64Bits] - {5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F} . (.Kaspersky Lab ZAO - Content Blocker Plugin.) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\IEExt\ContentBlocker\ie_content_blocker_plugin.dll
O2 - BHO: VirtualKeyboardBrowserHelperObject [64Bits] - {73455575-E40C-433C-9784-C78DC7761455} . (.Kaspersky Lab ZAO - Virtual Keyboard Plugin.) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll
O2 - BHO: Java(tm) Plug-In SSV Helper [64Bits] - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live ID [64Bits] - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corp. - Microsoft� Windows Live ID Login Helper.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: glindorus [64Bits] - {9598e82a-7e09-4438-b425-b9e9718c3c73} . (.glindorus - glindorus.) -- C:\Program Files (x86)\glindorus\glindorusbho.dll =>PUP.Glindorus
O2 - BHO: Safe Money Plugin [64Bits] - {9E6D0D23-3D72-4A94-AE1F-2D167624E3D9} . (.Kaspersky Lab ZAO - Safe Money Plugin.) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\IEExt\OnlineBanking\online_banking_bho.dll
O2 - BHO: IMinent WebBooster [64Bits] - {A09AB6EB-31B5-454C-97EC-9B294D92EE2A} . (...) -- C:\Program Files (x86)\Iminent\Iminent.WebBooster.InternetExplorer.dll (.not file.) =>Adware.IMBooster
O2 - BHO: URLRedirectionBHO [64Bits] - {B4F3A835-0E21-4959-BA22-42B3008E02FF} . (.Microsoft Corporation - Microsoft Office Document Cache Handler.) -- C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.dll
O2 - BHO: Ask Toolbar BHO [64Bits] - {D4027C7F-154A-4066-A1AD-4243D8127440} . (.Ask - Ask Toolbar.) -- C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll =>Toolbar.Ask
O2 - BHO: Java(tm) Plug-In 2 SSV Helper [64Bits] - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O2 - BHO: link filter bho [64Bits] - {E33CF602-D945-461A-83F0-819F76A199F8} . (.Kaspersky Lab ZAO - URL Advisor Plugin.) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\IEExt\UrlAdvisor\klwtbbho.dll
O2 - BHO: HP Network Check Helper [64Bits] - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} . (.Hewlett-Packard - HP Network Check IE Plug-in.) -- C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll
O2 - BHO: (no name) [64Bits] - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} Cl� orpheline
~ BHO: 23 Scanned in 00mn 00s



---\\ Internet Explorer Toolbars (O3)
O3 - Toolbar: (no name) [64Bits] - [HKLM]{9421DD08-935F-4701-A9CA-22DF90AC4EA6} Cl� orpheline
O3 - Toolbar\WebBrowser: (no name) [64Bits] - [HKCU]{7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} Cl� orpheline
O3 - Toolbar\WebBrowser: (no name) [64Bits] - [HKCU]{D4027C7F-154A-4066-A1AD-4243D8127440} Cl� orpheline
~ Toolbar: Scanned in 00mn 00s



---\\ Autres liens utilisateurs (O4)
O4 - GS\Desktop [Public]: AMCAP.lnk . (.Microsoft Corporation - Capture Application (Sample).) -- C:\Program Files (x86)\Common Files\PAP7501\amcap.exe
O4 - GS\Desktop [Public]: GeoGebra.lnk . (.International GeoGebra Institute - GeoGebra.) -- C:\Program Files (x86)\GeoGebra 4.2\GeoGebra.exe
O4 - GS\Desktop [Public]: Skype.lnk . (...) -- C:\Windows\Installer\{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}\SkypeIcon.exe
O4 - GS\Desktop [Public]: World of Warcraft.lnk . (.Blizzard Entertainment - World of Warcraft Setup.) -- C:\World of Warcraft\World of Warcraft Launcher.exe
O4 - GS\Program [Public]: Adobe Reader XI.lnk . (...) -- C:\Windows\Installer\{AC76BA86-7AD7-1036-7B44-AB0000000001}\SC_Reader.ico
O4 - GS\Program [Public]: Apple Software Update.lnk . (...) -- C:\Windows\Installer\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}\AppleSoftwareUpdateIco.exe =>.Apple Inc
O4 - GS\Program [Public]: Media Center.lnk . (.Microsoft Corporation - Windows Media Center.) -- C:\Windows\ehome\ehshell.exe =>.Microsoft Corporation
O4 - GS\Program [Public]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
O4 - GS\Program [Public]: Sidebar.lnk . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files (x86)\Windows Sidebar\sidebar.exe =>.Microsoft Corporation
O4 - GS\Program [Public]: Windows Anytime Upgrade.lnk . (.Microsoft Corporation - Interface utilisateur de Mise � niveau expr.) -- C:\Windows\system32\WindowsAnytimeUpgradeUI.exe
O4 - GS\Program [Public]: Windows DVD Maker.lnk . (...) -- C:\Program Files (x86)\DVD Maker\DVDMaker.exe (.not file.)
O4 - GS\Program [Public]: Windows Fax and Scan.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) -- C:\Windows\system32\WFS.exe =>.Microsoft Corporation
O4 - GS\Program [Public]: Windows Live Mail.lnk . (.Microsoft Corporation - Windows Live Mail.) -- C:\Program Files (x86)\Windows Live\Mail\wlmail.exe =>.Microsoft Corporation
O4 - GS\Program [Public]: Windows Live Movie Maker.lnk . (.Microsoft Corporation - Windows Live Movie Maker.) -- C:\Program Files (x86)\Windows Live\Photo Gallery\MovieMaker.exe =>.Microsoft Corporation
O4 - GS\Program [Public]: Windows Live Photo Gallery.lnk . (.Microsoft Corporation - Windows Live Photo Gallery.) -- C:\Program Files (x86)\Windows Live\Photo Gallery\WLXPhotoGallery.exe =>.Microsoft Corporation
O4 - GS\Program [Public]: Windows Media Player.lnk . (.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe =>.Microsoft Corporation
O4 - GS\Program [Public]: XPS Viewer.lnk . (.Microsoft Corporation - Visionneuse XPS.) -- C:\Windows\system32\xpsrchvw.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Calculator.lnk . (.Microsoft Corporation - Calculatrice de Windows.) -- C:\Windows\system32\calc.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: displayswitch.lnk . (.Microsoft Corporation - Afficher le commutateur.) -- C:\Windows\system32\displayswitch.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Mobility Center.lnk . (.Microsoft Corporation - Centre de mobilit� Windows.) -- C:\Windows\system32\mblctr.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Paint.lnk . (.Microsoft Corporation - Paint.) -- C:\Windows\system32\mspaint.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Remote Desktop Connection.lnk . (.Microsoft Corporation - Connexion Bureau � distance.) -- C:\Windows\system32\mstsc.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Snipping Tool.lnk . (.Microsoft Corporation - Outil Capture.) -- C:\Windows\system32\SnippingTool.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Sound Recorder.lnk . (.Microsoft Corporation - Magn�tophone Windows.) -- C:\Windows\system32\SoundRecorder.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Sticky Notes.lnk . (.Microsoft Corporation - Pense-b�te.) -- C:\Windows\system32\StikyNot.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Sync Center.lnk . (.Microsoft Corporation - Microsoft Sync Center.) -- C:\Windows\System32\mobsync.exe =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Welcome Center.lnk . (.Microsoft Corporation - Mise en route.) -- C:\Windows\system32\OobeFldr.dll =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Wordpad.lnk . (.Microsoft Corporation - Application Windows Wordpad.) -- C:\Program Files (x86)\Windows NT\Accessories\wordpad.exe =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: Character Map.lnk . (.Microsoft Corporation - Table des caract�res.) -- C:\Windows\system32\charmap.exe =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: dfrgui.lnk . (.Microsoft Corporation - D�fragmenteur de disque Microsoft�.) -- C:\Windows\system32\dfrgui.exe =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: Disk Cleanup.lnk . (.Microsoft Corporation - Gestionnaire de nettoyage de disque pour Wi.) -- C:\Windows\system32\cleanmgr.exe =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: Resource Monitor.lnk . (.Microsoft Corporation - Moniteur de ressources et de performances.) -- C:\Windows\system32\perfmon.exe =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: System Information.lnk . (.Microsoft Corporation - Informations syst�me.) -- C:\Windows\system32\msinfo32.exe =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: System Restore.lnk . (.Microsoft Corporation - Restauration du syst�me de Microsoft� Windo.) -- C:\Windows\system32\rstrui.exe =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: Task Scheduler.lnk . (...) -- C:\Windows\system32\taskschd.msc
O4 - GS\SystemTools [Public]: Windows Easy Transfer Reports.lnk . (.Microsoft Corporation - Application post-migration de transfert de.) -- C:\Windows\system32\migwiz\postmig.exe =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: Windows Easy Transfer.lnk . (.Microsoft Corporation - Application Transfert de fichiers et param�.) -- C:\Windows\system32\migwiz\migwiz.exe =>.Microsoft Corporation
O4 - GS\QuickLaunch [QUENTIN]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O4 - GS\QuickLaunch [QUENTIN]: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - GS\TaskBar [QUENTIN]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O4 - GS\TaskBar [QUENTIN]: HP Recommended.LNK . (...) -- C:\Program Files (x86)\Hewlett-Packard\HP LaunchBox\HPTaskBar1.exe (.not file.)
O4 - GS\TaskBar [QUENTIN]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
O4 - GS\TaskBar [QUENTIN]: Photos Snapfish.lnk . (...) -- C:\Program Files (x86)\Hewlett-Packard\Shared\WizLink.exe
O4 - GS\TaskBar [QUENTIN]: Windows Explorer.lnk . (.Microsoft Corporation - Explorateur Windows.) -- C:\Windows\explorer.exe =>.Microsoft Corporation
O4 - GS\TaskBar [QUENTIN]: Windows Live.LNK . (...) -- C:\Program Files (x86)\Hewlett-Packard\HP LaunchBox\HPTaskBar2.exe (.not file.)
O4 - GS\TaskBar [QUENTIN]: Windows Media Player.lnk . (.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe =>.Microsoft Corporation
O4 - GS\Program [QUENTIN]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - GS\Accessories [QUENTIN]: Command Prompt.lnk . (.Microsoft Corporation - Interpr�teur de commandes Windows.) -- C:\Windows\system32\cmd.exe =>.Microsoft Corporation
O4 - GS\Accessories [QUENTIN]: Notepad.lnk . (.Microsoft Corporation - Bloc-notes.) -- C:\Windows\system32\notepad.exe =>.Microsoft Corporation
O4 - GS\Accessories [QUENTIN]: Run.lnk - Cl� orpheline
O4 - GS\Accessories [QUENTIN]: Windows Explorer.lnk . (.Microsoft Corporation - Explorateur Windows.) -- C:\Windows\explorer.exe =>.Microsoft Corporation
O4 - GS\SystemTools [QUENTIN]: Internet Explorer (No Add-ons).lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe
O4 - GS\SystemTools [QUENTIN]: Private Character Editor.lnk . (.Microsoft Corporation - �diteur de caract�res priv�s.) -- C:\Windows\system32\eudcedit.exe =>.Microsoft Corporation
O4 - GS\SendTo [QUENTIN]: Skype.lnk . (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe =>.Skype Technologies S.A.
O4 - GS\Desktop [QUENTIN]: Algobox.lnk . (...) -- C:\Program Files (x86)\Algobox\algobox.exe
O4 - GS\Desktop [QUENTIN]: Gameforge Live.lnk . (...) -- C:\Program Files (x86)\GameforgeLive\GameforgeLive.exe
O4 - GS\Desktop [QUENTIN]: OpenOffice.org 3.4.1.lnk . (.OpenOffice.org - OpenOffice.org 3.4.1.) -- C:\Program Files (x86)\OpenOffice.org 3\program\soffice.exe
O4 - GS\Desktop [QUENTIN]: Ordinateur - Raccourci.lnk - Cl� orpheline
O4 - GS\Desktop [QUENTIN]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag Setup.) -- C:\Program Files (x86)\ZHPDiag\ZHPhep.exe =>.Nicolas Coolman
O4 - GS\Desktop [QUENTIN]: ZHPFix.lnk . (.Nicolas Coolman - ZHPDiag Setup.) -- C:\Program Files (x86)\ZHPDiag\ZHPFix\ZHPhep.exe =>.Nicolas Coolman
~ Global Startup: 61 Scanned in 00mn 01s



---\\ Applications lanc�es au d�marrage du syt�me (O4)
O4 - GS\Startup [QUENTIN]: OpenOffice.org 3.4.1.lnk . (...) -- C:\Program Files (x86)\OpenOffice.org 3\program\quickstart.exe
O4 - HKLM\..\Run: [IgfxTray] . (.Intel Corporation - igfxTray Module.) -- C:\Windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] . (.Intel Corporation - hkcmd Module.) -- C:\Windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] . (.Intel Corporation - persistence Module.) -- C:\Windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files (x86)\Synaptics\SynTP\SynTPEnh.exe (.not file.)
O4 - HKLM\..\Run: [SetDefault] . (.Hewlett-Packard Development Company, L.P. - SetDefault.) -- C:\Program Files\Hewlett-Packard\HP LaunchBox\SetDefault.exe
O4 - HKLM\..\Run: [SysTrayApp] . (.IDT, Inc. - IDT PC Audio.) -- C:\Program Files\IDT\WDM\sttray64.exe
O4 - HKLM\..\Run: [GUCI_AVS] . (.PixArt Imaging Incorporation - Registry Monitor.) -- C:\Windows\PixArt\PAP7501\GUCI_AVS.exe
O4 - HKLM\..\Run: [PACTray] . (.PixArt Imaging Incorporation - PixArt Camera Tray.) -- C:\Windows\PixArt\PAP7501\PACTray.exe
O4 - HKCU\..\Run: [Facebook Update] . (.Facebook Inc. - Programme d'installation de Facebook.) -- C:\Users\QUENTIN\AppData\Local\Facebook\Update\FacebookUpdate.exe
O4 - HKCU\..\Run: [Skype] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe =>.Skype Technologies S.A.
O4 - HKCU\..\Run: [Akamai NetSession Interface] . (.Akamai Technologies, Inc. - Akamai NetSession Client.) -- C:\Users\QUENTIN\AppData\Local\Akamai\netsession_win.exe
O4 - HKCU\..\Run: [Eden Eternal - Downloader] . (.Aeria Games & Entertainment - Downloader.) -- C:\Users\QUENTIN\Downloads\edeneternal_fr_downloader.exe
O4 - HKCU\..\Run: [Optimizer Pro] . (.PC Utilities Pro - Fix, clean, optimize your PC!.) -- C:\Program Files (x86)\Optimizer Pro\OptProLauncher.exe =>PUP.OptimizerPro
O4 - HKLM\..\Wow6432Node\Run: [StartCCC] . (.Advanced Micro Devices, Inc. - Catalyst� Control Center Launcher.) -- C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe =>.Advanced Micro Devices, Inc
O4 - HKLM\..\Wow6432Node\Run: [USB3MON] . (.Intel Corporation - Intel(R) USB 3.0 Monitor.) -- C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
O4 - HKLM\..\Wow6432Node\Run: [Easybits Recovery] . (.EasyBits Software AS - Pas de description.) -- C:\Program Files (x86)\EasyBits For Kids\ezRecover.exe =>.EasyBits Software AS
O4 - HKLM\..\Wow6432Node\Run: [HPOSD] . (.Hewlett-Packard Development Company, L.P. - HP On Screen Display.) -- C:\Program Files (x86)\Hewlett-Packard\HP On Screen Display\HPOSD.exe
O4 - HKLM\..\Wow6432Node\Run: [HP CoolSense] . (.Hewlett-Packard Development Company, L.P. - HP CoolSense.) -- C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe
O4 - HKLM\..\Wow6432Node\Run: [ApnUpdater] . (.Ask - Ask Updater.) -- C:\Program Files (x86)\Ask.com\Updater\Updater.exe
O4 - HKLM\..\Wow6432Node\Run: [EEventManager] . (.SEIKO EPSON CORPORATION - EEventManager Application.) -- C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe
O4 - HKLM\..\Wow6432Node\Run: [AVP] . (.Kaspersky Lab ZAO - Kaspersky Anti-Virus.) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe
O4 - HKLM\..\Wow6432Node\Run: [APSDaemon] . (.Apple Inc. - Apple Push.) -- C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
O4 - HKLM\..\Wow6432Node\Run: [iTunesHelper] . (.Apple Inc. - iTunesHelper.) -- C:\Program Files (x86)\iTunes\iTunesHelper.exe
O4 - HKLM\..\Wow6432Node\Run: [HP Quick Launch] . (.Hewlett-Packard Development Company, L.P. - HP Message Service.) -- C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe
O4 - HKLM\..\Wow6432Node\Run: [Iminent] C:\Program Files (x86)\Iminent\Iminent.exe (.not file.) =>Adware.IMBooster
O4 - HKLM\..\Wow6432Node\Run: [IminentMessenger] C:\Program Files (x86)\Iminent\Iminent.Messengers.exe (.not file.) =>Adware.IMBooster
O4 - HKLM\..\Wow6432Node\Run: [SunJavaUpdateSched] . (.Oracle Corporation - Java(TM) Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe =>.Oracle Corporation
O4 - HKLM\..\Wow6432Node\Run: [Adobe ARM] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe =>.Adobe Systems Incorporated
O4 - HKLM\..\Wow6432Node\Run: [fst_fr_6] . (...) -- C:\Program Files (x86)\fst_fr_6\fst_fr_6.exe =>PUA.FSTfr9
O4 - HKLM\..\Wow6432Node\RunOnce: [upfst_fr_6.exe] . (...) -- C:\Users\QUENTIN\AppData\Local\fst_fr_6\upfst_fr_6.exe =>PUA.FSTfr9
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files (x86)\Windows Sidebar\Sidebar.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files (x86)\Windows Sidebar\Sidebar.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-21-2090178948-2039204095-1395690538-1001\..\Run: [Facebook Update] . (.Facebook Inc. - Programme d'installation de Facebook.) -- C:\Users\QUENTIN\AppData\Local\Facebook\Update\FacebookUpdate.exe
O4 - HKUS\S-1-5-21-2090178948-2039204095-1395690538-1001\..\Run: [Skype] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe =>.Skype Technologies S.A.
O4 - HKUS\S-1-5-21-2090178948-2039204095-1395690538-1001\..\Run: [Akamai NetSession Interface] . (.Akamai Technologies, Inc. - Akamai NetSession Client.) -- C:\Users\QUENTIN\AppData\Local\Akamai\netsession_win.exe
O4 - HKUS\S-1-5-21-2090178948-2039204095-1395690538-1001\..\Run: [Eden Eternal - Downloader] . (.Aeria Games & Entertainment - Downloader.) -- C:\Users\QUENTIN\Downloads\edeneternal_fr_downloader.exe
O4 - HKUS\S-1-5-21-2090178948-2039204095-1395690538-1001\..\Run: [Optimizer Pro] . (.PC Utilities Pro - Fix, clean, optimize your PC!.) -- C:\Program Files (x86)\Optimizer Pro\OptProLauncher.exe =>PUP.OptimizerPro
~ Application: Scanned in 00mn 00s



---\\ Invisibilit� de l'ic�ne d'options IE dans le panneau de Configuration (O5)
O5 - control.ini: [HKLM\..\Control Panel] inetcpl.cpl=no
~ IE Control Panel: 1 Scanned in 00mn 00s



---\\ Boutons situ�s sur la barre d'outils principale d'Internet Explorer (O9)
O9 - Extra button: Clavier virtuel [64Bits] - {0C4CC089-D306-440D-9772-464E226F6539} . (...) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\kbrd.ico
O9 - Extra button: &Envoyer � OneNote [64Bits] - {2670000A-7350-4f3c-8081-5663EE0C6C49} -- C:\Program Files (x86)\MICROS~2\Office14\ONBttnIE.dll (.not file.)
O9 - Extra button: Notes &li�es OneNote [64Bits] - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} -- C:\Program Files (x86)\MICROS~2\Office14\ONBTTN~1.dll (.not file.)
O9 - Extra button: Analyse des liens [64Bits] - {CCF151D8-D089-449F-A5A4-D9909053F20F} . (...) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\logo.ico
~ IE Extra Buttons: Scanned in 00mn 00s



---\\ Winsock hijacker (Layered Service Provider) (O10)
O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\Windows\system32\NLAapi.dll
O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d�affectation de noms de messagerie.) -- C:\Windows\system32\napinsp.dll
O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur d�espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Fournisseur d�espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\Windows\system32\mswsock.dll =>.Microsoft Corporation
O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\Windows\system32\winrnr.dll
O10 - WLSP:\000000000007\Winsock LSP File . (.Microsoft Corp. - Microsoft� Windows Live ID Namespace Provider.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.dll =>.Microsoft Corporation
O10 - WLSP:\000000000008\Winsock LSP File . (.Microsoft Corp. - Microsoft� Windows Live ID Namespace Provider.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.dll =>.Microsoft Corporation
O10 - WLSP:\000000000009\Winsock LSP File . (.Apple Inc. - Bonjour Namespace Provider.) -- C:\Program Files (x86)\Bonjour\mdnsNSP.dll
~ Winsock: 9 Scanned in 00mn 00s



---\\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{0615C4B9-1664-4989-A9E3-B445B92EFC6E}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\..\{9A207438-4626-4BED-BC7E-DAE002498F52}: DhcpNameServer = 40.20.1.201 40.20.1.202
O17 - HKLM\System\CCS\Services\Tcpip\..\{9A207438-4626-4BED-BC7E-DAE002498F52}: DhcpDomain = A1-Line.COM
O17 - HKLM\System\CS1\Services\Tcpip\..\{0615C4B9-1664-4989-A9E3-B445B92EFC6E}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{9A207438-4626-4BED-BC7E-DAE002498F52}: DhcpNameServer = 40.20.1.201 40.20.1.202
O17 - HKLM\System\CS1\Services\Tcpip\..\{9A207438-4626-4BED-BC7E-DAE002498F52}: DhcpDomain = A1-Line.COM
O17 - HKLM\System\CS2\Services\Tcpip\..\{0615C4B9-1664-4989-A9E3-B445B92EFC6E}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS2\Services\Tcpip\..\{9A207438-4626-4BED-BC7E-DAE002498F52}: DhcpNameServer = 40.20.1.201 40.20.1.202
O17 - HKLM\System\CS2\Services\Tcpip\..\{9A207438-4626-4BED-BC7E-DAE002498F52}: DhcpDomain = A1-Line.COM
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
~ Domain: Scanned in 00mn 00s



---\\ Protocole additionnel (O18)
O18 - Handler: wlpg [64Bits] - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} . (...) --
O18 - Filter: text/xml [64Bits] - {807573E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.dll =>.Microsoft Corporation
~ Protocole Additionnel: Scanned in 00mn 00s



---\\ Valeur de Registre AppInit_DLLs et sous-cl�s Winlogon Notify (autorun) (O20)
O20 - Winlogon Notify: igfxcui . (.Intel Corporation - igfxdev Module.) -- C:\Windows\System32\igfxdev.dll
~ Winlogon: Scanned in 00mn 00s



---\\ Valeur de Registre AppInit_DLLs et sous-cl�s Winlogon Notify (autorun) (O20)
O20 - AppInit_DLLs: . (...) - C:\Program Files (x86)\OPTIMI~1\OPTPRO~2.dll (.not file.)
~ AppInit DLL: Scanned in 00mn 00s



---\\ Cl� de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
~ SSODL: 1 Scanned in 00mn 00s



---\\ Liste des services NT non Microsoft et non d�sactiv�s (O23)
O23 - Service: Optimizer Pro Crash Monitor (70e6ca8c) . (...) - C:\Program Files (x86)\optimi~1\OptProCrash.exe =>PUP.OptimizerPro
O23 - Service: ABBYY FineReader 9.0 Sprint Licensing Se (ABBYY.Licensing.FineReader.Sprint.9.0) . (.ABBYY - ABBYY network license server.) - C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: (AMD External Events Utility) . (.AMD - AMD External Events Service Module.) - C:\Windows\System32\atiesrxx.exe
O23 - Service: Apple Mobile Device (Apple Mobile Device) . (.Apple Inc. - MobileDeviceService.) - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Kaspersky Anti-Virus Service (AVP) . (.Kaspersky Lab ZAO - Kaspersky Anti-Virus.) - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe
O23 - Service: Service Bonjour (Bonjour Service) . (.Apple Inc. - Bonjour Service.) - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Service Google Update (gupdate) (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe =>.Google Inc
O23 - Service: HP Support Assistant Service (HP Support Assistant Service) . (.Hewlett-Packard Company - HP Support Assistant Service.) - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe =>.Hewlett-Packard Co
O23 - Service: HP Client Services (HPClientSvc) . (.Hewlett-Packard Company - HP Client Services.) - C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe
O23 - Service: HP Service (hpsrv) . (.Hewlett-Packard Company - HpService.) - C:\Windows\System32\Hpservice.exe
O23 - Service: HPWMISVC (HPWMISVC) . (.Hewlett-Packard Development Company, L.P. - HP Quick Launch WMI Service.) - C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) . (.Intel Corporation - IAStorDataSvc.) - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: Intel(R) Capability Licensing Service In (Intel(R) Capability Licensing Service Interface) . (.Intel(R) Corporation - Intel(R) Capability Licensing Service Inter.) - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) ME Service (Intel(R) ME Service) . (...) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
O23 - Service: Intel(R) Dynamic Application Loader Host (jhi_service) . (.Intel Corporation - Intel(R) Dynamic Application Loader Host In.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: Intel(R) Management and Security Applica (LMS) . (.Intel Corporation - Local Manageability Service.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: PnkBstrA (PnkBstrA) . (...) - C:\Windows\SysWOW64\PnkBstrA.exe
O23 - Service: Skype Updater (SkypeUpdate) . (.Skype Technologies - Skype Updater Service.) - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: SProtection (SProtection) . (.Iminent - Iminent Protection.) - C:\Program Files (x86)\Common Files\Umbrella\umbrella.exe =>Adware.IMBooster
O23 - Service: C:\Windows\System32\stlang64.dll (STacSV) . (.IDT, Inc. - IDT PC Audio.) - C:\Program Files\IDT\WDM\STacSV64.exe
O23 - Service: Intel(R) Management and Security Applica (UNS) . (.Intel Corporation - User Notification Service.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: Update glindorus (Update glindorus) . (.glindorus - glindorus.) - C:\Program Files (x86)\glindorus\updateglindorus.exe =>PUP.Glindorus
O23 - Service: Util glindorus (Util glindorus) . (.glindorus - glindorus.) - C:\Program Files (x86)\glindorus\bin\utilglindorus.exe =>PUP.Glindorus
~ Services: 24 Scanned in 00mn 33s



---\\ Enum�ration Active Desktop & MHTML Editor (O24)
O24 - Default MHTML Editor: Last - .(...) - (.not file.)
~ Desktop Component: 4 Scanned in 00mn 00s



---\\ Enum�re les donn�es de BootExecute (BEX) (O34)
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
~ BEX: 1 Scanned in 00mn 00s



---\\ T�ches planifi�es en automatique (O39)
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\Adobe Flash Player Updater.job [1002]
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2090178948-2039204095-1395690538-1001Core.job [914]
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2090178948-2039204095-1395690538-1001UA.job [936]
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job [1066]
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job [1070]
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\HPCeeScheduleForQUENTIN-HP$.job [348]
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\HPCeeScheduleForQUENTIN.job [340]
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\Plus-HD-1.6-chromeinstaller.job [1910] =>Adware.PlusHD
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\Plus-HD-1.6-codedownloader.job [1202] =>Adware.PlusHD
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\Plus-HD-1.6-enabler.job [1102] =>Adware.PlusHD
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\Plus-HD-1.6-firefoxinstaller.job [1834] =>Adware.PlusHD
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\Plus-HD-1.6-updater.job [1300] =>Adware.PlusHD
[MD5.A283108E14F3970432C21AF4C0CB1BCE] [APT] [Adobe Flash Player Updater] (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [257416]
[MD5.754F0855B332CA5FEC434D7AF295BE2E] [APT] [EPUpdater] (...) -- C:\Users\QUENTIN\AppData\Roaming\BabSolution\Shared\BabMaint.exe [10224] =>Hijacker.BabSolution
[MD5.2A3FB4C98F139038E23330D2439DB8A4] [APT] [FacebookUpdateTaskUserS-1-5-21-2090178948-2039204095-1395690538-1001Core] (.Facebook Inc..) -- C:\Users\QUENTIN\AppData\Local\Facebook\Update\FacebookUpdate.exe [138096]
[MD5.2A3FB4C98F139038E23330D2439DB8A4] [APT] [FacebookUpdateTaskUserS-1-5-21-2090178948-2039204095-1395690538-1001UA] (.Facebook Inc..) -- C:\Users\QUENTIN\AppData\Local\Facebook\Update\FacebookUpdate.exe [138096]
[MD5.F02A533F517EB38333CB12A9E8963773] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [136176]
[MD5.F02A533F517EB38333CB12A9E8963773] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [136176]
[MD5.8AA3B22B716A04AC8DD13318A40D708D] [APT] [HPCeeScheduleForQUENTIN] (.Hewlett-Packard.) -- C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [95800]
[MD5.8AA3B22B716A04AC8DD13318A40D708D] [APT] [HPCeeScheduleForQUENTIN-HP$] (.Hewlett-Packard.) -- C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [95800]
[MD5.B7F55E2AE978D3D34F7876EE5D689AAE] [APT] [MirageAgent] (.CyberLink.) -- C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe [136488]
[MD5.60BBDDDF9328FAB0034A4715A4DA48F4] [APT] [Plus-HD-1.6-chromeinstaller] (.Plus HD.) -- C:\Program Files (x86)\Plus-HD-1.6\Plus-HD-1.6-chromeinstaller.exe [489320] =>Adware.PlusHD
[MD5.4A63A47D473641E78D1B9B4D159C1E50] [APT] [Plus-HD-1.6-codedownloader] (.Plus HD.) -- C:\Program Files (x86)\Plus-HD-1.6\Plus-HD-1.6-codedownloader.exe [516456] =>Adware.PlusHD
[MD5.84FE8FF821AF5E26E9649E53FF5C9FB6] [APT] [Plus-HD-1.6-enabler] (.Plus HD.) -- C:\Program Files (x86)\Plus-HD-1.6\Plus-HD-1.6-enabler.exe [351080] =>Adware.PlusHD
[MD5.2783B08B9A2955A9271584E8A1A622F3] [APT] [Plus-HD-1.6-firefoxinstaller] (.Plus HD.) -- C:\Program Files (x86)\Plus-HD-1.6\Plus-HD-1.6-firefoxinstaller.exe [727400] =>Adware.PlusHD
[MD5.D7F45DD8FB09075B5307EF5FC50A1E58] [APT] [Plus-HD-1.6-updater] (.Plus HD.) -- C:\Program Files (x86)\Plus-HD-1.6\Plus-HD-1.6-updater.exe [396136] =>Adware.PlusHD
[MD5.0E4D145F0B0612957D0E4959B1CC88AD] [APT] [Scheduled Update for Ask Toolbar] (...) -- C:\Program Files (x86)\Ask.com\UpdateTask.exe [137864] =>Toolbar.Ask
[MD5.C155A13687144076286989EF078112C2] [APT] [{45E8A59A-3744-47A6-894D-922F7061C442}] (.Nicolas Coolman.) -- C:\Program Files (x86)\ZHPDiag\ZHPhep.exe [1917440]
[MD5.14B3499330603AA8C11563544CDAB452] [APT] [{F3337F67-39D8-4AC2-A93E-29E11486338C}] (.Adobe Systems Inc..) -- C:\Users\QUENTIN\Downloads\Shockwave_Installer_Slim.exe [6722216]
[MD5.34EBD4FF6A24D86BB4716D6AFCC1A89B] [APT] [AppleSoftwareUpdate] (.Apple Inc..) -- C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [561984]
[MD5.0AE2C218A9AB6C16D79160CCE55B35FC] [APT] [HP Support Assistant Quick Start] (.Hewlett-Packard Company.) -- C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [525728]
[MD5.0AE2C218A9AB6C16D79160CCE55B35FC] [APT] [PC Health Analysis] (.Hewlett-Packard Company.) -- C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [525728]
[MD5.0AE2C218A9AB6C16D79160CCE55B35FC] [APT] [PC Health Analysis Install] (.Hewlett-Packard Company.) -- C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [525728]
[MD5.28E1A34ED1B810BC2F4734F2DBFF2A76] [APT] [Update Check] (.Hewlett-Packard Company.) -- C:\ProgramData\Hewlett-Packard\HP Support Framework\Resources\Updater7\HPSFUpdater.exe [615736]
[MD5.ECF92BCD708FF6E52F000EF7A2A84099] [APT] [WarrantyChecker] (.Hewlett-Packard.) -- C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [1584856]
[MD5.ECF92BCD708FF6E52F000EF7A2A84099] [APT] [WarrantyChecker_DeviceScan] (.Hewlett-Packard.) -- C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [1584856]
~ Scheduled Task: 42 Scanned in 00mn 13s



---\\ Composants install�s (ActiveSetup Installed Components) (O40)
O40 - ASIC: Microsoft Windows Media Player [64Bits] - >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll =>.Microsoft Corporation
O40 - ASIC: Microsoft Windows Media Player 12.0 [64Bits] - {22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Windows Media Player Extension.) -- C:\Windows\SysWOW64\wmpdxm.dll =>.Microsoft Corporation
O40 - ASIC: Themes Setup [64Bits] - {2C7339CF-2B09-4501-B3F3-F3508C9228ED} . (.Microsoft Corporation - API Windows Theme.) -- C:\Windows\System32\themeui.dll
O40 - ASIC: Internet Explorer [64Bits] - {2D46B6DC-2207-486B-B523-A557E6D54B47} . (.Microsoft Corporation - Interpr�teur de commandes Windows.) -- C:\Windows\system32\cmd.exe =>.Microsoft Corporation
O40 - ASIC: Microsoft Windows [64Bits] - {44BBA840-CC51-11CF-AAFA-00AA00B6015C} . (.Microsoft Corporation - Windows Mail.) -- C:\Program Files (x86)\Windows Mail\WinMail.exe =>.Microsoft Corporation
O40 - ASIC: Browsing Enhancements [64Bits] - {630b1da0-b465-11d1-9948-00c04f98bbc9} . (.Microsoft Corporation - Extension Shell dossier FTP Microsoft Internet Explorer..) -- C:\Windows\System32\msieftp.dll
O40 - ASIC: Microsoft Windows Media Player [64Bits] - {6BF52A52-394A-11d3-B153-00C04F79FAA6} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll =>.Microsoft Corporation
O40 - ASIC: Windows Desktop Update [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4340} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll
O40 - ASIC: Web Platform Customizations [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4383} . (.Microsoft Corporation - IE Per-User Initialization Utility.) -- C:\Windows\System32\ie4uinit.exe
O40 - ASIC: (no name) [64Bits] - {89B4C1CD-B018-4511-B0A1-5476DBF70820} . (.Microsoft Corporation - Microsoft .NET IE SECURITY REGISTRATION.) -- C:\Windows\system32\mscories.dll
~ Active Setup: 10 Scanned in 00mn 00s



---\\ Pilotes lanc�s au d�marrage du syst�me (O41)
O41 - Driver: C:\Windows\System32\drivers\afd.sys (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\Windows\system32\drivers\afd.sys
O41 - Driver: (blbdrive) . (.Microsoft Corporation - BLB Drive Driver.) - C:\Windows\system32\drivers\blbdrive.sys
O41 - Driver: (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\system32\drivers\cdrom.sys
O41 - Driver: C:\Windows\System32\drivers\dfsc.sys (DfsC) . (.Microsoft Corporation - DFS Namespace Client Driver.) - C:\Windows\System32\Drivers\dfsc.sys
O41 - Driver: C:\Windows\System32\drivers\discache.sys (discache) . (.Microsoft Corporation - System Indexer/Cache Driver.) - C:\Windows\System32\drivers\discache.sys
O41 - Driver: (KLIF) . (.Kaspersky Lab ZAO - Klif Mini-Filter [fre_wlh_x64].) - C:\Windows\System32\DRIVERS\klif.sys
O41 - Driver: (KLIM6) . (.Kaspersky Lab ZAO - Kaspersky Lab Intermediate Network Driver.) - C:\Windows\System32\DRIVERS\klim6.sys
O41 - Driver: (kltdi) . (.Kaspersky Lab ZAO - Network filtering component.) - C:\Windows\System32\DRIVERS\kltdi.sys
O41 - Driver: (kneps) . (.Kaspersky Lab ZAO - KNEPS Power.) - C:\Windows\System32\DRIVERS\kneps.sys
O41 - Driver: (mssmbios) . (.Microsoft Corporation - System Management BIOS Driver.) - C:\Windows\system32\drivers\mssmbios.sys
O41 - Driver: (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\System32\DRIVERS\netbios.sys
O41 - Driver: C:\Windows\System32\drivers\netbt.sys (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\System32\DRIVERS\netbt.sys
O41 - Driver: C:\Windows\System32\drivers\nsiproxy.sys (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\System32\drivers\nsiproxy.sys
O41 - Driver: C:\Windows\System32\drivers\pacer.sys (Psched) . (.Microsoft Corporation - Planificateur de paquets QoS.) - C:\Windows\System32\DRIVERS\pacer.sys
O41 - Driver: C:\Windows\System32\wkssvc.dll (rdbss) . (.Microsoft Corporation - Pilote du sous-syst�me de mise en m�moire t.) - C:\Windows\System32\DRIVERS\rdbss.sys
O41 - Driver: C:\Windows\System32\DRIVERS\RDPCDD.sys (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\System32\DRIVERS\RDPCDD.sys
O41 - Driver: C:\Windows\System32\drivers\RDPENCDD.sys (RDPENCDD) . (.Microsoft Corporation - RDP Encoder Miniport.) - C:\Windows\System32\drivers\rdpencdd.sys
O41 - Driver: C:\Windows\System32\drivers\RdpRefMp.sys (RDPREFMP) . (.Microsoft Corporation - RDP Reflector Driver Miniport.) - C:\Windows\System32\drivers\rdprefmp.sys
O41 - Driver: C:\Windows\System32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\Windows\System32\DRIVERS\tdx.sys
O41 - Driver: (TermDD) . (.Microsoft Corporation - Remote Desktop Server Driver.) - C:\Windows\system32\drivers\termdd.sys
O41 - Driver: (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\Windows\system32\drivers\vga.sys
O41 - Driver: (vwififlt) . (.Microsoft Corporation - Virtual WiFi Filter Driver.) - C:\Windows\System32\DRIVERS\vwififlt.sys
O41 - Driver: C:\Windows\System32\rascfg.dll (Wanarpv6) . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) - C:\Windows\System32\DRIVERS\wanarp.sys
O41 - Driver: (WfpLwf) . (.Microsoft Corporation - WFP NDIS 6.20 Lightweight Filter Driver.) - C:\Windows\System32\DRIVERS\wfplwf.sys
~ Drivers: 72 Scanned in 00mn 00s



---\\ Logiciels install�s (O42)
O42 - Logiciel: ABBYY FineReader 9.0 Sprint - (.ABBYY.) [HKLM][64Bits] -- ABBYY FineReader 9.0 Sprint
O42 - Logiciel: ABBYY FineReader 9.0 Sprint - (.ABBYY.) [HKLM][64Bits] -- {F9000000-0018-0000-0000-074957833700}
O42 - Logiciel: AMD APP SDK Runtime - (.Advanced Micro Devices Inc..) [HKLM][64Bits] -- {503F672D-6C84-448A-8F8F-4BC35AC83441}
O42 - Logiciel: AMD Catalyst Install Manager - (.Advanced Micro Devices, Inc..) [HKLM][64Bits] -- {51F9B09B-2FE4-8B3A-628A-0C0654E253AF}
O42 - Logiciel: Adobe Flash Player 11 ActiveX - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player ActiveX
O42 - Logiciel: Adobe Flash Player 11 Plugin - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player Plugin
O42 - Logiciel: Adobe Reader XI (11.0.05) - Fran�ais - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-7AD7-1036-7B44-AB0000000001}
O42 - Logiciel: Adobe Shockwave Player 12.0 - (.Adobe Systems, Inc..) [HKLM][64Bits] -- Adobe Shockwave Player
O42 - Logiciel: Akamai NetSession Interface - (.Akamai Technologies, Inc.) [HKCU][64Bits] -- Akamai
O42 - Logiciel: Algobox - (...) [HKLM][64Bits] -- Algobox
O42 - Logiciel: Apple Application Support - (.Apple Inc..) [HKLM][64Bits] -- {63EC2120-1742-4625-AA47-C6A8AEC9C64C}
O42 - Logiciel: Apple Mobile Device Support - (.Apple Inc..) [HKLM][64Bits] -- {7446FE8D-C1F9-4D42-AAAE-5DBCE58605A6}
O42 - Logiciel: Apple Software Update - (.Apple Inc..) [HKLM][64Bits] -- {789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE} =>.Apple Inc
O42 - Logiciel: Ask Toolbar - (.Ask.com.) [HKLM][64Bits] -- {86D4B82A-ABED-442A-BE86-96357B70F4FE} =>Toolbar.Ask
O42 - Logiciel: Babylon toolbar - (.BabylonToolbar.) [HKLM][64Bits] -- BabylonToolbar =>Toolbar.Babylon
O42 - Logiciel: BabylonObjectInstaller - (.Babylon Ltd.) [HKLM][64Bits] -- {E55E7026-EF2A-4A17-AAA7-DB98EA3FD1B1} =>Toolbar.Babylon
O42 - Logiciel: Bejeweled 3 - (.WildTangent.) [HKLM][64Bits] -- WTA-c2b36f13-6f31-4de2-bcbb-359310ad304d
O42 - Logiciel: Bing Bar - (.Microsoft Corporation.) [HKLM][64Bits] -- {D322A9E3-758B-4D60-A7C4-65C88FD378D0} =>Toolbar.Bing
O42 - Logiciel: Bonjour - (.Apple Inc..) [HKLM][64Bits] -- {6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}
O42 - Logiciel: Cake Mania - (.WildTangent.) [HKLM][64Bits] -- WTA-8e3d5800-f69f-4474-9d25-1bd0c61c7b34
O42 - Logiciel: Catalyst Control Center - Branding - (.Advanced Micro Devices, Inc..) [HKLM][64Bits] -- {9FEB8236-74CD-4194-8717-38771ED0EFE9}
O42 - Logiciel: Chuzzle Deluxe - (.WildTangent.) [HKLM][64Bits] -- WTA-83f9ab81-bba2-407f-a9a2-6ff3ac37596c
O42 - Logiciel: Cradle of Rome 2 - (.WildTangent.) [HKLM][64Bits] -- WTA-0626d3b4-09ab-4693-ac9a-bf32c8308d81
O42 - Logiciel: CyberLink YouCam - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}
O42 - Logiciel: CyberLink YouCam - (.CyberLink Corp..) [HKLM][64Bits] -- {01FB4998-33C4-4431-85ED-079E3EEFE75D}
O42 - Logiciel: D3DX10 - (.Microsoft.) [HKLM][64Bits] -- {E09C4DB7-630C-4F06-A631-8EA7239923AF}
O42 - Logiciel: DVD Decrypter (Remove Only) - (...) [HKLM][64Bits] -- DVD Decrypter
O42 - Logiciel: Delta Chrome Toolbar - (.Visual Tools.) [HKLM][64Bits] -- Delta Chrome Toolbar =>Toolbar.DeltaSearch
O42 - Logiciel: Delta toolbar - (.Delta.) [HKLM][64Bits] -- delta =>Toolbar.DeltaSearch
O42 - Logiciel: Download Navigator - (.SEIKO EPSON CORPORATION.) [HKLM][64Bits] -- {E728441A-7820-4B1C-87C9-DE7BE37B2953}
O42 - Logiciel: EPSON Printer Finder - (.SEIKO EPSON CORPORATION.) [HKLM][64Bits] -- {B8ECD0D3-AE08-4891-B6C7-32F96B75EB6C}
O42 - Logiciel: EPSON SX440 Series Printer Uninstall - (.SEIKO EPSON Corporation.) [HKLM][64Bits] -- EPSON SX440 Series
O42 - Logiciel: EPSON Scan - (.Seiko Epson Corporation.) [HKLM][64Bits] -- EPSON Scanner
O42 - Logiciel: ESU for Microsoft Windows 7 SP1 - (.Hewlett-Packard.) [HKLM][64Bits] -- {768A6276-5822-489C-8A2B-67190F745655}
O42 - Logiciel: Epson Easy Photo Print 2 - (.SEIKO EPSON CORPORATION.) [HKLM][64Bits] -- {FFF841F3-9A15-4F61-BD16-C19F132E5A27}
O42 - Logiciel: Epson Easy Photo Print Plug-in for PMB(Picture Motion Browser) - (.SEIKO EPSON CORPORATION2.) [HKLM][64Bits] -- {B2D55EB8-32C5-4B43-9006-9E97DECBA178}
O42 - Logiciel: Epson Event Manager - (.SEIKO EPSON CORPORATION.) [HKLM][64Bits] -- {8ED43F7E-A8F6-4898-AF11-B6158F2EDF94}
O42 - Logiciel: EpsonNet Print - (.SEIKO EPSON CORPORATION.) [HKLM][64Bits] -- {3E31400D-274E-4647-916C-2CACC3741799}
O42 - Logiciel: Evernote v. 4.5.2 - (.Evernote Corp..) [HKLM][64Bits] -- {8CE152BA-1D16-11E1-867D-984BE15F174E}
O42 - Logiciel: FATE - (.WildTangent.) [HKLM][64Bits] -- WTA-5b8ca667-d5c3-49f8-af7d-75a62c9e5184
O42 - Logiciel: Facebook Video Calling 1.2.0.287 - (.Skype Limited.) [HKLM][64Bits] -- {B92C5909-1D37-4C51-8397-A28BB28E5DC3}
O42 - Logiciel: Farm Frenzy - (.WildTangent.) [HKLM][64Bits] -- WTA-14d3ad33-6fc6-40bc-93bc-d504a5b0c327
O42 - Logiciel: Farmscapes - (.WildTangent.) [HKLM][64Bits] -- WTA-89431c6c-c7c2-40d1-b208-49ff9c25fc49
O42 - Logiciel: Final Drive Fury - (.WildTangent.) [HKLM][64Bits] -- WTA-512a2f5a-16fe-41d7-ae3a-bbaa1b6addc1
O42 - Logiciel: Fishdom (TM) 2 - (.WildTangent.) [HKLM][64Bits] -- WTA-1e1eb26a-79b2-4b8d-85b7-8e7517f9b9cc
O42 - Logiciel: Gameforge Live 1.9.0 "Legend" - (.Gameforge.) [HKLM][64Bits] -- {9C98989A-3A15-42DA-A3B9-D20331437D67}}_is1
O42 - Logiciel: GeoGebra 4.2 - (.International GeoGebra Institute.) [HKLM][64Bits] -- GeoGebra 4.2
O42 - Logiciel: Ghost Recon Online (EU) - (.Ubisoft.) [HKCU][64Bits] -- d8be6c3f847d7d92
O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM][64Bits] -- Google Chrome
O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
O42 - Logiciel: Google�Earth - (.Google.) [HKLM][64Bits] -- {96AD3B61-EAE2-11E2-9E72-B8AC6F98CCE3}
O42 - Logiciel: Guide d'utilisation EPSON SX440 Series - (...) [HKLM][64Bits] -- EPSON SX440 Series Useg
O42 - Logiciel: Guide des op�rations de base EPSON SX440 Series - (...) [HKLM][64Bits] -- EPSON SX440 Series Bog
O42 - Logiciel: Guide r�seau EPSON SX440 Series - (...) [HKLM][64Bits] -- EPSON SX440 Series Netg
O42 - Logiciel: HP 3D DriveGuard - (.Hewlett-Packard Company.) [HKLM][64Bits] -- {F9E399CB-046F-45FD-A67F-CF399E2128E4}
O42 - Logiciel: HP Auto - (.Hewlett-Packard Company.) [HKLM][64Bits] -- {CC4D56B7-6F18-470B-8734-ABCD75BCF4F1}
O42 - Logiciel: HP Client Services - (.Hewlett-Packard.) [HKLM][64Bits] -- {2856A1C2-70C5-4EC3-AFF7-E5B51E5530A2}
O42 - Logiciel: HP CoolSense - (.Hewlett-Packard Company.) [HKLM][64Bits] -- {11AF9A96-6D83-4C3B-8DCB-16EA2A358E3F}
O42 - Logiciel: HP Customer Experience Enhancements - (.Hewlett-Packard.) [HKLM][64Bits] -- {07FA4960-B038-49EB-891B-9F95930AA544}
O42 - Logiciel: HP Documentation - (.Hewlett-Packard.) [HKLM][64Bits] -- {16652164-D80F-4EE6-90C6-2E8D5D06092A}
O42 - Logiciel: HP Games - (.WildTangent.) [HKLM][64Bits] -- WildTangent hp Master Uninstall
O42 - Logiciel: HP Launch Box - (.Hewlett-Packard Company.) [HKLM][64Bits] -- {5A847522-375C-4D05-BD3D-88C450CC047F}
O42 - Logiciel: HP On Screen Display - (.Hewlett-Packard Company.) [HKLM][64Bits] -- {ED1BD69A-07E3-418C-91F1-D856582581BF}
O42 - Logiciel: HP Power Manager - (.Hewlett-Packard Company.) [HKLM][64Bits] -- {D8BCE5B9-67CF-4F3F-93AE-3ACC754C72EB}
O42 - Logiciel: HP Quick Launch - (.Hewlett-Packard Company.) [HKLM][64Bits] -- {53B17A98-5BF0-40BC-AAFF-850A357975AC}
O42 - Logiciel: HP Recovery Manager - (.Hewlett-Packard.) [HKLM][64Bits] -- {DBCD5E64-7379-4648-9444-8A6558DCB614}
O42 - Logiciel: HP Security Assistant - (.Hewlett-Packard Company.) [HKLM][64Bits] -- {ED6CD3AC-616B-4B20-BCF3-6E637B92A5AD}
O42 - Logiciel: HP Setup - (.Hewlett-Packard Company.) [HKLM][64Bits] -- {F5E7D9AF-60F6-4A30-87E3-4EA94D322CE1}
O42 - Logiciel: HP Setup Manager - (.Hewlett-Packard Company.) [HKLM][64Bits] -- {AE856388-AFAD-4753-81DF-D96B19D0A17C}
O42 - Logiciel: HP Software Framework - (.Hewlett-Packard Company.) [HKLM][64Bits] -- {98D5A5FA-1AA3-4CBE-B26C-A737E20F8A6D}
O42 - Logiciel: HP Support Assistant - (.Hewlett-Packard Company.) [HKLM][64Bits] -- {EE202411-2C26-49E8-9784-1BC1DBF7DE96} =>.Hewlett-Packard Co
O42 - Logiciel: Hewlett-Packard ACLM.NET v1.2.1.1 - (.Hewlett-Packard Company.) [HKLM][64Bits] -- {6F340107-F9AA-47C6-B54C-C3A19F11553F}
O42 - Logiciel: IDT Audio - (.IDT.) [HKLM][64Bits] -- {E3A5A8AB-58F6-45FF-AFCB-C9AE18C05001}
O42 - Logiciel: Iminent - (.Iminent.) [HKLM][64Bits] -- IMBoosterARP =>Adware.IMBooster
O42 - Logiciel: Iminent - (.Iminent.) [HKLM][64Bits] -- {81FCC50B-950F-4063-8E4A-D99CAA4FBB1F} =>Adware.IMBooster
O42 - Logiciel: Insaniquarium Deluxe - (.WildTangent.) [HKLM][64Bits] -- WTA-050dab37-fa79-4211-a984-9f30cfb3bf8c
O42 - Logiciel: Intel(R) Control Center - (.Intel Corporation.) [HKLM][64Bits] -- {F8A9085D-4C7A-41a9-8A77-C8998A96C421}
O42 - Logiciel: Intel(R) Display Audio Driver - (.Intel Corporation.) [HKLM][64Bits] -- {F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}
O42 - Logiciel: Intel(R) Management Engine Components - (.Intel Corporation.) [HKLM][64Bits] -- {65153EA5-8B6E-43B6-857B-C6E4FC25798A}
O42 - Logiciel: Intel(R) Rapid Storage Technology - (.Intel Corporation.) [HKLM][64Bits] -- {3E29EE6C-963A-4aae-86C1-DC237C4A49FC}
O42 - Logiciel: Intel(R) USB 3.0 eXtensible Host Controller Driver - (.Intel Corporation.) [HKLM][64Bits] -- {240C3DDD-C5E9-4029-9DF7-95650D040CF2}
O42 - Logiciel: Intel� Trusted Connect Service Client - (.Intel Corporation.) [HKLM][64Bits] -- {6199B534-A1B6-46ED-873B-97B0ECF8F81E}
O42 - Logiciel: Java 7 Update 45 - (.Oracle.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F83217045FF}
O42 - Logiciel: Jewel Match 3 - (.WildTangent.) [HKLM][64Bits] -- WTA-7bf3aabd-8b33-48a2-876a-991a46375fb1
O42 - Logiciel: Jewel Quest II - (.WildTangent.) [HKLM][64Bits] -- WTA-9b9784d2-b7fa-490e-aee1-7e7f5f9272e7
O42 - Logiciel: Jewel Quest Solitaire 2 - (.WildTangent.) [HKLM][64Bits] -- WTA-447ebd81-2c48-4390-b591-f242e7772f9b
O42 - Logiciel: Junk Mail filter update - (.Microsoft Corporation.) [HKLM][64Bits] -- {1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}
O42 - Logiciel: Kaspersky Internet Security 2013 - (.Kaspersky Lab.) [HKLM][64Bits] -- InstallWIX_{560985FB-4B76-4121-9189-7A2CDC7886D6}
O42 - Logiciel: Kaspersky Internet Security 2013 - (.Kaspersky Lab.) [HKLM][64Bits] -- {560985FB-4B76-4121-9189-7A2CDC7886D6}
O42 - Logiciel: MJCamTool - (...) [HKLM][64Bits] -- {D1E4A814-3FAE-49B5-8018-F0D789155273}
O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM][64Bits] -- {8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}
O42 - Logiciel: MSVCRT_amd64 - (.Microsoft.) [HKLM][64Bits] -- {D0B44725-3666-492D-BEF6-587A14BD9BD9}
O42 - Logiciel: Magic Desktop - (.EasyBits Software AS.) [HKLM][64Bits] -- EasyBits Magic Desktop =>.EasyBits Software AS
O42 - Logiciel: Mahjongg Artifacts - (.WildTangent.) [HKLM][64Bits] -- WTA-3e9ec46c-b13c-4493-9539-bc1ce0d00ead
O42 - Logiciel: Mesh Runtime - (.Microsoft Corporation.) [HKLM][64Bits] -- {8C6D6116-B724-4810-8F2D-D047E6B7D68E}
O42 - Logiciel: Metin2 - (.Gameforge 4D GmbH.) [HKLM][64Bits] -- Metin2_is1
O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM][64Bits] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
O42 - Logiciel: Mozilla Firefox 24.0 (x86 fr) - (.Mozilla.) [HKLM][64Bits] -- Mozilla Firefox 24.0 (x86 fr)
O42 - Logiciel: Mozilla Maintenance Service - (.Mozilla.) [HKLM][64Bits] -- MozillaMaintenanceService
O42 - Logiciel: Mystery of Mortlake Mansion - (.WildTangent.) [HKLM][64Bits] -- WTA-cca99803-c9fc-4a76-833a-0a817a29358c
O42 - Logiciel: OpenOffice.org 3.4.1 - (.Apache Software Foundation.) [HKLM][64Bits] -- {7DA1C06F-C913-46C7-8A0F-DA2CBA17EA1D}
O42 - Logiciel: Optimizer Pro v3.2 - (.PC Utilities Software Limited.) [HKLM][64Bits] -- Optimizer Pro_is1 =>PUP.OptimizerPro
O42 - Logiciel: PAP7501(0038.2009.1117.2002) - (.PixArt.) [HKLM][64Bits] -- {C6A0FD8A-F107-44CA-AA1B-49341936F76A}
O42 - Logiciel: PlanetSide 2 - (.Sony Online Entertainment.) [HKCU][64Bits] -- soe-PlanetSide 2 PSG
O42 - Logiciel: Plantes contre Zombies - (.PopCap Games.) [HKLM][64Bits] -- Plantes contre Zombies =>Adware.PopCap
O42 - Logiciel: Plants vs. Zombies - Game of the Year - (.WildTangent.) [HKLM][64Bits] -- WTA-54aae0ea-e5fc-4b51-b8b5-d2edbb28be2c
O42 - Logiciel: Plus-HD-1.6 - (.Plus HD.) [HKLM][64Bits] -- Plus-HD-1.6 =>Adware.PlusHD
O42 - Logiciel: Polar Bowler - (.WildTangent.) [HKLM][64Bits] -- WTA-cec264d9-5a37-4374-ab64-729cab2500cc
O42 - Logiciel: PunkBuster Services - (.Even Balance, Inc..) [HKLM][64Bits] -- PunkBusterSvc
O42 - Logiciel: Ralink RT5390R 802.11b/g/n Wi-Fi Adapter - (.Ralink.) [HKLM][64Bits] -- {8FC4F1DD-F7FD-4766-804D-3C8FF1D309AF}
O42 - Logiciel: Ranch Rush 2 - Premium Edition - (.WildTangent.) [HKLM][64Bits] -- WTA-20983908-4ccf-46d3-a43a-739dc26283d1
O42 - Logiciel: Realtek Ethernet Controller Driver - (.Realtek.) [HKLM][64Bits] -- {8833FFB6-5B0C-4764-81AA-06DFEED9A476}
O42 - Logiciel: Realtek PCIE Card Reader - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {C1594429-8296-4652-BF54-9DBE4932A44C}
O42 - Logiciel: S.K.I.L.L. - Special Force 2 - (...) [HKLM][64Bits] -- Special Force 2 Beta_is1
O42 - Logiciel: SketchUp 8 - (.Trimble Navigation Limited.) [HKLM][64Bits] -- {8EB62C87-AAA6-4850-A5BC-64155884B973}
O42 - Logiciel: Skype� 6.9 - (.Skype Technologies S.A..) [HKLM][64Bits] -- {4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}
O42 - Logiciel: Synaptics Pointing Device Driver - (.Synaptics Incorporated.) [HKLM][64Bits] -- SynTPDeinstKey
O42 - Logiciel: Torchlight - (.WildTangent.) [HKLM][64Bits] -- WTA-7f7a3ae4-8ed3-4787-b493-0e53ec2b1059
O42 - Logiciel: Unity Web Player - (.Unity Technologies ApS.) [HKCU][64Bits] -- UnityWebPlayer
O42 - Logiciel: Update Installer for WildTangent Games App - (.WildTangent.) [HKLM][64Bits] -- {2FA94A64-C84E-49d1-97DD-7BF06C7BBFB2}.WildTangent Games App
O42 - Logiciel: Virtual Families - (.WildTangent.) [HKLM][64Bits] -- WTA-bc7c9dde-a271-468f-b250-2da83565ba11
O42 - Logiciel: Virtual Villagers 4 - The Tree of Life - (.WildTangent.) [HKLM][64Bits] -- WTA-f0397c00-1d7b-4e4d-8a76-a1e02c14bfb6
O42 - Logiciel: Wedding Dash - (.WildTangent.) [HKLM][64Bits] -- WTA-b0b16158-fdb4-4919-8f0b-7bd6b62edc88
O42 - Logiciel: WildTangent Games App (HP Games) - (.WildTangent.) [HKLM][64Bits] -- {70B446D1-E03B-4ab0-9B3C-0832142C9AA8}.WildTangent Games App-hp
O42 - Logiciel: World of Warcraft - (.Blizzard Entertainment.) [HKLM][64Bits] -- World of Warcraft
O42 - Logiciel: Zuma's Revenge - (.WildTangent.) [HKLM][64Bits] -- WTA-252739b9-7eb0-4777-b8c4-3f40bb3240a6
O42 - Logiciel: applicationupdater - (.Sony Online Entertainment.) [HKCU][64Bits] -- SOE-C:/Users/QUENTIN/AppData/Local/Sony Online Entertainment/ApplicationUpdater
O42 - Logiciel: fst_fr_6 - (.Freesofttoday.) [HKLM][64Bits] -- fst_fr_6_is1 =>Adware.FreeSoftToday
O42 - Logiciel: gamelauncher-ps2-psg - (.Sony Online Entertainment.) [HKCU][64Bits] -- SOE-C:/PS2
O42 - Logiciel: glindorus 1.0.0 - (.glindorus.) [HKLM][64Bits] -- glindorus =>PUP.Glindorus
O42 - Logiciel: iTunes - (.Apple Inc..) [HKLM][64Bits] -- {1493B2AE-0261-47D2-B1AA-F4DAD0F6C48B}
O42 - Logiciel: opensource - (.Your Company Name.) [HKLM][64Bits] -- {3677D4D8-E5E0-49FC-B86E-06541CF00BBE}
O42 - Logiciel: swMSM - (.Adobe Systems, Inc.) [HKLM][64Bits] -- {612C34C7-5E90-47D8-9B5C-0F717DD82726}
~ Logic: 241 Scanned in 00mn 00s



---\\ HKCU & HKLM Software Keys
[HKCU\Software\7road]
[HKCU\Software\ABBYY]
[HKCU\Software\APN]
[HKCU\Software\ATI]
[HKCU\Software\Adobe]
[HKCU\Software\Aeria Games]
[HKCU\Software\AhnLab]
[HKCU\Software\AppDataLow\Software\AskToolbar]
[HKCU\Software\AppDataLow\Software\Crossrider] =>PUP.CrossRider
[HKCU\Software\AppDataLow\Software\JavaSoft]
[HKCU\Software\AppDataLow\Software\Plus-HD-1.6] =>Adware.PlusHD
[HKCU\Software\AppDataLow\Software\Unity]
[HKCU\Software\AppDataLow\{1146AC44-2F03-4431-B4FD-889BC837521F}]
[HKCU\Software\AppDataLow]
[HKCU\Software\Apple Computer, Inc.]
[HKCU\Software\Apple Inc.]
[HKCU\Software\Ask.com]
[HKCU\Software\BabSolution] =>Hijacker.BabSolution
[HKCU\Software\BabylonToolbar] =>Toolbar.Babylon
[HKCU\Software\Blizzard Entertainment]
[HKCU\Software\Bugsplat]
[HKCU\Software\Classes]
[HKCU\Software\Clients]
[HKCU\Software\CyberLink]
[HKCU\Software\DVD Decrypter]
[HKCU\Software\Delta]
[HKCU\Software\EPSON]
[HKCU\Software\EasyBits]
[HKCU\Software\Facebook]
[HKCU\Software\Gameforge4d]
[HKCU\Software\Google]
[HKCU\Software\Hewlett-Packard Company]
[HKCU\Software\Hewlett-Packard]
[HKCU\Software\IM Providers]
[HKCU\Software\Iminent] =>Adware.IMBooster
[HKCU\Software\InstalledBrowserExtensions] =>Adware.VidSaver
[HKCU\Software\Intel\Indeo\4.1]
[HKCU\Software\Intel]
[HKCU\Software\JavaSoft]
[HKCU\Software\KasperskyLab]
[HKCU\Software\Licenses]
[HKCU\Software\Macromedia]
[HKCU\Software\MozillaPlugins]
[HKCU\Software\Mozilla]
[HKCU\Software\Netscape]
[HKCU\Software\Norton]
[HKCU\Software\ODBC]
[HKCU\Software\OpenOffice.org]
[HKCU\Software\Optimizer Pro] =>PUP.OptimizerPro
[HKCU\Software\Policies]
[HKCU\Software\PopCap] =>Adware.PopCap
[HKCU\Software\QtProject]
[HKCU\Software\RegisteredApplications]
[HKCU\Software\SEIKO EPSON CORPORATION]
[HKCU\Software\SkypeRS]
[HKCU\Software\Skype]
[HKCU\Software\Symantec]
[HKCU\Software\Synaptics]
[HKCU\Software\Trolltech]
[HKCU\Software\TutoTag] =>Spyware.AgenceExclusive
[HKCU\Software\Tutorials] =>Spyware.AgenceExclusive
[HKCU\Software\Unity]
[HKCU\Software\WildTangent]
[HKCU\Software\Wow6432Node]
[HKCU\Software\ZebHelpProcess Helper]
[HKCU\Software\freesofttoday] =>Adware.FreeSoftToday
[HKCU\Software\glindorus] =>PUP.Glindorus
[HKCU\Software\tfdfu]
[HKLM\Software\AMD]
[HKLM\Software\ATI Technologies]
[HKLM\Software\ATI]
[HKLM\Software\Apple Computer, Inc.]
[HKLM\Software\Apple Inc.]
[HKLM\Software\CBSTEST]
[HKLM\Software\CXT]
[HKLM\Software\Classes]
[HKLM\Software\Clients]
[HKLM\Software\Cyberlink]
[HKLM\Software\Dolby]
[HKLM\Software\EPSON]
[HKLM\Software\EpsonNet]
[HKLM\Software\GEAR Software]
[HKLM\Software\HPQ]
[HKLM\Software\Hewlett-Packard]
[HKLM\Software\IDT]
[HKLM\Software\IM Providers]
[HKLM\Software\InstalledOptions]
[HKLM\Software\Intel]
[HKLM\Software\KasperskyLab]
[HKLM\Software\Khronos]
[HKLM\Software\Macromedia]
[HKLM\Software\MozillaPlugins]
[HKLM\Software\Mozilla]
[HKLM\Software\Norton]
[HKLM\Software\ODBC]
[HKLM\Software\Policies]
[HKLM\Software\RTLSetup]
[HKLM\Software\Realtek Semiconductor Corp.]
[HKLM\Software\Realtek]
[HKLM\Software\RegisteredApplications]
[HKLM\Software\SRS Labs]
[HKLM\Software\Software]
[HKLM\Software\Sonic]
[HKLM\Software\Synaptics]
[HKLM\Software\Wow6432Node\685D6D1C-D73A-4F37-B7E5E53660311DDB]
[HKLM\Software\Wow6432Node\ABBYY]
[HKLM\Software\Wow6432Node\APN]
[HKLM\Software\Wow6432Node\ATI Technologies]
[HKLM\Software\Wow6432Node\ATI]
[HKLM\Software\Wow6432Node\Adobe]
[HKLM\Software\Wow6432Node\AppDataLow]
[HKLM\Software\Wow6432Node\Apple Computer, Inc.]
[HKLM\Software\Wow6432Node\Apple Inc.]
[HKLM\Software\Wow6432Node\AskToolbar]
[HKLM\Software\Wow6432Node\Babylon] =>Toolbar.Babylon
[HKLM\Software\Wow6432Node\Caphyon]
[HKLM\Software\Wow6432Node\Classes]
[HKLM\Software\Wow6432Node\Clients]
[HKLM\Software\Wow6432Node\CyberLink]
[HKLM\Software\Wow6432Node\Delta]
[HKLM\Software\Wow6432Node\EPSON]
[HKLM\Software\Wow6432Node\EasyBits]
[HKLM\Software\Wow6432Node\EpsonNet]
[HKLM\Software\Wow6432Node\Even Balance]
[HKLM\Software\Wow6432Node\Evernote]
[HKLM\Software\Wow6432Node\Freesofttoday] =>Adware.FreeSoftToday
[HKLM\Software\Wow6432Node\Gameforge4d]
[HKLM\Software\Wow6432Node\Gameforge]
[HKLM\Software\Wow6432Node\Google]
[HKLM\Software\Wow6432Node\Hewlett-Packard]
[HKLM\Software\Wow6432Node\IDT]
[HKLM\Software\Wow6432Node\IM Providers]
[HKLM\Software\Wow6432Node\Iminent] =>Adware.IMBooster
[HKLM\Software\Wow6432Node\InstallShield]
[HKLM\Software\Wow6432Node\Insyde]
[HKLM\Software\Wow6432Node\Intel]
[HKLM\Software\Wow6432Node\JavaSoft]
[HKLM\Software\Wow6432Node\JreMetrics]
[HKLM\Software\Wow6432Node\KasperskyLab]
[HKLM\Software\Wow6432Node\Khronos]
[HKLM\Software\Wow6432Node\Licenses]
[HKLM\Software\Wow6432Node\Loader]
[HKLM\Software\Wow6432Node\MJCamTool]
[HKLM\Software\Wow6432Node\Macromedia]
[HKLM\Software\Wow6432Node\Metin2_FR]
[HKLM\Software\Wow6432Node\MozillaPlugins]
[HKLM\Software\Wow6432Node\Mozilla]
[HKLM\Software\Wow6432Node\Nostale_FR]
[HKLM\Software\Wow6432Node\ODBC]
[HKLM\Software\Wow6432Node\PixArt]
[HKLM\Software\Wow6432Node\Policies]
[HKLM\Software\Wow6432Node\PopCap] =>Adware.PopCap
[HKLM\Software\Wow6432Node\Ralink]
[HKLM\Software\Wow6432Node\Realtek Semiconductor Corp.]
[HKLM\Software\Wow6432Node\Realtek]
[HKLM\Software\Wow6432Node\RegisteredApplications]
[HKLM\Software\Wow6432Node\Runes of Magic]
[HKLM\Software\Wow6432Node\SEIKO EPSON CORPORATION2]
[HKLM\Software\Wow6432Node\SEIKO EPSON CORPORATION]
[HKLM\Software\Wow6432Node\Skype]
[HKLM\Software\Wow6432Node\Sony Corporation]
[HKLM\Software\Wow6432Node\Symantec]
[HKLM\Software\Wow6432Node\Systweak]
[HKLM\Software\Wow6432Node\Trad-FR]
[HKLM\Software\Wow6432Node\Tutorials] =>Spyware.AgenceExclusive
[HKLM\Software\Wow6432Node\Umbrella]
[HKLM\Software\Wow6432Node\Vittalia]
[HKLM\Software\Wow6432Node\WildTangent]
[HKLM\Software\Wow6432Node\Win32 Services]
[HKLM\Software\Wow6432Node\dotNetInstaller]
[HKLM\Software\Wow6432Node\glindorus] =>PUP.Glindorus
[HKLM\Software\Wow6432Node\mozilla.org]
[HKLM\Software\Wow6432Node]
~ Key Software: 286 Scanned in 00mn 01s



---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 25/11/2012 - 13:20:09 - [173,312] ----D C:\Program Files (x86)\ABBYY FineReader 9.0 Sprint
O43 - CFD: 25/10/2013 - 10:38:25 - [120,785] ----D C:\Program Files (x86)\Adobe
O43 - CFD: 21/10/2013 - 10:05:37 - [88,466] ----D C:\Program Files (x86)\Algobox
O43 - CFD: 03/05/2012 - 01:46:16 - [2,324] ----D C:\Program Files (x86)\AMD APP
O43 - CFD: 04/03/2013 - 21:07:38 - [2,316] ----D C:\Program Files (x86)\Apple Software Update =>.Apple Inc
O43 - CFD: 06/10/2013 - 15:45:31 - [3,514] ----D C:\Program Files (x86)\Ask.com
O43 - CFD: 03/05/2012 - 01:46:04 - [65,389] ----D C:\Program Files (x86)\ATI Technologies
O43 - CFD: 19/10/2012 - 18:31:25 - [2,399] ----D C:\Program Files (x86)\BabylonToolbar =>Toolbar.Babylon
O43 - CFD: 04/03/2013 - 21:07:01 - [0,602] ----D C:\Program Files (x86)\Bonjour
O43 - CFD: 25/10/2013 - 10:38:25 - [406,255] ----D C:\Program Files (x86)\Common Files
O43 - CFD: 03/05/2012 - 01:57:35 - [212,631] ----D C:\Program Files (x86)\CyberLink
O43 - CFD: 11/10/2013 - 16:32:46 - [1,428] ----D C:\Program Files (x86)\Delta
O43 - CFD: 21/03/2013 - 20:22:35 - [109,331] ----D C:\Program Files (x86)\EasyBits For Kids
O43 - CFD: 25/11/2012 - 13:14:19 - [7,907] ----D C:\Program Files (x86)\epson
O43 - CFD: 25/11/2012 - 13:27:16 - [110,500] ----D C:\Program Files (x86)\EPSON Software
O43 - CFD: 09/02/2012 - 18:42:38 - [170,584] ----D C:\Program Files (x86)\Evernote
O43 - CFD: 26/10/2013 - 18:44:51 - [8,180] ----D C:\Program Files (x86)\fst_fr_6 =>PUA.FSTfr9
O43 - CFD: 21/10/2013 - 12:23:38 - [1410,458] ----D C:\Program Files (x86)\GameforgeLive
O43 - CFD: 11/10/2013 - 16:46:35 - [97,143] ----D C:\Program Files (x86)\GeoGebra 4.2
O43 - CFD: 12/10/2013 - 16:32:01 - [1,800] ----D C:\Program Files (x86)\glindorus =>PUP.Glindorus
O43 - CFD: 29/07/2013 - 19:00:36 - [627,900] ----D C:\Program Files (x86)\Google
O43 - CFD: 01/06/2013 - 13:11:35 - [372,241] ----D C:\Program Files (x86)\Hewlett-Packard
O43 - CFD: 09/02/2012 - 18:50:19 - [1174,169] ----D C:\Program Files (x86)\HP Games
O43 - CFD: 27/10/2013 - 11:20:24 - [0,045] ----D C:\Program Files (x86)\Iminent =>Adware.IMBooster
O43 - CFD: 13/10/2013 - 15:01:31 - [51,982] --H-D C:\Program Files (x86)\InstallShield Installation Information
O43 - CFD: 03/05/2012 - 01:48:42 - [45,570] ----D C:\Program Files (x86)\Intel
O43 - CFD: 12/10/2013 - 11:32:20 - [4,668] ----D C:\Program Files (x86)\Internet Explorer
O43 - CFD: 04/03/2013 - 21:09:50 - [142,398] ----D C:\Program Files (x86)\iTunes
O43 - CFD: 18/10/2013 - 18:03:52 - [121,070] ----D C:\Program Files (x86)\Java
O43 - CFD: 10/12/2012 - 20:45:16 - [184,273] ----D C:\Program Files (x86)\Kaspersky Lab
O43 - CFD: 03/05/2012 - 02:00:58 - [47,834] ----D C:\Program Files (x86)\Microsoft
O43 - CFD: 12/10/2012 - 18:32:05 - [38,002] ----D C:\Program Files (x86)\Microsoft Analysis Services
O43 - CFD: 12/10/2012 - 18:47:12 - [556,704] ----D C:\Program Files (x86)\Microsoft Office
O43 - CFD: 12/10/2013 - 12:21:29 - [40,851] ----D C:\Program Files (x86)\Microsoft Silverlight
O43 - CFD: 09/02/2012 - 18:56:16 - [1,745] ----D C:\Program Files (x86)\Microsoft SQL Server Compact Edition
O43 - CFD: 14/10/2012 - 07:55:56 - [7,789] ----D C:\Program Files (x86)\Microsoft.NET
O43 - CFD: 06/07/2013 - 11:00:30 - [0,074] ----D C:\Program Files (x86)\MJCamTool
O43 - CFD: 04/10/2013 - 19:07:05 - [48,686] ----D C:\Program Files (x86)\Mozilla Firefox
O43 - CFD: 06/10/2013 - 14:04:18 - [0,216] ----D C:\Program Files (x86)\Mozilla Maintenance Service
O43 - CFD: 14/07/2009 - 06:32:38 - [0,025] ----D C:\Program Files (x86)\MSBuild
O43 - CFD: 12/10/2012 - 12:55:14 - [21,142] R---D C:\Program Files (x86)\Online Services
O43 - CFD: 01/02/2013 - 20:07:00 - [288,773] ----D C:\Program Files (x86)\OpenOffice.org 3
O43 - CFD: 27/10/2013 - 11:03:04 - [10,764] ----D C:\Program Files (x86)\Optimizer Pro =>PUP.OptimizerPro
O43 - CFD: 25/10/2013 - 10:29:27 - [8,602] ----D C:\Program Files (x86)\Plus-HD-1.6 =>Adware.PlusHD
O43 - CFD: 14/10/2012 - 09:46:54 - [47,222] ----D C:\Program Files (x86)\PopCap Games =>Adware.PopCap
O43 - CFD: 03/05/2012 - 01:49:56 - [16,604] ----D C:\Program Files (x86)\Realtek
O43 - CFD: 14/07/2009 - 06:32:38 - [37,357] ----D C:\Program Files (x86)\Reference Assemblies
O43 - CFD: 12/10/2013 - 18:25:22 - [19,821] R---D C:\Program Files (x86)\Skype
O43 - CFD: 03/05/2012 - 02:01:33 - [0,727] ----D C:\Program Files (x86)\SymSilent
O43 - CFD: 14/07/2009 - 05:57:06 - [0] --H-D C:\Program Files (x86)\Uninstall Information
O43 - CFD: 22/07/2013 - 13:54:46 - [10,669] ----D C:\Program Files (x86)\WildTangent Games
O43 - CFD: 11/07/2013 - 21:41:56 - [0,500] ----D C:\Program Files (x86)\Windows Defender
O43 - CFD: 09/02/2012 - 18:56:55 - [147,764] ----D C:\Program Files (x86)\Windows Live
O43 - CFD: 15/10/2012 - 22:08:26 - [5,895] ----D C:\Program Files (x86)\Windows Mail =>.Microsoft Corporation
O43 - CFD: 15/10/2012 - 22:08:26 - [5,092] ----D C:\Program Files (x86)\Windows Media Player =>.Microsoft Corporation
O43 - CFD: 14/07/2009 - 06:32:38 - [11,632] ----D C:\Program Files (x86)\Windows NT
O43 - CFD: 15/10/2012 - 22:08:25 - [4,213] ----D C:\Program Files (x86)\Windows Photo Viewer
O43 - CFD: 21/11/2010 - 04:31:38 - [0,181] ----D C:\Program Files (x86)\Windows Portable Devices
O43 - CFD: 15/10/2012 - 22:08:28 - [6,287] ----D C:\Program Files (x86)\Windows Sidebar
O43 - CFD: 27/10/2013 - 12:13:46 - [17,034] ----D C:\Program Files (x86)\ZHPDiag =>.Nicolas Coolman
O43 - CFD: 25/11/2012 - 13:18:57 - [7,724] ----D C:\Program Files (x86)\Common Files\ABBYY
O43 - CFD: 25/10/2013 - 10:38:31 - [6,289] ----D C:\Program Files (x86)\Common Files\Adobe
O43 - CFD: 04/03/2013 - 21:08:57 - [105,882] ----D C:\Program Files (x86)\Common Files\Apple
O43 - CFD: 30/10/2012 - 10:58:39 - [1,873] ----D C:\Program Files (x86)\Common Files\Blizzard Entertainment
O43 - CFD: 12/10/2012 - 18:34:23 - [0,095] ----D C:\Program Files (x86)\Common Files\DESIGNER
O43 - CFD: 25/11/2012 - 13:13:18 - [1,609] ----D C:\Program Files (x86)\Common Files\EPSON
O43 - CFD: 06/07/2013 - 10:59:37 - [1,885] ----D C:\Program Files (x86)\Common Files\InstallShield
O43 - CFD: 03/05/2012 - 01:46:31 - [14,075] ----D C:\Program Files (x86)\Common Files\Intel
O43 - CFD: 03/05/2012 - 01:55:47 - [0,007] ----D C:\Program Files (x86)\Common Files\Intel Corporation
O43 - CFD: 18/10/2013 - 18:04:55 - [1,191] ----D C:\Program Files (x86)\Common Files\Java
O43 - CFD: 14/09/2013 - 08:37:12 - [195,697] ----D C:\Program Files (x86)\Common Files\microsoft shared
O43 - CFD: 13/10/2013 - 15:01:34 - [15,593] ----D C:\Program Files (x86)\Common Files\PAP7501
O43 - CFD: 03/05/2012 - 01:47:36 - [0,185] ----D C:\Program Files (x86)\Common Files\postureAgent
O43 - CFD: 14/07/2009 - 04:20:08 - [0,003] ----D C:\Program Files (x86)\Common Files\Services
O43 - CFD: 25/04/2013 - 09:58:20 - [1,904] ----D C:\Program Files (x86)\Common Files\Skype
O43 - CFD: 14/07/2009 - 04:20:08 - [39,200] ----D C:\Program Files (x86)\Common Files\SpeechEngines
O43 - CFD: 10/12/2012 - 18:21:45 - [0] ----D C:\Program Files (x86)\Common Files\Symantec Shared
O43 - CFD: 15/10/2012 - 22:08:25 - [10,310] ----D C:\Program Files (x86)\Common Files\System
O43 - CFD: 11/10/2013 - 16:33:50 - [2,736] ----D C:\Program Files (x86)\Common Files\Umbrella
O43 - CFD: 09/02/2012 - 18:53:58 - [0] ----D C:\Program Files (x86)\Common Files\Windows Live
O43 - CFD: 04/03/2013 - 21:09:51 - [2,774] ----D C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
O43 - CFD: 25/11/2012 - 13:18:57 - [1,596] ----D C:\ProgramData\ABBYY
O43 - CFD: 25/10/2013 - 10:38:26 - [147,431] ----D C:\ProgramData\Adobe
O43 - CFD: 04/03/2013 - 21:07:27 - [35,799] ----D C:\ProgramData\Apple
O43 - CFD: 04/03/2013 - 21:08:57 - [49,872] ----D C:\ProgramData\Apple Computer
O43 - CFD: 14/07/2009 - 06:08:56 - [0] -SH-D C:\ProgramData\Application Data
O43 - CFD: 27/10/2012 - 17:29:37 - [0] ----D C:\ProgramData\Ask
O43 - CFD: 03/05/2012 - 02:09:04 - [0] ----D C:\ProgramData\ATI
O43 - CFD: 19/10/2012 - 18:30:33 - [0] ----D C:\ProgramData\Babylon =>Toolbar.Babylon
O43 - CFD: 30/10/2012 - 10:54:55 - [120,218] ----D C:\ProgramData\Battle.net
O43 - CFD: 30/10/2012 - 10:58:39 - [0,974] ----D C:\ProgramData\Blizzard Entertainment
O43 - CFD: 12/10/2012 - 12:52:24 - [0] -SH-D C:\ProgramData\Bureau
O43 - CFD: 13/10/2013 - 16:45:44 - [0,013] ----D C:\ProgramData\CyberLink
O43 - CFD: 14/07/2009 - 06:08:56 - [0] -SH-D C:\ProgramData\Desktop
O43 - CFD: 14/07/2009 - 06:08:56 - [0] -SH-D C:\ProgramData\Documents
O43 - CFD: 11/10/2013 - 16:31:35 - [0,147] ----D C:\ProgramData\DSearchLink =>Toolbar.DeltaSearch
O43 - CFD: 27/11/2012 - 18:47:03 - [8,250] ----D C:\ProgramData\EPSON
O43 - CFD: 12/10/2012 - 12:52:24 - [0] -SH-D C:\ProgramData\Favoris
O43 - CFD: 14/07/2009 - 06:08:56 - [0] -SH-D C:\ProgramData\Favorites
O43 - CFD: 19/01/2013 - 09:05:56 - [0] ----D C:\ProgramData\Google
O43 - CFD: 26/07/2013 - 11:35:49 - [53,862] ----D C:\ProgramData\Hewlett-Packard
O43 - CFD: 03/05/2012 - 02:08:04 - [0,076] ----D C:\ProgramData\Intel
O43 - CFD: 27/10/2013 - 10:46:31 - [620,866] ----D C:\ProgramData\Kaspersky Lab
O43 - CFD: 12/10/2012 - 12:52:24 - [0] -SH-D C:\ProgramData\Menu D�marrer
O43 - CFD: 13/10/2012 - 11:44:58 - [265,259] -S--D C:\ProgramData\Microsoft
O43 - CFD: 12/10/2013 - 11:17:36 - [0,055] ----D C:\ProgramData\Microsoft Help
O43 - CFD: 12/10/2012 - 12:52:24 - [0] -SH-D C:\ProgramData\Mod�les
O43 - CFD: 12/10/2012 - 17:28:26 - [0,035] ----D C:\ProgramData\Mozilla
O43 - CFD: 10/12/2012 - 18:22:47 - [0,015] ----D C:\ProgramData\Norton
O43 - CFD: 03/05/2012 - 01:57:53 - [13,087] ----D C:\ProgramData\NortonInstaller
O43 - CFD: 18/10/2013 - 18:04:59 - [0] ----D C:\ProgramData\Oracle
O43 - CFD: 14/10/2012 - 10:25:59 - [32,530] ----D C:\ProgramData\PopCap Games =>Adware.PopCap
O43 - CFD: 03/05/2012 - 01:50:51 - [7,029] ----D C:\ProgramData\Ralink Driver
O43 - CFD: 12/10/2013 - 18:25:24 - [69,332] ----D C:\ProgramData\Skype
O43 - CFD: 14/07/2009 - 06:08:56 - [0] -SH-D C:\ProgramData\Start Menu
O43 - CFD: 15/10/2012 - 18:44:45 - [0] ----D C:\ProgramData\Sun
O43 - CFD: 03/05/2012 - 02:08:05 - [0,002] ----D C:\ProgramData\Synaptics
O43 - CFD: 03/05/2012 - 02:00:53 - [0,086] ----D C:\ProgramData\Temp
O43 - CFD: 14/07/2009 - 06:08:56 - [0] -SH-D C:\ProgramData\Templates
O43 - CFD: 25/11/2012 - 13:17:28 - [0,004] ----D C:\ProgramData\UDL
O43 - CFD: 13/10/2012 - 16:33:00 - [30,924] ----D C:\ProgramData\Wild Tangent
O43 - CFD: 13/10/2012 - 16:33:00 - [90,024] ----D C:\ProgramData\WildTangent
O43 - CFD: 18/11/2012 - 18:03:01 - [39,643] ----D C:\ProgramData\{9BF4D58B-C6D6-467B-BC5A-FD0C1278F4AF}
O43 - CFD: 02/07/2013 - 09:39:59 - [0] ----D C:\Users\QUENTIN\AppData\Roaming\7road
O43 - CFD: 03/11/2012 - 13:03:50 - [7,588] ----D C:\Users\QUENTIN\AppData\Roaming\Adobe
O43 - CFD: 16/09/2013 - 20:27:44 - [2,120] ----D C:\Users\QUENTIN\AppData\Roaming\Apple Computer
O43 - CFD: 12/10/2012 - 14:16:02 - [0] ----D C:\Users\QUENTIN\AppData\Roaming\ATI
O43 - CFD: 11/10/2013 - 16:31:38 - [1,265] ----D C:\Users\QUENTIN\AppData\Roaming\BabSolution =>Hijacker.BabSolution
O43 - CFD: 19/10/2012 - 18:30:32 - [0,010] ----D C:\Users\QUENTIN\AppData\Roaming\Babylon =>Toolbar.Babylon
O43 - CFD: 19/10/2012 - 18:31:19 - [2,113] ----D C:\Users\QUENTIN\AppData\Roaming\BabylonToolbar =>Toolbar.Babylon
O43 - CFD: 20/01/2013 - 21:15:27 - [0] ----D C:\Users\QUENTIN\AppData\Roaming\CyberLink
O43 - CFD: 11/10/2013 - 16:32:43 - [0,259] ----D C:\Users\QUENTIN\AppData\Roaming\Delta
O43 - CFD: 10/12/2012 - 18:23:15 - [0,007] ----D C:\Users\QUENTIN\AppData\Roaming\Epson
O43 - CFD: 19/01/2013 - 09:05:55 - [0] ----D C:\Users\QUENTIN\AppData\Roaming\Google
O43 - CFD: 30/08/2013 - 16:30:06 - [0,004] ----D C:\Users\QUENTIN\AppData\Roaming\Hewlett-Packard
O43 - CFD: 13/10/2012 - 11:11:04 - [0,537] ----D C:\Users\QUENTIN\AppData\Roaming\hpqlog
O43 - CFD: 19/10/2012 - 18:30:19 - [0] ----D C:\Users\QUENTIN\AppData\Roaming\Identities
O43 - CFD: 25/11/2012 - 13:13:30 - [0] ----D C:\Users\QUENTIN\AppData\Roaming\InstallShield
O43 - CFD: 12/10/2012 - 14:17:02 - [202,040] ----D C:\Users\QUENTIN\AppData\Roaming\Macromedia
O43 - CFD: 03/05/2012 - 10:26:40 - [0] ----D C:\Users\QUENTIN\AppData\Roaming\Media Center Programs
O43 - CFD: 28/02/2013 - 13:07:41 - [15,523] -S--D C:\Users\QUENTIN\AppData\Roaming\Microsoft
O43 - CFD: 12/10/2012 - 17:28:47 - [67,469] ----D C:\Users\QUENTIN\AppData\Roaming\Mozilla
O43 - CFD: 01/02/2013 - 20:08:06 - [12,463] ----D C:\Users\QUENTIN\AppData\Roaming\OpenOffice.org
O43 - CFD: 27/10/2013 - 11:55:59 - [7,903] ----D C:\Users\QUENTIN\AppData\Roaming\Skype
O43 - CFD: 12/10/2012 - 12:03:49 - [0] ----D C:\Users\QUENTIN\AppData\Roaming\Synaptics
O43 - CFD: 27/10/2013 - 12:05:43 - [0] ----D C:\Users\QUENTIN\AppData\Roaming\Systweak
O43 - CFD: 18/07/2013 - 09:36:57 - [1,990] ----D C:\Users\QUENTIN\AppData\Roaming\TERA
O43 - CFD: 17/08/2013 - 12:55:32 - [0,021] ----D C:\Users\QUENTIN\AppData\Roaming\Unity
O43 - CFD: 13/10/2012 - 16:31:43 - [8,132] ----D C:\Users\QUENTIN\AppData\Roaming\WildTangent
O43 - CFD: 05/10/2013 - 16:43:18 - [0,001] ----D C:\Users\QUENTIN\AppData\Roaming\xm1
O43 - CFD: 27/10/2013 - 12:19:33 - [0,038] ----D C:\Users\QUENTIN\AppData\Roaming\ZHP =>.Nicolas Coolman
O43 - CFD: 21/03/2013 - 20:21:09 - [0,003] ----D C:\Users\QUENTIN\AppData\Roaming\_MDLogs
O43 - CFD: 25/11/2012 - 13:19:41 - [0] ----D C:\Users\QUENTIN\AppData\Local\ABBYY
O43 - CFD: 25/10/2013 - 10:44:41 - [32,722] ----D C:\Users\QUENTIN\AppData\Local\Adobe
O43 - CFD: 11/08/2013 - 09:49:23 - [32,302] ----D C:\Users\QUENTIN\AppData\Local\Akamai
O43 - CFD: 06/10/2013 - 15:45:19 - [0] ----D C:\Users\QUENTIN\AppData\Local\APN
O43 - CFD: 04/03/2013 - 21:07:42 - [0] ----D C:\Users\QUENTIN\AppData\Local\Apple
O43 - CFD: 04/03/2013 - 21:10:23 - [10,820] ----D C:\Users\QUENTIN\AppData\Local\Apple Computer
O43 - CFD: 12/10/2012 - 12:52:44 - [0] -SH-D C:\Users\QUENTIN\AppData\Local\Application Data
O43 - CFD: 06/10/2013 - 15:17:41 - [11,785] ----D C:\Users\QUENTIN\AppData\Local\Apps
O43 - CFD: 12/10/2012 - 14:16:02 - [0,054] ----D C:\Users\QUENTIN\AppData\Local\ATI
O43 - CFD: 12/10/2013 - 12:43:59 - [42,009] ----D C:\Users\QUENTIN\AppData\Local\CrashDumps
O43 - CFD: 20/01/2013 - 21:15:27 - [0,005] ----D C:\Users\QUENTIN\AppData\Local\CyberLink
O43 - CFD: 11/10/2013 - 23:54:59 - [0] ----D C:\Users\QUENTIN\AppData\Local\Deployment
O43 - CFD: 28/08/2013 - 14:05:30 - [0] ----D C:\Users\QUENTIN\AppData\Local\Diagnostics
O43 - CFD: 27/09/2013 - 19:17:01 - [0] ----D C:\Users\QUENTIN\AppData\Local\ElevatedDiagnostics
O43 - CFD: 20/03/2013 - 14:50:40 - [7,404] ----D C:\Users\QUENTIN\AppData\Local\Facebook
O43 - CFD: 27/10/2013 - 11:59:12 - [6,368] ----D C:\Users\QUENTIN\AppData\Local\fst_fr_6 =>PUA.FSTfr9
O43 - CFD: 21/10/2013 - 12:23:56 - [0,007] ----D C:\Users\QUENTIN\AppData\Local\Gameforge4d
O43 - CFD: 09/11/2012 - 23:13:15 - [42,379] ----D C:\Users\QUENTIN\AppData\Local\Google
O43 - CFD: 13/10/2012 - 11:25:51 - [0,013] ----D C:\Users\QUENTIN\AppData\Local\Hewlett-Packard
O43 - CFD: 12/10/2012 - 12:54:35 - [0,002] ----D C:\Users\QUENTIN\AppData\Local\Hewlett-Packard_Company
O43 - CFD: 12/10/2012 - 12:52:44 - [0] -SH-D C:\Users\QUENTIN\AppData\Local\Historique
O43 - CFD: 12/10/2012 - 18:07:06 - [0] ----D C:\Users\QUENTIN\AppData\Local\Macromedia
O43 - CFD: 16/09/2013 - 20:05:45 - [139,730] ----D C:\Users\QUENTIN\AppData\Local\Microsoft
O43 - CFD: 29/07/2013 - 19:00:37 - [1,296] ----D C:\Users\QUENTIN\AppData\Local\Microsoft Games
O43 - CFD: 28/02/2013 - 13:07:41 - [0,069] ----D C:\Users\QUENTIN\AppData\Local\Microsoft Help
O43 - CFD: 05/10/2013 - 07:15:00 - [412,769] ----D C:\Users\QUENTIN\AppData\Local\Mozilla
O43 - CFD: 18/07/2013 - 09:35:52 - [0] ----D C:\Users\QUENTIN\AppData\Local\Programs
O43 - CFD: 11/10/2013 - 18:04:38 - [1,395] ----D C:\Users\QUENTIN\AppData\Local\PunkBuster
O43 - CFD: 12/10/2012 - 12:54:42 - [0] ----D C:\Users\QUENTIN\AppData\Local\RemEngine
O43 - CFD: 29/12/2012 - 22:37:38 - [0] ----D C:\Users\QUENTIN\AppData\Local\SCE
O43 - CFD: 13/01/2013 - 11:35:39 - [2,437] ----D C:\Users\QUENTIN\AppData\Local\Sony Online Entertainment
O43 - CFD: 27/10/2013 - 12:19:14 - [734,657] ----D C:\Users\QUENTIN\AppData\Local\Temp
O43 - CFD: 12/10/2012 - 12:52:44 - [0] -SH-D C:\Users\QUENTIN\AppData\Local\Temporary Internet Files
O43 - CFD: 14/08/2013 - 11:25:23 - [0,209] ----D C:\Users\QUENTIN\AppData\Local\Unity
O43 - CFD: 13/10/2013 - 15:03:12 - [0,001] ----D C:\Users\QUENTIN\AppData\Local\VirtualStore
O43 - CFD: 14/07/2009 - 05:54:32 - [0,014] R---D C:\Users\QUENTIN\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 15/09/2013 - 09:22:25 - [0] R---D C:\Users\QUENTIN\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 05/10/2013 - 16:41:47 - [0] ----D C:\Users\QUENTIN\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Algobox
O43 - CFD: 25/11/2012 - 13:13:13 - [0,001] ----D C:\Users\QUENTIN\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\EPSON Software
O43 - CFD: 14/07/2009 - 05:49:38 - [0,001] R---D C:\Users\QUENTIN\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 01/02/2013 - 20:07:45 - [0,008] -S--D C:\Users\QUENTIN\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OpenOffice.org 3.4.1
O43 - CFD: 15/09/2013 - 09:22:25 - [0,001] R---D C:\Users\QUENTIN\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 11/10/2013 - 23:54:57 - [0,002] ----D C:\Users\QUENTIN\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ubisoft
~ 53 Dossiers CLSID vides (CLSID Empty Folders)
~ Program Folder: 248 Scanned in 00mn 08s



---\\ Derniers fichiers modifi�s ou cr�es sous Windows et System32 (O44)
O44 - LFC:[MD5.538326DF684D6C069622832610EBFB41] - 12/10/2013 - 12:21:48 ---A- . (...) -- C:\Windows\SysNative\FNTCACHE.DAT [368760]
O44 - LFC:[MD5.538326DF684D6C069622832610EBFB41] - 12/10/2013 - 12:21:48 ---A- . (...) -- C:\Windows\System32\FNTCACHE.DAT [368760]
O44 - LFC:[MD5.280E90CBF4B2DDD169F0728CB44D726F] - 13/10/2013 - 10:12:56 ---A- . (.Microsoft Corporation - Default Hub Driver for USB.) -- C:\Windows\System32\Drivers\usbhub.sys [343040]
O44 - LFC:[MD5.311C1DD1088E55BEAE15954D17F50646] - 13/10/2013 - 10:12:56 ---A- . (.Microsoft Corporation - EHCI eUSB Miniport Driver.) -- C:\Windows\System32\Drivers\usbehci.sys [52736]
O44 - LFC:[MD5.9406D801042FAF859CF81B2C886413DC] - 13/10/2013 - 10:12:56 ---A- . (.Microsoft Corporation - OHCI USB Miniport Driver.) -- C:\Windows\System32\Drivers\usbohci.sys [25600]
O44 - LFC:[MD5.E73A7A04FDAC9DD46EE2A4257F09E91C] - 13/10/2013 - 10:12:56 ---A- . (.Microsoft Corporation - Pilote de port USB 1.1 & 2.0.) -- C:\Windows\System32\Drivers\usbport.sys [325120]
O44 - LFC:[MD5.A83D0EC9AE4C31704442099D40BA2471] - 13/10/2013 - 10:12:56 ---A- . (.Microsoft Corporation - UHCI USB Miniport Driver.) -- C:\Windows\System32\Drivers\usbuhci.sys [30720]
O44 - LFC:[MD5.ACCEA6BC68D0C9A78EB97EE159028B4E] - 13/10/2013 - 10:12:56 ---A- . (.Microsoft Corporation - USB Common Class Generic Parent Driver.) -- C:\Windows\System32\Drivers\usbccgp.sys [99840]
O44 - LFC:[MD5.861C197502A5057E68F0AC75D9EFCDD7] - 13/10/2013 - 10:12:56 ---A- . (.Microsoft Corporation - Universal Serial Bus Driver.) -- C:\Windows\System32\Drivers\usbd.sys [7808]
O44 - LFC:[MD5.A6C8E96C5BE5D3596CACAE3FB6BD1E31] - 13/10/2013 - 15:01:33 ---A- . (.PixArt Imaging Inc. - CoInstaller.) -- C:\Windows\SysNative\COINST_080603.dll [9216]
O44 - LFC:[MD5.A6C8E96C5BE5D3596CACAE3FB6BD1E31] - 13/10/2013 - 15:01:33 ---A- . (.PixArt Imaging Inc. - CoInstaller.) -- C:\Windows\System32\COINST_080603.dll [9216]
O44 - LFC:[MD5.98F87E7F045E0195ED3A2C9BE7868D0E] - 13/10/2013 - 15:01:33 ---A- . (.PixArt Imaging Incorporation - Generic USB Controller Interface (AVS).) -- C:\Windows\System32\Drivers\GUCI_AVS.sys [691712]
O44 - LFC:[MD5.7879D818621205886B9909AB5E0F24C3] - 13/10/2013 - 15:02:40 ---A- . (...) -- C:\Windows\win.ini [461]
O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 25/10/2013 - 15:13:30 ---A- . (...) -- C:\dfu.log [0]
O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 26/10/2013 - 20:35:48 ---A- . (...) -- C:\Windows\SysNative\HP_ActiveX_Patch_NOT_DETECTED.txt [0]
O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 26/10/2013 - 20:35:48 ---A- . (...) -- C:\Windows\System32\HP_ActiveX_Patch_NOT_DETECTED.txt [0]
O44 - LFC:[MD5.1AD6C80CB9C264876206A0B9B4E4453C] - 27/10/2013 - 10:26:48 ---A- . (...) -- C:\Windows\PFRO.log [634658]
O44 - LFC:[MD5.D7646BA3E43F1222D1EE9EB94AFBD6FF] - 27/10/2013 - 10:26:52 -S-A- . (...) -- C:\Windows\bootstat.dat [67584]
O44 - LFC:[MD5.F5FFF75C525E1D04FA3D5EBDA26DF063] - 27/10/2013 - 10:27:05 ---A- . (...) -- C:\Windows\setupact.log [64460]
O44 - LFC:[MD5.CF3407D70D1505045B5606E5BD0E7680] - 27/10/2013 - 10:33:41 ---A- . (...) -- C:\Windows\SysNative\PerfStringBackup.INI [1549936]
O44 - LFC:[MD5.33D0286AA5E71FE38B16EE7CC90E3CC0] - 27/10/2013 - 10:33:41 ---A- . (...) -- C:\Windows\SysNative\perfc009.dat [106622]
O44 - LFC:[MD5.4EDAE59F0EB92FEFA7D09A54ADE24212] - 27/10/2013 - 10:33:41 ---A- . (...) -- C:\Windows\SysNative\perfc00C.dat [130988]
O44 - LFC:[MD5.B584ADBBE1B69CD7CAEDE37813638C25] - 27/10/2013 - 10:33:41 ---A- . (...) -- C:\Windows\SysNative\perfh009.dat [616242]
O44 - LFC:[MD5.0BCC5FF2E6FCA6273063C50DE5AD804D] - 27/10/2013 - 10:33:41 ---A- . (...) -- C:\Windows\SysNative\perfh00C.dat [704714]
O44 - LFC:[MD5.CF3407D70D1505045B5606E5BD0E7680] - 27/10/2013 - 10:33:41 ---A- . (...) -- C:\Windows\System32\PerfStringBackup.INI [1549936]
O44 - LFC:[MD5.33D0286AA5E71FE38B16EE7CC90E3CC0] - 27/10/2013 - 10:33:41 ---A- . (...) -- C:\Windows\System32\perfc009.dat [106622]
O44 - LFC:[MD5.4EDAE59F0EB92FEFA7D09A54ADE24212] - 27/10/2013 - 10:33:41 ---A- . (...) -- C:\Windows\System32\perfc00C.dat [130988]
O44 - LFC:[MD5.B584ADBBE1B69CD7CAEDE37813638C25] - 27/10/2013 - 10:33:41 ---A- . (...) -- C:\Windows\System32\perfh009.dat [616242]
O44 - LFC:[MD5.0BCC5FF2E6FCA6273063C50DE5AD804D] - 27/10/2013 - 10:33:41 ---A- . (...) -- C:\Windows\System32\perfh00C.dat [704714]
O44 - LFC:[MD5.1BFED488ED275D8797F240B9B54FF9DE] - 27/10/2013 - 11:41:57 ---A- . (...) -- C:\Windows\WindowsUpdate.log [2081429]
O44 - LFC:[MD5.39A60C307A6F7755D8F05E5D8674CD02] - 27/10/2013 - 11:57:06 ---A- . (.Systweak Inc., (www.systweak.com) - Regclean Pro.) -- C:\Windows\SysNative\roboot64.exe [20312] =>Rogue.RegistryPowerCleaner
O44 - LFC:[MD5.39A60C307A6F7755D8F05E5D8674CD02] - 27/10/2013 - 11:57:06 ---A- . (.Systweak Inc., (www.systweak.com) - Regclean Pro.) -- C:\Windows\System32\roboot64.exe [20312] =>Rogue.RegistryPowerCleaner
~ Files: 32 Scanned in 01mn 04s



---\\ Derniers fichiers cr��s dans Windows Prefetcher (O45)
O45 - LFCP:[MD5.CD0508BE8E94DAFEE8697CA6AF0BFE3A] - 14/10/2013 - 16:41:00 ---A- - C:\Windows\Prefetch\AgCx_SC4.db
O45 - LFCP:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 18/02/2280 - 08:20:30 ----D - C:\Windows\Prefetch\ReadyBoot
O45 - LFCP:[MD5.0C34122B89A7232D6302853B382E6CA1] - 24/10/2013 - 13:33:13 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-ECB71776.pf
O45 - LFCP:[MD5.A8E25107D6DCF001D887D25E085C59B1] - 24/10/2013 - 13:50:19 ---A- - C:\Windows\Prefetch\SETUP_WM.EXE-D33FD27D.pf
O45 - LFCP:[MD5.9E563508D0E6B613BBB7310AD5C3902F] - 24/10/2013 - 13:55:07 ---A- - C:\Windows\Prefetch\BLIZZARD LAUNCHER.EXE-CAB705E9.pf
O45 - LFCP:[MD5.6746CBB05FBB504C673B61D72CF32F1C] - 24/10/2013 - 13:55:17 ---A- - C:\Windows\Prefetch\BLIZZARD LAUNCHER.EXE-CAB583AF.pf
O45 - LFCP:[MD5.F534F9F7D0A3087B6886F955B9503E0A] - 24/10/2013 - 13:55:52 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-2ED8AF22.pf
O45 - LFCP:[MD5.3703A171FA159121DDAC590FDDCA2BD7] - 24/10/2013 - 16:51:12 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-411A328D.pf
O45 - LFCP:[MD5.97730A8B127CE62A6A952D43390F9CE0] - 24/10/2013 - 16:58:02 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-230FC512.pf
O45 - LFCP:[MD5.1822293F77EC95F9F8146104F29A2963] - 24/10/2013 - 19:37:11 ---A- - C:\Windows\Prefetch\AGENT.EXE-273C5030.pf
O45 - LFCP:[MD5.866FB242A7C436C7211FEA57B03493B3] - 24/10/2013 - 19:37:12 ---A- - C:\Windows\Prefetch\WORLD OF WARCRAFT LAUNCHER.EX-B6B6BEC3.pf
O45 - LFCP:[MD5.BF6EA52A4D554DAD01367DF279F0E11D] - 24/10/2013 - 19:37:21 ---A- - C:\Windows\Prefetch\AGENT.EXE-E9822A5C.pf
O45 - LFCP:[MD5.EF04062D3E469A7B5711496B2B9AC137] - 24/10/2013 - 23:00:42 ---A- - C:\Windows\Prefetch\Layout.ini
O45 - LFCP:[MD5.2987BF27593C0E5D19BBA436A647B7C0] - 24/10/2013 - 23:00:52 ---A- - C:\Windows\Prefetch\DEFRAG.EXE-588F90AD.pf
O45 - LFCP:[MD5.B1FA1B72EAAE47C70C2795765D5B8E08] - 24/10/2013 - 23:00:53 ---A- - C:\Windows\Prefetch\SVCHOST.EXE-7AC6742A.pf
O45 - LFCP:[MD5.8F7D37963D72471186FCD2B5F35346A5] - 25/10/2013 - 09:38:39 ---A- - C:\Windows\Prefetch\MPAS-D_BD_1.161.421.0.EXE-DFC2F038.pf
O45 - LFCP:[MD5.22C313715DB4A5017C6C585E8AFCA28E] - 25/10/2013 - 09:38:42 ---A- - C:\Windows\Prefetch\MPMINISIGSTUB.EXE-BBFF85B7.pf
O45 - LFCP:[MD5.4AE3BA34B829447D8FE3B10EE46729A1] - 25/10/2013 - 09:38:42 ---A- - C:\Windows\Prefetch\MPSIGSTUB.EXE-6CB27A06.pf
O45 - LFCP:[MD5.E99CA5BF49F8398DCE01879CB0CCE89C] - 25/10/2013 - 10:04:54 ---A- - C:\Windows\Prefetch\ACRORD32.EXE-97743AA9.pf
O45 - LFCP:[MD5.EA72051E6EDD2B762179E77BC7FC7F5A] - 25/10/2013 - 10:14:59 ---A- - C:\Windows\Prefetch\OSPPSVC.EXE-E53D3CC0.pf
O45 - LFCP:[MD5.713E7E5124A7FD63C2F3C46B991AAB79] - 25/10/2013 - 10:20:20 ---A- - C:\Windows\Prefetch\ADOBECOLLABSYNC.EXE-D30B5D72.pf
O45 - LFCP:[MD5.33C954AFA8CE8B94EC438AAE6DE91FEB] - 25/10/2013 - 10:25:27 ---A- - C:\Windows\Prefetch\ADOBE%20READER.EXE-CF599599.pf
O45 - LFCP:[MD5.2D25CEA8489DABB432B4CB2550D1A819] - 25/10/2013 - 10:25:28 ---A- - C:\Windows\Prefetch\INS7394.EXE-9B22434B.pf
O45 - LFCP:[MD5.13D6FCB599B3B9D2ECAB0CF652EBCEBB] - 25/10/2013 - 10:26:53 ---A- - C:\Windows\Prefetch\LYRICSSAY_1060-8002_V122.EXE-43064C30.pf =>Adware.AddLyrics
O45 - LFCP:[MD5.DF7A39556E782E2E2C6A9331BC08CD67] - 25/10/2013 - 10:27:57 ---A- - C:\Windows\Prefetch\INSTALL_READER11_FR_MSSA_AIH.-567349F9.pf
O45 - LFCP:[MD5.0902D6E3E8AED1542BEE7BFF0162DE1F] - 25/10/2013 - 10:28:08 ---A- - C:\Windows\Prefetch\INSTALL_READER11_FR_MSSA_AIH.-F91DB523.pf
O45 - LFCP:[MD5.306B5779FF7444579CD5A825E5B5C542] - 25/10/2013 - 10:28:26 ---A- - C:\Windows\Prefetch\GTBCHECK.EXE-A69B3DF3.pf
O45 - LFCP:[MD5.88D0B11386FE024DBBB7E8430FE95E61] - 25/10/2013 - 10:28:26 ---A- - C:\Windows\Prefetch\PLUSHD_1410_FR-D36BA45B.EXE-9076342A.pf
O45 - LFCP:[MD5.4AA712042C74CC1EC01090934F73D1ED] - 25/10/2013 - 10:28:28 ---A- - C:\Windows\Prefetch\GCCHECK.EXE-3D325C84.pf
O45 - LFCP:[MD5.45FA31383A47F605A07BF836768459C4] - 25/10/2013 - 10:28:39 ---A- - C:\Windows\Prefetch\YMLCUAMPPSV.EXE-58607204.pf
O45 - LFCP:[MD5.B672227A10A044361DCC5822C32D7BE9] - 25/10/2013 - 10:29:15 ---A- - C:\Windows\Prefetch\PLUS-HD-1.6-HELPER.EXE-9D508DF0.pf =>Adware.PlusHD
O45 - LFCP:[MD5.DD036F95FBE794F808FCA934626D61B0] - 25/10/2013 - 10:29:21 ---A- - C:\Windows\Prefetch\PLUS-HD-1.6-BG.EXE-C3D040B5.pf =>Adware.PlusHD
O45 - LFCP:[MD5.6D4E03407C097EDD500B5091DA6F15D0] - 25/10/2013 - 10:31:34 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-76936ED5.pf
O45 - LFCP:[MD5.7E6992BBCD30782F1B0BA3FB8EE92B62] - 25/10/2013 - 10:33:45 ---A- - C:\Windows\Prefetch\ADBERDR11004_FR_FR.EXE-4B505B7C.pf
O45 - LFCP:[MD5.ECCE5DACE9D2A9DC42CBCC3220564323] - 25/10/2013 - 10:34:18 ---A- - C:\Windows\Prefetch\SETUP.EXE-D7941B5A.pf
O45 - LFCP:[MD5.C96B095AC817313FE9696F381303D794] - 25/10/2013 - 10:39:31 ---A- - C:\Windows\Prefetch\ARMSVC.EXE-E7A9D6CF.pf
O45 - LFCP:[MD5.C174E30169AA6069DD8667814529CF77] - 25/10/2013 - 11:53:20 ---A- - C:\Windows\Prefetch\ACRORD32.EXE-D066635E.pf
O45 - LFCP:[MD5.64AE305FAB1C867308892505E73D852B] - 25/10/2013 - 11:53:28 ---A- - C:\Windows\Prefetch\EULA.EXE-827DC6D9.pf
O45 - LFCP:[MD5.064D490C34F5EDE57F31CB18F1431F34] - 25/10/2013 - 11:54:13 ---A- - C:\Windows\Prefetch\ADOBEARM.EXE-7105D3A2.pf
O45 - LFCP:[MD5.1A9E16384C40DA9F0A57419211B10C47] - 25/10/2013 - 11:58:30 ---A- - C:\Windows\Prefetch\SETHC.EXE-6A2DC453.pf
O45 - LFCP:[MD5.B1B4348AF9757A00486114D18D46E7AC] - 25/10/2013 - 13:57:12 ---A- - C:\Windows\Prefetch\AGCP.EXE-E8D82016.pf
O45 - LFCP:[MD5.25B378B71E4ACA429E70C57553F4F3C7] - 25/10/2013 - 14:33:11 ---A- - C:\Windows\Prefetch\WUDFHOST.EXE-AFFEF87C.pf
O45 - LFCP:[MD5.D89E41431DBF5DE65C258305A97211E5] - 25/10/2013 - 15:13:31 ---A- - C:\Windows\Prefetch\DFUBG.EXE-ACAA57D7.pf
O45 - LFCP:[MD5.0B588688D77145D0D04B6BAC8B58EB16] - 25/10/2013 - 15:13:38 ---A- - C:\Windows\Prefetch\DFUFG.EXE-42741CCB.pf
O45 - LFCP:[MD5.8C73AF368ACBCF777F8F32E64607E6CD] - 25/10/2013 - 15:13:53 ---A- - C:\Windows\Prefetch\SF2.EXE-4EE76ADE.pf
O45 - LFCP:[MD5.E4EBB93754F04A85B35A49EDFC96A2F5] - 25/10/2013 - 15:14:10 ---A- - C:\Windows\Prefetch\XXD.XEM-EAAF6004.pf
O45 - LFCP:[MD5.47333CF88C199B976DFCBFE09FB08AA4] - 25/10/2013 - 18:24:04 ---A- - C:\Windows\Prefetch\JP2LAUNCHER.EXE-6240744E.pf
O45 - LFCP:[MD5.8E6D4CF99E219F2D08ACC4868B8A3909] - 25/10/2013 - 18:24:05 ---A- - C:\Windows\Prefetch\JAVA.EXE-07FE5A9A.pf
O45 - LFCP:[MD5.A9A5F426D41C3B83937D2D825B84D4A3] - 25/10/2013 - 18:24:09 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-9B8A5F1F.pf
O45 - LFCP:[MD5.B9734EB13C6CB289F12D0F565E178DDF] - 25/10/2013 - 18:56:05 ---A- - C:\Windows\Prefetch\BABMAINT.EXE-53413AC8.pf =>Hijacker.BabSolution
O45 - LFCP:[MD5.2B4497275D2B3CAB60737F9E15E7C1DC] - 25/10/2013 - 20:06:34 ---A- - C:\Windows\Prefetch\OSE.EXE-2B23CA4C.pf
O45 - LFCP:[MD5.C4055A4C1D3420B5C9BE3B9DC917D5E6] - 26/10/2013 - 11:08:37 ---A- - C:\Windows\Prefetch\HPTASKBAR1.EXE-7F6D18DB.pf
O45 - LFCP:[MD5.38C011E888AF5163F7286E6DEB31F135] - 26/10/2013 - 11:08:46 ---A- - C:\Windows\Prefetch\HPTASKBAR2.EXE-92C2D360.pf
O45 - LFCP:[MD5.C87A1B112DD37EA69A982854EFA499AF] - 26/10/2013 - 17:05:11 ---A- - C:\Windows\Prefetch\EXPLORER.EXE-A80E4F97.pf
O45 - LFCP:[MD5.D08371C31D5CBB6F98E5896743998F97] - 26/10/2013 - 17:05:56 ---A- - C:\Windows\Prefetch\SPLWOW64.EXE-297C4568.pf
O45 - LFCP:[MD5.5A427FA0D2187EF6402902DCADF33682] - 26/10/2013 - 17:23:49 ---A- - C:\Windows\Prefetch\WINWORD.EXE-7D220BFE.pf
O45 - LFCP:[MD5.878EF3F0E838BE5F0AADEFEB1393B585] - 26/10/2013 - 18:25:39 ---A- - C:\Windows\Prefetch\DVDSHRINK_3.2_CSS-FREE_FOR_IM-37A0226E.pf
O45 - LFCP:[MD5.D3F649FC9A77EF56489717BD8155278A] - 26/10/2013 - 18:25:43 ---A- - C:\Windows\Prefetch\IS-VFE6M.TMP-BDD2C8F7.pf
O45 - LFCP:[MD5.1F1D3719C37531C4D04DAF9DFC100E57] - 26/10/2013 - 18:26:29 ---A- - C:\Windows\Prefetch\DVD SHRINK 3.2.EXE-84BA3602.pf
O45 - LFCP:[MD5.ACEFF0DE8F4597FE25C7E89571D640BD] - 26/10/2013 - 18:30:09 ---A- - C:\Windows\Prefetch\PLUGIN-HANG-UI.EXE-F3C09761.pf
O45 - LFCP:[MD5.BE445707A85C050108766EDE175976A9] - 26/10/2013 - 18:41:13 ---A- - C:\Windows\Prefetch\INSTALLER_DVD_DECRYPTER_3_5_4-DA7A98BD.pf
O45 - LFCP:[MD5.95EB9B1EBF8FF0E3C375672828B1DFD5] - 26/10/2013 - 18:41:25 ---A- - C:\Windows\Prefetch\B9C1INSTALLER.EXE-303A8D3E.pf
O45 - LFCP:[MD5.3647999A0A4EB015C112B464960400DB] - 26/10/2013 - 18:42:18 ---A- - C:\Windows\Prefetch\INSTLOFFER.EXE-E9FCF2E1.pf
O45 - LFCP:[MD5.BB093E600F7D7A814CA96586B52141FA] - 26/10/2013 - 18:42:57 ---A- - C:\Windows\Prefetch\FREESOFTTODAY.EXE-F8A65620.pf =>Adware.FreeSoftToday
O45 - LFCP:[MD5.FA12A60F2BD482FC26D587845188EC91] - 26/10/2013 - 18:43:03 ---A- - C:\Windows\Prefetch\FREESOFTTODAY.TMP-905A3A78.pf =>Adware.FreeSoftToday
O45 - LFCP:[MD5.29B1E91F92CD052AE682AA54099454AF] - 26/10/2013 - 19:43:14 ---A- - C:\Windows\Prefetch\37020-83927-DVD-DECRYPTER.EXE-7D2438FD.pf
O45 - LFCP:[MD5.EAFB21565D7D0E9D472EFB41D900CBCE] - 26/10/2013 - 20:31:26 ---A- - C:\Windows\Prefetch\HPRESOURCES.EXE-A7537576.pf
O45 - LFCP:[MD5.83E51D5A00CD203FBA70F8BADBFEA71A] - 26/10/2013 - 20:31:28 ---A- - C:\Windows\Prefetch\PRODUCTCONFIG.EXE-29BD970A.pf
O45 - LFCP:[MD5.0D58137ADBA43E4786469689AC45A5E2] - 26/10/2013 - 20:36:20 ---A- - C:\Windows\Prefetch\HPASSET.EXE-64C2897D.pf
O45 - LFCP:[MD5.AA019D820DB764DEC124F2398830B198] - 26/10/2013 - 20:36:38 ---A- - C:\Windows\Prefetch\UNZIP.EXE-EAF733B0.pf
O45 - LFCP:[MD5.E2F9636B3B414F64128DDFD3C1D0F17A] - 26/10/2013 - 21:34:13 ---A- - C:\Windows\Prefetch\AgCx_SC1.db.trx
O45 - LFCP:[MD5.9102BED3617A598860F9644820D6DEB5] - 26/10/2013 - 21:35:14 ---A- - C:\Windows\Prefetch\AgCx_SC1.db
O45 - LFCP:[MD5.929534810E351440B689297488322649] - 26/10/2013 - 21:49:11 ---A- - C:\Windows\Prefetch\WMPLAYER.EXE-26C72A86.pf
O45 - LFCP:[MD5.A9FB98FC2AA7950C438B642B7D006B1A] - 26/10/2013 - 21:55:33 ---A- - C:\Windows\Prefetch\LOGONUI.EXE-09140401.pf
O45 - LFCP:[MD5.677FEAB38ABCF942A832F3CCB6D1DC82] - 26/10/2013 - 21:55:52 ---A- - C:\Windows\Prefetch\PfSvPerfStats.bin
O45 - LFCP:[MD5.3173937B9FC7331AB512279AC67539F9] - 27/10/2013 - 10:28:07 ---A- - C:\Windows\Prefetch\NTOSBOOT-B00DFAAD.pf
O45 - LFCP:[MD5.7057EA80DFB9063881791561E8876B2B] - 27/10/2013 - 10:28:07 ---A- - C:\Windows\Prefetch\OPTPROLAUNCHER.EXE-827E43BB.pf
O45 - LFCP:[MD5.89E5AA9E09FBF13CEFA3A1BC44E68C31] - 27/10/2013 - 10:28:07 ---A- - C:\Windows\Prefetch\QUICKSTART.EXE-87E0AC97.pf
O45 - LFCP:[MD5.5B093197B60C638E60823CB7E49968A8] - 27/10/2013 - 10:28:07 ---A- - C:\Windows\Prefetch\RUNONCE.EXE-0E293DD6.pf
O45 - LFCP:[MD5.78021F6B579CA0CD910F37D9C4A726EC] - 27/10/2013 - 10:28:07 ---A- - C:\Windows\Prefetch\WMPNSCFG.EXE-FC0D39BF.pf
O45 - LFCP:[MD5.E4B391CDC3CABFFB014F426993F1CA63] - 27/10/2013 - 10:28:09 ---A- - C:\Windows\Prefetch\READER_SL.EXE-38C1D083.pf
O45 - LFCP:[MD5.D1525F4DCE748F01FEDDCAAEA97B6F88] - 27/10/2013 - 10:28:11 ---A- - C:\Windows\Prefetch\CSC.EXE-4C85A8F6.pf
O45 - LFCP:[MD5.66B1402EA4F7AF1F5C70D471DE3B9FE6] - 27/10/2013 - 10:28:11 ---A- - C:\Windows\Prefetch\CVTRES.EXE-CDAB491C.pf
O45 - LFCP:[MD5.9A3CB2BEF6660B58677E1252DC6E8199] - 27/10/2013 - 10:28:32 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-40DD444D.pf
O45 - LFCP:[MD5.8E20B0EBC84112B79CA63CDF46D8079E] - 27/10/2013 - 10:29:10 ---A- - C:\Windows\Prefetch\MSCORSVW.EXE-57D17DAF.pf
O45 - LFCP:[MD5.BCA5F027934A2AEE57D68C6AA2EFAEDE] - 27/10/2013 - 10:29:10 ---A- - C:\Windows\Prefetch\MSCORSVW.EXE-C3C515BD.pf
O45 - LFCP:[MD5.2764E85268679B766A23AB341C1D66FA] - 27/10/2013 - 10:29:52 ---A- - C:\Windows\Prefetch\WIRELESSOFFMSG.EXE-286C32A5.pf
O45 - LFCP:[MD5.13F57DDE4564125C6310C4225E390ABA] - 27/10/2013 - 10:30:09 ---A- - C:\Windows\Prefetch\REGSVR32.EXE-8461DBEE.pf
O45 - LFCP:[MD5.E3DC299501C03E45F3A82562BAD3B7DF] - 27/10/2013 - 10:31:23 ---A- - C:\Windows\Prefetch\WMIADAP.EXE-F8DFDFA2.pf
O45 - LFCP:[MD5.244CBB175D20327553D6F53EF614634B] - 27/10/2013 - 10:31:45 ---A- - C:\Windows\Prefetch\MSIEXEC.EXE-A2D55CB6.pf
O45 - LFCP:[MD5.B964AD2CC3634DDD19AA45DBA9FA152D] - 27/10/2013 - 10:32:10 ---A- - C:\Windows\Prefetch\WUAUCLT.EXE-70318591.pf
O45 - LFCP:[MD5.2C8F49076DC6BD2E8E498CE7A27C911C] - 27/10/2013 - 10:34:06 ---A- - C:\Windows\Prefetch\MSIEXEC.EXE-E09A077A.pf
O45 - LFCP:[MD5.79EC3335A6DD101A9C57801F1A9CC47B] - 27/10/2013 - 10:40:21 ---A- - C:\Windows\Prefetch\WERMGR.EXE-0F2AC88C.pf
O45 - LFCP:[MD5.8FAD80B50F032A89E52A9ED7C7D93137] - 27/10/2013 - 10:42:54 ---A- - C:\Windows\Prefetch\TRUSTEDINSTALLER.EXE-3CC531E5.pf
O45 - LFCP:[MD5.A87092EFB6D6E2BA77792E213F360C74] - 27/10/2013 - 10:46:41 ---A- - C:\Windows\Prefetch\AVP.EXE-C1DA0998.pf
O45 - LFCP:[MD5.92082A589D3528CAC795C46B11E888FE] - 27/10/2013 - 10:53:28 ---A- - C:\Windows\Prefetch\WMIPRVSE.EXE-1628051C.pf
O45 - LFCP:[MD5.C2851A4EDD6BF361B39F9CA183B68EC4] - 27/10/2013 - 10:54:07 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-3EF8EFAD.pf
O45 - LFCP:[MD5.F1D51BA2D16ABEA4489D2A20C7359D1B] - 27/10/2013 - 10:55:26 ---A- - C:\Windows\Prefetch\AgGlUAD_P_S-1-5-21-2090178948-2039204095-1395690538-1001.db
O45 - LFCP:[MD5.C6C3088EF2D45C68CA1E9B3FF00EFABF] - 27/10/2013 - 10:55:26 ---A- - C:\Windows\Prefetch\AgGlUAD_S-1-5-21-2090178948-2039204095-1395690538-1001.db
O45 - LFCP:[MD5.02CA2851FA54B82636AA027A2B46BD56] - 27/10/2013 - 10:55:56 ---A- - C:\Windows\Prefetch\GAMEFORGELIVE.EXE-C5BB4DCB.pf
O45 - LFCP:[MD5.C4337276F0C58CA04927C798F3666783] - 27/10/2013 - 10:56:06 ---A- - C:\Windows\Prefetch\GFL_CLIENT.EXE-77979CD5.pf
O45 - LFCP:[MD5.F8E445F8B6E4FF0C19099E3C6C95F831] - 27/10/2013 - 11:00:25 ---A- - C:\Windows\Prefetch\DVDDECRYPTER.EXE-92BA4471.pf
O45 - LFCP:[MD5.D32DDE35072BCA73495C915BDC57D5AD] - 27/10/2013 - 11:01:07 ---A- - C:\Windows\Prefetch\SEARCHINDEXER.EXE-4A6353B9.pf
O45 - LFCP:[MD5.74E4654B45B8305F30D7147E59B1527A] - 27/10/2013 - 11:07:19 ---A- - C:\Windows\Prefetch\MPCMDRUN.EXE-F401FBB4.pf
O45 - LFCP:[MD5.4B1F20C15493C294D8BA3F1D26760E53] - 27/10/2013 - 11:26:17 ---A- - C:\Windows\Prefetch\AUDIODG.EXE-BDFD3029.pf
O45 - LFCP:[MD5.A20E34D5660ADD58BA54E3BEF3C43A07] - 27/10/2013 - 11:28:25 ---A- - C:\Windows\Prefetch\PLUS-HD-1.6-CHROMEINSTALLER.E-FCFAA71C.pf =>Adware.PlusHD
O45 - LFCP:[MD5.74E13071602C1392866FE402E2E1C921] - 27/10/2013 - 11:28:33 ---A- - C:\Windows\Prefetch\PLUS-HD-1.6-FIREFOXINSTALLER.-235E0EC5.pf =>Adware.PlusHD
O45 - LFCP:[MD5.75395B9E8F638F4DE057F815CAD04B95] - 27/10/2013 - 11:29:03 ---A- - C:\Windows\Prefetch\PLUS-HD-1.6-CODEDOWNLOADER.EX-80E855FA.pf =>Adware.PlusHD
O45 - LFCP:[MD5.0F002D531696A7CBC74EE8ED581A4C9D] - 27/10/2013 - 11:29:03 ---A- - C:\Windows\Prefetch\PLUS-HD-1.6-ENABLER.EXE-5F25D7DD.pf =>Adware.PlusHD
O45 - LFCP:[MD5.6B829AC4F84265F91FEC49782E4FE7DF] - 27/10/2013 - 11:29:04 ---A- - C:\Windows\Prefetch\PLUS-HD-1.6-UPDATER.EXE-61E07451.pf =>Adware.PlusHD
O45 - LFCP:[MD5.2EFDD47F7C8D7139FFD68A8522BA91F0] - 27/10/2013 - 11:36:26 ---A- - C:\Windows\Prefetch\FST_FR_6.EXE-7E7E7E4B.pf =>PUA.FSTfr9
O45 - LFCP:[MD5.9AE9E9AF9CDDF60B9773718BDDC353B8] - 27/10/2013 - 11:41:20 ---A- - C:\Windows\Prefetch\UPFST_FR_6.EXE-F922E41A.pf =>PUA.FSTfr9
O45 - LFCP:[MD5.CB993B38D3CDA1C46D09E8FA7FEC4F3E] - 27/10/2013 - 11:54:33 ---A- - C:\Windows\Prefetch\FACEBOOKUPDATE.EXE-F8483465.pf
O45 - LFCP:[MD5.F5CEE3D51863A79A8FDB2EF84AFB0CF9] - 27/10/2013 - 11:55:22 ---A- - C:\Windows\Prefetch\REGSVR32.EXE-D5170E12.pf
O45 - LFCP:[MD5.77A6E69C39ED6B6938ED3EF16AFA25DF] - 27/10/2013 - 12:00:52 ---A- - C:\Windows\Prefetch\SVCHOST.EXE-7CFEDEA3.pf
O45 - LFCP:[MD5.CA20EE415FB4473D99234C842E39CFF5] - 27/10/2013 - 12:00:52 ---A- - C:\Windows\Prefetch\VSSVC.EXE-B8AFC319.pf
O45 - LFCP:[MD5.2ED92232B8A3012CD928AF73F178F9E5] - 27/10/2013 - 12:01:55 ---A- - C:\Windows\Prefetch\PLUGIN-CONTAINER.EXE-F1B02F03.pf
O45 - LFCP:[MD5.1BC6B66513AAEECEB1CFBFCD72805E3A] - 27/10/2013 - 12:01:56 ---A- - C:\Windows\Prefetch\FLASHPLAYERPLUGIN_11_9_900_11-DB8AE4E9.pf
O45 - LFCP:[MD5.90D68E54BCFED376431513C529EDB3BB] - 27/10/2013 - 12:05:20 ---A- - C:\Windows\Prefetch\TASKKILL.EXE-E0105477.pf
O45 - LFCP:[MD5.140599C6343023F34DF44B535728C221] - 27/10/2013 - 12:07:43 ---A- - C:\Windows\Prefetch\AgGlGlobalHistory.db
O45 - LFCP:[MD5.08A154B6151780DCECA62DDA05B5EFF0] - 27/10/2013 - 12:07:43 ---A- - C:\Windows\Prefetch\AgRobust.db
O45 - LFCP:[MD5.CC9861BAD3A5311F9B41BE93603FD69D] - 27/10/2013 - 12:07:44 ---A- - C:\Windows\Prefetch\AgGlFaultHistory.db
O45 - LFCP:[MD5.1221DFB694D6182BE917D413A851FEE5] - 27/10/2013 - 12:07:44 ---A- - C:\Windows\Prefetch\AgGlFgAppHistory.db
O45 - LFCP:[MD5.BAEB8A07A64EF2B59E9BCBB4C8834170] - 27/10/2013 - 12:12:39 ---A- - C:\Windows\Prefetch\SEARCHPROTOCOLHOST.EXE-0CB8CADE.pf
O45 - LFCP:[MD5.D6007F800560FF854ED65138DD92CB76] - 27/10/2013 - 12:12:40 ---A- - C:\Windows\Prefetch\SEARCHFILTERHOST.EXE-77482212.pf
O45 - LFCP:[MD5.E21C425254DAB067477C0CBDE1668C0A] - 27/10/2013 - 12:13:53 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-5E46FA0D.pf
O45 - LFCP:[MD5.3FCF94890C2EC5BACFBA103730A83E09] - 27/10/2013 - 12:14:00 ---A- - C:\Windows\Prefetch\FLASHPLAYERUPDATESERVICE.EXE-216D9C35.pf
O45 - LFCP:[MD5.5E6D36B7AB5F7B999A18C97F591E0672] - 27/10/2013 - 12:14:10 ---A- - C:\Windows\Prefetch\TASKENG.EXE-48D4E289.pf
O45 - LFCP:[MD5.50252CA1A04ACD3E61CDD9339EF493FF] - 27/10/2013 - 12:15:32 ---A- - C:\Windows\Prefetch\SPPSVC.EXE-B0F8131B.pf
O45 - LFCP:[MD5.12B96C8119376B487656355BBAE855A2] - 27/10/2013 - 12:15:57 ---A- - C:\Windows\Prefetch\CONSENT.EXE-531BD9EA.pf
O45 - LFCP:[MD5.CF8E15C8504FB44C0B442A1F28AAA882] - 27/10/2013 - 12:16:02 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-766398D2.pf
O45 - LFCP:[MD5.D10A78947C1934A5057ACD760CF0AFFA] - 27/10/2013 - 12:16:02 ---A- - C:\Windows\Prefetch\SVCHOST.EXE-80F4A784.pf
O45 - LFCP:[MD5.F1342BB8986BAE23E5693AE683E8EB7A] - 27/10/2013 - 12:16:06 ---A- - C:\Windows\Prefetch\IGFXSRVC.EXE-96A493A4.pf
O45 - LFCP:[MD5.F0A80F7534238F3A69381DD5FE0D53E5] - 27/10/2013 - 12:16:15 ---A- - C:\Windows\Prefetch\TASKHOST.EXE-7238F31D.pf
O45 - LFCP:[MD5.AE86814B3FC13A2D276998D3969A2BFF] - 27/10/2013 - 12:17:04 ---A- - C:\Windows\Prefetch\FIREFOX.EXE-18ACFCFF.pf
O45 - LFCP:[MD5.15BD2D387CC2B501533FD0EFD4EA52B6] - 27/10/2013 - 12:17:35 ---A- - C:\Windows\Prefetch\WERFAULT.EXE-37549B7E.pf
O45 - LFCP:[MD5.9817C61B5DD51B8E351B1279008CE543] - 27/10/2013 - 12:18:08 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-A8DE6D5B.pf
O45 - LFCP:[MD5.88C2FB31E2FAFBD56A28D84847317C8A] - 27/10/2013 - 12:18:38 ---A- - C:\Windows\Prefetch\CMD.EXE-AC113AA8.pf
O45 - LFCP:[MD5.4CFBDE29D207A23579E2C2B2A97D3EE8] - 27/10/2013 - 12:18:38 ---A- - C:\Windows\Prefetch\CONHOST.EXE-1F3E9D7E.pf
O45 - LFCP:[MD5.9277BD127A16444F31606A803325B883] - 27/10/2013 - 12:19:00 ---A- - C:\Windows\Prefetch\GOOGLEUPDATE.EXE-B95715F5.pf
O45 - LFCP:[MD5.C85263888AE3C7B16BE4EE4855ABBECF] - 27/10/2013 - 12:20:01 ---A- - C:\Windows\Prefetch\UPDATETASK.EXE-2134F96B.pf
~ Prefetcher: 141 Scanned in 00mn 03s



---\\ D�ni du service (Local Security Authority) (O48)
O48 - LSA:Local Security Authority Authentication Packages . (.Microsoft Corporation - Microsoft Authentication Package�v1.0.) -- C:\Windows\System32\msv1_0.dll
O48 - LSA:Local Security Authority Notification Packages . (.Microsoft Corporation - Moteur du client de l��diteur de configuration de s�curit� Windows.) -- C:\Windows\System32\scecli.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Package de s�curit� Kerberos.) -- C:\Windows\System32\kerberos.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Authentication Package�v1.0.) -- C:\Windows\System32\msv1_0.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - TLS / SSL Security Provider.) -- C:\Windows\System32\schannel.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Digest Access.) -- C:\Windows\System32\wdigest.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Web Service Security Package.) -- C:\Windows\System32\tspkg.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Pku2u Security Package.) -- C:\Windows\System32\pku2u.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corp. - LiveSSP.) -- C:\Windows\System32\livessp.dll
~ LSA: 9 Scanned in 00mn 00s



---\\ Contr�le du Safe Boot (CSB) (O49)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris s�rie.) -- C:\Windows\System32\Drivers\sermouse.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\Windows\System32\Drivers\vga.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vgasave.sys . (...) -- C:\Windows\System32\Drivers\vgasave.sys (.not file.)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\System32\Drivers\volmgr.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgrx.sys . (.Microsoft Corporation - Pilote d�extension du gestionnaire de volumes.) -- C:\Windows\System32\Drivers\volmgrx.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\ipnat.sys . (.Microsoft Corporation - IP Network Address Translator.) -- C:\Windows\System32\Drivers\ipnat.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\nsiproxy.sys . (.Microsoft Corporation - NSI Proxy.) -- C:\Windows\System32\Drivers\nsiproxy.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\rdpencdd.sys . (.Microsoft Corporation - RDP Encoder Miniport.) -- C:\Windows\System32\Drivers\rdpencdd.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris s�rie.) -- C:\Windows\System32\Drivers\sermouse.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\Windows\System32\Drivers\vga.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vgasave.sys . (...) -- C:\Windows\System32\Drivers\vgasave.sys (.not file.)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\System32\Drivers\volmgr.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgrx.sys . (.Microsoft Corporation - Pilote d�extension du gestionnaire de volumes.) -- C:\Windows\System32\Drivers\volmgrx.sys
~ CSB: 13 Scanned in 00mn 00s



---\\ Recherche d'infection sur les pilotes (HKLM)(TDSD) (O52)
O52 - TDSD: \Drivers32\"msacm.l3acm"="C:\Windows\System32\l3codeca.acm" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm
O52 - TDSD: \drivers.desc\"C:\Windows\System32\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm
~ TDSD: 2 Scanned in 00mn 00s



---\\ Enum�ration des cl�s de registre SecurityProviders (MCSP) (O54)
O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\System32\credssp.dll
O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\System32\credssp.dll
~ MSCP: 2 Scanned in 00mn 00s



---\\ Enum�ration des cl�s de registre PoliciesSystem (MWPS) (O55)
O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorAdmin"=5
O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorUser"=3
O55 - MWPS:[HKLM\...\Policies\System] - "EnableInstallerDetection"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableLUA"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableSecureUIAPaths"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0
O55 - MWPS:[HKLM\...\Policies\System] - "EnableVirtualization"=1
O55 - MWPS:[HKLM\...\Policies\System] - "PromptOnSecureDesktop"=1
O55 - MWPS:[HKLM\...\Policies\System] - "ValidateAdminCodeSignatures"=0
O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"=0
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"=0
O55 - MWPS:[HKLM\...\Policies\System] - "scforceoption"=0
O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0
O55 - MWPS:[HKLM\...\Policies\System] - "HideFastUserSwitching"=0
O55 - MWPS:[HKCU\...\Policies\System] - "DisableLockWorkstation"=0
O55 - MWPS:[HKCU\...\Policies\System] - "DisableChangePassword"=0
~ MWPS: 19 Scanned in 00mn 00s



---\\ Enum�ration des cl�s de registre PoliciesExplorer (MWPE) (O56)
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktop"=1
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktopChanges"=1
O56 - MWPE:[HKLM\...\policies\Explorer] - "ForceActiveDesktopOn"=0
O56 - MWPE:[HKLM\...\policies\Explorer] - "EnableShellExecuteHooks"=1
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoDriveTypeAutoRun"=60
~ MWPE Keys: 5 Scanned in 00mn 00s



---\\ Liste des pilotes du syst�me (SDL) (O58)
O58 - SDL:[MD5.899B7E724BF19F17978B6A37B864A277] - 24/09/2012 - 12:40:56 ---A- . (.Hewlett-Packard Company - HP Accelerometer.) -- C:\Windows\System32\Drivers\Accelerometer.sys [43840]
~ Drivers: 19 Scanned in 00mn 00s



---\\ Derniers fichiers modifi�s ou cr�es (Utilisateur) (O61)
O61 - LFC: 24/10/2013 - 12:21:00 ---A- . (...) -- C:\Users\QUENTIN\AppData\Local\Akamai\Logs\daemon.debug.log.131024_083357.sent [388]
O61 - LFC: 24/10/2013 - 12:21:01 ---A- . (...) -- C:\Users\QUENTIN\AppData\Local\Akamai\Logs\debug.log.131024_073139.sent [105]
O61 - LFC: 24/10/2013 - 12:21:01 ---A- . (...) -- C:\Users\QUENTIN\AppData\Local\Akamai\Logs\debug.log.131024_083139.sent [680]
O61 - LFC: 24/10/2013 - 12:21:01 ---A- . (...) -- C:\Users\QUENTIN\AppData\Local\Akamai\Logs\debug.log.131024_083413.sent [1244]
O61 - LFC: 24/10/2013 - 12:21:01 ---A- . (...) -- C:\Users\QUENTIN\AppData\Local\Akamai\Logs\debug.log.131024_093414.sent [558]
O61 - LFC: 24/10/2013 - 12:21:01 ---A- . (...) -- C:\Users\QUENTIN\AppData\Local\Akamai\Logs\debug.log.131024_103414.sent [1253]
O61 - LFC: 24/10/2013 - 12:21:01 ---A- . (...) -- C:\Users\QUENTIN\AppData\Local\Akamai\Logs\debug.log.131024_113414.sent [105]
O61 - LFC: 24/10/2013 - 12:21:01 ---A- . (...) -- C:\Users\QUENTIN\AppData\Local\Akamai\Logs\debug.log.131024_123415.sent [680]
O61 - LFC: 24/10/2013 - 12:21:01 ---A- . (...) -- C:\Users\QUENTIN\AppData\Local\Akamai\Logs\debug.log.131024_133415.sent [680]
O61 - LFC: 24/10/2013 - 12:21:01 ---A- . (...) -- C:\Users\QUENTIN\AppData\Local\Akamai\Logs\debug.log.131024_143416.sent [680]
O61 - LFC: 24/10/2013 - 12:21:01 ---A- . (...) -- C:\Users\QUENTIN\AppData\Local\Akamai\Logs\debug.log.131024_153416.sent [679]
O61 - LFC: 24/10/2013 - 12:21:01 ---A- . (...) -- C:\Users\QUENTIN\AppData\Local\Akamai\Logs\debug.log.131024_170116.sent [1052]
O61 - LFC: 24/10/2013 - 12:21:01 ---A- . (...) -- C:\Users\QUENTIN\AppData\Local\Akamai\Logs\debug.log.131024_180117.sent [830]
O61 - LFC: 24/10/2013 - 12:21:01 ---A- . (...) -- C:\Users\QUENTIN\AppData\Local\Akamai\Logs\debug.log.131024_190117.sent [680]
O61 - LFC: 24/10/2013 - 12:21:01 ---A- . (...) -- C:\Users\QUENTIN\AppData\Local\Akamai\Logs\debug.log.131024_200117.sent [1255]
O61 - LFC: 24/10/2013 - 12:21:01 ---A- . (...) -- C:\Users\QUENTIN\AppData\Local\Akamai\Logs\debug.log.131024_210118.sent [680]
O61 - LFC: 24/10/2013 - 12:21:01 ---A- . (...) -- C:\Users\QUENTIN\AppData\Local\Akamai\Logs\debug.log.131024_220119.sent [680]
O61 - LFC: 24/10/2013 - 12:22:34 ---A- . (...) -- C:\Users\QUENTIN\Downloads\Musiques et Films\Musiques\Ben l'oncle Soul\Ben LOncle Soul - Soulman.mp3 [3565810]
O61 - LFC: 24/10/2013 - 12:22:35 ---A- . (...) -- C:\Users\QUENTIN\Downloads\Musiques et Films\Musiques\Musiques divers\divers musiques\(emile et images) - m�gamix - copie.mp3 [4622151]
O61 - LFC: 24/10/2013 - 12:22:35 ---A- . (...) -- C:\Users\QUENTIN\Downloads\Musiques et Films\Musiques\Musiques divers\divers musiques\(images et emile) - maitresse.mp3 [3609243]
O61 - LFC: 24/10/2013 - 12:22:35 ---A- . (...) -- C:\Users\QUENTIN\Downloads\Musiques et Films\Musiques\Musiques divers\divers musiques\-les jumo selesao.mp3 [3459524]
O61 - LFC: 24/10/2013 - 12:22:35 ---A- . (...) -- C:\Users\QUENTIN\Downloads\Musiques et Films\Musiques\Musiques divers\divers musiques\01-gregoire-ta_main.mp3 [5380113]
O61 - LFC: 24/10/2013 - 12:22:35 ---A- . (...) -- C:\Users\QUENTIN\Downloads\Musiques et Films\Musiques\Musiques divers\divers musiques\17 Cortes Lena - Que calor.mp3 [8187864]
O61 - LFC: 24/10/2013 - 12:22:35 ---A- . (...) -- C:\Users\QUENTIN\Downloads\Musiques et Films\Musiques\Musiques divers\divers musiques\17 Piste 17 (8).wma [4204182]
O61 - LFC: 24/10/2013 - 12:22:36 ---A- . (...) -- C:\Users\QUENTIN\Downloads\Musiques et Films\Musiques\Musiques divers\divers musiques\20 Piste 20 (5).wma [2847630]
O61 - LFC: 24/10/2013 - 12:22:36 ---A- . (...) -- C:\Users\QUENTIN\Downloads\Musiques et Films\Musiques\Musiques divers\divers musiques\Avicci-Levels.mp3 [3023707]
O61 - LFC: 24/10/2013 - 12:22:36 ---A- . (...) -- C:\Users\QUENTIN\Downloads\Musiques et Films\Musiques\Musiques divers\divers musiques\Axel F de Crazy Frog.mp3 [3445479]
O61 - LFC: 24/10/2013 - 12:22:36 ---A- . (...) -- C:\Users\QUENTIN\Downloads\Musiques et Films\Musiques\Musiques divers\divers musiques\Don_Omar_amp_Lucenzo-Dj_Daims__new_remix_mix_2012.mp3 [8291350]
O61 - LFC: 24/10/2013 - 12:22:36 ---A- . (...) -- C:\Users\QUENTIN\Downloads\Musiques et Films\Musiques\Musiques divers\divers musiques\ann�e 80 emile et images - capitaine abandonn�.mp3 [3943053]
O61 - LFC: 24/10/2013 - 12:22:36 ---A- . (...) -- C:\Users\QUENTIN\Downloads\Musiques et Films\Musiques\Musiques divers\divers musiques\ann�e 80 gilbert montagne - sous les sunlights des tropiques( remix)(2).mp3 [6074645]
O61 - LFC: 24/10/2013 - 12:22:36 ---A- . (...) -- C:\Users\QUENTIN\Downloads\Musiques et Films\Musiques\Musiques divers\divers musiques\beethoven - fur elise (techno remix).mp3 [3346896]
O61 - LFC: 24/10/2013 - 12:22:36 ---A- . (...) -- C:\Users\QUENTIN\Downloads\Musiques et Films\Musiques\Musiques divers\divers musiques\collectif metisse - laisse tomber tes problemes (3).mp3 [3439061]
O61 - LFC: 24/10/2013 - 12:22:36 ---A- . (...) -- C:\Users\QUENTIN\Downloads\Musiques et Films\Musiques\Musiques divers\divers musiques\dany boon - biloute fier d'�tre chti (2).mp3 [3505885]
O61 - LFC: 24/10/2013 - 12:22:36 ---A- . (...) -- C:\Users\QUENTIN\Downloads\Musiques et Films\Musiques\Musiques divers\divers musiques\emile et images - les d�mons de minuit.mp3 [3645935]
O61 - LFC: 24/10/2013 - 12:22:36 ---A- . (...) -- C:\Users\QUENTIN\Downloads\Musiques et Films\Musiques\Musiques divers\divers musiques\emile et images - nuit de folie.mp3 [2857194]
O61 - LFC: 24/10/2013 - 12:22:37 ---A- . (...) -- C:\Users\QUENTIN\Downloads\Musiques et Films\Musiques\Musiques divers\MC SOLAAR Hasta La Vista.mp3 [4833550]
O61 - LFC: 24/10/2013 - 12:22:37 ---A- . (...) -- C:\Users\QUENTIN\Downloads\Musiques et Films\Musiques\Musiques divers\Plaisirs Charnels.mp3 [3183102]
O61 - LFC: 24/10/2013 - 12:22:37 ---A- . (...) -- C:\Users\QUENTIN\Downloads\Musiques et Films\Musiques\Musiques divers\divers musiques\Jack_Holliday__amp__Mike_Candis-The_Riddle_Anthem___Sparksel_version__.mp3 [10362488]
O61 - LFC: 24/10/2013 - 12:22:37 ---A- . (...) -- C:\Users\QUENTIN\Downloads\Musiques et Films\Musiques\Musiques divers\divers musiques\Jessy Matador feat. Romain - MORENA.mp3 [3360732]
O61 - LFC: 24/10/2013 - 12:22:37 ---A- . (...) -- C:\Users\QUENTIN\Downloads\Musiques et Films\Musiques\Musiques divers\divers musiques\Keen'v-Petite Emilie.mp3 [3382884]
O61 - LFC: 24/10/2013 - 12:22:37 ---A- . (...) -- C:\Users\QUENTIN\Downloads\Musiques et Films\Musiques\Musiques divers\divers musiques\Les Jumo Ft Mohambi-82984.mp3 [2931404]
O61 - LFC: 24/10/2013 - 12:22:37 ---A- . (...) -- C:\Users\QUENTIN\Downloads\Musiques et Films\Musiques\Musiques divers\divers musiques\Lucenzo-Baila_Moreno.mp3 [5682254]
O61 - LFC: 24/10/2013 - 12:22:37 ---A- . (...) -- C:\Users\QUENTIN\Downloads\Musiques et Films\Musiques\Musiques divers\divers musiques\On est l n - M. Pokora.mp3 [5931863]
O61 - LFC: 24/10/2013 - 12:22:37 ---A- . (...) -- C:\Users\QUENTIN\Downloads\Musiques et Films\Musiques\Musiques divers\divers musiques\keen'v - les mots.mp3 [3176563]
O61 - LFC: 24/10/2013 - 12:22:37 ---A- . (...) -- C:\Users\QUENTIN\Downloads\Musiques et Films\Musiques\Musiques divers\divers musiques\sting & the police - the very best of sting & the police - 13 - russians.mp3 [4685852]
O61 - LFC: 24/10/2013 - 12:22:38 ---A- . (...) -- C:\Users\QUENTIN\Downloads\Musiques et Films\Musiques\Musiques divers\Sniper - Graver dans la roche.mp3 [3471038]
O61 - LFC: 24/10/2013 - 12:22:38 ---A- . (...) -- C:\Users\QUENTIN\Downloads\Musiques et Films\Musiques\Musiques divers\sultan - mec a meuf.mp3 [10036288]
O61 - LFC: 24/10/2013 - 12:22:38 ---A- . (...) -- C:\Users\QUENTIN\Downloads\Musiques et Films\Musiques\Paris-Buenos Aires\02 Cielo Ciego.mp3 [3019807]
O61 - LFC: 25/10/2013 - 12:21:01 ---A- . (...) -- C:\Users\QUENTIN\AppData\Local\Akamai\Logs\debug.log.131025_082422.sent [593]
O61 - LFC: 25/10/2013 - 12:21:01 ---A- . (...) -- C:\Users\QUENTIN\AppData\Local\Akamai\Logs\debug.log.131025_092423.sent [3804]
O61 - LFC: 25/10/2013 - 12:21:01 ---A- . (...) -- C:\Users\QUENTIN\AppData\Local\Akamai\Logs\debug.log.131025_102424.sent [2745]
O61 - LFC: 25/10/2013 - 12:21:01 ---A- . (...) -- C:\Users\QUENTIN\AppData\Local\Akamai\Logs\debug.log.131025_112424.sent [682]
O61 - LFC: 25/10/2013 - 12:21:01 ---A- . (...) -- C:\Users\QUENTIN\AppData\Local\Akamai\Logs\debug.log.131025_122425.sent [682]
O61 - LFC: 25/10/2013 - 12:21:01 ---A- . (...) -- C:\Users\QUENTIN\AppData\Local\Akamai\Logs\debug.log.131025_132425.sent [680]
O61 - LFC: 25/10/2013 - 12:21:01 ---A- . (...) -- C:\Users\QUENTIN\AppData\Local\Akamai\Logs\debug.log.131025_142426.sent [1582]
O61 - LFC: 25/10/2013 - 12:21:01 ---A- . (...) -- C:\Users\QUENTIN\AppData\Local\Akamai\Logs\debug.log.131025_152427.sent [1582]
O61 - LFC: 25/10/2013 - 12:21:01 ---A- . (...) -- C:\Users\QUENTIN\AppData\Local\Akamai\Logs\debug.log.131025_162428.sent [681]
O61 - LFC: 25/10/2013 - 12:21:01 ---A- . (...) -- C:\Users\QUENTIN\AppData\Local\Akamai\Logs\debug.log.131025_172428.sent [680]
O61 - LFC: 25/10/2013 - 12:21:01 ---A- . (...) -- C:\Users\QUENTIN\AppData\Local\Akamai\Logs\debug.log.131025_182429.sent [680]
O61 - LFC: 25/10/2013 - 12:21:01 ---A- . (...) -- C:\Users\QUENTIN\AppData\Local\Akamai\Logs\debug.log.131025_192429.sent [1196]
O61 - LFC: 25/10/2013 - 12:21:01 ---A- . (...) -- C:\Users\QUENTIN\AppData\Local\Akamai\Logs\debug.log.131025_202429.sent [682]
O61 - LFC: 25/10/2013 - 12:21:01 ---A- . (...) -- C:\Users\QUENTIN\AppData\Local\Akamai\Logs\debug.log.131025_212430.sent [679]
O61 - LFC: 25/10/2013 - 12:21:01 ---A- . (...) -- C:\Users\QUENTIN\AppData\Local\Akamai\Logs\debug.log.131025_222431.sent [680]
O61 - LFC: 25/10/2013 - 12:21:01 ---A- . (...) -- C:\Users\QUENTIN\AppData\Local\Akamai\Logs\debug.log.131026_100726.sent [105]
O61 - LFC: 25/10/2013 - 12:21:12 ---A- . (...) -- C:\Users\QUENTIN\AppData\Local\Google\Chrome\User Data\Default\Extensions\jidjhchcblhlapbcpheibgdjkajekhbh\1.25.86_0\background.html [1567]
O61 - LFC: 25/10/2013 - 12:21:12 ---A- . (...) -- C:\Users\QUENTIN\AppData\Local\Google\Chrome\User Data\Default\Extensions\jidjhchcblhlapbcpheibgdjkajekhbh\1.25.86_0\crossriderManifest.json [739] =>PUP.CrossRider
O61 - LFC: 25/10/2013 - 12:21:12 ---A- . (...) -- C:\Users\QUENTIN\AppData\Local\Google\Chrome\User Data\Default\Extensions\jidjhchcblhlapbcpheibgdjkajekhbh\1.25.86_0\extensionData\manifest.xml [1728]
O61 - LFC: 25/10/2013 - 12:21:12 ---A- . (...) -- C:\Users\QUENTIN\AppData\Local\Google\Chrome\User Data\Default\Extensions\jidjhchcblhlapbcpheibgdjkajekhbh\1.25.86_0\extensionData\plugins\101_cortica_m.js [751]
O61 - LFC: 25/10/2013 - 12:21:12 ---A- . (...) -- C:\Users\QUENTIN\AppData\Local\Google\Chrome\User Data\Default\Extensions\jidjhchcblhlapbcpheibgdjkajekhbh\1.25.86_0\extensionData\plugins\102_dealply_m.js [1768] =>PUP.DealPly
O61 - LFC: 25/10/2013 - 12:21:12 ---A- . (...) -- C:\Users\QUENTIN\AppData\Local\Google\Chrome\User Data\Default\Extensions\jidjhchcblhlapbcpheibgdjkajekhbh\1.25.86_0\extensionData\plugins\103_intext_5_m.js [3057]
O61 - LFC: 25/10/2013 - 12:21:12 ---A- . (...) -- C:\Users\QUENTIN\AppData\Local\Google\Chrome\User Data\Default\Extensions\jidjhchcblhlapbcpheibgdjkajekhbh\1.25.86_0\extensionData\plugins\104_jollywallet_m.js [165884]
O61 - LFC: 25/10/2013 - 12:21:12 ---A- . (...) -- C:\Users\QUENTIN\AppData\Local\Google\Chrome\User Data\Default\Extensions\jidjhchcblhlapbcpheibgdjkajekhbh\1.25.86_0\extensionData\plugins\105_corticas_m.js [640]
O61 - LFC: 25/10/2013 - 12:21:12 ---A- . (...) -- C:\Users\QUENTIN\AppData\Local\Google\Chrome\User Data\Default\Extensions\jidjhchcblhlapbcpheibgdjkajekhbh\1.25.86_0\extensionData\plugins\107_coupish_m.js [2325]
O61 - LFC: 25/10/2013 - 12:21:12 ---A- . (...) -- C:\Users\QUENTIN\AppData\Local\Google\Chrome\User Data\Default\Extensions\jidjhchcblhlapbcpheibgdjkajekhbh\1.25.86_0\extensionData\plugins\108_icm_m.js [4272]
O61 - LFC: 25/10/2013 - 12:21:12 ---A- . (...) -- C:\Users\QUENTIN\AppData\Local\Google\Chrome\User Data\Default\Extensions\jidjhchcblhlapbcpheibgdjkajekhbh\1.25.86_0\extensionData\plugins\116_ads_only_5_m.js [2952]
O61 - LFC: 25/10/2013 - 12:21:12 ---A- . (...) -- C:\Users\QUENTIN\AppData\Local\Google\Chrome\User Data\Default\Extensions\jidjhchcblhlapbcpheibgdjkajekhbh\1.25.86_0\extensionData\plugins\117_coupons_intext_ads_5_m.js [3180]
O61 - LFC: 25/10/2013 - 12:21:12 ---A- . (...) -- C:\Users\QUENTIN\AppData\Local\Google\Chrome\User Data\Default\Extensions\jidjhchcblhlapbcpheibgdjkajekhbh\1.25.86_0\extensionData\plugins\119_similar_web_m.js [5235]
O61 - LFC: 25/10/2013 - 12:21:12 ---A- . (...) -- C:\Users\QUENTIN\AppData\Local\Google\Chrome\User Data\Default\Extensions\jidjhchcblhlapbcpheibgdjkajekhbh\1.25.86_0\extensionData\plugins\120_luck_m.js [1247]
O61 - LFC: 25/10/2013 - 12:21:12 ---A- . (...) -- C:\Users\QUENTIN\AppData\Local\Google\Chrome\User Data\Default\Extensions\jidjhchcblhlapbcpheibgdjkajekhbh\1.25.86_0\extensionData\plugins\123_intext_adv_m.js [916]
O61 - LFC: 25/10/2013 - 12:21:12 ---A- . (...) -- C:\Users\QUENTIN\AppData\Local\Google\Chrome\User Data\Default\Extensions\jidjhchcblhlapbcpheibgdjkajekhbh\1.25.86_0\extensionData\plugins\124_superfish_no_search_no_coupons_m.js [798]
O61 - LFC: 25/10/2013 - 12:21:12 ---A- . (...) -- C:\Users\QUENTIN\AppData\Local\Google\Chrome\User Data\Default\Extensions\jidjhchcblhlapbcpheibgdjkajekhbh\1.25.86_0\extensionData\plugins\125_arcadi2_m.js [930]
O61 - LFC: 25/10/2013 - 12:21:12 ---A- . (...) -- C:\Users\QUENTIN\AppData\Local\Google\Chrome\User Data\Default\Extensions\jidjhchcblhlapbcpheibgdjkajekhbh\1.25.86_0\extensionData\plugins\126_revizer_ws_m.js [1209]
O61 - LFC: 25/10/2013 - 12:21:12 ---A- . (...) -- C:\Users\QUENTIN\AppData\Local\Google\Chrome\User Data\Default\Extensions\jidjhchcblhlapbcpheibgdjkajekhbh\1.25.86_0\extensionData\plugins\127_revizer_p_m.js [1187]
O61 - LFC: 25/10/2013 - 12:21:12 ---A- . (...) -- C:\Users\QUENTIN\AppData\Local\Google\Chrome\User Data\Default\Extensions\jidjhchcblhlapbcpheibgdjkajekhbh\1.25.86_0\extensionData\plugins\128_superfish_pricora_m.js [771] =>Adware.Pricora
O61 - LFC: 25/10/2013 - 12:21:12 ---A- . (...) -- C:\Users\QUENTIN\AppData\Local\Google\Chrome\User Data\Default\Extensions\jidjhchcblhlapbcpheibgdjkajekhbh\1.25.86_0\extensionData\plugins\129_widdit_m.js [593]
O61 - LFC: 25/10/2013 - 12:21:12 ---A- . (...) -- C:\Users\QUENTIN\AppData\Local\Google\Chrome\User Data\Default\Extensions\jidjhchcblhlapbcpheibgdjkajekhbh\1.25.86_0\extensionData\plugins\135_arcadi3_m.js [930]
O61 - LFC: 25/10/2013 - 12:21:12 ---A- . (...) -- C:\Users\QUENTIN\AppData\Local\Google\Chrome\User Data\Default\Extensions\jidjhchcblhlapbcpheibgdjkajekhbh\1.25.86_0\extensionData\plugins\138_getdeal_m.js [1424]
O61 - LFC: 25/10/2013 - 12:21:12 ---A- . (...) -- C:\Users\QUENTIN\AppData\Local\Google\Chrome\User Data\Default\Extensions\jidjhchcblhlapbcpheibgdjkajekhbh\1.25.86_0\extensionData\plugins\13_CrossriderAppUtils.js [6034] =>PUP.CrossRider
O61 - LFC: 25/10/2013 - 12:21:12 ---A- . (...) -- C:\Users\QUENTIN\AppData\Local\Google\Chrome\User Data\Default\Extensions\jidjhchcblhlapbcpheibgdjkajekhbh\1.25.86_0\extensionData\plugins\141_corticas_ru_m.js.js [720]
O61 - LFC: 25/10/2013 - 12:21:12 ---A- . (...) -- C:\Users\QUENTIN\AppData\Local\Google\Chrome\User Data\Default\Extensions\jidjhchcblhlapbcpheibgdjkajekhbh\1.25.86_0\extensionData\plugins\142_intext_fa_m.js [819]
O61 - LFC: 25/10/2013 - 12:21:12 ---A- . (...) -- C:\Users\QUENTIN\AppData\Local\Google\Chrome\User Data\Default\Extensions\jidjhchcblhlapbcpheibgdjkajekhbh\1.25.86_0\extensionData\plugins\14_CrossriderUtils.js [12369] =>PUP.CrossRider
O61 - LFC: 25/10/2013 - 12:21:12 ---A- . (...) -- C:\Users\QUENTIN\AppData\Local\Google\Chrome\User Data\Default\Extensions\jidjhchcblhlapbcpheibgdjkajekhbh\1.25.86_0\extensionData\plugins\155_ibario_pops_m.js [743]
O61 - LFC: 25/10/2013 - 12:21:12 ---A- . (...) -- C:\Users\QUENTIN\AppData\Local\Google\Chrome\User Data\Default\Extensions\jidjhchcblhlapbcpheibgdjkajekhbh\1.25.86_0\extensionData\plugins\158_50onred_ads_only_no_fb_m.js [3045]
O61 - LFC: 25/10/2013 - 12:21:12 ---A- . (...) -- C:\Users\QUENTIN\AppData\Local\Google\Chrome\User Data\Default\Extensions\jidjhchcblhlapbcpheibgdjkajekhbh\1.25.86_0\extensionData\plugins\159_cortica_rollover_m.js [783]
O61 - LFC: 25/10/2013 - 12:21:12 ---A- . (...) -- C:\Users\QUENTIN\AppData\Local\Google\Chrome\User Data\Default\Extensions\jidjhchcblhlapbcpheibgdjkajekhbh\1.25.86_0\extensionData\plugins\170_icm1_5_m.js [6468]
O61 - LFC: 25/10/2013 - 12:21:12 ---A- . (...) -- C:\Users\QUENTIN\AppData\Local\Google\Chrome\User Data\Default\Extensions\jidjhchcblhlapbcpheibgdjkajekhbh\1.25.86_0\extensionData\plugins\171_arcadi2_sourceID_m.js [1005]
O61 - LFC: 25/10/2013 - 12:21:12 ---A- . (...) -- C:\Users\QUENTIN\AppData\Local\Google\Chrome\User Data\Default\Extensions\jidjhchcblhlapbcpheibgdjkajekhbh\1.25.86_0\extensionData\plugins\174_arcadi_serp_dynamic_id_m.js [989]
O61 - LFC: 25/10/2013 - 12:21:12 ---A- . (...) -- C:\Users\QUENTIN\AppData\Local\Google\Chrome\User Data\Default\Extensions\jidjhchcblhlapbcpheibgdjkajekhbh\1.25.86_0\extensionData\plugins\17_jQuery.js [79982]
O61 - LFC: 25/10/2013 - 12:21:12 ---A- . (...) -- C:\Users\QUENTIN\AppData\Local\Google\Chrome\User Data\Default\Extensions\jidjhchcblhlapbcpheibgdjkajekhbh\1.25.86_0\extensionData\plugins\19_CHAppAPIWrapper.js [6327]
O61 - LFC: 25/10/2013 - 12:21:13 ---A- . (...) -- C:\Users\QUENTIN\AppData\Local\Google\Chrome\User Data\Default\Extensions\jidjhchcblhlapbcpheibgdjkajekhbh\1.25.86_0\extensionData\plugins.json [12331]
O61 - LFC: 25/10/2013 - 12:21:13 ---A- . (...) -- C:\Users\QUENTIN\AppData\Local\Google\Chrome\User Data\Default\Extensions\jidjhchcblhlapbcpheibgdjkajekhbh\1.25.86_0\extensionData\plugins\1_base.js [6908]
O61 - LFC: 25/10/2013 - 12:21:13 ---A- . (...) -- C:\Users\QUENTIN\AppData\Local\Google\Chrome\User Data\Default\Extensions\jidjhchcblhlapbcpheibgdjkajekhbh\1.25.86_0\extensionData\plugins\21_debug.js [3676]
O61 - LFC: 25/10/2013 - 12:21:13 ---A- . (...) -- C:\Users\QUENTIN\AppData\Local\Google\Chrome\User Data\Default\Extensions\jidjhchcblhlapbcpheibgdjkajekhbh\1.25.86_0\extensionData\plugins\22_resources.js [9082]
O61 - LFC: 25/10/2013 - 12:21:13 ---A- . (...) -- C:\Users\QUENTIN\AppData\Local\Google\Chrome\User Data\Default\Extensions\jidjhchcblhlapbcpheibgdjkajekhbh\1.25.86_0\extensionData\plugins\28_initializer.js [664]
O61 - LFC: 25/10/2013 - 12:21:13 ---A- . (...) -- C:\Users\QUENTIN\AppData\Local\Google\Chrome\User Data\Default\Extensions\jidjhchcblhlapbcpheibgdjkajekhbh\1.25.86_0\extensionData\plugins\47_resources_background.js [7720]
O61 - LFC: 25/10/2013 - 12:21:13 ---A- . (...) -- C:\Users\QUENTIN\AppData\Local\Google\Chrome\User Data\Default\Extensions\jidjhchcblhlapbcpheibgdjkajekhbh\1.25.86_0\extensionData\plugins\4_jquery_1_7_1.js [94180]
O61 - LFC: 25/10/2013 - 12:21:13 ---A- . (...) -- C:\Users\QUENTIN\AppData\Local\Google\Chrome\User Data\Default\Extensions\jidjhchcblhlapbcpheibgdjkajekhbh\1.25.86_0\extensionData\plugins\64_appApiMessage.js [2332]
O61 - LFC: 25/10/2013 - 12:21:13 ---A- . (...) -- C:\Users\QUENTIN\AppData\Local\Google\Chrome\User Data\Default\Extensions\jidjhchcblhlapbcpheibgdjkajekhbh\1.25.86_0\extensionData\plugins\72_appApiValidation.js [23223]
O61 - LFC: 25/10/2013 - 12:21:13 ---A- . (...) -- C:\Users\QUENTIN\AppData\Local\Google\Chrome\User Data\Default\Extensions\jidjhchcblhlapbcpheibgdjkajekhbh\1.25.86_0\extensionData\plugins\78_CrossriderInfo.js [2220] =>PUP.CrossRider
O61 - LFC: 25/10/2013 - 12:21:13 ---A- . (...) -- C:\Users\QUENTIN\AppData\Local\Google\Chrome\User Data\Default\Extensions\jidjhchcblhlapbcpheibgdjkajekhbh\1.25.86_0\extensionData\plugins\7_hooks.js [801]
O61 - LFC: 25/10/2013 - 12:21:13 ---A- . (...) -- C:\Users\QUENTIN\AppData\Local\Google\Chrome\User Data\Default\Extensions\jidjhchcblhlapbcpheibgdjkajekhbh\1.25.86_0\extensionData\plugins\80_CHPopupAppAPI.js [194]
O61 - LFC: 25/10/2013 - 12:21:13 ---A- . (...) -- C:\Users\QUENTIN\AppData\Local\Google\Chrome\User Data\Default\Extensions\jidjhchcblhlapbcpheibgdjkajekhbh\1.25.86_0\extensionData\plugins\87_ginyas_wrapper.js [20377]
O61 - LFC: 25/10/2013 - 12:21:13 ---A- . (...) -- C:\Users\QUENTIN\AppData\Local\Google\Chrome\User Data\Default\Extensions\jidjhchcblhlapbcpheibgdjkajekhbh\1.25.86_0\extensionData\plugins\91_monetizationLoader.js.js [141597]
O61 - LFC: 25/10/2013 - 12:21:13 ---A- . (...) -- C:\Users\QUENTIN\AppData\Local\Google\Chrome\User Data\Default\Extensions\jidjhchcblhlapbcpheibgdjkajekhbh\1.25.86_0\extensionData\plugins\92_superfish_m.js [695]
O61 - LFC: 25/10/2013 - 12:21:13 ---A- . (...) -- C:\Users\QUENTIN\AppData\Local\Google\Chrome\User Data\Default\Extensions\jidjhchcblhlapbcpheibgdjkajekhbh\1.25.86_0\extensionData\plugins\93_superfish_no_coupons_m.js [1420]
O61 - LFC: 25/10/2013 - 12:21:13 ---A- . (...) -- C:\Users\QUENTIN\AppData\Local\Google\Chrome\User Data\Default\Extensions\jidjhchcblhlapbcpheibgdjkajekhbh\1.25.86_0\extensionData\plugins\97_resourceApiWrapper.js [3299]
O61 - LFC: 25/10/2013 - 12:21:13 ---A- . (...) -- C:\Users\QUENTIN\AppData\Local\Google\Chrome\User Data\Default\Extensions\jidjhchcblhlapbcpheibgdjkajekhbh\1.25.86_0\extensionData\plugins\9_search_engine_hook.js [2285]
O61 - LFC: 25/10/2013 - 12:21:13 ---A- . (...) -- C:\Users\QUENTIN\AppData\Local\Google\Chrome\User Data\Default\Extensions\jidjhchcblhlapbcpheibgdjkajekhbh\1.25.86_0\extensionData\userCode\background.js [428]
O61 - LFC: 25/10/2013 - 12:21:13 ---A- . (...) -- C:\Users\QUENTIN\AppData\Local\Google\Chrome\User Data\Default\Extensions\jidjhchcblhlapbcpheibgdjkajekhbh\1.25.86_0\extensionData\userCode\extension.js [1949]
O61 - LFC: 25/10/2013 - 12:21:13 ---A- . (...) -- C:\Users\QUENTIN\AppData\Local\Google\Chrome\User Data\Default\Extensions\jidjhchcblhlapbcpheibgdjkajekhbh\1.25.86_0\icons\actions\1.png [1223]
O61 - LFC: 25/10/2013 - 12:21:13 ---A- . (...) -- C:\Users\QUENTIN\AppData\Local\Google\Chrome\User Data\Default\Extensions\jidjhchcblhlapbcpheibgdjkajekhbh\1.25.86_0\icons\icon128.png [3997]
O61 - LFC: 25/10/2013 - 12:21:13 ---A- . (...) -- C:\Users\QUENTIN\AppData\Local\Google\Chrome\User Data\Default\Extensions\jidjhchcblhlapbcpheibgdjkajekhbh\1.25.86_0\icons\icon16.png [827]
O61 - LFC: 25/10/2013 - 12:21:13 ---A- . (...) -- C:\Users\QUENTIN\AppData\Local\Google\Chrome\User Data\Default\Extensions\jidjhchcblhlapbcpheibgdjkajekhbh\1.25.86_0\icons\icon48.png [2266]
O61 - LFC: 25/10/2013 - 12:21:13 ---A- . (...) -- C:\Users\QUENTIN\AppData\Local\Google\Chrome\User Data\Default\Extensions\jidjhchcblhlapbcpheibgdjkajekhbh\1.25.86_0\js\api\chrome.js [11475]
O61 - LFC: 25/10/2013 - 12:21:13 ---A- . (...) -- C:\Users\QUENTIN\AppData\Local\Google\Chrome\User Data\Default\Extensions\jidjhchcblhlapbcpheibgdjkajekhbh\1.25.86_0\js\api\cookie.js [11793]
O61 - LFC: 25/10/2013 - 12:21:13 ---A- . (...) -- C:\Users\QUENTIN\AppData\Local\Google\Chrome\User Data\Default\Extensions\jidjhchcblhlapbcpheibgdjkajekhbh\1.25.86_0\js\api\message.js [3346]
O61 - LFC: 25/10/2013 - 12:21:13 ---A- . (...) -- C:\Users\QUENTIN\AppData\Local\Google\Chrome\User Data\Default\Extensions\jidjhchcblhlapbcpheibgdjkajekhbh\1.25.86_0\js\api\pageAction.js [1737]
O61 - LFC: 25/10/2013 - 12:21:13 ---A- . (...) -- C:\Users\QUENTIN\AppData\Local\Google\Chrome\User Data\Default\Extensions\jidjhchcblhlapbcpheibgdjkajekhbh\1.25.86_0\js\api\pageActionBG.js [2473]
O61 - LFC: 25/10/2013 - 12:21:13 ---A- . (...) -- C:\Users\QUENTIN\AppData\Local\Google\Chrome\User Data\Default\Extensions\jidjhchcblhlapbcpheibgdjkajekhbh\1.25.86_0\js\background.js [28838]
O61 - LFC: 25/10/2013 - 12:21:13 ---A- . (...) -- C:\Users\QUENTIN\AppData\Local\Google\Chrome\User Data\Default\Extensions\jidjhchcblhlapbcpheibgdjkajekhbh\1.25.86_0\js\lib\app_api.js [6376]
O61 - LFC: 25/10/2013 - 12:21:13 ---A- . (...) -- C:\Users\QUENTIN\AppData\Local\Google\Chrome\User Data\Default\Extensions\jidjhchcblhlapbcpheibgdjkajekhbh\1.25.86_0\js\lib\bg_app_api.js [4458]
O61 - LFC: 25/10/2013 - 12:21:13 ---A- . (...) -- C:\Users\QUENTIN\AppData\Local\Google\Chrome\User Data\Default\Extensions\jidjhchcblhlapbcpheibgdjkajekhbh\1.25.86_0\js\lib\consts.js [288]
O61 - LFC: 25/10/2013 - 12:21:13 ---A- . (...) -- C:\Users\QUENTIN\AppData\Local\Google\Chrome\User Data\Default\Extensions\jidjhchcblhlapbcpheibgdjkajekhbh\1.25.86_0\js\lib\cookie_store.js [5905]
O61 - LFC: 25/10/2013 - 12:21:13 ---A- . (...) -- C:\Users\QUENTIN\AppData\Local\Google\Chrome\User Data\Default\Extensions\jidjhchcblhlapbcpheibgdjkajekhbh\1.25.86_0\js\lib\crossriderAPI.js [11366] =>PUP.CrossRider
O61 - LFC: 25/10/2013 - 12:21:13 ---A- . (...) -- C:\Users\QUENTIN\AppData\Local\Google\Chrome\User Data\Default\Extensions\jidjhchcblhlapbcpheibgdjkajekhbh\1.25.86_0\js\lib\delegate.js [2002]
O61 - LFC: 25/10/2013 - 12:21:13 ---A- . (...) -- C:\Users\QUENTIN\AppData\Local\Google\Chrome\User Data\Default\Extensions\jidjhchcblhlapbcpheibgdjkajekhbh\1.25.86_0\js\lib\events.js [5757]
O61 - LFC: 25/10/2013 - 12:21:13 ---A- . (...) -- C:\Users\QUENTIN\AppData\Local\Google\Chrome\User Data\Default\Extensions\jidjhchcblhlapbcpheibgdjkajekhbh\1.25.86_0\js\lib\extensionDataStore.js [5717]
O61 - LFC: 25/10/2013 - 12:21:13 ---A- . (...) -- C:\Users\QUENTIN\AppData\Local\Google\Chrome\User Data\Default\Extensions\jidjhchcblhlapbcpheibgdjkajekhbh\1.25.86_0\js\lib\installer.js [288]
O61 - LFC: 25/10/2013 - 12:21:13 ---A- . (...) -- C:\Users\QUENTIN\AppData\Local\Google\Chrome\User Data\Default\Extensions\jidjhchcblhlapbcpheibgdjkajekhbh\1.25.86_0\js\lib\logFile.js [775]
O61 - LFC: 25/10/2013 - 12:21:13 ---A- . (...) -- C:\Users\QUENTIN\AppData\Local\Google\Chrome\User Data\Default\Extensions\jidjhchcblhlapbcpheibgdjkajekhbh\1.25.86_0\js\lib\logging.js [944]
O61 - LFC: 25/10/2013 - 12:21:13 ---A- . (...) -- C:\Users\QUENTIN\AppData\Local\Google\Chrome\User Data\Default\Extensions\jidjhchcblhlapbcpheibgdjkajekhbh\1.25.86_0\js\lib\onBGDocumentLoad.js [480]
O61 - LFC: 25/10/2013 - 12:21:13 ---A- . (...) -- C:\Users\QUENTIN\AppData\Local\Google\Chrome\User Data\Default\Extensions\jidjhchcblhlapbcpheibgdjkajekhbh\1.25.86_0\js\lib\popupResource\newPopup.js [40]
O61 - LFC: 25/10/2013 - 12:21:13 ---A- . (...) -- C:\Users\QUENTIN\AppData\Local\Google\Chrome\User Data\Default\Extensions\jidjhchcblhlapbcpheibgdjkajekhbh\1.25.86_0\js\lib\popupResource\popup.js [45]
O61 - LFC: 25/10/2013 - 12:21:13 ---A- . (...) -- C:\Users\QUENTIN\AppData\Local\Google\Chrome\User Data\Default\Extensions\jidjhchcblhlapbcpheibgdjkajekhbh\1.25.86_0\js\lib\reports.js [4841]
O61 - LFC: 25/10/2013 - 12:21:13 ---A- . (...) -- C:\Users\QUENTIN\AppData\Local\Google\Chrome\User Data\Default\Extensions\jidjhchcblhlapbcpheibgdjkajekhbh\1.25.86_0\js\lib\storageWrapper.js [491]
O61 - LFC: 25/10/2013 - 12:21:13 ---A- . (...) -- C:\Users\QUENTIN\AppData\Local\Google\Chrome\User Data\Default\Extensions\jidjhchcblhlapbcpheibgdjkajekhbh\1.25.86_0\js\lib\updateManager.js [5665]
O61 - LFC: 25/10/2013 - 12:21:14 ---A- . (...) -- C:\Users\QUENTIN\AppData\Local\Google\Chrome\User Data\Default\Extensions\jidjhchcblhlapbcpheibgdjkajekhbh\1.25.86_0\js\lib\util.js [5142]
O61 - LFC: 25/10/2013 - 12:21:14 ---A- . (...) -- C:\Users\QUENTIN\AppData\Local\Google\Chrome\User Data\Default\Extensions\jidjhchcblhlapbcpheibgdjkajekhbh\1.25.86_0\js\lib\xhr.js [2478]
O61 - LFC: 25/10/2013 - 12:21:14 ---A- . (...) -- C:\Users\QUENTIN\AppData\Local\Google\Chrome\User Data\Default\Extensions\jidjhchcblhlapbcpheibgdjkajekhbh\1.25.86_0\js\main.js [8452]
O61 - LFC: 25/10/2013 - 12:21:14 ---A- . (...) -- C:\Users\QUENTIN\AppData\Local\Google\Chrome\User Data\Default\Extensions\jidjhchcblhlapbcpheibgdjkajekhbh\1.25.86_0\manifest.json [1206]
O61 - LFC: 25/10/2013 - 12:21:14 ---A- . (...) -- C:\Users\QUENTIN\AppData\Local\Google\Chrome\User Data\Default\Extensions\jidjhchcblhlapbcpheibgdjkajekhbh\1.25.86_0\popup.html [139]
O61 - LFC: 25/10/2013 - 12:21:15 ---A- . (...) -- C:\Users\QUENTIN\AppData\Local\Google\Chrome\User Data\Default\Preferences [99712]
O61 - LFC: 25/10/2013 - 12:21:33 ---A- . (...) -- C:\Users\QUENTIN\AppData\Local\Temp\6a0a869a9be677b6f2832895d802a6ad.dll [73]
O61 - LFC: 25/10/2013 - 12:21:41 ---A- . (...) -- C:\Users\QUENTIN\AppData\Local\Temp\instloffer.exe [385477]
O61 - LFC: 25/10/2013 - 12:21:41 ---A- . (.Smbfqmimylfnlh.) -- C:\Users\QUENTIN\AppData\Local\Temp\ins7394\plushd_1410_FR-d36ba45b.exe [5645216]
O61 - LFC: 25/10/2013 - 12:22:14 ---A- . (...) -- C:\Users\QUENTIN\AppData\Local\Temp\supgame_648082\gs_32.sup [821747]
O61 - LFC: 25/10/2013 - 12:22:17 ---A- . (...) -- C:\Users\QUENTIN\AppData\Roaming\Adobe\Acrobat\10.0\JSCache\GlobSettings [24]
O61 - LFC: 25/10/2013 - 12:22:17 ---A- . (...) -- C:\Users\QUENTIN\AppData\Roaming\Adobe\Acrobat\10.0\TMDocs.sav [36]
O61 - LFC: 25/10/2013 - 12:22:17 ---A- . (...) -- C:\Users\QUENTIN\AppData\Roaming\Adobe\Acrobat\10.0\TMGrpPrm.sav [54]
O61 - LFC: 25/10/2013 - 12:22:17 ---A- . (...) -- C:\Users\QUENTIN\AppData\Roaming\Adobe\Acrobat\11.0\JSCache\GlobData [22]
O61 - LFC: 25/10/2013 - 12:22:17 ---A- . (...) -- C:\Users\QUENTIN\AppData\Roaming\Adobe\Acrobat\11.0\JSCache\GlobSettings [24]
O61 - LFC: 25/10/2013 - 12:22:17 ---A- . (...) -- C:\Users\QUENTIN\AppData\Roaming\Adobe\Acrobat\11.0\Security\CRLCache\48B76449F3D5FEFA1133AA805E420F0FCA643651.crl [898]
O61 - LFC: 25/10/2013 - 12:22:17 ---A- . (...) -- C:\Users\QUENTIN\AppData\Roaming\Adobe\Acrobat\11.0\Security\CRLCache\A9B8213768ADC68AF64FCC6409E8BE414726687F.crl [36163]
O61 - LFC: 25/10/2013 - 12:22:17 ---A- . (...) -- C:\Users\QUENTIN\AppData\Roaming\Adobe\Acrobat\11.0\Security\addressbook.acrodata [5399]
O61 - LFC: 25/10/2013 - 12:22:17 ---A- . (...) -- C:\Users\QUENTIN\AppData\Roaming\Adobe\Acrobat\11.0\Security\services_rdr.dat [10240]
O61 - LFC: 25/10/2013 - 12:22:17 ---A- . (...) -- C:\Users\QUENTIN\AppData\Roaming\Adobe\Acrobat\11.0\Security\services_rdri.dat [24152]
O61 - LFC: 25/10/2013 - 12:22:17 ---A- . (...) -- C:\Users\QUENTIN\AppData\Roaming\Adobe\Acrobat\11.0\Security\services_rdrk.dat [264]
O61 - LFC: 25/10/2013 - 12:22:17 ---A- . (...) -- C:\Users\QUENTIN\AppData\Roaming\Adobe\Acrobat\11.0\TMDocs.sav [36]
O61 - LFC: 25/10/2013 - 12:22:17 ---A- . (...) -- C:\Users\QUENTIN\AppData\Roaming\Adobe\Acrobat\11.0\TMGrpPrm.sav [54]
O61 - LFC: 25/10/2013 - 12:22:22 ---A- . (...) -- C:\Users\QUENTIN\AppData\Roaming\Microsoft\Office\Recent\Divers.LNK [1012]
O61 - LFC: 25/10/2013 - 12:22:23 ---A- . (...) -- C:\Users\QUENTIN\AppData\Roaming\Microsoft\Office\Recent\Survie zombi.LNK [1174]
O61 - LFC: 25/10/2013 - 12:22:23 ---A- . (...) -- C:\Users\QUENTIN\AppData\Roaming\Microsoft\UProof\CMAdj.12.bin [464]
O61 - LFC: 25/10/2013 - 12:22:29 ---A- . (...) -- C:\Users\QUENTIN\AppData\Roaming\Skype\diqui_en_tenzec\chatsync\7b\7b63a845c9864924.dat [2228]
O61 - LFC: 25/10/2013 - 12:22:29 ---A- . (...) -- C:\Users\QUENTIN\AppData\Roaming\Skype\diqui_en_tenzec\chatsync\d0\d0666de8ca677a53.dat [29800]
O61 - LFC: 25/10/2013 - 12:22:30 ---A- . (...) -- C:\Users\QUENTIN\AppData\Roaming\Skype\diqui_en_tenzec\chatsync\d4\d4cc690df6e4850c.dat [74822]
O61 - LFC: 25/10/2013 - 12:22:30 ---A- . (...) -- C:\Users\QUENTIN\AppData\Roaming\Skype\diqui_en_tenzec\chatsync\ea\ea3535116e8f1d20.dat [6394]
O61 - LFC: 25/10/2013 - 12:22:31 ---A- . (...) -- C:\Users\QUENTIN\Documents\Divers\Survie zombi.docx [17270]
O61 - LFC: 25/10/2013 - 12:22:32 --HA- . (...) -- C:\Users\QUENTIN\Documents\Dossier scolaire\2013-2014\~$s syndicats en France.docx [162]
O61 - LFC: 25/10/2013 - 12:22:34 ---A- . (.Firseria�s�l�.) -- C:\Users\QUENTIN\Downloads\Adobe%20Reader.exe [169272] =>PUP.Firseria
O61 - LFC: 26/10/2013 - 12:21:00 ---A- . (...) -- C:\Users\QUENTIN\AppData\Local\Akamai\Logs\daemon.debug.log.131026_205538.sent [482]
O61 - LFC: 26/10/2013 - 12:21:01 ---A- . (...) -- C:\Users\QUENTIN\AppData\Local\Akamai\Logs\debug.log.131026_110727.sent [1779]
O61 - LFC: 26/10/2013 - 12:21:01 ---A- . (...) -- C:\Users\QUENTIN\AppData\Local\Akamai\Logs\debug.log.131026_120727.sent [680]
O61 - LFC: 26/10/2013 - 12:21:01 ---A- . (...) -- C:\Users\QUENTIN\AppData\Local\Akamai\Logs\debug.log.131026_130728.sent [682]
O61 - LFC: 26/10/2013 - 12:21:01 ---A- . (...) -- C:\Users\QUENTIN\AppData\Local\Akamai\Logs\debug.log.131026_140729.sent [105]
O61 - LFC: 26/10/2013 - 12:21:01 ---A- . (...) -- C:\Users\QUENTIN\AppData\Local\Akamai\Logs\debug.log.131026_150729.sent [679]
O61 - LFC: 26/10/2013 - 12:21:01 ---A- . (...) -- C:\Users\QUENTIN\AppData\Local\Akamai\Logs\debug.log.131026_160729.sent [680]
O61 - LFC: 26/10/2013 - 12:21:01 ---A- . (...) -- C:\Users\QUENTIN\AppData\Local\Akamai\Logs\debug.log.131026_170730.sent [680]
O61 - LFC: 26/10/2013 - 12:21:01 ---A- . (...) -- C:\Users\QUENTIN\AppData\Local\Akamai\Logs\debug.log.131026_180730.sent [680]
O61 - LFC: 26/10/2013 - 12:21:01 ---A- . (...) -- C:\Users\QUENTIN\AppData\Local\Akamai\Logs\debug.log.131026_190731.sent [1200]
O61 - LFC: 26/10/2013 - 12:21:01 ---A- . (...) -- C:\Users\QUENTIN\AppData\Local\Akamai\Logs\debug.log.131026_203402.sent [680]
O61 - LFC: 26/10/2013 - 12:21:01 ---A- . (...) -- C:\Users\QUENTIN\AppData\Local\Akamai\Logs\debug.log.131026_205537.sent [1883]
O61 - LFC: 26/10/2013 - 12:21:15 --HA- . (...) -- C:\Users\QUENTIN\AppData\Local\IconCache.db [2476991]
O61 - LFC: 26/10/2013 - 12:21:35 ---A- . (...) -- C:\Users\QUENTIN\AppData\Local\Temp\CVR89D6.tmp.cvr [0]
O61 - LFC: 26/10/2013 - 12:21:35 ---A- . (...) -- C:\Users\QUENTIN\AppData\Local\Temp\dummy.htm [0]
O61 - LFC: 26/10/2013 - 12:21:38 ---A- . (...) -- C:\Users\QUENTIN\AppData\Local\Temp\HPSAActionItems.xml [6712]
O61 - LFC: 26/10/2013 - 12:21:58 ---A- . (...) -- C:\Users\QUENTIN\AppData\Local\Temp\nsn407A.tmp\nsURL.dll [111616]
O61 - LFC: 26/10/2013 - 12:21:58 ---A- . (...) -- C:\Users\QUENTIN\AppData\Local\Temp\nsn407A.tmp\tkDecript.dll [227840]
O61 - LFC: 26/10/2013 - 12:21:59 ---A- . (...) -- C:\Users\QUENTIN\AppData\Local\Temp\OKitSpaceSetup.exe [598016] =>PUP.Onekit
O61 - LFC: 26/10/2013 - 12:21:59 ---A- . (...) -- C:\Users\QUENTIN\AppData\Local\Temp\nsn407A.tmp\version.dll [6144]
O61 - LFC: 26/10/2013 - 12:21:59 ---A- . (...) -- C:\Users\QUENTIN\AppData\Local\Temp\nsn40C8.tmp\nsURL.dll [111616]
O61 - LFC: 26/10/2013 - 12:21:59 ---A- . (...) -- C:\Users\QUENTIN\AppData\Local\Temp\nsn40C8.tmp\tkDecript.dll [227840]
O61 - LFC: 26/10/2013 - 12:21:59 ---A- . (...) -- C:\Users\QUENTIN\AppData\Local\Temp\nsn40C8.tmp\version.dll [6144]
O61 - LFC: 26/10/2013 - 12:22:02 ---A- . (...) -- C:\Users\QUENTIN\AppData\Local\Temp\softwareupdater.exe [614400] =>PUP.Eorezo
O61 - LFC: 26/10/2013 - 12:22:15 ---A- . (...) -- C:\Users\QUENTIN\AppData\Local\Temp\wmplog00.sqm [1526]
O61 - LFC: 26/10/2013 - 12:22:17 ---A- . (...) -- C:\Users\QUENTIN\AppData\Roaming\Adobe\Flash Player\AssetCache\PPH9MTVN\3C82B2A2455B252B8595FD0113249AA19D7E8BDD.heu [148]
O61 - LFC: 26/10/2013 - 12:22:17 ---A- . (...) -- C:\Users\QUENTIN\AppData\Roaming\Adobe\Flash Player\AssetCache\PPH9MTVN\8F903698240FE799F61EEDA8595181137B996156.heu [149]
O61 - LFC: 26/10/2013 - 12:22:19 ---A- . (...) -- C:\Users\QUENTIN\AppData\Roaming\BabSolution\Shared\chu.js [2] =>Hijacker.BabSolution
O61 - LFC: 26/10/2013 - 12:22:22 ---A- . (...) -- C:\Users\QUENTIN\AppData\Roaming\Microsoft\Office\Recent\2013-2014.LNK [1182]
O61 - LFC: 26/10/2013 - 12:22:22 ---A- . (...) -- C:\Users\QUENTIN\AppData\Roaming\Microsoft\Office\Recent\Les syndicats en France (2).LNK [1399]
O61 - LFC: 26/10/2013 - 12:22:22 ---A- . (...) -- C:\Users\QUENTIN\AppData\Roaming\Microsoft\Office\Recent\Les syndicats en France.LNK [1399]
O61 - LFC: 26/10/2013 - 12:22:22 ---A- . (...) -- C:\Users\QUENTIN\AppData\Roaming\Microsoft\Office\Recent\Les syndicats.LNK [1349]
O61 - LFC: 26/10/2013 - 12:22:22 --H-- . (...) -- C:\Users\QUENTIN\AppData\Roaming\Microsoft\Office\Recent\index.dat [962]
O61 - LFC: 26/10/2013 - 12:22:23 ---A- . (...) -- C:\Users\QUENTIN\AppData\Roaming\Microsoft\UProof\ExcludeDictionaryNL0413.lex [2]
O61 - LFC: 26/10/2013 - 12:22:24 ---A- . (...) -- C:\Users\QUENTIN\AppData\Roaming\Microsoft\Word\Les%20syndicats303315013048929123\Les%20syndicats.docx.lnk [1068]
O61 - LFC: 26/10/2013 - 12:22:24 ---A- . (...) -- C:\Users\QUENTIN\AppData\Roaming\Microsoft\Word\ListGal.dat [13829]
O61 - LFC: 26/10/2013 - 12:22:24 R--A- . (.arnaud boyer.) -- C:\Users\QUENTIN\AppData\Roaming\Microsoft\Word\Les%20syndicats303315013048929123\Les%20syndicats((Unsaved-303315182034384672)).asd [175104]
O61 - LFC: 26/10/2013 - 12:22:29 ---A- . (...) -- C:\Users\QUENTIN\AppData\Roaming\Skype\diqui_en_tenzec\chatsync\41\413cee4b12be9142.dat [16076]
O61 - LFC: 26/10/2013 - 12:22:32 ---A- . (...) -- C:\Users\QUENTIN\Documents\Dossier scolaire\2013-2014\Les syndicats en France.docx [19301]
O61 - LFC: 26/10/2013 - 12:22:32 ---A- . (...) -- C:\Users\QUENTIN\Documents\Dossier scolaire\2013-2014\Les syndicats.docx [148968]
O61 - LFC: 26/10/2013 - 12:22:34 ---A- . (.www.trad-fr.com.) -- C:\Users\QUENTIN\Downloads\dvdshrink_3.2_CSS-Free_for_ImgBurn_Fr.exe [1035178]
O61 - LFC: 27/10/2013 - 12:20:58 ---A- . (...) -- C:\Users\QUENTIN\AppData\Local\Akamai\euc_state.json [9154]
O61 - LFC: 27/10/2013 - 12:20:58 ---A- . (...) -- C:\Users\QUENTIN\AppData\Local\Akamai\extraroot.pem [490796]
O61 - LFC: 27/10/2013 - 12:21:00 ---A- . (...) -- C:\Users\QUENTIN\AppData\Local\Akamai\Logs\daemon.debug.log.131027_092733.sent [388]
O61 - LFC: 27/10/2013 - 12:21:01 ---A- . (...) -- C:\Users\QUENTIN\AppData\Local\Akamai\Logs\debug.log.131027_092739.sent [774]
O61 - LFC: 27/10/2013 - 12:21:01 ---A- . (...) -- C:\Users\QUENTIN\AppData\Local\Akamai\Logs\debug.log.131027_102740.sent [1464]
O61 - LFC: 27/10/2013 - 12:21:01 ---A- . (...) -- C:\Users\QUENTIN\AppData\Local\Akamai\readme.txt [20228]
O61 - LFC: 27/10/2013 - 12:21:01 ---A- . (...) -- C:\Users\QUENTIN\AppData\Local\Akamai\root.pem [13711]
O61 - LFC: 27/10/2013 - 12:21:05 ---A- . (...) -- C:\Users\QUENTIN\AppData\Local\ATI\ACE\Manifest.Bin [30466]
O61 - LFC: 27/10/2013 - 12:21:05 ---A- . (...) -- C:\Users\QUENTIN\AppData\Local\ATI\ACE\Manifest.xml [22245]
O61 - LFC: 27/10/2013 - 12:21:05 ---A- . (...) -- C:\Users\QUENTIN\AppData\Local\ATI\ACE\Profiles.xml [4268]
O61 - LFC: 27/10/2013 - 12:21:07 ---A- . (...) -- C:\Users\QUENTIN\AppData\Local\Gameforge4d\GameforgeLive\cache\data7\6\xv6bv6wv.d [4201]
O61 - LFC: 27/10/2013 - 12:21:07 ---A- . (...) -- C:\Users\QUENTIN\AppData\Local\fst_fr_6\fst_fr_6\1.10\cnf.cyl [131] =>PUA.FSTfr9
O61 - LFC: 27/10/2013 - 12:21:07 ---A- . (...) -- C:\Users\QUENTIN\AppData\Local\fst_fr_6\fst_fr_6\1.10\eorezo.cyl [69] =>PUA.FSTfr9
O61 - LFC: 27/10/2013 - 12:21:07 ---A- . (...) -- C:\Users\QUENTIN\AppData\Local\fst_fr_6\upfst_fr_6.cyp [408] =>PUA.FSTfr9
O61 - LFC: 27/10/2013 - 12:21:07 ---A- . (.FreeSoftToday.) -- C:\Users\QUENTIN\AppData\Local\fst_fr_6\Download\majfstfr.exe [3522656] =>Adware.FreeSoftToday
O61 - LFC: 27/10/2013 - 12:22:14 ---A- . (...) -- C:\Users\QUENTIN\AppData\Local\Temp\TWAIN.LOG [1089]
O61 - LFC: 27/10/2013 - 12:22:14 ---A- . (...) -- C:\Users\QUENTIN\AppData\Local\Temp\Twain001.Mtx [4]
O61 - LFC: 27/10/2013 - 12:22:14 ---A- . (...) -- C:\Users\QUENTIN\AppData\Local\Temp\Twunk001.MTX [156]
O61 - LFC: 27/10/2013 - 12:22:24 ---A- . (...) -- C:\Users\QUENTIN\AppData\Roaming\OpenOffice.org\3\.lock [143]
O61 - LFC: 27/10/2013 - 12:22:27 ---A- . (...) -- C:\Users\QUENTIN\AppData\Roaming\OpenOffice.org\3\user\registrymodifications.xcu [105785]
O61 - LFC: 27/10/2013 - 12:22:28 ---A- . (...) -- C:\Users\QUENTIN\AppData\Roaming\Skype\diqui_en_tenzec\bistats.db [286720]
O61 - LFC: 27/10/2013 - 12:22:30 ---A- . (...) -- C:\Users\QUENTIN\AppData\Roaming\Skype\diqui_en_tenzec\chatsync\e7\e75871ad6a81102c.dat [1532]
O61 - LFC: 27/10/2013 - 12:22:30 ---A- . (...) -- C:\Users\QUENTIN\AppData\Roaming\Skype\diqui_en_tenzec\config.xml [9347]
O61 - LFC: 27/10/2013 - 12:22:30 ---A- . (...) -- C:\Users\QUENTIN\AppData\Roaming\Skype\diqui_en_tenzec\dc.db [110592]
O61 - LFC: 27/10/2013 - 12:22:30 ---A- . (...) -- C:\Users\QUENTIN\AppData\Roaming\Skype\diqui_en_tenzec\eas.db [69632]
O61 - LFC: 27/10/2013 - 12:22:30 ---A- . (...) -- C:\Users\QUENTIN\AppData\Roaming\Skype\diqui_en_tenzec\httpfe\cookies.dat [2]
O61 - LFC: 27/10/2013 - 12:22:30 ---A- . (...) -- C:\Users\QUENTIN\AppData\Roaming\Skype\diqui_en_tenzec\keyval.db [49152]
O61 - LFC: 27/10/2013 - 12:22:30 ---A- . (...) -- C:\Users\QUENTIN\AppData\Roaming\Skype\diqui_en_tenzec\main.db [3137536]
O61 - LFC: 27/10/2013 - 12:22:30 ---A- . (...) -- C:\Users\QUENTIN\AppData\Roaming\Skype\diqui_en_tenzec\msn.db [126976]
O61 - LFC: 27/10/2013 - 12:22:30 ---A- . (...) -- C:\Users\QUENTIN\AppData\Roaming\Skype\diqui_en_tenzec\qikdb\qik_main.db [28672]
O61 - LFC: 27/10/2013 - 12:22:30 ---A- . (...) -- C:\Users\QUENTIN\AppData\Roaming\Skype\diqui_en_tenzec\simcache\streamlist [44]
O61 - LFC: 27/10/2013 - 12:22:30 ---A- . (...) -- C:\Users\QUENTIN\AppData\Roaming\Skype\shared.xml [86872]
O61 - LFC: 27/10/2013 - 12:22:30 ---A- . (...) -- C:\Users\QUENTIN\AppData\Roaming\Skype\shared_dynco\dc.db [2060288]
O61 - LFC: 27/10/2013 - 12:22:30 ---A- . (...) -- C:\Users\QUENTIN\AppData\Roaming\Skype\shared_dynco\dc.db-journal [8720]
O61 - LFC: 27/10/2013 - 12:22:31 ---A- . (...) -- C:\Users\QUENTIN\AppData\Roaming\ZHP\Log.txt [39844] =>.Nicolas Coolman
O61 - LFC: 27/10/2013 - 12:22:31 ---A- . (...) -- C:\Users\QUENTIN\AppData\Roaming\ZHP\TestsZHPDiag.txt [2900] =>.Nicolas Coolman
O61 - LFC: 27/10/2013 - 12:22:34 ---A- . (...) -- C:\Users\QUENTIN\Downloads\Gameforge Live\RunesOfMagicSetup_10_2013\ROMSetup_6.0.2.2662-9.bin [434171904]
O61 - LFC: 27/10/2013 - 12:22:34 ---A- . (...) -- C:\Users\QUENTIN\Downloads\Gameforge Live\RunesOfMagicSetup_10_2013\version.txt [128]
O61 - LFC: 27/10/2013 - 12:22:34 ---A- . (.Gameforge Productions GmbH.) -- C:\Users\QUENTIN\Downloads\Gameforge Live\RunesOfMagicSetup_10_2013\ROMSetup_6.0.2.2662.exe [456149] =>.Gameforge Productions GmbH
O61 - LFC: 27/10/2013 - 12:22:38 ---A- . (.Nicolas Coolman.) -- C:\Users\QUENTIN\Downloads\ZHPDiag2.exe [6840758] =>.Nicolas Coolman
O61 - LFC: 27/10/2013 - 12:22:38 ---A- . (.Systweak Inc.) -- C:\Users\QUENTIN\Downloads\rcpmmnew_mynew61335-20qtyj1PY5o9ovC61H2jJr1vAnWN000..exe [4363992]
~ 19 Fichiers temporaires (Temporary files)
~ Files: 261 Scanned in 01mn 40s



---\\ Liste des outils de d�sinfection (LATC) (O63)
O63 - Logiciel: ZHPDiag 2013 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1 =>.Nicolas Coolman
~ ADS: Scanned in 00mn 00s



---\\ Liste les services legacy du registre (LALS) (O64)
O64 - Services: CurCS - 14/09/2013 - C:\Windows\system32\drivers\afd.sys (AFD) .(.Microsoft Corporation - Ancillary Function Driver for WinSock.) - LEGACY_AFD
O64 - Services: CurCS - 18/01/2012 - C:\Windows\System32\DRIVERS\atikmdag.sys (amdkmdag) .(.Advanced Micro Devices, Inc. - ATI Radeon Kernel Mode Driver.) - LEGACY_AMDKMDAG
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\atapi.sys (atapi) .(.Microsoft Corporation - ATAPI IDE Miniport Driver.) - LEGACY_ATAPI
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\Drivers\Beep.sys (Beep) .(.Microsoft Corporation - BEEP Driver.) - LEGACY_BEEP
O64 - Services: CurCS - 04/07/2012 - C:\Windows\system32\browser.dll (bowser) .(.Microsoft Corporation - DLL du service Explorateur d�ordinateurs.) - LEGACY_BOWSER
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\clfs.sys (CLFS) .(.Microsoft Corporation - Common Log File System Driver.) - LEGACY_CLFS
O64 - Services: CurCS - 24/08/2012 - C:\Windows\System32\Drivers\cng.sys (CNG) .(.Microsoft Corporation - Kernel Cryptography, Next Generation.) - LEGACY_CNG
O64 - Services: CurCS - 21/11/2010 - C:\Windows\system32\drivers\dfsc.sys (DfsC) .(.Microsoft Corporation - DFS Namespace Client Driver.) - LEGACY_DFSC
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\discache.sys (discache) .(.Microsoft Corporation - System Indexer/Cache Driver.) - LEGACY_DISCACHE
O64 - Services: CurCS - 01/08/2013 - C:\Windows\system32\drivers\dxgkrnl.sys (DXGKrnl) .(.Microsoft Corporation - DirectX Graphics Kernel.) - LEGACY_DXGKRNL
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\Drivers\fastfat.sys (fastfat) .(.Microsoft Corporation - Fast FAT File System Driver.) - LEGACY_FASTFAT
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\fileinfo.sys (FileInfo) .(.Microsoft Corporation - FileInfo Filter Driver.) - LEGACY_FILEINFO
O64 - Services: CurCS - 21/11/2010 - C:\Windows\system32\drivers\fltmgr.sys (FltMgr) .(.Microsoft Corporation - Gestionnaire de filtres de syst�me de fichi.) - LEGACY_FLTMGR
O64 - Services: CurCS - 24/01/2013 - C:\Windows\system32\drivers\fvevol.sys (fvevol) .(.Microsoft Corporation - BitLocker Drive Encryption Driver.) - LEGACY_FVEVOL
O64 - Services: CurCS - 21/11/2010 - C:\Windows\system32\drivers\http.sys (HTTP) .(.Microsoft Corporation - HTTP Pile du protocole.) - LEGACY_HTTP
O64 - Services: CurCS - 21/11/2010 - C:\Windows\system32\drivers\hwpolicy.sys (hwpolicy) .(.Microsoft Corporation - Hardware Policy Driver.) - LEGACY_HWPOLICY
O64 - Services: CurCS - 29/11/2011 - C:\Windows\System32\drivers\iaStor.sys (iaStor) .(.Intel Corporation - Intel Rapid Storage Technology driver - x64.) - LEGACY_IASTOR
O64 - Services: CurCS - 06/01/2012 - C:\Windows\System32\DRIVERS\igdpmd64.sys (intelkmd) .(.Intel Corporation - Intel Graphics Kernel Mode Driver.) - LEGACY_INTELKMD
O64 - Services: CurCS - 11/10/2013 - C:\Windows\System32\DRIVERS\kl1.sys (kl1) .(.Kaspersky Lab ZAO - Kaspersky Unified Driver.) - LEGACY_KL1
O64 - Services: CurCS - 11/10/2013 - C:\Windows\System32\DRIVERS\klif.sys (KLIF) .(.Kaspersky Lab ZAO - Klif Mini-Filter [fre_wlh_x64].) - LEGACY_KLIF
O64 - Services: CurCS - 02/08/2012 - C:\Windows\System32\DRIVERS\klim6.sys (KLIM6) .(.Kaspersky Lab ZAO - Kaspersky Lab Intermediate Network Driver.) - LEGACY_KLIM6
O64 - Services: CurCS - 19/06/2013 - C:\Windows\System32\DRIVERS\kltdi.sys (kltdi) .(.Kaspersky Lab ZAO - Network filtering component.) - LEGACY_KLTDI
O64 - Services: CurCS - 24/04/2013 - C:\Windows\System32\DRIVERS\kneps.sys (kneps) .(.Kaspersky Lab ZAO - KNEPS Power.) - LEGACY_KNEPS
O64 - Services: CurCS - 02/06/2012 - C:\Windows\System32\Drivers\ksecdd.sys (KSecDD) .(.Microsoft Corporation - Kernel Security Support Provider Interface.) - LEGACY_KSECDD
O64 - Services: CurCS - 24/08/2012 - C:\Windows\System32\Drivers\ksecpkg.sys (KSecPkg) .(.Microsoft Corporation - Kernel Security Support Provider Interface.) - LEGACY_KSECPKG
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\DRIVERS\lltdio.sys (lltdio) .(.Microsoft Corporation - Link-Layer Topology Mapper I/O Driver.) - LEGACY_LLTDIO
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\luafv.sys (luafv) .(.Microsoft Corporation - Pilote de filtre de virtualisation de fichi.) - LEGACY_LUAFV
O64 - Services: CurCS - 21/11/2010 - C:\Windows\system32\drivers\mountmgr.sys (mountmgr) .(.Microsoft Corporation - Gestionnaire des points de montage.) - LEGACY_MOUNTMGR
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\FirewallAPI.dll (mpsdrv) .(.Microsoft Corporation - API du Pare-feu Windows.) - LEGACY_MPSDRV
O64 - Services: CurCS - 21/11/2010 - C:\Windows\system32\wkssvc.dll (mrxsmb) .(.Microsoft Corporation - DLL du service Station de travail.) - LEGACY_MRXSMB
O64 - Services: CurCS - 21/11/2010 - C:\Windows\system32\wkssvc.dll (mrxsmb10) .(.Microsoft Corporation - DLL du service Station de travail.) - LEGACY_MRXSMB10
O64 - Services: CurCS - 21/11/2010 - C:\Windows\system32\wkssvc.dll (mrxsmb20) .(.Microsoft Corporation - DLL du service Station de travail.) - LEGACY_MRXSMB20
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\msisadrv.sys (msisadrv) .(.Microsoft Corporation - ISA Driver.) - LEGACY_MSISADRV
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\mup.sys (Mup) .(.Microsoft Corporation - Multiple UNC Provider Driver.) - LEGACY_MUP
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\DRIVERS\nwifi.sys (NativeWifiP) .(.Microsoft Corporation - Pilote de miniport WiFi natif.) - LEGACY_NATIVEWIFIP
O64 - Services: CurCS - 22/08/2012 - C:\Windows\system32\drivers\ndis.sys (NDIS) .(.Microsoft Corporation - Pilote NDIS 6.20.) - LEGACY_NDIS
O64 - Services: CurCS - 21/11/2010 - C:\Windows\System32\DRIVERS\ndisuio.sys (Ndisuio) .(.Microsoft Corporation - Pilote d�E/S du mode utilisateur NDIS.) - LEGACY_NDISUIO
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\DRIVERS\netbios.sys (NetBIOS) .(.Microsoft Corporation - NetBIOS interface driver.) - LEGACY_NETBIOS
O64 - Services: CurCS - 21/11/2010 - C:\Windows\system32\drivers\netbt.sys (NetBT) .(.Microsoft Corporation - MBT Transport driver.) - LEGACY_NETBT
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\nsiproxy.sys (nsiproxy) .(.Microsoft Corporation - NSI Proxy.) - LEGACY_NSIPROXY
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\pcw.sys (pcw) .(.Microsoft Corporation - Performance Counters for Windows Driver.) - LEGACY_PCW
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\peauth.sys (PEAUTH) .(.Microsoft Corporation - Protected Environment Authentication and Au.) - LEGACY_PEAUTH
O64 - Services: CurCS - 21/11/2010 - C:\Windows\System32\drivers\pacer.sys (Psched) .(.Microsoft Corporation - Planificateur de paquets QoS.) - LEGACY_PSCHED
O64 - Services: CurCS - 21/11/2010 - C:\Windows\system32\wkssvc.dll (rdbss) .(.Microsoft Corporation - DLL du service Station de travail.) - LEGACY_RDBSS
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\DRIVERS\RDPCDD.sys (RDPCDD) .(.Microsoft Corporation - RDP Miniport.) - LEGACY_RDPCDD
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\RDPENCDD.sys (RDPENCDD) .(.Microsoft Corporation - RDP Encoder Miniport.) - LEGACY_RDPENCDD
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\RdpRefMp.sys (RDPREFMP) .(.Microsoft Corporation - RDP Reflector Driver Miniport.) - LEGACY_RDPREFMP
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\DRIVERS\rspndr.sys (rspndr) .(.Microsoft Corporation - Link-Layer Topology Responder Driver for ND.) - LEGACY_RSPNDR
O64 - Services: CurCS - 10/06/2009 - C:\Windows\System32\Drivers\secdrv.sys (secdrv) .(.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) - LEGACY_SECDRV
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\Drivers\spldr.sys (spldr) .(.Microsoft Corporation - loader for security processor.) - LEGACY_SPLDR
O64 - Services: CurCS - 21/11/2010 - C:\Windows\system32\srvsvc.dll (srv) .(.Microsoft Corporation - DLL du service Serveur.) - LEGACY_SRV
O64 - Services: CurCS - 21/11/2010 - C:\Windows\system32\srvsvc.dll (srv2) .(.Microsoft Corporation - DLL du service Serveur.) - LEGACY_SRV2
O64 - Services: CurCS - 10/02/2012 - C:\Windows\System32\DRIVERS\srvnet.sys (srvnet) .(.Microsoft Corporation - Server Network driver.) - LEGACY_SRVNET
O64 - Services: CurCS - 21/11/2010 - C:\Windows\system32\tcpipcfg.dll (Tcpip) .(.Microsoft Corporation - Objets de configuration du r�seau.) - LEGACY_TCPIP
O64 - Services: CurCS - 03/10/2012 - C:\Windows\System32\drivers\tcpipreg.sys (tcpipreg) .(.Microsoft Corporation - TCP/IP Registry Compatibility Driver.) - LEGACY_TCPIPREG
O64 - Services: CurCS - 21/11/2010 - C:\Windows\system32\tcpipcfg.dll (tdx) .(.Microsoft Corporation - Objets de configuration du r�seau.) - LEGACY_TDX
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\vga.sys (VgaSave) .(.Microsoft Corporation - VGA/Super VGA Video Driver.) - LEGACY_VGASAVE
O64 - Services: CurCS - 21/11/2010 - C:\Windows\system32\drivers\volmgrx.sys (volmgrx) .(.Microsoft Corporation - Pilote d�extension du gestionnaire de volum.) - LEGACY_VOLMGRX
O64 - Services: CurCS - 10/02/2012 - C:\Windows\System32\drivers\volsnap.sys (volsnap) .(.Microsoft Corporation - Pilote de clich� instantan� du volume.) - LEGACY_VOLSNAP
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\DRIVERS\vwififlt.sys (vwififlt) .(.Microsoft Corporation - Virtual WiFi Filter Driver.) - LEGACY_VWIFIFLT
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\rascfg.dll (Wanarpv6) .(.Microsoft Corporation - Objets de configuration RAS.) - LEGACY_WANARPV6
O64 - Services: CurCS - 25/06/2013 - C:\Windows\System32\drivers\Wdf01000.sys (Wdf01000) .(.Microsoft Corporation - Runtime de l�infrastructure de pilotes en m.) - LEGACY_WDF01000
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\DRIVERS\wfplwf.sys (WfpLwf) .(.Microsoft Corporation - WFP NDIS 6.20 Lightweight Filter Driver.) - LEGACY_WFPLWF
~ Legacy: 79 Scanned in 00mn 01s



---\\ Associations Shell Spawning (O67)
O67 - Shell Spawning: <.bat> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl> [HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe =>.Microsoft Corporation
O67 - Shell Spawning: <.cmd> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.evt> [HKLM\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Observateur d��v�nements.) -- C:\Windows\System32\eventvwr.exe
O67 - Shell Spawning: <.exe> [HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html> [HKLM\..\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O67 - Shell Spawning: <.js> [HKLM\..\open\Command] (.Microsoft Corporation - Microsoft � Windows Based Script Host.) -- C:\Windows\System32\WScript.exe
O67 - Shell Spawning: <.reg> [HKLM\..\open\Command] (.Microsoft Corporation - �diteur du Registre.) -- C:\Windows\regedit.exe
O67 - Shell Spawning: <.html> [HKCU\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
O67 - Shell Spawning: <.bat> [HKCR\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl> [HKCR\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe =>.Microsoft Corporation
O67 - Shell Spawning: <.cmd> [HKCR\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com> [HKCR\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.evt> [HKCR\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Observateur d��v�nements.) -- C:\Windows\System32\eventvwr.exe
O67 - Shell Spawning: <.exe> [HKCR\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html> [HKCR\..\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
O67 - Shell Spawning: <.js> [HKCR\..\open\Command] (.Microsoft Corporation - Microsoft � Windows Based Script Host.) -- C:\Windows\System32\WScript.exe
O67 - Shell Spawning: <.reg> [HKCR\..\open\Command] (.Microsoft Corporation - �diteur du Registre.) -- C:\Windows\regedit.exe
~ FASS Keys: 19 Scanned in 00mn 00s



---\\ Menu de d�marrage Internet (SMI) (O68)
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
~ Keys: Scanned in 00mn 00s



---\\ Recherche d'infection sur les navigateurs internet (SBI) (O69)
O69 - SBI: C:\Users\QUENTIN\AppData\Roaming\Mozilla\Firefox\Profiles\1b6sfmvq.default\searchplugins\askcom.xml
O69 - SBI: prefs.js [QUENTIN - 1b6sfmvq.default] user_pref("browser.search.order.1", "Search the web (Babylon)"); =>Adware.IMBooster
O69 - SBI: prefs.js [QUENTIN - 1b6sfmvq.default] user_pref("extensions.BabylonToolbar.admin", false); =>Toolbar.Babylon
O69 - SBI: prefs.js [QUENTIN - 1b6sfmvq.default] user_pref("extensions.BabylonToolbar.aflt", "babsst"); =>Toolbar.Babylon
O69 - SBI: prefs.js [QUENTIN - 1b6sfmvq.default] user_pref("extensions.BabylonToolbar.appId", "{BDB69379-802F-4eaf-B541-F8DE92DD98DB}"); =>Toolbar.Babylon
O69 - SBI: prefs.js [QUENTIN - 1b6sfmvq.default] user_pref("extensions.BabylonToolbar.dfltLng", "fr"); =>Toolbar.Babylon
O69 - SBI: prefs.js [QUENTIN - 1b6sfmvq.default] user_pref("extensions.BabylonToolbar.excTlbr", false); =>Toolbar.Babylon
O69 - SBI: prefs.js [QUENTIN - 1b6sfmvq.default] user_pref("extensions.BabylonToolbar.id", "be7b8e43000000000000e006e64aacb8"); =>Toolbar.Babylon
O69 - SBI: prefs.js [QUENTIN - 1b6sfmvq.default] user_pref("extensions.BabylonToolbar.instlDay", "15632"); =>Toolbar.Babylon
O69 - SBI: prefs.js [QUENTIN - 1b6sfmvq.default] user_pref("extensions.BabylonToolbar.instlRef", "sst"); =>Toolbar.Babylon
O69 - SBI: prefs.js [QUENTIN - 1b6sfmvq.default] user_pref("extensions.BabylonToolbar.prdct", "BabylonToolbar"); =>Toolbar.Babylon
O69 - SBI: prefs.js [QUENTIN - 1b6sfmvq.default] user_pref("extensions.BabylonToolbar.prtnrId", "babylon"); =>Toolbar.Babylon
O69 - SBI: prefs.js [QUENTIN - 1b6sfmvq.default] user_pref("extensions.BabylonToolbar.tlbrId", "base"); =>Toolbar.Babylon
O69 - SBI: prefs.js [QUENTIN - 1b6sfmvq.default] user_pref("extensions.BabylonToolbar.tlbrSrchUrl", "http://search.babylon.com/?babsrc=TB_def&mntrId=be7b8e43000000000000e006e64aac[...] =>Toolbar.Babylon
O69 - SBI: prefs.js [QUENTIN - 1b6sfmvq.default] user_pref("extensions.BabylonToolbar.vrsn", "1.8.3.8"); =>Toolbar.Babylon
O69 - SBI: prefs.js [QUENTIN - 1b6sfmvq.default] user_pref("extensions.BabylonToolbar.vrsni", "1.8.3.8"); =>Toolbar.Babylon
O69 - SBI: prefs.js [QUENTIN - 1b6sfmvq.default] user_pref("extensions.BabylonToolbar_i.newTab", true); =>Toolbar.Babylon
O69 - SBI: prefs.js [QUENTIN - 1b6sfmvq.default] user_pref("extensions.BabylonToolbar_i.newTabUrl", "http://search.babylon.com/?affID=112060&tt=4212_5&babsrc=NT_ss&mntrId=be7b8e43[...] =>Toolbar.Babylon
O69 - SBI: prefs.js [QUENTIN - 1b6sfmvq.default] user_pref("extensions.BabylonToolbar_i.smplGrp", "none"); =>Toolbar.Babylon
O69 - SBI: prefs.js [QUENTIN - 1b6sfmvq.default] user_pref("extensions.BabylonToolbar_i.vrsnTs", "1.8.3.819:31:18"); =>Toolbar.Babylon
O69 - SBI: prefs.js [QUENTIN - 1b6sfmvq.default] user_pref("extensions.asktb.ff-original-keyword-url", "");
O69 - SBI: prefs.js [QUENTIN - 1b6sfmvq.default] user_pref("extensions.crossrider.bic", "141eef562f9ab52a892e36151b6d3f8d"); =>PUP.CrossRider
O69 - SBI: prefs.js [QUENTIN - 1b6sfmvq.default] user_pref("extensions.delta.admin", false);
O69 - SBI: prefs.js [QUENTIN - 1b6sfmvq.default] user_pref("extensions.delta.aflt", "babsst");
O69 - SBI: prefs.js [QUENTIN - 1b6sfmvq.default] user_pref("extensions.delta.appId", "{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}");
O69 - SBI: prefs.js [QUENTIN - 1b6sfmvq.default] user_pref("extensions.delta.autoRvrt", "false");
O69 - SBI: prefs.js [QUENTIN - 1b6sfmvq.default] user_pref("extensions.delta.dfltLng", "fr");
O69 - SBI: prefs.js [QUENTIN - 1b6sfmvq.default] user_pref("extensions.delta.excTlbr", false);
O69 - SBI: prefs.js [QUENTIN - 1b6sfmvq.default] user_pref("extensions.delta.ffxUnstlRst", true);
O69 - SBI: prefs.js [QUENTIN - 1b6sfmvq.default] user_pref("extensions.delta.id", "be7b8e43000000000000e006e64aacb8");
O69 - SBI: prefs.js [QUENTIN - 1b6sfmvq.default] user_pref("extensions.delta.instlDay", "15989");
O69 - SBI: prefs.js [QUENTIN - 1b6sfmvq.default] user_pref("extensions.delta.instlRef", "sst");
O69 - SBI: prefs.js [QUENTIN - 1b6sfmvq.default] user_pref("extensions.delta.newTab", false);
O69 - SBI: prefs.js [QUENTIN - 1b6sfmvq.default] user_pref("extensions.delta.prdct", "delta");
O69 - SBI: prefs.js [QUENTIN - 1b6sfmvq.default] user_pref("extensions.delta.prtnrId", "delta");
O69 - SBI: prefs.js [QUENTIN - 1b6sfmvq.default] user_pref("extensions.delta.rvrt", "false");
O69 - SBI: prefs.js [QUENTIN - 1b6sfmvq.default] user_pref("extensions.delta.smplGrp", "none");
O69 - SBI: prefs.js [QUENTIN - 1b6sfmvq.default] user_pref("extensions.delta.tlbrId", "base");
O69 - SBI: prefs.js [QUENTIN - 1b6sfmvq.default] user_pref("extensions.delta.tlbrSrchUrl", "");
O69 - SBI: prefs.js [QUENTIN - 1b6sfmvq.default] user_pref("extensions.delta.vrsn", "1.8.24.6");
O69 - SBI: prefs.js [QUENTIN - 1b6sfmvq.default] user_pref("extensions.delta.vrsnTs", "1.8.24.617:32:48");
O69 - SBI: prefs.js [QUENTIN - 1b6sfmvq.default] user_pref("extensions.delta.vrsni", "1.8.24.6");
O69 - SBI: prefs.js [QUENTIN - 1b6sfmvq.default] user_pref("extensions.delta_i.babExt", "");
O69 - SBI: prefs.js [QUENTIN - 1b6sfmvq.default] user_pref("extensions.delta_i.babTrack", "affID=119557&tt=02102013_mx10rsb&tsp=5032");
O69 - SBI: prefs.js [QUENTIN - 1b6sfmvq.default] user_pref("extensions.delta_i.srcExt", "ss");
O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (Bing) - http://www.bing.com
O69 - SBI: SearchScopes [HKCU] {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} - (Delta Search) - http://www.delta-search.com =>Toolbar.DeltaSearch
O69 - SBI: SearchScopes [HKCU] {2fa28606-de77-4029-af96-b231e3b8f827} - (Ask.com) - http://eu.ask.com
O69 - SBI: SearchScopes [HKCU] {3488021B-4278-4A95-8970-600BE1E32616} - (Ask Search) - http://websearch.ask.com =>Toolbar.Ask
O69 - SBI: SearchScopes [HKCU] {9BEA2108-27FF-4806-9309-09B32ABCD8AC} - (Propositions de recherche Amazon.fr) - http://www.amazon.fr
O69 - SBI: SearchScopes [HKCU] {b7fca997-d0fb-4fe0-8afd-255e89cf9671} - (Yahoo) - http://fr.search.yahoo.com
O69 - SBI: SearchScopes [HKCU] {BFFED5CA-8BDF-47CC-AED0-23F4E6D77732} [DefaultScope] - (StartWeb) - http://start.iminent.com =>Adware.IMBooster
O69 - SBI: SearchScopes [HKCU] {d43b3890-80c7-4010-a95d-1e77b5924dc3} - (Wikipedia) - http://fr.wikipedia.org
O69 - SBI: SearchScopes [HKCU] {D944BB61-2E34-4DBF-A683-47E505C587DC} - (eBay) - http://rover.ebay.com
~ Keys: Scanned in 00mn 00s



---\\ Enum�re les service demarr�s par Svchost (SSS) (O83)
O83 - Search Svchost Services: AeLookupSvc (AeLookupSvc) . (.Microsoft Corporation - Service Exp�rience d�application.) -- C:\Windows\System32\aelupsvc.dll [72192]
O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Service de propagation de certificats de cartes � puce Microsoft.) -- C:\Windows\System32\certprop.dll [80384]
O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Service de propagation de certificats de cartes � puce Microsoft.) -- C:\Windows\System32\certprop.dll [80384]
O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL du service Serveur.) -- C:\Windows\System32\srvsvc.dll [236032]
O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Client de strat�gie de groupe.) -- C:\Windows\System32\gpsvc.dll [777728]
O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - Extension IKE.) -- C:\Windows\System32\ikeext.dll [853504]
O83 - Search Svchost Services: AudioSrv (AudioSrv) . (.Microsoft Corporation - Service Audio Windows.) -- C:\Windows\System32\Audiosrv.dll [679424]
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gestionnaire de num�rotation automatique d�acc�s distant.) -- C:\Windows\System32\rasauto.dll [99328]
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Gestionnaire de connexions d�acc�s distant.) -- C:\Windows\System32\rasmans.dll [344064]
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gestionnaire d�interface dynamique.) -- C:\Windows\System32\mprdim.dll [97792]
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Service de notification d��v�nements syst�me (SENS).) -- C:\Windows\System32\sens.dll [64512]
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de l�application d�assistance � Microsoft NAT.) -- C:\Windows\System32\ipnathlp.dll [359424]
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de t�l�phonie Microsoft� Windows(TM).) -- C:\Windows\System32\tapisrv.dll [316928]
O83 - Search Svchost Services: TermService (TermService) . (.Microsoft Corporation - Gestionnaire des connexions distantes du serveur h�te de session Burea.) -- C:\Windows\System32\termsrv.dll [680960]
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Agent de mise � jour automatique Windows Update.) -- C:\Windows\System32\wuaueng.dll [2428952]
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arri�re-plan.) -- C:\Windows\System32\qmgr.dll [849920]
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\Windows\System32\shsvcs.dll [370688]
O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service offrant une connectivit� IPv6 sur un r�seau IPv4..) -- C:\Windows\System32\iphlpsvc.dll [569344]
O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - DLL de service d�ouverture de session secondaire.) -- C:\Windows\system32\seclogon.dll [30720]
O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Service Informations d�application.) -- C:\Windows\System32\appinfo.dll [70144]
O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Service de d�couverte iSCSI.) -- C:\Windows\System32\iscsiexe.dll [156672]
O83 - Search Svchost Services: MMCSS (MMCSS) . (.Microsoft Corporation - Service Planificateur de classes multim�dias.) -- C:\Windows\System32\mmcss.dll [67584]
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\System32\wbem\WMIsvc.dll [242688]
O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Service Configuration des services Bureau � distance.) -- C:\Windows\System32\sessenv.dll [121856]
O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - DLL du service Explorateur d�ordinateurs.) -- C:\Windows\System32\browser.dll [136704]
O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Service EAPHost Microsoft.) -- C:\Windows\System32\eapsvc.dll [111104]
O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Service du Planificateur de t�ches.) -- C:\Windows\System32\schedsvc.dll [1110016]
O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Service Gestion des cl�s.) -- C:\Windows\System32\kmsvc.dll [90624]
O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Rapports et solutions aux probl�mes.) -- C:\Windows\System32\wercplsupport.dll [84480]
O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\System32\profsvc.dll [209920]
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - DLL du service des th�mes Windows Shell.) -- C:\Windows\System32\themeservice.dll [44544]
O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - Service BDE.) -- C:\Windows\System32\bdesvc.dll [100864]
~ Services: 32 Scanned in 00mn 00s



---\\ Recherche particuli�re � la racine du syst�me (SPRF) (O84)
[MD5.DF6D6B8FE741554F22E08574FA5C25F8] [SPRF][25/10/2013] (...) -- C:\Users\QUENTIN\AppData\Local\Temp\6a0a869a9be677b6f2832895d802a6ad.dll [73]
[MD5.CE755676AE6D27A1EFEEFB0F3C70A929] [SPRF][21/06/2013] (.Ask.com - AskStub Application.) -- C:\Users\QUENTIN\AppData\Local\Temp\APNStub.exe [358600]
[MD5.171F1BB73D0238A7A56126D3459ECDCD] [SPRF][15/10/2008] (...) -- C:\Users\QUENTIN\AppData\Local\Temp\Extract.exe [50432]
[MD5.11DB573A9D46CF5C548AD5D28CEA5D6A] [SPRF][13/09/2013] (...) -- C:\Users\QUENTIN\AppData\Local\Temp\ICReinstall_FlvPlayerSetup.exe [729440]
[MD5.A958FEB8C75507860EF38E2237A9CFDF] [SPRF][25/10/2013] (...) -- C:\Users\QUENTIN\AppData\Local\Temp\instloffer.exe [385477]
[MD5.F88C296A9109CF540EEDEF41E8A46E09] [SPRF][12/01/2013] (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Users\QUENTIN\AppData\Local\Temp\jre-7u11-windows-i586-iftw.exe [896424]
[MD5.F655170EB3DC3CBB3F564077C670A7E1] [SPRF][31/01/2013] (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Users\QUENTIN\AppData\Local\Temp\jre-7u13-windows-i586-iftw.exe [897448]
[MD5.5CC163324A11091C975B686EF4C52C73] [SPRF][16/02/2013] (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Users\QUENTIN\AppData\Local\Temp\jre-7u15-windows-i586-iftw.exe [897448]
[MD5.A620A735458E04AE0CF471319B6D6E7D] [SPRF][01/03/2013] (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Users\QUENTIN\AppData\Local\Temp\jre-7u17-windows-i586-iftw.exe [897448]
[MD5.6C137D2BEF3CDD43F3AE2FD6705B9FED] [SPRF][05/04/2013] (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Users\QUENTIN\AppData\Local\Temp\jre-7u21-windows-i586-iftw.exe [904104]
[MD5.70276F070926C947B5EBF5E67A45AF8D] [SPRF][13/06/2013] (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Users\QUENTIN\AppData\Local\Temp\jre-7u25-windows-i586-iftw.exe [903592]
[MD5.244ED0E8BA77CFA7CA28BE69B8F14447] [SPRF][08/10/2013] (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Users\QUENTIN\AppData\Local\Temp\jre-7u45-windows-i586-iftw.exe [915368]
[MD5.EC3A1A84A0A407FE3985ED6F9A0CC436] [SPRF][27/09/2012] (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Users\QUENTIN\AppData\Local\Temp\jre-7u9-windows-i586-iftw.exe [895464]
[MD5.AC924370C3A3EF6FCFEB4156356EB482] [SPRF][20/10/2013] (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Users\QUENTIN\AppData\Local\Temp\jre_setup.exe [29040552]
[MD5.E7B2C62E3152D8381A7AC315001F5105] [SPRF][26/10/2013] (...) -- C:\Users\QUENTIN\AppData\Local\Temp\OKitSpaceSetup.exe [598016] =>PUP.Onekit
[MD5.9738475FF9A6A9ADDC1BE56FB55CD3B4] [SPRF][06/10/2013] (.Ask - Wrapper Application.) -- C:\Users\QUENTIN\AppData\Local\Temp\setup.exe [4163720]
[MD5.1B1D86A574E842946E5D5317892B45C5] [SPRF][29/07/2013] (.Skype Technologies S.A. - Skype.) -- C:\Users\QUENTIN\AppData\Local\Temp\SkypeSetup.exe [31954536]
[MD5.8B8F866C51D3E732AED1A8AE38E72851] [SPRF][26/10/2013] (...) -- C:\Users\QUENTIN\AppData\Local\Temp\softwareupdater.exe [614400] =>PUP.Eorezo
[MD5.78CB11CDD716F258E88399220E7EDE4F] [SPRF][01/03/2012] (.Hewlett-Packard - Pas de description.) -- C:\Users\QUENTIN\AppData\Local\Temp\SP55975.exe [5684792]
[MD5.9A87A7C2B9B851896D8D9E4953E52017] [SPRF][29/05/2013] (.Hewlett-Packard Company - Pas de description.) -- C:\Users\QUENTIN\AppData\Local\Temp\SP56478.exe [2578736]
[MD5.AB14A68B2A7BF798AC72E3AAC336EFBE] [SPRF][27/08/2013] (.Hewlett-Packard - HP UEFI Support Environment.) -- C:\Users\QUENTIN\AppData\Local\Temp\SP56750.exe [2264112]
[MD5.A88165B4EAE22D06973D80630693F00A] [SPRF][29/03/2013] (.Hewlett-Packard - Pas de description.) -- C:\Users\QUENTIN\AppData\Local\Temp\SP56801.exe [113644752]
[MD5.6B3CBFAFC244047B7D2B2C9C30FB753B] [SPRF][29/03/2013] (.Hewlett-Packard - Pas de description.) -- C:\Users\QUENTIN\AppData\Local\Temp\SP56803.exe [43846936]
[MD5.AC7E6367BD4D79A36C323378443BE298] [SPRF][09/05/2013] (.Hewlett-Packard Company - Pas de description.) -- C:\Users\QUENTIN\AppData\Local\Temp\SP56929.exe [4022944]
[MD5.BC49F02DEA03EDF87483823C9182F732] [SPRF][03/10/2012] (.Hewlett-Packard - Pas de description.) -- C:\Users\QUENTIN\AppData\Local\Temp\SP57232.exe [9933608]
[MD5.5DB15C359006BAFD31BED99FF95752F2] [SPRF][13/10/2012] (.Hewlett Packard Inc - HP Software Framework.) -- C:\Users\QUENTIN\AppData\Local\Temp\SP57698.exe [6594568]
[MD5.4047843E4121AB9F0D1BD480403BCAF8] [SPRF][30/05/2013] (.Hewlett-Packard Company - Pas de description.) -- C:\Users\QUENTIN\AppData\Local\Temp\SP58586.exe [27304064]
[MD5.53490613D7362803ADAA9B9CD7D293F9] [SPRF][18/11/2012] (.Hewlett-Packard - Pas de description.) -- C:\Users\QUENTIN\AppData\Local\Temp\sp58915.exe [41580520]
[MD5.4F4CCBC7A75A65C46CEDD7DE66C5570D] [SPRF][10/11/2012] (.Hewlett-Packard Company - HP Software Framework provides a common set of software inte.) -- C:\Users\QUENTIN\AppData\Local\Temp\SP59202.exe [7406272]
[MD5.51DEF7B462AA324BCA32068A842E45C5] [SPRF][30/05/2013] (.Hewlett-Packard Company - Pas de description.) -- C:\Users\QUENTIN\AppData\Local\Temp\SP60051.exe [6709496]
[MD5.83BE100EFFD743DE7941892CBC98322C] [SPRF][29/03/2013] (.Hewlett-Packard Company - Pas de description.) -- C:\Users\QUENTIN\AppData\Local\Temp\SP60109.exe [6570584]
[MD5.E9BB8168BD667087823B7073390DED68] [SPRF][24/04/2013] (.Hewlett-Packard - Pas de description.) -- C:\Users\QUENTIN\AppData\Local\Temp\SP61037.exe [9982176]
[MD5.740196460CB3439BE3A0AA6BCAA711A8] [SPRF][18/11/2012] (...) -- C:\Users\QUENTIN\AppData\Local\Temp\temp.bat [450]
[MD5.77DFB27D68CE46659A3D5E93410C0B75] [SPRF][19/10/2012] (.Babylon Ltd. - Babylon Client Setup.) -- C:\Users\QUENTIN\AppData\Local\Temp\Toolbar_Phpnuke.exe [899224] =>Toolbar.Babylon
[MD5.239CB72E0605A43BF856BCD49712D1FA] [SPRF][27/09/2012] (.Hewlett-Packard Company - HP Support Assistant Uninstaller.) -- C:\Users\QUENTIN\AppData\Local\Temp\UninstallHPSA.exe [114080]
~ Files: 35 Scanned in 00mn 09s



---\\ Liste des exceptions du parefeu (FirewallRules) (O87)
O87 - FAEL: "RemoteAssistance-PnrpSvc-UDP-OUT-Active" | Out - Domain - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteAssistance-PnrpSvc-UDP-In-EdgeScope-Active" | In - Domain - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteAssistance-SSDPSrv-Out-TCP-Active" | Out - Domain - P6 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteAssistance-SSDPSrv-In-TCP-Active" | In - Domain - P6 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteAssistance-SSDPSrv-Out-UDP-Active" | Out - Domain - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteAssistance-SSDPSrv-In-UDP-Active" | In - Domain - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteAssistance-Out-TCP-Active" | Out - Domain - P6 - TRUE | .(.Microsoft Corporation - Assistance � distance Windows.) -- C:\Windows\system32\msra.exe
O87 - FAEL: "RemoteAssistance-In-TCP-EdgeScope-Active" | In - Domain - P6 - TRUE | .(.Microsoft Corporation - Assistance � distance Windows.) -- C:\Windows\system32\msra.exe
O87 - FAEL: "RemoteAssistance-DCOM-In-TCP-NoScope-Active" | In - Domain - P6 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteAssistance-RAServer-Out-TCP-NoScope-Active" | Out - Domain - P6 - TRUE | .(.Microsoft Corporation - Serveur COM d�assistance � distance Windows.) -- C:\Windows\system32\raserver.exe
O87 - FAEL: "RemoteAssistance-RAServer-In-TCP-NoScope-Active" | In - Domain - P6 - TRUE | .(.Microsoft Corporation - Serveur COM d�assistance � distance Windows.) -- C:\Windows\system32\raserver.exe
O87 - FAEL: "RemoteAssistance-PnrpSvc-UDP-OUT" | Out - Public - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteAssistance-PnrpSvc-UDP-In-EdgeScope" | In - Public - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteAssistance-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Assistance � distance Windows.) -- C:\Windows\system32\msra.exe
O87 - FAEL: "RemoteAssistance-In-TCP-EdgeScope" | In - Public - P6 - TRUE | .(.Microsoft Corporation - Assistance � distance Windows.) -- C:\Windows\system32\msra.exe
O87 - FAEL: "RemoteFwAdmin-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteFwAdmin-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteFwAdmin-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteFwAdmin-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteEventLogSvc-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteEventLogSvc-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteEventLogSvc-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteEventLogSvc-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MSDTC-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MSDTC-KTMRM-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MSDTC-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Service Microsoft Distributed Transaction Coordinator.) -- C:\Windows\system32\msdtc.exe
O87 - FAEL: "MSDTC-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Service Microsoft Distributed Transaction Coordinator.) -- C:\Windows\system32\msdtc.exe
O87 - FAEL: "MSDTC-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MSDTC-KTMRM-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MSDTC-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Service Microsoft Distributed Transaction Coordinator.) -- C:\Windows\system32\msdtc.exe
O87 - FAEL: "MSDTC-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Service Microsoft Distributed Transaction Coordinator.) -- C:\Windows\system32\msdtc.exe
O87 - FAEL: "RemoteTask-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteTask-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteTask-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteTask-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteSvcAdmin-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteSvcAdmin-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Applications Services et Contr�leur.) -- C:\Windows\system32\services.exe
O87 - FAEL: "RemoteSvcAdmin-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteSvcAdmin-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Applications Services et Contr�leur.) -- C:\Windows\system32\services.exe
O87 - FAEL: "NETDIS-FDRESPUB-WSD-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-FDRESPUB-WSD-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-LLMNR-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-LLMNR-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-FDPHOST-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-FDPHOST-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-UPnP-Out-TCP" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-SSDPSrv-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-SSDPSrv-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-FDRESPUB-WSD-Out-UDP-Active" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-FDRESPUB-WSD-In-UDP-Active" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-LLMNR-Out-UDP-Active" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-LLMNR-In-UDP-Active" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-FDPHOST-Out-UDP-Active" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-FDPHOST-In-UDP-Active" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-UPnP-Out-TCP-Active" | Out - Private - P6 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-SSDPSrv-Out-UDP-Active" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-SSDPSrv-In-UDP-Active" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMI-ASYNC-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Sink to receive asynchronous callbacks for WMI client application.) -- C:\Windows\system32\wbem\unsecapp.exe
O87 - FAEL: "WMI-WINMGMT-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMI-WINMGMT-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMI-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMI-ASYNC-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Sink to receive asynchronous callbacks for WMI client application.) -- C:\Windows\system32\wbem\unsecapp.exe
O87 - FAEL: "WMI-WINMGMT-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMI-WINMGMT-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMI-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MsiScsi-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MsiScsi-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MsiScsi-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MsiScsi-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "PerfLogsAlerts-DCOM-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "PerfLogsAlerts-PLASrv-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Performance Logs and Alerts DCOM Server.) -- C:\Windows\system32\plasrv.exe
O87 - FAEL: "PerfLogsAlerts-DCOM-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "PerfLogsAlerts-PLASrv-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Performance Logs and Alerts DCOM Server.) -- C:\Windows\system32\plasrv.exe
O87 - FAEL: "CoreNet-GP-LSASS-Out-TCP" | Out - Domain - P6 - TRUE | .(.Microsoft Corporation - Local Security Authority Process.) -- C:\Windows\system32\lsass.exe
O87 - FAEL: "CoreNet-DNS-Out-UDP" | Out - None - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "CoreNet-GP-Out-TCP" | Out - Domain - P6 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "CoreNet-IPHTTPS-Out" | Out - None - P6 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "CoreNet-Teredo-Out" | Out - None - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "CoreNet-Teredo-In" | In - None - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "CoreNet-DHCPV6-Out" | Out - None - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "CoreNet-DHCPV6-In" | In - None - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "CoreNet-DHCP-Out" | Out - None - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "CoreNet-DHCP-In" | In - None - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "FPS-LLMNR-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "FPS-LLMNR-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "FPS-SpoolSvc-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Application sous-syst�me spouleur.) -- C:\Windows\system32\spoolsv.exe
O87 - FAEL: "FPS-SpoolSvc-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Application sous-syst�me spouleur.) -- C:\Windows\system32\spoolsv.exe
O87 - FAEL: "Collab-PNRP-SSDPSrv-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "Collab-PNRP-SSDPSrv-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "Collab-PNRP-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "Collab-PNRP-In-UDP" | In - None - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "Collab-P2PHost-WSD-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Voisinage imm�diat.) -- C:\Windows\system32\p2phost.exe
O87 - FAEL: "Collab-P2PHost-WSD-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Voisinage imm�diat.) -- C:\Windows\system32\p2phost.exe
O87 - FAEL: "Collab-P2PHost-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Voisinage imm�diat.) -- C:\Windows\system32\p2phost.exe
O87 - FAEL: "Collab-P2PHost-In-TCP" | In - None - P6 - TRUE | .(.Microsoft Corporation - Voisinage imm�diat.) -- C:\Windows\system32\p2phost.exe
O87 - FAEL: "RVM-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RVM-VDSLDR-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Virtual Disk Service Loader.) -- C:\Windows\system32\vdsldr.exe
O87 - FAEL: "RVM-VDS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Service de disque virtuel.) -- C:\Windows\system32\vds.exe
O87 - FAEL: "RVM-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RVM-VDSLDR-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Virtual Disk Service Loader.) -- C:\Windows\system32\vdsldr.exe
O87 - FAEL: "RVM-VDS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Service de disque virtuel.) -- C:\Windows\system32\vds.exe
O87 - FAEL: "PNRPMNRS-SSDPSrv-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "PNRPMNRS-SSDPSrv-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "PNRPMNRS-PNRP-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "PNRPMNRS-PNRP-In-UDP" | In - None - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "Microsoft-Windows-HomeGroup-ProvSvc-UDP3540-Out" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "Microsoft-Windows-HomeGroup-ProvSvc-UDP3540-In" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "Microsoft-Windows-HomeGroup-ProvSvc-TCP3587-Out" | Out - Private - P6 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "Microsoft-Windows-HomeGroup-ProvSvc-TCP3587-In" | In - Private - P6 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMPNSS-UPnP-Out-TCP" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMPNSS-Out-TCP" |Out - Public - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.) =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-In-TCP" |In - Public - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.) =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-Out-UDP" |Out - Public - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.) =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-In-UDP" |In - Public - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.) =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-WMP-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-WMP-Out-UDP" | Out - Public - P17 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-WMP-In-UDP" | In - Public - P17 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-SSDPSrv-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMPNSS-SSDPSrv-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMPNSS-QWave-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMPNSS-QWave-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMPNSS-QWave-Out-UDP" | Out - Public - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMPNSS-QWave-In-UDP" | In - Public - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMPNSS-Out-TCP-NoScope" |Out - Domain - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.) =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-In-TCP-NoScope" |In - Domain - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.) =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-Out-UDP-NoScope" |Out - Domain - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.) =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-In-UDP-NoScope" |In - Domain - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.) =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-WMP-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-WMP-Out-UDP-NoScope" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-WMP-In-UDP-NoScope" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-QWave-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMPNSS-QWave-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMPNSS-QWave-Out-UDP-NoScope" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMPNSS-QWave-In-UDP-NoScope" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMP-Out-TCP" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe =>.Microsoft Corporation
O87 - FAEL: "WMP-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe =>.Microsoft Corporation
O87 - FAEL: "WMP-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe =>.Microsoft Corporation
O87 - FAEL: "SNMPTRAP-In-UDP-NoScope" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Interruption SNMP.) -- C:\Windows\system32\snmptrap.exe
O87 - FAEL: "SNMPTRAP-In-UDP" | In - Public - P17 - FALSE | .(.Microsoft Corporation - Interruption SNMP.) -- C:\Windows\system32\snmptrap.exe
O87 - FAEL: "WPDMTP-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Windows Driver Foundation - Processus h�te de l�infrastructure de pilotes.) -- C:\Windows\system32\wudfhost.exe
O87 - FAEL: "WPDMTP-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Windows Driver Foundation - Processus h�te de l�infrastructure de pilotes.) -- C:\Windows\system32\wudfhost.exe
O87 - FAEL: "WPDMTP-SSDPSrv-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WPDMTP-SSDPSrv-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WPDMTP-UPnPHost-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WPDMTP-UPnP-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "{A9B005F5-4A98-4231-B86E-27A9532444A6}" | In - None - P6 - TRUE | .(.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe =>.Skype Technologies S.A.
O87 - FAEL: "{895BB733-DF6B-4AE8-A27E-4E4EE8C96ABB}" | In - None - P6 - TRUE | .(.Microsoft Corporation - Windows Live Communications Platform.) -- C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
O87 - FAEL: "{472F5A56-21B1-4B1F-89F2-F5712BB9F81D}" |In - None - P6 - TRUE | .(...) -- C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe (.not file.)
O87 - FAEL: "{635B4DE1-1F2E-41C9-BAFA-B123346A9A03}" | In - None - P6 - TRUE | .(.Microsoft Corporation - Mesh Operating Environment.) -- C:\Program Files (x86)\Windows Live\Mesh\MOE.exe
O87 - FAEL: "MCX-SSDPSrv-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MCX-SSDPSrv-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MCX-In-TCP" | In - None - P6 - FALSE | .(.Microsoft Corporation - Windows Media Center.) -- C:\Windows\ehome\ehshell.exe =>.Microsoft Corporation
O87 - FAEL: "MCX-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Windows Media Center.) -- C:\Windows\ehome\ehshell.exe =>.Microsoft Corporation
O87 - FAEL: "MCX-QWave-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MCX-QWave-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MCX-QWave-In-TCP" | In - None - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MCX-QWave-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MCX-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Windows Media Center.) -- C:\Windows\ehome\ehshell.exe =>.Microsoft Corporation
O87 - FAEL: "MCX-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Windows Media Center.) -- C:\Windows\ehome\ehshell.exe =>.Microsoft Corporation
O87 - FAEL: "MCX-MCX2SVC-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MCX-Prov-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - MCX2 Provisioning library.) -- C:\Windows\ehome\mcx2prov.exe
O87 - FAEL: "MCX-PlayTo-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MCX-McrMgr-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Media Center Extender Manager.) -- C:\Windows\ehome\mcrmgr.exe
O87 - FAEL: "MCX-PlayTo-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MCX-FDPHost-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NetPres-In-TCP-NoScope" |In - Domain - P6 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.)
O87 - FAEL: "NetPres-Out-TCP-NoScope" |Out - Domain - P6 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.)
O87 - FAEL: "NetPres-WSD-In-UDP" |In - None - P17 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.)
O87 - FAEL: "NetPres-WSD-Out-UDP" |Out - None - P17 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.)
O87 - FAEL: "NetPres-In-TCP" |In - Public - P6 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.)
O87 - FAEL: "NetPres-Out-TCP" |Out - Public - P6 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.)
O87 - FAEL: "{85808EBD-2299-42F8-8140-753889E06C0A}" |In - Domain - P6 - TRUE | .(...) -- C:\Windows\system32\ezSharedSvcHost.exe (.not file.)
O87 - FAEL: "{975EBF65-F4CB-4EE5-868C-D9E86C00633D}" | In - Domain - P6 - TRUE | .(.EasyBits Software AS - EasyBits Magic Desktop for Kids.) -- C:\Program Files (x86)\EasyBits For Kids\ezDesktop.exe =>.EasyBits Software AS
O87 - FAEL: "{853ACE81-23E3-4B25-9001-6099BCC66940}" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe =>.Microsoft Corporation
O87 - FAEL: "{F9C7CE39-F711-4E4B-BC56-25C1E128BCDC}" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe =>.Microsoft Corporation
O87 - FAEL: "{4B062C46-A610-47C4-A80F-4258AB8CE1CA}" | Out - Private - P6 - TRUE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe =>.Microsoft Corporation
O87 - FAEL: "{D0C870BA-BA46-4BAC-BB16-E740025098E4}" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "{E4DFE25E-6D28-4FFD-AC73-895C3E3567BE}" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "{6F142AA8-02EA-479A-B735-592BC3F1E7CE}" | In - Private - P6 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "{03EC4B68-CB75-4CB6-9AC4-C612367C6E7E}" | Out - Private - P6 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "{DE4CC971-2818-45EB-A539-A7596ED68E02}" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "{45929AFF-BDE3-4F49-BD6D-5C54C76DD390}" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "{9440C023-7B5B-4108-85C9-23CC61F55F70}" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe =>.Microsoft Corporation
O87 - FAEL: "{643CC1C3-8A9B-49B5-9199-EE5F799056A9}" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe =>.Microsoft Corporation
O87 - FAEL: "{B74208DA-6DAD-4A7A-ABA8-0992E182EFE5}" | Out - Private - P6 - TRUE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe =>.Microsoft Corporation
O87 - FAEL: "{21BC174F-90CB-4F55-A91E-23D3061352CF}" |In - Private - P17 - TRUE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.) =>.Microsoft Corporation
O87 - FAEL: "{CEE58BFB-3AD2-4712-94D9-6CF06A306FE4}" |Out - Private - P17 - TRUE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.) =>.Microsoft Corporation
O87 - FAEL: "{4FCA990F-47AB-4215-9C1C-F2ED0E0E27E2}" |In - Private - P6 - TRUE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.) =>.Microsoft Corporation
O87 - FAEL: "{39F4A1DE-99D1-4034-B945-797E9CD4015B}" |Out - Private - P6 - TRUE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.) =>.Microsoft Corporation
O87 - FAEL: "{E45D2B11-BB40-432A-8139-547B8A419562}" | Out - Private - P6 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "{FDE64085-5BDB-4B83-B7D9-BEBF20753008}" | In - Private - P6 - TRUE | .(.Microsoft Corporation - Application sous-syst�me spouleur.) -- C:\Windows\system32\spoolsv.exe
O87 - FAEL: "{17CEB220-4B80-4013-B02F-6850780D867E}" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "{F88DDFB3-7DA1-4A54-9FFB-33061201AC2A}" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "{913F718E-32FA-4397-8967-A7AF6C8338C3}" | In - Private - P6 - TRUE | .(.Microsoft Corporation - Microsoft OneNote.) -- C:\Program Files (x86)\Microsoft Office\Office14\ONENOTE.exe =>.Microsoft Corporation
O87 - FAEL: "{B2646694-F821-4BC5-8E8A-CAE3E9EDC54B}" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Microsoft OneNote.) -- C:\Program Files (x86)\Microsoft Office\Office14\ONENOTE.exe =>.Microsoft Corporation
O87 - FAEL: "RemoteDesktop-UserMode-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Processus h�te pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "{184113B1-07E0-428A-8422-A5E93B8C816C}" |In - Private - P6 - TRUE | .(...) -- C:\ProgramData\Battle.net\Agent\Agent.1363\Agent.exe (.not file.)
O87 - FAEL: "{0BEAE84D-7FA8-412C-805D-159F03A16F6C}" |In - Private - P17 - TRUE | .(...) -- C:\ProgramData\Battle.net\Agent\Agent.1363\Agent.exe (.not file.)
O87 - FAEL: "{50C3ECEB-5EE0-4F72-9C62-A63B7AB2DCD4}" |In - Private - P6 - TRUE | .(...) -- E:\Network\EpsonNetSetup\ENEasyApp.exe (.not file.)
O87 - FAEL: "{5C22FA0D-1B7E-4A4E-AB6B-1F0A9FA0577E}" |In - Private - P17 - TRUE | .(...) -- E:\Network\EpsonNetSetup\ENEasyApp.exe (.not file.)
O87 - FAEL: "{3C5F1EA7-BE85-4837-9B08-50A29743A0D6}" |In - Private - P6 - TRUE | .(...) -- C:\ProgramData\Battle.net\Agent\Agent.1544\Agent.exe (.not file.)
O87 - FAEL: "{A9EAFD33-E2B4-42DA-B74D-DAD873ABADE2}" |In - Private - P17 - TRUE | .(...) -- C:\ProgramData\Battle.net\Agent\Agent.1544\Agent.exe (.not file.)
O87 - FAEL: "TCP Query User{B4EC001B-459C-46F8-A785-4636C35991D7}C:\program files (x86)\epson software\event manager\eeventmanager.exe" | In - Private - P6 - TRUE | .(.SEIKO EPSON CORPORATION.) -- C:\program files (x86)\epson software\event manager\eeventmanager.exe
O87 - FAEL: "UDP Query User{36C3553D-D928-468B-A876-F758C49F98D7}C:\program files (x86)\epson software\event manager\eeventmanager.exe" | In - Private - P17 - TRUE | .(.SEIKO EPSON CORPORATION.) -- C:\program files (x86)\epson software\event manager\eeventmanager.exe
O87 - FAEL: "TCP Query User{D6FBDE13-A89C-4632-A5F6-2397163E5017}C:\program files (x86)\epson software\event manager\eeventmanager.exe" | In - Public - P6 - TRUE | .(.SEIKO EPSON CORPORATION.) -- C:\program files (x86)\epson software\event manager\eeventmanager.exe
O87 - FAEL: "UDP Query User{64A9542A-4C6B-4464-9BE7-C4650AD96215}C:\program files (x86)\epson software\event manager\eeventmanager.exe" | In - Public - P17 - TRUE | .(.SEIKO EPSON CORPORATION.) -- C:\program files (x86)\epson software\event manager\eeventmanager.exe
O87 - FAEL: "TCP Query User{CCC209D0-D923-4ABD-A37E-DF21314C0BD0}C:\ps2\planetside2.exe" | In - Private - P6 - TRUE | .(...) -- C:\ps2\planetside2.exe
O87 - FAEL: "UDP Query User{B50D7E42-C13A-448F-9435-9C93D06CD076}C:\ps2\planetside2.exe" | In - Private - P17 - TRUE | .(...) -- C:\ps2\planetside2.exe
O87 - FAEL: "{406A304F-BA52-486F-B7B6-2E20700A34AE}" |In - Private - P6 - TRUE | .(...) -- C:\ProgramData\Battle.net\Agent\Agent.1637\Agent.exe (.not file.)
O87 - FAEL: "{7B5ABAB3-FA94-47CA-B836-383225CB2E8A}" |In - Private - P17 - TRUE | .(...) -- C:\ProgramData\Battle.net\Agent\Agent.1637\Agent.exe (.not file.)
O87 - FAEL: "{01BCD457-F584-4B2F-9108-1D3A8C1CC346}" | In - None - P17 - TRUE | .(.Apple Inc. - WebKit2WebProcess.exe.) -- C:\Program Files (x86)\Common Files\Apple\Apple Application Support\WebKit2WebProcess.exe
O87 - FAEL: "{44F58B7B-0BAC-4DF4-A8B3-D383A7A8C563}" | In - Private - P6 - TRUE | .(.Apple Inc. - Bonjour Service.) -- C:\Program Files\Bonjour\mDNSResponder.exe
O87 - FAEL: "{F83C0BEE-6AD9-49FE-A4B8-0873AB3B6824}" | In - Private - P17 - TRUE | .(.Apple Inc. - Bonjour Service.) -- C:\Program Files\Bonjour\mDNSResponder.exe
O87 - FAEL: "{F85B6E5A-1CA4-4A3C-A7E4-5BE4B869CC45}" | In - Private - P6 - TRUE | .(.Apple Inc. - Bonjour Service.) -- C:\Program Files (x86)\Bonjour\mDNSResponder.exe
O87 - FAEL: "{DA54A5AF-ABE2-4A47-ADE7-08BA2A127BEE}" | In - Private - P17 - TRUE | .(.Apple Inc. - Bonjour Service.) -- C:\Program Files (x86)\Bonjour\mDNSResponder.exe
O87 - FAEL: "{4DC2A8DB-E062-46CE-9683-615E19B52629}" | In - None - P17 - TRUE | .(.Apple Inc. - iTunes.) -- C:\Program Files (x86)\iTunes\iTunes.exe
O87 - FAEL: "{D8291648-ED6F-4F02-A3BE-6CE63E2F4841}" |In - Private - P6 - TRUE | .(...) -- C:\ProgramData\Battle.net\Agent\Agent.1675\Agent.exe (.not file.)
O87 - FAEL: "{5AE3C3AE-92CE-4947-9377-C483711621E2}" |In - Private - P17 - TRUE | .(...) -- C:\ProgramData\Battle.net\Agent\Agent.1675\Agent.exe (.not file.)
O87 - FAEL: "{6440B1E3-72F0-41B7-97B5-AB74EB1CA666}" | In - None - P17 - TRUE | .(.Skype Limited - Facebook Video Calling.) -- C:\Users\QUENTIN\AppData\Local\Facebook\Video\Skype\FacebookVideoCalling.exe
O87 - FAEL: "{187E493D-D5D6-4CA2-BB9A-6EB17FA0BB29}" |In - Private - P6 - TRUE | .(...) -- C:\ProgramData\Battle.net\Agent\Agent.1737\Agent.exe (.not file.)
O87 - FAEL: "{D15D963E-F917-4DA3-8D72-39AFBE272BB6}" |In - Private - P17 - TRUE | .(...) -- C:\ProgramData\Battle.net\Agent\Agent.1737\Agent.exe (.not file.)
O87 - FAEL: "TCP Query User{34A3462C-6F47-4043-8D39-E0D333111E3F}C:\program files (x86)\mjcamtool\ipcamera.exe" | In - Private - P6 - TRUE | .(.Pas de propri�taire - IPCamera MFC Application.) -- C:\program files (x86)\mjcamtool\ipcamera.exe
O87 - FAEL: "UDP Query User{9D2ED459-E8FE-4BE9-9947-74EDA86EA947}C:\program files (x86)\mjcamtool\ipcamera.exe" | In - Private - P17 - TRUE | .(.Pas de propri�taire - IPCamera MFC Application.) -- C:\program files (x86)\mjcamtool\ipcamera.exe
O87 - FAEL: "{D97882C8-2B29-42CA-98E3-62B6A4D89179}" |In - Private - P6 - TRUE | .(...) -- C:\ProgramData\Battle.net\Agent\Agent.2000\Agent.exe (.not file.)
O87 - FAEL: "{F415523F-6F4D-4D80-AD2A-136C1461062E}" |In - Private - P17 - TRUE | .(...) -- C:\ProgramData\Battle.net\Agent\Agent.2000\Agent.exe (.not file.)
O87 - FAEL: "TCP Query User{1AF9C761-BD21-42E0-945D-CB6BEA284BD1}C:\tera\tera-launcher.exe" |In - Private - P6 - TRUE | .(...) -- C:\tera\tera-launcher.exe (.not file.)
O87 - FAEL: "UDP Query User{EEC24730-3A08-4AA6-B081-C26B8F1C74AA}C:\tera\tera-launcher.exe" |In - Private - P17 - TRUE | .(...) -- C:\tera\tera-launcher.exe (.not file.)
O87 - FAEL: "{0424D06D-B31D-4467-AE26-77AD0949E95E}" | In - Private - P6 - TRUE | .(.Blizzard Entertainment - Battle.net Update Agent.) -- C:\ProgramData\Battle.net\Agent\Agent.2006\Agent.exe
O87 - FAEL: "{2B040589-F3F6-437D-A701-35575EEEA708}" | In - Private - P17 - TRUE | .(.Blizzard Entertainment - Battle.net Update Agent.) -- C:\ProgramData\Battle.net\Agent\Agent.2006\Agent.exe
O87 - FAEL: "{A2AC68B7-84B9-4813-885F-5C67563B3786}" | In - Private - P6 - TRUE | .(.Blizzard Entertainment - Battle.net Update Agent.) -- C:\ProgramData\Battle.net\Agent\Agent.2045\Agent.exe
O87 - FAEL: "{08E62E1D-BE0A-40AE-97D5-1CCAF984ED7F}" | In - Private - P17 - TRUE | .(.Blizzard Entertainment - Battle.net Update Agent.) -- C:\ProgramData\Battle.net\Agent\Agent.2045\Agent.exe
O87 - FAEL: "TCP Query User{1F0BE379-8E1D-401C-A783-90805A55FBBC}C:\users\quentin\appdata\local\akamai\netsession_win.exe" | In - Private - P6 - TRUE | .(.Akamai Technologies, Inc..) -- C:\users\quentin\appdata\local\akamai\netsession_win.exe
O87 - FAEL: "UDP Query User{197EB751-38F5-433D-B4DD-1A0AEC0B1FE3}C:\users\quentin\appdata\local\akamai\netsession_win.exe" | In - Private - P17 - TRUE | .(.Akamai Technologies, Inc..) -- C:\users\quentin\appdata\local\akamai\netsession_win.exe
O87 - FAEL: "TCP Query User{2E01B3AA-C294-49CD-A9AB-C95D3A91B1A4}C:\users\quentin\appdata\local\akamai\netsession_win.exe" | In - Public - P6 - TRUE | .(.Akamai Technologies, Inc..) -- C:\users\quentin\appdata\local\akamai\netsession_win.exe
O87 - FAEL: "UDP Query User{5FC239D7-2327-4D7B-92AC-A12858A5EA63}C:\users\quentin\appdata\local\akamai\netsession_win.exe" | In - Public - P17 - TRUE | .(.Akamai Technologies, Inc..) -- C:\users\quentin\appdata\local\akamai\netsession_win.exe
O87 - FAEL: "TCP Query User{57CE9C91-1065-4F96-8237-14EAEFAA6FCC}C:\users\quentin\appdata\local\apps\2.0\4dg1a4e2.3d1\55tcza8c.oen\laun...app_59711684aa47878d_0001.0022_af672cd4a96cf990\launcher.exe" | In - Private - P6 - TRUE | .(.Ubisoft.) -- C:\users\quentin\appdata\local\apps\2.0\4dg1a4e2.3d1\55tcza8c.oen\laun...app_59711684aa47878d_0001.0022_af672cd4a96cf990\launcher.exe
O87 - FAEL: "UDP Query User{F5D43F5C-AFD3-420F-81DD-A7F296FE485C}C:\users\quentin\appdata\local\apps\2.0\4dg1a4e2.3d1\55tcza8c.oen\laun...app_59711684aa47878d_0001.0022_af672cd4a96cf990\launcher.exe" | In - Private - P17 - TRUE | .(.Ubisoft.) -- C:\users\quentin\appdata\local\apps\2.0\4dg1a4e2.3d1\55tcza8c.oen\laun...app_59711684aa47878d_0001.0022_af672cd4a96cf990\launcher.exe
O87 - FAEL: "{2618ABC0-7BBE-4490-BF4E-F49428895263}" |In - None - P17 - TRUE | .(...) -- C:\Program Files (x86)\Iminent\Iminent.exe (.not file.) =>Adware.IMBooster
O87 - FAEL: "{72C25E42-BC6B-47DF-9668-8F930C1C2258}" |In - None - P17 - TRUE | .(...) -- C:\Program Files (x86)\Iminent\Iminent.Messengers.exe (.not file.) =>Adware.IMBooster
O87 - FAEL: "TCP Query User{D94C1E38-568C-4AC6-93C1-08422290093F}C:\users\quentin\appdata\local\apps\2.0\4dg1a4e2.3d1\55tcza8c.oen\laun...app_59711684aa47878d_0001.0022_9b05f8bc24ab37d0\launcher.exe" | In - Private - P6 - TRUE | .(.Ubisoft.) -- C:\users\quentin\appdata\local\apps\2.0\4dg1a4e2.3d1\55tcza8c.oen\laun...app_59711684aa47878d_0001.0022_9b05f8bc24ab37d0\launcher.exe
O87 - FAEL: "UDP Query User{DA31071F-0F12-4331-AF90-D6281C5D7592}C:\users\quentin\appdata\local\apps\2.0\4dg1a4e2.3d1\55tcza8c.oen\laun...app_59711684aa47878d_0001.0022_9b05f8bc24ab37d0\launcher.exe" | In - Private - P17 - TRUE | .(.Ubisoft.) -- C:\users\quentin\appdata\local\apps\2.0\4dg1a4e2.3d1\55tcza8c.oen\laun...app_59711684aa47878d_0001.0022_9b05f8bc24ab37d0\launcher.exe
O87 - FAEL: "{4E27137F-B17C-4D79-AA4D-74E2763CB5E6}" | In - Private - P6 - TRUE | .(...) -- C:\Windows\SysWOW64\PnkBstrA.exe
O87 - FAEL: "{919B604A-7148-448A-8B44-5690BABFE2EB}" | In - Private - P17 - TRUE | .(...) -- C:\Windows\SysWOW64\PnkBstrA.exe
O87 - FAEL: "{E21E9013-534A-4C65-B5CA-CD627057B0EA}" | In - Private - P6 - TRUE | .(...) -- C:\Windows\SysWOW64\PnkBstrB.exe
O87 - FAEL: "{C1CF9DDF-64D1-4469-9F17-C53A51F6D0B5}" | In - Private - P17 - TRUE | .(...) -- C:\Windows\SysWOW64\PnkBstrB.exe
O87 - FAEL: "TCP Query User{C9C956D7-04E5-4B97-8419-71FDCEC7341E}C:\ubisoft\ghost recon online\pdc-live\ghostrecononline.exe" | In - Private - P6 - TRUE | .(...) -- C:\ubisoft\ghost recon online\pdc-live\ghostrecononline.exe
O87 - FAEL: "UDP Query User{F383486F-3F34-4B51-9A90-A37D9BCA6D75}C:\ubisoft\ghost recon online\pdc-live\ghostrecononline.exe" | In - Private - P17 - TRUE | .(...) -- C:\ubisoft\ghost recon online\pdc-live\ghostrecononline.exe
O87 - FAEL: "{88239539-B93C-4245-9144-09CD1F40AA4D}" | In - None - P17 - TRUE | .(.Hewlett-Packard Company - HP Device Detection.) -- C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPDeviceDetection3.exe
O87 - FAEL: "{36DF543F-AA96-4099-AE7B-1A16489AC62E}" | In - Private - P6 - TRUE | .(.DragonflyGames, Inc. - Special Force 2.) -- C:\Program Files (x86)\GameforgeLive\Games\FRA_fra\S.K.I.L.L\Binaries\Win32\sf2.exe
O87 - FAEL: "{AFA900A8-FC75-4DDD-A4B5-0A6705B2E677}" | In - Private - P17 - TRUE | .(.DragonflyGames, Inc. - Special Force 2.) -- C:\Program Files (x86)\GameforgeLive\Games\FRA_fra\S.K.I.L.L\Binaries\Win32\sf2.exe
~ Firewall: 250 Scanned in 00mn 13s



---\\ Enum�re les codes produits des logiciels (PUC) (O90)
O90 - PUC: "0000009F810000000000709475387300" . (.ABBYY FineReader 9.0 Sprint.) -- C:\Windows\Installer\{F9000000-0018-0000-0000-074957833700}\ARPPRODUCTICON.exe
O90 - PUC: "0212CE3624715264AA746C8AEA9C6CC4" . (.Apple Application Support.) -- C:\Windows\Installer\{63EC2120-1742-4625-AA47-C6A8AEC9C64C}\WinInstall.ico
O90 - PUC: "0694AF70830BBE9498B1F95939A05A44" . (.HP Customer Experience Enhancements.) -- C:\Windows\Installer\{07FA4960-B038-49EB-891B-9F95930AA544}\ARPPRODUCTICON.exe
O90 - PUC: "0706A2503057A5AE09308FA9EC635C9C" . (.Catalyst Control Center InstallProxy.) -- C:\Windows\Installer\{052A6070-7503-EA5A-9003-F89ACE36C5C9}\ARPPRODUCTICON.exe
O90 - PUC: "076CFAAAB965F2A4284B2449E5D03EFE" . (.Windows Live Writer.) -- C:\Windows\Installer\{AAAFC670-569B-4A2F-82B4-42945E0DE3EF}\ApplicationIcon.ico
O90 - PUC: "0A99F4F8FDCD15AB9939C80175B52D5A" . (.Catalyst Control Center Profiles Mobile.) -- C:\Windows\Installer\{8F4F99A0-DCDF-BA51-9993-8C10575BD2A5}\ARPPRODUCTICON.exe
O90 - PUC: "0DD34329FFC2445A22BD7D343819A6F0" . (.Catalyst Control Center.) -- C:\Windows\Installer\{92343DD0-2CFF-A544-22DB-D74383916A0F}\ARPPRODUCTICON.exe
O90 - PUC: "109E183E3250C32478589CD3AC3BF084" . (.Catalyst Control Center Graphics Previews Common.) -- C:\Windows\Installer\{E381E901-0523-423C-8785-C93DCAB30F48}\ARPPRODUCTICON.exe
O90 - PUC: "114202EE62C28E947948B11CBD7FED69" . (.HP Support Assistant.) -- C:\Windows\Installer\{EE202411-2C26-49E8-9784-1BC1DBF7DE96}\ARPPRODUCTICON.exe =>.Hewlett-Packard Co
O90 - PUC: "11F12B5E3396B0E42AC597363E0CD711" . (.Windows Live Messenger.) -- C:\Windows\Installer\{E5B21F11-6933-4E0B-A25C-7963E3C07D11}\MsblIco.Exe
O90 - PUC: "16B3DA692EAE2E11E9278BCAF689CC3E" . (.Google�Earth.) -- C:\Windows\Installer\{96AD3B61-EAE2-11E2-9E72-B8AC6F98CCE3}\ARPPRODUCTICON.exe
O90 - PUC: "1D034B0FAA6BD374B960AAD30DF10D8B" . (.Microsoft SQL Server 2005 Compact Edition [ENU].) -- C:\Windows\Installer\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}\ProductIcon
O90 - PUC: "225748A5C57350D4DBD3884C05CC40F7" . (.HP Launch Box.) -- C:\Windows\Installer\{5A847522-375C-4D05-BD3D-88C450CC047F}\_853F67D554F05449430E7E.exe
O90 - PUC: "2B0163E6D0340BE4183EB2758E9BEDD8" . (.Bonjour.) -- C:\Windows\Installer\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}\Bonjour.ico
O90 - PUC: "2C1A65825C073CE4FA7F5E5BE155032A" . (.HP Client Services.) -- C:\Windows\Installer\{2856A1C2-70C5-4EC3-AFF7-E5B51E5530A2}\ARPPRODUCTICON.exe
O90 - PUC: "2CC6361CEDC962DBBAE740EE0C85A6FC" . (.ccc-utility64.) -- C:\Windows\Installer\{C1636CC2-9CDE-BD26-AB7E-04EEC0586ACF}\ARPPRODUCTICON.exe
O90 - PUC: "3D0DCE8B80EA19846B7C239FB657BEC6" . (.EPSON Printer Finder.) -- C:\Windows\Installer\{B8ECD0D3-AE08-4891-B6C7-32F96B75EB6C}\ARPPRODUCTICON.exe
O90 - PUC: "3E9A223DB85706D47A4C568CF83D870D" . (.Bing Bar.) -- C:\Windows\Installer\{D322A9E3-758B-4D60-A7C4-65C88FD378D0}\icon_installer_ico =>Toolbar.Bing
O90 - PUC: "46125661F08D6EE4096CE2D8D56090A2" . (.HP Documentation.) -- C:\Windows\Installer\{16652164-D80F-4EE6-90C6-2E8D5D06092A}\NotebookDocs.exe
O90 - PUC: "46B5A9879DD95AB419A50FCFA0B1B7EF" . (.Apple Software Update.) -- C:\Windows\Installer\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}\Installer.ico =>.Apple Inc
O90 - PUC: "46E5DCBD973784644944A85685CD6B41" . (.HP Recovery Manager.) -- C:\Windows\Installer\{DBCD5E64-7379-4648-9444-8A6558DCB614}\_6FEFF9B68218417F98F549.exe
O90 - PUC: "6328BEF9DC47491478718377E10DFE9E" . (.Catalyst Control Center - Branding.) -- C:\Windows\Installer\{9FEB8236-74CD-4194-8717-38771ED0EFE9}\ARPPRODUCTICON.exe
O90 - PUC: "68AB67CA7DA76301B744BA0000000010" . (.Adobe Reader XI (11.0.05) - Fran�ais.) -- C:\Windows\Installer\{AC76BA86-7AD7-1036-7B44-AB0000000001}\SC_Reader.ico
O90 - PUC: "69A9FA1138D6B3C4D8BC61AEA253E8F3" . (.HP CoolSense.) -- C:\Windows\Installer\{11AF9A96-6D83-4C3B-8DCB-16EA2A358E3F}\_853F67D554F05449430E7E.exe
O90 - PUC: "701043F6AA9F6C745BC43C1AF91155F3" . (.Hewlett-Packard ACLM.NET v1.2.1.1.) -- C:\Windows\Installer\{6F340107-F9AA-47C6-B54C-C3A19F11553F}\ARPPRODUCTICON.exe
O90 - PUC: "7B65D4CC81F6B0747843BADC57CB4F1F" . (.HP Auto.) -- C:\Windows\Installer\{CC4D56B7-6F18-470B-8734-ABCD75BCF4F1}\ARPPRODUCTICON.exe
O90 - PUC: "7C43C21609E58D74B9C5F017D78D7262" . (.swMSM.) -- C:\Windows\Installer\{612C34C7-5E90-47D8-9B5C-0F717DD82726}\ARPPRODUCTICON.exe
O90 - PUC: "883658EADAFA357418FD9DB6910D1AC7" . (.HP Setup Manager.) -- C:\Windows\Installer\{AE856388-AFAD-4753-81DF-D96B19D0A17C}\ARPPRODUCTICON.exe
O90 - PUC: "8994BF104C33134458DE70E9E3FE7ED5" . (.YouCam.) -- C:\Windows\Installer\{01FB4998-33C4-4431-85ED-079E3EEFE75D}\ARPPRODUCTICON.exe
O90 - PUC: "89A71B350FB5CB04AAFF58A0539757CA" . (.HP Quick Launch.) -- C:\Windows\Installer\{53B17A98-5BF0-40BC-AAFF-850A357975AC}\_853F67D554F05449430E7E.exe
O90 - PUC: "8D4D77630E5ECF948BE66045C10FB0EB" . (.opensource.) -- C:\Windows\Installer\{3677D4D8-E5E0-49FC-B86E-06541CF00BBE}\ARPPRODUCTICON.exe
O90 - PUC: "9B5ECB8DFC76F3F439EAA3CC57C427BE" . (.HP Power Manager.) -- C:\Windows\Installer\{D8BCE5B9-67CF-4F3F-93AE-3ACC754C72EB}\_853F67D554F05449430E7E.exe
O90 - PUC: "A28B4D68DEBAA244EB686953B7074FEF" . (.Ask Toolbar.) -- C:\Windows\Installer\{86D4B82A-ABED-442A-BE86-96357B70F4FE}\ARPPRODUCTICON.exe =>Toolbar.Ask
O90 - PUC: "A3CF78C1349D08B7A97F9EB77A36389E" . (.Catalyst Control Center Localization All.) -- C:\Windows\Installer\{1C87FC3A-D943-7B80-9AF7-E97BA76383E9}\ARPPRODUCTICON.exe
O90 - PUC: "A96DB1DE3E70C814191F8D65855218FB" . (.HP On Screen Display.) -- C:\Windows\Installer\{ED1BD69A-07E3-418C-91F1-D856582581BF}\_853F67D554F05449430E7E.exe
O90 - PUC: "AB251EC861D11E1168D789B41EF571E4" . (.Evernote v. 4.5.2.) -- C:\Windows\Installer\{8CE152BA-1D16-11E1-867D-984BE15F174E}\Evernote.ico
O90 - PUC: "AF5A5D893AA1EBC42BC67A732EF0A8D6" . (.HP Software Framework.) -- C:\Windows\Installer\{98D5A5FA-1AA3-4CBE-B26C-A737E20F8A6D}\app_1.exe
O90 - PUC: "B05CCF18F0593604E8A49DC9AAF4BBF1" . (.Iminent.) -- C:\Windows\Installer\{81FCC50B-950F-4063-8E4A-D99CAA4FBB1F}\imbooster.ico =>Adware.IMBooster
O90 - PUC: "B90B9F154EF2A3B826A8C060452E35FA" . (.AMD Catalyst Install Manager.) -- C:\Windows\Installer\{51F9B09B-2FE4-8B3A-628A-0C0654E253AF}\ARPPRODUCTICON.exe
O90 - PUC: "BC993E9FF640DF546AF7FC93E912824E" . (.HP 3D DriveGuard.) -- C:\Windows\Installer\{F9E399CB-046F-45FD-A67F-CF399E2128E4}\controlPanelIcon.exe
O90 - PUC: "BF58906567B412141998A7C2CD87686D" . (.Kaspersky Internet Security 2013.) -- C:\Windows\Installer\{560985FB-4B76-4121-9189-7A2CDC7886D6}\setup2.ico
O90 - PUC: "CA3DC6DEB61602B4CB3FE636B7295ADA" . (.HP Security Assistant.) -- C:\Windows\Installer\{ED6CD3AC-616B-4B20-BCF3-6E637B92A5AD}\_853F67D554F05449430E7E.exe
O90 - PUC: "D276F30548C6A844F8F8B43CA58C4314" . (.AMD APP SDK Runtime.) -- C:\Windows\Installer\{503F672D-6C84-448A-8F8F-4BC35AC83441}\ARPPRODUCTICON.exe
O90 - PUC: "D7314F9862C648A4DB8BE2A5B47BE100" . (.Microsoft Silverlight.) -- c:\Windows\Installer\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}\ARPIcon
O90 - PUC: "D8EF64479F1C24D4AAEAD5CB5E68506A" . (.Apple Mobile Device Support.) -- C:\Windows\Installer\{7446FE8D-C1F9-4D42-AAAE-5DBCE58605A6}\Installer.ico
O90 - PUC: "E7F34DE86F8A8984FA116B51F8E2FD49" . (.Epson Event Manager.) -- C:\Windows\Installer\{8ED43F7E-A8F6-4898-AF11-B6158F2EDF94}\icon.exe
O90 - PUC: "E7FF67E4ABEA78C47B88DC745E24B5D9" . (.Skype� 6.9.) -- C:\Windows\Installer\{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}\SkypeIcon.exe
O90 - PUC: "EA2B394116202D741BAA4FAD0D6F4CB8" . (.iTunes.) -- C:\Windows\Installer\{1493B2AE-0261-47D2-B1AA-F4DAD0F6C48B}\Installer.ico
O90 - PUC: "FA9D7E5F6F0603A4783EE49AD423C21E" . (.HP Setup.) -- C:\Windows\Installer\{F5E7D9AF-60F6-4A30-87E3-4EA94D322CE1}\ARPPRODUCTICON.exe
~ Update Products: 156 Scanned in 00mn 00s



---\\ Recherche des packages WindowsInstaller (WIS) (O93) (NTFS)
[MD5.A91D34375B4647FF0F57E8076EC72B1B] [WIS][08/08/2012] (.Babylon Ltd - BabylonObjectInstaller.) -- C:\Windows\Installer\12010d9a.msi [343040] =>Toolbar.Babylon
[MD5.76A80F4FE7222D1F8BC3B4282B3A3265] [WIS][12/10/2013] (.Skype Technologies S.A. - Skype.) -- C:\Windows\Installer\1c47c.msi [22413312]
[MD5.AA15F9757DE41CD2C96DB682DAA6CB27] [WIS][04/12/2012] (.Trimble Navigation Limited - SketchUp 8 Installer.) -- C:\Windows\Installer\2bfebef5.msi [51462144]
[MD5.C4D0F8A5F9EC3FA1D78645A73611B18F] [WIS][06/10/2013] (.Ask.com - Blank Project Template.) -- C:\Windows\Installer\5c8347.msi [4045824]
[MD5.729CD9BDFEF2A0BADBBF9D71414BC52E] [WIS][11/10/2013] (.Iminent - Iminent.) -- C:\Windows\Installer\9fede.msi [10227712] =>Adware.IMBooster
~ WIS: 159 Scanned in 00mn 38s



---\\ Etat g�n�ral des services not Microsoft (EGS) (SR=Running, SS=Stopped)
SR - | Auto 11/10/2013 143488 | C:\Program Files (x86)\optimi~1\OptProCrash.exe (70e6ca8c) . (...) - C:\Program Files (x86)\Optimizer Pro\OptProCrash.exe =>PUP.OptimizerPro
SR - | Auto 14/05/2009 759048 | (ABBYY.Licensing.FineReader.Sprint.9.0) . (.ABBYY.) - C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe
SR - | Auto 05/09/2013 65640 | (AdobeARMservice) . (.Adobe Systems Incorporated.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
SS - | Demand 11/10/2013 257416 | (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
SR - | Auto 18/01/2012 235520 | (AMD External Events Utility) . (.AMD.) - C:\Windows\System32\atiesrxx.exe
SR - | Auto 11/08/2012 55184 | (Apple Mobile Device) . (.Apple Inc..) - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
SR - | Auto 11/10/2013 356128 | (AVP) . (.Kaspersky Lab ZAO.) - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2013\avp.exe
SS - | Auto 23/07/2013 193696 | (BBSvc) . (.Microsoft Corporation..) - C:\Program Files (x86)\Microsoft\BingBar\7.2.241.0\BBSvc.exe
SR - | Demand 23/07/2013 240288 | (BBUpdate) . (.Microsoft Corporation..) - C:\Program Files (x86)\Microsoft\BingBar\7.2.241.0\SeaPort.exe
SR - | Auto 30/08/2011 462184 | (Bonjour Service) . (.Apple Inc..) - C:\Program Files\Bonjour\mDNSResponder.exe
SR - | Auto 10/07/1658 0 | (ezSharedSvc) . (.EasyBits Software AS.) - C:\Windows\System32\ezSharedSvcHost.exe =>.EasyBits Software AS
SS - | Demand 12/10/2010 206072 | (GamesAppService) . (.WildTangent, Inc..) - C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
SS - | Auto 13/10/2012 136176 | (gupdate) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
SS - | Demand 13/10/2012 136176 | (gupdatem) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
SR - | Auto 27/09/2012 86528 | (HP Support Assistant Service) . (.Hewlett-Packard Company.) - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe =>.Hewlett-Packard Co
SR - | Auto 11/10/2010 346168 | (HPClientSvc) . (.Hewlett-Packard Company.) - C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe
SR - | Demand 06/09/2012 1001376 | (hpqwmiex) . (.Hewlett-Packard Company.) - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
SR - | Auto 24/09/2012 31040 | (hpsrv) . (.Hewlett-Packard Company.) - C:\Windows\System32\Hpservice.exe
SR - | Auto 05/03/2012 35200 | (HPWMISVC) . (.Hewlett-Packard Development Company, L.P..) - C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
SR - | Auto 29/11/2011 13592 | (IAStorDataMgrSvc) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
SR - | Auto 08/12/2011 607456 | (Intel(R) Capability Licensing Service Interface) . (.Intel(R) Corporation.) - C:\Program Files\Intel\iCLS Client\HeciServer.exe
SR - | Auto 16/12/2011 128280 | (Intel(R) ME Service) . (...) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
SR - | Demand 09/09/2012 936848 | (iPod Service) . (.Apple Inc..) - C:\Program Files\iPod\bin\iPodService.exe
SR - | Auto 16/12/2011 161560 | (jhi_service) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
SR - | Auto 16/12/2011 277784 | (LMS) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
SS - | Demand 04/10/2013 118680 | (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
SR - | Auto 10/07/1658 0 | (PnkBstrA) . (...) - C:\Windows\system32\PnkBstrA.exe
SS - | Auto 05/09/2013 171680 | (SkypeUpdate) . (.Skype Technologies.) - C:\Program Files (x86)\Skype\Updater\Updater.exe
SS - | Auto 07/08/2013 2868544 | (SProtection) . (.Iminent.) - C:\Program Files (x86)\Common Files\Umbrella\umbrella.exe =>Adware.IMBooster
SR - | Auto 01/06/2013 314880 | (STacSV) . (.IDT, Inc..) - C:\Program Files\IDT\WDM\STacSV64.exe
SR - | Auto 16/12/2011 363800 | (UNS) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
SR - | Auto 05/10/2013 65312 | (Update glindorus) . (.glindorus.) - C:\Program Files (x86)\glindorus\updateglindorus.exe =>PUP.Glindorus
SR - | Auto 12/10/2013 65312 | (Util glindorus) . (.glindorus.) - C:\Program Files (x86)\glindorus\bin\utilglindorus.exe =>PUP.Glindorus
SR - | Auto 14/07/2009 27136 | C:\Program Files (x86)\Windows Defender\mpsvc.dll (WinDefend) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe
SR - | Auto 10/07/1658 0 | (WMPNetworkSvc) . (...) - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe =>.Microsoft Corporation
SR - | Auto 14/07/2009 27136 | C:\Windows\System32\wuaueng.dll (wuauserv) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe
~ Services: Scanned in 00mn 40s



---\\ Recherche d'infection sur le Master Boot Record (MBR)(O80)
Run by QUENTIN at 27/10/2013 12:25:53
~ OS 64 not supported by MBR tool
~ MBR: 0 Scanned in 00mn 00s



---\\ Recherche d'infection sur le Master Boot Record (MBRCheck)(O80)
Written by ad13, http://ad13.geekstog
Run by QUENTIN at 27/10/2013 12:26:07

********* Dump file Name *********
C:\PhysicalDisk0_MBR.bin
~ MBR: Scanned in 00mn 14s



---\\ Scan Additionnel (O88)
Database Version : 12960 - (27/10/2013)
Cl�s trouv�es (Keys found) : 408
Valeurs trouv�es (Values found) : 7
Dossiers trouv�s (Folders found) : 23
Fichiers trouv�s (Files found) : 35

[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110311201102}] =>Adware.PlusHD^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1DAD3AF3-EF2F-4F64-AC4B-11789189FCB6}] =>Toolbar.Bing^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2EECD738-5844-4A99-B4B6-146BF802613B}] =>Toolbar.Babylon^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9598E82A-7E09-4438-B425-B9E9718C3C73}] =>PUP.Glindorus^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A09AB6EB-31B5-454C-97EC-9B294D92EE2A}] =>Adware.IMBooster^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}] =>Toolbar.Ask^
[HKLM\SYSTEM\CurrentControlSet\Services\70e6ca8c] =>PUP.OptimizerPro^
[HKLM\SYSTEM\CurrentControlSet\Services\SProtection] =>Adware.IMBooster^
[HKLM\SYSTEM\CurrentControlSet\Services\Update glindorus] =>PUP.Glindorus^
[HKLM\SYSTEM\CurrentControlSet\Services\Util glindorus] =>PUP.Glindorus^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{86D4B82A-ABED-442A-BE86-96357B70F4FE}] =>Toolbar.Ask^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\BabylonToolbar] =>Toolbar.Babylon^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{E55E7026-EF2A-4A17-AAA7-DB98EA3FD1B1}] =>Toolbar.Babylon^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{D322A9E3-758B-4D60-A7C4-65C88FD378D0}] =>Toolbar.Bing^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\Delta Chrome Toolbar] =>Toolbar.DeltaSearch^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\delta] =>Toolbar.DeltaSearch^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\IMBoosterARP] =>Adware.IMBooster^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{81FCC50B-950F-4063-8E4A-D99CAA4FBB1F}] =>Adware.IMBooster^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\Optimizer Pro_is1] =>PUP.OptimizerPro^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\Plantes contre Zombies] =>Adware.PopCap^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\Plus-HD-1.6] =>Adware.PlusHD^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\fst_fr_6_is1] =>Adware.FreeSoftToday^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\glindorus] =>PUP.Glindorus^
[HKLM\Software\Classes\AppID\{01994268-3C10-4044-A1EA-7A9C1B739A11}] =>Adware.IMBooster
[HKLM\Software\Wow6432Node\Classes\AppID\{01994268-3C10-4044-A1EA-7A9C1B739A11}] =>Adware.IMBooster
[HKLM\Software\Classes\Interface\{021B4049-F57D-4565-A693-FD3B04786BFA}] =>Adware.IMBooster
[HKLM\Software\Wow6432Node\Classes\Interface\{021B4049-F57D-4565-A693-FD3B04786BFA}] =>Adware.IMBooster
[HKLM\Software\Classes\Interface\{0362AA09-808D-48E9-B360-FB51A8CBCE09}] =>Adware.IMBooster
[HKLM\Software\Wow6432Node\Classes\Interface\{0362AA09-808D-48E9-B360-FB51A8CBCE09}] =>Adware.IMBooster
[HKLM\Software\Classes\Interface\{06844020-CD0B-3D3D-A7FE-371153013E49}] =>Adware.IMBooster
[HKLM\Software\Wow6432Node\Classes\Interface\{06844020-CD0B-3D3D-A7FE-371153013E49}] =>Adware.IMBooster
[HKLM\Software\Classes\AppID\{09C554C3-109B-483C-A06B-F14172F1A947}] =>Toolbar.Babylon
[HKLM\Software\Wow6432Node\Classes\AppID\{09C554C3-109B-483C-A06B-F14172F1A947}] =>Toolbar.Babylon
[HKLM\Software\Classes\Interface\{0ADC01BB-303B-3F8E-93DA-12C140E85460}] =>Adware.IMBooster
[HKLM\Software\Wow6432Node\Classes\Interface\{0ADC01BB-303B-3F8E-93DA-12C140E85460}] =>Adware.IMBooster
[HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ecdf796-c2dc-4d79-a620-cce0c0a66cc9}] =>Toolbar.Babylon
[HKLM\Software\Classes\Interface\{10D3722F-23E6-3901-B6C1-FF6567121920}] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Classes\Interface\{10D3722F-23E6-3901-B6C1-FF6567121920}] =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{1675E62B-F911-3B7B-A046-EB57261212F3}] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Classes\Interface\{1675E62B-F911-3B7B-A046-EB57261212F3}] =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{192929F2-9273-3894-91B0-F54671C4C861}] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Classes\Interface\{192929F2-9273-3894-91B0-F54671C4C861}] =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{2932897E-3036-43D9-8A64-B06447992065}] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Classes\Interface\{2932897E-3036-43D9-8A64-B06447992065}] =>PUP.RewardsArcade
[HKLM\Software\Classes\TypeLib\{2996F0E7-292B-4CAE-893F-47B8B1C05B56}] =>Toolbar.Ask
[HKLM\Software\Classes\TypeLib\{2BF2028E-3F3C-4C05-AB45-B2F1DCFE0759}] =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{2DE92D29-A042-3C37-BFF8-07C7D8893EFA}] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Classes\Interface\{2DE92D29-A042-3C37-BFF8-07C7D8893EFA}] =>PUP.RewardsArcade
[HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{2FA28606-DE77-4029-AF96-B231E3B8F827}] =>Toolbar.Babylon
[HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{2FA28606-DE77-4029-AF96-B231E3B8F827}] =>Toolbar.Babylon
[HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{2FA28606-DE77-4029-AF96-B231E3B8F827}] =>Toolbar.Babylon
[HKLM\Software\Classes\Interface\{32B80AD6-1214-45F4-994E-78A5D482C000}] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Classes\Interface\{32B80AD6-1214-45F4-994E-78A5D482C000}] =>PUP.RewardsArcade
[HKLM\Software\Classes\AppID\{35C1605E-438B-4D64-AAB1-8885F097A9B1}] =>Toolbar.Babylon
[HKLM\Software\Classes\TypeLib\{35C1605E-438B-4D64-AAB1-8885F097A9B1}] =>Toolbar.Babylon
[HKLM\Software\Wow6432Node\Classes\AppID\{35C1605E-438B-4D64-AAB1-8885F097A9B1}] =>Toolbar.Babylon
[HKLM\Software\Classes\Interface\{3A8E103F-B2B7-3BEF-B3B0-88E29B2420E4}] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Classes\Interface\{3A8E103F-B2B7-3BEF-B3B0-88E29B2420E4}] =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{44C3C1DB-2127-433C-98EC-4C9412B5FC3A}] =>Toolbar.Babylon
[HKLM\Software\Wow6432Node\Classes\Interface\{44C3C1DB-2127-433C-98EC-4C9412B5FC3A}] =>Toolbar.Babylon
[HKLM\Software\Classes\Interface\{478CE5D3-D38E-3FFE-8DBE-8C4A0F1C4D8D}] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Classes\Interface\{478CE5D3-D38E-3FFE-8DBE-8C4A0F1C4D8D}] =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{48B7DA4E-69ED-39E3-BAD5-3E3EFF22CFB0}] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Classes\Interface\{48B7DA4E-69ED-39E3-BAD5-3E3EFF22CFB0}] =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{4D5132DD-BB2B-4249-B5E0-D145A8C982E1}] =>Toolbar.Babylon
[HKLM\Software\Wow6432Node\Classes\Interface\{4D5132DD-BB2B-4249-B5E0-D145A8C982E1}] =>Toolbar.Babylon
[HKLM\Software\Classes\AppID\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}] =>Toolbar.Babylon
[HKLM\Software\Classes\TypeLib\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}] =>Toolbar.Babylon
[HKLM\Software\Wow6432Node\Classes\AppID\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}] =>Toolbar.Babylon
[HKLM\Software\Classes\Interface\{5982F405-44E4-3BBB-BAC4-CF8141CBBC5C}] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Classes\Interface\{5982F405-44E4-3BBB-BAC4-CF8141CBBC5C}] =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{5D8C3CC3-3C05-38A1-B244-924A23115FE9}] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Classes\Interface\{5D8C3CC3-3C05-38A1-B244-924A23115FE9}] =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{641593AF-D9FD-30F7-B783-36E16F7A2E08}] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Classes\Interface\{641593AF-D9FD-30F7-B783-36E16F7A2E08}] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{68B81CCD-A80C-4060-8947-5AE69ED01199}] =>Adware.IMBooster
[HKLM\Software\Classes\Interface\{6C434537-053E-486D-B62A-160059D9D456}] =>Toolbar.Ask
[HKLM\Software\Wow6432Node\Classes\Interface\{6C434537-053E-486D-B62A-160059D9D456}] =>Toolbar.Ask
[HKLM\Software\Classes\TypeLib\{6E8BF012-2C85-4834-B10A-1B31AF173D70}] =>Toolbar.Babylon
[HKLM\Software\Classes\Interface\{706D4A4B-184A-4434-B331-296B07493D2D}] =>Toolbar.Babylon
[HKLM\Software\Wow6432Node\Classes\Interface\{706D4A4B-184A-4434-B331-296B07493D2D}] =>Toolbar.Babylon
[HKLM\Software\Classes\Interface\{711FC48A-1356-3932-94D8-A8B733DBC7E4}] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Classes\Interface\{711FC48A-1356-3932-94D8-A8B733DBC7E4}] =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{72227B7F-1F02-3560-95F5-592E68BACC0C}] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Classes\Interface\{72227B7F-1F02-3560-95F5-592E68BACC0C}] =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{7B5E8CE3-4722-4C0E-A236-A6FF731BEF37}] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Classes\Interface\{7B5E8CE3-4722-4C0E-A236-A6FF731BEF37}] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{8375D9C8-634F-4ECB-8CF5-C7416BA5D542}] =>Toolbar.Babylon
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{86D4B82A-ABED-442A-BE86-96357B70F4FE}] =>Toolbar.Ask
[HKLM\Software\Classes\Interface\{890D4F59-5ED0-3CB4-8E0E-74A5A86E7ED0}] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Classes\Interface\{890D4F59-5ED0-3CB4-8E0E-74A5A86E7ED0}] =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{8BE10F21-185F-4CA0-B789-9921674C3993}] =>Toolbar.Babylon
[HKLM\Software\Wow6432Node\Classes\Interface\{8BE10F21-185F-4CA0-B789-9921674C3993}] =>Toolbar.Babylon
[HKLM\Software\Classes\Interface\{8C68913C-AC3C-4494-8B9C-984D87C85003}] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Classes\Interface\{8C68913C-AC3C-4494-8B9C-984D87C85003}] =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{8D019513-083F-4AA5-933F-7D43A6DA82C4}] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Classes\Interface\{8D019513-083F-4AA5-933F-7D43A6DA82C4}] =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{91CF619A-4686-4CA4-9232-3B2E6B63AA92}] =>Toolbar.Ask
[HKLM\Software\Wow6432Node\Classes\Interface\{91CF619A-4686-4CA4-9232-3B2E6B63AA92}] =>Toolbar.Ask
[HKLM\Software\Classes\Interface\{923F6FB8-A390-370E-A0D2-DD505432481D}] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Classes\Interface\{923F6FB8-A390-370E-A0D2-DD505432481D}] =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{94C0B25D-3359-4B10-B227-F96A77DB773F}] =>Toolbar.Babylon
[HKLM\Software\Wow6432Node\Classes\Interface\{94C0B25D-3359-4B10-B227-F96A77DB773F}] =>Toolbar.Babylon
[HKLM\Software\Classes\AppID\{9B0CB95C-933A-4B8C-B6D4-EDCD19A43874}] =>Toolbar.Ask
[HKLM\Software\Wow6432Node\Classes\AppID\{9B0CB95C-933A-4B8C-B6D4-EDCD19A43874}] =>Toolbar.Ask
[HKLM\Software\Classes\Interface\{9BBB26EF-B178-35D6-9D3D-B485F4279FE5}] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Classes\Interface\{9BBB26EF-B178-35D6-9D3D-B485F4279FE5}] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A09AB6EB-31B5-454C-97EC-9B294D92EE2A}] =>Adware.IMBooster
[HKCU\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5AA24EA-11B8-4113-95AE-9ED71DEAF12A}] =>Toolbar.Ask
[HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5AA24EA-11B8-4113-95AE-9ED71DEAF12A}] =>Toolbar.Ask
[HKLM\Software\Classes\Interface\{A62DDBE0-8D2A-339A-B089-8CBCC5CD322A}] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Classes\Interface\{A62DDBE0-8D2A-339A-B089-8CBCC5CD322A}] =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{A82AD04D-0B8E-3A49-947B-6A69A8A9C96D}] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Classes\Interface\{A82AD04D-0B8E-3A49-947B-6A69A8A9C96D}] =>PUP.RewardsArcade
[HKLM\Software\Classes\TypeLib\{A9CAF365-EA35-45DA-BD8B-2EFA09D374AC}] =>Adware.IMBooster
[HKLM\Software\Classes\Interface\{AC71B60E-94C9-4EDE-BA46-E146747BB67E}] =>Toolbar.Ask
[HKLM\Software\Wow6432Node\Classes\Interface\{AC71B60E-94C9-4EDE-BA46-E146747BB67E}] =>Toolbar.Ask
[HKLM\Software\Classes\Interface\{ACA608DB-A210-4253-B799-3FD24E9A7BF5}] =>Adware.IMBooster
[HKLM\Software\Wow6432Node\Classes\Interface\{ACA608DB-A210-4253-B799-3FD24E9A7BF5}] =>Adware.IMBooster
[HKLM\Software\Classes\Interface\{ADEB3CC9-A05D-4FCC-BD09-9025456AA3EA}] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Classes\Interface\{ADEB3CC9-A05D-4FCC-BD09-9025456AA3EA}] =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{B06D4521-D09C-3F41-8E39-9D784CCA2A75}] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Classes\Interface\{B06D4521-D09C-3F41-8E39-9D784CCA2A75}] =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{B0B75FBA-7288-4FD3-A9EB-7EE27FA65599}] =>Toolbar.Babylon
[HKLM\Software\Wow6432Node\Classes\Interface\{B0B75FBA-7288-4FD3-A9EB-7EE27FA65599}] =>Toolbar.Babylon
[HKLM\Software\Classes\AppID\{B12E99ED-69BD-437C-86BE-C862B9E5444D}] =>Toolbar.Babylon
[HKLM\Software\Wow6432Node\Classes\AppID\{B12E99ED-69BD-437C-86BE-C862B9E5444D}] =>Toolbar.Babylon
[HKLM\Software\Classes\Interface\{B173667F-8395-4317-8DD6-45AD1FE00047}] =>Toolbar.Babylon
[HKLM\Software\Wow6432Node\Classes\Interface\{B173667F-8395-4317-8DD6-45AD1FE00047}] =>Toolbar.Babylon
[HKLM\Software\Classes\Interface\{B32672B3-F656-46E0-B584-FE61C0BB6037}] =>Toolbar.Babylon
[HKLM\Software\Wow6432Node\Classes\Interface\{B32672B3-F656-46E0-B584-FE61C0BB6037}] =>Toolbar.Babylon
[HKLM\Software\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB}] =>Adware.CDNHelper
[HKLM\Software\Wow6432Node\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB}] =>Adware.CDNHelper
[HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{BFFED5CA-8BDF-47CC-AED0-23F4E6D77732}] =>Adware.IMBooster
[HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{BFFED5CA-8BDF-47CC-AED0-23F4E6D77732}] =>Adware.IMBooster
[HKLM\Software\Classes\Interface\{C06DAD42-6F39-4CE1-83CC-9A8B9105E556}] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Classes\Interface\{C06DAD42-6F39-4CE1-83CC-9A8B9105E556}] =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{C2434722-5C85-4CA0-BA69-1B67E7AB3D68}] =>Toolbar.Babylon
[HKLM\Software\Wow6432Node\Classes\Interface\{C2434722-5C85-4CA0-BA69-1B67E7AB3D68}] =>Toolbar.Babylon
[HKLM\Software\Classes\Interface\{C2996524-2187-441F-A398-CD6CB6B3D020}] =>Toolbar.Babylon
[HKLM\Software\Wow6432Node\Classes\Interface\{C2996524-2187-441F-A398-CD6CB6B3D020}] =>Toolbar.Babylon
[HKLM\Software\Classes\Interface\{C2E799D0-43A5-3477-8A98-FC5F3677F35C}] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Classes\Interface\{C2E799D0-43A5-3477-8A98-FC5F3677F35C}] =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{C58D664A-3DBC-4925-AE74-0382007DF113}] =>Adware.IMBooster
[HKLM\Software\Wow6432Node\Classes\Interface\{C58D664A-3DBC-4925-AE74-0382007DF113}] =>Adware.IMBooster
[HKLM\Software\Classes\Interface\{C776D7F4-BA85-4B75-AAFC-3A0A11FE6E36}] =>Adware.IMBooster
[HKLM\Software\Wow6432Node\Classes\Interface\{C776D7F4-BA85-4B75-AAFC-3A0A11FE6E36}] =>Adware.IMBooster
[HKLM\Software\Classes\Interface\{D16107CD-2AD5-46A8-BA59-303B7C32C500}] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Classes\Interface\{D16107CD-2AD5-46A8-BA59-303B7C32C500}] =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{D25B101F-8188-3B43-9D85-201F372BC205}] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Classes\Interface\{D25B101F-8188-3B43-9D85-201F372BC205}] =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{D2BA7595-5E44-3F1E-880F-03B3139FA5ED}] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Classes\Interface\{D2BA7595-5E44-3F1E-880F-03B3139FA5ED}] =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{D35F5C81-17D9-3E1C-A1FC-4472542E1D25}] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Classes\Interface\{D35F5C81-17D9-3E1C-A1FC-4472542E1D25}] =>PUP.RewardsArcade
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D4027C7F-154A-4066-A1AD-4243D8127440}] =>Toolbar.Avira
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{D4027C7F-154A-4066-A1AD-4243D8127440}] =>Toolbar.Avira
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}] =>Toolbar.Avira
[HKLM\Software\Classes\AppID\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}] =>Toolbar.Babylon
[HKLM\Software\Classes\TypeLib\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}] =>Toolbar.Babylon
[HKLM\Software\Wow6432Node\Classes\AppID\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}] =>Toolbar.Babylon
[HKLM\Software\Classes\Interface\{D8FA96CA-B250-312C-AF34-4FF1DD72589D}] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Classes\Interface\{D8FA96CA-B250-312C-AF34-4FF1DD72589D}] =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{DAFC1E63-3359-416D-9BC2-E7DCA6F7B0F3}] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Classes\Interface\{DAFC1E63-3359-416D-9BC2-E7DCA6F7B0F3}] =>PUP.RewardsArcade
[HKLM\Software\Classes\TypeLib\{DB538320-D3C5-433C-BCA9-C4081A054FCF}] =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{DC5E5C44-80FD-3697-9E65-9F286D92F3E7}] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Classes\Interface\{DC5E5C44-80FD-3697-9E65-9F286D92F3E7}] =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{E047E227-5342-4D94-80F7-CFB154BF55BD}] =>Toolbar.Babylon
[HKLM\Software\Wow6432Node\Classes\Interface\{E047E227-5342-4D94-80F7-CFB154BF55BD}] =>Toolbar.Babylon
[HKLM\Software\Classes\Interface\{E1B4C9DE-D741-385F-981E-6745FACE6F01}] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Classes\Interface\{E1B4C9DE-D741-385F-981E-6745FACE6F01}] =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{E3F79BE9-24D4-4F4D-8C13-DF2C9899F82E}] =>Toolbar.Babylon
[HKLM\Software\Wow6432Node\Classes\Interface\{E3F79BE9-24D4-4F4D-8C13-DF2C9899F82E}] =>Toolbar.Babylon
[HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E6B969FB-6D33-48d2-9061-8BBD4899EB08}] =>Adware.IMBooster
[HKLM\Software\Classes\Interface\{E77EEF95-3E83-4BB8-9C0D-4A5163774997}] =>Toolbar.Babylon
[HKLM\Software\Wow6432Node\Classes\Interface\{E77EEF95-3E83-4BB8-9C0D-4A5163774997}] =>Toolbar.Babylon
[HKLM\Software\Classes\Interface\{E7B623F5-9715-3F9F-A671-D1485A39F8A2}] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Classes\Interface\{E7B623F5-9715-3F9F-A671-D1485A39F8A2}] =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{ED916A7B-7C68-3198-B87D-2DABC30A5587}] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Classes\Interface\{ED916A7B-7C68-3198-B87D-2DABC30A5587}] =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{EFA1BDB2-BB3D-3D9A-8EB5-D0D22E0F64F4}] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Classes\Interface\{EFA1BDB2-BB3D-3D9A-8EB5-D0D22E0F64F4}] =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{F4CBF4DD-F8FE-35BA-BB7E-68304DAAB70B}] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Classes\Interface\{F4CBF4DD-F8FE-35BA-BB7E-68304DAAB70B}] =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{FC32005D-E27C-32E0-ADFA-152F598B75E7}] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\Classes\Interface\{FC32005D-E27C-32E0-ADFA-152F598B75E7}] =>PUP.RewardsArcade
[HKLM\Software\Classes\AppID\escort.dll] =>Toolbar.Babylon
[HKLM\Software\Classes\AppID\escortapp.dll] =>Toolbar.Babylon
[HKLM\Software\Classes\AppID\escorteng.dll] =>Toolbar.Babylon
[HKLM\Software\Classes\AppID\esrv.EXE] =>Toolbar.Babylon
[HKLM\Software\Classes\AppID\GenericAskToolbar.DLL] =>Toolbar.Ask
[HKLM\Software\Wow6432Node\Microsoft\Tracing\BingBar_RASMANCS] =>Toolbar.Bing
[HKLM\Software\Classes\b] =>Toolbar.Babylon
[HKLM\Software\Classes\Babylon.dskBnd] =>Toolbar.Babylon
[HKLM\Software\Classes\Babylon.dskBnd.1] =>Toolbar.Babylon
[HKLM\Software\Classes\bbylnApp.appCore] =>Toolbar.Babylon
[HKLM\Software\Classes\bbylnApp.appCore.1] =>Toolbar.Babylon
[HKLM\Software\Classes\escort.escortIEPane] =>PUP.Funmoods
[HKLM\Software\Classes\escort.escortIEPane.1] =>PUP.Funmoods
[HKLM\Software\Classes\esrv.BabylonESrvc] =>Toolbar.Babylon
[HKLM\Software\Classes\esrv.BabylonESrvc.1] =>Toolbar.Babylon
[HKLM\Software\Classes\GenericAskToolbar.ToolbarWnd] =>Toolbar.Ask
[HKLM\Software\Classes\GenericAskToolbar.ToolbarWnd.1] =>Toolbar.Ask
[HKLM\Software\Wow6432Node\Google\Chrome\Extensions\dhkplhfnhceodhffomolpfigojocbpcb] =>Toolbar.Babylon
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0E12F736682067FDE4D1158D5940A82E] =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\1A24B5BB8521B03E0C8D908F5ABC0AE6] =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\261F213D1F55267499B1F87D0CC3BCF7] =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2B0D56C4F4C46D844A57FFED6F0D2852] =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\49D4375FE41653242AEA4C969E4E65E0] =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6AA0923513360135B272E8289C5F13FA] =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6F7467AF8F29C134CBBAB394ECCFDE96] =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\741B4ADF27276464790022C965AB6DA8] =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\7DE196B10195F5647A2B21B761F3DE01] =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\922525DCC5199162F8935747CA3D8E59] =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\9D4F5849367142E4685ED8C25E44C5ED] =>Toolbar.Ask
[HKLM\Software\Classes\Installer\Features\A28B4D68DEBAA244EB686953B7074FEF] =>Toolbar.AVGSearch
[HKLM\Software\Classes\Installer\Products\A28B4D68DEBAA244EB686953B7074FEF] =>Toolbar.AVGSearch
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\A28B4D68DEBAA244EB686953B7074FEF] =>Toolbar.AVGSearch
[HKLM\Software\Wow6432Node\Classes\Installer\Features\A28B4D68DEBAA244EB686953B7074FEF] =>Toolbar.AVGSearch
[HKLM\Software\Wow6432Node\Classes\Installer\Products\A28B4D68DEBAA244EB686953B7074FEF] =>Toolbar.AVGSearch
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A5875B04372C19545BEB90D4D606C472] =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A876D9E80B896EC44A8620248CC79296] =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B66FFAB725B92594C986DE826A867888] =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BCDA179D619B91648538E3394CAC94CC] =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D677B1A9671D4D4004F6F2A4469E86EA] =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DD1402A9DD4215A43ABDE169A41AFA0E] =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E36E114A0EAD2AD46B381D23AD69CDDF] =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\EF8E618DB3AEDFBB384561B5C548F65E] =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\F928123A039649549966D4C29D35B1C9] =>Adware.MyWebSearch
[HKCU\Software\APN] =>Toolbar.Ask
[HKLM\Software\Wow6432Node\APN] =>Toolbar.Ask
[HKCU\Software\Ask.com] =>Toolbar.AskBar
[HKCU\Software\AppDataLow\Software\AskToolbar] =>Toolbar.AskTBar
[HKLM\Software\Wow6432Node\AskToolbar] =>Toolbar.AskTBar
[HKCU\Software\BabylonToolbar] =>Toolbar.Babylon
[HKLM\Software\Wow6432Node\BabylonToolbar] =>Toolbar.Babylon
[HKCU\Software\Iminent] =>Adware.IMBooster
[HKLM\Software\Wow6432Node\Iminent] =>Adware.IMBooster
[HKCU\Software\Tutorials] =>Spyware.AgenceExclusive
[HKLM\Software\Wow6432Node\Tutorials] =>Spyware.AgenceExclusive
[HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Scheduled Update for Ask Toolbar] =>Toolbar.AskTBar
[HKLM\Software\Wow6432Node\Microsoft\Tracing\Iminent_RASAPI32] =>Adware.Bandoo
[HKLM\Software\Wow6432Node\Microsoft\Tracing\Iminent_RASMANCS] =>Adware.Bandoo
[HKLM\Software\Wow6432Node\Microsoft\Tracing\MyBabylontb_RASAPI32] =>Toolbar.Babylon
[HKLM\Software\Wow6432Node\Microsoft\Tracing\MyBabylontb_RASMANCS] =>Toolbar.Babylon
[HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\{79A765E1-C399-405B-85AF-466F52E918B0}] =>Adware.SimilarSites
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\BabylonToolbar] =>Toolbar.Babylon
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\IMBoosterARP] =>Adware.IMBooster
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\SearchTheWebARP] =>Adware.IMBooster
[HKLM\Software\Classes\Prod.cap] =>Toolbar.Babylon
[HKLM\Software\Wow6432Node\Microsoft\Tracing\BingBar_RASAPI32] =>Toolbar.Bing
[HKLM\Software\Classes\Installer\Features\6207E55EA2FE71A4AA7ABD89AEF31D1B] =>PUP.DealPly
[HKLM\Software\Classes\Installer\Products\6207E55EA2FE71A4AA7ABD89AEF31D1B] =>PUP.DealPly
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\6207E55EA2FE71A4AA7ABD89AEF31D1B] =>PUP.DealPly
[HKLM\Software\Wow6432Node\Classes\Installer\Features\6207E55EA2FE71A4AA7ABD89AEF31D1B] =>PUP.DealPly
[HKLM\Software\Wow6432Node\Classes\Installer\Products\6207E55EA2FE71A4AA7ABD89AEF31D1B] =>PUP.DealPly
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\29799DE249E7DBC459FC6C8F07EB8375] =>PUP.Tarma
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0238BBE24EA3A70408B81E4BB89C15E5] =>PUP.Tarma
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0CFE535C35F99574E8340BFA75BF92C2] =>Toolbar.Ask
[HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{348C2DF3-1191-4C3E-92A6-B3A89A9D9C85}] =>Toolbar.DeltaSearch
[HKLM\Software\Classes\AppID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}] =>Toolbar.DeltaSearch
[HKLM\Software\Wow6432Node\Classes\AppID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}] =>Toolbar.DeltaSearch
[HKLM\Software\Classes\TypeLib\{4599D05A-D545-4069-BB42-5895B4EAE05B}] =>Toolbar.DeltaSearch
[HKLM\Software\Classes\delta.deltaappCore] =>PUP.Funmoods
[HKLM\Software\Classes\delta.deltaappCore.1] =>PUP.Funmoods
[HKLM\Software\Classes\delta.deltadskBnd] =>PUP.Funmoods
[HKLM\Software\Classes\delta.deltadskBnd.1] =>PUP.Funmoods
[HKCU\Software\AppDataLow\Software\Crossrider] =>PUP.CrossRider
[HKCU\Software\InstalledBrowserExtensions\] =>PUP.CrossRider
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\F1057DD419AED0B468AD8888429E139A] =>Adware.IMBooster
[HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{B7FCA997-D0FB-4FE0-8AFD-255E89CF9671}] =>Toolbar.Yahoo
[HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{B7FCA997-D0FB-4FE0-8AFD-255E89CF9671}] =>Toolbar.Yahoo
[HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{B7FCA997-D0FB-4FE0-8AFD-255E89CF9671}] =>Toolbar.Yahoo
[HKCU\Software\InstalledBrowserExtensions] =>PUP.CrossRider
[HKLM\Software\Classes\Interface\{FD8F79A0-D2E2-4FA2-AEAF-393EAC8064F7}] =>Toolbar.Babylon
[HKLM\Software\Wow6432Node\Classes\Interface\{FD8F79A0-D2E2-4FA2-AEAF-393EAC8064F7}] =>Toolbar.Babylon
[HKCU\Software\AppDataLow\{1146AC44-2F03-4431-B4FD-889BC837521F}] =>PUP.OptimizerPro
[HKLM\Software\Wow6432Node\{1146AC44-2F03-4431-B4FD-889BC837521F}] =>PUP.OptimizerPro
[HKLM\Software\Classes\CrossriderApp0032002.BHO] =>PUP.CrossRider
[HKLM\Software\Classes\CrossriderApp0032002.BHO.1] =>PUP.CrossRider
[HKLM\Software\Classes\CrossriderApp0032002.Sandbox] =>PUP.CrossRider
[HKLM\Software\Classes\CrossriderApp0032002.Sandbox.1] =>PUP.CrossRider
[HKLM\Software\Classes\iminent] =>Adware.IMBooster
[HKLM\Software\Classes\Iminent.Business.Tinyfying.DownloadArgs] =>Adware.IMBooster
[HKLM\Software\Classes\Iminent.Business.Tinyfying.LinkToPromoteArgs] =>Adware.IMBooster
[HKLM\Software\Classes\Iminent.Business.Tinyfying.RawDataArgs] =>Adware.IMBooster
[HKLM\Software\Classes\Iminent.Business.Tinyfying.TinyUrlArgs] =>Adware.IMBooster
[HKLM\Software\Classes\Iminent.Business.Tinyfying.ViralLinkArgs] =>Adware.IMBooster
[HKLM\Software\Classes\Iminent.Mediator.Communication.ClientCallback] =>Adware.IMBooster
[HKLM\Software\Classes\Iminent.Mediator.Communication.ContractBase] =>Adware.IMBooster
[HKLM\Software\Classes\Iminent.Mediator.Communication.DataContracts.AddToUserContentCommand] =>Adware.IMBooster
[HKLM\Software\Classes\Iminent.Mediator.Communication.DataContracts.CheckLoginStatusCommand] =>Adware.IMBooster
[HKLM\Software\Classes\Iminent.Mediator.Communication.DataContracts.CleanCacheCommand] =>Adware.IMBooster
[HKLM\Software\Classes\Iminent.Mediator.Communication.DataContracts.GameOverCallback] =>Adware.IMBooster
[HKLM\Software\Classes\Iminent.Mediator.Communication.DataContracts.GetCreditCommand] =>Adware.IMBooster
[HKLM\Software\Classes\Iminent.Mediator.Communication.DataContracts.GetInstallationContextCommand] =>Adware.IMBooster
[HKLM\Software\Classes\Iminent.Mediator.Communication.DataContracts.GetLoginStatusCommand] =>Adware.IMBooster
[HKLM\Software\Classes\Iminent.Mediator.Communication.DataContracts.GetLoginStatusResult] =>Adware.IMBooster
[HKLM\Software\Classes\Iminent.Mediator.Communication.DataContracts.GetVariableCommand] =>Adware.IMBooster
[HKLM\Software\Classes\Iminent.Mediator.Communication.DataContracts.GetVariableResult] =>Adware.IMBooster
[HKLM\Software\Classes\Iminent.Mediator.Communication.DataContracts.InstallationContextResult] =>Adware.IMBooster
[HKLM\Software\Classes\Iminent.Mediator.Communication.DataContracts.LoadContentCommand] =>Adware.IMBooster
[HKLM\Software\Classes\Iminent.Mediator.Communication.DataContracts.LoadContentCommandResult] =>Adware.IMBooster
[HKLM\Software\Classes\Iminent.Mediator.Communication.DataContracts.LoginCommand] =>Adware.IMBooster
[HKLM\Software\Classes\Iminent.Mediator.Communication.DataContracts.LoginStatusChangedCallback] =>Adware.IMBooster
[HKLM\Software\Classes\Iminent.Mediator.Communication.DataContracts.LogoutCommand] =>Adware.IMBooster
[HKLM\Software\Classes\Iminent.Mediator.Communication.DataContracts.MergeIdentityCommand] =>Adware.IMBooster
[HKLM\Software\Classes\Iminent.Mediator.Communication.DataContracts.MyAccountCommand] =>Adware.IMBooster
[HKLM\Software\Classes\Iminent.Mediator.Communication.DataContracts.PlayContentCommand] =>Adware.IMBooster
[HKLM\Software\Classes\Iminent.Mediator.Communication.DataContracts.PostContentCallback] =>Adware.IMBooster
[HKLM\Software\Classes\Iminent.Mediator.Communication.DataContracts.RecycleViewsCommand] =>Adware.IMBooster
[HKLM\Software\Classes\Iminent.Mediator.Communication.DataContracts.SetVariableCommand] =>Adware.IMBooster
[HKLM\Software\Classes\Iminent.Mediator.Communication.DataContracts.ShowBrowserWindowCommand] =>Adware.IMBooster
[HKLM\Software\Classes\Iminent.Mediator.Communication.DataContracts.ShowControlCenterCommand] =>Adware.IMBooster
[HKLM\Software\Classes\Iminent.Mediator.Communication.DataContracts.ShowPluginWindowCommand] =>Adware.IMBooster
[HKLM\Software\Classes\Iminent.Mediator.Communication.DataContracts.TestContentCommand] =>Adware.IMBooster
[HKLM\Software\Classes\Iminent.Mediator.Communication.DataContracts.UserContentChangedCallback] =>Adware.IMBooster
[HKLM\Software\Classes\Iminent.Mediator.Communication.DataContracts.VariableChangedCallback] =>Adware.IMBooster
[HKLM\Software\Classes\Iminent.Mediator.Communication.DataContracts.WarmUpCommand] =>Adware.IMBooster
[HKLM\Software\Classes\Iminent.Mediator.Communication.DataContracts.WelcomeCommand] =>Adware.IMBooster
[HKLM\Software\Classes\Iminent.Mediator.Communication.ServerCommand] =>Adware.IMBooster
[HKLM\Software\Classes\Iminent.Mediator.Communication.ServerResult] =>Adware.IMBooster
[HKLM\Software\Classes\Iminent.Mediator.LightContent] =>Adware.IMBooster
[HKLM\Software\Classes\Iminent.Mediator.LightUri] =>Adware.IMBooster
[HKLM\Software\Classes\Iminent.Mediator.MediatorServiceProxy] =>Adware.IMBooster
[HKLM\Software\Classes\IminentWebBooster.ActiveContentHandle.1] =>Adware.IMBooster
[HKLM\Software\Classes\IminentWebBooster.ActiveContentHandler] =>Adware.IMBooster
[HKLM\Software\Classes\IminentWebBooster.BrowserHelperObject] =>Adware.IMBooster
[HKLM\Software\Classes\IminentWebBooster.BrowserHelperObject.1] =>Adware.IMBooster
[HKLM\Software\Classes\IminentWebBooster.ScriptExtender] =>Adware.IMBooster
[HKLM\Software\Classes\IminentWebBooster.ScriptExtender.1] =>Adware.IMBooster
[HKLM\Software\Classes\IminentWebBooster.TinyUrlHandler] =>Adware.IMBooster
[HKLM\Software\Classes\IminentWebBooster.TinyUrlHandler.1] =>Adware.IMBooster
[HKLM\Software\Classes\CLSID\{11111111-1111-1111-1111-110311201102}] =>PUP.CrossRider
[HKLM\Software\Classes\CLSID\{22222222-2222-2222-2222-220322202202}] =>PUP.CrossRider
[HKLM\Software\Classes\AppID\escorTlbr.DLL] =>PUP.Funmoods
[HKLM\Software\Classes\AppID\Iminent.WebBooster.InternetExplorer.DLL] =>Adware.IMBooster
[HKLM\Software\Wow6432Node\Classes\CrossriderApp0032002.BHO] =>PUP.CrossRider
[HKLM\Software\Wow6432Node\Classes\CrossriderApp0032002.BHO.1] =>PUP.CrossRider
[HKLM\Software\Wow6432Node\Classes\CrossriderApp0032002.Sandbox] =>PUP.CrossRider
[HKLM\Software\Wow6432Node\Classes\CrossriderApp0032002.Sandbox.1] =>PUP.CrossRider
[HKLM\Software\Wow6432Node\Classes\delta.deltaappCore] =>Toolbar.DeltaSearch
[HKLM\Software\Wow6432Node\Classes\delta.deltaappCore.1] =>Toolbar.DeltaSearch
[HKLM\Software\Wow6432Node\Classes\delta.deltadskBnd] =>Toolbar.DeltaSearch
[HKLM\Software\Wow6432Node\Classes\delta.deltadskBnd.1] =>Toolbar.DeltaSearch
[HKLM\Software\Wow6432Node\Classes\escort.escortIEPane] =>PUP.Funmoods
[HKLM\Software\Wow6432Node\Classes\escort.escortIEPane.1] =>PUP.Funmoods
[HKLM\Software\Wow6432Node\Classes\iminent] =>Adware.IMBooster
[HKLM\Software\Wow6432Node\Classes\Iminent.Business.Tinyfying.DownloadArgs] =>Adware.IMBooster
[HKLM\Software\Wow6432Node\Classes\Iminent.Business.Tinyfying.LinkToPromoteArgs] =>Adware.IMBooster
[HKLM\Software\Wow6432Node\Classes\Iminent.Business.Tinyfying.RawDataArgs] =>Adware.IMBooster
[HKLM\Software\Wow6432Node\Classes\Iminent.Business.Tinyfying.TinyUrlArgs] =>Adware.IMBooster
[HKLM\Software\Wow6432Node\Classes\Iminent.Business.Tinyfying.ViralLinkArgs] =>Adware.IMBooster
[HKLM\Software\Wow6432Node\Classes\Iminent.Mediator.Communication.ClientCallback] =>Adware.IMBooster
[HKLM\Software\Wow6432Node\Classes\Iminent.Mediator.Communication.ContractBase] =>Adware.IMBooster
[HKLM\Software\Wow6432Node\Classes\Iminent.Mediator.Communication.DataContracts.AddToUserContentCommand] =>Adware.IMBooster
[HKLM\Software\Wow6432Node\Classes\Iminent.Mediator.Communication.DataContracts.CheckLoginStatusCommand] =>Adware.IMBooster
[HKLM\Software\Wow6432Node\Classes\Iminent.Mediator.Communication.DataContracts.CleanCacheCommand] =>Adware.IMBooster
[HKLM\Software\Wow6432Node\Classes\Iminent.Mediator.Communication.DataContracts.GameOverCallback] =>Adware.IMBooster
[HKLM\Software\Wow6432Node\Classes\Iminent.Mediator.Communication.DataContracts.GetCreditCommand] =>Adware.IMBooster
[HKLM\Software\Wow6432Node\Classes\Iminent.Mediator.Communication.DataContracts.GetInstallationContextCommand] =>Adware.IMBooster
[HKLM\Software\Wow6432Node\Classes\Iminent.Mediator.Communication.DataContracts.GetLoginStatusCommand] =>Adware.IMBooster
[HKLM\Software\Wow6432Node\Classes\Iminent.Mediator.Communication.DataContracts.GetLoginStatusResult] =>Adware.IMBooster
[HKLM\Software\Wow6432Node\Classes\Iminent.Mediator.Communication.DataContracts.GetVariableCommand] =>Adware.IMBooster
[HKLM\Software\Wow6432Node\Classes\Iminent.Mediator.Communication.DataContracts.GetVariableResult] =>Adware.IMBooster
[HKLM\Software\Wow6432Node\Classes\Iminent.Mediator.Communication.DataContracts.InstallationContextResult] =>Adware.IMBooster
[HKLM\Software\Wow6432Node\Classes\Iminent.Mediator.Communication.DataContracts.LoadContentCommand] =>Adware.IMBooster
[HKLM\Software\Wow6432Node\Classes\Iminent.Mediator.Communication.DataContracts.LoadContentCommandResult] =>Adware.IMBooster
[HKLM\Software\Wow6432Node\Classes\Iminent.Mediator.Communication.DataContracts.LoginCommand] =>Adware.IMBooster
[HKLM\Software\Wow6432Node\Classes\Iminent.Mediator.Communication.DataContracts.LoginStatusChangedCallback] =>Adware.IMBooster
[HKLM\Software\Wow6432Node\Classes\Iminent.Mediator.Communication.DataContracts.LogoutCommand] =>Adware.IMBooster
[HKLM\Software\Wow6432Node\Classes\Iminent.Mediator.Communication.DataContracts.MergeIdentityCommand] =>Adware.IMBooster
[HKLM\Software\Wow6432Node\Classes\Iminent.Mediator.Communication.DataContracts.MyAccountCommand] =>Adware.IMBooster
[HKLM\Software\Wow6432Node\Classes\Iminent.Mediator.Communication.DataContracts.PlayContentCommand] =>Adware.IMBooster
[HKLM\Software\Wow6432Node\Classes\Iminent.Mediator.Communication.DataContracts.PostContentCallback] =>Adware.IMBooster
[HKLM\Software\Wow6432Node\Classes\Iminent.Mediator.Communication.DataContracts.RecycleViewsCommand] =>Adware.IMBooster
[HKLM\Software\Wow6432Node\Classes\Iminent.Mediator.Communication.DataContracts.SetVariableCommand] =>Adware.IMBooster
[HKLM\Software\Wow6432Node\Classes\Iminent.Mediator.Communication.DataContracts.ShowBrowserWindowCommand] =>Adware.IMBooster
[HKLM\Software\Wow6432Node\Classes\Iminent.Mediator.Communication.DataContracts.ShowControlCenterCommand] =>Adware.IMBooster
[HKLM\Software\Wow6432Node\Classes\Iminent.Mediator.Communication.DataContracts.ShowPluginWindowCommand] =>Adware.IMBooster
[HKLM\Software\Wow6432Node\Classes\Iminent.Mediator.Communication.DataContracts.TestContentCommand] =>Adware.IMBooster
[HKLM\Software\Wow6432Node\Classes\Iminent.Mediator.Communication.DataContracts.UserContentChangedCallback] =>Adware.IMBooster
[HKLM\Software\Wow6432Node\Classes\Iminent.Mediator.Communication.DataContracts.VariableChangedCallback] =>Adware.IMBooster
[HKLM\Software\Wow6432Node\Classes\Iminent.Mediator.Communication.DataContracts.WarmUpCommand] =>Adware.IMBooster
[HKLM\Software\Wow6432Node\Classes\Iminent.Mediator.Communication.DataContracts.WelcomeCommand] =>Adware.IMBooster
[HKLM\Software\Wow6432Node\Classes\Iminent.Mediator.Communication.ServerCommand] =>Adware.IMBooster
[HKLM\Software\Wow6432Node\Classes\Iminent.Mediator.Communication.ServerResult] =>Adware.IMBooster
[HKLM\Software\Wow6432Node\Classes\Iminent.Mediator.LightContent] =>Adware.IMBooster
[HKLM\Software\Wow6432Node\Classes\Iminent.Mediator.LightUri] =>Adware.IMBooster
[HKLM\Software\Wow6432Node\Classes\Iminent.Mediator.MediatorServiceProxy] =>Adware.IMBooster
[HKLM\Software\Wow6432Node\Classes\IminentWebBooster.ActiveContentHandle.1] =>Adware.IMBooster
[HKLM\Software\Wow6432Node\Classes\IminentWebBooster.ActiveContentHandler] =>Adware.IMBooster
[HKLM\Software\Wow6432Node\Classes\IminentWebBooster.BrowserHelperObject] =>Adware.IMBooster
[HKLM\Software\Wow6432Node\Classes\IminentWebBooster.BrowserHelperObject.1] =>Adware.IMBooster
[HKLM\Software\Wow6432Node\Classes\IminentWebBooster.ScriptExtender] =>Adware.IMBooster
[HKLM\Software\Wow6432Node\Classes\IminentWebBooster.ScriptExtender.1] =>Adware.IMBooster
[HKLM\Software\Wow6432Node\Classes\IminentWebBooster.TinyUrlHandler] =>Adware.IMBooster
[HKLM\Software\Wow6432Node\Classes\IminentWebBooster.TinyUrlHandler.1] =>Adware.IMBooster
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{11111111-1111-1111-1111-110311201102}] =>PUP.CrossRider
[HKLM\Software\Wow6432Node\Classes\CLSID\{11111111-1111-1111-1111-110311201102}] =>PUP.CrossRider
[HKLM\Software\Wow6432Node\Classes\CLSID\{22222222-2222-2222-2222-220322202202}] =>PUP.CrossRider
[HKLM\Software\Wow6432Node\Classes\AppID\escort.DLL] =>PUP.Funmoods
[HKLM\Software\Wow6432Node\Classes\AppID\escortApp.DLL] =>PUP.Funmoods
[HKLM\Software\Wow6432Node\Classes\AppID\escortEng.DLL] =>PUP.Funmoods
[HKLM\Software\Wow6432Node\Classes\AppID\escorTlbr.DLL] =>PUP.Funmoods
[HKLM\Software\Wow6432Node\Classes\AppID\Iminent.WebBooster.InternetExplorer.DLL] =>Adware.IMBooster
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110311201102}] =>PUP.CrossRider
[HKLM\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks]:{00000000-6E41-4FD3-8538-502F5495E5FC} =>Toolbar.Ask^
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]:Optimizer Pro =>PUP.OptimizerPro^
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]:Iminent =>Adware.IMBooster^
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce]:upfst_fr_6.exe =>PUA.FSTfr9^
[HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks]:{00000000-6E41-4FD3-8538-502F5495E5FC} =>Adware.ShopperReports
[HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser]:{D4027C7F-154A-4066-A1AD-4243D8127440} =>Toolbar.Avira
[HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Toolbar]:{D4027C7F-154A-4066-A1AD-4243D8127440} =>Toolbar.Avira
C:\Users\QUENTIN\AppData\Roaming\Mozilla\Firefox\Profiles\1b6sfmvq.default\6c937ed6-be66-4f72-9a60-ce5789cc7f09@53ba6712-2cae-46e2-b821-95baea44e049.com =>Adware.PlusHD^
C:\Users\QUENTIN\AppData\Roaming\Mozilla\Firefox\Profiles\1b6sfmvq.default\ffxtlbr@delta.com =>Toolbar.DeltaSearch^
C:\Program Files (x86)\BabylonToolbar =>Toolbar.Babylon^
C:\Program Files (x86)\fst_fr_6 =>PUA.FSTfr9^
C:\Program Files (x86)\glindorus =>PUP.Glindorus^
C:\Program Files (x86)\Iminent =>Adware.IMBooster^
C:\Program Files (x86)\Optimizer Pro =>PUP.OptimizerPro^
C:\Program Files (x86)\Plus-HD-1.6 =>Adware.PlusHD^
C:\Program Files (x86)\PopCap Games =>Adware.PopCap^
C:\ProgramData\Babylon =>Toolbar.Babylon^
C:\ProgramData\DSearchLink =>Toolbar.DeltaSearch^
C:\ProgramData\PopCap Games =>Adware.PopCap^
C:\Users\QUENTIN\AppData\Roaming\BabSolution =>Hijacker.BabSolution^
C:\Users\QUENTIN\AppData\Roaming\Babylon =>Toolbar.Babylon^
C:\Users\QUENTIN\AppData\Roaming\BabylonToolbar =>Toolbar.Babylon^
C:\Users\QUENTIN\AppData\Local\fst_fr_6 =>PUA.FSTfr9^
C:\Program Files (x86)\Ask.com =>Toolbar.AskBar
C:\Program Files (x86)\Common Files\Umbrella =>Adware.IMBooster
C:\Users\QUENTIN\AppData\LocalLow\AskToolbar =>Toolbar.AskTBar
C:\Users\QUENTIN\AppData\LocalLow\BabylonToolbar =>Toolbar.Babylon
C:\Users\QUENTIN\AppData\Local\Google\Chrome\User Data\Default\Extensions\eooncjejnppfjjklapaamhcdmjbilmde =>Toolbar.DeltaSearch
C:\Users\QUENTIN\AppData\Roaming\Mozilla\Firefox\Profiles\1b6sfmvq.default\Extensions\toolbar@ask.com =>Toolbar.AskTBar
C:\Users\QUENTIN\AppData\Roaming\Mozilla\Firefox\Profiles\1b6sfmvq.default\Extensions\ffxtlbr@delta.com =>PUP.Funmoods
C:\Users\QUENTIN\AppData\Local\fst_fr_6\upfst_fr_6.exe =>PUA.FSTfr9^
C:\Program Files (x86)\fst_fr_6\fst_fr_6.exe =>PUA.FSTfr9^
C:\Program Files (x86)\Optimizer Pro\OptProCrash.exe =>PUP.OptimizerPro^
C:\Program Files (x86)\glindorus\updateglindorus.exe =>PUP.Glindorus^
C:\Program Files (x86)\glindorus\bin\utilglindorus.exe =>PUP.Glindorus^
C:\Windows\Tasks\Plus-HD-1.6-chromeinstaller.job =>Adware.PlusHD^
C:\Windows\Tasks\Plus-HD-1.6-codedownloader.job =>Adware.PlusHD^
C:\Windows\Tasks\Plus-HD-1.6-enabler.job =>Adware.PlusHD^
C:\Windows\Tasks\Plus-HD-1.6-firefoxinstaller.job =>Adware.PlusHD^
C:\Windows\Tasks\Plus-HD-1.6-updater.job =>Adware.PlusHD^
C:\Users\QUENTIN\AppData\Roaming\BabSolution\Shared\BabMaint.exe =>Hijacker.BabSolution^
C:\Program Files (x86)\Plus-HD-1.6\Plus-HD-1.6-chromeinstaller.exe =>Adware.PlusHD^
C:\Program Files (x86)\Plus-HD-1.6\Plus-HD-1.6-codedownloader.exe =>Adware.PlusHD^
C:\Program Files (x86)\Plus-HD-1.6\Plus-HD-1.6-enabler.exe =>Adware.PlusHD^
C:\Program Files (x86)\Plus-HD-1.6\Plus-HD-1.6-firefoxinstaller.exe =>Adware.PlusHD^
C:\Program Files (x86)\Plus-HD-1.6\Plus-HD-1.6-updater.exe =>Adware.PlusHD^
C:\Program Files (x86)\Ask.com\UpdateTask.exe =>Toolbar.Ask^
[HKCU\Software\AppDataLow\Software\Plus-HD-1.6] =>Adware.PlusHD^
[HKCU\Software\BabSolution] =>Hijacker.BabSolution^
[HKCU\Software\Optimizer Pro] =>PUP.OptimizerPro^
[HKCU\Software\PopCap] =>Adware.PopCap^
[HKCU\Software\TutoTag] =>Spyware.AgenceExclusive^
[HKCU\Software\freesofttoday] =>Adware.FreeSoftToday^
[HKCU\Software\glindorus] =>PUP.Glindorus^
[HKLM\Software\Wow6432Node\Babylon] =>Toolbar.Babylon^
[HKLM\Software\Wow6432Node\Freesofttoday] =>Adware.FreeSoftToday^
[HKLM\Software\Wow6432Node\PopCap] =>Adware.PopCap^
[HKLM\Software\Wow6432Node\glindorus] =>PUP.Glindorus^
C:\Users\QUENTIN\AppData\Local\Temp\OKitSpaceSetup.exe =>PUP.Onekit^
C:\Users\QUENTIN\AppData\Local\Temp\softwareupdater.exe =>PUP.Eorezo^
C:\Users\QUENTIN\AppData\Local\Temp\Toolbar_Phpnuke.exe =>Toolbar.Babylon^
C:\Windows\Installer\12010d9a.msi =>Toolbar.Babylon^
C:\Windows\Installer\9fede.msi =>Adware.IMBooster^
C:\Users\QUENTIN\AppData\Local\Temp\instloffer.exe =>PUP.OfferBox
~ Additionnel Scan: 358714 Items scanned in 02mn 04s



---\\ R�capitulatif des d�tections trouv�es sur votre station
~ http://nicolascoolman.webs.com/apps/blog/show/34014358-pua-fstfr9 =>PUA.FSTfr9
~ http://nicolascoolman.webs.com/apps/blog/show/28204239-pup-optimizerpro =>PUP.OptimizerPro
~ http://nicolascoolman.webs.com/apps/blog/show/33429762-pup-glindorus =>PUP.Glindorus
~ http://nicolascoolman.webs.com/apps/blog/show/26627369-toolbar-babylon =>Toolbar.Babylon
~ http://nicolascoolman.webs.com/apps/blog/show/26684723-adware-imbooster =>Adware.IMBooster
~ http://nicolascoolman.webs.com/apps/blog/show/28138048-adware-plushd =>Adware.PlusHD
~ http://nicolascoolman.webs.com/apps/blog/show/27875657-toolbar-deltasearch =>Toolbar.DeltaSearch
~ http://nicolascoolman.webs.com/apps/blog/show/28927746-toolbar-ask =>Toolbar.Ask
~ http://nicolascoolman.webs.com/apps/blog/show/31536787-toolbar-bing =>Toolbar.Bing
~ http://nicolascoolman.webs.com/apps/blog/show/26678994-hijacker-babsolution =>Hijacker.BabSolution
~ http://nicolascoolman.webs.com/apps/blog/show/26666257-adware-popcap =>Adware.PopCap
~ http://nicolascoolman.webs.com/apps/blog/show/33340107-adware-freesofttoday =>Adware.FreeSoftToday
~ http://nicolascoolman.webs.com/apps/blog/show/27583526-pup-crossrider =>PUP.CrossRider
~ http://nicolascoolman.webs.com/apps/blog/show/27557062-adware-vidsaver =>Adware.VidSaver
~ http://nicolascoolman.webs.com/apps/blog/show/26627641-spyware-agenceexclusive =>Spyware.AgenceExclusive
~ http://nicolascoolman.webs.com/apps/blog/show/29295819-rogue-registrypowercleaner =>Rogue.RegistryPowerCleaner
~ http://nicolascoolman.webs.com/apps/blog/show/26601058-adware-addlyrics =>Adware.AddLyrics
~ http://nicolascoolman.webs.com/apps/blog/show/28060597-pup-dealply =>PUP.DealPly
~ http://nicolascoolman.webs.com/apps/blog/show/29294184-adware-pricora =>Adware.Pricora
~ http://nicolascoolman.webs.com/apps/blog/show/34458822-pup-firseria =>PUP.Firseria
~ http://nicolascoolman.webs.com/apps/blog/show/33456961-pup-onekit =>PUP.OneKit
~ http://nicolascoolman.webs.com/apps/blog/show/27469224-pup-eorezo =>PUP.EoRezo
~ http://nicolascoolman.webs.com/apps/blog/show/28000037-pup-rewardsarcade =>PUP.RewardsArcade
~ http://nicolascoolman.webs.com/apps/blog/show/28419247-toolbar-avira =>Toolbar.Avira
~ http://nicolascoolman.webs.com/apps/blog/show/27630986-pup-funmoods =>PUP.Funmoods
~ http://nicolascoolman.webs.com/apps/blog/show/27146838-adware-mywebsearch =>Adware.MyWebSearch
~ http://nicolascoolman.webs.com/apps/blog/show/26611092-adware-bandoo =>Adware.Bandoo
~ http://nicolascoolman.webs.com/apps/blog/show/29344956-adware-similarsites =>Adware.SimilarSites
~ http://nicolascoolman.webs.com/apps/blog/show/29637859-toolbar-tarma =>PUP.Tarma
~ http://nicolascoolman.webs.com/apps/blog/show/30268689-toolbar-yahoo =>Toolbar.Yahoo
~ http://nicolascoolman.webs.com/apps/blog/show/28606910-pup-offerbox =>PUP.OfferBox
~ MSI: 31 link(s) detected in 02mn 05s



End of the scan (2767 lines in 09mn 49s)(0)

Publicité


Signaler le contenu de ce document

Publicité