Hey Pystryker
I'm back with the logs
Here they are:
OTL fix log:All processes killed
========== COMMANDS ==========
Restore point Set: OTL Restore Point
========== OTL ==========
Error: No service named TuneUp.UtilitiesSvc was found to stop!
Service\Driver key TuneUp.UtilitiesSvc not found.
File C:\Program Files\TuneUp Utilities 2012\TuneUpUtilitiesService32.exe not found.
Error: No service named UxTuneUp was found to stop!
Service\Driver key UxTuneUp not found.
File C:\Windows\System32\uxtuneup.dll not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{993f1df9-4ef3-450c-bf9c-f312f7be85d0}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{993f1df9-4ef3-450c-bf9c-f312f7be85d0}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{FA417BC8-796B-484F-826A-851B72200CCE}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{FA417BC8-796B-484F-826A-851B72200CCE}\ not found.
Registry key HKEY_USERS\S-1-5-21-2259745054-535292464-177051247-1000\Software\Microsoft\Internet Explorer\SearchScopes\{993f1df9-4ef3-450c-bf9c-f312f7be85d0}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{993f1df9-4ef3-450c-bf9c-f312f7be85d0}\ not found.
Registry key HKEY_USERS\S-1-5-21-2259745054-535292464-177051247-1000\Software\Microsoft\Internet Explorer\SearchScopes\{FA417BC8-796B-484F-826A-851B72200CCE}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{FA417BC8-796B-484F-826A-851B72200CCE}\ not found.
Registry value HKEY_USERS\S-1-5-21-2259745054-535292464-177051247-1000\Software\Microsoft\Windows\CurrentVersion\Run\\DriverScanner not found.
File C:\Program Files\Uniblue\DriverScanner\launcher.exe not found.
Starting removal of ActiveX control {8AD9C840-044E-11D1-B3E9-00805F499D93}
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{8AD9C840-044E-11D1-B3E9-00805F499D93}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8AD9C840-044E-11D1-B3E9-00805F499D93}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{8AD9C840-044E-11D1-B3E9-00805F499D93}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8AD9C840-044E-11D1-B3E9-00805F499D93}\ not found.
Starting removal of ActiveX control {CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA}
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA}\ not found.
Starting removal of ActiveX control {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}\ not found.
C:\Users\Portable\AppData\Roaming\TuneUp Software\TuneUp Utilities 2012\WinStyler\LogonScreens\Cache folder moved successfully.
C:\Users\Portable\AppData\Roaming\TuneUp Software\TuneUp Utilities 2012\WinStyler\LogonScreens folder moved successfully.
C:\Users\Portable\AppData\Roaming\TuneUp Software\TuneUp Utilities 2012\WinStyler\LogoAnimations\Cache folder moved successfully.
C:\Users\Portable\AppData\Roaming\TuneUp Software\TuneUp Utilities 2012\WinStyler\LogoAnimations folder moved successfully.
C:\Users\Portable\AppData\Roaming\TuneUp Software\TuneUp Utilities 2012\WinStyler\BootScreens\Cache folder moved successfully.
C:\Users\Portable\AppData\Roaming\TuneUp Software\TuneUp Utilities 2012\WinStyler\BootScreens folder moved successfully.
C:\Users\Portable\AppData\Roaming\TuneUp Software\TuneUp Utilities 2012\WinStyler folder moved successfully.
C:\Users\Portable\AppData\Roaming\TuneUp Software\TuneUp Utilities 2012 folder moved successfully.
C:\Users\Portable\AppData\Roaming\TuneUp Software\TU2012\TuningIndex folder moved successfully.
C:\Users\Portable\AppData\Roaming\TuneUp Software\TU2012\StartUp Manager folder moved successfully.
C:\Users\Portable\AppData\Roaming\TuneUp Software\TU2012\Speed Optimizer folder moved successfully.
C:\Users\Portable\AppData\Roaming\TuneUp Software\TU2012\Disk Space Explorer folder moved successfully.
C:\Users\Portable\AppData\Roaming\TuneUp Software\TU2012\Dashboard folder moved successfully.
C:\Users\Portable\AppData\Roaming\TuneUp Software\TU2012\Backups folder moved successfully.
C:\Users\Portable\AppData\Roaming\TuneUp Software\TU2012 folder moved successfully.
C:\Users\Portable\AppData\Roaming\TuneUp Software folder moved successfully.
Folder C:\Users\Portable\AppData\Roaming\Uniblue\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\driverscanner.exe\ not found.
File C:\Program Files\TuneUp Utilities 2012\TUAutoReactivator32.exe not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\dtlite.exe\ not found.
File C:\Program Files\TuneUp Utilities 2012\TUAutoReactivator32.exe not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\filezilla server interface.exe\ not found.
File C:\Program Files\TuneUp Utilities 2012\TUAutoReactivator32.exe not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\filezilla server.exe\ not found.
File C:\Program Files\TuneUp Utilities 2012\TUAutoReactivator32.exe not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\labelprint.exe\ not found.
File C:\Program Files\TuneUp Utilities 2012\TUAutoReactivator32.exe not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\npsguide.exe\ not found.
File C:\Program Files\TuneUp Utilities 2012\TUAutoReactivator32.exe not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\pdr.exe\ not found.
File C:\Program Files\TuneUp Utilities 2012\TUAutoReactivator32.exe not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\power2go.exe\ not found.
File C:\Program Files\TuneUp Utilities 2012\TUAutoReactivator32.exe not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\powerstarter.exe\ not found.
File C:\Program Files\TuneUp Utilities 2012\TUAutoReactivator32.exe not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\rserver3.exe\ not found.
File C:\Program Files\TuneUp Utilities 2012\TUAutoReactivator32.exe not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\sptdinst-x86.exe\ not found.
File C:\Program Files\TuneUp Utilities 2012\TUAutoReactivator32.exe not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\unins000.exe\ not found.
File C:\Program Files\TuneUp Utilities 2012\TUAutoReactivator32.exe not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\uninstall.exe\ not found.
File C:\Program Files\TuneUp Utilities 2012\TUAutoReactivator32.exe not found.
ADS C:\ProgramData\Temp:661DFA1C deleted successfully.
ADS C:\Windows:{4B9A1497-0817-47C4-9612-D6A1C53ACF57} deleted successfully.
========== FILES ==========
File\Folder C:\Windows\System32\uxtuneup.dll not found.
File\Folder C:\Program Files\TuneUp Utilities 2012 not found.
========== COMMANDS ==========
[EMPTYTEMP]
User: All Users
User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes
->Flash cache emptied: 57472 bytes
User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes
User: LogMeInRemoteUser
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes
->Flash cache emptied: 56504 bytes
User: Portable
->Temp folder emptied: 42762770 bytes
->Temporary Internet Files folder emptied: 8039913 bytes
->Java cache emptied: 0 bytes
->Google Chrome cache emptied: 42694663 bytes
->Flash cache emptied: 15488168 bytes
User: Public
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 12266037 bytes
RecycleBin emptied: 220147 bytes
Total Files Cleaned = 116,00 mb
OTL by OldTimer - Version 3.2.69.0 log created on 11272013_232827
Files\Folders moved on Reboot...
C:\Users\Portable\AppData\Local\Temp\ehmsas.txt moved successfully.
File move failed. C:\Windows\temp\_avast_\Webshlock.txt scheduled to be moved on reboot.
File move failed. C:\Windows\temp\vmware-SYSTEM\vmauthd.log scheduled to be moved on reboot.
C:\Windows\temp\vmware-SYSTEM\vmware-usbarb-5288.log moved successfully.
File\Folder C:\Windows\temp\TMP00000010FF8C8367945B6E19 not found!
PendingFileRenameOperations files...
Registry entries deleted on Reboot...
AdwCleaner log:# AdwCleaner v3.013 - Rapport créé le 27/11/2013 ŕ 23:47:28
# Mis ŕ jour le 24/11/2013 par Xplode
# Systčme d'exploitation : Windows Vista ™ Home Premium Service Pack 2 (32 bits)
# Nom d'utilisateur : Portable - PC-DE-PORTABLE
# Exécuté depuis : C:\Users\Portable\Desktop\adwcleaner.exe
# Option : Nettoyer
***** [ Services ] *****
***** [ Fichiers / Dossiers ] *****
Dossier Supprimé : C:\ProgramData\rvlkl
Dossier Supprimé : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\myfree codec
Dossier Supprimé : C:\Program Files\myfree codec
***** [ Raccourcis ] *****
***** [ Registre ] *****
Clé Supprimée : HKCU\Software\Google\Chrome\Extensions\elhjaoldnkkbifioodjndkijecdeinld
Clé Supprimée : HKLM\SOFTWARE\Google\Chrome\Extensions\elhjaoldnkkbifioodjndkijecdeinld
Clé Supprimée : HKLM\SOFTWARE\Classes\driverscanner
Clé Supprimée : HKLM\SOFTWARE\Classes\protector_dll.protectorbho
Clé Supprimée : HKLM\SOFTWARE\Classes\protector_dll.protectorbho.1
Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\{0A18A436-2A7A-49F3-A488-30538A2F6323}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{00000001-4FEF-40D3-B3FA-E0531B897F98}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{007EFBDF-8A5D-4930-97CC-A4B437CBA777}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{5C3B5DAA-0AFF-4808-90FB-0F2F2D760E36}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{64697678-0000-0010-8000-00AA00389B71}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{FD501041-8EBE-11CE-8183-00AA00577DA2}
Clé Supprimée : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{9D5BD211-422C-4164-9298-BB4186A30F31}
Clé Supprimée : HKCU\Software\Myfree Codec
Clé Supprimée : HKCU\Software\smartbarbackup
Clé Supprimée : HKCU\Software\smartbarlog
Clé Supprimée : HKLM\Software\Myfree Codec
Clé Supprimée : HKLM\Software\Uniblue
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\MyFreeCodec
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{D08D9F98-1C78-4704-87E6-368B0023D831}
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\MyFreeCodec
Clé Supprimée : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\08121C32A9C319F4CB0C11FF059552A4
***** [ Navigateurs ] *****
-\\ Internet Explorer v9.0.8112.16520
-\\ Google Chrome v31.0.1650.57
[ Fichier : C:\Users\Portable\AppData\Local\Google\Chrome\User Data\Default\preferences ]
*************************
AdwCleaner[R0].txt - [2667 octets] - [27/11/2013 23:45:19]
AdwCleaner[S0].txt - [2566 octets] - [27/11/2013 23:47:28]
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [2626 octets] ##########
Junkware Removal Tool log:~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.0.8 (11.05.2013:1)
OS: Windows Vista ™ Home Premium x86
Ran by Portable on mer. 27/11/2013 at 23:58:50,21
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
~~~ Services
~~~ Registry Values
~~~ Registry Keys
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{06CFEDC0-41F4-4152-B070-C14DD6C23DE6}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{06CFEDC0-41F4-4152-B070-C14DD6C23DE6}
~~~ Files
~~~ Folders
Successfully deleted: [Folder] "C:\Users\Portable\appdata\local\cre"
Successfully deleted: [Empty Folder] C:\Users\Portable\appdata\local\{0127D557-AE86-4193-9254-D00876E6EE2A}
Successfully deleted: [Empty Folder] C:\Users\Portable\appdata\local\{03085967-4190-4C46-B341-896049801B88}
Successfully deleted: [Empty Folder] C:\Users\Portable\appdata\local\{0775C405-F1B5-46EF-8C93-EC982A1CE1B6}
Successfully deleted: [Empty Folder] C:\Users\Portable\appdata\local\{0B0ACD6E-F0A5-40FA-B938-A90827D36E43}
Successfully deleted: [Empty Folder] C:\Users\Portable\appdata\local\{118EDCDA-925D-449E-96F8-763B940227BD}
Successfully deleted: [Empty Folder] C:\Users\Portable\appdata\local\{163C1D7E-81AA-435E-9BCE-76CB0C211A69}
Successfully deleted: [Empty Folder] C:\Users\Portable\appdata\local\{16D5761E-2C69-487D-856A-645066D48F27}
Successfully deleted: [Empty Folder] C:\Users\Portable\appdata\local\{193C1045-2B21-4E32-8D5D-885D0238C0E9}
Successfully deleted: [Empty Folder] C:\Users\Portable\appdata\local\{19E0DADF-FFF3-4C10-BC97-5D851F486D5D}
Successfully deleted: [Empty Folder] C:\Users\Portable\appdata\local\{1DC3F85A-7B46-423E-B3CF-814696385A20}
Successfully deleted: [Empty Folder] C:\Users\Portable\appdata\local\{1FE08583-E2CB-4555-AC66-515847309E9A}
Successfully deleted: [Empty Folder] C:\Users\Portable\appdata\local\{24126C62-C297-46DD-8F8F-D0F715BDB639}
Successfully deleted: [Empty Folder] C:\Users\Portable\appdata\local\{246A3A37-9413-4A5C-8FF2-08D0A136F40B}
Successfully deleted: [Empty Folder] C:\Users\Portable\appdata\local\{254000AF-70AD-4E46-B032-A8225B8D4460}
Successfully deleted: [Empty Folder] C:\Users\Portable\appdata\local\{25537B73-3B69-47D4-828A-80D7DAB3485E}
Successfully deleted: [Empty Folder] C:\Users\Portable\appdata\local\{27397149-AA60-488C-9200-DBAC74367383}
Successfully deleted: [Empty Folder] C:\Users\Portable\appdata\local\{2AFF0EC9-4215-4180-BCF2-3D2CDBCB6BA3}
Successfully deleted: [Empty Folder] C:\Users\Portable\appdata\local\{334A1C3F-379B-4653-9A1E-B22FA0C68E9B}
Successfully deleted: [Empty Folder] C:\Users\Portable\appdata\local\{336283F9-F899-4038-95C6-F183A89C0D2C}
Successfully deleted: [Empty Folder] C:\Users\Portable\appdata\local\{3406C19C-99C1-4449-9431-9BBC519177F9}
Successfully deleted: [Empty Folder] C:\Users\Portable\appdata\local\{35E4FDED-2B98-4B3E-9857-86E2D137A111}
Successfully deleted: [Empty Folder] C:\Users\Portable\appdata\local\{360F3422-6C10-4425-85EC-A483603115B7}
Successfully deleted: [Empty Folder] C:\Users\Portable\appdata\local\{3659EC4B-9721-4FC1-B64F-FC2A6BA81113}
Successfully deleted: [Empty Folder] C:\Users\Portable\appdata\local\{36845261-39BC-4467-8FE8-3D114152A871}
Successfully deleted: [Empty Folder] C:\Users\Portable\appdata\local\{3925EA76-6F48-488B-BB67-F12EC9B1A597}
Successfully deleted: [Empty Folder] C:\Users\Portable\appdata\local\{397FA0BC-FEE5-4E57-BD0F-12D3F171E332}
Successfully deleted: [Empty Folder] C:\Users\Portable\appdata\local\{3BFB103D-A367-4E96-B4F1-378D6C4BE419}
Successfully deleted: [Empty Folder] C:\Users\Portable\appdata\local\{3CAD396E-5248-47C1-BAE3-5376366B5EF7}
Successfully deleted: [Empty Folder] C:\Users\Portable\appdata\local\{3D28684D-DC66-4A03-B8E8-864947917456}
Successfully deleted: [Empty Folder] C:\Users\Portable\appdata\local\{3E521263-8AD7-4DAE-92DF-47BFF09C3238}
Successfully deleted: [Empty Folder] C:\Users\Portable\appdata\local\{4422BFB5-F55D-486A-9209-45D50F1C386F}
Successfully deleted: [Empty Folder] C:\Users\Portable\appdata\local\{4A366C57-5FEB-4D74-A581-1E21D4136154}
Successfully deleted: [Empty Folder] C:\Users\Portable\appdata\local\{4A90E36F-A5F8-4B38-9559-4E07991B5787}
Successfully deleted: [Empty Folder] C:\Users\Portable\appdata\local\{4E72C2C9-5A8B-443A-B277-69E2F4577F2E}
Successfully deleted: [Empty Folder] C:\Users\Portable\appdata\local\{52867ACD-6504-48CF-88B2-19401BE7A303}
Successfully deleted: [Empty Folder] C:\Users\Portable\appdata\local\{576E0862-AAD6-4A6F-9979-507E70617806}
Successfully deleted: [Empty Folder] C:\Users\Portable\appdata\local\{597F0C24-835D-47C3-82AC-6EDECB3DA858}
Successfully deleted: [Empty Folder] C:\Users\Portable\appdata\local\{599A06A2-9095-4CDC-8A8F-856EE394DF43}
Successfully deleted: [Empty Folder] C:\Users\Portable\appdata\local\{5A04F5C0-611A-4790-BB6F-BC0D31EB28DC}
Successfully deleted: [Empty Folder] C:\Users\Portable\appdata\local\{6002AC9F-4BD3-45B5-8D95-CECA28929410}
Successfully deleted: [Empty Folder] C:\Users\Portable\appdata\local\{60577A27-9F96-4DCC-976C-56FECC657ECB}
Successfully deleted: [Empty Folder] C:\Users\Portable\appdata\local\{65154D82-CA71-46CC-BB66-D7A91EF7DD7C}
Successfully deleted: [Empty Folder] C:\Users\Portable\appdata\local\{66E21A9A-BBF7-4CA6-ABC8-3602C7794E56}
Successfully deleted: [Empty Folder] C:\Users\Portable\appdata\local\{6A91277E-265C-4744-99B1-2FBD6B306167}
Successfully deleted: [Empty Folder] C:\Users\Portable\appdata\local\{6AD1D812-5881-42FB-B3CD-55ED82F9DE3A}
Successfully deleted: [Empty Folder] C:\Users\Portable\appdata\local\{6EB7E24E-0215-4691-98EC-73C7567A1C7F}
Successfully deleted: [Empty Folder] C:\Users\Portable\appdata\local\{7023408E-3FE9-46D8-8B58-BC072E551195}
Successfully deleted: [Empty Folder] C:\Users\Portable\appdata\local\{712325CE-62BA-42F8-B7A5-23258A9F7092}
Successfully deleted: [Empty Folder] C:\Users\Portable\appdata\local\{7B9CA849-66E8-4B26-A760-4C8A48FD24C4}
Successfully deleted: [Empty Folder] C:\Users\Portable\appdata\local\{7BC235F5-585B-469B-B621-DD1E7E5E2ABE}
Successfully deleted: [Empty Folder] C:\Users\Portable\appdata\local\{7C8CF5B4-5B02-4E1B-9956-579D0B2D69ED}
Successfully deleted: [Empty Folder] C:\Users\Portable\appdata\local\{7CC39893-5FB5-46DD-9CBB-A206C8734352}
Successfully deleted: [Empty Folder] C:\Users\Portable\appdata\local\{8081287E-32B4-4DF1-AFEC-B02C1A67A56B}
Successfully deleted: [Empty Folder] C:\Users\Portable\appdata\local\{80EE297B-33CA-4573-8848-89D06F91723A}
Successfully deleted: [Empty Folder] C:\Users\Portable\appdata\local\{882579DF-AA97-492C-9609-96BAB1BDFF75}
Successfully deleted: [Empty Folder] C:\Users\Portable\appdata\local\{8963D825-2469-489C-B6FF-067EB57C2955}
Successfully deleted: [Empty Folder] C:\Users\Portable\appdata\local\{8DF3BEDB-F66C-4B67-8FB4-98F8CC5CC9C3}
Successfully deleted: [Empty Folder] C:\Users\Portable\appdata\local\{9031D84A-F135-4F2C-AA80-0E5A75418F4F}
Successfully deleted: [Empty Folder] C:\Users\Portable\appdata\local\{913CFC7C-4E6F-4DBB-B133-9319F3F94982}
Successfully deleted: [Empty Folder] C:\Users\Portable\appdata\local\{9189AED5-7F6F-4C3E-84C5-3BBB73DC1EE2}
Successfully deleted: [Empty Folder] C:\Users\Portable\appdata\local\{95F5CE9F-EEBF-41D6-BEDF-0E24C33E3EDD}
Successfully deleted: [Empty Folder] C:\Users\Portable\appdata\local\{9616AFDA-D01F-4052-9ABD-5656DB461215}
Successfully deleted: [Empty Folder] C:\Users\Portable\appdata\local\{9938E253-62BA-4F3B-BD80-31477E785D2D}
Successfully deleted: [Empty Folder] C:\Users\Portable\appdata\local\{9A390C84-7AFE-4AA2-818C-D18A51FE7165}
Successfully deleted: [Empty Folder] C:\Users\Portable\appdata\local\{9BFD2DDB-CB81-4A16-854A-BB6025E7E4F9}
Successfully deleted: [Empty Folder] C:\Users\Portable\appdata\local\{9FA4503E-1BF1-4F6E-9376-AA3DF570BAB5}
Successfully deleted: [Empty Folder] C:\Users\Portable\appdata\local\{A19EF9CC-1D8D-4317-A035-FC4FF49CCD7D}
Successfully deleted: [Empty Folder] C:\Users\Portable\appdata\local\{A26D8401-0CF0-43F6-AD37-4C0E9B41D76B}
Successfully deleted: [Empty Folder] C:\Users\Portable\appdata\local\{A2A2236C-7C8C-497D-B748-5DE64378DBB8}
Successfully deleted: [Empty Folder] C:\Users\Portable\appdata\local\{AA4C98C1-A97D-4DC5-851B-F9378FA29EC2}
Successfully deleted: [Empty Folder] C:\Users\Portable\appdata\local\{AAE89280-ECA2-41F0-AE91-5A7B0DA454F3}
Successfully deleted: [Empty Folder] C:\Users\Portable\appdata\local\{AB1F08E9-7DF4-4608-AA27-2E09C854CE8B}
Successfully deleted: [Empty Folder] C:\Users\Portable\appdata\local\{AD70FD52-1704-46F2-BBF9-1630E98A6E78}
Successfully deleted: [Empty Folder] C:\Users\Portable\appdata\local\{AE6FE4F7-C510-4F4C-97A5-80864CEDE8E9}
Successfully deleted: [Empty Folder] C:\Users\Portable\appdata\local\{B9C5E98A-EDA9-4ED4-B5C6-E28A8E5EA3D6}
Successfully deleted: [Empty Folder] C:\Users\Portable\appdata\local\{BA303D01-7660-4FCE-BAC6-44AB7483A9F0}
Successfully deleted: [Empty Folder] C:\Users\Portable\appdata\local\{BD13D76F-DBC2-4CDE-BE74-9B2B4A0B09BF}
Successfully deleted: [Empty Folder] C:\Users\Portable\appdata\local\{BFA5C561-0B1E-4CF3-AE0D-080D9B051A76}
Successfully deleted: [Empty Folder] C:\Users\Portable\appdata\local\{C36FBA7C-8992-44A5-AADA-265CCE58673F}
Successfully deleted: [Empty Folder] C:\Users\Portable\appdata\local\{C4A99107-D1C3-4BE0-840F-FA088C647D19}
Successfully deleted: [Empty Folder] C:\Users\Portable\appdata\local\{C67998A7-8050-47B6-997C-AA2378CA2ABF}
Successfully deleted: [Empty Folder] C:\Users\Portable\appdata\local\{C98C29CF-33B8-4B22-BA26-1AA8BDF65DA3}
Successfully deleted: [Empty Folder] C:\Users\Portable\appdata\local\{CB6DC054-1D57-4BDF-B74A-BCF78B7D68BA}
Successfully deleted: [Empty Folder] C:\Users\Portable\appdata\local\{D1D124E0-5712-448A-AC56-692774F7AD46}
Successfully deleted: [Empty Folder] C:\Users\Portable\appdata\local\{D3568203-F810-46D0-901F-75EDC02F5CF1}
Successfully deleted: [Empty Folder] C:\Users\Portable\appdata\local\{D39FCBDC-455B-4083-9293-11CF56F8B5C2}
Successfully deleted: [Empty Folder] C:\Users\Portable\appdata\local\{D481DB02-31EE-49DA-9B44-DFCE221EF2D8}
Successfully deleted: [Empty Folder] C:\Users\Portable\appdata\local\{D8858A87-7FC9-419C-8417-0930552D0CBE}
Successfully deleted: [Empty Folder] C:\Users\Portable\appdata\local\{DA82EAF9-62A0-423D-B1DB-0E947E77D50C}
Successfully deleted: [Empty Folder] C:\Users\Portable\appdata\local\{DFE502CD-A7EF-4220-8268-F64450CCB670}
Successfully deleted: [Empty Folder] C:\Users\Portable\appdata\local\{E5DD2483-701C-4713-A6DF-DFD4193D39C1}
Successfully deleted: [Empty Folder] C:\Users\Portable\appdata\local\{E8AA49FB-B5A1-4DB8-A626-BC5636614F3A}
Successfully deleted: [Empty Folder] C:\Users\Portable\appdata\local\{EC694E6A-8FBD-496C-9958-6A9E1EE8C8CF}
Successfully deleted: [Empty Folder] C:\Users\Portable\appdata\local\{EE0D0AEA-AFB1-46F9-81A9-ABBC06FB8307}
Successfully deleted: [Empty Folder] C:\Users\Portable\appdata\local\{EFF1EC88-838F-4F4B-A62F-08A2CD6D3A5E}
Successfully deleted: [Empty Folder] C:\Users\Portable\appdata\local\{F163BA12-B5EF-49C2-9DAC-F18A17D77E4D}
Successfully deleted: [Empty Folder] C:\Users\Portable\appdata\local\{F2DF22F6-00F5-4D9A-9687-D5CDA8955A90}
Successfully deleted: [Empty Folder] C:\Users\Portable\appdata\local\{F3BD1C20-308C-4789-BE3A-437A9F46A8DB}
Successfully deleted: [Empty Folder] C:\Users\Portable\appdata\local\{F5CE6B94-1840-431B-89C3-05A8BA2DABBD}
Successfully deleted: [Empty Folder] C:\Users\Portable\appdata\local\{F5F5C5EC-EF5D-4657-827D-28F036F00056}
Successfully deleted: [Empty Folder] C:\Users\Portable\appdata\local\{F6F0C049-FE53-4486-AD5A-5D39CFD2F2F5}
Successfully deleted: [Empty Folder] C:\Users\Portable\appdata\local\{F950B239-7427-40A1-84D4-99B8CFBE4A95}
Successfully deleted: [Empty Folder] C:\Users\Portable\appdata\local\{FE3F107F-F8F8-4437-BD94-8194F95908D5}
Successfully deleted: [Empty Folder] C:\Users\Portable\appdata\local\{FFD5BE09-67E8-494D-BCAF-86F9F49CDE89}
~~~ Chrome
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Policies\Google [Blacklisted Policy]
~~~ Event Viewer Logs were cleared
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on jeu. 28/11/2013 at 0:04:00,34
Computer was rebooted
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
OTL quick scan log:OTL logfile created on: 28/11/2013 0:06:15 - Run 2
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Portable\Desktop
Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 0000080C | Country: Belgique | Language: FRB | Date Format: d/MM/yyyy
2,93 Gb Total Physical Memory | 1,64 Gb Available Physical Memory | 55,82% Memory free
6,08 Gb Paging File | 4,70 Gb Available in Paging File | 77,29% Paging File free
Paging file location(s): ?:\pagefile.sys
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 287,23 Gb Total Space | 193,29 Gb Free Space | 67,29% Space Free | Partition Type: NTFS
Drive D: | 10,86 Gb Total Space | 1,73 Gb Free Space | 15,92% Space Free | Partition Type: NTFS
Computer Name: PC-DE-PORTABLE | User Name: Portable | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Quick Scan
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days
========== Processes (SafeList) ========== PRC - [2013/11/27 13:39:52 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Portable\Desktop\OTL.exe
PRC - [2013/11/16 13:23:44 | 003,568,312 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe
PRC - [2013/11/16 13:23:43 | 000,050,344 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe
PRC - [2013/11/16 13:23:20 | 000,116,776 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\afwServ.exe
PRC - [2013/10/01 13:14:40 | 005,087,584 | ---- | M] (TeamViewer GmbH) -- C:\Program Files\TeamViewer\Version8\TeamViewer_Service.exe
PRC - [2013/09/25 13:23:10 | 003,261,680 | ---- | M] (Tenable Network Security, Inc) -- C:\Program Files\Tenable\Nessus\nessusd.exe
PRC - [2013/09/25 13:20:24 | 000,017,136 | ---- | M] (Tenable Network Security, Inc) -- C:\Program Files\Tenable\Nessus\nessus-service.exe
PRC - [2013/09/08 17:25:06 | 001,786,704 | ---- | M] (CybelSoft) -- C:\Program Files\ma-config.com\MaConfigAgent.exe
PRC - [2012/08/15 14:18:40 | 000,357,016 | ---- | M] (VMware, Inc.) -- C:\Windows\System32\vmnetdhcp.exe
PRC - [2012/08/15 14:18:06 | 000,104,088 | ---- | M] (VMware, Inc.) -- C:\Program Files\VMware\VMware Workstation\vmware-tray.exe
PRC - [2012/08/15 14:17:26 | 000,435,864 | ---- | M] (VMware, Inc.) -- C:\Windows\System32\vmnat.exe
PRC - [2012/08/15 13:36:34 | 015,680,000 | ---- | M] () -- C:\Program Files\VMware\VMware Workstation\vmware-hostd.exe
PRC - [2012/08/15 12:19:58 | 000,079,872 | ---- | M] (VMware, Inc.) -- C:\Program Files\VMware\VMware Workstation\vmware-authd.exe
PRC - [2012/08/01 16:10:26 | 000,719,512 | ---- | M] (VMware, Inc.) -- C:\Program Files\Common Files\VMware\USB\vmware-usbarbitrator.exe
PRC - [2012/02/26 15:42:28 | 000,632,320 | ---- | M] (FileZilla Project) -- C:\Program Files\FileZilla Server\FileZilla Server.exe
PRC - [2009/06/03 20:43:18 | 000,450,652 | ---- | M] (IDT, Inc.) -- C:\Program Files\IDT\WDM\sttray.exe
PRC - [2009/06/03 20:43:18 | 000,217,170 | ---- | M] (IDT, Inc.) -- C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_827e372d\stacsv.exe
PRC - [2009/04/11 07:27:36 | 002,926,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2009/04/11 07:27:28 | 000,069,120 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\conime.exe
PRC - [2009/03/31 09:39:36 | 000,233,472 | ---- | M] (Teruten) -- C:\Windows\System32\FsUsbExService.Exe
PRC - [2008/12/23 16:18:20 | 000,365,952 | ---- | M] () -- C:\Program Files\SMINST\BLService.exe
PRC - [2008/01/21 03:23:32 | 001,008,184 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Defender\MSASCui.exe
========== Modules (No Company Name) ========== MOD - [2013/11/16 13:23:50 | 019,336,120 | ---- | M] () -- C:\Program Files\AVAST Software\Avast\libcef.dll
MOD - [2013/10/12 10:14:31 | 000,978,944 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\f453ecc6bb7fc8d52d61247676944623\System.Configuration.ni.dll
MOD - [2013/10/12 10:09:43 | 012,434,432 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\73d9bc894522543b561a0342dac87c06\System.Windows.Forms.ni.dll
MOD - [2013/09/18 12:23:10 | 000,998,400 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Management\e77e7cdf3072d5a658832b8863ff439e\System.Management.ni.dll
MOD - [2013/09/17 15:53:03 | 005,462,016 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\09f5b3f7a363b742a73937e818595597\System.Xml.ni.dll
MOD - [2013/09/17 15:52:19 | 001,593,344 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\c0df7e124d8d5e2821fd7d3921d404f7\System.Drawing.ni.dll
MOD - [2013/09/17 15:50:12 | 007,977,984 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System\d7153acb7b6ccb5a6a886d6f0ab732b1\System.ni.dll
MOD - [2013/09/17 15:49:05 | 011,497,984 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\6a938df70a8b7996a3890b4f34c83906\mscorlib.ni.dll
MOD - [2013/08/07 20:25:24 | 000,093,696 | ---- | M] () -- C:\Program Files\FileZilla FTP Client\fzshellext.dll
MOD - [2012/11/09 04:02:18 | 001,752,576 | ---- | M] () -- C:\PROGRA~1\FILESH~1\fsshell.dll
MOD - [2011/05/28 22:04:56 | 000,140,288 | ---- | M] () -- C:\Program Files\WinRAR\rarext.dll
MOD - [2008/09/23 17:21:22 | 000,066,856 | ---- | M] () -- C:\Program Files\HP\QuickPlay\Kernel\Common\MCEMediaStatus.dll
MOD - [2007/08/14 13:59:54 | 006,365,184 | ---- | M] () -- C:\Program Files\Common Files\LightScribe\QtGui4.dll
MOD - [2007/07/12 13:55:52 | 000,131,072 | ---- | M] () -- C:\Program Files\Common Files\LightScribe\plugins\imageformats\qjpeg4.dll
MOD - [2007/07/12 13:55:28 | 001,581,056 | ---- | M] () -- C:\Program Files\Common Files\LightScribe\QtCore4.dll
========== Services (SafeList) ========== SRV - [2013/11/16 13:23:43 | 000,050,344 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe -- (avast! Antivirus)
SRV - [2013/11/16 13:23:20 | 000,116,776 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Program Files\AVAST Software\Avast\afwServ.exe -- (avast! Firewall)
SRV - [2013/10/01 13:14:40 | 005,087,584 | ---- | M] (TeamViewer GmbH) [Auto | Running] -- C:\Program Files\TeamViewer\Version8\TeamViewer_Service.exe -- (TeamViewer8)
SRV - [2013/09/25 13:20:24 | 000,017,136 | ---- | M] (Tenable Network Security, Inc) [Auto | Running] -- C:\Program Files\Tenable\Nessus\nessus-service.exe -- (Tenable Nessus)
SRV - [2013/09/08 17:25:06 | 001,786,704 | ---- | M] (CybelSoft) [Auto | Running] -- C:\Program Files\ma-config.com\MaConfigAgent.exe -- (MaConfigAgent)
SRV - [2013/09/05 09:34:30 | 000,171,680 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2013/04/04 13:50:32 | 000,701,512 | ---- | M] (Malwarebytes Corporation) [Auto | Stopped] -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe -- (MBAMService)
SRV - [2013/04/04 13:50:32 | 000,418,376 | ---- | M] (Malwarebytes Corporation) [Auto | Stopped] -- C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe -- (MBAMScheduler)
SRV - [2012/08/15 14:18:40 | 000,357,016 | ---- | M] (VMware, Inc.) [Auto | Running] -- C:\Windows\System32\vmnetdhcp.exe -- (VMnetDHCP)
SRV - [2012/08/15 14:17:26 | 000,435,864 | ---- | M] (VMware, Inc.) [Auto | Running] -- C:\Windows\System32\vmnat.exe -- (VMware NAT Service)
SRV - [2012/08/15 13:36:34 | 015,680,000 | ---- | M] () [Auto | Running] -- C:\Program Files\VMware\VMware Workstation\vmware-hostd.exe -- (VMwareHostd)
SRV - [2012/08/15 12:19:58 | 000,079,872 | ---- | M] (VMware, Inc.) [Auto | Running] -- C:\Program Files\VMware\VMware Workstation\vmware-authd.exe -- (VMAuthdService)
SRV - [2012/08/01 16:10:26 | 000,719,512 | ---- | M] (VMware, Inc.) [Auto | Running] -- C:\Program Files\Common Files\VMware\USB\vmware-usbarbitrator.exe -- (VMUSBArbService)
SRV - [2012/05/03 18:30:00 | 004,696,760 | ---- | M] (INCA Internet Co., Ltd.) [On_Demand | Stopped] -- C:\Windows\System32\GameMon.des -- (npggsvc)
SRV - [2012/02/26 15:42:28 | 000,632,320 | ---- | M] (FileZilla Project) [Auto | Running] -- C:\Program Files\FileZilla Server\FileZilla Server.exe -- (FileZilla Server)
SRV - [2010/06/25 18:07:20 | 000,117,264 | ---- | M] (CACE Technologies, Inc.) [On_Demand | Stopped] -- C:\Program Files\WinPcap\rpcapd.exe -- (rpcapd)
SRV - [2009/06/03 20:43:18 | 000,217,170 | ---- | M] (IDT, Inc.) [Auto | Running] -- C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_827e372d\stacsv.exe -- (STacSV)
SRV - [2009/03/31 09:39:36 | 000,233,472 | ---- | M] (Teruten) [Auto | Running] -- C:\Windows\System32\FsUsbExService.Exe -- (FsUsbExService)
SRV - [2008/12/23 16:18:20 | 000,365,952 | ---- | M] () [Auto | Running] -- C:\Program Files\SMINST\BLService.exe -- (Recovery Service for Windows)
SRV - [2008/04/07 09:17:30 | 000,430,592 | ---- | M] (Nokia.) [On_Demand | Stopped] -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer)
SRV - [2008/02/03 12:00:00 | 000,129,992 | ---- | M] (EasyBits Sofware AS) [Auto | Running] -- C:\Windows\System32\ezsvc7.dll -- (ezSharedSvc)
SRV - [2008/01/21 03:23:32 | 000,272,952 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\mpsvc.dll -- (WinDefend)
========== Driver Services (SafeList) ========== DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\VBoxNetFlt.sys -- (VBoxNetFlt)
DRV - File not found [Kernel | System | Stopped] -- C:\Windows\system32\drivers\NIS\1000000.07D\SRTSPX.SYS -- (SRTSPX)
DRV - File not found [File_System | System | Stopped] -- C:\Windows\system32\drivers\NIS\1000000.07D\SRTSP.SYS -- (SRTSP)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\nwlnkfwd.sys -- (NwlnkFwd)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\nwlnkflt.sys -- (NwlnkFlt)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\VirusDefs\20080829.024\NAVEX15.SYS -- (NAVEX15)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\VirusDefs\20080829.024\NAVENG.SYS -- (NAVENG)
DRV - File not found [Kernel | Auto | Stopped] -- C:\Program Files\LogMeIn\x86\RaInfo.sys -- (LMIInfo)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\ipinip.sys -- (IpInIp)
DRV - [2013/11/19 01:01:48 | 000,247,192 | ---- | M] (AVAST Software) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\aswndis2.sys -- (aswNdis2)
DRV - [2013/11/16 13:23:57 | 000,774,392 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\Windows\System32\drivers\aswSnx.sys -- (aswSnx)
DRV - [2013/11/16 13:23:57 | 000,403,440 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\System32\drivers\aswSP.sys -- (aswSP)
DRV - [2013/11/16 13:23:57 | 000,178,304 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\System32\drivers\aswVmm.sys -- (aswVmm)
DRV - [2013/11/16 13:23:57 | 000,057,672 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\System32\drivers\aswTdi.sys -- (aswTdi)
DRV - [2013/11/16 13:23:57 | 000,049,944 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\System32\drivers\aswRvrt.sys -- (aswRvrt)
DRV - [2013/11/16 13:23:56 | 000,070,384 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\Windows\System32\drivers\aswMonFlt.sys -- (aswMonFlt)
DRV - [2013/11/16 13:23:56 | 000,054,832 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\System32\drivers\aswRdr.sys -- (aswRdr)
DRV - [2013/11/16 13:23:56 | 000,035,656 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\Windows\System32\drivers\aswFsBlk.sys -- (aswFsBlk)
DRV - [2013/11/16 13:23:29 | 000,026,136 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\System32\drivers\aswKbd.sys -- (aswKbd)
DRV - [2013/11/16 13:23:20 | 000,012,112 | ---- | M] (ALWIL Software) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\aswNdis.sys -- (aswNdis)
DRV - [2013/10/24 12:40:36 | 000,086,888 | ---- | M] (LogMeIn, Inc.) [File_System | Disabled | Stopped] -- C:\Windows\System32\LMIRfsClientNP.dll -- (LMIRfsClientNP)
DRV - [2013/10/19 16:21:43 | 000,038,112 | ---- | M] (Tenable Network Security, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\NessusMp60.sys -- (NessusMp60)
DRV - [2013/05/02 05:23:48 | 000,123,648 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ss_bmdm.sys -- (ss_bmdm)
DRV - [2013/05/02 05:23:48 | 000,098,432 | ---- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ss_bbus.sys -- (ss_bbus)
DRV - [2013/05/02 05:23:48 | 000,014,848 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ss_bmdfl.sys -- (ss_bmdfl)
DRV - [2013/05/02 05:23:42 | 000,153,672 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ssadmdm.sys -- (ssadmdm)
DRV - [2013/05/02 05:23:42 | 000,136,904 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ssadbus.sys -- (ssadbus)
DRV - [2013/05/02 05:23:42 | 000,032,064 | ---- | M] (Google Inc) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ssadadb.sys -- (androidusb)
DRV - [2013/05/02 05:23:42 | 000,017,864 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ssadmdfl.sys -- (ssadmdfl)
DRV - [2013/04/30 10:57:02 | 000,047,640 | ---- | M] (LogMeIn, Inc.) [File_System | Auto | Running] -- C:\Windows\System32\drivers\LMIRfsDriver.sys -- (LMIRfsDriver)
DRV - [2013/04/12 11:33:02 | 000,104,720 | ---- | M] (Oracle Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\VBoxNetAdp.sys -- (VBoxNetAdp)
DRV - [2013/04/12 11:32:06 | 000,084,752 | ---- | M] (Oracle Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\VBoxUSB.sys -- (VBoxUSB)
DRV - [2013/04/04 13:50:32 | 000,022,856 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\System32\drivers\mbam.sys -- (MBAMProtector)
DRV - [2012/12/20 13:02:49 | 000,242,240 | ---- | M] (DT Soft Ltd) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\dtsoftbus01.sys -- (dtsoftbus01)
DRV - [2012/08/15 14:18:38 | 000,061,848 | ---- | M] (VMware, Inc.) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\vmx86.sys -- (vmx86)
DRV - [2012/08/15 14:18:28 | 000,025,752 | ---- | M] (VMware, Inc.) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\vmnetuserif.sys -- (VMnetuserif)
DRV - [2012/08/15 14:16:50 | 000,037,016 | ---- | M] (VMware, Inc.) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\vmnetbridge.sys -- (VMnetBridge)
DRV - [2012/08/15 14:16:48 | 000,016,664 | ---- | M] (VMware, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\vmnetadapter.sys -- (VMnetAdapter)
DRV - [2012/08/01 16:10:30 | 000,041,496 | ---- | M] (VMware, Inc.) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\hcmon.sys -- (hcmon)
DRV - [2012/08/01 16:10:24 | 000,031,280 | ---- | M] (VMware, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\vmusb.sys -- (vmusb)
DRV - [2012/07/06 11:29:26 | 000,071,152 | ---- | M] (VMware, Inc.) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\vmci.sys -- (vmci)
DRV - [2012/07/06 11:29:26 | 000,061,296 | ---- | M] (VMware, Inc.) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\vsock.sys -- (vsock)
DRV - [2011/12/15 19:29:42 | 000,026,624 | ---- | M] (The OpenVPN Project) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\tap0901.sys -- (tap0901)
DRV - [2011/08/10 15:39:48 | 000,045,288 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\dc3d.sys -- (dc3d)
DRV - [2011/07/21 19:55:50 | 000,016,640 | ---- | M] (CybelSoft) [Kernel | On_Demand | Stopped] -- C:\Program Files\ma-config.com\Drivers\driverhardwarev2.sys -- (driverhardwarev2)
DRV - [2011/07/12 08:36:28 | 000,022,768 | ---- | M] (VMware, Inc.) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\vstor2-mntapi10-shared.sys -- (vstor2-mntapi10-shared)
DRV - [2010/07/01 18:11:24 | 000,012,352 | ---- | M] () [Kernel | Unavailable | Unknown] -- C:\Program Files\Unlocker\UnlockerDriver5.sys -- (UnlockerDriver5)
DRV - [2010/06/25 18:07:14 | 000,035,088 | ---- | M] (CACE Technologies, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\npf.sys -- (NPF)
DRV - [2009/09/30 13:53:12 | 001,184,768 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\athr.sys -- (athr)
DRV - [2009/06/03 20:43:18 | 000,407,040 | ---- | M] (IDT, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\stwrt.sys -- (STHDA)
DRV - [2009/03/31 09:39:36 | 000,036,608 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\System32\FsUsbExDisk.Sys -- (FsUsbExDisk)
DRV - [2008/12/23 12:47:52 | 000,138,240 | ---- | M] (Realtek Corporation ) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\Rtlh86.sys -- (RTL8169)
DRV - [2008/09/22 06:49:36 | 000,112,128 | ---- | M] (Intel® Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\IntcHdmi.sys -- (IntcHdmiAddService)
DRV - [2008/01/21 03:23:20 | 002,225,664 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\NETw3v32.sys -- (NETw3v32)
DRV - [2007/09/17 15:53:26 | 000,021,632 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\pccsmcfd.sys -- (pccsmcfd)
DRV - [2007/06/18 16:12:04 | 000,016,768 | ---- | M] (Hewlett-Packard Development Company, L.P.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\HpqKbFiltr.sys -- (HpqKbFiltr)
DRV - [2006/11/01 04:01:56 | 000,003,328 | ---- | M] (Famatech International Corp.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\rminiv3.sys -- (mirrorv3)
========== Standard Registry (SafeList) ========== ========== Internet Explorer ========== IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL =
http://www.google.comIE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page =
http://www.google.comIE - HKLM\..\SearchScopes,DefaultScope =
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" =
http://www.bing.com/...ms}&FORM=IE8SRCIE - HKLM\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" =
http://www.google.co...g}&sourceid=ie7IE - HKLM\..\SearchScopes\{8E169268-D370-4639-9190-BFE5EDFC4A98}: "URL" =
http://fr.search.yah...p06&type=ie2008 IE - HKU\.DEFAULT\..\SearchScopes,DefaultScope =
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-18\..\SearchScopes,DefaultScope =
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-19\..\SearchScopes,DefaultScope =
IE - HKU\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-20\..\SearchScopes,DefaultScope =
IE - HKU\S-1-5-21-2259745054-535292464-177051247-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = Preserve
IE - HKU\S-1-5-21-2259745054-535292464-177051247-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page =
http://www.bing.comIE - HKU\S-1-5-21-2259745054-535292464-177051247-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache =
http://be.msn.com/de...fr-be&ocid=iehpIE - HKU\S-1-5-21-2259745054-535292464-177051247-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = fr-be
IE - HKU\S-1-5-21-2259745054-535292464-177051247-1000\..\SearchScopes,DefaultScope =
IE - HKU\S-1-5-21-2259745054-535292464-177051247-1000\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" =
http://www.bing.com/...Box&FORM=IE8SRCIE - HKU\S-1-5-21-2259745054-535292464-177051247-1000\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" =
http://www.bing.com/...ms}&FORM=IE8SRCIE - HKU\S-1-5-21-2259745054-535292464-177051247-1000\..\SearchScopes\{8E169268-D370-4639-9190-BFE5EDFC4A98}: "URL" =
http://fr.search.yah...p06&type=ie2008IE - HKU\S-1-5-21-2259745054-535292464-177051247-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-2259745054-535292464-177051247-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = <local>
========== FireFox ========== FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\Windows\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF - HKLM\Software\MozillaPlugins\@haihaisoft/HPReader_Plugin: C:\Program Files\Haihaisoft PDF Reader\npHPReader.dll (Haihaisoft)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.17.2: C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeLive,version=1.5: C:\Program Files\Microsoft\Office Live\npOLW.dll ()
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3555.0308: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.0.1: C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF - HKCU\Software\MozillaPlugins\@haihaisoft/HPReader_Plugin: C:\Program Files\Haihaisoft PDF Reader\npHPReader.dll (Haihaisoft)
FF - HKCU\Software\MozillaPlugins\@Skype Limited.com/Facebook Video Calling Plugin: C:\Users\Portable\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll (Skype Limited)
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\
[email protected]: C:\Program Files\AVAST Software\Avast\WebRep\FF [2013/11/16 13:24:07 | 000,000,000 | ---D | M]
[2012/10/06 20:19:19 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Portable\AppData\Roaming\mozilla\Firefox\extensions
[2012/10/06 20:19:28 | 000,000,000 | ---D | M] (BittorrentBar_FR) -- C:\Users\Portable\AppData\Roaming\mozilla\Firefox\extensions\{ef79f67a-6ad7-4715-a0f8-932fca442023}
========== Chrome ========== CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:bookmarkBarPinned}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}{google:omniboxStartMarginParameter}ie={inputEncoding}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&q={searchTerms}&{google:cursorPosition}{google:zeroPrefixUrl}{google:pageClassification}sugkey={google:suggestAPIKeyParameter},
CHR - Extension: Documents Google = C:\Users\Portable\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\
CHR - Extension: Google\u00A0Drive = C:\Users\Portable\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\
CHR - Extension: YouTube = C:\Users\Portable\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\
CHR - Extension: Recherche Google = C:\Users\Portable\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\
CHR - Extension: avast! Online Security = C:\Users\Portable\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki\9.0.2005.45_0\
CHR - Extension: Google\u00A0Wallet = C:\Users\Portable\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.5.0_0\
CHR - Extension: Gmail = C:\Users\Portable\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\
O1 HOSTS File: ([2013/03/26 14:03:39 | 000,000,759 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2 - BHO: (avast! Online Security) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O3 - HKLM\..\Toolbar: (avast! Online Security) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O3 - HKU\S-1-5-21-2259745054-535292464-177051247-1000\..\Toolbar\WebBrowser: (no name) - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - No CLSID value found.
O4 - HKLM..\Run: [20131121] C:\Program Files\AVAST Software\Avast\setup\emupdate\48f54678-fe67-43ee-8c52-4f4907c9cc78.exe (AVAST Software)
O4 - HKLM..\Run: [APSDaemon] C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.)
O4 - HKLM..\Run: [AvastUI.exe] C:\Program Files\AVAST Software\Avast\AvastUI.exe (AVAST Software)
O4 - HKLM..\Run: [FileZilla Server Interface] C:\Program Files\FileZilla Server\FileZilla Server Interface.exe (FileZilla Project)
O4 - HKLM..\Run: [SysTrayApp] C:\Program Files\IDT\WDM\sttray.exe (IDT, Inc.)
O4 - HKLM..\Run: [UpdateLBPShortCut] C:\Program Files\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe (CyberLink Corp.)
O4 - HKLM..\Run: [UpdateP2GoShortCut] C:\Program Files\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe (CyberLink Corp.)
O4 - HKLM..\Run: [UpdatePDIRShortCut] C:\Program Files\CyberLink\PowerDirector\MUITransfer\MUIStartMenu.exe (CyberLink Corp.)
O4 - HKLM..\Run: [UpdatePSTShortCut] C:\Program Files\CyberLink\DVD Suite\MUITransfer\MUIStartMenu.exe (CyberLink Corp.)
O4 - HKLM..\Run: [vmware-tray.exe] C:\Program Files\VMware\VMware Workstation\vmware-tray.exe (VMware, Inc.)
O4 - HKLM..\Run: [Windows Defender] C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation)
O4 - HKU\S-1-5-19..\Run: [WindowsWelcomeCenter] C:\Windows\System32\oobefldr.dll (Microsoft Corporation)
O4 - HKU\S-1-5-20..\Run: [WindowsWelcomeCenter] C:\Windows\System32\oobefldr.dll (Microsoft Corporation)
O4 - HKU\S-1-5-21-2259745054-535292464-177051247-1000..\Run: [DAEMON Tools Lite] C:\Program Files\DAEMON Tools Lite\DTLite.exe (DT Soft Ltd)
O4 - HKU\S-1-5-21-2259745054-535292464-177051247-1000..\Run: [Facebook Update] C:\Users\Portable\AppData\Local\Facebook\Update\FacebookUpdate.exe (Facebook Inc.)
O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000005 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O13 - gopher Prefix: missing
O16 - DPF: {CAFEEFAC-0017-0000-0017-ABCDEFFEDCBA}
http://java.sun.com/...indows-i586.cab (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{B6351627-FDAF-44F1-BC69-BAC9AC63C67D}: DhcpNameServer = 192.168.1.1
O18 - Protocol\Handler\livecall - No CLSID value found
O18 - Protocol\Handler\msnim - No CLSID value found
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL (Skype Technologies)
O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation)
O24 - Desktop WallPaper: C:\Windows\Web\Wallpaper\img20.jpg
O24 - Desktop BackupWallPaper: C:\Windows\Web\Wallpaper\img20.jpg
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2006/09/18 22:43:36 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O33 - MountPoints2\{d2e51406-4a97-11e2-aa53-00269e7f71dd}\Shell - "" = AutoRun
O33 - MountPoints2\{d2e51406-4a97-11e2-aa53-00269e7f71dd}\Shell\AutoRun\command - "" = F:\setup.exe
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
========== Files/Folders - Created Within 30 Days ========== [2013/11/27 23:54:19 | 000,000,000 | ---D | C] -- C:\Windows\ERUNT
[2013/11/27 23:45:11 | 000,000,000 | ---D | C] -- C:\AdwCleaner
[2013/11/27 23:28:27 | 000,000,000 | ---D | C] -- C:\_OTL
[2013/11/27 23:16:18 | 000,000,000 | -HSD | C] -- C:\Config.Msi
[2013/11/27 23:07:55 | 001,034,531 | ---- | C] (Thisisu) -- C:\Users\Portable\Desktop\JRT.exe
[2013/11/27 13:46:18 | 000,000,000 | ---D | C] -- C:\Users\Portable\Desktop\Nouveau dossier (2)
[2013/11/27 13:39:48 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\Portable\Desktop\OTL.exe
[2013/11/27 13:39:26 | 004,745,728 | ---- | C] (AVAST Software) -- C:\Users\Portable\Desktop\aswmbr.exe
[2013/11/27 12:33:48 | 000,000,000 | ---D | C] -- C:\Users\Portable\Desktop\[www.Cpasbien.me] Sinister.2012.FRENCH.DVDRip.XviD-TMB
[2013/11/26 21:43:50 | 000,000,000 | ---D | C] -- C:\Users\Portable\Documents\Any Video Converter Professional
[2013/11/26 21:43:40 | 000,000,000 | ---D | C] -- C:\Users\Portable\AppData\Roaming\AnvSoft
[2013/11/26 21:19:02 | 000,000,000 | ---D | C] -- C:\Users\Portable\Desktop\Nouveau dossier
[2013/11/26 21:18:52 | 000,000,000 | ---D | C] -- C:\Users\Portable\AppData\Roaming\VC
[2013/11/26 21:18:52 | 000,000,000 | ---D | C] -- C:\Users\Portable\Documents\TEncoder
[2013/11/26 18:55:43 | 002,330,112 | ---- | C] (Mischel Internet Security) -- C:\Users\Portable\Desktop\FlashCookieRemover.exe
[2013/11/18 18:34:26 | 000,000,000 | ---D | C] -- C:\Users\Portable\Desktop\H Saison 4
[2013/11/17 18:16:11 | 000,000,000 | ---D | C] -- C:\Users\Portable\AppData\Roaming\X-Chat 2
[2013/11/17 18:16:08 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\XChat
[2013/11/17 18:16:08 | 000,000,000 | ---D | C] -- C:\Program Files\xchat
[2013/11/16 13:29:09 | 000,000,000 | ---D | C] -- C:\Users\Portable\AppData\Roaming\AVAST Software
[2013/11/16 13:28:39 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast
[2013/11/16 13:24:27 | 000,057,672 | ---- | C] (AVAST Software) -- C:\Windows\System32\drivers\aswTdi.sys
[2013/11/16 13:24:26 | 000,403,440 | ---- | C] (AVAST Software) -- C:\Windows\System32\drivers\aswSP.sys
[2013/11/16 13:24:24 | 000,774,392 | ---- | C] (AVAST Software) -- C:\Windows\System32\drivers\aswSnx.sys
[2013/11/16 13:24:23 | 000,070,384 | ---- | C] (AVAST Software) -- C:\Windows\System32\drivers\aswMonFlt.sys
[2013/11/16 13:24:22 | 000,035,656 | ---- | C] (AVAST Software) -- C:\Windows\System32\drivers\aswFsBlk.sys
[2013/11/16 13:24:20 | 000,054,832 | ---- | C] (AVAST Software) -- C:\Windows\System32\drivers\aswRdr.sys
[2013/11/16 13:24:18 | 000,026,136 | ---- | C] (AVAST Software) -- C:\Windows\System32\drivers\aswKbd.sys
[2013/11/16 13:24:17 | 000,247,192 | ---- | C] (AVAST Software) -- C:\Windows\System32\drivers\aswndis2.sys
[2013/11/16 13:23:53 | 000,043,152 | ---- | C] (AVAST Software) -- C:\Windows\avastSS.scr
[2013/11/16 13:23:20 | 000,012,112 | ---- | C] (ALWIL Software) -- C:\Windows\System32\drivers\aswNdis.sys
[2013/11/15 21:52:58 | 000,000,000 | ---D | C] -- C:\Users\Portable\AppData\Roaming\TeamViewer
[2013/11/15 21:45:20 | 000,000,000 | ---D | C] -- C:\Program Files\TeamViewer
[2013/11/15 21:12:59 | 000,031,560 | ---- | C] (LogMeIn, Inc.) -- C:\Windows\System32\LMIport.dll
[2013/11/15 21:12:54 | 000,086,888 | ---- | C] (LogMeIn, Inc.) -- C:\Windows\System32\LMIRfsClientNP.dll
[2013/11/15 21:12:54 | 000,047,640 | ---- | C] (LogMeIn, Inc.) -- C:\Windows\System32\drivers\LMIRfsDriver.sys
[2013/11/15 21:12:47 | 000,085,832 | ---- | C] (LogMeIn, Inc.) -- C:\Windows\System32\LMIinit.dll
[2013/11/15 21:12:05 | 000,000,000 | ---D | C] -- C:\Program Files\LogMeIn
[2013/10/31 08:50:50 | 006,583,664 | ---- | C] (AVAST Software) -- C:\Program Fil
========== Files - Modified Within 30 Days ========== [2013/11/27 23:58:33 | 000,000,256 | ---- | M] () -- C:\ProgramData\hpqp.ini
[2013/11/27 23:58:03 | 000,001,024 | ---- | M] () -- C:\.rnd
[2013/11/27 23:56:54 | 000,001,056 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2013/11/27 23:56:52 | 000,003,216 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2013/11/27 23:56:52 | 000,003,216 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2013/11/27 23:56:44 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2013/11/27 23:31:05 | 000,000,940 | ---- | M] () -- C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-2259745054-535292464-177051247-1000UA.job
[2013/11/27 23:11:00 | 000,001,060 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2013/11/27 23:08:04 | 001,034,531 | ---- | M] (Thisisu) -- C:\Users\Portable\Desktop\JRT.exe
[2013/11/27 23:07:50 | 001,091,882 | ---- | M] () -- C:\Users\Portable\Desktop\adwcleaner.exe
[2013/11/27 23:01:36 | 000,840,264 | ---- | M] () -- C:\Users\Portable\Desktop\pbsvc.exe
[2013/11/27 21:23:45 | 000,117,760 | ---- | M] () -- C:\Users\Portable\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2013/11/27 20:31:01 | 000,000,918 | ---- | M] () -- C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-2259745054-535292464-177051247-1000Core.job
[2013/11/27 13:45:12 | 000,126,546 | ---- | M] () -- C:\Users\Portable\Desktop\Sans titre.jpg
[2013/11/27 13:39:52 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Portable\Desktop\OTL.exe
[2013/11/27 13:39:36 | 004,745,728 | ---- | M] (AVAST Software) -- C:\Users\Portable\Desktop\aswmbr.exe
[2013/11/27 12:33:07 | 000,057,123 | ---- | M] () -- C:\Users\Portable\Desktop\sinister-french-dvdrip-2012.torrent
[2013/11/26 21:52:36 | 001,279,960 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2013/11/26 21:52:36 | 000,751,776 | ---- | M] () -- C:\Windows\System32\perfh00C.dat
[2013/11/26 21:52:36 | 000,721,058 | ---- | M] () -- C:\Windows\System32\perfh013.dat
[2013/11/26 21:52:36 | 000,156,364 | ---- | M] () -- C:\Windows\System32\perfc00C.dat
[2013/11/26 21:52:36 | 000,153,434 | ---- | M] () -- C:\Windows\System32\perfc013.dat
[2013/11/26 21:52:35 | 000,705,836 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2013/11/26 18:55:52 | 002,330,112 | ---- | M] (Mischel Internet Security) -- C:\Users\Portable\Desktop\FlashCookieRemover.exe
[2013/11/26 17:36:09 | 000,000,048 | ---- | M] () -- C:\Users\Portable\Desktop\Filma shqip.url
[2013/11/24 13:55:21 | 000,033,959 | ---- | M] () -- C:\Users\Portable\Desktop\Les nuits avec mon ennemi (Sleeping with the enemy) HD.avi.torrent
[2013/11/22 06:15:24 | 165,247,010 | ---- | M] () -- C:\Windows\MEMORY.DMP
[2013/11/21 20:31:41 | 000,421,888 | ---- | M] () -- C:\Users\Portable\Desktop\Folder campustoverfluit.pub
[2013/11/21 20:13:40 | 000,013,674 | ---- | M] () -- C:\Users\Portable\Desktop\studenthh.png
[2013/11/21 19:33:15 | 000,005,310 | ---- | M] () -- C:\Users\Portable\Desktop\slogan.png
[2013/11/21 19:33:01 | 000,036,449 | ---- | M] () -- C:\Users\Portable\Desktop\logo.png
[2013/11/19 01:01:48 | 000,247,192 | ---- | M] (AVAST Software) -- C:\Windows\System32\drivers\aswndis2.sys
[2013/11/18 05:42:19 | 000,396,656 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2013/11/17 20:16:32 | 2501,922,816 | ---- | M] () -- C:\Users\Portable\Desktop\Windows 7 Ultimate 32-bit [Original].iso
[2013/11/17 19:36:38 | 000,003,090 | ---- | M] () -- C:\Users\Portable\Desktop\[kickass.to]windows.7.loader.activator.v2.0.6.reloaded.daz.team.rjaa.torrent
[2013/11/16 13:28:39 | 000,001,919 | ---- | M] () -- C:\Users\Public\Desktop\avast! SafeZone.lnk
[2013/11/16 13:28:39 | 000,001,859 | ---- | M] () -- C:\Users\Public\Desktop\avast! Premier.lnk
[2013/11/16 13:23:57 | 000,774,392 | ---- | M] (AVAST Software) -- C:\Windows\System32\drivers\aswSnx.sys
[2013/11/16 13:23:57 | 000,403,440 | ---- | M] (AVAST Software) -- C:\Windows\System32\drivers\aswSP.sys
[2013/11/16 13:23:57 | 000,178,304 | ---- | M] () -- C:\Windows\System32\drivers\aswVmm.sys
[2013/11/16 13:23:57 | 000,057,672 | ---- | M] (AVAST Software) -- C:\Windows\System32\drivers\aswTdi.sys
[2013/11/16 13:23:57 | 000,049,944 | ---- | M] () -- C:\Windows\System32\drivers\aswRvrt.sys
[2013/11/16 13:23:56 | 000,070,384 | ---- | M] (AVAST Software) -- C:\Windows\System32\drivers\aswMonFlt.sys
[2013/11/16 13:23:56 | 000,054,832 | ---- | M] (AVAST Software) -- C:\Windows\System32\drivers\aswRdr.sys
[2013/11/16 13:23:56 | 000,035,656 | ---- | M] (AVAST Software) -- C:\Windows\System32\drivers\aswFsBlk.sys
[2013/11/16 13:23:53 | 000,269,216 | ---- | M] (AVAST Software) -- C:\Windows\System32\aswBoot.exe
[2013/11/16 13:23:53 | 000,043,152 | ---- | M] (AVAST Software) -- C:\Windows\avastSS.scr
[2013/11/16 13:23:29 | 000,026,136 | ---- | M] (AVAST Software) -- C:\Windows\System32\drivers\aswKbd.sys
[2013/11/16 13:23:20 | 000,012,112 | ---- | M] (ALWIL Software) -- C:\Windows\System32\drivers\aswNdis.sys
[2013/11/15 21:45:25 | 000,000,955 | ---- | M] () -- C:\Users\Public\Desktop\TeamViewer 8.lnk
[2013/11/15 05:13:58 | 000,001,969 | ---- | M] () -- C:\Users\Public\Desktop\Google Chrome.lnk
[2013/11/04 21:08:25 | 000,006,756 | ---- | M] () -- C:\Users\Portable\AppData\Local\d3d9caps.dat
[2013/10/30 15:18:31 | 697,745,408 | ---- | M] () -- C:\Users\Portable\Desktop\187.Code.Meurtre.Tetar.DVD-RIP-Fr.avi
[2013/10/29 14:19:06 | 000,000,334 | ---- | M] () -- C:\Windows\tasks\HPCeeScheduleForPortable.job
========== Files Created - No Company Name ========== [2013/11/27 23:07:40 | 001,091,882 | ---- | C] () -- C:\Users\Portable\Desktop\adwcleaner.exe
[2013/11/27 23:01:25 | 000,840,264 | ---- | C] () -- C:\Users\Portable\Desktop\pbsvc.exe
[2013/11/27 13:45:10 | 000,126,546 | ---- | C] () -- C:\Users\Portable\Desktop\Sans titre.jpg
[2013/11/27 12:33:12 | 000,057,123 | ---- | C] () -- C:\Users\Portable\Desktop\sinister-french-dvdrip-2012.torrent
[2013/11/26 17:36:09 | 000,000,048 | ---- | C] () -- C:\Users\Portable\Desktop\Filma shqip.url
[2013/11/24 13:55:19 | 000,033,959 | ---- | C] () -- C:\Users\Portable\Desktop\Les nuits avec mon ennemi (Sleeping with the enemy) HD.avi.torrent
[2013/11/21 20:31:41 | 000,421,888 | ---- | C] () -- C:\Users\Portable\Desktop\Folder campustoverfluit.pub
[2013/11/21 20:13:38 | 000,013,674 | ---- | C] () -- C:\Users\Portable\Desktop\studenthh.png
[2013/11/21 19:33:12 | 000,005,310 | ---- | C] () -- C:\Users\Portable\Desktop\slogan.png
[2013/11/21 19:32:58 | 000,036,449 | ---- | C] () -- C:\Users\Portable\Desktop\logo.png
[2013/11/19 19:46:33 | 165,247,010 | ---- | C] () -- C:\Windows\MEMORY.DMP
[2013/11/18 05:41:57 | 000,396,656 | ---- | C] () -- C:\Windows\System32\FNTCACHE.DAT
[2013/11/17 19:37:46 | 2501,922,816 | ---- | C] () -- C:\Users\Portable\Desktop\Windows 7 Ultimate 32-bit [Original].iso
[2013/11/17 19:36:42 | 000,003,090 | ---- | C] () -- C:\Users\Portable\Desktop\[kickass.to]windows.7.loader.activator.v2.0.6.reloaded.daz.team.rjaa.torrent
[2013/11/16 13:28:39 | 000,001,919 | ---- | C] () -- C:\Users\Public\Desktop\avast! SafeZone.lnk
[2013/11/16 13:28:39 | 000,001,859 | ---- | C] () -- C:\Users\Public\Desktop\avast! Premier.lnk
[2013/11/16 13:24:26 | 000,178,304 | ---- | C] () -- C:\Windows\System32\drivers\aswVmm.sys
[2013/11/16 13:24:25 | 000,049,944 | ---- | C] () -- C:\Windows\System32\drivers\aswRvrt.sys
[2013/11/15 21:45:25 | 000,000,967 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 8.lnk
[2013/11/15 21:45:25 | 000,000,955 | ---- | C] () -- C:\Users\Public\Desktop\TeamViewer 8.lnk
[2013/11/13 06:02:25 | 000,218,228 | ---- | C] () -- C:\Windows\System32\WFP.TMF
[2013/10/29 20:02:34 | 697,745,408 | ---- | C] () -- C:\Users\Portable\Desktop\187.Code.Meurtre.Tetar.DVD-RIP-Fr.avi
[2013/10/26 14:15:16 | 000,000,218 | ---- | C] () -- C:\Users\Portable\AppData\Local\recently-used.xbel
[2013/10/01 17:56:09 | 000,000,290 | RHS- | C] () -- C:\ProgramData\ntuser.pol
[2013/08/28 22:03:36 | 000,054,272 | ---- | C] () -- C:\Windows\sassr.dat
[2013/08/20 12:29:23 | 000,061,952 | -H-- | C] () -- C:\Windows\System32\sinvfct.dll
[2013/07/18 16:40:42 | 000,110,080 | ---- | C] () -- C:\Windows\sysk32.dll
[2013/06/27 21:26:34 | 000,000,175 | ---- | C] () -- C:\Windows\System32\drivers\aswVmm.sys.sum
[2013/06/27 09:54:47 | 000,000,175 | ---- | C] () -- C:\Windows\System32\drivers\aswSnx.sys.sum
[2013/06/27 09:54:34 | 000,000,175 | ---- | C] () -- C:\Windows\System32\drivers\aswSP.sys.sum
[2013/05/22 19:43:48 | 000,974,848 | ---- | C] () -- C:\Windows\System32\cis-2.4.dll
[2013/05/22 19:43:48 | 000,081,920 | ---- | C] () -- C:\Windows\System32\issacapi_bs-2.3.dll
[2013/05/22 19:43:48 | 000,065,536 | ---- | C] () -- C:\Windows\System32\issacapi_pe-2.3.dll
[2013/05/22 19:43:48 | 000,057,344 | ---- | C] () -- C:\Windows\System32\issacapi_se-2.3.dll
[2013/05/18 19:40:41 | 000,129,024 | ---- | C] () -- C:\Windows\System32\AVERM.dll
[2013/05/18 19:40:41 | 000,028,672 | ---- | C] () -- C:\Windows\System32\AVEQT.dll
[2013/05/18 18:53:36 | 000,178,688 | ---- | C] () -- C:\Windows\System32\unrar.dll
[2013/04/28 14:22:50 | 000,003,153 | ---- | C] () -- C:\Program Files\visit-nosteam.ro.html
[2013/04/28 14:22:50 | 000,000,084 | ---- | C] () -- C:\Program Files\update-cssource.bat
[2013/01/26 17:49:33 | 000,000,000 | ---- | C] () -- C:\Windows\nsreg.dat
[2013/01/26 17:48:48 | 000,004,578 | ---- | C] () -- C:\Windows\mozver.dat
[2013/01/02 20:18:30 | 000,022,328 | ---- | C] () -- C:\Users\Portable\AppData\Roaming\PnkBstrK.sys
[2013/01/02 20:18:05 | 000,000,319 | ---- | C] () -- C:\Windows\game.ini
[2012/12/14 22:32:03 | 000,000,000 | ---- | C] () -- C:\Users\Portable\cd
[2012/05/16 13:56:15 | 000,000,091 | ---- | C] () -- C:\Windows\LEXSTAT.INI
[2011/12/17 11:43:34 | 000,117,760 | ---- | C] () -- C:\Users\Portable\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011/12/14 20:36:47 | 000,110,592 | ---- | C] () -- C:\Windows\System32\FsUsbExDevice.Dll
[2011/12/14 20:36:47 | 000,036,608 | ---- | C] () -- C:\Windows\System32\FsUsbExDisk.Sys
[2011/12/12 17:10:40 | 000,107,612 | ---- | C] () -- C:\Windows\System32\StructuredQuerySchema.bin
[2011/12/12 17:10:39 | 000,117,248 | ---- | C] () -- C:\Windows\System32\EhStorAuthn.dll
[2011/12/12 14:14:19 | 000,000,056 | -H-- | C] () -- C:\Windows\System32\ezsidmv.dat
[2011/11/29 08:13:16 | 000,006,756 | ---- | C] () -- C:\Users\Portable\AppData\Local\d3d9caps.dat
[2011/11/29 01:07:19 | 000,000,256 | ---- | C] () -- C:\ProgramData\hpqp.ini
========== ZeroAccess Check ========== [2006/11/02 13:54:22 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini
[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2012/06/08 18:47:00 | 011,586,048 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2009/04/11 07:28:19 | 000,614,912 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
"" = %systemroot%\system32\wbem\wbemess.dll -- [2009/04/11 07:28:25 | 000,347,648 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both
========== LOP Check ========== [2013/11/26 21:43:40 | 000,000,000 | ---D | M] -- C:\Users\Portable\AppData\Roaming\AnvSoft
[2013/11/16 13:29:09 | 000,000,000 | ---D | M] -- C:\Users\Portable\AppData\Roaming\AVAST Software
[2013/11/27 23:07:22 | 000,000,000 | ---D | M] -- C:\Users\Portable\AppData\Roaming\BitTorrent
[2013/10/11 03:55:24 | 000,000,000 | ---D | M] -- C:\Users\Portable\AppData\Roaming\BleachBit
[2013/03/26 13:53:26 | 000,000,000 | ---D | M] -- C:\Users\Portable\AppData\Roaming\CoffeeCup Software
[2012/08/24 11:56:38 | 000,000,000 | ---D | M] -- C:\Users\Portable\AppData\Roaming\com.zoosk.Desktop.096E6A67431258A508A2446A847B240591D2C99B.1
[2013/11/22 23:08:46 | 000,000,000 | ---D | M] -- C:\Users\Portable\AppData\Roaming\DAEMON Tools Lite
[2013/02/24 04:48:11 | 000,000,000 | ---D | M] -- C:\Users\Portable\AppData\Roaming\Dev-Cpp
[2013/10/30 01:52:42 | 000,000,000 | ---D | M] -- C:\Users\Portable\AppData\Roaming\FileZilla
[2013/05/18 19:40:38 | 000,000,000 | ---D | M] -- C:\Users\Portable\AppData\Roaming\GetRightToGo
[2012/06/26 13:23:13 | 000,000,000 | ---D | M] -- C:\Users\Portable\AppData\Roaming\Haihaisoft PDF Reader
[2013/05/18 18:55:36 | 000,000,000 | ---D | M] -- C:\Users\Portable\AppData\Roaming\Leawo
[2011/12/14 21:01:40 | 000,000,000 | ---D | M] -- C:\Users\Portable\AppData\Roaming\PC Suite
[2013/06/23 20:31:28 | 000,000,000 | ---D | M] -- C:\Users\Portable\AppData\Roaming\Radmin
[2013/09/13 18:53:07 | 000,000,000 | ---D | M] -- C:\Users\Portable\AppData\Roaming\Samsung
[2013/03/14 18:22:53 | 000,000,000 | ---D | M] -- C:\Users\Portable\AppData\Roaming\Systenance
[2013/11/15 21:54:08 | 000,000,000 | ---D | M] -- C:\Users\Portable\AppData\Roaming\TeamViewer
[2013/10/27 22:47:59 | 000,000,000 | ---D | M] -- C:\Users\Portable\AppData\Roaming\Tenable
[2013/05/18 18:55:38 | 000,000,000 | ---D | M] -- C:\Users\Portable\AppData\Roaming\tiger-k
[2013/11/26 21:41:16 | 000,000,000 | ---D | M] -- C:\Users\Portable\AppData\Roaming\VC
[2013/01/25 15:10:48 | 000,000,000 | ---D | M] -- C:\Users\Portable\AppData\Roaming\WildTangent
[2013/10/07 08:39:04 | 000,000,000 | ---D | M] -- C:\Users\Portable\AppData\Roaming\Windows Live Writer
[2013/01/26 18:24:08 | 000,000,000 | ---D | M] -- C:\Users\Portable\AppData\Roaming\Wireshark
[2013/11/26 22:27:44 | 000,000,000 | ---D | M] -- C:\Users\Portable\AppData\Roaming\X-Chat 2
[2013/10/21 14:58:24 | 000,000,000 | ---D | M] -- C:\Users\Portable\AppData\Roaming\ZHP
========== Purity Check ========== < End of report >
AND AGAIN A BIG THANKS TO YOU 
This topic is locked
Sign In
Create Account
