start CloseProcesses: CreateRestorePoint: HKLM\...\Policies\Explorer: [EnableShellExecuteHooks] 1 AppInit_DLLs: c:\progra~3\bitguard\271769~1.27\{c16c1~1\loader.dll => Pas de fichier GroupPolicy: Restriction - Chrome <======= ATTENTION CHR HKLM\SOFTWARE\Policies\Google: Restriction <======= ATTENTION SearchScopes: HKLM -> DefaultScope {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = hxxp://Vosteran.com/results.php?f=4&q={searchTerms}&a=vst_tele_15_01_ie&cd=2XzuyEtN2Y1L1QzuyBzz0EyEtDtD0FyE0E0DyDzy0AtDtC0BtN0D0Tzu0StCtDzyyBtN1L2XzutAtFyCtFtCyCtFyCtN1L1CzutCyEtBzytDyD1V1RtN1L1G1B1V1N2Y1L1Qzu2SyB0Czy0DtD0EyDzytGyCtBzyyBtG0A0AzyzytGyBtC0D0CtGyD0CyCtBtA0FtA0F0EzytCzz2QtN1M1F1B2Z1V1N2Y1L1Qzu2StCzz0AtD0AtBtDtDtGzztA0A0CtGyE0AtC0CtGzz0FzytBtGtAtAzy0BtAyB0EyBzy0FtAtD2Q&cr=671425132&ir= SearchScopes: HKLM -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = hxxp://Vosteran.com/results.php?f=4&q={searchTerms}&a=vst_tele_15_01_ie&cd=2XzuyEtN2Y1L1QzuyBzz0EyEtDtD0FyE0E0DyDzy0AtDtC0BtN0D0Tzu0StCtDzyyBtN1L2XzutAtFyCtFtCyCtFyCtN1L1CzutCyEtBzytDyD1V1RtN1L1G1B1V1N2Y1L1Qzu2SyB0Czy0DtD0EyDzytGyCtBzyyBtG0A0AzyzytGyBtC0D0CtGyD0CyCtBtA0FtA0F0EzytCzz2QtN1M1F1B2Z1V1N2Y1L1Qzu2StCzz0AtD0AtBtDtDtGzztA0A0CtGyE0AtC0CtGzz0FzytBtGtAtAzy0BtAyB0EyBzy0FtAtD2Q&cr=671425132&ir= SearchScopes: HKLM-x32 -> {EEE6C360-6118-11DC-9C72-001320C79847} URL = hxxp://search.sweetim.com/search.asp?src=6&q={searchTerms}&barid={D58702A4-3145-4B1D-A9E9-2A93D8A2253A} SearchScopes: HKU\.DEFAULT -> {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL = SearchScopes: HKU\.DEFAULT -> {483830EE-A4CD-4b71-B0A3-3D82E62A6909} URL = SearchScopes: HKU\S-1-5-21-3471848330-1195910784-1856329826-1000 -> {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL = hxxp://www1.delta-search.com/?q={searchTerms}&affID=119943&tt=gc_&babsrc=SP_ss&mntrId=D08C78E400F4ED59 SearchScopes: HKU\S-1-5-21-3471848330-1195910784-1856329826-1000 -> {483830EE-A4CD-4b71-B0A3-3D82E62A6909} URL = SearchScopes: HKU\S-1-5-21-3471848330-1195910784-1856329826-1000 -> {E5377511-0D63-465F-8719-5521AF5BA0C1} URL = hxxp://websearch.ask.com/redirect?client=ie&tb=PTF&o=15507&src=crm&q={searchTerms}&locale=fr_US&apn_ptnrs=LJ&apn_dtid=YYYYYYYYTH&apn_uid=7BDF94E4-659A-4DD4-BBC3-D5E36581E5AB&apn_sauid=33ED5AA6-2CA9-4F3E-A74E-F875BDD1000A SearchScopes: HKU\S-1-5-21-3471848330-1195910784-1856329826-1000 -> {EEE6C360-6118-11DC-9C72-001320C79847} URL = hxxp://search.sweetim.com/search.asp?src=6&q={searchTerms}&barid={D58702A4-3145-4B1D-A9E9-2A93D8A2253A} SearchScopes: HKU\S-1-5-21-3471848330-1195910784-1856329826-1000 -> ۟ÆîZ§’2¹Þpv¨IÍá*X(Ž2s(ÛÎÀJºÔÓµ± vË°!ח(ä¼48иpatm6êo^Mp`Ëõ÷_i£w˜¾!„Áû†x¢8€ÙjÀÿþ ´Ñ;áa´[¦†8 º~RÙxœòÜ8'£-)x­ä­ URL = BHO: Pas de nom -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> Pas de fichier BHO-x32: Pas de nom -> {10EDB994-47F8-43F7-AE96-F2EA63E9F90F} -> Pas de fichier Toolbar: HKU\S-1-5-21-3471848330-1195910784-1856329826-1000 -> Pas de nom - {D4027C7F-154A-4066-A1AD-4243D8127440} - Pas de fichier Toolbar: HKU\S-1-5-21-3471848330-1195910784-1856329826-1000 -> Pas de nom - {EEE6C35B-6118-11DC-9C72-001320C79847} - Pas de fichier Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - Pas de fichier FF HKLM-x32\...\Firefox\Extensions: [speedanalysis02@SpeedAnalysis.com] - C:\Users\dirr\AppData\Roaming\Mozilla\Extensions\speedanalysis02@SpeedAnalysis.com => non trouvé(e) FF HKLM-x32\...\Firefox\Extensions: [SpecialSavings@SpecialSavings.com] - C:\Users\dirr\AppData\Roaming\Mozilla\Extensions\SpecialSavings@SpecialSavings.com => non trouvé(e) FF HKU\S-1-5-21-3471848330-1195910784-1856329826-1000\...\Firefox\Extensions: [{8A9386B4-E958-4c4c-ADF4-8F26DB3E4829}] - C:\Program Files (x86)\PriceGong\2.5.4\FF FF Extension: PriceGong - C:\Program Files (x86)\PriceGong\2.5.4\FF [2012-02-14] [non signé] FF HKU\S-1-5-21-3471848330-1195910784-1856329826-1000\...\Firefox\Extensions: [speedanalysis02@SpeedAnalysis.com] - C:\Users\dirr\AppData\Roaming\Mozilla\Extensions\speedanalysis02@SpeedAnalysis.com => non trouvé(e) FF HKU\S-1-5-21-3471848330-1195910784-1856329826-1000\...\Firefox\Extensions: [SpecialSavings@SpecialSavings.com] - C:\Users\dirr\AppData\Roaming\Mozilla\Extensions\SpecialSavings@SpecialSavings.com => non trouvé(e) CHR Extension: (SpecialSavings) - C:\Users\dirr\AppData\Local\Google\Chrome\User Data\Default\Extensions\bfcpnihmbfoaeoakalclfalkdepgiaje [2015-12-25] [UpdateUrl: hxxps://srv.mzcdn.com/addons/specialsavings/update.chrome.xml] <==== ATTENTION CHR Extension: (PriceGong) - C:\Users\dirr\AppData\Local\Google\Chrome\User Data\Default\Extensions\bkomkajifikmkfnjgphkjcfeepbnojok [2014-02-15] [UpdateUrl: hxxp://inst.pricegong.com/update/sweetim/-/update.xml] <==== ATTENTION CHR Extension: (Speed Analysis 2) - C:\Users\dirr\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgjkhjdcljddbedokogakmmdjgnbeanf [2015-12-25] [UpdateUrl: hxxps://srv.mzcdn.com/addons/speedanalysis02/update.chrome.xml] <==== ATTENTION CHR Extension: (Delta Toolbar) - C:\Users\dirr\AppData\Local\Google\Chrome\User Data\Default\Extensions\eooncjejnppfjjklapaamhcdmjbilmde [2015-12-25] [UpdateUrl: hxxp://img.delta-search.com/ext/chrome/update/update-delta.xml] <==== ATTENTION CHR HKLM-x32\...\Chrome\Extension: [bfcpnihmbfoaeoakalclfalkdepgiaje] - C:\Users\dirr\AppData\Roaming\SpecialSavings\SpecialSavings.crx [2013-02-13] CHR HKLM-x32\...\Chrome\Extension: [bkomkajifikmkfnjgphkjcfeepbnojok] - C:\Program Files (x86)\PriceGong\2.5.4\pricegong.crx [2011-11-08] CHR HKLM-x32\...\Chrome\Extension: [dgjkhjdcljddbedokogakmmdjgnbeanf] - C:\Users\dirr\AppData\Roaming\SpeedAnalysis2\speedanalysis.crx [2013-04-17] CHR HKLM-x32\...\Chrome\Extension: [eooncjejnppfjjklapaamhcdmjbilmde] - C:\Users\dirr\AppData\Roaming\BabSolution\CR\Delta.crx [2013-05-21] CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\Skype for Chromium\skype_chrome_extension.crx S3 wfpcapture; \SystemRoot\System32\drivers\wfpcapture.sys [X] 2015-01-03 09:11 - 2015-01-03 09:11 - 0000040 _____ () C:\Users\dirr\AppData\Roaming\WB.CFG C:\Users\dirr\cc_20130112_141808.reg C:\Users\dirr\cc_20130112_141840.reg C:\Users\dirr\cc_20130420_134408.reg C:\Users\dirr\cc_20130420_134438.reg C:\Users\dirr\cc_20130420_134510.reg C:\Users\dirr\cc_20130516_075813.reg C:\Users\dirr\cc_20130522_073532.reg C:\Users\dirr\cc_20130610_081244.reg C:\Users\dirr\cc_20130620_051318.reg C:\Users\dirr\cc_20130717_091926.reg C:\Users\dirr\cc_20130717_092012.reg C:\Users\dirr\cc_20130728_085001.reg C:\Users\dirr\cc_20130917_094002.reg C:\Users\dirr\cc_20131013_181052.reg C:\Users\dirr\cc_20131102_184109.reg C:\Users\dirr\cc_20131106_085608.reg C:\Users\dirr\cc_20131216_121241.reg C:\Users\dirr\cc_20140120_070654.reg C:\Users\dirr\cc_20140328_052827.reg C:\Users\dirr\cc_20140328_052906.reg C:\Users\dirr\cc_20140612_080235.reg C:\Users\dirr\cc_20140705_150038.reg C:\Users\dirr\cc_20141123_194104.reg C:\Users\dirr\cc_20141230_144215.reg C:\Users\dirr\cc_20141231_171036.reg C:\Users\dirr\tvpc.exe C:\Users\dirr\vlc-1.1.11-win32-sfr12.exe PriceGong 2.5.4 (HKLM-x32\...\PriceGong) (Version: 2.5.4 - PriceGong) <==== ATTENTION QuickStores-Toolbar 1.1.0 (HKLM-x32\...\QuickStores-Toolbar_is1) (Version: 1.1.0 - AB-Tools.com) <==== ATTENTION SweetIM for Messenger 3.6 (HKLM-x32\...\{B85C4CB2-B352-4BD8-818C-BCE353599107}) (Version: 3.6.0007 - SweetIM Technologies Ltd.) <==== ATTENTION SweetPacks Toolbar for Internet Explorer 4.4 (HKLM-x32\...\{2F603A45-D956-496B-81B5-50D782424976}) (Version: 4.4.0001 - SweetIM Technologies Ltd.) <==== ATTENTION AlternateDataStreams: C:\ProgramData\Temp:2C595FF3 AlternateDataStreams: C:\ProgramData\Temp:373E1720 MSCONFIG\startupreg: SweetIM => C:\Program Files (x86)\SweetIM\Messenger\SweetIM.exe FirewallRules: [{574EF9DD-DCB7-4A26-BC58-FF55D6915707}] => (Allow) G:\SweetImSetup DRIVER cg msi 9500GT.exe FirewallRules: [{4E5CB781-E275-4D8B-BE69-A35B7B9768BF}] => (Allow) G:\SweetImSetup DRIVER cg msi 9500GT.exe EmptyTemp: end