Supprimer hot deals
grib36
Messages postés
1
Date d'inscription
Statut
Membre
Dernière intervention
-
Malekal_morte- Messages postés 180304 Date d'inscription Statut Modérateur, Contributeur sécurité Dernière intervention -
Malekal_morte- Messages postés 180304 Date d'inscription Statut Modérateur, Contributeur sécurité Dernière intervention -
Bonjour,
Je n'arrive pas a supprimer hot deals et mon ordi est au ralenti.
Voici le rapport otl
OTL logfile created on: 21/05/2014 08:07:13 - Run 2
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\vero\Downloads
Enterprise Edition N Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.11.9600.17041)
Locale: 0000040C | Country: France | Language: FRA | Date Format: dd/MM/yyyy
2,96 Gb Total Physical Memory | 1,50 Gb Available Physical Memory | 50,72% Memory free
5,92 Gb Paging File | 4,20 Gb Available in Paging File | 70,86% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\windows | %ProgramFiles% = C:\Program Files
Drive C: | 465,66 Gb Total Space | 380,74 Gb Free Space | 81,76% Space Free | Partition Type: NTFS
Computer Name: VERO-PC | User Name: vero | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
[color=#E56717]========== Processes (SafeList) ==========[/color]
PRC - [2014/05/16 17:46:14 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\vero\Downloads\OTL.exe
PRC - [2014/05/15 21:18:42 | 001,863,856 | ---- | M] (Adobe Systems, Inc.) -- C:\Windows\System32\Macromed\Flash\FlashPlayerPlugin_13_0_0_214.exe
PRC - [2014/05/15 09:21:59 | 001,268,560 | ---- | M] (BitTorrent Inc.) -- C:\Users\vero\AppData\Roaming\uTorrent\uTorrent.exe
PRC - [2014/05/10 09:52:32 | 000,275,568 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2014/05/06 22:23:43 | 000,543,232 | ---- | M] () -- C:\Program Files\004\rqpbhevlkc32.exe
PRC - [2014/05/06 22:16:48 | 000,541,696 | ---- | M] () -- C:\Program Files\002\yewimmxqbs32.exe
PRC - [2014/05/01 16:37:44 | 000,150,528 | ---- | M] () -- c:\Program Files\CouponDownloader\CouponDownloaderService.exe
PRC - [2014/04/28 08:00:35 | 000,150,504 | ---- | M] (PriceMeter) -- C:\Program Files\PriceMeterLiveUpdate\Update\PriceMeterLiveUpdate.exe
PRC - [2014/04/27 22:04:30 | 000,541,696 | ---- | M] () -- C:\Program Files\003\buuoujqmrk32.exe
PRC - [2014/04/27 09:13:33 | 003,873,704 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe
PRC - [2014/04/27 09:13:33 | 000,050,344 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe
PRC - [2014/04/16 17:14:08 | 000,011,776 | ---- | M] () -- C:\Program Files\NewPlayer\NewPlayerUpdaterService.exe
PRC - [2014/04/11 04:05:52 | 000,705,136 | ---- | M] (Cherished Technololgy LIMITED) -- C:\ProgramData\IePluginService\PluginService.exe
PRC - [2014/03/21 18:41:19 | 000,348,448 | ---- | M] () -- C:\Program Files\FindRight\updateFindRight.exe
PRC - [2014/03/21 18:08:14 | 000,348,448 | ---- | M] () -- C:\Program Files\FindRight\bin\utilFindRight.exe
PRC - [2014/02/26 13:30:06 | 000,425,104 | ---- | M] (Taiwan Shui Mu Chih Ching Technology Limited.) -- C:\Program Files\WinZipper\winzipersvc.exe
PRC - [2014/02/26 10:30:22 | 000,501,904 | ---- | M] (Cherished Technololgy LIMITED) -- C:\ProgramData\WPM\wprotectmanager.exe
PRC - [2014/02/25 12:49:52 | 002,117,960 | ---- | M] (CybelSoft) -- C:\Program Files\ma-config.com\MaConfigAgent.exe
PRC - [2014/01/10 11:54:54 | 009,386,352 | ---- | M] (Systweak Inc) -- C:\Program Files\Advanced Driver Updater\adu.exe
PRC - [2013/12/21 08:04:16 | 000,065,432 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
PRC - [2013/12/05 14:59:40 | 000,049,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskhost.exe
PRC - [2013/11/20 21:39:46 | 000,114,176 | ---- | M] (Wajam) -- C:\Program Files\Wajam\Updater\WajamUpdaterV3.exe
PRC - [2013/11/15 02:48:30 | 001,861,968 | ---- | M] () -- C:\Program Files\DivX\DivX Update\DivXUpdate.exe
PRC - [2013/10/23 16:01:10 | 000,280,288 | ---- | M] (Microsoft Corporation) -- c:\Program Files\Microsoft Security Client\NisSrv.exe
PRC - [2013/10/23 16:01:10 | 000,022,208 | ---- | M] (Microsoft Corporation) -- c:\Program Files\Microsoft Security Client\MsMpEng.exe
PRC - [2013/10/23 15:55:28 | 000,948,440 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Security Client\msseces.exe
PRC - [2013/03/26 10:57:52 | 000,069,632 | ---- | M] (Primax Electronics Ltd.) -- C:\Program Files\Lenovo\Lenovo Mouse Suite\ICO.exe
PRC - [2013/02/21 16:34:46 | 000,928,624 | ---- | M] (Canal+ Distribution) -- C:\Program Files\Lecteur CANALPLAY\CanalPlayService.exe
PRC - [2012/03/13 11:46:24 | 000,145,408 | ---- | M] () -- C:\Program Files\Lenovo\Lenovo Mouse Suite\PelService.exe
PRC - [2011/09/20 10:17:44 | 000,115,048 | ---- | M] (Renesas Electronics Corporation) -- C:\Program Files\Renesas Electronics\USB 3.0 Host Controller Driver\Application\rusb3mon.exe
PRC - [2011/02/25 07:30:54 | 002,616,320 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2010/06/01 17:41:38 | 000,155,648 | ---- | M] () -- C:\Program Files\Lenovo\Lenovo Mouse Suite\PelElvDm.exe
PRC - [2008/11/20 17:27:28 | 000,020,480 | ---- | M] () -- C:\Program Files\Lenovo\Lenovo Mouse Suite\FSRremoS.EXE
PRC - [2007/04/27 20:40:14 | 001,581,056 | ---- | M] (Lenovo(beijing) Limited) -- C:\Program Files\Lenovo\EnergyCut\utilty.exe
PRC - [2007/03/09 20:00:18 | 001,167,360 | ---- | M] (Lenovo (Beijing) Limited) -- C:\Program Files\Lenovo\EnergyCut\EnergyCut.exe
[color=#E56717]========== Modules (No Company Name) ==========[/color]
MOD - [2014/05/15 21:18:39 | 016,361,136 | ---- | M] () -- C:\Windows\System32\Macromed\Flash\NPSWF32_13_0_0_214.dll
MOD - [2014/05/10 09:51:59 | 003,839,088 | ---- | M] () -- C:\Program Files\Mozilla Firefox\mozjs.dll
MOD - [2014/04/27 09:13:37 | 019,336,120 | ---- | M] () -- C:\Program Files\AVAST Software\Avast\libcef.dll
MOD - [2013/11/15 02:49:56 | 000,100,688 | ---- | M] () -- C:\Program Files\DivX\DivX Update\DivXUpdateCheck.dll
MOD - [2013/11/15 02:48:30 | 001,861,968 | ---- | M] () -- C:\Program Files\DivX\DivX Update\DivXUpdate.exe
MOD - [2011/06/23 11:42:48 | 000,168,448 | ---- | M] () -- C:\Program Files\Advanced Driver Updater\unrar.dll
MOD - [2008/11/20 17:27:28 | 000,020,480 | ---- | M] () -- C:\Program Files\Lenovo\Lenovo Mouse Suite\FSRremoS.EXE
MOD - [2007/04/13 21:18:10 | 000,057,344 | ---- | M] () -- C:\Program Files\Lenovo\EnergyCut\kbdhook.dll
MOD - [2005/06/24 20:05:02 | 000,045,056 | ---- | M] () -- C:\Program Files\Lenovo\EnergyCut\HookLib.dll
[color=#E56717]========== Services (SafeList) ==========[/color]
SRV - [2014/05/15 21:18:44 | 000,257,712 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\System32\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2014/05/10 09:52:31 | 000,119,408 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2014/05/06 22:23:43 | 000,543,232 | ---- | M] () [Auto | Running] -- C:\Program Files\004\rqpbhevlkc32.exe -- (rqpbhevlkc32)
SRV - [2014/05/06 22:16:48 | 000,541,696 | ---- | M] () [Auto | Running] -- C:\Program Files\002\yewimmxqbs32.exe -- (yewimmxqbs32)
SRV - [2014/05/01 16:37:44 | 000,150,528 | ---- | M] () [Auto | Running] -- c:\Program Files\CouponDownloader\CouponDownloaderService.exe -- (CouponDownloaderService)
SRV - [2014/04/28 08:00:35 | 000,150,504 | ---- | M] (PriceMeter) [On_Demand | Stopped] -- C:\Program Files\PriceMeterLiveUpdate\Update\PriceMeterLiveUpdate.exe -- (pricemeterliveUpdatem)
SRV - [2014/04/28 08:00:35 | 000,150,504 | ---- | M] (PriceMeter) [Auto | Running] -- C:\Program Files\PriceMeterLiveUpdate\Update\PriceMeterLiveUpdate.exe -- (pricemeterliveUpdate)
SRV - [2014/04/27 22:04:30 | 000,541,696 | ---- | M] () [Auto | Running] -- C:\Program Files\003\buuoujqmrk32.exe -- (buuoujqmrk32)
SRV - [2014/04/27 09:13:33 | 000,050,344 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe -- (avast! Antivirus)
SRV - [2014/04/16 17:14:08 | 000,011,776 | ---- | M] () [Auto | Running] -- C:\Program Files\NewPlayer\NewPlayerUpdaterService.exe -- (NewPlayerUpdaterService)
SRV - [2014/04/11 04:05:52 | 000,705,136 | ---- | M] (Cherished Technololgy LIMITED) [Auto | Running] -- C:\ProgramData\IePluginService\PluginService.exe -- (IePluginService)
SRV - [2014/03/21 18:41:19 | 000,348,448 | ---- | M] () [Auto | Running] -- C:\Program Files\FindRight\updateFindRight.exe -- (Update FindRight)
SRV - [2014/03/21 18:08:14 | 000,348,448 | ---- | M] () [Auto | Running] -- C:\Program Files\FindRight\bin\utilFindRight.exe -- (Util FindRight)
SRV - [2014/03/14 16:17:00 | 000,036,392 | ---- | M] (Just Develop It) [Auto | Stopped] -- C:\Program Files\MyPC Backup\BackupStack.exe -- (BackupStack)
SRV - [2014/03/06 09:38:10 | 000,108,032 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\windows\System32\IEEtwCollector.exe -- (IEEtwCollectorService)
SRV - [2014/02/26 13:30:06 | 000,425,104 | ---- | M] (Taiwan Shui Mu Chih Ching Technology Limited.) [Auto | Running] -- C:\Program Files\WinZipper\winzipersvc.exe -- (winzipersvc)
SRV - [2014/02/26 10:30:22 | 000,501,904 | ---- | M] (Cherished Technololgy LIMITED) [Auto | Running] -- C:\ProgramData\WPM\wprotectmanager.exe -- (Wpm)
SRV - [2014/02/25 12:49:52 | 002,117,960 | ---- | M] (CybelSoft) [Auto | Running] -- C:\Program Files\ma-config.com\MaConfigAgent.exe -- (MaConfigAgent)
SRV - [2014/02/20 11:49:29 | 000,146,920 | ---- | M] (SaveSense) [On_Demand | Stopped] -- C:\Program Files\SaveSenseLive\Update\SaveSenseLive.exe -- (savesenselivem)
SRV - [2014/02/20 11:49:29 | 000,146,920 | ---- | M] (SaveSense) [Auto | Stopped] -- C:\Program Files\SaveSenseLive\Update\SaveSenseLive.exe -- (savesenselive)
SRV - [2013/12/21 08:04:16 | 000,065,432 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2013/12/05 16:18:15 | 001,343,400 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\Wat\WatAdminSvc.exe -- (WatAdminSvc)
SRV - [2013/11/20 21:39:46 | 000,114,176 | ---- | M] (Wajam) [Auto | Running] -- C:\Program Files\Wajam\Updater\WajamUpdaterV3.exe -- (WajamUpdaterV3)
SRV - [2013/10/31 12:01:46 | 000,022,888 | ---- | M] () [On_Demand | Stopped] -- C:\Program Files\Lenovo\System Update\SUService.exe -- (SUService)
SRV - [2013/10/23 16:01:10 | 000,280,288 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- c:\Program Files\Microsoft Security Client\NisSrv.exe -- (NisSrv)
SRV - [2013/10/23 16:01:10 | 000,022,208 | ---- | M] (Microsoft Corporation) [Auto | Running] -- c:\Program Files\Microsoft Security Client\MsMpEng.exe -- (MsMpSvc)
SRV - [2013/05/27 06:57:27 | 000,680,960 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\mpsvc.dll -- (WinDefend)
SRV - [2013/02/21 16:34:46 | 000,928,624 | ---- | M] (Canal+ Distribution) [On_Demand | Running] -- C:\Program Files\Lecteur CANALPLAY\CanalPlayService.exe -- (Service CANALPLAY)
SRV - [2012/03/13 11:46:24 | 000,145,408 | ---- | M] () [Auto | Running] -- C:\Program Files\Lenovo\Lenovo Mouse Suite\PelService.exe -- (PelService)
SRV - [2009/07/14 03:16:15 | 000,016,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\StorSvc.dll -- (StorSvc)
SRV - [2009/07/14 03:16:13 | 000,025,088 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\sensrsvc.dll -- (SensrSvc)
SRV - [2009/07/14 03:16:12 | 001,004,544 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\PeerDistSvc.dll -- (PeerDistSvc)
[color=#E56717]========== Driver Services (SafeList) ==========[/color]
DRV - File not found [Kernel | On_Demand | Stopped] -- System32\drivers\rdvgkmd.sys -- (VGPU)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys -- (esgiguard)
DRV - [2014/05/15 19:32:43 | 000,777,488 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\Windows\System32\drivers\aswsnx.sys -- (aswSnx)
DRV - [2014/05/15 19:32:43 | 000,411,680 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\Windows\System32\drivers\aswsp.sys -- (aswSP)
DRV - [2014/05/15 19:32:43 | 000,068,312 | ---- | M] (AVAST Software) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\aswstm.sys -- (aswStm)
DRV - [2014/04/27 09:13:40 | 000,180,632 | ---- | M] () [Kernel | Boot | Running] -- C:\windows\System32\drivers\aswVmm.sys -- (aswVmm)
DRV - [2014/04/27 09:13:39 | 000,081,768 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\System32\drivers\aswRdr2.sys -- (aswRdr)
DRV - [2014/04/27 09:13:39 | 000,067,824 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\Windows\System32\drivers\aswMonFlt.sys -- (aswMonFlt)
DRV - [2014/04/27 09:13:39 | 000,049,944 | ---- | M] () [Kernel | Boot | Running] -- C:\windows\System32\drivers\aswRvrt.sys -- (aswRvrt)
DRV - [2014/04/27 09:13:39 | 000,024,184 | ---- | M] () [Kernel | Auto | Running] -- C:\Windows\System32\drivers\aswHwid.sys -- (aswHwid)
DRV - [2014/02/24 17:33:46 | 000,016,160 | ---- | M] (CybelSoft) [Kernel | On_Demand | Stopped] -- C:\Program Files\ma-config.com\Drivers\ma-config_x86.sys -- (ma-config_x86)
DRV - [2014/02/13 14:45:54 | 000,047,488 | ---- | M] (NetFilterSDK.com) [Kernel | System | Running] -- C:\Windows\System32\drivers\netfilter.sys -- (netfilter)
DRV - [2013/10/02 02:42:31 | 000,049,152 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV - [2013/09/27 10:53:06 | 000,104,768 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\NisDrvWFP.sys -- (NisDrv)
DRV - [2013/03/26 08:47:08 | 000,010,240 | ---- | M] (TPMX Electronics Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\pvendrlf.SYS -- (pvendrlf)
DRV - [2013/03/26 08:46:42 | 000,026,624 | ---- | M] (TPMX Electronics Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\phidmice.sys -- (phidmice)
DRV - [2013/03/26 08:39:48 | 000,019,456 | ---- | M] (TPMX Electronics Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\pmouself.SYS -- (pmouself)
DRV - [2013/03/19 18:04:52 | 000,026,624 | ---- | M] (TPMX Electronics Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\pelusblf.sys -- (pelusblf)
DRV - [2012/11/28 16:30:12 | 000,019,456 | ---- | M] (TPMX Electronics Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\PELMOUSE.SYS -- (pelmouse)
DRV - [2012/08/23 16:46:55 | 000,024,064 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\terminpt.sys -- (terminpt)
DRV - [2012/08/23 16:44:32 | 000,014,848 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\rdpvideominiport.sys -- (RdpVideoMiniport)
DRV - [2012/08/23 16:41:34 | 000,027,136 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\TsUsbGD.sys -- (TsUsbGD)
DRV - [2011/11/21 17:09:02 | 000,168,320 | ---- | M] (Renesas Electronics Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\rusb3xhc.sys -- (rusb3xhc)
DRV - [2011/11/21 17:09:02 | 000,078,592 | ---- | M] (Renesas Electronics Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\rusb3hub.sys -- (rusb3hub)
DRV - [2010/11/20 23:30:52 | 000,175,360 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\vmbus.sys -- (vmbus)
DRV - [2010/11/20 23:30:52 | 000,112,640 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\tsusbhub.sys -- (tsusbhub)
DRV - [2010/11/20 23:30:52 | 000,077,184 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\Synth3dVsc.sys -- (Synth3dVsc)
DRV - [2010/11/20 23:30:52 | 000,062,464 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\dmvsc.sys -- (dmvsc)
DRV - [2010/11/20 23:30:52 | 000,040,704 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\vmstorfl.sys -- (storflt)
DRV - [2010/11/20 23:30:52 | 000,028,032 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\storvsc.sys -- (storvsc)
DRV - [2010/11/20 23:30:52 | 000,017,920 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\VMBusHID.sys -- (VMBusHID)
DRV - [2010/11/20 23:30:52 | 000,005,632 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\vms3cap.sys -- (s3cap)
DRV - [2010/10/20 00:33:40 | 000,041,088 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\HECI.sys -- (MEI)
DRV - [2009/11/02 16:00:14 | 000,010,240 | ---- | M] (TPMX Electronics Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\PELVENDR.SYS -- (pelvendr)
DRV - [2009/07/14 01:45:33 | 000,083,456 | ---- | M] (Brother Industries Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\serial.sys -- (Serial)
DRV - [2007/04/09 20:07:48 | 000,011,776 | ---- | M] (Lenovo Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\AcpiVpc.sys -- (ACPIVPC)
[color=#E56717]========== Standard Registry (SafeList) ==========[/color]
[color=#E56717]========== Internet Explorer ==========[/color]
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.awesomehp.com/?type=hp&ts=1392892765&from=adks&uid=HGSTXHTS725050A7E630_TF1500Y93DHW2M3DHW2MX
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.google.com/webhp?gws_rd=ssl{searchTerms}
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = https://www.google.com/webhp?gws_rd=ssl{searchTerms}
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://start.mysearchdial.com/...
IE - HKLM\..\SearchScopes,DefaultScope = {006ee092-9658-4fd6-bd8e-a21a348e59f5}
IE - HKLM\..\SearchScopes\{006ee092-9658-4fd6-bd8e-a21a348e59f5}: "URL" = http://start.mysearchdial.com/results.php?f=4&q={searchTerms}&a=dsites02_14_19_ch&cd=2XzuyEtN2Y1L1QzuzytDyE0C0EyD0EyB0CyEtA0B0A0EzyyCtN0D0Tzu0SzzyDyBtN1L2XzutBtFtBtDtFyCtFtDtN1L1CzutCyEtDtAtDyD1V1StN1L1G1B1V1N2Y1L1Qzu2SyEtCyE0BtDyD0DtAtGzzzztAtDtG0FtA0CzztGzzzy0ByDtGyCyE0AyB0AyC0EtCyCtD0CyD2QtN1M1F1B2Z1V1N2Y1L1Qzu2StDzy0AtD0D0EtCyEtGyByCzy0DtGtAtAyC0CtGzz0D0F0EtGtBzztAtByC0DzytBzy0CtByB2Q&cr=706098876&ir=
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = https://www.google.com/webhp?gws_rd=ssl{searchTerms}
IE - HKLM\..\SearchScopes\{77AA745B-F4F8-45DA-9B14-61D2D95054C8}: "URL" = https://search.safefinder.com/?st=ds&q={searchTerms}
IE - HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyServer" =
IE - HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "AutoConfigURL" =
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-4007704961-963353656-1577268053-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.awesomehp.com/?type=hp&ts=1392892765&from=adks&uid=HGSTXHTS725050A7E630_TF1500Y93DHW2M3DHW2MX
IE - HKU\S-1-5-21-4007704961-963353656-1577268053-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.google.com/webhp?gws_rd=ssl{searchTerms}
IE - HKU\S-1-5-21-4007704961-963353656-1577268053-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = https://search.safefinder.com/?st=ds&q={searchTerms}
IE - HKU\S-1-5-21-4007704961-963353656-1577268053-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = https://search.safefinder.com/?st=ds&q={searchTerms}
IE - HKU\S-1-5-21-4007704961-963353656-1577268053-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
IE - HKU\S-1-5-21-4007704961-963353656-1577268053-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = https://www.msn.com/fr-fr
IE - HKU\S-1-5-21-4007704961-963353656-1577268053-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = fr-FR
IE - HKU\S-1-5-21-4007704961-963353656-1577268053-1001\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = https://search.safefinder.com/?st=ds&q={searchTerms}
IE - HKU\S-1-5-21-4007704961-963353656-1577268053-1001\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = https://search.safefinder.com/?st=ds&q={searchTerms}
IE - HKU\S-1-5-21-4007704961-963353656-1577268053-1001\..\SearchScopes,DefaultScope = {006ee092-9658-4fd6-bd8e-a21a348e59f5}
IE - HKU\S-1-5-21-4007704961-963353656-1577268053-1001\..\SearchScopes\{006ee092-9658-4fd6-bd8e-a21a348e59f5}: "URL" = https://search.safefinder.com/?st=ds&q={searchTerms}
IE - HKU\S-1-5-21-4007704961-963353656-1577268053-1001\..\SearchScopes\{77AA745B-F4F8-45DA-9B14-61D2D95054C8}: "URL" = https://search.safefinder.com/?st=ds&q={searchTerms}
IE - HKU\S-1-5-21-4007704961-963353656-1577268053-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-4007704961-963353656-1577268053-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = <-loopback>;<local>
[color=#E56717]========== FireFox ==========[/color]
FF - prefs.js..extensions.enabledAddons: wrc%40avast.com:9.0.2018.95
FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:29.0.1
FF - user.js - File not found
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\windows\system32\Macromed\Flash\NPSWF32_13_0_0_214.dll ()
FF - HKLM\Software\MozillaPlugins\@canalplay.com/CanalPlay: C:\Program Files\Lecteur CANALPLAY\npcplay.dll (Canal+ Distribution)
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0: C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Web Player Plug-In,version=1.0.0: C:\Program Files\DivX\DivX Web Player\npdivx32.dll (DivX, LLC)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.55.2: C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.55.2: C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: C:\windows\system32\Wat\npWatWeb.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@tools.updatepm.com/PriceMeterLiveUpdate Update;version=3: C:\Program Files\PriceMeterLiveUpdate\Update\1.3.23.0\npGoogleUpdate3.dll (PriceMeter)
FF - HKLM\Software\MozillaPlugins\@tools.updatepm.com/PriceMeterLiveUpdate Update;version=9: C:\Program Files\PriceMeterLiveUpdate\Update\1.3.23.0\npGoogleUpdate3.dll (PriceMeter)
FF - HKLM\Software\MozillaPlugins\@tools.updaterss.com/SaveSenseLive Update;version=3: C:\Program Files\SaveSenseLive\Update\1.3.23.0\npGoogleUpdate3.dll (SaveSense)
FF - HKLM\Software\MozillaPlugins\@tools.updaterss.com/SaveSenseLive Update;version=9: C:\Program Files\SaveSenseLive\Update\1.3.23.0\npGoogleUpdate3.dll (SaveSense)
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.0.5: C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.1.3: C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKLM\Software\MozillaPlugins\Ext: File not found
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\quick_start@gmail.com: C:\Users\vero\AppData\Roaming\Mozilla\Firefox\Profiles\24dxbf1v.default\extensions\quick_start@gmail.com [2014/05/06 22:38:00 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\wrc@avast.com: C:\Program Files\AVAST Software\Avast\WebRep\FF [2014/04/27 09:13:43 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 29.0.1\extensions\\Components: C:\Program Files\Mozilla Firefox\components
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 29.0.1\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2014/05/16 14:52:09 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 29.0.1\extensions\\Components: C:\Program Files\Mozilla Firefox\components
FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 29.0.1\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2014/05/16 14:52:09 | 000,000,000 | ---D | M]
[2014/02/18 22:47:40 | 000,000,000 | ---D | M] (No name found) -- C:\Users\vero\AppData\Roaming\mozilla\Extensions
[2014/05/06 22:38:01 | 000,000,000 | ---D | M] (No name found) -- C:\Users\vero\AppData\Roaming\mozilla\Firefox\Profiles\24dxbf1v.default\extensions
[2014/05/06 22:38:00 | 000,000,000 | ---D | M] (No name found) -- C:\Users\vero\AppData\Roaming\mozilla\Firefox\Profiles\24dxbf1v.default\extensions\quick_start@gmail.com
[2014/05/16 16:58:19 | 000,000,000 | ---D | M] (No name found) -- C:\Users\vero\AppData\Roaming\mozilla\Firefox\Profiles\ri1d13t4.default-1400251799040\extensions
[2014/05/15 22:11:37 | 000,000,000 | ---D | M] (No name found) -- C:\Users\vero\AppData\Roaming\mozilla\Firefox\Profiles\xs6fx47n.default\extensions
[2014/03/01 10:24:26 | 000,000,000 | ---D | M] ("MySearchDial NewTab") -- C:\Users\vero\AppData\Roaming\mozilla\Firefox\Profiles\xs6fx47n.default\extensions\{ad9a41d2-9a49-4fa6-a79e-71a0785364c8}
[2014/05/15 22:11:37 | 000,000,000 | ---D | M] (CouponDownloader) -- C:\Users\vero\AppData\Roaming\mozilla\Firefox\Profiles\xs6fx47n.default\extensions\CouponDownloader@jetpack
[2014/03/01 10:34:07 | 000,000,000 | ---D | M] (No name found) -- C:\Users\vero\AppData\Roaming\mozilla\Firefox\Profiles\xs6fx47n.default\extensions\staged
[2014/05/10 09:51:45 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\mozilla firefox\browser\extensions
[2014/05/10 09:52:35 | 000,000,000 | ---D | M] (Default) -- C:\Program Files\mozilla firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
[2014/04/27 09:13:43 | 000,000,000 | ---D | M] (avast! Online Security) -- C:\PROGRAM FILES\AVAST SOFTWARE\AVAST\WEBREP\FF
O1 HOSTS File: ([2014/05/06 22:18:28 | 000,000,824 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O2 - BHO: (CouponDownloader) - {10AD2C61-0898-4348-8600-14A342F22AC3} - C:\Program Files\Coupon Downloader\Coupon Downloader.dll ()
O2 - BHO: (Plus-HD9.5v4) - {11111111-1111-1111-1111-110511311166} - C:\Program Files\Plus-HD9.5v4\Plus-HD9.5v4-bho.dll (Plus HDO)
O2 - BHO: (FindRight) - {2c774641-5504-46a8-b63f-6715ae3fe376} - C:\Program Files\FindRight\FindRightBHO.dll (FindRight)
O2 - BHO: (IETabPage Class) - {3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C} - C:\Program Files\SupTab\SupTab.dll (Thinknice Co. Limited)
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (avast! Online Security) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O2 - BHO: (Wajam) - {A7A6995D-6EE1-4FD1-A258-49395D5BF99C} - C:\Program Files\Wajam\IE\priam_bho.dll (Wajam)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O3 - HKLM\..\Toolbar: (no name) - {ae07101b-46d4-4a98-af68-0333ea26e113} - No CLSID value found.
O4 - HKLM..\Run: [AvastUI.exe] C:\Program Files\AVAST Software\Avast\AvastUI.exe (AVAST Software)
O4 - HKLM..\Run: [BrowserSafeguard] "C:\Program Files\Browsersafeguard\BrowserSafeguard.exe" File not found
O4 - HKLM..\Run: [CanalPlayer] C:\Program Files\Lecteur CANALPLAY\CanalPlayer.exe (Canal+ Distribution)
O4 - HKLM..\Run: [Daemon for Mouse Suite] C:\Program Files\Lenovo\Lenovo Mouse Suite\ICO.EXE (Primax Electronics Ltd.)
O4 - HKLM..\Run: [DivXMediaServer] C:\Program Files\DivX\DivX Media Server\DivXMediaServer.exe (DivX, LLC)
O4 - HKLM..\Run: [DivXUpdate] C:\Program Files\DivX\DivX Update\DivXUpdate.exe ()
O4 - HKLM..\Run: [EnergyCut] C:\Program Files\Lenovo\EnergyCut\EnergyCut.exe (Lenovo (Beijing) Limited)
O4 - HKLM..\Run: [EnergyUtility] C:\Program Files\Lenovo\EnergyCut\utilty.exe (Lenovo(beijing) Limited)
O4 - HKLM..\Run: [fst_fr_130] File not found
O4 - HKLM..\Run: [MSC] c:\Program Files\Microsoft Security Client\msseces.exe (Microsoft Corporation)
O4 - HKLM..\Run: [RUSB3MON] C:\Program Files\Renesas Electronics\USB 3.0 Host Controller Driver\Application\rusb3mon.exe (Renesas Electronics Corporation)
O4 - HKU\S-1-5-21-4007704961-963353656-1577268053-1001..\Run: [DriverTurbo] C:\Program Files\DriverTurbo\DriverTurbo.exe File not found
O4 - HKU\S-1-5-21-4007704961-963353656-1577268053-1001..\Run: [PriceMeterW] "C:\Users\vero\AppData\Local\PriceMeter\pricemeterw.exe" File not found
O4 - HKU\S-1-5-21-4007704961-963353656-1577268053-1001..\Run: [uTorrent] C:\Users\vero\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc.)
O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (Microsoft Corporation)
O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (Microsoft Corporation)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: SoftwareSASGeneration = 1
O7 - HKU\S-1-5-21-4007704961-963353656-1577268053-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL (Microsoft Corporation)
O13 - gopher Prefix: missing
O15 - HKLM\..Trusted Domains: canalplay.com ([]* in Trusted sites)
O15 - HKLM\..Trusted Domains: canalplusactive.com ([]* in Trusted sites)
O15 - HKU\S-1-5-21-4007704961-963353656-1577268053-1001\..Trusted Domains: canalplay.com ([]* in Trusted sites)
O15 - HKU\S-1-5-21-4007704961-963353656-1577268053-1001\..Trusted Domains: canalplusactive.com ([]* in Trusted sites)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{BBFA282D-7154-4EC6-8BB6-97F92990738F}: DhcpNameServer = 192.168.1.1
O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009/06/10 23:42:20 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)
[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]
[2014/05/16 17:34:32 | 000,000,000 | -HSD | C] -- C:\Config.Msi
[2014/05/16 15:56:02 | 000,000,000 | ---D | C] -- C:\Program Files\Enigma Software Group
[2014/05/16 15:47:49 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Wise Installation Wizard
[2014/05/15 22:11:40 | 000,000,000 | ---D | C] -- C:\Program Files\CouponDownloader
[2014/05/15 22:11:37 | 000,000,000 | ---D | C] -- C:\Program Files\Coupon Downloader
[2014/05/15 09:20:46 | 000,000,000 | R--D | C] -- C:\Users\vero\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
[2014/05/14 23:50:01 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\DESIGNER
[2014/05/14 23:46:18 | 002,724,864 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\mshtml.tlb
[2014/05/14 22:03:03 | 000,369,664 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\aepdu.dll
[2014/05/14 22:03:02 | 000,302,592 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\aeinv.dll
[2014/05/14 22:02:57 | 003,969,984 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\ntkrnlpa.exe
[2014/05/14 22:02:57 | 003,914,176 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\ntoskrnl.exe
[2014/05/14 22:02:55 | 000,538,112 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\objsel.dll
[2014/05/14 22:02:52 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\dimsroam.dll
[2014/05/14 22:02:51 | 000,051,200 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\cngprovider.dll
[2014/05/14 22:02:51 | 000,049,664 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\adprovider.dll
[2014/05/14 22:02:50 | 000,048,128 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\capiprovider.dll
[2014/05/14 22:02:49 | 000,047,616 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\dpapiprovider.dll
[2014/05/14 22:02:47 | 000,035,328 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\wincredprovider.dll
[2014/05/14 22:02:44 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\sspisrv.dll
[2014/05/13 20:59:30 | 000,000,000 | ---D | C] -- C:\Users\vero\AppData\Local\PokerStars.FR
[2014/05/13 20:59:29 | 000,000,000 | ---D | C] -- C:\Users\vero\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PokerStars.FR
[2014/05/13 20:58:39 | 000,000,000 | ---D | C] -- C:\Program Files\PokerStars.FR
[2014/05/10 09:51:44 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox
[2014/05/07 14:02:01 | 000,000,000 | ---D | C] -- C:\Users\vero\AppData\Roaming\AVG
[2014/05/07 14:02:01 | 000,000,000 | ---D | C] -- C:\Users\vero\AppData\Local\AVG
[2014/05/07 14:00:33 | 000,000,000 | ---D | C] -- C:\ProgramData\AVG
[2014/05/07 14:00:26 | 000,000,000 | -HSD | C] -- C:\ProgramData\{01BD4FC9-2F86-4706-A62E-774BB7E9D308}
[2014/05/07 14:00:26 | 000,000,000 | -H-D | C] -- C:\ProgramData\Common Files
[2014/05/07 14:00:11 | 000,000,000 | ---D | C] -- C:\Users\vero\AppData\Roaming\Nero
[2014/05/07 13:59:42 | 000,000,000 | ---D | C] -- C:\Users\vero\AppData\Roaming\OpenCandy
[2014/05/07 13:56:48 | 000,000,000 | ---D | C] -- C:\ProgramData\Nero
[2014/05/06 23:42:11 | 000,000,000 | --SD | C] -- C:\windows\System32\CompatTel
[2014/05/06 22:37:49 | 000,000,000 | ---D | C] -- C:\Users\vero\Desktop\Anciennes données de Firefox
[2014/05/06 22:22:38 | 000,000,000 | ---D | C] -- C:\Users\vero\AppData\Roaming\1H1Q
[2014/05/06 22:22:14 | 000,000,000 | ---D | C] -- C:\Users\vero\AppData\Roaming\AppCloudUpdater
[2014/05/06 22:22:12 | 000,000,000 | ---D | C] -- C:\Program Files\004
[2014/05/06 22:15:09 | 000,000,000 | ---D | C] -- C:\Program Files\002
[2014/05/06 22:14:57 | 000,000,000 | ---D | C] -- C:\Program Files\Nosibay
[2014/05/06 22:13:44 | 000,000,000 | ---D | C] -- C:\Users\vero\AppData\Roaming\Nosibay
[2014/05/06 22:13:01 | 000,000,000 | ---D | C] -- C:\ProgramData\2308189059
[2014/05/06 18:46:20 | 000,000,000 | ---D | C] -- C:\Users\vero\AppData\Roaming\Activeris
[2014/05/04 09:39:38 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\lenovo
[2014/05/01 11:53:10 | 000,000,000 | ---D | C] -- C:\Users\vero\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VOPackage
[2014/05/01 11:53:06 | 000,000,000 | ---D | C] -- C:\Users\vero\AppData\Roaming\VOPackage
[2014/05/01 10:29:17 | 000,000,000 | R--D | C] -- C:\Users\vero\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
[2014/04/30 19:47:44 | 000,000,000 | -HSD | C] -- C:\Users\vero\AppData\Local\EmieUserList
[2014/04/30 19:47:44 | 000,000,000 | -HSD | C] -- C:\Users\vero\AppData\Local\EmieSiteList
[2014/04/29 22:38:27 | 000,000,000 | ---D | C] -- C:\Users\vero\AppData\Local\com
[2014/04/29 22:33:00 | 000,000,000 | ---D | C] -- C:\Users\vero\AppData\Local\newplayer
[2014/04/29 22:32:40 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NewPlayer
[2014/04/29 22:32:18 | 000,000,000 | ---D | C] -- C:\Program Files\NewPlayer
[2014/04/29 18:37:17 | 000,440,832 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\ieui.dll
[2014/04/29 18:37:05 | 000,704,512 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\ieapfltr.dll
[2014/04/29 18:37:05 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\ieetwcollectorres.dll
[2014/04/29 18:37:02 | 000,164,864 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\msrating.dll
[2014/04/29 18:37:01 | 000,524,288 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\msfeeds.dll
[2014/04/29 18:37:01 | 000,043,008 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\jsproxy.dll
[2014/04/29 18:37:00 | 000,367,616 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\dxtmsft.dll
[2014/04/29 18:36:59 | 000,244,224 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\dxtrans.dll
[2014/04/29 18:36:58 | 000,575,488 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\ie4uinit.exe
[2014/04/29 18:36:57 | 000,112,128 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\ieUnatt.exe
[2014/04/29 18:36:57 | 000,061,952 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\iesetup.dll
[2014/04/29 18:36:57 | 000,032,768 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\iernonce.dll
[2014/04/29 18:36:55 | 000,592,896 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\jscript9diag.dll
[2014/04/29 18:36:55 | 000,051,200 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\ieetwproxystub.dll
[2014/04/29 18:36:55 | 000,032,256 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\JavaScriptCollectionAgent.dll
[2014/04/29 18:36:54 | 000,646,144 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\MsSpellCheckingFacility.exe
[2014/04/29 18:36:54 | 000,108,032 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\ieetwcollector.exe
[2014/04/29 18:36:45 | 001,967,104 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\inetcpl.cpl
[2014/04/29 18:36:34 | 004,254,720 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\jscript9.dll
[2014/04/28 08:09:08 | 000,264,616 | ---- | C] (Oracle Corporation) -- C:\windows\System32\javaws.exe
[2014/04/28 08:08:57 | 000,175,528 | ---- | C] (Oracle Corporation) -- C:\windows\System32\javaw.exe
[2014/04/28 08:08:57 | 000,175,016 | ---- | C] (Oracle Corporation) -- C:\windows\System32\java.exe
[2014/04/28 08:08:57 | 000,094,632 | ---- | C] (Oracle Corporation) -- C:\windows\System32\WindowsAccessBridge.dll
[2014/04/28 08:08:57 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
[2014/04/28 08:00:40 | 000,000,000 | ---D | C] -- C:\Users\vero\AppData\Local\PriceMeterLiveUpdate
[2014/04/28 08:00:40 | 000,000,000 | ---D | C] -- C:\ProgramData\PriceMeterLiveUpdate
[2014/04/28 08:00:40 | 000,000,000 | ---D | C] -- C:\Program Files\PriceMeterLiveUpdate
[2014/04/28 08:00:34 | 000,000,000 | ---D | C] -- C:\Users\vero\AppData\Roaming\PriceMeterUpdater
[2014/04/28 08:00:31 | 000,000,000 | ---D | C] -- C:\Program Files\Plus-HD9.5v4
[2014/04/27 22:04:39 | 000,000,000 | ---D | C] -- C:\temp
[2014/04/27 22:02:40 | 000,000,000 | ---D | C] -- C:\Program Files\003
[2014/04/27 17:18:42 | 000,000,000 | ---D | C] -- C:\Program Files\MediaPlayerplus
[2014/04/27 09:15:47 | 000,000,000 | ---D | C] -- C:\Users\vero\AppData\Roaming\AVAST Software
[2014/04/27 09:15:32 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast
[2014/04/27 09:13:49 | 000,068,312 | ---- | C] (AVAST Software) -- C:\windows\System32\drivers\aswstm.sys
[2014/04/27 09:13:48 | 000,777,488 | ---- | C] (AVAST Software) -- C:\windows\System32\drivers\aswsnx.sys
[2014/04/27 09:13:48 | 000,776,976 | ---- | C] (AVAST Software) -- C:\windows\System32\drivers\aswsnx.sys.1400175162571
[2014/04/27 09:13:48 | 000,411,680 | ---- | C] (AVAST Software) -- C:\windows\System32\drivers\aswsp.sys
[2014/04/27 09:13:48 | 000,411,552 | ---- | C] (AVAST Software) -- C:\windows\System32\drivers\aswsp.sys.1400175162571
[2014/04/27 09:13:47 | 000,081,768 | ---- | C] (AVAST Software) -- C:\windows\System32\drivers\aswRdr2.sys
[2014/04/27 09:13:47 | 000,067,824 | ---- | C] (AVAST Software) -- C:\windows\System32\drivers\aswMonFlt.sys
[2014/04/27 09:13:45 | 000,271,264 | ---- | C] (AVAST Software) -- C:\windows\System32\aswBoot.exe
[2014/04/27 09:13:38 | 000,043,152 | ---- | C] (AVAST Software) -- C:\windows\avastSS.scr
[2014/04/27 09:12:37 | 000,000,000 | ---D | C] -- C:\Program Files\AVAST Software
[2014/04/26 22:34:37 | 000,000,000 | ---D | C] -- C:\Program Files\Winamax Poker
[2014/04/26 22:30:12 | 000,149,440 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\drivers\storport.sys
[2014/04/26 22:30:12 | 000,027,072 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\drivers\Diskdump.sys
[2014/04/26 22:30:11 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\iologmsg.dll
[2 C:\Users\vero\AppData\Local\*.tmp files -> C:\Users\vero\AppData\Local\*.tmp -> ]
[1 C:\windows\*.tmp files -> C:\windows\*.tmp -> ]
[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]
[2014/05/21 08:05:03 | 000,001,278 | ---- | M] () -- C:\windows\tasks\f435e5b3-5f67-4dd8-a38b-911cec0347c8-7.job
[2014/05/21 08:05:00 | 000,000,950 | ---- | M] () -- C:\windows\tasks\PriceMeterLiveUpdateUpdateTaskMachineUA.job
[2014/05/21 08:05:00 | 000,000,946 | ---- | M] () -- C:\windows\tasks\PriceMeterLiveUpdateUpdateTaskMachineCore.job
[2014/05/21 08:04:00 | 000,001,002 | ---- | M] () -- C:\windows\tasks\Adobe Flash Player Updater.job
[2014/05/21 08:01:16 | 000,020,464 | -H-- | M] () -- C:\windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2014/05/21 08:01:16 | 000,020,464 | -H-- | M] () -- C:\windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2014/05/21 08:01:09 | 000,001,418 | ---- | M] () -- C:\windows\tasks\f435e5b3-5f67-4dd8-a38b-911cec0347c8-5.job
[2014/05/21 07:54:26 | 000,000,916 | ---- | M] () -- C:\windows\tasks\SaveSenseLiveUpdateTaskMachineUA.job
[2014/05/21 07:53:19 | 000,003,108 | ---- | M] () -- C:\windows\tasks\b0625433-0826-4d86-9af6-bc28310b6329-3.job
[2014/05/21 07:53:19 | 000,001,510 | ---- | M] () -- C:\windows\tasks\b0625433-0826-4d86-9af6-bc28310b6329-5.job
[2014/05/21 07:53:14 | 000,000,912 | ---- | M] () -- C:\windows\tasks\SaveSenseLiveUpdateTaskMachineCore.job
[2014/05/21 07:52:57 | 000,067,584 | --S- | M] () -- C:\windows\bootstat.dat
[2014/05/21 07:52:52 | 2384,932,864 | -HS- | M] () -- C:\hiberfil.sys
[2014/05/20 23:48:00 | 000,000,288 | ---- | M] () -- C:\windows\tasks\Digital Sites.job
[2014/05/20 15:01:00 | 000,000,262 | ---- | M] () -- C:\windows\tasks\RegClean Pro_DEFAULT.job
[2014/05/20 13:48:05 | 000,000,065 | ---- | M] () -- C:\Users\vero\AppData\Roaming\WB.CFG
[2014/05/16 18:50:36 | 474,045,585 | ---- | M] () -- C:\windows\MEMORY.DMP
[2014/05/15 21:18:42 | 000,692,400 | ---- | M] (Adobe Systems Incorporated) -- C:\windows\System32\FlashPlayerApp.exe
[2014/05/15 21:18:42 | 000,070,832 | ---- | M] (Adobe Systems Incorporated) -- C:\windows\System32\FlashPlayerCPLApp.cpl
[2014/05/15 19:32:43 | 000,777,488 | ---- | M] (AVAST Software) -- C:\windows\System32\drivers\aswsnx.sys
[2014/05/15 19:32:43 | 000,411,680 | ---- | M] (AVAST Software) -- C:\windows\System32\drivers\aswsp.sys
[2014/05/15 19:32:43 | 000,068,312 | ---- | M] (AVAST Software) -- C:\windows\System32\drivers\aswstm.sys
[2014/05/14 19:25:00 | 000,000,270 | ---- | M] () -- C:\windows\tasks\RegClean Pro_UPDATES.job
[2014/05/14 08:39:12 | 000,000,276 | ---- | M] () -- C:\windows\tasks\AdvancedDriverUpdater_UPDATES.job
[2014/05/13 20:59:30 | 000,001,048 | ---- | M] () -- C:\Users\vero\Desktop\PokerStars.fr.lnk
[2014/05/12 18:00:01 | 000,747,570 | ---- | M] () -- C:\windows\System32\perfh00C.dat
[2014/05/12 18:00:01 | 000,737,260 | ---- | M] () -- C:\windows\System32\perfh00A.dat
[2014/05/12 18:00:01 | 000,735,302 | ---- | M] () -- C:\windows\System32\perfh013.dat
[2014/05/12 18:00:01 | 000,732,162 | ---- | M] () -- C:\windows\System32\perfh015.dat
[2014/05/12 18:00:01 | 000,731,850 | ---- | M] () -- C:\windows\System32\perfh010.dat
[2014/05/12 18:00:01 | 000,720,822 | ---- | M] () -- C:\windows\System32\prfh0816.dat
[2014/05/12 18:00:01 | 000,716,404 | ---- | M] () -- C:\windows\System32\perfh019.dat
[2014/05/12 18:00:01 | 000,705,684 | ---- | M] () -- C:\windows\System32\prfh0416.dat
[2014/05/12 18:00:01 | 000,689,012 | ---- | M] () -- C:\windows\System32\perfh007.dat
[2014/05/12 18:00:01 | 000,675,558 | ---- | M] () -- C:\windows\System32\perfh00E.dat
[2014/05/12 18:00:01 | 000,660,644 | ---- | M] () -- C:\windows\System32\perfh005.dat
[2014/05/12 18:00:01 | 000,655,524 | ---- | M] () -- C:\windows\System32\perfh01D.dat
[2014/05/12 18:00:01 | 000,654,140 | ---- | M] () -- C:\windows\System32\perfh009.dat
[2014/05/12 18:00:01 | 000,648,486 | ---- | M] () -- C:\windows\System32\perfh01F.dat
[2014/05/12 18:00:01 | 000,598,792 | ---- | M] () -- C:\windows\System32\perfh008.dat
[2014/05/12 18:00:01 | 000,501,218 | ---- | M] () -- C:\windows\System32\perfh006.dat
[2014/05/12 18:00:01 | 000,486,318 | ---- | M] () -- C:\windows\System32\perfh014.dat
[2014/05/12 18:00:01 | 000,473,306 | ---- | M] () -- C:\windows\System32\perfh00B.dat
[2014/05/12 18:00:01 | 000,470,818 | ---- | M] () -- C:\windows\System32\perfh001.dat
[2014/05/12 18:00:01 | 000,420,228 | ---- | M] () -- C:\windows\System32\perfh012.dat
[2014/05/12 18:00:01 | 000,408,582 | ---- | M] () -- C:\windows\System32\perfh011.dat
[2014/05/12 18:00:01 | 000,390,146 | ---- | M] () -- C:\windows\System32\prfh0404.dat
[2014/05/12 18:00:01 | 000,384,148 | ---- | M] () -- C:\windows\System32\perfh00D.dat
[2014/05/12 18:00:01 | 000,372,974 | ---- | M] () -- C:\windows\System32\prfh0804.dat
[2014/05/12 18:00:01 | 000,171,142 | ---- | M] () -- C:\windows\System32\perfc00E.dat
[2014/05/12 18:00:01 | 000,158,342 | ---- | M] () -- C:\windows\System32\perfc00A.dat
[2014/05/12 18:00:01 | 000,155,740 | ---- | M] () -- C:\windows\System32\perfc015.dat
[2014/05/12 18:00:01 | 000,152,970 | ---- | M] () -- C:\windows\System32\perfc013.dat
[2014/05/12 18:00:01 | 000,152,774 | ---- | M] () -- C:\windows\System32\prfc0816.dat
[2014/05/12 18:00:01 | 000,150,710 | ---- | M] () -- C:\windows\System32\perfc019.dat
[2014/05/12 18:00:01 | 000,150,062 | ---- | M] () -- C:\windows\System32\perfc00C.dat
[2014/05/12 18:00:01 | 000,148,984 | ---- | M] () -- C:\windows\System32\perfc007.dat
[2014/05/12 18:00:01 | 000,147,524 | ---- | M] () -- C:\windows\System32\prfc0416.dat
[2014/05/12 18:00:01 | 000,146,714 | ---- | M] () -- C:\windows\System32\perfc010.dat
[2014/05/12 18:00:01 | 000,142,342 | ---- | M] () -- C:\windows\System32\perfc01D.dat
[2014/05/12 18:00:01 | 000,141,294 | ---- | M] () -- C:\windows\System32\perfc005.dat
[2014/05/12 18:00:01 | 000,139,868 | ---- | M] () -- C:\windows\System32\perfc01F.dat
[2014/05/12 18:00:01 | 000,122,012 | ---- | M] () -- C:\windows\System32\perfc009.dat
[2014/05/12 18:00:01 | 000,121,968 | ---- | M] () -- C:\windows\System32\perfc011.dat
[2014/05/12 18:00:01 | 000,120,252 | ---- | M] () -- C:\windows\System32\perfc012.dat
[2014/05/12 18:00:01 | 000,119,460 | ---- | M] () -- C:\windows\System32\prfc0804.dat
[2014/05/12 18:00:01 | 000,114,958 | ---- | M] () -- C:\windows\System32\prfc0404.dat
[2014/05/12 18:00:01 | 000,110,996 | ---- | M] () -- C:\windows\System32\perfc008.dat
[2014/05/12 18:00:01 | 000,101,388 | ---- | M] () -- C:\windows\System32\perfc00B.dat
[2014/05/12 18:00:01 | 000,098,526 | ---- | M] () -- C:\windows\System32\perfc006.dat
[2014/05/12 18:00:01 | 000,095,272 | ---- | M] () -- C:\windows\System32\perfc014.dat
[2014/05/12 18:00:01 | 000,094,640 | ---- | M] () -- C:\windows\System32\perfc001.dat
[2014/05/12 18:00:01 | 000,084,626 | ---- | M] () -- C:\windows\System32\perfc00D.dat
[2014/05/09 09:06:23 | 000,369,664 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\aepdu.dll
[2014/05/09 09:04:12 | 000,302,592 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\aeinv.dll
[2014/05/06 22:25:14 | 000,001,644 | ---- | M] () -- C:\windows\System32\${LOGFILE}
[2014/05/06 22:22:15 | 000,000,288 | ---- | M] () -- C:\windows\tasks\AppCloudUpdater.job
[2014/05/06 22:18:46 | 000,001,030 | ---- | M] () -- C:\Users\Public\Desktop\VLC media player.lnk
[2014/05/06 05:07:39 | 002,724,864 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\mshtml.tlb
[2014/05/01 11:53:31 | 000,001,065 | ---- | M] () -- C:\Users\Public\Desktop\NewPlayer.lnk
[2014/05/01 11:51:41 | 000,000,532 | ---- | M] () -- C:\END
[2014/05/01 00:00:06 | 000,000,288 | ---- | M] () -- C:\windows\tasks\Price Meter Updater.job
[2014/04/30 22:26:56 | 001,161,080 | ---- | M] () -- C:\windows\System32\ZombieAlert.A222801BB6B4.2.6.80.dll
[2014/04/27 09:15:33 | 000,002,125 | ---- | M] () -- C:\Users\Public\Desktop\avast! Free Antivirus.lnk
[2014/04/27 09:13:40 | 000,776,976 | ---- | M] (AVAST Software) -- C:\windows\System32\drivers\aswsnx.sys.1400175162571
[2014/04/27 09:13:40 | 000,180,632 | ---- | M] () -- C:\windows\System32\drivers\aswVmm.sys
[2014/04/27 09:13:39 | 000,411,552 | ---- | M] (AVAST Software) -- C:\windows\System32\drivers\aswsp.sys.1400175162571
[2014/04/27 09:13:39 | 000,081,768 | ---- | M] (AVAST Software) -- C:\windows\System32\drivers\aswRdr2.sys
[2014/04/27 09:13:39 | 000,067,824 | ---- | M] (AVAST Software) -- C:\windows\System32\drivers\aswMonFlt.sys
[2014/04/27 09:13:39 | 000,049,944 | ---- | M] () -- C:\windows\System32\drivers\aswRvrt.sys
[2014/04/27 09:13:39 | 000,024,184 | ---- | M] () -- C:\windows\System32\drivers\aswHwid.sys
[2014/04/27 09:13:38 | 000,271,264 | ---- | M] (AVAST Software) -- C:\windows\System32\aswBoot.exe
[2014/04/27 09:13:38 | 000,043,152 | ---- | M] (AVAST Software) -- C:\windows\avastSS.scr
[2014/04/26 22:34:38 | 000,000,897 | ---- | M] () -- C:\Users\Public\Desktop\Winamax Poker.lnk
[2 C:\Users\vero\AppData\Local\*.tmp files -> C:\Users\vero\AppData\Local\*.tmp -> ]
[1 C:\windows\*.tmp files -> C:\windows\*.tmp -> ]
[color=#E56717]========== Files Created - No Company Name ==========[/color]
[2014/05/13 20:59:30 | 000,001,048 | ---- | C] () -- C:\Users\vero\Desktop\PokerStars.fr.lnk
[2014/05/06 22:24:46 | 000,001,644 | ---- | C] () -- C:\windows\System32\${LOGFILE}
[2014/05/06 22:22:15 | 000,000,288 | ---- | C] () -- C:\windows\tasks\AppCloudUpdater.job
[2014/04/29 22:32:40 | 000,001,065 | ---- | C] () -- C:\Users\Public\Desktop\NewPlayer.lnk
[2014/04/29 22:05:08 | 001,161,080 | ---- | C] () -- C:\windows\System32\ZombieAlert.A222801BB6B4.2.6.80.dll
[2014/04/28 08:01:17 | 000,001,418 | ---- | C] () -- C:\windows\tasks\f435e5b3-5f67-4dd8-a38b-911cec0347c8-5.job
[2014/04/28 08:00:55 | 000,000,950 | ---- | C] () -- C:\windows\tasks\PriceMeterLiveUpdateUpdateTaskMachineUA.job
[2014/04/28 08:00:53 | 000,000,946 | ---- | C] () -- C:\windows\tasks\PriceMeterLiveUpdateUpdateTaskMachineCore.job
[2014/04/28 08:00:41 | 000,001,278 | ---- | C] () -- C:\windows\tasks\f435e5b3-5f67-4dd8-a38b-911cec0347c8-7.job
[2014/04/28 08:00:35 | 000,000,288 | ---- | C] () -- C:\windows\tasks\Price Meter Updater.job
[2014/04/27 17:19:23 | 000,001,510 | ---- | C] () -- C:\windows\tasks\b0625433-0826-4d86-9af6-bc28310b6329-5.job
[2014/04/27 17:18:50 | 000,003,108 | ---- | C] () -- C:\windows\tasks\b0625433-0826-4d86-9af6-bc28310b6329-3.job
[2014/04/27 09:15:33 | 000,002,125 | ---- | C] () -- C:\Users\Public\Desktop\avast! Free Antivirus.lnk
[2014/04/27 09:13:49 | 000,180,632 | ---- | C] () -- C:\windows\System32\drivers\aswVmm.sys
[2014/04/27 09:13:48 | 000,049,944 | ---- | C] () -- C:\windows\System32\drivers\aswRvrt.sys
[2014/04/27 09:13:47 | 000,024,184 | ---- | C] () -- C:\windows\System32\drivers\aswHwid.sys
[2014/03/02 23:00:38 | 000,000,528 | ---- | C] () -- C:\Users\vero\AppData\Local\{FB5ACEF5-0E8D-49AD-A4D3-6F323187CDA4}
[2014/02/20 11:50:24 | 000,645,632 | ---- | C] () -- C:\windows\System32\xvidcore.dll
[2014/02/20 11:50:24 | 000,240,640 | ---- | C] () -- C:\windows\System32\xvidvfw.dll
[2014/02/20 11:49:30 | 000,000,065 | ---- | C] () -- C:\Users\vero\AppData\Roaming\WB.CFG
[2014/02/18 20:25:42 | 000,017,136 | ---- | C] () -- C:\windows\System32\sasnative32.exe
[2014/02/17 19:12:12 | 000,294,764 | ---- | C] () -- C:\windows\System32\perfi01D.dat
[2014/02/17 19:12:11 | 000,655,524 | ---- | C] () -- C:\windows\System32\perfh01D.dat
[2014/02/17 19:12:11 | 000,142,342 | ---- | C] () -- C:\windows\System32\perfc01D.dat
[2014/02/17 19:12:11 | 000,037,052 | ---- | C] () -- C:\windows\System32\perfd01D.dat
[2014/02/17 19:01:56 | 000,157,694 | ---- | C] () -- C:\windows\System32\perfi012.dat
[2014/02/17 19:01:55 | 000,420,228 | ---- | C] () -- C:\windows\System32\perfh012.dat
[2014/02/17 19:01:55 | 000,120,252 | ---- | C] () -- C:\windows\System32\perfc012.dat
[2014/02/17 19:01:55 | 000,031,548 | ---- | C] () -- C:\windows\System32\perfd012.dat
[2014/02/17 18:20:16 | 000,111,310 | ---- | C] () -- C:\windows\System32\prfi0804.dat
[2014/02/17 18:20:15 | 000,372,974 | ---- | C] () -- C:\windows\System32\prfh0804.dat
[2014/02/17 18:20:15 | 000,119,460 | ---- | C] () -- C:\windows\System32\prfc0804.dat
[2014/02/17 18:20:15 | 000,031,548 | ---- | C] () -- C:\windows\System32\prfd0804.dat
[2014/02/17 18:02:15 | 000,141,988 | ---- | C] () -- C:\windows\System32\perfi011.dat
[2014/02/17 18:02:14 | 000,408,582 | ---- | C] () -- C:\windows\System32\perfh011.dat
[2014/02/17 18:02:14 | 000,121,968 | ---- | C] () -- C:\windows\System32\perfc011.dat
[2014/02/17 18:02:14 | 000,031,548 | ---- | C] () -- C:\windows\System32\perfd011.dat
[2014/02/17 17:51:48 | 000,287,518 | ---- | C] () -- C:\windows\System32\perfi00E.dat
[2014/02/17 17:51:47 | 000,675,558 | ---- | C] () -- C:\windows\System32\perfh00E.dat
[2014/02/17 17:51:47 | 000,171,142 | ---- | C] () -- C:\windows\System32\perfc00E.dat
[2014/02/17 17:51:47 | 000,048,094 | ---- | C] () -- C:\windows\System32\perfd00E.dat
[2014/02/17 17:42:48 | 000,279,790 | ---- | C] () -- C:\windows\System32\perfi00B.dat
[2014/02/17 17:42:47 | 000,473,306 | ---- | C] () -- C:\windows\System32\perfh00B.dat
[2014/02/17 17:42:47 | 000,101,388 | ---- | C] () -- C:\windows\System32\perfc00B.dat
[2014/02/17 17:42:47 | 000,038,258 | ---- | C] () -- C:\windows\System32\perfd00B.dat
[2014/02/17 17:33:46 | 000,384,148 | ---- | C] () -- C:\windows\System32\perfh00D.dat
[2014/02/17 17:33:46 | 000,229,316 | ---- | C] () -- C:\windows\System32\perfi00D.dat
[2014/02/17 17:33:46 | 000,084,626 | ---- | C] () -- C:\windows\System32\perfc00D.dat
[2014/02/17 17:33:46 | 000,032,166 | ---- | C] () -- C:\windows\System32\perfd00D.dat
[2014/02/17 17:25:21 | 000,735,302 | ---- | C] () -- C:\windows\System32\perfh013.dat
[2014/02/17 17:25:21 | 000,341,322 | ---- | C] () -- C:\windows\System32\perfi013.dat
[2014/02/17 17:25:21 | 000,152,970 | ---- | C] () -- C:\windows\System32\perfc013.dat
[2014/02/17 17:25:21 | 000,043,068 | ---- | C] () -- C:\windows\System32\perfd013.dat
[2014/02/17 17:16:55 | 000,298,300 | ---- | C] () -- C:\windows\System32\perfi014.dat
[2014/02/17 17:16:54 | 000,486,318 | ---- | C] () -- C:\windows\System32\perfh014.dat
[2014/02/17 17:16:54 | 000,095,272 | ---- | C] () -- C:\windows\System32\perfc014.dat
[2014/02/17 17:16:54 | 000,036,156 | ---- | C] () -- C:\windows\System32\perfd014.dat
[2014/02/17 17:01:57 | 000,369,984 | ---- | C] () -- C:\windows\System32\perfi008.dat
[2014/02/17 17:01:56 | 000,598,792 | ---- | C] () -- C:\windows\System32\perfh008.dat
[2014/02/17 17:01:56 | 000,110,996 | ---- | C] () -- C:\windows\System32\perfc008.dat
[2014/02/17 17:01:56 | 000,045,182 | ---- | C] () -- C:\windows\System32\perfd008.dat
[2014/02/17 16:47:41 | 000,335,478 | ---- | C] () -- C:\windows\System32\perfi010.dat
[2014/02/17 16:47:40 | 000,731,850 | ---- | C] () -- C:\windows\System32\perfh010.dat
[2014/02/17 16:47:40 | 000,146,714 | ---- | C] () -- C:\windows\System32\perfc010.dat
[2014/02/17 16:47:40 | 000,037,534 | ---- | C] () -- C:\windows\System32\perfd010.dat
[2014/02/17 16:39:35 |
Je n'arrive pas a supprimer hot deals et mon ordi est au ralenti.
Voici le rapport otl
OTL logfile created on: 21/05/2014 08:07:13 - Run 2
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\vero\Downloads
Enterprise Edition N Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.11.9600.17041)
Locale: 0000040C | Country: France | Language: FRA | Date Format: dd/MM/yyyy
2,96 Gb Total Physical Memory | 1,50 Gb Available Physical Memory | 50,72% Memory free
5,92 Gb Paging File | 4,20 Gb Available in Paging File | 70,86% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\windows | %ProgramFiles% = C:\Program Files
Drive C: | 465,66 Gb Total Space | 380,74 Gb Free Space | 81,76% Space Free | Partition Type: NTFS
Computer Name: VERO-PC | User Name: vero | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
[color=#E56717]========== Processes (SafeList) ==========[/color]
PRC - [2014/05/16 17:46:14 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\vero\Downloads\OTL.exe
PRC - [2014/05/15 21:18:42 | 001,863,856 | ---- | M] (Adobe Systems, Inc.) -- C:\Windows\System32\Macromed\Flash\FlashPlayerPlugin_13_0_0_214.exe
PRC - [2014/05/15 09:21:59 | 001,268,560 | ---- | M] (BitTorrent Inc.) -- C:\Users\vero\AppData\Roaming\uTorrent\uTorrent.exe
PRC - [2014/05/10 09:52:32 | 000,275,568 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2014/05/06 22:23:43 | 000,543,232 | ---- | M] () -- C:\Program Files\004\rqpbhevlkc32.exe
PRC - [2014/05/06 22:16:48 | 000,541,696 | ---- | M] () -- C:\Program Files\002\yewimmxqbs32.exe
PRC - [2014/05/01 16:37:44 | 000,150,528 | ---- | M] () -- c:\Program Files\CouponDownloader\CouponDownloaderService.exe
PRC - [2014/04/28 08:00:35 | 000,150,504 | ---- | M] (PriceMeter) -- C:\Program Files\PriceMeterLiveUpdate\Update\PriceMeterLiveUpdate.exe
PRC - [2014/04/27 22:04:30 | 000,541,696 | ---- | M] () -- C:\Program Files\003\buuoujqmrk32.exe
PRC - [2014/04/27 09:13:33 | 003,873,704 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe
PRC - [2014/04/27 09:13:33 | 000,050,344 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe
PRC - [2014/04/16 17:14:08 | 000,011,776 | ---- | M] () -- C:\Program Files\NewPlayer\NewPlayerUpdaterService.exe
PRC - [2014/04/11 04:05:52 | 000,705,136 | ---- | M] (Cherished Technololgy LIMITED) -- C:\ProgramData\IePluginService\PluginService.exe
PRC - [2014/03/21 18:41:19 | 000,348,448 | ---- | M] () -- C:\Program Files\FindRight\updateFindRight.exe
PRC - [2014/03/21 18:08:14 | 000,348,448 | ---- | M] () -- C:\Program Files\FindRight\bin\utilFindRight.exe
PRC - [2014/02/26 13:30:06 | 000,425,104 | ---- | M] (Taiwan Shui Mu Chih Ching Technology Limited.) -- C:\Program Files\WinZipper\winzipersvc.exe
PRC - [2014/02/26 10:30:22 | 000,501,904 | ---- | M] (Cherished Technololgy LIMITED) -- C:\ProgramData\WPM\wprotectmanager.exe
PRC - [2014/02/25 12:49:52 | 002,117,960 | ---- | M] (CybelSoft) -- C:\Program Files\ma-config.com\MaConfigAgent.exe
PRC - [2014/01/10 11:54:54 | 009,386,352 | ---- | M] (Systweak Inc) -- C:\Program Files\Advanced Driver Updater\adu.exe
PRC - [2013/12/21 08:04:16 | 000,065,432 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
PRC - [2013/12/05 14:59:40 | 000,049,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskhost.exe
PRC - [2013/11/20 21:39:46 | 000,114,176 | ---- | M] (Wajam) -- C:\Program Files\Wajam\Updater\WajamUpdaterV3.exe
PRC - [2013/11/15 02:48:30 | 001,861,968 | ---- | M] () -- C:\Program Files\DivX\DivX Update\DivXUpdate.exe
PRC - [2013/10/23 16:01:10 | 000,280,288 | ---- | M] (Microsoft Corporation) -- c:\Program Files\Microsoft Security Client\NisSrv.exe
PRC - [2013/10/23 16:01:10 | 000,022,208 | ---- | M] (Microsoft Corporation) -- c:\Program Files\Microsoft Security Client\MsMpEng.exe
PRC - [2013/10/23 15:55:28 | 000,948,440 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Security Client\msseces.exe
PRC - [2013/03/26 10:57:52 | 000,069,632 | ---- | M] (Primax Electronics Ltd.) -- C:\Program Files\Lenovo\Lenovo Mouse Suite\ICO.exe
PRC - [2013/02/21 16:34:46 | 000,928,624 | ---- | M] (Canal+ Distribution) -- C:\Program Files\Lecteur CANALPLAY\CanalPlayService.exe
PRC - [2012/03/13 11:46:24 | 000,145,408 | ---- | M] () -- C:\Program Files\Lenovo\Lenovo Mouse Suite\PelService.exe
PRC - [2011/09/20 10:17:44 | 000,115,048 | ---- | M] (Renesas Electronics Corporation) -- C:\Program Files\Renesas Electronics\USB 3.0 Host Controller Driver\Application\rusb3mon.exe
PRC - [2011/02/25 07:30:54 | 002,616,320 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2010/06/01 17:41:38 | 000,155,648 | ---- | M] () -- C:\Program Files\Lenovo\Lenovo Mouse Suite\PelElvDm.exe
PRC - [2008/11/20 17:27:28 | 000,020,480 | ---- | M] () -- C:\Program Files\Lenovo\Lenovo Mouse Suite\FSRremoS.EXE
PRC - [2007/04/27 20:40:14 | 001,581,056 | ---- | M] (Lenovo(beijing) Limited) -- C:\Program Files\Lenovo\EnergyCut\utilty.exe
PRC - [2007/03/09 20:00:18 | 001,167,360 | ---- | M] (Lenovo (Beijing) Limited) -- C:\Program Files\Lenovo\EnergyCut\EnergyCut.exe
[color=#E56717]========== Modules (No Company Name) ==========[/color]
MOD - [2014/05/15 21:18:39 | 016,361,136 | ---- | M] () -- C:\Windows\System32\Macromed\Flash\NPSWF32_13_0_0_214.dll
MOD - [2014/05/10 09:51:59 | 003,839,088 | ---- | M] () -- C:\Program Files\Mozilla Firefox\mozjs.dll
MOD - [2014/04/27 09:13:37 | 019,336,120 | ---- | M] () -- C:\Program Files\AVAST Software\Avast\libcef.dll
MOD - [2013/11/15 02:49:56 | 000,100,688 | ---- | M] () -- C:\Program Files\DivX\DivX Update\DivXUpdateCheck.dll
MOD - [2013/11/15 02:48:30 | 001,861,968 | ---- | M] () -- C:\Program Files\DivX\DivX Update\DivXUpdate.exe
MOD - [2011/06/23 11:42:48 | 000,168,448 | ---- | M] () -- C:\Program Files\Advanced Driver Updater\unrar.dll
MOD - [2008/11/20 17:27:28 | 000,020,480 | ---- | M] () -- C:\Program Files\Lenovo\Lenovo Mouse Suite\FSRremoS.EXE
MOD - [2007/04/13 21:18:10 | 000,057,344 | ---- | M] () -- C:\Program Files\Lenovo\EnergyCut\kbdhook.dll
MOD - [2005/06/24 20:05:02 | 000,045,056 | ---- | M] () -- C:\Program Files\Lenovo\EnergyCut\HookLib.dll
[color=#E56717]========== Services (SafeList) ==========[/color]
SRV - [2014/05/15 21:18:44 | 000,257,712 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\System32\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2014/05/10 09:52:31 | 000,119,408 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2014/05/06 22:23:43 | 000,543,232 | ---- | M] () [Auto | Running] -- C:\Program Files\004\rqpbhevlkc32.exe -- (rqpbhevlkc32)
SRV - [2014/05/06 22:16:48 | 000,541,696 | ---- | M] () [Auto | Running] -- C:\Program Files\002\yewimmxqbs32.exe -- (yewimmxqbs32)
SRV - [2014/05/01 16:37:44 | 000,150,528 | ---- | M] () [Auto | Running] -- c:\Program Files\CouponDownloader\CouponDownloaderService.exe -- (CouponDownloaderService)
SRV - [2014/04/28 08:00:35 | 000,150,504 | ---- | M] (PriceMeter) [On_Demand | Stopped] -- C:\Program Files\PriceMeterLiveUpdate\Update\PriceMeterLiveUpdate.exe -- (pricemeterliveUpdatem)
SRV - [2014/04/28 08:00:35 | 000,150,504 | ---- | M] (PriceMeter) [Auto | Running] -- C:\Program Files\PriceMeterLiveUpdate\Update\PriceMeterLiveUpdate.exe -- (pricemeterliveUpdate)
SRV - [2014/04/27 22:04:30 | 000,541,696 | ---- | M] () [Auto | Running] -- C:\Program Files\003\buuoujqmrk32.exe -- (buuoujqmrk32)
SRV - [2014/04/27 09:13:33 | 000,050,344 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe -- (avast! Antivirus)
SRV - [2014/04/16 17:14:08 | 000,011,776 | ---- | M] () [Auto | Running] -- C:\Program Files\NewPlayer\NewPlayerUpdaterService.exe -- (NewPlayerUpdaterService)
SRV - [2014/04/11 04:05:52 | 000,705,136 | ---- | M] (Cherished Technololgy LIMITED) [Auto | Running] -- C:\ProgramData\IePluginService\PluginService.exe -- (IePluginService)
SRV - [2014/03/21 18:41:19 | 000,348,448 | ---- | M] () [Auto | Running] -- C:\Program Files\FindRight\updateFindRight.exe -- (Update FindRight)
SRV - [2014/03/21 18:08:14 | 000,348,448 | ---- | M] () [Auto | Running] -- C:\Program Files\FindRight\bin\utilFindRight.exe -- (Util FindRight)
SRV - [2014/03/14 16:17:00 | 000,036,392 | ---- | M] (Just Develop It) [Auto | Stopped] -- C:\Program Files\MyPC Backup\BackupStack.exe -- (BackupStack)
SRV - [2014/03/06 09:38:10 | 000,108,032 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\windows\System32\IEEtwCollector.exe -- (IEEtwCollectorService)
SRV - [2014/02/26 13:30:06 | 000,425,104 | ---- | M] (Taiwan Shui Mu Chih Ching Technology Limited.) [Auto | Running] -- C:\Program Files\WinZipper\winzipersvc.exe -- (winzipersvc)
SRV - [2014/02/26 10:30:22 | 000,501,904 | ---- | M] (Cherished Technololgy LIMITED) [Auto | Running] -- C:\ProgramData\WPM\wprotectmanager.exe -- (Wpm)
SRV - [2014/02/25 12:49:52 | 002,117,960 | ---- | M] (CybelSoft) [Auto | Running] -- C:\Program Files\ma-config.com\MaConfigAgent.exe -- (MaConfigAgent)
SRV - [2014/02/20 11:49:29 | 000,146,920 | ---- | M] (SaveSense) [On_Demand | Stopped] -- C:\Program Files\SaveSenseLive\Update\SaveSenseLive.exe -- (savesenselivem)
SRV - [2014/02/20 11:49:29 | 000,146,920 | ---- | M] (SaveSense) [Auto | Stopped] -- C:\Program Files\SaveSenseLive\Update\SaveSenseLive.exe -- (savesenselive)
SRV - [2013/12/21 08:04:16 | 000,065,432 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2013/12/05 16:18:15 | 001,343,400 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\Wat\WatAdminSvc.exe -- (WatAdminSvc)
SRV - [2013/11/20 21:39:46 | 000,114,176 | ---- | M] (Wajam) [Auto | Running] -- C:\Program Files\Wajam\Updater\WajamUpdaterV3.exe -- (WajamUpdaterV3)
SRV - [2013/10/31 12:01:46 | 000,022,888 | ---- | M] () [On_Demand | Stopped] -- C:\Program Files\Lenovo\System Update\SUService.exe -- (SUService)
SRV - [2013/10/23 16:01:10 | 000,280,288 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- c:\Program Files\Microsoft Security Client\NisSrv.exe -- (NisSrv)
SRV - [2013/10/23 16:01:10 | 000,022,208 | ---- | M] (Microsoft Corporation) [Auto | Running] -- c:\Program Files\Microsoft Security Client\MsMpEng.exe -- (MsMpSvc)
SRV - [2013/05/27 06:57:27 | 000,680,960 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\mpsvc.dll -- (WinDefend)
SRV - [2013/02/21 16:34:46 | 000,928,624 | ---- | M] (Canal+ Distribution) [On_Demand | Running] -- C:\Program Files\Lecteur CANALPLAY\CanalPlayService.exe -- (Service CANALPLAY)
SRV - [2012/03/13 11:46:24 | 000,145,408 | ---- | M] () [Auto | Running] -- C:\Program Files\Lenovo\Lenovo Mouse Suite\PelService.exe -- (PelService)
SRV - [2009/07/14 03:16:15 | 000,016,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\StorSvc.dll -- (StorSvc)
SRV - [2009/07/14 03:16:13 | 000,025,088 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\sensrsvc.dll -- (SensrSvc)
SRV - [2009/07/14 03:16:12 | 001,004,544 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\PeerDistSvc.dll -- (PeerDistSvc)
[color=#E56717]========== Driver Services (SafeList) ==========[/color]
DRV - File not found [Kernel | On_Demand | Stopped] -- System32\drivers\rdvgkmd.sys -- (VGPU)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys -- (esgiguard)
DRV - [2014/05/15 19:32:43 | 000,777,488 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\Windows\System32\drivers\aswsnx.sys -- (aswSnx)
DRV - [2014/05/15 19:32:43 | 000,411,680 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\Windows\System32\drivers\aswsp.sys -- (aswSP)
DRV - [2014/05/15 19:32:43 | 000,068,312 | ---- | M] (AVAST Software) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\aswstm.sys -- (aswStm)
DRV - [2014/04/27 09:13:40 | 000,180,632 | ---- | M] () [Kernel | Boot | Running] -- C:\windows\System32\drivers\aswVmm.sys -- (aswVmm)
DRV - [2014/04/27 09:13:39 | 000,081,768 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\System32\drivers\aswRdr2.sys -- (aswRdr)
DRV - [2014/04/27 09:13:39 | 000,067,824 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\Windows\System32\drivers\aswMonFlt.sys -- (aswMonFlt)
DRV - [2014/04/27 09:13:39 | 000,049,944 | ---- | M] () [Kernel | Boot | Running] -- C:\windows\System32\drivers\aswRvrt.sys -- (aswRvrt)
DRV - [2014/04/27 09:13:39 | 000,024,184 | ---- | M] () [Kernel | Auto | Running] -- C:\Windows\System32\drivers\aswHwid.sys -- (aswHwid)
DRV - [2014/02/24 17:33:46 | 000,016,160 | ---- | M] (CybelSoft) [Kernel | On_Demand | Stopped] -- C:\Program Files\ma-config.com\Drivers\ma-config_x86.sys -- (ma-config_x86)
DRV - [2014/02/13 14:45:54 | 000,047,488 | ---- | M] (NetFilterSDK.com) [Kernel | System | Running] -- C:\Windows\System32\drivers\netfilter.sys -- (netfilter)
DRV - [2013/10/02 02:42:31 | 000,049,152 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV - [2013/09/27 10:53:06 | 000,104,768 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\NisDrvWFP.sys -- (NisDrv)
DRV - [2013/03/26 08:47:08 | 000,010,240 | ---- | M] (TPMX Electronics Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\pvendrlf.SYS -- (pvendrlf)
DRV - [2013/03/26 08:46:42 | 000,026,624 | ---- | M] (TPMX Electronics Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\phidmice.sys -- (phidmice)
DRV - [2013/03/26 08:39:48 | 000,019,456 | ---- | M] (TPMX Electronics Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\pmouself.SYS -- (pmouself)
DRV - [2013/03/19 18:04:52 | 000,026,624 | ---- | M] (TPMX Electronics Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\pelusblf.sys -- (pelusblf)
DRV - [2012/11/28 16:30:12 | 000,019,456 | ---- | M] (TPMX Electronics Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\PELMOUSE.SYS -- (pelmouse)
DRV - [2012/08/23 16:46:55 | 000,024,064 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\terminpt.sys -- (terminpt)
DRV - [2012/08/23 16:44:32 | 000,014,848 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\rdpvideominiport.sys -- (RdpVideoMiniport)
DRV - [2012/08/23 16:41:34 | 000,027,136 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\TsUsbGD.sys -- (TsUsbGD)
DRV - [2011/11/21 17:09:02 | 000,168,320 | ---- | M] (Renesas Electronics Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\rusb3xhc.sys -- (rusb3xhc)
DRV - [2011/11/21 17:09:02 | 000,078,592 | ---- | M] (Renesas Electronics Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\rusb3hub.sys -- (rusb3hub)
DRV - [2010/11/20 23:30:52 | 000,175,360 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\vmbus.sys -- (vmbus)
DRV - [2010/11/20 23:30:52 | 000,112,640 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\tsusbhub.sys -- (tsusbhub)
DRV - [2010/11/20 23:30:52 | 000,077,184 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\Synth3dVsc.sys -- (Synth3dVsc)
DRV - [2010/11/20 23:30:52 | 000,062,464 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\dmvsc.sys -- (dmvsc)
DRV - [2010/11/20 23:30:52 | 000,040,704 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\vmstorfl.sys -- (storflt)
DRV - [2010/11/20 23:30:52 | 000,028,032 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\storvsc.sys -- (storvsc)
DRV - [2010/11/20 23:30:52 | 000,017,920 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\VMBusHID.sys -- (VMBusHID)
DRV - [2010/11/20 23:30:52 | 000,005,632 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\vms3cap.sys -- (s3cap)
DRV - [2010/10/20 00:33:40 | 000,041,088 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\HECI.sys -- (MEI)
DRV - [2009/11/02 16:00:14 | 000,010,240 | ---- | M] (TPMX Electronics Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\PELVENDR.SYS -- (pelvendr)
DRV - [2009/07/14 01:45:33 | 000,083,456 | ---- | M] (Brother Industries Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\serial.sys -- (Serial)
DRV - [2007/04/09 20:07:48 | 000,011,776 | ---- | M] (Lenovo Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\AcpiVpc.sys -- (ACPIVPC)
[color=#E56717]========== Standard Registry (SafeList) ==========[/color]
[color=#E56717]========== Internet Explorer ==========[/color]
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.awesomehp.com/?type=hp&ts=1392892765&from=adks&uid=HGSTXHTS725050A7E630_TF1500Y93DHW2M3DHW2MX
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.google.com/webhp?gws_rd=ssl{searchTerms}
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = https://www.google.com/webhp?gws_rd=ssl{searchTerms}
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://start.mysearchdial.com/...
IE - HKLM\..\SearchScopes,DefaultScope = {006ee092-9658-4fd6-bd8e-a21a348e59f5}
IE - HKLM\..\SearchScopes\{006ee092-9658-4fd6-bd8e-a21a348e59f5}: "URL" = http://start.mysearchdial.com/results.php?f=4&q={searchTerms}&a=dsites02_14_19_ch&cd=2XzuyEtN2Y1L1QzuzytDyE0C0EyD0EyB0CyEtA0B0A0EzyyCtN0D0Tzu0SzzyDyBtN1L2XzutBtFtBtDtFyCtFtDtN1L1CzutCyEtDtAtDyD1V1StN1L1G1B1V1N2Y1L1Qzu2SyEtCyE0BtDyD0DtAtGzzzztAtDtG0FtA0CzztGzzzy0ByDtGyCyE0AyB0AyC0EtCyCtD0CyD2QtN1M1F1B2Z1V1N2Y1L1Qzu2StDzy0AtD0D0EtCyEtGyByCzy0DtGtAtAyC0CtGzz0D0F0EtGtBzztAtByC0DzytBzy0CtByB2Q&cr=706098876&ir=
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = https://www.google.com/webhp?gws_rd=ssl{searchTerms}
IE - HKLM\..\SearchScopes\{77AA745B-F4F8-45DA-9B14-61D2D95054C8}: "URL" = https://search.safefinder.com/?st=ds&q={searchTerms}
IE - HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyServer" =
IE - HKLM\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "AutoConfigURL" =
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-4007704961-963353656-1577268053-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.awesomehp.com/?type=hp&ts=1392892765&from=adks&uid=HGSTXHTS725050A7E630_TF1500Y93DHW2M3DHW2MX
IE - HKU\S-1-5-21-4007704961-963353656-1577268053-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.google.com/webhp?gws_rd=ssl{searchTerms}
IE - HKU\S-1-5-21-4007704961-963353656-1577268053-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = https://search.safefinder.com/?st=ds&q={searchTerms}
IE - HKU\S-1-5-21-4007704961-963353656-1577268053-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = https://search.safefinder.com/?st=ds&q={searchTerms}
IE - HKU\S-1-5-21-4007704961-963353656-1577268053-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
IE - HKU\S-1-5-21-4007704961-963353656-1577268053-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = https://www.msn.com/fr-fr
IE - HKU\S-1-5-21-4007704961-963353656-1577268053-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = fr-FR
IE - HKU\S-1-5-21-4007704961-963353656-1577268053-1001\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = https://search.safefinder.com/?st=ds&q={searchTerms}
IE - HKU\S-1-5-21-4007704961-963353656-1577268053-1001\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = https://search.safefinder.com/?st=ds&q={searchTerms}
IE - HKU\S-1-5-21-4007704961-963353656-1577268053-1001\..\SearchScopes,DefaultScope = {006ee092-9658-4fd6-bd8e-a21a348e59f5}
IE - HKU\S-1-5-21-4007704961-963353656-1577268053-1001\..\SearchScopes\{006ee092-9658-4fd6-bd8e-a21a348e59f5}: "URL" = https://search.safefinder.com/?st=ds&q={searchTerms}
IE - HKU\S-1-5-21-4007704961-963353656-1577268053-1001\..\SearchScopes\{77AA745B-F4F8-45DA-9B14-61D2D95054C8}: "URL" = https://search.safefinder.com/?st=ds&q={searchTerms}
IE - HKU\S-1-5-21-4007704961-963353656-1577268053-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-4007704961-963353656-1577268053-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = <-loopback>;<local>
[color=#E56717]========== FireFox ==========[/color]
FF - prefs.js..extensions.enabledAddons: wrc%40avast.com:9.0.2018.95
FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:29.0.1
FF - user.js - File not found
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\windows\system32\Macromed\Flash\NPSWF32_13_0_0_214.dll ()
FF - HKLM\Software\MozillaPlugins\@canalplay.com/CanalPlay: C:\Program Files\Lecteur CANALPLAY\npcplay.dll (Canal+ Distribution)
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0: C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Web Player Plug-In,version=1.0.0: C:\Program Files\DivX\DivX Web Player\npdivx32.dll (DivX, LLC)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.55.2: C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.55.2: C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: C:\windows\system32\Wat\npWatWeb.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@tools.updatepm.com/PriceMeterLiveUpdate Update;version=3: C:\Program Files\PriceMeterLiveUpdate\Update\1.3.23.0\npGoogleUpdate3.dll (PriceMeter)
FF - HKLM\Software\MozillaPlugins\@tools.updatepm.com/PriceMeterLiveUpdate Update;version=9: C:\Program Files\PriceMeterLiveUpdate\Update\1.3.23.0\npGoogleUpdate3.dll (PriceMeter)
FF - HKLM\Software\MozillaPlugins\@tools.updaterss.com/SaveSenseLive Update;version=3: C:\Program Files\SaveSenseLive\Update\1.3.23.0\npGoogleUpdate3.dll (SaveSense)
FF - HKLM\Software\MozillaPlugins\@tools.updaterss.com/SaveSenseLive Update;version=9: C:\Program Files\SaveSenseLive\Update\1.3.23.0\npGoogleUpdate3.dll (SaveSense)
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.0.5: C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.1.3: C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKLM\Software\MozillaPlugins\Ext: File not found
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\quick_start@gmail.com: C:\Users\vero\AppData\Roaming\Mozilla\Firefox\Profiles\24dxbf1v.default\extensions\quick_start@gmail.com [2014/05/06 22:38:00 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\wrc@avast.com: C:\Program Files\AVAST Software\Avast\WebRep\FF [2014/04/27 09:13:43 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 29.0.1\extensions\\Components: C:\Program Files\Mozilla Firefox\components
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 29.0.1\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2014/05/16 14:52:09 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 29.0.1\extensions\\Components: C:\Program Files\Mozilla Firefox\components
FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 29.0.1\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2014/05/16 14:52:09 | 000,000,000 | ---D | M]
[2014/02/18 22:47:40 | 000,000,000 | ---D | M] (No name found) -- C:\Users\vero\AppData\Roaming\mozilla\Extensions
[2014/05/06 22:38:01 | 000,000,000 | ---D | M] (No name found) -- C:\Users\vero\AppData\Roaming\mozilla\Firefox\Profiles\24dxbf1v.default\extensions
[2014/05/06 22:38:00 | 000,000,000 | ---D | M] (No name found) -- C:\Users\vero\AppData\Roaming\mozilla\Firefox\Profiles\24dxbf1v.default\extensions\quick_start@gmail.com
[2014/05/16 16:58:19 | 000,000,000 | ---D | M] (No name found) -- C:\Users\vero\AppData\Roaming\mozilla\Firefox\Profiles\ri1d13t4.default-1400251799040\extensions
[2014/05/15 22:11:37 | 000,000,000 | ---D | M] (No name found) -- C:\Users\vero\AppData\Roaming\mozilla\Firefox\Profiles\xs6fx47n.default\extensions
[2014/03/01 10:24:26 | 000,000,000 | ---D | M] ("MySearchDial NewTab") -- C:\Users\vero\AppData\Roaming\mozilla\Firefox\Profiles\xs6fx47n.default\extensions\{ad9a41d2-9a49-4fa6-a79e-71a0785364c8}
[2014/05/15 22:11:37 | 000,000,000 | ---D | M] (CouponDownloader) -- C:\Users\vero\AppData\Roaming\mozilla\Firefox\Profiles\xs6fx47n.default\extensions\CouponDownloader@jetpack
[2014/03/01 10:34:07 | 000,000,000 | ---D | M] (No name found) -- C:\Users\vero\AppData\Roaming\mozilla\Firefox\Profiles\xs6fx47n.default\extensions\staged
[2014/05/10 09:51:45 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\mozilla firefox\browser\extensions
[2014/05/10 09:52:35 | 000,000,000 | ---D | M] (Default) -- C:\Program Files\mozilla firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
[2014/04/27 09:13:43 | 000,000,000 | ---D | M] (avast! Online Security) -- C:\PROGRAM FILES\AVAST SOFTWARE\AVAST\WEBREP\FF
O1 HOSTS File: ([2014/05/06 22:18:28 | 000,000,824 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O2 - BHO: (CouponDownloader) - {10AD2C61-0898-4348-8600-14A342F22AC3} - C:\Program Files\Coupon Downloader\Coupon Downloader.dll ()
O2 - BHO: (Plus-HD9.5v4) - {11111111-1111-1111-1111-110511311166} - C:\Program Files\Plus-HD9.5v4\Plus-HD9.5v4-bho.dll (Plus HDO)
O2 - BHO: (FindRight) - {2c774641-5504-46a8-b63f-6715ae3fe376} - C:\Program Files\FindRight\FindRightBHO.dll (FindRight)
O2 - BHO: (IETabPage Class) - {3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C} - C:\Program Files\SupTab\SupTab.dll (Thinknice Co. Limited)
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (avast! Online Security) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O2 - BHO: (Wajam) - {A7A6995D-6EE1-4FD1-A258-49395D5BF99C} - C:\Program Files\Wajam\IE\priam_bho.dll (Wajam)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O3 - HKLM\..\Toolbar: (no name) - {ae07101b-46d4-4a98-af68-0333ea26e113} - No CLSID value found.
O4 - HKLM..\Run: [AvastUI.exe] C:\Program Files\AVAST Software\Avast\AvastUI.exe (AVAST Software)
O4 - HKLM..\Run: [BrowserSafeguard] "C:\Program Files\Browsersafeguard\BrowserSafeguard.exe" File not found
O4 - HKLM..\Run: [CanalPlayer] C:\Program Files\Lecteur CANALPLAY\CanalPlayer.exe (Canal+ Distribution)
O4 - HKLM..\Run: [Daemon for Mouse Suite] C:\Program Files\Lenovo\Lenovo Mouse Suite\ICO.EXE (Primax Electronics Ltd.)
O4 - HKLM..\Run: [DivXMediaServer] C:\Program Files\DivX\DivX Media Server\DivXMediaServer.exe (DivX, LLC)
O4 - HKLM..\Run: [DivXUpdate] C:\Program Files\DivX\DivX Update\DivXUpdate.exe ()
O4 - HKLM..\Run: [EnergyCut] C:\Program Files\Lenovo\EnergyCut\EnergyCut.exe (Lenovo (Beijing) Limited)
O4 - HKLM..\Run: [EnergyUtility] C:\Program Files\Lenovo\EnergyCut\utilty.exe (Lenovo(beijing) Limited)
O4 - HKLM..\Run: [fst_fr_130] File not found
O4 - HKLM..\Run: [MSC] c:\Program Files\Microsoft Security Client\msseces.exe (Microsoft Corporation)
O4 - HKLM..\Run: [RUSB3MON] C:\Program Files\Renesas Electronics\USB 3.0 Host Controller Driver\Application\rusb3mon.exe (Renesas Electronics Corporation)
O4 - HKU\S-1-5-21-4007704961-963353656-1577268053-1001..\Run: [DriverTurbo] C:\Program Files\DriverTurbo\DriverTurbo.exe File not found
O4 - HKU\S-1-5-21-4007704961-963353656-1577268053-1001..\Run: [PriceMeterW] "C:\Users\vero\AppData\Local\PriceMeter\pricemeterw.exe" File not found
O4 - HKU\S-1-5-21-4007704961-963353656-1577268053-1001..\Run: [uTorrent] C:\Users\vero\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc.)
O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (Microsoft Corporation)
O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (Microsoft Corporation)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: SoftwareSASGeneration = 1
O7 - HKU\S-1-5-21-4007704961-963353656-1577268053-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL (Microsoft Corporation)
O13 - gopher Prefix: missing
O15 - HKLM\..Trusted Domains: canalplay.com ([]* in Trusted sites)
O15 - HKLM\..Trusted Domains: canalplusactive.com ([]* in Trusted sites)
O15 - HKU\S-1-5-21-4007704961-963353656-1577268053-1001\..Trusted Domains: canalplay.com ([]* in Trusted sites)
O15 - HKU\S-1-5-21-4007704961-963353656-1577268053-1001\..Trusted Domains: canalplusactive.com ([]* in Trusted sites)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{BBFA282D-7154-4EC6-8BB6-97F92990738F}: DhcpNameServer = 192.168.1.1
O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009/06/10 23:42:20 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)
[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]
[2014/05/16 17:34:32 | 000,000,000 | -HSD | C] -- C:\Config.Msi
[2014/05/16 15:56:02 | 000,000,000 | ---D | C] -- C:\Program Files\Enigma Software Group
[2014/05/16 15:47:49 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Wise Installation Wizard
[2014/05/15 22:11:40 | 000,000,000 | ---D | C] -- C:\Program Files\CouponDownloader
[2014/05/15 22:11:37 | 000,000,000 | ---D | C] -- C:\Program Files\Coupon Downloader
[2014/05/15 09:20:46 | 000,000,000 | R--D | C] -- C:\Users\vero\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
[2014/05/14 23:50:01 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\DESIGNER
[2014/05/14 23:46:18 | 002,724,864 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\mshtml.tlb
[2014/05/14 22:03:03 | 000,369,664 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\aepdu.dll
[2014/05/14 22:03:02 | 000,302,592 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\aeinv.dll
[2014/05/14 22:02:57 | 003,969,984 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\ntkrnlpa.exe
[2014/05/14 22:02:57 | 003,914,176 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\ntoskrnl.exe
[2014/05/14 22:02:55 | 000,538,112 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\objsel.dll
[2014/05/14 22:02:52 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\dimsroam.dll
[2014/05/14 22:02:51 | 000,051,200 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\cngprovider.dll
[2014/05/14 22:02:51 | 000,049,664 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\adprovider.dll
[2014/05/14 22:02:50 | 000,048,128 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\capiprovider.dll
[2014/05/14 22:02:49 | 000,047,616 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\dpapiprovider.dll
[2014/05/14 22:02:47 | 000,035,328 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\wincredprovider.dll
[2014/05/14 22:02:44 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\sspisrv.dll
[2014/05/13 20:59:30 | 000,000,000 | ---D | C] -- C:\Users\vero\AppData\Local\PokerStars.FR
[2014/05/13 20:59:29 | 000,000,000 | ---D | C] -- C:\Users\vero\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PokerStars.FR
[2014/05/13 20:58:39 | 000,000,000 | ---D | C] -- C:\Program Files\PokerStars.FR
[2014/05/10 09:51:44 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox
[2014/05/07 14:02:01 | 000,000,000 | ---D | C] -- C:\Users\vero\AppData\Roaming\AVG
[2014/05/07 14:02:01 | 000,000,000 | ---D | C] -- C:\Users\vero\AppData\Local\AVG
[2014/05/07 14:00:33 | 000,000,000 | ---D | C] -- C:\ProgramData\AVG
[2014/05/07 14:00:26 | 000,000,000 | -HSD | C] -- C:\ProgramData\{01BD4FC9-2F86-4706-A62E-774BB7E9D308}
[2014/05/07 14:00:26 | 000,000,000 | -H-D | C] -- C:\ProgramData\Common Files
[2014/05/07 14:00:11 | 000,000,000 | ---D | C] -- C:\Users\vero\AppData\Roaming\Nero
[2014/05/07 13:59:42 | 000,000,000 | ---D | C] -- C:\Users\vero\AppData\Roaming\OpenCandy
[2014/05/07 13:56:48 | 000,000,000 | ---D | C] -- C:\ProgramData\Nero
[2014/05/06 23:42:11 | 000,000,000 | --SD | C] -- C:\windows\System32\CompatTel
[2014/05/06 22:37:49 | 000,000,000 | ---D | C] -- C:\Users\vero\Desktop\Anciennes données de Firefox
[2014/05/06 22:22:38 | 000,000,000 | ---D | C] -- C:\Users\vero\AppData\Roaming\1H1Q
[2014/05/06 22:22:14 | 000,000,000 | ---D | C] -- C:\Users\vero\AppData\Roaming\AppCloudUpdater
[2014/05/06 22:22:12 | 000,000,000 | ---D | C] -- C:\Program Files\004
[2014/05/06 22:15:09 | 000,000,000 | ---D | C] -- C:\Program Files\002
[2014/05/06 22:14:57 | 000,000,000 | ---D | C] -- C:\Program Files\Nosibay
[2014/05/06 22:13:44 | 000,000,000 | ---D | C] -- C:\Users\vero\AppData\Roaming\Nosibay
[2014/05/06 22:13:01 | 000,000,000 | ---D | C] -- C:\ProgramData\2308189059
[2014/05/06 18:46:20 | 000,000,000 | ---D | C] -- C:\Users\vero\AppData\Roaming\Activeris
[2014/05/04 09:39:38 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\lenovo
[2014/05/01 11:53:10 | 000,000,000 | ---D | C] -- C:\Users\vero\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VOPackage
[2014/05/01 11:53:06 | 000,000,000 | ---D | C] -- C:\Users\vero\AppData\Roaming\VOPackage
[2014/05/01 10:29:17 | 000,000,000 | R--D | C] -- C:\Users\vero\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
[2014/04/30 19:47:44 | 000,000,000 | -HSD | C] -- C:\Users\vero\AppData\Local\EmieUserList
[2014/04/30 19:47:44 | 000,000,000 | -HSD | C] -- C:\Users\vero\AppData\Local\EmieSiteList
[2014/04/29 22:38:27 | 000,000,000 | ---D | C] -- C:\Users\vero\AppData\Local\com
[2014/04/29 22:33:00 | 000,000,000 | ---D | C] -- C:\Users\vero\AppData\Local\newplayer
[2014/04/29 22:32:40 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NewPlayer
[2014/04/29 22:32:18 | 000,000,000 | ---D | C] -- C:\Program Files\NewPlayer
[2014/04/29 18:37:17 | 000,440,832 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\ieui.dll
[2014/04/29 18:37:05 | 000,704,512 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\ieapfltr.dll
[2014/04/29 18:37:05 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\ieetwcollectorres.dll
[2014/04/29 18:37:02 | 000,164,864 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\msrating.dll
[2014/04/29 18:37:01 | 000,524,288 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\msfeeds.dll
[2014/04/29 18:37:01 | 000,043,008 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\jsproxy.dll
[2014/04/29 18:37:00 | 000,367,616 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\dxtmsft.dll
[2014/04/29 18:36:59 | 000,244,224 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\dxtrans.dll
[2014/04/29 18:36:58 | 000,575,488 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\ie4uinit.exe
[2014/04/29 18:36:57 | 000,112,128 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\ieUnatt.exe
[2014/04/29 18:36:57 | 000,061,952 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\iesetup.dll
[2014/04/29 18:36:57 | 000,032,768 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\iernonce.dll
[2014/04/29 18:36:55 | 000,592,896 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\jscript9diag.dll
[2014/04/29 18:36:55 | 000,051,200 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\ieetwproxystub.dll
[2014/04/29 18:36:55 | 000,032,256 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\JavaScriptCollectionAgent.dll
[2014/04/29 18:36:54 | 000,646,144 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\MsSpellCheckingFacility.exe
[2014/04/29 18:36:54 | 000,108,032 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\ieetwcollector.exe
[2014/04/29 18:36:45 | 001,967,104 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\inetcpl.cpl
[2014/04/29 18:36:34 | 004,254,720 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\jscript9.dll
[2014/04/28 08:09:08 | 000,264,616 | ---- | C] (Oracle Corporation) -- C:\windows\System32\javaws.exe
[2014/04/28 08:08:57 | 000,175,528 | ---- | C] (Oracle Corporation) -- C:\windows\System32\javaw.exe
[2014/04/28 08:08:57 | 000,175,016 | ---- | C] (Oracle Corporation) -- C:\windows\System32\java.exe
[2014/04/28 08:08:57 | 000,094,632 | ---- | C] (Oracle Corporation) -- C:\windows\System32\WindowsAccessBridge.dll
[2014/04/28 08:08:57 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
[2014/04/28 08:00:40 | 000,000,000 | ---D | C] -- C:\Users\vero\AppData\Local\PriceMeterLiveUpdate
[2014/04/28 08:00:40 | 000,000,000 | ---D | C] -- C:\ProgramData\PriceMeterLiveUpdate
[2014/04/28 08:00:40 | 000,000,000 | ---D | C] -- C:\Program Files\PriceMeterLiveUpdate
[2014/04/28 08:00:34 | 000,000,000 | ---D | C] -- C:\Users\vero\AppData\Roaming\PriceMeterUpdater
[2014/04/28 08:00:31 | 000,000,000 | ---D | C] -- C:\Program Files\Plus-HD9.5v4
[2014/04/27 22:04:39 | 000,000,000 | ---D | C] -- C:\temp
[2014/04/27 22:02:40 | 000,000,000 | ---D | C] -- C:\Program Files\003
[2014/04/27 17:18:42 | 000,000,000 | ---D | C] -- C:\Program Files\MediaPlayerplus
[2014/04/27 09:15:47 | 000,000,000 | ---D | C] -- C:\Users\vero\AppData\Roaming\AVAST Software
[2014/04/27 09:15:32 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast
[2014/04/27 09:13:49 | 000,068,312 | ---- | C] (AVAST Software) -- C:\windows\System32\drivers\aswstm.sys
[2014/04/27 09:13:48 | 000,777,488 | ---- | C] (AVAST Software) -- C:\windows\System32\drivers\aswsnx.sys
[2014/04/27 09:13:48 | 000,776,976 | ---- | C] (AVAST Software) -- C:\windows\System32\drivers\aswsnx.sys.1400175162571
[2014/04/27 09:13:48 | 000,411,680 | ---- | C] (AVAST Software) -- C:\windows\System32\drivers\aswsp.sys
[2014/04/27 09:13:48 | 000,411,552 | ---- | C] (AVAST Software) -- C:\windows\System32\drivers\aswsp.sys.1400175162571
[2014/04/27 09:13:47 | 000,081,768 | ---- | C] (AVAST Software) -- C:\windows\System32\drivers\aswRdr2.sys
[2014/04/27 09:13:47 | 000,067,824 | ---- | C] (AVAST Software) -- C:\windows\System32\drivers\aswMonFlt.sys
[2014/04/27 09:13:45 | 000,271,264 | ---- | C] (AVAST Software) -- C:\windows\System32\aswBoot.exe
[2014/04/27 09:13:38 | 000,043,152 | ---- | C] (AVAST Software) -- C:\windows\avastSS.scr
[2014/04/27 09:12:37 | 000,000,000 | ---D | C] -- C:\Program Files\AVAST Software
[2014/04/26 22:34:37 | 000,000,000 | ---D | C] -- C:\Program Files\Winamax Poker
[2014/04/26 22:30:12 | 000,149,440 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\drivers\storport.sys
[2014/04/26 22:30:12 | 000,027,072 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\drivers\Diskdump.sys
[2014/04/26 22:30:11 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\iologmsg.dll
[2 C:\Users\vero\AppData\Local\*.tmp files -> C:\Users\vero\AppData\Local\*.tmp -> ]
[1 C:\windows\*.tmp files -> C:\windows\*.tmp -> ]
[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]
[2014/05/21 08:05:03 | 000,001,278 | ---- | M] () -- C:\windows\tasks\f435e5b3-5f67-4dd8-a38b-911cec0347c8-7.job
[2014/05/21 08:05:00 | 000,000,950 | ---- | M] () -- C:\windows\tasks\PriceMeterLiveUpdateUpdateTaskMachineUA.job
[2014/05/21 08:05:00 | 000,000,946 | ---- | M] () -- C:\windows\tasks\PriceMeterLiveUpdateUpdateTaskMachineCore.job
[2014/05/21 08:04:00 | 000,001,002 | ---- | M] () -- C:\windows\tasks\Adobe Flash Player Updater.job
[2014/05/21 08:01:16 | 000,020,464 | -H-- | M] () -- C:\windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2014/05/21 08:01:16 | 000,020,464 | -H-- | M] () -- C:\windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2014/05/21 08:01:09 | 000,001,418 | ---- | M] () -- C:\windows\tasks\f435e5b3-5f67-4dd8-a38b-911cec0347c8-5.job
[2014/05/21 07:54:26 | 000,000,916 | ---- | M] () -- C:\windows\tasks\SaveSenseLiveUpdateTaskMachineUA.job
[2014/05/21 07:53:19 | 000,003,108 | ---- | M] () -- C:\windows\tasks\b0625433-0826-4d86-9af6-bc28310b6329-3.job
[2014/05/21 07:53:19 | 000,001,510 | ---- | M] () -- C:\windows\tasks\b0625433-0826-4d86-9af6-bc28310b6329-5.job
[2014/05/21 07:53:14 | 000,000,912 | ---- | M] () -- C:\windows\tasks\SaveSenseLiveUpdateTaskMachineCore.job
[2014/05/21 07:52:57 | 000,067,584 | --S- | M] () -- C:\windows\bootstat.dat
[2014/05/21 07:52:52 | 2384,932,864 | -HS- | M] () -- C:\hiberfil.sys
[2014/05/20 23:48:00 | 000,000,288 | ---- | M] () -- C:\windows\tasks\Digital Sites.job
[2014/05/20 15:01:00 | 000,000,262 | ---- | M] () -- C:\windows\tasks\RegClean Pro_DEFAULT.job
[2014/05/20 13:48:05 | 000,000,065 | ---- | M] () -- C:\Users\vero\AppData\Roaming\WB.CFG
[2014/05/16 18:50:36 | 474,045,585 | ---- | M] () -- C:\windows\MEMORY.DMP
[2014/05/15 21:18:42 | 000,692,400 | ---- | M] (Adobe Systems Incorporated) -- C:\windows\System32\FlashPlayerApp.exe
[2014/05/15 21:18:42 | 000,070,832 | ---- | M] (Adobe Systems Incorporated) -- C:\windows\System32\FlashPlayerCPLApp.cpl
[2014/05/15 19:32:43 | 000,777,488 | ---- | M] (AVAST Software) -- C:\windows\System32\drivers\aswsnx.sys
[2014/05/15 19:32:43 | 000,411,680 | ---- | M] (AVAST Software) -- C:\windows\System32\drivers\aswsp.sys
[2014/05/15 19:32:43 | 000,068,312 | ---- | M] (AVAST Software) -- C:\windows\System32\drivers\aswstm.sys
[2014/05/14 19:25:00 | 000,000,270 | ---- | M] () -- C:\windows\tasks\RegClean Pro_UPDATES.job
[2014/05/14 08:39:12 | 000,000,276 | ---- | M] () -- C:\windows\tasks\AdvancedDriverUpdater_UPDATES.job
[2014/05/13 20:59:30 | 000,001,048 | ---- | M] () -- C:\Users\vero\Desktop\PokerStars.fr.lnk
[2014/05/12 18:00:01 | 000,747,570 | ---- | M] () -- C:\windows\System32\perfh00C.dat
[2014/05/12 18:00:01 | 000,737,260 | ---- | M] () -- C:\windows\System32\perfh00A.dat
[2014/05/12 18:00:01 | 000,735,302 | ---- | M] () -- C:\windows\System32\perfh013.dat
[2014/05/12 18:00:01 | 000,732,162 | ---- | M] () -- C:\windows\System32\perfh015.dat
[2014/05/12 18:00:01 | 000,731,850 | ---- | M] () -- C:\windows\System32\perfh010.dat
[2014/05/12 18:00:01 | 000,720,822 | ---- | M] () -- C:\windows\System32\prfh0816.dat
[2014/05/12 18:00:01 | 000,716,404 | ---- | M] () -- C:\windows\System32\perfh019.dat
[2014/05/12 18:00:01 | 000,705,684 | ---- | M] () -- C:\windows\System32\prfh0416.dat
[2014/05/12 18:00:01 | 000,689,012 | ---- | M] () -- C:\windows\System32\perfh007.dat
[2014/05/12 18:00:01 | 000,675,558 | ---- | M] () -- C:\windows\System32\perfh00E.dat
[2014/05/12 18:00:01 | 000,660,644 | ---- | M] () -- C:\windows\System32\perfh005.dat
[2014/05/12 18:00:01 | 000,655,524 | ---- | M] () -- C:\windows\System32\perfh01D.dat
[2014/05/12 18:00:01 | 000,654,140 | ---- | M] () -- C:\windows\System32\perfh009.dat
[2014/05/12 18:00:01 | 000,648,486 | ---- | M] () -- C:\windows\System32\perfh01F.dat
[2014/05/12 18:00:01 | 000,598,792 | ---- | M] () -- C:\windows\System32\perfh008.dat
[2014/05/12 18:00:01 | 000,501,218 | ---- | M] () -- C:\windows\System32\perfh006.dat
[2014/05/12 18:00:01 | 000,486,318 | ---- | M] () -- C:\windows\System32\perfh014.dat
[2014/05/12 18:00:01 | 000,473,306 | ---- | M] () -- C:\windows\System32\perfh00B.dat
[2014/05/12 18:00:01 | 000,470,818 | ---- | M] () -- C:\windows\System32\perfh001.dat
[2014/05/12 18:00:01 | 000,420,228 | ---- | M] () -- C:\windows\System32\perfh012.dat
[2014/05/12 18:00:01 | 000,408,582 | ---- | M] () -- C:\windows\System32\perfh011.dat
[2014/05/12 18:00:01 | 000,390,146 | ---- | M] () -- C:\windows\System32\prfh0404.dat
[2014/05/12 18:00:01 | 000,384,148 | ---- | M] () -- C:\windows\System32\perfh00D.dat
[2014/05/12 18:00:01 | 000,372,974 | ---- | M] () -- C:\windows\System32\prfh0804.dat
[2014/05/12 18:00:01 | 000,171,142 | ---- | M] () -- C:\windows\System32\perfc00E.dat
[2014/05/12 18:00:01 | 000,158,342 | ---- | M] () -- C:\windows\System32\perfc00A.dat
[2014/05/12 18:00:01 | 000,155,740 | ---- | M] () -- C:\windows\System32\perfc015.dat
[2014/05/12 18:00:01 | 000,152,970 | ---- | M] () -- C:\windows\System32\perfc013.dat
[2014/05/12 18:00:01 | 000,152,774 | ---- | M] () -- C:\windows\System32\prfc0816.dat
[2014/05/12 18:00:01 | 000,150,710 | ---- | M] () -- C:\windows\System32\perfc019.dat
[2014/05/12 18:00:01 | 000,150,062 | ---- | M] () -- C:\windows\System32\perfc00C.dat
[2014/05/12 18:00:01 | 000,148,984 | ---- | M] () -- C:\windows\System32\perfc007.dat
[2014/05/12 18:00:01 | 000,147,524 | ---- | M] () -- C:\windows\System32\prfc0416.dat
[2014/05/12 18:00:01 | 000,146,714 | ---- | M] () -- C:\windows\System32\perfc010.dat
[2014/05/12 18:00:01 | 000,142,342 | ---- | M] () -- C:\windows\System32\perfc01D.dat
[2014/05/12 18:00:01 | 000,141,294 | ---- | M] () -- C:\windows\System32\perfc005.dat
[2014/05/12 18:00:01 | 000,139,868 | ---- | M] () -- C:\windows\System32\perfc01F.dat
[2014/05/12 18:00:01 | 000,122,012 | ---- | M] () -- C:\windows\System32\perfc009.dat
[2014/05/12 18:00:01 | 000,121,968 | ---- | M] () -- C:\windows\System32\perfc011.dat
[2014/05/12 18:00:01 | 000,120,252 | ---- | M] () -- C:\windows\System32\perfc012.dat
[2014/05/12 18:00:01 | 000,119,460 | ---- | M] () -- C:\windows\System32\prfc0804.dat
[2014/05/12 18:00:01 | 000,114,958 | ---- | M] () -- C:\windows\System32\prfc0404.dat
[2014/05/12 18:00:01 | 000,110,996 | ---- | M] () -- C:\windows\System32\perfc008.dat
[2014/05/12 18:00:01 | 000,101,388 | ---- | M] () -- C:\windows\System32\perfc00B.dat
[2014/05/12 18:00:01 | 000,098,526 | ---- | M] () -- C:\windows\System32\perfc006.dat
[2014/05/12 18:00:01 | 000,095,272 | ---- | M] () -- C:\windows\System32\perfc014.dat
[2014/05/12 18:00:01 | 000,094,640 | ---- | M] () -- C:\windows\System32\perfc001.dat
[2014/05/12 18:00:01 | 000,084,626 | ---- | M] () -- C:\windows\System32\perfc00D.dat
[2014/05/09 09:06:23 | 000,369,664 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\aepdu.dll
[2014/05/09 09:04:12 | 000,302,592 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\aeinv.dll
[2014/05/06 22:25:14 | 000,001,644 | ---- | M] () -- C:\windows\System32\${LOGFILE}
[2014/05/06 22:22:15 | 000,000,288 | ---- | M] () -- C:\windows\tasks\AppCloudUpdater.job
[2014/05/06 22:18:46 | 000,001,030 | ---- | M] () -- C:\Users\Public\Desktop\VLC media player.lnk
[2014/05/06 05:07:39 | 002,724,864 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\mshtml.tlb
[2014/05/01 11:53:31 | 000,001,065 | ---- | M] () -- C:\Users\Public\Desktop\NewPlayer.lnk
[2014/05/01 11:51:41 | 000,000,532 | ---- | M] () -- C:\END
[2014/05/01 00:00:06 | 000,000,288 | ---- | M] () -- C:\windows\tasks\Price Meter Updater.job
[2014/04/30 22:26:56 | 001,161,080 | ---- | M] () -- C:\windows\System32\ZombieAlert.A222801BB6B4.2.6.80.dll
[2014/04/27 09:15:33 | 000,002,125 | ---- | M] () -- C:\Users\Public\Desktop\avast! Free Antivirus.lnk
[2014/04/27 09:13:40 | 000,776,976 | ---- | M] (AVAST Software) -- C:\windows\System32\drivers\aswsnx.sys.1400175162571
[2014/04/27 09:13:40 | 000,180,632 | ---- | M] () -- C:\windows\System32\drivers\aswVmm.sys
[2014/04/27 09:13:39 | 000,411,552 | ---- | M] (AVAST Software) -- C:\windows\System32\drivers\aswsp.sys.1400175162571
[2014/04/27 09:13:39 | 000,081,768 | ---- | M] (AVAST Software) -- C:\windows\System32\drivers\aswRdr2.sys
[2014/04/27 09:13:39 | 000,067,824 | ---- | M] (AVAST Software) -- C:\windows\System32\drivers\aswMonFlt.sys
[2014/04/27 09:13:39 | 000,049,944 | ---- | M] () -- C:\windows\System32\drivers\aswRvrt.sys
[2014/04/27 09:13:39 | 000,024,184 | ---- | M] () -- C:\windows\System32\drivers\aswHwid.sys
[2014/04/27 09:13:38 | 000,271,264 | ---- | M] (AVAST Software) -- C:\windows\System32\aswBoot.exe
[2014/04/27 09:13:38 | 000,043,152 | ---- | M] (AVAST Software) -- C:\windows\avastSS.scr
[2014/04/26 22:34:38 | 000,000,897 | ---- | M] () -- C:\Users\Public\Desktop\Winamax Poker.lnk
[2 C:\Users\vero\AppData\Local\*.tmp files -> C:\Users\vero\AppData\Local\*.tmp -> ]
[1 C:\windows\*.tmp files -> C:\windows\*.tmp -> ]
[color=#E56717]========== Files Created - No Company Name ==========[/color]
[2014/05/13 20:59:30 | 000,001,048 | ---- | C] () -- C:\Users\vero\Desktop\PokerStars.fr.lnk
[2014/05/06 22:24:46 | 000,001,644 | ---- | C] () -- C:\windows\System32\${LOGFILE}
[2014/05/06 22:22:15 | 000,000,288 | ---- | C] () -- C:\windows\tasks\AppCloudUpdater.job
[2014/04/29 22:32:40 | 000,001,065 | ---- | C] () -- C:\Users\Public\Desktop\NewPlayer.lnk
[2014/04/29 22:05:08 | 001,161,080 | ---- | C] () -- C:\windows\System32\ZombieAlert.A222801BB6B4.2.6.80.dll
[2014/04/28 08:01:17 | 000,001,418 | ---- | C] () -- C:\windows\tasks\f435e5b3-5f67-4dd8-a38b-911cec0347c8-5.job
[2014/04/28 08:00:55 | 000,000,950 | ---- | C] () -- C:\windows\tasks\PriceMeterLiveUpdateUpdateTaskMachineUA.job
[2014/04/28 08:00:53 | 000,000,946 | ---- | C] () -- C:\windows\tasks\PriceMeterLiveUpdateUpdateTaskMachineCore.job
[2014/04/28 08:00:41 | 000,001,278 | ---- | C] () -- C:\windows\tasks\f435e5b3-5f67-4dd8-a38b-911cec0347c8-7.job
[2014/04/28 08:00:35 | 000,000,288 | ---- | C] () -- C:\windows\tasks\Price Meter Updater.job
[2014/04/27 17:19:23 | 000,001,510 | ---- | C] () -- C:\windows\tasks\b0625433-0826-4d86-9af6-bc28310b6329-5.job
[2014/04/27 17:18:50 | 000,003,108 | ---- | C] () -- C:\windows\tasks\b0625433-0826-4d86-9af6-bc28310b6329-3.job
[2014/04/27 09:15:33 | 000,002,125 | ---- | C] () -- C:\Users\Public\Desktop\avast! Free Antivirus.lnk
[2014/04/27 09:13:49 | 000,180,632 | ---- | C] () -- C:\windows\System32\drivers\aswVmm.sys
[2014/04/27 09:13:48 | 000,049,944 | ---- | C] () -- C:\windows\System32\drivers\aswRvrt.sys
[2014/04/27 09:13:47 | 000,024,184 | ---- | C] () -- C:\windows\System32\drivers\aswHwid.sys
[2014/03/02 23:00:38 | 000,000,528 | ---- | C] () -- C:\Users\vero\AppData\Local\{FB5ACEF5-0E8D-49AD-A4D3-6F323187CDA4}
[2014/02/20 11:50:24 | 000,645,632 | ---- | C] () -- C:\windows\System32\xvidcore.dll
[2014/02/20 11:50:24 | 000,240,640 | ---- | C] () -- C:\windows\System32\xvidvfw.dll
[2014/02/20 11:49:30 | 000,000,065 | ---- | C] () -- C:\Users\vero\AppData\Roaming\WB.CFG
[2014/02/18 20:25:42 | 000,017,136 | ---- | C] () -- C:\windows\System32\sasnative32.exe
[2014/02/17 19:12:12 | 000,294,764 | ---- | C] () -- C:\windows\System32\perfi01D.dat
[2014/02/17 19:12:11 | 000,655,524 | ---- | C] () -- C:\windows\System32\perfh01D.dat
[2014/02/17 19:12:11 | 000,142,342 | ---- | C] () -- C:\windows\System32\perfc01D.dat
[2014/02/17 19:12:11 | 000,037,052 | ---- | C] () -- C:\windows\System32\perfd01D.dat
[2014/02/17 19:01:56 | 000,157,694 | ---- | C] () -- C:\windows\System32\perfi012.dat
[2014/02/17 19:01:55 | 000,420,228 | ---- | C] () -- C:\windows\System32\perfh012.dat
[2014/02/17 19:01:55 | 000,120,252 | ---- | C] () -- C:\windows\System32\perfc012.dat
[2014/02/17 19:01:55 | 000,031,548 | ---- | C] () -- C:\windows\System32\perfd012.dat
[2014/02/17 18:20:16 | 000,111,310 | ---- | C] () -- C:\windows\System32\prfi0804.dat
[2014/02/17 18:20:15 | 000,372,974 | ---- | C] () -- C:\windows\System32\prfh0804.dat
[2014/02/17 18:20:15 | 000,119,460 | ---- | C] () -- C:\windows\System32\prfc0804.dat
[2014/02/17 18:20:15 | 000,031,548 | ---- | C] () -- C:\windows\System32\prfd0804.dat
[2014/02/17 18:02:15 | 000,141,988 | ---- | C] () -- C:\windows\System32\perfi011.dat
[2014/02/17 18:02:14 | 000,408,582 | ---- | C] () -- C:\windows\System32\perfh011.dat
[2014/02/17 18:02:14 | 000,121,968 | ---- | C] () -- C:\windows\System32\perfc011.dat
[2014/02/17 18:02:14 | 000,031,548 | ---- | C] () -- C:\windows\System32\perfd011.dat
[2014/02/17 17:51:48 | 000,287,518 | ---- | C] () -- C:\windows\System32\perfi00E.dat
[2014/02/17 17:51:47 | 000,675,558 | ---- | C] () -- C:\windows\System32\perfh00E.dat
[2014/02/17 17:51:47 | 000,171,142 | ---- | C] () -- C:\windows\System32\perfc00E.dat
[2014/02/17 17:51:47 | 000,048,094 | ---- | C] () -- C:\windows\System32\perfd00E.dat
[2014/02/17 17:42:48 | 000,279,790 | ---- | C] () -- C:\windows\System32\perfi00B.dat
[2014/02/17 17:42:47 | 000,473,306 | ---- | C] () -- C:\windows\System32\perfh00B.dat
[2014/02/17 17:42:47 | 000,101,388 | ---- | C] () -- C:\windows\System32\perfc00B.dat
[2014/02/17 17:42:47 | 000,038,258 | ---- | C] () -- C:\windows\System32\perfd00B.dat
[2014/02/17 17:33:46 | 000,384,148 | ---- | C] () -- C:\windows\System32\perfh00D.dat
[2014/02/17 17:33:46 | 000,229,316 | ---- | C] () -- C:\windows\System32\perfi00D.dat
[2014/02/17 17:33:46 | 000,084,626 | ---- | C] () -- C:\windows\System32\perfc00D.dat
[2014/02/17 17:33:46 | 000,032,166 | ---- | C] () -- C:\windows\System32\perfd00D.dat
[2014/02/17 17:25:21 | 000,735,302 | ---- | C] () -- C:\windows\System32\perfh013.dat
[2014/02/17 17:25:21 | 000,341,322 | ---- | C] () -- C:\windows\System32\perfi013.dat
[2014/02/17 17:25:21 | 000,152,970 | ---- | C] () -- C:\windows\System32\perfc013.dat
[2014/02/17 17:25:21 | 000,043,068 | ---- | C] () -- C:\windows\System32\perfd013.dat
[2014/02/17 17:16:55 | 000,298,300 | ---- | C] () -- C:\windows\System32\perfi014.dat
[2014/02/17 17:16:54 | 000,486,318 | ---- | C] () -- C:\windows\System32\perfh014.dat
[2014/02/17 17:16:54 | 000,095,272 | ---- | C] () -- C:\windows\System32\perfc014.dat
[2014/02/17 17:16:54 | 000,036,156 | ---- | C] () -- C:\windows\System32\perfd014.dat
[2014/02/17 17:01:57 | 000,369,984 | ---- | C] () -- C:\windows\System32\perfi008.dat
[2014/02/17 17:01:56 | 000,598,792 | ---- | C] () -- C:\windows\System32\perfh008.dat
[2014/02/17 17:01:56 | 000,110,996 | ---- | C] () -- C:\windows\System32\perfc008.dat
[2014/02/17 17:01:56 | 000,045,182 | ---- | C] () -- C:\windows\System32\perfd008.dat
[2014/02/17 16:47:41 | 000,335,478 | ---- | C] () -- C:\windows\System32\perfi010.dat
[2014/02/17 16:47:40 | 000,731,850 | ---- | C] () -- C:\windows\System32\perfh010.dat
[2014/02/17 16:47:40 | 000,146,714 | ---- | C] () -- C:\windows\System32\perfc010.dat
[2014/02/17 16:47:40 | 000,037,534 | ---- | C] () -- C:\windows\System32\perfd010.dat
[2014/02/17 16:39:35 |
A voir également:
- Supprimer hot deals
- Supprimer rond bleu whatsapp - Guide
- Supprimer une page word - Guide
- Supprimer pub youtube - Accueil - Streaming
- Fichier impossible à supprimer - Guide
- Supprimer compte instagram - Guide
1 réponse
Salut,
Tu as installé des adwares et programmes parasites sur ton PC qui ouvrent des publicités et ralentissent l'ordinateur et les navigateurs WEB.
Voici la procédure à suivre pour les supprimer :
Télécharge https://www.malekal.com/adwcleaner-supprimer-virus-adwares-pup/?t=33839&start= AdwCleaner ( d'Xplode ) sur ton bureau.
Sur la page d'AdwCleaner, à droite, clic sur la disquette grise avec la flèche verte pour lancer le téléchargement.
Lance AdwCleaner, clique sur [Scanner].
Le scan peux durer plusieurs minutes, patienter.
Une fois le scan terminé, clique sur [Nettoyer]
Une fois le nettoyage terminé, un rapport s'ouvrira. Copie/colle le contenu du rapport dans ta prochaine réponse par un copier/coller.
Si cela ne fonctionne pas, utilise le site http://pjjoint.malekal.com pour héberger le rapport, donne le lien du rapport dans un nouveau message.
Note : Le rapport est également sauvegardé sous C:\AdwCleaner[S1].txt
puis réinitialise tes navigateurs:
==================================
Réinitialise tes navigateurs et ou manuellement reparamètre tes navigateurs WEB (page de démarrage, moteur de recherche etc) mais aussi supprimer/désactiver les extensions inutiles/parasites :
* Internet Explorer et modules complémentaires / moteurs de recherche : https://forum.malekal.com/viewtopic.php?t=41399&start=
* Firefox : https://www.malekal.com/reparer-firefox/?t=36057&start=
* Google Chrome : https://www.malekal.com/reparer-google-chrome/?t=35837&start=
Tu as installé des adwares et programmes parasites sur ton PC qui ouvrent des publicités et ralentissent l'ordinateur et les navigateurs WEB.
Voici la procédure à suivre pour les supprimer :
Télécharge https://www.malekal.com/adwcleaner-supprimer-virus-adwares-pup/?t=33839&start= AdwCleaner ( d'Xplode ) sur ton bureau.
Sur la page d'AdwCleaner, à droite, clic sur la disquette grise avec la flèche verte pour lancer le téléchargement.
Lance AdwCleaner, clique sur [Scanner].
Le scan peux durer plusieurs minutes, patienter.
Une fois le scan terminé, clique sur [Nettoyer]
Une fois le nettoyage terminé, un rapport s'ouvrira. Copie/colle le contenu du rapport dans ta prochaine réponse par un copier/coller.
Si cela ne fonctionne pas, utilise le site http://pjjoint.malekal.com pour héberger le rapport, donne le lien du rapport dans un nouveau message.
Note : Le rapport est également sauvegardé sous C:\AdwCleaner[S1].txt
puis réinitialise tes navigateurs:
==================================
Réinitialise tes navigateurs et ou manuellement reparamètre tes navigateurs WEB (page de démarrage, moteur de recherche etc) mais aussi supprimer/désactiver les extensions inutiles/parasites :
* Internet Explorer et modules complémentaires / moteurs de recherche : https://forum.malekal.com/viewtopic.php?t=41399&start=
* Firefox : https://www.malekal.com/reparer-firefox/?t=36057&start=
* Google Chrome : https://www.malekal.com/reparer-google-chrome/?t=35837&start=