Fenetre intempestve

batto39 -  
Malekal_morte- Messages postés 180304 Date d'inscription   Statut Modérateur, Contributeur sécurité Dernière intervention   -
Bonjour,

voici le lien du rapport émis lors du balayage de mon ordi par adwcleaner. si quelqu'un peut m'aider merci d'avance.

http://pjjoint.malekal.com/files.php?id=20140410_z14c13e11w11k15
A voir également:

14 réponses

Réponse 1 / 14
Malekal_morte- Messages postés 180304 Date d'inscription   Statut Modérateur, Contributeur sécurité Dernière intervention   24 685
 
Salut,


Sur Firefox : Menu Outils / Modules complémentaires
Onglet Extension.
Donne la liste.

Sur Google Chrome : Menu en haut à droite puis Outils / Extensions
Donne la liste.

puis :

Faire un Scan OTL - Temps : Environ 40min
=============================================
OTL permet de diagnostiquer les programmes qui tournent et déceler des infections - Le programme va générer deux rapports OTL.txt et Extras.txt
Fournir les deux rapports :

Tu peux suivre les indications de cette page pour t'aider : https://www.malekal.com/tutorial-otl/

* Télécharge http://www.geekstogo.com/forum/files/file/398-otl-oldtimers-list-it/ sur ton bureau.
(Sous Vista/Win7, il faut cliquer droit sur OTL et choisir Exécuter en tant qu'administrateur)

Dans le cas d'Avast!, ne pas lancer le programme dans la Sandbox (voir lien d'aide ci-dessus).

* Lance OTL
* En haut à droite de Analyse rapide, coche "tous les utilisateurs"
* Clique sur le bouton Analyse.

**** Si durant le scan - OTL ne répond pas, ne touche à rien et laisse le scan se poursuivre ****

* Quand le scan est fini, utilise le site http://pjjoint.malekal.com/ pour envoyer le rapport OTL.txt (et Extra.txt si présent).
Donne le ou les liens pjjoint qui pointent vers ces rapports ici dans une réponse.
Je répète : donne le lien du rapport pjjoint ici en réponse.

NE PAS COPIER/COLLER LE RAPPORT ICI - DONNER LE LIEN PJJOINT DANS UN NOUVEAU MESSAGE


0
Réponse 2 / 14
batto39
 
voici la liste des extensions ainsi que le rapport du scan otl :

HQVid1.9v3 1.26.35
HQ Videos is an add-on for your Internet browser that enhances your online experience by displaying online videos in their highest quality format available. Autorisations Accéder au site Web

Autoriser en mode navigation privée

Activée

QR Image from URL 211
Autorisations Accéder au site Web

Autoriser en mode navigation privée

Activée

sAfeweb 1.1
Autorisations

Autoriser en mode navigation privée

Activée
Pas depuis le Chrome Web Store

SNT 2.1
Autorisations

Autoriser en mode navigation privée

Activée
Pas depuis le Chrome Web Store

SNT 2.1
Autorisations

Autoriser en mode navigation privée

Activée
Pas depuis le Chrome Web Store

ssAfeweb 1.1
Autorisations

Autoriser en mode nav


OTL logfile created on: 10/04/2014 15:59:20 - Run 2
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\jeremy\Desktop
Professional Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.11.9600.16521)
Locale: 0000040C | Country: France | Language: FRA | Date Format: dd/MM/yyyy

3,25 Gb Total Physical Memory | 2,18 Gb Available Physical Memory | 67,19% Memory free
6,49 Gb Paging File | 5,10 Gb Available in Paging File | 78,58% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 465,75 Gb Total Space | 135,16 Gb Free Space | 29,02% Space Free | Partition Type: NTFS
Drive G: | 931,50 Gb Total Space | 498,72 Gb Free Space | 53,54% Space Free | Partition Type: NTFS

Computer Name: LOULOU | User Name: jeremy | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

[color=#E56717]========== Processes (SafeList) ==========/color

PRC - [2014/04/10 15:51:30 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\jeremy\Desktop\OTL (3).exe
PRC - [2014/04/08 15:36:05 | 000,541,696 | ---- | M] () -- C:\Program Files\003\nuttkoqiez32.exe
PRC - [2014/03/12 16:00:52 | 001,283,616 | ---- | M] (SecureAssist) -- C:\Program Files\SupraSavings\SecureAssist.exe
PRC - [2014/03/12 10:53:00 | 001,934,016 | ---- | M] (Software Updater) -- C:\Program Files\Software Updater\SoftwareUpdater.exe
PRC - [2014/01/24 18:56:43 | 000,400,664 | ---- | M] (Tlapia) -- C:\Program Files\sysTPL\sysTPLService.exe
PRC - [2014/01/24 18:56:41 | 000,399,640 | ---- | M] (Tlapia) -- C:\Program Files\sysTPL\sysTPLMonitor.exe
PRC - [2014/01/20 12:22:52 | 002,117,968 | ---- | M] (CybelSoft) -- C:\Program Files\ma-config.com\MaConfigAgent.exe
PRC - [2013/12/18 20:42:32 | 000,065,432 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
PRC - [2013/10/11 04:40:20 | 004,457,688 | ---- | M] (Emsisoft GmbH) -- C:\Program Files\Online Armor\oasrv.exe
PRC - [2013/10/11 04:40:14 | 000,584,864 | ---- | M] (Emsisoft GmbH) -- C:\Program Files\Online Armor\OAcat.exe
PRC - [2013/07/22 09:33:00 | 000,470,304 | ---- | M] (Glarysoft Ltd) -- C:\Program Files\Glary Utilities 3\Integrator.exe
PRC - [2013/06/10 17:58:38 | 001,966,960 | ---- | M] () -- C:\Program Files\Orange\Assistance Livebox\dedicarz\DedicarzService.exe
PRC - [2013/05/21 06:44:22 | 000,144,368 | R--- | M] (Symantec Corporation) -- C:\Program Files\Norton AntiVirus\Engine\20.4.0.40\ccSvcHst.exe
PRC - [2013/04/30 05:53:00 | 000,453,632 | ---- | M] (AMD) -- C:\Windows\System32\atieclxx.exe
PRC - [2013/04/30 05:52:26 | 000,217,088 | ---- | M] (AMD) -- C:\Windows\System32\atiesrxx.exe
PRC - [2013/04/30 00:24:04 | 000,291,840 | ---- | M] (Advanced Micro Devices, Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
PRC - [2013/04/08 18:44:12 | 001,320,496 | ---- | M] (pdfforge GmbH) -- C:\Program Files\PDF Architect\HelperService.exe
PRC - [2013/04/08 18:43:36 | 000,799,280 | ---- | M] (pdfforge GmbH) -- C:\Program Files\PDF Architect\ConversionService.exe
PRC - [2013/03/29 17:07:22 | 002,081,792 | ---- | M] (CHENGDU YIWO Tech Development Co., Ltd) -- C:\Program Files\EaseUS\EaseUS Partition Master 9.3.0\bin\EpmNews.exe
PRC - [2012/12/07 17:26:56 | 000,167,424 | ---- | M] () -- C:\Program Files\HTC\Internet Pass-Through\PassThruSvr.exe
PRC - [2012/11/23 04:48:41 | 000,049,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskhost.exe
PRC - [2012/07/20 17:29:42 | 000,075,648 | ---- | M] (F-Secure) -- C:\Program Files\Orange\mes contenus - mon disque\mounter.exe
PRC - [2011/02/25 07:30:54 | 002,616,320 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2010/02/03 16:17:18 | 005,756,544 | ---- | M] (ASUSTeK Computer Inc.) -- C:\Program Files\ASUS\EPU-4 Engine\FourEngine.exe


[color=#E56717]========== Modules (No Company Name) ==========/color

MOD - [2014/02/13 04:41:27 | 000,240,128 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\WindowsFormsIntegra#\8f2441d71e42bd17d5afd83524c67c57\WindowsFormsIntegration.ni.dll
MOD - [2014/02/13 04:40:07 | 002,297,856 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Core\868ad9d8acc0bf80a973c0e4e9cae4fa\System.Core.ni.dll
MOD - [2014/02/13 04:36:46 | 000,368,128 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\72284863df9bea3f081ae98996400619\PresentationFramework.Aero.ni.dll
MOD - [2014/02/13 04:36:37 | 011,922,944 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Web\4b1795df6372b251625f958595e08d3d\System.Web.ni.dll
MOD - [2014/02/13 04:36:32 | 000,771,584 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\59312674865dc2a19c27f9f460b1673b\System.Runtime.Remoting.ni.dll
MOD - [2014/02/13 04:36:21 | 014,340,096 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\f703846404bb66a4ae03ef8133755007\PresentationFramework.ni.dll
MOD - [2014/02/13 04:35:56 | 012,436,480 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\8bc548587e91ecf0552a40e47bbf99cc\System.Windows.Forms.ni.dll
MOD - [2014/02/13 04:35:49 | 001,593,344 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\5c24d3b0041ebf4f48a93615b9fa3de9\System.Drawing.ni.dll
MOD - [2014/02/13 04:35:46 | 000,060,928 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\UIAutomationProvider\549aa924ef5af7232f4024eb6f8cb97a\UIAutomationProvider.ni.dll
MOD - [2014/02/13 04:35:45 | 012,238,336 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationCore\660ac5d6da77df8e86fb26f05c6a9816\PresentationCore.ni.dll
MOD - [2014/02/13 04:35:36 | 003,348,480 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\1d696b2d3de530f7ee971070263667ff\WindowsBase.ni.dll
MOD - [2014/02/13 04:35:29 | 005,464,064 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\217ece46920546d718414291d463bb1c\System.Xml.ni.dll
MOD - [2014/02/13 04:35:24 | 000,978,432 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\5b6ddf934128d538cd5cd77bf4209b93\System.Configuration.ni.dll
MOD - [2014/02/13 04:35:23 | 007,989,760 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System\b3a78269847005365001c33870cd121f\System.ni.dll
MOD - [2014/02/13 04:35:17 | 011,499,520 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\ede2c6c842840e009f01bcc74fa4c457\mscorlib.ni.dll
MOD - [2013/07/22 09:34:20 | 000,080,160 | ---- | M] () -- C:\Program Files\Glary Utilities 3\zlib1.dll
MOD - [2013/06/18 16:49:28 | 000,016,384 | ---- | M] () -- C:\Program Files\ATI Technologies\ATI.ACE\Branding\Branding.dll
MOD - [2013/04/30 00:24:10 | 000,095,232 | ---- | M] () -- C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Proxy.Native.dll
MOD - [2013/04/30 00:08:08 | 000,369,152 | ---- | M] () -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.CrossDisplay.Graphics.Dashboard.dll
MOD - [2010/11/13 01:35:41 | 000,430,080 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\System.Windows.Forms.resources\2.0.0.0_fr_b77a5c561934e089\System.Windows.Forms.resources.dll
MOD - [2010/11/13 01:35:38 | 000,311,296 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\mscorlib.resources\2.0.0.0_fr_b77a5c561934e089\mscorlib.resources.dll
MOD - [2010/11/05 04:00:12 | 000,212,992 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\System.resources\2.0.0.0_fr_b77a5c561934e089\System.resources.dll
MOD - [2009/09/30 05:33:08 | 000,024,576 | R--- | M] () -- C:\Windows\System32\AsIO.dll
MOD - [2009/06/08 20:37:06 | 000,245,760 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\PresentationFramework.resources\3.0.0.0_fr_31bf3856ad364e35\PresentationFramework.resources.dll
MOD - [2009/03/19 22:35:52 | 000,208,896 | ---- | M] () -- C:\Program Files\ASUS\EPU-4 Engine\AiNap.dll
MOD - [2009/03/19 22:35:50 | 000,008,704 | ---- | M] () -- C:\Program Files\ASUS\EPU-4 Engine\vvc.dll
MOD - [2009/01/15 14:55:10 | 000,565,248 | ---- | M] () -- C:\Program Files\ASUS\EPU-4 Engine\pngio.dll


[color=#E56717]========== Services (SafeList) ==========/color

SRV - File not found [Auto | Stopped] -- C:\Users\jeremy\AppData\Roaming\VOPackage\VOsrv.exe -- (vosr)
SRV - File not found [Auto | Running] -- C:\Program Files\Orange\mes contenus -- (DokanMounter)
SRV - [2014/04/08 15:36:05 | 000,541,696 | ---- | M] () [Auto | Running] -- C:\Program Files\003\nuttkoqiez32.exe -- (nuttkoqiez32)
SRV - [2014/03/13 17:53:27 | 000,257,928 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\System32\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2014/03/12 16:00:52 | 001,283,616 | ---- | M] (SecureAssist) [Auto | Running] -- C:\Program Files\SupraSavings\SecureAssist.exe -- (SecureAssist)
SRV - [2014/03/01 05:38:23 | 000,108,032 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\IEEtwCollector.exe -- (IEEtwCollectorService)
SRV - [2014/01/24 18:56:43 | 000,400,664 | ---- | M] (Tlapia) [Auto | Running] -- C:\Program Files\sysTPL\sysTPLService.exe -- (sysTPLService.exe)
SRV - [2014/01/24 18:56:41 | 000,399,640 | ---- | M] (Tlapia) [Auto | Running] -- C:\Program Files\sysTPL\sysTPLMonitor.exe -- (sysTPLMonitor.exe)
SRV - [2014/01/21 16:54:18 | 000,699,912 | ---- | M] (Orange SA) [Auto | Stopped] -- C:\Program Files\Orange\OrangeUpdate\Service\OUCore.exe -- (Orange update Core Service)
SRV - [2014/01/20 12:22:52 | 002,117,968 | ---- | M] (CybelSoft) [Auto | Running] -- C:\Program Files\ma-config.com\MaConfigAgent.exe -- (MaConfigAgent)
SRV - [2013/12/18 20:42:32 | 000,065,432 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2013/11/26 18:16:37 | 000,119,920 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2013/10/11 04:40:20 | 004,457,688 | ---- | M] (Emsisoft GmbH) [Auto | Running] -- C:\Program Files\Online Armor\oasrv.exe -- (SvcOnlineArmor)
SRV - [2013/10/11 04:40:14 | 000,584,864 | ---- | M] (Emsisoft GmbH) [Auto | Running] -- C:\Program Files\Online Armor\OAcat.exe -- (OAcat)
SRV - [2013/06/10 17:58:38 | 001,966,960 | ---- | M] () [Auto | Running] -- C:\Program Files\Orange\Assistance Livebox\dedicarz\DedicarzService.exe -- (Dedicarz Service)
SRV - [2013/05/27 06:57:27 | 000,680,960 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\mpsvc.dll -- (WinDefend)
SRV - [2013/05/21 06:44:22 | 000,144,368 | R--- | M] (Symantec Corporation) [Auto | Running] -- C:\Program Files\Norton AntiVirus\Engine\20.4.0.40\ccSvcHst.exe -- (NAV)
SRV - [2013/04/30 05:52:26 | 000,217,088 | ---- | M] (AMD) [Auto | Running] -- C:\Windows\System32\atiesrxx.exe -- (AMD External Events Utility)
SRV - [2013/04/30 00:24:04 | 000,291,840 | ---- | M] (Advanced Micro Devices, Inc.) [Auto | Running] -- C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe -- (AMD FUEL Service)
SRV - [2013/04/08 18:44:12 | 001,320,496 | ---- | M] (pdfforge GmbH) [Auto | Running] -- C:\Program Files\PDF Architect\HelperService.exe -- (PDF Architect Helper Service)
SRV - [2013/04/08 18:43:36 | 000,799,280 | ---- | M] (pdfforge GmbH) [Auto | Running] -- C:\Program Files\PDF Architect\ConversionService.exe -- (PDF Architect Service)
SRV - [2013/02/04 17:43:22 | 000,155,824 | ---- | M] (Avanquest Software) [On_Demand | Stopped] -- C:\Program Files\Sony\Sony PC Companion\PCCService.exe -- (Sony PC Companion)
SRV - [2013/01/08 13:53:48 | 000,161,536 | ---- | M] (Skype Technologies) [On_Demand | Stopped] -- C:\Program Files\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2012/12/07 17:26:56 | 000,167,424 | ---- | M] () [Auto | Running] -- C:\Program Files\HTC\Internet Pass-Through\PassThruSvr.exe -- (PassThru Service)
SRV - [2012/12/05 03:40:03 | 000,143,928 | R--- | M] (Symantec Corporation) [On_Demand | Stopped] -- C:\Program Files\Norton Management\Engine\3.2.2.12\ccSvcHst.exe -- (MCLIENT)
SRV - [2012/07/12 18:32:22 | 001,239,952 | ---- | M] (Lavasoft Limited) [On_Demand | Stopped] -- C:\Program Files\Ad-Aware Antivirus\AdAwareService.exe -- (Ad-Aware Service)
SRV - [2012/07/06 21:15:53 | 001,343,400 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\Wat\WatAdminSvc.exe -- (WatAdminSvc)
SRV - [2011/12/19 13:20:06 | 003,289,032 | ---- | M] (GFI Software) [Auto | Stopped] -- C:\Program Files\Ad-Aware Antivirus\SBAMSvc.exe -- (SBAMSvc)
SRV - [2009/07/14 03:16:15 | 000,016,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\StorSvc.dll -- (StorSvc)
SRV - [2009/07/14 03:16:13 | 000,025,088 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\sensrsvc.dll -- (SensrSvc)
SRV - [2009/07/14 03:16:12 | 001,004,544 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\PeerDistSvc.dll -- (PeerDistSvc)


[color=#E56717]========== Driver Services (SafeList) ==========/color

DRV - File not found [Kernel | System | Stopped] -- -- (ASPI32)
DRV - File not found [Kernel | Boot | Stopped] -- System32\drivers\tymjcx.sys -- (asgv)
DRV - [2014/04/10 15:07:22 | 000,040,776 | ---- | M] (Malwarebytes Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\mbamswissarmy.sys -- (MBAMSwissArmy)
DRV - [2014/03/26 10:19:15 | 000,395,992 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_20.3.1.22\Definitions\IPSDefs\20140409.001\IDSvix86.sys -- (IDSVix86)
DRV - [2014/03/19 03:24:12 | 001,098,968 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_20.3.1.22\Definitions\BASHDefs\20140319.001\BHDrvx86.sys -- (BHDrvx86)
DRV - [2013/11/21 16:38:07 | 000,108,120 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Unknown] -- C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilDrv11312.sys -- (EraserUtilDrv11312)
DRV - [2013/11/21 16:38:06 | 000,376,920 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys -- (eeCtrl)
DRV - [2013/10/23 16:28:54 | 000,016,160 | ---- | M] (CybelSoft) [Kernel | On_Demand | Stopped] -- C:\Program Files\ma-config.com\Drivers\ma-config_x86.sys -- (ma-config_x86)
DRV - [2013/10/11 04:41:04 | 000,044,984 | ---- | M] () [Kernel | System | Running] -- C:\Windows\System32\drivers\oahlp32.sys -- (oahlpXX)
DRV - [2013/10/11 04:40:48 | 000,210,360 | ---- | M] () [File_System | System | Running] -- C:\Windows\System32\drivers\OADriver.sys -- (OADevice)
DRV - [2013/10/02 19:28:15 | 000,142,496 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\SYMEVENT.SYS -- (SymEvent)
DRV - [2013/10/02 12:14:12 | 001,612,376 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_20.3.1.22\Definitions\VirusDefs\20140409.035\NAVEX15.SYS -- (NAVEX15)
DRV - [2013/10/02 12:14:12 | 000,093,272 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_20.3.1.22\Definitions\VirusDefs\20140409.035\NAVENG.SYS -- (NAVENG)
DRV - [2013/10/01 19:06:28 | 000,013,560 | ---- | M] (GFI Software) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\gfibto.sys -- (gfibto)
DRV - [2013/07/22 09:34:52 | 000,011,552 | ---- | M] (Glarysoft Ltd) [Kernel | On_Demand | Running] -- C:\Program Files\Glary Utilities 3\ProcObsrv.sys -- (ProcObsrv)
DRV - [2013/05/23 07:25:28 | 000,934,488 | ---- | M] (Symantec Corporation) [File_System | Boot | Running] -- C:\Windows\System32\drivers\NAV\1404000.028\symefa.sys -- (SymEFA)
DRV - [2013/05/21 07:02:00 | 000,367,704 | ---- | M] (Symantec Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\NAV\1404000.028\symds.sys -- (SymDS)
DRV - [2013/05/16 07:02:14 | 000,603,224 | ---- | M] (Symantec Corporation) [File_System | System | Running] -- C:\Windows\System32\drivers\NAV\1404000.028\srtsp.sys -- (SRTSP)
DRV - [2013/04/30 06:14:44 | 010,070,016 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\atikmdag.sys -- (atikmdag)
DRV - [2013/04/30 06:14:44 | 010,070,016 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\atikmdag.sys -- (amdkmdag)
DRV - [2013/04/30 04:47:52 | 000,290,304 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\atikmpag.sys -- (amdkmdap)
DRV - [2013/04/25 02:43:56 | 000,339,544 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Windows\System32\drivers\NAV\1404000.028\symnets.sys -- (SymNetS)
DRV - [2013/04/16 04:41:14 | 000,134,744 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Windows\System32\drivers\NAV\1404000.028\ccsetx86.sys -- (ccSet_NAV)
DRV - [2013/04/11 11:06:45 | 000,041,584 | ---- | M] (ThreatTrack Security) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\gfiark.sys -- (gfiark)
DRV - [2013/04/04 15:50:32 | 000,022,856 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\System32\drivers\mbam.sys -- (MBAMProtector)
DRV - [2013/03/07 09:49:20 | 000,014,920 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\System32\epmntdrv.sys -- (epmntdrv)
DRV - [2013/03/07 09:49:20 | 000,009,160 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\System32\EuGdiDrv.sys -- (EuGdiDrv)
DRV - [2013/03/05 03:39:19 | 000,175,264 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Windows\System32\drivers\NAV\1404000.028\ironx86.sys -- (SymIRON)
DRV - [2013/03/05 03:21:35 | 000,032,344 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Windows\System32\drivers\NAV\1404000.028\srtspx.sys -- (SRTSPX)
DRV - [2012/12/07 18:27:50 | 000,023,040 | ---- | M] (Windows (R) Win 7 DDK provider) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\htcnprot.sys -- (htcnprot)
DRV - [2012/10/03 19:19:14 | 000,134,304 | R--- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Windows\System32\drivers\MCLIENT\0302020.00C\ccsetx86.sys -- (ccSet_MCLIENT)
DRV - [2012/08/23 16:44:32 | 000,014,848 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\rdpvideominiport.sys -- (RdpVideoMiniport)
DRV - [2012/08/23 16:41:34 | 000,027,136 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\TsUsbGD.sys -- (TsUsbGD)
DRV - [2012/08/23 16:40:25 | 000,049,664 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV - [2012/07/19 13:52:37 | 000,025,200 | ---- | M] (Sony Ericsson Mobile Communications) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ggsemc.sys -- (ggsemc)
DRV - [2012/07/19 13:52:37 | 000,012,400 | ---- | M] (Sony Ericsson Mobile Communications) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ggflt.sys -- (ggflt)
DRV - [2012/07/18 15:16:32 | 000,064,384 | ---- | M] (Windows (R) Win 7 DDK provider) [File_System | Auto | Running] -- C:\Windows\System32\drivers\dokan.sys -- (Dokan)
DRV - [2012/03/05 17:04:30 | 000,045,184 | ---- | M] (Advanced Micro Devices) [Kernel | Auto | Running] -- C:\Program Files\ATI Technologies\ATI.ACE\Fuel\i386\AODDriver2.sys -- (AODDriver4.1)
DRV - [2011/12/19 12:44:24 | 000,093,816 | ---- | M] (GFI Software) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\sbhips.sys -- (sbhips)
DRV - [2011/11/29 06:59:52 | 000,077,816 | ---- | M] (GFI Software) [File_System | Auto | Running] -- C:\Windows\System32\drivers\sbapifs.sys -- (sbapifs)
DRV - [2011/10/26 14:23:40 | 000,101,112 | ---- | M] (GFI Software) [Kernel | System | Running] -- C:\Windows\System32\drivers\SBREDrv.sys -- (SBRE)
DRV - [2011/02/11 23:23:34 | 000,035,088 | ---- | M] (CACE Technologies, Inc.) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\npf.sys -- (npf)
DRV - [2010/11/20 23:29:03 | 000,175,360 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\vmbus.sys -- (vmbus)
DRV - [2010/11/20 23:29:03 | 000,062,464 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\dmvsc.sys -- (dmvsc)
DRV - [2010/11/20 23:29:03 | 000,040,704 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\vmstorfl.sys -- (storflt)
DRV - [2010/11/20 23:29:03 | 000,035,968 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\winusb.sys -- (WinUsb)
DRV - [2010/11/20 23:29:03 | 000,028,032 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\storvsc.sys -- (storvsc)
DRV - [2010/11/20 23:29:03 | 000,017,920 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\VMBusHID.sys -- (VMBusHID)
DRV - [2010/11/20 23:29:03 | 000,005,632 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\vms3cap.sys -- (s3cap)
DRV - [2010/05/20 09:30:59 | 000,014,392 | ---- | M] (Advanced Micro Devices Inc.) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\AtiPcie.sys -- (AtiPcie)
DRV - [2010/02/18 09:18:22 | 000,037,944 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\amdiox86.sys -- (amdiox86)
DRV - [2009/10/26 23:54:24 | 000,025,088 | ---- | M] (HTC, Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ANDROIDUSB.sys -- (HTCAND32)
DRV - [2009/08/04 04:28:18 | 000,011,296 | R--- | M] () [Kernel | System | Running] -- C:\Windows\System32\drivers\AsIO.sys -- (AsIO)
DRV - [2009/07/17 05:36:30 | 000,013,216 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\ASACPI.sys -- (MTsensor)
DRV - [2009/07/14 01:45:33 | 000,083,456 | ---- | M] (Brother Industries Ltd.) [Kernel | System | Running] -- C:\Windows\System32\drivers\serial.sys -- (Serial)
DRV - [2009/03/25 13:44:40 | 000,038,400 | ---- | M] (Samsung Electronics Co., Ltd.) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\DgivEcp.sys -- (DgiVecp)
DRV - [2007/08/13 04:51:11 | 000,005,120 | ---- | M] (Samsung Electronics) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\SSPORT.SYS -- (SSPORT)


[color=#E56717]========== Standard Registry (SafeList) ==========/color


[color=#E56717]========== Internet Explorer ==========/color

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,CustomizeSearch = http://www.google.com/
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/
IE - HKLM\..\SearchScopes,DefaultScope =
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKLM\..\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2492}: "URL" = http://www.default-search.net/search?sid=492&aid=102&itype=n&ver=11471&tm=312&src=ds&p={searchTerms}

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://www.google.com
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.default-search.net?sid=492&aid=102&itype=n&ver=11471&tm=312&src=hmp
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com
IE - HKCU\Software\Microsoft\Internet Explorer\SearchURL\y, = http://yandex.ru/yandsearch?win=71&clid=1989710&text=%s
IE - HKCU\..\SearchScopes,DefaultScope =
IE - HKCU\..\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2492}: "URL" = http://www.default-search.net/search?sid=492&aid=102&itype=n&ver=11471&tm=312&src=ds&p={searchTerms}
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 1
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyServer" = http=127.0.0.1:8877

[color=#E56717]========== FireFox ==========/color

FF - prefs.js..browser.search.useDBForOrder: true
FF - user.js - File not found

FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32_12_0_0_77.dll ()
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Browser Plugin,version=1.0.0: C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0: C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF - HKLM\Software\MozillaPlugins\@ei.UtilityChest_49.com/Plugin: File not found
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.45.2: C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.45.2: C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: C:\Windows\system32\Wat\npWatWeb.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3555.0308: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@pages.tvunetworks.com/WebPlayer: C:\Program Files\TVUPlayer\npTVUAx.dll File not found
FF - HKLM\Software\MozillaPlugins\@playstation.com/PsndlCheck,version=1.00: File not found
FF - HKLM\Software\MozillaPlugins\@SonyCreativeSoftware.com/Media Go,version=1.0: C:\Program Files\Sony\Media Go\npmediago.dll File not found
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.23.9\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.23.9\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.0.1: C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.0.8: C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\@acestream.net/acestreamplugin,version=2.1.7.2: C:\Users\jeremy\AppData\Roaming\ACEStream\player\npace_plugin.dll (Innovative Digital Technologies)
FF - HKCU\Software\MozillaPlugins\sony.com/MediaGoDetector: C:\Program Files\Sony\Media Go\npMediaGoDetector.dll (Sony Network Entertainment International LLC)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{BBDA0591-3099-440a-AA10-41764D9DB4DB}: C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_20.3.1.22\IPSFF [2013/10/10 15:48:12 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\***@***: C:\Program Files\PDF Architect\FFPDFArchitectExt [2014/04/03 20:02:09 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 23.0\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2013/10/01 19:31:59 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\***@***: C:\Users\jeremy\AppData\Roaming\ACEStream\extensions\firefox\***@*** [2013/11/12 15:56:54 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\{5906c4a5-6de6-4456-b5f6-984436f80a1a}: C:\Program Files\Re-markit-soft\155.xpi
FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 23.0\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2013/10/01 19:31:59 | 000,000,000 | ---D | M]

[2013/11/19 18:31:15 | 000,000,000 | ---D | M] (No name found) -- C:\Users\jeremy\AppData\Roaming\mozilla\Extensions
[2013/11/19 18:31:15 | 000,000,000 | ---D | M] (No name found) -- C:\Users\jeremy\AppData\Roaming\mozilla\Extensions\***@***
[2013/02/18 11:16:25 | 000,000,000 | ---D | M] (Smiley Bar for Facebook) -- C:\Users\jeremy\AppData\Roaming\mozilla\Extensions\statuswinks@StatusWinks
[2014/04/10 15:22:03 | 000,000,000 | ---D | M] (No name found) -- C:\Users\jeremy\AppData\Roaming\mozilla\Firefox\Profiles\extensions
[2014/04/08 17:08:53 | 000,000,000 | ---D | M] (No name found) -- C:\Users\jeremy\AppData\Roaming\mozilla\Firefox\Profiles\extensions\extensions
[2014/04/10 15:14:08 | 000,000,000 | ---D | M] (No name found) -- C:\Users\jeremy\AppData\Roaming\mozilla\Firefox\Profiles\extensions\searchplugins
[2014/04/10 15:14:04 | 000,000,000 | ---D | M] (No name found) -- C:\Users\jeremy\AppData\Roaming\mozilla\Firefox\Profiles\ep6p6osq.default\Extensions
[2014/04/09 10:12:32 | 000,000,000 | ---D | M] (Settings Manager) -- C:\Users\jeremy\AppData\Roaming\mozilla\Firefox\Profiles\ep6p6osq.default\Extensions\{35FB143E-3B2D-374D-E78E-3E8B20AB8C9C}
[2014/04/09 12:51:28 | 000,000,000 | ---D | M] ("Shopping Helper Smartbar") -- C:\Users\jeremy\AppData\Roaming\mozilla\Firefox\Profiles\ep6p6osq.default\Extensions\{5d5d2b0b-a2ef-11be-5752-a437884a1dd1}
[2014/04/08 18:02:53 | 000,000,000 | ---D | M] ("Freeven pro 1.2") -- C:\Users\jeremy\AppData\Roaming\mozilla\Firefox\Profiles\ep6p6osq.default\Extensions\***@***
[2014/04/08 17:44:19 | 000,000,000 | ---D | M] ("Easy Deals v 1.01") -- C:\Users\jeremy\AppData\Roaming\mozilla\Firefox\Profiles\ep6p6osq.default\Extensions\***@***
[2014/04/08 15:34:43 | 000,000,000 | ---D | M] ("Torntv V9.0") -- C:\Users\jeremy\AppData\Roaming\mozilla\Firefox\Profiles\ep6p6osq.default\Extensions\***@***
[2014/04/08 18:05:35 | 000,000,000 | ---D | M] ("MediaPlayerplus") -- C:\Users\jeremy\AppData\Roaming\mozilla\Firefox\Profiles\ep6p6osq.default\Extensions\***@***
[2014/04/09 11:45:52 | 000,000,000 | ---D | M] (ssAfeweb) -- C:\Users\jeremy\AppData\Roaming\mozilla\Firefox\Profiles\ep6p6osq.default\Extensions\***@***
[2014/04/09 11:45:52 | 000,000,000 | ---D | M] (SNT) -- C:\Users\jeremy\AppData\Roaming\mozilla\Firefox\Profiles\ep6p6osq.default\Extensions\***@***
[2014/04/09 11:45:52 | 000,000,000 | ---D | M] (YoutubeAdblocker) -- C:\Users\jeremy\AppData\Roaming\mozilla\Firefox\Profiles\ep6p6osq.default\Extensions\***@***
[2014/04/08 16:43:59 | 000,000,000 | ---D | M] ("HQVid1.9v3") -- C:\Users\jeremy\AppData\Roaming\mozilla\Firefox\Profiles\ep6p6osq.default\Extensions\***@***
[2014/04/09 11:45:51 | 000,000,000 | ---D | M] (sAfeweb) -- C:\Users\jeremy\AppData\Roaming\mozilla\Firefox\Profiles\ep6p6osq.default\Extensions\***@***
[2014/04/09 11:45:50 | 000,000,000 | ---D | M] (ssaffeweb) -- C:\Users\jeremy\AppData\Roaming\mozilla\Firefox\Profiles\ep6p6osq.default\Extensions\***@***
[2014/04/09 12:51:28 | 000,000,000 | ---D | M] (No name found) -- C:\Users\jeremy\AppData\Roaming\mozilla\Firefox\Profiles\ep6p6osq.default\Extensions\staged
[2014/04/09 11:45:50 | 000,000,000 | ---D | M] (SNT) -- C:\Users\jeremy\AppData\Roaming\mozilla\Firefox\Profiles\ep6p6osq.default\Extensions\***@***
[2014/04/08 18:02:53 | 000,000,000 | ---D | M] (No name found) -- C:\Users\jeremy\AppData\Roaming\mozilla\Firefox\Profiles\ep6p6osq.default\Extensions\***@***\extensionData
[2014/04/08 18:02:53 | 000,000,000 | ---D | M] (No name found) -- C:\Users\jeremy\AppData\Roaming\mozilla\Firefox\Profiles\ep6p6osq.default\Extensions\***@***\extensionData\plugins
[2014/04/08 18:02:53 | 000,000,000 | ---D | M] (No name found) -- C:\Users\jeremy\AppData\Roaming\mozilla\Firefox\Profiles\ep6p6osq.default\Extensions\***@***\extensionData\userCode
[2014/04/09 11:47:39 | 000,000,000 | ---D | M] (No name found) -- C:\Users\jeremy\AppData\Roaming\mozilla\Firefox\Profiles\ep6p6osq.default\Extensions\***@***\extensionData
[2014/04/09 11:48:06 | 000,000,000 | ---D | M] (No name found) -- C:\Users\jeremy\AppData\Roaming\mozilla\Firefox\Profiles\ep6p6osq.default\Extensions\***@***\extensionData\plugins
[2014/04/09 11:48:08 | 000,000,000 | ---D | M] (No name found) -- C:\Users\jeremy\AppData\Roaming\mozilla\Firefox\Profiles\ep6p6osq.default\Extensions\***@***\extensionData\userCode
[2014/04/09 11:47:54 | 000,000,000 | ---D | M] (No name found) -- C:\Users\jeremy\AppData\Roaming\mozilla\Firefox\Profiles\ep6p6osq.default\Extensions\***@***\extensionData
[2014/04/09 11:48:01 | 000,000,000 | ---D | M] (No name found) -- C:\Users\jeremy\AppData\Roaming\mozilla\Firefox\Profiles\ep6p6osq.default\Extensions\***@***\extensionData\plugins
[2014/04/09 11:48:06 | 000,000,000 | ---D | M] (No name found) -- C:\Users\jeremy\AppData\Roaming\mozilla\Firefox\Profiles\ep6p6osq.default\Extensions\***@***\extensionData\userCode
[2014/04/08 18:05:13 | 000,000,000 | ---D | M] (No name found) -- C:\Users\jeremy\AppData\Roaming\mozilla\Firefox\Profiles\ep6p6osq.default\Extensions\***@***\extensionData
[2014/04/08 18:05:13 | 000,000,000 | ---D | M] (No name found) -- C:\Users\jeremy\AppData\Roaming\mozilla\Firefox\Profiles\ep6p6osq.default\Extensions\***@***\extensionData\plugins
[2014/04/08 18:05:13 | 000,000,000 | ---D | M] (No name found) -- C:\Users\jeremy\AppData\Roaming\mozilla\Firefox\Profiles\ep6p6osq.default\Extensions\***@***\extensionData\userCode
[2014/04/08 16:44:04 | 000,000,000 | ---D | M] (No name found) -- C:\Users\jeremy\AppData\Roaming\mozilla\Firefox\Profiles\ep6p6osq.default\Extensions\***@***\extensionData
[2014/04/08 16:44:17 | 000,000,000 | ---D | M] (No name found) -- C:\Users\jeremy\AppData\Roaming\mozilla\Firefox\Profiles\ep6p6osq.default\Extensions\***@***\extensionData\plugins
[2014/04/08 17:08:53 | 000,000,000 | ---D | M] (No name found) -- C:\Users\jeremy\AppData\Roaming\mozilla\Firefox\Profiles\extensions\extensions\staged
[2013/10/08 20:52:28 | 000,161,536 | ---- | M] () (No name found) -- C:\Users\jeremy\AppData\Roaming\mozilla\firefox\profiles\ep6p6osq.default\Extensions\***@***
[2014/04/04 22:45:08 | 000,007,455 | ---- | M] () (No name found) -- C:\Users\jeremy\AppData\Roaming\mozilla\firefox\profiles\ep6p6osq.default\Extensions\***@***
[2014/04/09 11:52:27 | 000,957,290 | ---- | M] () (No name found) -- C:\Users\jeremy\AppData\Roaming\mozilla\firefox\profiles\ep6p6osq.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
[2014/04/09 11:52:23 | 000,160,605 | ---- | M] () (No name found) -- C:\Users\jeremy\AppData\Roaming\mozilla\firefox\profiles\ep6p6osq.default\Extensions\staged\***@***
[2014/04/09 11:52:26 | 000,353,958 | ---- | M] () (No name found) -- C:\Users\jeremy\AppData\Roaming\mozilla\firefox\profiles\ep6p6osq.default\Extensions\staged\{ad9a41d2-9a49-4fa6-a79e-71a0785364c8}.xpi
[2012/10/04 17:57:36 | 000,214,514 | ---- | M] () (No name found) -- C:\Users\jeremy\AppData\Roaming\mozilla\firefox\profiles\extensions\***@***
[2014/04/04 22:45:08 | 000,007,455 | ---- | M] () (No name found) -- C:\Users\jeremy\AppData\Roaming\mozilla\firefox\profiles\extensions\extensions\***@***
[2014/04/09 10:12:44 | 000,002,579 | ---- | M] () -- C:\Users\jeremy\AppData\Roaming\mozilla\firefox\profiles\ep6p6osq.default\searchplugins\default-search.xml
[2014/04/09 11:46:58 | 000,007,911 | ---- | M] () -- C:\Users\jeremy\AppData\Roaming\mozilla\firefox\profiles\ep6p6osq.default\searchplugins\Google.xml
[2014/03/22 19:01:01 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\mozilla firefox\extensions
[2013/11/11 15:47:28 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\mozilla firefox\browser\extensions
[2013/08/15 16:04:05 | 000,000,000 | ---D | M] (Default) -- C:\Program Files\mozilla firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
[2013/10/10 15:48:12 | 000,000,000 | ---D | M] (Norton Vulnerability Protection) -- C:\PROGRAMDATA\NORTON\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_20.3.1.22\IPSFF
[2013/11/12 15:56:54 | 000,000,000 | ---D | M] (TS Magic Player) -- C:\USERS\JEREMY\APPDATA\ROAMING\ACESTREAM\EXTENSIONS\FIREFOX\***@***
File not found (No name found) -- C:\USERS\JEREMY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\EP6P6OSQ.DEFAULT\EXTENSIONS\{AD9A41D2-9A49-4FA6-A79E-71A0785364C8}
File not found (No name found) -- C:\USERS\JEREMY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\EP6P6OSQ.DEFAULT\EXTENSIONS\***@***
[2014/04/09 10:12:44 | 000,002,579 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\default-search.xml
[2014/04/08 17:36:19 | 000,000,566 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\sweet-page.xml

[color=#E56717]========== Chrome ==========/color

CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = http://www.google.com/search?q={searchTerms}
CHR - default_search_provider: suggest_url = ,
CHR - homepage: http://www.google.com/
CHR - Extension: YoutubeAdblocker = C:\Users\jeremy\AppData\Local\Google\Chrome\User Data\Default\Extensions\akbemplbcnocekbcfmhoenhamcfnbljb\1.0\
CHR - Extension: SNT = C:\Users\jeremy\AppData\Local\Google\Chrome\User Data\Default\Extensions\ckmpdefibhaccdjiehlifkfoondipdbh\2.1\
CHR - Extension: SNT = C:\Users\jeremy\AppData\Local\Google\Chrome\User Data\Default\Extensions\edlefhnggaholbmhiobbjpgpklojahbc\2.1\
CHR - Extension: Ratchet & Clank Future 2 = C:\Users\jeremy\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejhfomhehcinmhgnlhdpghklkjgppdmn\3_0\
CHR - Extension: ssaffeweb = C:\Users\jeremy\AppData\Local\Google\Chrome\User Data\Default\Extensions\jbogoojbnicjfcodglfngpephehpfjdd\1.1\
CHR - Extension: sAfeweb = C:\Users\jeremy\AppData\Local\Google\Chrome\User Data\Default\Extensions\jniplggfadfnbbkdmadfoandbheaemkc\1.1\
CHR - Extension: QR Image from URL = C:\Users\jeremy\AppData\Local\Google\Chrome\User Data\Default\Extensions\nioihlfoddilijjjeknopfcbglallkce\211\
CHR - Extension: Google\u00A0Wallet = C:\Users\jeremy\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.1_1\
CHR - Extension: ssAfeweb = C:\Users\jeremy\AppData\Local\Google\Chrome\User Data\Default\Extensions\pochdajgpbbfcicdkcfdohcadniomild\1.1\
CHR - Extension: YoutubeAdblocker = C:\Users\jeremy\AppData\Local\Google\Chrome\User Data\Default\Extensions\akbemplbcnocekbcfmhoenhamcfnbljb\1.0\
CHR - Extension: SNT = C:\Users\jeremy\AppData\Local\Google\Chrome\User Data\Default\Extensions\ckmpdefibhaccdjiehlifkfoondipdbh\2.1\
CHR - Extension: SNT = C:\Users\jeremy\AppData\Local\Google\Chrome\User Data\Default\Extensions\edlefhnggaholbmhiobbjpgpklojahbc\2.1\
CHR - Extension: Ratchet & Clank Future 2 = C:\Users\jeremy\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejhfomhehcinmhgnlhdpghklkjgppdmn\3_0\
CHR - Extension: ssaffeweb = C:\Users\jeremy\AppData\Local\Google\Chrome\User Data\Default\Extensions\jbogoojbnicjfcodglfngpephehpfjdd\1.1\
CHR - Extension: sAfeweb = C:\Users\jeremy\AppData\Local\Google\Chrome\User Data\Default\Extensions\jniplggfadfnbbkdmadfoandbheaemkc\1.1\
CHR - Extension: QR Image from URL = C:\Users\jeremy\AppData\Local\Google\Chrome\User Data\Default\Extensions\nioihlfoddilijjjeknopfcbglallkce\211\
CHR - Extension: Google\u00A0Wallet = C:\Users\jeremy\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.1_1\
CHR - Extension: ssAfeweb = C:\Users\jeremy\AppData\Local\Google\Chrome\User Data\Default\Extensions\pochdajgpbbfcicdkcfdohcadniomild\1.1\

O1 HOSTS File: ([2013/05/31 11:25:09 | 000,343,440 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 000007.ru
O1 - Hosts: 127.0.0.1 000cc.com
O1 - Hosts: 127.0.0.1 000e05b38ca37fe7e4b82cc63d6c2865.co.cc
O1 - Hosts: 127.0.0.1 0055ebba60b74c3603c00cfc2334f5fc.co.cc
O1 - Hosts: 127.0.0.1 02begorlae.info
O1 - Hosts: 127.0.0.1 02c20c8.netsolhost.com
O1 - Hosts: 127.0.0.1 02c8dac.netsolhost.com
O1 - Hosts: 127.0.0.1 02d72c3.netsolhost.com
O1 - Hosts: 127.0.0.1 0313879956.kt.io
O1 - Hosts: 127.0.0.1 033ad83.netsolhost.com
O1 - Hosts: 127.0.0.1 0354.ru
O1 - Hosts: 127.0.0.1 03e09dd8757e9dddb1c4570307076a8b.co.cc
O1 - Hosts: 127.0.0.1 04309.com
O1 - Hosts: 127.0.0.1 04597.com
O1 - Hosts: 127.0.0.1 0577yy.com
O1 - Hosts: 127.0.0.1 08zs.com
O1 - Hosts: 127.0.0.1 09384xi.cu.cc
O1 - Hosts: 127.0.0.1 09452.com
O1 - Hosts: 127.0.0.1 094t8g.qktsnwukvi.webhop.net
O1 - Hosts: 127.0.0.1 09cd.co.kr
O1 - Hosts: 127.0.0.1 0a563720021bcbcc1c0906c1218cc774.co.cc
O1 - Hosts: 127.0.0.1 0bq.ru
O1 - Hosts: 127.0.0.1 0catch.com
O1 - Hosts: 127.0.0.1 0d1.cz.cc
O1 - Hosts: 127.0.0.1 0fees.net
O1 - Hosts: 11618 more lines...
O2 - BHO: (PDF Architect Helper) - {3A2D5EBA-F86D-4BD3-A177-019765996711} - C:\Program Files\PDF Architect\PDFIEHelper.dll (pdfforge GmbH)
O2 - BHO: (Norton Vulnerability Protection) - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files\Norton AntiVirus\Engine\20.4.0.40\IPS\IPSBHO.DLL (Symantec Corporation)
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O3 - HKLM\..\Toolbar: (no name) - 10 - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {A13C2648-91D4-4BF3-BC6D-0079707C4389} - No CLSID value found.
O4 - HKLM..\Run: [AMD AVT] C:\Windows\System32\cmd.exe (Microsoft Corporation)
O4 - HKLM..\Run: [EaseUS EPM tray] C:\Program Files\EaseUS\EaseUS Partition Master 9.3.0\bin\EpmNews.exe (CHENGDU YIWO Tech Development Co., Ltd)
O4 - HKLM..\Run: [StartCCC] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Infodelivery present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: EnableShellExecuteHooks = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoLowDiskSpaceChecks = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSaveSettings = 0
O8 - Extra context menu item: &Download with &DAP - C:\Program Files\DAP\dapextie.htm ()
O8 - Extra context menu item: ajouter cette page à vos favoris Orange - C:\Users\jeremy\AppData\Roaming\Orange\OrangeInside\src\addfavorites_html\addfavorites.html ()
O8 - Extra context menu item: Download &all with DAP - C:\Program Files\DAP\dapextie2.htm ()
O8 - Extra context menu item: envoyer le texte sélectionné par sms - C:\Users\jeremy\AppData\Roaming\Orange\OrangeInside\src\sendsmsselectedtext_html\sendsmsselectedtext.html ()
O8 - Extra context menu item: envoyer par sms - C:\Users\jeremy\AppData\Roaming\Orange\OrangeInside\src\sendsms_html\sendsms.html ()
O8 - Extra context menu item: envoyer un mail - C:\Users\jeremy\AppData\Roaming\Orange\OrangeInside\src\sendmail_html\sendmail.html ()
O8 - Extra context menu item: orange.fr - C:\Users\jeremy\AppData\Roaming\Orange\OrangeInside\src\orange_html\orange.html ()
O8 - Extra context menu item: rechercher le texte sélectionné - C:\Users\jeremy\AppData\Roaming\Orange\OrangeInside\src\selectedsearch_html\selectedsearch.html ()
O8 - Extra context menu item: SmarThru4 Enregistrer au format HTML - C:\Program Files\SmarThru 4\WebCapture.dll1.htm ()
O8 - Extra context menu item: SmarThru4 Enregistrer le texte sélectionné - C:\Program Files\SmarThru 4\WebCapture.dll.htm ()
O8 - Extra context menu item: SmarThru4 Sélection par capture - C:\Program Files\SmarThru 4\WebCapture.dll2.htm ()
O8 - Extra context menu item: SmarThru4 Web Capture - C:\Program Files\SmarThru 4\WebCapture.dll ()
O8 - Extra context menu item: traduire la page - C:\Users\jeremy\AppData\Roaming\Orange\OrangeInside\src\translate_html\translate.html ()
O8 - Extra context menu item: traduire le texte sélectionné - C:\Users\jeremy\AppData\Roaming\Orange\OrangeInside\src\translateSelectedText_html\translateSelectedText.html ()
O9 - Extra Button: @C:\Program Files\Windows Live\Companion\companionlang.dll,-600 - {0000036B-C524-4050-81A0-243669A86B9F} - Reg Error: Value error. File not found
O9 - Extra Button: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - Reg Error: Value error. File not found
O9 - Extra 'Tools' menuitem : @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - Reg Error: Value error. File not found
O10 - NameSpace_Catalog5\Catalog_Entries\000000000009 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - C:\Windows\System32\SecureAssist.dll (SecureAssist)
O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - C:\Windows\System32\SecureAssist.dll (SecureAssist)
O10 - Protocol_Catalog9\Catalog_Entries\000000000003 - C:\Windows\System32\SecureAssist.dll (SecureAssist)
O10 - Protocol_Catalog9\Catalog_Entries\000000000004 - C:\Windows\System32\SecureAssist.dll (SecureAssist)
O10 - Protocol_Catalog9\Catalog_Entries\000000000021 - C:\Windows\System32\SecureAssist.dll (SecureAssist)
O13 - gopher Prefix: missing
O15 - HKCU\..Trusted Domains: orange.fr ([logicielsgratuits] http in Trusted sites)
O16 - DPF: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} http://www.ma-config.com/plugins/MaConfig_6_0_0_3.cab (Reg Error: Key error.)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_18-windows-i586.cab (Java Plug-in 10.45.2)
O16 - DPF: {BFF1950D-B1B4-4AE8-B842-B2CCF06D9A1B} http://game.zylom.com/activex/zylomgamesplayer.cab (Zylom Games Player)
O16 - DPF: {CAFEEFAC-0016-0000-0018-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_18-windows-i586.cab (Java Plug-in 1.6.0_18)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_18-windows-i586.cab (Java Plug-in 10.45.2)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{EDE61C31-58B2-4364-8BC8-1C9016E51817}: DhcpNameServer = 192.168.1.1 192.168.1.1
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL (Skype Technologies)
O20 - AppInit_DLLs: (C:\PROGRA~1\SETTIN~1\systemk\syskldr.dll) - File not found
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O24 - Desktop Components:0 (Ma page d'accueil) - About:Home
O27 - HKLM IFEO\bpsvc.exe: Debugger - C:\Windows\System32\tasklist.exe (Microsoft Corporation)
O27 - HKLM IFEO\browsersafeguard.exe: Debugger - C:\Windows\System32\tasklist.exe (Microsoft Corporation)
O27 - HKLM IFEO\dprotectsvc.exe: Debugger - C:\Windows\System32\tasklist.exe (Microsoft Corporation)
O27 - HKLM IFEO\protectedsearch.exe: Debugger - C:\Windows\System32\tasklist.exe (Microsoft Corporation)
O27 - HKLM IFEO\rjatydimofu.exe: Debugger - C:\Windows\System32\tasklist.exe (Microsoft Corporation)
O27 - HKLM IFEO\searchprotection.exe: Debugger - C:\Windows\System32\tasklist.exe (Microsoft Corporation)
O27 - HKLM IFEO\searchprotector.exe: Debugger - C:\Windows\System32\tasklist.exe (Microsoft Corporation)
O27 - HKLM IFEO\snapdo.exe: Debugger - C:\Windows\System32\tasklist.exe (Microsoft Corporation)
O27 - HKLM IFEO\stinst32.exe: Debugger - C:\Windows\System32\tasklist.exe (Microsoft Corporation)
O27 - HKLM IFEO\stinst64.exe: Debugger - C:\Windows\System32\tasklist.exe (Microsoft Corporation)
O27 - HKLM IFEO\utiljumpflip.exe: Debugger - C:\Windows\System32\tasklist.exe (Microsoft Corporation)
O28 - HKLM ShellExecuteHooks: {4F07DA45-8170-4859-9B5F-037EF2970034} - C:\PROGRA~1\ONLINE~2\oaevent.dll (Emsisoft GmbH)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2013/12/08 21:39:53 | 000,000,000 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O32 - AutoRun File - [2011/01/14 18:34:47 | 000,010,668 | ---- | M] () - G:\autor.odt -- [ NTFS ]
O33 - MountPoints2\{18c12124-d3fe-11e2-862d-c86000626313}\Shell - "" = AutoRun
O33 - MountPoints2\{18c12124-d3fe-11e2-862d-c86000626313}\Shell\AutoRun\command - "" = F:\Startme.exe
O33 - MountPoints2\{1f5bff32-02ac-11e3-9655-c86000626313}\Shell - "" = AutoRun
O33 - MountPoints2\{1f5bff32-02ac-11e3-9655-c86000626313}\Shell\AutoRun\command - "" = E:\Startme.exe
O33 - MountPoints2\{3c48fe1f-52b7-11e3-a7c4-c86000626313}\Shell - "" = AutoRun
O33 - MountPoints2\{3c48fe1f-52b7-11e3-a7c4-c86000626313}\Shell\AutoRun\command - "" = E:\Startme.exe
O33 - MountPoints2\{3fb1dfb7-fa9c-11e2-8adf-c86000626313}\Shell - "" = AutoRun
O33 - MountPoints2\{3fb1dfb7-fa9c-11e2-8adf-c86000626313}\Shell\AutoRun\command - "" = E:\Startme.exe
O33 - MountPoints2\{540b751b-d02c-11e1-a483-c86000626313}\Shell - "" = AutoRun
O33 - MountPoints2\{b31abc04-63aa-11e2-a8db-c86000626313}\Shell - "" = AutoRun
O34 - HKLM BootExecute: (autocheck autochk *)
O34 - HKLM BootExecute: (sh4native Sh4Removal)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

[color=#E56717]========== Files/Folders - Created Within 30 Days ==========/color

[2014/04/10 15:58:38 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\jeremy\Desktop\OTL (3).exe
[2014/04/10 15:07:22 | 000,040,776 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbamswissarmy.sys
[2014/04/10 14:45:59 | 000,000,000 | ---D | C] -- C:\Avenger
[2014/04/09 10:11:22 | 001,083,403 | ---- | C] (AnyProtect.com) -- C:\Users\jeremy\AppData\Local\AnyProtectScannerSetup.exe
[2014/04/08 18:03:30 | 000,000,000 | ---D | C] -- C:\Program Files\MediaPlayerplus
[2014/04/08 18:02:38 | 000,000,000 | ---D | C] -- C:\Program Files\Freeven pro 1.2
[2014/04/08 17:57:33 | 000,000,000 | ---D | C] -- C:\Users\jeremy\AppData\Local\EuroTrade_A.L._Ltd
[2014/04/08 17:50:54 | 000,000,000 | ---D | C] -- C:\Program Files\SW-Booster
[2014/04/08 17:50:49 | 000,000,000 | ---D | C] -- C:\ProgramData\ssaffeweb
[2014/04/08 17:50:49 | 000,000,000 | ---D | C] -- C:\Program Files\ssaffeweb
[2014/04/08 17:47:53 | 000,000,000 | ---D | C] -- C:\ProgramData\sAfeweb
[2014/04/08 17:47:53 | 000,000,000 | ---D | C] -- C:\Program Files\sAfeweb
[2014/04/08 17:44:07 | 000,000,000 | ---D | C] -- C:\Program Files\Easy Deals v 1.01
[2014/04/08 17:43:56 | 000,000,000 | ---D | C] -- C:\Users\jeremy\Documents\PrivacyDR
[2014/04/08 17:42:19 | 000,000,000 | ---D | C] -- C:\Users\jeremy\AppData\Local\Software
[2014/04/08 17:42:18 | 000,000,000 | ---D | C] -- C:\Users\jeremy\AppData\Local\41
[2014/04/08 17:34:12 | 000,000,000 | ---D | C] -- C:\ProgramData\Safeweeb
[2014/04/08 17:34:12 | 000,000,000 | ---D | C] -- C:\Program Files\Safeweeb
[2014/04/08 17:33:58 | 000,000,000 | ---D | C] -- C:\Users\jeremy\AppData\Local\Comodo
[2014/04/08 17:25:07 | 000,000,000 | ---D | C] -- C:\ProgramData\Cached Installations
[2014/04/08 17:10:55 | 000,000,000 | ---D | C] -- C:\Log
[2014/04/08 16:53:58 | 000,000,000 | ---D | C] -- C:\ProgramData\SuperbApp
[2014/04/08 16:48:58 | 000,000,000 | ---D | C] -- C:\Users\jeremy\oodiskrecover
[2014/04/08 16:45:33 | 000,000,000 | ---D | C] -- C:\Users\jeremy\AppData\Local\com
[2014/04/08 16:40:53 | 000,000,000 | ---D | C] -- C:\Program Files\HQVid1.9v3
[2014/04/08 16:32:16 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Software Updater
[2014/04/08 16:32:16 | 000,000,000 | ---D | C] -- C:\Program Files\Software Updater
[2014/04/08 16:20:32 | 000,000,000 | ---D | C] -- C:\ProgramData\OO Software
[2014/04/08 15:38:05 | 000,295,080 | ---- | C] (SecureAssist) -- C:\Windows\System32\SecureAssist.dll
[2014/04/08 15:36:06 | 000,000,000 | ---D | C] -- C:\Program Files\suprasavings
[2014/04/08 15:34:59 | 000,000,000 | ---D | C] -- C:\Program Files\003
[2014/04/08 15:28:36 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
[2014/04/08 15:28:35 | 000,000,000 | ---D | C] -- C:\Users\jeremy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
[2014/04/08 15:28:30 | 000,000,000 | ---D | C] -- C:\Program Files\WinRAR
[2014/04/08 15:17:44 | 000,000,000 | ---D | C] -- C:\Users\jeremy\Desktop\TEMP
[2014/04/08 15:14:50 | 000,000,000 | ---D | C] -- C:\ProgramData\4shared Desktop
[2014/04/06 19:57:55 | 000,000,000 | ---D | C] -- C:\Program Files\Recuva
[2014/04/06 19:49:53 | 000,000,000 | ---D | C] -- C:\Users\jeremy\AppData\Roaming\qone8
[2014/04/06 17:19:54 | 000,000,000 | ---D | C] -- C:\Users\jeremy\Desktop\Nouveau dossier
[2014/04/06 11:49:04 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EaseUS Partition Master 9.3.0
[2014/04/04 17:12:17 | 000,000,000 | ---D | C] -- C:\Users\jeremy\AppData\Local\{6239E362-798C-4BA0-9FDC-6AFC65FF7EA8}
[2014/04/03 20:25:10 | 000,000,000 | ---D | C] -- C:\Users\jeremy\AppData\Local\PDFCreator
[2014/04/03 20:05:16 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\PDF Architect
[2014/04/03 20:02:55 | 000,000,000 | ---D | C] -- C:\Users\jeremy\AppData\Roaming\PDF Architect
[2014/04/03 20:02:18 | 000,000,000 | ---D | C] -- C:\Users\jeremy\Documents\PDF Architect Files
[2014/04/03 20:02:10 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDF Architect
[2014/04/03 20:02:08 | 000,000,000 | ---D | C] -- C:\Program Files\PDF Architect
[2014/04/03 20:01:52 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDFCreator
[2014/04/03 20:01:51 | 000,095,928 | ---- | C] (pdfforge GmbH) -- C:\Windows\System32\pdfcmon.dll
[2014/04/03 20:01:50 | 000,000,000 | ---D | C] -- C:\Program Files\PDFCreator
[2014/04/03 19:20:49 | 000,000,000 | ---D | C] -- C:\Users\jeremy\AppData\Local\{83428056-92D5-49FF-B1B5-7C618812AD86}
[2014/03/31 17:14:04 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft Toolkit
[2014/03/31 17:12:48 | 000,000,000 | ---D | C] -- C:\Users\jeremy\Desktop\Microsoft Office Professional Plus 2013 VL Edition x86 x64 FR.part2
[2014/03/29 15:15:58 | 000,000,000 | ---D | C] -- C:\Users\jeremy\Desktop\emploi
[2014/03/25 15:18:53 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
[2014/03/25 15:18:48 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner
[2014/03/23 15:47:47 | 000,000,000 | ---D | C] -- C:\Program Files\VS Revo Group
[2014/03/23 15:47:47 | 000,000,000 | ---D | C] -- C:\Users\jeremy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller
[2014/03/22 19:29:18 | 000,000,000 | ---D | C] -- C:\Windows\ERUNT
[2014/03/22 18:57:42 | 000,000,000 | ---D | C] -- C:\AdwCleaner
[2014/03/21 11:46:46 | 001,081,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mscomctl.ocx
[2014/03/21 11:46:46 | 000,152,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\comdlg32.ocx
[2014/03/13 16:28:33 | 000,509,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\qedit.dll
[2014/03/13 16:28:32 | 000,703,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieapfltr.dll
[2014/03/13 16:28:32 | 000,646,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MsSpellCheckingFacility.exe
[2014/03/13 16:28:32 | 000,553,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jscript9diag.dll
[2014/03/13 16:28:32 | 000,108,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieetwcollector.exe
[2014/03/13 16:28:32 | 000,051,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieetwproxystub.dll
[2014/03/13 16:28:32 | 000,043,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jsproxy.dll
[2014/03/13 16:28:32 | 000,032,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iernonce.dll
[2014/03/13 16:28:32 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieetwcollectorres.dll
[2014/03/13 16:28:31 | 000,440,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieui.dll
[2014/03/13 16:28:31 | 000,112,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieUnatt.exe
[2014/03/13 16:28:30 | 004,244,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jscript9.dll
[2014/03/13 16:28:29 | 002,724,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshtml.tlb
[2014/03/13 16:28:29 | 000,524,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeeds.dll
[2014/03/13 16:28:28 | 001,964,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\inetcpl.cpl
[2014/03/13 16:28:28 | 000,208,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ie4uinit.exe
[2014/03/13 16:28:28 | 000,164,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msrating.dll
[2014/03/13 16:28:28 | 000,061,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iesetup.dll
[2014/03/13 16:27:15 | 002,349,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\win32k.sys
[2014/03/13 16:27:08 | 000,381,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wer.dll
[2014/03/12 11:19:19 | 000,000,000 | ---D | C] -- C:\ProgramData\Sony Mobile
[2014/03/12 11:18:59 | 000,000,000 | ---D | C] -- C:\Program Files\Sony Mobile
[3 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
[2 C:\Users\jeremy\AppData\Local\*.tmp files -> C:\Users\jeremy\AppData\Local\*.tmp -> ]

[color=#E56717]========== Files - Modified Within 30 Days ==========/color

[2014/04/10 15:53:00 | 000,001,002 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2014/04/10 15:51:30 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\jeremy\Desktop\OTL (3).exe
[2014/04/10 15:29:07 | 000,035,312 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2014/04/10 15:29:07 | 000,035,312 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2014/04/10 15:2
0
Réponse 3 / 14
Malekal_morte- Messages postés 180304 Date d'inscription   Statut Modérateur, Contributeur sécurité Dernière intervention   24 685
 
envoie le rapport OTL sur pjjoint, comme cela est demandé.
0
Réponse 4 / 14
batto39
 
bonsoir, voici le lien obtenu sur pjjoint

http://pjjoint.malekal.com/files.php?id=20140410_h11l5t5q7m5

bonne szoirée
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 5 / 14
Malekal_morte- Messages postés 180304 Date d'inscription   Statut Modérateur, Contributeur sécurité Dernière intervention   24 685
 
Télécharge Complete Internet Repair et mets le sur ton bureau :
https://forum.malekal.com/viewtopic.php?t=46167&start=

Tu dois bien avoir ce programme sur ton bureau avant de faire la suite.


Supprime ces extensions :
HQVid1.9v3 1.26.35
sAfeweb 1.1
SNT 2.1
ssAfeweb 1.1


Relance OTL.
o sous Personnalisation (Custom Scan), copie_colle le contenu du cadre ci dessous (bien prendre :OTL en début).
Clic Correction (Fix), un rapport apparraitra, copie/colle le contenu ici:

:OTL
SRV - File not found [Auto | Stopped] -- C:\Users\jeremy\AppData\Roaming\VOPackage\VOsrv.exe -- (vosr)
SRV - [2014/04/08 15:36:05 | 000,541,696 | ---- | M] () [Auto | Running] -- C:\Program Files\003\nuttkoqiez32.exe -- (nuttkoqiez32)
[2014/04/09 10:12:32 | 000,000,000 | ---D | M] (Settings Manager) -- C:\Users\jeremy\AppData\Roaming\mozilla\Firefox\Profiles\ep6p6osq.default\Extensions\{35FB143E-3B2D-374D-E78E-3E8B20AB8C9C}
[2014/04/09 12:51:28 | 000,000,000 | ---D | M] (Shopping Helper Smartbar) -- C:\Users\jeremy\AppData\Roaming\mozilla\Firefox\Profiles\ep6p6osq.default\Extensions\{5d5d2b0b-a2ef-11be-5752-a437884a1dd1}
[2014/04/08 18:02:53 | 000,000,000 | ---D | M] (Freeven pro 1.2) -- C:\Users\jeremy\AppData\Roaming\mozilla\Firefox\Profiles\ep6p6osq.default\Extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com
[2014/04/08 17:44:19 | 000,000,000 | ---D | M] (Easy Deals v 1.01) -- C:\Users\jeremy\AppData\Roaming\mozilla\Firefox\Profiles\ep6p6osq.default\Extensions\39afc6e2-f082-42b7-944f-1cd8df9b8724@3be68637-1cd5-473f-8619-ddfcffe7178f.com
[2014/04/08 15:34:43 | 000,000,000 | ---D | M] (Torntv V9.0) -- C:\Users\jeremy\AppData\Roaming\mozilla\Firefox\Profiles\ep6p6osq.default\Extensions\5a6bf058-b978-4b84-a2ec-6f5462cfccb2@10120365-d3c0-4ec9-8624-5fac2592d0df.com
[2014/04/08 18:05:35 | 000,000,000 | ---D | M] (MediaPlayerplus) -- C:\Users\jeremy\AppData\Roaming\mozilla\Firefox\Profiles\ep6p6osq.default\Extensions\a9719e64-232b-4695-ae9c-a89cd7f2aa84@ca1279df-bc0d-44a8-97ef-19301c922b68.com
[2014/04/09 11:45:52 | 000,000,000 | ---D | M] (ssAfeweb) -- C:\Users\jeremy\AppData\Roaming\mozilla\Firefox\Profiles\ep6p6osq.default\Extensions\ayusjr4-ilu@sns-pjuvvrj.net
[[2014/04/09 11:45:52 | 000,000,000 | ---D | M] (YoutubeAdblocker) -- C:\Users\jeremy\AppData\Roaming\mozilla\Firefox\Profiles\ep6p6osq.default\Extensions\coyutqa@oaq-.com
[2014/04/08 16:43:59 | 000,000,000 | ---D | M] (HQVid1.9v3) -- C:\Users\jeremy\AppData\Roaming\mozilla\Firefox\Profiles\ep6p6osq.default\Extensions\ee5ad154-f909-4cc0-aa51-d7e94e3fb0af@36204afd-f43e-4917-9c71-8384e2e4d3ad.com
[2014/04/09 11:45:51 | 000,000,000 | ---D | M] (sAfeweb) -- C:\Users\jeremy\AppData\Roaming\mozilla\Firefox\Profiles\ep6p6osq.default\Extensions\fq3kaal@anuryu.net
[2014/04/09 11:45:50 | 000,000,000 | ---D | M] (ssaffeweb) -- C:\Users\jeremy\AppData\Roaming\mozilla\Firefox\Profiles\ep6p6osq.default\Extensions\qstrphsp.l@toayezuq.edu
[2014/04/09 12:51:28 | 000,000,000 | ---D | M] (No name found) -- C:\Users\jeremy\AppData\Roaming\mozilla\Firefox\Profiles\ep6p6osq.default\Extensions\staged
[2014/04/09 11:45:50 | 000,000,000 | ---D | M] (SNT) -- C:\Users\jeremy\AppData\Roaming\mozilla\Firefox\Profiles\ep6p6osq.default\Extensions\tmsmai@iuoar.com
[2014/04/08 18:02:53 | 000,000,000 | ---D | M] (No name found) -- C:\Users\jeremy\AppData\Roaming\mozilla\Firefox\Profiles\ep6p6osq.default\Extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\extensionData
[2014/04/08 18:02:53 | 000,000,000 | ---D | M] (No name found) -- C:\Users\jeremy\AppData\Roaming\mozilla\Firefox\Profiles\ep6p6osq.default\Extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\extensionData\plugins
[2014/04/08 18:02:53 | 000,000,000 | ---D | M] (No name found) -- C:\Users\jeremy\AppData\Roaming\mozilla\Firefox\Profiles\ep6p6osq.default\Extensions\2ab9302c-551a-4804-9971-9932d6d5b0f9@2bfa4cf8-298a-4792-80d5-75352ee81de1.com\extensionData\userCode
[2014/04/09 11:47:39 | 000,000,000 | ---D | M] (No name found) -- C:\Users\jeremy\AppData\Roaming\mozilla\Firefox\Profiles\ep6p6osq.default\Extensions\39afc6e2-f082-42b7-944f-1cd8df9b8724@3be68637-1cd5-473f-8619-ddfcffe7178f.com\extensionData
[2014/04/09 11:48:06 | 000,000,000 | ---D | M] (No name found) -- C:\Users\jeremy\AppData\Roaming\mozilla\Firefox\Profiles\ep6p6osq.default\Extensions\39afc6e2-f082-42b7-944f-1cd8df9b8724@3be68637-1cd5-473f-8619-ddfcffe7178f.com\extensionData\plugins
[2014/04/09 11:48:08 | 000,000,000 | ---D | M] (No name found) -- C:\Users\jeremy\AppData\Roaming\mozilla\Firefox\Profiles\ep6p6osq.default\Extensions\39afc6e2-f082-42b7-944f-1cd8df9b8724@3be68637-1cd5-473f-8619-ddfcffe7178f.com\extensionData\userCode
[2014/04/09 11:47:54 | 000,000,000 | ---D | M] (No name found) -- C:\Users\jeremy\AppData\Roaming\mozilla\Firefox\Profiles\ep6p6osq.default\Extensions\5a6bf058-b978-4b84-a2ec-6f5462cfccb2@10120365-d3c0-4ec9-8624-5fac2592d0df.com\extensionData
[2014/04/09 11:48:01 | 000,000,000 | ---D | M] (No name found) -- C:\Users\jeremy\AppData\Roaming\mozilla\Firefox\Profiles\ep6p6osq.default\Extensions\5a6bf058-b978-4b84-a2ec-6f5462cfccb2@10120365-d3c0-4ec9-8624-5fac2592d0df.com\extensionData\plugins
[2014/04/09 11:48:06 | 000,000,000 | ---D | M] (No name found) -- C:\Users\jeremy\AppData\Roaming\mozilla\Firefox\Profiles\ep6p6osq.default\Extensions\5a6bf058-b978-4b84-a2ec-6f5462cfccb2@10120365-d3c0-4ec9-8624-5fac2592d0df.com\extensionData\userCode
[2014/04/08 18:05:13 | 000,000,000 | ---D | M] (No name found) -- C:\Users\jeremy\AppData\Roaming\mozilla\Firefox\Profiles\ep6p6osq.default\Extensions\a9719e64-232b-4695-ae9c-a89cd7f2aa84@ca1279df-bc0d-44a8-97ef-19301c922b68.com\extensionData
[2014/04/08 18:05:13 | 000,000,000 | ---D | M] (No name found) -- C:\Users\jeremy\AppData\Roaming\mozilla\Firefox\Profiles\ep6p6osq.default\Extensions\a9719e64-232b-4695-ae9c-a89cd7f2aa84@ca1279df-bc0d-44a8-97ef-19301c922b68.com\extensionData\plugins
[2014/04/08 18:05:13 | 000,000,000 | ---D | M] (No name found) -- C:\Users\jeremy\AppData\Roaming\mozilla\Firefox\Profiles\ep6p6osq.default\Extensions\a9719e64-232b-4695-ae9c-a89cd7f2aa84@ca1279df-bc0d-44a8-97ef-19301c922b68.com\extensionData\userCode
[2014/04/08 16:44:04 | 000,000,000 | ---D | M] (No name found) -- C:\Users\jeremy\AppData\Roaming\mozilla\Firefox\Profiles\ep6p6osq.default\Extensions\ee5ad154-f909-4cc0-aa51-d7e94e3fb0af@36204afd-f43e-4917-9c71-8384e2e4d3ad.com\extensionData
[2014/04/08 16:44:17 | 000,000,000 | ---D | M] (No name found) -- C:\Users\jeremy\AppData\Roaming\mozilla\Firefox\Profiles\ep6p6osq.default\Extensions\ee5ad154-f909-4cc0-aa51-d7e94e3fb0af@36204afd-f43e-4917-9c71-8384e2e4d3ad.com\extensionData\plugins
[2014/04/08 17:08:53 | 000,000,000 | ---D | M] (No name found) -- C:\Users\jeremy\AppData\Roaming\mozilla\Firefox\Profiles\extensions\extensions\staged
[2013/10/08 20:52:28 | 000,161,536 | ---- | M] () (No name found) -- C:\Users\jeremy\AppData\Roaming\mozilla\firefox\profiles\ep6p6osq.default\Extensions\7go@7go.com.xpi
[2014/04/04 22:45:08 | 000,007,455 | ---- | M] () (No name found) -- C:\Users\jeremy\AppData\Roaming\mozilla\firefox\profiles\ep6p6osq.default\Extensions\firefox@wisenwizard.net.xpi
[2014/04/09 11:52:27 | 000,957,290 | ---- | M] () (No name found) -- C:\Users\jeremy\AppData\Roaming\mozilla\firefox\profiles\ep6p6osq.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
[2014/04/09 11:52:23 | 000,160,605 | ---- | M] () (No name found) -- C:\Users\jeremy\AppData\Roaming\mozilla\firefox\profiles\ep6p6osq.default\Extensions\staged\7go@7go.com.xpi
[2014/04/09 11:52:26 | 000,353,958 | ---- | M] () (No name found) -- C:\Users\jeremy\AppData\Roaming\mozilla\firefox\profiles\ep6p6osq.default\Extensions\staged\{ad9a41d2-9a49-4fa6-a79e-71a0785364c8}.xpi
File not found (No name found) -- C:\USERS\JEREMY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\EP6P6OSQ.DEFAULT\EXTENSIONS\{AD9A41D2-9A49-4FA6-A79E-71A0785364C8}
File not found (No name found) -- C:\USERS\JEREMY\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\EP6P6OSQ.DEFAULT\EXTENSIONS\FFXTLBR@MYSEARCHDIAL.COM
CHR - Extension: YoutubeAdblocker = C:\Users\jeremy\AppData\Local\Google\Chrome\User Data\Default\Extensions\akbemplbcnocekbcfmhoenhamcfnbljb\1.0\
CHR - Extension: SNT = C:\Users\jeremy\AppData\Local\Google\Chrome\User Data\Default\Extensions\ckmpdefibhaccdjiehlifkfoondipdbh\2.1\
CHR - Extension: SNT = C:\Users\jeremy\AppData\Local\Google\Chrome\User Data\Default\Extensions\edlefhnggaholbmhiobbjpgpklojahbc\2.1\
CHR - Extension: ssaffeweb = C:\Users\jeremy\AppData\Local\Google\Chrome\User Data\Default\Extensions\jbogoojbnicjfcodglfngpephehpfjdd\1.1\
CHR - Extension: sAfeweb = C:\Users\jeremy\AppData\Local\Google\Chrome\User Data\Default\Extensions\jniplggfadfnbbkdmadfoandbheaemkc\1.1\
CHR - Extension: ssAfeweb = C:\Users\jeremy\AppData\Local\Google\Chrome\User Data\Default\Extensions\pochdajgpbbfcicdkcfdohcadniomild\1.1\
CHR - Extension: YoutubeAdblocker = C:\Users\jeremy\AppData\Local\Google\Chrome\User Data\Default\Extensions\akbemplbcnocekbcfmhoenhamcfnbljb\1.0\
CHR - Extension: SNT = C:\Users\jeremy\AppData\Local\Google\Chrome\User Data\Default\Extensions\ckmpdefibhaccdjiehlifkfoondipdbh\2.1\
CHR - Extension: SNT = C:\Users\jeremy\AppData\Local\Google\Chrome\User Data\Default\Extensions\edlefhnggaholbmhiobbjpgpklojahbc\2.1\
CHR - Extension: ssaffeweb = C:\Users\jeremy\AppData\Local\Google\Chrome\User Data\Default\Extensions\jbogoojbnicjfcodglfngpephehpfjdd\1.1\
CHR - Extension: sAfeweb = C:\Users\jeremy\AppData\Local\Google\Chrome\User Data\Default\Extensions\jniplggfadfnbbkdmadfoandbheaemkc\1.1\
O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - C:\Windows\System32\SecureAssist.dll (SecureAssist)
O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - C:\Windows\System32\SecureAssist.dll (SecureAssist)
O10 - Protocol_Catalog9\Catalog_Entries\000000000003 - C:\Windows\System32\SecureAssist.dll (SecureAssist)
O10 - Protocol_Catalog9\Catalog_Entries\000000000004 - C:\Windows\System32\SecureAssist.dll (SecureAssist)
O10 - Protocol_Catalog9\Catalog_Entries\000000000021 - C:\Windows\System32\SecureAssist.dll (SecureAssist)
[2014/04/09 10:11:22 | 001,083,403 | ---- | C] (AnyProtect.com) -- C:\Users\jeremy\AppData\Local\AnyProtectScannerSetup.exe
[2014/04/08 18:03:30 | 000,000,000 | ---D | C] -- C:\Program Files\MediaPlayerplus
[2014/04/08 18:02:38 | 000,000,000 | ---D | C] -- C:\Program Files\Freeven pro 1.2
[2014/04/08 17:57:33 | 000,000,000 | ---D | C] -- C:\Users\jeremy\AppData\Local\EuroTrade_A.L._Ltd
[2014/04/08 17:50:54 | 000,000,000 | ---D | C] -- C:\Program Files\SW-Booster
[2014/04/08 17:50:49 | 000,000,000 | ---D | C] -- C:\ProgramData\ssaffeweb
[2014/04/08 17:50:49 | 000,000,000 | ---D | C] -- C:\Program Files\ssaffeweb
[2014/04/08 17:47:53 | 000,000,000 | ---D | C] -- C:\ProgramData\sAfeweb
[2014/04/08 17:47:53 | 000,000,000 | ---D | C] -- C:\Program Files\sAfeweb
[2014/04/08 17:44:07 | 000,000,000 | ---D | C] -- C:\Program Files\Easy Deals v 1.01
[2014/04/08 17:43:56 | 000,000,000 | ---D | C] -- C:\Users\jeremy\Documents\PrivacyDR
[2014/04/08 17:42:19 | 000,000,000 | ---D | C] -- C:\Users\jeremy\AppData\Local\Software
[2014/04/08 17:42:18 | 000,000,000 | ---D | C] -- C:\Users\jeremy\AppData\Local\41
[2014/04/08 17:34:12 | 000,000,000 | ---D | C] -- C:\ProgramData\Safeweeb
[2014/04/08 17:34:12 | 000,000,000 | ---D | C] -- C:\Program Files\Safeweeb
[2014/04/08 17:10:55 | 000,000,000 | ---D | C] -- C:\Log
[2014/04/08 16:53:58 | 000,000,000 | ---D | C] -- C:\ProgramData\SuperbApp
[2014/04/08 16:48:58 | 000,000,000 | ---D | C] -- C:\Users\jeremy\oodiskrecover
[2014/04/08 16:45:33 | 000,000,000 | ---D | C] -- C:\Users\jeremy\AppData\Local\com
[2014/04/08 16:40:53 | 000,000,000 | ---D | C] -- C:\Program Files\HQVid1.9v3
[2014/04/08 16:32:16 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Software Updater
[2014/04/08 16:32:16 | 000,000,000 | ---D | C] -- C:\Program Files\Software Updater
[2014/04/08 16:20:32 | 000,000,000 | ---D | C] -- C:\ProgramData\OO Software
[2014/04/08 15:38:05 | 000,295,080 | ---- | C] (SecureAssist) -- C:\Windows\System32\SecureAssist.dll
[2014/04/08 15:36:06 | 000,000,000 | ---D | C] -- C:\Program Files\suprasavings
[2014/04/08 15:34:59 | 000,000,000 | ---D | C] -- C:\Program Files\003
[2014/04/08 15:14:50 | 000,000,000 | ---D | C] -- C:\ProgramData\4shared Desktop
[2014/04/06 19:49:53 | 000,000,000 | ---D | C] -- C:\Users\jeremy\AppData\Roaming\qone8

* poste le rapport ici


Redémarre l'ordinateur

Internet devrait merdouiller, lance Complete Internet Repair.
Clic sur la flèche en face de repair Winsock.
Redémarre l'ordinateur
0
Réponse 6 / 14
batto39
 
bonjour, merci pour votre aide apparament ça a marché bonne journée
0
Réponse 7 / 14
Malekal_morte- Messages postés 180304 Date d'inscription   Statut Modérateur, Contributeur sécurité Dernière intervention   24 685
 
tu as fait la correction OTL ?
0
Réponse 8 / 14
batto39
 
oui c'est bon merci bonne journée
0
Réponse 9 / 14
Malekal_morte- Messages postés 180304 Date d'inscription   Statut Modérateur, Contributeur sécurité Dernière intervention   24 685
 
refais un scan OTL et donne le rapport via pjjoint
voir ce qui reste.
0
Réponse 10 / 14
batto39
 
bonjour voici le lien &près mon scan otl

http://pjjoint.malekal.com/files.php?id=OTL_20140414_f9i8t5j12w6

merci
0
Réponse 11 / 14
Malekal_morte- Messages postés 180304 Date d'inscription   Statut Modérateur, Contributeur sécurité Dernière intervention   24 685
 
bha non tu n'as rien fait de ce qui était demandé...
donc tu as encore tous les programmes parasites.


0
Réponse 12 / 14
batto39
 
rebonjour, je recommence de zero j'ai retiré les extensions de google chrome et maintenant je relance otl merci
0
Réponse 13 / 14
batto39
 
me revoila , je vous envoie le lien du rapport OTL

http://pjjoint.malekal.com/files.php?id=OTL_20140414_y14u9q10o10g9


merci
0
Malekal_morte- Messages postés 180304 Date d'inscription   Statut Modérateur, Contributeur sécurité Dernière intervention   24 685
 
j'ai encore l'impression que tu n'as pas fait la correction...
0
Réponse 14 / 14
au
 
he bien quand j'appuie sur correction on me dit qu'aucun correctif n'est trouvé alors je ne sais pas quoi faire
0
Malekal_morte- Messages postés 180304 Date d'inscription   Statut Modérateur, Contributeur sécurité Dernière intervention   24 685
 
prends le temps de lire et applique ce qui est écrit : https://forums.commentcamarche.net/forum/affich-30030122-fenetre-intempestve#5
0

Discussions similaires

Conhost.exe
ThaBestGamer -
bazfile -

3 réponses
iCloud affichage fenêtres intempestives. Réglages impossible.
jemlabd -
jemlabd -

9 réponses
Caler une adresse au niveau de la fenêtre d'une enveloppe
®omain -
kent -

15 réponses