cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 05-05-2015
Ran by Jack (administrator) on PC-DE-JACK on 05-05-2015 21:32:06
Running from C:\Users\Jack\Desktop
Loaded Profiles: IUSR_NMPR & Jack (Available profiles: IUSR_NMPR & Jack & Administrateur)
Platform: Microsoft® Windows Vista™ Édition Intégrale Service Pack 2 (X86) OS Language: Français (France)
Internet Explorer Version 9 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(G Data Software AG) C:\Program Files\Common Files\G DATA\GDScan\GDScan.exe
(G Data Software AG) C:\Program Files\G Data\AntiVirus\AVK\AVKWCtl.exe
(Microsoft Corporation) C:\Windows\System32\SLsvc.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
() C:\Program Files\Adobe\Photoshop Elements 6.0\PhotoshopElementsFileAgent.exe
(Intel(R) Corporation) C:\Program Files\Intel\IntelDH\CCU\AlertService.exe
(G Data Software AG) C:\Program Files\Common Files\G DATA\AVKProxy\AVKProxy.exe
(G Data Software AG) C:\Program Files\G Data\AntiVirus\AVK\AVKService.exe
(CyberLink) C:\Program Files\CyberLink\PowerDVD12\Kernel\DMS\CLMSServerPDVD12.exe
() C:\Program Files\Common Files\Intel\IntelDH\NMS\AdpPlugins\DQLWinService.exe
(eBoostr.com) C:\Program Files\eBoostr\EBstrSvc.exe
(TEAC Corporation) C:\teac\iconmgr\iconmgr.exe
(Intel Corporation) C:\Windows\System32\IPROSetMonitor.exe
(CybelSoft) C:\Program Files\ma-config.com\MaConfigAgent.exe
(Intel(R) Corporation) C:\Program Files\Common Files\Intel\IntelDH\NMS\NMSCore\NMSCore.exe
(Protexis Inc.) C:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe
(Intel(R) Corporation) C:\Program Files\Intel\IntelDH\Intel Media Server\Media Server\bin\QualityManager.exe
(WiseCleaner.com) C:\Program Files\Wise\Wise Registry Cleaner\AssistService.exe
(Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE
(Intel(R) Corporation) C:\Program Files\Intel\IntelDH\Intel Media Server\Media Server\bin\issm.exe
(Intel(R) Corporation) C:\Program Files\Intel\IntelDH\Intel Media Server\Shells\MCLServiceATL.exe
(Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE
(Intel(R) Corporation) C:\Program Files\Intel\IntelDH\Intel Media Server\Shells\Remote UI Service.exe
(CyberLink Corp.) C:\Program Files\CyberLink\PowerDVD12\Kernel\DMP\CLHNServer\CLHNServiceForPowerDVD12.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(G Data Software AG) C:\Program Files\G Data\AntiVirus\AVKTray\AVKTray.exe
(G Data Software AG) C:\Program Files\Common Files\G DATA\AVKProxy\GDKBFltExe32.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe
(SFX TEAM) C:\Program Files\SuperCopier2\SuperCopier2.exe
(Stardock Corporation) C:\Program Files\Stardock\CursorFX\CursorFX.exe
(Microsoft Corporation) C:\Program Files\Windows Media Player\wmpnscfg.exe
(eBoostr.com) C:\Program Files\eBoostr\eBoostrCP.exe
() C:\Users\Jack\Documents\foxboost-0.0.1.191\foxboost\foxBoost.exe
(Creative Technology Ltd) C:\Program Files\Creative\Sound Blaster X-Fi\Volume Panel\VolPanlu.exe
(Creative Technology Ltd) C:\Windows\System32\CTxfispi.exe
() C:\Program Files\XPSMiniViewGadget\XPSMiniViewGadget.exe
(Microsoft Corporation) C:\Program Files\Windows Live\Mail\wlmail.exe
(Microsoft Corporation) C:\Program Files\Windows Live\Contacts\wlcomm.exe
(Tonec Inc.) C:\Program Files\Internet Download Manager\IDMan.exe
(Tonec Inc.) C:\Program Files\Internet Download Manager\IEMonitor.exe
(Microsoft Corporation) C:\Windows\System32\conime.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [NvBackend] => C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe [2685072 2015-05-01] (NVIDIA Corporation)
HKLM\...\Winlogon: [Userinit] C:\Windows\system32\userinit.exe,C:\Program Files\G Data\AntiVirus\AVKTray\AVKTray.exe,
HKU\S-1-5-19\...\Winlogon: [Shell] C:\Windows\explorer.exe [2926592 2009-04-11] (Microsoft Corporation) <==== ATTENTION
HKU\S-1-5-20\...\Winlogon: [Shell] C:\Windows\explorer.exe [2926592 2009-04-11] (Microsoft Corporation) <==== ATTENTION
HKU\S-1-5-21-2838385541-2699793272-862096273-1000\...\Run: [WindowsWelcomeCenter] => "rundll32.exe" oobefldr.dll,ShowWelcomeCenter
HKU\S-1-5-21-2838385541-2699793272-862096273-1000\...\Run: [swg] => C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [68856 2008-02-22] (Google Inc.)
HKU\S-1-5-21-2838385541-2699793272-862096273-1000\...\Run: [WMPNSCFG] => C:\Program Files\Windows Media Player\WMPNSCFG.exe [202240 2008-01-19] (Microsoft Corporation)
HKU\S-1-5-21-2838385541-2699793272-862096273-1000\...\Run: [SuperCopier2.exe] => C:\Program Files\SuperCopier2\SuperCopier2.exe [955392 2009-08-16] (SFX TEAM)
HKU\S-1-5-21-2838385541-2699793272-862096273-1000\...\Run: [CursorFX] => C:\Program Files\Stardock\CursorFX\CursorFX.exe [432784 2012-05-10] (Stardock Corporation)
HKU\S-1-5-21-2838385541-2699793272-862096273-1000\...\RunOnce: [InetReg] => "C:\Program Files\Creative\Enregistrement du produit\French\InetReg.exe" /PreProcess=RegFlash.exe /Delay=6
HKU\S-1-5-21-2838385541-2699793272-862096273-1000\...\RunOnce: [CTAutoUpdate] => C:\Program Files\Creative\Shared Files\Software Update\AutoUpdate.exe [430968 2009-01-15] (Creative Technology Ltd)
HKU\S-1-5-21-2838385541-2699793272-862096273-1000\...\MountPoints2: {0a42c645-56ce-11df-a39c-806e6f6e6963} - L:\Seagate\Installer\InstallSeagateManager.exe
HKU\S-1-5-21-2838385541-2699793272-862096273-1000\...\MountPoints2: {9efa1d10-88ac-11e2-987d-001d09288406} - L:\RunClubSanDisk.exe
HKU\S-1-5-21-2838385541-2699793272-862096273-1000\...\MountPoints2: {fde0d7cb-4b97-11df-ae91-806e6f6e6963} - E:\launch.exe
HKU\S-1-5-21-2838385541-2699793272-862096273-1000\...\Winlogon: [Shell] C:\Windows\explorer.exe [2926592 2009-04-11] (Microsoft Corporation) <==== ATTENTION
HKU\S-1-5-21-2838385541-2699793272-862096273-1001\...\Run: [SuperCopier2.exe] => C:\Program Files\SuperCopier2\SuperCopier2.exe [955392 2009-08-16] (SFX TEAM)
HKU\S-1-5-21-2838385541-2699793272-862096273-1001\...\Run: [CursorFX] => C:\Program Files\Stardock\CursorFX\CursorFX.exe [432784 2012-05-10] (Stardock Corporation)
HKU\S-1-5-21-2838385541-2699793272-862096273-1001\...\Run: [WMPNSCFG] => C:\Program Files\Windows Media Player\WMPNSCFG.exe [202240 2008-01-19] (Microsoft Corporation)
HKU\S-1-5-21-2838385541-2699793272-862096273-1001\...\Winlogon: [Shell] C:\Windows\explorer.exe [2926592 2009-04-11] (Microsoft Corporation) <==== ATTENTION
HKU\S-1-5-21-2838385541-2699793272-862096273-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\system32\NFSMIC~1.SCR [13687155 2009-07-13] ()
HKU\S-1-5-18\...\Winlogon: [Shell] C:\Windows\explorer.exe [2926592 2009-04-11] (Microsoft Corporation) <==== ATTENTION
Lsa: [Notification Packages] scecli C:\Program Files\WIDCOMM\Bluetooth Software\BtwProximityCP.dll
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\eBoostr Control Panel.lnk [2014-11-24]
ShortcutTarget: eBoostr Control Panel.lnk -> C:\Program Files\eBoostr\eBoostrCP.exe (eBoostr.com)
Startup: C:\Users\Jack\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\foxBoost - Raccourci.lnk [2014-06-21]
ShortcutTarget: foxBoost - Raccourci.lnk -> C:\Users\Jack\Documents\foxboost-0.0.1.191\foxboost\foxBoost.exe ()
Startup: C:\Users\Jack\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Panneau de volume Creative.lnk [2015-04-21]
ShortcutTarget: Panneau de volume Creative.lnk -> C:\Program Files\Creative\Sound Blaster X-Fi\Volume Panel\VolPanlu.exe (Creative Technology Ltd)
ShellIconOverlayIdentifiers: [IDM Shell Extension] -> {CDC95B92-E27C-4745-A8C5-64A52A78855D} => C:\Program Files\Internet Download Manager\IDMShellExt.dll [2014-04-21] (Tonec Inc.)
BootExecute: autocheck autochk * autocheck autocheck OODBSautocheck OODBSautocheck OODBSautocheck OODBSautocheck OODBSautocheck OODBSautocheck OODBSautocheck OODBSautocheck OODBSautocheck OODBSautocheck OODBSautocheck OODBSautocheck OODBSautocheck OODBSautocheck OODBSautocheck OODBSautocheck OODBSautocheck OODBSautocheck OODBSautocheck OODBSautocheck OODBSautocheck OODBSautocheck OODBSautocheck OODBSautocheck OODBSautocheck OODBSautocheck OODBSautocheck OODBSautocheck OODBSautocheck OODBSautocheck OODBSautocheck OODBSautocheck OODBSautocheck OODBSautocheck OODBSautocheck OODBSautocheck OODBSautocheck OODBSautocheck OODBSautocheck OODBSautocheck OODBSautocheck OODBSautocheck OODBSautocheck OODBSautocheck OODBSautocheck OODBSautocheck OODBSautocheck OODBSautocheck OODBSautocheck OODBSautocheck OODBSautocheck OODBSautocheck OODBSautocheck OODBSautocheck OODBSautocheck OODBSautocheck OODBSautocheck OODBSautocheck OODBSautocheck OODBSautocheck OODBSautocheck OODBSautocheck OODBSautocheck OODBSautocheck OODBSautocheck OODBSautocheck OODBSautocheck OODBSautocheck OODBSautocheck OODBSautocheck OODBSautocheck OODBSautocheck OODBSautocheck OODBSautocheck OODBSautocheck OODBSautocheck OODBSautocheck OODBS
GroupPolicy: Group Policy on Chrome detected <======= ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKU\S-1-5-21-2838385541-2699793272-862096273-1001\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
AutoConfigURL: [S-1-5-21-2838385541-2699793272-862096273-1000] => file://C:/Program Files/ChrisPC Free Ads Blocker/adsblocker.pac
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
HKU\S-1-5-21-2838385541-2699793272-862096273-1000\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-2838385541-2699793272-862096273-1000\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.google.com/ie
HKU\S-1-5-21-2838385541-2699793272-862096273-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://fr.msn.com/?ocid=iehp
HKU\S-1-5-21-2838385541-2699793272-862096273-1001\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://fr.msn.com/?ocid=iehp
HKU\S-1-5-21-2838385541-2699793272-862096273-1001\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
URLSearchHook: HKU\S-1-5-21-2838385541-2699793272-862096273-1000 - (No Name) - {472734EA-242A-422b-ADF8-83D1E48CC825} - No File
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-2838385541-2699793272-862096273-1000 -> ToolbarSearchProviderProgress {96bd48dd-741b-41ae-ac4a-aff96ba00f7e}
SearchScopes: HKU\S-1-5-21-2838385541-2699793272-862096273-1000 -> {2AEE2147-E10B-4922-AAC3-7A016DDBEAA3} URL = http://www.google.com/search?q={searchTerms}&rlz=1I7DDFR_fr
SearchScopes: HKU\S-1-5-21-2838385541-2699793272-862096273-1001 -> _tmp URL = http://www.google.com/search?q={searchTerms}&rlz=1I7DDFR_fr
SearchScopes: HKU\S-1-5-21-2838385541-2699793272-862096273-1001 -> {2AEE2147-E10B-4922-AAC3-7A016DDBEAA3} URL = http://www.google.com/search?q={searchTerms}&rlz=1I7DDFR_fr
BHO: IDM integration (IDMIEHlprObj Class) -> {0055C089-8582-441B-A0BF-17B458C2A3A8} -> C:\Program Files\Internet Download Manager\IDMIECC.dll [2015-02-21] (Internet Download Manager, Tonec Inc.)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2015-03-03] (Google Inc.)
Toolbar: HKU\.DEFAULT -> No Name - {71576546-354D-41C9-AAE8-31F2EC22BF0D} - No File
Toolbar: HKU\.DEFAULT -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2015-03-03] (Google Inc.)
Toolbar: HKU\S-1-5-21-2838385541-2699793272-862096273-1000 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2015-03-03] (Google Inc.)
Toolbar: HKU\S-1-5-21-2838385541-2699793272-862096273-1000 -> No Name - {71576546-354D-41C9-AAE8-31F2EC22BF0D} - No File
Toolbar: HKU\S-1-5-21-2838385541-2699793272-862096273-1000 -> No Name - {DB87BFA2-A2E3-451E-8E5A-C89982D87CBF} - No File
Toolbar: HKU\S-1-5-21-2838385541-2699793272-862096273-1000 -> No Name - {472734EA-242A-422B-ADF8-83D1E48CC825} - No File
Toolbar: HKU\S-1-5-21-2838385541-2699793272-862096273-1000 -> No Name - {B99F805C-F0B1-48EA-8C8B-753BFCBED913} - No File
Toolbar: HKU\S-1-5-21-2838385541-2699793272-862096273-1000 -> No Name - {8B79EE88-E62D-4AA8-B530-CC357BA112B7} - No File
Toolbar: HKU\S-1-5-21-2838385541-2699793272-862096273-1000 -> No Name - {424C542D-5637-006A-76A7-7A786E7484D7} - No File
Toolbar: HKU\S-1-5-21-2838385541-2699793272-862096273-1000 -> No Name - {5348442D-5637-006A-76A7-7A786E7484D7} - No File
DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} http://download.eset.com/special/eos/OnlineScanner.cab
DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
Handler: ms-itss - {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Program Files\Common Files\Microsoft Shared\Information Retrieval\msitss.dll [2006-06-05] (Microsoft Corporation)
ShellExecuteHooks: DVDIdleShell Class - {93994DE8-8239-4655-B1D1-5F4E91300429} - C:\Program Files\DVD Region+CSS Free\DVDShell.dll [49152 2004-10-09] (Fengtao Software Inc.)
ShellExecuteHooks: - {81559C35-8464-49F7-BB0E-07A383BEF910} - No File [ ]
Winsock: Catalog5 08 C:\Program Files\Bonjour\mdnsNSP.dll [152864 2010-05-18] (Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 212.27.40.241 212.27.40.240
Tcpip\..\Interfaces\{C9B1F236-BBF0-4A34-8491-7F8885D61C07}: [NameServer] 212.27.54.252,212.27.53.252

FireFox:
========
FF ProfilePath: C:\Users\Jack\AppData\Roaming\Mozilla\Firefox\Profiles\qyrq3gy6.default
FF NewTab: https://www.google.fr/
FF Homepage: https://www.google.fr/
FF NetworkProxy: "user_pref("extensions.preferencesmonitor.revonstrg", "{\"extensions.autoDisableScopes\":15,\"general.useragent.locale\":\"fr\",\"general.useragent.compatMode.firefox\":false,\"browser.newtab.url\":\"https://www.google.fr/\",\"browser.startup.homepage\":\"https://www.google.fr/\",\"browser.newtab.preload\":true,\"general.useragent.site_specific_overrides\":true,\"network.proxy.autoconfig_url\":\"http://proxyfreeyoutube.free.fr/youtube-ovh.pac\",\"browser.startup.page\":1,\"keyword.enabled\":true}");
FF NetworkProxy: "autoconfig_url", "http://proxyfreeyoutube.free.fr/youtube-ovh.pac"
FF NetworkProxy: "type", 2
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_17_0_0_169.dll [2015-04-15] ()
FF Plugin: @microsoft.com/WPF,version=3.5 -> c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll [2008-07-30] (Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-07] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-07] (Google Inc.)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2014-08-05] (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Users\Jack\AppData\Roaming\mozilla\plugins\np-mswmp.dll [2009-09-25] (Microsoft Corporation)
FF Extension: Click&Clean - C:\Users\Jack\AppData\Roaming\Mozilla\Firefox\Profiles\qyrq3gy6.default\Extensions\clickclean@hotcleaner.com [2015-04-11]
FF Extension: Blur (Formerly DoNotTrackMe) - C:\Users\Jack\AppData\Roaming\Mozilla\Firefox\Profiles\qyrq3gy6.default\Extensions\donottrackplus@abine.com [2015-02-28]
FF Extension: Fast Translation - C:\Users\Jack\AppData\Roaming\Mozilla\Firefox\Profiles\qyrq3gy6.default\Extensions\fasttrans@kemot [2015-04-13]
FF Extension: Favicon Restorer - C:\Users\Jack\AppData\Roaming\Mozilla\Firefox\Profiles\qyrq3gy6.default\Extensions\faviconrestorer@masserog.it [2015-02-28]
FF Extension: HTTPS-Everywhere - C:\Users\Jack\AppData\Roaming\Mozilla\Firefox\Profiles\qyrq3gy6.default\Extensions\https-everywhere@eff.org [2015-03-29]
FF Extension: FT DeepDark - C:\Users\Jack\AppData\Roaming\Mozilla\Firefox\Profiles\qyrq3gy6.default\Extensions\{77d2ed30-4cd2-11e0-b8af-0800200c9a66} [2015-04-15]
FF Extension: Disconnect - C:\Users\Jack\AppData\Roaming\Mozilla\Firefox\Profiles\qyrq3gy6.default\Extensions\2.0@disconnect.me.xpi [2015-02-28]
FF Extension: Adblock Plus Pop-up Addon - C:\Users\Jack\AppData\Roaming\Mozilla\Firefox\Profiles\qyrq3gy6.default\Extensions\adblockpopups@jessehakanen.net.xpi [2015-02-28]
FF Extension: Custom New Tab - C:\Users\Jack\AppData\Roaming\Mozilla\Firefox\Profiles\qyrq3gy6.default\Extensions\CNT@ednovak.net.xpi [2015-02-28]
FF Extension: Enforce Encryption - C:\Users\Jack\AppData\Roaming\Mozilla\Firefox\Profiles\qyrq3gy6.default\Extensions\enforceencryption@palant.de.xpi [2015-03-06]
FF Extension: Ghostery - C:\Users\Jack\AppData\Roaming\Mozilla\Firefox\Profiles\qyrq3gy6.default\Extensions\firefox@ghostery.com.xpi [2015-04-18]
FF Extension: YouTube Enhancer Plus - C:\Users\Jack\AppData\Roaming\Mozilla\Firefox\Profiles\qyrq3gy6.default\Extensions\firefoxaddon@youtubeenhancer.com.xpi [2015-05-02]
FF Extension: Google favicons - C:\Users\Jack\AppData\Roaming\Mozilla\Firefox\Profiles\qyrq3gy6.default\Extensions\googlefavicons@everhelper.me.xpi [2015-02-28]
FF Extension: Image2Icon - C:\Users\Jack\AppData\Roaming\Mozilla\Firefox\Profiles\qyrq3gy6.default\Extensions\img2ico@mingyi.org.xpi [2015-02-28]
FF Extension: DeferredTo - C:\Users\Jack\AppData\Roaming\Mozilla\Firefox\Profiles\qyrq3gy6.default\Extensions\jid0-7jRA83vLgp1WJxyHcbp43vxnnzs@jetpack.xpi [2015-03-07]
FF Extension: YouTube™ HD Plus - C:\Users\Jack\AppData\Roaming\Mozilla\Firefox\Profiles\qyrq3gy6.default\Extensions\jid1-wkCmfgboni3B1Q@jetpack.xpi [2015-04-12]
FF Extension: google-no-tracking-url - C:\Users\Jack\AppData\Roaming\Mozilla\Firefox\Profiles\qyrq3gy6.default\Extensions\jid1-zUrvDCat3xoDSQ@jetpack.xpi [2015-02-28]
FF Extension: Places Maintenance - C:\Users\Jack\AppData\Roaming\Mozilla\Firefox\Profiles\qyrq3gy6.default\Extensions\places-maintenance@bonardo.net.xpi [2015-02-28]
FF Extension: PlacesCleaner - C:\Users\Jack\AppData\Roaming\Mozilla\Firefox\Profiles\qyrq3gy6.default\Extensions\PlacesCleaner@sto.tw.xpi [2015-03-29]
FF Extension: Search in YouTube - C:\Users\Jack\AppData\Roaming\Mozilla\Firefox\Profiles\qyrq3gy6.default\Extensions\searchyoutube@searchyoutube.fr.xpi [2015-02-28]
FF Extension: Smart Referer - C:\Users\Jack\AppData\Roaming\Mozilla\Firefox\Profiles\qyrq3gy6.default\Extensions\smart-referer@meh.paranoid.pk.xpi [2015-02-28]
FF Extension: Speed DNS - C:\Users\Jack\AppData\Roaming\Mozilla\Firefox\Profiles\qyrq3gy6.default\Extensions\speeddns@gmail.com.xpi [2015-03-02]
FF Extension: Tab Scope - C:\Users\Jack\AppData\Roaming\Mozilla\Firefox\Profiles\qyrq3gy6.default\Extensions\tabscope@xuldev.org.xpi [2015-03-05]
FF Extension: Vacuum Places Improved - C:\Users\Jack\AppData\Roaming\Mozilla\Firefox\Profiles\qyrq3gy6.default\Extensions\VacuumPlacesImproved@lultimouomo-gmail.com.xpi [2015-02-28]
FF Extension: Yet Another Smooth Scrolling - C:\Users\Jack\AppData\Roaming\Mozilla\Firefox\Profiles\qyrq3gy6.default\Extensions\yetanothersmoothscrolling@kataho.xpi [2015-02-28]
FF Extension: Webutation - C:\Users\Jack\AppData\Roaming\Mozilla\Firefox\Profiles\qyrq3gy6.default\Extensions\{15fe27f3-e5ab-2d59-4c5c-dadc7945bdbd}.xpi [2015-02-28]
FF Extension: Black Youtube Theme - C:\Users\Jack\AppData\Roaming\Mozilla\Firefox\Profiles\qyrq3gy6.default\Extensions\{2c93446d-612b-416d-9af0-b7355797b611}.xpi [2015-02-28]
FF Extension: Linkification - C:\Users\Jack\AppData\Roaming\Mozilla\Firefox\Profiles\qyrq3gy6.default\Extensions\{35106bca-6c78-48c7-ac28-56df30b51d2a}.xpi [2015-02-28]
FF Extension: YouTube High Definition - C:\Users\Jack\AppData\Roaming\Mozilla\Firefox\Profiles\qyrq3gy6.default\Extensions\{7b1bf0b6-a1b9-42b0-b75d-252036438bdc}.xpi [2015-02-28]
FF Extension: deskCut - C:\Users\Jack\AppData\Roaming\Mozilla\Firefox\Profiles\qyrq3gy6.default\Extensions\{9125C9CB-BE2B-4389-A0C7-46A4BDD46AEA}.xpi [2015-02-28]
FF Extension: WikiSearch - C:\Users\Jack\AppData\Roaming\Mozilla\Firefox\Profiles\qyrq3gy6.default\Extensions\{c35a368f-a7bb-46a4-87e2-48e4273c5848}.xpi [2015-03-18]
FF Extension: Fasterfox - C:\Users\Jack\AppData\Roaming\Mozilla\Firefox\Profiles\qyrq3gy6.default\Extensions\{c36177c0-224a-11da-8cd6-0800200c9a91}.xpi [2015-02-28]
FF Extension: Adblock Plus - C:\Users\Jack\AppData\Roaming\Mozilla\Firefox\Profiles\qyrq3gy6.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2015-02-28]
FF Extension: BetterPrivacy - C:\Users\Jack\AppData\Roaming\Mozilla\Firefox\Profiles\qyrq3gy6.default\Extensions\{d40f5e7b-d2cf-4856-b441-cc613eeffbe3}.xpi [2015-02-28]
FF Extension: Youtube Video Replay - C:\Users\Jack\AppData\Roaming\Mozilla\Firefox\Profiles\qyrq3gy6.default\Extensions\{e1aaa9f8-4500-47f1-9a0a-b02bd60e4076}.xpi [2015-02-28]
FF Extension: Greasemonkey - C:\Users\Jack\AppData\Roaming\Mozilla\Firefox\Profiles\qyrq3gy6.default\Extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}.xpi [2015-02-28]
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF Extension: Microsoft .NET Framework Assistant - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2014-02-27]
FF HKU\S-1-5-21-2838385541-2699793272-862096273-1001\...\Firefox\Extensions: [mozilla_cc@internetdownloadmanager.com] - C:\Users\Jack\AppData\Roaming\IDM\idmmzcc5
FF Extension: IDM CC - C:\Users\Jack\AppData\Roaming\IDM\idmmzcc5 [2015-04-03]
FF HKU\S-1-5-21-2838385541-2699793272-862096273-1001\...\SeaMonkey\Extensions: [mozilla_cc@internetdownloadmanager.com] - C:\Users\Jack\AppData\Roaming\IDM\idmmzcc5

Chrome:
=======
CHR dev: Chrome dev build detected! <======= ATTENTION
CHR Profile: C:\Users\Jack\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Silver Bird) - C:\Users\Jack\AppData\Local\Google\Chrome\User Data\Default\Extensions\encaiiljifbdbjlphpgpiimidegddhic [2014-02-01]
CHR Extension: (Share the Wealth) - C:\Users\Jack\AppData\Local\Google\Chrome\User Data\Default\Extensions\lijicndbkjoplmhnclmoahmcaffaeapp [2014-02-01]
CHR HKLM\...\Chrome\Extension: [gihdacljncbollnfoohaocdcijoabdgb] - No Path Or update_url value
CHR HKLM\...\Chrome\Extension: [kagcflgbhabocbhgjodhbdhomklhfdio] - No Path Or update_url value
CHR HKLM\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files\Internet Download Manager\IDMGCExt.crx [2015-04-20]

========================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdobeActiveFileMonitor6.0; C:\Program Files\Adobe\Photoshop Elements 6.0\PhotoshopElementsFileAgent.exe [124832 2007-09-11] ()
R2 AlertService; C:\Program Files\Intel\IntelDH\CCU\AlertService.exe [223448 2007-06-27] (Intel(R) Corporation)
R2 AVKProxy; C:\Program Files\Common Files\G Data\AVKProxy\AVKProxy.exe [2527864 2015-03-04] (G Data Software AG)
R2 AVKService; C:\Program Files\G Data\AntiVirus\AVK\AVKService.exe [965240 2015-02-20] (G Data Software AG)
R2 AVKWCtl; C:\Program Files\G Data\AntiVirus\AVK\AVKWCtl.exe [2876888 2015-04-07] (G Data Software AG)
R2 CLHNServiceForPowerDVD12; C:\Program Files\CyberLink\PowerDVD12\Kernel\DMP\CLHNServer\CLHNServiceForPowerDVD12.exe [89864 2013-11-29] (CyberLink Corp.)
S3 Creative ALchemy AL6 Licensing Service; C:\Program Files\Common Files\Creative Labs Shared\Service\AL6Licensing.exe [79360 2013-04-20] (Creative Labs) [File not signed]
S3 Creative Audio Engine Licensing Service; C:\Program Files\Common Files\Creative Labs Shared\Service\CTAELicensing.exe [79360 2010-05-14] (Creative Labs) [File not signed]
S3 CTAudSvcService; C:\Program Files\Creative\Shared Files\CTAudSvc.exe [307200 2009-02-23] (Creative Technology Ltd) [File not signed]
S3 CyberLink PowerDVD 12 Media Server Monitor Service; C:\Program Files\CyberLink\PowerDVD12\Kernel\DMS\CLMSMonitorServicePDVD12.exe [77576 2013-11-29] (CyberLink)
R2 CyberLink PowerDVD 12 Media Server Service; C:\Program Files\CyberLink\PowerDVD12\Kernel\DMS\CLMSServerPDVD12.exe [294664 2013-11-29] (CyberLink)
S4 DellDataVault; C:\Program Files\Dell\DellDataVault\DellDataVault.exe [1942224 2015-01-31] (Dell Inc.)
S4 DellDataVaultWiz; C:\Program Files\Dell\DellDataVault\DellDataVaultWiz.exe [183504 2015-01-31] (Dell Inc.)
S3 DHTRACE; C:\Program Files\Common Files\Intel\IntelDH\bin\DHTraceController.exe [39640 2007-06-27] (Intel(R) Corporation)
S3 Diskeeper; C:\Program Files\Condusiv Technologies\Diskeeper\DkService.exe [2163064 2012-07-27] (Condusiv Technologies)
R2 DQLWinService; C:\Program Files\Common Files\Intel\IntelDH\NMS\AdpPlugins\DQLWinService.exe [208896 2007-02-12] () [File not signed]
R2 EBOOSTRSVC; C:\Program Files\eBoostr\EBstrSvc.exe [651496 2014-11-24] (eBoostr.com) [File not signed]
S3 FLEXnet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [654848 2008-02-22] (Macrovision Europe Ltd.) [File not signed]
S4 FreeAgentGoNext Service; C:\Program Files\Seagate\SeagateManager\Sync\FreeAgentService.exe [189736 2009-09-25] (Seagate Technology LLC)
R3 GDScan; C:\Program Files\Common Files\G Data\GDScan\GDScan.exe [789112 2015-03-04] (G Data Software AG)
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [919184 2015-05-01] (NVIDIA Corporation)
S3 GoogleDesktopManager-051210-111108; C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe [30192 2010-06-07] (Google)
R2 iconmgr; C:\teac\iconmgr\iconmgr.exe [110592 2009-03-20] (TEAC Corporation) [File not signed]
S3 IDriverT; C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe [73728 2004-10-22] (Macrovision Corporation) [File not signed]
R2 Intel(R) PROSet Monitoring Service; C:\Windows\system32\IProsetMonitor.exe [121088 2013-02-23] (Intel Corporation)
R2 ISSM; C:\Program Files\Intel\IntelDH\Intel Media Server\Media Server\bin\ISSM.exe [59096 2007-06-27] (Intel(R) Corporation)
S4 M1 Server; C:\Program Files\Intel\IntelDH\Intel Media Server\Media Server\bin\mediaserver.exe [268504 2007-06-27] ()
R2 MaConfigAgent; C:\Program Files\ma-config.com\MaConfigAgent.exe [2117960 2015-04-10] (CybelSoft)
S2 MBAMService; C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe [1080120 2015-04-14] (Malwarebytes Corporation)
R2 MCLServiceATL; C:\Program Files\Intel\IntelDH\Intel Media Server\Shells\MCLServiceATL.exe [157912 2007-06-27] (Intel(R) Corporation)
R2 NMSCore; C:\Program Files\Common Files\Intel\IntelDH\NMS\NMSCore\NMSCore.exe [317656 2007-06-27] (Intel(R) Corporation)
R2 NvNetworkService; C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe [1884304 2015-05-01] (NVIDIA Corporation)
R2 QualityManager; C:\Program Files\Intel\IntelDH\Intel Media Server\Media Server\bin\qualitymanager.exe [272600 2007-06-27] (Intel(R) Corporation)
R2 Remote UI Service; C:\Program Files\Intel\IntelDH\Intel Media Server\Shells\Remote UI Service.exe [446680 2007-06-27] (Intel(R) Corporation)
S3 RichVideo; C:\Program Files\CyberLink\Shared Files\RichVideo.exe [241734 2008-02-14] () [File not signed]
S2 RoxLiveShare10; C:\Program Files\Common Files\Roxio Shared\10.0\SharedCOM\RoxLiveShare10.exe [309744 2007-12-14] (Sonic Solutions)
R2 ShellHWDetection; C:\Windows\System32\shsvcs.dll [247296 2015-05-02] (Microsoft Corporation) [File not signed]
R2 Themes; C:\Windows\system32\shsvcs.dll [247296 2015-05-02] (Microsoft Corporation) [File not signed]
R2 wasnotify; C:\Program Files\Wise\Wise Registry Cleaner\AssistService.exe [643392 2015-04-28] (WiseCleaner.com)
S4 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [272952 2008-01-19] (Microsoft Corporation)
S3 wltrysvc; C:\Program Files\Broadcom\Broadcom 802.11 Network Adapter\bcmwltry.exe [5127168 2014-10-30] (Broadcom Corporation) [File not signed]
S2 SessionLauncher; No ImagePath
S3 sprtsvc_dellsupportcenter; No ImagePath

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

S3 BCM42RLY; C:\Windows\System32\drivers\BCM42RLY.sys [19664 2014-10-30] (Broadcom Corporation)
R0 Bhbase; C:\Windows\System32\drivers\Bhbase.sys [46440 2015-04-19] (Baidu, Inc.)
R3 btwampfl; C:\Windows\system32\drivers\btwampfl.sys [504360 2012-04-01] (Broadcom Corporation.)
S3 cpudrv; C:\Program Files\SystemRequirementsLab\cpudrv.sys [11336 2009-12-18] ()
R3 DDDriver; C:\Windows\System32\drivers\DDDriver32Dcsa.sys [20688 2015-01-31] (Dell Computer Corporation)
R3 DellProf; C:\Windows\System32\drivers\DellProf.sys [19984 2015-01-31] (Dell Computer Corporation)
R0 DKDFM; C:\Windows\System32\drivers\DKDFM.sys [35120 2012-04-05] (Condusiv Technologies)
S3 DKRtWrt; C:\Windows\System32\DRIVERS\DKRtWrt.sys [44496 2012-06-18] (Condusiv Technologies)
R0 DKTLFSMF; C:\Windows\System32\drivers\DKTLFSMF.sys [85328 2012-07-09] (Condusiv Technologies)
R0 eBoost; C:\Windows\System32\drivers\eBoost.sys [157928 2013-08-27] (eBoostr.com)
R0 GDBehave; C:\Windows\System32\drivers\GDBehave.sys [108032 2015-03-31] (G Data Software AG)
R3 GDKBB; C:\Windows\system32\drivers\GDKBB32.sys [24192 2015-03-31] (G Data Software AG)
R1 GDKBFlt; C:\Windows\system32\drivers\GDKBFlt32.sys [20352 2015-03-31] (G Data Software AG)
R1 GDMnIcpt; C:\Windows\system32\drivers\MiniIcpt.sys [161792 2015-03-31] (G Data Software AG)
R3 GDPkIcpt; C:\Windows\system32\drivers\PktIcpt.sys [73216 2015-03-31] (G Data Software AG)
R1 gdwfpcd; C:\Windows\System32\drivers\gdwfpcd32.sys [53248 2015-04-16] (G Data Software AG)
R1 GRD; C:\Windows\system32\drivers\GRD.sys [29528 2015-03-31] (G Data Software)
R1 HookCentre; C:\Windows\system32\drivers\HookCentre.sys [87040 2015-03-31] (G Data Software AG)
R0 hotcore3; C:\Windows\System32\DRIVERS\hotcore3.sys [40496 2008-12-13] (Paragon Software Group)
R0 iaStorA; C:\Windows\System32\DRIVERS\iaStorA.sys [1935600 2015-01-27] (Intel Corporation)
R0 iaStorF; C:\Windows\System32\DRIVERS\iaStorF.sys [27376 2015-01-27] (Intel Corporation)
R3 IntelDH; C:\Windows\System32\Drivers\IntelDH.sys [5632 2008-02-22] (Intel Corporation)
S3 LazerUsb; C:\Windows\System32\DRIVERS\LazerUsb.sys [5734400 2007-08-29] (Lumanate Inc.)
S3 ma-config_x86; C:\Program Files\ma-config.com\Drivers\ma-config_x86.sys [16160 2014-02-24] (CybelSoft)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [23256 2015-04-14] (Malwarebytes Corporation)
S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [51928 2015-04-14] (Malwarebytes Corporation)
U4 msahci; No ImagePath
R0 MxEFUF; C:\Windows\System32\DRIVERS\MxEFUF32.sys [108544 2011-08-15] (Matrox Graphics Inc.) [File not signed]
S3 NAL; C:\Windows\system32\Drivers\iqvw32.sys [31048 2013-02-21] (Intel Corporation )
R2 nmsunidr; C:\Windows\System32\DRIVERS\nmsunidr.sys [5376 2007-02-18] (Gteko Ltd.)
S1 NNSHTTPS; C:\Windows\System32\DRIVERS\NNSHttps.sys [95584 2013-01-09] (Panda Security, S.L.)
R2 ntk_PowerDVD12; C:\Program Files\CyberLink\PowerDVD12\Kernel\DMP\CLHNServer\ntk_PowerDVD12.sys [74952 2013-03-15] (Cyberlink Corp.)
S3 Passthru; C:\Windows\System32\DRIVERS\PPFlt.sys [26912 2013-01-17] ()
R2 PCTAppEvent; C:\Windows\system32\drivers\PCTAppEvent.sys [163288 2012-10-22] (PC Tools)
S3 PCTBD; C:\Windows\System32\Drivers\PCTBD.sys [62688 2012-10-23] (PC Tools)
R0 PCTCore; C:\Windows\System32\drivers\PCTCore.sys [368616 2012-10-22] (PC Tools)
R0 pctDS; C:\Windows\System32\drivers\pctDS.sys [342168 2012-02-28] (PC Tools)
R0 pctEFA; C:\Windows\System32\drivers\pctEFA.sys [909728 2012-02-28] (PC Tools)
S3 PCTFW-PacketFilter; C:\Windows\system32\drivers\pctNdis-PacketFilter.sys [92608 2013-04-21] (PC Tools)
R1 pctgntdi; C:\Windows\System32\drivers\pctgntdi.sys [260760 2012-10-31] (PC Tools)
R1 pctNdisLW; C:\Windows\System32\DRIVERS\pctNdisLW.sys [60128 2013-04-21] (PC Tools)
S3 pctplfw; C:\Windows\System32\drivers\pctplfw.sys [128024 2013-04-21] (PC Tools)
S3 pctplsg; C:\Windows\System32\drivers\pctplsg.sys [71752 2012-11-01] (PC Tools)
S3 pctplsm; C:\Windows\System32\drivers\pctplsm.sys [68272 2012-11-01] (PC Tools)
R1 PCTSD; C:\Windows\System32\Drivers\PCTSD.sys [202280 2012-11-01] (PC Tools)
R3 PrivacyProtectorMP; C:\Windows\System32\DRIVERS\PPFlt.sys [26912 2013-01-17] ()
R3 SmbDrvI; C:\Windows\System32\DRIVERS\Smb_driver_Intel.sys [25328 2014-04-12] (Synaptics Incorporated)
S3 tap-tb-0901; C:\Windows\System32\DRIVERS\tap-tb-0901.sys [33280 2015-02-11] (The OpenVPN Project)
S3 tap0901; C:\Windows\System32\DRIVERS\tap0901.sys [35288 2013-08-22] (The OpenVPN Project)
R0 TfFsMon; C:\Windows\System32\drivers\TfFsMon.sys [55008 2012-10-31] (PC Tools)
S3 TfNetMon; C:\Windows\system32\drivers\TfNetMon.sys [36456 2012-10-31] (PC Tools)
R0 TFSysMon; C:\Windows\System32\drivers\TfSysMon.sys [577176 2012-10-31] (PC Tools)
R2 tifsfilter; C:\Windows\System32\DRIVERS\tifsfilt.sys [44384 2010-08-22] (Acronis)
S3 TSHWMDTCP; C:\Program Files\Intel\IntelDH\Intel Media Server\Media Server\bin\TSHWMDTCP.sys [14552 2007-06-27] ()
S3 WiseHDInfo; C:\Windows\WiseHDInfo32.dll [11816 2015-03-23] (wisecleaner.com) [File not signed]
R1 WiseTDIFw; C:\Windows\WiseTDIFw.sys [41512 2015-03-23] (WiseCleaner.com) [File not signed]
R2 {73526619-C24F-470B-9BED-53D455FBB5C6}; C:\Program Files\CyberLink\PowerDVD12\Common\NavFilter\000.fcl [26824 2013-11-29] (CyberLink Corp.)
S1 ArcSec; No ImagePath
S4 blbdrive; No ImagePath
S3 BprotectEx; \??\C:\Windows\System32\drivers\BprotectEx.sys [X]
S3 CT20XUT.DLL; No ImagePath
S3 CTEXFIFX.DLL; No ImagePath
S3 CTHWIUT.DLL; No ImagePath
U3 DfSdkS; No ImagePath
S3 IpInIp; No ImagePath
S3 NwlnkFlt; No ImagePath
S3 NwlnkFwd; No ImagePath
S3 PcdrNdisuio; No ImagePath
S3 PCFApiUtil; \??\C:\Program Files\PC Faster\5.1.0.0\PCFApiUtil.sys [X]
S3 tapSF0901; system32\DRIVERS\tapSF0901.sys [X]
S3 udsstub; system32\DRIVERS\udsstub.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== Three Months Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-05-05 21:32 - 2015-05-05 21:33 - 00035742 _____ () C:\Users\Jack\Desktop\FRST.txt
2015-05-05 21:31 - 2015-05-05 21:32 - 00000000 ____D () C:\FRST
2015-05-05 21:29 - 2015-05-05 21:29 - 01140736 _____ (Farbar) C:\Users\Jack\Desktop\FRST.exe
2015-05-05 21:05 - 2015-05-05 21:05 - 00000000 ____D () C:\Windows\LastGood
2015-05-05 20:59 - 2015-05-05 20:59 - 00083216 _____ () C:\Users\Jack\AppData\Local\GDIPFONTCACHEV1.DAT
2015-05-05 20:53 - 2015-05-05 20:53 - 00364008 _____ () C:\Windows\system32\FNTCACHE.DAT
2015-05-05 20:23 - 2015-05-05 20:24 - 14838382 _____ ( ) C:\Users\Jack\Desktop\klcp_update_1112_20150501.exe
2015-05-05 15:59 - 2015-05-05 15:59 - 00000678 _____ () C:\Users\Jack\Desktop\CTR.txt
2015-05-05 14:48 - 2015-05-05 14:48 - 00000000 ____D () C:\Users\Jack\AppData\Local\Apple
2015-05-05 13:28 - 2015-05-05 13:13 - 00001690 _____ () C:\Users\Jack\Desktop\AdwCleaner[S1].txt
2015-05-05 13:07 - 2015-05-05 13:13 - 00000000 ____D () C:\AdwCleaner
2015-05-05 13:06 - 2015-05-05 13:06 - 02204160 _____ () C:\Users\Jack\Desktop\adwcleaner_4.203.exe
2015-05-05 13:00 - 2015-05-05 13:00 - 00005285 _____ () C:\Users\Jack\Desktop\ZHPFixReport.txt
2015-05-05 12:24 - 2015-05-05 12:24 - 00000000 ____D () C:\Users\Public\Documents\PC Faster
2015-05-04 18:43 - 2015-05-04 18:43 - 00179741 _____ () C:\Users\Jack\Desktop\ZHPDiag.txt
2015-05-04 18:42 - 2015-05-04 18:42 - 00000512 _____ () C:\PhysicalDisk0_MBR.bin
2015-05-04 18:22 - 2015-05-04 18:42 - 00000000 ____D () C:\Program Files\ZHPDiag
2015-05-04 18:22 - 2015-05-04 18:22 - 00001730 _____ () C:\Users\Jack\Desktop\ZHPFix.lnk
2015-05-04 18:22 - 2015-05-04 18:22 - 00001607 _____ () C:\Users\Jack\Desktop\ZHPDiag.lnk
2015-05-04 18:22 - 2015-05-04 18:22 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ZHP
2015-05-04 18:08 - 2015-05-05 20:53 - 00004118 _____ () C:\Windows\PFRO.log
2015-05-04 17:47 - 2015-05-04 17:47 - 06880006 _____ (Nicolas Coolman ) C:\Users\Jack\Desktop\ZHPDiag2.exe
2015-05-03 18:42 - 2015-05-03 18:43 - 37328992 _____ (Oracle Corporation) C:\Users\Jack\Desktop\jre-8u45-windows-i586_2.exe
2015-05-03 18:03 - 2015-05-03 18:03 - 00000829 _____ () C:\Users\Jack\Desktop\JavaRa.lnk
2015-05-03 18:02 - 2015-05-03 18:02 - 00000000 ____D () C:\Users\Jack\Documents\JavaRa-2.6
2015-05-03 16:19 - 2015-05-03 16:20 - 37328992 _____ (Oracle Corporation) C:\Users\Jack\Desktop\jre-8u45-windows-i586.exe
2015-05-03 14:47 - 2015-05-03 14:47 - 00000000 ____D () C:\Users\Jack\AppData\Local\Adobe
2015-05-02 15:58 - 2015-05-02 15:58 - 16467456 _____ (Microsoft Corporation) C:\Windows\system32\imageres.dll
2015-05-01 18:08 - 2015-05-01 18:10 - 00000000 ____D () C:\Program Files\SystemOptimizeExpert
2015-05-01 18:08 - 2015-05-01 18:08 - 00000934 _____ () C:\Users\Public\Desktop\System Optimize Expert.lnk
2015-05-01 18:08 - 2015-05-01 18:08 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Optimize Expert
2015-05-01 17:55 - 2015-05-01 17:56 - 00000000 ____D () C:\ProgramData\C__Program Files_SystemOptimizeExpert_SystemOptimizeExpert.exe
2015-05-01 16:47 - 2015-05-01 16:47 - 00000000 ____D () C:\Program Files\K-Lite Codec Pack(1006)
2015-05-01 16:03 - 2015-05-01 16:03 - 00000263 _____ () C:\Users\Jack\Desktop\Liste des serveurs de fichier .PAC.txt
2015-04-28 19:56 - 2015-04-28 20:03 - 00000000 ____D () C:\Users\Jack\AppData\Local\VPNium
2015-04-27 21:40 - 2015-04-27 21:40 - 00000000 ____D () C:\Users\Jack\Desktop\FrostyVPN-v2
2015-04-27 21:39 - 2015-04-27 21:39 - 01632131 _____ () C:\Users\Jack\Desktop\FrostyVPN-v2.rar
2015-04-25 15:07 - 2015-04-25 15:07 - 00000000 ____D () C:\Users\Jack\AppData\Local\Bill2_Software
2015-04-25 15:05 - 2015-04-25 15:33 - 00000000 ____D () C:\Users\Jack\AppData\Local\Bill2's Process Manager
2015-04-25 15:03 - 2015-04-25 15:03 - 01936036 _____ (Bill2 Software) C:\Users\Jack\Downloads\bill2-s-process-manager_3-4-4-0_fr_217410 [1].exe
2015-04-22 14:51 - 2015-04-22 15:23 - 00000000 ____D () C:\Users\Jack\AppData\Local\NVIDIA
2015-04-22 14:51 - 2015-04-22 14:51 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2015-04-21 10:53 - 2015-04-21 10:54 - 00000000 ____D () C:\Program Files\Mozilla Firefox
2015-04-20 14:53 - 2015-04-18 03:06 - 00122432 _____ (Tonec Inc.) C:\Windows\system32\Drivers\idmwfp.sys
2015-04-19 23:19 - 2015-04-19 23:19 - 00000000 ____D () C:\Users\Public\Documents\Baidu Security
2015-04-19 23:11 - 2015-04-19 23:11 - 00046440 _____ (Baidu, Inc.) C:\Windows\system32\Drivers\Bhbase.sys
2015-04-19 23:09 - 2015-04-19 23:09 - 00000000 ____D () C:\Users\Public\Documents\Baidu
2015-04-19 23:09 - 2015-04-19 23:09 - 00000000 ____D () C:\ProgramData\Baidu Security
2015-04-19 23:09 - 2015-04-19 23:09 - 00000000 ____D () C:\Program Files\Baidu Security
2015-04-19 23:08 - 2015-04-19 23:08 - 01603616 _____ (Baidu Inc.) C:\Users\Jack\Downloads\baidu-pc-faster_5-1-3-111858_fr_431313 [1].exe
2015-04-16 20:32 - 2015-04-16 20:32 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\G DATA ANTIVIRUS
2015-04-15 22:49 - 2015-01-27 20:33 - 01935600 _____ (Intel Corporation) C:\Windows\system32\Drivers\iaStorA.sys
2015-04-15 22:49 - 2015-01-27 20:33 - 00027376 _____ (Intel Corporation) C:\Windows\system32\Drivers\iaStorF.sys
2015-04-15 16:19 - 2015-03-09 03:01 - 01249280 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2015-04-15 16:11 - 2015-03-14 04:21 - 01205168 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2015-04-15 16:11 - 2015-03-13 03:51 - 03604920 _____ (Microsoft Corporation) C:\Windows\system32\ntkrnlpa.exe
2015-04-15 16:11 - 2015-03-13 03:51 - 03552184 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2015-04-15 16:11 - 2015-03-05 04:32 - 00244152 _____ (Microsoft Corporation) C:\Windows\system32\clfs.sys
2015-04-15 16:11 - 2015-03-05 04:24 - 00297984 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2015-04-15 16:11 - 2015-03-05 04:23 - 00057344 _____ (Microsoft Corporation) C:\Windows\system32\clfsw32.dll
2015-04-15 16:06 - 2015-03-10 01:06 - 12377600 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2015-04-15 16:06 - 2015-03-10 01:03 - 00367104 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2015-04-15 16:06 - 2015-03-10 01:02 - 01810944 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2015-04-15 16:06 - 2015-03-10 01:00 - 09747968 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2015-04-15 16:06 - 2015-03-10 00:57 - 01139200 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2015-04-15 16:06 - 2015-03-10 00:57 - 01129472 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2015-04-15 16:06 - 2015-03-10 00:56 - 01803264 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2015-04-15 16:06 - 2015-03-10 00:56 - 01427968 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2015-04-15 16:06 - 2015-03-10 00:56 - 00717824 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2015-04-15 16:06 - 2015-03-10 00:56 - 00421376 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2015-04-15 16:06 - 2015-03-10 00:56 - 00231936 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2015-04-15 16:06 - 2015-03-10 00:56 - 00065024 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2015-04-15 16:06 - 2015-03-10 00:55 - 02382848 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2015-04-15 16:06 - 2015-03-10 00:55 - 00607744 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2015-04-15 16:06 - 2015-03-10 00:55 - 00353792 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2015-04-15 16:06 - 2015-03-10 00:55 - 00223232 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2015-04-15 16:06 - 2015-03-10 00:55 - 00176640 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2015-04-15 16:06 - 2015-03-10 00:55 - 00142848 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2015-04-15 16:06 - 2015-03-10 00:55 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2015-04-15 16:06 - 2015-03-10 00:55 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2015-04-15 16:06 - 2015-03-10 00:55 - 00011776 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2015-04-15 16:06 - 2015-03-10 00:55 - 00010752 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2015-04-11 16:08 - 2015-04-11 16:08 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ma-config.com
2015-04-07 19:17 - 2015-04-07 19:17 - 00000000 ____D () C:\ProgramData\488518100128492180
2015-04-07 18:15 - 2015-05-05 13:00 - 00000000 ____D () C:\Users\Jack\AppData\Roaming\ZHP
2015-04-07 15:51 - 2015-04-07 15:59 - 00000000 ____D () C:\Users\Jack\AppData\Roaming\Hideman
2015-04-05 00:28 - 2015-04-05 00:28 - 00003890 _____ () C:\Windows\system32\ipconfig_results.txt
2015-04-04 23:41 - 2015-04-05 01:39 - 00000000 ____D () C:\Users\Jack\AppData\Roaming\TunnelBear
2015-04-03 23:55 - 2015-04-04 00:06 - 00000000 ____D () C:\ProgramData\spotflux
2015-03-31 21:56 - 2015-03-31 21:56 - 00015192 _____ (G Data Software) C:\Windows\system32\Drivers\GdPhyMem.sys
2015-03-31 21:55 - 2015-03-31 21:55 - 00029528 _____ (G Data Software) C:\Windows\system32\Drivers\GRD.sys
2015-03-31 21:29 - 2015-03-31 21:29 - 00024192 _____ (G Data Software AG) C:\Windows\system32\Drivers\GDKBB32.sys
2015-03-31 21:29 - 2015-03-31 21:29 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_GDKBB32_01007.Wdf
2015-03-31 20:53 - 2015-03-31 21:33 - 00073216 _____ (G Data Software AG) C:\Windows\system32\Drivers\PktIcpt.sys
2015-03-31 20:52 - 2015-04-16 20:32 - 00053248 _____ (G Data Software AG) C:\Windows\system32\Drivers\gdwfpcd32.sys
2015-03-31 20:52 - 2015-04-16 20:32 - 00001752 _____ () C:\Users\Public\Desktop\G DATA ANTIVIRUS.lnk
2015-03-31 20:51 - 2015-03-31 21:29 - 00161792 _____ (G Data Software AG) C:\Windows\system32\Drivers\MiniIcpt.sys
2015-03-31 20:51 - 2015-03-31 21:29 - 00108032 _____ (G Data Software AG) C:\Windows\system32\Drivers\GDBehave.sys
2015-03-31 20:51 - 2015-03-31 21:29 - 00087040 _____ (G Data Software AG) C:\Windows\system32\Drivers\HookCentre.sys
2015-03-31 03:22 - 2015-03-31 03:35 - 00000000 ____D () C:\Users\Jack\Documents\ultrasurf
2015-03-27 20:01 - 2015-04-30 23:07 - 00000000 ____D () C:\ProgramData\RFA_Backups
2015-03-27 20:00 - 2015-03-27 20:00 - 00000755 _____ () C:\Users\Public\Desktop\Registry First Aid.lnk
2015-03-27 19:59 - 2015-05-01 17:14 - 00000000 ____D () C:\ProgramData\Registry First Aid
2015-03-27 19:59 - 2015-03-27 20:00 - 00000000 ___SD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Registry First Aid 10
2015-03-27 19:59 - 2015-03-27 20:00 - 00000000 ____D () C:\Program Files\RFA 10
2015-03-25 21:34 - 2015-03-25 21:34 - 00000997 _____ () C:\Users\Public\Desktop\Ashampoo WinOptimizer 11.lnk
2015-03-25 21:34 - 2015-03-25 21:34 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ashampoo
2015-03-25 21:33 - 2015-03-25 21:33 - 00000000 ____D () C:\ProgramData\Ashampoo
2015-03-25 21:33 - 2015-03-25 21:33 - 00000000 ____D () C:\Program Files\Ashampoo
2015-03-25 21:33 - 2009-08-24 22:08 - 00028160 _____ (mst software GmbH, Germany) C:\Windows\system32\DfSdkBt.exe
2015-03-24 17:12 - 2015-02-04 05:35 - 24199824 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv32.dll
2015-03-24 17:12 - 2015-02-04 05:35 - 16128576 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2um.dll
2015-03-24 17:12 - 2015-02-04 05:35 - 15294096 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll
2015-03-24 17:12 - 2015-02-04 05:35 - 11272048 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2015-03-24 17:12 - 2015-02-04 05:35 - 11209376 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2015-03-24 17:12 - 2015-02-04 05:35 - 10702664 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2015-03-24 17:12 - 2015-02-04 05:35 - 03987784 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2015-03-24 17:12 - 2015-02-04 05:35 - 01060680 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco3234144.dll
2015-03-24 17:12 - 2015-02-04 05:35 - 00911504 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco3234144.dll
2015-03-23 22:47 - 2015-05-05 20:59 - 01068646 _____ () C:\Windows\WindowsUpdate.log
2015-03-23 22:29 - 2015-03-23 22:29 - 00041512 _____ (WiseCleaner.com) C:\Windows\WiseTDIFw.sys
2015-03-23 22:29 - 2015-03-23 22:29 - 00011816 _____ (wisecleaner.com) C:\Windows\WiseHDInfo32.dll
2015-03-21 22:32 - 2015-05-01 18:11 - 00000000 ____D () C:\Users\Jack\AppData\Roaming\SystemOptimizeExpert
2015-03-21 22:32 - 2015-05-01 18:11 - 00000000 ____D () C:\ProgramData\SystemOptimizeExpert
2015-03-20 19:03 - 2015-05-02 16:45 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack
2015-03-20 19:03 - 2015-05-01 17:14 - 00000000 ____D () C:\Program Files\K-Lite Codec Pack
2015-03-19 22:31 - 2015-03-20 00:12 - 00000000 ____D () C:\ProgramData\REGSERVO
2015-03-16 00:35 - 2015-03-16 01:24 - 00000000 ____D () C:\ProgramData\DriverSleuth
2015-03-15 23:48 - 2015-03-15 23:48 - 00000023 _____ () C:\Users\Jack\Desktop\serial driverchecker.txt
2015-03-15 23:47 - 2015-03-15 23:47 - 05760144 _____ (driverchecker.com, Inc. ) C:\Users\Jack\Desktop\DC_Setup.exe
2015-03-15 02:29 - 2015-03-15 02:29 - 03363704 _____ () C:\Users\Jack\Downloads\driver-updater-pro-xpc-tools-4.5.0.0 [1].exe
2015-03-14 23:38 - 2015-03-14 23:38 - 05559248 _____ (383 Media, Inc.) C:\Users\Jack\Downloads\driver-whiz-8.2.0.10 [1].exe
2015-03-14 21:49 - 2015-03-14 21:50 - 00000000 ____D () C:\tempDIR
2015-03-14 01:35 - 2015-03-14 01:36 - 00000000 ____D () C:\ProgramData\BSD
2015-03-14 01:34 - 2015-03-14 01:34 - 00000977 _____ () C:\Users\Jack\Desktop\Auslogics Driver Updater.lnk
2015-03-13 21:20 - 2015-03-13 21:28 - 00000000 ____D () C:\Users\Jack\AppData\Roaming\DriverSpeed
2015-03-13 01:20 - 2015-05-01 17:14 - 00000000 ___HD () C:\Users\Jack\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup (Disabled by Starter)
2015-03-11 19:02 - 2015-02-26 02:18 - 02064384 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2015-03-11 19:02 - 2015-01-29 03:35 - 00975360 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2015-03-11 19:02 - 2015-01-29 03:35 - 00369664 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
2015-03-11 18:53 - 2015-02-20 04:03 - 00034304 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2015-03-11 18:53 - 2015-02-20 02:28 - 00296960 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2015-03-11 18:53 - 2015-01-09 04:04 - 00049152 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2015-03-11 18:53 - 2015-01-09 02:18 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2015-03-11 18:52 - 2015-03-06 06:01 - 00279040 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2015-03-11 18:52 - 2015-01-21 04:02 - 00807936 _____ (Microsoft Corporation) C:\Windows\system32\msctf.dll
2015-03-11 18:51 - 2015-02-18 04:02 - 11587584 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2015-03-11 18:51 - 2014-10-13 03:12 - 02264064 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2015-03-04 16:16 - 2015-03-04 16:16 - 00009336 _____ (G DATA Software AG) C:\Windows\system32\GDScrSv.fr.dll
2015-02-28 15:08 - 2015-04-26 14:34 - 00001755 _____ () C:\Users\Public\Desktop\Mozilla Firefox.lnk
2015-02-27 17:35 - 2015-02-27 17:35 - 00000000 ____D () C:\Program Files\Mozilla Firefox(358)
2015-02-20 06:25 - 2015-02-20 06:25 - 02229880 _____ (G Data Software AG) C:\Windows\system32\GdScrSv.scr
2015-02-19 19:18 - 2015-02-19 19:18 - 00000830 _____ () C:\Users\Jack\Desktop\point de restauration.lnk
2015-02-11 17:47 - 2015-02-11 17:47 - 00033280 _____ (The OpenVPN Project) C:\Windows\system32\Drivers\tap-tb-0901.sys
2015-02-11 15:35 - 2015-01-15 06:13 - 00440760 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2015-02-11 15:35 - 2014-11-26 04:05 - 00564224 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2015-02-11 15:34 - 2014-12-08 03:59 - 00306176 _____ (Microsoft Corporation) C:\Windows\system32\scesrv.dll
2015-02-10 14:36 - 2015-02-11 15:19 - 00000000 ____D () C:\ProgramData\RogueKiller
2015-02-09 23:43 - 2014-01-18 06:48 - 00000808 _____ () C:\Users\Jack\Desktop\Redémarrer.lnk
2015-02-05 19:29 - 2015-05-05 16:10 - 00119512 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2015-02-05 19:28 - 2015-04-23 12:04 - 00000877 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2015-02-05 19:28 - 2015-04-23 12:04 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2015-02-05 19:28 - 2015-04-23 12:04 - 00000000 ____D () C:\Program Files\Malwarebytes Anti-Malware
2015-02-05 19:28 - 2015-04-14 09:37 - 00092888 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2015-02-05 19:28 - 2015-04-14 09:37 - 00051928 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2015-02-05 19:28 - 2015-04-14 09:37 - 00023256 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2015-02-04 12:23 - 2015-02-04 12:23 - 00875688 _____ (Microsoft Corporation) C:\Windows\system32\msvcr120_clr0400.dll

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-05-05 21:32 - 2014-11-24 21:24 - 00000000 ____D () C:\ProgramData\eboostr
2015-05-05 21:30 - 2010-05-06 01:30 - 00000432 ____H () C:\Windows\Tasks\User_Feed_Synchronization-{4902AA65-DC26-488B-818C-4A82EAABA173}.job
2015-05-05 21:12 - 2010-04-20 09:11 - 00001052 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-05-05 21:08 - 2010-04-20 09:11 - 00001056 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-05-05 21:05 - 2013-04-21 18:41 - 03724521 _____ () C:\Windows\system32\Drivers\Cat.DB
2015-05-05 21:05 - 2010-04-19 09:50 - 00000000 ____D () C:\Users\Jack
2015-05-05 20:53 - 2014-01-02 22:17 - 00001002 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-05-05 20:53 - 2006-11-02 15:00 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2015-05-05 20:53 - 2006-11-02 14:46 - 00003568 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
2015-05-05 20:53 - 2006-11-02 14:46 - 00003568 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
2015-05-05 20:52 - 2008-02-22 04:01 - 00000012 _____ () C:\Windows\bthservsdp.dat
2015-05-05 20:52 - 2006-11-02 15:00 - 00032588 _____ () C:\Windows\Tasks\SCHEDLGU.TXT
2015-05-05 20:51 - 2013-03-12 00:35 - 00000000 ____D () C:\Users\Jack\AppData\Roaming\DMCache
2015-05-05 20:27 - 2012-07-10 18:09 - 00000000 ____D () C:\Users\Jack\AppData\Roaming\Wise Disk Cleaner
2015-05-05 12:10 - 2010-04-24 16:51 - 00000000 ____D () C:\ProgramData\TEMP
2015-05-03 15:39 - 2013-03-02 20:44 - 00000000 ____D () C:\ProgramData\Licenses
2015-05-03 15:39 - 2012-09-19 18:42 - 00000000 ____D () C:\Users\Jack\AppData\Roaming\Wise Registry Cleaner
2015-05-03 15:39 - 2010-05-10 20:41 - 00000000 ____D () C:\Users\Administrateur
2015-05-03 15:39 - 2008-02-22 04:25 - 00000000 ___HD () C:\Users\IUSR_NMPR
2015-05-03 15:39 - 2006-11-02 13:18 - 00000000 ____D () C:\Windows\system32\spool
2015-05-03 15:39 - 2006-11-02 13:18 - 00000000 ____D () C:\Windows\registration
2015-05-03 15:39 - 2006-11-02 12:22 - 92536832 _____ () C:\Windows\system32\config\system_previous
2015-05-03 15:39 - 2006-11-02 12:22 - 52690944 _____ () C:\Windows\system32\config\software_previous
2015-05-03 15:39 - 2006-11-02 12:22 - 39583744 _____ () C:\Windows\system32\config\components_previous
2015-05-03 15:39 - 2006-11-02 12:22 - 05070848 _____ () C:\Windows\system32\config\default_previous
2015-05-03 15:39 - 2006-11-02 12:22 - 00262144 _____ () C:\Windows\system32\config\security_previous
2015-05-03 15:39 - 2006-11-02 12:22 - 00061440 _____ () C:\Windows\system32\config\sam_previous
2015-05-02 15:59 - 2013-10-24 18:47 - 00247296 _____ (Microsoft Corporation) C:\Windows\system32\shsvcs.dll
2015-05-02 15:59 - 2013-10-24 18:47 - 00240128 _____ (Microsoft Corporation) C:\Windows\system32\uxtheme.dll
2015-05-02 15:59 - 2013-09-11 18:44 - 00615936 _____ (Microsoft Corporation) C:\Windows\system32\themeui.dll
2015-05-02 15:57 - 2006-11-02 13:18 - 00000000 ____D () C:\Windows\system32\fr-FR
2015-05-02 15:56 - 2006-11-02 13:18 - 00000000 ____D () C:\Windows\system32\LogFiles
2015-05-02 12:33 - 2013-03-02 20:43 - 00000000 ____D () C:\Program Files\SpywareBlaster
2015-05-01 17:14 - 2014-09-26 23:49 - 00000000 ____D () C:\Users\Jack\Documents\gdata2015
2015-05-01 17:14 - 2014-09-10 19:04 - 00000000 ____D () C:\Users\Jack\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Download Manager
2015-05-01 17:14 - 2014-09-10 19:04 - 00000000 ____D () C:\Users\Jack\AppData\Roaming\IDM
2015-05-01 17:14 - 2014-09-04 18:06 - 00000000 ____D () C:\Users\Jack\Documents\internet download manager
2015-05-01 17:14 - 2014-07-11 18:05 - 00000000 ____D () C:\Users\Jack\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\.NETSpeedBoost 6.5 Professional Edition
2015-05-01 17:14 - 2014-07-02 09:31 - 00000000 ____D () C:\Users\Jack\Documents\inf ne pas supprimer
2015-05-01 17:14 - 2014-06-13 19:51 - 00000000 ____D () C:\Users\Jack\AppData\Roaming\.ACEStream
2015-05-01 17:14 - 2013-12-07 20:26 - 00000000 ____D () C:\Users\Jack\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2015-05-01 17:14 - 2013-10-24 22:14 - 00000000 ____D () C:\Users\Jack\Documents\UniversalThemePatcher
2015-05-01 17:14 - 2013-01-16 22:29 - 00000000 ____D () C:\Users\Jack\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\RiccoVPN
2015-05-01 17:14 - 2012-12-07 00:22 - 00000000 ____D () C:\Users\Jack\AppData\Roaming\DVDVideoSoft
2015-05-01 17:14 - 2012-12-03 21:28 - 00000000 ____D () C:\Users\Jack\AppData\Roaming\FreeFLVConverter
2015-05-01 17:14 - 2012-10-06 20:22 - 00000000 ____D () C:\Users\Jack\Documents\PowerDVD 12 Ultra v12.0.1312.54 PreActivated [ADHDerby]
2015-05-01 17:14 - 2012-10-03 14:52 - 00000000 ____D () C:\Users\Jack\AppData\Roaming\vlc
2015-05-01 17:14 - 2012-01-09 20:11 - 00000000 ____D () C:\Users\Jack\AppData\Roaming\clesta
2015-05-01 17:14 - 2011-03-22 17:24 - 00000000 ____D () C:\Users\Jack\Documents\startupunblocker_fr
2015-05-01 17:14 - 2011-02-06 20:37 - 00000000 ____D () C:\Users\Jack\Documents\Vista_Black_Shellstyle_by_vistaman91
2015-05-01 17:14 - 2011-01-03 17:31 - 00000000 ____D () C:\Users\Jack\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SuperCopier2
2015-05-01 17:14 - 2011-01-03 17:08 - 00000000 ____D () C:\Users\Jack\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\NirSoft BlueScreenView
2015-05-01 17:14 - 2011-01-03 15:12 - 00000000 ____D () C:\Users\Jack\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CodeStuff Starter
2015-05-01 17:14 - 2010-12-03 18:57 - 00000000 ____D () C:\Users\Jack\Documents\Denial_Cursor_Pack___Blue_by_Androow
2015-05-01 17:14 - 2010-08-20 16:11 - 00000000 ____D () C:\Users\Jack\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Unlocker
2015-05-01 17:14 - 2010-05-24 03:19 - 00000000 ____D () C:\Users\Jack\Documents\Programme d'installation d'Adobe Reader 9
2015-05-01 17:14 - 2010-04-20 10:47 - 00000000 ____D () C:\Users\Jack\AppData\Local\Installer1240
2015-05-01 17:14 - 2010-04-19 09:51 - 00000000 ____D () C:\Users\Jack\AppData\Roaming\GTek
2015-05-01 17:14 - 2010-04-19 09:50 - 00000000 ___RD () C:\Users\Jack\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2015-05-01 17:14 - 2010-04-19 09:50 - 00000000 ___RD () C:\Users\Jack\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-04-28 14:45 - 2014-02-20 18:21 - 00000000 ____D () C:\Users\Jack\AppData\Roaming\WiseUpdate
2015-04-26 13:28 - 2014-11-02 15:54 - 00001745 _____ () C:\Users\Jack\Desktop\SUMo.lnk
2015-04-23 19:43 - 2013-08-28 00:56 - 00000766 _____ () C:\Users\Public\Desktop\CCleaner.lnk
2015-04-23 19:43 - 2013-08-28 00:56 - 00000000 ____D () C:\Program Files\CCleaner
2015-04-22 14:51 - 2010-06-16 11:01 - 00000000 ____D () C:\ProgramData\NVIDIA Corporation
2015-04-22 14:51 - 2010-04-19 10:12 - 00000000 ____D () C:\Program Files\NVIDIA Corporation
2015-04-21 18:46 - 2014-09-10 19:04 - 00000000 ____D () C:\Program Files\Internet Download Manager
2015-04-21 18:46 - 2012-06-22 20:40 - 00000000 ____D () C:\Program Files\Mozilla Maintenance Service
2015-04-20 22:12 - 2006-11-02 12:33 - 01304048 _____ () C:\Windows\system32\PerfStringBackup.INI
2015-04-19 23:12 - 2013-05-29 21:33 - 00000000 ____D () C:\Users\Jack\AppData\Roaming\Notepad++
2015-04-19 23:12 - 2006-11-13 11:39 - 00000000 ____D () C:\Windows\Panther
2015-04-18 01:26 - 2010-04-22 08:15 - 00000000 ____D () C:\Windows\Minidump
2015-04-17 23:16 - 2006-11-02 13:18 - 00000000 ____D () C:\Windows\system32\Msdtc
2015-04-17 20:41 - 2006-11-02 12:23 - 00000378 _____ () C:\Windows\win.ini
2015-04-15 19:06 - 2013-03-06 21:14 - 00000000 ____D () C:\ProgramData\IPProtector
2015-04-15 17:21 - 2014-01-02 22:17 - 00778416 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2015-04-15 17:21 - 2014-01-02 22:17 - 00142512 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2015-04-15 16:48 - 2013-09-10 22:11 - 00000000 ____D () C:\ProgramData\Oracle
2015-04-15 16:19 - 2014-07-10 18:38 - 00000000 ____D () C:\Windows\system32\MRT
2015-04-15 16:18 - 2006-11-02 13:18 - 00000000 ____D () C:\Windows\Microsoft.NET
2015-04-15 16:12 - 2006-11-02 12:24 - 125832184 _____ (Microsoft Corporation) C:\Windows\system32\mrt.exe
2015-04-14 17:26 - 2014-05-28 20:11 - 00000000 ____D () C:\Program Files\Auslogics
2015-04-14 17:18 - 2010-04-20 17:40 - 00000000 ____D () C:\Users\Jack\AppData\Roaming\Auslogics
2015-04-14 17:17 - 2013-12-15 23:45 - 00000000 ____D () C:\ProgramData\Auslogics
2015-04-11 16:08 - 2014-02-28 19:26 - 00000824 _____ () C:\Users\Public\Desktop\Ma-Config.com - Démarrer la détection.lnk
2015-04-11 16:08 - 2013-09-22 18:02 - 00000000 ____D () C:\ProgramData\ma-config.com
2015-04-11 16:08 - 2013-09-22 18:02 - 00000000 ____D () C:\Program Files\ma-config.com
2015-04-10 20:57 - 2010-04-19 09:50 - 09961472 _____ () C:\Users\Jack\ntuser.bak
2015-04-10 20:57 - 2008-02-22 04:25 - 08073216 _____ () C:\Users\IUSR_NMPR\ntuser.bak
2015-04-10 20:57 - 2006-11-02 12:22 - 88604672 _____ () C:\Windows\system32\config\system.bak
2015-04-10 20:57 - 2006-11-02 12:22 - 52166656 _____ () C:\Windows\system32\config\software.bak
2015-04-10 20:57 - 2006-11-02 12:22 - 39059456 _____ () C:\Windows\system32\config\components.bak
2015-04-10 20:57 - 2006-11-02 12:22 - 05242880 _____ () C:\Windows\system32\config\default.bak
2015-04-10 20:57 - 2006-11-02 12:22 - 00061440 _____ () C:\Windows\system32\config\sam.bak
2015-04-10 20:57 - 2006-11-02 12:22 - 00028672 _____ () C:\Windows\system32\config\security.bak
2015-04-08 21:25 - 2008-02-22 04:10 - 00000000 ____D () C:\Program Files\Dell
2015-04-07 11:20 - 2011-01-07 16:18 - 00000000 ____D () C:\ProgramData\PCDr
2015-04-06 17:23 - 2014-07-11 18:05 - 00002879 _____ () C:\Users\Jack\Desktop\.NETSpeedBoost 6.5 Professional Edition.lnk
2015-04-05 17:47 - 2014-02-25 19:17 - 00000000 ____D () C:\Users\Jack\AppData\Local\Deployment
2015-04-05 01:36 - 2014-05-05 22:27 - 00000000 ____D () C:\ProgramData\Package Cache

==================== Files in the root of some directories =======

2012-01-09 20:11 - 2012-01-09 20:11 - 0000031 _____ () C:\Program Files\ys.pcid
2012-12-02 00:57 - 2014-05-15 19:08 - 0000000 _____ () C:\Users\Jack\AppData\Roaming\.googlewebacchosts
2012-07-24 17:55 - 2012-07-24 18:47 - 0000748 _____ () C:\Users\Jack\AppData\Roaming\AtomicAlarmClock.ini
2014-11-06 20:36 - 2014-11-06 20:38 - 0003098 _____ () C:\Users\Jack\AppData\Roaming\DriverAgent.log
2014-09-26 22:59 - 2015-03-31 20:51 - 0001558 _____ () C:\Users\Jack\AppData\Roaming\gdscan.log
2015-03-20 00:05 - 2015-03-20 01:09 - 0000115 _____ () C:\Users\Jack\AppData\Roaming\LogFile.txt
2014-06-05 23:27 - 2014-06-05 23:27 - 0000046 _____ () C:\Users\Jack\AppData\Roaming\WB.CFG
2012-07-05 00:09 - 2012-07-05 00:09 - 0000000 _____ () C:\Users\Jack\AppData\Roaming\wklnhst.dat
2013-05-11 22:48 - 2014-07-20 19:54 - 0262117 _____ () C:\Users\Jack\AppData\Local\ars.cache
2013-05-11 22:51 - 2014-07-20 19:54 - 1084987 _____ () C:\Users\Jack\AppData\Local\census.cache
2010-04-19 09:50 - 2014-01-18 11:08 - 0001356 _____ () C:\Users\Jack\AppData\Local\d3d9caps.dat
2012-07-24 17:09 - 2012-07-24 17:10 - 0000055 _____ () C:\Users\Jack\AppData\Local\DVDPATH.TXT
2013-05-11 18:24 - 2013-05-11 18:24 - 0000036 _____ () C:\Users\Jack\AppData\Local\housecall.guid.cache
2014-01-09 08:55 - 2014-01-09 08:55 - 0000008 _____ () C:\Users\Jack\AppData\Local\Temp0055401D.log
2010-06-06 10:20 - 2010-06-06 10:20 - 0000778 _____ () C:\Users\Jack\AppData\Local\Temp1.html
2010-06-06 10:23 - 2010-06-06 10:23 - 0004472 _____ () C:\Users\Jack\AppData\Local\Temp12.html
2012-05-16 19:30 - 2012-05-16 19:37 - 0017408 _____ () C:\Users\Jack\AppData\Local\WebpageIcons.db
2012-06-18 13:57 - 2012-09-28 02:05 - 0000040 ___SH () C:\ProgramData\.zreglib
2014-05-05 22:18 - 2014-05-05 22:18 - 0000255 _____ () C:\ProgramData\fontcacheev1.dat
2013-05-01 02:37 - 2013-05-01 18:17 - 0034308 _____ () C:\ProgramData\mazuki.dll
2014-11-02 17:20 - 2014-11-02 17:20 - 0004131 _____ () C:\ProgramData\mtbjfghn.xbe

Files to move or delete:
====================
C:\ProgramData\C__Program Files_SystemOptimizeExpert_SystemOptimizeExpert.exe
C:\ProgramData\fontcacheev1.dat
C:\ProgramData\mazuki.dll


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\explorer.exe => File is digitally signed
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2015-05-05 21:00

==================== End Of Log ============================

Publicité


Signaler le contenu de ce document

Publicité