Publicité
Publicité
Format du document : text/plain
Prévisualisation
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 26-07-2015
Ran by Jack (administrator) on PC-DE-JACK (26-07-2015 17:14:37)
Running from C:\Users\Jack\Desktop
Loaded Profiles: IUSR_NMPR & Jack (Available Profiles: IUSR_NMPR & Jack & Administrateur)
Platform: Microsoft® Windows Vista™ Édition Intégrale Service Pack 2 (X86) Language: Français (France)
Internet Explorer Version 9 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(G Data Software AG) C:\Program Files\Common Files\G DATA\GDScan\GDScan.exe
(G Data Software AG) C:\Program Files\G Data\AntiVirus\AVK\AVKWCtl.exe
(Microsoft Corporation) C:\Windows\System32\SLsvc.exe
(Greatis Software, LLC) C:\Program Files\BootRacer\BootRacerServ.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(G Data Software AG) C:\Program Files\G Data\AntiVirus\AVKTray\AVKTray.exe
() C:\Program Files\Adobe\Photoshop Elements 6.0\PhotoshopElementsFileAgent.exe
(Intel(R) Corporation) C:\Program Files\Intel\IntelDH\CCU\AlertService.exe
(G Data Software AG) C:\Program Files\Common Files\G DATA\AVKProxy\AVKProxy.exe
(G Data Software AG) C:\Program Files\G Data\AntiVirus\AVK\AVKService.exe
(CyberLink) C:\Program Files\CyberLink\PowerDVD12\Kernel\DMS\CLMSServerPDVD12.exe
() C:\Program Files\Common Files\Intel\IntelDH\NMS\AdpPlugins\DQLWinService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(Intel Corporation) C:\Windows\System32\IPROSetMonitor.exe
(CybelSoft) C:\Program Files\ma-config.com\MaConfigAgent.exe
(Intel(R) Corporation) C:\Program Files\Common Files\Intel\IntelDH\NMS\NMSCore\NMSCore.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe
(Protexis Inc.) C:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe
(Intel(R) Corporation) C:\Program Files\Intel\IntelDH\Intel Media Server\Media Server\bin\QualityManager.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe
(SFX TEAM) C:\Program Files\SuperCopier2\SuperCopier2.exe
(none) C:\Users\Jack\Documents\wlan-optimizer\WLAN Optimizer.exe
(Microsoft Corporation) C:\Program Files\Windows Media Player\wmpnscfg.exe
(Stardock Corporation) C:\Program Files\Stardock\CursorFX\CursorFX.exe
(Creative Technology Ltd) C:\Program Files\Creative\Sound Blaster X-Fi\Volume Panel\VolPanlu.exe
() C:\Program Files\XPSMiniViewGadget\XPSMiniViewGadget.exe
(Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE
(Intel(R) Corporation) C:\Program Files\Intel\IntelDH\Intel Media Server\Media Server\bin\issm.exe
(Intel(R) Corporation) C:\Program Files\Intel\IntelDH\Intel Media Server\Shells\MCLServiceATL.exe
(Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE
(Creative Technology Ltd) C:\Windows\System32\CTxfispi.exe
(Intel(R) Corporation) C:\Program Files\Intel\IntelDH\Intel Media Server\Shells\Remote UI Service.exe
(Glarysoft Ltd) C:\Program Files\Glary Utilities 5\Integrator.exe
(CyberLink Corp.) C:\Program Files\CyberLink\PowerDVD12\Kernel\DMP\CLHNServer\CLHNServiceForPowerDVD12.exe
(Condusiv Technologies) C:\Program Files\Condusiv Technologies\Diskeeper\DkService.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Microsoft Corporation) C:\Program Files\Windows Live\Mail\wlmail.exe
(Microsoft Corporation) C:\Program Files\Windows Live\Contacts\wlcomm.exe
(Microsoft Corporation) C:\Windows\System32\conime.exe
(Tonec Inc.) C:\Program Files\Internet Download Manager\IDMan.exe
(Tonec Inc.) C:\Program Files\Internet Download Manager\IEMonitor.exe
(Microsoft Corporation) C:\Windows\System32\conime.exe
==================== Registry (Whitelisted) ==================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [NvBackend] => C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe [2631824 2015-07-14] (NVIDIA Corporation)
HKLM\...\Winlogon: [Userinit] C:\Windows\system32\userinit.exe,C:\Program Files\G Data\AntiVirus\AVKTray\AVKTray.exe,
HKLM\...\Policies\Explorer\Run: [BootRacer] => C:\Program Files\BootRacer\Bootrace.exe [3901200 2015-03-24] (Greatis Software)
HKU\S-1-5-21-2838385541-2699793272-862096273-1000\...\Run: [WindowsWelcomeCenter] => "rundll32.exe" oobefldr.dll,ShowWelcomeCenter
HKU\S-1-5-21-2838385541-2699793272-862096273-1000\...\Run: [swg] => C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [68856 2008-02-22] (Google Inc.)
HKU\S-1-5-21-2838385541-2699793272-862096273-1000\...\Run: [WMPNSCFG] => C:\Program Files\Windows Media Player\WMPNSCFG.exe [202240 2008-01-19] (Microsoft Corporation)
HKU\S-1-5-21-2838385541-2699793272-862096273-1000\...\Run: [SuperCopier2.exe] => C:\Program Files\SuperCopier2\SuperCopier2.exe [955392 2009-08-16] (SFX TEAM)
HKU\S-1-5-21-2838385541-2699793272-862096273-1000\...\Run: [CursorFX] => C:\Program Files\Stardock\CursorFX\CursorFX.exe [432784 2012-05-10] (Stardock Corporation)
HKU\S-1-5-21-2838385541-2699793272-862096273-1000\...\RunOnce: [InetReg] => "C:\Program Files\Creative\Enregistrement du produit\French\InetReg.exe" /PreProcess=RegFlash.exe /Delay=6
HKU\S-1-5-21-2838385541-2699793272-862096273-1000\...\RunOnce: [CTAutoUpdate] => C:\Program Files\Creative\Shared Files\Software Update\AutoUpdate.exe [430968 2009-01-15] (Creative Technology Ltd)
HKU\S-1-5-21-2838385541-2699793272-862096273-1001\...\Run: [SuperCopier2.exe] => C:\Program Files\SuperCopier2\SuperCopier2.exe [955392 2009-08-16] (SFX TEAM)
HKU\S-1-5-21-2838385541-2699793272-862096273-1001\...\Run: [WLAN Optimizer] => C:\Users\Jack\Documents\wlan-optimizer\WLAN Optimizer.exe [109056 2009-08-07] (none)
HKU\S-1-5-21-2838385541-2699793272-862096273-1001\...\Run: [WMPNSCFG] => C:\Program Files\Windows Media Player\WMPNSCFG.exe [202240 2008-01-19] (Microsoft Corporation)
HKU\S-1-5-21-2838385541-2699793272-862096273-1001\...\Run: [GUDelayStartup] => C:\Program Files\Glary Utilities 5\StartupManager.exe [37152 2015-07-20] (Glarysoft Ltd)
HKU\S-1-5-21-2838385541-2699793272-862096273-1001\...\Run: [CursorFX] => C:\Program Files\Stardock\CursorFX\CursorFX.exe [432784 2012-05-10] (Stardock Corporation)
Lsa: [Notification Packages] scecli C:\Program Files\WIDCOMM\Bluetooth Software\BtwProximityCP.dll
Startup: C:\Users\Jack\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Panneau de volume Creative.lnk [2015-05-18]
ShortcutTarget: Panneau de volume Creative.lnk -> C:\Program Files\Creative\Sound Blaster X-Fi\Volume Panel\VolPanlu.exe (Creative Technology Ltd)
ShellIconOverlayIdentifiers: [IDM Shell Extension] -> {CDC95B92-E27C-4745-A8C5-64A52A78855D} => C:\Program Files\Internet Download Manager\IDMShellExt.dll [2015-07-24] (Tonec Inc.)
BootExecute: autocheck autochk *
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Bar = http://search.msn.com/spbasic.htm
HKU\S-1-5-21-2838385541-2699793272-862096273-1000\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-2838385541-2699793272-862096273-1000\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.google.com/ie
HKU\S-1-5-21-2838385541-2699793272-862096273-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://fr.msn.com/?ocid=iehp
HKU\S-1-5-21-2838385541-2699793272-862096273-1001\Software\Microsoft\Internet Explorer\Main,Search Bar = http://search.msn.com/spbasic.htm
HKU\S-1-5-21-2838385541-2699793272-862096273-1001\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://fr.msn.com/?ocid=iehp
HKU\S-1-5-21-2838385541-2699793272-862096273-1001\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
SearchScopes: HKLM -> {2f23ab71-4ac6-41f2-a955-ea576e553146} URL =
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-2838385541-2699793272-862096273-1001 -> DefaultScope {2f23ab71-4ac6-41f2-a955-ea576e553146} URL = http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}
SearchScopes: HKU\S-1-5-21-2838385541-2699793272-862096273-1001 -> {2f23ab71-4ac6-41f2-a955-ea576e553146} URL = http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}
BHO: IDM integration (IDMIEHlprObj Class) -> {0055C089-8582-441B-A0BF-17B458C2A3A8} -> C:\Program Files\Internet Download Manager\IDMIECC.dll [2015-07-08] (Internet Download Manager, Tonec Inc.)
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2015-07-17] (Google Inc.)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2015-07-17] (Google Inc.)
DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} http://download.eset.com/special/eos/OnlineScanner.cab
DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
Handler: ms-itss - {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Program Files\Common Files\Microsoft Shared\Information Retrieval\msitss.dll [2006-06-05] (Microsoft Corporation)
ShellExecuteHooks: DVDIdleShell Class - {93994DE8-8239-4655-B1D1-5F4E91300429} - C:\Program Files\DVD Region+CSS Free\DVDShell.dll [49152 2004-10-09] (Fengtao Software Inc.)
Winsock: Catalog5 08 C:\Program Files\Bonjour\mdnsNSP.dll [152864 2010-05-18] (Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 212.27.40.241 212.27.40.240
Tcpip\..\Interfaces\{C9B1F236-BBF0-4A34-8491-7F8885D61C07}: [NameServer] 129.250.35.251,212.27.40.241
Tcpip\..\Interfaces\{C9B1F236-BBF0-4A34-8491-7F8885D61C07}: [DhcpNameServer] 212.27.40.241 212.27.40.240
StartMenuInternet: IEXPLORE.EXE - iexplore.exe
FireFox:
========
FF ProfilePath: C:\Users\Jack\AppData\Roaming\Mozilla\Firefox\Profiles\30rifqh7.default-1433685663940
FF NewTab: https://www.google.fr/
FF Homepage: https://www.google.fr/
FF NetworkProxy: "autoconfig_url", "http://proxyfreeyoutube.free.fr/youtube-ovh.pac"
FF NetworkProxy: "type", 2
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_18_0_0_209.dll [2015-07-14] ()
FF Plugin: @microsoft.com/WPF,version=3.5 -> c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll [2008-07-30] (Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.28.1\npGoogleUpdate3.dll [2015-07-15] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.28.1\npGoogleUpdate3.dll [2015-07-15] (Google Inc.)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2014-08-05] (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Users\Jack\AppData\Roaming\mozilla\plugins\np-mswmp.dll [2009-09-25] (Microsoft Corporation)
FF Extension: Fast Translation - C:\Users\Jack\AppData\Roaming\Mozilla\Firefox\Profiles\30rifqh7.default-1433685663940\Extensions\fasttrans@kemot [2015-06-07]
FF Extension: Favicon Restorer - C:\Users\Jack\AppData\Roaming\Mozilla\Firefox\Profiles\30rifqh7.default-1433685663940\Extensions\faviconrestorer@masserog.it [2015-06-07]
FF Extension: HTTPS-Everywhere - C:\Users\Jack\AppData\Roaming\Mozilla\Firefox\Profiles\30rifqh7.default-1433685663940\Extensions\https-everywhere@eff.org [2015-07-04]
FF Extension: Favicon Icons for Search Engine Results - C:\Users\Jack\AppData\Roaming\Mozilla\Firefox\Profiles\30rifqh7.default-1433685663940\Extensions\jid0-Ap5n9ZGglDRSNbv6H8bIvOT3iuw@jetpack [2015-07-25]
FF Extension: No Name - C:\Users\Jack\AppData\Roaming\Mozilla\Firefox\Profiles\30rifqh7.default-1433685663940\Extensions\trash [2015-07-25]
FF Extension: BlackFox V2-Blue - C:\Users\Jack\AppData\Roaming\Mozilla\Firefox\Profiles\30rifqh7.default-1433685663940\Extensions\zigboom.designs@gmail(181).com [2015-07-11]
FF Extension: FT DeepDark - C:\Users\Jack\AppData\Roaming\Mozilla\Firefox\Profiles\30rifqh7.default-1433685663940\Extensions\{77d2ed30-4cd2-11e0-b8af-0800200c9a66} [2015-06-25]
FF Extension: Memory Fox - C:\Users\Jack\AppData\Roaming\Mozilla\Firefox\Profiles\30rifqh7.default-1433685663940\Extensions\{E173B749-DB5B-4fd2-BA0E-94ECEA0CA55B} [2015-07-23]
FF Extension: Disconnect - C:\Users\Jack\AppData\Roaming\Mozilla\Firefox\Profiles\30rifqh7.default-1433685663940\Extensions\2.0@disconnect.me.xpi [2015-06-07]
FF Extension: Custom New Tab - C:\Users\Jack\AppData\Roaming\Mozilla\Firefox\Profiles\30rifqh7.default-1433685663940\Extensions\CNT@ednovak.net.xpi [2015-06-07]
FF Extension: Blur - C:\Users\Jack\AppData\Roaming\Mozilla\Firefox\Profiles\30rifqh7.default-1433685663940\Extensions\donottrackplus@abine.com.xpi [2015-07-14]
FF Extension: Enforce Encryption - C:\Users\Jack\AppData\Roaming\Mozilla\Firefox\Profiles\30rifqh7.default-1433685663940\Extensions\enforceencryption@palant.de.xpi [2015-06-07]
FF Extension: Image2Icon - C:\Users\Jack\AppData\Roaming\Mozilla\Firefox\Profiles\30rifqh7.default-1433685663940\Extensions\img2ico@mingyi.org.xpi [2015-06-07]
FF Extension: DeferredTo - C:\Users\Jack\AppData\Roaming\Mozilla\Firefox\Profiles\30rifqh7.default-1433685663940\Extensions\jid0-7jRA83vLgp1WJxyHcbp43vxnnzs@jetpack.xpi [2015-07-12]
FF Extension: YouTube Repeater - C:\Users\Jack\AppData\Roaming\Mozilla\Firefox\Profiles\30rifqh7.default-1433685663940\Extensions\jid1-eUaC9qdIgKgiWw@jetpack.xpi [2015-06-07]
FF Extension: I don't care about cookies - C:\Users\Jack\AppData\Roaming\Mozilla\Firefox\Profiles\30rifqh7.default-1433685663940\Extensions\jid1-KKzOGWgsW3Ao4Q@jetpack.xpi [2015-07-03]
FF Extension: AdBlock for YouTube™ - C:\Users\Jack\AppData\Roaming\Mozilla\Firefox\Profiles\30rifqh7.default-1433685663940\Extensions\jid1-q4sG8pYhq8KGHs@jetpack.xpi [2015-06-17]
FF Extension: google-no-tracking-url - C:\Users\Jack\AppData\Roaming\Mozilla\Firefox\Profiles\30rifqh7.default-1433685663940\Extensions\jid1-zUrvDCat3xoDSQ@jetpack.xpi [2015-06-07]
FF Extension: betterFox - Make your browsing experience 15% faster. - C:\Users\Jack\AppData\Roaming\Mozilla\Firefox\Profiles\30rifqh7.default-1433685663940\Extensions\multirevenue@googlemail.com.xpi [2015-07-23]
FF Extension: Places Maintenance - C:\Users\Jack\AppData\Roaming\Mozilla\Firefox\Profiles\30rifqh7.default-1433685663940\Extensions\places-maintenance@bonardo.net.xpi [2015-06-07]
FF Extension: Restart - C:\Users\Jack\AppData\Roaming\Mozilla\Firefox\Profiles\30rifqh7.default-1433685663940\Extensions\Restart@schuzak.jp.xpi [2015-06-07]
FF Extension: Smart Referer - C:\Users\Jack\AppData\Roaming\Mozilla\Firefox\Profiles\30rifqh7.default-1433685663940\Extensions\smart-referer@meh.paranoid.pk.xpi [2015-06-07]
FF Extension: Tab Scope - C:\Users\Jack\AppData\Roaming\Mozilla\Firefox\Profiles\30rifqh7.default-1433685663940\Extensions\tabscope@xuldev.org.xpi [2015-06-07]
FF Extension: Vacuum Places Improved - C:\Users\Jack\AppData\Roaming\Mozilla\Firefox\Profiles\30rifqh7.default-1433685663940\Extensions\VacuumPlacesImproved@lultimouomo-gmail.com.xpi [2015-06-07]
FF Extension: Lyrics Here by Rob W - C:\Users\Jack\AppData\Roaming\Mozilla\Firefox\Profiles\30rifqh7.default-1433685663940\Extensions\youtube-lyrics-by-rob-w@jetpack.xpi [2015-06-07]
FF Extension: SmoothWheel (mozdev.org) - C:\Users\Jack\AppData\Roaming\Mozilla\Firefox\Profiles\30rifqh7.default-1433685663940\Extensions\{5F590AA2-1221-4113-A6F4-A4BB62414FAC}.xpi [2015-06-21]
FF Extension: IE View - C:\Users\Jack\AppData\Roaming\Mozilla\Firefox\Profiles\30rifqh7.default-1433685663940\Extensions\{6e84150a-d526-41f1-a480-a67d3fed910d}.xpi [2015-06-07]
FF Extension: deskCut - C:\Users\Jack\AppData\Roaming\Mozilla\Firefox\Profiles\30rifqh7.default-1433685663940\Extensions\{9125C9CB-BE2B-4389-A0C7-46A4BDD46AEA}.xpi [2015-06-07]
FF Extension: Adblock Plus - C:\Users\Jack\AppData\Roaming\Mozilla\Firefox\Profiles\30rifqh7.default-1433685663940\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2015-06-07]
FF Extension: Greasemonkey - C:\Users\Jack\AppData\Roaming\Mozilla\Firefox\Profiles\30rifqh7.default-1433685663940\Extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}.xpi [2015-06-07]
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF Extension: Microsoft .NET Framework Assistant - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2014-02-27]
FF HKU\S-1-5-21-2838385541-2699793272-862096273-1001\...\Firefox\Extensions: [mozilla_cc2@internetdownloadmanager.com] - C:\Users\Jack\AppData\Roaming\IDM\idmmzcc7
FF Extension: IDM integration - C:\Users\Jack\AppData\Roaming\IDM\idmmzcc7 [2015-07-25]
FF HKU\S-1-5-21-2838385541-2699793272-862096273-1001\...\Firefox\Extensions: [mozilla_cc@internetdownloadmanager.com] - C:\Users\Jack\AppData\Roaming\IDM\idmmzcc5
FF Extension: IDM CC - C:\Users\Jack\AppData\Roaming\IDM\idmmzcc5 [2015-07-14]
FF HKU\S-1-5-21-2838385541-2699793272-862096273-1001\...\SeaMonkey\Extensions: [mozilla_cc@internetdownloadmanager.com] - C:\Users\Jack\AppData\Roaming\IDM\idmmzcc5
Chrome:
=======
CHR dev: Chrome dev build detected! <======= ATTENTION
CHR Profile: C:\Users\Jack\AppData\Local\Google\Chrome\User Data\Default
CHR HKLM\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files\Internet Download Manager\IDMGCExt.crx [2015-07-24]
========================== Services (Whitelisted) =================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AdobeActiveFileMonitor6.0; C:\Program Files\Adobe\Photoshop Elements 6.0\PhotoshopElementsFileAgent.exe [124832 2007-09-11] ()
R2 AlertService; C:\Program Files\Intel\IntelDH\CCU\AlertService.exe [223448 2007-06-27] (Intel(R) Corporation)
R2 AVKProxy; C:\Program Files\Common Files\G Data\AVKProxy\AVKProxy.exe [2558072 2015-06-19] (G Data Software AG)
R2 AVKService; C:\Program Files\G Data\AntiVirus\AVK\AVKService.exe [966776 2015-06-16] (G Data Software AG)
R2 AVKWCtl; C:\Program Files\G Data\AntiVirus\AVK\AVKWCtl.exe [2907776 2015-06-16] (G Data Software AG)
R2 BootRacerServ; C:\Program Files\BootRacer\BootRacerServ.exe [65296 2014-04-30] (Greatis Software, LLC)
R2 CLHNServiceForPowerDVD12; C:\Program Files\CyberLink\PowerDVD12\Kernel\DMP\CLHNServer\CLHNServiceForPowerDVD12.exe [89864 2013-11-29] (CyberLink Corp.)
S3 Creative ALchemy AL6 Licensing Service; C:\Program Files\Common Files\Creative Labs Shared\Service\AL6Licensing.exe [79360 2013-04-20] (Creative Labs) [File not signed]
S3 Creative Audio Engine Licensing Service; C:\Program Files\Common Files\Creative Labs Shared\Service\CTAELicensing.exe [79360 2010-05-14] (Creative Labs) [File not signed]
S3 CTAudSvcService; C:\Program Files\Creative\Shared Files\CTAudSvc.exe [307200 2009-02-23] (Creative Technology Ltd) [File not signed]
S3 CyberLink PowerDVD 12 Media Server Monitor Service; C:\Program Files\CyberLink\PowerDVD12\Kernel\DMS\CLMSMonitorServicePDVD12.exe [77576 2013-11-29] (CyberLink)
R2 CyberLink PowerDVD 12 Media Server Service; C:\Program Files\CyberLink\PowerDVD12\Kernel\DMS\CLMSServerPDVD12.exe [294664 2013-11-29] (CyberLink)
S4 DellDataVault; C:\Program Files\Dell\DellDataVault\DellDataVault.exe [1942224 2015-01-31] (Dell Inc.)
S4 DellDataVaultWiz; C:\Program Files\Dell\DellDataVault\DellDataVaultWiz.exe [183504 2015-01-31] (Dell Inc.)
S3 DHTRACE; C:\Program Files\Common Files\Intel\IntelDH\bin\DHTraceController.exe [39640 2007-06-27] (Intel(R) Corporation)
R2 Diskeeper; C:\Program Files\Condusiv Technologies\Diskeeper\DkService.exe [2163064 2012-07-27] (Condusiv Technologies)
R2 DQLWinService; C:\Program Files\Common Files\Intel\IntelDH\NMS\AdpPlugins\DQLWinService.exe [208896 2007-02-12] () [File not signed]
S3 FLEXnet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [654848 2008-02-22] (Macrovision Europe Ltd.) [File not signed]
S4 FreeAgentGoNext Service; C:\Program Files\Seagate\SeagateManager\Sync\FreeAgentService.exe [189736 2009-09-25] (Seagate Technology LLC)
R3 GDScan; C:\Program Files\Common Files\G Data\GDScan\GDScan.exe [789624 2015-06-16] (G Data Software AG)
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [921232 2015-07-14] (NVIDIA Corporation)
S3 GoogleDesktopManager-051210-111108; C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe [30192 2010-06-07] (Google)
S3 IDriverT; C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe [73728 2004-10-22] (Macrovision Corporation) [File not signed]
R2 Intel(R) PROSet Monitoring Service; C:\Windows\system32\IProsetMonitor.exe [121088 2013-02-23] (Intel Corporation)
R2 ISSM; C:\Program Files\Intel\IntelDH\Intel Media Server\Media Server\bin\ISSM.exe [59096 2007-06-27] (Intel(R) Corporation)
S4 M1 Server; C:\Program Files\Intel\IntelDH\Intel Media Server\Media Server\bin\mediaserver.exe [268504 2007-06-27] ()
R2 MaConfigAgent; C:\Program Files\ma-config.com\MaConfigAgent.exe [2211968 2015-06-19] (CybelSoft)
S2 MBAMService; C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe [1133880 2015-06-18] (Malwarebytes Corporation)
R2 MCLServiceATL; C:\Program Files\Intel\IntelDH\Intel Media Server\Shells\MCLServiceATL.exe [157912 2007-06-27] (Intel(R) Corporation)
R2 NMSCore; C:\Program Files\Common Files\Intel\IntelDH\NMS\NMSCore\NMSCore.exe [317656 2007-06-27] (Intel(R) Corporation)
R2 NvNetworkService; C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe [1871504 2015-07-14] (NVIDIA Corporation)
R2 QualityManager; C:\Program Files\Intel\IntelDH\Intel Media Server\Media Server\bin\qualitymanager.exe [272600 2007-06-27] (Intel(R) Corporation)
R2 Remote UI Service; C:\Program Files\Intel\IntelDH\Intel Media Server\Shells\Remote UI Service.exe [446680 2007-06-27] (Intel(R) Corporation)
S3 RichVideo; C:\Program Files\CyberLink\Shared Files\RichVideo.exe [241734 2008-02-14] () [File not signed]
S2 RoxLiveShare10; C:\Program Files\Common Files\Roxio Shared\10.0\SharedCOM\RoxLiveShare10.exe [309744 2007-12-14] (Sonic Solutions)
R2 ShellHWDetection; C:\Windows\System32\shsvcs.dll [247296 2015-07-17] (Microsoft Corporation) [File not signed]
R2 Themes; C:\Windows\system32\shsvcs.dll [247296 2015-07-17] (Microsoft Corporation) [File not signed]
S4 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [272952 2008-01-19] (Microsoft Corporation)
S3 wltrysvc; C:\Program Files\Broadcom\Broadcom 802.11 Network Adapter\bcmwltry.exe [5127168 2014-10-30] (Broadcom Corporation) [File not signed]
S2 SessionLauncher; No ImagePath
S3 sprtsvc_dellsupportcenter; No ImagePath
==================== Drivers (Whitelisted) ====================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 BCM42RLY; C:\Windows\System32\drivers\BCM42RLY.sys [19664 2014-10-30] (Broadcom Corporation)
R0 Bhbase; C:\Windows\System32\drivers\Bhbase.sys [46440 2015-03-31] (Baidu, Inc.)
R3 btwampfl; C:\Windows\system32\drivers\btwampfl.sys [504360 2012-04-01] (Broadcom Corporation.)
S3 cpudrv; C:\Program Files\SystemRequirementsLab\cpudrv.sys [11336 2009-12-18] ()
R3 DDDriver; C:\Windows\System32\drivers\DDDriver32Dcsa.sys [20688 2015-01-31] (Dell Computer Corporation)
R3 DellProf; C:\Windows\System32\drivers\DellProf.sys [19984 2015-01-31] (Dell Computer Corporation)
R0 DKDFM; C:\Windows\System32\drivers\DKDFM.sys [35120 2012-04-05] (Condusiv Technologies)
R3 DKRtWrt; C:\Windows\System32\DRIVERS\DKRtWrt.sys [44496 2012-06-18] (Condusiv Technologies)
R0 DKTLFSMF; C:\Windows\System32\drivers\DKTLFSMF.sys [85328 2012-07-09] (Condusiv Technologies)
R0 GDBehave; C:\Windows\System32\drivers\GDBehave.sys [112640 2015-07-21] (G Data Software AG)
S3 GDKBB; C:\Windows\system32\drivers\GDKBB32.sys [24192 2015-03-31] (G Data Software AG)
S1 GDKBFlt; C:\Windows\system32\drivers\GDKBFlt32.sys [20352 2015-03-31] (G Data Software AG)
R1 GDMnIcpt; C:\Windows\system32\drivers\MiniIcpt.sys [161280 2015-07-21] (G Data Software AG)
R3 GDPkIcpt; C:\Windows\system32\drivers\PktIcpt.sys [73216 2015-07-21] (G Data Software AG)
R1 gdwfpcd; C:\Windows\System32\drivers\gdwfpcd32.sys [54272 2015-07-21] (G Data Software AG)
R1 GRD; C:\Windows\system32\drivers\GRD.sys [29528 2015-03-31] (G Data Software)
R1 GUBootStartup; C:\Windows\System32\drivers\GUBootStartup.sys [17472 2015-07-04] (Glarysoft Ltd)
R1 HookCentre; C:\Windows\system32\drivers\HookCentre.sys [87040 2015-07-21] (G Data Software AG)
R0 hotcore3; C:\Windows\System32\DRIVERS\hotcore3.sys [40496 2008-12-13] (Paragon Software Group)
R1 HWiNFO32; C:\Windows\system32\drivers\HWiNFO32.SYS [23840 2015-07-09] (REALiX(tm))
R0 iaStorA; C:\Windows\System32\DRIVERS\iaStorA.sys [1935600 2015-03-26] (Intel Corporation)
R0 iaStorF; C:\Windows\System32\DRIVERS\iaStorF.sys [27376 2015-03-26] (Intel Corporation)
R3 IntelDH; C:\Windows\System32\Drivers\IntelDH.sys [5632 2008-02-22] (Intel Corporation)
S3 LazerUsb; C:\Windows\System32\DRIVERS\LazerUsb.sys [5734400 2007-08-29] (Lumanate Inc.)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [23256 2015-06-18] (Malwarebytes Corporation)
S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [51928 2015-06-18] (Malwarebytes Corporation)
U4 msahci; No ImagePath
R0 MxEFUF; C:\Windows\System32\DRIVERS\MxEFUF32.sys [108544 2011-08-15] (Matrox Graphics Inc.) [File not signed]
S3 NAL; C:\Windows\system32\Drivers\iqvw32.sys [31048 2013-02-21] (Intel Corporation )
R2 nmsunidr; C:\Windows\System32\DRIVERS\nmsunidr.sys [5376 2007-02-18] (Gteko Ltd.)
S1 NNSHTTPS; C:\Windows\System32\DRIVERS\NNSHttps.sys [95584 2013-01-09] (Panda Security, S.L.)
R2 ntk_PowerDVD12; C:\Program Files\CyberLink\PowerDVD12\Kernel\DMP\CLHNServer\ntk_PowerDVD12.sys [74952 2013-03-15] (Cyberlink Corp.)
S3 Passthru; C:\Windows\System32\DRIVERS\PPFlt.sys [26912 2013-01-17] ()
R2 PCTAppEvent; C:\Windows\system32\drivers\PCTAppEvent.sys [163288 2012-10-22] (PC Tools)
S3 PCTBD; C:\Windows\System32\Drivers\PCTBD.sys [62688 2012-10-23] (PC Tools)
R0 PCTCore; C:\Windows\System32\drivers\PCTCore.sys [368616 2012-10-22] (PC Tools)
R0 pctDS; C:\Windows\System32\drivers\pctDS.sys [342168 2012-02-28] (PC Tools)
R0 pctEFA; C:\Windows\System32\drivers\pctEFA.sys [909728 2012-02-28] (PC Tools)
S3 PCTFW-PacketFilter; C:\Windows\system32\drivers\pctNdis-PacketFilter.sys [92608 2013-04-21] (PC Tools)
R1 pctgntdi; C:\Windows\System32\drivers\pctgntdi.sys [260760 2012-10-31] (PC Tools)
R1 pctNdisLW; C:\Windows\System32\DRIVERS\pctNdisLW.sys [60128 2013-04-21] (PC Tools)
S3 pctplfw; C:\Windows\System32\drivers\pctplfw.sys [128024 2013-04-21] (PC Tools)
S3 pctplsg; C:\Windows\System32\drivers\pctplsg.sys [71752 2012-11-01] (PC Tools)
S3 pctplsm; C:\Windows\System32\drivers\pctplsm.sys [68272 2012-11-01] (PC Tools)
R1 PCTSD; C:\Windows\System32\Drivers\PCTSD.sys [202280 2012-11-01] (PC Tools)
R3 PrivacyProtectorMP; C:\Windows\System32\DRIVERS\PPFlt.sys [26912 2013-01-17] ()
R3 SmbDrvI; C:\Windows\System32\DRIVERS\Smb_driver_Intel.sys [25328 2014-04-12] (Synaptics Incorporated)
S3 tap-tb-0901; C:\Windows\System32\DRIVERS\tap-tb-0901.sys [33280 2015-02-11] (The OpenVPN Project)
S3 tap0901; C:\Windows\System32\DRIVERS\tap0901.sys [35288 2013-08-22] (The OpenVPN Project)
R0 TfFsMon; C:\Windows\System32\drivers\TfFsMon.sys [55008 2012-10-31] (PC Tools)
S3 TfNetMon; C:\Windows\system32\drivers\TfNetMon.sys [36456 2012-10-31] (PC Tools)
R0 TFSysMon; C:\Windows\System32\drivers\TfSysMon.sys [577176 2012-10-31] (PC Tools)
R2 tifsfilter; C:\Windows\System32\DRIVERS\tifsfilt.sys [44384 2010-08-22] (Acronis)
S3 TSHWMDTCP; C:\Program Files\Intel\IntelDH\Intel Media Server\Media Server\bin\TSHWMDTCP.sys [14552 2007-06-27] ()
S3 WiseHDInfo; C:\Windows\WiseHDInfo32.dll [11816 2015-03-23] (wisecleaner.com) [File not signed]
R1 WiseTDIFw; C:\Windows\WiseTDIFw.sys [41512 2015-03-23] (WiseCleaner.com) [File not signed]
R2 {73526619-C24F-470B-9BED-53D455FBB5C6}; C:\Program Files\CyberLink\PowerDVD12\Common\NavFilter\000.fcl [26824 2013-11-29] (CyberLink Corp.)
S1 ArcSec; No ImagePath
S4 blbdrive; No ImagePath
S3 CT20XUT.DLL; No ImagePath
S3 CTEXFIFX.DLL; No ImagePath
S3 CTHWIUT.DLL; No ImagePath
U3 DfSdkS; No ImagePath
S3 IpInIp; No ImagePath
S3 NwlnkFlt; No ImagePath
S3 NwlnkFwd; No ImagePath
S3 PcdrNdisuio; No ImagePath
S1 RawDisk3; \??\C:\Windows\system32\drivers\rawdsk3.sys [X]
S3 tapSF0901; system32\DRIVERS\tapSF0901.sys [X]
S3 udsstub; system32\DRIVERS\udsstub.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2015-07-26 17:14 - 2015-07-26 17:15 - 00030333 _____ C:\Users\Jack\Desktop\FRST.txt
2015-07-26 17:14 - 2015-07-26 17:14 - 00000000 ____D C:\FRST
2015-07-26 17:09 - 2015-07-26 17:09 - 01650688 _____ (Farbar) C:\Users\Jack\Desktop\FRST.exe
2015-07-26 16:33 - 2015-07-26 16:33 - 00000000 ____D C:\Users\Jack\AppData\Local\{2A61EFF6-D4A2-464E-A4B3-131D562ABFC5}
2015-07-25 14:15 - 2015-07-25 14:15 - 00000000 ____D C:\Users\Jack\AppData\Local\Adobe
2015-07-25 13:28 - 2015-07-25 13:28 - 00000000 ____D C:\Users\Jack\AppData\Local\{5EDD3C00-6D3A-4458-A3A2-50A1B46582BB}
2015-07-24 16:16 - 2015-07-24 16:16 - 00000000 ____D C:\Users\Jack\AppData\Local\{F6F194D3-F572-470F-85B7-D38B159C1682}
2015-07-24 16:14 - 2015-07-24 16:14 - 00000000 ____D C:\Users\Jack\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Notepad++
2015-07-24 15:26 - 2015-06-12 04:00 - 00123968 _____ (Tonec Inc.) C:\Windows\system32\Drivers\idmwfp.sys
2015-07-23 20:19 - 2015-07-23 20:19 - 00000000 ____D C:\Users\Jack\AppData\Local\{81FA917B-917D-4B76-9617-09E8C962B916}
2015-07-23 18:06 - 2015-07-23 18:06 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack
2015-07-23 18:06 - 2015-07-23 18:06 - 00000000 ____D C:\Program Files\K-Lite Codec Pack
2015-07-23 18:06 - 2015-07-21 20:00 - 00112128 _____ C:\Windows\system32\ff_vfw.dll
2015-07-23 18:06 - 2015-06-22 15:25 - 00240128 _____ C:\Windows\system32\xvidvfw.dll
2015-07-23 18:06 - 2015-06-22 15:24 - 00655872 _____ C:\Windows\system32\xvidcore.dll
2015-07-23 18:06 - 2015-02-28 17:21 - 03591680 _____ (x264vfw project) C:\Windows\system32\x264vfw.dll
2015-07-23 18:06 - 2012-07-21 12:54 - 00122880 _____ (fccHandler) C:\Windows\system32\ac3acm.acm
2015-07-23 18:06 - 2011-12-07 19:32 - 00216064 _____ ( ) C:\Windows\system32\lagarith.dll
2015-07-23 01:18 - 2015-07-23 01:18 - 00083616 _____ C:\Users\Jack\AppData\Local\GDIPFONTCACHEV1.DAT
2015-07-23 01:15 - 2015-07-23 17:43 - 00004146 _____ C:\Windows\PFRO.log
2015-07-23 01:15 - 2015-07-23 01:15 - 00364032 _____ C:\Windows\system32\FNTCACHE.DAT
2015-07-22 14:08 - 2015-07-22 14:08 - 00000000 ____D C:\Users\Jack\AppData\Local\{0E9BA44D-8616-46E7-9C1C-3564AD9C3BE8}
2015-07-21 22:29 - 2015-07-21 22:29 - 00000000 ____D C:\Users\Jack\AppData\Local\{0E308A36-72CB-4877-9398-1AC551D6061D}
2015-07-21 20:25 - 2015-07-21 20:25 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\G DATA ANTIVIRUS
2015-07-20 19:07 - 2015-07-14 18:02 - 00034304 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2015-07-20 19:07 - 2015-07-14 16:23 - 00296960 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2015-07-17 17:48 - 2015-07-17 17:48 - 16467456 _____ (Microsoft Corporation) C:\Windows\system32\imageres.dll
2015-07-17 16:27 - 2015-07-25 13:27 - 00000000 ____D C:\Program Files\SpywareBlaster
2015-07-17 16:27 - 2015-07-17 16:27 - 00000850 _____ C:\Users\Public\Desktop\SpywareBlaster.lnk
2015-07-17 16:27 - 2015-07-17 16:27 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SpywareBlaster
2015-07-16 17:26 - 2015-07-16 17:26 - 00000000 ____D C:\Users\Jack\AppData\Local\{02913C60-AD55-4D1D-ABCC-CF36F48D371E}
2015-07-15 17:13 - 2015-07-15 17:14 - 00000000 ____D C:\Users\Jack\AppData\Local\{04CAC844-9FB9-4118-BD6F-F215CDD16DD5}
2015-07-15 16:53 - 2015-07-03 18:04 - 01316864 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll
2015-07-15 16:53 - 2015-06-25 04:57 - 02066432 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2015-07-15 16:52 - 2015-06-17 18:50 - 02264576 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2015-07-15 16:52 - 2015-06-17 17:09 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\msiexec.exe
2015-07-15 16:52 - 2015-06-12 18:01 - 00298496 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2015-07-15 16:44 - 2015-05-31 10:11 - 00225792 _____ (Microsoft Corporation) C:\Windows\system32\cewmdm.dll
2015-07-15 16:43 - 2015-06-27 18:03 - 00783872 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2015-07-15 16:43 - 2015-06-27 18:02 - 00501248 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2015-07-15 16:43 - 2015-06-27 18:02 - 00218112 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2015-07-15 16:43 - 2015-06-27 18:01 - 00801280 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2015-07-15 16:43 - 2015-06-27 16:21 - 00217088 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2015-07-15 16:43 - 2015-06-27 16:21 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2015-07-15 16:43 - 2015-06-12 15:13 - 00440768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2015-07-15 16:43 - 2015-01-09 02:17 - 00107008 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2015-07-15 16:38 - 2015-07-03 07:31 - 12386304 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2015-07-15 16:38 - 2015-07-03 07:18 - 02382848 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2015-07-15 16:38 - 2015-06-17 03:14 - 01810432 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2015-07-15 16:38 - 2015-06-17 03:12 - 09750528 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2015-07-15 16:38 - 2015-06-17 03:12 - 00367616 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2015-07-15 16:38 - 2015-06-17 03:10 - 01139712 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2015-07-15 16:38 - 2015-06-17 03:09 - 01804288 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2015-07-15 16:38 - 2015-06-17 03:09 - 01427968 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2015-07-15 16:38 - 2015-06-17 03:09 - 01129472 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2015-07-15 16:38 - 2015-06-17 03:09 - 00421888 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2015-07-15 16:38 - 2015-06-17 03:08 - 00718336 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2015-07-15 16:38 - 2015-06-17 03:08 - 00607744 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2015-07-15 16:38 - 2015-06-17 03:08 - 00353792 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2015-07-15 16:38 - 2015-06-17 03:08 - 00231936 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2015-07-15 16:38 - 2015-06-17 03:08 - 00223232 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2015-07-15 16:38 - 2015-06-17 03:08 - 00176640 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2015-07-15 16:38 - 2015-06-17 03:08 - 00142848 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2015-07-15 16:38 - 2015-06-17 03:08 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2015-07-15 16:38 - 2015-06-17 03:08 - 00065024 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2015-07-15 16:38 - 2015-06-17 03:08 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2015-07-15 16:38 - 2015-06-17 03:08 - 00011776 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2015-07-15 16:38 - 2015-06-17 03:08 - 00010752 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2015-07-14 14:53 - 2015-07-14 14:53 - 00000000 ____D C:\Users\Jack\AppData\Local\{75EB9187-16E6-434B-B2DF-45DF024451E4}
2015-07-12 18:20 - 2015-07-12 18:41 - 00000000 ____D C:\ProgramData\RogueKiller
2015-07-12 13:11 - 2015-07-12 13:11 - 00000997 _____ C:\Users\Public\Desktop\Ashampoo WinOptimizer 12.lnk
2015-07-12 13:11 - 2015-07-12 13:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ashampoo
2015-07-12 13:11 - 2009-08-24 22:08 - 00028160 _____ (mst software GmbH, Germany) C:\Windows\system32\DfSdkBt.exe
2015-07-12 13:03 - 2015-07-12 13:03 - 00000000 ____D C:\Users\Jack\AppData\Local\{EFC24DB3-96A8-48E4-B68E-5BA643316A54}
2015-07-11 20:37 - 2015-07-11 20:37 - 00000000 ____D C:\Users\Jack\AppData\Local\{B649F2E8-35F2-4228-9699-4A591DCAAF07}
2015-07-11 14:39 - 2015-07-11 14:40 - 00000000 ____D C:\Users\Jack\AppData\Local\{288B011F-9DFC-433B-851F-F42F0C2F5EB3}
2015-07-10 21:23 - 2015-07-10 21:23 - 00000000 ____D C:\Users\Jack\Downloads\Hola
2015-07-10 14:58 - 2015-07-10 14:58 - 00000000 ____D C:\Users\Jack\AppData\Local\{DC0F7A25-37BD-4771-AC2B-194CD49D8BCF}
2015-07-09 18:24 - 2015-07-09 18:24 - 00023840 _____ (REALiX(tm)) C:\Windows\system32\Drivers\HWiNFO32.SYS
2015-07-09 17:28 - 2015-07-09 17:28 - 00000000 ____D C:\Users\Jack\AppData\Local\{3955D3B4-5B1D-42C7-966F-2E60A06B554D}
2015-07-08 23:32 - 2015-07-08 23:32 - 00000000 ____D C:\ProgramData\GlarySoft
2015-07-08 00:15 - 2015-07-08 00:15 - 00000000 ____D C:\Users\Jack\AppData\Roaming\Condusiv_Technologies
2015-07-08 00:15 - 2015-07-08 00:15 - 00000000 ____D C:\Users\Jack\AppData\Local\Condusiv_Technologies
2015-07-08 00:15 - 2013-05-29 22:12 - 00000278 _____ C:\Users\Jack\Documents\TRdiskeeper 12.reg
2015-07-07 23:17 - 2015-07-07 23:17 - 00001020 _____ C:\Users\Jack\Desktop\Diskeeper12.lnk
2015-07-07 23:16 - 2015-07-07 23:16 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Condusiv Technologies
2015-07-07 23:16 - 2015-07-07 23:16 - 00000000 ____D C:\Program Files\Windows Home Server
2015-07-07 23:16 - 2012-07-09 14:54 - 00085328 _____ (Condusiv Technologies) C:\Windows\system32\Drivers\DKTLFSMF.sys
2015-07-07 23:16 - 2012-06-18 19:14 - 00044496 _____ (Condusiv Technologies) C:\Windows\system32\Drivers\DKRtWrt.sys
2015-07-07 23:16 - 2012-04-05 02:32 - 00035120 _____ (Condusiv Technologies) C:\Windows\system32\Drivers\DKDFM.sys
2015-07-04 14:00 - 2015-07-21 15:39 - 00000861 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Glary Utilities 5.lnk
2015-07-04 14:00 - 2015-07-21 15:39 - 00000849 _____ C:\Users\Public\Desktop\Glary Utilities 5.lnk
2015-07-04 14:00 - 2015-07-04 14:00 - 00017472 _____ (Glarysoft Ltd) C:\Windows\system32\Drivers\GUBootStartup.sys
2015-07-04 14:00 - 2015-07-04 14:00 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Glary Utilities 5
2015-07-04 13:59 - 2015-07-26 16:29 - 00000000 ____D C:\Program Files\Glary Utilities 5
2015-07-03 17:08 - 2015-07-03 17:08 - 00000103 _____ C:\wrs_ff_install.log
2015-07-03 02:43 - 2015-07-03 02:44 - 00000000 ____D C:\Users\Jack\AppData\Local\AviraSpeedup
2015-07-01 15:22 - 2015-07-01 15:22 - 00009336 ____N (G DATA Software AG) C:\Windows\system32\GDScrSv.fr.dll
2015-06-29 21:06 - 2015-07-03 02:44 - 00000000 ____D C:\Program Files\Avira
2015-06-27 21:57 - 2015-06-27 21:57 - 00000406 _____ C:\Windows\system32\ioloBootDefrag.cfg
2015-06-27 20:56 - 2015-06-27 20:56 - 00000000 ____D C:\Windows\system32\config\Original
2015-06-26 18:37 - 2015-07-23 01:15 - 00000000 ____D C:\Program Files\Argente Utilities
2015-06-26 18:37 - 2015-06-26 18:37 - 00000837 _____ C:\Users\Public\Desktop\Argente Utilities.lnk
2015-06-26 18:37 - 2015-06-26 18:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Argente Utilities
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2015-07-26 17:15 - 2010-05-06 01:30 - 00000432 ____H C:\Windows\Tasks\User_Feed_Synchronization-{4902AA65-DC26-488B-818C-4A82EAABA173}.job
2015-07-26 16:52 - 2014-01-02 22:17 - 00001002 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-07-26 16:33 - 2015-03-23 22:47 - 01684900 _____ C:\Windows\WindowsUpdate.log
2015-07-26 16:25 - 2015-05-28 18:36 - 00000000 ____D C:\Program Files\BootRacer
2015-07-26 16:25 - 2013-12-09 23:02 - 00000551 ____H C:\Users\Public\Documents\bootracer.log
2015-07-26 16:25 - 2012-07-26 21:33 - 00000593 ____H C:\Users\Public\Documents\bootracer.ini
2015-07-26 16:25 - 2010-04-20 09:11 - 00001052 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-07-26 16:25 - 2006-11-02 15:00 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2015-07-26 16:25 - 2006-11-02 14:46 - 00003568 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
2015-07-26 16:25 - 2006-11-02 14:46 - 00003568 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
2015-07-25 23:38 - 2008-02-22 04:01 - 00000012 _____ C:\Windows\bthservsdp.dat
2015-07-25 23:38 - 2006-11-02 15:00 - 00032476 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2015-07-25 23:22 - 2010-04-20 09:11 - 00001056 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-07-25 14:09 - 2013-03-12 00:35 - 00000000 ____D C:\Users\Jack\AppData\Roaming\DMCache
2015-07-25 14:08 - 2015-06-14 02:11 - 00000000 ____D C:\Program Files\Internet Download Manager
2015-07-25 13:58 - 2013-05-11 18:12 - 00000952 _____ C:\Windows\system32\RW_{03392292-4C43-11DF-AC9C-001C26DC1E88}.dat
2015-07-25 13:55 - 2015-06-14 02:12 - 00000000 ____D C:\Users\Jack\AppData\Roaming\IDM
2015-07-25 13:27 - 2010-04-24 16:51 - 00000000 ____D C:\ProgramData\TEMP
2015-07-24 16:14 - 2013-05-29 21:33 - 00000000 ____D C:\Users\Jack\AppData\Roaming\Notepad++
2015-07-24 16:14 - 2013-05-29 21:33 - 00000000 ____D C:\Program Files\Notepad++
2015-07-24 16:11 - 2014-02-20 18:21 - 00000000 ____D C:\Users\Jack\AppData\Roaming\WiseUpdate
2015-07-23 17:57 - 2013-08-28 00:56 - 00000766 _____ C:\Users\Public\Desktop\CCleaner.lnk
2015-07-23 17:57 - 2013-08-28 00:56 - 00000000 ____D C:\Program Files\CCleaner
2015-07-23 17:53 - 2012-07-10 18:09 - 00000000 ____D C:\Users\Jack\AppData\Roaming\Wise Disk Cleaner
2015-07-23 01:15 - 2015-05-27 16:46 - 00000000 ____D C:\ProgramData\McAfee
2015-07-23 01:12 - 2015-03-14 21:49 - 00000000 ____D C:\tempDIR
2015-07-22 22:14 - 2015-02-05 19:29 - 00098520 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2015-07-22 21:17 - 2014-02-26 17:09 - 00000000 ____D C:\Windows\SoftwareDistribution.Old
2015-07-22 16:48 - 2013-05-10 23:24 - 00000000 ____D C:\Users\Jack\AppData\Local\CrashDumps
2015-07-22 16:45 - 2015-06-22 23:21 - 00000000 ____D C:\Users\Jack\AppData\Roaming\uTorrent
2015-07-21 21:07 - 2006-11-02 12:23 - 00000378 _____ C:\Windows\win.ini
2015-07-21 20:27 - 2015-03-31 20:53 - 00073216 _____ (G Data Software AG) C:\Windows\system32\Drivers\PktIcpt.sys
2015-07-21 20:25 - 2015-03-31 20:52 - 00054272 _____ (G Data Software AG) C:\Windows\system32\Drivers\gdwfpcd32.sys
2015-07-21 20:25 - 2015-03-31 20:52 - 00001752 _____ C:\Users\Public\Desktop\G DATA ANTIVIRUS.lnk
2015-07-21 20:25 - 2015-03-31 20:51 - 00161280 _____ (G Data Software AG) C:\Windows\system32\Drivers\MiniIcpt.sys
2015-07-21 20:25 - 2015-03-31 20:51 - 00112640 _____ (G Data Software AG) C:\Windows\system32\Drivers\GDBehave.sys
2015-07-21 20:25 - 2015-03-31 20:51 - 00087040 _____ (G Data Software AG) C:\Windows\system32\Drivers\HookCentre.sys
2015-07-21 20:24 - 2010-04-19 11:12 - 00000000 ____D C:\Program Files\Common Files\G DATA
2015-07-20 19:07 - 2013-04-21 18:41 - 03888522 _____ C:\Windows\system32\Drivers\Cat.DB
2015-07-19 19:58 - 2013-03-06 21:14 - 00000000 ____D C:\ProgramData\IPProtector
2015-07-19 14:50 - 2010-06-16 11:01 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2015-07-18 14:52 - 2014-11-02 15:54 - 00001745 _____ C:\Users\Jack\Desktop\SUMo.lnk
2015-07-17 17:49 - 2013-10-24 18:47 - 00247296 _____ (Microsoft Corporation) C:\Windows\system32\shsvcs.dll
2015-07-17 17:49 - 2013-10-24 18:47 - 00240128 _____ (Microsoft Corporation) C:\Windows\system32\uxtheme.dll
2015-07-17 17:49 - 2013-09-11 18:44 - 00615936 _____ (Microsoft Corporation) C:\Windows\system32\themeui.dll
2015-07-17 17:47 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\fr-FR
2015-07-15 17:06 - 2006-11-02 12:33 - 01304048 _____ C:\Windows\system32\PerfStringBackup.INI
2015-07-15 16:52 - 2014-07-10 18:38 - 00000000 ____D C:\Windows\system32\MRT
2015-07-14 18:51 - 2015-06-14 02:11 - 00000796 _____ C:\Users\Jack\Desktop\Internet Download Manager.lnk
2015-07-14 14:48 - 2014-01-02 22:17 - 00778416 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2015-07-14 14:48 - 2014-01-02 22:17 - 00142512 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2015-07-13 18:22 - 2010-05-10 20:41 - 00000000 ____D C:\Users\Administrateur
2015-07-13 18:22 - 2010-04-19 09:50 - 00000000 ____D C:\Users\Jack
2015-07-13 18:22 - 2008-02-22 04:25 - 00000000 ___HD C:\Users\IUSR_NMPR
2015-07-13 18:22 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\spool
2015-07-13 18:22 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\registration
2015-07-13 18:22 - 2006-11-02 12:22 - 97517568 _____ C:\Windows\system32\config\system_previous
2015-07-13 18:22 - 2006-11-02 12:22 - 51642368 _____ C:\Windows\system32\config\software_previous
2015-07-13 18:22 - 2006-11-02 12:22 - 40632320 _____ C:\Windows\system32\config\components_previous
2015-07-13 18:22 - 2006-11-02 12:22 - 05062656 _____ C:\Windows\system32\config\default_previous
2015-07-13 18:22 - 2006-11-02 12:22 - 00061440 _____ C:\Windows\system32\config\sam_previous
2015-07-13 18:22 - 2006-11-02 12:22 - 00028672 _____ C:\Windows\system32\config\security_previous
2015-07-12 22:33 - 2015-03-13 01:20 - 00000000 ___HD C:\Users\Jack\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup (Disabled by Starter)
2015-07-12 22:15 - 2013-12-11 01:17 - 00000120 _____ C:\0.bak
2015-07-12 22:15 - 2012-09-15 12:29 - 00000000 ____D C:\temp
2015-07-12 18:20 - 2014-06-05 20:48 - 00035064 _____ C:\Windows\system32\Drivers\TrueSight.sys
2015-07-12 13:11 - 2015-03-25 21:33 - 00000000 ____D C:\ProgramData\Ashampoo
2015-07-12 12:38 - 2015-06-14 02:11 - 00000000 ____D C:\Users\Jack\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Download Manager
2015-07-12 12:38 - 2015-06-04 01:55 - 00000000 ____D C:\Users\Jack\Documents\wlan-optimizer
2015-07-12 12:38 - 2015-05-28 18:36 - 00000000 ____D C:\Users\Jack\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BootRacer
2015-07-12 12:38 - 2015-04-07 18:15 - 00000000 ____D C:\Users\Jack\AppData\Roaming\ZHP
2015-07-12 12:38 - 2014-09-26 23:49 - 00000000 ____D C:\Users\Jack\Documents\gdata2015
2015-07-12 12:38 - 2014-07-02 09:31 - 00000000 ____D C:\Users\Jack\Documents\inf ne pas supprimer
2015-07-12 12:38 - 2014-06-13 19:51 - 00000000 ____D C:\Users\Jack\AppData\Roaming\.ACEStream
2015-07-12 12:38 - 2013-12-07 20:26 - 00000000 ____D C:\Users\Jack\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2015-07-12 12:38 - 2013-10-24 22:14 - 00000000 ____D C:\Users\Jack\Documents\UniversalThemePatcher
2015-07-12 12:38 - 2013-01-16 22:29 - 00000000 ____D C:\Users\Jack\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\RiccoVPN
2015-07-12 12:38 - 2012-12-07 00:22 - 00000000 ____D C:\Users\Jack\AppData\Roaming\DVDVideoSoft
2015-07-12 12:38 - 2012-12-03 21:28 - 00000000 ____D C:\Users\Jack\AppData\Roaming\FreeFLVConverter
2015-07-12 12:38 - 2012-10-06 20:22 - 00000000 ____D C:\Users\Jack\Documents\PowerDVD 12 Ultra v12.0.1312.54 PreActivated [ADHDerby]
2015-07-12 12:38 - 2012-10-03 14:52 - 00000000 ____D C:\Users\Jack\AppData\Roaming\vlc
2015-07-12 12:38 - 2012-09-19 18:42 - 00000000 ____D C:\Users\Jack\AppData\Roaming\Wise Registry Cleaner
2015-07-12 12:38 - 2012-01-09 20:11 - 00000000 ____D C:\Users\Jack\AppData\Roaming\clesta
2015-07-12 12:38 - 2011-03-22 17:24 - 00000000 ____D C:\Users\Jack\Documents\startupunblocker_fr
2015-07-12 12:38 - 2011-02-06 20:37 - 00000000 ____D C:\Users\Jack\Documents\Vista_Black_Shellstyle_by_vistaman91
2015-07-12 12:38 - 2011-01-03 17:31 - 00000000 ____D C:\Users\Jack\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SuperCopier2
2015-07-12 12:38 - 2011-01-03 17:08 - 00000000 ____D C:\Users\Jack\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\NirSoft BlueScreenView
2015-07-12 12:38 - 2011-01-03 15:12 - 00000000 ____D C:\Users\Jack\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CodeStuff Starter
2015-07-12 12:38 - 2010-12-03 18:57 - 00000000 ____D C:\Users\Jack\Documents\Denial_Cursor_Pack___Blue_by_Androow
2015-07-12 12:38 - 2010-08-20 16:11 - 00000000 ____D C:\Users\Jack\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Unlocker
2015-07-12 12:38 - 2010-05-24 03:19 - 00000000 ____D C:\Users\Jack\Documents\Programme d'installation d'Adobe Reader 9
2015-07-12 12:38 - 2010-04-20 10:47 - 00000000 ____D C:\Users\Jack\AppData\Local\Installer1240
2015-07-12 12:38 - 2010-04-19 09:51 - 00000000 ____D C:\Users\Jack\AppData\Roaming\GTek
2015-07-12 12:38 - 2010-04-19 09:50 - 00000000 ___RD C:\Users\Jack\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2015-07-12 12:38 - 2010-04-19 09:50 - 00000000 ___RD C:\Users\Jack\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-07-12 12:38 - 2008-02-22 04:23 - 00000000 ____D C:\Program Files\XPSMiniViewGadget
2015-07-11 21:23 - 2015-03-25 21:33 - 00000000 ____D C:\Program Files\Ashampoo
2015-07-10 14:15 - 2010-08-18 18:33 - 00000000 ____D C:\Program Files\Unlocker
2015-07-10 00:24 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\LogFiles
2015-07-09 18:25 - 2013-12-16 19:48 - 00000000 ____D C:\ProgramData\ProductData
2015-07-09 17:56 - 2013-05-11 18:12 - 00005656 _____ C:\config.xml
2015-07-09 17:55 - 2013-05-11 18:12 - 00024624 _____ C:\Windows\system32\RW_FileType.dat
2015-07-09 17:55 - 2013-05-11 18:12 - 00014560 _____ C:\Windows\system32\RW_{5BC783AA-E0E9-11DC-8D9F-806E6F6E6963}.dat
2015-07-09 17:55 - 2013-05-11 18:12 - 00010228 _____ C:\Windows\system32\RW_AppData.dat
2015-07-09 17:55 - 2013-05-11 18:12 - 00005936 _____ C:\Windows\system32\RW_{5BC783AB-E0E9-11DC-8D9F-806E6F6E6963}.dat
2015-07-09 17:55 - 2013-05-11 18:12 - 00000372 _____ C:\Windows\system32\RW_FileFlag.dat
2015-07-09 17:55 - 2013-05-11 18:12 - 00000168 _____ C:\Windows\system32\RW_{4B2A6942-6040-11DF-9494-001C26DC1E88}.dat
2015-07-07 23:16 - 2014-01-12 01:32 - 00000000 ____D C:\ProgramData\Condusiv Technologies
2015-07-07 23:16 - 2013-05-10 19:18 - 00000000 ____D C:\Program Files\Condusiv Technologies
2015-07-07 23:16 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\Help
2015-07-04 14:00 - 2012-06-20 20:40 - 00000000 ____D C:\Users\Jack\AppData\Roaming\GlarySoft
2015-07-03 17:28 - 2012-06-22 20:40 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service
2015-07-03 16:55 - 2015-05-14 23:34 - 00000000 ____D C:\Program Files\Mozilla Firefox
2015-07-03 08:49 - 2006-11-02 12:24 - 127070192 _____ (Microsoft Corporation) C:\Windows\system32\mrt.exe
2015-07-03 02:43 - 2006-11-02 13:18 - 00000000 ___RD C:\Users\Public
2015-07-03 02:05 - 2006-11-02 13:18 - 00000000 __RSD C:\Windows\Media
2015-06-30 21:45 - 2015-02-05 19:28 - 00000877 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2015-06-30 21:45 - 2015-02-05 19:28 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2015-06-30 21:45 - 2015-02-05 19:28 - 00000000 ____D C:\Program Files\Malwarebytes Anti-Malware
2015-06-28 17:57 - 2006-11-02 13:18 - 00000000 ___RD C:\Windows\Offline Web Pages
2015-06-27 18:22 - 2012-10-24 16:21 - 00002411 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
2015-06-26 22:42 - 2010-04-20 15:47 - 00000000 ____D C:\Windows\pss
==================== Files in the root of some directories =======
2012-01-09 20:11 - 2012-01-09 20:11 - 0000031 _____ () C:\Program Files\ys.pcid
2012-12-02 00:57 - 2014-05-15 19:08 - 0000000 _____ () C:\Users\Jack\AppData\Roaming\.googlewebacchosts
2012-07-24 17:55 - 2012-07-24 18:47 - 0000748 _____ () C:\Users\Jack\AppData\Roaming\AtomicAlarmClock.ini
2014-11-06 20:36 - 2014-11-06 20:38 - 0003098 _____ () C:\Users\Jack\AppData\Roaming\DriverAgent.log
2014-09-26 22:59 - 2015-03-31 20:51 - 0001558 _____ () C:\Users\Jack\AppData\Roaming\gdscan.log
2015-03-20 00:05 - 2015-03-20 01:09 - 0000115 _____ () C:\Users\Jack\AppData\Roaming\LogFile.txt
2014-06-05 23:27 - 2014-06-05 23:27 - 0000046 _____ () C:\Users\Jack\AppData\Roaming\WB.CFG
2012-07-05 00:09 - 2012-07-05 00:09 - 0000000 _____ () C:\Users\Jack\AppData\Roaming\wklnhst.dat
2013-05-11 22:48 - 2014-07-20 19:54 - 0262117 _____ () C:\Users\Jack\AppData\Local\ars.cache
2013-05-11 22:51 - 2014-07-20 19:54 - 1084987 _____ () C:\Users\Jack\AppData\Local\census.cache
2010-04-19 09:50 - 2014-01-18 11:08 - 0001356 _____ () C:\Users\Jack\AppData\Local\d3d9caps.dat
2012-07-24 17:09 - 2012-07-24 17:10 - 0000055 _____ () C:\Users\Jack\AppData\Local\DVDPATH.TXT
2013-05-11 18:24 - 2013-05-11 18:24 - 0000036 _____ () C:\Users\Jack\AppData\Local\housecall.guid.cache
2014-01-09 08:55 - 2014-01-09 08:55 - 0000008 _____ () C:\Users\Jack\AppData\Local\Temp0055401D.log
2010-06-06 10:20 - 2010-06-06 10:20 - 0000778 _____ () C:\Users\Jack\AppData\Local\Temp1.html
2010-06-06 10:23 - 2010-06-06 10:23 - 0004472 _____ () C:\Users\Jack\AppData\Local\Temp12.html
2012-05-16 19:30 - 2012-05-16 19:37 - 0017408 _____ () C:\Users\Jack\AppData\Local\WebpageIcons.db
2014-05-05 22:18 - 2014-05-05 22:18 - 0000255 _____ () C:\ProgramData\fontcacheev1.dat
2014-11-02 17:20 - 2014-11-02 17:20 - 0004131 _____ () C:\ProgramData\mtbjfghn.xbe
Some files in TEMP:
====================
C:\Users\Jack\AppData\Local\Temp\xmlUpdater.exe
==================== Bamital & volsnap Check =================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2015-07-26 16:33
==================== End of log ============================
Ran by Jack (administrator) on PC-DE-JACK (26-07-2015 17:14:37)
Running from C:\Users\Jack\Desktop
Loaded Profiles: IUSR_NMPR & Jack (Available Profiles: IUSR_NMPR & Jack & Administrateur)
Platform: Microsoft® Windows Vista™ Édition Intégrale Service Pack 2 (X86) Language: Français (France)
Internet Explorer Version 9 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(G Data Software AG) C:\Program Files\Common Files\G DATA\GDScan\GDScan.exe
(G Data Software AG) C:\Program Files\G Data\AntiVirus\AVK\AVKWCtl.exe
(Microsoft Corporation) C:\Windows\System32\SLsvc.exe
(Greatis Software, LLC) C:\Program Files\BootRacer\BootRacerServ.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(G Data Software AG) C:\Program Files\G Data\AntiVirus\AVKTray\AVKTray.exe
() C:\Program Files\Adobe\Photoshop Elements 6.0\PhotoshopElementsFileAgent.exe
(Intel(R) Corporation) C:\Program Files\Intel\IntelDH\CCU\AlertService.exe
(G Data Software AG) C:\Program Files\Common Files\G DATA\AVKProxy\AVKProxy.exe
(G Data Software AG) C:\Program Files\G Data\AntiVirus\AVK\AVKService.exe
(CyberLink) C:\Program Files\CyberLink\PowerDVD12\Kernel\DMS\CLMSServerPDVD12.exe
() C:\Program Files\Common Files\Intel\IntelDH\NMS\AdpPlugins\DQLWinService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(Intel Corporation) C:\Windows\System32\IPROSetMonitor.exe
(CybelSoft) C:\Program Files\ma-config.com\MaConfigAgent.exe
(Intel(R) Corporation) C:\Program Files\Common Files\Intel\IntelDH\NMS\NMSCore\NMSCore.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe
(Protexis Inc.) C:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe
(Intel(R) Corporation) C:\Program Files\Intel\IntelDH\Intel Media Server\Media Server\bin\QualityManager.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe
(SFX TEAM) C:\Program Files\SuperCopier2\SuperCopier2.exe
(none) C:\Users\Jack\Documents\wlan-optimizer\WLAN Optimizer.exe
(Microsoft Corporation) C:\Program Files\Windows Media Player\wmpnscfg.exe
(Stardock Corporation) C:\Program Files\Stardock\CursorFX\CursorFX.exe
(Creative Technology Ltd) C:\Program Files\Creative\Sound Blaster X-Fi\Volume Panel\VolPanlu.exe
() C:\Program Files\XPSMiniViewGadget\XPSMiniViewGadget.exe
(Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE
(Intel(R) Corporation) C:\Program Files\Intel\IntelDH\Intel Media Server\Media Server\bin\issm.exe
(Intel(R) Corporation) C:\Program Files\Intel\IntelDH\Intel Media Server\Shells\MCLServiceATL.exe
(Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE
(Creative Technology Ltd) C:\Windows\System32\CTxfispi.exe
(Intel(R) Corporation) C:\Program Files\Intel\IntelDH\Intel Media Server\Shells\Remote UI Service.exe
(Glarysoft Ltd) C:\Program Files\Glary Utilities 5\Integrator.exe
(CyberLink Corp.) C:\Program Files\CyberLink\PowerDVD12\Kernel\DMP\CLHNServer\CLHNServiceForPowerDVD12.exe
(Condusiv Technologies) C:\Program Files\Condusiv Technologies\Diskeeper\DkService.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Microsoft Corporation) C:\Program Files\Windows Live\Mail\wlmail.exe
(Microsoft Corporation) C:\Program Files\Windows Live\Contacts\wlcomm.exe
(Microsoft Corporation) C:\Windows\System32\conime.exe
(Tonec Inc.) C:\Program Files\Internet Download Manager\IDMan.exe
(Tonec Inc.) C:\Program Files\Internet Download Manager\IEMonitor.exe
(Microsoft Corporation) C:\Windows\System32\conime.exe
==================== Registry (Whitelisted) ==================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [NvBackend] => C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe [2631824 2015-07-14] (NVIDIA Corporation)
HKLM\...\Winlogon: [Userinit] C:\Windows\system32\userinit.exe,C:\Program Files\G Data\AntiVirus\AVKTray\AVKTray.exe,
HKLM\...\Policies\Explorer\Run: [BootRacer] => C:\Program Files\BootRacer\Bootrace.exe [3901200 2015-03-24] (Greatis Software)
HKU\S-1-5-21-2838385541-2699793272-862096273-1000\...\Run: [WindowsWelcomeCenter] => "rundll32.exe" oobefldr.dll,ShowWelcomeCenter
HKU\S-1-5-21-2838385541-2699793272-862096273-1000\...\Run: [swg] => C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [68856 2008-02-22] (Google Inc.)
HKU\S-1-5-21-2838385541-2699793272-862096273-1000\...\Run: [WMPNSCFG] => C:\Program Files\Windows Media Player\WMPNSCFG.exe [202240 2008-01-19] (Microsoft Corporation)
HKU\S-1-5-21-2838385541-2699793272-862096273-1000\...\Run: [SuperCopier2.exe] => C:\Program Files\SuperCopier2\SuperCopier2.exe [955392 2009-08-16] (SFX TEAM)
HKU\S-1-5-21-2838385541-2699793272-862096273-1000\...\Run: [CursorFX] => C:\Program Files\Stardock\CursorFX\CursorFX.exe [432784 2012-05-10] (Stardock Corporation)
HKU\S-1-5-21-2838385541-2699793272-862096273-1000\...\RunOnce: [InetReg] => "C:\Program Files\Creative\Enregistrement du produit\French\InetReg.exe" /PreProcess=RegFlash.exe /Delay=6
HKU\S-1-5-21-2838385541-2699793272-862096273-1000\...\RunOnce: [CTAutoUpdate] => C:\Program Files\Creative\Shared Files\Software Update\AutoUpdate.exe [430968 2009-01-15] (Creative Technology Ltd)
HKU\S-1-5-21-2838385541-2699793272-862096273-1001\...\Run: [SuperCopier2.exe] => C:\Program Files\SuperCopier2\SuperCopier2.exe [955392 2009-08-16] (SFX TEAM)
HKU\S-1-5-21-2838385541-2699793272-862096273-1001\...\Run: [WLAN Optimizer] => C:\Users\Jack\Documents\wlan-optimizer\WLAN Optimizer.exe [109056 2009-08-07] (none)
HKU\S-1-5-21-2838385541-2699793272-862096273-1001\...\Run: [WMPNSCFG] => C:\Program Files\Windows Media Player\WMPNSCFG.exe [202240 2008-01-19] (Microsoft Corporation)
HKU\S-1-5-21-2838385541-2699793272-862096273-1001\...\Run: [GUDelayStartup] => C:\Program Files\Glary Utilities 5\StartupManager.exe [37152 2015-07-20] (Glarysoft Ltd)
HKU\S-1-5-21-2838385541-2699793272-862096273-1001\...\Run: [CursorFX] => C:\Program Files\Stardock\CursorFX\CursorFX.exe [432784 2012-05-10] (Stardock Corporation)
Lsa: [Notification Packages] scecli C:\Program Files\WIDCOMM\Bluetooth Software\BtwProximityCP.dll
Startup: C:\Users\Jack\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Panneau de volume Creative.lnk [2015-05-18]
ShortcutTarget: Panneau de volume Creative.lnk -> C:\Program Files\Creative\Sound Blaster X-Fi\Volume Panel\VolPanlu.exe (Creative Technology Ltd)
ShellIconOverlayIdentifiers: [IDM Shell Extension] -> {CDC95B92-E27C-4745-A8C5-64A52A78855D} => C:\Program Files\Internet Download Manager\IDMShellExt.dll [2015-07-24] (Tonec Inc.)
BootExecute: autocheck autochk *
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Bar = http://search.msn.com/spbasic.htm
HKU\S-1-5-21-2838385541-2699793272-862096273-1000\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-2838385541-2699793272-862096273-1000\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.google.com/ie
HKU\S-1-5-21-2838385541-2699793272-862096273-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://fr.msn.com/?ocid=iehp
HKU\S-1-5-21-2838385541-2699793272-862096273-1001\Software\Microsoft\Internet Explorer\Main,Search Bar = http://search.msn.com/spbasic.htm
HKU\S-1-5-21-2838385541-2699793272-862096273-1001\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://fr.msn.com/?ocid=iehp
HKU\S-1-5-21-2838385541-2699793272-862096273-1001\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
SearchScopes: HKLM -> {2f23ab71-4ac6-41f2-a955-ea576e553146} URL =
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-2838385541-2699793272-862096273-1001 -> DefaultScope {2f23ab71-4ac6-41f2-a955-ea576e553146} URL = http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}
SearchScopes: HKU\S-1-5-21-2838385541-2699793272-862096273-1001 -> {2f23ab71-4ac6-41f2-a955-ea576e553146} URL = http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}
BHO: IDM integration (IDMIEHlprObj Class) -> {0055C089-8582-441B-A0BF-17B458C2A3A8} -> C:\Program Files\Internet Download Manager\IDMIECC.dll [2015-07-08] (Internet Download Manager, Tonec Inc.)
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2015-07-17] (Google Inc.)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2015-07-17] (Google Inc.)
DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} http://download.eset.com/special/eos/OnlineScanner.cab
DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
Handler: ms-itss - {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Program Files\Common Files\Microsoft Shared\Information Retrieval\msitss.dll [2006-06-05] (Microsoft Corporation)
ShellExecuteHooks: DVDIdleShell Class - {93994DE8-8239-4655-B1D1-5F4E91300429} - C:\Program Files\DVD Region+CSS Free\DVDShell.dll [49152 2004-10-09] (Fengtao Software Inc.)
Winsock: Catalog5 08 C:\Program Files\Bonjour\mdnsNSP.dll [152864 2010-05-18] (Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 212.27.40.241 212.27.40.240
Tcpip\..\Interfaces\{C9B1F236-BBF0-4A34-8491-7F8885D61C07}: [NameServer] 129.250.35.251,212.27.40.241
Tcpip\..\Interfaces\{C9B1F236-BBF0-4A34-8491-7F8885D61C07}: [DhcpNameServer] 212.27.40.241 212.27.40.240
StartMenuInternet: IEXPLORE.EXE - iexplore.exe
FireFox:
========
FF ProfilePath: C:\Users\Jack\AppData\Roaming\Mozilla\Firefox\Profiles\30rifqh7.default-1433685663940
FF NewTab: https://www.google.fr/
FF Homepage: https://www.google.fr/
FF NetworkProxy: "autoconfig_url", "http://proxyfreeyoutube.free.fr/youtube-ovh.pac"
FF NetworkProxy: "type", 2
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_18_0_0_209.dll [2015-07-14] ()
FF Plugin: @microsoft.com/WPF,version=3.5 -> c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll [2008-07-30] (Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.28.1\npGoogleUpdate3.dll [2015-07-15] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.28.1\npGoogleUpdate3.dll [2015-07-15] (Google Inc.)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2014-08-05] (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Users\Jack\AppData\Roaming\mozilla\plugins\np-mswmp.dll [2009-09-25] (Microsoft Corporation)
FF Extension: Fast Translation - C:\Users\Jack\AppData\Roaming\Mozilla\Firefox\Profiles\30rifqh7.default-1433685663940\Extensions\fasttrans@kemot [2015-06-07]
FF Extension: Favicon Restorer - C:\Users\Jack\AppData\Roaming\Mozilla\Firefox\Profiles\30rifqh7.default-1433685663940\Extensions\faviconrestorer@masserog.it [2015-06-07]
FF Extension: HTTPS-Everywhere - C:\Users\Jack\AppData\Roaming\Mozilla\Firefox\Profiles\30rifqh7.default-1433685663940\Extensions\https-everywhere@eff.org [2015-07-04]
FF Extension: Favicon Icons for Search Engine Results - C:\Users\Jack\AppData\Roaming\Mozilla\Firefox\Profiles\30rifqh7.default-1433685663940\Extensions\jid0-Ap5n9ZGglDRSNbv6H8bIvOT3iuw@jetpack [2015-07-25]
FF Extension: No Name - C:\Users\Jack\AppData\Roaming\Mozilla\Firefox\Profiles\30rifqh7.default-1433685663940\Extensions\trash [2015-07-25]
FF Extension: BlackFox V2-Blue - C:\Users\Jack\AppData\Roaming\Mozilla\Firefox\Profiles\30rifqh7.default-1433685663940\Extensions\zigboom.designs@gmail(181).com [2015-07-11]
FF Extension: FT DeepDark - C:\Users\Jack\AppData\Roaming\Mozilla\Firefox\Profiles\30rifqh7.default-1433685663940\Extensions\{77d2ed30-4cd2-11e0-b8af-0800200c9a66} [2015-06-25]
FF Extension: Memory Fox - C:\Users\Jack\AppData\Roaming\Mozilla\Firefox\Profiles\30rifqh7.default-1433685663940\Extensions\{E173B749-DB5B-4fd2-BA0E-94ECEA0CA55B} [2015-07-23]
FF Extension: Disconnect - C:\Users\Jack\AppData\Roaming\Mozilla\Firefox\Profiles\30rifqh7.default-1433685663940\Extensions\2.0@disconnect.me.xpi [2015-06-07]
FF Extension: Custom New Tab - C:\Users\Jack\AppData\Roaming\Mozilla\Firefox\Profiles\30rifqh7.default-1433685663940\Extensions\CNT@ednovak.net.xpi [2015-06-07]
FF Extension: Blur - C:\Users\Jack\AppData\Roaming\Mozilla\Firefox\Profiles\30rifqh7.default-1433685663940\Extensions\donottrackplus@abine.com.xpi [2015-07-14]
FF Extension: Enforce Encryption - C:\Users\Jack\AppData\Roaming\Mozilla\Firefox\Profiles\30rifqh7.default-1433685663940\Extensions\enforceencryption@palant.de.xpi [2015-06-07]
FF Extension: Image2Icon - C:\Users\Jack\AppData\Roaming\Mozilla\Firefox\Profiles\30rifqh7.default-1433685663940\Extensions\img2ico@mingyi.org.xpi [2015-06-07]
FF Extension: DeferredTo - C:\Users\Jack\AppData\Roaming\Mozilla\Firefox\Profiles\30rifqh7.default-1433685663940\Extensions\jid0-7jRA83vLgp1WJxyHcbp43vxnnzs@jetpack.xpi [2015-07-12]
FF Extension: YouTube Repeater - C:\Users\Jack\AppData\Roaming\Mozilla\Firefox\Profiles\30rifqh7.default-1433685663940\Extensions\jid1-eUaC9qdIgKgiWw@jetpack.xpi [2015-06-07]
FF Extension: I don't care about cookies - C:\Users\Jack\AppData\Roaming\Mozilla\Firefox\Profiles\30rifqh7.default-1433685663940\Extensions\jid1-KKzOGWgsW3Ao4Q@jetpack.xpi [2015-07-03]
FF Extension: AdBlock for YouTube™ - C:\Users\Jack\AppData\Roaming\Mozilla\Firefox\Profiles\30rifqh7.default-1433685663940\Extensions\jid1-q4sG8pYhq8KGHs@jetpack.xpi [2015-06-17]
FF Extension: google-no-tracking-url - C:\Users\Jack\AppData\Roaming\Mozilla\Firefox\Profiles\30rifqh7.default-1433685663940\Extensions\jid1-zUrvDCat3xoDSQ@jetpack.xpi [2015-06-07]
FF Extension: betterFox - Make your browsing experience 15% faster. - C:\Users\Jack\AppData\Roaming\Mozilla\Firefox\Profiles\30rifqh7.default-1433685663940\Extensions\multirevenue@googlemail.com.xpi [2015-07-23]
FF Extension: Places Maintenance - C:\Users\Jack\AppData\Roaming\Mozilla\Firefox\Profiles\30rifqh7.default-1433685663940\Extensions\places-maintenance@bonardo.net.xpi [2015-06-07]
FF Extension: Restart - C:\Users\Jack\AppData\Roaming\Mozilla\Firefox\Profiles\30rifqh7.default-1433685663940\Extensions\Restart@schuzak.jp.xpi [2015-06-07]
FF Extension: Smart Referer - C:\Users\Jack\AppData\Roaming\Mozilla\Firefox\Profiles\30rifqh7.default-1433685663940\Extensions\smart-referer@meh.paranoid.pk.xpi [2015-06-07]
FF Extension: Tab Scope - C:\Users\Jack\AppData\Roaming\Mozilla\Firefox\Profiles\30rifqh7.default-1433685663940\Extensions\tabscope@xuldev.org.xpi [2015-06-07]
FF Extension: Vacuum Places Improved - C:\Users\Jack\AppData\Roaming\Mozilla\Firefox\Profiles\30rifqh7.default-1433685663940\Extensions\VacuumPlacesImproved@lultimouomo-gmail.com.xpi [2015-06-07]
FF Extension: Lyrics Here by Rob W - C:\Users\Jack\AppData\Roaming\Mozilla\Firefox\Profiles\30rifqh7.default-1433685663940\Extensions\youtube-lyrics-by-rob-w@jetpack.xpi [2015-06-07]
FF Extension: SmoothWheel (mozdev.org) - C:\Users\Jack\AppData\Roaming\Mozilla\Firefox\Profiles\30rifqh7.default-1433685663940\Extensions\{5F590AA2-1221-4113-A6F4-A4BB62414FAC}.xpi [2015-06-21]
FF Extension: IE View - C:\Users\Jack\AppData\Roaming\Mozilla\Firefox\Profiles\30rifqh7.default-1433685663940\Extensions\{6e84150a-d526-41f1-a480-a67d3fed910d}.xpi [2015-06-07]
FF Extension: deskCut - C:\Users\Jack\AppData\Roaming\Mozilla\Firefox\Profiles\30rifqh7.default-1433685663940\Extensions\{9125C9CB-BE2B-4389-A0C7-46A4BDD46AEA}.xpi [2015-06-07]
FF Extension: Adblock Plus - C:\Users\Jack\AppData\Roaming\Mozilla\Firefox\Profiles\30rifqh7.default-1433685663940\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2015-06-07]
FF Extension: Greasemonkey - C:\Users\Jack\AppData\Roaming\Mozilla\Firefox\Profiles\30rifqh7.default-1433685663940\Extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}.xpi [2015-06-07]
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF Extension: Microsoft .NET Framework Assistant - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2014-02-27]
FF HKU\S-1-5-21-2838385541-2699793272-862096273-1001\...\Firefox\Extensions: [mozilla_cc2@internetdownloadmanager.com] - C:\Users\Jack\AppData\Roaming\IDM\idmmzcc7
FF Extension: IDM integration - C:\Users\Jack\AppData\Roaming\IDM\idmmzcc7 [2015-07-25]
FF HKU\S-1-5-21-2838385541-2699793272-862096273-1001\...\Firefox\Extensions: [mozilla_cc@internetdownloadmanager.com] - C:\Users\Jack\AppData\Roaming\IDM\idmmzcc5
FF Extension: IDM CC - C:\Users\Jack\AppData\Roaming\IDM\idmmzcc5 [2015-07-14]
FF HKU\S-1-5-21-2838385541-2699793272-862096273-1001\...\SeaMonkey\Extensions: [mozilla_cc@internetdownloadmanager.com] - C:\Users\Jack\AppData\Roaming\IDM\idmmzcc5
Chrome:
=======
CHR dev: Chrome dev build detected! <======= ATTENTION
CHR Profile: C:\Users\Jack\AppData\Local\Google\Chrome\User Data\Default
CHR HKLM\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files\Internet Download Manager\IDMGCExt.crx [2015-07-24]
========================== Services (Whitelisted) =================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AdobeActiveFileMonitor6.0; C:\Program Files\Adobe\Photoshop Elements 6.0\PhotoshopElementsFileAgent.exe [124832 2007-09-11] ()
R2 AlertService; C:\Program Files\Intel\IntelDH\CCU\AlertService.exe [223448 2007-06-27] (Intel(R) Corporation)
R2 AVKProxy; C:\Program Files\Common Files\G Data\AVKProxy\AVKProxy.exe [2558072 2015-06-19] (G Data Software AG)
R2 AVKService; C:\Program Files\G Data\AntiVirus\AVK\AVKService.exe [966776 2015-06-16] (G Data Software AG)
R2 AVKWCtl; C:\Program Files\G Data\AntiVirus\AVK\AVKWCtl.exe [2907776 2015-06-16] (G Data Software AG)
R2 BootRacerServ; C:\Program Files\BootRacer\BootRacerServ.exe [65296 2014-04-30] (Greatis Software, LLC)
R2 CLHNServiceForPowerDVD12; C:\Program Files\CyberLink\PowerDVD12\Kernel\DMP\CLHNServer\CLHNServiceForPowerDVD12.exe [89864 2013-11-29] (CyberLink Corp.)
S3 Creative ALchemy AL6 Licensing Service; C:\Program Files\Common Files\Creative Labs Shared\Service\AL6Licensing.exe [79360 2013-04-20] (Creative Labs) [File not signed]
S3 Creative Audio Engine Licensing Service; C:\Program Files\Common Files\Creative Labs Shared\Service\CTAELicensing.exe [79360 2010-05-14] (Creative Labs) [File not signed]
S3 CTAudSvcService; C:\Program Files\Creative\Shared Files\CTAudSvc.exe [307200 2009-02-23] (Creative Technology Ltd) [File not signed]
S3 CyberLink PowerDVD 12 Media Server Monitor Service; C:\Program Files\CyberLink\PowerDVD12\Kernel\DMS\CLMSMonitorServicePDVD12.exe [77576 2013-11-29] (CyberLink)
R2 CyberLink PowerDVD 12 Media Server Service; C:\Program Files\CyberLink\PowerDVD12\Kernel\DMS\CLMSServerPDVD12.exe [294664 2013-11-29] (CyberLink)
S4 DellDataVault; C:\Program Files\Dell\DellDataVault\DellDataVault.exe [1942224 2015-01-31] (Dell Inc.)
S4 DellDataVaultWiz; C:\Program Files\Dell\DellDataVault\DellDataVaultWiz.exe [183504 2015-01-31] (Dell Inc.)
S3 DHTRACE; C:\Program Files\Common Files\Intel\IntelDH\bin\DHTraceController.exe [39640 2007-06-27] (Intel(R) Corporation)
R2 Diskeeper; C:\Program Files\Condusiv Technologies\Diskeeper\DkService.exe [2163064 2012-07-27] (Condusiv Technologies)
R2 DQLWinService; C:\Program Files\Common Files\Intel\IntelDH\NMS\AdpPlugins\DQLWinService.exe [208896 2007-02-12] () [File not signed]
S3 FLEXnet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [654848 2008-02-22] (Macrovision Europe Ltd.) [File not signed]
S4 FreeAgentGoNext Service; C:\Program Files\Seagate\SeagateManager\Sync\FreeAgentService.exe [189736 2009-09-25] (Seagate Technology LLC)
R3 GDScan; C:\Program Files\Common Files\G Data\GDScan\GDScan.exe [789624 2015-06-16] (G Data Software AG)
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [921232 2015-07-14] (NVIDIA Corporation)
S3 GoogleDesktopManager-051210-111108; C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe [30192 2010-06-07] (Google)
S3 IDriverT; C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe [73728 2004-10-22] (Macrovision Corporation) [File not signed]
R2 Intel(R) PROSet Monitoring Service; C:\Windows\system32\IProsetMonitor.exe [121088 2013-02-23] (Intel Corporation)
R2 ISSM; C:\Program Files\Intel\IntelDH\Intel Media Server\Media Server\bin\ISSM.exe [59096 2007-06-27] (Intel(R) Corporation)
S4 M1 Server; C:\Program Files\Intel\IntelDH\Intel Media Server\Media Server\bin\mediaserver.exe [268504 2007-06-27] ()
R2 MaConfigAgent; C:\Program Files\ma-config.com\MaConfigAgent.exe [2211968 2015-06-19] (CybelSoft)
S2 MBAMService; C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe [1133880 2015-06-18] (Malwarebytes Corporation)
R2 MCLServiceATL; C:\Program Files\Intel\IntelDH\Intel Media Server\Shells\MCLServiceATL.exe [157912 2007-06-27] (Intel(R) Corporation)
R2 NMSCore; C:\Program Files\Common Files\Intel\IntelDH\NMS\NMSCore\NMSCore.exe [317656 2007-06-27] (Intel(R) Corporation)
R2 NvNetworkService; C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe [1871504 2015-07-14] (NVIDIA Corporation)
R2 QualityManager; C:\Program Files\Intel\IntelDH\Intel Media Server\Media Server\bin\qualitymanager.exe [272600 2007-06-27] (Intel(R) Corporation)
R2 Remote UI Service; C:\Program Files\Intel\IntelDH\Intel Media Server\Shells\Remote UI Service.exe [446680 2007-06-27] (Intel(R) Corporation)
S3 RichVideo; C:\Program Files\CyberLink\Shared Files\RichVideo.exe [241734 2008-02-14] () [File not signed]
S2 RoxLiveShare10; C:\Program Files\Common Files\Roxio Shared\10.0\SharedCOM\RoxLiveShare10.exe [309744 2007-12-14] (Sonic Solutions)
R2 ShellHWDetection; C:\Windows\System32\shsvcs.dll [247296 2015-07-17] (Microsoft Corporation) [File not signed]
R2 Themes; C:\Windows\system32\shsvcs.dll [247296 2015-07-17] (Microsoft Corporation) [File not signed]
S4 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [272952 2008-01-19] (Microsoft Corporation)
S3 wltrysvc; C:\Program Files\Broadcom\Broadcom 802.11 Network Adapter\bcmwltry.exe [5127168 2014-10-30] (Broadcom Corporation) [File not signed]
S2 SessionLauncher; No ImagePath
S3 sprtsvc_dellsupportcenter; No ImagePath
==================== Drivers (Whitelisted) ====================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 BCM42RLY; C:\Windows\System32\drivers\BCM42RLY.sys [19664 2014-10-30] (Broadcom Corporation)
R0 Bhbase; C:\Windows\System32\drivers\Bhbase.sys [46440 2015-03-31] (Baidu, Inc.)
R3 btwampfl; C:\Windows\system32\drivers\btwampfl.sys [504360 2012-04-01] (Broadcom Corporation.)
S3 cpudrv; C:\Program Files\SystemRequirementsLab\cpudrv.sys [11336 2009-12-18] ()
R3 DDDriver; C:\Windows\System32\drivers\DDDriver32Dcsa.sys [20688 2015-01-31] (Dell Computer Corporation)
R3 DellProf; C:\Windows\System32\drivers\DellProf.sys [19984 2015-01-31] (Dell Computer Corporation)
R0 DKDFM; C:\Windows\System32\drivers\DKDFM.sys [35120 2012-04-05] (Condusiv Technologies)
R3 DKRtWrt; C:\Windows\System32\DRIVERS\DKRtWrt.sys [44496 2012-06-18] (Condusiv Technologies)
R0 DKTLFSMF; C:\Windows\System32\drivers\DKTLFSMF.sys [85328 2012-07-09] (Condusiv Technologies)
R0 GDBehave; C:\Windows\System32\drivers\GDBehave.sys [112640 2015-07-21] (G Data Software AG)
S3 GDKBB; C:\Windows\system32\drivers\GDKBB32.sys [24192 2015-03-31] (G Data Software AG)
S1 GDKBFlt; C:\Windows\system32\drivers\GDKBFlt32.sys [20352 2015-03-31] (G Data Software AG)
R1 GDMnIcpt; C:\Windows\system32\drivers\MiniIcpt.sys [161280 2015-07-21] (G Data Software AG)
R3 GDPkIcpt; C:\Windows\system32\drivers\PktIcpt.sys [73216 2015-07-21] (G Data Software AG)
R1 gdwfpcd; C:\Windows\System32\drivers\gdwfpcd32.sys [54272 2015-07-21] (G Data Software AG)
R1 GRD; C:\Windows\system32\drivers\GRD.sys [29528 2015-03-31] (G Data Software)
R1 GUBootStartup; C:\Windows\System32\drivers\GUBootStartup.sys [17472 2015-07-04] (Glarysoft Ltd)
R1 HookCentre; C:\Windows\system32\drivers\HookCentre.sys [87040 2015-07-21] (G Data Software AG)
R0 hotcore3; C:\Windows\System32\DRIVERS\hotcore3.sys [40496 2008-12-13] (Paragon Software Group)
R1 HWiNFO32; C:\Windows\system32\drivers\HWiNFO32.SYS [23840 2015-07-09] (REALiX(tm))
R0 iaStorA; C:\Windows\System32\DRIVERS\iaStorA.sys [1935600 2015-03-26] (Intel Corporation)
R0 iaStorF; C:\Windows\System32\DRIVERS\iaStorF.sys [27376 2015-03-26] (Intel Corporation)
R3 IntelDH; C:\Windows\System32\Drivers\IntelDH.sys [5632 2008-02-22] (Intel Corporation)
S3 LazerUsb; C:\Windows\System32\DRIVERS\LazerUsb.sys [5734400 2007-08-29] (Lumanate Inc.)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [23256 2015-06-18] (Malwarebytes Corporation)
S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [51928 2015-06-18] (Malwarebytes Corporation)
U4 msahci; No ImagePath
R0 MxEFUF; C:\Windows\System32\DRIVERS\MxEFUF32.sys [108544 2011-08-15] (Matrox Graphics Inc.) [File not signed]
S3 NAL; C:\Windows\system32\Drivers\iqvw32.sys [31048 2013-02-21] (Intel Corporation )
R2 nmsunidr; C:\Windows\System32\DRIVERS\nmsunidr.sys [5376 2007-02-18] (Gteko Ltd.)
S1 NNSHTTPS; C:\Windows\System32\DRIVERS\NNSHttps.sys [95584 2013-01-09] (Panda Security, S.L.)
R2 ntk_PowerDVD12; C:\Program Files\CyberLink\PowerDVD12\Kernel\DMP\CLHNServer\ntk_PowerDVD12.sys [74952 2013-03-15] (Cyberlink Corp.)
S3 Passthru; C:\Windows\System32\DRIVERS\PPFlt.sys [26912 2013-01-17] ()
R2 PCTAppEvent; C:\Windows\system32\drivers\PCTAppEvent.sys [163288 2012-10-22] (PC Tools)
S3 PCTBD; C:\Windows\System32\Drivers\PCTBD.sys [62688 2012-10-23] (PC Tools)
R0 PCTCore; C:\Windows\System32\drivers\PCTCore.sys [368616 2012-10-22] (PC Tools)
R0 pctDS; C:\Windows\System32\drivers\pctDS.sys [342168 2012-02-28] (PC Tools)
R0 pctEFA; C:\Windows\System32\drivers\pctEFA.sys [909728 2012-02-28] (PC Tools)
S3 PCTFW-PacketFilter; C:\Windows\system32\drivers\pctNdis-PacketFilter.sys [92608 2013-04-21] (PC Tools)
R1 pctgntdi; C:\Windows\System32\drivers\pctgntdi.sys [260760 2012-10-31] (PC Tools)
R1 pctNdisLW; C:\Windows\System32\DRIVERS\pctNdisLW.sys [60128 2013-04-21] (PC Tools)
S3 pctplfw; C:\Windows\System32\drivers\pctplfw.sys [128024 2013-04-21] (PC Tools)
S3 pctplsg; C:\Windows\System32\drivers\pctplsg.sys [71752 2012-11-01] (PC Tools)
S3 pctplsm; C:\Windows\System32\drivers\pctplsm.sys [68272 2012-11-01] (PC Tools)
R1 PCTSD; C:\Windows\System32\Drivers\PCTSD.sys [202280 2012-11-01] (PC Tools)
R3 PrivacyProtectorMP; C:\Windows\System32\DRIVERS\PPFlt.sys [26912 2013-01-17] ()
R3 SmbDrvI; C:\Windows\System32\DRIVERS\Smb_driver_Intel.sys [25328 2014-04-12] (Synaptics Incorporated)
S3 tap-tb-0901; C:\Windows\System32\DRIVERS\tap-tb-0901.sys [33280 2015-02-11] (The OpenVPN Project)
S3 tap0901; C:\Windows\System32\DRIVERS\tap0901.sys [35288 2013-08-22] (The OpenVPN Project)
R0 TfFsMon; C:\Windows\System32\drivers\TfFsMon.sys [55008 2012-10-31] (PC Tools)
S3 TfNetMon; C:\Windows\system32\drivers\TfNetMon.sys [36456 2012-10-31] (PC Tools)
R0 TFSysMon; C:\Windows\System32\drivers\TfSysMon.sys [577176 2012-10-31] (PC Tools)
R2 tifsfilter; C:\Windows\System32\DRIVERS\tifsfilt.sys [44384 2010-08-22] (Acronis)
S3 TSHWMDTCP; C:\Program Files\Intel\IntelDH\Intel Media Server\Media Server\bin\TSHWMDTCP.sys [14552 2007-06-27] ()
S3 WiseHDInfo; C:\Windows\WiseHDInfo32.dll [11816 2015-03-23] (wisecleaner.com) [File not signed]
R1 WiseTDIFw; C:\Windows\WiseTDIFw.sys [41512 2015-03-23] (WiseCleaner.com) [File not signed]
R2 {73526619-C24F-470B-9BED-53D455FBB5C6}; C:\Program Files\CyberLink\PowerDVD12\Common\NavFilter\000.fcl [26824 2013-11-29] (CyberLink Corp.)
S1 ArcSec; No ImagePath
S4 blbdrive; No ImagePath
S3 CT20XUT.DLL; No ImagePath
S3 CTEXFIFX.DLL; No ImagePath
S3 CTHWIUT.DLL; No ImagePath
U3 DfSdkS; No ImagePath
S3 IpInIp; No ImagePath
S3 NwlnkFlt; No ImagePath
S3 NwlnkFwd; No ImagePath
S3 PcdrNdisuio; No ImagePath
S1 RawDisk3; \??\C:\Windows\system32\drivers\rawdsk3.sys [X]
S3 tapSF0901; system32\DRIVERS\tapSF0901.sys [X]
S3 udsstub; system32\DRIVERS\udsstub.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2015-07-26 17:14 - 2015-07-26 17:15 - 00030333 _____ C:\Users\Jack\Desktop\FRST.txt
2015-07-26 17:14 - 2015-07-26 17:14 - 00000000 ____D C:\FRST
2015-07-26 17:09 - 2015-07-26 17:09 - 01650688 _____ (Farbar) C:\Users\Jack\Desktop\FRST.exe
2015-07-26 16:33 - 2015-07-26 16:33 - 00000000 ____D C:\Users\Jack\AppData\Local\{2A61EFF6-D4A2-464E-A4B3-131D562ABFC5}
2015-07-25 14:15 - 2015-07-25 14:15 - 00000000 ____D C:\Users\Jack\AppData\Local\Adobe
2015-07-25 13:28 - 2015-07-25 13:28 - 00000000 ____D C:\Users\Jack\AppData\Local\{5EDD3C00-6D3A-4458-A3A2-50A1B46582BB}
2015-07-24 16:16 - 2015-07-24 16:16 - 00000000 ____D C:\Users\Jack\AppData\Local\{F6F194D3-F572-470F-85B7-D38B159C1682}
2015-07-24 16:14 - 2015-07-24 16:14 - 00000000 ____D C:\Users\Jack\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Notepad++
2015-07-24 15:26 - 2015-06-12 04:00 - 00123968 _____ (Tonec Inc.) C:\Windows\system32\Drivers\idmwfp.sys
2015-07-23 20:19 - 2015-07-23 20:19 - 00000000 ____D C:\Users\Jack\AppData\Local\{81FA917B-917D-4B76-9617-09E8C962B916}
2015-07-23 18:06 - 2015-07-23 18:06 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack
2015-07-23 18:06 - 2015-07-23 18:06 - 00000000 ____D C:\Program Files\K-Lite Codec Pack
2015-07-23 18:06 - 2015-07-21 20:00 - 00112128 _____ C:\Windows\system32\ff_vfw.dll
2015-07-23 18:06 - 2015-06-22 15:25 - 00240128 _____ C:\Windows\system32\xvidvfw.dll
2015-07-23 18:06 - 2015-06-22 15:24 - 00655872 _____ C:\Windows\system32\xvidcore.dll
2015-07-23 18:06 - 2015-02-28 17:21 - 03591680 _____ (x264vfw project) C:\Windows\system32\x264vfw.dll
2015-07-23 18:06 - 2012-07-21 12:54 - 00122880 _____ (fccHandler) C:\Windows\system32\ac3acm.acm
2015-07-23 18:06 - 2011-12-07 19:32 - 00216064 _____ ( ) C:\Windows\system32\lagarith.dll
2015-07-23 01:18 - 2015-07-23 01:18 - 00083616 _____ C:\Users\Jack\AppData\Local\GDIPFONTCACHEV1.DAT
2015-07-23 01:15 - 2015-07-23 17:43 - 00004146 _____ C:\Windows\PFRO.log
2015-07-23 01:15 - 2015-07-23 01:15 - 00364032 _____ C:\Windows\system32\FNTCACHE.DAT
2015-07-22 14:08 - 2015-07-22 14:08 - 00000000 ____D C:\Users\Jack\AppData\Local\{0E9BA44D-8616-46E7-9C1C-3564AD9C3BE8}
2015-07-21 22:29 - 2015-07-21 22:29 - 00000000 ____D C:\Users\Jack\AppData\Local\{0E308A36-72CB-4877-9398-1AC551D6061D}
2015-07-21 20:25 - 2015-07-21 20:25 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\G DATA ANTIVIRUS
2015-07-20 19:07 - 2015-07-14 18:02 - 00034304 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2015-07-20 19:07 - 2015-07-14 16:23 - 00296960 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2015-07-17 17:48 - 2015-07-17 17:48 - 16467456 _____ (Microsoft Corporation) C:\Windows\system32\imageres.dll
2015-07-17 16:27 - 2015-07-25 13:27 - 00000000 ____D C:\Program Files\SpywareBlaster
2015-07-17 16:27 - 2015-07-17 16:27 - 00000850 _____ C:\Users\Public\Desktop\SpywareBlaster.lnk
2015-07-17 16:27 - 2015-07-17 16:27 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SpywareBlaster
2015-07-16 17:26 - 2015-07-16 17:26 - 00000000 ____D C:\Users\Jack\AppData\Local\{02913C60-AD55-4D1D-ABCC-CF36F48D371E}
2015-07-15 17:13 - 2015-07-15 17:14 - 00000000 ____D C:\Users\Jack\AppData\Local\{04CAC844-9FB9-4118-BD6F-F215CDD16DD5}
2015-07-15 16:53 - 2015-07-03 18:04 - 01316864 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll
2015-07-15 16:53 - 2015-06-25 04:57 - 02066432 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2015-07-15 16:52 - 2015-06-17 18:50 - 02264576 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2015-07-15 16:52 - 2015-06-17 17:09 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\msiexec.exe
2015-07-15 16:52 - 2015-06-12 18:01 - 00298496 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2015-07-15 16:44 - 2015-05-31 10:11 - 00225792 _____ (Microsoft Corporation) C:\Windows\system32\cewmdm.dll
2015-07-15 16:43 - 2015-06-27 18:03 - 00783872 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2015-07-15 16:43 - 2015-06-27 18:02 - 00501248 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2015-07-15 16:43 - 2015-06-27 18:02 - 00218112 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2015-07-15 16:43 - 2015-06-27 18:01 - 00801280 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2015-07-15 16:43 - 2015-06-27 16:21 - 00217088 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2015-07-15 16:43 - 2015-06-27 16:21 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2015-07-15 16:43 - 2015-06-12 15:13 - 00440768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2015-07-15 16:43 - 2015-01-09 02:17 - 00107008 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2015-07-15 16:38 - 2015-07-03 07:31 - 12386304 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2015-07-15 16:38 - 2015-07-03 07:18 - 02382848 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2015-07-15 16:38 - 2015-06-17 03:14 - 01810432 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2015-07-15 16:38 - 2015-06-17 03:12 - 09750528 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2015-07-15 16:38 - 2015-06-17 03:12 - 00367616 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2015-07-15 16:38 - 2015-06-17 03:10 - 01139712 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2015-07-15 16:38 - 2015-06-17 03:09 - 01804288 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2015-07-15 16:38 - 2015-06-17 03:09 - 01427968 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2015-07-15 16:38 - 2015-06-17 03:09 - 01129472 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2015-07-15 16:38 - 2015-06-17 03:09 - 00421888 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2015-07-15 16:38 - 2015-06-17 03:08 - 00718336 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2015-07-15 16:38 - 2015-06-17 03:08 - 00607744 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2015-07-15 16:38 - 2015-06-17 03:08 - 00353792 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2015-07-15 16:38 - 2015-06-17 03:08 - 00231936 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2015-07-15 16:38 - 2015-06-17 03:08 - 00223232 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2015-07-15 16:38 - 2015-06-17 03:08 - 00176640 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2015-07-15 16:38 - 2015-06-17 03:08 - 00142848 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2015-07-15 16:38 - 2015-06-17 03:08 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2015-07-15 16:38 - 2015-06-17 03:08 - 00065024 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2015-07-15 16:38 - 2015-06-17 03:08 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2015-07-15 16:38 - 2015-06-17 03:08 - 00011776 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2015-07-15 16:38 - 2015-06-17 03:08 - 00010752 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2015-07-14 14:53 - 2015-07-14 14:53 - 00000000 ____D C:\Users\Jack\AppData\Local\{75EB9187-16E6-434B-B2DF-45DF024451E4}
2015-07-12 18:20 - 2015-07-12 18:41 - 00000000 ____D C:\ProgramData\RogueKiller
2015-07-12 13:11 - 2015-07-12 13:11 - 00000997 _____ C:\Users\Public\Desktop\Ashampoo WinOptimizer 12.lnk
2015-07-12 13:11 - 2015-07-12 13:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ashampoo
2015-07-12 13:11 - 2009-08-24 22:08 - 00028160 _____ (mst software GmbH, Germany) C:\Windows\system32\DfSdkBt.exe
2015-07-12 13:03 - 2015-07-12 13:03 - 00000000 ____D C:\Users\Jack\AppData\Local\{EFC24DB3-96A8-48E4-B68E-5BA643316A54}
2015-07-11 20:37 - 2015-07-11 20:37 - 00000000 ____D C:\Users\Jack\AppData\Local\{B649F2E8-35F2-4228-9699-4A591DCAAF07}
2015-07-11 14:39 - 2015-07-11 14:40 - 00000000 ____D C:\Users\Jack\AppData\Local\{288B011F-9DFC-433B-851F-F42F0C2F5EB3}
2015-07-10 21:23 - 2015-07-10 21:23 - 00000000 ____D C:\Users\Jack\Downloads\Hola
2015-07-10 14:58 - 2015-07-10 14:58 - 00000000 ____D C:\Users\Jack\AppData\Local\{DC0F7A25-37BD-4771-AC2B-194CD49D8BCF}
2015-07-09 18:24 - 2015-07-09 18:24 - 00023840 _____ (REALiX(tm)) C:\Windows\system32\Drivers\HWiNFO32.SYS
2015-07-09 17:28 - 2015-07-09 17:28 - 00000000 ____D C:\Users\Jack\AppData\Local\{3955D3B4-5B1D-42C7-966F-2E60A06B554D}
2015-07-08 23:32 - 2015-07-08 23:32 - 00000000 ____D C:\ProgramData\GlarySoft
2015-07-08 00:15 - 2015-07-08 00:15 - 00000000 ____D C:\Users\Jack\AppData\Roaming\Condusiv_Technologies
2015-07-08 00:15 - 2015-07-08 00:15 - 00000000 ____D C:\Users\Jack\AppData\Local\Condusiv_Technologies
2015-07-08 00:15 - 2013-05-29 22:12 - 00000278 _____ C:\Users\Jack\Documents\TRdiskeeper 12.reg
2015-07-07 23:17 - 2015-07-07 23:17 - 00001020 _____ C:\Users\Jack\Desktop\Diskeeper12.lnk
2015-07-07 23:16 - 2015-07-07 23:16 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Condusiv Technologies
2015-07-07 23:16 - 2015-07-07 23:16 - 00000000 ____D C:\Program Files\Windows Home Server
2015-07-07 23:16 - 2012-07-09 14:54 - 00085328 _____ (Condusiv Technologies) C:\Windows\system32\Drivers\DKTLFSMF.sys
2015-07-07 23:16 - 2012-06-18 19:14 - 00044496 _____ (Condusiv Technologies) C:\Windows\system32\Drivers\DKRtWrt.sys
2015-07-07 23:16 - 2012-04-05 02:32 - 00035120 _____ (Condusiv Technologies) C:\Windows\system32\Drivers\DKDFM.sys
2015-07-04 14:00 - 2015-07-21 15:39 - 00000861 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Glary Utilities 5.lnk
2015-07-04 14:00 - 2015-07-21 15:39 - 00000849 _____ C:\Users\Public\Desktop\Glary Utilities 5.lnk
2015-07-04 14:00 - 2015-07-04 14:00 - 00017472 _____ (Glarysoft Ltd) C:\Windows\system32\Drivers\GUBootStartup.sys
2015-07-04 14:00 - 2015-07-04 14:00 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Glary Utilities 5
2015-07-04 13:59 - 2015-07-26 16:29 - 00000000 ____D C:\Program Files\Glary Utilities 5
2015-07-03 17:08 - 2015-07-03 17:08 - 00000103 _____ C:\wrs_ff_install.log
2015-07-03 02:43 - 2015-07-03 02:44 - 00000000 ____D C:\Users\Jack\AppData\Local\AviraSpeedup
2015-07-01 15:22 - 2015-07-01 15:22 - 00009336 ____N (G DATA Software AG) C:\Windows\system32\GDScrSv.fr.dll
2015-06-29 21:06 - 2015-07-03 02:44 - 00000000 ____D C:\Program Files\Avira
2015-06-27 21:57 - 2015-06-27 21:57 - 00000406 _____ C:\Windows\system32\ioloBootDefrag.cfg
2015-06-27 20:56 - 2015-06-27 20:56 - 00000000 ____D C:\Windows\system32\config\Original
2015-06-26 18:37 - 2015-07-23 01:15 - 00000000 ____D C:\Program Files\Argente Utilities
2015-06-26 18:37 - 2015-06-26 18:37 - 00000837 _____ C:\Users\Public\Desktop\Argente Utilities.lnk
2015-06-26 18:37 - 2015-06-26 18:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Argente Utilities
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2015-07-26 17:15 - 2010-05-06 01:30 - 00000432 ____H C:\Windows\Tasks\User_Feed_Synchronization-{4902AA65-DC26-488B-818C-4A82EAABA173}.job
2015-07-26 16:52 - 2014-01-02 22:17 - 00001002 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-07-26 16:33 - 2015-03-23 22:47 - 01684900 _____ C:\Windows\WindowsUpdate.log
2015-07-26 16:25 - 2015-05-28 18:36 - 00000000 ____D C:\Program Files\BootRacer
2015-07-26 16:25 - 2013-12-09 23:02 - 00000551 ____H C:\Users\Public\Documents\bootracer.log
2015-07-26 16:25 - 2012-07-26 21:33 - 00000593 ____H C:\Users\Public\Documents\bootracer.ini
2015-07-26 16:25 - 2010-04-20 09:11 - 00001052 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-07-26 16:25 - 2006-11-02 15:00 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2015-07-26 16:25 - 2006-11-02 14:46 - 00003568 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
2015-07-26 16:25 - 2006-11-02 14:46 - 00003568 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
2015-07-25 23:38 - 2008-02-22 04:01 - 00000012 _____ C:\Windows\bthservsdp.dat
2015-07-25 23:38 - 2006-11-02 15:00 - 00032476 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2015-07-25 23:22 - 2010-04-20 09:11 - 00001056 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-07-25 14:09 - 2013-03-12 00:35 - 00000000 ____D C:\Users\Jack\AppData\Roaming\DMCache
2015-07-25 14:08 - 2015-06-14 02:11 - 00000000 ____D C:\Program Files\Internet Download Manager
2015-07-25 13:58 - 2013-05-11 18:12 - 00000952 _____ C:\Windows\system32\RW_{03392292-4C43-11DF-AC9C-001C26DC1E88}.dat
2015-07-25 13:55 - 2015-06-14 02:12 - 00000000 ____D C:\Users\Jack\AppData\Roaming\IDM
2015-07-25 13:27 - 2010-04-24 16:51 - 00000000 ____D C:\ProgramData\TEMP
2015-07-24 16:14 - 2013-05-29 21:33 - 00000000 ____D C:\Users\Jack\AppData\Roaming\Notepad++
2015-07-24 16:14 - 2013-05-29 21:33 - 00000000 ____D C:\Program Files\Notepad++
2015-07-24 16:11 - 2014-02-20 18:21 - 00000000 ____D C:\Users\Jack\AppData\Roaming\WiseUpdate
2015-07-23 17:57 - 2013-08-28 00:56 - 00000766 _____ C:\Users\Public\Desktop\CCleaner.lnk
2015-07-23 17:57 - 2013-08-28 00:56 - 00000000 ____D C:\Program Files\CCleaner
2015-07-23 17:53 - 2012-07-10 18:09 - 00000000 ____D C:\Users\Jack\AppData\Roaming\Wise Disk Cleaner
2015-07-23 01:15 - 2015-05-27 16:46 - 00000000 ____D C:\ProgramData\McAfee
2015-07-23 01:12 - 2015-03-14 21:49 - 00000000 ____D C:\tempDIR
2015-07-22 22:14 - 2015-02-05 19:29 - 00098520 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2015-07-22 21:17 - 2014-02-26 17:09 - 00000000 ____D C:\Windows\SoftwareDistribution.Old
2015-07-22 16:48 - 2013-05-10 23:24 - 00000000 ____D C:\Users\Jack\AppData\Local\CrashDumps
2015-07-22 16:45 - 2015-06-22 23:21 - 00000000 ____D C:\Users\Jack\AppData\Roaming\uTorrent
2015-07-21 21:07 - 2006-11-02 12:23 - 00000378 _____ C:\Windows\win.ini
2015-07-21 20:27 - 2015-03-31 20:53 - 00073216 _____ (G Data Software AG) C:\Windows\system32\Drivers\PktIcpt.sys
2015-07-21 20:25 - 2015-03-31 20:52 - 00054272 _____ (G Data Software AG) C:\Windows\system32\Drivers\gdwfpcd32.sys
2015-07-21 20:25 - 2015-03-31 20:52 - 00001752 _____ C:\Users\Public\Desktop\G DATA ANTIVIRUS.lnk
2015-07-21 20:25 - 2015-03-31 20:51 - 00161280 _____ (G Data Software AG) C:\Windows\system32\Drivers\MiniIcpt.sys
2015-07-21 20:25 - 2015-03-31 20:51 - 00112640 _____ (G Data Software AG) C:\Windows\system32\Drivers\GDBehave.sys
2015-07-21 20:25 - 2015-03-31 20:51 - 00087040 _____ (G Data Software AG) C:\Windows\system32\Drivers\HookCentre.sys
2015-07-21 20:24 - 2010-04-19 11:12 - 00000000 ____D C:\Program Files\Common Files\G DATA
2015-07-20 19:07 - 2013-04-21 18:41 - 03888522 _____ C:\Windows\system32\Drivers\Cat.DB
2015-07-19 19:58 - 2013-03-06 21:14 - 00000000 ____D C:\ProgramData\IPProtector
2015-07-19 14:50 - 2010-06-16 11:01 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2015-07-18 14:52 - 2014-11-02 15:54 - 00001745 _____ C:\Users\Jack\Desktop\SUMo.lnk
2015-07-17 17:49 - 2013-10-24 18:47 - 00247296 _____ (Microsoft Corporation) C:\Windows\system32\shsvcs.dll
2015-07-17 17:49 - 2013-10-24 18:47 - 00240128 _____ (Microsoft Corporation) C:\Windows\system32\uxtheme.dll
2015-07-17 17:49 - 2013-09-11 18:44 - 00615936 _____ (Microsoft Corporation) C:\Windows\system32\themeui.dll
2015-07-17 17:47 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\fr-FR
2015-07-15 17:06 - 2006-11-02 12:33 - 01304048 _____ C:\Windows\system32\PerfStringBackup.INI
2015-07-15 16:52 - 2014-07-10 18:38 - 00000000 ____D C:\Windows\system32\MRT
2015-07-14 18:51 - 2015-06-14 02:11 - 00000796 _____ C:\Users\Jack\Desktop\Internet Download Manager.lnk
2015-07-14 14:48 - 2014-01-02 22:17 - 00778416 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2015-07-14 14:48 - 2014-01-02 22:17 - 00142512 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2015-07-13 18:22 - 2010-05-10 20:41 - 00000000 ____D C:\Users\Administrateur
2015-07-13 18:22 - 2010-04-19 09:50 - 00000000 ____D C:\Users\Jack
2015-07-13 18:22 - 2008-02-22 04:25 - 00000000 ___HD C:\Users\IUSR_NMPR
2015-07-13 18:22 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\spool
2015-07-13 18:22 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\registration
2015-07-13 18:22 - 2006-11-02 12:22 - 97517568 _____ C:\Windows\system32\config\system_previous
2015-07-13 18:22 - 2006-11-02 12:22 - 51642368 _____ C:\Windows\system32\config\software_previous
2015-07-13 18:22 - 2006-11-02 12:22 - 40632320 _____ C:\Windows\system32\config\components_previous
2015-07-13 18:22 - 2006-11-02 12:22 - 05062656 _____ C:\Windows\system32\config\default_previous
2015-07-13 18:22 - 2006-11-02 12:22 - 00061440 _____ C:\Windows\system32\config\sam_previous
2015-07-13 18:22 - 2006-11-02 12:22 - 00028672 _____ C:\Windows\system32\config\security_previous
2015-07-12 22:33 - 2015-03-13 01:20 - 00000000 ___HD C:\Users\Jack\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup (Disabled by Starter)
2015-07-12 22:15 - 2013-12-11 01:17 - 00000120 _____ C:\0.bak
2015-07-12 22:15 - 2012-09-15 12:29 - 00000000 ____D C:\temp
2015-07-12 18:20 - 2014-06-05 20:48 - 00035064 _____ C:\Windows\system32\Drivers\TrueSight.sys
2015-07-12 13:11 - 2015-03-25 21:33 - 00000000 ____D C:\ProgramData\Ashampoo
2015-07-12 12:38 - 2015-06-14 02:11 - 00000000 ____D C:\Users\Jack\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Download Manager
2015-07-12 12:38 - 2015-06-04 01:55 - 00000000 ____D C:\Users\Jack\Documents\wlan-optimizer
2015-07-12 12:38 - 2015-05-28 18:36 - 00000000 ____D C:\Users\Jack\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BootRacer
2015-07-12 12:38 - 2015-04-07 18:15 - 00000000 ____D C:\Users\Jack\AppData\Roaming\ZHP
2015-07-12 12:38 - 2014-09-26 23:49 - 00000000 ____D C:\Users\Jack\Documents\gdata2015
2015-07-12 12:38 - 2014-07-02 09:31 - 00000000 ____D C:\Users\Jack\Documents\inf ne pas supprimer
2015-07-12 12:38 - 2014-06-13 19:51 - 00000000 ____D C:\Users\Jack\AppData\Roaming\.ACEStream
2015-07-12 12:38 - 2013-12-07 20:26 - 00000000 ____D C:\Users\Jack\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2015-07-12 12:38 - 2013-10-24 22:14 - 00000000 ____D C:\Users\Jack\Documents\UniversalThemePatcher
2015-07-12 12:38 - 2013-01-16 22:29 - 00000000 ____D C:\Users\Jack\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\RiccoVPN
2015-07-12 12:38 - 2012-12-07 00:22 - 00000000 ____D C:\Users\Jack\AppData\Roaming\DVDVideoSoft
2015-07-12 12:38 - 2012-12-03 21:28 - 00000000 ____D C:\Users\Jack\AppData\Roaming\FreeFLVConverter
2015-07-12 12:38 - 2012-10-06 20:22 - 00000000 ____D C:\Users\Jack\Documents\PowerDVD 12 Ultra v12.0.1312.54 PreActivated [ADHDerby]
2015-07-12 12:38 - 2012-10-03 14:52 - 00000000 ____D C:\Users\Jack\AppData\Roaming\vlc
2015-07-12 12:38 - 2012-09-19 18:42 - 00000000 ____D C:\Users\Jack\AppData\Roaming\Wise Registry Cleaner
2015-07-12 12:38 - 2012-01-09 20:11 - 00000000 ____D C:\Users\Jack\AppData\Roaming\clesta
2015-07-12 12:38 - 2011-03-22 17:24 - 00000000 ____D C:\Users\Jack\Documents\startupunblocker_fr
2015-07-12 12:38 - 2011-02-06 20:37 - 00000000 ____D C:\Users\Jack\Documents\Vista_Black_Shellstyle_by_vistaman91
2015-07-12 12:38 - 2011-01-03 17:31 - 00000000 ____D C:\Users\Jack\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SuperCopier2
2015-07-12 12:38 - 2011-01-03 17:08 - 00000000 ____D C:\Users\Jack\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\NirSoft BlueScreenView
2015-07-12 12:38 - 2011-01-03 15:12 - 00000000 ____D C:\Users\Jack\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CodeStuff Starter
2015-07-12 12:38 - 2010-12-03 18:57 - 00000000 ____D C:\Users\Jack\Documents\Denial_Cursor_Pack___Blue_by_Androow
2015-07-12 12:38 - 2010-08-20 16:11 - 00000000 ____D C:\Users\Jack\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Unlocker
2015-07-12 12:38 - 2010-05-24 03:19 - 00000000 ____D C:\Users\Jack\Documents\Programme d'installation d'Adobe Reader 9
2015-07-12 12:38 - 2010-04-20 10:47 - 00000000 ____D C:\Users\Jack\AppData\Local\Installer1240
2015-07-12 12:38 - 2010-04-19 09:51 - 00000000 ____D C:\Users\Jack\AppData\Roaming\GTek
2015-07-12 12:38 - 2010-04-19 09:50 - 00000000 ___RD C:\Users\Jack\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2015-07-12 12:38 - 2010-04-19 09:50 - 00000000 ___RD C:\Users\Jack\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-07-12 12:38 - 2008-02-22 04:23 - 00000000 ____D C:\Program Files\XPSMiniViewGadget
2015-07-11 21:23 - 2015-03-25 21:33 - 00000000 ____D C:\Program Files\Ashampoo
2015-07-10 14:15 - 2010-08-18 18:33 - 00000000 ____D C:\Program Files\Unlocker
2015-07-10 00:24 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\LogFiles
2015-07-09 18:25 - 2013-12-16 19:48 - 00000000 ____D C:\ProgramData\ProductData
2015-07-09 17:56 - 2013-05-11 18:12 - 00005656 _____ C:\config.xml
2015-07-09 17:55 - 2013-05-11 18:12 - 00024624 _____ C:\Windows\system32\RW_FileType.dat
2015-07-09 17:55 - 2013-05-11 18:12 - 00014560 _____ C:\Windows\system32\RW_{5BC783AA-E0E9-11DC-8D9F-806E6F6E6963}.dat
2015-07-09 17:55 - 2013-05-11 18:12 - 00010228 _____ C:\Windows\system32\RW_AppData.dat
2015-07-09 17:55 - 2013-05-11 18:12 - 00005936 _____ C:\Windows\system32\RW_{5BC783AB-E0E9-11DC-8D9F-806E6F6E6963}.dat
2015-07-09 17:55 - 2013-05-11 18:12 - 00000372 _____ C:\Windows\system32\RW_FileFlag.dat
2015-07-09 17:55 - 2013-05-11 18:12 - 00000168 _____ C:\Windows\system32\RW_{4B2A6942-6040-11DF-9494-001C26DC1E88}.dat
2015-07-07 23:16 - 2014-01-12 01:32 - 00000000 ____D C:\ProgramData\Condusiv Technologies
2015-07-07 23:16 - 2013-05-10 19:18 - 00000000 ____D C:\Program Files\Condusiv Technologies
2015-07-07 23:16 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\Help
2015-07-04 14:00 - 2012-06-20 20:40 - 00000000 ____D C:\Users\Jack\AppData\Roaming\GlarySoft
2015-07-03 17:28 - 2012-06-22 20:40 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service
2015-07-03 16:55 - 2015-05-14 23:34 - 00000000 ____D C:\Program Files\Mozilla Firefox
2015-07-03 08:49 - 2006-11-02 12:24 - 127070192 _____ (Microsoft Corporation) C:\Windows\system32\mrt.exe
2015-07-03 02:43 - 2006-11-02 13:18 - 00000000 ___RD C:\Users\Public
2015-07-03 02:05 - 2006-11-02 13:18 - 00000000 __RSD C:\Windows\Media
2015-06-30 21:45 - 2015-02-05 19:28 - 00000877 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2015-06-30 21:45 - 2015-02-05 19:28 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2015-06-30 21:45 - 2015-02-05 19:28 - 00000000 ____D C:\Program Files\Malwarebytes Anti-Malware
2015-06-28 17:57 - 2006-11-02 13:18 - 00000000 ___RD C:\Windows\Offline Web Pages
2015-06-27 18:22 - 2012-10-24 16:21 - 00002411 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
2015-06-26 22:42 - 2010-04-20 15:47 - 00000000 ____D C:\Windows\pss
==================== Files in the root of some directories =======
2012-01-09 20:11 - 2012-01-09 20:11 - 0000031 _____ () C:\Program Files\ys.pcid
2012-12-02 00:57 - 2014-05-15 19:08 - 0000000 _____ () C:\Users\Jack\AppData\Roaming\.googlewebacchosts
2012-07-24 17:55 - 2012-07-24 18:47 - 0000748 _____ () C:\Users\Jack\AppData\Roaming\AtomicAlarmClock.ini
2014-11-06 20:36 - 2014-11-06 20:38 - 0003098 _____ () C:\Users\Jack\AppData\Roaming\DriverAgent.log
2014-09-26 22:59 - 2015-03-31 20:51 - 0001558 _____ () C:\Users\Jack\AppData\Roaming\gdscan.log
2015-03-20 00:05 - 2015-03-20 01:09 - 0000115 _____ () C:\Users\Jack\AppData\Roaming\LogFile.txt
2014-06-05 23:27 - 2014-06-05 23:27 - 0000046 _____ () C:\Users\Jack\AppData\Roaming\WB.CFG
2012-07-05 00:09 - 2012-07-05 00:09 - 0000000 _____ () C:\Users\Jack\AppData\Roaming\wklnhst.dat
2013-05-11 22:48 - 2014-07-20 19:54 - 0262117 _____ () C:\Users\Jack\AppData\Local\ars.cache
2013-05-11 22:51 - 2014-07-20 19:54 - 1084987 _____ () C:\Users\Jack\AppData\Local\census.cache
2010-04-19 09:50 - 2014-01-18 11:08 - 0001356 _____ () C:\Users\Jack\AppData\Local\d3d9caps.dat
2012-07-24 17:09 - 2012-07-24 17:10 - 0000055 _____ () C:\Users\Jack\AppData\Local\DVDPATH.TXT
2013-05-11 18:24 - 2013-05-11 18:24 - 0000036 _____ () C:\Users\Jack\AppData\Local\housecall.guid.cache
2014-01-09 08:55 - 2014-01-09 08:55 - 0000008 _____ () C:\Users\Jack\AppData\Local\Temp0055401D.log
2010-06-06 10:20 - 2010-06-06 10:20 - 0000778 _____ () C:\Users\Jack\AppData\Local\Temp1.html
2010-06-06 10:23 - 2010-06-06 10:23 - 0004472 _____ () C:\Users\Jack\AppData\Local\Temp12.html
2012-05-16 19:30 - 2012-05-16 19:37 - 0017408 _____ () C:\Users\Jack\AppData\Local\WebpageIcons.db
2014-05-05 22:18 - 2014-05-05 22:18 - 0000255 _____ () C:\ProgramData\fontcacheev1.dat
2014-11-02 17:20 - 2014-11-02 17:20 - 0004131 _____ () C:\ProgramData\mtbjfghn.xbe
Some files in TEMP:
====================
C:\Users\Jack\AppData\Local\Temp\xmlUpdater.exe
==================== Bamital & volsnap Check =================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2015-07-26 16:33
==================== End of log ============================