Rapport de ZHPDiag v2013.4.24.149 par Nicolas Coolman, Update du 24/04/2013 Run by Alex4 at 25/04/2013 23:27:55 State : Version à jour. WhiteList : Disable High Elevated Privileges : OK UAC : Activate by user ---\\ Web Browser MSIE: Internet Explorer v9.0.8112.16421 MFIE: Mozilla Firefox 14.0.1 GCIE: Google Chrome v26.0.1410.64 (Defaut) ---\\ Windows Product Information ~ Langage: Français Windows 7 Home Premium Edition, 64-bit Service Pack 1 (Build 7601) Windows Server License Manager Script : OK ~ Windows(R) 7, OEM_SLP channel System Locked Preinstallation (OEM_SLP) : OK Windows ID Activation : OK ~ Windows Partial Key : 3Q6C9 Windows License : OK ~ Windows Remaining Initializations Number : 2 Software Protection Service (Protection logicielle) : OK Windows Automatic Updates : OK Windows Activation Technologies : OK ---\\ System Protection AVG 2013 v13.0.2904 Malwarebytes Anti-Malware version 1.65.1.1000 Windows Defender W7 ---\\ System Optimizer CCleaner v3.06 ---\\ Software Update Adobe Flash Player 11 Plugin Adobe Reader X Java 7 Update 7 ---\\ System Information ~ Processor: Intel64 Family 6 Model 37 Stepping 2, GenuineIntel ~ Operating System: 64 Bits Boot mode: Normal (Normal boot) Total RAM: 3893 MB (56% free) System Restore: Activé (Enable) System drive C: has 28 GB (6%) free of 453 GB ---\\ Logged in mode ~ Computer Name: ALEX4-PC ~ User Name: Alex4 ~ All Users Names: HomeGroupUser$, ASPNET, Alex4, Administrateur, ~ Unselected Option: None Logged in as Administrator ---\\ Environnement Variables ~ System Unit : C:\ ~ %AppData% : C:\Users\Alex4\AppData\Roaming\ ~ %Desktop% : C:\Users\Alex4\Desktop\ ~ %Favorites% : C:\Users\Alex4\Favorites\ ~ %LocalAppData% : C:\Users\Alex4\AppData\Local\ ~ %StartMenu% : C:\Users\Alex4\AppData\Roaming\Microsoft\Windows\Start Menu\ ~ %Windir% : C:\Windows\ ~ %System% : C:\Windows\System32\ ---\\ DOS/Devices C:\ Hard drive, Flash drive, Thumb drive (Free 28 Go of 453 Go) D:\ Hard drive, Flash drive, Thumb drive (Free 2 Go of 13 Go) E:\ Hard drive, Flash drive, Thumb drive (Free 0 Go of 0 Go) F:\ CD-ROM drive (Not Inserted) G:\ CD-ROM drive (Not Inserted) H:\ CD-ROM drive (Not Inserted) ---\\ Security Center & Tools Informations [HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified [HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System] DisableTaskMgr: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK [HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK ~ Security Center: Scanned in 00mn 00s ---\\ Recherche particulière de fichiers génériques [MD5.332FEAB1435662FC6C672E25BEB37BE3] - (.Microsoft Corporation - Explorateur Windows.) (.25/02/2011 - 07:19:30.) -- C:\Windows\Explorer.exe [2871808] [MD5.94355C28C1970635A31B3FE52EB7CEBA] - (.Microsoft Corporation - Application de démarrage de Windows.) (.14/07/2009 - 02:39:52.) -- C:\Windows\System32\Wininit.exe [129024] [MD5.A4F6142CABA82FB7293ECE5FF864B440] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.22/02/2013 - 07:20:51.) -- C:\Windows\System32\wininet.dll [1392128] [MD5.1151B1BAA6F350B1DB6598E0FEA7C457] - (.Microsoft Corporation - Application d’ouverture de session Windows.) (.20/11/2010 - 14:25:30.) -- C:\Windows\System32\Winlogon.exe [390656] [MD5.067FA52BFB59A56110A12312EF9AF243] - (.Microsoft Corporation - Bibliothèque de licences.) (.20/11/2010 - 14:27:26.) -- C:\Windows\System32\sppcomapi.dll [232448] [MD5.1C7857B62DE5994A75B054A9FD4C3825] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) (.28/12/2011 - 04:59:24.) -- C:\Windows\system32\Drivers\AFD.sys [498688] [MD5.02062C0B390B7729EDC9E69C680A6F3C] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.14/07/2009 - 02:52:21.) -- C:\Windows\system32\Drivers\atapi.sys [24128] [MD5.B8BD2BB284668C84865658C77574381A] - (.Microsoft Corporation - CD-ROM File System Driver.) (.14/07/2009 - 00:19:47.) -- C:\Windows\system32\Drivers\Cdfs.sys [92160] [MD5.F036CE71586E93D94DAB220D7BDF4416] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.20/11/2010 - 10:19:21.) -- C:\Windows\system32\Drivers\Cdrom.sys [147456] [MD5.9BB2EF44EAA163B29C4A4587887A0FE4] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.20/11/2010 - 10:26:32.) -- C:\Windows\system32\Drivers\DfsC.sys [102400] [MD5.97BFED39B6B79EB12CDDBFEED51F56BB] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.20/11/2010 - 11:43:43.) -- C:\Windows\system32\Drivers\HDAudBus.sys [122368] [MD5.FA55C73D4AFFA7EE23AC4BE53B4592D3] - (.Microsoft Corporation - Pilote de port i8042.) (.14/07/2009 - 00:19:57.) -- C:\Windows\system32\Drivers\i8042prt.sys [105472] [MD5.AF9B39A7E7B6CAA203B3862582E9F2D0] - (.Microsoft Corporation - IP Network Address Translator.) (.14/07/2009 - 01:10:03.) -- C:\Windows\system32\Drivers\IpNat.sys [116224] [MD5.A5D9106A73DC88564C825D317CAC68AC] - (.Microsoft Corporation - Windows NT SMB Minirdr.) (.27/04/2011 - 03:40:40.) -- C:\Windows\system32\Drivers\MRxSmb.sys [158208] [MD5.09594D1089C523423B32A4229263F068] - (.Microsoft Corporation - MBT Transport driver.) (.20/11/2010 - 10:23:20.) -- C:\Windows\system32\Drivers\netBT.sys [261632] [MD5.B98F8C6E31CD07B2E6F71F7F648E38C0] - (.Microsoft Corporation - Pilote du système de fichiers NT.) (.12/04/2013 - 15:45:08.) -- C:\Windows\system32\Drivers\ntfs.sys [1656680] [MD5.0086431C29C35BE1DBC43F52CC273887] - (.Microsoft Corporation - Pilote de port parallèle.) (.14/07/2009 - 01:00:41.) -- C:\Windows\system32\Drivers\Parport.sys [97280] [MD5.471815800AE33E6F1C32FB1B97C490CA] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.20/11/2010 - 11:52:35.) -- C:\Windows\system32\Drivers\Rasl2tp.sys [129536] [MD5.548260A7B8654E024DC30BF8A7C5BAA4] - (.Microsoft Corporation - SMB Transport driver.) (.14/07/2009 - 01:09:09.) -- C:\Windows\system32\Drivers\smb.sys [93184] [MD5.DDAD5A7AB24D8B65F8D724F5C20FD806] - (.Microsoft Corporation - TDI Translation Driver.) (.20/11/2010 - 10:21:56.) -- C:\Windows\system32\Drivers\tdx.sys [119296] [MD5.0D08D2F3B3FF84E433346669B5E0F639] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) (.20/11/2010 - 14:34:02.) -- C:\Windows\system32\Drivers\volsnap.sys [295808] ~ Generic Processes: Scanned in 00mn 00s ---\\ Etat des fichiers cachés (Caché/Total) ~ Mes images (My Pictures) : 1/286 ~ Mes musiques (My Musics) : 1/93 ~ Mes Videos (My Videos) : 2/17 ~ Mes Favoris (My Favorites) : 1/27 ~ Mes Documents (My Documents) : 1/19121 ~ Mon Bureau (My Desktop) : 4/18998 ~ Menu demarrer (Programs) : 1/77 ~ Hidden Files: Scanned in 00mn 53s ---\\ Processus lancés [MD5.6469DCC4F1BBA064B4A555ACD2606566] - (.Hewlett-Packard Company - Pas de description.) -- C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe [2363392] [PID.2132] [MD5.8F89E6CB82E6DB45BC993D423CD0FDBD] - (. Hewlett-Packard Development Company, L.P. - Quick Launch Buttons.) -- C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\QLBCTRL.exe [323640] [PID.2804] [MD5.77F91DE9AE1E63D889E0B5D4ADBE6ECF] - (.Pas de propriétaire - VProtect Application.) -- C:\Program Files (x86)\AVG Secure Search\vprot.exe [1124016] [PID.2828] =>Toolbar.AVGSearch [MD5.12916E0642E92561C98B18A2A2D01B14] - (.Sun Microsystems, Inc. - Java(TM) Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [252848] [PID.2844] [MD5.9DADF1A809ECEC86F04BDE35190D59FE] - (.AVG Technologies CZ, s.r.o. - AVG User Interface.) -- C:\Program Files (x86)\AVG\AVG2013\avgui.exe [3147384] [PID.2852] [MD5.48E6868781B4E8BF4B77DBEC7694BCE8] - (.RealNetworks, Inc. - RealNetworks Scheduler.) -- C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe [295072] [PID.2884] [MD5.4E9592BB2C100E571F82640E59E9ECD5] - (.Google Inc. - Google Chrome.) -- C:\Users\Alex4\AppData\Local\Google\Chrome\Application\chrome.exe [1312720] [PID.2464] [MD5.67606FDF6F94101E3E376806470EF56E] - (...) -- C:\Windows\SysWOW64\jmdp\stij.exe [15152] [PID.4620] [MD5.0DE3C7622EC33126579B1742260F08C2] - (.Pas de propriétaire - HpqToaster Module.) -- C:\Program Files (x86)\Hewlett-Packard\Shared\hpqToaster.exe [632888] [PID.5804] [MD5.968414E6B4BEF90AFA54784B32AA599A] - (.Solid State Networks - Adobe Flash Player Installer.) -- C:\Users\Alex4\AppData\Local\Temp\install_flashplayer11x32au_mssd_aih.exe [2138776] [PID.2484] [MD5.8ECBD447964D1D003FF0ADAA10AE3376] - (.Nicolas Coolman - ZHPDiag.) -- C:\Program Files (x86)\ZHPDiag\ZHPDiag.exe [6987264] [PID.4936] [MD5.3927397AC60D943DAF8808AFFED582B7] - (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [65192] [PID.1708] [MD5.018857EAD9A077A56AEDFC0E5EF7A24A] - (.Apple Inc. - MobileDeviceService.) -- C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [37664] [PID.1772] [MD5.4AFC14AFA58878FAA1D249E7E90EA54B] - (.AVG Technologies CZ, s.r.o. - AVG Identity Protection Service.) -- C:\Program Files (x86)\AVG\AVG2013\avgidsagent.exe [5814904] [PID.2896] [MD5.6B72E1E329C4E98C6B6FDD2D265E3BA3] - (.AVG Technologies CZ, s.r.o. - AVG Watchdog Service.) -- C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe [196664] [PID.2800] [MD5.F832F1505AD8B83474BD9A5B1B985E01] - (.Apple Inc. - Bonjour Service.) -- C:\Program Files (x86)\Bonjour\mDNSResponder.exe [345376] [PID.2196] [MD5.0EE66BDF485C6828AA65C0EF5D591133] - (.Hewlett-Packard Company - LightScribe Service.) -- C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe [73728] [PID.2208] [MD5.7485FBCEF9136F530953575E2977859D] - (.Intel Corporation - Local Manageability Service.) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [268824] [PID.1632] [MD5.0AF89452A8CE3928168F4E5B2208C68B] - (...) -- C:\Program Files\Autodesk\3ds Max Design 2013\NVIDIA\raysat_3dsmax2013_64server.exe [86016] [PID.3096] [MD5.831883B107684301F48ACE752C963984] - (...) -- C:\Windows\SysWOW64\PnkBstrA.exe [66872] [PID.3160] [MD5.A0FF419B61AE47E26ADF3BB15DB4F2FE] - (...) -- C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe [38608] [PID.3184] [MD5.498EB62A160674E793FA40FD65390625] - (.Pas de propriétaire - RichVideo Module.) -- C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe [247152] [PID.3252] [MD5.B1691AF4A072CB674D600DB16DD7308E] - (.Rocket Division Software - StarWind iSCSI Target (Alcohol Edition).) -- C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe [275968] [PID.3452] [MD5.3AD1E72748978D8B0B3B674741E4C3E2] - (.Pas de propriétaire - ToolbarU Application.) -- C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\14.2.0\ToolbarUpdater.exe [968880] [PID.3580] =>Toolbar.AVGSearch [MD5.2E61503CBFEC0D6C81DFAF1337930D22] - (...) -- C:\Program Files\Web Assistant\ExtensionUpdaterService.exe [188760] [PID.3620] [MD5.9B7EDD3FE7C211C36E921D34D18A3A0A] - (.Hewlett-Packard Company - HP Software Framework WMI Service.) -- C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe [1001376] [PID.4564] [MD5.C7A0E61D5714AC20DE52D4F66EC773B8] - (.Hewlett-Packard Development Company, L.P. - Com for QLB application.) -- C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe [227896] [PID.5556] [MD5.765F2DD351BA064F657751D8D75E58C0] - (.Intel Corporation - User Notification Service.) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2320920] [PID.4828] ~ Processes Running: Scanned in 00mn 01s ---\\ Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2) C:\Users\Alex4\AppData\Local\Google\Chrome\User Data\Default\Preferences G1 - GCS: Preference [User Data\Default] None ~ Google Browser: Scanned in 00mn 00s ---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3) C:\Users\Alex4\AppData\Roaming\Mozilla\Firefox\Profiles\nxistm6r.default\prefs.js M3 - MFPP: Plugins - [Alex4] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\amazon-france.xml M3 - MFPP: Plugins - [Alex4] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\avg-secure-search.xml M3 - MFPP: Plugins - [Alex4] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\bing.xml M3 - MFPP: Plugins - [Alex4] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\cnrtl-tlfi-fr.xml M3 - MFPP: Plugins - [Alex4] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\eBay-france.xml M3 - MFPP: Plugins - [Alex4] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\google.xml M3 - MFPP: Plugins - [Alex4] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\wikipedia-fr.xml M3 - MFPP: Plugins - [Alex4] -- C:\Program Files (x86)\Mozilla FireFox\searchplugins\yahoo-france.xml P2 - FPN:Firefox Plugin Navigator . (.Adobe Systems Inc. - Adobe PDF Plug-In For Firefox and Netscape 10.1.6.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\nppdf32.dll P2 - FPN:Firefox Plugin Navigator . (.RealNetworks, Inc. - RealPlayer(tm) LiveConnect-Enabled Plug-In.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\nppl3260.dll P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npqtplugin.dll P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npqtplugin2.dll P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npqtplugin3.dll P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npqtplugin4.dll P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npqtplugin5.dll P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npqtplugin6.dll P2 - FPN:Firefox Plugin Navigator . (.Apple Inc. - The QuickTime Plugin allows you to view a wide variety of multimedia c.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npqtplugin7.dll P2 - FPN:Firefox Plugin Navigator . (.RealPlayer - RealPlayer Download Plugin.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\nprpplugin.dll P2 - FPN:Firefox Plugin Navigator . (.LiveVDO - LiveVDO plug-in.) -- C:\Program Files (x86)\Mozilla Firefox\Plugins\npvsharetvplg.dll P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (...) -- C:\Windows\system32\Macromed\Flash\NPSWF64_11_6_602_180.dll P2 - FPN: [HKLM] [@ma-config.com/HardwareDetection] - (.Cybelsoft - Plugin NPAPI Ma-Config.com.) -- C:\Program Files\ma-config.com\nphardwaredetection.dll P2 - FPN: [HKLM] [@Microsoft.com/NpCtrl,version=1.0] - (. Microsoft Corporation - 5.1.20125.0.) -- c:\Program Files\Microsoft Silverlight\5.1.20125.0\npctrl.dll P2 - FPN: [HKLM] [@microsoft.com/OfficeAuthz,version=14.0] - (.Microsoft Corporation - Office Authorization plug-in for NPAPI browsers.) -- C:\Program Files\Microsoft Office\Office14\NPAUTHZ.dll P2 - FPN: [HKLM] [@Musicnotes.com/Musicnotes Viewer] - (.Musicnotes, Inc. - Musicnotes Viewer plugin 1.19.0 For more information visit www.musicno.) -- C:\Program Files\Musicnotes\npmusicn64.dll P2 - FPN: [HKCU] [@Skype Limited.com/Facebook Video Calling Plugin] - (...) -- C:\Users\Alex4\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll (.not file.) P2 - FPN: [HKCU] [@stonetrip.com/ShiVaWebPlayer,version=1.8.1.0] - (.Stonetrip - ShiVa3D Plugin 1,8,1,1 for 3D real-time applications made with ShiVa E.) -- C:\Users\Alex4\AppData\Roaming\..\LocalLow\StoneTrip\WebPlayer1.8.1\npShiVa3D_1.8.1.dll P2 - FPN: [HKCU] [@tools.google.com/Google Update;version=3] - (.Google Inc. - Google Update.) -- C:\Users\Alex4\AppData\Local\Google\Update\1.3.21.135\npGoogleUpdate3.dll P2 - FPN: [HKCU] [@tools.google.com/Google Update;version=9] - (.Google Inc. - Google Update.) -- C:\Users\Alex4\AppData\Local\Google\Update\1.3.21.135\npGoogleUpdate3.dll ~ Firefox Browser: 39 Scanned in 00mn 00s ---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4) R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://g.uk.msn.com R0 - HKCU\SOFTWARE\Classes\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.bigseekpro.com R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://google.do R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk R3 - URLSearchHook: (no name) [64Bits] - {A3BC75A2-1F87-4686-AA43-5347D756017C} . (.Google Inc. - Google Update.) (No version) -- (.not file.) R3 - URLSearchHook: Vuze Remote Toolbar [64Bits] - {ba14329e-9550-4989-b3f2-9732e92d17cc} . (.Conduit Ltd. - Conduit Toolbar.) (6.3.2.0) -- C:\Program Files (x86)\Vuze_Remote\prxtbVuz2.dll =>Toolbar.Conduit R3 - URLSearchHook: NCH Toolbar [64Bits] - {c2db4fe6-8409-45ce-8010-189a7b5cce86} . (.Conduit Ltd. - Conduit Toolbar.) (6.1.0.7) -- C:\Program Files (x86)\NCH\tbNCH.dll =>Toolbar.Conduit R3 - URLSearchHook: IMVU Inc Toolbar [64Bits] - {90b49673-5506-483e-b92b-ca0265bd9ca8} . (.Conduit Ltd. - Conduit Toolbar.) (6.2.7.3) -- C:\Program Files (x86)\IMVU_Inc\tbIMVU.dll =>Toolbar.Conduit R3 - URLSearchHook: free-downloads.net Toolbar [64Bits] - {ecdee021-0d17-467f-a1ff-c7a115230949} . (.Conduit Ltd. - Conduit Toolbar.) (4, 5, 190, 19) -- C:\Program Files (x86)\free-downloads.net\tbfree.dll =>Toolbar.Conduit R3 - URLSearchHook: BittorrentBar_FR Toolbar [64Bits] - {ef79f67a-6ad7-4715-a0f8-932fca442023} . (.Conduit Ltd. - Conduit Toolbar.) (6.4.0.0) -- C:\Program Files (x86)\BittorrentBar_FR\prxtbBitt.dll =>Toolbar.Conduit R3 - URLSearchHook: Microsoft Url Search Hook [64Bits] - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Navigateur Internet.) (9.00.8112.16421 (WIN7_IE9_RTM.110308-0330)) -- C:\Windows\SysWOW64\ieframe.dll R4 - HKLM\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 1 R4 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 1 ~ IE Browser: 25 Scanned in 00mn 00s ---\\ Internet Explorer, Proxy Management (R5) R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = local R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyHttp1.1 = 1 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll ~ Proxy management: Scanned in 00mn 00s ---\\ Analyse des lignes F0, F1, F2, F3 - IniFiles, Autoloading programs F2 - REG:system.ini: USERINIT=C:\Windows\system32\userinit.exe, F2 - REG:system.ini: Shell=C:\Windows\explorer.exe F2 - REG:system.ini: VMApplet=C:\Windows\System32\SystemPropertiesPerformance.exe ~ Keys: Scanned in 00mn 00s ---\\ Redirection du fichier Hosts (O1) ~ Le fichier hosts est sain (The hosts file is clean). ~ Hosts File: Scanned in 00mn 00s ~ Nombre de lignes (Lines number): 24 ---\\ Browser Helper Objects de navigateur (O2) O2 - BHO: SuggestMeYesBHO [64Bits] - {0FB6A909-6086-458F-BD92-1F8EE10042A0} . (.SimplyGen - AutocompletePro - Helps you search the web.) -- C:\Program Files (x86)\AutocompletePro\AutocompletePro.dll O2 - BHO: AcroIEHelperStub [64Bits] - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} . (.Adobe Systems Incorporated - Adobe PDF Helper for Internet Explorer.) -- C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: Babylon toolbar helper [64Bits] - {2EECD738-5844-4a99-B4B6-146BF802613B} Clé orpheline =>Toolbar.Babylon O2 - BHO: RealNetworks Download and Record Plugin for Internet Explorer [64Bits] - {3049C3E9-B461-4BC5-8870-4C09146192CA} . (.RealDownloader - RealPlayer Download and Record Plugin.) -- C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll O2 - BHO: Conduit Engine [64Bits] - {30F9B915-B755-4826-820B-08FBA6BD249D} . (.Conduit Ltd. - Conduit Toolbar.) -- C:\Program Files (x86)\ConduitEngine\prxConduitEngine.dll =>Toolbar.Conduit O2 - BHO: Web Assistant Helper [64Bits] - {336D0C35-8A85-403a-B9D2-65C292C39087} . (...) -- C:\Program Files\Web Assistant\Extension32.dll O2 - BHO: WormRadar.com IESiteBlocker.NavFilter [64Bits] - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} . (...) -- C:\Program Files (x86)\AVG\AVG2012\avgssie.dll (.not file.) O2 - BHO: Incredibar.com Helper Object [64Bits] - {6E13DDE1-2B6E-46CE-8B66-DC8BF36F6B99} . (...) -- C:\Program Files (x86)\Incredibar.com\incredibar\1.5.11.14\bh\incredibar.dll (.not file.) =>Adware.IncrediBar O2 - BHO: Search Helper [64Bits] - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} . (.Microsoft Corporation - Search Helper for Internet Explorer.) -- C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll O2 - BHO: Java(tm) Plug-In SSV Helper [64Bits] - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Program Files (x86)\Java\jre7\bin\ssv.dll O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live ID [64Bits] - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corp. - Microsoft® Windows Live ID Login Helper.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: IMVU Inc Toolbar [64Bits] - {90b49673-5506-483e-b92b-ca0265bd9ca8} . (.Conduit Ltd. - Conduit Toolbar.) -- C:\Program Files (x86)\IMVU_Inc\tbIMVU.dll =>Toolbar.Conduit O2 - BHO: AVG Security Toolbar [64Bits] - {95B7759C-8C7F-4BF1-B163-73684A933233} . (.Pas de propriétaire - toolbar.dll.) -- C:\Program Files (x86)\AVG Secure Search\14.2.0.1\AVG Secure Search_toolbar.dll =>Toolbar.AVGSearch O2 - BHO: Google Toolbar Helper [64Bits] - {AA58ED58-01DD-4d91-8333-CF10577473F7} . (.Google Inc. - Google Toolbar.) -- C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll O2 - BHO: URLRedirectionBHO [64Bits] - {B4F3A835-0E21-4959-BA22-42B3008E02FF} . (.Microsoft Corporation - Microsoft Office Document Cache Handler.) -- C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.dll O2 - BHO: Vuze Remote [64Bits] - {ba14329e-9550-4989-b3f2-9732e92d17cc} . (.Conduit Ltd. - Conduit Toolbar.) -- C:\Program Files (x86)\Vuze_Remote\prxtbVuz2.dll =>Toolbar.Conduit O2 - BHO: NCH Toolbar [64Bits] - {c2db4fe6-8409-45ce-8010-189a7b5cce86} . (.Conduit Ltd. - Conduit Toolbar.) -- C:\Program Files (x86)\NCH\tbNCH.dll =>Toolbar.Conduit O2 - BHO: Interest recogniser for Crazyloader (powered by Spointer) [64Bits] - {C5F65718-341D-4e7d-9842-FCB9CC89527E} . (.Crazyloader - Interest Recognizer for Crazyloader.) -- C:\Program Files (x86)\CrazyLoader\spointer\extensions\crazyloader_air_ie.dll O2 - BHO: Java(tm) Plug-In 2 SSV Helper [64Bits] - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll O2 - BHO: HP Network Check Helper [64Bits] - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} . (.Hewlett-Packard - HP Network Check IE Plug-in.) -- C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll O2 - BHO: free-downloads.net Toolbar [64Bits] - {ecdee021-0d17-467f-a1ff-c7a115230949} . (.Conduit Ltd. - Conduit Toolbar.) -- C:\Program Files (x86)\free-downloads.net\tbfree.dll =>Toolbar.Conduit O2 - BHO: BittorrentBar_FR [64Bits] - {ef79f67a-6ad7-4715-a0f8-932fca442023} . (.Conduit Ltd. - Conduit Toolbar.) -- C:\Program Files (x86)\BittorrentBar_FR\prxtbBitt.dll =>Toolbar.Conduit O2 - BHO: OfferBox [64Bits] - {FC0D62C2-9640-4AEB-A5D5-CF25DF11FA8C} . (.Secure Digital Services Limited - OfferBox.) -- C:\Program Files (x86)\OfferBox\OfferBoxBHO.dll =>PUP.OfferBox O2 - BHO: SMTTB2009 [64Bits] - {FCBCCB87-9224-4B8D-B117-F56D924BEB18} . (.Pas de propriétaire - IE Toolbar Engine.) -- C:\Program Files (x86)\Splitcam DB Toolbar\tbcore3.dll ~ BHO: 24 Scanned in 00mn 00s ---\\ Internet Explorer Toolbars (O3) O3 - Toolbar: Google Toolbar [64Bits] - [HKLM]{2318C2B1-4965-11d4-9B18-009027A5CD4F} . (.Google Inc. - Google Toolbar.) -- C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll ~ Toolbar: Scanned in 00mn 00s ---\\ Applications démarrées par registre & par dossier (O4) O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files (x86)\Synaptics\SynTP\SynTPEnh.exe (.not file.) O4 - HKLM\..\Run: [RTHDVCPL] . (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe O4 - HKLM\..\Run: [RtkOSD] . (.Realtek Semiconductor Corp. - Realtek OSD for Volume/Mute.) -- C:\Program Files (x86)\Realtek\Audio\OSD\RtVOsd64.exe O4 - HKLM\..\Run: [IgfxTray] . (.Intel Corporation - igfxTray Module.) -- C:\Windows\system32\igfxtray.exe O4 - HKLM\..\Run: [HotKeysCmds] . (.Intel Corporation - hkcmd Module.) -- C:\Windows\system32\hkcmd.exe O4 - HKLM\..\Run: [Persistence] . (.Intel Corporation - persistence Module.) -- C:\Windows\system32\igfxpers.exe O4 - HKLM\..\Run: [BCSSync] . (.Microsoft Corporation - Microsoft Office 2010 component.) -- C:\Program Files\Microsoft Office\Office14\BCSSync.exe O4 - HKLM\..\Run: [IntelliPoint] . (.Microsoft Corporation - IPoint.exe.) -- c:\Program Files\Microsoft IntelliPoint\ipoint.exe O4 - HKCU\..\Run: [LightScribe Control Panel] . (.Hewlett-Packard Company - Pas de description.) -- C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe O4 - HKCU\..\Run: [swg] . (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe O4 - HKCU\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe O4 - HKCU\..\Run: [Facebook Update] C:\Users\Alex4\AppData\Local\Facebook\Update\FacebookUpdate.exe (.not file.) O4 - HKCU\..\Run: [Google Update] . (.Google Inc. - Programme d'installation de Google.) -- C:\Users\Alex4\AppData\Local\Google\Update\GoogleUpdate.exe O4 - HKLM\..\Wow6432Node\Run: [Easybits Recovery] . (.EasyBits Software AS - Pas de description.) -- C:\Program Files (x86)\EasyBits For Kids\ezRecover.exe O4 - HKLM\..\Wow6432Node\Run: [QlbCtrl.exe] . (. Hewlett-Packard Development Company, L.P. - Quick Launch Buttons.) -- C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe O4 - HKLM\..\Wow6432Node\Run: [WirelessAssistant] . (.Hewlett-Packard - HP Wireless Assistant Main Program.) -- C:\Program Files (x86)\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe O4 - HKLM\..\Wow6432Node\Run: [vProt] . (.Pas de propriétaire - VProtect Application.) -- C:\Program Files (x86)\AVG Secure Search\vprot.exe =>Toolbar.AVGSearch O4 - HKLM\..\Wow6432Node\Run: [APSDaemon] . (.Apple Inc. - Apple Push.) -- C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe O4 - HKLM\..\Wow6432Node\Run: [SunJavaUpdateSched] . (.Sun Microsystems, Inc. - Java(TM) Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe O4 - HKLM\..\Wow6432Node\Run: [AVG_UI] . (.AVG Technologies CZ, s.r.o. - AVG User Interface.) -- C:\Program Files (x86)\AVG\AVG2013\avgui.exe O4 - HKLM\..\Wow6432Node\Run: [TkBellExe] . (.RealNetworks, Inc. - RealNetworks Scheduler.) -- c:\program files (x86)\real\realplayer\Update\realsched.exe O4 - HKLM\..\Wow6432Node\Run: [Adobe ARM] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe O4 - HKUS\S-1-5-19\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files (x86)\Windows Sidebar\Sidebar.exe O4 - HKUS\S-1-5-20\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files (x86)\Windows Sidebar\Sidebar.exe O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe O4 - HKUS\S-1-5-21-3967301075-317821415-3537397991-1000\..\Run: [LightScribe Control Panel] . (.Hewlett-Packard Company - Pas de description.) -- C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe O4 - HKUS\S-1-5-21-3967301075-317821415-3537397991-1000\..\Run: [swg] . (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe O4 - HKUS\S-1-5-21-3967301075-317821415-3537397991-1000\..\Run: [Sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe O4 - HKUS\S-1-5-21-3967301075-317821415-3537397991-1000\..\Run: [Facebook Update] C:\Users\Alex4\AppData\Local\Facebook\Update\FacebookUpdate.exe (.not file.) O4 - HKUS\S-1-5-21-3967301075-317821415-3537397991-1000\..\Run: [Google Update] . (.Google Inc. - Programme d'installation de Google.) -- C:\Users\Alex4\AppData\Local\Google\Update\GoogleUpdate.exe ~ Application: Scanned in 00mn 00s ---\\ Autres liens utilisateurs (O4) O4 - GS\TaskBar: Adobe Reader X.lnk . (...) -- C:\Windows\Installer\{AC76BA86-7AD7-1036-7B44-AA1000000001}\SC_Reader.ico O4 - GS\TaskBar: BitTorrent.lnk . (.BitTorrent, Inc. - BitTorrent.) -- C:\Program Files (x86)\BitTorrent\BitTorrent.exe O4 - GS\TaskBar: codeblocks.lnk . (...) -- C:\Program Files (x86)\CodeBlocks\codeblocks.exe O4 - GS\TaskBar: DAEMON Tools Lite.lnk . (.DT Soft Ltd - DAEMON Tools Lite.) -- C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe O4 - GS\TaskBar: EasyPHP 5.3.5.0.lnk . (.EasyPHP - EasyPHP Manager.) -- C:\Program Files (x86)\EasyPHP-5.3.5.0\EasyPHP-5.3.5.0.exe O4 - GS\TaskBar: Format Factory.lnk . (.Free Time - FormatFactory.) -- C:\Program Files (x86)\FreeTime\FormatFactory\FormatFactory.exe O4 - GS\TaskBar: Google Chrome.lnk . (.Google Inc. - Google Chrome.) -- C:\Users\Alex4\AppData\Local\Google\Chrome\Application\chrome.exe O4 - GS\TaskBar: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe O4 - GS\TaskBar: Microsoft Word 2010.lnk . (...) -- C:\Windows\Installer\{90140000-001B-0000-1000-0000000FF1CE}\wordicon.exe O4 - GS\TaskBar: Mozilla Firefox.lnk . (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe O4 - GS\TaskBar: NES - Famicom emulator.lnk . (...) -- C:\Users\Alex4\Desktop\Vidéothèque\Jeux\Nes\Nestopia.exe O4 - GS\TaskBar: NetBeans IDE 7.0.1.lnk . (...) -- C:\Program Files (x86)\NetBeans 7.0.1\bin\netbeans.exe O4 - GS\TaskBar: notepad++.lnk . (.Don HO don.h@free.fr - Notepad++ : a free (GNU) source code editor.) -- C:\Users\Alex4\Desktop\epf\Année 3\techno web bis\npp.6.2.2.bin\unicode\notepad++.exe O4 - GS\TaskBar: Notepad.lnk . (.Microsoft Corporation - Bloc-notes.) -- C:\Windows\system32\notepad.exe O4 - GS\TaskBar: Paint.lnk . (.Microsoft Corporation - Paint.) -- C:\Windows\system32\mspaint.exe O4 - GS\TaskBar: Project64 1.6.lnk . (...) -- C:\Program Files (x86)\Project64 1.6\Project64.exe O4 - GS\TaskBar: Vuze.lnk . (.Vuze Inc. - Pas de description.) -- C:\Program Files (x86)\Vuze\Azureus.exe O4 - GS\TaskBar: Windows Explorer.lnk . (.Microsoft Corporation - Explorateur Windows.) -- C:\Windows\explorer.exe O4 - GS\TaskBar: Windows Media Player.lnk . (.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe O4 - GS\Programs: Internet Explorer (64-bit).lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe O4 - GS\Programs: Internet Explorer.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe O4 - GS\Programs: Readon TV Movie Radio Player.lnk . (...) -- C:\Users\Alex4\AppData\Roaming\Microsoft\Installer\{03840E8D-A75E-4C49-ADFC-09A867C7F943}\_A290953C7595C4E6A1FDBA.exe O4 - GS\QuickLaunch: Avidemux 2.5.lnk . (.Free Software Foundation - Avidemux 2.5.3.) -- C:\Program Files (x86)\Avidemux 2.5\avidemux2.exe O4 - GS\QuickLaunch: BitTorrent.lnk . (.BitTorrent, Inc. - BitTorrent.) -- C:\Program Files (x86)\BitTorrent\BitTorrent.exe O4 - GS\QuickLaunch: Easy Video Joiner.lnk . (...) -- C:\Program Files (x86)\Easy Video Joiner\Joiner.exe O4 - GS\QuickLaunch: Free Video Converter.lnk . (.Koyote Soft - FreeVideoConverter.) -- C:\Program Files (x86)\Free Video Converter\FreeVideoConverter.exe O4 - GS\QuickLaunch: IsoBuster.lnk . (.Smart Projects - The Ultimate CD/DVD/BD Recovery tool.) -- C:\Users\Alex4\Downloads\IsoBuster\IsoBuster.exe O4 - GS\QuickLaunch: Kastor Free Video Converter.lnk . (.Kastor Soft - Free Audio Video Converter.) -- C:\Program Files (x86)\Free Video Converter\VideoConverter.exe O4 - GS\QuickLaunch: Launch Internet Explorer Browser.lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe O4 - GS\QuickLaunch: Picture Collage Maker.lnk . (.PearlMountain Technology Co., Ltd - PictureCollageMaker Application.) -- C:\Program Files (x86)\Picture Collage Maker\PictureCollageMaker.exe O4 - GS\QuickLaunch: Picture Merge Genius.lnk . (.Easytools,Inc - Pas de description.) -- C:\Program Files (x86)\Picture Merge Genius\PMG.exe O4 - GS\QuickLaunch: SplitCam.lnk . (.LoteSoft Co. - Capture stream splitter.) -- C:\Program Files (x86)\SplitCam\SplitCam.exe O4 - GS\QuickLaunch: Vuze.lnk . (.Vuze Inc. - Pas de description.) -- C:\Program Files (x86)\Vuze\Azureus.exe O4 - GS\Accessories: Internet Explorer (No Add-ons).lnk . (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe O4 - GS\Accessories: Private Character Editor.lnk . (.Microsoft Corporation - Éditeur de caractères privés.) -- C:\Windows\system32\eudcedit.exe O4 - GS\SendTo: AVS Mobile Uploader.lnk . (.Online Media Technologies Ltd. - AVS Mobile Uploader.) -- C:\Program Files (x86)\Common Files\AVSMedia\MobileUploader\AVSMobileUploader.exe O4 - GS\SendTo: AVS Video Burner.lnk . (.Online Media Technologies Ltd. - AVS Video Burner.) -- C:\Program Files (x86)\Common Files\AVSMedia\BurnerService\AVSVideoBurner.exe O4 - GS\SendTo: AVS Video Uploader.lnk . (.Online Media Technologies Ltd. - AVS Video Uploader.) -- C:\Program Files (x86)\Common Files\AVSMedia\VideoUploader\AVSVideoUploader.exe O4 - GS\SendTo: Fax Recipient.lnk . (.Microsoft Corporation - Microsoft Windows Fax and Scan.) -- C:\Windows\system32\WFS.exe O4 - GS\SendTo: Format Factory.lnk . (.Free Time - FormatFactory.) -- C:\Program Files (x86)\FreeTime\FormatFactory\FormatFactory.exe O4 - GS\SendTo: IsoBuster.lnk . (.Smart Projects - The Ultimate CD/DVD/BD Recovery tool.) -- C:\Users\Alex4\Downloads\IsoBuster\IsoBuster.exe O4 - GS\SendTo: Skype.lnk . (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe O4 - GS\SendTo: Transfert de fichiers Bluetooth.LNK . (.Microsoft Corporation - Pas de description.) -- C:\Windows\System32\fsquirt.exe O4 - Global Startup: C:\Users\Alex4\Desktop\Chat-Land site de chat et de rencontre gratuit.Url . (...) -- C:\Users\Alex4\Desktop\Chat-Land site de chat et de rencontre gratuit.Url =>Hijacker.ChercheUS O4 - GS\Desktop: Downloads.lnk . (...) -- C:\Users\Alex4\Downloads O4 - GS\Desktop: EPSON Scan.lnk . (.SEIKO EPSON CORP. - EPSON Scan.) -- C:\Windows\twain_32\escndv\escndv.exe O4 - GS\Desktop: Microsoft PowerPoint 2010.lnk . (...) -- C:\Windows\Installer\{90140000-0018-0000-1000-0000000FF1CE}\pptico.exe O4 - GS\Desktop: Microsoft Word 2007.exe.lnk . (.Microsoft Corporation - Microsoft Office Word.) -- C:\Users\Alex4\Desktop\Applications\Appli_installation\Portable Microsoft Office 2007 (Word & Excel Only) v4-1\Microsoft Word 2007.exe O4 - GS\Desktop: Microsoft Word 2007.lnk . (.Microsoft Corporation - Microsoft Office Word.) -- C:\Users\Alex4\Desktop\Applications\Appli_installation\Portable Microsoft Office 2007 (Word & Excel Only) v4-1\Microsoft Word 2007.exe O4 - GS\Desktop: Musique - Raccourci.lnk . (...) -- C:\Users\Alex4\Desktop\Vidéothèque\Musique O4 - GS\Desktop: PhotoFiltre.lnk . (.Antonio Da Cruz - PhotoFiltre.) -- C:\Program Files (x86)\PhotoFiltre\PhotoFiltre.exe O4 - GS\Desktop: Screamer Radio.lnk . (.Steamcore.se - Screamer Radio.) -- C:\Users\Alex4\AppData\Local\Screamer Radio\screamer.exe O4 - GS\Desktop: Vuze Downloads - Raccourci.lnk . (...) -- C:\Users\Alex4\Documents\Vuze Downloads O4 - GS\Desktop: YouCam.lnk . (.CyberLink Corp. - YouCam.) -- C:\Program Files (x86)\CyberLink\YouCam\YouCam.exe ~ Global Startup: Scanned in 00mn 01s ---\\ Invisibilité de l'icône d'options IE dans le panneau de Configuration (O5) O5 - control.ini: [HKLM\..\Control Panel] inetcpl.cpl=no ~ IE Control Panel: 1 Scanned in 00mn 00s ---\\ Winsock hijacker (Layered Service Provider) (O10) O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\Windows\system32\NLAapi.dll O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d’affectation de noms de messagerie.) -- C:\Windows\system32\napinsp.dll O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll O10 - WLSP:\000000000005\Winsock LSP File . (.Apple Inc. - Bonjour Namespace Provider.) -- C:\Program Files (x86)\Bonjour\mdnsNSP.dll O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\Windows\system32\mswsock.dll O10 - WLSP:\000000000007\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\Windows\system32\winrnr.dll O10 - WLSP:\000000000008\Winsock LSP File . (.Microsoft Corp. - Microsoft® Windows Live ID Namespace Provider.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.dll O10 - WLSP:\000000000009\Winsock LSP File . (.Microsoft Corp. - Microsoft® Windows Live ID Namespace Provider.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.dll O10 - WLSP:\000000000010\Winsock LSP File . (.Microsoft Corporation - Windows Sockets Helper DLL.) -- C:\Windows\system32\wshbth.dll ~ Winsock: 10 Scanned in 00mn 00s ---\\ Modification Domaine/Adresses DNS (O17) O17 - HKLM\System\CCS\Services\Tcpip\..\{5985DCFE-1CB1-4A44-9F03-08574E03DA61}: DhcpNameServer = 192.168.1.1 O17 - HKLM\System\CS1\Services\Tcpip\..\{5985DCFE-1CB1-4A44-9F03-08574E03DA61}: DhcpNameServer = 192.168.1.1 O17 - HKLM\System\CS2\Services\Tcpip\..\{5985DCFE-1CB1-4A44-9F03-08574E03DA61}: DhcpNameServer = 192.168.1.1 O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 ~ Domain: Scanned in 00mn 00s ---\\ Protocole additionnel (O18) O18 - Handler: wlpg [64Bits] - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} . (...) -- O18 - Filter: text/xml [64Bits] - {807573E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.dll ~ Protocole Additionnel: Scanned in 00mn 00s ---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20) O20 - Winlogon Notify: igfxcui . (.Intel Corporation - igfxdev Module.) -- C:\Windows\System32\igfxdev.dll ~ Winlogon: Scanned in 00mn 00s ---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21) O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found. ~ SSODL: 1 Scanned in 00mn 00s ---\\ Liste des services NT non Microsoft et non désactivés (O23) O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) . (.Adobe Systems Incorporated - Adobe Acrobat Update Service.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe O23 - Service: Andrea RT Filters Service (AERTFilters) . (.Andrea Electronics Corporation - Andrea filters APO access service (64-bit).) - C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe O23 - Service: Apple Mobile Device (Apple Mobile Device) . (.Apple Inc. - MobileDeviceService.) - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe O23 - Service: AVGIDSAgent (AVGIDSAgent) . (.AVG Technologies CZ, s.r.o. - AVG Identity Protection Service.) - C:\Program Files (x86)\AVG\AVG2013\avgidsagent.exe O23 - Service: AVG WatchDog (avgwd) . (.AVG Technologies CZ, s.r.o. - AVG Watchdog Service.) - C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe O23 - Service: Service Bonjour (Bonjour Service) . (.Apple Inc. - Bonjour Service.) - C:\Program Files (x86)\Bonjour\mDNSResponder.exe O23 - Service: Service Google Update (gupdate) (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: HP Support Assistant Service (HP Support Assistant Service) . (.Hewlett-Packard Company - HP Support Assistant Service.) - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe O23 - Service: (IBUpdaterService) . (...) - C:\Windows\System32\dmwu.exe =>Adware.InstallBrain O23 - Service: LibUsb-Win32 - Daemon, Version 0.1.10.1 (libusbd) . (.http://libusb-win32.sourceforge.net - LibUsb-Win32 - Generic USB Library.) - C:\Windows\SysWOW64\libusbd-nt.exe O23 - Service: LightScribeService Direct Disc Labeling (LightScribeService) . (.Hewlett-Packard Company - LightScribe Service.) - C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe O23 - Service: Intel(R) Management and Security Applica (LMS) . (.Intel Corporation - Local Manageability Service.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe O23 - Service: mental ray 3.10 Satellite for Autodesk 3 (mi-raysat_3dsmax2013_64) . (...) - C:\Program Files\Autodesk\3ds Max Design 2013\NVIDIA\raysat_3dsmax2013_64server.exe O23 - Service: PnkBstrA (PnkBstrA) . (...) - C:\Windows\SysWOW64\PnkBstrA.exe O23 - Service: RealNetworks Downloader Resolver Service (RealNetworks Downloader Resolver Service) . (...) - C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) . (.Pas de propriétaire - RichVideo Module.) - C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe O23 - Service: Skype Updater (SkypeUpdate) . (.Skype Technologies - Skype Updater Service.) - C:\Program Files (x86)\Skype\Updater\Updater.exe O23 - Service: StarWind AE Service (StarWindServiceAE) . (.Rocket Division Software - StarWind iSCSI Target (Alcohol Edition).) - C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe O23 - Service: Intel(R) Management & Security Applicati (UNS) . (.Intel Corporation - User Notification Service.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe O23 - Service: (vToolbarUpdater14.2.0) . (.Pas de propriétaire - ToolbarU Application.) - C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\14.2.0\ToolbarUpdater.exe =>Toolbar.AVGSearch O23 - Service: Web Assistant (Web Assistant) . (...) - C:\Program Files\Web Assistant\ExtensionUpdaterService.exe ~ Services: 21 Scanned in 00mn 06s ---\\ Enumération Active Desktop & MHTML Editor (O24) O24 - Default MHTML Editor: Last - .(...) - (.not file.) ~ Desktop Component: 4 Scanned in 00mn 00s ---\\ BootExecute (O34) O34 - HKLM BootExecute: (autocheck autochk *) - File not found O34 - HKLM BootExecute: (sdnclean64.exe) - File not found ~ BEX: 2 Scanned in 00mn 00s ---\\ Tâches planifiées en automatique (O39) O39 - APT:Automatic Planified Task - C:\Windows\Tasks\Adobe Flash Player Updater.job [1002] O39 - APT:Automatic Planified Task - C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-3967301075-317821415-3537397991-1000Core.job [1074] O39 - APT:Automatic Planified Task - C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-3967301075-317821415-3537397991-1000UA.job [1096] O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job [1062] O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job [1066] O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3967301075-317821415-3537397991-1000Core.job [1026] O39 - APT:Automatic Planified Task - C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3967301075-317821415-3537397991-1000UA.job [1078] O39 - APT:Automatic Planified Task - C:\Windows\Tasks\HPCeeScheduleForALEX4-PC$.job [344] O39 - APT:Automatic Planified Task - C:\Windows\Tasks\HPCeeScheduleForAlex4.job [332] [MD5.479901C99FA62D1C3261B7ACB1228DAD] [APT] [Adobe Flash Player Updater] (.Adobe Systems Incorporated.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [256904] [MD5.00000000000000000000000000000000] [APT] [FacebookUpdateTaskUserS-1-5-21-3967301075-317821415-3537397991-1000Core] (...) -- C:\Users\Alex4\AppData\Local\Facebook\Update\FacebookUpdate.exe (.not file.) [0] [MD5.00000000000000000000000000000000] [APT] [FacebookUpdateTaskUserS-1-5-21-3967301075-317821415-3537397991-1000UA] (...) -- C:\Users\Alex4\AppData\Local\Facebook\Update\FacebookUpdate.exe (.not file.) [0] [MD5.F02A533F517EB38333CB12A9E8963773] [APT] [Google Updater and Installer] (.Google Inc..) -- C:\Users\Alex4\AppData\Local\Google\Update\GoogleUpdate.exe [136176] [MD5.8F0DE4FEF8201E306F9938B0905AC96A] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [135664] [MD5.8F0DE4FEF8201E306F9938B0905AC96A] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [135664] [MD5.F02A533F517EB38333CB12A9E8963773] [APT] [GoogleUpdateTaskUserS-1-5-21-3967301075-317821415-3537397991-1000Core] (.Google Inc..) -- C:\Users\Alex4\AppData\Local\Google\Update\GoogleUpdate.exe [136176] [MD5.F02A533F517EB38333CB12A9E8963773] [APT] [GoogleUpdateTaskUserS-1-5-21-3967301075-317821415-3537397991-1000UA] (.Google Inc..) -- C:\Users\Alex4\AppData\Local\Google\Update\GoogleUpdate.exe [136176] [MD5.455B6AF8235787AB6E36193FBD9BB0AA] [APT] [HPCeeScheduleForAlex4] (.Hewlett-Packard.) -- C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [91704] [MD5.455B6AF8235787AB6E36193FBD9BB0AA] [APT] [HPCeeScheduleForALEX4-PC$] (.Hewlett-Packard.) -- C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [91704] [MD5.12916E0642E92561C98B18A2A2D01B14] [APT] [Java Update Scheduler] (.Sun Microsystems, Inc..) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [252848] [MD5.3CB07566302BCEEB898DE270A0BEC175] [APT] [Programme de mise … jour en ligne de Adobe] (.Adobe Systems Incorporated.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [946352] [MD5.5516C26A6AF8EB4E2CAB48EC98A74398] [APT] [Programme de mise … jour en ligne de HP.] (.Hewlett-Packard.) -- C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [54576] [MD5.48E6868781B4E8BF4B77DBEC7694BCE8] [APT] [Programme de mise … jour en ligne de Real Player] (.RealNetworks, Inc..) -- c:\program files (x86)\real\realplayer\Update\realsched.exe [295072] [MD5.52A3DF9E3C34B1AD9E68141B52B5C2F0] [APT] [Programme de mise … jour en ligne de Sun Microsystems] (.Sun Microsystems, Inc..) -- C:\Program Files\Java\jre6\bin\jusched.exe [172032] [MD5.6A8E0E72D390B95EFE3A7FFA17D5C504] [APT] [RealDownloaderDownloaderScheduledTaskS-1-5-21-3967301075-317821415-3537397991-1000] (.RealNetworks, Inc..) -- C:\Program Files (x86)\RealNetworks\RealDownloader\recordingmanager.exe [232608] [MD5.B7D0F1FA8926F0D58B7A000E5DAB4B3E] [APT] [RealDownloaderRealUpgradeLogonTaskS-1-5-21-3967301075-317821415-3537397991-1000] (.RealNetworks, Inc..) -- C:\Program Files (x86)\RealNetworks\RealDownloader\realupgrade.exe [187544] [MD5.B7D0F1FA8926F0D58B7A000E5DAB4B3E] [APT] [RealDownloaderRealUpgradeScheduledTaskS-1-5-21-3967301075-317821415-3537397991-1000] (.RealNetworks, Inc..) -- C:\Program Files (x86)\RealNetworks\RealDownloader\realupgrade.exe [187544] [MD5.9A7F1691F76E019C11481B6355125072] [APT] [RealPlayerRealUpgradeLogonTaskS-1-5-21-3967301075-317821415-3537397991-1000] (.RealNetworks, Inc..) -- C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe [187544] [MD5.9A7F1691F76E019C11481B6355125072] [APT] [RealPlayerRealUpgradeScheduledTaskS-1-5-21-3967301075-317821415-3537397991-1000] (.RealNetworks, Inc..) -- C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe [187544] [MD5.9A7F1691F76E019C11481B6355125072] [APT] [RealUpgradeLogonTaskS-1-5-21-3967301075-317821415-3537397991-1000] (.RealNetworks, Inc..) -- C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe [187544] [MD5.9A7F1691F76E019C11481B6355125072] [APT] [RealUpgradeScheduledTaskS-1-5-21-3967301075-317821415-3537397991-1000] (.RealNetworks, Inc..) -- C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe [187544] [MD5.F61BC28AC1E4304F0A76B81C6BA0B327] [APT] [RecoveryCDWin7] (...) -- C:\Program Files (x86)\Hewlett-Packard\HP Setup\RemEngine.exe [38456] [MD5.0F131210712F7005C3ABE7A9FABF47BA] [APT] [Your File Updater] (.http://yourfiledownloader.com.) -- C:\Program Files (x86)\YourFileDownloader\YourFileUpdater.exe [245168] [MD5.00000000000000000000000000000000] [APT] [{1451771C-033F-4E3B-92A1-80B84E70A8B3}] (...) -- C:\Users\Alex4\Desktop\DvdClipperAndJoinerSetup.exe (.not file.) [0] [MD5.00000000000000000000000000000000] [APT] [{2CDA5469-3F6A-4D69-9017-4C4E8E8429FE}] (...) -- C:\Users\Alex4\Desktop\screamer043.exe (.not file.) [0] [MD5.00000000000000000000000000000000] [APT] [{31D56846-47A3-4AE9-B63B-5A0EEFEF0AE6}] (...) -- C:\Users\Alex4\Desktop\Jeux\Vietcong\VIETCONG_CD1\setup.exe (.not file.) [0] [MD5.00000000000000000000000000000000] [APT] [{39BE2093-FDCD-496D-943A-7E26ACCF1406}] (...) -- C:\Program Files (x86)\ClickPotatoLite\bin\10.0.530.0\ClickPotatoLiteUninstaller.exe (.not file.) [0] =>Adware.ClickPotato [MD5.00000000000000000000000000000000] [APT] [{9F1D2321-C3F9-407A-9E31-D441D292E0FF}] (...) -- C:\Users\Alex4\Desktop\freeplayer\Freeplayer-Win32-20070531.exe (.not file.) [0] [MD5.00000000000000000000000000000000] [APT] [{A91022B3-0E30-400C-9F05-4899140AAD22}] (...) -- C:\Users\Alex4\Desktop\Sixaxis-Windows\Sixaxis-Windows\Sixaxis_PS3_Win32_Driver_For_PC\libusb-win32-filter-bin-0.1.10.1.exe (.not file.) [0] [MD5.00000000000000000000000000000000] [APT] [{A9206074-E982-4112-A1EC-2713E1C3A701}] (...) -- C:\Program Files (x86)\Steam\steam.exe (.not file.) [0] [MD5.00000000000000000000000000000000] [APT] [{AB29197E-6FF2-4F2D-A79B-5DA3450C0A53}] (...) -- F:\setup.exe (.not file.) [0] [MD5.E80D9EF8D721AE7E4F7065159ED50FE8] [APT] [{B9059E2C-4F9B-4118-BA8F-BF28D988399C}] (.Pcsx2 Team.) -- C:\Users\Alex4\Documents\Vuze Downloads\Ps2 Emulator Pcsx2 9.2r and 8 Bios's\PCSX2_0.9.2r2_Setup.exe [4522775] [MD5.0AE2C218A9AB6C16D79160CCE55B35FC] [APT] [HP Support Assistant Quick Start] (.Hewlett-Packard Company.) -- C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [525728] [MD5.0AE2C218A9AB6C16D79160CCE55B35FC] [APT] [PC Health Analysis] (.Hewlett-Packard Company.) -- C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [525728] [MD5.BB39BDE1B48950DE534F57815BEA9E6A] [APT] [Update Check] (.Hewlett-Packard Company.) -- C:\ProgramData\Hewlett-Packard\HP Support Framework\Resources\Updater7\HPSFUpdater.exe [603008] ~ Scheduled Task: 46 Scanned in 00mn 09s ---\\ Composants installés (ActiveSetup Installed Components) (O40) O40 - ASIC: Microsoft Windows Media Player [64Bits] - >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll O40 - ASIC: Internet Explorer [64Bits] - >{26923b43-4d38-484f-9b9e-de460746276c} . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Explorer par utilisateur.) -- C:\Windows\System32\ie4uinit.exe O40 - ASIC: Browser Customizations [64Bits] - >{60B49E34-C7CC-11D0-8953-00A0C90347FF} . (.Microsoft Corporation - Personnalisation d’IEAK.) -- C:\Windows\System32\iedkcs32.dll O40 - ASIC: Java (Sun) [64Bits] - {08B0E5C0-4FCB-11CF-AAA5-00401C608500} . (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre6\bin\regutils.dll O40 - ASIC: Microsoft Windows Media Player 12.0 [64Bits] - {22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Windows Media Player Extension.) -- C:\Windows\SysWOW64\wmpdxm.dll O40 - ASIC: Themes Setup [64Bits] - {2C7339CF-2B09-4501-B3F3-F3508C9228ED} . (.Microsoft Corporation - API Windows Theme.) -- C:\Windows\System32\themeui.dll O40 - ASIC: Microsoft Windows [64Bits] - {44BBA840-CC51-11CF-AAFA-00AA00B6015C} . (.Microsoft Corporation - Windows Mail.) -- C:\Program Files (x86)\Windows Mail\WinMail.exe O40 - ASIC: Browsing Enhancements [64Bits] - {630b1da0-b465-11d1-9948-00c04f98bbc9} . (.Microsoft Corporation - Extension Shell dossier FTP Microsoft Internet Explorer..) -- C:\Windows\System32\msieftp.dll O40 - ASIC: Microsoft Windows Media Player [64Bits] - {6BF52A52-394A-11d3-B153-00C04F79FAA6} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll O40 - ASIC: Windows Desktop Update [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4340} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll O40 - ASIC: Web Platform Customizations [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4383} . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Explorer par utilisateur.) -- C:\Windows\System32\ie4uinit.exe O40 - ASIC: (no name) [64Bits] - {89B4C1CD-B018-4511-B0A1-5476DBF70820} . (.Microsoft Corporation - Microsoft .NET IE SECURITY REGISTRATION.) -- C:\Windows\system32\mscories.dll ~ Active Setup: 12 Scanned in 00mn 00s ---\\ Pilotes lancés au démarrage (O41) O41 - Driver: C:\Windows\System32\drivers\afd.sys (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\Windows\system32\drivers\afd.sys O41 - Driver: (AVGIDSDriver) . (.AVG Technologies CZ, s.r.o. - IDS Application Activity Monitor Driver..) - C:\Windows\System32\DRIVERS\avgidsdrivera.sys O41 - Driver: (Avgldx64) . (.AVG Technologies CZ, s.r.o. - AVG AVI Loader Driver.) - C:\Windows\System32\DRIVERS\avgldx64.sys O41 - Driver: (Avgtdia) . (.AVG Technologies CZ, s.r.o. - AVG Network connection watcher.) - C:\Windows\System32\DRIVERS\avgtdia.sys O41 - Driver: (avgtp) . (.AVG Technologies - Pas de description.) - C:\Windows\system32\drivers\avgtpx64.sys O41 - Driver: (blbdrive) . (.Microsoft Corporation - BLB Drive Driver.) - C:\Windows\system32\DRIVERS\blbdrive.sys O41 - Driver: (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\System32\DRIVERS\cdrom.sys O41 - Driver: C:\Windows\System32\drivers\dfsc.sys (DfsC) . (.Microsoft Corporation - DFS Namespace Client Driver.) - C:\Windows\System32\Drivers\dfsc.sys O41 - Driver: C:\Windows\System32\drivers\discache.sys (discache) . (.Microsoft Corporation - System Indexer/Cache Driver.) - C:\Windows\System32\drivers\discache.sys O41 - Driver: (LUMDriver) . (.IBM - LUM Runtime.) - C:\Windows\system32\drivers\LUMDriver.sys O41 - Driver: (mssmbios) . (.Microsoft Corporation - System Management BIOS Driver.) - C:\Windows\system32\drivers\mssmbios.sys O41 - Driver: (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\System32\DRIVERS\netbios.sys O41 - Driver: C:\Windows\System32\drivers\netbt.sys (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\System32\DRIVERS\netbt.sys O41 - Driver: C:\Windows\System32\drivers\nsiproxy.sys (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\System32\drivers\nsiproxy.sys O41 - Driver: C:\Windows\System32\drivers\pacer.sys (Psched) . (.Microsoft Corporation - Planificateur de paquets QoS.) - C:\Windows\System32\DRIVERS\pacer.sys O41 - Driver: C:\Windows\System32\wkssvc.dll (rdbss) . (.Microsoft Corporation - Pilote du sous-système de mise en mémoire t.) - C:\Windows\System32\DRIVERS\rdbss.sys O41 - Driver: C:\Windows\System32\DRIVERS\RDPCDD.sys (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\System32\DRIVERS\RDPCDD.sys O41 - Driver: C:\Windows\System32\drivers\RDPENCDD.sys (RDPENCDD) . (.Microsoft Corporation - RDP Encoder Miniport.) - C:\Windows\System32\drivers\rdpencdd.sys O41 - Driver: C:\Windows\System32\drivers\RdpRefMp.sys (RDPREFMP) . (.Microsoft Corporation - RDP Reflector Driver Miniport.) - C:\Windows\System32\drivers\rdprefmp.sys O41 - Driver: (Serial) . (.Microsoft Corporation - Pilote de périphérique série.) - C:\Windows\system32\DRIVERS\serial.sys O41 - Driver: C:\Windows\System32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\Windows\System32\DRIVERS\tdx.sys O41 - Driver: (TermDD) . (.Microsoft Corporation - Remote Desktop Server Driver.) - C:\Windows\system32\drivers\termdd.sys O41 - Driver: (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\Windows\system32\drivers\vga.sys O41 - Driver: (vwififlt) . (.Microsoft Corporation - Virtual WiFi Filter Driver.) - C:\Windows\System32\DRIVERS\vwififlt.sys O41 - Driver: C:\Windows\System32\rascfg.dll (Wanarpv6) . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) - C:\Windows\System32\DRIVERS\wanarp.sys O41 - Driver: (WfpLwf) . (.Microsoft Corporation - WFP NDIS 6.20 Lightweight Filter Driver.) - C:\Windows\System32\DRIVERS\wfplwf.sys ~ Drivers: 78 Scanned in 00mn 00s ---\\ Logiciels installés (O42) O42 - Logiciel: A.S.C. - (...) [HKLM][64Bits] -- A.S.C. O42 - Logiciel: ABBYY FineReader 6.0 Sprint - (.ABBYY Software House.) [HKLM][64Bits] -- {ACF60000-22B9-4CE9-98D6-2CCF359BAC07} O42 - Logiciel: AGEIA PhysX v6.10.05 - (.AGEIA Technologies, Inc..) [HKLM][64Bits] -- {582876EC-A178-44D4-9823-C10D6C62EAFF} O42 - Logiciel: AVG 2013 - (.AVG Technologies.) [HKLM][64Bits] -- AVG O42 - Logiciel: AVG 2013 - (.AVG Technologies.) [HKLM][64Bits] -- {AD27BE4B-A261-4F0A-AB5A-476C83EDAED2} O42 - Logiciel: AVG 2013 - (.AVG Technologies.) [HKLM][64Bits] -- {F5AA006A-1ABE-4F16-B6E1-FEE1F7D38102} O42 - Logiciel: AVG Security Toolbar - (.AVG Technologies.) [HKLM][64Bits] -- AVG Secure Search =>Toolbar.AVGSearch O42 - Logiciel: AVS Audio Converter version 6.3 - (.Online Media Technologies Ltd..) [HKLM][64Bits] -- AVS Audio Converter 6.3_is1 O42 - Logiciel: AVS Update Manager 1.0 - (.Online Media Technologies Ltd..) [HKLM][64Bits] -- AVS Update Manager_is1 O42 - Logiciel: AVS Video Converter 7 - (.Online Media Technologies Ltd..) [HKLM][64Bits] -- AVS4YOU Video Converter 7_is1 O42 - Logiciel: AVS4YOU Software Navigator 1.4 - (.Online Media Technologies Ltd..) [HKLM][64Bits] -- AVS4YOU Software Navigator_is1 O42 - Logiciel: Acrobat.com - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {287ECFA4-719A-2143-A09B-D6A12DE54E40} O42 - Logiciel: Adobe AIR - (.Adobe Systems Inc..) [HKLM][64Bits] -- Adobe AIR O42 - Logiciel: Adobe AIR - (.Adobe Systems Inc..) [HKLM][64Bits] -- {46C045BF-2B3F-4BC4-8E4C-00E0CF8BD9DB} O42 - Logiciel: Adobe Flash Player 11 ActiveX - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player ActiveX O42 - Logiciel: Adobe Flash Player 11 Plugin - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player Plugin O42 - Logiciel: Adobe Reader X (10.1.6) - Français - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-7AD7-1036-7B44-AA1000000001} O42 - Logiciel: Adobe Shockwave Player - (.Adobe Systems, Inc..) [HKLM][64Bits] -- {D8DFA46A-39F7-4368-810D-18AFCFDDAEAF} O42 - Logiciel: Adobe Shockwave Player 11.6 - (.Adobe Systems, Inc..) [HKLM][64Bits] -- Adobe Shockwave Player O42 - Logiciel: Age of Empires III - (.Microsoft Game Studios.) [HKLM][64Bits] -- InstallShield_{7B9CC60A-9B81-46A3-A953-76B6BF9EEC97} O42 - Logiciel: Age of Empires III - The Asian Dynasties - (.Microsoft Game Studios.) [HKLM][64Bits] -- InstallShield_{C43C1415-3DFC-4089-9A32-0BECF28A6046} O42 - Logiciel: Age of Empires III - The WarChiefs - (.Microsoft Game Studios.) [HKLM][64Bits] -- InstallShield_{1C08A24C-B168-407E-A826-68FAF5F20710} O42 - Logiciel: AnyTV Trial 5.12 - (.FDRLab, Inc..) [HKLM][64Bits] -- AnyTV Trial_is1 O42 - Logiciel: Apple Application Support - (.Apple Inc..) [HKLM][64Bits] -- {EB879750-CCBD-4013-BFD5-0294D4DA5BD0} O42 - Logiciel: Apple Mobile Device Support - (.Apple Inc..) [HKLM][64Bits] -- {963BFE7E-C350-4346-B43C-B02358306A45} O42 - Logiciel: Atheros Driver Installation Program - (.Atheros.) [HKLM][64Bits] -- {C3A32068-8AB1-4327-BB16-BED9C6219DC7} O42 - Logiciel: Audacity 1.3.12 (Unicode) - (.Audacity Team.) [HKLM][64Bits] -- Audacity 1.3 Beta (Unicode)_is1 O42 - Logiciel: AutocompletePro - (...) [HKLM][64Bits] -- AutocompletePro3_is1 O42 - Logiciel: Autodesk 3ds Max Design 2013 64-bit - (.Autodesk.) [HKLM][64Bits] -- Autodesk 3ds Max Design 2013 64-bit O42 - Logiciel: Autodesk 3ds Max Design 2013 64-bit - (.Autodesk.) [HKLM][64Bits] -- {7D65612F-53B4-0409-85AA-21DF5A8E9455} O42 - Logiciel: Autodesk Backburner 2013.0.0 - (.Autodesk, Inc..) [HKLM][64Bits] -- {3D347E6D-5A03-4342-B5BA-6A771885F379} O42 - Logiciel: Autodesk Civil View for 3ds Max Design 2013 - (.Autodesk.) [HKLM][64Bits] -- {FE6DCC8D-427F-405C-A779-C93B6D9F77A5} O42 - Logiciel: Autodesk DirectConnect 2013 64-bit - (.Autodesk.) [HKLM][64Bits] -- Autodesk DirectConnect 2013 64-bit O42 - Logiciel: Autodesk Essential Skills Movies for 3ds Max Design 2013 64-bit - (.Autodesk.) [HKLM][64Bits] -- {62CBE596-1BB8-4D7B-A056-103287BAD1C4} O42 - Logiciel: Autodesk FBX Plug-in 2013.1 - 3ds Max Design 2013 64-bit - (.Autodesk.) [HKLM][64Bits] -- Autodesk FBX Plug-in 2013.1 - 3ds Max Design 2013 64-bit O42 - Logiciel: Autodesk Inventor Server Engine for 3ds Max Design 2013 64-bit - (.Autodesk.) [HKLM][64Bits] -- {BC66B242-DF13-1664-851B-00123612ED98} O42 - Logiciel: Autodesk Material Library 2013 - (.Autodesk.) [HKLM][64Bits] -- {117EBEEB-5DB0-43C8-9FD6-DD583DB152DD} O42 - Logiciel: Autodesk Material Library Base Resolution Image Library 2013 - (.Autodesk.) [HKLM][64Bits] -- {606E12B9-641F-4644-A22A-FF38AE980AFD} O42 - Logiciel: Autodesk Material Library Medium Resolution Image Library 2013 - (.Autodesk.) [HKLM][64Bits] -- {58760EEC-8B6A-43F4-81AA-696E381DFADD} O42 - Logiciel: Autodesk Revit Interoperability for 3ds Max and 3ds Max Design 2013 64-bit - (.Autodesk.) [HKLM][64Bits] -- {06E18300-BB64-1664-8E6A-2593FC67BB74} O42 - Logiciel: Avidemux 2.5 - (...) [HKLM][64Bits] -- Avidemux 2.5 O42 - Logiciel: Bcool - (.Bcool.) [HKLM][64Bits] -- {20E7BC40-33F6-4A81-9D52-B58349326206} =>PUP.Bcool O42 - Logiciel: BitTorrent - (.BitTorrent Inc..) [HKLM][64Bits] -- BitTorrent O42 - Logiciel: BittorrentBar_FR Toolbar - (.BittorrentBar_FR.) [HKLM][64Bits] -- BittorrentBar_FR Toolbar O42 - Logiciel: Bonjour - (.Apple Inc..) [HKLM][64Bits] -- {E4F5E48E-7155-4CF9-88CD-7F377EC9AC54} O42 - Logiciel: CANAL+ pour Windows Media Center - (.Microsoft Corporation.) [HKLM][64Bits] -- {E2A6B1A0-C1E3-4311-BF86-EAF18841FD67} O42 - Logiciel: CCleaner - (.Piriform.) [HKLM][64Bits] -- CCleaner O42 - Logiciel: Call of Duty - (...) [HKLM][64Bits] -- Call of Duty O42 - Logiciel: CamfrogWEB Advanced ActiveX Plugin (remove only) - (...) [HKLM][64Bits] -- CFWebAdvancedU O42 - Logiciel: Classic Doom 3 1.1 - (.Flaming Sheep Software.) [HKLM][64Bits] -- Classic Doom 3 O42 - Logiciel: CodeBlocks - (.The Code::Blocks Team.) [HKCU][64Bits] -- CodeBlocks O42 - Logiciel: Composite 2013 64-bit - (.Autodesk.) [HKLM][64Bits] -- {2F808931-D235-4FC7-90CD-F8A890C97B2F} O42 - Logiciel: Condemned - Criminal Origins - (.Monolith Productions.) [HKLM][64Bits] -- {BB47D7EA-7EF1-475C-9C14-AF5B8FCA45E2} O42 - Logiciel: Conduit Engine - (.Conduit Ltd..) [HKLM][64Bits] -- conduitEngine =>Toolbar.Conduit O42 - Logiciel: CrazyLoader - (...) [HKLM][64Bits] -- CrazyLoader O42 - Logiciel: CyberLink DVD Suite - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79} O42 - Logiciel: CyberLink DVD Suite - (.CyberLink Corp..) [HKLM][64Bits] -- {1FBF6C24-C1FD-4101-A42B-0C564F9E8E79} O42 - Logiciel: CyberLink MediaShow - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{80E158EA-7181-40FE-A701-301CE6BE64AB} O42 - Logiciel: CyberLink MediaShow - (.CyberLink Corp..) [HKLM][64Bits] -- {80E158EA-7181-40FE-A701-301CE6BE64AB} O42 - Logiciel: CyberLink PowerDVD 8 - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{2BF2E31F-B8BB-40A7-B650-98D28E0F7D47} O42 - Logiciel: CyberLink PowerDVD 8 - (.CyberLink Corp..) [HKLM][64Bits] -- {2BF2E31F-B8BB-40A7-B650-98D28E0F7D47} O42 - Logiciel: CyberLink YouCam - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D} O42 - Logiciel: CyberLink YouCam - (.CyberLink Corp..) [HKLM][64Bits] -- {01FB4998-33C4-4431-85ED-079E3EEFE75D} O42 - Logiciel: D3DX10 - (.Microsoft.) [HKLM][64Bits] -- {E09C4DB7-630C-4F06-A631-8EA7239923AF} O42 - Logiciel: Dassault Systemes Software Prerequisites x86-x64 - (.Dassault Systemes.) [HKLM][64Bits] -- {CF1EB598-B424-436A-B15F-B763846BA970} O42 - Logiciel: Debut Video Capture Software - (.NCH Software.) [HKLM][64Bits] -- Debut O42 - Logiciel: Doom 3 - (.Activision.) [HKLM][64Bits] -- InstallShield_{EEFB15EB-FE8B-47DF-A496-1C4D1420294A} O42 - Logiciel: EA Download Manager - (.Electronic Arts, Inc..) [HKLM][64Bits] -- EADM O42 - Logiciel: EPSON Scan - (...) [HKLM][64Bits] -- EPSON Scanner O42 - Logiciel: EPSON Stylus SX100_TX100 Manuel - (...) [HKLM][64Bits] -- EPSON Stylus SX100_TX100 Guide d'utilisation O42 - Logiciel: ESU for Microsoft Windows 7 - (.Hewlett-Packard.) [HKLM][64Bits] -- {3877C901-7B90-4727-A639-B6ED2DD59D43} O42 - Logiciel: Easy Video Joiner 5.21 - (.DoEasier Tech Inc..) [HKLM][64Bits] -- Easy Video Joiner_is1 O42 - Logiciel: Epson Easy Photo Print 2 - (.SEIKO EPSON CORPORATION.) [HKLM][64Bits] -- {DEDB47A3-C988-4A43-A645-E2CEA571E680} O42 - Logiciel: FFHC Kasumi: Rebirth - (.Sawatex.) [HKLM][64Bits] -- FFHC Kasumi: Rebirth_is1 O42 - Logiciel: FIFA 11 - (.Electronic Arts.) [HKLM][64Bits] -- {3FEA6CD1-EA13-4CE7-A74E-A74A4A0A7B5C} O42 - Logiciel: Facebook Video Calling 1.2.0.287 - (.Skype Limited.) [HKLM][64Bits] -- {B92C5909-1D37-4C51-8397-A28BB28E5DC3} O42 - Logiciel: Fake Webcam 3.9.0 - (.Web Solution Mart.) [HKLM][64Bits] -- Fake Webcam_is1 O42 - Logiciel: Fake Webcam 7.2 - (.Web Solution Mart.) [HKLM][64Bits] -- fakewebcam7.2.0_is1 O42 - Logiciel: FormatFactory 2.70 - (.Free Time.) [HKLM][64Bits] -- FormatFactory O42 - Logiciel: Free ISO Creator version 2.8 - (.www.minidvdsoft.com.) [HKLM][64Bits] -- Free ISO Creator (by minidvdsoft)_is1 O42 - Logiciel: Free Video Converter V 2.3 - (.Kastor Soft.) [HKLM][64Bits] -- Free Video Converter_is1 O42 - Logiciel: Google Chrome - (.Google Inc..) [HKCU][64Bits] -- Google Chrome O42 - Logiciel: Google Toolbar for Internet Explorer - (.Google Inc..) [HKLM][64Bits] -- {18455581-E099-4BA8-BC6B-F34B2F06600C} O42 - Logiciel: Google Toolbar for Internet Explorer - (.Google Inc..) [HKLM][64Bits] -- {2318C2B1-4965-11d4-9B18-009027A5CD4F} O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2} O42 - Logiciel: Guitar Guru Version 3.2.2.22 - (.Musicnotes, Inc..) [HKLM][64Bits] -- Guitar Guru_is1 O42 - Logiciel: HP Advisor - (.Hewlett-Packard.) [HKLM][64Bits] -- {40FB8D7C-6FF8-4AF2-BC8B-0B1DB32AF04B} O42 - Logiciel: HP Customer Experience Enhancements - (.Hewlett-Packard.) [HKLM][64Bits] -- {07FA4960-B038-49EB-891B-9F95930AA544} O42 - Logiciel: HP Games - (.WildTangent.) [HKLM][64Bits] -- WildTangent hp Master Uninstall O42 - Logiciel: HP Quick Launch Buttons - (.Hewlett-Packard Company.) [HKLM][64Bits] -- {34D2AB40-150D-475D-AE32-BD23FB5EE355} O42 - Logiciel: HP Setup - (.Hewlett-Packard.) [HKLM][64Bits] -- {17B4760F-334B-475D-829F-1A3E94A6A4E6} O42 - Logiciel: HP Support Assistant - (.Hewlett-Packard Company.) [HKLM][64Bits] -- {EE202411-2C26-49E8-9784-1BC1DBF7DE96} O42 - Logiciel: HP Update - (.Hewlett-Packard.) [HKLM][64Bits] -- {D46D081B-F60E-467E-A7C4-117B70D76731} O42 - Logiciel: HP User Guides - (.Hewlett-Packard.) [HKLM][64Bits] -- {4D5927FF-F3A0-4E03-9DE9-8265499164CF} O42 - Logiciel: HP Wireless Assistant - (.Hewlett-Packard.) [HKLM][64Bits] -- {54CC7901-804D-4155-B353-21F0CC9112AB} O42 - Logiciel: Hewlett-Packard ACLM.NET v1.2.1.1 - (.Hewlett-Packard Company.) [HKLM][64Bits] -- {6F340107-F9AA-47C6-B54C-C3A19F11553F} O42 - Logiciel: IB Updater Service - (...) [HKLM][64Bits] -- WNLT O42 - Logiciel: IMVU Avatar Chat Software - (...) [HKCU][64Bits] -- IMVU Avatar chat client software BETA O42 - Logiciel: IMVU Inc Toolbar - (.IMVU Inc.) [HKLM][64Bits] -- IMVU_Inc Toolbar O42 - Logiciel: ISO Recorder - (.Alex Feinman.) [HKLM][64Bits] -- {1235083F-52F9-44CC-9DF5-F9B7802BB9B7} O42 - Logiciel: ISOpen V4.5 - (.Koyote Soft.) [HKLM][64Bits] -- ISOpen_is1 O42 - Logiciel: IZArc 4.1.2 - (.Ivan Zahariev.) [HKLM][64Bits] -- {97C82B44-D408-4F14-9252-47FC1636D23E}_is1 O42 - Logiciel: IcoFX 1.6.4 - (...) [HKLM][64Bits] -- IcoFX_is1 O42 - Logiciel: Incredibar Toolbar on IE - (...) [HKLM][64Bits] -- incredibar =>Adware.IncrediBar O42 - Logiciel: Infernal - (...) [HKLM][64Bits] -- InfernalGame O42 - Logiciel: Intel(R) Graphics Media Accelerator Driver - (.Intel Corporation.) [HKLM][64Bits] -- {F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA} O42 - Logiciel: Intel(R) Management Engine Components - (.Intel Corporation.) [HKLM][64Bits] -- {65153EA5-8B6E-43B6-857B-C6E4FC25798A} O42 - Logiciel: Intel® Matrix Storage Manager - (.Intel Corporation.) [HKLM][64Bits] -- {9068B2BE-D93A-4C0A-861C-5E35E2C0E09E} O42 - Logiciel: Internet TV pour Windows Media Center - (.Microsoft Corporation.) [HKLM][64Bits] -- {9D318C86-AF4C-409F-A6AC-7183FF4CF424} O42 - Logiciel: IsoBuster 2.8 - (.Smart Projects.) [HKLM][64Bits] -- IsoBuster_is1 O42 - Logiciel: Java 7 Update 7 - (.Oracle.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F83217007FF} O42 - Logiciel: Java(TM) 6 Update 17 (64-bit) - (.Sun Microsystems, Inc..) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F86416017FF} O42 - Logiciel: Java(TM) 6 Update 22 - (.Oracle.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F83216022F0} O42 - Logiciel: Java(TM) 6 Update 33 - (.Oracle.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F83216033FF} O42 - Logiciel: Java(TM) SE Development Kit 6 Update 27 - (.Oracle.) [HKLM][64Bits] -- {32A3A4F4-B792-11D6-A78A-00B0D0160270} O42 - Logiciel: Junk Mail filter update - (.Microsoft Corporation.) [HKLM][64Bits] -- {1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4} O42 - Logiciel: K!TV - (...) [HKLM][64Bits] -- K!TV O42 - Logiciel: KeyGen Software License Key Generator Demo - (...) [HKLM][64Bits] -- {C8F40363-988D-451A-A906-162A98A18222} O42 - Logiciel: L&H TTS3000 British English - (...) [HKLM][64Bits] -- LHTTSENG O42 - Logiciel: LAME v3.98.2 for Audacity - (...) [HKLM][64Bits] -- LAME for Audacity_is1 O42 - Logiciel: LabelPrint - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{C59C179C-668D-49A9-B6EA-0121CCFC1243} O42 - Logiciel: LabelPrint - (.CyberLink Corp..) [HKLM][64Bits] -- {C59C179C-668D-49A9-B6EA-0121CCFC1243} O42 - Logiciel: LibUSB-Win32-0.1.10.1 - (.LibUSB-Win32.) [HKLM][64Bits] -- LibUSB-Win32_is1 O42 - Logiciel: LightScribe System Software - (.LightScribe.) [HKLM][64Bits] -- {10CCF16B-F1C9-4B24-9570-B4CCEE42392D} O42 - Logiciel: LiveVDO plugin 1.3 - (.LiveVDO.tv, Inc..) [HKLM][64Bits] -- LiveVDO plugin O42 - Logiciel: Livestation - (.Livestation.) [HKLM][64Bits] -- {A436BE6E-A20F-41B8-ABD7-851AAD42FF8D} O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM][64Bits] -- {8DD46C6A-0056-4FEC-B70A-28BB16A1F11F} O42 - Logiciel: MSVCRT_amd64 - (.Microsoft.) [HKLM][64Bits] -- {D0B44725-3666-492D-BEF6-587A14BD9BD9} O42 - Logiciel: MSXML 4.0 SP2 (KB954430) - (.Microsoft Corporation.) [HKLM][64Bits] -- {86493ADD-824D-4B8E-BD72-8C5DCDC52A71} O42 - Logiciel: MSXML 4.0 SP2 (KB973688) - (.Microsoft Corporation.) [HKLM][64Bits] -- {F662A8E6-F4DC-41A2-901E-8C11F044BDEC} O42 - Logiciel: MSXML4 Parser - (.Microsoft Game Studios.) [HKLM][64Bits] -- {01501EBA-EC35-4F9F-8889-3BE346E5DA13} O42 - Logiciel: Ma-Config.com (64 bits) - (.Cybelsoft.) [HKLM][64Bits] -- {9EA21438-935A-48F9-88D4-A0341406E12A} O42 - Logiciel: Magic Desktop - (.EasyBits Software AS.) [HKLM][64Bits] -- EasyBits Magic Desktop O42 - Logiciel: Malwarebytes Anti-Malware version 1.65.1.1000 - (.Malwarebytes Corporation.) [HKLM][64Bits] -- Malwarebytes' Anti-Malware_is1 O42 - Logiciel: Maxima 5.19.1 - (.The Maxima Development Team.) [HKLM][64Bits] -- Maxima-5.19.1_is1 O42 - Logiciel: MediaCoder 0.7.0.4396 - (.Broad Intelligence.) [HKLM][64Bits] -- MediaCoder O42 - Logiciel: MessengerChatLand - (.MessengerChatland.) [HKCU][64Bits] -- MessengerChatland O42 - Logiciel: Microsoft IntelliPoint 8.2 - (.Microsoft Corporation.) [HKLM][64Bits] -- Microsoft IntelliPoint 8.2 O42 - Logiciel: Microsoft IntelliPoint 8.2 - (.Microsoft Corporation.) [HKLM][64Bits] -- {624C7F0A-89B2-4C49-9CAB-9D69613EC95A} O42 - Logiciel: Microsoft PowerPoint 2010 - (.Microsoft Corporation.) [HKLM][64Bits] -- Office14.POWERPOINT O42 - Logiciel: Microsoft Search Enhancement Pack - (.Microsoft Corporation.) [HKLM][64Bits] -- {CFF8B8E8-E086-4DE0-935F-FE22CAB54F80} O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM][64Bits] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00} O42 - Logiciel: Microsoft Word 2010 - (.Microsoft Corporation.) [HKLM][64Bits] -- Office14.WORD O42 - Logiciel: Microsoft Works - (.Microsoft Corporation.) [HKLM][64Bits] -- {3B160861-7250-451E-B5EE-8B92BF30A710} O42 - Logiciel: Minecraft Beta Cracked - (...) [HKLM][64Bits] -- Minecraft Beta Cracked O42 - Logiciel: Miro - (.Participatory Culture Foundation.) [HKLM][64Bits] -- Miro O42 - Logiciel: MotoGP - (.THQ.) [HKLM][64Bits] -- MotoGP_is1 O42 - Logiciel: Mozilla Firefox 14.0.1 (x86 fr) - (.Mozilla.) [HKLM][64Bits] -- Mozilla Firefox 14.0.1 (x86 fr) O42 - Logiciel: Mozilla Maintenance Service - (.Mozilla.) [HKLM][64Bits] -- MozillaMaintenanceService O42 - Logiciel: Mumble and Murmur - (.Mumble.) [HKLM][64Bits] -- Mumble O42 - Logiciel: NCH Toolbar - (.NCH.) [HKLM][64Bits] -- NCH Toolbar O42 - Logiciel: Need For Speed Underground - (...) [HKLM][64Bits] -- {A99968BE-C155-474C-0089-33239DEE1CE2} O42 - Logiciel: Need For Speed™ World - (.Electronic Arts.) [HKLM][64Bits] -- {7B2CC3DF-64FA-44AE-8F57-B0F915147E4F}_is1 O42 - Logiciel: NetBeans IDE 7.0.1 - (.NetBeans.org.) [HKLM][64Bits] -- nbi-nb-base-7.0.1.0.0 O42 - Logiciel: OfferBox - (.Secure Digital Services Limited.) [HKLM][64Bits] -- OfferBox =>PUP.OfferBox O42 - Logiciel: Online TV Player 5 - (.Online TV Player.com.) [HKLM][64Bits] -- Online TV Player 3_is1 O42 - Logiciel: OpenAL - (...) [HKLM][64Bits] -- OpenAL O42 - Logiciel: OpenOffice.org 3.3 - (.OpenOffice.org.) [HKLM][64Bits] -- {05653DE1-6567-40C6-B930-39D399B64369} O42 - Logiciel: OpoSoft Video Editor v5.1 - (.OpoSoft.com Inc.) [HKLM][64Bits] -- Video Editor_is1 O42 - Logiciel: PCSX2 - Playstation 2 Emulator - (...) [HKLM][64Bits] -- pcsx2-r3878 O42 - Logiciel: Pcsx2 0.9.2 Watermoose - (.Pcsx2 Team.) [HKLM][64Bits] -- Pcsx2_is1 O42 - Logiciel: Pcsx2 0.9.6 - (.Pcsx2 Team.) [HKLM][64Bits] -- {0E2B767B-EA6A-489B-BF83-8083FE1DB661} O42 - Logiciel: Perfect Fake Webcam 7.2.1 - (.Perfect Fake Webcam Inc..) [HKLM][64Bits] -- {7A656F7F-FBB3-48EF-A1ED-823D3E28702E}_is1 O42 - Logiciel: PhotoFiltre - (...) [HKCU][64Bits] -- PhotoFiltre O42 - Logiciel: Picture Collage Maker 3.3.2 - (.PearlMountain Technology Co., Ltd.) [HKLM][64Bits] -- {D53599B0-AA76-4CC6-B9EF-CC2F27B56F24}_is1 O42 - Logiciel: Picture Merge Genius 2.8.1 - (.EasyTools,Inc.) [HKLM][64Bits] -- Picture Merge Genius_is1 O42 - Logiciel: PlayerPlus - (...) [HKLM][64Bits] -- PlayerPlus O42 - Logiciel: Pouchin TV Mod - (...) [HKLM][64Bits] -- Pouchin TV Mod O42 - Logiciel: Power2Go - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{40BF1E83-20EB-11D8-97C5-0009C5020658} O42 - Logiciel: Power2Go - (.CyberLink Corp..) [HKLM][64Bits] -- {40BF1E83-20EB-11D8-97C5-0009C5020658} O42 - Logiciel: PowerDirector - (.CyberLink Corp..) [HKLM][64Bits] -- InstallShield_{CB099890-1D5F-11D5-9EA9-0050BAE317E1} O42 - Logiciel: PowerDirector - (.CyberLink Corp..) [HKLM][64Bits] -- {CB099890-1D5F-11D5-9EA9-0050BAE317E1} O42 - Logiciel: Prism Video File Converter - (.NCH Software.) [HKLM][64Bits] -- Prism O42 - Logiciel: ProgDVB - (...) [HKLM][64Bits] -- ProgDVB O42 - Logiciel: Project64 1.6 - (.Project64.) [HKLM][64Bits] -- {9559F7CA-5E34-4237-A2D9-D856464AD727} O42 - Logiciel: PunkBuster Services - (.Even Balance, Inc..) [HKLM][64Bits] -- PunkBusterSvc O42 - Logiciel: QLBCASL - (.Hewlett-Packard.) [HKLM][64Bits] -- {F1D7AC58-554A-4A58-B784-B61558B1449A} O42 - Logiciel: QuickTime - (.Apple Inc..) [HKLM][64Bits] -- {0E64B098-8018-4256-BA23-C316A43AD9B0} O42 - Logiciel: RapeLay - (.ILLUSION.) [HKLM][64Bits] -- {CA31F991-DBD2-4DE1-B6D2-30105F23CBBC} O42 - Logiciel: Readon TV Movie Radio Player 7.5.0.0 - (.Readon Technology.) [HKLM][64Bits] -- {03840E8D-A75E-4C49-ADFC-09A867C7F943} O42 - Logiciel: Real Kanojo - (.randompirate @ TPB.) [HKLM][64Bits] -- {58ABF83F-C5EA-4C21-A1D8-A0AF1E4D026C}_is1 O42 - Logiciel: RealDownloader - (.RealNetworks, Inc..) [HKLM][64Bits] -- {AF7EBCA4-9FAF-4DC8-8D09-67854BB84D34} O42 - Logiciel: RealPlayer - (.RealNetworks.) [HKLM][64Bits] -- RealPlayer 16.0 O42 - Logiciel: RealUpgrade 1.1 - (.RealNetworks, Inc..) [HKLM][64Bits] -- {28C2DED6-325B-4CC7-983A-1777C8F7FBAB} O42 - Logiciel: Realtek Ethernet Controller Driver For Windows Vista and Later - (.Realtek.) [HKLM][64Bits] -- {8833FFB6-5B0C-4764-81AA-06DFEED9A476} O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC} O42 - Logiciel: Realtek USB 2.0 Card Reader - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {96AE7E41-E34E-47D0-AC07-1091A8127911} O42 - Logiciel: Recovery Manager - (.CyberLink Corp..) [HKLM][64Bits] -- {44B2A0AB-412E-4F8C-B058-D1E8AECCDFF5} O42 - Logiciel: Registry Reviver - (.ReviverSoft LLC..) [HKLM][64Bits] -- RegistryReviver O42 - Logiciel: Registry Reviver - (.SPAMfighter ApS.) [HKLM][64Bits] -- {BC27061D-FFCE-4931-A05F-AC964CC026CA} O42 - Logiciel: Security Update for CAPICOM (KB931906) - (.Microsoft Corporation.) [HKLM][64Bits] -- KB931906 O42 - Logiciel: Security Update for CAPICOM (KB931906) - (.Microsoft Corporation.) [HKLM][64Bits] -- {0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A} O42 - Logiciel: SixaxisDriver 0.91 - (.xPAD, Inc..) [HKLM][64Bits] -- GameSaike SixaxisDriver_is1 O42 - Logiciel: Skype™ 6.1 - (.Skype Technologies S.A..) [HKLM][64Bits] -- {4E76FF7E-AEBA-4C87-B788-CD47E5425B9D} O42 - Logiciel: SopCast 3.3.2 - (.www.sopcast.com.) [HKLM][64Bits] -- SopCast O42 - Logiciel: SplitCam - (.SplitCam Co.) [HKLM][64Bits] -- SplitCam O42 - Logiciel: Splitcam DB Toolbar - (...) [HKLM][64Bits] -- Splitcam DB Toolbar O42 - Logiciel: Super Internet TV v8.1 (Free Edition) - (.Ahusoft.) [HKCU][64Bits] -- Super Internet TV (Free Edition)_is1 O42 - Logiciel: Synaptics Pointing Device Driver - (.Synaptics Incorporated.) [HKLM][64Bits] -- SynTPDeinstKey O42 - Logiciel: TV Player Classic 6.7 - (.TV Player Classic.) [HKLM][64Bits] -- TV Player Classic_is1 O42 - Logiciel: Telenor Internet - (.Huawei Technologies Co.,Ltd.) [HKLM][64Bits] -- Telenor Internet O42 - Logiciel: Tom Clancy's Splinter Cell - (...) [HKLM][64Bits] -- {A174402A-2EE6-4B86-A930-7BC85A9933BD} O42 - Logiciel: VLC media player 1.1.7 - (.VideoLAN.) [HKLM][64Bits] -- VLC media player O42 - Logiciel: Veetle TV - (.Veetle, Inc.) [HKLM][64Bits] -- Veetle TV O42 - Logiciel: VideoPad Video Editor - (.NCH Software.) [HKLM][64Bits] -- VideoPad O42 - Logiciel: Vietcong - (...) [HKLM][64Bits] -- Vietcong O42 - Logiciel: VirtuaGirl HD - (...) [HKLM][64Bits] -- VirtuaGirl HD O42 - Logiciel: Visual C++ 8.0 Runtime Setup Package (x64) - (.AVG Technologies CZ, s.r.o..) [HKLM][64Bits] -- {2FDBBCEA-62DB-45F4-B6E5-0E1FB2A1F29D} O42 - Logiciel: Visual Studio 2008 x64 Redistributables - (.AVG Technologies.) [HKLM][64Bits] -- {FCDBEA60-79F0-4FAE-BBA8-55A26C609A49} O42 - Logiciel: Visual Studio 2010 x64 Redistributables - (.AVG Technologies.) [HKLM][64Bits] -- {21B133D6-5979-47F0-BE1C-F6A6B304693F} O42 - Logiciel: Vuze - (.Vuze Inc..) [HKLM][64Bits] -- 8461-7759-5462-8226 O42 - Logiciel: Vuze Remote Toolbar - (.Vuze Remote.) [HKLM][64Bits] -- Vuze_Remote Toolbar O42 - Logiciel: Web Assistant 2.0.0.572 - (.IncrediBar.) [HKLM][64Bits] -- {336D0C35-8A85-403a-B9D2-65C292C39087}_is1 =>Adware.IncrediBar O42 - Logiciel: Webcam Simulator 7.3 - (.Webcam Simulator.) [HKLM][64Bits] -- WCS7.3.0_is1 O42 - Logiciel: WinRAR 4.00 bêta 5 (32-bit) - (.win.rar GmbH.) [HKLM][64Bits] -- WinRAR archiver O42 - Logiciel: YourFileDownloader - (.http://yourfiledownloader.com/.) [HKCU][64Bits] -- YourFileDownloader =>PUP.SoftwareEngine O42 - Logiciel: free-downloads.net Toolbar - (...) [HKLM][64Bits] -- free-downloads.net Toolbar O42 - Logiciel: iLivid - (.Bandoo Media Inc..) [HKLM][64Bits] -- iLivid =>Adware.Bandoo O42 - Logiciel: iLivid - (.Bandoo Media Inc..) [HKLM][64Bits] -- {8D15E1B2-D2B7-4A17-B44B-D2DDE5981406} =>Adware.Bandoo O42 - Logiciel: iWizz - (.Name of your company.) [HKLM][64Bits] -- iWizz 1.0b1 O42 - Logiciel: muvee Reveal - (.muvee Technologies Pte Ltd.) [HKLM][64Bits] -- {43BA31BA-04BD-2EA3-0A60-A9C54E06D3F2} O42 - Logiciel: swMSM - (.Adobe Systems, Inc.) [HKLM][64Bits] -- {612C34C7-5E90-47D8-9B5C-0F717DD82726} ~ Logic: 362 Scanned in 00mn 00s ---\\ HKCU & HKLM Software Keys [HKCU\Software\1ClickDownload] [HKCU\Software\ABBYY] [HKCU\Software\ASProtect] [HKCU\Software\AVG Secure Search] =>Toolbar.AVGSearch [HKCU\Software\AVG Security Toolbar] [HKCU\Software\AVS4YOU] [HKCU\Software\Adobe] [HKCU\Software\Ahusoft] [HKCU\Software\Alcohol Soft] [HKCU\Software\Alex Feinman] [HKCU\Software\AppDataLow\Avg] [HKCU\Software\AppDataLow\RealNetworks] [HKCU\Software\AppDataLow\Software\AVG Security Toolbar] [HKCU\Software\AppDataLow\Software\Avg] [HKCU\Software\AppDataLow\Software\BittorrentBar_FR] [HKCU\Software\AppDataLow\Software\ConduitSearchScopes] [HKCU\Software\AppDataLow\Software\Conduit] [HKCU\Software\AppDataLow\Software\IMVU_Inc] [HKCU\Software\AppDataLow\Software\NCH] [HKCU\Software\AppDataLow\Software\RealNetworks] [HKCU\Software\AppDataLow\Software\Stonetrip] [HKCU\Software\AppDataLow\Software\Vuze_Remote] [HKCU\Software\AppDataLow\Software\conduitEngine] [HKCU\Software\AppDataLow\Software\free-downloads.net] [HKCU\Software\AppDataLow\Toolbar] [HKCU\Software\AppDataLow] [HKCU\Software\Apple Computer, Inc.] [HKCU\Software\Apple Inc.] [HKCU\Software\Audacity] [HKCU\Software\Auslogics] [HKCU\Software\AutocompleteProBHO] [HKCU\Software\AutocompletePro] [HKCU\Software\Autodesk] [HKCU\Software\Avg] [HKCU\Software\Azureus] [HKCU\Software\BabylonToolbar] =>Toolbar.Babylon [HKCU\Software\Bywifi] [HKCU\Software\CamStudioOpenSource for Nick] [HKCU\Software\Camfrog] [HKCU\Software\Classes] [HKCU\Software\Clients] [HKCU\Software\Conduit] [HKCU\Software\CyberLink] [HKCU\Software\DT Soft] [HKCU\Software\Datastead] [HKCU\Software\DiskSoftware] [HKCU\Software\EA Sports] [HKCU\Software\EasyBits] [HKCU\Software\Elecard] [HKCU\Software\Electronic Arts] [HKCU\Software\Epson] [HKCU\Software\FDRLab] [HKCU\Software\Facebook] [HKCU\Software\FreeTime] [HKCU\Software\Freeware] [HKCU\Software\GNU] [HKCU\Software\GaBi] [HKCU\Software\Gabest] [HKCU\Software\GameSpy] [HKCU\Software\Google] [HKCU\Software\Haali] [HKCU\Software\Hewlett-Packard] [HKCU\Software\IE] [HKCU\Software\IM Providers] [HKCU\Software\IMVU] [HKCU\Software\IM] [HKCU\Software\IZSoftware] [HKCU\Software\ImInstaller] [HKCU\Software\IncrediMail] [HKCU\Software\IndaSoftware] [HKCU\Software\Intel] [HKCU\Software\JaboSoft] [HKCU\Software\JavaSoft] [HKCU\Software\Lake] [HKCU\Software\Leadertech] [HKCU\Software\Licenses] [HKCU\Software\LightScribe] [HKCU\Software\Livestation] [HKCU\Software\Local AppWizard-Generated Applications] [HKCU\Software\LoteSoft] [HKCU\Software\Macromedia] [HKCU\Software\Madis] [HKCU\Software\Magnet] [HKCU\Software\MainConcept (Muvee Consumer)] [HKCU\Software\MainConcept (Muvee)] [HKCU\Software\MainConcept (Muvee2)] [HKCU\Software\Malwarebytes' Anti-Malware] [HKCU\Software\MegaCloud] [HKCU\Software\Mootools] [HKCU\Software\Motion Analysis] [HKCU\Software\MozillaPlugins] [HKCU\Software\Mozilla] [HKCU\Software\Mumble] [HKCU\Software\Musicnotes] [HKCU\Software\N64 Emulation] [HKCU\Software\NCH Software] [HKCU\Software\NCH Swift Sound] [HKCU\Software\Netscape] [HKCU\Software\Norton] [HKCU\Software\Notepad2] [HKCU\Software\NuScreensavers] [HKCU\Software\ODBC] [HKCU\Software\OfferBox] =>PUP.OfferBox [HKCU\Software\OnlineTVPlayer] [HKCU\Software\OpenOffice.org] [HKCU\Software\PS2Eplugin] [HKCU\Software\PalTalk] [HKCU\Software\Participatory Culture Foundation] [HKCU\Software\Pcsx2] [HKCU\Software\Pcsx] [HKCU\Software\PearlMountain] [HKCU\Software\PeopleCanFly] [HKCU\Software\Perfect Fake Webcam] [HKCU\Software\Piriform] [HKCU\Software\Policies] [HKCU\Software\Raptr] [HKCU\Software\RatioMaster.NET] [HKCU\Software\RealNetworks] [HKCU\Software\Realtek] [HKCU\Software\ReviverSoft] [HKCU\Software\SEIKO EPSON] [HKCU\Software\SMTTB2009] [HKCU\Software\Safer Networking Limited] [HKCU\Software\Screamer Radio] [HKCU\Software\Screensaver Factory] [HKCU\Software\SecuROM] [HKCU\Software\SightSpeed Inc] [HKCU\Software\Skinkers] [HKCU\Software\SkypeRS] [HKCU\Software\Skype] [HKCU\Software\Smart Projects] [HKCU\Software\Softonic] [HKCU\Software\SolidWorks] [HKCU\Software\Somoto Toolbar] =>Adware.MegaSearch [HKCU\Software\Spin2] [HKCU\Software\Spointer] [HKCU\Software\StartSearch] [HKCU\Software\Stdin2] [HKCU\Software\SweetIM] =>PUP.SweetIM [HKCU\Software\Synaptics] [HKCU\Software\TVANTS] [HKCU\Software\The Silicon Realms Toolworks] [HKCU\Software\Thomas Wright Consulting] [HKCU\Software\Totem] [HKCU\Software\Trolltech] [HKCU\Software\TuneUp] [HKCU\Software\Valve] [HKCU\Software\Veetle] [HKCU\Software\Vision Thing] [HKCU\Software\Voice] [HKCU\Software\WNLT] [HKCU\Software\Web Solution Mart] [HKCU\Software\Webcam Simulator] [HKCU\Software\Wifirst] [HKCU\Software\Will] [HKCU\Software\WinRAR SFX] [HKCU\Software\WinRAR] [HKCU\Software\Wow6432Node] [HKCU\Software\YahooPartnerToolbar] [HKCU\Software\Yahoo] [HKCU\Software\YouWave_Android] [HKCU\Software\Youtube] [HKCU\Software\ZebHelpProcess Helper] [HKCU\Software\csmania.ru] [HKCU\Software\cybelsoft] [HKCU\Software\ePSXeCutor] [HKCU\Software\ej-technologies] [HKCU\Software\fwc] [HKCU\Software\ilivid] =>Adware.Bandoo [HKCU\Software\illusion] [HKCU\Software\incredibar.com] =>Adware.IncrediBar [HKCU\Software\kde.org] [HKCU\Software\mozilla.org] [HKCU\Software\testapp] [HKCU\Software\thriXXX] [HKCU\Software\vShare.tv] [HKCU\Software\wcs] [HKCU\Software\wizzgo] [HKCU\Software\wxMaxima] [HKLM\Software\ATI Technologies] [HKLM\Software\AVS4YOU] [HKLM\Software\Agere] [HKLM\Software\Apple Computer, Inc.] [HKLM\Software\Autodesk] [HKLM\Software\Avg] [HKLM\Software\BrowserChoice] [HKLM\Software\CXT] [HKLM\Software\Classes] [HKLM\Software\Clients] [HKLM\Software\DirectConnect] [HKLM\Software\GEAR Software] [HKLM\Software\Google] [HKLM\Software\Gradient] [HKLM\Software\HPQ] [HKLM\Software\HaaliMkx] [HKLM\Software\Hewlett-Packard] [HKLM\Software\Huawei technologies] [HKLM\Software\IM Providers] [HKLM\Software\InstalledOptions] [HKLM\Software\Intel] [HKLM\Software\JavaSoft] [HKLM\Software\LSI] [HKLM\Software\Macromedia] [HKLM\Software\Macrovision] [HKLM\Software\MozillaPlugins] [HKLM\Software\Mozilla] [HKLM\Software\ODBC] [HKLM\Software\Piriform] [HKLM\Software\Policies] [HKLM\Software\RTLSetup] [HKLM\Software\Realtek Semiconductor Corp.] [HKLM\Software\Realtek] [HKLM\Software\RegisteredApplications] [HKLM\Software\ReviverSoft] [HKLM\Software\SRS Labs] [HKLM\Software\Safer Networking Limited] [HKLM\Software\SolidWorks] [HKLM\Software\Sonic] [HKLM\Software\Synaptics] [HKLM\Software\Tarma Installer] =>Toolbar.Tarma [HKLM\Software\TuneUp] [HKLM\Software\Valve] [HKLM\Software\WNLT] [HKLM\Software\Web Assistant] [HKLM\Software\WildTangent] [HKLM\Software\Wow6432Node\ABBYY] [HKLM\Software\Wow6432Node\AGEIA Technologies] [HKLM\Software\Wow6432Node\AVG Security Toolbar] [HKLM\Software\Wow6432Node\AVS4YOU] [HKLM\Software\Wow6432Node\Activision] [HKLM\Software\Wow6432Node\Adobe] [HKLM\Software\Wow6432Node\Alcohol Soft] [HKLM\Software\Wow6432Node\AppDataLow] [HKLM\Software\Wow6432Node\Apple Computer, Inc.] [HKLM\Software\Wow6432Node\Apple Inc.] [HKLM\Software\Wow6432Node\Atheros] [HKLM\Software\Wow6432Node\Autodesk] [HKLM\Software\Wow6432Node\Avg] [HKLM\Software\Wow6432Node\AviSynth] [HKLM\Software\Wow6432Node\Azureus] [HKLM\Software\Wow6432Node\BabylonToolbar] =>Toolbar.Babylon [HKLM\Software\Wow6432Node\Babylon] =>Toolbar.Babylon [HKLM\Software\Wow6432Node\BittorrentBar_FR] [HKLM\Software\Wow6432Node\Bunndle] [HKLM\Software\Wow6432Node\Bywifi] [HKLM\Software\Wow6432Node\C07ft5Y] [HKLM\Software\Wow6432Node\CDDB] [HKLM\Software\Wow6432Node\Caphyon] [HKLM\Software\Wow6432Node\Classes] [HKLM\Software\Wow6432Node\Clients] [HKLM\Software\Wow6432Node\Conduit] [HKLM\Software\Wow6432Node\Crytek] [HKLM\Software\Wow6432Node\Cyberlink] [HKLM\Software\Wow6432Node\DT Soft] [HKLM\Software\Wow6432Node\Debug] [HKLM\Software\Wow6432Node\Digital River] [HKLM\Software\Wow6432Node\EA GAMES] [HKLM\Software\Wow6432Node\EA Sports] [HKLM\Software\Wow6432Node\EPSON] [HKLM\Software\Wow6432Node\EasyBits] [HKLM\Software\Wow6432Node\EdenFlirt] [HKLM\Software\Wow6432Node\Electronic Arts] [HKLM\Software\Wow6432Node\Even Balance] [HKLM\Software\Wow6432Node\FarStone] [HKLM\Software\Wow6432Node\GNU] [HKLM\Software\Wow6432Node\Google] [HKLM\Software\Wow6432Node\HPQLOG] [HKLM\Software\Wow6432Node\HPQ] [HKLM\Software\Wow6432Node\HaaliMkx] [HKLM\Software\Wow6432Node\Hewlett-Packard] [HKLM\Software\Wow6432Node\Huawei technologies] [HKLM\Software\Wow6432Node\Humanity] [HKLM\Software\Wow6432Node\IBM] [HKLM\Software\Wow6432Node\ILLUSION] [HKLM\Software\Wow6432Node\IM Providers] [HKLM\Software\Wow6432Node\IMVU_Inc] [HKLM\Software\Wow6432Node\ISOpen] [HKLM\Software\Wow6432Node\IZSoftware] [HKLM\Software\Wow6432Node\Iminent] =>Adware.IMBooster [HKLM\Software\Wow6432Node\IncrediMail] [HKLM\Software\Wow6432Node\Incredibar.com] =>Adware.IncrediBar [HKLM\Software\Wow6432Node\InstUf] [HKLM\Software\Wow6432Node\InstallShield] [HKLM\Software\Wow6432Node\Intel] [HKLM\Software\Wow6432Node\JavaSoft] [HKLM\Software\Wow6432Node\Jbz25] [HKLM\Software\Wow6432Node\JreMetrics] [HKLM\Software\Wow6432Node\L&H] [HKLM\Software\Wow6432Node\Lake] [HKLM\Software\Wow6432Node\Lame for Audacity] [HKLM\Software\Wow6432Node\Lhandslide Studios] [HKLM\Software\Wow6432Node\LightScribe] [HKLM\Software\Wow6432Node\LoteSoft] [HKLM\Software\Wow6432Node\MLDTMGR] [HKLM\Software\Wow6432Node\Macromedia] [HKLM\Software\Wow6432Node\Malwarebytes' Anti-Malware] [HKLM\Software\Wow6432Node\MiKit4] [HKLM\Software\Wow6432Node\MimarSinan] [HKLM\Software\Wow6432Node\Monolith Productions] [HKLM\Software\Wow6432Node\MozillaPlugins] [HKLM\Software\Wow6432Node\Mozilla] [HKLM\Software\Wow6432Node\Musicnotes] [HKLM\Software\Wow6432Node\NCH Software] [HKLM\Software\Wow6432Node\NCH Swift Sound] [HKLM\Software\Wow6432Node\NCH] [HKLM\Software\Wow6432Node\Name of your company] [HKLM\Software\Wow6432Node\ODBC] [HKLM\Software\Wow6432Node\OpenOffice.org] [HKLM\Software\Wow6432Node\P2G_Upgrade] [HKLM\Software\Wow6432Node\PDR_Upgrade] [HKLM\Software\Wow6432Node\Participatory Culture Foundation] [HKLM\Software\Wow6432Node\Pcsx2] [HKLM\Software\Wow6432Node\PeopleCanFly] [HKLM\Software\Wow6432Node\Persits Software] [HKLM\Software\Wow6432Node\PocketSoft] [HKLM\Software\Wow6432Node\Policies] [HKLM\Software\Wow6432Node\Product_Upgrade] [HKLM\Software\Wow6432Node\Pterodon] [HKLM\Software\Wow6432Node\Raptr] [HKLM\Software\Wow6432Node\RealNetworks] [HKLM\Software\Wow6432Node\Realtek Semiconductor Corp.] [HKLM\Software\Wow6432Node\Realtek] [HKLM\Software\Wow6432Node\RegisteredApplications] [HKLM\Software\Wow6432Node\SPsoft] [HKLM\Software\Wow6432Node\Safer Networking Limited] [HKLM\Software\Wow6432Node\Sawatex] [HKLM\Software\Wow6432Node\SearchCore for Browsers] [HKLM\Software\Wow6432Node\Skink] [HKLM\Software\Wow6432Node\Skype] [HKLM\Software\Wow6432Node\SolidWorks] [HKLM\Software\Wow6432Node\SweetIM] =>PUP.SweetIM [HKLM\Software\Wow6432Node\Symantec] [HKLM\Software\Wow6432Node\THQ] [HKLM\Software\Wow6432Node\The Silicon Realms Toolworks] [HKLM\Software\Wow6432Node\Thomas Wright Consulting] [HKLM\Software\Wow6432Node\Totem] [HKLM\Software\Wow6432Node\TuneUp] [HKLM\Software\Wow6432Node\Ubi Soft Entertainment] [HKLM\Software\Wow6432Node\Utherverse Digital Inc] [HKLM\Software\Wow6432Node\Valve] [HKLM\Software\Wow6432Node\Veetle] [HKLM\Software\Wow6432Node\VideoLAN] [HKLM\Software\Wow6432Node\Voice] [HKLM\Software\Wow6432Node\Volatile] [HKLM\Software\Wow6432Node\Vuze_Remote] [HKLM\Software\Wow6432Node\Web Assistant] [HKLM\Software\Wow6432Node\WildTangent] [HKLM\Software\Wow6432Node\WinRAR] [HKLM\Software\Wow6432Node\Windows] [HKLM\Software\Wow6432Node\Wise Solutions] [HKLM\Software\Wow6432Node\Xing Technology Corp.] [HKLM\Software\Wow6432Node\YourFileDownloader] [HKLM\Software\Wow6432Node\cybelsoft] [HKLM\Software\Wow6432Node\ej-technologies] [HKLM\Software\Wow6432Node\free-downloads.net] [HKLM\Software\Wow6432Node\id] [HKLM\Software\Wow6432Node\ilivid] =>Adware.Bandoo [HKLM\Software\Wow6432Node\magnet] [HKLM\Software\Wow6432Node\mozilla.org] [HKLM\Software\Wow6432Node\muvee Technologies] [HKLM\Software\Wow6432Node] [HKLM\Software\cybelsoft] ~ Key Software: 519 Scanned in 00mn 01s ---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43) O43 - CFD: 21/06/2012 - 20:03:26 - [2,533] ----D C:\Program Files (x86)\1ClickDownload O43 - CFD: 08/10/2010 - 23:12:42 - [5,630] ----D C:\Program Files (x86)\A.S.C O43 - CFD: 09/11/2010 - 00:49:36 - [118,664] ----D C:\Program Files (x86)\ABBYY FineReader 6.0 Sprint O43 - CFD: 19/02/2012 - 17:41:51 - [115,268] ----D C:\Program Files (x86)\Adobe O43 - CFD: 06/02/2013 - 21:48:17 - [33,833] ----D C:\Program Files (x86)\AGEIA Technologies O43 - CFD: 28/12/2010 - 20:17:10 - [11,196] ----D C:\Program Files (x86)\Alcohol Soft O43 - CFD: 11/06/2011 - 20:17:28 - [1,500] ----D C:\Program Files (x86)\Alex Feinman O43 - CFD: 11/02/2010 - 02:23:41 - [1,500] ----D C:\Program Files (x86)\Atheros O43 - CFD: 23/09/2010 - 18:59:28 - [32,795] ----D C:\Program Files (x86)\Audacity 1.3 Beta (Unicode) O43 - CFD: 07/02/2011 - 23:06:51 - [0,933] ----D C:\Program Files (x86)\AutocompletePro O43 - CFD: 03/01/2013 - 02:30:22 - [12,360] ----D C:\Program Files (x86)\Autodesk O43 - CFD: 20/10/2012 - 19:47:43 - [137,409] ----D C:\Program Files (x86)\AVG O43 - CFD: 20/02/2013 - 13:47:15 - [17,756] ----D C:\Program Files (x86)\AVG Secure Search =>Toolbar.AVGSearch O43 - CFD: 16/10/2010 - 17:38:25 - [39,412] ----D C:\Program Files (x86)\Avidemux 2.5 O43 - CFD: 20/03/2011 - 02:07:23 - [74,338] ----D C:\Program Files (x86)\AVS4YOU O43 - CFD: 15/04/2012 - 23:34:06 - [6,085] ----D C:\Program Files (x86)\BitTorrent O43 - CFD: 15/04/2012 - 23:34:57 - [4,795] ----D C:\Program Files (x86)\BittorrentBar_FR O43 - CFD: 27/12/2010 - 19:55:22 - [0,589] ----D C:\Program Files (x86)\Bonjour O43 - CFD: 15/12/2012 - 16:07:28 - [4,272] ----D C:\Program Files (x86)\Bywifi O43 - CFD: 31/10/2011 - 01:58:42 - [1168,112] ----D C:\Program Files (x86)\Call of Duty O43 - CFD: 12/06/2012 - 01:48:01 - [2,199] ----D C:\Program Files (x86)\CamStudio 2.6b O43 - CFD: 07/10/2010 - 22:05:34 - [6,223] ----D C:\Program Files (x86)\CFWebAdvancedU O43 - CFD: 20/09/2010 - 17:44:23 - [148,172] ----D C:\Program Files (x86)\CodeBlocks O43 - CFD: 04/03/2013 - 03:10:24 - [1941,890] ----D C:\Program Files (x86)\Common Files O43 - CFD: 01/10/2010 - 21:54:47 - [1,215] ----D C:\Program Files (x86)\Conduit O43 - CFD: 11/06/2011 - 20:20:05 - [7,992] ----D C:\Program Files (x86)\ConduitEngine O43 - CFD: 01/09/2011 - 20:47:11 - [31,404] ----D C:\Program Files (x86)\CrazyLoader O43 - CFD: 11/02/2010 - 02:35:49 - [1533,763] ----D C:\Program Files (x86)\CyberLink O43 - CFD: 19/10/2010 - 17:18:18 - [9,831] ----D C:\Program Files (x86)\DAEMON Tools Lite O43 - CFD: 14/11/2010 - 21:06:48 - [0] ----D C:\Program Files (x86)\directx O43 - CFD: 09/01/2011 - 22:33:11 - [-1764,985] ----D C:\Program Files (x86)\Doom 3 O43 - CFD: 07/10/2010 - 18:36:58 - [0,342] ----D C:\Program Files (x86)\DosPop Toolbar O43 - CFD: 10/10/2010 - 03:17:52 - [1252,923] ----D C:\Program Files (x86)\DreamCatcher O43 - CFD: 19/11/2010 - 01:10:34 - [1292,794] ----D C:\Program Files (x86)\EA GAMES O43 - CFD: 18/11/2010 - 21:39:52 - [-1932,423] ----D C:\Program Files (x86)\EA Sports O43 - CFD: 16/10/2010 - 13:18:04 - [5,475] ----D C:\Program Files (x86)\Easy Video Joiner O43 - CFD: 31/08/2010 - 23:47:11 - [90,004] ----D C:\Program Files (x86)\EasyBits For Kids O43 - CFD: 28/12/2011 - 15:20:40 - [133,389] ----D C:\Program Files (x86)\EasyPHP-5.3.5.0 O43 - CFD: 25/04/2013 - 00:38:23 - [74,571] ----D C:\Program Files (x86)\Electronic Arts O43 - CFD: 09/11/2010 - 00:47:51 - [12,500] ----D C:\Program Files (x86)\epson O43 - CFD: 09/11/2010 - 00:49:50 - [89,622] ----D C:\Program Files (x86)\Epson Software O43 - CFD: 07/05/2011 - 23:41:49 - [3,951] ----D C:\Program Files (x86)\Fake Webcam O43 - CFD: 01/05/2012 - 00:00:39 - [4,442] ----D C:\Program Files (x86)\FDRLab O43 - CFD: 11/06/2011 - 20:28:03 - [2,395] ----D C:\Program Files (x86)\Free ISO Creator O43 - CFD: 18/10/2012 - 21:03:58 - [27,337] ----D C:\Program Files (x86)\Free Video Converter O43 - CFD: 28/12/2010 - 20:17:38 - [2,175] ----D C:\Program Files (x86)\free-downloads.net O43 - CFD: 23/09/2010 - 19:07:07 - [114,205] ----D C:\Program Files (x86)\FreeTime O43 - CFD: 21/10/2010 - 19:29:08 - [0,001] ----D C:\Program Files (x86)\GameSpy Arcade O43 - CFD: 02/09/2010 - 22:02:01 - [23,072] ----D C:\Program Files (x86)\Google O43 - CFD: 02/03/2013 - 21:59:23 - [0] ----D C:\Program Files (x86)\Gophoto.it O43 - CFD: 15/09/2012 - 03:09:06 - [4,594] ----D C:\Program Files (x86)\GUM5076.tmp O43 - CFD: 27/12/2012 - 11:17:10 - [452,733] ----D C:\Program Files (x86)\Hewlett-Packard O43 - CFD: 16/01/2010 - 10:06:40 - [2,972] ----D C:\Program Files (x86)\Hp O43 - CFD: 16/01/2010 - 07:48:37 - [319,642] ----D C:\Program Files (x86)\HP Games O43 - CFD: 16/07/2011 - 00:06:25 - [3,662] ----D C:\Program Files (x86)\IcoFX 1.6 O43 - CFD: 05/10/2011 - 10:48:06 - [39,643] ----D C:\Program Files (x86)\iLivid =>Adware.Bandoo O43 - CFD: 28/12/2012 - 03:16:15 - [0,440] ----D C:\Program Files (x86)\Illusion Registry Fixer O43 - CFD: 15/06/2011 - 13:53:42 - [3,938] ----D C:\Program Files (x86)\IMVU_Inc O43 - CFD: 21/06/2012 - 20:12:16 - [0,258] ----D C:\Program Files (x86)\Incredibar.com =>Adware.IncrediBar O43 - CFD: 14/01/2011 - 22:11:33 - [1594,560] ----D C:\Program Files (x86)\Infernal O43 - CFD: 01/02/2013 - 21:22:04 - [253,196] --H-D C:\Program Files (x86)\InstallShield Installation Information O43 - CFD: 11/02/2010 - 02:21:50 - [20,954] ----D C:\Program Files (x86)\Intel O43 - CFD: 10/04/2013 - 19:56:05 - [6,208] ----D C:\Program Files (x86)\Internet Explorer O43 - CFD: 28/12/2010 - 22:46:29 - [4,602] ----D C:\Program Files (x86)\ISOpen O43 - CFD: 30/04/2012 - 23:56:22 - [16,497] ----D C:\Program Files (x86)\iWizz O43 - CFD: 01/10/2012 - 21:45:46 - [486,184] ----D C:\Program Files (x86)\Java O43 - CFD: 30/04/2012 - 23:26:39 - [11,331] ----D C:\Program Files (x86)\K!TV O43 - CFD: 23/09/2010 - 19:54:46 - [1,170] ----D C:\Program Files (x86)\Lame for Audacity O43 - CFD: 18/11/2010 - 22:05:53 - [1,161] ----D C:\Program Files (x86)\LibUSB-Win32-0.1.10.1 O43 - CFD: 30/04/2012 - 23:50:25 - [33,479] ----D C:\Program Files (x86)\Livestation O43 - CFD: 26/11/2011 - 18:37:00 - [0,396] ----D C:\Program Files (x86)\LiveVDO.tv plugin O43 - CFD: 15/12/2012 - 16:02:37 - [12,645] ----D C:\Program Files (x86)\Malwarebytes' Anti-Malware O43 - CFD: 27/04/2011 - 18:20:58 - [90,828] ----D C:\Program Files (x86)\Maxima-5.19.1 O43 - CFD: 30/04/2012 - 21:48:17 - [0,000] ----D C:\Program Files (x86)\MaxTV O43 - CFD: 16/01/2010 - 07:22:27 - [2,541] ----D C:\Program Files (x86)\Microsoft O43 - CFD: 11/03/2011 - 14:19:10 - [0,764] ----D C:\Program Files (x86)\Microsoft CAPICOM 2.1.0.2 O43 - CFD: 01/02/2013 - 21:12:03 - [-268,405] ----D C:\Program Files (x86)\Microsoft Games O43 - CFD: 17/05/2012 - 16:52:39 - [19,890] ----D C:\Program Files (x86)\Microsoft Office O43 - CFD: 16/01/2010 - 08:13:19 - [7,431] ----D C:\Program Files (x86)\Microsoft Office Suite Activation Assistant O43 - CFD: 15/03/2013 - 19:22:28 - [40,835] ----D C:\Program Files (x86)\Microsoft Silverlight O43 - CFD: 16/01/2010 - 07:23:12 - [1,745] ----D C:\Program Files (x86)\Microsoft SQL Server Compact Edition O43 - CFD: 10/03/2011 - 22:40:56 - [53,666] ----D C:\Program Files (x86)\Microsoft Visual Studio 8 O43 - CFD: 12/10/2012 - 03:03:48 - [137,975] ----D C:\Program Files (x86)\Microsoft Works O43 - CFD: 14/09/2010 - 20:43:39 - [7,797] ----D C:\Program Files (x86)\Microsoft.NET O43 - CFD: 14/11/2010 - 21:02:24 - [640,395] ----D C:\Program Files (x86)\MotoGP O43 - CFD: 24/04/2013 - 04:10:32 - [39,331] ----D C:\Program Files (x86)\Mozilla Firefox O43 - CFD: 19/10/2012 - 02:10:27 - [0,195] ----D C:\Program Files (x86)\Mozilla Maintenance Service O43 - CFD: 14/07/2009 - 07:32:38 - [0,025] ----D C:\Program Files (x86)\MSBuild O43 - CFD: 13/04/2011 - 19:54:44 - [82,726] ----D C:\Program Files (x86)\MSECache O43 - CFD: 24/12/2010 - 14:53:43 - [0] ----D C:\Program Files (x86)\MSXML 4.0 O43 - CFD: 22/12/2010 - 14:43:12 - [35,989] ----D C:\Program Files (x86)\Mumble O43 - CFD: 06/09/2012 - 02:32:09 - [10,167] ----D C:\Program Files (x86)\Musicnotes O43 - CFD: 11/02/2010 - 02:36:25 - [58,316] ----D C:\Program Files (x86)\muvee Technologies O43 - CFD: 22/06/2011 - 12:14:33 - [3,892] ----D C:\Program Files (x86)\NCH O43 - CFD: 15/12/2010 - 19:49:40 - [19,793] ----D C:\Program Files (x86)\NCH Software O43 - CFD: 12/10/2011 - 20:00:03 - [240,361] ----D C:\Program Files (x86)\NetBeans 7.0.1 O43 - CFD: 03/09/2010 - 23:35:22 - [3,423] ----D C:\Program Files (x86)\OfferBox =>PUP.OfferBox O43 - CFD: 30/08/2010 - 20:48:35 - [20,130] R---D C:\Program Files (x86)\Online Services O43 - CFD: 30/04/2012 - 23:28:01 - [6,208] ----D C:\Program Files (x86)\Online TV Player 5 O43 - CFD: 30/04/2012 - 23:42:11 - [0,746] ----D C:\Program Files (x86)\OpenAL O43 - CFD: 20/03/2011 - 16:01:17 - [353,458] ----D C:\Program Files (x86)\OpenOffice.org 3 O43 - CFD: 16/10/2010 - 17:33:19 - [65,031] ----D C:\Program Files (x86)\OpoSoft O43 - CFD: 21/06/2012 - 20:13:47 - [0] ----D C:\Program Files (x86)\Optimizer Pro O43 - CFD: 30/04/2012 - 23:22:05 - [109,080] ----D C:\Program Files (x86)\Participatory Culture Foundation O43 - CFD: 26/06/2011 - 23:02:51 - [18,600] ----D C:\Program Files (x86)\Pcsx2 O43 - CFD: 26/06/2011 - 22:47:34 - [14,025] ----D C:\Program Files (x86)\PCSX2 0.9.7 O43 - CFD: 26/06/2011 - 23:11:33 - [45,297] ----D C:\Program Files (x86)\Pcsx2_0.9.4 O43 - CFD: 24/04/2013 - 19:49:52 - [3,529] ----D C:\Program Files (x86)\PhotoFiltre O43 - CFD: 30/05/2012 - 17:19:09 - [71,534] ----D C:\Program Files (x86)\Picture Collage Maker O43 - CFD: 30/05/2012 - 17:26:04 - [6,098] ----D C:\Program Files (x86)\Picture Merge Genius O43 - CFD: 30/12/2011 - 22:06:49 - [57,952] ----D C:\Program Files (x86)\PlayerPlus O43 - CFD: 30/04/2012 - 23:50:38 - [56,046] ----D C:\Program Files (x86)\ProgDVB O43 - CFD: 24/03/2011 - 16:54:22 - [3,364] ----D C:\Program Files (x86)\Project64 1.6 O43 - CFD: 24/03/2011 - 16:48:05 - [2,403] ----D C:\Program Files (x86)\Project64 v1.5 O43 - CFD: 22/06/2012 - 05:08:27 - [72,431] ----D C:\Program Files (x86)\QuickTime O43 - CFD: 02/11/2011 - 20:04:39 - [95,607] ----D C:\Program Files (x86)\Raptr O43 - CFD: 30/04/2012 - 22:34:24 - [18,775] ----D C:\Program Files (x86)\Readon Technology O43 - CFD: 22/12/2012 - 21:02:17 - [118,213] ----D C:\Program Files (x86)\Real O43 - CFD: 22/12/2012 - 21:02:30 - [17,998] ----D C:\Program Files (x86)\RealNetworks O43 - CFD: 11/02/2010 - 02:22:43 - [14,410] ----D C:\Program Files (x86)\Realtek O43 - CFD: 18/10/2012 - 20:58:33 - [2,690] ----D C:\Program Files (x86)\Red Kawa O43 - CFD: 14/07/2009 - 07:32:38 - [37,357] ----D C:\Program Files (x86)\Reference Assemblies O43 - CFD: 24/12/2010 - 17:03:45 - [-1811,565] ----D C:\Program Files (x86)\SEGA O43 - CFD: 24/03/2011 - 22:08:17 - [0,688] ----D C:\Program Files (x86)\SixaxisDriver O43 - CFD: 03/02/2013 - 04:14:22 - [18,091] R---D C:\Program Files (x86)\Skype O43 - CFD: 15/01/2011 - 19:59:08 - [8,831] ----D C:\Program Files (x86)\SopCast O43 - CFD: 07/02/2011 - 23:06:56 - [7,899] ----D C:\Program Files (x86)\SplitCam O43 - CFD: 07/02/2011 - 23:06:40 - [3,795] ----D C:\Program Files (x86)\Splitcam DB Toolbar O43 - CFD: 08/07/2012 - 21:44:23 - [24,460] ----D C:\Program Files (x86)\Telenor Internet O43 - CFD: 11/02/2010 - 02:22:36 - [0] --H-D C:\Program Files (x86)\Temp O43 - CFD: 01/07/2012 - 04:54:25 - [5,531] ----D C:\Program Files (x86)\Thomas Wright Consulting O43 - CFD: 02/03/2013 - 21:58:02 - [0] ----D C:\Program Files (x86)\TornTV.com =>Hijacker.TornTV O43 - CFD: 01/05/2012 - 00:01:49 - [6,809] ----D C:\Program Files (x86)\TVPlayerClassic O43 - CFD: 12/06/2011 - 17:16:33 - [1452,046] ----D C:\Program Files (x86)\Ubi Soft O43 - CFD: 14/07/2009 - 06:57:06 - [0] --H-D C:\Program Files (x86)\Uninstall Information O43 - CFD: 12/01/2011 - 01:42:52 - [0] ----D C:\Program Files (x86)\Utherverse Digital Inc O43 - CFD: 05/01/2011 - 22:24:25 - [9,935] ----D C:\Program Files (x86)\Veetle O43 - CFD: 09/06/2011 - 19:32:12 - [716,481] ----D C:\Program Files (x86)\VG HD O43 - CFD: 14/10/2010 - 00:01:23 - [84,958] ----D C:\Program Files (x86)\VLC O43 - CFD: 05/02/2012 - 08:22:35 - [18,591] ----D C:\Program Files (x86)\Vuze O43 - CFD: 11/06/2011 - 20:20:16 - [15,065] ----D C:\Program Files (x86)\Vuze_Remote O43 - CFD: 16/01/2010 - 16:01:36 - [0,500] ----D C:\Program Files (x86)\Windows Defender O43 - CFD: 20/06/2012 - 18:11:31 - [141,193] ----D C:\Program Files (x86)\Windows Live O43 - CFD: 23/06/2011 - 20:17:44 - [5,895] ----D C:\Program Files (x86)\Windows Mail O43 - CFD: 28/08/2011 - 03:31:35 - [5,194] ----D C:\Program Files (x86)\Windows Media Player O43 - CFD: 14/07/2009 - 07:32:38 - [11,632] ----D C:\Program Files (x86)\Windows NT O43 - CFD: 23/06/2011 - 20:17:43 - [4,213] ----D C:\Program Files (x86)\Windows Photo Viewer O43 - CFD: 23/06/2011 - 20:17:44 - [0,181] ----D C:\Program Files (x86)\Windows Portable Devices O43 - CFD: 23/06/2011 - 20:17:44 - [6,039] ----D C:\Program Files (x86)\Windows Sidebar O43 - CFD: 24/02/2011 - 16:23:32 - [3,958] ----D C:\Program Files (x86)\WinRAR O43 - CFD: 18/08/2012 - 16:18:27 - [2,703] ----D C:\Program Files (x86)\YourFileDownloader O43 - CFD: 25/07/2011 - 01:45:51 - [141,686] ----D C:\Program Files (x86)\YouWave_Android O43 - CFD: 25/04/2013 - 23:29:00 - [16,394] ----D C:\Program Files (x86)\ZHPDiag O43 - CFD: 19/02/2012 - 17:41:54 - [3,797] ----D C:\Program Files (x86)\Common Files\Adobe O43 - CFD: 13/12/2010 - 01:37:03 - [29,398] ----D C:\Program Files (x86)\Common Files\Adobe AIR O43 - CFD: 22/02/2011 - 20:34:35 - [76,018] ----D C:\Program Files (x86)\Common Files\Apple O43 - CFD: 03/01/2013 - 02:35:16 - [1174,603] ----D C:\Program Files (x86)\Common Files\Autodesk Shared O43 - CFD: 21/01/2013 - 19:31:26 - [48,839] ----D C:\Program Files (x86)\Common Files\AVG Secure Search =>Toolbar.AVGSearch O43 - CFD: 20/03/2011 - 02:07:19 - [157,852] ----D C:\Program Files (x86)\Common Files\AVSMedia O43 - CFD: 11/02/2010 - 02:36:00 - [0,123] ----D C:\Program Files (x86)\Common Files\CyberLink O43 - CFD: 14/03/2013 - 19:34:53 - [0,187] ----D C:\Program Files (x86)\Common Files\DESIGNER O43 - CFD: 04/03/2013 - 02:34:35 - [17,265] ----D C:\Program Files (x86)\Common Files\Gestionnaire d'installation SolidWorks O43 - CFD: 09/01/2011 - 22:34:07 - [17,571] ----D C:\Program Files (x86)\Common Files\InstallShield O43 - CFD: 01/10/2012 - 21:47:23 - [1,184] ----D C:\Program Files (x86)\Common Files\Java O43 - CFD: 11/02/2010 - 02:27:54 - [35,066] ----D C:\Program Files (x86)\Common Files\LightScribe O43 - CFD: 01/02/2013 - 21:21:39 - [0,156] ----D C:\Program Files (x86)\Common Files\Microsoft Games O43 - CFD: 17/05/2012 - 16:52:39 - [200,940] ----D C:\Program Files (x86)\Common Files\microsoft shared O43 - CFD: 11/02/2010 - 02:36:26 - [94,490] ----D C:\Program Files (x86)\Common Files\muvee Technologies O43 - CFD: 11/02/2010 - 02:21:07 - [0,159] ----D C:\Program Files (x86)\Common Files\postureAgent O43 - CFD: 14/07/2009 - 05:20:08 - [0,003] ----D C:\Program Files (x86)\Common Files\Services O43 - CFD: 03/02/2013 - 04:14:22 - [2,056] ----D C:\Program Files (x86)\Common Files\Skype O43 - CFD: 04/03/2013 - 03:10:24 - [0,076] ----D C:\Program Files (x86)\Common Files\SolidWorks Shared O43 - CFD: 14/07/2009 - 05:20:08 - [39,200] ----D C:\Program Files (x86)\Common Files\SpeechEngines O43 - CFD: 13/12/2011 - 00:04:59 - [0,400] ----D C:\Program Files (x86)\Common Files\Steam O43 - CFD: 03/09/2010 - 19:11:54 - [0] ----D C:\Program Files (x86)\Common Files\Symantec Shared O43 - CFD: 17/05/2012 - 16:52:37 - [17,123] ----D C:\Program Files (x86)\Common Files\System O43 - CFD: 30/04/2012 - 05:19:03 - [1,042] ----D C:\Program Files (x86)\Common Files\Totem Shared O43 - CFD: 01/07/2012 - 04:48:07 - [1,364] ----D C:\Program Files (x86)\Common Files\Web Solution Mart O43 - CFD: 01/07/2012 - 05:12:49 - [1,598] ----D C:\Program Files (x86)\Common Files\Webcam Simulator O43 - CFD: 16/01/2010 - 07:20:56 - [0] ----D C:\Program Files (x86)\Common Files\Windows Live O43 - CFD: 14/01/2011 - 22:11:38 - [21,046] ----D C:\Program Files (x86)\Common Files\Wise Installation Wizard O43 - CFD: 22/12/2012 - 21:02:14 - [0,336] ----D C:\Program Files (x86)\Common Files\xing shared O43 - CFD: 25/04/2013 - 23:29:15 - [211,214] ----D C:\ProgramData\Adobe O43 - CFD: 03/02/2013 - 03:22:30 - [0] ----D C:\ProgramData\Age of Empires 3 O43 - CFD: 27/12/2010 - 20:20:09 - [63,831] ----D C:\ProgramData\Apple O43 - CFD: 22/06/2012 - 05:08:11 - [25,771] ----D C:\ProgramData\Apple Computer O43 - CFD: 14/07/2009 - 07:08:56 - [0] --H-D C:\ProgramData\Application Data O43 - CFD: 14/01/2011 - 02:38:12 - [0] ----D C:\ProgramData\Astroburn Lite O43 - CFD: 11/02/2010 - 02:23:44 - [0,011] ----D C:\ProgramData\Atheros O43 - CFD: 03/01/2013 - 02:44:04 - [594,243] ----D C:\ProgramData\Autodesk O43 - CFD: 20/10/2012 - 19:51:53 - [3,679] ----D C:\ProgramData\AVG Secure Search =>Toolbar.AVGSearch O43 - CFD: 11/04/2011 - 20:59:42 - [2,366] ----D C:\ProgramData\AVG Security Toolbar O43 - CFD: 20/10/2012 - 19:52:44 - [302,449] ----D C:\ProgramData\AVG2013 O43 - CFD: 19/11/2010 - 01:22:41 - [64,021] ----D C:\ProgramData\avg9 O43 - CFD: 20/02/2011 - 19:35:09 - [0] ----D C:\ProgramData\AVS4YOU O43 - CFD: 30/12/2011 - 21:23:18 - [0] ----D C:\ProgramData\Babylon =>Toolbar.Babylon O43 - CFD: 21/06/2012 - 20:11:53 - [0,089] ----D C:\ProgramData\Bcool =>PUP.Bcool O43 - CFD: 30/08/2010 - 20:47:12 - [0] --H-D C:\ProgramData\Bureau O43 - CFD: 19/11/2010 - 01:27:33 - [0,000] --H-D C:\ProgramData\Common Files O43 - CFD: 01/07/2012 - 05:34:04 - [0,076] ----D C:\ProgramData\CyberLink O43 - CFD: 19/10/2010 - 17:17:20 - [0,001] ----D C:\ProgramData\DAEMON Tools Lite O43 - CFD: 14/03/2013 - 19:34:38 - [0] ----D C:\ProgramData\DassaultSystemes O43 - CFD: 14/07/2009 - 07:08:56 - [0] --H-D C:\ProgramData\Desktop O43 - CFD: 14/07/2009 - 07:08:56 - [0] --H-D C:\ProgramData\Documents O43 - CFD: 16/12/2010 - 23:26:22 - [0] ----D C:\ProgramData\EA Core O43 - CFD: 20/02/2013 - 19:43:38 - [0,464] ----D C:\ProgramData\Electronic Arts O43 - CFD: 09/11/2010 - 00:40:41 - [0,079] ----D C:\ProgramData\EPSON O43 - CFD: 30/08/2010 - 20:47:12 - [0] --H-D C:\ProgramData\Favoris O43 - CFD: 14/07/2009 - 07:08:56 - [0] --H-D C:\ProgramData\Favorites O43 - CFD: 03/01/2013 - 02:42:40 - [0,076] ----D C:\ProgramData\FLEXnet O43 - CFD: 17/07/2012 - 01:36:56 - [0,115] ----D C:\ProgramData\GboxUpdater O43 - CFD: 02/09/2010 - 22:02:07 - [0,514] ----D C:\ProgramData\Google O43 - CFD: 19/12/2010 - 17:20:30 - [53,000] ----D C:\ProgramData\Hewlett-Packard O43 - CFD: 21/06/2012 - 20:12:26 - [1,549] ----D C:\ProgramData\InstallMate O43 - CFD: 17/05/2012 - 20:43:15 - [0,001] ----D C:\ProgramData\LightScribe O43 - CFD: 18/11/2010 - 21:58:29 - [1,104] ----D C:\ProgramData\ma-config.com O43 - CFD: 15/12/2012 - 16:02:32 - [6,290] ----D C:\ProgramData\Malwarebytes O43 - CFD: 30/08/2010 - 20:47:12 - [0] --H-D C:\ProgramData\Menu Démarrer O43 - CFD: 25/04/2013 - 19:28:12 - [164,971] ----D C:\ProgramData\MFAData O43 - CFD: 15/12/2012 - 16:19:05 - [567,339] -S--D C:\ProgramData\Microsoft O43 - CFD: 10/04/2013 - 19:41:08 - [0,069] ----D C:\ProgramData\Microsoft Help O43 - CFD: 30/08/2010 - 20:47:12 - [0] --H-D C:\ProgramData\Modèles O43 - CFD: 22/06/2012 - 04:59:19 - [0,004] ----D C:\ProgramData\Mozilla O43 - CFD: 15/12/2010 - 19:49:40 - [0] ----D C:\ProgramData\NCH Software O43 - CFD: 19/11/2010 - 22:59:32 - [0,122] ----D C:\ProgramData\NFS Underground O43 - CFD: 03/09/2010 - 19:12:39 - [0,012] ----D C:\ProgramData\Norton O43 - CFD: 11/02/2010 - 02:36:36 - [15,956] ----D C:\ProgramData\NortonInstaller O43 - CFD: 17/07/2012 - 01:37:34 - [0,115] ----D C:\ProgramData\OptimizerPro =>PUP.OptimizerPro O43 - CFD: 30/05/2012 - 17:19:09 - [0,001] ----D C:\ProgramData\PearlMountain O43 - CFD: 21/06/2012 - 20:12:25 - [0] ----D C:\ProgramData\Premium O43 - CFD: 30/04/2012 - 22:41:54 - [55,300] ----D C:\ProgramData\Readon O43 - CFD: 22/12/2012 - 21:02:11 - [4,052] ----D C:\ProgramData\Real O43 - CFD: 22/12/2012 - 21:02:24 - [3,298] ----D C:\ProgramData\RealNetworks O43 - CFD: 04/09/2010 - 16:26:23 - [0,039] ----D C:\ProgramData\Recovery O43 - CFD: 03/10/2010 - 00:00:05 - [3,930] ----D C:\ProgramData\ReviverSoft O43 - CFD: 03/02/2013 - 04:14:27 - [92,405] ----D C:\ProgramData\Skype O43 - CFD: 10/03/2011 - 22:42:22 - [0,125] ----D C:\ProgramData\SolidWorks O43 - CFD: 15/12/2012 - 16:09:12 - [8,994] ----D C:\ProgramData\Spybot - Search & Destroy O43 - CFD: 14/07/2009 - 07:08:56 - [0] --H-D C:\ProgramData\Start Menu O43 - CFD: 02/09/2010 - 22:06:52 - [0,000] ----D C:\ProgramData\Sun O43 - CFD: 02/03/2013 - 21:55:05 - [1,194] ----D C:\ProgramData\Tarma Installer =>Toolbar.Tarma O43 - CFD: 13/09/2010 - 23:36:42 - [0,622] ----D C:\ProgramData\Temp O43 - CFD: 14/07/2009 - 07:08:56 - [0] --H-D C:\ProgramData\Templates O43 - CFD: 18/08/2012 - 16:17:14 - [0,613] ----D C:\ProgramData\TuneUp Software O43 - CFD: 30/04/2012 - 23:01:52 - [0] ----D C:\ProgramData\TVU Networks O43 - CFD: 09/11/2010 - 00:50:23 - [0,003] ----D C:\ProgramData\UDL O43 - CFD: 31/12/2011 - 01:24:02 - [0,000] ----D C:\ProgramData\Web Installer O43 - CFD: 20/02/2011 - 22:18:34 - [1206,212] ----D C:\ProgramData\WildTangent O43 - CFD: 05/10/2011 - 10:48:10 - [6,140] --H-D C:\ProgramData\{2E51849B-6C53-4B47-9E70-462912833018} O43 - CFD: 18/08/2012 - 15:58:36 - [22,941] -SH-D C:\ProgramData\{32364CEA-7855-4A3C-B674-53D8E9B97936} O43 - CFD: 27/12/2010 - 19:57:33 - [0,004] ----D C:\ProgramData\{93E26451-CD9A-43A5-A2FA-C42392EA4001} O43 - CFD: 27/12/2012 - 11:14:31 - [39,643] ----D C:\ProgramData\{9BF4D58B-C6D6-467B-BC5A-FD0C1278F4AF} O43 - CFD: 05/01/2012 - 02:42:11 - [53,681] ----D C:\Users\Alex4\AppData\Roaming\.minecraft O43 - CFD: 20/02/2012 - 19:11:46 - [13,480] ----D C:\Users\Alex4\AppData\Roaming\Adobe O43 - CFD: 27/12/2010 - 20:23:58 - [760,310] ----D C:\Users\Alex4\AppData\Roaming\Apple Computer O43 - CFD: 14/01/2011 - 02:38:12 - [0] ----D C:\Users\Alex4\AppData\Roaming\Astroburn Lite O43 - CFD: 28/02/2013 - 18:38:06 - [0,002] ----D C:\Users\Alex4\AppData\Roaming\Audacity O43 - CFD: 03/01/2013 - 02:46:57 - [0,022] ----D C:\Users\Alex4\AppData\Roaming\Autodesk O43 - CFD: 20/10/2012 - 19:58:01 - [0,081] ----D C:\Users\Alex4\AppData\Roaming\AVG2013 O43 - CFD: 03/09/2010 - 19:34:22 - [0,000] ----D C:\Users\Alex4\AppData\Roaming\AVG9 O43 - CFD: 16/10/2010 - 17:39:51 - [0,025] ----D C:\Users\Alex4\AppData\Roaming\avidemux O43 - CFD: 20/03/2011 - 02:07:44 - [0,703] ----D C:\Users\Alex4\AppData\Roaming\AVS4YOU O43 - CFD: 12/02/2013 - 18:19:42 - [49,300] ----D C:\Users\Alex4\AppData\Roaming\Azureus O43 - CFD: 22/04/2013 - 04:43:30 - [7,411] ----D C:\Users\Alex4\AppData\Roaming\BitTorrent O43 - CFD: 20/03/2011 - 02:13:07 - [0,010] ----D C:\Users\Alex4\AppData\Roaming\Broad Intelligence O43 - CFD: 10/04/2013 - 18:06:22 - [0,034] ----D C:\Users\Alex4\AppData\Roaming\codeblocks O43 - CFD: 13/12/2010 - 01:37:10 - [0,001] ----D C:\Users\Alex4\AppData\Roaming\com.zoosk.Desktop.096E6A67431258A508A2446A847B240591D2C99B.1 O43 - CFD: 03/09/2010 - 23:36:11 - [0,004] ----D C:\Users\Alex4\AppData\Roaming\CrazyLoader O43 - CFD: 18/09/2010 - 22:53:00 - [0,721] ----D C:\Users\Alex4\AppData\Roaming\CyberLink O43 - CFD: 19/10/2010 - 17:24:04 - [0,004] ----D C:\Users\Alex4\AppData\Roaming\DAEMON Tools Lite O43 - CFD: 14/03/2013 - 19:31:53 - [0,011] ----D C:\Users\Alex4\AppData\Roaming\DassaultSystemes O43 - CFD: 19/05/2005 - 19:27:18 - [1,115] RSH-D C:\Users\Alex4\AppData\Roaming\drivers O43 - CFD: 27/10/2011 - 12:33:54 - [0,001] ----D C:\Users\Alex4\AppData\Roaming\EPSON O43 - CFD: 01/05/2012 - 00:00:39 - [0,170] ----D C:\Users\Alex4\AppData\Roaming\FDRLab O43 - CFD: 23/05/2011 - 15:47:12 - [0,001] ----D C:\Users\Alex4\AppData\Roaming\FreeVideoConverter O43 - CFD: 26/08/2011 - 01:56:30 - [1,391] ----D C:\Users\Alex4\AppData\Roaming\FrostWire O43 - CFD: 02/09/2010 - 22:24:47 - [0,000] ----D C:\Users\Alex4\AppData\Roaming\Google O43 - CFD: 09/08/2012 - 14:48:02 - [0,000] ----D C:\Users\Alex4\AppData\Roaming\gtk-2.0 O43 - CFD: 22/06/2011 - 18:53:00 - [0,152] ----D C:\Users\Alex4\AppData\Roaming\Hewlett-Packard O43 - CFD: 05/09/2010 - 18:28:47 - [0,000] ----D C:\Users\Alex4\AppData\Roaming\HP Support Assistant O43 - CFD: 27/12/2012 - 11:15:11 - [0,112] ----D C:\Users\Alex4\AppData\Roaming\hpqLog O43 - CFD: 05/09/2010 - 18:28:47 - [0,000] ----D C:\Users\Alex4\AppData\Roaming\HpUpdate O43 - CFD: 16/07/2011 - 00:15:06 - [0,028] ----D C:\Users\Alex4\AppData\Roaming\IcoFX O43 - CFD: 30/08/2010 - 20:53:22 - [0] ----D C:\Users\Alex4\AppData\Roaming\Identities O43 - CFD: 07/05/2011 - 23:03:23 - [182,465] ----D C:\Users\Alex4\AppData\Roaming\IMVU O43 - CFD: 07/05/2011 - 23:03:02 - [107,463] ----D C:\Users\Alex4\AppData\Roaming\IMVUClient O43 - CFD: 09/11/2010 - 00:46:44 - [0] ----D C:\Users\Alex4\AppData\Roaming\InstallShield O43 - CFD: 18/10/2012 - 21:04:05 - [0,000] ----D C:\Users\Alex4\AppData\Roaming\KastorVideoConverter O43 - CFD: 18/11/2010 - 21:43:45 - [0,000] ----D C:\Users\Alex4\AppData\Roaming\Leadertech O43 - CFD: 30/04/2012 - 23:42:14 - [0,005] ----D C:\Users\Alex4\AppData\Roaming\Livestation O43 - CFD: 31/08/2010 - 22:04:17 - [0,065] ----D C:\Users\Alex4\AppData\Roaming\Macromedia O43 - CFD: 15/12/2012 - 16:03:00 - [16,804] ----D C:\Users\Alex4\AppData\Roaming\Malwarebytes O43 - CFD: 30/04/2012 - 21:48:53 - [0,371] ----D C:\Users\Alex4\AppData\Roaming\MaxTV Technologies O43 - CFD: 30/04/2012 - 23:42:13 - [0,000] ----D C:\Users\Alex4\AppData\Roaming\Mchid O43 - CFD: 11/02/2010 - 11:14:14 - [0] ----D C:\Users\Alex4\AppData\Roaming\Media Center Programs O43 - CFD: 31/12/2011 - 01:24:42 - [0,003] ----D C:\Users\Alex4\AppData\Roaming\MegaCloud O43 - CFD: 03/04/2013 - 11:54:09 - [23,174] -S--D C:\Users\Alex4\AppData\Roaming\Microsoft O43 - CFD: 03/09/2010 - 19:51:56 - [-77,431] ----D C:\Users\Alex4\AppData\Roaming\Mozilla O43 - CFD: 22/12/2010 - 14:57:42 - [0,102] ----D C:\Users\Alex4\AppData\Roaming\Mumble O43 - CFD: 08/10/2010 - 22:59:52 - [0,018] ----D C:\Users\Alex4\AppData\Roaming\NCH Software O43 - CFD: 11/06/2011 - 20:19:04 - [0,270] ----D C:\Users\Alex4\AppData\Roaming\OfferBox =>PUP.OfferBox O43 - CFD: 02/10/2010 - 23:58:13 - [23,820] ----D C:\Users\Alex4\AppData\Roaming\OpenCandy =>Adware.OpenCandy O43 - CFD: 20/03/2011 - 16:04:42 - [1,622] ----D C:\Users\Alex4\AppData\Roaming\OpenOffice.org O43 - CFD: 30/04/2012 - 23:22:30 - [4,670] ----D C:\Users\Alex4\AppData\Roaming\Participatory Culture Foundation O43 - CFD: 07/05/2012 - 22:12:43 - [0,403] ----D C:\Users\Alex4\AppData\Roaming\PCF-VLC O43 - CFD: 30/05/2012 - 17:19:09 - [0,008] ----D C:\Users\Alex4\AppData\Roaming\PearlMountain O43 - CFD: 24/04/2013 - 20:14:07 - [0,000] ----D C:\Users\Alex4\AppData\Roaming\PhotoFiltre O43 - CFD: 01/05/2012 - 00:09:01 - [0,001] ----D C:\Users\Alex4\AppData\Roaming\Pouchin TV Mod O43 - CFD: 13/05/2011 - 17:07:13 - [32,414] ----D C:\Users\Alex4\AppData\Roaming\Raptr O43 - CFD: 28/12/2012 - 03:56:20 - [69,690] ----D C:\Users\Alex4\AppData\Roaming\Real O43 - CFD: 22/12/2012 - 21:03:08 - [0,028] ----D C:\Users\Alex4\AppData\Roaming\RealNetworks O43 - CFD: 18/11/2010 - 21:45:15 - [0,010] R-H-D C:\Users\Alex4\AppData\Roaming\SecuROM O43 - CFD: 08/03/2013 - 02:31:32 - [8,142] ----D C:\Users\Alex4\AppData\Roaming\Skype O43 - CFD: 06/02/2013 - 21:41:52 - [24,801] ----D C:\Users\Alex4\AppData\Roaming\SolidWorks O43 - CFD: 22/01/2011 - 23:20:32 - [9,640] ----D C:\Users\Alex4\AppData\Roaming\StoneTrip O43 - CFD: 08/10/2010 - 21:36:00 - [0,013] ----D C:\Users\Alex4\AppData\Roaming\Template O43 - CFD: 21/06/2012 - 00:04:19 - [303,492] ----D C:\Users\Alex4\AppData\Roaming\thriXXX O43 - CFD: 18/08/2012 - 16:16:21 - [0,122] ----D C:\Users\Alex4\AppData\Roaming\TuneUp Software O43 - CFD: 12/01/2011 - 02:16:40 - [0,002] ----D C:\Users\Alex4\AppData\Roaming\Utherverse O43 - CFD: 06/04/2011 - 20:59:23 - [1,634] ----D C:\Users\Alex4\AppData\Roaming\uTorrent O43 - CFD: 01/10/2010 - 23:55:27 - [24,474] ----D C:\Users\Alex4\AppData\Roaming\vghd O43 - CFD: 20/12/2010 - 00:10:13 - [0,001] ----D C:\Users\Alex4\AppData\Roaming\Vivox O43 - CFD: 15/03/2013 - 22:19:23 - [2,106] ----D C:\Users\Alex4\AppData\Roaming\vlc O43 - CFD: 04/09/2010 - 17:40:04 - [0,001] ----D C:\Users\Alex4\AppData\Roaming\WildTangent O43 - CFD: 03/05/2012 - 13:57:34 - [0,000] ----D C:\Users\Alex4\AppData\Roaming\Windows Live Writer O43 - CFD: 24/02/2011 - 16:23:44 - [0,000] ----D C:\Users\Alex4\AppData\Roaming\WinRAR O43 - CFD: 26/07/2012 - 01:14:23 - [0] ----D C:\Users\Alex4\AppData\Roaming\YourFileDownloader O43 - CFD: 31/08/2010 - 23:43:00 - [0,004] ----D C:\Users\Alex4\AppData\Roaming\_MDLogs O43 - CFD: 19/02/2012 - 17:41:28 - [15,673] ----D C:\Users\Alex4\AppData\Local\Adobe O43 - CFD: 25/09/2010 - 23:57:38 - [0] ----D C:\Users\Alex4\AppData\Local\Apple O43 - CFD: 27/12/2010 - 19:57:47 - [40,562] ----D C:\Users\Alex4\AppData\Local\Apple Computer O43 - CFD: 30/08/2010 - 20:47:17 - [0] ----D C:\Users\Alex4\AppData\Local\Application Data O43 - CFD: 28/02/2012 - 13:54:35 - [0,010] ----D C:\Users\Alex4\AppData\Local\ApplicationHistory O43 - CFD: 03/01/2013 - 02:45:01 - [46,969] ----D C:\Users\Alex4\AppData\Local\Autodesk O43 - CFD: 29/08/2012 - 14:21:34 - [1,565] ----D C:\Users\Alex4\AppData\Local\AVG Secure Search =>Toolbar.AVGSearch O43 - CFD: 19/11/2010 - 01:30:05 - [0,076] ----D C:\Users\Alex4\AppData\Local\AVG Security Toolbar O43 - CFD: 20/10/2012 - 21:43:11 - [12,978] ----D C:\Users\Alex4\AppData\Local\Avg2013 O43 - CFD: 15/04/2012 - 23:34:56 - [0,063] ----D C:\Users\Alex4\AppData\Local\Conduit O43 - CFD: 03/02/2013 - 04:42:09 - [52,237] ----D C:\Users\Alex4\AppData\Local\CrashDumps O43 - CFD: 24/04/2011 - 18:07:45 - [0,186] ----D C:\Users\Alex4\AppData\Local\crazyloader Air O43 - CFD: 04/09/2010 - 00:59:24 - [0,035] ----D C:\Users\Alex4\AppData\Local\CyberLink O43 - CFD: 14/03/2013 - 20:13:09 - [0,015] ----D C:\Users\Alex4\AppData\Local\DassaultSystemes O43 - CFD: 03/02/2013 - 21:49:25 - [0] ----D C:\Users\Alex4\AppData\Local\Diagnostics O43 - CFD: 08/10/2010 - 20:40:43 - [7,573] ----D C:\Users\Alex4\AppData\Local\EdenFlash O43 - CFD: 17/11/2010 - 22:27:57 - [1,360] ----D C:\Users\Alex4\AppData\Local\Electronic Arts O43 - CFD: 20/02/2013 - 19:43:58 - [0,001] ----D C:\Users\Alex4\AppData\Local\Electronic_Arts_Inc O43 - CFD: 30/09/2012 - 18:39:09 - [0] ----D C:\Users\Alex4\AppData\Local\ElevatedDiagnostics O43 - CFD: 22/12/2012 - 21:35:02 - [916,360] ----D C:\Users\Alex4\AppData\Local\Google O43 - CFD: 20/03/2011 - 15:36:54 - [0,004] ----D C:\Users\Alex4\AppData\Local\Hewlett-Packard O43 - CFD: 30/08/2010 - 20:47:17 - [0] ----D C:\Users\Alex4\AppData\Local\Historique O43 - CFD: 05/10/2011 - 10:48:18 - [0,014] ----D C:\Users\Alex4\AppData\Local\Ilivid Player =>Adware.Bandoo O43 - CFD: 30/08/2010 - 20:55:40 - [0,002] ----D C:\Users\Alex4\AppData\Local\IsolatedStorage O43 - CFD: 19/06/2012 - 03:56:50 - [0] ----D C:\Users\Alex4\AppData\Local\Macromedia O43 - CFD: 30/04/2012 - 21:49:11 - [1,108] ----D C:\Users\Alex4\AppData\Local\MaxTV Technologies O43 - CFD: 20/10/2012 - 19:26:28 - [9,145] ----D C:\Users\Alex4\AppData\Local\MFAData O43 - CFD: 01/07/2012 - 05:07:01 - [730,384] ----D C:\Users\Alex4\AppData\Local\Microsoft O43 - CFD: 18/09/2010 - 21:08:21 - [0,005] ----D C:\Users\Alex4\AppData\Local\Microsoft Games O43 - CFD: 01/04/2011 - 00:42:00 - [0,105] ----D C:\Users\Alex4\AppData\Local\Microsoft Help O43 - CFD: 03/09/2010 - 19:50:37 - [204,848] ----D C:\Users\Alex4\AppData\Local\Mozilla O43 - CFD: 11/07/2012 - 00:48:27 - [0,052] ----D C:\Users\Alex4\AppData\Local\NFS Underground 2 O43 - CFD: 03/10/2010 - 00:01:25 - [0] ----D C:\Users\Alex4\AppData\Local\OpenCandy =>Adware.OpenCandy O43 - CFD: 05/10/2011 - 10:47:02 - [0] ----D C:\Users\Alex4\AppData\Local\PackageAware O43 - CFD: 26/06/2011 - 22:56:07 - [0,000] ----D C:\Users\Alex4\AppData\Local\PCSX2 O43 - CFD: 01/07/2012 - 05:07:01 - [0,002] ----D C:\Users\Alex4\AppData\Local\PerfectFakeWebcam O43 - CFD: 15/12/2012 - 15:50:47 - [0] ----D C:\Users\Alex4\AppData\Local\Programs O43 - CFD: 30/04/2012 - 22:34:42 - [0,006] ----D C:\Users\Alex4\AppData\Local\Readon_Technology O43 - CFD: 01/10/2012 - 21:09:03 - [5,583] ----D C:\Users\Alex4\AppData\Local\Screamer Radio O43 - CFD: 07/05/2012 - 22:10:08 - [5,200] ----D C:\Users\Alex4\AppData\Local\Super Internet TV O43 - CFD: 25/04/2013 - 23:29:45 - [557,348] ----D C:\Users\Alex4\AppData\Local\Temp O43 - CFD: 30/08/2010 - 20:47:17 - [0] ----D C:\Users\Alex4\AppData\Local\Temporary Internet Files O43 - CFD: 30/04/2012 - 23:01:52 - [0] ----D C:\Users\Alex4\AppData\Local\TVU Networks O43 - CFD: 08/06/2011 - 15:39:20 - [0] ----D C:\Users\Alex4\AppData\Local\vghd O43 - CFD: 01/01/2013 - 21:56:06 - [295,189] ----D C:\Users\Alex4\AppData\Local\VirtualStore O43 - CFD: 08/12/2010 - 21:55:58 - [0] ----D C:\Users\Alex4\AppData\Local\Wifirst O43 - CFD: 07/07/2012 - 04:12:20 - [0,066] ----D C:\Users\Alex4\AppData\Local\Windows Live O43 - CFD: 19/11/2010 - 01:03:08 - [0,618] ----D C:\Users\Alex4\AppData\Local\Windows Live Writer O43 - CFD: 24/02/2011 - 15:46:49 - [0] ----D C:\Users\Alex4\AppData\Local\Xenocode O43 - CFD: 08/10/2010 - 23:08:59 - [0] ----D C:\Users\Alex4\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\A.S.C O43 - CFD: 14/07/2009 - 06:54:32 - [0,014] R---D C:\Users\Alex4\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories O43 - CFD: 13/07/2012 - 21:32:25 - [0,000] R---D C:\Users\Alex4\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools O43 - CFD: 20/03/2011 - 02:07:23 - [0,001] ----D C:\Users\Alex4\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AVS4YOU O43 - CFD: 31/10/2011 - 02:00:23 - [0] ----D C:\Users\Alex4\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Call of Duty O43 - CFD: 20/09/2010 - 17:43:56 - [0] ----D C:\Users\Alex4\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CodeBlocks O43 - CFD: 03/09/2010 - 23:35:54 - [0,004] ----D C:\Users\Alex4\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CrazyLoader O43 - CFD: 09/01/2011 - 22:32:41 - [0,004] ----D C:\Users\Alex4\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Doom 3 O43 - CFD: 12/07/2011 - 19:05:50 - [0,004] ----D C:\Users\Alex4\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FormatFactory O43 - CFD: 01/02/2013 - 21:25:17 - [0,002] ----D C:\Users\Alex4\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games O43 - CFD: 19/01/2013 - 18:22:21 - [0,002] ----D C:\Users\Alex4\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome O43 - CFD: 19/12/2010 - 23:29:09 - [0,004] ----D C:\Users\Alex4\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\IMVU O43 - CFD: 30/04/2012 - 23:26:38 - [0] ----D C:\Users\Alex4\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\K!TV O43 - CFD: 14/07/2009 - 06:49:38 - [0,001] R---D C:\Users\Alex4\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance O43 - CFD: 20/03/2011 - 02:12:50 - [0,002] ----D C:\Users\Alex4\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MediaCoder O43 - CFD: 01/02/2013 - 21:15:35 - [0] ----D C:\Users\Alex4\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft Games O43 - CFD: 05/01/2012 - 02:38:41 - [0,002] ----D C:\Users\Alex4\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Minecraft Beta Cracked O43 - CFD: 26/06/2011 - 23:02:52 - [0,003] ----D C:\Users\Alex4\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pcsx2 O43 - CFD: 24/04/2013 - 19:49:52 - [0] ----D C:\Users\Alex4\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PhotoFiltre O43 - CFD: 14/01/2011 - 22:11:34 - [0] ----D C:\Users\Alex4\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Playlogic O43 - CFD: 24/03/2011 - 16:54:00 - [0,004] ----D C:\Users\Alex4\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\project64 1.6 O43 - CFD: 18/08/2012 - 16:25:26 - [0,002] ----D C:\Users\Alex4\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Raptr O43 - CFD: 12/10/2011 - 20:45:03 - [0,006] ----D C:\Users\Alex4\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Screamer Radio O43 - CFD: 15/01/2011 - 19:59:06 - [0] ----D C:\Users\Alex4\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SopCast O43 - CFD: 07/02/2011 - 23:06:56 - [0,004] ----D C:\Users\Alex4\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SplitCam O43 - CFD: 12/02/2013 - 18:49:02 - [0,000] R---D C:\Users\Alex4\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup O43 - CFD: 30/04/2012 - 23:47:58 - [0,003] ----D C:\Users\Alex4\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Super Internet TV O43 - CFD: 02/03/2013 - 21:58:35 - [0,001] ----D C:\Users\Alex4\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TornTV.com =>Hijacker.TornTV O43 - CFD: 01/01/2013 - 21:51:39 - [0] ----D C:\Users\Alex4\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Vietcong O43 - CFD: 29/11/2011 - 17:40:53 - [0] ----D C:\Users\Alex4\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Will O43 - CFD: 24/02/2011 - 16:23:32 - [0,003] ----D C:\Users\Alex4\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR O43 - CFD: 25/07/2011 - 01:45:54 - [0,002] ----D C:\Users\Alex4\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\YouWave_Android ~ 643 Dossiers CLSID vides (CLSID Empty Folders) ~ Program Folder: 1052 Scanned in 01mn 44s ---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44) O44 - LFC:[MD5.83149D8B367444DAAB3C373C287BBD81] - 25/04/2013 - 22:23:32 ---A- . (...) -- C:\Windows\WindowsUpdate.log [2037091] O44 - LFC:[MD5.CA6A14DDCFE106E86718165733D5EF99] - 25/04/2013 - 22:18:26 ---A- . (...) -- C:\Windows\setupact.log [7908] O44 - LFC:[MD5.B5CBB423862699B6BE8A436E0478539B] - 25/04/2013 - 22:18:25 -S-A- . (...) -- C:\Windows\bootstat.dat [67584] O44 - LFC:[MD5.DB602EFBFA443895FE5F63D0770CADCB] - 25/04/2013 - 18:27:07 ---A- . (...) -- C:\Windows\SysNative\PerfStringBackup.INI [1061406] O44 - LFC:[MD5.06213E3BED938BC90F24ABDA87D2A8C7] - 25/04/2013 - 18:27:07 ---A- . (...) -- C:\Windows\SysNative\perfc009.dat [1306660] O44 - LFC:[MD5.76BBB3CD80A0A4726C785BB1F19A2828] - 25/04/2013 - 18:27:07 ---A- . (...) -- C:\Windows\SysNative\perfc00C.dat [153882] O44 - LFC:[MD5.6DFCFC68114E706A3C18DC300869A146] - 25/04/2013 - 18:27:07 ---A- . (...) -- C:\Windows\SysNative\perfh009.dat [2075848] O44 - LFC:[MD5.323354CA874A1060C7960D4A3113C580] - 25/04/2013 - 18:27:07 ---A- . (...) -- C:\Windows\SysNative\perfh00C.dat [755386] O44 - LFC:[MD5.DB602EFBFA443895FE5F63D0770CADCB] - 25/04/2013 - 18:27:07 ---A- . (...) -- C:\Windows\System32\PerfStringBackup.INI [1061406] O44 - LFC:[MD5.06213E3BED938BC90F24ABDA87D2A8C7] - 25/04/2013 - 18:27:07 RSHAD . (...) -- C:\Windows\System32\perfc009.dat [1306660] O44 - LFC:[MD5.76BBB3CD80A0A4726C785BB1F19A2828] - 25/04/2013 - 18:27:07 RSHAD . (...) -- C:\Windows\System32\perfc00C.dat [153882] O44 - LFC:[MD5.6DFCFC68114E706A3C18DC300869A146] - 25/04/2013 - 18:27:07 RSHAD . (...) -- C:\Windows\System32\perfh009.dat [2075848] O44 - LFC:[MD5.323354CA874A1060C7960D4A3113C580] - 25/04/2013 - 18:27:07 RSHAD . (...) -- C:\Windows\System32\perfh00C.dat [755386] O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 24/04/2013 - 18:49:47 ---A- . (...) -- C:\Windows\SysNative\HP_ActiveX_Patch_NOT_DETECTED.txt [0] O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 24/04/2013 - 18:49:47 RSHAD . (...) -- C:\Windows\System32\HP_ActiveX_Patch_NOT_DETECTED.txt [0] O44 - LFC:[MD5.B98F8C6E31CD07B2E6F71F7F648E38C0] - 12/04/2013 - 15:45:08 RSHAD . (.Microsoft Corporation - Pilote du système de fichiers NT.) -- C:\Windows\System32\Drivers\ntfs.sys [1656680] ~ Files: 16 Scanned in 00mn 11s ---\\ Derniers fichiers créés dans Windows Prefetcher (O45) O45 - LFCP:[MD5.3907986B1AFACFD9C0E6EA59176A7CD4] - 01/04/2013 - 23:06:26 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-F2DCEF0D.pf O45 - LFCP:[MD5.9E05F4B38EDD2724B52A1B45CD57FFFB] - 10/04/2013 - 15:21:05 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-D3CCA24F.pf O45 - LFCP:[MD5.D839EA07CE8B7526457FCA1B2372EC8E] - 10/04/2013 - 18:25:52 ---A- - C:\Windows\Prefetch\WARRANTYOBJECTCHECKER.EXE-371CAA37.pf O45 - LFCP:[MD5.FFB642D1E62F0D1EFB87BF9D12FAD678] - 11/04/2013 - 19:40:47 ---A- - C:\Windows\Prefetch\RATIOMASTER.NET.EXE-6A16548D.pf O45 - LFCP:[MD5.7F5B4DFE21B7E0E1E122769712CC7AF9] - 17/04/2013 - 22:32:06 ---A- - C:\Windows\Prefetch\BCSSYNC.EXE-3F6C64A2.pf O45 - LFCP:[MD5.00754788764B9F7769A56BB070944917] - 18/04/2013 - 16:41:17 ---A- - C:\Windows\Prefetch\WINRAR.EXE-D8B532BF.pf O45 - LFCP:[MD5.A00EA7AD2155CBBB6CEB75FE1AECA867] - 19/04/2013 - 12:23:08 ---A- - C:\Windows\Prefetch\AgCx_SC2.db O45 - LFCP:[MD5.68CF54FAA03E0DF0175CAF01B26B9187] - 19/04/2013 - 20:27:05 ---A- - C:\Windows\Prefetch\JAVAW.EXE-2AB1E03D.pf O45 - LFCP:[MD5.4DD8C00AE9CB3732DAA34ED0A14DE56D] - 19/04/2013 - 20:27:05 ---A- - C:\Windows\Prefetch\JAVAWS.EXE-6F609AD4.pf O45 - LFCP:[MD5.D988E3E36C1373DB9D436D6E83D3E39B] - 19/04/2013 - 22:02:48 ---A- - C:\Windows\Prefetch\DPUPDCHK.EXE-9BC99332.pf O45 - LFCP:[MD5.F7D2F82A0B3784A6183759D61B5624DE] - 19/04/2013 - 22:09:11 ---A- - C:\Windows\Prefetch\CSC.EXE-A3B8D95D.pf O45 - LFCP:[MD5.D633DFD690ACD99B778F76869FB5F275] - 19/04/2013 - 22:09:11 ---A- - C:\Windows\Prefetch\CVTRES.EXE-069169FB.pf O45 - LFCP:[MD5.9361B725878A4463639243CC19E1E2EB] - 21/04/2013 - 18:18:44 ---A- - C:\Windows\Prefetch\SNDVOL.EXE-5D4CC7D6.pf O45 - LFCP:[MD5.0643D067B57534B0B563CFC7A2098EA1] - 21/04/2013 - 20:11:28 ---A- - C:\Windows\Prefetch\AgCx_S1_S-1-5-21-3967301075-317821415-3537397991-1000.snp.db O45 - LFCP:[MD5.B2B9241206277CA0654B2F4A3C6082B3] - 21/04/2013 - 22:16:56 ---A- - C:\Windows\Prefetch\AgGlUAD_P_S-1-5-21-3967301075-317821415-3537397991-501.db O45 - LFCP:[MD5.DBAAAB69998F1367837668C7833557B5] - 21/04/2013 - 22:16:56 ---A- - C:\Windows\Prefetch\AgGlUAD_S-1-5-21-3967301075-317821415-3537397991-501.db O45 - LFCP:[MD5.EA6FA7F37D0C9CC234070BD4A2112503] - 21/04/2013 - 23:51:58 ---A- - C:\Windows\Prefetch\AgCx_SC3_E4BCB3191B68B2DD.db O45 - LFCP:[MD5.FE99939FC9D2ECDFEBD6AD9B3FB32745] - 22/04/2013 - 02:28:24 ---A- - C:\Windows\Prefetch\BITTORRENT.EXE-FC1D6CA3.pf O45 - LFCP:[MD5.8FE11B8A596FCE5744FBD5561FAFAC0B] - 23/04/2013 - 12:39:12 ---A- - C:\Windows\Prefetch\ALG.EXE-1D11534C.pf O45 - LFCP:[MD5.04468527853FEEC28003B3ED14CA9DD1] - 23/04/2013 - 12:39:12 ---A- - C:\Windows\Prefetch\AVGEMCA.EXE-417685DB.pf O45 - LFCP:[MD5.2287524B90457D6D1E3064757F452FC8] - 23/04/2013 - 12:39:12 ---A- - C:\Windows\Prefetch\SVCHOST.EXE-3AB35CA7.pf O45 - LFCP:[MD5.BB03476161D3B95AB792C387796F70F1] - 23/04/2013 - 12:39:29 ---A- - C:\Windows\Prefetch\IGFXTRAY.EXE-C444237E.pf O45 - LFCP:[MD5.B94863AAF2532AEEEDD787E32D53D7EF] - 23/04/2013 - 14:00:25 ---A- - C:\Windows\Prefetch\OSE.EXE-533D8AC9.pf O45 - LFCP:[MD5.D0EBB2A9EA15F4B08BC63209CCB133A9] - 23/04/2013 - 20:11:06 ---A- - C:\Windows\Prefetch\AVGNSA.EXE-CF9E6DC7.pf O45 - LFCP:[MD5.1F98B377DE8D959CC1189FC595AA53D8] - 24/04/2013 - 16:43:41 ---A- - C:\Windows\Prefetch\RTVOSD64.EXE-C9477E25.pf O45 - LFCP:[MD5.F01586DC6F372CED981EB1B3A25D5694] - 24/04/2013 - 18:38:23 ---A- - C:\Windows\Prefetch\WUDFHOST.EXE-AFFEF87C.pf O45 - LFCP:[MD5.42A7FA5421282132FFEF152332BF4BFE] - 24/04/2013 - 18:48:31 ---A- - C:\Windows\Prefetch\CSC.EXE-BE9AC2DF.pf O45 - LFCP:[MD5.4CF1188DF5EF6E7E2E2848B8B5A51367] - 24/04/2013 - 18:48:31 ---A- - C:\Windows\Prefetch\CVTRES.EXE-2B9D810D.pf O45 - LFCP:[MD5.E090A4F19A094B058008810DBC9C92ED] - 24/04/2013 - 18:49:45 ---A- - C:\Windows\Prefetch\SYSTEMAGEONEYEAR.EXE-AFE69194.pf O45 - LFCP:[MD5.4F6F823CCB9B171790EB40D38D8AE5D3] - 24/04/2013 - 18:49:46 ---A- - C:\Windows\Prefetch\DETECTION_RECOVERYDISC.EXE-FBFB7E53.pf O45 - LFCP:[MD5.F1A380077F554433DF1A9FB6239D3E4F] - 24/04/2013 - 18:49:47 ---A- - C:\Windows\Prefetch\DETECT_REVGENCOUNTRY.EXE-A1C3912A.pf O45 - LFCP:[MD5.6E88FFD28967FD971F8EFBCFFABB94D2] - 24/04/2013 - 18:49:56 ---A- - C:\Windows\Prefetch\HPSACOMMANDER.EXE-0CAADAA5.pf O45 - LFCP:[MD5.3654F1D3CCCF209E399748C5CD58B282] - 24/04/2013 - 18:50:03 ---A- - C:\Windows\Prefetch\HPDOBJECT.EXE-BC6F451E.pf O45 - LFCP:[MD5.349ED78B1896369F289310DD4CC9EE33] - 24/04/2013 - 18:50:05 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-B2EB1806.pf O45 - LFCP:[MD5.7C56592F6673EBA46F9C660AAB2DAE7A] - 24/04/2013 - 18:50:31 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-76936ED5.pf O45 - LFCP:[MD5.8E4574091EE181F302DBD306BD1EF994] - 24/04/2013 - 18:50:34 ---A- - C:\Windows\Prefetch\UNZIP.EXE-EAF733B0.pf O45 - LFCP:[MD5.6D5B7AF4F4B4E4F26A03C5497515C4D1] - 24/04/2013 - 18:52:15 ---A- - C:\Windows\Prefetch\MSPAINT.EXE-76E10B24.pf O45 - LFCP:[MD5.D9C6E91A4686311802B8046EFE0788E8] - 24/04/2013 - 19:16:07 ---A- - C:\Windows\Prefetch\AXSHLEX64HELPER.EXE-B671CAD7.pf O45 - LFCP:[MD5.32728322161B63ADCAA9E3EB90BDF5D4] - 24/04/2013 - 22:50:57 ---A- - C:\Windows\Prefetch\HPASSET.EXE-64C2897D.pf O45 - LFCP:[MD5.AC61BE2F4347279C2FC7C1BC23D9F930] - 24/04/2013 - 22:53:25 ---A- - C:\Windows\Prefetch\SCHTASKS.EXE-5CA45734.pf O45 - LFCP:[MD5.E0A51819B4C86F9D0284F9D19B83BF41] - 24/04/2013 - 23:05:00 ---A- - C:\Windows\Prefetch\WMPLAYER.EXE-26C72A86.pf O45 - LFCP:[MD5.EF357EFA0C7255A0DCFE196A4B0DB1FF] - 24/04/2013 - 23:11:44 ---A- - C:\Windows\Prefetch\AVGCSRVA.EXE-0F5A3248.pf O45 - LFCP:[MD5.140F034F5B3571F073C3420AA286F2EF] - 24/04/2013 - 23:18:31 ---A- - C:\Windows\Prefetch\MSIEXEC.EXE-A2D55CB6.pf O45 - LFCP:[MD5.4740D5B9D1885E9BEA5F0013A194DD00] - 24/04/2013 - 23:29:31 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-ECB71776.pf O45 - LFCP:[MD5.6CD2813AE5BB66AF113AE72D2BAE4BF5] - 24/04/2013 - 23:35:48 ---A- - C:\Windows\Prefetch\MSIEXEC.EXE-E09A077A.pf O45 - LFCP:[MD5.F84E939B762A106489DC7F4BFF2C441F] - 24/04/2013 - 23:39:18 ---A- - C:\Windows\Prefetch\WERFAULT.EXE-E69F695A.pf O45 - LFCP:[MD5.EC8935658867D4FF0008051BE5C2A2E0] - 25/04/2013 - 01:21:43 ---A- - C:\Windows\Prefetch\SVCHOST.EXE-7CFEDEA3.pf O45 - LFCP:[MD5.7336D6DD2E0275D2B4EB6C98BC0D93C8] - 25/04/2013 - 01:21:43 ---A- - C:\Windows\Prefetch\VSSVC.EXE-B8AFC319.pf O45 - LFCP:[MD5.E6B0BEB6FE325096A81F7F5AAC4FE5FB] - 25/04/2013 - 02:42:56 ---A- - C:\Windows\Prefetch\AVGSRMAX.EXE-949C9A14.pf O45 - LFCP:[MD5.DEAAB71A53411E9A1882676B186D0490] - 25/04/2013 - 13:04:30 ---A- - C:\Windows\Prefetch\SVCHOST.EXE-007FEA55.pf O45 - LFCP:[MD5.17FF0A6125E29F46AEDFC4553662D3AC] - 25/04/2013 - 13:06:16 ---A- - C:\Windows\Prefetch\SEARCHINDEXER.EXE-4A6353B9.pf O45 - LFCP:[MD5.E5A5AA26B7E93902E8FB9554F0FEC392] - 25/04/2013 - 13:07:11 ---A- - C:\Windows\Prefetch\ATBROKER.EXE-2E15A492.pf O45 - LFCP:[MD5.194F225274F9ED5FFE857F0E1448CF12] - 25/04/2013 - 13:07:21 ---A- - C:\Windows\Prefetch\USERINIT.EXE-2257A3E7.pf O45 - LFCP:[MD5.510BF93BB81A15B002B413C7B0238035] - 25/04/2013 - 13:07:22 ---A- - C:\Windows\Prefetch\RTKNGUI64.EXE-211AE6DF.pf O45 - LFCP:[MD5.00D52077F0A1356B5229E127A0C34765] - 25/04/2013 - 13:07:22 ---A- - C:\Windows\Prefetch\SYNTPENH.EXE-E6DC1353.pf O45 - LFCP:[MD5.7CB65BC3EEE9732EF631DF0CB978907C] - 25/04/2013 - 13:07:30 ---A- - C:\Windows\Prefetch\STIJ.EXE-E21799F9.pf O45 - LFCP:[MD5.44BA483014CCAD4613ACA771A3079459] - 25/04/2013 - 13:07:38 ---A- - C:\Windows\Prefetch\COM4QLBEX.EXE-00B1505B.pf O45 - LFCP:[MD5.54B5FDECCEE9B56EDDA764B90BA01E5A] - 25/04/2013 - 13:07:56 ---A- - C:\Windows\Prefetch\HPQTOASTER.EXE-9F5223FF.pf O45 - LFCP:[MD5.8C0EEB2AC73F00DE444044BADE989F4D] - 25/04/2013 - 13:08:17 ---A- - C:\Windows\Prefetch\AgCx_SC4.db O45 - LFCP:[MD5.C22DCFB2F49126DAFA78A7E99EE6E11B] - 25/04/2013 - 13:09:28 ---A- - C:\Windows\Prefetch\AVGCSRVX.EXE-CC0DF43B.pf O45 - LFCP:[MD5.ACF049FC593FBD54FE6E47094AD94A4A] - 25/04/2013 - 13:15:37 ---A- - C:\Windows\Prefetch\OSPPSVC.EXE-E53D3CC0.pf O45 - LFCP:[MD5.32D3F8008A27A8B85EBFBD8BF8951F10] - 25/04/2013 - 13:20:12 ---A- - C:\Windows\Prefetch\WERMGR.EXE-0F2AC88C.pf O45 - LFCP:[MD5.8586201207F7E30FE133D294B4AE2850] - 25/04/2013 - 13:20:24 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-A3E35360.pf O45 - LFCP:[MD5.578D0E0C37C306353E50452EFE4B99A7] - 25/04/2013 - 13:34:51 ---A- - C:\Windows\Prefetch\TRUSTEDINSTALLER.EXE-3CC531E5.pf O45 - LFCP:[MD5.64E96F17CDBEE0B14FBB6953F63F9CA3] - 25/04/2013 - 13:51:56 ---A- - C:\Windows\Prefetch\ACRORD32.EXE-97743AA9.pf O45 - LFCP:[MD5.C4ED4E45D952880A7DD8FDFC071CA3D6] - 25/04/2013 - 13:59:06 ---A- - C:\Windows\Prefetch\WINWORD.EXE-778F7C2B.pf O45 - LFCP:[MD5.670347480FD03151EFD644D69265272C] - 25/04/2013 - 14:16:41 ---A- - C:\Windows\Prefetch\RUNDLL32.EXE-DE9673F9.pf O45 - LFCP:[MD5.5B2FEEB0244F37F791BA446536C1EF7E] - 25/04/2013 - 14:49:19 ---A- - C:\Windows\Prefetch\HPCASLNOTIFICATION.EXE-F1274B82.pf O45 - LFCP:[MD5.619153CD20999CB8E7F47B66D904FDD4] - 25/04/2013 - 18:28:14 ---A- - C:\Windows\Prefetch\AVGMFAPX.EXE-5E24F3B1.pf O45 - LFCP:[MD5.C406C6D239A33CEA9FC70921697A5BD1] - 25/04/2013 - 18:28:14 ---A- - C:\Windows\Prefetch\FIXCFG.EXE-9C913E32.pf O45 - LFCP:[MD5.9F11303FA630F79882A71AACCF331C75] - 25/04/2013 - 18:29:17 ---A- - C:\Windows\Prefetch\AgGlUAD_P_S-1-5-21-3967301075-317821415-3537397991-1000.db O45 - LFCP:[MD5.79869E8D8C7D51687AB3B0E668CE6C54] - 25/04/2013 - 18:29:17 ---A- - C:\Windows\Prefetch\AgGlUAD_S-1-5-21-3967301075-317821415-3537397991-1000.db O45 - LFCP:[MD5.BDB225EE232A79436836ACBDE0C2D623] - 25/04/2013 - 18:42:39 ---A- - C:\Windows\Prefetch\SCRIPTHELPER.EXE-0A301957.pf O45 - LFCP:[MD5.A025B71B07E79D2B73388A5ABED00647] - 25/04/2013 - 18:42:44 ---A- - C:\Windows\Prefetch\VPROT.EXE-2BBCC12F.pf O45 - LFCP:[MD5.E80873ADEBA6A9F9AC32A87529E4FF59] - 25/04/2013 - 18:42:49 ---A- - C:\Windows\Prefetch\FIREFOX.EXE-18ACFCFF.pf O45 - LFCP:[MD5.797A336A60965588B7DB434787308042] - 25/04/2013 - 18:43:01 ---A- - C:\Windows\Prefetch\PLUGIN-CONTAINER.EXE-F1B02F03.pf O45 - LFCP:[MD5.A7B792FF1F7F52E4438C4329FC84E449] - 25/04/2013 - 20:23:13 ---A- - C:\Windows\Prefetch\AVGDIAGEX.EXE-E5F45B87.pf O45 - LFCP:[MD5.561BF9568A6A86558163A5DFE6D5B356] - 25/04/2013 - 20:23:19 ---A- - C:\Windows\Prefetch\AgCx_SC1.db.trx O45 - LFCP:[MD5.29A1788D04948E3B7BC62CDE5E74A5C8] - 25/04/2013 - 20:24:20 ---A- - C:\Windows\Prefetch\AgCx_SC1.db O45 - LFCP:[MD5.5D830C72A74E141F90D60B5CE4639B1D] - 25/04/2013 - 21:35:02 ---A- - C:\Windows\Prefetch\NOTEPAD.EXE-D8414F97.pf O45 - LFCP:[MD5.3D7A9E11B92CBB1EBF68E048E9DFEB80] - 25/04/2013 - 22:03:57 ---A- - C:\Windows\Prefetch\IGFXSRVC.EXE-96A493A4.pf O45 - LFCP:[MD5.0873D0B9C93C80FD63CD6D55122FFB16] - 25/04/2013 - 22:10:58 ---A- - C:\Windows\Prefetch\AUDIODG.EXE-BDFD3029.pf O45 - LFCP:[MD5.593E10EDB7B6CF355723E4157594DEBA] - 25/04/2013 - 22:12:04 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-5E46FA0D.pf O45 - LFCP:[MD5.0309FD119D48573E680DFCF72253AAF3] - 25/04/2013 - 22:12:16 ---A- - C:\Windows\Prefetch\WRTC.EXE-CBEDA604.pf O45 - LFCP:[MD5.AEE12D81026FF226F8927105959CAB65] - 25/04/2013 - 22:13:48 ---A- - C:\Windows\Prefetch\SEARCHFILTERHOST.EXE-77482212.pf O45 - LFCP:[MD5.9FEEC6C674CA6D8A9848E1AD838B10B3] - 25/04/2013 - 22:13:48 ---A- - C:\Windows\Prefetch\SEARCHPROTOCOLHOST.EXE-0CB8CADE.pf O45 - LFCP:[MD5.8A2C0199F70F1369E8B530C17ACD6BA6] - 25/04/2013 - 22:16:30 ---A- - C:\Windows\Prefetch\AgRobust.db O45 - LFCP:[MD5.4E86FE4F6BBDAABC1DED5D412FA8802C] - 25/04/2013 - 22:16:31 ---A- - C:\Windows\Prefetch\AgGlFaultHistory.db O45 - LFCP:[MD5.98E69FC5B409C531C124BF58E01A22C1] - 25/04/2013 - 22:16:31 ---A- - C:\Windows\Prefetch\AgGlFgAppHistory.db O45 - LFCP:[MD5.C2E8D17475181F71D50F1166CDF1F08B] - 25/04/2013 - 22:16:31 ---A- - C:\Windows\Prefetch\AgGlGlobalHistory.db O45 - LFCP:[MD5.24136DDC27C04CFD5F7E7113DF1D42FF] - 25/04/2013 - 22:17:08 ---A- - C:\Windows\Prefetch\LOGONUI.EXE-09140401.pf O45 - LFCP:[MD5.E0C2F6642BA9D3A2C93525CB8B042FE3] - 25/04/2013 - 22:17:16 ---A- - C:\Windows\Prefetch\PfSvPerfStats.bin O45 - LFCP:[MD5.270998E88F7E56816D20F1F466CEF2C9] - 25/04/2013 - 22:20:56 ---A- - C:\Windows\Prefetch\ADOBEARM.EXE-7105D3A2.pf O45 - LFCP:[MD5.80677C1A847327790C1030151D6FF28C] - 25/04/2013 - 22:20:56 ---A- - C:\Windows\Prefetch\HIDDATA.EXE-8B1F9A63.pf O45 - LFCP:[MD5.8EBAE61DFC86340C95DEA27E0FC361C7] - 25/04/2013 - 22:20:56 ---A- - C:\Windows\Prefetch\NTOSBOOT-B00DFAAD.pf O45 - LFCP:[MD5.185D75BCC4411032369DDD3D32450700] - 25/04/2013 - 22:21:10 ---A- - C:\Windows\Prefetch\SVCHOST.EXE-C871F054.pf O45 - LFCP:[MD5.3A08C870E350621430CCCFB7783B5125] - 25/04/2013 - 22:21:10 ---A- - C:\Windows\Prefetch\WMPNETWK.EXE-D9F2A96F.pf O45 - LFCP:[MD5.8805DB22BD812878D876AC4B1BD29617] - 25/04/2013 - 22:22:24 ---A- - C:\Windows\Prefetch\MSCORSVW.EXE-C3C515BD.pf O45 - LFCP:[MD5.BC41BFE22496998B8B3F2A513F6FA3D1] - 25/04/2013 - 22:22:25 ---A- - C:\Windows\Prefetch\GOOGLEUPDATE.EXE-B95715F5.pf O45 - LFCP:[MD5.41EDFFADBD70CD7C0035E87CD9945F6C] - 25/04/2013 - 22:22:25 ---A- - C:\Windows\Prefetch\MSCORSVW.EXE-57D17DAF.pf O45 - LFCP:[MD5.218E9B02B34C14C6C887EAA957A909D6] - 25/04/2013 - 22:22:36 ---A- - C:\Windows\Prefetch\HPSA_SERVICE.EXE-AD6579F0.pf O45 - LFCP:[MD5.1E7E6AA1617E1854CFA485CE5A07E839] - 25/04/2013 - 22:22:38 ---A- - C:\Windows\Prefetch\UNS.EXE-E6E49771.pf O45 - LFCP:[MD5.57956BBB452C443634771E2AD066F16C] - 25/04/2013 - 22:22:46 ---A- - C:\Windows\Prefetch\WMIPRVSE.EXE-1628051C.pf O45 - LFCP:[MD5.42D7056D8D3827C4B430526A46D604A6] - 25/04/2013 - 22:23:56 ---A- - C:\Windows\Prefetch\WMIADAP.EXE-F8DFDFA2.pf O45 - LFCP:[MD5.41754560F458399E7E217A8640CAFDDC] - 25/04/2013 - 22:24:07 ---A- - C:\Windows\Prefetch\JAVA.EXE-07FE5A9A.pf O45 - LFCP:[MD5.C96FBD3178FE76355BCF59CC4AE716BE] - 25/04/2013 - 22:26:37 ---A- - C:\Windows\Prefetch\WMPNSCFG.EXE-FC0D39BF.pf O45 - LFCP:[MD5.A2924722119E02EA4E6C9B5531969DD6] - 25/04/2013 - 22:26:48 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-40DD444D.pf O45 - LFCP:[MD5.CD187329FB5031C3B8E54328B30F5414] - 25/04/2013 - 22:26:55 ---A- - C:\Windows\Prefetch\TASKHOST.EXE-7238F31D.pf O45 - LFCP:[MD5.11635AC6305FBE6E09A5A132B520896A] - 25/04/2013 - 22:27:11 ---A- - C:\Windows\Prefetch\CONSENT.EXE-531BD9EA.pf O45 - LFCP:[MD5.40B0231B2CD251FFF6ACADE73242FDFD] - 25/04/2013 - 22:27:16 ---A- - C:\Windows\Prefetch\DLLHOST.EXE-766398D2.pf O45 - LFCP:[MD5.A3C9937132C52FEE17968103E6084F9A] - 25/04/2013 - 22:28:02 ---A- - C:\Windows\Prefetch\CONHOST.EXE-1F3E9D7E.pf O45 - LFCP:[MD5.7E39CEAF1927FEA21E0098480415F4CC] - 25/04/2013 - 22:28:06 ---A- - C:\Windows\Prefetch\SPPSVC.EXE-B0F8131B.pf O45 - LFCP:[MD5.2FC0D7E9FA6AE036E2C47A5FF5479912] - 25/04/2013 - 22:28:19 ---A- - C:\Windows\Prefetch\SVCHOST.EXE-80F4A784.pf O45 - LFCP:[MD5.D45C5C459E1502225D833C73E11D0652] - 25/04/2013 - 22:29:11 ---A- - C:\Windows\Prefetch\FLASHPLAYERUPDATESERVICE.EXE-216D9C35.pf O45 - LFCP:[MD5.34B77F0D5D7854BD79DA4F23EFFD94D5] - 25/04/2013 - 22:29:13 ---A- - C:\Windows\Prefetch\AVGCMGR.EXE-72A808CA.pf O45 - LFCP:[MD5.E38309D8079E85F3E192D91A56F477C2] - 25/04/2013 - 22:29:18 ---A- - C:\Windows\Prefetch\CHROME.EXE-6C6E754A.pf O45 - LFCP:[MD5.0521D3D2C6741B9F0DB38A4DA6B9DEB1] - 25/04/2013 - 22:31:01 ---A- - C:\Windows\Prefetch\GOOGLEUPDATE.EXE-0020B485.pf O45 - LFCP:[MD5.F431A1D8EB25C4FA9F60317EC3672FE9] - 25/04/2013 - 22:31:10 ---A- - C:\Windows\Prefetch\TASKENG.EXE-48D4E289.pf O45 - LFCP:[MD5.A6F95B276807EF47E63BF534C72677EB] - 27/03/2013 - 19:14:29 ---A- - C:\Windows\Prefetch\DETECTION_COUNTRYCODE.EXE-8E06A8BC.pf ~ Prefetcher: 119 Scanned in 00mn 02s ---\\ Déni du service (Local Security Authority) (O48) O48 - LSA:Local Security Authority Authentication Packages . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\Windows\System32\msv1_0.dll O48 - LSA:Local Security Authority Notification Packages . (.Microsoft Corporation - Moteur du client de l’Éditeur de configuration de sécurité Windows.) -- C:\Windows\System32\scecli.dll O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Package de sécurité Kerberos.) -- C:\Windows\System32\kerberos.dll O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\Windows\System32\msv1_0.dll O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - TLS / SSL Security Provider.) -- C:\Windows\System32\schannel.dll O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Digest Access.) -- C:\Windows\System32\wdigest.dll O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Web Service Security Package.) -- C:\Windows\System32\tspkg.dll O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Pku2u Security Package.) -- C:\Windows\System32\pku2u.dll O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corp. - LiveSSP.) -- C:\Windows\System32\livessp.dll ~ LSA: 9 Scanned in 00mn 00s ---\\ Contrôle du Safe Boot (CSB) (O49) O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris série.) -- C:\Windows\System32\Drivers\sermouse.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\Windows\System32\Drivers\vga.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vgasave.sys . (...) -- C:\Windows\System32\Drivers\vgasave.sys (.not file.) O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\System32\Drivers\volmgr.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgrx.sys . (.Microsoft Corporation - Pilote d’extension du gestionnaire de volumes.) -- C:\Windows\System32\Drivers\volmgrx.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\Wdf01000.sys . (.Microsoft Corporation - Runtime de l’infrastructure de pilotes en mode noyau.) -- C:\Windows\System32\Drivers\Wdf01000.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\ipnat.sys . (.Microsoft Corporation - IP Network Address Translator.) -- C:\Windows\System32\Drivers\ipnat.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\nsiproxy.sys . (.Microsoft Corporation - NSI Proxy.) -- C:\Windows\System32\Drivers\nsiproxy.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\rdpencdd.sys . (.Microsoft Corporation - RDP Encoder Miniport.) -- C:\Windows\System32\Drivers\rdpencdd.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris série.) -- C:\Windows\System32\Drivers\sermouse.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\Windows\System32\Drivers\vga.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vgasave.sys . (...) -- C:\Windows\System32\Drivers\vgasave.sys (.not file.) O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\System32\Drivers\volmgr.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgrx.sys . (.Microsoft Corporation - Pilote d’extension du gestionnaire de volumes.) -- C:\Windows\System32\Drivers\volmgrx.sys O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\Wdf01000.sys . (.Microsoft Corporation - Runtime de l’infrastructure de pilotes en mode noyau.) -- C:\Windows\System32\Drivers\Wdf01000.sys ~ CSB: 15 Scanned in 00mn 00s ---\\ MountPoints2 Shell Key (O51) O51 - MPSK:{0ee2084d-ce7f-11e1-a55a-c80aa918d338}\AutoRun\command. (...) -- J:\AutoRun.exe (.not file.) O51 - MPSK:{4b97ed0f-cd21-11e1-a552-c80aa918d338}\AutoRun\command. (...) -- I:\AutoRun.exe (.not file.) O51 - MPSK:{5f187430-c931-11e1-8c6f-c80aa918d338}\AutoRun\command. (...) -- I:\AutoRun.exe (.not file.) O51 - MPSK:{5f18743f-c931-11e1-8c6f-c80aa918d338}\AutoRun\command. (...) -- I:\AutoRun.exe (.not file.) O51 - MPSK:{678b2c24-db94-11df-854e-c80aa918d338}\AutoRun\command. (...) -- G:\Setup.exe (.not file.) O51 - MPSK:{e2db63d0-cf4f-11e1-81f8-c80aa918d338}\AutoRun\command. (...) -- I:\AutoRun.exe (.not file.) ~ Keys: Scanned in 00mn 00s ---\\ Trojan Driver Search Data (HKLM) (O52) O52 - TDSD: \Drivers32\"msacm.l3acm"="C:\Windows\System32\l3codeca.acm" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm O52 - TDSD: \drivers.desc\"C:\Windows\System32\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm ~ TDSD: 2 Scanned in 00mn 00s ---\\ ShareTools MSconfig StartupReg (O53) O53 - SMSR:HKLM\...\startupreg\AlcoholAutomount [Key] . (.Alcohol Soft Development Team - Alcohol Launcher.) -- C:\Program Files (x86)\Alcohol Soft\Alcohol 120\axcmd.exe O53 - SMSR:HKLM\...\startupreg\Chat-Landmessenger [Key] . (...) -- C:\Users\Alex4\chat-land\messenger.exe (.not file.) =>Hijacker.ChercheUS O53 - SMSR:HKLM\...\startupreg\DAEMON Tools Lite [Key] . (.DT Soft Ltd - DAEMON Tools Lite.) -- C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe O53 - SMSR:HKLM\...\startupreg\DS3 Tool [Key] . (...) -- C:\Program Files\MotioninJoy\ds3\DS3_Tool.exe (.not file.) O53 - SMSR:HKLM\...\startupreg\EdenFlirt [Key] . (...) -- C:\Program Files (x86)\Eden Flirt\EdenFlirt.exe (.not file.) O53 - SMSR:HKLM\...\startupreg\HKCU [Key] . (.Microsoft Corporation - Visual Basic Command Line Compiler.) -- C:\Users\Alex4\AppData\Roaming\drivers\svchsot.exe O53 - SMSR:HKLM\...\startupreg\HPADVISOR [Key] . (.Hewlett-Packard - HP Advisor.) -- C:\Program Files (x86)\Hewlett-Packard\HP Advisor\HPAdvisor.exe O53 - SMSR:HKLM\...\startupreg\Livestation [Key] . (.Livestation - Livestation.) -- C:\Program Files (x86)\Livestation\Livestation.exe O53 - SMSR:HKLM\...\startupreg\msnmsgr [Key] . (.Microsoft Corporation - Windows Live Messenger.) -- C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe O53 - SMSR:HKLM\...\startupreg\Raptr [Key] . (.Pas de propriétaire - Raptr Client.) -- C:\Program Files (x86)\Raptr\raptrstub.exe O53 - SMSR:HKLM\...\startupreg\Skype [Key] . (.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe ~ SMSR Keys: 11 Scanned in 00mn 00s ---\\ Microsoft Control Security Providers (O54) O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\System32\credssp.dll O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\System32\credssp.dll ~ MSCP: 2 Scanned in 00mn 00s ---\\ Microsoft Windows Policies System (O55) O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorAdmin"=5 O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorUser"=3 O55 - MWPS:[HKLM\...\Policies\System] - "EnableInstallerDetection"=1 O55 - MWPS:[HKLM\...\Policies\System] - "EnableLUA"=1 O55 - MWPS:[HKLM\...\Policies\System] - "EnableSecureUIAPaths"=1 O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0 O55 - MWPS:[HKLM\...\Policies\System] - "EnableVirtualization"=1 O55 - MWPS:[HKLM\...\Policies\System] - "PromptOnSecureDesktop"=1 O55 - MWPS:[HKLM\...\Policies\System] - "ValidateAdminCodeSignatures"=0 O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0 O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"=0 O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"=0 O55 - MWPS:[HKLM\...\Policies\System] - "scforceoption"=0 O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1 O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1 O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0 O55 - MWPS:[HKLM\...\Policies\System] - "HideFastUserSwitching"=0 O55 - MWPS:[HKCU\...\Policies\System] - "DisableLockWorkstation"=0 O55 - MWPS:[HKCU\...\Policies\System] - "DisableTaskMgr"=0 O55 - MWPS:[HKCU\...\Policies\System] - "DisableChangePassword"=0 ~ MWPS: 20 Scanned in 00mn 00s ---\\ Microsoft Windows Policies Explorer (O56) O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktop"=1 O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktopChanges"=1 O56 - MWPE:[HKLM\...\policies\Explorer] - "ForceActiveDesktopOn"=0 ~ MWPE Keys: 3 Scanned in 00mn 00s ---\\ Liste des Drivers Système (O58) O58 - SDL:[MD5.2F6B34B83843F0C5118B63AC634F5BF4] - 14/07/2009 - 02:52:21 ---A- . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\System32\Drivers\adp94xx.sys [491088] O58 - SDL:[MD5.E2F1DCF4A68CC6CF694FBFBA1842F4CD] - 09/03/2005 - 20:50:16 ---A- . (...) -- C:\Windows\SysWOW64\drivers\libusb0.sys [33792] ~ Drivers: Scanned in 00mn 00s ---\\ Derniers fichiers modifiés ou crées (Utilisateur) (O61) O61 - LFC: 22/04/2013 - 00:05:05 ---A- C:\Users\Alex4\Downloads\Earth-Screensaver\Earth-screensaver\pov.freeones.com-game-DisplayPlayer-gameId-85163.png [807274] O61 - LFC: 22/04/2013 - 00:06:19 ---A- C:\Users\Alex4\Downloads\Earth-Screensaver\Earth-screensaver\a.png [997250] O61 - LFC: 22/04/2013 - 00:06:36 ---A- C:\Users\Alex4\Downloads\Earth-Screensaver\Earth-screensaver\b.png [985234] O61 - LFC: 22/04/2013 - 00:06:56 ---A- C:\Users\Alex4\Downloads\Earth-Screensaver\Earth-screensaver\c.png [980992] O61 - LFC: 22/04/2013 - 00:07:11 ---A- C:\Users\Alex4\Downloads\Earth-Screensaver\Earth-screensaver\d.png [974197] O61 - LFC: 22/04/2013 - 00:07:23 ---A- C:\Users\Alex4\Downloads\Earth-Screensaver\Earth-screensaver\e.png [966791] O61 - LFC: 22/04/2013 - 00:07:35 ---A- C:\Users\Alex4\Downloads\Earth-Screensaver\Earth-screensaver\f.png [730488] O61 - LFC: 22/04/2013 - 00:08:09 ---A- C:\Users\Alex4\Downloads\Earth-Screensaver\Earth-screensaver\g.png [647348] O61 - LFC: 22/04/2013 - 00:11:56 ---A- C:\Users\Alex4\Downloads\Earth-Screensaver\Earth-screensaver\dv.png [781241] O61 - LFC: 22/04/2013 - 00:19:49 ---A- C:\Users\Alex4\Downloads\Earth-Screensaver\Earth-screensaver\bdsm.png [959365] O61 - LFC: 22/04/2013 - 00:22:36 ---A- C:\Users\Alex4\Downloads\Earth-Screensaver\Earth-screensaver\bdsm2.png [708447] O61 - LFC: 22/04/2013 - 01:28:15 ---A- C:\Users\Alex4\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.linternaute.com_0.localstorage [3072] O61 - LFC: 22/04/2013 - 01:28:15 ---A- C:\Users\Alex4\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.linternaute.com_0.localstorage-journal [3608] O61 - LFC: 22/04/2013 - 02:08:59 ---A- C:\Users\Alex4\Downloads\Earth-Screensaver\Earth-screensaver\top.png [387670] O61 - LFC: 22/04/2013 - 02:28:25 ---A- C:\Users\Alex4\AppData\Roaming\BitTorrent\dlimagecache\32F529521A3DEC709F97F761F192AABF29BDC408 [1342] O61 - LFC: 22/04/2013 - 02:41:59 ---A- C:\Users\Alex4\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\ULZ377CE\static.issuu.com\analytics.sol [419] O61 - LFC: 22/04/2013 - 03:01:29 ---A- C:\Users\Alex4\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_farm.plista.com_0.localstorage [3072] O61 - LFC: 22/04/2013 - 03:01:29 ---A- C:\Users\Alex4\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_farm.plista.com_0.localstorage-journal [3608] O61 - LFC: 22/04/2013 - 03:01:29 ---A- C:\Users\Alex4\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.leblogauto.com_0.localstorage [3072] O61 - LFC: 22/04/2013 - 03:01:29 ---A- C:\Users\Alex4\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.leblogauto.com_0.localstorage-journal [3608] O61 - LFC: 22/04/2013 - 03:07:55 ---A- C:\Users\Alex4\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_automobile.challenges.fr_0.localstorage [3072] O61 - LFC: 22/04/2013 - 03:07:55 ---A- C:\Users\Alex4\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_automobile.challenges.fr_0.localstorage-journal [3608] O61 - LFC: 22/04/2013 - 03:28:23 ---A- C:\Users\Alex4\AppData\Roaming\BitTorrent\settings.dat.old [17923] O61 - LFC: 22/04/2013 - 03:39:37 ---A- C:\Users\Alex4\AppData\Roaming\BitTorrent\dht_feed.dat.old [2] O61 - LFC: 22/04/2013 - 03:41:30 ---A- C:\Users\Alex4\AppData\Roaming\BitTorrent\resume.dat.old [352122] O61 - LFC: 22/04/2013 - 03:43:30 ---A- C:\Users\Alex4\AppData\Roaming\BitTorrent\dht.dat [4144] O61 - LFC: 22/04/2013 - 03:43:30 ---A- C:\Users\Alex4\AppData\Roaming\BitTorrent\dht_feed.dat [2] O61 - LFC: 22/04/2013 - 03:43:30 ---A- C:\Users\Alex4\AppData\Roaming\BitTorrent\resume.dat [349912] O61 - LFC: 22/04/2013 - 03:43:30 ---A- C:\Users\Alex4\AppData\Roaming\BitTorrent\rss.dat [99] O61 - LFC: 22/04/2013 - 03:43:30 ---A- C:\Users\Alex4\AppData\Roaming\BitTorrent\settings.dat [17924] O61 - LFC: 23/04/2013 - 01:46:56 ---A- C:\Users\Alex4\AppData\Local\Avg2013\log\avgdiagex.log.1 [65542] O61 - LFC: 23/04/2013 - 01:47:03 ---A- C:\Users\Alex4\AppData\Roaming\Real\Msg\1_1366010538\20130416.smil [669] O61 - LFC: 23/04/2013 - 01:47:03 ---A- C:\Users\Alex4\AppData\Roaming\Real\Msg\1_1366010538\Barker.txt [45] O61 - LFC: 23/04/2013 - 01:47:03 ---A- C:\Users\Alex4\AppData\Roaming\Real\Msg\1_1366010538\PlayerPlus_FR_20130422.jpg [51979] O61 - LFC: 23/04/2013 - 01:47:03 ---A- C:\Users\Alex4\AppData\Roaming\Real\Msg\Category.dat [224] O61 - LFC: 23/04/2013 - 01:51:12 ---A- C:\Users\Alex4\AppData\Roaming\Real\Msg\Messages.dat [314] O61 - LFC: 23/04/2013 - 01:55:01 ---A- C:\Users\Alex4\Downloads\Earth-Screensaver\Earth-screensaver\swp rose.png [116810] O61 - LFC: 23/04/2013 - 12:46:38 ---A- C:\Users\Alex4\AppData\Local\Google\Chrome\User Data\Certificate Revocation Lists [269291] O61 - LFC: 23/04/2013 - 13:30:14 ---A- C:\Users\Alex4\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\ULZ377CE\macromedia.com\support\flashplayer\sys\#www.arianespace.com\settings.sol [89] O61 - LFC: 23/04/2013 - 13:30:14 ---A- C:\Users\Alex4\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\ULZ377CE\www.arianespace.com\images\index\ae_top-play-Tempo-of-Sucess.swf\save.sol [42] O61 - LFC: 23/04/2013 - 14:46:51 ---A- C:\Users\Alex4\AppData\Local\Temp\CVR5A80.tmp.cvr [0] O61 - LFC: 23/04/2013 - 14:46:51 ---A- C:\Users\Alex4\AppData\Roaming\Microsoft\Office\Recent\3A EPF TROYES A MATHIEU 2012 2013 Comment rédiger une lettre de motivation EPF - PowerPoint.ppt.LNK [1559] O61 - LFC: 23/04/2013 - 14:49:46 ---A- C:\Users\Alex4\AppData\Local\Temp\CVR58E.tmp.cvr [0] O61 - LFC: 23/04/2013 - 16:16:48 ---A- C:\Users\Alex4\AppData\Local\Temp\CVRB57D.tmp.cvr [0] O61 - LFC: 23/04/2013 - 16:17:32 ---A- C:\Users\Alex4\AppData\Local\Temp\CVR5F42.tmp.cvr [0] O61 - LFC: 23/04/2013 - 16:18:07 ---A- C:\Users\Alex4\AppData\Local\Temp\CVRE87E.tmp.cvr [0] O61 - LFC: 23/04/2013 - 16:22:52 ---A- C:\Users\Alex4\AppData\Local\Temp\CVR4251.tmp.cvr [0] O61 - LFC: 23/04/2013 - 16:23:26 ---A- C:\Users\Alex4\AppData\Roaming\Microsoft\Office\Recent\CV Christophe CADO.doc.LNK [1206] O61 - LFC: 23/04/2013 - 16:23:26 ---A- C:\Users\Alex4\AppData\Roaming\Microsoft\Office\Recent\stage.LNK [1007] O61 - LFC: 23/04/2013 - 16:24:59 ---A- C:\Users\Alex4\AppData\Roaming\Microsoft\Office\Recent\3A EPF TROYES A MATHIEU 2012 2013 Comment préparer son CV EPF - PowerPoint.ppt.LNK [1474] O61 - LFC: 23/04/2013 - 16:25:00 ---A- C:\Users\Alex4\AppData\Roaming\Microsoft\PowerPoint\PPT14.pcb [18] O61 - LFC: 23/04/2013 - 16:25:25 ---A- C:\Users\Alex4\AppData\Local\Temp\CVR98AA.tmp.cvr [0] O61 - LFC: 23/04/2013 - 19:25:11 --HA- C:\Users\Alex4\AppData\Local\Temp\etilqs_XL9o4XSaYwA10bz [12304] O61 - LFC: 23/04/2013 - 19:25:31 --HA- C:\Users\Alex4\AppData\Local\Temp\etilqs_eBvOPFDIiL0YtAx [4] O61 - LFC: 23/04/2013 - 19:25:40 --HA- C:\Users\Alex4\AppData\Local\Temp\etilqs_QmMm34FIRwdV7Sf [12304] O61 - LFC: 23/04/2013 - 19:36:42 ---A- C:\Users\Alex4\AppData\Local\Google\Chrome\User Data\Default\File System\Origins\MANIFEST-000073 [110] O61 - LFC: 23/04/2013 - 19:36:43 ---A- C:\Users\Alex4\AppData\Local\Google\Chrome\User Data\Default\File System\Origins\CURRENT [16] O61 - LFC: 23/04/2013 - 19:36:44 ---A- C:\Users\Alex4\AppData\Local\Google\Chrome\User Data\Default\File System\Origins\LOG [145] O61 - LFC: 23/04/2013 - 19:37:12 ---A- C:\Users\Alex4\AppData\Local\Google\Chrome\User Data\Default\QuotaManager [15360] O61 - LFC: 23/04/2013 - 19:37:12 ---A- C:\Users\Alex4\AppData\Local\Google\Chrome\User Data\Default\QuotaManager-journal [8768] O61 - LFC: 23/04/2013 - 20:15:30 ---A- C:\Users\Alex4\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\ULZ377CE\con#\tent.yieldmanager.edgesuite.net\avazu.sol [46] O61 - LFC: 23/04/2013 - 20:16:37 ---A- C:\Users\Alex4\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\ULZ377CE\macromedia.com\support\flashplayer\sys\#www.iguide.to\settings.sol [83] O61 - LFC: 23/04/2013 - 20:18:29 ---A- C:\Users\Alex4\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\ULZ377CE\cdn.yycast.com\HIRO_NETWORK_CAPPING_COOKIE.sol [67] O61 - LFC: 23/04/2013 - 20:18:59 ---A- C:\Users\Alex4\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\ULZ377CE\cdn.yycast.com\analytics.sol [439] O61 - LFC: 23/04/2013 - 20:20:50 ---A- C:\Users\Alex4\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\ULZ377CE\www.xatech.com\chat.sol [88] O61 - LFC: 23/04/2013 - 20:21:03 ---A- C:\Users\Alex4\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\ULZ377CE\www.veemi.com\com.jeroenwijering.sol [61] O61 - LFC: 23/04/2013 - 20:21:04 ---A- C:\Users\Alex4\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\ULZ377CE\www.iguide.to\com.jeroenwijering.sol [53] O61 - LFC: 23/04/2013 - 20:21:04 ---A- C:\Users\Alex4\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\ULZ377CE\www.veemi.com\analytics.sol [437] O61 - LFC: 23/04/2013 - 21:21:05 ---A- C:\Users\Alex4\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\CacheWritableAdobeRoot\AssetCache\AUGFXWPW\FF56DCA4C4D6043F3D639EFF51BF9A2934B7456B.heu [152] O61 - LFC: 23/04/2013 - 21:21:13 ---A- C:\Users\Alex4\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\CacheWritableAdobeRoot\AssetCache\AUGFXWPW\1000E3FF6E0A25A84E2A8866132C8A4A67BB7356.heu [151] O61 - LFC: 23/04/2013 - 21:21:13 ---A- C:\Users\Alex4\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\CacheWritableAdobeRoot\AssetCache\AUGFXWPW\1000E3FF6E0A25A84E2A8866132C8A4A67BB7356.swz [134211] O61 - LFC: 23/04/2013 - 21:21:13 ---A- C:\Users\Alex4\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\CacheWritableAdobeRoot\AssetCache\AUGFXWPW\cacheSize.txt [8] O61 - LFC: 23/04/2013 - 21:21:15 ---A- C:\Users\Alex4\AppData\Local\Google\Chrome\User Data\Default\Origin Bound Certs [18432] O61 - LFC: 23/04/2013 - 21:21:15 ---A- C:\Users\Alex4\AppData\Local\Google\Chrome\User Data\Default\Origin Bound Certs-journal [3608] O61 - LFC: 23/04/2013 - 22:36:06 ---A- C:\Users\Alex4\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_c.betrad.com_0.localstorage [74752] O61 - LFC: 23/04/2013 - 22:36:06 ---A- C:\Users\Alex4\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_c.betrad.com_0.localstorage-journal [3608] O61 - LFC: 23/04/2013 - 22:59:31 ---A- C:\Users\Alex4\AppData\Roaming\Microsoft\Office\Recent\motivation.docx.LNK [983] O61 - LFC: 24/04/2013 - 00:00:00 ---A- C:\Users\Alex4\AppData\Local\Avg2013\log\avgdecider.log.1 [65557] O61 - LFC: 24/04/2013 - 02:11:25 ---A- C:\Users\Alex4\AppData\Local\AVG Secure Search\SiteSafety\l_2013_04_23_06_11_08.db [613968] =>Toolbar.AVGSearch O61 - LFC: 24/04/2013 - 02:15:06 ---A- C:\Users\Alex4\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\ULZ377CE\macromedia.com\support\flashplayer\sys\#premium.hi-mediaserver.com\settings.sol [96] O61 - LFC: 24/04/2013 - 02:26:08 ---A- C:\Users\Alex4\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\ULZ377CE\ced.sascdn.com\diff\28\a130494\728x90.swf\curlyBanner.sol [67] O61 - LFC: 24/04/2013 - 02:26:08 ---A- C:\Users\Alex4\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\ULZ377CE\macromedia.com\support\flashplayer\sys\#ced.sascdn.com\settings.sol [84] O61 - LFC: 24/04/2013 - 04:02:47 ---A- C:\Users\Alex4\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\ULZ377CE\www.jeuxvideo.com\com.jeuxvideo_c_format.sol [58] O61 - LFC: 24/04/2013 - 16:43:42 ---A- C:\Users\Alex4\AppData\Roaming\Real\RealPlayer\RealPlayer\ErrorLogs\log1.dmp [31954] O61 - LFC: 24/04/2013 - 16:51:32 ---A- C:\Users\Alex4\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_cdlc.iadvize.com_0.localstorage [3072] O61 - LFC: 24/04/2013 - 16:51:32 ---A- C:\Users\Alex4\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_cdlc.iadvize.com_0.localstorage-journal [3608] O61 - LFC: 24/04/2013 - 18:43:31 ---A- C:\Users\Alex4\Downloads\pf-setup-fr-653.exe [5104496] O61 - LFC: 24/04/2013 - 18:50:37 ---A- C:\Users\Alex4\AppData\Local\Temp\HPSAActionItems.xml [4320] O61 - LFC: 24/04/2013 - 18:50:39 ---A- C:\Users\Alex4\AppData\Roaming\Hewlett-Packard\HP Support Framework\cee\1769476499.cee [1992] O61 - LFC: 24/04/2013 - 19:34:22 ---A- C:\Users\Alex4\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\ULZ377CE\video.begun.ru\vpaid_lib.swf\__vpaid_stats_app_data__.sol [61] O61 - LFC: 24/04/2013 - 19:34:34 ---A- C:\Users\Alex4\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\ULZ377CE\core.mochibot.com\com.mochibot.sol [105] O61 - LFC: 24/04/2013 - 19:34:34 ---A- C:\Users\Alex4\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\ULZ377CE\macromedia.com\support\flashplayer\sys\#core.mochibot.com\settings.sol [87] O61 - LFC: 24/04/2013 - 19:46:58 ---A- C:\Users\Alex4\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_veetle.com_0.localstorage [3072] O61 - LFC: 24/04/2013 - 19:46:58 ---A- C:\Users\Alex4\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_veetle.com_0.localstorage-journal [3608] O61 - LFC: 24/04/2013 - 19:47:34 ---A- C:\Users\Alex4\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\ULZ377CE\macromedia.com\support\flashplayer\sys\#obigbrother.com\settings.sol [85] O61 - LFC: 24/04/2013 - 19:47:51 ---A- C:\Users\Alex4\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\ULZ377CE\obigbrother.com\com.jeroenwijering.sol [53] O61 - LFC: 24/04/2013 - 19:53:45 ---A- C:\Users\Alex4\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\ULZ377CE\cdn.livetvstatic.ru\uppodData172.sol [44] O61 - LFC: 24/04/2013 - 19:58:24 ---A- C:\Users\Alex4\AppData\Local\Google\Chrome\User Data\Default\Media Cache\f_0000c4 [98467] O61 - LFC: 24/04/2013 - 22:53:26 ---A- C:\Users\Alex4\AppData\Roaming\Hewlett-Packard\HP Support Framework\cee\3279257528.cee [1694] O61 - LFC: 24/04/2013 - 23:05:11 ---A- C:\Users\Alex4\AppData\Local\Temp\wmplog00.sqm [1470] O61 - LFC: 24/04/2013 - 23:05:40 ---A- C:\Users\Alex4\AppData\Roaming\Real\RealPlayer\WatchFolders\fldrscan.out [959374] O61 - LFC: 24/04/2013 - 23:06:01 ---A- C:\Users\Alex4\AppData\Roaming\Microsoft\Office\Recent\ANNONCE PROPOSITION STAGE Developpeur 2013.doc.LNK [1138] O61 - LFC: 24/04/2013 - 23:06:09 ---A- C:\Users\Alex4\AppData\Roaming\Microsoft\Office\Recent\ANNONCE PROPOSITION STAGE Ingénieur support applicatif formation 2013.doc.LNK [1273] O61 - LFC: 24/04/2013 - 23:07:08 ---A- C:\Users\Alex4\Downloads\SpybotSD2.exe [27031579] O61 - LFC: 25/04/2013 - 00:17:39 ---A- C:\Users\Alex4\AppData\Local\Avg2013\log\avgcore.log.6 [131775] O61 - LFC: 25/04/2013 - 00:21:04 ---A- C:\Users\Alex4\AppData\Local\Avg2013\log\avgcore.log.5 [131088] O61 - LFC: 25/04/2013 - 00:22:43 ---A- C:\Users\Alex4\AppData\Local\Avg2013\log\avgcore.log.4 [131234] O61 - LFC: 25/04/2013 - 00:24:09 ---A- C:\Users\Alex4\AppData\Local\Avg2013\log\avgcore.log.3 [131591] O61 - LFC: 25/04/2013 - 00:26:07 ---A- C:\Users\Alex4\AppData\Local\Avg2013\log\avgcore.log.2 [131186] O61 - LFC: 25/04/2013 - 00:29:10 ---A- C:\Users\Alex4\AppData\Local\Avg2013\log\avgcore.log.1 [131389] O61 - LFC: 25/04/2013 - 01:23:30 ---A- C:\Users\Alex4\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\ULZ377CE\macromedia.com\support\flashplayer\sys\#cdn.easf.www.easports.com\settings.sol [95] O61 - LFC: 25/04/2013 - 01:41:43 ---A- C:\Users\Alex4\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_lemag.eurosport.fr_0.localstorage [3072] O61 - LFC: 25/04/2013 - 01:41:43 ---A- C:\Users\Alex4\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_lemag.eurosport.fr_0.localstorage-journal [3608] O61 - LFC: 25/04/2013 - 02:10:05 ---A- C:\Users\Alex4\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_mediacdn.disqus.com_0.localstorage [15360] O61 - LFC: 25/04/2013 - 02:10:05 ---A- C:\Users\Alex4\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_mediacdn.disqus.com_0.localstorage-journal [15992] O61 - LFC: 25/04/2013 - 02:24:57 ---A- C:\Users\Alex4\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_choualbox.com_0.localstorage [3072] O61 - LFC: 25/04/2013 - 02:24:57 ---A- C:\Users\Alex4\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_choualbox.com_0.localstorage-journal [3608] O61 - LFC: 25/04/2013 - 02:38:34 ---A- C:\Users\Alex4\AppData\Local\Avg2013\log\avgidpagentmonitor.log.1 [65565] O61 - LFC: 25/04/2013 - 02:39:28 ---A- C:\Users\Alex4\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.ea.com_0.localstorage [3072] O61 - LFC: 25/04/2013 - 02:39:28 ---A- C:\Users\Alex4\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.ea.com_0.localstorage-journal [3608] O61 - LFC: 25/04/2013 - 02:50:27 ---A- C:\Users\Alex4\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.youtube.com_0.localstorage [27648] O61 - LFC: 25/04/2013 - 02:50:27 ---A- C:\Users\Alex4\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.youtube.com_0.localstorage-journal [16384] O61 - LFC: 25/04/2013 - 02:50:38 ---A- C:\Users\Alex4\AppData\Local\AVG Secure Search\SiteSafety\l_2013_04_24_06_50_33.db [613968] =>Toolbar.AVGSearch O61 - LFC: 25/04/2013 - 03:53:26 ---A- C:\Users\Alex4\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_halc.iadvize.com_0.localstorage [3072] O61 - LFC: 25/04/2013 - 03:53:26 ---A- C:\Users\Alex4\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_halc.iadvize.com_0.localstorage-journal [3608] O61 - LFC: 25/04/2013 - 04:02:32 ---A- C:\Users\Alex4\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_optimized-by.rubiconproject.com_0.localstorage [3072] O61 - LFC: 25/04/2013 - 04:02:32 ---A- C:\Users\Alex4\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_optimized-by.rubiconproject.com_0.localstorage-journal [3608] O61 - LFC: 25/04/2013 - 04:06:27 ---A- C:\Users\Alex4\AppData\Local\Google\Chrome\User Data\Default\Bookmarks [101135] O61 - LFC: 25/04/2013 - 04:06:27 ---A- C:\Users\Alex4\AppData\Local\Google\Chrome\User Data\Default\Bookmarks.bak [101135] O61 - LFC: 25/04/2013 - 04:16:07 ---A- C:\Users\Alex4\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.futhead.com_0.localstorage [3072] O61 - LFC: 25/04/2013 - 04:16:07 ---A- C:\Users\Alex4\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.futhead.com_0.localstorage-journal [3608] O61 - LFC: 25/04/2013 - 04:17:04 ---A- C:\Users\Alex4\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_battlelog.battlefield.com_0.localstorage [7168] O61 - LFC: 25/04/2013 - 04:17:04 ---A- C:\Users\Alex4\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_battlelog.battlefield.com_0.localstorage-journal [7736] O61 - LFC: 25/04/2013 - 04:31:30 ---A- C:\Users\Alex4\AppData\Local\Google\Chrome\User Data\Default\Media Cache\data_0 [45056] O61 - LFC: 25/04/2013 - 04:31:30 ---A- C:\Users\Alex4\AppData\Local\Google\Chrome\User Data\Default\Media Cache\data_1 [532480] O61 - LFC: 25/04/2013 - 04:31:30 ---A- C:\Users\Alex4\AppData\Local\Google\Chrome\User Data\Default\Media Cache\data_2 [1056768] O61 - LFC: 25/04/2013 - 04:31:48 ---A- C:\Users\Alex4\AppData\Local\Avg2013\log\avgui.log.1 [131519] O61 - LFC: 25/04/2013 - 13:16:29 ---A- C:\Users\Alex4\AppData\Local\Temp\CVRBA97.tmp.cvr [0] O61 - LFC: 25/04/2013 - 13:22:01 ---A- C:\Users\Alex4\AppData\Roaming\Microsoft\Office\Recent\lettre-cv.LNK [1125] O61 - LFC: 25/04/2013 - 13:22:18 ---A- C:\Users\Alex4\AppData\Roaming\AVG2013\cfgall\userawacs.cfg [84658] O61 - LFC: 25/04/2013 - 13:29:56 ---A- C:\Users\Alex4\AppData\Local\Temp\CVRE23.tmp.cvr [0] O61 - LFC: 25/04/2013 - 13:29:57 ---A- C:\Users\Alex4\AppData\Roaming\Microsoft\Office\Recent\CV OSDOIT Julien.doc.LNK [1302] O61 - LFC: 25/04/2013 - 13:36:23 ---A- C:\Users\Alex4\AppData\Roaming\Microsoft\Office\Recent\CV Aleksandar COCIC.doc (2).LNK [1199] O61 - LFC: 25/04/2013 - 13:36:23 ---A- C:\Users\Alex4\AppData\Roaming\Microsoft\Office\Recent\CV Aleksandar COCIC.doc.LNK [1199] O61 - LFC: 25/04/2013 - 13:36:23 ---A- C:\Users\Alex4\AppData\Roaming\Microsoft\Office\Recent\CV.docx (2).LNK [1237] O61 - LFC: 25/04/2013 - 13:36:23 ---A- C:\Users\Alex4\AppData\Roaming\Microsoft\Word\CV%20Aleksandar%20COCIC302944492127701169\CV%20Aleksandar%20COCIC.doc.lnk [739] O61 - LFC: 25/04/2013 - 13:36:23 R--A- C:\Users\Alex4\AppData\Roaming\Microsoft\Word\CV%20Aleksandar%20COCIC302944492127701169\CV%20Aleksandar%20COCIC((Unsaved-302944661113186064)).asd [45056] O61 - LFC: 25/04/2013 - 13:43:05 ---A- C:\Users\Alex4\AppData\Local\Temp\msohtmlclip1\01\clip_colorschememapping.xml [314] O61 - LFC: 25/04/2013 - 13:43:05 ---A- C:\Users\Alex4\AppData\Local\Temp\msohtmlclip1\01\clip_themedata.thmx [3091] O61 - LFC: 25/04/2013 - 13:43:05 ---A- C:\Users\Alex4\AppData\Roaming\Microsoft\Word\ListGal.dat [16241] O61 - LFC: 25/04/2013 - 13:45:47 ---A- C:\Users\Alex4\AppData\Local\Temp\CVR902E.tmp.cvr [0] O61 - LFC: 25/04/2013 - 13:46:11 ---A- C:\Users\Alex4\AppData\Roaming\Microsoft\Office\Recent\CV.docx.LNK [1237] O61 - LFC: 25/04/2013 - 13:48:40 ---A- C:\Users\Alex4\AppData\Roaming\Microsoft\Office\Recent\cocic aleksandar.docx.LNK [1307] O61 - LFC: 25/04/2013 - 13:48:40 --H-- C:\Users\Alex4\AppData\Roaming\Microsoft\Office\Recent\index.dat [1959] O61 - LFC: 25/04/2013 - 14:08:57 ---A- C:\Users\Alex4\AppData\Local\Windows Live Writer\ResourceCache\live\Writer_Config.cab [26214] O61 - LFC: 25/04/2013 - 14:09:32 ---A- C:\Users\Alex4\AppData\Local\Windows Live\uxcore_wlmail_00.etl [8192] O61 - LFC: 25/04/2013 - 14:16:17 ---A- C:\Users\Alex4\Downloads\petit débit.png [75681] O61 - LFC: 25/04/2013 - 15:14:32 ---A- C:\Users\Alex4\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\ULZ377CE\fr-himedia.cdn.videoplaza.tv\com.videoplaza.bootloader.sol [121] O61 - LFC: 25/04/2013 - 15:15:24 ---A- C:\Users\Alex4\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\ULZ377CE\fr-himedia.cdn.videoplaza.tv\com.videoplaza.adplayer.sol [1782] O61 - LFC: 25/04/2013 - 15:16:40 ---A- C:\Users\Alex4\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\ULZ377CE\www.jeuxvideo.com\com.jeroenwijering.sol [64] O61 - LFC: 25/04/2013 - 16:12:30 ---A- C:\Users\Alex4\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\ULZ377CE\macromedia.com\support\flashplayer\sys\#static.afcdn.com\settings.sol [86] O61 - LFC: 25/04/2013 - 16:12:30 ---A- C:\Users\Alex4\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\ULZ377CE\macromedia.com\support\flashplayer\sys\settings.sol [4426] O61 - LFC: 25/04/2013 - 16:16:34 ---A- C:\Users\Alex4\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\ULZ377CE\static.afcdn.com\analytics.sol [257] O61 - LFC: 25/04/2013 - 16:16:47 ---A- C:\Users\Alex4\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.liberation.fr_0.localstorage [3072] O61 - LFC: 25/04/2013 - 16:16:47 ---A- C:\Users\Alex4\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.liberation.fr_0.localstorage-journal [3608] O61 - LFC: 25/04/2013 - 18:42:31 ---A- C:\Users\Alex4\AppData\Local\Google\Toolbar\broker_metrics.xml [8134] O61 - LFC: 25/04/2013 - 18:42:31 ---A- C:\Users\Alex4\AppData\Local\Temp\Low\toolbar_log.txt [1590041] O61 - LFC: 25/04/2013 - 18:42:47 ---A- C:\Users\Alex4\AppData\Local\Temp\FFToolbar_Cache\ed4025371cb8b2a8ace7d1215fca95ea [11164] O61 - LFC: 25/04/2013 - 18:42:50 ---A- C:\Users\Alex4\AppData\Local\Temp\FFToolbar_Cache\22ebdfd8819dd115514aaba93975f039 [497] O61 - LFC: 25/04/2013 - 18:42:51 ---A- C:\Users\Alex4\AppData\Local\Temp\FFToolbar_Cache\09971c3532e2aeac90018999c9d69713 [1208] O61 - LFC: 25/04/2013 - 18:42:51 ---A- C:\Users\Alex4\AppData\Local\Temp\FFToolbar_Cache\9c9f9a1b3dcccd734f3b10f66a05cbce [1485] O61 - LFC: 25/04/2013 - 18:42:54 ---A- C:\Users\Alex4\AppData\Local\Temp\FFToolbar_Cache\85fcf320fbf3256ebf98224ba0a72d1a [1861] O61 - LFC: 25/04/2013 - 18:44:15 ---A- C:\Users\Alex4\AppData\Local\Temp\AVG_TB_DumpLog.txt [33057] O61 - LFC: 25/04/2013 - 18:48:06 ---A- C:\Users\Alex4\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\ULZ377CE\adventori.com\cookie.sol [94] O61 - LFC: 25/04/2013 - 18:48:52 ---A- C:\Users\Alex4\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_disqus.com_0.localstorage [5120] O61 - LFC: 25/04/2013 - 18:48:52 ---A- C:\Users\Alex4\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_disqus.com_0.localstorage-journal [5672] O61 - LFC: 25/04/2013 - 20:29:05 ---A- C:\Users\Alex4\AppData\Local\Google\Chrome\User Data\Default\Pepper Data\Shockwave Flash\WritableRoot\#SharedObjects\ULZ377CE\www.player.previewnetworks.com\analytics.sol [469] O61 - LFC: 25/04/2013 - 20:31:45 ---A- C:\Users\Alex4\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_halc.iadvize.com_0.localstorage [3072] O61 - LFC: 25/04/2013 - 20:31:45 ---A- C:\Users\Alex4\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_halc.iadvize.com_0.localstorage-journal [3608] O61 - LFC: 25/04/2013 - 20:32:33 ---A- C:\Users\Alex4\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_www.google.fr_0.localstorage [3072] O61 - LFC: 25/04/2013 - 20:32:33 ---A- C:\Users\Alex4\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_www.google.fr_0.localstorage-journal [3608] O61 - LFC: 25/04/2013 - 20:42:32 ---A- C:\Users\Alex4\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_fnac.livechat.iadvize.com_0.localstorage [3072] O61 - LFC: 25/04/2013 - 20:42:32 ---A- C:\Users\Alex4\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_fnac.livechat.iadvize.com_0.localstorage-journal [3608] O61 - LFC: 25/04/2013 - 20:43:29 ---A- C:\Users\Alex4\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.commentcamarche.net_0.localstorage [3072] O61 - LFC: 25/04/2013 - 20:43:29 ---A- C:\Users\Alex4\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.commentcamarche.net_0.localstorage-journal [3608] O61 - LFC: 25/04/2013 - 20:48:26 ---A- C:\Users\Alex4\AppData\Local\Google\Chrome\User Data\Default\Login Data [20480] O61 - LFC: 25/04/2013 - 20:48:26 ---A- C:\Users\Alex4\AppData\Local\Google\Chrome\User Data\Default\Login Data-journal [8736] O61 - LFC: 25/04/2013 - 20:55:35 ---A- C:\Users\Alex4\AppData\Local\Google\Chrome\User Data\Default\History Index 2013-03 [11292672] O61 - LFC: 25/04/2013 - 21:04:18 ---A- C:\Users\Alex4\AppData\Local\Google\Chrome\User Data\Default\Session Storage\003474.sst [925] O61 - LFC: 25/04/2013 - 21:04:23 ---A- C:\Users\Alex4\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_mercato.eurosport.fr_0.localstorage [3072] O61 - LFC: 25/04/2013 - 21:04:23 ---A- C:\Users\Alex4\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_mercato.eurosport.fr_0.localstorage-journal [3608] O61 - LFC: 25/04/2013 - 21:34:59 ---A- C:\Users\Alex4\Downloads\Earth-Screensaver\Earth-screensaver\nv4.txt [5297] O61 - LFC: 25/04/2013 - 21:42:26 ---A- C:\Users\Alex4\AppData\Local\Google\Chrome\User Data\Default\Session Storage\003476.sst [1043356] O61 - LFC: 25/04/2013 - 21:56:24 ---A- C:\Users\Alex4\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.eurosport.fr_0.localstorage [3072] O61 - LFC: 25/04/2013 - 21:56:24 ---A- C:\Users\Alex4\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.eurosport.fr_0.localstorage-journal [3608] O61 - LFC: 25/04/2013 - 22:10:27 ---A- C:\Users\Alex4\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\LOG.old [47] O61 - LFC: 25/04/2013 - 22:10:29 ---A- C:\Users\Alex4\AppData\Local\Google\Chrome\User Data\Default\Extension State\LOG.old [151] O61 - LFC: 25/04/2013 - 22:10:44 ---A- C:\Users\Alex4\AppData\Local\Google\Chrome\User Data\Default\Session Storage\003479.sst [519] O61 - LFC: 25/04/2013 - 22:10:55 ---A- C:\Users\Alex4\AppData\Local\Google\Chrome\User Data\Default\Session Storage\LOG.old [274] O61 - LFC: 25/04/2013 - 22:11:57 ---A- C:\Users\Alex4\Downloads\ZHPDiag2.exe [5601658] O61 - LFC: 25/04/2013 - 22:16:24 ---A- C:\Users\Alex4\AppData\Local\Google\Chrome\User Data\Default\TransportSecurity [1936] O61 - LFC: 25/04/2013 - 22:16:58 --HA- C:\Users\Alex4\AppData\Local\IconCache.db [3965822] O61 - LFC: 25/04/2013 - 22:17:04 ---A- C:\Users\Alex4\AppData\Local\Google\Chrome\User Data\Default\Last Session [248086] O61 - LFC: 25/04/2013 - 22:17:04 ---A- C:\Users\Alex4\AppData\Local\Google\Chrome\User Data\Default\Last Tabs [68263] O61 - LFC: 25/04/2013 - 22:17:04 ---A- C:\Users\Alex4\AppData\Local\Google\Chrome\User Data\Default\Visited Links [524192] O61 - LFC: 25/04/2013 - 22:19:26 ---A- C:\Users\Alex4\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\CURRENT [16] O61 - LFC: 25/04/2013 - 22:19:26 ---A- C:\Users\Alex4\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\MANIFEST-000004 [50] O61 - LFC: 25/04/2013 - 22:19:44 ---A- C:\Users\Alex4\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\LOG [0] O61 - LFC: 25/04/2013 - 22:20:03 ---A- C:\Users\Alex4\AppData\Local\Google\Chrome\User Data\Default\Managed Mode Settings [8] O61 - LFC: 25/04/2013 - 22:20:05 ---A- C:\Users\Alex4\AppData\Local\Google\Chrome\User Data\Default\Web Data [217088] O61 - LFC: 25/04/2013 - 22:20:05 ---A- C:\Users\Alex4\AppData\Local\Google\Chrome\User Data\Default\Web Data-journal [16384] O61 - LFC: 25/04/2013 - 22:20:10 ---A- C:\Users\Alex4\AppData\Local\Google\Chrome\User Data\Default\History Provider Cache [389297] O61 - LFC: 25/04/2013 - 22:20:18 ---A- C:\Users\Alex4\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_get3.adobe.com_0.localstorage [3072] O61 - LFC: 25/04/2013 - 22:20:18 ---A- C:\Users\Alex4\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_get3.adobe.com_0.localstorage-journal [512] O61 - LFC: 25/04/2013 - 22:20:20 ---A- C:\Users\Alex4\AppData\Local\Google\Chrome\User Data\Default\Extension State\CURRENT [16] O61 - LFC: 25/04/2013 - 22:20:20 ---A- C:\Users\Alex4\AppData\Local\Google\Chrome\User Data\Default\Extension State\MANIFEST-003621 [335] O61 - LFC: 25/04/2013 - 22:20:34 ---A- C:\Users\Alex4\AppData\Local\Google\Chrome\User Data\Default\Extension State\LOG [0] O61 - LFC: 25/04/2013 - 22:20:35 ---A- C:\Users\Alex4\AppData\Local\Google\Chrome\User Data\Default\Top Sites [1241088] O61 - LFC: 25/04/2013 - 22:20:35 ---A- C:\Users\Alex4\AppData\Local\Google\Chrome\User Data\Default\Top Sites-journal [16384] O61 - LFC: 25/04/2013 - 22:21:03 ---A- C:\Users\Alex4\AppData\Local\Google\Chrome\User Data\Default\Session Storage\003482.sst [255] O61 - LFC: 25/04/2013 - 22:21:03 ---A- C:\Users\Alex4\AppData\Local\Google\Chrome\User Data\Default\Session Storage\CURRENT [16] O61 - LFC: 25/04/2013 - 22:21:03 ---A- C:\Users\Alex4\AppData\Local\Google\Chrome\User Data\Default\Session Storage\MANIFEST-003481 [587] O61 - LFC: 25/04/2013 - 22:21:10 ---A- C:\Users\Alex4\AppData\Local\Google\Chrome\User Data\Default\Session Storage\LOG [0] O61 - LFC: 25/04/2013 - 22:22:18 ---A- C:\Users\Alex4\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_plus.google.com_0.localstorage [3072] O61 - LFC: 25/04/2013 - 22:22:18 ---A- C:\Users\Alex4\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_plus.google.com_0.localstorage-journal [3608] O61 - LFC: 25/04/2013 - 22:24:07 ---A- C:\Users\Alex4\AppData\Local\Google\Chrome\User Data\Default\Shortcuts [503808] O61 - LFC: 25/04/2013 - 22:24:07 ---A- C:\Users\Alex4\AppData\Local\Google\Chrome\User Data\Default\Shortcuts-journal [16384] O61 - LFC: 25/04/2013 - 22:24:08 ---A- C:\Users\Alex4\AppData\Local\Google\Chrome\User Data\Default\Network Action Predictor [546816] O61 - LFC: 25/04/2013 - 22:24:08 ---A- C:\Users\Alex4\AppData\Local\Google\Chrome\User Data\Default\Network Action Predictor-journal [16384] O61 - LFC: 25/04/2013 - 22:24:08 ---A- C:\Users\Alex4\AppData\Local\Temp\au-descriptor-1.7.0_21-b11.xml [8818] O61 - LFC: 25/04/2013 - 22:24:33 ---A- C:\Users\Alex4\AppData\Local\Google\Chrome\User Data\Default\Favicons [5404672] O61 - LFC: 25/04/2013 - 22:24:33 ---A- C:\Users\Alex4\AppData\Local\Google\Chrome\User Data\Default\Favicons-journal [16384] O61 - LFC: 25/04/2013 - 22:24:33 ---A- C:\Users\Alex4\AppData\Local\Google\Chrome\User Data\Default\History Index 2013-04 [27353088] O61 - LFC: 25/04/2013 - 22:24:33 ---A- C:\Users\Alex4\AppData\Local\Google\Chrome\User Data\Default\History Index 2013-04-journal [16384] O61 - LFC: 25/04/2013 - 22:25:02 ---A- C:\Users\Alex4\AppData\Local\Google\Chrome\User Data\Safe Browsing Cookies [6144] O61 - LFC: 25/04/2013 - 22:25:02 ---A- C:\Users\Alex4\AppData\Local\Google\Chrome\User Data\Safe Browsing Cookies-journal [4640] O61 - LFC: 25/04/2013 - 22:25:11 ---A- C:\Users\Alex4\AppData\Local\Google\Chrome\User Data\Safe Browsing Download [1123392] O61 - LFC: 25/04/2013 - 22:25:15 ---A- C:\Users\Alex4\AppData\Local\Google\Chrome\User Data\Safe Browsing Bloom [8185964] O61 - LFC: 25/04/2013 - 22:25:15 ---A- C:\Users\Alex4\AppData\Local\Google\Chrome\User Data\Safe Browsing Bloom Prefix Set [1507154] O61 - LFC: 25/04/2013 - 22:25:15 ---A- C:\Users\Alex4\AppData\Local\Google\Chrome\User Data\Safe Browsing Csd Whitelist [134920] O61 - LFC: 25/04/2013 - 22:25:15 ---A- C:\Users\Alex4\AppData\Local\Google\Chrome\User Data\Safe Browsing Download Whitelist [19840] O61 - LFC: 25/04/2013 - 22:25:15 ---A- C:\Users\Alex4\AppData\Local\Google\Chrome\User Data\Safe Browsing Extension Blacklist [4652] O61 - LFC: 25/04/2013 - 22:29:25 ---A- C:\Users\Alex4\AppData\Local\Google\Chrome\User Data\Default\Preferences [95096] O61 - LFC: 25/04/2013 - 22:29:27 ---A- C:\Users\Alex4\AppData\Local\Google\Chrome\User Data\Default\History [3305472] O61 - LFC: 25/04/2013 - 22:29:27 ---A- C:\Users\Alex4\AppData\Local\Google\Chrome\User Data\Local State [41105] O61 - LFC: 25/04/2013 - 22:29:45 ---A- C:\Users\Alex4\AppData\Local\Google\Chrome\User Data\Default\Cookies [1266688] O61 - LFC: 25/04/2013 - 22:29:45 ---A- C:\Users\Alex4\AppData\Local\Google\Chrome\User Data\Default\Cookies-journal [16384] O61 - LFC: 25/04/2013 - 22:29:48 ---A- C:\Users\Alex4\AppData\Local\Google\Chrome\User Data\Default\History-journal [16384] O61 - LFC: 25/04/2013 - 22:31:26 ---A- C:\Users\Alex4\AppData\Local\Temp\toolbar_log.txt [11630601] ~ 26 Fichiers temporaires (Temporary files) ~ Files: 249 Scanned in 04mn 11s ---\\ Liste des outils de nettoyage (O63) O63 - Logiciel: ZHPDiag 2013 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1 ~ ADS: Scanned in 00mn 00s ---\\ Liste des services Legacy (O64) O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\DRIVERS\adp94xx.sys (adp94xx) .(.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) - LEGACY_ADP94XX O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\DRIVERS\adpahci.sys (adpahci) .(.Adaptec, Inc. - Adaptec Windows SATA Storport Driver.) - LEGACY_ADPAHCI O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\DRIVERS\adpu320.sys (adpu320) .(.Adaptec, Inc. - Adaptec StorPort Ultra320 SCSI Driver (X64).) - LEGACY_ADPU320 O64 - Services: CurCS - 28/12/2011 - C:\Windows\system32\drivers\afd.sys (AFD) .(.Microsoft Corporation - Ancillary Function Driver for WinSock.) - LEGACY_AFD O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\aliide.sys (aliide) .(.Acer Laboratories Inc. - ALi mini IDE Driver.) - LEGACY_ALIIDE O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\amdide.sys (amdide) .(.Microsoft Corporation - Pilote IDE AMD.) - LEGACY_AMDIDE O64 - Services: CurCS - 11/03/2011 - C:\Windows\System32\drivers\amdsata.sys (amdsata) .(.Advanced Micro Devices - AHCI 1.2 Device Driver.) - LEGACY_AMDSATA O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\DRIVERS\amdsbs.sys (amdsbs) .(.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller D.) - LEGACY_AMDSBS O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\DRIVERS\arc.sys (arc) .(.Adaptec, Inc. - Adaptec RAID Storport Driver.) - LEGACY_ARC O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\DRIVERS\arcsas.sys (arcsas) .(.Adaptec, Inc. - Adaptec SAS RAID WS03 Driver.) - LEGACY_ARCSAS O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\atapi.sys (atapi) .(.Microsoft Corporation - ATAPI IDE Miniport Driver.) - LEGACY_ATAPI O64 - Services: CurCS - 22/10/2012 - C:\Windows\System32\DRIVERS\avgidsdrivera.sys (AVGIDSDriver) .(.AVG Technologies CZ, s.r.o. - IDS Application Activity Monitor Driver..) - LEGACY_AVGIDSDRIVER O64 - Services: CurCS - 15/10/2012 - C:\Windows\System32\DRIVERS\avgidsha.sys (AVGIDSHA) .(.AVG Technologies CZ, s.r.o. - IDS Application Activity Monitor Helper Dri.) - LEGACY_AVGIDSHA O64 - Services: CurCS - 02/10/2012 - C:\Windows\System32\DRIVERS\avgldx64.sys (Avgldx64) .(.AVG Technologies CZ, s.r.o. - AVG AVI Loader Driver.) - LEGACY_AVGLDX64 O64 - Services: CurCS - 21/09/2012 - C:\Windows\System32\DRIVERS\avgloga.sys (Avgloga) .(.AVG Technologies CZ, s.r.o. - AVG Logging Driver.) - LEGACY_AVGLOGA O64 - Services: CurCS - 15/11/2012 - C:\Windows\System32\DRIVERS\avgmfx64.sys (Avgmfx64) .(.AVG Technologies CZ, s.r.o. - AVG Resident Shield Minifilter Driver.) - LEGACY_AVGMFX64 O64 - Services: CurCS - 14/09/2012 - C:\Windows\System32\DRIVERS\avgrkx64.sys (Avgrkx64) .(.AVG Technologies CZ, s.r.o. - AVG Anti-Rootkit Driver.) - LEGACY_AVGRKX64 O64 - Services: CurCS - 21/09/2012 - C:\Windows\System32\DRIVERS\avgtdia.sys (AvgTdiA) .(.AVG Technologies CZ, s.r.o. - AVG Network connection watcher.) - LEGACY_AVGTDIA O64 - Services: CurCS - 20/02/2013 - C:\Windows\system32\drivers\avgtpx64.sys (avgtp) .(.AVG Technologies - Pas de description.) - LEGACY_AVGTP O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\Drivers\Beep.sys (Beep) .(.Microsoft Corporation - BEEP Driver.) - LEGACY_BEEP O64 - Services: CurCS - 04/07/2012 - C:\Windows\system32\browser.dll (bowser) .(.Microsoft Corporation - DLL du service Explorateur d’ordinateurs.) - LEGACY_BOWSER O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\DRIVERS\cdfs.sys (cdfs) .(.Microsoft Corporation - CD-ROM File System Driver.) - LEGACY_CDFS O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\clfs.sys (CLFS) .(.Microsoft Corporation - Common Log File System Driver.) - LEGACY_CLFS O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\cmdide.sys (cmdide) .(.CMD Technology, Inc. - CMD PCI IDE Bus Driver.) - LEGACY_CMDIDE O64 - Services: CurCS - 02/06/2012 - C:\Windows\System32\Drivers\cng.sys (CNG) .(.Microsoft Corporation - Kernel Cryptography, Next Generation.) - LEGACY_CNG O64 - Services: CurCS - 20/11/2010 - C:\Windows\system32\drivers\dfsc.sys (DfsC) .(.Microsoft Corporation - DFS Namespace Client Driver.) - LEGACY_DFSC O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\discache.sys (discache) .(.Microsoft Corporation - System Indexer/Cache Driver.) - LEGACY_DISCACHE O64 - Services: CurCS - 30/08/2010 - C:\Program Files\ma-config.com\Drivers\driverhardwarev2x64.sys (driverhardwarev2x64) .(.CybelSoft - Driver NT Ma-Config.com.) - LEGACY_DRIVERHARDWAREV2X64 O64 - Services: CurCS - 20/11/2010 - C:\Windows\system32\drivers\dxgkrnl.sys (DXGKrnl) .(.Microsoft Corporation - DirectX Graphics Kernel.) - LEGACY_DXGKRNL O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\DRIVERS\elxstor.sys (elxstor) .(.Emulex - Storport Miniport Driver for LightPulse HBA.) - LEGACY_ELXSTOR O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\Drivers\fastfat.sys (fastfat) .(.Microsoft Corporation - Fast FAT File System Driver.) - LEGACY_FASTFAT O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\fileinfo.sys (FileInfo) .(.Microsoft Corporation - FileInfo Filter Driver.) - LEGACY_FILEINFO O64 - Services: CurCS - 20/11/2010 - C:\Windows\system32\drivers\fltmgr.sys (FltMgr) .(.Microsoft Corporation - Gestionnaire de filtres de système de fichi.) - LEGACY_FLTMGR O64 - Services: CurCS - 24/01/2013 - C:\Windows\system32\drivers\fvevol.sys (fvevol) .(.Microsoft Corporation - BitLocker Drive Encryption Driver.) - LEGACY_FVEVOL O64 - Services: CurCS - 20/11/2010 - C:\Windows\System32\drivers\HpSAMD.sys (HpSAMD) .(.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Drive.) - LEGACY_HPSAMD O64 - Services: CurCS - 20/11/2010 - C:\Windows\system32\drivers\http.sys (HTTP) .(.Microsoft Corporation - HTTP Pile du protocole.) - LEGACY_HTTP O64 - Services: CurCS - 20/11/2010 - C:\Windows\system32\drivers\hwpolicy.sys (hwpolicy) .(.Microsoft Corporation - Hardware Policy Driver.) - LEGACY_HWPOLICY O64 - Services: CurCS - 11/03/2011 - C:\Windows\System32\drivers\iaStorV.sys (iaStorV) .(.Intel Corporation - Intel Matrix Storage Manager driver - x64.) - LEGACY_IASTORV O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\DRIVERS\iirsp.sys (iirsp) .(.Intel Corp./ICP vortex GmbH - Intel/ICP Raid Storport Driver.) - LEGACY_IIRSP O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\intelide.sys (intelide) .(.Microsoft Corporation - Intel PCI IDE Driver.) - LEGACY_INTELIDE O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\ipnat.sys (IPNAT) .(.Microsoft Corporation - IP Network Address Translator.) - LEGACY_IPNAT O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\isapnp.sys (isapnp) .(.Microsoft Corporation - Pilote de bus PNP ISA.) - LEGACY_ISAPNP O64 - Services: CurCS - 02/06/2012 - C:\Windows\System32\Drivers\ksecdd.sys (KSecDD) .(.Microsoft Corporation - Kernel Security Support Provider Interface.) - LEGACY_KSECDD O64 - Services: CurCS - 02/06/2012 - C:\Windows\System32\Drivers\ksecpkg.sys (KSecPkg) .(.Microsoft Corporation - Kernel Security Support Provider Interface.) - LEGACY_KSECPKG O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\DRIVERS\lltdio.sys (lltdio) .(.Microsoft Corporation - Link-Layer Topology Mapper I/O Driver.) - LEGACY_LLTDIO O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\DRIVERS\lsi_fc.sys (LSI_FC) .(.LSI Corporation - LSI Fusion-MPT FC Driver (StorPort).) - LEGACY_LSI_FC O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\DRIVERS\lsi_sas.sys (LSI_SAS) .(.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) - LEGACY_LSI_SAS O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\DRIVERS\lsi_sas2.sys (LSI_SAS2) .(.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) - LEGACY_LSI_SAS2 O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\DRIVERS\lsi_scsi.sys (LSI_SCSI) .(.LSI Corporation - LSI Fusion-MPT SCSI Driver (StorPort).) - LEGACY_LSI_SCSI O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\luafv.sys (luafv) .(.Microsoft Corporation - Pilote de filtre de virtualisation de fichi.) - LEGACY_LUAFV O64 - Services: CurCS - 02/01/2008 - C:\Windows\system32\drivers\LUMDriver.sys (LUMDriver) .(.IBM - LUM Runtime.) - LEGACY_LUMDRIVER O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\DRIVERS\megasas.sys (megasas) .(.LSI Corporation - MEGASAS RAID Controller Driver for Windows.) - LEGACY_MEGASAS O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\DRIVERS\MegaSR.sys (MegaSR) .(.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) - LEGACY_MEGASR O64 - Services: CurCS - 20/11/2010 - C:\Windows\system32\drivers\mountmgr.sys (mountmgr) .(.Microsoft Corporation - Gestionnaire des points de montage.) - LEGACY_MOUNTMGR O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\FirewallAPI.dll (mpsdrv) .(.Microsoft Corporation - API du Pare-feu Windows.) - LEGACY_MPSDRV O64 - Services: CurCS - 20/11/2010 - C:\Windows\system32\webclnt.dll (MRxDAV) .(.Microsoft Corporation - Fichier DLL du service DAV pour le Web.) - LEGACY_MRXDAV O64 - Services: CurCS - 20/11/2010 - C:\Windows\system32\wkssvc.dll (mrxsmb) .(.Microsoft Corporation - DLL du service Station de travail.) - LEGACY_MRXSMB O64 - Services: CurCS - 20/11/2010 - C:\Windows\system32\wkssvc.dll (mrxsmb10) .(.Microsoft Corporation - DLL du service Station de travail.) - LEGACY_MRXSMB10 O64 - Services: CurCS - 20/11/2010 - C:\Windows\system32\wkssvc.dll (mrxsmb20) .(.Microsoft Corporation - DLL du service Station de travail.) - LEGACY_MRXSMB20 O64 - Services: CurCS - 20/11/2010 - C:\Windows\System32\drivers\msahci.sys (msahci) .(.Microsoft Corporation - MS AHCI 1.0 Standard Driver.) - LEGACY_MSAHCI O64 - Services: CurCS - 20/11/2010 - C:\Windows\System32\drivers\msdsm.sys (msdsm) .(.Microsoft Corporation - Module spécifique de périphériques Microsof.) - LEGACY_MSDSM O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\msisadrv.sys (msisadrv) .(.Microsoft Corporation - ISA Driver.) - LEGACY_MSISADRV O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\mup.sys (Mup) .(.Microsoft Corporation - Multiple UNC Provider Driver.) - LEGACY_MUP O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\DRIVERS\nwifi.sys (NativeWifiP) .(.Microsoft Corporation - Pilote de miniport WiFi natif.) - LEGACY_NATIVEWIFIP O64 - Services: CurCS - 22/08/2012 - C:\Windows\system32\drivers\ndis.sys (NDIS) .(.Microsoft Corporation - Pilote NDIS 6.20.) - LEGACY_NDIS O64 - Services: CurCS - 20/11/2010 - C:\Windows\System32\DRIVERS\ndisuio.sys (Ndisuio) .(.Microsoft Corporation - Pilote d’E/S du mode utilisateur NDIS.) - LEGACY_NDISUIO O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\DRIVERS\netbios.sys (NetBIOS) .(.Microsoft Corporation - NetBIOS interface driver.) - LEGACY_NETBIOS O64 - Services: CurCS - 20/11/2010 - C:\Windows\system32\drivers\netbt.sys (NetBT) .(.Microsoft Corporation - MBT Transport driver.) - LEGACY_NETBT O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\DRIVERS\nfrd960.sys (nfrd960) .(.IBM Corporation - IBM ServeRAID Controller Driver.) - LEGACY_NFRD960 O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\nsiproxy.sys (nsiproxy) .(.Microsoft Corporation - NSI Proxy.) - LEGACY_NSIPROXY O64 - Services: CurCS - 11/03/2011 - C:\Windows\System32\drivers\nvraid.sys (nvraid) .(.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) - LEGACY_NVRAID O64 - Services: CurCS - 11/03/2011 - C:\Windows\System32\drivers\nvstor.sys (nvstor) .(.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) - LEGACY_NVSTOR O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\pciide.sys (pciide) .(.Microsoft Corporation - Generic PCI IDE Bus Driver.) - LEGACY_PCIIDE O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\pcw.sys (pcw) .(.Microsoft Corporation - Performance Counters for Windows Driver.) - LEGACY_PCW O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\peauth.sys (PEAUTH) .(.Microsoft Corporation - Protected Environment Authentication and Au.) - LEGACY_PEAUTH O64 - Services: CurCS - 20/11/2010 - C:\Windows\System32\drivers\pacer.sys (Psched) .(.Microsoft Corporation - Planificateur de paquets QoS.) - LEGACY_PSCHED O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\DRIVERS\ql2300.sys (ql2300) .(.QLogic Corporation - QLogic Fibre Channel Stor Miniport Driver.) - LEGACY_QL2300 O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\DRIVERS\ql40xx.sys (ql40xx) .(.QLogic Corporation - QLogic iSCSI Storport Miniport Driver.) - LEGACY_QL40XX O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\qwavedrv.sys (QWAVEdrv) .(.Microsoft Corporation - Pilote du support de Microsoft Quality Wind.) - LEGACY_QWAVEDRV O64 - Services: CurCS - 20/11/2010 - C:\Windows\system32\wkssvc.dll (rdbss) .(.Microsoft Corporation - DLL du service Station de travail.) - LEGACY_RDBSS O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\DRIVERS\RDPCDD.sys (RDPCDD) .(.Microsoft Corporation - RDP Miniport.) - LEGACY_RDPCDD O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\RDPENCDD.sys (RDPENCDD) .(.Microsoft Corporation - RDP Encoder Miniport.) - LEGACY_RDPENCDD O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\RdpRefMp.sys (RDPREFMP) .(.Microsoft Corporation - RDP Reflector Driver Miniport.) - LEGACY_RDPREFMP O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\DRIVERS\rspndr.sys (rspndr) .(.Microsoft Corporation - Link-Layer Topology Responder Driver for ND.) - LEGACY_RSPNDR O64 - Services: CurCS - 20/11/2010 - C:\Windows\System32\drivers\sbp2port.sys (sbp2port) .(.Microsoft Corporation - SBP-2 Protocol Driver.) - LEGACY_SBP2PORT O64 - Services: CurCS - 10/06/2009 - C:\Windows\System32\Drivers\secdrv.sys (secdrv) .(.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) - LEGACY_SECDRV O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\DRIVERS\SiSRaid2.sys (SiSRaid2) .(.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) - LEGACY_SISRAID2 O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\DRIVERS\sisraid4.sys (SiSRaid4) .(.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) - LEGACY_SISRAID4 O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\Drivers\spldr.sys (spldr) .(.Microsoft Corporation - loader for security processor.) - LEGACY_SPLDR O64 - Services: CurCS - ??\??\???? - Pas de propriétaire (sptd) .(...) - LEGACY_SPTD O64 - Services: CurCS - 20/11/2010 - C:\Windows\system32\srvsvc.dll (srv) .(.Microsoft Corporation - DLL du service Serveur.) - LEGACY_SRV O64 - Services: CurCS - 20/11/2010 - C:\Windows\system32\srvsvc.dll (srv2) .(.Microsoft Corporation - DLL du service Serveur.) - LEGACY_SRV2 O64 - Services: CurCS - 29/04/2011 - C:\Windows\System32\DRIVERS\srvnet.sys (srvnet) .(.Microsoft Corporation - Server Network driver.) - LEGACY_SRVNET O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\DRIVERS\stexstor.sys (stexstor) .(.Promise Technology - Promise SuperTrak EX Series Driver for Win.) - LEGACY_STEXSTOR O64 - Services: CurCS - 20/11/2010 - C:\Windows\system32\tcpipcfg.dll (Tcpip) .(.Microsoft Corporation - Objets de configuration du réseau.) - LEGACY_TCPIP O64 - Services: CurCS - 03/10/2012 - C:\Windows\System32\drivers\tcpipreg.sys (tcpipreg) .(.Microsoft Corporation - TCP/IP Registry Compatibility Driver.) - LEGACY_TCPIPREG O64 - Services: CurCS - 20/11/2010 - C:\Windows\system32\tcpipcfg.dll (tdx) .(.Microsoft Corporation - Objets de configuration du réseau.) - LEGACY_TDX O64 - Services: CurCS - 20/11/2010 - C:\Windows\System32\DRIVERS\udfs.sys (udfs) .(.Microsoft Corporation - UDF File System Driver.) - LEGACY_UDFS O64 - Services: CurCS - 15/07/2010 - C:\Program Files (x86)\YouWave_Android\vb\VBoxDrv.sys (VBoxDrv) .(.Oracle Corporation - VirtualBox Support Driver.) - LEGACY_VBOXDRV O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\drivers\vga.sys (VgaSave) .(.Microsoft Corporation - VGA/Super VGA Video Driver.) - LEGACY_VGASAVE O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\drivers\viaide.sys (viaide) .(.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) - LEGACY_VIAIDE O64 - Services: CurCS - 20/11/2010 - C:\Windows\system32\drivers\volmgrx.sys (volmgrx) .(.Microsoft Corporation - Pilote d’extension du gestionnaire de volum.) - LEGACY_VOLMGRX O64 - Services: CurCS - 20/11/2010 - C:\Windows\System32\drivers\volsnap.sys (volsnap) .(.Microsoft Corporation - Pilote de cliché instantané du volume.) - LEGACY_VOLSNAP O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\DRIVERS\vsmraid.sys (vsmraid) .(.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) - LEGACY_VSMRAID O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\DRIVERS\vwififlt.sys (vwififlt) .(.Microsoft Corporation - Virtual WiFi Filter Driver.) - LEGACY_VWIFIFLT O64 - Services: CurCS - 14/07/2009 - C:\Windows\system32\rascfg.dll (Wanarpv6) .(.Microsoft Corporation - Objets de configuration RAS.) - LEGACY_WANARPV6 O64 - Services: CurCS - 26/07/2012 - C:\Windows\System32\drivers\Wdf01000.sys (Wdf01000) .(.Microsoft Corporation - Runtime de l’infrastructure de pilotes en m.) - LEGACY_WDF01000 O64 - Services: CurCS - 14/07/2009 - C:\Windows\System32\DRIVERS\wfplwf.sys (WfpLwf) .(.Microsoft Corporation - WFP NDIS 6.20 Lightweight Filter Driver.) - LEGACY_WFPLWF O64 - Services: CurCS - ??\??\???? - Pas de propriétaire (WPRO_40_1340) .(...) - LEGACY_WPRO_40_1340 O64 - Services: CurCS - 26/07/2012 - C:\Windows\System32\drivers\WudfPf.sys (WudfPf) .(.Microsoft Corporation - Windows Driver Foundation - User-mode Drive.) - LEGACY_WUDFPF ~ Legacy: 127 Scanned in 00mn 01s ---\\ File Associations Shell Spawning (O67) O67 - Shell Spawning: <.bat> [HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.cpl> [HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe O67 - Shell Spawning: <.cmd> [HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.com> [HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.evt> [HKLM\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Observateur d’événements.) -- C:\Windows\System32\eventvwr.exe O67 - Shell Spawning: <.exe> [HKLM\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.html> [HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe O67 - Shell Spawning: <.js> [HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\WScript.exe O67 - Shell Spawning: <.reg> [HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe O67 - Shell Spawning: <.html> [HKCU\..\open\Command] (.Not Key.) O67 - Shell Spawning: <.bat> [HKCR\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.cpl> [HKCR\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe O67 - Shell Spawning: <.cmd> [HKCR\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.com> [HKCR\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.evt> [HKCR\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Observateur d’événements.) -- C:\Windows\System32\eventvwr.exe O67 - Shell Spawning: <.exe> [HKCR\..\open\Command] (...) -- "%1" %* O67 - Shell Spawning: <.html> [HKCR\..\open\Command] (.Google Inc. - Google Chrome.) -- C:\Users\Alex4\AppData\Local\Google\Chrome\Application\chrome.exe O67 - Shell Spawning: <.js> [HKCR\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\WScript.exe O67 - Shell Spawning: <.reg> [HKCR\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe ~ FASS Keys: 19 Scanned in 00mn 00s ---\\ Start Menu Internet (O68) O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Users\Alex4\AppData\Local\Google\Chrome\Application\chrome.exe O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe ~ Keys: Scanned in 00mn 00s ---\\ Search Browser Infection (O69) O69 - SBI: SearchScopes [HKCU] {1B6C00EC-246A-42FA-B97E-D658FE29CE38} [DefaultScope] - (Web Search) - http://startsear.ch O69 - SBI: SearchScopes [HKCU] {6A1806CD-94D4-4689-BA73-E35EA1EA9990} - (Google) - http://www.google.com O69 - SBI: SearchScopes [HKCU] {8B18586B-66BF-4686-B3FE-8434D1212E91} - (Bing) - http://www.bing.com O69 - SBI: SearchScopes [HKCU] {95B7759C-8C7F-4BF1-B163-73684A933233} - (AVG Secure Search) - http://isearch.avg.com =>Toolbar.AVGSearch O69 - SBI: SearchScopes [HKCU] {96bd48dd-741b-41ae-ac4a-aff96ba00f7e} - (Search) - http://www.bigseekpro.com O69 - SBI: SearchScopes [HKCU] {CFF4DB9B-135F-47c0-9269-B4C6572FD61A} - () - http://mystart.incredibar.com =>Adware.IncrediBar O69 - SBI: SearchScopes [HKUS\.DEFAULT] {6A1806CD-94D4-4689-BA73-E35EA1EA9990} - (Google) - http://www.google.com O69 - SBI: SearchScopes [HKUS\.DEFAULT] {96bd48dd-741b-41ae-ac4a-aff96ba00f7e} [DefaultScope] - (Search) - http://www.bigseekpro.com O69 - SBI: SearchScopes [HKUS\.DEFAULT] {ED24783D-6BA8-46FF-9BDB-CF076900E094} - (AVG Secure Search) - http://search.avg.com =>Toolbar.AVGSearch O69 - SBI: SearchScopes [HKUS\S-1-5-18] {6A1806CD-94D4-4689-BA73-E35EA1EA9990} - (Google) - http://www.google.com O69 - SBI: SearchScopes [HKUS\S-1-5-18] {96bd48dd-741b-41ae-ac4a-aff96ba00f7e} [DefaultScope] - (Search) - http://www.bigseekpro.com O69 - SBI: SearchScopes [HKUS\S-1-5-18] {ED24783D-6BA8-46FF-9BDB-CF076900E094} - (AVG Secure Search) - http://search.avg.com =>Toolbar.AVGSearch ~ Keys: Scanned in 00mn 00s ---\\ Crack & Keygen Files (O82) C:\Program Files\Cracked Steam\SupportSoftware\fav.reg C:\Program Files (x86)\Thomas Wright Consulting\Software License Key Generator Demo\Software KeyGen Demo.exe C:\Users\Alex4\AppData\Roaming\.minecraft\Minecraft Beta Cracked.exe C:\Users\Alex4\AppData\Roaming\BitTorrent\3D.Sex.Villa.v11.00-cracked.rar.torrent C:\Users\Alex4\AppData\Roaming\BitTorrent\x-force ad2013 aio keygen.rar.torrent C:\Users\Alex4\Desktop\3ds max design 2013 64 bits french\x-force ad2013 aio keygen.rar C:\Users\Alex4\Desktop\Vidéothèque\Jeux\keygen.exe C:\Users\Alex4\Desktop\Vidéothèque\Minecraft\Minecraft_Beta_Cracked_v1.8.1.exe C:\Users\Alex4\Desktop\Vidéothèque\Minecraft\Minecraft_Beta_Cracked_v1.8.1.zip C:\Users\Alex4\Documents\Vuze Downloads\CoD1\keygen.exe C:\Users\Alex4\Documents\Vuze Downloads\Left4Dead (PC) (ENG)(NON-STEAM) (ALREADY CRACKED) (DIRECT PLAY) [blaze69]\dxwebsetup.exe C:\Users\Alex4\Documents\Vuze Downloads\Left4Dead (PC) (ENG)(NON-STEAM) (ALREADY CRACKED) (DIRECT PLAY) [blaze69]\Left4Dead\Left4Dead\hl2.exe C:\Users\Alex4\Documents\Vuze Downloads\Left4Dead (PC) (ENG)(NON-STEAM) (ALREADY CRACKED) (DIRECT PLAY) [blaze69]\Left4Dead\Left4Dead\left4dead\downloads\43de68d7.dat C:\Users\Alex4\Documents\Vuze Downloads\Left4Dead (PC) (ENG)(NON-STEAM) (ALREADY CRACKED) (DIRECT PLAY) [blaze69]\Left4Dead\Left4Dead\left4dead\downloads\f2baaac4.dat C:\Users\Alex4\Documents\Vuze Downloads\Left4Dead (PC) (ENG)(NON-STEAM) (ALREADY CRACKED) (DIRECT PLAY) [blaze69]\Left4Dead\Left4Dead\left4dead\resource\closecaption_english.dat C:\Users\Alex4\Documents\Vuze Downloads\Left4Dead (PC) (ENG)(NON-STEAM) (ALREADY CRACKED) (DIRECT PLAY) [blaze69]\Left4Dead\Left4Dead\left4dead\resource\closecaption_russian.dat C:\Users\Alex4\Documents\Vuze Downloads\Left4Dead (PC) (ENG)(NON-STEAM) (ALREADY CRACKED) (DIRECT PLAY) [blaze69]\Left4Dead\Left4Dead\left4dead.exe C:\Users\Alex4\Documents\Vuze Downloads\Left4Dead (PC) (ENG)(NON-STEAM) (ALREADY CRACKED) (DIRECT PLAY) [blaze69]\Left4Dead\Left4Dead\makeDesktopIcon.exe C:\Users\Alex4\Documents\Vuze Downloads\Left4Dead (PC) (ENG)(NON-STEAM) (ALREADY CRACKED) (DIRECT PLAY) [blaze69]\Left4Dead\Left4Dead\unins000.dat C:\Users\Alex4\Documents\Vuze Downloads\torrents\x-force ad2013 aio keygen.rar.torrent C:\Users\Alex4\Downloads\Earth-Screensaver\Earth-screensaver\Software_KeyGen_Demo.exe11.lnk C:\Users\Alex4\Downloads\Earth-Screensaver\faake wbm\Brothersoft_downloader_For_KeyGen_Software_License_Key_Generator.exe C:\Users\Alex4\Downloads\Earth-Screensaver\faake wbm\KeyGen Software License Key Generator.exe C:\Users\Alex4\Downloads\Fake Webcam 6.1 + Keygen\Fake Webcam 6.1 + Keygen\setup.exe C:\Program Files\Cracked Steam\SupportSoftware\fav.reg C:\Program Files (x86)\Thomas Wright Consulting\Software License Key Generator Demo\Software KeyGen Demo.exe C:\Users\Alex4\AppData\Roaming\.minecraft\Minecraft Beta Cracked.exe C:\Users\Alex4\AppData\Roaming\BitTorrent\3D.Sex.Villa.v11.00-cracked.rar.torrent C:\Users\Alex4\AppData\Roaming\BitTorrent\x-force ad2013 aio keygen.rar.torrent C:\Users\Alex4\Desktop\3ds max design 2013 64 bits french\x-force ad2013 aio keygen.rar C:\Users\Alex4\Desktop\Vidéothèque\Jeux\keygen.exe C:\Users\Alex4\Desktop\Vidéothèque\Minecraft\Minecraft_Beta_Cracked_v1.8.1.exe C:\Users\Alex4\Desktop\Vidéothèque\Minecraft\Minecraft_Beta_Cracked_v1.8.1.zip C:\Users\Alex4\Documents\Vuze Downloads\CoD1\keygen.exe C:\Users\Alex4\Documents\Vuze Downloads\Left4Dead (PC) (ENG)(NON-STEAM) (ALREADY CRACKED) (DIRECT PLAY) [blaze69]\dxwebsetup.exe C:\Users\Alex4\Documents\Vuze Downloads\Left4Dead (PC) (ENG)(NON-STEAM) (ALREADY CRACKED) (DIRECT PLAY) [blaze69]\Left4Dead\Left4Dead\hl2.exe C:\Users\Alex4\Documents\Vuze Downloads\Left4Dead (PC) (ENG)(NON-STEAM) (ALREADY CRACKED) (DIRECT PLAY) [blaze69]\Left4Dead\Left4Dead\left4dead\downloads\43de68d7.dat C:\Users\Alex4\Documents\Vuze Downloads\Left4Dead (PC) (ENG)(NON-STEAM) (ALREADY CRACKED) (DIRECT PLAY) [blaze69]\Left4Dead\Left4Dead\left4dead\downloads\f2baaac4.dat C:\Users\Alex4\Documents\Vuze Downloads\Left4Dead (PC) (ENG)(NON-STEAM) (ALREADY CRACKED) (DIRECT PLAY) [blaze69]\Left4Dead\Left4Dead\left4dead\resource\closecaption_english.dat C:\Users\Alex4\Documents\Vuze Downloads\Left4Dead (PC) (ENG)(NON-STEAM) (ALREADY CRACKED) (DIRECT PLAY) [blaze69]\Left4Dead\Left4Dead\left4dead\resource\closecaption_russian.dat C:\Users\Alex4\Documents\Vuze Downloads\Left4Dead (PC) (ENG)(NON-STEAM) (ALREADY CRACKED) (DIRECT PLAY) [blaze69]\Left4Dead\Left4Dead\left4dead.exe C:\Users\Alex4\Documents\Vuze Downloads\Left4Dead (PC) (ENG)(NON-STEAM) (ALREADY CRACKED) (DIRECT PLAY) [blaze69]\Left4Dead\Left4Dead\makeDesktopIcon.exe C:\Users\Alex4\Documents\Vuze Downloads\Left4Dead (PC) (ENG)(NON-STEAM) (ALREADY CRACKED) (DIRECT PLAY) [blaze69]\Left4Dead\Left4Dead\unins000.dat C:\Users\Alex4\Documents\Vuze Downloads\torrents\x-force ad2013 aio keygen.rar.torrent C:\Users\Alex4\Downloads\Earth-Screensaver\Earth-screensaver\Software_KeyGen_Demo.exe11.lnk C:\Users\Alex4\Downloads\Earth-Screensaver\faake wbm\Brothersoft_downloader_For_KeyGen_Software_License_Key_Generator.exe C:\Users\Alex4\Downloads\Earth-Screensaver\faake wbm\KeyGen Software License Key Generator.exe C:\Users\Alex4\Downloads\Fake Webcam 6.1 + Keygen\Fake Webcam 6.1 + Keygen\setup.exe ~ Files: Scanned in 03mn 25s ---\\ Recherche des services démarrés par Svchost (O83) O83 - Search Svchost Services: AeLookupSvc (AeLookupSvc) . (.Microsoft Corporation - Service Expérience d’application.) -- C:\Windows\System32\aelupsvc.dll [72192] O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Service de propagation de certificats de cartes à puce Microsoft.) -- C:\Windows\System32\certprop.dll [80384] O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Service de propagation de certificats de cartes à puce Microsoft.) -- C:\Windows\System32\certprop.dll [80384] O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL du service Serveur.) -- C:\Windows\System32\srvsvc.dll [236032] O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Client de stratégie de groupe.) -- C:\Windows\System32\gpsvc.dll [777728] O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - Extension IKE.) -- C:\Windows\System32\ikeext.dll [853504] O83 - Search Svchost Services: AudioSrv (AudioSrv) . (.Microsoft Corporation - Service Audio Windows.) -- C:\Windows\System32\Audiosrv.dll [679424] O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gestionnaire de numérotation automatique d’accès distant.) -- C:\Windows\System32\rasauto.dll [99328] O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Gestionnaire de connexions d’accès distant.) -- C:\Windows\System32\rasmans.dll [344064] O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gestionnaire d’interface dynamique.) -- C:\Windows\System32\mprdim.dll [97792] O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Service de notification d’événements système (SENS).) -- C:\Windows\System32\sens.dll [64512] O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de l’application d’assistance à Microsoft NAT.) -- C:\Windows\System32\ipnathlp.dll [359424] O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de téléphonie Microsoft® Windows(TM).) -- C:\Windows\System32\tapisrv.dll [316928] O83 - Search Svchost Services: TermService (TermService) . (.Microsoft Corporation - Gestionnaire des connexions distantes du serveur hôte de session Burea.) -- C:\Windows\System32\termsrv.dll [680960] O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Agent de mise à jour automatique Windows Update.) -- C:\Windows\System32\wuaueng.dll [2428952] O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arrière-plan.) -- C:\Windows\System32\qmgr.dll [849920] O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\Windows\System32\shsvcs.dll [370688] O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service offrant une connectivité IPv6 sur un réseau IPv4..) -- C:\Windows\System32\iphlpsvc.dll [569344] O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - DLL de service d’ouverture de session secondaire.) -- C:\Windows\system32\seclogon.dll [30720] O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Service Informations d’application.) -- C:\Windows\System32\appinfo.dll [70656] O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Service de découverte iSCSI.) -- C:\Windows\System32\iscsiexe.dll [156672] O83 - Search Svchost Services: MMCSS (MMCSS) . (.Microsoft Corporation - Service Planificateur de classes multimédias.) -- C:\Windows\System32\mmcss.dll [67584] O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\System32\wbem\WMIsvc.dll [242688] O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Service Configuration des services Bureau à distance.) -- C:\Windows\System32\sessenv.dll [121856] O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - DLL du service Explorateur d’ordinateurs.) -- C:\Windows\System32\browser.dll [136704] O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Service EAPHost Microsoft.) -- C:\Windows\System32\eapsvc.dll [111104] O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Service du Planificateur de tâches.) -- C:\Windows\System32\schedsvc.dll [1110016] O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Service Gestion des clés.) -- C:\Windows\System32\kmsvc.dll [90624] O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Rapports et solutions aux problèmes.) -- C:\Windows\System32\wercplsupport.dll [84480] O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\System32\profsvc.dll [209920] O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - DLL du service des thèmes Windows Shell.) -- C:\Windows\System32\themeservice.dll [44544] O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - Service BDE.) -- C:\Windows\System32\bdesvc.dll [100864] ~ Services: 32 Scanned in 00mn 00s ---\\ Recherche particuliere à la racine de certains dossiers (O84) [MD5.11D50D2B85DA5AD06591C93431F98198] [SPRF][19/10/2010] (...) -- C:\Users\Alex4\AppData\Local\fusioncache.dat [93] [MD5.B3FDF6E7B0AECD48CA7E4921773FB606] [SPRF][27/12/2012] (...) -- C:\Users\Alex4\AppData\Local\Temp\7z920.exe [1110476] [MD5.757643BC07B40B7C31C070635EFEBD77] [SPRF][23/01/2012] (.Autodesk, Inc. - Autodesk component.) -- C:\Users\Alex4\AppData\Local\Temp\AcDeltree.exe [39336] [MD5.E351BDCE7B0C87F3663B3580C67A924B] [SPRF][16/08/2007] (...) -- C:\Users\Alex4\AppData\Local\Temp\aoe3-112-english.exe [22035449] [MD5.A7CB8962938A56017082561AEF50F3CA] [SPRF][16/08/2007] (...) -- C:\Users\Alex4\AppData\Local\Temp\aoe3x-104-english.exe [20721857] [MD5.B28C334C03CEE7C5E829C43AE75DAE5A] [SPRF][28/01/2013] (.Ask.com - AskIC Dynamic Link Library.) -- C:\Users\Alex4\AppData\Local\Temp\AskSLib.dll [248008] [MD5.4541335F712FBB52BA6A9FB593F77E76] [SPRF][21/05/2010] (.Hewlett-Packard - HP Help Updater.) -- C:\Users\Alex4\AppData\Local\Temp\HPHelpUpdater.exe [74808] [MD5.08AF557C8E6E74D7D92314F6B2C86273] [SPRF][12/02/2013] (...) -- C:\Users\Alex4\AppData\Local\Temp\i4jdel0.exe [4608] [MD5.DA824109369836BBD119AB499189C884] [SPRF][02/01/2013] (.Iminent - Iminent Setup.) -- C:\Users\Alex4\AppData\Local\Temp\IminentSetup.exe [831880] =>Adware.IMBooster [MD5.05FECA1B4B1F7F9D924191716AD3F0BA] [SPRF][27/12/2012] (.Pas de propriétaire - IncrediMail Installer.) -- C:\Users\Alex4\AppData\Local\Temp\incredibar_installer.exe [463184] =>Adware.IncrediBar [MD5.77DFB27D68CE46659A3D5E93410C0B75] [SPRF][27/12/2012] (.Babylon Ltd. - Babylon Client Setup.) -- C:\Users\Alex4\AppData\Local\Temp\MyBabylonTB_google_20120807.exe [899224] =>Toolbar.Babylon [MD5.3DE7C6D01B163FBBEDE001C3FEA49787] [SPRF][04/02/2011] (.Hewlett-Packard Company - Resource.) -- C:\Users\Alex4\AppData\Local\Temp\Resource.exe [88120] [MD5.7DB4F105F12A2B4D7EEE292A13078F14] [SPRF][01/01/2013] (...) -- C:\Users\Alex4\AppData\Local\Temp\SIntf16.dll [12305] [MD5.F07BA6F515E27C44183CD577B040A1F6] [SPRF][01/01/2013] (...) -- C:\Users\Alex4\AppData\Local\Temp\SIntf32.dll [20020] [MD5.DF25030A0D8C25C0509765BC719EED81] [SPRF][01/01/2013] (...) -- C:\Users\Alex4\AppData\Local\Temp\SIntfNT.dll [24748] [MD5.53490613D7362803ADAA9B9CD7D293F9] [SPRF][27/12/2012] (.Hewlett-Packard - Pas de description.) -- C:\Users\Alex4\AppData\Local\Temp\sp58915.exe [41580520] [MD5.3C325D6CF15F83F7E731415FA59E5744] [SPRF][09/12/2005] (...) -- C:\Users\Alex4\AppData\Local\Temp\standalonepatcher.exe [61440] [MD5.14727E7C7DEDAA1E2DD117BBD03262EF] [SPRF][09/01/2007] (...) -- C:\Users\Alex4\AppData\Local\Temp\standalonepatcherX.exe [61440] [MD5.CF023A4770C22079F8301692B380E164] [SPRF][27/12/2012] (...) -- C:\Users\Alex4\AppData\Local\Temp\temp.bat [444] [MD5.9491C7898B3E7FD2C02B9B6B7EC7E914] [SPRF][14/03/2013] (...) -- C:\Users\Alex4\AppData\Local\Temp\uninstallfic.bat [225] [MD5.239CB72E0605A43BF856BCD49712D1FA] [SPRF][27/09/2012] (.Hewlett-Packard Company - HP Support Assistant Uninstaller.) -- C:\Users\Alex4\AppData\Local\Temp\UninstallHPSA.exe [114080] [MD5.FF6E0179F60F08B648AEBD597EF0CAF1] [SPRF][27/12/2012] (.Somoto Ltd. - FilesFrog Update Checker.) -- C:\Users\Alex4\AppData\Local\Temp\UpdateCheckerSetup.exe [260040] =>Adware.MegaSearch [MD5.33B5ED65D552A8D89F6245C9E6E6286F] [SPRF][02/03/2013] (...) -- C:\Users\Alex4\AppData\Local\Temp\vmkmmtmi.dll [175104] [MD5.FBAB280D0CAC5E21C72F0A1A7B5B9608] [SPRF][24/05/2006] (.Macrovision Corporation - Setup.exe.) -- C:\Users\Alex4\AppData\Local\Temp\_is7B40.exe [455600] [MD5.D41D8CD98F00B204E9800998ECF8427E] [SPRF][21/04/2013] (...) -- C:\Users\Alex4\AppData\LocalLow\prvlcl.dat [0] [MD5.6B55E83B87D051560D6FF1556204C9E2] [SPRF][29/08/2011] (...) -- C:\Users\Alex4\AppData\Roaming\Alex4log.dat [14250] [MD5.2D86E5822C077D55C48FA37162CF239F] [SPRF][05/03/2013] (...) -- C:\Users\Alex4\AppData\Roaming\wklnhst.dat [5870] [MD5.75AD6FC88EBE2253E3FDB4B612B791D4] [SPRF][27/12/2012] (.Pas de propriétaire - Powered by BetterInstaller.) -- C:\Users\Alex4\Desktop\daranaxp_downloader_by_daranaxp.exe [162520] [MD5.8692DEA1C02BDD131D1D3DA0B6505B6C] [SPRF][19/04/2010] (.Nikolay.IT - RatioMaster.NET.) -- C:\Users\Alex4\Desktop\RatioMaster.NET.exe [260608] [MD5.BE84217603A7E46A9EE2DB281A1A3E7D] [SPRF][18/05/2010] (...) -- C:\Program Files (x86)\BitTorrent-6.4d.exe [2925160] [MD5.61BB8E3CE1BC7415D67505A838B510D6] [SPRF][27/12/2010] (.Apple Inc. - iTunes Installer.) -- C:\Program Files (x86)\iTunes64Setup.exe [82812200] [MD5.79CA0CD09F089FC68F5393AE2EFF64AB] [SPRF][27/12/2010] (.Apple Inc. - iTunes Installer.) -- C:\Program Files (x86)\itunes_itunes_10.1.1_francais_11140(2).exe [81876264] [MD5.E5880BD58A64C3C1D439806AE140BAE5] [SPRF][29/08/2010] (.BitTorrent, Inc. - µTorrent.) -- C:\Program Files (x86)\uTorrent.exe [328568] ~ Files: Scanned in 00mn 07s ---\\ Firewall Active Exception List (FirewallRules) (O87) O87 - FAEL: "SNMPTRAP-In-UDP" | In - Public - P17 - FALSE | .(.Microsoft Corporation - Interruption SNMP.) -- C:\Windows\system32\snmptrap.exe O87 - FAEL: "SNMPTRAP-In-UDP-NoScope" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Interruption SNMP.) -- C:\Windows\system32\snmptrap.exe O87 - FAEL: "WMP-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe O87 - FAEL: "WMP-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe O87 - FAEL: "WMP-Out-TCP" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe O87 - FAEL: "WMPNSS-QWave-In-UDP-NoScope" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe O87 - FAEL: "WMPNSS-QWave-Out-UDP-NoScope" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe O87 - FAEL: "WMPNSS-QWave-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe O87 - FAEL: "WMPNSS-QWave-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe O87 - FAEL: "WMPNSS-WMP-In-UDP-NoScope" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe O87 - FAEL: "WMPNSS-WMP-Out-UDP-NoScope" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe O87 - FAEL: "WMPNSS-WMP-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe O87 - FAEL: "WMPNSS-In-UDP-NoScope" |In - Domain - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.) O87 - FAEL: "WMPNSS-Out-UDP-NoScope" |Out - Domain - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.) O87 - FAEL: "WMPNSS-In-TCP-NoScope" |In - Domain - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.) O87 - FAEL: "WMPNSS-Out-TCP-NoScope" |Out - Domain - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.) O87 - FAEL: "WMPNSS-QWave-In-UDP" | In - Public - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe O87 - FAEL: "WMPNSS-QWave-Out-UDP" | Out - Public - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe O87 - FAEL: "WMPNSS-QWave-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe O87 - FAEL: "WMPNSS-QWave-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe O87 - FAEL: "WMPNSS-SSDPSrv-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe O87 - FAEL: "WMPNSS-SSDPSrv-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe O87 - FAEL: "WMPNSS-WMP-In-UDP" | In - Public - P17 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe O87 - FAEL: "WMPNSS-WMP-Out-UDP" | Out - Public - P17 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe O87 - FAEL: "WMPNSS-WMP-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe O87 - FAEL: "WMPNSS-In-UDP" |In - Public - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.) O87 - FAEL: "WMPNSS-Out-UDP" |Out - Public - P17 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.) O87 - FAEL: "WMPNSS-In-TCP" |In - Public - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.) O87 - FAEL: "WMPNSS-Out-TCP" |Out - Public - P6 - FALSE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.) O87 - FAEL: "WMPNSS-UPnP-Out-TCP" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe O87 - FAEL: "Microsoft-Windows-HomeGroup-ProvSvc-TCP3587-In" | In - Private - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe O87 - FAEL: "Microsoft-Windows-HomeGroup-ProvSvc-TCP3587-Out" | Out - Private - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe O87 - FAEL: "Microsoft-Windows-HomeGroup-ProvSvc-UDP3540-In" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe O87 - FAEL: "Microsoft-Windows-HomeGroup-ProvSvc-UDP3540-Out" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe O87 - FAEL: "PNRPMNRS-PNRP-In-UDP" | In - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe O87 - FAEL: "PNRPMNRS-PNRP-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe O87 - FAEL: "PNRPMNRS-SSDPSrv-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe O87 - FAEL: "PNRPMNRS-SSDPSrv-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe O87 - FAEL: "RVM-VDS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Service de disque virtuel.) -- C:\Windows\system32\vds.exe O87 - FAEL: "RVM-VDSLDR-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Virtual Disk Service Loader.) -- C:\Windows\system32\vdsldr.exe O87 - FAEL: "RVM-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe O87 - FAEL: "RVM-VDS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Service de disque virtuel.) -- C:\Windows\system32\vds.exe O87 - FAEL: "RVM-VDSLDR-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Virtual Disk Service Loader.) -- C:\Windows\system32\vdsldr.exe O87 - FAEL: "RVM-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe O87 - FAEL: "Collab-P2PHost-In-TCP" | In - None - P6 - TRUE | .(.Microsoft Corporation - Voisinage immédiat.) -- C:\Windows\system32\p2phost.exe O87 - FAEL: "Collab-P2PHost-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Voisinage immédiat.) -- C:\Windows\system32\p2phost.exe O87 - FAEL: "Collab-P2PHost-WSD-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Voisinage immédiat.) -- C:\Windows\system32\p2phost.exe O87 - FAEL: "Collab-P2PHost-WSD-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Voisinage immédiat.) -- C:\Windows\system32\p2phost.exe O87 - FAEL: "Collab-PNRP-In-UDP" | In - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe O87 - FAEL: "Collab-PNRP-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe O87 - FAEL: "Collab-PNRP-SSDPSrv-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe O87 - FAEL: "Collab-PNRP-SSDPSrv-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe O87 - FAEL: "FPS-SpoolSvc-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Application sous-système spouleur.) -- C:\Windows\system32\spoolsv.exe O87 - FAEL: "FPS-SpoolSvc-In-TCP" | In - Public - P6 - TRUE | .(.Microsoft Corporation - Application sous-système spouleur.) -- C:\Windows\system32\spoolsv.exe O87 - FAEL: "FPS-LLMNR-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe O87 - FAEL: "FPS-LLMNR-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe O87 - FAEL: "CoreNet-DHCP-In" | In - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe O87 - FAEL: "CoreNet-DHCP-Out" | Out - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe O87 - FAEL: "CoreNet-DHCPV6-In" | In - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe O87 - FAEL: "CoreNet-DHCPV6-Out" | Out - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe O87 - FAEL: "CoreNet-Teredo-In" | In - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe O87 - FAEL: "CoreNet-Teredo-Out" | Out - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe O87 - FAEL: "CoreNet-IPHTTPS-Out" | Out - None - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe O87 - FAEL: "CoreNet-GP-Out-TCP" | Out - Domain - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe O87 - FAEL: "CoreNet-DNS-Out-UDP" | Out - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe O87 - FAEL: "CoreNet-GP-LSASS-Out-TCP" | Out - Domain - P6 - TRUE | .(.Microsoft Corporation - Local Security Authority Process.) -- C:\Windows\system32\lsass.exe O87 - FAEL: "PerfLogsAlerts-PLASrv-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Performance Logs and Alerts DCOM Server.) -- C:\Windows\system32\plasrv.exe O87 - FAEL: "PerfLogsAlerts-DCOM-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe O87 - FAEL: "PerfLogsAlerts-PLASrv-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Performance Logs and Alerts DCOM Server.) -- C:\Windows\system32\plasrv.exe O87 - FAEL: "PerfLogsAlerts-DCOM-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe O87 - FAEL: "MsiScsi-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe O87 - FAEL: "MsiScsi-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe O87 - FAEL: "MsiScsi-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe O87 - FAEL: "MsiScsi-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe O87 - FAEL: "WMI-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe O87 - FAEL: "WMI-WINMGMT-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe O87 - FAEL: "WMI-WINMGMT-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe O87 - FAEL: "WMI-ASYNC-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Sink to receive asynchronous callbacks for WMI client application.) -- C:\Windows\system32\wbem\unsecapp.exe O87 - FAEL: "WMI-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe O87 - FAEL: "WMI-WINMGMT-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe O87 - FAEL: "WMI-WINMGMT-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe O87 - FAEL: "WMI-ASYNC-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Sink to receive asynchronous callbacks for WMI client application.) -- C:\Windows\system32\wbem\unsecapp.exe O87 - FAEL: "NETDIS-SSDPSrv-In-UDP-Active" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe O87 - FAEL: "NETDIS-SSDPSrv-Out-UDP-Active" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe O87 - FAEL: "NETDIS-UPnP-Out-TCP-Active" | Out - Private - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe O87 - FAEL: "NETDIS-FDPHOST-In-UDP-Active" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe O87 - FAEL: "NETDIS-FDPHOST-Out-UDP-Active" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe O87 - FAEL: "NETDIS-LLMNR-In-UDP-Active" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe O87 - FAEL: "NETDIS-LLMNR-Out-UDP-Active" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe O87 - FAEL: "NETDIS-FDRESPUB-WSD-In-UDP-Active" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe O87 - FAEL: "NETDIS-FDRESPUB-WSD-Out-UDP-Active" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe O87 - FAEL: "NETDIS-SSDPSrv-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe O87 - FAEL: "NETDIS-SSDPSrv-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe O87 - FAEL: "NETDIS-UPnP-Out-TCP" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe O87 - FAEL: "NETDIS-FDPHOST-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe O87 - FAEL: "NETDIS-FDPHOST-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe O87 - FAEL: "NETDIS-LLMNR-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe O87 - FAEL: "NETDIS-LLMNR-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe O87 - FAEL: "NETDIS-FDRESPUB-WSD-In-UDP" | In - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe O87 - FAEL: "NETDIS-FDRESPUB-WSD-Out-UDP" | Out - Domain - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe O87 - FAEL: "RemoteSvcAdmin-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Applications Services et Contrôleur.) -- C:\Windows\system32\services.exe O87 - FAEL: "RemoteSvcAdmin-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe O87 - FAEL: "RemoteSvcAdmin-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Applications Services et Contrôleur.) -- C:\Windows\system32\services.exe O87 - FAEL: "RemoteSvcAdmin-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe O87 - FAEL: "RemoteTask-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe O87 - FAEL: "RemoteTask-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe O87 - FAEL: "RemoteTask-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe O87 - FAEL: "RemoteTask-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe O87 - FAEL: "MSDTC-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Service Microsoft Distributed Transaction Coordinator.) -- C:\Windows\system32\msdtc.exe O87 - FAEL: "MSDTC-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Service Microsoft Distributed Transaction Coordinator.) -- C:\Windows\system32\msdtc.exe O87 - FAEL: "MSDTC-KTMRM-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe O87 - FAEL: "MSDTC-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe O87 - FAEL: "MSDTC-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Service Microsoft Distributed Transaction Coordinator.) -- C:\Windows\system32\msdtc.exe O87 - FAEL: "MSDTC-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Service Microsoft Distributed Transaction Coordinator.) -- C:\Windows\system32\msdtc.exe O87 - FAEL: "MSDTC-KTMRM-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe O87 - FAEL: "MSDTC-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe O87 - FAEL: "RemoteEventLogSvc-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe O87 - FAEL: "RemoteEventLogSvc-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe O87 - FAEL: "RemoteEventLogSvc-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe O87 - FAEL: "RemoteEventLogSvc-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe O87 - FAEL: "RemoteFwAdmin-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe O87 - FAEL: "RemoteFwAdmin-RPCSS-In-TCP-NoScope" | In - Domain - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe O87 - FAEL: "RemoteFwAdmin-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe O87 - FAEL: "RemoteFwAdmin-RPCSS-In-TCP" | In - Public - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe O87 - FAEL: "RemoteAssistance-In-TCP-EdgeScope" | In - Public - P6 - TRUE | .(.Microsoft Corporation - Assistance à distance Windows.) -- C:\Windows\system32\msra.exe O87 - FAEL: "RemoteAssistance-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Assistance à distance Windows.) -- C:\Windows\system32\msra.exe O87 - FAEL: "RemoteAssistance-PnrpSvc-UDP-In-EdgeScope" | In - Public - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe O87 - FAEL: "RemoteAssistance-PnrpSvc-UDP-OUT" | Out - Public - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe O87 - FAEL: "RemoteAssistance-RAServer-In-TCP-NoScope-Active" | In - Domain - P6 - TRUE | .(.Microsoft Corporation - Serveur COM d’assistance à distance Windows.) -- C:\Windows\system32\raserver.exe O87 - FAEL: "RemoteAssistance-RAServer-Out-TCP-NoScope-Active" | Out - Domain - P6 - TRUE | .(.Microsoft Corporation - Serveur COM d’assistance à distance Windows.) -- C:\Windows\system32\raserver.exe O87 - FAEL: "RemoteAssistance-DCOM-In-TCP-NoScope-Active" | In - Domain - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe O87 - FAEL: "RemoteAssistance-In-TCP-EdgeScope-Active" | In - Domain - P6 - TRUE | .(.Microsoft Corporation - Assistance à distance Windows.) -- C:\Windows\system32\msra.exe O87 - FAEL: "RemoteAssistance-Out-TCP-Active" | Out - Domain - P6 - TRUE | .(.Microsoft Corporation - Assistance à distance Windows.) -- C:\Windows\system32\msra.exe O87 - FAEL: "RemoteAssistance-SSDPSrv-In-UDP-Active" | In - Domain - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe O87 - FAEL: "RemoteAssistance-SSDPSrv-Out-UDP-Active" | Out - Domain - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe O87 - FAEL: "RemoteAssistance-SSDPSrv-In-TCP-Active" | In - Domain - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe O87 - FAEL: "RemoteAssistance-SSDPSrv-Out-TCP-Active" | Out - Domain - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe O87 - FAEL: "RemoteAssistance-PnrpSvc-UDP-In-EdgeScope-Active" | In - Domain - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe O87 - FAEL: "RemoteAssistance-PnrpSvc-UDP-OUT-Active" | Out - Domain - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe O87 - FAEL: "WPDMTP-Out-TCP-NoScope" | Out - Domain - P6 - FALSE | .(.Microsoft Corporation - Windows Driver Foundation - Processus hôte de l’infrastructure de pilotes.) -- C:\Windows\system32\wudfhost.exe O87 - FAEL: "WPDMTP-Out-TCP" | Out - Public - P6 - FALSE | .(.Microsoft Corporation - Windows Driver Foundation - Processus hôte de l’infrastructure de pilotes.) -- C:\Windows\system32\wudfhost.exe O87 - FAEL: "WPDMTP-SSDPSrv-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe O87 - FAEL: "WPDMTP-SSDPSrv-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe O87 - FAEL: "WPDMTP-UPnPHost-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe O87 - FAEL: "WPDMTP-UPnP-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe O87 - FAEL: "{CCCD5ABF-A118-4D62-90C3-B87CE742DDC7}" | In - None - P6 - TRUE | .(.Microsoft Corporation - Windows Live Messenger.) -- C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe O87 - FAEL: "{EDA55826-EB06-4953-82BF-44F3423CF389}" | In - None - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\System32\svchost.exe O87 - FAEL: "{40E882BA-2E68-46C5-9A4D-495E0E6834C1}" | In - None - P17 - TRUE | .(.Microsoft Corporation - Windows Live Sync.) -- C:\Program Files (x86)\Windows Live\Sync\WindowsLiveSync.exe O87 - FAEL: "{36277F66-1735-4B33-969D-8C3355358947}" |In - Public - P6 - TRUE | .(...) -- C:\Program Files (x86)\Microsoft Office\Office12\ONENOTE.exe (.not file.) O87 - FAEL: "{25293E01-3812-431B-ABA2-1E5EB78B5467}" |In - Public - P17 - TRUE | .(...) -- C:\Program Files (x86)\Microsoft Office\Office12\ONENOTE.exe (.not file.) O87 - FAEL: "{A91159C6-F715-4F0A-B2AD-CAD93F4334C7}" | In - None - P17 - TRUE | .(.CyberLink Corp. - PowerDirector.) -- C:\Program Files (x86)\CyberLink\PowerDirector\PDR.exe O87 - FAEL: "NetPres-In-TCP-NoScope" |In - Domain - P6 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.) O87 - FAEL: "NetPres-Out-TCP-NoScope" |Out - Domain - P6 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.) O87 - FAEL: "NetPres-WSD-In-UDP" |In - None - P17 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.) O87 - FAEL: "NetPres-WSD-Out-UDP" |Out - None - P17 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.) O87 - FAEL: "NetPres-In-TCP" |In - Public - P6 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.) O87 - FAEL: "NetPres-Out-TCP" |Out - Public - P6 - FALSE | .(...) -- C:\Windows\system32\netproj.exe (.not file.) O87 - FAEL: "MCX-SSDPSrv-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe O87 - FAEL: "MCX-SSDPSrv-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe O87 - FAEL: "MCX-In-TCP" | In - None - P6 - FALSE | .(.Microsoft Corporation - Windows Media Center.) -- C:\Windows\ehome\ehshell.exe O87 - FAEL: "MCX-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Windows Media Center.) -- C:\Windows\ehome\ehshell.exe O87 - FAEL: "MCX-QWave-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe O87 - FAEL: "MCX-QWave-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe O87 - FAEL: "MCX-QWave-In-TCP" | In - None - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe O87 - FAEL: "MCX-QWave-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe O87 - FAEL: "MCX-In-UDP" | In - None - P17 - FALSE | .(.Microsoft Corporation - Windows Media Center.) -- C:\Windows\ehome\ehshell.exe O87 - FAEL: "MCX-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Windows Media Center.) -- C:\Windows\ehome\ehshell.exe O87 - FAEL: "MCX-MCX2SVC-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe O87 - FAEL: "MCX-Prov-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - MCX2 Provisioning library.) -- C:\Windows\ehome\mcx2prov.exe O87 - FAEL: "MCX-PlayTo-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe O87 - FAEL: "MCX-McrMgr-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Media Center Extender Manager.) -- C:\Windows\ehome\mcrmgr.exe O87 - FAEL: "MCX-PlayTo-Out-UDP" | Out - None - P17 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe O87 - FAEL: "MCX-FDPHost-Out-TCP" | Out - None - P6 - FALSE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe O87 - FAEL: "{931D5593-DD70-4C15-A005-E3675A698218}" | In - None - P6 - TRUE | .(.CyberLink Corp. - PowerDVD 8.0.) -- C:\Program Files (x86)\CyberLink\PowerDVD8\PowerDVD8.exe O87 - FAEL: "{BC6F4EFB-96D9-4151-8479-FA1DAEA3F1E6}" | In - None - P6 - TRUE | .(.Skype Technologies S.A. - Skype.) -- C:\Program Files (x86)\Skype\Phone\Skype.exe O87 - FAEL: "{3F8239D4-6918-40D3-A9F6-3B1B8913AB18}" | In - Public - P6 - TRUE | .(.Vity - File Downloader.) -- C:\Program Files (x86)\CrazyLoader\crazyloader.exe O87 - FAEL: "{63159B88-5453-4F34-8350-BC7FC8D9A59B}" | In - Public - P17 - TRUE | .(.Vity - File Downloader.) -- C:\Program Files (x86)\CrazyLoader\crazyloader.exe O87 - FAEL: "{975F03A5-523A-4B1E-AF56-18E69E61B2CD}" | In - Public - P6 - TRUE | .(.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Program Files (x86)\Java\jre6\bin\javaw.exe O87 - FAEL: "{8908E915-F312-4B0C-8347-D3F3262F873E}" | In - Public - P17 - TRUE | .(.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Program Files (x86)\Java\jre6\bin\javaw.exe O87 - FAEL: "{9298B17E-D503-4856-A95B-2AF44E4D4E61}" | In - Public - P6 - TRUE | .(.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre6\bin\javaw.exe O87 - FAEL: "{01D82BBA-AEED-462D-8BD5-A99A0A5C52E3}" | In - Public - P17 - TRUE | .(.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre6\bin\javaw.exe O87 - FAEL: "{D68E1AF1-1382-4FC0-812A-7ED93EBEB019}" | In - Public - P6 - TRUE | .(.Sun Microsystems, Inc. - Java(TM) Web Start Launcher.) -- C:\Program Files (x86)\Java\jre6\bin\javaws.exe O87 - FAEL: "{0952DFCE-130F-4011-8559-AAD8301012C8}" | In - Public - P17 - TRUE | .(.Sun Microsystems, Inc. - Java(TM) Web Start Launcher.) -- C:\Program Files (x86)\Java\jre6\bin\javaws.exe O87 - FAEL: "{8EA0075E-AE92-420C-9190-5DFFAB629727}" | In - Public - P6 - TRUE | .(.Sun Microsystems, Inc. - Java(TM) Web Start Launcher.) -- C:\Program Files\Java\jre6\bin\javaws.exe O87 - FAEL: "{D44E5DE7-D293-4FB3-BCE3-29E5EE3BF2B8}" | In - Public - P17 - TRUE | .(.Sun Microsystems, Inc. - Java(TM) Web Start Launcher.) -- C:\Program Files\Java\jre6\bin\javaws.exe O87 - FAEL: "TCP Query User{117C1EF4-1978-434D-8CB7-FAEC89CA0682}C:\program files\java\jre6\launch4j-tmp\crazyloader.exe" | In - Public - P6 - TRUE | .(.Sun Microsystems, Inc..) -- C:\program files\java\jre6\launch4j-tmp\crazyloader.exe O87 - FAEL: "UDP Query User{002B3E30-C096-4CE1-AD20-858EEBEFF2E1}C:\program files\java\jre6\launch4j-tmp\crazyloader.exe" | In - Public - P17 - TRUE | .(.Sun Microsystems, Inc..) -- C:\program files\java\jre6\launch4j-tmp\crazyloader.exe O87 - FAEL: "{7A2684DB-186E-4875-8411-ACE8BF36B314}" | Out - Private - P6 - TRUE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe O87 - FAEL: "{4E04645F-5EA8-44B1-BDDC-EE9B440627F2}" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe O87 - FAEL: "{953B2B96-E546-4C86-8225-0594FEEA3137}" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe O87 - FAEL: "{D0C16FE8-1EC8-4DD5-99C1-4F6B86573520}" | Out - Private - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe O87 - FAEL: "{CF7DEAC0-2707-4E29-9E11-C4D3F3ABC594}" |Out - Private - P6 - TRUE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.) O87 - FAEL: "{C9F3B9DC-B53E-43D0-93C5-14099D59955C}" |In - Private - P6 - TRUE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.) O87 - FAEL: "{AC44D1D4-EFCC-4C7E-B7D7-82861022086A}" |Out - Private - P17 - TRUE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.) O87 - FAEL: "{407497C3-E48A-4BB6-ADE1-FD74C98CC2BE}" |In - Private - P17 - TRUE | .(...) -- C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (.not file.) O87 - FAEL: "{B61BF694-5A01-4CA4-B76A-77FE9F041D36}" | Out - Private - P6 - TRUE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe O87 - FAEL: "{7FA83467-4416-4E32-BBE1-63542B047A43}" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe O87 - FAEL: "{5AE58016-4241-4D88-AA57-C944E5DF810F}" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Lecteur Windows Media.) -- C:\Program Files (x86)\Windows Media Player\wmplayer.exe O87 - FAEL: "{7F4D1604-02EB-457C-AA04-1DB981A328C0}" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe O87 - FAEL: "{0F7086F9-4AD5-4193-80F1-7FE4DF283C5D}" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe O87 - FAEL: "{26F6C4B2-ADAE-4C1E-A05A-97288E422FDC}" | Out - Private - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe O87 - FAEL: "{B57EB362-0234-40B3-89E8-B993BD672B28}" | In - Private - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe O87 - FAEL: "{2AB66B58-9D22-48DE-901C-A45B2C9F02ED}" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe O87 - FAEL: "{467E35DE-6548-46AE-8412-742751AC93F7}" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe O87 - FAEL: "{93222DB6-C423-4A89-B575-DAEBC8790CF0}" | Out - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe O87 - FAEL: "{2EED121C-7E24-4233-846A-54AC2BA708BD}" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe O87 - FAEL: "{A6BC58F5-F2D4-4EF8-8B73-0B2F539ACD3E}" | In - Private - P6 - TRUE | .(.Microsoft Corporation - Application sous-système spouleur.) -- C:\Windows\system32\spoolsv.exe O87 - FAEL: "TCP Query User{E61F7C08-1E36-4B0E-AE86-80C33DFC752F}C:\program files (x86)\vuze\azureus.exe" | In - Public - P6 - TRUE | .(.Vuze Inc. - Pas de description.) -- C:\program files (x86)\vuze\azureus.exe O87 - FAEL: "UDP Query User{02E67F3C-0C0E-4919-9A64-15E2CA89C4A8}C:\program files (x86)\vuze\azureus.exe" | In - Public - P17 - TRUE | .(.Vuze Inc. - Pas de description.) -- C:\program files (x86)\vuze\azureus.exe O87 - FAEL: "{E0A7C6D2-C6E2-4086-A5B7-0BCC0394D6DE}" | Out - Public - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe O87 - FAEL: "{93451635-90A8-4BE9-80FA-4608268D9129}" | In - Public - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe O87 - FAEL: "{8ABACC48-8FAB-4F66-9622-EBC7256868A7}" | Out - Public - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe O87 - FAEL: "{1CE6AD56-FD14-4342-996B-1CEBBA345FE0}" | In - Public - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe O87 - FAEL: "{76A8BFF7-F7E2-487A-A7C7-D3B6D08DFC0D}" | Out - Public - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe O87 - FAEL: "{AAF1D49D-B776-4007-91F1-72751FFB7467}" | In - Public - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe O87 - FAEL: "{9F7BB22E-C69E-4211-A5A9-23A694495105}" | Out - Public - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe O87 - FAEL: "{A6754C22-49B7-4B29-B31D-CCA854B69AF5}" | In - Public - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe O87 - FAEL: "{C597F32F-1391-45F3-B1DD-8DCE68E0DB2B}" | Out - Public - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe O87 - FAEL: "{2D6333BE-DC4F-48A3-BF29-FA21E4981FBA}" | Out - Public - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe O87 - FAEL: "{B7C765C9-F947-4D70-AC5D-C91BDAF21410}" | In - Public - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe O87 - FAEL: "TCP Query User{ABEE5D2C-4EB8-4A38-9454-BD11EEB3D1D3}C:\users\alex4\documents\vuze downloads\[pc] painkiller [rip] [dopeman]\pkl\painkiller\bin\editor\paineditor.exe" | In - Public - P6 - TRUE | .(.People Can Fly.) -- C:\users\alex4\documents\vuze downloads\[pc] painkiller [rip] [dopeman]\pkl\painkiller\bin\editor\paineditor.exe O87 - FAEL: "UDP Query User{35A2ACEE-CBA0-439B-8F24-EB4471B02D92}C:\users\alex4\documents\vuze downloads\[pc] painkiller [rip] [dopeman]\pkl\painkiller\bin\editor\paineditor.exe" | In - Public - P17 - TRUE | .(.People Can Fly.) -- C:\users\alex4\documents\vuze downloads\[pc] painkiller [rip] [dopeman]\pkl\painkiller\bin\editor\paineditor.exe O87 - FAEL: "{97BEDD40-661D-42FE-B96F-3E15B52DF985}" | In - Public - P6 - TRUE | .(...) -- C:\Windows\SysWOW64\PnkBstrA.exe O87 - FAEL: "{87C6B347-5A3B-4569-B079-AC769229FF46}" | In - Public - P17 - TRUE | .(...) -- C:\Windows\SysWOW64\PnkBstrA.exe O87 - FAEL: "{5BF11A47-F15B-476C-AEC6-37D917B5B649}" | In - Public - P6 - TRUE | .(...) -- C:\Windows\SysWOW64\PnkBstrB.exe O87 - FAEL: "{1210C40F-B076-41E6-9619-F799D5FB3FE0}" | In - Public - P17 - TRUE | .(...) -- C:\Windows\SysWOW64\PnkBstrB.exe O87 - FAEL: "{758D5C82-6F41-4348-99F4-9A0753A590F5}" | In - None - P17 - TRUE | .(.Microsoft Corporation - Windows Live Communications Platform.) -- C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe O87 - FAEL: "{918A4B71-873E-4AED-B78A-BE43BE508ACF}" | In - None - P6 - TRUE | .(.BitTorrent, Inc. - BitTorrent.) -- C:\Program Files (x86)\BitTorrent\BitTorrent.exe O87 - FAEL: "{914B4FA3-3967-408F-B5A6-3E42B33DFC6D}" | In - None - P17 - TRUE | .(.BitTorrent, Inc. - BitTorrent.) -- C:\Program Files (x86)\BitTorrent\BitTorrent.exe O87 - FAEL: "TCP Query User{8BAF99C1-5AC7-41D9-AF44-01C4578D21A8}C:\program files (x86)\ea sports\fifa 11\game\fifa.exe" | In - Private - P6 - TRUE | .(.Electronic Arts - FIFA 11.) -- C:\program files (x86)\ea sports\fifa 11\game\fifa.exe O87 - FAEL: "UDP Query User{812661D5-6A26-4BD8-9DF3-35842D7BCC73}C:\program files (x86)\ea sports\fifa 11\game\fifa.exe" | In - Private - P17 - TRUE | .(.Electronic Arts - FIFA 11.) -- C:\program files (x86)\ea sports\fifa 11\game\fifa.exe O87 - FAEL: "{35DBDB2F-9D3E-4D56-9ECC-3A1C0ABF21F6}" | In - Private - P6 - TRUE | .(.CybelSoft - Service de détection matériel.) -- C:\Program Files\ma-config.com\x64\maconfservice.exe O87 - FAEL: "{87E5DED0-33AB-49F0-9903-EB5C20305FAF}" | In - Private - P17 - TRUE | .(.CybelSoft - Service de détection matériel.) -- C:\Program Files\ma-config.com\x64\maconfservice.exe O87 - FAEL: "TCP Query User{3DB3F1F8-8CAE-4C13-A8F3-1C166C4E38E0}C:\program files (x86)\ea sports\fifa 11\game\fifa.exe" | In - Public - P6 - TRUE | .(.Electronic Arts - FIFA 11.) -- C:\program files (x86)\ea sports\fifa 11\game\fifa.exe O87 - FAEL: "UDP Query User{1F187A55-7BDB-4D13-B1EA-DCAB8FF179DB}C:\program files (x86)\ea sports\fifa 11\game\fifa.exe" | In - Public - P17 - TRUE | .(.Electronic Arts - FIFA 11.) -- C:\program files (x86)\ea sports\fifa 11\game\fifa.exe O87 - FAEL: "{821FAEF0-4546-4EBF-BC8F-DE89B8E22C96}" |In - Public - P6 - TRUE | .(...) -- C:\Program Files (x86)\AVG\AVG10\avgdiagex.exe (.not file.) O87 - FAEL: "{658EA80A-27E7-4BE8-B1CB-979E471E7C8B}" |In - Public - P17 - TRUE | .(...) -- C:\Program Files (x86)\AVG\AVG10\avgdiagex.exe (.not file.) O87 - FAEL: "{57F58100-23D1-4125-A827-4217EBF0BB72}" |In - Public - P6 - TRUE | .(...) -- C:\Program Files (x86)\AVG\AVG10\avgnsa.exe (.not file.) O87 - FAEL: "{09D1C3D1-2373-4113-B32B-09DF1BE46BBD}" |In - Public - P17 - TRUE | .(...) -- C:\Program Files (x86)\AVG\AVG10\avgnsa.exe (.not file.) O87 - FAEL: "{F1FD5A6D-452E-4E77-A3DA-A9B57268BF5D}" |In - Public - P6 - TRUE | .(...) -- C:\Program Files (x86)\AVG\AVG10\avgemca.exe (.not file.) O87 - FAEL: "{1A5CCF7A-891E-4C50-8835-2B0A2831CBB2}" |In - Public - P17 - TRUE | .(...) -- C:\Program Files (x86)\AVG\AVG10\avgemca.exe (.not file.) O87 - FAEL: "TCP Query User{2797C302-5E50-45D7-94EA-5F5224049319}C:\program files (x86)\wilink\bin\wilink.exe" |In - Public - P6 - TRUE | .(...) -- C:\program files (x86)\wilink\bin\wilink.exe (.not file.) O87 - FAEL: "UDP Query User{FDC7A42A-B41F-4B8B-96A7-541E5D555278}C:\program files (x86)\wilink\bin\wilink.exe" |In - Public - P17 - TRUE | .(...) -- C:\program files (x86)\wilink\bin\wilink.exe (.not file.) O87 - FAEL: "TCP Query User{473495E1-1FDC-4163-87EF-E6EDC75B02DC}C:\users\alex4\documents\vuze downloads\left4dead (pc) (eng)(non-steam) (already cracked) (direct play) [blaze69]\left4dead\left4dead\hl2.exe" | In - Private - P6 - TRUE | .(...) -- C:\users\alex4\documents\vuze downloads\left4dead (pc) (eng)(non-steam) (already cracked) (direct play) [blaze69]\left4dead\left4dead\hl2.exe O87 - FAEL: "UDP Query User{ECF9F807-A8F8-47DD-A129-093A3C4DDCAD}C:\users\alex4\documents\vuze downloads\left4dead (pc) (eng)(non-steam) (already cracked) (direct play) [blaze69]\left4dead\left4dead\hl2.exe" | In - Private - P17 - TRUE | .(...) -- C:\users\alex4\documents\vuze downloads\left4dead (pc) (eng)(non-steam) (already cracked) (direct play) [blaze69]\left4dead\left4dead\hl2.exe O87 - FAEL: "TCP Query User{3B6CA347-2058-4F84-9E06-7A22D592FA96}C:\users\alex4\documents\vuze downloads\left4dead (pc) (eng)(non-steam) (already cracked) (direct play) [blaze69]\left4dead\left4dead\hl2.exe" | In - Public - P6 - TRUE | .(...) -- C:\users\alex4\documents\vuze downloads\left4dead (pc) (eng)(non-steam) (already cracked) (direct play) [blaze69]\left4dead\left4dead\hl2.exe O87 - FAEL: "UDP Query User{1095AA87-DE60-43DC-AB70-904A51F48412}C:\users\alex4\documents\vuze downloads\left4dead (pc) (eng)(non-steam) (already cracked) (direct play) [blaze69]\left4dead\left4dead\hl2.exe" | In - Public - P17 - TRUE | .(...) -- C:\users\alex4\documents\vuze downloads\left4dead (pc) (eng)(non-steam) (already cracked) (direct play) [blaze69]\left4dead\left4dead\hl2.exe O87 - FAEL: "{EBD5AA0D-8880-4DCE-B164-5FE4A325EE0D}" |In - Public - P6 - TRUE | .(...) -- C:\Program Files (x86)\Electronic Arts\Need for Speed(TM) Hot Pursuit\Launcher.exe (.not file.) O87 - FAEL: "{2667FC60-89DC-4C7B-BA2F-69E53E8005BA}" |In - Public - P17 - TRUE | .(...) -- C:\Program Files (x86)\Electronic Arts\Need for Speed(TM) Hot Pursuit\Launcher.exe (.not file.) O87 - FAEL: "TCP Query User{D789EC83-711C-41CF-B912-5AB77746B3CF}C:\users\alex4\appdata\roaming\imvuclient\1vivoxvoice.exe" | In - Private - P6 - TRUE | .(.Vivox, Inc..) -- C:\users\alex4\appdata\roaming\imvuclient\1vivoxvoice.exe O87 - FAEL: "UDP Query User{A9EA59BF-35BD-4C31-8A12-B3FC3BA20A28}C:\users\alex4\appdata\roaming\imvuclient\1vivoxvoice.exe" | In - Private - P17 - TRUE | .(.Vivox, Inc..) -- C:\users\alex4\appdata\roaming\imvuclient\1vivoxvoice.exe O87 - FAEL: "TCP Query User{4D6F2F7D-89E1-47E6-B053-E7DBB19F0EA7}C:\program files (x86)\electronic arts\need for speed(tm) hot pursuit\nfs11.exe" |In - Private - P6 - TRUE | .(...) -- C:\program files (x86)\electronic arts\need for speed(tm) hot pursuit\nfs11.exe (.not file.) O87 - FAEL: "UDP Query User{F4A390B9-7616-404A-B1C4-E4D006E75358}C:\program files (x86)\electronic arts\need for speed(tm) hot pursuit\nfs11.exe" |In - Private - P17 - TRUE | .(...) -- C:\program files (x86)\electronic arts\need for speed(tm) hot pursuit\nfs11.exe (.not file.) O87 - FAEL: "{31112D49-92E2-45C1-9657-E2E46E1747CF}" | In - Private - P6 - TRUE | .(.Apple Inc. - Bonjour Service.) -- C:\Program Files (x86)\Bonjour\mDNSResponder.exe O87 - FAEL: "{4844D7FA-D3F4-4867-8B69-EE1AD6720777}" | In - Private - P17 - TRUE | .(.Apple Inc. - Bonjour Service.) -- C:\Program Files (x86)\Bonjour\mDNSResponder.exe O87 - FAEL: "TCP Query User{1C495C1C-67F7-41EB-ABAF-BA573E9E43FB}C:\users\alex4\appdata\local\google\chrome\application\chrome.exe" | In - Private - P6 - TRUE | .(.Google Inc..) -- C:\users\alex4\appdata\local\google\chrome\application\chrome.exe O87 - FAEL: "UDP Query User{D56D2DC9-6829-4F54-9317-ABF0D9AE6046}C:\users\alex4\appdata\local\google\chrome\application\chrome.exe" | In - Private - P17 - TRUE | .(.Google Inc..) -- C:\users\alex4\appdata\local\google\chrome\application\chrome.exe O87 - FAEL: "TCP Query User{23E143A2-C077-460F-952A-8D1D3195C1C1}C:\program files (x86)\sopcast\sopcast.exe" | In - Private - P6 - TRUE | .(.www.sopcast.com - SopCast Main Application.) -- C:\program files (x86)\sopcast\sopcast.exe O87 - FAEL: "UDP Query User{9D040561-EE1A-4722-9CDC-58276F922F11}C:\program files (x86)\sopcast\sopcast.exe" | In - Private - P17 - TRUE | .(.www.sopcast.com - SopCast Main Application.) -- C:\program files (x86)\sopcast\sopcast.exe O87 - FAEL: "TCP Query User{DB21D7C2-E37D-41E2-A0E5-5DFA17FE321E}C:\program files (x86)\sopcast\adv\sopadver.exe" | In - Private - P6 - TRUE | .(.www.sopcast.com - SopCast Adver.) -- C:\program files (x86)\sopcast\adv\sopadver.exe O87 - FAEL: "UDP Query User{F6D737F0-1BF9-4320-BEC1-198C7FE3D69F}C:\program files (x86)\sopcast\adv\sopadver.exe" | In - Private - P17 - TRUE | .(.www.sopcast.com - SopCast Adver.) -- C:\program files (x86)\sopcast\adv\sopadver.exe O87 - FAEL: "TCP Query User{2D6D4F17-CC10-4F0F-AB4D-1A3C561E868F}C:\program files (x86)\internet explorer\iexplore.exe" | In - Private - P6 - TRUE | .(.Microsoft Corporation.) -- C:\program files (x86)\internet explorer\iexplore.exe O87 - FAEL: "UDP Query User{4BCEEAF6-1A20-40AD-BCFA-667FB890B853}C:\program files (x86)\internet explorer\iexplore.exe" | In - Private - P17 - TRUE | .(.Microsoft Corporation.) -- C:\program files (x86)\internet explorer\iexplore.exe O87 - FAEL: "{28EDC2C7-65D1-4E54-B2C8-CF8D6191BB66}" | In - Private - P6 - TRUE | .(.Vuze Inc. - Pas de description.) -- C:\Program Files (x86)\Vuze\Azureus.exe O87 - FAEL: "{C35F77F3-2BAF-4947-8799-15086FEF767E}" | In - Private - P17 - TRUE | .(.Vuze Inc. - Pas de description.) -- C:\Program Files (x86)\Vuze\Azureus.exe O87 - FAEL: "TCP Query User{DF1ABC73-F414-4652-8E62-4175EF1440E6}C:\program files (x86)\mozilla firefox\firefox.exe" | In - Private - P6 - TRUE | .(.Mozilla Corporation - Firefox.) -- C:\program files (x86)\mozilla firefox\firefox.exe O87 - FAEL: "UDP Query User{E21E5355-2D51-4D1F-BAEB-CD193C7DE2F6}C:\program files (x86)\mozilla firefox\firefox.exe" | In - Private - P17 - TRUE | .(.Mozilla Corporation - Firefox.) -- C:\program files (x86)\mozilla firefox\firefox.exe O87 - FAEL: "{0BB5F5B1-0A77-4EE9-A536-B7D26AFCC0E4}" | In - Public - P6 - TRUE | .(.Pas de propriétaire - Raptr Client.) -- C:\Program Files (x86)\Raptr\raptr.exe O87 - FAEL: "{58695434-D2E4-4BCC-8D1E-1DB64481E9B5}" | In - Public - P17 - TRUE | .(.Pas de propriétaire - Raptr Client.) -- C:\Program Files (x86)\Raptr\raptr.exe O87 - FAEL: "{5AB12E6C-91CC-45CB-A3ED-8FC0ABACF6BA}" | In - Public - P6 - TRUE | .(.Pas de propriétaire - Raptr Client.) -- C:\Program Files (x86)\Raptr\raptr_im.exe O87 - FAEL: "{B42EA19C-E96F-4C44-8094-CCE6FC4C553C}" | In - Public - P17 - TRUE | .(.Pas de propriétaire - Raptr Client.) -- C:\Program Files (x86)\Raptr\raptr_im.exe O87 - FAEL: "{D228AF2B-20F5-4928-98FC-227EECF06FA5}" | In - Private - P6 - TRUE | .(.Pas de propriétaire - Raptr Client.) -- C:\Program Files (x86)\Raptr\raptr.exe O87 - FAEL: "{A27BD97B-9644-46DE-80E8-6DED01BBBE14}" | In - Private - P17 - TRUE | .(.Pas de propriétaire - Raptr Client.) -- C:\Program Files (x86)\Raptr\raptr.exe O87 - FAEL: "{F8F12141-7678-4417-9CCA-66C179ACAAB2}" | In - Private - P6 - TRUE | .(.Pas de propriétaire - Raptr Client.) -- C:\Program Files (x86)\Raptr\raptr_im.exe O87 - FAEL: "{F214550E-9D6D-4E41-B054-39DA10F3AF9C}" | In - Private - P17 - TRUE | .(.Pas de propriétaire - Raptr Client.) -- C:\Program Files (x86)\Raptr\raptr_im.exe O87 - FAEL: "TCP Query User{D3C0BC37-B682-4F79-A2D7-16BC5D7C37E8}C:\program files (x86)\youwave_android\vb\vboxsdl.exe" | In - Private - P6 - TRUE | .(...) -- C:\program files (x86)\youwave_android\vb\vboxsdl.exe O87 - FAEL: "UDP Query User{7CF83EFA-8EB1-454F-B4C4-2768007B1E4B}C:\program files (x86)\youwave_android\vb\vboxsdl.exe" | In - Private - P17 - TRUE | .(...) -- C:\program files (x86)\youwave_android\vb\vboxsdl.exe O87 - FAEL: "TCP Query User{C3349B7A-4E6C-47D5-8623-47B8D9C4A202}C:\program files (x86)\mozilla firefox\plugin-container.exe" | In - Private - P6 - TRUE | .(.Mozilla Corporation.) -- C:\program files (x86)\mozilla firefox\plugin-container.exe O87 - FAEL: "UDP Query User{0ACB5C86-CDB0-4EEC-A243-6DFF22D771DC}C:\program files (x86)\mozilla firefox\plugin-container.exe" | In - Private - P17 - TRUE | .(.Mozilla Corporation.) -- C:\program files (x86)\mozilla firefox\plugin-container.exe O87 - FAEL: "TCP Query User{D84E52CF-0D27-4A9B-8E53-4EBFC18469FC}C:\program files\java\jre6\launch4j-tmp\crazyloader.exe" | In - Private - P6 - TRUE | .(.Sun Microsystems, Inc..) -- C:\program files\java\jre6\launch4j-tmp\crazyloader.exe O87 - FAEL: "UDP Query User{1D73A65B-8D90-49E5-8D91-196DDB6BC515}C:\program files\java\jre6\launch4j-tmp\crazyloader.exe" | In - Private - P17 - TRUE | .(.Sun Microsystems, Inc..) -- C:\program files\java\jre6\launch4j-tmp\crazyloader.exe O87 - FAEL: "TCP Query User{9AC5EF9E-98E5-45BF-8438-6140B15FB6BD}C:\users\alex4\appdata\local\screamer radio\screamer.exe" | In - Private - P6 - TRUE | .(.Steamcore.se - Screamer Radio.) -- C:\users\alex4\appdata\local\screamer radio\screamer.exe O87 - FAEL: "UDP Query User{31FF70F4-4B25-43E7-BC62-409D10F37B3A}C:\users\alex4\appdata\local\screamer radio\screamer.exe" | In - Private - P17 - TRUE | .(.Steamcore.se - Screamer Radio.) -- C:\users\alex4\appdata\local\screamer radio\screamer.exe O87 - FAEL: "{E8439C9D-69AC-4FB2-8E7B-C0AABFFB163F}" |In - Private - P6 - TRUE | .(...) -- C:\Program Files (x86)\AVG\AVG2012\avgmfapx.exe (.not file.) O87 - FAEL: "{DBE64BDD-1FCE-4CB8-9B5D-E6EF28D1CD4A}" |In - Private - P17 - TRUE | .(...) -- C:\Program Files (x86)\AVG\AVG2012\avgmfapx.exe (.not file.) O87 - FAEL: "TCP Query User{A807618B-D5BD-45F8-8304-582F91A96346}C:\program files (x86)\call of duty\codmp.exe" | In - Private - P6 - TRUE | .(...) -- C:\program files (x86)\call of duty\codmp.exe O87 - FAEL: "UDP Query User{5455E8CA-64B0-4DFF-86B1-2B6A2877A09E}C:\program files (x86)\call of duty\codmp.exe" | In - Private - P17 - TRUE | .(...) -- C:\program files (x86)\call of duty\codmp.exe O87 - FAEL: "{9A27197D-69A1-4627-B99F-D19BCF3FDC45}" | In - Domain - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe O87 - FAEL: "{CE487D0E-07CC-46A8-9E37-FAF20709081F}" | In - Domain - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe O87 - FAEL: "{E49A66A2-B2BD-4846-B131-91473A665589}" | In - Domain - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe O87 - FAEL: "{4061CB8F-5A34-41B5-8C6E-F47F50B04301}" | In - Domain - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe O87 - FAEL: "{41486B46-0F01-4CE6-8364-DB575F9BC0AA}" | Out - Domain - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe O87 - FAEL: "{E9BAD937-236B-41BD-B1D6-88F4FB1757AD}" | In - Domain - P17 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe O87 - FAEL: "{2B2ECE34-F23C-429F-BA3C-683AF163B1AB}" | Out - Domain - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe O87 - FAEL: "{7766EEAB-A40E-48B6-A796-8EC637F6E511}" | Out - Domain - P6 - TRUE | .(.Microsoft Corporation - Processus hôte pour les services Windows.) -- C:\Windows\system32\svchost.exe O87 - FAEL: "{AA76B39C-D82D-4435-9426-D48865FD1337}" |In - Public - P6 - TRUE | .(...) -- C:\Program Files (x86)\Steam\Steam.exe (.not file.) O87 - FAEL: "{122C31D1-4F89-4D39-AE10-616DEEC22DD4}" |In - Public - P17 - TRUE | .(...) -- C:\Program Files (x86)\Steam\Steam.exe (.not file.) O87 - FAEL: "TCP Query User{BEAC3CA3-6929-48CA-8963-3C8BBAAA656B}C:\users\alex4\appdata\local\screamer radio\screamer.exe" | In - Public - P6 - TRUE | .(.Steamcore.se - Screamer Radio.) -- C:\users\alex4\appdata\local\screamer radio\screamer.exe O87 - FAEL: "UDP Query User{94C2688D-74B5-451B-AF20-61EA20C09636}C:\users\alex4\appdata\local\screamer radio\screamer.exe" | In - Public - P17 - TRUE | .(.Steamcore.se - Screamer Radio.) -- C:\users\alex4\appdata\local\screamer radio\screamer.exe O87 - FAEL: "TCP Query User{0FEF14F2-8BFB-4AD8-8100-69EEF709D7E1}C:\program files (x86)\internet explorer\iexplore.exe" | In - Public - P6 - TRUE | .(.Microsoft Corporation.) -- C:\program files (x86)\internet explorer\iexplore.exe O87 - FAEL: "UDP Query User{0662B94F-3383-4890-9FD5-C8B16C969C37}C:\program files (x86)\internet explorer\iexplore.exe" | In - Public - P17 - TRUE | .(.Microsoft Corporation.) -- C:\program files (x86)\internet explorer\iexplore.exe O87 - FAEL: "TCP Query User{41D3411B-76C8-42BA-8761-62D6942FD486}C:\program files (x86)\sopcast\adv\sopadver.exe" | In - Public - P6 - TRUE | .(.www.sopcast.com - SopCast Adver.) -- C:\program files (x86)\sopcast\adv\sopadver.exe O87 - FAEL: "UDP Query User{80B785C6-DCFA-4755-95AE-49362AE205C7}C:\program files (x86)\sopcast\adv\sopadver.exe" | In - Public - P17 - TRUE | .(.www.sopcast.com - SopCast Adver.) -- C:\program files (x86)\sopcast\adv\sopadver.exe O87 - FAEL: "TCP Query User{CA5D6122-1483-4F35-8D78-34569B0AB6B0}C:\program files (x86)\bywifi\bywifi.exe" | In - Private - P6 - TRUE | .(.bywifi.com - Bywifi: Video Streaming Accelerator.) -- C:\program files (x86)\bywifi\bywifi.exe O87 - FAEL: "UDP Query User{44DB1DE1-150F-4304-909B-3CC6B768073D}C:\program files (x86)\bywifi\bywifi.exe" | In - Private - P17 - TRUE | .(.bywifi.com - Bywifi: Video Streaming Accelerator.) -- C:\program files (x86)\bywifi\bywifi.exe O87 - FAEL: "{1EA9BF5F-30FB-4DA2-8E40-BED22DAE5973}" | In - None - P6 - TRUE | .(...) -- C:\Program Files (x86)\Veetle\Player\VeetleNet.exe O87 - FAEL: "TCP Query User{11A9F691-9024-49DE-B983-253FCBD29CED}C:\program files (x86)\bywifi\bywifi.exe" | In - Public - P6 - TRUE | .(.bywifi.com - Bywifi: Video Streaming Accelerator.) -- C:\program files (x86)\bywifi\bywifi.exe O87 - FAEL: "UDP Query User{8CA8A8F1-A8D3-4BED-9D81-D2A3E8107848}C:\program files (x86)\bywifi\bywifi.exe" | In - Public - P17 - TRUE | .(.bywifi.com - Bywifi: Video Streaming Accelerator.) -- C:\program files (x86)\bywifi\bywifi.exe O87 - FAEL: "{B2619D2D-1778-4B19-83E0-2E9F4162D6FA}" |In - Public - P6 - TRUE | .(...) -- C:\Program Files (x86)\MaxTV\MaxTV4\maxtv.exe (.not file.) O87 - FAEL: "{5A5080B4-4C3D-4307-A642-E1E326BAA89D}" |In - Public - P17 - TRUE | .(...) -- C:\Program Files (x86)\MaxTV\MaxTV4\maxtv.exe (.not file.) O87 - FAEL: "{073567B4-61D3-4338-AF7D-70C256C657D5}" |In - Public - P6 - TRUE | .(...) -- C:\Program Files (x86)\MaxTV\MaxTV4\core\maxtv_xul.exe (.not file.) O87 - FAEL: "{DD85B2CE-E43E-47A0-A578-3F726027BEBA}" |In - Public - P17 - TRUE | .(...) -- C:\Program Files (x86)\MaxTV\MaxTV4\core\maxtv_xul.exe (.not file.) O87 - FAEL: "{75B489FF-9893-47C7-B483-26BEF43C9C1D}" |In - Public - P6 - TRUE | .(...) -- C:\Program Files (x86)\MaxTV\MaxTV4\recorder.exe (.not file.) O87 - FAEL: "{BDD52214-E4A6-4406-B659-1727259C1454}" |In - Public - P17 - TRUE | .(...) -- C:\Program Files (x86)\MaxTV\MaxTV4\recorder.exe (.not file.) O87 - FAEL: "{E1C42BD1-AAB7-431C-BE85-C7FB49D85A92}" |In - Public - P6 - TRUE | .(...) -- C:\Program Files (x86)\MaxTV\MaxTV4\task_scheduler.exe (.not file.) O87 - FAEL: "{B2F0DE54-464A-4DFC-872D-CFFDAF2ECFF5}" |In - Public - P17 - TRUE | .(...) -- C:\Program Files (x86)\MaxTV\MaxTV4\task_scheduler.exe (.not file.) O87 - FAEL: "TCP Query User{F49CD671-2056-4EB2-BBC1-7C44F33F6597}C:\program files (x86)\readon technology\readon tv movie radio player 7.5.0.0\internettv.exe" | In - Private - P6 - TRUE | .(.Readon Technology.) -- C:\program files (x86)\readon technology\readon tv movie radio player 7.5.0.0\internettv.exe O87 - FAEL: "UDP Query User{F5DBEE2A-7ADE-4CF9-B854-1AFF7B5B6E95}C:\program files (x86)\readon technology\readon tv movie radio player 7.5.0.0\internettv.exe" | In - Private - P17 - TRUE | .(.Readon Technology.) -- C:\program files (x86)\readon technology\readon tv movie radio player 7.5.0.0\internettv.exe O87 - FAEL: "{BB8AD48E-BCF5-44F5-9ABF-05784442D446}" | In - Public - P17 - TRUE | .(.Readon Technology - Readon TV Movie Radio Player.) -- C:\program files (x86)\readon technology\readon tv movie radio player 7.5.0.0\internettv.exe O87 - FAEL: "{BA26CBE7-0AA0-43B1-B314-C164F4139F26}" | In - Public - P6 - TRUE | .(.Readon Technology - Readon TV Movie Radio Player.) -- C:\program files (x86)\readon technology\readon tv movie radio player 7.5.0.0\internettv.exe O87 - FAEL: "{396BD48C-2374-409D-AC91-556D74F93E42}" |In - Public - P17 - TRUE | .(...) -- C:\program files (x86)\tvuplayer\tvuplayer.exe (.not file.) O87 - FAEL: "{2C1688FC-B0F7-47AB-9463-A7DFB52207DA}" |In - Public - P6 - TRUE | .(...) -- C:\program files (x86)\tvuplayer\tvuplayer.exe (.not file.) O87 - FAEL: "TCP Query User{8171D398-7E2E-4091-BF0F-56A75469122F}C:\program files (x86)\participatory culture foundation\miro\miro_downloader.exe" | In - Private - P6 - TRUE | .(...) -- C:\program files (x86)\participatory culture foundation\miro\miro_downloader.exe O87 - FAEL: "UDP Query User{4604F1D7-639A-42AF-B452-BA806C67EF6D}C:\program files (x86)\participatory culture foundation\miro\miro_downloader.exe" | In - Private - P17 - TRUE | .(...) -- C:\program files (x86)\participatory culture foundation\miro\miro_downloader.exe O87 - FAEL: "{5811607A-9C75-46B9-97C7-1F7D1D0C7365}" | In - Public - P17 - TRUE | .(...) -- C:\program files (x86)\participatory culture foundation\miro\miro_downloader.exe O87 - FAEL: "{C4928E5E-83AE-4D43-8EAF-FF55C03EEEDE}" | In - Public - P6 - TRUE | .(...) -- C:\program files (x86)\participatory culture foundation\miro\miro_downloader.exe O87 - FAEL: "TCP Query User{553190EC-AB2D-4139-9A20-8E09E79F2AEA}C:\users\alex4\appdata\local\super internet tv\super internet tv.exe" | In - Private - P6 - TRUE | .(.Ahusoft.) -- C:\users\alex4\appdata\local\super internet tv\super internet tv.exe O87 - FAEL: "UDP Query User{6E7A6A14-D8C4-4EF9-9742-EB2F5C0D1DA6}C:\users\alex4\appdata\local\super internet tv\super internet tv.exe" | In - Private - P17 - TRUE | .(.Ahusoft.) -- C:\users\alex4\appdata\local\super internet tv\super internet tv.exe O87 - FAEL: "{F1DF55BC-F248-4CD4-BBE3-55F2381D2E39}" | In - Public - P17 - TRUE | .(.Ahusoft - Super Internet TV.) -- C:\users\alex4\appdata\local\super internet tv\super internet tv.exe O87 - FAEL: "{C5B6022A-8FDF-4F69-A9C6-E98C5991F709}" | In - Public - P6 - TRUE | .(.Ahusoft - Super Internet TV.) -- C:\users\alex4\appdata\local\super internet tv\super internet tv.exe O87 - FAEL: "TCP Query User{E57725D1-ACD0-4F07-80F5-3646916088CD}C:\program files (x86)\tvplayerclassic\tvplayerclassic.exe" | In - Private - P6 - TRUE | .(...) -- C:\program files (x86)\tvplayerclassic\tvplayerclassic.exe O87 - FAEL: "UDP Query User{A780EF1F-E31D-4EED-9817-AE478D454D54}C:\program files (x86)\tvplayerclassic\tvplayerclassic.exe" | In - Private - P17 - TRUE | .(...) -- C:\program files (x86)\tvplayerclassic\tvplayerclassic.exe O87 - FAEL: "{ADB22FC6-ECB8-4727-B92F-1F8490061F3F}" | In - Public - P17 - TRUE | .(...) -- C:\program files (x86)\tvplayerclassic\tvplayerclassic.exe O87 - FAEL: "{EE01F4EF-B7CC-4737-909C-3A5454CD6313}" | In - Public - P6 - TRUE | .(...) -- C:\program files (x86)\tvplayerclassic\tvplayerclassic.exe O87 - FAEL: "TCP Query User{8E305EBE-709A-4376-B489-967258627B02}C:\users\alex4\desktop\ratiomaster.net.exe" | In - Private - P6 - TRUE | .(.Nikolay.IT - RatioMaster.NET.) -- C:\users\alex4\desktop\ratiomaster.net.exe O87 - FAEL: "UDP Query User{A92911A7-4F90-46D9-9AF2-3730398E9000}C:\users\alex4\desktop\ratiomaster.net.exe" | In - Private - P17 - TRUE | .(.Nikolay.IT - RatioMaster.NET.) -- C:\users\alex4\desktop\ratiomaster.net.exe O87 - FAEL: "TCP Query User{E5B8EE50-4F31-4069-BDF2-96602BBB2795}C:\users\alex4\desktop\ratiomaster.net.exe" | In - Public - P6 - TRUE | .(.Nikolay.IT - RatioMaster.NET.) -- C:\users\alex4\desktop\ratiomaster.net.exe O87 - FAEL: "UDP Query User{02680654-4C9D-4645-97F5-7E318B951404}C:\users\alex4\desktop\ratiomaster.net.exe" | In - Public - P17 - TRUE | .(.Nikolay.IT - RatioMaster.NET.) -- C:\users\alex4\desktop\ratiomaster.net.exe O87 - FAEL: "{1B159C54-2B36-4E10-9B77-DD114C3EE710}" |In - Public - P6 - TRUE | .(...) -- C:\Program Files (x86)\AVG\AVG2012\avgmfapx.exe (.not file.) O87 - FAEL: "{2B6A60EB-BAA1-4A81-85E1-010EE307CF70}" |In - Public - P17 - TRUE | .(...) -- C:\Program Files (x86)\AVG\AVG2012\avgmfapx.exe (.not file.) O87 - FAEL: "{2819797E-A096-481C-8CFD-C93706207A88}" |In - Public - P6 - TRUE | .(...) -- C:\Program Files (x86)\AVG\AVG2012\avgnsa.exe (.not file.) O87 - FAEL: "{F28EED0D-3DE0-43E4-891A-79D4DD4B920E}" |In - Public - P17 - TRUE | .(...) -- C:\Program Files (x86)\AVG\AVG2012\avgnsa.exe (.not file.) O87 - FAEL: "{647C7893-4FFC-4ACA-974E-225E25D30292}" |In - Public - P6 - TRUE | .(...) -- C:\Program Files (x86)\AVG\AVG2012\avgdiagex.exe (.not file.) O87 - FAEL: "{A2FB8BC2-F655-46AA-9EB9-6E391F63580D}" |In - Public - P17 - TRUE | .(...) -- C:\Program Files (x86)\AVG\AVG2012\avgdiagex.exe (.not file.) O87 - FAEL: "{9986DB63-DB6D-42EB-AB3C-5B15759D0F69}" |In - Public - P6 - TRUE | .(...) -- C:\Program Files (x86)\AVG\AVG2012\avgemca.exe (.not file.) O87 - FAEL: "{46FDBB1E-302A-4C2E-AB44-3801A4339375}" |In - Public - P17 - TRUE | .(...) -- C:\Program Files (x86)\AVG\AVG2012\avgemca.exe (.not file.) O87 - FAEL: "TCP Query User{8F7B62E4-177C-42BC-9078-5319B7A35272}C:\program files (x86)\1clickdownload\1clickdownloader.exe" | In - Private - P6 - TRUE | .(...) -- C:\program files (x86)\1clickdownload\1clickdownloader.exe O87 - FAEL: "UDP Query User{12BFC8C5-C03F-4C1A-A95C-79E35EE8E02F}C:\program files (x86)\1clickdownload\1clickdownloader.exe" | In - Private - P17 - TRUE | .(...) -- C:\program files (x86)\1clickdownload\1clickdownloader.exe O87 - FAEL: "{3CF1C880-1F9E-474E-87E2-67E32EB839AB}" | In - None - P17 - TRUE | .(.Apple Inc. - WebKit2WebProcess.exe.) -- C:\Program Files (x86)\Common Files\Apple\Apple Application Support\WebKit2WebProcess.exe O87 - FAEL: "{30F4457E-D107-4B5B-9B6E-8A320002CAC6}" | In - Private - P6 - TRUE | .(.http://yourfiledownloader.com - YourFile Downloader.) -- C:\Program Files (x86)\YourFileDownloader\Downloader.exe O87 - FAEL: "{3A718BA2-E4ED-4BF0-8D03-ED19A2D61625}" | In - Private - P17 - TRUE | .(.http://yourfiledownloader.com - YourFile Downloader.) -- C:\Program Files (x86)\YourFileDownloader\Downloader.exe O87 - FAEL: "{9576D50C-7CAB-4137-9FCE-254ADC0C8D46}" | In - Private - P6 - TRUE | .(.http://yourfiledownloader.com - YourFile Downloader.) -- C:\Program Files (x86)\YourFileDownloader\YourFile.exe O87 - FAEL: "{4C470E48-96A3-4EA2-A9F4-379DFEA6A789}" | In - Private - P17 - TRUE | .(.http://yourfiledownloader.com - YourFile Downloader.) -- C:\Program Files (x86)\YourFileDownloader\YourFile.exe O87 - FAEL: "TCP Query User{D7FD0B4C-A2C9-471F-B069-986CBB90726F}C:\program files (x86)\youwave_android\vb\vboxsdl.exe" | In - Public - P6 - TRUE | .(...) -- C:\program files (x86)\youwave_android\vb\vboxsdl.exe O87 - FAEL: "UDP Query User{80B9C20B-4A3E-4C7A-8190-58F1EE2ADCF7}C:\program files (x86)\youwave_android\vb\vboxsdl.exe" | In - Public - P17 - TRUE | .(...) -- C:\program files (x86)\youwave_android\vb\vboxsdl.exe O87 - FAEL: "{99DD0D33-3E4E-40CA-9EFA-73F69C9BD8DA}" | In - Private - P6 - TRUE | .(...) -- C:\Windows\System32\dmwu.exe O87 - FAEL: "{56E73986-C22B-4451-8B1B-DBACB6DD6977}" | In - Private - P17 - TRUE | .(...) -- C:\Windows\System32\dmwu.exe O87 - FAEL: "{BF2A7EED-E88F-4BD3-BB8E-ECC21AABBC65}" |In - Private - P6 - TRUE | .(...) -- C:\Windows\System32\ARFC\wrtc.exe (.not file.) O87 - FAEL: "{6B7535AB-DF11-49EB-A5C8-089FCD2A28AF}" |In - Private - P17 - TRUE | .(...) -- C:\Windows\System32\ARFC\wrtc.exe (.not file.) O87 - FAEL: "{6F67751A-DE0C-4DEE-A9D4-D5F5704D9417}" | In - Public - P6 - TRUE | .(...) -- C:\Windows\System32\dmwu.exe O87 - FAEL: "{80D8A5D4-4D26-421E-B2CC-43206BE97C2A}" | In - Public - P17 - TRUE | .(...) -- C:\Windows\System32\dmwu.exe O87 - FAEL: "{33828842-1FD0-4686-8541-58797B394BFC}" |In - Public - P6 - TRUE | .(...) -- C:\Windows\System32\ARFC\wrtc.exe (.not file.) O87 - FAEL: "{1B5FB6FD-5A0B-4927-8502-21F5B0E6A0FD}" |In - Public - P17 - TRUE | .(...) -- C:\Windows\System32\ARFC\wrtc.exe (.not file.) O87 - FAEL: "{B733F024-528A-4D72-8BE2-9F8E8CBDEEDF}" | In - Private - P6 - TRUE | .(.AVG Technologies CZ, s.r.o. - AVG Installer Application.) -- C:\Program Files (x86)\AVG\AVG2013\avgmfapx.exe O87 - FAEL: "{E94D3A29-8CEC-4B3D-AFDE-B16FD3BA2EB4}" | In - Private - P17 - TRUE | .(.AVG Technologies CZ, s.r.o. - AVG Installer Application.) -- C:\Program Files (x86)\AVG\AVG2013\avgmfapx.exe O87 - FAEL: "{C4BEED4C-706A-4278-A5E4-DA45BD2847B7}" |In - None - P17 - TRUE | .(...) -- C:\Users\Alex4\AppData\Local\Facebook\Video\Skype\FacebookVideoCalling.exe (.not file.) O87 - FAEL: "TCP Query User{DA4FB1C4-EE98-4D07-BB41-90D56A028C5F}C:\wamp\bin\apache\apache2.2.22\bin\httpd.exe" |In - Private - P6 - TRUE | .(...) -- C:\wamp\bin\apache\apache2.2.22\bin\httpd.exe (.not file.) O87 - FAEL: "UDP Query User{626F2939-60A1-4DE5-B224-0F54C4343C7A}C:\wamp\bin\apache\apache2.2.22\bin\httpd.exe" |In - Private - P17 - TRUE | .(...) -- C:\wamp\bin\apache\apache2.2.22\bin\httpd.exe (.not file.) O87 - FAEL: "{8F40C9F7-42CB-4E11-B469-A8E2A026623D}" | In - None - P6 - FALSE | .(.Microsoft Corporation - SMSvcHost.exe.) -- C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe O87 - FAEL: "{D6DA0170-B82C-4763-ABF7-04495CF33319}" | In - Private - P6 - TRUE | .(...) -- C:\Program Files\Autodesk\3ds Max Design 2013\NVIDIA\raysat_3dsmax2013_64server.exe O87 - FAEL: "{F9BD8AF6-9F7F-4B2B-8FCE-79E38A5B2BCC}" | In - Private - P17 - TRUE | .(...) -- C:\Program Files\Autodesk\3ds Max Design 2013\NVIDIA\raysat_3dsmax2013_64server.exe O87 - FAEL: "{92C12BF1-0FCA-41AA-9878-BF075C2FE32C}" | In - Private - P6 - TRUE | .(.NVIDIA Corporation - mental ray.) -- C:\Program Files\Autodesk\3ds Max Design 2013\NVIDIA\raysat_3dsmax2013_64.exe O87 - FAEL: "{2A54606A-430F-4F59-BAC1-D240886D8F57}" | In - Private - P17 - TRUE | .(.NVIDIA Corporation - mental ray.) -- C:\Program Files\Autodesk\3ds Max Design 2013\NVIDIA\raysat_3dsmax2013_64.exe O87 - FAEL: "{36108ECE-4F77-4C7F-A093-87A36F44C8E6}" | In - Private - P6 - TRUE | .(.Autodesk, Inc. - 3ds Max application.) -- C:\Program Files\Autodesk\3ds Max Design 2013\3dsmax.exe O87 - FAEL: "{F225D517-088B-4EC6-AB99-4892F193A3AE}" | In - Private - P17 - TRUE | .(.Autodesk, Inc. - 3ds Max application.) -- C:\Program Files\Autodesk\3ds Max Design 2013\3dsmax.exe O87 - FAEL: "{80313492-81B5-4D0B-8645-A67101C40993}" | In - Private - P6 - TRUE | .(.Autodesk, Inc. - Backburner Monitor Application.) -- C:\Program Files (x86)\Autodesk\Backburner\monitor.exe O87 - FAEL: "{1205CE4B-1F29-49C0-8EB2-92E557DF9F22}" | In - Private - P17 - TRUE | .(.Autodesk, Inc. - Backburner Monitor Application.) -- C:\Program Files (x86)\Autodesk\Backburner\monitor.exe O87 - FAEL: "{94EA22FD-671B-403E-800C-87FC93BC7A28}" | In - Private - P6 - TRUE | .(.Autodesk, Inc. - Backburner Manager Application.) -- C:\Program Files (x86)\Autodesk\Backburner\manager.exe O87 - FAEL: "{748E58CF-45D1-469A-9DB7-F83044ACE58F}" | In - Private - P17 - TRUE | .(.Autodesk, Inc. - Backburner Manager Application.) -- C:\Program Files (x86)\Autodesk\Backburner\manager.exe O87 - FAEL: "{B311E242-5360-4A1F-9375-191DA2E60722}" | In - Private - P6 - TRUE | .(.Autodesk, Inc. - Backburner Server Application.) -- C:\Program Files (x86)\Autodesk\Backburner\server.exe O87 - FAEL: "{29124BCE-02AD-44A1-8D32-5EA075A5A3BA}" | In - Private - P17 - TRUE | .(.Autodesk, Inc. - Backburner Server Application.) -- C:\Program Files (x86)\Autodesk\Backburner\server.exe O87 - FAEL: "{687A9BFA-7713-434C-B0D4-1E092265549C}" | In - Public - P6 - TRUE | .(...) -- C:\Windows\SysWOW64\ARFC\wrtc.exe O87 - FAEL: "{19A44FC4-F4B8-4B64-89F5-2A7A4FE00749}" | In - Public - P17 - TRUE | .(...) -- C:\Windows\SysWOW64\ARFC\wrtc.exe O87 - FAEL: "{DF4274BA-CEC2-4600-B5D5-2F57178884A7}" | In - Public - P6 - TRUE | .(.AVG Technologies CZ, s.r.o. - AVG Online Shield Service.) -- C:\Program Files (x86)\AVG\AVG2013\avgnsa.exe O87 - FAEL: "{423B4464-0EB0-4D38-8720-6E7CCDD81DF9}" | In - Public - P17 - TRUE | .(.AVG Technologies CZ, s.r.o. - AVG Online Shield Service.) -- C:\Program Files (x86)\AVG\AVG2013\avgnsa.exe O87 - FAEL: "{65628A87-3CC0-405B-A190-CC9139D775CE}" | In - Public - P6 - TRUE | .(.AVG Technologies CZ, s.r.o. - AVG Diagnostics.) -- C:\Program Files (x86)\AVG\AVG2013\avgdiagex.exe O87 - FAEL: "{04AF9F1E-26A1-4455-A6B4-B95678005FB5}" | In - Public - P17 - TRUE | .(.AVG Technologies CZ, s.r.o. - AVG Diagnostics.) -- C:\Program Files (x86)\AVG\AVG2013\avgdiagex.exe O87 - FAEL: "{7C2EC016-7B9F-478F-831A-6546F80C87DE}" | In - Public - P6 - TRUE | .(.AVG Technologies CZ, s.r.o. - AVG E-mail Scanner.) -- C:\Program Files (x86)\AVG\AVG2013\avgemca.exe O87 - FAEL: "{658CFBCD-3188-4EC2-B384-B477E7CF5A53}" | In - Public - P17 - TRUE | .(.AVG Technologies CZ, s.r.o. - AVG E-mail Scanner.) -- C:\Program Files (x86)\AVG\AVG2013\avgemca.exe O87 - FAEL: "{B18B9987-6C5A-4A77-8A98-F7B7FCBC46E1}" | In - Private - P6 - TRUE | .(.Ensemble Studios - Age of Empires 3: The WarChiefs.) -- C:\Program Files (x86)\Microsoft Games\Age of Empires III\age3x.exe O87 - FAEL: "{F8B0D836-4CD0-49C9-A1CF-761FA2F87F55}" | In - Private - P17 - TRUE | .(.Ensemble Studios - Age of Empires 3: The WarChiefs.) -- C:\Program Files (x86)\Microsoft Games\Age of Empires III\age3x.exe O87 - FAEL: "{D7B3A6E7-289C-459A-861E-DA81AEA5FA97}" | In - Private - P6 - TRUE | .(.Microsoft Corporation - Age of Empires III Expansion 2.) -- C:\Program Files (x86)\Microsoft Games\Age of Empires III\age3y.exe O87 - FAEL: "{28CAB7D4-1DEF-4D7B-81A4-98872C9FFA3E}" | In - Private - P17 - TRUE | .(.Microsoft Corporation - Age of Empires III Expansion 2.) -- C:\Program Files (x86)\Microsoft Games\Age of Empires III\age3y.exe O87 - FAEL: "TCP Query User{31B3D3C5-C4BF-415D-A9E3-D0635FCC0C0A}C:\program files (x86)\java\jre7\bin\javaw.exe" | In - Private - P6 - TRUE | .(.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\program files (x86)\java\jre7\bin\javaw.exe O87 - FAEL: "UDP Query User{348CB8D9-CF7F-4755-9A97-FB9883AC4E05}C:\program files (x86)\java\jre7\bin\javaw.exe" | In - Private - P17 - TRUE | .(.Oracle Corporation - Java(TM) Platform SE binary.) -- C:\program files (x86)\java\jre7\bin\javaw.exe O87 - FAEL: "TCP Query User{4FBA1030-A49A-468F-8ECD-D82B68785802}C:\users\alex4\desktop\nouveau dossier\ratiomaster.net.exe" |In - Private - P6 - TRUE | .(...) -- C:\users\alex4\desktop\nouveau dossier\ratiomaster.net.exe (.not file.) O87 - FAEL: "UDP Query User{7B0CC50B-D858-4F94-A722-7DE0B5D228B1}C:\users\alex4\desktop\nouveau dossier\ratiomaster.net.exe" |In - Private - P17 - TRUE | .(...) -- C:\users\alex4\desktop\nouveau dossier\ratiomaster.net.exe (.not file.) O87 - FAEL: "TCP Query User{0F15DD82-017A-4F71-827C-24A1F8A8D5A0}C:\users\alex4\desktop\compte t411\ratiomaster.net.exe" | In - Private - P6 - TRUE | .(.Nikolay.IT - RatioMaster.NET.) -- C:\users\alex4\desktop\compte t411\ratiomaster.net.exe O87 - FAEL: "UDP Query User{3090AFDF-60C9-4C6A-8731-710E6ACD5FB7}C:\users\alex4\desktop\compte t411\ratiomaster.net.exe" | In - Private - P17 - TRUE | .(.Nikolay.IT - RatioMaster.NET.) -- C:\users\alex4\desktop\compte t411\ratiomaster.net.exe O87 - FAEL: "TCP Query User{08496449-8487-4EDD-B92B-6930C900AE38}C:\users\alex4\appdata\roaming\gameranger\gameranger\gameranger.exe" |In - Private - P6 - TRUE | .(...) -- C:\users\alex4\appdata\roaming\gameranger\gameranger\gameranger.exe (.not file.) O87 - FAEL: "UDP Query User{B54E757D-0879-4605-BB35-5ABD1081B0E6}C:\users\alex4\appdata\roaming\gameranger\gameranger\gameranger.exe" |In - Private - P17 - TRUE | .(...) -- C:\users\alex4\appdata\roaming\gameranger\gameranger\gameranger.exe (.not file.) O87 - FAEL: "TCP Query User{D36A0DEC-CE7C-4419-B480-402D0F3D9779}C:\program files (x86)\microsoft games\age of empires iii\age3.exe" | In - Private - P6 - TRUE | .(.Ensemble Studios.) -- C:\program files (x86)\microsoft games\age of empires iii\age3.exe O87 - FAEL: "UDP Query User{D10A5D85-57BE-4DDC-8081-9B58CD89E69E}C:\program files (x86)\microsoft games\age of empires iii\age3.exe" | In - Private - P17 - TRUE | .(.Ensemble Studios.) -- C:\program files (x86)\microsoft games\age of empires iii\age3.exe O87 - FAEL: "{81D5B53E-26FE-402E-A4A9-734272F8D96F}" | In - Private - P6 - TRUE | .(.AVG Technologies CZ, s.r.o. - AVG Online Shield Service.) -- C:\Program Files (x86)\AVG\AVG2013\avgnsa.exe O87 - FAEL: "{FE887CBB-D950-4A11-A077-20BC3C883FCD}" | In - Private - P17 - TRUE | .(.AVG Technologies CZ, s.r.o. - AVG Online Shield Service.) -- C:\Program Files (x86)\AVG\AVG2013\avgnsa.exe O87 - FAEL: "{740A44DD-A207-47ED-853E-98441401A60A}" | In - Private - P6 - TRUE | .(.AVG Technologies CZ, s.r.o. - AVG Diagnostics.) -- C:\Program Files (x86)\AVG\AVG2013\avgdiagex.exe O87 - FAEL: "{486BD807-791A-4331-B8E0-941273E73AD5}" | In - Private - P17 - TRUE | .(.AVG Technologies CZ, s.r.o. - AVG Diagnostics.) -- C:\Program Files (x86)\AVG\AVG2013\avgdiagex.exe O87 - FAEL: "{B0B70645-9D09-41D9-9556-BBA67B3136BC}" | In - Private - P6 - TRUE | .(.AVG Technologies CZ, s.r.o. - AVG E-mail Scanner.) -- C:\Program Files (x86)\AVG\AVG2013\avgemca.exe O87 - FAEL: "{5644BBCA-0BB9-470A-8E89-67BA7E0A1D2F}" | In - Private - P17 - TRUE | .(.AVG Technologies CZ, s.r.o. - AVG E-mail Scanner.) -- C:\Program Files (x86)\AVG\AVG2013\avgemca.exe O87 - FAEL: "TCP Query User{7A78A472-B28E-4246-8AD2-1E13058EDAB7}C:\program files\dassault systemes\b19\win_b64\code\bin\orbixd.exe" |In - Private - P6 - TRUE | .(...) -- C:\program files\dassault systemes\b19\win_b64\code\bin\orbixd.exe (.not file.) O87 - FAEL: "UDP Query User{3F20F770-C564-456D-A643-E206B173A1B9}C:\program files\dassault systemes\b19\win_b64\code\bin\orbixd.exe" |In - Private - P17 - TRUE | .(...) -- C:\program files\dassault systemes\b19\win_b64\code\bin\orbixd.exe (.not file.) O87 - FAEL: "TCP Query User{597EB056-1F53-4AF5-BC82-C15124B22326}C:\program files\dassault systemes\b19\win_b64\code\bin\cnext.exe" |In - Private - P6 - TRUE | .(...) -- C:\program files\dassault systemes\b19\win_b64\code\bin\cnext.exe (.not file.) O87 - FAEL: "UDP Query User{541B34B3-EF92-43A1-A462-F256388AEDBF}C:\program files\dassault systemes\b19\win_b64\code\bin\cnext.exe" |In - Private - P17 - TRUE | .(...) -- C:\program files\dassault systemes\b19\win_b64\code\bin\cnext.exe (.not file.) O87 - FAEL: "TCP Query User{18966B33-0CB6-4D7F-B988-F5641BCE46C4}C:\users\alex4\desktop\compte t411\ratiomaster.net.exe" | In - Public - P6 - TRUE | .(.Nikolay.IT - RatioMaster.NET.) -- C:\users\alex4\desktop\compte t411\ratiomaster.net.exe O87 - FAEL: "UDP Query User{C3080207-73C0-4241-9A44-96569E1ED19E}C:\users\alex4\desktop\compte t411\ratiomaster.net.exe" | In - Public - P17 - TRUE | .(.Nikolay.IT - RatioMaster.NET.) -- C:\users\alex4\desktop\compte t411\ratiomaster.net.exe ~ Firewall: 415 Scanned in 00mn 03s ---\\ Scan Additionnel (O88) Database Version : v2.11707 - (24/04/2013) Clés trouvées (Keys found) : 479 Valeurs trouvées (Values found) : 2 Dossiers trouvés (Folders found) : 45 Fichiers trouvés (Files found) : 7 [HKLM\Software\Classes\AppID\{EA28B360-05E0-4F93-8150-02891F1D8D3C}] =>PUP.Funmoods [HKLM\Software\Wow6432Node\Classes\AppID\{EA28B360-05E0-4F93-8150-02891F1D8D3C}] =>PUP.Funmoods [HKLM\Software\Classes\Interface\{0bbf19a5-be50-4e06-a340-6777a505e490}] =>Adware.RecordNRip [HKLM\Software\Wow6432Node\Classes\Interface\{0bbf19a5-be50-4e06-a340-6777a505e490}] =>Adware.RecordNRip [HKLM\Software\Classes\TypeLib\{2d77ac8a-0a4c-40d0-9557-51907a575e45}] =>Adware.RecordNRip [HKLM\Software\Classes\Interface\{3f607e46-0d3c-4442-b1de-de7fa4768f5c}] =>Adware.RecordNRip [HKLM\Software\Wow6432Node\Classes\Interface\{3f607e46-0d3c-4442-b1de-de7fa4768f5c}] =>Adware.RecordNRip [HKLM\Software\Classes\Interface\{869e753f-bd0d-4832-8131-94feee058ae3}] =>Adware.RecordNRip [HKLM\Software\Wow6432Node\Classes\Interface\{869e753f-bd0d-4832-8131-94feee058ae3}] =>Adware.RecordNRip [HKLM\Software\Classes\TypeLib\{93e3d79c-0786-48ff-9329-93bc9f6dc2b3}] =>Adware.RecordNRip [HKLM\Software\Classes\Interface\{fe0273d1-99df-4ac0-87d5-1371c6271785}] =>Adware.RecordNRip [HKLM\Software\Wow6432Node\Classes\Interface\{fe0273d1-99df-4ac0-87d5-1371c6271785}] =>Adware.RecordNRip [HKLM\Software\Classes\TypeLib\{01bcb858-2f62-4f06-a8f4-48f927c15333}] =>Adware.PredictAd [HKLM\Software\Classes\Interface\{021B4049-F57D-4565-A693-FD3B04786BFA}] =>Adware.IMBooster [HKLM\Software\Wow6432Node\Classes\Interface\{021B4049-F57D-4565-A693-FD3B04786BFA}] =>Adware.IMBooster [HKLM\Software\Classes\Interface\{0362AA09-808D-48E9-B360-FB51A8CBCE09}] =>Adware.IMBooster [HKLM\Software\Wow6432Node\Classes\Interface\{0362AA09-808D-48E9-B360-FB51A8CBCE09}] =>Adware.IMBooster [HKLM\Software\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}] =>Toolbar.Agent [HKLM\Software\Wow6432Node\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}] =>Toolbar.Agent [HKLM\Software\Classes\Interface\{06844020-CD0B-3D3D-A7FE-371153013E49}] =>Adware.IMBooster [HKLM\Software\Wow6432Node\Classes\Interface\{06844020-CD0B-3D3D-A7FE-371153013E49}] =>Adware.IMBooster [HKLM\Software\Classes\AppID\{09C554C3-109B-483C-A06B-F14172F1A947}] =>Toolbar.Babylon [HKLM\Software\Wow6432Node\Classes\AppID\{09C554C3-109B-483C-A06B-F14172F1A947}] =>Toolbar.Babylon [HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\extensions\{09E90109-A9AA-4980-BCEF-76F8D924E902}] =>Spyware.Bywifi [HKLM\Software\Classes\Interface\{0ADC01BB-303B-3F8E-93DA-12C140E85460}] =>Adware.IMBooster [HKLM\Software\Wow6432Node\Classes\Interface\{0ADC01BB-303B-3F8E-93DA-12C140E85460}] =>Adware.IMBooster [HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{0FB6A909-6086-458F-BD92-1F8EE10042A0}] =>Adware.PredictAd [HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{0FB6A909-6086-458F-BD92-1F8EE10042A0}] =>Adware.PredictAd [HKLM\Software\Classes\CLSID\{0FB6A909-6086-458F-BD92-1F8EE10042A0}] =>Adware.PredictAd [HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0FB6A909-6086-458F-BD92-1F8EE10042A0}] =>Adware.PredictAd [HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0FB6A909-6086-458F-BD92-1F8EE10042A0}] =>Adware.PredictAd [HKLM\Software\Classes\Interface\{10D3722F-23E6-3901-B6C1-FF6567121920}] =>PUP.RewardsArcade [HKLM\Software\Wow6432Node\Classes\Interface\{10D3722F-23E6-3901-B6C1-FF6567121920}] =>PUP.RewardsArcade [HKLM\Software\Classes\Interface\{1675E62B-F911-3B7B-A046-EB57261212F3}] =>PUP.RewardsArcade [HKLM\Software\Wow6432Node\Classes\Interface\{1675E62B-F911-3B7B-A046-EB57261212F3}] =>PUP.RewardsArcade [HKLM\Software\Classes\Interface\{192929F2-9273-3894-91B0-F54671C4C861}] =>PUP.RewardsArcade [HKLM\Software\Wow6432Node\Classes\Interface\{192929F2-9273-3894-91B0-F54671C4C861}] =>PUP.RewardsArcade [HKLM\Software\Classes\TypeLib\{1D5A4199-956E-49BC-B89F-6A35C57C0D13}] =>Toolbar.Expresso [HKLM\Software\Classes\AppID\{1FDFF5A2-7BB1-48E1-8081-7236812B12B2}] =>Toolbar.Agent [HKLM\Software\Wow6432Node\Classes\AppID\{1FDFF5A2-7BB1-48E1-8081-7236812B12B2}] =>Toolbar.Agent [HKLM\Software\Classes\Interface\{22B0769F-794B-4422-AC84-47B123C8986D}] =>Adware.IncrediBar [HKLM\Software\Wow6432Node\Classes\Interface\{22B0769F-794B-4422-AC84-47B123C8986D}] =>Adware.IncrediBar [HKLM\Software\Classes\Interface\{255E0B2A-D747-4EEF-B7CE-159D73A3656D}] =>Adware.IncrediBar [HKLM\Software\Wow6432Node\Classes\Interface\{255E0B2A-D747-4EEF-B7CE-159D73A3656D}] =>Adware.IncrediBar [HKLM\Software\Classes\Interface\{28ED590D-F5ED-4E05-A87F-1D759F1C6169}] =>Adware.IncrediBar [HKLM\Software\Wow6432Node\Classes\Interface\{28ED590D-F5ED-4E05-A87F-1D759F1C6169}] =>Adware.IncrediBar [HKLM\Software\Classes\Interface\{2932897E-3036-43D9-8A64-B06447992065}] =>PUP.RewardsArcade [HKLM\Software\Wow6432Node\Classes\Interface\{2932897E-3036-43D9-8A64-B06447992065}] =>PUP.RewardsArcade [HKLM\Software\Classes\TypeLib\{2BF2028E-3F3C-4C05-AB45-B2F1DCFE0759}] =>PUP.RewardsArcade [HKLM\Software\Classes\TypeLib\{2D77AC8A-0A4C-40D0-9557-51907A575E45}] =>Adware.RecordNRip [HKLM\Software\Classes\Interface\{2DE92D29-A042-3C37-BFF8-07C7D8893EFA}] =>PUP.RewardsArcade [HKLM\Software\Wow6432Node\Classes\Interface\{2DE92D29-A042-3C37-BFF8-07C7D8893EFA}] =>PUP.RewardsArcade [HKLM\Software\Classes\Interface\{30B15818-E110-4527-9C05-46ACE5A3460D}] =>Adware.ClickPotato [HKLM\Software\Wow6432Node\Classes\Interface\{30B15818-E110-4527-9C05-46ACE5A3460D}] =>Adware.ClickPotato [HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{30F9B915-B755-4826-820B-08FBA6BD249D}] =>Toolbar.Conduit [HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{30F9B915-B755-4826-820B-08FBA6BD249D}] =>Toolbar.Conduit [HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{30F9B915-B755-4826-820B-08FBA6BD249D}] =>Toolbar.Conduit [HKLM\Software\Classes\Interface\{32B80AD6-1214-45F4-994E-78A5D482C000}] =>PUP.RewardsArcade [HKLM\Software\Wow6432Node\Classes\Interface\{32B80AD6-1214-45F4-994E-78A5D482C000}] =>PUP.RewardsArcade [HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{336D0C35-8A85-403a-B9D2-65C292C39087}] =>Adware.IncrediBar [HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{336D0C35-8A85-403a-B9D2-65C292C39087}] =>Adware.IncrediBar [HKLM\Software\Classes\CLSID\{336D0C35-8A85-403a-B9D2-65C292C39087}] =>Adware.IncrediBar [HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{336D0C35-8A85-403a-B9D2-65C292C39087}] =>Adware.IncrediBar [HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{336D0C35-8A85-403a-B9D2-65C292C39087}] =>Adware.IncrediBar [HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{338B4DFE-2E2C-4338-9E41-E176D497299E}] =>Adware.Softomate [HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{338B4DFE-2E2C-4338-9E41-E176D497299E}] =>Adware.Softomate [HKLM\Software\Classes\AppID\{35C1605E-438B-4D64-AAB1-8885F097A9B1}] =>Toolbar.Babylon [HKLM\Software\Wow6432Node\Classes\AppID\{35C1605E-438B-4D64-AAB1-8885F097A9B1}] =>Toolbar.Babylon [HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{37F4A335-D085-423E-A425-0370799166FB}] =>PUP.OfferBox [HKLM\Software\Classes\Interface\{3A8E103F-B2B7-3BEF-B3B0-88E29B2420E4}] =>PUP.RewardsArcade [HKLM\Software\Wow6432Node\Classes\Interface\{3A8E103F-B2B7-3BEF-B3B0-88E29B2420E4}] =>PUP.RewardsArcade [HKLM\Software\Classes\Interface\{3D782BB2-F2A5-11D3-BF4C-000000000000}] =>PUP.VShareRedir [HKLM\Software\Classes\Interface\{419EDA30-6DFF-432C-B534-E15D899ABEE4}] =>Adware.ClickPotato [HKLM\Software\Wow6432Node\Classes\Interface\{419EDA30-6DFF-432C-B534-E15D899ABEE4}] =>Adware.ClickPotato [HKLM\Software\Classes\AppID\{442f13bc-2031-42d5-9520-437f65271153}] =>Adware.PredictAd [HKLM\Software\Wow6432Node\Classes\AppID\{442f13bc-2031-42d5-9520-437f65271153}] =>Adware.PredictAd [HKLM\Software\Classes\Interface\{44C3C1DB-2127-433C-98EC-4C9412B5FC3A}] =>Toolbar.Babylon [HKLM\Software\Wow6432Node\Classes\Interface\{44C3C1DB-2127-433C-98EC-4C9412B5FC3A}] =>Toolbar.Babylon [HKLM\Software\Classes\Interface\{45D5B93F-E2ED-4AF2-915E-DCDDBDA8C33C}] =>Adware.IncrediBar [HKLM\Software\Wow6432Node\Classes\Interface\{45D5B93F-E2ED-4AF2-915E-DCDDBDA8C33C}] =>Adware.IncrediBar [HKLM\Software\Classes\Interface\{471E3998-588E-41D5-A874-FA11C44B70DE}] =>PUP.OfferBox [HKLM\Software\Wow6432Node\Classes\Interface\{471E3998-588E-41D5-A874-FA11C44B70DE}] =>PUP.OfferBox [HKLM\Software\Classes\Interface\{478CE5D3-D38E-3FFE-8DBE-8C4A0F1C4D8D}] =>PUP.RewardsArcade [HKLM\Software\Wow6432Node\Classes\Interface\{478CE5D3-D38E-3FFE-8DBE-8C4A0F1C4D8D}] =>PUP.RewardsArcade [HKLM\Software\Classes\Interface\{48B7DA4E-69ED-39E3-BAD5-3E3EFF22CFB0}] =>PUP.RewardsArcade [HKLM\Software\Wow6432Node\Classes\Interface\{48B7DA4E-69ED-39E3-BAD5-3E3EFF22CFB0}] =>PUP.RewardsArcade [HKLM\Software\Classes\TypeLib\{48C9C8B0-A546-46C1-A81F-47A31E623E9D}] =>Adware.IncrediBar [HKLM\Software\Classes\Interface\{4D5132DD-BB2B-4249-B5E0-D145A8C982E1}] =>Toolbar.Babylon [HKLM\Software\Wow6432Node\Classes\Interface\{4D5132DD-BB2B-4249-B5E0-D145A8C982E1}] =>Toolbar.Babylon [HKLM\Software\Classes\AppID\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}] =>Toolbar.Babylon [HKLM\Software\Classes\TypeLib\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}] =>Toolbar.Babylon [HKLM\Software\Wow6432Node\Classes\AppID\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}] =>Toolbar.Babylon [HKLM\Software\Classes\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}] =>Toolbar.Agent [HKLM\Software\Wow6432Node\Classes\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}] =>Toolbar.Agent [HKLM\Software\Classes\Interface\{5982F405-44E4-3BBB-BAC4-CF8141CBBC5C}] =>PUP.RewardsArcade [HKLM\Software\Wow6432Node\Classes\Interface\{5982F405-44E4-3BBB-BAC4-CF8141CBBC5C}] =>PUP.RewardsArcade [HKLM\Software\Classes\AppID\{5B1881D1-D9C7-46df-B041-1E593282C7D0}] =>Adware. BullseyeToolbar [HKLM\Software\Wow6432Node\Classes\AppID\{5B1881D1-D9C7-46df-B041-1E593282C7D0}] =>Adware. BullseyeToolbar [HKLM\Software\Classes\Interface\{5D8C3CC3-3C05-38A1-B244-924A23115FE9}] =>PUP.RewardsArcade [HKLM\Software\Wow6432Node\Classes\Interface\{5D8C3CC3-3C05-38A1-B244-924A23115FE9}] =>PUP.RewardsArcade [HKLM\Software\Classes\AppID\{608D3067-77E8-463D-9084-908966806826}] =>Adware.Agent [HKLM\Software\Wow6432Node\Classes\AppID\{608D3067-77E8-463D-9084-908966806826}] =>Adware.Agent [HKLM\Software\Classes\Interface\{618aad04-921f-44c2-be38-c0818af69861}] =>Adware.Hotbar [HKLM\Software\Wow6432Node\Classes\Interface\{618aad04-921f-44c2-be38-c0818af69861}] =>Adware.Hotbar [HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{628F3201-34D0-49C0-BB9A-82A26AEFB291}] =>Adware.SocialSkinz [HKLM\Software\Classes\TypeLib\{63AF3145-D2DC-4F1D-BB3A-3AAD9FEC3430}] =>PUP.OfferBox [HKLM\Software\Classes\Interface\{641593AF-D9FD-30F7-B783-36E16F7A2E08}] =>PUP.RewardsArcade [HKLM\Software\Wow6432Node\Classes\Interface\{641593AF-D9FD-30F7-B783-36E16F7A2E08}] =>PUP.RewardsArcade [HKLM\Software\Classes\Interface\{6612AFDD-34AD-4B89-A236-7E6D07C3FDCD}] =>PUP.OfferBox [HKLM\Software\Wow6432Node\Classes\Interface\{6612AFDD-34AD-4B89-A236-7E6D07C3FDCD}] =>PUP.OfferBox [HKLM\Software\Classes\Interface\{6612afdd-34ad-4b89-a236-7e6d07c3fdcd}] =>Adware.AskSBAR [HKLM\Software\Wow6432Node\Classes\Interface\{6612afdd-34ad-4b89-a236-7e6d07c3fdcd}] =>Adware.AskSBAR [HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{68B81CCD-A80C-4060-8947-5AE69ED01199}] =>Adware.IMBooster [HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{6DF77AA3-27AF-46f2-A1DA-B569AC6BEEFF}] =>PUP.OfferBox [HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{6E13DDE1-2B6E-46CE-8B66-DC8BF36F6B99}] =>Adware.IncrediBar [HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{6E13DDE1-2B6E-46CE-8B66-DC8BF36F6B99}] =>Adware.IncrediBar [HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6E13DDE1-2B6E-46CE-8B66-DC8BF36F6B99}] =>Adware.IncrediBar [HKLM\Software\Classes\Interface\{6F6C45E4-E231-4F0F-8CD8-AA5770303EAA}] =>PUP.OfferBox [HKLM\Software\Wow6432Node\Classes\Interface\{6F6C45E4-E231-4F0F-8CD8-AA5770303EAA}] =>PUP.OfferBox [HKLM\Software\Classes\Interface\{706D4A4B-184A-4434-B331-296B07493D2D}] =>Toolbar.Babylon [HKLM\Software\Wow6432Node\Classes\Interface\{706D4A4B-184A-4434-B331-296B07493D2D}] =>Toolbar.Babylon [HKLM\Software\Classes\Interface\{711FC48A-1356-3932-94D8-A8B733DBC7E4}] =>PUP.RewardsArcade [HKLM\Software\Wow6432Node\Classes\Interface\{711FC48A-1356-3932-94D8-A8B733DBC7E4}] =>PUP.RewardsArcade [HKLM\Software\Classes\Interface\{72227B7F-1F02-3560-95F5-592E68BACC0C}] =>PUP.RewardsArcade [HKLM\Software\Wow6432Node\Classes\Interface\{72227B7F-1F02-3560-95F5-592E68BACC0C}] =>PUP.RewardsArcade [HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{74C36554-31F0-49DD-8857-ED6A64DF45BE}] =>Adware.IncrediBar [HKLM\Software\Classes\TypeLib\{74FB6AFD-DD77-4CEB-83BD-AB2B63E63C93}] =>Toolbar.Agent [HKLM\Software\Classes\Interface\{771B99AB-636F-4A11-9039-8DFEB927B061}] =>Adware.IncrediBar [HKLM\Software\Wow6432Node\Classes\Interface\{771B99AB-636F-4A11-9039-8DFEB927B061}] =>Adware.IncrediBar [HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Incredibar] =>Adware.IncrediBar [HKLM\Software\Classes\TypeLib\{79D60450-56C5-4A8C-9321-6D5BC2A81E5A}] =>Toolbar.Agent [HKLM\Software\Classes\Interface\{7B5E8CE3-4722-4C0E-A236-A6FF731BEF37}] =>PUP.RewardsArcade [HKLM\Software\Wow6432Node\Classes\Interface\{7B5E8CE3-4722-4C0E-A236-A6FF731BEF37}] =>PUP.RewardsArcade [HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{8375D9C8-634F-4ECB-8CF5-C7416BA5D542}] =>Toolbar.Babylon [HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{889DF117-14D1-44EE-9F31-C5FB5D47F68B}] =>Adware.Yontoo [HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{889DF117-14D1-44EE-9F31-C5FB5D47F68B}] =>Adware.Yontoo [HKLM\Software\Classes\Interface\{890D4F59-5ED0-3CB4-8E0E-74A5A86E7ED0}] =>PUP.RewardsArcade [HKLM\Software\Wow6432Node\Classes\Interface\{890D4F59-5ED0-3CB4-8E0E-74A5A86E7ED0}] =>PUP.RewardsArcade [HKLM\Software\Classes\Interface\{8BE10F21-185F-4CA0-B789-9921674C3993}] =>Toolbar.Babylon [HKLM\Software\Wow6432Node\Classes\Interface\{8BE10F21-185F-4CA0-B789-9921674C3993}] =>Toolbar.Babylon [HKLM\Software\Classes\Interface\{8C68913C-AC3C-4494-8B9C-984D87C85003}] =>PUP.RewardsArcade [HKLM\Software\Wow6432Node\Classes\Interface\{8C68913C-AC3C-4494-8B9C-984D87C85003}] =>PUP.RewardsArcade [HKLM\Software\Classes\Interface\{8D019513-083F-4AA5-933F-7D43A6DA82C4}] =>PUP.RewardsArcade [HKLM\Software\Wow6432Node\Classes\Interface\{8D019513-083F-4AA5-933F-7D43A6DA82C4}] =>PUP.RewardsArcade [HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{8D15E1B2-D2B7-4A17-B44B-D2DDE5981406}] =>Adware.Bandoo [HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{8F97BFF8-488B-4107-BCEE-B161AB4E4183}] =>Toolbar.Agent [HKLM\Software\Classes\Interface\{923F6FB8-A390-370E-A0D2-DD505432481D}] =>PUP.RewardsArcade [HKLM\Software\Wow6432Node\Classes\Interface\{923F6FB8-A390-370E-A0D2-DD505432481D}] =>PUP.RewardsArcade [HKLM\Software\Classes\Interface\{94C0B25D-3359-4B10-B227-F96A77DB773F}] =>Toolbar.Babylon [HKLM\Software\Wow6432Node\Classes\Interface\{94C0B25D-3359-4B10-B227-F96A77DB773F}] =>Toolbar.Babylon [HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{96bd48dd-741b-41ae-ac4a-aff96ba00f7e}] =>Toolbar.Agent [HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{96BD48DD-741B-41AE-AC4A-AFF96BA00F7E}] =>Toolbar.Agent [HKLM\Software\Classes\TypeLib\{99C22A61-21BA-4F81-85FF-CDC9EB5DB10B}] =>Toolbar.Agent [HKLM\Software\Classes\Interface\{9BBB26EF-B178-35D6-9D3D-B485F4279FE5}] =>PUP.RewardsArcade [HKLM\Software\Wow6432Node\Classes\Interface\{9BBB26EF-B178-35D6-9D3D-B485F4279FE5}] =>PUP.RewardsArcade [HKLM\Software\Classes\TypeLib\{9C049BA6-EA47-4AC3-AED6-A66D8DC9E1D8}] =>Toolbar.Agent [HKLM\Software\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}] =>Toolbar.Agent [HKLM\Software\Wow6432Node\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}] =>Toolbar.Agent [HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{A1B48071-416D-474E-A13B-BE5456E7FC31}] =>Toolbar.Agent [HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{A1B48071-416D-474E-A13B-BE5456E7FC31}] =>Toolbar.Agent [HKLM\Software\Classes\Interface\{A36867C6-302D-49FC-9D8E-1EB037B5F1AB}] =>Toolbar.Expresso [HKLM\Software\Wow6432Node\Classes\Interface\{A36867C6-302D-49FC-9D8E-1EB037B5F1AB}] =>Toolbar.Expresso [HKLM\Software\Classes\Interface\{A62DDBE0-8D2A-339A-B089-8CBCC5CD322A}] =>PUP.RewardsArcade [HKLM\Software\Wow6432Node\Classes\Interface\{A62DDBE0-8D2A-339A-B089-8CBCC5CD322A}] =>PUP.RewardsArcade [HKLM\Software\Classes\Interface\{A82AD04D-0B8E-3A49-947B-6A69A8A9C96D}] =>PUP.RewardsArcade [HKLM\Software\Wow6432Node\Classes\Interface\{A82AD04D-0B8E-3A49-947B-6A69A8A9C96D}] =>PUP.RewardsArcade [HKLM\Software\Classes\Interface\{A8321AA2-2227-40C7-8525-6C2F4E1B0EBE}] =>Adware.IncrediBar [HKLM\Software\Wow6432Node\Classes\Interface\{A8321AA2-2227-40C7-8525-6C2F4E1B0EBE}] =>Adware.IncrediBar [HKLM\Software\Classes\Interface\{AA41A731-6814-4A70-A6F1-C0A20FBBFBD5}] =>Adware.IncrediBar [HKLM\Software\Wow6432Node\Classes\Interface\{AA41A731-6814-4A70-A6F1-C0A20FBBFBD5}] =>Adware.IncrediBar [HKLM\Software\Classes\Interface\{ABBB8A9E-D8AF-40D1-94BE-5175077465FC}] =>Adware.IncrediBar [HKLM\Software\Wow6432Node\Classes\Interface\{ABBB8A9E-D8AF-40D1-94BE-5175077465FC}] =>Adware.IncrediBar [HKLM\Software\Classes\Interface\{ADEB3CC9-A05D-4FCC-BD09-9025456AA3EA}] =>PUP.RewardsArcade [HKLM\Software\Wow6432Node\Classes\Interface\{ADEB3CC9-A05D-4FCC-BD09-9025456AA3EA}] =>PUP.RewardsArcade [HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}] =>Toolbar.Conduit [HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}] =>Toolbar.Conduit [HKLM\Software\Classes\Interface\{B06D4521-D09C-3F41-8E39-9D784CCA2A75}] =>PUP.RewardsArcade [HKLM\Software\Wow6432Node\Classes\Interface\{B06D4521-D09C-3F41-8E39-9D784CCA2A75}] =>PUP.RewardsArcade [HKLM\Software\Classes\Interface\{B0B75FBA-7288-4FD3-A9EB-7EE27FA65599}] =>Toolbar.Babylon [HKLM\Software\Wow6432Node\Classes\Interface\{B0B75FBA-7288-4FD3-A9EB-7EE27FA65599}] =>Toolbar.Babylon [HKLM\Software\Classes\AppID\{B12E99ED-69BD-437C-86BE-C862B9E5444D}] =>Toolbar.Babylon [HKLM\Software\Wow6432Node\Classes\AppID\{B12E99ED-69BD-437C-86BE-C862B9E5444D}] =>Toolbar.Babylon [HKLM\Software\Classes\Interface\{B173667F-8395-4317-8DD6-45AD1FE00047}] =>Toolbar.Babylon [HKLM\Software\Wow6432Node\Classes\Interface\{B173667F-8395-4317-8DD6-45AD1FE00047}] =>Toolbar.Babylon [HKLM\Software\Classes\AppID\{B302A1BD-0157-49FA-90F1-4E94F22C7B4B}] =>Toolbar.Agent [HKLM\Software\Wow6432Node\Classes\AppID\{B302A1BD-0157-49FA-90F1-4E94F22C7B4B}] =>Toolbar.Agent [HKLM\Software\Classes\Interface\{B32672B3-F656-46E0-B584-FE61C0BB6037}] =>Toolbar.Babylon [HKLM\Software\Wow6432Node\Classes\Interface\{B32672B3-F656-46E0-B584-FE61C0BB6037}] =>Toolbar.Babylon [HKLM\Software\Classes\Interface\{b5d2ed96-62f9-4c2c-956d-e425b1f67337}] =>Adware.Hotbar [HKLM\Software\Wow6432Node\Classes\Interface\{b5d2ed96-62f9-4c2c-956d-e425b1f67337}] =>Adware.Hotbar [HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{ba14329e-9550-4989-b3f2-9732e92d17cc}] =>Toolbar.Conduit [HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{ba14329e-9550-4989-b3f2-9732e92d17cc}] =>Toolbar.Conduit [HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{ba14329e-9550-4989-b3f2-9732e92d17cc}] =>Toolbar.Conduit [HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{BA14329E-9550-4989-B3F2-9732E92D17CC}] =>Toolbar.Conduit [HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{BA14329E-9550-4989-B3F2-9732E92D17CC}] =>Toolbar.Conduit [HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{BA14329E-9550-4989-B3F2-9732E92D17CC}] =>Toolbar.Conduit [HKLM\Software\Classes\AppID\{BB711CB0-C70B-482E-9852-EC05EBD71DBB}] =>Toolbar.Conduit [HKLM\Software\Wow6432Node\Classes\AppID\{BB711CB0-C70B-482E-9852-EC05EBD71DBB}] =>Toolbar.Conduit [HKLM\Software\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB}] =>Adware.CDNHelper [HKLM\Software\Wow6432Node\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB}] =>Adware.CDNHelper [HKLM\Software\Classes\AppID\{BDB69379-802F-4eaf-B541-F8DE92DD98DB}] =>Toolbar.Babylon [HKLM\Software\Wow6432Node\Classes\AppID\{BDB69379-802F-4eaf-B541-F8DE92DD98DB}] =>Toolbar.Babylon [HKLM\Software\Classes\Interface\{BF737694-56F6-46FA-9FDC-FA99A5B25FAD}] =>Adware.IncrediBar [HKLM\Software\Wow6432Node\Classes\Interface\{BF737694-56F6-46FA-9FDC-FA99A5B25FAD}] =>Adware.IncrediBar [HKLM\Software\Classes\Interface\{BFE569F7-646C-4512-969B-9BE3E580D393}] =>Toolbar.Babylon [HKLM\Software\Wow6432Node\Classes\Interface\{BFE569F7-646C-4512-969B-9BE3E580D393}] =>Toolbar.Babylon [HKLM\Software\Classes\Interface\{C06DAD42-6F39-4CE1-83CC-9A8B9105E556}] =>PUP.RewardsArcade [HKLM\Software\Wow6432Node\Classes\Interface\{C06DAD42-6F39-4CE1-83CC-9A8B9105E556}] =>PUP.RewardsArcade [HKLM\Software\Classes\Interface\{C2434722-5C85-4CA0-BA69-1B67E7AB3D68}] =>Toolbar.Babylon [HKLM\Software\Wow6432Node\Classes\Interface\{C2434722-5C85-4CA0-BA69-1B67E7AB3D68}] =>Toolbar.Babylon [HKLM\Software\Classes\Interface\{C2996524-2187-441F-A398-CD6CB6B3D020}] =>Toolbar.Babylon [HKLM\Software\Wow6432Node\Classes\Interface\{C2996524-2187-441F-A398-CD6CB6B3D020}] =>Toolbar.Babylon [HKLM\Software\Classes\TypeLib\{C2AC8A0E-E48E-484B-A71C-C7A937FAAB94}] =>Toolbar.Babylon [HKLM\Software\Classes\Interface\{C2E799D0-43A5-3477-8A98-FC5F3677F35C}] =>PUP.RewardsArcade [HKLM\Software\Wow6432Node\Classes\Interface\{C2E799D0-43A5-3477-8A98-FC5F3677F35C}] =>PUP.RewardsArcade [HKLM\Software\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}] =>Toolbar.Agent [HKLM\Software\Wow6432Node\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}] =>Toolbar.Agent [HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{C5F65718-341D-4e7d-9842-FCB9CC89527E}] =>Adware.SPointer [HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{C5F65718-341D-4e7d-9842-FCB9CC89527E}] =>Adware.SPointer [HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C5F65718-341D-4e7d-9842-FCB9CC89527E}] =>Adware.SPointer [HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{C6FDD0C3-266A-4DC3-B459-28C697C44CDC}] =>Toolbar.Conduit [HKLM\Software\Classes\Interface\{C9AE652B-8C99-4AC2-B556-8B501182874E}] =>Parasite.Pugi [HKLM\Software\Wow6432Node\Classes\Interface\{C9AE652B-8C99-4AC2-B556-8B501182874E}] =>Parasite.Pugi [HKLM\Software\Classes\Interface\{c9ae652b-8c99-4ac2-b556-8b501182874e}] =>Adware.PredictAd [HKLM\Software\Wow6432Node\Classes\Interface\{c9ae652b-8c99-4ac2-b556-8b501182874e}] =>Adware.PredictAd [HKLM\Software\Classes\Interface\{CFCD164E-8AC9-478E-9ECC-B616A932016C}] =>Adware.IncrediBar [HKLM\Software\Wow6432Node\Classes\Interface\{CFCD164E-8AC9-478E-9ECC-B616A932016C}] =>Adware.IncrediBar [HKLM\Software\Classes\AppID\{CFE8AAFD-A0F3-4329-84E9-6B679EC93EC2}] =>Adware.IncrediBar [HKLM\Software\Classes\TypeLib\{CFE8AAFD-A0F3-4329-84E9-6B679EC93EC2}] =>Adware.IncrediBar [HKLM\Software\Wow6432Node\Classes\AppID\{CFE8AAFD-A0F3-4329-84E9-6B679EC93EC2}] =>Adware.IncrediBar [HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{CFF4DB9B-135F-47C0-9269-B4C6572FD61A}] =>Adware.IncrediBar [HKLM\Software\Classes\Interface\{D16107CD-2AD5-46A8-BA59-303B7C32C500}] =>PUP.RewardsArcade [HKLM\Software\Wow6432Node\Classes\Interface\{D16107CD-2AD5-46A8-BA59-303B7C32C500}] =>PUP.RewardsArcade [HKLM\Software\Classes\Interface\{D25B101F-8188-3B43-9D85-201F372BC205}] =>PUP.RewardsArcade [HKLM\Software\Wow6432Node\Classes\Interface\{D25B101F-8188-3B43-9D85-201F372BC205}] =>PUP.RewardsArcade [HKLM\Software\Classes\Interface\{D2BA7595-5E44-3F1E-880F-03B3139FA5ED}] =>PUP.RewardsArcade [HKLM\Software\Wow6432Node\Classes\Interface\{D2BA7595-5E44-3F1E-880F-03B3139FA5ED}] =>PUP.RewardsArcade [HKLM\Software\Classes\Interface\{D35F5C81-17D9-3E1C-A1FC-4472542E1D25}] =>PUP.RewardsArcade [HKLM\Software\Wow6432Node\Classes\Interface\{D35F5C81-17D9-3E1C-A1FC-4472542E1D25}] =>PUP.RewardsArcade [HKLM\Software\Classes\Interface\{d3a412e8-1e4b-47d2-9b12-f88291f5afbb}] =>Adware.Hotbar [HKLM\Software\Wow6432Node\Classes\Interface\{d3a412e8-1e4b-47d2-9b12-f88291f5afbb}] =>Adware.Hotbar [HKLM\Software\Classes\Interface\{D4E856E7-C034-49BA-BFEF-B785F3CBD7BA}] =>PUP.OfferBox [HKLM\Software\Wow6432Node\Classes\Interface\{D4E856E7-C034-49BA-BFEF-B785F3CBD7BA}] =>PUP.OfferBox [HKLM\Software\Classes\TypeLib\{D530F69A-EB2D-4EC6-BD37-E123AEFCA011}] =>PUP.OfferBox [HKLM\Software\Classes\Interface\{D5961CC0-B442-4567-8030-67E241EF4CC2}] =>Adware.IncrediBar [HKLM\Software\Wow6432Node\Classes\Interface\{D5961CC0-B442-4567-8030-67E241EF4CC2}] =>Adware.IncrediBar [HKLM\Software\Classes\AppID\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}] =>Toolbar.Babylon [HKLM\Software\Classes\TypeLib\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}] =>Toolbar.Babylon [HKLM\Software\Wow6432Node\Classes\AppID\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}] =>Toolbar.Babylon [HKLM\Software\Classes\Interface\{D8FA96CA-B250-312C-AF34-4FF1DD72589D}] =>PUP.RewardsArcade [HKLM\Software\Wow6432Node\Classes\Interface\{D8FA96CA-B250-312C-AF34-4FF1DD72589D}] =>PUP.RewardsArcade [HKLM\Software\Classes\Interface\{DAFC1E63-3359-416D-9BC2-E7DCA6F7B0F3}] =>PUP.RewardsArcade [HKLM\Software\Wow6432Node\Classes\Interface\{DAFC1E63-3359-416D-9BC2-E7DCA6F7B0F3}] =>PUP.RewardsArcade [HKLM\Software\Classes\TypeLib\{DB538320-D3C5-433C-BCA9-C4081A054FCF}] =>PUP.RewardsArcade [HKLM\Software\Classes\Interface\{DB7A9C36-6C85-48BE-BA8D-151B6B144BE0}] =>PUP.OfferBox [HKLM\Software\Wow6432Node\Classes\Interface\{DB7A9C36-6C85-48BE-BA8D-151B6B144BE0}] =>PUP.OfferBox [HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{DBA4B812-2415-4000-AFCB-56F53E668DC5}] =>PUP.OfferBox [HKLM\Software\Classes\Interface\{DC5E5C44-80FD-3697-9E65-9F286D92F3E7}] =>PUP.RewardsArcade [HKLM\Software\Wow6432Node\Classes\Interface\{DC5E5C44-80FD-3697-9E65-9F286D92F3E7}] =>PUP.RewardsArcade [HKLM\Software\Classes\Interface\{E047E227-5342-4D94-80F7-CFB154BF55BD}] =>Toolbar.Babylon [HKLM\Software\Wow6432Node\Classes\Interface\{E047E227-5342-4D94-80F7-CFB154BF55BD}] =>Toolbar.Babylon [HKLM\Software\Classes\Interface\{E1B4C9DE-D741-385F-981E-6745FACE6F01}] =>PUP.RewardsArcade [HKLM\Software\Wow6432Node\Classes\Interface\{E1B4C9DE-D741-385F-981E-6745FACE6F01}] =>PUP.RewardsArcade [HKLM\Software\Classes\Interface\{E3F79BE9-24D4-4F4D-8C13-DF2C9899F82E}] =>Toolbar.Babylon [HKLM\Software\Wow6432Node\Classes\Interface\{E3F79BE9-24D4-4F4D-8C13-DF2C9899F82E}] =>Toolbar.Babylon [HKLM\Software\Classes\Interface\{E450067F-1C93-41A7-928E-07E5C2EEC680}] =>Adware.IncrediBar [HKLM\Software\Wow6432Node\Classes\Interface\{E450067F-1C93-41A7-928E-07E5C2EEC680}] =>Adware.IncrediBar [HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E6B969FB-6D33-48d2-9061-8BBD4899EB08}] =>Adware.IMBooster [HKLM\Software\Classes\Interface\{E77EEF95-3E83-4BB8-9C0D-4A5163774997}] =>Toolbar.Babylon [HKLM\Software\Wow6432Node\Classes\Interface\{E77EEF95-3E83-4BB8-9C0D-4A5163774997}] =>Toolbar.Babylon [HKLM\Software\Classes\Interface\{E7B623F5-9715-3F9F-A671-D1485A39F8A2}] =>PUP.RewardsArcade [HKLM\Software\Wow6432Node\Classes\Interface\{E7B623F5-9715-3F9F-A671-D1485A39F8A2}] =>PUP.RewardsArcade [HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}] =>Adware.Yontoo [HKLM\Software\Classes\TypeLib\{ED85AEBE-F834-4088-B5D3-97EB2478A6CD}] =>PUP.OfferBox [HKLM\Software\Classes\TypeLib\{ed85aebe-f834-4088-b5d3-97eb2478a6cd}] =>Adware.AskSBAR [HKLM\Software\Classes\Interface\{ED916A7B-7C68-3198-B87D-2DABC30A5587}] =>PUP.RewardsArcade [HKLM\Software\Wow6432Node\Classes\Interface\{ED916A7B-7C68-3198-B87D-2DABC30A5587}] =>PUP.RewardsArcade [HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{ef79f67a-6ad7-4715-a0f8-932fca442023}] =>Toolbar.Conduit [HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{ef79f67a-6ad7-4715-a0f8-932fca442023}] =>Toolbar.Conduit [HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{ef79f67a-6ad7-4715-a0f8-932fca442023}] =>Toolbar.Conduit [HKLM\Software\Classes\Interface\{EFA1BDB2-BB3D-3D9A-8EB5-D0D22E0F64F4}] =>PUP.RewardsArcade [HKLM\Software\Wow6432Node\Classes\Interface\{EFA1BDB2-BB3D-3D9A-8EB5-D0D22E0F64F4}] =>PUP.RewardsArcade [HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F25AF245-4A81-40DC-92F9-E9021F207706}] =>Toolbar.Agent [HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F25AF245-4A81-40DC-92F9-E9021F207706}] =>Toolbar.Agent [HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{F25AF245-4A81-40DC-92F9-E9021F207706}] =>Toolbar.Agent [HKLM\Software\Classes\Interface\{F4CBF4DD-F8FE-35BA-BB7E-68304DAAB70B}] =>PUP.RewardsArcade [HKLM\Software\Wow6432Node\Classes\Interface\{F4CBF4DD-F8FE-35BA-BB7E-68304DAAB70B}] =>PUP.RewardsArcade [HKLM\Software\Classes\Interface\{F77F3DFC-F5DC-4316-AB50-B50B16F2BEF4}] =>PUP.OfferBox [HKLM\Software\Wow6432Node\Classes\Interface\{F77F3DFC-F5DC-4316-AB50-B50B16F2BEF4}] =>PUP.OfferBox [HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F9639E4A-801B-4843-AEE3-03D9DA199E77}] =>Adware.IncrediBar [HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{F9639E4A-801B-4843-AEE3-03D9DA199E77}] =>Adware.IncrediBar [HKLM\Software\Classes\Interface\{F977D9F2-4BDC-44A6-B508-7C0284C61EED}] =>Toolbar.Agent [HKLM\Software\Wow6432Node\Classes\Interface\{F977D9F2-4BDC-44A6-B508-7C0284C61EED}] =>Toolbar.Agent [HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{FC0D62C2-9640-4AEB-A5D5-CF25DF11FA8C}] =>Hijacker.Agent [HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{FC0D62C2-9640-4AEB-A5D5-CF25DF11FA8C}] =>Hijacker.Agent [HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FC0D62C2-9640-4AEB-A5D5-CF25DF11FA8C}] =>Hijacker.Agent [HKLM\Software\Classes\Interface\{FC32005D-E27C-32E0-ADFA-152F598B75E7}] =>PUP.RewardsArcade [HKLM\Software\Wow6432Node\Classes\Interface\{FC32005D-E27C-32E0-ADFA-152F598B75E7}] =>PUP.RewardsArcade [HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{FCBCCB87-9224-4B8D-B117-F56D924BEB18}] =>Adware.SocialSkinz [HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{FCBCCB87-9224-4B8D-B117-F56D924BEB18}] =>Adware.SocialSkinz [HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FCBCCB87-9224-4B8D-B117-F56D924BEB18}] =>Adware.SocialSkinz [HKLM\Software\Classes\AppID\autocompletepro.dll] =>Adware.PredictAd [HKLM\Software\Classes\AppID\escort.dll] =>Toolbar.Babylon [HKLM\Software\Classes\AppID\escortapp.dll] =>Toolbar.Babylon [HKLM\Software\Classes\AppID\escorteng.dll] =>Toolbar.Babylon [HKLM\Software\Classes\AppID\esrv.EXE] =>Toolbar.Babylon [HKLM\Software\Classes\AppID\Extension.DLL] =>Toolbar.Expresso [HKLM\Software\Wow6432Node\Microsoft\Tracing\YourFile_RASAPI32] =>PUP.YourFileDownloader [HKLM\Software\Classes\AppID\ScriptHelper.EXE] =>Toolbar.Agent [HKLM\Software\Wow6432Node\Google\Chrome\Extensions\defdhglnppeioeflggkmglipcecffkhk] =>Adware.PredictAd [HKLM\Software\Wow6432Node\Microsoft\Tracing\YourFileUpdater_RASAPI32] =>PUP.YourFileDownloader [HKLM\Software\Classes\AVG Secure Search.BrowserWndAPI] =>Toolbar.AVGSearch [HKLM\Software\Classes\AVG Secure Search.PugiObj] =>Toolbar.AVGSearch [HKLM\Software\Classes\AVG Secure Search.PugiObj.1] =>Toolbar.AVGSearch [HKLM\Software\Classes\b] =>Toolbar.Babylon [HKLM\Software\Classes\Babylon.dskBnd] =>Toolbar.Babylon [HKLM\Software\Classes\Babylon.dskBnd.1] =>Toolbar.Babylon [HKLM\Software\Classes\bbylnApp.appCore] =>Toolbar.Babylon [HKLM\Software\Classes\bbylnApp.appCore.1] =>Toolbar.Babylon [HKLM\Software\Classes\Conduit.Engine] =>Toolbar.Conduit [HKLM\Software\Classes\escort.escortIEPane] =>PUP.Funmoods [HKLM\Software\Classes\escort.escortIEPane.1] =>PUP.Funmoods [HKLM\Software\Classes\escort.escrtBtn.1] =>Toolbar.Babylon [HKLM\Software\Classes\esrv.BabylonESrvc] =>Toolbar.Babylon [HKLM\Software\Classes\esrv.BabylonESrvc.1] =>Toolbar.Babylon [HKLM\Software\Classes\esrv.IncredibarESrvc] =>Adware.IncrediBar [HKLM\Software\Classes\esrv.IncredibarESrvc.1] =>Adware.IncrediBar [HKLM\Software\Classes\Extension.ExtensionHelperObject] =>Toolbar.Expresso [HKLM\Software\Classes\Extension.ExtensionHelperObject.1] =>Toolbar.Expresso [HKLM\Software\Classes\I] =>Adware.IncrediBar [HKLM\Software\Classes\ilivid] => [HKLM\Software\Classes\nctaudiocdwriter2.audiocdwriter2] =>Adware.RecordNRip [HKLM\Software\Classes\nctaudiocdwriter2.audiocdwriter2.1] =>Adware.RecordNRip [HKLM\Software\Classes\OfferBox.OfferBoxServer] =>PUP.OfferBox [HKLM\Software\Classes\OfferBox.OfferBoxServer.1] =>PUP.OfferBox [HKLM\Software\Classes\S] =>Toolbar.Agent [HKLM\Software\Classes\ScriptHelper.ScriptHelperApi] =>Toolbar.Agent [HKLM\Software\Classes\ScriptHelper.ScriptHelperApi.1] =>Toolbar.Agent [HKLM\Software\Classes\SMTTB2009.IEToolbar] =>Adware.SocialSkinz [HKLM\Software\Classes\SMTTB2009.IEToolbar.1] =>Adware.SocialSkinz [HKLM\Software\Classes\SMTTB2009.SMTTB2009] =>Adware.SocialSkinz [HKLM\Software\Classes\SMTTB2009.SMTTB2009.3] =>Adware.SocialSkinz [HKLM\Software\Classes\suggestmeyes.suggestmeyesbho] =>Adware.PredictAd [HKLM\Software\Classes\suggestmeyes.suggestmeyesbho.1] =>Adware.PredictAd [HKLM\Software\Classes\ViProtocol.ViProtocolOLE] =>Toolbar.Agent [HKLM\Software\Classes\ViProtocol.ViProtocolOLE.1] =>Toolbar.Agent [HKLM\Software\Wow6432Node\Microsoft\Tracing\YourFileUpdater_RASMANCS] =>PUP.YourFileDownloader [HKLM\Software\Wow6432Node\Google\Chrome\Extensions\bjeikeheijdjdfjbmknpefojickbkmom] =>PUP.OfferBox [HKLM\Software\Google\Chrome\Extensions\dlnembnfbcpjnepmfjmngjenhhajpdfd] =>Adware.IncrediBar [HKLM\Software\Wow6432Node\Google\Chrome\Extensions\dlnembnfbcpjnepmfjmngjenhhajpdfd] =>Adware.IncrediBar [HKLM\Software\Wow6432Node\Google\Chrome\Extensions\elhjaoldnkkbifioodjndkijecdeinld] =>Toolbar.Conduit [HKLM\Software\Wow6432Node\Google\Chrome\Extensions\pbiamblgmkgbcgbcgejjgebalncpmhnp] =>Adware. BullseyeToolbar [HKLM\Software\Classes\Installer\Features\2B1E51D87B2D71A44BB42DDD5E894160] =>Adware.Bandoo [HKLM\Software\Classes\Installer\Products\2B1E51D87B2D71A44BB42DDD5E894160] =>Adware.Bandoo [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\2B1E51D87B2D71A44BB42DDD5E894160] =>Adware.Bandoo [HKLM\Software\Wow6432Node\Classes\Installer\Features\2B1E51D87B2D71A44BB42DDD5E894160] =>Adware.Bandoo [HKLM\Software\Wow6432Node\Classes\Installer\Products\2B1E51D87B2D71A44BB42DDD5E894160] =>Adware.Bandoo [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\5E0C8759C69912A4485AD49572CE7CA3] =>Adware.Bandoo [HKLM\SYSTEM\CurrentControlSet\Services\IBUpdaterService] =>Adware.IncrediBar [HKCU\Software\1ClickDownload] =>PUP.1ClickDownloader [HKCU\Software\AutocompletePro] =>Adware.PredictAd [HKCU\Software\AutocompleteProBHO] =>Adware.PredictAd [HKCU\Software\BabylonToolbar] =>Toolbar.Babylon [HKLM\Software\Wow6432Node\BabylonToolbar] =>Toolbar.Babylon [HKCU\Software\AppDataLow\Software\BittorrentBar_FR] =>Toolbar.Conduit [HKLM\Software\Wow6432Node\BittorrentBar_FR] =>Toolbar.Conduit [HKCU\Software\Bywifi] =>Spyware.Bywifi [HKLM\Software\Wow6432Node\Bywifi] =>Spyware.Bywifi [HKCU\Software\AppDataLow\Software\conduitEngine] =>Toolbar.Conduit [HKLM\Software\Wow6432Node\conduitEngine] =>Toolbar.Conduit [HKCU\Software\AppDataLow\Software\ConduitSearchScopes] =>Toolbar.Conduit [HKLM\Software\CrazyLoader] =>Adware.SPointer [HKCU\Software\ilivid] =>Adware.Bandoo [HKLM\Software\Wow6432Node\ilivid] =>Adware.Bandoo [HKLM\Software\Wow6432Node\Iminent] =>Adware.IMBooster [HKCU\Software\Incredibar.com] =>Adware.IncrediBar [HKLM\Software\Wow6432Node\Incredibar.com] =>Adware.IncrediBar [HKLM\Software\Wow6432Node\InstUf] =>Adware.VirtualGirl [HKLM\Software\Wow6432Node\Jbz25] =>Adware.VirtualGirl [HKCU\Software\OfferBox] =>PUP.OfferBox [HKLM\Software\Wow6432Node\OfferBox] =>PUP.OfferBox [HKCU\Software\Softonic] =>Toolbar.Conduit [HKCU\Software\Somoto Toolbar] =>Toolbar.Agent [HKCU\Software\Spointer] =>Adware.SPointer [HKCU\Software\StartSearch] =>Hijacker.Agent [HKCU\Software\SweetIM] =>PUP.SweetIM [HKLM\Software\Wow6432Node\SweetIM] =>PUP.SweetIM [HKLM\Software\Tarma Installer] =>Toolbar.Agent [HKCU\Software\AppDataLow\Toolbar] =>Toolbar.Conduit [HKCU\Software\Totem] =>Adware.VirtualGirl [HKLM\Software\Wow6432Node\Totem] =>Adware.VirtualGirl [HKCU\Software\vShare.tv] =>PUP.VShareRedir [HKLM\Software\Web Assistant] =>Adware.IncrediBar [HKLM\Software\Wow6432Node\Web Assistant] =>Adware.IncrediBar [HKCU\Software\WNLT] =>Adware.IncrediBar [HKLM\Software\WNLT] =>Adware.IncrediBar [HKLM\Software\Wow6432Node\Microsoft\Tracing\Iminent_RASAPI32] =>Adware.Bandoo [HKLM\Software\Wow6432Node\Microsoft\Tracing\Iminent_RASMANCS] =>Adware.Bandoo [HKLM\Software\Wow6432Node\Microsoft\Tracing\incredibar_install_RASAPI32] =>Adware.IncrediBar [HKLM\Software\Wow6432Node\Microsoft\Tracing\incredibar_install_RASMANCS] =>Adware.IncrediBar [HKLM\Software\Wow6432Node\Microsoft\Tracing\IncredibarToolbar_RASAPI32] =>Adware.IncrediBar [HKLM\Software\Wow6432Node\Microsoft\Tracing\IncredibarToolbar_RASMANCS] =>Adware.IncrediBar [HKLM\Software\Wow6432Node\Microsoft\Tracing\MyBabylontb_RASAPI32] =>Toolbar.Babylon [HKLM\Software\Wow6432Node\Microsoft\Tracing\MyBabylontb_RASMANCS] =>Toolbar.Babylon [HKLM\Software\Wow6432Node\Microsoft\Tracing\SetupDataMngr_Searchqu_RASAPI32] =>Adware.Bandoo [HKLM\Software\Wow6432Node\Microsoft\Tracing\SetupDataMngr_Searchqu_RASMANCS] =>Adware.Bandoo [HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{336D0C35-8A85-403a-B9D2-65C292C39087}_is1] =>Adware.IncrediBar [HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\autocompletepro3_is1] =>Adware.PredictAd [HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\AVG Secure Search] =>Toolbar.AVGSearch [HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\BittorrentBar_FR Toolbar] =>Toolbar.Conduit [HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\conduitEngine] =>Toolbar.Conduit [HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\CrazyLoader] =>Adware.SPointer [HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\iLivid] =>Adware.Bandoo [HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\OfferBox] =>PUP.OfferBox [HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\SearchTheWebARP] =>Adware.IMBooster [HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Vuze_Remote Toolbar] =>Toolbar.Agent [HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\WNLT] =>Adware.IncrediBar [HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\YourFileDownloader] =>PUP.YourFileDownloader [HKCU\Software\JavaSoft\Prefs\crazyloader] =>Adware.SPointer [HKLM\Software\Classes\Prod.cap] =>Toolbar.Babylon [HKLM\Software\Wow6432Node\Microsoft\Tracing\offerbox_RASAPI32] =>PUP.OfferBox [HKLM\Software\Wow6432Node\Microsoft\Tracing\offerbox_RASMANCS] =>PUP.OfferBox [HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{CCC7A320-B3CA-4199-B1A6-9F516DD69829}] =>Toolbar.Agent [HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EF79F67A-6AD7-4715-A0F8-932FCA442023}] =>Toolbar.Conduit [HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EF79F67A-6AD7-4715-A0F8-932FCA442023}] =>Toolbar.Conduit [HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EF79F67A-6AD7-4715-A0F8-932FCA442023}] =>Toolbar.Conduit [HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{336D0C35-8A85-403A-B9D2-65C292C39087}] =>Adware.IncrediBar [HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{336D0C35-8A85-403A-B9D2-65C292C39087}] =>Adware.IncrediBar [HKLM\Software\Classes\CLSID\{336D0C35-8A85-403A-B9D2-65C292C39087}] =>Adware.IncrediBar [HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{336D0C35-8A85-403A-B9D2-65C292C39087}] =>Adware.IncrediBar [HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{336D0C35-8A85-403A-B9D2-65C292C39087}] =>Adware.IncrediBar [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\29799DE249E7DBC459FC6C8F07EB8375] =>Toolbar.Agent [HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0238BBE24EA3A70408B81E4BB89C15E5] =>Toolbar.Agent [HKLM\Software\Classes\AppID\ESRV.EXE] =>Adware.Facemoods [HKLM\Software\Classes\Incredibar.dskBnd] =>Adware.Incredibar [HKLM\Software\Classes\Incredibar.dskBnd.1] =>Adware.Incredibar [HKLM\Software\Classes\Incredibar.IncredibarHlpr] =>Adware.Incredibar [HKLM\Software\Classes\Incredibar.IncredibarHlpr.1] =>Adware.Incredibar [HKLM\Software\Classes\IncredibarApp.appCore] =>Adware.Incredibar [HKLM\Software\Classes\IncredibarApp.appCore.1] =>Adware.Incredibar [HKLM\Software\Classes\Crazyloader.Spointer] =>Adware.SPointer [HKLM\Software\Classes\Crazyloader.Spointer.1] =>Adware.SPointer [HKLM\Software\Classes\Crazyloader.SpointerCtrl] =>Adware.SPointer [HKLM\Software\Classes\Crazyloader.SpointerCtrl.1] =>Adware.SPointer [HKLM\Software\Classes\Toolbar.CT2117678] =>Toolbar.Conduit [HKLM\Software\Classes\Toolbar.CT2504091] =>Toolbar.Conduit [HKLM\Software\Classes\Toolbar.CT2612669] =>Toolbar.Conduit [HKLM\Software\Classes\Toolbar.CT2849852] =>Toolbar.Conduit [HKLM\Software\Classes\Toolbar3.SMTTB2009] =>Toolbar.Agent [HKLM\Software\Classes\Toolbar3.SMTTB2009.1] =>Toolbar.Agent [HKLM\Software\Classes\AppID\escort.DLL] =>PUP.Funmoods [HKLM\Software\Classes\AppID\escortApp.DLL] =>PUP.Funmoods [HKLM\Software\Classes\AppID\escortEng.DLL] =>PUP.Funmoods [HKLM\Software\Classes\AppID\escorTlbr.DLL] =>PUP.Funmoods [HKLM\Software\Wow6432Node\Classes\escort.escortIEPane] =>PUP.Funmoods [HKLM\Software\Wow6432Node\Classes\escort.escortIEPane.1] =>PUP.Funmoods [HKLM\Software\Wow6432Node\Classes\escort.escrtBtn.1] =>PUP.Funmoods [HKLM\Software\Wow6432Node\Classes\esrv.IncredibarESrvc] =>Adware.Incredibar [HKLM\Software\Wow6432Node\Classes\esrv.IncredibarESrvc.1] =>Adware.Incredibar [HKLM\Software\Wow6432Node\Classes\Incredibar.dskBnd] =>Adware.Incredibar [HKLM\Software\Wow6432Node\Classes\Incredibar.dskBnd.1] =>Adware.Incredibar [HKLM\Software\Wow6432Node\Classes\Incredibar.IncredibarHlpr] =>Adware.Incredibar [HKLM\Software\Wow6432Node\Classes\Incredibar.IncredibarHlpr.1] =>Adware.Incredibar [HKLM\Software\Wow6432Node\Classes\IncredibarApp.appCore] =>Adware.Incredibar [HKLM\Software\Wow6432Node\Classes\IncredibarApp.appCore.1] =>Adware.Incredibar [HKLM\Software\Wow6432Node\Classes\Crazyloader.Spointer] =>Adware.SPointer [HKLM\Software\Wow6432Node\Classes\Crazyloader.Spointer.1] =>Adware.SPointer [HKLM\Software\Wow6432Node\Classes\Crazyloader.SpointerCtrl] =>Adware.SPointer [HKLM\Software\Wow6432Node\Classes\Crazyloader.SpointerCtrl.1] =>Adware.SPointer [HKLM\Software\Wow6432Node\Classes\Toolbar.CT2117678] =>Toolbar.Conduit [HKLM\Software\Wow6432Node\Classes\Toolbar.CT2504091] =>Toolbar.Conduit [HKLM\Software\Wow6432Node\Classes\Toolbar.CT2612669] =>Toolbar.Conduit [HKLM\Software\Wow6432Node\Classes\Toolbar.CT2849852] =>Toolbar.Conduit [HKLM\Software\Wow6432Node\Classes\Toolbar3.SMTTB2009] =>Toolbar.Agent [HKLM\Software\Wow6432Node\Classes\Toolbar3.SMTTB2009.1] =>Toolbar.Agent [HKLM\Software\Wow6432Node\Classes\AppID\escort.DLL] =>PUP.Funmoods [HKLM\Software\Wow6432Node\Classes\AppID\escortApp.DLL] =>PUP.Funmoods [HKLM\Software\Wow6432Node\Classes\AppID\escortEng.DLL] =>PUP.Funmoods [HKLM\Software\Wow6432Node\Classes\AppID\escorTlbr.DLL] =>PUP.Funmoods [HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser]:{30F9B915-B755-4826-820B-08FBA6BD249D} =>Toolbar.Conduit [HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Toolbar]:{30F9B915-B755-4826-820B-08FBA6BD249D} =>Toolbar.Conduit C:\Program Files (x86)\yourfiledownloader =>PUP.YourFileDownloader C:\Program Files (x86)\AutocompletePro =>Adware.PredictAd C:\Program Files (x86)\AVG Secure Search =>Toolbar.AVGSearch C:\Program Files (x86)\BittorrentBar_FR =>Toolbar.Conduit C:\Program Files (x86)\Bywifi =>Spyware.Bywifi C:\Program Files (x86)\Conduit =>Toolbar.Conduit C:\Program Files (x86)\ConduitEngine =>Toolbar.Conduit C:\Program Files (x86)\Crazyloader =>Adware.SPointer C:\Program Files (x86)\Incredibar.com =>Adware.IncrediBar C:\Program Files (x86)\OfferBox =>PUP.OfferBox C:\Program Files (x86)\SplitCam DB Toolbar =>Adware.Cashback C:\Program Files (x86)\Vuze_Remote =>Toolbar.Conduit C:\Program Files (x86)\torntv.com =>Hijacker.TornTV C:\Program Files (x86)\Optimizer Pro =>PUP.OptimizerPro C:\Program Files (x86)\Common Files\AVG Secure Search =>Toolbar.AVGSearch C:\Program Files (x86)\Common Files\Totem Shared =>Adware.VirtualGirl C:\ProgramData\{2E51849B-6C53-4B47-9E70-462912833018} =>Adware.Bandoo C:\ProgramData\AVG Secure Search =>Toolbar.AVGSearch C:\ProgramData\AVG Security Toolbar =>Toolbar.AVGSearch C:\ProgramData\Babylon =>Toolbar.Babylon C:\ProgramData\GboxUpdater =>Hijacker.Agent C:\ProgramData\InstallMate =>Toolbar.Agent C:\ProgramData\Bcool =>PUP.Bcool C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bywifi =>Spyware.Bywifi C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bcool =>PUP.Bcool C:\Users\Alex4\AppData\Roaming\yourfiledownloader =>PUP.YourFileDownloader C:\Users\Alex4\AppData\Roaming\Crazyloader =>Adware.SPointer C:\Users\Alex4\AppData\Roaming\OfferBox =>PUP.OfferBox C:\Users\Alex4\AppData\Roaming\OpenCandy =>Adware.OpenCandy C:\Users\Alex4\AppData\Roaming\vghd =>Adware.VirtualGirl C:\Users\Alex4\AppData\Local\AVG Secure Search =>Toolbar.AVGSearch C:\Users\Alex4\AppData\Local\AVG Security Toolbar =>Toolbar.AVGSearch C:\Users\Alex4\AppData\Local\Conduit =>Toolbar.Conduit C:\Users\Alex4\AppData\Local\Crazyloader Air =>Adware.SPointer C:\Users\Alex4\AppData\Local\OpenCandy =>Adware.OpenCandy C:\Users\Alex4\AppData\Local\vghd =>Adware.VirtualGirl C:\Users\Alex4\AppData\LocalLow\AVG Secure Search =>Toolbar.AVGSearch C:\Users\Alex4\AppData\LocalLow\AVG Security Toolbar =>Toolbar.AVGSearch C:\Users\Alex4\AppData\LocalLow\BittorrentBar_FR =>Toolbar.Conduit C:\Users\Alex4\AppData\LocalLow\Conduit =>Toolbar.Conduit C:\Users\Alex4\AppData\LocalLow\ConduitEngine =>Toolbar.Conduit C:\Users\Alex4\AppData\LocalLow\Toolbar4 =>Toolbar.Conduit C:\Users\Alex4\AppData\LocalLow\Vuze_Remote =>Toolbar.Conduit C:\Users\Alex4\AppData\LocalLow\Bcool =>PUP.Bcool C:\Users\Alex4\AppData\Local\Google\Chrome\User Data\Default\Extensions\bjeikeheijdjdfjbmknpefojickbkmom =>PUP.OfferBox C:\Users\Alex4\AppData\Local\Temp\incredibar_installer.exe =>Adware.IncrediBar C:\Users\Alex4\AppData\Local\Temp\MyBabylonTB_google_20120807.exe =>PUP.SweetIM C:\Users\Alex4\AppData\Local\Temp\IminentSetup.exe =>Adware.IMBooster C:\Users\Alex4\AppData\Local\Temp\UpdateCheckerSetup.exe =>Adware.MegaSearch ~ Additionnel Scan: 679403 Items scanned in 00mn 42s ---\\ Product Upgrade Codes (O90) O90 - PUC: "000021094A0090400000000000F01FEC" . (.Microsoft Office 2003 Web Components.) -- C:\Windows\Installer\{90120000-00A4-0409-0000-0000000FF1CE}\misc.exe,6 O90 - PUC: "00006FCA9B229EC4896DC2FC53B9CA70" . (.ABBYY FineReader 6.0 Sprint.) -- C:\Windows\Installer\{ACF60000-22B9-4CE9-98D6-2CCF359BAC07}\ARPPRODUCTICON.exe O90 - PUC: "00381E6046BB4661E8A65239CF76BB47" . (.Autodesk Revit Interoperability for 3ds Max and 3ds Max Design 2013 64-bit.) -- C:\Windows\Installer\{06E18300-BB64-1664-8E6A-2593FC67BB74}\max.ico O90 - PUC: "057978BEDBCC3104FB5D20494DADB50D" . (.Apple Application Support.) -- C:\Windows\Installer\{EB879750-CCBD-4013-BFD5-0294D4DA5BD0}\WinInstall.ico O90 - PUC: "0694AF70830BBE9498B1F95939A05A44" . (.HP Customer Experience Enhancements.) -- C:\Windows\Installer\{07FA4960-B038-49EB-891B-9F95930AA544}\ARPPRODUCTICON.exe O90 - PUC: "076CFAAAB965F2A4284B2449E5D03EFE" . (.Windows Live Writer.) -- C:\Windows\Installer\{AAAFC670-569B-4A2F-82B4-42945E0DE3EF}\ApplicationIcon.ico O90 - PUC: "098990BCF5D15D11E99A0005AB3E711E" . (.PowerDirector.) -- C:\Windows\Installer\{CB099890-1D5F-11D5-9EA9-0050BAE317E1}\ARPPRODUCTICON.exe O90 - PUC: "1097CC45D40855143B35120FCC1921BA" . (.HP Wireless Assistant.) -- C:\Windows\Installer\{54CC7901-804D-4155-B353-21F0CC9112AB}\controlPanelIcon.exe O90 - PUC: "114202EE62C28E947948B11CBD7FED69" . (.HP Support Assistant.) -- C:\Windows\Installer\{EE202411-2C26-49E8-9784-1BC1DBF7DE96}\ARPPRODUCTICON.exe O90 - PUC: "11F12B5E3396B0E42AC597363E0CD711" . (.Windows Live Messenger.) -- C:\Windows\Installer\{E5B21F11-6933-4E0B-A25C-7963E3C07D11}\MsblIco.Exe O90 - PUC: "139808F2532D7CF409DC8F8A099CB7F2" . (.Composite 2013 64-bit.) -- C:\Windows\Installer\{2F808931-D235-4FC7-90CD-F8A890C97B2F}\compositeIcon O90 - PUC: "168061B30527E1545BEEB829FB037A01" . (.Microsoft Works.) -- C:\Windows\Installer\{3B160861-7250-451E-B5EE-8B92BF30A710}\MSWorks.exe O90 - PUC: "1D034B0FAA6BD374B960AAD30DF10D8B" . (.Microsoft SQL Server 2005 Compact Edition [ENU].) -- C:\Windows\Installer\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}\ProductIcon O90 - PUC: "1ED3565076566C049B03933D996B3496" . (.OpenOffice.org 3.3.) -- C:\Windows\Installer\{05653DE1-6567-40C6-B930-39D399B64369}\soffice.ico O90 - PUC: "242B66CB31FD466158B100216321DE89" . (.Autodesk Inventor Server Engine for 3ds Max Design 2013 64-bit.) -- C:\Windows\Installer\{BC66B242-DF13-1664-851B-00123612ED98}\max.ico O90 - PUC: "38E1FB04BE028D11795C00905C206085" . (.Power2Go.) -- C:\Windows\Installer\{40BF1E83-20EB-11D8-97C5-0009C5020658}\ARPPRODUCTICON.exe O90 - PUC: "42C6FBF1DF1C10144AB2C065F4E9E897" . (.PowerStarter.) -- C:\Windows\Installer\{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}\ARPPRODUCTICON.exe O90 - PUC: "487EA05EEBAFAD641A8FB7B665CD2BE2" . (.Microsoft Office Suite Activation Assistant.) -- C:\Windows\Installer\{E50AE784-FABE-46DA-A1F8-7B6B56DCB22E}\ARPPRODUCTICON.exe O90 - PUC: "4ACBE7FAFAF98CD4D8907658B48BD443" . (.RealDownloader.) -- C:\Windows\Installer\{AF7EBCA4-9FAF-4DC8-8D09-67854BB84D34}\AddRemoveProgramsIcon O90 - PUC: "5141C34CCFD39804A923B0CE2FA80664" . (.Age of Empires III - The Asian Dynasties.) -- C:\Windows\Installer\{C43C1415-3DFC-4089-9A32-0BECF28A6046}\ARPPRODUCTICON.exe O90 - PUC: "68AB67CA7DA76301B744AA0100000010" . (.Adobe Reader X (10.1.6) - Français.) -- C:\Windows\Installer\{AC76BA86-7AD7-1036-7B44-AA1000000001}\SC_Reader.ico O90 - PUC: "695EBC268BB1B7D40A65012378AB1D4C" . (.Autodesk Essential Skills Movies for 3ds Max Design 2013 64-bit.) -- C:\Windows\Installer\{62CBE596-1BB8-4D7B-A056-103287BAD1C4}\ARPPRODUCTICON.exe O90 - PUC: "701043F6AA9F6C745BC43C1AF91155F3" . (.Hewlett-Packard ACLM.NET v1.2.1.1.) -- C:\Windows\Installer\{6F340107-F9AA-47C6-B54C-C3A19F11553F}\ARPPRODUCTICON.exe O90 - PUC: "7C43C21609E58D74B9C5F017D78D7262" . (.swMSM.) -- C:\Windows\Installer\{612C34C7-5E90-47D8-9B5C-0F717DD82726}\ARPPRODUCTICON.exe O90 - PUC: "83412AE9A5399F84884D0A4341601EA2" . (.Ma-Config.com (64 bits).) -- C:\Windows\Installer\{9EA21438-935A-48F9-88D4-A0341406E12A}\maconfico O90 - PUC: "890B46E081086524AB323C614AA39D0B" . (.QuickTime.) -- C:\Windows\Installer\{0E64B098-8018-4256-BA23-C316A43AD9B0}\Installer.ico O90 - PUC: "8994BF104C33134458DE70E9E3FE7ED5" . (.YouCam.) -- C:\Windows\Installer\{01FB4998-33C4-4431-85ED-079E3EEFE75D}\ARPPRODUCTICON.exe O90 - PUC: "8F7924238982B454A94C7050A0BE533B" . (.Autodesk DirectConnect 2013 64-bit.) -- C:\Windows\Installer\{324297F8-2898-454B-9AC4-07050AEB35B3}\directconnect.png O90 - PUC: "9B21E606F14644642AA2FF83EA89A0DF" . (.Autodesk Material Library Base Resolution Image Library 2013.) -- C:\Windows\Installer\{606E12B9-641F-4644-A22A-FF38AE980AFD}\ARPPRODUCTICON.exe O90 - PUC: "9F2FDFE0D6387BE43AD230B83D1FBFA2" . (.Security Update for CAPICOM (KB931906).) -- C:\Windows\Installer\{0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A}\folder.ico O90 - PUC: "A06CC9B718B93A649A35676BFBE9CE79" . (.Age of Empires III.) -- C:\Windows\Installer\{7B9CC60A-9B81-46A3-A953-76B6BF9EEC97}\ARPPRODUCTICON.exe O90 - PUC: "A0BC5702F62DAAD44B42059792B634AB" . (.Windows Live FolderShare.) -- C:\Windows\Installer\{2075CB0A-D26F-4DAA-B424-5079296B43BA}\FolderShare48x48.ico O90 - PUC: "A0F7C4262B9894C4C9BAD99616E39CA5" . (.Microsoft IntelliPoint 8.2.) -- c:\Windows\Installer\{624C7F0A-89B2-4C49-9CAB-9D69613EC95A}\Mouse.ico O90 - PUC: "AB13AB34DB403AE2A0069A5CE4603D2F" . (.muvee Reveal.) -- C:\Windows\Installer\{43BA31BA-04BD-2EA3-0A60-A9C54E06D3F2}\muveeapp.ico O90 - PUC: "AE851E081817EF047A1003C16EEB46BA" . (.MediaShow.) -- C:\Windows\Installer\{80E158EA-7181-40FE-A701-301CE6BE64AB}\ARPPRODUCTICON.exe O90 - PUC: "B61FCC019C1F42B459074BCCEE2493D2" . (.LightScribe System Software.) -- C:\Windows\Installer\{10CCF16B-F1C9-4B24-9570-B4CCEE42392D}\ARPPRODUCTICON.exe O90 - PUC: "BA0A2B44E214C8F40B851D8EEACCFD5F" . (.PowerRecover.) -- C:\Windows\Installer\{44B2A0AB-412E-4F8C-B058-D1E8AECCDFF5}\ARPPRODUCTICON.exe O90 - PUC: "BEEBE7110BD58C34F96DDD85D31B25DD" . (.Autodesk Material Library 2013.) -- C:\Windows\Installer\{117EBEEB-5DB0-43C8-9FD6-DD583DB152DD}\ARPPRODUCTICON.exe O90 - PUC: "C42A80C1861BE7048A6286AF5F2F7001" . (.Age of Empires III - The WarChiefs.) -- C:\Windows\Installer\{1C08A24C-B168-407E-A826-68FAF5F20710}\ARPPRODUCTICON.exe O90 - PUC: "C7D8BF048FF62FA4CBB8B0D13BA20FB4" . (.HP Advisor.) -- C:\Windows\Installer\{40FB8D7C-6FF8-4AF2-BC8B-0B1DB32AF04B}\ARPPRODUCTICON.exe O90 - PUC: "C971C95CD8669A946BAE1012CCCF2134" . (.LabelPrint.) -- C:\Windows\Installer\{C59C179C-668D-49A9-B6EA-0121CCFC1243}\ARPPRODUCTICON.exe O90 - PUC: "CEE06785A6B84F3418AA96E683D1AFDD" . (.Autodesk Material Library Medium Resolution Image Library 2013.) -- C:\Windows\Installer\{58760EEC-8B6A-43F4-81AA-696E381DFADD}\ARPPRODUCTICON.exe O90 - PUC: "D16072CBECFF13940AF5CA69C40C62AC" . (.Registry Reviver.) -- C:\Windows\Installer\{BC27061D-FFCE-4931-A05F-AC964CC026CA}\ARPPRODUCTICON.exe O90 - PUC: "D7314F9862C648A4DB8BE2A5B47BE100" . (.Microsoft Silverlight.) -- c:\Windows\Installer\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}\ARPIcon O90 - PUC: "D8CCD6EFF724C5047A979CB3D6F9775A" . (.Autodesk Civil View for 3ds Max Design 2013.) -- C:\Windows\Installer\{FE6DCC8D-427F-405C-A779-C93B6D9F77A5}\ARPPRODUCTICON.exe O90 - PUC: "E7EFB369053C64344BC30B328503A654" . (.Apple Mobile Device Support.) -- C:\Windows\Installer\{963BFE7E-C350-4346-B43C-B02358306A45}\Installer.ico O90 - PUC: "E7FF67E4ABEA78C47B88DC745E24B5D9" . (.Skype™ 6.1.) -- C:\Windows\Installer\{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}\SkypeIcon.exe O90 - PUC: "E84E5F4E55179FC488DCF773E79CCA45" . (.Bonjour.) -- C:\Windows\Installer\{E4F5E48E-7155-4CF9-88CD-7F377EC9AC54}\Bonjour.ico O90 - PUC: "F13E2FB2BB8B7A046B05892DE8F0D774" . (.PowerDVD.) -- C:\Windows\Installer\{2BF2E31F-B8BB-40A7-B650-98D28E0F7D47}\ARPPRODUCTICON.exe O90 - PUC: "F21656D74B35904058AA12FDA5E84955" . (.Autodesk 3ds Max Design 2013 64-bit.) -- C:\Windows\Installer\{7D65612F-53B4-0409-85AA-21DF5A8E9455}\max.ico ~ Update Products: 150 Scanned in 00mn 00s ---\\ Etat général des services non Microsoft (EGS) (SR=Running, SS=Stopped) SR - | Auto 18/12/2012 65192 | (AdobeARMservice) . (.Adobe Systems Incorporated.) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe SS - | Demand 25/04/2013 256904 | (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe SR - | Auto 18/11/2009 98208 | (AERTFilters) . (.Andrea Electronics Corporation.) - C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe SR - | Auto 16/10/2010 37664 | (Apple Mobile Device) . (.Apple Inc..) - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe SS - | Demand 1025352 | (AVG Security Toolbar Service) . (...) - C:\Program Files (x86)\AVG\AVG10\Toolbar\ToolbarBroker.exe SR - | Auto 15/11/2012 5814904 | (AVGIDSAgent) . (.AVG Technologies CZ, s.r.o..) - C:\Program Files (x86)\AVG\AVG2013\avgidsagent.exe SR - | Auto 22/10/2012 196664 | (avgwd) . (.AVG Technologies CZ, s.r.o..) - C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe SR - | Auto 07/10/2010 345376 | (Bonjour Service) . (.Apple Inc..) - C:\Program Files (x86)\Bonjour\mDNSResponder.exe SR - | Demand 25/02/2010 227896 | (Com4QLBEx) . (.Hewlett-Packard Development Company, L.P..) - C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe SR - | Auto 14/07/2009 27136 | C:\Windows\System32\ezsvc7.dll (ezSharedSvc) . (.EasyBits Sofware AS.) - C:\Windows\System32\svchost.exe SS - | Demand 03/01/2013 1432400 | (FLEXnet Licensing Service 64) . (.Flexera Software, Inc..) - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe SS - | Demand 30/09/2010 246520 | (GameConsoleService) . (.WildTangent, Inc..) - C:\Program Files (x86)\HP Games\HP Game Console\GameConsoleService.exe SS - | Auto 02/09/2010 135664 | (gupdate) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe SS - | Demand 02/09/2010 135664 | (gupdatem) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe SS - | Demand 16/08/2012 194032 | (gusvc) . (.Google.) - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe SR - | Auto 27/09/2012 86528 | (HP Support Assistant Service) . (.Hewlett-Packard Company.) - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe SR - | Demand 10/08/2012 1001376 | (hpqwmiex) . (.Hewlett-Packard Company.) - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe SR - | Auto 1455408 | (IBUpdaterService) . (...) - C:\Windows\System32\dmwu.exe =>Adware.InstallBrain SS - | Demand 04/04/2005 69632 | (IDriverT) . (.Macrovision Corporation.) - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe SS - | Auto ??\??\???? 0 | C:\Windows\System32\libusbd-nt.exe (libusbd) . (.http://libusb-win32.sourceforge.net.) - c:\system32\libusbd-nt.exe SR - | Auto 16/10/2009 73728 | (LightScribeService) . (.Hewlett-Packard Company.) - C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe SR - | Auto 01/10/2009 268824 | (LMS) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe SS - | Demand 12/09/2010 325120 | (maconfservice) . (.CybelSoft.) - C:\Program Files\ma-config.com\x64\maconfservice.exe SR - | Auto 86016 | (mi-raysat_3dsmax2013_64) . (...) - C:\Program Files\Autodesk\3ds Max Design 2013\NVIDIA\raysat_3dsmax2013_64server.exe SS - | Demand 18/10/2012 113120 | (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe SR - | Auto 0 | (PnkBstrA) . (...) - C:\Windows\system32\PnkBstrA.exe SR - | Auto 38608 | (RealNetworks Downloader Resolver Service) . (...) - C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe SR - | Auto 247152 | (RichVideo) . (...) - C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe SR - | Auto 22/09/2010 249136 | (SeaPort) . (.Microsoft Corporation.) - C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe SS - | Auto 08/01/2013 161536 | (SkypeUpdate) . (.Skype Technologies.) - C:\Program Files (x86)\Skype\Updater\Updater.exe SS - | Demand 04/03/2013 79360 | (SolidWorks Licensing Service) . (.SolidWorks.) - C:\Program Files (x86)\Common Files\SolidWorks Shared\Service\SolidWorksLicensing.exe SR - | Auto 28/05/2007 275968 | (StarWindServiceAE) . (.Rocket Division Software.) - C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe SR - | Auto 01/10/2009 2320920 | (UNS) . (.Intel Corporation.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe SR - | Auto 968880 | (vToolbarUpdater14.2.0) . (...) - C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\14.2.0\ToolbarUpdater.exe =>Toolbar.AVGSearch SS - | Demand 0 | (wampapache) . (...) - c:\wamp\bin\apache\apache2.2.22\bin\httpd.exe SS - | Demand 0 | (wampmysqld) . (...) - c:\wamp\bin\mysql\mysql5.5.24\bin\mysqld.exe SR - | Auto 188760 | (Web Assistant) . (...) - C:\Program Files\Web Assistant\ExtensionUpdaterService.exe SS - | Demand 14/07/2009 27136 | C:\Program Files (x86)\Windows Defender\mpsvc.dll (WinDefend) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe SR - | Auto 0 | (WMPNetworkSvc) . (...) - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe SR - | Auto 14/07/2009 27136 | C:\Windows\System32\wuaueng.dll (wuauserv) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe ~ Services: Scanned in 00mn 02s ---\\ Recherche Master Boot Record Infection (MBR)(O80) Stealth MBR rootkit/Mebroot/Sinowal/TDL4 detector 0.4.2 by Gmer, http://www.gmer.net Run by Alex4 at 25/04/2013 23:40:15 device: opened successfully user: error reading MBR Disk trace: error: Read Descripteur non valide kernel: error reading MBR ~ MBR: 9 Scanned in 00mn 02s ---\\ Recherche Master Boot Record Infection (MBRCheck)(O80) Written by ad13, http://ad13.geekstog Run by Alex4 at 25/04/2013 23:40:17 ********* Dump file Name ********* C:\PhysicalDisk0_MBR.bin ~ MBR: Scanned in 00mn 04s End of the scan (3478 lines in 12mn 22s)(48)