Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 20-07-2015 Ran by utilisateur (administrator) on ACCUEIL on 22-07-2015 08:38:08 Running from C:\Users\utilisateur\Desktop Loaded Profiles: utilisateur (Available Profiles: utilisateur) Platform: Microsoft Windows 7 Professionnel Service Pack 1 (X86) OS Language: Français (France) Internet Explorer Version 11 (Default browser: IE) Boot Mode: Normal Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processes (Whitelisted) ================= (If an entry is included in the fixlist, the process will be closed. The file will not be moved.) (Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2012\vsserv.exe (Enigma Software Group USA, LLC.) C:\Program Files\Enigma Software Group\SpyHunter\SH4Service.exe (Logitech Inc.) C:\Program Files\Common Files\logishrd\LVMVFM\UMVPFSrv.exe (Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe (Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe (Oppoos.com) C:\Program Files\Genie Soft\Genie Cleaner\GenieCleanService.exe (Oppoos.com) C:\Program Files\Genie Soft\Genie Wifi\GenieWifiService.exe (Nero AG) C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe (pdfforge GmbH) C:\Program Files\PDF Architect\HelperService.exe (pdfforge GmbH) C:\Program Files\PDF Architect\ConversionService.exe (Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2012\updatesrv.exe (TODO: <公司名>) C:\Program Files\Blazers\Watsvc.exe (Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE (Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE (Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2012\bdagent.exe (Enigma Software Group USA, LLC.) C:\Program Files\Enigma Software Group\SpyHunter\SpyHunter4.exe (Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe (Skype Technologies S.A.) C:\Program Files\Skype\Phone\Skype.exe (Facebook Inc.) C:\Users\utilisateur\AppData\Local\Facebook\Update\FacebookUpdate.exe (Piriform Ltd) C:\Program Files\CCleaner\CCleaner.exe (Oppoos.com) C:\Program Files\Genie Soft\Genie Cleaner\GenieFloater.exe (McAfee, Inc.) C:\Program Files\McAfee Security Scan\3.8.150\SSScheduler.exe (Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe (Google Inc.) C:\Program Files\Google\Update\1.3.28.1\GoogleCrashHandler.exe (Microsoft Corporation) C:\Windows\System32\wbem\unsecapp.exe (Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe (Microsoft Corporation) C:\Windows\System32\rundll32.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe ==================== Registry (Whitelisted) ================== (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.) HKLM\...\Run: [BDAgent] => C:\Program Files\Bitdefender\Bitdefender 2012\bdagent.exe [1199344 2014-01-19] (Bitdefender) HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [157480 2014-10-15] (Apple Inc.) HKLM\...\Policies\Explorer\Run: [Updates] => C:\system32\SystemProtection.exe [141824 2013-10-12] (Microsoft Corporation) HKU\S-1-5-21-2357896040-1956171062-190532210-1000\...\Run: [Skype] => C:\Program Files\Skype\Phone\Skype.exe [30879328 2014-12-11] (Skype Technologies S.A.) HKU\S-1-5-21-2357896040-1956171062-190532210-1000\...\Run: [Facebook Update] => C:\Users\utilisateur\AppData\Local\Facebook\Update\FacebookUpdate.exe [138096 2013-11-13] (Facebook Inc.) HKU\S-1-5-21-2357896040-1956171062-190532210-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner.exe [6405912 2015-06-01] (Piriform Ltd) HKU\S-1-5-21-2357896040-1956171062-190532210-1000\...\Run: [GenieFloater] => C:\Program Files\Genie Soft\Genie Cleaner\GenieFloater.exe [1850520 2015-02-06] (Oppoos.com) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk [2015-07-04] ShortcutTarget: McAfee Security Scan Plus.lnk -> C:\Program Files\McAfee Security Scan\3.8.150\SSScheduler.exe (McAfee, Inc.) Startup: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\startup\LaunchCenter.lnk [2011-10-28] ShortcutTarget: LaunchCenter.lnk -> C:\Program Files\Fujitsu\LaunchCenter\LaunchCenter.exe (Fujitsu Technology Solutions) Startup: C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\startup\LaunchCenter.lnk [2011-10-28] ShortcutTarget: LaunchCenter.lnk -> C:\Program Files\Fujitsu\LaunchCenter\LaunchCenter.exe (Fujitsu Technology Solutions) BootExecute: CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION ==================== Internet (Whitelisted) ==================== (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.) HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = HKU\S-1-5-21-2357896040-1956171062-190532210-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://fr.msn.com/ HKU\S-1-5-21-2357896040-1956171062-190532210-1000\Software\Microsoft\Internet Explorer\Main,Start Page = http://google.fr/ URLSearchHook: HKLM - (No Name) - {bb1227ac-7a0d-4076-8c1a-51a1348f6fa8} - No File URLSearchHook: HKLM - (No Name) - {19803860-b306-423c-bbb5-f60a7d82cde5} - No File SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKLM -> {c9ab6446-7efc-47fe-966c-dc54324eff9f} URL = SearchScopes: HKU\.DEFAULT -> {483830EE-A4CD-4b71-B0A3-3D82E62A6909} URL = SearchScopes: HKU\S-1-5-21-2357896040-1956171062-190532210-1000 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/search?q={searchTerms} SearchScopes: HKU\S-1-5-21-2357896040-1956171062-190532210-1000 -> {01B07857-A690-4F37-9F64-7C62928BE82C} URL = http://www.istartsurf.com/web/?utm_source=b&utm_medium=pcs&utm_campaign=install_ie&utm_content=ds&from=pcs&uid=ST3500418AS_Z2A68EA2XXXXZ2A68EA2&ts=1435271026&type=default&q={searchTerms} SearchScopes: HKU\S-1-5-21-2357896040-1956171062-190532210-1000 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/search?q={searchTerms} SearchScopes: HKU\S-1-5-21-2357896040-1956171062-190532210-1000 -> {2f23ab71-4ac6-41f2-a955-ea576e553146} URL = http://www.istartsurf.com/web/?utm_source=b&utm_medium=pcs&utm_campaign=install_ie&utm_content=ds&from=pcs&uid=ST3500418AS_Z2A68EA2XXXXZ2A68EA2&ts=1435271026&type=default&q={searchTerms} SearchScopes: HKU\S-1-5-21-2357896040-1956171062-190532210-1000 -> {6DA41662-80B5-4036-BD6A-905FA62C5A2F} URL = https://www.google.com/search?q={searchTerms} SearchScopes: HKU\S-1-5-21-2357896040-1956171062-190532210-1000 -> {F22EB6FD-4488-454E-8880-9BE4E604319B} URL = http://www.istartsurf.com/web/?utm_source=b&utm_medium=pcs&utm_campaign=install_ie&utm_content=ds&from=pcs&uid=ST3500418AS_Z2A68EA2XXXXZ2A68EA2&ts=1435271026&type=default&q={searchTerms} BHO: MSS+ Identifier -> {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} -> C:\Program Files\McAfee Security Scan\3.8.150\McAfeeMSS_IE.dll [2014-04-09] (McAfee, Inc.) BHO: PDF Architect Helper -> {3A2D5EBA-F86D-4BD3-A177-019765996711} -> C:\Program Files\PDF Architect\PDFIEHelper.dll [2013-04-08] (pdfforge GmbH) BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21] (Microsoft Corp.) BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2015-07-19] (Google Inc.) BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation) Toolbar: HKLM - Softonic Toolbar - {5018CFD2-804D-4C99-9F81-25EAEA2769DE} - C:\Program Files\Softonic\softonic\1.5.11.5\softonicTlbr.dll [2012-01-11] (Softonic.com) Toolbar: HKLM - PDF Architect Toolbar - {25A3A431-30BB-47C8-AD6A-E1063801134F} - C:\Program Files\PDF Architect\PDFIEPlugin.dll [2013-04-08] (pdfforge GmbH) Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2015-07-19] (Google Inc.) Toolbar: HKU\S-1-5-21-2357896040-1956171062-190532210-1000 -> No Name - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - No File Toolbar: HKU\S-1-5-21-2357896040-1956171062-190532210-1000 -> No Name - {BB1227AC-7A0D-4076-8C1A-51A1348F6FA8} - No File Toolbar: HKU\S-1-5-21-2357896040-1956171062-190532210-1000 -> No Name - {19803860-B306-423C-BBB5-F60A7D82CDE5} - No File DPF: {166B1BCA-3F9C-11CF-8075-444553540000} http://download.macromedia.com/pub/shockwave/cabs/director/sw.cab DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab Winsock: Catalog5 09 C:\Program Files\Bonjour\mdnsNSP.dll [121704 2011-08-30] (Apple Inc.) Tcpip\Parameters: [DhcpNameServer] 192.168.1.254 Tcpip\..\Interfaces\{83162329-C7AB-4230-8CE8-3D5FB13FF6C6}: [DhcpNameServer] 172.20.10.1 Tcpip\..\Interfaces\{B3523F93-006F-4379-8106-056B250459E8}: [NameServer] 8.8.8.8,8.8.4.4,4.2.2.1,4.2.2.2,208.67.222.222,208.67.220.220,8.26.56.26,8.20.247.20,156.154.70.1,156.154.71.1 Tcpip\..\Interfaces\{B3523F93-006F-4379-8106-056B250459E8}: [DhcpNameServer] 192.168.1.254 FireFox: ======== FF ProfilePath: C:\Users\utilisateur\AppData\Roaming\Mozilla\Firefox\Profiles\1t37ttdw.default FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_18_0_0_209.dll [2015-07-15] () FF Plugin: @adobe.com/ShockwavePlayer -> C:\Windows\system32\Adobe\Director\np32dsw.dll [2011-10-05] (Adobe Systems, Inc.) FF Plugin: @Apple.com/iTunes,version=1.0 -> C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll [2014-02-18] () FF Plugin: @canon.com/EPPEX -> C:\Program Files\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL [2014-07-28] (CANON INC.) FF Plugin: @Google.com/GoogleEarthPlugin -> C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll [2015-05-21] (Google) FF Plugin: @microsoft.com/GENUINE -> disabled No File FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.40416.0\npctrl.dll [2015-04-15] ( Microsoft Corporation) FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~3\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation) FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~3\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation) FF Plugin: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll [2010-11-10] (Microsoft Corporation) FF Plugin: @microsoft.com/WLPG,version=15.4.3508.1109 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll [2010-11-10] (Microsoft Corporation) FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.28.1\npGoogleUpdate3.dll [2015-07-19] (Google Inc.) FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.28.1\npGoogleUpdate3.dll [2015-07-19] (Google Inc.) FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2015-06-29] (Adobe Systems Inc.) FF Plugin HKU\S-1-5-21-2357896040-1956171062-190532210-1000: @Skype Limited.com/Facebook Video Calling Plugin -> C:\Users\utilisateur\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll [2014-07-24] (Skype Limited) FF SearchPlugin: C:\Users\utilisateur\AppData\Roaming\Mozilla\Firefox\Profiles\1t37ttdw.default\searchplugins\softonic.xml [2012-02-02] FF Extension: Softonic Toolbar - C:\Users\utilisateur\AppData\Roaming\Mozilla\Firefox\Profiles\1t37ttdw.default\Extensions\ffxtlbra@softonic.com [2012-02-02] FF Extension: Wajam - C:\Users\utilisateur\AppData\Roaming\Mozilla\Firefox\Profiles\1t37ttdw.default\Extensions\{5a95a9e0-59dd-4314-bd84-4d18ca83a0e2} [2013-04-10] FF HKLM\...\Firefox\Extensions: [speedanalysis@SpeedAnalysis.com] - C:\Users\utilisateur\AppData\Roaming\Mozilla\Extensions\speedanalysis@SpeedAnalysis.com FF Extension: SpeedAnalysis.com - C:\Users\utilisateur\AppData\Roaming\Mozilla\Extensions\speedanalysis@SpeedAnalysis.com [2013-03-19] FF HKLM\...\Firefox\Extensions: [FFPDFArchitectConverter@pdfarchitect.com] - C:\Program Files\PDF Architect\FFPDFArchitectExt FF Extension: PDF Architect Converter For Firefox - C:\Program Files\PDF Architect\FFPDFArchitectExt [2013-05-09] FF HKLM\...\Thunderbird\Extensions: [bdThunderbird@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender 2012\bdtbext FF HKU\S-1-5-21-2357896040-1956171062-190532210-1000\...\Firefox\Extensions: [speedanalysis@SpeedAnalysis.com] - C:\Users\utilisateur\AppData\Roaming\Mozilla\Extensions\speedanalysis@SpeedAnalysis.com FF Extension: No Name - C:\Program Files\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} [not found] Chrome: ======= CHR Profile: C:\Users\utilisateur\AppData\Local\Google\Chrome\User Data\Default CHR Extension: (SpeedAnalysis.com) - C:\Users\utilisateur\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfcbmgbfdbijmjgjihagbomfbjfjmgon [2013-03-29] CHR Extension: (No Name) - C:\Users\utilisateur\AppData\Local\Google\Chrome\User Data\Default\Extensions\hkkdkembhhmcflpmfcdjlkfkjahklkag [2015-07-14] CHR Extension: (Chrome Hotword Shared Module) - C:\Users\utilisateur\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-03-24] CHR Extension: (Google Wallet) - C:\Users\utilisateur\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-23] CHR Extension: (No Name) - C:\Users\utilisateur\AppData\Local\Google\Chrome\User Data\Default\Extensions\nohfdhapjjlndfgjnmdlcabloeembdkj [2013-05-01] CHR HKLM\...\Chrome\Extension: [bopakagnckmlgajfccecajhnimjiiedh] - http://clients2.google.com/service/update2/crx CHR HKLM\...\Chrome\Extension: [cfcbmgbfdbijmjgjihagbomfbjfjmgon] - C:\Users\utilisateur\AppData\Roaming\SpeedanAlysis\speedanalysis.crx [2013-02-14] ========================== Services (Whitelisted) ================= (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) R2 GenieCleanService; C:\Program Files\Genie Soft\Genie Cleaner\GenieCleanService.exe [53400 2015-02-06] (Oppoos.com) R2 GenieWifiService; C:\Program Files\Genie Soft\Genie Wifi\GenieWifiService.exe [51352 2015-03-05] (Oppoos.com) S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.8.150\McCHSvc.exe [235696 2014-04-09] (McAfee, Inc.) R2 PDF Architect Helper Service; C:\Program Files\PDF Architect\HelperService.exe [1320496 2013-04-08] (pdfforge GmbH) R2 PDF Architect Service; C:\Program Files\PDF Architect\ConversionService.exe [799280 2013-04-08] (pdfforge GmbH) R2 SpyHunter 4 Service; C:\Program Files\Enigma Software Group\SpyHunter\SH4Service.exe [771968 2015-06-28] (Enigma Software Group USA, LLC.) R2 UMVPFSrv; C:\Program Files\Common Files\logishrd\LVMVFM\UMVPFSrv.exe [450848 2012-01-18] (Logitech Inc.) S3 Update Server; C:\Program Files\Common Files\Bitdefender\Bitdefender Arrakis Server\bin\arrakis3.exe [307544 2011-10-15] (BitDefender) R2 UPDATESRV; C:\Program Files\Bitdefender\Bitdefender 2012\updatesrv.exe [55032 2014-01-19] (Bitdefender) R2 VSSERV; C:\Program Files\Bitdefender\Bitdefender 2012\vsserv.exe [1554176 2013-02-23] (Bitdefender) R2 Watsvc; C:\Program Files\Blazers\Watsvc.exe [107160 2015-04-16] (TODO: <公司名>) S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2013-05-27] (Microsoft Corporation) S2 MobogenieService; C:\Program Files\Mobogenie3\MobogenieService.exe [X] S2 servervo; C:\Users\utilisateur\AppData\Roaming\VOPackage\VOsrv.exe [X] <==== ATTENTION ==================== Drivers (Whitelisted) ==================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) R0 avc3; C:\Windows\System32\DRIVERS\avc3.sys [622616 2013-02-23] (BitDefender) R3 avchv; C:\Windows\System32\DRIVERS\avchv.sys [242504 2013-02-23] (BitDefender) S3 avckf; C:\Windows\System32\DRIVERS\avckf.sys [481464 2013-02-23] (BitDefender) R0 bdfsfltr; C:\Windows\System32\DRIVERS\bdfsfltr.sys [360976 2014-01-19] (BitDefender) R1 bdfwfpf; C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf.sys [90704 2013-02-23] (BitDefender LLC) S3 bdsandbox; C:\Windows\system32\drivers\bdsandbox.sys [63056 2013-02-23] (BitDefender SRL) R1 bdselfpr; C:\Program Files\Bitdefender\Bitdefender 2012\bdselfpr.sys [132600 2013-02-23] (BitDefender LLC) R1 BDVEDISK; C:\Windows\System32\DRIVERS\bdvedisk.sys [85128 2010-01-19] (BitDefender) R3 esgiguard; C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys [16432 2015-06-28] (Enigma Software Group USA, LLC.) R3 EsgScanner; C:\Windows\System32\DRIVERS\EsgScanner.sys [19984 2015-06-28] () S3 NuidFltr; C:\Windows\System32\DRIVERS\NuidFltr.sys [21784 2012-11-02] (Microsoft Corporation) R2 Par1284; C:\Program Files\Cutting Master 2 1.83\Program\Par1284.sys [53344 2005-03-02] (Warp Nine Engineering) [File not signed] S3 QCDonner; C:\Windows\System32\DRIVERS\LVCD.sys [474304 2004-04-27] (Logitech Inc.) S3 ss_bbus; C:\Windows\System32\DRIVERS\ss_bbus.sys [98432 2009-09-19] (MCCI) S3 ss_bmdfl; C:\Windows\System32\DRIVERS\ss_bmdfl.sys [14848 2009-09-19] (MCCI Corporation) S3 ss_bmdm; C:\Windows\System32\DRIVERS\ss_bmdm.sys [123648 2009-09-19] (MCCI Corporation) S3 ss_bserd; C:\Windows\System32\DRIVERS\ss_bserd.sys [100224 2009-09-19] (MCCI Corporation) S3 SWDUMon; C:\Windows\System32\DRIVERS\SWDUMon.sys [13464 2015-01-10] () R0 trufos; C:\Windows\System32\DRIVERS\trufos.sys [340624 2014-01-19] (BitDefender S.R.L.) R1 {87286aec-c99d-4583-8090-ac15f3254b32}Gw; C:\Windows\System32\drivers\{87286aec-c99d-4583-8090-ac15f3254b32}Gw.sys [43152 2015-06-27] (StdLib) S3 flpydisk; \SystemRoot\system32\drivers\flpydisk.sys [X] S3 IntcAzAudAddService; system32\drivers\RTKVHDA.sys [X] S3 MBAMSwissArmy; \??\C:\Windows\system32\drivers\MBAMSwissArmy.sys [X] U5 VWiFiFlt; C:\Windows\System32\Drivers\VWiFiFlt.sys [48128 2009-07-14] (Microsoft Corporation) ==================== NetSvcs (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) ==================== One Month Created files and folders ======== (If an entry is included in the fixlist, the file/folder will be moved.) 2015-07-22 08:38 - 2015-07-22 08:38 - 00018860 _____ C:\Users\utilisateur\Desktop\FRST.txt 2015-07-22 08:34 - 2015-07-22 08:38 - 00000000 ____D C:\FRST 2015-07-22 08:34 - 2015-07-22 08:34 - 01638912 _____ (Farbar) C:\Users\utilisateur\Desktop\FRST.exe 2015-07-22 00:42 - 2015-07-22 08:29 - 00000456 _____ C:\Windows\Tasks\ParetoLogic Registration3.job 2015-07-22 00:42 - 2015-07-22 00:42 - 00000000 ____D C:\Users\utilisateur\AppData\Roaming\ParetoLogic 2015-07-22 00:42 - 2015-07-22 00:42 - 00000000 ____D C:\Users\utilisateur\AppData\Roaming\DriverCure 2015-07-22 00:33 - 2015-07-22 08:29 - 00000482 _____ C:\Windows\Tasks\ParetoLogic Update Version3 Startup Task.job 2015-07-22 00:33 - 2015-07-22 00:40 - 00000430 _____ C:\Windows\Tasks\ParetoLogic Update Version3.job 2015-07-22 00:33 - 2015-07-22 00:40 - 00000388 _____ C:\Windows\Tasks\PC Health Advisor Defrag.job 2015-07-22 00:33 - 2015-07-22 00:40 - 00000370 _____ C:\Windows\Tasks\PC Health Advisor.job 2015-07-22 00:33 - 2015-07-22 00:33 - 00001033 _____ C:\Users\utilisateur\Desktop\ParetoLogic PC Health Advisor.lnk 2015-07-22 00:33 - 2015-07-22 00:33 - 00000000 ____D C:\Users\utilisateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ParetoLogic 2015-07-22 00:33 - 2015-07-22 00:33 - 00000000 ____D C:\ProgramData\ParetoLogic 2015-07-22 00:33 - 2015-07-22 00:33 - 00000000 ____D C:\Program Files\ParetoLogic 2015-07-22 00:33 - 2015-07-22 00:33 - 00000000 ____D C:\Program Files\Common Files\ParetoLogic 2015-07-21 18:32 - 2015-07-22 08:28 - 00000224 _____ C:\Windows\setupact.log 2015-07-21 18:32 - 2015-07-21 18:32 - 00000000 _____ C:\Windows\setuperr.log 2015-07-21 17:05 - 2015-07-15 04:55 - 00070656 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll 2015-07-21 17:05 - 2015-07-15 04:55 - 00034304 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll 2015-07-21 17:05 - 2015-07-15 04:55 - 00026624 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll 2015-07-21 17:05 - 2015-07-15 04:55 - 00010240 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll 2015-07-21 17:05 - 2015-07-15 03:52 - 00299008 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll 2015-07-20 09:14 - 2015-07-20 09:15 - 18531217 _____ C:\e-bat 20-07-15 09h14.BAK 2015-07-19 15:22 - 2015-07-19 15:24 - 00000000 ____D C:\Users\utilisateur\Downloads\DK.www.zone-telechargement.com 2015-07-19 08:03 - 2015-07-22 08:29 - 00001054 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore1d0c1e89d811220.job 2015-07-19 08:03 - 2015-07-22 03:08 - 00001058 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA1d0c1e89f143566.job 2015-07-19 03:02 - 2015-07-19 03:03 - 00000000 ____D C:\Program Files\GUMAEDF.tmp 2015-07-18 22:02 - 2015-07-18 22:03 - 00000000 ____D C:\Program Files\GUMF1E2.tmp 2015-07-18 16:55 - 2015-07-18 17:00 - 00000000 ____D C:\Program Files\GUM7C7F.tmp 2015-07-17 23:22 - 2015-07-17 23:23 - 00000000 ____D C:\Program Files\GUMC095.tmp 2015-07-17 18:17 - 2015-07-17 18:21 - 00000000 ____D C:\Program Files\GUM57C.tmp 2015-07-17 00:28 - 2015-07-17 00:32 - 00000000 ____D C:\Program Files\GUM3CC1.tmp 2015-07-14 21:09 - 2015-07-02 23:21 - 19877376 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll 2015-07-14 21:09 - 2015-07-02 23:08 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb 2015-07-14 21:09 - 2015-07-02 22:50 - 02279424 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll 2015-07-14 21:09 - 2015-07-02 22:46 - 00479232 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll 2015-07-14 21:09 - 2015-07-02 22:19 - 12855296 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll 2015-07-14 21:09 - 2015-07-02 21:55 - 01310720 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll 2015-07-14 21:06 - 2015-07-01 22:46 - 00137664 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys 2015-07-14 21:06 - 2015-07-01 22:46 - 00067520 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys 2015-07-14 21:06 - 2015-07-01 22:30 - 01061376 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll 2015-07-14 21:06 - 2015-07-01 22:30 - 00655360 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll 2015-07-14 21:06 - 2015-07-01 22:30 - 00552960 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll 2015-07-14 21:06 - 2015-07-01 22:30 - 00259584 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll 2015-07-14 21:06 - 2015-07-01 22:30 - 00248832 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll 2015-07-14 21:06 - 2015-07-01 22:30 - 00221184 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll 2015-07-14 21:06 - 2015-07-01 22:30 - 00172032 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll 2015-07-14 21:06 - 2015-07-01 22:30 - 00100352 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll 2015-07-14 21:06 - 2015-07-01 22:30 - 00065536 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll 2015-07-14 21:06 - 2015-07-01 22:30 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll 2015-07-14 21:06 - 2015-07-01 22:30 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll 2015-07-14 21:06 - 2015-07-01 22:30 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll 2015-07-14 21:06 - 2015-07-01 22:30 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll 2015-07-14 21:06 - 2015-07-01 22:29 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe 2015-07-14 21:06 - 2015-07-01 22:29 - 00022528 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe 2015-07-14 21:06 - 2015-07-01 22:27 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll 2015-07-14 21:06 - 2015-07-01 22:26 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll 2015-07-14 21:06 - 2015-07-01 22:24 - 00686080 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll 2015-07-14 21:06 - 2015-07-01 21:18 - 00225792 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys 2015-07-14 21:06 - 2015-07-01 21:18 - 00124416 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys 2015-07-14 21:06 - 2015-07-01 21:18 - 00098304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys 2015-07-14 21:06 - 2015-06-25 10:46 - 02383872 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys 2015-07-14 21:05 - 2015-07-09 19:44 - 00015808 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe 2015-07-14 21:05 - 2015-07-09 19:43 - 00587264 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll 2015-07-14 21:05 - 2015-07-09 19:42 - 00924160 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll 2015-07-14 21:05 - 2015-07-09 19:42 - 00628736 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll 2015-07-14 21:05 - 2015-07-09 19:42 - 00342016 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll 2015-07-14 21:05 - 2015-07-09 19:42 - 00202752 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll 2015-07-14 21:05 - 2015-07-09 19:42 - 00058880 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll 2015-07-14 21:05 - 2015-07-09 19:34 - 00932864 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll 2015-07-14 21:05 - 2015-07-04 19:48 - 01414656 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll 2015-07-14 21:05 - 2015-06-15 23:47 - 00101824 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe 2015-07-14 21:05 - 2015-06-15 23:43 - 02364416 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll 2015-07-14 21:05 - 2015-06-15 23:43 - 01805824 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll 2015-07-14 21:05 - 2015-06-15 23:43 - 00337408 _____ (Microsoft Corporation) C:\Windows\system32\msihnd.dll 2015-07-14 21:05 - 2015-06-15 23:43 - 00047104 _____ (Microsoft Corporation) C:\Windows\system32\appinfo.dll 2015-07-14 21:05 - 2015-06-15 23:42 - 00073216 ____N (Microsoft Corporation) C:\Windows\system32\msiexec.exe 2015-07-14 21:05 - 2015-06-15 23:37 - 00025088 _____ (Microsoft Corporation) C:\Windows\system32\msimsg.dll 2015-07-14 21:04 - 2015-07-09 19:43 - 02943488 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll 2015-07-14 21:04 - 2015-07-09 19:43 - 02057216 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll 2015-07-14 21:04 - 2015-07-09 19:43 - 00566784 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll 2015-07-14 21:04 - 2015-07-09 19:43 - 00173056 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll 2015-07-14 21:04 - 2015-07-09 19:43 - 00093184 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll 2015-07-14 21:04 - 2015-07-09 19:43 - 00073728 _____ (Microsoft Corporation) C:\Windows\system32\WinSetupUI.dll 2015-07-14 21:04 - 2015-07-09 19:43 - 00035840 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll 2015-07-14 21:04 - 2015-07-09 19:43 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll 2015-07-14 21:04 - 2015-07-09 19:42 - 00135168 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe 2015-07-14 21:04 - 2015-07-09 19:42 - 00034816 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe 2015-07-14 21:04 - 2015-07-09 19:42 - 00011776 _____ (Microsoft Corporation) C:\Windows\system32\wu.upgrade.ps.dll 2015-07-14 21:04 - 2015-06-17 19:39 - 00305664 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll 2015-07-14 21:04 - 2015-04-27 21:05 - 00179200 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll 2015-07-14 21:04 - 2015-04-27 21:04 - 01174528 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll 2015-07-14 21:04 - 2015-04-27 21:04 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll 2015-07-14 21:04 - 2015-04-27 21:04 - 00103936 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll 2015-07-14 21:03 - 2015-06-27 03:58 - 00620032 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll 2015-07-14 21:03 - 2015-06-27 03:39 - 04520448 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll 2015-07-14 21:03 - 2015-06-02 01:47 - 00210432 _____ (Microsoft Corporation) C:\Windows\system32\cewmdm.dll 2015-07-14 21:01 - 2015-06-25 19:43 - 00342736 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll 2015-07-14 21:01 - 2015-06-19 20:40 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll 2015-07-14 21:01 - 2015-06-19 20:25 - 00504320 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll 2015-07-14 21:01 - 2015-06-19 20:25 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll 2015-07-14 21:01 - 2015-06-19 20:24 - 00341504 _____ (Microsoft Corporation) C:\Windows\system32\html.iec 2015-07-14 21:01 - 2015-06-19 20:24 - 00047616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll 2015-07-14 21:01 - 2015-06-19 20:23 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll 2015-07-14 21:01 - 2015-06-19 20:17 - 00047104 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll 2015-07-14 21:01 - 2015-06-19 20:16 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll 2015-07-14 21:01 - 2015-06-19 20:13 - 00664064 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll 2015-07-14 21:01 - 2015-06-19 20:13 - 00115712 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe 2015-07-14 21:01 - 2015-06-19 20:13 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe 2015-07-14 21:01 - 2015-06-19 20:06 - 00667648 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe 2015-07-14 21:01 - 2015-06-19 20:03 - 00418304 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll 2015-07-14 21:01 - 2015-06-19 19:57 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll 2015-07-14 21:01 - 2015-06-19 19:53 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll 2015-07-14 21:01 - 2015-06-19 19:52 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll 2015-07-14 21:01 - 2015-06-19 19:51 - 00285696 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll 2015-07-14 21:01 - 2015-06-19 19:40 - 02052608 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl 2015-07-14 21:01 - 2015-06-19 19:40 - 00689152 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll 2015-07-14 21:01 - 2015-06-19 19:40 - 00685568 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe 2015-07-14 21:01 - 2015-06-19 19:39 - 01155072 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll 2015-07-14 21:01 - 2015-06-19 19:15 - 01951232 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll 2015-07-14 21:01 - 2015-06-19 19:11 - 00710144 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll 2015-07-14 15:39 - 2015-07-14 15:43 - 00000000 ____D C:\Program Files\GUMBF19.tmp 2015-07-14 01:29 - 2015-07-15 02:44 - 00000000 ____D C:\ProgramData\f08cac26-e74f-49b4-9ff1-f081aa55e1b3 2015-07-14 01:29 - 2015-07-15 02:44 - 00000000 ____D C:\Program Files\Common Files\f08cac26-e74f-49b4-9ff1-f081aa55e1b3 2015-07-14 01:29 - 2015-07-14 01:29 - 00000000 ____D C:\ProgramData\{11DAF919-4158-289F-F0DE-581D205C8B93} 2015-07-14 01:28 - 2015-07-14 01:28 - 23052120 _____ C:\Users\utilisateur\Downloads\VideoPlayerSetup.msi 2015-07-09 21:59 - 2015-07-09 21:59 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee Security Scan Plus 2015-07-09 21:59 - 2015-07-09 21:59 - 00000000 ____D C:\Program Files\McAfee Security Scan 2015-07-04 23:32 - 2015-07-14 01:29 - 00001405 _____ C:\Users\utilisateur\Desktop\Internet Explorer.lnk 2015-07-04 23:24 - 2015-07-04 23:26 - 34307232 _____ (Microsoft Corporation) C:\Users\utilisateur\Downloads\EIE11_FR-FR_WOL_WIN7.EXE 2015-07-04 22:06 - 2015-07-04 22:09 - 18411184 _____ (Adobe Systems Incorporated) C:\Users\utilisateur\Downloads\install_flash_player.exe 2015-07-04 21:58 - 2015-07-09 21:59 - 00000000 ____D C:\ProgramData\McAfee Security Scan 2015-07-04 21:58 - 2015-07-04 21:58 - 00000000 ____D C:\ProgramData\McAfee 2015-07-04 21:52 - 2015-07-04 21:53 - 01125056 _____ (Adobe Systems Incorporated) C:\Users\utilisateur\Downloads\flashplayer18_ga_install.exe 2015-07-02 23:49 - 2015-07-02 23:50 - 00000000 ____D C:\Windows\A16BBEABAAEF434ABFDD297708709FCC.TMP 2015-07-02 00:32 - 2015-07-02 00:32 - 00000000 ____D C:\Program Files\Common Files\Wise Installation Wizard 2015-07-01 21:17 - 2015-07-01 21:17 - 00004544 _____ C:\Users\utilisateur\Desktop\Nouveau document Journal.jnt 2015-06-28 06:14 - 2015-07-15 02:44 - 00189600 _____ C:\spyhunter.log 2015-06-28 04:15 - 2015-07-15 00:45 - 00062260 _____ C:\sh4_service.log 2015-06-28 04:08 - 2015-06-28 01:03 - 00285747 _____ C:\shldr 2015-06-28 04:08 - 2015-06-28 01:03 - 00008192 _____ C:\shldr.mbr 2015-06-28 01:03 - 2015-06-28 01:03 - 00001206 _____ C:\Users\utilisateur\Desktop\SpyHunter.lnk 2015-06-28 01:03 - 2015-06-28 01:03 - 00000000 ____D C:\Users\utilisateur\AppData\Roaming\Enigma Software Group 2015-06-28 01:03 - 2015-06-28 01:03 - 00000000 ____D C:\sh4ldr 2015-06-28 01:02 - 2015-07-02 00:33 - 00000000 ____D C:\Program Files\Enigma Software Group 2015-06-28 01:02 - 2015-06-28 01:02 - 00019984 _____ C:\Windows\system32\Drivers\EsgScanner.sys 2015-06-28 01:01 - 2015-06-28 01:01 - 03237248 _____ (Enigma Software Group USA, LLC.) C:\Users\utilisateur\Downloads\SpyHunter-Installer (3).exe 2015-06-28 01:01 - 2015-06-28 01:01 - 03237248 _____ (Enigma Software Group USA, LLC.) C:\Users\utilisateur\Downloads\SpyHunter-Installer (2).exe 2015-06-28 00:56 - 2015-06-28 00:56 - 03237248 _____ (Enigma Software Group USA, LLC.) C:\Users\utilisateur\Downloads\SpyHunter-Installer.exe 2015-06-28 00:56 - 2015-06-28 00:56 - 03237248 _____ (Enigma Software Group USA, LLC.) C:\Users\utilisateur\Downloads\SpyHunter-Installer (1).exe 2015-06-28 00:47 - 2015-06-28 06:13 - 00000000 ____D C:\Users\utilisateur\AppData\Local\32206 2015-06-28 00:45 - 2015-06-28 00:45 - 00000000 ____D C:\Program Files\predm 2015-06-28 00:42 - 2015-07-08 14:53 - 00000000 ____D C:\ProgramData\c676c3e300000bb8 2015-06-28 00:26 - 2015-06-28 03:48 - 00003452 _____ C:\Windows\Tasks\789c24d7-b520-4824-83ac-9bc2fbb7f58b-1-6.job 2015-06-28 00:26 - 2015-06-28 00:33 - 00003452 _____ C:\Windows\Tasks\789c24d7-b520-4824-83ac-9bc2fbb7f58b-1-7.job 2015-06-28 00:25 - 2015-07-22 08:29 - 00002090 _____ C:\Windows\Tasks\789c24d7-b520-4824-83ac-9bc2fbb7f58b-10_user.job 2015-06-28 00:25 - 2015-06-28 03:48 - 00005162 _____ C:\Windows\Tasks\789c24d7-b520-4824-83ac-9bc2fbb7f58b-11.job 2015-06-28 00:25 - 2015-06-28 00:25 - 00000000 ____D C:\Program Files\ff8380ce-0ebd-460b-b253-ec193a0107c8 2015-06-28 00:13 - 2015-06-28 03:48 - 00003444 _____ C:\Windows\Tasks\1492a0b0-8af2-428d-9d1c-d8d48dbc4e8f-1-6.job 2015-06-28 00:13 - 2015-06-28 03:48 - 00003124 _____ C:\Windows\Tasks\abf03480-4ae9-44c5-9831-d93629c1523a-1-6.job 2015-06-28 00:13 - 2015-06-28 00:33 - 00003788 _____ C:\Windows\Tasks\1492a0b0-8af2-428d-9d1c-d8d48dbc4e8f-1-7.job 2015-06-28 00:13 - 2015-06-28 00:33 - 00003460 _____ C:\Windows\Tasks\abf03480-4ae9-44c5-9831-d93629c1523a-1-7.job 2015-06-28 00:13 - 2015-06-28 00:15 - 00000000 ____D C:\Users\utilisateur\AppData\Local\BrowserHelper 2015-06-28 00:13 - 2015-06-28 00:13 - 00000000 ____D C:\Program Files\a4002c51-f5c9-4a91-962f-dddae2d4c4ad 2015-06-28 00:13 - 2015-06-28 00:13 - 00000000 ____D C:\Program Files\53189e7c-fa17-41cb-85ee-0b59fae63a59 2015-06-28 00:11 - 2015-06-28 00:11 - 00000000 ____D C:\Users\utilisateur\AppData\Local\CrashRpt 2015-06-28 00:11 - 2015-06-27 10:39 - 00043152 _____ (StdLib) C:\Windows\system32\Drivers\{87286aec-c99d-4583-8090-ac15f3254b32}Gw.sys 2015-06-28 00:10 - 2015-06-28 06:14 - 00000000 ____D C:\ProgramData\{27fb49bf-0fa0-32ef-27fb-b49bf0fa26fc} 2015-06-28 00:09 - 2015-07-22 08:29 - 00000348 _____ C:\Windows\Tasks\TSXKZQAAXO1.job 2015-06-28 00:09 - 2015-06-28 06:13 - 00000000 ____D C:\ProgramData\b9719f9ae6284ebe94f55b96ff7977d0 2015-06-28 00:09 - 2015-06-28 00:09 - 00000000 ____D C:\ProgramData\12db864551ae4c578eb17db1a9f5d3cf 2015-06-27 01:03 - 2015-07-22 03:04 - 00000346 _____ C:\Windows\Tasks\Chromium.job 2015-06-26 21:18 - 2015-07-08 14:53 - 00000000 ____D C:\ProgramData\cfec8de20000219a 2015-06-26 00:44 - 2015-06-28 03:48 - 00003122 _____ C:\Windows\Tasks\f232096a-19fc-4a0a-9fc6-17082996f408-1-6.job 2015-06-26 00:44 - 2015-06-28 00:44 - 00003458 _____ C:\Windows\Tasks\f232096a-19fc-4a0a-9fc6-17082996f408-1-7.job 2015-06-26 00:44 - 2015-06-26 00:44 - 00000000 ____D C:\Program Files\26660599-9c74-405a-8f47-320d78847434 2015-06-26 00:43 - 2015-07-22 08:29 - 00002096 _____ C:\Windows\Tasks\f232096a-19fc-4a0a-9fc6-17082996f408-10_user.job 2015-06-26 00:42 - 2015-06-28 06:14 - 00000000 ____D C:\ProgramData\{f6b358c9-f14b-4412-f6b3-358c9f146327} 2015-06-26 00:41 - 2015-07-22 08:29 - 00002114 _____ C:\Windows\Tasks\079140e8-b171-4010-a0e3-bd597cc31a82-10_user.job 2015-06-26 00:40 - 2015-07-22 08:29 - 00000532 _____ C:\Windows\Tasks\cinemaplus-9.0v_helper_service.job 2015-06-26 00:40 - 2015-06-28 00:33 - 00000004 _____ C:\Windows\system32\029B560A371F4E00AB32838EBC01B9E7 2015-06-26 00:39 - 2015-06-26 00:46 - 00000872 _____ C:\Windows\system32\${LOGFILE} 2015-06-26 00:30 - 2015-06-26 00:30 - 00000000 ____D C:\ProgramData\Regeofxaf 2015-06-26 00:24 - 2015-06-28 00:14 - 00000000 ____D C:\Users\utilisateur\AppData\Roaming\Store 2015-06-26 00:24 - 2015-06-26 00:46 - 00000000 ____D C:\Users\utilisateur\AppData\Roaming\Nosibay 2015-06-26 00:23 - 2015-06-26 00:23 - 00000000 _____ C:\Windows\prleth.sys 2015-06-26 00:23 - 2015-06-26 00:23 - 00000000 _____ C:\Windows\hgfs.sys 2015-06-25 23:59 - 2015-06-27 01:00 - 14246072 _____ (BlueStack Systems Inc.) C:\Users\utilisateur\Downloads\bluestacks_0-9-30_fr_419980 [1].exe 2015-06-24 01:29 - 2015-06-24 01:29 - 01217192 _____ (Microsoft Corporation) C:\Windows\system32\FM20.DLL ==================== One Month Modified files and folders ======== (If an entry is included in the fixlist, the file/folder will be moved.) 2015-07-22 08:38 - 2012-05-02 14:52 - 00001002 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job 2015-07-22 08:37 - 2009-07-14 06:34 - 00027568 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2015-07-22 08:37 - 2009-07-14 06:34 - 00027568 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2015-07-22 08:29 - 2013-03-09 17:52 - 00001054 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2015-07-22 08:29 - 2011-11-24 14:34 - 00000376 _____ C:\Users\utilisateur\AppData\Roamingprivacy.xml 2015-07-22 08:29 - 2009-07-14 06:53 - 00000006 ____H C:\Windows\Tasks\SA.DAT 2015-07-22 08:27 - 2011-10-28 09:06 - 01249152 _____ C:\Windows\WindowsUpdate.log 2015-07-22 02:56 - 2013-11-13 23:47 - 00000952 _____ C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2357896040-1956171062-190532210-1000UA.job 2015-07-22 00:25 - 2009-07-14 06:33 - 00409032 _____ C:\Windows\system32\FNTCACHE.DAT 2015-07-21 23:49 - 2013-11-13 23:47 - 00000930 _____ C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2357896040-1956171062-190532210-1000Core.job 2015-07-21 20:11 - 2010-11-20 23:01 - 01705210 _____ C:\Windows\system32\PerfStringBackup.INI 2015-07-21 18:56 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\system32\NDF 2015-07-21 18:16 - 2013-08-13 21:00 - 00000000 ____D C:\Users\utilisateur\AppData\Roaming\Skype 2015-07-21 18:16 - 2011-11-24 11:04 - 00000000 ____D C:\Users\utilisateur\AppData\Local\CrashDumps 2015-07-21 17:22 - 2009-07-14 04:04 - 00000607 _____ C:\Windows\win.ini 2015-07-20 19:29 - 2015-01-10 14:20 - 00000378 _____ C:\Windows\Tasks\SlimCleaner Plus (Scheduled Scan - utilisateur).job 2015-07-20 08:28 - 2013-03-19 22:16 - 00000000 ____D C:\Users\utilisateur\Documents\Donnees e-bat 2015-07-19 20:07 - 2013-12-11 23:17 - 00000000 __SHD C:\Kernel 2015-07-19 14:43 - 2013-12-11 23:17 - 00000970 ____R C:\Users\utilisateur\Documents\Photos.lnk 2015-07-19 14:43 - 2013-12-11 23:17 - 00000958 ____R C:\Users\Photos.lnk 2015-07-19 14:43 - 2012-02-06 11:11 - 00000000 ____D C:\scan 2015-07-19 14:43 - 2012-01-16 09:28 - 00000000 ____D C:\Sdx 2015-07-19 14:42 - 2009-07-14 06:46 - 00001515 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk 2015-07-17 01:10 - 2015-04-04 11:06 - 00000000 ___SD C:\Windows\system32\GWX 2015-07-17 00:32 - 2014-01-20 22:45 - 00004884 _____ C:\Windows\system32\bddel.dat 2015-07-16 00:54 - 2014-07-30 21:55 - 00000000 ____D C:\Users\utilisateur\AppData\Local\Adobe 2015-07-16 00:35 - 2011-10-28 09:13 - 00000000 ____D C:\Program Files\Google 2015-07-15 21:35 - 2013-12-26 23:53 - 00000000 ____D C:\Users\utilisateur\AppData\Local\genienext 2015-07-15 20:38 - 2012-05-02 14:52 - 00778416 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe 2015-07-15 20:38 - 2011-10-28 09:52 - 00142512 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl 2015-07-15 05:11 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\rescache 2015-07-15 03:29 - 2014-12-10 20:55 - 00000000 ____D C:\Windows\system32\appraiser 2015-07-15 03:29 - 2014-05-07 23:27 - 00000000 ___SD C:\Windows\system32\CompatTel 2015-07-15 03:29 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\system32\fr-FR 2015-07-15 03:13 - 2013-08-09 03:04 - 00000000 ____D C:\Windows\system32\MRT 2015-07-15 03:07 - 2011-11-24 10:26 - 00000000 ____D C:\ProgramData\Microsoft Help 2015-07-14 23:15 - 2014-07-30 21:47 - 00002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk 2015-07-13 01:44 - 2009-07-14 06:53 - 00032482 _____ C:\Windows\Tasks\SCHEDLGU.TXT 2015-07-04 23:26 - 2013-02-27 01:11 - 00000000 ___HD C:\Windows\msdownld.tmp 2015-07-03 08:49 - 2011-10-28 10:19 - 127070192 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe 2015-07-01 23:49 - 2013-08-09 16:19 - 00000000 ____D C:\Program Files\CCleaner 2015-06-28 15:27 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\Microsoft.NET 2015-06-28 15:18 - 2009-07-14 04:37 - 00000000 __RHD C:\Users\Public\Libraries 2015-06-28 13:36 - 2012-01-16 09:58 - 00000300 _____ C:\Windows\Tasks\AudaUpdate Client.job 2015-06-28 06:14 - 2014-07-17 10:34 - 00000000 ____D C:\Program Files\Mobogenie3 2015-06-28 06:14 - 2013-03-19 17:54 - 00000000 ____D C:\Users\utilisateur\AppData\Roaming\Delta 2015-06-28 06:14 - 2009-07-14 04:37 - 00000000 ____D C:\Program Files\Common Files\System 2015-06-28 04:20 - 2013-08-09 18:52 - 00000000 ____D C:\Users\utilisateur\AppData\Roaming\Malwarebytes 2015-06-28 04:20 - 2013-08-09 18:52 - 00000000 ____D C:\ProgramData\Malwarebytes 2015-06-28 04:20 - 2013-08-09 18:52 - 00000000 ____D C:\Program Files\Malwarebytes' Anti-Malware 2015-06-28 04:15 - 2013-03-19 17:54 - 00000000 ____D C:\Program Files\Delta 2015-06-28 04:15 - 2011-10-28 09:16 - 00000000 ____D C:\Users\utilisateur 2015-06-28 02:21 - 2013-06-26 07:31 - 00001395 _____ C:\Users\utilisateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk 2015-06-28 00:40 - 2009-07-14 04:37 - 00000000 ___HD C:\Windows\system32\GroupPolicy ==================== Files in the root of some directories ======= 2013-03-19 17:53 - 2013-03-19 17:53 - 0030894 _____ () C:\Users\utilisateur\AppData\Roaming\speedanalysis.ico 2014-09-07 00:49 - 2014-10-03 09:49 - 0000066 _____ () C:\Users\utilisateur\AppData\Roaming\WB.CFG 2011-10-28 09:23 - 2011-10-28 09:23 - 0000980 _____ () C:\Users\utilisateur\AppData\Local\Temppihide_log1.log 2011-10-28 09:23 - 2011-10-28 09:23 - 0000000 _____ () C:\Users\utilisateur\AppData\Local\Temppihide_log2.log ==================== Bamital & volsnap Check ================= (There is no automatic fix for files that do not pass verification.) C:\Windows\explorer.exe => File is digitally signed C:\Windows\system32\winlogon.exe => File is digitally signed C:\Windows\system32\wininit.exe => File is digitally signed C:\Windows\system32\svchost.exe => File is digitally signed C:\Windows\system32\services.exe => File is digitally signed C:\Windows\system32\User32.dll => File is digitally signed C:\Windows\system32\userinit.exe => File is digitally signed C:\Windows\system32\rpcss.dll => File is digitally signed C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed LastRegBack: 2015-07-15 04:01 ==================== End of log ============================