~ Rapport de ZHPDiag v2013.12.6.12 - Nicolas Coolman  (06/12/2013)
~ Lancé par slvanessa (07/12/2013 10:10:59)
~ Adresse du Site Web  http://nicolascoolman.webs.com
~ Forums gratuits d'Assistance à la désinfection : http://nicolascoolman.webs.com/apps/links/
~ Traduit par Nicolas Coolman
~ Etat de la version : 
~ Liste blanche : Désactivée par l'utilisateur
~ Elévation des Privilèges : OK
~ User Account Control (UAC): Deactivate by program


---\\ Navigateurs Internet
MSIE: Internet Explorer v9.0.8112.16421

---\\ Informations sur les produits Windows
~ Langage: Français
Windows 7 Home Premium Edition, 64-bit  (Build 7600)
Windows Server License Manager Script : OK
~ Windows(R) 7, OEM_SLP channel
System Locked Preinstallation (OEM_SLP) : OK
Windows ID Activation : OK
~ Windows Partial Key : 3Q6C9
Windows License : OK
~ Windows Remaining Initializations Number : 1
Software Protection Service (Protection logicielle) : OK
Windows Automatic Updates : OK
Windows Activation Technologies : OK

---\\ Logiciels de protection du système
AVG 2012 v12.1.2238
Microsoft Security Client v4.4.0304.0
Windows Defender W7

---\\ Logiciels d'optimisation du système

---\\ Logiciels de partage PeerToPeer

---\\ Surveillance de Logiciels
Adobe Flash Player 11 Plugin
Adobe Reader XI

---\\ Informations sur le système
~ Processor: Intel64 Family 6 Model 37 Stepping 5, GenuineIntel
~ Operating System: 64 Bits
Boot mode: Normal (Normal boot)
Total RAM: 3893 MB (64% free)
System Restore: Activé (Enable)
System drive C: has 396 GB (88%) free of 449 GB

---\\ Mode de connexion au système
~ Computer Name: SLVANESSA-HP
~ User Name: slvanessa
~ All Users Names: slvanessa, HomeGroupUser$, Administrateur, 
~ Unselected Option: None
Logged in as Administrator

---\\ Variables d'environnement
~ System Unit : C:\
~ %AppZHP% : C:\Users\slvanessa\AppData\Roaming\ZHP\
~ %AppData% : C:\Users\slvanessa\AppData\Roaming\
~ %Desktop% : C:\Users\slvanessa\Desktop\
~ %Favorites% : C:\Users\slvanessa\Favorites\
~ %LocalAppData% : C:\Users\slvanessa\AppData\Local\
~ %StartMenu% : C:\Users\slvanessa\AppData\Roaming\Microsoft\Windows\Start Menu\
~ %Windir% : C:\Windows\
~ %System% : C:\Windows\System32\

---\\ Enumération des unités disques
C: Hard drive, Flash drive, Thumb drive (Free 396 Go of 449 Go)
D: Hard drive, Flash drive, Thumb drive (Free 2 Go of 17 Go)
E: CD-ROM drive (Not Inserted)



---\\ Etat du Centre de Sécurité Windows
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System] DisableTaskMgr: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime :  OK
~ Security Center: 44 Scanned in 00mn 00s



---\\ Recherche particulière de fichiers génériques
[MD5.0862495E0C825893DB75EF44FAEA8E93] - (.Microsoft Corporation - Explorateur Windows.) (.26/02/2011 - 07:23:14.) -- C:\Windows\Explorer.exe [2870272]
[MD5.94355C28C1970635A31B3FE52EB7CEBA] - (.Microsoft Corporation - Application de démarrage de Windows.) (.14/07/2009 - 02:39:52.) -- C:\Windows\System32\Wininit.exe [129024]
[MD5.A4F6142CABA82FB7293ECE5FF864B440] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.22/02/2013 - 07:20:51.) -- C:\Windows\System32\wininet.dll [1392128]
[MD5.DA3E2A6FA9660CC75B471530CE88453A] - (.Microsoft Corporation - Application d’ouverture de session Windows.) (.18/07/2010 - 02:33:03.) -- C:\Windows\System32\Winlogon.exe [389632]
[MD5.75341574F21E766748732BDF530C74BD] - (.Microsoft Corporation - Bibliothèque de licences.) (.14/07/2009 - 02:41:54.) -- C:\Windows\System32\sppcomapi.dll [231936]
[MD5.DB9D6C6B2CD95A9CA414D045B627422E] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) (.28/12/2011 - 04:59:11.) -- C:\Windows\system32\Drivers\AFD.sys [499200]
[MD5.02062C0B390B7729EDC9E69C680A6F3C] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.14/07/2009 - 02:52:21.) -- C:\Windows\system32\Drivers\atapi.sys [24128]
[MD5.B8BD2BB284668C84865658C77574381A] - (.Microsoft Corporation - CD-ROM File System Driver.) (.14/07/2009 - 00:19:47.) -- C:\Windows\system32\Drivers\Cdfs.sys [92160]
[MD5.83D2D75E1EFB81B3450C18131443F7DB] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.14/07/2009 - 00:19:54.) -- C:\Windows\system32\Drivers\Cdrom.sys [147456]
[MD5.9C253CE7311CA60FC11C774692A13208] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.27/04/2011 - 03:57:40.) -- C:\Windows\system32\Drivers\DfsC.sys [102400]
[MD5.0A49913402747A0B67DE940FB42CBDBB] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.14/07/2009 - 01:06:13.) -- C:\Windows\system32\Drivers\HDAudBus.sys [122368]
[MD5.FA55C73D4AFFA7EE23AC4BE53B4592D3] - (.Microsoft Corporation - Pilote de port i8042.) (.14/07/2009 - 00:19:57.) -- C:\Windows\system32\Drivers\i8042prt.sys [105472]
[MD5.AF9B39A7E7B6CAA203B3862582E9F2D0] - (.Microsoft Corporation - IP Network Address Translator.) (.14/07/2009 - 01:10:03.) -- C:\Windows\system32\Drivers\IpNat.sys [116224]
[MD5.040D62A9D8AD28922632137ACDD984F2] - (.Microsoft Corporation - Windows NT SMB Minirdr.) (.04/05/2011 - 03:51:08.) -- C:\Windows\system32\Drivers\MRxSmb.sys [157696]
[MD5.9162B273A44AB9DCE5B44362731D062A] - (.Microsoft Corporation - MBT Transport driver.) (.14/07/2009 - 00:21:29.) -- C:\Windows\system32\Drivers\netBT.sys [259072]
[MD5.9A6089B056EA1B83B36424FC9D0A300E] - (.Microsoft Corporation - Pilote du système de fichiers NT.) (.12/04/2013 - 15:36:37.) -- C:\Windows\system32\Drivers\ntfs.sys [1653096]
[MD5.0086431C29C35BE1DBC43F52CC273887] - (.Microsoft Corporation - Pilote de port parallèle.) (.14/07/2009 - 01:00:41.) -- C:\Windows\system32\Drivers\Parport.sys [97280]
[MD5.87A6E852A22991580D6D39ADC4790463] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.14/07/2009 - 01:10:12.) -- C:\Windows\system32\Drivers\Rasl2tp.sys [130048]
[MD5.548260A7B8654E024DC30BF8A7C5BAA4] - (.Microsoft Corporation - SMB Transport driver.) (.14/07/2009 - 01:09:09.) -- C:\Windows\system32\Drivers\smb.sys [93184]
[MD5.079125C4B17B01FCAEEBCE0BCB290C0F] - (.Microsoft Corporation - TDI Translation Driver.) (.14/07/2009 - 00:21:15.) -- C:\Windows\system32\Drivers\tdx.sys [99840]
[MD5.9E425AC5C9A5A973273D169F43B4F5E1] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) (.06/09/2012 - 18:38:18.) -- C:\Windows\system32\Drivers\volsnap.sys [295792]
~ Generic Processes:  Scanned in 00mn 01s



---\\ Etat des fichiers cachés (Caché/Total)
~ Mes images (My Pictures) : 6/1456
~ Mes musiques (My Musics) : 94/632
~ Mes Favoris (My Favorites) : 1/103
~ Mes Documents (My Documents) : 1/307
~ Mon Bureau (My Desktop) : 8/17
~ Menu demarrer (Programs) : 1/58
~ Hidden Files:  Scanned in 00mn 02s



---\\ Processus lancés
[MD5.371BA71B566260932DCCCF843BF6C7E7] - (.AVG Technologies CZ, s.r.o. - AVG Tray Monitor.) -- C:\Program Files (x86)\AVG\AVG2012\avgtray.exe   [2598520] [PID.2112]
[MD5.4814072025E3BD4A3544F3E0A31666EF] - (.Visicom Media Inc. (Powered by Panda Securi - Visicom Media Anti-phishing Domain Advisor.) -- C:\ProgramData\Anti-phishing Domain Advisor\visicom_antiphishing.exe   [232616] [PID.1096]
[MD5.D81F10E8A9D25A8527745BDB1F9638F2] - (.SPAMfighter ApS - FIGHTERtools Update Manager.) -- C:\Program Files (x86)\Fighters\Tray\FightersTray.exe   [1425952] [PID.1092]
[MD5.749949494676218FFA99501F4AA22ECC] - (.OpenOffice.org - OpenOffice.org 3.4.1.) -- C:\Program Files (x86)\OpenOffice.org 3\program\soffice.exe   [10376704] [PID.788]
[MD5.4EE367B8B1964160A1F1B80095183D3A] - (.OpenOffice.org - OpenOffice.org 3.4.1.) -- C:\Program Files (x86)\OpenOffice.org 3\program\soffice.bin   [10368512] [PID.3320]
[MD5.AADD0892A428B133ABEF5EBCCE5E1799] - (.Nicolas Coolman - ZHPDiag.) -- C:\Program Files (x86)\ZHPDiag\ZHPDiag.exe   [8281600] [PID.624]
[MD5.F720502AAA03FAB627A96E5EAADAA28D] - (.Taiwan Shui Mu Chih Ching Technology Limite - update service.) -- C:\Program Files (x86)\WinZipper\winzipersvc.exe   [424104] [PID.1680]
[MD5.ADDA5E1951B90D3D23C56D3CF0622ADC] - (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe   [65640] [PID.1968]
[MD5.EA1145DEBCD508FD25BD1E95C4346929] - (.AVG Technologies CZ, s.r.o. - AVG Watchdog Service.) -- C:\Program Files (x86)\AVG\AVG2012\avgwdsvc.exe   [193288] [PID.1996]
[MD5.CA793DCC1D5F619021EF1D37CC7A831E] - (.EasyBits Software AS - Shared EasyBits services for Windows.) -- C:\Windows\SysWOW64\ezSharedSvcHost.exe   [514232] [PID.1584]
[MD5.AB673BA95E8FA446E9C00AA7A34B96DA] - (.AVG Technologies CZ, s.r.o. - AVG Identity Protection Service.) -- C:\Program Files (x86)\AVG\AVG2012\AVGIDSAgent.exe   [5175856] [PID.2160]
~ Processes Running:  Scanned in 00mn 01s



---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions  (P2,M0,M1,M2,M3)
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (...) -- C:\Windows\system32\Macromed\Flash\NPSWF64_11_9_900_117.dll
P2 - FPN: [HKLM] [@Microsoft.com/NpCtrl,version=1.0] - (. Microsoft Corporation - 5.1.20913.0.) -- c:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll
~ Firefox Browser: 2 Scanned in 00mn 00s



---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.qvo6.com =>Hijacker.Qvo6
R0 - HKCU\SOFTWARE\Classes\Software\Microsoft\Internet Explorer\Main,Start Page = http://search.chatzum.com
R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://www.qvo6.com =>Hijacker.Qvo6
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.qvo6.com =>Hijacker.Qvo6
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.qvo6.com =>Hijacker.Qvo6
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\AboutURLs,Tabs = res://ieframe.dll/tabswelcome.htm
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.qvo6.com =>Hijacker.Qvo6
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R3 - URLSearchHook: Microsoft Url Search Hook [64Bits] - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Navigateur Internet.) (9.00.8112.16421 (WIN7_IE9_RTM.110308-0330)) -- C:\Windows\SysWOW64\ieframe.dll
R3 - URLSearchHook: (no name) [64Bits] - {3f1fbbdd-1444-4838-b1b7-726d9bcf32ab} . (.Microsoft Corporation - Navigateur Internet.) (No version) -- (.not file.)
R4 - HKLM\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 1
R4 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 1
~ IE Browser: 20 Scanned in 00mn 00s



---\\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = <local>
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyHttp1.1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
~ Proxy management:  Scanned in 00mn 00s



---\\ Analyse des lignes F0, F1, F2, F3 - IniFiles, Autoloading programs
F2 - REG:system.ini: USERINIT=C:\Windows\system32\userinit.exe,
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe
F2 - REG:system.ini: VMApplet=C:\Windows\System32\SystemPropertiesPerformance.exe
~ Keys:  Scanned in 00mn 00s



---\\ Hosts file redirection (O1)
~ Le fichier hosts est sain (The hosts file is clean).
~ Hosts File:  Scanned in 00mn 00s
~ Nombre de lignes (Lines number): 21



---\\ Browser Helper Objects de navigateur (O2)
O2 - BHO: script helper for ie [64Bits] - {00cbb66b-1d3b-46d3-9577-323a336acb50} Clé orpheline
O2 - BHO: ToolbarOrange.InitToolbarBHO [64Bits] - {1d970ed5-3eda-438d-bffd-715931e2775b} . (...) -- mscoree.dll (.not file.)
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter [64Bits] - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} . (.AVG Technologies CZ, s.r.o. - Safe Search for Internet Explorer.) -- C:\Program Files (x86)\AVG\AVG2012\avgssie.dll
O2 - BHO: Update Timer [64Bits] - {963B125B-8B21-49A2-A3A8-E37092276531} Clé orpheline
O2 - BHO: DataMngr [64Bits] - {9D717F81-9148-4f12-8568-69135F087DB0} Clé orpheline =>PUP.Datamngr
O2 - BHO: (no name) [64Bits] - {bb184e6d-26d1-461a-9226-b93ca8da2af9} Clé orpheline
O2 - BHO: Java(tm) Plug-In 2 SSV Helper [64Bits] - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
O2 - BHO: Yontoo Layers [64Bits] - {FD72061E-9FDE-484D-A58A-0BAB4151CAD8} . (.Yontoo LLC - Yontoo Runtime.) -- C:\Program Files (x86)\Yontoo\YontooIEClient.dll =>Adware.Yontoo
~ BHO: 11 Scanned in 00mn 01s



---\\ Internet Explorer Toolbars (O3)
O3 - Toolbar: (no name) [64Bits] - [HKCU]{710EB7A1-45ED-11D0-924A-0020AFC7AC4D} Clé orpheline
O3 - Toolbar\WebBrowser: (no name) [64Bits] - [HKCU]{7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} Clé orpheline
O3 - Toolbar\WebBrowser: (no name) [64Bits] - [HKCU]{01E04581-4EEE-11D0-BFE9-00AA005B4383} Clé orpheline
O3 - Toolbar\WebBrowser: (no name) [64Bits] - [HKCU]{0E5CBF21-D15F-11D0-8301-00AA005B4383} Clé orpheline
O3 - Toolbar\WebBrowser: (no name) [64Bits] - [HKCU]{A057A204-BACC-4D26-9990-79A187E2698E} Clé orpheline
O3 - Toolbar\WebBrowser: (no name) [64Bits] - [HKCU]{53BCF99A-B7BE-4D6D-B65D-EA2FD115B83F} Clé orpheline
O3 - Toolbar\WebBrowser: (no name) [64Bits] - [HKCU]{3F1FBBDD-1444-4838-B1B7-726D9BCF32AB} Clé orpheline
O3 - Toolbar\WebBrowser: (no name) [64Bits] - [HKCU]{EEE6C35B-6118-11DC-9C72-001320C79847} Clé orpheline
O3 - Toolbar\WebBrowser: (no name) [64Bits] - [HKCU]{CCC7A320-B3CA-4199-B1A6-9F516DD69829} Clé orpheline
O3 - Toolbar\WebBrowser: (no name) [64Bits] - [HKCU]{D4027C7F-154A-4066-A1AD-4243D8127440} Clé orpheline
O3 - Toolbar\WebBrowser: (no name) [64Bits] - [HKCU]{4D51F677-2A0B-43E2-B444-A2B384D24B91} Clé orpheline
O3 - Toolbar\WebBrowser: (no name) [64Bits] - [HKCU]{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39} Clé orpheline
O3 - Toolbar\WebBrowser: (no name) [64Bits] - [HKCU]{77F8C945-4B74-4BD6-A073-E0D1997EDCE8} Clé orpheline
O3 - Toolbar\WebBrowser: (no name) [64Bits] - [HKCU]{05EEB91A-AEF7-4F8A-978F-FB83E7B03F8E} Clé orpheline
O3 - Toolbar\WebBrowser: (no name) [64Bits] - [HKCU]{19803860-B306-423C-BBB5-F60A7D82CDE5} Clé orpheline
~ Toolbar:  Scanned in 00mn 01s



---\\ Autres liens utilisateurs (O4)
O4 - GS\Desktop [Public]: Canon MP280 series Manuel en ligne.lnk . (.CANON INC. - Easy Guide Viewer.)  -- C:\Program Files (x86)\Canon\IJ Manual\Easy Guide Viewer\cmview.exe 
O4 - GS\Desktop [Public]: Encore plus de jeux.lnk - Clé orpheline
O4 - GS\Desktop [Public]: SLOW-PCfighter.lnk . (...)  -- C:\Program Files (x86)\Fighters\SLOW-PCfighter\SLOW-PCfighter64.exe (.not file.)
O4 - GS\Program [Public]: Adobe Reader XI.lnk . (...)  -- C:\Windows\Installer\{AC76BA86-7AD7-1036-7B44-AB0000000001}\SC_Reader.ico 
O4 - GS\Program [Public]: Audacity.lnk . (.The Audacity Team - Audacity®, the Free, Cross-Platform Sound E.)  -- C:\Program Files (x86)\Audacity\audacity.exe  =>.The Audacity Team
O4 - GS\Program [Public]: Encore plus de jeux.lnk - Clé orpheline
O4 - GS\Program [Public]: Game Manager.lnk . (...)  -- C:\Program Files (x86)\bfgclient\bfgclient.exe
O4 - GS\Program [Public]: Media Center.lnk . (.Microsoft Corporation - Windows Media Center.)  -- C:\Windows\ehome\ehshell.exe  =>.Microsoft Corporation
O4 - GS\Program [Public]: Microsoft Security Essentials.lnk . (...)  -- C:\Program Files (x86)\Microsoft Security Client\msseces.exe (.not file.)
O4 - GS\Program [Public]: TuneUp Utilities 2012.lnk . (.TuneUp Software - TuneUp Utilities - Interface de démarrage.)  -- C:\Program Files (x86)\TuneUp Utilities 2012\Integrator.exe 
O4 - GS\Program [Public]: Windows Anytime Upgrade.lnk . (.Microsoft Corporation - Interface utilisateur de Mise à niveau expr.)  -- C:\Windows\system32\WindowsAnytimeUpgradeUI.exe 
O4 - GS\Program [Public]: Windows DVD Maker.lnk . (...)  -- C:\Program Files (x86)\DVD Maker\DVDMaker.exe (.not file.)
O4 - GS\Program [Public]: Windows Fax and Scan.lnk . (.Microsoft Corporation - Microsoft  Windows Fax and Scan.)  -- C:\Windows\system32\WFS.exe  =>.Microsoft Corporation
O4 - GS\Program [Public]: Windows Media Player.lnk . (.Microsoft Corporation - Lecteur Windows Media.)  -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe  =>.Microsoft Corporation
O4 - GS\Program [Public]: XPS Viewer.lnk . (.Microsoft Corporation - Visionneuse XPS.)  -- C:\Windows\system32\xpsrchvw.exe  =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Calculator.lnk . (.Microsoft Corporation - Calculatrice de Windows.)  -- C:\Windows\system32\calc.exe  =>.Microsoft Corporation
O4 - GS\Accessories [Public]: displayswitch.lnk . (.Microsoft Corporation - Afficher le commutateur.)  -- C:\Windows\system32\displayswitch.exe  =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Mobility Center.lnk . (.Microsoft Corporation - Centre de mobilité Windows.)  -- C:\Windows\system32\mblctr.exe  =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Paint.lnk . (.Microsoft Corporation - Paint.)  -- C:\Windows\system32\mspaint.exe  =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Remote Desktop Connection.lnk . (.Microsoft Corporation - Connexion Bureau à distance.)  -- C:\Windows\system32\mstsc.exe  =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Snipping Tool.lnk . (.Microsoft Corporation - Outil Capture.)  -- C:\Windows\system32\SnippingTool.exe  =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Sound Recorder.lnk . (.Microsoft Corporation - Magnétophone Windows.)  -- C:\Windows\system32\SoundRecorder.exe  =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Sticky Notes.lnk . (.Microsoft Corporation - Pense-bête.)  -- C:\Windows\system32\StikyNot.exe  =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Sync Center.lnk . (.Microsoft Corporation - Microsoft Sync Center.)  -- C:\Windows\System32\mobsync.exe  =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Welcome Center.lnk . (.Microsoft Corporation - Mise en route.)  -- C:\Windows\system32\OobeFldr.dll  =>.Microsoft Corporation
O4 - GS\Accessories [Public]: Wordpad.lnk . (.Microsoft Corporation - Application Windows Wordpad.)  -- C:\Program Files (x86)\Windows NT\Accessories\wordpad.exe  =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: Character Map.lnk . (.Microsoft Corporation - Table des caractères.)  -- C:\Windows\system32\charmap.exe  =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: dfrgui.lnk . (.Microsoft Corporation - Défragmenteur de disque Microsoft®.)  -- C:\Windows\system32\dfrgui.exe  =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: Disk Cleanup.lnk . (.Microsoft Corporation - Gestionnaire de nettoyage de disque pour Wi.)  -- C:\Windows\system32\cleanmgr.exe  =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: Resource Monitor.lnk . (.Microsoft Corporation - Moniteur de ressources et de performances.)  -- C:\Windows\system32\perfmon.exe  =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: System Information.lnk . (.Microsoft Corporation - Informations système.)  -- C:\Windows\system32\msinfo32.exe  =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: System Restore.lnk . (.Microsoft Corporation - Restauration du système de Microsoft® Windo.)  -- C:\Windows\system32\rstrui.exe  =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: Task Scheduler.lnk . (...)  -- C:\Windows\system32\taskschd.msc
O4 - GS\SystemTools [Public]: Windows Easy Transfer Reports.lnk . (.Microsoft Corporation - Application post-migration de transfert de.)  -- C:\Windows\system32\migwiz\postmig.exe  =>.Microsoft Corporation
O4 - GS\SystemTools [Public]: Windows Easy Transfer.lnk . (.Microsoft Corporation - Application Transfert de fichiers et paramè.)  -- C:\Windows\system32\migwiz\migwiz.exe  =>.Microsoft Corporation
O4 - GS\QuickLaunch [slvanessa]: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.)  -- C:\Program Files\Internet Explorer\iexplore.exe 
O4 - GS\TaskBar [slvanessa]: Internet Explorer (2).lnk . (.Microsoft Corporation - Internet Explorer.)  -- C:\Program Files\Internet Explorer\iexplore.exe 
O4 - GS\TaskBar [slvanessa]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.)  -- C:\Program Files (x86)\Internet Explorer\iexplore.exe http://www.delta-homes.com =>Toolbar.DeltaSearch
O4 - GS\TaskBar [slvanessa]: Microsoft Security Essentials.lnk . (...)  -- C:\Program Files (x86)\Microsoft Security Client\msseces.exe (.not file.)
O4 - GS\TaskBar [slvanessa]: Reset VLC media player preferences and cache files.lnk . (.VideoLAN - VLC media player 2.0.4.)  -- C:\Program Files (x86)\VideoLAN\VLC\vlc.exe  =>.VideoLAN
O4 - GS\TaskBar [slvanessa]: Windows Explorer.lnk . (.Microsoft Corporation - Explorateur Windows.)  -- C:\Windows\explorer.exe  =>.Microsoft Corporation
O4 - GS\TaskBar [slvanessa]: Windows Media Player.lnk . (.Microsoft Corporation - Lecteur Windows Media.)  -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe  =>.Microsoft Corporation
O4 - GS\Program [slvanessa]: iMesh.lnk . (.iMesh, Inc - iMesh.)  -- C:\Program Files (x86)\iMesh Applications\iMesh\iMesh.exe =>PUP.iMesh
O4 - GS\Program [slvanessa]: Internet Explorer (64-bit).lnk . (.Microsoft Corporation - Internet Explorer.)  -- C:\Program Files\Internet Explorer\iexplore.exe http://www.delta-homes.com =>Toolbar.DeltaSearch
O4 - GS\Program [slvanessa]: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.)  -- C:\Program Files\Internet Explorer\iexplore.exe 
O4 - GS\Accessories [slvanessa]: Command Prompt.lnk . (.Microsoft Corporation - Interpréteur de commandes Windows.)  -- C:\Windows\system32\cmd.exe  =>.Microsoft Corporation
O4 - GS\Accessories [slvanessa]: Notepad.lnk . (.Microsoft Corporation - Bloc-notes.)  -- C:\Windows\system32\notepad.exe  =>.Microsoft Corporation
O4 - GS\Accessories [slvanessa]: Run.lnk - Clé orpheline
O4 - GS\Accessories [slvanessa]: Windows Explorer.lnk . (.Microsoft Corporation - Explorateur Windows.)  -- C:\Windows\explorer.exe  =>.Microsoft Corporation
O4 - GS\SystemTools [slvanessa]: Internet Explorer (No Add-ons).lnk . (.Microsoft Corporation - Internet Explorer.)  -- C:\Program Files\Internet Explorer\iexplore.exe 
O4 - GS\SystemTools [slvanessa]: Private Character Editor.lnk . (.Microsoft Corporation - Éditeur de caractères privés.)  -- C:\Windows\system32\eudcedit.exe  =>.Microsoft Corporation
O4 - GS\Desktop [slvanessa]: Manuel utilisateur ASIO4ALL v2.lnk . (...)  -- C:\Program Files (x86)\ASIO4ALL v2\ASIO4ALL v2 Instruction Manual Fr.pdf 
O4 - GS\Desktop [slvanessa]: ZHPDiag.lnk . (.Nicolas Coolman - ZHPDiag Setup.)  -- C:\Program Files (x86)\ZHPDiag\ZHPhep.exe  =>.Nicolas Coolman
O4 - GS\Desktop [slvanessa]: ZHPFix.lnk . (.Nicolas Coolman - ZHPDiag Setup.)  -- C:\Program Files (x86)\ZHPDiag\ZHPFix\ZHPhep.exe  =>.Nicolas Coolman
~ Global Startup: 55 Scanned in 00mn 03s



---\\ Applications lancées au démarrage du sytème (O4)
O4 - GS\Startup [slvanessa]: OpenOffice.org 3.4.1.lnk . (...)  -- C:\Program Files (x86)\OpenOffice.org 3\program\quickstart.exe
O4 - HKLM\..\Run: [IgfxTray] . (.Intel Corporation - igfxTray Module.) -- C:\Windows\system32\igfxtray.exe 
O4 - HKLM\..\Run: [HotKeysCmds] . (.Intel Corporation - hkcmd Module.) -- C:\Windows\system32\hkcmd.exe 
O4 - HKLM\..\Run: [Persistence] . (.Intel Corporation - persistence Module.) -- C:\Windows\system32\igfxpers.exe 
O4 - HKLM\..\Run: [MSC] . (.Microsoft Corporation - Microsoft Security Client User Interface.) -- c:\Program Files\Microsoft Security Client\msseces.exe 
O4 - HKLM\..\Run: [RTHDVCPL] . (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe  =>.Realtek Semiconductor Corp
O4 - HKCU\..\Run: [orangeinside] . (...) -- C:\Users\slvanessa\AppData\Roaming\Orange\OrangeInside\two\OrangeInside.exe 
O4 - HKCU\..\RunOnce: [Uninstall C:\Users\slvanessa\AppData\Local\Microsoft\SkyDrive\16.4.6010.0727\amd64] . (.Microsoft Corporation - Interpréteur de commandes Windows.) -- C:\Windows\system32\cmd.exe  =>.Microsoft Corporation
O4 - HKCU\..\RunOnce: [Uninstall C:\Users\slvanessa\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\amd64] . (.Microsoft Corporation - Interpréteur de commandes Windows.) -- C:\Windows\system32\cmd.exe  =>.Microsoft Corporation
O4 - HKLM\..\Wow6432Node\Run: [AVG_TRAY] . (.AVG Technologies CZ, s.r.o. - AVG Tray Monitor.) -- C:\Program Files (x86)\AVG\AVG2012\avgtray.exe 
O4 - HKLM\..\Wow6432Node\Run: [Anti-phishing Domain Advisor] . (.Visicom Media Inc. (Powered by Panda Securi - Visicom Media Anti-phishing Domain Advisor.) -- C:\ProgramData\Anti-phishing Domain Advisor\visicom_antiphishing.exe 
O4 - HKLM\..\Wow6432Node\Run: [CommonToolkitTray] . (.SPAMfighter ApS - FIGHTERtools Update Manager.) -- C:\Program Files (x86)\Fighters\Tray\FightersTray.exe 
O4 - HKLM\..\Wow6432Node\RunOnce: [AvgUninstallURL] . (.Microsoft Corporation - Interpréteur de commandes Windows.) -- C:\Windows\System32\cmd.exe  =>.Microsoft Corporation
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files (x86)\Windows Sidebar\Sidebar.exe  =>.Microsoft Corporation
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files (x86)\Windows Sidebar\Sidebar.exe  =>.Microsoft Corporation
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe  =>.Microsoft Corporation
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe  =>.Microsoft Corporation
O4 - HKUS\S-1-5-21-4131387925-2258615089-634791745-1000\..\Run: [orangeinside] . (...) -- C:\Users\slvanessa\AppData\Roaming\Orange\OrangeInside\two\OrangeInside.exe 
O4 - HKUS\S-1-5-21-4131387925-2258615089-634791745-1000\..\RunOnce: [Uninstall C:\Users\slvanessa\AppData\Local\Microsoft\SkyDrive\16.4.6010.0727\amd64] . (.Microsoft Corporation - Interpréteur de commandes Windows.) -- C:\Windows\system32\cmd.exe  =>.Microsoft Corporation
O4 - HKUS\S-1-5-21-4131387925-2258615089-634791745-1000\..\RunOnce: [Uninstall C:\Users\slvanessa\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\amd64] . (.Microsoft Corporation - Interpréteur de commandes Windows.) -- C:\Windows\system32\cmd.exe  =>.Microsoft Corporation
~ Application:  Scanned in 00mn 00s



---\\ Invisibilité de l'icône d'options IE dans le panneau de Configuration (O5)
O5 - control.ini: [HKLM\..\Control Panel] inetcpl.cpl=no
~ IE Control Panel: 1 Scanned in 00mn 00s



---\\ Winsock hijacker (Layered Service Provider) (O10)
O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\Windows\system32\NLAapi.dll
O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\Windows\system32\mswsock.dll  =>.Microsoft Corporation
O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\Windows\system32\winrnr.dll
O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d’affectation de noms de messagerie.) -- C:\Windows\system32\napinsp.dll
O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll
~ Winsock: 6 Scanned in 00mn 00s



---\\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{8F0882DD-A4C7-4A66-8CFF-2E53E92B78B6}: NameServer = 178.33.41.181,46.4.70.20
O17 - HKLM\System\CCS\Services\Tcpip\..\{678B8304-DA8C-4303-B355-2C420321E1BE}: DhcpNameServer = 192.168.1.1 192.168.1.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{8F0882DD-A4C7-4A66-8CFF-2E53E92B78B6}: NameServer = 178.33.41.181,46.4.70.20
O17 - HKLM\System\CS1\Services\Tcpip\..\{678B8304-DA8C-4303-B355-2C420321E1BE}: DhcpNameServer = 192.168.1.1 192.168.1.1
O17 - HKLM\System\CS2\Services\Tcpip\..\{8F0882DD-A4C7-4A66-8CFF-2E53E92B78B6}: NameServer = 178.33.41.181,46.4.70.20
O17 - HKLM\System\CS2\Services\Tcpip\..\{678B8304-DA8C-4303-B355-2C420321E1BE}: DhcpNameServer = 192.168.1.1 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 192.168.1.1
~ Domain:  Scanned in 00mn 00s



---\\ Protocole additionnel (O18)
O18 - Handler: vbscript [64Bits] - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} . (.Microsoft Corporation - Visionneuse HTML Microsoft (R).) -- C:\Windows\System32\mshtml.dll  =>.Microsoft Corporation
O18 - Filter: application/x-msdownload [64Bits] - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} . (.Microsoft Corporation - Microsoft .NET Runtime Execution Engine.) -- C:\Windows\System32\mscoree.dll  =>.Microsoft Corporation
~ Protocole Additionnel:  Scanned in 00mn 00s



---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20)
O20 - Winlogon Notify: igfxcui . (.Intel Corporation - igfxdev Module.) -- C:\Windows\System32\igfxdev.dll
~ Winlogon:  Scanned in 00mn 00s



---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20)
O20 - AppInit_DLLs: . (...) -   C:\Program Files (x86)\MUSICT~1\Datamngr\x64\mgrldr.dll (.not file.) =>PUP.Datamngr
~ AppInit DLL:  Scanned in 00mn 00s



---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
~ SSODL: 1 Scanned in 00mn 00s



---\\ Liste des services NT non Microsoft et non désactivés (O23)
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service:  (AMD External Events Utility) . (.AMD - AMD External Events Service Module.) - C:\Windows\System32\atiesrxx.exe
O23 - Service: AVGIDSAgent (AVGIDSAgent) . (.AVG Technologies CZ, s.r.o. - AVG Identity Protection Service.) - C:\Program Files (x86)\AVG\AVG2012\AVGIDSAgent.exe
O23 - Service: AVG WatchDog (avgwd) . (.AVG Technologies CZ, s.r.o. - AVG Watchdog Service.) - C:\Program Files (x86)\AVG\AVG2012\avgwdsvc.exe
O23 - Service: eSafe Service (eSafeSvc) . (...) - C:\ProgramData\eSafe\eSafeSvc.exe (.not file.) =>PUP.eSafeSecurity
O23 - Service: TuneUp Utilities Service (TuneUp.UtilitiesSvc) . (.TuneUp Software - TuneUp Utilities Service.) - C:\Program Files (x86)\TuneUp Utilities 2012\TuneUpUtilitiesService64.exe
O23 - Service: WinZiper service (winzipersvc) . (.Taiwan Shui Mu Chih Ching Technology Limite - update service.) - C:\Program Files (x86)\WinZipper\winzipersvc.exe
~ Services: 6 Scanned in 00mn 10s



---\\ Enumération Active Desktop & MHTML Editor (O24)
O24 - Default MHTML Editor: Last - .(...) -  (.not file.)
~ Desktop Component: 4 Scanned in 00mn 00s



---\\ Enumère les données de BootExecute (BEX) (O34)
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O34 - HKLM BootExecute: (C:\PROGRA~2\AVG\AVG2012\avgrsa.exe /sync /restart) (.AVG Technologies CZ, s.r.o. - AVG Resident Shield Service.) -- C:\PROGRA~2\AVG\AVG2012\avgrsa.exe
~ BEX: 2 Scanned in 00mn 00s



---\\ Tâches planifiées en automatique (O39)
O39 - APT:Automatic Planified Task  - C:\Windows\Tasks\Adobe Flash Player Updater.job   [1002]
O39 - APT:Automatic Planified Task  - C:\Windows\Tasks\SLOW-PCfighter64-slvanessa-Notification.job   [392]
O39 - APT:Automatic Planified Task  - C:\Windows\Tasks\SLOW-PCfighter64-slvanessa-Startup.job   [390]
[MD5.00000000000000000000000000000000] [APT] [4813] (...) -- C:\Users\slvanessa\AppData\Local\Temp\launchie.vbs \\B (.not file.)   [0]
[MD5.00000000000000000000000000000000] [APT] [Ad-Aware Update (Weekly)] (...) -- C:\Program Files (x86)\Lavasoft\Ad-Aware\Ad-AwareAdmin.exe (.not file.)   [0]
[MD5.438F31336B3DC248ABC632F1C8F34A24] [APT] [Adobe Flash Player Updater] (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe   [257416]
[MD5.00000000000000000000000000000000] [APT] [Dealply] (...) -- C:\Users\slvanessa\AppData\Roaming\Dealply\UPDATE~1\UPDATE~1.exe (.not file.)   [0]  =>PUP.DealPly
[MD5.00000000000000000000000000000000] [APT] [Desk 365 RunAsStdUser] (...) -- C:\Program Files (x86)\Desk 365\desk365.exe (.not file.)   [0]  =>Hijacker.22Find
[MD5.00000000000000000000000000000000] [APT] [Java Update Scheduler] (...) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (.not file.)   [0]
[MD5.00000000000000000000000000000000] [APT] [LaunchApp] (...) -- C:\Program Files (x86)\MyPC Backup\MyPC Backup.exe (.not file.)   [0]  =>PUP.MyPCBackup
[MD5.00000000000000000000000000000000] [APT] [Omiga Plus RunAsStdUser] (...) -- C:\Program Files (x86)\Omiga Plus\omigaplus.exe (.not file.)   [0]  =>Hijacker.OmigaPlus
[MD5.14D133377D80BB4F28B71C2BFDC4D41B] [APT] [PenWes] (...) -- C:\Program Files (x86)\PenWes\penwes.exe   [1426432]  =>PUP.Penwes
[MD5.48BE298F7FD1BEF4D8FBACB04D8D95C4] [APT] [Programme de mise … jour en ligne de Adobe] (.Adobe Systems Incorporated.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe   [958576]
[MD5.C637FC4638A96165256B28D38DE7B953] [APT] [Programme de mise … jour en ligne de HP.] (.Hewlett-Packard.) -- C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe   [49208]
[MD5.00000000000000000000000000000000] [APT] [RecoveryCDWin7] (...) -- C:\Program Files (x86)\Hewlett-Packard\HP Setup\RemEngine.exe (.not file.)   [0]
[MD5.3EAB0C3140FA819968A2F582F7BCF5AD] [APT] [SLOW-PCfighter64-slvanessa-Notification] (.SPAMfighter ApS.) -- C:\Program Files\Fighters\SLOW-PCfighter\Sync.exe   [441896]
[MD5.EE37861B791C8F0800FBC26B63F35857] [APT] [SLOW-PCfighter64-slvanessa-Startup] (.SPAMfighter ApS.) -- C:\Program Files\Fighters\SLOW-PCfighter\SLOW-PCfighter64.exe   [13483048]
[MD5.00000000000000000000000000000000] [APT] [Test TimeTrigger] (...) -- C:\Users\slvanessa\AppData\Local\Temp\Runner.exe (.not file.)   [0]
[MD5.ABF13FCD4C8282CEB2A58EC9D25F0EB8] [APT] [TuneUpUtilities_Task_BkGndMaintenance2012] (.TuneUp Software.) -- C:\Program Files (x86)\TuneUp Utilities 2012\OneClick.exe   [558392]
[MD5.00000000000000000000000000000000] [APT] [{20694AFA-798B-4F48-A3FE-FD12ECBD068F}] (...) -- C:\Program Files (x86)\IncrediMail\Bin\ImSetup.exe (.not file.)   [0]
[MD5.00000000000000000000000000000000] [APT] [{367C6B0E-2BD8-4D48-82B8-294A81AD0559}] (...) -- C:\Program Files (x86)\PC_GEA~1\UNWISE.exe (.not file.)   [0]
[MD5.00000000000000000000000000000000] [APT] [{59ED684F-5E01-41A9-B26B-44EEBE6E97D5}] (...) -- E:\autorun.exe (.not file.)   [0]
[MD5.644F26C608667CE40813FFCFF351E0A2] [APT] [{66517324-FD40-4812-BB65-3BE107207357}] (.AVG Technologies CZ, s.r.o..) -- C:\Program Files (x86)\AVG\AVG2012\avgmfapx.exe   [6098992]
[MD5.00000000000000000000000000000000] [APT] [{9177F1E5-A83F-413E-9870-B0409BA9FA43}] (...) -- C:\Program Files (x86)\HP\Digital Imaging\{7F08A772-2816-4F46-84F1-49578502AD28}\setup\hwsetupwizard\setup_guide.exe (.not file.)   [0]
[MD5.8DFB7B44BAA1FAA4EEEC5D6E84797D9C] [APT] [{B58B9EBA-5B94-4B60-971F-142B465043D3}] (...) -- C:\Program Files (x86)\bfgclient\bfgclient.exe   [4468536]
[MD5.C155A13687144076286989EF078112C2] [APT] [{BE41A751-3AFB-490F-B213-EC04A4E5B6E3}] (.Nicolas Coolman.) -- C:\Program Files (x86)\ZHPDiag\ZHPFix\ZHPhep.exe   [1917440]
[MD5.00000000000000000000000000000000] [APT] [{C0C43F72-9113-4D80-B3DD-59F8C8982B5C}] (...) -- C:\Users\slvanessa\Desktop\Install_MSN_Messenger.exe (.not file.)   [0]
[MD5.00000000000000000000000000000000] [APT] [{D0BF86B7-7291-4CA6-9E85-C2C4DBEF4294}] (...) -- C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe (.not file.)   [0]
[MD5.C155A13687144076286989EF078112C2] [APT] [{D14C777E-6F5E-4FEE-AD6E-5A5618424DC3}] (.Nicolas Coolman.) -- C:\Program Files (x86)\ZHPDiag\ZHPhep.exe   [1917440]
[MD5.86F4A155854BF52631354AB8D63578F9] [APT] [{D4B0C225-3DEC-401B-8813-78EB17C0ADF9}] (.Macrovision Corporation.) -- C:\Program Files (x86)\COMMON~1\INSTAL~1\Driver\11\INTEL3~1\IDriver.exe   [778240]
[MD5.00000000000000000000000000000000] [APT] [{EE4227C8-1AE0-4667-8DB4-4B998628B9E0}] (...) -- C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe (.not file.)   [0]
~ Scheduled Task: 32 Scanned in 00mn 09s



---\\ Composants installés (ActiveSetup Installed Components) (O40)
O40 - ASIC: Microsoft Windows Media Player [64Bits] - >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll  =>.Microsoft Corporation
O40 - ASIC: Internet Explorer [64Bits] - >{26923b43-4d38-484f-9b9e-de460746276c} . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Explorer par utilisateur.) -- C:\Windows\System32\ie4uinit.exe
O40 - ASIC: Microsoft Windows Media Player 12.0 [64Bits] - {22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Windows Media Player Extension.) -- C:\Windows\SysWOW64\wmpdxm.dll  =>.Microsoft Corporation
O40 - ASIC: Themes Setup [64Bits] - {2C7339CF-2B09-4501-B3F3-F3508C9228ED} . (.Microsoft Corporation - API Windows Theme.) -- C:\Windows\System32\themeui.dll
O40 - ASIC: Microsoft Windows [64Bits] - {44BBA840-CC51-11CF-AAFA-00AA00B6015C} . (.Microsoft Corporation - Windows Mail.) -- C:\Program Files (x86)\Windows Mail\WinMail.exe  =>.Microsoft Corporation
O40 - ASIC: Browsing Enhancements [64Bits] - {630b1da0-b465-11d1-9948-00c04f98bbc9} . (.Microsoft Corporation - Extension Shell dossier FTP Microsoft Internet Explorer..) -- C:\Windows\System32\msieftp.dll
O40 - ASIC: Microsoft Windows Media Player [64Bits] - {6BF52A52-394A-11d3-B153-00C04F79FAA6} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll  =>.Microsoft Corporation
O40 - ASIC: Windows Desktop Update [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4340} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll
O40 - ASIC: Web Platform Customizations [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4383} . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Explorer par utilisateur.) -- C:\Windows\System32\ie4uinit.exe
O40 - ASIC: (no name) [64Bits] - {89B4C1CD-B018-4511-B0A1-5476DBF70820} . (.Microsoft Corporation - Microsoft .NET IE SECURITY REGISTRATION.) -- C:\Windows\system32\mscories.dll
~ Active Setup: 10 Scanned in 00mn 00s



---\\ Pilotes lancés au démarrage du système (O41)
O41 - Driver: C:\Windows\System32\drivers\afd.sys (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\Windows\system32\drivers\afd.sys
O41 - Driver:  (Avgldx64) . (.AVG Technologies CZ, s.r.o. - AVG AVI Loader Driver.) - C:\Windows\System32\DRIVERS\avgldx64.sys
O41 - Driver:  (Avgmfx64) . (.AVG Technologies CZ, s.r.o. - AVG Resident Shield Minifilter Driver.) - C:\Windows\System32\DRIVERS\avgmfx64.sys
O41 - Driver:  (Avgtdia) . (.AVG Technologies CZ, s.r.o. - AVG Network connection watcher.) - C:\Windows\System32\DRIVERS\avgtdia.sys
O41 - Driver: (blbdrive) . (.Microsoft Corporation - BLB Drive Driver.) - C:\Windows\system32\DRIVERS\blbdrive.sys
O41 - Driver:  (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\System32\DRIVERS\cdrom.sys
O41 - Driver: C:\Windows\System32\drivers\dfsc.sys (DfsC) . (.Microsoft Corporation - DFS Namespace Client Driver.) - C:\Windows\System32\Drivers\dfsc.sys
O41 - Driver: C:\Windows\System32\drivers\discache.sys (discache) . (.Microsoft Corporation - System Indexer/Cache Driver.) - C:\Windows\System32\drivers\discache.sys
O41 - Driver: (MpKsl297f39ef) . (. - .) - c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{8AA55869-2C66-4645-98D3-3875B903CDC1}\MpKsl297f39ef.sys (.not file.)
O41 - Driver:  (mssmbios) . (.Microsoft Corporation - System Management BIOS Driver.) - C:\Windows\system32\DRIVERS\mssmbios.sys
O41 - Driver:  (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\System32\DRIVERS\netbios.sys
O41 - Driver: C:\Windows\System32\drivers\netbt.sys (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\System32\DRIVERS\netbt.sys
O41 - Driver: C:\Windows\System32\drivers\nsiproxy.sys (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\System32\drivers\nsiproxy.sys
O41 - Driver: C:\Windows\System32\drivers\pacer.sys (Psched) . (.Microsoft Corporation - Planificateur de paquets QoS.) - C:\Windows\System32\DRIVERS\pacer.sys
O41 - Driver: C:\Windows\System32\wkssvc.dll (rdbss) . (.Microsoft Corporation - Pilote du sous-système de mise en mémoire t.) - C:\Windows\System32\DRIVERS\rdbss.sys
O41 - Driver: C:\Windows\System32\DRIVERS\RDPCDD.sys (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\System32\DRIVERS\RDPCDD.sys
O41 - Driver: C:\Windows\System32\drivers\RDPENCDD.sys (RDPENCDD) . (.Microsoft Corporation - RDP Encoder Miniport.) - C:\Windows\System32\drivers\rdpencdd.sys
O41 - Driver: C:\Windows\System32\drivers\RdpRefMp.sys (RDPREFMP) . (.Microsoft Corporation - RDP Reflector Driver Miniport.) - C:\Windows\System32\drivers\rdprefmp.sys
O41 - Driver: C:\Windows\System32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\Windows\System32\DRIVERS\tdx.sys
O41 - Driver:  (TermDD) . (.Microsoft Corporation - Remote Desktop Server Driver.) - C:\Windows\system32\DRIVERS\termdd.sys
O41 - Driver: (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\Windows\system32\drivers\vga.sys
O41 - Driver:  (vwififlt) . (.Microsoft Corporation - Virtual WiFi Filter Driver.) - C:\Windows\System32\DRIVERS\vwififlt.sys
O41 - Driver: C:\Windows\System32\rascfg.dll (Wanarpv6) . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) - C:\Windows\System32\DRIVERS\wanarp.sys
O41 - Driver:  (WfpLwf) . (.Microsoft Corporation - WFP NDIS 6.20 Lightweight Filter Driver.) - C:\Windows\System32\DRIVERS\wfplwf.sys
~ Drivers: 72 Scanned in 00mn 00s



---\\ Logiciels installés (O42)
O42 - Logiciel: 64 Bit HP CIO Components Installer - (.Hewlett-Packard.) [HKLM][64Bits] -- {FF21C3E6-97FD-474F-9518-8DCBE94C2854}
O42 - Logiciel: ASIO4ALL - (.Michael Tippach.) [HKLM][64Bits] -- ASIO4ALL
O42 - Logiciel: AVG 2012 - (.AVG Technologies.) [HKLM][64Bits] -- AVG
O42 - Logiciel: AVG 2012 - (.AVG Technologies.) [HKLM][64Bits] -- {31CE1406-5C12-44C5-B6C5-0F55F2039DE3}
O42 - Logiciel: AVG 2012 - (.AVG Technologies.) [HKLM][64Bits] -- {3BF72D44-08F2-4F8D-ABD9-76860C63E7CD}
O42 - Logiciel: AVG 2012 - (.AVG Technologies.) [HKLM][64Bits] -- {445E399B-444F-4DE3-9ACA-061B1FC95190}
O42 - Logiciel: AVG 2012 - (.AVG Technologies.) [HKLM][64Bits] -- {996EEE69-10BB-4F30-AE40-6C1B9B7D17A4}
O42 - Logiciel: AVG 2012 - (.AVG Technologies.) [HKLM][64Bits] -- {A108BD40-0A8C-4385-8874-74C4B6086CC3}
O42 - Logiciel: AVG 2012 - (.AVG Technologies.) [HKLM][64Bits] -- {BF46C84D-1AC3-4CC3-A45C-EF6257B80984}
O42 - Logiciel: AVG 2012 - (.AVG Technologies.) [HKLM][64Bits] -- {D050583D-5CEC-47B1-88AA-8B328CAA8621}
O42 - Logiciel: AVG 2012 - (.AVG Technologies.) [HKLM][64Bits] -- {DFE4E6BB-70F0-4292-B7EB-7A3AD48EBB5C}
O42 - Logiciel: AVG 2012 - (.AVG Technologies.) [HKLM][64Bits] -- {F2A13695-0BD3-47E2-91E0-2F5DB86FA439}
O42 - Logiciel: Adobe AIR - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe AIR
O42 - Logiciel: Adobe AIR - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {52E225FC-FCB4-41F7-837B-6E37FB05BD7B}
O42 - Logiciel: Adobe Flash Player 11 ActiveX - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player ActiveX
O42 - Logiciel: Adobe Flash Player 11 Plugin - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player Plugin
O42 - Logiciel: Adobe Reader XI (11.0.05) - Français - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-7AD7-1036-7B44-AB0000000001}
O42 - Logiciel: Adobe Shockwave Player 12.0 - (.Adobe Systems, Inc..) [HKLM][64Bits] -- Adobe Shockwave Player
O42 - Logiciel: Anti-phishing Domain Advisor - (.Visicom Media Inc. (Powered by Panda Security).) [HKLM][64Bits] -- Anti-phishing Domain Advisor
O42 - Logiciel: Audacity 2.0.5 - (.Audacity Team.) [HKLM][64Bits] -- Audacity_is1
O42 - Logiciel: Audacity 2.0.5 Packages - (...) [HKCU][64Bits] -- Audacity 2.0.5 Packages
O42 - Logiciel: Audacity Packages - (...) [HKCU][64Bits] -- Audacity Packages
O42 - Logiciel: Awakening: Le Clocher du Soleil Edition Collector - (...) [HKLM][64Bits] -- BFG-Awakening - Le Clocher du Soleil Edition Collector
O42 - Logiciel: Clockwork Tales: De Verre et d'Encre Edition Collector - (...) [HKLM][64Bits] -- BFG-Clockwork Tales - De Verre et d Encre Edition Collector
O42 - Logiciel: Cooking Academy 2: Cuisine du Monde - (...) [HKLM][64Bits] -- BFG-Cooking Academy 2 - Cuisine du Monde
O42 - Logiciel: ESU for Microsoft Windows 7 - (.Hewlett-Packard.) [HKLM][64Bits] -- {3877C901-7B90-4727-A639-B6ED2DD59D43}
O42 - Logiciel: Google Update Helper - (.BonanzaDeals.) [HKLM][64Bits] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2} =>Adware.BonanzaDeals
O42 - Logiciel: HP Customer Experience Enhancements - (.Hewlett-Packard.) [HKLM][64Bits] -- {07FA4960-B038-49EB-891B-9F95930AA544}
O42 - Logiciel: HPDiagnosticAlert - (.Microsoft.) [HKLM][64Bits] -- {846B5DED-DC8C-4E1A-B5B4-9F5B39A0CACE}
O42 - Logiciel: Intel(R) Rapid Storage Technology - (.Intel Corporation.) [HKLM][64Bits] -- {3E29EE6C-963A-4aae-86C1-DC237C4A49FC}
O42 - Logiciel: Java(TM) 6 Update 20 (64-bit) - (.Sun Microsystems, Inc..) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F86416020FF}
O42 - Logiciel: Left in the Dark: Personne à Bord - (...) [HKLM][64Bits] -- BFG-Left in the Dark - Personne a Bord
O42 - Logiciel: LightScribe System Software - (.LightScribe.) [HKLM][64Bits] -- {E0E55FC1-C53D-4F8D-B14B-B59C312747C8}
O42 - Logiciel: Luxor 3 - (...) [HKLM][64Bits] -- BFG-Luxor 3
O42 - Logiciel: Microsoft Antimalware Service FR-FR Language Pack - (.Microsoft Corporation.) [HKLM][64Bits] -- {32E9C1A5-0FDA-4483-987D-DBABF9CC1DD8}
O42 - Logiciel: Microsoft Security Client - (.Microsoft Corporation.) [HKLM][64Bits] -- {E102B843-786A-4F58-AF75-6504570E207B}
O42 - Logiciel: Microsoft Security Client FR-FR Language Pack - (.Microsoft Corporation.) [HKLM][64Bits] -- {DC911ADF-7B60-40F2-A112-FB1EB6402D07}
O42 - Logiciel: Microsoft Security Essentials - (.Microsoft Corporation.) [HKLM][64Bits] -- Microsoft Security Client
O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM][64Bits] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
O42 - Logiciel: Mountain Crime: Vengeance - (...) [HKLM][64Bits] -- BFG-Mountain Crime - Vengeance
O42 - Logiciel: MyFreeCodec - (...) [HKCU][64Bits] -- MyFreeCodec
O42 - Logiciel: OpenOffice.org 3.4.1 - (.Apache Software Foundation.) [HKLM][64Bits] -- {7DA1C06F-C913-46C7-8A0F-DA2CBA17EA1D}
O42 - Logiciel: Orange Inside - (.Orange.) [HKCU][64Bits] -- Orange Inside
O42 - Logiciel: Orange Installeur version 1.2.3.1 - (.Orange.) [HKLM][64Bits] -- {D13FE823-C575-4451-AC37-E645A67AA581}_1.2.3.1
O42 - Logiciel: Orange update - (.Orange.) [HKLM][64Bits] -- OrangeUpdateManager
O42 - Logiciel: PenWes [7309] - (...) [HKLM][64Bits] -- Penwes =>PUP.Penwes
O42 - Logiciel: Photo Notifier and Animation Creator - (.IncrediMail.) [HKLM][64Bits] -- {788A0222-5690-4212-AA9C-C48FD0E1C9AE}
O42 - Logiciel: QuickTime - (.Apple Computer, Inc..) [HKLM][64Bits] -- InstallShield_{C21D5524-A970-42FA-AC8A-59B8C7CDCA31}
O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}
O42 - Logiciel: Recovery Manager - (.CyberLink Corp..) [HKLM][64Bits] -- {44B2A0AB-412E-4F8C-B058-D1E8AECCDFF5}
O42 - Logiciel: SLOW-PCfighter - (.SPAMfighter ApS.) [HKLM][64Bits] -- {7648D847-AEBC-4DEF-ADA2-F93314A5F4F2}
O42 - Logiciel: SLOW-PCfighter - (.SPAMfighter ApS..) [HKLM][64Bits] -- SLOW-PCfighter
O42 - Logiciel: SpecialSavings - (.Special Savings.) [HKLM][64Bits] -- {09C14BAE-2D45-4133-B0FA-5EA4FE5CF978} =>PUP.SpecialSavings
O42 - Logiciel: ToolbarFR - (.Orange.) [HKLM][64Bits] -- {A047FE02-C91C-41CB-898C-4ED21B86025A}
O42 - Logiciel: TuneUp Utilities 2012 - (.TuneUp Software.) [HKLM][64Bits] -- TuneUp Utilities 2012
O42 - Logiciel: VLC media player 2.0.4 - (.VideoLAN.) [HKLM][64Bits] -- VLC media player  =>.VideoLAN
O42 - Logiciel: Visual Studio 2008 x64 Redistributables - (.AVG Technologies.) [HKLM][64Bits] -- {FCDBEA60-79F0-4FAE-BBA8-55A26C609A49}
O42 - Logiciel: WinZipper - (.Taiwan Shui Mu Chih Ching Technology Limited..) [HKLM][64Bits] -- WinZipper
O42 - Logiciel: iMesh - (.iMesh Inc.) [HKCU][64Bits] -- iMesh =>PUP.iMesh
O42 - Logiciel: iMesh - (.iMesh Inc..) [HKLM][64Bits] -- {8FB495A1-4A3F-4C1D-BD27-3F3AB2E66763} =>PUP.iMesh
O42 - Logiciel: neroxml - (.Nero AG.) [HKLM][64Bits] -- {56C049BE-79E9-4502-BEA7-9754A3E60F9B}
O42 - Logiciel: swMSM - (.Adobe Systems, Inc.) [HKLM][64Bits] -- {612C34C7-5E90-47D8-9B5C-0F717DD82726}
~ Logic: 32 Scanned in 00mn 00s



---\\ HKCU & HKLM Software Keys
[HKCU\Software\5257df8ab469b940]  =>Rogue.PCPerformer
[HKCU\Software\APN PIP]
[HKCU\Software\APN]
[HKCU\Software\ATI]
[HKCU\Software\AVS4YOU]
[HKCU\Software\Adobe]
[HKCU\Software\AppDataLow\Software\Adobe]
[HKCU\Software\AppDataLow\Software\Avg]
[HKCU\Software\AppDataLow\Software\ConduitSearchScopes]
[HKCU\Software\AppDataLow\Software\Conduit] =>Toolbar.Conduit
[HKCU\Software\AppDataLow\Software\Crossrider] =>PUP.CrossRider
[HKCU\Software\AppDataLow\Software\LyricsParty] =>Adware.AddLyrics
[HKCU\Software\AppDataLow\Software\Macromedia]
[HKCU\Software\AppDataLow\Software\MarkAny]
[HKCU\Software\AppDataLow\Software\Orange]
[HKCU\Software\AppDataLow\Software\PriceGong] =>Adware.PriceGong
[HKCU\Software\AppDataLow\Software\SFT_France]
[HKCU\Software\AppDataLow\Software\Smartbar] =>Hijacker.SmartBar
[HKCU\Software\AppDataLow\Software\Yahoo]
[HKCU\Software\AppDataLow\Software\blekkotb_001] =>Toolbar.Blekko
[HKCU\Software\AppDataLow\Software\iGraal]
[HKCU\Software\AppDataLow\Software\mediabarim] =>PUP.iMesh
[HKCU\Software\AppDataLow\Software\pc_gear_fr]
[HKCU\Software\AppDataLow\Software\searchqutoolbar] =>PUP.Datamngr
[HKCU\Software\AppDataLow\Software\toolbar]
[HKCU\Software\AppDataLow]
[HKCU\Software\Auchan]
[HKCU\Software\Aurigma]
[HKCU\Software\Auslogics]
[HKCU\Software\Avg]
[HKCU\Software\BabSolution] =>Hijacker.BabSolution
[HKCU\Software\Big Fish Games, Inc.]
[HKCU\Software\Big Fish Games]
[HKCU\Software\BigBlueBubble]
[HKCU\Software\Blabbers] =>PUP.Blabbers
[HKCU\Software\BonanzaDealsLive] =>Adware.BonanzaDeals
[HKCU\Software\BrowserChoice]
[HKCU\Software\BrowserCompanion] =>PUP.Blabbers
[HKCU\Software\CDIP]
[HKCU\Software\CanonBJ]
[HKCU\Software\Canon]
[HKCU\Software\ChatZum Toolbar]
[HKCU\Software\Classes]
[HKCU\Software\Clients]
[HKCU\Software\CodeGear]
[HKCU\Software\Complitly] =>Adware.PredictAd
[HKCU\Software\Conduit] =>Toolbar.Conduit
[HKCU\Software\CyberLink]
[HKCU\Software\DataMngr_Toolbar] =>PUP.Datamngr
[HKCU\Software\DealPlyLive] =>PUP.DealPly
[HKCU\Software\EasyBits]
[HKCU\Software\FWT_DLM]
[HKCU\Software\Fighters]
[HKCU\Software\FileScout] =>PUP.FileScout
[HKCU\Software\FissaSearch] =>PUP.OfferBox
[HKCU\Software\Fugazo]
[HKCU\Software\Gabest]
[HKCU\Software\Garmin]
[HKCU\Software\GoBit]
[HKCU\Software\Gogii Games]
[HKCU\Software\Gogii]
[HKCU\Software\Google]
[HKCU\Software\HP]
[HKCU\Software\Hewlett-Packard]
[HKCU\Software\HookNetwork]
[HKCU\Software\IM Providers]
[HKCU\Software\IM]
[HKCU\Software\Icaros]
[HKCU\Software\ImInstaller]
[HKCU\Software\Image-Line]
[HKCU\Software\IncrediMail]
[HKCU\Software\InstallCore] =>Adware.InstallCore
[HKCU\Software\Intel]
[HKCU\Software\JEDI-VCL]
[HKCU\Software\JollyBear]
[HKCU\Software\KC Softwares]
[HKCU\Software\Lake]
[HKCU\Software\Licenses]
[HKCU\Software\LightScribe]
[HKCU\Software\Macromedia]
[HKCU\Software\Macrovision]
[HKCU\Software\Magnet]
[HKCU\Software\Meridian93]
[HKCU\Software\Mindscape]
[HKCU\Software\MozillaPlugins]
[HKCU\Software\Mozilla]
[HKCU\Software\Myfree Codec]
[HKCU\Software\NCH Software]
[HKCU\Software\NCH Swift Sound]
[HKCU\Software\Nero]
[HKCU\Software\Netscape]
[HKCU\Software\Norton]
[HKCU\Software\Nosibay]
[HKCU\Software\Oberon Media]
[HKCU\Software\Oberon]
[HKCU\Software\OceanMediaGames]
[HKCU\Software\OfferBox] =>PUP.OfferBox
[HKCU\Software\OpenOffice.org]
[HKCU\Software\OrangeInside]
[HKCU\Software\PlayfulAge]
[HKCU\Software\Policies]
[HKCU\Software\PopCap] =>Adware.PopCap
[HKCU\Software\PowerPack]
[HKCU\Software\PriceGong] =>Adware.PriceGong
[HKCU\Software\Raptr]
[HKCU\Software\Realtek]
[HKCU\Software\Samsung]
[HKCU\Software\Shaman Games]
[HKCU\Software\Skype]
[HKCU\Software\SoftVoice]
[HKCU\Software\Softonic] =>Toolbar.Conduit
[HKCU\Software\Softwis]
[HKCU\Software\SpecialBit Games]
[HKCU\Software\SpecialSavings] =>PUP.SpecialSavings
[HKCU\Software\SweetIM] =>PUP.SweetIM
[HKCU\Software\Swift Creek Games LLC]
[HKCU\Software\Systweak]
[HKCU\Software\Torch]
[HKCU\Software\Trolltech]
[HKCU\Software\TuneUp]
[HKCU\Software\Tuto4PC] =>PUP.Eorezo
[HKCU\Software\TutoTag] =>Spyware.AgenceExclusive
[HKCU\Software\Tutorials] =>Spyware.AgenceExclusive
[HKCU\Software\VB and VBA Program Settings]
[HKCU\Software\WildTangent]
[HKCU\Software\WinMaximizer]
[HKCU\Software\WinRAR SFX]
[HKCU\Software\Wow6432Node]
[HKCU\Software\Yahoo]
[HKCU\Software\ZebHelpProcess Helper]
[HKCU\Software\Zylom]
[HKCU\Software\ej-technologies]
[HKCU\Software\funkitron]
[HKCU\Software\kde.org]
[HKCU\Software\lollipop] =>Adware.Lollipop
[HKCU\Software\mysearchdial] =>Adware.MyWebSearch
[HKCU\Software\pc_gear_fr]
[HKLM\Software\AMD]
[HKLM\Software\ASIO]
[HKLM\Software\ATI Technologies]
[HKLM\Software\ATI]
[HKLM\Software\AVS4YOU]
[HKLM\Software\Agere]
[HKLM\Software\BrowserChoice]
[HKLM\Software\CXT]
[HKLM\Software\Canon]
[HKLM\Software\Classes]
[HKLM\Software\Clients]
[HKLM\Software\Common Toolkit Suite]
[HKLM\Software\Cyberlink]
[HKLM\Software\DataMngr] =>PUP.Datamngr
[HKLM\Software\DomaIQ] =>Adware.DomaIQ
[HKLM\Software\Fighters]
[HKLM\Software\Google]
[HKLM\Software\HPQ]
[HKLM\Software\Hewlett-Packard]
[HKLM\Software\InstalledOptions]
[HKLM\Software\Intel]
[HKLM\Software\JavaSoft]
[HKLM\Software\LSI]
[HKLM\Software\Macromedia]
[HKLM\Software\MozillaPlugins]
[HKLM\Software\Mozilla]
[HKLM\Software\ODBC]
[HKLM\Software\Policies]
[HKLM\Software\Realtek]
[HKLM\Software\RegisteredApplications]
[HKLM\Software\SAMSUNG]
[HKLM\Software\SRS Labs]
[HKLM\Software\Sonic]
[HKLM\Software\Speedchecker Limited]
[HKLM\Software\Tarma Installer] =>PUP.Tarma
[HKLM\Software\TuneUp]
[HKLM\Software\Volatile]
[HKLM\Software\Web Assistant] =>Adware.IncrediBar
[HKLM\Software\Windows]
[HKLM\Software\Wow6432Node\5257df8ab469b940]  =>Rogue.PCPerformer
[HKLM\Software\Wow6432Node\ASIO]
[HKLM\Software\Wow6432Node\ATI Technologies]
[HKLM\Software\Wow6432Node\AVG]
[HKLM\Software\Wow6432Node\AVS4YOU]
[HKLM\Software\Wow6432Node\Adobe]
[HKLM\Software\Wow6432Node\AedgePerformanceBCN] =>Adware.SPointer
[HKLM\Software\Wow6432Node\Ahead]
[HKLM\Software\Wow6432Node\Amazon]
[HKLM\Software\Wow6432Node\AppDataLow]
[HKLM\Software\Wow6432Node\Apple Computer, Inc.]
[HKLM\Software\Wow6432Node\AskTBar]
[HKLM\Software\Wow6432Node\AskToolbar]
[HKLM\Software\Wow6432Node\Auchan]
[HKLM\Software\Wow6432Node\Babylon] =>PUP.Babylon
[HKLM\Software\Wow6432Node\Bandoo] =>Adware.Bandoo
[HKLM\Software\Wow6432Node\BcmSetup]
[HKLM\Software\Wow6432Node\Big Fish Games]
[HKLM\Software\Wow6432Node\BonanzaDealsLive] =>Adware.BonanzaDeals
[HKLM\Software\Wow6432Node\Boxore] =>Adware.Boxore
[HKLM\Software\Wow6432Node\BrowserCompanion] =>PUP.Blabbers
[HKLM\Software\Wow6432Node\Bunndle]
[HKLM\Software\Wow6432Node\Canon]
[HKLM\Software\Wow6432Node\Caphyon]
[HKLM\Software\Wow6432Node\ChatZum Toolbar]
[HKLM\Software\Wow6432Node\Classes]
[HKLM\Software\Wow6432Node\Clients]
[HKLM\Software\Wow6432Node\Common Toolkit Suite]
[HKLM\Software\Wow6432Node\Conduit] =>Toolbar.Conduit
[HKLM\Software\Wow6432Node\CyberLink]
[HKLM\Software\Wow6432Node\Datamngr] =>PUP.Datamngr
[HKLM\Software\Wow6432Node\DealPlyLive] =>PUP.DealPly
[HKLM\Software\Wow6432Node\EasyBits]
[HKLM\Software\Wow6432Node\Fighters]
[HKLM\Software\Wow6432Node\FlvPlayer]
[HKLM\Software\Wow6432Node\Freeze.com] =>Adware.Freeze
[HKLM\Software\Wow6432Node\Funmoods] =>PUP.Funmoods
[HKLM\Software\Wow6432Node\GameInstaller]
[HKLM\Software\Wow6432Node\Garmin]
[HKLM\Software\Wow6432Node\Google]
[HKLM\Software\Wow6432Node\Hewlett-Packard]
[HKLM\Software\Wow6432Node\ImInstaller]
[HKLM\Software\Wow6432Node\Image-Line]
[HKLM\Software\Wow6432Node\Iminent] =>Adware.IMBooster
[HKLM\Software\Wow6432Node\IncrediMail]
[HKLM\Software\Wow6432Node\InstallCore] =>Adware.InstallCore
[HKLM\Software\Wow6432Node\InstallShield]
[HKLM\Software\Wow6432Node\Intel]
[HKLM\Software\Wow6432Node\JAM Software]
[HKLM\Software\Wow6432Node\JavaSoft]
[HKLM\Software\Wow6432Node\JreMetrics]
[HKLM\Software\Wow6432Node\KasperskyLab]
[HKLM\Software\Wow6432Node\Kaydara]
[HKLM\Software\Wow6432Node\Lake]
[HKLM\Software\Wow6432Node\Lavasoft]
[HKLM\Software\Wow6432Node\Licenses]
[HKLM\Software\Wow6432Node\LightScribe]
[HKLM\Software\Wow6432Node\Macromedia]
[HKLM\Software\Wow6432Node\MarkAny]
[HKLM\Software\Wow6432Node\MimarSinan]
[HKLM\Software\Wow6432Node\Mindscape]
[HKLM\Software\Wow6432Node\Mircrosoft]
[HKLM\Software\Wow6432Node\MozillaPlugins]
[HKLM\Software\Wow6432Node\Mozilla]
[HKLM\Software\Wow6432Node\MusicNet]
[HKLM\Software\Wow6432Node\Myfree Codec]
[HKLM\Software\Wow6432Node\NCH Software]
[HKLM\Software\Wow6432Node\NCH Swift Sound]
[HKLM\Software\Wow6432Node\Nero]
[HKLM\Software\Wow6432Node\ODBC]
[HKLM\Software\Wow6432Node\Oberon Media]
[HKLM\Software\Wow6432Node\OfferBox] =>PUP.OfferBox
[HKLM\Software\Wow6432Node\OpenOffice.org]
[HKLM\Software\Wow6432Node\Orange]
[HKLM\Software\Wow6432Node\Outsim]
[HKLM\Software\Wow6432Node\PENSEWEB]
[HKLM\Software\Wow6432Node\PIP]
[HKLM\Software\Wow6432Node\Photo Notifier and Animation Creator]
[HKLM\Software\Wow6432Node\Policies]
[HKLM\Software\Wow6432Node\Propellerhead Software]
[HKLM\Software\Wow6432Node\Raptr]
[HKLM\Software\Wow6432Node\Realtek Semiconductor Corp.]
[HKLM\Software\Wow6432Node\Realtek]
[HKLM\Software\Wow6432Node\RegisteredApplications]
[HKLM\Software\Wow6432Node\Savings Wave Plugin] =>PUP.CrossRider
[HKLM\Software\Wow6432Node\SearchquMediabarTb] =>PUP.Datamngr
[HKLM\Software\Wow6432Node\SearchquSRTB] =>PUP.Datamngr
[HKLM\Software\Wow6432Node\SecureDigitalServices]
[HKLM\Software\Wow6432Node\SoftVoice]
[HKLM\Software\Wow6432Node\SoftwareUpdater] =>PUP.Eorezo
[HKLM\Software\Wow6432Node\Software]
[HKLM\Software\Wow6432Node\Supreme Savings Plugin] =>PUP.RewardsArcade
[HKLM\Software\Wow6432Node\SweetIM] =>PUP.SweetIM
[HKLM\Software\Wow6432Node\Symantec]
[HKLM\Software\Wow6432Node\Systweak]
[HKLM\Software\Wow6432Node\TUTO4PC] =>PUP.Eorezo
[HKLM\Software\Wow6432Node\The Learning Company]
[HKLM\Software\Wow6432Node\Torch]
[HKLM\Software\Wow6432Node\Trymedia Systems] =>Adware.Trymedia
[HKLM\Software\Wow6432Node\TuneUp]
[HKLM\Software\Wow6432Node\Uniblue]
[HKLM\Software\Wow6432Node\V9]
[HKLM\Software\Wow6432Node\VBGenerator]
[HKLM\Software\Wow6432Node\VST]
[HKLM\Software\Wow6432Node\VideoLAN]
[HKLM\Software\Wow6432Node\Vittalia] =>PUP.Vittalia
[HKLM\Software\Wow6432Node\Volatile]
[HKLM\Software\Wow6432Node\W3i]
[HKLM\Software\Wow6432Node\Web Assistant] =>Adware.IncrediBar
[HKLM\Software\Wow6432Node\WildTangent]
[HKLM\Software\Wow6432Node\Win32 Services]
[HKLM\Software\Wow6432Node\WinMaximizer]
[HKLM\Software\Wow6432Node\Windows]
[HKLM\Software\Wow6432Node\Yahoo]
[HKLM\Software\Wow6432Node\delta-homesSoftware] =>Toolbar.DeltaSearch
[HKLM\Software\Wow6432Node\deskSvc]
[HKLM\Software\Wow6432Node\eSafeSecControl] =>PUP.eSafeSecurity
[HKLM\Software\Wow6432Node\ej-technologies]
[HKLM\Software\Wow6432Node\hdcode]
[HKLM\Software\Wow6432Node\iMeshSRTB] =>PUP.iMesh
[HKLM\Software\Wow6432Node\iMesh] =>PUP.iMesh
[HKLM\Software\Wow6432Node\mcafeeupdater]
[HKLM\Software\Wow6432Node\mozilla.org]
[HKLM\Software\Wow6432Node\omigaplusSvc] =>Hijacker.OmigaPlus
[HKLM\Software\Wow6432Node\optimidata]
[HKLM\Software\Wow6432Node\pc_gear_fr]
[HKLM\Software\Wow6432Node\qvo6Software] =>Hijacker.Qvo6
[HKLM\Software\Wow6432Node\winzipersvc]
[HKLM\Software\Wow6432Node]
~ Key Software: 404 Scanned in 00mn 00s



---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 03/02/2013 - 21:05:25 - [151,785] ----D C:\Program Files (x86)\Adobe
O43 - CFD: 25/12/2012 - 16:11:45 - [0,744] ----D C:\Program Files (x86)\ASIO4ALL v2
O43 - CFD: 14/07/2011 - 17:56:28 - [0,002] ----D C:\Program Files (x86)\ATI Technologies
O43 - CFD: 27/11/2013 - 14:48:42 - [45,734] ----D C:\Program Files (x86)\Audacity
O43 - CFD: 16/02/2012 - 19:44:46 - [157,270] ----D C:\Program Files (x86)\AVG
O43 - CFD: 05/12/2012 - 17:47:11 - [0] ----D C:\Program Files (x86)\AVS4YOU
O43 - CFD: 09/11/2013 - 21:47:44 - [565,479] ----D C:\Program Files (x86)\Awakening - Le Clocher du Soleil Edition Collector
O43 - CFD: 05/08/2013 - 16:33:06 - [678,244] ----D C:\Program Files (x86)\Barn Yarn
O43 - CFD: 01/09/2013 - 20:11:57 - [11,301] ----D C:\Program Files (x86)\bfgclient
O43 - CFD: 02/12/2013 - 11:59:07 - [0,851] ----D C:\Program Files (x86)\BonanzaDeals =>Adware.BonanzaDeals
O43 - CFD: 02/12/2013 - 12:00:18 - [0] ----D C:\Program Files (x86)\BonanzaDealsLive =>Adware.BonanzaDeals
O43 - CFD: 03/07/2013 - 11:43:53 - [16,510] ----D C:\Program Files (x86)\Canon
O43 - CFD: 04/11/2013 - 15:31:00 - [1056,768] ----D C:\Program Files (x86)\Clockwork Tales - De Verre et d Encre Edition Collector
O43 - CFD: 24/05/2013 - 08:47:19 - [215,496] ----D C:\Program Files (x86)\Common Files
O43 - CFD: 16/01/2012 - 20:10:43 - [1,218] ----D C:\Program Files (x86)\Conduit
O43 - CFD: 10/11/2013 - 20:55:46 - [92,750] ----D C:\Program Files (x86)\Cooking Academy 2 - Cuisine du Monde
O43 - CFD: 17/08/2013 - 12:05:09 - [0,851] ----D C:\Program Files (x86)\DealPly =>PUP.DealPly
O43 - CFD: 17/08/2013 - 12:38:17 - [0] ----D C:\Program Files (x86)\DealPlyLive =>PUP.DealPly
O43 - CFD: 04/03/2012 - 16:40:59 - [0] ----D C:\Program Files (x86)\denouvel
O43 - CFD: 17/07/2013 - 19:50:53 - [0,008] ----D C:\Program Files (x86)\Desk 365 =>Hijacker.22Find
O43 - CFD: 13/11/2012 - 12:32:57 - [0] ----D C:\Program Files (x86)\DsNET Corp
O43 - CFD: 25/07/2013 - 21:20:39 - [360,923] ----D C:\Program Files (x86)\European Mystery - Un Parfum de Mystere Edition Collector
O43 - CFD: 22/06/2013 - 11:46:08 - [5,400] ----D C:\Program Files (x86)\Fighters
O43 - CFD: 22/01/2013 - 15:00:56 - [0,293] ----D C:\Program Files (x86)\File Scout =>PUP.FileScout
O43 - CFD: 02/12/2013 - 10:13:46 - [0] ----D C:\Program Files (x86)\Google
O43 - CFD: 04/08/2013 - 19:29:28 - [0,029] ----D C:\Program Files (x86)\GUM1A34.tmp
O43 - CFD: 25/07/2012 - 17:04:29 - [69,092] ----D C:\Program Files (x86)\Hewlett-Packard
O43 - CFD: 23/02/2012 - 12:59:50 - [12,906] ----D C:\Program Files (x86)\HP
O43 - CFD: 26/05/2012 - 17:50:08 - [0] ----D C:\Program Files (x86)\hpmonitor
O43 - CFD: 17/10/2011 - 14:58:22 - [34,213] ----D C:\Program Files (x86)\iLivid =>Adware.Bandoo
O43 - CFD: 25/07/2012 - 17:05:59 - [0] ----D C:\Program Files (x86)\Image-Line
O43 - CFD: 15/10/2013 - 12:58:04 - [51,994] ----D C:\Program Files (x86)\iMesh Applications =>PUP.iMesh
O43 - CFD: 03/07/2012 - 17:06:40 - [0,316] ----D C:\Program Files (x86)\Install-studio-scrap-v4
O43 - CFD: 24/06/2013 - 20:22:11 - [74,121] --H-D C:\Program Files (x86)\InstallShield Installation Information
O43 - CFD: 10/06/2011 - 18:56:03 - [6,280] ----D C:\Program Files (x86)\Intel
O43 - CFD: 11/04/2013 - 11:52:57 - [6,032] ----D C:\Program Files (x86)\Internet Explorer
O43 - CFD: 17/12/2011 - 22:21:43 - [86,648] ----D C:\Program Files (x86)\Java
O43 - CFD: 04/11/2013 - 11:28:14 - [594,415] ----D C:\Program Files (x86)\Left in the Dark - Personne a Bord
O43 - CFD: 21/07/2013 - 16:55:05 - [53,655] ----D C:\Program Files (x86)\Luxor 3
O43 - CFD: 05/12/2013 - 10:37:59 - [0] ----D C:\Program Files (x86)\Microsoft
O43 - CFD: 06/06/2011 - 12:35:44 - [0] ----D C:\Program Files (x86)\Microsoft Analysis Services
O43 - CFD: 14/11/2013 - 08:45:58 - [1,451] ----D C:\Program Files (x86)\Microsoft Security Client
O43 - CFD: 11/10/2013 - 13:27:26 - [40,851] ----D C:\Program Files (x86)\Microsoft Silverlight
O43 - CFD: 05/12/2012 - 17:55:19 - [5,397] ----D C:\Program Files (x86)\Microsoft SkyDrive  =>.Microsoft Corporation
O43 - CFD: 16/05/2011 - 08:06:55 - [0,023] ----D C:\Program Files (x86)\Microsoft.NET
O43 - CFD: 02/12/2013 - 12:07:13 - [1,645] ----D C:\Program Files (x86)\Mobogenie
O43 - CFD: 23/01/2013 - 18:08:56 - [0,080] ----D C:\Program Files (x86)\MonProduit
O43 - CFD: 13/11/2013 - 16:16:39 - [289,879] ----D C:\Program Files (x86)\Mountain Crime - Vengeance
O43 - CFD: 16/07/2012 - 18:47:26 - [0,002] ----D C:\Program Files (x86)\Mozilla Firefox
O43 - CFD: 14/07/2009 - 06:32:38 - [0,025] ----D C:\Program Files (x86)\MSBuild
O43 - CFD: 22/01/2013 - 15:00:00 - [27,116] ----D C:\Program Files (x86)\MSECache
O43 - CFD: 22/06/2013 - 19:36:32 - [10,585] ----D C:\Program Files (x86)\MyFree Codec
O43 - CFD: 27/11/2013 - 14:55:48 - [0,015] ----D C:\Program Files (x86)\MyPC Backup =>PUP.MyPCBackup
O43 - CFD: 23/10/2013 - 17:30:54 - [0,590] ----D C:\Program Files (x86)\NCH Software
O43 - CFD: 03/07/2012 - 16:49:50 - [0] ----D C:\Program Files (x86)\Nosibay
O43 - CFD: 09/07/2013 - 20:43:10 - [4,583] ----D C:\Program Files (x86)\Oberon Media SIDR
O43 - CFD: 25/05/2013 - 08:56:59 - [0] ----D C:\Program Files (x86)\Omiga Plus =>Hijacker.OmigaPlus
O43 - CFD: 14/05/2011 - 19:13:17 - [20,599] R---D C:\Program Files (x86)\Online Services
O43 - CFD: 22/01/2013 - 15:11:35 - [288,773] ----D C:\Program Files (x86)\OpenOffice.org 3
O43 - CFD: 20/08/2011 - 18:37:56 - [34,144] ----D C:\Program Files (x86)\Orange
O43 - CFD: 02/03/2012 - 18:14:11 - [4,957] ----D C:\Program Files (x86)\Outsim
O43 - CFD: 25/05/2012 - 09:22:49 - [1,681] ----D C:\Program Files (x86)\PenWes =>PUP.Penwes
O43 - CFD: 14/07/2009 - 06:32:38 - [36,813] ----D C:\Program Files (x86)\Reference Assemblies
O43 - CFD: 02/03/2013 - 09:32:16 - [0] ----D C:\Program Files (x86)\RelevantKnowledge =>Adware.RelevantKnowledge
O43 - CFD: 22/06/2013 - 19:37:57 - [2,433] ----D C:\Program Files (x86)\Samsung
O43 - CFD: 17/10/2011 - 14:45:27 - [0,052] ----D C:\Program Files (x86)\SearchCore for Browsers =>Adware.SearchCore
O43 - CFD: 17/05/2012 - 13:26:02 - [0] ----D C:\Program Files (x86)\Software
O43 - CFD: 22/01/2013 - 15:01:31 - [7,873] ----D C:\Program Files (x86)\SpecialSavings =>PUP.SpecialSavings
O43 - CFD: 17/09/2013 - 14:10:00 - [0] ----D C:\Program Files (x86)\SRToolbar
O43 - CFD: 17/07/2010 - 17:43:42 - [0,663] ----D C:\Program Files (x86)\Symantec
O43 - CFD: 25/07/2012 - 17:17:42 - [0] --H-D C:\Program Files (x86)\Temp
O43 - CFD: 01/11/2013 - 15:36:34 - [76,042] ----D C:\Program Files (x86)\TuneUp Utilities 2012
O43 - CFD: 14/07/2009 - 05:57:06 - [0] --H-D C:\Program Files (x86)\Uninstall Information
O43 - CFD: 23/02/2012 - 13:36:02 - [94,079] ----D C:\Program Files (x86)\VideoLAN
O43 - CFD: 02/03/2012 - 18:19:39 - [0] ----D C:\Program Files (x86)\VstPlugins
O43 - CFD: 26/10/2013 - 17:51:10 - [0] ----D C:\Program Files (x86)\Whilokii =>PUP.Whilokii
O43 - CFD: 18/07/2010 - 02:26:06 - [0,500] ----D C:\Program Files (x86)\Windows Defender
O43 - CFD: 17/12/2012 - 20:52:26 - [2,105] ----D C:\Program Files (x86)\Windows Live
O43 - CFD: 15/05/2011 - 14:37:05 - [5,895] ----D C:\Program Files (x86)\Windows Mail  =>.Microsoft Corporation
O43 - CFD: 15/05/2011 - 14:36:49 - [5,090] ----D C:\Program Files (x86)\Windows Media Player  =>.Microsoft Corporation
O43 - CFD: 14/07/2009 - 06:32:38 - [11,632] ----D C:\Program Files (x86)\Windows NT
O43 - CFD: 18/07/2010 - 02:26:06 - [4,213] ----D C:\Program Files (x86)\Windows Photo Viewer
O43 - CFD: 14/07/2009 - 06:32:40 - [0,181] ----D C:\Program Files (x86)\Windows Portable Devices
O43 - CFD: 14/05/2011 - 19:13:04 - [6,208] ----D C:\Program Files (x86)\Windows Sidebar
O43 - CFD: 07/12/2013 - 09:38:03 - [7,177] ----D C:\Program Files (x86)\WinZipper
O43 - CFD: 30/08/2012 - 15:51:42 - [0,315] ----D C:\Program Files (x86)\Yontoo =>Adware.Yontoo
O43 - CFD: 07/12/2013 - 10:10:44 - [17,202] ----D C:\Program Files (x86)\ZHPDiag  =>.Nicolas Coolman
O43 - CFD: 24/05/2013 - 08:47:19 - [33,331] ----D C:\Program Files (x86)\Common Files\337
O43 - CFD: 08/11/2012 - 17:17:52 - [6,289] ----D C:\Program Files (x86)\Common Files\Adobe
O43 - CFD: 15/10/2013 - 13:50:53 - [45,947] ----D C:\Program Files (x86)\Common Files\Adobe AIR
O43 - CFD: 05/12/2012 - 17:47:11 - [28,676] ----D C:\Program Files (x86)\Common Files\AVSMedia
O43 - CFD: 07/12/2010 - 09:14:33 - [0] ----D C:\Program Files (x86)\Common Files\CyberLink
O43 - CFD: 31/05/2011 - 12:32:53 - [0,164] ----D C:\Program Files (x86)\Common Files\Hewlett-Packard
O43 - CFD: 15/05/2011 - 12:14:43 - [5,138] ----D C:\Program Files (x86)\Common Files\InstallShield
O43 - CFD: 08/09/2012 - 18:17:56 - [37,336] ----D C:\Program Files (x86)\Common Files\LightScribe
O43 - CFD: 22/01/2013 - 15:01:58 - [7,959] ----D C:\Program Files (x86)\Common Files\microsoft shared
O43 - CFD: 08/02/2013 - 18:54:41 - [1,819] ----D C:\Program Files (x86)\Common Files\Oberon Media
O43 - CFD: 07/12/2010 - 09:02:02 - [0] ----D C:\Program Files (x86)\Common Files\postureAgent
O43 - CFD: 14/07/2009 - 04:20:08 - [0,003] ----D C:\Program Files (x86)\Common Files\Services
O43 - CFD: 14/07/2009 - 04:20:08 - [39,200] ----D C:\Program Files (x86)\Common Files\SpeechEngines
O43 - CFD: 17/07/2011 - 13:06:59 - [0] ----D C:\Program Files (x86)\Common Files\Symantec Shared
O43 - CFD: 10/11/2011 - 09:07:30 - [9,634] ----D C:\Program Files (x86)\Common Files\System
O43 - CFD: 17/07/2010 - 16:57:58 - [0] ----D C:\Program Files (x86)\Common Files\Windows Live
O43 - CFD: 03/11/2013 - 18:50:29 - [0] ----D C:\ProgramData\.mono
O43 - CFD: 15/08/2013 - 23:07:42 - [0,004] ----D C:\ProgramData\2A2F6
O43 - CFD: 15/09/2013 - 17:48:53 - [0,004] ----D C:\ProgramData\35280
O43 - CFD: 20/08/2013 - 20:29:59 - [0,004] ----D C:\ProgramData\3B17F
O43 - CFD: 16/08/2013 - 10:34:19 - [159,145] ----D C:\ProgramData\Adobe
O43 - CFD: 21/05/2012 - 14:13:00 - [1,209] ----D C:\ProgramData\Anti-phishing Domain Advisor
O43 - CFD: 15/05/2011 - 12:15:03 - [0,009] ----D C:\ProgramData\Apple Computer
O43 - CFD: 14/07/2009 - 06:08:56 - [0] -SH-D C:\ProgramData\Application Data
O43 - CFD: 10/11/2013 - 19:15:04 - [0,004] ----D C:\ProgramData\Arizona Rose and the Pirates' Riddles
O43 - CFD: 17/12/2011 - 22:22:18 - [0] ----D C:\ProgramData\Ask
O43 - CFD: 06/11/2013 - 16:04:17 - [1063,760] ----D C:\ProgramData\AVG2012
O43 - CFD: 05/12/2012 - 17:37:18 - [0] ----D C:\ProgramData\AVS4YOU
O43 - CFD: 03/08/2013 - 21:47:12 - [0,004] ----D C:\ProgramData\B172
O43 - CFD: 22/01/2013 - 15:01:16 - [0] ----D C:\ProgramData\Babylon =>PUP.Babylon
O43 - CFD: 01/09/2013 - 20:11:33 - [113,885] ----D C:\ProgramData\Big Fish
O43 - CFD: 29/07/2013 - 11:57:33 - [0] ----D C:\ProgramData\Big Fish Games
O43 - CFD: 23/10/2013 - 17:40:16 - [0,913] ----D C:\ProgramData\BonanzaDealsLive =>Adware.BonanzaDeals
O43 - CFD: 09/12/2012 - 17:56:00 - [0] ----D C:\ProgramData\boost_interprocess
O43 - CFD: 14/05/2011 - 19:10:54 - [0] -SH-D C:\ProgramData\Bureau
O43 - CFD: 24/02/2012 - 12:16:05 - [0] --H-D C:\ProgramData\CanonEPP
O43 - CFD: 24/02/2012 - 12:23:07 - [0] --H-D C:\ProgramData\CanonIJEGV
O43 - CFD: 24/02/2012 - 12:16:05 - [0] --H-D C:\ProgramData\CanonIJEPPEX2
O43 - CFD: 24/02/2012 - 12:12:37 - [0,003] ----D C:\ProgramData\CanonIJMSetup
O43 - CFD: 17/06/2013 - 12:29:54 - [0] --H-D C:\ProgramData\CanonIJScan
O43 - CFD: 24/02/2012 - 12:16:06 - [0,002] --H-D C:\ProgramData\CanonIJSolutionMenuEX
O43 - CFD: 24/02/2012 - 12:11:44 - [0,065] ----D C:\ProgramData\CanonIJWSpt
O43 - CFD: 28/08/2013 - 09:43:27 - [0] ----D C:\ProgramData\Casual Arts
O43 - CFD: 22/10/2013 - 13:37:01 - [0] ----D C:\ProgramData\casualArts
O43 - CFD: 13/02/2013 - 11:50:36 - [0,003] ----D C:\ProgramData\clp
O43 - CFD: 05/08/2012 - 19:00:57 - [0] --H-D C:\ProgramData\Common Files
O43 - CFD: 17/09/2011 - 14:42:13 - [0,019] ----D C:\ProgramData\Computer Updater
O43 - CFD: 09/07/2012 - 20:57:18 - [0,040] ----D C:\ProgramData\CyberLink
O43 - CFD: 02/10/2013 - 14:22:39 - [0] ----D C:\ProgramData\DailyMagic
O43 - CFD: 01/07/2013 - 08:32:02 - [0,325] ----D C:\ProgramData\DealPlyLive =>PUP.DealPly
O43 - CFD: 14/07/2009 - 06:08:56 - [0] -SH-D C:\ProgramData\Desktop
O43 - CFD: 25/08/2013 - 18:20:08 - [0,114] ----D C:\ProgramData\DivoGames
O43 - CFD: 14/07/2009 - 06:08:56 - [0] -SH-D C:\ProgramData\Documents
O43 - CFD: 21/11/2013 - 13:57:44 - [0] ----D C:\ProgramData\Elephant Games
O43 - CFD: 17/09/2011 - 14:52:57 - [0] ----D C:\ProgramData\eMule
O43 - CFD: 08/09/2013 - 23:42:30 - [0,063] ----D C:\ProgramData\eSafe =>PUP.eSafeSecurity
O43 - CFD: 14/05/2011 - 19:10:54 - [0] -SH-D C:\ProgramData\Favoris
O43 - CFD: 14/07/2009 - 06:08:56 - [0] -SH-D C:\ProgramData\Favorites
O43 - CFD: 22/06/2013 - 11:46:07 - [2,600] ----D C:\ProgramData\Fighters
O43 - CFD: 25/04/2013 - 21:27:05 - [0] ----D C:\ProgramData\Flood Light Games
O43 - CFD: 02/09/2013 - 08:27:16 - [0] ----D C:\ProgramData\Floodlight Games
O43 - CFD: 15/05/2011 - 10:19:26 - [0] ----D C:\ProgramData\FloodLightGames
O43 - CFD: 12/11/2013 - 15:19:06 - [100,102] ----D C:\ProgramData\Fugazo
O43 - CFD: 25/07/2012 - 21:49:54 - [0] ----D C:\ProgramData\Garmin
O43 - CFD: 28/10/2013 - 22:21:43 - [11,426] ----D C:\ProgramData\GoBit Games
O43 - CFD: 19/06/2011 - 19:10:13 - [44,711] ----D C:\ProgramData\Hewlett-Packard
O43 - CFD: 23/02/2012 - 12:59:48 - [8,760] ----D C:\ProgramData\HP
O43 - CFD: 21/05/2012 - 14:17:07 - [0,009] ----D C:\ProgramData\IBUpdaterService =>Adware.InstallBrain
O43 - CFD: 26/09/2011 - 21:29:30 - [0] ----D C:\ProgramData\IM
O43 - CFD: 09/12/2012 - 17:52:49 - [0,078] ----D C:\ProgramData\iMesh =>PUP.iMesh
O43 - CFD: 26/09/2011 - 21:27:58 - [0,009] ----D C:\ProgramData\IncrediMail
O43 - CFD: 09/07/2012 - 21:04:50 - [0,095] ----D C:\ProgramData\install_clap
O43 - CFD: 22/10/2013 - 20:50:46 - [0,061] ----D C:\ProgramData\InterAction studios
O43 - CFD: 28/05/2013 - 14:37:25 - [0] ----D C:\ProgramData\iolo
O43 - CFD: 28/08/2013 - 09:05:51 - [0,007] ----D C:\ProgramData\JollyBear
O43 - CFD: 17/05/2012 - 12:13:31 - [0] ----D C:\ProgramData\Lavasoft
O43 - CFD: 29/08/2011 - 19:42:18 - [0,001] ----D C:\ProgramData\LightScribe
O43 - CFD: 17/03/2012 - 20:04:31 - [0,091] ----D C:\ProgramData\McAfee
O43 - CFD: 14/05/2011 - 19:10:54 - [0] -SH-D C:\ProgramData\Menu Démarrer
O43 - CFD: 02/10/2013 - 19:35:18 - [39,601] ----D C:\ProgramData\Meridian93
O43 - CFD: 15/11/2013 - 10:04:44 - [70,268] ----D C:\ProgramData\MFAData
O43 - CFD: 07/12/2013 - 09:54:23 - [568,631] -S--D C:\ProgramData\Microsoft
O43 - CFD: 26/09/2012 - 17:17:36 - [0] ----D C:\ProgramData\Microsoft SkyDrive  =>.Microsoft Corporation
O43 - CFD: 14/05/2011 - 19:10:54 - [0] -SH-D C:\ProgramData\Modèles
O43 - CFD: 07/05/2012 - 10:21:51 - [0] ----D C:\ProgramData\Mozilla
O43 - CFD: 30/08/2011 - 22:59:34 - [0,003] ----D C:\ProgramData\MumboJumbo
O43 - CFD: 13/10/2013 - 13:35:29 - [0,553] ----D C:\ProgramData\NCH Software
O43 - CFD: 30/08/2012 - 15:51:30 - [0] ----D C:\ProgramData\NCH Swift Sound
O43 - CFD: 29/08/2011 - 19:40:35 - [0,028] ----D C:\ProgramData\Nero
O43 - CFD: 18/07/2011 - 09:04:16 - [0,020] ----D C:\ProgramData\Norton
O43 - CFD: 17/07/2011 - 13:06:22 - [29,503] ----D C:\ProgramData\NortonInstaller
O43 - CFD: 28/10/2013 - 22:04:11 - [0,020] ----D C:\ProgramData\Oberon Games
O43 - CFD: 14/02/2013 - 20:59:59 - [104,052] ----D C:\ProgramData\Oberon Media
O43 - CFD: 12/06/2012 - 20:49:48 - [0,574] ----D C:\ProgramData\Orange
O43 - CFD: 28/10/2013 - 22:57:29 - [0,102] ----D C:\ProgramData\OrganicCoffee
O43 - CFD: 17/09/2011 - 15:01:48 - [0] ----D C:\ProgramData\PC Drivers HeadQuarters
O43 - CFD: 26/09/2011 - 21:29:22 - [1,373] ----D C:\ProgramData\Photo Notifier and Animation Creator
O43 - CFD: 15/05/2011 - 20:11:34 - [0] ----D C:\ProgramData\PlayFirst
O43 - CFD: 14/09/2013 - 17:05:08 - [7,102] ----D C:\ProgramData\PlayfulAge
O43 - CFD: 22/10/2013 - 13:07:45 - [10,546] ----D C:\ProgramData\Playrix Entertainment
O43 - CFD: 27/08/2013 - 23:32:39 - [0,003] ----D C:\ProgramData\PuzzlesByJoe
O43 - CFD: 11/01/2013 - 21:31:44 - [0,019] ----D C:\ProgramData\Recovery
O43 - CFD: 24/06/2013 - 20:22:12 - [0,959] ----D C:\ProgramData\Samsung
O43 - CFD: 04/06/2011 - 08:30:29 - [18,991] ----D C:\ProgramData\Skype
O43 - CFD: 02/09/2013 - 08:25:04 - [0] ----D C:\ProgramData\Slapdash Games
O43 - CFD: 17/05/2012 - 13:26:02 - [0] ----D C:\ProgramData\Software =>Adware.Boxore
O43 - CFD: 17/02/2013 - 18:51:18 - [16,729] ----D C:\ProgramData\SpecialBit Games
O43 - CFD: 25/04/2013 - 21:35:18 - [0,014] ----D C:\ProgramData\SpinTop Games
O43 - CFD: 14/07/2009 - 06:08:56 - [0] -SH-D C:\ProgramData\Start Menu
O43 - CFD: 26/09/2011 - 21:57:32 - [0] ----D C:\ProgramData\Studio-Scrap4
O43 - CFD: 12/11/2013 - 15:23:59 - [0,025] ----D C:\ProgramData\SugarGames
O43 - CFD: 17/07/2010 - 19:15:01 - [0] ----D C:\ProgramData\Sun
O43 - CFD: 19/06/2012 - 13:59:53 - [0,037] ----D C:\ProgramData\SweetIM =>PUP.SweetIM
O43 - CFD: 12/07/2013 - 23:09:27 - [2,760] ----D C:\ProgramData\Tarma Installer =>PUP.Tarma
O43 - CFD: 29/11/2013 - 15:59:35 - [0,556] ---AD C:\ProgramData\Temp
O43 - CFD: 14/07/2009 - 06:08:56 - [0] -SH-D C:\ProgramData\Templates
O43 - CFD: 12/06/2011 - 20:32:35 - [0,994] ----D C:\ProgramData\Trymedia =>Adware.Trymedia
O43 - CFD: 08/11/2011 - 22:24:02 - [22,063] ----D C:\ProgramData\TuneUp Software
O43 - CFD: 15/05/2011 - 15:10:44 - [0] ----D C:\ProgramData\VirtualizedApplications
O43 - CFD: 17/06/2011 - 12:54:30 - [0] ----D C:\ProgramData\WEBREG
O43 - CFD: 10/06/2011 - 20:51:56 - [1,760] ----D C:\ProgramData\WildTangent
O43 - CFD: 08/11/2011 - 22:35:11 - [0,003] ----D C:\ProgramData\WinMaximizer
O43 - CFD: 04/06/2011 - 09:55:33 - [17,622] -SH-D C:\ProgramData\{24036256-BFDB-4CD3-BE8A-A3D6160F2E16}
O43 - CFD: 08/11/2011 - 22:23:10 - [22,757] -SH-D C:\ProgramData\{32364CEA-7855-4A3C-B674-53D8E9B97936}
O43 - CFD: 29/08/2011 - 19:08:37 - [0,011] ----D C:\ProgramData\{3C0AACBF-B491-4BE5-BAF9-AA46E0629E42}
O43 - CFD: 09/12/2012 - 17:56:18 - [15,606] --H-D C:\ProgramData\{76D00AC1-FC59-4935-BDDB-B94AD1955BE7}
O43 - CFD: 06/11/2011 - 21:46:32 - [0,011] ----D C:\ProgramData\{83C3B2FD-37EA-4C06-A228-E9B5E32FF0B1}
O43 - CFD: 17/07/2010 - 19:40:31 - [33,718] ----D C:\ProgramData\{8D274659-3D84-4410-A197-C170D180BC76}
O43 - CFD: 19/06/2011 - 19:15:02 - [34,794] ----D C:\ProgramData\{E91883C8-8CDC-46A4-A45F-CB40EB82ED60}
O43 - CFD: 03/11/2013 - 18:50:29 - [0] ----D C:\Users\slvanessa\AppData\Roaming\.mono
O43 - CFD: 23/10/2013 - 17:40:10 - [1,063] ----D C:\Users\slvanessa\AppData\Roaming\0F0W0T1V0D0L0M
O43 - CFD: 27/11/2013 - 14:45:54 - [1,063] ----D C:\Users\slvanessa\AppData\Roaming\0S1F1O2Z2W1L1B
O43 - CFD: 24/05/2013 - 09:12:58 - [3,727] ----D C:\Users\slvanessa\AppData\Roaming\337
O43 - CFD: 24/05/2013 - 21:15:18 - [6,840] ----D C:\Users\slvanessa\AppData\Roaming\337 Wallpaper
O43 - CFD: 06/12/2011 - 19:58:53 - [10,883] ----D C:\Users\slvanessa\AppData\Roaming\Adobe
O43 - CFD: 15/11/2013 - 19:11:17 - [0,221] ----D C:\Users\slvanessa\AppData\Roaming\Alawar Stargaze
O43 - CFD: 26/09/2013 - 11:52:52 - [8,803] ----D C:\Users\slvanessa\AppData\Roaming\AlawarEntertainment
O43 - CFD: 21/07/2013 - 16:46:04 - [0,001] ----D C:\Users\slvanessa\AppData\Roaming\AlderGames
O43 - CFD: 15/09/2011 - 14:22:46 - [0,009] ----D C:\Users\slvanessa\AppData\Roaming\Amazon
O43 - CFD: 21/05/2011 - 10:17:45 - [0,002] ----D C:\Users\slvanessa\AppData\Roaming\Apple Computer
O43 - CFD: 08/11/2013 - 20:43:21 - [9,244] ----D C:\Users\slvanessa\AppData\Roaming\Artifex Mundi
O43 - CFD: 24/10/2013 - 13:22:14 - [0,337] ----D C:\Users\slvanessa\AppData\Roaming\Artogon
O43 - CFD: 14/05/2011 - 19:46:38 - [0] ----D C:\Users\slvanessa\AppData\Roaming\ATI
O43 - CFD: 04/12/2013 - 15:13:11 - [0,004] ----D C:\Users\slvanessa\AppData\Roaming\Audacity
O43 - CFD: 16/02/2012 - 19:46:44 - [0,071] ----D C:\Users\slvanessa\AppData\Roaming\AVG2012
O43 - CFD: 05/12/2012 - 17:37:09 - [0,070] ----D C:\Users\slvanessa\AppData\Roaming\AVS4YOU
O43 - CFD: 28/01/2013 - 15:29:15 - [0,008] ----D C:\Users\slvanessa\AppData\Roaming\Azuaz Games
O43 - CFD: 19/02/2013 - 10:36:30 - [0,021] ----D C:\Users\slvanessa\AppData\Roaming\AzuazGames
O43 - CFD: 17/12/2011 - 21:43:51 - [31,396] ----D C:\Users\slvanessa\AppData\Roaming\Azureus =>P2P.Azureus
O43 - CFD: 22/06/2013 - 18:51:35 - [1,047] ----D C:\Users\slvanessa\AppData\Roaming\BabSolution =>Hijacker.BabSolution
O43 - CFD: 22/01/2013 - 15:01:16 - [0,094] ----D C:\Users\slvanessa\AppData\Roaming\Babylon =>PUP.Babylon
O43 - CFD: 15/09/2011 - 11:53:00 - [0] ----D C:\Users\slvanessa\AppData\Roaming\Bandoo =>Adware.Bandoo
O43 - CFD: 20/09/2013 - 14:23:34 - [0,017] ----D C:\Users\slvanessa\AppData\Roaming\Big Fish Games
O43 - CFD: 07/11/2013 - 22:53:39 - [1,377] ----D C:\Users\slvanessa\AppData\Roaming\BlamGames
O43 - CFD: 25/09/2013 - 21:36:42 - [0,028] ----D C:\Users\slvanessa\AppData\Roaming\Blue Tea Games
O43 - CFD: 16/11/2013 - 14:59:51 - [5,009] ----D C:\Users\slvanessa\AppData\Roaming\Boomzap
O43 - CFD: 03/07/2013 - 08:13:49 - [0] ----D C:\Users\slvanessa\AppData\Roaming\Canon
O43 - CFD: 28/08/2013 - 09:43:27 - [0,139] ----D C:\Users\slvanessa\AppData\Roaming\Casual Arts
O43 - CFD: 22/10/2013 - 13:37:01 - [0,288] ----D C:\Users\slvanessa\AppData\Roaming\casualArts
O43 - CFD: 02/10/2013 - 20:25:25 - [0,031] ----D C:\Users\slvanessa\AppData\Roaming\Chayowo Games
O43 - CFD: 11/10/2011 - 18:05:48 - [0] ----D C:\Users\slvanessa\AppData\Roaming\com.adobe.mauby.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1
O43 - CFD: 23/01/2013 - 18:09:05 - [0,473] ----D C:\Users\slvanessa\AppData\Roaming\CVitae
O43 - CFD: 11/10/2011 - 11:58:07 - [0,181] ----D C:\Users\slvanessa\AppData\Roaming\CyberLink
O43 - CFD: 06/08/2013 - 17:40:38 - [0,623] ----D C:\Users\slvanessa\AppData\Roaming\Daedalic Entertainment
O43 - CFD: 02/10/2013 - 14:22:39 - [7,827] ----D C:\Users\slvanessa\AppData\Roaming\DailyMagic
O43 - CFD: 15/02/2013 - 15:15:40 - [2,597] ----D C:\Users\slvanessa\AppData\Roaming\Dark Blue Games
O43 - CFD: 08/06/2013 - 17:23:36 - [0] ----D C:\Users\slvanessa\AppData\Roaming\Dealply =>PUP.DealPly
O43 - CFD: 17/07/2013 - 19:35:12 - [14,370] ----D C:\Users\slvanessa\AppData\Roaming\Desk 365 =>Hijacker.22Find
O43 - CFD: 19/02/2013 - 13:53:23 - [0,001] ----D C:\Users\slvanessa\AppData\Roaming\dvdcss
O43 - CFD: 22/05/2011 - 17:53:45 - [0,181] ----D C:\Users\slvanessa\AppData\Roaming\EasyBurner
O43 - CFD: 17/07/2013 - 19:34:39 - [4,155] ----D C:\Users\slvanessa\AppData\Roaming\eIntaller
O43 - CFD: 22/10/2013 - 13:38:18 - [5,969] ----D C:\Users\slvanessa\AppData\Roaming\Eipix
O43 - CFD: 07/10/2013 - 22:04:22 - [3,210] ----D C:\Users\slvanessa\AppData\Roaming\EleFun Games
O43 - CFD: 21/11/2013 - 13:57:44 - [0,841] ----D C:\Users\slvanessa\AppData\Roaming\Elephant Games
O43 - CFD: 26/11/2013 - 11:39:59 - [3,753] ----D C:\Users\slvanessa\AppData\Roaming\ERS Game Studios
O43 - CFD: 29/08/2013 - 19:38:56 - [0,003] ----D C:\Users\slvanessa\AppData\Roaming\FamilyVacationCalifornia
O43 - CFD: 22/06/2013 - 11:46:47 - [1,089] ----D C:\Users\slvanessa\AppData\Roaming\Fighters
O43 - CFD: 01/12/2013 - 19:59:03 - [0,060] ----D C:\Users\slvanessa\AppData\Roaming\File Scout =>PUP.FileScout
O43 - CFD: 25/04/2013 - 21:27:05 - [0,035] ----D C:\Users\slvanessa\AppData\Roaming\Flood Light Games
O43 - CFD: 02/09/2013 - 08:27:16 - [2,272] ----D C:\Users\slvanessa\AppData\Roaming\Floodlight Games
O43 - CFD: 15/05/2011 - 10:19:26 - [0,073] ----D C:\Users\slvanessa\AppData\Roaming\FloodLightGames
O43 - CFD: 14/10/2013 - 14:20:35 - [0,018] ----D C:\Users\slvanessa\AppData\Roaming\Freeze Tag
O43 - CFD: 16/05/2011 - 17:11:49 - [0,003] ----D C:\Users\slvanessa\AppData\Roaming\funkitron
O43 - CFD: 18/09/2013 - 14:03:01 - [0,007] ----D C:\Users\slvanessa\AppData\Roaming\GameMill Entertainment
O43 - CFD: 25/07/2012 - 21:49:54 - [0,352] ----D C:\Users\slvanessa\AppData\Roaming\Garmin
O43 - CFD: 29/07/2013 - 12:09:17 - [0,067] ----D C:\Users\slvanessa\AppData\Roaming\Gogii
O43 - CFD: 11/10/2013 - 21:59:57 - [0,023] ----D C:\Users\slvanessa\AppData\Roaming\Gogii Games
O43 - CFD: 10/10/2013 - 21:34:53 - [0,033] ----D C:\Users\slvanessa\AppData\Roaming\GrandMA Studios
O43 - CFD: 15/11/2013 - 19:06:24 - [0,002] ----D C:\Users\slvanessa\AppData\Roaming\Grey Alien Games
O43 - CFD: 09/06/2013 - 21:19:59 - [0,123] ----D C:\Users\slvanessa\AppData\Roaming\HdO Adventure
O43 - CFD: 19/06/2011 - 19:10:18 - [0,070] ----D C:\Users\slvanessa\AppData\Roaming\Hewlett-Packard
O43 - CFD: 22/01/2013 - 20:54:16 - [0,035] ----D C:\Users\slvanessa\AppData\Roaming\Hidden Objects Expert
O43 - CFD: 02/02/2013 - 13:49:54 - [0,039] ----D C:\Users\slvanessa\AppData\Roaming\Hidden Objects Petrodollars
O43 - CFD: 09/06/2013 - 20:21:26 - [0,037] ----D C:\Users\slvanessa\AppData\Roaming\Hidden Objects Romance
O43 - CFD: 28/01/2013 - 15:28:48 - [0,038] ----D C:\Users\slvanessa\AppData\Roaming\Hidden Objects XIII
O43 - CFD: 17/02/2013 - 18:57:42 - [0,001] ----D C:\Users\slvanessa\AppData\Roaming\HiT-MM
O43 - CFD: 29/08/2013 - 20:51:24 - [0,305] ----D C:\Users\slvanessa\AppData\Roaming\HitPoint Studios
O43 - CFD: 30/09/2013 - 20:59:42 - [0,016] ----D C:\Users\slvanessa\AppData\Roaming\HotLava
O43 - CFD: 17/06/2011 - 12:58:48 - [0,148] ----D C:\Users\slvanessa\AppData\Roaming\HP
O43 - CFD: 31/05/2011 - 09:17:15 - [0,141] ----D C:\Users\slvanessa\AppData\Roaming\hpqLog
O43 - CFD: 09/01/2012 - 17:11:41 - [0,003] ----D C:\Users\slvanessa\AppData\Roaming\HpUpdate
O43 - CFD: 14/05/2011 - 19:45:13 - [0] ----D C:\Users\slvanessa\AppData\Roaming\Identities
O43 - CFD: 03/03/2012 - 14:38:10 - [1,025] ----D C:\Users\slvanessa\AppData\Roaming\Image-Line
O43 - CFD: 01/06/2011 - 08:06:19 - [0] ----D C:\Users\slvanessa\AppData\Roaming\imeshbandmltbpi =>PUP.iMesh
O43 - CFD: 14/05/2011 - 19:45:39 - [0] ----D C:\Users\slvanessa\AppData\Roaming\Intel Corporation
O43 - CFD: 27/07/2012 - 16:58:32 - [0,002] ----D C:\Users\slvanessa\AppData\Roaming\JAM Software
O43 - CFD: 05/09/2012 - 17:20:46 - [0,001] ----D C:\Users\slvanessa\AppData\Roaming\KC Softwares
O43 - CFD: 13/02/2013 - 18:54:24 - [0,044] ----D C:\Users\slvanessa\AppData\Roaming\Lazy Turtle Games
O43 - CFD: 21/09/2013 - 20:03:18 - [0,011] ----D C:\Users\slvanessa\AppData\Roaming\LegacyInteractive
O43 - CFD: 14/05/2011 - 19:55:33 - [0,055] ----D C:\Users\slvanessa\AppData\Roaming\Macromedia
O43 - CFD: 10/09/2013 - 23:10:08 - [2,102] ----D C:\Users\slvanessa\AppData\Roaming\Mad Head Games
O43 - CFD: 23/10/2013 - 14:28:41 - [0,019] ----D C:\Users\slvanessa\AppData\Roaming\MagicIndie
O43 - CFD: 11/11/2013 - 00:04:04 - [0,295] ----D C:\Users\slvanessa\AppData\Roaming\Mariaglorum
O43 - CFD: 07/12/2010 - 18:42:32 - [0] ----D C:\Users\slvanessa\AppData\Roaming\Media Center Programs
O43 - CFD: 02/06/2011 - 21:08:10 - [0,015] ----D C:\Users\slvanessa\AppData\Roaming\mediabarim =>PUP.iMesh
O43 - CFD: 02/10/2013 - 19:31:15 - [7,399] ----D C:\Users\slvanessa\AppData\Roaming\Meridian93
O43 - CFD: 17/08/2013 - 11:40:45 - [34,930] -S--D C:\Users\slvanessa\AppData\Roaming\Microsoft
O43 - CFD: 03/05/2012 - 16:44:20 - [0,004] ----D C:\Users\slvanessa\AppData\Roaming\Mindscape
O43 - CFD: 04/11/2013 - 13:18:52 - [0,002] ----D C:\Users\slvanessa\AppData\Roaming\MoonriseInteractive
O43 - CFD: 24/03/2012 - 14:00:07 - [35,448] ----D C:\Users\slvanessa\AppData\Roaming\Mozilla
O43 - CFD: 14/10/2011 - 13:36:59 - [0,022] ----D C:\Users\slvanessa\AppData\Roaming\MusicNet
O43 - CFD: 18/02/2013 - 20:49:05 - [0,190] ----D C:\Users\slvanessa\AppData\Roaming\My Games
O43 - CFD: 08/06/2013 - 17:23:25 - [0,061] ----D C:\Users\slvanessa\AppData\Roaming\mysearchdial =>Adware.MyWebSearch
O43 - CFD: 17/07/2013 - 08:52:37 - [0,005] ----D C:\Users\slvanessa\AppData\Roaming\MysteryStudio
O43 - CFD: 14/10/2013 - 20:05:46 - [0,008] ----D C:\Users\slvanessa\AppData\Roaming\NCH Software
O43 - CFD: 29/08/2011 - 19:51:45 - [0,092] ----D C:\Users\slvanessa\AppData\Roaming\Nero
O43 - CFD: 19/09/2013 - 12:12:28 - [0,005] ----D C:\Users\slvanessa\AppData\Roaming\Nitreal Games
O43 - CFD: 17/07/2013 - 19:34:29 - [0] ----D C:\Users\slvanessa\AppData\Roaming\Nosibay =>PUP.BubbleDock
O43 - CFD: 08/02/2013 - 18:55:01 - [0,695] ----D C:\Users\slvanessa\AppData\Roaming\Oberon Media
O43 - CFD: 28/09/2012 - 13:36:52 - [0,341] ----D C:\Users\slvanessa\AppData\Roaming\OfferBox =>PUP.OfferBox
O43 - CFD: 24/05/2013 - 22:10:26 - [3,707] ----D C:\Users\slvanessa\AppData\Roaming\Omiga Plus =>Hijacker.OmigaPlus
O43 - CFD: 20/04/2012 - 16:48:06 - [5,954] ----D C:\Users\slvanessa\AppData\Roaming\OpenCandy =>Adware.OpenCandy
O43 - CFD: 28/06/2012 - 12:26:40 - [15,119] ----D C:\Users\slvanessa\AppData\Roaming\OpenOffice.org
O43 - CFD: 11/11/2011 - 08:51:48 - [10,316] ----D C:\Users\slvanessa\AppData\Roaming\Orange
O43 - CFD: 13/11/2013 - 16:05:41 - [0,008] ----D C:\Users\slvanessa\AppData\Roaming\Orneon
O43 - CFD: 05/07/2013 - 08:14:26 - [0] ----D C:\Users\slvanessa\AppData\Roaming\PerformerSoft
O43 - CFD: 17/07/2012 - 16:18:35 - [0] ----D C:\Users\slvanessa\AppData\Roaming\PhotoFiltre
O43 - CFD: 24/05/2013 - 09:06:32 - [0,017] ----D C:\Users\slvanessa\AppData\Roaming\player
O43 - CFD: 15/05/2011 - 20:11:34 - [0,003] ----D C:\Users\slvanessa\AppData\Roaming\PlayFirst
O43 - CFD: 10/11/2013 - 19:12:23 - [0,005] ----D C:\Users\slvanessa\AppData\Roaming\Playrix Entertainment
O43 - CFD: 03/11/2013 - 18:32:25 - [0] ----D C:\Users\slvanessa\AppData\Roaming\Pokémon Trading Card Game Online
O43 - CFD: 03/06/2011 - 20:27:00 - [1,864] ----D C:\Users\slvanessa\AppData\Roaming\PriceGong =>Adware.PriceGong
O43 - CFD: 15/10/2011 - 09:39:01 - [2,320] ----D C:\Users\slvanessa\AppData\Roaming\Raptr
O43 - CFD: 16/03/2012 - 15:30:48 - [0] ----D C:\Users\slvanessa\AppData\Roaming\Recordpad
O43 - CFD: 17/09/2011 - 14:49:04 - [0] ----D C:\Users\slvanessa\AppData\Roaming\RegistryKeys
O43 - CFD: 16/01/2012 - 20:10:33 - [0,004] ----D C:\Users\slvanessa\AppData\Roaming\Rovio
O43 - CFD: 24/06/2013 - 20:22:14 - [0] ----D C:\Users\slvanessa\AppData\Roaming\Samsung
O43 - CFD: 27/10/2013 - 22:46:22 - [0,181] ----D C:\Users\slvanessa\AppData\Roaming\ShamanGS
O43 - CFD: 02/06/2011 - 18:52:06 - [0,616] ----D C:\Users\slvanessa\AppData\Roaming\Skype
O43 - CFD: 31/05/2011 - 09:14:49 - [0,002] ----D C:\Users\slvanessa\AppData\Roaming\skypePM
O43 - CFD: 27/09/2013 - 14:00:01 - [0,011] ----D C:\Users\slvanessa\AppData\Roaming\SMIGames
O43 - CFD: 25/07/2012 - 20:51:08 - [1,053] ----D C:\Users\slvanessa\AppData\Roaming\SoftGrid Client
O43 - CFD: 22/01/2013 - 15:01:33 - [0,023] ----D C:\Users\slvanessa\AppData\Roaming\SpecialSavings =>PUP.SpecialSavings
O43 - CFD: 19/02/2013 - 09:54:12 - [0,012] ----D C:\Users\slvanessa\AppData\Roaming\SpinTop Games
O43 - CFD: 03/07/2012 - 17:14:37 - [0,308] ----D C:\Users\slvanessa\AppData\Roaming\Studio-Scrap4
O43 - CFD: 10/11/2013 - 23:54:41 - [0,012] ----D C:\Users\slvanessa\AppData\Roaming\SulusGames
O43 - CFD: 17/12/2012 - 14:20:20 - [0,227] ----D C:\Users\slvanessa\AppData\Roaming\SUPERAntiSpyware.com
O43 - CFD: 27/11/2013 - 14:55:13 - [0] ----D C:\Users\slvanessa\AppData\Roaming\Systweak
O43 - CFD: 30/07/2013 - 17:53:30 - [0,172] ----D C:\Users\slvanessa\AppData\Roaming\tabagames
O43 - CFD: 09/11/2013 - 21:51:45 - [3,292] ----D C:\Users\slvanessa\AppData\Roaming\Tap It Games
O43 - CFD: 03/08/2013 - 15:19:29 - [0] ----D C:\Users\slvanessa\AppData\Roaming\TFP
O43 - CFD: 22/10/2013 - 14:49:10 - [0,107] ----D C:\Users\slvanessa\AppData\Roaming\TikisLab
O43 - CFD: 14/05/2011 - 20:21:39 - [0] ----D C:\Users\slvanessa\AppData\Roaming\TP
O43 - CFD: 16/10/2013 - 22:25:52 - [0,285] ----D C:\Users\slvanessa\AppData\Roaming\TrickySoftware
O43 - CFD: 08/11/2011 - 22:24:02 - [0,018] ----D C:\Users\slvanessa\AppData\Roaming\TuneUp Software
O43 - CFD: 15/10/2011 - 09:31:14 - [7,659] ----D C:\Users\slvanessa\AppData\Roaming\U3
O43 - CFD: 30/09/2013 - 16:15:46 - [0,041] ----D C:\Users\slvanessa\AppData\Roaming\Vast Studios
O43 - CFD: 15/10/2013 - 13:53:18 - [0] ----D C:\Users\slvanessa\AppData\Roaming\VirginMega.DownloadManager.v3
O43 - CFD: 15/09/2011 - 14:37:52 - [0,001] ----D C:\Users\slvanessa\AppData\Roaming\VirginMega.DownloadManager.v3.4AE6D9B37411D7D7A2C457954142B8FA4EE6E198.1
O43 - CFD: 04/12/2013 - 15:03:05 - [8,963] ----D C:\Users\slvanessa\AppData\Roaming\vlc
O43 - CFD: 13/10/2013 - 19:22:18 - [1,954] ----D C:\Users\slvanessa\AppData\Roaming\Vogat Interactive
O43 - CFD: 12/07/2013 - 23:09:21 - [0,055] ----D C:\Users\slvanessa\AppData\Roaming\WebCake =>Adware.WebCake
O43 - CFD: 26/09/2012 - 17:53:18 - [0] ----D C:\Users\slvanessa\AppData\Roaming\Windows Live Writer
O43 - CFD: 12/06/2011 - 20:24:37 - [0] ----D C:\Users\slvanessa\AppData\Roaming\WinRAR
O43 - CFD: 02/08/2013 - 18:30:37 - [0,001] ----D C:\Users\slvanessa\AppData\Roaming\WinZipper
O43 - CFD: 17/06/2011 - 11:48:57 - [0] ----D C:\Users\slvanessa\AppData\Roaming\Yahoo!
O43 - CFD: 07/12/2013 - 10:11:43 - [0,020] ----D C:\Users\slvanessa\AppData\Roaming\ZHP  =>.Nicolas Coolman
O43 - CFD: 23/06/2011 - 12:08:28 - [0,016] ----D C:\Users\slvanessa\AppData\Roaming\_MDLogs
O43 - CFD: 24/11/2013 - 11:04:30 - [32,861] ----D C:\Users\slvanessa\AppData\Local\Adobe
O43 - CFD: 17/12/2011 - 21:37:15 - [0,338] ----D C:\Users\slvanessa\AppData\Local\APN
O43 - CFD: 14/05/2011 - 19:10:58 - [0] -SH-D C:\Users\slvanessa\AppData\Local\Application Data
O43 - CFD: 22/05/2011 - 20:50:56 - [1,154] ----D C:\Users\slvanessa\AppData\Local\Apps
O43 - CFD: 22/05/2011 - 18:24:30 - [0,031] ----D C:\Users\slvanessa\AppData\Local\Ares
O43 - CFD: 14/05/2011 - 19:46:38 - [0,067] ----D C:\Users\slvanessa\AppData\Local\ATI
O43 - CFD: 09/05/2013 - 10:09:32 - [1,710] ----D C:\Users\slvanessa\AppData\Local\Auchan
O43 - CFD: 29/07/2013 - 11:58:05 - [0,035] ----D C:\Users\slvanessa\AppData\Local\Big Fish
O43 - CFD: 26/09/2012 - 08:32:30 - [299,981] ----D C:\Users\slvanessa\AppData\Local\blekkotb_001 =>Toolbar.Blekko
O43 - CFD: 23/10/2013 - 17:40:16 - [0] ----D C:\Users\slvanessa\AppData\Local\BonanzaDealsLive =>Adware.BonanzaDeals
O43 - CFD: 27/11/2013 - 14:47:32 - [7,743] ----D C:\Users\slvanessa\AppData\Local\cache
O43 - CFD: 17/12/2012 - 14:07:31 - [0,106] ----D C:\Users\slvanessa\AppData\Local\Conduit
O43 - CFD: 04/12/2013 - 15:11:00 - [42,446] ----D C:\Users\slvanessa\AppData\Local\CrashDumps
O43 - CFD: 06/06/2011 - 21:09:52 - [0,104] ----D C:\Users\slvanessa\AppData\Local\CyberLink
O43 - CFD: 01/07/2013 - 08:32:02 - [0] ----D C:\Users\slvanessa\AppData\Local\DealPlyLive =>PUP.DealPly
O43 - CFD: 22/05/2011 - 20:51:25 - [0] ----D C:\Users\slvanessa\AppData\Local\Deployment
O43 - CFD: 07/12/2013 - 09:53:32 - [3,137] ----D C:\Users\slvanessa\AppData\Local\Diagnostics
O43 - CFD: 22/06/2013 - 19:01:45 - [133,598] ----D C:\Users\slvanessa\AppData\Local\Downloaded Installations
O43 - CFD: 07/12/2013 - 09:48:32 - [1,231] ----D C:\Users\slvanessa\AppData\Local\ElevatedDiagnostics
O43 - CFD: 25/07/2012 - 21:49:51 - [2,473] ----D C:\Users\slvanessa\AppData\Local\Garmin
O43 - CFD: 02/12/2013 - 11:55:32 - [0,002] ----D C:\Users\slvanessa\AppData\Local\Google
O43 - CFD: 20/05/2012 - 16:31:45 - [0,022] ----D C:\Users\slvanessa\AppData\Local\Halite
O43 - CFD: 30/05/2011 - 09:26:35 - [0,008] ----D C:\Users\slvanessa\AppData\Local\Hewlett-Packard
O43 - CFD: 14/05/2011 - 19:10:58 - [0] -SH-D C:\Users\slvanessa\AppData\Local\Historique
O43 - CFD: 17/06/2011 - 12:58:47 - [0,083] ----D C:\Users\slvanessa\AppData\Local\HP
O43 - CFD: 15/09/2011 - 11:52:48 - [0,014] ----D C:\Users\slvanessa\AppData\Local\Ilivid Player =>Adware.Bandoo
O43 - CFD: 26/09/2011 - 21:33:41 - [9,981] ----D C:\Users\slvanessa\AppData\Local\IM
O43 - CFD: 30/11/2013 - 15:54:46 - [90,013] ----D C:\Users\slvanessa\AppData\Local\iMesh =>PUP.iMesh
O43 - CFD: 28/08/2013 - 09:05:51 - [0] ----D C:\Users\slvanessa\AppData\Local\JollyBear
O43 - CFD: 22/01/2013 - 15:02:23 - [0] ----D C:\Users\slvanessa\AppData\Local\Lollipop =>Adware.Lollipop
O43 - CFD: 17/06/2013 - 10:04:53 - [1755,184] ----D C:\Users\slvanessa\AppData\Local\Microsoft
O43 - CFD: 16/05/2011 - 17:17:07 - [0,442] ----D C:\Users\slvanessa\AppData\Local\Microsoft Games
O43 - CFD: 02/12/2013 - 11:58:48 - [0,003] ----D C:\Users\slvanessa\AppData\Local\Mobogenie
O43 - CFD: 15/05/2011 - 11:58:28 - [0,082] ----D C:\Users\slvanessa\AppData\Local\Nexway
O43 - CFD: 23/06/2011 - 11:58:55 - [34,077] ----D C:\Users\slvanessa\AppData\Local\NPE
O43 - CFD: 26/08/2013 - 21:16:13 - [0] ----D C:\Users\slvanessa\AppData\Local\Oberon Games
O43 - CFD: 20/05/2011 - 14:31:55 - [0] ----D C:\Users\slvanessa\AppData\Local\PackageAware
O43 - CFD: 01/06/2011 - 08:06:38 - [1,853] ----D C:\Users\slvanessa\AppData\Local\pc_gear_fr
O43 - CFD: 01/03/2013 - 16:15:04 - [0] ----D C:\Users\slvanessa\AppData\Local\Programs
O43 - CFD: 24/06/2013 - 20:22:14 - [0] ----D C:\Users\slvanessa\AppData\Local\Samsung
O43 - CFD: 02/09/2013 - 08:25:04 - [0] ----D C:\Users\slvanessa\AppData\Local\Slapdash Games
O43 - CFD: 14/05/2011 - 20:21:32 - [1,051] ----D C:\Users\slvanessa\AppData\Local\SoftGrid Client
O43 - CFD: 12/04/2012 - 18:52:45 - [0] ----D C:\Users\slvanessa\AppData\Local\Software
O43 - CFD: 07/12/2013 - 10:11:04 - [48,683] ----D C:\Users\slvanessa\AppData\Local\Temp
O43 - CFD: 14/05/2011 - 19:10:58 - [0] -SH-D C:\Users\slvanessa\AppData\Local\Temporary Internet Files
O43 - CFD: 26/09/2013 - 20:43:45 - [175,211] ----D C:\Users\slvanessa\AppData\Local\VirtualStore
O43 - CFD: 17/12/2012 - 20:52:42 - [0,066] ----D C:\Users\slvanessa\AppData\Local\Windows Live
O43 - CFD: 26/09/2012 - 17:53:26 - [0,618] ----D C:\Users\slvanessa\AppData\Local\Windows Live Writer
O43 - CFD: 14/07/2009 - 05:54:32 - [0,014] R---D C:\Users\slvanessa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 11/07/2012 - 15:33:41 - [0] R---D C:\Users\slvanessa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 25/12/2012 - 16:11:46 - [0,006] ----D C:\Users\slvanessa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ASIO4ALL v2
O43 - CFD: 09/11/2013 - 21:45:24 - [0,004] ----D C:\Users\slvanessa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Awakening - Le Clocher du Soleil Edition Collector
O43 - CFD: 05/08/2013 - 16:31:14 - [0,003] ----D C:\Users\slvanessa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Barn Yarn
O43 - CFD: 04/11/2013 - 15:27:41 - [0,004] ----D C:\Users\slvanessa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Clockwork Tales - De Verre et d Encre Edition Collector
O43 - CFD: 23/05/2012 - 10:38:36 - [0,465] ----D C:\Users\slvanessa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\COKTEL
O43 - CFD: 10/11/2013 - 20:54:55 - [0,004] ----D C:\Users\slvanessa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Cooking Academy 2 - Cuisine du Monde
O43 - CFD: 26/07/2013 - 18:16:58 - [0,002] ----D C:\Users\slvanessa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\European Mystery - Un Parfum de Mystere Edition Collector
O43 - CFD: 09/06/2013 - 20:16:04 - [0,002] ----D C:\Users\slvanessa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
O43 - CFD: 04/11/2013 - 11:26:20 - [0,004] ----D C:\Users\slvanessa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Left in the Dark - Personne a Bord
O43 - CFD: 21/07/2013 - 16:54:18 - [0,003] ----D C:\Users\slvanessa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Luxor 3
O43 - CFD: 14/07/2009 - 05:49:38 - [0,001] R---D C:\Users\slvanessa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 13/11/2013 - 16:15:11 - [0,004] ----D C:\Users\slvanessa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Mountain Crime - Vengeance
O43 - CFD: 09/07/2013 - 20:43:12 - [0] ----D C:\Users\slvanessa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MSN FR
O43 - CFD: 28/05/2011 - 14:51:36 - [0] ----D C:\Users\slvanessa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\My Application
O43 - CFD: 07/11/2011 - 23:00:17 - [0] ----D C:\Users\slvanessa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Raptr
O43 - CFD: 27/11/2013 - 14:55:48 - [0,001] R---D C:\Users\slvanessa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
~ Program Folder: 431 Scanned in 00mn 34s



---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44)
O44 - LFC:[MD5.F63D770447054C69E668B710C239DB35] - 07/12/2013 - 09:34:57 -S-A- . (...) -- C:\Windows\bootstat.dat   [67584]
O44 - LFC:[MD5.1B52748CCE7AE7043D97FCF72101CCCB] - 07/12/2013 - 09:35:00 ---A- . (...) -- C:\Windows\setupact.log   [784]
O44 - LFC:[MD5.B44E8BAB05F7DA5D009446E2E88F82AC] - 07/12/2013 - 10:11:30 ---A- . (...) -- C:\Windows\WindowsUpdate.log   [1475106]
~ Files: 3 Scanned in 00mn 07s



---\\ Derniers fichiers créés dans Windows Prefetcher (O45)
O45 - LFCP:[MD5.AFA11410804D5E59CC254D2D885E4C01] - 01/12/2013 - 21:54:45 ---A- - C:\Windows\Prefetch\SVCHOST.EXE-3AB35CA7.pf
O45 - LFCP:[MD5.E86CC505FFB9C521FB3E599AA5784160] - 02/12/2013 - 09:36:46 ---A- - C:\Windows\Prefetch\UTILBUZZSEARCH.EXE-26930AEA.pf  =>PUP.BuzzSearch
O45 - LFCP:[MD5.166384F69867B467268DD1AB8F0A3AAB] - 02/12/2013 - 11:55:22 ---A- - C:\Windows\Prefetch\SC.EXE-1CF1DE92.pf
O45 - LFCP:[MD5.100545D4B9E9E160CAD84ABEFE5ED462] - 02/12/2013 - 11:55:23 ---A- - C:\Windows\Prefetch\BUZZSEARCH_SETUP.EXE-2B576DFF.pf  =>PUP.BuzzSearch
O45 - LFCP:[MD5.9D749BE33224B88C029D4773A7FB0F3A] - 02/12/2013 - 11:56:50 ---A- - C:\Windows\Prefetch\MOBOGENIE.EXE-0D86EF7B.pf
O45 - LFCP:[MD5.0A3A51E1763579FEA691092282D7B94D] - 02/12/2013 - 11:56:52 ---A- - C:\Windows\Prefetch\DAEMONPROCESS.EXE-AADED971.pf
O45 - LFCP:[MD5.199749857311BAF44C9CB0848345FD7A] - 02/12/2013 - 11:59:06 ---A- - C:\Windows\Prefetch\REGSVR32.EXE-D5170E12.pf
O45 - LFCP:[MD5.036F5533AAF742B2231B75901816399E] - 02/12/2013 - 11:59:14 ---A- - C:\Windows\Prefetch\BUZZSEARCHUNINSTALL.EXE-E09B0A75.pf  =>PUP.BuzzSearch
O45 - LFCP:[MD5.A3F8A04785280C6C483A302ED96156A1] - 02/12/2013 - 11:59:22 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-7FAA2E4C.pf
O45 - LFCP:[MD5.829A7DFA6BD64FB5C3C73B705719986E] - 02/12/2013 - 11:59:26 ---A- - C:\Windows\Prefetch\POWERSHELL.EXE-767FB1AE.pf
O45 - LFCP:[MD5.EE8D4F2564E1A2627847C5BA128B2313] - 02/12/2013 - 12:00:00 ---A- - C:\Windows\Prefetch\BONANZADEALSLIVEHANDLER.EXE-D4DB8421.pf  =>Adware.BonanzaDeals
O45 - LFCP:[MD5.CF9E70FF9C47FC5989998394295FA413] - 02/12/2013 - 12:00:10 ---A- - C:\Windows\Prefetch\BONANZADEALSLIVE.EXE-B181B230.pf  =>Adware.BonanzaDeals
O45 - LFCP:[MD5.2799542361A4382DB8278466B3AB73E0] - 02/12/2013 - 12:05:18 ---A- - C:\Windows\Prefetch\UPDATEBUZZSEARCH.EXE-452BAB52.pf  =>PUP.BuzzSearch
O45 - LFCP:[MD5.976490AD02BAAC49BF2F3A13A5DE4A9F] - 02/12/2013 - 12:06:44 ---A- - C:\Windows\Prefetch\MGUSB.EXE-73B3DA58.pf
O45 - LFCP:[MD5.5098B5776EAAAEC67CE4C5F87CEA5583] - 02/12/2013 - 21:19:42 ---A- - C:\Windows\Prefetch\Layout.ini
O45 - LFCP:[MD5.80EDCF79A92A594814DF59873E4C333A] - 02/12/2013 - 21:19:52 ---A- - C:\Windows\Prefetch\DEFRAG.EXE-588F90AD.pf
O45 - LFCP:[MD5.08151DBB07A42858A203239577E51D50] - 02/12/2013 - 21:19:52 ---A- - C:\Windows\Prefetch\SVCHOST.EXE-7AC6742A.pf
O45 - LFCP:[MD5.02B5CADEE56F65B497F441298B8FC39D] - 02/12/2013 - 21:21:48 ---A- - C:\Windows\Prefetch\ADVANCEDSYSTEMPROTECTOR.EXE-3139F283.pf  =>PUP.AdvancedSystemProtector
O45 - LFCP:[MD5.7BF500F1C2D06C0F50C8742B0C5D75D5] - 03/12/2013 - 15:14:38 ---A- - C:\Windows\Prefetch\TUAUTOUPDATECHECK.EXE-E342AFA2.pf
O45 - LFCP:[MD5.9EC5790E79B5731BC94F5D3ED0BD4D7C] - 04/12/2013 - 15:10:41 ---A- - C:\Windows\Prefetch\AUDACITY.EXE-35A27791.pf
O45 - LFCP:[MD5.0751FC789E0BACE5FBB4A21AEB80BA10] - 04/12/2013 - 15:11:27 ---A- - C:\Windows\Prefetch\WERFAULT.EXE-37549B7E.pf
O45 - LFCP:[MD5.1EE5F50F0DF0D71A2482D40F542B95CB] - 04/12/2013 - 20:08:46 ---A- - C:\Windows\Prefetch\TUNEUPSYSTEMSTATUSCHECK.EXE-32A203CB.pf
O45 - LFCP:[MD5.AE6DB08FE140BC619A41E13F8B87E2B7] - 05/12/2013 - 10:16:34 ---A- - C:\Windows\Prefetch\NISSRV.EXE-78BBD390.pf
O45 - LFCP:[MD5.33CFC1531956CAB9CDAE753D8087DBA7] - 05/12/2013 - 10:23:19 ---A- - C:\Windows\Prefetch\TASKKILL.EXE-E0105477.pf
O45 - LFCP:[MD5.BFE478157DDD12FC649082FEC0B69CC1] - 05/12/2013 - 10:23:24 ---A- - C:\Windows\Prefetch\SCHTASKS.EXE-AD598958.pf
O45 - LFCP:[MD5.DF482310FE3E013B45AFA9263678BF6B] - 05/12/2013 - 10:23:28 ---A- - C:\Windows\Prefetch\_IU14D2N.TMP-E2356312.pf
O45 - LFCP:[MD5.E718994E78B15DF59CCBF76A46354F14] - 05/12/2013 - 10:37:40 ---A- - C:\Windows\Prefetch\SVCHOST.EXE-7CFEDEA3.pf
O45 - LFCP:[MD5.F4FB5182B0F2ECF76DD1E3F7C8CB638F] - 05/12/2013 - 10:37:40 ---A- - C:\Windows\Prefetch\VSSVC.EXE-B8AFC319.pf
O45 - LFCP:[MD5.761AA9FA2045447625E412CFAF69EFB8] - 05/12/2013 - 15:37:53 ---A- - C:\Windows\Prefetch\AVGIDSAGENT.EXE-73FF1E5B.pf
O45 - LFCP:[MD5.49C091EA468703B7726339AADFF650EE] - 05/12/2013 - 16:23:24 ---A- - C:\Windows\Prefetch\TUMESSAGES.EXE-59CDEE00.pf
O45 - LFCP:[MD5.C5C76D789A9FF3376CBCBB1E2961CC2A] - 05/12/2013 - 22:02:03 ---A- - C:\Windows\Prefetch\TURATINGSYNCH.EXE-70CAEDC2.pf
O45 - LFCP:[MD5.CE73F899A5988545AABF19ACD2390759] - 05/12/2013 - 23:46:23 ---A- - C:\Windows\Prefetch\RUNONCE.EXE-D0649312.pf
O45 - LFCP:[MD5.D29428B489BB4D5684F9576E98E82FFD] - 05/12/2013 - 23:46:26 ---A- - C:\Windows\Prefetch\IGFXPERS.EXE-254DBA08.pf
O45 - LFCP:[MD5.33B3564757FEE60C25CBF2DBEFD70475] - 05/12/2013 - 23:46:27 ---A- - C:\Windows\Prefetch\MSSECES.EXE-E7D2F51E.pf
O45 - LFCP:[MD5.D1204AC4285831836474410CF4402416] - 05/12/2013 - 23:51:01 ---A- - C:\Windows\Prefetch\ONECLICKSTARTER.EXE-25620234.pf
O45 - LFCP:[MD5.AB37C34DE84EC451FE35EF4877E72073] - 05/12/2013 - 23:51:02 ---A- - C:\Windows\Prefetch\TUNEUPUTILITIESAPP64.EXE-E14C1173.pf
O45 - LFCP:[MD5.79F16D24AC6ADEFA6E09115EE010CFCE] - 06/12/2013 - 17:47:55 ---A- - C:\Windows\Prefetch\SYNC.EXE-E60C8795.pf
O45 - LFCP:[MD5.9CDB3721B2CB407E7921EA16D26DB7D1] - 06/12/2013 - 17:59:11 ---A- - C:\Windows\Prefetch\WUAUCLT.EXE-70318591.pf
O45 - LFCP:[MD5.2F530C8CCA4A19B23C598559586CB47F] - 06/12/2013 - 17:59:12 ---A- - C:\Windows\Prefetch\MPSIGSTUB.EXE-6CB27A06.pf
O45 - LFCP:[MD5.D0A4DA5FC24DCD1E63666FA1CB6D1DCB] - 06/12/2013 - 18:16:16 ---A- - C:\Windows\Prefetch\SNDVOL.EXE-5D4CC7D6.pf
O45 - LFCP:[MD5.C5F411CBC9EDFCA0AEDEB98C9A4E39C0] - 07/12/2013 - 09:22:19 ---A- - C:\Windows\Prefetch\AgCx_SC1.db.trx
O45 - LFCP:[MD5.3EF4075E9DFEE2615EF886808B87820F] - 07/12/2013 - 09:23:07 ---A- - C:\Windows\Prefetch\WMPLAYER.EXE-26C72A86.pf
O45 - LFCP:[MD5.2FB0D6F2DF93016247B0D1C6F094F527] - 07/12/2013 - 09:23:19 ---A- - C:\Windows\Prefetch\AgCx_SC1.db
O45 - LFCP:[MD5.27EEC6802456E431393A0199B14987BD] - 07/12/2013 - 09:26:16 ---A- - C:\Windows\Prefetch\AVGSRMAA.EXE-57257424.pf
O45 - LFCP:[MD5.85F024753E2F92F5751168907B5CF932] - 07/12/2013 - 09:26:21 ---A- - C:\Windows\Prefetch\AgGlUAD_P_S-1-5-21-4131387925-2258615089-634791745-1000.db
O45 - LFCP:[MD5.F030B9CAD2890E5D270EFD72E025AA08] - 07/12/2013 - 09:26:21 ---A- - C:\Windows\Prefetch\AgGlUAD_S-1-5-21-4131387925-2258615089-634791745-1000.db
O45 - LFCP:[MD5.E0150BCE01A458CB8381006A16E213EF] - 07/12/2013 - 09:28:13 ---A- - C:\Windows\Prefetch\AVGCMGR.EXE-1B6BDD85.pf
O45 - LFCP:[MD5.32075A5AC0367D17FEB2124CCBE32BE0] - 07/12/2013 - 09:32:27 ---A- - C:\Windows\Prefetch\TRUSTEDINSTALLER.EXE-3CC531E5.pf
O45 - LFCP:[MD5.A712FC0FACDD353D63241B96DC80F983] - 07/12/2013 - 09:34:01 ---A- - C:\Windows\Prefetch\PfSvPerfStats.bin
O45 - LFCP:[MD5.BC6978A48B0110D3BEF0F630976784C9] - 07/12/2013 - 09:36:14 ---A- - C:\Windows\Prefetch\IGFXTRAY.EXE-C444237E.pf
O45 - LFCP:[MD5.24155191AD597F2F411057052D960710] - 07/12/2013 - 09:36:14 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-DE9673F9.pf
O45 - LFCP:[MD5.7C8D8B69316D7223EED204867CD3BABF] - 07/12/2013 - 09:36:22 ---A- - C:\Windows\Prefetch\AVGTRAY.EXE-08051500.pf
O45 - LFCP:[MD5.1A51CC3E175D2CD7F71D4101E20E14AF] - 07/12/2013 - 09:36:22 ---A- - C:\Windows\Prefetch\QUICKSTART.EXE-87E0AC97.pf
O45 - LFCP:[MD5.8031954425877CF1B9C8EA7DBC163111] - 07/12/2013 - 09:36:22 ---A- - C:\Windows\Prefetch\RUNONCE.EXE-0E293DD6.pf
O45 - LFCP:[MD5.9748744C64EE87008ED2765D9A930AE8] - 07/12/2013 - 09:36:28 ---A- - C:\Windows\Prefetch\VISICOM_ANTIPHISHING.EXE-74653CFB.pf
O45 - LFCP:[MD5.C1CFA012D4727DF6D44B4B987E8B4C3E] - 07/12/2013 - 09:36:30 ---A- - C:\Windows\Prefetch\FIGHTERSTRAY.EXE-11537225.pf
O45 - LFCP:[MD5.51F37451087D0CB12C1EA1C7036D805F] - 07/12/2013 - 09:36:31 ---A- - C:\Windows\Prefetch\SOFFICE.EXE-8BFABAE3.pf
O45 - LFCP:[MD5.E41CB3229C476A63FEC776089AA5DDC8] - 07/12/2013 - 09:36:33 ---A- - C:\Windows\Prefetch\GFXUI.EXE-C6B3880F.pf
O45 - LFCP:[MD5.F7D05206D312DB642BACDB01871211D1] - 07/12/2013 - 09:36:34 ---A- - C:\Windows\Prefetch\WMPNETWK.EXE-D9F2A96F.pf
O45 - LFCP:[MD5.C28D0E1C871AEB08F451C18682F22FF2] - 07/12/2013 - 09:36:35 ---A- - C:\Windows\Prefetch\HKCMD.EXE-AE1DFF3B.pf
O45 - LFCP:[MD5.04CC2BD64ECE79FE53BAC9006D786CBD] - 07/12/2013 - 09:36:40 ---A- - C:\Windows\Prefetch\SOFFICE.BIN-7F88D3BE.pf
O45 - LFCP:[MD5.73B32A0620E0B757B5C58B947D237222] - 07/12/2013 - 09:37:22 ---A- - C:\Windows\Prefetch\AgCx_SC4.db
O45 - LFCP:[MD5.190521F8F43B7B415B8F5DDDEC5725EF] - 07/12/2013 - 09:37:30 ---A- - C:\Windows\Prefetch\MSCORSVW.EXE-57D17DAF.pf
O45 - LFCP:[MD5.3B4FA3A16B8DD7B7BAB7F49BDD90F266] - 07/12/2013 - 09:37:30 ---A- - C:\Windows\Prefetch\MSCORSVW.EXE-C3C515BD.pf
O45 - LFCP:[MD5.4FD732DC344760068BE718C27D1A3EBE] - 07/12/2013 - 09:39:08 ---A- - C:\Windows\Prefetch\WMIADAP.EXE-F8DFDFA2.pf
O45 - LFCP:[MD5.AEDBDE93ADE85B2CB9FC9F1B827DCD55] - 07/12/2013 - 09:40:14 ---A- - C:\Windows\Prefetch\FLASHUTIL64_11_9_900_152_ACTI-C653C16B.pf
O45 - LFCP:[MD5.F4B32D196107823FFAC104FB5DFAC6ED] - 07/12/2013 - 09:41:16 ---A- - C:\Windows\Prefetch\SVCHOST.EXE-E2C2633A.pf
O45 - LFCP:[MD5.82165F63BBC5F99895ED4C19F481281A] - 07/12/2013 - 09:41:22 ---A- - C:\Windows\Prefetch\AVGDIAGEX.EXE-5112A792.pf
O45 - LFCP:[MD5.00B03C5653C6ABF8429A90FBF3F73743] - 07/12/2013 - 09:43:36 ---A- - C:\Windows\Prefetch\ACRORD32.EXE-D066635E.pf
O45 - LFCP:[MD5.A5AFEA9ABAABD8383BBAA624138B040E] - 07/12/2013 - 09:47:53 ---A- - C:\Windows\Prefetch\WERMGR.EXE-0F2AC88C.pf
O45 - LFCP:[MD5.569106FDF01F4BC8E34C02CA885C7070] - 07/12/2013 - 09:49:05 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-02CC9EFF.pf
O45 - LFCP:[MD5.32B16995C7865AB15135F286E3923535] - 07/12/2013 - 09:52:07 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-ECB71776.pf
O45 - LFCP:[MD5.191076138E6CB8ABFABF90D5BC843A8D] - 07/12/2013 - 09:52:10 ---A- - C:\Windows\Prefetch\AUDIODG.EXE-BDFD3029.pf
O45 - LFCP:[MD5.D028A8975B3B6497DA5DE5580D630E88] - 07/12/2013 - 09:52:43 ---A- - C:\Windows\Prefetch\MSIEXEC.EXE-A2D55CB6.pf
O45 - LFCP:[MD5.9247AD187DCE9C1F97A3E9E25E268BA1] - 07/12/2013 - 09:52:58 ---A- - C:\Windows\Prefetch\WMIPRVSE.EXE-1628051C.pf
O45 - LFCP:[MD5.8CF738BC96C2863E58FDA6A0ECBC8C46] - 07/12/2013 - 09:56:16 ---A- - C:\Windows\Prefetch\EXPLORER.EXE-A80E4F97.pf
O45 - LFCP:[MD5.39B84FC580DB3C070808C4BCA03D4F9A] - 07/12/2013 - 10:00:01 ---A- - C:\Windows\Prefetch\AVGSRMAX.EXE-13D93617.pf
O45 - LFCP:[MD5.5155FA2BDAFC8BF00BD14393B6E3078D] - 07/12/2013 - 10:04:28 ---A- - C:\Windows\Prefetch\AU_.EXE-FB70C1AD.pf
O45 - LFCP:[MD5.6696E9C4E7455873962BCDD805CCAF16] - 07/12/2013 - 10:04:29 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-97F6A314.pf
O45 - LFCP:[MD5.5F98E9F21481AAF750817B546B7162C3] - 07/12/2013 - 10:04:30 ---A- - C:\Windows\Prefetch\IEXPLORE.EXE-4B6C9213.pf
O45 - LFCP:[MD5.FB6D381BE47BAE93E0BBA10DAE113A91] - 07/12/2013 - 10:04:32 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-27E99165.pf
O45 - LFCP:[MD5.25246089C2E3FC8011CFA059721D724C] - 07/12/2013 - 10:05:06 ---A- - C:\Windows\Prefetch\FIXCFG.EXE-E71DA265.pf
O45 - LFCP:[MD5.D0CFAE1A6172179E5EF9CB475B516B87] - 07/12/2013 - 10:05:08 ---A- - C:\Windows\Prefetch\DUP.EXE-E3FF5006.pf
O45 - LFCP:[MD5.200300F17067795E494E04314AA3CBCA] - 07/12/2013 - 10:06:30 ---A- - C:\Windows\Prefetch\TASKHOST.EXE-7238F31D.pf
O45 - LFCP:[MD5.6D8D2B4BCE9B3D6295931B657213DFC8] - 07/12/2013 - 10:07:48 ---A- - C:\Windows\Prefetch\MPCMDRUN.EXE-6AA90EA5.pf
O45 - LFCP:[MD5.687E0A5D4D4F735E1AB551F271EB7912] - 07/12/2013 - 10:08:20 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-5E46FA0D.pf
O45 - LFCP:[MD5.9E95438E91F9D0ACE9336910FC9ED0D8] - 07/12/2013 - 10:10:15 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-F3DA5201.pf
O45 - LFCP:[MD5.1F09AA51921470BD8616382A382F622C] - 07/12/2013 - 10:10:28 ---A- - C:\Windows\Prefetch\CONSENT.EXE-531BD9EA.pf
O45 - LFCP:[MD5.C5C64121FA13A73DBCD0CF509D69C038] - 07/12/2013 - 10:10:33 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-766398D2.pf
O45 - LFCP:[MD5.C3288E213940745EEB60BD70F6C1000A] - 07/12/2013 - 10:10:35 ---A- - C:\Windows\Prefetch\TASKENG.EXE-48D4E289.pf
O45 - LFCP:[MD5.7B87DC5FE3BAA2949E6FC6D4C395B9C2] - 07/12/2013 - 10:10:56 ---A- - C:\Windows\Prefetch\AgGlFaultHistory.db
O45 - LFCP:[MD5.22150EEA97A982437FFB4F8873310429] - 07/12/2013 - 10:10:56 ---A- - C:\Windows\Prefetch\AgGlGlobalHistory.db
O45 - LFCP:[MD5.6B95D1195CDE6776ACCF1CDAE1140403] - 07/12/2013 - 10:10:56 ---A- - C:\Windows\Prefetch\AgRobust.db
O45 - LFCP:[MD5.A8B5B8D472D738686A1664883A0DBC8F] - 07/12/2013 - 10:10:57 ---A- - C:\Windows\Prefetch\AgGlFgAppHistory.db
O45 - LFCP:[MD5.D96C44D3FFA5D4DEAFFA85681DBD2B05] - 07/12/2013 - 10:11:11 ---A- - C:\Windows\Prefetch\SPPSVC.EXE-B0F8131B.pf
O45 - LFCP:[MD5.DE27614977ACB9E3F4004883B1B318BD] - 07/12/2013 - 10:11:14 ---A- - C:\Windows\Prefetch\IEXPLORE.EXE-908C99F8.pf
O45 - LFCP:[MD5.601580178761CFB64FC67327E491B05D] - 07/12/2013 - 10:11:22 ---A- - C:\Windows\Prefetch\SVCHOST.EXE-80F4A784.pf
O45 - LFCP:[MD5.67B29FD56BCFD72E18A11B00433C692D] - 07/12/2013 - 10:11:31 ---A- - C:\Windows\Prefetch\IGFXSRVC.EXE-96A493A4.pf
O45 - LFCP:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 25/12/2173 - 09:26:48 ----D - C:\Windows\Prefetch\ReadyBoot
O45 - LFCP:[MD5.B8B5EA6594F0E2459CDB17457AED6CE2] - 26/11/2013 - 19:42:02 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-411A328D.pf
O45 - LFCP:[MD5.BFE780FC806D8662B9B68BBC854A609E] - 27/11/2013 - 10:17:14 ---A- - C:\Windows\Prefetch\AM_DELTA_PATCH_1.163.622.0.EX-ADFBCE14.pf
O45 - LFCP:[MD5.15E7BC2EF2BFB65501206134A0102F90] - 27/11/2013 - 10:32:14 ---A- - C:\Windows\Prefetch\ADOBEARM.EXE-7105D3A2.pf
O45 - LFCP:[MD5.825143B6FFB1D3A1203915ED4F4A1287] - 27/11/2013 - 14:44:41 ---A- - C:\Windows\Prefetch\AUDACITY-2-0-5_SOFTPOM.EXE-DE5D5C68.pf
O45 - LFCP:[MD5.D26DFE1241BF6E53EEB16B75D8163010] - 27/11/2013 - 14:44:53 ---A- - C:\Windows\Prefetch\WAJAM_VALIDATE.EXE-A865438F.pf  =>PUP.Wajam
O45 - LFCP:[MD5.59A79021B83E66B9AA447FB95B7D0BA5] - 27/11/2013 - 14:45:01 ---A- - C:\Windows\Prefetch\NPIWRAPPER.EXE-0623CF43.pf
O45 - LFCP:[MD5.6BE90A51A582BD37AE04F6F12B92021A] - 27/11/2013 - 14:45:09 ---A- - C:\Windows\Prefetch\BD.EXE-12E19A9B.pf
O45 - LFCP:[MD5.D8608CBA9FBE9F94CD7D8D2D5A7CD645] - 27/11/2013 - 14:45:10 ---A- - C:\Windows\Prefetch\UNINST.EXE-391F1F9E.pf
O45 - LFCP:[MD5.07156037561D1572F65D6D63B719BC1B] - 27/11/2013 - 14:45:14 ---A- - C:\Windows\Prefetch\BONANZADEALSLIVE.EXE-EB1F81B7.pf  =>Adware.BonanzaDeals
O45 - LFCP:[MD5.61BBAA3497C125B390ED192B1E7E8A97] - 27/11/2013 - 14:45:16 ---A- - C:\Windows\Prefetch\BONANZADEALSLIVE.EXE-50EECF35.pf  =>Adware.BonanzaDeals
O45 - LFCP:[MD5.6B267B979116A9829EF0A1E255201F6B] - 27/11/2013 - 14:45:32 ---A- - C:\Windows\Prefetch\BUZZSEARCHSETUP.EXE-A950DB92.pf  =>PUP.BuzzSearch
O45 - LFCP:[MD5.A54BE86A40123301BECFFDFEA4F7DF51] - 27/11/2013 - 14:45:54 ---A- - C:\Windows\Prefetch\RCPSETUP_ADPPI2_ADPPI2.EXE-652ADD53.pf
O45 - LFCP:[MD5.2086EF70A94A9751EDD305F293786975] - 27/11/2013 - 14:45:55 ---A- - C:\Windows\Prefetch\RCPSETUP_ADPPI2_ADPPI2.TMP-FAD20A14.pf
O45 - LFCP:[MD5.82D09671E995FC5AC05EC328C3461DD6] - 27/11/2013 - 14:45:55 ---A- - C:\Windows\Prefetch\UNINSTALLER.EXE-39BB1FCD.pf
O45 - LFCP:[MD5.875975A0045EDBC31FC0760FF89C1504] - 27/11/2013 - 14:46:04 ---A- - C:\Windows\Prefetch\MOBOGENIE_SETUP_2.1.25_501.EX-A275FD72.pf
O45 - LFCP:[MD5.4047BD92D428389E3972BB8011CA6103] - 27/11/2013 - 14:46:19 ---A- - C:\Windows\Prefetch\CLOUD_BACKUP_SETUP_INTL.EXE-67247175.pf
O45 - LFCP:[MD5.ED8C4D76391C08B0088302DEC8EAB991] - 27/11/2013 - 14:46:22 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-C835004E.pf
O45 - LFCP:[MD5.71BC1F91BCA46144D30A35F5CF426624] - 27/11/2013 - 14:46:29 ---A- - C:\Windows\Prefetch\SYSTWEAKASP.EXE-ACB43CC6.pf
O45 - LFCP:[MD5.5851D137064ACE07DDAC633F6DD4EF75] - 27/11/2013 - 14:46:30 ---A- - C:\Windows\Prefetch\SYSTWEAKASP.TMP-EF6E0F9E.pf
O45 - LFCP:[MD5.E814894E72B2D8B4C62EC6FAD3CB1403] - 27/11/2013 - 14:46:49 ---A- - C:\Windows\Prefetch\BACKUPSETUP.EXE-29BDAFFC.pf
O45 - LFCP:[MD5.F226AB26495C682C67581B74A2BB1284] - 27/11/2013 - 14:46:58 ---A- - C:\Windows\Prefetch\ASPSETUP.EXE-336103FF.pf
O45 - LFCP:[MD5.CE2F2967D61839EF7CC13B94E54FA3AD] - 27/11/2013 - 14:47:02 ---A- - C:\Windows\Prefetch\ASPSETUP.TMP-2E2492EE.pf
O45 - LFCP:[MD5.5AB815D52085B3A7DB3ED6AD5EBE5E47] - 27/11/2013 - 14:47:28 ---A- - C:\Windows\Prefetch\AUDACITY.EXE-440B7AC0.pf
O45 - LFCP:[MD5.3EB95AE579DD46A13B471CA279C3F2EC] - 27/11/2013 - 14:47:30 ---A- - C:\Windows\Prefetch\AUDACITY.TMP-0C79975B.pf
O45 - LFCP:[MD5.092B207E595781EA3F337BA85570AD06] - 27/11/2013 - 14:49:25 ---A- - C:\Windows\Prefetch\MYPC BACKUP.EXE-98FB306F.pf  =>PUP.MyPCBackup
O45 - LFCP:[MD5.53E40CD82CB47D812CB13D96254D8A8B] - 27/11/2013 - 14:50:25 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-87432CEE.pf
O45 - LFCP:[MD5.AFB6A4345B148A97CF0F53E2979088BD] - 27/11/2013 - 14:54:08 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-1304AE86.pf
O45 - LFCP:[MD5.9C763CA0A9AFB7C78925725C0AC4EF1F] - 27/11/2013 - 14:54:13 ---A- - C:\Windows\Prefetch\REGCLEANPRO.EXE-784D856D.pf
O45 - LFCP:[MD5.5DC5D9F74669387A311A37F2A5E80FB6] - 27/11/2013 - 14:55:14 ---A- - C:\Windows\Prefetch\CLEANSCHEDULE.EXE-61EE7C39.pf
O45 - LFCP:[MD5.0C7EAF2F9B23A34DA90DFB55EED40707] - 27/11/2013 - 14:55:14 ---A- - C:\Windows\Prefetch\UNINS000.EXE-252C2B3C.pf
O45 - LFCP:[MD5.EB35C28BB6F566E3A178431F6CE2F5A0] - 27/11/2013 - 14:55:30 ---A- - C:\Windows\Prefetch\UNINST.EXE-B9980321.pf
O45 - LFCP:[MD5.CAAA713A9E7AB71691E6DEF380C9DFAF] - 27/11/2013 - 14:55:36 ---A- - C:\Windows\Prefetch\SIGNUP WIZARD.EXE-CEFD4E77.pf
O45 - LFCP:[MD5.D2059AB6686BB8711E8EFCECD1EED7A6] - 27/11/2013 - 14:55:42 ---A- - C:\Windows\Prefetch\REGISTEREXTENSIONDOTNET20_X86-4647FEBF.pf
O45 - LFCP:[MD5.5DD2A68ED079AEA7FD48D189E7462895] - 27/11/2013 - 14:55:44 ---A- - C:\Windows\Prefetch\REGISTEREXTENSIONDOTNET20_X64-54B7A73B.pf
O45 - LFCP:[MD5.B7DF2655F62C3A7065D0ACFCC237D1F7] - 27/11/2013 - 14:55:47 ---A- - C:\Windows\Prefetch\UNREGISTEREXTENSIONS.EXE-58074A5C.pf
O45 - LFCP:[MD5.DC8F9CA5022B695BF2A86550CB1C2228] - 27/11/2013 - 14:55:48 ---A- - C:\Windows\Prefetch\CMD.EXE-4A81B364.pf
O45 - LFCP:[MD5.E7070163D9415C9B29CB429434718F0D] - 27/11/2013 - 14:55:48 ---A- - C:\Windows\Prefetch\RESTARTEXPLORER.EXE-E04E1792.pf
O45 - LFCP:[MD5.0DDE4B0C8C0B9F6A0D5F383BB0F02B60] - 27/11/2013 - 15:17:28 ---A- - C:\Windows\Prefetch\TASKMGR.EXE-5F5F473D.pf
O45 - LFCP:[MD5.E8C7667A7C001CB4B3EA0CE89DF21458] - 29/11/2013 - 15:42:20 ---A- - C:\Windows\Prefetch\GMACTIVATOR.EXE-A7AE8A30.pf
O45 - LFCP:[MD5.42DDC8CEF2754B26325EA9788630921E] - 29/11/2013 - 15:42:57 ---A- - C:\Windows\Prefetch\LUXOR 3.EXE-71D221BB.pf
O45 - LFCP:[MD5.6B040CC0899EC08EF458C0E20F2CF7AD] - 29/11/2013 - 15:59:35 ---A- - C:\Windows\Prefetch\VBTMSMB.EXE-A8F52E31.pf
O45 - LFCP:[MD5.4607B6A7390A64BB1251E7FDB79FB1AA] - 30/11/2013 - 15:04:49 ---A- - C:\Windows\Prefetch\NTOSBOOT-B00DFAAD.pf
~ Prefetcher: 141 Scanned in 00mn 02s



---\\ Déni du service (Local Security Authority) (O48)
O48 - LSA:Local Security Authority Authentication Packages . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\Windows\System32\msv1_0.dll
O48 - LSA:Local Security Authority Notification Packages . (.Microsoft Corporation - Moteur du client de l’Éditeur de configuration de sécurité Windows.) -- C:\Windows\System32\scecli.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Package de sécurité Kerberos.) -- C:\Windows\System32\kerberos.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\Windows\System32\msv1_0.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - TLS / SSL Security Provider.) -- C:\Windows\System32\schannel.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Digest Access.) -- C:\Windows\System32\wdigest.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Web Service Security Package.) -- C:\Windows\System32\tspkg.dll
O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Pku2u Security Package.) -- C:\Windows\System32\pku2u.dll
~ LSA: 8 Scanned in 00mn 00s



---\\ Contrôle du Safe Boot (CSB) (O49)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris série.) -- C:\Windows\System32\Drivers\sermouse.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\Windows\System32\Drivers\vga.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vgasave.sys . (...) -- C:\Windows\System32\Drivers\vgasave.sys (.not file.)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\System32\Drivers\volmgr.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgrx.sys . (.Microsoft Corporation - Pilote d’extension du gestionnaire de volumes.) -- C:\Windows\System32\Drivers\volmgrx.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\ipnat.sys . (.Microsoft Corporation - IP Network Address Translator.) -- C:\Windows\System32\Drivers\ipnat.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\nsiproxy.sys . (.Microsoft Corporation - NSI Proxy.) -- C:\Windows\System32\Drivers\nsiproxy.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\rdpencdd.sys . (.Microsoft Corporation - RDP Encoder Miniport.) -- C:\Windows\System32\Drivers\rdpencdd.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris série.) -- C:\Windows\System32\Drivers\sermouse.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\Windows\System32\Drivers\vga.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vgasave.sys . (...) -- C:\Windows\System32\Drivers\vgasave.sys (.not file.)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\System32\Drivers\volmgr.sys
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgrx.sys . (.Microsoft Corporation - Pilote d’extension du gestionnaire de volumes.) -- C:\Windows\System32\Drivers\volmgrx.sys
~ CSB: 13 Scanned in 00mn 00s



---\\ Image File Execution Options (IFEO) (O50)
O50 - IFEO:Image File Execution Options - hpsf.exe - "C:\Program Files (x86)\TuneUp Utilities 2012\TUAutoReactivator64.exe"
O50 - IFEO:Image File Execution Options - iastorui.exe - "C:\Program Files (x86)\TuneUp Utilities 2012\TUAutoReactivator64.exe"
O50 - IFEO:Image File Execution Options - lightscribecontrolpanel.exe - "C:\Program Files (x86)\TuneUp Utilities 2012\TUAutoReactivator64.exe"
O50 - IFEO:Image File Execution Options - lslauncher.exe - "C:\Program Files (x86)\TuneUp Utilities 2012\TUAutoReactivator64.exe"
~ IFEO:  Scanned in 00mn 00s



---\\ Clé de registre Shell MountPoints2 (MPKS) (O51)
O51 - MPSK:{a9e8f552-e1f0-11e0-8d42-c5d5184d349b}\AutoRun\command. (...) -- F:\LaunchU3.exe (.not file.)
~ Keys:  Scanned in 00mn 00s



---\\ Recherche d'infection sur les pilotes (HKLM)(TDSD) (O52)
O52 - TDSD: \Drivers32\"msacm.l3acm"="C:\Windows\System32\l3codeca.acm" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm
O52 - TDSD: \drivers.desc\"C:\Windows\System32\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm
~ TDSD: 2 Scanned in 00mn 01s



---\\ Enumération des clés de registre StartupReg (SMSR) (O53)
O53 - SMSR:HKLM\...\startupreg\Adobe ARM  [Key] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe  =>.Adobe Systems Incorporated
O53 - SMSR:HKLM\...\startupreg\HotKeysCmds  [Key] . (.Intel Corporation - hkcmd Module.) -- C:\Windows\system32\hkcmd.exe
O53 - SMSR:HKLM\...\startupreg\HP Quick Launch  [Key] . (...) -- C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\HPAdvisorDock  [Key] . (...) -- C:\Program Files (x86)\Hewlett-Packard\HP Advisor\Dock\HPAdvisorDock.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\HPWirelessAssistant  [Key] . (...) -- C:\Program Files\Hewlett-Packard\HP Wireless Assistant\DelayedAppStarter.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\IAStorIcon  [Key] . (.Intel Corporation - IAStorIcon.) -- C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
O53 - SMSR:HKLM\...\startupreg\IgfxTray  [Key] . (.Intel Corporation - igfxTray Module.) -- C:\Windows\system32\igfxtray.exe
O53 - SMSR:HKLM\...\startupreg\Norton Online Backup  [Key] . (...) -- C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuClient.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\orangeinside  [Key] . (.Orange - Executable Orange Inside.) -- C:\Users\slvanessa\AppData\Roaming\Orange\OrangeInside\one\OrangeInside.exe
O53 - SMSR:HKLM\...\startupreg\Persistence  [Key] . (.Intel Corporation - persistence Module.) -- C:\Windows\system32\igfxpers.exe
O53 - SMSR:HKLM\...\startupreg\RTHDVCPL  [Key] . (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe  =>.Realtek Semiconductor Corp
~ SMSR Keys: 25 Scanned in 00mn 00s



---\\ Enumération des clés de registre SecurityProviders (MCSP) (O54)
O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\System32\credssp.dll
O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\System32\credssp.dll
~ MSCP: 2 Scanned in 00mn 00s



---\\ Enumération des clés de registre PoliciesSystem (MWPS) (O55)
O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorAdmin"=5
O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorUser"=3
O55 - MWPS:[HKLM\...\Policies\System] - "EnableInstallerDetection"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableLUA"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableSecureUIAPaths"=1
O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0
O55 - MWPS:[HKLM\...\Policies\System] - "EnableVirtualization"=1
O55 - MWPS:[HKLM\...\Policies\System] - "PromptOnSecureDesktop"=1
O55 - MWPS:[HKLM\...\Policies\System] - "ValidateAdminCodeSignatures"=0
O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"=0
O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"=0
O55 - MWPS:[HKLM\...\Policies\System] - "scforceoption"=0
O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1
O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0
O55 - MWPS:[HKLM\...\Policies\System] - "HideFastUserSwitching"=0
O55 - MWPS:[HKCU\...\Policies\System] - "DisableLockWorkstation"=0
O55 - MWPS:[HKCU\...\Policies\System] - "DisableTaskMgr"=0
O55 - MWPS:[HKCU\...\Policies\System] - "DisableChangePassword"=0
~ MWPS: 20 Scanned in 00mn 00s



---\\ Enumération des clés de registre PoliciesExplorer (MWPE) (O56)
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktop"=1
O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktopChanges"=1
O56 - MWPE:[HKLM\...\policies\Explorer] - "ForceActiveDesktopOn"=0
O56 - MWPE:[HKLM\...\policies\Explorer] - "EnableShellExecuteHooks"=1
~ MWPE Keys: 4 Scanned in 00mn 00s



---\\ Liste des pilotes du système (SDL) (O58)
O58 - SDL:[MD5.2F6B34B83843F0C5118B63AC634F5BF4] - 14/07/2009 - 02:52:21 ---A- . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\System32\Drivers\adp94xx.sys   [491088]
O58 - SDL:[MD5.597F78224EE9224EA1A13D6350CED962] - 14/07/2009 - 02:52:21 ---A- . (.Adaptec, Inc. - Adaptec Windows SATA Storport Driver.) -- C:\Windows\System32\Drivers\adpahci.sys   [339536]
O58 - SDL:[MD5.E109549C90F62FB570B9540C4B148E54] - 14/07/2009 - 02:52:21 ---A- . (.Adaptec, Inc. - Adaptec StorPort Ultra320 SCSI Driver (X64).) -- C:\Windows\System32\Drivers\adpu320.sys   [182864]
O58 - SDL:[MD5.98022774D9930ECBB292E70DB7601DF6] - 10/06/2009 - 22:01:06 ---A- . (.LSI Corp - SoftModem Device Driver.) -- C:\Windows\System32\Drivers\agrsm64.sys   [1146880]
O58 - SDL:[MD5.5812713A477A3AD7363C7438CA2EE038] - 14/07/2009 - 02:52:21 ---A- . (.Acer Laboratories Inc. - ALi mini IDE Driver.) -- C:\Windows\System32\Drivers\aliide.sys   [15440]
O58 - SDL:[MD5.EC7EBAB00A4D8448BAB68D1E49B4BEB9] - 11/03/2011 - 07:22:41 ---A- . (.Advanced Micro Devices - AHCI 1.2 Device Driver.) -- C:\Windows\System32\Drivers\amdsata.sys   [107904]
O58 - SDL:[MD5.F67F933E79241ED32FF46A4F29B5120B] - 14/07/2009 - 02:52:20 ---A- . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller Driver for Windows -.) -- C:\Windows\System32\Drivers\amdsbs.sys   [194128]
O58 - SDL:[MD5.DB27766102C7BF7E95140A2AA81D042E] - 11/03/2011 - 07:22:40 ---A- . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\Windows\System32\Drivers\amdxata.sys   [27008]
O58 - SDL:[MD5.C484F8CEB1717C540242531DB7845C4E] - 14/07/2009 - 02:52:21 ---A- . (.Adaptec, Inc. - Adaptec RAID Storport Driver.) -- C:\Windows\System32\Drivers\arc.sys   [87632]
O58 - SDL:[MD5.019AF6924AEFE7839F61C830227FE79C] - 14/07/2009 - 02:52:21 ---A- . (.Adaptec, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\System32\Drivers\arcsas.sys   [97856]
O58 - SDL:[MD5.E857EEE6B92AAA473EBB3465ADD8F7E7] - 20/06/2009 - 03:09:57 ---A- . (.Atheros Communications, Inc. - Atheros Extensible Wireless LAN device driver.) -- C:\Windows\System32\Drivers\athrx.sys   [1394688]
O58 - SDL:[MD5.2D648572BA9A610952FCAFBA1E119C2D] - 06/05/2010 - 14:21:46 ---A- . (.ATI Technologies, Inc. - ATI High Definition Audio Function Driver.) -- C:\Windows\System32\Drivers\AtiHdmi.sys   [125456]
O58 - SDL:[MD5.8155EA1864D1FA8B168C46C41ED97A76] - 22/06/2010 - 08:17:52 ---A- . (.ATI Technologies Inc. - ATI Radeon Kernel Mode Driver.) -- C:\Windows\System32\Drivers\atikmdag.sys   [6856704]
O58 - SDL:[MD5.4841C7AF2BAC05AE23955D65B4336446] - 22/06/2010 - 06:24:12 ---A- . (.Advanced Micro Devices, Inc. - AMD multi-vendor Miniport Driver.) -- C:\Windows\System32\Drivers\atikmpag.sys   [264192]
O58 - SDL:[MD5.705417FD6C165CCF926ACA943B478D68] - 12/07/2010 - 03:34:00 ---A- . (.AVG Technologies CZ, s.r.o. - AVG Filter Driver.) -- C:\Windows\System32\Drivers\avgfwd6a.sys   [57696]
O58 - SDL:[MD5.633360E94804E7BAFE642017817C9413] - 10/12/2012 - 03:28:34 ---A- . (.AVG Technologies CZ, s.r.o. - IDS Application Activity Monitor Driver..) -- C:\Windows\System32\Drivers\avgidsdrivera.sys   [127328]
O58 - SDL:[MD5.0F293406F64B48D5D2F0D3A1117F3A83] - 23/12/2011 - 12:32:04 ---A- . (.AVG Technologies CZ, s.r.o. - IDS Application Activity Monitor Filter Driver..) -- C:\Windows\System32\Drivers\avgidsfiltera.sys   [29776]
O58 - SDL:[MD5.CFFC3A4A638F462E0561CB368B9A7A3A] - 19/04/2012 - 03:50:26 ---A- . (.AVG Technologies CZ, s.r.o. - IDS Application Activity Monitor Helper Driver..) -- C:\Windows\System32\Drivers\avgidsha.sys   [28480]
O58 - SDL:[MD5.BE8BC5D10ABA05D7F6E79D8296906C86] - 08/11/2012 - 03:49:24 ---A- . (.AVG Technologies CZ, s.r.o. - AVG AVI Loader Driver.) -- C:\Windows\System32\Drivers\avgldx64.sys   [307040]
O58 - SDL:[MD5.A6AEC362AAE5E2DDA7445E7690CB0F33] - 23/12/2011 - 12:32:14 ---A- . (.AVG Technologies CZ, s.r.o. - AVG Resident Shield Minifilter Driver.) -- C:\Windows\System32\Drivers\avgmfx64.sys   [47696]
O58 - SDL:[MD5.645C7F0A0E39758A0024A9B1748273C0] - 31/01/2012 - 03:46:48 ---A- . (.AVG Technologies CZ, s.r.o. - AVG Anti-Rootkit Driver.) -- C:\Windows\System32\Drivers\avgrkx64.sys   [36944]
O58 - SDL:[MD5.A441A655D6D9DDDDBA11994530F84981] - 11/04/2013 - 02:18:40 ---A- . (.AVG Technologies CZ, s.r.o. - AVG Network connection watcher.) -- C:\Windows\System32\Drivers\avgtdia.sys   [384800]
O58 - SDL:[MD5.B5ACE6968304A3900EEB1EBFD9622DF2] - 10/06/2009 - 21:34:23 ---A- . (.Broadcom Corporation - Broadcom NetXtreme Gigabit Ethernet NDIS6.x Unified Driver..) -- C:\Windows\System32\Drivers\b57nd60a.sys   [270848]
O58 - SDL:[MD5.810BE94A9E42309B3F74217AC28BC6AC] - 08/05/2010 - 03:00:24 ---A- . (.Broadcom Corporation - Broadcom 802.11 Network Adapter wireless driver.) -- C:\Windows\System32\Drivers\BCMWL664.SYS   [3063360]
O58 - SDL:[MD5.F09EEE9EDC320B5E1501F749FDE686C8] - 10/06/2009 - 21:41:06 ---A- . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Lower Filter Driver.) -- C:\Windows\System32\Drivers\BrFiltLo.sys   [18432]
O58 - SDL:[MD5.B114D3098E9BDB8BEA8B053685831BE6] - 10/06/2009 - 21:41:06 ---A- . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Upper Filter Driver.) -- C:\Windows\System32\Drivers\BrFiltUp.sys   [8704]
O58 - SDL:[MD5.43BEA8D483BF1870F018E2D02E06A5BD] - 14/07/2009 - 02:19:07 ---A- . (.Brother Industries Ltd. - Pilote Brother Série I/F (WDM).) -- C:\Windows\System32\Drivers\BrSerId.sys   [286720]
O58 - SDL:[MD5.A6ECA2151B08A09CACECA35C07F05B42] - 10/06/2009 - 21:41:10 ---A- . (.Brother Industries Ltd. - Brother Serial driver (WDM version).) -- C:\Windows\System32\Drivers\BrSerWdm.sys   [47104]
O58 - SDL:[MD5.B79968002C277E869CF38BD22CD61524] - 10/06/2009 - 21:41:10 ---A- . (.Brother Industries Ltd. - Brother USB MDM Driver.) -- C:\Windows\System32\Drivers\BrUsbMdm.sys   [14976]
O58 - SDL:[MD5.A87528880231C54E75EA7A44943B38BF] - 10/06/2009 - 21:41:10 ---A- . (.Brother Industries Ltd. - Brother USB Serial Driver.) -- C:\Windows\System32\Drivers\BrUsbSer.sys   [14720]
O58 - SDL:[MD5.3E5B191307609F7514148C6832BB0842] - 10/06/2009 - 21:34:28 ---A- . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\Windows\System32\Drivers\bxvbda.sys   [468480]
O58 - SDL:[MD5.E19D3F095812725D88F9001985B94EDD] - 14/07/2009 - 02:52:31 ---A- . (.CMD Technology, Inc. - CMD PCI IDE Bus Driver.) -- C:\Windows\System32\Drivers\cmdide.sys   [17488]
O58 - SDL:[MD5.0E5DA5369A0FCAEA12456DD852545184] - 14/07/2009 - 02:47:48 ---A- . (.Emulex - Storport Miniport Driver for LightPulse HBAs.) -- C:\Windows\System32\Drivers\elxstor.sys   [530496]
O58 - SDL:[MD5.DC5D737F51BE844D8C82C695EB17372F] - 10/06/2009 - 21:34:33 ---A- . (.Broadcom Corporation - Broadcom NetXtreme II 10 GigE VBD.) -- C:\Windows\System32\Drivers\evbda.sys   [3286016]
O58 - SDL:[MD5.F2523EF6460FC42405B12248338AB2F0] - 10/06/2009 - 21:31:59 ---A- . (.Hauppauge Computer Works, Inc. - Hauppauge WinTV 885 Consumer IR Driver for eHome.) -- C:\Windows\System32\Drivers\hcw85cir.sys   [31232]
O58 - SDL:[MD5.B6AC71AAA2B10848F57FC49D55A651AF] - 17/09/2009 - 21:54:54 ---A- . (.Intel Corporation - Intel(R) Management Engine Interface.) -- C:\Windows\System32\Drivers\HECIx64.sys   [56344]
O58 - SDL:[MD5.0886D440058F203EBA0E1825E4355914] - 14/07/2009 - 02:47:48 ---A- . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Driver.) -- C:\Windows\System32\Drivers\HpSAMD.sys   [77888]
O58 - SDL:[MD5.1384872112E8E7FD5786ECEB8BDDF4C9] - 13/04/2010 - 09:44:22 ---A- . (.Intel Corporation - Intel Rapid Storage Technology driver - x64.) -- C:\Windows\System32\Drivers\iaStor.sys   [540696]
O58 - SDL:[MD5.B75E45C564E944A2657167D197AB29DA] - 11/03/2011 - 07:23:00 ---A- . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\Windows\System32\Drivers\iaStorV.sys   [410496]
O58 - SDL:[MD5.FBACBED7A37B3223822470FF1D8EA00F] - 22/06/2010 - 06:28:32 ---A- . (.Intel Corporation - Intel Graphics Kernel Mode Driver.) -- C:\Windows\System32\Drivers\igdkmd64.sys   [10342240]
O58 - SDL:[MD5.FBACBED7A37B3223822470FF1D8EA00F] - 22/06/2010 - 06:28:32 ---A- . (.Intel Corporation - Intel Graphics Kernel Mode Driver.) -- C:\Windows\System32\Drivers\igdpmd64.sys   [10342240]
O58 - SDL:[MD5.5C18831C61933628F5BB0EA2675B9D21] - 14/07/2009 - 02:48:04 ---A- . (.Intel Corp./ICP vortex GmbH - Intel/ICP Raid Storport Driver.) -- C:\Windows\System32\Drivers\iirsp.sys   [44112]
O58 - SDL:[MD5.1A93E54EB0ECE102495A51266DCDB6A6] - 14/07/2009 - 02:48:04 ---A- . (.LSI Corporation - LSI Fusion-MPT FC Driver (StorPort).) -- C:\Windows\System32\Drivers\lsi_fc.sys   [114752]
O58 - SDL:[MD5.1047184A9FDC8BDBFF857175875EE810] - 14/07/2009 - 02:48:04 ---A- . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\System32\Drivers\lsi_sas.sys   [106560]
O58 - SDL:[MD5.30F5C0DE1EE8B5BC9306C1F0E4A75F93] - 14/07/2009 - 02:48:04 ---A- . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\Windows\System32\Drivers\lsi_sas2.sys   [65600]
O58 - SDL:[MD5.0504EACAFF0D3C8AED161C4B0D369D4A] - 14/07/2009 - 02:48:04 ---A- . (.LSI Corporation - LSI Fusion-MPT SCSI Driver (StorPort).) -- C:\Windows\System32\Drivers\lsi_scsi.sys   [115776]
O58 - SDL:[MD5.A55805F747C6EDB6A9080D7C633BD0F4] - 14/07/2009 - 02:48:04 ---A- . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows 7\Server 2008 R2 for.) -- C:\Windows\System32\Drivers\megasas.sys   [35392]
O58 - SDL:[MD5.BAF74CE0072480C3B6B7C13B2A94D6B3] - 14/07/2009 - 02:48:04 ---A- . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\Windows\System32\Drivers\MegaSR.sys   [284736]
O58 - SDL:[MD5.64428DFDAF6E88366CB51F45A79C5F69] - 10/06/2009 - 21:35:28 ---A- . (.Intel Corporation - Intel® Wireless WiFi Link Driver.) -- C:\Windows\System32\Drivers\netw5v64.sys   [5434368]
O58 - SDL:[MD5.77889813BE4D166CDAB78DDBA990DA92] - 14/07/2009 - 02:48:26 ---A- . (.IBM Corporation - IBM ServeRAID Controller Driver.) -- C:\Windows\System32\Drivers\nfrd960.sys   [51264]
O58 - SDL:[MD5.A4D9C9A608A97F59307C2F2600EDC6A4] - 11/03/2011 - 07:23:06 ---A- . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\Windows\System32\Drivers\nvraid.sys   [148352]
O58 - SDL:[MD5.6C1D5F70E7A6A3FD1C90D840EDC048B9] - 11/03/2011 - 07:23:06 ---A- . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\Windows\System32\Drivers\nvstor.sys   [166272]
O58 - SDL:[MD5.A53A15A11EBFD21077463EE2C7AFEEF0] - 14/07/2009 - 02:45:46 ---A- . (.QLogic Corporation - QLogic Fibre Channel Stor Miniport Driver.) -- C:\Windows\System32\Drivers\ql2300.sys   [1524816]
O58 - SDL:[MD5.4F6D12B51DE1AAEFF7DC58C4D75423C8] - 14/07/2009 - 02:45:45 ---A- . (.QLogic Corporation - QLogic iSCSI Storport Miniport Driver.) -- C:\Windows\System32\Drivers\ql40xx.sys   [128592]
O58 - SDL:[MD5.20A466B9EA2BD828C0EC723F99B8CFE7] - 31/05/2010 - 20:46:50 ---A- . (.Realtek - Realtek 8136/8168/8169 NDIS 6.20 64-bit Driver.) -- C:\Windows\System32\Drivers\Rt64win7.sys   [333928]
O58 - SDL:[MD5.E76FDFFF07F8A2FA81FF250DDA0F6BBA] - 13/03/2010 - 14:47:08 ---A- . (.Realtek Semiconductor Corp. - Realtek(r) High Definition Audio Function Driver.) -- C:\Windows\System32\Drivers\RTKVHD64.sys   [2291616]
O58 - SDL:[MD5.483DF0B58CA532E5240E59DC41F30AA2] - 23/09/2009 - 02:39:56 ---A- . (.Realtek Semiconductor Corp. - Realtek USB Mass Storage Driver for 2K/XP/Vista/Win7.) -- C:\Windows\System32\Drivers\RtsUStor.sys   [225280]
O58 - SDL:[MD5.FD833BEE2FD9BEFDC0AFD1941A306D9E] - 17/05/2012 - 12:17:51 ---A- . (.Sunbelt Software - 64-bit Anti-Rootkit Engine.) -- C:\Windows\System32\Drivers\SBREDrv.sys   [55384]
O58 - SDL:[MD5.3EA8A16169C26AFBEB544E0E48421186] - 10/06/2009 - 21:37:19 ---A- . (.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) -- C:\Windows\System32\Drivers\secdrv.sys   [23040]
O58 - SDL:[MD5.843CAF1E5FDE1FFD5FF768F23A51E2E1] - 14/07/2009 - 02:45:45 ---A- . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\Windows\System32\Drivers\sisraid2.sys   [43584]
O58 - SDL:[MD5.6A6C106D42E9FFFF8B9FCB4F754F6DA4] - 14/07/2009 - 02:45:46 ---A- . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\System32\Drivers\sisraid4.sys   [80464]
O58 - SDL:[MD5.F3817967ED533D08327DC73BC4D5542A] - 14/07/2009 - 02:45:55 ---A- . (.Promise Technology - Promise  SuperTrak EX Series Driver for Windows.) -- C:\Windows\System32\Drivers\stexstor.sys   [24656]
O58 - SDL:[MD5.48D9D00C2E0E72C3D4F52772C80355F6] - 14/06/2010 - 08:32:54 ---A- . (.Teruten Inc - File System Mini Filter Drvier.) -- C:\Windows\System32\Drivers\TFsExDisk.sys   [16448]
O58 - SDL:[MD5.E5689D93FFE4E5D66C0178761240DD54] - 14/07/2009 - 02:45:55 ---A- . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\Windows\System32\Drivers\viaide.sys   [17488]
O58 - SDL:[MD5.5E2016EA6EBACA03C04FEAC5F330D997] - 14/07/2009 - 02:45:55 ---A- . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\Windows\System32\Drivers\vsmraid.sys   [161872]
O58 - SDL:[MD5.0C4540311E11664B245A263E1154CEF8] - 10/06/2009 - 22:01:11 ---A- . (.Conexant Systems, Inc. - HSF_HWAZL WDM driver.) -- C:\Windows\System32\Drivers\VSTAZL6.SYS   [292864]
O58 - SDL:[MD5.18E40C245DBFAF36FD0134A7EF2DF396] - 10/06/2009 - 22:01:11 ---A- . (.Conexant Systems, Inc. - HSF_CNXT driver.) -- C:\Windows\System32\Drivers\VSTCNXT6.SYS   [740864]
O58 - SDL:[MD5.02071D207A9858FBE3A48CBFD59C4A04] - 10/06/2009 - 22:01:11 ---A- . (.Conexant Systems, Inc. - HSF_DP driver.) -- C:\Windows\System32\Drivers\VSTDPV6.SYS   [1485312]
O58 - SDL:[MD5.B3EEACF62445E24FBB2CD4B0FB4DB026] - 10/06/2009 - 21:35:33 ---A- . (.Marvell - Miniport Driver for Marvell Yukon Ethernet Controller..) -- C:\Windows\System32\Drivers\yk62x64.sys   [389120]
O58 - SDL:[MD5.306521935042FC0A6988D528643619B3] - 25/10/2007 - 16:26:10 ---A- . (...) -- C:\Windows\SysWOW64\drivers\StarOpen.sys   [5632]
O58 - SDL:[MD5.48D9D00C2E0E72C3D4F52772C80355F6] - 14/06/2010 - 08:32:54 ---A- . (.Teruten Inc - File System Mini Filter Drvier.) -- C:\Windows\SysWOW64\drivers\TFsExDisk.Sys   [16448]
~ Drivers: 20 Scanned in 00mn 36s



---\\ Derniers fichiers modifiés ou crées (Utilisateur) (O61)
O61 - LFC: 04/12/2013 - 10:13:56 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131203214647-l.list   [0] =>Toolbar.Blekko
O61 - LFC: 04/12/2013 - 10:13:56 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131203224930-l.list   [0] =>Toolbar.Blekko
O61 - LFC: 04/12/2013 - 10:13:56 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131203232046-l.list   [8917] =>Toolbar.Blekko
O61 - LFC: 04/12/2013 - 10:13:56 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131203232046-m.list   [47898] =>Toolbar.Blekko
O61 - LFC: 04/12/2013 - 10:13:56 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131203235215-l.list   [0] =>Toolbar.Blekko
O61 - LFC: 04/12/2013 - 10:13:56 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131203235215-m.list   [37849] =>Toolbar.Blekko
O61 - LFC: 04/12/2013 - 10:13:56 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131204002330-l.list   [11228] =>Toolbar.Blekko
O61 - LFC: 04/12/2013 - 10:13:56 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131204002330-m.list   [72320] =>Toolbar.Blekko
O61 - LFC: 04/12/2013 - 10:13:56 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131204005501-l.list   [0] =>Toolbar.Blekko
O61 - LFC: 04/12/2013 - 10:13:56 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131204005501-m.list   [35161] =>Toolbar.Blekko
O61 - LFC: 04/12/2013 - 10:13:56 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131204012617-l.list   [6123] =>Toolbar.Blekko
O61 - LFC: 04/12/2013 - 10:13:56 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131204012617-m.list   [31170] =>Toolbar.Blekko
O61 - LFC: 04/12/2013 - 10:13:56 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131204015733-l.list   [0] =>Toolbar.Blekko
O61 - LFC: 04/12/2013 - 10:13:56 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131204015733-m.list   [41965] =>Toolbar.Blekko
O61 - LFC: 04/12/2013 - 10:13:56 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131204022848-l.list   [5355] =>Toolbar.Blekko
O61 - LFC: 04/12/2013 - 10:13:56 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131204022848-m.list   [87120] =>Toolbar.Blekko
O61 - LFC: 04/12/2013 - 10:13:56 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131204030025-l.list   [19753] =>Toolbar.Blekko
O61 - LFC: 04/12/2013 - 10:13:56 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131204030025-m.list   [63995] =>Toolbar.Blekko
O61 - LFC: 04/12/2013 - 10:13:56 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131204033141-l.list   [18440] =>Toolbar.Blekko
O61 - LFC: 04/12/2013 - 10:13:56 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131204033141-m.list   [91588] =>Toolbar.Blekko
O61 - LFC: 04/12/2013 - 10:13:56 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131204040311-l.list   [402] =>Toolbar.Blekko
O61 - LFC: 04/12/2013 - 10:13:56 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131204040311-m.list   [65856] =>Toolbar.Blekko
O61 - LFC: 04/12/2013 - 10:13:56 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131204043428-l.list   [1731] =>Toolbar.Blekko
O61 - LFC: 04/12/2013 - 10:13:56 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131204043428-m.list   [177152] =>Toolbar.Blekko
O61 - LFC: 04/12/2013 - 10:13:56 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131204050601-l.list   [8426] =>Toolbar.Blekko
O61 - LFC: 04/12/2013 - 10:13:56 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131204050601-m.list   [63214] =>Toolbar.Blekko
O61 - LFC: 04/12/2013 - 10:13:56 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131204053720-l.list   [216] =>Toolbar.Blekko
O61 - LFC: 04/12/2013 - 10:13:56 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131204053720-m.list   [75893] =>Toolbar.Blekko
O61 - LFC: 04/12/2013 - 10:13:56 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131204060836-l.list   [6215] =>Toolbar.Blekko
O61 - LFC: 04/12/2013 - 10:13:56 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131204060836-m.list   [46822] =>Toolbar.Blekko
O61 - LFC: 04/12/2013 - 10:13:56 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131204063952-l.list   [3718] =>Toolbar.Blekko
O61 - LFC: 04/12/2013 - 10:13:56 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131204063952-m.list   [6968] =>Toolbar.Blekko
O61 - LFC: 04/12/2013 - 10:13:56 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131204071108-l.list   [6561] =>Toolbar.Blekko
O61 - LFC: 04/12/2013 - 10:13:56 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131204071108-m.list   [23560] =>Toolbar.Blekko
O61 - LFC: 04/12/2013 - 10:13:56 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131204074338-l.list   [2119105] =>Toolbar.Blekko
O61 - LFC: 04/12/2013 - 10:13:56 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131204074338-m.list   [721476] =>Toolbar.Blekko
O61 - LFC: 04/12/2013 - 10:13:56 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131204081453-l.list   [5007] =>Toolbar.Blekko
O61 - LFC: 04/12/2013 - 10:13:56 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131204081453-m.list   [16279] =>Toolbar.Blekko
O61 - LFC: 04/12/2013 - 10:13:56 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131204084614-l.list   [0] =>Toolbar.Blekko
O61 - LFC: 04/12/2013 - 10:13:56 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131204084614-m.list   [93803] =>Toolbar.Blekko
O61 - LFC: 04/12/2013 - 10:13:56 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131204091745-l.list   [3512] =>Toolbar.Blekko
O61 - LFC: 04/12/2013 - 10:13:56 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131204091745-m.list   [50525] =>Toolbar.Blekko
O61 - LFC: 04/12/2013 - 10:13:56 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131204094837-l.list   [0] =>Toolbar.Blekko
O61 - LFC: 04/12/2013 - 10:13:56 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131204094837-m.list   [80752] =>Toolbar.Blekko
O61 - LFC: 04/12/2013 - 10:13:56 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131204101938-l.list   [4883] =>Toolbar.Blekko
O61 - LFC: 04/12/2013 - 10:13:56 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131204101938-m.list   [286] =>Toolbar.Blekko
O61 - LFC: 04/12/2013 - 10:13:56 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131204105051-l.list   [465] =>Toolbar.Blekko
O61 - LFC: 04/12/2013 - 10:13:56 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131204105051-m.list   [91517] =>Toolbar.Blekko
O61 - LFC: 04/12/2013 - 10:13:56 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131204112210-l.list   [3383] =>Toolbar.Blekko
O61 - LFC: 04/12/2013 - 10:13:56 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131204112210-m.list   [98061] =>Toolbar.Blekko
O61 - LFC: 04/12/2013 - 10:13:56 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131204122428-l.list   [3027] =>Toolbar.Blekko
O61 - LFC: 04/12/2013 - 10:13:56 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131204122428-m.list   [96584] =>Toolbar.Blekko
O61 - LFC: 04/12/2013 - 10:13:56 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131204125558-l.list   [101] =>Toolbar.Blekko
O61 - LFC: 04/12/2013 - 10:13:56 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131204125558-m.list   [119995] =>Toolbar.Blekko
O61 - LFC: 04/12/2013 - 10:13:56 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131204132713-l.list   [2421] =>Toolbar.Blekko
O61 - LFC: 04/12/2013 - 10:13:56 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131204132713-m.list   [124290] =>Toolbar.Blekko
O61 - LFC: 04/12/2013 - 10:13:56 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131204135842-l.list   [0] =>Toolbar.Blekko
O61 - LFC: 04/12/2013 - 10:13:56 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131204135842-m.list   [58942] =>Toolbar.Blekko
O61 - LFC: 04/12/2013 - 10:13:56 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131204142957-l.list   [1954] =>Toolbar.Blekko
O61 - LFC: 04/12/2013 - 10:13:56 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131204142957-m.list   [78827] =>Toolbar.Blekko
O61 - LFC: 04/12/2013 - 10:13:56 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131204150125-l.list   [48] =>Toolbar.Blekko
O61 - LFC: 04/12/2013 - 10:13:56 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131204150125-m.list   [58099] =>Toolbar.Blekko
O61 - LFC: 04/12/2013 - 10:13:56 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131204153241-l.list   [3602] =>Toolbar.Blekko
O61 - LFC: 04/12/2013 - 10:13:56 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131204153241-m.list   [77127] =>Toolbar.Blekko
O61 - LFC: 04/12/2013 - 10:13:56 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131204160409-l.list   [0] =>Toolbar.Blekko
O61 - LFC: 04/12/2013 - 10:13:56 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131204160409-m.list   [54358] =>Toolbar.Blekko
O61 - LFC: 04/12/2013 - 10:13:56 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131204163525-l.list   [1274] =>Toolbar.Blekko
O61 - LFC: 04/12/2013 - 10:13:56 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131204163525-m.list   [456] =>Toolbar.Blekko
O61 - LFC: 04/12/2013 - 10:13:56 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131204170656-l.list   [5133] =>Toolbar.Blekko
O61 - LFC: 04/12/2013 - 10:13:56 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131204170656-m.list   [88088] =>Toolbar.Blekko
O61 - LFC: 04/12/2013 - 10:13:56 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131204173810-l.list   [4511] =>Toolbar.Blekko
O61 - LFC: 04/12/2013 - 10:13:57 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131204173810-m.list   [103074] =>Toolbar.Blekko
O61 - LFC: 04/12/2013 - 10:13:57 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131204180940-l.list   [6419] =>Toolbar.Blekko
O61 - LFC: 04/12/2013 - 10:13:57 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131204180940-m.list   [232849] =>Toolbar.Blekko
O61 - LFC: 04/12/2013 - 10:13:57 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131204184059-l.list   [0] =>Toolbar.Blekko
O61 - LFC: 04/12/2013 - 10:13:57 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131204184059-m.list   [113722] =>Toolbar.Blekko
O61 - LFC: 04/12/2013 - 10:13:57 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131204191217-l.list   [5079] =>Toolbar.Blekko
O61 - LFC: 04/12/2013 - 10:13:57 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131204191217-m.list   [144160] =>Toolbar.Blekko
O61 - LFC: 04/12/2013 - 10:13:57 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131204194335-l.list   [0] =>Toolbar.Blekko
O61 - LFC: 04/12/2013 - 10:13:57 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131204194335-m.list   [60651] =>Toolbar.Blekko
O61 - LFC: 04/12/2013 - 10:13:57 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131204201511-l.list   [6230] =>Toolbar.Blekko
O61 - LFC: 04/12/2013 - 10:13:57 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131204201511-m.list   [83263] =>Toolbar.Blekko
O61 - LFC: 04/12/2013 - 10:13:57 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131204204632-l.list   [1826] =>Toolbar.Blekko
O61 - LFC: 04/12/2013 - 10:13:57 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131204204632-m.list   [83597] =>Toolbar.Blekko
O61 - LFC: 04/12/2013 - 10:13:57 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131204211758-l.list   [7307] =>Toolbar.Blekko
O61 - LFC: 04/12/2013 - 10:13:57 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131204211758-m.list   [31674] =>Toolbar.Blekko
O61 - LFC: 04/12/2013 - 10:13:57 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131204214920-l.list   [857] =>Toolbar.Blekko
O61 - LFC: 04/12/2013 - 10:13:57 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131204214920-m.list   [103221] =>Toolbar.Blekko
O61 - LFC: 04/12/2013 - 10:13:57 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131204222029-l.list   [6284] =>Toolbar.Blekko
O61 - LFC: 04/12/2013 - 10:13:57 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131204222029-m.list   [75720] =>Toolbar.Blekko
O61 - LFC: 04/12/2013 - 10:13:57 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131204225151-l.list   [2909] =>Toolbar.Blekko
O61 - LFC: 04/12/2013 - 10:13:57 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131204225151-m.list   [69709] =>Toolbar.Blekko
O61 - LFC: 04/12/2013 - 10:14:03 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\CrashDumps\audacity.exe.5052.dmp   [2516599]
O61 - LFC: 04/12/2013 - 10:15:01 ---A- . (...) -- C:\Users\slvanessa\AppData\Roaming\Audacity\audacity.cfg   [2048]
O61 - LFC: 04/12/2013 - 10:15:58 ---A- . (...) -- C:\Users\slvanessa\AppData\Roaming\TuneUp Software\TU2012\Backups\00000225.rcb   [516]
O61 - LFC: 04/12/2013 - 10:15:58 ---A- . (...) -- C:\Users\slvanessa\AppData\Roaming\TuneUp Software\TU2012\Dashboard\IntegratorStates_fr-FR.xml   [344]
O61 - LFC: 04/12/2013 - 10:15:58 ---A- . (...) -- C:\Users\slvanessa\AppData\Roaming\TuneUp Software\TU2012\Speed Optimizer\SpeedOptimizerStates.xml   [273]
O61 - LFC: 05/12/2013 - 10:13:57 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131204232320-l.list   [11510] =>Toolbar.Blekko
O61 - LFC: 05/12/2013 - 10:13:57 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131204232320-m.list   [98632] =>Toolbar.Blekko
O61 - LFC: 05/12/2013 - 10:13:57 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131204235443-l.list   [1062] =>Toolbar.Blekko
O61 - LFC: 05/12/2013 - 10:13:57 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131204235443-m.list   [53377] =>Toolbar.Blekko
O61 - LFC: 05/12/2013 - 10:13:57 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131205002609-l.list   [5341] =>Toolbar.Blekko
O61 - LFC: 05/12/2013 - 10:13:57 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131205002609-m.list   [97699] =>Toolbar.Blekko
O61 - LFC: 05/12/2013 - 10:13:57 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131205005730-l.list   [540] =>Toolbar.Blekko
O61 - LFC: 05/12/2013 - 10:13:57 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131205005730-m.list   [29493] =>Toolbar.Blekko
O61 - LFC: 05/12/2013 - 10:13:57 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131205012854-l.list   [8475] =>Toolbar.Blekko
O61 - LFC: 05/12/2013 - 10:13:57 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131205012854-m.list   [1844] =>Toolbar.Blekko
O61 - LFC: 05/12/2013 - 10:13:57 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131205020019-l.list   [419] =>Toolbar.Blekko
O61 - LFC: 05/12/2013 - 10:13:57 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131205020019-m.list   [20172] =>Toolbar.Blekko
O61 - LFC: 05/12/2013 - 10:13:57 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131205023146-l.list   [4686] =>Toolbar.Blekko
O61 - LFC: 05/12/2013 - 10:13:57 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131205023146-m.list   [19478] =>Toolbar.Blekko
O61 - LFC: 05/12/2013 - 10:13:57 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131205030315-l.list   [6570] =>Toolbar.Blekko
O61 - LFC: 05/12/2013 - 10:13:57 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131205030315-m.list   [57485] =>Toolbar.Blekko
O61 - LFC: 05/12/2013 - 10:13:57 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131205033456-l.list   [507] =>Toolbar.Blekko
O61 - LFC: 05/12/2013 - 10:13:57 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131205033456-m.list   [8688] =>Toolbar.Blekko
O61 - LFC: 05/12/2013 - 10:13:58 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131205040619-l.list   [4677] =>Toolbar.Blekko
O61 - LFC: 05/12/2013 - 10:13:58 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131205040619-m.list   [7560] =>Toolbar.Blekko
O61 - LFC: 05/12/2013 - 10:13:58 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131205043800-l.list   [67] =>Toolbar.Blekko
O61 - LFC: 05/12/2013 - 10:13:58 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131205043800-m.list   [111580] =>Toolbar.Blekko
O61 - LFC: 05/12/2013 - 10:13:58 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131205050923-l.list   [6595] =>Toolbar.Blekko
O61 - LFC: 05/12/2013 - 10:13:58 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131205050923-m.list   [14189] =>Toolbar.Blekko
O61 - LFC: 05/12/2013 - 10:13:58 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131205054102-l.list   [240] =>Toolbar.Blekko
O61 - LFC: 05/12/2013 - 10:13:58 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131205054102-m.list   [78936] =>Toolbar.Blekko
O61 - LFC: 05/12/2013 - 10:13:58 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131205061227-l.list   [4704] =>Toolbar.Blekko
O61 - LFC: 05/12/2013 - 10:13:58 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131205061227-m.list   [81582] =>Toolbar.Blekko
O61 - LFC: 05/12/2013 - 10:13:58 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131205064407-l.list   [383] =>Toolbar.Blekko
O61 - LFC: 05/12/2013 - 10:13:58 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131205064407-m.list   [46112] =>Toolbar.Blekko
O61 - LFC: 05/12/2013 - 10:13:58 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131205071526-l.list   [4009] =>Toolbar.Blekko
O61 - LFC: 05/12/2013 - 10:13:58 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131205071526-m.list   [62542] =>Toolbar.Blekko
O61 - LFC: 05/12/2013 - 10:13:58 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131205074817-l.list   [3850961] =>Toolbar.Blekko
O61 - LFC: 05/12/2013 - 10:13:58 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131205074817-m.list   [975915] =>Toolbar.Blekko
O61 - LFC: 05/12/2013 - 10:13:58 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131205081947-l.list   [4940] =>Toolbar.Blekko
O61 - LFC: 05/12/2013 - 10:13:58 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131205081947-m.list   [189571] =>Toolbar.Blekko
O61 - LFC: 05/12/2013 - 10:13:58 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131205085059-l.list   [0] =>Toolbar.Blekko
O61 - LFC: 05/12/2013 - 10:13:58 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131205085059-m.list   [161635] =>Toolbar.Blekko
O61 - LFC: 05/12/2013 - 10:13:58 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131205092221-l.list   [5426] =>Toolbar.Blekko
O61 - LFC: 05/12/2013 - 10:13:58 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131205092221-m.list   [24284] =>Toolbar.Blekko
O61 - LFC: 05/12/2013 - 10:13:58 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131205095402-l.list   [2474] =>Toolbar.Blekko
O61 - LFC: 05/12/2013 - 10:13:58 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131205095402-m.list   [66561] =>Toolbar.Blekko
O61 - LFC: 05/12/2013 - 10:13:58 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131205102516-l.list   [6213] =>Toolbar.Blekko
O61 - LFC: 05/12/2013 - 10:13:58 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131205102516-m.list   [58523] =>Toolbar.Blekko
O61 - LFC: 05/12/2013 - 10:13:58 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131205105648-l.list   [4589] =>Toolbar.Blekko
O61 - LFC: 05/12/2013 - 10:13:58 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131205105648-m.list   [31707] =>Toolbar.Blekko
O61 - LFC: 05/12/2013 - 10:13:58 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131205112801-l.list   [4653] =>Toolbar.Blekko
O61 - LFC: 05/12/2013 - 10:13:58 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131205112801-m.list   [127928] =>Toolbar.Blekko
O61 - LFC: 05/12/2013 - 10:13:58 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131205115929-l.list   [489] =>Toolbar.Blekko
O61 - LFC: 05/12/2013 - 10:13:58 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131205115929-m.list   [4918] =>Toolbar.Blekko
O61 - LFC: 05/12/2013 - 10:13:58 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131205123043-l.list   [6220] =>Toolbar.Blekko
O61 - LFC: 05/12/2013 - 10:13:58 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131205123043-m.list   [74620] =>Toolbar.Blekko
O61 - LFC: 05/12/2013 - 10:13:58 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131205130220-l.list   [0] =>Toolbar.Blekko
O61 - LFC: 05/12/2013 - 10:13:58 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131205130220-m.list   [10224] =>Toolbar.Blekko
O61 - LFC: 05/12/2013 - 10:13:58 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131205133337-l.list   [6120] =>Toolbar.Blekko
O61 - LFC: 05/12/2013 - 10:13:58 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131205133337-m.list   [26038] =>Toolbar.Blekko
O61 - LFC: 05/12/2013 - 10:13:59 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131205140508-l.list   [5270] =>Toolbar.Blekko
O61 - LFC: 05/12/2013 - 10:13:59 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131205140508-m.list   [105771] =>Toolbar.Blekko
O61 - LFC: 05/12/2013 - 10:13:59 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131205143623-l.list   [0] =>Toolbar.Blekko
O61 - LFC: 05/12/2013 - 10:13:59 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131205143623-m.list   [109967] =>Toolbar.Blekko
O61 - LFC: 05/12/2013 - 10:13:59 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131205150738-l.list   [4804] =>Toolbar.Blekko
O61 - LFC: 05/12/2013 - 10:13:59 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131205150738-m.list   [30405] =>Toolbar.Blekko
O61 - LFC: 05/12/2013 - 10:13:59 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131205153853-l.list   [0] =>Toolbar.Blekko
O61 - LFC: 05/12/2013 - 10:13:59 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131205153853-m.list   [139190] =>Toolbar.Blekko
O61 - LFC: 05/12/2013 - 10:13:59 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131205161012-l.list   [1588] =>Toolbar.Blekko
O61 - LFC: 05/12/2013 - 10:13:59 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131205161012-m.list   [175131] =>Toolbar.Blekko
O61 - LFC: 05/12/2013 - 10:13:59 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131205171235-l.list   [6914] =>Toolbar.Blekko
O61 - LFC: 05/12/2013 - 10:13:59 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131205171235-m.list   [115941] =>Toolbar.Blekko
O61 - LFC: 05/12/2013 - 10:13:59 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131205174352-l.list   [156] =>Toolbar.Blekko
O61 - LFC: 05/12/2013 - 10:13:59 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131205174352-m.list   [99858] =>Toolbar.Blekko
O61 - LFC: 05/12/2013 - 10:13:59 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131205181512-l.list   [4721] =>Toolbar.Blekko
O61 - LFC: 05/12/2013 - 10:13:59 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131205181512-m.list   [13735] =>Toolbar.Blekko
O61 - LFC: 05/12/2013 - 10:13:59 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131205184629-l.list   [60] =>Toolbar.Blekko
O61 - LFC: 05/12/2013 - 10:13:59 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131205184629-m.list   [29299] =>Toolbar.Blekko
O61 - LFC: 05/12/2013 - 10:13:59 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131205191751-l.list   [5038] =>Toolbar.Blekko
O61 - LFC: 05/12/2013 - 10:13:59 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131205191751-m.list   [20648] =>Toolbar.Blekko
O61 - LFC: 05/12/2013 - 10:13:59 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131205194908-l.list   [0] =>Toolbar.Blekko
O61 - LFC: 05/12/2013 - 10:13:59 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131205194908-m.list   [20198] =>Toolbar.Blekko
O61 - LFC: 05/12/2013 - 10:13:59 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131205202012-l.list   [3742] =>Toolbar.Blekko
O61 - LFC: 05/12/2013 - 10:13:59 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131205202012-m.list   [60089] =>Toolbar.Blekko
O61 - LFC: 05/12/2013 - 10:13:59 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131205205127-l.list   [0] =>Toolbar.Blekko
O61 - LFC: 05/12/2013 - 10:13:59 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131205205127-m.list   [17893] =>Toolbar.Blekko
O61 - LFC: 05/12/2013 - 10:13:59 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131205212230-l.list   [5751] =>Toolbar.Blekko
O61 - LFC: 05/12/2013 - 10:13:59 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131205212230-m.list   [48685] =>Toolbar.Blekko
O61 - LFC: 05/12/2013 - 10:13:59 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131205215348-m.list   [81681] =>Toolbar.Blekko
O61 - LFC: 05/12/2013 - 10:13:59 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131205222509-l.list   [3820] =>Toolbar.Blekko
O61 - LFC: 05/12/2013 - 10:13:59 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131205225629-m.list   [105251] =>Toolbar.Blekko
O61 - LFC: 05/12/2013 - 10:14:04 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\Diagnostics\460911090\2013120515.000\C47B5912-B27A-462A-8577-EE6D8660124E.Diagnose.0.etl   [196608]
O61 - LFC: 05/12/2013 - 10:14:04 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\Diagnostics\460911090\2013120515.000\NetworkConfiguration.cab   [1718]
O61 - LFC: 05/12/2013 - 10:14:04 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\Diagnostics\460911090\2013120515.000\NetworkDiagnostics.0.debugreport.xml   [76674]
O61 - LFC: 05/12/2013 - 10:14:04 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\Diagnostics\460911090\2013120515.000\NetworkDiagnostics.1.debugreport.xml   [70823]
O61 - LFC: 05/12/2013 - 10:14:04 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\Diagnostics\460911090\2013120515.000\ResultReport.xml   [38916]
O61 - LFC: 05/12/2013 - 10:14:04 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\Diagnostics\460911090\2013120515.000\results.xml   [256]
O61 - LFC: 05/12/2013 - 10:14:04 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\Diagnostics\460911090\2013120515.000\results.xsl   [49097]
O61 - LFC: 05/12/2013 - 10:14:04 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\Diagnostics\460911090\2013120519.000\2958A398-0807-41C8-AEC2-A6A0A1BB3F40.Diagnose.0.etl   [196608]
O61 - LFC: 05/12/2013 - 10:14:04 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\Diagnostics\460911090\2013120519.000\NetworkConfiguration.cab   [1657]
O61 - LFC: 05/12/2013 - 10:14:04 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\Diagnostics\460911090\2013120519.000\NetworkDiagnostics.0.debugreport.xml   [76672]
O61 - LFC: 05/12/2013 - 10:14:04 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\Diagnostics\460911090\2013120519.000\NetworkDiagnostics.1.debugreport.xml   [70823]
O61 - LFC: 05/12/2013 - 10:14:04 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\Diagnostics\460911090\2013120519.000\ResultReport.xml   [38916]
O61 - LFC: 05/12/2013 - 10:14:04 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\Diagnostics\460911090\2013120519.000\results.xml   [256]
O61 - LFC: 05/12/2013 - 10:14:04 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\Diagnostics\460911090\2013120519.000\results.xsl   [49097]
O61 - LFC: 05/12/2013 - 10:14:52 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\Temp\~DF1309CF567BF67D6C.TMP   [147456]
O61 - LFC: 05/12/2013 - 10:14:52 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\Temp\~DF220D342C6A1B71D7.TMP   [16384]
O61 - LFC: 05/12/2013 - 10:14:52 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\Temp\~DF37704BC9B05707A1.TMP   [81920]
O61 - LFC: 05/12/2013 - 10:14:52 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\Temp\~DF793252BB44AAABD4.TMP   [0]
O61 - LFC: 05/12/2013 - 10:14:52 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\Temp\~DF799FEDC0CFF495D5.TMP   [147456]
O61 - LFC: 05/12/2013 - 10:14:52 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\Temp\~DFE1BA7DF7E38DAF71.TMP   [0]
O61 - LFC: 05/12/2013 - 10:14:52 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\Temp\~DFFBD7E2F41712D84D.TMP   [16384]
O61 - LFC: 05/12/2013 - 10:17:00 ---A- . (...) -- C:\Users\slvanessa\Music\nouveauté\joss stone a man's world.mp3   [3431812]
O61 - LFC: 05/12/2013 - 10:17:02 ---A- . (...) -- C:\Users\slvanessa\Music\sister act\iMesh\Joss Stone - Son Of A Preacher Man.mp3   [2990542] =>PUP.iMesh
O61 - LFC: 06/12/2013 - 10:13:59 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131205215348-l.list   [0] =>Toolbar.Blekko
O61 - LFC: 06/12/2013 - 10:13:59 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131205222509-m.list   [0] =>Toolbar.Blekko
O61 - LFC: 06/12/2013 - 10:13:59 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131205225629-l.list   [0] =>Toolbar.Blekko
O61 - LFC: 06/12/2013 - 10:13:59 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131205232808-l.list   [6960] =>Toolbar.Blekko
O61 - LFC: 06/12/2013 - 10:13:59 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131205232808-m.list   [11700] =>Toolbar.Blekko
O61 - LFC: 06/12/2013 - 10:13:59 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131205235919-l.list   [0] =>Toolbar.Blekko
O61 - LFC: 06/12/2013 - 10:13:59 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131205235919-m.list   [34566] =>Toolbar.Blekko
O61 - LFC: 06/12/2013 - 10:13:59 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131206003058-l.list   [8526] =>Toolbar.Blekko
O61 - LFC: 06/12/2013 - 10:13:59 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131206003058-m.list   [2813] =>Toolbar.Blekko
O61 - LFC: 06/12/2013 - 10:13:59 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131206010220-l.list   [224] =>Toolbar.Blekko
O61 - LFC: 06/12/2013 - 10:13:59 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131206010220-m.list   [60773] =>Toolbar.Blekko
O61 - LFC: 06/12/2013 - 10:13:59 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131206013342-l.list   [5882] =>Toolbar.Blekko
O61 - LFC: 06/12/2013 - 10:14:00 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131206013342-m.list   [80763] =>Toolbar.Blekko
O61 - LFC: 06/12/2013 - 10:14:00 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131206020502-l.list   [10002] =>Toolbar.Blekko
O61 - LFC: 06/12/2013 - 10:14:00 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131206020502-m.list   [9321] =>Toolbar.Blekko
O61 - LFC: 06/12/2013 - 10:14:00 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131206023643-l.list   [0] =>Toolbar.Blekko
O61 - LFC: 06/12/2013 - 10:14:00 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131206023643-m.list   [18438] =>Toolbar.Blekko
O61 - LFC: 06/12/2013 - 10:14:00 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131206030803-l.list   [4546] =>Toolbar.Blekko
O61 - LFC: 06/12/2013 - 10:14:00 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131206030803-m.list   [21072] =>Toolbar.Blekko
O61 - LFC: 06/12/2013 - 10:14:00 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131206033942-l.list   [0] =>Toolbar.Blekko
O61 - LFC: 06/12/2013 - 10:14:00 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131206033942-m.list   [28531] =>Toolbar.Blekko
O61 - LFC: 06/12/2013 - 10:14:00 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131206041101-l.list   [3206] =>Toolbar.Blekko
O61 - LFC: 06/12/2013 - 10:14:00 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131206041101-m.list   [10565] =>Toolbar.Blekko
O61 - LFC: 06/12/2013 - 10:14:00 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131206044240-l.list   [133] =>Toolbar.Blekko
O61 - LFC: 06/12/2013 - 10:14:00 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131206044240-m.list   [38321] =>Toolbar.Blekko
O61 - LFC: 06/12/2013 - 10:14:00 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131206051400-l.list   [3128] =>Toolbar.Blekko
O61 - LFC: 06/12/2013 - 10:14:00 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131206051400-m.list   [8360] =>Toolbar.Blekko
O61 - LFC: 06/12/2013 - 10:14:00 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131206054541-l.list   [1919] =>Toolbar.Blekko
O61 - LFC: 06/12/2013 - 10:14:00 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131206054541-m.list   [56527] =>Toolbar.Blekko
O61 - LFC: 06/12/2013 - 10:14:00 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131206061702-l.list   [6288] =>Toolbar.Blekko
O61 - LFC: 06/12/2013 - 10:14:00 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131206061702-m.list   [5030] =>Toolbar.Blekko
O61 - LFC: 06/12/2013 - 10:14:00 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131206064840-l.list   [0] =>Toolbar.Blekko
O61 - LFC: 06/12/2013 - 10:14:00 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131206064840-m.list   [2490] =>Toolbar.Blekko
O61 - LFC: 06/12/2013 - 10:14:00 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131206071953-l.list   [3953] =>Toolbar.Blekko
O61 - LFC: 06/12/2013 - 10:14:00 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131206071953-m.list   [38540] =>Toolbar.Blekko
O61 - LFC: 06/12/2013 - 10:14:00 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131206075126-l.list   [0] =>Toolbar.Blekko
O61 - LFC: 06/12/2013 - 10:14:00 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131206075126-m.list   [74] =>Toolbar.Blekko
O61 - LFC: 06/12/2013 - 10:14:00 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131206082911-l.list   [3280434] =>Toolbar.Blekko
O61 - LFC: 06/12/2013 - 10:14:00 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131206082911-m.list   [638149] =>Toolbar.Blekko
O61 - LFC: 06/12/2013 - 10:14:00 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131206090039-l.list   [0] =>Toolbar.Blekko
O61 - LFC: 06/12/2013 - 10:14:00 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131206090039-m.list   [103938] =>Toolbar.Blekko
O61 - LFC: 06/12/2013 - 10:14:00 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131206093157-l.list   [5422] =>Toolbar.Blekko
O61 - LFC: 06/12/2013 - 10:14:00 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131206093157-m.list   [148071] =>Toolbar.Blekko
O61 - LFC: 06/12/2013 - 10:14:00 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131206100329-l.list   [743] =>Toolbar.Blekko
O61 - LFC: 06/12/2013 - 10:14:00 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131206100329-m.list   [51491] =>Toolbar.Blekko
O61 - LFC: 06/12/2013 - 10:14:00 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131206103438-l.list   [2987] =>Toolbar.Blekko
O61 - LFC: 06/12/2013 - 10:14:00 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131206103438-m.list   [23596] =>Toolbar.Blekko
O61 - LFC: 06/12/2013 - 10:14:00 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131206110605-l.list   [3917] =>Toolbar.Blekko
O61 - LFC: 06/12/2013 - 10:14:00 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131206110605-m.list   [8181] =>Toolbar.Blekko
O61 - LFC: 06/12/2013 - 10:14:00 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131206113716-l.list   [2144] =>Toolbar.Blekko
O61 - LFC: 06/12/2013 - 10:14:00 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131206113716-m.list   [8662] =>Toolbar.Blekko
O61 - LFC: 06/12/2013 - 10:14:00 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131206120854-l.list   [2958] =>Toolbar.Blekko
O61 - LFC: 06/12/2013 - 10:14:00 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131206120854-m.list   [69991] =>Toolbar.Blekko
O61 - LFC: 06/12/2013 - 10:14:00 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131206124006-l.list   [0] =>Toolbar.Blekko
O61 - LFC: 06/12/2013 - 10:14:00 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131206124006-m.list   [53288] =>Toolbar.Blekko
O61 - LFC: 06/12/2013 - 10:14:00 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131206131121-l.list   [3320] =>Toolbar.Blekko
O61 - LFC: 06/12/2013 - 10:14:01 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131206131121-m.list   [111556] =>Toolbar.Blekko
O61 - LFC: 06/12/2013 - 10:14:01 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131206134234-l.list   [68] =>Toolbar.Blekko
O61 - LFC: 06/12/2013 - 10:14:01 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131206134234-m.list   [76703] =>Toolbar.Blekko
O61 - LFC: 06/12/2013 - 10:14:01 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131206141407-l.list   [3874] =>Toolbar.Blekko
O61 - LFC: 06/12/2013 - 10:14:01 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131206141407-m.list   [60647] =>Toolbar.Blekko
O61 - LFC: 06/12/2013 - 10:14:01 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131206144520-l.list   [0] =>Toolbar.Blekko
O61 - LFC: 06/12/2013 - 10:14:01 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131206144520-m.list   [113862] =>Toolbar.Blekko
O61 - LFC: 06/12/2013 - 10:14:01 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131206151639-l.list   [7252] =>Toolbar.Blekko
O61 - LFC: 06/12/2013 - 10:14:01 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131206151639-m.list   [105485] =>Toolbar.Blekko
O61 - LFC: 06/12/2013 - 10:14:01 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131206154757-l.list   [62] =>Toolbar.Blekko
O61 - LFC: 06/12/2013 - 10:14:01 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131206154757-m.list   [54790] =>Toolbar.Blekko
O61 - LFC: 06/12/2013 - 10:14:01 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131206161900-l.list   [2145] =>Toolbar.Blekko
O61 - LFC: 06/12/2013 - 10:14:01 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131206161900-m.list   [17359] =>Toolbar.Blekko
O61 - LFC: 06/12/2013 - 10:14:01 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131206165017-m.list   [40414] =>Toolbar.Blekko
O61 - LFC: 06/12/2013 - 10:14:01 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131206172119-l.list   [2152] =>Toolbar.Blekko
O61 - LFC: 06/12/2013 - 10:14:01 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131206172119-m.list   [6000] =>Toolbar.Blekko
O61 - LFC: 06/12/2013 - 10:14:01 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131206175235-m.list   [23640] =>Toolbar.Blekko
O61 - LFC: 06/12/2013 - 10:14:01 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131206182354-l.list   [3499] =>Toolbar.Blekko
O61 - LFC: 06/12/2013 - 10:14:01 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131206182354-m.list   [34273] =>Toolbar.Blekko
O61 - LFC: 06/12/2013 - 10:14:01 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131206185511-m.list   [56286] =>Toolbar.Blekko
O61 - LFC: 06/12/2013 - 10:14:01 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131206192632-l.list   [2085] =>Toolbar.Blekko
O61 - LFC: 06/12/2013 - 10:14:01 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131206192632-m.list   [55724] =>Toolbar.Blekko
O61 - LFC: 06/12/2013 - 10:14:01 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131206195748-l.list   [40] =>Toolbar.Blekko
O61 - LFC: 06/12/2013 - 10:14:01 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131206195748-m.list   [10826] =>Toolbar.Blekko
O61 - LFC: 06/12/2013 - 10:14:01 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131206202926-l.list   [1695] =>Toolbar.Blekko
O61 - LFC: 06/12/2013 - 10:14:01 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131206202926-m.list   [9100] =>Toolbar.Blekko
O61 - LFC: 06/12/2013 - 10:14:01 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131206210043-m.list   [28987] =>Toolbar.Blekko
O61 - LFC: 06/12/2013 - 10:14:01 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131206213212-l.list   [2214] =>Toolbar.Blekko
O61 - LFC: 06/12/2013 - 10:14:01 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131206213212-m.list   [117401] =>Toolbar.Blekko
O61 - LFC: 06/12/2013 - 10:14:01 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131206220327-l.list   [1373] =>Toolbar.Blekko
O61 - LFC: 06/12/2013 - 10:14:01 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131206220327-m.list   [62911] =>Toolbar.Blekko
O61 - LFC: 06/12/2013 - 10:14:01 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131206223509-l.list   [2809] =>Toolbar.Blekko
O61 - LFC: 06/12/2013 - 10:14:01 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131206223509-m.list   [8869] =>Toolbar.Blekko
O61 - LFC: 06/12/2013 - 10:17:05 -SHA- . (...) -- C:\Users\slvanessa\Pictures\aout 2012\Thumbs.db   [337408]
O61 - LFC: 06/12/2013 - 10:17:17 -SHA- . (...) -- C:\Users\slvanessa\Pictures\mars 2013\Thumbs.db   [513536]
O61 - LFC: 07/12/2013 - 10:13:23 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\catalog.list   [28093] =>Toolbar.Blekko
O61 - LFC: 07/12/2013 - 10:14:01 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131206165017-l.list   [0] =>Toolbar.Blekko
O61 - LFC: 07/12/2013 - 10:14:01 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131206175235-l.list   [0] =>Toolbar.Blekko
O61 - LFC: 07/12/2013 - 10:14:01 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131206185511-l.list   [0] =>Toolbar.Blekko
O61 - LFC: 07/12/2013 - 10:14:01 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131206210043-l.list   [0] =>Toolbar.Blekko
O61 - LFC: 07/12/2013 - 10:14:01 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131206230627-l.list   [2702] =>Toolbar.Blekko
O61 - LFC: 07/12/2013 - 10:14:01 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131206230627-m.list   [15238] =>Toolbar.Blekko
O61 - LFC: 07/12/2013 - 10:14:01 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131206233819-l.list   [0] =>Toolbar.Blekko
O61 - LFC: 07/12/2013 - 10:14:01 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131206233819-m.list   [3522] =>Toolbar.Blekko
O61 - LFC: 07/12/2013 - 10:14:01 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131207000945-l.list   [2647] =>Toolbar.Blekko
O61 - LFC: 07/12/2013 - 10:14:01 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131207000945-m.list   [724] =>Toolbar.Blekko
O61 - LFC: 07/12/2013 - 10:14:01 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131207004122-l.list   [0] =>Toolbar.Blekko
O61 - LFC: 07/12/2013 - 10:14:01 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131207004122-m.list   [71375] =>Toolbar.Blekko
O61 - LFC: 07/12/2013 - 10:14:01 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131207011242-l.list   [1865] =>Toolbar.Blekko
O61 - LFC: 07/12/2013 - 10:14:01 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131207011242-m.list   [43541] =>Toolbar.Blekko
O61 - LFC: 07/12/2013 - 10:14:01 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131207014425-l.list   [0] =>Toolbar.Blekko
O61 - LFC: 07/12/2013 - 10:14:01 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131207014425-m.list   [17657] =>Toolbar.Blekko
O61 - LFC: 07/12/2013 - 10:14:02 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131207021543-l.list   [1911] =>Toolbar.Blekko
O61 - LFC: 07/12/2013 - 10:14:02 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131207021543-m.list   [17006] =>Toolbar.Blekko
O61 - LFC: 07/12/2013 - 10:14:02 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131207024722-l.list   [0] =>Toolbar.Blekko
O61 - LFC: 07/12/2013 - 10:14:02 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131207024722-m.list   [39996] =>Toolbar.Blekko
O61 - LFC: 07/12/2013 - 10:14:02 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131207031843-l.list   [2214] =>Toolbar.Blekko
O61 - LFC: 07/12/2013 - 10:14:02 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131207031843-m.list   [60621] =>Toolbar.Blekko
O61 - LFC: 07/12/2013 - 10:14:02 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131207035006-l.list   [0] =>Toolbar.Blekko
O61 - LFC: 07/12/2013 - 10:14:02 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131207035006-m.list   [89255] =>Toolbar.Blekko
O61 - LFC: 07/12/2013 - 10:14:02 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131207042129-l.list   [1758] =>Toolbar.Blekko
O61 - LFC: 07/12/2013 - 10:14:02 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131207042129-m.list   [4895] =>Toolbar.Blekko
O61 - LFC: 07/12/2013 - 10:14:02 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131207045316-l.list   [111] =>Toolbar.Blekko
O61 - LFC: 07/12/2013 - 10:14:02 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131207045316-m.list   [0] =>Toolbar.Blekko
O61 - LFC: 07/12/2013 - 10:14:02 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131207052438-l.list   [1604] =>Toolbar.Blekko
O61 - LFC: 07/12/2013 - 10:14:02 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131207052438-m.list   [0] =>Toolbar.Blekko
O61 - LFC: 07/12/2013 - 10:14:02 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131207055624-l.list   [64] =>Toolbar.Blekko
O61 - LFC: 07/12/2013 - 10:14:02 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131207055624-m.list   [0] =>Toolbar.Blekko
O61 - LFC: 07/12/2013 - 10:14:02 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131207062744-l.list   [2091] =>Toolbar.Blekko
O61 - LFC: 07/12/2013 - 10:14:02 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131207062744-m.list   [432] =>Toolbar.Blekko
O61 - LFC: 07/12/2013 - 10:14:02 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131207065930-l.list   [0] =>Toolbar.Blekko
O61 - LFC: 07/12/2013 - 10:14:02 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\131207065930-m.list   [108292] =>Toolbar.Blekko
O61 - LFC: 07/12/2013 - 10:14:02 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\blekkotb_001\data\temp.zip   [35966] =>Toolbar.Blekko
O61 - LFC: 07/12/2013 - 10:14:03 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\Diagnostics\1158610846\2013120708.000\950513D4-791F-4CDA-9040-84BC2B89A85D.Diagnose.0.etl   [196608]
O61 - LFC: 07/12/2013 - 10:14:03 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\Diagnostics\1158610846\2013120708.000\NetworkConfiguration.cab   [1645]
O61 - LFC: 07/12/2013 - 10:14:03 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\Diagnostics\1158610846\2013120708.000\NetworkDiagnostics.0.debugreport.xml   [68100]
O61 - LFC: 07/12/2013 - 10:14:03 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\Diagnostics\1158610846\2013120708.000\ResultReport.xml   [38929]
O61 - LFC: 07/12/2013 - 10:14:03 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\Diagnostics\1158610846\2013120708.000\results.xml   [513]
O61 - LFC: 07/12/2013 - 10:14:03 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\Diagnostics\1158610846\2013120708.000\results.xsl   [49097]
O61 - LFC: 07/12/2013 - 10:14:03 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\Diagnostics\1158610846\latest.cab   [21820]
O61 - LFC: 07/12/2013 - 10:14:03 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\Diagnostics\1612347604\2013120708.000\0241CBB8-4762-41A8-9B59-27C68A4D9BE7.Diagnose.0.etl   [196608]
O61 - LFC: 07/12/2013 - 10:14:03 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\Diagnostics\1612347604\2013120708.000\NetworkConfiguration.cab   [1646]
O61 - LFC: 07/12/2013 - 10:14:03 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\Diagnostics\1612347604\2013120708.000\NetworkDiagnostics.0.debugreport.xml   [69411]
O61 - LFC: 07/12/2013 - 10:14:04 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\Diagnostics\1612347604\2013120708.000\ResultReport.xml   [51481]
O61 - LFC: 07/12/2013 - 10:14:04 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\Diagnostics\1612347604\2013120708.000\results.xml   [478]
O61 - LFC: 07/12/2013 - 10:14:04 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\Diagnostics\1612347604\2013120708.000\results.xsl   [49097]
O61 - LFC: 07/12/2013 - 10:14:04 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\Diagnostics\1612347604\latest.cab   [30687]
O61 - LFC: 07/12/2013 - 10:14:04 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\Diagnostics\3673903079\2013120708.000\NetworkDiagnostics.0.debugreport.xml   [2998]
O61 - LFC: 07/12/2013 - 10:14:04 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\Diagnostics\3673903079\2013120708.000\ResultReport.xml   [38392]
O61 - LFC: 07/12/2013 - 10:14:04 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\Diagnostics\3673903079\2013120708.000\results.xml   [643]
O61 - LFC: 07/12/2013 - 10:14:04 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\Diagnostics\3673903079\2013120708.000\results.xsl   [49097]
O61 - LFC: 07/12/2013 - 10:14:04 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\Diagnostics\3673903079\2013120708.001\NetworkDiagnostics.0.debugreport.xml   [2997]
O61 - LFC: 07/12/2013 - 10:14:04 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\Diagnostics\3673903079\2013120708.001\ResultReport.xml   [38392]
O61 - LFC: 07/12/2013 - 10:14:04 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\Diagnostics\3673903079\2013120708.001\results.xml   [643]
O61 - LFC: 07/12/2013 - 10:14:04 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\Diagnostics\3673903079\2013120708.001\results.xsl   [49097]
O61 - LFC: 07/12/2013 - 10:14:04 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\Diagnostics\3673903079\latest.cab   [12188]
O61 - LFC: 07/12/2013 - 10:14:04 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\Diagnostics\460911090\2013120708.000\CCD378AD-7E34-4D54-B0A9-142BCC75EB10.Diagnose.0.etl   [196608]
O61 - LFC: 07/12/2013 - 10:14:04 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\Diagnostics\460911090\2013120708.000\NetworkConfiguration.cab   [1795]
O61 - LFC: 07/12/2013 - 10:14:04 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\Diagnostics\460911090\2013120708.000\NetworkDiagnostics.0.debugreport.xml   [76671]
O61 - LFC: 07/12/2013 - 10:14:04 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\Diagnostics\460911090\2013120708.000\NetworkDiagnostics.1.debugreport.xml   [70824]
O61 - LFC: 07/12/2013 - 10:14:05 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\Diagnostics\460911090\2013120708.000\ResultReport.xml   [38917]
O61 - LFC: 07/12/2013 - 10:14:05 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\Diagnostics\460911090\2013120708.000\results.xml   [256]
O61 - LFC: 07/12/2013 - 10:14:05 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\Diagnostics\460911090\2013120708.000\results.xsl   [49097]
O61 - LFC: 07/12/2013 - 10:14:05 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\Diagnostics\460911090\2013120708.001\NetworkDiagnostics.0.debugreport.xml   [4892]
O61 - LFC: 07/12/2013 - 10:14:05 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\Diagnostics\460911090\2013120708.001\ResultReport.xml   [38044]
O61 - LFC: 07/12/2013 - 10:14:05 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\Diagnostics\460911090\2013120708.001\results.xml   [256]
O61 - LFC: 07/12/2013 - 10:14:05 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\Diagnostics\460911090\2013120708.001\results.xsl   [49097]
O61 - LFC: 07/12/2013 - 10:14:05 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\Diagnostics\460911090\2013120708.002\B7D8429B-CB18-414C-8855-54C73FE3EA5D.Diagnose.0.etl   [196608]
O61 - LFC: 07/12/2013 - 10:14:05 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\Diagnostics\460911090\2013120708.002\NetworkConfiguration.cab   [1643]
O61 - LFC: 07/12/2013 - 10:14:05 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\Diagnostics\460911090\2013120708.002\NetworkDiagnostics.0.debugreport.xml   [76670]
O61 - LFC: 07/12/2013 - 10:14:05 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\Diagnostics\460911090\2013120708.002\NetworkDiagnostics.1.debugreport.xml   [70824]
O61 - LFC: 07/12/2013 - 10:14:05 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\Diagnostics\460911090\2013120708.002\ResultReport.xml   [38917]
O61 - LFC: 07/12/2013 - 10:14:05 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\Diagnostics\460911090\2013120708.002\results.xml   [256]
O61 - LFC: 07/12/2013 - 10:14:05 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\Diagnostics\460911090\2013120708.002\results.xsl   [49097]
O61 - LFC: 07/12/2013 - 10:14:05 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\Diagnostics\460911090\latest.cab   [29810]
O61 - LFC: 07/12/2013 - 10:14:05 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\Diagnostics\938563667\2013120708.000\NetworkDiagnostics.0.debugreport.xml   [3007]
O61 - LFC: 07/12/2013 - 10:14:05 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\Diagnostics\938563667\2013120708.000\ResultReport.xml   [38414]
O61 - LFC: 07/12/2013 - 10:14:05 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\Diagnostics\938563667\2013120708.000\results.xml   [650]
O61 - LFC: 07/12/2013 - 10:14:05 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\Diagnostics\938563667\2013120708.000\results.xsl   [49097]
O61 - LFC: 07/12/2013 - 10:14:05 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\Diagnostics\938563667\latest.cab   [12221]
O61 - LFC: 07/12/2013 - 10:14:06 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\ElevatedDiagnostics\3391462126\2013120708.000\HomeGroupDiagnostic.0.debugreport.xml   [23027]
O61 - LFC: 07/12/2013 - 10:14:06 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\ElevatedDiagnostics\3391462126\2013120708.000\HomeGroupDiagnostic.1.debugreport.xml   [22554]
O61 - LFC: 07/12/2013 - 10:14:06 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\ElevatedDiagnostics\3391462126\2013120708.000\ResultReport.xml   [15889]
O61 - LFC: 07/12/2013 - 10:14:06 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\ElevatedDiagnostics\3391462126\2013120708.000\results.xml   [286]
O61 - LFC: 07/12/2013 - 10:14:06 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\ElevatedDiagnostics\3391462126\2013120708.000\results.xsl   [49097]
O61 - LFC: 07/12/2013 - 10:14:06 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\ElevatedDiagnostics\3391462126\2013120708.001\HomeGroupDiagnostic.0.debugreport.xml   [23109]
O61 - LFC: 07/12/2013 - 10:14:06 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\ElevatedDiagnostics\3391462126\2013120708.001\HomeGroupDiagnostic.1.debugreport.xml   [20741]
O61 - LFC: 07/12/2013 - 10:14:06 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\ElevatedDiagnostics\3391462126\2013120708.001\ResultReport.xml   [23533]
O61 - LFC: 07/12/2013 - 10:14:06 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\ElevatedDiagnostics\3391462126\2013120708.001\homegrouplog.etl   [16384]
O61 - LFC: 07/12/2013 - 10:14:06 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\ElevatedDiagnostics\3391462126\2013120708.001\results.xml   [286]
O61 - LFC: 07/12/2013 - 10:14:06 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\ElevatedDiagnostics\3391462126\2013120708.001\results.xsl   [49097]
O61 - LFC: 07/12/2013 - 10:14:06 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\ElevatedDiagnostics\3391462126\latest.cab   [16420]
O61 - LFC: 07/12/2013 - 10:14:06 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\ElevatedDiagnostics\460911090\2013120708.000\7562CA5B-D2A2-4EB7-A324-D0CA385D8C2B.Diagnose.Admin.0.etl   [196608]
O61 - LFC: 07/12/2013 - 10:14:06 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\ElevatedDiagnostics\460911090\2013120708.000\7562CA5B-D2A2-4EB7-A324-D0CA385D8C2B.Repair.Admin.1.etl   [131072]
O61 - LFC: 07/12/2013 - 10:14:06 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\ElevatedDiagnostics\460911090\2013120708.000\NetworkConfiguration.cab   [1645]
O61 - LFC: 07/12/2013 - 10:14:06 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\ElevatedDiagnostics\460911090\2013120708.000\NetworkDiagnostics.0.debugreport.xml   [74602]
O61 - LFC: 07/12/2013 - 10:14:06 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\ElevatedDiagnostics\460911090\2013120708.000\NetworkDiagnostics.1.debugreport.xml   [69098]
O61 - LFC: 07/12/2013 - 10:14:06 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\ElevatedDiagnostics\460911090\2013120708.000\ResultReport.xml   [39231]
O61 - LFC: 07/12/2013 - 10:14:06 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\ElevatedDiagnostics\460911090\2013120708.000\results.xml   [263]
O61 - LFC: 07/12/2013 - 10:14:06 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\ElevatedDiagnostics\460911090\2013120708.000\results.xsl   [49097]
O61 - LFC: 07/12/2013 - 10:14:06 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\ElevatedDiagnostics\460911090\2013120708.001\27B9F9A7-1A08-475B-A58B-13B42E40609C.Diagnose.Admin.0.etl   [196608]
O61 - LFC: 07/12/2013 - 10:14:06 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\ElevatedDiagnostics\460911090\2013120708.001\NetworkConfiguration.cab   [1645]
O61 - LFC: 07/12/2013 - 10:14:06 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\ElevatedDiagnostics\460911090\2013120708.001\NetworkDiagnostics.0.debugreport.xml   [67953]
O61 - LFC: 07/12/2013 - 10:14:06 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\ElevatedDiagnostics\460911090\2013120708.001\ResultReport.xml   [38605]
O61 - LFC: 07/12/2013 - 10:14:06 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\ElevatedDiagnostics\460911090\2013120708.001\results.xml   [256]
O61 - LFC: 07/12/2013 - 10:14:06 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\ElevatedDiagnostics\460911090\2013120708.001\results.xsl   [49097]
O61 - LFC: 07/12/2013 - 10:14:06 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\ElevatedDiagnostics\460911090\latest.cab   [21366]
O61 - LFC: 07/12/2013 - 10:14:06 --HA- . (...) -- C:\Users\slvanessa\AppData\Local\IconCache.db   [3876213]
O61 - LFC: 07/12/2013 - 10:14:42 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\Temp\FighterSuiteLight.log.txt   [240873]
O61 - LFC: 07/12/2013 - 10:14:42 -SHA- . (...) -- C:\Users\slvanessa\AppData\Local\Temp\acrord32_sbx\Cookies\index.dat   [16384]
O61 - LFC: 07/12/2013 - 10:14:42 -SHA- . (...) -- C:\Users\slvanessa\AppData\Local\Temp\acrord32_sbx\Fichiers Internet temporaires\Content.IE5\index.dat   [32768]
O61 - LFC: 07/12/2013 - 10:14:42 -SHA- . (...) -- C:\Users\slvanessa\AppData\Local\Temp\acrord32_sbx\History\History.IE5\index.dat   [16384]
O61 - LFC: 07/12/2013 - 10:14:46 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\Temp\MSIb23e.LOG   [8109906]
O61 - LFC: 07/12/2013 - 10:14:51 ---A- . (...) -- C:\Users\slvanessa\AppData\Local\Temp\wmplog00.sqm   [1826]
O61 - LFC: 07/12/2013 - 10:14:58 ---A- . (...) -- C:\Users\slvanessa\AppData\Roaming\Adobe\Acrobat\11.0\TMDocs.sav   [36]
O61 - LFC: 07/12/2013 - 10:14:58 ---A- . (...) -- C:\Users\slvanessa\AppData\Roaming\Adobe\Acrobat\11.0\TMGrpPrm.sav   [54]
O61 - LFC: 07/12/2013 - 10:15:01 ---A- . (...) -- C:\Users\slvanessa\AppData\Roaming\AVG2012\cfgall\userawacs.cfg   [73482]
O61 - LFC: 07/12/2013 - 10:15:25 ---A- . (...) -- C:\Users\slvanessa\AppData\Roaming\Fighters\Tray\Logs\Tray.log.txt   [61315]
O61 - LFC: 07/12/2013 - 10:15:25 ---A- . (...) -- C:\Users\slvanessa\AppData\Roaming\Fighters\Tray\Updates\TKTRAYINFO.list   [724]
O61 - LFC: 07/12/2013 - 10:15:25 ---A- . (...) -- C:\Users\slvanessa\AppData\Roaming\Fighters\Tray\Updates\TKTRAYINFO.list_new   [0]
O61 - LFC: 07/12/2013 - 10:15:43 ---A- . (...) -- C:\Users\slvanessa\AppData\Roaming\OpenOffice.org\3\.lock   [149]
O61 - LFC: 07/12/2013 - 10:15:48 ---A- . (...) -- C:\Users\slvanessa\AppData\Roaming\OpenOffice.org\3\user\registrymodifications.xcu   [52033]
O61 - LFC: 07/12/2013 - 10:16:00 ---A- . (...) -- C:\Users\slvanessa\AppData\Roaming\ZHP\Log.txt   [21531]  =>.Nicolas Coolman
O61 - LFC: 07/12/2013 - 10:16:00 ---A- . (...) -- C:\Users\slvanessa\AppData\Roaming\ZHP\TestsZHPDiag.txt   [2950]  =>.Nicolas Coolman
~ 13 Fichiers temporaires (Temporary files)
~ 1 Fichiers cookies (Cookies files)
~ Files: 427 Scanned in 04mn 06s



---\\ Liste des outils de désinfection (LATC) (O63)
O63 - Logiciel: ZHPDiag 2013 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1  =>.Nicolas Coolman
~ ADS:  Scanned in 00mn 00s



---\\ Liste les services legacy du registre (LALS) (O64)
O64 - Services: CurCS - 28/12/2011 - C:\Windows\system32\drivers\afd.sys (AFD)  .(.Microsoft Corporation - Ancillary Function Driver for WinSock.) - LEGACY_AFD
O64 - Services: CurCS - 22/06/2010 - C:\Windows\System32\DRIVERS\atikmdag.sys (amdkmdag)  .(.ATI Technologies Inc. - ATI Radeon Kernel Mode Driver.) - LEGACY_AMDKMDAG
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\DRIVERS\atapi.sys (atapi)  .(.Microsoft Corporation - ATAPI IDE Miniport Driver.) - LEGACY_ATAPI
O64 - Services: CurCS - 10/12/2012 - C:\Windows\System32\DRIVERS\avgidsdrivera.sys (AVGIDSDriver)  .(.AVG Technologies CZ, s.r.o. - IDS Application Activity Monitor Driver..) - LEGACY_AVGIDSDRIVER
O64 - Services: CurCS - 23/12/2011 - C:\Windows\System32\DRIVERS\avgidsfiltera.sys (AVGIDSFilter)  .(.AVG Technologies CZ, s.r.o. - IDS Application Activity Monitor Filter Dri.) - LEGACY_AVGIDSFILTER
O64 - Services: CurCS - 19/04/2012 - C:\Windows\System32\DRIVERS\avgidsha.sys (AVGIDSHA)  .(.AVG Technologies CZ, s.r.o. - IDS Application Activity Monitor Helper Dri.) - LEGACY_AVGIDSHA
O64 - Services: CurCS - 08/11/2012 - C:\Windows\System32\DRIVERS\avgldx64.sys (Avgldx64)  .(.AVG Technologies CZ, s.r.o. - AVG AVI Loader Driver.) - LEGACY_AVGLDX64
O64 - Services: CurCS - 23/12/2011 - C:\Windows\System32\DRIVERS\avgmfx64.sys (Avgmfx64)  .(.AVG Technologies CZ, s.r.o. - AVG Resident Shield Minifilter Driver.) - LEGACY_AVGMFX64
O64 - Services: CurCS - 31/01/2012 - C:\Windows\System32\DRIVERS\avgrkx64.sys (Avgrkx64)  .(.AVG Technologies CZ, s.r.o. - AVG Anti-Rootkit Driver.) - LEGACY_AVGRKX64
O64 - Services: CurCS - 11/04/2013 - C:\Windows\System32\DRIVERS\avgtdia.sys (Avgtdia)  .(.AVG Technologies CZ, s.r.o. - AVG Network connection watcher.) - LEGACY_AVGTDIA
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\Drivers\Beep.sys (Beep)  .(.Microsoft Corporation - BEEP Driver.) - LEGACY_BEEP
O64 - Services: CurCS - 04/07/2012 - C:\Windows\system32\browser.dll (bowser)  .(.Microsoft Corporation - DLL du service Explorateur d’ordinateurs.) - LEGACY_BOWSER
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\clfs.sys (CLFS)  .(.Microsoft Corporation - Common Log File System Driver.) - LEGACY_CLFS
O64 - Services: CurCS - 02/06/2012 - C:\Windows\System32\Drivers\cng.sys (CNG)  .(.Microsoft Corporation - Kernel Cryptography, Next Generation.) - LEGACY_CNG
O64 - Services: CurCS - 27/04/2011 - C:\Windows\system32\drivers\dfsc.sys (DfsC)  .(.Microsoft Corporation - DFS Namespace Client Driver.) - LEGACY_DFSC
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\discache.sys (discache)  .(.Microsoft Corporation - System Indexer/Cache Driver.) - LEGACY_DISCACHE
O64 - Services: CurCS - 28/05/2011 - C:\Windows\system32\drivers\dxgkrnl.sys (DXGKrnl)  .(.Microsoft Corporation - DirectX Graphics Kernel.) - LEGACY_DXGKRNL
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\Drivers\fastfat.sys (fastfat)  .(.Microsoft Corporation - Fast FAT File System Driver.) - LEGACY_FASTFAT
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\fileinfo.sys (FileInfo)  .(.Microsoft Corporation - FileInfo Filter Driver.) - LEGACY_FILEINFO
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\fltmgr.sys (FltMgr)  .(.Microsoft Corporation - Gestionnaire de filtres de système de fichi.) - LEGACY_FLTMGR
O64 - Services: CurCS - 24/01/2013 - C:\Windows\system32\drivers\fvevol.sys (fvevol)  .(.Microsoft Corporation - BitLocker Drive Encryption Driver.) - LEGACY_FVEVOL
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\http.sys (HTTP)  .(.Microsoft Corporation - HTTP Pile du protocole.) - LEGACY_HTTP
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\hwpolicy.sys (hwpolicy)  .(.Microsoft Corporation - Hardware Policy Driver.) - LEGACY_HWPOLICY
O64 - Services: CurCS - 22/06/2010 - C:\Windows\System32\DRIVERS\igdpmd64.sys (intelkmd)  .(.Intel Corporation - Intel Graphics Kernel Mode Driver.) - LEGACY_INTELKMD
O64 - Services: CurCS - 02/06/2012 - C:\Windows\System32\Drivers\ksecdd.sys (KSecDD)  .(.Microsoft Corporation - Kernel Security Support Provider Interface.) - LEGACY_KSECDD
O64 - Services: CurCS - 02/06/2012 - C:\Windows\System32\Drivers\ksecpkg.sys (KSecPkg)  .(.Microsoft Corporation - Kernel Security Support Provider Interface.) - LEGACY_KSECPKG
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\DRIVERS\lltdio.sys (lltdio)  .(.Microsoft Corporation - Link-Layer Topology Mapper I/O Driver.) - LEGACY_LLTDIO
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\luafv.sys (luafv)  .(.Microsoft Corporation - Pilote de filtre de virtualisation de fichi.) - LEGACY_LUAFV
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\mountmgr.sys (mountmgr)  .(.Microsoft Corporation - Gestionnaire des points de montage.) - LEGACY_MOUNTMGR
O64 - Services: CurCS - 27/09/2013 - C:\Windows\System32\DRIVERS\MpFilter.sys (MpFilter)  .(.Microsoft Corporation - Microsoft antimalware file system filter dr.) - LEGACY_MPFILTER
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\FirewallAPI.dll (mpsdrv)  .(.Microsoft Corporation - API du Pare-feu Windows.) - LEGACY_MPSDRV
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\wkssvc.dll (mrxsmb)  .(.Microsoft Corporation - DLL du service Station de travail.) - LEGACY_MRXSMB
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\wkssvc.dll (mrxsmb10)  .(.Microsoft Corporation - DLL du service Station de travail.) - LEGACY_MRXSMB10
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\wkssvc.dll (mrxsmb20)  .(.Microsoft Corporation - DLL du service Station de travail.) - LEGACY_MRXSMB20
O64 - Services: CurCS - 18/07/2010 - C:\Windows\System32\DRIVERS\msahci.sys (msahci)  .(.Microsoft Corporation - MS AHCI 1.0 Standard Driver.) - LEGACY_MSAHCI
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\DRIVERS\msisadrv.sys (msisadrv)  .(.Microsoft Corporation - ISA Driver.) - LEGACY_MSISADRV
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\mup.sys (Mup)  .(.Microsoft Corporation - Multiple UNC Provider Driver.) - LEGACY_MUP
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\DRIVERS\nwifi.sys (NativeWifiP)  .(.Microsoft Corporation - Pilote de miniport WiFi natif.) - LEGACY_NATIVEWIFIP
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\ndis.sys (NDIS)  .(.Microsoft Corporation - Pilote NDIS 6.20.) - LEGACY_NDIS
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\DRIVERS\ndisuio.sys (Ndisuio)  .(.Microsoft Corporation - Pilote d’E/S du mode utilisateur NDIS.) - LEGACY_NDISUIO
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\DRIVERS\netbios.sys (NetBIOS)  .(.Microsoft Corporation - NetBIOS interface driver.) - LEGACY_NETBIOS
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\netbt.sys (NetBT)  .(.Microsoft Corporation - MBT Transport driver.) - LEGACY_NETBT
O64 - Services: CurCS - 27/09/2013 - C:\Windows\System32\DRIVERS\NisDrvWFP.sys (NisDrv)  .(.Microsoft Corporation - Microsoft Network Realtime Inspection Drive.) - LEGACY_NISDRV
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\nsiproxy.sys (nsiproxy)  .(.Microsoft Corporation - NSI Proxy.) - LEGACY_NSIPROXY
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\pcw.sys (pcw)  .(.Microsoft Corporation - Performance Counters for Windows Driver.) - LEGACY_PCW
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\peauth.sys (PEAUTH)  .(.Microsoft Corporation - Protected Environment Authentication and Au.) - LEGACY_PEAUTH
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\pacer.sys (Psched)  .(.Microsoft Corporation - Planificateur de paquets QoS.) - LEGACY_PSCHED
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\wkssvc.dll (rdbss)  .(.Microsoft Corporation - DLL du service Station de travail.) - LEGACY_RDBSS
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\DRIVERS\RDPCDD.sys (RDPCDD)  .(.Microsoft Corporation - RDP Miniport.) - LEGACY_RDPCDD
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\RDPENCDD.sys (RDPENCDD)  .(.Microsoft Corporation - RDP Encoder Miniport.) - LEGACY_RDPENCDD
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\RdpRefMp.sys (RDPREFMP)  .(.Microsoft Corporation - RDP Reflector Driver Miniport.) - LEGACY_RDPREFMP
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\DRIVERS\rspndr.sys (rspndr)  .(.Microsoft Corporation - Link-Layer Topology Responder Driver for ND.) - LEGACY_RSPNDR
O64 - Services: CurCS - 10/06/2009 - C:\Windows\System32\Drivers\secdrv.sys (secdrv)  .(.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) - LEGACY_SECDRV
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\Drivers\spldr.sys (spldr)  .(.Microsoft Corporation - loader for security processor.) - LEGACY_SPLDR
O64 - Services: CurCS - 27/08/2010 - C:\Windows\system32\srvsvc.dll (srv)  .(.Microsoft Corporation - DLL du service Serveur.) - LEGACY_SRV
O64 - Services: CurCS - 27/08/2010 - C:\Windows\system32\srvsvc.dll (srv2)  .(.Microsoft Corporation - DLL du service Serveur.) - LEGACY_SRV2
O64 - Services: CurCS - 29/04/2011 - C:\Windows\System32\DRIVERS\srvnet.sys (srvnet)  .(.Microsoft Corporation - Server Network driver.) - LEGACY_SRVNET
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\tcpipcfg.dll (Tcpip)  .(.Microsoft Corporation - Objets de configuration du réseau.) - LEGACY_TCPIP
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\tcpipreg.sys (tcpipreg)  .(.Microsoft Corporation - TCP/IP Registry Compatibility Driver.) - LEGACY_TCPIPREG
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\tcpipcfg.dll (tdx)  .(.Microsoft Corporation - Objets de configuration du réseau.) - LEGACY_TDX
O64 - Services: CurCS - 09/02/2012 - C:\Program Files (x86)\TuneUp Utilities 2012\TuneUpUtilitiesDriver64.sys (TuneUpUtilitiesDrv)  .(.TuneUp Software - TuneUp Utilities Driver.) - LEGACY_TUNEUPUTILITIESDRV
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\vga.sys (VgaSave)  .(.Microsoft Corporation - VGA/Super VGA Video Driver.) - LEGACY_VGASAVE
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\volmgrx.sys (volmgrx)  .(.Microsoft Corporation - Pilote d’extension du gestionnaire de volum.) - LEGACY_VOLMGRX
O64 - Services: CurCS - 06/09/2012 - C:\Windows\System32\drivers\volsnap.sys (volsnap)  .(.Microsoft Corporation - Pilote de cliché instantané du volume.) - LEGACY_VOLSNAP
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\DRIVERS\vwififlt.sys (vwififlt)  .(.Microsoft Corporation - Virtual WiFi Filter Driver.) - LEGACY_VWIFIFLT
O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\rascfg.dll (Wanarpv6)  .(.Microsoft Corporation - Objets de configuration RAS.) - LEGACY_WANARPV6
O64 - Services: CurCS - 26/07/2012 - C:\Windows\System32\drivers\Wdf01000.sys (Wdf01000)  .(.Microsoft Corporation - Runtime de l’infrastructure de pilotes en m.) - LEGACY_WDF01000
O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\DRIVERS\wfplwf.sys (WfpLwf)  .(.Microsoft Corporation - WFP NDIS 6.20 Lightweight Filter Driver.) - LEGACY_WFPLWF
~ Legacy: 96 Scanned in 00mn 00s



---\\ Associations Shell Spawning (O67)
O67 - Shell Spawning: <.bat> <batfile>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.cpl> <cplfile>[HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe  =>.Microsoft Corporation
O67 - Shell Spawning: <.cmd> <cmdfile>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.com> <comfile>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.evt> <evtfile>[HKLM\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Observateur d’événements.) -- C:\Windows\System32\eventvwr.exe
O67 - Shell Spawning: <.exe> <exefile>[HKLM\..\open\Command] (...) -- "%1" %*
O67 - Shell Spawning: <.html> <htmlfile>[HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\IEXPLORE.exe
O67 - Shell Spawning: <.js> <JSFile>[HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\WScript.exe
O67 - Shell Spawning: <.reg> <regfile>[HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe
O67 - Shell Spawning: <.scr> <scrfile>[HKLM\..\open\Command] (...) -- "%1" /S
~ FASS Keys: 10 Scanned in 00mn 00s



---\\ Menu de démarrage Internet (SMI) (O68)
O68 - StartMenuInternet: <FIREFOX.EXE> <Mozilla Firefox>[HKLM\..\Shell\open\Command] (.Not Key.)
O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\Shell\open\Command] (...) --  C:\Program Files (x86)\Internet Explorer\iexplore.exe http://www.delta-homes.com =>Toolbar.DeltaSearch
O68 - StartMenuInternet: <Torch> <>[HKLM\..\Shell\open\Command] (.Not Key.)
~ Keys:  Scanned in 00mn 00s



---\\ Recherche d'infection sur les navigateurs internet (SBI) (O69)
O69 - SBI: SearchScopes [HKCU] {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} [DefaultScope] - (My Online Search) - http://www.my-online-search.com
O69 - SBI: SearchScopes [HKCU] {33BB0A4E-99AF-4226-BDF6-49120163DE86} - (qvo6) - http://search.qvo6.com =>Hijacker.Qvo6
O69 - SBI: SearchScopes [HKCU] {9BB47C17-9C68-4BB3-B188-DD9AF0FD2001} - (Ask.com) - http://dts.search.ask.com
O69 - SBI: SearchScopes [HKCU] {E34F8E3D-1259-4ED6-B56E-AF9200BFF42E} - (Bing) - http://www.bing.com
O69 - SBI: SearchScopes [HKUS\.DEFAULT] {4B8C28A7-A9BC-45F8-990D-21499EED643C} - (QuestScan) - http://www.questscan.com =>Adware.QuestScan
O69 - SBI: SearchScopes [HKUS\S-1-5-18] {4B8C28A7-A9BC-45F8-990D-21499EED643C} - (QuestScan) - http://www.questscan.com =>Adware.QuestScan
~ Keys:  Scanned in 00mn 00s



---\\ Enumère les service demarrés par Svchost (SSS) (O83)
O83 - Search Svchost Services: AeLookupSvc (AeLookupSvc) . (.Microsoft Corporation - Service Expérience d’application.) -- C:\Windows\System32\aelupsvc.dll   [72192]
O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Service de propagation de certificats de cartes à puce Microsoft.) -- C:\Windows\System32\certprop.dll   [80384]
O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Service de propagation de certificats de cartes à puce Microsoft.) -- C:\Windows\System32\certprop.dll   [80384]
O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL du service Serveur.) -- C:\Windows\System32\srvsvc.dll   [236032]
O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Client de stratégie de groupe.) -- C:\Windows\System32\gpsvc.dll   [776192]
O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - Extension IKE.) -- C:\Windows\System32\ikeext.dll   [845824]
O83 - Search Svchost Services: AudioSrv (AudioSrv) . (.Microsoft Corporation - Service Audio Windows.) -- C:\Windows\System32\Audiosrv.dll   [676864]
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gestionnaire de numérotation automatique d’accès distant.) -- C:\Windows\System32\rasauto.dll   [99328]
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Gestionnaire de connexions d’accès distant.) -- C:\Windows\System32\rasmans.dll   [343552]
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gestionnaire d’interface dynamique.) -- C:\Windows\System32\mprdim.dll   [97792]
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Service de notification d’événements système (SENS).) -- C:\Windows\System32\sens.dll   [64512]
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de l’application d’assistance à Microsoft NAT.) -- C:\Windows\System32\ipnathlp.dll   [359424]
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de téléphonie Microsoft® Windows(TM).) -- C:\Windows\System32\tapisrv.dll   [316416]
O83 - Search Svchost Services: UxTuneUp (UxTuneUp) . (.TuneUp Software - TuneUp Theme Extension.) -- C:\Windows\System32\uxtuneup.dll   [36664]
O83 - Search Svchost Services: TermService (TermService) . (.Microsoft Corporation - Gestionnaire des connexions distantes du serveur hôte de session Burea.) -- C:\Windows\System32\termsrv.dll   [706560]
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Agent de mise à jour automatique Windows Update.) -- C:\Windows\system32\wuaueng.dll   [2428952]
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arrière-plan.) -- C:\Windows\System32\qmgr.dll   [848384]
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\Windows\System32\shsvcs.dll   [369664]
O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service offrant une connectivité IPv6 sur un réseau IPv4..) -- C:\Windows\System32\iphlpsvc.dll   [565760]
O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - DLL de service d’ouverture de session secondaire.) -- C:\Windows\system32\seclogon.dll   [30720]
O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Service Informations d’application.) -- C:\Windows\System32\appinfo.dll   [70144]
O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Service de découverte iSCSI.) -- C:\Windows\System32\iscsiexe.dll   [156672]
O83 - Search Svchost Services: MMCSS (MMCSS) . (.Microsoft Corporation - Service Planificateur de classes multimédias.) -- C:\Windows\System32\mmcss.dll   [67584]
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\System32\wbem\WMIsvc.dll   [242688]
O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Service Configuration des services Bureau à distance.) -- C:\Windows\System32\sessenv.dll   [104960]
O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - DLL du service Explorateur d’ordinateurs.) -- C:\Windows\System32\browser.dll   [136704]
O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Service EAPHost Microsoft.) -- C:\Windows\System32\eapsvc.dll   [111104]
O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Service du Planificateur de tâches.) -- C:\Windows\System32\schedsvc.dll   [1114624]
O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Service Gestion des clés.) -- C:\Windows\System32\kmsvc.dll   [90624]
O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Rapports et solutions aux problèmes.) -- C:\Windows\System32\wercplsupport.dll   [84480]
O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\System32\profsvc.dll   [208896]
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - DLL du service des thèmes Windows Shell.) -- C:\Windows\System32\themeservice.dll   [44544]
O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - Service BDE.) -- C:\Windows\System32\bdesvc.dll   [100864]

~ Services: 33 Scanned in 00mn 00s



---\\ Recherche particulière à la racine du système (SPRF) (O84)
[MD5.A58404527EB75A4E7202E7E936BBE124] [SPRF][02/12/2013] (.Smart PC Solutions - PC Speed Maximizer.) -- C:\Users\slvanessa\AppData\Local\Temp\pcspeedmaxsetup.exe   [3447880]  =>Rogue.PCSpeedMaximizer
[MD5.789E50B5A5D602BC141A3725AE22ADCF] [SPRF][05/06/2011] (.Adobe Systems, Inc. - Adobe® Flash® Player Installer/Uninstaller 10.3 r181.) -- C:\Windows\Downloaded Program Files\FP_AX_CAB_INSTALLER.exe   [3119776]
[MD5.7B0C2FBC82CFD78C90B7279F623F0495] [SPRF][14/12/2010] (.Microsoft Corp - Microsoft Support Diagnostic Tool Control.) -- C:\Windows\Downloaded Program Files\MSDcode.dll   [562512]
~ Files: 3 Scanned in 00mn 02s



---\\ Liste des exceptions du parefeu (FirewallRules) (O87)
O87 - FAEL: "SNMPTRAP-In-UDP" | In - Public - P17 - FALSE | .(.Microsoft Corporation - Interruption SNMP.) -- C:\Windows\system32\snmptrap.exe
O87 - FAEL: "SNMPTRAP-In-UDP-NoScope" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Interruption SNMP.) -- C:\Windows\system32\snmptrap.exe
O87 - FAEL: "WMP-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe  =>.Microsoft Corporation
O87 - FAEL: "WMP-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe  =>.Microsoft Corporation
O87 - FAEL: "WMP-Out-TCP" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe  =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-QWave-In-UDP-NoScope" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMPNSS-QWave-Out-UDP-NoScope" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMPNSS-QWave-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMPNSS-QWave-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMPNSS-WMP-In-UDP-NoScope" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe  =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-WMP-Out-UDP-NoScope" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe  =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-WMP-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe  =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-In-UDP-NoScope" |In - Domain - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)  =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-Out-UDP-NoScope" |Out - Domain - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)  =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-In-TCP-NoScope" |In - Domain - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)  =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-Out-TCP-NoScope" |Out - Domain - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)  =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-QWave-In-UDP" | In - Public - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMPNSS-QWave-Out-UDP" | Out - Public - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMPNSS-QWave-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMPNSS-QWave-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMPNSS-SSDPSrv-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMPNSS-SSDPSrv-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMPNSS-WMP-In-UDP" | In - Public - P17 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe  =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-WMP-Out-UDP" | Out - Public - P17 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe  =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-WMP-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe  =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-In-UDP" |In - Public - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)  =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-Out-UDP" |Out - Public - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)  =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-In-TCP" |In - Public - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)  =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-Out-TCP" |Out - Public - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)  =>.Microsoft Corporation
O87 - FAEL: "WMPNSS-UPnP-Out-TCP" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "Microsoft-Windows-HomeGroup-ProvSvc-TCP3587-In" | In - Private - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "Microsoft-Windows-HomeGroup-ProvSvc-TCP3587-Out" | Out - Private - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "Microsoft-Windows-HomeGroup-ProvSvc-UDP3540-In" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "Microsoft-Windows-HomeGroup-ProvSvc-UDP3540-Out" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "PNRPMNRS-PNRP-In-UDP" | In - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "PNRPMNRS-PNRP-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "PNRPMNRS-SSDPSrv-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "PNRPMNRS-SSDPSrv-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RVM-VDS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Service de disque virtuel.) -- C:\Windows\system32\vds.exe
O87 - FAEL: "RVM-VDSLDR-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Virtual Disk Service Loader.) -- C:\Windows\system32\vdsldr.exe
O87 - FAEL: "RVM-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RVM-VDS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Service de disque virtuel.) -- C:\Windows\system32\vds.exe
O87 - FAEL: "RVM-VDSLDR-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Virtual Disk Service Loader.) -- C:\Windows\system32\vdsldr.exe
O87 - FAEL: "RVM-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "Collab-P2PHost-In-TCP" | In - None - P6 - TRUE | .(.Microsoft Corporation - Voisinage immédiat.) -- C:\Windows\system32\p2phost.exe
O87 - FAEL: "Collab-P2PHost-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Voisinage immédiat.) -- C:\Windows\system32\p2phost.exe
O87 - FAEL: "Collab-P2PHost-WSD-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Voisinage immédiat.) -- C:\Windows\system32\p2phost.exe
O87 - FAEL: "Collab-P2PHost-WSD-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Voisinage immédiat.) -- C:\Windows\system32\p2phost.exe
O87 - FAEL: "Collab-PNRP-In-UDP" | In - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "Collab-PNRP-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "Collab-PNRP-SSDPSrv-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "Collab-PNRP-SSDPSrv-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "FPS-SpoolSvc-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Application sous-système spouleur.) -- C:\Windows\system32\spoolsv.exe
O87 - FAEL: "FPS-SpoolSvc-In-TCP" | In - Public - P6 - TRUE | .(.Microsoft Corporation - Application sous-système spouleur.) -- C:\Windows\system32\spoolsv.exe
O87 - FAEL: "FPS-LLMNR-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "FPS-LLMNR-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "CoreNet-DHCP-In" | In - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "CoreNet-DHCP-Out" | Out - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "CoreNet-DHCPV6-In" | In - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "CoreNet-DHCPV6-Out" | Out - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "CoreNet-Teredo-In" | In - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "CoreNet-Teredo-Out" | Out - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "CoreNet-IPHTTPS-Out" | Out - None - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "CoreNet-GP-Out-TCP" | Out - Domain - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "CoreNet-DNS-Out-UDP" | Out - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "CoreNet-GP-LSASS-Out-TCP" | Out - Domain - P6 - TRUE | .(.Microsoft Corporation - Local Security Authority Process.) -- C:\Windows\system32\lsass.exe
O87 - FAEL: "PerfLogsAlerts-PLASrv-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Performance Logs and Alerts DCOM Server.) -- C:\Windows\system32\plasrv.exe
O87 - FAEL: "PerfLogsAlerts-DCOM-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "PerfLogsAlerts-PLASrv-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Performance Logs and Alerts DCOM Server.) -- C:\Windows\system32\plasrv.exe
O87 - FAEL: "PerfLogsAlerts-DCOM-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MsiScsi-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MsiScsi-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MsiScsi-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MsiScsi-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMI-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMI-WINMGMT-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMI-WINMGMT-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMI-ASYNC-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Sink to receive asynchronous callbacks for WMI client application.) -- C:\Windows\system32\wbem\unsecapp.exe
O87 - FAEL: "WMI-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMI-WINMGMT-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMI-WINMGMT-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WMI-ASYNC-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Sink to receive asynchronous callbacks for WMI client application.) -- C:\Windows\system32\wbem\unsecapp.exe
O87 - FAEL: "NETDIS-SSDPSrv-In-UDP-Active" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-SSDPSrv-Out-UDP-Active" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-UPnP-Out-TCP-Active" | Out - Private - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-FDPHOST-In-UDP-Active" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-FDPHOST-Out-UDP-Active" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-LLMNR-In-UDP-Active" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-LLMNR-Out-UDP-Active" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-FDRESPUB-WSD-In-UDP-Active" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-FDRESPUB-WSD-Out-UDP-Active" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-SSDPSrv-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-SSDPSrv-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-UPnP-Out-TCP" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-FDPHOST-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-FDPHOST-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-LLMNR-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-LLMNR-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-FDRESPUB-WSD-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "NETDIS-FDRESPUB-WSD-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteSvcAdmin-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Applications Services et Contrôleur.) -- C:\Windows\system32\services.exe
O87 - FAEL: "RemoteSvcAdmin-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteSvcAdmin-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Applications Services et Contrôleur.) -- C:\Windows\system32\services.exe
O87 - FAEL: "RemoteSvcAdmin-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteTask-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteTask-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteTask-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteTask-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MSDTC-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Service Microsoft Distributed Transaction Coordinator.) -- C:\Windows\system32\msdtc.exe
O87 - FAEL: "MSDTC-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Service Microsoft Distributed Transaction Coordinator.) -- C:\Windows\system32\msdtc.exe
O87 - FAEL: "MSDTC-KTMRM-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MSDTC-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MSDTC-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Service Microsoft Distributed Transaction Coordinator.) -- C:\Windows\system32\msdtc.exe
O87 - FAEL: "MSDTC-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Service Microsoft Distributed Transaction Coordinator.) -- C:\Windows\system32\msdtc.exe
O87 - FAEL: "MSDTC-KTMRM-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MSDTC-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteEventLogSvc-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteEventLogSvc-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteEventLogSvc-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteEventLogSvc-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteFwAdmin-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteFwAdmin-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteFwAdmin-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteFwAdmin-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteAssistance-In-TCP-EdgeScope" | In - Public - P6 - TRUE | .(.Microsoft Corporation - Assistance à distance Windows.) -- C:\Windows\system32\msra.exe
O87 - FAEL: "RemoteAssistance-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Assistance à distance Windows.) -- C:\Windows\system32\msra.exe
O87 - FAEL: "RemoteAssistance-PnrpSvc-UDP-In-EdgeScope" | In - Public - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteAssistance-PnrpSvc-UDP-OUT" | Out - Public - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteAssistance-RAServer-In-TCP-NoScope-Active" | In - Domain - P6 - TRUE | .(.Microsoft Corporation - Serveur COM d’assistance à distance Windows.) -- C:\Windows\system32\raserver.exe
O87 - FAEL: "RemoteAssistance-RAServer-Out-TCP-NoScope-Active" | Out - Domain - P6 - TRUE | .(.Microsoft Corporation - Serveur COM d’assistance à distance Windows.) -- C:\Windows\system32\raserver.exe
O87 - FAEL: "RemoteAssistance-DCOM-In-TCP-NoScope-Active" | In - Domain - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteAssistance-In-TCP-EdgeScope-Active" | In - Domain - P6 - TRUE | .(.Microsoft Corporation - Assistance à distance Windows.) -- C:\Windows\system32\msra.exe
O87 - FAEL: "RemoteAssistance-Out-TCP-Active" | Out - Domain - P6 - TRUE | .(.Microsoft Corporation - Assistance à distance Windows.) -- C:\Windows\system32\msra.exe
O87 - FAEL: "RemoteAssistance-SSDPSrv-In-UDP-Active" | In - Domain - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteAssistance-SSDPSrv-Out-UDP-Active" | Out - Domain - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteAssistance-SSDPSrv-In-TCP-Active" | In - Domain - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteAssistance-SSDPSrv-Out-TCP-Active" | Out - Domain - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteAssistance-PnrpSvc-UDP-In-EdgeScope-Active" | In - Domain - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "RemoteAssistance-PnrpSvc-UDP-OUT-Active" | Out - Domain - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WPDMTP-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Windows Driver Foundation - Processus hôte de l’infrastructure de pilotes.) -- C:\Windows\system32\wudfhost.exe
O87 - FAEL: "WPDMTP-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Windows Driver Foundation - Processus hôte de l’infrastructure de pilotes.) -- C:\Windows\system32\wudfhost.exe
O87 - FAEL: "WPDMTP-SSDPSrv-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WPDMTP-SSDPSrv-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WPDMTP-UPnPHost-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "WPDMTP-UPnP-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "{67A2EFB7-4391-451F-A373-F03359019364}" |In - None - P6 - TRUE | .(...) -- C:\Program Files (x86)\CyberLink\PowerDirector\PDR8.exe (.not file.)
O87 - FAEL: "{BDDF2902-D987-4317-B3E0-D677D7127EAA}" |In - Public - P6 - TRUE | .(...) -- C:\Program Files (x86)\EasyBits For Kids\Programs\My First Browser\MyFirstBrowser.exe (.not file.)
O87 - FAEL: "{2FC39599-7554-4DC1-A95E-889AC38BB1B2}" |In - Public - P17 - TRUE | .(...) -- C:\Program Files (x86)\EasyBits For Kids\Programs\My First Browser\MyFirstBrowser.exe (.not file.)
O87 - FAEL: "NetPres-In-TCP-NoScope" |In - Domain - P6 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.)
O87 - FAEL: "NetPres-Out-TCP-NoScope" |Out - Domain - P6 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.)
O87 - FAEL: "NetPres-WSD-In-UDP" |In - None - P17 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.)
O87 - FAEL: "NetPres-WSD-Out-UDP" |Out - None - P17 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.)
O87 - FAEL: "NetPres-In-TCP" |In - Public - P6 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.)
O87 - FAEL: "NetPres-Out-TCP" |Out - Public - P6 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.)
O87 - FAEL: "MCX-SSDPSrv-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MCX-SSDPSrv-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MCX-In-TCP" | In - None - P6 - FALSE | .(.Microsoft Corporation - Windows Media Center.) -- C:\Windows\ehome\ehshell.exe  =>.Microsoft Corporation
O87 - FAEL: "MCX-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Windows Media Center.) -- C:\Windows\ehome\ehshell.exe  =>.Microsoft Corporation
O87 - FAEL: "MCX-QWave-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MCX-QWave-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MCX-QWave-In-TCP" | In - None - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MCX-QWave-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MCX-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Windows Media Center.) -- C:\Windows\ehome\ehshell.exe  =>.Microsoft Corporation
O87 - FAEL: "MCX-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Windows Media Center.) -- C:\Windows\ehome\ehshell.exe  =>.Microsoft Corporation
O87 - FAEL: "MCX-MCX2SVC-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MCX-Prov-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - MCX2 Provisioning library.) -- C:\Windows\ehome\mcx2prov.exe
O87 - FAEL: "MCX-PlayTo-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MCX-McrMgr-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Media Center Extender Manager.) -- C:\Windows\ehome\mcrmgr.exe
O87 - FAEL: "MCX-PlayTo-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "MCX-FDPHost-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "{0A244285-C42F-42E5-9E1F-F50F176974AF}" | Out - Private - P6 - TRUE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe  =>.Microsoft Corporation
O87 - FAEL: "{8186AB3E-8671-4D61-AD0A-46A4D18BD7AA}" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe  =>.Microsoft Corporation
O87 - FAEL: "{1D52E7D9-22F5-4B7F-B41E-D837E9019BD7}" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe  =>.Microsoft Corporation
O87 - FAEL: "{C453D2BA-1372-4C7C-A9C4-6E59F903EA86}" | Out - Private - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "{AF8FEED5-5163-47E7-AA08-C730D1399BAE}" |Out - Private - P6 - TRUE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)  =>.Microsoft Corporation
O87 - FAEL: "{71A57EDC-099B-447B-A0BA-00014AAAC27D}" |In - Private - P6 - TRUE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)  =>.Microsoft Corporation
O87 - FAEL: "{F4D0D078-0A7C-4A93-805A-1FA53DCED944}" |Out - Private - P17 - TRUE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)  =>.Microsoft Corporation
O87 - FAEL: "{998DE9F2-935D-4DAB-A44A-2B1ECF1B4DC5}" |In - Private - P17 - TRUE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.)  =>.Microsoft Corporation
O87 - FAEL: "{2D2108AD-5257-4E60-9E5F-2309B18628A0}" | Out - Private - P6 - TRUE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe  =>.Microsoft Corporation
O87 - FAEL: "{0860BEBA-15E0-4225-AC44-231EAB3D64FC}" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe  =>.Microsoft Corporation
O87 - FAEL: "{88B3C728-D95F-477C-8359-62A2B7B9B100}" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe  =>.Microsoft Corporation
O87 - FAEL: "{18E5F5BD-90E2-40D2-B0D8-489B3B9F66DE}" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "{4E39BFD0-7C20-48B8-A95F-E35DAAA49642}" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "{5D2DDEFF-218A-4ED9-978B-A9D53F541405}" | Out - Private - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "{7A79F040-34EC-4DF3-9A92-EBE526BF430A}" | In - Private - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "{1508E447-D22E-41D1-A798-54451972FDCE}" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "{FC50535B-D784-47E2-BF42-37224200ED26}" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "{432DADA5-A26E-41C4-996A-CADD186EA978}" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "{48D39688-DC13-4A5C-87F2-D53FD825FA67}" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "{0714CFEE-2DDA-4FAF-8413-9D5E589E0443}" | In - Private - P6 - TRUE | .(.Microsoft Corporation - Application sous-système spouleur.) -- C:\Windows\system32\spoolsv.exe
O87 - FAEL: "TCP Query User{6D644C92-A5A7-4905-899C-DDC732BA0EC5}C:\program files (x86)\symantec\norton online backup\nobuclient.exe" |In - Public - P6 - TRUE | .(...) -- C:\program files (x86)\symantec\norton online backup\nobuclient.exe (.not file.)
O87 - FAEL: "UDP Query User{6C151D52-AEE5-42B8-8E7B-03D75FAED579}C:\program files (x86)\symantec\norton online backup\nobuclient.exe" |In - Public - P17 - TRUE | .(...) -- C:\program files (x86)\symantec\norton online backup\nobuclient.exe (.not file.)
O87 - FAEL: "TCP Query User{77FFF79D-FEA8-4C84-A401-8C01BA118F46}C:\program files (x86)\ares\ares.exe" |In - Public - P6 - TRUE | .(...) -- C:\program files (x86)\ares\ares.exe (.not file.)
O87 - FAEL: "UDP Query User{F15A8784-6C47-430B-AD1F-245E6080E0BA}C:\program files (x86)\ares\ares.exe" |In - Public - P17 - TRUE | .(...) -- C:\program files (x86)\ares\ares.exe (.not file.)
O87 - FAEL: "{2DB7E972-0965-4627-AF4C-1DC9E1605366}" |In - None - P17 - TRUE | .(...) -- C:\Program Files (x86)\HP\hp software update\hpwucli.exe (.not file.)  =>.Hewlett-Packard Co
O87 - FAEL: "TCP Query User{25AAF27F-4995-44B4-9F66-D060C03F2302}C:\program files (x86)\vuze\azureus.exe" |In - Public - P6 - TRUE | .(...) -- C:\program files (x86)\vuze\azureus.exe (.not file.) =>P2P.Azureus
O87 - FAEL: "UDP Query User{E6F1C6D2-A1E2-42FD-A7BB-A003798FE9DE}C:\program files (x86)\vuze\azureus.exe" |In - Public - P17 - TRUE | .(...) -- C:\program files (x86)\vuze\azureus.exe (.not file.) =>P2P.Azureus
O87 - FAEL: "{08594E3A-9584-4B34-A11A-5B381C93B7FA}" | Out - Public - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "{433E35E2-CCBC-4D99-A2E3-3B7D68FC32E8}" | In - Public - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe
O87 - FAEL: "TCP Query User{716C7758-74BA-435C-AB87-306E25E3120B}C:\program files (x86)\internet explorer\iexplore.exe" | In - Private - P6 - TRUE | .(.Microsoft Corporation - Internet Explorer.) -- C:\program files (x86)\internet explorer\iexplore.exe
O87 - FAEL: "UDP Query User{B055DAAE-A016-4FD1-BA89-931121106A8D}C:\program files (x86)\internet explorer\iexplore.exe" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Internet Explorer.) -- C:\program files (x86)\internet explorer\iexplore.exe
O87 - FAEL: "{B1520EDE-2E5A-4EB6-8BAA-06529EF42495}" | In - Private - P6 - TRUE | .(.AVG Technologies CZ, s.r.o. - AVG Installer Application.) -- C:\Program Files (x86)\AVG\AVG2012\avgmfapx.exe
O87 - FAEL: "{41C13E91-4C50-4EAD-AEB4-27B69616FF8B}" | In - Private - P17 - TRUE | .(.AVG Technologies CZ, s.r.o. - AVG Installer Application.) -- C:\Program Files (x86)\AVG\AVG2012\avgmfapx.exe
O87 - FAEL: "TCP Query User{7CD6A054-CB02-419E-A2D4-BED6C3808BF0}C:\program files (x86)\frostwire 5\frostwire.exe" |In - Public - P6 - TRUE | .(...) -- C:\program files (x86)\frostwire 5\frostwire.exe (.not file.)
O87 - FAEL: "UDP Query User{7E70D843-15CE-407A-9D64-5CE0B8D7C005}C:\program files (x86)\frostwire 5\frostwire.exe" |In - Public - P17 - TRUE | .(...) -- C:\program files (x86)\frostwire 5\frostwire.exe (.not file.)
O87 - FAEL: "{3F0B89E2-94B8-4FE5-9646-3436B8848C9D}" | In - Private - P6 - TRUE | .(.Microsoft Corporation - Installateur Windows®.) -- C:\Windows\SysWOW64\msiexec.exe
O87 - FAEL: "{0B7B8103-2120-4D3C-B4C3-45B1A2BEE1C2}" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Installateur Windows®.) -- C:\Windows\SysWOW64\msiexec.exe
O87 - FAEL: "{6E23317F-E6D9-4274-AAB7-864B5BF85939}" | In - Private - P6 - TRUE | .(.France Telecom SA - Orange Upd@te.) -- C:\Program Files (x86)\Orange\OrangeUpdate\Service\OUCore.exe
O87 - FAEL: "{0EF1996B-F328-4664-B88F-FE2D065ED082}" | In - Private - P17 - TRUE | .(.France Telecom SA - Orange Upd@te.) -- C:\Program Files (x86)\Orange\OrangeUpdate\Service\OUCore.exe
O87 - FAEL: "{7593E0A9-36B6-4E25-838A-A3CCC3322320}" |In - Domain - P6 - FALSE | .(...) -- C:\Program Files (x86)\Bandoo\ExtensionsManager.exe (.not file.) =>Adware.Bandoo
O87 - FAEL: "{7B9AE4CE-F528-4FE3-93B4-FF16E7016708}" |In - Domain - P17 - FALSE | .(...) -- C:\Program Files (x86)\Bandoo\ExtensionsManager.exe (.not file.) =>Adware.Bandoo
O87 - FAEL: "{4F2CBF9B-2766-4C88-BEF2-88E4816793DA}" |In - Domain - P6 - FALSE | .(...) -- C:\Program Files (x86)\Mindscape\Adiboud'Chou au pays des bonbons\ac3.exe (.not file.)
O87 - FAEL: "{93758615-2F14-4015-ADF8-B587024ED1C4}" |In - Domain - P17 - FALSE | .(...) -- C:\Program Files (x86)\Mindscape\Adiboud'Chou au pays des bonbons\ac3.exe (.not file.)
O87 - FAEL: "{6D74906A-935E-4AEC-8069-F3CD4E26B90A}" | In - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\System32\svchost.exe
O87 - FAEL: "{71BF8B86-53CA-40CE-87E3-F5DC705CB6D4}" |In - None - P17 - TRUE | .(...) -- C:\Program Files (x86)\Windows Live\Messenger\livecall.exe (.not file.)
O87 - FAEL: "{9A290547-8C74-4450-A371-4A20D6DF2C1A}" | In - Public - P6 - TRUE | .(.France Telecom SA - Orange Upd@te.) -- C:\Program Files (x86)\Orange\OrangeUpdate\Service\OUCore.exe
O87 - FAEL: "{1EA3E4EC-6918-4987-8FFC-0BF8D6FFBAB3}" | In - Public - P17 - TRUE | .(.France Telecom SA - Orange Upd@te.) -- C:\Program Files (x86)\Orange\OrangeUpdate\Service\OUCore.exe
O87 - FAEL: "{ED1E8FE2-398A-41D6-A071-B7D4D019758D}" |In - Public - P6 - TRUE | .(...) -- C:\Program Files (x86)\RelevantKnowledge\rlvknlg.exe (.not file.) =>Adware.RelevantKnowledge
O87 - FAEL: "{FDE3DCE7-B35E-43F1-9AA3-688C106A33E0}" |In - Public - P17 - TRUE | .(...) -- C:\Program Files (x86)\RelevantKnowledge\rlvknlg.exe (.not file.) =>Adware.RelevantKnowledge
O87 - FAEL: "{E40A4CBA-8835-4CE9-A2BF-9C3B598944D6}" | In - None - P6 - TRUE | .(.Microsoft Corporation - SMSvcHost.exe.) -- C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
O87 - FAEL: "{6D636311-7CC0-4F5F-B91B-E37E5E5A55EB}" | In - Private - P6 - TRUE | .(.Musiccity Co.Ltd. - MUZAoDApp Module.) -- C:\Windows\SysWOW64\muzapp.exe
O87 - FAEL: "{5DA18113-F3AE-4DED-8B57-777FA501FA4F}" | In - Private - P17 - TRUE | .(.Musiccity Co.Ltd. - MUZAoDApp Module.) -- C:\Windows\SysWOW64\muzapp.exe
O87 - FAEL: "{23ED1850-4C27-47E8-95E8-B07D144762E7}" | In - None - P17 - TRUE | .(.iMesh, Inc - iMesh.) -- C:\Program Files (x86)\iMesh Applications\iMesh\iMesh.exe =>PUP.iMesh
O87 - FAEL: "{EF3B7D7A-2C87-4DF7-85F6-A7E879E71A47}" | In - Private - P6 - TRUE | .(.AVG Technologies CZ, s.r.o. - AVG Online Shield Service.) -- C:\Program Files (x86)\AVG\AVG2012\avgnsa.exe
O87 - FAEL: "{59E2CEF0-F051-42C7-B4A3-F4159E716B54}" | In - Private - P17 - TRUE | .(.AVG Technologies CZ, s.r.o. - AVG Online Shield Service.) -- C:\Program Files (x86)\AVG\AVG2012\avgnsa.exe
O87 - FAEL: "{E07D57D4-7985-43A0-8E0B-D7C58D078AAC}" | In - Private - P6 - TRUE | .(.AVG Technologies CZ, s.r.o. - AVG Diagnostics Utility.) -- C:\Program Files (x86)\AVG\AVG2012\avgdiagex.exe
O87 - FAEL: "{0E67C0EE-69E4-4DD1-98B7-8B3AFD3DC2E7}" | In - Private - P17 - TRUE | .(.AVG Technologies CZ, s.r.o. - AVG Diagnostics Utility.) -- C:\Program Files (x86)\AVG\AVG2012\avgdiagex.exe
O87 - FAEL: "{5771E71B-3BFE-4CD8-9A80-748564AF8BE9}" | In - Private - P6 - TRUE | .(.AVG Technologies CZ, s.r.o. - AVG Watchdog Service.) -- C:\Program Files (x86)\AVG\AVG2012\avgwdsvc.exe
O87 - FAEL: "{C46DE110-8878-4A97-8679-4BCCE038DBFE}" | In - Private - P17 - TRUE | .(.AVG Technologies CZ, s.r.o. - AVG Watchdog Service.) -- C:\Program Files (x86)\AVG\AVG2012\avgwdsvc.exe
O87 - FAEL: "{4EC42F3E-656C-41AA-9123-4F0FE5A0BE89}" | In - Private - P6 - TRUE | .(.AVG Technologies CZ, s.r.o. - AVG E-mail Scanner.) -- C:\Program Files (x86)\AVG\AVG2012\avgemca.exe
O87 - FAEL: "{265D3882-AAF8-41AE-AA05-BCF428BC13A2}" | In - Private - P17 - TRUE | .(.AVG Technologies CZ, s.r.o. - AVG E-mail Scanner.) -- C:\Program Files (x86)\AVG\AVG2012\avgemca.exe
~ Firewall: 231 Scanned in 00mn 03s



---\\ Enumère les codes produits des logiciels (PUC) (O90)
O90 - PUC: "0694AF70830BBE9498B1F95939A05A44" . (.HP Customer Experience Enhancements.) -- C:\Windows\Installer\{07FA4960-B038-49EB-891B-9F95930AA544}\ARPPRODUCTICON.exe
O90 - PUC: "1CF55E0ED35CD8F41BB45BC91372748C" . (.LightScribe System Software.) -- C:\Windows\Installer\{E0E55FC1-C53D-4F8D-B14B-B59C312747C8}\ARPPRODUCTICON.exe
O90 - PUC: "2220A88709652124AAC94CF80D1E9CEA" . (.Photo Notifier and Animation Creator.) -- C:\Windows\Installer\{788A0222-5690-4212-AA9C-C48FD0E1C9AE}\ARPPRODUCTICON.exe
O90 - PUC: "4255D12C079AAF24CAA8958B7CDCAC13" . (.QuickTime.) -- C:\Windows\Installer\{C21D5524-A970-42FA-AC8A-59B8C7CDCA31}\ARPPRODUCTICON.exe
O90 - PUC: "68AB67CA7DA76301B744BA0000000010" . (.Adobe Reader XI (11.0.05) - Français.) -- C:\Windows\Installer\{AC76BA86-7AD7-1036-7B44-AB0000000001}\SC_Reader.ico
O90 - PUC: "748D8467CBEAFED4DA2A9F33415A4F2F" . (.SLOW-PCfighter.) -- C:\Windows\Installer\{7648D847-AEBC-4DEF-ADA2-F93314A5F4F2}\ARPPRODUCTICON.exe
O90 - PUC: "7A0E71CF9AAE2094298F8CB3F90D2264" . (.HP Support Assistant.) -- C:\Windows\Installer\{FC17E0A7-EAA9-4902-92F8-C83B9FD02246}\ARPPRODUCTICON.exe  =>.Hewlett-Packard Co
O90 - PUC: "7C43C21609E58D74B9C5F017D78D7262" . (.swMSM.) -- C:\Windows\Installer\{612C34C7-5E90-47D8-9B5C-0F717DD82726}\ARPPRODUCTICON.exe
O90 - PUC: "BA0A2B44E214C8F40B851D8EEACCFD5F" . (.PowerRecover.) -- C:\Windows\Installer\{44B2A0AB-412E-4F8C-B058-D1E8AECCDFF5}\ARPPRODUCTICON.exe
O90 - PUC: "D7314F9862C648A4DB8BE2A5B47BE100" . (.Microsoft Silverlight.) -- c:\Windows\Installer\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}\ARPIcon
O90 - PUC: "F60C1AD7319C7C64A8F0ADC2AB71AED1" . (.OpenOffice.org 3.4.1.) -- C:\Windows\Installer\{7DA1C06F-C913-46C7-8A0F-DA2CBA17EA1D}\soffice.ico
~ Update Products: 46 Scanned in 00mn 00s



---\\ Export de clés de registre aléatoires (O91)
[HKCU\Software\5257df8ab469b940\2.6.1339.144\upd]:="upd=1"  =>Rogue.PCPerformer
[HKCU\Software\5257df8ab469b940\history\{61d8b74e-8d89-46ff-afa6-33382c54ac73}2.2.587.187]:dllName="pcpmngr.dll"  =>Rogue.PCPerformer
[HKCU\Software\5257df8ab469b940\history\{61d8b74e-8d89-46ff-afa6-33382c54ac73}2.2.587.187]:exeName="pcpmngr.exe"  =>Rogue.PCPerformer
[HKCU\Software\5257df8ab469b940\history\{61d8b74e-8d89-46ff-afa6-33382c54ac73}2.2.587.187]:folderName="PC Performer Manager" =>Rogue.PCPerformer
[HKCU\Software\5257df8ab469b940\history\{61d8b74e-8d89-46ff-afa6-33382c54ac73}2.2.587.187]:guid="{61d8b74e-8d89-46ff-afa6-33382c54ac73}"  =>Rogue.PCPerformer
[HKCU\Software\5257df8ab469b940\history\{61d8b74e-8d89-46ff-afa6-33382c54ac73}2.2.587.187]:serviceName="PC Performer Manager" =>Rogue.PCPerformer
[HKCU\Software\5257df8ab469b940\history\{61d8b74e-8d89-46ff-afa6-33382c54ac73}2.2.587.187]:version="2.2.587.187"  =>Rogue.PCPerformer
[HKCU\Software\5257df8ab469b940\history\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}2.6.1095.52]:guid="{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}" =>Hijacker.Eazel
[HKCU\Software\5257df8ab469b940\history\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}2.6.1095.52]:version="2.6.1095.52" =>Hijacker.Eazel
[HKCU\Software\5257df8ab469b940\history\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}2.6.1339.144]:guid="{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}" =>Hijacker.Eazel
[HKCU\Software\5257df8ab469b940\history\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}2.6.1339.144]:version="2.6.1339.144" =>Hijacker.Eazel
[HKCU\Software\5257df8ab469b940] =>PUP.Babylon^
[HKCU\Software\5257df8ab469b940]:version="2.6.1339.144"  =>Rogue.PCPerformer
[HKLM\Software\Wow6432Node\5257df8ab469b940]:version="2.6.1339.144"  =>Rogue.PCPerformer
~ Export Key Software:  Scanned in 00mn 00s



---\\ Recherche des packages WindowsInstaller (WIS) (O93) (NTFS)
[MD5.3E4ABDD06B225C8CB9F971EC15E6CF98] [WIS][22/06/2013] (.SPAMfighter ApS - SLOW-PCfighter Installer.) -- C:\Windows\Installer\48d491.msi   [6708736]
[MD5.57709CE926C028E8122232CFE85F2DFA] [WIS][09/12/2012] (.iMesh Inc. - iMesh.) -- C:\Windows\Installer\50f451a.msi   [331776]  =>PUP.iMesh
[MD5.19712A22B7742B562315F4C73F8D5D20] [WIS][26/09/2011] (.IncrediMail - Photo Notifier and Animation Creator.) -- C:\Windows\Installer\80374c9.msi   [2832896]
[MD5.C19DC6E14EC67E1A6BDEF59849364EFA] [WIS][10/02/2012] (.TuneUp Software - TuneUp Utilities Language Pack (fr-FR).) -- C:\Windows\Installer\cabd1.msi   [2918912]
[MD5.B04CCF5F76934AE5CD9A2DE6385CD703] [WIS][10/02/2012] (.TuneUp Software - TuneUp Utilities 2012.) -- C:\Windows\Installer\cabd5.msi   [24050176]
~ WIS: 53 Scanned in 00mn 08s



---\\ Etat général des services non Microsoft (EGS) (SR=Running, SS=Stopped)
SS - | Demand 24/11/2013 257416 |  (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
SS - | Disabled 18/11/2009 98208 |  (AERTFilters) . (.Andrea Electronics Corporation.) - C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
SS - | Auto 10/07/1658 0 |  (eSafeSvc) . (...) - C:\ProgramData\eSafe\eSafeSvc.exe =>PUP.eSafeSecurity
SS - | Disabled 28/03/2011 799800 |  (hpqwmiex) . (.Hewlett-Packard Company.) - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
SS - | Disabled 13/04/2010 13336 |  (IAStorDataMgrSvc) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
SS - | Demand 03/04/2005 69632 |  (IDriverT) . (.Macrovision Corporation.) - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
SS - | Disabled 04/03/2011 73728 |  (LightScribeService) . (.Hewlett-Packard Company.) - C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
SS - | Auto 22/10/2013 2144056 |  (TuneUp.UtilitiesSvc) . (.TuneUp Software.) - C:\Program Files (x86)\TuneUp Utilities 2012\TuneUpUtilitiesService64.exe
SS - | Demand 14/07/2009 27136 | C:\Program Files (x86)\Windows Defender\mpsvc.dll (WinDefend) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe

SR - | Auto 11/05/2013 65640 |  (AdobeARMservice) . (.Adobe Systems Incorporated.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
SR - | Auto 22/06/2010 203264 |  (AMD External Events Utility) . (.AMD.) - C:\Windows\System32\atiesrxx.exe
SR - | Auto 16/10/2013 5175856 |  (AVGIDSAgent) . (.AVG Technologies CZ, s.r.o..) - C:\Program Files (x86)\AVG\AVG2012\AVGIDSAgent.exe
SR - | Auto 14/02/2012 193288 |  (avgwd) . (.AVG Technologies CZ, s.r.o..) - C:\Program Files (x86)\AVG\AVG2012\avgwdsvc.exe
SR - | Auto 10/07/1658 0 |  (ezSharedSvc) . (.EasyBits Software AS.) - C:\Windows\System32\ezSharedSvcHost.exe  =>.EasyBits Software AS
SR - | Auto 23/10/2013 23808 |  (MsMpSvc) . (.Microsoft Corporation.) - c:\Program Files\Microsoft Security Client\MsMpEng.exe
SR - | Auto 14/07/2009 27136 | C:\Windows\system32\HPZinw12.dll (Net Driver HPZ12) . (.Hewlett-Packard.) - C:\Windows\System32\svchost.exe
SR - | Auto 14/07/2009 27136 | C:\Windows\system32\HPZipm12.dll (Pml Driver HPZ12) . (.Hewlett-Packard.) - C:\Windows\System32\svchost.exe
SR - | Auto 14/07/2009 27136 | C:\Windows\System32\uxtuneup.dll (UxTuneUp) . (.TuneUp Software.) - C:\Windows\System32\svchost.exe
SR - | Auto 17/07/2013 424104 |  (winzipersvc) . (.Taiwan Shui Mu Chih Ching Technology Limite.) - C:\Program Files (x86)\WinZipper\winzipersvc.exe
SR - | Auto 10/07/1658 0 |  (WMPNetworkSvc) . (...) - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe  =>.Microsoft Corporation
SR - | Auto 14/07/2009 27136 | C:\Windows\system32\wuaueng.dll (wuauserv) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe

~ Services:  Scanned in 00mn 12s



---\\ Recherche d'infection sur le Master Boot Record (MBR)(O80)
Run by slvanessa at 07/12/2013 10:18:18
~ OS 64 not supported by MBR tool

~ MBR: 0 Scanned in 00mn 00s



---\\ Recherche d'infection sur le Master Boot Record (MBRCheck)(O80)
Written by ad13, http://ad13.geekstog
Run by slvanessa at 07/12/2013 10:18:20

********* Dump file Name *********
C:\PhysicalDisk0_MBR.bin

~ MBR:  Scanned in 00mn 02s



---\\ Scan Additionnel (O88)
Database Version : 13011 - (06/12/2013)
Clés trouvées (Keys found) : 373
Valeurs trouvées (Values found) : 5
Dossiers trouvés  (Folders found) : 69
Fichiers trouvés  (Files found) : 38

[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9D717F81-9148-4F12-8568-69135F087DB0}]   =>PUP.Datamngr^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FD72061E-9FDE-484D-A58A-0BAB4151CAD8}]   =>Adware.Yontoo^
[HKLM\SYSTEM\CurrentControlSet\Services\eSafeSvc]   =>PUP.eSafeSecurity^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}]   =>Adware.BonanzaDeals^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\Penwes]   =>PUP.Penwes^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{09C14BAE-2D45-4133-B0FA-5EA4FE5CF978}]   =>PUP.SpecialSavings^
[HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\iMesh]   =>PUP.iMesh^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{8FB495A1-4A3F-4C1D-BD27-3F3AB2E66763}]   =>PUP.iMesh^
[HKLM\Software\Classes\AppID\{EA28B360-05E0-4F93-8150-02891F1D8D3C}]   =>PUP.Funmoods
[HKLM\Software\Wow6432Node\Classes\AppID\{EA28B360-05E0-4F93-8150-02891F1D8D3C}]   =>PUP.Funmoods
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{00CBB66B-1D3B-46D3-9577-323A336ACB50}]   =>PUP.Blabbers
[HKLM\Software\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}]   =>Toolbar.AVGSearch
[HKLM\Software\Wow6432Node\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}]   =>Toolbar.AVGSearch
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{05EEB91A-AEF7-4F8A-978F-FB83E7B03F8E}]   =>Toolbar.Conduit
[HKLM\Software\Classes\Interface\{06DE5702-44CF-4B79-B4EF-3DDF653358F5}]   =>Adware.Bandoo
[HKLM\Software\Wow6432Node\Classes\Interface\{06DE5702-44CF-4B79-B4EF-3DDF653358F5}]   =>Adware.Bandoo
[HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{0ABE0FED-50E7-4e42-A125-57C0A11DBCDE}]   =>PUP.iMesh
[HKLM\Software\Classes\Interface\{0D80F1C5-D17B-4177-AC68-955F3EF9F191}]   =>PUP.Funmoods
[HKLM\Software\Wow6432Node\Classes\Interface\{0D80F1C5-D17B-4177-AC68-955F3EF9F191}]   =>PUP.Funmoods
[HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ecdf796-c2dc-4d79-a620-cce0c0a66cc9}]   =>PUP.Babylon
[HKLM\Software\Classes\Interface\{10DE7085-6A1E-4D41-A7BF-9AF93E351401}]   =>Adware.Yontoo
[HKLM\Software\Wow6432Node\Classes\Interface\{10DE7085-6A1E-4D41-A7BF-9AF93E351401}]   =>Adware.Yontoo
[HKLM\Software\Classes\AppID\{1301a8a5-3dfb-4731-a162-b357d00c9644}]   =>Adware.Bandoo
[HKLM\Software\Wow6432Node\Classes\AppID\{1301a8a5-3dfb-4731-a162-b357d00c9644}]   =>Adware.Bandoo
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{19803860-B306-423C-BBB5-F60A7D82CDE5}]   =>Toolbar.Agent
[HKLM\Software\Classes\Interface\{1AD27395-1659-4DFF-A319-2CFA243861A5}]   =>Adware.Yontoo
[HKLM\Software\Wow6432Node\Classes\Interface\{1AD27395-1659-4DFF-A319-2CFA243861A5}]   =>Adware.Yontoo
[HKLM\Software\Classes\Interface\{1B730ACF-26A3-447B-9994-14AEE0EB72CC}]   =>Adware.Bandoo
[HKLM\Software\Wow6432Node\Classes\Interface\{1B730ACF-26A3-447B-9994-14AEE0EB72CC}]   =>Adware.Bandoo
[HKLM\Software\Classes\AppID\{1fc41815-fa4c-4f8b-b143-2c045c8ea2fc}]   =>PUP.Kiwee
[HKLM\Software\Wow6432Node\Classes\AppID\{1fc41815-fa4c-4f8b-b143-2c045c8ea2fc}]   =>PUP.Kiwee
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{20a0be68-8fd9-4539-8712-ce3d1c1fdfc6}]   =>Adware.IMBooster
[HKLM\Software\Classes\AppID\{20EDC024-43C5-423E-B7F5-FD93523E0D9F}]   =>Toolbar.Agent
[HKLM\Software\Wow6432Node\Classes\AppID\{20EDC024-43C5-423E-B7F5-FD93523E0D9F}]   =>Toolbar.Agent
[HKLM\Software\Classes\AppID\{21493C1F-D071-496A-9C27-450578888291}]   =>PUP.iMesh
[HKLM\Software\Wow6432Node\Classes\AppID\{21493C1F-D071-496A-9C27-450578888291}]   =>PUP.iMesh
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{26c9e18c-3717-4be1-a225-04e4471f5b6e}]   =>Adware.IMBooster
[HKLM\Software\Classes\CLSID\{2C353E32-B8AC-4B82-B988-4C2D3394388A}]   =>PUP.BearShare
[HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}]   =>PUP.V9Software
[HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}]   =>PUP.V9Software
[HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}]   =>PUP.V9Software
[HKLM\Software\Classes\AppID\{373ED12D-B306-43AC-9485-A7C5133DC34C}]   =>Toolbar.Agent
[HKLM\Software\Wow6432Node\Classes\AppID\{373ED12D-B306-43AC-9485-A7C5133DC34C}]   =>Toolbar.Agent
[HKLM\Software\Classes\AppID\{403A885F-CB00-40C1-BDC1-EB09053194F7}]   =>PUP.iMesh
[HKLM\Software\Classes\TypeLib\{403A885F-CB00-40C1-BDC1-EB09053194F7}]   =>PUP.iMesh
[HKLM\Software\Wow6432Node\Classes\AppID\{403A885F-CB00-40C1-BDC1-EB09053194F7}]   =>PUP.iMesh
[HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{424624f4-c5dd-4e1d-bdd0-1e9c9b7799cc}]   =>Adware.Bandoo
[HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{424624f4-c5dd-4e1d-bdd0-1e9c9b7799cc}]   =>Adware.Bandoo
[HKLM\Software\Classes\Interface\{477f210a-2a86-4666-9c4b-1189634d2c84}]   =>Adware.Bandoo
[HKLM\Software\Wow6432Node\Classes\Interface\{477f210a-2a86-4666-9c4b-1189634d2c84}]   =>Adware.Bandoo
[HKLM\Software\Classes\Interface\{4897bba6-48d9-468c-8efa-846275d7701b}]   =>Adware.SocialSkinz
[HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\omigaplussvc]   =>Hijacker.OmigaPlus
[HKLM\Software\Classes\AppID\{55C1727F-5535-4C2A-9601-8C2458608B48}]   =>PUP.iMesh
[HKLM\Software\Classes\TypeLib\{55C1727F-5535-4C2A-9601-8C2458608B48}]   =>PUP.iMesh
[HKLM\Software\Wow6432Node\Classes\AppID\{55C1727F-5535-4C2A-9601-8C2458608B48}]   =>PUP.iMesh
[HKLM\Software\Classes\AppID\{5B1881D1-D9C7-46df-B041-1E593282C7D0}]   =>Adware.BullseyeToolbar
[HKLM\Software\Wow6432Node\Classes\AppID\{5B1881D1-D9C7-46df-B041-1E593282C7D0}]   =>Adware.BullseyeToolbar
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{6087829B-114F-42A1-A72B-B4AEDCEA4E5B}]   =>Toolbar.Agent
[HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{628F3201-34D0-49C0-BB9A-82A26AEFB291}]   =>Adware.SocialSkinz
[HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{65bcd620-07dd-012f-819f-073cf1b8f7c6}]   =>PUP.RewardsArcade
[HKLM\Software\Classes\Interface\{69d3f709-9de2-479f-980f-532d46895703}]   =>Adware.BHO
[HKLM\Software\Wow6432Node\Classes\Interface\{69d3f709-9de2-479f-980f-532d46895703}]   =>Adware.BHO
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{7C3B01BC-53A5-48A0-A43B-0C67731134B9}]   =>PUP.iMesh
[HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{7f000001-db8e-f89c-2fec-49bf726f8c12}]   =>Adware.Bandoo
[HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{7f000001-db8e-f89c-2fec-49bf726f8c12}]   =>Adware.Bandoo
[HKLM\Software\Classes\Interface\{817923CB-4744-4216-B250-CF7EDA8F1767}]   =>PUP.Blabbers
[HKLM\Software\Wow6432Node\Classes\Interface\{817923CB-4744-4216-B250-CF7EDA8F1767}]   =>PUP.Blabbers
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{872F3C0B-4462-424c-BB9F-74C6899B9F92}]   =>Adware.Bandoo
[HKLM\Software\Classes\AppID\{960DF771-CFCB-4E53-A5B5-6EF2BBE6E706}]   =>PUP.Funmoods
[HKLM\Software\Wow6432Node\Classes\AppID\{960DF771-CFCB-4E53-A5B5-6EF2BBE6E706}]   =>PUP.Funmoods
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{963B125B-8B21-49A2-A3A8-E37092276531}]   =>PUP.Blabbers
[HKLM\Software\Classes\AppID\{969D2C61-9B16-407c-86B7-397BF4579BE6}]   =>PUP.iMesh
[HKLM\Software\Classes\TypeLib\{969D2C61-9B16-407c-86B7-397BF4579BE6}]   =>PUP.iMesh
[HKLM\Software\Wow6432Node\Classes\AppID\{969D2C61-9B16-407c-86B7-397BF4579BE6}]   =>PUP.iMesh
[HKLM\Software\Classes\TypeLib\{96F7FABC-5789-EFA4-B6ED-1272F4C1D27B}]   =>PUP.SweetIM
[HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{99079A25-328F-4BD4-BE04-00955ACAA0A7}]   =>Adware.Bandoo
[HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}]   =>Adware.Bandoo
[HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}]   =>Adware.Bandoo
[HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{9bb47c17-9c68-4bb3-b188-dd9af0fd2a59}]   =>PUP.iMesh
[HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{9c8a3ca5-889e-4554-beec-ec0876e4e96a}]   =>Adware.Bandoo
[HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{9c8a3ca5-889e-4554-beec-ec0876e4e96a}]   =>Adware.Bandoo
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{9D717F81-9148-4F12-8568-69135F087DB0}]   =>Adware.Bandoo
[HKLM\Software\Classes\CLSID\{9D717F81-9148-4F12-8568-69135F087DB0}]   =>Adware.Bandoo
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9D717F81-9148-4F12-8568-69135F087DB0}]   =>Adware.Bandoo
[HKLM\Software\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}]   =>PUP.ToparcadeHits
[HKLM\Software\Wow6432Node\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}]   =>PUP.ToparcadeHits
[HKLM\Software\Classes\Interface\{9F0C17EB-EF2C-4278-9136-2D547656BC03}]   =>PUP.Blabbers
[HKLM\Software\Wow6432Node\Classes\Interface\{9F0C17EB-EF2C-4278-9136-2D547656BC03}]   =>PUP.Blabbers
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{A047FE02-C91C-41CB-898C-4ED21B86025A}]   =>Toolbar.Orange
[HKLM\Software\Classes\AppID\{A7DDCBDE-5C86-415c-8A37-763AE183E7E4}]   =>PUP.iMesh
[HKLM\Software\Wow6432Node\Classes\AppID\{A7DDCBDE-5C86-415c-8A37-763AE183E7E4}]   =>PUP.iMesh
[HKLM\Software\Classes\Interface\{A9379648-F6EB-4F65-A624-1C10411A15D0}]   =>Adware.Facemoods
[HKLM\Software\Wow6432Node\Classes\Interface\{A9379648-F6EB-4F65-A624-1C10411A15D0}]   =>Adware.Facemoods
[HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}]   =>Toolbar.Conduit
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{B6F8DA9F-2696-419e-A8A3-19BE41EF51BD}]   =>PUP.iMesh
[HKLM\Software\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB}]   =>Adware.CDNHelper
[HKLM\Software\Wow6432Node\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB}]   =>Adware.CDNHelper
[HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C87FC351-A80D-43E9-9A86-CF1E29DC443A}]   =>PUP.Funmoods
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{C9A6357B-25CC-4BCF-96C1-78736985D412}]   =>Toolbar.Orange
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{C9A6357B-25CC-4BCF-96C1-78736985D412}]   =>Toolbar.Orange
[HKLM\Software\Classes\AppID\{CFDAFE39-20CE-451D-BD45-A37452F39CF0}]   =>Adware.Yontoo
[HKLM\Software\Wow6432Node\Classes\AppID\{CFDAFE39-20CE-451D-BD45-A37452F39CF0}]   =>Adware.Yontoo
[HKLM\Software\Classes\TypeLib\{D372567D-67C1-4B29-B3F0-159B52B3E967}]   =>Adware.Yontoo
[HKLM\Software\Classes\AppID\{D616A4A2-7B38-4DBC-9093-6FE7A4A21B17}]   =>Toolbar.Wajam
[HKLM\Software\Wow6432Node\Classes\AppID\{D616A4A2-7B38-4DBC-9093-6FE7A4A21B17}]   =>Toolbar.Wajam
[HKLM\Software\Classes\AppID\{D97A8234-F2A2-4AD4-91D5-FECDB2C553AF}]   =>Adware.Bandoo
[HKLM\Software\Wow6432Node\Classes\AppID\{D97A8234-F2A2-4AD4-91D5-FECDB2C553AF}]   =>Adware.Bandoo
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{DF7770F7-832F-4BDF-B144-100EDDD0C3AE}]   =>Adware.Yontoo
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{DF7770F7-832F-4BDF-B144-100EDDD0C3AE}]   =>Adware.Yontoo
[HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E6B969FB-6D33-48d2-9061-8BBD4899EB08}]   =>Adware.IMBooster
[HKLM\Software\Classes\TypeLib\{ec96f516-51b2-4b46-8451-8665f5a6ba2b}]   =>Adware.BHO
[HKLM\Software\Classes\AppID\{ED6535E7-F778-48A5-A060-549D30024511}]   =>Toolbar.Agent
[HKLM\Software\Wow6432Node\Classes\AppID\{ED6535E7-F778-48A5-A060-549D30024511}]   =>Toolbar.Agent
[HKLM\Software\Classes\Interface\{EFDCAF05-D29C-4D4D-9836-8CDCD606A6B2}]   =>PUP.Babylon
[HKLM\Software\Wow6432Node\Classes\Interface\{EFDCAF05-D29C-4D4D-9836-8CDCD606A6B2}]   =>PUP.Babylon
[HKLM\Software\Classes\TypeLib\{f07fbd3e-2048-44a4-9065-71bf551e2672}]   =>PUP.iMesh
[HKLM\Software\Classes\Interface\{F16AB1DB-15C0-4456-A29E-4DF24FB9E3D2}]   =>Adware.Facemoods
[HKLM\Software\Wow6432Node\Classes\Interface\{F16AB1DB-15C0-4456-A29E-4DF24FB9E3D2}]   =>Adware.Facemoods
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{F25AF245-4A81-40DC-92F9-E9021F207706}]   =>Toolbar.AVGSearch
[HKLM\Software\Classes\Interface\{F42C7B47-5234-4BF5-8882-DAAC0D64870D}]   =>PUP.iMesh
[HKLM\Software\Wow6432Node\Classes\Interface\{F42C7B47-5234-4BF5-8882-DAAC0D64870D}]   =>PUP.iMesh
[HKLM\Software\Classes\Interface\{F7BEBBB1-7E6B-4561-9444-6F4866D60C7C}]   =>PUP.iMesh
[HKLM\Software\Wow6432Node\Classes\Interface\{F7BEBBB1-7E6B-4561-9444-6F4866D60C7C}]   =>PUP.iMesh
[HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{f9189560-573a-4fde-b055-ae7b0f4cf080}]   =>Adware.Bandoo
[HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{f9189560-573a-4fde-b055-ae7b0f4cf080}]   =>Adware.Bandoo
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{FD72061E-9FDE-484D-A58A-0BAB4151CAD8}]   =>Adware.Yontoo
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{FD72061E-9FDE-484D-A58A-0BAB4151CAD8}]   =>Adware.Yontoo
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FD72061E-9FDE-484D-A58A-0BAB4151CAD8}]   =>Adware.Yontoo
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{fe063dbb-4ec0-403e-8dd8-394c54984b2c}]   =>Toolbar.AskTBar
[HKLM\Software\Classes\Interface\{ff871e51-2655-4d06-aed5-745962a96b32}]   =>Adware.Bandoo
[HKLM\Software\Wow6432Node\Classes\Interface\{ff871e51-2655-4d06-aed5-745962a96b32}]   =>Adware.Bandoo
[HKLM\Software\Classes\AppID\bandoocore.exe]   =>Adware.Bandoo
[HKLM\Software\Classes\AppID\BrowserConnection.dll]   =>Adware.Bandoo
[HKLM\Software\Classes\AppID\DiscoveryHelper.DLL]   =>PUP.BearShare
[HKLM\Software\Classes\AppID\GIFAnimator.DLL]   =>PUP.BearShare
[HKLM\Software\Classes\AppID\iMesh.exe]   =>PUP.iMesh
[HKLM\Software\Classes\AppID\IMTrProgress.DLL]   =>PUP.BearShare
[HKLM\Software\Classes\AppID\IMWeb.DLL]   =>PUP.BearShare
[HKLM\Software\Classes\AppID\Launcher.EXE]   =>PUP.BearShare
[HKLM\Software\Classes\AppID\tdataprotocol.DLL]   =>Toolbar.Agent
[HKLM\Software\Classes\AppID\updatebho.DLL]   =>Toolbar.Agent
[HKLM\Software\Classes\AppID\wit4ie.DLL]   =>Toolbar.Agent
[HKLM\Software\Classes\AppID\WMHelper.DLL]   =>PUP.BearShare
[HKLM\Software\Wow6432Node\Microsoft\Tracing\BingBar_RASMANCS]   =>Toolbar.Bing
[HKLM\Software\Classes\BrowserConnection.Loader]   =>Adware.Bandoo
[HKLM\Software\Classes\BrowserConnection.Loader.1]   =>Adware.Bandoo
[HKLM\Software\Classes\DiscoveryHelper.iMesh6Discovery]   =>PUP.iMesh
[HKLM\Software\Classes\DiscoveryHelper.iMesh6Discovery.1]   =>PUP.iMesh
[HKLM\Software\Classes\imweb.imwebcontrol]   =>PUP.iMesh
[HKLM\Software\Classes\SearchBar.Client]   =>Toolbar.Agent
[HKLM\Software\Classes\updatebho.TimerBHO]   =>PUP.Blabbers
[HKLM\Software\Classes\updatebho.TimerBHO.1]   =>PUP.Blabbers
[HKLM\Software\Classes\wit4ie.WitBHO]   =>PUP.Blabbers
[HKLM\Software\Classes\wit4ie.WitBHO.2]   =>PUP.Blabbers
[HKLM\Software\Google\Chrome\Extensions\dlnembnfbcpjnepmfjmngjenhhajpdfd]   =>Adware.IncrediBar
[HKLM\Software\Wow6432Node\Google\Chrome\Extensions\dlnembnfbcpjnepmfjmngjenhhajpdfd]   =>Adware.IncrediBar
[HKLM\Software\Wow6432Node\Google\Chrome\Extensions\fjglfdldpdljgfjkfgieaocdapejkdlh]   =>Adware.Boxore
[HKLM\Software\Wow6432Node\Google\Chrome\Extensions\paoponfhfdfnjgddpnpjkambkcgdaaib]   =>Toolbar.Conduit
[HKLM\Software\Wow6432Node\AedgePerformanceBCN]   =>Adware.SPointer
[HKCU\Software\APN PIP]   =>Toolbar.Ask
[HKCU\Software\APN]   =>Toolbar.Ask
[HKLM\Software\Wow6432Node\AskToolbar]   =>Toolbar.AskTBar
[HKLM\Software\Microsoft\Shared Tools\MSConfig\startupreg\BabylonToolbar]   =>PUP.Babylon
[HKLM\Software\Wow6432Node\Bandoo]   =>Adware.Bandoo
[HKCU\Software\Blabbers]   =>PUP.Blabbers
[HKLM\Software\Wow6432Node\Boxore]   =>Adware.Boxore
[HKCU\Software\ChatZum Toolbar]   =>Toolbar.ChatZum
[HKLM\Software\Wow6432Node\ChatZum Toolbar]   =>Toolbar.ChatZum
[HKCU\Software\AppDataLow\Software\ConduitSearchScopes]   =>Toolbar.Conduit
[HKLM\Software\DataMngr]   =>Adware.Bandoo
[HKLM\Software\Microsoft\Shared Tools\MSConfig\startupreg\DataMngr]   =>Adware.Bandoo
[HKLM\Software\Wow6432Node\DataMngr]   =>Adware.Bandoo
[HKCU\Software\FissaSearch]   =>PUP.OfferBox
[HKLM\Software\Wow6432Node\freeze.com]   =>Adware.BHO
[HKLM\Software\Wow6432Node\funmoods]   =>PUP.Funmoods
[HKCU\Software\lollipop]   =>Adware.Lollipop
[HKCU\Software\iMesh]   =>PUP.iMesh
[HKLM\Software\Wow6432Node\iMesh]   =>PUP.iMesh
[HKLM\Software\Wow6432Node\Iminent]   =>Adware.IMBooster
[HKCU\Software\OfferBox]   =>PUP.OfferBox
[HKLM\Software\Wow6432Node\OfferBox]   =>PUP.OfferBox
[HKCU\Software\pc_gear_fr]   =>Toolbar.Conduit
[HKCU\Software\AppDataLow\Software\pc_gear_fr]   =>Toolbar.Conduit
[HKLM\Software\Wow6432Node\pc_gear_fr]   =>Toolbar.Conduit
[HKLM\Software\Wow6432Node\PIP]   =>Toolbar.Ask
[HKCU\Software\PriceGong]   =>Adware.PriceGong
[HKCU\Software\AppDataLow\Software\PriceGong]   =>Adware.PriceGong
[HKLM\Software\Wow6432Node\SearchquMediabarTb]   =>Adware.Bandoo
[HKCU\Software\AppDataLow\Software\searchqutoolbar]   =>Adware.Bandoo
[HKCU\Software\Softonic]   =>Toolbar.Conduit
[HKCU\Software\SweetIM]   =>PUP.SweetIM
[HKLM\Software\Wow6432Node\SweetIM]   =>PUP.SweetIM
[HKLM\Software\Tarma Installer]   =>PUP.Tarma
[HKCU\Software\AppDataLow\Software\Toolbar]   =>Toolbar.Conduit
[HKCU\Software\Tuto4pc]   =>PUP.Eorezo
[HKLM\Software\Wow6432Node\Tuto4pc]   =>PUP.Eorezo
[HKCU\Software\Tutorials]   =>Spyware.AgenceExclusive
[HKLM\Software\Web Assistant]   =>Adware.IncrediBar
[HKLM\Software\Wow6432Node\Web Assistant]   =>Adware.IncrediBar
[HKCU\Software\Complitly]   =>Adware.PredictAd
[HKLM\Software\Wow6432Node\Microsoft\Tracing\Babylon_RASAPI32]   =>PUP.Babylon
[HKLM\Software\Wow6432Node\Microsoft\Tracing\Babylon_RASMANCS]   =>PUP.Babylon
[HKLM\Software\Wow6432Node\Microsoft\Tracing\MyBabylontb_RASAPI32]   =>PUP.Babylon
[HKLM\Software\Wow6432Node\Microsoft\Tracing\MyBabylontb_RASMANCS]   =>PUP.Babylon
[HKLM\Software\Wow6432Node\Microsoft\Tracing\Searchqu Toolbar uninstall_RASAPI32]   =>Adware.Bandoo
[HKLM\Software\Wow6432Node\Microsoft\Tracing\Searchqu Toolbar uninstall_RASMANCS]   =>Adware.Bandoo
[HKLM\Software\Wow6432Node\Microsoft\Tracing\SearchquMediaBar_RASAPI32]   =>Adware.Bandoo
[HKLM\Software\Wow6432Node\Microsoft\Tracing\SearchquMediaBar_RASMANCS]   =>Adware.Bandoo
[HKLM\Software\Wow6432Node\Microsoft\Tracing\SetupDataMngr_Searchqu_RASAPI32]   =>Adware.Bandoo
[HKLM\Software\Wow6432Node\Microsoft\Tracing\SetupDataMngr_Searchqu_RASMANCS]   =>Adware.Bandoo
[HKLM\Software\Classes\AppID\{7ABBFE1C-E485-44AA-8F36-353751B4124D}]   =>PUP.Funmoods
[HKLM\Software\Wow6432Node\Classes\AppID\{7ABBFE1C-E485-44AA-8F36-353751B4124D}]   =>PUP.Funmoods
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Penwes]   =>PUP.Penwes
[HKLM\Software\Classes\Interface\{5E8CD073-21DF-4117-9BBD-D03C45D36CAE}]   =>Toolbar.Conduit
[HKLM\Software\Wow6432Node\Classes\Interface\{5E8CD073-21DF-4117-9BBD-D03C45D36CAE}]   =>Toolbar.Conduit
[HKLM\Software\Classes\Interface\{E773F2CF-5E6E-FF2B-81A1-AC581A26B2B2}]   =>Toolbar.Conduit
[HKLM\Software\Wow6432Node\Classes\Interface\{E773F2CF-5E6E-FF2B-81A1-AC581A26B2B2}]   =>Toolbar.Conduit
[HKLM\Software\Classes\Interface\{CA1CE38C-F04C-471F-B9F3-083C58165C10}]   =>Toolbar.Conduit
[HKLM\Software\Wow6432Node\Classes\Interface\{CA1CE38C-F04C-471F-B9F3-083C58165C10}]   =>Toolbar.Conduit
[HKLM\Software\Classes\Interface\{B77AD4AC-C1C2-B293-7737-71E13A11FFEA}]   =>Toolbar.Conduit
[HKLM\Software\Wow6432Node\Classes\Interface\{B77AD4AC-C1C2-B293-7737-71E13A11FFEA}]   =>Toolbar.Conduit
[HKLM\Software\Classes\Interface\{B37B4BA6-334E-72C1-B57E-6AFE8F8A5AF3}]   =>Toolbar.Conduit
[HKLM\Software\Wow6432Node\Classes\Interface\{B37B4BA6-334E-72C1-B57E-6AFE8F8A5AF3}]   =>Toolbar.Conduit
[HKLM\SOFTWARE\Classes\PROTOCOLS\Handler\base64]   =>PUP.Blabbers
[HKLM\SOFTWARE\Classes\PROTOCOLS\Handler\Chrome]   =>PUP.Blabbers
[HKLM\SOFTWARE\Classes\PROTOCOLS\Handler\Prox]   =>PUP.Blabbers
[HKLM\Software\Classes\Prod.cap]   =>PUP.Babylon
[HKLM\Software\Wow6432Node\Microsoft\Tracing\offerbox_RASAPI32]   =>PUP.OfferBox
[HKLM\Software\Wow6432Node\Microsoft\Tracing\offerbox_RASMANCS]   =>PUP.OfferBox
[HKLM\Software\Wow6432Node\Microsoft\Tracing\OfferBoxHTTPProxy_RASAPI32]   =>PUP.OfferBox
[HKLM\Software\Wow6432Node\Microsoft\Tracing\OfferBoxHTTPProxy_RASMANCS]   =>PUP.OfferBox
[HKLM\Software\Wow6432Node\Microsoft\Tracing\OfferBoxUpdateService_RASAPI32]   =>PUP.OfferBox
[HKLM\Software\Wow6432Node\Microsoft\Tracing\OfferBoxUpdateService_RASMANCS]   =>PUP.OfferBox
[HKLM\Software\Wow6432Node\Microsoft\Tracing\BingBar_RASAPI32]   =>Toolbar.Bing
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{4d51f677-2a0b-43e2-b444-a2b384d24b91}]   =>Toolbar.Conduit
[HKLM\Software\Wow6432Node\Google\Chrome\Extensions\fdloijijlkoblmigdofommgnheckmaki]   =>PUP.Funmoods
[HKLM\Software\Wow6432Node\Google\Chrome\Extensions\bodddioamolcibagionmmobehnbhiakf]   =>PUP.Blabbers
[HKCU\Software\InstallCore]   =>Adware.InstallCore
[HKLM\Software\Wow6432Node\InstallCore]   =>Adware.InstallCore
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\bProtectSettings]   =>PUP.BProtector
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{BB184E6D-26D1-461A-9226-B93CA8DA2AF9}]   =>PUP.SpecialSavings
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{BB184E6D-26D1-461A-9226-B93CA8DA2AF9}]   =>PUP.SpecialSavings
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{BB184E6D-26D1-461A-9226-B93CA8DA2AF9}]   =>PUP.SpecialSavings
[HKLM\Software\Classes\AppID\{C3110516-8EFC-49D6-8B72-69354F332062}]   =>PUP.ClaroSearch
[HKLM\Software\Wow6432Node\Classes\AppID\{C3110516-8EFC-49D6-8B72-69354F332062}]   =>PUP.ClaroSearch
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\29799DE249E7DBC459FC6C8F07EB8375]   =>PUP.Tarma
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0238BBE24EA3A70408B81E4BB89C15E5]   =>PUP.Tarma
[HKCU\Software\AppDataLow\Software\mediabarim]   =>PUP.iMesh
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{02478D38-C3F9-4EFB-9B51-7695ECA05670}]   =>Toolbar.Yahoo
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{F72841F0-4EF1-4DF5-BCE5-B3AC8ACF5478}]   =>PUP.Babylon
[HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{DA8002CF-2914-493A-B7E8-79740E2E15DB}]   =>PUP.Babylon
[HKLM\Software\Classes\Interface\{EF0588D6-1621-4A75-B8BE-F4BC34794136}]   =>PUP.Funmoods
[HKLM\Software\Wow6432Node\Classes\Interface\{EF0588D6-1621-4A75-B8BE-F4BC34794136}]   =>PUP.Funmoods
[HKLM\Software\Classes\Interface\{23C70BCA-6E23-4A65-AD2E-1389062074F1}]   =>PUP.Funmoods
[HKLM\Software\Wow6432Node\Classes\Interface\{23C70BCA-6E23-4A65-AD2E-1389062074F1}]   =>PUP.Funmoods
[HKLM\Software\Classes\Interface\{23D8EEF7-0E13-4000-B9C4-6603C1E912D1}]   =>PUP.Funmoods
[HKLM\Software\Wow6432Node\Classes\Interface\{23D8EEF7-0E13-4000-B9C4-6603C1E912D1}]   =>PUP.Funmoods
[HKLM\Software\Classes\Interface\{295CACB4-51F5-46FD-914E-C72BAAE1B672}]   =>PUP.Funmoods
[HKLM\Software\Wow6432Node\Classes\Interface\{295CACB4-51F5-46FD-914E-C72BAAE1B672}]   =>PUP.Funmoods
[HKLM\Software\Classes\Interface\{2CE5C4B9-6DBE-4528-96FA-C9FF38EF1762}]   =>PUP.Funmoods
[HKLM\Software\Wow6432Node\Classes\Interface\{2CE5C4B9-6DBE-4528-96FA-C9FF38EF1762}]   =>PUP.Funmoods
[HKLM\Software\Classes\Interface\{34C1FDF7-02C1-4F23-B393-F48B16E071D1}]   =>PUP.Funmoods
[HKLM\Software\Wow6432Node\Classes\Interface\{34C1FDF7-02C1-4F23-B393-F48B16E071D1}]   =>PUP.Funmoods
[HKLM\Software\Classes\Interface\{54291324-7A3D-4F11-B707-3FB6A2C97BD9}]   =>PUP.Funmoods
[HKLM\Software\Wow6432Node\Classes\Interface\{54291324-7A3D-4F11-B707-3FB6A2C97BD9}]   =>PUP.Funmoods
[HKLM\Software\Classes\Interface\{59C63F11-D4E5-46E7-9B8A-EE158DCA83A8}]   =>PUP.Funmoods
[HKLM\Software\Wow6432Node\Classes\Interface\{59C63F11-D4E5-46E7-9B8A-EE158DCA83A8}]   =>PUP.Funmoods
[HKLM\Software\Classes\Interface\{5DA22CBD-0029-4A09-B757-CF0FAFC488ED}]   =>PUP.Funmoods
[HKLM\Software\Wow6432Node\Classes\Interface\{5DA22CBD-0029-4A09-B757-CF0FAFC488ED}]   =>PUP.Funmoods
[HKLM\Software\Classes\Interface\{77A6E7D4-4A83-4A9B-A2A0-EF3B125DC29D}]   =>PUP.Funmoods
[HKLM\Software\Wow6432Node\Classes\Interface\{77A6E7D4-4A83-4A9B-A2A0-EF3B125DC29D}]   =>PUP.Funmoods
[HKLM\Software\Classes\Interface\{C0585B2F-74D7-4734-88DE-6C150C5D4036}]   =>PUP.Funmoods
[HKLM\Software\Wow6432Node\Classes\Interface\{C0585B2F-74D7-4734-88DE-6C150C5D4036}]   =>PUP.Funmoods
[HKLM\Software\Classes\Interface\{D8242E89-2F81-484A-AE5B-BA8CAD5B7347}]   =>PUP.Funmoods
[HKLM\Software\Wow6432Node\Classes\Interface\{D8242E89-2F81-484A-AE5B-BA8CAD5B7347}]   =>PUP.Funmoods
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{09C14BAE-2D45-4133-B0FA-5EA4FE5CF978}]   =>PUP.SpecialSavings
[HKLM\Software\Wow6432Node\iMeshSRTB]   =>PUP.iMesh
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{BFF6B2CA-366C-4A90-B685-D87776DEB0D2}]   =>PUP.Datamngr
[HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{BFF6B2CA-366C-4A90-B685-D87776DEB0D2}]   =>PUP.Datamngr
[HKLM\Software\Wow6432Node\Microsoft\Tracing\I Want This_RASAPI32]   =>Adware.GamePlayLabs
[HKLM\Software\Wow6432Node\Microsoft\Tracing\I Want This_RASMANCS]   =>Adware.GamePlayLabs
[HKLM\Software\Classes\AppID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}]   =>Toolbar.DeltaSearch
[HKLM\Software\Wow6432Node\Classes\AppID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}]   =>Toolbar.DeltaSearch
[HKLM\Software\Wow6432Node\Google\Chrome\Extensions\jmfkcklnlgedgbglfkkgedjfmejoahla]   =>Toolbar.AVGSearch
[HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\desksvc]   =>Hijacker.22find
[HKLM\Software\Wow6432Node\qvo6Software]   =>Hijacker.Qvo6
[HKLM\Software\Classes\Interface\{C3F058A9-407D-4CD1-8F66-B75605B54B69}]   =>Toolbar.Conduit
[HKLM\Software\Wow6432Node\Classes\Interface\{C3F058A9-407D-4CD1-8F66-B75605B54B69}]   =>Toolbar.Conduit
[HKLM\Software\Classes\Interface\{8911483C-C00A-4183-9FBC-6C9C00946C15}]   =>Toolbar.Conduit
[HKLM\Software\Wow6432Node\Classes\Interface\{8911483C-C00A-4183-9FBC-6C9C00946C15}]   =>Toolbar.Conduit
[HKLM\Software\Classes\Interface\{5C9A230D-70A5-11D5-AFB0-0050DAC67890}]   =>Toolbar.Conduit
[HKLM\Software\Wow6432Node\Classes\Interface\{5C9A230D-70A5-11D5-AFB0-0050DAC67890}]   =>Toolbar.Conduit
[HKLM\Software\Classes\Interface\{0BF91075-F457-4A8B-99EF-140B52D2F22A}]   =>Toolbar.Conduit
[HKLM\Software\Wow6432Node\Classes\Interface\{0BF91075-F457-4A8B-99EF-140B52D2F22A}]   =>Toolbar.Conduit
[HKLM\Software\Classes\Interface\{37425600-CB21-49A0-8659-476FBAB0F8E8}]   =>Toolbar.Conduit
[HKLM\Software\Wow6432Node\Classes\Interface\{37425600-CB21-49A0-8659-476FBAB0F8E8}]   =>Toolbar.Conduit
[HKLM\Software\Classes\Interface\{431FB0E5-2CBB-4602-9FE6-F1D64488ADD7}]   =>Toolbar.Conduit
[HKLM\Software\Wow6432Node\Classes\Interface\{431FB0E5-2CBB-4602-9FE6-F1D64488ADD7}]   =>Toolbar.Conduit
[HKLM\Software\Wow6432Node\eSafeSecControl]   =>PUP.eSafeSecurity
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{1D970ED5-3EDA-438D-BFFD-715931E2775B}]   =>Toolbar.Sorcim
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{1D970ED5-3EDA-438D-BFFD-715931E2775B}]   =>Toolbar.Sorcim
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1D970ED5-3EDA-438D-BFFD-715931E2775B}]   =>Toolbar.Sorcim
[HKLM\Software\Classes\AppID\{6536801B-F50C-449B-9476-093DFD3789E3}]   =>PUP.Babylon
[HKLM\Software\Wow6432Node\Classes\AppID\{6536801B-F50C-449B-9476-093DFD3789E3}]   =>PUP.Babylon
[HKCU\Software\AppDataLow\Software\Crossrider]   =>PUP.CrossRider
[HKLM\Software\Wow6432Node\Microsoft\Tracing\boxore_RASAPI32]   =>Adware.Boxore
[HKLM\Software\Wow6432Node\Microsoft\Tracing\boxore_RASMANCS]   =>Adware.Boxore
[HKLM\Software\Wow6432Node\Microsoft\Tracing\ConduitInstaller_RASAPI32]   =>Toolbar.Conduit
[HKLM\Software\Wow6432Node\Microsoft\Tracing\ConduitInstaller_RASMANCS]   =>Toolbar.Conduit
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\464AA55239C100F32AF2D438EDDC0F47]   =>Adware.IMBooster
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\5652BA3D5FB98AE31B337BF0AF939856]   =>Adware.IMBooster
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\86EB95E1AFCBABE3DB9ECCC669B99494]   =>Adware.IMBooster
[HKLM\Software\Wow6432Node\SoftwareUpdater]   =>Hijacker.Eazel
[HKLM\Software\Google\Chrome\Extensions\pflphaooapbgpeakohlggbpidpppgdff]   =>Adware.MyWebSearch
[HKLM\Software\Wow6432Node\Google\Chrome\Extensions\pflphaooapbgpeakohlggbpidpppgdff]   =>Adware.MyWebSearch
[HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\eSafeSvc]   =>PUP.eSafeSecurity
[HKLM\Software\Classes\AppID\BabylonHelper.EXE]   =>PUP.Babylon
[HKLM\Software\Wow6432Node\delta-homesSoftware]   =>Toolbar.DeltaSearch
[HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\WsysSvc]   =>PUP.eSafeSecurity
[HKLM\Software\Wow6432Node\Microsoft\Tracing\WebCakeDesktop_RASAPI32]   =>Adware.WebCake
[HKLM\Software\Wow6432Node\Microsoft\Tracing\WebCakeDesktop_RASMANCS]   =>Adware.WebCake
[HKLM\Software\Wow6432Node\omigaplusSvc]   =>Hijacker.OmigaPlus
[HKLM\Software\Wow6432Node\Google\Chrome\Extensions\hggpkhijoeadmdfmlbdepfbngmhaldci]   =>PUP.DealPly
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{EF99BD32-C1FB-11D2-892F-0090271D4F88}]   =>Toolbar.Yahoo
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{2A5A2A90-3B30-4E6E-A955-2F232C6EF517}]   =>Adware.WebCake
[HKLM\Software\Wow6432Node\Microsoft\Tracing\apnstub_RASAPI32]   =>Toolbar.Ask
[HKLM\Software\Wow6432Node\Microsoft\Tracing\apnstub_RASMANCS]   =>Toolbar.Ask
[HKLM\Software\Wow6432Node\Microsoft\Tracing\askpartnercobrandingtool_rasapi32]   =>Toolbar.Ask
[HKLM\Software\Wow6432Node\Microsoft\Tracing\askpartnercobrandingtool_rasmancs]   =>Toolbar.Ask
[HKLM\Software\Classes\BandooCore.BandooCore]   =>Adware.Bandoo
[HKLM\Software\Classes\BandooCore.BandooCore.1]   =>Adware.Bandoo
[HKLM\Software\Classes\BandooCore.ResourcesMngr]   =>Adware.Bandoo
[HKLM\Software\Classes\BandooCore.ResourcesMngr.1]   =>Adware.Bandoo
[HKLM\Software\Classes\BandooCore.SettingsMngr]   =>Adware.Bandoo
[HKLM\Software\Classes\BandooCore.SettingsMngr.1]   =>Adware.Bandoo
[HKLM\Software\Classes\BandooCore.StatisticMngr]   =>Adware.Bandoo
[HKLM\Software\Classes\BandooCore.StatisticMngr.1]   =>Adware.Bandoo
[HKLM\Software\Classes\esrv.mysearchdialESrvc]   =>Adware.MyWebSearch
[HKLM\Software\Classes\esrv.mysearchdialESrvc.1]   =>Adware.MyWebSearch
[HKLM\Software\Classes\Tuto4pcFrSolimbaBHO.Tuto4pcBHO]   =>Spyware.AgenceExclusive
[HKLM\Software\Classes\Tuto4pcFrSolimbaBHO.Tuto4pcBHO.1]   =>Spyware.AgenceExclusive
[HKLM\Software\Classes\YontooIEClient.Api]   =>Adware.Yontoo
[HKLM\Software\Classes\YontooIEClient.Api.1]   =>Adware.Yontoo
[HKLM\Software\Classes\YontooIEClient.Layers]   =>Adware.Yontoo
[HKLM\Software\Classes\YontooIEClient.Layers.1]   =>Adware.Yontoo
[HKLM\Software\Classes\AppID\Tuto4pcFrSolimbaBHO.DLL]   =>Spyware.AgenceExclusive
[HKLM\Software\Classes\AppID\YontooIEClient.DLL]   =>Adware.Yontoo
[HKLM\Software\Wow6432Node\Classes\BandooCore.BandooCore]   =>Adware.Bandoo
[HKLM\Software\Wow6432Node\Classes\BandooCore.BandooCore.1]   =>Adware.Bandoo
[HKLM\Software\Wow6432Node\Classes\BandooCore.ResourcesMngr]   =>Adware.Bandoo
[HKLM\Software\Wow6432Node\Classes\BandooCore.ResourcesMngr.1]   =>Adware.Bandoo
[HKLM\Software\Wow6432Node\Classes\BandooCore.SettingsMngr]   =>Adware.Bandoo
[HKLM\Software\Wow6432Node\Classes\BandooCore.SettingsMngr.1]   =>Adware.Bandoo
[HKLM\Software\Wow6432Node\Classes\BandooCore.StatisticMngr]   =>Adware.Bandoo
[HKLM\Software\Wow6432Node\Classes\BandooCore.StatisticMngr.1]   =>Adware.Bandoo
[HKLM\Software\Wow6432Node\Classes\esrv.mysearchdialESrvc]   =>Adware.MyWebSearch
[HKLM\Software\Wow6432Node\Classes\esrv.mysearchdialESrvc.1]   =>Adware.MyWebSearch
[HKLM\Software\Wow6432Node\Classes\Tuto4pcFrSolimbaBHO.Tuto4pcBHO]   =>Spyware.AgenceExclusive
[HKLM\Software\Wow6432Node\Classes\Tuto4pcFrSolimbaBHO.Tuto4pcBHO.1]   =>Spyware.AgenceExclusive
[HKLM\Software\Wow6432Node\Classes\YontooIEClient.Api]   =>Adware.Yontoo
[HKLM\Software\Wow6432Node\Classes\YontooIEClient.Api.1]   =>Adware.Yontoo
[HKLM\Software\Wow6432Node\Classes\YontooIEClient.Layers]   =>Adware.Yontoo
[HKLM\Software\Wow6432Node\Classes\YontooIEClient.Layers.1]   =>Adware.Yontoo
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{11111111-1111-1111-1111-110011221158}]   =>PUP.CrossRider
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{11111111-1111-1111-1111-110011431152}]   =>PUP.CrossRider
[HKLM\Software\Wow6432Node\Classes\AppID\BandooCore.EXE]   =>Adware.Bandoo
[HKLM\Software\Wow6432Node\Classes\AppID\Tuto4pcFrSolimbaBHO.DLL]   =>Spyware.AgenceExclusive
[HKLM\Software\Wow6432Node\Classes\AppID\YontooIEClient.DLL]   =>Adware.Yontoo
[HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2001}]   =>Adware.Bandoo^
[HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2101}]   =>Adware.Bandoo^
[HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD21}]   =>Adware.Bandoo^
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CA0054A5AB3EFFE4CB5660E44A1E7DCC]   =>Adware.Boxore^
[HKLM\Software\Wow6432Node\Classes\CLSID\{3c471948-f874-49f5-b338-4f214a2ee0b1}]   =>Toolbar.Conduit^
[HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Toolbar]:{99079A25-328F-4BD4-BE04-00955ACAA0A7}   =>Adware.Bandoo
[HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser]:{D4027C7F-154A-4066-A1AD-4243D8127440}   =>Toolbar.Avira
C:\Program Files (x86)\BonanzaDeals   =>Adware.BonanzaDeals^
C:\Program Files (x86)\BonanzaDealsLive   =>Adware.BonanzaDeals^
C:\Program Files (x86)\DealPly   =>PUP.DealPly^
C:\Program Files (x86)\DealPlyLive   =>PUP.DealPly^
C:\Program Files (x86)\Desk 365   =>Hijacker.22Find^
C:\Program Files (x86)\File Scout   =>PUP.FileScout^
C:\Program Files (x86)\iLivid   =>Adware.Bandoo^
C:\Program Files (x86)\iMesh Applications   =>PUP.iMesh^
C:\Program Files (x86)\MyPC Backup   =>PUP.MyPCBackup^
C:\Program Files (x86)\Omiga Plus   =>Hijacker.OmigaPlus^
C:\Program Files (x86)\PenWes   =>PUP.Penwes^
C:\Program Files (x86)\RelevantKnowledge   =>Adware.RelevantKnowledge^
C:\Program Files (x86)\SearchCore for Browsers   =>Adware.SearchCore^
C:\Program Files (x86)\SpecialSavings   =>PUP.SpecialSavings^
C:\Program Files (x86)\Whilokii   =>PUP.Whilokii^
C:\Program Files (x86)\Yontoo   =>Adware.Yontoo^
C:\ProgramData\Babylon   =>PUP.Babylon^
C:\ProgramData\BonanzaDealsLive   =>Adware.BonanzaDeals^
C:\ProgramData\DealPlyLive   =>PUP.DealPly^
C:\ProgramData\eSafe   =>PUP.eSafeSecurity^
C:\ProgramData\IBUpdaterService   =>Adware.InstallBrain^
C:\ProgramData\iMesh   =>PUP.iMesh^
C:\ProgramData\Software   =>Adware.Boxore^
C:\ProgramData\SweetIM   =>PUP.SweetIM^
C:\ProgramData\Tarma Installer   =>PUP.Tarma^
C:\ProgramData\Trymedia   =>Adware.Trymedia^
C:\Users\slvanessa\AppData\Roaming\Azureus   =>P2P.Azureus^
C:\Users\slvanessa\AppData\Roaming\BabSolution   =>Hijacker.BabSolution^
C:\Users\slvanessa\AppData\Roaming\Babylon   =>PUP.Babylon^
C:\Users\slvanessa\AppData\Roaming\Bandoo   =>Adware.Bandoo^
C:\Users\slvanessa\AppData\Roaming\Dealply   =>PUP.DealPly^
C:\Users\slvanessa\AppData\Roaming\Desk 365   =>Hijacker.22Find^
C:\Users\slvanessa\AppData\Roaming\File Scout   =>PUP.FileScout^
C:\Users\slvanessa\AppData\Roaming\imeshbandmltbpi   =>PUP.iMesh^
C:\Users\slvanessa\AppData\Roaming\mediabarim   =>PUP.iMesh^
C:\Users\slvanessa\AppData\Roaming\mysearchdial   =>Adware.MyWebSearch^
C:\Users\slvanessa\AppData\Roaming\Nosibay   =>PUP.BubbleDock^
C:\Users\slvanessa\AppData\Roaming\OfferBox   =>PUP.OfferBox^
C:\Users\slvanessa\AppData\Roaming\Omiga Plus   =>Hijacker.OmigaPlus^
C:\Users\slvanessa\AppData\Roaming\OpenCandy   =>Adware.OpenCandy^
C:\Users\slvanessa\AppData\Roaming\PriceGong   =>Adware.PriceGong^
C:\Users\slvanessa\AppData\Roaming\SpecialSavings   =>PUP.SpecialSavings^
C:\Users\slvanessa\AppData\Roaming\WebCake   =>Adware.WebCake^
C:\Users\slvanessa\AppData\Local\blekkotb_001   =>Toolbar.Blekko^
C:\Users\slvanessa\AppData\Local\BonanzaDealsLive   =>Adware.BonanzaDeals^
C:\Users\slvanessa\AppData\Local\DealPlyLive   =>PUP.DealPly^
C:\Users\slvanessa\AppData\Local\Ilivid Player   =>Adware.Bandoo^
C:\Users\slvanessa\AppData\Local\iMesh   =>PUP.iMesh^
C:\Users\slvanessa\AppData\Local\Lollipop   =>Adware.Lollipop^
C:\Program Files (x86)\Conduit   =>Toolbar.Conduit
C:\Program Files (x86)\Software   =>Adware.Boxore
C:\Program Files (x86)\Common Files\337   =>Hijacker.22find
C:\Program Files (x86)\Mozilla Firefox\Extensions\ffxtlbr@babylon.com   =>PUP.Babylon
C:\ProgramData\Anti-phishing Domain Advisor   =>Adware.VisicomAntiPhishing
C:\Users\slvanessa\AppData\Roaming\337   =>Hijacker.22find
C:\Users\slvanessa\AppData\Roaming\eIntaller   =>PUP.eSafeSecurity
C:\Users\slvanessa\AppData\Local\Conduit   =>Toolbar.Conduit
C:\Users\slvanessa\AppData\Local\pc_gear_fr   =>Toolbar.Conduit
C:\Users\slvanessa\AppData\Local\Software   =>Adware.Boxore
C:\Users\slvanessa\AppData\LocalLow\AVG Security Toolbar   =>Toolbar.AVGSearch
C:\Users\slvanessa\AppData\LocalLow\BabylonToolbar   =>PUP.Babylon
C:\Users\slvanessa\AppData\LocalLow\Bandoo   =>Adware.Bandoo
C:\Users\slvanessa\AppData\LocalLow\bbrs_002.tb   =>PUP.Blabbers
C:\Users\slvanessa\AppData\LocalLow\Conduit   =>Toolbar.Conduit
C:\Users\slvanessa\AppData\LocalLow\imeshbandmltbpi   =>PUP.iMesh
C:\Users\slvanessa\AppData\LocalLow\pc_gear_fr   =>Toolbar.Conduit
C:\Users\slvanessa\AppData\LocalLow\searchquband   =>Adware.Bandoo
C:\Users\slvanessa\AppData\LocalLow\searchqutoolbar   =>Adware.Bandoo
C:\Users\slvanessa\AppData\LocalLow\wincoreimband   =>PUP.iMesh
C:\Program Files (x86)\PenWes\penwes.exe   =>PUP.Penwes^
[HKCU\Software\AppDataLow\Software\Conduit]   =>Toolbar.Conduit^
[HKCU\Software\AppDataLow\Software\LyricsParty]   =>Adware.AddLyrics^
[HKCU\Software\AppDataLow\Software\Smartbar]   =>Hijacker.SmartBar^
[HKCU\Software\AppDataLow\Software\blekkotb_001]   =>Toolbar.Blekko^
[HKCU\Software\BabSolution]   =>Hijacker.BabSolution^
[HKCU\Software\BonanzaDealsLive]   =>Adware.BonanzaDeals^
[HKCU\Software\BrowserCompanion]   =>PUP.Blabbers^
[HKCU\Software\Conduit]   =>Toolbar.Conduit^
[HKCU\Software\DataMngr_Toolbar]   =>PUP.Datamngr^
[HKCU\Software\DealPlyLive]   =>PUP.DealPly^
[HKCU\Software\FileScout]   =>PUP.FileScout^
[HKCU\Software\PopCap]   =>Adware.PopCap^
[HKCU\Software\SpecialSavings]   =>PUP.SpecialSavings^
[HKCU\Software\Tuto4PC]   =>PUP.Eorezo^
[HKCU\Software\TutoTag]   =>Spyware.AgenceExclusive^
[HKCU\Software\mysearchdial]   =>Adware.MyWebSearch^
[HKLM\Software\DomaIQ]   =>Adware.DomaIQ^
[HKLM\Software\Wow6432Node\Babylon]   =>PUP.Babylon^
[HKLM\Software\Wow6432Node\BonanzaDealsLive]   =>Adware.BonanzaDeals^
[HKLM\Software\Wow6432Node\BrowserCompanion]   =>PUP.Blabbers^
[HKLM\Software\Wow6432Node\Conduit]   =>Toolbar.Conduit^
[HKLM\Software\Wow6432Node\Datamngr]   =>PUP.Datamngr^
[HKLM\Software\Wow6432Node\DealPlyLive]   =>PUP.DealPly^
[HKLM\Software\Wow6432Node\Freeze.com]   =>Adware.Freeze^
[HKLM\Software\Wow6432Node\Funmoods]   =>PUP.Funmoods^
[HKLM\Software\Wow6432Node\Savings Wave Plugin]   =>PUP.CrossRider^
[HKLM\Software\Wow6432Node\SearchquSRTB]   =>PUP.Datamngr^
[HKLM\Software\Wow6432Node\Supreme Savings Plugin]   =>PUP.RewardsArcade^
[HKLM\Software\Wow6432Node\TUTO4PC]   =>PUP.Eorezo^
[HKLM\Software\Wow6432Node\Trymedia Systems]   =>Adware.Trymedia^
[HKLM\Software\Wow6432Node\Vittalia]   =>PUP.Vittalia^
C:\Users\slvanessa\AppData\Local\Temp\pcspeedmaxsetup.exe   =>Rogue.PCSpeedMaximizer^
[HKCU\Software\5257df8ab469b940\history\{61d8b74e-8d89-46ff-afa6-33382c54ac73}2.2.587.187]:folderName="PC Performer Manager"   =>Rogue.PCPerformer^
[HKCU\Software\5257df8ab469b940\history\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}2.6.1095.52]:guid="{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}"   =>Hijacker.Eazel^
[HKCU\Software\5257df8ab469b940\history\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}2.6.1339.144]:guid="{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}"   =>Hijacker.Eazel^
[HKCU\Software\5257df8ab469b940]   =>PUP.Babylon^^
C:\Windows\Installer\50f451a.msi   =>PUP.iMesh^
~ Additionnel Scan: 238104 Items scanned in 00mn 22s



---\\ Récapitulatif des détections trouvées sur votre station
~ http://nicolascoolman.webs.com/apps/blog/show/26631242-hijacker-qvo6   =>Hijacker.Qvo6
~ http://nicolascoolman.webs.com/apps/blog/show/27583992-pup-datamngr   =>PUP.Datamngr
~ http://nicolascoolman.webs.com/apps/blog/show/26811836-adware-yontoo   =>Adware.Yontoo
~ http://nicolascoolman.webs.com/apps/blog/show/27875657-toolbar-deltasearch   =>Toolbar.DeltaSearch
~ http://nicolascoolman.webs.com/apps/blog/show/28441146-pup-imesh   =>PUP.iMesh
~ http://nicolascoolman.webs.com/apps/blog/show/27588628-pup-esafesecurity   =>PUP.eSafeSecurity
~ http://nicolascoolman.webs.com/apps/blog/show/28060597-pup-dealply   =>PUP.DealPly
~ http://nicolascoolman.webs.com/apps/blog/show/26630379-hijacker-22find   =>Hijacker.22Find
~ http://nicolascoolman.webs.com/apps/blog/show/32174815-pup-mypcbackup   =>PUP.MyPCBackup
~ http://nicolascoolman.webs.com/apps/blog/show/30152670-hijacker-omigaplus   =>Hijacker.OmigaPlus
~ http://nicolascoolman.webs.com/apps/blog/show/28692459-pup-penwes   =>PUP.Penwes
~ http://nicolascoolman.webs.com/apps/blog/show/32816468-adware-bonanzadeals   =>Adware.BonanzaDeals
~ http://nicolascoolman.webs.com/apps/blog/show/26686441-pup-specialsavings   =>PUP.SpecialSavings
~ http://nicolascoolman.webs.com/apps/blog/show/29507721-toolbar-conduit   =>Toolbar.Conduit
~ http://nicolascoolman.webs.com/apps/blog/show/27583526-pup-crossrider   =>PUP.CrossRider
~ http://nicolascoolman.webs.com/apps/blog/show/26601058-adware-addlyrics  =>Adware.AddLyrics
~ http://nicolascoolman.webs.com/apps/blog/show/26666995-adware-pricegong   =>Adware.PriceGong
~ http://nicolascoolman.webs.com/apps/blog/show/26990375-hijacker-smartbar   =>Hijacker.SmartBar
~ http://nicolascoolman.webs.com/apps/blog/show/32164901-toolbar-blekko   =>Toolbar.Blekko
~ http://nicolascoolman.webs.com/apps/blog/show/26678994-hijacker-babsolution   =>Hijacker.BabSolution
~ http://nicolascoolman.webs.com/apps/blog/show/27280149-pup-blabbers   =>PUP.Blabbers
~ http://nicolascoolman.webs.com/apps/blog/show/27229962-adware-predictad   =>Adware.PredictAd
~ http://nicolascoolman.webs.com/apps/blog/show/34311830-pup-filescout   =>PUP.FileScout
~ http://nicolascoolman.webs.com/apps/blog/show/28606910-pup-offerbox   =>PUP.OfferBox
~ http://nicolascoolman.webs.com/apps/blog/show/29790567-adware-installcore   =>Adware.InstallCore
~ http://nicolascoolman.webs.com/apps/blog/show/26666257-adware-popcap   =>Adware.PopCap
~ http://nicolascoolman.webs.com/apps/blog/show/29216159-pup-sweetim   =>PUP.SweetIM
~ http://nicolascoolman.webs.com/apps/blog/show/27469224-pup-eorezo   =>PUP.EoRezo
~ http://nicolascoolman.webs.com/apps/blog/show/26627641-spyware-agenceexclusive   =>Spyware.AgenceExclusive
~ http://nicolascoolman.webs.com/apps/blog/show/26630902-adware-lollipop   =>Adware.Lollipop
~ http://nicolascoolman.webs.com/apps/blog/show/27146838-adware-mywebsearch   =>Adware.MyWebSearch
~ http://nicolascoolman.webs.com/apps/blog/show/30393137-adware-domaiq   =>Adware.DomaIQ
~ http://nicolascoolman.webs.com/apps/blog/show/29637859-toolbar-tarma   =>PUP.Tarma
~ http://nicolascoolman.webs.com/apps/blog/show/26898222-adware-incredibar  =>Adware.Incredibar
~ http://nicolascoolman.webs.com/apps/blog/show/27556476-adware-spointer   =>Adware.SPointer
~ http://nicolascoolman.webs.com/apps/blog/show/26627369-toolbar-babylon  =>PUP.Babylon
~ http://nicolascoolman.webs.com/apps/blog/show/26611092-adware-bandoo  =>Adware.Bandoo
~ http://nicolascoolman.webs.com/apps/blog/show/26626977-adware-boxore  =>Adware.Boxore
~ http://nicolascoolman.webs.com/apps/blog/show/28740985-adware-freeze  =>Adware.Freeze
~ http://nicolascoolman.webs.com/apps/blog/show/27630986-pup-funmoods   =>PUP.Funmoods
~ http://nicolascoolman.webs.com/apps/blog/show/26684723-adware-imbooster  =>Adware.IMBooster
~ http://nicolascoolman.webs.com/apps/blog/show/28000037-pup-rewardsarcade    =>PUP.RewardsArcade
~ http://nicolascoolman.webs.com/apps/blog/show/29710349-adware-trymedia   =>Adware.Trymedia
~ http://nicolascoolman.webs.com/apps/blog/show/35115580-pup-vittalia   =>PUP.Vittalia
~ http://nicolascoolman.webs.com/apps/blog/show/27456165-adware-relevantknowledge   =>Adware.RelevantKnowledge
~ http://nicolascoolman.webs.com/apps/blog/show/27490404-adware-searchcore   =>Adware.SearchCore
~ http://nicolascoolman.webs.com/apps/blog/show/33413667-pup-whilokii   =>PUP.Whilokii
~ http://nicolascoolman.webs.com/apps/blog/show/26907365-adware-installbrain  =>Adware.InstallBrain
~ http://nicolascoolman.webs.com/apps/blog/show/31746142-toolbar-bubbledock   =>Toolbar.BubbleDock
~ http://nicolascoolman.webs.com/apps/blog/show/26770694-adware-opencandy   =>Adware.OpenCandy
~ http://nicolascoolman.webs.com/apps/blog/show/27285539-adware-webcake   =>Adware.WebCake
~ http://nicolascoolman.webs.com/apps/blog/show/36784739-pup-buzzsearch   =>PUP.BuzzSearch
~ http://nicolascoolman.webs.com/apps/blog/show/26630283-pup-advancedsystemprotector   =>PUP.AdvancedSystemProtector
~ http://nicolascoolman.webs.com/apps/blog/show/27379491-toolbar-wajam   =>PUP.Wajam
~ http://nicolascoolman.webs.com/apps/blog/show/27450485-adware-questscan   =>Adware.QuestScan
~ http://nicolascoolman.webs.com/apps/blog/show/33449013-rogue-pcspeedmaximizer    =>Rogue.PCSpeedMaximizer
~ http://nicolascoolman.webs.com/apps/blog/show/27161672-hijacker-eazel   =>Hijacker.Eazel
~ http://nicolascoolman.webs.com/apps/blog/show/28863080-toolbar-kiwee   =>PUP.Kiwee
~ http://nicolascoolman.webs.com/apps/blog/show/26705717-pup-bearshare   =>PUP.BearShare
~ http://nicolascoolman.webs.com/apps/blog/show/27672211-pup-v9software   =>PUP.V9Software
~ http://nicolascoolman.webs.com/apps/blog/show/27480243-adware-socialskinz   =>Adware.SocialSkinz
~ http://nicolascoolman.webs.com/apps/blog/show/27674245-adware-bullseyetoolbar  =>Adware.BullseyeToolbar
~ http://nicolascoolman.webs.com/apps/blog/show/30234464-pup-toparcadehits   =>PUP.ToparcadeHits
~ http://nicolascoolman.webs.com/apps/blog/show/26764465-adware-facemoods  =>Adware.Facemoods
~ http://nicolascoolman.webs.com/apps/blog/show/28927746-toolbar-ask   =>Toolbar.Ask
~ http://nicolascoolman.webs.com/apps/blog/show/28133096-pup-bprotector   =>PUP.BProtector
~ http://nicolascoolman.webs.com/apps/blog/show/27563212-pup-clarosearch  =>PUP.ClaroSearch
~ http://nicolascoolman.webs.com/apps/blog/show/26820943-adware-gameplaylabs  =>Adware.GamePlayLabs
~ http://nicolascoolman.webs.com/apps/blog/show/28674868-adware-visicomantiphishing   =>Adware.VisicomAntiPhishing
~ MSI: 69 link(s) detected in 00mn 27s



End of the scan (3121 lines in 07mn 54s)(0)