Publicité
Publicité
Format du document : text/plain
Prévisualisation
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:21-06-2015 01
Ran by manuel (administrator) on MAISON on 21-06-2015 17:38:19
Running from C:\Users\manuel\Downloads
Loaded Profiles: manuel (Available Profiles: manuel)
Platform: Windows 8.1 (X64) OS Language: Français (France)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(IObit) C:\Program Files (x86)\IObit\Advanced SystemCare 7\ASCService.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
() C:\Program Files (x86)\Accelerer PC\PCSUService.exe
(Windows (R) Win 7 DDK provider) C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\AdminService.exe
(Acer Incorporated) C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDService.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Acer Incorporate) C:\Program Files\Acer\Acer Launch Manager\LMSvc.exe
(McAfee, Inc.) C:\Windows\System32\mfevtps.exe
(McAfee, Inc.) C:\Program Files\Common Files\mcafee\systemcore\mfefire.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(IObit) C:\Program Files (x86)\IObit\Advanced SystemCare 7\Monitor.exe
(Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe
(Acer Incorporate) C:\Program Files\Acer\Acer Launch Manager\LMEvent.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel Corporation) C:\Windows\System32\igfxTray.exe
(Acer Incorporate) C:\Program Files\Acer\Acer Launch Manager\LMTray.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDTouch.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
(Qualcomm®Atheros®) C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(IObit) C:\Program Files (x86)\IObit\Advanced SystemCare 7\ASCTray.exe
(© 2015 Microsoft Corporation) C:\Users\manuel\AppData\Local\Microsoft\BingSvc\BingSvc.exe
(Acer Incorporated) C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exe
() C:\Program Files (x86)\Acer\abDocs\abDocsDllLoader.exe
() C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\ActivateDesktop.exe
(Acer Cloud Technology) C:\Program Files (x86)\Acer\AOP Framework\acer\ccd.exe
() C:\Program Files (x86)\Acer\abDocs\abDocsDllLoaderMonitor.exe
(Acer Incorporate) C:\Program Files\Acer\Acer Quick Access\QASvc.exe
(Acer Incorporate) C:\Program Files\Acer\Acer Quick Access\RMSvc.exe
(Acer Incorporate) C:\Program Files\Acer\Acer Quick Access\QAEvent.exe
(Acer Incorporate) C:\Program Files\Acer\Acer Quick Access\QAMsg.exe
(Acer Incorporate) C:\Program Files\Acer\Acer Quick Access\QuickAccess.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(IvoSoft) C:\Program Files\Classic Shell\ClassicStartMenu.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avgnt.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avguard.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avshadow.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\sched.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_18_0_0_160.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_18_0_0_160.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avscan.exe
(Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.3.9600.17709_none_fa7932f59afc2e40\TiWorker.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avscan.exe
==================== Registry (Whitelisted) ==================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [2890056 2013-10-02] (ELAN Microelectronics Corp.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13672152 2014-11-17] (Realtek Semiconductor)
HKLM\...\Run: [Classic Start Menu] => C:\Program Files\Classic Shell\ClassicStartMenu.exe [164112 2015-05-16] (IvoSoft)
HKLM-x32\...\Run: [BacKGround Agent] => C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exe [66304 2015-05-06] (Acer Incorporated)
HKLM-x32\...\Run: [abDocsDllLoader] => C:\Program Files (x86)\Acer\abDocs\abDocsDllLoader.exe [92928 2015-05-06] ()
HKLM-x32\...\Run: [Avira Systray] => C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe [134368 2015-06-02] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [avgnt] => C:\Program Files (x86)\Avira\Antivirus\avgnt.exe [730416 2015-05-28] (Avira Operations GmbH & Co. KG)
Winlogon\Notify\igfxcui: igfxdev.dll [X]
HKLM\...\Policies\Explorer\Run: [BtvStack] => C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe [133760 2013-12-24] (Qualcomm®Atheros®)
HKU\S-1-5-21-109147421-2626192411-2511064847-1001\...\Run: [Facebook Update] => C:\Users\manuel\AppData\Local\Facebook\Update\FacebookUpdate.exe [138096 2014-10-18] (Facebook Inc.)
HKU\S-1-5-21-109147421-2626192411-2511064847-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [28785792 2015-06-02] (Skype Technologies S.A.)
HKU\S-1-5-21-109147421-2626192411-2511064847-1001\...\Run: [Advanced SystemCare 7] => C:\Program Files (x86)\IObit\Advanced SystemCare 7\ASCTray.exe [2283808 2013-11-11] (IObit)
HKU\S-1-5-21-109147421-2626192411-2511064847-1001\...\Run: [Softonic for Windows] => C:\Users\manuel\AppData\Local\Softonic\Softonic.exe [4170224 2014-05-26] (Softonic)
HKU\S-1-5-21-109147421-2626192411-2511064847-1001\...\Run: [BingSvc] => C:\Users\manuel\AppData\Local\Microsoft\BingSvc\BingSvc.exe [144008 2015-04-07] (© 2015 Microsoft Corporation)
HKU\S-1-5-21-109147421-2626192411-2511064847-1001\...\Run: [uTorrent] => C:\Users\manuel\Desktop\uTorrent_3_4_2_36318.exe [1720912 2014-12-25] (BitTorrent Inc.)
HKU\S-1-5-21-109147421-2626192411-2511064847-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\System32\scrnsave.scr [11776 2015-01-13] (Microsoft Corporation)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk [2014-11-21]
ShortcutTarget: McAfee Security Scan Plus.lnk -> C:\Program Files\McAfee Security Scan\3.8.150\SSScheduler.exe (McAfee, Inc.)
Startup: C:\Users\manuel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Messenger.lnk [2014-12-01]
ShortcutTarget: Messenger.lnk -> C:\Program Files (x86)\rencontre-affinites\rencontre-affinites.exe (Rentabiliweb)
ShellIconOverlayIdentifiers: [ ACloudSynced] -> {5CCE71FA-9F61-4F24-9CD1-98D819B40D68} => C:\Program Files (x86)\Acer\shellext\x64\shellext_win.dll [2015-05-06] (Acer Incorporated)
ShellIconOverlayIdentifiers: [ ACloudSyncing] -> {C1E1456F-C2D8-4C96-870D-35F1E13941EE} => C:\Program Files (x86)\Acer\shellext\x64\shellext_win.dll [2015-05-06] (Acer Incorporated)
ShellIconOverlayIdentifiers: [ ACloudToBeSynced] -> {307523FA-DDC0-4068-983F-2A6B34627744} => C:\Program Files (x86)\Acer\shellext\x64\shellext_win.dll [2015-05-06] (Acer Incorporated)
ShellIconOverlayIdentifiers: [ShareOverlay] -> {594D4122-1F87-41E2-96C7-825FB4796516} => C:\Program Files\Classic Shell\ClassicExplorer64.dll [2015-05-16] (IvoSoft)
ShellIconOverlayIdentifiers-x32: [ShareOverlay] -> {594D4122-1F87-41E2-96C7-825FB4796516} => C:\Program Files\Classic Shell\ClassicExplorer32.dll [2015-05-16] (IvoSoft)
GroupPolicy: Group Policy on Chrome detected <======= ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/?pc=MSE1
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://websearch.hotsearches.info/?pid=24389&r=2015/06/21&hid=16622153133810271462&lg=EN&cc=BE&unqvl=90
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.sweet-page.com/web/?type=ds&ts=1413025458&from=cor&uid=ST500LT012-1DG142_S3P2BZJ9XXXXS3P2BZJ9&q={searchTerms}
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://www.sweet-page.com/web/?type=ds&ts=1413025458&from=cor&uid=ST500LT012-1DG142_S3P2BZJ9XXXXS3P2BZJ9&q={searchTerms}
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.sweet-page.com/?type=hp&ts=1413025458&from=cor&uid=ST500LT012-1DG142_S3P2BZJ9XXXXS3P2BZJ9
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.sweet-page.com/?type=hp&ts=1413025458&from=cor&uid=ST500LT012-1DG142_S3P2BZJ9XXXXS3P2BZJ9
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.sweet-page.com/web/?type=ds&ts=1413025458&from=cor&uid=ST500LT012-1DG142_S3P2BZJ9XXXXS3P2BZJ9&q={searchTerms}
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.sweet-page.com/web/?type=ds&ts=1413025458&from=cor&uid=ST500LT012-1DG142_S3P2BZJ9XXXXS3P2BZJ9&q={searchTerms}
HKU\S-1-5-21-109147421-2626192411-2511064847-1001\Software\Microsoft\Internet Explorer\Main,Start Page = http://websearch.hotsearches.info/?pid=24389&r=2015/06/21&hid=16622153133810271462&lg=EN&cc=BE&unqvl=90
HKU\S-1-5-21-109147421-2626192411-2511064847-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.sweet-page.com/?type=hp&ts=1413025458&from=cor&uid=ST500LT012-1DG142_S3P2BZJ9XXXXS3P2BZJ9
SearchScopes: HKLM -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL =
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> DefaultScope {BB82DE59-BC4C-4172-9AC4-73315F71CFFE} URL = http://websearch.hotsearches.info/?l=1&q={searchTerms}&pid=24389&r=2015/06/21&hid=16622153133810271462&lg=EN&cc=BE&unqvl=90
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> {BB82DE59-BC4C-4172-9AC4-73315F71CFFE} URL = http://websearch.hotsearches.info/?l=1&q={searchTerms}&pid=24389&r=2015/06/21&hid=16622153133810271462&lg=EN&cc=BE&unqvl=90
SearchScopes: HKU\.DEFAULT -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL =
SearchScopes: HKU\.DEFAULT -> {764BAF3D-8545-4658-92C2-50F07D91DD22} URL =
SearchScopes: HKU\S-1-5-21-109147421-2626192411-2511064847-1001 -> DefaultScope {BB82DE59-BC4C-4172-9AC4-73315F71CFFE} URL = http://websearch.hotsearches.info/?l=1&q={searchTerms}&pid=24389&r=2015/06/21&hid=16622153133810271462&lg=EN&cc=BE&unqvl=90
SearchScopes: HKU\S-1-5-21-109147421-2626192411-2511064847-1001 -> {764BAF3D-8545-4658-92C2-50F07D91DD22} URL = http://www.bing.com/search?FORM=UP97DF&PC=UP97&q={searchTerms}&src=IE-SearchBox
SearchScopes: HKU\S-1-5-21-109147421-2626192411-2511064847-1001 -> {BB82DE59-BC4C-4172-9AC4-73315F71CFFE} URL = http://websearch.hotsearches.info/?l=1&q={searchTerms}&pid=24389&r=2015/06/21&hid=16622153133810271462&lg=EN&cc=BE&unqvl=90
SearchScopes: HKU\S-1-5-21-109147421-2626192411-2511064847-1001 -> {BDEA41DB-C83C-405F-B91F-FBC4EB93CA2B} URL = https://search.yahoo.com/search?fr=chr-greentree_ie&ei=utf-8&ilc=12&type=198484&p={searchTerms}
BHO: No Name -> {2760361b-1ac8-4cb3-8768-974ebbd14916} -> No File
BHO: SalesiCCheckerr -> {3684acda-d6cf-43f4-a377-18dd9b85d163} -> C:\Program Files (x86)\SalesiCCheckerr\9VsaXrqxr3kfU0.x64.dll [2015-03-15] ()
BHO: PriCeMeianus -> {414F8C13-D2F0-489E-A3EA-FB1DAE78BC05} -> C:\Program Files (x86)\PriCeMeianus\5eHbNh5pNoYCDC.x64.dll [2015-06-21] ()
BHO: ExplorerBHO Class -> {449D0D6E-2412-4E61-B68F-1CB625CD9E52} -> C:\Program Files\Classic Shell\ClassicExplorer64.dll [2015-05-16] (IvoSoft)
BHO: No Name -> {45642cc3-1885-4bdc-bb35-659f248b989e} -> No File
BHO: PrIceMeiinuS -> {49D0F8AC-E025-412C-B831-C6806B7808AC} -> C:\Program Files (x86)\PrIceMeiinuS\3ro48ZMqQZJYqA.x64.dll [2015-06-21] ()
BHO: LuckYoCoupon -> {4E09A2CA-D9FC-4734-9204-59C0AA01E05C} -> C:\Program Files (x86)\LuckYoCoupon\dzt0AN04MZIhVL.x64.dll [2015-05-28] ()
BHO: No Name -> {6492c498-54aa-44c0-b357-d96d8265ef48} -> No File
BHO: PriCeeMinus -> {7027417F-7634-447C-8BC6-81CCF391920C} -> C:\Program Files (x86)\PriCeeMinus\CWbW1zuelVZ4tl.x64.dll [2015-06-21] ()
BHO: No Name -> {ac7e4b14-32d3-43d2-a7f6-b273d34659a3} -> No File
BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-05-01] (Microsoft Corporation)
BHO: No Name -> {b48c8dfb-fcb0-4c1f-b3b6-979b9d12a71e} -> No File
BHO: ClassicIEBHO Class -> {EA801577-E6AD-4BD5-8F71-4BE0154331A4} -> C:\Program Files\Classic Shell\ClassicIEDLL_64.dll [2015-05-16] (IvoSoft)
BHO-x32: No Name -> {2760361b-1ac8-4cb3-8768-974ebbd14916} -> No File
BHO-x32: No Name -> {3684acda-d6cf-43f4-a377-18dd9b85d163} -> No File
BHO-x32: PriCeMeianus -> {414F8C13-D2F0-489E-A3EA-FB1DAE78BC05} -> C:\Program Files (x86)\PriCeMeianus\5eHbNh5pNoYCDC.dll [2015-06-21] ()
BHO-x32: ExplorerBHO Class -> {449D0D6E-2412-4E61-B68F-1CB625CD9E52} -> C:\Program Files\Classic Shell\ClassicExplorer32.dll [2015-05-16] (IvoSoft)
BHO-x32: No Name -> {45642cc3-1885-4bdc-bb35-659f248b989e} -> No File
BHO-x32: PrIceMeiinuS -> {49D0F8AC-E025-412C-B831-C6806B7808AC} -> C:\Program Files (x86)\PrIceMeiinuS\3ro48ZMqQZJYqA.dll [2015-06-21] ()
BHO-x32: No Name -> {4E09A2CA-D9FC-4734-9204-59C0AA01E05C} -> No File
BHO-x32: No Name -> {6492c498-54aa-44c0-b357-d96d8265ef48} -> No File
BHO-x32: PriCeeMinus -> {7027417F-7634-447C-8BC6-81CCF391920C} -> C:\Program Files (x86)\PriCeeMinus\CWbW1zuelVZ4tl.dll [2015-06-21] ()
BHO-x32: bestadblocker -> {730E30E5-6AA4-4154-867B-D6938B7FD373} -> C:\Program Files (x86)\bestadblocker\gestiID60UOugY.dll [2015-06-21] ()
BHO-x32: No Name -> {8D76453E-4F41-429A-ACC0-E97093668991} -> No File
BHO-x32: No Name -> {ac7e4b14-32d3-43d2-a7f6-b273d34659a3} -> No File
BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-05-01] (Microsoft Corporation)
BHO-x32: No Name -> {b48c8dfb-fcb0-4c1f-b3b6-979b9d12a71e} -> No File
BHO-x32: PricEMinus -> {E7CE9761-5758-44AF-8969-6C4E24CCDE01} -> C:\Program Files (x86)\PricEMinus\cp1DHRWgfYMiHr.dll [2015-06-21] ()
BHO-x32: No Name -> {e81548df-92c5-486d-9d7d-dd8801dff21d} -> No File
BHO-x32: ClassicIEBHO Class -> {EA801577-E6AD-4BD5-8F71-4BE0154331A4} -> C:\Program Files\Classic Shell\ClassicIEDLL_32.dll [2015-05-16] (IvoSoft)
Toolbar: HKLM - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer64.dll [2015-05-16] (IvoSoft)
Toolbar: HKLM-x32 - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer32.dll [2015-05-16] (IvoSoft)
Handler: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - No File
Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - No File
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-05-01] (Microsoft Corporation)
Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-05-01] (Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 109.88.203.3 62.197.111.140
FireFox:
========
FF ProfilePath: C:\Users\manuel\AppData\Roaming\Mozilla\Firefox\Profiles\yjklkrl5.default
FF DefaultSearchEngine,S: WebSearch
FF DefaultSearchUrl: hxxp://websearch.hotsearches.info/?pid=24389&r=2015/06/21&hid=16622153133810271462&lg=EN&cc=BE&unqvl=90&l=1&q=
FF SearchEngineOrder.1: WebSearch
FF SearchEngineOrder.1,S: WebSearch
FF SelectedSearchEngine: WebSearch
FF SelectedSearchEngine,S: WebSearch
FF Homepage: hxxp://websearch.hotsearches.info/?pid=24389&r=2015/06/21&hid=16622153133810271462&lg=EN&cc=BE&unqvl=90
FF Keyword.URL: hxxp://websearch.hotsearches.info/?pid=24389&r=2015/06/21&hid=16622153133810271462&lg=EN&cc=BE&unqvl=90&l=1&q=
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_18_0_0_160.dll [2015-06-16] ()
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_18_0_0_160.dll [2015-06-16] ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-09-04] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-09-04] (Intel Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-13] ( Microsoft Corporation)
FF Plugin-x32: @staging.google.com/globalUpdate Update;version=10 -> C:\Program Files (x86)\globalUpdate\Update\1.3.25.0\npGoogleUpdate4.dll No File
FF Plugin-x32: @staging.google.com/globalUpdate Update;version=4 -> C:\Program Files (x86)\globalUpdate\Update\1.3.25.0\npGoogleUpdate4.dll No File
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-06-21] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-06-21] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.1.0 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2014-07-23] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2014-07-23] (VideoLAN)
FF Plugin HKU\S-1-5-21-109147421-2626192411-2511064847-1001: @Skype Limited.com/Facebook Video Calling Plugin -> C:\Users\manuel\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll [2014-07-24] (Skype Limited)
FF user.js: detected! => C:\Users\manuel\AppData\Roaming\Mozilla\Firefox\Profiles\yjklkrl5.default\user.js [2015-04-12]
FF SearchPlugin: C:\Users\manuel\AppData\Roaming\Mozilla\Firefox\Profiles\yjklkrl5.default\searchplugins\bing-.xml [2015-06-10]
FF SearchPlugin: C:\Users\manuel\AppData\Roaming\Mozilla\Firefox\Profiles\yjklkrl5.default\searchplugins\WebSearch.xml [2015-06-21]
FF Extension: Avira Browser Safety - C:\Users\manuel\AppData\Roaming\Mozilla\Firefox\Profiles\yjklkrl5.default\Extensions\abs@avira.com [2015-06-21]
FF Extension: PrIceMeiinuS - C:\Users\manuel\AppData\Roaming\Mozilla\Firefox\Profiles\yjklkrl5.default\Extensions\bBj@R5.com [2015-06-21]
FF Extension: Bing Search - C:\Users\manuel\AppData\Roaming\Mozilla\Firefox\Profiles\yjklkrl5.default\Extensions\bingsearch.full@microsoft.com [2015-06-08]
FF Extension: HD4Good - C:\Users\manuel\AppData\Roaming\Mozilla\Firefox\Profiles\yjklkrl5.default\Extensions\f04aefc8-8ba0-4db5-9173-75513b63d276@1c0acb40-234c-4912-b8ce-35e3901228ad.com [2015-06-07]
FF Extension: PricEMinus - C:\Users\manuel\AppData\Roaming\Mozilla\Firefox\Profiles\yjklkrl5.default\Extensions\l@XkW.edu [2015-06-21]
FF Extension: bestadblocker - C:\Users\manuel\AppData\Roaming\Mozilla\Firefox\Profiles\yjklkrl5.default\Extensions\N4VfaIWo@Z.net [2015-06-21]
FF Extension: PriCeeMinus - C:\Users\manuel\AppData\Roaming\Mozilla\Firefox\Profiles\yjklkrl5.default\Extensions\O@I.co.uk [2015-06-21]
FF Extension: PriCeMeianus - C:\Users\manuel\AppData\Roaming\Mozilla\Firefox\Profiles\yjklkrl5.default\Extensions\OSU@e4HfN.edu [2015-06-21]
FF Extension: vwofdrevcom - C:\Users\manuel\AppData\Roaming\Mozilla\Firefox\Profiles\yjklkrl5.default\Extensions\vwof@drev.com [2015-06-07]
FF Extension: YouTube Unblocker - C:\Users\manuel\AppData\Roaming\Mozilla\Firefox\Profiles\yjklkrl5.default\Extensions\youtubeunblocker@unblocker.yt [2015-04-19]
FF Extension: Adblock Plus Pop-up Addon - C:\Users\manuel\AppData\Roaming\Mozilla\Firefox\Profiles\yjklkrl5.default\Extensions\adblockpopups@jessehakanen.net.xpi [2015-06-16]
FF Extension: Element Hiding Helper for Adblock Plus - C:\Users\manuel\AppData\Roaming\Mozilla\Firefox\Profiles\yjklkrl5.default\Extensions\elemhidehelper@adblockplus.org.xpi [2015-06-07]
FF Extension: YouTube Video and Audio Downloader - C:\Users\manuel\AppData\Roaming\Mozilla\Firefox\Profiles\yjklkrl5.default\Extensions\feca4b87-3be4-43da-a1b1-137c24220968@jetpack.xpi [2015-06-07]
FF Extension: ProxTube - C:\Users\manuel\AppData\Roaming\Mozilla\Firefox\Profiles\yjklkrl5.default\Extensions\ich@maltegoetz.de.xpi [2015-06-07]
FF Extension: SmileysWeLove: Smileys for use with Facebook, GMail, and more - C:\Users\manuel\AppData\Roaming\Mozilla\Firefox\Profiles\yjklkrl5.default\Extensions\jid1-FB1bBgFMk5H6Wg@jetpack.xpi [2015-04-12]
FF Extension: AdBlock for YouTube™ - C:\Users\manuel\AppData\Roaming\Mozilla\Firefox\Profiles\yjklkrl5.default\Extensions\jid1-q4sG8pYhq8KGHs@jetpack.xpi [2015-06-16]
FF Extension: Adblock Plus - C:\Users\manuel\AppData\Roaming\Mozilla\Firefox\Profiles\yjklkrl5.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2015-06-16]
FF HKLM-x32\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files (x86)\McAfee\SiteAdvisor
FF Extension: No Name - C:\Program Files (x86)\McAfee\SiteAdvisor [2014-01-15]
FF HKU\S-1-5-21-109147421-2626192411-2511064847-1001\...\Firefox\Extensions: [{EFBC958A-CD36-6468-62A7-5258AAF63BC8}] - C:\Program Files (x86)\version02BetterMarkIt\191.xpi
Chrome:
=======
CHR dev: Chrome dev build detected! <======= ATTENTION
CHR Profile: C:\Users\manuel\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Adblock Plus) - C:\Users\manuel\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2015-06-21]
CHR Extension: ( for Chrome Plus) - C:\Users\manuel\AppData\Local\Google\Chrome\User Data\Default\Extensions\jafknefnkiolhmhbdpojkpdempbdmfap [2015-06-21]
CHR Extension: (Chrome Hotword Shared Module) - C:\Users\manuel\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-06-21]
CHR Extension: (Skype Click to Call) - C:\Users\manuel\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2015-01-14]
CHR Extension: (Google Wallet) - C:\Users\manuel\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-06-21]
CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - C:\Program Files (x86)\McAfee\SiteAdvisor\McChPlg.crx [Not Found]
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - https://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-109147421-2626192411-2511064847-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [fcfenmboojpjinhpgggodefccipikbpd] - https://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [bopakagnckmlgajfccecajhnimjiiedh] - http://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - http://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [fjbbjfdilbioabojmcplalojlmdngbjl] - C:\Users\manuel\AppData\Local\Temp\swlfiles\smileyswelovetoolbar.crx [Not Found]
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - https://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2015-05-01]
CHR HKLM-x32\...\Chrome\Extension: [mhkaekfpcppmmioggniknbnbdbcigpkk] - C:\Users\manuel\AppData\Local\Slick Savings\coupons.crx [2014-10-26]
Opera:
=======
OPR Extension: (Gamesorama) - C:\Users\manuel\AppData\Roaming\Opera Software\Opera Stable\Extensions\hdlmjkfoidldghacbhdinlbmgpcplpal [2015-06-07]
OPR Extension: (Shop til Drop) - C:\Users\manuel\AppData\Roaming\Opera Software\Opera Stable\Extensions\jgddaapiamkjnpaoeaebnlbofhceppik [2015-06-07]
OPR Extension: (lgomjifbpjfhpodjhihemafahhmegbek) - C:\Users\manuel\AppData\Roaming\Opera Software\Opera Stable\Extensions\lgomjifbpjfhpodjhihemafahhmegbek [2015-06-07]
==================== Services (Whitelisted) =================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AdvancedSystemCareService7; C:\Program Files (x86)\IObit\Advanced SystemCare 7\ASCService.exe [878368 2013-10-25] (IObit)
S2 AntiVirMailService; C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe [827184 2015-05-28] (Avira Operations GmbH & Co. KG)
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\Antivirus\sched.exe [450808 2015-05-28] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\Antivirus\avguard.exe [450808 2015-05-28] (Avira Operations GmbH & Co. KG)
S2 AntiVirWebService; C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe [1188360 2015-05-28] (Avira Operations GmbH & Co. KG)
R2 AtherosSvc; C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\adminservice.exe [318592 2013-12-24] (Windows (R) Win 7 DDK provider) [File not signed]
R2 Avira.ServiceHost; C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe [217280 2015-06-02] (Avira Operations GmbH & Co. KG)
S3 BthHFSrv; C:\Windows\System32\BthHFSrv.dll [324608 2015-01-13] (Microsoft Corporation)
S3 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1394816 2015-05-01] (Microsoft Corporation)
S3 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1772672 2015-05-01] (Microsoft Corporation)
R2 CCDMonitorService; C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe [2839296 2015-05-06] (Acer Incorporated)
R2 ETDService; C:\Program Files\Elantech\ETDService.exe [101192 2013-10-02] (ELAN Microelectronics Corp.)
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [282096 2014-11-17] (Intel Corporation)
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [733696 2013-05-12] (Intel(R) Corporation) [File not signed]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [822232 2013-05-12] (Intel(R) Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-09-04] (Intel Corporation)
R2 LMSvc; C:\Program Files\Acer\Acer Launch Manager\LMSvc.exe [457768 2013-08-03] (Acer Incorporate)
S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.8.150\McCHSvc.exe [289256 2014-04-09] (McAfee, Inc.)
R2 mfefire; C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe [219752 2014-07-18] (McAfee, Inc.)
R2 mfevtp; C:\Windows\system32\mfevtps.exe [189912 2014-07-18] (McAfee, Inc.)
R2 PCSUService; C:\Program Files (x86)\Accelerer PC\PCSUService.exe [445640 2015-04-07] ()
R3 QASvc; C:\Program Files\Acer\Acer Quick Access\QASvc.exe [457768 2013-08-03] (Acer Incorporate)
R3 RMSvc; C:\Program Files\Acer\Acer Quick Access\RMSvc.exe [448040 2013-08-03] (Acer Incorporate)
S3 SCService; C:\Program Files (x86)\Accelerer PC\SpeedCheckerService.exe [23752 2015-04-07] ()
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [366520 2015-02-04] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23792 2015-02-04] (Microsoft Corporation)
S4 9b784ed1; "C:\Windows\system32\rundll32.exe" "c:\Program Files (x86)\optimizer pro 3.16\optpromon.dll",ENT <==== ATTENTION
S3 globalUpdatem; C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe /medsvc [X] <==== ATTENTION
S2 gupdate; "C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /svc [X]
S3 gupdatem; "C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /medsvc [X]
S3 LiveUpdateSvc; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [X]
S4 MaintainerSvc4.52.864054; "C:\ProgramData\ddc24aa9-6c5d-44d0-8c40-9bed83bb2ab7\maintainer.exe" [X]
S2 McAfee SiteAdvisor Service; No ImagePath
S4 sssvc_1.10.0.5; "C:\Program Files (x86)\SearchSnacks_1.10.0.5\Service\sssvc.exe" [X]
==================== Drivers (Whitelisted) ====================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 athr; C:\Windows\system32\DRIVERS\athwbx.sys [3881472 2013-12-12] (Qualcomm Atheros Communications, Inc.)
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [153256 2015-05-28] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\system32\DRIVERS\avipbb.sys [132656 2015-05-28] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\system32\DRIVERS\avkmgr.sys [28600 2015-05-28] (Avira Operations GmbH & Co. KG)
R2 avnetflt; C:\Windows\system32\DRIVERS\avnetflt.sys [43576 2015-05-28] (Avira Operations GmbH & Co. KG)
R3 BTATH_LWFLT; C:\Windows\system32\DRIVERS\btath_lwflt.sys [77464 2013-12-24] (Qualcomm Atheros)
R3 BthLEEnum; C:\Windows\System32\drivers\BthLEEnum.sys [226304 2013-12-04] (Microsoft Corporation)
S3 cfwids; C:\Windows\System32\drivers\cfwids.sys [72128 2014-07-18] (McAfee, Inc.)
R1 HWiNFO32; C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [26528 2015-01-29] (REALiX(tm))
R3 LMDriver; C:\Windows\System32\drivers\LMDriver.sys [21360 2013-07-17] (Acer Incorporated)
R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [100312 2014-11-17] (Intel Corporation)
S3 mfeapfk; C:\Windows\System32\drivers\mfeapfk.sys [181704 2014-07-18] (McAfee, Inc.)
R3 mfeavfk; C:\Windows\System32\drivers\mfeavfk.sys [313800 2014-07-18] (McAfee, Inc.)
S0 mfeelamk; C:\Windows\System32\drivers\mfeelamk.sys [70600 2014-07-18] (McAfee, Inc.)
R3 mfefirek; C:\Windows\System32\drivers\mfefirek.sys [526352 2014-07-18] (McAfee, Inc.)
R0 mfehidk; C:\Windows\System32\drivers\mfehidk.sys [786296 2014-07-18] (McAfee, Inc.)
R0 mfewfpk; C:\Windows\System32\drivers\mfewfpk.sys [348552 2014-07-18] (McAfee, Inc.)
R3 RadioShim; C:\Windows\System32\drivers\RadioShim.sys [14680 2013-07-17] (Acer Incorporated)
S3 RTL8192cu; C:\Windows\system32\DRIVERS\WNA1000M.sys [855144 2011-02-21] (Realtek Semiconductor Corporation )
S3 RTWlanE; C:\Windows\system32\DRIVERS\rtwlane.sys [1936088 2013-07-31] (Realtek Semiconductor Corporation )
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114496 2015-02-04] (Microsoft Corporation)
S1 BAPIDRV; system32\DRIVERS\BAPIDRV64.sys [X]
S1 ssnfd_1_10_0_5; system32\drivers\ssnfd_1_10_0_5.sys [X]
S1 {75afa305-1b32-4464-a5e2-f606c80b73a4}Gw64; system32\drivers\{75afa305-1b32-4464-a5e2-f606c80b73a4}Gw64.sys [X]
S1 {770f8173-dbeb-406e-bb39-f5f1a22362d8}Gw64; system32\drivers\{770f8173-dbeb-406e-bb39-f5f1a22362d8}Gw64.sys [X]
S1 {84e24724-32a5-4ef8-b981-cc669543b4a4}Gw64; system32\drivers\{84e24724-32a5-4ef8-b981-cc669543b4a4}Gw64.sys [X]
S1 {8fe19c8e-7524-443d-b4e0-39594b611d24}Gw64; system32\drivers\{8fe19c8e-7524-443d-b4e0-39594b611d24}Gw64.sys [X]
S1 {fd74c1d1-1ac3-43f9-8336-32679dc7de45}Gw64; system32\drivers\{fd74c1d1-1ac3-43f9-8336-32679dc7de45}Gw64.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2015-06-21 17:35 - 2015-06-21 17:38 - 00043227 _____ C:\Users\manuel\Downloads\Addition.txt
2015-06-21 17:31 - 2015-06-21 17:38 - 00032773 _____ C:\Users\manuel\Downloads\FRST.txt
2015-06-21 17:30 - 2015-06-21 17:39 - 00000000 ____D C:\FRST
2015-06-21 17:29 - 2015-06-21 17:29 - 02109952 _____ (Farbar) C:\Users\manuel\Downloads\FRST64.exe
2015-06-21 17:19 - 2015-06-21 17:19 - 00776792 _____ (Reimage®) C:\Users\manuel\Downloads\eFixPro.exe
2015-06-21 17:07 - 2015-06-21 17:07 - 00003320 _____ C:\Windows\System32\Tasks\AviraSpeedup
2015-06-21 17:07 - 2015-06-21 17:07 - 00001125 _____ C:\Users\Public\Desktop\Avira System Speedup.lnk
2015-06-21 17:07 - 2015-06-21 17:07 - 00000000 ____D C:\Users\Public\Speedup Sessions
2015-06-21 17:07 - 2015-06-21 17:07 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AviraSpeedup
2015-06-21 17:06 - 2015-06-21 17:06 - 00000000 ____D C:\Users\manuel\AppData\Roaming\Avira
2015-06-21 17:03 - 2015-05-28 16:49 - 00132656 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avipbb.sys
2015-06-21 17:03 - 2015-05-28 16:49 - 00043576 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avnetflt.sys
2015-06-21 17:03 - 2015-05-28 16:49 - 00028600 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avkmgr.sys
2015-06-21 17:03 - 2015-05-28 16:48 - 00153256 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avgntflt.sys
2015-06-21 17:00 - 2015-06-21 17:00 - 00001178 _____ C:\Users\Public\Desktop\Avira.lnk
2015-06-21 16:59 - 2015-06-21 17:07 - 00000000 ____D C:\Program Files (x86)\Avira
2015-06-21 16:59 - 2015-06-21 17:05 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
2015-06-21 16:59 - 2015-06-21 17:03 - 00000000 ____D C:\ProgramData\Avira
2015-06-21 16:59 - 2015-06-21 16:59 - 04718584 _____ (Avira Operations GmbH & Co. KG) C:\Users\manuel\Downloads\avira_fr_av_5586d1317a495__ws.exe
2015-06-21 16:59 - 2015-06-21 16:59 - 00000000 ____D C:\ProgramData\Package Cache
2015-06-21 16:46 - 2015-06-21 16:46 - 00000000 ____D C:\Users\manuel\AppData\Roaming\LightningDownloader
2015-06-21 16:34 - 2015-06-21 16:34 - 00000146 _____ C:\Users\manuel\Desktop\IObit Uninstaller - Raccourci.lnk
2015-06-21 16:33 - 2015-06-21 16:33 - 00000000 ____D C:\Users\manuel\AppData\Local\ClassicShell
2015-06-21 16:32 - 2015-06-21 16:32 - 00000000 ____D C:\Users\manuel\AppData\Roaming\ClassicShell
2015-06-21 16:32 - 2015-06-21 16:32 - 00000000 ____D C:\ProgramData\ClassicShell
2015-06-21 16:29 - 2015-06-21 16:29 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Classic Shell
2015-06-21 16:29 - 2015-06-21 16:29 - 00000000 ____D C:\Program Files\Classic Shell
2015-06-21 16:27 - 2015-06-21 16:27 - 07496464 _____ (IvoSoft) C:\Users\manuel\Downloads\ClassicShellSetup_4_2_1-fr.exe
2015-06-21 16:25 - 2015-06-21 16:25 - 00002057 _____ C:\Users\Public\Desktop\LightningDownloader.lnk
2015-06-21 16:25 - 2015-06-21 16:25 - 00000000 ____D C:\Windows\SysWOW64\X86
2015-06-21 16:25 - 2015-06-21 16:25 - 00000000 ____D C:\Windows\SysWOW64\AMD64
2015-06-21 16:25 - 2015-06-21 16:25 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LightningDownloader
2015-06-21 16:24 - 2015-06-21 17:11 - 00000000 ____D C:\Program Files (x86)\decodit
2015-06-21 16:23 - 2015-06-21 17:40 - 00000000 ____D C:\Program Files (x86)\PrIceMeiinuS
2015-06-21 16:23 - 2015-06-21 16:23 - 00000000 ____D C:\ProgramData\gjoahdgnncnfbldkjjghfkkcefkoojkm
2015-06-21 16:22 - 2015-06-21 16:22 - 00289280 _____ C:\Users\manuel\Downloads\Advanced System Care 8 Pro Serial Key Crack Is Here ! [Latest].exe
2015-06-21 16:19 - 2015-06-21 16:19 - 00003982 _____ C:\Windows\System32\Tasks\LaunchPreSignup
2015-06-21 16:17 - 2015-06-21 16:17 - 00000000 ____D C:\ProgramData\jmnjmaokcpeleoakbnanmoklepjicaii
2015-06-21 16:17 - 2015-06-21 16:17 - 00000000 ____D C:\Program Files (x86)\PriCeMeianus
2015-06-21 16:15 - 2015-06-21 16:15 - 00289280 _____ C:\Users\manuel\Downloads\Advanced System Care Pro 8.2.0.795 Key Is Here! [Latest] (2).exe
2015-06-21 16:14 - 2015-06-21 16:24 - 00000000 ____D C:\Program Files (x86)\RelaySoft
2015-06-21 16:13 - 2015-06-21 16:13 - 00000000 ____D C:\ProgramData\bbnmlcmkhkajophpnnioimmiedldoijb
2015-06-21 16:13 - 2015-06-21 16:13 - 00000000 ____D C:\Program Files (x86)\PriCeeMinus
2015-06-21 16:11 - 2015-06-21 16:25 - 00000000 ____D C:\Program Files (x86)\LightningDownloader
2015-06-21 16:11 - 2015-06-21 16:11 - 00289280 _____ C:\Users\manuel\Downloads\Advanced System Care Pro 8.2.0.795 Key Is Here! [Latest] (1).exe
2015-06-21 16:10 - 2015-06-21 16:14 - 00000000 ____D C:\Program Files (x86)\PragmaEdit
2015-06-21 16:09 - 2015-06-21 17:33 - 00000000 ____D C:\Program Files (x86)\bestadblocker
2015-06-21 16:09 - 2015-06-21 16:09 - 00000000 ____D C:\Program Files (x86)\ for Chrome Plus
2015-06-21 16:08 - 2015-06-21 17:26 - 00000000 ____D C:\Program Files (x86)\PricEMinus
2015-06-21 16:08 - 2015-06-21 16:08 - 00000000 ____D C:\ProgramData\mogblgafmifnnholjckoaencigflpaea
2015-06-21 16:07 - 2015-06-21 16:07 - 00000000 ____D C:\ProgramData\{678cdcc3-6656-0db4-678c-cdcc3665730d}
2015-06-21 16:06 - 2015-06-21 16:06 - 00289280 _____ C:\Users\manuel\Downloads\Advanced System Care Pro 8.2.0.795 Key Is Here! [Latest].exe
2015-06-21 15:55 - 2015-06-21 15:55 - 00002239 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2015-06-21 15:55 - 2015-06-21 15:55 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2015-06-21 15:53 - 2015-06-21 15:54 - 00931408 _____ (Google Inc.) C:\Users\manuel\Downloads\ChromeSetup.exe
2015-06-21 12:36 - 2015-06-21 12:36 - 00000116 _____ C:\Windows\setupact.log
2015-06-21 12:36 - 2015-06-21 12:36 - 00000000 _____ C:\Windows\setuperr.log
2015-06-21 12:35 - 2015-06-21 12:35 - 00006204 _____ C:\Windows\PFRO.log
2015-06-21 12:35 - 2015-06-21 12:35 - 00000000 _____ C:\asc_rdflag
2015-06-19 21:22 - 2015-06-19 21:22 - 00141408 _____ (Rentabiliweb) C:\Users\manuel\Downloads\yesmessenger.exe
2015-06-19 21:21 - 2015-06-19 21:21 - 00141408 _____ (Rentabiliweb) C:\Users\manuel\Downloads\Setuprencontre-affinites.exe
2015-06-19 18:44 - 2015-06-19 19:04 - 1099047357 _____ C:\Users\manuel\Downloads\Jurassic.World.TRUEFRENCH.TS.MD.XviD-www.libertyland.tv.avi
2015-06-19 14:02 - 2015-06-19 14:08 - 1469114373 ____R C:\Users\manuel\Downloads\[ www.Cpasbien.pw ] Jupiter.Ascending.2015.TRUEFRENCH.BDRip.XviD-AViTECH.avi
2015-06-18 22:16 - 2015-06-18 22:21 - 738428834 ____R C:\Users\manuel\Downloads\[ www.Cpasbien.pw ] Mega.Shark.Vs.Mecha.Shark.2015.FRENCH.DVDRip.XviD-D4NG3R.avi
2015-06-18 22:12 - 2015-06-18 22:18 - 675053574 ____R C:\Users\manuel\Downloads\[ www.Cpasbien.pw ] Atlantic.Rim.2015.TRUEFRENCH.DVDRip.XviD-D4NG3R.avi
2015-06-18 22:03 - 2015-06-18 22:15 - 1466116096 ____R C:\Users\manuel\Downloads\[ www.Cpasbien.pw ] Jupiter.Ascending.2015.FRENCH.DVDRip.XviD-GLUPS.avi
2015-06-18 15:42 - 2015-06-18 15:45 - 735246956 _____ C:\Users\manuel\Downloads\The.Cobbler.2014.FRENCH.DVDRip.XviD-GLUPS.zone-telechargement.com.avi
2015-06-18 15:09 - 2015-06-18 15:18 - 733935898 _____ C:\Users\manuel\Downloads\Viy.2014.TRUEFRENCH.DVDRip.XviD.avi
2015-06-18 15:05 - 2015-06-18 15:11 - 1388084026 _____ C:\Users\manuel\Downloads\Sleeping.Beauty.2014.FRENCH.DVDRip.XViD-BHJ.zone-telechargement.com.avi
2015-06-17 21:51 - 2015-06-17 21:51 - 00000000 ____D C:\Users\manuel\Downloads\Weeds.S07E01.FRENCH.LD.DVDRiP.XViD-EPZ
2015-06-17 21:46 - 2015-06-17 21:46 - 00000000 ____D C:\Users\manuel\Downloads\Weeds.S07E03.FRENCH.LD.BDRip.XviD-MiND
2015-06-17 21:46 - 2015-06-17 21:46 - 00000000 ____D C:\Users\manuel\Downloads\Weeds.S07E02.FRENCH.LD.DVDRiP.XViD-EPZ
2015-06-17 21:43 - 2015-06-17 21:53 - 248131528 _____ C:\Users\manuel\Downloads\[www.Cpasbien.me] Weeds.S07E05.FRENCH.LD.BDRiP.XViD-EPZ.avi
2015-06-17 21:43 - 2015-06-17 21:43 - 00000000 ____D C:\Users\manuel\Downloads\Weeds.S07E04.FRENCH.LD.BDRip.XviD-MiND
2015-06-17 21:40 - 2015-06-17 21:46 - 247972672 _____ C:\Users\manuel\Downloads\[www.Cpasbien.me] Weeds.S07E06.FRENCH.LD.BDRiP.XViD-EPZ.avi
2015-06-17 21:37 - 2015-06-17 21:37 - 00000000 ____D C:\Users\manuel\Downloads\[www.Cpasbien.me] Weeds.S07E07.FRENCH.LD.BDRip.XviD-MiND
2015-06-17 21:36 - 2015-06-17 21:36 - 00000000 ____D C:\Users\manuel\Downloads\[www.Cpasbien.me] Weeds.S07E08.FRENCH.LD.BDRip.XviD-MiND
2015-06-17 21:29 - 2015-06-17 21:29 - 00000000 ____D C:\Users\manuel\Downloads\[www.Cpasbien.me] Weeds.S07E10.FRENCH.LD.BDRip.XviD-MiND
2015-06-17 21:29 - 2015-06-17 21:29 - 00000000 ____D C:\Users\manuel\Downloads\[www.Cpasbien.me] Weeds.S07E09.FRENCH.LD.BDRip.XviD-MiND
2015-06-17 21:28 - 2015-06-17 21:28 - 00000000 ____D C:\Users\manuel\Downloads\Weeds.S07E13.FiNAL.FRENCH.LD.BDRip.XviD-SRiZ
2015-06-17 21:28 - 2015-06-17 21:28 - 00000000 ____D C:\Users\manuel\Downloads\Weeds.S07E12.FRENCH.LD.BDRip.XviD-MiND
2015-06-17 21:28 - 2015-06-17 21:28 - 00000000 ____D C:\Users\manuel\Downloads\Weeds.S07E11.FRENCH.LD.BDRiP.XViD-EPZ
2015-06-17 20:31 - 2015-06-17 20:31 - 00000000 ____D C:\Users\manuel\Downloads\[www.Cpasbien.com] Weeds.S06E13.FINAL.FRENCH.BRRIP.XviD-ArRoWs
2015-06-17 20:21 - 2015-06-17 20:31 - 1484228739 ____R C:\Users\manuel\Downloads\[ www.Cpasbien.pw ] The.Hobbit.The.Battle.of.the.Five.Armies.2014.FRENCH.BRRip.XviD-Slay3R.avi
2015-06-17 20:06 - 2015-06-17 20:18 - 976861578 _____ C:\Users\manuel\Downloads\[ www.CpasBien.pw ] Strange.Magic.2015.FRENCH.DVDRiP.x264-CNF30.mkv
2015-06-17 20:06 - 2015-06-17 20:06 - 00076004 _____ C:\Users\manuel\Downloads\strange-magic-french-dvdrip-x264-2015.torrent
2015-06-17 20:02 - 2015-06-17 20:13 - 1467481897 ____R C:\Users\manuel\Downloads\[ www.Cpasbien.pw ] The Man with the Iron Fists 2 2015 UNRATED FRENCH BRRiP x264 AC3-CARPEDIEM.mkv
2015-06-17 20:00 - 2015-06-17 20:07 - 734698584 ____R C:\Users\manuel\Downloads\[ www.Cpasbien.pw ] Tracer.2015.FRENCH.DVDRip.XviD-GLUPS.avi
2015-06-17 19:56 - 2015-06-17 19:59 - 733782025 ____R C:\Users\manuel\Downloads\[ www.Cpasbien.pw ] 71.2014.TRUEFRENCH.DvDRiP.XviD-DreamStreet.avi
2015-06-17 19:21 - 2015-06-17 19:30 - 994678358 ____R C:\Users\manuel\Downloads\[ www.CpasBien.pw ] Extinction.2014.FRENCH.BDRip.x264-AKATSUKi.mkv
2015-06-17 19:18 - 2015-06-17 19:28 - 1468989440 ____R C:\Users\manuel\Downloads\[ www.Cpasbien.pw ] Chappie.2015.FRENCH.BRRip.XviD.AC3-S.V.avi
2015-06-17 00:16 - 2015-06-17 00:16 - 00077458 _____ C:\Users\manuel\Downloads\extinction-french-dvdrip-x264-2015.torrent
2015-06-12 16:53 - 2015-06-12 17:02 - 734230541 _____ C:\Users\manuel\Downloads\[ www.CpasBien.pw ] Ex.Machina.2015.FRENCH.BDRiP.XViD-AViTECH.avi
2015-06-12 16:48 - 2015-06-12 16:52 - 732507051 ____R C:\Users\manuel\Downloads\[ www.Cpasbien.pw ] Pyramide.2014.FRENCH.BDRip.XviD-GLUPS.avi
2015-06-11 13:02 - 2015-06-03 18:18 - 00792568 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2015-06-11 13:02 - 2015-06-03 18:18 - 00178168 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2015-06-11 13:01 - 2015-06-11 13:01 - 00337960 _____ C:\Windows\system32\FNTCACHE.DAT
2015-06-11 12:48 - 2015-06-11 12:48 - 00000290 __RSH C:\ProgramData\ntuser.pol
2015-06-10 15:06 - 2015-05-27 16:35 - 24917504 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2015-06-10 15:06 - 2015-05-27 16:08 - 19607040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2015-06-10 15:06 - 2015-05-23 05:15 - 00503808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2015-06-10 15:06 - 2015-05-23 05:14 - 00341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2015-06-10 15:06 - 2015-05-23 05:10 - 02278912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2015-06-10 15:06 - 2015-05-23 05:05 - 00664064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2015-06-10 15:06 - 2015-05-23 05:04 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2015-06-10 15:06 - 2015-05-23 04:48 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2015-06-10 15:06 - 2015-05-23 04:47 - 04305920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2015-06-10 15:06 - 2015-05-23 04:47 - 00285696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2015-06-10 15:06 - 2015-05-23 04:47 - 00128000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2015-06-10 15:06 - 2015-05-23 04:43 - 00880128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll
2015-06-10 15:06 - 2015-05-23 04:38 - 00689152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2015-06-10 15:06 - 2015-05-23 04:38 - 00327168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2015-06-10 15:06 - 2015-05-23 04:37 - 02052608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2015-06-10 15:06 - 2015-05-23 04:28 - 12829696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2015-06-10 15:06 - 2015-05-23 04:28 - 01042944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\actxprxy.dll
2015-06-10 15:06 - 2015-05-23 04:20 - 01950720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2015-06-10 15:06 - 2015-05-23 04:16 - 01309696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2015-06-10 15:06 - 2015-05-23 04:14 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2015-06-10 15:06 - 2015-05-22 21:00 - 02885632 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2015-06-10 15:06 - 2015-05-22 21:00 - 00584192 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2015-06-10 15:06 - 2015-05-22 21:00 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2015-06-10 15:06 - 2015-05-22 20:52 - 06026240 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2015-06-10 15:06 - 2015-05-22 20:48 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2015-06-10 15:06 - 2015-05-22 20:47 - 00816640 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2015-06-10 15:06 - 2015-05-22 20:47 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2015-06-10 15:06 - 2015-05-22 20:24 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2015-06-10 15:06 - 2015-05-22 20:23 - 00145408 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2015-06-10 15:06 - 2015-05-22 20:21 - 00316928 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2015-06-10 15:06 - 2015-05-22 20:15 - 01032704 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
2015-06-10 15:06 - 2015-05-22 20:09 - 00262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2015-06-10 15:06 - 2015-05-22 20:08 - 00374272 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2015-06-10 15:06 - 2015-05-22 20:06 - 00801280 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2015-06-10 15:06 - 2015-05-22 20:05 - 02125824 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2015-06-10 15:06 - 2015-05-22 19:57 - 14404096 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2015-06-10 15:06 - 2015-05-22 19:50 - 02426880 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2015-06-10 15:06 - 2015-05-22 19:49 - 02865152 _____ (Microsoft Corporation) C:\Windows\system32\actxprxy.dll
2015-06-10 15:06 - 2015-05-22 19:38 - 01545728 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2015-06-10 15:06 - 2015-05-22 19:26 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2015-06-10 15:06 - 2015-04-25 04:34 - 00653824 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll
2015-06-10 15:06 - 2015-04-25 04:33 - 00549888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comctl32.dll
2015-06-10 15:05 - 2015-05-21 18:47 - 04177920 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2015-06-08 00:19 - 2015-06-08 00:19 - 00000000 ____D C:\Users\manuel\AppData\Local\com
2015-06-07 23:16 - 2015-06-07 23:26 - 00000000 ____D C:\Program Files (x86)\Gamesorama
2015-06-07 22:57 - 2015-06-07 22:57 - 00000000 ____D C:\Users\manuel\AppData\Local\BrowserWeb
2015-06-07 22:56 - 2015-06-21 17:26 - 00000294 _____ C:\Windows\Tasks\PC-Mechanic Maintenance.job
2015-06-07 22:56 - 2015-06-21 12:37 - 00000294 _____ C:\Windows\Tasks\PC-Mechanic Subscription.job
2015-06-07 22:56 - 2015-06-21 12:37 - 00000288 _____ C:\Windows\Tasks\PC-Mechanic Startup.job
2015-06-07 22:56 - 2015-06-07 22:56 - 00003196 _____ C:\Windows\System32\Tasks\PC-Mechanic Maintenance
2015-06-07 22:56 - 2015-06-07 22:56 - 00002564 _____ C:\Windows\System32\Tasks\PC-Mechanic Subscription
2015-06-07 22:56 - 2015-06-07 22:56 - 00002498 _____ C:\Windows\System32\Tasks\PC-Mechanic Startup
2015-06-07 22:53 - 2015-06-07 23:03 - 00000658 _____ C:\Users\manuel\Downloads\Setup .website
2015-06-07 22:35 - 2015-06-07 22:35 - 00001965 _____ C:\Users\Public\Desktop\abPhoto.lnk
2015-06-07 22:21 - 2015-06-07 22:21 - 00003948 _____ C:\Windows\System32\Tasks\Opera scheduled Autoupdate 1428873121
2015-06-07 22:21 - 2015-06-07 22:21 - 00003256 _____ C:\Windows\System32\Tasks\Optimizer Pro Schedule
2015-06-07 22:20 - 2015-06-07 22:20 - 00004404 _____ C:\Windows\System32\Tasks\ALUAgent
2015-06-07 22:20 - 2015-06-07 22:20 - 00003630 _____ C:\Windows\System32\Tasks\ALU
2015-06-07 22:20 - 2015-06-07 22:20 - 00003336 _____ C:\Windows\System32\Tasks\AcerCloud
2015-06-07 22:20 - 2015-06-07 22:20 - 00003222 _____ C:\Windows\System32\Tasks\Driver Booster Scan
2015-06-07 22:20 - 2015-06-07 22:20 - 00003166 _____ C:\Windows\System32\Tasks\Driver Booster Update
2015-06-07 22:14 - 2015-06-07 22:14 - 00000000 ____D C:\Windows\Tasks\360Disabled
2015-06-07 22:10 - 2015-06-16 18:36 - 00000000 __SHD C:\ProgramData\360Quarant
2015-06-07 22:10 - 2015-06-16 18:36 - 00000000 __SHD C:\$360Section
2015-06-07 22:06 - 2015-06-07 22:06 - 36034168 _____ C:\Users\manuel\Downloads\360TS_Setup.exe
2015-06-07 22:06 - 2015-06-07 22:06 - 00000000 ____D C:\Program Files (x86)\360
2015-06-07 22:05 - 2015-06-07 22:05 - 01332344 _____ (QIHU 360 SOFTWARE CO. LIMITED) C:\Users\manuel\Downloads\360TS_Setup_Mini(1).exe
2015-06-07 22:03 - 2015-06-07 22:03 - 01332344 _____ (QIHU 360 SOFTWARE CO. LIMITED) C:\Users\manuel\Downloads\360TS_Setup_Mini.exe
2015-06-07 14:43 - 2015-06-07 14:44 - 00001990 _____ C:\Users\Public\Desktop\Acer Portal.lnk
2015-06-07 14:39 - 2015-06-07 14:39 - 00001929 _____ C:\Users\Public\Desktop\abDocs.lnk
2015-06-07 14:33 - 2015-06-07 14:33 - 00003640 _____ C:\Windows\System32\Tasks\Program Manager
2015-06-07 14:30 - 2015-06-07 22:21 - 00000000 ____D C:\Program Files (x86)\Shop til Drop
2015-06-07 13:34 - 2015-06-07 23:59 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2015-06-01 12:20 - 2015-06-21 12:15 - 00000024 _____ C:\Users\manuel\AppData\Roaming\appdataFr25.bin
2015-06-01 12:16 - 2015-04-30 22:35 - 00124112 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2015-06-01 12:16 - 2015-04-30 22:35 - 00102608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2015-05-28 22:02 - 2015-06-21 17:40 - 00000000 ____D C:\Program Files (x86)\LuckYoCoupon
2015-05-28 22:02 - 2015-06-07 23:59 - 00000000 ____D C:\Program Files (x86)\BietteoRPrioceChec
2015-05-28 22:01 - 2015-06-21 17:29 - 00000000 ____D C:\Program Files (x86)\ReOOyalShopperAApPP
2015-05-28 15:34 - 2015-05-28 15:34 - 00713300 _____ C:\Users\manuel\Downloads\david noel lm.htm
2015-05-28 15:34 - 2015-05-28 15:34 - 00000000 ____D C:\Users\manuel\Downloads\david noel lm_fichiers
2015-05-28 15:26 - 2015-04-21 17:49 - 00720384 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2015-05-28 15:25 - 2015-04-21 18:13 - 00107520 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2015-05-28 15:25 - 2015-04-21 17:28 - 00230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2015-05-28 15:23 - 2015-05-01 01:05 - 00429568 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2015-05-28 15:23 - 2015-05-01 00:48 - 00358912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2015-05-28 15:23 - 2015-04-10 03:00 - 01996800 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2015-05-28 15:23 - 2015-04-10 02:50 - 01387008 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2015-05-28 15:23 - 2015-04-10 02:26 - 01560576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2015-05-28 15:23 - 2015-04-09 00:55 - 00410128 _____ (Microsoft Corporation) C:\Windows\system32\services.exe
2015-05-28 15:23 - 2015-03-30 07:47 - 00561928 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2015-05-28 15:23 - 2015-03-27 05:27 - 00445440 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2015-05-28 15:23 - 2015-03-27 04:50 - 00324096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll
2015-05-28 15:23 - 2015-03-27 04:48 - 01441792 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2015-05-28 15:04 - 2015-05-28 15:04 - 00001027 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera.lnk
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2015-06-21 17:38 - 2015-04-26 15:14 - 01805218 _____ C:\Windows\WindowsUpdate.log
2015-06-21 17:36 - 2014-10-04 22:30 - 00003596 _____ C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-109147421-2626192411-2511064847-1001
2015-06-21 17:24 - 2015-03-15 11:49 - 00000000 ____D C:\Program Files (x86)\EExtraShopper
2015-06-21 17:16 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\AppReadiness
2015-06-21 17:12 - 2014-10-26 12:18 - 00000000 ____D C:\Program Files (x86)\IObit
2015-06-21 17:11 - 2014-10-26 12:19 - 00000000 ____D C:\ProgramData\IObit
2015-06-21 17:00 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\system32\sru
2015-06-21 16:50 - 2014-11-25 00:54 - 00000000 ____D C:\Users\manuel\AppData\Roaming\uTorrent
2015-06-21 16:43 - 2014-11-17 16:15 - 00000294 _____ C:\Windows\Tasks\Uninstaller_SkipUac_manuel.job
2015-06-21 16:42 - 2015-01-01 03:41 - 00001002 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-06-21 16:23 - 2015-01-31 05:49 - 00000000 ____D C:\ProgramData\10001431793915032373
2015-06-21 15:55 - 2014-10-05 14:23 - 00000000 ____D C:\Program Files (x86)\Google
2015-06-21 15:40 - 2014-11-25 19:31 - 00000000 __SHD C:\Users\manuel\AppData\Local\EmieBrowserModeList
2015-06-21 15:40 - 2014-10-09 17:31 - 00000000 __SHD C:\Users\manuel\AppData\Local\EmieUserList
2015-06-21 15:40 - 2014-10-09 17:31 - 00000000 __SHD C:\Users\manuel\AppData\Local\EmieSiteList
2015-06-21 15:10 - 2014-10-18 03:05 - 00000946 _____ C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-109147421-2626192411-2511064847-1001UA.job
2015-06-21 13:55 - 2015-04-12 23:13 - 00000360 _____ C:\Windows\Tasks\PC SpeedUp Service Deactivator.job
2015-06-21 12:40 - 2015-04-12 23:13 - 00000000 ____D C:\Program Files (x86)\Accelerer PC
2015-06-21 12:37 - 2014-10-04 22:29 - 00000000 __RDO C:\Users\manuel\SkyDrive
2015-06-21 12:36 - 2013-08-22 16:45 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2015-06-21 12:35 - 2014-10-26 16:20 - 82259968 _____ C:\Windows\system32\config\SOFTWARE.iodefrag.bak
2015-06-21 12:35 - 2014-10-26 16:20 - 00323584 _____ C:\Windows\system32\config\DEFAULT.iodefrag.bak
2015-06-21 12:35 - 2014-10-26 16:20 - 00028672 _____ C:\Windows\system32\config\SAM.iodefrag.bak
2015-06-21 12:35 - 2014-10-26 16:20 - 00020480 _____ C:\Windows\system32\config\SECURITY.iodefrag.bak
2015-06-21 12:35 - 2014-10-04 22:23 - 00000000 ____D C:\Users\manuel
2015-06-21 12:33 - 2014-10-28 03:49 - 00000258 _____ C:\Windows\Tasks\ASC7_SkipUac_manuel.job
2015-06-21 12:24 - 2014-10-22 20:52 - 00000000 ____D C:\Users\manuel\AppData\Roaming\Skype
2015-06-21 12:17 - 2014-10-04 22:32 - 00003932 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{13C61869-9640-4D10-A228-C24C27251C1E}
2015-06-21 12:14 - 2014-10-28 03:49 - 00002225 _____ C:\Users\Public\Desktop\Advanced SystemCare 7.lnk
2015-06-19 23:12 - 2014-11-08 18:24 - 00000000 ____D C:\Users\manuel\AppData\Roaming\vlc
2015-06-19 19:23 - 2014-03-21 12:40 - 00812350 _____ C:\Windows\system32\perfh00C.dat
2015-06-19 19:23 - 2014-03-21 12:40 - 00159412 _____ C:\Windows\system32\perfc00C.dat
2015-06-19 19:23 - 2014-01-15 07:19 - 01824010 _____ C:\Windows\system32\PerfStringBackup.INI
2015-06-19 17:02 - 2014-11-30 13:48 - 00000000 ____D C:\Users\manuel\AppData\Local\PokerStars.BE
2015-06-19 03:10 - 2014-10-18 03:05 - 00000924 _____ C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-109147421-2626192411-2511064847-1001Core.job
2015-06-18 22:29 - 2015-02-27 15:31 - 00000000 ____D C:\Users\manuel\Downloads\X BOYSNOIZE RECORDS
2015-06-18 20:42 - 2015-01-01 03:41 - 00003890 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2015-06-16 18:34 - 2014-11-18 14:23 - 00000000 ____D C:\Users\manuel\AppData\Local\Adobe
2015-06-16 03:53 - 2013-08-22 15:25 - 00262144 ___SH C:\Windows\system32\config\BBI
2015-06-16 02:43 - 2014-10-04 23:52 - 00000000 ____D C:\Users\manuel\AppData\Local\CrashDumps
2015-06-14 13:40 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\rescache
2015-06-11 13:24 - 2015-03-24 15:05 - 00000000 ____D C:\Program Files (x86)\Application Updater
2015-06-11 13:06 - 2014-10-22 20:51 - 00000000 ____D C:\ProgramData\Skype
2015-06-11 12:57 - 2014-10-05 12:42 - 00000000 ____D C:\Windows\system32\MRT
2015-06-11 12:57 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\PolicyDefinitions
2015-06-11 12:55 - 2014-10-05 12:42 - 140135120 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2015-06-11 12:55 - 2013-08-22 17:20 - 00000000 ____D C:\Windows\CbsTemp
2015-06-11 12:48 - 2015-02-04 11:06 - 00003096 _____ C:\Windows\System32\Tasks\ASC7_PerformanceMonitor
2015-06-11 12:37 - 2014-10-05 14:22 - 00000000 ____D C:\Users\manuel\AppData\Local\Deployment
2015-06-10 10:26 - 2015-04-12 23:16 - 00000000 ____D C:\Users\manuel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PriceFountain
2015-06-08 01:18 - 2015-03-04 12:07 - 00000000 ____D C:\Users\manuel\Downloads\[www.Cpasbien.pe] Dead.Snow.2.Red.vs.DEAD.2014.TRUEFRENCH.DVDRIP.XVid-LYS
2015-06-08 01:16 - 2015-03-13 13:32 - 00000000 ____D C:\Users\manuel\Downloads\R & B Collection 2011
2015-06-08 01:15 - 2015-03-13 13:34 - 00000000 ____D C:\Users\manuel\Downloads\Top 30 - US hiphop RnB 2009
2015-06-08 01:14 - 2015-03-13 13:23 - 00000000 ____D C:\Users\manuel\Downloads\Céline Dion - Loved Me Back To Life
2015-06-08 01:14 - 2015-02-28 10:19 - 00000000 ____D C:\Users\manuel\Downloads\[www.Cpasbien.pe] Celine Dion - Celine Une seule fois Live 2013 (2014) [320] {WEB}
2015-06-07 23:59 - 2015-04-24 10:47 - 00000000 ____D C:\Program Files (x86)\Ultimate Guitar Chord Finder Tuner
2015-06-07 23:59 - 2015-04-24 10:46 - 00000000 ____D C:\Program Files (x86)\SalesMagonuet
2015-06-07 23:59 - 2015-04-24 10:46 - 00000000 ____D C:\Program Files (x86)\QueenCOuponn
2015-06-07 23:59 - 2015-04-24 10:46 - 00000000 ____D C:\Program Files (x86)\QQueenCouupon
2015-06-07 23:59 - 2015-04-14 14:53 - 00000000 ____D C:\Users\manuel\AppData\Local\avaavaevy
2015-06-07 23:59 - 2015-04-12 23:16 - 00000000 ____D C:\Users\manuel\AppData\Local\PriceFountain
2015-06-07 23:59 - 2015-04-12 23:11 - 00000000 ____D C:\Program Files (x86)\HD4Good
2015-06-07 23:59 - 2015-04-12 23:11 - 00000000 ____D C:\Program Files (x86)\12f7359f-1691-40f5-b537-6032a24375b1
2015-06-07 23:59 - 2015-04-12 23:10 - 00000000 ____D C:\Program Files (x86)\2f31d023-960e-4bf6-acd0-bedc8319978c
2015-06-07 23:59 - 2015-04-12 23:09 - 00000000 ____D C:\Program Files (x86)\SearchSnacks_1.10.0.5
2015-06-07 23:59 - 2015-04-12 23:09 - 00000000 ____D C:\Program Files (x86)\Cinema Video 1.8V12.04
2015-06-07 23:59 - 2015-02-24 23:30 - 00000000 ____D C:\Program Files (x86)\Video Bookmarks
2015-06-07 23:59 - 2014-11-08 19:57 - 00000000 ____D C:\ProgramData\ddc24aa9-6c5d-44d0-8c40-9bed83bb2ab7
2015-06-07 23:59 - 2014-01-15 07:46 - 00000000 ____D C:\Program Files (x86)\Acer
2015-06-07 22:54 - 2014-10-05 14:22 - 00000000 ____D C:\Users\manuel\AppData\Local\Apps\2.0
2015-06-07 22:35 - 2014-01-15 07:46 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acer
2015-06-07 22:33 - 2014-10-04 22:27 - 00000000 ____D C:\Users\manuel\AppData\Local\clear.fi
2015-06-07 22:24 - 2015-04-12 23:10 - 00000000 ____D C:\Users\manuel\AppData\Roaming\smileyswelove
2015-06-07 22:22 - 2014-01-15 07:08 - 00000000 ____D C:\Windows\Panther
2015-06-07 22:21 - 2015-04-12 23:11 - 00000000 ____D C:\ProgramData\{d90f6d9f-2329-266f-d90f-f6d9f232b67c}
2015-06-07 22:21 - 2015-04-04 02:30 - 00000000 ____D C:\Program Files (x86)\KinggCouipooN
2015-06-07 22:21 - 2015-04-04 02:29 - 00000000 ____D C:\Program Files (x86)\TicTaCoUpon
2015-06-07 22:21 - 2015-03-15 11:48 - 00000000 ____D C:\Program Files (x86)\SalesiCCheckerr
2015-06-07 22:21 - 2015-03-06 09:38 - 00000000 ____D C:\Program Files (x86)\TicTaCouponi
2015-06-07 22:21 - 2014-03-21 13:42 - 00000000 ____D C:\ProgramData\Temp
2015-06-07 22:21 - 2014-03-21 13:42 - 00000000 ____D C:\ProgramData\install_clap
2015-06-07 21:10 - 2015-04-13 00:10 - 00000004 _____ C:\Windows\SysWOW64\029B560A371F4E00AB32838EBC01B9E7
2015-06-07 15:42 - 2015-04-13 00:16 - 00000092 _____ C:\Users\manuel\AppData\Roaming\WB.CFG
2015-06-07 14:36 - 2014-01-15 06:55 - 00000000 ___HD C:\OEM
2015-06-07 14:30 - 2014-10-22 20:51 - 00000000 ___RD C:\Program Files (x86)\Skype
2015-06-07 12:36 - 2014-11-30 13:47 - 00000000 ____D C:\Program Files (x86)\PokerStars.BE
2015-06-07 12:32 - 2015-04-12 23:11 - 00000000 ____D C:\Program Files (x86)\Opera
2015-06-06 14:34 - 2015-01-29 16:34 - 00002860 _____ C:\Windows\System32\Tasks\Driver Booster SkipUAC (Système)
2015-06-06 14:30 - 2014-03-21 13:27 - 00000000 ____D C:\Windows\SysWOW64\RTCOM
2015-06-01 12:05 - 2013-08-22 21:11 - 00000000 ____D C:\Program Files\Windows Journal
2015-05-28 15:03 - 2015-01-28 19:12 - 00000020 _____ C:\Users\manuel\AppData\Roaming\appdataFr3.bin
==================== Files in the root of some directories =======
2015-03-03 00:18 - 2015-03-03 00:18 - 0000079 _____ () C:\Program Files (x86)\prefs.js
2015-06-01 12:20 - 2015-06-21 12:15 - 0000024 _____ () C:\Users\manuel\AppData\Roaming\appdataFr25.bin
2015-01-28 19:12 - 2015-05-28 15:03 - 0000020 _____ () C:\Users\manuel\AppData\Roaming\appdataFr3.bin
2015-04-13 00:16 - 2015-06-07 15:42 - 0000092 _____ () C:\Users\manuel\AppData\Roaming\WB.CFG
2014-03-21 13:27 - 2014-03-21 13:27 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
2014-11-21 11:09 - 2014-11-21 11:09 - 0000199 _____ () C:\ProgramData\Microsoft.SqlServer.Compact.351.32.bc
2014-11-05 04:55 - 2012-10-24 21:44 - 0656048 _____ (WildTangent, Inc.) C:\ProgramData\uninstall3354145.exe
Files to move or delete:
====================
C:\ProgramData\uninstall3354145.exe
Some files in TEMP:
====================
C:\Users\manuel\AppData\Local\Temp\avgnt.exe
C:\Users\manuel\AppData\Local\Temp\OnlineBackup.exe
==================== Bamital & volsnap Check =================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2015-06-18 10:39
==================== End of log ============================
Ran by manuel (administrator) on MAISON on 21-06-2015 17:38:19
Running from C:\Users\manuel\Downloads
Loaded Profiles: manuel (Available Profiles: manuel)
Platform: Windows 8.1 (X64) OS Language: Français (France)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(IObit) C:\Program Files (x86)\IObit\Advanced SystemCare 7\ASCService.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
() C:\Program Files (x86)\Accelerer PC\PCSUService.exe
(Windows (R) Win 7 DDK provider) C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\AdminService.exe
(Acer Incorporated) C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDService.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Acer Incorporate) C:\Program Files\Acer\Acer Launch Manager\LMSvc.exe
(McAfee, Inc.) C:\Windows\System32\mfevtps.exe
(McAfee, Inc.) C:\Program Files\Common Files\mcafee\systemcore\mfefire.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(IObit) C:\Program Files (x86)\IObit\Advanced SystemCare 7\Monitor.exe
(Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe
(Acer Incorporate) C:\Program Files\Acer\Acer Launch Manager\LMEvent.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel Corporation) C:\Windows\System32\igfxTray.exe
(Acer Incorporate) C:\Program Files\Acer\Acer Launch Manager\LMTray.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDTouch.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
(Qualcomm®Atheros®) C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(IObit) C:\Program Files (x86)\IObit\Advanced SystemCare 7\ASCTray.exe
(© 2015 Microsoft Corporation) C:\Users\manuel\AppData\Local\Microsoft\BingSvc\BingSvc.exe
(Acer Incorporated) C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exe
() C:\Program Files (x86)\Acer\abDocs\abDocsDllLoader.exe
() C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\ActivateDesktop.exe
(Acer Cloud Technology) C:\Program Files (x86)\Acer\AOP Framework\acer\ccd.exe
() C:\Program Files (x86)\Acer\abDocs\abDocsDllLoaderMonitor.exe
(Acer Incorporate) C:\Program Files\Acer\Acer Quick Access\QASvc.exe
(Acer Incorporate) C:\Program Files\Acer\Acer Quick Access\RMSvc.exe
(Acer Incorporate) C:\Program Files\Acer\Acer Quick Access\QAEvent.exe
(Acer Incorporate) C:\Program Files\Acer\Acer Quick Access\QAMsg.exe
(Acer Incorporate) C:\Program Files\Acer\Acer Quick Access\QuickAccess.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(IvoSoft) C:\Program Files\Classic Shell\ClassicStartMenu.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avgnt.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avguard.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avshadow.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\sched.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_18_0_0_160.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_18_0_0_160.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avscan.exe
(Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.3.9600.17709_none_fa7932f59afc2e40\TiWorker.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avscan.exe
==================== Registry (Whitelisted) ==================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [2890056 2013-10-02] (ELAN Microelectronics Corp.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13672152 2014-11-17] (Realtek Semiconductor)
HKLM\...\Run: [Classic Start Menu] => C:\Program Files\Classic Shell\ClassicStartMenu.exe [164112 2015-05-16] (IvoSoft)
HKLM-x32\...\Run: [BacKGround Agent] => C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exe [66304 2015-05-06] (Acer Incorporated)
HKLM-x32\...\Run: [abDocsDllLoader] => C:\Program Files (x86)\Acer\abDocs\abDocsDllLoader.exe [92928 2015-05-06] ()
HKLM-x32\...\Run: [Avira Systray] => C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe [134368 2015-06-02] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [avgnt] => C:\Program Files (x86)\Avira\Antivirus\avgnt.exe [730416 2015-05-28] (Avira Operations GmbH & Co. KG)
Winlogon\Notify\igfxcui: igfxdev.dll [X]
HKLM\...\Policies\Explorer\Run: [BtvStack] => C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe [133760 2013-12-24] (Qualcomm®Atheros®)
HKU\S-1-5-21-109147421-2626192411-2511064847-1001\...\Run: [Facebook Update] => C:\Users\manuel\AppData\Local\Facebook\Update\FacebookUpdate.exe [138096 2014-10-18] (Facebook Inc.)
HKU\S-1-5-21-109147421-2626192411-2511064847-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [28785792 2015-06-02] (Skype Technologies S.A.)
HKU\S-1-5-21-109147421-2626192411-2511064847-1001\...\Run: [Advanced SystemCare 7] => C:\Program Files (x86)\IObit\Advanced SystemCare 7\ASCTray.exe [2283808 2013-11-11] (IObit)
HKU\S-1-5-21-109147421-2626192411-2511064847-1001\...\Run: [Softonic for Windows] => C:\Users\manuel\AppData\Local\Softonic\Softonic.exe [4170224 2014-05-26] (Softonic)
HKU\S-1-5-21-109147421-2626192411-2511064847-1001\...\Run: [BingSvc] => C:\Users\manuel\AppData\Local\Microsoft\BingSvc\BingSvc.exe [144008 2015-04-07] (© 2015 Microsoft Corporation)
HKU\S-1-5-21-109147421-2626192411-2511064847-1001\...\Run: [uTorrent] => C:\Users\manuel\Desktop\uTorrent_3_4_2_36318.exe [1720912 2014-12-25] (BitTorrent Inc.)
HKU\S-1-5-21-109147421-2626192411-2511064847-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\System32\scrnsave.scr [11776 2015-01-13] (Microsoft Corporation)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk [2014-11-21]
ShortcutTarget: McAfee Security Scan Plus.lnk -> C:\Program Files\McAfee Security Scan\3.8.150\SSScheduler.exe (McAfee, Inc.)
Startup: C:\Users\manuel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Messenger.lnk [2014-12-01]
ShortcutTarget: Messenger.lnk -> C:\Program Files (x86)\rencontre-affinites\rencontre-affinites.exe (Rentabiliweb)
ShellIconOverlayIdentifiers: [ ACloudSynced] -> {5CCE71FA-9F61-4F24-9CD1-98D819B40D68} => C:\Program Files (x86)\Acer\shellext\x64\shellext_win.dll [2015-05-06] (Acer Incorporated)
ShellIconOverlayIdentifiers: [ ACloudSyncing] -> {C1E1456F-C2D8-4C96-870D-35F1E13941EE} => C:\Program Files (x86)\Acer\shellext\x64\shellext_win.dll [2015-05-06] (Acer Incorporated)
ShellIconOverlayIdentifiers: [ ACloudToBeSynced] -> {307523FA-DDC0-4068-983F-2A6B34627744} => C:\Program Files (x86)\Acer\shellext\x64\shellext_win.dll [2015-05-06] (Acer Incorporated)
ShellIconOverlayIdentifiers: [ShareOverlay] -> {594D4122-1F87-41E2-96C7-825FB4796516} => C:\Program Files\Classic Shell\ClassicExplorer64.dll [2015-05-16] (IvoSoft)
ShellIconOverlayIdentifiers-x32: [ShareOverlay] -> {594D4122-1F87-41E2-96C7-825FB4796516} => C:\Program Files\Classic Shell\ClassicExplorer32.dll [2015-05-16] (IvoSoft)
GroupPolicy: Group Policy on Chrome detected <======= ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/?pc=MSE1
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://websearch.hotsearches.info/?pid=24389&r=2015/06/21&hid=16622153133810271462&lg=EN&cc=BE&unqvl=90
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.sweet-page.com/web/?type=ds&ts=1413025458&from=cor&uid=ST500LT012-1DG142_S3P2BZJ9XXXXS3P2BZJ9&q={searchTerms}
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://www.sweet-page.com/web/?type=ds&ts=1413025458&from=cor&uid=ST500LT012-1DG142_S3P2BZJ9XXXXS3P2BZJ9&q={searchTerms}
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.sweet-page.com/?type=hp&ts=1413025458&from=cor&uid=ST500LT012-1DG142_S3P2BZJ9XXXXS3P2BZJ9
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.sweet-page.com/?type=hp&ts=1413025458&from=cor&uid=ST500LT012-1DG142_S3P2BZJ9XXXXS3P2BZJ9
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.sweet-page.com/web/?type=ds&ts=1413025458&from=cor&uid=ST500LT012-1DG142_S3P2BZJ9XXXXS3P2BZJ9&q={searchTerms}
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.sweet-page.com/web/?type=ds&ts=1413025458&from=cor&uid=ST500LT012-1DG142_S3P2BZJ9XXXXS3P2BZJ9&q={searchTerms}
HKU\S-1-5-21-109147421-2626192411-2511064847-1001\Software\Microsoft\Internet Explorer\Main,Start Page = http://websearch.hotsearches.info/?pid=24389&r=2015/06/21&hid=16622153133810271462&lg=EN&cc=BE&unqvl=90
HKU\S-1-5-21-109147421-2626192411-2511064847-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.sweet-page.com/?type=hp&ts=1413025458&from=cor&uid=ST500LT012-1DG142_S3P2BZJ9XXXXS3P2BZJ9
SearchScopes: HKLM -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL =
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> DefaultScope {BB82DE59-BC4C-4172-9AC4-73315F71CFFE} URL = http://websearch.hotsearches.info/?l=1&q={searchTerms}&pid=24389&r=2015/06/21&hid=16622153133810271462&lg=EN&cc=BE&unqvl=90
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> {BB82DE59-BC4C-4172-9AC4-73315F71CFFE} URL = http://websearch.hotsearches.info/?l=1&q={searchTerms}&pid=24389&r=2015/06/21&hid=16622153133810271462&lg=EN&cc=BE&unqvl=90
SearchScopes: HKU\.DEFAULT -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL =
SearchScopes: HKU\.DEFAULT -> {764BAF3D-8545-4658-92C2-50F07D91DD22} URL =
SearchScopes: HKU\S-1-5-21-109147421-2626192411-2511064847-1001 -> DefaultScope {BB82DE59-BC4C-4172-9AC4-73315F71CFFE} URL = http://websearch.hotsearches.info/?l=1&q={searchTerms}&pid=24389&r=2015/06/21&hid=16622153133810271462&lg=EN&cc=BE&unqvl=90
SearchScopes: HKU\S-1-5-21-109147421-2626192411-2511064847-1001 -> {764BAF3D-8545-4658-92C2-50F07D91DD22} URL = http://www.bing.com/search?FORM=UP97DF&PC=UP97&q={searchTerms}&src=IE-SearchBox
SearchScopes: HKU\S-1-5-21-109147421-2626192411-2511064847-1001 -> {BB82DE59-BC4C-4172-9AC4-73315F71CFFE} URL = http://websearch.hotsearches.info/?l=1&q={searchTerms}&pid=24389&r=2015/06/21&hid=16622153133810271462&lg=EN&cc=BE&unqvl=90
SearchScopes: HKU\S-1-5-21-109147421-2626192411-2511064847-1001 -> {BDEA41DB-C83C-405F-B91F-FBC4EB93CA2B} URL = https://search.yahoo.com/search?fr=chr-greentree_ie&ei=utf-8&ilc=12&type=198484&p={searchTerms}
BHO: No Name -> {2760361b-1ac8-4cb3-8768-974ebbd14916} -> No File
BHO: SalesiCCheckerr -> {3684acda-d6cf-43f4-a377-18dd9b85d163} -> C:\Program Files (x86)\SalesiCCheckerr\9VsaXrqxr3kfU0.x64.dll [2015-03-15] ()
BHO: PriCeMeianus -> {414F8C13-D2F0-489E-A3EA-FB1DAE78BC05} -> C:\Program Files (x86)\PriCeMeianus\5eHbNh5pNoYCDC.x64.dll [2015-06-21] ()
BHO: ExplorerBHO Class -> {449D0D6E-2412-4E61-B68F-1CB625CD9E52} -> C:\Program Files\Classic Shell\ClassicExplorer64.dll [2015-05-16] (IvoSoft)
BHO: No Name -> {45642cc3-1885-4bdc-bb35-659f248b989e} -> No File
BHO: PrIceMeiinuS -> {49D0F8AC-E025-412C-B831-C6806B7808AC} -> C:\Program Files (x86)\PrIceMeiinuS\3ro48ZMqQZJYqA.x64.dll [2015-06-21] ()
BHO: LuckYoCoupon -> {4E09A2CA-D9FC-4734-9204-59C0AA01E05C} -> C:\Program Files (x86)\LuckYoCoupon\dzt0AN04MZIhVL.x64.dll [2015-05-28] ()
BHO: No Name -> {6492c498-54aa-44c0-b357-d96d8265ef48} -> No File
BHO: PriCeeMinus -> {7027417F-7634-447C-8BC6-81CCF391920C} -> C:\Program Files (x86)\PriCeeMinus\CWbW1zuelVZ4tl.x64.dll [2015-06-21] ()
BHO: No Name -> {ac7e4b14-32d3-43d2-a7f6-b273d34659a3} -> No File
BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-05-01] (Microsoft Corporation)
BHO: No Name -> {b48c8dfb-fcb0-4c1f-b3b6-979b9d12a71e} -> No File
BHO: ClassicIEBHO Class -> {EA801577-E6AD-4BD5-8F71-4BE0154331A4} -> C:\Program Files\Classic Shell\ClassicIEDLL_64.dll [2015-05-16] (IvoSoft)
BHO-x32: No Name -> {2760361b-1ac8-4cb3-8768-974ebbd14916} -> No File
BHO-x32: No Name -> {3684acda-d6cf-43f4-a377-18dd9b85d163} -> No File
BHO-x32: PriCeMeianus -> {414F8C13-D2F0-489E-A3EA-FB1DAE78BC05} -> C:\Program Files (x86)\PriCeMeianus\5eHbNh5pNoYCDC.dll [2015-06-21] ()
BHO-x32: ExplorerBHO Class -> {449D0D6E-2412-4E61-B68F-1CB625CD9E52} -> C:\Program Files\Classic Shell\ClassicExplorer32.dll [2015-05-16] (IvoSoft)
BHO-x32: No Name -> {45642cc3-1885-4bdc-bb35-659f248b989e} -> No File
BHO-x32: PrIceMeiinuS -> {49D0F8AC-E025-412C-B831-C6806B7808AC} -> C:\Program Files (x86)\PrIceMeiinuS\3ro48ZMqQZJYqA.dll [2015-06-21] ()
BHO-x32: No Name -> {4E09A2CA-D9FC-4734-9204-59C0AA01E05C} -> No File
BHO-x32: No Name -> {6492c498-54aa-44c0-b357-d96d8265ef48} -> No File
BHO-x32: PriCeeMinus -> {7027417F-7634-447C-8BC6-81CCF391920C} -> C:\Program Files (x86)\PriCeeMinus\CWbW1zuelVZ4tl.dll [2015-06-21] ()
BHO-x32: bestadblocker -> {730E30E5-6AA4-4154-867B-D6938B7FD373} -> C:\Program Files (x86)\bestadblocker\gestiID60UOugY.dll [2015-06-21] ()
BHO-x32: No Name -> {8D76453E-4F41-429A-ACC0-E97093668991} -> No File
BHO-x32: No Name -> {ac7e4b14-32d3-43d2-a7f6-b273d34659a3} -> No File
BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-05-01] (Microsoft Corporation)
BHO-x32: No Name -> {b48c8dfb-fcb0-4c1f-b3b6-979b9d12a71e} -> No File
BHO-x32: PricEMinus -> {E7CE9761-5758-44AF-8969-6C4E24CCDE01} -> C:\Program Files (x86)\PricEMinus\cp1DHRWgfYMiHr.dll [2015-06-21] ()
BHO-x32: No Name -> {e81548df-92c5-486d-9d7d-dd8801dff21d} -> No File
BHO-x32: ClassicIEBHO Class -> {EA801577-E6AD-4BD5-8F71-4BE0154331A4} -> C:\Program Files\Classic Shell\ClassicIEDLL_32.dll [2015-05-16] (IvoSoft)
Toolbar: HKLM - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer64.dll [2015-05-16] (IvoSoft)
Toolbar: HKLM-x32 - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer32.dll [2015-05-16] (IvoSoft)
Handler: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - No File
Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - No File
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-05-01] (Microsoft Corporation)
Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-05-01] (Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 109.88.203.3 62.197.111.140
FireFox:
========
FF ProfilePath: C:\Users\manuel\AppData\Roaming\Mozilla\Firefox\Profiles\yjklkrl5.default
FF DefaultSearchEngine,S: WebSearch
FF DefaultSearchUrl: hxxp://websearch.hotsearches.info/?pid=24389&r=2015/06/21&hid=16622153133810271462&lg=EN&cc=BE&unqvl=90&l=1&q=
FF SearchEngineOrder.1: WebSearch
FF SearchEngineOrder.1,S: WebSearch
FF SelectedSearchEngine: WebSearch
FF SelectedSearchEngine,S: WebSearch
FF Homepage: hxxp://websearch.hotsearches.info/?pid=24389&r=2015/06/21&hid=16622153133810271462&lg=EN&cc=BE&unqvl=90
FF Keyword.URL: hxxp://websearch.hotsearches.info/?pid=24389&r=2015/06/21&hid=16622153133810271462&lg=EN&cc=BE&unqvl=90&l=1&q=
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_18_0_0_160.dll [2015-06-16] ()
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_18_0_0_160.dll [2015-06-16] ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-09-04] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-09-04] (Intel Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-13] ( Microsoft Corporation)
FF Plugin-x32: @staging.google.com/globalUpdate Update;version=10 -> C:\Program Files (x86)\globalUpdate\Update\1.3.25.0\npGoogleUpdate4.dll No File
FF Plugin-x32: @staging.google.com/globalUpdate Update;version=4 -> C:\Program Files (x86)\globalUpdate\Update\1.3.25.0\npGoogleUpdate4.dll No File
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-06-21] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-06-21] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.1.0 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2014-07-23] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2014-07-23] (VideoLAN)
FF Plugin HKU\S-1-5-21-109147421-2626192411-2511064847-1001: @Skype Limited.com/Facebook Video Calling Plugin -> C:\Users\manuel\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll [2014-07-24] (Skype Limited)
FF user.js: detected! => C:\Users\manuel\AppData\Roaming\Mozilla\Firefox\Profiles\yjklkrl5.default\user.js [2015-04-12]
FF SearchPlugin: C:\Users\manuel\AppData\Roaming\Mozilla\Firefox\Profiles\yjklkrl5.default\searchplugins\bing-.xml [2015-06-10]
FF SearchPlugin: C:\Users\manuel\AppData\Roaming\Mozilla\Firefox\Profiles\yjklkrl5.default\searchplugins\WebSearch.xml [2015-06-21]
FF Extension: Avira Browser Safety - C:\Users\manuel\AppData\Roaming\Mozilla\Firefox\Profiles\yjklkrl5.default\Extensions\abs@avira.com [2015-06-21]
FF Extension: PrIceMeiinuS - C:\Users\manuel\AppData\Roaming\Mozilla\Firefox\Profiles\yjklkrl5.default\Extensions\bBj@R5.com [2015-06-21]
FF Extension: Bing Search - C:\Users\manuel\AppData\Roaming\Mozilla\Firefox\Profiles\yjklkrl5.default\Extensions\bingsearch.full@microsoft.com [2015-06-08]
FF Extension: HD4Good - C:\Users\manuel\AppData\Roaming\Mozilla\Firefox\Profiles\yjklkrl5.default\Extensions\f04aefc8-8ba0-4db5-9173-75513b63d276@1c0acb40-234c-4912-b8ce-35e3901228ad.com [2015-06-07]
FF Extension: PricEMinus - C:\Users\manuel\AppData\Roaming\Mozilla\Firefox\Profiles\yjklkrl5.default\Extensions\l@XkW.edu [2015-06-21]
FF Extension: bestadblocker - C:\Users\manuel\AppData\Roaming\Mozilla\Firefox\Profiles\yjklkrl5.default\Extensions\N4VfaIWo@Z.net [2015-06-21]
FF Extension: PriCeeMinus - C:\Users\manuel\AppData\Roaming\Mozilla\Firefox\Profiles\yjklkrl5.default\Extensions\O@I.co.uk [2015-06-21]
FF Extension: PriCeMeianus - C:\Users\manuel\AppData\Roaming\Mozilla\Firefox\Profiles\yjklkrl5.default\Extensions\OSU@e4HfN.edu [2015-06-21]
FF Extension: vwofdrevcom - C:\Users\manuel\AppData\Roaming\Mozilla\Firefox\Profiles\yjklkrl5.default\Extensions\vwof@drev.com [2015-06-07]
FF Extension: YouTube Unblocker - C:\Users\manuel\AppData\Roaming\Mozilla\Firefox\Profiles\yjklkrl5.default\Extensions\youtubeunblocker@unblocker.yt [2015-04-19]
FF Extension: Adblock Plus Pop-up Addon - C:\Users\manuel\AppData\Roaming\Mozilla\Firefox\Profiles\yjklkrl5.default\Extensions\adblockpopups@jessehakanen.net.xpi [2015-06-16]
FF Extension: Element Hiding Helper for Adblock Plus - C:\Users\manuel\AppData\Roaming\Mozilla\Firefox\Profiles\yjklkrl5.default\Extensions\elemhidehelper@adblockplus.org.xpi [2015-06-07]
FF Extension: YouTube Video and Audio Downloader - C:\Users\manuel\AppData\Roaming\Mozilla\Firefox\Profiles\yjklkrl5.default\Extensions\feca4b87-3be4-43da-a1b1-137c24220968@jetpack.xpi [2015-06-07]
FF Extension: ProxTube - C:\Users\manuel\AppData\Roaming\Mozilla\Firefox\Profiles\yjklkrl5.default\Extensions\ich@maltegoetz.de.xpi [2015-06-07]
FF Extension: SmileysWeLove: Smileys for use with Facebook, GMail, and more - C:\Users\manuel\AppData\Roaming\Mozilla\Firefox\Profiles\yjklkrl5.default\Extensions\jid1-FB1bBgFMk5H6Wg@jetpack.xpi [2015-04-12]
FF Extension: AdBlock for YouTube™ - C:\Users\manuel\AppData\Roaming\Mozilla\Firefox\Profiles\yjklkrl5.default\Extensions\jid1-q4sG8pYhq8KGHs@jetpack.xpi [2015-06-16]
FF Extension: Adblock Plus - C:\Users\manuel\AppData\Roaming\Mozilla\Firefox\Profiles\yjklkrl5.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2015-06-16]
FF HKLM-x32\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files (x86)\McAfee\SiteAdvisor
FF Extension: No Name - C:\Program Files (x86)\McAfee\SiteAdvisor [2014-01-15]
FF HKU\S-1-5-21-109147421-2626192411-2511064847-1001\...\Firefox\Extensions: [{EFBC958A-CD36-6468-62A7-5258AAF63BC8}] - C:\Program Files (x86)\version02BetterMarkIt\191.xpi
Chrome:
=======
CHR dev: Chrome dev build detected! <======= ATTENTION
CHR Profile: C:\Users\manuel\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Adblock Plus) - C:\Users\manuel\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2015-06-21]
CHR Extension: ( for Chrome Plus) - C:\Users\manuel\AppData\Local\Google\Chrome\User Data\Default\Extensions\jafknefnkiolhmhbdpojkpdempbdmfap [2015-06-21]
CHR Extension: (Chrome Hotword Shared Module) - C:\Users\manuel\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-06-21]
CHR Extension: (Skype Click to Call) - C:\Users\manuel\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2015-01-14]
CHR Extension: (Google Wallet) - C:\Users\manuel\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-06-21]
CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - C:\Program Files (x86)\McAfee\SiteAdvisor\McChPlg.crx [Not Found]
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - https://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-109147421-2626192411-2511064847-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [fcfenmboojpjinhpgggodefccipikbpd] - https://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [bopakagnckmlgajfccecajhnimjiiedh] - http://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - http://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [fjbbjfdilbioabojmcplalojlmdngbjl] - C:\Users\manuel\AppData\Local\Temp\swlfiles\smileyswelovetoolbar.crx [Not Found]
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - https://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2015-05-01]
CHR HKLM-x32\...\Chrome\Extension: [mhkaekfpcppmmioggniknbnbdbcigpkk] - C:\Users\manuel\AppData\Local\Slick Savings\coupons.crx [2014-10-26]
Opera:
=======
OPR Extension: (Gamesorama) - C:\Users\manuel\AppData\Roaming\Opera Software\Opera Stable\Extensions\hdlmjkfoidldghacbhdinlbmgpcplpal [2015-06-07]
OPR Extension: (Shop til Drop) - C:\Users\manuel\AppData\Roaming\Opera Software\Opera Stable\Extensions\jgddaapiamkjnpaoeaebnlbofhceppik [2015-06-07]
OPR Extension: (lgomjifbpjfhpodjhihemafahhmegbek) - C:\Users\manuel\AppData\Roaming\Opera Software\Opera Stable\Extensions\lgomjifbpjfhpodjhihemafahhmegbek [2015-06-07]
==================== Services (Whitelisted) =================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AdvancedSystemCareService7; C:\Program Files (x86)\IObit\Advanced SystemCare 7\ASCService.exe [878368 2013-10-25] (IObit)
S2 AntiVirMailService; C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe [827184 2015-05-28] (Avira Operations GmbH & Co. KG)
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\Antivirus\sched.exe [450808 2015-05-28] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\Antivirus\avguard.exe [450808 2015-05-28] (Avira Operations GmbH & Co. KG)
S2 AntiVirWebService; C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe [1188360 2015-05-28] (Avira Operations GmbH & Co. KG)
R2 AtherosSvc; C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\adminservice.exe [318592 2013-12-24] (Windows (R) Win 7 DDK provider) [File not signed]
R2 Avira.ServiceHost; C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe [217280 2015-06-02] (Avira Operations GmbH & Co. KG)
S3 BthHFSrv; C:\Windows\System32\BthHFSrv.dll [324608 2015-01-13] (Microsoft Corporation)
S3 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1394816 2015-05-01] (Microsoft Corporation)
S3 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1772672 2015-05-01] (Microsoft Corporation)
R2 CCDMonitorService; C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe [2839296 2015-05-06] (Acer Incorporated)
R2 ETDService; C:\Program Files\Elantech\ETDService.exe [101192 2013-10-02] (ELAN Microelectronics Corp.)
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [282096 2014-11-17] (Intel Corporation)
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [733696 2013-05-12] (Intel(R) Corporation) [File not signed]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [822232 2013-05-12] (Intel(R) Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-09-04] (Intel Corporation)
R2 LMSvc; C:\Program Files\Acer\Acer Launch Manager\LMSvc.exe [457768 2013-08-03] (Acer Incorporate)
S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.8.150\McCHSvc.exe [289256 2014-04-09] (McAfee, Inc.)
R2 mfefire; C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe [219752 2014-07-18] (McAfee, Inc.)
R2 mfevtp; C:\Windows\system32\mfevtps.exe [189912 2014-07-18] (McAfee, Inc.)
R2 PCSUService; C:\Program Files (x86)\Accelerer PC\PCSUService.exe [445640 2015-04-07] ()
R3 QASvc; C:\Program Files\Acer\Acer Quick Access\QASvc.exe [457768 2013-08-03] (Acer Incorporate)
R3 RMSvc; C:\Program Files\Acer\Acer Quick Access\RMSvc.exe [448040 2013-08-03] (Acer Incorporate)
S3 SCService; C:\Program Files (x86)\Accelerer PC\SpeedCheckerService.exe [23752 2015-04-07] ()
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [366520 2015-02-04] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23792 2015-02-04] (Microsoft Corporation)
S4 9b784ed1; "C:\Windows\system32\rundll32.exe" "c:\Program Files (x86)\optimizer pro 3.16\optpromon.dll",ENT <==== ATTENTION
S3 globalUpdatem; C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe /medsvc [X] <==== ATTENTION
S2 gupdate; "C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /svc [X]
S3 gupdatem; "C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /medsvc [X]
S3 LiveUpdateSvc; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [X]
S4 MaintainerSvc4.52.864054; "C:\ProgramData\ddc24aa9-6c5d-44d0-8c40-9bed83bb2ab7\maintainer.exe" [X]
S2 McAfee SiteAdvisor Service; No ImagePath
S4 sssvc_1.10.0.5; "C:\Program Files (x86)\SearchSnacks_1.10.0.5\Service\sssvc.exe" [X]
==================== Drivers (Whitelisted) ====================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 athr; C:\Windows\system32\DRIVERS\athwbx.sys [3881472 2013-12-12] (Qualcomm Atheros Communications, Inc.)
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [153256 2015-05-28] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\system32\DRIVERS\avipbb.sys [132656 2015-05-28] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\system32\DRIVERS\avkmgr.sys [28600 2015-05-28] (Avira Operations GmbH & Co. KG)
R2 avnetflt; C:\Windows\system32\DRIVERS\avnetflt.sys [43576 2015-05-28] (Avira Operations GmbH & Co. KG)
R3 BTATH_LWFLT; C:\Windows\system32\DRIVERS\btath_lwflt.sys [77464 2013-12-24] (Qualcomm Atheros)
R3 BthLEEnum; C:\Windows\System32\drivers\BthLEEnum.sys [226304 2013-12-04] (Microsoft Corporation)
S3 cfwids; C:\Windows\System32\drivers\cfwids.sys [72128 2014-07-18] (McAfee, Inc.)
R1 HWiNFO32; C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [26528 2015-01-29] (REALiX(tm))
R3 LMDriver; C:\Windows\System32\drivers\LMDriver.sys [21360 2013-07-17] (Acer Incorporated)
R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [100312 2014-11-17] (Intel Corporation)
S3 mfeapfk; C:\Windows\System32\drivers\mfeapfk.sys [181704 2014-07-18] (McAfee, Inc.)
R3 mfeavfk; C:\Windows\System32\drivers\mfeavfk.sys [313800 2014-07-18] (McAfee, Inc.)
S0 mfeelamk; C:\Windows\System32\drivers\mfeelamk.sys [70600 2014-07-18] (McAfee, Inc.)
R3 mfefirek; C:\Windows\System32\drivers\mfefirek.sys [526352 2014-07-18] (McAfee, Inc.)
R0 mfehidk; C:\Windows\System32\drivers\mfehidk.sys [786296 2014-07-18] (McAfee, Inc.)
R0 mfewfpk; C:\Windows\System32\drivers\mfewfpk.sys [348552 2014-07-18] (McAfee, Inc.)
R3 RadioShim; C:\Windows\System32\drivers\RadioShim.sys [14680 2013-07-17] (Acer Incorporated)
S3 RTL8192cu; C:\Windows\system32\DRIVERS\WNA1000M.sys [855144 2011-02-21] (Realtek Semiconductor Corporation )
S3 RTWlanE; C:\Windows\system32\DRIVERS\rtwlane.sys [1936088 2013-07-31] (Realtek Semiconductor Corporation )
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114496 2015-02-04] (Microsoft Corporation)
S1 BAPIDRV; system32\DRIVERS\BAPIDRV64.sys [X]
S1 ssnfd_1_10_0_5; system32\drivers\ssnfd_1_10_0_5.sys [X]
S1 {75afa305-1b32-4464-a5e2-f606c80b73a4}Gw64; system32\drivers\{75afa305-1b32-4464-a5e2-f606c80b73a4}Gw64.sys [X]
S1 {770f8173-dbeb-406e-bb39-f5f1a22362d8}Gw64; system32\drivers\{770f8173-dbeb-406e-bb39-f5f1a22362d8}Gw64.sys [X]
S1 {84e24724-32a5-4ef8-b981-cc669543b4a4}Gw64; system32\drivers\{84e24724-32a5-4ef8-b981-cc669543b4a4}Gw64.sys [X]
S1 {8fe19c8e-7524-443d-b4e0-39594b611d24}Gw64; system32\drivers\{8fe19c8e-7524-443d-b4e0-39594b611d24}Gw64.sys [X]
S1 {fd74c1d1-1ac3-43f9-8336-32679dc7de45}Gw64; system32\drivers\{fd74c1d1-1ac3-43f9-8336-32679dc7de45}Gw64.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2015-06-21 17:35 - 2015-06-21 17:38 - 00043227 _____ C:\Users\manuel\Downloads\Addition.txt
2015-06-21 17:31 - 2015-06-21 17:38 - 00032773 _____ C:\Users\manuel\Downloads\FRST.txt
2015-06-21 17:30 - 2015-06-21 17:39 - 00000000 ____D C:\FRST
2015-06-21 17:29 - 2015-06-21 17:29 - 02109952 _____ (Farbar) C:\Users\manuel\Downloads\FRST64.exe
2015-06-21 17:19 - 2015-06-21 17:19 - 00776792 _____ (Reimage®) C:\Users\manuel\Downloads\eFixPro.exe
2015-06-21 17:07 - 2015-06-21 17:07 - 00003320 _____ C:\Windows\System32\Tasks\AviraSpeedup
2015-06-21 17:07 - 2015-06-21 17:07 - 00001125 _____ C:\Users\Public\Desktop\Avira System Speedup.lnk
2015-06-21 17:07 - 2015-06-21 17:07 - 00000000 ____D C:\Users\Public\Speedup Sessions
2015-06-21 17:07 - 2015-06-21 17:07 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AviraSpeedup
2015-06-21 17:06 - 2015-06-21 17:06 - 00000000 ____D C:\Users\manuel\AppData\Roaming\Avira
2015-06-21 17:03 - 2015-05-28 16:49 - 00132656 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avipbb.sys
2015-06-21 17:03 - 2015-05-28 16:49 - 00043576 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avnetflt.sys
2015-06-21 17:03 - 2015-05-28 16:49 - 00028600 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avkmgr.sys
2015-06-21 17:03 - 2015-05-28 16:48 - 00153256 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avgntflt.sys
2015-06-21 17:00 - 2015-06-21 17:00 - 00001178 _____ C:\Users\Public\Desktop\Avira.lnk
2015-06-21 16:59 - 2015-06-21 17:07 - 00000000 ____D C:\Program Files (x86)\Avira
2015-06-21 16:59 - 2015-06-21 17:05 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
2015-06-21 16:59 - 2015-06-21 17:03 - 00000000 ____D C:\ProgramData\Avira
2015-06-21 16:59 - 2015-06-21 16:59 - 04718584 _____ (Avira Operations GmbH & Co. KG) C:\Users\manuel\Downloads\avira_fr_av_5586d1317a495__ws.exe
2015-06-21 16:59 - 2015-06-21 16:59 - 00000000 ____D C:\ProgramData\Package Cache
2015-06-21 16:46 - 2015-06-21 16:46 - 00000000 ____D C:\Users\manuel\AppData\Roaming\LightningDownloader
2015-06-21 16:34 - 2015-06-21 16:34 - 00000146 _____ C:\Users\manuel\Desktop\IObit Uninstaller - Raccourci.lnk
2015-06-21 16:33 - 2015-06-21 16:33 - 00000000 ____D C:\Users\manuel\AppData\Local\ClassicShell
2015-06-21 16:32 - 2015-06-21 16:32 - 00000000 ____D C:\Users\manuel\AppData\Roaming\ClassicShell
2015-06-21 16:32 - 2015-06-21 16:32 - 00000000 ____D C:\ProgramData\ClassicShell
2015-06-21 16:29 - 2015-06-21 16:29 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Classic Shell
2015-06-21 16:29 - 2015-06-21 16:29 - 00000000 ____D C:\Program Files\Classic Shell
2015-06-21 16:27 - 2015-06-21 16:27 - 07496464 _____ (IvoSoft) C:\Users\manuel\Downloads\ClassicShellSetup_4_2_1-fr.exe
2015-06-21 16:25 - 2015-06-21 16:25 - 00002057 _____ C:\Users\Public\Desktop\LightningDownloader.lnk
2015-06-21 16:25 - 2015-06-21 16:25 - 00000000 ____D C:\Windows\SysWOW64\X86
2015-06-21 16:25 - 2015-06-21 16:25 - 00000000 ____D C:\Windows\SysWOW64\AMD64
2015-06-21 16:25 - 2015-06-21 16:25 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LightningDownloader
2015-06-21 16:24 - 2015-06-21 17:11 - 00000000 ____D C:\Program Files (x86)\decodit
2015-06-21 16:23 - 2015-06-21 17:40 - 00000000 ____D C:\Program Files (x86)\PrIceMeiinuS
2015-06-21 16:23 - 2015-06-21 16:23 - 00000000 ____D C:\ProgramData\gjoahdgnncnfbldkjjghfkkcefkoojkm
2015-06-21 16:22 - 2015-06-21 16:22 - 00289280 _____ C:\Users\manuel\Downloads\Advanced System Care 8 Pro Serial Key Crack Is Here ! [Latest].exe
2015-06-21 16:19 - 2015-06-21 16:19 - 00003982 _____ C:\Windows\System32\Tasks\LaunchPreSignup
2015-06-21 16:17 - 2015-06-21 16:17 - 00000000 ____D C:\ProgramData\jmnjmaokcpeleoakbnanmoklepjicaii
2015-06-21 16:17 - 2015-06-21 16:17 - 00000000 ____D C:\Program Files (x86)\PriCeMeianus
2015-06-21 16:15 - 2015-06-21 16:15 - 00289280 _____ C:\Users\manuel\Downloads\Advanced System Care Pro 8.2.0.795 Key Is Here! [Latest] (2).exe
2015-06-21 16:14 - 2015-06-21 16:24 - 00000000 ____D C:\Program Files (x86)\RelaySoft
2015-06-21 16:13 - 2015-06-21 16:13 - 00000000 ____D C:\ProgramData\bbnmlcmkhkajophpnnioimmiedldoijb
2015-06-21 16:13 - 2015-06-21 16:13 - 00000000 ____D C:\Program Files (x86)\PriCeeMinus
2015-06-21 16:11 - 2015-06-21 16:25 - 00000000 ____D C:\Program Files (x86)\LightningDownloader
2015-06-21 16:11 - 2015-06-21 16:11 - 00289280 _____ C:\Users\manuel\Downloads\Advanced System Care Pro 8.2.0.795 Key Is Here! [Latest] (1).exe
2015-06-21 16:10 - 2015-06-21 16:14 - 00000000 ____D C:\Program Files (x86)\PragmaEdit
2015-06-21 16:09 - 2015-06-21 17:33 - 00000000 ____D C:\Program Files (x86)\bestadblocker
2015-06-21 16:09 - 2015-06-21 16:09 - 00000000 ____D C:\Program Files (x86)\ for Chrome Plus
2015-06-21 16:08 - 2015-06-21 17:26 - 00000000 ____D C:\Program Files (x86)\PricEMinus
2015-06-21 16:08 - 2015-06-21 16:08 - 00000000 ____D C:\ProgramData\mogblgafmifnnholjckoaencigflpaea
2015-06-21 16:07 - 2015-06-21 16:07 - 00000000 ____D C:\ProgramData\{678cdcc3-6656-0db4-678c-cdcc3665730d}
2015-06-21 16:06 - 2015-06-21 16:06 - 00289280 _____ C:\Users\manuel\Downloads\Advanced System Care Pro 8.2.0.795 Key Is Here! [Latest].exe
2015-06-21 15:55 - 2015-06-21 15:55 - 00002239 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2015-06-21 15:55 - 2015-06-21 15:55 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2015-06-21 15:53 - 2015-06-21 15:54 - 00931408 _____ (Google Inc.) C:\Users\manuel\Downloads\ChromeSetup.exe
2015-06-21 12:36 - 2015-06-21 12:36 - 00000116 _____ C:\Windows\setupact.log
2015-06-21 12:36 - 2015-06-21 12:36 - 00000000 _____ C:\Windows\setuperr.log
2015-06-21 12:35 - 2015-06-21 12:35 - 00006204 _____ C:\Windows\PFRO.log
2015-06-21 12:35 - 2015-06-21 12:35 - 00000000 _____ C:\asc_rdflag
2015-06-19 21:22 - 2015-06-19 21:22 - 00141408 _____ (Rentabiliweb) C:\Users\manuel\Downloads\yesmessenger.exe
2015-06-19 21:21 - 2015-06-19 21:21 - 00141408 _____ (Rentabiliweb) C:\Users\manuel\Downloads\Setuprencontre-affinites.exe
2015-06-19 18:44 - 2015-06-19 19:04 - 1099047357 _____ C:\Users\manuel\Downloads\Jurassic.World.TRUEFRENCH.TS.MD.XviD-www.libertyland.tv.avi
2015-06-19 14:02 - 2015-06-19 14:08 - 1469114373 ____R C:\Users\manuel\Downloads\[ www.Cpasbien.pw ] Jupiter.Ascending.2015.TRUEFRENCH.BDRip.XviD-AViTECH.avi
2015-06-18 22:16 - 2015-06-18 22:21 - 738428834 ____R C:\Users\manuel\Downloads\[ www.Cpasbien.pw ] Mega.Shark.Vs.Mecha.Shark.2015.FRENCH.DVDRip.XviD-D4NG3R.avi
2015-06-18 22:12 - 2015-06-18 22:18 - 675053574 ____R C:\Users\manuel\Downloads\[ www.Cpasbien.pw ] Atlantic.Rim.2015.TRUEFRENCH.DVDRip.XviD-D4NG3R.avi
2015-06-18 22:03 - 2015-06-18 22:15 - 1466116096 ____R C:\Users\manuel\Downloads\[ www.Cpasbien.pw ] Jupiter.Ascending.2015.FRENCH.DVDRip.XviD-GLUPS.avi
2015-06-18 15:42 - 2015-06-18 15:45 - 735246956 _____ C:\Users\manuel\Downloads\The.Cobbler.2014.FRENCH.DVDRip.XviD-GLUPS.zone-telechargement.com.avi
2015-06-18 15:09 - 2015-06-18 15:18 - 733935898 _____ C:\Users\manuel\Downloads\Viy.2014.TRUEFRENCH.DVDRip.XviD.avi
2015-06-18 15:05 - 2015-06-18 15:11 - 1388084026 _____ C:\Users\manuel\Downloads\Sleeping.Beauty.2014.FRENCH.DVDRip.XViD-BHJ.zone-telechargement.com.avi
2015-06-17 21:51 - 2015-06-17 21:51 - 00000000 ____D C:\Users\manuel\Downloads\Weeds.S07E01.FRENCH.LD.DVDRiP.XViD-EPZ
2015-06-17 21:46 - 2015-06-17 21:46 - 00000000 ____D C:\Users\manuel\Downloads\Weeds.S07E03.FRENCH.LD.BDRip.XviD-MiND
2015-06-17 21:46 - 2015-06-17 21:46 - 00000000 ____D C:\Users\manuel\Downloads\Weeds.S07E02.FRENCH.LD.DVDRiP.XViD-EPZ
2015-06-17 21:43 - 2015-06-17 21:53 - 248131528 _____ C:\Users\manuel\Downloads\[www.Cpasbien.me] Weeds.S07E05.FRENCH.LD.BDRiP.XViD-EPZ.avi
2015-06-17 21:43 - 2015-06-17 21:43 - 00000000 ____D C:\Users\manuel\Downloads\Weeds.S07E04.FRENCH.LD.BDRip.XviD-MiND
2015-06-17 21:40 - 2015-06-17 21:46 - 247972672 _____ C:\Users\manuel\Downloads\[www.Cpasbien.me] Weeds.S07E06.FRENCH.LD.BDRiP.XViD-EPZ.avi
2015-06-17 21:37 - 2015-06-17 21:37 - 00000000 ____D C:\Users\manuel\Downloads\[www.Cpasbien.me] Weeds.S07E07.FRENCH.LD.BDRip.XviD-MiND
2015-06-17 21:36 - 2015-06-17 21:36 - 00000000 ____D C:\Users\manuel\Downloads\[www.Cpasbien.me] Weeds.S07E08.FRENCH.LD.BDRip.XviD-MiND
2015-06-17 21:29 - 2015-06-17 21:29 - 00000000 ____D C:\Users\manuel\Downloads\[www.Cpasbien.me] Weeds.S07E10.FRENCH.LD.BDRip.XviD-MiND
2015-06-17 21:29 - 2015-06-17 21:29 - 00000000 ____D C:\Users\manuel\Downloads\[www.Cpasbien.me] Weeds.S07E09.FRENCH.LD.BDRip.XviD-MiND
2015-06-17 21:28 - 2015-06-17 21:28 - 00000000 ____D C:\Users\manuel\Downloads\Weeds.S07E13.FiNAL.FRENCH.LD.BDRip.XviD-SRiZ
2015-06-17 21:28 - 2015-06-17 21:28 - 00000000 ____D C:\Users\manuel\Downloads\Weeds.S07E12.FRENCH.LD.BDRip.XviD-MiND
2015-06-17 21:28 - 2015-06-17 21:28 - 00000000 ____D C:\Users\manuel\Downloads\Weeds.S07E11.FRENCH.LD.BDRiP.XViD-EPZ
2015-06-17 20:31 - 2015-06-17 20:31 - 00000000 ____D C:\Users\manuel\Downloads\[www.Cpasbien.com] Weeds.S06E13.FINAL.FRENCH.BRRIP.XviD-ArRoWs
2015-06-17 20:21 - 2015-06-17 20:31 - 1484228739 ____R C:\Users\manuel\Downloads\[ www.Cpasbien.pw ] The.Hobbit.The.Battle.of.the.Five.Armies.2014.FRENCH.BRRip.XviD-Slay3R.avi
2015-06-17 20:06 - 2015-06-17 20:18 - 976861578 _____ C:\Users\manuel\Downloads\[ www.CpasBien.pw ] Strange.Magic.2015.FRENCH.DVDRiP.x264-CNF30.mkv
2015-06-17 20:06 - 2015-06-17 20:06 - 00076004 _____ C:\Users\manuel\Downloads\strange-magic-french-dvdrip-x264-2015.torrent
2015-06-17 20:02 - 2015-06-17 20:13 - 1467481897 ____R C:\Users\manuel\Downloads\[ www.Cpasbien.pw ] The Man with the Iron Fists 2 2015 UNRATED FRENCH BRRiP x264 AC3-CARPEDIEM.mkv
2015-06-17 20:00 - 2015-06-17 20:07 - 734698584 ____R C:\Users\manuel\Downloads\[ www.Cpasbien.pw ] Tracer.2015.FRENCH.DVDRip.XviD-GLUPS.avi
2015-06-17 19:56 - 2015-06-17 19:59 - 733782025 ____R C:\Users\manuel\Downloads\[ www.Cpasbien.pw ] 71.2014.TRUEFRENCH.DvDRiP.XviD-DreamStreet.avi
2015-06-17 19:21 - 2015-06-17 19:30 - 994678358 ____R C:\Users\manuel\Downloads\[ www.CpasBien.pw ] Extinction.2014.FRENCH.BDRip.x264-AKATSUKi.mkv
2015-06-17 19:18 - 2015-06-17 19:28 - 1468989440 ____R C:\Users\manuel\Downloads\[ www.Cpasbien.pw ] Chappie.2015.FRENCH.BRRip.XviD.AC3-S.V.avi
2015-06-17 00:16 - 2015-06-17 00:16 - 00077458 _____ C:\Users\manuel\Downloads\extinction-french-dvdrip-x264-2015.torrent
2015-06-12 16:53 - 2015-06-12 17:02 - 734230541 _____ C:\Users\manuel\Downloads\[ www.CpasBien.pw ] Ex.Machina.2015.FRENCH.BDRiP.XViD-AViTECH.avi
2015-06-12 16:48 - 2015-06-12 16:52 - 732507051 ____R C:\Users\manuel\Downloads\[ www.Cpasbien.pw ] Pyramide.2014.FRENCH.BDRip.XviD-GLUPS.avi
2015-06-11 13:02 - 2015-06-03 18:18 - 00792568 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2015-06-11 13:02 - 2015-06-03 18:18 - 00178168 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2015-06-11 13:01 - 2015-06-11 13:01 - 00337960 _____ C:\Windows\system32\FNTCACHE.DAT
2015-06-11 12:48 - 2015-06-11 12:48 - 00000290 __RSH C:\ProgramData\ntuser.pol
2015-06-10 15:06 - 2015-05-27 16:35 - 24917504 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2015-06-10 15:06 - 2015-05-27 16:08 - 19607040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2015-06-10 15:06 - 2015-05-23 05:15 - 00503808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2015-06-10 15:06 - 2015-05-23 05:14 - 00341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2015-06-10 15:06 - 2015-05-23 05:10 - 02278912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2015-06-10 15:06 - 2015-05-23 05:05 - 00664064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2015-06-10 15:06 - 2015-05-23 05:04 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2015-06-10 15:06 - 2015-05-23 04:48 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2015-06-10 15:06 - 2015-05-23 04:47 - 04305920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2015-06-10 15:06 - 2015-05-23 04:47 - 00285696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2015-06-10 15:06 - 2015-05-23 04:47 - 00128000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2015-06-10 15:06 - 2015-05-23 04:43 - 00880128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll
2015-06-10 15:06 - 2015-05-23 04:38 - 00689152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2015-06-10 15:06 - 2015-05-23 04:38 - 00327168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2015-06-10 15:06 - 2015-05-23 04:37 - 02052608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2015-06-10 15:06 - 2015-05-23 04:28 - 12829696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2015-06-10 15:06 - 2015-05-23 04:28 - 01042944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\actxprxy.dll
2015-06-10 15:06 - 2015-05-23 04:20 - 01950720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2015-06-10 15:06 - 2015-05-23 04:16 - 01309696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2015-06-10 15:06 - 2015-05-23 04:14 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2015-06-10 15:06 - 2015-05-22 21:00 - 02885632 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2015-06-10 15:06 - 2015-05-22 21:00 - 00584192 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2015-06-10 15:06 - 2015-05-22 21:00 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2015-06-10 15:06 - 2015-05-22 20:52 - 06026240 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2015-06-10 15:06 - 2015-05-22 20:48 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2015-06-10 15:06 - 2015-05-22 20:47 - 00816640 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2015-06-10 15:06 - 2015-05-22 20:47 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2015-06-10 15:06 - 2015-05-22 20:24 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2015-06-10 15:06 - 2015-05-22 20:23 - 00145408 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2015-06-10 15:06 - 2015-05-22 20:21 - 00316928 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2015-06-10 15:06 - 2015-05-22 20:15 - 01032704 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
2015-06-10 15:06 - 2015-05-22 20:09 - 00262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2015-06-10 15:06 - 2015-05-22 20:08 - 00374272 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2015-06-10 15:06 - 2015-05-22 20:06 - 00801280 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2015-06-10 15:06 - 2015-05-22 20:05 - 02125824 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2015-06-10 15:06 - 2015-05-22 19:57 - 14404096 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2015-06-10 15:06 - 2015-05-22 19:50 - 02426880 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2015-06-10 15:06 - 2015-05-22 19:49 - 02865152 _____ (Microsoft Corporation) C:\Windows\system32\actxprxy.dll
2015-06-10 15:06 - 2015-05-22 19:38 - 01545728 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2015-06-10 15:06 - 2015-05-22 19:26 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2015-06-10 15:06 - 2015-04-25 04:34 - 00653824 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll
2015-06-10 15:06 - 2015-04-25 04:33 - 00549888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comctl32.dll
2015-06-10 15:05 - 2015-05-21 18:47 - 04177920 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2015-06-08 00:19 - 2015-06-08 00:19 - 00000000 ____D C:\Users\manuel\AppData\Local\com
2015-06-07 23:16 - 2015-06-07 23:26 - 00000000 ____D C:\Program Files (x86)\Gamesorama
2015-06-07 22:57 - 2015-06-07 22:57 - 00000000 ____D C:\Users\manuel\AppData\Local\BrowserWeb
2015-06-07 22:56 - 2015-06-21 17:26 - 00000294 _____ C:\Windows\Tasks\PC-Mechanic Maintenance.job
2015-06-07 22:56 - 2015-06-21 12:37 - 00000294 _____ C:\Windows\Tasks\PC-Mechanic Subscription.job
2015-06-07 22:56 - 2015-06-21 12:37 - 00000288 _____ C:\Windows\Tasks\PC-Mechanic Startup.job
2015-06-07 22:56 - 2015-06-07 22:56 - 00003196 _____ C:\Windows\System32\Tasks\PC-Mechanic Maintenance
2015-06-07 22:56 - 2015-06-07 22:56 - 00002564 _____ C:\Windows\System32\Tasks\PC-Mechanic Subscription
2015-06-07 22:56 - 2015-06-07 22:56 - 00002498 _____ C:\Windows\System32\Tasks\PC-Mechanic Startup
2015-06-07 22:53 - 2015-06-07 23:03 - 00000658 _____ C:\Users\manuel\Downloads\Setup .website
2015-06-07 22:35 - 2015-06-07 22:35 - 00001965 _____ C:\Users\Public\Desktop\abPhoto.lnk
2015-06-07 22:21 - 2015-06-07 22:21 - 00003948 _____ C:\Windows\System32\Tasks\Opera scheduled Autoupdate 1428873121
2015-06-07 22:21 - 2015-06-07 22:21 - 00003256 _____ C:\Windows\System32\Tasks\Optimizer Pro Schedule
2015-06-07 22:20 - 2015-06-07 22:20 - 00004404 _____ C:\Windows\System32\Tasks\ALUAgent
2015-06-07 22:20 - 2015-06-07 22:20 - 00003630 _____ C:\Windows\System32\Tasks\ALU
2015-06-07 22:20 - 2015-06-07 22:20 - 00003336 _____ C:\Windows\System32\Tasks\AcerCloud
2015-06-07 22:20 - 2015-06-07 22:20 - 00003222 _____ C:\Windows\System32\Tasks\Driver Booster Scan
2015-06-07 22:20 - 2015-06-07 22:20 - 00003166 _____ C:\Windows\System32\Tasks\Driver Booster Update
2015-06-07 22:14 - 2015-06-07 22:14 - 00000000 ____D C:\Windows\Tasks\360Disabled
2015-06-07 22:10 - 2015-06-16 18:36 - 00000000 __SHD C:\ProgramData\360Quarant
2015-06-07 22:10 - 2015-06-16 18:36 - 00000000 __SHD C:\$360Section
2015-06-07 22:06 - 2015-06-07 22:06 - 36034168 _____ C:\Users\manuel\Downloads\360TS_Setup.exe
2015-06-07 22:06 - 2015-06-07 22:06 - 00000000 ____D C:\Program Files (x86)\360
2015-06-07 22:05 - 2015-06-07 22:05 - 01332344 _____ (QIHU 360 SOFTWARE CO. LIMITED) C:\Users\manuel\Downloads\360TS_Setup_Mini(1).exe
2015-06-07 22:03 - 2015-06-07 22:03 - 01332344 _____ (QIHU 360 SOFTWARE CO. LIMITED) C:\Users\manuel\Downloads\360TS_Setup_Mini.exe
2015-06-07 14:43 - 2015-06-07 14:44 - 00001990 _____ C:\Users\Public\Desktop\Acer Portal.lnk
2015-06-07 14:39 - 2015-06-07 14:39 - 00001929 _____ C:\Users\Public\Desktop\abDocs.lnk
2015-06-07 14:33 - 2015-06-07 14:33 - 00003640 _____ C:\Windows\System32\Tasks\Program Manager
2015-06-07 14:30 - 2015-06-07 22:21 - 00000000 ____D C:\Program Files (x86)\Shop til Drop
2015-06-07 13:34 - 2015-06-07 23:59 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2015-06-01 12:20 - 2015-06-21 12:15 - 00000024 _____ C:\Users\manuel\AppData\Roaming\appdataFr25.bin
2015-06-01 12:16 - 2015-04-30 22:35 - 00124112 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2015-06-01 12:16 - 2015-04-30 22:35 - 00102608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2015-05-28 22:02 - 2015-06-21 17:40 - 00000000 ____D C:\Program Files (x86)\LuckYoCoupon
2015-05-28 22:02 - 2015-06-07 23:59 - 00000000 ____D C:\Program Files (x86)\BietteoRPrioceChec
2015-05-28 22:01 - 2015-06-21 17:29 - 00000000 ____D C:\Program Files (x86)\ReOOyalShopperAApPP
2015-05-28 15:34 - 2015-05-28 15:34 - 00713300 _____ C:\Users\manuel\Downloads\david noel lm.htm
2015-05-28 15:34 - 2015-05-28 15:34 - 00000000 ____D C:\Users\manuel\Downloads\david noel lm_fichiers
2015-05-28 15:26 - 2015-04-21 17:49 - 00720384 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2015-05-28 15:25 - 2015-04-21 18:13 - 00107520 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2015-05-28 15:25 - 2015-04-21 17:28 - 00230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2015-05-28 15:23 - 2015-05-01 01:05 - 00429568 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2015-05-28 15:23 - 2015-05-01 00:48 - 00358912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2015-05-28 15:23 - 2015-04-10 03:00 - 01996800 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2015-05-28 15:23 - 2015-04-10 02:50 - 01387008 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2015-05-28 15:23 - 2015-04-10 02:26 - 01560576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2015-05-28 15:23 - 2015-04-09 00:55 - 00410128 _____ (Microsoft Corporation) C:\Windows\system32\services.exe
2015-05-28 15:23 - 2015-03-30 07:47 - 00561928 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2015-05-28 15:23 - 2015-03-27 05:27 - 00445440 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2015-05-28 15:23 - 2015-03-27 04:50 - 00324096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll
2015-05-28 15:23 - 2015-03-27 04:48 - 01441792 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2015-05-28 15:04 - 2015-05-28 15:04 - 00001027 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera.lnk
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2015-06-21 17:38 - 2015-04-26 15:14 - 01805218 _____ C:\Windows\WindowsUpdate.log
2015-06-21 17:36 - 2014-10-04 22:30 - 00003596 _____ C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-109147421-2626192411-2511064847-1001
2015-06-21 17:24 - 2015-03-15 11:49 - 00000000 ____D C:\Program Files (x86)\EExtraShopper
2015-06-21 17:16 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\AppReadiness
2015-06-21 17:12 - 2014-10-26 12:18 - 00000000 ____D C:\Program Files (x86)\IObit
2015-06-21 17:11 - 2014-10-26 12:19 - 00000000 ____D C:\ProgramData\IObit
2015-06-21 17:00 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\system32\sru
2015-06-21 16:50 - 2014-11-25 00:54 - 00000000 ____D C:\Users\manuel\AppData\Roaming\uTorrent
2015-06-21 16:43 - 2014-11-17 16:15 - 00000294 _____ C:\Windows\Tasks\Uninstaller_SkipUac_manuel.job
2015-06-21 16:42 - 2015-01-01 03:41 - 00001002 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-06-21 16:23 - 2015-01-31 05:49 - 00000000 ____D C:\ProgramData\10001431793915032373
2015-06-21 15:55 - 2014-10-05 14:23 - 00000000 ____D C:\Program Files (x86)\Google
2015-06-21 15:40 - 2014-11-25 19:31 - 00000000 __SHD C:\Users\manuel\AppData\Local\EmieBrowserModeList
2015-06-21 15:40 - 2014-10-09 17:31 - 00000000 __SHD C:\Users\manuel\AppData\Local\EmieUserList
2015-06-21 15:40 - 2014-10-09 17:31 - 00000000 __SHD C:\Users\manuel\AppData\Local\EmieSiteList
2015-06-21 15:10 - 2014-10-18 03:05 - 00000946 _____ C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-109147421-2626192411-2511064847-1001UA.job
2015-06-21 13:55 - 2015-04-12 23:13 - 00000360 _____ C:\Windows\Tasks\PC SpeedUp Service Deactivator.job
2015-06-21 12:40 - 2015-04-12 23:13 - 00000000 ____D C:\Program Files (x86)\Accelerer PC
2015-06-21 12:37 - 2014-10-04 22:29 - 00000000 __RDO C:\Users\manuel\SkyDrive
2015-06-21 12:36 - 2013-08-22 16:45 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2015-06-21 12:35 - 2014-10-26 16:20 - 82259968 _____ C:\Windows\system32\config\SOFTWARE.iodefrag.bak
2015-06-21 12:35 - 2014-10-26 16:20 - 00323584 _____ C:\Windows\system32\config\DEFAULT.iodefrag.bak
2015-06-21 12:35 - 2014-10-26 16:20 - 00028672 _____ C:\Windows\system32\config\SAM.iodefrag.bak
2015-06-21 12:35 - 2014-10-26 16:20 - 00020480 _____ C:\Windows\system32\config\SECURITY.iodefrag.bak
2015-06-21 12:35 - 2014-10-04 22:23 - 00000000 ____D C:\Users\manuel
2015-06-21 12:33 - 2014-10-28 03:49 - 00000258 _____ C:\Windows\Tasks\ASC7_SkipUac_manuel.job
2015-06-21 12:24 - 2014-10-22 20:52 - 00000000 ____D C:\Users\manuel\AppData\Roaming\Skype
2015-06-21 12:17 - 2014-10-04 22:32 - 00003932 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{13C61869-9640-4D10-A228-C24C27251C1E}
2015-06-21 12:14 - 2014-10-28 03:49 - 00002225 _____ C:\Users\Public\Desktop\Advanced SystemCare 7.lnk
2015-06-19 23:12 - 2014-11-08 18:24 - 00000000 ____D C:\Users\manuel\AppData\Roaming\vlc
2015-06-19 19:23 - 2014-03-21 12:40 - 00812350 _____ C:\Windows\system32\perfh00C.dat
2015-06-19 19:23 - 2014-03-21 12:40 - 00159412 _____ C:\Windows\system32\perfc00C.dat
2015-06-19 19:23 - 2014-01-15 07:19 - 01824010 _____ C:\Windows\system32\PerfStringBackup.INI
2015-06-19 17:02 - 2014-11-30 13:48 - 00000000 ____D C:\Users\manuel\AppData\Local\PokerStars.BE
2015-06-19 03:10 - 2014-10-18 03:05 - 00000924 _____ C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-109147421-2626192411-2511064847-1001Core.job
2015-06-18 22:29 - 2015-02-27 15:31 - 00000000 ____D C:\Users\manuel\Downloads\X BOYSNOIZE RECORDS
2015-06-18 20:42 - 2015-01-01 03:41 - 00003890 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2015-06-16 18:34 - 2014-11-18 14:23 - 00000000 ____D C:\Users\manuel\AppData\Local\Adobe
2015-06-16 03:53 - 2013-08-22 15:25 - 00262144 ___SH C:\Windows\system32\config\BBI
2015-06-16 02:43 - 2014-10-04 23:52 - 00000000 ____D C:\Users\manuel\AppData\Local\CrashDumps
2015-06-14 13:40 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\rescache
2015-06-11 13:24 - 2015-03-24 15:05 - 00000000 ____D C:\Program Files (x86)\Application Updater
2015-06-11 13:06 - 2014-10-22 20:51 - 00000000 ____D C:\ProgramData\Skype
2015-06-11 12:57 - 2014-10-05 12:42 - 00000000 ____D C:\Windows\system32\MRT
2015-06-11 12:57 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\PolicyDefinitions
2015-06-11 12:55 - 2014-10-05 12:42 - 140135120 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2015-06-11 12:55 - 2013-08-22 17:20 - 00000000 ____D C:\Windows\CbsTemp
2015-06-11 12:48 - 2015-02-04 11:06 - 00003096 _____ C:\Windows\System32\Tasks\ASC7_PerformanceMonitor
2015-06-11 12:37 - 2014-10-05 14:22 - 00000000 ____D C:\Users\manuel\AppData\Local\Deployment
2015-06-10 10:26 - 2015-04-12 23:16 - 00000000 ____D C:\Users\manuel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PriceFountain
2015-06-08 01:18 - 2015-03-04 12:07 - 00000000 ____D C:\Users\manuel\Downloads\[www.Cpasbien.pe] Dead.Snow.2.Red.vs.DEAD.2014.TRUEFRENCH.DVDRIP.XVid-LYS
2015-06-08 01:16 - 2015-03-13 13:32 - 00000000 ____D C:\Users\manuel\Downloads\R & B Collection 2011
2015-06-08 01:15 - 2015-03-13 13:34 - 00000000 ____D C:\Users\manuel\Downloads\Top 30 - US hiphop RnB 2009
2015-06-08 01:14 - 2015-03-13 13:23 - 00000000 ____D C:\Users\manuel\Downloads\Céline Dion - Loved Me Back To Life
2015-06-08 01:14 - 2015-02-28 10:19 - 00000000 ____D C:\Users\manuel\Downloads\[www.Cpasbien.pe] Celine Dion - Celine Une seule fois Live 2013 (2014) [320] {WEB}
2015-06-07 23:59 - 2015-04-24 10:47 - 00000000 ____D C:\Program Files (x86)\Ultimate Guitar Chord Finder Tuner
2015-06-07 23:59 - 2015-04-24 10:46 - 00000000 ____D C:\Program Files (x86)\SalesMagonuet
2015-06-07 23:59 - 2015-04-24 10:46 - 00000000 ____D C:\Program Files (x86)\QueenCOuponn
2015-06-07 23:59 - 2015-04-24 10:46 - 00000000 ____D C:\Program Files (x86)\QQueenCouupon
2015-06-07 23:59 - 2015-04-14 14:53 - 00000000 ____D C:\Users\manuel\AppData\Local\avaavaevy
2015-06-07 23:59 - 2015-04-12 23:16 - 00000000 ____D C:\Users\manuel\AppData\Local\PriceFountain
2015-06-07 23:59 - 2015-04-12 23:11 - 00000000 ____D C:\Program Files (x86)\HD4Good
2015-06-07 23:59 - 2015-04-12 23:11 - 00000000 ____D C:\Program Files (x86)\12f7359f-1691-40f5-b537-6032a24375b1
2015-06-07 23:59 - 2015-04-12 23:10 - 00000000 ____D C:\Program Files (x86)\2f31d023-960e-4bf6-acd0-bedc8319978c
2015-06-07 23:59 - 2015-04-12 23:09 - 00000000 ____D C:\Program Files (x86)\SearchSnacks_1.10.0.5
2015-06-07 23:59 - 2015-04-12 23:09 - 00000000 ____D C:\Program Files (x86)\Cinema Video 1.8V12.04
2015-06-07 23:59 - 2015-02-24 23:30 - 00000000 ____D C:\Program Files (x86)\Video Bookmarks
2015-06-07 23:59 - 2014-11-08 19:57 - 00000000 ____D C:\ProgramData\ddc24aa9-6c5d-44d0-8c40-9bed83bb2ab7
2015-06-07 23:59 - 2014-01-15 07:46 - 00000000 ____D C:\Program Files (x86)\Acer
2015-06-07 22:54 - 2014-10-05 14:22 - 00000000 ____D C:\Users\manuel\AppData\Local\Apps\2.0
2015-06-07 22:35 - 2014-01-15 07:46 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acer
2015-06-07 22:33 - 2014-10-04 22:27 - 00000000 ____D C:\Users\manuel\AppData\Local\clear.fi
2015-06-07 22:24 - 2015-04-12 23:10 - 00000000 ____D C:\Users\manuel\AppData\Roaming\smileyswelove
2015-06-07 22:22 - 2014-01-15 07:08 - 00000000 ____D C:\Windows\Panther
2015-06-07 22:21 - 2015-04-12 23:11 - 00000000 ____D C:\ProgramData\{d90f6d9f-2329-266f-d90f-f6d9f232b67c}
2015-06-07 22:21 - 2015-04-04 02:30 - 00000000 ____D C:\Program Files (x86)\KinggCouipooN
2015-06-07 22:21 - 2015-04-04 02:29 - 00000000 ____D C:\Program Files (x86)\TicTaCoUpon
2015-06-07 22:21 - 2015-03-15 11:48 - 00000000 ____D C:\Program Files (x86)\SalesiCCheckerr
2015-06-07 22:21 - 2015-03-06 09:38 - 00000000 ____D C:\Program Files (x86)\TicTaCouponi
2015-06-07 22:21 - 2014-03-21 13:42 - 00000000 ____D C:\ProgramData\Temp
2015-06-07 22:21 - 2014-03-21 13:42 - 00000000 ____D C:\ProgramData\install_clap
2015-06-07 21:10 - 2015-04-13 00:10 - 00000004 _____ C:\Windows\SysWOW64\029B560A371F4E00AB32838EBC01B9E7
2015-06-07 15:42 - 2015-04-13 00:16 - 00000092 _____ C:\Users\manuel\AppData\Roaming\WB.CFG
2015-06-07 14:36 - 2014-01-15 06:55 - 00000000 ___HD C:\OEM
2015-06-07 14:30 - 2014-10-22 20:51 - 00000000 ___RD C:\Program Files (x86)\Skype
2015-06-07 12:36 - 2014-11-30 13:47 - 00000000 ____D C:\Program Files (x86)\PokerStars.BE
2015-06-07 12:32 - 2015-04-12 23:11 - 00000000 ____D C:\Program Files (x86)\Opera
2015-06-06 14:34 - 2015-01-29 16:34 - 00002860 _____ C:\Windows\System32\Tasks\Driver Booster SkipUAC (Système)
2015-06-06 14:30 - 2014-03-21 13:27 - 00000000 ____D C:\Windows\SysWOW64\RTCOM
2015-06-01 12:05 - 2013-08-22 21:11 - 00000000 ____D C:\Program Files\Windows Journal
2015-05-28 15:03 - 2015-01-28 19:12 - 00000020 _____ C:\Users\manuel\AppData\Roaming\appdataFr3.bin
==================== Files in the root of some directories =======
2015-03-03 00:18 - 2015-03-03 00:18 - 0000079 _____ () C:\Program Files (x86)\prefs.js
2015-06-01 12:20 - 2015-06-21 12:15 - 0000024 _____ () C:\Users\manuel\AppData\Roaming\appdataFr25.bin
2015-01-28 19:12 - 2015-05-28 15:03 - 0000020 _____ () C:\Users\manuel\AppData\Roaming\appdataFr3.bin
2015-04-13 00:16 - 2015-06-07 15:42 - 0000092 _____ () C:\Users\manuel\AppData\Roaming\WB.CFG
2014-03-21 13:27 - 2014-03-21 13:27 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
2014-11-21 11:09 - 2014-11-21 11:09 - 0000199 _____ () C:\ProgramData\Microsoft.SqlServer.Compact.351.32.bc
2014-11-05 04:55 - 2012-10-24 21:44 - 0656048 _____ (WildTangent, Inc.) C:\ProgramData\uninstall3354145.exe
Files to move or delete:
====================
C:\ProgramData\uninstall3354145.exe
Some files in TEMP:
====================
C:\Users\manuel\AppData\Local\Temp\avgnt.exe
C:\Users\manuel\AppData\Local\Temp\OnlineBackup.exe
==================== Bamital & volsnap Check =================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2015-06-18 10:39
==================== End of log ============================