cjoint

Publicité

Priorité au Logiciel Libre! Je soutiens l'April.

Publicité

Priorité au Logiciel Libre! Je soutiens l'April.

Format du document : text/plain

Prévisualisation

~ Rapport de ZHPDiag v2014.1.25.26 - Nicolas Coolman (25/01/2014)
~ Lancé par JeanPhi (30/01/2014 01:11:44)
~ Adresse du Site Web http://nicolascoolman.webs.com
~ Forums gratuits d'Assistance à la désinfection : http://nicolascoolman.webs.com/apps/links/
~ Traduit par Nicolas Coolman
~ Etat de la version :
~ Liste blanche : Activée par le programme
~ Elévation des Privilèges : OK
~ User Account Control (UAC): Deactivate by program


---\\ Navigateurs Internet
MSIE: Internet Explorer v9.0.8112.16421
MFIE: Mozilla Firefox 26.0 (Defaut)
GCIE: Google Chrome v32.0.1700.76

---\\ Informations sur les produits Windows
~ Langage: Français
Windows Vista (TM) Home Premium, 32-bit Service Pack 2 (Build 6002)
Windows Server License Manager Script : OK
~ Vista, OEM_COA_NSLP channel
Windows ID Activation : OK
~ Windows Partial Key : 9YK6K
Windows License : OK
Windows Automatic Updates : OK

---\\ Logiciels de protection du système
avast! Internet Security v8.0.1504.0
Malwarebytes Anti-Malware version 1.75.0.1300

---\\ Logiciels d'optimisation du système
CCleaner v4.03 =>Piriform Ltd

---\\ Logiciels de partage PeerToPeer

---\\ Surveillance de Logiciels
Adobe Flash Player 12 ActiveX
Adobe Reader X
Java 7 Update 25

---\\ Informations sur le système
~ Processor: x86 Family 6 Model 15 Stepping 13, GenuineIntel
~ Operating System: 32 Bits
Boot mode: Normal (Normal boot)
Total RAM: 3068 MB (42% free)
System Restore: Activé (Enable)
System drive C: has 420 GB (90%) free of 466 GB

---\\ Mode de connexion au système
~ Computer Name: PC-PORTABLE
~ User Name: JeanPhi
~ All Users Names: JeanPhi, Administrateur,
~ Unselected Option: None
Logged in as Administrator

---\\ Variables d'environnement
~ System Unit : C:\
~ %AppZHP% : C:\Users\JeanPhi\AppData\Roaming\ZHP\
~ %AppData% : C:\Users\JeanPhi\AppData\Roaming\
~ %Desktop% : C:\Users\JeanPhi\Desktop\
~ %Favorites% : C:\Users\JeanPhi\Favorites\
~ %LocalAppData% : C:\Users\JeanPhi\AppData\Local\
~ %StartMenu% : C:\Users\JeanPhi\AppData\Roaming\Microsoft\Windows\Start Menu\
~ %Windir% : C:\Windows\
~ %System% : C:\Windows\System32\

---\\ Enumération des unités disques
C: Hard drive, Flash drive, Thumb drive (Free 420 Go of 466 Go)
F: CD-ROM drive (Not Inserted)



---\\ Etat du Centre de Sécurité Windows
~ Security Center: 42 Legitimates Filtered in 00mn 00s



---\\ Recherche particulière de fichiers génériques
[MD5.D07D4C3038F3578FFCE1C0237F2A1253] - (.Microsoft Corporation - Explorateur Windows.) (.11/04/2009 - 07:27:36.) -- C:\Windows\Explorer.exe [2926592]
[MD5.101BA3EA053480BB5D957EF37C06B5ED] - (.Microsoft Corporation - Application de démarrage de Windows.) (.21/01/2008 - 03:23:42.) -- C:\Windows\System32\Wininit.exe [96768]
[MD5.A1236375B74EA63C75657D564890C436] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.29/01/2014 - 22:40:50.) -- C:\Windows\System32\wininet.dll [1126912]
[MD5.898E7C06A350D4A1A64A9EA264D55452] - (.Microsoft Corporation - Application d'ouverture de session Windows.) (.11/04/2009 - 07:28:13.) -- C:\Windows\System32\Winlogon.exe [314368]
[MD5.3911B972B55FEA0478476B2E777B29FA] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) (.21/04/2011 - 14:58:27.) -- C:\Windows\system32\Drivers\AFD.sys [273408]
[MD5.1F05B78AB91C9075565A9D8A4B880BC4] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.11/04/2009 - 07:32:26.) -- C:\Windows\system32\Drivers\atapi.sys [19944]
[MD5.7ADD03E75BEB9E6DD102C3081D29840A] - (.Microsoft Corporation - CD-ROM File System Driver.) (.21/01/2008 - 03:23:51.) -- C:\Windows\system32\Drivers\Cdfs.sys [70144]
[MD5.6B4BFFB9BECD728097024276430DB314] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.11/04/2009 - 05:39:17.) -- C:\Windows\system32\Drivers\Cdrom.sys [67072]
[MD5.622C41A07CA7E6DD91770F50D532CB6C] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.14/04/2011 - 15:59:03.) -- C:\Windows\system32\Drivers\DfsC.sys [75264]
[MD5.062452B7FFD68C8C042A6261FE8DFF4A] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.11/04/2009 - 05:42:42.) -- C:\Windows\system32\Drivers\HDAudBus.sys [561152]
[MD5.22D56C8184586B7A1F6FA60BE5F5A2BD] - (.Microsoft Corporation - Pilote de port i8042.) (.21/01/2008 - 03:23:20.) -- C:\Windows\system32\Drivers\i8042prt.sys [54784]
[MD5.8793643A67B42CEC66490B2A0CF92D68] - (.Microsoft Corporation - IP Network Address Translator.) (.21/01/2008 - 03:24:25.) -- C:\Windows\system32\Drivers\IpNat.sys [100864]
[MD5.1E94971C4B446AB2290DEB71D01CF0C2] - (.Microsoft Corporation - Windows NT SMB Minirdr.) (.29/04/2011 - 14:24:40.) -- C:\Windows\system32\Drivers\MRxSmb.sys [106496]
[MD5.ECD64230A59CBD93C85F1CD1CAB9F3F6] - (.Microsoft Corporation - MBT Transport driver.) (.11/04/2009 - 05:45:37.) -- C:\Windows\system32\Drivers\netBT.sys [185856]
[MD5.2C1121F2B87E9A6B12485DF53CD848C7] - (.Microsoft Corporation - Pilote du système de fichiers NT.) (.03/03/2013 - 20:07:52.) -- C:\Windows\system32\Drivers\ntfs.sys [1082232]
[MD5.0FA9B5055484649D63C303FE404E5F4D] - (.Microsoft Corporation - Pilote de port parallèle.) (.02/11/2006 - 09:51:30.) -- C:\Windows\system32\Drivers\Parport.sys [79360]
[MD5.A214ADBAF4CB47DD2728859EF31F26B0] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.21/01/2008 - 03:24:55.) -- C:\Windows\system32\Drivers\Rasl2tp.sys [76288]
[MD5.FBC0BACD9C3D7F6956853F64A66E252D] - (.Microsoft Corporation - Microsoft RDP Device redirector.) (.21/01/2008 - 03:23:01.) -- C:\Windows\system32\Drivers\rdpdr.sys [248832]
[MD5.7B75299A4D201D6A6533603D6914AB04] - (.Microsoft Corporation - SMB Transport driver.) (.11/04/2009 - 05:45:22.) -- C:\Windows\system32\Drivers\smb.sys [66560]
[MD5.76B06EB8A01FC8624D699E7045303E54] - (.Microsoft Corporation - TDI Translation Driver.) (.11/04/2009 - 05:45:56.) -- C:\Windows\system32\Drivers\tdx.sys [72192]
[MD5.786DB5771F05EF300390399F626BF30A] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) (.21/08/2012 - 12:47:42.) -- C:\Windows\system32\Drivers\volsnap.sys [224640]
~ Generic Processes: Scanned in 00mn 02s



---\\ Etat des fichiers cachés (Caché/Total)
~ Mes Favoris (My Favorites) : 1/21
~ Mon Bureau (My Desktop) : 1/11
~ Menu demarrer (Programs) : 1/38
~ Hidden Files: Scanned in 00mn 00s



---\\ Processus lancés
[MD5.0D392EDE3B97E0B3131B2F63EF1DB94E] - (.Microsoft Corporation - Windows Defender User Interface.) -- C:\Program Files\Windows Defender\MSASCui.exe [1008184] [PID.1780]
[MD5.19D93154C82FE39A99B269CED1056A92] - (.Synaptics, Inc. - Synaptics TouchPad Enhancements.) -- C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1033512] [PID.848]
[MD5.D63797E8E7781EE1500A810CB6194FA6] - (.Oracle Corporation - Java(TM) Update Scheduler.) -- C:\Program Files\Common Files\Java\Java Update\jusched.exe [253816] [PID.2036]
[MD5.043D3570D9177818FE3B57C6228AA5A9] - (.AVAST Software - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe [4858968] [PID.1728]
[MD5.4B555106290BD117334E9A08761C035A] - (...) -- ystem32\rundll32.exe [0] [PID.1740]
[MD5.1BA064138A5EE6B61A11A552DC072E57] - (.IDT, Inc. - IDT PC Audio.) -- C:\Program Files\IDT\WDM\sttray.exe [442467] [PID.1788]
[MD5.6AABCAB9FF3FFB26EF173153B765483D] - (...) -- C:\Users\JeanPhi\AppData\Roaming\cacaoweb\cacaoweb.exe [469504] [PID.1312] =>PUP.CacaoWeb
[MD5.BF08674925F151BD4537B89A493E3E0C] - (.Microsoft Corporation - Media Center Tray Applet.) -- C:\Windows\ehome\ehtray.exe [125952] [PID.2056]
[MD5.0F4195B9B348DE5CF9B822F81704B20E] - (.Microsoft Corporation - Media Center Media Status Aggregator Servic.) -- C:\Windows\ehome\ehmsas.exe [37376] [PID.3088]
[MD5.21AB6199ED0BBBD40B8B2C03C8D48C1B] - (...) -- C:\Windows\System32\jmdp\stij.exe [1015088] [PID.2996]
[MD5.892699A6AEB910C58B726BD70BEA4F4B] - (.Synaptics, Inc. - Synaptics Pointing Device Helper.) -- C:\Program Files\Synaptics\SynTP\SynTPHelper.exe [95528] [PID.3220]
[MD5.D1D5DAB39DCB4BE0359943738D87409B] - (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe [532040] [PID.5376]
[MD5.534A3CB0847BA114F0D8A5F2BB2EF6D0] - (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe [887432] [PID.4892]
[MD5.EFBF084E2E3034AD1D2C699719ECD4B5] - (...) -- C:\Program Files\Mobogenie\DaemonProcess.exe [766656] [PID.5052] =>PUP.Mobogenie
[MD5.3B0BA44D5691E00088B956394FDE64B6] - (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe [866584] [PID.4744]
[MD5.6080A176D09435FC8E6E800996656E18] - (.Microsoft Corporation - Console IME.) -- C:\Windows\system32\conime.exe [69120] [PID.876]
[MD5.1EEA6C1B35191DC177EA83672B9C3FC0] - (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe [275568] [PID.5340]
[MD5.CA25CAEEBDBE25D85565877219F684F8] - (.Nicolas Coolman - ZHPDiag.) -- C:\Program Files\ZHPDiag\ZHPDiag.exe [8339968] [PID.5708]
[MD5.029DF21EB9FC3FF0D628278774C99DC0] - (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 175.5.) -- C:\Windows\system32\nvvsvc.exe [118784] [PID.1044]
[MD5.EC9C5F6C0F58446545D839BC11A3692B] - (.IDT, Inc. - IDT PC Audio.) -- C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_a7e996cd\STacSV.exe [221273] [PID.1328]
[MD5.862BB4CBC05D80C5B45BE430E5EF872F] - (.Microsoft Corporation - Service de gestion des licences Microsoft.) -- C:\Windows\system32\SLsvc.exe [3408896] [PID.1636]
[MD5.C0BEB56ED79B59B7B33D0AA6C38A0BA6] - (.Hewlett-Packard Company - HpService.) -- C:\Windows\system32\Hpservice.exe [26168] [PID.1816]
[MD5.3CC44CA7AE61394004A64FB3F1225969] - (.AVAST Software - avast! Service.) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe [46808] [PID.376]
[MD5.23C3A0680042C0D1DE1F360F8B62BC57] - (.Microsoft Corporation - Infrastructure d'extensibilité pour les ser.) -- C:\Windows\system32\WLANExt.exe [74240] [PID.800]
[MD5.AD92147767588CE31C7ADFABAF2CFA3E] - (.AVAST Software - avast! firewall service.) -- C:\Program Files\AVAST Software\Avast\afwServ.exe [137960] [PID.812]
[MD5.D19C4EE2AC7C47B8F5F84FFF1A789D8A] - (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [63960] [PID.2868]
[MD5.465680BDE344CE4FF6646626AA3A9125] - (.Google Inc. - Google Crash Handler.) -- C:\Program Files\Google\Update\1.3.22.3\GoogleCrashHandler.exe [223112] [PID.3204]
[MD5.3B1B2EE9DF189F6BBB080BF393D1B2EE] - (.Andrea Electronics Corporation - Andrea filters APO access service (32-bit).) -- C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_a7e996cd\aestsrv.exe [77824] [PID.3348]
[MD5.C9CD3CC75CAACE4A529E68B9EC8FEA47] - (.Bandoo Media Inc. - Datamngr Coordinator.) -- C:\Program Files\Movies Toolbar\Datamngr\DatamngrCoordinator.exe [3447808] [PID.3696] =>PUP.Datamngr
[MD5.213AC469928A5E54F295A5546F164252] - (...) -- C:\Windows\system32\dmwu.exe [1488176] [PID.3868]
[MD5.7BB83B26669C11459C39F83F0BBE577D] - (.Bandoo Media Inc. - Data Manager.) -- C:\Program Files\Movies Toolbar\Datamngr\DatamngrUI.exe [3606528] [PID.3916] =>PUP.Datamngr
[MD5.37427195F66A7FECF43CFF57FBC6385C] - (.Pas de propriétaire - Printer Communication System.) -- C:\Windows\system32\lxdncoms.exe [589824] [PID.3952]
[MD5.5A4008ECE72A3ADC916B729A4BEAFD7F] - (...) -- C:\Users\JeanPhi\AppData\Local\tuto4pc_fr_49\supt4pc_fr_49.exe [3059696] [PID.2592] =>PUP.Eorezo
[MD5.5E5FB26E38FF731244BCC821343A2DE8] - (...) -- C:\Users\JeanPhi\AppData\Local\tuto4pc_fr_51\supt4pc_fr_51.exe [3059184] [PID.1424] =>PUP.Eorezo
[MD5.9F35E2C9F3A0C0CFC5F6826F0DA5525C] - (.TorchMedia Inc. - TorchCrashHandler.) -- C:\Users\JeanPhi\AppData\Local\Torch\Update\TorchCrashHandler.exe [1213448] [PID.2552]
[MD5.C5A75EB48E2344ABDC162BDA79E16841] - (.Microsoft Corporation - .NET Runtime Optimization Service.) -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [130384] [PID.3968]
[MD5.65085456FD9A74D7F1A999520C299ECB] - (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376] [PID.5436]
[MD5.E0D7732F2D2E24B2DB3F67B6750295B8] - (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe [701512] [PID.6120]
[MD5.C9A2ACA8B1D9427F41B2BF4509B48164] - (.Google Inc. - Google Chrome.) -- C:\Windows\TEMP\CR_FC9B0.tmp\setup.exe [1211672] [PID.5452]
[MD5.A98854730F001559A1E391DB9F726A34] - (...) -- C:\Program Files\Mobogenie\MgAssist.exe [63168] [PID.5800] =>PUP.Mobogenie
~ Processes Running: Scanned in 00mn 10s



---\\ Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2)
C:\Users\JeanPhi\AppData\Local\Google\Chrome\User Data\Default\Preferences
G2 - GCE: Preference [User Data\Default] [aaaaabcbmongicmdegkmmfgdickgnnob] Movies Toolbar v.21.56092, (Désactivé) =>PUP.MoviesToolbar
G2 - GCE: Preference [User Data\Default] [nkeimhogjdpnpccoofpliimaahmaaome] Hangout Services v.1.0 (Activé)
~ Google Browser: 10 Legitimates Filtered in 00mn 00s



---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3)
C:\Users\JeanPhi\AppData\Roaming\Mozilla\Firefox\Profiles\aaii18bj.default\prefs.js
M2 - MFEP: prefs.js [JeanPhi - aaii18bj.default\cacaoweb@cacaoweb.org] [] cacaoweb v1.0.33 (..) =>PUP.CacaoWeb
P2 - FPN: [HKLM] [@Allin1Convert_8h.com/Plugin] - (...) -- C:\Program Files\Allin1Convert_8h\bar\1.bin\NP8hStub.dll (.not file.) =>Adware.Allin1Convert
~ Firefox Browser: 11 Legitimates Filtered in 00mn 00s



---\\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
~ Proxy management: Scanned in 00mn 00s



---\\ Analyse des lignes F0, F1, F2, F3 - IniFiles, Autoloading programs
F2 - REG:system.ini: USERINIT=C:\Windows\system32\userinit.exe,
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe
F2 - REG:system.ini: VMApplet=rundll32 shell32,Control_RunDLL "sysdm.cpl"
~ Keys: Scanned in 00mn 00s



---\\ Hosts file redirection (O1)
~ Le fichier hosts est sain (The hosts file is clean).
~ Hosts File: Scanned in 00mn 00s
~ Nombre de lignes (Lines number): 20



---\\ Browser Helper Objects de navigateur (O2)
O2 - BHO: CrossriderApp0045918 - {11111111-1111-1111-1111-110411591118} . (.Plus HD - Plus-HD-4.9 BHO.) -- C:\Program Files\Plus-HD-4.9\Plus-HD-4.9-bho.dll =>PUP.CrossRider
~ BHO: 12 Legitimates Filtered in 00mn 00s



---\\ Internet Explorer Toolbars (O3)
O3 - Toolbar: avast! Online Security - [HKLM]{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} . (.AVAST Software - IE Webrep plugin.) -- C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O3 - Toolbar: (no name) - [HKLM]{3d86a75b-cb6b-4764-885d-ca6336f04ba2} Clé orpheline
~ Toolbar: Scanned in 00mn 00s



---\\ Autres liens utilisateurs (O4)
O4 - GS\Desktop [Public]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe
O4 - GS\Desktop [Public]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe
O4 - GS\Program [Public]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe
O4 - GS\QuickLaunch [JeanPhi]: AVI Converter.lnk . (...) -- C:\Program Files\AVIConverter\AviConverter.exe
O4 - GS\QuickLaunch [JeanPhi]: Dragon.lnk . (...) -- C:\Program Files\Comodo\Dragon\dragon.exe (.not file.)
O4 - GS\QuickLaunch [JeanPhi]: Google Chrome.lnk . (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe
O4 - GS\QuickLaunch [JeanPhi]: iLivid.lnk . (.Bandoo Media Inc. - iLivid Download Manager.) -- C:\Users\JeanPhi\AppData\Local\iLivid\iLivid.exe =>Adware.Bandoo
O4 - GS\QuickLaunch [JeanPhi]: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
O4 - GS\QuickLaunch [JeanPhi]: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe
O4 - GS\QuickLaunch [JeanPhi]: Torch.lnk . (.Torch Media Inc. - Torch.) -- C:\Users\JeanPhi\AppData\Local\Torch\Application\torch.exe
O4 - GS\Program [JeanPhi]: iLivid.lnk . (.Bandoo Media Inc. - iLivid Download Manager.) -- C:\Users\JeanPhi\AppData\Local\iLivid\iLivid.exe =>Adware.Bandoo
O4 - GS\Program [JeanPhi]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
O4 - GS\Program [JeanPhi]: Lollipop.lnk . (...) -- C:\users\jeanphi\appdata\local\lollipop\lollipop_08270219.exe (.not file.) =>Adware.Lollipop
O4 - GS\Program [JeanPhi]: Torch.lnk . (.Torch Media Inc. - Torch.) -- C:\Users\JeanPhi\AppData\Local\Torch\Application\torch.exe
O4 - GS\SystemTools [JeanPhi]: Internet Explorer (No Add-ons).lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
O4 - GS\Desktop [JeanPhi]: AVI Converter.lnk . (...) -- C:\Program Files\AVIConverter\AviConverter.exe
O4 - GS\Desktop [JeanPhi]: Facebook.lnk . (.Torch Media Inc. - Torch.) -- C:\Users\JeanPhi\AppData\Local\Torch\Application\torch.exe http://www.facebook.com
O4 - GS\Desktop [JeanPhi]: Mobogenie.lnk . (...) -- C:\Program Files\Mobogenie\Mobogenie.exe =>PUP.Mobogenie
O4 - GS\Desktop [JeanPhi]: Musique - Raccourci (2).lnk . (...) -- C:\Users\JeanPhi\Music
O4 - GS\Desktop [JeanPhi]: Youtube.lnk . (.Torch Media Inc. - Torch.) -- C:\Users\JeanPhi\AppData\Local\Torch\Application\torch.exe http://www.youtube.com
~ Global Startup: 65 Legitimates Filtered in 00mn 03s



---\\ Applications lancées au démarrage du sytème (O4)
O4 - HKLM\..\Run: [Windows Defender] . (.Microsoft Corporation - Windows Defender User Interface.) -- C:\Program Files\Windows Defender\MSASCui.exe
O4 - HKLM\..\Run: [SynTPEnh] . (.Synaptics, Inc. - Synaptics TouchPad Enhancements.) -- C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [Adobe ARM] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe =>.Adobe Systems Incorporated
O4 - HKLM\..\Run: [SunJavaUpdateSched] . (.Oracle Corporation - Java(TM) Update Scheduler.) -- C:\Program Files\Common Files\Java\Java Update\jusched.exe =>.Oracle Corporation
O4 - HKLM\..\Run: [avast] . (.AVAST Software - avast! Antivirus.) -- C:\Program Files\AVAST Software\Avast\avastUI.exe
O4 - HKLM\..\Run: [NvCplDaemon] . (.NVIDIA Corporation - NVIDIA Display Properties Extension.) -- C:\Windows\system32\NvCpl.dll =>.NVIDIA Corporation
O4 - HKLM\..\Run: [NvMediaCenter] . (.NVIDIA Corporation - NVIDIA Media Center Library.) -- C:\Windows\system32\NvMcTray.dll
O4 - HKLM\..\Run: [SysTrayApp] . (.IDT, Inc. - IDT PC Audio.) -- C:\Program Files\IDT\WDM\sttray.exe
O4 - HKLM\..\Run: [mobilegeni daemon] . (...) -- C:\Program Files\Mobogenie\DaemonProcess.exe =>PUP.Mobogenie
O4 - HKLM\..\RunOnce: [Malwarebytes Anti-Malware] . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe
O4 - HKLM\..\RunOnce: [20131224] . (.AVAST Software - avast! Emergency Update.) -- C:\Program Files\AVAST Software\Avast\setup\emupdate\1cc18d4d-a6bd-4cf3-902d-4259bd3d4487.exe
O4 - HKCU\..\Run: [ehTray.exe] . (.Microsoft Corporation - Media Center Tray Applet.) -- C:\Windows\ehome\ehTray.exe
O4 - HKCU\..\Run: [NextLive] . (.NewNextDotMe - NewNext Helper Engine.) -- C:\Users\JeanPhi\AppData\Roaming\newnext.me\nengine.dll =>PUP.NextLive
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Volet Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] Clé orpheline
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Volet Windows.) -- C:\Program Files\Windows Sidebar\Sidebar.exe =>.Microsoft Corporation
O4 - HKUS\S-1-5-20\..\Run: [WindowsWelcomeCenter] Clé orpheline
O4 - HKUS\S-1-5-21-2071036999-2460330817-1470659500-1000\..\Run: [ehTray.exe] . (.Microsoft Corporation - Media Center Tray Applet.) -- C:\Windows\ehome\ehTray.exe
O4 - HKUS\S-1-5-21-2071036999-2460330817-1470659500-1000\..\Run: [NextLive] . (.NewNextDotMe - NewNext Helper Engine.) -- C:\Users\JeanPhi\AppData\Roaming\newnext.me\nengine.dll =>PUP.NextLive
~ Application: Scanned in 00mn 00s



---\\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{105F1227-D3AE-47DB-9779-9EDBB4DEE5DC}: DhcpNameServer = 192.168.0.254
O17 - HKLM\System\CS1\Services\Tcpip\..\{105F1227-D3AE-47DB-9779-9EDBB4DEE5DC}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{EF7FEB14-72F0-4E64-A811-D01742551D41}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS2\Services\Tcpip\..\{105F1227-D3AE-47DB-9779-9EDBB4DEE5DC}: DhcpNameServer = 192.168.0.254
O17 - HKLM\System\CS3\Services\Tcpip\..\{105F1227-D3AE-47DB-9779-9EDBB4DEE5DC}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CS3\Services\Tcpip\..\{EF7FEB14-72F0-4E64-A811-D01742551D41}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.254
~ Domain: Scanned in 00mn 00s



---\\ Protocole additionnel (O18)
O18 - Handler: vbscript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\system32\mshtml.dll =>.Microsoft Corporation
O18 - Filter: application/x-msdownload - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll =>.Microsoft Corporation
~ Protocole Additionnel: Scanned in 00mn 00s



---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20)
O20 - AppInit_DLLs: . (...) - C:\PROGRA~2\Wincert\WIN32C~1.dll
~ AppInit DLL: Scanned in 00mn 00s



---\\ Clé de Registre autorun SharedTaskScheduler (STS) (O22)
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} . (.Microsoft Corporation - Bibliothèque de l'interface utilisateur du.) -- C:\Windows\System32\browseui.dll
~ STS/SSO: Scanned in 00mn 00s



---\\ Liste des services NT non Microsoft et non désactivés (O23)
O23 - Service: Allin1ConvertService (Allin1Convert_8hService) . (.COMPANYVERS_NAME - PRODUCTVERS_TITLE.) - C:\Program Files\Allin1Convert_8h\bar\1.bin\8hbarsvc.exe =>Adware.Allin1Convert
O23 - Service: Datamngr Coordinator (DatamngrCoordinator) . (.Bandoo Media Inc. - Datamngr Coordinator.) - C:\Program Files\Movies Toolbar\Datamngr\DatamngrCoordinator.exe =>PUP.Datamngr
O23 - Service: (IBUpdaterService) . (...) - C:\Windows\System32\dmwu.exe =>Adware.InstallBrain
O23 - Service: supt4pc_fr_49 (supt4pc_fr_49) . (...) - C:\Users\JeanPhi\AppData\Local\tuto4pc_fr_49\supt4pc_fr_49.exe =>PUP.Eorezo
O23 - Service: supt4pc_fr_51 (supt4pc_fr_51) . (...) - C:\Users\JeanPhi\AppData\Local\tuto4pc_fr_51\supt4pc_fr_51.exe =>PUP.Eorezo
O23 - Service: Torch Crash Handler (TorchCrashHandler) . (.TorchMedia Inc. - TorchCrashHandler.) - C:\Users\JeanPhi\AppData\Local\Torch\Update\TorchCrashHandler.exe
~ Services: 17 Legitimates Filtered in 00mn 48s



---\\ Clés Session Manager (AppCertDlls,KnownDLLs) (O36)
O36 - AppCertDlls: (x64) . (...) -- c:\program files\movies toolbar\datamngr\x64\apcrtldr.dll =>PUP.Datamngr
O36 - AppCertDlls: (x86) . (...) -- C:\Program Files\Movies Toolbar\Datamngr\apcrtldr.dll =>PUP.Datamngr
~ Keys: Scanned in 00mn 00s



---\\ Tâches planifiées en automatique (O39)
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\AmiUpdXp.job [364] =>PUP.Software.Updater
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\Plus-HD-2.3-chromeinstaller.job [1886] =>Adware.PlusHD
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\Plus-HD-2.3-codedownloader.job [1190] =>Adware.PlusHD
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\Plus-HD-2.3-enabler.job [1090] =>Adware.PlusHD
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\Plus-HD-4.9-chromeinstaller.job [1884] =>Adware.PlusHD
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\Plus-HD-4.9-codedownloader.job [1190] =>Adware.PlusHD
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\Plus-HD-4.9-enabler.job [1090] =>Adware.PlusHD
O39 - APT:Automatic Planified Task - C:\Windows\Tasks\Plus-HD-4.9-updater.job [1288] =>Adware.PlusHD
[MD5.222CF99D2ACE1A7B68006E41E6531191] [APT] [AmiUpdXp] (...) -- C:\Users\JeanPhi\AppData\Local\SwvUpdater\Updater.exe [289832] =>PUP.Software.Updater
[MD5.F45819C31B22C0F7193FC521008195D4] [APT] [Plus-HD-2.3-chromeinstaller] (.Plus HD.) -- C:\Program Files\Plus-HD-2.3\Plus-HD-2.3-chromeinstaller.exe [465256] =>Adware.PlusHD
[MD5.0279DED5A7592F3BB8D89BBBEB0C51CA] [APT] [Plus-HD-2.3-codedownloader] (.Plus HD.) -- C:\Program Files\Plus-HD-2.3\Plus-HD-2.3-codedownloader.exe [481128] =>Adware.PlusHD
[MD5.4F6AF91CBBEEACB95EAFFCEA9CFAFC8F] [APT] [Plus-HD-2.3-enabler] (.Plus HD.) -- C:\Program Files\Plus-HD-2.3\Plus-HD-2.3-enabler.exe [346984] =>Adware.PlusHD
[MD5.54399ABF6FA4FF05C14EE75A4C764CAA] [APT] [Plus-HD-4.9-chromeinstaller] (.Plus HD.) -- C:\Program Files\Plus-HD-4.9\Plus-HD-4.9-chromeinstaller.exe [502120] =>Adware.PlusHD
[MD5.64B9E9DF13E0C0E0C8BDA3937C2AF5A7] [APT] [Plus-HD-4.9-codedownloader] (.Plus HD.) -- C:\Program Files\Plus-HD-4.9\Plus-HD-4.9-codedownloader.exe [518504] =>Adware.PlusHD
[MD5.223310A9970D88ABFAB730FBF8E21C9D] [APT] [Plus-HD-4.9-enabler] (.Plus HD.) -- C:\Program Files\Plus-HD-4.9\Plus-HD-4.9-enabler.exe [338792] =>Adware.PlusHD
[MD5.4A91515860926F82FFF4C4C12B7386BA] [APT] [Plus-HD-4.9-updater] (.Plus HD.) -- C:\Program Files\Plus-HD-4.9\Plus-HD-4.9-updater.exe [350568] =>Adware.PlusHD
[MD5.F17EB7E9E65AA59834A7D5D661C6917A] [APT] [{0B22DCF8-7A77-4AAC-9EE2-49F8CDAFC9EC}] (...) -- c:\users\JeanPhi\appdata\local\lollipop\lollipop_08270219.bat [376] =>Adware.Lollipop
[MD5.F17EB7E9E65AA59834A7D5D661C6917A] [APT] [{BC8230A7-4C1A-48A1-B0D9-14D1DC92AAD7}] (...) -- c:\users\JeanPhi\appdata\local\lollipop\lollipop_08270219.bat [376] =>Adware.Lollipop
~ Scheduled Task: 42 Legitimates Filtered in 00mn 15s



---\\ Logiciels installés (O42)
O42 - Logiciel: AppsHat Mobile Apps - (.Somoto Ltd..) [HKCU] -- AppsHat Mobile Apps =>Adware.MegaSearch
O42 - Logiciel: DealPly (remove only) - (.DealPly Technologies Ltd..) [HKLM] -- DealPly =>PUP.DealPly
O42 - Logiciel: Dealply - (...) [HKCU] -- Dealply =>PUP.DealPly
O42 - Logiciel: Lollipop - (.Lollipop Network, S.L..) [HKCU] -- lollipop_08270219 =>Adware.Lollipop
O42 - Logiciel: Lyrics-Pal - (.LyricsPal Soft. LTD.) [HKLM] -- {e1cd25c0-a55b-46e6-8165-0c8111616fdb} =>Adware.AddLyrics
O42 - Logiciel: Plus-HD-2.3 - (.Plus HD.) [HKLM] -- Plus-HD-2.3 =>Adware.PlusHD
O42 - Logiciel: Plus-HD-4.9 - (.Plus HD.) [HKLM] -- Plus-HD-4.9 =>Adware.PlusHD
O42 - Logiciel: SweetIM Bundle by SweetPacks - (.SweetPacks LTD.) [HKLM] -- SweetIM Bundle by SweetPacks =>PUP.SweetIM
O42 - Logiciel: SweetPacks Updater Service - (...) [HKLM] -- WNLT =>PUP.SweetIM
O42 - Logiciel: Web Cake 3.00 - (.Web Cake LLC.) [HKLM] -- {C4ED781C-7394-4906-AAFF-D6AB64FF7C38} =>Adware.WebCake
O42 - Logiciel: iLivid - (.Bandoo Media Inc.) [HKLM] -- iLivid =>Adware.Bandoo
O42 - Logiciel: tuto4pc_fr_43 - (.TUTO4PC.) [HKLM] -- tuto4pc_fr_43_is1 =>PUP.Eorezo
O42 - Logiciel: tuto4pc_fr_49 - (.TUTO4PC.) [HKLM] -- tuto4pc_fr_49_is1 =>PUP.Eorezo
O42 - Logiciel: tuto4pc_fr_51 - (.TUTO4PC.) [HKLM] -- tuto4pc_fr_51_is1 =>PUP.Eorezo
~ Logic: 24 Legitimates Filtered in 00mn 02s



---\\ HKCU & HKLM Software Keys
[HKCU\Software\5e0dcdde13aef48] =>Hijacker.Eazel
[HKCU\Software\APN DTX]
[HKCU\Software\Allin1Convert_8h] =>Adware.Allin1Convert
[HKCU\Software\BI]
[HKCU\Software\BabSolution] =>Hijacker.BabSolution
[HKCU\Software\Datamngr] =>PUP.Datamngr
[HKCU\Software\DealPly] =>PUP.DealPly
[HKCU\Software\FileScout] =>PUP.FileScout
[HKCU\Software\IM]
[HKCU\Software\Iminent] =>Adware.IMBooster
[HKCU\Software\IncrediMail]
[HKCU\Software\InstallCore] =>Adware.InstallCore
[HKCU\Software\InstalledBrowserExtensions] =>Adware.VidSaver
[HKCU\Software\Softonic] =>Toolbar.Conduit
[HKCU\Software\SweetIM] =>PUP.SweetIM
[HKCU\Software\TutoTag] =>Spyware.AgenceExclusive
[HKCU\Software\Tutorials] =>Spyware.AgenceExclusive
[HKCU\Software\WNLT] =>Adware.IncrediBar
[HKCU\Software\Wajam] =>PUP.Wajam
[HKCU\Software\cacaoweb] =>PUP.CacaoWeb
[HKCU\Software\ilivid] =>Adware.Bandoo
[HKCU\Software\lollipop] =>Adware.Lollipop
[HKCU\Software\tuto4pc] =>PUP.Eorezo
[HKLM\Software\5e0dcdde13aef48] =>Hijacker.Eazel
[HKLM\Software\AedgePerformanceBCN] =>Adware.SPointer
[HKLM\Software\Allin1Convert_8h] =>Adware.Allin1Convert
[HKLM\Software\DataMngr] =>PUP.Datamngr
[HKLM\Software\DealPlyLive] =>PUP.DealPly
[HKLM\Software\Iminent] =>Adware.IMBooster
[HKLM\Software\InstallIQ]
[HKLM\Software\Minibar] =>PUP.Minibar
[HKLM\Software\SweetIM] =>PUP.SweetIM
[HKLM\Software\TUTO4PC] =>PUP.Eorezo
[HKLM\Software\Tarma Installer] =>PUP.Tarma
[HKLM\Software\Wajam] =>PUP.Wajam
~ Key Software: 208 Legitimates Filtered in 00mn 03s



---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 20/07/2013 - 13:18:53 - [2,480] ----D C:\Program Files\Allin1Convert_8h =>Adware.Allin1Convert
O43 - CFD: 02/11/2013 - 14:27:19 - [0,918] ----D C:\Program Files\DealPly =>PUP.DealPly
O43 - CFD: 21/07/2013 - 16:37:46 - [0] ----D C:\Program Files\DealPlyLive =>PUP.DealPly
O43 - CFD: 25/07/2013 - 15:44:50 - [0] ----D C:\Program Files\majtuto4pc_fr_a1 =>PUP.Eorezo
O43 - CFD: 26/07/2013 - 22:46:38 - [0] ----D C:\Program Files\majtuto4pc_fr_a2 =>PUP.Eorezo
O43 - CFD: 23/07/2013 - 15:24:57 - [0,384] ----D C:\Program Files\Minibar =>PUP.Minibar
O43 - CFD: 04/11/2013 - 23:56:52 - [22,211] ----D C:\Program Files\Movies Toolbar =>PUP.MoviesToolbar
O43 - CFD: 21/07/2013 - 17:56:49 - [6,055] ----D C:\Program Files\Plus-HD-2.3 =>Adware.PlusHD
O43 - CFD: 11/12/2013 - 18:39:12 - [5,688] ----D C:\Program Files\Plus-HD-4.9 =>Adware.PlusHD
O43 - CFD: 11/12/2013 - 19:20:10 - [0] ----D C:\Program Files\Smart PC Cleaner =>USP.PCCleaner
O43 - CFD: 22/07/2013 - 13:05:23 - [0,359] ----D C:\Program Files\sweetpacks bundle uninstaller =>PUP.SweetIM
O43 - CFD: 15/05/2013 - 10:04:36 - [-1472,059] ----D C:\Program Files\SwSetup
O43 - CFD: 30/08/2013 - 23:21:04 - [0,711] ----D C:\Program Files\tuto4pc_fr_43 =>PUP.Eorezo
O43 - CFD: 30/08/2013 - 23:21:04 - [0,744] ----D C:\Program Files\tuto4pc_fr_49 =>PUP.Eorezo
O43 - CFD: 30/08/2013 - 23:21:04 - [0,716] ----D C:\Program Files\tuto4pc_fr_51 =>PUP.Eorezo
O43 - CFD: 11/12/2013 - 18:32:21 - [0] ----D C:\ProgramData\APN
O43 - CFD: 03/07/2013 - 14:51:32 - [0] ----D C:\ProgramData\Babylon =>PUP.Babylon
O43 - CFD: 29/10/2013 - 14:21:56 - [0,082] ----D C:\ProgramData\BitGuard =>PUP.BitGuard
O43 - CFD: 20/01/2014 - 19:15:08 - [0] ----D C:\ProgramData\Browser Manager
O43 - CFD: 20/01/2014 - 19:15:08 - [0] ----D C:\ProgramData\BrowserProtect =>Hijacker.Eazel
O43 - CFD: 30/01/2014 - 01:14:44 - [0,008] ----D C:\ProgramData\Datamngr =>PUP.Datamngr
O43 - CFD: 21/07/2013 - 16:37:45 - [0,002] ----D C:\ProgramData\DealPlyLive =>PUP.DealPly
O43 - CFD: 06/08/2013 - 13:40:32 - [2,736] ----D C:\ProgramData\Tarma Installer =>PUP.Tarma
O43 - CFD: 29/01/2014 - 23:43:18 - [0,559] ----D C:\ProgramData\TorchCrashHandler
O43 - CFD: 02/11/2013 - 14:30:01 - [0,179] ----D C:\Users\JeanPhi\AppData\Roaming\BabSolution =>Hijacker.BabSolution
O43 - CFD: 03/07/2013 - 22:48:43 - [0,078] ----D C:\Users\JeanPhi\AppData\Roaming\Babylon =>PUP.Babylon
O43 - CFD: 30/01/2014 - 01:06:59 - [1886,157] ----D C:\Users\JeanPhi\AppData\Roaming\cacaoweb =>PUP.CacaoWeb
O43 - CFD: 21/07/2013 - 16:37:39 - [0] ----D C:\Users\JeanPhi\AppData\Roaming\Dealply =>PUP.DealPly
O43 - CFD: 29/09/2013 - 02:35:17 - [0,308] ----D C:\Users\JeanPhi\AppData\Roaming\File Scout =>PUP.FileScout
O43 - CFD: 11/12/2013 - 18:43:18 - [0,512] ----D C:\Users\JeanPhi\AppData\Roaming\MP3Rocket
O43 - CFD: 30/01/2014 - 00:02:08 - [1,228] ----D C:\Users\JeanPhi\AppData\Roaming\newnext.me =>PUP.NextLive
O43 - CFD: 05/11/2013 - 00:08:51 - [0] ----D C:\Users\JeanPhi\AppData\Roaming\TFP
O43 - CFD: 20/07/2013 - 13:19:21 - [2,693] ----D C:\Users\JeanPhi\AppData\Local\Allin1Convert_8h =>Adware.Allin1Convert
O43 - CFD: 23/07/2013 - 15:25:03 - [0,078] ----D C:\Users\JeanPhi\AppData\Local\AppsHat Mobile Apps =>Adware.MegaSearch
O43 - CFD: 18/08/2013 - 01:31:42 - [0,668] ----D C:\Users\JeanPhi\AppData\Local\Babylon =>PUP.Babylon
O43 - CFD: 21/07/2013 - 16:37:46 - [0] ----D C:\Users\JeanPhi\AppData\Local\DealPlyLive =>PUP.DealPly
O43 - CFD: 21/07/2013 - 16:37:51 - [0] ----D C:\Users\JeanPhi\AppData\Local\eorezo =>PUP.Eorezo
O43 - CFD: 30/01/2014 - 00:01:34 - [1,224] ----D C:\Users\JeanPhi\AppData\Local\genienext
O43 - CFD: 23/07/2013 - 15:25:36 - [0] ----D C:\Users\JeanPhi\AppData\Local\IAC
O43 - CFD: 05/11/2013 - 00:08:07 - [154,330] ----D C:\Users\JeanPhi\AppData\Local\iLivid =>Adware.Bandoo
O43 - CFD: 30/08/2013 - 23:21:04 - [0,339] ----D C:\Users\JeanPhi\AppData\Local\Lollipop =>Adware.Lollipop
O43 - CFD: 23/07/2013 - 15:24:59 - [0,944] ----D C:\Users\JeanPhi\AppData\Local\Minibar =>PUP.Minibar
O43 - CFD: 30/01/2014 - 00:46:42 - [0] ----D C:\Users\JeanPhi\AppData\Local\Plus-HD-4.9 =>Adware.PlusHD
O43 - CFD: 25/07/2013 - 15:44:53 - [0] ----D C:\Users\JeanPhi\AppData\Local\supt4pc_fr_49 =>PUP.Eorezo
O43 - CFD: 26/07/2013 - 22:46:41 - [0] ----D C:\Users\JeanPhi\AppData\Local\supt4pc_fr_51 =>PUP.Eorezo
O43 - CFD: 29/01/2014 - 23:59:01 - [0,279] ----D C:\Users\JeanPhi\AppData\Local\SwvUpdater =>PUP.Software.Updater
O43 - CFD: 30/08/2013 - 23:21:04 - [11,708] ----D C:\Users\JeanPhi\AppData\Local\tuto4pc_fr_43 =>PUP.Eorezo
O43 - CFD: 29/07/2013 - 23:06:24 - [2,918] ----D C:\Users\JeanPhi\AppData\Local\tuto4pc_fr_49 =>PUP.Eorezo
O43 - CFD: 26/07/2013 - 22:46:42 - [2,918] ----D C:\Users\JeanPhi\AppData\Local\tuto4pc_fr_51 =>PUP.Eorezo
O43 - CFD: 23/07/2013 - 15:25:03 - [0,004] ----D C:\Users\JeanPhi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AppsHat =>Adware.MegaSearch
O43 - CFD: 18/08/2013 - 01:31:28 - [0,002] ----D C:\Users\JeanPhi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AVI Converter
O43 - CFD: 28/10/2013 - 22:18:33 - [0,001] ----D C:\Users\JeanPhi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BitGuard =>PUP.BitGuard
O43 - CFD: 21/07/2013 - 16:37:37 - [0,001] ----D C:\Users\JeanPhi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\DealPly =>PUP.DealPly
~ Program Folder: 173 Legitimates Filtered in 00mn 52s



---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44)
O44 - LFC:[MD5.14D9A057A082E00116A7A4415051D07C] - 27/01/2014 - 16:31:06 ---A- . (...) -- C:\Windows\System32\WFP.TMF [218228]
O44 - LFC:[MD5.4B333D3CC96AE66BD754329FD2989EE2] - 29/01/2014 - 22:40:47 ---A- . (...) -- C:\Windows\System32\ieuinit.inf [72822]
O44 - LFC:[MD5.ECD81B99477AB4A93D7838EB40B870D0] - 29/01/2014 - 22:41:07 ---A- . (...) -- C:\Windows\System32\icrav03.rat [8798]
O44 - LFC:[MD5.6D21D0A95286DCD09E354B612F592EB7] - 29/01/2014 - 22:41:07 ---A- . (...) -- C:\Windows\System32\ticrf.rat [1988]
~ Files: 245 Legitimates Filtered in 00mn 44s



---\\ Derniers fichiers créés dans Windows Prefetcher (O45)
O45 - LFCP:[MD5.880BF7382FE63A11734B2C2FEC1E4653] - 20/01/2014 - 23:00:53 ---A- - C:\Windows\Prefetch\WSWTRSVC.EXE-47DAAD90.pf
O45 - LFCP:[MD5.DB5D6ACF81CA8B312FF757DE79159CBC] - 20/01/2014 - 23:02:23 ---A- - C:\Windows\Prefetch\SYSHIPER.EXE-02E8CC35.pf
O45 - LFCP:[MD5.15B68F8721004086D2A6EA85236B11A9] - 20/01/2014 - 23:02:27 ---A- - C:\Windows\Prefetch\DEVICEPROPS.EXE-910AB7D6.pf
O45 - LFCP:[MD5.805B9A7D5AC669F807EC3391ABBD50A6] - 21/01/2014 - 13:03:28 ---A- - C:\Windows\Prefetch\D8E4BF44-BB7F-4F9F-B757-3710E-D1136E77.pf
O45 - LFCP:[MD5.618B4ECCFE0D4FE6027F0640E6FA17B4] - 22/01/2014 - 13:40:22 ---A- - C:\Windows\Prefetch\87226963-6D77-4F84-AEF9-69168-C7988CB0.pf
O45 - LFCP:[MD5.247BA2E25C1891A40BF3AD5463889BFF] - 27/01/2014 - 16:49:22 ---A- - C:\Windows\Prefetch\TORCH.EXE-A7687171.pf
O45 - LFCP:[MD5.259044F452ECFF44DC8E227EC176D34F] - 29/01/2014 - 21:58:21 ---A- - C:\Windows\Prefetch\NVUHDA.EXE-7BC44229.pf
O45 - LFCP:[MD5.D9E0FFC30AD550785E579ED530F82E9F] - 29/01/2014 - 21:58:57 ---A- - C:\Windows\Prefetch\IDTPIMA.EXE-680F039E.pf
O45 - LFCP:[MD5.BAB8D785D2705729A8FF16D8CE856454] - 29/01/2014 - 22:15:43 ---A- - C:\Windows\Prefetch\DATAMNGRUI.EXE-B682612D.pf =>PUP.Datamngr
O45 - LFCP:[MD5.E15C02A55F0F246B57C6D1571A9F47BB] - 29/01/2014 - 23:44:06 ---A- - C:\Windows\Prefetch\8HBARSVC.EXE-903339AF.pf
O45 - LFCP:[MD5.F4F1A5CB381CA7EC232679BA5103A885] - 29/01/2014 - 23:44:06 ---A- - C:\Windows\Prefetch\LXDNCOMS.EXE-9EACE90B.pf
O45 - LFCP:[MD5.4FBCCE6F3E44DA9401CA85C2E35147A2] - 30/01/2014 - 00:16:14 ---A- - C:\Windows\Prefetch\CACAOWEB.EXE-A8DF4636.pf =>PUP.CacaoWeb
O45 - LFCP:[MD5.1DC8513AADF00138A19F7E98E8537EDF] - 30/01/2014 - 00:38:10 ---A- - C:\Windows\Prefetch\PLUS-HD-4.9-CODEDOWNLOADER.EX-F1D54A5E.pf =>Adware.PlusHD
O45 - LFCP:[MD5.7727CAFEED13D1622C081B340CC07FC9] - 30/01/2014 - 00:39:01 ---A- - C:\Windows\Prefetch\PLUS-HD-4.9-ENABLER.EXE-5C428BA1.pf =>Adware.PlusHD
O45 - LFCP:[MD5.7B523384AA7C88D5F9CFF58DD36E5617] - 30/01/2014 - 00:46:47 ---A- - C:\Windows\Prefetch\PLUS-HD-4.9-BUTTONUTIL.EXE-51838BF6.pf =>Adware.PlusHD
O45 - LFCP:[MD5.DD4BE110ABD6F03D528D36A62202EFAA] - 30/01/2014 - 00:47:08 ---A- - C:\Windows\Prefetch\PLUS-HD-4.9-BG.EXE-8A2DF699.pf =>Adware.PlusHD
O45 - LFCP:[MD5.905125B48D79DB174635CE6786EB037D] - 30/01/2014 - 01:00:13 ---A- - C:\Windows\Prefetch\PLUS-HD-2.3-ENABLER.EXE-7F8C5F91.pf =>Adware.PlusHD
~ Prefetcher: 142 Legitimates Filtered in 00mn 00s



---\\ Image File Execution Options (IFEO) (O50)
O50 - IFEO:Image File Execution Options - bitguard.exe - tasklist.exe =>PUP.BitGuard
O50 - IFEO:Image File Execution Options - bprotect.exe - tasklist.exe
O50 - IFEO:Image File Execution Options - bpsvc.exe - tasklist.exe
O50 - IFEO:Image File Execution Options - browserdefender.exe - tasklist.exe =>Hijacker.Eazel
O50 - IFEO:Image File Execution Options - browserprotect.exe - tasklist.exe =>Hijacker.Eazel
O50 - IFEO:Image File Execution Options - browsersafeguard.exe - tasklist.exe =>PUP.BrowserSafeguard
O50 - IFEO:Image File Execution Options - protectedsearch.exe - tasklist.exe =>Spyware.ProtectedSearch
O50 - IFEO:Image File Execution Options - searchprotection.exe - tasklist.exe =>Toolbar.Conduit
O50 - IFEO:Image File Execution Options - snapdo.exe - tasklist.exe
O50 - IFEO:Image File Execution Options - stinst32.exe - tasklist.exe
O50 - IFEO:Image File Execution Options - stinst64.exe - tasklist.exe
~ IFEO: Scanned in 00mn 00s



---\\ Clé de registre Shell MountPoints2 (MPKS) (O51)
O51 - MPSK:{8e2caa8c-bd3b-11e2-ad5c-806e6f6e6963}\AutoRun\command. (...) -- F:\Autorun.exe (.not file.)
~ Keys: Scanned in 00mn 00s



---\\ Enumération des clés de registre StartupReg (SMSR) (O53)
O53 - SMSR:HKLM\...\startupreg\Apps Hat [Key] . (.Pas de propriétaire - WebPlayer.) -- C:\Users\JeanPhi\AppData\Local\WebPlayer\AppsHat\WebPlayer.exe =>Adware.MegaSearch
O53 - SMSR:HKLM\...\startupreg\AppsHat [Key] . (.Pas de propriétaire - WebPlayer.) -- C:\Users\JeanPhi\AppData\Local\WebPlayer\AppsHat\WebPlayer.exe =>Adware.MegaSearch
O53 - SMSR:HKLM\...\startupreg\cacaoweb [Key] . (...) -- C:\Users\JeanPhi\AppData\Roaming\cacaoweb\cacaoweb.exe =>PUP.CacaoWeb
O53 - SMSR:HKLM\...\startupreg\iLivid [Key] . (.Bandoo Media Inc. - iLivid Download Manager.) -- C:\Users\JeanPhi\AppData\Local\iLivid\iLivid.exe =>Adware.Bandoo
O53 - SMSR:HKLM\...\startupreg\Skype [Key] . (...) -- C:\Program Files\Skype\Phone\Skype.exe (.not file.)
~ SMSR Keys: 9 Legitimates Filtered in 00mn 00s



---\\ Enumération des clés de registre PoliciesSystem (MWPS) (O55)
O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0
O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0
~ MWPS: 16 Legitimates Filtered in 00mn 00s



---\\ Liste des pilotes du système (SDL) (O58)
O58 - SDL:[MD5.7B948E3657BEA62E437BC46CA6EF6012] - 25/09/2013 - 13:15:31 ---A- . (.ALWIL Software - avast! Filtering NDIS driver.) -- C:\Windows\System32\Drivers\aswNdis.sys [12112]
O58 - SDL:[MD5.496A5695B8351CA74011FF96D46FD21B] - 19/12/2013 - 14:11:30 ---A- . (...) -- C:\Windows\System32\Drivers\aswRvrt.sys [49376]
O58 - SDL:[MD5.FAF091AA45A6A6CF3CF94FE065950956] - 30/08/2013 - 15:55:37 ---A- . (...) -- C:\Windows\System32\Drivers\aswSnx.sys.sum [175]
O58 - SDL:[MD5.3FFBEE694566CADB0A64D8A1ACD7DBCE] - 30/08/2013 - 15:55:37 ---A- . (...) -- C:\Windows\System32\Drivers\aswSP.sys.sum [175]
O58 - SDL:[MD5.BBCB563599904F68D66D0BE4D8BDD639] - 19/12/2013 - 14:11:32 ---A- . (...) -- C:\Windows\System32\Drivers\aswVmm.sys [175176]
O58 - SDL:[MD5.22EA82FFE8CA4965C1994F24C35DC202] - 30/08/2013 - 15:55:37 ---A- . (...) -- C:\Windows\System32\Drivers\aswVmm.sys.sum [175]
O58 - SDL:[MD5.23B62471681A124889978F6295B3F4C6] - 21/01/2008 - 03:23:22 ---A- . (.Emulex - Storport Miniport Driver for LightPulse HBAs.) -- C:\Windows\System32\Drivers\elxstor.sys [342584]
O58 - SDL:[MD5.4CD6B056C5FD9E97C06FE74C81479517] - 24/01/2008 - 14:23:12 ---A- . (.ENE TECHNOLOGY INC. - ENE CIR Driver for eHome.) -- C:\Windows\System32\Drivers\enecir.sys [52736]
O58 - SDL:[MD5.BCED60D16156E428F8DF8CF27B0DF150] - 02/11/2006 - 10:50:07 ---A- . (.Integrated Technology Express, Inc. - ITE IT8211 ATA/ATAPI SCSI miniport.) -- C:\Windows\System32\Drivers\iteatapi.sys [35944]
O58 - SDL:[MD5.06FA654504A498C30ADCA8BEC4E87E7E] - 02/11/2006 - 10:50:09 ---A- . (.Integrated Technology Express, Inc. - ITE IT8212 ATA RAID SCSI miniport.) -- C:\Windows\System32\Drivers\iteraid.sys [35944]
O58 - SDL:[MD5.21CC262AB5F42F7A6B91DC7304C2F267] - 27/06/2008 - 16:44:18 ---A- . (.IDT, Inc. - IDT PC Audio.) -- C:\Windows\System32\Drivers\stwrt.sys [380928]
O58 - SDL:[MD5.147B9CCE0B523D4DAFD91A60C2CE2B25] - 30/04/2013 - 09:51:09 ---A- . (.The OpenVPN Project - TAP-Windows Virtual Network Driver.) -- C:\Windows\System32\Drivers\tap0901.sys [35088]
O58 - SDL:[MD5.9224BB254F591DE4CA8D572A5F0D635C] - 21/01/2008 - 03:23:20 ---A- . (.ULi Electronics Inc. - ULi SATA Controller Driver.) -- C:\Windows\System32\Drivers\uliahci.sys [238648]
O58 - SDL:[MD5.8514D0E5CD0534467C5FC61BE94A569F] - 02/11/2006 - 10:50:35 ---A- . (.Promise Technology, Inc. - Promise Ultra/Sata Series Driver for Win2003.) -- C:\Windows\System32\Drivers\ulsata.sys [98408]
O58 - SDL:[MD5.38C3C6E62B157A6BC46594FADA45C62B] - 21/01/2008 - 03:23:23 ---A- . (.Promise Technology, Inc. - Promise SATAII150 Series Windows Drivers.) -- C:\Windows\System32\Drivers\ulsata2.sys [115816]
O58 - SDL:[MD5.8AAD333C876590293F72B315E162BCC7] - 02/11/2006 - 08:09:42 ---A- . (...) -- C:\Windows\System32\ANSI.SYS [9029]
O58 - SDL:[MD5.0FE9F16075C9ACB941C957B7C649176E] - 02/11/2006 - 08:09:45 ---A- . (...) -- C:\Windows\System32\country.sys [27097]
O58 - SDL:[MD5.E6BC0F98FECEF245A0010D350C1A0B9B] - 02/11/2006 - 08:09:41 ---A- . (...) -- C:\Windows\System32\HIMEM.SYS [4768]
O58 - SDL:[MD5.492090267B9608C62B956CD29BE3AFB7] - 02/11/2006 - 08:09:44 ---A- . (...) -- C:\Windows\System32\KEY01.SYS [42809]
O58 - SDL:[MD5.FBBCFEC1379C5C02D88A361993EDF1B8] - 02/11/2006 - 08:09:44 ---A- . (...) -- C:\Windows\System32\KEYBOARD.SYS [42537]
O58 - SDL:[MD5.FFFF296A08DBF2AC0126C62E3778AC0D] - 02/11/2006 - 08:09:29 ---A- . (...) -- C:\Windows\System32\NTDOS.SYS [27866]
O58 - SDL:[MD5.CF9ED169FF86D935E47999E82359E898] - 02/11/2006 - 08:09:35 ---A- . (...) -- C:\Windows\System32\NTDOS404.SYS [29146]
O58 - SDL:[MD5.03B945AC0481CD8BB161C3569D8ED1C3] - 02/11/2006 - 08:09:38 ---A- . (...) -- C:\Windows\System32\NTDOS411.SYS [29370]
O58 - SDL:[MD5.BBC957DC18C17CC027EB80B7C77F2AEA] - 02/11/2006 - 08:09:40 ---A- . (...) -- C:\Windows\System32\NTDOS412.SYS [29274]
O58 - SDL:[MD5.3CFFAEFFF23B0D208214A6D3061A5B1B] - 02/11/2006 - 08:09:31 ---A- . (...) -- C:\Windows\System32\NTDOS804.SYS [29146]
O58 - SDL:[MD5.2E4112FB7D1B76E11ADFD7487B5D0E95] - 02/11/2006 - 08:09:20 ---A- . (...) -- C:\Windows\System32\NTIO.SYS [33952]
O58 - SDL:[MD5.A98EBD4C2DF983665BF2D1AF49949974] - 02/11/2006 - 08:09:23 ---A- . (...) -- C:\Windows\System32\NTIO404.SYS [34672]
O58 - SDL:[MD5.3F7E6406EDEF197C5CAAB2240EEF6F48] - 02/11/2006 - 08:09:24 ---A- . (...) -- C:\Windows\System32\NTIO411.SYS [35776]
O58 - SDL:[MD5.3E64D681B776CC57BDC38A46D881F85B] - 02/11/2006 - 08:09:26 ---A- . (...) -- C:\Windows\System32\NTIO412.SYS [35536]
O58 - SDL:[MD5.D86B6435729231C171432B4E77801BDB] - 02/11/2006 - 08:09:22 ---A- . (...) -- C:\Windows\System32\NTIO804.SYS [34672]
~ Drivers: 16 Legitimates Filtered in 00mn 10s



---\\ Derniers fichiers modifiés ou crées (Utilisateur) (O61)
O61 - LFC: 27/01/2014 - 01:19:49 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\Update\2BA84626-E6B7-439B-B6D9-D74AF999DE6F [3904]
O61 - LFC: 27/01/2014 - 01:19:50 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Certificate Revocation Lists [273221]
O61 - LFC: 27/01/2014 - 01:19:50 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Archived History [2957312]
O61 - LFC: 27/01/2014 - 01:19:50 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Archived History-journal [16384]
O61 - LFC: 27/01/2014 - 01:19:50 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Cookies [31744]
O61 - LFC: 27/01/2014 - 01:19:50 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Cookies-journal [15992]
O61 - LFC: 27/01/2014 - 01:19:50 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Current Session [435896]
O61 - LFC: 27/01/2014 - 01:19:50 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Current Tabs [403011]
O61 - LFC: 27/01/2014 - 01:19:50 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extension Cookies [6144]
O61 - LFC: 27/01/2014 - 01:19:50 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extension Cookies-journal [4640]
O61 - LFC: 27/01/2014 - 01:19:50 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extension Rules\CURRENT [16]
O61 - LFC: 27/01/2014 - 01:19:50 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extension Rules\LOG [145]
O61 - LFC: 27/01/2014 - 01:19:50 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extension State\CURRENT [16]
O61 - LFC: 27/01/2014 - 01:19:50 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extension State\LOG [262]
O61 - LFC: 27/01/2014 - 01:19:50 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extension State\MANIFEST-000013 [167] =>.Google Inc
O61 - LFC: 27/01/2014 - 01:19:56 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\aaaaabcbmongicmdegkmmfgdickgnnob\31.2_0\background\background-options.js [10215] =>PUP.MoviesToolbar
O61 - LFC: 27/01/2014 - 01:19:56 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\aaaaabcbmongicmdegkmmfgdickgnnob\31.2_0\background\background.html [3460] =>PUP.MoviesToolbar
O61 - LFC: 27/01/2014 - 01:19:56 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\aaaaabcbmongicmdegkmmfgdickgnnob\31.2_0\background\background.js [27895] =>PUP.MoviesToolbar
O61 - LFC: 27/01/2014 - 01:19:56 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\aaaaabcbmongicmdegkmmfgdickgnnob\31.2_0\background\browser-action.js [1258] =>PUP.MoviesToolbar
O61 - LFC: 27/01/2014 - 01:19:56 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\aaaaabcbmongicmdegkmmfgdickgnnob\31.2_0\background\cache-config.js [3742] =>PUP.MoviesToolbar
O61 - LFC: 27/01/2014 - 01:19:56 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\aaaaabcbmongicmdegkmmfgdickgnnob\31.2_0\background\cookies.js [1264] =>PUP.MoviesToolbar
O61 - LFC: 27/01/2014 - 01:19:56 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\aaaaabcbmongicmdegkmmfgdickgnnob\31.2_0\background\feeds.js [2792] =>PUP.MoviesToolbar
O61 - LFC: 27/01/2014 - 01:19:56 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\aaaaabcbmongicmdegkmmfgdickgnnob\31.2_0\background\fixup-jquery-for-ie.js [801] =>PUP.MoviesToolbar
O61 - LFC: 27/01/2014 - 01:19:56 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\aaaaabcbmongicmdegkmmfgdickgnnob\31.2_0\background\history.js [2242] =>PUP.MoviesToolbar
O61 - LFC: 27/01/2014 - 01:19:56 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\aaaaabcbmongicmdegkmmfgdickgnnob\31.2_0\background\ie-bg-shim.js [8736] =>PUP.MoviesToolbar
O61 - LFC: 27/01/2014 - 01:19:56 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\aaaaabcbmongicmdegkmmfgdickgnnob\31.2_0\background\init-bg-messaging.js [81] =>PUP.MoviesToolbar
O61 - LFC: 27/01/2014 - 01:19:56 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\aaaaabcbmongicmdegkmmfgdickgnnob\31.2_0\background\keywordSearch.js [5159] =>PUP.MoviesToolbar
O61 - LFC: 27/01/2014 - 01:19:57 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\aaaaabcbmongicmdegkmmfgdickgnnob\31.2_0\background\OneTimeCode.js [2972] =>PUP.MoviesToolbar
O61 - LFC: 27/01/2014 - 01:19:57 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\aaaaabcbmongicmdegkmmfgdickgnnob\31.2_0\background\lifecycle.js [17502] =>PUP.MoviesToolbar
O61 - LFC: 27/01/2014 - 01:19:57 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\aaaaabcbmongicmdegkmmfgdickgnnob\31.2_0\background\localStorage.js [2905] =>PUP.MoviesToolbar
O61 - LFC: 27/01/2014 - 01:19:57 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\aaaaabcbmongicmdegkmmfgdickgnnob\31.2_0\background\popup.js [4976] =>PUP.MoviesToolbar
O61 - LFC: 27/01/2014 - 01:19:57 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\aaaaabcbmongicmdegkmmfgdickgnnob\31.2_0\background\preference.js [2648] =>PUP.MoviesToolbar
O61 - LFC: 27/01/2014 - 01:19:57 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\aaaaabcbmongicmdegkmmfgdickgnnob\31.2_0\background\rebuttal.js [2458] =>PUP.MoviesToolbar
O61 - LFC: 27/01/2014 - 01:19:57 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\aaaaabcbmongicmdegkmmfgdickgnnob\31.2_0\background\registry.js [37931] =>PUP.MoviesToolbar
O61 - LFC: 27/01/2014 - 01:19:57 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\aaaaabcbmongicmdegkmmfgdickgnnob\31.2_0\background\reporting.js [9753] =>PUP.MoviesToolbar
O61 - LFC: 27/01/2014 - 01:19:57 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\aaaaabcbmongicmdegkmmfgdickgnnob\31.2_0\background\search.js [12867] =>PUP.MoviesToolbar
O61 - LFC: 27/01/2014 - 01:19:57 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\aaaaabcbmongicmdegkmmfgdickgnnob\31.2_0\background\security.js [15469] =>PUP.MoviesToolbar
O61 - LFC: 27/01/2014 - 01:19:57 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\aaaaabcbmongicmdegkmmfgdickgnnob\31.2_0\background\sideByside.js [6749] =>PUP.MoviesToolbar
O61 - LFC: 27/01/2014 - 01:19:57 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\aaaaabcbmongicmdegkmmfgdickgnnob\31.2_0\background\tabs.js [7541] =>PUP.MoviesToolbar
O61 - LFC: 27/01/2014 - 01:19:57 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\aaaaabcbmongicmdegkmmfgdickgnnob\31.2_0\background\utils.js [11881] =>PUP.MoviesToolbar
O61 - LFC: 27/01/2014 - 01:19:57 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\aaaaabcbmongicmdegkmmfgdickgnnob\31.2_0\config\build.json [440] =>PUP.MoviesToolbar
O61 - LFC: 27/01/2014 - 01:19:57 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\aaaaabcbmongicmdegkmmfgdickgnnob\31.2_0\config\lang-config.js [36144] =>PUP.MoviesToolbar
O61 - LFC: 27/01/2014 - 01:19:57 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\aaaaabcbmongicmdegkmmfgdickgnnob\31.2_0\config\skin\chrome-options.html [2248] =>PUP.MoviesToolbar
O61 - LFC: 27/01/2014 - 01:19:57 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\aaaaabcbmongicmdegkmmfgdickgnnob\31.2_0\config\skin\content-script.xul [2553] =>PUP.MoviesToolbar
O61 - LFC: 27/01/2014 - 01:19:57 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\aaaaabcbmongicmdegkmmfgdickgnnob\31.2_0\config\skin\css\chrome-options.css [777] =>PUP.MoviesToolbar
O61 - LFC: 27/01/2014 - 01:19:57 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\aaaaabcbmongicmdegkmmfgdickgnnob\31.2_0\config\skin\css\containers.css [408] =>PUP.MoviesToolbar
O61 - LFC: 27/01/2014 - 01:19:58 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\aaaaabcbmongicmdegkmmfgdickgnnob\31.2_0\config\skin\css\hp-new-tab.css [6595] =>PUP.MoviesToolbar
O61 - LFC: 27/01/2014 - 01:19:58 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\aaaaabcbmongicmdegkmmfgdickgnnob\31.2_0\config\skin\css\new-tab.css [4964] =>PUP.MoviesToolbar
O61 - LFC: 27/01/2014 - 01:19:58 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\aaaaabcbmongicmdegkmmfgdickgnnob\31.2_0\config\skin\css\searchbox.css [3998] =>PUP.MoviesToolbar
O61 - LFC: 27/01/2014 - 01:19:58 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\aaaaabcbmongicmdegkmmfgdickgnnob\31.2_0\config\skin\css\themes\imesh\imesh.css [744] =>PUP.iMesh
O61 - LFC: 27/01/2014 - 01:19:58 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\aaaaabcbmongicmdegkmmfgdickgnnob\31.2_0\config\skin\css\themes\mindspark\mindspark.css [1736] =>PUP.MoviesToolbar
O61 - LFC: 27/01/2014 - 01:19:58 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\aaaaabcbmongicmdegkmmfgdickgnnob\31.2_0\config\skin\css\themes\plain\plain.css [794] =>PUP.MoviesToolbar
O61 - LFC: 27/01/2014 - 01:19:58 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\aaaaabcbmongicmdegkmmfgdickgnnob\31.2_0\config\skin\css\themes\taskbar\taskbar.css [2093] =>PUP.MoviesToolbar
O61 - LFC: 27/01/2014 - 01:19:58 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\aaaaabcbmongicmdegkmmfgdickgnnob\31.2_0\config\skin\css\themes\v5parity\v5parity.css [924] =>PUP.MoviesToolbar
O61 - LFC: 27/01/2014 - 01:19:58 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\aaaaabcbmongicmdegkmmfgdickgnnob\31.2_0\config\skin\css\toolbar.css [9781] =>PUP.MoviesToolbar
O61 - LFC: 27/01/2014 - 01:19:59 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\aaaaabcbmongicmdegkmmfgdickgnnob\31.2_0\config\skin\init-tb-stuff.js [119] =>PUP.MoviesToolbar
O61 - LFC: 27/01/2014 - 01:19:59 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\aaaaabcbmongicmdegkmmfgdickgnnob\31.2_0\config\skin\new-tab-page.html [8041] =>PUP.MoviesToolbar
O61 - LFC: 27/01/2014 - 01:19:59 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\aaaaabcbmongicmdegkmmfgdickgnnob\31.2_0\config\skin\newtab-overlay.xul [3430] =>PUP.MoviesToolbar
O61 - LFC: 27/01/2014 - 01:19:59 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\aaaaabcbmongicmdegkmmfgdickgnnob\31.2_0\config\skin\newtab-subscript.js [2678] =>PUP.MoviesToolbar
O61 - LFC: 27/01/2014 - 01:19:59 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\aaaaabcbmongicmdegkmmfgdickgnnob\31.2_0\config\skin\toolbar.html [5032] =>PUP.MoviesToolbar
O61 - LFC: 27/01/2014 - 01:19:59 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\aaaaabcbmongicmdegkmmfgdickgnnob\31.2_0\config\skin\toolbar.xul [902] =>PUP.MoviesToolbar
O61 - LFC: 27/01/2014 - 01:19:59 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\aaaaabcbmongicmdegkmmfgdickgnnob\31.2_0\config\skin\widget-bundled.xul [1207] =>PUP.MoviesToolbar
O61 - LFC: 27/01/2014 - 01:19:59 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\aaaaabcbmongicmdegkmmfgdickgnnob\31.2_0\config\skin\widget-hosted.xul [1040] =>PUP.MoviesToolbar
O61 - LFC: 27/01/2014 - 01:20:00 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\aaaaabcbmongicmdegkmmfgdickgnnob\31.2_0\config\skin\widgets\toolbar-options_imesh_movie_lvd2-dtx\about.html [1679] =>PUP.iMesh
O61 - LFC: 27/01/2014 - 01:20:00 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\aaaaabcbmongicmdegkmmfgdickgnnob\31.2_0\config\skin\widgets\toolbar-options_imesh_movie_lvd2-dtx\background.html [1830] =>PUP.iMesh
O61 - LFC: 27/01/2014 - 01:20:00 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\aaaaabcbmongicmdegkmmfgdickgnnob\31.2_0\config\skin\widgets\toolbar-options_imesh_movie_lvd2-dtx\css\style.css [1411] =>PUP.iMesh
O61 - LFC: 27/01/2014 - 01:20:01 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\aaaaabcbmongicmdegkmmfgdickgnnob\31.2_0\config\skin\widgets\toolbar-options_imesh_movie_lvd2-dtx\js\about.js [908] =>PUP.iMesh
O61 - LFC: 27/01/2014 - 01:20:01 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\aaaaabcbmongicmdegkmmfgdickgnnob\31.2_0\config\skin\widgets\toolbar-options_imesh_movie_lvd2-dtx\js\background.js [1468] =>PUP.iMesh
O61 - LFC: 27/01/2014 - 01:20:01 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\aaaaabcbmongicmdegkmmfgdickgnnob\31.2_0\config\skin\widgets\toolbar-options_imesh_movie_lvd2-dtx\js\controller.js [1510] =>PUP.iMesh
O61 - LFC: 27/01/2014 - 01:20:01 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\aaaaabcbmongicmdegkmmfgdickgnnob\31.2_0\config\skin\widgets\toolbar-options_imesh_movie_lvd2-dtx\js\dateFormat.js [4708] =>PUP.iMesh
O61 - LFC: 27/01/2014 - 01:20:01 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\aaaaabcbmongicmdegkmmfgdickgnnob\31.2_0\config\skin\widgets\toolbar-options_imesh_movie_lvd2-dtx\js\lib\utilities.js [980] =>PUP.iMesh
O61 - LFC: 27/01/2014 - 01:20:01 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\aaaaabcbmongicmdegkmmfgdickgnnob\31.2_0\config\skin\widgets\toolbar-options_imesh_movie_lvd2-dtx\preferences.html [3728] =>PUP.iMesh
O61 - LFC: 27/01/2014 - 01:20:01 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\aaaaabcbmongicmdegkmmfgdickgnnob\31.2_0\config\tb-config.js [3219] =>PUP.MoviesToolbar
O61 - LFC: 27/01/2014 - 01:20:01 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\aaaaabcbmongicmdegkmmfgdickgnnob\31.2_0\config\test-widget-config.js [4117] =>PUP.MoviesToolbar
O61 - LFC: 27/01/2014 - 01:20:01 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\aaaaabcbmongicmdegkmmfgdickgnnob\31.2_0\config\widget-config.js [6688] =>PUP.MoviesToolbar
O61 - LFC: 27/01/2014 - 01:20:01 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\aaaaabcbmongicmdegkmmfgdickgnnob\31.2_0\content_script\content-script.js [11359] =>PUP.MoviesToolbar
O61 - LFC: 27/01/2014 - 01:20:01 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\aaaaabcbmongicmdegkmmfgdickgnnob\31.2_0\content_script\hack\relative.css [46] =>PUP.MoviesToolbar
O61 - LFC: 27/01/2014 - 01:20:01 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\aaaaabcbmongicmdegkmmfgdickgnnob\31.2_0\content_script\hack\static.css [44] =>PUP.MoviesToolbar
O61 - LFC: 27/01/2014 - 01:20:01 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\aaaaabcbmongicmdegkmmfgdickgnnob\31.2_0\content_script\injector.js [4914] =>PUP.MoviesToolbar
O61 - LFC: 27/01/2014 - 01:20:01 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\aaaaabcbmongicmdegkmmfgdickgnnob\31.2_0\content_script\inline-html.js [3220] =>PUP.MoviesToolbar
O61 - LFC: 27/01/2014 - 01:20:01 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\aaaaabcbmongicmdegkmmfgdickgnnob\31.2_0\content_script\notify-presence.js [3988] =>PUP.MoviesToolbar
O61 - LFC: 27/01/2014 - 01:20:01 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\aaaaabcbmongicmdegkmmfgdickgnnob\31.2_0\content_script\positioning.js [11511] =>PUP.MoviesToolbar
O61 - LFC: 27/01/2014 - 01:20:01 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\aaaaabcbmongicmdegkmmfgdickgnnob\31.2_0\content_script\toolbar.js [9622] =>PUP.MoviesToolbar
O61 - LFC: 27/01/2014 - 01:20:01 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\aaaaabcbmongicmdegkmmfgdickgnnob\31.2_0\content_script\widget-hosted.js [5516] =>PUP.MoviesToolbar
O61 - LFC: 27/01/2014 - 01:20:01 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\aaaaabcbmongicmdegkmmfgdickgnnob\31.2_0\content_script\widget.js [17839] =>PUP.MoviesToolbar
O61 - LFC: 27/01/2014 - 01:20:02 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\aaaaabcbmongicmdegkmmfgdickgnnob\31.2_0\lib\DataStore.js [20080] =>PUP.MoviesToolbar
O61 - LFC: 27/01/2014 - 01:20:02 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\aaaaabcbmongicmdegkmmfgdickgnnob\31.2_0\lib\async-gate.js [2627] =>PUP.MoviesToolbar
O61 - LFC: 27/01/2014 - 01:20:02 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\aaaaabcbmongicmdegkmmfgdickgnnob\31.2_0\lib\browser-shim.js [9500] =>PUP.MoviesToolbar
O61 - LFC: 27/01/2014 - 01:20:02 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\aaaaabcbmongicmdegkmmfgdickgnnob\31.2_0\lib\constant.js [3492] =>PUP.MoviesToolbar
O61 - LFC: 27/01/2014 - 01:20:02 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\aaaaabcbmongicmdegkmmfgdickgnnob\31.2_0\lib\default-config.js [14828] =>PUP.MoviesToolbar
O61 - LFC: 27/01/2014 - 01:20:02 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\aaaaabcbmongicmdegkmmfgdickgnnob\31.2_0\lib\i18n.js [1647] =>PUP.MoviesToolbar
O61 - LFC: 27/01/2014 - 01:20:02 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\aaaaabcbmongicmdegkmmfgdickgnnob\31.2_0\lib\jquery.js [94180] =>PUP.MoviesToolbar
O61 - LFC: 27/01/2014 - 01:20:02 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\aaaaabcbmongicmdegkmmfgdickgnnob\31.2_0\lib\json.js [17412] =>PUP.MoviesToolbar
O61 - LFC: 27/01/2014 - 01:20:02 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\aaaaabcbmongicmdegkmmfgdickgnnob\31.2_0\lib\polyfill.js [8492] =>PUP.MoviesToolbar
O61 - LFC: 27/01/2014 - 01:20:02 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\aaaaabcbmongicmdegkmmfgdickgnnob\31.2_0\lib\protocol.js [28102] =>PUP.MoviesToolbar
O61 - LFC: 27/01/2014 - 01:20:02 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\aaaaabcbmongicmdegkmmfgdickgnnob\31.2_0\lib\shims\console.js [4607] =>PUP.MoviesToolbar
O61 - LFC: 27/01/2014 - 01:20:02 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\aaaaabcbmongicmdegkmmfgdickgnnob\31.2_0\lib\state-machine.js [8074] =>PUP.MoviesToolbar
O61 - LFC: 27/01/2014 - 01:20:02 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\aaaaabcbmongicmdegkmmfgdickgnnob\31.2_0\lib\tb-config-update.js [1488] =>PUP.MoviesToolbar
O61 - LFC: 27/01/2014 - 01:20:02 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\aaaaabcbmongicmdegkmmfgdickgnnob\31.2_0\lib\tb-message.js [6111] =>PUP.MoviesToolbar
O61 - LFC: 27/01/2014 - 01:20:02 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\aaaaabcbmongicmdegkmmfgdickgnnob\31.2_0\lib\widget-config-update.js [627] =>PUP.MoviesToolbar
O61 - LFC: 27/01/2014 - 01:20:03 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\aaaaabcbmongicmdegkmmfgdickgnnob\31.2_0\lib\widget-messaging.js [53807] =>PUP.MoviesToolbar
O61 - LFC: 27/01/2014 - 01:20:03 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\aaaaabcbmongicmdegkmmfgdickgnnob\31.2_0\lib\window-position.js [1855] =>PUP.MoviesToolbar
O61 - LFC: 27/01/2014 - 01:20:03 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\aaaaabcbmongicmdegkmmfgdickgnnob\31.2_0\manifest.json [2959] =>PUP.MoviesToolbar
O61 - LFC: 27/01/2014 - 01:20:03 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\aaaaabcbmongicmdegkmmfgdickgnnob\31.2_0\tb_ux\IFrameButton.js [5612] =>PUP.MoviesToolbar
O61 - LFC: 27/01/2014 - 01:20:03 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\aaaaabcbmongicmdegkmmfgdickgnnob\31.2_0\tb_ux\SimpleButton.js [7380] =>PUP.MoviesToolbar
O61 - LFC: 27/01/2014 - 01:20:03 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\aaaaabcbmongicmdegkmmfgdickgnnob\31.2_0\tb_ux\chrome-options.js [2644] =>PUP.MoviesToolbar
O61 - LFC: 27/01/2014 - 01:20:03 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\aaaaabcbmongicmdegkmmfgdickgnnob\31.2_0\tb_ux\ieCS.js [7165] =>PUP.MoviesToolbar
O61 - LFC: 27/01/2014 - 01:20:03 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\aaaaabcbmongicmdegkmmfgdickgnnob\31.2_0\tb_ux\init-toolbar.js [1055] =>PUP.MoviesToolbar
O61 - LFC: 27/01/2014 - 01:20:03 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\aaaaabcbmongicmdegkmmfgdickgnnob\31.2_0\tb_ux\new-tab-page.js [16310] =>PUP.MoviesToolbar
O61 - LFC: 27/01/2014 - 01:20:03 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\aaaaabcbmongicmdegkmmfgdickgnnob\31.2_0\tb_ux\rebuttal.js [2478] =>PUP.MoviesToolbar
O61 - LFC: 27/01/2014 - 01:20:03 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\aaaaabcbmongicmdegkmmfgdickgnnob\31.2_0\tb_ux\reel.js [6087] =>PUP.MoviesToolbar
O61 - LFC: 27/01/2014 - 01:20:03 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\aaaaabcbmongicmdegkmmfgdickgnnob\31.2_0\tb_ux\searchbox.js [16972] =>PUP.MoviesToolbar
O61 - LFC: 27/01/2014 - 01:20:03 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\aaaaabcbmongicmdegkmmfgdickgnnob\31.2_0\tb_ux\shimIE.js [5113] =>PUP.MoviesToolbar
O61 - LFC: 27/01/2014 - 01:20:03 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\aaaaabcbmongicmdegkmmfgdickgnnob\31.2_0\tb_ux\toolbar.js [27742] =>PUP.MoviesToolbar
O61 - LFC: 27/01/2014 - 01:20:03 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\aaaaabcbmongicmdegkmmfgdickgnnob\31.2_0\widgets\options\options.css [12688] =>PUP.MoviesToolbar
O61 - LFC: 27/01/2014 - 01:20:03 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\aaaaabcbmongicmdegkmmfgdickgnnob\31.2_0\widgets\options\options.html [6244] =>PUP.MoviesToolbar
O61 - LFC: 27/01/2014 - 01:20:04 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\aaaaabcbmongicmdegkmmfgdickgnnob\31.2_0\widgets\options\options.js [17527] =>PUP.MoviesToolbar
O61 - LFC: 27/01/2014 - 01:20:04 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\aaaaabcbmongicmdegkmmfgdickgnnob\31.2_0\widgets\rebuttal\rebuttal.css [873] =>PUP.MoviesToolbar
O61 - LFC: 27/01/2014 - 01:20:04 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\aaaaabcbmongicmdegkmmfgdickgnnob\31.2_0\widgets\rebuttal\rebuttal.html [2396] =>PUP.MoviesToolbar
O61 - LFC: 27/01/2014 - 01:20:04 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\aaaaabcbmongicmdegkmmfgdickgnnob\31.2_0\widgets\rebuttal\rebuttal.js [1993] =>PUP.MoviesToolbar
O61 - LFC: 27/01/2014 - 01:20:04 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\aaaaabcbmongicmdegkmmfgdickgnnob\31.2_0\widgets\search-suggestion\search-suggestion.css [3779] =>PUP.MoviesToolbar
O61 - LFC: 27/01/2014 - 01:20:04 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\aaaaabcbmongicmdegkmmfgdickgnnob\31.2_0\widgets\search-suggestion\search-suggestion.html [2059] =>PUP.MoviesToolbar
O61 - LFC: 27/01/2014 - 01:20:04 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\aaaaabcbmongicmdegkmmfgdickgnnob\31.2_0\widgets\search-suggestion\search-suggestion.js [11644] =>PUP.MoviesToolbar
O61 - LFC: 27/01/2014 - 01:20:04 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\aaaaabcbmongicmdegkmmfgdickgnnob\31.2_0\widgets\templates\css\menu.css [788] =>PUP.MoviesToolbar
O61 - LFC: 27/01/2014 - 01:20:04 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\aaaaabcbmongicmdegkmmfgdickgnnob\31.2_0\widgets\templates\feed.html [1396] =>PUP.MoviesToolbar
O61 - LFC: 27/01/2014 - 01:20:04 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\aaaaabcbmongicmdegkmmfgdickgnnob\31.2_0\widgets\templates\js\api.js [3956] =>PUP.MoviesToolbar
O61 - LFC: 27/01/2014 - 01:20:04 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\aaaaabcbmongicmdegkmmfgdickgnnob\31.2_0\widgets\templates\js\feed.js [2823] =>PUP.MoviesToolbar
O61 - LFC: 27/01/2014 - 01:20:04 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\aaaaabcbmongicmdegkmmfgdickgnnob\31.2_0\widgets\templates\js\menu.js [1146] =>PUP.MoviesToolbar
O61 - LFC: 27/01/2014 - 01:20:04 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\aaaaabcbmongicmdegkmmfgdickgnnob\31.2_0\widgets\templates\menu.html [1535] =>PUP.MoviesToolbar
O61 - LFC: 27/01/2014 - 01:20:28 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\pdehmppfilefbolgganhfihpbmjlgebh\1.2.386_0\js\array.js [2283]
O61 - LFC: 27/01/2014 - 01:20:29 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\pdehmppfilefbolgganhfihpbmjlgebh\1.2.386_0\js\backbone.min.js [19457]
O61 - LFC: 27/01/2014 - 01:20:29 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\pdehmppfilefbolgganhfihpbmjlgebh\1.2.386_0\js\be_backbone.js [4510]
O61 - LFC: 27/01/2014 - 01:20:29 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\pdehmppfilefbolgganhfihpbmjlgebh\1.2.386_0\js\be_base.js [2908]
O61 - LFC: 27/01/2014 - 01:20:29 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\pdehmppfilefbolgganhfihpbmjlgebh\1.2.386_0\js\be_bg.html [345]
O61 - LFC: 27/01/2014 - 01:20:29 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\pdehmppfilefbolgganhfihpbmjlgebh\1.2.386_0\js\be_bg.js [3350]
O61 - LFC: 27/01/2014 - 01:20:29 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\pdehmppfilefbolgganhfihpbmjlgebh\1.2.386_0\js\be_bg_main.js [15881]
O61 - LFC: 27/01/2014 - 01:20:29 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\pdehmppfilefbolgganhfihpbmjlgebh\1.2.386_0\js\be_browser.js [14219]
O61 - LFC: 27/01/2014 - 01:20:29 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\pdehmppfilefbolgganhfihpbmjlgebh\1.2.386_0\js\be_chrome.js [6599]
O61 - LFC: 27/01/2014 - 01:20:29 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\pdehmppfilefbolgganhfihpbmjlgebh\1.2.386_0\js\be_config.js [3782]
O61 - LFC: 27/01/2014 - 01:20:29 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\pdehmppfilefbolgganhfihpbmjlgebh\1.2.386_0\js\be_lib.js [5568]
O61 - LFC: 27/01/2014 - 01:20:29 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\pdehmppfilefbolgganhfihpbmjlgebh\1.2.386_0\js\be_locale.js [2366]
O61 - LFC: 27/01/2014 - 01:20:29 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\pdehmppfilefbolgganhfihpbmjlgebh\1.2.386_0\js\be_msg.js [6611]
O61 - LFC: 27/01/2014 - 01:20:29 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\pdehmppfilefbolgganhfihpbmjlgebh\1.2.386_0\js\be_popup.html [852]
O61 - LFC: 27/01/2014 - 01:20:29 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\pdehmppfilefbolgganhfihpbmjlgebh\1.2.386_0\js\be_popup.js [2151]
O61 - LFC: 27/01/2014 - 01:20:29 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\pdehmppfilefbolgganhfihpbmjlgebh\1.2.386_0\js\be_popup_lib.js [3030]
O61 - LFC: 27/01/2014 - 01:20:29 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\pdehmppfilefbolgganhfihpbmjlgebh\1.2.386_0\js\be_popup_main.js [14970]
O61 - LFC: 27/01/2014 - 01:20:29 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\pdehmppfilefbolgganhfihpbmjlgebh\1.2.386_0\js\be_tabs.js [3665]
O61 - LFC: 27/01/2014 - 01:20:29 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\pdehmppfilefbolgganhfihpbmjlgebh\1.2.386_0\js\be_ui_obj.js [11985]
O61 - LFC: 27/01/2014 - 01:20:29 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\pdehmppfilefbolgganhfihpbmjlgebh\1.2.386_0\js\be_util.js [17873]
O61 - LFC: 27/01/2014 - 01:20:29 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\pdehmppfilefbolgganhfihpbmjlgebh\1.2.386_0\js\be_ver.js [127]
O61 - LFC: 27/01/2014 - 01:20:30 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\pdehmppfilefbolgganhfihpbmjlgebh\1.2.386_0\js\be_zerr.js [3584]
O61 - LFC: 27/01/2014 - 01:20:30 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\pdehmppfilefbolgganhfihpbmjlgebh\1.2.386_0\js\bootstrap.js [61962]
O61 - LFC: 27/01/2014 - 01:20:30 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\pdehmppfilefbolgganhfihpbmjlgebh\1.2.386_0\js\conf.js [898]
O61 - LFC: 27/01/2014 - 01:20:30 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\pdehmppfilefbolgganhfihpbmjlgebh\1.2.386_0\js\cs_hola.js [1442]
O61 - LFC: 27/01/2014 - 01:20:30 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\pdehmppfilefbolgganhfihpbmjlgebh\1.2.386_0\js\css\be_bootstrap.css [9141]
O61 - LFC: 27/01/2014 - 01:20:30 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\pdehmppfilefbolgganhfihpbmjlgebh\1.2.386_0\js\css\bootstrap.css [127352]
O61 - LFC: 27/01/2014 - 01:20:30 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\pdehmppfilefbolgganhfihpbmjlgebh\1.2.386_0\js\date.js [2430]
O61 - LFC: 27/01/2014 - 01:20:30 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\pdehmppfilefbolgganhfihpbmjlgebh\1.2.386_0\js\escape.js [3939]
O61 - LFC: 27/01/2014 - 01:20:30 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\pdehmppfilefbolgganhfihpbmjlgebh\1.2.386_0\js\etask.js [21413]
O61 - LFC: 27/01/2014 - 01:20:30 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\pdehmppfilefbolgganhfihpbmjlgebh\1.2.386_0\js\ga_init.js [759]
O61 - LFC: 27/01/2014 - 01:20:30 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\pdehmppfilefbolgganhfihpbmjlgebh\1.2.386_0\js\ga_proxy.js [1998]
O61 - LFC: 27/01/2014 - 01:20:30 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\pdehmppfilefbolgganhfihpbmjlgebh\1.2.386_0\js\ga_proxy_server.html [242]
O61 - LFC: 27/01/2014 - 01:20:30 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\pdehmppfilefbolgganhfihpbmjlgebh\1.2.386_0\js\ga_proxy_server.js [1356]
O61 - LFC: 27/01/2014 - 01:20:31 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\pdehmppfilefbolgganhfihpbmjlgebh\1.2.386_0\js\jquery.min.js [93435]
O61 - LFC: 27/01/2014 - 01:20:31 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\pdehmppfilefbolgganhfihpbmjlgebh\1.2.386_0\js\locale\be_af.js [10026]
O61 - LFC: 27/01/2014 - 01:20:31 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\pdehmppfilefbolgganhfihpbmjlgebh\1.2.386_0\js\locale\be_ar.js [13924]
O61 - LFC: 27/01/2014 - 01:20:31 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\pdehmppfilefbolgganhfihpbmjlgebh\1.2.386_0\js\locale\be_az.js [12583]
O61 - LFC: 27/01/2014 - 01:20:31 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\pdehmppfilefbolgganhfihpbmjlgebh\1.2.386_0\js\locale\be_be.js [15737]
O61 - LFC: 27/01/2014 - 01:20:31 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\pdehmppfilefbolgganhfihpbmjlgebh\1.2.386_0\js\locale\be_bg.js [16209]
O61 - LFC: 27/01/2014 - 01:20:32 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\pdehmppfilefbolgganhfihpbmjlgebh\1.2.386_0\js\locale\be_bn.js [20036]
O61 - LFC: 27/01/2014 - 01:20:32 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\pdehmppfilefbolgganhfihpbmjlgebh\1.2.386_0\js\locale\be_bs.js [3940]
O61 - LFC: 27/01/2014 - 01:20:32 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\pdehmppfilefbolgganhfihpbmjlgebh\1.2.386_0\js\locale\be_ca.js [12799]
O61 - LFC: 27/01/2014 - 01:20:32 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\pdehmppfilefbolgganhfihpbmjlgebh\1.2.386_0\js\locale\be_cs.js [12664]
O61 - LFC: 27/01/2014 - 01:20:32 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\pdehmppfilefbolgganhfihpbmjlgebh\1.2.386_0\js\locale\be_cy.js [12266]
O61 - LFC: 27/01/2014 - 01:20:32 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\pdehmppfilefbolgganhfihpbmjlgebh\1.2.386_0\js\locale\be_da.js [12012]
O61 - LFC: 27/01/2014 - 01:20:32 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\pdehmppfilefbolgganhfihpbmjlgebh\1.2.386_0\js\locale\be_de.js [12968]
O61 - LFC: 27/01/2014 - 01:20:32 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\pdehmppfilefbolgganhfihpbmjlgebh\1.2.386_0\js\locale\be_el.js [16328]
O61 - LFC: 27/01/2014 - 01:20:32 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\pdehmppfilefbolgganhfihpbmjlgebh\1.2.386_0\js\locale\be_en.js [20611]
O61 - LFC: 27/01/2014 - 01:20:32 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\pdehmppfilefbolgganhfihpbmjlgebh\1.2.386_0\js\locale\be_es.js [12684]
O61 - LFC: 27/01/2014 - 01:20:32 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\pdehmppfilefbolgganhfihpbmjlgebh\1.2.386_0\js\locale\be_et.js [12329]
O61 - LFC: 27/01/2014 - 01:20:32 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\pdehmppfilefbolgganhfihpbmjlgebh\1.2.386_0\js\locale\be_eu.js [11334]
O61 - LFC: 27/01/2014 - 01:20:32 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\pdehmppfilefbolgganhfihpbmjlgebh\1.2.386_0\js\locale\be_fa.js [14887]
O61 - LFC: 27/01/2014 - 01:20:32 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\pdehmppfilefbolgganhfihpbmjlgebh\1.2.386_0\js\locale\be_fi.js [12454]
O61 - LFC: 27/01/2014 - 01:20:32 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\pdehmppfilefbolgganhfihpbmjlgebh\1.2.386_0\js\locale\be_fr.js [13407]
O61 - LFC: 27/01/2014 - 01:20:32 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\pdehmppfilefbolgganhfihpbmjlgebh\1.2.386_0\js\locale\be_ga.js [13391]
O61 - LFC: 27/01/2014 - 01:20:33 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\pdehmppfilefbolgganhfihpbmjlgebh\1.2.386_0\js\locale\be_gl.js [12506]
O61 - LFC: 27/01/2014 - 01:20:33 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\pdehmppfilefbolgganhfihpbmjlgebh\1.2.386_0\js\locale\be_gu.js [18305]
O61 - LFC: 27/01/2014 - 01:20:33 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\pdehmppfilefbolgganhfihpbmjlgebh\1.2.386_0\js\locale\be_he.js [13560]
O61 - LFC: 27/01/2014 - 01:20:33 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\pdehmppfilefbolgganhfihpbmjlgebh\1.2.386_0\js\locale\be_hi.js [19318]
O61 - LFC: 27/01/2014 - 01:20:33 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\pdehmppfilefbolgganhfihpbmjlgebh\1.2.386_0\js\locale\be_hr.js [12555]
O61 - LFC: 27/01/2014 - 01:20:33 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\pdehmppfilefbolgganhfihpbmjlgebh\1.2.386_0\js\locale\be_ht.js [3753]
O61 - LFC: 27/01/2014 - 01:20:33 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\pdehmppfilefbolgganhfihpbmjlgebh\1.2.386_0\js\locale\be_hu.js [12833]
O61 - LFC: 27/01/2014 - 01:20:33 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\pdehmppfilefbolgganhfihpbmjlgebh\1.2.386_0\js\locale\be_hy.js [12944]
O61 - LFC: 27/01/2014 - 01:20:33 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\pdehmppfilefbolgganhfihpbmjlgebh\1.2.386_0\js\locale\be_id.js [12038]
O61 - LFC: 27/01/2014 - 01:20:33 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\pdehmppfilefbolgganhfihpbmjlgebh\1.2.386_0\js\locale\be_is.js [12711]
O61 - LFC: 27/01/2014 - 01:20:33 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\pdehmppfilefbolgganhfihpbmjlgebh\1.2.386_0\js\locale\be_it.js [11782]
O61 - LFC: 27/01/2014 - 01:20:33 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\pdehmppfilefbolgganhfihpbmjlgebh\1.2.386_0\js\locale\be_ja.js [14792]
O61 - LFC: 27/01/2014 - 01:20:33 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\pdehmppfilefbolgganhfihpbmjlgebh\1.2.386_0\js\locale\be_ka.js [18916]
O61 - LFC: 27/01/2014 - 01:20:33 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\pdehmppfilefbolgganhfihpbmjlgebh\1.2.386_0\js\locale\be_km.js [16541]
O61 - LFC: 27/01/2014 - 01:20:33 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\pdehmppfilefbolgganhfihpbmjlgebh\1.2.386_0\js\locale\be_kn.js [20499]
O61 - LFC: 27/01/2014 - 01:20:33 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\pdehmppfilefbolgganhfihpbmjlgebh\1.2.386_0\js\locale\be_ko.js [13546]
O61 - LFC: 27/01/2014 - 01:20:33 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\pdehmppfilefbolgganhfihpbmjlgebh\1.2.386_0\js\locale\be_lt.js [12803]
O61 - LFC: 27/01/2014 - 01:20:33 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\pdehmppfilefbolgganhfihpbmjlgebh\1.2.386_0\js\locale\be_lv.js [12864]
O61 - LFC: 27/01/2014 - 01:20:33 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\pdehmppfilefbolgganhfihpbmjlgebh\1.2.386_0\js\locale\be_mk.js [16118]
O61 - LFC: 27/01/2014 - 01:20:34 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\pdehmppfilefbolgganhfihpbmjlgebh\1.2.386_0\js\locale\be_mr.js [18871]
O61 - LFC: 27/01/2014 - 01:20:34 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\pdehmppfilefbolgganhfihpbmjlgebh\1.2.386_0\js\locale\be_ms.js [12293]
O61 - LFC: 27/01/2014 - 01:20:34 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\pdehmppfilefbolgganhfihpbmjlgebh\1.2.386_0\js\locale\be_mt.js [12475]
O61 - LFC: 27/01/2014 - 01:20:34 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\pdehmppfilefbolgganhfihpbmjlgebh\1.2.386_0\js\locale\be_nl.js [12296]
O61 - LFC: 27/01/2014 - 01:20:34 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\pdehmppfilefbolgganhfihpbmjlgebh\1.2.386_0\js\locale\be_no.js [12369]
O61 - LFC: 27/01/2014 - 01:20:34 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\pdehmppfilefbolgganhfihpbmjlgebh\1.2.386_0\js\locale\be_pl.js [12390]
O61 - LFC: 27/01/2014 - 01:20:34 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\pdehmppfilefbolgganhfihpbmjlgebh\1.2.386_0\js\locale\be_pt.js [12261]
O61 - LFC: 27/01/2014 - 01:20:34 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\pdehmppfilefbolgganhfihpbmjlgebh\1.2.386_0\js\locale\be_pt_BR.js [12888]
O61 - LFC: 27/01/2014 - 01:20:34 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\pdehmppfilefbolgganhfihpbmjlgebh\1.2.386_0\js\locale\be_ro.js [12711]
O61 - LFC: 27/01/2014 - 01:20:34 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\pdehmppfilefbolgganhfihpbmjlgebh\1.2.386_0\js\locale\be_ru.js [15441]
O61 - LFC: 27/01/2014 - 01:20:34 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\pdehmppfilefbolgganhfihpbmjlgebh\1.2.386_0\js\locale\be_sk.js [12868]
O61 - LFC: 27/01/2014 - 01:20:34 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\pdehmppfilefbolgganhfihpbmjlgebh\1.2.386_0\js\locale\be_sl.js [12606]
O61 - LFC: 27/01/2014 - 01:20:34 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\pdehmppfilefbolgganhfihpbmjlgebh\1.2.386_0\js\locale\be_sq.js [9354]
O61 - LFC: 27/01/2014 - 01:20:34 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\pdehmppfilefbolgganhfihpbmjlgebh\1.2.386_0\js\locale\be_sr.js [15897]
O61 - LFC: 27/01/2014 - 01:20:34 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\pdehmppfilefbolgganhfihpbmjlgebh\1.2.386_0\js\locale\be_sv.js [12415]
O61 - LFC: 27/01/2014 - 01:20:34 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\pdehmppfilefbolgganhfihpbmjlgebh\1.2.386_0\js\locale\be_sw.js [6648]
O61 - LFC: 27/01/2014 - 01:20:34 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\pdehmppfilefbolgganhfihpbmjlgebh\1.2.386_0\js\locale\be_ta.js [20724]
O61 - LFC: 27/01/2014 - 01:20:34 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\pdehmppfilefbolgganhfihpbmjlgebh\1.2.386_0\js\locale\be_te.js [19957]
O61 - LFC: 27/01/2014 - 01:20:34 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\pdehmppfilefbolgganhfihpbmjlgebh\1.2.386_0\js\locale\be_th.js [19263]
O61 - LFC: 27/01/2014 - 01:20:34 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\pdehmppfilefbolgganhfihpbmjlgebh\1.2.386_0\js\locale\be_tl.js [11735]
O61 - LFC: 27/01/2014 - 01:20:34 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\pdehmppfilefbolgganhfihpbmjlgebh\1.2.386_0\js\locale\be_tr.js [12659]
O61 - LFC: 27/01/2014 - 01:20:35 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\pdehmppfilefbolgganhfihpbmjlgebh\1.2.386_0\js\locale\be_uk.js [16049]
O61 - LFC: 27/01/2014 - 01:20:35 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\pdehmppfilefbolgganhfihpbmjlgebh\1.2.386_0\js\locale\be_ur.js [13284]
O61 - LFC: 27/01/2014 - 01:20:35 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\pdehmppfilefbolgganhfihpbmjlgebh\1.2.386_0\js\locale\be_vi.js [13111]
O61 - LFC: 27/01/2014 - 01:20:35 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\pdehmppfilefbolgganhfihpbmjlgebh\1.2.386_0\js\locale\be_zh_CN.js [12778]
O61 - LFC: 27/01/2014 - 01:20:35 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\pdehmppfilefbolgganhfihpbmjlgebh\1.2.386_0\js\locale\be_zh_TW.js [12894]
O61 - LFC: 27/01/2014 - 01:20:35 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\pdehmppfilefbolgganhfihpbmjlgebh\1.2.386_0\js\purl.js [7412]
O61 - LFC: 27/01/2014 - 01:20:35 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\pdehmppfilefbolgganhfihpbmjlgebh\1.2.386_0\js\rate_limit.js [592]
O61 - LFC: 27/01/2014 - 01:20:35 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\pdehmppfilefbolgganhfihpbmjlgebh\1.2.386_0\js\require.min.js [15060]
O61 - LFC: 27/01/2014 - 01:20:35 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\pdehmppfilefbolgganhfihpbmjlgebh\1.2.386_0\js\spin.min.js [4209]
O61 - LFC: 27/01/2014 - 01:20:35 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\pdehmppfilefbolgganhfihpbmjlgebh\1.2.386_0\js\sprintf.js [4948]
O61 - LFC: 27/01/2014 - 01:20:35 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\pdehmppfilefbolgganhfihpbmjlgebh\1.2.386_0\js\string.js [1287]
O61 - LFC: 27/01/2014 - 01:20:35 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\pdehmppfilefbolgganhfihpbmjlgebh\1.2.386_0\js\svc_util.js [3540]
O61 - LFC: 27/01/2014 - 01:20:35 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\pdehmppfilefbolgganhfihpbmjlgebh\1.2.386_0\js\underscore.min.js [13450]
O61 - LFC: 27/01/2014 - 01:20:35 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\pdehmppfilefbolgganhfihpbmjlgebh\1.2.386_0\js\when.js [24278]
O61 - LFC: 27/01/2014 - 01:20:35 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\pdehmppfilefbolgganhfihpbmjlgebh\1.2.386_0\js\zon_config.js [841]
O61 - LFC: 27/01/2014 - 01:20:35 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\pdehmppfilefbolgganhfihpbmjlgebh\1.2.386_0\manifest.json [1645]
O61 - LFC: 27/01/2014 - 01:20:35 ---A- . (.Hola Networks Ltd..) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\pdehmppfilefbolgganhfihpbmjlgebh\1.2.386_0\plugin\hola_plugin.exe [4979736]
O61 - LFC: 27/01/2014 - 01:20:35 ---A- . (.Hola Networks Ltd..) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\pdehmppfilefbolgganhfihpbmjlgebh\1.2.386_0\plugin\hola_plugin_x64.exe [5763608]
O61 - LFC: 27/01/2014 - 01:20:36 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\pdehmppfilefbolgganhfihpbmjlgebh\1.2.386_0\_locales\ar\messages.json [675]
O61 - LFC: 27/01/2014 - 01:20:36 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\pdehmppfilefbolgganhfihpbmjlgebh\1.2.386_0\_locales\ca\messages.json [308]
O61 - LFC: 27/01/2014 - 01:20:36 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\pdehmppfilefbolgganhfihpbmjlgebh\1.2.386_0\_locales\da\messages.json [306]
O61 - LFC: 27/01/2014 - 01:20:36 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\pdehmppfilefbolgganhfihpbmjlgebh\1.2.386_0\_locales\de\messages.json [321]
O61 - LFC: 27/01/2014 - 01:20:36 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\pdehmppfilefbolgganhfihpbmjlgebh\1.2.386_0\_locales\en\messages.json [2452]
O61 - LFC: 27/01/2014 - 01:20:36 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\pdehmppfilefbolgganhfihpbmjlgebh\1.2.386_0\_locales\es\messages.json [325]
O61 - LFC: 27/01/2014 - 01:20:36 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\pdehmppfilefbolgganhfihpbmjlgebh\1.2.386_0\_locales\es_419\messages.json [325]
O61 - LFC: 27/01/2014 - 01:20:36 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\pdehmppfilefbolgganhfihpbmjlgebh\1.2.386_0\_locales\fa\messages.json [801]
O61 - LFC: 27/01/2014 - 01:20:36 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\pdehmppfilefbolgganhfihpbmjlgebh\1.2.386_0\_locales\fr\messages.json [326]
O61 - LFC: 27/01/2014 - 01:20:36 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\pdehmppfilefbolgganhfihpbmjlgebh\1.2.386_0\_locales\gu\messages.json [648]
O61 - LFC: 27/01/2014 - 01:20:36 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\pdehmppfilefbolgganhfihpbmjlgebh\1.2.386_0\_locales\he\messages.json [591]
O61 - LFC: 27/01/2014 - 01:20:36 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\pdehmppfilefbolgganhfihpbmjlgebh\1.2.386_0\_locales\id\messages.json [312]
O61 - LFC: 27/01/2014 - 01:20:36 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\pdehmppfilefbolgganhfihpbmjlgebh\1.2.386_0\_locales\it\messages.json [312]
O61 - LFC: 27/01/2014 - 01:20:36 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\pdehmppfilefbolgganhfihpbmjlgebh\1.2.386_0\_locales\ms\messages.json [303]
O61 - LFC: 27/01/2014 - 01:20:36 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\pdehmppfilefbolgganhfihpbmjlgebh\1.2.386_0\_locales\nl\messages.json [306]
O61 - LFC: 27/01/2014 - 01:20:36 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\pdehmppfilefbolgganhfihpbmjlgebh\1.2.386_0\_locales\pt_BR\messages.json [332]
O61 - LFC: 27/01/2014 - 01:20:36 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\pdehmppfilefbolgganhfihpbmjlgebh\1.2.386_0\_locales\ro\messages.json [321]
O61 - LFC: 27/01/2014 - 01:20:36 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\pdehmppfilefbolgganhfihpbmjlgebh\1.2.386_0\_locales\ru\messages.json [518]
O61 - LFC: 27/01/2014 - 01:20:36 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\pdehmppfilefbolgganhfihpbmjlgebh\1.2.386_0\version.json [28]
O61 - LFC: 27/01/2014 - 01:20:36 ---A- . (.Hola Networks Ltd..) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Extensions\pdehmppfilefbolgganhfihpbmjlgebh\1.2.386_0\plugin\zplugin.dll [45080]
O61 - LFC: 27/01/2014 - 01:20:37 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Favicons [1785856]
O61 - LFC: 27/01/2014 - 01:20:37 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Favicons-journal [16384]
O61 - LFC: 27/01/2014 - 01:20:37 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\History [3297280]
O61 - LFC: 27/01/2014 - 01:20:37 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\History Index 2013-10 [647168]
O61 - LFC: 27/01/2014 - 01:20:37 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\History Index 2013-10-journal [16384]
O61 - LFC: 27/01/2014 - 01:20:37 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\History Index 2014-01 [176128]
O61 - LFC: 27/01/2014 - 01:20:37 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\History Index 2014-01-journal [16384]
O61 - LFC: 27/01/2014 - 01:20:38 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\History Provider Cache [109375]
O61 - LFC: 27/01/2014 - 01:20:38 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\History-journal [16384]
O61 - LFC: 27/01/2014 - 01:20:38 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Local Storage\chrome-extension_gimjmfipknpppbpmkdenjjpfhobiiojk_0.localstorage [3072]
O61 - LFC: 27/01/2014 - 01:20:38 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Local Storage\chrome-extension_gimjmfipknpppbpmkdenjjpfhobiiojk_0.localstorage-journal [3608]
O61 - LFC: 27/01/2014 - 01:20:38 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Local Storage\http_www.youtube.com_0.localstorage [60416]
O61 - LFC: 27/01/2014 - 01:20:38 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Local Storage\http_www.youtube.com_0.localstorage-journal [16384]
O61 - LFC: 27/01/2014 - 01:20:39 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Managed Mode Settings [8]
O61 - LFC: 27/01/2014 - 01:20:39 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Network Action Predictor [22528]
O61 - LFC: 27/01/2014 - 01:20:39 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Network Action Predictor-journal [9800]
O61 - LFC: 27/01/2014 - 01:20:39 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Origin Bound Certs [17408]
O61 - LFC: 27/01/2014 - 01:20:39 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Origin Bound Certs-journal [3608]
O61 - LFC: 27/01/2014 - 01:20:39 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Preferences [145962]
O61 - LFC: 27/01/2014 - 01:20:39 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Session Storage\CURRENT [16]
O61 - LFC: 27/01/2014 - 01:20:39 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Session Storage\LOG [718]
O61 - LFC: 27/01/2014 - 01:20:39 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Session Storage\MANIFEST-000023 [485] =>.Google Inc
O61 - LFC: 27/01/2014 - 01:20:39 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Shortcuts [12288]
O61 - LFC: 27/01/2014 - 01:20:39 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Shortcuts-journal [12824]
O61 - LFC: 27/01/2014 - 01:20:39 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Top Sites [20480]
O61 - LFC: 27/01/2014 - 01:20:39 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Top Sites-journal [12824]
O61 - LFC: 27/01/2014 - 01:20:39 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\TransportSecurity [642]
O61 - LFC: 27/01/2014 - 01:20:39 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Visited Links [131072]
O61 - LFC: 27/01/2014 - 01:20:39 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Web Data [73728]
O61 - LFC: 27/01/2014 - 01:20:39 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Default\Web Data-journal [12848]
O61 - LFC: 27/01/2014 - 01:20:40 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Local State [16509]
O61 - LFC: 27/01/2014 - 01:20:40 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Safe Browsing Bloom [11895644]
O61 - LFC: 27/01/2014 - 01:20:40 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Safe Browsing Bloom Prefix Set [1232984]
O61 - LFC: 27/01/2014 - 01:20:40 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Safe Browsing Cookies [6144]
O61 - LFC: 27/01/2014 - 01:20:40 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Safe Browsing Cookies-journal [4640]
O61 - LFC: 27/01/2014 - 01:20:40 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Safe Browsing Csd Whitelist [135496]
O61 - LFC: 27/01/2014 - 01:20:40 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Safe Browsing Download [946036]
O61 - LFC: 27/01/2014 - 01:20:40 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Safe Browsing Download Whitelist [19504]
O61 - LFC: 27/01/2014 - 01:20:40 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Safe Browsing Extension Blacklist [6932]
O61 - LFC: 27/01/2014 - 01:20:40 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Safe Browsing Side-Effect Free Whitelist [7293712]
O61 - LFC: 27/01/2014 - 01:20:40 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Torch\User Data\Safe Browsing Side-Effect Free Whitelist Prefix Set [1876014]
O61 - LFC: 29/01/2014 - 01:19:28 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\SwvUpdater\status.cfg [1] =>PUP.Software.Updater
O61 - LFC: 29/01/2014 - 01:19:29 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\SwvUpdater\Updater.exe [289832] =>PUP.Software.Updater
O61 - LFC: 29/01/2014 - 01:19:29 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\SwvUpdater\Updater.xml [2643] =>PUP.Software.Updater
O61 - LFC: 29/01/2014 - 01:20:49 ---A- . (.Amônétízé Ltd.) -- C:\Users\JeanPhi\Downloads\FlashPlayersetup__3873_i305983151_il155.exe [337960]
O61 - LFC: 29/01/2014 - 01:20:49 ---A- . (.Amônétízé Ltd.) -- C:\Users\JeanPhi\Downloads\FlashPlayersetup__3873_i305983758_il155.exe [337960]
O61 - LFC: 30/01/2014 - 01:16:33 ---A- . (...) -- C:\Users\JeanPhi\.android\adbkey [1704]
O61 - LFC: 30/01/2014 - 01:16:33 ---A- . (...) -- C:\Users\JeanPhi\.android\adbkey.pub [716]
O61 - LFC: 30/01/2014 - 01:17:08 ---A- . (...) -- C:\Users\JeanPhi\AppData\Local\Google\Chrome\User Data\Local State [58362]
O61 - LFC: 30/01/2014 - 01:20:42 ---A- . (...) -- C:\Users\JeanPhi\AppData\Roaming\cacaoweb\file1F6A7E8C0BF74092D7B5BF17F26A7AC1.cacao [8902153] =>PUP.CacaoWeb
O61 - LFC: 30/01/2014 - 01:20:42 ---A- . (...) -- C:\Users\JeanPhi\AppData\Roaming\cacaoweb\npdfile.dat [84] =>PUP.CacaoWeb
O61 - LFC: 30/01/2014 - 01:20:43 ---A- . (...) -- C:\Users\JeanPhi\AppData\Roaming\cacaoweb\replicating7C117FA633E72C60F7F0B43B9D216547.cacao [125384197] =>PUP.CacaoWeb
O61 - LFC: 30/01/2014 - 01:20:43 ---A- . (...) -- C:\Users\JeanPhi\AppData\Roaming\cacaoweb\storage.db [2344] =>PUP.CacaoWeb
O61 - LFC: 30/01/2014 - 01:20:44 ---A- . (...) -- C:\Users\JeanPhi\AppData\Roaming\newnext.me\nengine.cookie [3072] =>PUP.NextLive
O61 - LFC: 30/01/2014 - 01:20:48 ---A- . (...) -- C:\Users\JeanPhi\AppData\Roaming\ZHP\Log.txt [18407] =>.Nicolas Coolman
O61 - LFC: 30/01/2014 - 01:20:48 ---A- . (...) -- C:\Users\JeanPhi\AppData\Roaming\ZHP\TestsZHPDiag.txt [2871] =>.Nicolas Coolman
O61 - LFC: 30/01/2014 - 01:20:48 ---A- . (...) -- C:\Users\JeanPhi\daemonprocess.txt [0]
~ 9 Fichiers temporaires (Temporary files)
~ Files: 1996 Legitimates Filtered in 04mn 20s



---\\ Liste des outils de désinfection (LATC) (O63)
O63 - Logiciel: ZHPDiag 2014 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1 =>.Nicolas Coolman
~ ADS: Scanned in 00mn 00s



---\\ Menu de démarrage Internet (SMI) (O68)
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files\Google\Chrome\Application\chrome.exe
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe
O68 - StartMenuInternet: <>[HKLM\..\Shell\open\Command] (.Not Key.)
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Torch Media Inc. - Torch.) -- C:\Users\JeanPhi\AppData\Local\Torch\Application\torch.exe
~ Keys: Scanned in 00mn 00s



---\\ Recherche d'infection sur les navigateurs internet (SBI) (O69)
O69 - SBI: prefs.js [JeanPhi - aaii18bj.default] user_pref("weboftrust.search.ask.display", "Ask.com Web Search");
O69 - SBI: SearchScopes [HKCU] 0C1A20F7CF4F438DBCC091A1819AEEF6 - (0C1A20F7CF4F438DBCC091A1819AEEF6) - http://www.delta-search.com =>Toolbar.DeltaSearch
O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (Bing) - http://www.bing.com
O69 - SBI: SearchScopes [HKCU] {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} - (Search the web (Babylon)) - http://isearch.babylon.com =>PUP.Babylon
O69 - SBI: SearchScopes [HKCU] {75b4241f-171e-44a3-bf44-23613b6e3e03} - (Ask Web Search) - http://search.tb.ask.com
O69 - SBI: SearchScopes [HKCU] {9BB47C17-9C68-4BB3-B188-DD9AF0FD2406} - (Ask.com) - http://dts.search.ask.com
O69 - SBI: SearchScopes [HKCU] {CFF4DB9B-135F-47c0-9269-B4C6572FD61A} [DefaultScope] - (MyStart Search) - http://mystart.incredibar.com =>Adware.IncrediBar
~ Keys: Scanned in 00mn 00s



---\\ Recherche particulière à la racine du système (SPRF) (O84)
[MD5.689D46047B79EC2BADD5A614C34316A3] [SPRF][29/01/2014] (...) -- C:\ProgramData\nvModes.dat [49493]
[MD5.BFEBBDF0D02EC0D793C25A16FE99B8F8] [SPRF][15/05/2013] (...) -- C:\Users\JeanPhi\AppData\Local\d3d9caps.dat [680]
[MD5.1B173707BDED1220EFE27B3AAAF69E67] [SPRF][29/01/2014] (...) -- C:\Users\JeanPhi\AppData\Local\Temp\Mobogenie_Setup_2.1.37_506.exe [20240944] =>PUP.Mobogenie
[MD5.884E144676C0C9679042E83574822FB9] [SPRF][29/01/2014] (...) -- C:\Users\JeanPhi\AppData\LocalLow\SkwConfig.bin [8432]
[MD5.6AABCAB9FF3FFB26EF173153B765483D] [SPRF][29/01/2014] (...) -- C:\Users\JeanPhi\Desktop\cacaoweb.exe [469504] =>PUP.CacaoWeb
[MD5.DA373816D02FF937B3CFA4EB78EE2E5A] [SPRF][11/12/2013] (.InstallX, LLC - InstallIQ Installation Utility.) -- C:\Users\JeanPhi\Desktop\gamefire.exe [453712]
~ Files: 7 Legitimates Filtered in 00mn 10s



---\\ Liste des exceptions du parefeu (FirewallRules) (O87)
O87 - FAEL: "{B0BDBE58-3E35-4B8E-BE73-25E1BBEA1BB9}" | In - Private - P6 - TRUE | .(...) -- C:\Windows\System32\dmwu.exe
O87 - FAEL: "{8011EDEA-E2D6-4DF7-A15E-D8F9CF58F5D4}" | In - Private - P17 - TRUE | .(...) -- C:\Windows\System32\dmwu.exe
O87 - FAEL: "{636B8A6E-0E8D-433D-888C-9B75E353FD44}" | In - Public - P6 - TRUE | .(...) -- C:\Windows\System32\dmwu.exe
O87 - FAEL: "{D6248F03-A294-4295-AFEB-27DB807B03B4}" | In - Public - P17 - TRUE | .(...) -- C:\Windows\System32\dmwu.exe
O87 - FAEL: "TCP Query User{B25EE1B3-BCD4-4DE4-91C8-354BE871CB3F}C:\users\jeanphi\appdata\roaming\cacaoweb\cacaoweb.exe" | In - Public - P6 - TRUE | .(...) -- C:\users\jeanphi\appdata\roaming\cacaoweb\cacaoweb.exe =>PUP.CacaoWeb
O87 - FAEL: "UDP Query User{8F8372B7-BBF4-4656-9B55-9ECC78D4ED3C}C:\users\jeanphi\appdata\roaming\cacaoweb\cacaoweb.exe" | In - Public - P17 - TRUE | .(...) -- C:\users\jeanphi\appdata\roaming\cacaoweb\cacaoweb.exe =>PUP.CacaoWeb
O87 - FAEL: "{35D67EE3-2DD5-4F6C-B5D3-6509D71ECF7D}" | In - Public - P6 - TRUE | .(.APN LLC - DtUser.) -- C:\Program Files\Movies Toolbar\Datamngr\SRTOOL~1\IE\dtUser.exe =>PUP.Datamngr
O87 - FAEL: "{07F5C7C4-DCD4-416E-8A21-AE70F5B11E84}" | In - Public - P17 - TRUE | .(.APN LLC - DtUser.) -- C:\Program Files\Movies Toolbar\Datamngr\SRTOOL~1\IE\dtUser.exe =>PUP.Datamngr
O87 - FAEL: "{7E32B7F5-B486-4C47-B588-FC265C701235}" | In - None - P6 - TRUE | .(.Bandoo Media Inc. - iLivid Download Manager.) -- C:\Users\JeanPhi\AppData\Local\iLivid\iLivid.exe =>Adware.Bandoo
O87 - FAEL: "{ADE34B1E-DD65-4116-A6C3-D69E781266AF}" | In - None - P17 - TRUE | .(.Bandoo Media Inc. - iLivid Download Manager.) -- C:\Users\JeanPhi\AppData\Local\iLivid\iLivid.exe =>Adware.Bandoo
O87 - FAEL: "{8D6E9328-FFA6-40C4-A179-788CBCA74A26}" | In - None - P17 - TRUE | .(.Torch Media Inc. - Torch Torrent.) -- C:\Users\JeanPhi\AppData\Local\Torch\Plugins\Torrent\TorchTorrent.exe
O87 - FAEL: "TCP Query User{E8422000-89D5-429C-A73A-F54D9164943E}C:\users\jeanphi\appdata\local\torch\application\torch.exe" | In - Public - P6 - TRUE | .(.Torch Media Inc. - Torch.) -- C:\users\jeanphi\appdata\local\torch\application\torch.exe
O87 - FAEL: "UDP Query User{C249802F-131B-4229-8496-2F987A9988D7}C:\users\jeanphi\appdata\local\torch\application\torch.exe" | In - Public - P17 - TRUE | .(.Torch Media Inc. - Torch.) -- C:\users\jeanphi\appdata\local\torch\application\torch.exe
~ Firewall: 205 Legitimates Filtered in 00mn 06s



---\\ Export de clés de registre aléatoires (O91)
[HKCU\Software\5e0dcdde13aef48\2.6.1519.190\upd]:="upd=1" =>Hijacker.Eazel
[HKCU\Software\5e0dcdde13aef48\2.6.1673.238\upd]:="upd=1" =>Hijacker.Eazel
[HKCU\Software\5e0dcdde13aef48\2.6.1694.246\upd]:="upd=" =>Hijacker.Eazel
[HKCU\Software\5e0dcdde13aef48\2.7.1769.27\upd]:="upd=" =>Hijacker.Eazel
[HKCU\Software\5e0dcdde13aef48\history\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}2.6.1339.144]:dllName="BrowserDefender.dll" =>Hijacker.Eazel
[HKCU\Software\5e0dcdde13aef48\history\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}2.6.1339.144]:exeName="BrowserDefender.exe" =>Hijacker.Eazel
[HKCU\Software\5e0dcdde13aef48\history\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}2.6.1339.144]:folderName="BrowserDefender" =>Hijacker.Eazel
[HKCU\Software\5e0dcdde13aef48\history\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}2.6.1339.144]:guid="{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}" =>Hijacker.Eazel
[HKCU\Software\5e0dcdde13aef48\history\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}2.6.1339.144]:serviceName="BrowserDefendert" =>PUA.BrowserDefendert
[HKCU\Software\5e0dcdde13aef48\history\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}2.6.1339.144]:version="2.6.1339.144" =>Hijacker.Eazel
[HKCU\Software\5e0dcdde13aef48\history\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}2.6.1519.190]:dllName="BrowserDefender.dll" =>Hijacker.Eazel
[HKCU\Software\5e0dcdde13aef48\history\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}2.6.1519.190]:exeName="BrowserDefender.exe" =>Hijacker.Eazel
[HKCU\Software\5e0dcdde13aef48\history\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}2.6.1519.190]:folderName="BrowserDefender" =>Hijacker.Eazel
[HKCU\Software\5e0dcdde13aef48\history\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}2.6.1519.190]:guid="{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}" =>Hijacker.Eazel
[HKCU\Software\5e0dcdde13aef48\history\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}2.6.1519.190]:serviceName="BrowserDefendert" =>PUA.BrowserDefendert
[HKCU\Software\5e0dcdde13aef48\history\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}2.6.1519.190]:version="2.6.1519.190" =>Hijacker.Eazel
[HKCU\Software\5e0dcdde13aef48\history\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}2.6.1673.238]:dllName="BitGuard.dll" =>PUP.BitGuard
[HKCU\Software\5e0dcdde13aef48\history\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}2.6.1673.238]:exeName="BitGuard.exe" =>PUP.BitGuard
[HKCU\Software\5e0dcdde13aef48\history\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}2.6.1673.238]:folderName="BitGuard" =>PUP.BitGuard
[HKCU\Software\5e0dcdde13aef48\history\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}2.6.1673.238]:guid="{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}" =>Hijacker.Eazel
[HKCU\Software\5e0dcdde13aef48\history\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}2.6.1673.238]:serviceName="BitGuard" =>PUP.BitGuard
[HKCU\Software\5e0dcdde13aef48\history\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}2.6.1673.238]:version="2.6.1673.238" =>Hijacker.Eazel
[HKCU\Software\5e0dcdde13aef48\history\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}2.6.1694.246]:dllName="BitGuard.dll" =>PUP.BitGuard
[HKCU\Software\5e0dcdde13aef48\history\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}2.6.1694.246]:exeName="BitGuard.exe" =>PUP.BitGuard
[HKCU\Software\5e0dcdde13aef48\history\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}2.6.1694.246]:folderName="BitGuard" =>PUP.BitGuard
[HKCU\Software\5e0dcdde13aef48\history\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}2.6.1694.246]:guid="{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}" =>Hijacker.Eazel
[HKCU\Software\5e0dcdde13aef48\history\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}2.6.1694.246]:serviceName="BitGuard" =>PUP.BitGuard
[HKCU\Software\5e0dcdde13aef48\history\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}2.6.1694.246]:version="2.6.1694.246" =>Hijacker.Eazel
[HKCU\Software\5e0dcdde13aef48]:version="2.7.1769.27" =>Hijacker.Eazel
[HKLM\Software\5e0dcdde13aef48]:version="2.7.1769.27" =>Hijacker.Eazel
~ Export Key Software: Scanned in 00mn 00s



---\\ Etat général des services non Microsoft (EGS) (SR=Running, SS=Stopped)
SS - | Demand 20/01/2014 257928 | (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
SS - | Auto 20/07/2013 42504 | (Allin1Convert_8hService) . (.COMPANYVERS_NAME.) - C:\Program Files\Allin1Convert_8h\bar\1.bin\8hbarsvc.exe =>Adware.Allin1Convert
SS - | Auto 21/07/2013 116648 | (gupdate) . (.Google Inc..) - C:\Program Files\Google\Update\GoogleUpdate.exe
SS - | Demand 21/07/2013 116648 | (gupdatem) . (.Google Inc..) - C:\Program Files\Google\Update\GoogleUpdate.exe
SS - | Demand 05/12/2013 119408 | (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe

SR - | Auto 27/07/2012 63960 | (AdobeARMservice) . (.Adobe Systems Incorporated.) - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
SR - | Auto 27/06/2008 77824 | (AESTFilters) . (.Andrea Electronics Corporation.) - C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_a7e996cd\aestsrv.exe
SR - | Auto 19/12/2013 46808 | (avast! Antivirus) . (.AVAST Software.) - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
SR - | Auto 19/12/2013 137960 | (avast! Firewall) . (.AVAST Software.) - C:\Program Files\AVAST Software\Avast\afwServ.exe
SR - | Auto 23/12/2013 3447808 | (DatamngrCoordinator) . (.Bandoo Media Inc..) - C:\Program Files\Movies Toolbar\Datamngr\DatamngrCoordinator.exe =>PUP.Datamngr
SR - | Auto 13/05/2011 26168 | (hpsrv) . (.Hewlett-Packard Company.) - C:\Windows\System32\Hpservice.exe
SR - | Auto 29/12/2013 1488176 | (IBUpdaterService) . (...) - C:\Windows\System32\dmwu.exe =>Adware.InstallBrain
SR - | Auto 28/11/2007 589824 | (lxdn_device) . (...) - C:\Windows\system32\lxdncoms.exe
SR - | Auto 04/04/2013 418376 | (MBAMScheduler) . (.Malwarebytes Corporation.) - C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
SR - | Auto 04/04/2013 701512 | (MBAMService) . (.Malwarebytes Corporation.) - C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
SR - | Disabled 30/01/2014 63168 | (MgAssistService) . (...) - C:\Program Files\Mobogenie\MgAssist.exe =>PUP.Mobogenie
SR - | Auto 14/05/2008 118784 | (nvsvc) . (.NVIDIA Corporation.) - C:\Windows\System32\nvvsvc.exe
SR - | Auto 27/06/2008 221273 | (STacSV) . (.IDT, Inc..) - C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_a7e996cd\STacSV.exe
SR - | Auto 25/07/2013 3059696 | (supt4pc_fr_49) . (...) - C:\Users\JeanPhi\AppData\Local\tuto4pc_fr_49\supt4pc_fr_49.exe =>PUP.Eorezo
SR - | Auto 25/07/2013 3059184 | (supt4pc_fr_51) . (...) - C:\Users\JeanPhi\AppData\Local\tuto4pc_fr_51\supt4pc_fr_51.exe =>PUP.Eorezo
SR - | Auto 04/11/2013 1213448 | (TorchCrashHandler) . (.TorchMedia Inc..) - C:\Users\JeanPhi\AppData\Local\Torch\Update\TorchCrashHandler.exe
SR - | Auto 21/01/2008 21504 | C:\Program Files\Windows Defender\mpsvc.dll (WinDefend) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe
SR - | Auto 21/01/2008 21504 | C:\Windows\System32\wuaueng.dll (wuauserv) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe

~ Services: Scanned in 00mn 07s



---\\ Recherche d'infection sur le Master Boot Record (MBR)(O80)
Stealth MBR rootkit/Mebroot/Sinowal/TDL4 detector 0.4.2 by Gmer, http://www.gmer.net

~ MBR: 1 Legitimates Filtered in 00mn 02s



---\\ Recherche d'infection sur le Master Boot Record (MBRCheck)(O80)
Written by ad13, http://ad13.geekstog
Run by JeanPhi at 30/01/2014 01:22:00

********* Dump file Name *********
C:\PhysicalDisk0_MBR.bin

~ MBR: Scanned in 00mn 04s



---\\ Scan Additionnel (O88)
Database Version : 13030 - (25/01/2014)
Clés trouvées (Keys found) : 157
Valeurs trouvées (Values found) : 6
Dossiers trouvés (Folders found) : 53
Fichiers trouvés (Files found) : 40

[HKLM\Software\Google\Chrome\Extensions\aaaaabcbmongicmdegkmmfgdickgnnob] =>PUP.MoviesToolbar^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110411591118}] =>PUP.CrossRider^
[HKLM\SYSTEM\CurrentControlSet\Services\Allin1Convert_8hService] =>Adware.Allin1Convert^
[HKLM\SYSTEM\CurrentControlSet\Services\DatamngrCoordinator] =>PUP.Datamngr^
[HKLM\SYSTEM\CurrentControlSet\Services\IBUpdaterService] =>Adware.InstallBrain^
[HKLM\SYSTEM\CurrentControlSet\Services\supt4pc_fr_49] =>PUP.Eorezo^
[HKLM\SYSTEM\CurrentControlSet\Services\supt4pc_fr_51] =>PUP.Eorezo^
[HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\AppsHat Mobile Apps] =>Adware.MegaSearch^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\DealPly] =>PUP.DealPly^
[HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\Dealply] =>PUP.DealPly^
[HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\lollipop_08270219] =>Adware.Lollipop^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{e1cd25c0-a55b-46e6-8165-0c8111616fdb}] =>Adware.AddLyrics^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\Plus-HD-2.3] =>Adware.PlusHD^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\Plus-HD-4.9] =>Adware.PlusHD^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\SweetIM Bundle by SweetPacks] =>PUP.SweetIM^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\WNLT] =>PUP.SweetIM^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{C4ED781C-7394-4906-AAFF-D6AB64FF7C38}] =>Adware.WebCake^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\iLivid] =>Adware.Bandoo^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\tuto4pc_fr_43_is1] =>PUP.Eorezo^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\tuto4pc_fr_49_is1] =>PUP.Eorezo^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\tuto4pc_fr_51_is1] =>PUP.Eorezo^
[HKLM\Software\Microsoft\Shared Tools\MSConfig\startupreg\Apps Hat] =>Adware.MegaSearch^
[HKLM\Software\Microsoft\Shared Tools\MSConfig\startupreg\AppsHat] =>Adware.MegaSearch^
[HKLM\Software\Microsoft\Shared Tools\MSConfig\startupreg\cacaoweb] =>PUP.CacaoWeb^
[HKLM\Software\Microsoft\Shared Tools\MSConfig\startupreg\iLivid] =>Adware.Bandoo^
[HKLM\Software\Classes\CLSID\{02054E11-5113-4BE3-8153-AA8DFB5D3761}] =>Adware.Agent
[HKLM\Software\Classes\Interface\{021B4049-F57D-4565-A693-FD3B04786BFA}] =>Adware.IMBooster
[HKLM\Software\Classes\Interface\{0362AA09-808D-48E9-B360-FB51A8CBCE09}] =>Adware.IMBooster
[HKLM\Software\Classes\Interface\{06844020-CD0B-3D3D-A7FE-371153013E49}] =>Adware.IMBooster
[HKLM\Software\Classes\Interface\{0ADC01BB-303B-3F8E-93DA-12C140E85460}] =>Adware.IMBooster
[HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ecdf796-c2dc-4d79-a620-cce0c0a66cc9}] =>PUP.Babylon
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{0F6E720A-1A6B-40E1-A294-1D4D19F156C8}] =>Toolbar.Agent
[HKLM\Software\Classes\Interface\{10D3722F-23E6-3901-B6C1-FF6567121920}] =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{1675E62B-F911-3B7B-A046-EB57261212F3}] =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{192929F2-9273-3894-91B0-F54671C4C861}] =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{1B730ACF-26A3-447B-9994-14AEE0EB72CC}] =>Adware.Bandoo
[HKLM\Software\Classes\Interface\{2932897E-3036-43D9-8A64-B06447992065}] =>PUP.RewardsArcade
[HKLM\Software\Classes\TypeLib\{2BF2028E-3F3C-4C05-AB45-B2F1DCFE0759}] =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{2DE92D29-A042-3C37-BFF8-07C7D8893EFA}] =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{32B80AD6-1214-45F4-994E-78A5D482C000}] =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{3A8E103F-B2B7-3BEF-B3B0-88E29B2420E4}] =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{478CE5D3-D38E-3FFE-8DBE-8C4A0F1C4D8D}] =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{48B7DA4E-69ED-39E3-BAD5-3E3EFF22CFB0}] =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{5982F405-44E4-3BBB-BAC4-CF8141CBBC5C}] =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{5D8C3CC3-3C05-38A1-B244-924A23115FE9}] =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{641593AF-D9FD-30F7-B783-36E16F7A2E08}] =>PUP.RewardsArcade
[HKLM\Software\Classes\CLSID\{67BD9EEB-AA06-4329-A940-D250019300C9}] =>PUP.Software.Updater
[HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{68B81CCD-A80C-4060-8947-5AE69ED01199}] =>Adware.IMBooster
[HKLM\Software\Classes\TypeLib\{6A4BCABA-C437-4C76-A54E-AF31B8A76CB9}] =>Adware.Bandoo
[HKLM\Software\Classes\Interface\{711FC48A-1356-3932-94D8-A8B733DBC7E4}] =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{72227B7F-1F02-3560-95F5-592E68BACC0C}] =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{7B5E8CE3-4722-4C0E-A236-A6FF731BEF37}] =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{890D4F59-5ED0-3CB4-8E0E-74A5A86E7ED0}] =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{8C68913C-AC3C-4494-8B9C-984D87C85003}] =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{8D019513-083F-4AA5-933F-7D43A6DA82C4}] =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{923F6FB8-A390-370E-A0D2-DD505432481D}] =>PUP.RewardsArcade
[HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}] =>Adware.Bandoo
[HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}] =>Adware.Bandoo
[HKLM\Software\Classes\Interface\{9BBB26EF-B178-35D6-9D3D-B485F4279FE5}] =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{9EDC0C90-2B5B-4512-953E-35767BAD5C67}] =>PUP.Software.Updater
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{A09AB6EB-31B5-454C-97EC-9B294D92EE2A}] =>Adware.IMBooster
[HKLM\Software\Classes\TypeLib\{A0EE0278-2986-4E5A-884E-A3BF0357E476}] =>PUP.Software.Updater
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{A40DC6C5-79D0-4ca8-A185-8FF989AF1115}] =>Adware.Bandoo
[HKLM\Software\Classes\CLSID\{A40DC6C5-79D0-4ca8-A185-8FF989AF1115}] =>Adware.Bandoo
[HKLM\Software\Classes\Interface\{A62DDBE0-8D2A-339A-B089-8CBCC5CD322A}] =>PUP.RewardsArcade
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{A7A6995D-6EE1-4FD1-A258-49395D5BF99C}] =>Toolbar.Agent
[HKLM\Software\Classes\Interface\{A82AD04D-0B8E-3A49-947B-6A69A8A9C96D}] =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{ADEB3CC9-A05D-4FCC-BD09-9025456AA3EA}] =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{B06D4521-D09C-3F41-8E39-9D784CCA2A75}] =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{C06DAD42-6F39-4CE1-83CC-9A8B9105E556}] =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{C2E799D0-43A5-3477-8A98-FC5F3677F35C}] =>PUP.RewardsArcade
[HKLM\Software\Classes\CLSID\{CC1AC828-BB47-4361-AFB5-96EEE259DD87}] =>Adware.Bandoo
[HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{CFF4DB9B-135F-47C0-9269-B4C6572FD61A}] =>Adware.IncrediBar
[HKLM\Software\Classes\Interface\{D16107CD-2AD5-46A8-BA59-303B7C32C500}] =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{D25B101F-8188-3B43-9D85-201F372BC205}] =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{D2BA7595-5E44-3F1E-880F-03B3139FA5ED}] =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{D35F5C81-17D9-3E1C-A1FC-4472542E1D25}] =>PUP.RewardsArcade
[HKLM\Software\Classes\AppID\{D616A4A2-7B38-4DBC-9093-6FE7A4A21B17}] =>Toolbar.Wajam
[HKLM\Software\Classes\Interface\{D8FA96CA-B250-312C-AF34-4FF1DD72589D}] =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{DAFC1E63-3359-416D-9BC2-E7DCA6F7B0F3}] =>PUP.RewardsArcade
[HKLM\Software\Classes\TypeLib\{DB538320-D3C5-433C-BCA9-C4081A054FCF}] =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{DC5E5C44-80FD-3697-9E65-9F286D92F3E7}] =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{E1B4C9DE-D741-385F-981E-6745FACE6F01}] =>PUP.RewardsArcade
[HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E6B969FB-6D33-48d2-9061-8BBD4899EB08}] =>Adware.IMBooster
[HKLM\Software\Classes\Interface\{E7B623F5-9715-3F9F-A671-D1485A39F8A2}] =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{ED916A7B-7C68-3198-B87D-2DABC30A5587}] =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{EFA1BDB2-BB3D-3D9A-8EB5-D0D22E0F64F4}] =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{F4CBF4DD-F8FE-35BA-BB7E-68304DAAB70B}] =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{FC32005D-E27C-32E0-ADFA-152F598B75E7}] =>PUP.RewardsArcade
[HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\IMBoosterARP] =>Adware.IMBooster
[HKLM\Software\Classes\SearchQUIEHelper.DNSGuard] =>Adware.Bandoo
[HKLM\Software\Classes\SearchQUIEHelper.DNSGuard.1] =>Adware.Bandoo
[HKLM\Software\Classes\Updater.AmiUpd] =>PUP.Software.Updater
[HKLM\Software\Classes\Updater.AmiUpd.1] =>PUP.Software.Updater
[HKLM\Software\Google\Chrome\Extensions\ogccgbmabaphcakpiclgcnmcnimhokcj] =>PUP.SweetIM
[HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\WajamUpdater] =>Toolbar.Wajam
[HKLM\Software\AedgePerformanceBCN] =>Adware.SPointer
[HKCU\Software\APN DTX] =>Toolbar.Ask
[HKCU\Software\cacaoweb] =>PUP.CacaoWeb
[HKCU\Software\DataMngr] =>Adware.Bandoo
[HKLM\Software\DataMngr] =>Adware.Bandoo
[HKCU\Software\lollipop] =>Adware.Lollipop
[HKCU\Software\ilivid] =>Adware.Bandoo
[HKCU\Software\Iminent] =>Adware.IMBooster
[HKLM\Software\Iminent] =>Adware.IMBooster
[HKLM\Software\Minibar] =>PUP.Minibar
[HKCU\Software\Softonic] =>Toolbar.Conduit
[HKCU\Software\SweetIM] =>PUP.SweetIM
[HKLM\Software\SweetIM] =>PUP.SweetIM
[HKLM\Software\Tarma Installer] =>PUP.Tarma
[HKCU\Software\Tuto4pc] =>PUP.Eorezo
[HKLM\Software\Tuto4pc] =>PUP.Eorezo
[HKCU\Software\Tutorials] =>Spyware.AgenceExclusive
[HKCU\Software\WNLT] =>Adware.IncrediBar
[HKLM\Software\WNLT] =>Adware.IncrediBar
[HKCU\Software\DealPly] =>PUP.DealPly
[HKLM\Software\DealPly] =>PUP.DealPly
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{99C91FC5-DB5B-4AA0-BB70-5D89C5A4DF96}] =>PUP.Software.Updater
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{C1AF5FA5-852C-4C90-812E-A7F75E011D87}] =>Toolbar.DeltaSearch
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\SearchTheWebARP] =>Adware.IMBooster
[HKLM\Software\Classes\Prod.cap] =>PUP.Babylon
[HKCU\Software\InstallCore] =>Adware.InstallCore
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\bProtectSettings] =>PUP.BProtector
[HKLM\Software\InstallIQ] =>Toolbar.Agent
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\29799DE249E7DBC459FC6C8F07EB8375] =>PUP.Tarma
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0238BBE24EA3A70408B81E4BB89C15E5] =>PUP.Tarma
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{82E1477C-B154-48D3-9891-33D83C26BCD3}] =>PUP.Funmoods
[HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Delta] =>Toolbar.DeltaSearch
[HKLM\Software\Classes\AppID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}] =>Toolbar.DeltaSearch
[HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Delta Chrome Toolbar] =>Toolbar.DeltaSearch
[HKCU\Software\AppDataLow\Software\Crossrider] =>PUP.CrossRider
[HKCU\Software\InstalledBrowserExtensions\] =>PUP.CrossRider
[HKCU\Software\BI] =>Adware.MegaSearch
[HKLM\Software\Google\Chrome\Extensions\fjoijdanhaiflhibkljeklcghcmmfffh] =>Adware.WebCake
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{CD1A63BA-A08C-431B-9A34-F240AADC728D}] =>Adware.MyWebSearch
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A4C2FB10-84C3-44EB-9F9E-860FA1D9A797}] =>Adware.Allin1Convert
[HKCU\Software\InstalledBrowserExtensions] =>PUP.CrossRider
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{fbcbc43a-dca9-4192-a4c8-b57fd0f77d4d}] =>Adware.Allin1Convert
[HKCU\Software\Allin1Convert_8h] =>Adware.Allin1Convert
[HKCU\Software\AppDataLow\Software\Allin1Convert_8h] =>Adware.Allin1Convert
[HKLM\Software\Allin1Convert_8h] =>Adware.Allin1Convert
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{2A5A2A90-3B30-4E6E-A955-2F232C6EF517}] =>Adware.WebCake
[HKLM\Software\Classes\WebCakeIEClient.Api] =>
[HKLM\Software\Classes\WebCakeIEClient.Api.1] =>
[HKLM\Software\Classes\AppID\WebCakeIEClient.DLL] =>
[HKCU\Software\AppDataLow\{1146AC44-2F03-4431-B4FD-889BC837521F}] =>PUP.OptimizerPro
[HKLM\Software\Classes\CrossriderApp0045918.BHO] =>PUP.CrossRider
[HKLM\Software\Classes\CrossriderApp0045918.BHO.1] =>PUP.CrossRider
[HKLM\Software\Classes\CrossriderApp0045918.Sandbox] =>PUP.CrossRider
[HKLM\Software\Classes\CrossriderApp0045918.Sandbox.1] =>PUP.CrossRider
[HKLM\Software\Classes\CLSID\{11111111-1111-1111-1111-110411591118}] =>PUP.CrossRider
[HKLM\Software\Classes\CLSID\{22222222-2222-2222-2222-220422592218}] =>PUP.CrossRider
[HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\Arpcache\SweetIM Bundle by SweetPacks] =>PUP.SweetIM
[HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\Arpcache\tuto4pc_fr_43_is1] =>Spyware.AgenceExclusive
[HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\Arpcache\tuto4pc_fr_49_is1] =>Spyware.AgenceExclusive
[HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\Arpcache\tuto4pc_fr_51_is1] =>Spyware.AgenceExclusive
[HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\Arpcache\Wajam] =>PUP.Wajam
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]:mobilegeni daemon =>PUP.Mobogenie^
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]:NextLive =>PUP.NextLive^
C:\Users\JeanPhi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaabcbmongicmdegkmmfgdickgnnob =>PUP.MoviesToolbar^
C:\Users\JeanPhi\AppData\Roaming\Mozilla\Firefox\Profiles\aaii18bj.default\extensions\cacaoweb@cacaoweb.org =>PUP.CacaoWeb^
C:\Program Files\Allin1Convert_8h =>Adware.Allin1Convert^
C:\Program Files\DealPly =>PUP.DealPly^
C:\Program Files\DealPlyLive =>PUP.DealPly^
C:\Program Files\majtuto4pc_fr_a1 =>PUP.Eorezo^
C:\Program Files\majtuto4pc_fr_a2 =>PUP.Eorezo^
C:\Program Files\Minibar =>PUP.Minibar^
C:\Program Files\Movies Toolbar =>PUP.MoviesToolbar^
C:\Program Files\Plus-HD-2.3 =>Adware.PlusHD^
C:\Program Files\Plus-HD-4.9 =>Adware.PlusHD^
C:\Program Files\Smart PC Cleaner =>USP.PCCleaner^
C:\Program Files\sweetpacks bundle uninstaller =>PUP.SweetIM^
C:\Program Files\tuto4pc_fr_43 =>PUP.Eorezo^
C:\Program Files\tuto4pc_fr_49 =>PUP.Eorezo^
C:\Program Files\tuto4pc_fr_51 =>PUP.Eorezo^
C:\ProgramData\Babylon =>PUP.Babylon^
C:\ProgramData\BitGuard =>PUP.BitGuard^
C:\ProgramData\BrowserProtect =>Hijacker.Eazel^
C:\ProgramData\Datamngr =>PUP.Datamngr^
C:\ProgramData\DealPlyLive =>PUP.DealPly^
C:\ProgramData\Tarma Installer =>PUP.Tarma^
C:\Users\JeanPhi\AppData\Roaming\BabSolution =>Hijacker.BabSolution^
C:\Users\JeanPhi\AppData\Roaming\Babylon =>PUP.Babylon^
C:\Users\JeanPhi\AppData\Roaming\cacaoweb =>PUP.CacaoWeb^
C:\Users\JeanPhi\AppData\Roaming\Dealply =>PUP.DealPly^
C:\Users\JeanPhi\AppData\Roaming\File Scout =>PUP.FileScout^
C:\Users\JeanPhi\AppData\Roaming\newnext.me =>PUP.NextLive^
C:\Users\JeanPhi\AppData\Local\Allin1Convert_8h =>Adware.Allin1Convert^
C:\Users\JeanPhi\AppData\Local\AppsHat Mobile Apps =>Adware.MegaSearch^
C:\Users\JeanPhi\AppData\Local\Babylon =>PUP.Babylon^
C:\Users\JeanPhi\AppData\Local\DealPlyLive =>PUP.DealPly^
C:\Users\JeanPhi\AppData\Local\eorezo =>PUP.Eorezo^
C:\Users\JeanPhi\AppData\Local\iLivid =>Adware.Bandoo^
C:\Users\JeanPhi\AppData\Local\Lollipop =>Adware.Lollipop^
C:\Users\JeanPhi\AppData\Local\Minibar =>PUP.Minibar^
C:\Users\JeanPhi\AppData\Local\Plus-HD-4.9 =>Adware.PlusHD^
C:\Users\JeanPhi\AppData\Local\supt4pc_fr_49 =>PUP.Eorezo^
C:\Users\JeanPhi\AppData\Local\supt4pc_fr_51 =>PUP.Eorezo^
C:\Users\JeanPhi\AppData\Local\SwvUpdater =>PUP.Software.Updater^
C:\Users\JeanPhi\AppData\Local\tuto4pc_fr_43 =>PUP.Eorezo^
C:\Users\JeanPhi\AppData\Local\tuto4pc_fr_49 =>PUP.Eorezo^
C:\Users\JeanPhi\AppData\Local\tuto4pc_fr_51 =>PUP.Eorezo^
C:\Users\JeanPhi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AppsHat =>Adware.MegaSearch^
C:\Users\JeanPhi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BitGuard =>PUP.BitGuard^
C:\Users\JeanPhi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\DealPly =>PUP.DealPly^
C:\Program Files\Software =>Adware.Boxore
C:\ProgramData\Browser Manager =>PUP.Babylon
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tuto4PC =>PUP.Eorezo
C:\Users\JeanPhi\AppData\Local\Bundled software uninstaller =>Adware.MegaSearch
C:\Users\JeanPhi\AppData\LocalLow\searchresultstb =>Toolbar.Agent
C:\Users\JeanPhi\AppData\LocalLow\Minibar =>PUP.Minibar
C:\Users\JeanPhi\AppData\LocalLow\Allin1Convert_8h =>Adware.Allin1Convert
C:\Users\JeanPhi\AppData\Roaming\cacaoweb\cacaoweb.exe =>PUP.CacaoWeb^
C:\Program Files\Mobogenie\DaemonProcess.exe =>PUP.Mobogenie^
C:\Program Files\Movies Toolbar\Datamngr\DatamngrCoordinator.exe =>PUP.Datamngr^
C:\Program Files\Movies Toolbar\Datamngr\DatamngrUI.exe =>PUP.Datamngr^
C:\Users\JeanPhi\AppData\Local\tuto4pc_fr_49\supt4pc_fr_49.exe =>PUP.Eorezo^
C:\Users\JeanPhi\AppData\Local\tuto4pc_fr_51\supt4pc_fr_51.exe =>PUP.Eorezo^
C:\Program Files\Mobogenie\MgAssist.exe =>PUP.Mobogenie^
C:\Windows\Tasks\AmiUpdXp.job =>PUP.Software.Updater^
C:\Windows\Tasks\Plus-HD-2.3-chromeinstaller.job =>Adware.PlusHD^
C:\Windows\Tasks\Plus-HD-2.3-codedownloader.job =>Adware.PlusHD^
C:\Windows\Tasks\Plus-HD-2.3-enabler.job =>Adware.PlusHD^
C:\Windows\Tasks\Plus-HD-4.9-chromeinstaller.job =>Adware.PlusHD^
C:\Windows\Tasks\Plus-HD-4.9-codedownloader.job =>Adware.PlusHD^
C:\Windows\Tasks\Plus-HD-4.9-enabler.job =>Adware.PlusHD^
C:\Windows\Tasks\Plus-HD-4.9-updater.job =>Adware.PlusHD^
C:\Users\JeanPhi\AppData\Local\SwvUpdater\Updater.exe =>PUP.Software.Updater^
C:\Program Files\Plus-HD-2.3\Plus-HD-2.3-chromeinstaller.exe =>Adware.PlusHD^
C:\Program Files\Plus-HD-2.3\Plus-HD-2.3-codedownloader.exe =>Adware.PlusHD^
C:\Program Files\Plus-HD-2.3\Plus-HD-2.3-enabler.exe =>Adware.PlusHD^
C:\Program Files\Plus-HD-4.9\Plus-HD-4.9-chromeinstaller.exe =>Adware.PlusHD^
C:\Program Files\Plus-HD-4.9\Plus-HD-4.9-codedownloader.exe =>Adware.PlusHD^
C:\Program Files\Plus-HD-4.9\Plus-HD-4.9-enabler.exe =>Adware.PlusHD^
C:\Program Files\Plus-HD-4.9\Plus-HD-4.9-updater.exe =>Adware.PlusHD^
c:\users\JeanPhi\appdata\local\lollipop\lollipop_08270219.bat =>Adware.Lollipop^
[HKCU\Software\BabSolution] =>Hijacker.BabSolution^
[HKCU\Software\Datamngr] =>PUP.Datamngr^
[HKCU\Software\FileScout] =>PUP.FileScout^
[HKCU\Software\TutoTag] =>Spyware.AgenceExclusive^
[HKCU\Software\Wajam] =>PUP.Wajam^
[HKCU\Software\tuto4pc] =>PUP.Eorezo^
[HKLM\Software\DealPlyLive] =>PUP.DealPly^
[HKLM\Software\TUTO4PC] =>PUP.Eorezo^
[HKLM\Software\Wajam] =>PUP.Wajam^
C:\Users\JeanPhi\AppData\Local\Temp\Mobogenie_Setup_2.1.37_506.exe =>PUP.Mobogenie^
C:\Users\JeanPhi\Desktop\cacaoweb.exe =>PUP.CacaoWeb^
[HKCU\Software\5e0dcdde13aef48\history\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}2.6.1339.144]:dllName="BrowserDefender.dll" =>Hijacker.Eazel^
[HKCU\Software\5e0dcdde13aef48\history\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}2.6.1519.190]:dllName="BrowserDefender.dll" =>Hijacker.Eazel^
[HKCU\Software\5e0dcdde13aef48\history\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}2.6.1673.238]:dllName="BitGuard.dll" =>PUP.BitGuard^
[HKCU\Software\5e0dcdde13aef48\history\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}2.6.1694.246]:dllName="BitGuard.dll" =>PUP.BitGuard^
C:\Users\JeanPhi\Downloads\cacaoweb.exe =>PUP.CacaoWeb
~ Additionnel Scan: 147507 Items scanned in 01mn 10s



---\\ Récapitulatif des détections trouvées sur votre station
~ http://nicolascoolman.webs.com/apps/blog/show/27566847-pup-cacaoweb =>PUP.CacaoWeb
~ http://nicolascoolman.webs.com/apps/blog/show/41034005-pup-mobogenie =>PUP.Mobogenie
~ http://nicolascoolman.webs.com/apps/blog/show/27583992-pup-datamngr =>PUP.Datamngr
~ http://nicolascoolman.webs.com/apps/blog/show/27469224-pup-eorezo =>PUP.EoRezo
~ http://nicolascoolman.webs.com/apps/blog/show/33744863-pup-moviestoolbar =>PUP.MoviesToolbar
~ http://nicolascoolman.webs.com/apps/blog/show/30478407-adware-allin1convert =>Adware.Allin1Convert
~ http://nicolascoolman.webs.com/apps/blog/show/27583526-pup-crossrider =>PUP.CrossRider
~ http://nicolascoolman.webs.com/apps/blog/show/26611092-adware-bandoo =>Adware.Bandoo
~ http://nicolascoolman.webs.com/apps/blog/show/26630902-adware-lollipop =>Adware.Lollipop
~ http://nicolascoolman.webs.com/apps/blog/show/40528410-pup-nextlive =>PUP.NextLive
~ http://nicolascoolman.webs.com/apps/blog/show/26907365-adware-installbrain =>Adware.InstallBrain
~ http://nicolascoolman.webs.com/apps/blog/show/32713686-pup-software-updater =>PUP.Software.Updater
~ http://nicolascoolman.webs.com/apps/blog/show/28138048-adware-plushd =>Adware.PlusHD
~ http://nicolascoolman.webs.com/apps/blog/show/26919368-adware-megasearch =>Adware.MegaSearch
~ http://nicolascoolman.webs.com/apps/blog/show/28060597-pup-dealply =>PUP.DealPly
~ http://nicolascoolman.webs.com/apps/blog/show/26601058-adware-addlyrics =>Adware.AddLyrics
~ http://nicolascoolman.webs.com/apps/blog/show/29216159-pup-sweetim =>PUP.SweetIM
~ http://nicolascoolman.webs.com/apps/blog/show/27285539-adware-webcake =>Adware.WebCake
~ http://nicolascoolman.webs.com/apps/blog/show/27161672-hijacker-eazel =>Hijacker.Eazel
~ http://nicolascoolman.webs.com/apps/blog/show/26678994-hijacker-babsolution =>Hijacker.BabSolution
~ http://nicolascoolman.webs.com/apps/blog/show/34311830-pup-filescout =>PUP.FileScout
~ http://nicolascoolman.webs.com/apps/blog/show/26684723-adware-imbooster =>Adware.IMBooster
~ http://nicolascoolman.webs.com/apps/blog/show/29790567-adware-installcore =>Adware.InstallCore
~ http://nicolascoolman.webs.com/apps/blog/show/27557062-adware-vidsaver =>Adware.VidSaver
~ http://nicolascoolman.webs.com/apps/blog/show/29507721-toolbar-conduit =>Toolbar.Conduit
~ http://nicolascoolman.webs.com/apps/blog/show/26627641-spyware-agenceexclusive =>Spyware.AgenceExclusive
~ http://nicolascoolman.webs.com/apps/blog/show/26898222-adware-incredibar =>Adware.Incredibar
~ http://nicolascoolman.webs.com/apps/blog/show/27379491-toolbar-wajam =>PUP.Wajam
~ http://nicolascoolman.webs.com/apps/blog/show/27556476-adware-spointer =>Adware.SPointer
~ http://nicolascoolman.webs.com/apps/blog/show/34407192-pup-minibar =>PUP.Minibar
~ http://nicolascoolman.webs.com/apps/blog/show/29637859-toolbar-tarma =>PUP.Tarma
~ http://nicolascoolman.webs.com/apps/blog/show/29956939-usp-pccleaner =>USP.PCCleaner
~ http://nicolascoolman.webs.com/apps/blog/show/26627369-toolbar-babylon =>PUP.Babylon
~ http://nicolascoolman.webs.com/apps/blog/show/32979753-pup-bitguard =>PUP.BitGuard
~ http://nicolascoolman.webs.com/apps/blog/show/32799788-pup-browsersafeguard =>PUP.BrowserSafeguard
~ http://nicolascoolman.webs.com/apps/blog/show/33367156-spyware-protectedsearch =>Spyware.ProtectedSearch
~ http://nicolascoolman.webs.com/apps/blog/show/28441146-pup-imesh =>PUP.iMesh
~ http://nicolascoolman.webs.com/apps/blog/show/27875657-toolbar-deltasearch =>Toolbar.DeltaSearch
~ http://nicolascoolman.webs.com/apps/blog/show/35127313-pua-browserdefendert =>PUA.BrowserDefendert
~ http://nicolascoolman.webs.com/apps/blog/show/28000037-pup-rewardsarcade =>PUP.RewardsArcade
~ http://nicolascoolman.webs.com/apps/blog/show/28927746-toolbar-ask =>Toolbar.Ask
~ http://nicolascoolman.webs.com/apps/blog/show/28133096-pup-bprotector =>PUP.BProtector
~ http://nicolascoolman.webs.com/apps/blog/show/27630986-pup-funmoods =>PUP.Funmoods
~ http://nicolascoolman.webs.com/apps/blog/show/27146838-adware-mywebsearch =>Adware.MyWebSearch
~ http://nicolascoolman.webs.com/apps/blog/show/28204239-pup-optimizerpro =>PUP.OptimizerPro
~ http://nicolascoolman.webs.com/apps/blog/show/26626977-adware-boxore =>Adware.Boxore
~ MSI: 46 link(s) detected in 01mn 17s



~ 3343 Legitimates filtered by white list
End of the scan (1334 lines in 11mn 38s)(0)

Publicité

Soutenons La Quadrature du Net ! Soutenons La Quadrature du Net !

Signaler le contenu de ce document

Publicité

Soutenons La Quadrature du Net !