Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 11-03-2015 Ran by Alain (administrator) on ALAIN-PC on 22-03-2015 21:33:50 Running from C:\Users\Alain\Desktop\tomrop Loaded Profiles: Alain (Available profiles: Alain) Platform: Microsoft Windows 7 Professionnel Service Pack 1 (X86) OS Language: Français (France) Internet Explorer Version 9 (Default browser: FF) Boot Mode: Normal Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processes (Whitelisted) ================= (If an entry is included in the fixlist, the process will be closed. The file will not be moved.) (Logitech Inc.) C:\Program Files\Common Files\LogiShrd\LVMVFM\UMVPFSrv.exe (Avast Software s.r.o.) C:\Program Files\AVAST Software\Avast\AvastSvc.exe (Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe (Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe (Intel Corporation) C:\Windows\System32\IPROSetMonitor.exe (Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\VS7DEBUG\MDM.EXE (Nero AG) C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe (Skype Technologies S.A.) C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe (Intel Corporation) C:\Windows\System32\hkcmd.exe (Intel Corporation) C:\Windows\System32\igfxpers.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe (Logitech Inc.) C:\Program Files\Logitech\LWS\Webcam Software\LWS.exe (Druide informatique inc.) C:\Program Files\Druide\Antidote 8\Programmes32\AgentAntidote.exe (Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe (VMware, Inc.) C:\Windows\System32\vmnat.exe (VMware, Inc.) C:\Program Files\VMware\VMware Workstation\vmware-tray.exe (CANON INC.) C:\Program Files\Canon\MyPrinter\BJMYPRT.EXE (CANON INC.) C:\Program Files\Canon\Solution Menu EX\CNSEMAIN.EXE (Avast Software s.r.o.) C:\Program Files\AVAST Software\Avast\avastui.exe (Nico Mak Computing) C:\Program Files\File Association Helper\FAHWindow.exe (Logitech Inc.) C:\Program Files\Logitech\Vid HD\Vid.exe (VMware, Inc.) C:\Windows\System32\vmnetdhcp.exe () C:\Windows\System32\C2MP\UpdateChecker.exe () C:\Windows\System32\C2MP\TrayMenu.exe (OpenOffice.org) C:\Program Files\OpenOffice.org 3\program\soffice.exe (OpenOffice.org) C:\Program Files\OpenOffice.org 3\program\soffice.bin () C:\Program Files\SkypeMate\SkypeMate.exe (VMware, Inc.) C:\Program Files\Common Files\VMware\USB\vmware-usbarbitrator.exe () C:\Program Files\VMware\VMware Workstation\vmware-hostd.exe (Avast Software) C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe (Avast Software s.r.o.) C:\Program Files\AVAST Software\Avast\avastui.exe (MAGIX AG) C:\Program Files\Common Files\MAGIX Services\Database\bin\FABS.exe (Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jucheck.exe (Adobe Systems Incorporated) C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\AAM Updates Notifier.exe (Druide informatique inc.) C:\Program Files\Druide\Antidote 8\Programmes32\Antidote.exe (Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe (TeamViewer GmbH) C:\Program Files\TeamViewer\TeamViewer_Service.exe (TeamViewer GmbH) C:\Program Files\TeamViewer\TeamViewer.exe (TeamViewer GmbH) C:\Program Files\TeamViewer\tv_w32.exe (TeamViewer GmbH) C:\Program Files\TeamViewer\TeamViewer_Desktop.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe ==================== Registry (Whitelisted) ================== (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.) HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [10025576 2011-01-18] (Realtek Semiconductor) HKLM\...\Run: [LWS] => C:\Program Files\Logitech\LWS\Webcam Software\LWS.exe [205336 2011-11-11] (Logitech Inc.) HKLM\...\Run: [AgentAntidote32] => C:\Program Files\Druide\Antidote 8\Programmes32\AgentAntidote.exe [1214496 2014-04-17] (Druide informatique inc.) HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [472984 2013-09-25] (Adobe Systems Incorporated) HKLM\...\Run: [SwitchBoard] => C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) HKLM\...\Run: [AdobeCS6ServiceManager] => C:\Program Files\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [1075296 2013-04-25] (Adobe Systems Incorporated) HKLM\...\Run: [APSDaemon] => C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [59240 2011-11-01] (Apple Inc.) HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [271744 2014-09-26] (Oracle Corporation) HKLM\...\Run: [Codec Settings UAC Manager] => C:\Windows\system32\C2MP\CodecUACManager.exe [60344 2014-12-20] () HKLM\...\Run: [FAHConsole] => C:\Program Files\File Association Helper\FAHConsole.exe [616632 2014-01-28] (Nico Mak Computing) HKLM\...\Run: [vmware-tray.exe] => C:\Program Files\VMware\VMware Workstation\vmware-tray.exe [112856 2014-06-12] (VMware, Inc.) HKLM\...\Run: [CanonMyPrinter] => C:\Program Files\Canon\MyPrinter\BJMyPrt.exe [2516296 2010-03-24] (CANON INC.) HKLM\...\Run: [CanonSolutionMenuEx] => C:\Program Files\Canon\Solution Menu EX\CNSEMAIN.EXE [1185112 2010-04-02] (CANON INC.) HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [5511352 2015-03-18] (Avast Software s.r.o.) HKU\S-1-5-19\Control Panel\Desktop\\SCRNSAVE.EXE -> HKU\S-1-5-20\Control Panel\Desktop\\SCRNSAVE.EXE -> HKU\S-1-5-21-3369598505-3917832440-3609852386-1000\...\Run: [Logitech Vid] => C:\Program Files\Logitech\Vid HD\Vid.exe [5915480 2010-10-29] (Logitech Inc.) HKU\S-1-5-21-3369598505-3917832440-3609852386-1000\...\Run: [AdobeBridge] => [X] HKU\S-1-5-21-3369598505-3917832440-3609852386-1000\...\Run: [Skype] => C:\Program Files\Skype\Phone\Skype.exe [31344744 2015-02-26] (Skype Technologies S.A.) HKU\S-1-5-21-3369598505-3917832440-3609852386-1000\...\Run: [Codec Pack Update Checker] => C:\Windows\system32\C2MP\UpdateChecker.exe [55992 2014-12-20] () HKU\S-1-5-21-3369598505-3917832440-3609852386-1000\...\MountPoints2: {9d4a845e-b826-11e1-a6d8-386077be67b0} - E:\LaunchU3.exe -a HKU\S-1-5-18\Control Panel\Desktop\\SCRNSAVE.EXE -> Startup: C:\Users\Alain\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 3.3.lnk ShortcutTarget: OpenOffice.org 3.3.lnk -> C:\Program Files\OpenOffice.org 3\program\quickstart.exe () Startup: C:\Users\Alain\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\SkypeMate.lnk ShortcutTarget: SkypeMate.lnk -> C:\Program Files\SkypeMate\SkypeMate.exe () Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\CodecPackTrayMenu.lnk ShortcutTarget: CodecPackTrayMenu.lnk -> C:\Windows\System32\C2MP\TrayMenu.exe () ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll (Avast Software s.r.o.) ==================== Internet (Whitelisted) ==================== (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.) HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/?pc=MSSE HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com HKU\S-1-5-21-3369598505-3917832440-3609852386-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://fr.msn.com/?ocid=iehp HKU\S-1-5-21-3369598505-3917832440-3609852386-1000\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.google.com/ie HKU\S-1-5-21-3369598505-3917832440-3609852386-1000\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/?pc=MSSE URLSearchHook: HKLM - Default Value = {FE69C007-C452-4d3e-86D2-1730DF8BC871} URLSearchHook: HKU\S-1-5-21-3369598505-3917832440-3609852386-1000 - Default Value = {FE69C007-C452-4d3e-86D2-1730DF8BC871} SearchScopes: HKLM -> {80c554b9-c7f8-4a21-9471-06d606da78a2} URL = http://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSSE SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll [2014-10-23] (Oracle Corporation) BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll [2014-10-23] (Oracle Corporation) Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - No File [] Handler: ms-itss - {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Program Files\Common Files\Microsoft Shared\Information Retrieval\MSITSS.DLL [2000-04-19] (Microsoft Corporation) Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2012-10-02] (Skype Technologies S.A.) Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll [2014-05-02] (Skype Technologies) Winsock: Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [121704] (Apple Inc.) Winsock: Catalog9 11 C:\Windows\system32\vsocklib.dll [63568] (VMware, Inc.) Winsock: Catalog9 12 C:\Windows\system32\vsocklib.dll [63568] (VMware, Inc.) Tcpip\Parameters: [DhcpNameServer] 192.168.1.254 FireFox: ======== FF ProfilePath: C:\Users\Alain\AppData\Roaming\Mozilla\Firefox\Profiles\o1x3c2ry.default FF Homepage: yahoo.fr FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_16_0_0_305.dll [2015-02-05] () FF Plugin: @canon.com/EPPEX -> C:\Program Files\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL [2010-04-14] (CANON INC.) FF Plugin: @Google.com/GoogleEarthPlugin -> C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll [2013-10-07] (Google) FF Plugin: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files\Google\Picasa3\npPicasa3.dll [2015-02-13] (Google, Inc.) FF Plugin: @java.com/DTPlugin,version=10.71.2 -> C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll [2014-10-23] (Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=10.71.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll [2014-10-23] (Oracle Corporation) FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-04] (Google Inc.) FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-04] (Google Inc.) FF Plugin: @videolan.org/vlc,version=2.1.3 -> C:\Program Files\VideoLAN\VLC\npvlc.dll No File FF Plugin: adobe.com/AdobeExManDetect -> C:\Program Files\Adobe\Adobe Extension Manager CS6\npAdobeExManDetectX86.dll [2013-07-14] (Adobe Systems) FF Extension: Module d'Antidote - C:\Users\Alain\AppData\Roaming\Mozilla\Firefox\Profiles\o1x3c2ry.default\Extensions\antidote7_win_firefox_103@druide.com [2014-05-10] FF Extension: Blur (Formerly DoNotTrackMe) - C:\Users\Alain\AppData\Roaming\Mozilla\Firefox\Profiles\o1x3c2ry.default\Extensions\donottrackplus@abine.com [2014-11-21] FF Extension: Skype Click to Call - C:\Program Files\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} [2015-03-22] Chrome: ======= CHR Profile: C:\Users\Alain\AppData\Local\Google\Chrome\User Data\Default CHR Extension: (Google Slides) - C:\Users\Alain\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-03-10] CHR Extension: (Google Docs) - C:\Users\Alain\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-03-10] CHR Extension: (Google Drive) - C:\Users\Alain\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-03-10] CHR Extension: (YouTube) - C:\Users\Alain\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-03-10] CHR Extension: (Google Search) - C:\Users\Alain\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-03-10] CHR Extension: (Google Sheets) - C:\Users\Alain\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-03-10] CHR Extension: (Chrome Hotword Shared Module) - C:\Users\Alain\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-03-10] CHR Extension: (Google Wallet) - C:\Users\Alain\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-03-10] CHR Extension: (Gmail) - C:\Users\Alain\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-03-10] CHR HKLM\...\Chrome\Extension: [mjcnhgdodmhnpmndnljbmafpgomahfal] - No Path Or update_url value CHR HKLM\...\Chrome\Extension: [pfcgjlglddicjopgimohdcbmabacamll] - No Path Or update_url value ========================== Services (Whitelisted) ================= (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.) R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [343336 2015-03-17] (Avast Software s.r.o.) R3 AvastVBoxSvc; C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe [3205216 2015-03-17] (Avast Software) R2 Fabs; C:\Program Files\Common Files\MAGIX Services\Database\bin\FABS.exe [1840128 2011-05-24] (MAGIX AG) [File not signed] S3 FirebirdServerMAGIXInstance; C:\Program Files\Common Files\MAGIX Services\Database\bin\fbserver.exe [2702848 2011-04-26] (MAGIX®) [File not signed] R2 Intel(R) PROSet Monitoring Service; C:\Windows\system32\IProsetMonitor.exe [109728 2010-12-06] (Intel Corporation) R2 Skype C2C Service; C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe [3064000 2012-10-02] (Skype Technologies S.A.) S3 SwitchBoard; C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [File not signed] R2 TeamViewer; C:\Program Files\TeamViewer\TeamViewer_Service.exe [5436176 2015-02-16] (TeamViewer GmbH) R2 UMVPFSrv; C:\Program Files\Common Files\logishrd\LVMVFM\UMVPFSrv.exe [450848 2012-01-17] (Logitech Inc.) R2 VMAuthdService; C:\Program Files\VMware\VMware Workstation\vmware-authd.exe [86744 2014-06-12] (VMware, Inc.) R2 VMnetDHCP; C:\Windows\system32\vmnetdhcp.exe [359128 2014-06-12] (VMware, Inc.) R2 VMUSBArbService; C:\Program Files\Common Files\VMware\USB\vmware-usbarbitrator.exe [722624 2014-02-27] (VMware, Inc.) R2 VMware NAT Service; C:\Windows\system32\vmnat.exe [437976 2014-06-12] (VMware, Inc.) R2 VMwareHostd; C:\Program Files\VMware\VMware Workstation\vmware-hostd.exe [14407384 2014-06-12] () S2 WinDefend; %ProgramFiles%\Windows Defender\mpsvc.dll [X] ==================== Drivers (Whitelisted) ==================== (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.) R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [24144 2015-03-17] () R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [73440 2015-03-17] (Avast Software s.r.o.) R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [81728 2015-03-17] (Avast Software s.r.o.) R0 aswRvrt; C:\Windows\system32\Drivers\aswRvrt.sys [49904 2015-03-17] () R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [788272 2015-03-17] (Avast Software s.r.o.) R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [427480 2015-03-17] (Avast Software s.r.o.) R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [106912 2015-03-17] (Avast Software s.r.o.) R0 aswVmm; C:\Windows\system32\Drivers\aswVmm.sys [206976 2015-03-17] () R3 CompFilter; C:\Windows\System32\DRIVERS\lvbusflt.sys [20704 2010-11-09] (Logitech Inc.) R3 e1cexpress; C:\Windows\System32\DRIVERS\e1c6232.sys [238760 2010-12-20] (Intel Corporation) R2 hcmon; C:\Windows\system32\drivers\hcmon.sys [43840 2014-02-27] (VMware, Inc.) R1 HssDRV6; C:\Windows\System32\DRIVERS\hssdrv6.sys [35560 2012-08-01] (AnchorFree Inc.) R3 MEI; C:\Windows\System32\DRIVERS\HECI.sys [41088 2010-10-19] (Intel Corporation) S3 taphss; C:\Windows\System32\DRIVERS\taphss.sys [33512 2012-08-01] (AnchorFree Inc) R2 VBoxAswDrv; C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [220240 2015-03-17] (Avast Software) R3 VMnetAdapter; C:\Windows\System32\DRIVERS\vmnetadapter.sys [17104 2014-06-12] (VMware, Inc.) R2 VMnetBridge; C:\Windows\System32\DRIVERS\vmnetbridge.sys [37456 2014-06-12] (VMware, Inc.) R2 VMnetuserif; C:\Windows\system32\drivers\vmnetuserif.sys [26968 2014-06-12] (VMware, Inc.) R2 VMparport; C:\Windows\system32\Drivers\VMparport.sys [24920 2014-06-12] (VMware, Inc.) S3 vmusb; C:\Windows\System32\DRIVERS\vmusb.sys [32320 2014-02-27] (VMware, Inc.) R2 vmx86; C:\Windows\system32\Drivers\vmx86.sys [66136 2014-06-12] (VMware, Inc.) R0 vsock; C:\Windows\System32\drivers\vsock.sys [63824 2013-10-08] (VMware, Inc.) R2 vstor2-mntapi20-shared; C:\Windows\System32\drivers\vstor2-mntapi20-shared.sys [23632 2013-02-22] (VMware, Inc.) U5 UnlockerDriver5; C:\Program Files\Unlocker\UnlockerDriver5.sys [4096 2010-07-04] () [File not signed] ==================== NetSvcs (Whitelisted) =================== (If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.) ==================== One Month Created Files and Folders ======== (If an entry is included in the fixlist, the file\folder will be moved.) 2015-03-22 21:30 - 2015-03-22 21:30 - 00001006 _____ () C:\Users\Alain\Desktop\QTranslate.lnk 2015-03-22 21:30 - 2015-03-22 21:30 - 00000000 ____D () C:\Users\Alain\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\QTranslate 2015-03-22 21:30 - 2015-03-22 21:30 - 00000000 ____D () C:\Program Files\QTranslate 2015-03-22 21:28 - 2015-03-22 21:28 - 00511594 _____ () C:\Users\Alain\Downloads\QTranslate.5.4.1.exe 2015-03-22 21:27 - 2015-03-22 21:33 - 28509232 _____ () C:\Users\Alain\Downloads\vlc-2.2.0-win32.exe 2015-03-22 16:11 - 2015-03-22 16:13 - 00000000 ____D () C:\Users\Alain\Desktop\Voyage 2014 2015-03-22 15:16 - 2015-03-22 15:16 - 00000000 ____D () C:\Users\Alain\AppData\Local\TeamViewer 2015-03-22 15:14 - 2015-03-22 15:14 - 00001018 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 10.lnk 2015-03-22 15:14 - 2015-03-22 15:14 - 00001006 _____ () C:\Users\Public\Desktop\TeamViewer 10.lnk 2015-03-22 15:12 - 2015-03-22 15:14 - 05323496 _____ (TeamViewer) C:\Users\Alain\Downloads\TeamViewerQS_fr.exe 2015-03-22 15:11 - 2015-03-22 15:15 - 08220544 _____ (TeamViewer) C:\Users\Alain\Downloads\TeamViewer_Host_Setup.exe 2015-03-22 13:19 - 2015-03-22 13:21 - 07825320 _____ (TeamViewer GmbH) C:\Users\Alain\Downloads\TeamViewer_Setup_fr(1).exe 2015-03-22 13:19 - 2015-03-22 13:20 - 07825320 _____ (TeamViewer GmbH) C:\Users\Alain\Downloads\TeamViewer_Setup_fr.exe 2015-03-22 04:59 - 2015-03-22 04:59 - 00000000 ____D () C:\Program Files\Mozilla Firefox 2015-03-20 13:10 - 2015-03-20 13:10 - 00104004 _____ () C:\Users\Alain\Documents\Etpoussivement.cdl 2015-03-20 13:05 - 2015-03-20 13:05 - 00063622 _____ () C:\Users\Alain\Documents\CouvPoussivement.cdl 2015-03-20 12:45 - 2015-03-20 12:45 - 00001001 _____ () C:\Users\Alain\Desktop\carnet.csv - Raccourci.lnk 2015-03-20 12:45 - 2015-03-20 12:45 - 00000894 _____ () C:\Users\Alain\Desktop\ZHPDiag.txt - Raccourci.lnk 2015-03-20 10:43 - 2015-03-20 10:43 - 00049632 ____N () C:\Users\Alain\Documents\Kit d'Impression CD 2000.tif 2015-03-20 01:12 - 2015-03-20 01:12 - 00000512 _____ () C:\PhysicalDisk0_MBR.bin 2015-03-20 01:06 - 2015-03-20 01:13 - 00000000 ____D () C:\Users\Alain\AppData\Roaming\ZHP 2015-03-20 01:06 - 2015-03-20 01:12 - 00000000 ____D () C:\Program Files\ZHPDiag 2015-03-20 01:06 - 2015-03-20 01:06 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ZHP 2015-03-19 23:10 - 2015-03-19 23:10 - 00462336 _____ (Dino Chiesa) C:\Windows\system32\Ionic.Zip.dll 2015-03-19 21:29 - 2015-03-22 21:33 - 00000000 ____D () C:\Users\Alain\Desktop\tomrop 2015-03-19 01:44 - 2015-03-22 21:33 - 00000000 ____D () C:\FRST 2015-03-19 00:17 - 2015-03-19 00:17 - 00001004 _____ () C:\Users\Alain\Desktop\fixlist.txt 2015-03-18 23:53 - 2015-03-18 23:56 - 20447072 _____ (Malwarebytes Corporation ) C:\Users\Alain\Downloads\mbam-setup-2.0.4.1028.exe 2015-03-18 23:11 - 2015-03-18 23:27 - 00000000 ____D () C:\AdwCleaner 2015-03-18 23:08 - 2015-03-18 23:08 - 02171392 _____ () C:\Users\Alain\Downloads\adwcleaner_4.112.exe 2015-03-18 22:39 - 2015-03-18 22:40 - 00000000 ____D () C:\Program Files\Unlocker 2015-03-18 22:39 - 2015-03-18 22:39 - 00000000 ____D () C:\Users\Alain\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Unlocker 2015-03-18 22:35 - 2015-03-18 22:35 - 01078591 _____ () C:\Users\Alain\Downloads\unlocker_1-9-2_fr_20237 [1].exe 2015-03-18 22:33 - 2015-03-18 22:33 - 00712312 _____ (Internet software ) C:\Users\Alain\Downloads\unlocker_1-9-2_fr_20237.exe 2015-03-18 10:18 - 2015-03-18 10:18 - 04246276 _____ () C:\Users\Alain\Documents\51 photos pour vous.eml 2015-03-18 05:51 - 2015-03-18 05:51 - 00000000 ____D () C:\Windows\system32\vbox 2015-03-17 05:43 - 2015-03-17 05:43 - 00291312 _____ (Avast Software s.r.o.) C:\Windows\system32\aswBoot.exe 2015-03-17 05:43 - 2015-03-17 05:43 - 00043112 _____ (Avast Software s.r.o.) C:\Windows\avastSS.scr 2015-03-16 17:20 - 2015-03-16 17:20 - 00002134 _____ () C:\Users\Public\Desktop\Avast Free Antivirus.lnk 2015-03-16 17:20 - 2015-03-16 17:20 - 00000000 ____D () C:\Users\Alain\AppData\Roaming\AVAST Software 2015-03-16 17:20 - 2015-03-16 17:20 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software 2015-03-16 17:16 - 2015-03-17 05:43 - 00788272 _____ (Avast Software s.r.o.) C:\Windows\system32\Drivers\aswSnx.sys 2015-03-16 17:16 - 2015-03-17 05:43 - 00427480 _____ (Avast Software s.r.o.) C:\Windows\system32\Drivers\aswSP.sys 2015-03-16 17:16 - 2015-03-17 05:43 - 00206976 _____ () C:\Windows\system32\Drivers\aswVmm.sys 2015-03-16 17:16 - 2015-03-17 05:43 - 00106912 _____ (Avast Software s.r.o.) C:\Windows\system32\Drivers\aswStm.sys 2015-03-16 17:16 - 2015-03-17 05:43 - 00081728 _____ (Avast Software s.r.o.) C:\Windows\system32\Drivers\aswRdr2.sys 2015-03-16 17:16 - 2015-03-17 05:43 - 00073440 _____ (Avast Software s.r.o.) C:\Windows\system32\Drivers\aswMonFlt.sys 2015-03-16 17:16 - 2015-03-17 05:43 - 00049904 _____ () C:\Windows\system32\Drivers\aswRvrt.sys 2015-03-16 17:16 - 2015-03-17 05:43 - 00024144 _____ () C:\Windows\system32\Drivers\aswHwid.sys 2015-03-16 17:16 - 2015-03-16 17:16 - 00000000 ____D () C:\Program Files\AVAST Software 2015-03-16 17:15 - 2015-03-16 17:16 - 00000000 ____D () C:\ProgramData\AVAST Software 2015-03-16 16:47 - 2015-03-16 16:48 - 00000000 ____D () C:\Program Files\Mozilla Thunderbird 2015-03-16 16:43 - 2015-03-16 16:43 - 00000000 ____D () C:\Users\Alain\Tracing 2015-03-15 07:36 - 2015-03-15 07:36 - 00001892 _____ () C:\Users\Alain\Desktop\SumatraPDF.lnk 2015-03-15 07:16 - 2015-03-15 07:16 - 00000000 ____D () C:\Users\Alain\AppData\Roaming\SumatraPDF 2015-03-15 07:14 - 2015-03-15 07:14 - 00001892 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SumatraPDF.lnk 2015-03-15 07:14 - 2015-03-15 07:14 - 00000000 ____D () C:\Program Files\SumatraPDF 2015-03-15 07:11 - 2015-03-15 07:12 - 04551776 _____ (Krzysztof Kowalczyk) C:\Users\Alain\Downloads\sumatra-pdf_3-0_fr_42884.exe 2015-03-13 16:48 - 2015-03-16 16:57 - 00001041 _____ () C:\Users\Alain\Desktop\LEGRATIET - Raccourci.lnk 2015-03-11 06:36 - 2015-03-11 06:36 - 00071006 _____ () C:\Users\Alain\Documents\Science et Technologie 881.wmf 2015-03-10 15:46 - 2015-03-20 15:23 - 00002140 _____ () C:\Users\Public\Desktop\Google Chrome.lnk 2015-03-10 15:46 - 2015-03-10 15:46 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome 2015-03-10 15:37 - 2015-03-10 15:37 - 00880208 _____ (Google Inc.) C:\Users\Alain\Downloads\ChromeSetup.exe 2015-03-08 15:26 - 2015-03-08 15:26 - 00282443 _____ () C:\Users\Alain\Documents\CouvFrfracassée.cdl 2015-03-08 15:24 - 2015-03-08 15:24 - 00275943 _____ () C:\Users\Alain\Documents\Frfracassée.cdl 2015-03-07 14:03 - 2015-03-07 14:03 - 00007761 _____ () C:\Users\Alain\Documents\Abonnements Le Point.htm 2015-03-07 14:03 - 2015-03-07 14:03 - 00000000 ____D () C:\Users\Alain\Documents\Abonnements Le Point_fichiers 2015-03-07 14:02 - 2015-03-07 14:02 - 00007770 _____ () C:\Users\Alain\Documents\Abonnements Le PointDER.htm 2015-03-07 14:02 - 2015-03-07 14:02 - 00000000 ____D () C:\Users\Alain\Documents\Abonnements Le PointDER_fichiers 2015-03-05 10:06 - 2015-03-05 10:06 - 00081622 _____ () C:\Users\Alain\Documents\Actualité - Le Point.fr.htm 2015-03-05 10:06 - 2015-03-05 10:06 - 00000000 ____D () C:\Users\Alain\Documents\Actualité - Le Point.fr_fichiers 2015-03-04 16:18 - 2015-03-04 16:18 - 00000000 ___HD () C:\CanoScan 2015-03-04 16:18 - 2015-03-04 16:18 - 00000000 ____D () C:\Users\Alain\Downloads\lide20lide30n670un676un1240uvst7031a_xpfr 2015-03-04 16:18 - 2003-09-17 17:36 - 00339968 _____ (CANON INC.) C:\Windows\system32\N124UFW.dll 2015-03-04 16:18 - 2002-09-12 01:07 - 00036864 _____ (CANON INC.) C:\Windows\system32\CNQU70.DLL 2015-03-04 16:18 - 2002-05-24 03:04 - 00389180 _____ (Canon) C:\Windows\system32\UCS32P.DLL 2015-03-04 16:16 - 2015-03-04 16:18 - 05536080 _____ () C:\Users\Alain\Downloads\lide20lide30n670un676un1240uvst7031a_xpfr-7.0.3.1a.2014.01.10.exe 2015-03-04 16:16 - 2015-03-04 16:17 - 05536080 _____ () C:\Users\Alain\Downloads\lide20lide30n670un676un1240uvst7031a_xpfr.exe 2015-02-22 14:27 - 2015-02-22 14:31 - 00000000 ____D () C:\Users\Alain\Documents\Cimetière marin-06 2015-02-22 07:09 - 2015-02-22 07:09 - 00000000 ____D () C:\Users\Alain\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\littre 2015-02-22 07:09 - 1997-09-24 00:33 - 00147824 _____ (Visual Components, Inc. For further product information call 913-599-6500) C:\Windows\system\VW16.OCX 2015-02-22 07:09 - 1996-12-17 00:00 - 00935632 _____ (Microsoft Corporation) C:\Windows\system\VB40016.DLL 2015-02-22 07:09 - 1996-12-17 00:00 - 00177824 _____ (Sheridan Software Systems, Inc.) C:\Windows\system\THREED16.OCX 2015-02-22 07:09 - 1996-12-17 00:00 - 00081104 _____ (Microsoft Corporation) C:\Windows\system\COMDLG16.OCX 2015-02-22 07:09 - 1996-12-17 00:00 - 00035200 _____ (Microsoft Corporation) C:\Windows\system\VAEN21.OLB 2015-02-22 07:09 - 1996-12-17 00:00 - 00022448 _____ (Microsoft Corporation) C:\Windows\system\VB4FR16.DLL 2015-02-22 07:09 - 1996-12-03 16:30 - 00241488 _____ (DBS GmbH, Bremen-Germany) C:\Windows\system\TX.DLL 2015-02-22 07:09 - 1996-12-03 16:30 - 00051232 _____ (DBS GmbH) C:\Windows\system\TX_RTF.DLL 2015-02-22 07:09 - 1996-12-03 16:30 - 00050240 _____ (DBS GmbH) C:\Windows\system\IC.DLL 2015-02-22 07:09 - 1996-12-03 16:30 - 00044592 _____ (DBS GmbH) C:\Windows\system\TXTOOLS.DLL 2015-02-22 07:09 - 1996-12-03 16:30 - 00029216 _____ (DBS GmbH, Bremen-Germany) C:\Windows\system\WNDTOOLS.DLL 2015-02-22 07:09 - 1996-12-03 16:30 - 00008720 _____ (DBS GmbH) C:\Windows\system\TX_BMP.FLT 2015-02-22 07:09 - 1996-12-03 16:30 - 00005072 _____ (DBS GmbH) C:\Windows\system\TX_WMF.FLT 2015-02-22 07:09 - 1996-12-03 16:30 - 00000147 _____ () C:\Windows\system\IC.INI 2015-02-22 07:09 - 1996-08-24 11:11 - 00027648 _____ (Microsoft Corporation) C:\Windows\system\CTL3DV2.DLL 2015-02-22 07:09 - 1995-08-15 01:00 - 00304640 _____ (Microsoft Corporation) C:\Windows\system\OLE2.DLL 2015-02-22 07:09 - 1995-08-15 01:00 - 00177824 _____ (Microsoft Corporation) C:\Windows\system\TYPELIB.DLL 2015-02-22 07:09 - 1995-08-15 01:00 - 00164960 _____ (Microsoft Corporation) C:\Windows\system\OLE2DISP.DLL 2015-02-22 07:09 - 1995-08-15 01:00 - 00157696 _____ () C:\Windows\system\STORAGE.DLL 2015-02-22 07:09 - 1995-08-15 01:00 - 00152976 _____ (Microsoft Corporation) C:\Windows\system\OLE2NLS.DLL 2015-02-22 07:09 - 1995-08-15 01:00 - 00109056 _____ (Microsoft Corporation) C:\Windows\system\COMPOBJ.DLL 2015-02-22 07:09 - 1995-08-15 01:00 - 00057328 _____ (Microsoft Corporation) C:\Windows\system\OLE2CONV.DLL 2015-02-22 07:09 - 1995-08-15 01:00 - 00051712 _____ (Microsoft Corporation) C:\Windows\system\OLE2PROX.DLL 2015-02-22 07:09 - 1995-08-15 01:00 - 00028113 _____ () C:\Windows\system\OLE2.REG 2015-02-22 07:09 - 1995-08-15 01:00 - 00012976 _____ (Microsoft Corporation) C:\Windows\system\SCP.DLL 2015-02-22 07:09 - 1995-07-25 18:00 - 00536048 _____ (Microsoft Corporation) C:\Windows\system\OC25.DLL 2015-02-22 07:09 - 1994-02-23 10:58 - 00055264 _____ (Crescent Software, Inc.) C:\Windows\system\QPRO200.DLL 2015-02-22 07:08 - 1997-01-10 18:39 - 00252928 _____ (InstallShield Corporation, Inc.) C:\Windows\UN16040C.EXE 2015-02-22 07:08 - 1995-07-13 19:43 - 00026768 _____ (Microsoft Corporation) C:\Windows\system\CTL3D.DLL ==================== One Month Modified Files and Folders ======= (If an entry is included in the fixlist, the file\folder will be moved.) 2015-03-22 21:23 - 2012-05-21 14:49 - 00000000 ____D () C:\Users\Alain\AppData\Roaming\Skype 2015-03-22 21:21 - 2012-05-24 16:01 - 00001058 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2015-03-22 21:02 - 2012-06-20 11:36 - 00001002 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job 2015-03-22 20:22 - 2012-09-24 08:27 - 00000000 ____D () C:\Program Files\TeamViewer 2015-03-22 20:14 - 2009-07-13 16:37 - 00000000 ____D () C:\Windows\system32\LogFiles 2015-03-22 16:24 - 2010-11-20 11:01 - 01675410 _____ () C:\Windows\system32\PerfStringBackup.INI 2015-03-22 16:21 - 2012-05-24 16:01 - 00001054 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2015-03-22 16:18 - 2015-02-05 11:58 - 00000000 ____D () C:\Users\Alain\Documents\Sas Catalane Gestion 2015-03-22 15:00 - 2015-02-07 06:32 - 00000000 ____D () C:\Users\Alain\AppData\Roaming\TeamViewer 2015-03-22 06:35 - 2013-10-12 07:39 - 01300737 ____N () C:\Windows\WindowsUpdate.log 2015-03-22 05:26 - 2012-12-03 17:02 - 00000000 ____D () C:\Program Files\Mozilla Maintenance Service 2015-03-22 04:48 - 2012-05-21 14:48 - 00000000 ____D () C:\Users\Alain\AppData\Local\Adobe 2015-03-22 04:45 - 2009-07-13 18:34 - 00031872 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2015-03-22 04:45 - 2009-07-13 18:34 - 00031872 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2015-03-22 04:38 - 2012-09-20 09:13 - 00000000 ____D () C:\ProgramData\VMware 2015-03-22 04:37 - 2009-07-13 18:53 - 00000006 ____H () C:\Windows\Tasks\SA.DAT 2015-03-21 20:09 - 2013-01-17 16:19 - 00024064 _____ () C:\Users\Alain\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini 2015-03-21 20:05 - 2012-06-06 09:15 - 00000000 ____D () C:\Users\Alain\AppData\Roaming\vlc 2015-03-21 17:37 - 2012-05-21 17:32 - 00000084 _____ () C:\Windows\robert.ini 2015-03-20 20:21 - 2015-02-13 08:38 - 00000000 ____D () C:\Users\Alain\AppData\Local\Canon Easy-PhotoPrint EX 2015-03-20 13:02 - 2015-02-05 12:10 - 00000000 ____D () C:\Users\Alain\Documents\Etiquettes 2015-03-20 11:15 - 2015-02-05 12:04 - 00000000 ____D () C:\Users\Alain\Documents\ChangAdrAnnie 2015-03-20 11:04 - 2015-02-07 07:14 - 00000000 ____D () C:\ProgramData\CanonIJPLM 2015-03-20 00:37 - 2015-02-04 18:00 - 00000000 ____D () C:\FICHIERS CRYPTES PERDUS 2015-03-19 03:01 - 2009-07-13 18:53 - 00032482 _____ () C:\Windows\Tasks\SCHEDLGU.TXT 2015-03-19 00:22 - 2014-11-26 11:49 - 00000000 ____D () C:\Program Files\Malwarebytes Anti-Malware 2015-03-18 22:59 - 2012-05-22 16:58 - 00000000 ____D () C:\Users\Alain\AppData\Local\Google 2015-03-18 22:45 - 2012-05-21 14:46 - 00000000 ____D () C:\Program Files\PDFCreator 2015-03-18 22:44 - 2014-01-07 06:04 - 00000000 ____D () C:\Users\Alain\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google+ Auto Backup 2015-03-18 11:15 - 2015-02-05 11:59 - 00000000 ____D () C:\Users\Alain\Documents\VISTAPRINT 2015-03-17 16:06 - 2015-02-05 12:04 - 00000000 ____D () C:\Users\Alain\Documents\BIFRONTALEMENT2PAMHLETS 2015-03-16 20:29 - 2015-02-04 16:35 - 00000000 ____D () C:\Users\Alain\AppData\Local\VMware 2015-03-16 20:29 - 2012-09-24 08:23 - 00000000 ____D () C:\Users\Alain\AppData\Roaming\VMware 2015-03-16 20:29 - 2012-09-20 09:42 - 00000000 ____D () C:\Users\Alain\LEGRATIET 2015-03-16 17:15 - 2014-09-06 21:08 - 00001912 _____ () C:\Windows\epplauncher.mif 2015-03-16 16:43 - 2012-05-21 13:37 - 00000000 ____D () C:\Users\Alain 2015-03-16 16:41 - 2012-05-21 17:27 - 00000000 ___RD () C:\Program Files\Skype 2015-03-16 16:41 - 2012-05-21 14:49 - 00000000 ____D () C:\ProgramData\Skype 2015-03-15 07:10 - 2013-04-11 14:01 - 00000000 ____D () C:\Program Files\Common Files\Adobe 2015-03-15 07:10 - 2012-05-21 14:48 - 00000000 ____D () C:\ProgramData\Adobe 2015-03-14 15:01 - 2014-12-27 21:05 - 00000405 _____ () C:\Windows\system32\debug.log 2015-03-12 14:44 - 2012-05-24 16:07 - 00000067 _____ () C:\Windows\Littre.ini 2015-03-11 06:31 - 2012-05-22 20:04 - 00000040 _____ () C:\Windows\NAVIGMA.INI 2015-03-10 15:46 - 2012-05-22 16:58 - 00000000 ____D () C:\Program Files\Google 2015-03-07 13:47 - 2015-02-05 11:58 - 00000000 ____D () C:\Users\Alain\Documents\PREFON 2015-03-05 12:14 - 2015-02-05 12:10 - 00000000 ____D () C:\Users\Alain\Documents\EtiquetDossiers 2015-03-04 16:21 - 2009-07-13 18:52 - 00000000 ____D () C:\Windows\twain_32 2015-03-03 03:16 - 2014-09-06 21:27 - 00246920 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe 2015-03-01 18:03 - 2015-02-05 12:14 - 00000000 ____D () C:\Users\Alain\Documents\ImpotNRésid 2015-02-22 07:09 - 2012-05-24 16:16 - 00000000 ____D () C:\littre 2015-02-22 07:09 - 2009-07-13 16:37 - 00000000 ____D () C:\Windows\system 2015-02-21 11:42 - 2015-02-05 12:04 - 00000000 ____D () C:\Users\Alain\Documents\CNP ==================== Files in the root of some directories ======= 2012-06-24 12:10 - 2014-09-24 14:30 - 0000148 _____ () C:\Users\Alain\AppData\Roaming\default.rss 2013-10-01 14:16 - 2013-10-01 14:18 - 145672688 _____ () C:\Users\Alain\AppData\Local\ACCCx2_1_2_232.zip.aamdownload 2013-10-01 14:16 - 2013-10-01 14:18 - 0001732 _____ () C:\Users\Alain\AppData\Local\ACCCx2_1_2_232.zip.aamdownload.aamd 2013-01-17 16:19 - 2015-03-21 20:09 - 0024064 _____ () C:\Users\Alain\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini 2008-02-05 13:28 - 2008-02-05 13:28 - 0000112 _____ () C:\Users\Alain\AppData\Local\setup.TXT.kqduzca 2012-06-25 22:24 - 2012-08-22 16:05 - 0000088 __RSH () C:\ProgramData\3146925A8B.sys 2015-02-04 05:12 - 2015-02-04 07:21 - 0296005 _____ () C:\ProgramData\ixxcwbf.html 2012-06-25 22:24 - 2012-08-22 16:05 - 0002516 ___SH () C:\ProgramData\KGyGaAvL.sys 2014-02-28 20:40 - 2014-02-28 20:40 - 0000128 _____ () C:\ProgramData\Microsoft.SqlServer.Compact.400.32.bc ==================== Bamital & volsnap Check ================= (There is no automatic fix for files that do not pass verification.) C:\Windows\explorer.exe => File is digitally signed C:\Windows\system32\winlogon.exe => File is digitally signed C:\Windows\system32\wininit.exe => File is digitally signed C:\Windows\system32\svchost.exe => File is digitally signed C:\Windows\system32\services.exe => File is digitally signed C:\Windows\system32\User32.dll => File is digitally signed C:\Windows\system32\userinit.exe => File is digitally signed C:\Windows\system32\rpcss.dll => File is digitally signed C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed LastRegBack: 2015-03-15 05:47 ==================== End Of Log ============================