cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 19-01-2014 04
Ran by Client (administrator) on CLIENT-48BDAEBB on 20-01-2014 13:58:31
Running from C:\Documents and Settings\Client\Bureau
Microsoft Windows XP Professionnel Service Pack 3 (X86) OS Language: French Standard
Internet Explorer Version 8
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/81/
Download link for 64-Bit Version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) ===================

(ATI Technologies Inc.) C:\WINDOWS\system32\ati2evxx.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
(ATI Technologies Inc.) C:\WINDOWS\system32\ati2evxx.exe
(Cherished Technololgy LIMITED) C:\Documents and Settings\All Users\Application Data\WPM\wprotectmanager.exe
(Agere Systems) C:\WINDOWS\system32\agrsmsvc.exe
(Apple Inc.) C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
(Kaspersky Lab ZAO) C:\Program Files\Kaspersky Lab\Kaspersky PURE 3.0\avp.exe
(Infowatch) C:\Program Files\Fichiers communs\InfoWatch\CryptoStorage\ProtectedObjectsSrv.exe
(Juniper Networks) C:\Program Files\Juniper Networks\Common Files\dsNcService.exe
(Oracle Corporation) C:\Program Files\Java\jre7\bin\jqs.exe
(Hewlett-Packard Company) C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
() C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe
(Skype Technologies S.A.) C:\Documents and Settings\All Users\Application Data\Skype\Toolbars\Skype C2C Service\c2c_service.exe
(Tlapia) C:\Program Files\sysTPL\sysTPLMonitor.exe
(TeamViewer GmbH) C:\Program Files\TeamViewer\Version8\TeamViewer_Service.exe
() C:\Program Files\V-bates\ExtensionUpdaterService.exe
(Yahoo! Inc.) C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe
(TeamViewer GmbH) C:\Program Files\TeamViewer\Version8\TeamViewer.exe
(TeamViewer GmbH) C:\Program Files\TeamViewer\Version8\tv_w32.exe
(RealNetworks, Inc.) C:\Program Files\Real\RealPlayer\Update\realsched.exe
(Kaspersky Lab ZAO) C:\Program Files\Kaspersky Lab\Kaspersky PURE 3.0\avp.exe
(Tlapia) C:\Program Files\sysTPL\sysTPL.exe
(Salaat Time - www.salaattime.com) C:\Program Files\Salaat Time\SalaatTime.exe
(Sony) C:\Program Files\Sony\Sony PC Companion\PCCompanion.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
() C:\Program Files\Sony\Sony PC Companion\PCCompanionInfo.exe
(Dropbox, Inc.) C:\Documents and Settings\Client\Application Data\Dropbox\bin\Dropbox.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google) C:\Documents and Settings\Client\Local Settings\Application Data\Google\Google Talk Plugin\googletalkplugin.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(The TeXnicCenter Team) C:\Program Files\TeXnicCenter\TeXnicCenter.exe
(Adobe Systems Incorporated) C:\Program Files\Adobe\Reader 11.0\Reader\AcroRd32.exe
(Adobe Systems Incorporated) C:\Program Files\Adobe\Reader 11.0\Reader\AcroRd32.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Tlapia) C:\Program Files\sysTPL\sysTPLService.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [TkBellExe] - C:\program files\real\realplayer\update\realsched.exe [295072 2012-12-26] (RealNetworks, Inc.)
HKLM\...\Run: [Adobe ARM] - C:\Program Files\Fichiers communs\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM\...\Run: [Search Protection] - C:\Documents and Settings\All Users\Application Data\Search Protection\SearchProtection.exe
HKLM\...\Run: [AVP] - C:\Program Files\Kaspersky Lab\Kaspersky PURE 3.0\avp.exe [356128 2013-10-16] (Kaspersky Lab ZAO)
HKLM\...\Run: [mobilegeni daemon] - C:\Program Files\Mobogenie\DaemonProcess.exe
HKLM\...\Run: [sysTPL] - C:\Program Files\sysTPL\sysTPL.exe [875288 2013-12-30] (Tlapia)
Winlogon\Notify\AtiExtEvent: C:\WINDOWS\system32\Ati2evxx.dll (ATI Technologies Inc.)
Winlogon\Notify\klogon: C:\WINDOWS\system32\klogon.dll (Kaspersky Lab ZAO)
HKCU\...\Run: [SalaatTime] - C:\Program Files\Salaat Time\SalaatTime.exe [13496320 2008-05-16] (Salaat Time - www.salaattime.com)
HKCU\...\Run: [Google Update] - C:\Documents and Settings\Client\Local Settings\Application Data\Google\Update\GoogleUpdate.exe [136176 2011-06-02] (Google Inc.)
HKCU\...\Run: [Sony PC Companion] - C:\Program Files\Sony\Sony PC Companion\PCCompanion.exe [449760 2013-10-31] (Sony)
HKCU\...\Run: [LiveSupport] - "C:\Program Files\LiveSupport\LiveSupport.exe" /noshow /log
HKCU\...\Run: [MyCuteBuddy] - "C:\Program Files\My Cute Buddy\myCuteBuddy.exe" "file:///C:/Program Files/My Cute Buddy/Content/Cute Kitty/piticho.buddy" /m /u
HKCU\...\Run: [GoogleChromeAutoLaunch_5B010F11AD73DDB276722FFEF3D69EF4] - C:\Program Files\Google\Chrome\Application\chrome.exe [866584 2014-01-11] (Google Inc.)
HKU\Default User\...\RunOnce: [nltide_2] - regsvr32 /s /n /i:U shell32
HKU\Invité\...\Run: [LightScribe Control Panel] - C:\Program Files\Fichiers communs\LightScribe\LightScribeControlPanel.exe [ 2008-01-24] (Hewlett-Packard Company)
AppInit_DLLs: C:\PROGRA~1\SearchProtect\SearchProtect\bin\SPVC32Loader.dll => File Not Found
Startup: C:\Documents and Settings\Client\Menu Démarrer\Programmes\Démarrage\Dropbox.lnk
ShortcutTarget: Dropbox.lnk -> C:\Documents and Settings\Client\Application Data\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)

==================== Internet (Whitelisted) ====================

ProxyEnable: Internet Explorer proxy is enabled.
ProxyServer: http=127.0.0.1:8877;https=127.0.0.1:8877
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://start.mysearchdial.com/?f=1&a=tele0101&cd=2XzuyEtN2Y1L1QzutDtD0F0FtDzzyDtDzyyEzz0AyDtCtBtAtN0D0Tzu0CyByEyDtN1L2XzutBtFtBtFtCyDtFtCyDzytBtN1L1CzutDzytDtCtG1T&cr=56253945&ir=
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x7C8CAD7BB5BFCA01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = fr
HKCU\Software\Microsoft\Internet Explorer\Main,Default_search_url = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKCU\Software\Microsoft\Internet Explorer\Main,Search bar = http://g.msn.fr/0SEFRFR/SAOS02
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://home.microsoft.com/access/allinone.asp
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://start.mysearchdial.com/?f=1&a=tele0101&cd=2XzuyEtN2Y1L1QzutDtD0F0FtDzzyDtDzyyEzz0AyDtCtBtAtN0D0Tzu0CyByEyDtN1L2XzutBtFtBtFtCyDtFtCyDzytBtN1L1CzutDzytDtCtG1T&cr=56253945&ir=
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKLM\Software\Microsoft\Internet Explorer\Main,Search bar = http://search.msn.com/spbasic.htm
SearchScopes: HKLM - DefaultScope {77AA745B-F4F8-45DA-9B14-61D2D95054C8} URL = http://start.mysearchdial.com/results.php?f=4&q={searchTerms}&a=tele0101&cd=2XzuyEtN2Y1L1QzutDtD0F0FtDzzyDtDzyyEzz0AyDtCtBtAtN0D0Tzu0CyByEyDtN1L2XzutBtFtBtFtCyDtFtCyDzytBtN1L1CzutDzytDtCtG1T&cr=56253945&ir=
SearchScopes: HKLM - {77AA745B-F4F8-45DA-9B14-61D2D95054C8} URL = http://start.mysearchdial.com/results.php?f=4&q={searchTerms}&a=tele0101&cd=2XzuyEtN2Y1L1QzutDtD0F0FtDzzyDtDzyyEzz0AyDtCtBtAtN0D0Tzu0CyByEyDtN1L2XzutBtFtBtFtCyDtFtCyDzytBtN1L1CzutDzytDtCtG1T&cr=56253945&ir=
SearchScopes: HKCU - DefaultScope {77AA745B-F4F8-45DA-9B14-61D2D95054C8} URL = http://start.mysearchdial.com/results.php?f=4&q={searchTerms}&a=tele0101&cd=2XzuyEtN2Y1L1QzutDtD0F0FtDzzyDtDzyyEzz0AyDtCtBtAtN0D0Tzu0CyByEyDtN1L2XzutBtFtBtFtCyDtFtCyDzytBtN1L1CzutDzytDtCtG1T&cr=56253945&ir=
SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKCU - {77AA745B-F4F8-45DA-9B14-61D2D95054C8} URL = http://start.mysearchdial.com/results.php?f=4&q={searchTerms}&a=tele0101&cd=2XzuyEtN2Y1L1QzutDtD0F0FtDzzyDtDzyyEzz0AyDtCtBtAtN0D0Tzu0CyByEyDtN1L2XzutBtFtBtFtCyDtFtCyDzytBtN1L1CzutDzytDtCtG1T&cr=56253945&ir=
BHO: Kaspersky Passsword Manager Toolbar - {215BA832-75A3-426E-A4FC-7C5B58CE6A10} - C:\Program Files\Kaspersky Lab\Kaspersky PURE 3.0\Kaspersky Password Manager\spIEBho.dll (Kaspersky Lab)
BHO: V-bates - {21EAF666-26B3-4a3c-ABD0-CA2F5A326744} - C:\Program Files\V-bates\Extension32.dll ()
BHO: RealNetworks Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Documents and Settings\All Users\Application Data\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll (RealDownloader)
BHO: Content Blocker Plugin - {5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F} - C:\Program Files\Kaspersky Lab\Kaspersky PURE 3.0\IEExt\ContentBlocker\ie_content_blocker_plugin.dll (Kaspersky Lab ZAO)
BHO: Virtual Keyboard Plugin - {73455575-E40C-433C-9784-C78DC7761455} - C:\Program Files\Kaspersky Lab\Kaspersky PURE 3.0\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll (Kaspersky Lab ZAO)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
BHO: Safe Money Plugin - {9E6D0D23-3D72-4A94-AE1F-2D167624E3D9} - C:\Program Files\Kaspersky Lab\Kaspersky PURE 3.0\IEExt\OnlineBanking\online_banking_bho.dll (Kaspersky Lab ZAO)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO: URL Advisor Plugin - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files\Kaspersky Lab\Kaspersky PURE 3.0\IEExt\UrlAdvisor\klwtbbho.dll (Kaspersky Lab ZAO)
BHO: mysearchdial Helper Object - {EF5625A3-37AB-4BDB-9875-2A3D91CD0DFD} - C:\Program Files\Mysearchdial\1.8.21.0\bh\mysearchdial.dll (MySearchDial)
Toolbar: HKLM - Kaspersky Passsword Manager Toolbar - {215BA832-75A3-426E-A4FC-7C5B58CE6A10} - C:\Program Files\Kaspersky Lab\Kaspersky PURE 3.0\Kaspersky Password Manager\spIEBho.dll (Kaspersky Lab)
Toolbar: HKLM - mysearchdial Toolbar - {3004627E-F8E9-4E8B-909D-316753CBA923} - C:\Program Files\Mysearchdial\1.8.21.0\mysearchdialTlbr.dll (MySearchDial)
Toolbar: HKCU - No Name - {00000000-0000-0000-0000-000000000000} - No File
DPF: {F27237D7-93C8-44C2-AC6E-D6057B9A918F} https://juniper.net/dana-cached/sc/JuniperSetupClient.cab
Handler: http\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler: http\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler: https\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler: https\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler: ipp\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.14.0.8117.0416.dll (Microsoft Corporation)
Handler: ms-help - {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files\Fichiers communs\Microsoft Shared\Help\hxds.dll (Microsoft Corporation)
Handler: msdaipp\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler: msdaipp\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.14.0.8117.0416.dll (Microsoft Corporation)
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Fichiers communs\Skype\Skype4COM.dll (Skype Technologies)
ShellExecuteHooks: - {AEB6717E-7E19-11d0-97EE-00C04FD91972} - No File [ ]
Tcpip\Parameters: [DhcpNameServer] 10.42.0.1

FireFox:
========
FF ProfilePath: C:\Documents and Settings\Client\Application Data\Mozilla\Firefox\Profiles\pylcm1yo.default
FF user.js: detected! => C:\Documents and Settings\Client\Application Data\Mozilla\Firefox\Profiles\pylcm1yo.default\user.js
FF NewTab: chrome://fvd.speeddial/content/fvd_about_blank.html
FF DefaultSearchEngine: Mysearchdial
FF SelectedSearchEngine: Mysearchdial
FF Homepage: hxxp://start.mysearchdial.com/?f=1&a=tele0101&cd=2XzuyEtN2Y1L1QzutDtD0F0FtDzzyDtDzyyEzz0AyDtCtBtAtN0D0Tzu0CyByEyDtN1L2XzutBtFtBtFtCyDtFtCyDzytBtN1L1CzutDzytDtCtG1T&cr=56253945&ir=
FF Keyword.URL: user_pref("keyword.URL", "");
FF Plugin: @adobe.com/FlashPlayer - C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_9_900_170.dll ()
FF Plugin: @divx.com/DivX Player Plugin,version=1.0.0 - C:\Program Files\DivX\DivX Player\npDivxPlayerPlugin.dll No File
FF Plugin: @java.com/JavaPlugin,version=10.21.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeLive,version=1.5 - C:\Program Files\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
FF Plugin: @microsoft.com/WLPG,version=14.0.8117.0416 - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF Plugin: @movenetworks.com/Quantum Media Player - C:\Documents and Settings\Client\Application Data\Move Networks\plugins\npqmp071700000016.dll (Move Networks)
FF Plugin: @real.com/nppl3260;version=16.0.0.282 - c:\program files\real\realplayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
FF Plugin: @real.com/nprndlchromebrowserrecordext;version=1.3.0 - C:\Documents and Settings\All Users\Application Data\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlchromebrowserrecordext.dll (RealNetworks, Inc.)
FF Plugin: @real.com/nprndlhtml5videoshim;version=1.3.0 - C:\Documents and Settings\All Users\Application Data\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll (RealNetworks, Inc.)
FF Plugin: @real.com/nprndlpepperflashvideoshim;version=1.3.0 - C:\Documents and Settings\All Users\Application Data\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlpepperflashvideoshim.dll (RealNetworks, Inc.)
FF Plugin: @real.com/nprpplugin;version=16.0.0.282 - c:\program files\real\realplayer\Netscape6\nprpplugin.dll (RealPlayer)
FF Plugin: @realnetworks.com/npdlplugin;version=1 - C:\Documents and Settings\All Users\Application Data\RealNetworks\RealDownloader\BrowserPlugins\npdlplugin.dll (RealDownloader)
FF Plugin: @SonyCreativeSoftware.com/Media Go,version=1.0 - C:\Program Files\Sony\Media Go\npmediago.dll (Sony Media Software and Services Inc)
FF Plugin: @tools.google.com/Google Update;version=3 - C:\Program Files\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 - C:\Program Files\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.0.8 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: Adobe Reader - C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @movenetworks.com/Quantum Media Player - C:\Documents and Settings\Client\Application Data\Move Networks\plugins\npqmp071700000016.dll (Move Networks)
FF Plugin HKCU: @Skype Limited.com/Facebook Video Calling Plugin - C:\Documents and Settings\Client\Local Settings\Application Data\Facebook\Video\Skype\npFacebookVideoCalling.dll (Skype Limited)
FF Plugin HKCU: @stonetrip.com/ShiVaWebPlayer,version=1.8.1.0 - C:\Documents and Settings\Client\Application Data\..\LocalLow\StoneTrip\WebPlayer1.8.1\npShiVa3D_1.8.1.dll (Stonetrip)
FF Plugin HKCU: @talk.google.com/GoogleTalkPlugin - C:\Documents and Settings\Client\Application Data\Mozilla\plugins\npgoogletalk.dll (Google)
FF Plugin HKCU: @talk.google.com/O1DPlugin - C:\Documents and Settings\Client\Application Data\Mozilla\plugins\npo1d.dll (Google)
FF Plugin HKCU: @talk.google.com/O3DPlugin - C:\Documents and Settings\Client\Application Data\Mozilla\plugins\npgtpo3dautoplugin.dll ()
FF Plugin HKCU: @tools.google.com/Google Update;version=3 - C:\Documents and Settings\Client\Local Settings\Application Data\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=9 - C:\Documents and Settings\Client\Local Settings\Application Data\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin ProgramFiles/Appdata: C:\Documents and Settings\Client\Application Data\mozilla\plugins\npgoogletalk.dll (Google)
FF Plugin ProgramFiles/Appdata: C:\Documents and Settings\Client\Application Data\mozilla\plugins\npgtpo3dautoplugin.dll ()
FF Plugin ProgramFiles/Appdata: C:\Documents and Settings\Client\Application Data\mozilla\plugins\npo1d.dll (Google)
FF SearchPlugin: C:\Documents and Settings\Client\Application Data\Mozilla\Firefox\Profiles\pylcm1yo.default\searchplugins\Mysearchdial.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\sweet-page.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\amazon-france.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\cnrtl-tlfi-fr.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\eBay-france.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\yahoo-france.xml
FF Extension: greatuSaVer - C:\Documents and Settings\Client\Application Data\Mozilla\Firefox\Profiles\pylcm1yo.default\Extensions\aaqbvepl@pdlsxscr.net [2014-01-05]
FF Extension: easy note - C:\Documents and Settings\Client\Application Data\Mozilla\Firefox\Profiles\pylcm1yo.default\Extensions\easynote@leon.com [2013-02-28]
FF Extension: Facebook Translate - C:\Documents and Settings\Client\Application Data\Mozilla\Firefox\Profiles\pylcm1yo.default\Extensions\facebook-translate@oliver.schloebe.de [2013-12-20]
FF Extension: mysearchdial.com - C:\Documents and Settings\Client\Application Data\Mozilla\Firefox\Profiles\pylcm1yo.default\Extensions\ffxtlbr@mysearchdial.com [2014-01-19]
FF Extension: FVD Speed Dial - New Tab Page - C:\Documents and Settings\Client\Application Data\Mozilla\Firefox\Profiles\pylcm1yo.default\Extensions\pavel.sherbakov@gmail.com [2013-11-18]
FF Extension: YoutubeAdblocker - C:\Documents and Settings\Client\Application Data\Mozilla\Firefox\Profiles\pylcm1yo.default\Extensions\vzoiiy3@oei-tm.co.uk [2014-01-05]
FF Extension: Zotero Word for Windows Integration - C:\Documents and Settings\Client\Application Data\Mozilla\Firefox\Profiles\pylcm1yo.default\Extensions\zoteroWinWordIntegration@zotero.org [2013-12-20]
FF Extension: MySearchDial NewTab - C:\Documents and Settings\Client\Application Data\Mozilla\Firefox\Profiles\pylcm1yo.default\Extensions\{ad9a41d2-9a49-4fa6-a79e-71a0785364c8} [2014-01-19]
FF Extension: FDislike - C:\Documents and Settings\Client\Application Data\Mozilla\Firefox\Profiles\pylcm1yo.default\Extensions\fbdislike@doweb.fr.xpi [2013-01-18]
FF Extension: YouTube Video and Audio Downloader - C:\Documents and Settings\Client\Application Data\Mozilla\Firefox\Profiles\pylcm1yo.default\Extensions\feca4b87-3be4-43da-a1b1-137c24220968@jetpack.xpi [2013-01-28]
FF Extension: Unfriend Finder - C:\Documents and Settings\Client\Application Data\Mozilla\Firefox\Profiles\pylcm1yo.default\Extensions\firefox@unfriendfinder.com.xpi [2013-02-27]
FF Extension: Open GMail with toolbar button - C:\Documents and Settings\Client\Application Data\Mozilla\Firefox\Profiles\pylcm1yo.default\Extensions\gmail@borsosfisoft.com.xpi [2013-02-28]
FF Extension: Smart Display - C:\Documents and Settings\Client\Application Data\Mozilla\Firefox\Profiles\pylcm1yo.default\Extensions\jid1-FCM5fDwCW5M3AQ@jetpack.xpi [2014-01-03]
FF Extension: NASA Night Launch - C:\Documents and Settings\Client\Application Data\Mozilla\Firefox\Profiles\pylcm1yo.default\Extensions\nasanightlaunch@example.com.xpi [2013-02-28]
FF Extension: Zotero - C:\Documents and Settings\Client\Application Data\Mozilla\Firefox\Profiles\pylcm1yo.default\Extensions\zotero@chnm.gmu.edu.xpi [2013-04-10]
FF Extension: Adblock Plus - C:\Documents and Settings\Client\Application Data\Mozilla\Firefox\Profiles\pylcm1yo.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2013-01-28]
FF Extension: Adblock Edge - C:\Documents and Settings\Client\Application Data\Mozilla\Firefox\Profiles\pylcm1yo.default\Extensions\{fe272bd1-5f76-4ea4-8501-a05d35d823fc}.xpi [2014-01-04]
FF Extension: Skype Click to Call - C:\Program Files\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} [2013-12-20]
FF Extension: Java Console - C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA} [2013-12-20]
FF Extension: Java Console - C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0035-ABCDEFFEDCBA} [2013-12-20]
FF Extension: Java Console - C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0037-ABCDEFFEDCBA} [2013-12-20]
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
FF Extension: Microsoft .NET Framework Assistant - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\ []
FF HKLM\...\Firefox\Extensions: [{ABDE892B-13A8-4d1b-88E6-365A6E755758}] - C:\Documents and Settings\All Users\Application Data\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext
FF Extension: No Name - C:\Documents and Settings\All Users\Application Data\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext [2011-10-21]
FF HKLM\...\Firefox\Extensions: [{97E22097-9A2F-45b1-8DAF-36AD648C7EF4}] - C:\Documents and Settings\All Users\Application Data\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext
FF Extension: No Name - C:\Documents and Settings\All Users\Application Data\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext [2011-10-21]
FF HKLM\...\Firefox\Extensions: [ntfdsaftsfdfdxx@mozilla.org] - C:\Documents and Settings\Client\Application Data\iPumper\extension_firefox.xpi
FF HKLM\...\Firefox\Extensions: [{34712C68-7391-4c47-94F3-8F88D49AD632}] - C:\Documents and Settings\All Users\Application Data\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext\
FF Extension: RealDownloader - C:\Documents and Settings\All Users\Application Data\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext\ []
FF HKLM\...\Firefox\Extensions: [url_advisor@kaspersky.com] - C:\Program Files\Kaspersky Lab\Kaspersky PURE 3.0\FFExt\url_advisor@kaspersky.com
FF Extension: Kaspersky URL Advisor - C:\Program Files\Kaspersky Lab\Kaspersky PURE 3.0\FFExt\url_advisor@kaspersky.com [2013-08-21]
FF HKLM\...\Firefox\Extensions: [virtual_keyboard@kaspersky.com] - C:\Program Files\Kaspersky Lab\Kaspersky PURE 3.0\FFExt\virtual_keyboard@kaspersky.com
FF Extension: Virtual Keyboard - C:\Program Files\Kaspersky Lab\Kaspersky PURE 3.0\FFExt\virtual_keyboard@kaspersky.com [2013-08-21]
FF HKLM\...\Firefox\Extensions: [content_blocker@kaspersky.com] - C:\Program Files\Kaspersky Lab\Kaspersky PURE 3.0\FFExt\content_blocker@kaspersky.com
FF Extension: Content Blocker - C:\Program Files\Kaspersky Lab\Kaspersky PURE 3.0\FFExt\content_blocker@kaspersky.com [2013-08-21]
FF HKLM\...\Firefox\Extensions: [anti_banner@kaspersky.com] - C:\Program Files\Kaspersky Lab\Kaspersky PURE 3.0\FFExt\anti_banner@kaspersky.com
FF Extension: Anti-Banner - C:\Program Files\Kaspersky Lab\Kaspersky PURE 3.0\FFExt\anti_banner@kaspersky.com [2013-08-21]
FF HKLM\...\Firefox\Extensions: [online_banking@kaspersky.com] - C:\Program Files\Kaspersky Lab\Kaspersky PURE 3.0\FFExt\online_banking@kaspersky.com
FF Extension: Safe Money - C:\Program Files\Kaspersky Lab\Kaspersky PURE 3.0\FFExt\online_banking@kaspersky.com [2013-08-21]
FF HKLM\...\Firefox\Extensions: [{21EAF666-26B3-4a3c-ABD0-CA2F5A326744}] - C:\Program Files\V-bates\Firefox
FF Extension: V-bates - C:\Program Files\V-bates\Firefox [2014-01-05]
FF HKLM\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird
FF HKCU\...\Firefox\Extensions: [moveplayer@movenetworks.com] - C:\Documents and Settings\Client\Application Data\Move Networks
FF Extension: Move Media Player - C:\Documents and Settings\Client\Application Data\Move Networks [2009-10-14]

Chrome:
=======
CHR HomePage: hxxp://www.google.fr/
CHR DefaultSearchURL: https://www.google.fr/?s={searchTerms}
CHR DefaultNewTabURL:
CHR Extension: (Google Translate) - C:\Documents and Settings\Client\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2014-01-08]
CHR Extension: (Documents Google) - C:\Documents and Settings\Client\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-01-05]
CHR Extension: (Google\u00A0Drive) - C:\Documents and Settings\Client\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-01-04]
CHR Extension: (SocialReviver) - C:\Documents and Settings\Client\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\bfipfkeoidmndggnnpobeenlamiclald [2014-01-08]
CHR Extension: (YouTube) - C:\Documents and Settings\Client\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-01-04]
CHR Extension: (Adblock Plus) - C:\Documents and Settings\Client\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2014-01-08]
CHR Extension: (Recherche Google) - C:\Documents and Settings\Client\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-01-05]
CHR Extension: (Zoom Photo pour Facebook) - C:\Documents and Settings\Client\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\dhapiedbmffnpkahkcjdjpikmodjipmd [2014-01-08]
CHR Extension: (News Factory) - C:\Documents and Settings\Client\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\djaoeafihpfaakkpdobmhedohgnmhpbp [2014-01-08]
CHR Extension: (Google\u00A0Agenda) - C:\Documents and Settings\Client\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\ejjicmeblgpmajnghnpcppodonldlgfn [2014-01-08]
CHR Extension: (Photo Zoom for Facebook) - C:\Documents and Settings\Client\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\elioihkkcdgakfbahdoddophfngopipi [2014-01-08]
CHR Extension: (M\u00E9t\u00E9o) - C:\Documents and Settings\Client\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\fapbbpdnlcmiolkdfjnnjhabmcndadad [2014-01-08]
CHR Extension: (AdBlock) - C:\Documents and Settings\Client\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2014-01-08]
CHR Extension: (Protection des transactions bancaires) - C:\Documents and Settings\Client\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\hakdifolhalapjijoafobooafbilfakh [2013-08-21]
CHR Extension: (Content Blocker) - C:\Documents and Settings\Client\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\hghkgaeecgjhjkannahfamoehjmkjail [2013-10-16]
CHR Extension: (RealDownloader) - C:\Documents and Settings\Client\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\idhngdhcfkoamngbedgpaokgjbnpdiji [2013-07-28]
CHR Extension: (Virtual Keyboard) - C:\Documents and Settings\Client\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\jagncdcchgajhfhijbbhecadmaiegcmh [2014-01-05]
CHR Extension: (Skype Click to Call) - C:\Documents and Settings\Client\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2014-01-05]
CHR Extension: (Google\u00A0Maps) - C:\Documents and Settings\Client\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\lneaknkopdijkpnocmklfnjbeapigfbh [2014-01-08]
CHR Extension: (Quick Note) - C:\Documents and Settings\Client\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\mijlebbfndhelmdpmllgcfadlkankhok [2014-01-08]
CHR Extension: (Google\u00A0Wallet) - C:\Documents and Settings\Client\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-21]
CHR Extension: (Mon th\u00E8me Chrome) - C:\Documents and Settings\Client\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\oehpjpccmlcalbenfhnacjeocbjdonic [2014-01-08]
CHR Extension: (TV France - Regarder T\u00E9l\u00E9vision) - C:\Documents and Settings\Client\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\pbchiajonfncphfgplcmdojihhlbffbd [2014-01-08]
CHR Extension: (MySearchDial) - C:\Documents and Settings\Client\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\pflphaooapbgpeakohlggbpidpppgdff [2014-01-14]
CHR Extension: (Gmail) - C:\Documents and Settings\Client\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-01-04]
CHR Extension: (Anti-banni\u00E8re) - C:\Documents and Settings\Client\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\pjldcfjmnllhmgjclecdnfampinooman [2014-01-08]
CHR HKLM\...\Chrome\Extension: [aaaangmfdabjilefmognkgcebjgcojek] - C:\Documents and Settings\Client\Local Settings\Application Data\APN\GoogleCRXs\aaaangmfdabjilefmognkgcebjgcojek_7.15.2.0.crx [2014-01-08]
CHR HKLM\...\Chrome\Extension: [dchlnpcodkpfdpacogkljefecpegganj] - C:\Program Files\Kaspersky Lab\Kaspersky PURE 3.0\ChromeExt\urladvisor.crx [2013-01-11]
CHR HKLM\...\Chrome\Extension: [hakdifolhalapjijoafobooafbilfakh] - C:\Program Files\Kaspersky Lab\Kaspersky PURE 3.0\ChromeExt\online_banking_chrome.crx [2013-01-11]
CHR HKLM\...\Chrome\Extension: [hghkgaeecgjhjkannahfamoehjmkjail] - C:\Program Files\Kaspersky Lab\Kaspersky PURE 3.0\ChromeExt\content_blocker_chrome.crx [2013-01-11]
CHR HKLM\...\Chrome\Extension: [idhngdhcfkoamngbedgpaokgjbnpdiji] - C:\Documents and Settings\All Users\Application Data\RealNetworks\RealDownloader\BrowserPlugins\Chrome\Ext\realdownloader.crx [2012-11-29]
CHR HKLM\...\Chrome\Extension: [jagncdcchgajhfhijbbhecadmaiegcmh] - C:\Program Files\Kaspersky Lab\Kaspersky PURE 3.0\ChromeExt\virtkbd.crx [2013-01-11]
CHR HKLM\...\Chrome\Extension: [janmfndmohbaaoocpcgfbghioojoakjg] - C:\Program Files\Fichiers communs\plugin.crx [2013-01-11]
CHR HKLM\...\Chrome\Extension: [kekfoodhbhpjhjcdecjngamojfhknooc] - C:\Documents and Settings\Client\Application Data\iPumper\extension_chrome.crx [2013-01-11]
CHR HKLM\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files\Skype\Toolbars\Skype for Chromium\skype_chrome_extension.crx [2012-10-02]
CHR HKLM\...\Chrome\Extension: [niogeckbkdcabhnapjbkeiklablhjoca] - C:\Program Files\Perion\ChromeInfoBar\ChromeInfoBar.crx [2012-10-02]
CHR HKLM\...\Chrome\Extension: [oejkcgajlodefenbbjdnaiahmbnnoole] - C:\Program Files\adawaretb\chrome-newtab-search.crx [2012-10-02]
CHR HKLM\...\Chrome\Extension: [pflphaooapbgpeakohlggbpidpppgdff] - C:\DOCUME~1\Client\LOCALS~1\APPLIC~1\mysearchdial-speeddial.crx [2014-01-14]
CHR HKLM\...\Chrome\Extension: [phegaokedjdajgnfphbnpkcfdgjbidko] - C:\Documents and Settings\All Users\Application Data\adawaretb\toolbar\chrome\toolbar.crx [2014-01-14]
CHR HKLM\...\Chrome\Extension: [pjldcfjmnllhmgjclecdnfampinooman] - C:\Program Files\Kaspersky Lab\Kaspersky PURE 3.0\ChromeExt\ab.crx [2013-01-11]
CHR HKCU\...\Chrome\Extension: [pflphaooapbgpeakohlggbpidpppgdff] - C:\DOCUME~1\Client\LOCALS~1\APPLIC~1\mysearchdial-speeddial.crx [2014-01-14]
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION

========================== Services (Whitelisted) =================

R2 Akamai; c:\program files\fichiers communs\akamai/netsession_win_8fa3539.dll [4569856 2013-07-02] (Akamai Technologies, Inc.)
R2 Apple Mobile Device; C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe [144672 2009-08-28] (Apple Inc.)
R2 AVP; C:\Program Files\Kaspersky Lab\Kaspersky PURE 3.0\avp.exe [356128 2013-10-16] (Kaspersky Lab ZAO)
R2 CSObjectsSrv; C:\Program Files\Fichiers communs\InfoWatch\CryptoStorage\ProtectedObjectsSrv.exe [819040 2012-12-21] (Infowatch)
R2 dsNcService; C:\Program Files\Juniper Networks\Common Files\dsNcService.exe [628080 2010-10-01] (Juniper Networks)
R2 JavaQuickStarterService; C:\Program Files\Java\jre7\bin\jqs.exe [181664 2013-04-04] (Oracle Corporation)
R2 LightScribeService; C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe [73728 2008-01-24] (Hewlett-Packard Company)
S3 odserv; C:\Program Files\Fichiers communs\Microsoft Shared\OFFICE12\ODSERV.EXE [440696 2011-07-20] (Microsoft Corporation)
S3 ose; C:\Program Files\Fichiers communs\Microsoft Shared\Source Engine\OSE.EXE [145184 2006-10-26] (Microsoft Corporation)
R2 RealNetworks Downloader Resolver Service; C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe [38608 2012-11-29] ()
R2 Skype C2C Service; C:\Documents and Settings\All Users\Application Data\Skype\Toolbars\Skype C2C Service\c2c_service.exe [3064000 2012-10-02] (Skype Technologies S.A.)
S3 Sony PC Companion; C:\Program Files\Sony\Sony PC Companion\PCCService.exe [155824 2013-02-04] (Avanquest Software)
R2 sysTPLMonitor.exe; C:\Program Files\sysTPL\sysTPLMonitor.exe [398616 2013-12-30] (Tlapia)
R2 sysTPLService.exe; C:\Program Files\sysTPL\sysTPLService.exe [397592 2013-12-30] (Tlapia)
R2 V-bates Updater; C:\Program Files\V-bates\ExtensionUpdaterService.exe [188760 2013-11-03] ()
R2 Wpm; C:\Documents and Settings\All Users\Application Data\WPM\wprotectmanager.exe [499856 2014-01-04] (Cherished Technololgy LIMITED)
R2 yksvc; C:\Windows\System32\ykx32mpcoinst.dll [282624 2008-12-09] (Marvell)
S4 CltMngSvc; C:\PROGRA~1\SearchProtect\Main\bin\CltMngSvc.exe [x]
S2 Update WebConnect; "C:\Program Files\WebConnect\updateWebConnect.exe" [x]

==================== Drivers (Whitelisted) ====================

R3 btaudio; C:\Windows\System32\drivers\btaudio.sys [530861 2007-02-14] (Broadcom Corporation.)
R3 BTDriver; C:\Windows\System32\DRIVERS\btport.sys [30459 2007-02-14] (Broadcom Corporation.)
R3 BTKRNL; C:\Windows\System32\DRIVERS\btkrnl.sys [868298 2007-02-14] (Broadcom Corporation.)
R3 BTWDNDIS; C:\Windows\System32\DRIVERS\btwdndis.sys [149123 2007-02-14] (Broadcom Corporation.)
R3 BTWUSB; C:\Windows\System32\Drivers\btwusb.sys [67960 2007-02-14] (Broadcom Corporation.)
S3 CCDECODE; C:\Windows\System32\DRIVERS\CCDECODE.sys [17024 2008-04-13] (Microsoft Corporation)
R0 CSCrySec; C:\Windows\System32\DRIVERS\CSCrySec.sys [88632 2011-06-02] (Infowatch)
R1 CSVirtualDiskDrv; C:\Windows\System32\DRIVERS\CSVirtualDiskDrv.sys [39736 2011-06-02] (Infowatch)
R3 dsNcAdpt; C:\Windows\System32\DRIVERS\dsNcAdpt.sys [26624 2010-10-01] (Juniper Networks)
S3 eabusb; C:\Windows\System32\DRIVERS\eabusb.sys [5760 2005-09-19] (Hewlett-Packard Development Company, L.P.)
S3 gfiark; C:\Windows\System32\drivers\gfiark.sys [41584 2013-04-11] (ThreatTrack Security)
R0 gfibto; C:\Windows\System32\drivers\gfibto.sys [13560 2013-05-27] (GFI Software)
S3 GTUHSBUS; C:\Windows\System32\DRIVERS\gtuhsbus.sys [66560 2009-06-25] (Option N.V.)
S3 GTUHSNDISIPXP; C:\Windows\System32\DRIVERS\gtuhs51.sys [107520 2009-06-25] (Option N.V.)
S3 GTUHSSER; C:\Windows\System32\DRIVERS\gtuhsser.sys [8064 2009-06-25] (Option N.V.)
R0 kl1; C:\Windows\System32\DRIVERS\kl1.sys [135776 2013-10-16] (Kaspersky Lab ZAO)
R1 KLIF; C:\Windows\System32\DRIVERS\klif.sys [593504 2013-10-16] (Kaspersky Lab ZAO)
R3 klim5; C:\Windows\System32\DRIVERS\klim5.sys [35672 2012-06-27] (Kaspersky Lab ZAO)
R3 klkbdflt; C:\Windows\System32\DRIVERS\klkbdflt.sys [24160 2013-10-16] (Kaspersky Lab ZAO)
R3 klmouflt; C:\Windows\System32\DRIVERS\klmouflt.sys [24672 2013-10-16] (Kaspersky Lab ZAO)
R1 kltdi; C:\Windows\System32\DRIVERS\kltdi.sys [44000 2013-08-22] (Kaspersky Lab ZAO)
R1 kneps; C:\Windows\System32\DRIVERS\kneps.sys [145040 2013-08-22] (Kaspersky Lab ZAO)
S3 NdisIP; C:\Windows\System32\DRIVERS\NdisIP.sys [10880 2008-04-13] (Microsoft Corporation)
R3 NETw5x32; C:\Windows\System32\DRIVERS\NETw5x32.sys [3626112 2008-04-20] (Intel Corporation)
S3 PCAMPR5; C:\WINDOWS\system32\PCAMPR5.SYS [34688 2009-06-23] (Printing Communications Assoc., Inc. (PCAUSA))
S3 PCANDIS5; C:\WINDOWS\system32\PCANDIS5.SYS [32128 2009-06-23] (Printing Communications Assoc., Inc. (PCAUSA))
R0 SFAUDIO; C:\Windows\System32\drivers\sfaudio.sys [24064 2008-03-28] (Sonic Focus, Inc)
S3 taphss; C:\Windows\System32\DRIVERS\taphss.sys [32768 2010-05-13] (AnchorFree Inc)
R3 yukonwxp; C:\Windows\System32\DRIVERS\yk51x86.sys [296448 2008-12-09] (Marvell)
S3 BDFsDrv; \??\C:\Program Files\Softwin\BitDefender10\bdfsdrv.sys [x]
S3 BDRsDrv; \??\C:\Program Files\Softwin\BitDefender10\bdrsdrv.sys [x]
S3 catchme; \??\C:\ComboFix\catchme.sys [x]
S3 esgiguard; \??\C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys [x]
S4 IntelIde; No ImagePath
U5 klflt; C:\Windows\System32\Drivers\klflt.sys [74336 2013-10-16] (Kaspersky Lab ZAO)
S3 ZDCndis5; \??\C:\WINDOWS\system32\ZDCndis5.SYS [x]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-01-20 13:58 - 2014-01-20 13:59 - 00039868 _____ C:\Documents and Settings\Client\Bureau\FRST.txt
2014-01-20 13:58 - 2014-01-20 13:58 - 00000000 ____D C:\FRST
2014-01-20 13:56 - 2014-01-20 13:57 - 01221120 _____ (Farbar) C:\Documents and Settings\Client\Bureau\FRST.exe
2014-01-19 17:21 - 2014-01-19 17:24 - 00035531 _____ C:\WINDOWS\setupapi.log
2014-01-15 15:33 - 2014-01-15 15:33 - 00000067 _____ C:\Documents and Settings\NetworkService\Application Data\WB.CFG
2014-01-15 15:16 - 2014-01-15 15:16 - 00000165 ____H C:\Documents and Settings\Client\Bureau\~$16-01-2014.pptx
2014-01-15 12:09 - 2014-01-15 12:09 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2914368$
2014-01-15 12:08 - 2014-01-15 12:09 - 00004427 _____ C:\WINDOWS\KB2914368.log
2014-01-15 10:30 - 2014-01-20 11:13 - 00000280 _____ C:\WINDOWS\Tasks\RealPlayerRealUpgradeLogonTaskS-1-5-21-57989841-790525478-1801674531-1003.job
2014-01-14 16:59 - 2014-01-14 16:59 - 00000000 ____D C:\Documents and Settings\Client\SyncFolder
2014-01-14 15:33 - 2014-01-20 11:33 - 00000412 _____ C:\WINDOWS\Tasks\At1.job
2014-01-14 15:33 - 2014-01-14 17:08 - 00000000 ____D C:\Program Files\MyPC Backup
2014-01-14 15:32 - 2014-01-14 15:33 - 00000000 ____D C:\Documents and Settings\Client\Application Data\mysearchdial
2014-01-14 15:32 - 2014-01-14 15:32 - 00366611 _____ C:\Documents and Settings\Client\Local Settings\Application Data\mysearchdial-speeddial.crx
2014-01-14 15:32 - 2014-01-14 15:32 - 00000000 ____D C:\Program Files\Mysearchdial
2014-01-13 15:11 - 2014-01-13 15:11 - 00000000 ____D C:\Documents and Settings\Client\Bureau\Ran Liu
2014-01-08 22:14 - 2014-01-08 22:14 - 00000000 ____D C:\Documents and Settings\Client\Menu Démarrer\Programmes\Google Chrome
2014-01-08 22:14 - 2014-01-08 22:14 - 00000000 ____D C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Google Chrome
2014-01-08 22:13 - 2014-01-08 22:13 - 00819184 _____ (Google Inc.) C:\Documents and Settings\Client\Bureau\ChromeSetup.exe
2014-01-08 21:57 - 2014-01-08 21:57 - 00000000 __SHD C:\Documents and Settings\Client\IECompatCache
2014-01-08 12:11 - 2014-01-08 12:11 - 00000512 _____ C:\PhysicalMBR.bin
2014-01-07 10:03 - 2014-01-07 10:03 - 00000000 _____ C:\WINDOWS\system32\atiicdxx.dat
2014-01-07 10:00 - 2014-01-07 10:00 - 00000000 ____D C:\Documents and Settings\All Users\Menu Démarrer\Programmes\DriverToolkit
2014-01-06 22:02 - 2014-01-06 22:02 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_ggsemc_01009.Wdf
2014-01-06 22:02 - 2014-01-06 22:02 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_ggflt_01009.Wdf
2014-01-06 21:58 - 2014-01-06 21:58 - 00000000 __SHD C:\WINDOWS\CSC
2014-01-06 19:14 - 2014-01-06 19:14 - 00000000 ____D C:\Documents and Settings\Client\Application Data\driveridentifier
2014-01-06 19:10 - 2014-01-06 19:13 - 00000000 ____D C:\Program Files\Driver Identifier
2014-01-06 19:10 - 2014-01-06 19:13 - 00000000 ____D C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Driver Identifier
2014-01-06 19:04 - 2014-01-07 10:00 - 00000000 ____D C:\Program Files\DriverToolkit
2014-01-06 19:04 - 2014-01-06 19:04 - 00000000 ____D C:\Documents and Settings\Client\Local Settings\Application Data\DriverToolkit
2014-01-06 17:29 - 2014-01-06 17:29 - 00000000 ____D C:\Documents and Settings\Client\Menu Démarrer\Programmes\StoneTrip
2014-01-06 17:29 - 2014-01-06 17:29 - 00000000 ____D C:\Documents and Settings\Client\Application Data\StoneTrip
2014-01-05 16:47 - 2014-01-20 11:37 - 00000000 ____D C:\Program Files\sysTPL
2014-01-05 16:47 - 2014-01-05 16:47 - 00000000 __SHD C:\WINDOWS\system32\AI_RecycleBin
2014-01-05 16:11 - 2014-01-05 16:11 - 00000000 ____D C:\Program Files\V-bates
2014-01-04 21:44 - 2014-01-04 21:44 - 00000000 ____D C:\Documents and Settings\All Users\Application Data\WPM
2014-01-04 21:42 - 2014-01-04 21:44 - 00000000 ____D C:\Documents and Settings\All Users\Application Data\SoftWarehouse
2014-01-04 21:39 - 2014-01-04 21:39 - 00000000 ____D C:\Program Files\YoutubeAdblocker
2014-01-04 21:39 - 2014-01-04 21:39 - 00000000 ____D C:\Documents and Settings\All Users\Application Data\YoutubeAdblocker
2014-01-04 21:38 - 2014-01-05 13:18 - 00000000 ____D C:\Documents and Settings\All Users\Application Data\greaatSaver
2014-01-04 21:38 - 2014-01-04 21:38 - 00000000 ____D C:\Program Files\greaatSaver
2014-01-04 21:37 - 2014-01-05 03:26 - 00000000 ____D C:\Documents and Settings\All Users\Application Data\8a09e3163b567ce8
2014-01-04 21:37 - 2014-01-04 21:37 - 00000000 ____D C:\Documents and Settings\SUPPORT_388945a0\Local Settings\Application Data\Torch
2014-01-04 21:37 - 2014-01-04 21:37 - 00000000 ____D C:\Documents and Settings\SUPPORT_388945a0\Local Settings\Application Data\Google
2014-01-04 21:37 - 2014-01-04 21:37 - 00000000 ____D C:\Documents and Settings\SUPPORT_388945a0\Local Settings\Application Data\Comodo
2014-01-04 21:37 - 2014-01-04 21:37 - 00000000 ____D C:\Documents and Settings\SUPPORT_388945a0
2014-01-04 21:37 - 2014-01-04 21:37 - 00000000 ____D C:\Documents and Settings\Invité\Local Settings\Application Data\Torch
2014-01-04 21:37 - 2014-01-04 21:37 - 00000000 ____D C:\Documents and Settings\Invité\Local Settings\Application Data\Comodo
2014-01-04 21:37 - 2014-01-04 21:37 - 00000000 ____D C:\Documents and Settings\HelpAssistant\Local Settings\Application Data\Torch
2014-01-04 21:37 - 2014-01-04 21:37 - 00000000 ____D C:\Documents and Settings\HelpAssistant\Local Settings\Application Data\Google
2014-01-04 21:37 - 2014-01-04 21:37 - 00000000 ____D C:\Documents and Settings\HelpAssistant\Local Settings\Application Data\Comodo
2014-01-04 21:37 - 2014-01-04 21:37 - 00000000 ____D C:\Documents and Settings\HelpAssistant
2014-01-04 21:37 - 2014-01-04 21:37 - 00000000 ____D C:\Documents and Settings\Client\Local Settings\Application Data\Torch
2014-01-04 21:37 - 2014-01-04 21:37 - 00000000 ____D C:\Documents and Settings\Client\Local Settings\Application Data\Comodo
2014-01-04 21:37 - 2014-01-04 21:37 - 00000000 ____D C:\Documents and Settings\ASPNET\Local Settings\Application Data\Torch
2014-01-04 21:37 - 2014-01-04 21:37 - 00000000 ____D C:\Documents and Settings\ASPNET\Local Settings\Application Data\Google
2014-01-04 21:37 - 2014-01-04 21:37 - 00000000 ____D C:\Documents and Settings\ASPNET\Local Settings\Application Data\Comodo
2014-01-04 21:37 - 2014-01-04 21:37 - 00000000 ____D C:\Documents and Settings\ASPNET
2014-01-04 21:37 - 2014-01-04 21:37 - 00000000 ____D C:\Documents and Settings\Administrateur\Local Settings\Application Data\Torch
2014-01-04 21:37 - 2014-01-04 21:37 - 00000000 ____D C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google
2014-01-04 21:37 - 2014-01-04 21:37 - 00000000 ____D C:\Documents and Settings\Administrateur\Local Settings\Application Data\Comodo
2014-01-04 21:37 - 2014-01-04 21:37 - 00000000 ____D C:\Documents and Settings\Administrateur
2014-01-03 20:58 - 2014-01-03 20:58 - 00000000 __HDC C:\WINDOWS\$NtUninstallwinusb0100$
2014-01-03 20:58 - 2014-01-03 20:58 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_WinUSB_01007.Wdf
2014-01-03 20:55 - 2014-01-03 20:55 - 00000000 ____D C:\Documents and Settings\All Users\Application Data\Sony
2014-01-03 20:50 - 2014-01-16 23:55 - 00000000 ____D C:\Documents and Settings\Client\Application Data\newnext.me
2014-01-03 20:50 - 2014-01-05 16:43 - 00000000 ____D C:\Documents and Settings\Client\Local Settings\Application Data\Mobogenie
2014-01-03 20:50 - 2014-01-05 16:41 - 00000780 _____ C:\Documents and Settings\Client\daemonprocess.txt
2014-01-03 20:50 - 2014-01-03 20:50 - 00000000 ____D C:\Documents and Settings\Client\Mes documents\Mobogenie
2014-01-03 20:50 - 2014-01-03 20:50 - 00000000 ____D C:\Documents and Settings\Client\Local Settings\Application Data\genienext
2014-01-03 20:50 - 2014-01-03 20:50 - 00000000 ____D C:\Documents and Settings\Client\Local Settings\Application Data\cache
2014-01-03 20:50 - 2014-01-03 20:50 - 00000000 ____D C:\Documents and Settings\Client\.android
2014-01-03 20:47 - 2014-01-20 11:11 - 00000282 _____ C:\WINDOWS\Tasks\GoforFilesUpdate.job
2014-01-03 20:47 - 2014-01-03 20:47 - 00000000 ____D C:\Documents and Settings\Client\Application Data\GoforFiles
2014-01-03 15:55 - 2014-01-19 15:55 - 00000430 _____ C:\WINDOWS\Tasks\BoxSoftwareUpdate.job
2014-01-03 15:55 - 2014-01-04 15:55 - 00000000 ____D C:\Documents and Settings\All Users\Application Data\BoxUpdChk
2014-01-03 15:54 - 2014-01-03 19:59 - 00000000 ____D C:\Program Files\Software
2014-01-03 15:54 - 2014-01-03 15:54 - 00000000 ____D C:\Documents and Settings\Client\Local Settings\Application Data\Software
2014-01-03 15:54 - 2014-01-03 15:54 - 00000000 ____D C:\Documents and Settings\Client\Application Data\driver
2014-01-02 17:34 - 2014-01-05 15:17 - 00000000 ____D C:\Documents and Settings\Client\Menu Démarrer\Programmes\Sony Mobile
2014-01-02 15:55 - 2014-01-02 15:55 - 00025200 _____ (Sony Ericsson Mobile Communications) C:\WINDOWS\system32\Drivers\ggsemc.sys
2014-01-02 15:55 - 2014-01-02 15:55 - 00012400 _____ (Sony Ericsson Mobile Communications) C:\WINDOWS\system32\Drivers\ggflt.sys
2014-01-02 15:54 - 2014-01-05 15:16 - 00000000 ____D C:\Program Files\Sony Mobile
2014-01-02 15:54 - 2014-01-03 21:01 - 00000000 ____D C:\Documents and Settings\All Users\Application Data\Sony Mobile
2014-01-02 14:51 - 2014-01-15 10:45 - 00680814 _____ C:\WINDOWS\DPINST.LOG

==================== One Month Modified Files and Folders =======

2014-01-20 13:59 - 2014-01-20 13:58 - 00039868 _____ C:\Documents and Settings\Client\Bureau\FRST.txt
2014-01-20 13:59 - 2012-12-27 23:36 - 00000000 ____D C:\Documents and Settings\All Users\Application Data\Kaspersky Lab
2014-01-20 13:58 - 2014-01-20 13:58 - 00000000 ____D C:\FRST
2014-01-20 13:58 - 2009-09-17 09:02 - 00000000 ____D C:\Documents and Settings\Client\Bureau
2014-01-20 13:57 - 2014-01-20 13:56 - 01221120 _____ (Farbar) C:\Documents and Settings\Client\Bureau\FRST.exe
2014-01-20 13:56 - 2010-03-09 19:23 - 00000434 ____H C:\WINDOWS\Tasks\User_Feed_Synchronization-{BB161B8F-5030-42CB-9927-54B9B837E1A8}.job
2014-01-20 13:39 - 2013-06-16 11:26 - 00000000 ____D C:\Documents and Settings\Client\Application Data\Dropbox
2014-01-20 13:38 - 2009-09-17 08:56 - 01668219 _____ C:\WINDOWS\WindowsUpdate.log
2014-01-20 12:05 - 2009-09-24 22:25 - 00001152 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-57989841-790525478-1801674531-1003UA.job
2014-01-20 12:02 - 2012-04-01 20:34 - 00001002 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2014-01-20 11:37 - 2014-01-05 16:47 - 00000000 ____D C:\Program Files\sysTPL
2014-01-20 11:33 - 2014-01-14 15:33 - 00000412 _____ C:\WINDOWS\Tasks\At1.job
2014-01-20 11:22 - 2012-06-19 21:26 - 00001056 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2014-01-20 11:17 - 2013-06-16 11:31 - 00000000 ___RD C:\Documents and Settings\Client\Mes documents\Dropbox
2014-01-20 11:13 - 2014-01-15 10:30 - 00000280 _____ C:\WINDOWS\Tasks\RealPlayerRealUpgradeLogonTaskS-1-5-21-57989841-790525478-1801674531-1003.job
2014-01-20 11:13 - 2012-12-26 01:20 - 00000288 _____ C:\WINDOWS\Tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-57989841-790525478-1801674531-1003.job
2014-01-20 11:13 - 2012-01-25 11:40 - 00000280 _____ C:\WINDOWS\Tasks\RealUpgradeLogonTaskS-1-5-21-57989841-790525478-1801674531-1003.job
2014-01-20 11:12 - 2011-01-30 14:44 - 00000000 ____D C:\Program Files\Fichiers communs\Akamai
2014-01-20 11:12 - 2009-09-17 10:46 - 00000159 _____ C:\WINDOWS\wiadebug.log
2014-01-20 11:12 - 2009-09-17 10:46 - 00000050 _____ C:\WINDOWS\wiaservc.log
2014-01-20 11:11 - 2014-01-03 20:47 - 00000282 _____ C:\WINDOWS\Tasks\GoforFilesUpdate.job
2014-01-20 11:11 - 2013-08-28 14:10 - 00000290 _____ C:\WINDOWS\Tasks\Express FilesUpdate.job
2014-01-20 11:11 - 2013-01-09 17:51 - 00000302 _____ C:\WINDOWS\Tasks\RealDownloaderRealUpgradeLogonTaskS-1-5-21-57989841-790525478-1801674531-1003.job
2014-01-20 11:11 - 2012-06-19 21:26 - 00001052 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2014-01-20 11:11 - 2011-07-13 09:20 - 00000280 _____ C:\WINDOWS\Tasks\RealUpgradeLogonTaskS-1-5-18.job
2014-01-20 11:11 - 2009-09-17 09:01 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2014-01-20 11:10 - 2009-09-17 09:02 - 00000184 ___SH C:\Documents and Settings\Client\ntuser.ini
2014-01-20 11:10 - 2009-09-17 09:01 - 00032258 _____ C:\WINDOWS\SchedLgU.Txt
2014-01-20 11:07 - 2013-06-24 16:11 - 00000000 ____D C:\Documents and Settings\Client\Bureau\Imsartgeneric
2014-01-20 10:05 - 2011-11-03 00:55 - 00001170 _____ C:\WINDOWS\Tasks\FacebookUpdateTaskUserS-1-5-21-57989841-790525478-1801674531-1003UA.job
2014-01-20 09:36 - 2009-09-17 12:00 - 00000000 ____D C:\Documents and Settings\Client\Application Data\Skype
2014-01-19 17:24 - 2014-01-19 17:21 - 00035531 _____ C:\WINDOWS\setupapi.log
2014-01-19 17:24 - 2013-01-27 00:20 - 00030261 _____ C:\WINDOWS\setupact.log
2014-01-19 17:24 - 2013-01-14 17:14 - 00002347 _____ C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Adobe Reader XI.lnk
2014-01-19 17:24 - 2009-09-17 10:32 - 00000000 ___RD C:\Documents and Settings\All Users\Menu Démarrer\Programmes
2014-01-19 17:15 - 2008-04-14 11:00 - 00002206 _____ C:\WINDOWS\system32\wpa.dbl
2014-01-19 17:14 - 2009-09-17 09:02 - 00000000 ____D C:\Documents and Settings\Client
2014-01-19 16:05 - 2009-09-24 22:25 - 00001100 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-57989841-790525478-1801674531-1003Core.job
2014-01-19 15:55 - 2014-01-03 15:55 - 00000430 _____ C:\WINDOWS\Tasks\BoxSoftwareUpdate.job
2014-01-17 21:11 - 2011-09-14 22:13 - 00000000 ____D C:\Documents and Settings\Client\Application Data\Mozilla
2014-01-17 14:49 - 2010-05-02 11:46 - 00000288 _____ C:\WINDOWS\Tasks\RealUpgradeScheduledTaskS-1-5-21-57989841-790525478-1801674531-1003.job
2014-01-17 01:05 - 2011-11-03 00:55 - 00001148 _____ C:\WINDOWS\Tasks\FacebookUpdateTaskUserS-1-5-21-57989841-790525478-1801674531-1003Core.job
2014-01-17 00:06 - 2009-09-17 09:02 - 00000000 ___RD C:\Documents and Settings\Client\Menu Démarrer\Programmes\Démarrage
2014-01-17 00:05 - 2013-06-16 11:31 - 00001015 _____ C:\Documents and Settings\Client\Bureau\Dropbox.lnk
2014-01-17 00:05 - 2013-06-16 11:27 - 00000000 ____D C:\Documents and Settings\Client\Menu Démarrer\Programmes\Dropbox
2014-01-16 23:55 - 2014-01-03 20:50 - 00000000 ____D C:\Documents and Settings\Client\Application Data\newnext.me
2014-01-16 17:05 - 2013-01-21 15:46 - 00001024 ____H C:\WINDOWS\system32\config\elam.LOG
2014-01-16 16:30 - 2010-03-18 03:01 - 03491022 _____ C:\Documents and Settings\LocalService\Local Settings\Application Data\WPFFontCache_v0400-S-1-5-21-57989841-790525478-1801674531-1003-0.dat
2014-01-16 16:30 - 2010-03-18 03:01 - 00394894 _____ C:\Documents and Settings\LocalService\Local Settings\Application Data\WPFFontCache_v0400-System.dat
2014-01-16 13:59 - 2013-11-28 10:18 - 00000000 ____D C:\Documents and Settings\Client\Bureau\PVRP minmax 5
2014-01-16 13:59 - 2013-04-02 17:52 - 00000000 ____D C:\Documents and Settings\Client\Bureau\testcplex
2014-01-16 13:30 - 2013-11-06 12:59 - 00001324 _____ C:\WINDOWS\system32\d3d9caps.dat
2014-01-15 17:12 - 2013-04-14 14:42 - 00000000 ____D C:\Documents and Settings\Client\Bureau\Résultats New_problem
2014-01-15 15:33 - 2014-01-15 15:33 - 00000067 _____ C:\Documents and Settings\NetworkService\Application Data\WB.CFG
2014-01-15 15:16 - 2014-01-15 15:16 - 00000165 ____H C:\Documents and Settings\Client\Bureau\~$16-01-2014.pptx
2014-01-15 12:14 - 2009-09-17 12:32 - 00000000 ____D C:\Documents and Settings\All Users\Application Data\Microsoft Help
2014-01-15 12:13 - 2013-07-18 02:00 - 00000000 ____D C:\WINDOWS\system32\MRT
2014-01-15 12:09 - 2014-01-15 12:09 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB2914368$
2014-01-15 12:09 - 2014-01-15 12:08 - 00004427 _____ C:\WINDOWS\KB2914368.log
2014-01-15 12:09 - 2013-02-13 16:52 - 00353758 _____ C:\WINDOWS\iis6.log
2014-01-15 12:09 - 2013-02-13 16:52 - 00327681 _____ C:\WINDOWS\FaxSetup.log
2014-01-15 12:09 - 2013-02-13 16:52 - 00178133 _____ C:\WINDOWS\ocgen.log
2014-01-15 12:09 - 2013-02-13 16:52 - 00149513 _____ C:\WINDOWS\tsoc.log
2014-01-15 12:09 - 2013-02-13 16:52 - 00108987 _____ C:\WINDOWS\comsetup.log
2014-01-15 12:09 - 2013-02-13 16:52 - 00101034 _____ C:\WINDOWS\msmqinst.log
2014-01-15 12:09 - 2013-02-13 16:52 - 00065879 _____ C:\WINDOWS\ntdtcsetup.log
2014-01-15 12:09 - 2013-02-13 16:52 - 00057399 _____ C:\WINDOWS\netfxocm.log
2014-01-15 12:09 - 2013-02-13 16:52 - 00022525 _____ C:\WINDOWS\MedCtrOC.log
2014-01-15 12:09 - 2013-02-13 16:52 - 00018126 _____ C:\WINDOWS\ocmsn.log
2014-01-15 12:09 - 2013-02-13 16:52 - 00016483 _____ C:\WINDOWS\tabletoc.log
2014-01-15 12:09 - 2013-02-13 16:52 - 00016377 _____ C:\WINDOWS\msgsocm.log
2014-01-15 12:09 - 2013-02-13 16:52 - 00001374 _____ C:\WINDOWS\imsins.log
2014-01-15 12:09 - 2010-10-28 01:34 - 83425928 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2014-01-15 11:56 - 2013-10-03 10:42 - 00027938 _____ C:\Documents and Settings\Client\Bureau\résultats.xlsx
2014-01-15 10:57 - 2009-09-17 10:32 - 00000000 ____D C:\Documents and Settings\All Users\Bureau
2014-01-15 10:45 - 2014-01-02 14:51 - 00680814 _____ C:\WINDOWS\DPINST.LOG
2014-01-15 10:38 - 2010-07-26 18:16 - 00000000 ____D C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Sony
2014-01-15 10:37 - 2009-09-17 09:02 - 00000000 ___HD C:\Program Files\InstallShield Installation Information
2014-01-15 10:37 - 2009-09-17 09:01 - 00000000 __SHD C:\Documents and Settings\LocalService
2014-01-15 10:20 - 2011-07-13 09:20 - 00000288 _____ C:\WINDOWS\Tasks\RealUpgradeScheduledTaskS-1-5-18.job
2014-01-15 01:39 - 2013-07-02 09:01 - 00000000 ____D C:\Documents and Settings\Client\Bureau\MIP2
2014-01-14 22:38 - 2009-09-17 09:02 - 00000000 ___RD C:\Documents and Settings\Client\Menu Démarrer\Programmes
2014-01-14 17:51 - 2013-01-09 17:51 - 00000328 _____ C:\WINDOWS\Tasks\RealDownloaderDownloaderScheduledTaskS-1-5-21-57989841-790525478-1801674531-1003.job
2014-01-14 17:08 - 2014-01-14 15:33 - 00000000 ____D C:\Program Files\MyPC Backup
2014-01-14 16:59 - 2014-01-14 16:59 - 00000000 ____D C:\Documents and Settings\Client\SyncFolder
2014-01-14 15:33 - 2014-01-14 15:32 - 00000000 ____D C:\Documents and Settings\Client\Application Data\mysearchdial
2014-01-14 15:32 - 2014-01-14 15:32 - 00366611 _____ C:\Documents and Settings\Client\Local Settings\Application Data\mysearchdial-speeddial.crx
2014-01-14 15:32 - 2014-01-14 15:32 - 00000000 ____D C:\Program Files\Mysearchdial
2014-01-14 15:19 - 2013-09-26 09:28 - 00000000 ____D C:\Documents and Settings\Client\Application Data\ObviousIdea
2014-01-13 15:11 - 2014-01-13 15:11 - 00000000 ____D C:\Documents and Settings\Client\Bureau\Ran Liu
2014-01-10 17:50 - 2010-03-18 00:49 - 00000000 ____D C:\Documents and Settings\Client\Mes documents\Visual Studio 2010
2014-01-09 22:53 - 2013-11-29 14:36 - 00000664 _____ C:\Documents and Settings\Client\Local Settings\Application Data\d3d9caps.dat
2014-01-08 22:14 - 2014-01-08 22:14 - 00000000 ____D C:\Documents and Settings\Client\Menu Démarrer\Programmes\Google Chrome
2014-01-08 22:14 - 2014-01-08 22:14 - 00000000 ____D C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Google Chrome
2014-01-08 22:14 - 2009-09-17 12:00 - 00000000 ____D C:\Program Files\Google
2014-01-08 22:13 - 2014-01-08 22:13 - 00819184 _____ (Google Inc.) C:\Documents and Settings\Client\Bureau\ChromeSetup.exe
2014-01-08 22:01 - 2013-01-21 22:28 - 01159819 _____ C:\WINDOWS\setupapi.log.0.old
2014-01-08 21:57 - 2014-01-08 21:57 - 00000000 __SHD C:\Documents and Settings\Client\IECompatCache
2014-01-08 12:11 - 2014-01-08 12:11 - 00000512 _____ C:\PhysicalMBR.bin
2014-01-08 11:52 - 2013-08-29 16:00 - 00000000 ____D C:\AdwCleaner
2014-01-07 10:03 - 2014-01-07 10:03 - 00000000 _____ C:\WINDOWS\system32\atiicdxx.dat
2014-01-07 10:03 - 2009-09-17 10:32 - 00000000 ____D C:\Program Files\Fichiers communs
2014-01-07 10:02 - 2012-02-29 16:16 - 00000000 ____D C:\Documents and Settings\Invité
2014-01-07 10:01 - 2009-09-17 10:19 - 00000000 ____D C:\WINDOWS\twain_32
2014-01-07 10:01 - 2009-09-17 09:00 - 00000000 __SHD C:\Documents and Settings\NetworkService
2014-01-07 10:01 - 2009-09-17 08:54 - 00000000 ____D C:\WINDOWS\Registration
2014-01-07 10:00 - 2014-01-07 10:00 - 00000000 ____D C:\Documents and Settings\All Users\Menu Démarrer\Programmes\DriverToolkit
2014-01-07 10:00 - 2014-01-06 19:04 - 00000000 ____D C:\Program Files\DriverToolkit
2014-01-06 22:02 - 2014-01-06 22:02 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_ggsemc_01009.Wdf
2014-01-06 22:02 - 2014-01-06 22:02 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_ggflt_01009.Wdf
2014-01-06 21:58 - 2014-01-06 21:58 - 00000000 __SHD C:\WINDOWS\CSC
2014-01-06 20:57 - 2009-09-17 10:19 - 00000000 ____D C:\WINDOWS\security
2014-01-06 19:14 - 2014-01-06 19:14 - 00000000 ____D C:\Documents and Settings\Client\Application Data\driveridentifier
2014-01-06 19:13 - 2014-01-06 19:10 - 00000000 ____D C:\Program Files\Driver Identifier
2014-01-06 19:13 - 2014-01-06 19:10 - 00000000 ____D C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Driver Identifier
2014-01-06 19:04 - 2014-01-06 19:04 - 00000000 ____D C:\Documents and Settings\Client\Local Settings\Application Data\DriverToolkit
2014-01-06 17:29 - 2014-01-06 17:29 - 00000000 ____D C:\Documents and Settings\Client\Menu Démarrer\Programmes\StoneTrip
2014-01-06 17:29 - 2014-01-06 17:29 - 00000000 ____D C:\Documents and Settings\Client\Application Data\StoneTrip
2014-01-06 15:03 - 2013-05-16 15:03 - 00000000 ____D C:\Program Files\Mozilla Thunderbird
2014-01-06 10:04 - 2009-09-17 10:32 - 00000000 ___RD C:\Documents and Settings\All Users\Menu Démarrer
2014-01-05 16:47 - 2014-01-05 16:47 - 00000000 __SHD C:\WINDOWS\system32\AI_RecycleBin
2014-01-05 16:43 - 2014-01-03 20:50 - 00000000 ____D C:\Documents and Settings\Client\Local Settings\Application Data\Mobogenie
2014-01-05 16:41 - 2014-01-03 20:50 - 00000780 _____ C:\Documents and Settings\Client\daemonprocess.txt
2014-01-05 16:12 - 2013-01-28 14:23 - 00001463 _____ C:\WINDOWS\system32\InstallUtil.InstallLog
2014-01-05 16:11 - 2014-01-05 16:11 - 00000000 ____D C:\Program Files\V-bates
2014-01-05 15:17 - 2014-01-02 17:34 - 00000000 ____D C:\Documents and Settings\Client\Menu Démarrer\Programmes\Sony Mobile
2014-01-05 15:16 - 2014-01-02 15:54 - 00000000 ____D C:\Program Files\Sony Mobile
2014-01-05 13:18 - 2014-01-04 21:38 - 00000000 ____D C:\Documents and Settings\All Users\Application Data\greaatSaver
2014-01-05 03:26 - 2014-01-04 21:37 - 00000000 ____D C:\Documents and Settings\All Users\Application Data\8a09e3163b567ce8
2014-01-04 21:44 - 2014-01-04 21:44 - 00000000 ____D C:\Documents and Settings\All Users\Application Data\WPM
2014-01-04 21:44 - 2014-01-04 21:42 - 00000000 ____D C:\Documents and Settings\All Users\Application Data\SoftWarehouse
2014-01-04 21:43 - 2011-10-12 15:37 - 00000946 _____ C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Mozilla Firefox.lnk
2014-01-04 21:43 - 2009-09-17 09:05 - 00001019 _____ C:\Documents and Settings\Client\Menu Démarrer\Programmes\Internet Explorer.lnk
2014-01-04 21:39 - 2014-01-04 21:39 - 00000000 ____D C:\Program Files\YoutubeAdblocker
2014-01-04 21:39 - 2014-01-04 21:39 - 00000000 ____D C:\Documents and Settings\All Users\Application Data\YoutubeAdblocker
2014-01-04 21:38 - 2014-01-04 21:38 - 00000000 ____D C:\Program Files\greaatSaver
2014-01-04 21:37 - 2014-01-04 21:37 - 00000000 ____D C:\Documents and Settings\SUPPORT_388945a0\Local Settings\Application Data\Torch
2014-01-04 21:37 - 2014-01-04 21:37 - 00000000 ____D C:\Documents and Settings\SUPPORT_388945a0\Local Settings\Application Data\Google
2014-01-04 21:37 - 2014-01-04 21:37 - 00000000 ____D C:\Documents and Settings\SUPPORT_388945a0\Local Settings\Application Data\Comodo
2014-01-04 21:37 - 2014-01-04 21:37 - 00000000 ____D C:\Documents and Settings\SUPPORT_388945a0
2014-01-04 21:37 - 2014-01-04 21:37 - 00000000 ____D C:\Documents and Settings\Invité\Local Settings\Application Data\Torch
2014-01-04 21:37 - 2014-01-04 21:37 - 00000000 ____D C:\Documents and Settings\Invité\Local Settings\Application Data\Comodo
2014-01-04 21:37 - 2014-01-04 21:37 - 00000000 ____D C:\Documents and Settings\HelpAssistant\Local Settings\Application Data\Torch
2014-01-04 21:37 - 2014-01-04 21:37 - 00000000 ____D C:\Documents and Settings\HelpAssistant\Local Settings\Application Data\Google
2014-01-04 21:37 - 2014-01-04 21:37 - 00000000 ____D C:\Documents and Settings\HelpAssistant\Local Settings\Application Data\Comodo
2014-01-04 21:37 - 2014-01-04 21:37 - 00000000 ____D C:\Documents and Settings\HelpAssistant
2014-01-04 21:37 - 2014-01-04 21:37 - 00000000 ____D C:\Documents and Settings\Client\Local Settings\Application Data\Torch
2014-01-04 21:37 - 2014-01-04 21:37 - 00000000 ____D C:\Documents and Settings\Client\Local Settings\Application Data\Comodo
2014-01-04 21:37 - 2014-01-04 21:37 - 00000000 ____D C:\Documents and Settings\ASPNET\Local Settings\Application Data\Torch
2014-01-04 21:37 - 2014-01-04 21:37 - 00000000 ____D C:\Documents and Settings\ASPNET\Local Settings\Application Data\Google
2014-01-04 21:37 - 2014-01-04 21:37 - 00000000 ____D C:\Documents and Settings\ASPNET\Local Settings\Application Data\Comodo
2014-01-04 21:37 - 2014-01-04 21:37 - 00000000 ____D C:\Documents and Settings\ASPNET
2014-01-04 21:37 - 2014-01-04 21:37 - 00000000 ____D C:\Documents and Settings\Administrateur\Local Settings\Application Data\Torch
2014-01-04 21:37 - 2014-01-04 21:37 - 00000000 ____D C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google
2014-01-04 21:37 - 2014-01-04 21:37 - 00000000 ____D C:\Documents and Settings\Administrateur\Local Settings\Application Data\Comodo
2014-01-04 21:37 - 2014-01-04 21:37 - 00000000 ____D C:\Documents and Settings\Administrateur
2014-01-04 21:37 - 2013-10-11 23:54 - 00000000 ____D C:\Documents and Settings\Invité\Local Settings\Application Data\Google
2014-01-04 21:37 - 2009-09-17 12:15 - 00000000 ____D C:\Documents and Settings\Client\Local Settings\Application Data\Google
2014-01-04 15:55 - 2014-01-03 15:55 - 00000000 ____D C:\Documents and Settings\All Users\Application Data\BoxUpdChk
2014-01-04 15:11 - 2009-09-17 10:33 - 01605738 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2014-01-03 21:01 - 2014-01-02 15:54 - 00000000 ____D C:\Documents and Settings\All Users\Application Data\Sony Mobile
2014-01-03 20:58 - 2014-01-03 20:58 - 00000000 __HDC C:\WINDOWS\$NtUninstallwinusb0100$
2014-01-03 20:58 - 2014-01-03 20:58 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_WinUSB_01007.Wdf
2014-01-03 20:58 - 2013-02-13 16:52 - 00001355 _____ C:\WINDOWS\imsins.BAK
2014-01-03 20:55 - 2014-01-03 20:55 - 00000000 ____D C:\Documents and Settings\All Users\Application Data\Sony
2014-01-03 20:55 - 2010-07-26 18:15 - 00000000 ____D C:\Program Files\Sony
2014-01-03 20:50 - 2014-01-03 20:50 - 00000000 ____D C:\Documents and Settings\Client\Mes documents\Mobogenie
2014-01-03 20:50 - 2014-01-03 20:50 - 00000000 ____D C:\Documents and Settings\Client\Local Settings\Application Data\genienext
2014-01-03 20:50 - 2014-01-03 20:50 - 00000000 ____D C:\Documents and Settings\Client\Local Settings\Application Data\cache
2014-01-03 20:50 - 2014-01-03 20:50 - 00000000 ____D C:\Documents and Settings\Client\.android
2014-01-03 20:47 - 2014-01-03 20:47 - 00000000 ____D C:\Documents and Settings\Client\Application Data\GoforFiles
2014-01-03 19:59 - 2014-01-03 15:54 - 00000000 ____D C:\Program Files\Software
2014-01-03 19:43 - 2010-07-26 18:19 - 00000000 ____D C:\Documents and Settings\Client\Local Settings\Application Data\Sony
2014-01-03 19:34 - 2009-09-17 10:32 - 00000000 ___RD C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage
2014-01-03 15:54 - 2014-01-03 15:54 - 00000000 ____D C:\Documents and Settings\Client\Local Settings\Application Data\Software
2014-01-03 15:54 - 2014-01-03 15:54 - 00000000 ____D C:\Documents and Settings\Client\Application Data\driver
2014-01-02 15:55 - 2014-01-02 15:55 - 00025200 _____ (Sony Ericsson Mobile Communications) C:\WINDOWS\system32\Drivers\ggsemc.sys
2014-01-02 15:55 - 2014-01-02 15:55 - 00012400 _____ (Sony Ericsson Mobile Communications) C:\WINDOWS\system32\Drivers\ggflt.sys
2014-01-02 15:51 - 2010-07-25 20:43 - 00000000 ____D C:\Program Files\Sony Ericsson
2014-01-02 15:51 - 2010-07-25 20:43 - 00000000 ____D C:\Documents and Settings\All Users\Application Data\Sony Ericsson
2014-01-02 14:16 - 2009-11-04 10:48 - 00000000 ___RD C:\Documents and Settings\Client\Mes documents\Photos france
2013-12-23 10:25 - 2011-05-07 22:53 - 00000000 ____D C:\Documents and Settings\Client\Application Data\Notepad++
2013-12-22 12:00 - 2013-05-28 00:04 - 00000946 _____ C:\WINDOWS\Tasks\Ad-Aware Antivirus Scheduled Scan.job

Files to move or delete:
====================
C:\Documents and Settings\Client\$FFPROFINI$prefs.js
C:\Windows\Tasks\At1.job


Some content of TEMP:
====================
C:\Documents and Settings\Client\Local Settings\Temp\AskSLib.dll
C:\Documents and Settings\Client\Local Settings\Temp\autorun.dll
C:\Documents and Settings\Client\Local Settings\Temp\BackupSetup.exe
C:\Documents and Settings\Client\Local Settings\Temp\download wechat for pc portable__2759_i60752919_il2002908.exe
C:\Documents and Settings\Client\Local Settings\Temp\DownloadManager.exe
C:\Documents and Settings\Client\Local Settings\Temp\fb23c8ea-5474-49b1-ab5e-6acd96a787da.exe
C:\Documents and Settings\Client\Local Settings\Temp\hnetcfg.dll
C:\Documents and Settings\Client\Local Settings\Temp\htmlayout.dll
C:\Documents and Settings\Client\Local Settings\Temp\klogon.dll
C:\Documents and Settings\Client\Local Settings\Temp\Launcher_i231438089.exe
C:\Documents and Settings\Client\Local Settings\Temp\LiveSupport_setup.exe
C:\Documents and Settings\Client\Local Settings\Temp\lowproc.exe
C:\Documents and Settings\Client\Local Settings\Temp\npp.6.3.2.Installer.exe
C:\Documents and Settings\Client\Local Settings\Temp\npp.6.4.5.Installer.exe
C:\Documents and Settings\Client\Local Settings\Temp\npp.6.5.1.Installer.exe
C:\Documents and Settings\Client\Local Settings\Temp\npp.6.5.2.Installer.exe
C:\Documents and Settings\Client\Local Settings\Temp\npp.6.5.Installer.exe
C:\Documents and Settings\Client\Local Settings\Temp\nsa4B1.exe
C:\Documents and Settings\Client\Local Settings\Temp\nsb3DE.exe
C:\Documents and Settings\Client\Local Settings\Temp\nsc4B4.exe
C:\Documents and Settings\Client\Local Settings\Temp\nsd3E2.exe
C:\Documents and Settings\Client\Local Settings\Temp\nse65E.exe
C:\Documents and Settings\Client\Local Settings\Temp\nse66D.exe
C:\Documents and Settings\Client\Local Settings\Temp\nsj3E6.exe
C:\Documents and Settings\Client\Local Settings\Temp\nsl3E9.exe
C:\Documents and Settings\Client\Local Settings\Temp\nsn664.exe
C:\Documents and Settings\Client\Local Settings\Temp\nso3D7.exe
C:\Documents and Settings\Client\Local Settings\Temp\nso4AE.exe
C:\Documents and Settings\Client\Local Settings\Temp\nso4BA.exe
C:\Documents and Settings\Client\Local Settings\Temp\nsq661.exe
C:\Documents and Settings\Client\Local Settings\Temp\nst4C0.exe
C:\Documents and Settings\Client\Local Settings\Temp\nsu667.exe
C:\Documents and Settings\Client\Local Settings\Temp\nsw4BD.exe
C:\Documents and Settings\Client\Local Settings\Temp\nsw66A.exe
C:\Documents and Settings\Client\Local Settings\Temp\nsz3DB.exe
C:\Documents and Settings\Client\Local Settings\Temp\OB.exe
C:\Documents and Settings\Client\Local Settings\Temp\Quarantine.exe
C:\Documents and Settings\Client\Local Settings\Temp\SkypeSetup.exe
C:\Documents and Settings\Client\Local Settings\Temp\stubhelper.dll
C:\Documents and Settings\Client\Local Settings\Temp\toolbar17525703.exe
C:\Documents and Settings\Client\Local Settings\Temp\toolbar5254375.exe
C:\Documents and Settings\Client\Local Settings\Temp\uninst1.exe
C:\Documents and Settings\Client\Local Settings\Temp\uninstall66038234.exe
C:\Documents and Settings\Client\Local Settings\Temp\uninstall66054406.exe
C:\Documents and Settings\Client\Local Settings\Temp\uninstall66054656.exe
C:\Documents and Settings\Client\Local Settings\Temp\Updater.exe
C:\Documents and Settings\Client\Local Settings\Temp\xmlUpdater.exe
C:\Documents and Settings\Client\Local Settings\Temp\Yappyz.exe


==================== Bamital & volsnap Check =================

C:\Windows\explorer.exe => MD5 is legit
C:\Windows\System32\winlogon.exe
[2008-04-14 11:00] - [2008-04-14 11:00] - 0512000 ____A (Microsoft Corporation) dd73d6b9f6b4cb630cf35b438b540174

C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll
[2008-04-14 11:00] - [2008-04-14 11:00] - 0579584 ____A (Microsoft Corporation) e853f84d3ce2faa2a802e33cf89ac023

C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll
[2008-04-14 11:00] - [2009-02-09 11:53] - 0401408 ____A (Microsoft Corporation) 0203b1aad358f206cb0a3c1f93cce17a

ATTENTION ======> If the system is having audio adware rpcss.dll is patched. Google the MD5, if the MD5 is unique the file is infected.
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit

==================== End Of Log ============================

Publicité


Signaler le contenu de ce document

Publicité