cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 06-05-2015 01
Ran by neo (administrator) on PC-DE-AZIM on 09-05-2015 15:01:34
Running from C:\Users\neo\Desktop
Loaded Profiles: neo (Available profiles: neo)
Platform: Microsoft® Windows Vista™ Édition Familiale Premium Service Pack 1 (X86) OS Language: Français (France)
Internet Explorer Version 7 (Default browser path: "C:\Program Files\Crossbrowse\Crossbrowse\Application\crossbrowse.exe" -- "%1")
Boot Mode: Safe Mode (with Networking)
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)



==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [Windows Defender] => C:\Program Files\Windows Defender\MSASCui.exe [1008184 2008-01-21] (Microsoft Corporation)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1033512 2008-01-18] (Synaptics, Inc.)
HKLM\...\Run: [eDataSecurity Loader] => C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDSloader.exe [526896 2008-03-04] (Egis Incorporated)
HKLM\...\Run: [eAudio] => C:\Program Files\Acer\Empowering Technology\eAudio\eAudio.exe [544768 2008-03-07] (Acer Incorporated)
HKLM\...\Run: [BkupTray] => C:\Program Files\NewTech Infosystems\NTI Backup Now 5\BkupTray.exe [34040 2008-04-06] ()
HKLM\...\Run: [NvCplDaemon] => RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
HKLM\...\Run: [NvMediaCenter] => RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit
HKLM\...\Run: [LManager] => C:\Program Files\Launch Manager\QtZgAcer.EXE [821768 2008-07-02] (Dritek System Inc.)
HKLM\...\Run: [PLFSetI] => C:\Windows\PLFSetI.exe [200704 2007-10-23] ()
HKLM\...\Run: [eRecoveryService] => [X]
HKLM\...\Run: [ArcadeDeluxeAgent] => C:\Program Files\Acer Arcade Deluxe\Acer Arcade Deluxe\ArcadeDeluxeAgent.exe [147456 2008-05-12] (CyberLink Corp.)
HKLM\...\Run: [CLMLServer] => C:\Program Files\Acer Arcade Deluxe\Acer Arcade Deluxe\Kernel\CLML\CLMLSvc.exe [167936 2008-05-12] (CyberLink)
HKLM\...\Run: [PlayMovie] => C:\Program Files\Acer Arcade Deluxe\PlayMovie\PMVService.exe [167936 2008-05-12] (Acer Corp.)
HKLM\...\Run: [WarReg_PopUp] => C:\Program Files\Acer\WR_PopUp\WarReg_PopUp.exe [303104 2008-01-29] (Acer Incorporated)
HKLM\...\Run: [QuickTime Task] => C:\Program Files\QuickTime\qttask.exe [282624 2006-09-01] (Apple Computer, Inc.)
HKLM\...\Run: [Google Desktop Search] => C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe [30192 2010-07-08] (Google)
HKLM\...\Run: [RtHDVCpl] => C:\Windows\RtHDVCpl.exe [6111232 2008-04-28] (Realtek Semiconductor)
HKLM\...\Run: [Skytel] => C:\Windows\Skytel.exe [1826816 2007-11-20] (Realtek Semiconductor Corp.)
HKLM\...\Run: [Malwarebytes' Anti-Malware (reboot)] => C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe [963976 2010-12-20] (Malwarebytes Corporation)
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [253816 2013-03-12] (Oracle Corporation)
HKLM\...\Run: [Adobe Reader Speed Launcher] => C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe [39792 2008-10-15] (Adobe Systems Incorporated)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [5515496 2015-05-03] (Avast Software s.r.o.)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [157480 2015-01-27] (Apple Inc.)
Winlogon\Notify\AWinNotifyVitaKey MC3000: C:\Program Files\Acer\Acer Bio Protection\WinNotify.dll [2008-07-09] (Arachnoid Biometrics Identification Group Corp.)
HKU\S-1-5-21-1852102199-357200914-2048077719-1002\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\System32\acer.scr [83554304 2007-04-19] ()
Lsa: [Notification Packages] scecli C:\Program Files\Acer\Acer Bio Protection\PwdFilter
Startup: C:\Users\Azim\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\DBE7A9.lnk [2010-01-15]
ShortcutTarget: DBE7A9.lnk -> C:\Windows\System32\8B7928\FF4326.EXE (No File)
Startup: C:\Users\Azim\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk [2015-04-26]
ShortcutTarget: Dropbox.lnk -> C:\Users\neo\AppData\Roaming\Dropbox\bin\Dropbox.exe (No File)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2015-05-03] (Avast Software s.r.o.)
ShellIconOverlayIdentifiers: [egisPSDP] -> {30A0A3F6-38AC-4C53-BB8B-0D95238E25BA} => C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\PSDProtect.dll [2008-03-04] (Egis Incorporated)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
HKU\S-1-5-21-1852102199-357200914-2048077719-1002\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = http://global.acer.com
HKU\S-1-5-21-1852102199-357200914-2048077719-1002\Software\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = http://global.acer.com
SearchScopes: HKLM -> {31090377-0740-419E-BEFC-A56E50500D5B} URL =
SearchScopes: HKLM -> {9CB96984-43C3-4D44-90EF-01466EFCF7BB} URL = https://fr.search.yahoo.com/yhs/search?type=avastbcl&hspart=avast&hsimp=yhs-001&p={searchTerms}
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-1852102199-357200914-2048077719-1002 -> {70D46D94-BF1E-45ED-B567-48701376298E} URL = http://127.0.0.1:4664/search&s=Ji7JhUm18ov1Q3YhpAqtjppqt-c?q={searchTerms}
BHO: Adobe PDF Reader Link Helper -> {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} -> C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2006-10-22] (Adobe Systems Incorporated)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll [2013-05-09] (Oracle Corporation)
BHO: ShowBarObj Class -> {83A2F9B1-01A2-4AA5-87D1-45B6B8505E96} -> C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\ActiveToolBand.dll No File
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-05-03] (Avast Software s.r.o.)
BHO: Programme d'aide de l'Assistant de connexion Windows Live -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22] (Microsoft Corporation)
BHO: FDMIECookiesBHO Class -> {CC59E0F9-7E43-44FA-9FAA-8377850BF205} -> C:\Program Files\Free Download Manager\iefdm2.dll [2008-12-30] ()
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll [2013-05-09] (Oracle Corporation)
DPF: {02BCC737-B171-4746-94C9-0D8A0B2C0089} http://office.microsoft.com/sites/production/ieawsdc32.cab
DPF: {8100D56A-5661-482C-BEE8-AFECE305D968} http://upload.facebook.com/controls/2009.07.28_v5.5.8.1/FacebookPhotoUploader55.cab
DPF: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} http://fichiers.touslesdrivers.com/maconfig/MaConfig_5_1_1_0.cab
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_07-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_07-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_07-windows-i586.cab
DPF: {E77F23EB-E7AB-4502-8F37-247DBAF1A147} http://gfx1.hotmail.com/mail/w4/pr01/photouploadcontrol/VistaMSNPUpldfr-fr.cab
Handler: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.14.0.8117.0416.dll [2010-04-16] (Microsoft Corporation)
Handler: ms-itss - {0A9007C0-4076-11D3-8789-0000F8105754} - c:\Program Files\Common Files\Microsoft Shared\Information Retrieval\msitss.dll [2001-06-20] (Microsoft Corporation)
Handler: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.14.0.8117.0416.dll [2010-04-16] (Microsoft Corporation)
Filter: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2011-04-21] (Microsoft Corporation)
Filter: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2011-04-21] (Microsoft Corporation)
Winsock: Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [121704 2011-08-30] (Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 89.2.0.1 89.2.0.2
StartMenuInternet: IEXPLORE.EXE - iexplore.exe

FireFox:
========
FF ProfilePath: C:\Users\neo\AppData\Roaming\Mozilla\Firefox\Profiles\k69zz146.default
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_17_0_0_169.dll [2015-04-15] ()
FF Plugin: @Apple.com/iTunes,version=1.0 -> C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll [2014-10-30] ()
FF Plugin: @bittorrent.com/BitTorrentDNA -> C:\Program Files\DNA\plugins\npbtdna.dll [2009-04-13] (BitTorrent, Inc.)
FF Plugin: @java.com/DTPlugin,version=10.21.2 -> C:\Windows\system32\npDeployJava1.dll [2013-05-09] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.21.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll [2013-05-09] (Oracle Corporation)
FF Plugin: @ma-config.com/HardwareDetection -> C:\Program Files\ma-config.com\nphardwaredetection.dll [2011-03-10] (Cybelsoft)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-13] ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeLive,version=1.3 -> C:\Program Files\Microsoft\Office Live\npOLW.dll [2008-11-13] (Microsoft Corp.)
FF Plugin: @microsoft.com/WLPG,version=14.0.8117.0416 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll [2010-04-17] (Microsoft Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 -> C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll [2008-07-29] (Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2013-07-31] (VideoLAN)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\np-mswmp.dll [2007-04-10] (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npBitCometAgent.dll [2011-11-03] (BitComet)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npbittorrent.dll [2008-09-04] (BitTorrent, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\NPOFF12.DLL [2006-10-26] (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nppdf32.dll [2008-10-14] (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin.dll [2008-09-28] (Apple Computer, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin2.dll [2008-09-28] (Apple Computer, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin3.dll [2008-09-28] (Apple Computer, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin4.dll [2008-09-28] (Apple Computer, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin5.dll [2008-09-28] (Apple Computer, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin6.dll [2008-09-28] (Apple Computer, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin7.dll [2008-09-28] (Apple Computer, Inc.)
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF Extension: Microsoft .NET Framework Assistant - C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2009-08-16]
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2012-01-11]

Chrome:
=======
CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2015-05-03]
StartMenuInternet: Google Chrome.LFN5SIUS6F3MNZKQK2GFM5AHYI -

========================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

S3 ASOVPNHelper; C:\Program Files\Astrill\ASOvpnSvc.exe [434928 2011-11-13] (Astrill)
S3 ASProxy; C:\Program Files\Astrill\ASProxy.exe [1928616 2011-11-11] (Astrill)
S2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [343336 2015-05-03] (Avast Software s.r.o.)
S2 BUNAgentSvc; C:\Program Files\NewTech Infosystems\NTI Backup Now 5\Client\Agentsvc.exe [16384 2008-03-03] (NewTech Infosystems, Inc.) [File not signed]
S2 CLHNService; C:\Program Files\Acer Arcade Deluxe\HomeMedia\Kernel\DMP\CLHNService.exe [81504 2008-01-16] () [File not signed]
S2 dgdersvc; C:\Windows\system32\dgdersvc.exe [95568 2010-05-25] (Devguru Co., Ltd.)
S2 ETService; C:\Program Files\Acer\Empowering Technology\Service\ETService.exe [24576 2008-03-21] () [File not signed]
S2 FsUsbExService; C:\Windows\system32\FsUsbExService.Exe [233472 2010-05-28] (Teruten) [File not signed]
S3 GoogleDesktopManager-051210-111108; C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe [30192 2010-07-08] (Google)
S2 LightScribeService; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [61440 2007-01-17] (Hewlett-Packard Company) [File not signed]
S3 maconfservice; C:\Program Files\ma-config.com\maconfservice.exe [311744 2011-03-10] (CybelSoft)
S2 MBAMScheduler; C:\Users\Azim\Desktop\Malwarebytes Anti-Malware\mbamscheduler.exe [1871160 2015-04-14] (Malwarebytes Corporation)
S2 MBAMService; C:\Users\Azim\Desktop\Malwarebytes Anti-Malware\mbamservice.exe [1080120 2015-04-14] (Malwarebytes Corporation)
S2 MobilityService; C:\Acer\Mobility Center\MobilityService.exe [110592 2007-12-06] () [File not signed]
S2 NTISchedulerSvc; C:\Program Files\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe [131072 2008-04-04] () [File not signed]
S2 RichVideo; C:\Program Files\Cyberlink\Shared files\RichVideo.exe [272024 2007-01-09] ()
S2 SlimService; C:\Program Files\SlimService\SlimServiceFactory.exe [222016 2014-09-10] (SlimWare Utilities, Inc.)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [272952 2008-01-21] (Microsoft Corporation)
S2 IAANTMON; C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe [X]

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

S3 A310; C:\Windows\System32\DRIVERS\AVerA310USB.sys [25856 2008-04-15] (AVerMedia TECHNOLOGIES, Inc.)
R0 AlfaFF; C:\Windows\System32\Drivers\AlfaFF.sys [43184 2008-07-09] (Alfa Corporation)
S2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [24144 2015-05-03] ()
S2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [74976 2015-05-03] (Avast Software s.r.o.)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr.sys [55200 2015-05-03] (Avast Software s.r.o.)
S0 aswRvrt; C:\Windows\system32\Drivers\aswRvrt.sys [49904 2015-05-03] ()
S1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [787760 2015-05-03] (Avast Software s.r.o.)
S1 aswSP; C:\Windows\system32\drivers\aswSP.sys [427992 2015-05-03] (Avast Software s.r.o.)
S1 aswTdi; C:\Windows\system32\drivers\aswTdi.sys [57888 2015-05-03] (Avast Software s.r.o.)
S0 aswVmm; C:\Windows\system32\Drivers\aswVmm.sys [209048 2015-05-03] ()
S3 ATSWPDRV; C:\Windows\System32\DRIVERS\ATSwpDrv.sys [146688 2008-04-25] (AuthenTec, Inc.)
S3 BDASwCap; C:\Windows\System32\drivers\AVerA310Cap.sys [42880 2008-04-15] (AVerMedia TECHNOLOGIES, Inc.)
S3 driverhardwarev2; C:\Program Files\ma-config.com\Drivers\driverhardwarev2.sys [14336 2010-08-30] (CybelSoft)
S3 FsUsbExDisk; C:\Windows\system32\FsUsbExDisk.SYS [36608 2010-05-28] () [File not signed]
S2 int15; C:\Windows\system32\drivers\int15.sys [69632 2007-01-26] () [File not signed]
S3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [23256 2015-04-14] (Malwarebytes Corporation)
S3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [119512 2015-05-09] (Malwarebytes Corporation)
S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [51928 2015-04-14] (Malwarebytes Corporation)
S2 NTIPPKernel; C:\Program Files\Acer Arcade Deluxe\HomeMedia\Kernel\DMP\NTIPPKernel.sys [122368 2008-01-16] (Cyberlink Corp.) [File not signed]
S3 SWDUMon; C:\Windows\System32\DRIVERS\SWDUMon.sys [13464 2015-05-03] ()
R3 tap0901; C:\Windows\System32\DRIVERS\tap0901.sys [26112 2010-08-20] (The OpenVPN Project)
U3 TrueSight; C:\Windows\System32\drivers\TrueSight.sys [35064 2015-05-01] ()
R3 winbondcir; C:\Windows\System32\DRIVERS\winbondcir.sys [43008 2007-03-28] (Winbond Electronics Corporation)
S2 {49DE1C67-83F8-4102-99E0-C16DCC7EEC796}; C:\Program Files\Acer Arcade Deluxe\PlayMovie\000.fcl [61424 2008-05-09] (Cyberlink Corp.)
S0 iaStor; system32\DRIVERS\iaStor.sys [X]
S3 IpInIp; system32\DRIVERS\ipinip.sys [X]
S3 NwlnkFlt; system32\DRIVERS\nwlnkflt.sys [X]
S3 NwlnkFwd; system32\DRIVERS\nwlnkfwd.sys [X]
U3 Winsock - Google Desktop Search Backup Before First Install; No ImagePath
U3 Winsock - Google Desktop Search Backup Before Last Install; No ImagePath

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-05-08 17:01 - 2015-05-08 17:01 - 00346320 _____ (AnalogX, LLC) C:\Users\neo\Downloads\capturei.exe
2015-05-08 17:01 - 2015-05-08 17:01 - 00000000 ____D () C:\Users\neo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AnalogX
2015-05-08 17:01 - 2015-05-08 17:01 - 00000000 ____D () C:\Program Files\AnalogX
2015-05-08 15:32 - 2015-05-09 14:20 - 00008224 _____ () C:\Users\neo\AppData\Local\GDIPFONTCACHEV1.DAT
2015-05-07 00:32 - 2015-05-07 00:32 - 00000000 ____D () C:\Users\neo\AppData\Roaming\Adobe
2015-05-07 00:32 - 2015-05-07 00:32 - 00000000 ____D () C:\Users\neo\AppData\Local\Macromedia
2015-05-07 00:31 - 2015-05-07 00:31 - 00000000 ____D () C:\Users\neo\AppData\Roaming\Mozilla
2015-05-07 00:31 - 2015-05-07 00:31 - 00000000 ____D () C:\Users\neo\AppData\Local\Mozilla
2015-05-07 00:30 - 2015-05-07 00:30 - 00044705 _____ () C:\Users\neo\Desktop\Addition.txt
2015-05-07 00:29 - 2015-05-09 15:01 - 00013238 _____ () C:\Users\neo\Desktop\FRST.txt
2015-05-07 00:28 - 2015-05-07 00:28 - 00000000 ____D () C:\Users\neo\Desktop\FRST-OlderVersion
2015-05-06 02:40 - 2015-05-08 15:30 - 00000000 ____D () C:\Users\neo\AppData\Local\PlayMovie
2015-05-06 02:29 - 2015-05-06 02:32 - 00000000 ____D () C:\Users\neo\AppData\Local\PowerCinema
2015-05-06 02:29 - 2015-05-06 02:29 - 00000000 ____D () C:\Users\neo\AppData\Local\Google
2015-05-06 02:20 - 2015-05-06 02:20 - 00000913 _____ () C:\Users\neo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2015-05-06 02:08 - 2015-05-06 02:08 - 00000908 _____ () C:\Users\neo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2015-05-06 02:08 - 2015-05-06 02:08 - 00000879 _____ () C:\Users\neo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows Mail.lnk
2015-05-06 02:07 - 2015-05-06 02:07 - 00000000 ____D () C:\Users\neo\AppData\Local\VirtualStore
2015-05-06 02:02 - 2015-05-06 02:20 - 00000000 ____D () C:\Users\neo
2015-05-06 02:02 - 2015-05-06 02:02 - 00000020 ___SH () C:\Users\neo\ntuser.ini
2015-05-06 02:02 - 2015-05-06 02:02 - 00000000 _SHDL () C:\Users\neo\Voisinage réseau
2015-05-06 02:02 - 2015-05-06 02:02 - 00000000 _SHDL () C:\Users\neo\Voisinage d'impression
2015-05-06 02:02 - 2015-05-06 02:02 - 00000000 _SHDL () C:\Users\neo\Modèles
2015-05-06 02:02 - 2015-05-06 02:02 - 00000000 _SHDL () C:\Users\neo\Menu Démarrer
2015-05-06 02:02 - 2015-05-06 02:02 - 00000000 _SHDL () C:\Users\neo\Documents\Mes vidéos
2015-05-06 02:02 - 2015-05-06 02:02 - 00000000 _SHDL () C:\Users\neo\Documents\Mes images
2015-05-06 02:02 - 2015-05-06 02:02 - 00000000 _SHDL () C:\Users\neo\Documents\Ma musique
2015-05-06 02:02 - 2015-05-06 02:02 - 00000000 _SHDL () C:\Users\neo\AppData\Roaming\Microsoft\Windows\Start Menu\Programmes
2015-05-06 02:02 - 2015-05-06 02:02 - 00000000 _SHDL () C:\Users\neo\AppData\Local\Historique
2015-05-06 02:02 - 2011-05-19 10:58 - 00000000 ____D () C:\Users\neo\AppData\Roaming\Macromedia
2015-05-06 02:02 - 2008-09-25 03:08 - 00000000 ____D () C:\Users\neo\AppData\Local\Microsoft Help
2015-05-06 02:02 - 2008-04-18 04:05 - 00001850 _____ () C:\Users\neo\Desktop\Cyberlink PowerDirector.lnk
2015-05-06 02:02 - 2008-04-18 04:05 - 00000000 ____D () C:\Users\neo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CyberLink PowerDirector
2015-05-06 02:02 - 2008-01-21 04:42 - 00000000 ___RD () C:\Users\neo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2015-05-06 02:02 - 2008-01-21 04:42 - 00000000 ___RD () C:\Users\neo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-05-05 22:20 - 2015-05-05 22:21 - 00007816 _____ () C:\Users\Azim\Desktop\fixlist.txt
2015-05-04 23:55 - 2015-05-04 23:55 - 00059283 _____ () C:\Users\Azim\Desktop\Addition.txt
2015-05-04 23:54 - 2015-05-05 22:47 - 00045655 _____ () C:\Users\Azim\Desktop\FRST.txt
2015-05-04 23:52 - 2015-05-09 15:01 - 00000000 ____D () C:\FRST
2015-05-04 23:50 - 2015-05-07 00:28 - 01141248 _____ (Farbar) C:\Users\neo\Desktop\FRST.exe
2015-05-03 17:32 - 2015-05-03 17:32 - 00001793 _____ () C:\Users\Public\Desktop\Avast Free Antivirus.lnk
2015-05-03 17:32 - 2015-05-03 17:32 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software
2015-05-03 17:31 - 2015-05-03 17:31 - 00291312 _____ (Avast Software s.r.o.) C:\Windows\system32\aswBoot.exe
2015-05-03 17:31 - 2015-05-03 17:31 - 00043112 _____ (Avast Software s.r.o.) C:\Windows\avastSS.scr
2015-05-03 14:41 - 2015-05-03 14:41 - 00135533 _____ () C:\Users\Azim\Desktop\ZHPDiag.txt
2015-05-03 14:35 - 2015-05-03 14:35 - 00006992 _____ () C:\Users\Azim\Desktop\ZHPFixReport.txt
2015-05-03 00:34 - 2015-05-03 00:34 - 00000000 ____D () C:\Users\Azim\Desktop\Malwarebytes Anti-Malware
2015-05-02 23:51 - 2015-05-03 00:11 - 00000000 ____D () C:\AdwCleaner
2015-05-02 23:46 - 2015-05-02 23:46 - 02204160 _____ () C:\Users\Azim\Desktop\adwcleaner_4.203.exe
2015-05-02 17:26 - 2015-05-03 14:41 - 00000512 _____ () C:\PhysicalDisk0_MBR.bin
2015-05-02 17:21 - 2015-05-03 14:41 - 00000000 ____D () C:\Program Files\ZHPDiag
2015-05-02 17:21 - 2015-05-03 14:38 - 00000000 ____D () C:\Users\Azim\AppData\Roaming\ZHP
2015-05-02 17:21 - 2015-05-02 17:21 - 00001732 _____ () C:\Users\Azim\Desktop\ZHPFix.lnk
2015-05-02 17:21 - 2015-05-02 17:21 - 00001609 _____ () C:\Users\Azim\Desktop\ZHPDiag.lnk
2015-05-02 17:21 - 2015-05-02 17:21 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ZHP
2015-05-02 17:17 - 2015-05-02 17:17 - 00138968 _____ () C:\Windows\Minidump\Mini050215-01.dmp
2015-05-02 17:16 - 2015-05-02 17:17 - 278596758 _____ () C:\Windows\MEMORY.DMP
2015-05-01 15:48 - 2015-05-01 15:48 - 00035064 _____ () C:\Windows\system32\Drivers\TrueSight.sys
2015-05-01 15:48 - 2015-05-01 15:48 - 00000000 ____D () C:\ProgramData\RogueKiller
2015-05-01 12:09 - 2015-05-03 00:34 - 00000689 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2015-05-01 12:09 - 2015-05-03 00:34 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2015-05-01 12:09 - 2015-04-14 09:37 - 00092888 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2015-05-01 12:09 - 2015-04-14 09:37 - 00051928 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2015-05-01 11:59 - 2015-05-01 13:33 - 00000000 ____D () C:\Users\Azim\AppData\Local\WebShield
2015-05-01 11:42 - 2015-05-01 11:42 - 00000000 ____D () C:\Users\Azim\AppData\Roaming\AVAST Software
2015-05-01 02:16 - 2015-05-01 12:09 - 00000000 ____D () C:\Program Files\Malwarebytes Anti-Malware
2015-04-29 00:49 - 2015-04-29 00:49 - 00000000 ____D () C:\Users\Azim\Documents\Optimizer Pro
2015-04-29 00:47 - 2015-04-29 00:47 - 00000000 ____D () C:\Users\Azim\AppData\Roaming\InstallShield
2015-04-24 01:02 - 2015-04-24 01:06 - 00000000 _____ () C:\Windows\eax.exe
2015-04-24 01:00 - 2015-05-03 01:07 - 00000000 ____D () C:\ProgramData\WebShield
2015-04-24 00:59 - 2015-04-24 00:59 - 00000000 ____D () C:\Users\Azim\AppData\Local\CrashRpt
2015-04-24 00:56 - 2015-04-24 00:57 - 00000000 ____D () C:\Program Files\Mozilla Firefox
2015-04-19 14:20 - 2015-04-19 14:20 - 00005872 _____ () C:\Users\Azim\AppData\Roaming\gAFjnkSJ63i1KN1HPf4EHUNtC
2015-04-14 18:28 - 2015-04-14 18:28 - 00004387 _____ () C:\Users\Azim\AppData\Roaming\kTG3phOZx2b

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-05-09 14:32 - 2008-01-21 04:47 - 05975646 _____ () C:\Windows\PFRO.log
2015-05-09 14:20 - 2014-09-24 00:48 - 00000008 __RSH () C:\ProgramData\ntuser.pol
2015-05-09 14:20 - 2011-04-12 15:49 - 00119512 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamswissarmy.sys
2015-05-09 14:20 - 2008-07-09 16:35 - 00000000 _____ () C:\Windows\system32\LogConfigTemp.xml
2015-05-09 14:19 - 2008-07-09 16:29 - 00106281 _____ () C:\ProgramData\nvModes.dat
2015-05-09 14:19 - 2008-07-09 16:29 - 00106281 _____ () C:\ProgramData\nvModes.001
2015-05-09 14:19 - 2008-04-18 04:13 - 00000147 _____ () C:\Windows\system32\agent.log
2015-05-09 14:19 - 2006-11-02 15:01 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2015-05-09 14:19 - 2006-11-02 14:47 - 00003216 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
2015-05-09 14:19 - 2006-11-02 14:47 - 00003216 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
2015-05-08 16:30 - 2008-07-09 16:22 - 01904848 _____ () C:\Windows\WindowsUpdate.log
2015-05-08 16:04 - 2006-11-02 13:18 - 00000000 ____D () C:\Windows\system32\GroupPolicy
2015-05-08 15:25 - 2008-07-09 16:30 - 00008224 _____ () C:\Windows\system32\GDIPFONTCACHEV1.DAT
2015-05-06 02:36 - 2008-07-09 16:30 - 00000000 ____D () C:\ProgramData\NVIDIA
2015-05-05 22:36 - 2008-09-24 22:47 - 00110080 _____ () C:\Users\Azim\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2015-05-05 22:10 - 2008-01-21 10:41 - 01495948 _____ () C:\Windows\system32\PerfStringBackup.INI
2015-05-03 23:04 - 2013-09-05 15:11 - 00016113 _____ () C:\Windows\setupact.log
2015-05-03 22:06 - 2014-10-19 21:43 - 00013464 _____ () C:\Windows\system32\Drivers\SWDUMon.sys
2015-05-03 19:29 - 2014-02-25 09:29 - 00008268 _____ () C:\Users\Azim\AppData\Local\d3d9caps.dat
2015-05-03 17:31 - 2014-10-04 01:06 - 00024144 _____ () C:\Windows\system32\Drivers\aswHwid.sys
2015-05-03 17:31 - 2014-10-04 01:02 - 00209048 _____ () C:\Windows\system32\Drivers\aswVmm.sys
2015-05-03 17:31 - 2014-10-04 01:02 - 00049904 _____ () C:\Windows\system32\Drivers\aswRvrt.sys
2015-05-03 17:31 - 2012-01-11 06:19 - 00787760 _____ (Avast Software s.r.o.) C:\Windows\system32\Drivers\aswSnx.sys
2015-05-03 17:31 - 2012-01-11 06:19 - 00427992 _____ (Avast Software s.r.o.) C:\Windows\system32\Drivers\aswSP.sys
2015-05-03 17:31 - 2012-01-11 06:19 - 00074976 _____ (Avast Software s.r.o.) C:\Windows\system32\Drivers\aswMonFlt.sys
2015-05-03 17:31 - 2012-01-11 06:19 - 00057888 _____ (Avast Software s.r.o.) C:\Windows\system32\Drivers\aswTdi.sys
2015-05-03 17:31 - 2012-01-11 06:19 - 00055200 _____ (Avast Software s.r.o.) C:\Windows\system32\Drivers\aswRdr.sys
2015-05-03 14:34 - 2009-04-13 00:21 - 00000000 ____D () C:\Program Files\BitTorrent
2015-05-03 01:12 - 2006-11-02 13:18 - 00000000 ____D () C:\Windows\Speech
2015-05-02 23:54 - 2011-09-19 11:51 - 00001121 _____ () C:\Users\Azim\Desktop\Google Chrome.lnk
2015-05-02 23:54 - 2011-09-19 11:51 - 00000000 ____D () C:\Users\Azim\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome
2015-05-02 23:54 - 2011-03-24 18:36 - 00000822 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2015-05-02 23:54 - 2011-03-24 18:36 - 00000810 _____ () C:\Users\Public\Desktop\Mozilla Firefox.lnk
2015-05-02 23:54 - 2008-09-24 21:22 - 00000957 _____ () C:\Users\Azim\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2015-05-02 17:17 - 2008-12-01 11:34 - 00000000 ____D () C:\Windows\Minidump
2015-05-01 15:28 - 2006-11-02 15:01 - 00032512 _____ () C:\Windows\Tasks\SCHEDLGU.TXT
2015-05-01 15:27 - 2010-08-31 02:13 - 00000000 ____D () C:\Users\Azim\AppData\Roaming\Free Download Manager
2015-05-01 15:27 - 2009-04-13 00:21 - 00000000 ____D () C:\Users\Azim\AppData\Roaming\DNA
2015-05-01 15:23 - 2011-09-15 18:32 - 00000000 ____D () C:\ProgramData\GameXN
2015-05-01 11:46 - 2015-03-15 17:18 - 00000000 ___RD () C:\Users\Azim\Dropbox
2015-05-01 11:46 - 2014-10-04 04:13 - 00000000 ____D () C:\Users\Azim\AppData\Roaming\Dropbox
2015-05-01 11:43 - 2015-04-04 17:13 - 00000000 ____D () C:\Users\Azim\Documents\Business-in-a-Box Files
2015-05-01 11:43 - 2011-08-15 05:50 - 00000000 ____D () C:\Users\Azim\AppData\Roaming\go
2015-05-01 11:43 - 2009-11-17 13:56 - 00000000 ____D () C:\Users\Azim\Tracing
2015-05-01 11:33 - 2015-04-04 17:11 - 00000000 ____D () C:\Program Files\Business-in-a-Box
2015-05-01 11:33 - 2008-12-30 23:19 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\My CEWE Photo World
2015-05-01 11:32 - 2008-09-24 21:21 - 00000000 ____D () C:\Users\Azim
2015-05-01 11:32 - 2006-11-02 12:22 - 49020928 _____ () C:\Windows\system32\config\software_previous
2015-05-01 11:32 - 2006-11-02 12:22 - 47710208 _____ () C:\Windows\system32\config\system_previous
2015-05-01 11:32 - 2006-11-02 12:22 - 38797312 _____ () C:\Windows\system32\config\components_previous
2015-05-01 11:32 - 2006-11-02 12:22 - 00262144 _____ () C:\Windows\system32\config\security_previous
2015-05-01 11:32 - 2006-11-02 12:22 - 00262144 _____ () C:\Windows\system32\config\sam_previous
2015-05-01 11:32 - 2006-11-02 12:22 - 00262144 _____ () C:\Windows\system32\config\default_previous
2015-05-01 11:31 - 2015-04-04 17:13 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Business-in-a-Box
2015-05-01 11:31 - 2014-10-19 21:44 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SlimCleaner Plus
2015-05-01 11:31 - 2014-10-19 21:44 - 00000000 ____D () C:\Program Files\SlimService
2015-05-01 11:31 - 2014-10-19 21:44 - 00000000 ____D () C:\Program Files\SlimCleaner Plus
2015-05-01 11:31 - 2014-10-04 04:15 - 00000000 ____D () C:\Users\Azim\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2015-05-01 11:31 - 2014-08-15 15:12 - 00000000 ____D () C:\Users\Azim\AppData\Local\GameXN
2015-05-01 11:31 - 2013-12-19 02:58 - 00000000 ____D () C:\Users\Azim\AppData\Local\PokerStars.FR
2015-05-01 11:31 - 2013-12-18 15:30 - 00000000 ____D () C:\Users\Azim\Justinmind
2015-05-01 11:31 - 2013-12-18 15:29 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Justinmind
2015-05-01 11:31 - 2013-12-18 15:27 - 00000000 ____D () C:\Program Files\Justinmind
2015-05-01 11:31 - 2012-01-11 06:18 - 00000000 ____D () C:\ProgramData\AVAST Software
2015-05-01 11:31 - 2011-11-09 20:40 - 00000000 ____D () C:\Users\Azim\AppData\Roaming\Astrill
2015-05-01 11:31 - 2011-11-09 20:40 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Astrill
2015-05-01 11:31 - 2011-04-28 09:57 - 00000000 ____D () C:\Users\Azim\AppData\Roaming\gtk-2.0
2015-05-01 11:31 - 2011-04-28 09:48 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GIMP
2015-05-01 11:31 - 2011-04-28 09:48 - 00000000 ____D () C:\Program Files\GIMP-2.0
2015-05-01 11:31 - 2010-02-07 13:09 - 00000000 ____D () C:\Users\Azim\AppData\Roaming\Facebook
2015-05-01 11:31 - 2009-09-13 16:02 - 00000000 ____D () C:\Users\Azim\AppData\Roaming\dvdcss
2015-05-01 11:31 - 2009-08-03 13:06 - 00000000 ____D () C:\Users\Azim\AppData\Local\PokerStars
2015-05-01 11:31 - 2009-06-14 20:33 - 00000000 ____D () C:\Users\Azim\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2015-05-01 11:31 - 2009-04-13 00:22 - 00000000 ____D () C:\Users\Azim\AppData\Roaming\BitTorrent
2015-05-01 11:31 - 2008-11-17 12:02 - 00000000 ____D () C:\Users\Azim\AppData\Local\Microsoft Help
2015-05-01 11:31 - 2008-09-24 22:55 - 00000000 ____D () C:\Users\Azim\AppData\Local\SoftDMA
2015-05-01 11:31 - 2008-09-24 21:23 - 00000000 ____D () C:\Users\Azim\AppData\Local\PowerCinema
2015-05-01 11:31 - 2008-09-24 21:23 - 00000000 ____D () C:\Users\Azim\AppData\Local\PlayMovie
2015-05-01 11:31 - 2008-09-24 21:21 - 00000000 ___RD () C:\Users\Azim\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2015-05-01 11:31 - 2008-09-24 21:21 - 00000000 ___RD () C:\Users\Azim\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-05-01 11:31 - 2008-09-24 21:21 - 00000000 ____D () C:\Users\Azim\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CyberLink PowerDirector
2015-05-01 11:31 - 2008-07-09 16:37 - 00000000 ____D () C:\Program Files\Fingerprint Sensor
2015-05-01 11:31 - 2008-04-18 03:13 - 00000000 ____D () C:\Windows\Driver Cache
2015-05-01 11:31 - 2006-11-02 13:18 - 00000000 ____D () C:\Windows\system32\spool
2015-05-01 11:31 - 2006-11-02 13:18 - 00000000 ____D () C:\Windows\system32\Msdtc
2015-05-01 11:30 - 2014-04-05 17:03 - 00000000 ____D () C:\Program Files\Bonjour
2015-05-01 11:30 - 2012-01-11 06:07 - 00000000 ____D () C:\Program Files\AVAST Software
2015-05-01 11:30 - 2011-03-02 09:02 - 00000000 ____D () C:\Program Files\Astrill
2015-05-01 11:30 - 2008-04-18 03:13 - 00000000 ____D () C:\Program Files\AVerMedia
2015-05-01 11:30 - 2006-11-02 13:18 - 00000000 ____D () C:\Windows\registration
2015-05-01 02:16 - 2011-04-03 10:48 - 00000000 ____D () C:\ProgramData\Malwarebytes
2015-04-26 16:39 - 2009-04-13 00:22 - 00001547 _____ () C:\Windows\wininit.ini
2015-04-26 16:38 - 2015-03-15 17:18 - 00000920 _____ () C:\Users\Azim\Desktop\Dropbox.lnk
2015-04-24 01:09 - 2006-11-02 13:18 - 00000000 ____D () C:\Program Files\Common Files\System
2015-04-24 01:05 - 2008-09-28 14:34 - 00000000 ____D () C:\Program Files\Google
2015-04-24 01:02 - 2013-05-08 03:24 - 00000000 ____D () C:\Program Files\Mozilla Maintenance Service
2015-04-22 02:03 - 2011-11-08 20:28 - 00000000 ____D () C:\Users\Azim\AppData\Roaming\vlc
2015-04-22 01:15 - 2008-09-24 22:20 - 00000000 ____D () C:\Users\Azim\AppData\Roaming\Mozilla
2015-04-16 23:30 - 2013-08-16 03:25 - 00000000 ____D () C:\Windows\system32\MRT
2015-04-16 02:55 - 2006-11-02 12:24 - 125832184 _____ (Microsoft Corporation) C:\Windows\system32\mrt.exe
2015-04-16 02:54 - 2008-04-18 03:42 - 00000000 ____D () C:\ProgramData\Microsoft Help
2015-04-15 00:41 - 2012-07-11 02:42 - 00778416 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2015-04-15 00:41 - 2011-07-19 16:29 - 00142512 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2015-04-14 09:37 - 2011-04-12 15:49 - 00023256 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2015-04-12 23:32 - 2015-04-05 03:53 - 00075264 ____H () C:\Users\Azim\Desktop\~WRL0005.tmp
2015-04-12 23:09 - 2008-11-25 01:05 - 00000000 ____D () C:\Users\Azim\AppData\Roaming\Skype

==================== Files in the root of some directories =======

2011-04-02 09:01 - 2011-04-03 10:38 - 0012778 ___SH () C:\ProgramData\dcs020pnx6qb2cg757557o3g4oo7cl1yrtu055q0kf6f
2008-11-25 01:05 - 2008-11-25 01:05 - 0000056 ____H () C:\ProgramData\ezsidmv.dat
2008-07-09 16:29 - 2015-05-09 14:19 - 0106281 _____ () C:\ProgramData\nvModes.001
2008-07-09 16:29 - 2015-05-09 14:19 - 0106281 _____ () C:\ProgramData\nvModes.dat

Some zero byte size files/folders:
==========================
C:\Windows\eax.exe

==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\explorer.exe => File is digitally signed
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2015-05-09 14:51

==================== End Of Log ============================

Publicité


Signaler le contenu de ce document

Publicité