cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

ÿþOTL logfile created on: 12/04/2015 11:43:42 - Run 2
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Cindy\Desktop
Windows Vista Home Basic Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 0000040C | Country: France | Language: FRA | Date Format: dd/MM/yyyy

2,75 Gb Total Physical Memory | 1,68 Gb Available Physical Memory | 61,18% Memory free
5,70 Gb Paging File | 4,77 Gb Available in Paging File | 83,55% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 139,15 Gb Total Space | 52,49 Gb Free Space | 37,72% Space Free | Partition Type: NTFS
Drive E: | 7,46 Gb Total Space | 7,31 Gb Free Space | 97,92% Space Free | Partition Type: FAT32
Drive F: | 142,94 Gb Total Space | 134,76 Gb Free Space | 94,28% Space Free | Partition Type: NTFS

Computer Name: MAISON | User Name: Cindy | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

[color=#E56717]========== Processes (SafeList) ==========[/color]

PRC - C:\Users\Cindy\Desktop\OTL.exe (OldTimer Tools)
PRC - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe (Adobe Systems Incorporated)
PRC - C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe (NVIDIA Corporation)
PRC - C:\Program Files\NVIDIA Corporation\Display\nvtray.exe (NVIDIA Corporation)
PRC - C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe (NVIDIA Corporation)
PRC - C:\Program Files\TRENDnet\TEW-649UB\WlanCU.exe ()
PRC - C:\Genius\ioCentre\gMouseTask.exe ()
PRC - C:\Genius\ioCentre\gTaskBar.exe ()
PRC - C:\Genius\ioCentre\gKbdTask.exe ()
PRC - C:\Genius\ioCentre\gIoCentreFunMgm.exe (TODO: <Company name>)
PRC - C:\Windows\explorer.exe (Microsoft Corporation)
PRC - C:\Program Files\TRENDnet\TEW-649UB\WlanWpsSvc.exe ()
PRC - C:\Program Files\Acer\Empowering Technology\SysMonitor.exe ()
PRC - C:\Program Files\Acer\Empowering Technology\Framework.Launcher.exe ()
PRC - C:\Program Files\Acer\Empowering Technology\Service\ETService.exe ()
PRC - C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDSService.exe (Egis Incorporated)
PRC - C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDSLoader.exe (Egis Incorporated)
PRC - C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation)
PRC - C:\Program Files\Microsoft LifeCam\MSCamS32.exe (Microsoft Corporation)
PRC - C:\Windows\vVX1000.exe (Microsoft Corporation)


[color=#E56717]========== Modules (No Company Name) ==========[/color]

MOD - C:\Windows\assembly\GAC_MSIL\System\2.0.0.0__b77a5c561934e089\System.dll ()
MOD - C:\Windows\assembly\GAC_32\mscorlib\2.0.0.0__b77a5c561934e089\mscorlib.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\System.Windows.Forms\2.0.0.0__b77a5c561934e089\System.Windows.Forms.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\System.Management\2.0.0.0__b03f5f7f11d50a3a\System.Management.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\System.Drawing\2.0.0.0__b03f5f7f11d50a3a\System.Drawing.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\Accessibility\2.0.0.0__b03f5f7f11d50a3a\Accessibility.dll ()
MOD - C:\Program Files\TRENDnet\TEW-649UB\WlanCU.exe ()
MOD - C:\Program Files\TRENDnet\TEW-649UB\WlanDll.dll ()
MOD - C:\Genius\ioCentre\gMouseTask.exe ()
MOD - C:\Genius\ioCentre\gTaskBar.exe ()
MOD - C:\Genius\ioCentre\gKbdTask.exe ()
MOD - C:\Genius\ioCentre\gIoCentreHook.dll ()
MOD - C:\Genius\ioCentre\gfSystem.dll ()
MOD - C:\Genius\ioCentre\gfOffice.dll ()
MOD - C:\Genius\ioCentre\gfMedia.dll ()
MOD - C:\Genius\ioCentre\gfEmail.dll ()
MOD - C:\Genius\ioCentre\gfBrowser.dll ()
MOD - C:\Genius\ioCentre\gZoom.dll ()
MOD - C:\Genius\ioCentre\gTaskSwitch.dll ()
MOD - C:\Genius\ioCentre\gTabSwitch.dll ()
MOD - C:\Genius\ioCentre\gPreset.dll ()
MOD - C:\Genius\ioCentre\gKbStatus.dll ()
MOD - C:\Genius\ioCentre\gIMMgm.dll ()
MOD - C:\Genius\ioCentre\gIMHook.dll ()
MOD - C:\Genius\ioCentre\gDeskMgm.dll ()
MOD - C:\Genius\ioCentre\gAutoScroll.dll ()
MOD - C:\Genius\ioCentre\gAutoPan.dll ()
MOD - C:\Program Files\TRENDnet\TEW-649UB\WPSCtrl.dll ()
MOD - C:\Genius\ioCentre\GenXml.dll ()
MOD - C:\Genius\ioCentre\gDevMgm.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\Framework.UIComponent\3.0.3008.0__739b31b1908c49e5\Framework.UIComponent.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\Framework.Utility\3.0.3008.0__4df5dcab8860d239\Framework.Utility.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\Framework.PluginInterface\3.0.3008.0__9ecdf03bb2054f94\Framework.PluginInterface.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\Framework.Library\3.0.3008.0__3036420f80dd6947\Framework.Library.dll ()
MOD - C:\Windows\assembly\GAC_MSIL\Framework.Host\3.0.3008.0__672b450de5a7e94a\Framework.Host.dll ()
MOD - C:\Program Files\NewTech Infosystems\NTI Backup Now 5\BkupTrayLOC.dll ()
MOD - C:\Program Files\Acer\Empowering Technology\SysMonitor.exe ()
MOD - C:\Program Files\Acer\Empowering Technology\Framework.Launcher.exe ()
MOD - C:\Program Files\Acer\Empowering Technology\Framework.Presenter.dll ()
MOD - C:\Program Files\Acer\Empowering Technology\fr\Framework.AppBar.resources.dll ()
MOD - C:\Program Files\Acer\Empowering Technology\Framework.AppBar.dll ()
MOD - C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\ShowErrMsg.dll ()


[color=#E56717]========== Services (SafeList) ==========[/color]

SRV - (MyOSProtect) -- C:\Program Files\PCTRunner\MyOSProtect.exe File not found
SRV - (AdobeFlashPlayerUpdateSvc) -- C:\Windows\System32\Macromed\Flash\FlashPlayerUpdateService.exe (Adobe Systems Incorporated)
SRV - (MozillaMaintenance) -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe (Mozilla Foundation)
SRV - (AdobeARMservice) -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe (Adobe Systems Incorporated)
SRV - (nvUpdatusService) -- C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe (NVIDIA Corporation)
SRV - (Stereo Service) -- C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe (NVIDIA Corporation)
SRV - (rpcapd) -- C:\Program Files\WinPcap\rpcapd.exe (CACE Technologies, Inc.)
SRV - (WlanWpsSvc) -- C:\Program Files\TRENDnet\TEW-649UB\WlanWpsSvc.exe ()
SRV - (ETService) -- C:\Program Files\Acer\Empowering Technology\Service\ETService.exe ()
SRV - (eDataSecurity Service) -- C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDSService.exe (Egis Incorporated)
SRV - (WinDefend) -- C:\Program Files\Windows Defender\MpSvc.dll (Microsoft Corporation)
SRV - (MSCamSvc) -- C:\Program Files\Microsoft LifeCam\MSCamS32.exe (Microsoft Corporation)


[color=#E56717]========== Driver Services (SafeList) ==========[/color]

DRV - (USBAAPL) -- System32\Drivers\usbaapl.sys File not found
DRV - (RTL8192su) -- system32\DRIVERS\RTL8192su.sys File not found
DRV - (RTL8187) -- system32\DRIVERS\RTL8187.sys File not found
DRV - (RT2500USB) -- system32\DRIVERS\rt73.sys File not found
DRV - (NwlnkFwd) -- system32\DRIVERS\nwlnkfwd.sys File not found
DRV - (NwlnkFlt) -- system32\DRIVERS\nwlnkflt.sys File not found
DRV - (IpInIp) -- system32\DRIVERS\ipinip.sys File not found
DRV - (IntcAzAudAddService) -- system32\drivers\RTKVHDA.sys File not found
DRV - (a0uphn5b) -- File not found
DRV - (DrvAgent32) -- C:\Windows\System32\drivers\DrvAgent32.sys (Phoenix Technologies)
DRV - (pcwatch) -- C:\Windows\System32\drivers\pcwatch.sys ()
DRV - (nvlddmkm) -- C:\Windows\System32\drivers\nvlddmkm.sys (NVIDIA Corporation)
DRV - (NVHDA) -- C:\Windows\System32\drivers\nvhda32v.sys (NVIDIA Corporation)
DRV - (sptd) -- C:\Windows\System32\drivers\sptd.sys ()
DRV - (NVNET) -- C:\Windows\System32\drivers\nvmfdx32.sys (NVIDIA Corporation)
DRV - (NVENETFD) -- C:\Windows\System32\drivers\nvmfdx32.sys (NVIDIA Corporation)
DRV - (NPF) -- C:\Windows\System32\drivers\npf.sys (CACE Technologies, Inc.)
DRV - (gMouPS2) -- C:\Windows\System32\drivers\gMouPS2.sys ( Mouse Upfilter Driver )
DRV - (gHidPnp) -- C:\Windows\System32\drivers\gHidPnp.sys ()
DRV - (gMouUsb) -- C:\Windows\System32\drivers\gMouUsb.sys ()
DRV - (sfdrv01) -- C:\Windows\System32\drivers\sfdrv01.sys (Protection Technology (StarForce))
DRV - (int15) -- C:\Windows\System32\drivers\int15.sys (Acer, Inc.)
DRV - (nvstor32) -- C:\Windows\System32\drivers\nvstor32.sys (NVIDIA Corporation)
DRV - (nvsmu) -- C:\Windows\System32\drivers\nvsmu.sys (NVIDIA Corporation)
DRV - (RtlProt) -- C:\Windows\System32\drivers\RtlProt.sys (Windows (R) Codename Longhorn DDK provider)
DRV - (VX1000) -- C:\Windows\System32\drivers\VX1000.sys (Microsoft Corporation)
DRV - (sfsync02) -- C:\Windows\System32\drivers\sfsync02.sys (Protection Technology)
DRV - (sfhlp02) -- C:\Windows\System32\drivers\sfhlp02.sys (Protection Technology (StarForce))
DRV - (SNP2STD) -- C:\Windows\System32\drivers\snp2sxp.sys ()
DRV - (UsbDiag) -- C:\Windows\System32\drivers\lgusbdiag.sys (LG Electronics Inc.)
DRV - (usbbus) -- C:\Windows\System32\drivers\lgusbbus.sys (LG Electronics Inc.)


[color=#E56717]========== Standard Registry (SafeList) ==========[/color]


[color=#E56717]========== Internet Explorer ==========[/color]

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchDefaultBranded = 1
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com
IE - HKCU\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC
IE - HKCU\..\SearchScopes\{6C10BE0B-AA09-497E-9E7B-457ACE2BCB0C}: "URL" = https://www.google.com/search?q={searchTerms}
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

[color=#E56717]========== FireFox ==========[/color]

FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:33.1.1
FF - user.js - File not found

FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32_16_0_0_305.dll ()
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\Windows\system32\Adobe\Director\np32dsw_1200112.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.71.2: C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.71.2: C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeLive,version=1.5: C:\Program Files\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3508.1109: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3538.0513: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3555.0308: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVision: C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVisionStreaming: C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=6.0.12.69: C:\Program Files\VistaCodecPack\rm\browser\plugins\nppl3260.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprpjplug;version=6.0.12.69: C:\Program Files\VistaCodecPack\rm\browser\plugins\nprpjplug.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=: File not found
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@veoh.com/VeohTVPlugin: C:\Program Files\Veoh Networks\VeohWebPlayer\NPVeohTVPlugin.dll (Veoh Networks )
FF - HKLM\Software\MozillaPlugins\@veoh.com/VeohWebPlayer: C:\Program Files\Veoh Networks\VeohWebPlayer\npWebPlayerVideoPluginATL.dll (Veoh)
FF - HKLM\Software\MozillaPlugins\@zylom.com/ZylomGamesPlayer: C:\ProgramData\Zylom\ZylomGamesPlayer\npzylomgamesplayer.dll (Zylom)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\@facebook.com/FBPlugin,version=1.0.3: C:\Users\Cindy\AppData\Roaming\Facebook\npfbplugin_1_0_3.dll File not found

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{3252b9ae-c69a-4eaf-9502-dc9c1f6c009e}: C:\Program Files\Microsoft\Search Enhancement Pack\Default Manager\DMExtension\ [2010/07/04 17:50:43 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 36.0.1\extensions\\Components: C:\Program Files\Mozilla Firefox\components
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 36.0.1\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins
FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\web@veoh.com: C:\Program Files\Veoh Networks\VeohWebPlayer\FFVideoFinder [2010/12/12 23:56:37 | 000,000,000 | ---D | M]

[2014/11/27 15:40:09 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Cindy\AppData\Roaming\mozilla\Extensions
[2009/03/14 21:23:26 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Cindy\AppData\Roaming\mozilla\Extensions\mozswing@mozswing.org
[2015/03/20 19:16:31 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\browser\extensions
[2015/03/20 19:16:31 | 000,000,000 | ---D | M] (Default) -- C:\Program Files\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}

[color=#E56717]========== Chrome ==========[/color]

CHR - homepage:
CHR - default_search_provider: Conduit (Enabled)
CHR - default_search_provider: search_url = http://www.google.fr/Results.aspx?q={searchTerms}&SearchSource=49&ctid=CT3242339
CHR - default_search_provider: suggest_url =
CHR - homepage:
CHR - plugin: Premier utilisateur (Enabled) = C:\Windows\system32\Macromed\Flash\NPSWF32.dll
CHR - plugin: Error reading preferences file
CHR - Extension: Google\u00A0Drive = C:\Users\Cindy\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\
CHR - Extension: YouTube = C:\Users\Cindy\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\
CHR - Extension: cbhfdchmklhpcngcgjmpdbjakdggkkjp = C:\Users\Cindy\AppData\Local\Google\Chrome\User Data\Default\Extensions\cbhfdchmklhpcngcgjmpdbjakdggkkjp\15833.4269.518_0\
CHR - Extension: No name found = C:\Users\Cindy\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\
CHR - Extension: ddehdnnhjimbggeeenghijehnpakijod = C:\Users\Cindy\AppData\Local\Google\Chrome\User Data\Default\Extensions\ddehdnnhjimbggeeenghijehnpakijod\18702.9421.7597_0\
CHR - Extension: Torrent Beast = C:\Users\Cindy\AppData\Local\Google\Chrome\User Data\Default\Extensions\fjceekmpapinmdhfghihaeikdmbdnipm\181\
CHR - Extension: gomekmidlodglbbmalcneegieacbdmki = C:\Users\Cindy\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki\12041.9650.3049_0\
CHR - Extension: Film Stack = C:\Users\Cindy\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpcloglcoibdbkafhnmghmaeofdikpnm\209\
CHR - Extension: Favicon Changer = C:\Users\Cindy\AppData\Local\Google\Chrome\User Data\Default\Extensions\ijaabbaphikljkkcbgpbaljfjpflpeoo\220\
CHR - Extension: Extreme User Agent Switcher = C:\Users\Cindy\AppData\Local\Google\Chrome\User Data\Default\Extensions\ilmdgdmjdkojpcchfiegejaihkopkhid\120\
CHR - Extension: FB Dislike = C:\Users\Cindy\AppData\Local\Google\Chrome\User Data\Default\Extensions\lpekolbadenjphaaapbgdienjjpgbali\183\
CHR - Extension: No name found = C:\Users\Cindy\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\

O1 HOSTS File: ([2015/03/20 20:16:41 | 000,000,768 | R--- | M]) - C:\Windows\System32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O3 - HKLM\..\Toolbar: (Veoh Web Player Video Finder) - {0FBB9689-D3D7-4f7a-A2E2-585B10099BFC} - C:\Program Files\Veoh Networks\VeohWebPlayer\VeohIEToolbar.dll (Veoh Networks Inc)
O3 - HKLM\..\Toolbar: (no name) - 10 - No CLSID value found.
O3 - HKCU\..\Toolbar\ShellBrowser: (no name) - {5CBE3B7C-1E47-477E-A7DD-396DB0476E29} - No CLSID value found.
O4 - HKLM..\Run: [Acer Empowering Technology Monitor] C:\Program Files\Acer\Empowering Technology\SysMonitor.exe ()
O4 - HKLM..\Run: [eDataSecurity Loader] C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDSLoader.exe (Egis Incorporated)
O4 - HKLM..\Run: [EmpoweringTechnology] C:\Program Files\Acer\Empowering Technology\Framework.Launcher.exe boot File not found
O4 - HKLM..\Run: [ioCentre] C:\Genius\ioCentre\gTaskBar.exe ()
O4 - HKLM..\Run: [LifeCam] C:\Program Files\Microsoft LifeCam\LifeExp.exe (Microsoft Corporation)
O4 - HKLM..\Run: [VX1000] C:\Windows\vVX1000.exe (Microsoft Corporation)
O4 - HKLM..\Run: [WarReg_PopUp] C:\Program Files\Acer\WR_PopUp\WarReg_PopUp.exe (Acer Incorporated)
O4 - HKLM..\Run: [Windows Defender] C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation)
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\SearchScopes present
O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - C:\Windows\System32\MyOSProtect.dll (MyOSCompany)
O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - C:\Windows\System32\MyOSProtect.dll (MyOSCompany)
O10 - Protocol_Catalog9\Catalog_Entries\000000000003 - C:\Windows\System32\MyOSProtect.dll (MyOSCompany)
O10 - Protocol_Catalog9\Catalog_Entries\000000000004 - C:\Windows\System32\MyOSProtect.dll (MyOSCompany)
O10 - Protocol_Catalog9\Catalog_Entries\000000000015 - C:\Windows\System32\MyOSProtect.dll (MyOSCompany)
O13 - gopher Prefix: missing
O16 - DPF: {0CCA191D-13A6-4E29-B746-314DEE697D83} http://upload.facebook.com/controls/2008.10.10_v5.5.8/FacebookPhotoUploader5.cab (Reg Error: Key error.)
O16 - DPF: {166B1BCA-3F9C-11CF-8075-444553540000} http://download.macromedia.com/pub/shockwave/cabs/director/sw.cab (Shockwave ActiveX Control)
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} http://gfx1.hotmail.com/mail/w3/resources/VistaMSNPUpldfr-fr.cab (Reg Error: Key error.)
O16 - DPF: {8100D56A-5661-482C-BEE8-AFECE305D968} http://upload.facebook.com/controls/2009.07.28_v5.5.8.1/FacebookPhotoUploader55.cab (Reg Error: Key error.)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.7.0/jinstall-1_7_0_71-windows-i586.cab (Java Plug-in 10.71.2)
O16 - DPF: {CAFEEFAC-0017-0000-0071-ABCDEFFEDCBA} http://java.sun.com/update/1.7.0/jinstall-1_7_0_71-windows-i586.cab (Java Plug-in 1.7.0_71)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.7.0/jinstall-1_7_0_71-windows-i586.cab (Java Plug-in 10.71.2)
O16 - DPF: {E77F23EB-E7AB-4502-8F37-247DBAF1A147} http://gfx1.hotmail.com/mail/w4/pr01/photouploadcontrol/VistaMSNPUpldfr-fr.cab (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{ECF751A8-F9C3-4A3B-9C7F-0FEEDE515AFB}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{F791400F-D473-4577-B42C-3D8F3CB725D3}: DhcpNameServer = 212.27.40.241 212.27.40.240
O18 - Protocol\Handler\livecall - No CLSID value found
O18 - Protocol\Handler\msnim - No CLSID value found
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation)
O24 - Desktop WallPaper: C:\Users\Cindy\AppData\Roaming\Microsoft\Windows Photo Gallery\Papier peint de la Galerie de photos Windows.jpg
O24 - Desktop BackupWallPaper: C:\Users\Cindy\AppData\Roaming\Microsoft\Windows Photo Gallery\Papier peint de la Galerie de photos Windows.jpg
O32 - HKLM CDRom: AutoRun - 1
O32 - Unable to obtain root file information for disk C:\
O33 - MountPoints2\{2dd368de-da45-11df-8b5a-001d72b15934}\Shell - "" = AutoRun
O33 - MountPoints2\{2dd368de-da45-11df-8b5a-001d72b15934}\Shell\AutoRun\command - "" = D:\Autorun.exe
O33 - MountPoints2\{2e5e0ed6-c7c6-11df-96f6-001d72b15934}\Shell\1\Command - "" = RunDll32.exe .\SysInfo2.Dll,MyFun
O33 - MountPoints2\{2e5e0ed6-c7c6-11df-96f6-001d72b15934}\Shell\AutoRun\command - "" = RunDll32.exe .\SysInfo2.Dll,MyFun
O33 - MountPoints2\{7b44476f-c56c-11df-bbf1-001d72b15934}\Shell\AutoRun\command - "" = C:\Windows\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL zEAbeI.Exe
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)

[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]

[2015/04/12 11:17:03 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\Cindy\Desktop\OTL.exe
[2015/04/12 09:20:50 | 000,000,000 | ---D | C] -- C:\_OTL
[2015/04/02 21:35:06 | 000,000,000 | ---D | C] -- C:\Program Files\SEAF
[2015/04/02 21:34:33 | 000,498,868 | ---- | C] (C_XX) -- C:\Users\Cindy\Desktop\SEAF.exe
[2015/03/23 18:18:41 | 000,000,000 | ---D | C] -- C:\Users\Cindy\AppData\Roaming\Solvusoft
[2015/03/23 18:18:36 | 000,017,840 | ---- | C] (solvusoft) -- C:\Windows\System32\roboot.exe
[2015/03/23 15:40:39 | 000,000,000 | ---D | C] -- C:\ProgramData\Panda Security
[2015/03/22 22:01:32 | 000,000,000 | ---D | C] -- C:\ProgramData\AVAST Software
[2015/03/22 21:57:20 | 000,000,000 | ---D | C] -- C:\Program Files\AVAST Software
[2015/03/21 11:02:48 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ZHP
[2015/03/21 11:02:46 | 000,000,000 | ---D | C] -- C:\Program Files\ZHPDiag
[2015/03/21 11:02:46 | 000,000,000 | ---D | C] -- C:\Users\Cindy\AppData\Roaming\ZHP
[2015/03/21 11:02:07 | 006,876,452 | ---- | C] (Nicolas Coolman ) -- C:\Users\Cindy\Desktop\ZHPDiag2-2015.3.19.31.exe
[2015/03/21 10:49:13 | 000,000,000 | ---D | C] -- C:\Users\Cindy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CyberLink PowerDVD
[2015/03/21 10:41:15 | 000,369,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WMPhoto.dll
[2015/03/21 10:35:51 | 002,064,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\win32k.sys
[2015/03/21 10:34:05 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tzres.dll
[2015/03/21 10:23:45 | 000,296,960 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\System32\atmfd.dll
[2015/03/21 10:23:45 | 000,034,304 | ---- | C] (Adobe Systems) -- C:\Windows\System32\atmlib.dll
[2015/03/21 10:20:15 | 000,049,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\csrsrv.dll
[2015/03/21 10:20:14 | 003,604,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntkrnlpa.exe
[2015/03/21 10:20:14 | 003,552,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntoskrnl.exe
[2015/03/21 10:15:28 | 000,093,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ncsi.dll
[2015/03/21 10:02:19 | 000,000,000 | -HSD | C] -- C:\Windows\System32\%APPDATA%
[2015/03/21 09:56:14 | 000,000,000 | ---D | C] -- C:\Users\Cindy\AppData\Local\CrashDumps
[2015/03/20 20:12:31 | 000,000,000 | ---D | C] -- C:\ProgramData\RogueKiller
[2015/03/20 20:11:48 | 017,450,080 | ---- | C] (Adlice Software ) -- C:\Users\Cindy\Desktop\setup.exe
[2015/03/20 19:16:31 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Maintenance Service
[2015/03/20 19:16:29 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox
[2015/03/20 18:34:07 | 000,000,000 | ---D | C] -- C:\AdwCleaner
[2015/03/20 16:10:25 | 000,000,000 | ---D | C] -- C:\Program Files\FB Dislike
[2015/03/20 15:44:43 | 000,607,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeeds.dll
[2015/03/20 15:44:43 | 000,353,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dxtmsft.dll
[2015/03/20 15:44:43 | 000,065,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jsproxy.dll
[2015/03/20 15:44:43 | 000,041,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeedsbs.dll
[2015/03/20 15:44:43 | 000,010,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeedssync.exe
[2015/03/20 15:44:42 | 002,382,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshtml.tlb
[2015/03/20 15:44:42 | 001,427,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\inetcpl.cpl
[2015/03/20 15:44:42 | 000,231,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\url.dll
[2015/03/20 15:44:42 | 000,142,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieUnatt.exe
[2015/03/20 15:44:41 | 001,810,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jscript9.dll
[2015/03/20 15:44:41 | 000,367,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\html.iec
[2015/03/20 15:44:38 | 000,223,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dxtrans.dll
[2015/03/20 15:44:38 | 000,176,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieui.dll
[2015/03/20 15:39:55 | 000,000,000 | ---D | C] -- C:\Program Files\Extreme User Agent Switcher
[2015/03/20 15:39:38 | 000,000,000 | ---D | C] -- C:\ProgramData\12503653337730069757UL
[2015/03/19 19:40:51 | 000,000,000 | ---D | C] -- C:\Program Files\Film Stack
[2015/03/19 14:41:58 | 000,000,000 | ---D | C] -- C:\Program Files\Phantasmat Une Nuit Sans Fin Edition Collector
[2015/03/19 14:39:14 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Phantasmat Une Nuit Sans Fin Edition Collector
[2015/03/19 14:31:22 | 000,000,000 | ---D | C] -- C:\Users\Cindy\AppData\Roaming\vlc
[2015/03/19 14:30:46 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
[2015/03/19 13:49:49 | 000,000,000 | ---D | C] -- C:\ProgramData\TEMP
[2015/03/19 13:35:32 | 000,000,000 | ---D | C] -- C:\Users\Cindy\AppData\Roaming\Eipix
[2015/03/19 13:35:03 | 000,000,000 | ---D | C] -- C:\ProgramData\Caphyon
[2015/03/19 13:33:10 | 000,000,000 | ---D | C] -- C:\Program Files\Final Cut La Grande Echappee Edition Collector
[2015/03/19 13:31:23 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Final Cut La Grande Echappee Edition Collector
[2015/03/19 13:29:32 | 000,000,000 | ---D | C] -- C:\Users\Cindy\AppData\Roaming\ECloZion
[2015/03/19 13:17:51 | 000,000,000 | ---D | C] -- C:\Users\Cindy\AppData\Roaming\Elephant Games
[2015/03/19 12:25:28 | 000,000,000 | ---D | C] -- C:\ProgramData\NCH Software
[2 C:\Users\Cindy\AppData\Local\*.tmp files -> C:\Users\Cindy\AppData\Local\*.tmp -> ]

[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]

[2015/04/12 11:47:53 | 000,727,610 | ---- | M] () -- C:\Windows\System32\perfh00C.dat
[2015/04/12 11:47:53 | 000,639,794 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2015/04/12 11:47:53 | 000,148,164 | ---- | M] () -- C:\Windows\System32\perfc00C.dat
[2015/04/12 11:47:53 | 000,121,898 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2015/04/12 11:41:41 | 000,000,000 | ---- | M] () -- C:\Windows\System32\LogConfigTemp.xml
[2015/04/12 11:41:32 | 000,001,050 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore1cd9a8b671fcf50.job
[2015/04/12 11:41:31 | 000,003,216 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2015/04/12 11:41:31 | 000,003,216 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2015/04/12 11:41:22 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2015/04/12 11:41:19 | 2951,147,520 | -HS- | M] () -- C:\hiberfil.sys
[2015/04/12 11:17:00 | 000,001,054 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2015/04/12 11:15:38 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Cindy\Desktop\OTL.exe
[2015/04/12 10:50:00 | 000,001,002 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2015/04/02 21:32:42 | 000,498,868 | ---- | M] (C_XX) -- C:\Users\Cindy\Desktop\SEAF.exe
[2015/03/24 20:15:42 | 000,000,512 | ---- | M] () -- C:\PhysicalMBR.bin
[2015/03/23 19:27:55 | 000,035,064 | ---- | M] () -- C:\Windows\System32\drivers\TrueSight.sys
[2015/03/23 17:58:28 | 000,002,032 | ---- | M] () -- C:\Users\Cindy\AppData\Local\d3d9caps.dat
[2015/03/22 22:22:08 | 016,660,056 | ---- | M] () -- C:\Users\Cindy\Desktop\RogueKiller.exe
[2015/03/22 10:13:55 | 000,000,512 | ---- | M] () -- C:\PhysicalDisk0_MBR.bin
[2015/03/21 14:06:03 | 000,216,064 | ---- | M] () -- C:\Users\Cindy\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2015/03/21 11:07:04 | 001,700,864 | ---- | M] () -- C:\Users\Cindy\Desktop\ZHPCleaner-2015.3.20.132.exe
[2015/03/21 11:02:48 | 000,001,732 | ---- | M] () -- C:\Users\Cindy\Desktop\ZHPFix.lnk
[2015/03/21 11:02:48 | 000,001,609 | ---- | M] () -- C:\Users\Cindy\Desktop\ZHPDiag.lnk
[2015/03/21 11:00:24 | 006,876,452 | ---- | M] (Nicolas Coolman ) -- C:\Users\Cindy\Desktop\ZHPDiag2-2015.3.19.31.exe
[2015/03/21 10:46:21 | 000,416,704 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2015/03/21 10:02:32 | 000,000,902 | ---- | M] () -- C:\Users\Cindy\Application Data\Microsoft\Internet Explorer\Quick Launch\Microsoft Office Outlook.lnk
[2015/03/20 20:09:16 | 017,450,080 | ---- | M] (Adlice Software ) -- C:\Users\Cindy\Desktop\setup.exe
[2015/03/20 19:16:32 | 000,000,834 | ---- | M] () -- C:\Users\Cindy\Application Data\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk
[2015/03/20 19:16:32 | 000,000,810 | ---- | M] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk
[2015/03/20 18:39:12 | 000,000,923 | ---- | M] () -- C:\Users\Cindy\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
[2015/03/20 18:39:12 | 000,000,587 | ---- | M] () -- C:\Users\Cindy\Application Data\Microsoft\Internet Explorer\Quick Launch\Search.lnk
[2015/03/20 18:28:46 | 002,171,392 | ---- | M] () -- C:\Users\Cindy\Desktop\adwcleaner_4-112_fr_430277.exe
[2015/03/19 14:48:59 | 000,000,835 | ---- | M] () -- C:\Users\Cindy\Desktop\Films.lnk
[2015/03/19 14:30:47 | 000,000,823 | ---- | M] () -- C:\Users\Public\Desktop\VLC media player.lnk
[2015/03/19 14:08:03 | 000,000,367 | ---- | M] () -- C:\Users\Cindy\Desktop\jeux.lnk
[2015/03/19 11:58:05 | 000,030,271 | ---- | M] () -- C:\Windows\wininit.ini
[2015/03/19 11:50:30 | 000,701,616 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerApp.exe
[2015/03/19 11:50:30 | 000,071,344 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerCPLApp.cpl
[2 C:\Users\Cindy\AppData\Local\*.tmp files -> C:\Users\Cindy\AppData\Local\*.tmp -> ]

[color=#E56717]========== Files Created - No Company Name ==========[/color]

[2015/03/24 20:15:42 | 000,000,512 | ---- | C] () -- C:\PhysicalMBR.bin
[2015/03/23 18:00:00 | 2951,147,520 | -HS- | C] () -- C:\hiberfil.sys
[2015/03/22 22:23:13 | 016,660,056 | ---- | C] () -- C:\Users\Cindy\Desktop\RogueKiller.exe
[2015/03/21 11:51:23 | 000,000,512 | ---- | C] () -- C:\PhysicalDisk0_MBR.bin
[2015/03/21 11:08:25 | 001,700,864 | ---- | C] () -- C:\Users\Cindy\Desktop\ZHPCleaner-2015.3.20.132.exe
[2015/03/21 11:02:48 | 000,001,732 | ---- | C] () -- C:\Users\Cindy\Desktop\ZHPFix.lnk
[2015/03/21 11:02:48 | 000,001,609 | ---- | C] () -- C:\Users\Cindy\Desktop\ZHPDiag.lnk
[2015/03/21 10:02:32 | 000,000,902 | ---- | C] () -- C:\Users\Cindy\Application Data\Microsoft\Internet Explorer\Quick Launch\Microsoft Office Outlook.lnk
[2015/03/20 20:12:33 | 000,035,064 | ---- | C] () -- C:\Windows\System32\drivers\TrueSight.sys
[2015/03/20 19:16:32 | 000,000,834 | ---- | C] () -- C:\Users\Cindy\Application Data\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk
[2015/03/20 19:16:32 | 000,000,822 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
[2015/03/20 19:16:32 | 000,000,810 | ---- | C] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk
[2015/03/20 18:33:10 | 002,171,392 | ---- | C] () -- C:\Users\Cindy\Desktop\adwcleaner_4-112_fr_430277.exe
[2015/03/19 14:30:47 | 000,000,823 | ---- | C] () -- C:\Users\Public\Desktop\VLC media player.lnk
[2015/03/19 14:08:09 | 000,000,367 | ---- | C] () -- C:\Users\Cindy\Desktop\jeux.lnk
[2015/03/19 12:32:29 | 000,000,835 | ---- | C] () -- C:\Users\Cindy\Desktop\Films.lnk
[2014/11/28 14:54:20 | 000,032,879 | ---- | C] () -- C:\ProgramData\nvModes.dat
[2014/11/28 14:54:20 | 000,032,879 | ---- | C] () -- C:\ProgramData\nvModes.001
[2014/10/28 20:59:11 | 000,019,384 | ---- | C] () -- C:\Windows\System32\drivers\SPPD.sys
[2014/09/15 09:58:57 | 000,019,840 | ---- | C] () -- C:\Windows\System32\drivers\pcwatch.sys
[2014/04/30 13:11:38 | 000,444,283 | ---- | C] () -- C:\Program Files\Common Files\WinPcapNmap.exe
[2013/12/19 01:18:01 | 000,000,171 | ---- | C] () -- C:\Users\Cindy\AppData\Roaming\WB.CFG
[2011/11/16 17:16:16 | 000,000,290 | RHS- | C] () -- C:\ProgramData\ntuser.pol
[2010/04/17 15:22:52 | 000,002,032 | ---- | C] () -- C:\Users\Cindy\AppData\Local\d3d9caps.dat
[2009/04/27 19:02:24 | 000,012,312 | ---- | C] () -- C:\Users\Cindy\AppData\Roaming\UserTile.png
[2009/03/15 23:49:18 | 000,011,390 | ---- | C] () -- C:\Users\Cindy\AppData\Roaming\wklnhst.dat
[2009/03/14 16:00:23 | 000,216,064 | ---- | C] () -- C:\Users\Cindy\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini

[color=#E56717]========== ZeroAccess Check ==========[/color]

[2006/11/02 14:51:16 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2015/02/18 04:02:58 | 011,587,584 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2009/04/11 08:28:19 | 000,614,912 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
"" = %systemroot%\system32\wbem\wbemess.dll -- [2009/04/11 08:28:25 | 000,347,648 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

< End of report >

Publicité


Signaler le contenu de ce document

Publicité