Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 11-09-2013 02
Ran by Ida (administrator) on PC-IDA on 12-09-2013 14:13:05
Running from C:\Users\Ida\Desktop
Windows 7 Home Premium Service Pack 1 (X64) OS Language: French Standard
Internet Explorer Version 10
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(Trusteer Ltd.) C:\Program Files (x86)\Trusteer\Rapport\bin\RapportMgmtService.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
() C:\ProgramData\Browser Manager\2.6.1519.190\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\mngr.exe
(Realsil Microelectronics Inc.) C:\Program Files (x86)\Realtek\Realtek USB 2.0 Card Reader\RIconMan.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
(Iminent) C:\Program Files (x86)\Common Files\Umbrella\umbrella.exe
(TOSHIBA Corporation) C:\Windows\system32\TODDSrv.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe
(BrowseFox) C:\Program Files (x86)\BrowseFox\updateBrowseFox.exe
() C:\ProgramData\Browser Manager\2.6.1519.190\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\mngr.exe
(Trusteer Ltd.) C:\Program Files (x86)\Trusteer\Rapport\bin\RapportService.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
(Conduit) C:\PROGRA~2\SearchProtect\Main\bin\CltMngSvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
(Conduit) C:\PROGRA~2\SearchProtect\SearchProtect\bin\cltmng.exe
(Conduit) C:\PROGRA~2\SearchProtect\UI\bin\cltmngui.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\BulletinBoard\TosNcCore.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\ReelTime\TosReelTimeMonitor.exe
(Toshiba Europe GmbH) C:\Program Files (x86)\Toshiba TEMPRO\TemproTray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Microsoft Corporation) C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\Power Saver\TPwrMain.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\SmoothView\SmoothView.exe
(Microsoft Corporation) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
(TOSHIBA CORPORATION) C:\Program Files (x86)\TOSHIBA\ConfigFree\NDSTray.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\FlashCards\TCrdMain.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(TOSHIBA) C:\Program Files (x86)\TOSHIBA\TOSHIBA Online Product Information\TOPI.exe
(Hewlett-Packard Co.) C:\Program Files\HP\HP Deskjet 3050A J611 series\Bin\ScanToPCActivationApp.exe
(BitTorrent Inc.) C:\Users\Ida\AppData\Roaming\BitTorrent\BitTorrent.exe
(Toshiba) C:\Program Files\TOSHIBA\TOSHIBA Places Icon Utility\TosDIMonitor.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(TOSHIBA CORPORATION) C:\Program Files (x86)\TOSHIBA\Utilities\KeNotify.exe
(Intel Corporation) C:\Windows\system32\igfxext.exe
(TOSHIBA Corporation) C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\ToshibaServiceStation.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Intel Corporation) C:\Windows\system32\igfxsrvc.exe
(Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(TOSHIBA CORPORATION) C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSwMgr.exe
(TOSHIBA Corporation) C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe
(TOSHIBA CORPORATION) C:\Program Files (x86)\TOSHIBA\ConfigFree\CFIWmxSvcs64.exe
(TOSHIBA CORPORATION) C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSvcs.exe
(Nero AG) c:\Program Files (x86)\Nero\Update\NASvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSENotify.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
(Microsoft Corporation) C:\Windows\system32\msiexec.exe
(Microsoft Corporation) C:\Windows\SoftwareDistribution\Download\Install\Windows-KB890830-x64-V5.4-delta.exe
(Microsoft Corporation) d:\3c522f10bd610e9e9db4ea219b\mrtstub.exe
(Microsoft Corporation) C:\Windows\system32\MRT.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [TosNC] - C:\Program Files\Toshiba\BulletinBoard\TosNcCore.exe [597928 2011-03-03] (TOSHIBA Corporation)
HKLM\...\Run: [TosReelTimeMonitor] - C:\Program Files\TOSHIBA\ReelTime\TosReelTimeMonitor.exe [38304 2010-12-14] (TOSHIBA Corporation)
HKLM\...\Run: [Toshiba TEMPRO] - C:\Program Files (x86)\Toshiba TEMPRO\TemproTray.exe [1546720 2011-02-10] (Toshiba Europe GmbH)
HKLM\...\Run: [HotKeysCmds] - C:\Windows\system32\hkcmd.exe [ ] ()
HKLM\...\Run: [RtHDVCpl] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [11101800 2010-07-28] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg] - C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2120808 2010-07-28] (Realtek Semiconductor)
HKLM\...\Run: [TPwrMain] - C:\Program Files\TOSHIBA\Power Saver\TPwrMain.EXE [566184 2010-09-28] (TOSHIBA Corporation)
HKLM\...\Run: [SmoothView] - C:\Program Files\Toshiba\SmoothView\SmoothView.exe [570680 2009-08-13] (TOSHIBA Corporation)
HKLM\...\Run: [00TCrdMain] - C:\Program Files\TOSHIBA\FlashCards\TCrdMain.exe [915320 2010-05-10] (TOSHIBA Corporation)
HKLM\...\Run: [SynTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2052392 2010-03-10] (Synaptics Incorporated)
HKLM\...\Run: [SmartFaceVWatcher] - C:\Program Files\Toshiba\SmartFaceV\SmartFaceVWatcher.exe [238080 2009-10-19] (TOSHIBA Corporation)
HKLM\...\Run: [TosSENotify] - C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosWaitSrv.exe [709976 2010-02-05] (TOSHIBA Corporation)
HKLM\...\Run: [TosVolRegulator] - C:\Program Files\TOSHIBA\TosVolRegulator\TosVolRegulator.exe [24376 2009-11-11] (TOSHIBA Corporation)
HKLM\...\Run: [Toshiba Registration] - C:\Program Files\TOSHIBA\Registration\ToshibaReminder.exe [150992 2011-07-26] (Toshiba Europe GmbH)
HKCU\...\Run: [TOPI.EXE] - C:\Program Files (x86)\TOSHIBA\TOSHIBA Online Product Information\topi.exe [846936 2011-05-16] (TOSHIBA)
HKCU\...\Run: [HP Deskjet 3050A J611 series (NET)] - C:\Program Files\HP\HP Deskjet 3050A J611 series\Bin\ScanToPCActivationApp.exe [2547048 2011-03-30] (Hewlett-Packard Co.)
HKCU\...\Run: [BitTorrent] - C:\Users\Ida\AppData\Roaming\BitTorrent\BitTorrent.exe [1127000 2013-09-10] (BitTorrent Inc.)
HKLM-x32\...\Run: [NBAgent] - c:\Program Files (x86)\Nero\Nero 10\Nero BackItUp\NBAgent.exe [1409424 2011-06-29] (Nero AG)
HKLM-x32\...\Run: [HWSetup] - C:\Program Files\TOSHIBA\Utilities\HWSetup.exe [423936 2010-03-04] (TOSHIBA Electronics, Inc.)
HKLM-x32\...\Run: [SVPWUTIL] - C:\Program Files (x86)\TOSHIBA\Utilities\SVPWUTIL.exe [352256 2010-03-03] (TOSHIBA)
HKLM-x32\...\Run: [KeNotify] - C:\Program Files (x86)\TOSHIBA\Utilities\KeNotify.exe [34160 2010-08-15] (TOSHIBA CORPORATION)
HKLM-x32\...\Run: [ToshibaServiceStation] - C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\ToshibaServiceStation.exe [1294136 2009-10-06] (TOSHIBA Corporation)
HKLM-x32\...\Run: [avast] - C:\Program Files\AVAST Software\Avast\avastUI.exe [4858968 2013-05-09] (AVAST Software)
HKLM-x32\...\Run: [HP Software Update] - C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe [49208 2011-01-12] (Hewlett-Packard)
HKLM-x32\...\Run: [] - [x]
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [253816 2013-03-12] (Oracle Corporation)
HKU\Default\...\Run: [TOPI.EXE] - C:\Program Files (x86)\TOSHIBA\TOSHIBA Online Product Information\topi.exe [846936 2011-05-16] (TOSHIBA)
HKU\Default User\...\Run: [TOPI.EXE] - C:\Program Files (x86)\TOSHIBA\TOSHIBA Online Product Information\topi.exe [846936 2011-05-16] (TOSHIBA)
HKU\Invité\...\Run: [TOPI.EXE] - C:\Program Files (x86)\TOSHIBA\TOSHIBA Online Product Information\topi.exe [846936 2011-05-16] (TOSHIBA)
HKU\Invité\...\Run: [swg] - C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [39408 2011-07-26] (Google Inc.)
AppInit_DLLs: C:\PROGRA~2\SearchProtect\SearchProtect\bin\SPVC64Loader.dll [1299288 2013-09-01] (Conduit)
AppInit_DLLs-x32: C:\PROGRA~2\SearchProtect\SearchProtect\bin\SPVC32Loader.dll c:\progra~3\browse~1\261519~1.190\{c16c1~1\mngr.dll [2691536 2013-07-26] ()
Startup: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\TRDCReminder.lnk
ShortcutTarget: TRDCReminder.lnk -> C:\Program Files (x86)\TOSHIBA\TRDCReminder\TRDCReminder.exe (TOSHIBA Europe)
Startup: C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\TRDCReminder.lnk
ShortcutTarget: TRDCReminder.lnk -> C:\Program Files (x86)\TOSHIBA\TRDCReminder\TRDCReminder.exe (TOSHIBA Europe)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com/ig/redirectdomain?brand=TEUA&bmod=TEUA
HKCU\Software\Microsoft\Internet Explorer\Main,bProtector Start Page =
HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.bing.com
SearchScopes: HKCU - DefaultScope {014DB5FA-EAFB-4592-A95B-F44D3EE87FA9} URL = http://search.conduit.com/Results.aspx?ctid=CT3312375&octid=EB_ORIGINAL_CTID&SearchSource=58&CUI=&UM=2&UP=SP95FF5EA1-8C86-43F2-ABBD-9B8868B83664&q={searchTerms}
SearchScopes: HKCU - {014DB5FA-EAFB-4592-A95B-F44D3EE87FA9} URL = http://search.conduit.com/Results.aspx?ctid=CT3312375&octid=EB_ORIGINAL_CTID&SearchSource=58&CUI=&UM=2&UP=SP95FF5EA1-8C86-43F2-ABBD-9B8868B83664&q={searchTerms}
SearchScopes: HKCU - {483830EE-A4CD-4b71-B0A3-3D82E62A6909} URL =
BHO: avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO-x32: Programme d'aide de l'Assistant de connexion Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
BHO-x32: BrowseFox - {b9507101-e464-4b3b-a4cb-291aaedd94f2} - C:\Program Files (x86)\BrowseFox\BrowseFoxbho.dll (Browse Fox)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: TOSHIBA Media Controller Plug-in - {F3C88694-EFFA-4d78-B409-54B7B2535B14} - C:\Program Files (x86)\TOSHIBA\TOSHIBA Media Controller Plug-in\TOSHIBAMediaControllerIE.dll (<TOSHIBA>)
Toolbar: HKLM - avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
Toolbar: HKLM-x32 - avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
Toolbar: HKLM-x32 - No Name - {98889811-442D-49dd-99D7-DC866BE87DBC} - No File
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
Toolbar: HKCU - Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
Handler-x32: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.dll No File
Handler-x32: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.dll No File
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.254

FireFox:
========
FF ProfilePath: C:\Users\Ida\AppData\Roaming\Mozilla\Firefox\Profiles\vts43fk0.default
FF NewTab: hxxp://www.google.com
FF SelectedSearchEngine: Google
FF Homepage: hxxp://www.google.com
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_8_800_168.dll ()
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.20513.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_8_800_168.dll ()
FF Plugin-x32: @java.com/DTPlugin,version=10.25.2 - C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.25.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files (x86)\Microsoft Silverlight\5.1.20513.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MICROS~3\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3538.0513 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3555.0308 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.Software.com/Software Update;version=3 - C:\Program Files (x86)\Software\Update\1.3.25.0\npSoftwareUpdate3.dll (The Software Group)
FF Plugin-x32: @tools.Software.com/Software Update;version=9 - C:\Program Files (x86)\Software\Update\1.3.25.0\npSoftwareUpdate3.dll (The Software Group)
FF Plugin-x32: @videolan.org/vlc,version=2.0.2 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.0.8 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 - C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\4\NP_wtapp.dll ()
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF SearchPlugin: C:\Users\Ida\AppData\Roaming\Mozilla\Firefox\Profiles\vts43fk0.default\searchplugins\conduit-search.xml
FF SearchPlugin: C:\Users\Ida\AppData\Roaming\Mozilla\Firefox\Profiles\vts43fk0.default\searchplugins\mngr.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazon-france.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\cnrtl-tlfi-fr.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-france.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-france.xml
FF Extension: BrowseFox - C:\Users\Ida\AppData\Roaming\Mozilla\Firefox\Profiles\vts43fk0.default\Extensions\firefox@browsefox.com
FF Extension: firefox - C:\Users\Ida\AppData\Roaming\Mozilla\Firefox\Profiles\vts43fk0.default\Extensions\firefox@browsefox.com.xpi
FF HKLM\...\Firefox\Extensions: [{336D0C35-8A85-403a-B9D2-65C292C39087}] - C:\Program Files\Web Assistant\Firefox
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF

Chrome:
=======
CHR HomePage: hxxp://www.google.com
CHR RestoreOnStartup: "urls_to_restore_on_startup": [
CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.66\PepperFlash\pepflashplayer.dll ()
CHR Plugin: (Shockwave Flash) - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_4_402_287.dll No File
CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.66\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.66\pdf.dll ()
CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Browser\nppdf32.dll No File
CHR Plugin: (Java Deployment Toolkit 6.0.200.2) - C:\Program Files (x86)\Java\jre6\bin\new_plugin\npdeployJava1.dll No File
CHR Plugin: (Java(TM) Platform SE 6 U20) - C:\Program Files (x86)\Java\jre6\bin\new_plugin\npjp2.dll No File
CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~2\MICROS~3\Office14\NPSPWRAP.DLL (Microsoft Corporation)
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.123\npGoogleUpdate3.dll No File
CHR Plugin: (Silverlight Plug-In) - C:\Program Files (x86)\Microsoft Silverlight\4.1.10329.0\npctrl.dll No File
CHR Plugin: (VLC Web Plugin) - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
CHR Plugin: (Windows Live\u0099 Photo Gallery) - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
CHR Extension: (Warrior Girl) - C:\Users\Ida\AppData\Local\Google\Chrome\User Data\Default\Extensions\dbngkgeakdhomabndkmfcjijooohmpff\1_0
CHR Extension: (avast! Online Security) - C:\Users\Ida\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki\8.0.8_0
CHR Extension: (Chrome In-App Payments service) - C:\Users\Ida\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.4.10_0
CHR Extension: ( "name": "Smart Display",) - C:\Users\Ida\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbpohikckhbcljgombipcdoinkaedlfa\1.6_0
CHR Extension: (BrowseFox) - C:\Users\Ida\AppData\Local\Google\Chrome\User Data\Default\Extensions\ppdjnkblmcjfnlogjjhpigpdgpcgdpll\1.0.0
CHR HKLM-x32\...\Chrome\Extension: [obejgonfikfkomgmoebgacomodnpfndj] - C:\ProgramData\DownloadnSave\obejgonfikfkomgmoebgacomodnpfndj.crx
CHR HKLM-x32\...\Chrome\Extension: [ppdjnkblmcjfnlogjjhpigpdgpcgdpll] - C:\Program Files (x86)\BrowseFox\ppdjnkblmcjfnlogjjhpigpdgpcgdpll.crx

==================== Services (Whitelisted) =================

R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [46808 2013-05-09] (AVAST Software)
R2 Browser Manager; C:\ProgramData\Browser Manager\2.6.1519.190\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\mngr.exe [2847696 2013-07-26] ()
R2 CltMngSvc; C:\PROGRA~2\SearchProtect\Main\bin\CltMngSvc.exe [1736024 2013-09-01] (Conduit)
R2 IconMan_R; C:\Program Files (x86)\Realtek\Realtek USB 2.0 Card Reader\RIconMan.exe [1811456 2010-08-27] (Realsil Microelectronics Inc.)
R2 RapportMgmtService; C:\Program Files (x86)\Trusteer\Rapport\bin\RapportMgmtService.exe [1435928 2013-08-19] (Trusteer Ltd.)
S2 Software_update; C:\Program Files (x86)\Software\Update\SoftwareUpdate.exe [119408 2013-09-11] (The Software Group)
S3 Software_update_m; C:\Program Files (x86)\Software\Update\SoftwareUpdate.exe [119408 2013-09-11] (The Software Group)
R2 SProtection; C:\Program Files (x86)\Common Files\Umbrella\umbrella.exe [2868544 2013-08-07] (Iminent)
S3 TemproMonitoringService; C:\Program Files (x86)\Toshiba TEMPRO\TemproSvc.exe [112080 2011-02-10] (Toshiba Europe GmbH)
R2 Update BrowseFox; C:\Program Files (x86)\BrowseFox\updateBrowseFox.exe [206624 2013-08-30] (BrowseFox)
S3 MozillaMaintenance; "C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe" [x]

==================== Drivers (Whitelisted) ====================

R2 aswFsBlk; C:\Windows\System32\Drivers\aswFsBlk.sys [33400 2013-05-09] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [80816 2013-05-09] (AVAST Software)
R1 aswRdr; C:\Windows\System32\Drivers\aswrdr2.sys [72016 2013-05-09] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65336 2013-05-09] ()
R1 aswSnx; C:\Windows\System32\Drivers\aswSnx.sys [1030952 2013-06-27] (AVAST Software)
R1 aswSP; C:\Windows\System32\Drivers\aswSP.sys [378944 2013-06-27] (AVAST Software)
R1 aswTdi; C:\Windows\System32\Drivers\aswTdi.sys [64288 2013-05-09] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [189936 2013-06-27] ()
R2 npf; C:\Windows\System32\drivers\npf.sys [47632 2010-01-27] (CACE Technologies, Inc.)
R1 RapportCerberus_56758; C:\ProgramData\Trusteer\Rapport\store\exts\RapportCerberus\baseline\RapportCerberus64_56758.sys [589872 2013-08-15] ()
R1 RapportCerberus_56758; C:\ProgramData\Trusteer\Rapport\store\exts\RapportCerberus\baseline\RapportCerberus64_56758.sys [589872 2013-08-15] ()
R1 RapportEI64; C:\Program Files (x86)\Trusteer\Rapport\bin\x64\RapportEI64.sys [265872 2013-08-19] (Trusteer Ltd.)
R1 RapportEI64; C:\Program Files (x86)\Trusteer\Rapport\bin\x64\RapportEI64.sys [265872 2013-08-19] (Trusteer Ltd.)
R0 RapportKE64; C:\Windows\System32\Drivers\RapportKE64.sys [295696 2013-08-19] (Trusteer Ltd.)
R1 RapportPG64; C:\Program Files (x86)\Trusteer\Rapport\bin\x64\RapportPG64.sys [384432 2013-08-19] (Trusteer Ltd.)
R1 RapportPG64; C:\Program Files (x86)\Trusteer\Rapport\bin\x64\RapportPG64.sys [384432 2013-08-19] (Trusteer Ltd.)

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2013-09-12 14:12 - 2013-09-12 14:12 - 00000000 ____D C:\FRST
2013-09-11 22:39 - 2013-09-11 22:39 - 00003172 _____ C:\Windows\System32\Tasks\{394168D6-C77E-445A-8365-C736BB85A484}
2013-09-11 22:37 - 2013-09-11 23:05 - 00000000 ____D C:\Program Files (x86)\ZHPDiag
2013-09-11 22:37 - 2013-09-11 22:40 - 00000000 ____D C:\ZHP
2013-09-11 22:27 - 2013-09-11 22:27 - 00602112 _____ (OldTimer Tools) C:\Users\Ida\Desktop\OTL.exe
2013-09-11 22:21 - 2013-09-11 22:23 - 00003436 _____ C:\Windows\System32\Tasks\Browser Manager
2013-09-11 22:21 - 2013-09-11 22:21 - 00003284 _____ C:\Windows\System32\Tasks\BoxSoftwareUpdate
2013-09-11 22:21 - 2013-09-11 22:21 - 00000000 ____D C:\ProgramData\BoxUpdChk
2013-09-11 22:20 - 2013-09-12 14:10 - 00000000 ____D C:\Program Files (x86)\BrowseFox
2013-09-11 22:20 - 2013-09-12 14:03 - 00000912 _____ C:\Windows\Tasks\SoftwareUpdateTaskMachineUA.job
2013-09-11 22:20 - 2013-09-11 22:25 - 00000908 _____ C:\Windows\Tasks\SoftwareUpdateTaskMachineCore.job
2013-09-11 22:20 - 2013-09-11 22:20 - 00003908 _____ C:\Windows\System32\Tasks\SoftwareUpdateTaskMachineUA
2013-09-11 22:20 - 2013-09-11 22:20 - 00003656 _____ C:\Windows\System32\Tasks\SoftwareUpdateTaskMachineCore
2013-09-11 22:20 - 2013-09-11 22:20 - 00000000 ____D C:\Users\Ida\AppData\Local\Software
2013-09-11 22:20 - 2013-09-11 22:20 - 00000000 ____D C:\Program Files (x86)\Software
2013-09-10 22:04 - 2013-09-10 22:05 - 00000000 ____D C:\Users\Ida\AppData\Local\SearchProtect
2013-09-10 22:04 - 2013-09-10 22:05 - 00000000 ____D C:\Program Files (x86)\SearchProtect
2013-09-10 22:04 - 2013-09-10 22:04 - 00000875 _____ C:\Users\Ida\Desktop\BitTorrent.lnk
2013-09-10 22:04 - 2013-09-10 22:04 - 00000855 _____ C:\Users\Ida\AppData\Roaming\Microsoft\Windows\Start Menu\BitTorrent.lnk
2013-09-10 21:24 - 2013-09-10 22:21 - 00000000 ____D C:\Users\Invité\AppData\Roaming\SoftGrid Client
2013-09-10 21:24 - 2013-09-10 21:24 - 00000000 ____D C:\Users\Invité\AppData\Local\SoftGrid Client
2013-09-10 17:50 - 2013-09-10 17:50 - 00000000 ____D C:\Users\Ida\Downloads\Las Vegas Saison 2
2013-09-10 14:04 - 2013-09-10 14:20 - 744394752 ____R C:\Users\Ida\Downloads\la plus belle victoire FR.avi
2013-09-08 22:02 - 2013-09-08 22:10 - 00000000 ____D C:\Users\Ida\Downloads\Bande de Sauvages
2013-09-08 19:55 - 2013-09-08 19:55 - 00000000 ____D C:\Users\Ida\Downloads\[www.Cpasbien.com] Think.Like.a.Man.2012.FRENCH.BRRiP.XviD-AUTOPSiE
2013-09-08 19:54 - 2013-09-08 19:54 - 00117014 _____ C:\Users\Ida\Downloads\think-like-a-man-french-dvdrip-2012.torrent
2013-09-08 18:33 - 2013-09-08 18:45 - 301350236 _____ C:\Users\Ida\Downloads\Brothers Conflict 10 vostfr HD[Circus Fansub].mp4
2013-09-08 12:54 - 2013-09-12 14:03 - 00001002 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-09-08 12:54 - 2013-09-11 22:44 - 00003940 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2013-09-06 17:46 - 2013-09-06 17:50 - 00000000 ____D C:\Users\Ida\Downloads\Takers 2010.TRUEFRENCH.DVDRiP.XViD-SLiM
2013-09-06 17:45 - 2013-09-06 17:45 - 00000000 ____D C:\Users\Ida\Downloads\Les.Gamins.2013.FRENCH.BRRiP.XviD.AC3-Visual
2013-09-05 13:26 - 2013-09-05 13:35 - 00000000 ____D C:\Users\Ida\Downloads\Denis.2013.FRENCH.DVDRip.XviD-UTT
2013-09-03 13:12 - 2013-09-04 16:48 - 00000000 ____D C:\Users\Ida\Downloads\Empire.State.2013.FRENCH.DVDRip.XviD-TMB
2013-09-03 13:12 - 2013-09-03 13:14 - 00000000 ____D C:\Users\Ida\Downloads\World.War.Z.2013.UNRATED.CUT.FRENCH.BRRIP.XviD-ArRoWs
2013-09-03 13:10 - 2013-09-03 13:22 - 734169530 _____ C:\Users\Ida\Downloads\Epic.avi
2013-09-01 23:36 - 2013-09-01 23:37 - 00000000 ____D C:\Users\Ida\Downloads\[www.Cpasbien.me] De L Autre Cote Du Periph 2012 FRENCH BRRIP XviD-FUZION
2013-08-31 17:12 - 2013-08-31 17:19 - 332315251 _____ C:\Users\Ida\Downloads\Brothers Conflict 09 vostfr HD[Circus Fansub].mp4
2013-08-30 21:59 - 2013-08-30 22:01 - 00000000 ____D C:\Users\Ida\Downloads\Flight.2012.FRENCH.BDRip.XviD-AYMO
2013-08-30 13:54 - 2013-08-30 13:54 - 00051438 _____ C:\Users\Ida\Downloads\factures.zip
2013-08-29 22:53 - 2013-08-29 22:55 - 63347104 _____ (Microsoft Corporation) C:\Users\Ida\Downloads\PowerPointViewer.exe
2013-08-29 22:53 - 2013-08-29 22:55 - 25746416 _____ (Microsoft Corporation) C:\Users\Ida\Downloads\wordview_fr-fr.exe
2013-08-29 18:34 - 2013-09-02 13:35 - 00000000 ____D C:\Users\Ida\Downloads\Despicable.Me.2010.TRUEFRENCH.BDRiP.XviD-SLiM
2013-08-29 13:51 - 2013-08-29 13:51 - 00001073 _____ C:\Users\Public\Desktop\VLC media player.lnk
2013-08-27 23:02 - 2013-08-27 23:02 - 00000000 ____D C:\Users\Ida\Downloads\Mohamed Dubois 2013 FRENCH DVDRip XviD-UTT
2013-08-27 21:56 - 2013-08-27 22:16 - 369133985 _____ C:\Users\Ida\Downloads\Brothers Conflict 08 vostfr HD[Circus Fansub].mp4
2013-08-27 15:18 - 2013-08-27 23:15 - 00000000 ____D C:\Users\Ida\Downloads\[www.Cpasbien.me] Now.You.See.Me.2013.FRENCH.DVDRip.XviD-TMB
2013-08-25 21:28 - 2013-08-25 21:28 - 00000000 ____D C:\Users\Ida\Downloads\[www.Cpasbien.me] Jack.The.Giant.Slayer.2013 FRENCH.BRRip.XviD-TMB
2013-08-25 21:27 - 2013-08-25 21:28 - 00000000 ____D C:\Users\Ida\Downloads\[www.Cpasbien.me] Olympus.Has.Fallen.2013.FRENCH.BRRip.XviD.AC3-FUZION
2013-08-25 18:33 - 2013-08-25 18:50 - 630392622 _____ C:\Users\Ida\Downloads\[Kaerizaki-Fansub] Fairy Tail OAV 06 - Crossover Fairy Tail x Rave VOSTFR HD.mp4
2013-08-24 14:48 - 2013-01-21 14:30 - 00059524 ____N C:\Users\Ida\Desktop\388168_2891909493665_1138095526_33258744_1033367247_n.jpeg
2013-08-23 17:26 - 2013-08-23 18:11 - 734816876 ____R C:\Users\Ida\Downloads\Kick.Ass.TRUEFRENCH.REPACK.DVDRiP.XViD.avi
2013-08-22 12:01 - 2013-08-22 12:01 - 00000000 ____D C:\Users\Invité\AppData\Roaming\Google
2013-08-22 12:00 - 2013-08-22 12:00 - 00000000 ____D C:\Users\Invité\AppData\Roaming\vlc
2013-08-21 22:06 - 2013-08-21 22:22 - 00000000 ____D C:\Users\Ida\Downloads\Princesse Malgre Elle
2013-08-20 19:14 - 2013-08-20 19:51 - 733771776 _____ C:\Users\Ida\Downloads\Bride Wars TRUEFRENCH DVDRiP XViD-Bouboune By YATTA69.avi
2013-08-20 19:14 - 2013-08-20 19:16 - 00000000 ____D C:\Users\Ida\Downloads\[www.Cpasbien.me] Iron Man 3 2013 FRENCH BDRiP XviD-CARPEDIEM
2013-08-19 18:23 - 2013-08-19 18:30 - 00000000 ____D C:\Users\Ida\Downloads\palais royal !
2013-08-19 16:24 - 2013-09-03 21:39 - 00000000 ____D C:\Users\Ida\Downloads\Parker.2013.TRUEFRENCH.BDRiP.x264-NERD
2013-08-18 15:40 - 2013-08-18 15:45 - 345428612 _____ C:\Users\Ida\Downloads\Brothers Conflict 07 vostfr HD[Circus Fansub].mp4
2013-08-17 13:13 - 2013-08-17 13:16 - 00000000 ____D C:\Users\Ida\Downloads\[www.Cpasbien.me] Les.Profs.2013.FRENCH.DVDRip.XviD-ARTEFAC
2013-08-15 18:34 - 2013-08-16 18:04 - 2985911717 _____ C:\Users\Ida\Downloads\[Ao no Futsumashi]Ao no Exorcist The Movie[BDrip][1080P_AC3][Vostfr].mkv
2013-08-15 15:14 - 2013-08-15 15:14 - 00000000 ____D C:\Users\Invité\AppData\Local\TOSHIBA
2013-08-14 22:57 - 2013-07-26 07:13 - 02241024 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-08-14 22:57 - 2013-07-26 07:13 - 01365504 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-08-14 22:57 - 2013-07-26 07:13 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-08-14 22:57 - 2013-07-26 07:12 - 19239424 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-08-14 22:57 - 2013-07-26 07:12 - 15405056 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-08-14 22:57 - 2013-07-26 07:12 - 03958784 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-08-14 22:57 - 2013-07-26 07:12 - 02647040 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-08-14 22:57 - 2013-07-26 07:12 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-08-14 22:57 - 2013-07-26 07:12 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-08-14 22:57 - 2013-07-26 07:12 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-08-14 22:57 - 2013-07-26 07:12 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-08-14 22:57 - 2013-07-26 07:12 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-08-14 22:57 - 2013-07-26 07:12 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-08-14 22:57 - 2013-07-26 07:12 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-08-14 22:57 - 2013-07-26 05:35 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-08-14 22:57 - 2013-07-26 05:13 - 01767936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-08-14 22:57 - 2013-07-26 05:13 - 01141248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-08-14 22:57 - 2013-07-26 05:12 - 14329344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-08-14 22:57 - 2013-07-26 05:12 - 02877440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-08-14 22:57 - 2013-07-26 05:12 - 02048512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-08-14 22:57 - 2013-07-26 05:12 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-08-14 22:57 - 2013-07-26 05:12 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-08-14 22:57 - 2013-07-26 05:12 - 00391168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-08-14 22:57 - 2013-07-26 05:12 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-08-14 22:57 - 2013-07-26 05:12 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-08-14 22:57 - 2013-07-26 05:12 - 00039936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-08-14 22:57 - 2013-07-26 05:11 - 13761024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-08-14 22:57 - 2013-07-26 05:11 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-08-14 22:57 - 2013-07-26 04:49 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-08-14 22:57 - 2013-07-26 04:39 - 00089600 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-08-14 22:57 - 2013-07-26 03:59 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-08-14 22:49 - 2013-09-12 14:12 - 00000000 ____D C:\Windows\system32\MRT
2013-08-14 14:28 - 2013-08-14 14:29 - 00000000 ____D C:\Users\Ida\Downloads\[www.Cpasbien.me] Pain.and.Gain.2013.FRENCH.BRRIP.XviD-FUZION
2013-08-14 11:04 - 2013-07-09 07:52 - 00224256 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2013-08-14 11:04 - 2013-07-09 07:46 - 01472512 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2013-08-14 11:04 - 2013-07-09 07:46 - 00184320 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2013-08-14 11:04 - 2013-07-09 07:46 - 00139776 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
2013-08-14 11:04 - 2013-07-09 06:52 - 00175104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll
2013-08-14 11:04 - 2013-07-09 06:46 - 01166848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2013-08-14 11:04 - 2013-07-09 06:46 - 00140288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll
2013-08-14 11:04 - 2013-07-09 06:46 - 00103936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll
2013-08-14 11:03 - 2013-07-25 11:25 - 01888768 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL
2013-08-14 11:03 - 2013-07-25 10:57 - 01620992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVDECOD.DLL
2013-08-14 11:03 - 2013-07-19 03:58 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2013-08-14 11:03 - 2013-07-19 03:41 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2013-08-14 11:03 - 2013-07-09 08:03 - 05550528 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2013-08-14 11:03 - 2013-07-09 07:54 - 01732032 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2013-08-14 11:03 - 2013-07-09 07:53 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2013-08-14 11:03 - 2013-07-09 07:51 - 01217024 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2013-08-14 11:03 - 2013-07-09 07:03 - 03968960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2013-08-14 11:03 - 2013-07-09 07:03 - 03913664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2013-08-14 11:03 - 2013-07-09 06:53 - 01292192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2013-08-14 11:03 - 2013-07-09 06:52 - 00663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2013-08-14 11:03 - 2013-07-09 06:52 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2013-08-14 11:03 - 2013-07-09 04:49 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2013-08-14 11:03 - 2013-07-09 04:49 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2013-08-14 11:03 - 2013-07-09 04:49 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2013-08-14 11:03 - 2013-07-09 04:49 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2013-08-14 11:03 - 2013-07-06 08:03 - 01910208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2013-08-14 11:03 - 2013-06-15 06:32 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys
2013-08-14 10:59 - 2013-08-14 10:59 - 00000000 ____D C:\Users\Invité\AppData\Local\TOSHIBA_Corporation
2013-08-14 10:50 - 2013-08-14 10:50 - 00000000 ____D C:\Users\Invité\AppData\Roaming\Macromedia
2013-08-14 10:50 - 2013-08-14 10:50 - 00000000 ____D C:\Users\Invité\AppData\Local\Macromedia
2013-08-14 10:49 - 2013-08-14 10:49 - 00058016 _____ C:\Users\Invité\AppData\Local\GDIPFONTCACHEV1.DAT
2013-08-14 10:48 - 2013-08-22 12:01 - 00000000 ____D C:\Users\Invité\AppData\Local\Google

==================== One Month Modified Files and Folders =======

2013-09-12 14:13 - 2012-06-12 16:39 - 00000000 ____D C:\Users\Ida\AppData\Roaming\BitTorrent
2013-09-12 14:13 - 2012-02-21 13:38 - 01610693 _____ C:\Windows\WindowsUpdate.log
2013-09-12 14:12 - 2013-09-12 14:12 - 01949642 _____ (Farbar) C:\Users\Ida\Desktop\FRST64.exe
2013-09-12 14:12 - 2013-09-12 14:12 - 00000000 ____D C:\FRST
2013-09-12 14:12 - 2013-08-14 22:49 - 00000000 ____D C:\Windows\system32\MRT
2013-09-12 14:12 - 2012-06-18 13:06 - 79143768 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2013-09-12 14:10 - 2013-09-11 22:20 - 00000000 ____D C:\Program Files (x86)\BrowseFox
2013-09-12 14:06 - 2010-11-21 08:19 - 00719670 _____ C:\Windows\system32\perfh00C.dat
2013-09-12 14:06 - 2010-11-21 08:19 - 00136058 _____ C:\Windows\system32\perfc00C.dat
2013-09-12 14:06 - 2009-07-14 07:13 - 01580296 _____ C:\Windows\system32\PerfStringBackup.INI
2013-09-12 14:06 - 2009-07-14 06:45 - 00025120 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-09-12 14:06 - 2009-07-14 06:45 - 00025120 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-09-12 14:04 - 2011-07-26 11:47 - 00001082 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-09-12 14:03 - 2013-09-11 22:20 - 00000912 _____ C:\Windows\Tasks\SoftwareUpdateTaskMachineUA.job
2013-09-12 14:03 - 2013-09-08 12:54 - 00001002 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-09-12 14:03 - 2012-07-22 20:35 - 00000252 _____ C:\Windows\Tasks\HP Photo Creations Messager.job
2013-09-11 23:05 - 2013-09-11 22:37 - 00000000 ____D C:\Program Files (x86)\ZHPDiag
2013-09-11 22:44 - 2013-09-08 12:54 - 00003940 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2013-09-11 22:44 - 2012-06-12 17:46 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2013-09-11 22:44 - 2012-06-12 17:46 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2013-09-11 22:40 - 2013-09-11 22:37 - 00000000 ____D C:\ZHP
2013-09-11 22:39 - 2013-09-11 22:39 - 00003172 _____ C:\Windows\System32\Tasks\{394168D6-C77E-445A-8365-C736BB85A484}
2013-09-11 22:27 - 2013-09-11 22:27 - 00602112 _____ (OldTimer Tools) C:\Users\Ida\Desktop\OTL.exe
2013-09-11 22:25 - 2013-09-11 22:20 - 00000908 _____ C:\Windows\Tasks\SoftwareUpdateTaskMachineCore.job
2013-09-11 22:23 - 2013-09-11 22:21 - 00003436 _____ C:\Windows\System32\Tasks\Browser Manager
2013-09-11 22:23 - 2011-07-26 11:46 - 00001078 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-09-11 22:23 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-09-11 22:23 - 2009-07-14 06:51 - 00097285 _____ C:\Windows\setupact.log
2013-09-11 22:21 - 2013-09-11 22:21 - 00003284 _____ C:\Windows\System32\Tasks\BoxSoftwareUpdate
2013-09-11 22:21 - 2013-09-11 22:21 - 00000000 ____D C:\ProgramData\BoxUpdChk
2013-09-11 22:20 - 2013-09-11 22:20 - 00003908 _____ C:\Windows\System32\Tasks\SoftwareUpdateTaskMachineUA
2013-09-11 22:20 - 2013-09-11 22:20 - 00003656 _____ C:\Windows\System32\Tasks\SoftwareUpdateTaskMachineCore
2013-09-11 22:20 - 2013-09-11 22:20 - 00000000 ____D C:\Users\Ida\AppData\Local\Software
2013-09-11 22:20 - 2013-09-11 22:20 - 00000000 ____D C:\Program Files (x86)\Software
2013-09-11 13:47 - 2010-11-21 05:47 - 00046040 _____ C:\Windows\PFRO.log
2013-09-10 22:21 - 2013-09-10 21:24 - 00000000 ____D C:\Users\Invité\AppData\Roaming\SoftGrid Client
2013-09-10 22:21 - 2012-07-08 10:42 - 00000000 ____D C:\Users\Ida\AppData\Roaming\SoftGrid Client
2013-09-10 22:05 - 2013-09-10 22:04 - 00000000 ____D C:\Users\Ida\AppData\Local\SearchProtect
2013-09-10 22:05 - 2013-09-10 22:04 - 00000000 ____D C:\Program Files (x86)\SearchProtect
2013-09-10 22:04 - 2013-09-10 22:04 - 00000875 _____ C:\Users\Ida\Desktop\BitTorrent.lnk
2013-09-10 22:04 - 2013-09-10 22:04 - 00000855 _____ C:\Users\Ida\AppData\Roaming\Microsoft\Windows\Start Menu\BitTorrent.lnk
2013-09-10 21:35 - 2012-06-12 15:12 - 00000000 ____D C:\Users\Ida
2013-09-10 21:27 - 2013-04-12 20:45 - 00019396 _____ C:\Users\Ida\Controle qualité contradictoire.xlsx
2013-09-10 21:24 - 2013-09-10 21:24 - 00000000 ____D C:\Users\Invité\AppData\Local\SoftGrid Client
2013-09-10 21:23 - 2013-05-05 20:46 - 00000000 ____D C:\Users\Ida\Desktop\Divers
2013-09-10 17:50 - 2013-09-10 17:50 - 00000000 ____D C:\Users\Ida\Downloads\Las Vegas Saison 2
2013-09-10 17:46 - 2013-06-30 16:25 - 00353792 ___SH C:\Users\Ida\Downloads\Thumbs.db
2013-09-10 14:20 - 2013-09-10 14:04 - 744394752 ____R C:\Users\Ida\Downloads\la plus belle victoire FR.avi
2013-09-08 22:10 - 2013-09-08 22:02 - 00000000 ____D C:\Users\Ida\Downloads\Bande de Sauvages
2013-09-08 19:55 - 2013-09-08 19:55 - 00000000 ____D C:\Users\Ida\Downloads\[www.Cpasbien.com] Think.Like.a.Man.2012.FRENCH.BRRiP.XviD-AUTOPSiE
2013-09-08 19:54 - 2013-09-08 19:54 - 00117014 _____ C:\Users\Ida\Downloads\think-like-a-man-french-dvdrip-2012.torrent
2013-09-08 18:45 - 2013-09-08 18:33 - 301350236 _____ C:\Users\Ida\Downloads\Brothers Conflict 10 vostfr HD[Circus Fansub].mp4
2013-09-06 17:50 - 2013-09-06 17:46 - 00000000 ____D C:\Users\Ida\Downloads\Takers 2010.TRUEFRENCH.DVDRiP.XViD-SLiM
2013-09-06 17:45 - 2013-09-06 17:45 - 00000000 ____D C:\Users\Ida\Downloads\Les.Gamins.2013.FRENCH.BRRiP.XviD.AC3-Visual
2013-09-06 17:12 - 2011-07-26 11:47 - 00002190 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2013-09-05 13:35 - 2013-09-05 13:26 - 00000000 ____D C:\Users\Ida\Downloads\Denis.2013.FRENCH.DVDRip.XviD-UTT
2013-09-05 13:15 - 2012-07-07 18:15 - 00004182 _____ C:\Windows\System32\Tasks\avast! Emergency Update
2013-09-04 16:48 - 2013-09-03 13:12 - 00000000 ____D C:\Users\Ida\Downloads\Empire.State.2013.FRENCH.DVDRip.XviD-TMB
2013-09-03 21:39 - 2013-08-19 16:24 - 00000000 ____D C:\Users\Ida\Downloads\Parker.2013.TRUEFRENCH.BDRiP.x264-NERD
2013-09-03 13:22 - 2013-09-03 13:10 - 734169530 _____ C:\Users\Ida\Downloads\Epic.avi
2013-09-03 13:14 - 2013-09-03 13:12 - 00000000 ____D C:\Users\Ida\Downloads\World.War.Z.2013.UNRATED.CUT.FRENCH.BRRIP.XviD-ArRoWs
2013-09-02 13:35 - 2013-08-29 18:34 - 00000000 ____D C:\Users\Ida\Downloads\Despicable.Me.2010.TRUEFRENCH.BDRiP.XviD-SLiM
2013-09-01 23:37 - 2013-09-01 23:36 - 00000000 ____D C:\Users\Ida\Downloads\[www.Cpasbien.me] De L Autre Cote Du Periph 2012 FRENCH BRRIP XviD-FUZION
2013-08-31 17:19 - 2013-08-31 17:12 - 332315251 _____ C:\Users\Ida\Downloads\Brothers Conflict 09 vostfr HD[Circus Fansub].mp4
2013-08-30 22:01 - 2013-08-30 21:59 - 00000000 ____D C:\Users\Ida\Downloads\Flight.2012.FRENCH.BDRip.XviD-AYMO
2013-08-30 13:54 - 2013-08-30 13:54 - 00051438 _____ C:\Users\Ida\Downloads\factures.zip
2013-08-29 22:55 - 2013-08-29 22:53 - 63347104 _____ (Microsoft Corporation) C:\Users\Ida\Downloads\PowerPointViewer.exe
2013-08-29 22:55 - 2013-08-29 22:53 - 25746416 _____ (Microsoft Corporation) C:\Users\Ida\Downloads\wordview_fr-fr.exe
2013-08-29 13:51 - 2013-08-29 13:51 - 00001073 _____ C:\Users\Public\Desktop\VLC media player.lnk
2013-08-29 04:24 - 2012-06-28 08:31 - 00000000 ____D C:\Users\Ida\Assedic
2013-08-27 23:15 - 2013-08-27 15:18 - 00000000 ____D C:\Users\Ida\Downloads\[www.Cpasbien.me] Now.You.See.Me.2013.FRENCH.DVDRip.XviD-TMB
2013-08-27 23:02 - 2013-08-27 23:02 - 00000000 ____D C:\Users\Ida\Downloads\Mohamed Dubois 2013 FRENCH DVDRip XviD-UTT
2013-08-27 22:16 - 2013-08-27 21:56 - 369133985 _____ C:\Users\Ida\Downloads\Brothers Conflict 08 vostfr HD[Circus Fansub].mp4
2013-08-25 21:28 - 2013-08-25 21:28 - 00000000 ____D C:\Users\Ida\Downloads\[www.Cpasbien.me] Jack.The.Giant.Slayer.2013 FRENCH.BRRip.XviD-TMB
2013-08-25 21:28 - 2013-08-25 21:27 - 00000000 ____D C:\Users\Ida\Downloads\[www.Cpasbien.me] Olympus.Has.Fallen.2013.FRENCH.BRRip.XviD.AC3-FUZION
2013-08-25 18:50 - 2013-08-25 18:33 - 630392622 _____ C:\Users\Ida\Downloads\[Kaerizaki-Fansub] Fairy Tail OAV 06 - Crossover Fairy Tail x Rave VOSTFR HD.mp4
2013-08-24 17:16 - 2012-06-28 12:58 - 00082432 ___SH C:\Users\Ida\Thumbs.db
2013-08-23 18:11 - 2013-08-23 17:26 - 734816876 ____R C:\Users\Ida\Downloads\Kick.Ass.TRUEFRENCH.REPACK.DVDRiP.XViD.avi
2013-08-22 12:01 - 2013-08-22 12:01 - 00000000 ____D C:\Users\Invité\AppData\Roaming\Google
2013-08-22 12:01 - 2013-08-14 10:48 - 00000000 ____D C:\Users\Invité\AppData\Local\Google
2013-08-22 12:00 - 2013-08-22 12:00 - 00000000 ____D C:\Users\Invité\AppData\Roaming\vlc
2013-08-21 22:22 - 2013-08-21 22:06 - 00000000 ____D C:\Users\Ida\Downloads\Princesse Malgre Elle
2013-08-20 23:19 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\rescache
2013-08-20 19:51 - 2013-08-20 19:14 - 733771776 _____ C:\Users\Ida\Downloads\Bride Wars TRUEFRENCH DVDRiP XViD-Bouboune By YATTA69.avi
2013-08-20 19:16 - 2013-08-20 19:14 - 00000000 ____D C:\Users\Ida\Downloads\[www.Cpasbien.me] Iron Man 3 2013 FRENCH BDRiP XviD-CARPEDIEM
2013-08-19 18:30 - 2013-08-19 18:23 - 00000000 ____D C:\Users\Ida\Downloads\palais royal !
2013-08-19 12:12 - 2013-08-07 16:24 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2013-08-19 11:01 - 2013-04-01 21:06 - 00295696 _____ (Trusteer Ltd.) C:\Windows\system32\Drivers\RapportKE64.sys
2013-08-18 15:45 - 2013-08-18 15:40 - 345428612 _____ C:\Users\Ida\Downloads\Brothers Conflict 07 vostfr HD[Circus Fansub].mp4
2013-08-17 13:53 - 2013-08-07 16:24 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-08-17 13:16 - 2013-08-17 13:13 - 00000000 ____D C:\Users\Ida\Downloads\[www.Cpasbien.me] Les.Profs.2013.FRENCH.DVDRip.XviD-ARTEFAC
2013-08-16 18:04 - 2013-08-15 18:34 - 2985911717 _____ C:\Users\Ida\Downloads\[Ao no Futsumashi]Ao no Exorcist The Movie[BDrip][1080P_AC3][Vostfr].mkv
2013-08-15 19:07 - 2012-06-30 09:37 - 00000000 ____D C:\Users\Ida\Downloads\[www.Cpasbien.com] Matt Houston - Racines
2013-08-15 15:14 - 2013-08-15 15:14 - 00000000 ____D C:\Users\Invité\AppData\Local\TOSHIBA
2013-08-14 14:29 - 2013-08-14 14:28 - 00000000 ____D C:\Users\Ida\Downloads\[www.Cpasbien.me] Pain.and.Gain.2013.FRENCH.BRRIP.XviD-FUZION
2013-08-14 10:59 - 2013-08-14 10:59 - 00000000 ____D C:\Users\Invité\AppData\Local\TOSHIBA_Corporation
2013-08-14 10:50 - 2013-08-14 10:50 - 00000000 ____D C:\Users\Invité\AppData\Roaming\Macromedia
2013-08-14 10:50 - 2013-08-14 10:50 - 00000000 ____D C:\Users\Invité\AppData\Local\Macromedia
2013-08-14 10:49 - 2013-08-14 10:49 - 00058016 _____ C:\Users\Invité\AppData\Local\GDIPFONTCACHEV1.DAT
2013-08-13 15:29 - 2013-06-08 20:32 - 00000000 ____D C:\Users\Ida\Downloads\[www.Cpasbien.me] Infiltré.2013.FRENCH.DVDRip.XviD-TMB

Files to move or delete:
====================
C:\Users\Ida\AppData\Local\Temp\BoxoreInstaller.exe
C:\Users\Ida\AppData\Local\Temp\nsbC8A8.exe
C:\Users\Ida\AppData\Local\Temp\nsgBF54.exe
C:\Users\Ida\AppData\Local\Temp\nshD373.exe
C:\Users\Ida\AppData\Local\Temp\nsm4C94.exe
C:\Users\Ida\AppData\Local\Temp\nsm5397.exe
C:\Users\Ida\AppData\Local\Temp\nsw46B9.exe
C:\Users\Ida\AppData\Local\Temp\utt874E.tmp.exe
C:\Users\Ida\AppData\Local\Temp\uttE4A9.tmp.exe
C:\Users\Ida\AppData\Local\Temp\vlc-2.0.8-win32.exe

==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2013-09-02 14:12

==================== End Of Log ============================