cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 22-04-2014
Ran by Emilie (administrator) on EMILIE-HP on 22-04-2014 21:24:54
Running from C:\Users\Emilie\Desktop
Windows 7 Home Premium Service Pack 1 (X64) OS Language: French Standard
Internet Explorer Version 11
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/81/
Download link for 64-Bit Version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(AMD) C:\Windows\system32\atiesrxx.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\STacSV64.exe
(AMD) C:\Windows\system32\atieclxx.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(SEIKO EPSON CORPORATION) C:\Program Files (x86)\Common Files\EPSON\EBAPI\eEBSVC.exe
(Advanced Micro Devices) C:\Program Files\ATI Technologies\ATI.ACE\Reservation Manager\AMD Reservation Manager.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(SEIKO EPSON CORPORATION) C:\ProgramData\EPSON\EPW!3 SSRP\E_S40STB.EXE
(SEIKO EPSON CORPORATION) C:\ProgramData\EPSON\EPW!3 SSRP\E_S40RPB.EXE
(EasyBits Software AS) C:\Windows\SysWOW64\ezSharedSvcHost.exe
(Hewlett-Packard Company) C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
(Realsil Microelectronics Inc.) C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
() C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
(TomTom) C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Advanced Micro Devices, Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
(Microsoft Corporation) C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
(Panda Security) C:\Program Files (x86)\Panda USB Vaccine\USBVaccine.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\sttray64.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(TomTom) C:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe
(CyberLink) C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe
(OLYMPUS IMAGING CORP.) C:\Program Files (x86)\Olympus\DeviceDetector\DevDtct2.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP On Screen Display\HPOSD.exe
(SEIKO EPSON CORPORATION) C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe
(RealNetworks, Inc.) C:\Program Files (x86)\Real\RealPlayer\Update\realsched.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Easybits) C:\ProgramData\Easybits Magic Desktop for HP\mdhpSUN.exe
(OpenOffice.org) C:\Program Files (x86)\OpenOffice.org 3\program\soffice.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(OpenOffice.org) C:\Program Files (x86)\OpenOffice.org 3\program\soffice.bin
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\IEXPLORE.EXE
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Microsoft Corporation) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
(Hewlett-Packard Development Company L.P.) C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\hpConnectionManager.exe
(Hewlett-Packard Development Company L.P.) C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\hpCMSrv.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2799912 2013-08-10] (Synaptics Incorporated)
HKLM\...\Run: [SysTrayApp] => C:\Program Files\IDT\WDM\sttray64.exe [525312 2010-12-17] (IDT, Inc.)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [336384 2011-02-28] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [Adobe Reader Speed Launcher] => C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe [40312 2013-09-03] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Easybits Recovery] => C:\Program Files (x86)\EasyBits For Kids\ezRecover.exe [61112 2011-03-16] (EasyBits Software AS)
HKLM-x32\...\Run: [HPOSD] => C:\Program Files (x86)\Hewlett-Packard\HP On Screen Display\HPOSD.exe [379960 2011-08-19] (Hewlett-Packard Development Company, L.P.)
HKLM-x32\...\Run: [HPConnectionManager] => C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\HPCMDelayStart.exe [103992 2011-09-13] (Hewlett-Packard Development Company L.P.)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [43848 2014-02-12] (Apple Inc.)
HKLM-x32\...\Run: [EEventManager] => C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [673616 2009-04-07] (SEIKO EPSON CORPORATION)
HKLM-x32\...\Run: [HP Quick Launch] => C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe [578944 2012-03-05] (Hewlett-Packard Development Company, L.P.)
HKLM-x32\...\Run: [TkBellExe] => C:\Program Files (x86)\Real\RealPlayer\update\realsched.exe [295512 2013-09-11] (RealNetworks, Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM-x32\...\Run: [Magic Desktop for HP notification] => C:\ProgramData\Easybits Magic Desktop for HP\mdhpSUN.exe [1243656 2013-12-11] (Easybits)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [3873704 2014-04-21] (AVAST Software)
HKLM\...\RunOnce: [NCPluginUpdater] - "C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\NCPluginUpdater.exe" Update [21720 2014-04-08] (Hewlett-Packard)
HKLM\...\Policies\Explorer: [EnableShellExecuteHooks] 0
HKU\S-1-5-21-4087596911-3394680163-3784164461-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [20584608 2013-11-14] (Skype Technologies S.A.)
HKU\S-1-5-21-4087596911-3394680163-3784164461-1001\...\Run: [TomTomHOME.exe] => C:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe [247728 2012-01-23] (TomTom)
HKU\S-1-5-21-4087596911-3394680163-3784164461-1001\...\Run: [MyTomTomSA.exe] => "C:\Program Files (x86)\MyTomTom 3\MyTomTomSA.exe"
HKU\S-1-5-21-4087596911-3394680163-3784164461-1001\...\Run: [EPSON SX600FW Series] => C:\Windows\system32\spool\DRIVERS\x64\3\E_IATIEKE.EXE [221696 2008-03-05] (SEIKO EPSON CORPORATION)
HKU\S-1-5-21-4087596911-3394680163-3784164461-1001\...\Run: [GoogleChromeAutoLaunch_0B63B58B74566B4242D37FD4EF6E08BF] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [841032 2014-04-02] (Google Inc.)
Startup: C:\Users\Emilie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 3.3.lnk
ShortcutTarget: OpenOffice.org 3.3.lnk -> C:\Program Files (x86)\OpenOffice.org 3\program\quickstart.exe ()

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://fr.msn.com/
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0xC0EE1A1AAB5DCF01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = fr-FR
HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = https://www.google.com/
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Bar = https://www.google.com/
SearchScopes: HKLM - DefaultScope value is missing.
SearchScopes: HKLM - {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = http://rover.ebay.com/rover/1/709-111075-12437-3/4?mpre=http://shop.ebay.com/?_nkw={searchTerms}
SearchScopes: HKCU - DefaultScope {6E98001B-D11E-444A-B5FE-16D952BE5201} URL = https://www.google.com/search?q={searchTerms}
SearchScopes: HKCU - {6E98001B-D11E-444A-B5FE-16D952BE5201} URL = https://www.google.com/search?q={searchTerms}
BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
BHO: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll (Hewlett-Packard)
BHO-x32: RealNetworks Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll (RealDownloader)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO-x32: Programme d'aide de l'Assistant de connexion Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll (Hewlett-Packard)
DPF: HKLM-x32 {02BCC737-B171-4746-94C9-0D8A0B2C0089} http://office.microsoft.com/_layouts/ClientBin/ieawsdc32.cab
DPF: HKLM-x32 {0972B098-DEE9-4279-AC7E-4BAAA029102D} http://assets.photobox.com/assets/aurigma/ImageUploader5.cab?20110926150838
DPF: HKLM-x32 {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} http://www.ma-config.com/plugins/MaConfig_5_2_2_0.cab
DPF: HKLM-x32 {8A5BE387-D09A-4DFA-A56B-DCB89BD11468} http://sdb3d.leroymerlin.fr/leroymerlin_sdb_planner/Core/Player/2020PlayerAX_WEB_Win32.cab
DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
ShellExecuteHooks-x32: EasyBits ShellExecute Hook - {E54729E8-BB3D-4270-9D49-7389EA579090} - C:\Windows\SysWOW64\ezUPBHook.dll [52920 2011-05-22] (EasyBits Software Corp.)
Winsock: Catalog9-x64 01 C:\Windows\system32\SecureAssist64.dll [338120] (SecureAssist)
Winsock: Catalog9-x64 02 C:\Windows\system32\SecureAssist64.dll [338120] (SecureAssist)
Winsock: Catalog9-x64 03 C:\Windows\system32\SecureAssist64.dll [338120] (SecureAssist)
Winsock: Catalog9-x64 04 C:\Windows\system32\SecureAssist64.dll [338120] (SecureAssist)
Winsock: Catalog9-x64 15 C:\Windows\system32\SecureAssist64.dll [338120] (SecureAssist)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.254

FireFox:
========
FF ProfilePath: C:\Users\Emilie\AppData\Roaming\Mozilla\Firefox\Profiles\0fxh9lc7.default
FF Homepage: hxxp://www.google.fr
FF SelectedSearchEngine: google
FF DefaultSearchEngine: google
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_12_0_0_77.dll ()
FF Plugin: @java.com/JavaPlugin - C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_77.dll ()
FF Plugin-x32: @adobe.com/ShockwavePlayer - C:\Windows\system32\Adobe\Director\np32dsw.dll No File
FF Plugin-x32: @Apple.com/iTunes,version=1.0 - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @Google.com/GoogleEarthPlugin - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 - C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll (Google, Inc.)
FF Plugin-x32: @java.com/DTPlugin,version=10.40.2 - C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.40.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @ma-config.com/HardwareDetection - C:\Program Files (x86)\ma-config.com\nphardwaredetection.dll (Cybelsoft)
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3555.0308 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @real.com/nppl3260;version=16.0.3.51 - C:\Program Files (x86)\Real\RealPlayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprndlchromebrowserrecordext;version=1.3.3 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlchromebrowserrecordext.dll (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprndlhtml5videoshim;version=1.3.3 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprndlpepperflashvideoshim;version=1.3.3 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlpepperflashvideoshim.dll (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprpplugin;version=16.0.3.51 - C:\Program Files (x86)\Real\RealPlayer\Netscape6\nprpplugin.dll (RealPlayer)
FF Plugin-x32: @realnetworks.com/npdlplugin;version=1 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\npdlplugin.dll (RealDownloader)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.23.9\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.23.9\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 - C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll ()
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Extension: No Name - C:\Users\Emilie\AppData\Roaming\Mozilla\Firefox\Profiles\0fxh9lc7.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d} [2013-09-05]
FF HKLM-x32\...\Firefox\Extensions: [{DF153AFF-6948-45d7-AC98-4FC4AF8A08E2}] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext\
FF Extension: RealDownloader - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext\ []
FF HKLM-x32\...\Firefox\Extensions: [{ABDE892B-13A8-4d1b-88E6-365A6E755758}] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext
FF Extension: RealDownloader - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext [2013-09-11]
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2014-04-21]
FF StartMenuInternet: FIREFOX.EXE - C:\Program Files\Mozilla Firefox\Firefox.exe

Chrome:
=======
CHR Extension: (Google Docs) - C:\Users\Emilie\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2013-09-17]
CHR Extension: (Google Drive) - C:\Users\Emilie\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2013-09-17]
CHR Extension: (YouTube) - C:\Users\Emilie\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2013-09-17]
CHR Extension: (RealDownloader) - C:\Users\Emilie\AppData\Local\Google\Chrome\User Data\Default\Extensions\idhngdhcfkoamngbedgpaokgjbnpdiji [2013-09-17]
CHR Extension: (Google Wallet) - C:\Users\Emilie\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-09-17]
CHR Extension: (Gmail) - C:\Users\Emilie\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2013-09-17]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2014-04-21]
CHR HKLM-x32\...\Chrome\Extension: [idhngdhcfkoamngbedgpaokgjbnpdiji] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Chrome\Ext\realdownloader.crx [2013-08-14]
CHR StartMenuInternet: Google Chrome - C:\Program Files\Google\Chrome\Application\chrome.exe

==================== Services (Whitelisted) =================

R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [354304 2011-02-28] (Advanced Micro Devices, Inc.)
R2 AMD Reservation Manager; C:\Program Files\ATI Technologies\ATI.ACE\Reservation Manager\AMD Reservation Manager.exe [194496 2010-06-17] (Advanced Micro Devices)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-04-21] (AVAST Software)
S3 maconfservice; C:\Program Files (x86)\ma-config.com\maconfservice.exe [311928 2011-11-25] (CybelSoft)
R2 RealNetworks Downloader Resolver Service; C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe [39056 2013-08-14] ()

==================== Drivers (Whitelisted) ====================

R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [29208 2014-04-21] ()
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [79184 2014-04-21] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93568 2014-04-21] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2014-04-21] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1039096 2014-04-21] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [423240 2014-04-21] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [85328 2014-04-21] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [208416 2014-04-21] ()
S3 driverhardwarev2x64; C:\Program Files (x86)\ma-config.com\Drivers\driverhardwarev2x64.sys [16640 2011-07-21] (CybelSoft)
S3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [119512 2014-04-21] (Malwarebytes Corporation)
S3 VNUSB; C:\Windows\System32\Drivers\VNUSB.sys [22528 2009-09-29] (OLYMPUS IMAGING CORP.)

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-04-22 21:24 - 2014-04-22 21:25 - 00020812 _____ () C:\Users\Emilie\Desktop\FRST.txt
2014-04-22 21:24 - 2014-04-22 21:24 - 02061312 _____ (Farbar) C:\Users\Emilie\Desktop\FRST64.exe
2014-04-22 21:24 - 2014-04-22 21:24 - 00000000 ____D () C:\FRST
2014-04-22 01:25 - 2014-04-22 01:25 - 00035201 _____ () C:\Users\Emilie\Desktop\ZHPDiag.txt
2014-04-22 00:07 - 2014-04-22 01:14 - 00000000 ____D () C:\Shortcut_Module
2014-04-21 23:58 - 2014-04-21 23:58 - 00000000 ____D () C:\Users\Emilie\AppData\Roaming\AVAST Software
2014-04-21 23:57 - 2014-04-22 21:22 - 00004182 _____ () C:\Windows\System32\Tasks\avast! Emergency Update
2014-04-21 23:57 - 2014-04-21 23:57 - 00001926 _____ () C:\Users\Public\Desktop\avast! Free Antivirus.lnk
2014-04-21 23:56 - 2014-04-21 23:56 - 01039096 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2014-04-21 23:56 - 2014-04-21 23:56 - 00423240 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2014-04-21 23:56 - 2014-04-21 23:56 - 00334648 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2014-04-21 23:56 - 2014-04-21 23:56 - 00208416 _____ () C:\Windows\system32\Drivers\aswVmm.sys
2014-04-21 23:56 - 2014-04-21 23:56 - 00093568 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2014-04-21 23:56 - 2014-04-21 23:56 - 00085328 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2014-04-21 23:56 - 2014-04-21 23:56 - 00079184 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2014-04-21 23:56 - 2014-04-21 23:56 - 00065776 _____ () C:\Windows\system32\Drivers\aswRvrt.sys
2014-04-21 23:56 - 2014-04-21 23:56 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr
2014-04-21 23:56 - 2014-04-21 23:56 - 00029208 _____ () C:\Windows\system32\Drivers\aswHwid.sys
2014-04-21 23:55 - 2014-04-21 23:55 - 00000000 ____D () C:\Program Files\AVAST Software
2014-04-21 23:53 - 2014-04-21 23:54 - 88882192 _____ (AVAST Software) C:\Users\Emilie\avast_free_antivirus_setup.exe
2014-04-21 23:42 - 2014-04-21 23:42 - 00000000 ____D () C:\_OTL
2014-04-21 18:37 - 2014-04-21 18:37 - 00000512 _____ () C:\PhysicalMBR.bin
2014-04-21 18:28 - 2014-04-21 18:24 - 00602112 _____ (OldTimer Tools) C:\Users\Emilie\Desktop\OTL.exe
2014-04-21 15:59 - 2014-04-21 15:59 - 00000512 _____ () C:\PhysicalDisk0_MBR.bin
2014-04-21 13:57 - 2014-04-22 01:23 - 00000000 ____D () C:\Users\Emilie\AppData\Roaming\ZHP
2014-04-21 13:57 - 2014-04-22 01:22 - 00001951 _____ () C:\Users\Emilie\Desktop\ZHPFix.lnk
2014-04-21 13:57 - 2014-04-22 01:22 - 00001824 _____ () C:\Users\Emilie\Desktop\ZHPDiag.lnk
2014-04-21 13:57 - 2014-04-22 01:22 - 00000000 ____D () C:\Program Files (x86)\ZHPDiag
2014-04-20 11:45 - 2014-04-21 23:52 - 00119512 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-04-20 11:45 - 2014-04-20 11:45 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-04-20 11:45 - 2014-04-03 09:51 - 00088280 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-04-20 11:45 - 2014-04-03 09:51 - 00063192 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2014-04-16 15:20 - 2014-04-16 15:20 - 00000000 ____D () C:\Users\Emilie\Downloads\La lengua de las Mariposas.(Spanish).(XviD.DVDRiP).www.lokotorrents.com
2014-04-16 14:47 - 2014-04-16 14:47 - 00001656 _____ () C:\Windows\SysWOW64\${LOGFILE}
2014-04-16 14:35 - 2014-03-12 16:00 - 00338120 _____ (SecureAssist) C:\Windows\system32\SecureAssist64.dll
2014-04-10 14:15 - 2014-03-31 03:16 - 23134208 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-04-10 14:15 - 2014-03-31 03:13 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-04-10 14:15 - 2014-03-31 02:13 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-04-10 14:15 - 2014-03-31 01:57 - 17073152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-04-10 14:11 - 2014-02-04 04:35 - 00274880 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msiscsi.sys
2014-04-10 14:11 - 2014-02-04 04:35 - 00190912 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storport.sys
2014-04-10 14:11 - 2014-02-04 04:35 - 00027584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Diskdump.sys
2014-04-10 14:11 - 2014-02-04 04:28 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\iologmsg.dll
2014-04-10 14:11 - 2014-02-04 04:00 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iologmsg.dll
2014-04-10 14:10 - 2014-03-04 11:44 - 01163264 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2014-04-10 14:10 - 2014-03-04 11:44 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2014-04-10 14:10 - 2014-03-04 11:44 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2014-04-10 14:10 - 2014-03-04 11:44 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2014-04-10 14:10 - 2014-03-04 11:44 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2014-04-10 14:10 - 2014-03-04 11:17 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2014-04-10 14:10 - 2014-03-04 11:16 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2014-04-10 14:10 - 2014-03-04 11:16 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2014-04-10 14:10 - 2014-03-04 11:16 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2014-04-10 14:10 - 2014-03-04 10:09 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2014-04-10 14:10 - 2014-03-04 10:09 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2014-04-10 14:10 - 2014-01-24 04:37 - 01684928 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2014-04-07 13:10 - 2014-04-07 13:10 - 00001743 _____ () C:\Users\Public\Desktop\iTunes.lnk
2014-04-07 13:09 - 2014-04-07 13:10 - 00000000 ____D () C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2014-04-07 13:09 - 2014-04-07 13:10 - 00000000 ____D () C:\Program Files\iTunes
2014-04-07 13:09 - 2014-04-07 13:09 - 00000000 ____D () C:\Program Files\iPod
2014-04-06 21:17 - 2014-04-06 21:17 - 00000000 ____D () C:\Users\Emilie\Documents\MARIAGE 2015
2014-04-06 12:06 - 2014-04-06 12:06 - 00000000 ____D () C:\Users\Emilie\AppData\Local\{7DF5EB5A-1DA3-4A54-966B-CF20B137CCC8}

==================== One Month Modified Files and Folders =======

2014-04-22 21:25 - 2014-04-22 21:24 - 00020812 _____ () C:\Users\Emilie\Desktop\FRST.txt
2014-04-22 21:25 - 2011-07-13 01:43 - 01859798 _____ () C:\Windows\WindowsUpdate.log
2014-04-22 21:24 - 2014-04-22 21:24 - 02061312 _____ (Farbar) C:\Users\Emilie\Desktop\FRST64.exe
2014-04-22 21:24 - 2014-04-22 21:24 - 00000000 ____D () C:\FRST
2014-04-22 21:22 - 2014-04-21 23:57 - 00004182 _____ () C:\Windows\System32\Tasks\avast! Emergency Update
2014-04-22 21:21 - 2013-12-02 20:46 - 00003366 _____ () C:\Windows\System32\Tasks\RealDownloaderRealUpgradeScheduledTaskS-1-5-21-4087596911-3394680163-3784164461-1001
2014-04-22 21:21 - 2013-12-02 20:46 - 00003234 _____ () C:\Windows\System32\Tasks\RealDownloaderRealUpgradeLogonTaskS-1-5-21-4087596911-3394680163-3784164461-1001
2014-04-22 21:21 - 2012-10-15 17:42 - 00001064 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-04-22 21:21 - 2009-07-14 07:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-04-22 21:21 - 2009-07-14 06:51 - 00277374 _____ () C:\Windows\setupact.log
2014-04-22 15:21 - 2012-04-16 09:14 - 00001002 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-04-22 15:11 - 2012-10-15 17:42 - 00001068 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-04-22 15:07 - 2009-07-14 06:45 - 00032064 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-04-22 15:07 - 2009-07-14 06:45 - 00032064 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-04-22 12:58 - 2013-09-16 16:58 - 00000000 ____D () C:\Program Files\Google
2014-04-22 12:58 - 2012-10-15 17:42 - 00000000 ____D () C:\Program Files (x86)\Google
2014-04-22 12:58 - 2010-11-21 05:47 - 00927428 _____ () C:\Windows\PFRO.log
2014-04-22 01:25 - 2014-04-22 01:25 - 00035201 _____ () C:\Users\Emilie\Desktop\ZHPDiag.txt
2014-04-22 01:23 - 2014-04-21 13:57 - 00000000 ____D () C:\Users\Emilie\AppData\Roaming\ZHP
2014-04-22 01:22 - 2014-04-21 13:57 - 00001951 _____ () C:\Users\Emilie\Desktop\ZHPFix.lnk
2014-04-22 01:22 - 2014-04-21 13:57 - 00001824 _____ () C:\Users\Emilie\Desktop\ZHPDiag.lnk
2014-04-22 01:22 - 2014-04-21 13:57 - 00000000 ____D () C:\Program Files (x86)\ZHPDiag
2014-04-22 01:17 - 2012-10-15 17:42 - 00000000 ____D () C:\Users\Emilie\AppData\Local\Google
2014-04-22 01:14 - 2014-04-22 00:07 - 00000000 ____D () C:\Shortcut_Module
2014-04-22 01:13 - 2011-05-23 01:57 - 00748362 _____ () C:\Windows\system32\perfh00C.dat
2014-04-22 01:13 - 2011-05-23 01:57 - 00150596 _____ () C:\Windows\system32\perfc00C.dat
2014-04-22 01:13 - 2009-07-14 07:13 - 01671272 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-04-22 00:45 - 2011-08-22 16:30 - 00001054 _____ () C:\Users\Public\Desktop\Snapfish.lnk
2014-04-22 00:33 - 2013-12-11 18:19 - 00000000 ____D () C:\ProgramData\Easybits Magic Desktop for HP
2014-04-21 23:58 - 2014-04-21 23:58 - 00000000 ____D () C:\Users\Emilie\AppData\Roaming\AVAST Software
2014-04-21 23:57 - 2014-04-21 23:57 - 00001926 _____ () C:\Users\Public\Desktop\avast! Free Antivirus.lnk
2014-04-21 23:56 - 2014-04-21 23:56 - 01039096 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2014-04-21 23:56 - 2014-04-21 23:56 - 00423240 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2014-04-21 23:56 - 2014-04-21 23:56 - 00334648 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2014-04-21 23:56 - 2014-04-21 23:56 - 00208416 _____ () C:\Windows\system32\Drivers\aswVmm.sys
2014-04-21 23:56 - 2014-04-21 23:56 - 00093568 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2014-04-21 23:56 - 2014-04-21 23:56 - 00085328 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2014-04-21 23:56 - 2014-04-21 23:56 - 00079184 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2014-04-21 23:56 - 2014-04-21 23:56 - 00065776 _____ () C:\Windows\system32\Drivers\aswRvrt.sys
2014-04-21 23:56 - 2014-04-21 23:56 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr
2014-04-21 23:56 - 2014-04-21 23:56 - 00029208 _____ () C:\Windows\system32\Drivers\aswHwid.sys
2014-04-21 23:55 - 2014-04-21 23:55 - 00000000 ____D () C:\Program Files\AVAST Software
2014-04-21 23:54 - 2014-04-21 23:53 - 88882192 _____ (AVAST Software) C:\Users\Emilie\avast_free_antivirus_setup.exe
2014-04-21 23:54 - 2011-09-05 18:46 - 00000000 ____D () C:\ProgramData\AVAST Software
2014-04-21 23:54 - 2011-08-22 16:28 - 00000000 ____D () C:\Users\Emilie
2014-04-21 23:52 - 2014-04-20 11:45 - 00119512 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-04-21 23:44 - 2011-08-27 11:54 - 00000000 ____D () C:\Users\Emilie\AppData\Roaming\SoftGrid Client
2014-04-21 23:42 - 2014-04-21 23:42 - 00000000 ____D () C:\_OTL
2014-04-21 18:37 - 2014-04-21 18:37 - 00000512 _____ () C:\PhysicalMBR.bin
2014-04-21 18:24 - 2014-04-21 18:28 - 00602112 _____ (OldTimer Tools) C:\Users\Emilie\Desktop\OTL.exe
2014-04-21 17:33 - 2011-08-22 16:35 - 00064152 _____ () C:\Users\Emilie\AppData\Local\GDIPFONTCACHEV1.DAT
2014-04-21 15:59 - 2014-04-21 15:59 - 00000512 _____ () C:\PhysicalDisk0_MBR.bin
2014-04-21 11:50 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\system32\NDF
2014-04-21 11:29 - 2011-08-22 16:36 - 00003944 _____ () C:\Windows\System32\Tasks\User_Feed_Synchronization-{D9763AE4-8B49-4771-9BF8-E4989A748B47}
2014-04-20 20:24 - 2014-01-30 15:13 - 00000000 ____D () C:\ProgramData\Panda Security
2014-04-20 20:24 - 2014-01-30 15:13 - 00000000 ____D () C:\Program Files (x86)\Panda USB Vaccine
2014-04-20 20:24 - 2013-09-11 12:56 - 00000000 ____D () C:\ProgramData\Real
2014-04-20 20:24 - 2013-09-05 19:02 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-04-20 20:24 - 2013-08-29 14:04 - 00000000 ____D () C:\Users\Emilie\AppData\Local\SquareClock.Production_KAZED
2014-04-20 20:24 - 2013-08-11 15:36 - 00000000 ____D () C:\Program Files (x86)\Movies2iPhone
2014-04-20 20:24 - 2013-08-11 14:48 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-04-20 20:24 - 2012-04-13 18:28 - 00000000 ____D () C:\Users\Emilie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CopyTrans Suite
2014-04-20 20:24 - 2012-01-12 22:12 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes' Anti-Malware
2014-04-20 20:24 - 2011-05-22 16:35 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2014-04-20 20:24 - 2011-05-22 16:34 - 00000000 ____D () C:\Program Files (x86)\EasyBits For Kids
2014-04-20 20:24 - 2011-05-22 16:18 - 00000000 ____D () C:\Program Files (x86)\Evernote
2014-04-20 20:24 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\registration
2014-04-20 20:23 - 2013-09-05 19:02 - 00000000 ____D () C:\Users\Emilie\AppData\Local\Mozilla
2014-04-20 20:23 - 2012-01-26 22:29 - 00000000 ____D () C:\Users\Emilie\AppData\Roaming\Mozilla
2014-04-20 18:57 - 2007-01-02 03:25 - 00000000 ____D () C:\Windows\Panther
2014-04-20 18:53 - 2011-09-06 20:04 - 00000000 ____D () C:\ProgramData\EPSON
2014-04-20 18:52 - 2011-08-22 16:36 - 00000000 ___RD () C:\Users\Emilie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-04-20 18:49 - 2013-09-11 12:57 - 00000000 ____D () C:\Users\Emilie\AppData\Roaming\Real
2014-04-20 18:48 - 2011-10-08 17:31 - 00000000 ____D () C:\Users\Emilie\AppData\Roaming\Skype
2014-04-20 11:45 - 2014-04-20 11:45 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-04-20 11:45 - 2012-11-28 22:14 - 00003192 _____ () C:\Windows\System32\Tasks\HPCeeScheduleForEmilie
2014-04-20 11:45 - 2012-11-28 22:14 - 00000336 _____ () C:\Windows\Tasks\HPCeeScheduleForEmilie.job
2014-04-20 11:45 - 2012-01-12 22:14 - 00001066 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-04-20 11:45 - 2012-01-12 22:13 - 00000000 ____D () C:\Users\Emilie\AppData\Roaming\Malwarebytes
2014-04-20 11:45 - 2012-01-12 22:12 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-04-20 11:41 - 2011-10-29 00:48 - 00000000 ____D () C:\Users\Emilie\AppData\Local\CrashDumps
2014-04-17 11:44 - 2013-05-22 13:53 - 00000000 ____D () C:\Users\Emilie\Documents\année 2013-2014
2014-04-16 23:12 - 2012-05-20 20:16 - 00000000 ____D () C:\Users\Emilie\AppData\Roaming\uTorrent
2014-04-16 15:20 - 2014-04-16 15:20 - 00000000 ____D () C:\Users\Emilie\Downloads\La lengua de las Mariposas.(Spanish).(XviD.DVDRiP).www.lokotorrents.com
2014-04-16 14:47 - 2014-04-16 14:47 - 00001656 _____ () C:\Windows\SysWOW64\${LOGFILE}
2014-04-16 14:35 - 2014-03-21 12:27 - 00005584 _____ () C:\Windows\system32\SecureAssist.ini
2014-04-16 14:35 - 2014-03-21 12:27 - 00002536 _____ () C:\Windows\system32\SecureAssistOff.ini
2014-04-15 07:06 - 2012-02-08 09:00 - 00000000 _____ () C:\Windows\system32\HP_ActiveX_Patch_NOT_DETECTED.txt
2014-04-15 07:06 - 2011-09-14 14:13 - 00000052 _____ () C:\Windows\SysWOW64\DOErrors.log
2014-04-14 18:38 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\rescache
2014-04-14 17:59 - 2011-08-24 18:01 - 00003204 _____ () C:\Windows\System32\Tasks\HPCeeScheduleForEMILIE-HP$
2014-04-14 17:59 - 2011-08-24 18:01 - 00000346 _____ () C:\Windows\Tasks\HPCeeScheduleForEMILIE-HP$.job
2014-04-14 17:42 - 2012-04-16 09:14 - 00692400 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-04-14 17:42 - 2012-04-16 09:14 - 00003940 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-04-14 17:42 - 2011-09-21 09:13 - 00070832 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-04-14 17:42 - 2011-08-29 11:26 - 00000000 ____D () C:\Users\Emilie\AppData\Local\Adobe
2014-04-12 10:17 - 2013-09-16 16:59 - 00002141 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-04-10 17:10 - 2013-08-14 19:21 - 00000000 ____D () C:\Windows\system32\MRT
2014-04-10 17:08 - 2011-09-21 13:38 - 90655440 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-04-07 13:10 - 2014-04-07 13:10 - 00001743 _____ () C:\Users\Public\Desktop\iTunes.lnk
2014-04-07 13:10 - 2014-04-07 13:09 - 00000000 ____D () C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2014-04-07 13:10 - 2014-04-07 13:09 - 00000000 ____D () C:\Program Files\iTunes
2014-04-07 13:10 - 2012-09-24 17:57 - 00000000 ____D () C:\Program Files (x86)\iTunes
2014-04-07 13:09 - 2014-04-07 13:09 - 00000000 ____D () C:\Program Files\iPod
2014-04-07 13:04 - 2012-04-13 17:46 - 00000000 ____D () C:\ProgramData\Apple
2014-04-06 22:33 - 2011-10-15 18:03 - 00000000 ____D () C:\Users\Emilie\Documents\seb
2014-04-06 21:17 - 2014-04-06 21:17 - 00000000 ____D () C:\Users\Emilie\Documents\MARIAGE 2015
2014-04-06 12:06 - 2014-04-06 12:06 - 00000000 ____D () C:\Users\Emilie\AppData\Local\{7DF5EB5A-1DA3-4A54-966B-CF20B137CCC8}
2014-04-06 00:05 - 2012-10-15 17:42 - 00004064 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2014-04-06 00:05 - 2012-10-15 17:42 - 00003812 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2014-04-05 17:13 - 2013-09-11 12:59 - 00003344 _____ () C:\Windows\System32\Tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-4087596911-3394680163-3784164461-1001
2014-04-05 17:13 - 2013-09-11 12:59 - 00003212 _____ () C:\Windows\System32\Tasks\RealPlayerRealUpgradeLogonTaskS-1-5-21-4087596911-3394680163-3784164461-1001
2014-04-04 20:01 - 2011-12-07 11:52 - 00000000 ____D () C:\Users\Emilie\Documents\echange pamplona
2014-04-03 09:51 - 2014-04-20 11:45 - 00088280 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-04-03 09:51 - 2014-04-20 11:45 - 00063192 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2014-04-03 09:50 - 2012-01-12 22:12 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-03-31 09:35 - 2010-11-21 05:27 - 00270496 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2014-03-31 03:16 - 2014-04-10 14:15 - 23134208 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-03-31 03:13 - 2014-04-10 14:15 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-03-31 02:13 - 2014-04-10 14:15 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-03-31 01:57 - 2014-04-10 14:15 - 17073152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-03-28 05:10 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\AppCompat
2014-03-28 05:09 - 2011-09-07 14:53 - 00000000 __RHD () C:\MSOCache

Files to move or delete:
====================
C:\Users\Emilie\avast_free_antivirus_setup.exe
C:\Users\Emilie\usbfix.exe


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2014-04-21 02:32

==================== End Of Log ============================

Publicité


Signaler le contenu de ce document

Publicité