[Résolu] Plusieurs soucis...

[pegotte]

bonjour

 

mon pc fonctionne sous xp.

comme navigateur j'utilise google chrome

mon antivirus est avira et j'ai aussi: malware.. systeme care advance.. ccleaner et glaries utilities que j'ai supprimé.

 

alors les souci que je rencontre: sur google chrome il y a plein de sites sur lequel je ne peux plus aller alors qu'avant ça fonctionnait

plein de pub qui s'ouvrent sans arret

je n'arrive plus a me servir de malware malerbytes ( je l'ai désinstallé plein de fois et remis mais rien n'y fait)

dès que je clique sur entrée la plupart du temps ça m'ouvre une autre page..

[pear]

Bonjour,

 

Suivez cette procédure attentivement, point par point, et postez en les rapports dans l'ordre
Comment poster les rapports
Aller sur le site :Ci-Joint
Appuyez sur Parcourir et chercher les rapports sur le disque,
Cliquer sur Ouvrir
Cliquer sur Créer le lien CJoint,
>> dans la page suivante --> ,,
une adresse http//.. sera créée
Copier /coller cette adresse dans votre prochain message.
Ne postez jamais vos réponses dans un message antérieur mais dans un nouveau message sinon nous ne sommes pas avertis de votre nouvelle réponsei

1)Si vous avez Adwcleaner depuis quelque temps, désinstallez le et installez la dernière version
Télécharger AdwCleaner
Sous Vista et Windows 7_ 8-> Exécuter en tant qu'administrateur
Afin de ne pas fausser les rapports,Scanner et Nettoyer ne doivent être lancés qu'une seule fois
Cliquez sur Scanner

NettoyageA faire sans délai
Cliquez sur Nettoyer et postez le rapport C:\AdwCleaner[s1].txt
Après redémarrage , un rapport à poster sera sur le bureau

2)Télécharger Junkware Removal Tool de thisisu
OS:Windows XP/Vista/7/8
Utilisable sur systèmes 32-bits et 64-bits

Clilquez sur Jrt.exe avec droits administrateur.
Si votre antvirus râle,Vous le signalez comme acceptable dans les exceptions de votre antivirus
Une fenêtre noire s'ouvre qui vous dit de cliquer une touche pour lancer le scan.

L'outil va prendre quelques minutes pour fouiller votre machine.
Patientez jusqu'à l'apparition de Jrt.txt dont vous posterez le contenu.

3)Téléchargez Malwarebytes Anti-Malware
Ici

ou là:
et enregistrez-le sur le Bureau.
Faites un double clic sur mbam-setup-2.0.0.1000.exe et suivez les invites pour installer le programme.
Cliquer Setting pour le mettre en Français
vérifiez que cette cases Lancer Malwarebytes Anti-Malware est bien cochée.
Un essai gratuit de 14 jours des fonctions de la version Premium(payante) est pré-sélectionné, décochez le.
Cela ne diminuera pas les capacités d'analyse et de suppression du programme.
Cliquez sur Terminer.



Dans l'onglet Paramètres > Sous-onglet Détection et Protection, Options de détection, cochez la case située devant Recherche de Rootkits
Sur le Tableau de bord, cliquez sur le lien Mettre à jour .
Si , par la suite, vos bases de données sont obsolètes vous en serez averti et invtié à Corriger maintenant.

Après la mise à jour,Connecter les supports amovibles (USB) et cliquer sur Examen-> Examen personnalisé
Cochez tout
cliquez sur le bouton Examiner maintenant .

Si Malewarebytes ne se lançait pas utilisez Chameleon
et
Si Mbam renacle ou plante, lancez Lancer Mbam-clean.exe
et réinstallez le

Si des éléments sont détectés, cliquez sur Appliquer les actions pour que MBAM nettoye ce qu'il a détecté.
Dans la plupart des cas, un redémarrage sera nécessaire.
Attendez l'affichage du message vous invitant à faire redémarrer le PC, puis cliquez sur Oui

(Copier dans le Presse-papiers pour coller dans une réponse sur le forum)
Après le redémarrage, quand vous êtes de retour sur le Bureau, ouvrez de nouveau MBAM.
Cliquez sur l'onglet Historique > Journaux de l'application.
Faites un double clic sur le Journal d'examen dont les date et heure correspondent à l'analyse qui vient d'être effectuée.
Cliquez sur Afficher puis Copier dans le Presse-papiers
Collez le contenu du Presse-papiers dans votre prochaine réponse.

4)Il faut Réinitialiser votre Navigateur
en cliquant ici

Cela désinstallera plugins et extensions que vous pourrez réinstaller avec la prudence nécessaire

5)Nouveau rapport Zhpdiag
Télécharger Zhpdiag

Double-cliquer sur ZHPDiag.exe pour installer l'outil
Il devrait y avoir 2 icônes sur le bureau ou dans le fichier d'installation de Zhpdiag.



Sous XP, double clic sur l'icône ZhpDiag
Sous Vista et +, faire un clic droit et Exécuter en tant qu'administrateur

Cliquez sur le bouton Complet

Patientez quelques instants
Le rapport ZhpDiag.txt apparaitra sur le bureau

[pegotte]

rapport mbam

Malwarebytes Anti-Malware

www.malwarebytes.org

Date de l'examen: 21/07/2014

Heure de l'examen: 12:21:23

Fichier journal: malware.txt

Administrateur: Oui

Version: 2.00.2.1012

Base de données Malveillants: v2014.03.04.09

Base de données Rootkits: v2014.02.20.01

Licence: Gratuite

Protection contre les malveillants: Désactivé(e)

Protection contre les sites Web malveillants: Désactivé(e)

Self-protection: Désactivé(e)

Système d'exploitation: Windows 7 Service Pack 1

Processeur: x64

Système de fichiers: NTFS

Utilisateur: peg

Type d'examen: Examen "Menaces"

Résultat: Terminé

Objets analysés: 247510

Temps écoulé: 20 min, 34 sec

Mémoire: Activé(e)

Démarrage: Activé(e)

Système de fichiers: Activé(e)

Archives: Activé(e)

Rootkits: Désactivé(e)

Heuristics: Activé(e)

PUP: Avertir

PUM: Activé(e)

Processus: 0

(No malicious items detected)

Modules: 0

(No malicious items detected)

Clés du Registre: 1

PUP.Optional.InstallBrain.A, HKU\S-1-5-18-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\WNLT, Aucune action, choix de l'utilisateur, [66e39a65dd9d8bab16dc1b969c67a25e],

Valeurs du Registre: 1

PUP.Optional.InstallBrain.A, HKU\S-1-5-18-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\WNLT|URL, SIM, Aucune action, choix de l'utilisateur, [66e39a65dd9d8bab16dc1b969c67a25e]

Données du Registre: 0

(No malicious items detected)

Dossiers: 0

(No malicious items detected)

Fichiers: 0

(No malicious items detected)

Secteurs physiques: 0

(No malicious items detected)

(end)

[pear]

Il faut rester sur votre sujet initial

[pegotte]

~ Lancé par peg (21/07/2014 13:05:52)

~ Adresse du Site Web http://nicolascoolman.fr

~ Adresse du Forum http://forum.nicolascoolman.fr

~ Traduit par Nicolas Coolman

~ Etat de la version : Version à jour.

~ Liste blanche : Désactivée par l'utilisateur

~ Elévation des Privilèges : OK

~ User Account Control (UAC): Activate by user

---\\ Navigateurs Internet

MSIE: Internet Explorer v11.0.9600.17207

GCIE: Google Chrome v35.0.1916.153 (Defaut)

---\\ Informations sur les produits Windows

~ Langage: Français

Windows 7 Home Premium, 64-bit Service Pack 1 (Build 7601)

Windows Server License Manager Script : OK

~ Windows Operating System - Windows® 7, OEM_SLP channel

System Locked Preinstallation (OEM_SLP) : OK

Windows ID Activation : OK

~ Windows Partial Key : 7QJB7

Windows License : OK

~ Windows Remaining Initializations Number : 3

Software Protection Service (Protection logicielle) : OK

Windows Automatic Updates : OK

Windows Activation Technologies : OK

---\\ Logiciels de protection du système

Avira Free Antivirus v14.0.5.464

Malwarebytes Anti-Malware version 2.0.2.1012

Windows Defender W7 (Activate)

---\\ Logiciels d'optimisation du système

CCleaner v4.12

---\\ Logiciels de partage PeerToPeer

---\\ Surveillance de Logiciels

Adobe Flash Player 11 ActiveX

Adobe Reader 9.5.5 MUI

Java 7 Update 51

Java 7 Update 51

---\\ Informations sur le système

~ Processor: AMD64 Family 17 Model 3 Stepping 1, AuthenticAMD

~ Operating System: 64 Bits

Boot mode: Normal (Normal boot)

Total RAM: 3838 MB (55% free)

System Restore: Activé (Enable)

System drive C: has 133 GB (46%) free of 285 GB

---\\ Mode de connexion au système

~ Computer Name: PEG-PC

~ User Name: peg

~ All Users Names: peg, Administrateur,

~ Unselected Option: None

Logged in as Administrator

---\\ Variables d'environnement

~ System Unit : C:\

~ %AppZHP% : C:\Users\peg\AppData\Roaming\ZHP\

~ %AppData% : C:\Users\peg\AppData\Roaming\

~ %Desktop% : C:\Users\peg\Desktop\

~ %Favorites% : C:\Users\peg\Favorites\

~ %LocalAppData% : C:\Users\peg\AppData\Local\

~ %StartMenu% : C:\Users\peg\AppData\Roaming\Microsoft\Windows\Start Menu\

~ %Windir% : C:\Windows\

~ %System% : C:\Windows\System32\

---\\ Enumération des unités disques

C: Hard drive, Flash drive, Thumb drive (Free 133 Go of 285 Go)

D: CD-ROM drive (Not Inserted)

---\\ Etat du Centre de Sécurité Windows

[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK

[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK

[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK

[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified

[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System] DisableTaskMgr: OK

[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System] DisableRegistryTools: OK

[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK

[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: OK

[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK

[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK

[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK

[HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK

[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK

~ Security Center: 44 Scanned in 00mn 00s

---\\ Recherche particulière de fichiers génériques

[MD5.332FEAB1435662FC6C672E25BEB37BE3] - (.Microsoft Corporation - Explorateur Windows.) (.25/02/2011 - 07:19:30.) -- C:\Windows\Explorer.exe [2871808]

[MD5.94355C28C1970635A31B3FE52EB7CEBA] - (.Microsoft Corporation - Application de démarrage de Windows.) (.14/07/2009 - 02:39:52.) -- C:\Windows\System32\Wininit.exe [129024]

[MD5.2EE102DF0EDD8A1EDD3D1E9B99A91BEC] - (.Microsoft Corporation - Extensions Internet pour Win32.) (.18/06/2014 - 23:58:27.) -- C:\Windows\System32\wininet.dll [2266112]

[MD5.88AB9B72B4BF3963A0DE0820B4B0B06C] - (.Microsoft Corporation - Application d’ouverture de session Windows.) (.04/03/2014 - 10:43:50.) -- C:\Windows\System32\Winlogon.exe [455168]

[MD5.067FA52BFB59A56110A12312EF9AF243] - (.Microsoft Corporation - Bibliothèque de licences.) (.20/11/2010 - 14:27:26.) -- C:\Windows\System32\sppcomapi.dll [232448]

[MD5.FA886682CFC5D36718D3E436AACF10B9] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) (.30/05/2014 - 07:45:52.) -- C:\Windows\system32\Drivers\AFD.sys [497152]

[MD5.02062C0B390B7729EDC9E69C680A6F3C] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) (.14/07/2009 - 02:52:21.) -- C:\Windows\system32\Drivers\atapi.sys [24128]

[MD5.B8BD2BB284668C84865658C77574381A] - (.Microsoft Corporation - CD-ROM File System Driver.) (.14/07/2009 - 00:19:47.) -- C:\Windows\system32\Drivers\Cdfs.sys [92160]

[MD5.F036CE71586E93D94DAB220D7BDF4416] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.20/11/2010 - 10:19:21.) -- C:\Windows\system32\Drivers\Cdrom.sys [147456]

[MD5.9BB2EF44EAA163B29C4A4587887A0FE4] - (.Microsoft Corporation - DFS Namespace Client Driver.) (.20/11/2010 - 10:26:32.) -- C:\Windows\system32\Drivers\DfsC.sys [102400]

[MD5.97BFED39B6B79EB12CDDBFEED51F56BB] - (.Microsoft Corporation - High Definition Audio Bus Driver.) (.20/11/2010 - 11:43:43.) -- C:\Windows\system32\Drivers\HDAudBus.sys [122368]

[MD5.FA55C73D4AFFA7EE23AC4BE53B4592D3] - (.Microsoft Corporation - Pilote de port i8042.) (.14/07/2009 - 00:19:57.) -- C:\Windows\system32\Drivers\i8042prt.sys [105472]

[MD5.AF9B39A7E7B6CAA203B3862582E9F2D0] - (.Microsoft Corporation - IP Network Address Translator.) (.14/07/2009 - 01:10:03.) -- C:\Windows\system32\Drivers\IpNat.sys [116224]

[MD5.A5D9106A73DC88564C825D317CAC68AC] - (.Microsoft Corporation - Windows NT SMB Minirdr.) (.27/04/2011 - 03:40:40.) -- C:\Windows\system32\Drivers\MRxSmb.sys [158208]

[MD5.09594D1089C523423B32A4229263F068] - (.Microsoft Corporation - MBT Transport driver.) (.20/11/2010 - 10:23:20.) -- C:\Windows\system32\Drivers\netBT.sys [261632]

[MD5.1A29A59A4C5BA6F8C85062A613B7E2B2] - (.Microsoft Corporation - Pilote du système de fichiers NT.) (.24/01/2014 - 03:37:55.) -- C:\Windows\system32\Drivers\ntfs.sys [1684928]

[MD5.0086431C29C35BE1DBC43F52CC273887] - (.Microsoft Corporation - Pilote de port parallèle.) (.14/07/2009 - 01:00:41.) -- C:\Windows\system32\Drivers\Parport.sys [97280]

[MD5.471815800AE33E6F1C32FB1B97C490CA] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.20/11/2010 - 11:52:35.) -- C:\Windows\system32\Drivers\Rasl2tp.sys [129536]

[MD5.548260A7B8654E024DC30BF8A7C5BAA4] - (.Microsoft Corporation - SMB Transport driver.) (.14/07/2009 - 01:09:09.) -- C:\Windows\system32\Drivers\smb.sys [93184]

[MD5.DDAD5A7AB24D8B65F8D724F5C20FD806] - (.Microsoft Corporation - TDI Translation Driver.) (.20/11/2010 - 10:21:56.) -- C:\Windows\system32\Drivers\tdx.sys [119296]

[MD5.0D08D2F3B3FF84E433346669B5E0F639] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) (.20/11/2010 - 14:34:02.) -- C:\Windows\system32\Drivers\volsnap.sys [295808]

~ Generic Processes: Scanned in 00mn 00s

---\\ Etat des fichiers cachés (Caché/Total)

~ Mes images (My Pictures) : 1/865

~ Mes musiques (My Musics) : 33/61

~ Mes Videos (My Videos) : 1/231

~ Mes Favoris (My Favorites) : 1/69

~ Mes Documents (My Documents) : 1/1732

~ Mon Bureau (My Desktop) : 1/9

~ Menu demarrer (Programs) : 1/30

~ Hidden Files: Scanned in 00mn 08s

---\\ Processus lancés

[MD5.89F7B7CCC82D7E6FF9832FE3D24988C4] - (.Egis Technology Inc. - MyWinLocker.) -- C:\Program Files (x86)\EgisTec MyWinLocker\x86\mwlDaemon.exe [349552] [PID.2288]

[MD5.17C5E2A94AA1B42D499A5396D67E0B61] - (.Pas de propriétaire - DefaultSettingEXE MFC Application.) -- C:\Windows\PLFSetI.exe [206208] [PID.2604]

[MD5.127687F1D171D0820D02851A9FA62525] - (.IObit - Advanced SystemCare 7.) -- C:\Program Files (x86)\IObit\Advanced SystemCare 7\ASCTray.exe [2295584] [PID.1960]

[MD5.27964C4676D0F4B34DB7332AFA2B1474] - (.Egis Technology Inc. - PMM Update Application.) -- C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe [401192] [PID.3096]

[MD5.94D084C978587C57534D162EBEE45CDC] - (.Egis Technology Inc. - PdtWzd.exe.) -- C:\Program Files (x86)\Acer Bio Protection\PdtWzd.exe [3567104] [PID.3112]

[MD5.1E9B225DE829A6F666A0BA9B8A7984BF] - (.Avira Operations GmbH & Co. KG - Avira system tray application.) -- C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [750160] [PID.3120]

[MD5.CE5C9977DA751DDC30952AC4DCBCA788] - (.Hewlett-Packard - hpwuSchd Application.) -- C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe [49208] [PID.3140]

[MD5.5B6E8E09BE6401A7E022F52FDFCB2FF8] - (.Oracle Corporation - Java Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336] [PID.3156]

[MD5.6C695B04E2E29459CDC2E5C0970B883B] - (.Egis Technology Inc. - EgisUpdate Release Application.) -- C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe [201512] [PID.3856]

[MD5.7DCE7A74764EB7C67D21A32BC579453D] - (.Oracle Corporation - Java Update Checker.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe [507264] [PID.3164]

[MD5.A5FCD42334CCC682DA1882A54338686C] - (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [860488] [PID.3932]

[MD5.19A0A39635A48351A75D92938586FA72] - (.Nicolas Coolman - ZHPDiag.) -- C:\Program Files (x86)\ZHPDiag\ZHPDiag.exe [8078848] [PID.5108]

[MD5.6C856C581ACE1785CE3FC2414E9859A3] - (.IObit - Advanced SystemCare Service.) -- C:\Program Files (x86)\IObit\Advanced SystemCare 7\ASCService.exe [881952] [PID.780]

[MD5.61298563754EEEA48E027769F50B596D] - (.AuthenTec, Inc. - AFSS Service.) -- C:\Program Files (x86)\Fingerprint Sensor\AtService.exe [1807608] [PID.864]

[MD5.A94720EC3550BBF342453C543FBB4A5A] - (.Egis Technology Inc. - Pas de description.) -- C:\Program Files (x86)\Acer Bio Protection\CompPtcVUI.exe [3353088] [PID.1268]

[MD5.4C14746BCBF9985BDBF1CD1BEED96DF8] - (.Avira Operations GmbH & Co. KG - Antivirus Host Framework Service.) -- C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [430160] [PID.1536]

[MD5.4C14746BCBF9985BDBF1CD1BEED96DF8] - (.Avira Operations GmbH & Co. KG - Antivirus Host Framework Service.) -- C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [430160] [PID.1688]

[MD5.816FD5A6F3C2F3D600900096632FC60E] - (.Acer Incorporated - Global Registration Service.) -- C:\Program Files (x86)\Acer\Registration\GregHSRW.exe [1150496] [PID.2044]

[MD5.C7C5728E8562F4C69C4CC84C1DAA3365] - (.Egis Technology Inc. - BASVC.exe.) -- C:\Program Files (x86)\Acer Bio Protection\BASVC.exe [3449856] [PID.1360]

[MD5.B5071E15D4C3F5EF5018AFF7E85A85E5] - (.NewTech Infosystems, Inc. - NTI Backup Now 5 SchedulerSvc NT Service.) -- C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe [144640] [PID.1840]

[MD5.1713D9DE407313138118D501B0E3C05B] - (...) -- C:\Windows\SysWOW64\PnkBstrA.exe [75136] [PID.1452]

[MD5.8F0DE4FEF8201E306F9938B0905AC96A] - (.Google Inc. - Programme d'installation de Google.) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [135664] [PID.2648]

~ Processes Running: Scanned in 00mn 00s

---\\ Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2)

C:\Users\peg\AppData\Local\Google\Chrome\User Data\Default\Preferences

G1 - GCS: Preference [user Data\Default] None

G0 - GCSP: Preference [user Data\Default][HomePage] http://google/

G2 - GCE: Preference [user Data\Default] [ahfgeienlihckogmohjhadlkjgocpleb] Store v.0.2 (Activé)

G2 - GCE: Preference [user Data\Default] [chllelencipbhdcelplgadmefkopmpgd] China Weather Forecast v.203 (Désactivé)

G2 - GCE: Preference [user Data\Default] [eemcgdkfndhakfknompkggombfjjjeno] Bookmark Manager v.0.1 (Activé)

G2 - GCE: Preference [user Data\Default] [ennkphjdgehloodpbhlhldgbnhmacadg] Settings v.0.2 (Activé)

G2 - GCE: Preference [user Data\Default] [gfdkimpbcpahaombhbimeihdjnejgicl] Feedback v.1.0 (Activé)

G2 - GCE: Preference [user Data\Default] [kcnjgaddipkimeheeiodoejgpopaemdk] Cloud Bookmarks in WeChat v.241 (Désactivé)

G2 - GCE: Preference [user Data\Default] [mfehgcgbbipciphmccgaenjidiccnmng] Cloud Print v.0.1 (Activé)

G2 - GCE: Preference [user Data\Default] [mfffpogegjflfpflabcdkioaeobkgjik] GaiaAuthExtension v.0.0.1, (Activé)

G2 - GCE: Preference [user Data\Default] [mgndgikekgjfcpckkfioiadnlibdjbkf] Chrome v.0.1 (Activé)

G2 - GCE: Preference [user Data\Default] [neajdppkdcdipfabeoofebfddakdcjhd] Google Network Speech v.1.0 (Activé)

G2 - GCE: Preference [user Data\Default] [nkeimhogjdpnpccoofpliimaahmaaome] Hangout Services v.1.0 (Activé)

G2 - GCE: Preference [user Data\Default] [nmmhkkegccagdldgiimedpiccmgmieda] Google Wallet v.0.0.6.1 (Activé)

G2 - GCE: Preference [user Data\Default] [pafkbggdmjlpgkdkcbjmhmfcdpncadgh] Google Now v.1.2.0.1 (Activé)

---\\ Liste des dossiers d'extension Google Chrome

G2 - EXT: C:\Users\peg\AppData\Local\Google\Chrome\User Data\Default\Extensions\chllelencipbhdcelplgadmefkopmpgd [China Weather Forecast]

G2 - EXT: C:\Users\peg\AppData\Local\Google\Chrome\User Data\Default\Extensions\kcnjgaddipkimeheeiodoejgpopaemdk [Cloud Bookmarks in WeChat]

G2 - EXT: C:\Users\peg\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [Google Wallet]

~ Google Lines Browser: 18 Scanned in 00mn 01s

---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3)

M2 - MFEP: prefs.js [peg - extensions\ascsurfingprotection@iobit.com] [] Advanced SystemCare Surfing Protection v1.0 (..)

P2 - FPN: [HKLM] [@java.com/DTPlugin,version=10.51.2] - (.Oracle Corporation - NPRuntime Script Plug-in Library for Java Deploy.) -- C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll

P2 - FPN: [HKLM] [@java.com/JavaPlugin,version=10.51.2] - (.Oracle Corporation - Next Generation Java Plug-in 10.51.2 for Mozilla browsers.) -- C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll

P2 - FPN: [HKLM] [@Microsoft.com/NpCtrl,version=1.0] - (. Microsoft Corporation - 5.1.30214.0.) -- c:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll

P2 - FPN: [HKCU] [@unity3d.com/UnityPlayer,version=1.0] - (.Unity Technologies ApS - Unity Player 4.5.1f3.) -- C:\Users\peg\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll

~ Firefox Browser: 5 Scanned in 00mn 00s

---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)

R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.trovi.com =>Hijacker.TroviCom

R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com

R0 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = www.google.com

R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com

R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com

R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com

R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons

R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk

R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com

R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com

R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com

R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com

R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons

R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk

R3 - URLSearchHook: Microsoft Url Search Hook [64Bits] - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Navigateur Internet.) (11.00.9600.17041 (winblue_gdr.140305-1710)) -- C:\Windows\SysWOW64\ieframe.dll

R4 - HKLM\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 1

R4 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\PhishingFilter,EnabledV8 = 1

~ IE Browser: 18 Scanned in 00mn 00s

---\\ Internet Explorer, Proxy Management (R5)

R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = <local>

R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = http=http://127.0.0.1:9880 =>Hijacker.Proxy

R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0

R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1

R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1

R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyHttp1.1 = 1

R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll

~ Proxy management: Scanned in 00mn 00s

---\\ Analyse des lignes F0, F1, F2, F3 - IniFiles, Autoloading programs

F2 - REG:system.ini: USERINIT=C:\Windows\System32\Userinit.exe,

F2 - REG:system.ini: Shell=C:\Windows\explorer.exe

F2 - REG:system.ini: VMApplet=C:\Windows\System32\SystemPropertiesPerformance.exe

~ Keys: Scanned in 00mn 00s

---\\ Hosts file redirection (O1)

~ Le fichier hosts est sain (The hosts file is clean).

~ Hosts File: Scanned in 00mn 00s

~ Nombre de lignes (Lines number): 22

---\\ Browser Helper Objects de navigateur (O2)

O2 - BHO: AcroIEHelperStub [64Bits] - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} . (.Adobe Systems Incorporated - Adobe PDF Helper for Internet Explorer.) -- C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll

O2 - BHO: Java Plug-In SSV Helper [64Bits] - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} . (.Oracle Corporation - Java Platform SE binary.) -- C:\Program Files (x86)\Java\jre7\bin\ssv.dll

O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live ID [64Bits] - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corp. - Microsoft® Windows Live ID Login Helper.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

O2 - BHO: Google Toolbar Helper [64Bits] - {AA58ED58-01DD-4d91-8333-CF10577473F7} . (.Google Inc. - Google Toolbar.) -- C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll

O2 - BHO: Advanced SystemCare Browser Protection [64Bits] - {BA0C978D-D909-49B6-AFE2-8BDE245DC7E6} . (.IObit - Advanced SystemCare 7 ASCPlugin_Protection.) -- C:\Program Files (x86)\IObit\Surfing Protection\BrowerProtect\ASCPlugin_Protection.dll

O2 - BHO: FineDealSofT [64Bits] - {CA5D1CC3-2179-936C-3590-40FDC3A95429} . (...) -- C:\ProgramData\FineDealSofT\5GsbHw.dll =>PUP.FineDealSoft

O2 - BHO: Java Plug-In 2 SSV Helper [64Bits] - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Oracle Corporation - Java Platform SE binary.) -- C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll

O2 - BHO: ExplorerWnd Helper [64Bits] - {10921475-03CE-4E04-90CE-E2E7EF20C814} Clé orpheline

~ BHO: 13 Scanned in 00mn 00s

---\\ Internet Explorer Toolbars (O3)

O3 - Toolbar\WebBrowser: (no name) - [HKCU]{724D43A0-0D85-11D4-9908-00400523E39A} Clé orpheline

~ Toolbar: Scanned in 00mn 00s

---\\ Applications lancées au démarrage du système (O4)

O4 - HKLM\..\Run: [RtHDVCpl] . (.Realtek Semiconductor - Gestionnaire audio HD Realtek.) -- C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe =>.Realtek Semiconductor Corp

O4 - HKLM\..\Run: [synTPEnh] C:\Program Files (x86)\Synaptics\SynTP\SynTPEnh.exe (.not file.)

O4 - HKLM\..\Run: [mwlDaemon] . (.Egis Technology Inc. - MyWinLocker.) -- C:\Program Files (x86)\EgisTec MyWinLocker\x86\mwlDaemon.exe

O4 - HKLM\..\Run: [ePower_DMC] . (.Acer Inc. - Acer ePower Management - DMC.) -- C:\Program Files\Acer\Empowering Technology\ePower\ePower_DMC.exe

O4 - HKLM\..\Run: [PLFSetI] . (.Pas de propriétaire - DefaultSettingEXE MFC Application.) -- C:\Windows\PLFSetI.exe

O4 - HKCU\..\Run: [swg] . (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe

O4 - HKCU\..\Run: [Advanced SystemCare 7] . (.IObit - Advanced SystemCare 7.) -- C:\Program Files (x86)\IObit\Advanced SystemCare 7\ASCTray.exe

O4 - HKLM\..\Wow6432Node\Run: [suiteTray] . (.Egis Technology Inc. - SuiteTray.) -- C:\Program Files (x86)\EgisTec MyWinLockerSuite\x86\SuiteTray.exe

O4 - HKLM\..\Wow6432Node\Run: [EgisUpdate] . (.Egis Technology Inc. - EgisUpdate Release Application.) -- C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe

O4 - HKLM\..\Wow6432Node\Run: [EgisTecPMMUpdate] . (.Egis Technology Inc. - PMM Update Application.) -- C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe

O4 - HKLM\..\Wow6432Node\Run: [Adobe Reader Speed Launcher] . (.Adobe Systems Incorporated - Adobe Acrobat SpeedLauncher.) -- C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe

O4 - HKLM\..\Wow6432Node\Run: [VitaKeyPdtWzd] . (.Egis Technology Inc. - PdtWzd.exe.) -- C:\Program Files (x86)\Acer Bio Protection\PdtWzd.exe

O4 - HKLM\..\Wow6432Node\Run: [avgnt] . (.Avira Operations GmbH & Co. KG - Avira system tray application.) -- C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe

O4 - HKLM\..\Wow6432Node\Run: [Adobe ARM] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe =>.Adobe Systems Incorporated

O4 - HKLM\..\Wow6432Node\Run: [HP Software Update] . (.Hewlett-Packard - hpwuSchd Application.) -- C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe =>.Hewlett-Packard Co

O4 - HKLM\..\Wow6432Node\Run: [sunJavaUpdateSched] . (.Oracle Corporation - Java Update Scheduler.) -- C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe =>.Oracle Corporation

O4 - HKUS\S-1-5-19\..\Run: [sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files (x86)\Windows Sidebar\Sidebar.exe =>.Microsoft Corporation

O4 - HKUS\S-1-5-20\..\Run: [sidebar] . (.Microsoft Corporation - Gadgets du Bureau Windows.) -- C:\Program Files (x86)\Windows Sidebar\Sidebar.exe =>.Microsoft Corporation

O4 - HKUS\.DEFAULT\..\RunOnce: [sPReview] . (.Microsoft Corporation - SP Reviewer.) -- C:\Windows\System32\SPReview\SPReview.exe =>.Microsoft Corporation

O4 - HKUS\S-1-5-18\..\RunOnce: [sPReview] . (.Microsoft Corporation - SP Reviewer.) -- C:\Windows\System32\SPReview\SPReview.exe =>.Microsoft Corporation

O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe =>.Microsoft Corporation

O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] . (.Microsoft Corporation - MCTAdmin.) -- C:\Windows\System32\mctadmin.exe =>.Microsoft Corporation

O4 - HKUS\S-1-5-21-1133902100-315402167-2135664018-1000\..\Run: [swg] . (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe

O4 - HKUS\S-1-5-21-1133902100-315402167-2135664018-1000\..\Run: [Advanced SystemCare 7] . (.IObit - Advanced SystemCare 7.) -- C:\Program Files (x86)\IObit\Advanced SystemCare 7\ASCTray.exe

~ Application: Scanned in 00mn 00s

---\\ Invisibilité de l'icône d'options IE dans le panneau de Configuration (O5)

O5 - control.ini: [HKLM\..\Control Panel] inetcpl.cpl=no

~ IE Control Panel: 1 Scanned in 00mn 00s

---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9)

O9 - Extra button: Quick-Launch Area [64Bits] - {10954C80-4F0F-11d3-B17C-00C0DFE39736} . (...) -- C:\Program Files (x86)\Acer Bio Protection\IETag.ico

~ IE Extra Buttons: Scanned in 00mn 00s

---\\ Winsock hijacker (Layered Service Provider) (O10)

O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Network Location Awareness 2.) -- C:\Windows\system32\NLAapi.dll

O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - Fournisseur Shim d’affectation de noms de messagerie.) -- C:\Windows\system32\napinsp.dll

O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll

O10 - WLSP:\000000000004\Winsock LSP File . (.Microsoft Corporation - Fournisseur d’espace de noms PNRP.) -- C:\Windows\system32\pnrpnsp.dll

O10 - WLSP:\000000000005\Winsock LSP File . (.Microsoft Corp. - Microsoft® Windows Live ID Namespace Provider.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.dll =>.Microsoft Corporation

O10 - WLSP:\000000000006\Winsock LSP File . (.Microsoft Corp. - Microsoft® Windows Live ID Namespace Provider.) -- C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.dll =>.Microsoft Corporation

O10 - WLSP:\000000000007\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\Windows\system32\mswsock.dll =>.Microsoft Corporation

O10 - WLSP:\000000000008\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\Windows\system32\winrnr.dll

~ Winsock: 8 Scanned in 00mn 00s

---\\ Modification Domaine/Adresses DNS (O17)

O17 - HKLM\System\CCS\Services\Tcpip\..\{0D5D2CB4-6CA4-4349-868C-698F54071D7E}: DhcpNameServer = 192.168.1.1 192.168.1.1

O17 - HKLM\System\CCS\Services\Tcpip\..\{ED7803C0-12B1-4824-AA30-9025E5D64A38}: DhcpNameServer = 192.168.1.1

O17 - HKLM\System\CS1\Services\Tcpip\..\{0D5D2CB4-6CA4-4349-868C-698F54071D7E}: DhcpNameServer = 192.168.1.1 192.168.1.1

O17 - HKLM\System\CS1\Services\Tcpip\..\{ED7803C0-12B1-4824-AA30-9025E5D64A38}: DhcpNameServer = 192.168.1.1

O17 - HKLM\System\CS2\Services\Tcpip\..\{0D5D2CB4-6CA4-4349-868C-698F54071D7E}: DhcpNameServer = 192.168.1.1 192.168.1.1

O17 - HKLM\System\CS2\Services\Tcpip\..\{ED7803C0-12B1-4824-AA30-9025E5D64A38}: DhcpNameServer = 192.168.1.1

O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 192.168.1.1

~ Domain: Scanned in 00mn 00s

---\\ Protocole additionnel (O18)

O18 - Handler: wlpg [64Bits] - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} . (...) --

O18 - Filter: text/xml [64Bits] - {807563E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files\Common Files\Microsoft Shared\OFFICE12\MSOXMLMF.dll =>.Microsoft Corporation

~ Protocole Additionnel: Scanned in 00mn 00s

---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21)

O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.

~ SSODL: 1 Scanned in 00mn 00s

---\\ Liste des services NT non Microsoft et non désactivés (O23)

O23 - Service: Advanced SystemCare Service 7 (AdvancedSystemCareService7) . (.IObit - Advanced SystemCare Service.) - C:\Program Files (x86)\IObit\Advanced SystemCare 7\ASCService.exe

O23 - Service: Avira Planificateur (AntiVirSchedulerService) . (.Avira Operations GmbH & Co. KG - Antivirus Host Framework Service.) - C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe

O23 - Service: Avira Protection temps réel (AntiVirService) . (.Avira Operations GmbH & Co. KG - Antivirus Host Framework Service.) - C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe

O23 - Service: AuthenTec Fingerprint Service (ATService) . (.AuthenTec, Inc. - AFSS Service.) - C:\Program Files (x86)\Fingerprint Sensor\AtService.exe

O23 - Service: Empowering Technology Service (ETService) . (.Pas de propriétaire - Acer Empowering Technology Framework Servic.) - C:\Program Files\Acer\Empowering Technology\Service\ETService.exe

O23 - Service: GRegService (Greg_Service) . (.Acer Incorporated - Global Registration Service.) - C:\Program Files (x86)\Acer\Registration\GregHSRW.exe

O23 - Service: Service Google Update (gupdate) (gupdate) . (.Google Inc. - Programme d'installation de Google.) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe =>.Google Inc

O23 - Service: EgisTec Service (IGBASVC) . (.Egis Technology Inc. - BASVC.exe.) - C:\Program Files (x86)\Acer Bio Protection\BASVC.exe

O23 - Service: LiveUpdate (LiveUpdateSvc) . (.IObit - Product Updater.) - C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe

O23 - Service: NTI Backup Now 5 Scheduler Service (NTISchedulerSvc) . (.NewTech Infosystems, Inc. - NTI Backup Now 5 SchedulerSvc NT Service.) - C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe

O23 - Service: NVIDIA Display Driver Service (nvsvc) . (.NVIDIA Corporation - NVIDIA Driver Helper Service, Version 197.6.) - C:\Windows\system32\nvvsvc.exe

O23 - Service: PnkBstrA (PnkBstrA) . (...) - C:\Windows\SysWOW64\PnkBstrA.exe

O23 - Service: Updater Service (Updater Service) . (.Acer Group - Updater Service.) - C:\Program Files\Acer\Acer Updater\UpdaterService.exe

~ Services: 13 Scanned in 00mn 08s

---\\ Enumération Active Desktop & MHTML Editor (O24)

O24 - Default MHTML Editor: Last - .(...) - (.not file.)

~ Desktop Component: 4 Scanned in 00mn 00s

---\\ Tâches planifiées en automatique (O39)

[MD5.00000000000000000000000000000000] [APT] [4497] (...) -- C:\Users\peg\AppData\Local\Temp\launchie.vbs \\B (.not file.) [0]

[MD5.00000000000000000000000000000000] [APT] [Adobe Flash Player Updater] (...) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe (.not file.) [0]

[MD5.00000000000000000000000000000000] [APT] [AdobeFlashPlayerUpdate] (...) -- C:\Windows\SysWOW64\FlashPlayerUpdateService.exe (.not file.) [0]

[MD5.00000000000000000000000000000000] [APT] [AdobeFlashPlayerUpdate 2] (...) -- C:\Windows\SysWOW64\FlashPlayerUpdateService.exe (.not file.) [0]

[MD5.0BADE2A1742B1FC47B85A57134BA3855] [APT] [ASC7_SkipUac_peg] (.IObit.) -- C:\Program Files (x86)\IObit\Advanced SystemCare 7\ASC.exe [4474144]

[MD5.8F0DE4FEF8201E306F9938B0905AC96A] [APT] [GoogleUpdateTaskMachineCore] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [135664]

[MD5.8F0DE4FEF8201E306F9938B0905AC96A] [APT] [GoogleUpdateTaskMachineCore1cf6aff8ea3add0] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [135664]

[MD5.8F0DE4FEF8201E306F9938B0905AC96A] [APT] [GoogleUpdateTaskMachineUA] (.Google Inc..) -- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [135664]

[MD5.00000000000000000000000000000000] [APT] [Run RoboForm TaskBar Icon] (...) -- C:\Program Files (x86)\Siber Systems\AI RoboForm\RoboTaskBarIcon.exe (.not file.) [0]

[MD5.00000000000000000000000000000000] [APT] [{E785A405-2592-4814-8926-985C12BEFB6A}] (...) -- C:\Program Files\AVAST Software\Avast\aswRundll.exe (.not file.) [0]

O39 - APT: Adobe Flash Player Updater - (...) -- C:\Windows\Tasks\Adobe Flash Player Updater.job [1002]

O39 - APT: Adobe Flash Player Updater - (...) -- C:\Windows\System32\Tasks\Adobe Flash Player Updater [1002]

O39 - APT: - (..) -- C:\Windows\Tasks\GlaryInitialize 5.job [352]

O39 - APT: GoogleUpdateTaskMachineCore1cf6aff8ea3add0 - (.Google Inc..) -- C:\Windows\Tasks\GoogleUpdateTaskMachineCore1cf6aff8ea3add0.job [1066]

O39 - APT: GoogleUpdateTaskMachineCore1cf6aff8ea3add0 - (.Google Inc..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore1cf6aff8ea3add0 [1066]

O39 - APT: GoogleUpdateTaskMachineUA - (.Google Inc..) -- C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job [1070]

O39 - APT: GoogleUpdateTaskMachineUA - (.Google Inc..) -- C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA [1070]

O39 - APT: - (..) -- C:\Windows\Tasks\HP AR Program Upload - 441fda767fdd402994234cc96c251cd33a9ad3372b6c492ea0c3f33b0c420dcf.job [458]

O39 - APT: - (..) -- C:\Windows\Tasks\HP AR Program Upload - 702b51ec537b4cd78f65fe4b3a81cd0f4fb376ebc2d64b9bba6468f943f88a56.job [458]

O39 - APT: - (..) -- C:\Windows\Tasks\HPCustPartic.exe_{D57D5BD9-47EE-4E19-8702-C373D770906F}.job [350]

O39 - APT: - (..) -- C:\Windows\Tasks\ScanToPCActivationApp.exe_{B606F247-3E7B-4695-AE4D-6A42F2C9BE48}.job [434] =>.Hewlett-Packard Co

O39 - APT: - (..) -- C:\Windows\Tasks\Toolbox.exe_{01364929-82A1-4E87-8285-44E9D9B782C4}.job [278]

~ Scheduled Task: 21 Scanned in 00mn 05s

---\\ Composants installés (ActiveSetup Installed Components) (O40)

O40 - ASIC: Microsoft Windows Media Player [64Bits] - >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll =>.Microsoft Corporation

O40 - ASIC: Microsoft Windows Media Player 12.0 [64Bits] - {22d6f312-b0f6-11d0-94ab-0080c74c7e95} . (.Microsoft Corporation - Windows Media Player Extension.) -- C:\Windows\SysWOW64\wmpdxm.dll =>.Microsoft Corporation

O40 - ASIC: Themes Setup [64Bits] - {2C7339CF-2B09-4501-B3F3-F3508C9228ED} . (.Microsoft Corporation - API Windows Theme.) -- C:\Windows\System32\themeui.dll

O40 - ASIC: Internet Explorer [64Bits] - {2D46B6DC-2207-486B-B523-A557E6D54B47} . (.Microsoft Corporation - Interpréteur de commandes Windows.) -- C:\Windows\system32\cmd.exe =>.Microsoft Corporation

O40 - ASIC: Microsoft Windows [64Bits] - {44BBA840-CC51-11CF-AAFA-00AA00B6015C} . (.Microsoft Corporation - Windows Mail.) -- C:\Program Files (x86)\Windows Mail\WinMail.exe =>.Microsoft Corporation

O40 - ASIC: Browsing Enhancements [64Bits] - {630b1da0-b465-11d1-9948-00c04f98bbc9} . (.Microsoft Corporation - Extension Shell dossier FTP Microsoft Internet Explorer..) -- C:\Windows\System32\msieftp.dll

O40 - ASIC: Microsoft Windows Media Player [64Bits] - {6BF52A52-394A-11d3-B153-00C04F79FAA6} . (.Microsoft Corporation - Ressources du Lecteur Windows Media.) -- C:\Windows\System32\wmploc.dll =>.Microsoft Corporation

O40 - ASIC: Windows Desktop Update [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4340} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll

O40 - ASIC: Web Platform Customizations [64Bits] - {89820200-ECBD-11cf-8B85-00AA005B4383} . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Explorer par utilisateur.) -- C:\Windows\System32\ie4uinit.exe

O40 - ASIC: (no name) [64Bits] - {89B4C1CD-B018-4511-B0A1-5476DBF70820} . (.Microsoft Corporation - Microsoft .NET IE SECURITY REGISTRATION.) -- C:\Windows\system32\mscories.dll

~ Active Setup: 10 Scanned in 00mn 00s

---\\ Pilotes lancés au démarrage du système (O41)

O41 - Driver: C:\Windows\System32\drivers\afd.sys (AFD) . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) - C:\Windows\system32\drivers\afd.sys

O41 - Driver: (avipbb) . (.Avira Operations GmbH & Co. KG - Avira Driver for Security Enhancement.) - C:\Windows\System32\DRIVERS\avipbb.sys

O41 - Driver: (avkmgr) . (.Avira Operations GmbH & Co. KG - Avira Manager Driver.) - C:\Windows\System32\DRIVERS\avkmgr.sys

O41 - Driver: (blbdrive) . (.Microsoft Corporation - BLB Drive Driver.) - C:\Windows\system32\DRIVERS\blbdrive.sys

O41 - Driver: (cdrom) . (.Microsoft Corporation - SCSI CD-ROM Driver.) - C:\Windows\system32\drivers\cdrom.sys

O41 - Driver: C:\Windows\System32\drivers\dfsc.sys (DfsC) . (.Microsoft Corporation - DFS Namespace Client Driver.) - C:\Windows\System32\Drivers\dfsc.sys

O41 - Driver: C:\Windows\System32\drivers\discache.sys (discache) . (.Microsoft Corporation - System Indexer/Cache Driver.) - C:\Windows\System32\drivers\discache.sys

O41 - Driver: (mssmbios) . (.Microsoft Corporation - System Management BIOS Driver.) - C:\Windows\system32\drivers\mssmbios.sys

O41 - Driver: (mwlPSDFilter) . (.Egis Technology Inc. - PSD Filter Driver.) - C:\Windows\System32\DRIVERS\mwlPSDFilter.sys

O41 - Driver: (mwlPSDNServ) . (.Egis Technology Inc. - MyWinLocker PSD Named Pipe Driver.) - C:\Windows\System32\DRIVERS\mwlPSDNServ.sys

O41 - Driver: (mwlPSDVDisk) . (.Egis Technology Inc. - MyWinLocker PSD Virtual Disk Driver.) - C:\Windows\System32\DRIVERS\mwlPSDVDisk.sys

O41 - Driver: (NetBIOS) . (.Microsoft Corporation - NetBIOS interface driver.) - C:\Windows\System32\DRIVERS\netbios.sys

O41 - Driver: C:\Windows\System32\drivers\netbt.sys (NetBT) . (.Microsoft Corporation - MBT Transport driver.) - C:\Windows\System32\DRIVERS\netbt.sys

O41 - Driver: C:\Windows\System32\drivers\nsiproxy.sys (nsiproxy) . (.Microsoft Corporation - NSI Proxy.) - C:\Windows\System32\drivers\nsiproxy.sys

O41 - Driver: C:\Windows\System32\drivers\pacer.sys (Psched) . (.Microsoft Corporation - Planificateur de paquets QoS.) - C:\Windows\System32\DRIVERS\pacer.sys

O41 - Driver: C:\Windows\System32\wkssvc.dll (rdbss) . (.Microsoft Corporation - Pilote du sous-système de mise en mémoire t.) - C:\Windows\System32\DRIVERS\rdbss.sys

O41 - Driver: C:\Windows\System32\DRIVERS\RDPCDD.sys (RDPCDD) . (.Microsoft Corporation - RDP Miniport.) - C:\Windows\System32\DRIVERS\RDPCDD.sys

O41 - Driver: C:\Windows\System32\drivers\RDPENCDD.sys (RDPENCDD) . (.Microsoft Corporation - RDP Encoder Miniport.) - C:\Windows\System32\drivers\rdpencdd.sys

O41 - Driver: C:\Windows\System32\drivers\RdpRefMp.sys (RDPREFMP) . (.Microsoft Corporation - RDP Reflector Driver Miniport.) - C:\Windows\System32\drivers\rdprefmp.sys

O41 - Driver: C:\Windows\System32\tcpipcfg.dll (tdx) . (.Microsoft Corporation - TDI Translation Driver.) - C:\Windows\System32\DRIVERS\tdx.sys

O41 - Driver: (TermDD) . (.Microsoft Corporation - Remote Desktop Server Driver.) - C:\Windows\system32\drivers\termdd.sys

O41 - Driver: (VgaSave) . (.Microsoft Corporation - VGA/Super VGA Video Driver.) - C:\Windows\system32\drivers\vga.sys

O41 - Driver: (vwififlt) . (.Microsoft Corporation - Virtual WiFi Filter Driver.) - C:\Windows\System32\DRIVERS\vwififlt.sys

O41 - Driver: C:\Windows\System32\rascfg.dll (Wanarpv6) . (.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) - C:\Windows\System32\DRIVERS\wanarp.sys

O41 - Driver: (WfpLwf) . (.Microsoft Corporation - WFP NDIS 6.20 Lightweight Filter Driver.) - C:\Windows\System32\DRIVERS\wfplwf.sys

O41 - Driver: ({29b136c9-938d-4d3d-8df8-d649d9b74d02}w64) . (.StdLib - StdLib.) - C:\Windows\System32\drivers\{29b136c9-938d-4d3d-8df8-d649d9b74d02}w64.sys =>PUP.LinkiDoo

O41 - Driver: ({a3f28269-ad17-41a8-b032-3e0313ef8979}w64) . (.StdLib - StdLib.) - C:\Windows\System32\drivers\{a3f28269-ad17-41a8-b032-3e0313ef8979}w64.sys =>PUP.LinkiDoo

~ Drivers: 81 Scanned in 00mn 00s

---\\ Logiciels installés (O42)

O42 - Logiciel: AVS Video Converter 7 - (.Online Media Technologies Ltd..) [HKLM][64Bits] -- AVS4YOU Video Converter 7_is1

O42 - Logiciel: Acer Bio Protection - (.Egis Technology Inc..) [HKLM][64Bits] -- InstallShield_{565A39D6-4FB0-4F35-A2AC-0DC66ACC3520}

O42 - Logiciel: Acer Crystal Eye Webcam - (.Suyin Optronics Corp.) [HKLM][64Bits] -- {7760D94E-B1B5-40A0-9AA0-ABF942108755}

O42 - Logiciel: Acer Empowering Technology - (.Acer Incorporated.) [HKLM][64Bits] -- {8F1B6239-FEA0-450A-A950-B05276CE177C}

O42 - Logiciel: Acer GameZone Console - (.Oberon Media, Inc..) [HKLM][64Bits] -- {ABEE079E-648E-488B-8301-0C3DB48C1BCE}_is1

O42 - Logiciel: Acer GridVista - (.Acer Inc..) [HKLM][64Bits] -- GridVista

O42 - Logiciel: Acer Registration - (.Acer Incorporated.) [HKLM][64Bits] -- Acer Registration

O42 - Logiciel: Acer ScreenSaver - (.Acer Incorporated.) [HKLM][64Bits] -- Acer Screensaver

O42 - Logiciel: Acer Updater - (.Acer Incorporated.) [HKLM][64Bits] -- {EE171732-BEB4-4576-887D-CB62727F01CA}

O42 - Logiciel: Acer ePower Management - (.Acer Incorporated.) [HKLM][64Bits] -- {58E5844B-7CE2-413D-83D1-99294BF6C74F}

O42 - Logiciel: Acer eRecovery Management - (.Acer Incorporated.) [HKLM][64Bits] -- {7F811A54-5A09-4579-90E1-C93498E230D9}

O42 - Logiciel: Acrobat.com - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {287ECFA4-719A-2143-A09B-D6A12DE54E40}

O42 - Logiciel: Adobe AIR - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe AIR

O42 - Logiciel: Adobe AIR - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AFF7E080-1974-45BF-9310-10DE1A1F5ED0}

O42 - Logiciel: Adobe Flash Player 11 ActiveX - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- Adobe Flash Player ActiveX

O42 - Logiciel: Adobe Reader 9.5.5 MUI - (.Adobe Systems Incorporated.) [HKLM][64Bits] -- {AC76BA86-7AD7-FFFF-7B44-A91000000001}

O42 - Logiciel: Advanced SystemCare 7 - (.IObit.) [HKLM][64Bits] -- Advanced SystemCare 7_is1

O42 - Logiciel: AuthenTec Fingerprint Software - (.AuthenTec, Inc..) [HKLM][64Bits] -- {6CE5CC07-BCE8-4F4E-8287-101B59900A73}

O42 - Logiciel: Avira Free Antivirus v14.0.5.464 - (.Avira.) [HKLM][64Bits] -- Avira AntiVir Desktop

O42 - Logiciel: BrowseToSave - (...) [HKLM][64Bits] -- {A1F06DED-F159-4D99-AF72-B97B7A134F1B} =>Adware.Browse2Save

O42 - Logiciel: CCleaner - (.Piriform.) [HKLM][64Bits] -- CCleaner

O42 - Logiciel: D3DX10 - (.Microsoft.) [HKLM][64Bits] -- {E09C4DB7-630C-4F06-A631-8EA7239923AF}

O42 - Logiciel: Dream Day First Home - (.Oberon Media.) [HKLM][64Bits] -- {82C36957-D2B8-4EF2-B88C-5FA03AA848C7-113832110}

O42 - Logiciel: FineDealSofT - (.FineDealSoFt.) [HKLM][64Bits] -- {0D566ABB-889B-AF39-7B6A-23D4C5D54542} =>PUP.FineDealSoft

O42 - Logiciel: Fingerprint Solution - (.Egis Technology Inc..) [HKLM][64Bits] -- {565A39D6-4FB0-4F35-A2AC-0DC66ACC3520}

O42 - Logiciel: FlexiPoints 2.0 - (.Weight Watchers.) [HKLM][64Bits] -- {6BE17C14-283C-4E9B-BD1B-5554CAEE1C69}

O42 - Logiciel: FormatFactory 3.2.0.1 - (.Free Time.) [HKLM][64Bits] -- FormatFactory

O42 - Logiciel: Google Chrome - (.Google Inc..) [HKLM][64Bits] -- Google Chrome

O42 - Logiciel: Google Drive - (.Google, Inc..) [HKLM][64Bits] -- {D9F75285-4864-461D-83DA-8D056BAC44D1}

O42 - Logiciel: Google Toolbar for Internet Explorer - (.Google Inc..) [HKLM][64Bits] -- {18455581-E099-4BA8-BC6B-F34B2F06600C}

O42 - Logiciel: Google Toolbar for Internet Explorer - (.Google Inc..) [HKLM][64Bits] -- {2318C2B1-4965-11d4-9B18-009027A5CD4F}

O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM][64Bits] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}

O42 - Logiciel: HDAUDIO Soft Data Fax Modem with SmartCP - (.Conexant Systems.) [HKLM][64Bits] -- CNXT_MODEM_HDA_HSF

O42 - Logiciel: HP Deskjet 3520 series Aide - (.Hewlett Packard.) [HKLM][64Bits] -- {9347E332-74BC-4738-9D37-FEC946F1900F}

O42 - Logiciel: HP Deskjet 3520 series Setup Guide - (.Hewlett Packard.) [HKLM][64Bits] -- {AEEDCEB7-00B8-4BE1-B492-AB04803D5F1E}

O42 - Logiciel: HP Update - (.Hewlett-Packard.) [HKLM][64Bits] -- {6F1C00D2-25C2-4CBA-8126-AE9A6E2E9CD5}

O42 - Logiciel: Identity Card - (.Acer Incorporated.) [HKLM][64Bits] -- Identity Card

O42 - Logiciel: JDownloader 0.9 - (.AppWork GmbH.) [HKLM][64Bits] -- 5513-1208-7298-9440

O42 - Logiciel: Java 7 Update 51 (64-bit) - (.Oracle.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F86417051FF}

O42 - Logiciel: Java 7 Update 51 - (.Oracle.) [HKLM][64Bits] -- {26A24AE4-039D-4CA4-87B4-2F83217051FF}

O42 - Logiciel: JavaFX 2.1.0 - (.Oracle Corporation.) [HKLM][64Bits] -- {1111706F-666A-4037-7777-210328764D10}

O42 - Logiciel: Junk Mail filter update - (.Microsoft Corporation.) [HKLM][64Bits] -- {1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}

O42 - Logiciel: Launch Manager - (.Acer Inc..) [HKLM][64Bits] -- LManager

O42 - Logiciel: Logiciel de base du périphérique HP Deskjet 3520 series - (.Hewlett-Packard Co..) [HKLM][64Bits] -- {8A0AFE76-95AC-40B9-A95C-A1BABD4A552B} =>.Hewlett-Packard Co

O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM][64Bits] -- {8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}

O42 - Logiciel: MSVCRT_amd64 - (.Microsoft.) [HKLM][64Bits] -- {D0B44725-3666-492D-BEF6-587A14BD9BD9}

O42 - Logiciel: MSXML 4.0 SP2 (KB954430) - (.Microsoft Corporation.) [HKLM][64Bits] -- {86493ADD-824D-4B8E-BD72-8C5DCDC52A71}

O42 - Logiciel: MSXML 4.0 SP2 (KB973688) - (.Microsoft Corporation.) [HKLM][64Bits] -- {F662A8E6-F4DC-41A2-901E-8C11F044BDEC}

O42 - Logiciel: Malwarebytes Anti-Malware version 2.0.2.1012 - (.Malwarebytes Corporation.) [HKLM][64Bits] -- Malwarebytes Anti-Malware_is1

O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM][64Bits] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}

O42 - Logiciel: Microsoft Works - (.Microsoft Corporation.) [HKLM][64Bits] -- {0214A441-A4AB-43A8-8DEF-2F73C5364673}

O42 - Logiciel: MyWinLocker - (.Egis Technology Inc..) [HKLM][64Bits] -- {0D7CD0D9-4A88-4A63-8F91-3F4E8F371768}

O42 - Logiciel: MyWinLocker Suite - (.Egis Technology Inc..) [HKLM][64Bits] -- InstallShield_{738BF5C3-AF7B-4BB0-B7EF-E505EFC756BE}

O42 - Logiciel: MyWinLocker Suite - (.Egis Technology Inc..) [HKLM][64Bits] -- {738BF5C3-AF7B-4BB0-B7EF-E505EFC756BE}

O42 - Logiciel: NTI Backup Now 5 - (.NewTech Infosystems.) [HKLM][64Bits] -- InstallShield_{12EFA1A4-AC3B-443C-8143-237EDE760403}

O42 - Logiciel: NTI Media Maker 8 - (.NewTech Infosystems.) [HKLM][64Bits] -- InstallShield_{2413930C-8309-47A6-BC61-5EF27A4222BC}

O42 - Logiciel: NVIDIA Display Control Panel - (.NVIDIA Corporation.) [HKLM][64Bits] -- NVIDIA Display Control Panel

O42 - Logiciel: NVIDIA Drivers - (.NVIDIA Corporation.) [HKLM][64Bits] -- NVIDIA Drivers

O42 - Logiciel: Nuvoton CIR Device Drivers - (.Nuvoton Technology Corporation.) [HKLM][64Bits] -- {FBC79D04-051E-4367-8051-1DB0C893FBE0}

O42 - Logiciel: PeaZip 4.4 - (.Giorgio Tani.) [HKLM][64Bits] -- {5A2BC38A-406C-4A5B-BF45-6991F9A05325}_is1

O42 - Logiciel: PlayReady PC Runtime amd64 - (.Microsoft Corporation.) [HKLM][64Bits] -- {BCA9334F-B6C9-4F65-9A73-AC5A329A4D04}

O42 - Logiciel: PunkBuster Services - (.Even Balance, Inc..) [HKLM][64Bits] -- PunkBusterSvc

O42 - Logiciel: Realtek High Definition Audio Driver - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}

O42 - Logiciel: Realtek USB 2.0 Card Reader - (.Realtek Semiconductor Corp..) [HKLM][64Bits] -- {96AE7E41-E34E-47D0-AC07-1091A8127911}

O42 - Logiciel: Shredder - (.Egis Technology Inc..) [HKLM][64Bits] -- {C2695E83-CF1D-43D1-84FE-B3BEC561012A}

O42 - Logiciel: Surfing Protection - (.IObit.) [HKLM][64Bits] -- IObit Surfing Protection_is1

O42 - Logiciel: Synaptics Pointing Device Driver - (.Synaptics Incorporated.) [HKLM][64Bits] -- SynTPDeinstKey

O42 - Logiciel: Unity Web Player - (.Unity Technologies ApS.) [HKCU][64Bits] -- UnityWebPlayer

O42 - Logiciel: VLC media player 2.1.3 - (.VideoLAN.) [HKLM][64Bits] -- VLC media player =>.VideoLAN

O42 - Logiciel: Welcome Center - (.Acer Incorporated.) [HKLM][64Bits] -- Acer Welcome Center

O42 - Logiciel: eBay Worldwide - (.OEM.) [HKLM][64Bits] -- {E0B19DF7-B1C7-4937-82C4-0E4B1E346965} =>Toolbar.eBay

O42 - Logiciel: eSobi v2 - (.esobi Inc..) [HKLM][64Bits] -- InstallShield_{15D967B5-A4BE-42AE-9E84-64CD062B25AA}

O42 - Logiciel: Étude pour l'amélioration du produit HP Deskjet 3520 series - (.Hewlett-Packard Co..) [HKLM][64Bits] -- {1E35248D-3B53-4F06-9E70-D12A41DA7A95} =>.Hewlett-Packard Co

~ Logic: 34 Scanned in 00mn 00s

---\\ HKCU & HKLM Software Keys

[HKCU\Software\AVAST Software]

[HKCU\Software\AVS4YOU]

[HKCU\Software\Acer]

[HKCU\Software\Adobe]

[HKCU\Software\AppDataLow\Software\Adobe]

[HKCU\Software\AppDataLow\Software\Google]

[HKCU\Software\AppDataLow\Software\JavaSoft]

[HKCU\Software\AppDataLow\Software\Unity]

[HKCU\Software\AppDataLow]

[HKCU\Software\Aurigma]

[HKCU\Software\Avira]

[HKCU\Software\Bugsplat]

[HKCU\Software\CeWe Color]

[HKCU\Software\Classes]

[HKCU\Software\Clients]

[HKCU\Software\CyberLink]

[HKCU\Software\DownloadManager]

[HKCU\Software\FreeTime]

[HKCU\Software\GNU]

[HKCU\Software\Gabest]

[HKCU\Software\Glarysoft]

[HKCU\Software\Google]

[HKCU\Software\HP]

[HKCU\Software\Haali]

[HKCU\Software\Hewlett-Packard]

[HKCU\Software\IM Providers]

[HKCU\Software\JavaSoft]

[HKCU\Software\Leadertech]

[HKCU\Software\Licenses]

[HKCU\Software\Macromedia]

[HKCU\Software\Malwarebytes' Anti-Malware]

[HKCU\Software\MozillaPlugins]

[HKCU\Software\Mozilla]

[HKCU\Software\NVIDIA Corporation]

[HKCU\Software\Netscape]

[HKCU\Software\ODBC]

[HKCU\Software\OEM]

[HKCU\Software\Oberon Media]

[HKCU\Software\Paltalk]

[HKCU\Software\Pipix]

[HKCU\Software\Piriform]

[HKCU\Software\Policies]

[HKCU\Software\Quanta]

[HKCU\Software\Realtek]

[HKCU\Software\Siber Systems]

[HKCU\Software\SkypeRS]

[HKCU\Software\Skype]

[HKCU\Software\Soft32]

[HKCU\Software\Software]

[HKCU\Software\Sonix]

[HKCU\Software\Synaptics]

[HKCU\Software\TeleCharger]

[HKCU\Software\Trolltech]

[HKCU\Software\Unity]

[HKCU\Software\VB and VBA Program Settings]

[HKCU\Software\VirtualDub.org]

[HKCU\Software\Wow6432Node]

[HKCU\Software\ZebHelpProcess Helper]

[HKCU\Software\ej-technologies]

[HKLM\Software\ATI Technologies]

[HKLM\Software\AVS4YOU]

[HKLM\Software\Acer]

[HKLM\Software\BrowserChoice]

[HKLM\Software\CXT]

[HKLM\Software\Classes]

[HKLM\Software\Clients]

[HKLM\Software\Conexant Systems Inc ]

[HKLM\Software\Conexant Systems]

[HKLM\Software\CyberLink]

[HKLM\Software\EgisTec Shredder]

[HKLM\Software\EgisTec]

[HKLM\Software\Google]

[HKLM\Software\HP]

[HKLM\Software\InstalledOptions]

[HKLM\Software\Intel]

[HKLM\Software\JavaSoft]

[HKLM\Software\Khronos]

[HKLM\Software\Macromedia]

[HKLM\Software\McAfee.com]

[HKLM\Software\MozillaPlugins]

[HKLM\Software\Mozilla]

[HKLM\Software\NVIDIA Corporation]

[HKLM\Software\Nuvoton Technology Corporation]

[HKLM\Software\ODBC]

[HKLM\Software\OEM]

[HKLM\Software\OOBEOffer]

[HKLM\Software\OemSetup]

[HKLM\Software\Piriform]

[HKLM\Software\Policies]

[HKLM\Software\RST]

[HKLM\Software\Realtek Semiconductor Corp.]

[HKLM\Software\Realtek]

[HKLM\Software\RegisteredApplications]

[HKLM\Software\SI-App]

[HKLM\Software\SRS Labs]

[HKLM\Software\SiteAdvisor]

[HKLM\Software\Sonic]

[HKLM\Software\Synaptics]

[HKLM\Software\Waves Audio]

[HKLM\Software\WinUpd]

[HKLM\Software\Wow6432Node\AVS4YOU]

[HKLM\Software\Wow6432Node\Acer]

[HKLM\Software\Wow6432Node\AdobeFlashPlayerUpdate]

[HKLM\Software\Wow6432Node\Adobe]

[HKLM\Software\Wow6432Node\AdwCleaner]

[HKLM\Software\Wow6432Node\Authentec]

[HKLM\Software\Wow6432Node\AviSynth]

[HKLM\Software\Wow6432Node\Avira]

[HKLM\Software\Wow6432Node\Classes]

[HKLM\Software\Wow6432Node\Clients]

[HKLM\Software\Wow6432Node\CyberLink]

[HKLM\Software\Wow6432Node\Digital River]

[HKLM\Software\Wow6432Node\Dofus 2]

[HKLM\Software\Wow6432Node\EgisTec IPS]

[HKLM\Software\Wow6432Node\EgisTec Shredder]

[HKLM\Software\Wow6432Node\EgisTec]

[HKLM\Software\Wow6432Node\Even Balance]

[HKLM\Software\Wow6432Node\FRANCE TELECOM]

[HKLM\Software\Wow6432Node\GNU]

[HKLM\Software\Wow6432Node\GlarySoft]

[HKLM\Software\Wow6432Node\Google]

[HKLM\Software\Wow6432Node\HPS]

[HKLM\Software\Wow6432Node\HaaliMkx]

[HKLM\Software\Wow6432Node\Hewlett-Packard]

[HKLM\Software\Wow6432Node\IObit]

[HKLM\Software\Wow6432Node\Intel]

[HKLM\Software\Wow6432Node\Internet Download Manager]

[HKLM\Software\Wow6432Node\JavaSoft]

[HKLM\Software\Wow6432Node\JreMetrics]

[HKLM\Software\Wow6432Node\Khronos]

[HKLM\Software\Wow6432Node\Licenses]

[HKLM\Software\Wow6432Node\Macromedia]

[HKLM\Software\Wow6432Node\Malwarebytes' Anti-Malware]

[HKLM\Software\Wow6432Node\McAfeeInstaller]

[HKLM\Software\Wow6432Node\MozillaPlugins]

[HKLM\Software\Wow6432Node\Mozilla]

[HKLM\Software\Wow6432Node\NewTech Infosystems]

[HKLM\Software\Wow6432Node\ODBC]

[HKLM\Software\Wow6432Node\OEM]

[HKLM\Software\Wow6432Node\Oberon Media]

[HKLM\Software\Wow6432Node\Oracle]

[HKLM\Software\Wow6432Node\PeaZip]

[HKLM\Software\Wow6432Node\PeaZip_additional]

[HKLM\Software\Wow6432Node\Photocite Collection 4]

[HKLM\Software\Wow6432Node\Pirrit Solutions] =>PUP.PirritSuggestor

[HKLM\Software\Wow6432Node\Policies]

[HKLM\Software\Wow6432Node\Quanta]

[HKLM\Software\Wow6432Node\RST]

[HKLM\Software\Wow6432Node\Realtek]

[HKLM\Software\Wow6432Node\RegisteredApplications]

[HKLM\Software\Wow6432Node\RocketLife]

[HKLM\Software\Wow6432Node\SECURITOO]

[HKLM\Software\Wow6432Node\SI-App]

[HKLM\Software\Wow6432Node\Sagem]

[HKLM\Software\Wow6432Node\SecureDigitalServices]

[HKLM\Software\Wow6432Node\Siber Systems]

[HKLM\Software\Wow6432Node\Skype]

[HKLM\Software\Wow6432Node\Software]

[HKLM\Software\Wow6432Node\Solutions]

[HKLM\Software\Wow6432Node\VideoLAN]

[HKLM\Software\Wow6432Node\Visan]

[HKLM\Software\Wow6432Node\WinUpd]

[HKLM\Software\Wow6432Node\X-AVCSD]

[HKLM\Software\Wow6432Node\ej-technologies]

[HKLM\Software\Wow6432Node\nSplitter]

[HKLM\Software\Wow6432Node]

[HKLM\Software\nSplitter]

~ Key Software: 276 Scanned in 00mn 00s

---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)

O43 - CFD: 14/04/2008 - 12:19:41 - [] ----D C:\Program Files (x86)\Acer

O43 - CFD: 14/04/2008 - 12:29:36 - [] ----D C:\Program Files (x86)\Acer Bio Protection

O43 - CFD: 12/07/2012 - 03:14:08 - [] ----D C:\Program Files (x86)\Acer GameZone

O43 - CFD: 07/04/2010 - 07:44:36 - [] ----D C:\Program Files (x86)\Acer Inc

O43 - CFD: 07/04/2010 - 07:44:19 - [] ----D C:\Program Files (x86)\Adobe

O43 - CFD: 30/04/2013 - 15:01:11 - [] ----D C:\Program Files (x86)\Avira

O43 - CFD: 15/05/2014 - 09:11:04 - [] ----D C:\Program Files (x86)\Common Files

O43 - CFD: 01/02/2012 - 17:48:18 - [] ----D C:\Program Files (x86)\EA Games

O43 - CFD: 07/04/2010 - 07:29:44 - [] ----D C:\Program Files (x86)\EgisTec IPS

O43 - CFD: 07/04/2010 - 07:28:26 - [] ----D C:\Program Files (x86)\EgisTec MyWinLocker

O43 - CFD: 07/04/2010 - 07:27:29 - [] ----D C:\Program Files (x86)\EgisTec MyWinLockerSuite

O43 - CFD: 07/04/2010 - 07:29:54 - [] ----D C:\Program Files (x86)\EgisTec Shredder

O43 - CFD: 07/04/2010 - 07:20:52 - [] ----D C:\Program Files (x86)\eSobi

O43 - CFD: 14/04/2008 - 12:29:11 - [] ----D C:\Program Files (x86)\Fingerprint Sensor

O43 - CFD: 05/03/2013 - 18:25:59 - [] ----D C:\Program Files (x86)\Google

O43 - CFD: 13/09/2013 - 16:34:47 - [] ----D C:\Program Files (x86)\HP

O43 - CFD: 09/05/2011 - 01:23:08 - [] ----D C:\Program Files (x86)\InstallShield Installation Information

O43 - CFD: 10/09/2012 - 16:58:07 - [] ----D C:\Program Files (x86)\Internet Download Manager

O43 - CFD: 15/07/2014 - 15:46:17 - [] ----D C:\Program Files (x86)\Internet Explorer

O43 - CFD: 13/06/2014 - 17:08:17 - [] ----D C:\Program Files (x86)\IObit

O43 - CFD: 04/04/2014 - 02:20:06 - [] ----D C:\Program Files (x86)\Java

O43 - CFD: 10/03/2013 - 11:08:24 - [] ----D C:\Program Files (x86)\JDownloader

O43 - CFD: 07/04/2010 - 06:46:50 - [] ----D C:\Program Files (x86)\Launch Manager

O43 - CFD: 21/07/2014 - 12:20:10 - [] ----D C:\Program Files (x86)\Malwarebytes Anti-Malware

O43 - CFD: 30/03/2014 - 16:48:12 - [0] ----D C:\Program Files (x86)\Microsoft

O43 - CFD: 14/04/2008 - 12:40:14 - [] ----D C:\Program Files (x86)\Microsoft Office

O43 - CFD: 07/04/2010 - 07:19:07 - [] ----D C:\Program Files (x86)\Microsoft Office Suite Activation Assistant

O43 - CFD: 16/03/2014 - 13:49:53 - [] ----D C:\Program Files (x86)\Microsoft Silverlight

O43 - CFD: 14/04/2008 - 12:36:22 - [] ----D C:\Program Files (x86)\Microsoft SQL Server Compact Edition

O43 - CFD: 14/04/2008 - 12:40:29 - [] ----D C:\Program Files (x86)\Microsoft Visual Studio 8

O43 - CFD: 10/10/2012 - 23:26:28 - [] ----D C:\Program Files (x86)\Microsoft Works

O43 - CFD: 09/02/2011 - 00:18:49 - [] ----D C:\Program Files (x86)\Microsoft.NET

O43 - CFD: 14/07/2009 - 07:32:38 - [] ----D C:\Program Files (x86)\MSBuild

O43 - CFD: 28/12/2010 - 13:33:27 - [0] ----D C:\Program Files (x86)\MSXML 4.0

O43 - CFD: 07/04/2010 - 07:41:22 - [] ----D C:\Program Files (x86)\NewTech Infosystems

O43 - CFD: 07/04/2010 - 06:47:32 - [] ----D C:\Program Files (x86)\Nuvoton Technology Corporation

O43 - CFD: 28/03/2011 - 21:30:34 - [] ----D C:\Program Files (x86)\Oberon Media

O43 - CFD: 25/12/2010 - 12:01:04 - [] ----D C:\Program Files (x86)\OEM

O43 - CFD: 31/05/2012 - 16:48:19 - [] ----D C:\Program Files (x86)\Oracle

O43 - CFD: 26/04/2011 - 22:05:03 - [0] ----D C:\Program Files (x86)\Orange

O43 - CFD: 02/02/2012 - 12:53:47 - [] ----D C:\Program Files (x86)\PeaZip

O43 - CFD: 07/04/2010 - 06:57:57 - [] ----D C:\Program Files (x86)\Realtek

O43 - CFD: 14/07/2009 - 07:32:38 - [] ----D C:\Program Files (x86)\Reference Assemblies

O43 - CFD: 31/05/2012 - 10:13:14 - [] ----D C:\Program Files (x86)\ShadowExplorer

O43 - CFD: 14/04/2008 - 12:26:38 - [0] ----D C:\Program Files (x86)\Temp

O43 - CFD: 14/07/2009 - 06:57:06 - [0] ----D C:\Program Files (x86)\Uninstall Information

O43 - CFD: 24/06/2011 - 18:18:19 - [] ----D C:\Program Files (x86)\Weight Watchers

O43 - CFD: 11/07/2013 - 09:23:54 - [] ----D C:\Program Files (x86)\Windows Defender

O43 - CFD: 30/03/2011 - 19:14:42 - [] ----D C:\Program Files (x86)\Windows Live

O43 - CFD: 21/05/2013 - 11:35:40 - [] ----D C:\Program Files (x86)\Windows Mail =>.Microsoft Corporation

O43 - CFD: 12/12/2013 - 10:02:21 - [] ----D C:\Program Files (x86)\Windows Media Player =>.Microsoft Corporation

O43 - CFD: 14/07/2009 - 07:32:38 - [] ----D C:\Program Files (x86)\Windows NT

O43 - CFD: 21/05/2013 - 11:35:38 - [] ----D C:\Program Files (x86)\Windows Photo Viewer

O43 - CFD: 21/05/2013 - 11:35:39 - [] ----D C:\Program Files (x86)\Windows Portable Devices

O43 - CFD: 21/05/2013 - 11:35:40 - [] ----D C:\Program Files (x86)\Windows Sidebar

O43 - CFD: 21/07/2014 - 13:05:00 - [] ----D C:\Program Files (x86)\ZHPDiag =>.Nicolas Coolman

O43 - CFD: 12/09/2013 - 10:24:23 - [] ----D C:\Program Files (x86)\Common Files\Adobe

O43 - CFD: 10/06/2011 - 16:52:16 - [] ----D C:\Program Files (x86)\Common Files\Adobe AIR

O43 - CFD: 31/05/2011 - 12:47:59 - [] ----D C:\Program Files (x86)\Common Files\AVSMedia

O43 - CFD: 15/05/2014 - 09:11:04 - [] ----D C:\Program Files (x86)\Common Files\DESIGNER

O43 - CFD: 26/04/2011 - 22:04:47 - [] ----D C:\Program Files (x86)\Common Files\France Telecom

O43 - CFD: 14/04/2008 - 12:48:38 - [] ----D C:\Program Files (x86)\Common Files\InstallShield

O43 - CFD: 04/04/2014 - 02:20:43 - [] ----D C:\Program Files (x86)\Common Files\Java

O43 - CFD: 15/12/2012 - 08:48:37 - [] ----D C:\Program Files (x86)\Common Files\microsoft shared

O43 - CFD: 07/04/2010 - 07:02:59 - [] ----D C:\Program Files (x86)\Common Files\Oberon Media

O43 - CFD: 14/07/2009 - 05:20:08 - [] ----D C:\Program Files (x86)\Common Files\Services

O43 - CFD: 14/07/2009 - 05:20:08 - [] ----D C:\Program Files (x86)\Common Files\SpeechEngines

O43 - CFD: 21/05/2013 - 11:35:36 - [] ----D C:\Program Files (x86)\Common Files\System

O43 - CFD: 14/04/2008 - 12:31:38 - [] ----D C:\Program Files (x86)\Common Files\Windows Live

O43 - CFD: 07/04/2010 - 07:24:12 - [] ----D C:\ProgramData\Acer

O43 - CFD: 12/09/2013 - 12:08:38 - [] ----D C:\ProgramData\Adobe

O43 - CFD: 25/12/2010 - 12:00:07 - [] -SH-D C:\ProgramData\Application Data

O43 - CFD: 28/05/2012 - 19:13:59 - [] ----D C:\ProgramData\Arcade Lab

O43 - CFD: 05/03/2013 - 18:22:18 - [] ----D C:\ProgramData\AVAST Software

O43 - CFD: 30/04/2013 - 15:01:11 - [] ----D C:\ProgramData\Avira

O43 - CFD: 31/05/2011 - 12:48:31 - [] ----D C:\ProgramData\AVS4YOU

O43 - CFD: 25/12/2010 - 12:00:07 - [] -SH-D C:\ProgramData\Bureau

O43 - CFD: 02/01/2011 - 15:48:06 - [] ----D C:\ProgramData\CyberLink

O43 - CFD: 04/07/2014 - 21:22:15 - [] ----D C:\ProgramData\da1e7540c6ebe800

O43 - CFD: 25/12/2010 - 12:00:07 - [] -SH-D C:\ProgramData\Documents

O43 - CFD: 28/05/2012 - 19:14:00 - [] ----D C:\ProgramData\EgisTec IPS

O43 - CFD: 07/04/2010 - 07:20:59 - [] ----D C:\ProgramData\eSobi

O43 - CFD: 20/03/2011 - 13:24:02 - [] ----D C:\ProgramData\FarmFrenzy2

O43 - CFD: 25/12/2010 - 12:00:07 - [] -SH-D C:\ProgramData\Favoris

O43 - CFD: 04/07/2014 - 21:22:15 - [] ----D C:\ProgramData\FineDealSofT =>PUP.FineDealSoft

O43 - CFD: 31/12/2010 - 00:15:45 - [] ----D C:\ProgramData\Friends Games

O43 - CFD: 29/05/2012 - 11:52:34 - [] ----D C:\ProgramData\Google

O43 - CFD: 13/09/2013 - 16:33:33 - [] ----D C:\ProgramData\HP

O43 - CFD: 13/09/2013 - 16:35:13 - [] ----D C:\ProgramData\HP Photo Creations

O43 - CFD: 29/05/2012 - 11:52:35 - [] ----D C:\ProgramData\hps

O43 - CFD: 29/05/2014 - 15:50:10 - [] ----D C:\ProgramData\InstallMate =>PUP.Tarma

O43 - CFD: 13/06/2014 - 17:15:23 - [] ----D C:\ProgramData\IObit

O43 - CFD: 26/06/2014 - 10:05:26 - [] ----D C:\ProgramData\Malwarebytes

O43 - CFD: 03/03/2011 - 10:49:41 - [] ----D C:\ProgramData\McAfee

O43 - CFD: 25/12/2010 - 12:00:07 - [] -SH-D C:\ProgramData\Menu Démarrer

O43 - CFD: 30/03/2014 - 16:48:13 - [] -S--D C:\ProgramData\Microsoft

O43 - CFD: 13/06/2014 - 14:49:01 - [] ----D C:\ProgramData\Microsoft Help

O43 - CFD: 25/12/2010 - 12:00:07 - [] -SH-D C:\ProgramData\Modèles

O43 - CFD: 28/05/2012 - 19:21:13 - [] ----D C:\ProgramData\NVIDIA

O43 - CFD: 29/05/2012 - 11:52:38 - [] ----D C:\ProgramData\OberonGameConsole

O43 - CFD: 29/05/2012 - 11:54:04 - [] ----D C:\ProgramData\OEM

O43 - CFD: 04/04/2014 - 02:21:22 - [0] ----D C:\ProgramData\Oracle

O43 - CFD: 01/06/2011 - 19:35:28 - [] ----D C:\ProgramData\PlayFirst

O43 - CFD: 15/07/2014 - 15:49:53 - [] ----D C:\ProgramData\ProductData

O43 - CFD: 12/06/2012 - 18:51:42 - [] ----D C:\ProgramData\RoboForm

O43 - CFD: 01/06/2011 - 12:50:42 - [] ----D C:\ProgramData\Sandlot Games

O43 - CFD: 04/02/2013 - 12:04:38 - [] ----D C:\ProgramData\Skype

O43 - CFD: 01/07/2011 - 19:31:49 - [] ----D C:\ProgramData\Sun

O43 - CFD: 13/06/2014 - 17:14:21 - [] ---AD C:\ProgramData\Temp

O43 - CFD: 18/02/2011 - 15:05:34 - [] ----D C:\ProgramData\tmp

O43 - CFD: 29/05/2014 - 15:48:17 - [] ----D C:\ProgramData\TopApp soft

O43 - CFD: 13/09/2013 - 16:35:13 - [] ----D C:\ProgramData\Visan

O43 - CFD: 02/02/2012 - 12:57:35 - [0] ----D C:\ProgramData\WinZip

O43 - CFD: 13/06/2014 - 17:08:18 - [0] ----D C:\ProgramData\{3C5CBD7B-3D1D-411E-96C2-513FFCA84D2D}

O43 - CFD: 25/05/2014 - 17:38:26 - [] ----D C:\Users\peg\AppData\Roaming\.ascentia

O43 - CFD: 10/01/2013 - 09:34:55 - [] ----D C:\Users\peg\AppData\Roaming\.minecraft

O43 - CFD: 22/10/2012 - 14:36:06 - [] ----D C:\Users\peg\AppData\Roaming\.newscraft

O43 - CFD: 18/01/2011 - 22:29:42 - [] ----D C:\Users\peg\AppData\Roaming\Adobe

O43 - CFD: 07/06/2011 - 12:35:59 - [] ----D C:\Users\peg\AppData\Roaming\app

O43 - CFD: 13/06/2014 - 17:08:30 - [] ----D C:\Users\peg\AppData\Roaming\Apple Computer

O43 - CFD: 30/04/2013 - 15:06:30 - [] ----D C:\Users\peg\AppData\Roaming\Avira

O43 - CFD: 31/05/2011 - 12:48:33 - [] ----D C:\Users\peg\AppData\Roaming\AVS4YOU

O43 - CFD: 02/01/2011 - 15:48:04 - [] ----D C:\Users\peg\AppData\Roaming\CyberLink

O43 - CFD: 11/05/2011 - 23:00:58 - [] ----D C:\Users\peg\AppData\Roaming\Digilabs

O43 - CFD: 18/07/2014 - 19:01:30 - [] ----D C:\Users\peg\AppData\Roaming\DiskDefrag

O43 - CFD: 03/09/2012 - 14:15:16 - [] ----D C:\Users\peg\AppData\Roaming\DMCache

O43 - CFD: 28/05/2012 - 19:16:43 - [] ----D C:\Users\peg\AppData\Roaming\Dofus 2

O43 - CFD: 28/05/2012 - 19:16:43 - [] ----D C:\Users\peg\AppData\Roaming\Dofus-2.C9ECCBDBA4E09304DEEFB106465BC17F6D6749B9.1

O43 - CFD: 28/05/2012 - 19:16:43 - [] ----D C:\Users\peg\AppData\Roaming\Dofus-3.C9ECCBDBA4E09304DEEFB106465BC17F6D6749B9.1

O43 - CFD: 28/05/2012 - 19:16:44 - [] ----D C:\Users\peg\AppData\Roaming\Dofus.C9ECCBDBA4E09304DEEFB106465BC17F6D6749B9.1

O43 - CFD: 28/12/2010 - 21:57:51 - [] ----D C:\Users\peg\AppData\Roaming\EgisTec

O43 - CFD: 07/01/2013 - 04:24:59 - [] ----D C:\Users\peg\AppData\Roaming\ftblauncher

O43 - CFD: 13/06/2014 - 17:39:24 - [0] ----D C:\Users\peg\AppData\Roaming\GlarySoft

O43 - CFD: 27/03/2011 - 15:21:47 - [] ----D C:\Users\peg\AppData\Roaming\Google

O43 - CFD: 10/11/2013 - 18:13:36 - [] ----D C:\Users\peg\AppData\Roaming\HpUpdate

O43 - CFD: 29/05/2012 - 11:54:07 - [] ----D C:\Users\peg\AppData\Roaming\Icones

O43 - CFD: 25/12/2010 - 12:01:58 - [] ----D C:\Users\peg\AppData\Roaming\Identities

O43 - CFD: 04/04/2014 - 05:41:33 - [] ----D C:\Users\peg\AppData\Roaming\IDM

O43 - CFD: 13/06/2014 - 17:08:26 - [] ----D C:\Users\peg\AppData\Roaming\IObit

O43 - CFD: 25/11/2012 - 12:07:12 - [] ----D C:\Users\peg\AppData\Roaming\Leadertech

O43 - CFD: 25/12/2010 - 12:02:37 - [] ----D C:\Users\peg\AppData\Roaming\Macromedia

O43 - CFD: 26/06/2014 - 10:05:39 - [0] ----D C:\Users\peg\AppData\Roaming\Malwarebytes

O43 - CFD: 14/07/2009 - 09:44:38 - [0] ----D C:\Users\peg\AppData\Roaming\Media Center Programs

O43 - CFD: 10/01/2014 - 19:23:43 - [] -S--D C:\Users\peg\AppData\Roaming\Microsoft

O43 - CFD: 28/04/2014 - 14:16:56 - [] ----D C:\Users\peg\AppData\Roaming\Mozilla

O43 - CFD: 16/03/2014 - 11:37:40 - [] ----D C:\Users\peg\AppData\Roaming\Paltalk

O43 - CFD: 06/08/2012 - 13:51:09 - [] ----D C:\Users\peg\AppData\Roaming\PeaZip

O43 - CFD: 01/06/2011 - 19:35:28 - [] ----D C:\Users\peg\AppData\Roaming\PlayFirst

O43 - CFD: 13/06/2014 - 17:09:32 - [] ----D C:\Users\peg\AppData\Roaming\ProductData

O43 - CFD: 07/06/2011 - 12:35:59 - [] ----D C:\Users\peg\AppData\Roaming\Reg.C9ECCBDBA4E09304DEEFB106465BC17F6D6749B9.1

O43 - CFD: 13/06/2014 - 17:06:42 - [] ----D C:\Users\peg\AppData\Roaming\rmi

O43 - CFD: 29/02/2012 - 23:07:37 - [] ----D C:\Users\peg\AppData\Roaming\RoboForm

O43 - CFD: 04/02/2013 - 12:04:24 - [] ----D C:\Users\peg\AppData\Roaming\Skype

O43 - CFD: 24/03/2011 - 04:04:19 - [] ----D C:\Users\peg\AppData\Roaming\SoftDMA

O43 - CFD: 07/06/2011 - 19:03:39 - [] ----D C:\Users\peg\AppData\Roaming\Template

O43 - CFD: 16/03/2012 - 14:36:55 - [] ----D C:\Users\peg\AppData\Roaming\VitySoft

O43 - CFD: 25/06/2014 - 17:15:23 - [] ----D C:\Users\peg\AppData\Roaming\vlc

O43 - CFD: 05/01/2011 - 16:11:46 - [] ----D C:\Users\peg\AppData\Roaming\Windows Live Writer

O43 - CFD: 20/09/2012 - 16:29:34 - [0] ----D C:\Users\peg\AppData\Roaming\WinRAR

O43 - CFD: 21/07/2014 - 13:06:50 - [] ----D C:\Users\peg\AppData\Roaming\ZHP =>.Nicolas Coolman

O43 - CFD: 10/06/2014 - 21:25:45 - [] ----D C:\Users\peg\AppData\Local\2575bd7667cbe3b34bc91db986220765

O43 - CFD: 21/06/2012 - 18:06:43 - [] ----D C:\Users\peg\AppData\Local\Adobe

O43 - CFD: 25/12/2010 - 12:00:20 - [] -SH-D C:\Users\peg\AppData\Local\Application Data

O43 - CFD: 27/02/2011 - 21:46:06 - [] ----D C:\Users\peg\AppData\Local\Apps

O43 - CFD: 17/09/2013 - 14:18:53 - [] ----D C:\Users\peg\AppData\Local\avgchrome

O43 - CFD: 02/01/2011 - 15:48:24 - [] ----D C:\Users\peg\AppData\Local\CyberLink

O43 - CFD: 14/06/2014 - 12:48:43 - [0] ----D C:\Users\peg\AppData\Local\Diagnostics

O43 - CFD: 25/12/2010 - 12:02:40 - [] ----D C:\Users\peg\AppData\Local\EgisTec IPS

O43 - CFD: 21/09/2012 - 16:36:15 - [0] ----D C:\Users\peg\AppData\Local\ElevatedDiagnostics

O43 - CFD: 05/06/2014 - 17:12:22 - [] -SH-D C:\Users\peg\AppData\Local\EmieSiteList

O43 - CFD: 05/06/2014 - 17:12:22 - [] -SH-D C:\Users\peg\AppData\Local\EmieUserList

O43 - CFD: 27/03/2013 - 08:40:01 - [] ----D C:\Users\peg\AppData\Local\Facebook

O43 - CFD: 30/03/2014 - 16:48:20 - [] ----D C:\Users\peg\AppData\Local\Google

O43 - CFD: 25/12/2010 - 12:00:20 - [] -SH-D C:\Users\peg\AppData\Local\Historique

O43 - CFD: 09/12/2013 - 12:33:03 - [] ----D C:\Users\peg\AppData\Local\HP

O43 - CFD: 04/02/2013 - 11:58:22 - [] ----D C:\Users\peg\AppData\Local\LogMeIn Hamachi

O43 - CFD: 10/01/2014 - 19:23:43 - [] ----D C:\Users\peg\AppData\Local\Microsoft

O43 - CFD: 29/06/2011 - 22:42:35 - [] ----D C:\Users\peg\AppData\Local\Microsoft Games

O43 - CFD: 01/06/2011 - 19:12:46 - [] ----D C:\Users\peg\AppData\Local\Oberon Games

O43 - CFD: 04/07/2014 - 21:22:11 - [] ----D C:\Users\peg\AppData\Local\Packages

O43 - CFD: 16/01/2013 - 04:15:34 - [] ----D C:\Users\peg\AppData\Local\Programs

O43 - CFD: 01/02/2012 - 18:13:40 - [] ----D C:\Users\peg\AppData\Local\PunkBuster

O43 - CFD: 21/07/2014 - 13:05:54 - [] ----D C:\Users\peg\AppData\Local\Temp

O43 - CFD: 25/12/2010 - 12:00:20 - [] -SH-D C:\Users\peg\AppData\Local\Temporary Internet Files

O43 - CFD: 24/06/2014 - 17:16:25 - [] ----D C:\Users\peg\AppData\Local\Unity

O43 - CFD: 14/09/2011 - 08:48:34 - [] ----D C:\Users\peg\AppData\Local\VirtualStore

O43 - CFD: 08/03/2013 - 12:44:21 - [] ----D C:\Users\peg\AppData\Local\Western Digital

O43 - CFD: 02/07/2014 - 16:10:10 - [] ----D C:\Users\peg\AppData\Local\Windows Live

O43 - CFD: 12/11/2012 - 12:02:51 - [] ----D C:\Users\peg\AppData\Local\Windows Live Writer

O43 - CFD: 31/05/2012 - 10:01:04 - [] ----D C:\Users\peg\AppData\Local\www.shadowexplorer.com

O43 - CFD: 04/07/2012 - 09:29:12 - [] -SH-D C:\Users\peg\AppData\Local\{f073d71c-7db6-3601-0d61-ac3895c5cd38}

O43 - CFD: 14/07/2009 - 06:54:32 - [] R---D C:\Users\peg\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories

O43 - CFD: 15/05/2014 - 14:11:28 - [] R---D C:\Users\peg\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools

O43 - CFD: 13/06/2014 - 17:16:34 - [0] ----D C:\Users\peg\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AVS4YOU

O43 - CFD: 07/06/2011 - 12:06:16 - [0] ----D C:\Users\peg\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dofus 2

O43 - CFD: 16/03/2014 - 11:36:22 - [] ----D C:\Users\peg\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FormatFactory

O43 - CFD: 01/01/2011 - 23:56:47 - [] ----D C:\Users\peg\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games

O43 - CFD: 20/11/2013 - 15:42:14 - [] ----D C:\Users\peg\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome

O43 - CFD: 14/07/2009 - 06:49:38 - [] R---D C:\Users\peg\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance

O43 - CFD: 13/06/2014 - 17:43:37 - [] R---D C:\Users\peg\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup

O43 - CFD: 24/06/2011 - 18:18:28 - [] ----D C:\Users\peg\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Weight Watchers

~ Program Folder: 201 Scanned in 00mn 00s

---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44)

O44 - LFC:[MD5.D4CCE15190269486A5E6D4D4E597F798] - 11/07/2014 - 10:41:02 ---A- . (.Microsoft Corporation - DLL serveur LSA.) -- C:\Windows\System32\lsasrv.dll [1460736]

O44 - LFC:[MD5.52012C83F7E9AF65D13F04415F0508F5] - 11/07/2014 - 10:41:19 ---A- . (.Microsoft Corporation - Microsoft Spell Checking Facility.) -- C:\Windows\System32\MsSpellCheckingFacility.exe [940032]

O44 - LFC:[MD5.FEC19C351EF1B2C998A85D1BFD765675] - 11/07/2014 - 10:41:19 ---A- . (.Microsoft Corporation - Visionneuse HTML Microsoft ®.) -- C:\Windows\System32\mshtml.dll [23464448]

O44 - LFC:[MD5.89A53CDE0DA5680AF48A181D82C752CA] - 11/07/2014 - 10:41:20 ---A- . (.Microsoft Corporation - DAC for Trident DOM.) -- C:\Windows\System32\MshtmlDac.dll [83968]

O44 - LFC:[MD5.F876957CA193B20A21D52F91418657D7] - 11/07/2014 - 10:41:20 ---A- . (.Microsoft Corporation - DLL de gestion d'utilisateur local et de co.) -- C:\Windows\System32\msrating.dll [195584]

O44 - LFC:[MD5.2EE102DF0EDD8A1EDD3D1E9B99A91BEC] - 11/07/2014 - 10:41:21 ---A- . (.Microsoft Corporation - Extensions Internet pour Win32.) -- C:\Windows\System32\wininet.dll [2266112]

O44 - LFC:[MD5.BDD4A74421B023C81DA63168BD10C01B] - 11/07/2014 - 10:41:21 ---A- . (.Microsoft Corporation - Microsoft SmartScreen Filter.) -- C:\Windows\System32\ieapfltr.dll [846336]

O44 - LFC:[MD5.00401347C3BC466E5F2516387EBBCA7D] - 11/07/2014 - 10:41:21 ---A- . (.Microsoft Corporation - Microsoft ® VBScript.) -- C:\Windows\System32\vbscript.dll [548352]

O44 - LFC:[MD5.4EC7738394D2BC7BCB5F7A3657F57252] - 11/07/2014 - 10:41:22 ---A- . (.Microsoft Corporation - Microsoft ® JScript.) -- C:\Windows\System32\jscript9.dll [5721088]

O44 - LFC:[MD5.50FF2DD806CC6CF3B3F98F9A1A711603] - 11/07/2014 - 10:41:22 ---A- . (.Microsoft Corporation - Microsoft ® JScript Diagnostics.) -- C:\Windows\System32\jscript9diag.dll [752640]

O44 - LFC:[MD5.CD76B3D60D28634A67B0AD7CB2E45929] - 11/07/2014 - 10:41:22 ---A- . (.Microsoft Corporation - Outil d’installation sans assistance d’IE 7.) -- C:\Windows\System32\ieUnatt.exe [139264]

O44 - LFC:[MD5.945FA19B388FCF0FEA6124B5FD71C72F] - 11/07/2014 - 10:41:23 ---A- . (.Microsoft Corporation - Microsoft ® HTML Media DLL.) -- C:\Windows\System32\mshtmlmedia.dll [1249280]

O44 - LFC:[MD5.1FD6C2F6AC489C271565730F6E9E1A05] - 11/07/2014 - 10:41:23 ---A- . (.Microsoft Corporation - Microsoft® HTML Editing Component.) -- C:\Windows\System32\mshtmled.dll [85504]

O44 - LFC:[MD5.854C5F171F5CEE272232AC0286F3B3B9] - 11/07/2014 - 10:41:24 ---A- . (.Microsoft Corporation - Moteur de l’interface utilisateur d’Interne.) -- C:\Windows\System32\ieui.dll [598016]

O44 - LFC:[MD5.366FA6D38406DC8BED62825C196144D1] - 11/07/2014 - 10:41:24 ---A- . (.Microsoft Corporation - Navigateur Internet.) -- C:\Windows\System32\ieframe.dll [13527040]

O44 - LFC:[MD5.8B2ADE09864BF3F7AA6D395DAFEC41B5] - 11/07/2014 - 10:41:26 ---A- . (.Microsoft Corporation - JScript Proxy Auto-Configuration.) -- C:\Windows\System32\jsproxy.dll [51200]

O44 - LFC:[MD5.1685AA234852657C4A6D253CCBBE84E0] - 11/07/2014 - 10:41:29 ---A- . (.Microsoft Corporation - Panneau de configuration Internet.) -- C:\Windows\System32\inetcpl.cpl [2040832]

O44 - LFC:[MD5.A21C6231459F4CAC212676A9367A1A68] - 11/07/2014 - 10:41:29 ---A- . (.Microsoft Corporation - Run time utility for Internet Explorer.) -- C:\Windows\System32\iertutil.dll [2768384]

O44 - LFC:[MD5.7469D4E046BD7D155CAC2697BD28B58B] - 11/07/2014 - 10:41:30 ---A- . (.Microsoft Corporation - IOD Version Map.) -- C:\Windows\System32\iesetup.dll [66048]

O44 - LFC:[MD5.CA67F68CEC788C0C69AD47C5125DDD8E] - 11/07/2014 - 10:41:30 ---A- . (.Microsoft Corporation - Utilitaire d'initialisation d'Internet Expl.) -- C:\Windows\System32\ie4uinit.exe [608768]

O44 - LFC:[MD5.391D68668CFC061F26BE593A61F745E0] - 11/07/2014 - 10:41:32 ---A- . (.Microsoft Corporation - IE ETW Collector Service Resources.) -- C:\Windows\System32\ieetwcollectorres.dll [4096]

O44 - LFC:[MD5.7176CB0FFAAC3E54ABB2014E821120F9] - 11/07/2014 - 10:41:32 ---A- . (.Microsoft Corporation - IE ETW Collector Service.) -- C:\Windows\System32\ieetwcollector.exe [111616]

O44 - LFC:[MD5.D8E6706AECD7AA50764E126CE3F36555] - 11/07/2014 - 10:41:32 ---A- . (.Microsoft Corporation - Microsoft Feeds Manager.) -- C:\Windows\System32\msfeeds.dll [631808]

O44 - LFC:[MD5.73C7D1FCF6F58F3BF077FB42B0214BC0] - 11/07/2014 - 10:41:33 ---A- . (.Microsoft Corporation - Extensions OLE32 pour Win32.) -- C:\Windows\System32\urlmon.dll [1393664]

O44 - LFC:[MD5.C2F62DF01E3552DB0571FEF4D514675B] - 11/07/2014 - 10:41:35 ---A- . (.Microsoft Corporation - IE ETW Collector Proxy Stub Resources.) -- C:\Windows\System32\ieetwproxystub.dll [48640]

O44 - LFC:[MD5.5E646AD50848A409291418B5759595B9] - 11/07/2014 - 10:41:35 ---A- . (.Microsoft Corporation - JavaScript Performance Collection Agent.) -- C:\Windows\System32\JavaScriptCollectionAgent.dll [38400]

O44 - LFC:[MD5.DA5BAC4C5BDB22BBC6771534EA95AD33] - 11/07/2014 - 10:41:36 ---A- . (.Microsoft Corporation - Microsoft® MSHTML Typelib.) -- C:\Windows\System32\mshtml.tlb [2724864]

O44 - LFC:[MD5.C0F9F52C36E584C0339406ABF6DA1FBA] - 11/07/2014 - 10:41:36 ---A- . (.Microsoft Corporation - Personnalisation d’IEAK.) -- C:\Windows\System32\iedkcs32.dll [266424]

O44 - LFC:[MD5.FC50DF22550C565DD096ACFAF18A37ED] - 11/07/2014 - 10:41:37 ---A- . (.Microsoft Corporation - Traitement de RunOnce complet avec interfac.) -- C:\Windows\System32\iernonce.dll [33792]

O44 - LFC:[MD5.E23BA7A7BD97FC6B8AB5EA32A46D05CD] - 11/07/2014 - 10:41:51 ---A- . (.Microsoft Corporation - Bibliothèque de chiffrement Windows.) -- C:\Windows\System32\ncrypt.dll [307200]

O44 - LFC:[MD5.C9DD5C0D5AF2D7A54BA32E8FBD3B67F1] - 11/07/2014 - 10:41:51 ---A- . (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\System32\credssp.dll [22016]

O44 - LFC:[MD5.7D1017ED11B7C3B162628069742B5E58] - 11/07/2014 - 10:41:51 ---A- . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\Windows\System32\msv1_0.dll [314880]

O44 - LFC:[MD5.BFC98590EAB40C785D6134B1FA818A62] - 11/07/2014 - 10:41:51 ---A- . (.Microsoft Corporation - Microsoft Digest Access.) -- C:\Windows\System32\wdigest.dll [210944]

O44 - LFC:[MD5.79EE13A5A406E4603874686B8005DA72] - 11/07/2014 - 10:41:51 ---A- . (.Microsoft Corporation - Web Service Security Package.) -- C:\Windows\System32\TSpkg.dll [86528]

O44 - LFC:[MD5.A805B5E68262302D1A60BE3DED5846C9] - 11/07/2014 - 10:41:52 ---A- . (.Microsoft Corporation - Package de sécurité Kerberos.) -- C:\Windows\System32\kerberos.dll [728064]

O44 - LFC:[MD5.E8E98B3B7A6E1250F4AA7AF8FA17D5BB] - 11/07/2014 - 10:41:52 ---A- . (.Microsoft Corporation - TLS / SSL Security Provider.) -- C:\Windows\System32\schannel.dll [340992]

O44 - LFC:[MD5.FA886682CFC5D36718D3E436AACF10B9] - 11/07/2014 - 10:42:02 ---A- . (.Microsoft Corporation - Ancillary Function Driver for WinSock.) -- C:\Windows\System32\Drivers\afd.sys [497152]

O44 - LFC:[MD5.D6AFBAA93169E6772565A1BC896D666B] - 11/07/2014 - 10:42:05 ---A- . (.Microsoft Corporation - Édition DirectShow..) -- C:\Windows\System32\qedit.dll [624128]

O44 - LFC:[MD5.A064A1D9CBD7F6959AAEAEAFF96DB2E9] - 11/07/2014 - 10:42:10 ---A- . (.Microsoft Corporation - Accessibilité au Clavier visuel.) -- C:\Windows\System32\osk.exe [692736]

O44 - LFC:[MD5.F1726E14C8F7B40CD828345890AAF764] - 11/07/2014 - 10:42:10 ---A- . (.Microsoft Corporation - Pilote Win32 multi-utilisateurs.) -- C:\Windows\System32\win32k.sys [3157504]

O44 - LFC:[MD5.980394E1FF94E460C4D71C1B098A0B4F] - 11/07/2014 - 10:42:30 ---A- . (.Microsoft Corporation - Application Experience Program Inventory Co.) -- C:\Windows\System32\aeinv.dll [424448]

O44 - LFC:[MD5.03282D1ADC4F64D27D697CBB63F972C2] - 11/07/2014 - 10:42:31 ---A- . (.Microsoft Corporation - Mise à jour des données de compatibilité de.) -- C:\Windows\System32\aepdu.dll [519168]

O44 - LFC:[MD5.A01E5B6BA2766A8AD2583EE5490CEE09] - 11/07/2014 - 16:08:24 ---A- . (.Microsoft Corporation - Outil de suppression de logiciels malveilla.) -- C:\Windows\System32\MRT.exe [96441528]

O44 - LFC:[MD5.80966180B95DD1DE07D0D870130DB5C2] - 15/07/2014 - 14:48:46 ---A- . (...) -- C:\Windows\System32\FNTCACHE.DAT [343064]

O44 - LFC:[MD5.4663C5AD76FE8E19592DE808156FA07D] - 16/07/2014 - 05:57:43 ---A- . (.Avira Operations GmbH & Co. KG - Avira Minifilter Driver.) -- C:\Windows\System32\Drivers\avgntflt.sys [117712]

O44 - LFC:[MD5.09036D9F85BE6B659D375D2F0BAD0AD2] - 16/07/2014 - 05:57:44 ---A- . (.Avira Operations GmbH & Co. KG - Avira WFP Network Driver.) -- C:\Windows\System32\Drivers\avnetflt.sys [42040]

O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 18/07/2014 - 18:01:43 ---A- . (...) -- C:\Windows\setuperr.log [0]

O44 - LFC:[MD5.51B7DE611727DADDAF2B865DC722A7B1] - 19/07/2014 - 21:11:57 ---A- . (...) -- C:\BackupLoader.ini [270]

O44 - LFC:[MD5.3FAD4FA0959631CF805D7708C09168CB] - 20/07/2014 - 01:02:58 ---A- . (...) -- C:\Windows\IE11_main.log [7690]

O44 - LFC:[MD5.3FF5B4F06117714FA9CBD6C5A8067660] - 21/07/2014 - 10:51:27 ---A- . (...) -- C:\Windows\WindowsUpdate.log [719506]

O44 - LFC:[MD5.679C86FD6EDE6C814C9B5C640D3AA198] - 21/07/2014 - 10:52:34 ---A- . (...) -- C:\Windows\PFRO.log [1132]

O44 - LFC:[MD5.9EAB7006B968EFBF71FECC112B05BDEA] - 21/07/2014 - 10:52:41 -S-A- . (...) -- C:\Windows\bootstat.dat [67584]

O44 - LFC:[MD5.B0EC8C6756A84C17ADB89B58786DD8E4] - 21/07/2014 - 10:52:50 ---A- . (...) -- C:\Windows\setupact.log [280]

O44 - LFC:[MD5.F92B0E478C0FAA6D6661E6E977247E60] - 21/07/2014 - 11:18:21 ---A- . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Windows\System32\Drivers\mbam.sys [25816]

O44 - LFC:[MD5.9D9ED48F841EA37AA5310D54B9E5D3C7] - 21/07/2014 - 11:18:21 ---A- . (.Malwarebytes Corporation - Malwarebytes Chameleon Protection Driver.) -- C:\Windows\System32\Drivers\mbamchameleon.sys [91352]

O44 - LFC:[MD5.15E8ABC06843672955CE26A009533BAD] - 21/07/2014 - 11:18:21 ---A- . (.Malwarebytes Corporation - Malwarebytes Web Access Control.) -- C:\Windows\System32\Drivers\mwac.sys [63704]

O44 - LFC:[MD5.8A50D5304E6AE48664CF5838EC32F647] - 21/07/2014 - 11:51:27 ---A- . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Windows\System32\Drivers\MBAMSwissArmy.sys [122584]

~ Files: 59 Scanned in 00mn 09s

---\\ Déni du service (Local Security Authority) (O48)

O48 - LSA:Local Security Authority Authentication Packages . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\Windows\System32\msv1_0.dll

O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Package de sécurité Kerberos.) -- C:\Windows\System32\kerberos.dll

O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\Windows\System32\msv1_0.dll

O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - TLS / SSL Security Provider.) -- C:\Windows\System32\schannel.dll

O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Digest Access.) -- C:\Windows\System32\wdigest.dll

O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Web Service Security Package.) -- C:\Windows\System32\tspkg.dll

O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Pku2u Security Package.) -- C:\Windows\System32\pku2u.dll

O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corp. - LiveSSP.) -- C:\Windows\System32\livessp.dll

~ LSA: 8 Scanned in 00mn 00s

---\\ Contrôle du Safe Boot (CSB) (O49)

O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris série.) -- C:\Windows\System32\Drivers\sermouse.sys

O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\Windows\System32\Drivers\vga.sys

O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\vgasave.sys . (...) -- C:\Windows\System32\Drivers\vgasave.sys (.not file.)

O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\System32\Drivers\volmgr.sys

O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\volmgrx.sys . (.Microsoft Corporation - Pilote d’extension du gestionnaire de volumes.) -- C:\Windows\System32\Drivers\volmgrx.sys

O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\ipnat.sys . (.Microsoft Corporation - IP Network Address Translator.) -- C:\Windows\System32\Drivers\ipnat.sys

O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\nsiproxy.sys . (.Microsoft Corporation - NSI Proxy.) -- C:\Windows\System32\Drivers\nsiproxy.sys

O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\rdpencdd.sys . (.Microsoft Corporation - RDP Encoder Miniport.) -- C:\Windows\System32\Drivers\rdpencdd.sys

O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\sermouse.sys . (.Microsoft Corporation - Pilote de filtre souris série.) -- C:\Windows\System32\Drivers\sermouse.sys

O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vga.sys . (.Microsoft Corporation - VGA/Super VGA Video Driver.) -- C:\Windows\System32\Drivers\vga.sys

O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\vgasave.sys . (...) -- C:\Windows\System32\Drivers\vgasave.sys (.not file.)

O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgr.sys . (.Microsoft Corporation - Volume Manager Driver.) -- C:\Windows\System32\Drivers\volmgr.sys

O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\volmgrx.sys . (.Microsoft Corporation - Pilote d’extension du gestionnaire de volumes.) -- C:\Windows\System32\Drivers\volmgrx.sys

~ CSB: 13 Scanned in 00mn 00s

---\\ Clé de registre Shell MountPoints2 (MPKS) (O51)

O51 - MPSK:{492dd190-166e-11e0-b35a-c80aa965a90d}\AutoRun\command. (...) -- E:\iStudio.exe (.not file.)

O51 - MPSK:{d4de4ab1-6f44-11e0-8851-c80aa965a90d}\AutoRun\command. (...) -- E:\AutoRunCardDetector.exe (.not file.)

~ Keys: Scanned in 00mn 00s

---\\ Recherche d'infection sur les pilotes (HKLM)(TDSD) (O52)

O52 - TDSD: \Drivers32\"msacm.l3acm"="C:\Windows\System32\l3codeca.acm" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm

O52 - TDSD: \drivers.desc\"C:\Windows\System32\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec" . (.Fraunhofer Institut Integrierte Schaltungen - MPEG Layer-3 Audio Codec for MSACM.) -- C:\Windows\System32\l3codeca.acm

~ TDSD: 2 Scanned in 00mn 00s

---\\ Enumération des clés de registre SecurityProviders (MCSP) (O54)

O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\System32\credssp.dll

O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - Credential Delegation Security Package.) -- C:\Windows\System32\credssp.dll

~ MSCP: 2 Scanned in 00mn 00s

---\\ Enumération des clés de registre PoliciesSystem (MWPS) (O55)

O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorAdmin"=5

O55 - MWPS:[HKLM\...\Policies\System] - "ConsentPromptBehaviorUser"=3

O55 - MWPS:[HKLM\...\Policies\System] - "EnableInstallerDetection"=1

O55 - MWPS:[HKLM\...\Policies\System] - "EnableLUA"=1

O55 - MWPS:[HKLM\...\Policies\System] - "EnableSecureUIAPaths"=1

O55 - MWPS:[HKLM\...\Policies\System] - "EnableUIADesktopToggle"=0

O55 - MWPS:[HKLM\...\Policies\System] - "EnableVirtualization"=1

O55 - MWPS:[HKLM\...\Policies\System] - "PromptOnSecureDesktop"=1

O55 - MWPS:[HKLM\...\Policies\System] - "ValidateAdminCodeSignatures"=0

O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0

O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"=0

O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"=0

O55 - MWPS:[HKLM\...\Policies\System] - "scforceoption"=0

O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1

O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1

O55 - MWPS:[HKLM\...\Policies\System] - "FilterAdministratorToken"=0

O55 - MWPS:[HKCU\...\Policies\System] - "DisableRegistryTools"=0

O55 - MWPS:[HKCU\...\Policies\System] - "DisableTaskMgr"=0

~ MWPS: 18 Scanned in 00mn 00s

---\\ Enumération des clés de registre PoliciesExplorer (MWPE) (O56)

O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktop"=1

O56 - MWPE:[HKLM\...\policies\Explorer] - "NoActiveDesktopChanges"=1

O56 - MWPE:[HKLM\...\policies\Explorer] - "ForceActiveDesktopOn"=0

~ MWPE Keys: 3 Scanned in 00mn 00s

---\\ Liste des pilotes du système (SDL) (O58)

O58 - SDL:14/07/2009 - 02:52:21 ---A- . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\System32\Drivers\adp94xx.sys [491088]

O58 - SDL:14/07/2009 - 02:52:21 ---A- . (.Adaptec, Inc. - Adaptec Windows SATA Storport Driver.) -- C:\Windows\System32\Drivers\adpahci.sys [339536]

O58 - SDL:14/07/2009 - 02:52:21 ---A- . (.Adaptec, Inc. - Adaptec StorPort Ultra320 SCSI Driver (X64).) -- C:\Windows\System32\Drivers\adpu320.sys [182864]

O58 - SDL:14/07/2009 - 02:52:21 ---A- . (.Acer Laboratories Inc. - ALi mini IDE Driver.) -- C:\Windows\System32\Drivers\aliide.sys [15440]

O58 - SDL:11/03/2011 - 07:41:12 ---A- . (.Advanced Micro Devices - AHCI 1.2 Device Driver.) -- C:\Windows\System32\Drivers\amdsata.sys [107904]

O58 - SDL:14/07/2009 - 02:52:20 ---A- . (.AMD Technologies Inc. - AMD Technology AHCI Compatible Controller Driver for Windows -.) -- C:\Windows\System32\Drivers\amdsbs.sys [194128]

O58 - SDL:11/03/2011 - 07:41:12 ---A- . (.Advanced Micro Devices - Storage Filter Driver.) -- C:\Windows\System32\Drivers\amdxata.sys [27008]

O58 - SDL:14/07/2009 - 02:52:21 ---A- . (.Adaptec, Inc. - Adaptec RAID Storport Driver.) -- C:\Windows\System32\Drivers\arc.sys [87632]

O58 - SDL:14/07/2009 - 02:52:21 ---A- . (.Adaptec, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\System32\Drivers\arcsas.sys [97856]

O58 - SDL:05/01/2010 - 01:55:04 ---A- . (.Atheros Communications, Inc. - Atheros Extensible Wireless LAN device driver.) -- C:\Windows\System32\Drivers\athrx.sys [1580584]

O58 - SDL:30/06/2009 - 13:06:04 ---A- . (.AuthenTec, Inc. - AuthenTec Swipe Sensor WDF USB Driver.) -- C:\Windows\System32\Drivers\ATSwpWDF.sys [734720]

O58 - SDL:16/07/2014 - 05:57:43 ---A- . (.Avira Operations GmbH & Co. KG - Avira Minifilter Driver.) -- C:\Windows\System32\Drivers\avgntflt.sys [117712] =>.Avira Operations GmbH

O58 - SDL:03/06/2014 - 15:22:50 ---A- . (.Avira Operations GmbH & Co. KG - Avira Driver for Security Enhancement.) -- C:\Windows\System32\Drivers\avipbb.sys [130584] =>.Avira Operations GmbH

O58 - SDL:27/11/2013 - 19:23:43 ---A- . (.Avira Operations GmbH & Co. KG - Avira Manager Driver.) -- C:\Windows\System32\Drivers\avkmgr.sys [28600] =>.Avira Operations GmbH

O58 - SDL:16/07/2014 - 05:57:44 ---A- . (.Avira Operations GmbH & Co. KG - Avira WFP Network Driver.) -- C:\Windows\System32\Drivers\avnetflt.sys [42040] =>.Avira Operations GmbH

O58 - SDL:27/10/2009 - 13:50:18 ---A- . (.Broadcom Corporation - Broadcom NetXtreme Gigabit Ethernet NDIS6.x Unified Driver..) -- C:\Windows\System32\Drivers\b57nd60a.sys [321064]

O58 - SDL:11/02/2010 - 04:01:12 ---A- . (.Broadcom Corporation - Broadcom 802.11 Network Adapter wireless driver.) -- C:\Windows\System32\Drivers\BCMWL664.SYS [3058168]

O58 - SDL:10/06/2009 - 21:41:06 ---A- . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Lower Filter Driver.) -- C:\Windows\System32\Drivers\BrFiltLo.sys [18432]

O58 - SDL:10/06/2009 - 21:41:06 ---A- . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Upper Filter Driver.) -- C:\Windows\System32\Drivers\BrFiltUp.sys [8704]

O58 - SDL:14/07/2009 - 02:19:07 ---A- . (.Brother Industries Ltd. - Pilote Brother Série I/F (WDM).) -- C:\Windows\System32\Drivers\BrSerId.sys [286720]

O58 - SDL:10/06/2009 - 21:41:10 ---A- . (.Brother Industries Ltd. - Brother Serial driver (WDM version).) -- C:\Windows\System32\Drivers\BrSerWdm.sys [47104]

O58 - SDL:10/06/2009 - 21:41:10 ---A- . (.Brother Industries Ltd. - Brother USB MDM Driver.) -- C:\Windows\System32\Drivers\BrUsbMdm.sys [14976]

O58 - SDL:10/06/2009 - 21:41:10 ---A- . (.Brother Industries Ltd. - Brother USB Serial Driver.) -- C:\Windows\System32\Drivers\BrUsbSer.sys [14720]

O58 - SDL:10/06/2009 - 21:34:28 ---A- . (.Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) -- C:\Windows\System32\Drivers\bxvbda.sys [468480]

O58 - SDL:12/02/2009 - 15:20:56 ---A- . (.Conexant Systems, Inc. - HSF_HWAZL WDM driver.) -- C:\Windows\System32\Drivers\CAXHWAZL.sys [292864]

O58 - SDL:12/02/2009 - 15:19:34 ---A- . (.Conexant Systems, Inc. - HSF_CNXT driver.) -- C:\Windows\System32\Drivers\CAX_CNXT.sys [740864]

O58 - SDL:12/02/2009 - 15:24:56 ---A- . (.Conexant Systems, Inc. - HSF_DP driver.) -- C:\Windows\System32\Drivers\CAX_DPV.sys [1485824]

O58 - SDL:14/07/2009 - 02:52:31 ---A- . (.CMD Technology, Inc. - CMD PCI IDE Bus Driver.) -- C:\Windows\System32\Drivers\cmdide.sys [17488]

O58 - SDL:14/07/2009 - 02:47:48 ---A- . (.Emulex - Storport Miniport Driver for LightPulse HBAs.) -- C:\Windows\System32\Drivers\elxstor.sys [530496]

O58 - SDL:10/06/2009 - 21:34:33 ---A- . (.Broadcom Corporation - Broadcom NetXtreme II 10 GigE VBD.) -- C:\Windows\System32\Drivers\evbda.sys [3286016]

O58 - SDL:15/06/2009 - 12:45:35 ---A- . (.Huawei Technologies Co., Ltd. - USB Modem/Serial Device Driver.) -- C:\Windows\System32\Drivers\ewusbfake.sys [116224]

O58 - SDL:15/06/2009 - 12:45:35 ---A- . (.Huawei Technologies Co., Ltd. - USB Modem/Serial Device Driver.) -- C:\Windows\System32\Drivers\ewusbmdm.sys [116864]

O58 - SDL:18/03/2009 - 16:35:42 --HA- . (.LogMeIn, Inc. - Hamachi Virtual Network Interface Driver.) -- C:\Windows\System32\Drivers\hamachi.sys [33856]

O58 - SDL:10/06/2009 - 21:31:59 ---A- . (.Hauppauge Computer Works, Inc. - Hauppauge WinTV 885 Consumer IR Driver for eHome.) -- C:\Windows\System32\Drivers\hcw85cir.sys [31232]

O58 - SDL:31/08/2009 - 23:36:18 ---A- . (.Windows ® Win 7 DDK provider - SHIM filter for KMDF HIDMINI driver.) -- C:\Windows\System32\Drivers\hidshim.sys [6656]

O58 - SDL:20/11/2010 - 14:33:35 ---A- . (.Hewlett-Packard Company - Smart Array SAS/SATA Controller Media Driver.) -- C:\Windows\System32\Drivers\HpSAMD.sys [78720]

O58 - SDL:11/03/2011 - 07:41:26 ---A- . (.Intel Corporation - Intel Matrix Storage Manager driver - x64.) -- C:\Windows\System32\Drivers\iaStorV.sys [410496]

O58 - SDL:14/07/2009 - 02:48:04 ---A- . (.Intel Corp./ICP vortex GmbH - Intel/ICP Raid Storport Driver.) -- C:\Windows\System32\Drivers\iirsp.sys [44112]

O58 - SDL:30/09/2008 - 17:42:20 ---A- . (.Acer, Inc. - int15.) -- C:\Windows\System32\Drivers\int15_64.sys [17952]

O58 - SDL:14/07/2009 - 02:48:04 ---A- . (.LSI Corporation - LSI Fusion-MPT FC Driver (StorPort).) -- C:\Windows\System32\Drivers\lsi_fc.sys [114752]

O58 - SDL:14/07/2009 - 02:48:04 ---A- . (.LSI Corporation - LSI Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\System32\Drivers\lsi_sas.sys [106560]

O58 - SDL:14/07/2009 - 02:48:04 ---A- . (.LSI Corporation - LSI SAS Gen2 Driver (StorPort).) -- C:\Windows\System32\Drivers\lsi_sas2.sys [65600]

O58 - SDL:14/07/2009 - 02:48:04 ---A- . (.LSI Corporation - LSI Fusion-MPT SCSI Driver (StorPort).) -- C:\Windows\System32\Drivers\lsi_scsi.sys [115776]

O58 - SDL:29/03/2010 - 09:49:24 ---A- . (.LITEON - LITEON AVSTREAM BDA driver.) -- C:\Windows\System32\Drivers\Ltn_stk7070P.sys [917504]

O58 - SDL:12/05/2014 - 06:25:56 ---A- . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Windows\System32\Drivers\mbam.sys [25816]

O58 - SDL:12/05/2014 - 06:26:00 ---A- . (.Malwarebytes Corporation - Malwarebytes Chameleon Protection Driver.) -- C:\Windows\System32\Drivers\mbamchameleon.sys [91352]

O58 - SDL:21/07/2014 - 11:51:27 ---A- . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Windows\System32\Drivers\MBAMSwissArmy.sys [122584]

O58 - SDL:17/06/2006 - 23:27:24 ---A- . (.Conexant - Diagnostic Interface x64 Driver.) -- C:\Windows\System32\Drivers\mdmxsdk.sys [17024]

O58 - SDL:14/07/2009 - 02:48:04 ---A- . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows 7\Server 2008 R2 for.) -- C:\Windows\System32\Drivers\megasas.sys [35392]

O58 - SDL:14/07/2009 - 02:48:04 ---A- . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\Windows\System32\Drivers\MegaSR.sys [284736]

O58 - SDL:12/05/2014 - 06:26:10 ---A- . (.Malwarebytes Corporation - Malwarebytes Web Access Control.) -- C:\Windows\System32\Drivers\mwac.sys [63704]

O58 - SDL:03/06/2009 - 03:15:30 ---A- . (.Egis Technology Inc. - PSD Filter Driver.) -- C:\Windows\System32\Drivers\mwlPSDFilter.sys [22576]

O58 - SDL:03/06/2009 - 03:15:30 ---A- . (.Egis Technology Inc. - MyWinLocker PSD Named Pipe Driver.) -- C:\Windows\System32\Drivers\mwlPSDNserv.sys [20016]

O58 - SDL:03/06/2009 - 03:15:30 ---A- . (.Egis Technology Inc. - MyWinLocker PSD Virtual Disk Driver.) -- C:\Windows\System32\Drivers\mwlPSDVDisk.sys [60464]

O58 - SDL:14/07/2009 - 02:48:26 ---A- . (.IBM Corporation - IBM ServeRAID Controller Driver.) -- C:\Windows\System32\Drivers\nfrd960.sys [51264]

O58 - SDL:05/05/2009 - 09:46:08 ---A- . (.NewTech Infosystems, Inc. - NTI CD-ROM Filter Driver.) -- C:\Windows\System32\Drivers\NTIDrvr.sys [18432]

O58 - SDL:31/08/2009 - 20:42:04 ---A- . (.Nuvoton Technology Corporation - Nuvoton MCE CIR Port Driver.) -- C:\Windows\System32\Drivers\nuvotoncir.sys [48128]

O58 - SDL:31/08/2009 - 23:36:16 ---A- . (.Nuvoton Technology Corporation - Nuvoton HID CIR Receiver.) -- C:\Windows\System32\Drivers\nuvotonhidcir.sys [26624]

O58 - SDL:31/08/2009 - 21:45:20 ---A- . (.Nuvoton Technology Corporation - Nuvoton MC CIR Port Driver.) -- C:\Windows\System32\Drivers\nuvotonir.sys [68096]

O58 - SDL:04/03/2010 - 06:42:02 ---A- . (.NVIDIA Corporation - NVIDIA HDMI Audio Driver.) -- C:\Windows\System32\Drivers\nvhda64v.sys [86120]

O58 - SDL:15/04/2010 - 22:26:04 ---A- . (.NVIDIA Corporation - NVIDIA Windows Kernel Mode Driver, Version 197.60.) -- C:\Windows\System32\Drivers\nvlddmkm.sys [13694184]

O58 - SDL:11/03/2011 - 07:41:34 ---A- . (.NVIDIA Corporation - NVIDIA® nForce RAID Driver.) -- C:\Windows\System32\Drivers\nvraid.sys [148352]

O58 - SDL:04/03/2010 - 06:24:08 ---A- . (.NVIDIA Corporation - NVIDIA nForce SMU Microcontroller Driver.) -- C:\Windows\System32\Drivers\nvsmu.sys [28704]

O58 - SDL:11/03/2011 - 07:41:34 ---A- . (.NVIDIA Corporation - NVIDIA® nForce Sata Performance Driver.) -- C:\Windows\System32\Drivers\nvstor.sys [166272]

O58 - SDL:04/03/2010 - 06:24:00 ---A- . (.NVIDIA Corporation - NVIDIA® nForce Sata Performance Driver.) -- C:\Windows\System32\Drivers\nvstor64.sys [241696]

O58 - SDL:14/07/2009 - 02:45:46 ---A- . (.QLogic Corporation - QLogic Fibre Channel Stor Miniport Driver.) -- C:\Windows\System32\Drivers\ql2300.sys [1524816]

O58 - SDL:14/07/2009 - 02:45:45 ---A- . (.QLogic Corporation - QLogic iSCSI Storport Miniport Driver.) -- C:\Windows\System32\Drivers\ql40xx.sys [128592]

O58 - SDL:30/03/2010 - 12:42:34 ---A- . (.Realtek Semiconductor Corp. - Realtek® High Definition Audio Function Driver.) -- C:\Windows\System32\Drivers\RTKVHD64.sys [2331680]

O58 - SDL:22/09/2009 - 10:39:56 ---A- . (.Realtek Semiconductor Corp. - Realtek USB Mass Storage Driver for 2K/XP/Vista/Win7.) -- C:\Windows\System32\Drivers\RtsUStor.sys [225280]

O58 - SDL:10/06/2009 - 21:37:19 ---A- . (.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) -- C:\Windows\System32\Drivers\secdrv.sys [23040]

O58 - SDL:14/07/2009 - 02:45:45 ---A- . (.Silicon Integrated Systems Corp. - SiS RAID Stor Miniport Driver.) -- C:\Windows\System32\Drivers\sisraid2.sys [43584]

O58 - SDL:14/07/2009 - 02:45:46 ---A- . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\System32\Drivers\sisraid4.sys [80464]

O58 - SDL:22/01/2014 - 08:52:10 ---A- . (.DEVGURU Co., LTD.(www.devguru.co.kr) - SAMSUNG USB Composite Device Driver (MSS Ver.3).) -- C:\Windows\System32\Drivers\ssudbus.sys [108800]

O58 - SDL:22/01/2014 - 08:52:10 ---A- . (.DEVGURU Co., LTD.(www.devguru.co.kr) - SAMSUNG Android Modem Device Driver (MSS Ver.3).) -- C:\Windows\System32\Drivers\ssudmdm.sys [206080]

O58 - SDL:19/09/2009 - 05:30:14 ---A- . (.MCCI - SAMSUNG USB Mobile Device.) -- C:\Windows\System32\Drivers\ss_bbus.sys [127488]

O58 - SDL:19/09/2009 - 05:30:14 ---A- . (.MCCI Corporation - SAMSUNG USB Mobile Device (Windows 2000/XP support functions).) -- C:\Windows\System32\Drivers\ss_bwh.sys [15872]

O58 - SDL:19/09/2009 - 05:30:14 ---A- . (.MCCI Corporation - SAMSUNG USB Mobile Device (Windows 2000/XP support functions).) -- C:\Windows\System32\Drivers\ss_bwhnt.sys [15872]

O58 - SDL:14/07/2009 - 02:45:55 ---A- . (.Promise Technology - Promise SuperTrak EX Series Driver for Windows.) -- C:\Windows\System32\Drivers\stexstor.sys [24656]

O58 - SDL:17/09/2009 - 13:12:06 ---A- . (.Synaptics Incorporated - Synaptics Touchpad Driver.) -- C:\Windows\System32\Drivers\SynTP.sys [292912]

O58 - SDL:05/05/2009 - 09:46:08 ---A- . (.NewTech Infosystems Corporation - NTI CDROM Filter Driver.) -- C:\Windows\System32\Drivers\UBHelper.sys [16896]

O58 - SDL:14/07/2009 - 02:45:55 ---A- . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\Windows\System32\Drivers\viaide.sys [17488]

O58 - SDL:14/07/2009 - 02:45:55 ---A- . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\Windows\System32\Drivers\vsmraid.sys [161872]

O58 - SDL:10/06/2009 - 22:01:11 ---A- . (.Conexant Systems, Inc. - HSF_HWAZL WDM driver.) -- C:\Windows\System32\Drivers\VSTAZL6.SYS [292864]

O58 - SDL:10/06/2009 - 22:01:11 ---A- . (.Conexant Systems, Inc. - HSF_CNXT driver.) -- C:\Windows\System32\Drivers\VSTCNXT6.SYS [740864]

O58 - SDL:10/06/2009 - 22:01:11 ---A- . (.Conexant Systems, Inc. - HSF_DP driver.) -- C:\Windows\System32\Drivers\VSTDPV6.SYS [1485312]

O58 - SDL:29/04/2009 - 04:21:08 ---A- . (.Conexant Systems, Inc. - Modem Audio Device Driver.) -- C:\Windows\System32\Drivers\XAudio64.sys [10240]

O58 - SDL:24/04/2014 - 11:23:48 ---A- . (.StdLib - StdLib.) -- C:\Windows\System32\Drivers\{29b136c9-938d-4d3d-8df8-d649d9b74d02}w64.sys [61120] =>PUP.LinkiDoo

O58 - SDL:11/06/2014 - 14:34:50 ---A- . (.StdLib - StdLib.) -- C:\Windows\System32\Drivers\{a3f28269-ad17-41a8-b032-3e0313ef8979}w64.sys [61120] =>PUP.LinkiDoo

O58 - SDL:18/03/2009 - 16:35:42 --HA- . (.LogMeIn, Inc. - Hamachi Virtual Network Interface Driver.) -- C:\Windows\System32\hamachi.sys [33856]

O58 - SDL:26/03/2009 - 04:16:08 ---A- . (.Dritek System Inc. - Dritek 64-bit PS/2 Keyboard Filter Driver.) -- C:\Windows\SysWOW64\drivers\DKbFltr.sys [25608]

O58 - SDL:01/10/2008 - 18:04:16 ---A- . (.Acer, Inc. - int15.) -- C:\Windows\SysWOW64\drivers\int15.sys [12832]

O58 - SDL:30/09/2008 - 17:42:20 ---A- . (.Acer, Inc. - int15.) -- C:\Windows\SysWOW64\drivers\int15_64.sys [17952]

O58 - SDL:22/09/2009 - 10:39:56 ---A- . (.Realtek Semiconductor Corp. - Realtek USB Mass Storage Driver for 2K/XP/Vista/Win7.) -- C:\Windows\SysWOW64\drivers\RtsUStor.sys [225280]

~ Drivers: 93 Scanned in 00mn 05s

---\\ Derniers fichiers modifiés ou crées (Utilisateur) (O61)

O61 - LFC: 17/07/2014 - 13:07:19 ---A- . (...) -- C:\Users\peg\AppData\Local\Temp\Quarantine.exe [384143]

O61 - LFC: 20/07/2014 - 13:07:25 ---A- . (...) -- C:\Users\peg\AppData\Roaming\Adobe\Acrobat\9.0\UserCache.bin [58857]

O61 - LFC: 20/07/2014 - 13:07:45 ---A- . (.Malwarebytes Corporation.) -- C:\Users\peg\Documents\télécharger\vdub.exe [17292760]

O61 - LFC: 21/07/2014 - 13:07:19 ---A- . (...) -- C:\Users\peg\AppData\Local\Temp\{C2695E83-CF1D-43D1-84FE-B3BEC561012A}\iSetup.dll [199168]

O61 - LFC: 21/07/2014 - 13:07:19 ---A- . (.Egis Technology Inc..) -- C:\Users\peg\AppData\Local\Temp\{C2695E83-CF1D-43D1-84FE-B3BEC561012A}\Shredder64.exe [2137202]

O61 - LFC: 21/07/2014 - 13:07:29 ---A- . (...) -- C:\Users\peg\Documents\télécharger\adwcleaner_3.216.exe [1354223]

O61 - LFC: 21/07/2014 - 13:07:45 ---A- . (.Malwarebytes Corporation.) -- C:\Users\peg\Documents\télécharger\mbam-setup-2.0.2.1012.exe [17292760]

O61 - LFC: 21/07/2014 - 13:07:45 ---A- . (.Thisisu.) -- C:\Users\peg\Documents\télécharger\JRT.exe [1016261]

O61 - LFC: 21/07/2014 - 13:08:01 ---A- . (.Nicolas Coolman.) -- C:\Users\peg\Documents\télécharger\ZHPDiag2.exe [6855568] =>.Nicolas Coolman

~ 211 Fichiers temporaires (Temporary files)

~ 3 Fichiers cookies (Cookies files)

~ Files: 9 Scanned in 00mn 47s

---\\ Liste des outils de désinfection (LATC) (O63)

O63 - Logiciel: ZHPDiag 2014 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1 =>.Nicolas Coolman

~ ADS: Scanned in 00mn 00s

---\\ Liste les services legacy du registre (LALS) (O64)

O64 - Services: CurCS - 16/07/2014 - C:\Windows\System32\DRIVERS\avgntflt.sys (avgntflt) .(.Avira Operations GmbH & Co. KG - Avira Minifilter Driver.) - LEGACY_AVGNTFLT

O64 - Services: CurCS - 03/06/2014 - C:\Windows\System32\DRIVERS\avipbb.sys (avipbb) .(.Avira Operations GmbH & Co. KG - Avira Driver for Security Enhancement.) - LEGACY_AVIPBB

O64 - Services: CurCS - 27/11/2013 - C:\Windows\System32\DRIVERS\avkmgr.sys (avkmgr) .(.Avira Operations GmbH & Co. KG - Avira Manager Driver.) - LEGACY_AVKMGR

O64 - Services: CurCS - 30/09/2008 - C:\Windows\sysWOW64\drivers\int15_64.sys (int15) .(.Acer, Inc. - int15.) - LEGACY_INT15

O64 - Services: CurCS - 21/07/2014 - C:\Windows\system32\drivers\MBAMSwissArmy.sys (MBAMSwissArmy) .(.Malwarebytes Corporation - Malwarebytes Anti-Malware.) - LEGACY_MBAMSWISSARMY

O64 - Services: CurCS - 03/06/2009 - C:\Windows\System32\DRIVERS\mwlPSDFilter.sys (mwlPSDFilter) .(.Egis Technology Inc. - PSD Filter Driver.) - LEGACY_MWLPSDFILTER

O64 - Services: CurCS - 03/06/2009 - C:\Windows\System32\DRIVERS\mwlPSDNServ.sys (mwlPSDNServ) .(.Egis Technology Inc. - MyWinLocker PSD Named Pipe Driver.) - LEGACY_MWLPSDNSERV

O64 - Services: CurCS - 03/06/2009 - C:\Windows\System32\DRIVERS\mwlPSDVDisk.sys (mwlPSDVDisk) .(.Egis Technology Inc. - MyWinLocker PSD Virtual Disk Driver.) - LEGACY_MWLPSDVDISK

O64 - Services: CurCS - 10/06/2009 - C:\Windows\System32\Drivers\secdrv.sys (secdrv) .(.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) - LEGACY_SECDRV

O64 - Services: CurCS - 29/04/2009 - C:\Windows\System32\DRIVERS\XAudio64.sys (XAudio) .(.Conexant Systems, Inc. - Modem Audio Device Driver.) - LEGACY_XAUDIO

O64 - Services: CurCS - 24/04/2014 - C:\Windows\System32\drivers\{29b136c9-938d-4d3d-8df8-d649d9b74d02}w64.sys ({29b136c9-938d-4d3d-8df8-d649d9b74d02}w64) .(.StdLib - StdLib.) - LEGACY_{29B136C9-938D-4D3D-8DF8-D649D9B74D02}W64 =>PUP.LinkiDoo

O64 - Services: CurCS - 11/06/2014 - C:\Windows\System32\drivers\{a3f28269-ad17-41a8-b032-3e0313ef8979}w64.sys ({a3f28269-ad17-41a8-b032-3e0313ef8979}w64) .(.StdLib - StdLib.) - LEGACY_{A3F28269-AD17-41A8-B032-3E0313EF8979}W64 =>PUP.LinkiDoo

~ Legacy: 100 Scanned in 00mn 00s

---\\ Associations Shell Spawning (O67)

O67 - Shell Spawning: <.bat> <batfile>[HKLM\..\open\Command] (...) -- "%1" %*

O67 - Shell Spawning: <.cpl> <cplfile>[HKLM\..\cplopen\Command] (.Microsoft Corporation - Windows Control Panel.) -- C:\Windows\System32\control.exe =>.Microsoft Corporation

O67 - Shell Spawning: <.cmd> <cmdfile>[HKLM\..\open\Command] (...) -- "%1" %*

O67 - Shell Spawning: <.com> <comfile>[HKLM\..\open\Command] (...) -- "%1" %*

O67 - Shell Spawning: <.evt> <evtfile>[HKLM\..\open\Command] (.Microsoft Corporation - Lanceur du composant logiciel enfichable Observateur d’événements.) -- C:\Windows\System32\eventvwr.exe

O67 - Shell Spawning: <.exe> <exefile>[HKLM\..\open\Command] (...) -- "%1" %*

O67 - Shell Spawning: <.html> <ChromeHTML>[HKLM\..\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

O67 - Shell Spawning: <.js> <JSFile>[HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Windows Based Script Host.) -- C:\Windows\System32\WScript.exe

O67 - Shell Spawning: <.reg> <regfile>[HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\Windows\regedit.exe

O67 - Shell Spawning: <.scr> <scrfile>[HKLM\..\open\Command] (...) -- "%1" /S

O67 - Shell Spawning: <.html> <ChromeHTML>[HKCU\..\open\Command] (.Not Key.)

~ FASS Keys: 11 Scanned in 00mn 00s

---\\ Menu de démarrage Internet (SMI) (O68)

O68 - StartMenuInternet: <Google Chrome> <Google Chrome>[HKLM\..\Shell\open\Command] (.Google Inc. - Google Chrome.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\Shell\open\Command] (...) -- C:\Program Files (x86)\Internet Explorer\iexplore.exe

~ Keys: Scanned in 00mn 00s

---\\ Recherche d'infection sur les navigateurs internet (SBI) (O69)

O69 - SBI: SearchScopes [HKCU] FCE8136CC0D847A08AD8345000FCDCCB - (Mysearchdial) - http://start.mysearchdial.com =>Adware.MyWebSearch

O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (Bing) - http://www.bing.com

O69 - SBI: SearchScopes [HKCU] {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} [DefaultScope] - (Mysearchdial) - http://start.mysearchdial.com =>Adware.MyWebSearch

O69 - SBI: SearchScopes [HKCU] {67A2568C-7A0A-4EED-AECC-B5405DE63B64} - (Google) - http://www.google.com

~ Keys: Scanned in 00mn 00s

---\\ Enumère les service demarrés par Svchost (SSS) (O83)

O83 - Search Svchost Services: AeLookupSvc (AeLookupSvc) . (.Microsoft Corporation - Service Expérience d’application.) -- C:\Windows\System32\aelupsvc.dll [72192]

O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Service de propagation de certificats de cartes à puce Microsoft.) -- C:\Windows\System32\certprop.dll [80384]

O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Service de propagation de certificats de cartes à puce Microsoft.) -- C:\Windows\System32\certprop.dll [80384]

O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL du service Serveur.) -- C:\Windows\System32\srvsvc.dll [236032]

O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Client de stratégie de groupe.) -- C:\Windows\System32\gpsvc.dll [777728]

O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - Extension IKE.) -- C:\Windows\System32\ikeext.dll [859648]

O83 - Search Svchost Services: AudioSrv (AudioSrv) . (.Microsoft Corporation - Service Audio Windows.) -- C:\Windows\System32\Audiosrv.dll [679424]

O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gestionnaire de numérotation automatique d’accès distant.) -- C:\Windows\System32\rasauto.dll [99328]

O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Gestionnaire de connexions d’accès distant.) -- C:\Windows\System32\rasmans.dll [344064]

O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gestionnaire d’interface dynamique.) -- C:\Windows\System32\mprdim.dll [97792]

O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Service de notification d’événements système (SENS).) -- C:\Windows\System32\sens.dll [64512]

O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de l’application d’assistance à Microsoft NAT.) -- C:\Windows\System32\ipnathlp.dll [359424]

O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de téléphonie Microsoft® Windows.) -- C:\Windows\System32\tapisrv.dll [316928]

O83 - Search Svchost Services: TermService (TermService) . (.Microsoft Corporation - Gestionnaire des connexions distantes du serveur hôte de session Burea.) -- C:\Windows\System32\termsrv.dll [680960]

O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Agent de mise à jour automatique Windows Update.) -- C:\Windows\System32\wuaueng.dll [2428952]

O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arrière-plan.) -- C:\Windows\System32\qmgr.dll [849920]

O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\Windows\System32\shsvcs.dll [370688]

O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Service offrant une connectivité IPv6 sur un réseau IPv4..) -- C:\Windows\System32\iphlpsvc.dll [569344]

O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - DLL de service d’ouverture de session secondaire.) -- C:\Windows\system32\seclogon.dll [30720]

O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Service Informations d’application.) -- C:\Windows\System32\appinfo.dll [70144]

O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Service de découverte iSCSI.) -- C:\Windows\System32\iscsiexe.dll [156672]

O83 - Search Svchost Services: MMCSS (MMCSS) . (.Microsoft Corporation - Service Planificateur de classes multimédias.) -- C:\Windows\System32\mmcss.dll [67584]

O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\System32\wbem\WMIsvc.dll [242688]

O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Service Configuration des services Bureau à distance.) -- C:\Windows\System32\sessenv.dll [121856]

O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - DLL du service Explorateur d’ordinateurs.) -- C:\Windows\System32\browser.dll [136704]

O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Service EAPHost Microsoft.) -- C:\Windows\System32\eapsvc.dll [111104]

O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Service du Planificateur de tâches.) -- C:\Windows\System32\schedsvc.dll [1110016]

O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Service Gestion des clés.) -- C:\Windows\System32\kmsvc.dll [90624]

O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Rapports et solutions aux problèmes.) -- C:\Windows\System32\wercplsupport.dll [84480]

O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\System32\profsvc.dll [209920]

O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - DLL du service des thèmes Windows Shell.) -- C:\Windows\System32\themeservice.dll [44544]

O83 - Search Svchost Services: BDESVC (BDESVC) . (.Microsoft Corporation - Service BDE.) -- C:\Windows\System32\bdesvc.dll [100864]

~ Services: 32 Scanned in 00mn 00s

---\\ Recherche particulière à la racine du système (SPRF) (O84)

[MD5.6ACBD475647D7A160657CB3E460F0F35] [sPRF][27/01/2010] (...) -- C:\ProgramData\FullRemove.exe [131472]

[MD5.2EE8AD066047F5EDA1042836D2D72746] [sPRF][25/05/2014] (...) -- C:\Users\peg\AppData\Roaming\DOK52P4Q3J.dat [36]

[MD5.1EEFF34482DDD6E530C8A90246F82954] [sPRF][20/11/2013] (...) -- C:\Users\peg\AppData\Roaming\wklnhst.dat [368]

[MD5.B0F3A9C0F4C2C66127223BA3644B54F6] [sPRF][25/05/2014] (.Oracle Corporation - Java Platform SE binary.) -- C:\Users\peg\Desktop\JAVA-7u51-64bits-ASCENTIA.exe [30796712]

[MD5.D92C1F2935E04582D276102468235661] [sPRF][23/09/2011] (.EA Digital Illusions CE AB - EA Battlefield Heroes Updater.) -- C:\Windows\Downloaded Program Files\BFHUpdater.dll [223168]

[MD5.194E87A6702FD37DC6C696A768ACDC99] [sPRF][23/09/2011] (.EA Digital Illusions CE AB - EA Battlefield Heroes Updater.) -- C:\Windows\Downloaded Program Files\BFHUpdater.exe [1341376]

[MD5.3D847CA838ACB82558D713AB7241AB47] [sPRF][23/09/2011] (.EA Digital Illusions CE AB - Battlefield Play4Free Updater.) -- C:\Windows\Downloaded Program Files\BP4FUpdater.dll [260040]

[MD5.4E31FF8DECFC7D595E120F0BD36006C6] [sPRF][23/09/2011] (.EA Digital Illusions CE AB - Battlefield Play4Free Updater.) -- C:\Windows\Downloaded Program Files\BP4FUpdater.exe [1005512]

~ Files: 8 Scanned in 00mn 00s

---\\ Enumère les codes produits des logiciels (PUC) (O90)

O90 - PUC: "7FD91B0E7C1B7394284CE0B4E1439656" . (.eBay Worldwide.) -- c:\Windows\Installer\{E0B19DF7-B1C7-4937-82C4-0E4B1E346965}\_6FEFF9B68218417F98F549.exe =>Toolbar.eBay

~ Update Products: 1 Scanned in 00mn 00s

---\\ Recherche des packages WindowsInstaller (WIS) (O93) (NTFS)

[MD5.B67811645C5A3B8E4E4B1A1DB1EE271C] [WIS][20/09/2012] (.Boxore OU. - Software Update Helper.) -- C:\Windows\Installer\145706c.msi [45056] =>Adware.Boxore

~ WIS: 1 Scanned in 00mn 03s

---\\ Recherche de clés de registre Tracing (O100)

HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\moovida-setup[1]_RASAPI32 =>Adware.SPointer

HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\moovida-setup[1]_RASMANCS =>Adware.SPointer

HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\moovida_air_RASAPI32 =>Adware.SPointer

HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\moovida_air_RASMANCS =>Adware.SPointer

HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\SweetImSetup[1]_RASAPI32 =>PUP.SweetIM

HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\SweetImSetup[1]_RASMANCS =>PUP.SweetIM

HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\Widestream6-setup[1]_RASAPI32 =>Adware.SPointer

HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\Widestream6-setup[1]_RASMANCS =>Adware.SPointer

HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\YontooSetup-S-17C8_RASAPI32 =>Adware.Yontoo

HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\YontooSetup-S-17C8_RASMANCS =>Adware.Yontoo

~ BTK: 338 Scanned in 00mn 00s

---\\ Etat général des services non Microsoft (EGS) (SR=Running, SS=Stopped)

SS - | Auto 16/02/2011 135664 | (gupdate) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

SS - | Demand 16/02/2011 135664 | (gupdatem) . (.Google Inc..) - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

SS - | Demand 27/08/2012 194032 | (gusvc) . (.Google.) - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe

SS - | Auto 04/05/2014 2152736 | (LiveUpdateSvc) . (.IObit.) - C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe

SS - | Demand 01/02/2010 305520 | (MWLService) . (.Egis Technology Inc..) - C:\Program Files (x86)\EgisTec MyWinLocker\x86\MWLService.exe

SS - | Demand 06/11/2009 50432 | (NTIBackupSvc) . (.NewTech InfoSystems, Inc..) - C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe

SS - | Auto 29/01/2010 243232 | (Updater Service) . (.Acer Group.) - C:\Program Files\Acer\Acer Updater\UpdaterService.exe

SS - | Auto 10/07/1658 0 | (WMPNetworkSvc) . (...) - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe =>.Microsoft Corporation

SS - | Demand 14/07/2009 27136 | C:\Windows\System32\wuaueng.dll (wuauserv) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe

SR - | Auto 14/01/2014 881952 | (AdvancedSystemCareService7) . (.IObit.) - C:\Program Files (x86)\IObit\Advanced SystemCare 7\ASCService.exe

SR - | Auto 16/07/2014 430160 | (AntiVirSchedulerService) . (.Avira Operations GmbH & Co. KG.) - C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe

SR - | Auto 16/07/2014 430160 | (AntiVirService) . (.Avira Operations GmbH & Co. KG.) - C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe

SR - | Auto 30/06/2009 1807608 | (ATService) . (.AuthenTec, Inc..) - C:\Program Files (x86)\Fingerprint Sensor\AtService.exe

SR - | Auto 12/08/2009 24576 | (ETService) . (...) - C:\Program Files\Acer\Empowering Technology\Service\ETService.exe

SR - | Auto 28/08/2009 1150496 | (Greg_Service) . (.Acer Incorporated.) - C:\Program Files (x86)\Acer\Registration\GregHSRW.exe

SR - | Auto 14/07/2009 27136 | C:\Windows\SysWOW64\XAudio64.dll (HsfXAudioService) . (.Conexant Systems, Inc..) - C:\Windows\System32\svchost.exe

SR - | Auto 05/08/2009 3449856 | (IGBASVC) . (.Egis Technology Inc..) - C:\Program Files (x86)\Acer Bio Protection\BASVC.exe

SR - | Auto 06/11/2009 144640 | (NTISchedulerSvc) . (.NewTech Infosystems, Inc..) - C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe

SR - | Auto 16/04/2010 151144 | (nvsvc) . (.NVIDIA Corporation.) - C:\Windows\system32\nvvsvc.exe

SR - | Auto 10/07/1658 0 | (PnkBstrA) . (...) - C:\Windows\system32\PnkBstrA.exe

SR - | Auto 14/07/2009 27136 | C:\Program Files (x86)\Windows Defender\mpsvc.dll (WinDefend) . (.Microsoft Corporation.) - C:\Windows\System32\svchost.exe

~ Services: Scanned in 00mn 17s

---\\ Recherche d'infection sur le Master Boot Record (MBR)(O80)

Run by peg at 21/07/2014 13:09:01

~ OS 64 not supported by MBR tool

~ MBR: 0 Scanned in 00mn 00s

---\\ Recherche d'infection sur le Master Boot Record (MBRCheck)(O80)

Written by ad13, http://ad13.geekstog

Run by peg at 21/07/2014 13:09:03

********* Dump file Name *********

C:\PhysicalDisk0_MBR.bin

~ MBR: Scanned in 00mn 02s

---\\ Scan Additionnel (O88)

Database Version : 13026 - (19/07/2014)

Clés trouvées (Keys found) : 171

Valeurs trouvées (Values found) : 0

Dossiers trouvés (Folders found) : 2

Fichiers trouvés (Files found) : 2

[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{CA5D1CC3-2179-936C-3590-40FDC3A95429}] =>PUP.FineDealSoft^

[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{A1F06DED-F159-4D99-AF72-B97B7A134F1B}] =>Adware.Browse2Save^

[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{0D566ABB-889B-AF39-7B6A-23D4C5D54542}] =>PUP.FineDealSoft^

[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{E0B19DF7-B1C7-4937-82C4-0E4B1E346965}] =>Toolbar.eBay^

[HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ecdf796-c2dc-4d79-a620-cce0c0a66cc9}] =>PUP.Babylon

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\1C875DDE39636004CA8CDAEC335B4160] =>Adware.PredictAd

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\BA086F2D38A8E1A47912955A68B3AD24] =>Adware.PredictAd

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\64A6E60055D801F4BB8AC269354B72B8] =>Adware.Boxore

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0124B064795BB484FA494FC7CF204C0C] =>Adware.Boxore^

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\01F8E7504D2D2644AB1185234D2AD5AC] =>Adware.Boxore^

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\04CDEDFDD6EF25443B78A49D1FE5B4F2] =>Adware.Boxore^

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\058911EBC07BAAE42B102E3F4B0D070D] =>Adware.Boxore^

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\05CE306CC244D284D8D8090E404CD7D3] =>Adware.Boxore^

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\089527E77AD22E345B0066D226E44F46] =>Adware.Boxore^

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0BD0B15D6F0C2BF428B339B2D2D732C9] =>Adware.Boxore^

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0C1AAA506D92B2D44BD6FEF6CDFB71E1] =>Adware.Boxore^

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0CAEC9AFF1716FF4DBACEED82F88C702] =>Adware.Boxore^

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0DD4444CBC682774C8E573CC73C5BC46] =>Adware.Boxore^

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0F68250201451D64EA71E91BA19832DC] =>Adware.Boxore^

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\126FFC99A0F214F41AE2D6C7A0FC09BF] =>Adware.Boxore^

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\12F72EF2521177A4BB467FF35A881382] =>Adware.Boxore^

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\14873772FE3926F4195C9280D52D3486] =>Adware.Boxore^

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\14CF11D787D40BF458A3B5CB123733CE] =>Adware.Boxore^

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\163A5460E4FB18343B4C0B781B27E813] =>Adware.Boxore^

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\1705977FCB2F22F4D8A9AB847C3FB9CE] =>Adware.Boxore^

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\19F133B6A0BA9B14493CE47703DF4CF3] =>Adware.Boxore^

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\1C735C7A54F53574CA5AEA93D0D1F01E] =>Adware.Boxore^

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\1CE2260B068265A488410CA171D93778] =>Adware.Boxore^

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\1DF1DD2609A2135479C19D72E41B64AA] =>Adware.Boxore^

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\1F72D9058D0863E4F8EB9FE6E980C385] =>Adware.Boxore^

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2217D47FAFB0AC547820199B3A026CFB] =>Adware.Boxore^

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\22C5FD2815F5C7C4DB5F34F504BF9D96] =>Adware.Boxore^

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\26CF57FC035624845B9005289DFA1448] =>Adware.Boxore^

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2719056FB4CDD294887140382819FFF7] =>Adware.Boxore^

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2956CB28F45AAF746998774B3C9FF012] =>Adware.Boxore^

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2AD5E582EBA9ED54989A134D9250922B] =>Adware.Boxore^

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2BB672F8D2CA64146B6688371E75C986] =>Adware.Boxore^

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2EA450B923F9C4D4BBEB203648FBFFDC] =>Adware.Boxore^

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2ECA942EFDBD22B4EBB7FE3AB9EDDBDD] =>Adware.Boxore^

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2F055C41FDCA50A43BE42A96D243AD47] =>Adware.Boxore^

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2F4EE319A22490145BC4AEBC53B616CA] =>Adware.Boxore^

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\31E430E345D85D54CA33BC88AEFDB9D8] =>Adware.Boxore^

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\358096DA35E67B5479C2E880DF0C10C1] =>Adware.Boxore^

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\37345F678B330594E9E4AC16908F78CF] =>Adware.Boxore^

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\38641BF101151094F86DD62B534BDEC4] =>Adware.Boxore^

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\38762340C83E6764B87807B67154F5A4] =>Adware.Boxore^

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\3984BAF27BDA0DC4D8AED19FCB64BD7D] =>Adware.Boxore^

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\3D82200490995CE42AB754DCD90AC44D] =>Adware.Boxore^

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\3E9F0E4315A35D741873885200C6A454] =>Adware.Boxore^

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\3F261C3E5AD56E54598E24B106813C7E] =>Adware.Boxore^

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\40D753328E77EE842A82631EED62CEC5] =>Adware.Boxore^

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\40FDEFB25883CF140B9B5F89CB7E2871] =>Adware.Boxore^

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\412179CD2126BB34CAE51691856A3D68] =>Adware.Boxore^

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\43218F63264345445A73071C174FEEE8] =>Adware.Boxore^

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\439E8A02B7736CA488EECE28D7EE961A] =>Adware.Boxore^

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\456D8CED0106E1649AE5CBD8082AC705] =>Adware.Boxore^

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\459277E8A0EE8894F9D7F807DF90506A] =>Adware.Boxore^

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\463372A470C576443AE8802B1AC61D89] =>Adware.Boxore^

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\48F13E425ECD5F243A8A82AA2B65336D] =>Adware.Boxore^

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\4B6F3AD0EE690D2478C7D0528AADF8C4] =>Adware.Boxore^

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\4BB9D431259E08A499469636383B9935] =>Adware.Boxore^

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\4D3B0714BC82B2340AB18C031262573D] =>Adware.Boxore^

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\4D5809867D6C1D14180511D3AAD03F79] =>Adware.Boxore^

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\4DB13DED48DC4494C90DE800D31B086C] =>Adware.Boxore^

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\52C608FC2A61CCE479768A9719CABF7B] =>Adware.Boxore^

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\56861F0CE995D0E45835F5D31E105D54] =>Adware.Boxore^

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\58E44D082625757499995F9516313A9C] =>Adware.Boxore^

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\5A52F724764B00747A637F14FBBBB830] =>Adware.Boxore^

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\5B19839CB98BB914BA43E863BBE11B4E] =>Adware.Boxore^

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\613DCE6E373581A40B6C88D4F7C09096] =>Adware.Boxore^

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6292C097F9759424BAFA3E32CD3DD562] =>Adware.Boxore^

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\62C171206461ED34885A4AE095F4A7AC] =>Adware.Boxore^

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\63E9F48D88AA940498502E29E3747471] =>Adware.Boxore^

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\64747EAAAE2BA5141AEBCF4F6651A144] =>Adware.Boxore^

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6494B0B34076D6248B6E5F42E3252AD0] =>Adware.Boxore^

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6495111F730311440BBC3AAAF3B8C7AC] =>Adware.Boxore^

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\65273BD75ADFA9146A0950469941299A] =>Adware.Boxore^

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6543EA2E8E729CF4789BCD7361D58C03] =>Adware.Boxore^

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\658DABBCADB609E429A6769C46FAADD0] =>Adware.Boxore^

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\67A614CC45D7C5845BE2184211CC8F9C] =>Adware.Boxore^

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6B6581D2CF6BB444D8ACBF79E3AF425B] =>Adware.Boxore^

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6C0DB201BFD71284CB8CA279446863E8] =>Adware.Boxore^

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6EA4E994723ECC940AE01A2507673199] =>Adware.Boxore^

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6F2331E07AF9B414DB15E2E7BAB7F880] =>Adware.Boxore^

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6F3E6739E6CECC64D9B7E5D24CF60746] =>Adware.Boxore^

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\73268B3F6C2206C4BAF14E3C5B4BC494] =>Adware.Boxore^

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\73D229597C7281E409FDEB3079E30E5A] =>Adware.Boxore^

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\75A49DF39158638428A0F7797D4CD1E6] =>Adware.Boxore^

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\75D223AE12684124794DD7D3FB067886] =>Adware.Boxore^

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\76937F723CDCAB547A9791D60867A5B5] =>Adware.Boxore^

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\78AD011E92C0B7D4A86E41451EC7A0F0] =>Adware.Boxore^

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\79080E81959ECB54E9E7B3C67AE5781A] =>Adware.Boxore^

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\7A8B37070412F4D47895AA40EFC2E39A] =>Adware.Boxore^

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\7F84DAA817EC0AB409DFE802184D5B09] =>Adware.Boxore^

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\82F14F44AA63A5945A2E960EF018794E] =>Adware.Boxore^

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\831071FAC16E2DA4682F55E0B0DE6979] =>Adware.Boxore^

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\83D0F8F1641145A42B26F71D534E9A34] =>Adware.Boxore^

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\84072C174C7F25148BFB33ADE8C704E1] =>Adware.Boxore^

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\872C7B3D2887D4E4EBF645D7AB9374D1] =>Adware.Boxore^

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\8C00987A23C36B145AB60EE274936EB3] =>Adware.Boxore^

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\8D736B12592E2E94094267BC5B7AA7EB] =>Adware.Boxore^

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\8F3E0221A8351144BB04AEF5266143CB] =>Adware.Boxore^

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\90E77522D1656DA4DABC673942243B44] =>Adware.Boxore^

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\920219BD6C542544893D7ECFCB5E2B6B] =>Adware.Boxore^

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\939840D09446FFF459FA6CB4F03C38BE] =>Adware.Boxore^

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\9459BDD3A7C686345A9B7A1AD1CC6BE4] =>Adware.Boxore^

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\95AC1A94BAFFE3D41B23B2097BA8B190] =>Adware.Boxore^

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\983EBB458AA802846BBC74D26C3209C8] =>Adware.Boxore^

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\98A0180804723E24AAA941C0B046363D] =>Adware.Boxore^

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\990A25796B2949842BACA56514B7316A] =>Adware.Boxore^

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\999D63C685BF046489CA3126029FE837] =>Adware.Boxore^

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\9AC4C1465926D52478BEC6D3DB946DD7] =>Adware.Boxore^

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\9CF7625ADC5FCFE43AD003DCC16B49CB] =>Adware.Boxore^

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A2D54AC8D24E8F94ABBB993A69EF13EC] =>Adware.Boxore^

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A357C02D064283D41978AFEEE1A48E0F] =>Adware.Boxore^

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A4022CA9531268145AD6F8FD7F4F01DC] =>Adware.Boxore^

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A5CDCC279604D6746A7DA9ED701BF41F] =>Adware.Boxore^

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A6F4FE9AC6F165A4EAA8F90CE891C0DA] =>Adware.Boxore^

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A960AC53CA238044A820A3B63D4536CA] =>Adware.Boxore^

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\AA3077BB9E4617440AF467D91146A8C4] =>Adware.Boxore^

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\AAC05EAA51DC78A41A1DCE3B31038584] =>Adware.Boxore^

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\AD7957C966A13904EA466152B29EA9AF] =>Adware.Boxore^

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B13C910C1D6376A4BB2BDB9585253923] =>Adware.Boxore^

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B1B5689BAD89AFD448923B5051E5BB50] =>Adware.Boxore^

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B2CE0F97DFABDE446811F33E7273BFE2] =>Adware.Boxore^

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B445461D74829AF4C8EF6C00B2861EF0] =>Adware.Boxore^

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B4D011D14FD2DB74A9090EA633C0B98E] =>Adware.Boxore^

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B551BEBCA0334AA40978C2137FD21AB2] =>Adware.Boxore^

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B877893A942DC524580C7B45547FCBC8] =>Adware.Boxore^

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BA71D41F6CC0B6247B05D473850A8AEA] =>Adware.Boxore^

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BC651C0803618C44DA6F1DDD51AF35BF] =>Adware.Boxore^

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BDE5B9F2A520B674BBB1BEAE5F5D51B8] =>Adware.Boxore^

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BEE85C3D8F4816D4A9E5F4EAA4D80A2A] =>Adware.Boxore^

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BFD48F71CCCEC97489147D4E852D3F6F] =>Adware.Boxore^

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\C05694CDCD2DD724F90F13A20E67EC7C] =>Adware.Boxore^

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\C42065D3060DD4648A38882BEA92941E] =>Adware.Boxore^

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\C5F606FB1152E344981B09071C472211] =>Adware.Boxore^

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\C77B53875F388AA4AA076F6F9D099011] =>Adware.Boxore^

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\C85EA06E73FF0A240B4C287EE0D9521D] =>Adware.Boxore^

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CA0054A5AB3EFFE4CB5660E44A1E7DCC] =>Adware.Boxore^

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CA30DE5A0DE293D4AA3BF5E13322823A] =>Adware.Boxore^

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CA9ADF25A98C8074FA4CBBA3ED29FEFA] =>Adware.Boxore^

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CCE886225BDEB6C43868B0AEDB036B02] =>Adware.Boxore^

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CDD11BF4B1CAA584695EFBC611438213] =>Adware.Boxore^

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CE1CCF5CABA1395409D54586592B319E] =>Adware.Boxore^

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CE7392F9B9A81FA4EA952625BD5534FE] =>Adware.Boxore^

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D12B7976E5CA7C34D932C1A8A1BF61C8] =>Adware.Boxore^

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D91D500D43BD91A44B02BDBE41E0523F] =>Adware.Boxore^

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DA2710A9158C6584C9677EB954F3AC97] =>Adware.Boxore^

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DCF07B57C9DC38E419CF122EA180585E] =>Adware.Boxore^

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DD2E1A561C7F1294BB3996EE77F6BBEE] =>Adware.Boxore^

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DF14E9E130504B745A2AC47EF6145D24] =>Adware.Boxore^

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DF7A4CDE9ED9CD7479FF74F35FA4149E] =>Adware.Boxore^

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DFE39849AF921D045B613CD5852C76A6] =>Adware.Boxore^

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E03EC5B80A22A7D4C92AB528A3D323E8] =>Adware.Boxore^

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E1B9E95AA2730744AB926911484F8AD5] =>Adware.Boxore^

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E3436415FB2833843B9EE970079A87C0] =>Adware.Boxore^

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E3BBB86ACE9686A4281227D5F7EE95AE] =>Adware.Boxore^

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E6B40E8EBBC3CD445BD2FC7D8FDCCFEC] =>Adware.Boxore^

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E77C3F952C1F0354FAFADB6B080ACCF7] =>Adware.Boxore^

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E84382A588F214C4C89C3DB758EA6AD6] =>Adware.Boxore^

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E89B10C102BBEF941A920EE2269747C0] =>Adware.Boxore^

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E9D73D5153C19FD48B6E10CB7E8572CE] =>Adware.Boxore^

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\EBAFF392ACA75ED4CA30BF821C1AE267] =>Adware.Boxore^

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\ECFC746582988774684DB5D8D95F674D] =>Adware.Boxore^

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\EECC799BFA63E6146A81EAAA53540EDE] =>Adware.Boxore^

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F1547261AA1C98C48B0ECDBC767C76CE] =>Adware.Boxore^

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F1BDB464DE2D33547BB31C1B35D9C337] =>Adware.Boxore^

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F29CFDBF9B20AB8448A1BD73A3FE863F] =>Adware.Boxore^

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F5F8D8368E8CAE84188DE44DAF8C10F9] =>Adware.Boxore^

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\FAB510A06C6F4B24AAD055CE6EEA27CD] =>Adware.Boxore^

C:\ProgramData\FineDealSofT =>PUP.FineDealSoft^

C:\ProgramData\InstallMate =>PUP.Tarma^

[HKLM\Software\Wow6432Node\Pirrit Solutions] =>PUP.PirritSuggestor^

C:\Windows\Installer\145706c.msi =>Adware.Boxore^

~ Additionnel Scan: 266349 Items scanned in 00mn 34s

---\\ Informations complémentaires sur les modules

~ http://nicolascoolman.fr/g0-page-de-demarrage-google-chrome/ =>.Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2)

~ http://nicolascoolman.fr/g2-google-chrome-extensions/ =>.Google Chrome, Démarrage,Recherche,Extensions (G0,G1,G2)

~ http://nicolascoolman.fr/r5-internet-explorer-proxy-management-iepm/ =>.Internet Explorer, Proxy Management (R5)

~ http://nicolascoolman.fr/o2-browser-helper-objects-de-navigateur/ =>.Browser Helper Objects de navigateur (O2)

~ http://nicolascoolman.fr/o3-internet-explorer-toolbars/ =>.Internet Explorer Toolbars (O3)

~ http://nicolascoolman.fr/o4-applications-demarrees-par-le-registre/ =>.Applications lancées au démarrage du système (O4)

~ http://nicolascoolman.fr/o51-mountpoints2-shell-key-mpsk/ =>.Clé de registre Shell MountPoints2 (MPKS) (O51)

~ AMI: 7 Scanned in 00mn 00s

---\\ Récapitulatif des détections trouvées sur votre station

http://nicolascoolman.fr/hijacker-trovicom =>Hijacker.TroviCom

http://nicolascoolman.fr/hijacker-proxy =>Hijacker.Proxy

http://nicolascoolman.fr/pup-linkidoo =>PUP.LinkiDoo

http://nicolascoolman.fr/adware-browse2save =>Adware.Browse2Save

http://nicolascoolman.fr/pup-pirritsuggestor =>PUP.PirritSuggestor

http://nicolascoolman.fr/pup-tarma =>PUP.Tarma

http://nicolascoolman.fr/adware-mywebsearch =>Adware.MyWebSearch

http://nicolascoolman.fr/adware-boxore =>Adware.Boxore

http://nicolascoolman.fr/adware-spointer =>Adware.SPointer

http://nicolascoolman.fr/pup-sweetim =>PUP.SweetIM

http://nicolascoolman.fr/adware-yontoo =>Adware.Yontoo

http://nicolascoolman.fr/pup-babylon =>PUP.Babylon

http://nicolascoolman.fr/adware-predictad =>Adware.PredictAd

c'est a dire rester sur le sujet initial?

 

on demande deposter les rapports c'est ce que je fais.

[pear]

 

c'est a dire rester sur le sujet initial?

 

on demande deposter les rapports c'est ce que je fais.

Oui, mais vous le faites mal

 

Les rapports sont une réponse et donc doivent être déposés dans "Répondre à ce sujet"

Le sujet Initial est le premier posté.

 

 

Mises à jour Java et Flash:

 

Télécharger FlashPlayerUpdate.exe sur le bureau.

Désactiver l'anti virus provisoirement.

Sous Windows Vista / 7 / 8 (clique-droit > exécuter en tant qu'administrateur

 

 

JavaUpdate de Pierre13

Désinstallation des anciennes versions ou corrompues si présentes.

Installation de la dernière version. (si l'utilisateur accepte)

Proposition de désactivation de la mise à jour auto(parce qu'il y a des indésirables qui seraient alors installés)

 

Java peut mettre en péril la sécurité de votre ordinateur.

Il vous est fortement conseillé de le désactiver de vos navigateurs WEB, si vous en avez pas l'utilité.

Lorsqu'une application Java se présentera, un message d'avertissement vous demandera d'installer Java ou d'activer le plug-in.

Vous le désactiverez dès que vous aurez fini d'utiliser l'application écrite en Java.

 

 

 

Vous devez trouver les 2 icônes Zhpdiag, Zhpfix.

sur le bureau ou sinon dans le dossier où vous avez installé Zhpdiag (Program files ->Zhpdiag ->Zhpfix)

Cliquer sur l'icône Zhpfix

Sous Vista et + clic-droit, "Exécuter En tant qu'Administrateur

Copiez/Collez les lignes vertes dans le cadre ci dessous:

pour cela;

Clic gauche maintenu enfoncé, Balayer l'ensemble du texte à copier avec la souris pour le mettre en surbrillance ,de gauche à droite et de haut en bas

Ctrl+c mettre le tout en mémoire

Cliquer Importer

pour inscrire le texte dans la fenêtre vide qui s'ouvre

Script ZHPFix

 

R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page =

R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = http=

O2 - BHO: FineDealSofT [64Bits] - {CA5D1CC3-2179-936C-3590-40FDC3A95429} . (...) -- C:\ProgramData\FineDealSofT\5GsbHw.dll

[MD5.00000000000000000000000000000000] [APT] [AdobeFlashPlayerUpdate] (...) -- C:\Windows\SysWOW64\FlashPlayerUpdateService.exe (.not file.) [0]

[MD5.00000000000000000000000000000000] [APT] [AdobeFlashPlayerUpdate 2] (...) -- C:\Windows\SysWOW64\FlashPlayerUpdateService.exe (.not file.) [0]

O41 - Driver: ({29b136c9-938d-4d3d-8df8-d649d9b74d02}w64) . (.StdLib - StdLib.) - C:\Windows\System32\drivers\{29b136c9-938d-4d3d-8df8-d649d9b74d02}w64.sys

O41 - Driver: ({a3f28269-ad17-41a8-b032-3e0313ef8979}w64) . (.StdLib - StdLib.) - C:\Windows\System32\drivers\{a3f28269-ad17-41a8-b032-3e0313ef8979}w64.sys

O42 - Logiciel: BrowseToSave - (...) [HKLM][64Bits] -- {A1F06DED-F159-4D99-AF72-B97B7A134F1B}

O42 - Logiciel: FineDealSofT - (.FineDealSoFt.) [HKLM][64Bits] -- {0D566ABB-889B-AF39-7B6A-23D4C5D54542}

[HKLM\Software\RST]

[HKLM\Software\Wow6432Node\Pirrit Solutions]

[HKLM\Software\Wow6432Node\RST]

O43 - CFD: 04/07/2014 - 21:22:15 - [] ----D C:\ProgramData\FineDealSofT

O43 - CFD: 29/05/2014 - 15:50:10 - [] ----D C:\ProgramData\InstallMate

O43 - CFD: 29/05/2014 - 15:48:17 - [] ----D C:\ProgramData\TopApp soft

O58 - SDL:24/04/2014 - 11:23:48 ---A- . (.StdLib - StdLib.) -- C:\Windows\System32\Drivers\{29b136c9-938d-4d3d-8df8-d649d9b74d02}w64.sys [61120]

O58 - SDL:11/06/2014 - 14:34:50 ---A- . (.StdLib - StdLib.) -- C:\Windows\System32\Drivers\{a3f28269-ad17-41a8-b032-3e0313ef8979}w64.sys [61120]

O64 - Services: CurCS - 24/04/2014 - C:\Windows\System32\drivers\{29b136c9-938d-4d3d-8df8-d649d9b74d02}w64.sys ({29b136c9-938d-4d3d-8df8-d649d9b74d02}w64) .(.StdLib - StdLib.) - LEGACY_{29B136C9-938D-4D3D-8DF8-D649D9B74D02}W64

O64 - Services: CurCS - 11/06/2014 - C:\Windows\System32\drivers\{a3f28269-ad17-41a8-b032-3e0313ef8979}w64.sys ({a3f28269-ad17-41a8-b032-3e0313ef8979}w64) .(.StdLib - StdLib.) - LEGACY_{A3F28269-AD17-41A8-B032-3E0313EF8979}W64

O69 - SBI: SearchScopes [HKCU] FCE8136CC0D847A08AD8345000FCDCCB - (Mysearchdial) -

O69 - SBI: SearchScopes [HKCU] {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} [DefaultScope] - (Mysearchdial) -

[MD5.B67811645C5A3B8E4E4B1A1DB1EE271C] [WIS][20/09/2012] (.Boxore OU. - Software Update Helper.) -- C:\Windows\Installer\145706c.msi [45056]

HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\moovida-setup[1]_RASAPI32

HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\moovida-setup[1]_RASMANCS

HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\moovida_air_RASAPI32

HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\moovida_air_RASMANCS

HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\SweetImSetup[1]_RASAPI32

HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\SweetImSetup[1]_RASMANCS

HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\Widestream6-setup[1]_RASAPI32

HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\Widestream6-setup[1]_RASMANCS

HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\YontooSetup-S-17C8_RASAPI32

HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\YontooSetup-S-17C8_RASMANCS

[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{CA5D1CC3-2179-936C-3590-40FDC3A95429}]

[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{A1F06DED-F159-4D99-AF72-B97B7A134F1B}]

[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{0D566ABB-889B-AF39-7B6A-23D4C5D54542}]

[HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ecdf796-c2dc-4d79-a620-cce0c0a66cc9}]

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\1C875DDE39636004CA8CDAEC335B4160]

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\BA086F2D38A8E1A47912955A68B3AD24]

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\64A6E60055D801F4BB8AC269354B72B8]

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0124B064795BB484FA494FC7CF204C0C]

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\01F8E7504D2D2644AB1185234D2AD5AC]

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\04CDEDFDD6EF25443B78A49D1FE5B4F2]

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\058911EBC07BAAE42B102E3F4B0D070D]

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\05CE306CC244D284D8D8090E404CD7D3]

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\089527E77AD22E345B0066D226E44F46]

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0BD0B15D6F0C2BF428B339B2D2D732C9]

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0C1AAA506D92B2D44BD6FEF6CDFB71E1]

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0CAEC9AFF1716FF4DBACEED82F88C702]

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0DD4444CBC682774C8E573CC73C5BC46]

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0F68250201451D64EA71E91BA19832DC]

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\126FFC99A0F214F41AE2D6C7A0FC09BF]

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\12F72EF2521177A4BB467FF35A881382]

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\14873772FE3926F4195C9280D52D3486]

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\14CF11D787D40BF458A3B5CB123733CE]

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\163A5460E4FB18343B4C0B781B27E813]

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\1705977FCB2F22F4D8A9AB847C3FB9CE]

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\19F133B6A0BA9B14493CE47703DF4CF3]

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\1C735C7A54F53574CA5AEA93D0D1F01E]

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\1CE2260B068265A488410CA171D93778]

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\1DF1DD2609A2135479C19D72E41B64AA]

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\1F72D9058D0863E4F8EB9FE6E980C385]

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2217D47FAFB0AC547820199B3A026CFB]

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\22C5FD2815F5C7C4DB5F34F504BF9D96]

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\26CF57FC035624845B9005289DFA1448]

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2719056FB4CDD294887140382819FFF7]

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2956CB28F45AAF746998774B3C9FF012]

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2AD5E582EBA9ED54989A134D9250922B]

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2BB672F8D2CA64146B6688371E75C986]

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2EA450B923F9C4D4BBEB203648FBFFDC]

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2ECA942EFDBD22B4EBB7FE3AB9EDDBDD]

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2F055C41FDCA50A43BE42A96D243AD47]

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2F4EE319A22490145BC4AEBC53B616CA]

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\31E430E345D85D54CA33BC88AEFDB9D8]

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\358096DA35E67B5479C2E880DF0C10C1]

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\37345F678B330594E9E4AC16908F78CF]

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\38641BF101151094F86DD62B534BDEC4]

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\38762340C83E6764B87807B67154F5A4]

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\3984BAF27BDA0DC4D8AED19FCB64BD7D]

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\3D82200490995CE42AB754DCD90AC44D]

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\3E9F0E4315A35D741873885200C6A454]

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\3F261C3E5AD56E54598E24B106813C7E]

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\40D753328E77EE842A82631EED62CEC5]

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\40FDEFB25883CF140B9B5F89CB7E2871]

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\412179CD2126BB34CAE51691856A3D68]

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\43218F63264345445A73071C174FEEE8]

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\439E8A02B7736CA488EECE28D7EE961A]

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\456D8CED0106E1649AE5CBD8082AC705]

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\459277E8A0EE8894F9D7F807DF90506A]

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\463372A470C576443AE8802B1AC61D89]

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\48F13E425ECD5F243A8A82AA2B65336D]

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\4B6F3AD0EE690D2478C7D0528AADF8C4]

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\4BB9D431259E08A499469636383B9935]

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\4D3B0714BC82B2340AB18C031262573D]

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\4D5809867D6C1D14180511D3AAD03F79]

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\4DB13DED48DC4494C90DE800D31B086C]

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\52C608FC2A61CCE479768A9719CABF7B]

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\56861F0CE995D0E45835F5D31E105D54]

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\58E44D082625757499995F9516313A9C]

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\5A52F724764B00747A637F14FBBBB830]

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\5B19839CB98BB914BA43E863BBE11B4E]

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\613DCE6E373581A40B6C88D4F7C09096]

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6292C097F9759424BAFA3E32CD3DD562]

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\62C171206461ED34885A4AE095F4A7AC]

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\63E9F48D88AA940498502E29E3747471]

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\64747EAAAE2BA5141AEBCF4F6651A144]

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6494B0B34076D6248B6E5F42E3252AD0]

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6495111F730311440BBC3AAAF3B8C7AC]

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\65273BD75ADFA9146A0950469941299A]

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6543EA2E8E729CF4789BCD7361D58C03]

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\658DABBCADB609E429A6769C46FAADD0]

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\67A614CC45D7C5845BE2184211CC8F9C]

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6B6581D2CF6BB444D8ACBF79E3AF425B]

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6C0DB201BFD71284CB8CA279446863E8]

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6EA4E994723ECC940AE01A2507673199]

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6F2331E07AF9B414DB15E2E7BAB7F880]

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6F3E6739E6CECC64D9B7E5D24CF60746]

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\73268B3F6C2206C4BAF14E3C5B4BC494]

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\73D229597C7281E409FDEB3079E30E5A]

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\75A49DF39158638428A0F7797D4CD1E6]

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\75D223AE12684124794DD7D3FB067886]

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\76937F723CDCAB547A9791D60867A5B5]

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\78AD011E92C0B7D4A86E41451EC7A0F0]

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\79080E81959ECB54E9E7B3C67AE5781A]

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\7A8B37070412F4D47895AA40EFC2E39A]

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\7F84DAA817EC0AB409DFE802184D5B09]

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\82F14F44AA63A5945A2E960EF018794E]

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\831071FAC16E2DA4682F55E0B0DE6979]

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\83D0F8F1641145A42B26F71D534E9A34]

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\84072C174C7F25148BFB33ADE8C704E1]

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\872C7B3D2887D4E4EBF645D7AB9374D1]

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\8C00987A23C36B145AB60EE274936EB3]

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\8D736B12592E2E94094267BC5B7AA7EB]

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\8F3E0221A8351144BB04AEF5266143CB]

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\90E77522D1656DA4DABC673942243B44]

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\920219BD6C542544893D7ECFCB5E2B6B]

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\939840D09446FFF459FA6CB4F03C38BE]

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\9459BDD3A7C686345A9B7A1AD1CC6BE4]

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\95AC1A94BAFFE3D41B23B2097BA8B190]

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\983EBB458AA802846BBC74D26C3209C8]

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\98A0180804723E24AAA941C0B046363D]

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\990A25796B2949842BACA56514B7316A]

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\999D63C685BF046489CA3126029FE837]

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\9AC4C1465926D52478BEC6D3DB946DD7]

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\9CF7625ADC5FCFE43AD003DCC16B49CB]

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A2D54AC8D24E8F94ABBB993A69EF13EC]

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A357C02D064283D41978AFEEE1A48E0F]

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A4022CA9531268145AD6F8FD7F4F01DC]

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A5CDCC279604D6746A7DA9ED701BF41F]

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A6F4FE9AC6F165A4EAA8F90CE891C0DA]

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A960AC53CA238044A820A3B63D4536CA]

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\AA3077BB9E4617440AF467D91146A8C4]

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\AAC05EAA51DC78A41A1DCE3B31038584]

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\AD7957C966A13904EA466152B29EA9AF]

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B13C910C1D6376A4BB2BDB9585253923]

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B1B5689BAD89AFD448923B5051E5BB50]

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B2CE0F97DFABDE446811F33E7273BFE2]

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B445461D74829AF4C8EF6C00B2861EF0]

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B4D011D14FD2DB74A9090EA633C0B98E]

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B551BEBCA0334AA40978C2137FD21AB2]

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B877893A942DC524580C7B45547FCBC8]

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BA71D41F6CC0B6247B05D473850A8AEA]

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BC651C0803618C44DA6F1DDD51AF35BF]

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BDE5B9F2A520B674BBB1BEAE5F5D51B8]

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BEE85C3D8F4816D4A9E5F4EAA4D80A2A]

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BFD48F71CCCEC97489147D4E852D3F6F]

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\C05694CDCD2DD724F90F13A20E67EC7C]

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\C42065D3060DD4648A38882BEA92941E]

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\C5F606FB1152E344981B09071C472211]

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\C77B53875F388AA4AA076F6F9D099011]

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\C85EA06E73FF0A240B4C287EE0D9521D]

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CA0054A5AB3EFFE4CB5660E44A1E7DCC]

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CA30DE5A0DE293D4AA3BF5E13322823A]

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CA9ADF25A98C8074FA4CBBA3ED29FEFA]

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CCE886225BDEB6C43868B0AEDB036B02]

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CDD11BF4B1CAA584695EFBC611438213]

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CE1CCF5CABA1395409D54586592B319E]

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CE7392F9B9A81FA4EA952625BD5534FE]

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D12B7976E5CA7C34D932C1A8A1BF61C8]

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D91D500D43BD91A44B02BDBE41E0523F]

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DA2710A9158C6584C9677EB954F3AC97]

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DCF07B57C9DC38E419CF122EA180585E]

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DD2E1A561C7F1294BB3996EE77F6BBEE]

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DF14E9E130504B745A2AC47EF6145D24]

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DF7A4CDE9ED9CD7479FF74F35FA4149E]

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DFE39849AF921D045B613CD5852C76A6]

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E03EC5B80A22A7D4C92AB528A3D323E8]

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E1B9E95AA2730744AB926911484F8AD5]

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E3436415FB2833843B9EE970079A87C0]

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E3BBB86ACE9686A4281227D5F7EE95AE]

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E6B40E8EBBC3CD445BD2FC7D8FDCCFEC]

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E77C3F952C1F0354FAFADB6B080ACCF7]

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E84382A588F214C4C89C3DB758EA6AD6]

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E89B10C102BBEF941A920EE2269747C0]

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E9D73D5153C19FD48B6E10CB7E8572CE]

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\EBAFF392ACA75ED4CA30BF821C1AE267]

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\ECFC746582988774684DB5D8D95F674D]

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\EECC799BFA63E6146A81EAAA53540EDE]

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F1547261AA1C98C48B0ECDBC767C76CE]

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F1BDB464DE2D33547BB31C1B35D9C337]

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F29CFDBF9B20AB8448A1BD73A3FE863F]

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F5F8D8368E8CAE84188DE44DAF8C10F9]

[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\FAB510A06C6F4B24AAD055CE6EEA27CD]

C:\ProgramData\FineDealSofT

C:\ProgramData\InstallMate

[HKLM\Software\Wow6432Node\Pirrit Solutions]

C:\Windows\Installer\145706c.msi

O2 - BHO: ExplorerWnd Helper [64Bits] - {10921475-03CE-4E04-90CE-E2E7EF20C814} Clé orpheline

[MD5.00000000000000000000000000000000] [APT] [4497] (...) -- C:\Users\peg\AppData\Local\Temp\launchie.vbs \\B (.not file.) [0]

O43 - CFD: 13/06/2014 - 17:08:18 - [0] ----D C:\ProgramData\{3C5CBD7B-3D1D-411E-96C2-513FFCA84D2D}

O44 - LFC:[MD5.3FAD4FA0959631CF805D7708C09168CB] - 20/07/2014 - 01:02:58 ---A- . (...) -- C:\Windows\IE11_main.log [7690]

O51 - MPSK:{492dd190-166e-11e0-b35a-c80aa965a90d}\AutoRun\command. (...) -- E:\iStudio.exe (.not file.)

O61 - LFC: 17/07/2014 - 13:07:19 ---A- . (...) -- C:\Users\peg\AppData\Local\Temp\Quarantine.exe [384143]

O61 - LFC: 21/07/2014 - 13:07:19 ---A- . (...) -- C:\Users\peg\AppData\Local\Temp\{C2695E83-CF1D-43D1-84FE-B3BEC561012A}\iSetup.dll [199168]

O61 - LFC: 21/07/2014 - 13:07:19 ---A- . (.Egis Technology Inc..) -- C:\Users\peg\AppData\Local\Temp\{C2695E83-CF1D-43D1-84FE-B3BEC561012A}\Shredder64.exe [2137202]

O2 - BHO: Google Toolbar Helper [64Bits] - {AA58ED58-01DD-4d91-8333-CF10577473F7} . (.Google Inc. - Google Toolbar.) -- C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll

O42 - Logiciel: Google Toolbar for Internet Explorer - (.Google Inc..) [HKLM][64Bits] -- {18455581-E099-4BA8-BC6B-F34B2F06600C}

O42 - Logiciel: Google Toolbar for Internet Explorer - (.Google Inc..) [HKLM][64Bits] -- {2318C2B1-4965-11d4-9B18-009027A5CD4F}

O42 - Logiciel: eBay Worldwide - (.OEM.) [HKLM][64Bits] -- {E0B19DF7-B1C7-4937-82C4-0E4B1E346965}

O90 - PUC: "7FD91B0E7C1B7394284CE0B4E1439656" . (.eBay Worldwide.) -- c:\Windows\Installer\{E0B19DF7-B1C7-4937-82C4-0E4B1E346965}\_6FEFF9B68218417F98F549.exe

[HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{E0B19DF7-B1C7-4937-82C4-0E4B1E346965}]

 

 

EmptyPrefetch

EmptyTemp

EmptyFlash

EmptyClsid

FirewallRaz

HostFix

Ifeofix

Proxyfix

ShortcutFix

Sysrestore

 

 

Cliquer sur "Go" en bas, à gauche

 

Redémarrer pour achever le nettoyage.

 

Copier-coller,dans la réponse, le contenu du rapport ZHPFixReport.txt qui s'affiche .

Si besoin; il est enregistré sous C:\ZHP\ZHPFixReport.txt

 

 

 

Télécharger SFTGC.exe

sur le Bureau, impérativement sous peine de risquer un plantage

 

Il peut être nécessaire de fermer ou désactiver tous les programmes Antivirus, Antispyware, Pare-feu actifs car ils pourraient perturber le fonctionnement de cet outil

Certains outils sont parfois detectés par votre Anti-virus ou votre Anti-Malware comme étant un "RiskTool", un virus ou un "Trojan", or ce n'est pas le cas.

Comment désactiver les protections résidentes

Bien évidemment, vous les rétablirez ensuite.

 

Sous XP, double cliquer sur le fichier.

Sous Vista/7/8, clic droit sur le fichier pour Exécuter en tant qu'administrateur.

 

Après l'initialisation, cliquer sur Gopour lancer le nettoyage.

Un rapport apparait sur le bureau

Les fichiers supprimés sont dans la corbeille.

Cela donne la possibilité de replacer les fichiers supprimés par erreur dans leur dossier original.

Il suffit de faire un clic droit sur le fichier concerné => Restaurer.

Pour les supprimer, clic droit sur la corbeille => Vider la corbeille.

 

Comment poster les rapports

Aller sur le site :Ci-Joint

Appuyez sur Parcourir et chercher les rapports sur le disque,

Cliquer sur Ouvrir

Cliquer sur Créer le lien CJoint,

>> dans la page suivante --> ,,

une adresse http//.. sera créée

Copier /coller cette adresse dans votre prochain message.

 

[pegotte]

ok. désolé d'avoir ouvert un nouveau sujet...

[pegotte]

Rapport de ZHPFix 2014.7.9.4 par Nicolas Coolman, Update du 09/07/2014

Fichier d'export Registre :

Run by peg at 21/07/2014 15:11:25

High Elevated Privileges : OK

Windows 7 Home Premium Edition, 64-bit Service Pack 1 (Build 7601)

Corbeille vidée (00mn 05s)

Dossier Prefetcher vidé

Réparation des raccourcis navigateur

========== Logiciels ==========

ABSENT Uninstall Process: c:\programdata\finedealsoft\5gsbhw.exe

SUPPRIMÉ: Google Toolbar for Internet Explorer

SUPPRIMÉ: eBay Worldwide

========== Etat des services ==========

{29B136C9-938D-4D3D-8DF8-D649D9B74D02}W64 Arrêté

{A3F28269-AD17-41A8-B032-3E0313EF8979}W64 Arrêté

========== Clés du Registre ==========

SUPPRIMÉ Logiciel Key: [HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{0D566ABB-889B-AF39-7B6A-23D4C5D54542}]

SUPPRIMÉ: [HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{18455581-E099-4BA8-BC6B-F34B2F06600C}]

SUPPRIMÉ: [HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{E0B19DF7-B1C7-4937-82C4-0E4B1E346965}]

SUPPRIMÉ Driver Key: {29b136c9-938d-4d3d-8df8-d649d9b74d02}w64

SUPPRIMÉ Driver Key: {a3f28269-ad17-41a8-b032-3e0313ef8979}w64

SUPPRIMÉ:* HKLM\Software\RST

SUPPRIMÉ: HKLM\Software\Wow6432Node\Pirrit Solutions

SUPPRIMÉ: SearchScopes :FCE8136CC0D847A08AD8345000FCDCCB

SUPPRIMÉ: SearchScopes :{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}

SUPPRIMÉ: HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\moovida_air_RASAPI32

SUPPRIMÉ: HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\moovida_air_RASMANCS

SUPPRIMÉ: HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\YontooSetup-S-17C8_RASAPI32

SUPPRIMÉ: HKLM\SOFTWARE\Wow6432Node\Microsoft\Tracing\YontooSetup-S-17C8_RASMANCS

SUPPRIMÉ:* HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{A1F06DED-F159-4D99-AF72-B97B7A134F1B}

SUPPRIMÉ:* HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\1C875DDE39636004CA8CDAEC335B4160

SUPPRIMÉ:* HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\BA086F2D38A8E1A47912955A68B3AD24

SUPPRIMÉ:* HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\64A6E60055D801F4BB8AC269354B72B8

SUPPRIMÉ:* HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0124B064795BB484FA494FC7CF204C0C

SUPPRIMÉ:* HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\01F8E7504D2D2644AB1185234D2AD5AC

SUPPRIMÉ:* HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\04CDEDFDD6EF25443B78A49D1FE5B4F2

SUPPRIMÉ:* HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\058911EBC07BAAE42B102E3F4B0D070D

SUPPRIMÉ:* HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\05CE306CC244D284D8D8090E404CD7D3

SUPPRIMÉ:* HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\089527E77AD22E345B0066D226E44F46

SUPPRIMÉ:* HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0BD0B15D6F0C2BF428B339B2D2D732C9

SUPPRIMÉ:* HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0C1AAA506D92B2D44BD6FEF6CDFB71E1

SUPPRIMÉ:* HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0CAEC9AFF1716FF4DBACEED82F88C702

SUPPRIMÉ:* HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0DD4444CBC682774C8E573CC73C5BC46

SUPPRIMÉ:* HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0F68250201451D64EA71E91BA19832DC

SUPPRIMÉ:* HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\126FFC99A0F214F41AE2D6C7A0FC09BF

SUPPRIMÉ:* HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\12F72EF2521177A4BB467FF35A881382

SUPPRIMÉ:* HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\14873772FE3926F4195C9280D52D3486

SUPPRIMÉ:* HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\14CF11D787D40BF458A3B5CB123733CE

SUPPRIMÉ:* HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\163A5460E4FB18343B4C0B781B27E813

SUPPRIMÉ:* HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\1705977FCB2F22F4D8A9AB847C3FB9CE

SUPPRIMÉ:* HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\19F133B6A0BA9B14493CE47703DF4CF3

SUPPRIMÉ:* HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\1C735C7A54F53574CA5AEA93D0D1F01E

SUPPRIMÉ:* HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\1CE2260B068265A488410CA171D93778

SUPPRIMÉ:* HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\1DF1DD2609A2135479C19D72E41B64AA

SUPPRIMÉ:* HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\1F72D9058D0863E4F8EB9FE6E980C385

SUPPRIMÉ:* HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2217D47FAFB0AC547820199B3A026CFB

SUPPRIMÉ:* HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\22C5FD2815F5C7C4DB5F34F504BF9D96

SUPPRIMÉ:* HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\26CF57FC035624845B9005289DFA1448

SUPPRIMÉ:* HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2719056FB4CDD294887140382819FFF7

SUPPRIMÉ:* HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2956CB28F45AAF746998774B3C9FF012

SUPPRIMÉ:* HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2AD5E582EBA9ED54989A134D9250922B

SUPPRIMÉ:* HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2BB672F8D2CA64146B6688371E75C986

SUPPRIMÉ:* HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2EA450B923F9C4D4BBEB203648FBFFDC

SUPPRIMÉ:* HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2ECA942EFDBD22B4EBB7FE3AB9EDDBDD

SUPPRIMÉ:* HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2F055C41FDCA50A43BE42A96D243AD47

SUPPRIMÉ:* HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2F4EE319A22490145BC4AEBC53B616CA

SUPPRIMÉ:* HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\31E430E345D85D54CA33BC88AEFDB9D8

SUPPRIMÉ:* HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\358096DA35E67B5479C2E880DF0C10C1

SUPPRIMÉ:* HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\37345F678B330594E9E4AC16908F78CF

SUPPRIMÉ:* HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\38641BF101151094F86DD62B534BDEC4

SUPPRIMÉ:* HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\38762340C83E6764B87807B67154F5A4

SUPPRIMÉ:* HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\3984BAF27BDA0DC4D8AED19FCB64BD7D

SUPPRIMÉ:* HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\3D82200490995CE42AB754DCD90AC44D

SUPPRIMÉ:* HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\3E9F0E4315A35D741873885200C6A454

SUPPRIMÉ:* HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\3F261C3E5AD56E54598E24B106813C7E

SUPPRIMÉ:* HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\40D753328E77EE842A82631EED62CEC5

SUPPRIMÉ:* HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\40FDEFB25883CF140B9B5F89CB7E2871

SUPPRIMÉ:* HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\412179CD2126BB34CAE51691856A3D68

SUPPRIMÉ:* HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\43218F63264345445A73071C174FEEE8

SUPPRIMÉ:* HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\439E8A02B7736CA488EECE28D7EE961A

SUPPRIMÉ:* HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\456D8CED0106E1649AE5CBD8082AC705

SUPPRIMÉ:* HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\459277E8A0EE8894F9D7F807DF90506A

SUPPRIMÉ:* HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\463372A470C576443AE8802B1AC61D89

SUPPRIMÉ:* HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\48F13E425ECD5F243A8A82AA2B65336D

SUPPRIMÉ:* HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\4B6F3AD0EE690D2478C7D0528AADF8C4

SUPPRIMÉ:* HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\4BB9D431259E08A499469636383B9935

SUPPRIMÉ:* HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\4D3B0714BC82B2340AB18C031262573D

SUPPRIMÉ:* HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\4D5809867D6C1D14180511D3AAD03F79

SUPPRIMÉ:* HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\4DB13DED48DC4494C90DE800D31B086C

SUPPRIMÉ:* HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\52C608FC2A61CCE479768A9719CABF7B

SUPPRIMÉ:* HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\56861F0CE995D0E45835F5D31E105D54

SUPPRIMÉ:* HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\58E44D082625757499995F9516313A9C

SUPPRIMÉ:* HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\5A52F724764B00747A637F14FBBBB830

SUPPRIMÉ:* HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\5B19839CB98BB914BA43E863BBE11B4E

SUPPRIMÉ:* HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\613DCE6E373581A40B6C88D4F7C09096

SUPPRIMÉ:* HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6292C097F9759424BAFA3E32CD3DD562

SUPPRIMÉ:* HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\62C171206461ED34885A4AE095F4A7AC

SUPPRIMÉ:* HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\63E9F48D88AA940498502E29E3747471

SUPPRIMÉ:* HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\64747EAAAE2BA5141AEBCF4F6651A144

SUPPRIMÉ:* HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6494B0B34076D6248B6E5F42E3252AD0

SUPPRIMÉ:* HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6495111F730311440BBC3AAAF3B8C7AC

SUPPRIMÉ:* HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\65273BD75ADFA9146A0950469941299A

SUPPRIMÉ:* HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6543EA2E8E729CF4789BCD7361D58C03

SUPPRIMÉ:* HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\658DABBCADB609E429A6769C46FAADD0

SUPPRIMÉ:* HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\67A614CC45D7C5845BE2184211CC8F9C

SUPPRIMÉ:* HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6B6581D2CF6BB444D8ACBF79E3AF425B

SUPPRIMÉ:* HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6C0DB201BFD71284CB8CA279446863E8

SUPPRIMÉ:* HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6EA4E994723ECC940AE01A2507673199

SUPPRIMÉ:* HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6F2331E07AF9B414DB15E2E7BAB7F880

SUPPRIMÉ:* HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6F3E6739E6CECC64D9B7E5D24CF60746

SUPPRIMÉ:* HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\73268B3F6C2206C4BAF14E3C5B4BC494

SUPPRIMÉ:* HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\73D229597C7281E409FDEB3079E30E5A

SUPPRIMÉ:* HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\75A49DF39158638428A0F7797D4CD1E6

SUPPRIMÉ:* HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\75D223AE12684124794DD7D3FB067886

SUPPRIMÉ:* HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\76937F723CDCAB547A9791D60867A5B5

SUPPRIMÉ:* HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\78AD011E92C0B7D4A86E41451EC7A0F0

SUPPRIMÉ:* HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\79080E81959ECB54E9E7B3C67AE5781A

SUPPRIMÉ:* HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\7A8B37070412F4D47895AA40EFC2E39A

SUPPRIMÉ:* HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\7F84DAA817EC0AB409DFE802184D5B09

SUPPRIMÉ:* HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\82F14F44AA63A5945A2E960EF018794E

SUPPRIMÉ:* HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\831071FAC16E2DA4682F55E0B0DE6979

SUPPRIMÉ:* HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\83D0F8F1641145A42B26F71D534E9A34

SUPPRIMÉ:* HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\84072C174C7F25148BFB33ADE8C704E1

SUPPRIMÉ:* HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\872C7B3D2887D4E4EBF645D7AB9374D1

SUPPRIMÉ:* HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\8C00987A23C36B145AB60EE274936EB3

SUPPRIMÉ:* HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\8D736B12592E2E94094267BC5B7AA7EB

SUPPRIMÉ:* HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\8F3E0221A8351144BB04AEF5266143CB

SUPPRIMÉ:* HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\90E77522D1656DA4DABC673942243B44

SUPPRIMÉ:* HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\920219BD6C542544893D7ECFCB5E2B6B

SUPPRIMÉ:* HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\939840D09446FFF459FA6CB4F03C38BE

SUPPRIMÉ:* HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\9459BDD3A7C686345A9B7A1AD1CC6BE4

SUPPRIMÉ:* HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\95AC1A94BAFFE3D41B23B2097BA8B190

SUPPRIMÉ:* HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\983EBB458AA802846BBC74D26C3209C8

SUPPRIMÉ:* HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\98A0180804723E24AAA941C0B046363D

SUPPRIMÉ:* HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\990A25796B2949842BACA56514B7316A

SUPPRIMÉ:* HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\999D63C685BF046489CA3126029FE837

SUPPRIMÉ:* HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\9AC4C1465926D52478BEC6D3DB946DD7

SUPPRIMÉ:* HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\9CF7625ADC5FCFE43AD003DCC16B49CB

SUPPRIMÉ:* HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A2D54AC8D24E8F94ABBB993A69EF13EC

SUPPRIMÉ:* HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A357C02D064283D41978AFEEE1A48E0F

SUPPRIMÉ:* HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A4022CA9531268145AD6F8FD7F4F01DC

SUPPRIMÉ:* HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A5CDCC279604D6746A7DA9ED701BF41F

SUPPRIMÉ:* HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A6F4FE9AC6F165A4EAA8F90CE891C0DA

SUPPRIMÉ:* HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A960AC53CA238044A820A3B63D4536CA

SUPPRIMÉ:* HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\AA3077BB9E4617440AF467D91146A8C4

SUPPRIMÉ:* HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\AAC05EAA51DC78A41A1DCE3B31038584

SUPPRIMÉ:* HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\AD7957C966A13904EA466152B29EA9AF

SUPPRIMÉ:* HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B13C910C1D6376A4BB2BDB9585253923

SUPPRIMÉ:* HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B1B5689BAD89AFD448923B5051E5BB50

SUPPRIMÉ:* HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B2CE0F97DFABDE446811F33E7273BFE2

SUPPRIMÉ:* HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B445461D74829AF4C8EF6C00B2861EF0

SUPPRIMÉ:* HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B4D011D14FD2DB74A9090EA633C0B98E

SUPPRIMÉ:* HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B551BEBCA0334AA40978C2137FD21AB2

SUPPRIMÉ:* HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B877893A942DC524580C7B45547FCBC8

SUPPRIMÉ:* HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BA71D41F6CC0B6247B05D473850A8AEA

SUPPRIMÉ:* HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BC651C0803618C44DA6F1DDD51AF35BF

SUPPRIMÉ:* HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BDE5B9F2A520B674BBB1BEAE5F5D51B8

SUPPRIMÉ:* HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BEE85C3D8F4816D4A9E5F4EAA4D80A2A

SUPPRIMÉ:* HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BFD48F71CCCEC97489147D4E852D3F6F

SUPPRIMÉ:* HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\C05694CDCD2DD724F90F13A20E67EC7C

SUPPRIMÉ:* HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\C42065D3060DD4648A38882BEA92941E

SUPPRIMÉ:* HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\C5F606FB1152E344981B09071C472211

SUPPRIMÉ:* HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\C77B53875F388AA4AA076F6F9D099011

SUPPRIMÉ:* HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\C85EA06E73FF0A240B4C287EE0D9521D

SUPPRIMÉ:* HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CA0054A5AB3EFFE4CB5660E44A1E7DCC

SUPPRIMÉ:* HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CA30DE5A0DE293D4AA3BF5E13322823A

SUPPRIMÉ:* HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CA9ADF25A98C8074FA4CBBA3ED29FEFA

SUPPRIMÉ:* HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CCE886225BDEB6C43868B0AEDB036B02

SUPPRIMÉ:* HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CDD11BF4B1CAA584695EFBC611438213

SUPPRIMÉ:* HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CE1CCF5CABA1395409D54586592B319E

SUPPRIMÉ:* HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CE7392F9B9A81FA4EA952625BD5534FE

SUPPRIMÉ:* HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D12B7976E5CA7C34D932C1A8A1BF61C8

SUPPRIMÉ:* HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D91D500D43BD91A44B02BDBE41E0523F

SUPPRIMÉ:* HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DA2710A9158C6584C9677EB954F3AC97

SUPPRIMÉ:* HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DCF07B57C9DC38E419CF122EA180585E

SUPPRIMÉ:* HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DD2E1A561C7F1294BB3996EE77F6BBEE

SUPPRIMÉ:* HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DF14E9E130504B745A2AC47EF6145D24

SUPPRIMÉ:* HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DF7A4CDE9ED9CD7479FF74F35FA4149E

SUPPRIMÉ:* HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DFE39849AF921D045B613CD5852C76A6

SUPPRIMÉ:* HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E03EC5B80A22A7D4C92AB528A3D323E8

SUPPRIMÉ:* HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E1B9E95AA2730744AB926911484F8AD5

SUPPRIMÉ:* HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E3436415FB2833843B9EE970079A87C0

SUPPRIMÉ:* HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E3BBB86ACE9686A4281227D5F7EE95AE

SUPPRIMÉ:* HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E6B40E8EBBC3CD445BD2FC7D8FDCCFEC

SUPPRIMÉ:* HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E77C3F952C1F0354FAFADB6B080ACCF7

SUPPRIMÉ:* HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E84382A588F214C4C89C3DB758EA6AD6

SUPPRIMÉ:* HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E89B10C102BBEF941A920EE2269747C0

SUPPRIMÉ:* HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E9D73D5153C19FD48B6E10CB7E8572CE

SUPPRIMÉ:* HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\EBAFF392ACA75ED4CA30BF821C1AE267

SUPPRIMÉ:* HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\ECFC746582988774684DB5D8D95F674D

SUPPRIMÉ:* HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\EECC799BFA63E6146A81EAAA53540EDE

SUPPRIMÉ:* HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F1547261AA1C98C48B0ECDBC767C76CE

SUPPRIMÉ:* HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F1BDB464DE2D33547BB31C1B35D9C337

SUPPRIMÉ:* HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F29CFDBF9B20AB8448A1BD73A3FE863F

SUPPRIMÉ:* HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F5F8D8368E8CAE84188DE44DAF8C10F9

SUPPRIMÉ:* HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\FAB510A06C6F4B24AAD055CE6EEA27CD

SUPPRIMÉ CLSID MPSK: {492dd190-166e-11e0-b35a-c80aa965a90d}

SUPPRIMÉ: [HKLM\Software\Classes\Installer\Products\\7FD91B0E7C1B7394284CE0B4E1439656]

SUPPRIMÉ: [HKLM\Software\Classes\Installer\Features\7FD91B0E7C1B7394284CE0B4E1439656]

Branche de Base de Registres IFEO non infectée !

========== Valeurs du Registre ==========

Aucune Valeur Standard Profile: FirewallRaz :

Aucune Valeur Domain Profile: FirewallRaz :

SUPPRIMÉ: FirewallRaz (Domain) : NetPres-In-TCP-NoScope

SUPPRIMÉ: FirewallRaz (Domain) : NetPres-Out-TCP-NoScope

SUPPRIMÉ: FirewallRaz (None) : NetPres-WSD-In-UDP

SUPPRIMÉ: FirewallRaz (None) : NetPres-WSD-Out-UDP

SUPPRIMÉ: FirewallRaz (Public) : NetPres-In-TCP

SUPPRIMÉ: FirewallRaz (Public) : NetPres-Out-TCP

SUPPRIMÉ: FirewallRaz (None) : {7E5ABAF4-92C3-4269-97EA-0AFF1F058537}

SUPPRIMÉ: FirewallRaz (Private) : {CDC645F3-5E9D-4D61-8FF1-C856EF31EC0D}

SUPPRIMÉ: FirewallRaz (Private) : {CD161306-C081-45A2-96D6-1A2F6A3C501B}

SUPPRIMÉ: FirewallRaz (Public) : {C978FDC8-9F5A-4FB7-931D-C39079AE7D06}

SUPPRIMÉ: FirewallRaz (Public) : {95E18C74-FC3A-4E0A-8499-444DC2DCDC83}

SUPPRIMÉ: FirewallRaz (Public) : TCP Query User{E76499B9-24A1-4BEE-81EE-ED593D28F833}C:\program files (x86)\ea games\battlefield play4free\bfp4f.exe

SUPPRIMÉ: FirewallRaz (Public) : UDP Query User{270376A8-7F09-41D3-A2D3-66EC783DB0FE}C:\program files (x86)\ea games\battlefield play4free\bfp4f.exe

SUPPRIMÉ: FirewallRaz (Public) : {C9E9EF26-FB24-430C-A174-9A9ACD9CD227}

SUPPRIMÉ: FirewallRaz (Public) : {23FD9569-8142-40FB-92EE-97B8FAC4B3C5}

SUPPRIMÉ: FirewallRaz (Public) : TCP Query User{6BF04121-A15B-4553-A4D8-D0984CA44E57}C:\program files (x86)\java\jre6\bin\javaw.exe

SUPPRIMÉ: FirewallRaz (Public) : UDP Query User{15C899A7-D82D-4D0B-9CCC-A5148C1D22A0}C:\program files (x86)\java\jre6\bin\javaw.exe

SUPPRIMÉ: FirewallRaz (Public) : {768CB13C-E042-421D-85AA-26CDD8821763}

SUPPRIMÉ: FirewallRaz (Public) : {54D39F3D-E0CD-40CE-AF16-17B7998B55A4}

SUPPRIMÉ: FirewallRaz (Public) : {8429D9A2-EC8E-40D9-AECD-5E5FA4DECDFD}

SUPPRIMÉ: FirewallRaz (Public) : {B8FD5135-C823-4713-8741-29D600D32607}

SUPPRIMÉ: FirewallRaz (Public) : {3B3B7098-DD19-4ED1-8AC5-1E29E7E6CE0A}

SUPPRIMÉ: FirewallRaz (Public) : {345D3C01-42C4-4109-A403-16E7CD6DE2C1}

ProxyFix : Configuration proxy supprimée avec succès

SUPPRIMÉ ProxyServer Value

SUPPRIMÉ ProxyEnable Value

SUPPRIMÉ EnableHttp1_1 Value

SUPPRIMÉ ProxyHttp1.1 Value

SUPPRIMÉ ProxyOverride Value

========== Eléments de donnée du Registre ==========

SUPPRIMÉ: R0 - Main,Start Page = KCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page

SUPPRIMÉ: R1 Search Page = http=http://127.0.0.1:9880

========== Dossiers ==========

Aucun dossiers CLSID Local utilisateur vide

========== Fichiers ==========

SUPPRIMÉ Redémarrage: c:\windows\system32\drivers\{29b136c9-938d-4d3d-8df8-d649d9b74d02}w64.sys

SUPPRIMÉ Redémarrage: c:\windows\system32\drivers\{a3f28269-ad17-41a8-b032-3e0313ef8979}w64.sys

SUPPRIMÉ: C:\Windows\Installer\145706c.msi

SUPPRIMÉ: c:\windows\ie11_main.log

SUPPRIMÉ: c:\users\peg\appdata\local\temp\quarantine.exe

SUPPRIMÉ: c:\users\peg\appdata\local\temp\{c2695e83-cf1d-43d1-84fe-b3bec561012a}\isetup.dll

SUPPRIMÉ: c:\users\peg\appdata\local\temp\{c2695e83-cf1d-43d1-84fe-b3bec561012a}\shredder64.exe

SUPPRIMÉS Temporaires Windows (221) (7 130 424 octets)

SUPPRIMÉS Flash Cookies (0) (0 octets)

========== Fichier HOSTS ==========

Le fichier Hosts n'est pas réparé, veuillez désactiver votre antivirus.

========== Tache planifiée ==========

SUPPRIMÉ: AdobeFlashPlayerUpdate

SUPPRIMÉ: AdobeFlashPlayerUpdate

SUPPRIMÉ: AdobeFlashPlayerUpdate 2

SUPPRIMÉ: 4497

========== Restauration Système ==========

Point de restauration du système créé avec succès

========== Récapitulatif ==========

184 : Clés du Registre

31 : Valeurs du Registre

2 : Eléments de donnée du Registre

1 : Dossiers

9 : Fichiers

3 : Logiciels

1 : Fichier HOSTS

2 : Etat des services

4 : Tache planifiée

1 : Restauration Système

End of clean in 02mn 32s

========== Chemin de fichier rapport ==========

C:\Users\peg\AppData\Roaming\ZHP\ZHPFix[R1].txt - 21/07/2014 15:11:31 [27636]

[pegotte]

Rapport de SFTGC (Pierre13) du Lundi 21 Juillet 2014 à 15:17:03 version : 2.2.0.0

Mis à jour le 30/05/2014

Outil lancé en Mode normal et En tant qu'administrateur

Windows 7 Home Premium Service Pack 1 64 bits

Tool start in C:\Users\peg\Documents\scan

494 éléments supprimés => 650.48 Ko libérés. (2 mn 23 s)

Attention infection possible ! =>> C:\Users\peg\AppData\Local\Temp\avgnt.exe

C:\Users\peg\AppData\Local\Temp\avgnt.exe

C:\Users\peg\AppData\LocalLow\Adobe

C:\Users\peg\AppData\LocalLow\EmieSiteList

C:\Users\peg\AppData\LocalLow\EmieUserList

C:\Users\peg\AppData\LocalLow\Google

C:\Users\peg\AppData\LocalLow\IObit

C:\Users\peg\AppData\LocalLow\Oracle

C:\Users\peg\AppData\Local\Microsoft\Windows\History\desktop.ini

C:\Users\peg\AppData\Local\Microsoft\Windows\History\History.IE5

C:\Users\peg\AppData\Local\Microsoft\Windows\History\Low

C:\Users\peg\AppData\Local\Microsoft\Windows\History\Low\desktop.ini

C:\Users\peg\AppData\Local\Microsoft\Windows\History\Low\History.IE5

C:\Users\peg\AppData\Local\Microsoft\Windows\History\Low\History.IE5\desktop.ini

C:\Users\peg\AppData\Local\Microsoft\Windows\History\History.IE5\container.dat

C:\Users\peg\AppData\Local\Microsoft\Windows\History\History.IE5\desktop.ini

C:\Users\peg\AppData\Local\Microsoft\Windows\History\History.IE5\MSHist012013103020131031

C:\Users\peg\AppData\Local\Microsoft\Windows\History\History.IE5\MSHist012013103120131101

C:\Users\peg\AppData\Local\Microsoft\Windows\History\History.IE5\MSHist012013110120131102

C:\Users\peg\AppData\Local\Microsoft\Windows\History\History.IE5\MSHist012013121320131214

C:\Users\peg\AppData\Local\Microsoft\Windows\History\History.IE5\MSHist012013121420131215

C:\Users\peg\AppData\Local\Microsoft\Windows\History\History.IE5\MSHist012014053020140531

C:\Users\peg\AppData\Local\Microsoft\Windows\History\History.IE5\MSHist012014071420140721

C:\Users\peg\AppData\Local\Microsoft\Windows\History\History.IE5\MSHist012014072120140722

C:\Users\peg\AppData\Local\Microsoft\Windows\History\History.IE5\MSHist012014072120140722\container.dat

C:\Users\peg\AppData\Local\Microsoft\Windows\History\History.IE5\MSHist012014071420140721\container.dat

C:\Users\peg\AppData\Local\Microsoft\Windows\History\History.IE5\MSHist012014053020140531\container.dat

C:\Users\peg\AppData\Local\Microsoft\Windows\History\History.IE5\MSHist012013121420131215\container.dat

C:\Users\peg\AppData\Local\Microsoft\Windows\History\History.IE5\MSHist012013121320131214\container.dat

C:\Users\peg\AppData\Local\Microsoft\Windows\History\History.IE5\MSHist012013110120131102\container.dat

C:\Users\peg\AppData\Local\Microsoft\Windows\History\History.IE5\MSHist012013103120131101\container.dat

C:\Users\peg\AppData\Local\Microsoft\Windows\History\History.IE5\MSHist012013103020131031\container.dat

C:\Users\peg\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5

C:\Users\peg\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.MSO

C:\Users\peg\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.Word

C:\Users\peg\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low

C:\Users\peg\AppData\Local\Microsoft\Windows\Temporary Internet Files\SQM

C:\Users\peg\AppData\Local\Microsoft\Windows\Temporary Internet Files\Virtualized

C:\Users\peg\AppData\Local\Microsoft\Windows\Temporary Internet Files\Virtualized\C

C:\Users\peg\AppData\Local\Microsoft\Windows\Temporary Internet Files\Virtualized\C\ProgramData

C:\Users\peg\AppData\Local\Microsoft\Windows\Temporary Internet Files\Virtualized\C\Users

C:\Users\peg\AppData\Local\Microsoft\Windows\Temporary Internet Files\Virtualized\C\Users\peg

C:\Users\peg\AppData\Local\Microsoft\Windows\Temporary Internet Files\Virtualized\C\Users\peg\AppData

C:\Users\peg\AppData\Local\Microsoft\Windows\Temporary Internet Files\Virtualized\C\Users\peg\AppData\Local

C:\Users\peg\AppData\Local\Microsoft\Windows\Temporary Internet Files\Virtualized\C\Users\peg\AppData\Roaming

C:\Users\peg\AppData\Local\Microsoft\Windows\Temporary Internet Files\Virtualized\C\Users\peg\AppData\Roaming\Microsoft

C:\Users\peg\AppData\Local\Microsoft\Windows\Temporary Internet Files\Virtualized\C\Users\peg\AppData\Roaming\Microsoft\Windows

C:\Users\peg\AppData\Local\Microsoft\Windows\Temporary Internet Files\Virtualized\C\Users\peg\AppData\Roaming\Microsoft\Windows\PrivacIE

C:\Users\peg\AppData\Local\Microsoft\Windows\Temporary Internet Files\Virtualized\C\Users\peg\AppData\Roaming\Microsoft\Windows\PrivacIE\Low

C:\Users\peg\AppData\Local\Microsoft\Windows\Temporary Internet Files\Virtualized\C\Users\peg\AppData\Local\Microsoft

C:\Users\peg\AppData\Local\Microsoft\Windows\Temporary Internet Files\Virtualized\C\Users\peg\AppData\Local\Microsoft\Windows

C:\Users\peg\AppData\Local\Microsoft\Windows\Temporary Internet Files\Virtualized\C\Users\peg\AppData\Local\Microsoft\Windows\Temporary Internet Files

C:\Users\peg\AppData\Local\Microsoft\Windows\Temporary Internet Files\Virtualized\C\ProgramData\McAfee

C:\Users\peg\AppData\Local\Microsoft\Windows\Temporary Internet Files\Virtualized\C\ProgramData\McAfee\SiteAdvisor

C:\Users\peg\AppData\Local\Microsoft\Windows\Temporary Internet Files\Virtualized\C\ProgramData\McAfee\SiteAdvisor\mcbrwctl.dll

C:\Users\peg\AppData\Local\Microsoft\Windows\Temporary Internet Files\SQM\iesqmdata0.sqm

C:\Users\peg\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\AntiPhishing

C:\Users\peg\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5

C:\Users\peg\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\0HOL07JL

C:\Users\peg\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\0W12QA3O

C:\Users\peg\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\2B8N3JX8

C:\Users\peg\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\2YZK6213

C:\Users\peg\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\5L20LZV6

C:\Users\peg\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\E7AMQERU

C:\Users\peg\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\QP99JZ0M

C:\Users\peg\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\V8A82R3I

C:\Users\peg\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\Z8O426OD

C:\Users\peg\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\0119DRUZ

C:\Users\peg\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\1KU00DOJ

C:\Users\peg\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\3V540YRP

C:\Users\peg\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\42V4BT9S

C:\Users\peg\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\813G78DR

C:\Users\peg\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\8MFXHA3C

C:\Users\peg\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\9IJJV8UR

C:\Users\peg\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\BEDLMYKC

C:\Users\peg\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\container.dat

C:\Users\peg\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\EPV0FU5R

C:\Users\peg\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\EY85LUUD

C:\Users\peg\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\FBWIS9UT

C:\Users\peg\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\FGBEPPF1

C:\Users\peg\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\G83VNLI1

C:\Users\peg\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\I7T7EIQB

C:\Users\peg\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\L1816I7Q

C:\Users\peg\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\M9O573MZ

C:\Users\peg\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\MQ5EDYFU

C:\Users\peg\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\PQMCWFPY

C:\Users\peg\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\RZVGCTL0

C:\Users\peg\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\SVU91MMF

C:\Users\peg\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\U72I3ZKE

C:\Users\peg\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\WX877O1L

C:\Users\peg\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\XCNW941G

C:\Users\peg\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\YO2ZW7YI

C:\Users\peg\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\YRWT9EJI

C:\Users\peg\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\Z8C5OZXK

C:\Users\peg\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\ZWN6V6ZH

C:\Users\peg\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\ZYELF1F5

C:\Users\peg\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\ZYELF1F5\104[1]

C:\Users\peg\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\ZYELF1F5\api[1].js

C:\Users\peg\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\ZYELF1F5\autoupdate[1].ini

C:\Users\peg\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\ZYELF1F5\BingHomepage2.min_356507B6E5AA222E774D2F74195E72E2[1].js

C:\Users\peg\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\ZYELF1F5\chatsupport_operatordeferred[1].js

C:\Users\peg\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\ZYELF1F5\cJZKeOuBrn4kERxqtaUH3T8E0i7KZn-EPnyo3HZu7kw[1].woff

C:\Users\peg\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\ZYELF1F5\Conduit[1].htm

C:\Users\peg\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\ZYELF1F5\css[1].css

C:\Users\peg\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\ZYELF1F5\jre-7u65-windows-i586-iftw[1].com

C:\Users\peg\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\ZYELF1F5\k3k702ZOKiLJc3WVjuplzHhCUOGz7vYGh680lGh-uXM[1].woff

C:\Users\peg\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\ZYELF1F5\mag[1].jpg

C:\Users\peg\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\ZYELF1F5\MTP_ySUJH_bn48VBG8sNSnhCUOGz7vYGh680lGh-uXM[1].woff

C:\Users\peg\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\ZYELF1F5\prodinstall[1].htm

C:\Users\peg\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\ZYELF1F5\prodinstall[2].htm

C:\Users\peg\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\ZYELF1F5\redirect[1].htm

C:\Users\peg\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\ZYELF1F5\toolbar-16[1].png

C:\Users\peg\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\ZYELF1F5\VersionSFT[1].txt

C:\Users\peg\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\ZYELF1F5\Version[1].txt

C:\Users\peg\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\YRWT9EJI\28016ffcbe8a1939af038a0db8cfb2f471a00311[1].htm

C:\Users\peg\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\YRWT9EJI\682094929-postmessagerelay[1].js

C:\Users\peg\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\YRWT9EJI\bing-logo[1].png

C:\Users\peg\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\YRWT9EJI\favicon[1].ico

C:\Users\peg\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\YRWT9EJI\favicon[2].ico

C:\Users\peg\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\YRWT9EJI\hc-all[1].css

C:\Users\peg\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\YRWT9EJI\hc-all[1].js

C:\Users\peg\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\YRWT9EJI\header[1].png

C:\Users\peg\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\YRWT9EJI\hp_bing_load.min_DD668D7124A5590E18A77C5260D32F93[1].js

C:\Users\peg\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\YRWT9EJI\LatestReaderManifest[1].msi

C:\Users\peg\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\YRWT9EJI\map-m-1.7.0[1].xml

C:\Users\peg\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\YRWT9EJI\news[1].ini

C:\Users\peg\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\YRWT9EJI\operatorUrl[1].json

C:\Users\peg\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\YRWT9EJI\search-white[1].png

C:\Users\peg\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\YRWT9EJI\SQLite3_300700200[1].dll

C:\Users\peg\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\YRWT9EJI\v1_b444d4f7[1].png

C:\Users\peg\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\EY85LUUD\BingHomepage2.min_F4543E94C390DB7D476DF4B7C1DD944C[1].css

C:\Users\peg\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\EY85LUUD\BODY[1]

C:\Users\peg\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\EY85LUUD\cb=gapi[1].js

C:\Users\peg\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\EY85LUUD\cb=gapi[2].js

C:\Users\peg\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\EY85LUUD\chatsupport[1].css

C:\Users\peg\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\EY85LUUD\close[1].png

C:\Users\peg\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\EY85LUUD\core_rpc_shindig.random_shindig.sha1[1].js

C:\Users\peg\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\EY85LUUD\favicon[1].ico

C:\Users\peg\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\EY85LUUD\google_logo_116x41[1].png

C:\Users\peg\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\EY85LUUD\grey-disclosure-arrow-up-down[1].png

C:\Users\peg\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\EY85LUUD\logo_v2[1].png

C:\Users\peg\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\EY85LUUD\rs=AItRSTMxUZZSp6d8CMP3tpekuIYCUGspJg[1].css

C:\Users\peg\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\EY85LUUD\sync[1].js

C:\Users\peg\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\EY85LUUD\tbredir[1].htm

C:\Users\peg\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\EPV0FU5R\137[1]

C:\Users\peg\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\EPV0FU5R\NEWSTYLES[3]

C:\Users\peg\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\EPV0FU5R\POPUPBACKGROUND[1]

C:\Users\peg\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\EPV0FU5R\TOPBANNER[1]

C:\Users\peg\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\8MFXHA3C\104[1]

C:\Users\peg\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\8MFXHA3C\104[2]

C:\Users\peg\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\8MFXHA3C\BLANK[1]

C:\Users\peg\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\8MFXHA3C\HELP[1]

C:\Users\peg\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\8MFXHA3C\leftbanner[1]

C:\Users\peg\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\8MFXHA3C\prodinstall308O4UHP.htm

C:\Users\peg\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\813G78DR\BLANK[1]

C:\Users\peg\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\813G78DR\INETPROGRESS[1]

C:\Users\peg\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\813G78DR\NewStyles[1]

C:\Users\peg\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\813G78DR\prodinstall[2].htm

C:\Users\peg\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\813G78DR\SETTINGS[2]

C:\Users\peg\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\42V4BT9S\104[1]

C:\Users\peg\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\42V4BT9S\104[2]

C:\Users\peg\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\42V4BT9S\104[3]

C:\Users\peg\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\42V4BT9S\button_bg[1].png

C:\Users\peg\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\42V4BT9S\cb=gapi[1].js

C:\Users\peg\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\42V4BT9S\cb=gapi[2].js

C:\Users\peg\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\42V4BT9S\DXI1ORHCpsQm3Vp6mXoaTXhCUOGz7vYGh680lGh-uXM[1].woff

C:\Users\peg\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\42V4BT9S\ga[1].js

C:\Users\peg\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\42V4BT9S\grlryt2bdKIyfMSOhzd1eA[1].woff

C:\Users\peg\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\42V4BT9S\N2851Y75.htm

C:\Users\peg\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\42V4BT9S\offline[1].png

C:\Users\peg\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\42V4BT9S\postmessageRelay[1].htm

C:\Users\peg\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\42V4BT9S\rs=AItRSTOUB7oK8A7CWNMa2bfj3JgtCGqw4Q[1].js

C:\Users\peg\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\42V4BT9S\topbuttons[1].xml

C:\Users\peg\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\42V4BT9S\uninstall[1].htm

C:\Users\peg\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\42V4BT9S\Upgrade-Now[1].png

C:\Users\peg\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\42V4BT9S\upgradetopro[1].ini

C:\Users\peg\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\3V540YRP\106[1]

C:\Users\peg\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\3V540YRP\136[1]

C:\Users\peg\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\3V540YRP\prodinstall[10].htm

C:\Users\peg\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\3V540YRP\prodinstall[7].htm

C:\Users\peg\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\3V540YRP\prodinstall[8].htm

C:\Users\peg\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\3V540YRP\prodinstall[9].htm

C:\Users\peg\AppData\Roaming\Microsoft\Windows\Recent\- Virtueel Boeken.lnk

C:\Users\peg\AppData\Roaming\Microsoft\Windows\Recent\AppSetting.lnk

C:\Users\peg\AppData\Roaming\Microsoft\Windows\Recent\AutomaticDestinations

C:\Users\peg\AppData\Roaming\Microsoft\Windows\Recent\cuicine.lnk

C:\Users\peg\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations

C:\Users\peg\AppData\Roaming\Microsoft\Windows\Recent\data.lnk

C:\Users\peg\AppData\Roaming\Microsoft\Windows\Recent\desktop.ini

C:\Users\peg\AppData\Roaming\Microsoft\Windows\Recent\DEVIS ELECTROS.lnk

C:\Users\peg\AppData\Roaming\Microsoft\Windows\Recent\divers.lnk

C:\Users\peg\AppData\Roaming\Microsoft\Windows\Recent\dos guepiere.lnk

C:\Users\peg\AppData\Roaming\Microsoft\Windows\Recent\DSC07683.lnk

C:\Users\peg\AppData\Roaming\Microsoft\Windows\Recent\favoris_21_07_14.lnk

C:\Users\peg\AppData\Roaming\Microsoft\Windows\Recent\guepière charlott 85b.lnk

C:\Users\peg\AppData\Roaming\Microsoft\Windows\Recent\haut bleu turquoise T14 ans kiabi.lnk

C:\Users\peg\AppData\Roaming\Microsoft\Windows\Recent\haut nuisette.lnk

C:\Users\peg\AppData\Roaming\Microsoft\Windows\Recent\hwufv8xd.lnk

C:\Users\peg\AppData\Roaming\Microsoft\Windows\Recent\jeu playstation 2.lnk

C:\Users\peg\AppData\Roaming\Microsoft\Windows\Recent\malware.lnk

C:\Users\peg\AppData\Roaming\Microsoft\Windows\Recent\nuisette rose 90c.lnk

C:\Users\peg\AppData\Roaming\Microsoft\Windows\Recent\nuisette.lnk

C:\Users\peg\AppData\Roaming\Microsoft\Windows\Recent\Objectinfo_TITZ.lnk

C:\Users\peg\AppData\Roaming\Microsoft\Windows\Recent\pers facade à gauche du frigo.lnk

C:\Users\peg\AppData\Roaming\Microsoft\Windows\Recent\scan.lnk

C:\Users\peg\AppData\Roaming\Microsoft\Windows\Recent\soutien gorge rose 90c a demi mot.lnk

C:\Users\peg\AppData\Roaming\Microsoft\Windows\Recent\taille 12-14 ans.lnk

C:\Users\peg\AppData\Roaming\Microsoft\Windows\Recent\vetement fille.lnk

C:\Users\peg\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\28c8b86deab549a1.customDestinations-ms

C:\Users\peg\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\28c8b86deab549a1.customDestinations-ms~RF106f74.TMP

C:\Users\peg\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\49fa7d0a75556a5.customDestinations-ms

C:\Users\peg\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\5afe4de1b92fc382.customDestinations-ms

C:\Users\peg\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\5d696d521de238c3.customDestinations-ms

C:\Users\peg\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\74d7f43c1561fc1e.customDestinations-ms

C:\Users\peg\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\7N396KOVF6FO16FTQGF2.temp

C:\Users\peg\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\9645f58513b1a821.customDestinations-ms

C:\Users\peg\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\c999a7773ae7dfc3.customDestinations-ms

C:\Users\peg\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\ccc0fa1b9f86f7b3.customDestinations-ms

C:\Users\peg\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\d93f411851d7c929.customDestinations-ms

C:\Users\peg\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\fc4bb931d6949c88.customDestinations-ms

C:\Users\peg\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\H8543G8IQSBBEV4YCN6R.temp

C:\Users\peg\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\O64OJ9H52KOECACFU9Y6.temp

C:\Users\peg\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\VKCYCEINLK0HRKRXPKLH.temp

C:\Users\peg\AppData\Roaming\Microsoft\Windows\Recent\AutomaticDestinations\12dc1ea8e34b5a6.automaticDestinations-ms

C:\Users\peg\AppData\Roaming\Microsoft\Windows\Recent\AutomaticDestinations\1b4dd67f29cb1962.automaticDestinations-ms

C:\Users\peg\AppData\Roaming\Microsoft\Windows\Recent\AutomaticDestinations\23646679aaccfae0.automaticDestinations-ms

C:\Users\peg\AppData\Roaming\Microsoft\Windows\Recent\AutomaticDestinations\5d696d521de238c3.automaticDestinations-ms

C:\Users\peg\AppData\Roaming\Microsoft\Windows\Recent\AutomaticDestinations\74d7f43c1561fc1e.automaticDestinations-ms

C:\Users\peg\AppData\Roaming\Microsoft\Windows\Recent\AutomaticDestinations\7e4dca80246863e3.automaticDestinations-ms

C:\Users\peg\AppData\Roaming\Microsoft\Windows\Recent\AutomaticDestinations\9b9cdc69c1c24e2b.automaticDestinations-ms

C:\Users\peg\AppData\Roaming\Microsoft\Windows\Recent\AutomaticDestinations\a2b95ca27b6c33d9.automaticDestinations-ms

C:\Users\peg\AppData\Roaming\Microsoft\Windows\Recent\AutomaticDestinations\f5ac5390b9115fdb.automaticDestinations-ms

C:\Users\peg\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content

C:\Users\peg\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData

C:\Users\peg\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\05EC48341C277FE5110E7DFAA91377DC_49A0F7ED62B84361D2B23E89CDE34920

C:\Users\peg\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\0EBB3788D77094423275558212CCE7B1

C:\Users\peg\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\1060B7ADDE0FF6DE85637BF89FC4CEBC_49ED5C6881BAA22BDB94D2786FA54449

C:\Users\peg\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\130ADF60D1B7B3CF82CC6CA82D961601_12C50190AA5922E6D711F2DEE84C1EB9

C:\Users\peg\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\130ADF60D1B7B3CF82CC6CA82D961601_187C32FAE4B91C4F2B5E8E1A5C2D00C1

C:\Users\peg\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\130ADF60D1B7B3CF82CC6CA82D961601_E9BD40EB4FD91641D84964706F1DCF9C

C:\Users\peg\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\161B1C6D9CDC22FEB7269E395DF82F33_4D462FA1BB632B7C447956142FC6F7BF

C:\Users\peg\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\1DAF2884EC4DFA96BA4A58D4DBC9C406

C:\Users\peg\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\1E1CC43385506AF5B63E01C28389BC6F

C:\Users\peg\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\1F39B5CFACECFDE48DB25BCA2231FAC6_9EF574B96A7E6BC4B102FC08506B596E

C:\Users\peg\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\21253908F3CB05D51B1C2DA8B681A785

C:\Users\peg\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\23B523C9E7746F715D33C6527C18EB9D

C:\Users\peg\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\37C951188967C8EB88D99893D9D191FE

C:\Users\peg\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3B16E63E6837B29B5887B7E6D0600E2A_A14C45742D4B25513056BFB79CE0B0AD

C:\Users\peg\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3B61E7EBFA41B3041AD0562CCA8C702E_76759AB91AD2AC7C025F0D9455A557C7

C:\Users\peg\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C3948BE6E525B8A8CEE9FAC91C9E392_7639DBA23CDB69E31ECB5EF777AEECE3

C:\Users\peg\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C3948BE6E525B8A8CEE9FAC91C9E392_853A59BAA6F9925A0FE2F8FBA748AC65

C:\Users\peg\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C3948BE6E525B8A8CEE9FAC91C9E392_C8FA2A733FE2A95A8ABEB57315278F81

C:\Users\peg\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\4309200C3DBAD0F6F0DFACE9165FD092

C:\Users\peg\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\445D2A562929E59ED544CBBF32A5191A

C:\Users\peg\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\49514950C94E8026A2B06312597DFF49_33A0493B3756EC93EB52782457685E27

C:\Users\peg\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\49514950C94E8026A2B06312597DFF49_569BD946168DB279A65378F7D088CFD0

C:\Users\peg\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\54D62447E94D6E1A4BDF9F5D97B79ED0_0AE67D36D340ADDCC6C5DBDBC05C9BB4

C:\Users\peg\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\570FB14ABC805C46708F32F92F10C3B4

C:\Users\peg\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\57C8EDB95DF3F0AD4EE2DC2B8CFD4157

C:\Users\peg\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\5D980C21A14CEF8530BD8EA5D70F17A7_682EF379A37CE5EBAF7950150050209C

C:\Users\peg\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\5D980C21A14CEF8530BD8EA5D70F17A7_9BB2CC14F0A4127A8EEBD666C0A304F4

C:\Users\peg\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\60E31627FDA0A46932B0E5948949F2A5

C:\Users\peg\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\696F3DE637E6DE85B458996D49D759AD

C:\Users\peg\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\6AA3321A15A787985201D7A6820782F0_0AB46376AFB6F40B0426680E3025D384

C:\Users\peg\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\6AA3321A15A787985201D7A6820782F0_35BFA9D40D21E81B408449EB9D85CCA4

C:\Users\peg\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\6AA3321A15A787985201D7A6820782F0_4E35DE6F4FCFB7BE2C045F6B5ED89FC8

C:\Users\peg\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\7396C420A8E1BC1DA97F1AF0D10BAD21

C:\Users\peg\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\74BFD122C0875EC75DBE5C6DB4C59019

C:\Users\peg\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\77EC63BDA74BD0D0E0426DC8F8008506

C:\Users\peg\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\7B2238AACCEDC3F1FFE8E7EB5F575EC9

C:\Users\peg\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\7B8944BA8AD0EFDF0E01A43EF62BECD0_32EB2FF73F9134E5E46D72901359E2FF

C:\Users\peg\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\7B8944BA8AD0EFDF0E01A43EF62BECD0_408BF57CFB22C8CE7202361683829F8C

C:\Users\peg\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\7B8944BA8AD0EFDF0E01A43EF62BECD0_B2DB1CC4B5F2D2A802D56AAED525802D

C:\Users\peg\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\7B8944BA8AD0EFDF0E01A43EF62BECD0_B57EA088D6519B5217140D1FB68DD568

C:\Users\peg\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\7D1F03728133589A90656A87E482B21F

C:\Users\peg\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\7D266D9E1E69FA1EEFB9699B009B34C8_0A9BFDD75B598C2110CBF610C078E6E6

C:\Users\peg\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\7D266D9E1E69FA1EEFB9699B009B34C8_8CA7164968F366C9A94AC8E71C4BDD9B

C:\Users\peg\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\8059E9A0D314877E40FE93D8CCFB3C69_19BE54E9F66DDEC271EBF5365998BCDB

C:\Users\peg\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\8059E9A0D314877E40FE93D8CCFB3C69_9C14D89D568E2444ADBFED2F56F6372E

C:\Users\peg\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\8059E9A0D314877E40FE93D8CCFB3C69_A0A2B995DC16E7940C137A4A6563717A

C:\Users\peg\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\8059E9A0D314877E40FE93D8CCFB3C69_AC6FE152998A2ED55218BDBAC9A1435A

C:\Users\peg\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\8059E9A0D314877E40FE93D8CCFB3C69_E3CDEC366188F0B3F8D7D06BDD5886C3

C:\Users\peg\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\8059E9A0D314877E40FE93D8CCFB3C69_F30D3103EDEDC6C128BBEF011A465D77

C:\Users\peg\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\855CF405355328EC482A28D56A44CFB0_4B2274C4F7D9E7D3BB5540980456589C

C:\Users\peg\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\855CF405355328EC482A28D56A44CFB0_A91DA8FFE4E504C2D77546D178CA31EE

C:\Users\peg\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

C:\Users\peg\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\955CAB6FF6A24D5820D50B5BA1CF79C7_1A9CEF0D6BDBEE31E5C2CF9955E61B89

C:\Users\peg\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\955CAB6FF6A24D5820D50B5BA1CF79C7_AD9E7615297A3A83320AACE5801A04F9

C:\Users\peg\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\955CAB6FF6A24D5820D50B5BA1CF79C7_CFEA3385E24D822B0027B3D9A091B242

C:\Users\peg\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\A9A2923BC865F3B679E3C71FB2AB7C8F_96ECD40A8C4CBDCEEB0182409D0B9F3E

C:\Users\peg\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\ACF244F1A10D4DBED0D88EBA0C43A9B5_FC8166343A39961BDC05142842FDFE15

C:\Users\peg\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\AF48EB7F5955EA9F651376F7F40DA1AD_9D2C06693EE2F2E950F3DC3E085FAB48

C:\Users\peg\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\B8CC409ACDBF2A2FE04C56F2875B1FD6

C:\Users\peg\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\BBB768C456D9E2DCD3EF595C400D483D_64C05B9EB32FC3D0CE6CB126561EEBFF

C:\Users\peg\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\BD8A14C7C024625432CC03FE72E47EF0_26DA7CDB13150D3A2C9371C4BF3E337B

C:\Users\peg\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\BD8A14C7C024625432CC03FE72E47EF0_3748F35A2839CC3184286F38D7648073

C:\Users\peg\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\BD8A14C7C024625432CC03FE72E47EF0_56D5A51152132FA716821C1361187213

C:\Users\peg\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\BD8A14C7C024625432CC03FE72E47EF0_6176F5372CD8BEB45E2B9CFABE728CBA

C:\Users\peg\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\BD8A14C7C024625432CC03FE72E47EF0_FC135E102C54B95BDD8CDA9A659FB089

C:\Users\peg\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\C437972632A488222EA069E1572887C7_9AD1C6A04DF1BBA89E35E1142E44AE70

C:\Users\peg\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\C46E7B0F942663A1EDC8D9D6D7869173_42820CDFEA41DC84AAB89A6B63561873

C:\Users\peg\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\CA7B2D59B4E9BC2D316D1AECDFC12F63_AE3FE875193DBB7C9EC575C998F19368

C:\Users\peg\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\D0B71F66FD9B998F312CAECDC477CE6C_5B6B7C719C2322888B48B4571D19E583

C:\Users\peg\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\D0B71F66FD9B998F312CAECDC477CE6C_827D12AA5F451F1CD87CFCEFE3366FCA

C:\Users\peg\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\DBC3362DBFFA16F9E029A084D14E23BE_A6D84554AA391CDF15CBB81FDFEB4FE4

C:\Users\peg\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\E82ACDA9F5169E971D6B19B65E168F2A_0677396835A50784EE374899042A1967

C:\Users\peg\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F90F18257CBB4D84216AC1E1F3BB2C76

C:\Users\peg\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\FB788E090BC1F3AA2FBC9E8FB2859601

C:\Users\peg\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\05EC48341C277FE5110E7DFAA91377DC_49A0F7ED62B84361D2B23E89CDE34920

C:\Users\peg\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\0EBB3788D77094423275558212CCE7B1

C:\Users\peg\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\1060B7ADDE0FF6DE85637BF89FC4CEBC_49ED5C6881BAA22BDB94D2786FA54449

C:\Users\peg\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\130ADF60D1B7B3CF82CC6CA82D961601_12C50190AA5922E6D711F2DEE84C1EB9

C:\Users\peg\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\130ADF60D1B7B3CF82CC6CA82D961601_187C32FAE4B91C4F2B5E8E1A5C2D00C1

C:\Users\peg\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\130ADF60D1B7B3CF82CC6CA82D961601_E9BD40EB4FD91641D84964706F1DCF9C

C:\Users\peg\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\161B1C6D9CDC22FEB7269E395DF82F33_4D462FA1BB632B7C447956142FC6F7BF

C:\Users\peg\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\1DAF2884EC4DFA96BA4A58D4DBC9C406

C:\Users\peg\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\1E1CC43385506AF5B63E01C28389BC6F

C:\Users\peg\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\1F39B5CFACECFDE48DB25BCA2231FAC6_9EF574B96A7E6BC4B102FC08506B596E

C:\Users\peg\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\21253908F3CB05D51B1C2DA8B681A785

C:\Users\peg\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\23B523C9E7746F715D33C6527C18EB9D

C:\Users\peg\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\37C951188967C8EB88D99893D9D191FE

C:\Users\peg\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3B16E63E6837B29B5887B7E6D0600E2A_A14C45742D4B25513056BFB79CE0B0AD

C:\Users\peg\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3B61E7EBFA41B3041AD0562CCA8C702E_76759AB91AD2AC7C025F0D9455A557C7

C:\Users\peg\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C3948BE6E525B8A8CEE9FAC91C9E392_7639DBA23CDB69E31ECB5EF777AEECE3

C:\Users\peg\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C3948BE6E525B8A8CEE9FAC91C9E392_853A59BAA6F9925A0FE2F8FBA748AC65

C:\Users\peg\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C3948BE6E525B8A8CEE9FAC91C9E392_C8FA2A733FE2A95A8ABEB57315278F81

C:\Users\peg\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\4309200C3DBAD0F6F0DFACE9165FD092

C:\Users\peg\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\445D2A562929E59ED544CBBF32A5191A

C:\Users\peg\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\49514950C94E8026A2B06312597DFF49_33A0493B3756EC93EB52782457685E27

C:\Users\peg\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\49514950C94E8026A2B06312597DFF49_569BD946168DB279A65378F7D088CFD0

C:\Users\peg\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\54D62447E94D6E1A4BDF9F5D97B79ED0_0AE67D36D340ADDCC6C5DBDBC05C9BB4

C:\Users\peg\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\570FB14ABC805C46708F32F92F10C3B4

C:\Users\peg\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\57C8EDB95DF3F0AD4EE2DC2B8CFD4157

C:\Users\peg\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\5D980C21A14CEF8530BD8EA5D70F17A7_682EF379A37CE5EBAF7950150050209C

C:\Users\peg\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\5D980C21A14CEF8530BD8EA5D70F17A7_9BB2CC14F0A4127A8EEBD666C0A304F4

C:\Users\peg\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\60E31627FDA0A46932B0E5948949F2A5

C:\Users\peg\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\696F3DE637E6DE85B458996D49D759AD

C:\Users\peg\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\6AA3321A15A787985201D7A6820782F0_0AB46376AFB6F40B0426680E3025D384

C:\Users\peg\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\6AA3321A15A787985201D7A6820782F0_35BFA9D40D21E81B408449EB9D85CCA4

C:\Users\peg\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\6AA3321A15A787985201D7A6820782F0_4E35DE6F4FCFB7BE2C045F6B5ED89FC8

C:\Users\peg\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\7396C420A8E1BC1DA97F1AF0D10BAD21

C:\Users\peg\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\74BFD122C0875EC75DBE5C6DB4C59019

C:\Users\peg\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\77EC63BDA74BD0D0E0426DC8F8008506

C:\Users\peg\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\7B2238AACCEDC3F1FFE8E7EB5F575EC9

C:\Users\peg\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\7B8944BA8AD0EFDF0E01A43EF62BECD0_32EB2FF73F9134E5E46D72901359E2FF

C:\Users\peg\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\7B8944BA8AD0EFDF0E01A43EF62BECD0_408BF57CFB22C8CE7202361683829F8C

C:\Users\peg\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\7B8944BA8AD0EFDF0E01A43EF62BECD0_B2DB1CC4B5F2D2A802D56AAED525802D

C:\Users\peg\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\7B8944BA8AD0EFDF0E01A43EF62BECD0_B57EA088D6519B5217140D1FB68DD568

C:\Users\peg\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\7D1F03728133589A90656A87E482B21F

C:\Users\peg\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\7D266D9E1E69FA1EEFB9699B009B34C8_0A9BFDD75B598C2110CBF610C078E6E6

C:\Users\peg\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\7D266D9E1E69FA1EEFB9699B009B34C8_8CA7164968F366C9A94AC8E71C4BDD9B

C:\Users\peg\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\8059E9A0D314877E40FE93D8CCFB3C69_19BE54E9F66DDEC271EBF5365998BCDB

C:\Users\peg\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\8059E9A0D314877E40FE93D8CCFB3C69_9C14D89D568E2444ADBFED2F56F6372E

C:\Users\peg\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\8059E9A0D314877E40FE93D8CCFB3C69_A0A2B995DC16E7940C137A4A6563717A

C:\Users\peg\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\8059E9A0D314877E40FE93D8CCFB3C69_AC6FE152998A2ED55218BDBAC9A1435A

C:\Users\peg\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\8059E9A0D314877E40FE93D8CCFB3C69_E3CDEC366188F0B3F8D7D06BDD5886C3

C:\Users\peg\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\8059E9A0D314877E40FE93D8CCFB3C69_F30D3103EDEDC6C128BBEF011A465D77

C:\Users\peg\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\855CF405355328EC482A28D56A44CFB0_4B2274C4F7D9E7D3BB5540980456589C

C:\Users\peg\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\855CF405355328EC482A28D56A44CFB0_A91DA8FFE4E504C2D77546D178CA31EE

C:\Users\peg\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\94308059B57B3142E455B38A6EB92015

C:\Users\peg\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\955CAB6FF6A24D5820D50B5BA1CF79C7_1A9CEF0D6BDBEE31E5C2CF9955E61B89

C:\Users\peg\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\955CAB6FF6A24D5820D50B5BA1CF79C7_AD9E7615297A3A83320AACE5801A04F9

C:\Users\peg\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\955CAB6FF6A24D5820D50B5BA1CF79C7_CFEA3385E24D822B0027B3D9A091B242

C:\Users\peg\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\A9A2923BC865F3B679E3C71FB2AB7C8F_96ECD40A8C4CBDCEEB0182409D0B9F3E

C:\Users\peg\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\ACF244F1A10D4DBED0D88EBA0C43A9B5_FC8166343A39961BDC05142842FDFE15

C:\Users\peg\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\AF48EB7F5955EA9F651376F7F40DA1AD_9D2C06693EE2F2E950F3DC3E085FAB48

C:\Users\peg\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\B8CC409ACDBF2A2FE04C56F2875B1FD6

C:\Users\peg\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\BBB768C456D9E2DCD3EF595C400D483D_64C05B9EB32FC3D0CE6CB126561EEBFF

C:\Users\peg\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\BD8A14C7C024625432CC03FE72E47EF0_26DA7CDB13150D3A2C9371C4BF3E337B

C:\Users\peg\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\BD8A14C7C024625432CC03FE72E47EF0_3748F35A2839CC3184286F38D7648073

C:\Users\peg\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\BD8A14C7C024625432CC03FE72E47EF0_56D5A51152132FA716821C1361187213

C:\Users\peg\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\BD8A14C7C024625432CC03FE72E47EF0_6176F5372CD8BEB45E2B9CFABE728CBA

C:\Users\peg\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\BD8A14C7C024625432CC03FE72E47EF0_FC135E102C54B95BDD8CDA9A659FB089

C:\Users\peg\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\C437972632A488222EA069E1572887C7_9AD1C6A04DF1BBA89E35E1142E44AE70

C:\Users\peg\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\C46E7B0F942663A1EDC8D9D6D7869173_42820CDFEA41DC84AAB89A6B63561873

C:\Users\peg\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\CA7B2D59B4E9BC2D316D1AECDFC12F63_AE3FE875193DBB7C9EC575C998F19368

C:\Users\peg\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\D0B71F66FD9B998F312CAECDC477CE6C_5B6B7C719C2322888B48B4571D19E583

C:\Users\peg\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\D0B71F66FD9B998F312CAECDC477CE6C_827D12AA5F451F1CD87CFCEFE3366FCA

C:\Users\peg\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\DBC3362DBFFA16F9E029A084D14E23BE_A6D84554AA391CDF15CBB81FDFEB4FE4

C:\Users\peg\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\E82ACDA9F5169E971D6B19B65E168F2A_0677396835A50784EE374899042A1967

C:\Users\peg\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F90F18257CBB4D84216AC1E1F3BB2C76

C:\Users\peg\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\FB788E090BC1F3AA2FBC9E8FB2859601

C:\Users\peg\AppData\Local\Temp\avgnt.exe

C:\Windows\TEMP\AT_seed10254.rnd

C:\Windows\TEMP\AT_seed10557.rnd

C:\Windows\TEMP\AT_seed16775.rnd

C:\Windows\TEMP\AT_seed18607.rnd

C:\Windows\TEMP\AT_seed26684.rnd

C:\Windows\TEMP\AVSETUP_53c60702

C:\Windows\TEMP\CompatTelemetryLogs

C:\Windows\TEMP\HP

C:\Windows\TEMP\MpCmdRun.log

C:\Windows\TEMP\MpSigStub.log

C:\Windows\TEMP\TS_9EAE.tmp

C:\Windows\TEMP\TS_D327.tmp

C:\Windows\TEMP\HP\AtStatus

C:\Windows\TEMP\HP\AtStatus\hpinkstsb011lm.log

C:\Windows\TEMP\HP\AtStatus\spoolsv.log

C:\Windows\TEMP\CompatTelemetryLogs\CompatData_2014_07_17_08_47_45_1_000001ff.xml

C:\Windows\TEMP\CompatTelemetryLogs\compatscancache.dat

C:\Windows\TEMP\CompatTelemetryLogs\DeviceGroupingRules.xml

C:\Windows\TEMP\CompatTelemetryLogs\diagerr.xml

C:\Windows\TEMP\CompatTelemetryLogs\diagwrn.xml

C:\Windows\TEMP\CompatTelemetryLogs\Img

C:\Windows\TEMP\CompatTelemetryLogs\PreliminaryReport.xml

C:\Windows\TEMP\CompatTelemetryLogs\Resources

C:\Windows\TEMP\CompatTelemetryLogs\setupact.log

C:\Windows\TEMP\CompatTelemetryLogs\setuperr.log

C:\Windows\TEMP\CompatTelemetryLogs\TelemetryTransform.xsl

C:\Windows\TEMP\CompatTelemetryLogs\WicaDeviceFilters.xml

C:\Windows\TEMP\CompatTelemetryLogs\WICA_Devices_PEG-PC.xml

C:\Windows\TEMP\CompatTelemetryLogs\WICA_MigXml_PEG-PC.xml

C:\Windows\TEMP\CompatTelemetryLogs\WICA_Programs_PEG-PC.xml

C:\Windows\TEMP\CompatTelemetryLogs\WICA_QueryAppBlock_PEG-PC.xml

C:\Windows\TEMP\CompatTelemetryLogs\WICA_QueryBiosBlock_PEG-PC.xml

C:\Windows\TEMP\CompatTelemetryLogs\WICA_QueryDeviceBlock_PEG-PC.xml

C:\Windows\TEMP\CompatTelemetryLogs\WICA_SystemReport_PEG-PC.xml

C:\Windows\TEMP\CompatTelemetryLogs\WICA_System_PEG-PC.xml

C:\Windows\TEMP\CompatTelemetryLogs\WICA_TelemetryReport_PEG-PC.xml

C:\Windows\TEMP\CompatTelemetryLogs\Windows_TelemetryData.xml

C:\Windows\TEMP\CompatTelemetryLogs\Img\appicon_00000077bc5499187bd88bf431be0699edc9b841c77d.png

C:\Windows\TEMP\CompatTelemetryLogs\Img\appicon_0000049c365a4a97779934f74dd4bbfcfb601164c859.png

C:\Windows\TEMP\CompatTelemetryLogs\Img\appicon_00000fd0c7dec5d6fe9c6ee74db99fd42caddda32966.png

C:\Windows\TEMP\CompatTelemetryLogs\Img\appicon_000012f98eaca18710a26d4f14923181a1356845b717.png

C:\Windows\TEMP\CompatTelemetryLogs\Img\appicon_000013e59e2423a4af87f609f4300d00208bf1d5a884.png

C:\Windows\TEMP\CompatTelemetryLogs\Img\appicon_00001cac35342dd6730714a89812109e957093f55ead.png

C:\Windows\TEMP\CompatTelemetryLogs\Img\appicon_000020ffcaf515c702ecb4dafc3639c3bb8adfbcb7b5.png

C:\Windows\TEMP\CompatTelemetryLogs\Img\appicon_00002732c1018e17c949d2190b9814978f915ff1d3dc.png

C:\Windows\TEMP\CompatTelemetryLogs\Img\appicon_00002bbb229bdc0b69c1505c5d287f845dcae1593c5b.png

C:\Windows\TEMP\CompatTelemetryLogs\Img\appicon_000038b00e305ca447b112aff0dc142bc7eb1c98a629.png

C:\Windows\TEMP\CompatTelemetryLogs\Img\appicon_00003a9ff76e12596b9a312dc17657b80fa8b4f1b3f8.png

C:\Windows\TEMP\CompatTelemetryLogs\Img\appicon_00003aff9d9f072af4610f8d3b70c994a5c952b66221.png

C:\Windows\TEMP\CompatTelemetryLogs\Img\appicon_00003ddd692b68c3106e67b9a126c06b7c83c591c9db.png

C:\Windows\TEMP\CompatTelemetryLogs\Img\appicon_00003e29be18da2e6905c7812edcb5a7448d100309d4.png

C:\Windows\TEMP\CompatTelemetryLogs\Img\appicon_00004027b9d37e24fbed5239a6ab57b60f0d15673991.png

C:\Windows\TEMP\CompatTelemetryLogs\Img\appicon_00004072e93082b7bf6d3327a6e2cf64afcef07cbcf8.png

C:\Windows\TEMP\CompatTelemetryLogs\Img\appicon_00004946e149f051d9c3b0aea0a35856a8d86be08d30.png

C:\Windows\TEMP\CompatTelemetryLogs\Img\appicon_000049e58f2a1adc1cf4f16b2b83b036f744168cc6b0.png

C:\Windows\TEMP\CompatTelemetryLogs\Img\appicon_00004c6828a4fcdfe414237d7aa94b407396f313adc0.png

C:\Windows\TEMP\CompatTelemetryLogs\Img\appicon_00004c8431e3447ab651115879840c68676081ae928a.png

C:\Windows\TEMP\CompatTelemetryLogs\Img\appicon_00004f74af952f826d12ab1dd5736699c14c92d99b73.png

C:\Windows\TEMP\CompatTelemetryLogs\Img\appicon_00005b0b6c6d844c2bf13a2feda2a98f7c13e9728f08.png

C:\Windows\TEMP\CompatTelemetryLogs\Img\appicon_000062138bbd07e06e5d2846901f03b95e9c46ce0de2.png

C:\Windows\TEMP\CompatTelemetryLogs\Img\appicon_0000622b4bb2a24c4fbcef148cb7b2b37df8c0f1f5a0.png

C:\Windows\TEMP\CompatTelemetryLogs\Img\appicon_000063ad8d9b98e395bf30c19a56420171fc5c5f266c.png

C:\Windows\TEMP\CompatTelemetryLogs\Img\appicon_000065aa07a17eb5d0acd09b40f2f9cb15be1f4b413a.png

C:\Windows\TEMP\CompatTelemetryLogs\Img\appicon_00006a97c05d20a35137b26c774a04cb3fb7c1dac8f1.png

C:\Windows\TEMP\CompatTelemetryLogs\Img\appicon_00007cb779c55823bed50d2485fbdd4e6c26d59fb382.png

C:\Windows\TEMP\CompatTelemetryLogs\Img\appicon_00007f4b4a9cc7ab23df92bdff8685a3492af3c8bfdc.png

C:\Windows\TEMP\CompatTelemetryLogs\Img\appicon_00008b1286968f6935157eb777d9bb3fbf22289f9aa5.png

C:\Windows\TEMP\CompatTelemetryLogs\Img\appicon_00009117d7086489d0ea9c8153ca5937ff94db73e457.png

C:\Windows\TEMP\CompatTelemetryLogs\Img\appicon_0000924ceb5ab63b52f4c437889d40b0467fd4e28172.png

C:\Windows\TEMP\CompatTelemetryLogs\Img\appicon_00009aa66f21e2e7f5ce716662293c3cd2d0717f4ca9.png

C:\Windows\TEMP\CompatTelemetryLogs\Img\appicon_00009be175193760aeea9f2a96ad95b378e082b85059.png

C:\Windows\TEMP\CompatTelemetryLogs\Img\appicon_00009d7c6a08445012583af03bab840a7e1811115304.png

C:\Windows\TEMP\CompatTelemetryLogs\Img\appicon_0000a179070c31f89a96bee632b147c6fa93fd41aa56.png

C:\Windows\TEMP\CompatTelemetryLogs\Img\appicon_0000a1b20eafac67cc6bd3fbdf6c38d8d5b122a6ed2c.png

C:\Windows\TEMP\CompatTelemetryLogs\Img\appicon_0000abea7c329129995deb3558c587c6cf1163fcf424.png

C:\Windows\TEMP\CompatTelemetryLogs\Img\appicon_0000af687784274fb198dd6624b4f9861d8b38af9ed6.png

C:\Windows\TEMP\CompatTelemetryLogs\Img\appicon_0000b184210ceb6542ae9c816ea8142d64493716e6f1.png

C:\Windows\TEMP\CompatTelemetryLogs\Img\appicon_0000c129828687766ff0c643530c665d15a2b93ce78f.png

C:\Windows\TEMP\CompatTelemetryLogs\Img\appicon_0000c751e1324902f0f6722ef6ec273a3b21efd70cf5.png

C:\Windows\TEMP\CompatTelemetryLogs\Img\appicon_0000d04c103fe10a3b359acc59aa8886a39104f93d6e.png

C:\Windows\TEMP\CompatTelemetryLogs\Img\appicon_0000d59c1ffdf45b2de55522e8a719e1028291c03211.png

C:\Windows\TEMP\CompatTelemetryLogs\Img\appicon_0000d8404b4a7007fefcec2f7b2479577a1785323494.png

C:\Windows\TEMP\CompatTelemetryLogs\Img\appicon_0000dbfd152252cbfc504a987fc80cb8f15b615d9278.png

C:\Windows\TEMP\CompatTelemetryLogs\Img\appicon_0000dd0016aaa510d996516043a1e03a5eb72c3fb6d1.png

C:\Windows\TEMP\CompatTelemetryLogs\Img\appicon_0000e72a416b09349bdb5c8af9e1745d3f6db89ec1ce.png

C:\Windows\TEMP\CompatTelemetryLogs\Img\appicon_0000e893156fda6445748265fc189be550f637e4ebb2.png

C:\Windows\TEMP\CompatTelemetryLogs\Img\appicon_0000eba1e81e09698ac8635ed7569c3dd8ec008b27eb.png

C:\Windows\TEMP\CompatTelemetryLogs\Img\appicon_0000f263f54f0ff27742a1e55e83d9fec7ccbec170f6.png

C:\Windows\TEMP\CompatTelemetryLogs\Img\appicon_0000f47f66cc67262b70a886531e5d942c07de6ea4b1.png

C:\Windows\TEMP\CompatTelemetryLogs\Img\appicon_0000fd86166d8a7f66d88923f849e9fc0de154534088.png

C:\Windows\TEMP\CompatTelemetryLogs\Img\appicon_0000fddefab8903021cf7eb6856b4bff3bb06bb75ca8.png

C:\Windows\TEMP\CompatTelemetryLogs\Img\classicon_{36fc9e60-c465-11cf-8056-444553540000}.png

C:\Windows\TEMP\CompatTelemetryLogs\Img\classicon_{4d36e965-e325-11ce-bfc1-08002be10318}.png

C:\Windows\TEMP\CompatTelemetryLogs\Img\classicon_{4d36e966-e325-11ce-bfc1-08002be10318}.png

C:\Windows\TEMP\CompatTelemetryLogs\Img\classicon_{4d36e967-e325-11ce-bfc1-08002be10318}.png

C:\Windows\TEMP\CompatTelemetryLogs\Img\classicon_{4d36e968-e325-11ce-bfc1-08002be10318}.png

C:\Windows\TEMP\CompatTelemetryLogs\Img\classicon_{4d36e96a-e325-11ce-bfc1-08002be10318}.png

C:\Windows\TEMP\CompatTelemetryLogs\Img\classicon_{4d36e96b-e325-11ce-bfc1-08002be10318}.png

C:\Windows\TEMP\CompatTelemetryLogs\Img\classicon_{4d36e96c-e325-11ce-bfc1-08002be10318}.png

C:\Windows\TEMP\CompatTelemetryLogs\Img\classicon_{4d36e96d-e325-11ce-bfc1-08002be10318}.png

C:\Windows\TEMP\CompatTelemetryLogs\Img\classicon_{4d36e96e-e325-11ce-bfc1-08002be10318}.png

C:\Windows\TEMP\CompatTelemetryLogs\Img\classicon_{4d36e96f-e325-11ce-bfc1-08002be10318}.png

C:\Windows\TEMP\CompatTelemetryLogs\Img\classicon_{4d36e972-e325-11ce-bfc1-08002be10318}.png

C:\Windows\TEMP\CompatTelemetryLogs\Img\classicon_{4d36e979-e325-11ce-bfc1-08002be10318}.png

C:\Windows\TEMP\CompatTelemetryLogs\Img\classicon_{4d36e97d-e325-11ce-bfc1-08002be10318}.png

C:\Windows\TEMP\CompatTelemetryLogs\Img\classicon_{50127dc3-0f36-415e-a6cc-4cb3be910b65}.png

C:\Windows\TEMP\CompatTelemetryLogs\Img\classicon_{53d29ef7-377c-4d14-864b-eb3a85769359}.png

C:\Windows\TEMP\CompatTelemetryLogs\Img\classicon_{6bdd1fc6-810f-11d0-bec7-08002be2092f}.png

C:\Windows\TEMP\CompatTelemetryLogs\Img\classicon_{72631e54-78a4-11d0-bcf7-00aa00b7b32a}.png

C:\Windows\TEMP\CompatTelemetryLogs\Img\classicon_{745a17a0-74d3-11d0-b6fe-00a0c90f57da}.png

C:\Windows\TEMP\CompatTelemetryLogs\Img\ID_DVD_PLAYBACK_COMPAT.png

C:\Windows\TEMP\CompatTelemetryLogs\Img\ID_SECUREBOOT_INCAPABLE.png

Java Cache empty

Fin du rapport.

[pegotte]

voila j'ai fait exactement tout ce qui était demandé.

par contre lorsque que j'ouvre google chrome j'ai toujours la page " mysearchdial search" qui s'ouvre en premier alors que je souhaiterai gogle.

savez vous comment faire?