cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 16-05-2015 02
Ran by Laurent (administrator) on PC-LAURENT on 16-05-2015 14:36:20
Running from C:\Users\Laurent\Downloads
Loaded Profiles: Laurent (Available profiles: UpdatusUser & Laurent)
Platform: Windows 8.1 (X64) OS Language: Français (France)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Qualcomm Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\AdminService.exe
(Broadcom Corp.) C:\Program Files\Broadcom\MemoryCard\BrcmCardReader.exe
(Acer Incorporated) C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitorService.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\dsiwmis.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
() C:\Users\Laurent\AppData\Roaming\6979816A-1431777047-E211-BD65-B888E3BC1144\nsx7EB0.tmpfs
(NTI Corporation) C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LMutilps32.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LManager.exe
(Dritek System INC.) C:\Windows\RfBtnSvc64.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
() C:\Users\Laurent\AppData\Roaming\6979816A-1431777047-E211-BD65-B888E3BC1144\jnseC0C1.tmp
() C:\Users\Laurent\AppData\Roaming\6979816A-1431777047-E211-BD65-B888E3BC1144\hnsqDE0F.tmp
(Atheros) C:\Program Files (x86)\Qualcomm Atheros\Ath_WlanAgent.exe
(Microsoft Corporation) C:\Windows\System32\alg.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\MMDx64Fx.exe
(Intel Corporation) C:\Windows\System32\igfxext.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerTray.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerEvent.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Spotify Ltd) C:\Users\Laurent\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe
(Sony) C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe
(BitTorrent Inc.) C:\Users\Laurent\AppData\Roaming\uTorrent\uTorrent.exe
() C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanionInfo.exe
(Hawker) C:\Program Files (x86)\Hawker\VersionControl.exe
(NTI Corporation) C:\Program Files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exe
(Dritek System Inc.) C:\Program Files (x86)\RadioController\RfBtnHelper.exe
(Dolby Laboratories Inc.) C:\Dolby PCEE4\pcee4.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Qualcomm Atheros) C:\Program Files (x86)\Bluetooth Suite\BtTray.exe
(Qualcomm Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe
() C:\Program Files (x86)\Bluetooth Suite\ActivateDesktop.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Egis Technology Inc.) C:\Program Files\EgisTec IPS\PmmUpdate.exe
(Egis Technology Inc.) C:\Program Files\EgisTec IPS\EgisUpdate.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [12503184 2012-06-11] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1212048 2012-06-07] (Realtek Semiconductor)
HKLM\...\Run: [BtPreLoad] => C:\Program Files (x86)\Bluetooth Suite\BtPreLoad.exe [64640 2012-11-05] ()
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3008824 2012-11-29] (Synaptics Incorporated)
HKLM-x32\...\Run: [LManager] => [X]
HKLM-x32\...\Run: [RadioController] => C:\Program Files (x86)\RadioController\RfBtnHelper.exe [111216 2013-02-22] (Dritek System Inc.)
HKLM-x32\...\Run: [Dolby Home Theater v4] => C:\Dolby PCEE4\pcee4.exe [508256 2012-04-23] (Dolby Laboratories Inc.)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1022152 2014-12-19] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Hawker] => C:\Program Files (x86)\Hawker\VersionControl.exe [3187520 2015-05-11] (Hawker)
Winlogon\Notify\igfxcui: C:\WINDOWS\system32\igfxdev.dll (Intel Corporation)
HKLM\...\Policies\Explorer: [NoControlPanel] 0
HKLM\...\Policies\Explorer: [NoFolderOptions] 0
HKU\S-1-5-21-3693220932-554498560-2602698834-1002\...\Run: [Spotify Web Helper] => C:\Users\Laurent\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe [1176632 2014-05-20] (Spotify Ltd)
HKU\S-1-5-21-3693220932-554498560-2602698834-1002\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3678424 2014-02-24] (Disc Soft Ltd)
HKU\S-1-5-21-3693220932-554498560-2602698834-1002\...\Run: [Sony PC Companion] => C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe [455392 2015-04-10] (Sony)
HKU\S-1-5-21-3693220932-554498560-2602698834-1002\...\Run: [uTorrent] => C:\Users\Laurent\AppData\Roaming\uTorrent\uTorrent.exe [1694560 2015-05-14] (BitTorrent Inc.)
HKU\S-1-5-21-3693220932-554498560-2602698834-1002\...\Run: [Hawker] => C:\Program Files (x86)\Hawker\VersionControl.exe [3187520 2015-05-11] (Hawker)
HKU\S-1-5-21-3693220932-554498560-2602698834-1002\...\MountPoints2: {2a7c6a4b-57e2-11e4-bec0-f4b7e2a80bc2} - "F:\AutoRun.exe"
HKU\S-1-5-21-3693220932-554498560-2602698834-1002\...\MountPoints2: {b90ac289-bc37-11e3-be70-806e6f6e6963} - "G:\Startme.exe"
HKU\S-1-5-18\...\Run: [] => [X]
AppInit_DLLs-x32: c:\windows\syswow64\nvinit.dll => c:\windows\syswow64\nvinit.dll [141336 2013-09-05] (NVIDIA Corporation)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Acer Backup Manager Tray.lnk [2012-12-14]
ShortcutTarget: Acer Backup Manager Tray.lnk -> C:\Program Files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exe (NTI Corporation)
Startup: C:\Users\Laurent\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\hqghumeaylnlf.lnk [2015-05-16]
ShortcutTarget: hqghumeaylnlf.lnk -> C:\ProgramData\{69b203f5-c8cd-1893-69b2-203f5c8c0fd7}\hqghumeaylnlf.exe (No File)
Startup: C:\Users\Laurent\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Soraya veille au moral des troupes mylove mp4.lnk [2015-04-19]
ShortcutTarget: Soraya veille au moral des troupes mylove mp4.lnk -> C:\ProgramData\{f1f7570f-4d38-0438-f1f7-7570f4d35c3d}\Soraya veille au moral des troupes mylove mp4.exe (No File)
GroupPolicy: Group Policy on Chrome detected <======= ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKU\S-1-5-21-3693220932-554498560-2602698834-1002\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: CIESpeechBHO Class -> {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} -> C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll [2012-11-05] (Qualcomm Atheros Commnucations)
BHO-x32: LuckyTab Class -> {51D26BB4-4D2C-4AE4-9873-5FF41B6DED1F} -> C:\Program Files (x86)\XTab\SupTab.dll No File
BHO-x32: Hawker -> {853130B6-1A29-4D9D-9513-2A461287651E} -> C:\Program Files (x86)\Hawker\Hawker.dll [2015-05-11] (Hawker)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{3AAE7D9D-6097-4E55-95A0-DAB3093BFD88}: [NameServer] 31.168.228.251,82.166.96.251
Tcpip\..\Interfaces\{6F96A6C9-F4CF-44A2-BCFC-5D6D8DF5C8B9}: [NameServer] 31.168.228.251,82.166.96.251
Tcpip\..\Interfaces\{9C490CAA-56FA-4223-91A5-AC3E2E373BC1}: [NameServer] 31.168.228.251,82.166.96.251
StartMenuInternet: IEXPLORE.EXE - iexplore.exe

FireFox:
========
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_17_0_0_169.dll [2015-04-17] ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.40416.0\npctrl.dll [2015-04-16] ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_17_0_0_169.dll [2015-04-17] ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2012-06-07] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2012-06-07] (Intel Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.40416.0\npctrl.dll [2015-04-15] ( Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-05-15] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-05-15] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.1.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2014-02-05] (VideoLAN)
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll [2012-05-12] ()
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2015-05-01] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-3693220932-554498560-2602698834-1002: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Laurent\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2014-10-08] (Unity Technologies ApS)
FF Plugin HKU\S-1-5-21-3693220932-554498560-2602698834-1002: electronicarts.com/GameFacePlugin -> C:\Users\Laurent\AppData\Roaming\Electronic Arts\Game Face\npGameFacePlugin.dll [2012-12-20] (Electronic Arts)

Chrome:
=======
CHR dev: Chrome dev build detected! <======= ATTENTION
CHR HomePage: Default -> https://www.google.fr/
CHR StartupUrls: Default -> "https://www.google.fr/"
CHR Profile: C:\Users\Laurent\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Slides) - C:\Users\Laurent\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-05-16]
CHR Extension: (Google Docs) - C:\Users\Laurent\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-05-16]
CHR Extension: (Google Drive) - C:\Users\Laurent\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-05-16]
CHR Extension: (YouTube) - C:\Users\Laurent\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-05-16]
CHR Extension: (Google Search) - C:\Users\Laurent\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-05-16]
CHR Extension: (Google Sheets) - C:\Users\Laurent\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-05-16]
CHR Extension: (Gmail) - C:\Users\Laurent\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-05-16]

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [231040 2012-11-05] (Qualcomm Atheros Commnucations) [File not signed]
R2 BrcmCardReader; C:\Program Files\Broadcom\MemoryCard\BrcmCardReader.exe [176640 2012-08-31] (Broadcom Corp.) [File not signed]
S3 BRSptStub; C:\ProgramData\BitRaider\BRSptStub.exe [363208 2014-12-14] (BitRaider, LLC)
S3 BthHFSrv; C:\Windows\System32\BthHFSrv.dll [324608 2014-10-29] (Microsoft Corporation)
R2 CCDMonitorService; C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitorService.exe [2449552 2012-10-25] (Acer Incorporated)
S3 DeviceFastLaneService; C:\Program Files\Acer\Acer Device Fast-lane\DeviceFastLaneSvc.exe [469648 2012-11-17] (Acer Incorporated)
R3 ePowerSvc; C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe [658064 2012-10-23] (Acer Incorporated)
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [File not signed]
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [165760 2012-07-18] (Intel Corporation)
R2 NTI IScheduleSvc; C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe [259136 2012-11-03] (NTI Corporation)
S2 Orange update Core Service; C:\Program Files (x86)\Orange\OrangeUpdate\Service\OUCore.exe [729112 2015-02-05] (Orange SA)
R2 RfButtonDriverService; C:\Windows\RfBtnSvc64.exe [96880 2013-02-22] (Dritek System INC.)
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [366520 2015-02-04] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23792 2015-02-04] (Microsoft Corporation)
R2 xixynyko; C:\Users\Laurent\AppData\Roaming\6979816A-1431777047-E211-BD65-B888E3BC1144\jnseC0C1.tmp [235520 2015-05-16] () [File not signed]
R2 xygefuzu; C:\Users\Laurent\AppData\Roaming\6979816A-1431777047-E211-BD65-B888E3BC1144\hnsqDE0F.tmp [396288 2015-05-16] () [File not signed]
R2 ZAtheros Wlan Agent; C:\Program Files (x86)\Qualcomm Atheros\Ath_WlanAgent.exe [81536 2012-11-09] (Atheros) [File not signed]
R2 lupucylu; C:\Users\Laurent\AppData\Roaming\6979816A-1431777047-E211-BD65-B888E3BC1144\nsx7EB0.tmpfs [X]
S2 syqevuce; C:\Users\Laurent\AppData\Local\6979816A-1430017688-E211-BD65-B888E3BC1144\cnsl364B.tmp [X]

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

S3 aaeimznk; C:\Windows\System32\Drivers\aaeimznk.sys [423240 2014-05-23] (AVAST Software)
S3 BRDriver64_1_3_3_E02B25FC; C:\ProgramData\BitRaider\support\1.3.3\E02B25FC\BRDriver64.sys [78088 2014-12-14] (BitRaider)
R3 BTATH_LWFLT; C:\Windows\system32\DRIVERS\btath_lwflt.sys [76952 2012-11-05] (Qualcomm Atheros)
R3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [226304 2014-03-18] (Microsoft Corporation)
S3 dot4; C:\Windows\system32\DRIVERS\Dot4.sys [151968 2012-10-19] (Windows (R) Win 7 DDK provider)
S3 Dot4Print; C:\Windows\System32\drivers\Dot4Prt.sys [27040 2012-10-19] (Windows (R) Win 7 DDK provider)
U3 dtscsidrv; C:\Windows\System32\Drivers\dtscsidrv.sys [309248 2014-04-18] (Disc Soft Ltd)
S3 lccxkfqj; C:\Windows\System32\Drivers\lccxkfqj.sys [423240 2014-05-22] (AVAST Software)
R3 Ps2Kb2Hid; C:\Windows\System32\drivers\aPs2Kb2Hid.sys [26736 2013-02-22] (Dritek System Inc.)
R3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [31032 2012-11-29] (Synaptics Incorporated)
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [381440 2014-04-18] (Duplex Secure Ltd.)
R3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114496 2015-02-04] (Microsoft Corporation)
S3 WUDFWpdComp; C:\Windows\System32\drivers\WUDFRd.sys [226304 2014-10-29] (Microsoft Corporation)
S3 xusb22; C:\Windows\System32\drivers\xusb22.sys [87040 2014-03-18] (Microsoft Corporation)
S3 esgiguard; \??\C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys [X]
S3 MBAMSwissArmy; \??\C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [X]
S1 scfd_1_10_0_16; system32\drivers\scfd_1_10_0_16.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-05-16 14:36 - 2015-05-16 14:37 - 00018693 _____ () C:\Users\Laurent\Downloads\FRST.txt
2015-05-16 14:33 - 2015-05-16 14:36 - 00000000 ____D () C:\FRST
2015-05-16 14:32 - 2015-05-16 14:32 - 02107392 _____ (Farbar) C:\Users\Laurent\Desktop\FRST64.exe
2015-05-16 14:20 - 2015-05-16 14:20 - 00007650 _____ () C:\WINDOWS\PFRO.log
2015-05-16 14:20 - 2015-05-16 14:20 - 00001462 _____ () C:\Users\Laurent\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2015-05-16 14:20 - 2015-05-16 14:20 - 00000077 _____ () C:\WINDOWS\setupact.log
2015-05-16 14:20 - 2015-05-16 14:20 - 00000000 _____ () C:\WINDOWS\setuperr.log
2015-05-16 14:06 - 2015-05-16 14:19 - 00001210 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2015-05-16 14:06 - 2015-05-16 14:06 - 00000000 ____D () C:\Users\Laurent\Documents\Optimizer Pro
2015-05-16 13:56 - 2015-05-16 13:56 - 00003158 _____ () C:\WINDOWS\System32\Tasks\{436A234A-1CCE-48E0-A3E7-8DB76134B0D9}
2015-05-16 13:54 - 2015-05-16 14:36 - 00000181 _____ () C:\WINDOWS\verson_hawker.txt
2015-05-16 13:54 - 2015-05-16 13:56 - 00000000 ____D () C:\Users\Laurent\Documents\PCPrivacyDock
2015-05-16 13:54 - 2015-05-16 13:54 - 00000000 ____D () C:\Users\Laurent\AppData\Local\PC_Privacy_Dock
2015-05-16 13:54 - 2015-05-16 13:54 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hawker
2015-05-16 13:54 - 2015-05-16 13:54 - 00000000 ____D () C:\Program Files (x86)\Hawker
2015-05-16 13:53 - 2015-05-16 14:08 - 00000000 ____D () C:\Program Files (x86)\PCP
2015-05-16 13:53 - 2015-05-16 13:53 - 00000000 ____D () C:\Users\Default\AppData\Local\Crossbrowse
2015-05-16 13:53 - 2015-05-16 13:53 - 00000000 ____D () C:\Users\Default User\AppData\Local\Crossbrowse
2015-05-16 13:51 - 2015-05-16 13:52 - 02209792 _____ () C:\Users\Laurent\Downloads\adwcleaner_4.204.exe
2015-05-16 13:51 - 2013-08-22 15:25 - 00000824 _____ () C:\WINDOWS\system32\Drivers\etc\hp.bak
2015-05-16 13:50 - 2015-05-16 13:51 - 00000000 ____D () C:\Users\Laurent\AppData\Roaming\6979816A-1431777047-E211-BD65-B888E3BC1144
2015-05-16 13:43 - 2015-05-16 13:43 - 00000000 ____D () C:\Program Files (x86)\mbot_fr_624
2015-05-15 17:51 - 2015-05-15 17:51 - 00000988 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Utilitaires Sierra.lnk
2015-05-15 17:51 - 2015-05-15 17:51 - 00000155 _____ () C:\WINDOWS\tmpcpyis.bat
2015-05-15 17:51 - 2015-05-15 17:51 - 00000122 _____ () C:\WINDOWS\tmpdelis.bat
2015-05-15 17:51 - 2015-05-15 17:51 - 00000026 _____ () C:\WINDOWS\winstart.bat
2015-05-15 17:51 - 2015-05-15 17:51 - 00000000 ____D () C:\WINDOWS\solcache
2015-05-15 17:51 - 1998-06-10 13:07 - 01053184 _____ (Cendant Software) C:\WINDOWS\SysWOW64\SierraNW.dll
2015-05-15 17:51 - 1998-06-10 13:05 - 00231936 _____ (Cendant Software) C:\WINDOWS\SysWOW64\SNWValid.dll
2015-05-15 17:51 - 1997-09-18 00:00 - 00489613 _____ () C:\WINDOWS\SysWOW64\Oleaut32.1
2015-05-15 17:51 - 1997-07-14 14:57 - 00011104 _____ () C:\WINDOWS\SysWOW64\Snwvalid.hlp
2015-05-14 02:52 - 2015-04-30 22:35 - 00124112 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2015-05-14 02:52 - 2015-04-30 22:35 - 00102608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2015-05-12 22:28 - 2015-04-14 00:48 - 04180480 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2015-05-12 22:28 - 2015-04-10 03:00 - 01996800 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2015-05-12 22:28 - 2015-04-10 02:50 - 01387008 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2015-05-12 22:28 - 2015-04-10 02:26 - 01560576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll
2015-05-12 22:28 - 2015-04-09 00:55 - 00410128 _____ (Microsoft Corporation) C:\WINDOWS\system32\services.exe
2015-05-12 22:28 - 2015-03-30 07:47 - 00561928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2015-05-12 22:28 - 2015-03-27 05:27 - 00445440 _____ (Microsoft Corporation) C:\WINDOWS\system32\certcli.dll
2015-05-12 22:28 - 2015-03-27 04:50 - 00324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certcli.dll
2015-05-12 22:28 - 2015-03-27 04:48 - 01441792 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2015-05-12 22:27 - 2015-05-01 01:05 - 00429568 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2015-05-12 22:27 - 2015-05-01 00:48 - 00358912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll
2015-05-12 22:27 - 2015-04-21 19:14 - 24971776 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2015-05-12 22:27 - 2015-04-21 18:50 - 00584192 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2015-05-12 22:27 - 2015-04-21 18:50 - 00417792 _____ (Microsoft Corporation) C:\WINDOWS\system32\html.iec
2015-05-12 22:27 - 2015-04-21 18:49 - 02885120 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2015-05-12 22:27 - 2015-04-21 18:37 - 00633856 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieui.dll
2015-05-12 22:27 - 2015-04-21 18:35 - 00816640 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2015-05-12 22:27 - 2015-04-21 18:31 - 06025728 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2015-05-12 22:27 - 2015-04-21 18:24 - 19691008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2015-05-12 22:27 - 2015-04-21 18:13 - 00107520 _____ (Microsoft Corporation) C:\WINDOWS\system32\inseng.dll
2015-05-12 22:27 - 2015-04-21 18:11 - 00504320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2015-05-12 22:27 - 2015-04-21 18:09 - 00341504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\html.iec
2015-05-12 22:27 - 2015-04-21 18:08 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2015-05-12 22:27 - 2015-04-21 18:07 - 00145408 _____ (Microsoft Corporation) C:\WINDOWS\system32\iepeers.dll
2015-05-12 22:27 - 2015-04-21 18:05 - 00316928 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll
2015-05-12 22:27 - 2015-04-21 18:04 - 02278400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2015-05-12 22:27 - 2015-04-21 17:59 - 01032704 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcomm.dll
2015-05-12 22:27 - 2015-04-21 17:58 - 00664576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2015-05-12 22:27 - 2015-04-21 17:52 - 00262144 _____ (Microsoft Corporation) C:\WINDOWS\system32\webcheck.dll
2015-05-12 22:27 - 2015-04-21 17:49 - 00801280 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2015-05-12 22:27 - 2015-04-21 17:49 - 00720384 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2015-05-12 22:27 - 2015-04-21 17:49 - 00374272 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2015-05-12 22:27 - 2015-04-21 17:46 - 02125824 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2015-05-12 22:27 - 2015-04-21 17:40 - 14401536 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2015-05-12 22:27 - 2015-04-21 17:38 - 00076288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmled.dll
2015-05-12 22:27 - 2015-04-21 17:37 - 00128000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iepeers.dll
2015-05-12 22:27 - 2015-04-21 17:36 - 00285696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtrans.dll
2015-05-12 22:27 - 2015-04-21 17:32 - 00880128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcomm.dll
2015-05-12 22:27 - 2015-04-21 17:31 - 04305920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2015-05-12 22:27 - 2015-04-21 17:28 - 00230400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webcheck.dll
2015-05-12 22:27 - 2015-04-21 17:27 - 02352128 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2015-05-12 22:27 - 2015-04-21 17:26 - 00688640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2015-05-12 22:27 - 2015-04-21 17:26 - 00327168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2015-05-12 22:27 - 2015-04-21 17:25 - 02052608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2015-05-12 22:27 - 2015-04-21 17:17 - 12828672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2015-05-12 22:27 - 2015-04-21 17:15 - 01547264 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2015-05-12 22:27 - 2015-04-21 17:03 - 00800768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2015-05-12 22:27 - 2015-04-21 17:02 - 01882112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2015-05-12 22:27 - 2015-04-21 16:58 - 01310208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2015-05-12 22:27 - 2015-04-21 16:56 - 00710144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2015-05-09 01:59 - 2015-05-09 01:59 - 00173970 _____ () C:\Users\Laurent\Downloads\Better_Call_Saul - season 1.fr.zip
2015-05-09 01:59 - 2015-05-09 01:59 - 00000000 ____D () C:\Users\Laurent\Downloads\Better_Call_Saul - season 1.fr
2015-05-09 01:58 - 2015-05-09 02:12 - 00000000 ____D () C:\Users\Laurent\Downloads\Better.Call.Saul.S01.720p.WEB-DL.DD5.1.H.264-CtrlHD[ettv]
2015-05-09 01:57 - 2015-05-09 01:57 - 00038791 _____ () C:\Users\Laurent\Downloads\[kickass.to]better.call.saul.s01.720p.web.dl.dd5.1.h.264.ctrlhd.ettv.torrent
2015-05-09 01:55 - 2015-05-09 01:55 - 00283145 _____ () C:\Users\Laurent\Downloads\[kickass.to]marvel.s.agent.carter.season.01.complete.720p.hdtv.dd5.1.x264.qtl.torrent
2015-05-08 23:27 - 2015-05-08 23:35 - 00000000 ____D () C:\Users\Laurent\Downloads\Sons Of Anarchy Season 1 - COMPLETE 720p HDTV x264 [MKV,AC3,5.1] Ehhhh
2015-05-08 22:54 - 2015-05-08 22:54 - 00000000 ____D () C:\Users\Laurent\Downloads\Sons_of_Anarchy - season 1.fr
2015-05-08 22:53 - 2015-05-08 22:53 - 00591611 _____ () C:\Users\Laurent\Downloads\Sons_of_Anarchy - season 1.fr (1).zip
2015-05-08 22:52 - 2015-05-08 22:52 - 00016992 _____ () C:\Users\Laurent\Downloads\[kickass.to]sons.of.anarchy.season.1.complete.720p.hdtv.x264.mkv.ac3.5.1.ehhhh.torrent
2015-05-02 17:52 - 2015-05-16 14:19 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2015-05-02 17:51 - 2015-05-16 14:21 - 00001094 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2015-05-02 17:51 - 2015-05-16 14:01 - 00001098 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2015-05-02 17:51 - 2015-05-15 16:56 - 00004070 _____ () C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2015-05-02 17:51 - 2015-05-15 16:56 - 00003834 _____ () C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2015-04-26 03:27 - 2015-05-16 13:55 - 00002511 _____ () C:\WINDOWS\SysWOW64\${LOGFILE}
2015-04-26 03:18 - 2015-04-26 03:19 - 00000004 _____ () C:\WINDOWS\SysWOW64\029B560A371F4E00AB32838EBC01B9E7
2015-04-26 03:12 - 2015-04-26 03:12 - 00000051 _____ () C:\WINDOWS\winfix.ini
2015-04-26 03:06 - 2015-05-16 14:21 - 00001034 _____ () C:\WINDOWS\Tasks\0kM0ndjT9b5YmTTz.job
2015-04-26 03:06 - 2015-04-26 03:06 - 00004050 _____ () C:\WINDOWS\System32\Tasks\0kM0ndjT9b5YmTTz
2015-04-26 03:04 - 2015-05-16 14:26 - 00001048 _____ () C:\WINDOWS\Tasks\DLAr7t6p9cftcTauHexwg5E.job
2015-04-26 03:04 - 2015-04-26 03:04 - 00004064 _____ () C:\WINDOWS\System32\Tasks\DLAr7t6p9cftcTauHexwg5E
2015-04-20 15:45 - 2015-04-20 15:45 - 01579520 _____ () C:\Users\Laurent\AppData\Roaming\DLAr7t6p9cftcTauHexwg5E.exe
2015-04-20 15:45 - 2015-04-20 15:45 - 01579520 _____ () C:\Users\Laurent\AppData\Roaming\0kM0ndjT9b5YmTTz.exe
2015-04-19 14:20 - 2015-04-19 14:20 - 00005872 _____ () C:\Users\Laurent\AppData\Roaming\DLAr7t6p9cftcTauHexwg5E
2015-04-19 14:20 - 2015-04-19 14:20 - 00005872 _____ () C:\Users\Laurent\AppData\Roaming\0kM0ndjT9b5YmTTz
2015-04-18 16:18 - 2015-04-18 16:18 - 00000000 ____D () C:\net-snmp-compil-win
2015-04-18 15:59 - 2015-04-24 21:56 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Orange
2015-04-18 15:58 - 2015-04-26 04:17 - 00000000 ____D () C:\ProgramData\Orange
2015-04-18 15:58 - 2015-04-24 21:56 - 00000000 ____D () C:\Users\Laurent\AppData\Roaming\Orange
2015-04-18 15:58 - 2015-04-24 21:56 - 00000000 ____D () C:\Users\Laurent\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Orange
2015-04-18 15:58 - 2015-04-18 15:58 - 00000000 ____D () C:\Users\Laurent\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\My Application
2015-04-18 15:57 - 2015-04-18 15:57 - 00000000 ____D () C:\Users\Default\AppData\Roaming\Macromedia
2015-04-18 15:57 - 2015-04-18 15:57 - 00000000 ____D () C:\Users\Default User\AppData\Roaming\Macromedia
2015-04-18 15:57 - 2015-04-18 15:57 - 00000000 ____D () C:\ProgramData\Apple
2015-04-18 15:42 - 2015-04-24 21:56 - 00000000 ____D () C:\Program Files (x86)\Orange
2015-04-18 00:03 - 2015-03-23 00:45 - 00227328 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepdu.dll
2015-04-18 00:03 - 2015-03-23 00:09 - 01111552 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2015-04-18 00:03 - 2015-03-23 00:09 - 00957440 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2015-04-18 00:03 - 2015-03-23 00:09 - 00769024 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2015-04-18 00:03 - 2015-03-23 00:09 - 00726528 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2015-04-18 00:03 - 2015-03-23 00:09 - 00419328 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2015-04-18 00:03 - 2015-03-23 00:09 - 00030720 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2015-04-17 23:57 - 2015-03-23 23:59 - 07476032 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2015-04-17 23:57 - 2015-03-23 23:59 - 01733952 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2015-04-17 23:57 - 2015-03-23 23:59 - 00360480 _____ (Microsoft Corporation) C:\WINDOWS\system32\sechost.dll
2015-04-17 23:57 - 2015-03-23 23:58 - 01498872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2015-04-17 23:57 - 2015-03-23 23:45 - 00257216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sechost.dll
2015-04-17 23:57 - 2015-03-20 06:12 - 00246272 _____ (Microsoft Corporation) C:\WINDOWS\system32\microsoft-windows-system-events.dll
2015-04-17 23:57 - 2015-03-20 06:10 - 00285184 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64.dll
2015-04-17 23:57 - 2015-03-20 06:10 - 00013312 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64cpu.dll
2015-04-17 23:57 - 2015-03-20 05:17 - 00411648 _____ (Microsoft Corporation) C:\WINDOWS\system32\tracerpt.exe
2015-04-17 23:57 - 2015-03-20 04:41 - 00369152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tracerpt.exe
2015-04-17 23:57 - 2015-03-20 04:40 - 00950784 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdh.dll
2015-04-17 23:57 - 2015-03-20 04:16 - 00749568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdh.dll
2015-04-17 23:57 - 2015-03-14 10:20 - 01385256 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2015-04-17 23:57 - 2015-03-14 10:13 - 01124352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2015-04-17 23:56 - 2015-03-13 04:58 - 00259072 _____ (Microsoft Corporation) C:\WINDOWS\system32\pku2u.dll
2015-04-17 23:56 - 2015-03-13 04:37 - 00208896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pku2u.dll
2015-04-17 23:56 - 2015-02-21 01:49 - 00780800 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsm.dll
2015-04-17 23:51 - 2015-02-24 10:32 - 00991552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\http.sys
2015-04-17 23:40 - 2015-03-14 10:54 - 00133256 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2015-04-17 23:40 - 2015-03-14 03:56 - 00066048 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups.dll
2015-04-17 23:40 - 2015-03-14 03:56 - 00052224 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups2.dll
2015-04-17 23:40 - 2015-03-14 03:51 - 00015360 _____ (Microsoft Corporation) C:\WINDOWS\system32\wu.upgrade.ps.dll
2015-04-17 23:40 - 2015-03-14 03:37 - 00267264 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinSetupUI.dll
2015-04-17 23:40 - 2015-03-14 03:14 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wups.dll
2015-04-17 23:40 - 2015-03-14 02:22 - 03678720 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2015-04-17 23:40 - 2015-03-14 02:12 - 00140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuwebv.dll
2015-04-17 23:40 - 2015-03-14 02:12 - 00035840 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapp.exe
2015-04-17 23:40 - 2015-03-14 02:09 - 00200192 _____ (Microsoft Corporation) C:\WINDOWS\system32\storewuauth.dll
2015-04-17 23:40 - 2015-03-14 02:08 - 00408064 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUSettingsProvider.dll
2015-04-17 23:40 - 2015-03-14 02:08 - 00095744 _____ (Microsoft Corporation) C:\WINDOWS\system32\wudriver.dll
2015-04-17 23:40 - 2015-03-14 02:06 - 02373632 _____ (Microsoft Corporation) C:\WINDOWS\system32\wucltux.dll
2015-04-17 23:40 - 2015-03-14 02:06 - 00891392 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2015-04-17 23:40 - 2015-03-14 02:02 - 00124928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuwebv.dll
2015-04-17 23:40 - 2015-03-14 02:02 - 00029696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapp.exe
2015-04-17 23:40 - 2015-03-14 01:59 - 00721920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2015-04-17 23:40 - 2015-03-14 01:59 - 00081920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wudriver.dll
2015-04-17 23:40 - 2015-03-04 12:25 - 00377152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys
2015-04-17 23:40 - 2015-03-04 05:04 - 00075264 _____ (Microsoft Corporation) C:\WINDOWS\system32\clfsw32.dll
2015-04-17 23:40 - 2015-03-04 04:19 - 00058880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\clfsw32.dll
2015-04-17 19:36 - 2015-04-17 19:38 - 00000000 ___SD () C:\WINDOWS\system32\GWX
2015-04-17 19:36 - 2015-04-17 19:36 - 00000000 ___SD () C:\WINDOWS\SysWOW64\GWX
2015-04-16 16:43 - 2015-04-18 01:50 - 1571780319 ____R () C:\Users\Laurent\Downloads\[ www.Cpasbien.pw ] Escobar.Paradise.Lost.2014.FRENCH.720p.BluRay.x264-ULSHD.mkv

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-05-16 14:37 - 2014-04-14 23:31 - 00000000 ____D () C:\Users\Laurent\AppData\Roaming\uTorrent
2015-05-16 14:35 - 2014-11-30 18:10 - 01688592 _____ () C:\WINDOWS\WindowsUpdate.log
2015-05-16 14:31 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\system32\sru
2015-05-16 14:27 - 2014-03-18 12:02 - 01824010 _____ () C:\WINDOWS\system32\PerfStringBackup.INI
2015-05-16 14:27 - 2014-03-18 11:26 - 00812350 _____ () C:\WINDOWS\system32\perfh00C.dat
2015-05-16 14:27 - 2014-03-18 11:26 - 00159412 _____ () C:\WINDOWS\system32\perfc00C.dat
2015-05-16 14:26 - 2014-04-04 22:31 - 00003596 _____ () C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3693220932-554498560-2602698834-1002
2015-05-16 14:21 - 2014-05-13 20:14 - 00000000 __RDO () C:\Users\Laurent\OneDrive
2015-05-16 14:21 - 2014-05-01 17:28 - 00000439 _____ () C:\WINDOWS\system32\Drivers\etc\hosts.ics
2015-05-16 14:20 - 2013-08-22 16:45 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
2015-05-16 14:19 - 2014-04-04 23:23 - 00000000 ____D () C:\AdwCleaner
2015-05-16 14:19 - 2013-08-22 15:25 - 00524288 ___SH () C:\WINDOWS\system32\config\BBI
2015-05-16 14:12 - 2014-04-22 13:41 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sierra
2015-05-16 14:12 - 2014-04-22 13:38 - 00000415 _____ () C:\WINDOWS\SIERRA.INI
2015-05-16 14:09 - 2012-07-26 07:26 - 00000226 _____ () C:\WINDOWS\win.ini
2015-05-16 14:06 - 2014-04-14 23:58 - 00000000 ____D () C:\Users\Laurent\AppData\Roaming\DAEMON Tools Lite
2015-05-16 14:05 - 2015-03-28 19:39 - 00000000 ___DC () C:\Users\Laurent\AppData\Local\MigWiz
2015-05-16 14:02 - 2014-04-17 02:30 - 00000993 _____ () C:\Users\Laurent\Desktop\Internet Explorer.lnk
2015-05-16 13:56 - 2015-02-28 00:49 - 00001002 _____ () C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2015-05-16 13:43 - 2014-06-09 23:51 - 00000000 ____D () C:\Program Files (x86)\Software
2015-05-16 13:25 - 2014-05-03 04:14 - 00003952 _____ () C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{A24CF7D9-82A8-49BA-8B3E-93CB4FB06074}
2015-05-15 18:09 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\AppReadiness
2015-05-15 17:59 - 2014-04-14 23:58 - 00000000 ____D () C:\Program Files (x86)\DAEMON Tools Lite
2015-05-15 17:56 - 2013-08-22 16:44 - 00388424 _____ () C:\WINDOWS\system32\FNTCACHE.DAT
2015-05-15 17:54 - 2014-07-27 22:21 - 00000000 ____D () C:\Program Files\Microsoft Silverlight
2015-05-15 17:54 - 2014-07-27 22:21 - 00000000 ____D () C:\Program Files (x86)\Microsoft Silverlight
2015-05-15 17:52 - 2013-08-22 15:36 - 00000000 ____D () C:\WINDOWS\system32\AdvancedInstallers
2015-05-15 17:51 - 2015-02-22 18:35 - 00001795 _____ () C:\WINDOWS\wininit.ini
2015-05-15 17:51 - 2014-04-22 13:38 - 00000000 ____D () C:\Sierra
2015-05-15 17:51 - 2014-04-22 13:38 - 00000000 ____D () C:\Program Files (x86)\Sierra On-Line
2015-05-15 17:02 - 2014-12-29 19:55 - 00000000 ____D () C:\Users\Laurent\Downloads\Star Wars Battlefront II
2015-05-15 17:01 - 2014-04-07 20:37 - 00000000 ____D () C:\Users\Laurent\AppData\Roaming\vlc
2015-05-15 00:19 - 2014-04-04 23:19 - 00002457 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
2015-05-14 02:55 - 2012-07-26 09:59 - 00000000 ____D () C:\WINDOWS\CbsTemp
2015-05-14 02:49 - 2014-07-27 22:23 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2015-05-14 02:44 - 2014-03-18 11:41 - 00000000 ____D () C:\Program Files\Windows Journal
2015-05-13 02:10 - 2014-04-22 14:13 - 00021840 ____T () C:\WINDOWS\SysWOW64\SIntfNT.dll
2015-05-13 02:10 - 2014-04-22 14:13 - 00017212 ____T () C:\WINDOWS\SysWOW64\SIntf32.dll
2015-05-13 02:10 - 2014-04-22 14:13 - 00012067 ____T () C:\WINDOWS\SysWOW64\SIntf16.dll
2015-05-12 13:35 - 2015-04-01 13:49 - 00000000 ____D () C:\Users\Laurent\Documents\GTA Vice City User Files
2015-05-05 19:59 - 2014-08-21 03:04 - 00792568 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2015-05-05 19:59 - 2014-08-21 03:04 - 00178168 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2015-05-02 17:52 - 2014-04-04 22:41 - 00000000 ____D () C:\Program Files (x86)\Google
2015-05-02 17:51 - 2014-05-22 16:54 - 00000000 ____D () C:\Users\Laurent\AppData\Local\Deployment
2015-05-01 21:41 - 2014-05-31 17:08 - 00379904 ___SH () C:\Users\Laurent\Downloads\Thumbs.db
2015-04-30 18:31 - 2014-05-09 04:40 - 00002046 _____ () C:\Users\Public\Desktop\Sony PC Companion 2.1.lnk
2015-04-30 18:31 - 2014-05-09 04:40 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sony
2015-04-30 18:31 - 2012-12-14 04:06 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2015-04-26 07:45 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\rescache
2015-04-26 03:41 - 2014-04-04 23:18 - 00000000 ____D () C:\Program Files (x86)\Adobe
2015-04-26 03:30 - 2014-04-17 02:06 - 00000000 ____D () C:\Users\Laurent
2015-04-19 01:39 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\AppCompat
2015-04-18 21:45 - 2014-04-04 23:26 - 00000000 ____D () C:\WINDOWS\system32\MRT
2015-04-18 21:28 - 2014-04-04 23:26 - 128913832 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2015-04-18 20:35 - 2014-12-13 08:18 - 00000000 ____D () C:\WINDOWS\system32\appraiser
2015-04-18 20:35 - 2014-07-17 00:12 - 00000000 ___SD () C:\WINDOWS\system32\CompatTel
2015-04-18 18:45 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\system32\NDF
2015-04-18 15:57 - 2014-04-04 23:18 - 00000000 ____D () C:\ProgramData\Adobe
2015-04-18 15:57 - 2014-04-04 23:14 - 00000000 ____D () C:\Users\Laurent\AppData\Local\Adobe
2015-04-18 15:57 - 2014-04-04 22:25 - 00000000 ____D () C:\Users\Laurent\AppData\Roaming\Adobe
2015-04-18 01:25 - 2015-04-11 16:09 - 3489564608 ____R () C:\Users\Laurent\Downloads\[ www.Cpasbien.pw ] Foxcatcher.2014.FRENCH.720p.BluRay.DTS.x264-DesTroY.mkv
2015-04-18 00:33 - 2015-04-11 16:07 - 1565836384 ____R () C:\Users\Laurent\Downloads\[ www.Cpasbien.pw ] Mommy.2014.FRENCH.720p.BluRay.x264-LOST.mkv
2015-04-17 19:00 - 2015-02-28 00:49 - 00003890 _____ () C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater

==================== Files in the root of some directories =======

2015-04-19 14:20 - 2015-04-19 14:20 - 0005872 _____ () C:\Users\Laurent\AppData\Roaming\0kM0ndjT9b5YmTTz
2015-04-20 15:45 - 2015-04-20 15:45 - 1579520 _____ () C:\Users\Laurent\AppData\Roaming\0kM0ndjT9b5YmTTz.exe
2015-04-19 14:20 - 2015-04-19 14:20 - 0005872 _____ () C:\Users\Laurent\AppData\Roaming\DLAr7t6p9cftcTauHexwg5E
2015-04-20 15:45 - 2015-04-20 15:45 - 1579520 _____ () C:\Users\Laurent\AppData\Roaming\DLAr7t6p9cftcTauHexwg5E.exe
2014-04-15 00:01 - 2014-04-15 00:01 - 1097384 _____ (AnyProtect.com) C:\Users\Laurent\AppData\Local\nsm48D1.tmp
2014-04-28 14:59 - 2014-04-28 14:59 - 1107768 _____ (AnyProtect.com) C:\Users\Laurent\AppData\Local\nsnC150.tmp
2013-02-22 15:15 - 2013-02-22 15:15 - 0000000 ____H () C:\ProgramData\DP45977C.lfl

Some content of TEMP:
====================
C:\Users\Laurent\AppData\Local\Temp\4028.exe
C:\Users\Laurent\AppData\Local\Temp\CloudBackup6846.exe
C:\Users\Laurent\AppData\Local\Temp\ecgcabfbcacbc.exe
C:\Users\Laurent\AppData\Local\Temp\ICReinstall_CR_Downloader_pour_visual-boy-advance.exe
C:\Users\Laurent\AppData\Local\Temp\JacquieetMichelTV. .Swan.explose.a.Paris!__10924_i1516742407_il1276710.exe
C:\Users\Laurent\AppData\Local\Temp\marvel.s.daredevil.season.1.720p.complete.with.english.subtitles__10924_i1504655311_il1324054.exe
C:\Users\Laurent\AppData\Local\Temp\MYPCBU.exe
C:\Users\Laurent\AppData\Local\Temp\optprosetup.exe
C:\Users\Laurent\AppData\Local\Temp\Quarantine.exe
C:\Users\Laurent\AppData\Local\Temp\sqlite3.dll
C:\Users\Laurent\AppData\Local\Temp\WinFixPro.exe
C:\Users\Laurent\AppData\Local\Temp\WinFixProPackage.exe
C:\Users\Laurent\AppData\Local\Temp\xSU9037.exe


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2015-05-16 00:41

==================== End Of Log ============================

Publicité


Signaler le contenu de ce document

Publicité