Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 26-07-2015 Ran by Jack (administrator) on PC-DE-JACK (26-07-2015 17:14:37) Running from C:\Users\Jack\Desktop Loaded Profiles: IUSR_NMPR & Jack (Available Profiles: IUSR_NMPR & Jack & Administrateur) Platform: Microsoft® Windows Vista™ Édition Intégrale Service Pack 2 (X86) Language: Français (France) Internet Explorer Version 9 (Default browser: FF) Boot Mode: Normal Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processes (Whitelisted) ================= (If an entry is included in the fixlist, the process will be closed. The file will not be moved.) (G Data Software AG) C:\Program Files\Common Files\G DATA\GDScan\GDScan.exe (G Data Software AG) C:\Program Files\G Data\AntiVirus\AVK\AVKWCtl.exe (Microsoft Corporation) C:\Windows\System32\SLsvc.exe (Greatis Software, LLC) C:\Program Files\BootRacer\BootRacerServ.exe (Microsoft Corporation) C:\Windows\System32\wlanext.exe (G Data Software AG) C:\Program Files\G Data\AntiVirus\AVKTray\AVKTray.exe () C:\Program Files\Adobe\Photoshop Elements 6.0\PhotoshopElementsFileAgent.exe (Intel(R) Corporation) C:\Program Files\Intel\IntelDH\CCU\AlertService.exe (G Data Software AG) C:\Program Files\Common Files\G DATA\AVKProxy\AVKProxy.exe (G Data Software AG) C:\Program Files\G Data\AntiVirus\AVK\AVKService.exe (CyberLink) C:\Program Files\CyberLink\PowerDVD12\Kernel\DMS\CLMSServerPDVD12.exe () C:\Program Files\Common Files\Intel\IntelDH\NMS\AdpPlugins\DQLWinService.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe (Intel Corporation) C:\Windows\System32\IPROSetMonitor.exe (CybelSoft) C:\Program Files\ma-config.com\MaConfigAgent.exe (Intel(R) Corporation) C:\Program Files\Common Files\Intel\IntelDH\NMS\NMSCore\NMSCore.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe (Protexis Inc.) C:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe (Intel(R) Corporation) C:\Program Files\Intel\IntelDH\Intel Media Server\Media Server\bin\QualityManager.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe (SFX TEAM) C:\Program Files\SuperCopier2\SuperCopier2.exe (none) C:\Users\Jack\Documents\wlan-optimizer\WLAN Optimizer.exe (Microsoft Corporation) C:\Program Files\Windows Media Player\wmpnscfg.exe (Stardock Corporation) C:\Program Files\Stardock\CursorFX\CursorFX.exe (Creative Technology Ltd) C:\Program Files\Creative\Sound Blaster X-Fi\Volume Panel\VolPanlu.exe () C:\Program Files\XPSMiniViewGadget\XPSMiniViewGadget.exe (Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE (Intel(R) Corporation) C:\Program Files\Intel\IntelDH\Intel Media Server\Media Server\bin\issm.exe (Intel(R) Corporation) C:\Program Files\Intel\IntelDH\Intel Media Server\Shells\MCLServiceATL.exe (Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE (Creative Technology Ltd) C:\Windows\System32\CTxfispi.exe (Intel(R) Corporation) C:\Program Files\Intel\IntelDH\Intel Media Server\Shells\Remote UI Service.exe (Glarysoft Ltd) C:\Program Files\Glary Utilities 5\Integrator.exe (CyberLink Corp.) C:\Program Files\CyberLink\PowerDVD12\Kernel\DMP\CLHNServer\CLHNServiceForPowerDVD12.exe (Condusiv Technologies) C:\Program Files\Condusiv Technologies\Diskeeper\DkService.exe (Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe (Microsoft Corporation) C:\Program Files\Windows Live\Mail\wlmail.exe (Microsoft Corporation) C:\Program Files\Windows Live\Contacts\wlcomm.exe (Microsoft Corporation) C:\Windows\System32\conime.exe (Tonec Inc.) C:\Program Files\Internet Download Manager\IDMan.exe (Tonec Inc.) C:\Program Files\Internet Download Manager\IEMonitor.exe (Microsoft Corporation) C:\Windows\System32\conime.exe ==================== Registry (Whitelisted) ================== (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.) HKLM\...\Run: [NvBackend] => C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe [2631824 2015-07-14] (NVIDIA Corporation) HKLM\...\Winlogon: [Userinit] C:\Windows\system32\userinit.exe,C:\Program Files\G Data\AntiVirus\AVKTray\AVKTray.exe, HKLM\...\Policies\Explorer\Run: [BootRacer] => C:\Program Files\BootRacer\Bootrace.exe [3901200 2015-03-24] (Greatis Software) HKU\S-1-5-21-2838385541-2699793272-862096273-1000\...\Run: [WindowsWelcomeCenter] => "rundll32.exe" oobefldr.dll,ShowWelcomeCenter HKU\S-1-5-21-2838385541-2699793272-862096273-1000\...\Run: [swg] => C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [68856 2008-02-22] (Google Inc.) HKU\S-1-5-21-2838385541-2699793272-862096273-1000\...\Run: [WMPNSCFG] => C:\Program Files\Windows Media Player\WMPNSCFG.exe [202240 2008-01-19] (Microsoft Corporation) HKU\S-1-5-21-2838385541-2699793272-862096273-1000\...\Run: [SuperCopier2.exe] => C:\Program Files\SuperCopier2\SuperCopier2.exe [955392 2009-08-16] (SFX TEAM) HKU\S-1-5-21-2838385541-2699793272-862096273-1000\...\Run: [CursorFX] => C:\Program Files\Stardock\CursorFX\CursorFX.exe [432784 2012-05-10] (Stardock Corporation) HKU\S-1-5-21-2838385541-2699793272-862096273-1000\...\RunOnce: [InetReg] => "C:\Program Files\Creative\Enregistrement du produit\French\InetReg.exe" /PreProcess=RegFlash.exe /Delay=6 HKU\S-1-5-21-2838385541-2699793272-862096273-1000\...\RunOnce: [CTAutoUpdate] => C:\Program Files\Creative\Shared Files\Software Update\AutoUpdate.exe [430968 2009-01-15] (Creative Technology Ltd) HKU\S-1-5-21-2838385541-2699793272-862096273-1001\...\Run: [SuperCopier2.exe] => C:\Program Files\SuperCopier2\SuperCopier2.exe [955392 2009-08-16] (SFX TEAM) HKU\S-1-5-21-2838385541-2699793272-862096273-1001\...\Run: [WLAN Optimizer] => C:\Users\Jack\Documents\wlan-optimizer\WLAN Optimizer.exe [109056 2009-08-07] (none) HKU\S-1-5-21-2838385541-2699793272-862096273-1001\...\Run: [WMPNSCFG] => C:\Program Files\Windows Media Player\WMPNSCFG.exe [202240 2008-01-19] (Microsoft Corporation) HKU\S-1-5-21-2838385541-2699793272-862096273-1001\...\Run: [GUDelayStartup] => C:\Program Files\Glary Utilities 5\StartupManager.exe [37152 2015-07-20] (Glarysoft Ltd) HKU\S-1-5-21-2838385541-2699793272-862096273-1001\...\Run: [CursorFX] => C:\Program Files\Stardock\CursorFX\CursorFX.exe [432784 2012-05-10] (Stardock Corporation) Lsa: [Notification Packages] scecli C:\Program Files\WIDCOMM\Bluetooth Software\BtwProximityCP.dll Startup: C:\Users\Jack\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Panneau de volume Creative.lnk [2015-05-18] ShortcutTarget: Panneau de volume Creative.lnk -> C:\Program Files\Creative\Sound Blaster X-Fi\Volume Panel\VolPanlu.exe (Creative Technology Ltd) ShellIconOverlayIdentifiers: [IDM Shell Extension] -> {CDC95B92-E27C-4745-A8C5-64A52A78855D} => C:\Program Files\Internet Download Manager\IDMShellExt.dll [2015-07-24] (Tonec Inc.) BootExecute: autocheck autochk * CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION ==================== Internet (Whitelisted) ==================== (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.) HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Bar = http://search.msn.com/spbasic.htm HKU\S-1-5-21-2838385541-2699793272-862096273-1000\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank HKU\S-1-5-21-2838385541-2699793272-862096273-1000\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.google.com/ie HKU\S-1-5-21-2838385541-2699793272-862096273-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://fr.msn.com/?ocid=iehp HKU\S-1-5-21-2838385541-2699793272-862096273-1001\Software\Microsoft\Internet Explorer\Main,Search Bar = http://search.msn.com/spbasic.htm HKU\S-1-5-21-2838385541-2699793272-862096273-1001\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://fr.msn.com/?ocid=iehp HKU\S-1-5-21-2838385541-2699793272-862096273-1001\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank SearchScopes: HKLM -> {2f23ab71-4ac6-41f2-a955-ea576e553146} URL = SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-21-2838385541-2699793272-862096273-1001 -> DefaultScope {2f23ab71-4ac6-41f2-a955-ea576e553146} URL = http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage} SearchScopes: HKU\S-1-5-21-2838385541-2699793272-862096273-1001 -> {2f23ab71-4ac6-41f2-a955-ea576e553146} URL = http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage} BHO: IDM integration (IDMIEHlprObj Class) -> {0055C089-8582-441B-A0BF-17B458C2A3A8} -> C:\Program Files\Internet Download Manager\IDMIECC.dll [2015-07-08] (Internet Download Manager, Tonec Inc.) BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2015-07-17] (Google Inc.) Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2015-07-17] (Google Inc.) DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} http://download.eset.com/special/eos/OnlineScanner.cab DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab Handler: ms-itss - {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Program Files\Common Files\Microsoft Shared\Information Retrieval\msitss.dll [2006-06-05] (Microsoft Corporation) ShellExecuteHooks: DVDIdleShell Class - {93994DE8-8239-4655-B1D1-5F4E91300429} - C:\Program Files\DVD Region+CSS Free\DVDShell.dll [49152 2004-10-09] (Fengtao Software Inc.) Winsock: Catalog5 08 C:\Program Files\Bonjour\mdnsNSP.dll [152864 2010-05-18] (Apple Inc.) Tcpip\Parameters: [DhcpNameServer] 212.27.40.241 212.27.40.240 Tcpip\..\Interfaces\{C9B1F236-BBF0-4A34-8491-7F8885D61C07}: [NameServer] 129.250.35.251,212.27.40.241 Tcpip\..\Interfaces\{C9B1F236-BBF0-4A34-8491-7F8885D61C07}: [DhcpNameServer] 212.27.40.241 212.27.40.240 StartMenuInternet: IEXPLORE.EXE - iexplore.exe FireFox: ======== FF ProfilePath: C:\Users\Jack\AppData\Roaming\Mozilla\Firefox\Profiles\30rifqh7.default-1433685663940 FF NewTab: https://www.google.fr/ FF Homepage: https://www.google.fr/ FF NetworkProxy: "autoconfig_url", "http://proxyfreeyoutube.free.fr/youtube-ovh.pac" FF NetworkProxy: "type", 2 FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_18_0_0_209.dll [2015-07-14] () FF Plugin: @microsoft.com/WPF,version=3.5 -> c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll [2008-07-30] (Microsoft Corporation) FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.28.1\npGoogleUpdate3.dll [2015-07-15] (Google Inc.) FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.28.1\npGoogleUpdate3.dll [2015-07-15] (Google Inc.) FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2014-08-05] (Adobe Systems Inc.) FF Plugin ProgramFiles/Appdata: C:\Users\Jack\AppData\Roaming\mozilla\plugins\np-mswmp.dll [2009-09-25] (Microsoft Corporation) FF Extension: Fast Translation - C:\Users\Jack\AppData\Roaming\Mozilla\Firefox\Profiles\30rifqh7.default-1433685663940\Extensions\fasttrans@kemot [2015-06-07] FF Extension: Favicon Restorer - C:\Users\Jack\AppData\Roaming\Mozilla\Firefox\Profiles\30rifqh7.default-1433685663940\Extensions\faviconrestorer@masserog.it [2015-06-07] FF Extension: HTTPS-Everywhere - C:\Users\Jack\AppData\Roaming\Mozilla\Firefox\Profiles\30rifqh7.default-1433685663940\Extensions\https-everywhere@eff.org [2015-07-04] FF Extension: Favicon Icons for Search Engine Results - C:\Users\Jack\AppData\Roaming\Mozilla\Firefox\Profiles\30rifqh7.default-1433685663940\Extensions\jid0-Ap5n9ZGglDRSNbv6H8bIvOT3iuw@jetpack [2015-07-25] FF Extension: No Name - C:\Users\Jack\AppData\Roaming\Mozilla\Firefox\Profiles\30rifqh7.default-1433685663940\Extensions\trash [2015-07-25] FF Extension: BlackFox V2-Blue - C:\Users\Jack\AppData\Roaming\Mozilla\Firefox\Profiles\30rifqh7.default-1433685663940\Extensions\zigboom.designs@gmail(181).com [2015-07-11] FF Extension: FT DeepDark - C:\Users\Jack\AppData\Roaming\Mozilla\Firefox\Profiles\30rifqh7.default-1433685663940\Extensions\{77d2ed30-4cd2-11e0-b8af-0800200c9a66} [2015-06-25] FF Extension: Memory Fox - C:\Users\Jack\AppData\Roaming\Mozilla\Firefox\Profiles\30rifqh7.default-1433685663940\Extensions\{E173B749-DB5B-4fd2-BA0E-94ECEA0CA55B} [2015-07-23] FF Extension: Disconnect - C:\Users\Jack\AppData\Roaming\Mozilla\Firefox\Profiles\30rifqh7.default-1433685663940\Extensions\2.0@disconnect.me.xpi [2015-06-07] FF Extension: Custom New Tab - C:\Users\Jack\AppData\Roaming\Mozilla\Firefox\Profiles\30rifqh7.default-1433685663940\Extensions\CNT@ednovak.net.xpi [2015-06-07] FF Extension: Blur - C:\Users\Jack\AppData\Roaming\Mozilla\Firefox\Profiles\30rifqh7.default-1433685663940\Extensions\donottrackplus@abine.com.xpi [2015-07-14] FF Extension: Enforce Encryption - C:\Users\Jack\AppData\Roaming\Mozilla\Firefox\Profiles\30rifqh7.default-1433685663940\Extensions\enforceencryption@palant.de.xpi [2015-06-07] FF Extension: Image2Icon - C:\Users\Jack\AppData\Roaming\Mozilla\Firefox\Profiles\30rifqh7.default-1433685663940\Extensions\img2ico@mingyi.org.xpi [2015-06-07] FF Extension: DeferredTo - C:\Users\Jack\AppData\Roaming\Mozilla\Firefox\Profiles\30rifqh7.default-1433685663940\Extensions\jid0-7jRA83vLgp1WJxyHcbp43vxnnzs@jetpack.xpi [2015-07-12] FF Extension: YouTube Repeater - C:\Users\Jack\AppData\Roaming\Mozilla\Firefox\Profiles\30rifqh7.default-1433685663940\Extensions\jid1-eUaC9qdIgKgiWw@jetpack.xpi [2015-06-07] FF Extension: I don't care about cookies - C:\Users\Jack\AppData\Roaming\Mozilla\Firefox\Profiles\30rifqh7.default-1433685663940\Extensions\jid1-KKzOGWgsW3Ao4Q@jetpack.xpi [2015-07-03] FF Extension: AdBlock for YouTube™ - C:\Users\Jack\AppData\Roaming\Mozilla\Firefox\Profiles\30rifqh7.default-1433685663940\Extensions\jid1-q4sG8pYhq8KGHs@jetpack.xpi [2015-06-17] FF Extension: google-no-tracking-url - C:\Users\Jack\AppData\Roaming\Mozilla\Firefox\Profiles\30rifqh7.default-1433685663940\Extensions\jid1-zUrvDCat3xoDSQ@jetpack.xpi [2015-06-07] FF Extension: betterFox - Make your browsing experience 15% faster. - C:\Users\Jack\AppData\Roaming\Mozilla\Firefox\Profiles\30rifqh7.default-1433685663940\Extensions\multirevenue@googlemail.com.xpi [2015-07-23] FF Extension: Places Maintenance - C:\Users\Jack\AppData\Roaming\Mozilla\Firefox\Profiles\30rifqh7.default-1433685663940\Extensions\places-maintenance@bonardo.net.xpi [2015-06-07] FF Extension: Restart - C:\Users\Jack\AppData\Roaming\Mozilla\Firefox\Profiles\30rifqh7.default-1433685663940\Extensions\Restart@schuzak.jp.xpi [2015-06-07] FF Extension: Smart Referer - C:\Users\Jack\AppData\Roaming\Mozilla\Firefox\Profiles\30rifqh7.default-1433685663940\Extensions\smart-referer@meh.paranoid.pk.xpi [2015-06-07] FF Extension: Tab Scope - C:\Users\Jack\AppData\Roaming\Mozilla\Firefox\Profiles\30rifqh7.default-1433685663940\Extensions\tabscope@xuldev.org.xpi [2015-06-07] FF Extension: Vacuum Places Improved - C:\Users\Jack\AppData\Roaming\Mozilla\Firefox\Profiles\30rifqh7.default-1433685663940\Extensions\VacuumPlacesImproved@lultimouomo-gmail.com.xpi [2015-06-07] FF Extension: Lyrics Here by Rob W - C:\Users\Jack\AppData\Roaming\Mozilla\Firefox\Profiles\30rifqh7.default-1433685663940\Extensions\youtube-lyrics-by-rob-w@jetpack.xpi [2015-06-07] FF Extension: SmoothWheel (mozdev.org) - C:\Users\Jack\AppData\Roaming\Mozilla\Firefox\Profiles\30rifqh7.default-1433685663940\Extensions\{5F590AA2-1221-4113-A6F4-A4BB62414FAC}.xpi [2015-06-21] FF Extension: IE View - C:\Users\Jack\AppData\Roaming\Mozilla\Firefox\Profiles\30rifqh7.default-1433685663940\Extensions\{6e84150a-d526-41f1-a480-a67d3fed910d}.xpi [2015-06-07] FF Extension: deskCut - C:\Users\Jack\AppData\Roaming\Mozilla\Firefox\Profiles\30rifqh7.default-1433685663940\Extensions\{9125C9CB-BE2B-4389-A0C7-46A4BDD46AEA}.xpi [2015-06-07] FF Extension: Adblock Plus - C:\Users\Jack\AppData\Roaming\Mozilla\Firefox\Profiles\30rifqh7.default-1433685663940\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2015-06-07] FF Extension: Greasemonkey - C:\Users\Jack\AppData\Roaming\Mozilla\Firefox\Profiles\30rifqh7.default-1433685663940\Extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}.xpi [2015-06-07] FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension FF Extension: Microsoft .NET Framework Assistant - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2014-02-27] FF HKU\S-1-5-21-2838385541-2699793272-862096273-1001\...\Firefox\Extensions: [mozilla_cc2@internetdownloadmanager.com] - C:\Users\Jack\AppData\Roaming\IDM\idmmzcc7 FF Extension: IDM integration - C:\Users\Jack\AppData\Roaming\IDM\idmmzcc7 [2015-07-25] FF HKU\S-1-5-21-2838385541-2699793272-862096273-1001\...\Firefox\Extensions: [mozilla_cc@internetdownloadmanager.com] - C:\Users\Jack\AppData\Roaming\IDM\idmmzcc5 FF Extension: IDM CC - C:\Users\Jack\AppData\Roaming\IDM\idmmzcc5 [2015-07-14] FF HKU\S-1-5-21-2838385541-2699793272-862096273-1001\...\SeaMonkey\Extensions: [mozilla_cc@internetdownloadmanager.com] - C:\Users\Jack\AppData\Roaming\IDM\idmmzcc5 Chrome: ======= CHR dev: Chrome dev build detected! <======= ATTENTION CHR Profile: C:\Users\Jack\AppData\Local\Google\Chrome\User Data\Default CHR HKLM\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files\Internet Download Manager\IDMGCExt.crx [2015-07-24] ========================== Services (Whitelisted) ================= (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) R2 AdobeActiveFileMonitor6.0; C:\Program Files\Adobe\Photoshop Elements 6.0\PhotoshopElementsFileAgent.exe [124832 2007-09-11] () R2 AlertService; C:\Program Files\Intel\IntelDH\CCU\AlertService.exe [223448 2007-06-27] (Intel(R) Corporation) R2 AVKProxy; C:\Program Files\Common Files\G Data\AVKProxy\AVKProxy.exe [2558072 2015-06-19] (G Data Software AG) R2 AVKService; C:\Program Files\G Data\AntiVirus\AVK\AVKService.exe [966776 2015-06-16] (G Data Software AG) R2 AVKWCtl; C:\Program Files\G Data\AntiVirus\AVK\AVKWCtl.exe [2907776 2015-06-16] (G Data Software AG) R2 BootRacerServ; C:\Program Files\BootRacer\BootRacerServ.exe [65296 2014-04-30] (Greatis Software, LLC) R2 CLHNServiceForPowerDVD12; C:\Program Files\CyberLink\PowerDVD12\Kernel\DMP\CLHNServer\CLHNServiceForPowerDVD12.exe [89864 2013-11-29] (CyberLink Corp.) S3 Creative ALchemy AL6 Licensing Service; C:\Program Files\Common Files\Creative Labs Shared\Service\AL6Licensing.exe [79360 2013-04-20] (Creative Labs) [File not signed] S3 Creative Audio Engine Licensing Service; C:\Program Files\Common Files\Creative Labs Shared\Service\CTAELicensing.exe [79360 2010-05-14] (Creative Labs) [File not signed] S3 CTAudSvcService; C:\Program Files\Creative\Shared Files\CTAudSvc.exe [307200 2009-02-23] (Creative Technology Ltd) [File not signed] S3 CyberLink PowerDVD 12 Media Server Monitor Service; C:\Program Files\CyberLink\PowerDVD12\Kernel\DMS\CLMSMonitorServicePDVD12.exe [77576 2013-11-29] (CyberLink) R2 CyberLink PowerDVD 12 Media Server Service; C:\Program Files\CyberLink\PowerDVD12\Kernel\DMS\CLMSServerPDVD12.exe [294664 2013-11-29] (CyberLink) S4 DellDataVault; C:\Program Files\Dell\DellDataVault\DellDataVault.exe [1942224 2015-01-31] (Dell Inc.) S4 DellDataVaultWiz; C:\Program Files\Dell\DellDataVault\DellDataVaultWiz.exe [183504 2015-01-31] (Dell Inc.) S3 DHTRACE; C:\Program Files\Common Files\Intel\IntelDH\bin\DHTraceController.exe [39640 2007-06-27] (Intel(R) Corporation) R2 Diskeeper; C:\Program Files\Condusiv Technologies\Diskeeper\DkService.exe [2163064 2012-07-27] (Condusiv Technologies) R2 DQLWinService; C:\Program Files\Common Files\Intel\IntelDH\NMS\AdpPlugins\DQLWinService.exe [208896 2007-02-12] () [File not signed] S3 FLEXnet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [654848 2008-02-22] (Macrovision Europe Ltd.) [File not signed] S4 FreeAgentGoNext Service; C:\Program Files\Seagate\SeagateManager\Sync\FreeAgentService.exe [189736 2009-09-25] (Seagate Technology LLC) R3 GDScan; C:\Program Files\Common Files\G Data\GDScan\GDScan.exe [789624 2015-06-16] (G Data Software AG) R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [921232 2015-07-14] (NVIDIA Corporation) S3 GoogleDesktopManager-051210-111108; C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe [30192 2010-06-07] (Google) S3 IDriverT; C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe [73728 2004-10-22] (Macrovision Corporation) [File not signed] R2 Intel(R) PROSet Monitoring Service; C:\Windows\system32\IProsetMonitor.exe [121088 2013-02-23] (Intel Corporation) R2 ISSM; C:\Program Files\Intel\IntelDH\Intel Media Server\Media Server\bin\ISSM.exe [59096 2007-06-27] (Intel(R) Corporation) S4 M1 Server; C:\Program Files\Intel\IntelDH\Intel Media Server\Media Server\bin\mediaserver.exe [268504 2007-06-27] () R2 MaConfigAgent; C:\Program Files\ma-config.com\MaConfigAgent.exe [2211968 2015-06-19] (CybelSoft) S2 MBAMService; C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe [1133880 2015-06-18] (Malwarebytes Corporation) R2 MCLServiceATL; C:\Program Files\Intel\IntelDH\Intel Media Server\Shells\MCLServiceATL.exe [157912 2007-06-27] (Intel(R) Corporation) R2 NMSCore; C:\Program Files\Common Files\Intel\IntelDH\NMS\NMSCore\NMSCore.exe [317656 2007-06-27] (Intel(R) Corporation) R2 NvNetworkService; C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe [1871504 2015-07-14] (NVIDIA Corporation) R2 QualityManager; C:\Program Files\Intel\IntelDH\Intel Media Server\Media Server\bin\qualitymanager.exe [272600 2007-06-27] (Intel(R) Corporation) R2 Remote UI Service; C:\Program Files\Intel\IntelDH\Intel Media Server\Shells\Remote UI Service.exe [446680 2007-06-27] (Intel(R) Corporation) S3 RichVideo; C:\Program Files\CyberLink\Shared Files\RichVideo.exe [241734 2008-02-14] () [File not signed] S2 RoxLiveShare10; C:\Program Files\Common Files\Roxio Shared\10.0\SharedCOM\RoxLiveShare10.exe [309744 2007-12-14] (Sonic Solutions) R2 ShellHWDetection; C:\Windows\System32\shsvcs.dll [247296 2015-07-17] (Microsoft Corporation) [File not signed] R2 Themes; C:\Windows\system32\shsvcs.dll [247296 2015-07-17] (Microsoft Corporation) [File not signed] S4 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [272952 2008-01-19] (Microsoft Corporation) S3 wltrysvc; C:\Program Files\Broadcom\Broadcom 802.11 Network Adapter\bcmwltry.exe [5127168 2014-10-30] (Broadcom Corporation) [File not signed] S2 SessionLauncher; No ImagePath S3 sprtsvc_dellsupportcenter; No ImagePath ==================== Drivers (Whitelisted) ==================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) S3 BCM42RLY; C:\Windows\System32\drivers\BCM42RLY.sys [19664 2014-10-30] (Broadcom Corporation) R0 Bhbase; C:\Windows\System32\drivers\Bhbase.sys [46440 2015-03-31] (Baidu, Inc.) R3 btwampfl; C:\Windows\system32\drivers\btwampfl.sys [504360 2012-04-01] (Broadcom Corporation.) S3 cpudrv; C:\Program Files\SystemRequirementsLab\cpudrv.sys [11336 2009-12-18] () R3 DDDriver; C:\Windows\System32\drivers\DDDriver32Dcsa.sys [20688 2015-01-31] (Dell Computer Corporation) R3 DellProf; C:\Windows\System32\drivers\DellProf.sys [19984 2015-01-31] (Dell Computer Corporation) R0 DKDFM; C:\Windows\System32\drivers\DKDFM.sys [35120 2012-04-05] (Condusiv Technologies) R3 DKRtWrt; C:\Windows\System32\DRIVERS\DKRtWrt.sys [44496 2012-06-18] (Condusiv Technologies) R0 DKTLFSMF; C:\Windows\System32\drivers\DKTLFSMF.sys [85328 2012-07-09] (Condusiv Technologies) R0 GDBehave; C:\Windows\System32\drivers\GDBehave.sys [112640 2015-07-21] (G Data Software AG) S3 GDKBB; C:\Windows\system32\drivers\GDKBB32.sys [24192 2015-03-31] (G Data Software AG) S1 GDKBFlt; C:\Windows\system32\drivers\GDKBFlt32.sys [20352 2015-03-31] (G Data Software AG) R1 GDMnIcpt; C:\Windows\system32\drivers\MiniIcpt.sys [161280 2015-07-21] (G Data Software AG) R3 GDPkIcpt; C:\Windows\system32\drivers\PktIcpt.sys [73216 2015-07-21] (G Data Software AG) R1 gdwfpcd; C:\Windows\System32\drivers\gdwfpcd32.sys [54272 2015-07-21] (G Data Software AG) R1 GRD; C:\Windows\system32\drivers\GRD.sys [29528 2015-03-31] (G Data Software) R1 GUBootStartup; C:\Windows\System32\drivers\GUBootStartup.sys [17472 2015-07-04] (Glarysoft Ltd) R1 HookCentre; C:\Windows\system32\drivers\HookCentre.sys [87040 2015-07-21] (G Data Software AG) R0 hotcore3; C:\Windows\System32\DRIVERS\hotcore3.sys [40496 2008-12-13] (Paragon Software Group) R1 HWiNFO32; C:\Windows\system32\drivers\HWiNFO32.SYS [23840 2015-07-09] (REALiX(tm)) R0 iaStorA; C:\Windows\System32\DRIVERS\iaStorA.sys [1935600 2015-03-26] (Intel Corporation) R0 iaStorF; C:\Windows\System32\DRIVERS\iaStorF.sys [27376 2015-03-26] (Intel Corporation) R3 IntelDH; C:\Windows\System32\Drivers\IntelDH.sys [5632 2008-02-22] (Intel Corporation) S3 LazerUsb; C:\Windows\System32\DRIVERS\LazerUsb.sys [5734400 2007-08-29] (Lumanate Inc.) R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [23256 2015-06-18] (Malwarebytes Corporation) S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [51928 2015-06-18] (Malwarebytes Corporation) U4 msahci; No ImagePath R0 MxEFUF; C:\Windows\System32\DRIVERS\MxEFUF32.sys [108544 2011-08-15] (Matrox Graphics Inc.) [File not signed] S3 NAL; C:\Windows\system32\Drivers\iqvw32.sys [31048 2013-02-21] (Intel Corporation ) R2 nmsunidr; C:\Windows\System32\DRIVERS\nmsunidr.sys [5376 2007-02-18] (Gteko Ltd.) S1 NNSHTTPS; C:\Windows\System32\DRIVERS\NNSHttps.sys [95584 2013-01-09] (Panda Security, S.L.) R2 ntk_PowerDVD12; C:\Program Files\CyberLink\PowerDVD12\Kernel\DMP\CLHNServer\ntk_PowerDVD12.sys [74952 2013-03-15] (Cyberlink Corp.) S3 Passthru; C:\Windows\System32\DRIVERS\PPFlt.sys [26912 2013-01-17] () R2 PCTAppEvent; C:\Windows\system32\drivers\PCTAppEvent.sys [163288 2012-10-22] (PC Tools) S3 PCTBD; C:\Windows\System32\Drivers\PCTBD.sys [62688 2012-10-23] (PC Tools) R0 PCTCore; C:\Windows\System32\drivers\PCTCore.sys [368616 2012-10-22] (PC Tools) R0 pctDS; C:\Windows\System32\drivers\pctDS.sys [342168 2012-02-28] (PC Tools) R0 pctEFA; C:\Windows\System32\drivers\pctEFA.sys [909728 2012-02-28] (PC Tools) S3 PCTFW-PacketFilter; C:\Windows\system32\drivers\pctNdis-PacketFilter.sys [92608 2013-04-21] (PC Tools) R1 pctgntdi; C:\Windows\System32\drivers\pctgntdi.sys [260760 2012-10-31] (PC Tools) R1 pctNdisLW; C:\Windows\System32\DRIVERS\pctNdisLW.sys [60128 2013-04-21] (PC Tools) S3 pctplfw; C:\Windows\System32\drivers\pctplfw.sys [128024 2013-04-21] (PC Tools) S3 pctplsg; C:\Windows\System32\drivers\pctplsg.sys [71752 2012-11-01] (PC Tools) S3 pctplsm; C:\Windows\System32\drivers\pctplsm.sys [68272 2012-11-01] (PC Tools) R1 PCTSD; C:\Windows\System32\Drivers\PCTSD.sys [202280 2012-11-01] (PC Tools) R3 PrivacyProtectorMP; C:\Windows\System32\DRIVERS\PPFlt.sys [26912 2013-01-17] () R3 SmbDrvI; C:\Windows\System32\DRIVERS\Smb_driver_Intel.sys [25328 2014-04-12] (Synaptics Incorporated) S3 tap-tb-0901; C:\Windows\System32\DRIVERS\tap-tb-0901.sys [33280 2015-02-11] (The OpenVPN Project) S3 tap0901; C:\Windows\System32\DRIVERS\tap0901.sys [35288 2013-08-22] (The OpenVPN Project) R0 TfFsMon; C:\Windows\System32\drivers\TfFsMon.sys [55008 2012-10-31] (PC Tools) S3 TfNetMon; C:\Windows\system32\drivers\TfNetMon.sys [36456 2012-10-31] (PC Tools) R0 TFSysMon; C:\Windows\System32\drivers\TfSysMon.sys [577176 2012-10-31] (PC Tools) R2 tifsfilter; C:\Windows\System32\DRIVERS\tifsfilt.sys [44384 2010-08-22] (Acronis) S3 TSHWMDTCP; C:\Program Files\Intel\IntelDH\Intel Media Server\Media Server\bin\TSHWMDTCP.sys [14552 2007-06-27] () S3 WiseHDInfo; C:\Windows\WiseHDInfo32.dll [11816 2015-03-23] (wisecleaner.com) [File not signed] R1 WiseTDIFw; C:\Windows\WiseTDIFw.sys [41512 2015-03-23] (WiseCleaner.com) [File not signed] R2 {73526619-C24F-470B-9BED-53D455FBB5C6}; C:\Program Files\CyberLink\PowerDVD12\Common\NavFilter\000.fcl [26824 2013-11-29] (CyberLink Corp.) S1 ArcSec; No ImagePath S4 blbdrive; No ImagePath S3 CT20XUT.DLL; No ImagePath S3 CTEXFIFX.DLL; No ImagePath S3 CTHWIUT.DLL; No ImagePath U3 DfSdkS; No ImagePath S3 IpInIp; No ImagePath S3 NwlnkFlt; No ImagePath S3 NwlnkFwd; No ImagePath S3 PcdrNdisuio; No ImagePath S1 RawDisk3; \??\C:\Windows\system32\drivers\rawdsk3.sys [X] S3 tapSF0901; system32\DRIVERS\tapSF0901.sys [X] S3 udsstub; system32\DRIVERS\udsstub.sys [X] ==================== NetSvcs (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) ==================== One Month Created files and folders ======== (If an entry is included in the fixlist, the file/folder will be moved.) 2015-07-26 17:14 - 2015-07-26 17:15 - 00030333 _____ C:\Users\Jack\Desktop\FRST.txt 2015-07-26 17:14 - 2015-07-26 17:14 - 00000000 ____D C:\FRST 2015-07-26 17:09 - 2015-07-26 17:09 - 01650688 _____ (Farbar) C:\Users\Jack\Desktop\FRST.exe 2015-07-26 16:33 - 2015-07-26 16:33 - 00000000 ____D C:\Users\Jack\AppData\Local\{2A61EFF6-D4A2-464E-A4B3-131D562ABFC5} 2015-07-25 14:15 - 2015-07-25 14:15 - 00000000 ____D C:\Users\Jack\AppData\Local\Adobe 2015-07-25 13:28 - 2015-07-25 13:28 - 00000000 ____D C:\Users\Jack\AppData\Local\{5EDD3C00-6D3A-4458-A3A2-50A1B46582BB} 2015-07-24 16:16 - 2015-07-24 16:16 - 00000000 ____D C:\Users\Jack\AppData\Local\{F6F194D3-F572-470F-85B7-D38B159C1682} 2015-07-24 16:14 - 2015-07-24 16:14 - 00000000 ____D C:\Users\Jack\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Notepad++ 2015-07-24 15:26 - 2015-06-12 04:00 - 00123968 _____ (Tonec Inc.) C:\Windows\system32\Drivers\idmwfp.sys 2015-07-23 20:19 - 2015-07-23 20:19 - 00000000 ____D C:\Users\Jack\AppData\Local\{81FA917B-917D-4B76-9617-09E8C962B916} 2015-07-23 18:06 - 2015-07-23 18:06 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack 2015-07-23 18:06 - 2015-07-23 18:06 - 00000000 ____D C:\Program Files\K-Lite Codec Pack 2015-07-23 18:06 - 2015-07-21 20:00 - 00112128 _____ C:\Windows\system32\ff_vfw.dll 2015-07-23 18:06 - 2015-06-22 15:25 - 00240128 _____ C:\Windows\system32\xvidvfw.dll 2015-07-23 18:06 - 2015-06-22 15:24 - 00655872 _____ C:\Windows\system32\xvidcore.dll 2015-07-23 18:06 - 2015-02-28 17:21 - 03591680 _____ (x264vfw project) C:\Windows\system32\x264vfw.dll 2015-07-23 18:06 - 2012-07-21 12:54 - 00122880 _____ (fccHandler) C:\Windows\system32\ac3acm.acm 2015-07-23 18:06 - 2011-12-07 19:32 - 00216064 _____ ( ) C:\Windows\system32\lagarith.dll 2015-07-23 01:18 - 2015-07-23 01:18 - 00083616 _____ C:\Users\Jack\AppData\Local\GDIPFONTCACHEV1.DAT 2015-07-23 01:15 - 2015-07-23 17:43 - 00004146 _____ C:\Windows\PFRO.log 2015-07-23 01:15 - 2015-07-23 01:15 - 00364032 _____ C:\Windows\system32\FNTCACHE.DAT 2015-07-22 14:08 - 2015-07-22 14:08 - 00000000 ____D C:\Users\Jack\AppData\Local\{0E9BA44D-8616-46E7-9C1C-3564AD9C3BE8} 2015-07-21 22:29 - 2015-07-21 22:29 - 00000000 ____D C:\Users\Jack\AppData\Local\{0E308A36-72CB-4877-9398-1AC551D6061D} 2015-07-21 20:25 - 2015-07-21 20:25 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\G DATA ANTIVIRUS 2015-07-20 19:07 - 2015-07-14 18:02 - 00034304 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll 2015-07-20 19:07 - 2015-07-14 16:23 - 00296960 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll 2015-07-17 17:48 - 2015-07-17 17:48 - 16467456 _____ (Microsoft Corporation) C:\Windows\system32\imageres.dll 2015-07-17 16:27 - 2015-07-25 13:27 - 00000000 ____D C:\Program Files\SpywareBlaster 2015-07-17 16:27 - 2015-07-17 16:27 - 00000850 _____ C:\Users\Public\Desktop\SpywareBlaster.lnk 2015-07-17 16:27 - 2015-07-17 16:27 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SpywareBlaster 2015-07-16 17:26 - 2015-07-16 17:26 - 00000000 ____D C:\Users\Jack\AppData\Local\{02913C60-AD55-4D1D-ABCC-CF36F48D371E} 2015-07-15 17:13 - 2015-07-15 17:14 - 00000000 ____D C:\Users\Jack\AppData\Local\{04CAC844-9FB9-4118-BD6F-F215CDD16DD5} 2015-07-15 16:53 - 2015-07-03 18:04 - 01316864 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll 2015-07-15 16:53 - 2015-06-25 04:57 - 02066432 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys 2015-07-15 16:52 - 2015-06-17 18:50 - 02264576 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll 2015-07-15 16:52 - 2015-06-17 17:09 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\msiexec.exe 2015-07-15 16:52 - 2015-06-12 18:01 - 00298496 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll 2015-07-15 16:44 - 2015-05-31 10:11 - 00225792 _____ (Microsoft Corporation) C:\Windows\system32\cewmdm.dll 2015-07-15 16:43 - 2015-06-27 18:03 - 00783872 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll 2015-07-15 16:43 - 2015-06-27 18:02 - 00501248 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll 2015-07-15 16:43 - 2015-06-27 18:02 - 00218112 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll 2015-07-15 16:43 - 2015-06-27 18:01 - 00801280 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll 2015-07-15 16:43 - 2015-06-27 16:21 - 00217088 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys 2015-07-15 16:43 - 2015-06-27 16:21 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys 2015-07-15 16:43 - 2015-06-12 15:13 - 00440768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys 2015-07-15 16:43 - 2015-01-09 02:17 - 00107008 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys 2015-07-15 16:38 - 2015-07-03 07:31 - 12386304 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll 2015-07-15 16:38 - 2015-07-03 07:18 - 02382848 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb 2015-07-15 16:38 - 2015-06-17 03:14 - 01810432 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll 2015-07-15 16:38 - 2015-06-17 03:12 - 09750528 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll 2015-07-15 16:38 - 2015-06-17 03:12 - 00367616 _____ (Microsoft Corporation) C:\Windows\system32\html.iec 2015-07-15 16:38 - 2015-06-17 03:10 - 01139712 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll 2015-07-15 16:38 - 2015-06-17 03:09 - 01804288 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll 2015-07-15 16:38 - 2015-06-17 03:09 - 01427968 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl 2015-07-15 16:38 - 2015-06-17 03:09 - 01129472 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll 2015-07-15 16:38 - 2015-06-17 03:09 - 00421888 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll 2015-07-15 16:38 - 2015-06-17 03:08 - 00718336 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll 2015-07-15 16:38 - 2015-06-17 03:08 - 00607744 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll 2015-07-15 16:38 - 2015-06-17 03:08 - 00353792 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll 2015-07-15 16:38 - 2015-06-17 03:08 - 00231936 _____ (Microsoft Corporation) C:\Windows\system32\url.dll 2015-07-15 16:38 - 2015-06-17 03:08 - 00223232 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll 2015-07-15 16:38 - 2015-06-17 03:08 - 00176640 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll 2015-07-15 16:38 - 2015-06-17 03:08 - 00142848 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe 2015-07-15 16:38 - 2015-06-17 03:08 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll 2015-07-15 16:38 - 2015-06-17 03:08 - 00065024 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll 2015-07-15 16:38 - 2015-06-17 03:08 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll 2015-07-15 16:38 - 2015-06-17 03:08 - 00011776 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe 2015-07-15 16:38 - 2015-06-17 03:08 - 00010752 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe 2015-07-14 14:53 - 2015-07-14 14:53 - 00000000 ____D C:\Users\Jack\AppData\Local\{75EB9187-16E6-434B-B2DF-45DF024451E4} 2015-07-12 18:20 - 2015-07-12 18:41 - 00000000 ____D C:\ProgramData\RogueKiller 2015-07-12 13:11 - 2015-07-12 13:11 - 00000997 _____ C:\Users\Public\Desktop\Ashampoo WinOptimizer 12.lnk 2015-07-12 13:11 - 2015-07-12 13:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ashampoo 2015-07-12 13:11 - 2009-08-24 22:08 - 00028160 _____ (mst software GmbH, Germany) C:\Windows\system32\DfSdkBt.exe 2015-07-12 13:03 - 2015-07-12 13:03 - 00000000 ____D C:\Users\Jack\AppData\Local\{EFC24DB3-96A8-48E4-B68E-5BA643316A54} 2015-07-11 20:37 - 2015-07-11 20:37 - 00000000 ____D C:\Users\Jack\AppData\Local\{B649F2E8-35F2-4228-9699-4A591DCAAF07} 2015-07-11 14:39 - 2015-07-11 14:40 - 00000000 ____D C:\Users\Jack\AppData\Local\{288B011F-9DFC-433B-851F-F42F0C2F5EB3} 2015-07-10 21:23 - 2015-07-10 21:23 - 00000000 ____D C:\Users\Jack\Downloads\Hola 2015-07-10 14:58 - 2015-07-10 14:58 - 00000000 ____D C:\Users\Jack\AppData\Local\{DC0F7A25-37BD-4771-AC2B-194CD49D8BCF} 2015-07-09 18:24 - 2015-07-09 18:24 - 00023840 _____ (REALiX(tm)) C:\Windows\system32\Drivers\HWiNFO32.SYS 2015-07-09 17:28 - 2015-07-09 17:28 - 00000000 ____D C:\Users\Jack\AppData\Local\{3955D3B4-5B1D-42C7-966F-2E60A06B554D} 2015-07-08 23:32 - 2015-07-08 23:32 - 00000000 ____D C:\ProgramData\GlarySoft 2015-07-08 00:15 - 2015-07-08 00:15 - 00000000 ____D C:\Users\Jack\AppData\Roaming\Condusiv_Technologies 2015-07-08 00:15 - 2015-07-08 00:15 - 00000000 ____D C:\Users\Jack\AppData\Local\Condusiv_Technologies 2015-07-08 00:15 - 2013-05-29 22:12 - 00000278 _____ C:\Users\Jack\Documents\TRdiskeeper 12.reg 2015-07-07 23:17 - 2015-07-07 23:17 - 00001020 _____ C:\Users\Jack\Desktop\Diskeeper12.lnk 2015-07-07 23:16 - 2015-07-07 23:16 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Condusiv Technologies 2015-07-07 23:16 - 2015-07-07 23:16 - 00000000 ____D C:\Program Files\Windows Home Server 2015-07-07 23:16 - 2012-07-09 14:54 - 00085328 _____ (Condusiv Technologies) C:\Windows\system32\Drivers\DKTLFSMF.sys 2015-07-07 23:16 - 2012-06-18 19:14 - 00044496 _____ (Condusiv Technologies) C:\Windows\system32\Drivers\DKRtWrt.sys 2015-07-07 23:16 - 2012-04-05 02:32 - 00035120 _____ (Condusiv Technologies) C:\Windows\system32\Drivers\DKDFM.sys 2015-07-04 14:00 - 2015-07-21 15:39 - 00000861 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Glary Utilities 5.lnk 2015-07-04 14:00 - 2015-07-21 15:39 - 00000849 _____ C:\Users\Public\Desktop\Glary Utilities 5.lnk 2015-07-04 14:00 - 2015-07-04 14:00 - 00017472 _____ (Glarysoft Ltd) C:\Windows\system32\Drivers\GUBootStartup.sys 2015-07-04 14:00 - 2015-07-04 14:00 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Glary Utilities 5 2015-07-04 13:59 - 2015-07-26 16:29 - 00000000 ____D C:\Program Files\Glary Utilities 5 2015-07-03 17:08 - 2015-07-03 17:08 - 00000103 _____ C:\wrs_ff_install.log 2015-07-03 02:43 - 2015-07-03 02:44 - 00000000 ____D C:\Users\Jack\AppData\Local\AviraSpeedup 2015-07-01 15:22 - 2015-07-01 15:22 - 00009336 ____N (G DATA Software AG) C:\Windows\system32\GDScrSv.fr.dll 2015-06-29 21:06 - 2015-07-03 02:44 - 00000000 ____D C:\Program Files\Avira 2015-06-27 21:57 - 2015-06-27 21:57 - 00000406 _____ C:\Windows\system32\ioloBootDefrag.cfg 2015-06-27 20:56 - 2015-06-27 20:56 - 00000000 ____D C:\Windows\system32\config\Original 2015-06-26 18:37 - 2015-07-23 01:15 - 00000000 ____D C:\Program Files\Argente Utilities 2015-06-26 18:37 - 2015-06-26 18:37 - 00000837 _____ C:\Users\Public\Desktop\Argente Utilities.lnk 2015-06-26 18:37 - 2015-06-26 18:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Argente Utilities ==================== One Month Modified files and folders ======== (If an entry is included in the fixlist, the file/folder will be moved.) 2015-07-26 17:15 - 2010-05-06 01:30 - 00000432 ____H C:\Windows\Tasks\User_Feed_Synchronization-{4902AA65-DC26-488B-818C-4A82EAABA173}.job 2015-07-26 16:52 - 2014-01-02 22:17 - 00001002 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job 2015-07-26 16:33 - 2015-03-23 22:47 - 01684900 _____ C:\Windows\WindowsUpdate.log 2015-07-26 16:25 - 2015-05-28 18:36 - 00000000 ____D C:\Program Files\BootRacer 2015-07-26 16:25 - 2013-12-09 23:02 - 00000551 ____H C:\Users\Public\Documents\bootracer.log 2015-07-26 16:25 - 2012-07-26 21:33 - 00000593 ____H C:\Users\Public\Documents\bootracer.ini 2015-07-26 16:25 - 2010-04-20 09:11 - 00001052 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2015-07-26 16:25 - 2006-11-02 15:00 - 00000006 ____H C:\Windows\Tasks\SA.DAT 2015-07-26 16:25 - 2006-11-02 14:46 - 00003568 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0 2015-07-26 16:25 - 2006-11-02 14:46 - 00003568 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0 2015-07-25 23:38 - 2008-02-22 04:01 - 00000012 _____ C:\Windows\bthservsdp.dat 2015-07-25 23:38 - 2006-11-02 15:00 - 00032476 _____ C:\Windows\Tasks\SCHEDLGU.TXT 2015-07-25 23:22 - 2010-04-20 09:11 - 00001056 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2015-07-25 14:09 - 2013-03-12 00:35 - 00000000 ____D C:\Users\Jack\AppData\Roaming\DMCache 2015-07-25 14:08 - 2015-06-14 02:11 - 00000000 ____D C:\Program Files\Internet Download Manager 2015-07-25 13:58 - 2013-05-11 18:12 - 00000952 _____ C:\Windows\system32\RW_{03392292-4C43-11DF-AC9C-001C26DC1E88}.dat 2015-07-25 13:55 - 2015-06-14 02:12 - 00000000 ____D C:\Users\Jack\AppData\Roaming\IDM 2015-07-25 13:27 - 2010-04-24 16:51 - 00000000 ____D C:\ProgramData\TEMP 2015-07-24 16:14 - 2013-05-29 21:33 - 00000000 ____D C:\Users\Jack\AppData\Roaming\Notepad++ 2015-07-24 16:14 - 2013-05-29 21:33 - 00000000 ____D C:\Program Files\Notepad++ 2015-07-24 16:11 - 2014-02-20 18:21 - 00000000 ____D C:\Users\Jack\AppData\Roaming\WiseUpdate 2015-07-23 17:57 - 2013-08-28 00:56 - 00000766 _____ C:\Users\Public\Desktop\CCleaner.lnk 2015-07-23 17:57 - 2013-08-28 00:56 - 00000000 ____D C:\Program Files\CCleaner 2015-07-23 17:53 - 2012-07-10 18:09 - 00000000 ____D C:\Users\Jack\AppData\Roaming\Wise Disk Cleaner 2015-07-23 01:15 - 2015-05-27 16:46 - 00000000 ____D C:\ProgramData\McAfee 2015-07-23 01:12 - 2015-03-14 21:49 - 00000000 ____D C:\tempDIR 2015-07-22 22:14 - 2015-02-05 19:29 - 00098520 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys 2015-07-22 21:17 - 2014-02-26 17:09 - 00000000 ____D C:\Windows\SoftwareDistribution.Old 2015-07-22 16:48 - 2013-05-10 23:24 - 00000000 ____D C:\Users\Jack\AppData\Local\CrashDumps 2015-07-22 16:45 - 2015-06-22 23:21 - 00000000 ____D C:\Users\Jack\AppData\Roaming\uTorrent 2015-07-21 21:07 - 2006-11-02 12:23 - 00000378 _____ C:\Windows\win.ini 2015-07-21 20:27 - 2015-03-31 20:53 - 00073216 _____ (G Data Software AG) C:\Windows\system32\Drivers\PktIcpt.sys 2015-07-21 20:25 - 2015-03-31 20:52 - 00054272 _____ (G Data Software AG) C:\Windows\system32\Drivers\gdwfpcd32.sys 2015-07-21 20:25 - 2015-03-31 20:52 - 00001752 _____ C:\Users\Public\Desktop\G DATA ANTIVIRUS.lnk 2015-07-21 20:25 - 2015-03-31 20:51 - 00161280 _____ (G Data Software AG) C:\Windows\system32\Drivers\MiniIcpt.sys 2015-07-21 20:25 - 2015-03-31 20:51 - 00112640 _____ (G Data Software AG) C:\Windows\system32\Drivers\GDBehave.sys 2015-07-21 20:25 - 2015-03-31 20:51 - 00087040 _____ (G Data Software AG) C:\Windows\system32\Drivers\HookCentre.sys 2015-07-21 20:24 - 2010-04-19 11:12 - 00000000 ____D C:\Program Files\Common Files\G DATA 2015-07-20 19:07 - 2013-04-21 18:41 - 03888522 _____ C:\Windows\system32\Drivers\Cat.DB 2015-07-19 19:58 - 2013-03-06 21:14 - 00000000 ____D C:\ProgramData\IPProtector 2015-07-19 14:50 - 2010-06-16 11:01 - 00000000 ____D C:\ProgramData\NVIDIA Corporation 2015-07-18 14:52 - 2014-11-02 15:54 - 00001745 _____ C:\Users\Jack\Desktop\SUMo.lnk 2015-07-17 17:49 - 2013-10-24 18:47 - 00247296 _____ (Microsoft Corporation) C:\Windows\system32\shsvcs.dll 2015-07-17 17:49 - 2013-10-24 18:47 - 00240128 _____ (Microsoft Corporation) C:\Windows\system32\uxtheme.dll 2015-07-17 17:49 - 2013-09-11 18:44 - 00615936 _____ (Microsoft Corporation) C:\Windows\system32\themeui.dll 2015-07-17 17:47 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\fr-FR 2015-07-15 17:06 - 2006-11-02 12:33 - 01304048 _____ C:\Windows\system32\PerfStringBackup.INI 2015-07-15 16:52 - 2014-07-10 18:38 - 00000000 ____D C:\Windows\system32\MRT 2015-07-14 18:51 - 2015-06-14 02:11 - 00000796 _____ C:\Users\Jack\Desktop\Internet Download Manager.lnk 2015-07-14 14:48 - 2014-01-02 22:17 - 00778416 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe 2015-07-14 14:48 - 2014-01-02 22:17 - 00142512 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl 2015-07-13 18:22 - 2010-05-10 20:41 - 00000000 ____D C:\Users\Administrateur 2015-07-13 18:22 - 2010-04-19 09:50 - 00000000 ____D C:\Users\Jack 2015-07-13 18:22 - 2008-02-22 04:25 - 00000000 ___HD C:\Users\IUSR_NMPR 2015-07-13 18:22 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\spool 2015-07-13 18:22 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\registration 2015-07-13 18:22 - 2006-11-02 12:22 - 97517568 _____ C:\Windows\system32\config\system_previous 2015-07-13 18:22 - 2006-11-02 12:22 - 51642368 _____ C:\Windows\system32\config\software_previous 2015-07-13 18:22 - 2006-11-02 12:22 - 40632320 _____ C:\Windows\system32\config\components_previous 2015-07-13 18:22 - 2006-11-02 12:22 - 05062656 _____ C:\Windows\system32\config\default_previous 2015-07-13 18:22 - 2006-11-02 12:22 - 00061440 _____ C:\Windows\system32\config\sam_previous 2015-07-13 18:22 - 2006-11-02 12:22 - 00028672 _____ C:\Windows\system32\config\security_previous 2015-07-12 22:33 - 2015-03-13 01:20 - 00000000 ___HD C:\Users\Jack\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup (Disabled by Starter) 2015-07-12 22:15 - 2013-12-11 01:17 - 00000120 _____ C:\0.bak 2015-07-12 22:15 - 2012-09-15 12:29 - 00000000 ____D C:\temp 2015-07-12 18:20 - 2014-06-05 20:48 - 00035064 _____ C:\Windows\system32\Drivers\TrueSight.sys 2015-07-12 13:11 - 2015-03-25 21:33 - 00000000 ____D C:\ProgramData\Ashampoo 2015-07-12 12:38 - 2015-06-14 02:11 - 00000000 ____D C:\Users\Jack\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Download Manager 2015-07-12 12:38 - 2015-06-04 01:55 - 00000000 ____D C:\Users\Jack\Documents\wlan-optimizer 2015-07-12 12:38 - 2015-05-28 18:36 - 00000000 ____D C:\Users\Jack\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BootRacer 2015-07-12 12:38 - 2015-04-07 18:15 - 00000000 ____D C:\Users\Jack\AppData\Roaming\ZHP 2015-07-12 12:38 - 2014-09-26 23:49 - 00000000 ____D C:\Users\Jack\Documents\gdata2015 2015-07-12 12:38 - 2014-07-02 09:31 - 00000000 ____D C:\Users\Jack\Documents\inf ne pas supprimer 2015-07-12 12:38 - 2014-06-13 19:51 - 00000000 ____D C:\Users\Jack\AppData\Roaming\.ACEStream 2015-07-12 12:38 - 2013-12-07 20:26 - 00000000 ____D C:\Users\Jack\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR 2015-07-12 12:38 - 2013-10-24 22:14 - 00000000 ____D C:\Users\Jack\Documents\UniversalThemePatcher 2015-07-12 12:38 - 2013-01-16 22:29 - 00000000 ____D C:\Users\Jack\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\RiccoVPN 2015-07-12 12:38 - 2012-12-07 00:22 - 00000000 ____D C:\Users\Jack\AppData\Roaming\DVDVideoSoft 2015-07-12 12:38 - 2012-12-03 21:28 - 00000000 ____D C:\Users\Jack\AppData\Roaming\FreeFLVConverter 2015-07-12 12:38 - 2012-10-06 20:22 - 00000000 ____D C:\Users\Jack\Documents\PowerDVD 12 Ultra v12.0.1312.54 PreActivated [ADHDerby] 2015-07-12 12:38 - 2012-10-03 14:52 - 00000000 ____D C:\Users\Jack\AppData\Roaming\vlc 2015-07-12 12:38 - 2012-09-19 18:42 - 00000000 ____D C:\Users\Jack\AppData\Roaming\Wise Registry Cleaner 2015-07-12 12:38 - 2012-01-09 20:11 - 00000000 ____D C:\Users\Jack\AppData\Roaming\clesta 2015-07-12 12:38 - 2011-03-22 17:24 - 00000000 ____D C:\Users\Jack\Documents\startupunblocker_fr 2015-07-12 12:38 - 2011-02-06 20:37 - 00000000 ____D C:\Users\Jack\Documents\Vista_Black_Shellstyle_by_vistaman91 2015-07-12 12:38 - 2011-01-03 17:31 - 00000000 ____D C:\Users\Jack\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SuperCopier2 2015-07-12 12:38 - 2011-01-03 17:08 - 00000000 ____D C:\Users\Jack\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\NirSoft BlueScreenView 2015-07-12 12:38 - 2011-01-03 15:12 - 00000000 ____D C:\Users\Jack\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CodeStuff Starter 2015-07-12 12:38 - 2010-12-03 18:57 - 00000000 ____D C:\Users\Jack\Documents\Denial_Cursor_Pack___Blue_by_Androow 2015-07-12 12:38 - 2010-08-20 16:11 - 00000000 ____D C:\Users\Jack\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Unlocker 2015-07-12 12:38 - 2010-05-24 03:19 - 00000000 ____D C:\Users\Jack\Documents\Programme d'installation d'Adobe Reader 9 2015-07-12 12:38 - 2010-04-20 10:47 - 00000000 ____D C:\Users\Jack\AppData\Local\Installer1240 2015-07-12 12:38 - 2010-04-19 09:51 - 00000000 ____D C:\Users\Jack\AppData\Roaming\GTek 2015-07-12 12:38 - 2010-04-19 09:50 - 00000000 ___RD C:\Users\Jack\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance 2015-07-12 12:38 - 2010-04-19 09:50 - 00000000 ___RD C:\Users\Jack\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories 2015-07-12 12:38 - 2008-02-22 04:23 - 00000000 ____D C:\Program Files\XPSMiniViewGadget 2015-07-11 21:23 - 2015-03-25 21:33 - 00000000 ____D C:\Program Files\Ashampoo 2015-07-10 14:15 - 2010-08-18 18:33 - 00000000 ____D C:\Program Files\Unlocker 2015-07-10 00:24 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\LogFiles 2015-07-09 18:25 - 2013-12-16 19:48 - 00000000 ____D C:\ProgramData\ProductData 2015-07-09 17:56 - 2013-05-11 18:12 - 00005656 _____ C:\config.xml 2015-07-09 17:55 - 2013-05-11 18:12 - 00024624 _____ C:\Windows\system32\RW_FileType.dat 2015-07-09 17:55 - 2013-05-11 18:12 - 00014560 _____ C:\Windows\system32\RW_{5BC783AA-E0E9-11DC-8D9F-806E6F6E6963}.dat 2015-07-09 17:55 - 2013-05-11 18:12 - 00010228 _____ C:\Windows\system32\RW_AppData.dat 2015-07-09 17:55 - 2013-05-11 18:12 - 00005936 _____ C:\Windows\system32\RW_{5BC783AB-E0E9-11DC-8D9F-806E6F6E6963}.dat 2015-07-09 17:55 - 2013-05-11 18:12 - 00000372 _____ C:\Windows\system32\RW_FileFlag.dat 2015-07-09 17:55 - 2013-05-11 18:12 - 00000168 _____ C:\Windows\system32\RW_{4B2A6942-6040-11DF-9494-001C26DC1E88}.dat 2015-07-07 23:16 - 2014-01-12 01:32 - 00000000 ____D C:\ProgramData\Condusiv Technologies 2015-07-07 23:16 - 2013-05-10 19:18 - 00000000 ____D C:\Program Files\Condusiv Technologies 2015-07-07 23:16 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\Help 2015-07-04 14:00 - 2012-06-20 20:40 - 00000000 ____D C:\Users\Jack\AppData\Roaming\GlarySoft 2015-07-03 17:28 - 2012-06-22 20:40 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service 2015-07-03 16:55 - 2015-05-14 23:34 - 00000000 ____D C:\Program Files\Mozilla Firefox 2015-07-03 08:49 - 2006-11-02 12:24 - 127070192 _____ (Microsoft Corporation) C:\Windows\system32\mrt.exe 2015-07-03 02:43 - 2006-11-02 13:18 - 00000000 ___RD C:\Users\Public 2015-07-03 02:05 - 2006-11-02 13:18 - 00000000 __RSD C:\Windows\Media 2015-06-30 21:45 - 2015-02-05 19:28 - 00000877 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk 2015-06-30 21:45 - 2015-02-05 19:28 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware 2015-06-30 21:45 - 2015-02-05 19:28 - 00000000 ____D C:\Program Files\Malwarebytes Anti-Malware 2015-06-28 17:57 - 2006-11-02 13:18 - 00000000 ___RD C:\Windows\Offline Web Pages 2015-06-27 18:22 - 2012-10-24 16:21 - 00002411 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk 2015-06-26 22:42 - 2010-04-20 15:47 - 00000000 ____D C:\Windows\pss ==================== Files in the root of some directories ======= 2012-01-09 20:11 - 2012-01-09 20:11 - 0000031 _____ () C:\Program Files\ys.pcid 2012-12-02 00:57 - 2014-05-15 19:08 - 0000000 _____ () C:\Users\Jack\AppData\Roaming\.googlewebacchosts 2012-07-24 17:55 - 2012-07-24 18:47 - 0000748 _____ () C:\Users\Jack\AppData\Roaming\AtomicAlarmClock.ini 2014-11-06 20:36 - 2014-11-06 20:38 - 0003098 _____ () C:\Users\Jack\AppData\Roaming\DriverAgent.log 2014-09-26 22:59 - 2015-03-31 20:51 - 0001558 _____ () C:\Users\Jack\AppData\Roaming\gdscan.log 2015-03-20 00:05 - 2015-03-20 01:09 - 0000115 _____ () C:\Users\Jack\AppData\Roaming\LogFile.txt 2014-06-05 23:27 - 2014-06-05 23:27 - 0000046 _____ () C:\Users\Jack\AppData\Roaming\WB.CFG 2012-07-05 00:09 - 2012-07-05 00:09 - 0000000 _____ () C:\Users\Jack\AppData\Roaming\wklnhst.dat 2013-05-11 22:48 - 2014-07-20 19:54 - 0262117 _____ () C:\Users\Jack\AppData\Local\ars.cache 2013-05-11 22:51 - 2014-07-20 19:54 - 1084987 _____ () C:\Users\Jack\AppData\Local\census.cache 2010-04-19 09:50 - 2014-01-18 11:08 - 0001356 _____ () C:\Users\Jack\AppData\Local\d3d9caps.dat 2012-07-24 17:09 - 2012-07-24 17:10 - 0000055 _____ () C:\Users\Jack\AppData\Local\DVDPATH.TXT 2013-05-11 18:24 - 2013-05-11 18:24 - 0000036 _____ () C:\Users\Jack\AppData\Local\housecall.guid.cache 2014-01-09 08:55 - 2014-01-09 08:55 - 0000008 _____ () C:\Users\Jack\AppData\Local\Temp0055401D.log 2010-06-06 10:20 - 2010-06-06 10:20 - 0000778 _____ () C:\Users\Jack\AppData\Local\Temp1.html 2010-06-06 10:23 - 2010-06-06 10:23 - 0004472 _____ () C:\Users\Jack\AppData\Local\Temp12.html 2012-05-16 19:30 - 2012-05-16 19:37 - 0017408 _____ () C:\Users\Jack\AppData\Local\WebpageIcons.db 2014-05-05 22:18 - 2014-05-05 22:18 - 0000255 _____ () C:\ProgramData\fontcacheev1.dat 2014-11-02 17:20 - 2014-11-02 17:20 - 0004131 _____ () C:\ProgramData\mtbjfghn.xbe Some files in TEMP: ==================== C:\Users\Jack\AppData\Local\Temp\xmlUpdater.exe ==================== Bamital & volsnap Check ================= (There is no automatic fix for files that do not pass verification.) C:\Windows\explorer.exe => File is digitally signed C:\Windows\system32\winlogon.exe => File is digitally signed C:\Windows\system32\wininit.exe => File is digitally signed C:\Windows\system32\svchost.exe => File is digitally signed C:\Windows\system32\services.exe => File is digitally signed C:\Windows\system32\User32.dll => File is digitally signed C:\Windows\system32\userinit.exe => File is digitally signed C:\Windows\system32\rpcss.dll => File is digitally signed C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed LastRegBack: 2015-07-26 16:33 ==================== End of log ============================