cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:21-06-2015 01
Ran by Magnum (administrator) on MAGNUM-PC on 21-06-2015 22:18:14
Running from C:\Users\Magnum\Downloads
Loaded Profiles: Magnum (Available Profiles: Magnum)
Platform: Windows 10 Pro Insider Preview (X64) OS Language: Inglês (Estados Unidos)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(SUPERAntiSpyware.com) C:\Program Files\SUPERAntiSpyware\SASCore64.exe
() C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.6.306.7947\AdAwareService.exe
(VIA Technologies, Inc.) C:\Windows\System32\ViakaraokeSrv.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(Microsoft Corporation) C:\Windows\System32\sihost.exe
(Microsoft Corporation) C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe
(Microsoft Corporation) C:\Windows\WinStore\WSHost.exe
() C:\Program Files\WindowsApps\Microsoft.Cortana_1.4.4.120_x64__8wekyb3d8bbwe\searchui.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
() C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.6.306.7947\AdAwareTray.exe
(SUPERAntiSpyware) C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
(Microsoft Corporation) C:\Windows\System32\fontdrvhost.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.Cortana_1.4.4.120_x64__8wekyb3d8bbwe\remindersserver.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.Cortana_1.4.4.120_x64__8wekyb3d8bbwe\actionuriserver.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [WindowsDefender] => C:\Program Files\Windows Defender\MSASCui.exe [1312768 2015-04-25] (Microsoft Corporation)
HKLM\...\Run: [] => [X]
HKLM\...\Run: [AdAwareTray] => C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.6.306.7947\AdAwareTray.exe [9566192 2015-03-10] ()
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Java\jre6\bin\jusched.exe [149280 2015-03-11] (Sun Microsystems, Inc.)
HKLM-x32\...\Run: [mbot_br_737] => [X]
Winlogon\Notify\igfxcui: C:\WINDOWS\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-19\...\Run: [OneDriveSetup] => C:\Windows\SysWOW64\OneDriveSetup.exe [7210656 2015-04-25] (Microsoft Corporation)
HKU\S-1-5-19\...\Winlogon: [Userinit] [[%%INSTALLTIME%%]]
HKU\S-1-5-19\...\Winlogon: [Shell] [[%%INSTALLTIME%%]] <==== ATTENTION
HKU\S-1-5-20\...\Run: [OneDriveSetup] => C:\Windows\SysWOW64\OneDriveSetup.exe [7210656 2015-04-25] (Microsoft Corporation)
HKU\S-1-5-20\...\Winlogon: [Userinit] [[%%INSTALLTIME%%]]
HKU\S-1-5-20\...\Winlogon: [Shell] [[%%INSTALLTIME%%]] <==== ATTENTION
HKU\S-1-5-21-944825172-3318642248-2248787145-1000\...\Run: [Welcome Center] => C:\Windows\system32\rundll32.exe C:\Windows\system32\OobeFldr.dll,ShowWelcomeCenter LaunchedBy_StartMenuShortcut
HKU\S-1-5-21-944825172-3318642248-2248787145-1000\...\Run: [OneDrive] => C:\Users\Magnum\AppData\Local\Microsoft\OneDrive\OneDrive.exe [382664 2015-05-21] (Microsoft Corporation)
HKU\S-1-5-21-944825172-3318642248-2248787145-1000\...\Run: [SUPERAntiSpyware] => C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [7799576 2015-05-15] (SUPERAntiSpyware)
HKU\S-1-5-21-944825172-3318642248-2248787145-1000\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
HKU\S-1-5-21-944825172-3318642248-2248787145-1000\...\Policies\Explorer: [LinkResolveIgnoreLinkInfo] 1
HKU\S-1-5-21-944825172-3318642248-2248787145-1000\...\Policies\Explorer: [NoResolveSearch] 1
HKU\S-1-5-21-944825172-3318642248-2248787145-1000\...\Policies\Explorer: [NoInternetOpenWith] 1
HKU\S-1-5-21-944825172-3318642248-2248787145-1000\...\Policies\Explorer: [NoSMBalloonTip] 1
HKU\S-1-5-21-944825172-3318642248-2248787145-1000\...\Winlogon: [Userinit] C:\WINDOWS\system32\userinit.exe, [30208 2015-04-25] (Microsoft Corporation)
HKU\S-1-5-21-944825172-3318642248-2248787145-1000\...\Winlogon: [Shell] C:\WINDOWS\Explorer.exe [3755624 2015-04-25] (Microsoft Corporation) <==== ATTENTION
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Users\Magnum\AppData\Local\Microsoft\OneDrive\17.3.5860.0512\amd64\FileSyncShell64.dll [2015-05-21] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Users\Magnum\AppData\Local\Microsoft\OneDrive\17.3.5860.0512\amd64\FileSyncShell64.dll [2015-05-21] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Users\Magnum\AppData\Local\Microsoft\OneDrive\17.3.5860.0512\amd64\FileSyncShell64.dll [2015-05-21] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Users\Magnum\AppData\Local\Microsoft\OneDrive\17.3.5860.0512\amd64\FileSyncShell64.dll [2015-05-21] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Users\Magnum\AppData\Local\Microsoft\OneDrive\17.3.5860.0512\amd64\FileSyncShell64.dll [2015-05-21] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [BaiduAntivirusIconLock] -> {0A93904A-BB1E-4a0c-9753-B57B9AE272CC} => No File
ShellIconOverlayIdentifiers: [ExplorerEx] -> {E056AFDD-03E9-4D73-8D33-8FCCBCA73438} => C:\Users\Magnum\AppData\Roaming\Mactowebise\explorerEx64.dll No File
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Users\Magnum\AppData\Local\Microsoft\OneDrive\17.3.5860.0512\FileSyncShell.dll [2015-05-21] (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Users\Magnum\AppData\Local\Microsoft\OneDrive\17.3.5860.0512\FileSyncShell.dll [2015-05-21] (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Users\Magnum\AppData\Local\Microsoft\OneDrive\17.3.5860.0512\FileSyncShell.dll [2015-05-21] (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Users\Magnum\AppData\Local\Microsoft\OneDrive\17.3.5860.0512\FileSyncShell.dll [2015-05-21] (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Users\Magnum\AppData\Local\Microsoft\OneDrive\17.3.5860.0512\FileSyncShell.dll [2015-05-21] (Microsoft Corporation)
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
HKU\S-1-5-21-944825172-3318642248-2248787145-1000\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-944825172-3318642248-2248787145-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.com/pt-br/?ocid=iehp
SearchScopes: HKLM -> {E921F400-D383-4B1B-9DE6-FCFCACFC1173} URL =
SearchScopes: HKLM-x32 -> {E921F400-D383-4B1B-9DE6-FCFCACFC1173} URL =
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: SAverPro -> {32A0FDA0-C42F-465D-989D-04048F5E43A9} -> C:\Program Files (x86)\SAverPro\zqGf6xQC34bYGg.x64.dll [2015-06-18] ()
BHO: suavernete -> {A959F93A-FA37-4C50-A2B4-5F3D738D3854} -> C:\Program Files (x86)\suavernete\VOqCIXZfurLT0Z.x64.dll [2015-06-15] ()
BHO: SaVerPro -> {C610B6FD-C2E9-4A73-ABB6-6E245F2CD3CF} -> C:\Program Files (x86)\SaVerPro\FZtRJyQd6KgWno.x64.dll [2015-06-18] ()
BHO-x32: SAverPro -> {32A0FDA0-C42F-465D-989D-04048F5E43A9} -> C:\Program Files (x86)\SAverPro\zqGf6xQC34bYGg.dll No File
BHO-x32: suavernete -> {A959F93A-FA37-4C50-A2B4-5F3D738D3854} -> C:\Program Files (x86)\suavernete\VOqCIXZfurLT0Z.dll No File
BHO-x32: SaVerPro -> {C610B6FD-C2E9-4A73-ABB6-6E245F2CD3CF} -> C:\Program Files (x86)\SaVerPro\FZtRJyQd6KgWno.dll No File
Tcpip\..\Interfaces\{69793D51-80C4-4CDD-9737-BBCCA4B3F302}: [NameServer] 201.10.128.3,201.10.120.2

FireFox:
========
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_11_1_102.dll [2012-02-15] ()
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll [2012-02-15] ()
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2011-07-19] (Foxit Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-05-16] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-05-16] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.2.0 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-02-27] (VideoLAN)

Chrome:
=======
CHR dev: Chrome dev build detected! <======= ATTENTION
CHR Profile: C:\Users\Magnum\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (YouTube) - C:\Users\Magnum\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-05-11]
CHR Extension: (Google Search) - C:\Users\Magnum\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-05-11]
CHR Extension: (Avira Browser Safety) - C:\Users\Magnum\AppData\Local\Google\Chrome\User Data\Default\Extensions\flliilndjeohchalpbbcdekjklbdgfkk [2015-06-21]
CHR Extension: (Be Limitless) - C:\Users\Magnum\AppData\Local\Google\Chrome\User Data\Default\Extensions\jdpnljppdhjpafeaokemhcggofohekbp [2015-06-18]
CHR Extension: (Chrome Hotword Shared Module) - C:\Users\Magnum\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-05-11]
CHR Extension: (Google Wallet) - C:\Users\Magnum\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-05-11]
CHR Extension: (Google Chrome to Phone Extension) - C:\Users\Magnum\AppData\Local\Google\Chrome\User Data\Default\Extensions\oadboiipflhobonjjffjbfekfjcgkhco [2015-05-11]
CHR Extension: (Gmail) - C:\Users\Magnum\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-05-11]
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - https://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - https://clients2.google.com/service/update2/crx

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 !SASCORE; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [172344 2014-07-22] (SUPERAntiSpyware.com)
S3 AJRouter; C:\Windows\System32\AJRouter.dll [19968 2015-04-25] (Microsoft Corporation)
S3 BthHFSrv; C:\Windows\System32\BthHFSrv.dll [325120 2015-04-25] (Microsoft Corporation)
S3 CDPSvc; C:\Windows\System32\CDPSvc.dll [51712 2015-04-25] (Microsoft Corporation)
S3 ClipSVC; C:\Windows\System32\ClipSVC.dll [539136 2015-04-25] (Microsoft Corporation)
R2 CoreUIRegistrar; C:\Windows\system32\coremessaging.dll [709240 2015-04-25] (Microsoft Corporation)
R2 CoreUIRegistrar; C:\Windows\SysWOW64\coremessaging.dll [476672 2015-04-25] (Microsoft Corporation)
S3 DcpSvc; C:\Windows\system32\dcpsvc.dll [195584 2015-04-25] (Microsoft Corporation)
S3 DevQueryBroker; C:\Windows\system32\DevQueryBroker.dll [32256 2015-04-25] (Microsoft Corporation)
S3 diagnosticshub.standardcollector.service; C:\Windows\system32\DiagnosticsHub.StandardCollector.Service.exe [26624 2015-04-25] (Microsoft Corporation)
S3 DmEnrollmentSvc; C:\Windows\system32\Windows.Internal.Management.dll [269312 2015-04-25] (Microsoft Corporation)
S2 dmwappushservice; C:\Windows\system32\dmwappushsvc.dll [111616 2015-04-25] (Microsoft Corporation)
S2 DoSvc; C:\Windows\system32\svchost.exe [39992 2015-04-25] (Microsoft Corporation)
S2 DoSvc; C:\Windows\SysWOW64\svchost.exe [34800 2015-04-25] (Microsoft Corporation)
S3 DsSvc; C:\Windows\System32\DsSvc.dll [140288 2015-04-25] (Microsoft Corporation)
S3 EntAppSvc; C:\Windows\system32\EnterpriseAppMgmtSvc.dll [248832 2015-05-06] (Microsoft Corporation)
S3 icssvc; C:\Windows\System32\tetheringservice.dll [114176 2015-04-25] (Microsoft Corporation)
R2 LavasoftAdAwareService11; C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.6.306.7947\AdAwareService.exe [720760 2015-03-10] ()
S3 lfsvc; C:\Windows\System32\lfsvc.dll [23040 2015-04-25] (Microsoft Corporation)
S3 lfsvc; C:\Windows\SysWOW64\lfsvc.dll [18944 2015-04-25] (Microsoft Corporation)
S2 MapsBroker; C:\Windows\System32\moshost.dll [159232 2015-04-25] (Microsoft Corporation)
S3 NetSetupSvc; C:\Windows\System32\NetSetupSvc.dll [333824 2015-04-25] (Microsoft Corporation)
S3 NgcCtnrSvc; C:\Windows\System32\NgcCtnrSvc.dll [236544 2015-04-25] (Microsoft Corporation)
S3 NgcSvc; C:\Windows\system32\ngcsvc.dll [421376 2015-04-25] (Microsoft Corporation)
S3 PhoneSvc; C:\Windows\System32\PhoneService.dll [646656 2015-04-25] (Microsoft Corporation)
S3 RetailDemo; C:\Windows\system32\RetailDemoService.dll [709120 2015-04-25] (Microsoft Corporation)
S3 SensorDataService; C:\Windows\System32\SensorDataService.exe [918528 2015-04-25] ()
S3 SensorService; C:\Windows\system32\SensorService.dll [162304 2015-04-25] (Microsoft Corporation)
S3 SmsRouter; C:\Windows\system32\SmsRouterSvc.dll [594944 2015-04-25] (Microsoft Corporation)
S3 StateRepository; C:\Windows\system32\windows.staterepository.dll [2626560 2015-04-25] (Microsoft Corporation)
S3 StateRepository; C:\Windows\SysWOW64\windows.staterepository.dll [1865728 2015-04-25] (Microsoft Corporation)
R3 tiledatamodelsvc; C:\Windows\system32\tileobjserver.dll [446464 2015-04-25] (Microsoft Corporation)
R2 UserManager; C:\Windows\System32\usermgr.dll [631808 2015-04-25] (Microsoft Corporation)
S3 UsoSvc; C:\Windows\system32\usocore.dll [316928 2015-04-25] (Microsoft Corporation)
R2 VIAKaraokeService; C:\Windows\system32\viakaraokesrv.exe [27768 2015-03-21] (VIA Technologies, Inc.)
S3 vmicvmsession; C:\Windows\System32\ICSvc.dll [450048 2015-04-25] (Microsoft Corporation)
S3 WalletSvc; C:\Windows\system32\WalletService.dll [482304 2015-04-25] (Microsoft Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [352880 2015-04-25] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [16728 2015-04-25] (Microsoft Corporation)
S3 WpnService; C:\Windows\system32\WpnService.dll [48640 2015-04-25] (Microsoft Corporation)
S3 XblAuthManager; C:\Windows\System32\XblAuthManager.dll [705024 2015-04-25] (Microsoft Corporation)
S3 XblGameSave; C:\Windows\System32\XblGameSave.dll [1107968 2015-04-25] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R1 asfilterdrv; C:\Windows\System32\drivers\asfilterdrv.sys [65336 2015-02-25] (Windows (R) Win 7 DDK provider)
R3 avc3; C:\Windows\System32\DRIVERS\avc3.sys [727592 2015-01-06] (BitDefender)
R3 avchv; C:\Windows\system32\DRIVERS\avchv.sys [261496 2015-01-06] (BitDefender)
R3 avckf; C:\Windows\System32\DRIVERS\avckf.sys [601360 2015-01-06] (BitDefender)
R1 BdfNdisf; C:\Program Files\Lavasoft\Ad-Aware Antivirus\Firewall Engine\1.6.0.0\Drivers\bdfndisf6.sys [97816 2015-01-06] (BitDefender LLC)
R1 bdfwfpf; C:\Program Files\Lavasoft\Ad-Aware Antivirus\Firewall Engine\1.6.0.0\Drivers\bdfwfpf.sys [107080 2015-01-06] (BitDefender LLC)
S3 buttonconverter; C:\Windows\System32\drivers\buttonconverter.sys [31232 2015-04-25] (Microsoft Corporation)
S3 CapImg; C:\Windows\System32\drivers\capimg.sys [102912 2015-04-25] (Microsoft Corporation)
S4 cnghwassist; C:\Windows\System32\DRIVERS\cnghwassist.sys [38888 2015-04-25] (Microsoft Corporation)
R3 CompositeBus; C:\Windows\System32\DriverStore\FileRepository\compositebus.inf_amd64_b1983a736b1fed34\CompositeBus.sys [39424 2015-04-25] (Microsoft Corporation)
S0 ebdrv; C:\Windows\System32\drivers\evbda.sys [3437032 2015-04-25] (QLogic Corporation)
S3 fcvsc; C:\Windows\System32\drivers\fcvsc.sys [30720 2015-04-25] (Microsoft Corporation)
R1 FileCrypt; C:\Windows\System32\drivers\filecrypt.sys [83456 2015-05-06] (Microsoft Corporation)
S3 genericusbfn; C:\Windows\System32\drivers\genericusbfnclass.sys [20480 2015-04-25] (Microsoft Corporation)
R3 gzflt; C:\Program Files\Lavasoft\Ad-Aware Antivirus\Antimalware Engine\3.0.98.0\gzflt.sys [155912 2015-01-22] (BitDefender LLC)
S3 hidinterrupt; C:\Windows\System32\drivers\hidinterrupt.sys [48104 2015-04-25] (Microsoft Corporation)
S3 ibbus; C:\Windows\System32\drivers\ibbus.sys [424936 2015-04-25] (Mellanox)
S3 IoQos; C:\Windows\System32\drivers\ioqos.sys [27648 2015-04-25] (Microsoft Corporation)
S0 LSI_SAS2i; C:\Windows\System32\drivers\lsi_sas2i.sys [103912 2015-04-25] (LSI Corporation)
S0 LSI_SAS3i; C:\Windows\System32\drivers\lsi_sas3i.sys [90600 2015-04-25] (LSI Corporation)
S0 megasas; C:\Windows\System32\drivers\megasas.sys [59880 2015-04-25] (Avago Technologies)
R2 mirahid; C:\Windows\System32\drivers\mirahid.sys [35840 2015-04-25] (Microsoft Corporation)
S3 mlx4_bus; C:\Windows\System32\drivers\mlx4_bus.sys [705512 2015-04-25] (Mellanox)
R2 MMCSS; C:\Windows\system32\drivers\mmcss.sys [38400 2015-04-25] (Microsoft Corporation)
S3 ndfltr; C:\Windows\System32\drivers\ndfltr.sys [76264 2015-04-25] (Mellanox)
U5 NdisCap; C:\Windows\System32\Drivers\NdisCap.sys [49664 2015-04-25] (Microsoft Corporation)
U5 NdisWan; C:\Windows\System32\Drivers\NdisWan.sys [187904 2015-04-25] (Microsoft Corporation)
S3 NetAdapterCx; C:\Windows\System32\drivers\NetAdapterCx.sys [66560 2015-04-25] ()
S3 netvsc; C:\Windows\System32\drivers\netvsc.sys [94208 2015-04-25] (Microsoft Corporation)
S2 OneSyncSvc; No ImagePath
R2 OneSyncSvc_Session1; No ImagePath
U2 OneSyncSvc_Session3; No ImagePath
S0 percsas2i; C:\Windows\System32\drivers\percsas2i.sys [58344 2015-04-25] (LSI Corporation)
S0 percsas3i; C:\Windows\System32\drivers\percsas3i.sys [58856 2015-04-25] (Avago Technologies)
S3 PimIndexMaintenanceSvc; No ImagePath
S3 PimIndexMaintenanceSvc_Session1; No ImagePath
U3 PimIndexMaintenanceSvc_Session3; No ImagePath
S3 ReFSv1; C:\Windows\System32\Drivers\ReFSv1.sys [933864 2015-04-25] (Microsoft Corporation)
R1 SASDIFSV; C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [14928 2011-07-22] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
R1 SASKUTIL; C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [12368 2011-07-12] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
R2 storqosflt; C:\Windows\System32\drivers\storqosflt.sys [61440 2015-04-25] (Microsoft Corporation)
S0 storufs; C:\Windows\System32\drivers\storufs.sys [39912 2015-04-25] (Microsoft Corporation)
R3 swenum; C:\Windows\System32\DriverStore\FileRepository\swenum.inf_amd64_c3e4290174519138\swenum.sys [17384 2015-04-25] (Microsoft Corporation)
S3 Trufos; C:\Windows\System32\DRIVERS\Trufos.sys [452040 2015-01-22] (BitDefender S.R.L.)
S3 UdeCx; C:\Windows\System32\drivers\udecx.sys [43008 2015-04-25] ()
S3 Ufx01000; C:\Windows\System32\drivers\ufx01000.sys [239592 2015-04-25] (Microsoft Corporation)
S3 UfxChipidea; C:\Windows\System32\drivers\UfxChipidea.sys [89576 2015-04-25] (Microsoft Corporation)
S3 ufxsynopsys; C:\Windows\System32\drivers\ufxsynopsys.sys [123368 2015-04-25] (Microsoft Corporation)
S3 UnistoreSvc; No ImagePath
S3 UnistoreSvc_Session1; No ImagePath
U3 UnistoreSvc_Session3; No ImagePath
S3 UrsChipidea; C:\Windows\System32\drivers\urschipidea.sys [19456 2015-04-25] (Microsoft Corporation)
S3 UrsCx01000; C:\Windows\System32\drivers\urscx01000.sys [52200 2015-04-25] (Microsoft Corporation)
S3 UrsSynopsys; C:\Windows\System32\drivers\urssynopsys.sys [18432 2015-04-25] (Microsoft Corporation)
R3 USB_Ethernet_Adaptor; C:\Windows\System32\drivers\USB_Ethernet_Adaptor.sys [21504 2013-01-22] (Corechip Semiconductor, Inc. Co Ltd.)
S3 UserDataSvc; No ImagePath
S3 UserDataSvc_Session1; No ImagePath
U3 UserDataSvc_Session3; No ImagePath
S3 vhf; C:\Windows\System32\drivers\vhf.sys [28672 2015-04-25] (Microsoft Corporation)
S3 wdiwifi; C:\Windows\System32\DRIVERS\wdiwifi.sys [683520 2015-04-25] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [117224 2015-04-25] (Microsoft Corporation)
R0 WindowsTrustedRT; C:\Windows\System32\drivers\WindowsTrustedRT.sys [105504 2015-04-25] (Microsoft Corporation)
R0 WindowsTrustedRTProxy; C:\Windows\System32\drivers\WindowsTrustedRTProxy.sys [16928 2015-04-25] (Microsoft Corporation)
S3 WinMad; C:\Windows\System32\drivers\winmad.sys [27112 2015-04-25] (Mellanox)
S3 WinVerbs; C:\Windows\System32\drivers\winverbs.sys [59368 2015-04-25] (Mellanox)
S3 xinputhid; C:\Windows\System32\drivers\xinputhid.sys [25600 2015-04-25] (Microsoft Corporation)
U3 idsvc; No ImagePath

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

NETSVC: dosvc -> No ServiceDLL Path.
NETSVC: DcpSvc -> C:\Windows\system32\dcpsvc.dll (Microsoft Corporation)
NETSVC: NetSetupSvc -> C:\Windows\System32\NetSetupSvc.dll (Microsoft Corporation)
NETSVC: RetailDemo -> C:\Windows\system32\RetailDemoService.dll (Microsoft Corporation)
NETSVC: UsoSvc -> C:\Windows\system32\usocore.dll (Microsoft Corporation)
NETSVC: dmwappushservice -> C:\Windows\system32\dmwappushsvc.dll (Microsoft Corporation)
NETSVC: WalletSvc -> C:\Windows\system32\WalletService.dll (Microsoft Corporation)
NETSVC: UserManager -> C:\Windows\System32\usermgr.dll (Microsoft Corporation)
NETSVC: XblGameSave -> C:\Windows\System32\XblGameSave.dll (Microsoft Corporation)
NETSVC: XblAuthManager -> C:\Windows\System32\XblAuthManager.dll (Microsoft Corporation)
NETSVC: DmEnrollmentSvc -> C:\Windows\system32\Windows.Internal.Management.dll (Microsoft Corporation)
NETSVCx32: NetSetupSvc -> C:\Windows\SysWOW64\NetSetupSvc.dll ==> No File
NETSVCx32: UserManager -> C:\Windows\SysWOW64\usermgr.dll ==> No File

==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-06-21 22:18 - 2015-06-21 22:18 - 00024194 _____ C:\Users\Magnum\Downloads\FRST.txt
2015-06-21 22:17 - 2015-06-21 22:18 - 00000000 ____D C:\FRST
2015-06-21 22:17 - 2015-06-21 22:16 - 02109952 _____ (Farbar) C:\Users\Magnum\Downloads\FRST64.exe
2015-06-21 22:14 - 2015-06-21 22:16 - 02109952 _____ (Farbar) C:\Users\Magnum\Desktop\FRST64.exe
2015-06-21 22:00 - 2015-06-21 22:00 - 00016148 _____ C:\WINDOWS\system32\MAGNUM-PC_Magnum_HistoryPrediction.bin
2015-06-21 21:53 - 2015-06-21 21:53 - 00593693 _____ C:\Users\Magnum\Desktop\Autoruns (1).zip
2015-06-21 19:37 - 2015-06-21 19:37 - 00000000 ____D C:\ProgramData\BitDefender
2015-06-21 18:32 - 2015-06-21 18:32 - 00000000 ____D C:\Program Files (x86)\Lavasoft
2015-06-21 18:30 - 2015-01-06 12:47 - 01061776 _____ (BitDefender S.R.L.) C:\WINDOWS\system32\bdsmtpp.dll
2015-06-21 18:30 - 2015-01-06 12:47 - 00209984 _____ (BitDefender) C:\WINDOWS\system32\BdFirewallSDK.dll
2015-06-21 18:30 - 2015-01-06 12:47 - 00195016 _____ (BitDefender) C:\WINDOWS\system32\httproxy.dll
2015-06-21 18:30 - 2015-01-06 12:47 - 00156936 _____ C:\WINDOWS\system32\bdfwcore.dll
2015-06-21 18:30 - 2015-01-06 12:47 - 00155912 _____ (BitDefender S.R.L.) C:\WINDOWS\system32\bdpop3p.dll
2015-06-21 18:30 - 2015-01-06 12:47 - 00122928 _____ (BitDefender) C:\WINDOWS\system32\OEMbdpredir.dll
2015-06-21 18:30 - 2015-01-06 12:47 - 00096160 _____ (BitDefender) C:\WINDOWS\system32\bdpredir.dll
2015-06-21 18:30 - 2015-01-06 12:37 - 02084072 _____ (Bitdefender) C:\WINDOWS\system32\bdnc.dll
2015-06-21 18:29 - 2015-06-21 22:00 - 00002402 _____ C:\Users\Public\Desktop\Ad-Aware Antivirus.lnk
2015-06-21 18:29 - 2015-06-21 18:29 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lavasoft
2015-06-21 18:26 - 2015-06-21 18:26 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_avchv_01009.Wdf
2015-06-21 18:23 - 2015-06-21 18:23 - 00000000 ____D C:\Program Files\Lavasoft
2015-06-21 18:21 - 2015-06-21 18:31 - 00000000 ____D C:\Users\Magnum\AppData\Roaming\Lavasoft
2015-06-21 18:21 - 2015-06-21 18:21 - 00000000 ____D C:\Program Files\Common Files\Lavasoft
2015-06-21 18:18 - 2015-06-21 18:31 - 00000000 ____D C:\ProgramData\Lavasoft
2015-06-21 18:17 - 2015-06-21 18:17 - 02057008 _____ C:\Users\Magnum\Desktop\Adaware_Installer (1).exe
2015-06-21 18:15 - 2015-06-21 18:17 - 02057008 _____ C:\Users\Magnum\Desktop\Adaware_Installer.exe
2015-06-21 15:13 - 2015-06-21 18:16 - 00000000 ____D C:\ProgramData\Avira
2015-06-20 22:48 - 2015-06-20 22:49 - 00000000 ____D C:\WINDOWS\LastGood.Tmp
2015-06-20 22:48 - 2015-06-20 22:48 - 12814752 _____ (Intel Corporation) C:\WINDOWS\system32\igdumd64.dll
2015-06-20 22:48 - 2015-06-20 22:48 - 11223896 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdumd32.dll
2015-06-20 22:48 - 2015-06-20 22:48 - 03520000 _____ (Intel Corporation) C:\WINDOWS\system32\igfxcmjit64.dll
2015-06-20 22:48 - 2015-06-20 22:48 - 03129856 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfxcmjit32.dll
2015-06-20 22:48 - 2015-06-20 22:48 - 01067696 _____ (Intel Corporation) C:\WINDOWS\system32\igfxcmrt64.dll
2015-06-20 22:48 - 2015-06-20 22:48 - 00957472 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfxcmrt32.dll
2015-06-20 22:48 - 2015-06-20 22:48 - 00584192 _____ (Intel Corporation) C:\WINDOWS\system32\igfx11cmrt64.dll
2015-06-20 22:48 - 2015-06-20 22:48 - 00551424 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfx11cmrt32.dll
2015-06-20 22:48 - 2015-06-20 22:48 - 00544552 _____ (Intel Corporation) C:\WINDOWS\system32\iglhsip64.dll
2015-06-20 22:48 - 2015-06-20 22:48 - 00539312 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\iglhsip32.dll
2015-06-20 22:48 - 2015-06-20 22:48 - 00523184 _____ (Intel Corporation) C:\WINDOWS\system32\igfxsrvc.exe
2015-06-20 22:48 - 2015-06-20 22:48 - 00451584 _____ (Intel Corporation) C:\WINDOWS\system32\igfxdev.dll
2015-06-20 22:48 - 2015-06-20 22:48 - 00449024 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrell.lrc
2015-06-20 22:48 - 2015-06-20 22:48 - 00448512 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrfra.lrc
2015-06-20 22:48 - 2015-06-20 22:48 - 00448512 _____ (Intel Corporation) C:\WINDOWS\system32\igfxresn.lrc
2015-06-20 22:48 - 2015-06-20 22:48 - 00448000 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrrus.lrc
2015-06-20 22:48 - 2015-06-20 22:48 - 00448000 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrrom.lrc
2015-06-20 22:48 - 2015-06-20 22:48 - 00447488 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrsky.lrc
2015-06-20 22:48 - 2015-06-20 22:48 - 00447488 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrptg.lrc
2015-06-20 22:48 - 2015-06-20 22:48 - 00447488 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrplk.lrc
2015-06-20 22:48 - 2015-06-20 22:48 - 00447488 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrnld.lrc
2015-06-20 22:48 - 2015-06-20 22:48 - 00447488 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrita.lrc
2015-06-20 22:48 - 2015-06-20 22:48 - 00447488 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrhrv.lrc
2015-06-20 22:48 - 2015-06-20 22:48 - 00447488 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrdeu.lrc
2015-06-20 22:48 - 2015-06-20 22:48 - 00446976 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrhun.lrc
2015-06-20 22:48 - 2015-06-20 22:48 - 00446976 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrfin.lrc
2015-06-20 22:48 - 2015-06-20 22:48 - 00446976 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrcsy.lrc
2015-06-20 22:48 - 2015-06-20 22:48 - 00446464 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrtrk.lrc
2015-06-20 22:48 - 2015-06-20 22:48 - 00446464 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrsve.lrc
2015-06-20 22:48 - 2015-06-20 22:48 - 00446464 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrslv.lrc
2015-06-20 22:48 - 2015-06-20 22:48 - 00446464 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrnor.lrc
2015-06-20 22:48 - 2015-06-20 22:48 - 00445952 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrtha.lrc
2015-06-20 22:48 - 2015-06-20 22:48 - 00445952 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrdan.lrc
2015-06-20 22:48 - 2015-06-20 22:48 - 00444416 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrheb.lrc
2015-06-20 22:48 - 2015-06-20 22:48 - 00444416 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrara.lrc
2015-06-20 22:48 - 2015-06-20 22:48 - 00440832 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrjpn.lrc
2015-06-20 22:48 - 2015-06-20 22:48 - 00439808 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrkor.lrc
2015-06-20 22:48 - 2015-06-20 22:48 - 00437760 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrcht.lrc
2015-06-20 22:48 - 2015-06-20 22:48 - 00437248 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrchs.lrc
2015-06-20 22:48 - 2015-06-20 22:48 - 00418816 _____ (Intel Corporation) C:\WINDOWS\system32\igfxTMM.dll
2015-06-20 22:48 - 2015-06-20 22:48 - 00393216 _____ (Intel Corporation) C:\WINDOWS\system32\igfxpph.dll
2015-06-20 22:48 - 2015-06-20 22:48 - 00339456 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfxdv32.dll
2015-06-20 22:48 - 2015-06-20 22:48 - 00294912 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrenu.lrc
2015-06-20 22:48 - 2015-06-20 22:48 - 00290224 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\IntelCpHeciSvc.exe
2015-06-20 22:48 - 2015-06-20 22:48 - 00266152 _____ (Intel Corporation) C:\WINDOWS\system32\igfxext.exe
2015-06-20 22:48 - 2015-06-20 22:48 - 00231312 _____ (Intel Corporation) C:\WINDOWS\system32\iglhcp64.dll
2015-06-20 22:48 - 2015-06-20 22:48 - 00194880 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\iglhcp32.dll
2015-06-20 22:48 - 2015-06-20 22:48 - 00151040 _____ (Intel Corporation) C:\WINDOWS\system32\igfxdo.dll
2015-06-20 22:48 - 2015-06-20 22:48 - 00135680 _____ (Intel Corporation) C:\WINDOWS\system32\igfxcpl.cpl
2015-06-20 22:48 - 2015-06-20 22:48 - 00124928 _____ (Intel Corporation) C:\WINDOWS\system32\igfxCoIn_v4229.dll
2015-06-20 22:48 - 2015-06-20 22:48 - 00041288 _____ (Intel Corporation) C:\WINDOWS\system32\igfxexps.dll
2015-06-20 22:48 - 2015-06-20 22:48 - 00033792 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfxexps32.dll
2015-06-20 22:48 - 2015-06-20 22:48 - 00018432 _____ ( ) C:\WINDOWS\system32\IGFXDEVLib.dll
2015-06-20 22:48 - 2015-06-20 22:48 - 00017082 _____ C:\WINDOWS\system32\iglhxs64.vp
2015-06-20 22:47 - 2015-06-20 22:47 - 13037568 _____ (Intel Corporation) C:\WINDOWS\system32\ig4icd64.dll
2015-06-20 22:47 - 2015-06-20 22:47 - 11352688 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igd10umd32.dll
2015-06-20 22:47 - 2015-06-20 22:47 - 10820096 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\ig4icd32.dll
2015-06-20 22:47 - 2015-06-20 22:47 - 05916080 _____ (Intel Corporation) C:\WINDOWS\system32\GfxUI.exe
2015-06-20 22:47 - 2015-06-20 22:47 - 00197040 _____ (Intel Corporation) C:\WINDOWS\system32\difx64.exe
2015-06-20 22:47 - 2015-06-20 22:47 - 00183808 _____ (Intel Corporation) C:\WINDOWS\system32\gfxSrvc.dll
2015-06-20 22:47 - 2015-06-20 22:47 - 00110080 _____ C:\WINDOWS\system32\igdde64.dll
2015-06-20 22:47 - 2015-06-20 22:47 - 00090112 _____ C:\WINDOWS\SysWOW64\igdde32.dll
2015-06-18 23:42 - 2015-06-19 23:46 - 00000000 ____D C:\Program Files (x86)\SAverPrOu
2015-06-18 23:41 - 2015-06-21 20:58 - 00000000 ____D C:\Program Files (x86)\SaVerPro
2015-06-18 23:41 - 2015-06-19 23:45 - 00000000 ____D C:\Program Files (x86)\Be Limitless
2015-06-15 23:13 - 2015-06-21 20:58 - 00000000 ____D C:\Program Files (x86)\suavernete
2015-06-15 23:13 - 2015-06-19 23:46 - 00000000 ____D C:\Program Files (x86)\savvernet
2015-06-15 23:12 - 2015-06-19 23:46 - 00000000 ____D C:\Program Files (x86)\SEOquake
2015-06-15 23:12 - 2015-06-19 23:45 - 00000000 ____D C:\Program Files (x86)\saverinet
2015-06-15 23:11 - 2015-06-21 14:49 - 00000024 _____ C:\Users\Magnum\AppData\Roaming\appdataFr25.bin
2015-06-12 22:35 - 2015-06-12 22:35 - 00000000 ____D C:\Users\Magnum\AppData\Local\Publishers
2015-06-07 01:48 - 2015-06-07 01:48 - 00000000 ____D C:\Users\Magnum\AppData\Roaming\Foxit Software
2015-05-29 23:45 - 2015-05-21 07:04 - 00102608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2015-05-29 23:45 - 2015-05-21 01:45 - 00124112 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2015-05-28 23:03 - 2015-06-21 17:08 - 00000000 ____D C:\Program Files (x86)\RelayStasis
2015-05-27 23:57 - 2015-05-18 00:01 - 03456656 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2015-05-27 23:57 - 2015-05-17 22:51 - 00693248 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2015-05-27 23:57 - 2015-05-17 22:30 - 02778456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2015-05-27 23:57 - 2015-05-17 22:20 - 00421888 _____ (Microsoft Corporation) C:\WINDOWS\system32\html.iec
2015-05-27 23:57 - 2015-05-17 21:59 - 24580608 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2015-05-27 23:57 - 2015-05-17 21:50 - 12492288 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2015-05-27 23:57 - 2015-05-17 21:46 - 00821760 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2015-05-27 23:57 - 2015-05-17 21:46 - 00572928 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2015-05-27 23:57 - 2015-05-17 21:45 - 02678784 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2015-05-27 23:57 - 2015-05-17 21:45 - 01564672 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2015-05-27 23:57 - 2015-05-17 21:45 - 00215552 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2015-05-27 23:57 - 2015-05-17 21:45 - 00066048 _____ (Microsoft Corporation) C:\WINDOWS\system32\iesetup.dll
2015-05-27 23:57 - 2015-05-17 21:44 - 02755072 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2015-05-27 23:57 - 2015-05-17 21:44 - 02114048 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2015-05-27 23:57 - 2015-05-17 21:43 - 00052224 _____ (Microsoft Corporation) C:\WINDOWS\system32\jsproxy.dll
2015-05-27 23:57 - 2015-05-17 21:43 - 00033792 _____ (Microsoft Corporation) C:\WINDOWS\system32\iernonce.dll
2015-05-27 23:57 - 2015-05-17 21:43 - 00006656 _____ (Microsoft Corporation) C:\WINDOWS\system32\readingviewresources.dll
2015-05-27 23:57 - 2015-05-17 21:38 - 00526848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2015-05-27 23:57 - 2015-05-17 21:15 - 00343552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\html.iec
2015-05-27 23:57 - 2015-05-17 21:00 - 19622912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2015-05-27 23:57 - 2015-05-17 20:55 - 21875200 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2015-05-27 23:57 - 2015-05-17 20:49 - 00644608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2015-05-27 23:57 - 2015-05-17 20:49 - 00501760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2015-05-27 23:57 - 2015-05-17 20:48 - 02755072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2015-05-27 23:57 - 2015-05-17 20:48 - 02174464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2015-05-27 23:57 - 2015-05-17 20:48 - 02037248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2015-05-27 23:57 - 2015-05-17 20:48 - 01342976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2015-05-27 23:57 - 2015-05-17 20:48 - 00060928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iesetup.dll
2015-05-27 23:57 - 2015-05-17 20:47 - 00044544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jsproxy.dll
2015-05-27 23:57 - 2015-05-17 20:47 - 00029184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iernonce.dll
2015-05-27 23:57 - 2015-05-17 20:44 - 04791808 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2015-05-27 23:57 - 2015-05-17 20:40 - 00653824 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2015-05-27 23:57 - 2015-05-17 20:07 - 03595264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2015-05-27 23:57 - 2015-05-17 20:04 - 11318784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2015-05-27 23:57 - 2015-05-17 20:03 - 20603904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2015-05-27 23:57 - 2015-05-17 20:00 - 00287232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll
2015-05-25 23:20 - 2015-06-01 20:42 - 00000000 ____D C:\Program Files\SUPERAntiSpyware
2015-05-25 23:20 - 2015-05-25 23:20 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SUPERAntiSpyware
2015-05-25 23:17 - 2015-05-25 23:19 - 22029760 _____ (SUPERAntiSpyware) C:\Users\Magnum\Desktop\SUPERAntiSpywarePro.exe
2015-05-24 18:30 - 2015-06-21 18:26 - 00004411 _____ C:\WINDOWS\setupact.log
2015-05-24 18:30 - 2015-05-24 18:30 - 00000000 _____ C:\WINDOWS\setuperr.log
2015-05-23 00:15 - 2015-05-23 00:15 - 00546464 _____ C:\Users\Magnum\Desktop\Autoruns.zip

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-06-21 22:11 - 2015-05-05 23:28 - 00308978 _____ C:\WINDOWS\WindowsUpdate_AU_deprecated.log
2015-06-21 22:01 - 2015-03-13 00:08 - 00000360 _____ C:\WINDOWS\Tasks\DriverToolkit Autorun.job
2015-06-21 22:00 - 2015-05-13 23:48 - 00000191 _____ C:\WINDOWS\WindowsUpdate.log
2015-06-21 22:00 - 2015-05-06 00:34 - 00000000 ____D C:\Users\Magnum\AppData\Local\ActiveSync
2015-06-21 22:00 - 2015-04-25 01:08 - 00026055 _____ C:\WINDOWS\system32\NetSetupSvc.log
2015-06-21 21:59 - 2015-04-25 01:08 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2015-06-21 21:59 - 2015-04-25 00:36 - 00000000 ____D C:\WINDOWS\system32\sru
2015-06-21 21:59 - 2015-04-24 23:39 - 00131072 ___SH C:\WINDOWS\system32\config\BBI
2015-06-21 21:37 - 2015-03-22 23:57 - 00004172 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{5E1E6BDC-C72D-4666-BC9C-4518384DBE01}
2015-06-21 21:26 - 2015-04-19 14:54 - 00000000 ____D C:\WINDOWS\pss
2015-06-21 21:08 - 2015-05-13 23:48 - 00185680 _____ C:\WINDOWS\PFRO.log
2015-06-21 21:07 - 2015-05-05 23:14 - 00000000 ____D C:\Users\Magnum
2015-06-21 20:58 - 2015-04-19 15:59 - 00000000 ____D C:\Program Files (x86)\WNet
2015-06-21 20:58 - 2015-04-19 01:16 - 00000000 ____D C:\Users\Magnum\AppData\Roaming\ntsvc
2015-06-21 20:58 - 2015-04-19 01:02 - 00000000 ____D C:\ProgramData\{f7a6f897-5275-2c83-f7a6-6f897527e25d}
2015-06-21 20:58 - 2015-04-19 01:01 - 00000000 ____D C:\Users\Magnum\AppData\Local\03000200-1429405305-0500-0006-000700080009
2015-06-21 20:58 - 2015-04-19 00:58 - 00000000 ____D C:\Users\Magnum\AppData\Roaming\03000200-1429415885-0500-0006-000700080009
2015-06-21 19:50 - 2015-04-19 01:16 - 00000000 ____D C:\Users\Magnum\AppData\Roaming\Mactowebise
2015-06-21 19:14 - 2015-05-14 22:54 - 00002194 _____ C:\Users\Magnum\Desktop\Google Chrome.lnk
2015-06-21 15:36 - 2015-04-23 23:45 - 00000532 _____ C:\WINDOWS\Tasks\SUPERAntiSpyware Scheduled Task a455debe-334f-4d5b-9d67-8d0bcee3c061.job
2015-06-21 15:09 - 2015-03-23 23:54 - 00000000 ____D C:\ProgramData\USOShared
2015-06-20 23:51 - 2015-04-23 23:51 - 00000532 _____ C:\WINDOWS\Tasks\SUPERAntiSpyware Scheduled Task 5f59cfef-930d-4abf-a2e1-8080b200780b.job
2015-06-20 23:12 - 2015-04-25 00:36 - 00000000 ____D C:\WINDOWS\AppReadiness
2015-06-20 22:49 - 2015-03-11 12:43 - 00000000 ____D C:\Program Files (x86)\Intel
2015-06-20 22:48 - 2014-01-29 23:02 - 09016320 _____ (Intel Corporation) C:\WINDOWS\system32\igfxress.dll
2015-06-20 22:48 - 2014-01-29 23:02 - 00453552 _____ (Intel Corporation) C:\WINDOWS\system32\igfxpers.exe
2015-06-20 22:48 - 2014-01-29 23:02 - 00446464 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrptb.lrc
2015-06-20 22:48 - 2014-01-29 23:02 - 00183216 _____ (Intel Corporation) C:\WINDOWS\system32\igfxtray.exe
2015-06-20 22:48 - 2014-01-29 23:02 - 00072704 _____ (Intel Corporation) C:\WINDOWS\system32\igfxsrvc.dll
2015-06-20 22:47 - 2015-03-17 00:17 - 00000000 ____D C:\WINDOWS\system32\MRT
2015-06-20 22:47 - 2014-01-29 23:02 - 13059896 _____ (Intel Corporation) C:\WINDOWS\system32\igd10umd64.dll
2015-06-20 22:47 - 2014-01-29 23:02 - 05384176 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\igdkmd64.sys
2015-06-20 22:47 - 2014-01-29 23:02 - 00411056 _____ (Intel Corporation) C:\WINDOWS\system32\hkcmd.exe
2015-06-20 22:47 - 2014-01-29 23:02 - 00119296 _____ (Intel Corporation) C:\WINDOWS\system32\hccutils.dll
2015-06-20 22:47 - 2014-01-29 23:02 - 00102912 _____ C:\WINDOWS\system32\IccLibDll_x64.dll
2015-06-20 22:43 - 2015-03-17 00:17 - 140135120 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2015-06-20 22:42 - 2015-04-25 00:06 - 00000000 ____D C:\WINDOWS\CbsTemp
2015-06-18 23:42 - 2015-05-10 08:38 - 00000000 ____D C:\ProgramData\11396607344345128039
2015-06-16 19:53 - 2015-05-06 03:58 - 00781686 _____ C:\WINDOWS\system32\prfh0416.dat
2015-06-16 19:53 - 2015-05-06 03:58 - 00152728 _____ C:\WINDOWS\system32\prfc0416.dat
2015-06-16 19:53 - 2015-05-05 23:25 - 01810248 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2015-06-12 22:35 - 2015-03-21 16:06 - 00000000 ____D C:\Users\Magnum\AppData\Local\Packages
2015-06-04 02:01 - 2015-04-23 23:45 - 00000532 _____ C:\WINDOWS\Tasks\SUPERAntiSpyware Scheduled Task 631ae711-d51b-497f-abb1-cd28de5506cd.job
2015-05-31 18:22 - 2015-03-11 13:16 - 00000000 ____D C:\Users\Magnum\AppData\Roaming\uTorrent
2015-05-28 23:03 - 2015-05-11 23:15 - 00000000 ____D C:\ProgramData\eecbb44400006b2c
2015-05-25 23:20 - 2015-04-24 00:00 - 00001849 _____ C:\Users\Public\Desktop\SUPERAntiSpyware Professional.lnk

==================== Files in the root of some directories =======

2015-06-15 23:11 - 2015-06-21 14:49 - 0000024 _____ () C:\Users\Magnum\AppData\Roaming\appdataFr25.bin
2015-05-08 23:18 - 2015-05-11 00:12 - 0000020 _____ () C:\Users\Magnum\AppData\Roaming\appdataFr3.bin
2015-05-10 08:54 - 2015-05-10 08:54 - 0000000 _____ () C:\Users\Magnum\AppData\Local\Temp.dat
2015-04-19 01:07 - 2015-04-19 01:07 - 0000020 _____ () C:\ProgramData\bc.ini

Some files in TEMP:
====================
C:\Users\Magnum\AppData\Local\Temp\avgnt.exe
C:\Users\Magnum\AppData\Local\Temp\d27203e4-95b1-4092-ad9a-4cbbb525a961.exe


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2015-06-14 14:58

==================== End of log ============================

Publicité


Signaler le contenu de ce document

Publicité