cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 03-10-2017 01
Ran by windows 7 (administrator) on WINDOWS7-PC (06-10-2017 13:53:29)
Running from C:\Users\windows 7\Desktop
Loaded Profiles: windows 7 (Available Profiles: windows 7 & Guest)
Platform: Microsoft Windows 7 Home Premium Service Pack 1 (X86) Language: English (United States)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(SUPERAntiSpyware.com) C:\Program Files\SUPERAntiSpyware\SASCore.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Freemake) C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe
() C:\ProgramData\DatacardService\HWDeviceService.exe
() C:\Program Files\Real\RealPlayer\UpdateService\RealPlayerUpdateSvc.exe
(PcWinTech.com) C:\Program Files\CleanMem\Mini_Monitor.exe
(Realtek) C:\Program Files\Realtek\11n USB Wireless LAN Utility\RtlService.exe
(Huawei Technologies Co., Ltd.) C:\ProgramData\DatacardService\DCSHelper.exe
() C:\Program Files\Free USB Disk Security\USBSecurity.exe
(RealNetworks, Inc.) C:\Program Files\Real\RealPlayer\RPDS\Bin\rpdsvc.exe
(Realtek Semiconductor Corp.) C:\Program Files\Realtek\11n USB Wireless LAN Utility\RtWLan.exe
(Google Inc.) C:\Program Files\Google\Update\1.3.33.5\GoogleCrashHandler.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
(Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(Crawler Group, LLC) C:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Internet Services\iCloudServices.exe
(SUPERAntiSpyware) C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner.exe
(Crawler Group, LLC) C:\Program Files\Spyware Terminator\st_rsser.exe
(Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(AVAST Software s.r.o.) C:\Program Files\AVAST Software\Avast\aswidsagent.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Crawler Group, LLC) C:\Program Files\Spyware Terminator\SpywareTerminatorUpdate.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\cmd.exe
(Crawler Group, LLC) C:\Program Files\Spyware Terminator\STInternetGuard.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\UI0Detect.exe
(Microsoft Corporation) C:\Windows\System32\wuauclt.exe
() C:\Program Files\Real\RealPlayer\RealDownloader\downloader2.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(VideoLAN) C:\Program Files\VideoLAN\VLC\vlc.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Reimage) C:\Users\windows 7\Desktop\ReimageRepair.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [Free USB Security] => C:\Program Files\Free USB Disk Security\USBSecurity.exe [845824 2012-11-25] ()
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [253344 2017-10-04] (AVAST Software)
HKLM\...\Run: [GrooveMonitor] => C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [267064 2017-05-09] (Apple Inc.)
HKLM\...\Run: [SpywareTerminatorShield] => C:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe [5349120 2017-03-16] (Crawler Group, LLC)
HKLM\...\Run: [SpywareTerminatorUpdater] => C:\Program Files\Spyware Terminator\SpywareTerminatorUpdate.exe [5585672 2017-03-16] (Crawler Group, LLC)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-1163991667-669587349-566117738-1000\...\Run: [] => [X]
HKU\S-1-5-21-1163991667-669587349-566117738-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner.exe [7685808 2017-09-20] (Piriform Ltd)
HKU\S-1-5-21-1163991667-669587349-566117738-1000\...\Run: [iCloudServices] => C:\Program Files\Common Files\Apple\Internet Services\iCloudServices.exe [67384 2017-05-09] (Apple Inc.)
HKU\S-1-5-21-1163991667-669587349-566117738-1000\...\Run: [SUPERAntiSpyware] => C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [6844320 2017-08-18] (SUPERAntiSpyware)
HKU\S-1-5-21-1163991667-669587349-566117738-1000\...\MountPoints2: {d364d9c7-7f07-11e5-8870-001167000000} - F:\AutoRun.exe
HKU\S-1-5-21-1163991667-669587349-566117738-1000\...\MountPoints2: {d364d9cd-7f07-11e5-8870-001167000000} - F:\AutoRun.exe
GroupPolicy: Restriction - Chrome <==== ATTENTION

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Winsock: Catalog5 10 C:\Program Files\Bonjour\mdnsNSP.dll [122128 2015-08-12] (Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{2385D203-E9ED-4857-A009-C86379CA2368}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{CA56139A-CC40-406F-A54C-BF5C3612C6E2}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{D852871B-890B-4ACD-BDCE-CB94BA56116A}: [DhcpNameServer] 192.168.1.1 192.168.1.1

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.google.com/?trackid=sp-006
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxps://www.google.com/search?trackid=sp-006&q={searchTerms}
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKU\S-1-5-21-1163991667-669587349-566117738-1000\Software\Microsoft\Internet Explorer\Main,Search Page = hxxps://www.google.com/search?trackid=sp-006&q={searchTerms}
HKU\S-1-5-21-1163991667-669587349-566117738-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.be/
SearchScopes: HKLM -> DefaultScope {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = hxxps://www.google.com/search?trackid=sp-006&q={searchTerms}
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM -> {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = hxxps://www.google.com/search?trackid=sp-006&q={searchTerms}
SearchScopes: HKU\S-1-5-21-1163991667-669587349-566117738-1000 -> DefaultScope {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = hxxps://www.google.com/search?trackid=sp-006&q={searchTerms}
SearchScopes: HKU\S-1-5-21-1163991667-669587349-566117738-1000 -> {6586d803-df30-46d3-a89a-4136c8571d45} URL =
SearchScopes: HKU\S-1-5-21-1163991667-669587349-566117738-1000 -> {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = hxxps://www.google.com/search?trackid=sp-006&q={searchTerms}
BHO: RealNetworks Download and Record Plugin for Internet Explorer -> {3049C3E9-B461-4BC5-8870-4C09146192CA} -> C:\program files\real\realplayer\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll [2016-09-03] (RealDownloader)
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26] (Microsoft Corporation)
BHO: Spyware Terminator 2015 Internet Guard -> {82A76710-4F98-4957-92BE-99648A4E2475} -> C:\Program Files\Spyware Terminator\STInternetGuard.dll [2017-03-16] (Crawler Group, LLC)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2017-10-04] (AVAST Software)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corp.)
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll [2009-02-26] (Microsoft Corporation)
StartMenuInternet: IEXPLORE.EXE - iexplore.exe

FireFox:
========
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_27_0_0_130.dll [2017-09-13] ()
FF Plugin: @divx.com/DivX VOD Helper,version=1.0.0 -> C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll [2014-05-22] (DivX, LLC.)
FF Plugin: @divx.com/DivX Web Player Plug-In,version=1.0.0 -> C:\Program Files\DivX\DivX Web Player\npdivx32.dll [2015-09-02] (DivX, LLC)
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin: @nokia.com/EnablerPlugin -> C:\Program Files\Nokia\Nokia Suite\npNokiaSuiteEnabler.dll [2014-11-19] ( )
FF Plugin: @real.com/nppl3260;version=18.1.5.699 -> c:\program files\real\realplayer\Netscape6\nppl3260.dll [2016-09-14] (RealNetworks, Inc.)
FF Plugin: @real.com/nprpplugin;version=18.1.5.699 -> c:\program files\real\realplayer\Netscape6\nprpplugin.dll [2016-09-14] (RealPlayer)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-28] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-28] (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.1.0 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.5 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.0 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2017-08-24] (Adobe Systems Inc.)

Chrome:
=======
CHR DefaultProfile: Default
CHR HomePage: Default -> hxxps://ph.search.yahoo.com/?type=888596&fr=yo-yhp-ch
CHR NewTab: Default -> Not-active:"chrome-extension://iolpkpdkpjmnaoefajahilmlbjbkedfn/redirect.html"
CHR Profile: C:\Users\windows 7\AppData\Local\Google\Chrome\User Data\Default [2017-10-06]
CHR Extension: (Translator for all languages) - C:\Users\windows 7\AppData\Local\Google\Chrome\User Data\Default\Extensions\amdeidgbmcliegnpcbbkhlflkbdpomhk [2017-07-02]
CHR Extension: (Save Tabs) - C:\Users\windows 7\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgjepfldodmdfmdidhhgamnklbdibndi [2017-10-06]
CHR Extension: (Adobe Acrobat) - C:\Users\windows 7\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2017-08-30]
CHR Extension: (Spyware Terminator Internet Guard) - C:\Users\windows 7\AppData\Local\Google\Chrome\User Data\Default\Extensions\elbjpfdfllhaioofjgmiaekihidancnc [2017-10-06]
CHR Extension: (Avast SafePrice) - C:\Users\windows 7\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2017-09-15]
CHR Extension: (Chrome Web Store Payments) - C:\Users\windows 7\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-08-30]
CHR Extension: (Notifications for Instagram) - C:\Users\windows 7\AppData\Local\Google\Chrome\User Data\Default\Extensions\opnbmdkdflhjiclaoiiifmheknpccalb [2017-06-14]
CHR Extension: (Speedtest by Ookla) - C:\Users\windows 7\AppData\Local\Google\Chrome\User Data\Default\Extensions\pgjjikdiikihdfpoppgaidccahalehjh [2017-07-02]
CHR Extension: (Chrome Media Router) - C:\Users\windows 7\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-10-04]
CHR Profile: C:\Users\windows 7\AppData\Local\Google\Chrome\User Data\Guest Profile [2017-10-05]
CHR Profile: C:\Users\windows 7\AppData\Local\Google\Chrome\User Data\System Profile [2017-10-05]
CHR HKLM\...\Chrome\Extension: [clgckgfbhciacomhlchmgdnplmdiadbj] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [dgjepfldodmdfmdidhhgamnklbdibndi] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChromeSp.crx
CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx
CHR HKLM\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - hxxps://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-1163991667-669587349-566117738-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [dhdgffkkebhmkfjojejmpbldmpobfkfo] - hxxp://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-1163991667-669587349-566117738-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
StartMenuInternet: Google Chrome.JUCNPQPDRON3NDI3G52CVSNBWE - C:\Users\windows 7\AppData\Local\Google\Chrome\Application\chrome.exe

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 !SASCORE; C:\Program Files\SUPERAntiSpyware\SASCORE.EXE [143776 2017-01-31] (SUPERAntiSpyware.com)
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [5828816 2017-10-04] (AVAST Software s.r.o.)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [281416 2017-10-04] (AVAST Software)
R2 Freemake Improver; C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe [108032 2014-11-13] (Freemake) [File not signed]
R2 HWDeviceService.exe; C:\ProgramData\DatacardService\HWDeviceService.exe [271712 2011-03-14] ()
R2 RealPlayerUpdateSvc; C:\program files\real\realplayer\UpdateService\RealPlayerUpdateSvc.exe [35104 2016-09-03] ()
R2 Realtek11nSU; C:\Program Files\Realtek\11n USB Wireless LAN Utility\RtlService.exe [36864 2010-04-16] (Realtek) [File not signed]
R2 RealTimes Desktop Service; c:\program files\real\realplayer\RPDS\Bin\rpdsvc.exe [987408 2016-09-14] (RealNetworks, Inc.)
R2 ST2012_Svc; C:\Program Files\Spyware Terminator\st_rsser.exe [2133760 2017-03-16] (Crawler Group, LLC)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2013-05-27] (Microsoft Corporation)
S3 AvastVBoxSvc; "C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe" [X]
S2 MsMpSvc; "c:\Program Files\Microsoft Security Client\MsMpEng.exe" [X]

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R1 aswbidsdriver; C:\Windows\system32\drivers\aswbidsdriverx.sys [255624 2017-10-04] (AVAST Software s.r.o.)
R0 aswbidsh; C:\Windows\system32\drivers\aswbidshx.sys [157416 2017-10-04] (AVAST Software s.r.o.)
R0 aswblog; C:\Windows\system32\drivers\aswblogx.sys [276736 2017-10-04] (AVAST Software s.r.o.)
R0 aswbuniv; C:\Windows\system32\drivers\aswbunivx.sys [50384 2017-10-04] (AVAST Software s.r.o.)
S3 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [42856 2017-10-04] (AVAST Software)
R1 aswKbd; C:\Windows\system32\drivers\aswKbd.sys [39784 2017-09-01] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [124952 2017-10-04] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [99560 2017-10-04] (AVAST Software)
R0 aswRvrt; C:\Windows\system32\drivers\aswRvrt.sys [70864 2017-10-04] (AVAST Software)
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [777952 2017-10-04] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [499560 2017-10-04] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [149824 2017-10-04] (AVAST Software)
R0 aswVmm; C:\Windows\system32\drivers\aswVmm.sys [297840 2017-10-04] (AVAST Software)
S3 DxVGrb; C:\Windows\System32\drivers\DxVGrb.sys [188704 2015-02-04] (Dexetek )
S3 huawei_cdcacm; C:\Windows\System32\DRIVERS\ew_jucdcacm.sys [95616 2012-04-23] (Huawei Technologies Co., Ltd.)
S3 huawei_cdcecm; C:\Windows\System32\DRIVERS\ew_jucdcecm.sys [70016 2012-04-23] (Huawei Technologies Co., Ltd.)
S3 huawei_ext_ctrl; C:\Windows\System32\DRIVERS\ew_juextctrl.sys [27520 2012-04-23] (Huawei Technologies Co., Ltd.)
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [195296 2013-01-21] (Microsoft Corporation)
R1 SASDIFSV; C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS [12880 2011-07-23] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
R1 SASKUTIL; C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS [67664 2011-07-13] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
R1 sp_rsdrv2; C:\Windows\system32\drivers\sp_rsdrv2.sys [32768 2011-06-21] () [File not signed]
U5 ew_hwusbdev; C:\Windows\System32\Drivers\ew_hwusbdev.sys [102784 2010-07-27] (Huawei Technologies Co., Ltd.)
S3 MBAMSwissArmy; \??\C:\Windows\system32\drivers\MBAMSwissArmy.sys [X]
S2 VBoxAswDrv; \??\C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [X]
S3 vmci; \SystemRoot\system32\DRIVERS\vmci.sys [X]
S3 VMnetAdapter; system32\DRIVERS\vmnetadapter.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2017-10-06 13:53 - 2017-10-06 13:54 - 000018792 _____ C:\Users\windows 7\Desktop\FRST.txt
2017-10-06 13:53 - 2017-10-06 13:53 - 000000000 ____D C:\FRST
2017-10-06 13:50 - 2017-10-06 13:51 - 001796096 _____ (Farbar) C:\Users\windows 7\Desktop\FRST.exe
2017-10-06 13:31 - 2017-10-06 13:31 - 000000844 _____ C:\Users\Public\Desktop\Resume Reimage Repair Installation.lnk
2017-10-06 13:28 - 2017-10-06 13:28 - 000000099 _____ C:\Windows\Reimage.ini
2017-10-06 13:28 - 2017-10-06 13:28 - 000000000 ____D C:\ProgramData\SWCUTemp
2017-10-06 13:16 - 2017-10-06 13:26 - 000604928 _____ (Reimage) C:\Users\windows 7\Desktop\ReimageRepair.exe
2017-10-06 12:42 - 2017-10-06 12:42 - 000000686 _____ C:\DelFix.txt
2017-10-06 02:24 - 2017-10-06 02:24 - 000414392 _____ C:\Windows\system32\FNTCACHE.DAT
2017-10-06 02:05 - 2017-10-06 11:45 - 000000000 ____D C:\Users\windows 7\AppData\Roaming\ZHP
2017-10-06 02:05 - 2017-10-06 02:05 - 000000000 ____D C:\Users\windows 7\AppData\Local\ZHP
2017-10-06 01:18 - 2017-10-06 01:18 - 000000000 ____D C:\Users\windows 7\AppData\Roaming\SUPERAntiSpyware.com
2017-10-06 01:16 - 2017-10-06 01:18 - 000000000 ____D C:\Program Files\SUPERAntiSpyware
2017-10-06 01:16 - 2017-10-06 01:16 - 000000000 ____D C:\ProgramData\SUPERAntiSpyware.com
2017-10-06 01:16 - 2017-10-06 01:16 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SUPERAntiSpyware
2017-10-06 00:35 - 2017-10-06 00:35 - 000000000 ____D C:\Users\windows 7\AppData\Roaming\TweakNow RegCleaner 2012
2017-10-06 00:35 - 2017-10-06 00:35 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TweakNow RegCleaner 2012
2017-10-06 00:35 - 2017-10-06 00:35 - 000000000 ____D C:\Program Files\TweakNow RegCleaner 2012
2017-10-06 00:29 - 2017-10-06 00:29 - 000000963 _____ C:\Users\Guest\Desktop\PopUp Destroy.lnk
2017-10-05 23:16 - 2017-10-06 13:34 - 000000000 ____D C:\Users\windows 7\AppData\LocalLow\Spyware Terminator
2017-10-05 23:16 - 2017-10-06 03:28 - 000000000 ____D C:\ProgramData\Spyware Terminator
2017-10-05 23:16 - 2017-10-05 23:18 - 000000000 ____D C:\Program Files\Spyware Terminator
2017-10-05 23:16 - 2017-10-05 23:16 - 000000000 ____D C:\Users\windows 7\AppData\Roaming\Spyware Terminator
2017-10-05 23:16 - 2017-10-05 23:16 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spyware Terminator 2015
2017-10-05 23:16 - 2011-06-21 11:24 - 000032768 _____ C:\Windows\system32\Drivers\sp_rsdrv2.sys
2017-10-05 22:19 - 2017-10-05 22:19 - 000110048 _____ C:\Users\windows 7\AppData\Local\GDIPFONTCACHEV1.DAT
2017-10-05 16:25 - 2017-10-06 01:58 - 1093309739 _____ C:\Users\windows 7\Desktop\Scorpion2 Scn-3.m4v
2017-10-04 23:35 - 2017-10-04 23:36 - 003308392 _____ C:\Users\windows 7\Downloads\Muzik Box Music - That Thang - Drivin' My Mercedes Colour Version.3gp
2017-10-04 23:31 - 2017-10-04 23:32 - 002575921 _____ C:\Users\windows 7\Downloads\Muzik Box Music - Ear Candy - MUSIC VIDEO.3gp
2017-10-04 23:28 - 2017-10-04 23:29 - 001609394 _____ C:\Users\windows 7\Downloads\Muzik Box Music - I Want Your Love.3gp
2017-10-04 19:32 - 2017-10-04 19:32 - 000304816 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2017-10-03 18:08 - 2017-10-03 18:08 - 000756285 _____ C:\Users\windows 7\Downloads\The Exorcist Soundtrack.3gp
2017-10-03 18:06 - 2017-10-03 18:07 - 001053382 _____ C:\Users\windows 7\Downloads\l'exorciste.3gp
2017-10-03 18:02 - 2017-10-03 18:02 - 000909635 _____ C:\Users\windows 7\Downloads\STAR TREK DISCOVERY - Main title sequence..3gp
2017-10-03 18:00 - 2017-10-03 18:00 - 000369094 _____ C:\Users\windows 7\Downloads\Outcast (TV Series) Theme Song HQ.3gp
2017-09-25 13:29 - 2017-09-25 13:29 - 000002171 _____ C:\Users\windows 7\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft OneDrive.lnk
2017-09-21 11:27 - 2017-09-21 11:27 - 000000993 _____ C:\Users\Public\Desktop\Free Video Joiner.lnk
2017-09-21 11:27 - 2017-09-21 11:27 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Free Video Joiner
2017-09-21 11:27 - 2017-09-21 11:27 - 000000000 ____D C:\Program Files\Free Video Joiner
2017-09-20 20:18 - 2017-09-20 20:18 - 000000977 _____ C:\Users\windows 7\Desktop\Handbrake.lnk
2017-09-20 20:18 - 2017-09-20 20:18 - 000000977 _____ C:\Users\Guest\Desktop\Handbrake.lnk
2017-09-20 20:18 - 2017-09-20 20:18 - 000000000 ____D C:\Users\windows 7\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Handbrake
2017-09-20 20:18 - 2017-09-20 20:18 - 000000000 ____D C:\Program Files\Handbrake
2017-09-14 10:41 - 2017-08-14 00:54 - 020269056 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2017-09-14 10:40 - 2017-08-19 23:10 - 000180224 _____ (Microsoft Corporation) C:\Windows\system32\shdocvw.dll
2017-09-14 10:40 - 2017-08-16 23:10 - 000629760 _____ (Microsoft Corporation) C:\Windows\system32\usp10.dll
2017-09-14 10:40 - 2017-08-16 22:50 - 002403328 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2017-09-14 10:40 - 2017-08-16 08:25 - 000347336 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2017-09-14 10:40 - 2017-08-15 23:10 - 012880896 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2017-09-14 10:40 - 2017-08-15 23:10 - 001499648 _____ (Microsoft Corporation) C:\Windows\system32\ExplorerFrame.dll
2017-09-14 10:40 - 2017-08-15 22:01 - 000416256 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2017-09-14 10:40 - 2017-08-15 22:01 - 000279040 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2017-09-14 10:40 - 2017-08-15 22:01 - 000076288 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2017-09-14 10:40 - 2017-08-15 21:58 - 013673984 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2017-09-14 10:40 - 2017-08-15 01:35 - 002150912 _____ (Microsoft Corporation) C:\Windows\system32\mmcndmgr.dll
2017-09-14 10:40 - 2017-08-15 01:35 - 000303104 _____ (Microsoft Corporation) C:\Windows\system32\mmcbase.dll
2017-09-14 10:40 - 2017-08-15 01:35 - 000172544 _____ (Microsoft Corporation) C:\Windows\system32\cic.dll
2017-09-14 10:40 - 2017-08-15 01:35 - 000128512 _____ (Microsoft Corporation) C:\Windows\system32\mmcshext.dll
2017-09-14 10:40 - 2017-08-14 05:30 - 001401344 _____ (Microsoft Corporation) C:\Windows\system32\mmc.exe
2017-09-14 10:40 - 2017-08-14 00:46 - 002724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2017-09-14 10:40 - 2017-08-14 00:45 - 000004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2017-09-14 10:40 - 2017-08-14 00:30 - 000062464 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2017-09-14 10:40 - 2017-08-14 00:29 - 000499200 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2017-09-14 10:40 - 2017-08-14 00:29 - 000341504 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2017-09-14 10:40 - 2017-08-14 00:29 - 000047616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2017-09-14 10:40 - 2017-08-14 00:28 - 000064000 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2017-09-14 10:40 - 2017-08-14 00:24 - 002291200 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2017-09-14 10:40 - 2017-08-14 00:22 - 000047104 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2017-09-14 10:40 - 2017-08-14 00:21 - 000030720 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2017-09-14 10:40 - 2017-08-14 00:19 - 000476160 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2017-09-14 10:40 - 2017-08-14 00:18 - 000104960 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2017-09-14 10:40 - 2017-08-14 00:17 - 000663552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2017-09-14 10:40 - 2017-08-14 00:17 - 000620032 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2017-09-14 10:40 - 2017-08-14 00:17 - 000115712 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2017-09-14 10:40 - 2017-08-14 00:10 - 000667648 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2017-09-14 10:40 - 2017-08-14 00:01 - 000073216 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2017-09-14 10:40 - 2017-08-14 00:01 - 000060416 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2017-09-14 10:40 - 2017-08-14 00:00 - 000091136 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2017-09-14 10:40 - 2017-08-13 23:57 - 000168960 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2017-09-14 10:40 - 2017-08-13 23:53 - 000130048 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2017-09-14 10:40 - 2017-08-13 23:48 - 004547072 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2017-09-14 10:40 - 2017-08-13 23:46 - 000230400 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2017-09-14 10:40 - 2017-08-13 23:44 - 000694784 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2017-09-14 10:40 - 2017-08-13 23:44 - 000690688 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2017-09-14 10:40 - 2017-08-13 23:43 - 002058752 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2017-09-14 10:40 - 2017-08-13 23:43 - 001155072 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2017-09-14 10:40 - 2017-08-13 23:17 - 002767872 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2017-09-14 10:40 - 2017-08-13 23:14 - 000710144 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2017-09-14 10:40 - 2017-08-13 23:13 - 001314816 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2017-09-14 10:40 - 2017-08-11 14:24 - 004001000 _____ (Microsoft Corporation) C:\Windows\system32\ntkrnlpa.exe
2017-09-14 10:40 - 2017-08-11 14:24 - 003945704 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2017-09-14 10:40 - 2017-08-11 14:24 - 000137960 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2017-09-14 10:40 - 2017-08-11 14:24 - 000067304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2017-09-14 10:40 - 2017-08-11 14:21 - 001310528 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2017-09-14 10:40 - 2017-08-11 14:19 - 001417728 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll
2017-09-14 10:40 - 2017-08-11 14:19 - 001062912 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2017-09-14 10:40 - 2017-08-11 14:19 - 000872448 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2017-09-14 10:40 - 2017-08-11 14:19 - 000781824 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll
2017-09-14 10:40 - 2017-08-11 14:19 - 000655360 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2017-09-14 10:40 - 2017-08-11 14:19 - 000644096 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2017-09-14 10:40 - 2017-08-11 14:19 - 000554496 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2017-09-14 10:40 - 2017-08-11 14:19 - 000497664 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll
2017-09-14 10:40 - 2017-08-11 14:19 - 000400896 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2017-09-14 10:40 - 2017-08-11 14:19 - 000377344 _____ (Microsoft Corporation) C:\Windows\system32\rpcss.dll
2017-09-14 10:40 - 2017-08-11 14:19 - 000299008 _____ (Microsoft Corporation) C:\Windows\system32\ntprint.dll
2017-09-14 10:40 - 2017-08-11 14:19 - 000294400 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2017-09-14 10:40 - 2017-08-11 14:19 - 000271360 _____ (Microsoft Corporation) C:\Windows\system32\Wldap32.dll
2017-09-14 10:40 - 2017-08-11 14:19 - 000261120 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2017-09-14 10:40 - 2017-08-11 14:19 - 000254464 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2017-09-14 10:40 - 2017-08-11 14:19 - 000223232 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2017-09-14 10:40 - 2017-08-11 14:19 - 000172032 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2017-09-14 10:40 - 2017-08-11 14:19 - 000171008 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2017-09-14 10:40 - 2017-08-11 14:19 - 000141312 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll
2017-09-14 10:40 - 2017-08-11 14:19 - 000126464 _____ (Microsoft Corporation) C:\Windows\system32\inetpp.dll
2017-09-14 10:40 - 2017-08-11 14:19 - 000099840 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2017-09-14 10:40 - 2017-08-11 14:19 - 000082432 _____ (Microsoft Corporation) C:\Windows\system32\bcrypt.dll
2017-09-14 10:40 - 2017-08-11 14:19 - 000065536 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2017-09-14 10:40 - 2017-08-11 14:19 - 000050688 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll
2017-09-14 10:40 - 2017-08-11 14:19 - 000050176 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll
2017-09-14 10:40 - 2017-08-11 14:19 - 000043008 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2017-09-14 10:40 - 2017-08-11 14:19 - 000038912 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2017-09-14 10:40 - 2017-08-11 14:19 - 000022016 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2017-09-14 10:40 - 2017-08-11 14:19 - 000019968 _____ (Microsoft Corporation) C:\Windows\system32\nsisvc.dll
2017-09-14 10:40 - 2017-08-11 14:19 - 000017408 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2017-09-14 10:40 - 2017-08-11 14:19 - 000016384 _____ (Microsoft Corporation) C:\Windows\system32\winnsi.dll
2017-09-14 10:40 - 2017-08-11 14:19 - 000008704 _____ (Microsoft Corporation) C:\Windows\system32\nsi.dll
2017-09-14 10:40 - 2017-08-11 14:19 - 000006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2017-09-14 10:40 - 2017-08-11 14:19 - 000005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2017-09-14 10:40 - 2017-08-11 14:19 - 000004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2017-09-14 10:40 - 2017-08-11 14:19 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2017-09-14 10:40 - 2017-08-11 14:19 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2017-09-14 10:40 - 2017-08-11 14:19 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2017-09-14 10:40 - 2017-08-11 14:19 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2017-09-14 10:40 - 2017-08-11 14:19 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2017-09-14 10:40 - 2017-08-11 14:19 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2017-09-14 10:40 - 2017-08-11 14:19 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2017-09-14 10:40 - 2017-08-11 14:19 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2017-09-14 10:40 - 2017-08-11 14:19 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2017-09-14 10:40 - 2017-08-11 14:19 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2017-09-14 10:40 - 2017-08-11 14:19 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2017-09-14 10:40 - 2017-08-11 14:19 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2017-09-14 10:40 - 2017-08-11 14:19 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2017-09-14 10:40 - 2017-08-11 14:19 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2017-09-14 10:40 - 2017-08-11 14:19 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2017-09-14 10:40 - 2017-08-11 14:19 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2017-09-14 10:40 - 2017-08-11 14:19 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2017-09-14 10:40 - 2017-08-11 14:19 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2017-09-14 10:40 - 2017-08-11 14:19 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2017-09-14 10:40 - 2017-08-11 14:19 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2017-09-14 10:40 - 2017-08-11 14:19 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2017-09-14 10:40 - 2017-08-11 14:19 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2017-09-14 10:40 - 2017-08-11 14:09 - 000061952 _____ (Microsoft Corporation) C:\Windows\system32\ntprint.exe
2017-09-14 10:40 - 2017-08-11 14:09 - 000039424 _____ (Microsoft Corporation) C:\Windows\system32\wpnpinst.exe
2017-09-14 10:40 - 2017-08-11 14:09 - 000018944 _____ (Microsoft Corporation) C:\Windows\system32\inetppui.dll
2017-09-14 10:40 - 2017-08-11 14:03 - 000026624 _____ (Microsoft Corporation) C:\Windows\system32\netbtugc.exe
2017-09-14 10:40 - 2017-08-11 14:01 - 000007168 _____ (Microsoft Corporation) C:\Windows\system32\comcat.dll
2017-09-14 10:40 - 2017-08-11 14:00 - 000097792 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe
2017-09-14 10:40 - 2017-08-11 14:00 - 000050688 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys
2017-09-14 10:40 - 2017-08-11 14:00 - 000050176 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2017-09-14 10:40 - 2017-08-11 14:00 - 000029696 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll
2017-09-14 10:40 - 2017-08-11 14:00 - 000016896 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe
2017-09-14 10:40 - 2017-08-11 13:58 - 000271360 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2017-09-14 10:40 - 2017-08-11 13:58 - 000262656 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2017-09-14 10:40 - 2017-08-11 13:56 - 000313856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2017-09-14 10:40 - 2017-08-11 13:56 - 000311808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys
2017-09-14 10:40 - 2017-08-11 13:56 - 000226304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2017-09-14 10:40 - 2017-08-11 13:56 - 000124416 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2017-09-14 10:40 - 2017-08-11 13:56 - 000115712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2017-09-14 10:40 - 2017-08-11 13:56 - 000098304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2017-09-14 10:40 - 2017-08-11 13:55 - 000188928 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netbt.sys
2017-09-14 10:40 - 2017-08-11 13:55 - 000069632 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2017-09-14 10:40 - 2017-08-11 13:55 - 000036352 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
2017-09-14 10:40 - 2017-08-11 13:55 - 000022016 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2017-09-14 10:40 - 2017-08-11 13:55 - 000017920 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\nsiproxy.sys
2017-09-14 10:40 - 2017-08-11 13:55 - 000015872 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2017-09-14 10:40 - 2017-08-11 13:55 - 000006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2017-09-14 10:40 - 2017-08-11 13:55 - 000004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2017-09-14 10:40 - 2017-08-11 13:55 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2017-09-14 10:40 - 2017-08-11 13:55 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2017-09-14 10:40 - 2017-07-07 23:10 - 000973312 _____ (Microsoft Corporation) C:\Windows\system32\DXPTaskRingtone.dll
2017-09-14 10:39 - 2017-08-11 14:19 - 000690688 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2017-09-14 10:39 - 2017-08-11 14:19 - 000146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2017-09-14 10:39 - 2017-08-11 14:19 - 000060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2017-09-14 10:39 - 2017-08-11 14:19 - 000026112 _____ (Microsoft Corporation) C:\Windows\system32\oleres.dll
2017-09-09 14:39 - 2017-09-09 14:39 - 000000000 ____D C:\Users\windows 7\AppData\Roaming\HandBrake Team
2017-09-06 00:22 - 2017-09-06 00:22 - 000000000 ____D C:\Program Files\Common Files\Skype

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2017-10-06 12:59 - 2009-07-14 12:34 - 000027712 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2017-10-06 12:59 - 2009-07-14 12:34 - 000027712 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2017-10-06 12:47 - 2009-07-14 12:53 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2017-10-06 11:07 - 2009-07-14 10:37 - 000000000 ____D C:\Windows\system32\NDF
2017-10-06 10:41 - 2016-05-02 10:36 - 000000000 ____D C:\Users\windows 7\AppData\Roaming\uTorrent
2017-10-06 08:55 - 2014-11-09 22:31 - 000000000 ____D C:\Users\windows 7\Desktop\Emule films
2017-10-06 07:01 - 2014-11-09 18:10 - 000000000 ____D C:\Users\windows 7\AppData\Roaming\vlc
2017-10-06 02:26 - 2017-03-26 11:19 - 000000000 ____D C:\Users\windows 7\AppData\Roaming\cacaoweb
2017-10-06 02:26 - 2009-07-14 10:37 - 000000000 ____D C:\Windows\inf
2017-10-06 02:21 - 2014-11-09 19:27 - 000000000 ___RD C:\Users\windows 7\Desktop\Programmes
2017-10-06 01:49 - 2014-11-09 19:36 - 000000000 ___RD C:\Users\windows 7\Desktop\Raccourcis
2017-10-06 01:48 - 2016-08-12 17:31 - 000000000 ____D C:\Users\windows 7\Downloads\Codec pack 12082016
2017-10-06 00:29 - 2016-12-04 00:45 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PopUp Destroy
2017-10-06 00:29 - 2016-12-04 00:45 - 000000000 ____D C:\Program Files\PopUp Destroy
2017-10-05 17:31 - 2016-05-14 17:19 - 000000000 ____D C:\Users\windows 7\AppData\Roaming\MPC-HC
2017-10-05 17:30 - 2014-11-17 09:11 - 000000000 ____D C:\Windows\Minidump
2017-10-05 16:44 - 2015-12-28 18:00 - 000000258 __RSH C:\ProgramData\ntuser.pol
2017-10-05 16:24 - 2016-06-20 03:21 - 000000000 ____D C:\ProgramData\DVD Shrink
2017-10-05 16:23 - 2016-10-03 18:51 - 000000000 ____D C:\Users\windows 7\AppData\Roaming\dvdcss
2017-10-05 16:21 - 2017-09-01 11:04 - 000000000 ____D C:\Users\windows 7\Desktop\Venant de mes DVD privé - Come from my private DVD
2017-10-05 12:18 - 2010-11-21 05:01 - 000006166 _____ C:\Windows\system32\PerfStringBackup.INI
2017-10-05 00:53 - 2014-11-15 12:27 - 000000000 ____D C:\Users\windows 7\AppData\Roaming\HandBrake
2017-10-04 23:14 - 2017-05-30 10:47 - 000000000 ____D C:\Users\windows 7\Desktop\uTorrent films
2017-10-04 19:32 - 2014-11-09 17:20 - 000777952 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2017-10-04 19:32 - 2014-11-09 17:20 - 000499560 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2017-10-04 19:32 - 2014-11-09 17:20 - 000297840 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys
2017-10-04 19:32 - 2014-11-09 17:20 - 000149824 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2017-10-04 19:32 - 2014-11-09 17:20 - 000124952 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2017-10-04 19:32 - 2014-11-09 17:20 - 000099560 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2017-10-04 19:32 - 2014-11-09 17:20 - 000070864 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys
2017-10-04 19:32 - 2014-11-09 17:20 - 000042856 _____ (AVAST Software) C:\Windows\system32\Drivers\aswHwid.sys
2017-10-04 19:32 - 2014-11-09 17:16 - 000000000 ____D C:\ProgramData\AVAST Software
2017-10-04 19:31 - 2017-03-13 23:16 - 000276736 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswblogx.sys
2017-10-04 19:31 - 2017-03-13 23:16 - 000255624 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswbidsdriverx.sys
2017-10-04 19:31 - 2017-03-13 23:16 - 000157416 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswbidshx.sys
2017-10-04 19:31 - 2017-03-13 23:16 - 000050384 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswbunivx.sys
2017-10-04 12:40 - 2017-05-09 18:18 - 000000000 ____D C:\Users\windows 7\Desktop\DADA
2017-09-30 09:12 - 2017-05-14 11:44 - 000000000 ____D C:\Users\windows 7\Desktop\RORY
2017-09-27 17:40 - 2015-12-23 01:04 - 000002141 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2017-09-25 13:30 - 2014-11-14 12:50 - 000000000 ___RD C:\Users\windows 7\OneDrive
2017-09-22 14:32 - 2016-05-08 00:10 - 000000000 ____D C:\Users\windows 7\Desktop\modif MP3
2017-09-20 03:01 - 2009-07-14 10:04 - 000000478 _____ C:\Windows\win.ini
2017-09-15 04:23 - 2009-07-14 10:37 - 000000000 ____D C:\Windows\rescache
2017-09-13 09:59 - 2014-11-20 09:19 - 000803328 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2017-09-13 09:59 - 2014-11-20 09:19 - 000144896 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2017-09-13 09:59 - 2014-11-20 09:19 - 000000000 ____D C:\Windows\system32\Macromed
2017-09-06 00:22 - 2017-03-17 00:31 - 000000000 ___RD C:\Program Files\Skype
2017-09-06 00:22 - 2015-03-16 16:33 - 000000000 ____D C:\ProgramData\Skype

==================== Files in the root of some directories =======

2014-11-10 16:05 - 2014-11-10 16:05 - 000000000 ____H () C:\ProgramData\DP45977C.lfl

Some files in TEMP:
====================
2017-10-06 13:32 - 2017-10-06 13:32 - 002752512 _____ () C:\Users\windows 7\AppData\Local\Temp\ReimagePackage.exe
2016-08-16 15:48 - 2016-08-16 15:48 - 000488960 _____ () C:\Users\windows 7\AppData\Local\Temp\sqlite3.exe

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\explorer.exe => File is digitally signed
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2017-09-30 17:51

==================== End of FRST.txt ============================

Publicité


Signaler le contenu de ce document

Publicité