cjoint

Publicité

Cliquez pour partager vos propres fichiers

Publicité

Format du document : text/plain

Prévisualisation

ÿþOTL logfile created on: 01/09/2013 21:44:35 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Amine\Desktop
Ultimate Edition (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7600.16385)
Locale: 0000040c | Country: France | Language: FRA | Date Format: dd/MM/yyyy

3,36 Gb Total Physical Memory | 1,69 Gb Available Physical Memory | 50,13% Memory free
6,73 Gb Paging File | 4,81 Gb Available in Paging File | 71,59% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 143,00 Gb Total Space | 28,70 Gb Free Space | 20,07% Space Free | Partition Type: NTFS
Drive D: | 302,66 Gb Total Space | 134,88 Gb Free Space | 44,56% Space Free | Partition Type: NTFS
Drive F: | 100,00 Mb Total Space | 71,73 Mb Free Space | 71,73% Space Free | Partition Type: NTFS

Computer Name: AMINE-PC | User Name: Amine | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

[color=#E56717]========== Processes (SafeList) ==========[/color]

PRC - C:\Users\Amine\Desktop\OTL.exe (OldTimer Tools)
PRC - C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
PRC - C:\ProgramData\BrowserProtect\2.6.1339.144\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\BrowserProtect.exe ()
PRC - C:\Windows\System32\Macromed\Flash\FlashPlayerPlugin_11_7_700_202.exe (Adobe Systems, Inc.)
PRC - C:\Windows\System32\Macromed\Flash\FlashPlayerUpdateService.exe (Adobe Systems Incorporated)
PRC - C:\Users\Amine\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
PRC - C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe (Malwarebytes Corporation)
PRC - C:\Program Files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe (Samsung)
PRC - C:\Program Files\Samsung\Kies\KiesTrayAgent.exe (Samsung Electronics Co., Ltd.)
PRC - C:\Program Files\Samsung\Kies\Kies.exe (Samsung)
PRC - C:\Program Files\Ozeki\OzekiNG - SMS Gateway\OzekiNG.exe ()
PRC - C:\Program Files\Nokia\Nokia Suite\NokiaSuite.exe (Nokia)
PRC - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe (Nokia)
PRC - C:\Program Files\PC Connectivity Solution\Transports\NclUSBSrv.exe (Nokia)
PRC - C:\Program Files\PC Connectivity Solution\Transports\NclMSBTSrvEx.exe (Nokia)
PRC - C:\ProgramData\Internet Mobile\OnlineUpdate\ouc.exe ()
PRC - C:\Program Files\ESET\ESET Smart Security\ekrn.exe (ESET)
PRC - C:\Program Files\ESET\ESET Smart Security\egui.exe (ESET)
PRC - C:\Program Files\DivX\DivX Update\DivXUpdate.exe ()
PRC - C:\ProgramData\DatacardService\HWDeviceService.exe ()
PRC - C:\ProgramData\DatacardService\DCSHelper.exe (Huawei Technologies Co., Ltd.)
PRC - C:\Program Files\DAEMON Tools Lite\DTLite.exe (DT Soft Ltd)
PRC - C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesApp32.exe (TuneUp Software)
PRC - C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe (TuneUp Software)
PRC - C:\Program Files\Samsung\Easy Display Manager\dmhkcore.exe (Samsung Electronics Co., Ltd.)
PRC - C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe (Broadcom Corporation.)
PRC - C:\Program Files\WIDCOMM\Bluetooth Software\BTStackServer.exe (Broadcom Corporation.)
PRC - C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe (Broadcom Corporation.)
PRC - C:\Windows\explorer.exe (Microsoft Corporation)
PRC - C:\Windows\System32\taskhost.exe (Microsoft Corporation)
PRC - C:\Windows\System32\schtasks.exe (Microsoft Corporation)
PRC - C:\Windows\System32\conhost.exe (Microsoft Corporation)
PRC - C:\Windows\System32\audiodg.exe (Microsoft Corporation)


[color=#E56717]========== Modules (No Company Name) ==========[/color]

MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\Kies.Theme\6c38d4b2e6a049fd1c4deca2644893dd\Kies.Theme.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\DummyStorePlugin\614d13ff091440c9e8a6ee6593ec39e5\DummyStorePlugin.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\DevicePodcast\ef9e14a131350c35d792ab27744d86a2\DevicePodcast.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\DeviceVideo\0b134ebbb718265c468016c55147caf2\DeviceVideo.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\DevicePhoto\7accf276c62af1a83fbe4ff98556f6aa\DevicePhoto.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\DeviceMusic\fd5e93c2064833d29936c4b40e4b3898\DeviceMusic.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\VideoManager\4e163f7ef0b7537da676466ae9ce8a48\VideoManager.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\PhotoManager\e1c1dfafc48d2fccf77d2c3112275717\PhotoManager.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\Phonebook\3cd77dcae3cf0b55bd7920b4a3a2fbc0\Phonebook.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\MusicManager\bb8886cb665abb612392542cc2d430d1\MusicManager.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\BATPlugin\842c984da4d94577235e239e70879a07\BATPlugin.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\Kies.Common.MediaDB\0deb79688bf260b272367f07cddc370d\Kies.Common.MediaDB.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\Kies.Common.StoreMa#\bfb048f5ec9d50724764194d38fa77c6\Kies.Common.StoreManager.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\ASF_cSharpAPI\ab6025c00c09ef604cfe7f62ba6361bc\ASF_cSharpAPI.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\Kies.Common.AllShare\6c315c5d5b27fa4f53501c92d66c440e\Kies.Common.AllShare.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\Kies.Common.DBManag#\fbebdf84210ccb934f37b3a5af53e3b2\Kies.Common.DBManager.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\Kies.Common.CRMMana#\ccf5882e9b0f39f2718fbe9ab1235ba1\Kies.Common.CRMManager.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\Kies.Common.DeviceS#\44fdc1cb8edd959b2e5a2837a8d88cec\Kies.Common.DeviceServiceLib.FirmwareUpdate.Common.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\Kies.Common.DeviceS#\68fc3fede9f11f3e3f1cb68885f65f9f\Kies.Common.DeviceServiceLib.FirmwareUpdate.Downloader.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\Interop.DevFileServ#\ffe3c78bdd67ba114a1b3483f6294ce3\Interop.DevFileServiceLib.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\Kies.Common.DeviceS#\85f77f29a457c4866391f7243a2b2785\Kies.Common.DeviceServiceLib.FileService.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\Kies.Common.DeviceS#\9552169a87811836d3b1dc18db924af7\Kies.Common.DeviceService.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\Podcaster\6fb56dadf445d6b8c662c6d7391534be\Podcaster.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\Kies.Plugin.Content#\b6842f2c8b45d614f3dc9684df7fc7fa\Kies.Plugin.ContentsManagerLib.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\Kies.Common.DeviceS#\9e9db33686e5b3da7a222e139a791034\Kies.Common.DeviceServiceLib.FirmwareUpdate.FirmwareUpdateAgentHelper.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\Kies.Common.DeviceS#\3a4d686ff3d73f1bd9f136afd63ee1e2\Kies.Common.DeviceServiceLib.DeviceManagement.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\Interop.OGGFileInfo#\ce391dd8713fdaea3253ed5a348d1ba8\Interop.OGGFileInfoCOMLib.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\ICSharpCode.SharpZi#\eb4f1b9af134329be9174e340d5effeb\ICSharpCode.SharpZipLib.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\Interop.MP3FileInfo#\136a36200200a0b7863ef0065f18c752\Interop.MP3FileInfoCOMLib.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\Interop.P3MPINTERFA#\6ca4f8ca79452da6fd0bc565837686c6\Interop.P3MPINTERFACECTRLLib.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\Interop.PRPLAYERCOR#\d2400eeb807856245482e3ff82749269\Interop.PRPLAYERCORELib.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\Kies.Common.Multime#\eda3d0d7d05263aa049936828c47171c\Kies.Common.Multimedia.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\Kies.Common.DeviceS#\3f2495e3340ed9dc7dd940db4eb52fe3\Kies.Common.DeviceServiceLib.Interface.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\Kies.Common.DeviceS#\648d7737ab8182a6c66337bd20a4a00b\Kies.Common.DeviceServiceLib.DeviceDataService.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\DeviceHost\917b46d0c2bfdfa625a800190831da4d\DeviceHost.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\CabLib\d5d257bc1793ee49fa1b670f46bf2c03\CabLib.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\Kies.Common.Util\87b9d49ee3a0b081bbbb444ad3b14dfe\Kies.Common.Util.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\Kies.Locale\f8c8c9170f8f22457250a2dc50449946\Kies.Locale.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\Interop.DeviceSearc#\f5a9500560608c5ff6c4c7dfd2b909c9\Interop.DeviceSearchLib.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\Kies.MVVM\d691abe1b52caaa3aa4159630a119da1\Kies.MVVM.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\Kies.UI\55c152b0c34905f207b5e105ed1caabd\Kies.UI.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\GongSolutions.Wpf.D#\af714555a74b3d1eb69126719989a98e\GongSolutions.Wpf.DragDrop.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\Kies.Interface\2b87df77998a4b3f01a1a0ddc2b2d2ae\Kies.Interface.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\Kies\7c9ffd8c4e51bc61bd62e6bf62bec2d3\Kies.ni.exe ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\PresentationFramewo#\3989b4ca6cf904061992daec9e7d5644\PresentationFramework.ni.dll ()
MOD - C:\Program Files\Mozilla Firefox\mozjs.dll ()
MOD - C:\ProgramData\BrowserProtect\2.6.1339.144\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\BrowserProtect.exe ()
MOD - C:\ProgramData\BrowserProtect\2.6.1339.144\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\BrowserProtect.dll ()
MOD - C:\Windows\System32\Macromed\Flash\NPSWF32_11_7_700_202.dll ()
MOD - C:\Users\Amine\AppData\Roaming\Dropbox\bin\libcef.dll ()
MOD - C:\Users\Amine\AppData\Roaming\Dropbox\bin\wxmsw28uh_vc.dll ()
MOD - C:\Program Files\Nokia\Nokia Suite\phonon4.dll ()
MOD - C:\Program Files\Nokia\Nokia Suite\QtXmlPatterns4.dll ()
MOD - C:\Program Files\Nokia\Nokia Suite\QtXml4.dll ()
MOD - C:\Program Files\Nokia\Nokia Suite\QtWebKit4.dll ()
MOD - C:\Program Files\Nokia\Nokia Suite\QtSql4.dll ()
MOD - C:\Program Files\Nokia\Nokia Suite\QtScript4.dll ()
MOD - C:\Program Files\Nokia\Nokia Suite\QtOpenGL4.dll ()
MOD - C:\Program Files\Nokia\Nokia Suite\QtGui4.dll ()
MOD - C:\Program Files\Nokia\Nokia Suite\QtNetwork4.dll ()
MOD - C:\Program Files\Nokia\Nokia Suite\QtMultimediaKit1.dll ()
MOD - C:\Program Files\Nokia\Nokia Suite\QtDeclarative4.dll ()
MOD - C:\Program Files\Nokia\Nokia Suite\QtCore4.dll ()
MOD - C:\Program Files\Nokia\Nokia Suite\sqldrivers\qsqlite4.dll ()
MOD - C:\Program Files\Nokia\Nokia Suite\Imageformats\qjpeg4.dll ()
MOD - C:\Program Files\Nokia\Nokia Suite\Imageformats\qico4.dll ()
MOD - C:\Program Files\Nokia\Nokia Suite\Imageformats\qgif4.dll ()
MOD - C:\Program Files\Nokia\Nokia Suite\NService.dll ()
MOD - C:\Program Files\Nokia\Nokia Suite\CommonUpdateChecker.dll ()
MOD - C:\Program Files\Nokia\Nokia Suite\ssoengine.dll ()
MOD - C:\Program Files\Nokia\Nokia Suite\securestorage.dll ()
MOD - C:\Program Files\Nokia\Nokia Suite\mediaservice\dsengine.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Runtime.Remo#\dc1f0dbf1d3ba856eccec90b62b55d79\System.Runtime.Remoting.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\System.ServiceProce#\6e7f1bdc845816dfc797f8002b76b5e8\System.ServiceProcess.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xaml\035910922f160d304fb834aae41f45a6\System.Xaml.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\PresentationCore\3963e9ce8d44f50e8367e92a8e3e42e6\PresentationCore.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\WindowsBase\d17606e813f01376bd0def23726ecc62\WindowsBase.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xml\e997d0200c25f7db6bd32313d50b729d\System.Xml.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Configuration\ac18c2dcd06bd2a0589bac94ccae5716\System.Configuration.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Core\713647b987b140a17e3c4ffe4c721f85\System.Core.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\System\964da027ebca3b263a05cadb8eaa20a3\System.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v4.0.30319_32\mscorlib\246f1a5abb686b9dcdf22d3505b08cea\mscorlib.ni.dll ()
MOD - C:\Program Files\DivX\DivX Update\DivXUpdateCheck.dll ()
MOD - C:\Program Files\DivX\DivX Update\DivXUpdate.exe ()
MOD - C:\Program Files\Samsung\Easy Display Manager\HookDllPS2.dll ()


[color=#E56717]========== Services (SafeList) ==========[/color]

SRV - (OzekiNG) -- C:/Program Files/Ozeki/OzekiNG File not found
SRV - (astcc) -- C:\Windows\system32\AstSrv.exe File not found
SRV - (MozillaMaintenance) -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe (Mozilla Foundation)
SRV - (BrowserProtect) -- C:\ProgramData\BrowserProtect\2.6.1339.144\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\BrowserProtect.exe ()
SRV - (AdobeFlashPlayerUpdateSvc) -- C:\Windows\System32\Macromed\Flash\FlashPlayerUpdateService.exe (Adobe Systems Incorporated)
SRV - (MBAMService) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe (Malwarebytes Corporation)
SRV - (MBAMScheduler) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe (Malwarebytes Corporation)
SRV - (ServiceLayer) -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe (Nokia)
SRV - (Internet Mobile. RunOuc) -- C:\Program Files\Internet Mobile\UpdateDog\ouc.exe ()
SRV - (ekrn) -- C:\Program Files\ESET\ESET Smart Security\ekrn.exe (ESET)
SRV - (HWDeviceService.exe) -- C:\ProgramData\DatacardService\HWDeviceService.exe ()
SRV - (TuneUp.Defrag) -- C:\Program Files\TuneUp Utilities 2010\TuneUpDefragService.exe (TuneUp Software)
SRV - (TuneUp.UtilitiesSvc) -- C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe (TuneUp Software)
SRV - (UxTuneUp) -- C:\Windows\System32\uxtuneup.dll (TuneUp Software)
SRV - (btwdins) -- C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe (Broadcom Corporation.)
SRV - (SwitchBoard) -- C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe (Adobe Systems Incorporated)
SRV - (SensrSvc) -- C:\Windows\System32\sensrsvc.dll (Microsoft Corporation)
SRV - (PeerDistSvc) -- C:\Windows\System32\PeerDistSvc.dll (Microsoft Corporation)
SRV - (WinDefend) -- C:\Program Files\Windows Defender\MpSvc.dll (Microsoft Corporation)


[color=#E56717]========== Driver Services (SafeList) ==========[/color]

DRV - (FsUsbExDisk) -- C:\Windows\system32\FsUsbExDisk.SYS File not found
DRV - (ewusbnet) -- system32\DRIVERS\ewusbnet.sys File not found
DRV - (dgderdrv) -- System32\drivers\dgderdrv.sys File not found
DRV - (ASPI32) -- File not found
DRV - (ssudmdm) -- C:\Windows\System32\drivers\ssudmdm.sys (DEVGURU Co., LTD.(www.devguru.co.kr))
DRV - (dg_ssudbus) -- C:\Windows\System32\drivers\ssudbus.sys (DEVGURU Co., LTD.(www.devguru.co.kr))
DRV - (MBAMProtector) -- C:\Windows\System32\drivers\mbam.sys (Malwarebytes Corporation)
DRV - (pccsmcfd) -- C:\Windows\System32\drivers\pccsmcfd.sys (Nokia)
DRV - (USBTINSP) -- C:\Windows\System32\drivers\tinspusb.sys (Texas Instruments)
DRV - (epfw) -- C:\Windows\System32\drivers\epfw.sys (ESET)
DRV - (eamonm) -- C:\Windows\System32\drivers\eamonm.sys (ESET)
DRV - (ehdrv) -- C:\Windows\System32\drivers\ehdrv.sys (ESET)
DRV - (epfwwfp) -- C:\Windows\System32\drivers\epfwwfp.sys (ESET)
DRV - (EpfwLWF) -- C:\Windows\System32\drivers\EpfwLWF.sys (ESET)
DRV - (ewusbmbb) -- C:\Windows\System32\drivers\ewusbwwan.sys (Huawei Technologies Co., Ltd.)
DRV - (hwdatacard) -- C:\Windows\System32\drivers\ewusbmdm.sys (Huawei Technologies Co., Ltd.)
DRV - (ew_hwusbdev) -- C:\Windows\System32\drivers\ew_hwusbdev.sys (Huawei Technologies Co., Ltd.)
DRV - (huawei_cdcacm) -- C:\Windows\System32\drivers\ew_jucdcacm.sys (Huawei Technologies Co., Ltd.)
DRV - (huawei_enumerator) -- C:\Windows\System32\drivers\ew_jubusenum.sys (Huawei Technologies Co., Ltd.)
DRV - (nmwcdc) -- C:\Windows\System32\drivers\ccdcmbo.sys (Nokia)
DRV - (nmwcd) -- C:\Windows\System32\drivers\ccdcmb.sys (Nokia)
DRV - (UsbserFilt) -- C:\Windows\System32\drivers\usbser_lowerfltj.sys (Nokia)
DRV - (upperdev) -- C:\Windows\System32\drivers\usbser_lowerflt.sys (Nokia)
DRV - (dtsoftbus01) -- C:\Windows\System32\drivers\dtsoftbus01.sys (DT Soft Ltd)
DRV - (nvlddmkm) -- C:\Windows\System32\drivers\nvlddmkm.sys (NVIDIA Corporation)
DRV - (Impcd) -- C:\Windows\System32\drivers\Impcd.sys (Intel Corporation)
DRV - (NVHDA) -- C:\Windows\System32\drivers\nvhda32v.sys (NVIDIA Corporation)
DRV - (ssm_mdm) -- C:\Windows\System32\drivers\ssm_mdm.sys (MCCI Corporation)
DRV - (ssm_bus) -- C:\Windows\System32\drivers\ssm_bus.sys (MCCI Corporation)
DRV - (ssm_mdfl) -- C:\Windows\System32\drivers\ssm_mdfl.sys (MCCI Corporation)
DRV - (TuneUpUtilitiesDrv) -- C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesDriver32.sys (TuneUp Software)
DRV - (yukonw7) -- C:\Windows\System32\drivers\yk62x86.sys ()
DRV - (qcusbser) -- C:\Windows\System32\drivers\qcusbser.sys (TCT International Mobile Ltd)
DRV - (vpcvmm) -- C:\Windows\System32\drivers\vpcvmm.sys (Microsoft Corporation)
DRV - (vpcbus) -- C:\Windows\System32\drivers\vpchbus.sys (Microsoft Corporation)
DRV - (vpcusb) -- C:\Windows\System32\drivers\vpcusb.sys (Microsoft Corporation)
DRV - (vpcnfltr) -- C:\Windows\System32\drivers\vpcnfltr.sys (Microsoft Corporation)
DRV - (vmbus) -- C:\Windows\System32\drivers\vmbus.sys (Microsoft Corporation)
DRV - (storflt) -- C:\Windows\System32\drivers\vmstorfl.sys (Microsoft Corporation)
DRV - (storvsc) -- C:\Windows\System32\drivers\storvsc.sys (Microsoft Corporation)
DRV - (USB_RNDIS) -- C:\Windows\System32\drivers\usb8023.sys (Microsoft Corporation)
DRV - (vwifimp) -- C:\Windows\System32\drivers\vwifimp.sys (Microsoft Corporation)
DRV - (WinUsb) -- C:\Windows\System32\drivers\winusb.sys (Microsoft Corporation)
DRV - (s3cap) -- C:\Windows\System32\drivers\vms3cap.sys (Microsoft Corporation)
DRV - (VMBusHID) -- C:\Windows\System32\drivers\VMBusHID.sys (Microsoft Corporation)
DRV - (KMWDFILTERx86) -- C:\Windows\System32\drivers\KMWDFILTER.sys (Windows (R) Codename Longhorn DDK provider)
DRV - (massfilter) -- C:\Windows\System32\drivers\massfilter.sys (ZTE Incorporated)
DRV - (ZTEusbser6k) -- C:\Windows\System32\drivers\ZTEusbser6k.sys (ZTE Incorporated)
DRV - (ZTEusbnmea) -- C:\Windows\System32\drivers\ZTEusbnmea.sys (ZTE Incorporated)
DRV - (ZTEusbmdm6k) -- C:\Windows\System32\drivers\ZTEusbmdm6k.sys (ZTE Incorporated)
DRV - (RsFx0103) -- C:\Windows\System32\drivers\RsFx0103.sys (Microsoft Corporation)
DRV - (epfwwfpr) -- C:\Windows\System32\drivers\epfwwfpr.sys (ESET)
DRV - (eamon) -- C:\Windows\System32\drivers\eamon.sys (ESET)


[color=#E56717]========== Standard Registry (SafeList) ==========[/color]


[color=#E56717]========== Internet Explorer ==========[/color]

IE - HKLM\..\URLSearchHook: {05eeb91a-aef7-4f8a-978f-fb83e7b03f8e} - C:\Program Files\uTorrentBar_FR\prxtbuTor.dll (Conduit Ltd.)
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKLM\..\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}: "URL" = http://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT2851639

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,bProtector Start Page = http://search.babylon.com/?affID=119776&tt=070313_9111pl&babsrc=HP_ss_bad2g&mntrId=16c92729000000000000001bb1a293e1
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page =
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://fr.msn.com/?ocid=iehp
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = fr
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 81 45 3C 44 CE 31 CC 01 [binary data]
IE - HKCU\..\URLSearchHook: {05eeb91a-aef7-4f8a-978f-fb83e7b03f8e} - C:\Program Files\uTorrentBar_FR\prxtbuTor.dll (Conduit Ltd.)
IE - HKCU\..\SearchScopes,bProtectorDefaultScope = {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}
IE - HKCU\..\SearchScopes,DefaultScope = {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC
IE - HKCU\..\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}: "URL" = http://search.babylon.com/?q={searchTerms}&affID=119776&tt=070313_9111pl&babsrc=SP_ss_din2g&mntrId=16c92729000000000000001bb1a293e1
IE - HKCU\..\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}: "URL" = http://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT2851639
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local

[color=#E56717]========== FireFox ==========[/color]

FF - prefs.js..browser.search.useDBForOrder: "false"
FF - prefs.js..browser.startup.homepage: "about:home"
FF - prefs.js..extensions.enabledAddons: googledictionary%40toptip.ca:6.3.1
FF - prefs.js..extensions.enabledAddons: %7Be4a8a97b-f2ed-450b-b12d-ee082ba24781%7D:1.11
FF - prefs.js..extensions.enabledAddons: %7Bb9db16a4-6edc-47ec-a1f4-b86292ed211d%7D:4.9.21
FF - prefs.js..extensions.enabledAddons: %7B19503e42-ca3c-4c27-b1e2-9cdb2170ee34%7D:1.5.5.6
FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:23.0.1
FF - prefs.js..extensions.enabledItems: {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}:1.3.6
FF - prefs.js..extensions.enabledItems: bkmrksync@nokia.com:1.0.0.736
FF - prefs.js..extensions.enabledItems: {b9db16a4-6edc-47ec-a1f4-b86292ed211d}:4.8.6
FF - prefs.js..extensions.enabledItems: moveplayer@movenetworks.com:7
FF - prefs.js..extensions.enabledItems: {3A9F26B5-7451-4922-9E2F-CD83E7F454EF}:1.5
FF - prefs.js..extensions.enabledItems: zigboom@ymail.com:1.3.1
FF - prefs.js..extensions.enabledItems: {5b175400-2368-11de-8c30-0800200c9a66}:1.9


FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32_11_7_700_202.dll ()
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Browser Plugin,version=1.0.0: C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0: C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF - HKLM\Software\MozillaPlugins\@docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf: File not found
FF - HKLM\Software\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf: C:\Program Files\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll (Foxit Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.7.2: C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.7.2: C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\5.1.20513.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=14.0.8117.0416: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@movenetworks.com/Quantum Media Player: C:\Users\Amine\AppData\Roaming\Move Networks\plugins\npqmp071700000016.dll (Move Networks)
FF - HKLM\Software\MozillaPlugins\@nokia.com/EnablerPlugin: C:\Program Files\Nokia\Nokia Suite\npNokiaSuiteEnabler.dll ( )
FF - HKLM\Software\MozillaPlugins\@veetle.com/veetleCorePlugin,version=0.9.18: C:\Program Files\Veetle\plugins\npVeetle.dll (Veetle Inc)
FF - HKLM\Software\MozillaPlugins\@veetle.com/veetlePlayerPlugin,version=0.9.18: C:\Program Files\Veetle\Player\npvlc.dll (Veetle Inc)
FF - HKCU\Software\MozillaPlugins\@docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf: File not found
FF - HKCU\Software\MozillaPlugins\@movenetworks.com/Quantum Media Player: C:\Users\Amine\AppData\Roaming\Move Networks\plugins\npqmp071700000016.dll (Move Networks)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Users\Amine\AppData\Local\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Users\Amine\AppData\Local\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{23fcfd51-4958-4f00-80a3-ae97e717ed8b}: C:\Program Files\DivX\DivX Plus Web Player\firefox\DivXHTML5 [2011/07/27 22:56:28 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\smartwebprinting@hp.com: C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2012/02/05 21:11:35 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 23.0.1\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2013/05/25 11:50:14 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 23.0.1\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2013/03/08 14:10:47 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird [2012/07/15 11:26:34 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\moveplayer@movenetworks.com: C:\Users\Amine\AppData\Roaming\Move Networks [2011/02/20 01:17:46 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\smartwebprinting@hp.com: C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2012/02/05 21:11:35 | 000,000,000 | ---D | M]

[2011/01/22 19:05:55 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Amine\AppData\Roaming\mozilla\Extensions
[2013/08/28 12:21:05 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Amine\AppData\Roaming\mozilla\Firefox\Profiles\wiazk9ag.default\extensions
[2012/09/10 10:18:46 | 000,000,000 | ---D | M] (8 Ultimo) -- C:\Users\Amine\AppData\Roaming\mozilla\Firefox\Profiles\wiazk9ag.default\extensions\{2b6788a0-0ccd-11e1-be50-0800200c9a66}
[2013/08/27 12:26:35 | 000,000,000 | ---D | M] (DownloadHelper) -- C:\Users\Amine\AppData\Roaming\mozilla\Firefox\Profiles\wiazk9ag.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}
[2013/02/05 17:55:03 | 000,000,000 | ---D | M] (LavaFox V2-Green) -- C:\Users\Amine\AppData\Roaming\mozilla\Firefox\Profiles\wiazk9ag.default\extensions\zigboom@ymail.com
[2012/03/23 18:25:01 | 000,064,779 | ---- | M] () (No name found) -- C:\Users\Amine\AppData\Roaming\mozilla\firefox\profiles\wiazk9ag.default\extensions\fbchathistory@firechm.com.xpi
[2013/05/22 17:49:13 | 000,052,486 | ---- | M] () (No name found) -- C:\Users\Amine\AppData\Roaming\mozilla\firefox\profiles\wiazk9ag.default\extensions\googledictionary@toptip.ca.xpi
[2013/08/08 21:20:58 | 000,249,988 | ---- | M] () (No name found) -- C:\Users\Amine\AppData\Roaming\mozilla\firefox\profiles\wiazk9ag.default\extensions\gophoto@gophoto.it.xpi
[2013/03/10 16:01:58 | 000,213,444 | ---- | M] () (No name found) -- C:\Users\Amine\AppData\Roaming\mozilla\firefox\profiles\wiazk9ag.default\extensions\torntv@torntv.com.xpi
[2013/08/28 12:21:05 | 000,352,430 | ---- | M] () (No name found) -- C:\Users\Amine\AppData\Roaming\mozilla\firefox\profiles\wiazk9ag.default\extensions\{19503e42-ca3c-4c27-b1e2-9cdb2170ee34}.xpi
[2013/07/02 12:17:01 | 000,345,379 | ---- | M] () (No name found) -- C:\Users\Amine\AppData\Roaming\mozilla\firefox\profiles\wiazk9ag.default\extensions\{30E08C68-889E-11E0-95EF-DA7E4824019B}.xpi
[2012/06/17 21:30:46 | 000,615,298 | ---- | M] () (No name found) -- C:\Users\Amine\AppData\Roaming\mozilla\firefox\profiles\wiazk9ag.default\extensions\{624bab10-c637-11dd-ad8b-0800200c9a66}.xpi
[2013/07/31 03:33:20 | 000,824,302 | ---- | M] () (No name found) -- C:\Users\Amine\AppData\Roaming\mozilla\firefox\profiles\wiazk9ag.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
[2013/08/03 19:30:53 | 000,275,449 | ---- | M] () (No name found) -- C:\Users\Amine\AppData\Roaming\mozilla\firefox\profiles\wiazk9ag.default\extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}.xpi
[2012/05/19 18:59:09 | 000,719,317 | ---- | M] () (No name found) -- C:\Users\Amine\AppData\Roaming\mozilla\firefox\profiles\wiazk9ag.default\extensions\{f6eea420-c6c3-11dd-ad8b-0800200c9a66}.xpi
[2013/05/01 22:52:08 | 000,006,530 | ---- | M] () -- C:\Users\Amine\AppData\Roaming\mozilla\firefox\profiles\wiazk9ag.default\searchplugins\babylon.xml
[2013/05/01 22:52:08 | 000,006,530 | ---- | M] () -- C:\Users\Amine\AppData\Roaming\mozilla\firefox\profiles\wiazk9ag.default\searchplugins\BrowserProtect.xml
[2013/03/10 16:03:26 | 000,001,294 | ---- | M] () -- C:\Users\Amine\AppData\Roaming\mozilla\firefox\profiles\wiazk9ag.default\searchplugins\delta.xml
[2012/04/15 14:56:26 | 000,001,672 | ---- | M] () -- C:\Users\Amine\AppData\Roaming\mozilla\firefox\profiles\wiazk9ag.default\searchplugins\wiktionary-en.xml
[2013/05/25 11:50:14 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2013/03/08 14:10:46 | 000,000,000 | ---D | M] (Skype extension) -- C:\Program Files\Mozilla Firefox\extensions\{AB2CE124-6272-4b12-94A9-7303C7397BD1}
[2013/05/25 11:50:14 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\browser\extensions
[2013/08/21 09:27:58 | 000,000,000 | ---D | M] (Default) -- C:\Program Files\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
[2013/03/10 16:02:58 | 000,006,527 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\babylon.xml

[color=#E56717]========== Chrome ==========[/color]

CHR - default_search_provider: Babylon (Enabled)
CHR - default_search_provider: search_url = http://search.babylon.com/?q={searchTerms}&affID=119776&tt=070313_9111pl&babsrc=SP_ss_bad2g&mntrId=16c92729000000000000001bb1a293e1
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&q={searchTerms}&{google:cursorPosition}sugkey={google:suggestAPIKeyParameter}
CHR - homepage: http://search.babylon.com/?affID=119776&tt=070313_9111pl&babsrc=HP_ss_bad2g&mntrId=16c92729000000000000001bb1a293e1
CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Users\Amine\AppData\Local\Google\Chrome\Application\28.0.1500.72\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Users\Amine\AppData\Local\Google\Chrome\Application\28.0.1500.72\pdf.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Users\Amine\AppData\Local\Google\Chrome\Application\28.0.1500.72\gcswf32.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Windows\system32\Macromed\Flash\NPSWF32.dll
CHR - plugin: Adobe Acrobat (Enabled) = C:\Program Files\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll
CHR - plugin: Java Deployment Toolkit 6.0.150.3 (Enabled) = C:\Program Files\Java\jre6\bin\new_plugin\npdeploytk.dll
CHR - plugin: Java(TM) Platform SE 6 U15 (Enabled) = C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll
CHR - plugin: Microsoft Office 2003 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\NPOFFICE.DLL
CHR - plugin: DivX VOD Helper Plug-in (Enabled) = C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll
CHR - plugin: DivX Web Player (Enabled) = C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll
CHR - plugin: Veetle TV Player (Enabled) = C:\Program Files\Veetle\Player\npvlc.dll
CHR - plugin: Veetle TV Core (Enabled) = C:\Program Files\Veetle\plugins\npVeetle.dll
CHR - plugin: Windows Live\u00AE Photo Gallery (Enabled) = C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll
CHR - plugin: Google Update (Enabled) = C:\Users\Amine\AppData\Local\Google\Update\1.3.21.99\npGoogleUpdate3.dll
CHR - plugin: Move Streaming Media Player (Enabled) = C:\Users\Amine\AppData\Roaming\Move Networks\plugins\npqmp071700000016.dll
CHR - plugin: Silverlight Plug-In (Enabled) = c:\Program Files\Microsoft Silverlight\3.0.40818.0\npctrl.dll
CHR - plugin: Default Plug-in (Enabled) = default_plugin
CHR - Extension: YouTube = C:\Users\Amine\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\
CHR - Extension: Recherche Google = C:\Users\Amine\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\
CHR - Extension: Delta Toolbar = C:\Users\Amine\AppData\Local\Google\Chrome\User Data\Default\Extensions\eooncjejnppfjjklapaamhcdmjbilmde\1.3_0\
CHR - Extension: Torntv = C:\Users\Amine\AppData\Local\Google\Chrome\User Data\Default\Extensions\jbpkiefagocgkmemidfngdkamloieekf\1.1_0\
CHR - Extension: \u003Cvideo\u003E HTML5 DivX Plus Web Player = C:\Users\Amine\AppData\Local\Google\Chrome\User Data\Default\Extensions\nneajnkjbffgblleaoojgaacokifdkhm\2.1.2.126_0\
CHR - Extension: GoPhoto.it = C:\Users\Amine\AppData\Local\Google\Chrome\User Data\Default\Extensions\pfmopbbadnfoelckkcmjjeaaegjpjjbk\1.6_0\
CHR - Extension: Gmail = C:\Users\Amine\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1\

O1 HOSTS File: ([2011/08/24 20:42:02 | 000,000,861 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O2 - BHO: (uTorrentBar_FR Toolbar) - {05eeb91a-aef7-4f8a-978f-fb83e7b03f8e} - C:\Program Files\uTorrentBar_FR\prxtbuTor.dll (Conduit Ltd.)
O2 - BHO: (DivX Plus Web Player HTML5 <video>) - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll (DivX, LLC)
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (Skype Plug-In) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O2 - BHO: (delta Helper Object) - {C1AF5FA5-852C-4C90-812E-A7F75E011D87} - C:\Program Files\Delta\delta\1.8.10.0\bh\delta.dll (Delta-search.com)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O3 - HKLM\..\Toolbar: (uTorrentBar_FR Toolbar) - {05eeb91a-aef7-4f8a-978f-fb83e7b03f8e} - C:\Program Files\uTorrentBar_FR\prxtbuTor.dll (Conduit Ltd.)
O3 - HKLM\..\Toolbar: (Delta Toolbar) - {82E1477C-B154-48D3-9891-33D83C26BCD3} - C:\Program Files\Delta\delta\1.8.10.0\deltaTlbr.dll (Delta-search.com)
O3 - HKCU\..\Toolbar\WebBrowser: (uTorrentBar_FR Toolbar) - {05EEB91A-AEF7-4F8A-978F-FB83E7B03F8E} - C:\Program Files\uTorrentBar_FR\prxtbuTor.dll (Conduit Ltd.)
O4 - HKLM..\Run: [DivXUpdate] C:\Program Files\DivX\DivX Update\DivXUpdate.exe ()
O4 - HKLM..\Run: [egui] C:\Program Files\ESET\ESET Smart Security\egui.exe (ESET)
O4 - HKLM..\Run: [KiesTrayAgent] C:\Program Files\Samsung\Kies\KiesTrayAgent.exe (Samsung Electronics Co., Ltd.)
O4 - HKLM..\Run: [NvCplDaemon] C:\Windows\System32\NvCpl.dll (NVIDIA Corporation)
O4 - HKCU..\Run: [] C:\Program Files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe (Samsung)
O4 - HKCU..\Run: [DAEMON Tools Lite] C:\Program Files\DAEMON Tools Lite\DTLite.exe (DT Soft Ltd)
O4 - HKCU..\Run: [KiesPreload] C:\Program Files\Samsung\Kies\Kies.exe (Samsung)
O4 - HKCU..\Run: [NokiaSuite.exe] C:\Program Files\Nokia\Nokia Suite\NokiaSuite.exe (Nokia)
O4 - Startup: C:\Users\Amine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk = C:\Users\Amine\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O8 - Extra context menu item: Envoyer au périphérique &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O8 - Extra context menu item: Envoyer l'&image au périphérique Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm ()
O9 - Extra Button: Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra 'Tools' menuitem : Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra Button: @C:\Program Files\WIDCOMM\Bluetooth Software\btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O9 - Extra 'Tools' menuitem : @C:\Program Files\WIDCOMM\Bluetooth Software\btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O13 - gopher Prefix: missing
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_15-windows-i586.cab (Reg Error: Value error.)
O16 - DPF: {CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_15-windows-i586.cab (Java Plug-in 1.6.0_15)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_15-windows-i586.cab (Java Plug-in 10.7.2)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{2EB0E45C-B222-46E7-887E-D5F0EC17C221}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{97C414B7-9A61-4E23-8BDA-86863F90CF53}: NameServer = 212.217.0.12 212.217.1.12
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O20 - AppInit_DLLs: (c:\programdata\browse~1\261339~1.144\{c16c1~1\browse~1.dll) - c:\ProgramData\BrowserProtect\2.6.1339.144\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\BrowserProtect.dll ()
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009/06/10 21:42:20 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O33 - MountPoints2\{099a7465-5b0b-11e0-9ebc-001bb1658657}\Shell - "" = AutoRun
O33 - MountPoints2\{099a7465-5b0b-11e0-9ebc-001bb1658657}\Shell\AutoRun\command - "" = G:\AutoRun.exe
O33 - MountPoints2\{099a7468-5b0b-11e0-9ebc-001bb1658657}\Shell - "" = AutoRun
O33 - MountPoints2\{099a7468-5b0b-11e0-9ebc-001bb1658657}\Shell\AutoRun\command - "" = G:\AutoRun.exe
O33 - MountPoints2\{39c7695a-5dd2-11e0-b4ad-001bb1658657}\Shell - "" = AutoRun
O33 - MountPoints2\{39c7695a-5dd2-11e0-b4ad-001bb1658657}\Shell\AutoRun\command - "" = G:\AutoRun.exe
O33 - MountPoints2\{3ab2f46b-2b1c-11e0-b6d0-001bb1658657}\Shell - "" = AutoRun
O33 - MountPoints2\{3ab2f46b-2b1c-11e0-b6d0-001bb1658657}\Shell\AutoRun\command - "" = G:\LaunchU3.exe -a
O33 - MountPoints2\{3e18ec07-a232-11e0-a0dd-001bb1658657}\Shell - "" = AutoRun
O33 - MountPoints2\{3e18ec07-a232-11e0-a0dd-001bb1658657}\Shell\AutoRun\command - "" = H:\AutoRun.exe
O33 - MountPoints2\{6b4b99f9-6cd7-11e0-ae04-001bb1658657}\Shell - "" = AutoRun
O33 - MountPoints2\{6b4b99f9-6cd7-11e0-ae04-001bb1658657}\Shell\AutoRun\command - "" = H:\AutoRun.exe
O33 - MountPoints2\{952521fe-63be-11e1-a348-001bb1658657}\Shell - "" = AutoRun
O33 - MountPoints2\{952521fe-63be-11e1-a348-001bb1658657}\Shell\AutoRun\command - "" = G:\AutoRun.exe
O33 - MountPoints2\{9525220d-63be-11e1-a348-001bb1658657}\Shell - "" = AutoRun
O33 - MountPoints2\{9525220d-63be-11e1-a348-001bb1658657}\Shell\AutoRun\command - "" = G:\AutoRun.exe
O33 - MountPoints2\{95825685-4900-11e1-a0e7-0024211eaa99}\Shell - "" = AutoRun
O33 - MountPoints2\{95825685-4900-11e1-a0e7-0024211eaa99}\Shell\AutoRun\command - "" = G:\AutoRun.exe
O33 - MountPoints2\{9582569b-4900-11e1-a0e7-0024211eaa99}\Shell - "" = AutoRun
O33 - MountPoints2\{9582569b-4900-11e1-a0e7-0024211eaa99}\Shell\AutoRun\command - "" = G:\AutoRun.exe
O33 - MountPoints2\{a04d3f4b-2649-11e0-ba70-806e6f6e6963}\Shell - "" = AutoRun
O33 - MountPoints2\{a04d3f4b-2649-11e0-ba70-806e6f6e6963}\Shell\AutoRun\command - "" = E:\SoftwareMedia52.exe
O33 - MountPoints2\{a691c675-4eea-11e0-b7cd-001bb1658657}\Shell - "" = AutoRun
O33 - MountPoints2\{a691c675-4eea-11e0-b7cd-001bb1658657}\Shell\AutoRun\command - "" = G:\AutoRun.exe
O33 - MountPoints2\{a691c677-4eea-11e0-b7cd-001bb1658657}\Shell - "" = AutoRun
O33 - MountPoints2\{a691c677-4eea-11e0-b7cd-001bb1658657}\Shell\AutoRun\command - "" = G:\AutoRun.exe
O33 - MountPoints2\{a691c67c-4eea-11e0-b7cd-001bb1658657}\Shell - "" = AutoRun
O33 - MountPoints2\{a691c67c-4eea-11e0-b7cd-001bb1658657}\Shell\AutoRun\command - "" = G:\AutoRun.exe
O33 - MountPoints2\{a72012fe-75a7-11e0-b3bf-001bb1658657}\Shell - "" = AutoRun
O33 - MountPoints2\{a72012fe-75a7-11e0-b3bf-001bb1658657}\Shell\AutoRun\command - "" = H:\AutoRun.exe
O33 - MountPoints2\{a7201301-75a7-11e0-b3bf-001bb1658657}\Shell - "" = AutoRun
O33 - MountPoints2\{a7201301-75a7-11e0-b3bf-001bb1658657}\Shell\AutoRun\command - "" = H:\AutoRun.exe
O33 - MountPoints2\{ab3af6f6-48ba-11e0-b373-001bb1658657}\Shell - "" = AutoRun
O33 - MountPoints2\{ab3af6f6-48ba-11e0-b373-001bb1658657}\Shell\AutoRun\command - "" = H:\AutoRun.exe
O33 - MountPoints2\{dc1031ec-2f8a-11e0-821b-002454e5f870}\Shell - "" = AutoRun
O33 - MountPoints2\{dc1031ec-2f8a-11e0-821b-002454e5f870}\Shell\AutoRun\command - "" = H:\AutoRun.exe
O33 - MountPoints2\{dc1031f2-2f8a-11e0-821b-002454e5f870}\Shell - "" = AutoRun
O33 - MountPoints2\{dc1031f2-2f8a-11e0-821b-002454e5f870}\Shell\AutoRun\command - "" = H:\AutoRun.exe
O33 - MountPoints2\{e98cb3bf-26e7-11e0-87bf-001bb1658657}\Shell - "" = AutoRun
O33 - MountPoints2\{e98cb3bf-26e7-11e0-87bf-001bb1658657}\Shell\AutoRun\command - "" = H:\setup.exe
O34 - HKLM BootExecute: (autocheck autochk /r \??\I:)
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

NetSvcs: FastUserSwitchingCompatibility - File not found
NetSvcs: Ias - C:\Windows\System32\ias.dll (Microsoft Corporation)
NetSvcs: Nla - File not found
NetSvcs: Ntmssvc - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: SRService - File not found
NetSvcs: UxTuneUp - C:\Windows\System32\uxtuneup.dll (TuneUp Software)
NetSvcs: WmdmPmSp - File not found
NetSvcs: LogonHours - File not found
NetSvcs: PCAudit - File not found
NetSvcs: helpsvc - File not found
NetSvcs: uploadmgr - File not found

MsConfig - StartUpFolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Ozeki NG service monitor.lnk - C:\Windows\Installer\{1A945D60-EB4B-43EB-AFA6-0C277772F7BE}\_CFD7AE4D183550F27DE36B.exe - ()
MsConfig - StartUpFolder: C:^Users^Amine^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^CurseClientStartup.ccip - - File not found
MsConfig - StartUpReg: [b]AdobeAAMUpdater-1.0[/b] - hkey= - key= - C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe (Adobe Systems Incorporated)
MsConfig - StartUpReg: [b]AdobeCS5ServiceManager[/b] - hkey= - key= - C:\Program Files\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe (Adobe Systems Incorporated)
MsConfig - StartUpReg: [b]APSDaemon[/b] - hkey= - key= - C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.)
MsConfig - StartUpReg: [b]autodetect[/b] - hkey= - key= - C:\Program Files\Internet Haut Débit Mobile\AutoDect.exe ()
MsConfig - StartUpReg: [b]CLMLServer[/b] - hkey= - key= - C:\Program Files\CyberLink\Power2Go\CLMLSvc.exe (CyberLink)
MsConfig - StartUpReg: [b]DAEMON Tools Lite[/b] - hkey= - key= - C:\Program Files\DAEMON Tools Lite\DTLite.exe (DT Soft Ltd)
MsConfig - StartUpReg: [b]Invisible Secrets 4[/b] - hkey= - key= - C:\Program Files\Invisible Secrets 4\invtray.exe ()
MsConfig - StartUpReg: [b]msnmsgr[/b] - hkey= - key= - C:\Program Files\Windows Live\Messenger\msnmsgr.exe (Microsoft Corporation)
MsConfig - StartUpReg: [b]NokiaSuite.exe[/b] - hkey= - key= - C:\Program Files\Nokia\Nokia Suite\NokiaSuite.exe (Nokia)
MsConfig - StartUpReg: [b]PC Suite Tray[/b] - hkey= - key= - File not found
MsConfig - StartUpReg: [b]PDVD8LanguageShortcut[/b] - hkey= - key= - File not found
MsConfig - StartUpReg: [b]RemoteControl8[/b] - hkey= - key= - File not found
MsConfig - StartUpReg: [b]SwitchBoard[/b] - hkey= - key= - C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe (Adobe Systems Incorporated)
MsConfig - StartUpReg: [b]UCam_Menu[/b] - hkey= - key= - C:\Program Files\CyberLink\YouCam\MUITransfer\MUIStartMenu.exe (CyberLink Corp.)
MsConfig - StartUpReg: [b]UpdateLBPShortCut[/b] - hkey= - key= - File not found
MsConfig - StartUpReg: [b]UpdateP2GoShortCut[/b] - hkey= - key= - C:\Program Files\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe (CyberLink Corp.)
MsConfig - StartUpReg: [b]UpdatePDRShortCut[/b] - hkey= - key= - File not found
MsConfig - StartUpReg: [b]UpdatePPShortCut[/b] - hkey= - key= - File not found
MsConfig - StartUpReg: [b]UpdatePSTShortCut[/b] - hkey= - key= - File not found
MsConfig - StartUpReg: [b]VeohPlugin[/b] - hkey= - key= - C:\Program Files\Veoh Networks\VeohWebPlayer\veohwebplayer.exe (Veoh Networks)
MsConfig - State: "startup" - 2

ActiveX: {08B0E5C0-4FCB-11CF-AAA5-00401C608500} - Java (Sun)
ActiveX: {22d6f312-b0f6-11d0-94ab-0080c74c7e95} - Microsoft Windows Media Player 12.0
ActiveX: {2C7339CF-2B09-4501-B3F3-F3508C9228ED} - %SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll
ActiveX: {3af36230-a269-11d1-b5bf-0000f8051515} - Offline Browsing Pack
ActiveX: {3C3901C5-3455-3E0A-A214-0B093A5070A6} - .NET Framework
ActiveX: {44BBA840-CC51-11CF-AAFA-00AA00B6015C} - "%ProgramFiles%\Windows Mail\WinMail.exe" OCInstallUserConfigOE
ActiveX: {44BBA855-CC51-11CF-AAFA-00AA00B6015F} - DirectDrawEx
ActiveX: {45ea75a0-a269-11d1-b5bf-0000f8051515} - Internet Explorer Help
ActiveX: {4f645220-306d-11d2-995d-00c04f98bbc9} - Microsoft Windows Script 5.6
ActiveX: {5fd399c0-a70a-11d1-9948-00c04f98bbc9} - Internet Explorer Setup Tools
ActiveX: {630b1da0-b465-11d1-9948-00c04f98bbc9} - Browsing Enhancements
ActiveX: {6BF52A52-394A-11d3-B153-00C04F79FAA6} - Microsoft Windows Media Player
ActiveX: {6fab99d0-bab8-11d1-994a-00c04f98bbc9} - MSN Site Access
ActiveX: {73FA19D0-2D75-11D2-995D-00C04F98BBC9} - Dossiers Web
ActiveX: {7790769C-0471-11d2-AF11-00C04FA35D02} - Address Book 7
ActiveX: {7C028AF8-F614-47B3-82DA-BA94E41B1089} - .NET Framework
ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4340} - regsvr32.exe /s /n /i:U shell32.dll
ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4383} - C:\Windows\System32\ie4uinit.exe -BaseSettings
ActiveX: {89B4C1CD-B018-4511-B0A1-5476DBF70820} - C:\Windows\system32\Rundll32.exe C:\Windows\system32\mscories.dll,Install
ActiveX: {9381D8F2-0288-11D0-9501-00AA00B911A5} - Dynamic HTML Data Binding
ActiveX: {A20D32D1-1878-54FE-0512-95DCF050A484} - DirectX
ActiveX: {C6BAF60B-6E91-453F-BFF9-D3789CFEFCDD} - .NET Framework
ActiveX: {C9E9A340-D1F1-11D0-821E-444553540600} - Internet Explorer Core Fonts
ActiveX: {de5aed00-a4bf-11d1-9948-00c04f98bbc9} - HTML Help
ActiveX: {E92B03AB-B707-11d2-9CBD-0000F87A369E} - Active Directory Service Interface
ActiveX: >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} - %SystemRoot%\system32\unregmp2.exe /ShowWMP
ActiveX: >{26923b43-4d38-484f-9b9e-de460746276c} - C:\Windows\System32\ie4uinit.exe -UserIconConfig
ActiveX: >{60B49E34-C7CC-11D0-8953-00A0C90347FF} - "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\iedkcs32.dll",BrandIEActiveSetup SIGNUP

Drivers32: msacm.ac3acm - C:\Windows\System32\ac3acm.acm (fccHandler)
Drivers32: msacm.divxa32 - C:\Windows\System32\divxa32.acm (Kristal StudioDFileDescription)
Drivers32: msacm.l3acm - C:\Windows\System32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.l3fhg - C:\Windows\System32\mp3fhg.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.lameacm - C:\Windows\System32\lameACM.acm (http://www.mp3dev.org/)
Drivers32: msacm.vorbis - C:\Windows\System32\vorbis.acm (HMS http://hp.vector.co.jp/authors/VA012897/)
Drivers32: MSVideo8 - C:\Windows\System32\vfwwdm32.dll (Microsoft Corporation)
Drivers32: vidc.cvid - C:\Windows\System32\iccvid.dll (Radius Inc.)
Drivers32: VIDC.DIV3 - C:\Windows\System32\DivXc32.dll (Hacked with Joy !)
Drivers32: VIDC.DIV4 - C:\Windows\System32\DivXc32f.dll (Hacked with Joy !)
Drivers32: vidc.DIVX - C:\Windows\System32\DivX.dll (DivX, Inc.)
Drivers32: VIDC.FFDS - C:\Windows\System32\ff_vfw.dll ()
Drivers32: VIDC.HFYU - C:\Windows\System32\huffyuv.dll (Disappearing Inc.)
Drivers32: vidc.i263 - C:\Windows\System32\I263_32.drv (Intel Corporation)
Drivers32: vidc.iv41 - C:\Windows\System32\ir41_32.ax (Intel Corporation)
Drivers32: vidc.iv50 - C:\Windows\System32\ir50_32.dll (Intel Corporation)
Drivers32: VIDC.LAGS - C:\Windows\System32\lagarith.dll ( )
Drivers32: VIDC.VP60 - C:\Windows\System32\vp6vfw.dll (On2.com)
Drivers32: VIDC.VP61 - C:\Windows\System32\vp6vfw.dll (On2.com)
Drivers32: VIDC.VP62 - C:\Windows\System32\vp6vfw.dll (On2.com)
Drivers32: VIDC.VP70 - C:\Windows\System32\vp7vfw.dll (On2.com)
Drivers32: VIDC.X264 - C:\Windows\System32\x264vfw.dll ()
Drivers32: VIDC.XVID - C:\Windows\System32\xvidvfw.dll ()
Drivers32: VIDC.YV12 - C:\Windows\System32\DivX.dll (DivX, Inc.)
PhysicalDisk0 MBR saved to C:\PhysicalMBR.bin

CREATERESTOREPOINT
Restore point Set: OTL Restore Point

[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]

[2013/09/01 21:34:23 | 000,000,000 | ---D | C] -- C:\_OTL
[2013/09/01 21:31:54 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\Amine\Desktop\OTL.exe
[2013/08/31 01:12:02 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\CrashDump
[2013/08/25 12:23:41 | 000,000,000 | ---D | C] -- C:\Users\Amine\Documents\SelfMV
[2013/08/21 20:28:01 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\NativeFus_Log
[2013/08/21 20:27:58 | 000,000,000 | ---D | C] -- C:\Users\Amine\AppData\Local\Samsung
[2013/08/21 20:24:15 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MyFree Codec
[2013/08/21 20:24:14 | 000,000,000 | ---D | C] -- C:\Program Files\MyFree Codec
[2013/08/21 20:21:55 | 000,821,824 | ---- | C] (Devguru Co., Ltd.) -- C:\Windows\System32\dgderapi.dll
[2013/08/21 20:14:49 | 000,000,000 | ---D | C] -- C:\Users\Amine\AppData\Local\Downloaded Installations
[2013/08/20 07:02:14 | 000,182,680 | ---- | C] (DEVGURU Co., LTD.(www.devguru.co.kr)) -- C:\Windows\System32\drivers\ssudmdm.sys
[2013/08/20 07:02:14 | 000,084,248 | ---- | C] (DEVGURU Co., LTD.(www.devguru.co.kr)) -- C:\Windows\System32\drivers\ssudbus.sys
[2013/08/11 23:44:54 | 000,000,000 | ---D | C] -- C:\Users\Amine\AppData\Roaming\Nokia Suite
[2013/08/11 11:41:25 | 000,000,000 | ---D | C] -- C:\Users\Amine\Documents\NBGI
[2013/08/11 11:41:05 | 000,000,000 | ---D | C] -- C:\Users\Amine\AppData\Local\NBGI
[2013/08/10 13:19:06 | 000,000,000 | ---D | C] -- C:\Users\Amine\AppData\Roaming\Mumble
[2013/08/10 13:18:23 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mumble
[2013/08/10 13:18:13 | 000,000,000 | ---D | C] -- C:\Program Files\Mumble
[1 C:\Users\Amine\Desktop\*.tmp files -> C:\Users\Amine\Desktop\*.tmp -> ]

[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]

[2013/09/01 21:47:27 | 000,000,512 | ---- | M] () -- C:\PhysicalMBR.bin
[2013/09/01 21:37:08 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2013/09/01 21:37:07 | 3611,881,472 | -HS- | M] () -- C:\hiberfil.sys
[2013/09/01 21:36:34 | 000,009,584 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2013/09/01 21:36:33 | 000,009,584 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2013/09/01 21:34:25 | 000,001,026 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-4226689248-2187967897-122910319-1000Core.job
[2013/09/01 21:32:39 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Amine\Desktop\OTL.exe
[2013/09/01 21:26:51 | 000,001,078 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-4226689248-2187967897-122910319-1000UA.job
[2013/08/28 22:49:35 | 000,702,837 | ---- | M] () -- C:\Users\Amine\Desktop\Saissi en force.png
[2013/08/21 20:28:53 | 000,001,912 | ---- | M] () -- C:\Users\Public\Desktop\Samsung Kies (Lite).lnk
[2013/08/21 20:28:53 | 000,001,902 | ---- | M] () -- C:\Users\Public\Desktop\Samsung Kies.lnk
[2013/08/21 20:22:06 | 000,001,936 | ---- | M] () -- C:\Users\Amine\Application Data\Microsoft\Internet Explorer\Quick Launch\Samsung Kies (Lite).lnk
[2013/08/21 20:22:06 | 000,001,926 | ---- | M] () -- C:\Users\Amine\Application Data\Microsoft\Internet Explorer\Quick Launch\Samsung Kies.lnk
[2013/08/21 20:19:58 | 000,811,964 | ---- | M] () -- C:\Windows\System32\perfh00C.dat
[2013/08/21 20:19:58 | 000,717,498 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2013/08/21 20:19:58 | 000,173,328 | ---- | M] () -- C:\Windows\System32\perfc00C.dat
[2013/08/21 20:19:58 | 000,145,520 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2013/08/21 20:14:49 | 068,470,272 | ---- | M] () -- C:\Samsung Kies.msi
[2013/08/21 20:14:42 | 000,021,494 | ---- | M] () -- C:\0x0409.ini
[2013/08/21 20:14:42 | 000,003,584 | ---- | M] () -- C:\1033.MST
[2013/08/21 09:28:03 | 000,001,994 | ---- | M] () -- C:\Users\Amine\Application Data\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk
[2013/08/20 07:02:14 | 000,182,680 | ---- | M] (DEVGURU Co., LTD.(www.devguru.co.kr)) -- C:\Windows\System32\drivers\ssudmdm.sys
[2013/08/20 07:02:14 | 000,084,248 | ---- | M] (DEVGURU Co., LTD.(www.devguru.co.kr)) -- C:\Windows\System32\drivers\ssudbus.sys
[2013/08/15 18:54:46 | 000,046,080 | ---- | M] () -- C:\Users\Amine\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2013/08/11 11:40:15 | 000,001,002 | ---- | M] () -- C:\Users\Amine\Desktop\DARKSOULS.exe - Raccourci.lnk
[2013/08/10 15:44:33 | 000,002,392 | ---- | M] () -- C:\Users\Amine\Documents\MumbleAutomaticCertificateBackup.p12
[1 C:\Users\Amine\Desktop\*.tmp files -> C:\Users\Amine\Desktop\*.tmp -> ]

[color=#E56717]========== Files Created - No Company Name ==========[/color]

[2013/09/01 21:47:27 | 000,000,512 | ---- | C] () -- C:\PhysicalMBR.bin
[2013/08/28 22:49:35 | 000,702,837 | ---- | C] () -- C:\Users\Amine\Desktop\Saissi en force.png
[2013/08/21 20:28:53 | 000,001,912 | ---- | C] () -- C:\Users\Public\Desktop\Samsung Kies (Lite).lnk
[2013/08/21 20:28:53 | 000,001,902 | ---- | C] () -- C:\Users\Public\Desktop\Samsung Kies.lnk
[2013/08/21 20:22:06 | 000,001,936 | ---- | C] () -- C:\Users\Amine\Application Data\Microsoft\Internet Explorer\Quick Launch\Samsung Kies (Lite).lnk
[2013/08/21 20:22:06 | 000,001,926 | ---- | C] () -- C:\Users\Amine\Application Data\Microsoft\Internet Explorer\Quick Launch\Samsung Kies.lnk
[2013/08/21 20:15:20 | 068,470,272 | ---- | C] () -- C:\Samsung Kies.msi
[2013/08/21 20:15:20 | 000,021,494 | ---- | C] () -- C:\0x0409.ini
[2013/08/21 20:15:20 | 000,003,584 | ---- | C] () -- C:\1033.MST
[2013/08/11 11:40:15 | 000,001,002 | ---- | C] () -- C:\Users\Amine\Desktop\DARKSOULS.exe - Raccourci.lnk
[2013/08/10 15:44:33 | 000,002,392 | ---- | C] () -- C:\Users\Amine\Documents\MumbleAutomaticCertificateBackup.p12
[2013/04/22 12:16:20 | 010,127,538 | ---- | C] () -- C:\Users\Amine\TI-Nspire.tcc
[2013/04/22 12:09:48 | 000,002,189 | ---- | C] () -- C:\Users\Amine\AppData\Local\TempfixPerms.vbs
[2013/03/29 16:59:21 | 000,114,176 | ---- | C] () -- C:\Users\Amine\AppData\Roaming\BabMaint.exe
[2013/02/05 17:52:54 | 000,030,568 | ---- | C] () -- C:\Windows\MusiccityDownload.exe
[2013/02/05 17:52:50 | 000,974,848 | ---- | C] () -- C:\Windows\System32\cis-2.4.dll
[2013/02/05 17:52:50 | 000,081,920 | ---- | C] () -- C:\Windows\System32\issacapi_bs-2.3.dll
[2013/02/05 17:52:50 | 000,065,536 | ---- | C] () -- C:\Windows\System32\issacapi_pe-2.3.dll
[2013/02/05 17:52:50 | 000,057,344 | ---- | C] () -- C:\Windows\System32\issacapi_se-2.3.dll
[2012/02/05 20:59:28 | 000,226,786 | ---- | C] () -- C:\Windows\hpoins18.dat
[2012/02/05 20:59:28 | 000,005,355 | ---- | C] () -- C:\Windows\hpomdl18.dat
[2011/08/20 17:50:14 | 000,000,132 | ---- | C] () -- C:\Users\Amine\AppData\Roaming\Adobe PNG Format CS5 Prefs
[2011/06/11 19:36:44 | 000,007,601 | ---- | C] () -- C:\Users\Amine\AppData\Local\Resmon.ResmonCfg
[2011/02/24 18:32:57 | 000,075,375 | ---- | C] () -- C:\Users\Amine\mejjali.jpg
[2011/02/10 15:45:51 | 000,039,910 | ---- | C] () -- C:\ProgramData\mw2mmgr.inc
[2011/02/10 07:17:43 | 000,292,864 | ---- | C] () -- C:\Users\Amine\fbchathistory.dat
[2011/02/09 22:58:48 | 000,022,328 | ---- | C] () -- C:\Users\Amine\AppData\Roaming\PnkBstrK.sys
[2011/01/28 19:57:04 | 000,046,080 | ---- | C] () -- C:\Users\Amine\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini

[color=#E56717]========== ZeroAccess Check ==========[/color]

[2009/07/14 04:42:31 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2010/07/27 14:03:24 | 012,867,584 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2009/07/14 01:15:20 | 000,605,696 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
"" = %systemroot%\system32\wbem\wbemess.dll -- [2009/07/14 01:16:17 | 000,342,528 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

[color=#E56717]========== Custom Scans ==========[/color]

[color=#A23BEC]< %systemroot%\*. /mp /s >[/color]

[color=#A23BEC]< %systemroot%\system32\*.dll /lockedfiles >[/color]
[2009/07/14 01:15:21 | 000,462,848 | ---- | M] (Microsoft Corporation)[b] Unable to obtain MD5[/b] -- C:\Windows\system32\FirewallAPI.dll

[color=#A23BEC]< %systemroot%\system32\drivers\*.sys /lockedfiles >[/color]

[color=#A23BEC]< %systemroot%\Tasks\*.job /lockedfiles >[/color]
Invalid Environment Variable: alluserprofile
Invalid Environment Variable: alluserprofile

[color=#A23BEC]< %appdata%\*. >[/color]
[2011/02/17 23:19:39 | 000,000,000 | ---D | M] -- C:\Users\Amine\AppData\Roaming\AccurateRip
[2011/09/04 00:55:41 | 000,000,000 | ---D | M] -- C:\Users\Amine\AppData\Roaming\Adobe
[2011/08/13 18:56:18 | 000,000,000 | ---D | M] -- C:\Users\Amine\AppData\Roaming\Adobe Mini Bridge CS5
[2012/09/08 09:02:06 | 000,000,000 | ---D | M] -- C:\Users\Amine\AppData\Roaming\Apple Computer
[2012/04/16 20:33:06 | 000,000,000 | ---D | M] -- C:\Users\Amine\AppData\Roaming\Audacity
[2011/04/06 23:54:36 | 000,000,000 | ---D | M] -- C:\Users\Amine\AppData\Roaming\Autodesk
[2013/03/10 16:03:34 | 000,000,000 | ---D | M] -- C:\Users\Amine\AppData\Roaming\BabSolution
[2013/03/10 16:02:19 | 000,000,000 | ---D | M] -- C:\Users\Amine\AppData\Roaming\Babylon
[2012/05/20 17:52:30 | 000,000,000 | ---D | M] -- C:\Users\Amine\AppData\Roaming\codeblocks
[2011/02/12 15:30:37 | 000,000,000 | ---D | M] -- C:\Users\Amine\AppData\Roaming\CyberLink
[2011/01/23 14:13:09 | 000,000,000 | ---D | M] -- C:\Users\Amine\AppData\Roaming\DAEMON Tools Lite
[2013/03/10 16:03:23 | 000,000,000 | ---D | M] -- C:\Users\Amine\AppData\Roaming\Delta
[2012/11/18 22:43:52 | 000,000,000 | ---D | M] -- C:\Users\Amine\AppData\Roaming\Dev-Cpp
[2011/07/30 23:22:02 | 000,000,000 | ---D | M] -- C:\Users\Amine\AppData\Roaming\DivX
[2013/09/01 21:38:19 | 000,000,000 | ---D | M] -- C:\Users\Amine\AppData\Roaming\Dropbox
[2013/05/28 14:34:22 | 000,000,000 | ---D | M] -- C:\Users\Amine\AppData\Roaming\dvdcss
[2011/02/17 23:19:44 | 000,000,000 | ---D | M] -- C:\Users\Amine\AppData\Roaming\EAC
[2011/09/23 21:12:00 | 000,000,000 | ---D | M] -- C:\Users\Amine\AppData\Roaming\ESET
[2013/07/19 21:57:17 | 000,000,000 | ---D | M] -- C:\Users\Amine\AppData\Roaming\File Scout
[2012/06/03 13:32:52 | 000,000,000 | ---D | M] -- C:\Users\Amine\AppData\Roaming\Foxit Software
[2012/03/10 12:19:43 | 000,000,000 | ---D | M] -- C:\Users\Amine\AppData\Roaming\FreeCommander
[2013/08/06 13:50:01 | 000,000,000 | ---D | M] -- C:\Users\Amine\AppData\Roaming\FreeVideoConverter
[2012/07/03 18:45:11 | 000,000,000 | ---D | M] -- C:\Users\Amine\AppData\Roaming\Guitar Pro 6
[2012/02/05 21:22:32 | 000,000,000 | ---D | M] -- C:\Users\Amine\AppData\Roaming\HP
[2012/07/08 15:31:14 | 000,000,000 | ---D | M] -- C:\Users\Amine\AppData\Roaming\Identities
[2011/01/22 18:32:16 | 000,000,000 | ---D | M] -- C:\Users\Amine\AppData\Roaming\InstallShield
[2011/01/22 21:11:43 | 000,000,000 | ---D | M] -- C:\Users\Amine\AppData\Roaming\Macromedia
[2011/03/26 17:30:03 | 000,000,000 | ---D | M] -- C:\Users\Amine\AppData\Roaming\Malwarebytes
[2011/11/08 12:57:11 | 000,000,000 | ---D | M] -- C:\Users\Amine\AppData\Roaming\Maple
[2009/07/14 09:00:32 | 000,000,000 | ---D | M] -- C:\Users\Amine\AppData\Roaming\Media Center Programs
[2011/01/24 16:15:54 | 000,000,000 | ---D | M] -- C:\Users\Amine\AppData\Roaming\Media Player Classic
[2012/05/23 17:59:37 | 000,000,000 | --SD | M] -- C:\Users\Amine\AppData\Roaming\Microsoft
[2011/02/20 01:17:46 | 000,000,000 | ---D | M] -- C:\Users\Amine\AppData\Roaming\Move Networks
[2011/01/22 19:05:55 | 000,000,000 | ---D | M] -- C:\Users\Amine\AppData\Roaming\Mozilla
[2013/09/01 00:52:50 | 000,000,000 | ---D | M] -- C:\Users\Amine\AppData\Roaming\Mumble
[2012/02/21 21:39:30 | 000,000,000 | ---D | M] -- C:\Users\Amine\AppData\Roaming\Nokia
[2011/09/12 21:56:33 | 000,000,000 | ---D | M] -- C:\Users\Amine\AppData\Roaming\Nokia Ovi Suite
[2013/08/11 23:44:54 | 000,000,000 | ---D | M] -- C:\Users\Amine\AppData\Roaming\Nokia Suite
[2011/11/12 20:03:34 | 000,000,000 | ---D | M] -- C:\Users\Amine\AppData\Roaming\PC Suite
[2012/07/08 23:39:56 | 000,000,000 | ---D | M] -- C:\Users\Amine\AppData\Roaming\PhotoFiltre Studio X
[2011/05/30 23:52:46 | 000,000,000 | ---D | M] -- C:\Users\Amine\AppData\Roaming\Publish Providers
[2011/05/13 21:42:12 | 000,000,000 | ---D | M] -- C:\Users\Amine\AppData\Roaming\PunkBuster
[2013/03/03 16:26:14 | 000,000,000 | ---D | M] -- C:\Users\Amine\AppData\Roaming\REAPER
[2013/08/22 11:04:54 | 000,000,000 | ---D | M] -- C:\Users\Amine\AppData\Roaming\Samsung
[2013/09/01 15:35:18 | 000,000,000 | ---D | M] -- C:\Users\Amine\AppData\Roaming\Skype
[2013/09/01 15:13:00 | 000,000,000 | ---D | M] -- C:\Users\Amine\AppData\Roaming\skypePM
[2012/02/05 16:10:16 | 000,000,000 | ---D | M] -- C:\Users\Amine\AppData\Roaming\Sony
[2011/08/13 18:56:18 | 000,000,000 | ---D | M] -- C:\Users\Amine\AppData\Roaming\StageManager.BD092818F67280F4B42B04877600987F0111B594.1
[2011/02/09 16:33:10 | 000,000,000 | ---D | M] -- C:\Users\Amine\AppData\Roaming\SystemRequirementsLab
[2013/04/22 12:32:54 | 000,000,000 | ---D | M] -- C:\Users\Amine\AppData\Roaming\Texas Instruments
[2013/02/23 21:13:16 | 000,000,000 | ---D | M] -- C:\Users\Amine\AppData\Roaming\TI-Nspire
[2011/01/22 21:18:58 | 000,000,000 | ---D | M] -- C:\Users\Amine\AppData\Roaming\TuneUp Software
[2013/08/30 14:34:20 | 000,000,000 | ---D | M] -- C:\Users\Amine\AppData\Roaming\uTorrent
[2013/08/22 16:09:49 | 000,000,000 | ---D | M] -- C:\Users\Amine\AppData\Roaming\vlc
[2011/01/22 19:21:32 | 000,000,000 | ---D | M] -- C:\Users\Amine\AppData\Roaming\WinRAR
[2011/03/02 21:50:04 | 000,000,000 | ---D | M] -- C:\Users\Amine\AppData\Roaming\Xilisoft Corporation

[color=#A23BEC]< %appdata%\*.exe /s >[/color]
[2013/02/09 21:55:19 | 000,114,176 | ---- | M] () -- C:\Users\Amine\AppData\Roaming\BabMaint.exe
[2013/06/06 09:23:16 | 000,004,608 | ---- | M] () -- C:\Users\Amine\AppData\Roaming\BabSolution\Shared\BabMaint.exe
[2013/02/25 14:37:03 | 000,011,344 | ---- | M] () -- C:\Users\Amine\AppData\Roaming\BabSolution\Shared\BUSUninstall.exe
[2013/06/16 08:40:51 | 000,389,632 | ---- | M] (Babylon Ltd.) -- C:\Users\Amine\AppData\Roaming\BabSolution\Shared\GUninstaller.exe
[2013/05/25 00:47:30 | 027,776,968 | ---- | M] (Dropbox, Inc.) -- C:\Users\Amine\AppData\Roaming\Dropbox\bin\Dropbox.exe
[2013/05/25 00:48:34 | 000,229,288 | ---- | M] (Dropbox, Inc.) -- C:\Users\Amine\AppData\Roaming\Dropbox\bin\DropboxUninstaller.exe
[2013/04/04 22:41:46 | 000,913,376 | ---- | M] (Dropbox, Inc.) -- C:\Users\Amine\AppData\Roaming\Dropbox\bin\DropboxUpdateHelper.exe
[2013/05/28 13:20:14 | 000,259,584 | ---- | M] () -- C:\Users\Amine\AppData\Roaming\File Scout\filescout.exe
[2013/07/19 21:57:17 | 000,062,902 | ---- | M] () -- C:\Users\Amine\AppData\Roaming\File Scout\uninst.exe
[2011/02/20 01:17:46 | 000,143,973 | ---- | M] () -- C:\Users\Amine\AppData\Roaming\Move Networks\uninstall.exe
[2009/09/24 21:45:48 | 000,097,216 | ---- | M] () -- C:\Users\Amine\AppData\Roaming\Move Networks\ie_bin\MovePlayerUpgrade.exe
[2012/06/01 17:17:13 | 000,158,000 | ---- | M] () -- C:\Users\Amine\AppData\Roaming\Mozilla\Firefox\Profiles\wiazk9ag.default\FlashGot.exe
[2011/02/24 15:07:45 | 000,835,440 | R--- | M] () -- C:\Users\Amine\AppData\Roaming\PunkBuster\pbsetup\pbsvc.exe

[color=#A23BEC]< %systemdrive%\*. >[/color]
[2011/01/22 18:16:23 | 000,000,000 | -HSD | M] -- C:\$Recycle.Bin
[2013/06/30 10:49:41 | 000,000,000 | ---D | M] -- C:\Bioshock
[2012/11/18 18:41:40 | 000,000,000 | ---D | M] -- C:\Dev-Cpp
[2009/07/14 04:53:55 | 000,000,000 | -HSD | M] -- C:\Documents and Settings
[2012/03/02 21:13:05 | 000,000,000 | ---D | M] -- C:\Facemoi
[2010/10/16 01:21:35 | 000,000,000 | ---D | M] -- C:\Intel
[2009/07/14 02:37:05 | 000,000,000 | ---D | M] -- C:\PerfLogs
[2013/08/21 20:24:14 | 000,000,000 | ---D | M] -- C:\Program Files
[2011/01/28 13:45:40 | 000,000,000 | R--D | M] -- C:\Program Files (x86)
[2013/07/02 17:19:14 | 000,000,000 | -H-D | M] -- C:\ProgramData
[2011/01/22 18:15:52 | 000,000,000 | -HSD | M] -- C:\Recovery
[2013/09/01 21:47:52 | 000,000,000 | -HSD | M] -- C:\System Volume Information
[2011/10/16 21:05:27 | 000,000,000 | ---D | M] -- C:\UPS
[2011/01/22 18:16:03 | 000,000,000 | R--D | M] -- C:\Users
[2011/01/22 19:14:05 | 000,000,000 | ---D | M] -- C:\watcom-1.3
[2013/08/26 11:20:52 | 000,000,000 | ---D | M] -- C:\Windows
[2013/09/01 21:34:23 | 000,000,000 | ---D | M] -- C:\_OTL

[color=#A23BEC]< %systemdrive%\*.exe >[/color]

[color=#A23BEC]< %programfiles%\*. >[/color]
[2012/07/24 22:48:08 | 000,000,000 | ---D | M] -- C:\Program Files\Adobe
[2011/01/23 14:14:34 | 000,000,000 | ---D | M] -- C:\Program Files\AGEIA Technologies
[2012/09/07 22:04:08 | 000,000,000 | ---D | M] -- C:\Program Files\Apple Software Update
[2011/01/22 18:36:06 | 000,000,000 | ---D | M] -- C:\Program Files\Broadcom
[2011/12/18 14:03:08 | 000,000,000 | ---D | M] -- C:\Program Files\ChatSend Toolbar
[2011/01/22 19:42:12 | 000,000,000 | ---D | M] -- C:\Program Files\CodeBlocks
[2013/02/20 21:37:40 | 000,000,000 | ---D | M] -- C:\Program Files\Common Files
[2012/01/21 23:01:14 | 000,000,000 | ---D | M] -- C:\Program Files\Conduit
[2011/04/30 18:58:45 | 000,000,000 | ---D | M] -- C:\Program Files\CyberLink
[2011/01/23 14:09:53 | 000,000,000 | ---D | M] -- C:\Program Files\DAEMON Tools Lite
[2013/03/10 16:03:25 | 000,000,000 | ---D | M] -- C:\Program Files\Delta
[2011/01/22 19:24:47 | 000,000,000 | ---D | M] -- C:\Program Files\DIFX
[2011/07/27 22:56:28 | 000,000,000 | ---D | M] -- C:\Program Files\DivX
[2011/01/22 19:06:11 | 000,000,000 | ---D | M] -- C:\Program Files\DjVuZone
[2009/07/14 09:01:30 | 000,000,000 | ---D | M] -- C:\Program Files\DVD Maker
[2011/03/30 14:46:35 | 000,000,000 | ---D | M] -- C:\Program Files\Easy CD-DA Extractor 2010
[2012/07/15 11:23:47 | 000,000,000 | ---D | M] -- C:\Program Files\ESET
[2011/01/22 18:15:51 | 000,000,000 | -HSD | M] -- C:\Program Files\Fichiers communs
[2012/04/22 23:40:29 | 000,000,000 | ---D | M] -- C:\Program Files\Foxit Software
[2012/09/05 23:48:31 | 000,000,000 | ---D | M] -- C:\Program Files\Free Video Converter
[2012/03/10 12:19:44 | 000,000,000 | ---D | M] -- C:\Program Files\FreeCommander
[2013/03/10 16:02:01 | 000,000,000 | ---D | M] -- C:\Program Files\Gophoto.it
[2012/07/03 18:45:54 | 000,000,000 | ---D | M] -- C:\Program Files\Guitar Pro 6
[2011/02/28 14:56:30 | 000,000,000 | ---D | M] -- C:\Program Files\HDDGURU LLF Tool
[2012/02/05 21:12:04 | 000,000,000 | ---D | M] -- C:\Program Files\HP
[2011/03/03 17:00:37 | 000,000,000 | ---D | M] -- C:\Program Files\HSDPA USB MODEM
[2013/08/21 20:21:49 | 000,000,000 | -H-D | M] -- C:\Program Files\InstallShield Installation Information
[2011/01/22 18:32:31 | 000,000,000 | ---D | M] -- C:\Program Files\Intel
[2012/09/07 22:05:42 | 000,000,000 | ---D | M] -- C:\Program Files\Internet Explorer
[2011/04/15 22:36:14 | 000,000,000 | ---D | M] -- C:\Program Files\Internet Haut Débit Mobile
[2012/03/08 12:27:04 | 000,000,000 | ---D | M] -- C:\Program Files\Internet Mobile
[2011/03/15 13:54:11 | 000,000,000 | ---D | M] -- C:\Program Files\Internet Mobile+
[2013/05/15 16:47:29 | 000,000,000 | ---D | M] -- C:\Program Files\Invisible Secrets 4
[2012/09/01 12:05:28 | 000,000,000 | ---D | M] -- C:\Program Files\Java
[2011/01/22 19:08:30 | 000,000,000 | ---D | M] -- C:\Program Files\K-Lite Codec Pack
[2013/05/12 13:39:56 | 000,000,000 | ---D | M] -- C:\Program Files\Malwarebytes' Anti-Malware
[2011/01/22 19:16:10 | 000,000,000 | ---D | M] -- C:\Program Files\Maple 13
[2012/04/18 10:54:48 | 000,000,000 | ---D | M] -- C:\Program Files\MarkAny
[2011/01/22 18:35:12 | 000,000,000 | ---D | M] -- C:\Program Files\Marvell
[2011/01/22 21:43:32 | 000,000,000 | ---D | M] -- C:\Program Files\Messenger Plus! Live
[2011/01/22 21:37:40 | 000,000,000 | ---D | M] -- C:\Program Files\Microsoft
[2009/07/14 09:01:21 | 000,000,000 | ---D | M] -- C:\Program Files\Microsoft Games
[2011/07/13 15:07:02 | 000,000,000 | ---D | M] -- C:\Program Files\Microsoft Help Viewer
[2012/05/23 17:58:46 | 000,000,000 | ---D | M] -- C:\Program Files\Microsoft Office
[2011/07/13 15:07:02 | 000,000,000 | ---D | M] -- C:\Program Files\Microsoft SDKs
[2013/07/26 11:45:44 | 000,000,000 | ---D | M] -- C:\Program Files\Microsoft Silverlight
[2011/07/13 15:11:17 | 000,000,000 | ---D | M] -- C:\Program Files\Microsoft SQL Server
[2011/07/13 15:08:09 | 000,000,000 | ---D | M] -- C:\Program Files\Microsoft SQL Server Compact Edition
[2011/07/13 15:08:10 | 000,000,000 | ---D | M] -- C:\Program Files\Microsoft Synchronization Services
[2011/01/22 20:02:13 | 000,000,000 | ---D | M] -- C:\Program Files\Microsoft Visual Studio
[2011/07/13 15:13:09 | 000,000,000 | ---D | M] -- C:\Program Files\Microsoft Visual Studio 10.0
[2011/07/13 15:10:41 | 000,000,000 | ---D | M] -- C:\Program Files\Microsoft Visual Studio 9.0
[2011/01/22 20:02:22 | 000,000,000 | ---D | M] -- C:\Program Files\Microsoft Works
[2011/07/13 15:10:24 | 000,000,000 | ---D | M] -- C:\Program Files\Microsoft.NET
[2013/08/21 09:28:26 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox
[2013/08/21 12:40:34 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Maintenance Service
[2011/06/17 23:58:17 | 000,000,000 | ---D | M] -- C:\Program Files\Mp3tag
[2009/07/14 04:52:30 | 000,000,000 | ---D | M] -- C:\Program Files\MSBuild
[2012/05/23 17:57:42 | 000,000,000 | ---D | M] -- C:\Program Files\MSECache
[2013/08/10 19:31:39 | 000,000,000 | ---D | M] -- C:\Program Files\Mumble
[2013/08/21 20:24:14 | 000,000,000 | ---D | M] -- C:\Program Files\MyFree Codec
[2012/08/14 20:46:21 | 000,000,000 | ---D | M] -- C:\Program Files\Nokia
[2011/01/22 18:34:45 | 000,000,000 | ---D | M] -- C:\Program Files\NVIDIA Corporation
[2013/01/27 13:30:15 | 000,000,000 | ---D | M] -- C:\Program Files\Ozeki
[2013/04/17 20:49:06 | 000,000,000 | ---D | M] -- C:\Program Files\PC Connectivity Solution
[2012/07/08 15:31:03 | 000,000,000 | ---D | M] -- C:\Program Files\PhotoFiltre Studio X
[2012/04/02 23:01:27 | 000,000,000 | ---D | M] -- C:\Program Files\Power of Chaos
[2012/09/07 22:05:41 | 000,000,000 | ---D | M] -- C:\Program Files\QuickTime
[2013/07/02 16:22:00 | 000,000,000 | ---D | M] -- C:\Program Files\R.G. Games
[2013/04/17 20:51:05 | 000,000,000 | ---D | M] -- C:\Program Files\RAR Password Unlocker
[2011/01/22 18:33:55 | 000,000,000 | ---D | M] -- C:\Program Files\Realtek
[2013/02/15 20:11:23 | 000,000,000 | ---D | M] -- C:\Program Files\REAPER
[2009/07/14 04:52:30 | 000,000,000 | ---D | M] -- C:\Program Files\Reference Assemblies
[2012/04/18 10:56:46 | 000,000,000 | ---D | M] -- C:\Program Files\Samsung
[2011/02/05 22:59:48 | 000,000,000 | R--D | M] -- C:\Program Files\Skype
[2011/05/30 23:42:56 | 000,000,000 | ---D | M] -- C:\Program Files\Sony
[2013/03/17 12:21:52 | 000,000,000 | ---D | M] -- C:\Program Files\SWI
[2011/01/22 18:40:07 | 000,000,000 | ---D | M] -- C:\Program Files\Synaptics
[2013/06/29 11:39:55 | 000,000,000 | ---D | M] -- C:\Program Files\SystemRequirementsLab
[2011/01/22 18:34:29 | 000,000,000 | -H-D | M] -- C:\Program Files\Temp
[2013/04/22 12:08:35 | 000,000,000 | ---D | M] -- C:\Program Files\TI Education
[2013/03/10 16:01:51 | 000,000,000 | ---D | M] -- C:\Program Files\TornTV.com
[2011/06/17 17:04:29 | 000,000,000 | ---D | M] -- C:\Program Files\Toshop
[2013/04/17 20:50:48 | 000,000,000 | ---D | M] -- C:\Program Files\Tracker Software
[2011/01/22 21:24:20 | 000,000,000 | ---D | M] -- C:\Program Files\TuneUp Utilities 2010
[2011/05/13 21:41:37 | 000,000,000 | ---D | M] -- C:\Program Files\Ubisoft
[2009/07/14 04:53:23 | 000,000,000 | -H-D | M] -- C:\Program Files\Uninstall Information
[2012/01/21 23:01:36 | 000,000,000 | ---D | M] -- C:\Program Files\uTorrent
[2012/01/21 23:01:12 | 000,000,000 | ---D | M] -- C:\Program Files\uTorrentBar_FR
[2011/04/06 20:22:36 | 000,000,000 | ---D | M] -- C:\Program Files\Veetle
[2012/10/23 19:28:14 | 000,000,000 | ---D | M] -- C:\Program Files\Veoh Networks
[2011/02/26 01:01:04 | 000,000,000 | ---D | M] -- C:\Program Files\VideoLAN
[2011/01/22 18:36:59 | 000,000,000 | ---D | M] -- C:\Program Files\WIDCOMM
[2009/07/14 08:39:39 | 000,000,000 | ---D | M] -- C:\Program Files\Windows Defender
[2009/07/14 09:01:29 | 000,000,000 | ---D | M] -- C:\Program Files\Windows Journal
[2011/01/22 21:38:47 | 000,000,000 | ---D | M] -- C:\Program Files\Windows Live
[2011/01/22 21:37:16 | 000,000,000 | ---D | M] -- C:\Program Files\Windows Live SkyDrive
[2009/07/14 08:39:39 | 000,000,000 | ---D | M] -- C:\Program Files\Windows Mail
[2011/03/02 22:49:37 | 000,000,000 | ---D | M] -- C:\Program Files\Windows Media Player
[2011/01/22 18:15:51 | 000,000,000 | ---D | M] -- C:\Program Files\Windows NT
[2009/07/14 08:39:39 | 000,000,000 | ---D | M] -- C:\Program Files\Windows Photo Viewer
[2009/07/14 04:52:32 | 000,000,000 | ---D | M] -- C:\Program Files\Windows Portable Devices
[2009/07/14 08:39:39 | 000,000,000 | ---D | M] -- C:\Program Files\Windows Sidebar
[2009/08/16 15:31:41 | 000,000,000 | ---D | M] -- C:\Program Files\Windows Virtual PC
[2011/08/12 00:06:16 | 000,000,000 | ---D | M] -- C:\Program Files\WinHTTrack
[2011/01/22 19:11:43 | 000,000,000 | ---D | M] -- C:\Program Files\WinRAR
[2013/05/29 23:04:07 | 000,000,000 | ---D | M] -- C:\Program Files\World of Warcraft
[2011/04/30 08:09:18 | 000,000,000 | ---D | M] -- C:\Program Files\WowCartographe
[2013/07/16 21:06:10 | 000,000,000 | ---D | M] -- C:\Program Files\WSPingPR
[2011/03/02 21:49:38 | 000,000,000 | ---D | M] -- C:\Program Files\Xilisoft
[2011/01/22 19:14:05 | 000,000,000 | -H-D | M] -- C:\Program Files\Zero G Registry

[color=#A23BEC]< MD5 for: EXPLORER.EXE >[/color]
[2009/07/14 01:14:20 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=15BC38A7492BEFE831966ADB477CF76F -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16385_none_518afd35db100430\explorer.exe
[2009/10/31 05:45:39 | 002,614,272 | ---- | M] (Microsoft Corporation) MD5=2626FC9755BE22F805D3CFA0CE3EE727 -- C:\Windows\explorer.exe
[2009/10/31 05:45:39 | 002,614,272 | ---- | M] (Microsoft Corporation) MD5=2626FC9755BE22F805D3CFA0CE3EE727 -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16450_none_51a66d6ddafc2ed1\explorer.exe
[2009/08/16 15:32:29 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=9FF6C4C91A3711C0A3B18F87B08B518D -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20500_none_526619d4f3f142e6\explorer.exe
[2009/08/16 15:32:29 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=B95EEB0F4E5EFBF1038A35B3351CF047 -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16404_none_51e07e31dad00878\explorer.exe
[2009/10/31 06:00:51 | 002,614,272 | ---- | M] (Microsoft Corporation) MD5=C76153C7ECA00FA852BB0C193378F917 -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20563_none_52283b2af41f3691\explorer.exe

[color=#A23BEC]< MD5 for: NETLOGON.DLL >[/color]
[2009/07/14 01:16:02 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=EAA75D9000B71F10EEC04D2AE6C60E81 -- C:\Windows\System32\netlogon.dll
[2009/07/14 01:16:02 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=EAA75D9000B71F10EEC04D2AE6C60E81 -- C:\Windows\winsxs\x86_microsoft-windows-security-netlogon_31bf3856ad364e35_6.1.7600.16385_none_fd8e0d66994d7dc8\netlogon.dll

[color=#A23BEC]< MD5 for: USERINIT.EXE >[/color]
[2009/07/14 01:14:43 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=6DE80F60D7DE9CE6B8C2DDFDF79EF175 -- C:\Windows\System32\userinit.exe
[2009/07/14 01:14:43 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=6DE80F60D7DE9CE6B8C2DDFDF79EF175 -- C:\Windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.1.7600.16385_none_dbff103933038d7c\userinit.exe

[color=#A23BEC]< MD5 for: WINLOGON.EXE >[/color]
[2009/10/28 06:17:59 | 000,285,696 | ---- | M] (Microsoft Corporation) MD5=37CDB7E72EB66BA85A87CBE37E7F03FD -- C:\Windows\System32\winlogon.exe
[2009/10/28 06:17:59 | 000,285,696 | ---- | M] (Microsoft Corporation) MD5=37CDB7E72EB66BA85A87CBE37E7F03FD -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.16447_none_6fc699643622d177\winlogon.exe
[2009/10/28 05:52:08 | 000,285,696 | ---- | M] (Microsoft Corporation) MD5=3BABE6767C78FBF5FB8435FEED187F30 -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.20560_none_703394514f56f7c2\winlogon.exe
[2009/07/14 01:14:45 | 000,285,696 | ---- | M] (Microsoft Corporation) MD5=8EC6A4AB12B8F3759E21F8E3A388F2CF -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.16385_none_6f99573a36451166\winlogon.exe
[2013/04/04 13:50:32 | 000,218,184 | ---- | M] () MD5=B4C6E3889BB310CA7E974A04EC6E46AC -- C:\Program Files\Malwarebytes' Anti-Malware\Chameleon\winlogon.exe

[color=#E56717]========== Alternate Data Streams ==========[/color]

@Alternate Data Stream - 132 bytes -> C:\ProgramData\Temp:4769CB2A
@Alternate Data Stream - 128 bytes -> C:\ProgramData\Temp:88050731
@Alternate Data Stream - 116 bytes -> C:\ProgramData\Temp:1B4D9DFB

< End of report >

Publicité

Signaler le contenu de ce document

Publicité