etoile127
Participant
Nombre d'articles : 14

Suite OTL.Txt.Svp dites moi ce que je dois faire exactement,je suis trés nocive question informatique.Je vous remercie par avance :merci2:
OTL logfile created on: 03/12/2013 16:01:19 – Run 1
OTL by OldTimer – Version 3.2.69.0 Folder = C:UsersSaidaDownloadsPrograms
Professional Service Pack 1 (Version = 6.1.7601) – Type = NTWorkstation
Internet Explorer (Version = 9.11.9600.16384)
Locale: 0000040c | Country: France | Language: FRA | Date Format: dd/MM/yyyy

2,00 Gb Total Physical Memory | 0,40 Gb Available Physical Memory | 20,15% Memory free
5,00 Gb Paging File | 3,00 Gb Available in Paging File | 60,02% Paging File free
Paging file location(s): C:pagefile.sys 3070 3070 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:Windows | %ProgramFiles% = C:Program Files
Drive C: | 148,95 Gb Total Space | 24,99 Gb Free Space | 16,78% Space Free | Partition Type: NTFS
Drive E: | 7,45 Gb Total Space | 5,74 Gb Free Space | 77,08% Space Free | Partition Type: FAT32

Computer Name: SAIDA-PC | User Name: Saida | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC – [2013/12/03 11:03:37 | 002,861,328 | —- | M] (Microsoft Corporation) — C:WindowsSoftwareDistributionDownloadInstallAM_Delta.exe
PRC – [2013/12/02 20:24:23 | 000,602,112 | —- | M] (OldTimer Tools) — C:UsersSaidaDownloadsProgramsOTL.exe
PRC – [2013/11/30 20:08:51 | 002,420,248 | —- | M] () — C:Program FilesAVG Secure Searchvprot.exe
PRC – [2013/11/30 20:08:48 | 001,734,680 | —- | M] (AVG Secure Search) — C:Program FilesCommon FilesAVG Secure SearchvToolbarUpdater17.1.2ToolbarUpdater.exe
PRC – [2013/11/30 20:08:45 | 000,159,768 | —- | M] () — C:Program FilesCommon FilesAVG Secure SearchvToolbarUpdater17.1.2loggingserver.exe
PRC – [2013/11/22 08:19:33 | 003,825,232 | —- | M] (Tonec Inc.) — C:Program FilesInternet Download ManagerIDMan.exe
PRC – [2013/11/19 11:21:30 | 000,230,048 | —- | M] (Microsoft Corporation) — C:WindowsSystem32MpSigStub.exe
PRC – [2013/11/14 19:16:50 | 000,508,144 | —- | M] (QFX Software Corporation) — C:Program FilesKeyScramblerKeyScrambler.exe
PRC – [2013/11/14 12:29:33 | 000,863,184 | —- | M] (Google Inc.) — C:Program FilesGoogleChromeApplicationchrome.exe
PRC – [2013/11/11 15:42:02 | 000,764,192 | —- | M] (IObit) — C:Program FilesIObitAdvanced SystemCare 7Monitor.exe
PRC – [2013/10/25 12:07:38 | 001,120,032 | —- | M] () — C:Program FilesIObitAdvanced SystemCare 7RealTimeProtector.exe
PRC – [2013/10/25 12:07:24 | 002,151,200 | —- | M] (IObit) — C:Program FilesIObitLiveUpdateLiveUpdate.exe
PRC – [2013/10/25 12:07:00 | 000,878,368 | —- | M] (IObit) — C:Program FilesIObitAdvanced SystemCare 7ASCService.exe
PRC – [2013/10/23 15:01:10 | 000,300,552 | —- | M] (Microsoft Corporation) — c:Program FilesMicrosoft Security ClientMpCmdRun.exe
PRC – [2013/10/23 15:01:10 | 000,280,288 | —- | M] (Microsoft Corporation) — c:Program FilesMicrosoft Security ClientNisSrv.exe
PRC – [2013/10/23 15:01:10 | 000,022,208 | —- | M] (Microsoft Corporation) — c:Program FilesMicrosoft Security ClientMsMpEng.exe
PRC – [2013/10/23 14:55:28 | 000,948,440 | —- | M] (Microsoft Corporation) — C:Program FilesMicrosoft Security Clientmsseces.exe
PRC – [2013/09/23 00:17:34 | 004,411,952 | —- | M] (AVG Technologies CZ, s.r.o.) — C:Program FilesAVGAVG2013avgui.exe
PRC – [2013/09/23 00:17:30 | 001,117,744 | —- | M] (AVG Technologies CZ, s.r.o.) — C:Program FilesAVGAVG2013avgnsx.exe
PRC – [2013/09/08 17:25:06 | 001,786,704 | —- | M] (CybelSoft) — C:Program Filesma-config.comMaConfigAgent.exe
PRC – [2013/09/04 09:20:38 | 001,432,080 | —- | M] (AVG Technologies CZ, s.r.o.) — C:Program FilesAVGAVG2013avgfws.exe
PRC – [2013/08/23 13:29:54 | 001,174,152 | —- | M] (WiseCleaner.com) — C:Program FilesWiseWise Care 365WiseTray.exe
PRC – [2013/08/16 17:09:02 | 001,549,120 | —- | M] (IObit) — C:Program FilesIObitIObit Malware FighterIMF.exe
PRC – [2013/08/02 01:52:57 | 000,271,360 | —- | M] (Microsoft Corporation) — C:WindowsSystem32conhost.exe
PRC – [2013/07/23 18:09:28 | 000,283,136 | —- | M] (AVG Technologies CZ, s.r.o.) — C:Program FilesAVGAVG2013avgwdsvc.exe
PRC – [2013/07/10 00:33:22 | 000,452,144 | —- | M] (AVG Technologies CZ, s.r.o.) — C:Program FilesAVGAVG2013avgcsrvx.exe
PRC – [2013/07/04 14:53:28 | 000,763,952 | —- | M] (AVG Technologies CZ, s.r.o.) — C:Program FilesAVGAVG2013avgrsx.exe
PRC – [2013/07/04 14:53:10 | 004,939,312 | —- | M] (AVG Technologies CZ, s.r.o.) — C:Program FilesAVGAVG2013avgidsagent.exe
PRC – [2013/04/25 15:54:10 | 000,335,168 | —- | M] (IObit) — C:Program FilesIObitIObit Malware FighterIMFsrv.exe
PRC – [2013/04/04 13:50:32 | 000,701,512 | —- | M] (Malwarebytes Corporation) — C:Program FilesMalwarebytes’ Anti-Malwarembamservice.exe
PRC – [2013/04/04 13:50:32 | 000,532,040 | —- | M] (Malwarebytes Corporation) — C:Program FilesMalwarebytes’ Anti-Malwarembamgui.exe
PRC – [2013/03/18 01:38:48 | 000,799,280 | —- | M] (AVG Technologies CZ, s.r.o.) — C:Program FilesAVGAVG2013avgemcx.exe
PRC – [2013/03/17 16:44:56 | 000,546,712 | —- | M] (Alps Electric Co., Ltd.) — C:Program FilesDellTPadApoint.exe
PRC – [2013/03/17 16:44:56 | 000,057,720 | —- | M] (Alps Electric Co., Ltd.) — C:Program FilesDellTPadApMsgFwd.exe
PRC – [2012/11/23 03:48:41 | 000,049,152 | —- | M] (Microsoft Corporation) — C:WindowsSystem32taskhost.exe
PRC – [2012/06/05 11:07:54 | 000,054,744 | —- | M] (Alps Electric Co., Ltd.) — C:Program FilesDellTPadhidfind.exe
PRC – [2012/06/05 11:07:54 | 000,054,640 | —- | M] (Alps Electric Co., Ltd.) — C:Program FilesDellTPadApntEx.exe
PRC – [2011/03/21 12:55:30 | 000,196,928 | —- | M] (Nitro PDF Software) — C:Program FilesNitro PDFProfessionalNitroPDFDriverService.exe
PRC – [2011/02/25 06:30:54 | 002,616,320 | —- | M] (Microsoft Corporation) — C:Windowsexplorer.exe
PRC – [2010/11/20 13:16:54 | 000,100,864 | —- | M] (Microsoft Corporation) — C:WindowsSystem32audiodg.exe
PRC – [2010/05/20 15:27:24 | 000,139,632 | —- | M] (Microsoft Corporation) — C:Program FilesMicrosoft LifeCamMSCamS32.exe
PRC – [2009/01/26 15:31:10 | 001,153,368 | —- | M] (Safer Networking Ltd.) — C:Program FilesSpybot – Search & DestroySDWinSec.exe
PRC – [2008/11/09 21:48:14 | 000,602,392 | —- | M] (Yahoo! Inc.) — C:Program FilesYahoo!SoftwareUpdateYahooAUService.exe

========== Modules (No Company Name) ==========

MOD – [2013/12/01 17:32:25 | 000,358,400 | —- | M] () — C:UsersSaidaAppDataLocalGoogleChromeUser DataDefaultExtensionsalelhddbbhepgpmgidjdcjakblofbmce3.5.3_0pluginsscreen_capture.dll
MOD – [2013/11/30 20:08:54 | 000,519,704 | —- | M] () — C:Program FilesCommon FilesAVG Secure SearchvToolbarUpdater17.1.2log4cplusU.dll
MOD – [2013/11/30 20:08:54 | 000,142,360 | —- | M] () — C:Program FilesCommon FilesAVG Secure SearchSiteSafetyInstaller17.1.2SiteSafety.dll
MOD – [2013/11/30 20:08:51 | 002,420,248 | —- | M] () — C:Program FilesAVG Secure Searchvprot.exe
MOD – [2013/11/14 12:29:31 | 000,399,312 | —- | M] () — C:Program FilesGoogleChromeApplication31.0.1650.57ppgooglenaclpluginchrome.dll
MOD – [2013/11/14 12:29:29 | 004,055,504 | —- | M] () — C:Program FilesGoogleChromeApplication31.0.1650.57pdf.dll
MOD – [2013/11/14 12:28:37 | 000,702,416 | —- | M] () — C:Program FilesGoogleChromeApplication31.0.1650.57libglesv2.dll
MOD – [2013/11/14 12:28:36 | 000,099,792 | —- | M] () — C:Program FilesGoogleChromeApplication31.0.1650.57libegl.dll
MOD – [2013/11/14 12:28:34 | 001,619,408 | —- | M] () — C:Program FilesGoogleChromeApplication31.0.1650.57ffmpegsumo.dll
MOD – [2013/10/25 12:07:38 | 001,120,032 | —- | M] () — C:Program FilesIObitAdvanced SystemCare 7RealTimeProtector.exe
MOD – [2013/01/15 18:48:26 | 000,348,992 | —- | M] () — C:Program FilesIObitAdvanced SystemCare 7madexcept_.bpl
MOD – [2013/01/15 18:48:26 | 000,051,008 | —- | M] () — C:Program FilesIObitAdvanced SystemCare 7maddisAsm_.bpl
MOD – [2013/01/15 18:48:24 | 000,183,616 | —- | M] () — C:Program FilesIObitAdvanced SystemCare 7madbasic_.bpl
MOD – [2011/03/21 12:55:48 | 000,115,008 | —- | M] () — C:Program FilesNitro PDFProfessionalNPShellExtension.dll
MOD – [2010/03/15 11:28:22 | 000,141,824 | —- | M] () — C:Program FilesWinRARRarExt.dll

========== Services (SafeList) ==========

SRV – File not found [Auto | Running] — C:Program FilesSpybot — (SBSDWSCService)
SRV – [2013/11/30 20:08:48 | 001,734,680 | —- | M] (AVG Secure Search) [Auto | Running] — C:Program FilesCommon FilesAVG Secure SearchvToolbarUpdater17.1.2ToolbarUpdater.exe — (vToolbarUpdater17.1.2)
SRV – [2013/10/25 12:07:24 | 002,151,200 | —- | M] (IObit) [Auto | Running] — C:Program FilesIObitLiveUpdateLiveUpdate.exe — (LiveUpdateSvc)
SRV – [2013/10/25 12:07:00 | 000,878,368 | —- | M] (IObit) [Auto | Running] — C:Program FilesIObitAdvanced SystemCare 7ASCService.exe — (AdvancedSystemCareService7)
SRV – [2013/10/23 15:01:10 | 000,280,288 | —- | M] (Microsoft Corporation) [On_Demand | Running] — c:Program FilesMicrosoft Security ClientNisSrv.exe — (NisSrv)
SRV – [2013/10/23 15:01:10 | 000,022,208 | —- | M] (Microsoft Corporation) [Auto | Running] — c:Program FilesMicrosoft Security ClientMsMpEng.exe — (MsMpSvc)
SRV – [2013/10/09 19:18:01 | 000,257,416 | —- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] — C:WindowsSystem32MacromedFlashFlashPlayerUpdateService.exe — (AdobeFlashPlayerUpdateSvc)
SRV – [2013/09/27 19:51:47 | 001,343,400 | —- | M] () [On_Demand | Stopped] — C:WindowsSystem32WatWatAdminSvc.exe — (WatAdminSvc)
SRV – [2013/09/24 19:01:27 | 000,108,032 | —- | M] (Microsoft Corporation) [On_Demand | Stopped] — C:WindowsSystem32IEEtwCollector.exe — (IEEtwCollectorService)
SRV – [2013/09/08 17:25:06 | 001,786,704 | —- | M] (CybelSoft) [Auto | Running] — C:Program Filesma-config.comMaConfigAgent.exe — (MaConfigAgent)
SRV – [2013/09/04 09:20:38 | 001,432,080 | —- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] — C:Program FilesAVGAVG2013avgfws.exe — (avgfws)
SRV – [2013/07/23 18:09:28 | 000,283,136 | —- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] — C:Program FilesAVGAVG2013avgwdsvc.exe — (avgwd)
SRV – [2013/07/04 14:53:10 | 004,939,312 | —- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] — C:Program FilesAVGAVG2013avgidsagent.exe — (AVGIDSAgent)
SRV – [2013/05/27 05:57:27 | 000,680,960 | —- | M] (Microsoft Corporation) [On_Demand | Stopped] — C:Program FilesWindows DefenderMpSvc.dll — (WinDefend)
SRV – [2013/04/25 17:12:00 | 000,580,232 | —- | M] (WiseCleaner.com) [Auto | Stopped] — C:Program FilesWiseWise Care 365BootTime.exe — (WiseBootAssistant)
SRV – [2013/04/25 15:54:10 | 000,335,168 | —- | M] (IObit) [Auto | Running] — C:Program FilesIObitIObit Malware FighterIMFsrv.exe — (IMFservice)
SRV – [2013/04/04 13:50:32 | 000,701,512 | —- | M] (Malwarebytes Corporation) [Auto | Running] — C:Program FilesMalwarebytes’ Anti-Malwarembamservice.exe — (MBAMService)
SRV – [2011/03/21 12:55:30 | 000,196,928 | —- | M] (Nitro PDF Software) [Auto | Running] — C:Program FilesNitro PDFProfessionalNitroPDFDriverService.exe — (NitroDriverReadSpool)
SRV – [2010/05/20 15:27:24 | 000,139,632 | —- | M] (Microsoft Corporation) [Auto | Running] — C:Program FilesMicrosoft LifeCamMSCamS32.exe — (MSCamSvc)
SRV – [2009/07/14 02:16:15 | 000,016,384 | —- | M] (Microsoft Corporation) [On_Demand | Stopped] — C:WindowsSystem32StorSvc.dll — (StorSvc)
SRV – [2009/07/14 02:16:13 | 000,025,088 | —- | M] (Microsoft Corporation) [Disabled | Stopped] — C:WindowsSystem32sensrsvc.dll — (SensrSvc)
SRV – [2009/07/14 02:16:12 | 001,004,544 | —- | M] (Microsoft Corporation) [Disabled | Stopped] — C:WindowsSystem32PeerDistSvc.dll — (PeerDistSvc)
SRV – [2008/11/09 21:48:14 | 000,602,392 | —- | M] (Yahoo! Inc.) [Auto | Running] — C:Program FilesYahoo!SoftwareUpdateYahooAUService.exe — (YahooAUService)

========== Driver Services (SafeList) ==========

DRV – File not found [Kernel | Boot | Stopped] — — (sptd)
DRV – File not found [Kernel | Boot | Stopped] — System32driversBootDefragDriver.sys — (BootDefragDriver)
DRV – File not found [Kernel | Auto | Stopped] — — (ATE_PROCMON)
DRV – File not found [File_System | Boot | Stopped] — — (77267374)
DRV – [2013/11/30 20:08:55 | 000,037,664 | —- | M] (AVG Technologies) [Kernel | System | Running] — C:WindowsSystem32driversavgtpx86.sys — (avgtp)
DRV – [2013/11/08 00:41:38 | 000,108,000 | —- | M] (Tonec Inc.) [Kernel | Auto | Running] — C:WindowsSystem32driversidmwfp.sys — (IDMWFP)
DRV – [2013/09/27 09:53:06 | 000,104,768 | —- | M] (Microsoft Corporation) [Kernel | Auto | Running] — C:WindowsSystem32driversNisDrvWFP.sys — (NisDrv)
DRV – [2013/09/10 00:34:48 | 000,022,328 | —- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] — C:WindowsSystem32driversavgidsshimx.sys — (AVGIDSShim)
DRV – [2013/09/05 00:43:42 | 000,039,224 | —- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] — C:WindowsSystem32driversavgrkx86.sys — (Avgrkx86)
DRV – [2013/08/20 06:02:14 | 000,084,248 | —- | M] (DEVGURU Co., LTD.(http://www.devguru.co.kr)) [Kernel | On_Demand | Stopped] — C:WindowsSystem32driversssudbus.sys — (dg_ssudbus)
DRV – [2013/07/20 00:51:00 | 000,246,072 | —- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] — C:WindowsSystem32driversavglogx.sys — (Avglogx)
DRV – [2013/07/20 00:50:56 | 000,208,184 | —- | M] (AVG Technologies CZ, s.r.o.) [File_System | System | Running] — C:WindowsSystem32driversavgidsdriverx.sys — (AVGIDSDriver)
DRV – [2013/07/20 00:50:56 | 000,060,216 | —- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] — C:WindowsSystem32driversavgidshx.sys — (AVGIDSHX)
DRV – [2013/07/20 00:50:50 | 000,171,320 | —- | M] (AVG Technologies CZ, s.r.o.) [File_System | System | Running] — C:WindowsSystem32driversavgldx86.sys — (Avgldx86)
DRV – [2013/07/01 00:45:28 | 000,096,568 | —- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] — C:WindowsSystem32driversavgmfx86.sys — (Avgmfx86)
DRV – [2013/05/31 15:53:18 | 000,209,016 | —- | M] (QFX Software Corporation) [Kernel | On_Demand | Running] — C:WindowsSystem32driverskeyscrambler.sys — (KeyScrambler)
DRV – [2013/04/09 16:46:21 | 000,016,880 | —- | M] (Intel Corporation) [Kernel | Boot | Running] — C:WindowsSystem32driversiusb3hcs.sys — (iusb3hcs)
DRV – [2013/04/04 13:50:32 | 000,022,856 | —- | M] (Malwarebytes Corporation) [File_System | On_Demand | Running] — C:WindowsSystem32driversmbam.sys — (MBAMProtector)
DRV – [2013/03/26 18:34:32 | 000,020,944 | —- | M] (IObit.com) [Kernel | On_Demand | Running] — C:Program FilesIObitIObit Malware FighterDriverswin7_x86UrlFilter.sys — (UrlFilter)
DRV – [2013/03/26 18:34:30 | 000,031,752 | —- | M] (IObit.com) [Kernel | On_Demand | Running] — C:Program FilesIObitIObit Malware FighterDriverswin7_x86RegFilter.sys — (RegFilter)
DRV – [2013/03/23 14:49:18 | 000,021,480 | —- | M] (IObit) [File_System | On_Demand | Running] — C:Program FilesIObitIObit Malware FighterDriverswin7_x86FileMonitor.sys — (FileMonitor)
DRV – [2013/03/21 02:08:24 | 000,182,072 | —- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] — C:WindowsSystem32driversavgtdix.sys — (Avgtdix)
DRV – [2013/03/17 16:44:56 | 000,373,112 | —- | M] (Alps Electric Co., Ltd.) [Kernel | On_Demand | Running] — C:WindowsSystem32driversApfiltr.sys — (ApfiltrService)
DRV – [2013/03/14 16:51:18 | 000,015,872 | —- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] — C:WindowsSystem32driversusb80236.sys — (usbrndis6)
DRV – [2013/02/19 20:32:54 | 010,919,200 | —- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] — C:WindowsSystem32driversnvlddmkm.sys — (nvlddmkm)
DRV – [2013/01/16 18:22:43 | 000,014,848 | —- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] — C:WindowsSystem32driversrdpvideominiport.sys — (RdpVideoMiniport)
DRV – [2013/01/16 18:22:40 | 000,049,664 | —- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] — C:WindowsSystem32driversTsUsbFlt.sys — (TsUsbFlt)
DRV – [2012/09/06 20:02:49 | 000,015,248 | —- | M] (PenMount) [Kernel | On_Demand | Running] — C:WindowsSystem32driverspmkbdfltr.sys — (pmkbdfltr)
DRV – [2012/09/04 10:39:32 | 000,050,296 | —- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] — C:WindowsSystem32driversavgfwd6x.sys — (Avgfwfd)
DRV – [2011/12/18 12:44:22 | 000,016,384 | —- | M] (Primax Electronics Ltd.) [Kernel | On_Demand | Stopped] — C:WindowsSystem32driversPELMOUSE.SYS — (pelmouse)
DRV – [2011/12/15 19:29:42 | 000,026,624 | —- | M] (The OpenVPN Project) [Kernel | On_Demand | Stopped] — C:WindowsSystem32driverstap0901.sys — (tap0901)
DRV – [2011/07/28 18:37:10 | 000,045,288 | —- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] — C:WindowsSystem32driversdc3d.sys — (dc3d)
DRV – [2011/07/21 19:55:50 | 000,016,640 | —- | M] (CybelSoft) [Kernel | On_Demand | Stopped] — C:Program Filesma-config.comDriversdriverhardwarev2.sys — (driverhardwarev2)
DRV – [2010/11/20 13:30:15 | 000,175,360 | —- | M] (Microsoft Corporation) [Kernel | Boot | Running] — C:WindowsSystem32driversvmbus.sys — (vmbus)
DRV – [2010/11/20 13:30:15 | 000,040,704 | —- | M] (Microsoft Corporation) [Kernel | Boot | Running] — C:WindowsSystem32driversvmstorfl.sys — (storflt)
DRV – [2010/11/20 13:30:15 | 000,028,032 | —- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] — C:WindowsSystem32driversstorvsc.sys — (storvsc)
DRV – [2010/11/20 10:59:44 | 000,035,968 | —- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] — C:WindowsSystem32driverswinusb.sys — (WinUsb)
DRV – [2010/11/20 10:14:45 | 000,017,920 | —- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] — C:WindowsSystem32driversVMBusHID.sys — (VMBusHID)
DRV – [2010/11/20 10:14:41 | 000,005,632 | —- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] — C:WindowsSystem32driversvms3cap.sys — (s3cap)
DRV – [2010/09/16 19:49:00 | 001,559,552 | —- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Stopped] — C:WindowsSystem32driversathur.sys — (athur)
DRV – [2010/07/05 09:24:54 | 000,036,608 | —- | M] () [Kernel | On_Demand | Stopped] — C:WindowsSystem32FsUsbExDisk.Sys — (FsUsbExDisk)
DRV – [2010/05/20 15:27:26 | 001,961,072 | —- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] — C:WindowsSystem32driversVX1000.sys — (VX1000)
DRV – [2009/07/23 22:02:56 | 000,043,008 | —- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand | Running] — C:WindowsSystem32driversRtnicxp.sys — (RTL8023xp)
DRV – [2009/07/14 00:45:33 | 000,083,456 | —- | M] (Brother Industries Ltd.) [Kernel | On_Demand | Stopped] — C:WindowsSystem32driversserial.sys — (Serial)
DRV – [2003/02/11 13:25:14 | 000,009,216 | —- | M] (Primax Electronics Ltd.) [Kernel | On_Demand | Stopped] — C:WindowsSystem32driverspelusblf.sys — (pelusblf)

========== Standard Registry (SafeList) ==========

========== Internet Explorer ==========

IE – HKLMSOFTWAREMicrosoftInternet ExplorerMain,Default_Page_URL = about:blank
IE – HKLMSOFTWAREMicrosoftInternet ExplorerMain,Default_Search_URL = about:blank
IE – HKLMSOFTWAREMicrosoftInternet ExplorerMain,Search Bar = about:blank
IE – HKLMSOFTWAREMicrosoftInternet ExplorerMain,Search Page = about:blank
IE – HKLMSOFTWAREMicrosoftInternet ExplorerMain,Start Default_Page_URL =
IE – HKLMSOFTWAREMicrosoftInternet ExplorerMain,Start Page = about:blank
IE – HKLMSOFTWAREMicrosoftInternet ExplorerSearch,Default_Search_URL =
IE – HKLMSOFTWAREMicrosoftInternet ExplorerSearch,Search Bar =
IE – HKLMSOFTWAREMicrosoftInternet ExplorerSearch,Search Page =
IE – HKLMSOFTWAREMicrosoftInternet ExplorerSearch,Start Default_Page_URL =
IE – HKLMSOFTWAREMicrosoftInternet ExplorerSearch,Start Page =
IE – HKLM..SearchScopes,DefaultScope =
IE – HKLM..SearchScopes{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: « URL » = http://www.bing.com/search?q= » onclick= »window.open(this.href);return false;{searchTerms}&FORM=IE8SRC
IE – HKLM..SearchScopes{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: « URL » = http://www.google.com/search?q= » onclick= »window.open(this.href);return false;{searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7

IE – HKU.DEFAULT..URLSearchHook: {81017EA9-9AA8-4A6A-9734-7AF40E7D593F} – No CLSID value found
IE – HKU.DEFAULT..SearchScopes,DefaultScope =
IE – HKU.DEFAULT..SearchScopes{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: « URL » = http://www.bing.com/search?q= » onclick= »window.open(this.href);return false;{searchTerms}&src=IE-SearchBox&FORM=IE11SR
IE – HKU.DEFAULT..SearchScopes{295BEC74-2563-4708-80A2-9440850E387C}: « URL » = http://fr.search.yahoo.com/search?p= » onclick= »window.open(this.href);return false;{searchTerms}&fr=chr-tyc8
IE – HKU.DEFAULT..SearchScopes{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: « URL » = http://www.google.com/search?q= » onclick= »window.open(this.href);return false;{searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7
IE – HKU.DEFAULTSoftwareMicrosoftWindowsCurrentVersionInternet Settings: « ProxyEnable » = 0

IE – HKUS-1-5-18..URLSearchHook: {81017EA9-9AA8-4A6A-9734-7AF40E7D593F} – No CLSID value found
IE – HKUS-1-5-18..SearchScopes,DefaultScope =
IE – HKUS-1-5-18..SearchScopes{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: « URL » = http://www.bing.com/search?q= » onclick= »window.open(this.href);return false;{searchTerms}&src=IE-SearchBox&FORM=IE11SR
IE – HKUS-1-5-18..SearchScopes{295BEC74-2563-4708-80A2-9440850E387C}: « URL » = http://fr.search.yahoo.com/search?p= » onclick= »window.open(this.href);return false;{searchTerms}&fr=chr-tyc8
IE – HKUS-1-5-18..SearchScopes{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: « URL » = http://www.google.com/search?q= » onclick= »window.open(this.href);return false;{searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7
IE – HKUS-1-5-18SoftwareMicrosoftWindowsCurrentVersionInternet Settings: « ProxyEnable » = 0

IE – HKUS-1-5-19..SearchScopes,DefaultScope =

IE – HKUS-1-5-20..SearchScopes,DefaultScope =

IE – HKUS-1-5-21-4121471940-3825467980-2753460516-1001SOFTWAREMicrosoftInternet ExplorerMain,Default_Page_URL = http://www.google.com » onclick= »window.open(this.href);return false;
IE – HKUS-1-5-21-4121471940-3825467980-2753460516-1001SOFTWAREMicrosoftInternet ExplorerMain,Default_Search_URL = about:blank
IE – HKUS-1-5-21-4121471940-3825467980-2753460516-1001SOFTWAREMicrosoftInternet ExplorerMain,Search Bar = about:blank
IE – HKUS-1-5-21-4121471940-3825467980-2753460516-1001SOFTWAREMicrosoftInternet ExplorerMain,Search Page = about:blank
IE – HKUS-1-5-21-4121471940-3825467980-2753460516-1001SOFTWAREMicrosoftInternet ExplorerMain,Start Default_Page_URL =
IE – HKUS-1-5-21-4121471940-3825467980-2753460516-1001SOFTWAREMicrosoftInternet ExplorerMain,Start Page = http://www.google.com » onclick= »window.open(this.href);return false;
IE – HKUS-1-5-21-4121471940-3825467980-2753460516-1001SOFTWAREMicrosoftInternet ExplorerMain,Start Page Redirect Cache = http://fr.msn.com/?ocid=iehp » onclick= »window.open(this.href);return false;
IE – HKUS-1-5-21-4121471940-3825467980-2753460516-1001SOFTWAREMicrosoftInternet ExplorerMain,Start Page Redirect Cache AcceptLangs = fr
IE – HKUS-1-5-21-4121471940-3825467980-2753460516-1001SOFTWAREMicrosoftInternet ExplorerMain,Start Page Redirect Cache_TIMESTAMP = B5 D0 4B 9C CA 9B CC 01 [binary data]
IE – HKUS-1-5-21-4121471940-3825467980-2753460516-1001SOFTWAREMicrosoftInternet ExplorerSearch,Default_Search_URL =
IE – HKUS-1-5-21-4121471940-3825467980-2753460516-1001SOFTWAREMicrosoftInternet ExplorerSearch,Search Bar =
IE – HKUS-1-5-21-4121471940-3825467980-2753460516-1001SOFTWAREMicrosoftInternet ExplorerSearch,Search Page =
IE – HKUS-1-5-21-4121471940-3825467980-2753460516-1001SOFTWAREMicrosoftInternet ExplorerSearch,Start Default_Page_URL =
IE – HKUS-1-5-21-4121471940-3825467980-2753460516-1001SOFTWAREMicrosoftInternet ExplorerSearch,Start Page =
IE – HKUS-1-5-21-4121471940-3825467980-2753460516-1001..URLSearchHook: {81017EA9-9AA8-4A6A-9734-7AF40E7D593F} – No CLSID value found
IE – HKUS-1-5-21-4121471940-3825467980-2753460516-1001..URLSearchHook: {fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5} – No CLSID value found
IE – HKUS-1-5-21-4121471940-3825467980-2753460516-1001..SearchScopes,DefaultScope = {6A1806CD-94D4-4689-BA73-E35EA1EA9990}
IE – HKUS-1-5-21-4121471940-3825467980-2753460516-1001..SearchScopes{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: « URL » = http://www.bing.com/search?q= » onclick= »window.open(this.href);return false;{searchTerms}&src=IE-SearchBox&FORM=IE11SR
IE – HKUS-1-5-21-4121471940-3825467980-2753460516-1001..SearchScopes{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: « URL » = http://www.google.com/search?q= » onclick= »window.open(this.href);return false;{searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7&rlz=1I7GGLJ_frFR456
IE – HKUS-1-5-21-4121471940-3825467980-2753460516-1001..SearchScopes{CB37CAD6-B969-41E8-8A3C-8EFEE6692A55}: « URL » = http://search.certified-toolbar.com?si=38268&st=bs&tid=77&q= » onclick= »window.open(this.href);return false;{searchTerms}
IE – HKUS-1-5-21-4121471940-3825467980-2753460516-1001SoftwareMicrosoftWindowsCurrentVersionInternet Settings: « ProxyEnable » = 0
IE – HKUS-1-5-21-4121471940-3825467980-2753460516-1001SoftwareMicrosoftWindowsCurrentVersionInternet Settings: « ProxyOverride » =

========== FireFox ==========

FF – HKLMSoftwareMozillaPlugins@adobe.com/FlashPlayer: C:Windowssystem32MacromedFlashNPSWF32_11_9_900_117.dll ()
FF – HKLMSoftwareMozillaPlugins@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin: C:Program FilesCommon FilesAVG Secure SearchSiteSafetyInstaller17.1.2\npsitesafety.dll ()
FF – HKLMSoftwareMozillaPlugins@java.com/DTPlugin,version=10.25.2: C:Windowssystem32npDeployJava1.dll (Oracle Corporation)
FF – HKLMSoftwareMozillaPlugins@microsoft.com/GENUINE: disabled File not found
FF – HKLMSoftwareMozillaPlugins@Microsoft.com/NpCtrl,version=1.0: c:Program FilesMicrosoft Silverlight5.1.20913.0npctrl.dll ( Microsoft Corporation)
FF – HKLMSoftwareMozillaPlugins@microsoft.com/WLPG,version=15.4.3502.0922: C:Program FilesWindows LivePhoto GalleryNPWLPG.dll (Microsoft Corporation)
FF – HKLMSoftwareMozillaPlugins@microsoft.com/WLPG,version=15.4.3538.0513: C:Program FilesWindows LivePhoto GalleryNPWLPG.dll (Microsoft Corporation)
FF – HKLMSoftwareMozillaPlugins@microsoft.com/WLPG,version=15.4.3555.0308: C:Program FilesWindows LivePhoto GalleryNPWLPG.dll (Microsoft Corporation)
FF – HKLMSoftwareMozillaPlugins@tools.google.com/Google Update;version=3: C:Program FilesGoogleUpdate1.3.21.165npGoogleUpdate3.dll (Google Inc.)
FF – HKLMSoftwareMozillaPlugins@tools.google.com/Google Update;version=9: C:Program FilesGoogleUpdate1.3.21.165npGoogleUpdate3.dll (Google Inc.)
FF – HKLMSoftwareMozillaPlugins@videolan.org/vlc,version=2.0.8: C:Program FilesVideoLANVLCnpvlc.dll (VideoLAN)
FF – HKCUSoftwareMozillaPlugins@tools.google.com/Google Update;version=3: C:UsersSaidaAppDataLocalGoogleUpdate1.3.21.165npGoogleUpdate3.dll (Google Inc.)
FF – HKCUSoftwareMozillaPlugins@tools.google.com/Google Update;version=9: C:UsersSaidaAppDataLocalGoogleUpdate1.3.21.165npGoogleUpdate3.dll (Google Inc.)

FF – HKEY_CURRENT_USERsoftwaremozillaFirefoxExtensions\mozilla_cc@internetdownloadmanager.com: C:UsersSaidaAppDataRoamingIDMidmmzcc5 [2013/11/26 17:28:49 | 000,000,000 | —D | M]
FF – HKEY_CURRENT_USERsoftwaremozillaSeaMonkeyExtensions\mozilla_cc@internetdownloadmanager.com: C:UsersSaidaAppDataRoamingIDMidmmzcc5 [2013/11/26 17:28:49 | 000,000,000 | —D | M]

[2013/12/01 16:57:04 | 000,000,000 | —D | M] (No name found) — C:UsersSaidaAppDataRoamingmozillaFirefoxProfilesextensions
[2013/12/01 16:54:49 | 000,000,000 | —D | M] (No name found) — C:UsersSaidaAppDataRoamingmozillaFirefoxProfilesextensionsextensions
[2013/11/22 17:05:18 | 000,000,000 | —D | M] (Advanced SystemCare Surfing Protection) — C:UsersSaidaAppDataRoamingmozillaFirefoxProfilesextensionsextensionsascsurfingprotection@iobit.com
[2013/06/30 09:44:04 | 000,239,491 | —- | M] () (No name found) — C:UsersSaidaAppDataRoamingmozillafirefoxprofilesextensionstrtv3@trtv.com.xpi
[2013/09/27 18:33:14 | 000,000,000 | —D | M] (No name found) — C:Program FilesMozilla Firefoxextensions

========== Chrome ==========

CHR – default_search_provider: Google (Enabled)
CHR – default_search_provider: search_url = {google:baseURL}search?q={searchTerms}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:bookmarkBarPinned}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}{google:omniboxStartMarginParameter}ie={inputEncoding}
CHR – default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&q={searchTerms}{google:zeroPrefixUrl}{google:pageClassification}sugkey={google:suggestAPIKeyParameter},
CHR – homepage:
CHR – Extension: DownloadAll = C:UsersSaidaAppDataLocalGoogleChromeUser DataDefaultExtensionsajffocjdcmpgjmdfdfkdfdbkjafbkcke2.1.1_0
CHR – Extension: Superbe capture d’cran : capturer et annoter = C:UsersSaidaAppDataLocalGoogleChromeUser DataDefaultExtensionsalelhddbbhepgpmgidjdcjakblofbmce3.5.3_0
CHR – Extension: Mto (extension) = C:UsersSaidaAppDataLocalGoogleChromeUser DataDefaultExtensionsbeapnbfmjmjhhfpaoajfhjbbfnnlfpnc.9.0.7_0
CHR – Extension: Adblock Plus = C:UsersSaidaAppDataLocalGoogleChromeUser DataDefaultExtensionscfhdojbkjhnklbpkdaibdccddilifddb1.6.1_0
CHR – Extension: Vimeo Download Videos = C:UsersSaidaAppDataLocalGoogleChromeUser DataDefaultExtensionsgeeljcibkkackafmeepgadbfgmpjmdeg3.0.0_0
CHR – Extension: IDM Integration Module = C:UsersSaidaAppDataLocalGoogleChromeUser DataDefaultExtensionsjeaohhlajejodfjadcponpnjgkiikocn6.18.7_0
CHR – Extension: AVG Secure Search = C:UsersSaidaAppDataLocalGoogleChromeUser DataDefaultExtensionsndibdjnfmopecpmkdieinmbadjfpblof17.1.2.1_0
CHR – Extension: Advanced SystemCare Surfing Protection = C:UsersSaidaAppDataLocalGoogleChromeUser DataDefaultExtensionsnfengeggddojhakldhlpjdlddgkkjkdd1.0.0_0
CHR – Extension: GreyGray = C:UsersSaidaAppDataLocalGoogleChromeUser DataDefaultExtensionsnhogbcndagiknbfomjgdeghehkljalhi1.0.0_0
CHR – Extension: GoogleWallet = C:UsersSaidaAppDataLocalGoogleChromeUser DataDefaultExtensionsnmmhkkegccagdldgiimedpiccmgmieda.0.5.0_1
CHR – Extension: Adblock Pro = C:UsersSaidaAppDataLocalGoogleChromeUser DataDefaultExtensionsocifcklkibdehekfnmflempfgjhbedch2.8_0
CHR – Extension: Print Friendly & PDF = C:UsersSaidaAppDataLocalGoogleChromeUser DataDefaultExtensionsohlencieiipommannpdfcmfdpjjmeolj2.3_0
CHR – Extension: OneClick Cleaner for Chrome = C:UsersSaidaAppDataLocalGoogleChromeUser DataDefaultExtensionsoncckmaelaecccmaniihojgeopkcajfh.9.0.7_0

O1 HOSTS File: ([2013/11/06 15:52:10 | 000,450,681 | R— | M]) – C:WindowsSystem32driversetchosts
O1 – Hosts: 127.0.0.1 http://www.007guard.com
O1 – Hosts: 127.0.0.1 007guard.com
O1 – Hosts: 127.0.0.1 008i.com
O1 – Hosts: 127.0.0.1 http://www.008k.com
O1 – Hosts: 127.0.0.1 008k.com
O1 – Hosts: 127.0.0.1 http://www.00hq.com
O1 – Hosts: 127.0.0.1 00hq.com
O1 – Hosts: 127.0.0.1 010402.com
O1 – Hosts: 127.0.0.1 http://www.032439.com
O1 – Hosts: 127.0.0.1 032439.com
O1 – Hosts: 127.0.0.1 http://www.0scan.com
O1 – Hosts: 127.0.0.1 0scan.com
O1 – Hosts: 127.0.0.1 http://www.1000gratisproben.com
O1 – Hosts: 127.0.0.1 1000gratisproben.com
O1 – Hosts: 127.0.0.1 1001namen.com
O1 – Hosts: 127.0.0.1 http://www.1001namen.com
O1 – Hosts: 127.0.0.1 100888290cs.com
O1 – Hosts: 127.0.0.1 http://www.100888290cs.com
O1 – Hosts: 127.0.0.1 http://www.100sexlinks.com
O1 – Hosts: 127.0.0.1 100sexlinks.com
O1 – Hosts: 127.0.0.1 http://www.10sek.com
O1 – Hosts: 127.0.0.1 10sek.com
O1 – Hosts: 127.0.0.1 http://www.1-2005-search.com
O1 – Hosts: 127.0.0.1 1-2005-search.com
O1 – Hosts: 127.0.0.1 http://www.123fporn.info
O1 – Hosts: 15468 more lines…
O2 – BHO: (IDM integration (IDMIEHlprObj Class)) – {0055C089-8582-441B-A0BF-17B458C2A3A8} – C:Program FilesInternet Download ManagerIDMIECC.dll (Internet Download Manager, Tonec Inc.)
O2 – BHO: (ExplorerWnd Helper) – {10921475-03CE-4E04-90CE-E2E7EF20C814} – C:Program FilesIObitIObit UninstallerUninstallExplorer32.dll (IObit)
O2 – BHO: (Spybot-S&D IE Protection) – {53707962-6F74-2D53-2644-206D7942484F} – C:Program FilesSpybot – Search & DestroySDHelper.dll (Safer Networking Limited)
O2 – BHO: (no name) – {95B7759C-8C7F-4BF1-B163-73684A933233} – No CLSID value found.
O2 – BHO: (Advanced SystemCare Browser Protection) – {BA0C978D-D909-49B6-AFE2-8BDE245DC7E6} – C:Program FilesIObitSurfing ProtectionBrowerProtectASCPlugin_Protection.dll (IObit)
O2 – BHO: (SingleInstance Class) – {FDAD4DA1-61A2-4FD8-9C17-86F7AC245081} – C:Program FilesYahoo!CompanionInstallscpn0YTSingleInstance.dll (Yahoo! Inc)
O3 – HKLM..Toolbar: (no name) – !{03EB0E9C-7A91-4381-A220-9B52B641CDB1} – No CLSID value found.
O3 – HKLM..Toolbar: (no name) – {95B7759C-8C7F-4BF1-B163-73684A933233} – No CLSID value found.
O3 – HKLM..Toolbar: (no name) – 10 – No CLSID value found.
O4 – HKLM..Run: [Apoint] C:Program FilesDellTPadApoint.exe (Alps Electric Co., Ltd.)
O4 – HKLM..Run: [AVG_UI] C:Program FilesAVGAVG2013avgui.exe (AVG Technologies CZ, s.r.o.)
O4 – HKLM..Run: [IObit Malware Fighter] C:Program FilesIObitIObit Malware FighterIMF.exe (IObit)
O4 – HKLM..Run: [KeyScrambler] C:Program FilesKeyScramblerkeyscrambler.exe (QFX Software Corporation)
O4 – HKLM..Run: [MSC] c:Program FilesMicrosoft Security Clientmsseces.exe (Microsoft Corporation)
O4 – HKLM..Run: [vProt] C:Program FilesAVG Secure Searchvprot.exe ()
O4 – HKU.DEFAULT..Run: [Advanced SystemCare 7] C:Program FilesIObitAdvanced SystemCare 7ASCTray.exe (IObit)
O4 – HKUS-1-5-18..Run: [Advanced SystemCare 7] C:Program FilesIObitAdvanced SystemCare 7ASCTray.exe (IObit)
O4 – HKUS-1-5-21-4121471940-3825467980-2753460516-1001..Run: [F650957478D12BD831629AC6E9B60F9A2BAB7454._service_run] C:Program FilesGoogleChromeApplicationchrome.exe (Google Inc.)
O4 – HKUS-1-5-21-4121471940-3825467980-2753460516-1001..Run: [IDMan] C:Program FilesInternet Download ManagerIDMan.exe (Tonec Inc.)
O4 – HKUS-1-5-19..RunOnce: [mctadmin] C:WindowsSystem32mctadmin.exe (Microsoft Corporation)
O4 – HKUS-1-5-20..RunOnce: [mctadmin] C:WindowsSystem32mctadmin.exe (Microsoft Corporation)
O6 – HKLMSOFTWAREMicrosoftWindowsCurrentVersionpoliciesExplorer: NoDriveTypeAutoRun = 255
O6 – HKLMSOFTWAREMicrosoftWindowsCurrentVersionpoliciesSystem: ConsentPromptBehaviorAdmin = 5
O6 – HKLMSOFTWAREMicrosoftWindowsCurrentVersionpoliciesSystem: ConsentPromptBehaviorUser = 3
O7 – HKUS-1-5-21-4121471940-3825467980-2753460516-1001SOFTWAREMicrosoftWindowsCurrentVersionpoliciesExplorer: NoDriveTypeAutoRun = 221
O7 – HKUS-1-5-21-4121471940-3825467980-2753460516-1001SOFTWAREMicrosoftWindowsCurrentVersionpoliciesExplorer: NoLowDiskSpaceChecks = 1
O8 – Extra context menu item: &Download All using 4shared Desktop – res://C » onclick= »window.open(this.href);return false;:UsersSaida4shared DesktopDesktop.32/D_ALL_LINK File not found
O8 – Extra context menu item: &Download using 4shared Desktop – res://C » onclick= »window.open(this.href);return false;:UsersSaida4shared DesktopDesktop.32/D_ONE_LINK File not found
O8 – Extra context menu item: Télécharger avec IDM – C:Program FilesInternet Download ManagerIEExt.htm ()
O8 – Extra context menu item: Télécharger tous les liens avec IDM – C:Program FilesInternet Download ManagerIEGetAll.htm ()
O9 – Extra ‘Tools’ menuitem : Spybot – Search & Destroy Configuration – {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} – C:Program FilesSpybot – Search & DestroySDHelper.dll (Safer Networking Limited)
O13 – gopher Prefix: missing
O15 – HKU.DEFAULT..Trusted Domains: ma-config.com ([]http in Trusted sites)
O15 – HKU.DEFAULT..Trusted Domains: touslesdrivers.com ([]http in Trusted sites)
O15 – HKUS-1-5-18..Trusted Domains: ma-config.com ([]http in Trusted sites)
O15 – HKUS-1-5-18..Trusted Domains: touslesdrivers.com ([]http in Trusted sites)
O16 – DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.7.0/jinstall-1_7_0_11-windows-i586.cab » onclick= »window.open(this.href);return false; (Reg Error: Value error.)
O16 – DPF: {CAFEEFAC-0017-0000-0011-ABCDEFFEDCBA} http://java.sun.com/update/1.7.0/jinstall-1_7_0_11-windows-i586.cab » onclick= »window.open(this.href);return false; (Reg Error: Value error.)
O16 – DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.7.0/jinstall-1_7_0_11-windows-i586.cab » onclick= »window.open(this.href);return false; (Reg Error: Value error.)
O17 – HKLMSystemCCSServicesTcpipParameters: DhcpNameServer = 192.168.0.254
O17 – HKLMSystemCCSServicesTcpipParametersInterfaces{06A55B50-31E1-48D5-B944-28BC4F85E63F}: DhcpNameServer = 192.168.42.129
O17 – HKLMSystemCCSServicesTcpipParametersInterfaces{19344C00-6D8B-4FFB-AFCD-3D424A52766E}: DhcpNameServer = 192.168.0.254
O17 – HKLMSystemCCSServicesTcpipParametersInterfaces{20F02C72-E83D-4311-A44D-1246E501389A}: DhcpNameServer = 192.168.42.129
O18 – ProtocolHandlerlinkscanner – No CLSID value found
O18 – ProtocolHandlerviprotocol {B658800C-F66E-4EF3-AB85-6C0C227862A9} – C:Program FilesCommon FilesAVG Secure SearchViProtocolInstaller17.1.2ViProtocol.dll (AVG Secure Search)
O20 – HKLM Winlogon: Shell – (explorer.exe) – C:Windowsexplorer.exe (Microsoft Corporation)
O20 – HKLM Winlogon: UserInit – (C:Windowssystem32userinit.exe) – C:WindowsSystem32userinit.exe (Microsoft Corporation)
O20 – HKLM Winlogon: VMApplet – (SystemPropertiesPerformance.exe) – C:WindowsSystem32SystemPropertiesPerformance.exe (Microsoft Corporation)
O21 – SSODL: WebCheck – {E6FB5E20-DE35-11CF-9C87-00AA005127ED} – No CLSID value found.
O32 – HKLM CDRom: AutoRun – 1
O32 – AutoRun File – [2009/06/10 22:42:20 | 000,000,024 | —- | M] () – C:autoexec.bat — [ NTFS ]
O32 – AutoRun File – [2012/02/03 12:35:01 | 000,000,000 | -H-D | M] – C:Autorun.inf — [ NTFS ]
O34 – HKLM BootExecute: (autocheck autochk *)
O35 – HKLM..comfile [open] — « %1 » %*
O35 – HKLM..exefile [open] — « %1 » %*
O37 – HKLM…com [@ = comfile] — « %1 » %*
O37 – HKLM…exe [@ = exefile] — « %1 » %*
O38 – SubSystems\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 – SubSystems\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 – SubSystems\Windows: (ServerDll=sxssrv,4)