cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 20-04-2015
Ran by Capucine (administrator) on VRAT1236 on 21-04-2015 13:17:45
Running from C:\Users\vrat\Desktop
Loaded Profiles: Capucine (Available profiles: Capucine)
Platform: Windows 8.1 (X64) OS Language: Français (France)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(ASUS) C:\Program Files (x86)\ASUS\ASUS InstantOn\InsOnSrv.exe
() C:\Program Files (x86)\ASUS\WebStorage Sync Agent\1.1.18.159\AsusWSWinService.exe
(Qualcomm Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\AdminService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(Realsil Microelectronics Inc.) C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Atheros) C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
(ASUS) C:\Program Files (x86)\ASUS\ASUS InstantOn\InsOnWMI.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\Splendid\ColorUService.exe
(ASUS) C:\Program Files\ASUS\P4G\BatteryLife.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe
(ASUS) C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
(Avast Software) C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\ng\ngservice.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe
(Qualcomm Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
() C:\Program Files (x86)\Bluetooth Suite\ActivateDesktop.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Avast Software) C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe
(Microsoft Corporation) C:\Program Files\Microsoft Xbox 360 Accessories\XBoxStat.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLoader.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\QuickGesture\x64\QuickGesture64.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\QuickGesture\x86\QuickGesture.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPCenter.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPHelper.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13550152 2013-05-30] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1308232 2013-05-20] (Realtek Semiconductor)
HKLM\...\Run: [Nvtmru] => "C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe"
HKLM\...\Run: [ShadowPlay] => C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [BCSSync] => C:\Program Files\Microsoft Office\Office14\BCSSync.exe [108144 2012-11-05] (Microsoft Corporation)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2460488 2014-09-17] (NVIDIA Corporation)
HKLM\...\Run: [XboxStat] => C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe [825184 2009-10-01] (Microsoft Corporation)
HKLM-x32\...\Run: [Adobe Reader Speed Launcher] => C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe [40312 2014-05-08] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [ASUSPRP] => C:\Program Files (x86)\ASUS\APRP\APRP.EXE [3187360 2013-04-26] (ASUSTek Computer Inc.)
HKLM-x32\...\Run: [ASUSWebStorage] => C:\Program Files (x86)\ASUS\WebStorage Sync Agent\1.1.18.159\AsusWSPanel.exe [3576784 2012-12-19] (ASUS Cloud Corporation)
HKLM-x32\...\Run: [RemoteControl10] => C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe [91432 2012-03-28] (CyberLink Corp.)
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [43848 2014-02-12] (Apple Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [256896 2014-07-09] (Oracle Corporation)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [5223016 2014-11-02] (AVAST Software)
Winlogon\Notify\igfxcui: igfxdev.dll [X]
HKLM\...\Policies\Explorer\Run: [BtvStack] => C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [132736 2013-03-27] ( (Qualcomm Atheros Commnucations))
HKU\S-1-5-21-868438842-4176598091-3430953037-1002\...\Run: [OfficeSyncProcess] => C:\Program Files\Microsoft Office\Office14\MSOSYNC.EXE [911032 2014-10-14] (Microsoft Corporation)
HKU\S-1-5-21-868438842-4176598091-3430953037-1002\...\Run: [GoogleDriveSync] => "C:\Program Files (x86)\Google\Drive\googledrivesync.exe" /autostart
HKU\S-1-5-21-868438842-4176598091-3430953037-1002\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [7394584 2014-12-12] (Piriform Ltd)
HKU\S-1-5-21-868438842-4176598091-3430953037-1002\...\MountPoints2: {b945469e-36aa-11e3-be77-ac220b7117e4} - "F:\setup.exe"
AppInit_DLLs: C:\WINDOWS\system32\nvinitx.dll => C:\WINDOWS\system32\nvinitx.dll [174856 2014-11-13] (NVIDIA Corporation)
AppInit_DLLs-x32: C:\WINDOWS\SysWOW64\nvinit.dll => C:\WINDOWS\SysWOW64\nvinit.dll [156840 2014-11-13] (NVIDIA Corporation)
ShellIconOverlayIdentifiers: [ SkyDrive1] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => No File
ShellIconOverlayIdentifiers: [ SkyDrive2] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => No File
ShellIconOverlayIdentifiers: [ SkyDrive3] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => No File
ShellIconOverlayIdentifiers: [!AsusWSShellExt_B] -> {6D4133E5-0742-4ADC-8A8C-9303440F7190} => C:\Program Files (x86)\ASUS\WebStorage Sync Agent\1.1.18.159\ASUSWSShellExt64.dll [2012-09-27] (ASUS Cloud Corporation.)
ShellIconOverlayIdentifiers: [!AsusWSShellExt_O] -> {64174815-8D98-4CE6-8646-4C039977D808} => C:\Program Files (x86)\ASUS\WebStorage Sync Agent\1.1.18.159\ASUSWSShellExt64.dll [2012-09-27] (ASUS Cloud Corporation.)
ShellIconOverlayIdentifiers: [!AsusWSShellExt_U] -> {1C5AB7B1-0B38-4EC4-9093-7FD277E2AF4D} => C:\Program Files (x86)\ASUS\WebStorage Sync Agent\1.1.18.159\ASUSWSShellExt64.dll [2012-09-27] (ASUS Cloud Corporation.)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2014-11-02] (AVAST Software)
ShellIconOverlayIdentifiers-x32: [ SkyDrive1] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => No File
ShellIconOverlayIdentifiers-x32: [ SkyDrive2] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => No File
ShellIconOverlayIdentifiers-x32: [ SkyDrive3] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => No File

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKU\S-1-5-21-868438842-4176598091-3430953037-1002\Software\Microsoft\Internet Explorer\Main,Start Page = http://asus13.msn.com
HKU\S-1-5-21-868438842-4176598091-3430953037-1002\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://asus13.msn.com
SearchScopes: HKU\S-1-5-21-868438842-4176598091-3430953037-1002 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-868438842-4176598091-3430953037-1002 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-868438842-4176598091-3430953037-1002 -> {AFBCB7E0-F91A-4951-9F31-58FEE57A25C4} URL = http://nortonsafe.search.ask.com/web?q={SEARCHTERMS}&o=APN10506&l=dis&prt=NIS&chn=retail&geo=FR&ver=21&locale=fr_FR&gct=kwd&qsrc=2869
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll [2014-04-21] (Oracle Corporation)
BHO: CIESpeechBHO Class -> {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} -> C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll [2013-03-27] (Qualcomm Atheros Commnucations)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2014-11-02] (AVAST Software)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll [2014-04-21] (Oracle Corporation)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\java\jre7\bin\ssv.dll [2014-07-09] (Oracle Corporation)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2014-11-02] (AVAST Software)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\java\jre7\bin\jp2ssv.dll [2014-07-09] (Oracle Corporation)
Toolbar: HKU\S-1-5-21-868438842-4176598091-3430953037-1002 -> No Name - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - No File
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1

FireFox:
========
FF ProfilePath: C:\Users\vrat\AppData\Roaming\Mozilla\Firefox\Profiles\88ywtae3.default-1393626920652
FF DefaultSearchEngine: Google (avast)
FF DefaultSearchUrl: https://www.google.com/search/?trackid=sp-006
FF SearchEngineOrder.1: Google (avast)
FF SelectedSearchEngine: Google (avast)
FF Homepage: https://www.google.com/?trackid=sp-006
FF Keyword.URL: https://www.google.com/search/?trackid=sp-006
FF NetworkProxy: "backup.ftp", "192.168.197.73"
FF NetworkProxy: "backup.ftp_port", 3128
FF NetworkProxy: "backup.socks", "192.168.197.73"
FF NetworkProxy: "backup.socks_port", 3128
FF NetworkProxy: "backup.ssl", "192.168.197.73"
FF NetworkProxy: "backup.ssl_port", 3128
FF NetworkProxy: "ftp", "192.168.197.73"
FF NetworkProxy: "ftp_port", 3128
FF NetworkProxy: "http", "192.168.197.73"
FF NetworkProxy: "http_port", 3128
FF NetworkProxy: "share_proxy_settings", true
FF NetworkProxy: "socks", "192.168.197.73"
FF NetworkProxy: "socks_port", 3128
FF NetworkProxy: "ssl", "192.168.197.73"
FF NetworkProxy: "ssl_port", 3128
FF NetworkProxy: "type", 0
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_17_0_0_169.dll [2015-04-18] ()
FF Plugin: @java.com/DTPlugin,version=10.55.2 -> C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll [2014-04-21] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.55.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll [2014-04-21] (Oracle Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_17_0_0_169.dll [2015-04-18] ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2012-06-06] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2012-06-06] (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=10.65.2 -> C:\Program Files (x86)\java\jre7\bin\dtplugin\npDeployJava1.dll [2014-07-09] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.65.2 -> C:\Program Files (x86)\java\jre7\bin\plugin2\npjp2.dll [2014-07-09] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3505.0912 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-09-12] (Microsoft Corporation)
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin -> C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll No File
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-04] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-04] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.1.0 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2014-07-23] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2014-07-23] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2014-07-23] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2014-07-23] (VideoLAN)
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll [2012-10-12] ()
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll [2014-08-03] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-868438842-4176598091-3430953037-1002: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\vrat\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2014-02-20] (Unity Technologies ApS)
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: No Name - C:\Program Files\AVAST Software\Avast\WebRep\FF [2014-11-02]
FF HKLM-x32\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK
FF Extension: No Name - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} [Not Found]

Chrome:
=======
CHR Profile: C:\Users\vrat\AppData\Local\Google\Chrome\User Data\Profile 1
CHR Extension: (Google Slides) - C:\Users\vrat\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2014-12-29]
CHR Extension: (Google Docs) - C:\Users\vrat\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake [2014-12-29]
CHR Extension: (Google Drive) - C:\Users\vrat\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-12-29]
CHR Extension: (YouTube) - C:\Users\vrat\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-12-29]
CHR Extension: (Google Search) - C:\Users\vrat\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-12-29]
CHR Extension: (Google Sheets) - C:\Users\vrat\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2014-12-29]
CHR Extension: (AdBlock) - C:\Users\vrat\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2015-04-20]
CHR Extension: (Chrome Hotword Shared Module) - C:\Users\vrat\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-03-16]
CHR Extension: (Google Wallet) - C:\Users\vrat\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-12-29]
CHR Extension: (Gmail) - C:\Users\vrat\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-12-29]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChromeSp.crx [2014-11-02]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2014-11-02]

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 ASUS InstantOn; C:\Program Files (x86)\ASUS\ASUS InstantOn\InsOnSrv.exe [277120 2012-04-13] (ASUS)
R2 Asus WebStorage Windows Service; C:\Program Files (x86)\ASUS\WebStorage Sync Agent\1.1.18.159\AsusWSWinService.exe [72192 2012-12-19] () [File not signed]
R2 AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [227968 2013-03-27] (Qualcomm Atheros Commnucations) [File not signed]
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-11-02] (AVAST Software)
R3 AvastVBoxSvc; C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe [4012248 2014-11-02] (Avast Software)
S3 EasyAntiCheat; C:\WINDOWS\SysWOW64\EasyAntiCheat.exe [107552 2014-06-22] (EasyAntiCheat Ltd)
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1148744 2014-09-17] (NVIDIA Corporation)
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [129856 2012-06-27] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [166720 2012-06-25] (Intel Corporation)
S2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1795912 2014-09-17] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [19439944 2014-09-17] (NVIDIA Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [368632 2014-09-22] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23792 2014-09-22] (Microsoft Corporation)
R2 ZAtheros Bt and Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [323584 2013-03-27] (Atheros) [File not signed]

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [29208 2014-11-02] ()
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [83280 2014-11-02] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93568 2014-11-02] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2014-11-02] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1050432 2014-11-22] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [436624 2014-11-02] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [116728 2014-11-02] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [267632 2014-11-02] ()
R3 athr; C:\Windows\system32\DRIVERS\athwbx.sys [3837440 2013-08-14] (Qualcomm Atheros Communications, Inc.)
R3 ATP; C:\Windows\System32\drivers\AsusTP.sys [65784 2013-04-16] (ASUS Corporation)
S3 BRDriver64; C:\ProgramData\BitRaider\BRDriver64.sys [75048 2014-04-30] (BitRaider)
S3 BTATH_LWFLT; C:\Windows\system32\DRIVERS\btath_lwflt.sys [77464 2013-03-27] (Qualcomm Atheros)
R3 BthLEEnum; C:\Windows\System32\drivers\BthLEEnum.sys [226304 2013-12-04] (Microsoft Corporation)
S3 dot4; C:\Windows\system32\DRIVERS\Dot4.sys [151968 2012-10-19] (Windows (R) Win 7 DDK provider)
S3 Dot4Print; C:\Windows\System32\drivers\Dot4Prt.sys [27040 2012-10-19] (Windows (R) Win 7 DDK provider)
R3 kbfiltr; C:\Windows\System32\drivers\kbfiltr.sys [14992 2012-08-02] ( )
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19272 2014-09-17] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [38048 2014-09-04] (NVIDIA Corporation)
R2 VBoxAswDrv; C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [270728 2014-11-02] (Avast Software)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114496 2014-09-22] (Microsoft Corporation)
S3 xusb22; C:\Windows\System32\drivers\xusb22.sys [87040 2014-03-18] (Microsoft Corporation)
S3 EagleX64; \??\C:\WINDOWS\system32\drivers\EagleX64.sys [X]
S3 vmci; \SystemRoot\System32\drivers\vmci.sys [X]
S3 VMnetAdapter; \SystemRoot\system32\DRIVERS\vmnetadapter.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-04-21 13:17 - 2015-04-21 13:18 - 00024291 _____ () C:\Users\vrat\Desktop\FRST.txt
2015-04-21 13:17 - 2015-04-21 13:17 - 02099712 _____ (Farbar) C:\Users\vrat\Desktop\FRST64.exe
2015-04-21 13:17 - 2015-04-21 13:17 - 00000000 ____D () C:\FRST
2015-04-21 13:06 - 2015-04-21 13:06 - 00000197 _____ () C:\WINDOWS\system32\2015-04-21-11-06-51.072-AvastVBoxSVC.exe-2056.log
2015-04-20 23:58 - 2015-04-21 00:16 - 00011841 _____ () C:\AdsFix.txt
2015-04-20 23:57 - 2015-04-21 00:05 - 00000000 ____D () C:\AdsFix
2015-04-20 23:50 - 2015-04-20 23:51 - 02460296 _____ (SosVirus) C:\Users\vrat\Downloads\AdsFix (1).exe
2015-04-20 23:50 - 2015-04-20 23:50 - 02460296 _____ (SosVirus) C:\Users\vrat\Downloads\AdsFix.exe
2015-04-20 20:52 - 2015-04-20 20:52 - 00112788 _____ () C:\Users\vrat\Desktop\ZHPDiag.txt
2015-04-20 20:42 - 2015-04-20 20:42 - 00002005 _____ () C:\Users\vrat\Desktop\ZHPFix.lnk
2015-04-20 20:42 - 2015-04-20 20:42 - 00001874 _____ () C:\Users\vrat\Desktop\ZHPDiag.lnk
2015-04-20 20:42 - 2015-04-20 20:42 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ZHP
2015-04-20 19:53 - 2015-04-20 20:49 - 00000512 _____ () C:\PhysicalDisk0_MBR.bin
2015-04-20 19:45 - 2015-04-21 13:01 - 00000000 ____D () C:\Program Files (x86)\ZHPDiag
2015-04-20 18:49 - 2015-04-20 18:51 - 00000197 _____ () C:\WINDOWS\system32\2015-04-20-16-49-22.030-AvastVBoxSVC.exe-3776.log
2015-04-20 17:17 - 2015-04-20 17:17 - 06881977 _____ (Nicolas Coolman ) C:\Users\vrat\Downloads\ZHPDiag2.exe
2015-04-20 17:13 - 2015-04-20 17:13 - 00001982 _____ () C:\Users\Public\Desktop\Avast Free Antivirus.lnk
2015-04-20 17:13 - 2015-04-20 17:13 - 00000197 _____ () C:\WINDOWS\system32\2015-04-20-15-13-10.098-AvastVBoxSVC.exe-5844.log
2015-04-20 17:11 - 2014-11-02 00:54 - 00364512 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2015-04-20 17:02 - 2015-04-20 17:02 - 00262224 _____ () C:\WINDOWS\Minidump\042015-151218-01.dmp
2015-04-20 16:59 - 2015-04-20 16:59 - 366896383 _____ () C:\WINDOWS\MEMORY.DMP
2015-04-20 14:42 - 2015-04-20 14:42 - 00000197 _____ () C:\WINDOWS\system32\2015-04-20-12-42-12.063-AvastVBoxSVC.exe-2668.log
2015-04-20 14:38 - 2015-04-21 13:01 - 00001448 _____ () C:\WINDOWS\PFRO.log
2015-04-20 13:11 - 2015-04-20 20:52 - 00000000 ____D () C:\Users\vrat\AppData\Roaming\ZHP
2015-04-20 01:59 - 2015-04-21 13:12 - 01961924 _____ () C:\WINDOWS\WindowsUpdate.log
2015-04-20 01:10 - 2015-04-20 01:10 - 00000197 _____ () C:\WINDOWS\system32\2015-04-19-23-10-22.076-AvastVBoxSVC.exe-3172.log
2015-04-20 01:07 - 2015-04-21 13:04 - 00001155 _____ () C:\WINDOWS\setupact.log
2015-04-20 01:07 - 2015-04-20 01:07 - 00000000 _____ () C:\WINDOWS\setuperr.log
2015-04-20 00:58 - 2015-04-20 01:01 - 00000197 _____ () C:\WINDOWS\system32\2015-04-19-22-58-50.068-AvastVBoxSVC.exe-2560.log
2015-04-19 23:32 - 2015-04-19 23:32 - 00000000 ____D () C:\ProgramData\Malwarebytes
2015-04-19 23:25 - 2015-04-19 23:26 - 00000197 _____ () C:\WINDOWS\system32\2015-04-19-21-25-06.031-AvastVBoxSVC.exe-792.log
2015-04-19 23:15 - 2015-04-19 23:33 - 00000000 ____D () C:\AdwCleaner
2015-04-19 22:57 - 2015-04-19 22:57 - 00000197 _____ () C:\WINDOWS\system32\2015-04-19-20-57-55.040-AvastVBoxSVC.exe-5088.log
2015-04-19 19:43 - 2015-04-19 19:43 - 00000000 ____D () C:\Riot Games
2015-04-19 13:23 - 2015-04-19 13:23 - 00000197 _____ () C:\WINDOWS\system32\2015-04-19-11-23-27.089-AvastVBoxSVC.exe-3720.log
2015-04-19 13:04 - 2015-04-19 13:05 - 00000625 _____ () C:\Users\vrat\Documents\Uninstall STAR WARS The Old Republic.log
2015-04-19 12:59 - 2015-04-19 12:59 - 00000000 ____D () C:\Program Files (x86)\VS Revo Group
2015-04-19 00:52 - 2015-04-19 00:52 - 00000197 _____ () C:\WINDOWS\system32\2015-04-18-22-52-21.089-AvastVBoxSVC.exe-2656.log
2015-04-19 00:29 - 2015-04-19 00:31 - 00000197 _____ () C:\WINDOWS\system32\2015-04-18-22-29-00.003-AvastVBoxSVC.exe-1432.log
2015-04-19 00:07 - 2015-04-19 00:08 - 00000197 _____ () C:\WINDOWS\system32\2015-04-18-22-07-21.028-AvastVBoxSVC.exe-4072.log
2015-04-18 23:38 - 2015-04-18 23:39 - 00000197 _____ () C:\WINDOWS\system32\2015-04-18-21-38-52.049-AvastVBoxSVC.exe-416.log
2015-04-18 23:25 - 2015-04-20 15:38 - 00000000 ____D () C:\Program Files\Microsoft Silverlight
2015-04-18 23:25 - 2015-04-20 15:38 - 00000000 ____D () C:\Program Files (x86)\Microsoft Silverlight
2015-04-18 23:05 - 2015-04-18 23:07 - 00000197 _____ () C:\WINDOWS\system32\2015-04-18-21-05-57.012-AvastVBoxSVC.exe-4216.log
2015-04-18 19:35 - 2015-04-18 19:35 - 00000197 _____ () C:\WINDOWS\system32\2015-04-18-17-35-33.043-AvastVBoxSVC.exe-2744.log
2015-04-18 17:39 - 2015-04-18 17:41 - 00000197 _____ () C:\WINDOWS\system32\2015-04-18-15-39-12.005-AvastVBoxSVC.exe-3284.log
2015-04-18 13:55 - 2015-04-18 13:58 - 30668968 _____ (Riot Games) C:\Users\vrat\Downloads\LeagueofLegends_EUW_Installer_9_15_2014.exe
2015-04-08 21:24 - 2015-04-08 21:24 - 00000197 _____ () C:\WINDOWS\system32\2015-04-08-19-24-16.049-AvastVBoxSVC.exe-4848.log
2015-04-08 21:21 - 2015-03-04 23:24 - 00178144 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2015-04-05 18:49 - 2015-04-05 18:49 - 00000197 _____ () C:\WINDOWS\system32\2015-04-05-16-49-01.092-AvastVBoxSVC.exe-3212.log
2015-03-22 19:40 - 2015-03-22 19:40 - 00000197 _____ () C:\WINDOWS\system32\2015-03-22-17-40-11.048-AvastVBoxSVC.exe-1100.log

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-04-21 13:11 - 2013-10-16 19:12 - 00003596 _____ () C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-868438842-4176598091-3430953037-1002
2015-04-21 13:08 - 2013-10-16 19:04 - 00000062 _____ () C:\Users\vrat\AppData\Roaming\sp_data.sys
2015-04-21 13:07 - 2014-11-02 00:55 - 00004182 _____ () C:\WINDOWS\System32\Tasks\avast! Emergency Update
2015-04-21 13:07 - 2013-11-26 11:40 - 00001090 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2015-04-21 13:05 - 2013-11-10 11:48 - 00000000 ____D () C:\Users\vrat
2015-04-21 13:03 - 2013-08-22 16:45 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
2015-04-21 01:26 - 2013-11-26 11:40 - 00001094 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2015-04-21 01:02 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\system32\sru
2015-04-21 00:51 - 2013-11-23 11:57 - 00001002 _____ () C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2015-04-20 23:51 - 2014-05-19 11:18 - 00000000 ____D () C:\Users\vrat\AppData\Roaming\Skype
2015-04-20 23:39 - 2014-06-04 08:42 - 00000000 ____D () C:\Users\vrat\AppData\Roaming\vlc
2015-04-20 21:10 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\AppReadiness
2015-04-20 19:41 - 2013-10-17 01:37 - 00000000 ____D () C:\Users\vrat\AppData\Local\CrashDumps
2015-04-20 19:40 - 2012-07-26 09:59 - 00000000 ____D () C:\WINDOWS\CbsTemp
2015-04-20 17:58 - 2013-09-30 06:00 - 00000000 ____D () C:\Program Files\Windows Journal
2015-04-20 17:58 - 2013-08-22 17:36 - 00000000 __RSD () C:\WINDOWS\Media
2015-04-20 17:58 - 2013-08-22 17:36 - 00000000 ___SD () C:\WINDOWS\system32\dsc
2015-04-20 17:58 - 2013-08-22 17:36 - 00000000 ___RD () C:\WINDOWS\ToastData
2015-04-20 17:58 - 2013-08-22 17:36 - 00000000 ___RD () C:\WINDOWS\ImmersiveControlPanel
2015-04-20 17:58 - 2013-08-22 17:36 - 00000000 ___RD () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-04-20 17:58 - 2013-08-22 17:36 - 00000000 ___RD () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-04-20 17:58 - 2013-08-22 17:36 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
2015-04-20 17:58 - 2013-08-22 17:36 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessibility
2015-04-20 17:58 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\WinStore
2015-04-20 17:58 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\SysWOW64\sppui
2015-04-20 17:58 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\SysWOW64\setup
2015-04-20 17:58 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\SysWOW64\ras
2015-04-20 17:58 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\SysWOW64\migwiz
2015-04-20 17:58 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\SysWOW64\en-GB
2015-04-20 17:58 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\SysWOW64\Com
2015-04-20 17:58 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\system32\WinBioPlugIns
2015-04-20 17:58 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\system32\SystemResetPlatform
2015-04-20 17:58 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\system32\sppui
2015-04-20 17:58 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\system32\setup
2015-04-20 17:58 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\system32\ras
2015-04-20 17:58 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\system32\migwiz
2015-04-20 17:58 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\system32\en-GB
2015-04-20 17:58 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\system32\Com
2015-04-20 17:58 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\PolicyDefinitions
2015-04-20 17:58 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\MediaViewer
2015-04-20 17:58 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\IME
2015-04-20 17:58 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\FileManager
2015-04-20 17:58 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\Camera
2015-04-20 17:58 - 2013-08-22 17:36 - 00000000 ____D () C:\Program Files\Windows Portable Devices
2015-04-20 17:58 - 2013-08-22 17:36 - 00000000 ____D () C:\Program Files\Windows Photo Viewer
2015-04-20 17:58 - 2013-08-22 17:36 - 00000000 ____D () C:\Program Files\Windows Multimedia Platform
2015-04-20 17:58 - 2013-08-22 17:36 - 00000000 ____D () C:\Program Files\Windows Defender
2015-04-20 17:58 - 2013-08-22 17:36 - 00000000 ____D () C:\Program Files\Common Files\System
2015-04-20 17:58 - 2013-08-22 17:36 - 00000000 ____D () C:\Program Files (x86)\Windows Portable Devices
2015-04-20 17:58 - 2013-08-22 17:36 - 00000000 ____D () C:\Program Files (x86)\Windows Photo Viewer
2015-04-20 17:58 - 2013-08-22 17:36 - 00000000 ____D () C:\Program Files (x86)\Windows Multimedia Platform
2015-04-20 17:58 - 2013-08-22 17:36 - 00000000 ____D () C:\Program Files (x86)\Windows Defender
2015-04-20 17:58 - 2013-08-22 15:36 - 00000000 ____D () C:\WINDOWS\SysWOW64\oobe
2015-04-20 17:58 - 2013-08-22 15:36 - 00000000 ____D () C:\WINDOWS\SysWOW64\Dism
2015-04-20 17:58 - 2013-08-22 15:36 - 00000000 ____D () C:\WINDOWS\system32\Sysprep
2015-04-20 17:58 - 2013-08-22 15:36 - 00000000 ____D () C:\WINDOWS\system32\oobe
2015-04-20 17:58 - 2013-08-22 15:36 - 00000000 ____D () C:\WINDOWS\system32\Dism
2015-04-20 17:58 - 2013-08-22 15:36 - 00000000 ____D () C:\WINDOWS\servicing
2015-04-20 17:58 - 2013-07-23 14:12 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel
2015-04-20 17:56 - 2014-11-25 00:21 - 00000000 ____D () C:\WINDOWS\SysWOW64\NV
2015-04-20 17:56 - 2014-11-25 00:21 - 00000000 ____D () C:\WINDOWS\system32\NV
2015-04-20 17:56 - 2014-06-25 16:14 - 00000000 ____D () C:\Users\vrat\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ubisoft
2015-04-20 17:56 - 2014-04-30 00:59 - 00000000 ____D () C:\ProgramData\BitRaider
2015-04-20 17:56 - 2014-04-25 05:36 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2015-04-20 17:56 - 2014-03-30 18:01 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2015-04-20 17:56 - 2014-01-01 03:18 - 00000000 ____D () C:\WINDOWS\System32\Tasks\Apple
2015-04-20 17:56 - 2014-01-01 03:17 - 00000000 ____D () C:\Program Files (x86)\Apple Software Update
2015-04-20 17:56 - 2013-11-26 09:30 - 00000000 ____D () C:\WINDOWS\SysWOW64\directx
2015-04-20 17:56 - 2013-11-25 20:29 - 00000000 ____D () C:\WINDOWS\SysWOW64\xlive
2015-04-20 17:56 - 2013-11-25 20:29 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Games for Windows Marketplace
2015-04-20 17:56 - 2013-11-24 00:55 - 00000000 ____D () C:\Users\vrat\AppData\Local\Intel_Corporation
2015-04-20 17:56 - 2013-11-10 11:42 - 00000000 ____D () C:\Program Files\NVIDIA Corporation
2015-04-20 17:56 - 2013-10-16 21:17 - 00000000 ____D () C:\Users\vrat\AppData\Local\Unity
2015-04-20 17:56 - 2013-10-16 20:23 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2015-04-20 17:56 - 2013-10-16 19:24 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2015-04-20 17:56 - 2013-10-16 19:04 - 00000000 ____D () C:\Users\vrat\AppData\Local\ASUS
2015-04-20 17:56 - 2013-08-22 17:36 - 00000000 ___RD () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-04-20 17:56 - 2013-08-22 17:36 - 00000000 ___RD () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2015-04-20 17:56 - 2013-08-22 17:36 - 00000000 ___RD () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-04-20 17:56 - 2013-08-22 17:36 - 00000000 ___RD () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2015-04-20 17:56 - 2013-08-22 17:36 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Tools
2015-04-20 17:56 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\SysWOW64\InputMethod
2015-04-20 17:56 - 2013-07-23 14:32 - 00000000 ____D () C:\ProgramData\P4G
2015-04-20 17:45 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\registration
2015-04-20 17:41 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\SysWOW64\IME
2015-04-20 17:36 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\system32\InputMethod
2015-04-20 17:36 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\system32\IME
2015-04-20 17:33 - 2013-08-22 17:36 - 00000000 ___SD () C:\WINDOWS\system32\Configuration
2015-04-20 17:30 - 2013-10-16 19:42 - 00000000 ____D () C:\Users\vrat\AppData\Roaming\Riot Games
2015-04-20 17:30 - 2013-10-16 19:24 - 00000000 ____D () C:\Users\vrat\AppData\Roaming\Mozilla
2015-04-20 17:30 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\AppCompat
2015-04-20 17:29 - 2014-01-01 03:17 - 00000000 ____D () C:\ProgramData\Apple
2015-04-20 17:28 - 2013-08-22 17:36 - 00000000 ____D () C:\Program Files\Common Files\microsoft shared
2015-04-20 17:27 - 2013-11-25 20:29 - 00000000 ____D () C:\Program Files (x86)\Microsoft Games for Windows - LIVE
2015-04-20 17:27 - 2013-11-10 11:42 - 00000000 ____D () C:\Program Files (x86)\NVIDIA Corporation
2015-04-20 17:21 - 2013-08-22 15:25 - 00524288 ___SH () C:\WINDOWS\system32\config\BBI
2015-04-20 17:10 - 2013-09-30 06:16 - 01824010 _____ () C:\WINDOWS\system32\PerfStringBackup.INI
2015-04-20 17:10 - 2013-09-30 05:56 - 00812350 _____ () C:\WINDOWS\system32\perfh00C.dat
2015-04-20 17:10 - 2013-09-30 05:56 - 00159412 _____ () C:\WINDOWS\system32\perfc00C.dat
2015-04-20 17:10 - 2013-08-22 15:25 - 00262144 ___SH () C:\WINDOWS\system32\config\ELAM
2015-04-20 17:02 - 2014-01-27 22:25 - 00000000 ____D () C:\WINDOWS\Minidump
2015-04-20 00:55 - 2013-11-10 11:43 - 00000000 ____D () C:\ProgramData\NVIDIA
2015-04-19 13:18 - 2014-06-25 16:14 - 00000000 ____D () C:\Users\vrat\AppData\Local\Ubisoft Game Launcher
2015-04-18 19:23 - 2013-08-22 17:36 - 00000000 ____D () C:\Program Files\WindowsPowerShell
2015-04-18 19:08 - 2013-10-16 20:52 - 00000000 ____D () C:\ProgramData\Microsoft Help
2015-04-18 17:31 - 2013-10-16 23:28 - 00000000 ____D () C:\WINDOWS\system32\MRT
2015-04-18 13:51 - 2013-11-23 11:57 - 00003890 _____ () C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2015-04-08 21:20 - 2015-01-01 01:14 - 00508872 _____ () C:\WINDOWS\system32\FNTCACHE.DAT

==================== Files in the root of some directories =======

2013-10-16 23:50 - 2013-10-28 23:33 - 0000113 _____ () C:\Users\vrat\AppData\Roaming\D2Info0
2013-10-16 23:52 - 2013-10-27 20:33 - 0000008 _____ () C:\Users\vrat\AppData\Roaming\DofusAppId0_1
2013-10-16 23:50 - 2013-10-28 23:34 - 0000008 _____ () C:\Users\vrat\AppData\Roaming\DofusAppId0_2
2013-10-18 00:54 - 2013-10-18 00:55 - 0000008 _____ () C:\Users\vrat\AppData\Roaming\DofusAppId0_3
2013-10-16 19:04 - 2015-04-21 13:08 - 0000062 _____ () C:\Users\vrat\AppData\Roaming\sp_data.sys
2013-12-16 20:36 - 2013-12-16 20:36 - 0001456 _____ () C:\Users\vrat\AppData\Local\Adobe Enregistrer pour le Web 13.0 Prefs
2014-11-19 01:06 - 2014-11-19 01:10 - 0004608 _____ () C:\Users\vrat\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2013-10-28 23:00 - 2014-02-12 15:33 - 0007612 _____ () C:\Users\vrat\AppData\Local\Resmon.ResmonCfg
2013-04-26 01:15 - 2012-09-07 13:40 - 0000256 _____ () C:\ProgramData\SetStretch.cmd
2013-04-26 01:15 - 2009-07-22 12:04 - 0024576 _____ () C:\ProgramData\SetStretch.exe
2013-04-26 01:15 - 2012-09-07 13:37 - 0000103 _____ () C:\ProgramData\SetStretch.VBS

Files to move or delete:
====================
C:\ProgramData\SetStretch.exe
C:\ProgramData\SetStretch.VBS


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2015-04-05 22:29

==================== End Of Log ============================

Publicité


Signaler le contenu de ce document

Publicité