Jump to content

Change Mode

Found lots of virus in my computer with combofix


zedszeds
 Share

Recommended Posts

Hello,

 

Recently i encountered in this computer that was causing the computer to slow down.

There was the same error with this topic http://forums.pcpitstop.com/index.php?/topic/199434-csrssexe-rundll32exe-winlogonexe-in-task-manager/ Then i followed the steps untill i got to the point that eset online scan showed 29 threats. I dont know how to Write a JFScript to drag into Combofix for this.

This is the log produced by Eset onlice Scan

 

C:\Qoobox\Quarantine\C\Users\Indeni\AppData\Local\lsass.exe.vir Win32/Brontok.AQ worm
C:\Qoobox\Quarantine\C\Users\Indeni\AppData\Local\services.exe.vir Win32/Brontok.AQ worm
C:\Qoobox\Quarantine\C\Users\Indeni\AppData\Local\winlogon.exe.vir Win32/Brontok.AQ worm
C:\Qoobox\Quarantine\C\Users\Indeni\AppData\Roaming\Microsoft\Windows\Templates\Brengkolang.com.vir Win32/Brontok.AQ worm
C:\Users\Indeni\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\1FKF59XL\Setup[1].exe a variant of Win32/SoftPulse.B potentially unwanted application
C:\Users\Indeni\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\16\7dc65750-4a10bfa2 Java/Exploit.Agent.PYM trojan
C:\Users\Indeni\Desktop\L2\Nouveau dossier\Activateur\mini-KMS_Activator_v1.052.exe Win32/HackKMS.A potentially unsafe application
C:\Users\Indeni\Downloads\BandooV8.exe Win32/Toolbar.SearchSuite potentially unwanted application
C:\Users\Indeni\Downloads\GamingWonderland.exe a variant of Win32/AdInstaller potentially unwanted application
C:\Windows\KMService.exe Win32/HackKMS.A potentially unsafe application
C:\Windows\Installer\9f4686.msi a variant of Win32/Toolbar.Iminent.E potentially unwanted application
D:\INDENI-PC\Backup Set 2012-12-22 190743\Backup Files 2012-12-31 005058\Backup files 1.zip a variant of Win32/Bundled.Toolbar.Ask potentially unsafe application
D:\INDENI-PC\Backup Set 2012-12-22 190743\Backup Files 2013-02-03 204602\Backup files 1.zip Win32/Toolbar.SearchSuite potentially unwanted application
D:\INDENI-PC\Backup Set 2013-02-17 212033\Backup Files 2013-02-17 212033\Backup files 2.zip Win32/Toolbar.SearchSuite potentially unwanted application
D:\INDENI-PC\Backup Set 2013-03-17 205604\Backup Files 2013-03-17 205604\Backup files 2.zip Win32/Toolbar.SearchSuite potentially unwanted application
D:\INDENI-PC\Backup Set 2013-03-17 205604\Backup Files 2013-05-05 210340\Backup files 1.zip a variant of Java/Exploit.CVE-2013-2423.AZ trojan
D:\INDENI-PC\Backup Set 2013-03-17 205604\Backup Files 2013-07-14 233709\Backup files 1.zip Win32/Brontok.AQ worm
D:\INDENI-PC\Backup Set 2013-10-13 224540\Backup Files 2013-10-13 224540\Backup files 1.zip Win32/Brontok.AQ worm
D:\INDENI-PC\Backup Set 2013-10-13 224540\Backup Files 2013-10-13 224540\Backup files 3.zip multiple threats
D:\INDENI-PC\Backup Set 2013-10-13 224540\Backup Files 2013-10-27 190002\Backup files 1.zip Java/Exploit.Agent.PYM trojan
D:\INDENI-PC\Backup Set 2013-12-29 194800\Backup Files 2013-12-29 194800\Backup files 1.zip Win32/Brontok.AQ worm
D:\INDENI-PC\Backup Set 2013-12-29 194800\Backup Files 2013-12-29 194800\Backup files 3.zip multiple threats
D:\INDENI-PC\Backup Set 2013-12-29 194800\Backup Files 2014-04-13 200933\Backup files 1.zip a variant of Win32/AdInstaller potentially unwanted application
D:\INDENI-PC\Backup Set 2014-08-24 153749\Backup Files 2014-08-24 153749\Backup files 1.zip Win32/Brontok.AQ worm
D:\INDENI-PC\Backup Set 2014-08-24 153749\Backup Files 2014-08-24 153749\Backup files 3.zip multiple threats
D:\INDENI-PC\Backup Set 2014-08-24 153749\Backup Files 2014-08-24 190001\Backup files 1.zip Win32/HackKMS.A potentially unsafe application
Link to comment
Share on other sites

It's concerning to see so many backups you made that were found to be infected.

You can manually delete those out.

I will work with you to clean up your computer but you should still allow me to check further to see if something else lingers.

 

 

It also appears your Java is out of date and should be updated as soon as possible.

 

STEP 1

6tJPTVb.pngJavaRa

  • Please download JavaRa and save the file to your Desktop.
  • Close any open windows.
  • Right-Click JavaRa.exe and select AVOiBNU.jpg Run as administrator to run the programme.
  • Click Remove JRE.
  • Skip Step 1 and click the next button.
  • Click Perform Removal Routine.
  • Upon completion, click OK.
  • Click Next and skip the downloading process. Click Next, followed by Close this wizard, followed by Finish.
  • Return to the main menu and click Additional Tasks.
  • Place a checkmark next to Remove startup entry, Remove Outdated JRE Firefox Extentions and Clean JRE Temp Files.
  • Note: Ensure no browser windows are open.
  • Click Run.
  • Upon completion, the following message will be displayed: Selected tasks completed successfully.
  • Close JavaRa.
~~~~~~~~~~~~~`

Download the latest version of Java here

https://java.com/en/download/index.jsp

 

 

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

  • Please download OTM by OldTimer and save it to your desktop.
  • Double click the OTMdesktopicon.png icon on your desktop.
  • Paste the following code under the pasteline.png area. Do not include the word "Code".
C:\Users\Indeni\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\1FKF59XL\Setup[1].exe 
C:\Users\Indeni\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\16\7dc65750-4a10bfa2 
C:\Users\Indeni\Desktop\L2\Nouveau dossier\Activateur\mini-KMS_Activator_v1.052.exe 
C:\Users\Indeni\Downloads\BandooV8.exe 
C:\Users\Indeni\Downloads\GamingWonderland.exe 
C:\Windows\KMService.exe 
C:\Windows\Installer\9f4686.msi
  • Push the large btnmoveit.png button.
  • OTM may ask to reboot the machine. Please do so if asked.
  • Copy/Paste the contents under the results.png line here in your next reply.
  • If you are unable to copy/paste from this window (as will be the case if the machine was rebooted), open Notepad (Start->All Programs->Accessories->Notepad), click File->Open, in the File Name box enter *.log and press the Enter key, navigate to the C:\_OTM\MovedFiles folder, and open the newest .log file present, and copy/paste the contents of that document back here in your next post.
~~~~~~~~~~~~~~~~~~~~~~

 

STEP 1

xlK5Hdb.pngFarbar Recovery Scan Tool (FRST) Scan

  • Please download Farbar Recovery Scan Tool (x32) or Farbar Recovery Scan Tool (x64) and save the file to your Desktop.
  • Note: Download and run the version compatible with your system (32 or 64-bit). Download both if you're unsure; only one will run.
  • Right-Click FRST.exe / FRST64.exe and select AVOiBNU.jpgRun as administrator to run the programme.
  • Click Yes to the disclaimer.
  • Ensure the Addition.txt box is checked.
  • Click the Scan button and let the programme run.
  • Upon completion, click OK, then OK on the Addition.txt pop up screen.
  • Two logs (FRST.txt & Addition.txt) will now be open on your Desktop. Copy the contents of both logs and paste in your next reply.
Please post:

OTM log

FRST.txt & Addition.txt

Link to comment
Share on other sites

Hello, thank you for your help. These are the logs you requested;

 

OTM log, the computer didint ask for a reboot.

 

Error: Unable to interpret <C:\Users\Indeni\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\1FKF59XL\Setup[1].exe > in the current context!
Error: Unable to interpret <C:\Users\Indeni\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\16\7dc65750-4a10bfa2 > in the current context!
Error: Unable to interpret <C:\Users\Indeni\Desktop\L2\Nouveau dossier\Activateur\mini-KMS_Activator_v1.052.exe > in the current context!
Error: Unable to interpret <C:\Users\Indeni\Downloads\BandooV8.exe > in the current context!
Error: Unable to interpret <C:\Users\Indeni\Downloads\GamingWonderland.exe > in the current context!
Error: Unable to interpret <C:\Windows\KMService.exe > in the current context!
Error: Unable to interpret <C:\Windows\Installer\9f4686.msi> in the current context!
OTM by OldTimer - Version 3.1.21.0 log created on 12172014_224555
FRST Bloc notes
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 17-12-2014
Ran by Indeni (administrator) on INDENI-PC on 17-12-2014 22:50:51
Running from C:\Users\Indeni\Desktop
Loaded Profiles: UpdatusUser & Indeni (Available profiles: UpdatusUser & Indeni)
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: Français (France)
Internet Explorer Version 11
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(ASUSTeK Computer Inc.) C:\Windows\System32\FBAgent.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Intel Corporation) C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe
(ASUS) C:\Program Files (x86)\Common Files\InstantOn\InsOnSrv.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgfws.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgwdsvc.exe
(Intel® Corporation) C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe
(Intel® Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
() C:\Windows\SysWOW64\srvany.exe
(Intel® Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
() C:\Windows\KMService.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(ASUS) C:\Program Files (x86)\Common Files\InstantOn\InsOnWMI.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(Alcor Micro Corp.) C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Intel® Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Hewlett-Packard Co.) C:\Program Files\HP\HP Deskjet 3520 series\Bin\ScanToPCActivationApp.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgui.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
(Intel® Corporation) C:\Program Files\Intel\TurboBoost\TurboBoost.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(OldTimer Tools) C:\Users\Indeni\Desktop\OTM.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2014\avgcfgex.exe
==================== Registry (Whitelisted) ==================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [2589992 2011-07-20] (ELAN Microelectronics Corp.)
HKLM\...\Run: [AmIcoSinglun64] => C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe [361984 2011-03-21] (Alcor Micro Corp.)
HKLM\...\Run: [RtHDVBg] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2277992 2011-11-03] (Realtek Semiconductor)
HKLM\...\Run: [intelPAN] => C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe [1935120 2011-07-28] (Intel® Corporation)
HKLM\...\Run: [intelTBRunOnce] => wscript.exe //b //nologo "C:\Program Files\Intel\TurboBoost\RunTBGadgetOnce.vbs"
HKLM\...\Run: [bCSSync] => C:\Program Files\Microsoft Office\Office14\BCSSync.exe [108144 2012-11-05] (Microsoft Corporation)
HKLM-x32\...\Run: [Wireless Console 3] => C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe [2317312 2011-09-13] (ASUS)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [AVG_UI] => C:\Program Files (x86)\AVG\AVG2014\avgui.exe [5188112 2014-11-07] (AVG Technologies CZ, s.r.o.)
HKLM-x32\...\Run: [sunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [507776 2014-10-07] (Oracle Corporation)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-678856991-1506563292-703705187-1000\...\Run: [iSUSPM] => C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe [222496 2009-05-06] (Acresso Corporation)
HKU\S-1-5-21-678856991-1506563292-703705187-1001\...\Run: [HP Deskjet 3520 series (NET)] => C:\Program Files\HP\HP Deskjet 3520 series\Bin\ScanToPCActivationApp.exe [2573416 2012-10-17] (Hewlett-Packard Co.)
HKU\S-1-5-21-678856991-1506563292-703705187-1001\...\Run: [GUDelayStartup] => C:\Program Files (x86)\Glary Utilities 5\StartupManager.exe [37152 2014-08-18] (Glarysoft Ltd)
HKU\S-1-5-21-678856991-1506563292-703705187-1001\...\Run: [Facebook Update] => C:\Users\Indeni\AppData\Local\Facebook\Update\FacebookUpdate.exe [138096 2014-12-15] (Facebook Inc.)
AppInit_DLLs: C:\Windows\System32\nvinitx.dll => C:\Windows\System32\nvinitx.dll [241984 2011-10-17] (NVIDIA Corporation)
AppInit_DLLs-x32: C:\Windows\SysWOW64\nvinit.dll => C:\Windows\SysWOW64\nvinit.dll [203072 2011-10-17] (NVIDIA Corporation)
Startup: C:\Users\Indeni\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Intel® Turbo Boost Technology Monitor 2.0.lnk
ShortcutTarget: Intel® Turbo Boost Technology Monitor 2.0.lnk -> C:\Program Files\Intel\TurboBoost\SignalIslandUi.exe (Intel® Corporation)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => No File
ShellIconOverlayIdentifiers: [AsusWSShellExt_B] -> {6D4133E5-0742-4ADC-8A8C-9303440F7190} => C:\Program Files (x86)\ASUS\ASUS WebStorage\3.0.108.222\ASUSWSShellExt64.dll (eCareme Technologies, Inc.)
ShellIconOverlayIdentifiers: [AsusWSShellExt_O] -> {64174815-8D98-4CE6-8646-4C039977D808} => C:\Program Files (x86)\ASUS\ASUS WebStorage\3.0.108.222\ASUSWSShellExt64.dll (eCareme Technologies, Inc.)
BootExecute: autocheck autochk * BootDefrag.exe
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKU\S-1-5-21-678856991-1506563292-703705187-1001\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=msnhome
HKU\S-1-5-21-678856991-1506563292-703705187-1000\Software\Microsoft\Internet Explorer\Main,Start Page = http://asus.msn.com
HKU\S-1-5-21-678856991-1506563292-703705187-1000\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://asus.msn.com
HKU\S-1-5-21-678856991-1506563292-703705187-1001\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\S-1-5-21-678856991-1506563292-703705187-1001\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
SearchScopes: HKLM -> DefaultScope value is missing.
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/search?q={searchTerms}&form=ASUTDF&pc=NP06&src=IE-SearchBox
SearchScopes: HKLM-x32 -> DefaultScope value is missing.
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/search?q={searchTerms}&form=ASUTDF&pc=NP06&src=IE-SearchBox
SearchScopes: HKU\S-1-5-21-678856991-1506563292-703705187-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-678856991-1506563292-703705187-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
BHO-x32: Java Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\ssv.dll (Oracle Corporation)
BHO-x32: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Java Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - No Name - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - No File
DPF: HKLM {166B1BCA-3F9C-11CF-8075-444553540000} http://download.macromedia.com/pub/shockwave/cabs/director/sw.cab
DPF: HKLM-x32 {20A60F0D-9AFA-4515-A0FD-83BD84642501} http://messenger.zone.msn.com/binary/msgrchkr.cab56986.cab
DPF: HKLM-x32 {7530BFB8-7293-4D34-9923-61A11451AFC5} http://download.eset.com/special/eos/OnlineScanner.cab
DPF: HKLM-x32 {C3F79A2B-B9B4-4A66-B012-3EE46475B072} http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
DPF: HKLM-x32 {E55FD215-A32E-43FE-A777-A7E8F165F561} http://download.flatcast.net/objects/NpFv530.dll
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.254
FireFox:
========
FF ProfilePath: C:\Users\Indeni\AppData\Roaming\Mozilla\Firefox\Profiles\uuajjg4k.default
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_15_0_0_246.dll ()
FF Plugin: @java.com/DTPlugin,version=10.10.2 -> C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.31211.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.1.3 -> C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_15_0_0_246.dll ()
FF Plugin-x32: @java.com/DTPlugin,version=11.25.2 -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.25.2 -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.31211.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3538.0513 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @rocketlife.com/RocketLife Secure Plug-In Layer;version=1.0.5 -> C:\ProgramData\Visan\plugins\npRLSecurePluginLayer.dll (RocketLife, LLP)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.0.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: ZEON/PDF,version=2.0 -> C:\Program Files (x86)\Nuance\PDF Reader\bin\nppdf.dll (Zeon Corporation)
FF Plugin HKU\S-1-5-21-678856991-1506563292-703705187-1001: @Skype Limited.com/Facebook Video Calling Plugin -> C:\Users\Indeni\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll (Skype Limited)
FF Plugin HKU\S-1-5-21-678856991-1506563292-703705187-1001: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Indeni\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF Plugin HKU\S-1-5-21-678856991-1506563292-703705187-1001: @www.flatcast.com/FlatViewer 5.2 -> C:\Users\Indeni\AppData\Roaming\Flatcast\NpFv522.dll (1 mal 1 Software GmbH)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\NpFv522.dll (1 mal 1 Software GmbH)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\NpFv530.dll (1 mal 1 Software GmbH)
FF Plugin ProgramFiles/Appdata: C:\Users\Indeni\AppData\Roaming\mozilla\plugins\NpFv530.dll (1 mal 1 Software GmbH)
Chrome:
=======
CHR Profile: C:\Users\Indeni\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Voice Search Hotword (Beta)) - C:\Users\Indeni\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2014-09-11]
CHR Extension: (Google Wallet) - C:\Users\Indeni\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-29]
==================== Services (Whitelisted) =================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
R2 avgfws; C:\Program Files (x86)\AVG\AVG2014\avgfws.exe [1417160 2014-11-07] (AVG Technologies CZ, s.r.o.)
S2 AVGIDSAgent; C:\Program Files (x86)\AVG\AVG2014\avgidsagent.exe [3247120 2014-11-07] (AVG Technologies CZ, s.r.o.)
R2 avgwd; C:\Program Files (x86)\AVG\AVG2014\avgwdsvc.exe [289328 2014-11-07] (AVG Technologies CZ, s.r.o.)
R2 KMService; C:\Windows\SysWOW64\srvany.exe [8192 2003-04-18] () [File not signed]
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [340240 2011-07-28] ()
==================== Drivers (Whitelisted) ====================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
U5 AppMgmt; C:\Windows\system32\svchost.exe [27136 2009-07-14] (Microsoft Corporation)
R1 Avgdiska; C:\Windows\System32\DRIVERS\avgdiska.sys [152344 2014-06-30] (AVG Technologies CZ, s.r.o.)
R1 Avgfwfd; C:\Windows\System32\DRIVERS\avgfwd6a.sys [57144 2013-09-26] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSDriver; C:\Windows\System32\DRIVERS\avgidsdrivera.sys [244504 2014-07-21] (AVG Technologies CZ, s.r.o.)
R0 AVGIDSHA; C:\Windows\System32\DRIVERS\avgidsha.sys [190744 2014-06-17] (AVG Technologies CZ, s.r.o.)
R1 Avgldx64; C:\Windows\System32\DRIVERS\avgldx64.sys [237848 2014-10-24] (AVG Technologies CZ, s.r.o.)
R0 Avgloga; C:\Windows\System32\DRIVERS\avgloga.sys [328984 2014-06-17] (AVG Technologies CZ, s.r.o.)
R0 Avgmfx64; C:\Windows\System32\DRIVERS\avgmfx64.sys [123672 2014-10-29] (AVG Technologies CZ, s.r.o.)
R0 Avgrkx64; C:\Windows\System32\DRIVERS\avgrkx64.sys [31512 2014-06-17] (AVG Technologies CZ, s.r.o.)
R1 Avgtdia; C:\Windows\System32\DRIVERS\avgtdia.sys [269080 2014-10-20] (AVG Technologies CZ, s.r.o.)
R0 BootDefragDriver; C:\Windows\System32\drivers\BootDefragDriver.sys [17600 2014-07-18] (Glarysoft Ltd)
R1 GUBootStartup; C:\Windows\System32\drivers\GUBootStartup.sys [20672 2014-08-24] (Glarysoft Ltd)
R3 kbfiltr; C:\Windows\System32\DRIVERS\kbfiltr.sys [15416 2009-07-20] ( )
S3 catchme; \??\C:\ComboFix\catchme.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
==================== One Month Created Files and Folders ========
(If an entry is included in the fixlist, the file\folder will be moved.)
2014-12-17 22:50 - 2014-12-17 22:52 - 00017385 _____ () C:\Users\Indeni\Desktop\FRST.txt
2014-12-17 22:49 - 2014-12-17 22:51 - 00000000 ____D () C:\FRST
2014-12-17 22:48 - 2014-12-17 22:48 - 02121216 _____ (Farbar) C:\Users\Indeni\Desktop\FRST64.exe
2014-12-17 22:45 - 2014-12-17 22:45 - 00000000 ____D () C:\_OTM
2014-12-17 22:41 - 2014-12-17 22:41 - 00522240 _____ (OldTimer Tools) C:\Users\Indeni\Desktop\OTM.exe
2014-12-17 22:41 - 2014-12-17 22:41 - 00514940 _____ () C:\Users\Indeni\Downloads\OTM.exe
2014-12-17 22:33 - 2014-12-17 22:34 - 00638888 _____ (Oracle Corporation) C:\Users\Indeni\Downloads\chromeinstall-8u25.exe
2014-12-17 22:29 - 2014-12-17 22:32 - 00242603 _____ () C:\Users\Indeni\Desktop\JavaRa-17-12-2014.log
2014-12-17 22:22 - 2014-12-17 22:22 - 00159578 _____ () C:\Users\Indeni\Desktop\JavaRa-2.6.zip
2014-12-15 21:32 - 2014-12-15 21:32 - 00347816 _____ (Microsoft Corporation) C:\Users\Indeni\Downloads\MicrosoftFixit.Devices.FISC.1342102623243209.3.1.Run.exe
2014-12-15 19:50 - 2014-12-15 19:50 - 00262144 _____ () C:\Windows\Minidump\121514-4035699-01.dmp
2014-12-15 12:35 - 2014-12-15 12:35 - 00501248 _____ (Facebook Inc.) C:\Users\Indeni\Downloads\FacebookVideoCallSetup_v1.2.205.0 (3).exe
2014-12-15 11:48 - 2014-12-15 11:48 - 00244328 _____ () C:\Users\Indeni\Downloads\Firefox Setup Stub 34.0.5.exe
2014-12-15 11:41 - 2014-12-15 11:41 - 00501248 _____ (Facebook Inc.) C:\Users\Indeni\Downloads\FacebookVideoCallSetup_v1.2.205.0 (2).exe
2014-12-15 11:35 - 2014-12-15 11:35 - 00501248 _____ (Facebook Inc.) C:\Users\Indeni\Downloads\FacebookVideoCallSetup_v1.2.205.0 (1).exe
2014-12-15 09:26 - 2014-12-15 09:26 - 00000000 _____ () C:\Users\Indeni\Desktop\JFScript.txt
2014-12-15 09:23 - 2014-12-15 09:23 - 00003172 _____ () C:\Users\Indeni\Desktop\eset.txt
2014-12-14 22:35 - 2014-12-14 22:35 - 00000266 _____ () C:\Users\Indeni\Downloads\ESETSCAN.txt
2014-12-14 22:35 - 2014-12-14 22:35 - 00000266 _____ () C:\Users\Indeni\Downloads\ESETSCAN (2).txt
2014-12-14 22:35 - 2014-12-14 22:35 - 00000266 _____ () C:\Users\Indeni\Downloads\ESETSCAN (1).txt
2014-12-14 22:24 - 2014-12-14 22:24 - 00000000 ____D () C:\Program Files (x86)\ESET
2014-12-14 22:14 - 2014-12-14 22:14 - 00022614 _____ () C:\ComboFix.txt
2014-12-14 21:50 - 2014-12-14 22:14 - 00000000 ____D () C:\ComboFix
2014-12-14 21:50 - 2011-06-26 07:45 - 00256000 _____ () C:\Windows\PEV.exe
2014-12-14 21:50 - 2010-11-07 18:20 - 00208896 _____ () C:\Windows\MBR.exe
2014-12-14 21:50 - 2009-04-20 05:56 - 00060416 _____ (NirSoft) C:\Windows\NIRCMD.exe
2014-12-14 21:50 - 2000-08-31 01:00 - 00518144 _____ (SteelWerX) C:\Windows\SWREG.exe
2014-12-14 21:50 - 2000-08-31 01:00 - 00406528 _____ (SteelWerX) C:\Windows\SWSC.exe
2014-12-14 21:50 - 2000-08-31 01:00 - 00098816 _____ () C:\Windows\sed.exe
2014-12-14 21:50 - 2000-08-31 01:00 - 00080412 _____ () C:\Windows\grep.exe
2014-12-14 21:50 - 2000-08-31 01:00 - 00068096 _____ () C:\Windows\zip.exe
2014-12-14 21:49 - 2014-12-14 22:14 - 00000000 ____D () C:\Qoobox
2014-12-14 21:48 - 2014-12-14 22:12 - 00000000 ____D () C:\Windows\erdnt
2014-12-14 21:45 - 2014-12-14 21:47 - 05601641 ____R (Swearware) C:\Users\Indeni\Desktop\ComboFix.exe
2014-12-11 16:34 - 2014-12-11 16:35 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-12-10 20:54 - 2014-12-10 20:54 - 00000000 ____D () C:\Windows\system32\appraiser
2014-12-10 00:18 - 2014-10-18 03:05 - 04121600 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll
2014-12-10 00:18 - 2014-10-18 02:33 - 03209728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf.dll
2014-12-10 00:18 - 2014-07-07 03:06 - 00206848 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll
2014-12-10 00:18 - 2014-07-07 03:06 - 00055808 _____ (Microsoft Corporation) C:\Windows\system32\rrinstaller.exe
2014-12-10 00:18 - 2014-07-07 03:06 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\mfpmp.exe
2014-12-10 00:18 - 2014-07-07 03:02 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\mferror.dll
2014-12-10 00:18 - 2014-07-07 02:40 - 00103424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfps.dll
2014-12-10 00:18 - 2014-07-07 02:39 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rrinstaller.exe
2014-12-10 00:18 - 2014-07-07 02:39 - 00023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfpmp.exe
2014-12-10 00:18 - 2014-07-07 02:37 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mferror.dll
2014-12-09 22:18 - 2014-11-27 02:43 - 00389296 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-12-09 22:18 - 2014-11-27 02:10 - 00342200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-12-09 22:18 - 2014-11-22 04:13 - 25059840 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-12-09 22:18 - 2014-11-22 04:06 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-12-09 22:18 - 2014-11-22 04:06 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-12-09 22:18 - 2014-11-22 03:50 - 00580096 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-12-09 22:18 - 2014-11-22 03:50 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-12-09 22:18 - 2014-11-22 03:49 - 02885120 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-12-09 22:18 - 2014-11-22 03:49 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-12-09 22:18 - 2014-11-22 03:48 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-12-09 22:18 - 2014-11-22 03:41 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-12-09 22:18 - 2014-11-22 03:40 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-12-09 22:18 - 2014-11-22 03:37 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-12-09 22:18 - 2014-11-22 03:35 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-12-09 22:18 - 2014-11-22 03:35 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-12-09 22:18 - 2014-11-22 03:34 - 06039552 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-12-09 22:18 - 2014-11-22 03:34 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-12-09 22:18 - 2014-11-22 03:26 - 00968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-12-09 22:18 - 2014-11-22 03:22 - 19749376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-12-09 22:18 - 2014-11-22 03:22 - 00490496 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-12-09 22:18 - 2014-11-22 03:20 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-12-09 22:18 - 2014-11-22 03:14 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-12-09 22:18 - 2014-11-22 03:09 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-12-09 22:18 - 2014-11-22 03:08 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-12-09 22:18 - 2014-11-22 03:07 - 00501248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-12-09 22:18 - 2014-11-22 03:07 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-12-09 22:18 - 2014-11-22 03:06 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-12-09 22:18 - 2014-11-22 03:05 - 00316928 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-12-09 22:18 - 2014-11-22 03:05 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2014-12-09 22:18 - 2014-11-22 03:01 - 02277888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-12-09 22:18 - 2014-11-22 02:59 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-12-09 22:18 - 2014-11-22 02:58 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-12-09 22:18 - 2014-11-22 02:56 - 00478208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-12-09 22:18 - 2014-11-22 02:55 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-12-09 22:18 - 2014-11-22 02:54 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-12-09 22:18 - 2014-11-22 02:49 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-12-09 22:18 - 2014-11-22 02:49 - 00718848 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-12-09 22:18 - 2014-11-22 02:47 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-12-09 22:18 - 2014-11-22 02:46 - 02125312 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-12-09 22:18 - 2014-11-22 02:45 - 00418304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-12-09 22:18 - 2014-11-22 02:43 - 14412800 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-12-09 22:18 - 2014-11-22 02:40 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-12-09 22:18 - 2014-11-22 02:36 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-12-09 22:18 - 2014-11-22 02:35 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-12-09 22:18 - 2014-11-22 02:33 - 00285696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-12-09 22:18 - 2014-11-22 02:29 - 04299264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-12-09 22:18 - 2014-11-22 02:28 - 02358272 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-12-09 22:18 - 2014-11-22 02:23 - 00688640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-12-09 22:18 - 2014-11-22 02:22 - 02052096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-12-09 22:18 - 2014-11-22 02:21 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2014-12-09 22:18 - 2014-11-22 02:15 - 01548288 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-12-09 22:18 - 2014-11-22 02:13 - 12836864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-12-09 22:18 - 2014-11-22 02:03 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-12-09 22:18 - 2014-11-22 02:00 - 01888256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-12-09 22:18 - 2014-11-22 01:56 - 01307136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-12-09 22:18 - 2014-11-22 01:54 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-12-09 22:16 - 2014-12-04 03:50 - 00830976 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2014-12-09 22:16 - 2014-12-04 03:50 - 00741376 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2014-12-09 22:16 - 2014-12-04 03:50 - 00413184 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2014-12-09 22:16 - 2014-12-04 03:50 - 00396800 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2014-12-09 22:16 - 2014-12-04 03:50 - 00227328 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-12-09 22:16 - 2014-12-04 03:50 - 00192000 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
2014-12-09 22:16 - 2014-12-04 03:44 - 01083392 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-12-09 22:16 - 2014-12-02 00:28 - 01232040 _____ (Microsoft Corporation) C:\Windows\system32\aitstatic.exe
2014-12-09 22:15 - 2014-11-11 04:09 - 01424384 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2014-12-09 22:15 - 2014-11-11 03:44 - 01230336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2014-12-09 22:15 - 2014-11-11 02:46 - 00119296 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdx.sys
2014-12-09 22:10 - 2014-11-08 04:16 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2014-12-09 22:10 - 2014-11-08 03:45 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2014-12-09 22:10 - 2014-10-30 03:03 - 00165888 _____ (Microsoft Corporation) C:\Windows\system32\charmap.exe
2014-12-09 22:10 - 2014-10-30 02:45 - 00155136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\charmap.exe
2014-12-09 22:10 - 2014-10-03 03:12 - 02020352 _____ (Microsoft Corporation) C:\Windows\system32\WsmSvc.dll
2014-12-09 22:10 - 2014-10-03 03:12 - 00346624 _____ (Microsoft Corporation) C:\Windows\system32\WSManMigrationPlugin.dll
2014-12-09 22:10 - 2014-10-03 03:12 - 00310272 _____ (Microsoft Corporation) C:\Windows\system32\WsmWmiPl.dll
2014-12-09 22:10 - 2014-10-03 03:12 - 00181248 _____ (Microsoft Corporation) C:\Windows\system32\WsmAuto.dll
2014-12-09 22:10 - 2014-10-03 03:11 - 00266240 _____ (Microsoft Corporation) C:\Windows\system32\WSManHTTPConfig.exe
2014-12-09 22:10 - 2014-10-03 02:45 - 01177088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmSvc.dll
2014-12-09 22:10 - 2014-10-03 02:45 - 00248832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSManMigrationPlugin.dll
2014-12-09 22:10 - 2014-10-03 02:45 - 00214016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmWmiPl.dll
2014-12-09 22:10 - 2014-10-03 02:45 - 00145920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmAuto.dll
2014-12-09 22:10 - 2014-10-03 02:44 - 00198656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSManHTTPConfig.exe
2014-11-30 19:50 - 2014-11-30 19:50 - 00180175 _____ () C:\Users\Indeni\Downloads\juin2014.zip
2014-11-23 18:40 - 2014-11-23 18:40 - 00000000 ____D () C:\Users\Indeni\AppData\Local\{12C00369-A7D0-43BD-B48C-8992E1393D24}
2014-11-20 11:00 - 2014-11-20 11:00 - 00000000 ____D () C:\Users\Indeni\AppData\Local\Avg
2014-11-19 04:26 - 2014-11-19 04:26 - 01614504 _____ (Microsoft Corporation) C:\Windows\system32\FM20.DLL
2014-11-18 23:24 - 2014-11-11 04:08 - 00728064 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2014-11-18 23:24 - 2014-11-11 04:08 - 00241152 _____ (Microsoft Corporation) C:\Windows\system32\pku2u.dll
2014-11-18 23:24 - 2014-11-11 03:44 - 00550912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2014-11-18 23:24 - 2014-11-11 03:44 - 00186880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pku2u.dll
2014-11-17 22:43 - 2014-11-17 23:46 - 00074240 _____ () C:\Users\Indeni\Desktop\tp1 atomistique final.xls
==================== One Month Modified Files and Folders =======
(If an entry is included in the fixlist, the file\folder will be moved.)
2014-12-17 22:46 - 2013-08-07 20:27 - 00000340 _____ () C:\Windows\Tasks\HP Photo Creations Communicator.job
2014-12-17 22:43 - 2012-03-29 02:46 - 01253137 _____ () C:\Windows\WindowsUpdate.log
2014-12-17 22:37 - 2014-08-24 14:48 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2014-12-17 22:36 - 2014-08-24 15:24 - 00098216 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2014-12-17 22:36 - 2014-08-24 15:15 - 00000000 ____D () C:\ProgramData\Oracle
2014-12-17 22:35 - 2013-03-30 16:09 - 00000000 ____D () C:\Program Files (x86)\Java
2014-12-17 22:35 - 2012-11-05 21:19 - 00001002 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-12-17 22:27 - 2009-07-14 05:45 - 00018736 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-12-17 22:27 - 2009-07-14 05:45 - 00018736 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-12-17 22:26 - 2014-08-24 20:17 - 00000000 ____D () C:\ProgramData\MFAData
2014-12-17 22:15 - 2014-08-24 21:12 - 00000334 _____ () C:\Windows\Tasks\GlaryInitialize 5.job
2014-12-17 22:15 - 2014-08-24 21:12 - 00000000 ____D () C:\Program Files (x86)\Glary Utilities 5
2014-12-17 22:13 - 2014-08-25 09:20 - 00014870 _____ () C:\Windows\setupact.log
2014-12-17 22:13 - 2014-08-24 21:12 - 00000000 ____D () C:\Users\Indeni\AppData\Roaming\DiskDefrag
2014-12-17 22:13 - 2012-12-24 19:35 - 00001066 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-12-17 22:13 - 2009-07-14 06:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-12-16 22:24 - 2012-11-14 20:18 - 00000000 ____D () C:\Users\Indeni\AppData\Roaming\Skype
2014-12-16 21:46 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\rescache
2014-12-16 21:40 - 2012-11-05 13:51 - 00000932 _____ () C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-678856991-1506563292-703705187-1001UA.job
2014-12-16 21:39 - 2014-10-18 11:37 - 00003944 _____ () C:\Windows\System32\Tasks\User_Feed_Synchronization-{528CF713-CBBA-430A-B909-F6B05C02DE68}
2014-12-16 21:39 - 2011-02-19 05:29 - 00771682 _____ () C:\Windows\system32\perfh00C.dat
2014-12-16 21:39 - 2011-02-19 05:29 - 00157622 _____ () C:\Windows\system32\perfc00C.dat
2014-12-16 21:39 - 2009-07-14 06:13 - 00006476 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-12-15 19:50 - 2012-11-06 23:03 - 00000000 ____D () C:\Windows\Minidump
2014-12-15 18:45 - 2014-08-25 09:52 - 823599691 _____ () C:\Windows\MEMORY.DMP
2014-12-15 18:25 - 2011-02-19 05:18 - 00000000 ____D () C:\Windows\SysWOW64\XPSViewer
2014-12-15 18:25 - 2009-07-14 08:45 - 00000000 ____D () C:\Program Files\Windows Journal
2014-12-15 18:25 - 2009-07-14 06:37 - 00000000 ____D () C:\Windows\SysWOW64\winrm
2014-12-15 18:25 - 2009-07-14 06:37 - 00000000 ____D () C:\Windows\SysWOW64\WCN
2014-12-15 18:25 - 2009-07-14 06:37 - 00000000 ____D () C:\Windows\SysWOW64\sysprep
2014-12-15 18:25 - 2009-07-14 06:37 - 00000000 ____D () C:\Windows\SysWOW64\slmgr
2014-12-15 18:25 - 2009-07-14 06:37 - 00000000 ____D () C:\Windows\SysWOW64\Printing_Admin_Scripts
2014-12-15 18:25 - 2009-07-14 06:32 - 00000000 ____D () C:\Program Files\Windows Sidebar
2014-12-15 18:25 - 2009-07-14 06:32 - 00000000 ____D () C:\Program Files\Windows Photo Viewer
2014-12-15 18:25 - 2009-07-14 06:32 - 00000000 ____D () C:\Program Files\Windows Defender
2014-12-15 18:25 - 2009-07-14 06:32 - 00000000 ____D () C:\Program Files (x86)\Windows Sidebar
2014-12-15 18:25 - 2009-07-14 06:32 - 00000000 ____D () C:\Program Files (x86)\Windows Photo Viewer
2014-12-15 18:25 - 2009-07-14 06:32 - 00000000 ____D () C:\Program Files (x86)\Windows Defender
2014-12-15 18:25 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\SysWOW64\Setup
2014-12-15 18:25 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\SysWOW64\oobe
2014-12-15 18:25 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\SysWOW64\MUI
2014-12-15 18:25 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\SysWOW64\migwiz
2014-12-15 18:25 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\SysWOW64\Dism
2014-12-15 18:25 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\SysWOW64\com
2014-12-15 18:25 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\servicing
2014-12-15 18:25 - 2009-07-14 04:20 - 00000000 ____D () C:\Program Files\Common Files\System
2014-12-15 18:24 - 2009-07-14 06:37 - 00000000 ____D () C:\Windows\system32\winrm
2014-12-15 18:24 - 2009-07-14 06:37 - 00000000 ____D () C:\Windows\system32\slmgr
2014-12-15 18:24 - 2009-07-14 06:37 - 00000000 ____D () C:\Windows\DigitalLocker
2014-12-15 18:24 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\system32\sysprep
2014-12-15 18:24 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\system32\Setup
2014-12-15 18:24 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\system32\oobe
2014-12-15 18:24 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\system32\migwiz
2014-12-15 18:24 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\IME
2014-12-15 18:23 - 2009-07-14 06:37 - 00000000 ____D () C:\Windows\system32\WCN
2014-12-15 18:23 - 2009-07-14 06:37 - 00000000 ____D () C:\Windows\system32\Printing_Admin_Scripts
2014-12-15 18:23 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\system32\MUI
2014-12-15 18:23 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\system32\Dism
2014-12-15 18:23 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\system32\com
2014-12-15 18:04 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\SysWOW64\he-IL
2014-12-15 18:02 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\system32\he-IL
2014-12-15 17:52 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\Globalization
2014-12-15 17:51 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\SysWOW64\ar-SA
2014-12-15 17:51 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\system32\ar-SA
2014-12-15 17:50 - 2009-07-14 06:32 - 00000000 ____D () C:\Program Files\DVD Maker
2014-12-15 17:47 - 2014-09-10 08:12 - 00006410 _____ () C:\Windows\PFRO.log
2014-12-15 17:47 - 2013-03-13 17:46 - 00000000 ____D () C:\Program Files\Microsoft Silverlight
2014-12-15 17:47 - 2013-03-13 17:46 - 00000000 ____D () C:\Program Files (x86)\Microsoft Silverlight
2014-12-15 17:47 - 2012-11-02 15:42 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-12-15 12:40 - 2012-11-05 13:51 - 00000910 _____ () C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-678856991-1506563292-703705187-1001Core.job
2014-12-15 12:35 - 2012-11-05 13:51 - 00003910 _____ () C:\Windows\System32\Tasks\FacebookUpdateTaskUserS-1-5-21-678856991-1506563292-703705187-1001UA
2014-12-15 12:35 - 2012-11-05 13:51 - 00003542 _____ () C:\Windows\System32\Tasks\FacebookUpdateTaskUserS-1-5-21-678856991-1506563292-703705187-1001Core
2014-12-15 03:11 - 2013-03-13 20:08 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2014-12-14 22:14 - 2009-07-14 04:20 - 00000000 __RHD () C:\Users\Default
2014-12-14 22:10 - 2009-07-14 03:34 - 00000215 _____ () C:\Windows\system.ini
2014-12-13 20:47 - 2012-12-24 19:38 - 00002183 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-12-10 20:54 - 2014-05-05 10:02 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-12-10 20:54 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\AppCompat
2014-12-10 20:53 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\PolicyDefinitions
2014-12-10 00:24 - 2014-08-24 17:42 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-12-10 00:24 - 2013-08-04 23:30 - 00000000 ____D () C:\Windows\system32\MRT
2014-12-10 00:24 - 2012-10-30 23:00 - 112710672 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-12-09 22:35 - 2012-11-05 21:19 - 00701104 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-12-09 22:35 - 2012-11-05 21:19 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-12-09 22:35 - 2012-11-05 21:19 - 00003940 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-12-06 14:42 - 2014-09-02 20:08 - 00000000 ____D () C:\Users\Indeni\Desktop\L3
2014-11-20 11:03 - 2014-08-24 20:34 - 00000981 _____ () C:\Users\Public\Desktop\AVG 2014.lnk
2014-11-20 11:03 - 2014-08-24 20:34 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG
2014-11-19 20:02 - 2013-03-08 15:34 - 00000000 ____D () C:\Users\Indeni\AppData\Roaming\vlc
==================== Bamital & volsnap Check =================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2014-12-15 04:54
==================== End Of Log ============================
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 17-12-2014
Ran by Indeni at 2014-12-17 22:53:41
Running from C:\Users\Indeni\Desktop
Boot Mode: Normal
==========================================================
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: AVG Internet Security 2014 (Disabled - Up to date) {0E9420C4-06B3-7FA0-3AB1-6E49CB52ECD9}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: AVG Internet Security 2014 (Disabled - Up to date) {B5F5C120-2089-702E-0001-553BB0D5A664}
FW: AVG Internet Security 2014 (Enabled) {36AFA1E1-4CDC-7EF8-11EE-C77C3581ABA2}
==================== Installed Programs ======================
(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
Adobe Flash Player 15 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 15.0.0.246 - Adobe Systems Incorporated)
Adobe Flash Player 15 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 15.0.0.246 - Adobe Systems Incorporated)
Alcor Micro USB Card Reader (HKLM-x32\...\AmUStor) (Version: 1.2.0117.08443 - Alcor Micro Corp.)
Alcor Micro USB Card Reader (x32 Version: 1.2.0117.08443 - Alcor Micro Corp.) Hidden
Asmedia ASM104x USB 3.0 Host Controller Driver (HKLM-x32\...\{E4FB0B39-C991-4EE7-95DD-1A1A7857D33D}) (Version: 1.14.2.0 - Asmedia Technology)
ASUS Live Update (HKLM-x32\...\{FA540E67-095C-4A1B-97BA-4D547DEC9AF4}) (Version: 3.0.8 - ASUS)
ASUS Power4Gear Hybrid (HKLM\...\{9B6239BF-4E85-4590-8D72-51E30DB1A9AA}) (Version: 1.1.48 - ASUS)
ASUS Sonic Focus (HKLM-x32\...\{B0002707-4F7E-4745-88A7-852DA8A88635}) (Version: 1.0.0.5 - Synopsys )
ASUS Splendid Video Enhancement Technology (HKLM-x32\...\{0969AF05-4FF6-4C00-9406-43599238DE0D}) (Version: 1.02.0035 - ASUS)
ASUS Virtual Camera (HKLM-x32\...\{EC8BD21F-0CA0-4BBF-97D9-4A52B30041A1}) (Version: 1.0.23 - asus)
ASUS WebStorage (HKLM-x32\...\ASUS WebStorage) (Version: 3.0.108.222 - eCareme Technologies, Inc.)
AsusScr_K3 Series_ENG (HKLM-x32\...\AsusScr_K3 Series_ENG) (Version: 1.0.0001 - ASUS)
AsusVibe2.0 (HKLM-x32\...\Asus Vibe2.0) (Version: 2.0.7.142 - ASUSTEK)
Atheros Communications Inc.® AR81Family Gigabit/Fast Ethernet Driver (HKLM-x32\...\{3108C217-BE83-42E4-AE9E-A56A2A92E549}) (Version: 2.0.8.8 - Atheros Communications Inc.)
AVG 2014 (HKLM\...\AVG) (Version: 2014.0.4794 - AVG Technologies)
AVG 2014 (Version: 14.0.4235 - AVG Technologies) Hidden
AVG 2014 (Version: 14.0.4794 - AVG Technologies) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 4.07 - Piriform)
Control ActiveX de Windows Live Mesh para conexiones remotas (HKLM-x32\...\{04668DF2-D32F-4555-9C7E-35523DCD6544}) (Version: 15.4.5722.2 - Microsoft Corporation)
Contrôle ActiveX Windows Live Mesh pour connexions à distance (HKLM-x32\...\{55D003F4-9599-44BF-BA9E-95D060730DD3}) (Version: 15.4.5722.2 - Microsoft Corporation)
Controlo ActiveX do Windows Live Mesh para Ligações Remotas (HKLM-x32\...\{E54EEB5D-41ED-40FE-B4A8-8565DB81469B}) (Version: 15.4.5722.2 - Microsoft Corporation)
CyberLink LabelPrint (HKLM-x32\...\InstallShield_{C59C179C-668D-49A9-B6EA-0121CCFC1243}) (Version: 2.5.3624 - CyberLink Corp.)
CyberLink Media Suite (HKLM-x32\...\InstallShield_{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}) (Version: 8.0.2926 - CyberLink Corp.)
CyberLink Power2Go (HKLM-x32\...\InstallShield_{40BF1E83-20EB-11D8-97C5-0009C5020658}) (Version: 7.0.0.1126 - CyberLink Corp.)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
ESET Online Scanner v3 (HKLM-x32\...\ESET Online Scanner) (Version: - )
ETDWare PS/2-X64 8.0.5.5_WHQL (HKLM\...\Elantech) (Version: 8.0.5.5 - ELAN Microelectronic Corp.)
Étude pour l'amélioration du produit HP Deskjet 3520 series (HKLM\...\{1E35248D-3B53-4F06-9E70-D12A41DA7A95}) (Version: 28.0.1315.0 - Hewlett-Packard Co.)
Facebook Video Calling 3.1.0.521 (HKLM-x32\...\{2091F234-EB58-4B80-8C96-8EB78C808CF7}) (Version: 3.1.521 - Skype Limited)
Fast Boot (HKLM\...\{13F4A7F3-EABC-4261-AF6B-1317777F0755}) (Version: 1.0.10 - ASUS)
Flatcast Viewer Plugin 5.2.2.454 (HKLM-x32\...\Flatcast_is1) (Version: - 1 mal 1 Software GmbH)
Galeria de Fotografias do Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Galería fotográfica de Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Galerie de photos Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Game Park Console (HKLM-x32\...\Game Park Console) (Version: 1.2.4.431 - Oberon Media Inc.)
Glary Utilities PRO 5.6 (HKLM-x32\...\Glary Utilities 5) (Version: 5.6.0.13 - Glarysoft Ltd)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 39.0.2171.95 - Google Inc.)
Google Drive (HKLM-x32\...\{C60F3836-333A-4AE2-B526-CFDBA143A9BA}) (Version: 1.18.7821.2489 - Google, Inc.)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
HP Deskjet 3520 series Aide (HKLM-x32\...\{9347E332-74BC-4738-9D37-FEC946F1900F}) (Version: 27.0.0 - Hewlett Packard)
HP Deskjet 3520 series Setup Guide (HKLM-x32\...\{AEEDCEB7-00B8-4BE1-B492-AB04803D5F1E}) (Version: 27.0.0 - Hewlett Packard)
HP Officejet 4620 series - Enquête sur l'amélioration du produit (HKLM\...\{5CE3ABEE-FB44-4345-B397-A1D9DDD8CA20}) (Version: 26.0.784.0 - Hewlett-Packard Co.)
HP Officejet 4620 series Aide (HKLM-x32\...\{36C53E99-B8A3-436D-BB7C-B8D77E696CD3}) (Version: 6.0.0 - Hewlett Packard)
HP Photo Creations (HKLM-x32\...\HP Photo Creations) (Version: 1.0.0.12262 - HP)
HP Update (HKLM-x32\...\{6F1C00D2-25C2-4CBA-8126-AE9A6E2E9CD5}) (Version: 5.003.003.001 - Hewlett-Packard)
I.R.I.S. OCR (HKLM-x32\...\{CA6BCA2F-EDEB-408F-850B-31404BE16A61}) (Version: 12.3.4.0 - HP)
Iminent (x32 Version: 6.20.11.0 - Iminent) Hidden <==== ATTENTION
InstantOn for NB (HKLM-x32\...\{749F674B-2674-47E8-879C-5626A06B2A91}) (Version: 2.1.6 - ASUS)
Intel® Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1007 - Intel Corporation)
Intel® Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 7.0.0.1144 - Intel Corporation)
Intel® Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 8.15.10.2462 - Intel Corporation)
Intel® PROSet/Wireless WiFi Software (HKLM\...\{25FBDA9A-E868-4B3B-B9FF-D923818511A1}) (Version: 14.2.0000 - Intel Corporation)
Intel® Turbo Boost Technology Monitor 2.0 (HKLM\...\{B77EFA0B-9BD3-4122-9F9A-15A963B5EA24}) (Version: 2.1.23.0 - Intel)
Java 7 Update 67 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F03217067FF}) (Version: 7.0.670 - Oracle)
Java 8 Update 25 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218025F0}) (Version: 8.0.250 - Oracle Corporation)
Logiciel de base du périphérique HP Deskjet 3520 series (HKLM\...\{8A0AFE76-95AC-40B9-A95C-A1BABD4A552B}) (Version: 28.0.1315.0 - Hewlett-Packard Co.)
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft Office Professionnel Plus 2010 (HKLM\...\Office14.PROPLUS) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.31211.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Mozilla Firefox 34.0.5 (x86 fr) (HKLM-x32\...\Mozilla Firefox 34.0.5 (x86 fr)) (Version: 34.0.5 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 30.0 - Mozilla)
Nuance PDF Reader (HKLM-x32\...\{B480904D-F73F-4673-B034-8A5F492C9184}) (Version: 6.00.0041 - Nuance Communications, Inc.)
NVIDIA Graphics Driver 285.64 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 285.64 - NVIDIA Corporation)
OpenOffice.org 3.4.1 (HKLM-x32\...\{7DA1C06F-C913-46C7-8A0F-DA2CBA17EA1D}) (Version: 3.41.9593 - Apache Software Foundation)
Raccolta foto di Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6499 - Realtek Semiconductor Corp.)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUS_{A3364707-2F53-4C83-8F68-C9877A9080C7}) (Version: - Microsoft)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (Version: - Microsoft) Hidden
Skype™ 6.20 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 6.20.104 - Skype Technologies S.A.)
Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
Vittalia Installer (HKLM-x32\...\Vittalia) (Version: 1.0 - fr.FILEWIN.com) <==== ATTENTION
VLC media player 2.0.5 (HKLM-x32\...\VLC media player) (Version: 2.0.5 - VideoLAN)
VLC media player 2.1.3 (HKLM\...\VLC media player) (Version: 2.1.3 - VideoLAN)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3538.0513 - Microsoft Corporation)
Windows Live Mesh - ActiveX-besturingselement voor externe verbindingen (HKLM-x32\...\{C32CE55C-12BA-4951-8797-0967FDEF556F}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Mesh ActiveX Control for Remote Connections (HKLM-x32\...\{2902F983-B4C1-44BA-B85D-5C6D52E2C441}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Mesh ActiveX control for remote connections (HKLM-x32\...\{C5398A89-516C-4DAF-BA07-EE7949090E56}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Mesh ActiveX Control for Remote Connections (HKLM-x32\...\{C63A1E60-B6A4-440B-89A5-1FC6E4AC1C94}) (Version: 15.4.5722.2 - Microsoft Corporation)
Wireless Console 3 (HKLM-x32\...\{C4BC5A5F-4A97-47CC-99C3-AB8E10572AFE}) (Version: 3.0.24 - ASUS)
Συλλογή φωτογραφιών του Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Основные компоненты Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Фотоальбом Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
גלריית התמונות של Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
معرض صور Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
==================== Custom CLSID (selected items): ==========================
(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)
==================== Restore Points =========================
10-12-2014 00:09:18 Windows Update
14-12-2014 00:43:13 Windows Update
15-12-2014 03:00:34 Windows Update
15-12-2014 05:01:36 Suppression du module linguistique
==================== Hosts content: ==========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2009-07-14 03:34 - 2014-12-14 22:10 - 00000027 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 localhost
==================== Scheduled Tasks (whitelisted) =============
(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)
Task: {09D2F0FD-F7F5-428D-A37D-324BC86C1158} - System32\Tasks\{E1615F83-1F6F-4FE7-9EB1-18616B755F5B} => pcalua.exe -a "C:\Program Files (x86)\Asus\Game Park\Galapago\Uninstall.exe" -c "C:\Program Files (x86)\Asus\Game Park\Galapago\install.log"
Task: {1E9FD4F6-2136-49DB-BDCC-60113456A377} - System32\Tasks\HPCustParticipation HP Officejet 4620 series => C:\Program Files\HP\HP Officejet 4620 series\Bin\HPCustPartic.exe [2011-12-18] (Hewlett-Packard Co.)
Task: {2BC477AA-C2A4-423E-9C10-87707FB227EB} - System32\Tasks\ASUS Live Update => C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe [2011-11-17] (ASUSTeK Computer Inc.)
Task: {3B0D9942-8C73-417D-B040-59FA2987968E} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-10-21] (Google Inc.)
Link to comment
Share on other sites

OTM log, the computer didint ask for a reboot.

It was copied and pasted in incorrectly.

 

~~~~~~~~~~~~

 

Go to your add/remove programslist in the control panel, look for Iminent

please remove/uninstall

 

Also look for this version of Java 7 Update 67 <-- needs to go too

 

 

 

~~~~~~~~~~~~~~~~~~~~

 

 

Open notepad. Please copy the contents of the quote box below. To do this highlight the contents of the box and right click on it and select copy.

Paste this into the open notepad. save it to the Desktop as fixlist.txt

NOTE. It's important that both files, FRST/FRST64 and fixlist.txt are in the same location or the fix will not work.

It needs to be saved Next to the "Farbar Recovery Scan Tool" (If asked to overwrite existing one please allow)

 

start

CloseProcesses:

CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION

HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION

HKU\S-1-5-21-678856991-1506563292-703705187-1001\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION

earchScopes: HKLM -> DefaultScope value is missing.

SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/search?q={searchTerms}&form=ASUTDF&pc=NP06&src=IE-SearchBox

SearchScopes: HKLM-x32 -> DefaultScope value is missing.

SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/search?q={searchTerms}&form=ASUTDF&pc=NP06&src=IE-SearchBox

SearchScopes: HKU\S-1-5-21-678856991-1506563292-703705187-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =

SearchScopes: HKU\S-1-5-21-678856991-1506563292-703705187-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =

SearchScopes: HKU\S-1-5-21-678856991-1506563292-703705187-1001 -> {AF5F7349-0A89-4579-A993-1BCE355994DD} URL = http://websearch.ask.com/redirect?client=ie&tb=ORJ&o=&src=kw&q={searchTerms}&locale=&apn_ptnrs=U3&apn_dtid=OSJ000YYFR&apn_uid=A57D8854-995D-4ABA-AD44-236FB374E274&apn_sauid=2576C145-F9F8-47E6-9530-23E3FF6736E3

BHO-x32: Java Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\jp2ssv.dll (Oracle Corporation)

Toolbar: HKLM - No Name - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - No File

DPF: HKLM-x32 {E55FD215-A32E-43FE-A777-A7E8F165F561} http://download.flatcast.net/objects/NpFv530.dll

Iminent (x32 Version: 6.20.11.0 - Iminent) Hidden <==== ATTENTION

AlternateDataStreams: C:\ProgramData\Temp:4D066AD2

C:\Users\Indeni\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\1FKF59XL\Setup[1].exe

C:\Users\Indeni\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\16\7dc65750-4a10bfa2

C:\Users\Indeni\Desktop\L2\Nouveau dossier\Activateur\mini-KMS_Activator_v1.052.exe

C:\Users\Indeni\Downloads\BandooV8.exe

C:\Users\Indeni\Downloads\GamingWonderland.exe

C:\Windows\KMService.exe

C:\Windows\Installer\9f4686.msi

EmptyTemp:

Hosts:

End

Open FRST/FRST64 and press the Fix button just once and wait.

If for some reason the tool needs a restart, please make sure you let the system restart normally. After that let the tool complete its run.

When finished FRST will generate a log on the Desktop (Fixlog.txt). Please post it to your reply.

 

~~~~~~~~~~~~~~~~~~`

 

-AdwCleaner-by Xplode

 

Click on this link to download : ADWCleaner

Click on ONE of the Two Blue Download Now buttons That have a blue arrow beside them and save it to your desktop.

 

Do not click on any links in the top Advertisment.

 

 

adwcleaner_download.png

  • Close all open programs and internet browsers.
  • Double click on AdwCleaner.exe to run the tool.
  • Click on Scan.
  • After the scan is complete click on "Clean"
  • Confirm each time with Ok.
  • Your computer will be rebooted automatically. A text file will open after the restart.
  • Please post the content of that logfile with your next answer.
  • You can find the logfile at C:\AdwCleaner[s1].txt as well.
  • NOTE: If you see AVG Secure Search being targeted for deletion, Here's Why and Here. You can always Reinstall it.
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

 

 

thisisujrt.gif

Please download Junkware Removal Tool to your desktop.

  • Shut down your protection software now to avoid potential conflicts.
  • Run the tool by double-clicking it. If you are using Windows Vista, 7, or 8; instead of double-clicking, right-mouse click JRT.exe and select "Run as Administrator".
  • The tool will open and start scanning your system.
  • Please be patient as this can take a while to complete depending on your system's specifications.
  • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
  • Post the contents of JRT.txt into your next message.
****

please post

Fixlog.txt

C:\AdwCleaner.txt

JRT.txt

Link to comment
Share on other sites

I removed the old java but i couldnt locate a program called iminent there.

Here are the requested logs;

 

Fixlog

 

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 17-12-2014

Ran by Indeni at 2014-12-18 00:04:35 Run:1
Running from C:\Users\Indeni\Desktop
Loaded Profiles: UpdatusUser & Indeni (Available profiles: UpdatusUser & Indeni)
Boot Mode: Normal
==============================================
Content of fixlist:
*****************
start
CloseProcesses:
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKU\S-1-5-21-678856991-1506563292-703705187-1001\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
earchScopes: HKLM -> DefaultScope value is missing.
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/...rc=IE-SearchBox
SearchScopes: HKLM-x32 -> DefaultScope value is missing.
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/...rc=IE-SearchBox
SearchScopes: HKU\S-1-5-21-678856991-1506563292-703705187-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-678856991-1506563292-703705187-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-678856991-1506563292-703705187-1001 -> {AF5F7349-0A89-4579-A993-1BCE355994DD} URL = http://websearch.ask...30-23E3FF6736E3
BHO-x32: Java Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - No Name - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - No File
DPF: HKLM-x32 {E55FD215-A32E-43FE-A777-A7E8F165F561} http://download.flat...cts/NpFv530.dll
Iminent (x32 Version: 6.20.11.0 - Iminent) Hidden <==== ATTENTION
AlternateDataStreams: C:\ProgramData\Temp:4D066AD2
C:\Users\Indeni\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\1FKF59XL\Setup[1].exe
C:\Users\Indeni\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\16\7dc65750-4a10bfa2
C:\Users\Indeni\Desktop\L2\Nouveau dossier\Activateur\mini-KMS_Activator_v1.052.exe
C:\Users\Indeni\Downloads\BandooV8.exe
C:\Users\Indeni\Downloads\GamingWonderland.exe
C:\Windows\KMService.exe
C:\Windows\Installer\9f4686.msi
EmptyTemp:
Hosts:
End
*****************
Processes closed successfully.
"HKLM\SOFTWARE\Policies\Google" => Key deleted successfully.
"HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer" => Key deleted successfully.
"HKU\S-1-5-21-678856991-1506563292-703705187-1001\SOFTWARE\Policies\Microsoft\Internet Explorer" => Key deleted successfully.
earchScopes: HKLM -> DefaultScope value is missing. => Error: No automatic fix found for this entry.
"HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" => Key deleted successfully.
"HKCR\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" => Key not found.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => Value was restored successfully.
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" => Key deleted successfully.
"HKCR\Wow6432Node\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" => Key not found.
HKU\S-1-5-21-678856991-1506563292-703705187-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value deleted successfully.
"HKU\S-1-5-21-678856991-1506563292-703705187-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" => Key deleted successfully.
"HKCR\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" => Key not found.
"HKU\S-1-5-21-678856991-1506563292-703705187-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{AF5F7349-0A89-4579-A993-1BCE355994DD}" => Key deleted successfully.
"HKCR\CLSID\{AF5F7349-0A89-4579-A993-1BCE355994DD}" => Key not found.
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}" => Key deleted successfully.
"HKCR\Wow6432Node\CLSID\{DBC80044-A445-435b-BC74-9C25C1C588A9}" => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar\\{318A227B-5E9F-45bd-8999-7F8F10CA4CF5} => value deleted successfully.
"HKCR\CLSID\{318A227B-5E9F-45bd-8999-7F8F10CA4CF5}" => Key not found.
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Code Store Database\Distribution Units\{E55FD215-A32E-43FE-A777-A7E8F165F561}" => Key deleted successfully.
"HKCR\Wow6432Node\CLSID\{E55FD215-A32E-43FE-A777-A7E8F165F561}" => Key deleted successfully.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{748B51C8-0DDB-40B1-B801-F4B50E9C2463}\\SystemComponent => value deleted successfully.
C:\ProgramData\Temp => ":4D066AD2" ADS removed successfully.
C:\Users\Indeni\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\1FKF59XL\Setup[1].exe => Moved successfully.
"C:\Users\Indeni\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\16\7dc65750-4a10bfa2" => File/Directory not found.
C:\Users\Indeni\Desktop\L2\Nouveau dossier\Activateur\mini-KMS_Activator_v1.052.exe => Moved successfully.
C:\Users\Indeni\Downloads\BandooV8.exe => Moved successfully.
C:\Users\Indeni\Downloads\GamingWonderland.exe => Moved successfully.
C:\Windows\KMService.exe => Moved successfully.
C:\Windows\Installer\9f4686.msi => Moved successfully.
C:\Windows\System32\Drivers\etc\hosts => Moved successfully.
Hosts was reset successfully.
EmptyTemp: => Removed 2.7 GB temporary data.
The system needed a reboot.
==== End of Fixlog ====
# AdwCleaner v4.105 - Rapport créé le 18/12/2014 à 00:34:14
# Mis à jour le 08/12/2014 par Xplode
# Database : 2014-12-16.1 [Live]
# Système d'exploitation : Windows 7 Home Premium Service Pack 1 (64 bits)
# Nom d'utilisateur : Indeni - INDENI-PC
# Exécuté depuis : C:\Users\Indeni\Desktop\AdwCleaner.exe
# Option : Nettoyer
***** [ Services ] *****
***** [ Fichiers / Dossiers ] *****
Fichier Supprimé : C:\Users\Indeni\AppData\Roaming\Bubble Dock.boostrap.log
Fichier Supprimé : C:\Users\Indeni\AppData\Roaming\Bubble Dock.installation.log
***** [ Tâches planifiées ] *****
***** [ Raccourcis ] *****
***** [ Registre ] *****
Clé Supprimée : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472F-A0FF-E1416B8B2E3A}
Clé Supprimée : HKLM\SOFTWARE\Vittalia
Clé Supprimée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0238BBE24EA3A70408B81E4BB89C15E5
Clé Supprimée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0702826FCAC36EE52AC0441EEEEE2170
Clé Supprimée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\1198E28F40C3E185E9958608554D4253
Clé Supprimée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\14C66209FCA938858B9729645C666684
Clé Supprimée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\15A073601B9AEC3549BE4A9314794615
Clé Supprimée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\1F7C80F9CE5CDF44E9AADDC99402534C
Clé Supprimée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\206AF45B775E3A445B3B2273827DA85F
Clé Supprimée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\225C3CBCEB850204D860A6C7CC7724AF
Clé Supprimée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2310FC151CD4F185798FA0996B3524D7
Clé Supprimée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\28572D2E2DE533256AC6B560EA573C22
Clé Supprimée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\29799DE249E7DBC459FC6C8F07EB8375
Clé Supprimée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\29C79786B109AC443B0DC7BFD61B1896
Clé Supprimée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2ABB56EABB920EB59B04BDDD26A62083
Clé Supprimée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2DABA02DFED47E352A2FA2EBDD6F6187
Clé Supprimée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\311567B4A9A002050BB9423FD73FB880
Clé Supprimée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\373FCED70D7F84E5FB5F3F7B76BEE024
Clé Supprimée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\3BE992C130B235E53A2937391FDCA35B
Clé Supprimée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\3DA5F64B3483DE549947A9164ACBAD21
Clé Supprimée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\3ED93605BB9B6635E9D0D86615AF31F1
Clé Supprimée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\43C098337DB065A49B665D4EA7F16D1C
Clé Supprimée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\4759B017032BA185F9BA6F7DBC95A2D4
Clé Supprimée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\4A78ABCBB54E46E5482A3EE0AD66C39E
Clé Supprimée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\4F9E947B6B895EB5A86757FC5D3DB862
Clé Supprimée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\4FEEA83BF72B97E43A2DF0EE4BE4F261
Clé Supprimée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\509EC7EFB89B7D942997574AB14037A4
Clé Supprimée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\50A730A9A3A61BF5BA70CA8A3B7C133B
Clé Supprimée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\51A95A1D4CDE4F958A9451FBB39BF54A
Clé Supprimée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\536133807DE80465BA6CD0A9742B7DE5
Clé Supprimée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\5E25036E68895D45B95E72D1C3C58C74
Clé Supprimée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\60ECC80C54085B141A40437A96CA2618
Clé Supprimée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\60FD8CD5BE007315CA3B5C7E41F24017
Clé Supprimée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\618E7D05458C4F257909ED9C8CDC0D66
Clé Supprimée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\621C21014D3C152529E2460FA6304EE3
Clé Supprimée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6241FF6F317CABD4EBBEE0DE9076BD94
Clé Supprimée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\636B9C23C79154B57AB561F39A139BFD
Clé Supprimée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\65AAF0F0CB7F0B45F900FDF19CEAAF2B
Clé Supprimée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6879A5E348601C45986308CA84958E94
Clé Supprimée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6A6F3B7A9805E1F5492A1020EEDF2341
Clé Supprimée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6B1F5D204E4EEB342A5AD1D7E60D61BF
Clé Supprimée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\7005A2A4DCF9DD7548137AB17E3A3AF3
Clé Supprimée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\712EAF07EE73CC65C822CC3BAE3B2483
Clé Supprimée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\75FF6D97AF9FC004A9521D4B83FA6321
Clé Supprimée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\7947B301B2446E752A3FE06EAD7D26B5
Clé Supprimée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\7987CE52D13E16258B0E1E3DB1BB0974
Clé Supprimée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\7BEED197C514FDA53901AE8DD8EF0891
Clé Supprimée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\7DFDCF03D46C34159BDE29FBDBF1ACF5
Clé Supprimée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\87EC9ACEAFE8ECD52A529663CD35213F
Clé Supprimée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\890F436B85B790A55A582B7307DA12CE
Clé Supprimée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\8C13DA6755F685B529615C8E92B3CA39
Clé Supprimée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\8D07CD9CB3E6BE652872BF06A1CCA782
Clé Supprimée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\90841B1FC98200349925C88999866F17
Clé Supprimée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\94194FDD4DF523E53A888D65722A135D
Clé Supprimée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\95266D07D008D2E4E9B6F8E0DD15432A
Clé Supprimée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A4223BBC9438CAD49BBE10B4E344B1DD
Clé Supprimée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A71991503412AEB42838B02C5ED9F9CD
Clé Supprimée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A72F23B1D745C27508518132197BC982
Clé Supprimée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A89E2B6FB14D8275DA63D075171DA184
Clé Supprimée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A9C43CD4001E9E4518B274AF9A0EFDA9
Clé Supprimée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\AABA081CF7F19915FBB80B3BAF47CE63
Clé Supprimée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\AC2A0FFD0A1686D53A4E24D6E96949E4
Clé Supprimée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\AE5BDB2750259915D8442D4591A7717B
Clé Supprimée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B1A79C71D5DC1C150B76B6ED11195DFC
Clé Supprimée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B6D497DB33974935488761F7C4C3D755
Clé Supprimée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B752EF3300008394886C402CC27B474F
Clé Supprimée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B8C8BCC1206978D51A8B9EECBF806C53
Clé Supprimée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BAD3576CEA646895B962F94754612791
Clé Supprimée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BB4091512C8F4295E99CE2D061ED2020
Clé Supprimée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BEE6BBC9A31531F598794A62120B51C7
Clé Supprimée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\C19162788CA4D235E829F88E2F771567
Clé Supprimée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\C71F07DA356B66B5484A8E7F2ADEB7DC
Clé Supprimée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\C96AD15EE8E887B56BAF2136A9088503
Clé Supprimée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\C9E6B66ECC49D155888399C51D05C49E
Clé Supprimée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CA360F24F0B214744BE40657FDA0B727
Clé Supprimée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CB13D869D7D092348847B7481BB59E27
Clé Supprimée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CE85F265816AE2D4E9B73C3E207E679C
Clé Supprimée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D5389AEEA4A1E20428D045E86BCF643B
Clé Supprimée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D5B62BB7BC607FB539585E2B7B6AFD16
Clé Supprimée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DB027F01D4D53765C8E4FBE7DB77E07E
Clé Supprimée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DC2EB492393411F5ABE8ED13C59FBF20
Clé Supprimée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DDA2534BD056D1F44B6EC96AAA7F1F6E
Clé Supprimée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DDCA763D4C48A105086B4CCCEE78043F
Clé Supprimée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DEF7558C7CD27EF46AF802AFBE402675
Clé Supprimée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E05B987540A9E2849AAF9E5B06C27DA8
Clé Supprimée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E09F4A6B9D2A08B599AE9E38BFC93CD6
Clé Supprimée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E27B6535D0D94A24E91047C7D86F27BC
Clé Supprimée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E45D171E075A5425CBACF6631A45FA39
Clé Supprimée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E513C2076D90AD04F888BD762143F191
Clé Supprimée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E8F4C985459564F5B8DCFF2B3C7EBD27
Clé Supprimée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E96E33222BAC06B57A1FA9D72951C945
Clé Supprimée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\EAA46CE9007F70A5CAFA5F26E5DDEBE5
Clé Supprimée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\EE43FF091A8714A599F33EF2533FB59A
Clé Supprimée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\EE790015CF30DAA569960905FF1651A0
Clé Supprimée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\EEB44C47185BD304D80FDF5A4BBE8F54
Clé Supprimée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F214EB834D2EC474CA76C1CDE306CF3A
Clé Supprimée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F25491036D0FA5D5FA6742F5742F151A
Clé Supprimée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F2E0D3DD9E5E4B74CA43BCE77815E287
Clé Supprimée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F4D1BA8B482D9734E943EE260A7ADEF2
Clé Supprimée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F6704141BAAF6884785EC6843143D6A7
Clé Supprimée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F7507D4D4C310125E9A22BD909A41FB6
Clé Supprimée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F7652513C62FF63448CFF05163719DB7
Clé Supprimée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F79C21D785419125595AC59458A6142D
Clé Supprimée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\FA15C90F092A60F53A4E0F88CED02968
Clé Supprimée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\FA1CF130B3D58B553833ACB6BE8AFAD4
Clé Supprimée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\FB0F1A18E4F0DBD509A42F4D4C05C02A
Clé Supprimée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\FD17ED194F1C2B457B4F6EF4AE8DEAF3
Clé Supprimée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\90C64EA18BA25EE488BF80DCF07F2FFD
Clé Supprimée : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\F1057DD419AED0B468AD8888429E139A
Clé Supprimée : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\chatango.com
Clé Supprimée : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\st.chatango.com
***** [ Navigateurs ] *****
-\\ Internet Explorer v11.0.9600.17496
-\\ Mozilla Firefox v34.0.5 (x86 fr)
[uuajjg4k.default\prefs.js] - Ligne Supprimée : user_pref("extensions.a217e8200a3b343dfb9518ec01d483d7fb98c68091f3f41a1bb1c692cf84781e9com27096.27096.backgroundjs", "\n\n/*****************************************************************************[...]
[uuajjg4k.default\prefs.js] - Ligne Supprimée : user_pref("extensions.a217e8200a3b343dfb9518ec01d483d7fb98c68091f3f41a1bb1c692cf84781e9com27096.27096.internaldb.Resources_meta.value", "%7B%22clic.js%22%3A%7B%22id%22%3A200568%2C%22ver%22%3A45%2C%22s[...]
[uuajjg4k.default\prefs.js] - Ligne Supprimée : user_pref("extensions.a217e8200a3b343dfb9518ec01d483d7fb98c68091f3f41a1bb1c692cf84781e9com27096.27096.internaldb.Resources_resource_200568.value", "%22appAPI.ready%28function%28%24%29%20%7B%5Cr%5Cnvar[...]
[uuajjg4k.default\prefs.js] - Ligne Supprimée : user_pref("extensions.a217e8200a3b343dfb9518ec01d483d7fb98c68091f3f41a1bb1c692cf84781e9com27096.27096.internaldb.Resources_resource_200592.value", "%22%5Cr%5Cn%20%20%20/*******************************[...]
[uuajjg4k.default\prefs.js] - Ligne Supprimée : user_pref("extensions.a217e8200a3b343dfb9518ec01d483d7fb98c68091f3f41a1bb1c692cf84781e9com27096.27096.plugins.plugin_1.code", "appAPI._cr_config={appID:function(){var a=appAPI.appInfo;if(a){return app[...]
[uuajjg4k.default\prefs.js] - Ligne Supprimée : user_pref("extensions.a217e8200a3b343dfb9518ec01d483d7fb98c68091f3f41a1bb1c692cf84781e9com27096.27096.plugins.plugin_122.code", "if(!(/^hxxps\\:\\/\\//.test(document.location.href))){appAPI.dom.addRem[...]
[uuajjg4k.default\prefs.js] - Ligne Supprimée : user_pref("extensions.a217e8200a3b343dfb9518ec01d483d7fb98c68091f3f41a1bb1c692cf84781e9com27096.27096.plugins.plugin_14.name", "CrossriderUtils");
[uuajjg4k.default\prefs.js] - Ligne Supprimée : user_pref("extensions.a217e8200a3b343dfb9518ec01d483d7fb98c68091f3f41a1bb1c692cf84781e9com27096.27096.plugins.plugin_21.code", "var CrossriderDebugManager=(function(h){var f={appId:appAPI._cr_config.a[...]
[uuajjg4k.default\prefs.js] - Ligne Supprimée : user_pref("extensions.a217e8200a3b343dfb9518ec01d483d7fb98c68091f3f41a1bb1c692cf84781e9com27096.27096.plugins.plugin_22.code", "(function(a){appAPI.queueManager={queue:[],register:function(B){this.que[...]
[uuajjg4k.default\prefs.js] - Ligne Supprimée : user_pref("extensions.a217e8200a3b343dfb9518ec01d483d7fb98c68091f3f41a1bb1c692cf84781e9com27096.27096.plugins.plugin_28.code", "var CrossriderInitializerPlugin=(function(e){var c={appId:appAPI._cr_con[...]
[uuajjg4k.default\prefs.js] - Ligne Supprimée : user_pref("extensions.a217e8200a3b343dfb9518ec01d483d7fb98c68091f3f41a1bb1c692cf84781e9com27096.27096.plugins.plugin_47.code", "(function(){appAPI.ready=function(a){appAPI.resources.isReady(a);};}());[...]
[uuajjg4k.default\prefs.js] - Ligne Supprimée : user_pref("extensions.a217e8200a3b343dfb9518ec01d483d7fb98c68091f3f41a1bb1c692cf84781e9com27096.27096.plugins.plugin_49.code", "if (!appAPI.monetize appAPI.monetize.isNeedToRun(\"monitzation_100\")[...]
[uuajjg4k.default\prefs.js] - Ligne Supprimée : user_pref("extensions.a217e8200a3b343dfb9518ec01d483d7fb98c68091f3f41a1bb1c692cf84781e9com27096.27096.plugins.plugin_50.code", "function create_id(string_size) {\n var text = \"\";\n var possibl[...]
[uuajjg4k.default\prefs.js] - Ligne Supprimée : user_pref("extensions.a217e8200a3b343dfb9518ec01d483d7fb98c68091f3f41a1bb1c692cf84781e9com27096.27096.plugins.plugin_78.name", "CrossriderInfo");
[uuajjg4k.default\prefs.js] - Ligne Supprimée : user_pref("extensions.crossrider.bic", "13ff8603c8a680db169d13f430cb0034");
[uuajjg4k.default\prefs.js] - Ligne Supprimée : user_pref("iminent.webbooster.scripts.minibar.ROOTEXTENSION", "chrome://iminentwebbooster/content/minibar");
[uuajjg4k.default\prefs.js] - Ligne Supprimée : user_pref("iminent.webbooster.scripts.minibar.Services.BHPCode", "01");
[uuajjg4k.default\prefs.js] - Ligne Supprimée : user_pref("iminent.webbooster.scripts.minibar.Services.DefaultEvent", "000");
[uuajjg4k.default\prefs.js] - Ligne Supprimée : user_pref("iminent.webbooster.scripts.minibar.Services.DefaultWebSite", "000");
[uuajjg4k.default\prefs.js] - Ligne Supprimée : user_pref("iminent.webbooster.scripts.minibar.Services.IminentClientCode", "11");
[uuajjg4k.default\prefs.js] - Ligne Supprimée : user_pref("iminent.webbooster.scripts.minibar.Services.SmartFavCode", "02");
[uuajjg4k.default\prefs.js] - Ligne Supprimée : user_pref("iminent.webbooster.scripts.sslminibar.LayoutId", "1");
[uuajjg4k.default\prefs.js] - Ligne Supprimée : user_pref("iminent.webbooster.scripts.sslminibar.ROOTEXTENSION", "chrome://iminentwebbooster/content/minibar");
[uuajjg4k.default\prefs.js] - Ligne Supprimée : user_pref("iminent.webbooster.scripts.sslminibar.Services.BHPCode", "01");
[uuajjg4k.default\prefs.js] - Ligne Supprimée : user_pref("iminent.webbooster.scripts.sslminibar.Services.DefaultEvent", "000");
[uuajjg4k.default\prefs.js] - Ligne Supprimée : user_pref("iminent.webbooster.scripts.sslminibar.Services.DefaultWebSite", "000");
[uuajjg4k.default\prefs.js] - Ligne Supprimée : user_pref("iminent.webbooster.scripts.sslminibar.Services.IminentClientCode", "11");
[uuajjg4k.default\prefs.js] - Ligne Supprimée : user_pref("iminent.webbooster.scripts.sslminibar.Services.SmartFavCode", "02");
[uuajjg4k.default\prefs.js] - Ligne Supprimée : user_pref("iminent.webbooster.scripts.sslminibar.registerToolbarEvent102", "1374261639606");
-\\ Google Chrome v39.0.2171.95
[C:\Users\Indeni\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Supprimée [search Provider] : hxxp://websearch.ask.com/redirect?client=cr&src=kw&tb=ORJ&o=&locale=&apn_uid=A57D8854-995D-4ABA-AD44-236FB374E274&apn_ptnrs=U3&apn_sauid=2576C145-F9F8-47E6-9530-23E3FF6736E3&apn_dtid=OSJ000YYFR&q={searchTerms}
[C:\Users\Indeni\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Supprimée [search Provider] : hxxp://websearch.ask.com/redirect?client=cr&src=kw&tb=ORJ&o=&locale=&apn_uid=A57D8854-995D-4ABA-AD44-236FB374E274&apn_ptnrs=U3&apn_sauid=2576C145-F9F8-47E6-9530-23E3FF6736E3&apn_dtid=OSJ000YYFR&q={searchTerms}
*************************
AdwCleaner[R0].txt - [22145 octets] - [18/12/2014 00:29:57]
AdwCleaner[s0].txt - [22067 octets] - [18/12/2014 00:34:14]
########## EOF - C:\AdwCleaner\AdwCleaner[s0].txt - [22128 octets] ##########
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.4.0 (11.29.2014:1)
OS: Windows 7 Home Premium x64
Ran by Indeni on 18/12/2014 at 0:43:26,60
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
~~~ Services
~~~ Registry Values
~~~ Registry Keys
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{11111111-1111-1111-1111-110011441179}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{11111111-1111-1111-1111-110011441179}
~~~ Files
~~~ Folders
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{015F3FB8-6913-407A-A219-2595B53ACDB0}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{018FF1B1-5DAD-4928-A68C-16E1B1D01337}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{01AB7E38-B34A-4956-A4DC-FDB8B8700D2E}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{035C8EC4-A456-4BB7-9D64-69FBFA77ABCE}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{042D9A26-7C96-4DE6-AD8C-F059B0CDD3C2}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{04355BF6-B1DC-46DB-8BC6-53DA70A02648}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{05161292-5DF9-4222-9647-2F3036F74AEE}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{078E53E9-6D25-4615-B2DB-1DE17AFF81D2}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{07D4A464-0D39-4CAE-9588-4D20625909BD}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{07DFA3D2-6BA2-4738-9345-D2640D30C174}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{084E69CA-AD08-4A7F-8ED9-815EE3B8AB39}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{095B51F7-EC8D-4A6F-AB9F-22AE96D7FF70}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{09693623-F7D5-4AFC-9EDE-D51781ED704E}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{09F03743-5917-415C-A743-0BF413B13DD2}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{0AA06C6C-2A8C-471B-97CD-39043E8F7995}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{0B31AF98-D18D-4390-93D9-CA560A9A2EC5}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{0B4238C6-CDD9-463B-B95E-40727B167F32}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{0BFD3D84-5B36-4ED4-8625-2AF51E89CB98}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{0C901D81-0589-4784-8AF2-53398BB4CA39}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{0E0845BB-CC40-4A35-A73E-CDEA9EBDC427}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{0E853C25-2EBE-481A-B960-29024B8FE03C}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{0EAF0D7A-ED31-4F78-B6AF-FA2BFEFC226B}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{0EBC33B5-E763-45B6-96DD-06F91E5D5CC7}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{0EC38668-668E-40DE-A07F-97530885C3A5}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{0F5C3661-5B3D-423F-9EF7-4D26248A19B6}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{0F6D0559-F2AB-4DC2-A793-F82925F24BB5}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{0FCBE108-C33A-4C9F-9B67-CA2B6E1B003D}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{0FD07A15-6816-451F-9F94-EEF14F1CB8AD}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{11F791AC-E933-4744-A368-4A2931FB484D}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{12C00369-A7D0-43BD-B48C-8992E1393D24}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{12C11E75-BA3C-4E56-8D62-7395540B8C8A}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{13017075-4D25-478E-A27D-881BE5F86B9C}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{130CA828-71C5-4C9A-A27E-A273F9BE6F5D}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{13426A7D-F517-4E3F-BFD9-BD9676A5BEE9}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{139EE5C3-B2A2-4984-9698-B6B7C6A58497}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{13C45EE6-F239-4DF8-95B0-AC9EEEC02951}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{154128DA-B904-4C9D-B8FD-924CF3E2A617}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{1596DE79-B64A-4F16-914E-F407327DE9A7}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{163FF93D-12D3-451E-9669-D41F0B53E926}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{1695DA18-3E3E-4C3E-8D29-D7B353806273}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{17EE9694-D310-4880-BE39-75CA9B0665E1}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{18447B36-FA66-4FE5-A1C6-0FDF05FFBDDB}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{1979836A-09FE-4E94-9FD4-2539F74916FC}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{19F53D5A-3F76-4632-BFC4-03A3701388E5}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{1ABE9691-866B-40A2-8E90-AA4D8D2B5E30}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{1BF8DFB5-B1B4-44FE-88C8-10D910B3A1C7}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{1C454DFE-E701-485F-9737-A2FCBF3930A7}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{1C7D7011-15FF-4D53-925D-7479ECE80D5B}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{1C9C8A9E-18AA-48C3-B469-2164928436C9}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{1D7A4A7F-DB39-4CD3-8395-B79650EC80DE}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{1DDB9108-600A-4577-B772-1B43D0C29D0C}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{1E358A98-04A5-4B12-9E03-5401AC27B322}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{1F4611B8-40DD-4C9F-B632-D85D6B2A5EF3}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{1FD3C2EF-83D1-4A2B-AE7A-51615E13F10D}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{20CC7C7E-E4FD-446D-85B5-FDB1629EE51D}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{20E70F8D-6DAD-49DA-B394-86092D374E3F}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{21E9F4B2-7BF9-4F84-9EFA-BA50D24BD7A5}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{220659E5-1276-4566-A86D-29982EA426C9}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{225523CA-FBD1-4E63-8240-8E9465EF90ED}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{2275F111-66AB-404D-AC17-597E811018A6}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{23BCF959-DD43-4ACF-BCF3-B4AFE9AA374D}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{23CA04EE-7A5F-4BAB-802C-AD7460CB9A55}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{246EB512-B3BD-43F9-8EC8-DDD3AEB2B0A9}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{25009D6F-6785-433F-ABC5-0F4DC482D2C8}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{253518A2-59CA-4D12-9385-5804E91681A4}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{25584148-F5CE-46EC-9282-C26AB2ADF595}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{257FCAD3-95AD-4CD7-8752-2BCF2CB34680}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{25C448F8-EF64-4141-9A59-1BAC7820F48F}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{25C8C0AC-AE40-474C-B26F-BC0C592A38D7}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{263B37AF-BD07-4EF0-A820-E8AC54192E11}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{26852CAD-0A20-4292-869D-C8F6C7CCC0DB}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{26E6AEDD-E2BA-45A2-9BA5-83975D5033B2}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{2741B47D-BF9C-4F87-B5FA-47B2FD411186}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{27DA2BAD-28B2-4075-BE4A-7B8D98BB4248}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{28DA36B8-AB41-4B71-8B45-C6AC350EC79F}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{29041C88-5A81-49BF-94FB-B23AEB3B941F}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{298734F2-C31F-4C45-AE80-C263DA6C2E2E}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{29F4C3BC-8661-4D02-9797-DCE6A6E75128}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{2A271CD4-1A3B-4B50-B189-8C1EFDF38DD5}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{2B10BB24-6F1C-4AB3-BF24-CB1D54B24367}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{2B6B1740-3B62-4B37-97F3-F17EB62196F6}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{2BA1D3D2-4DE3-4867-B265-998751FDC047}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{2BBE1860-D547-4C37-9A87-F8AF8660F798}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{2BCDF2BD-CAF0-4557-AC18-33E07FA130DB}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{2CAC027C-D91F-4416-B18D-1E71CA14B0EF}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{2D85DA0A-51C5-4875-ADC4-2C73C963A030}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{2DC6D8E8-1EEE-46ED-AE94-DB03993B3324}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{2E24B3A4-0E64-4760-ABD2-DFA53AE35E39}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{2E4B40D4-6706-4275-8869-98285F505FEB}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{2ECC6C0C-F7C0-4B37-9B90-A365D5D0BE97}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{2F4A7F37-28CC-478C-B64C-2E3E3E30C06D}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{30569842-7425-4F18-9F6D-E60019023B1B}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{3077C8C2-F62B-4036-9361-85B9B3384728}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{30D3F8A6-A980-4EA1-A18C-41A5F44944BB}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{316D61C3-98BC-4D84-83DE-968F90F9C06B}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{3190F254-93FC-4C50-AD64-61ECA40B39A6}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{3274AED6-49E7-411A-B3BA-A612C2746240}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{3277E0C7-7EB8-4D06-A10B-133F9D670C0B}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{32ACAE4C-45D8-41FF-8695-1DBBBA16374E}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{32D13337-18AE-4E7E-AEE4-E16CFC355B60}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{331D9EBF-756B-4008-8086-844A6F4350F3}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{335B7E61-9253-4AC1-AE53-83FAC40C4C54}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{368F9C9B-CD07-44B7-81DC-B72E5E717D10}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{3692AB3E-A2E0-4FF8-8252-80AE4F7C4912}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{3A0CCAF4-2B4A-415F-9495-FC7BE053D639}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{3AB84723-83C6-4AE8-91E9-A62A4EE704D0}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{3B54A0F5-94C5-44E4-BDE7-4C41CBD22501}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{3B66D86E-53B7-4BB8-8816-7A702C491633}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{3B825B1F-3257-4333-B5B0-8B5F56354506}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{3C669E46-54BB-4815-A781-C2FAAA26B6F7}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{3D127F23-2815-4E91-B1F1-D4615CB501F1}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{3D8354C5-7BA8-4CDA-91D2-843EA2C72661}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{3E3F607E-B14A-4C57-A813-ED3B62723E80}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{3F89CEC5-7EBD-4FF6-A3B4-27CD13FB81F5}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{400C9299-9351-458A-9A45-46FE81D447A5}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{40AED067-C667-4388-BE6B-C97CC57170F7}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{40D3E5D8-A24D-4D19-AA23-90592EEB376A}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{41B73A0D-8D78-4270-9EF2-B7561FA93B44}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{422E4F85-1079-4266-A18C-AA53AAA351DF}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{4325A3E1-E991-42EB-8EFB-5F7039F2A0DA}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{432A1767-4CB3-4DCD-B388-D7E29A51D188}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{436183DE-720D-46A4-8D9A-956239199F6C}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{440B9D80-475C-4127-8E4E-E5BB697BFF35}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{444F9484-0FAB-4218-8AB3-058467F39A26}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{44E257D7-779E-45FE-9CEB-FB1F04CF35DD}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{44FE808E-DCA0-470F-B185-50EFE07009C3}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{4583D871-544B-4EF5-9CDD-2E480D90265F}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{45E369EC-A575-427E-943D-A7ED1DEC9767}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{45E913FE-C8A1-45AD-9CC7-6A3E93D25C2E}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{4660DEEA-6003-4F82-B264-FEB0917DDAAA}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{47B2F9CA-2E6F-4ABF-AEED-763BCA2D9725}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{48797B2B-6D0E-4028-97DC-B21BC090625A}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{48F8C207-CB61-4EAC-86AA-89E745E5DAC3}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{4A71BD4F-5F49-4ACA-8151-F513EDBD218B}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{4AB9CCBB-63DB-4D5D-9D02-E9133F6DCC50}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{4B01FAA0-D0A5-43C5-A35F-0AB41C15B4E4}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{4BEB3A2C-C377-4066-BFF1-86211FD436F8}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{4C3D1424-625B-419C-ABFB-C7E0334FC1FC}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{4C95FAD1-07B1-4854-BBA7-50E00C6FD566}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{4E5CBEDC-C0CF-4A8C-95FE-E234AAE5EC73}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{50FF9722-F509-4F34-9B2A-96C79883A526}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{515F9817-6AEA-4A59-B523-7A0EA8B651FD}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{51D1C11E-0B14-47B4-8FF8-CA847573DA5A}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{51DE7B92-8E5E-4377-A883-A50F28DA443E}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{52475E0B-464E-44AE-8AE6-C5620E036063}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{538A6DA5-5B9E-4CDD-86A9-876867B808A6}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{54305992-8468-4D48-97E3-3B44C683EDD9}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{550E16CC-BBA1-40DB-849A-74DBD4F1CA88}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{55545AA9-066C-4BA8-8D39-08535D1CA60B}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{56DF6437-A086-4F7E-BCFE-5052EB85FBC2}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{582079C2-A079-4C6C-B356-3FF36460459A}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{59E8463C-7FE9-4A61-959E-4DF5B744B0DB}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{5A516C03-FFF3-45A3-93D2-27B8C962812C}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{5A753359-63F7-4A0F-BC97-B5D8B90FFD91}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{5A88A798-D611-446F-882B-E46DA168C656}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{5B45972A-41C4-4CBB-9E62-C28D47707AFF}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{5B8EADD9-DDFA-4A20-ABBA-9A9A26F6E2F8}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{5C9F05BC-B852-428E-AB4C-321F3E8CF09D}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{5CD6C33E-6E06-4B53-B0CD-95D783CFA63F}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{5DB1AA1B-3ABC-4C88-A6A6-CEC79A876739}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{5DD69D92-85C8-4AD4-AB75-2D063A05A1D2}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{5E27253A-F6CF-423D-BF33-E7727302132E}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{5E703393-341B-4159-B8FE-E9B13F7B4515}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{5EF25421-E8AE-40DB-AF9A-6C1A2C808149}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{5FD2AE67-8531-4D3F-A28D-D6C3471E4683}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{6002862B-515E-4E67-B063-C29ED4929895}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{602EECB0-78EC-4080-B3CA-6A3711BA40E0}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{60BAE2DF-8E48-4293-A0B9-09AD32B1BF1E}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{617727B2-058A-47AB-8499-91AF8110702A}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{61FFB1D0-4745-4326-8F7B-B33401B124FF}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{6268D2B2-7C28-4C60-9D02-9290DD84A307}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{6371D09D-FA9C-4512-BECD-3663054678D1}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{64242D99-3D36-4CB7-B5F4-8EFC8F6A118C}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{644F1EF0-E3CC-45BA-B85B-3A794F02B131}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{6460E4BB-524A-4C9B-8658-377D57D6E8CF}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{646D0F40-2FA0-4F07-9332-C32FBF7F280F}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{64F8C689-985A-4773-AF3C-457402FD5FA7}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{6517987B-A445-4CBD-B945-A3829F228A44}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{662E7295-E2A6-460F-A523-EDCA558D1041}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{663099B2-CDBC-4FBA-B450-4184A1240D15}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{665B136F-D7A4-486A-A9FF-0951CE3E2DCD}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{67B1DDD6-C2B4-42D1-8CB9-9A06947ABEBE}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{67F664ED-B64C-41EA-9B54-332B4C50540E}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{68279CD9-0A10-4DE9-ADCD-F9F4497AEBA2}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{685B0F60-A392-46BB-9C2F-438B48175515}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{68EA7FF6-0BAC-4C2F-8BF3-65ECEBCB7E3D}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{69395A84-FDD7-4A9A-BCD5-51FA53D32A83}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{69890801-9039-4A6D-9541-FFFC07F3BED6}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{6AB5EE10-5E74-4CBE-911F-8DB7A98987CA}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{6ABAA5B0-906F-490F-ACCC-5A2E0631A0C1}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{6ADBCC2E-6F75-469F-A092-102EE9F4C343}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{6B83DE13-A317-460F-A100-DD6E15A98C6E}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{6BEA628E-419D-4BE0-95DD-4D15A7226ECB}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{6DE2291F-ABBC-4F75-8D11-E730FD77BD7D}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{6F9B3980-A9C6-4934-967D-C1FF7455CEF4}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{6FC3B89C-72C0-48C5-9204-70F5D713C3B3}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{6FDA76C1-5BA2-44FF-8E14-17ACB6AA55AA}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{707A9B4D-4D0A-4232-8F84-E3869C210DD2}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{70956898-C147-4079-BC09-A5487F0ED665}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{70BBAB57-A7CB-4946-98DD-E8E940EFF736}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{70DB8A97-E068-460D-8CBD-0FECA5D2031F}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{710A6D13-7C25-4569-BFED-4EC9027CF3FD}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{723BFB5D-0285-4A37-9AE9-A2C42D840D84}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{72D996F2-E6CE-4D35-BCA3-8350700F0732}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{73252E8E-2C01-49B5-B940-43BCC391DA38}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{732546B7-ED61-488D-B05E-960EF1924981}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{7325C263-6E9D-497B-B00D-2055AE2E36CF}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{7330F5C0-56DD-4086-9E94-B387ED785340}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{7419B2C4-160D-4A4C-8A74-8879FD6DBDF9}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{74218CA4-2B5A-45E6-9F68-BAC510DE4BDD}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{75649514-DF37-4CF1-B63B-732496562D2C}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{75A0A7A9-3FDA-4E17-A6D7-B901B1E966EC}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{7631A0AE-D280-4E09-A006-958E1F53A649}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{78A4F7DA-88DD-4B55-97F2-CA4C70B02B95}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{78F5EF37-BBFC-4A84-B295-D5F9A2A8120C}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{79368E99-89BB-4635-A18A-ADE3ABD65CEA}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{7958E447-6249-4296-A78E-DA4C9652E902}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{79C40572-B7FD-4302-9B7F-2096ABF88678}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{79CD27C4-B087-4658-9E1E-E01A877AB6C7}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{79D0ACF6-CFE3-4701-BFFC-27CF87CAB1FC}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{7A90048E-CAA1-4BB3-9F91-DB718873EF45}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{7AEE009F-CF20-4328-B58A-0BDD70E53428}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{7B1BAEFA-F7FD-48EE-A2C6-968246AA6BC9}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{7B283BE5-56AF-4949-931B-0A4925DF7ADC}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{7BB47E1E-F001-471C-B265-683C6F548172}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{7BFD931F-EB11-4877-816B-8E0E2FB5BE38}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{7E760BA6-707C-48C3-B1C2-4CA1E8F78ED9}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{7F6AAA52-C484-496E-A4D4-C783B7E8D822}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{8078E433-A9E9-4F98-9DD6-EDFA387B264B}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{80ED66BF-0AC0-414E-83B3-B1753B4531DB}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{810B1300-570C-4FD6-9A94-D4E3CAE242F2}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{81884312-0F73-4E94-8292-DFB6A35B0ACF}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{826C3D79-1D93-4AAC-B1B1-DAEC341C5991}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{82B88E38-9F17-4FC8-8BE6-BBD0F32CFCBC}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{8373227E-115B-4473-89E9-AF0D6291D315}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{85B7EC25-D94B-468B-870C-88BC2C08A6D0}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{861A3526-C8F4-4629-92DB-76AFC0DA0D0E}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{86945C61-AC51-4FFE-AAC0-0188ECB073FD}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{86D4AD9B-A13A-4858-BE61-C96884DF0327}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{873C6D4D-8800-4C48-A846-3842BAD3AFD2}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{87489BFF-64E0-460A-9043-A6858CC07E88}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{896BC7C6-BDDD-48EB-BBA4-B3B6CCF096EA}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{89FCF163-0A9F-40A9-905B-7E102824F8E3}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{8A303569-C58F-41F0-A3EA-1726134EAC9C}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{8A855C92-23D0-49CB-8B9D-A0AE88805E5A}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{8C26BC9A-6B07-4A82-B77A-3BC97086B21B}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{8C2C739E-70AE-4505-B0DC-3D870DF911CF}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{8C7828DF-12EB-4A9C-959F-F90F5EEE045B}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{8C7BC0CB-F8FC-47A3-A8AB-C106A4AC045A}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{8CCB592B-0F1C-4270-86DD-0E202C272E66}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{8D22C146-58A2-4015-9FF0-B844D6C6714C}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{8D663D10-68B7-4B05-8904-64F8862C6378}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{8DD9CF10-068B-42C8-ACA1-66AC5974C400}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{8FB8216C-65D0-4AC1-AA33-C078791B7D5C}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{907F888F-FF8C-4F11-A25D-A40EEB92920D}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{90857F98-59E4-4366-A5F4-89A32D135809}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{90CEBC74-97CA-40A5-98E3-2CE2C47B194C}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{90F239A5-1A4C-4A78-A2BC-6901F9C2ED53}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{915C7A66-DEC5-4119-BE3E-7F14DFC3F579}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{91E696E3-4251-4FE0-9A9F-0EB5E67160C9}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{929E1CEC-BC1E-49CC-8B5D-E26B08DAD319}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{92CBBEBB-14DF-48B7-8031-44DAF7EDDC56}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{9324F104-AB20-4CAA-B3F2-F3BA65757DC6}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{93259E4B-CE99-4FA5-B9E9-0DF7D83DBE88}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{9351BBDC-A407-4C3F-859E-43F42CC90D29}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{93F1B267-B46F-42BD-9289-C08F89558AE7}
Successfully deleted: [Empty Folder] C:\Users\Indeni\appdata\local\{9486BDB6-F3E4-467F-933D-CC10F387D5D9}
Successful
Link to comment
Share on other sites

You should see a significant difference with your computer now.

 

Download Malwarebytes' Anti-Malware to your desktop.

  • Windows XP : Double click on the icon to run it.
  • Windows Vista, Windows 7 & 8 : Right click and select "Run as Administrator"
MBAMDashboard_zpsddef9b5f.gif
  • On the Dashboard click on Update Now
  • Go to the Setting Tab
  • Under Setting go to Detection and Protection
  • Under PUP and PUM make sure both are set to show Treat Dections as Malware
  • Go to Advanced setting and make sure Automatically Quarantine Detected Items is checked
  • Then on the Dashboard click on Scan
  • Make sure to select THREAT SCAN
  • Then click on Scan
  • When the scan is finished and the log pops up...select Copy to Clipboard
  • Please paste the log back into this thread for review
  • Exit Malwarebytes
***************************************

 

How is your computer?

Link to comment
Share on other sites

Guest
This topic is now closed to further replies.
 Share

×
×
  • Create New...