Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 26-07-2014
Ran by Jonath (administrator) on JONATH-HP on 30-07-2014 15:12:53
Running from C:\Users\Jonath\Downloads
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: Français (France)
Internet Explorer Version 11
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/81/
Download link for 64-Bit Version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\stacsv64.exe
(Hewlett-Packard Company) C:\Windows\System32\hpservice.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(EasyBits Software AS) C:\Windows\SysWOW64\ezSharedSvcHost.exe
(Hewlett-Packard Company) C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
() C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
() C:\Program Files\Hewlett-Packard\HP LaunchBox\HPTaskBar1.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\sttray64.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files\Hewlett-Packard\HP LaunchBox\HPTaskBar2.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP On Screen Display\HPOSD.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe
(Apple Inc.) C:\Program Files (x86)\iTunes\iTunesHelper.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVHSVC.EXE
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\NisSrv.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe
(CyberLink) C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
() C:\Program Files (x86)\Winamax Poker\Winamax Poker.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\wbem\WMIADAP.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2837288 2011-10-14] (Synaptics Incorporated)
HKLM\...\Run: [SetDefault] => C:\Program Files\Hewlett-Packard\HP LaunchBox\SetDefault.exe [44880 2011-12-20] (Hewlett-Packard Development Company, L.P.)
HKLM\...\Run: [SysTrayApp] => C:\Program Files\IDT\WDM\sttray64.exe [1425408 2013-11-03] (IDT, Inc.)
HKLM\...\Run: [MSC] => c:\Program Files\Microsoft Security Client\msseces.exe [1271072 2014-03-11] (Microsoft Corporation)
HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [291096 2011-12-05] (Intel Corporation)
HKLM-x32\...\Run: [Easybits Recovery] => C:\Program Files (x86)\EasyBits For Kids\ezRecover.exe [612872 2014-01-03] (EasyBits Software AS)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [HPOSD] => C:\Program Files (x86)\Hewlett-Packard\HP On Screen Display\HPOSD.exe [379960 2011-08-19] (Hewlett-Packard Development Company, L.P.)
HKLM-x32\...\Run: [HP Quick Launch] => C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe [578944 2012-03-05] (Hewlett-Packard Development Company, L.P.)
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [43848 2014-02-06] (Apple Inc.)
HKLM-x32\...\Run: [iTunesHelper] => C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2014-02-21] (Apple Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [256896 2014-07-11] (Oracle Corporation)
HKLM\...\RunOnce: [NCPluginUpdater] => C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\NCPluginUpdater.exe [21720 2014-06-24] (Hewlett-Packard)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKLM\...\Policies\Explorer: [EnableShellExecuteHooks] 1
HKU\S-1-5-19\...\RunOnce: [mctadmin] => C:\Windows\System32\mctadmin.exe [97280 2009-07-14] (Microsoft Corporation)
HKU\S-1-5-20\...\RunOnce: [mctadmin] => C:\Windows\System32\mctadmin.exe [97280 2009-07-14] (Microsoft Corporation)
HKU\S-1-5-21-3448609820-2149804138-1553385968-1000\...\Run: [GoogleChromeAutoLaunch_3CCB981954F7AC091F2C0A240A5018F3] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [860488 2014-07-15] (Google Inc.)
HKU\S-1-5-21-3448609820-2149804138-1553385968-1000\...\Policies\system: [DisableLockWorkstation] 0
HKU\S-1-5-21-3448609820-2149804138-1553385968-1000\...\Policies\system: [DisableChangePassword] 0

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://g.uk.msn.com/HPNOT/3
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://g.uk.msn.com/HPNOT/3
StartMenuInternet: IEXPLORE.EXE - iexplore.exe
SearchScopes: HKLM - {476865D2-76AD-4C2A-B20C-969D44961AF9} URL = http://www.amazon.fr/s/ref=azs_osd_ieafr?ie=UTF-8&tag=hp-fr2-vsb-21&link%5Fcode=qs&index=aps&field-keywords={searchTerms}
SearchScopes: HKLM - {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = http://rover.ebay.com/rover/1/709-111075-12437-3/4?mpre=http://www.ebay.fr/sch/i.html?_nkw={searchTerms}
SearchScopes: HKLM-x32 - {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = http://rover.ebay.com/rover/1/709-111075-12437-3/4?mpre=http://www.ebay.fr/sch/i.html?_nkw={searchTerms}
SearchScopes: HKCU - {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = http://rover.ebay.com/rover/1/709-111075-12437-3/4?mpre=http://www.ebay.fr/sch/i.html?_nkw={searchTerms}
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll (Hewlett-Packard)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Programme d'aide de l'Assistant de connexion Windows Live ID -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll (Hewlett-Packard)
Toolbar: HKCU - No Name - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - No File
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
ShellExecuteHooks: - {E54729E8-643D-4270-9D49-7389EA579090} - C:\Windows\SysWOW64\ezUPBHook64.dll [773192 2014-01-16] ()
ShellExecuteHooks-x32: - {E54729E8-BB3D-4270-9D49-7389EA579090} - C:\Windows\SysWOW64\ezUPBHook32.dll [484936 2014-01-16] ()
Tcpip\Parameters: [DhcpNameServer] 192.168.0.254

FireFox:
========
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/ShockwavePlayer - C:\Windows\SysWOW64\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF Plugin-x32: @Apple.com/iTunes,version=1.0 - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.0.52 - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=10.65.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.65.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3538.0513 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.1.2 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 - C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll ()
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)

Chrome:
=======
CHR HomePage:
CHR StartupUrls: "hxxp://www2.delta-search.com/?babsrc=HP_ss&mntrId=04CAE006E639CEC6&affID=119357&tsp=5006", "hxxp://www.google.com"
CHR Extension: (Google Docs) - C:\Users\Jonath\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2013-11-02]
CHR Extension: (Google Drive) - C:\Users\Jonath\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2013-11-02]
CHR Extension: (YouTube) - C:\Users\Jonath\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2013-11-02]
CHR Extension: (Recherche Google) - C:\Users\Jonath\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2013-11-02]
CHR Extension: (Télécommande Virtuelle Freebox Révolution/HD) - C:\Users\Jonath\AppData\Local\Google\Chrome\User Data\Default\Extensions\fdhpkpfbolhjcbejckjbiciinkcjlijj [2013-11-02]
CHR Extension: (Google Wallet) - C:\Users\Jonath\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-11-02]
CHR Extension: (Gmail) - C:\Users\Jonath\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2013-11-02]

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 ezSharedSvc; C:\Windows\SysWOW64\ezSharedSvcHost.exe [514232 2010-04-23] (EasyBits Software AS) [File not signed]
R2 HP Support Assistant Service; C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe [92160 2013-11-04] (Hewlett-Packard Company) [File not signed]
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [128280 2011-12-16] ()
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [161560 2011-12-16] (Intel Corporation)
R2 MsMpSvc; c:\Program Files\Microsoft Security Client\MsMpEng.exe [23808 2014-03-11] (Microsoft Corporation)
S3 Mysql Xeester; C:\Program Files (x86)\Xeester\mysql\xeester.ini [4821 2012-10-16] () [File not signed]
R3 NisSrv; c:\Program Files\Microsoft Security Client\NisSrv.exe [347872 2014-03-11] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [268512 2014-01-25] (Microsoft Corporation)
R2 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [133928 2014-03-11] (Microsoft Corporation)
S3 RSP2STOR; C:\Windows\System32\DRIVERS\RtsP2Stor.sys [258664 2011-09-22] (Realtek Semiconductor Corp.)

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-07-30 14:03 - 2014-07-30 14:03 - 00001459 _____ () C:\Users\Jonath\Desktop\Malware rapport.txt
2014-07-30 13:43 - 2014-07-30 14:00 - 00122584 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-07-30 13:43 - 2014-07-30 13:43 - 00001106 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-07-30 13:43 - 2014-07-30 13:43 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2014-07-30 13:43 - 2014-07-30 13:43 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-07-30 13:43 - 2014-07-30 13:43 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-07-30 13:43 - 2014-05-12 07:26 - 00091352 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-07-30 13:43 - 2014-05-12 07:26 - 00063704 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2014-07-30 13:43 - 2014-05-12 07:25 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-07-30 13:42 - 2014-07-30 13:42 - 17292760 _____ (Malwarebytes Corporation ) C:\Users\Jonath\Downloads\mbam-setup-2.0.2.1012.exe
2014-07-30 13:37 - 2014-07-30 13:37 - 00000919 _____ () C:\Users\Jonath\Desktop\JRT.txt
2014-07-30 13:28 - 2014-07-30 13:28 - 00000000 ____D () C:\Windows\ERUNT
2014-07-30 13:27 - 2014-07-30 13:27 - 01016261 _____ (Thisisu) C:\Users\Jonath\Downloads\JRT (1).exe
2014-07-30 13:21 - 2014-07-30 13:58 - 00000638 _____ () C:\Windows\PFRO.log
2014-07-30 13:19 - 2010-08-30 08:34 - 00536576 _____ (SQLite Development Team) C:\Windows\SysWOW64\sqlite3.dll
2014-07-30 13:15 - 2014-07-30 13:15 - 01365551 _____ () C:\Users\Jonath\Downloads\adwcleaner_3.301.exe
2014-07-30 13:09 - 2014-07-30 13:10 - 01016261 _____ (Thisisu) C:\Users\Jonath\Downloads\JRT.exe
2014-07-30 12:38 - 2014-07-30 12:39 - 00030887 _____ () C:\Users\Jonath\Downloads\Addition.txt
2014-07-30 12:37 - 2014-07-30 15:14 - 00015656 _____ () C:\Users\Jonath\Downloads\FRST.txt
2014-07-30 12:36 - 2014-07-30 15:13 - 00000000 ____D () C:\FRST
2014-07-30 12:36 - 2014-07-30 12:36 - 02093568 _____ (Farbar) C:\Users\Jonath\Downloads\FRST64.exe
2014-07-29 15:43 - 2014-07-29 15:43 - 00000000 ____D () C:\Windows\Sun
2014-07-29 15:43 - 2014-07-29 15:43 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2014-07-29 15:43 - 2014-07-11 03:02 - 00098216 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2014-07-29 15:43 - 2014-07-11 02:56 - 00272808 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2014-07-29 15:43 - 2014-07-11 02:56 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2014-07-29 15:43 - 2014-07-11 02:55 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2014-07-29 15:42 - 2014-07-29 15:43 - 00004269 _____ () C:\Windows\SysWOW64\jupdate-1.7.0_65-b20.log
2014-07-29 15:40 - 2014-06-30 04:09 - 00519168 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-07-29 15:40 - 2014-06-30 04:04 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-07-29 15:40 - 2014-06-18 03:10 - 03157504 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-07-29 15:39 - 2014-06-18 04:18 - 00692736 _____ (Microsoft Corporation) C:\Windows\system32\osk.exe
2014-07-29 15:39 - 2014-06-18 03:51 - 00646144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\osk.exe
2014-07-29 15:39 - 2014-06-06 12:10 - 00624128 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2014-07-29 15:39 - 2014-06-06 11:44 - 00509440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qedit.dll
2014-07-29 15:39 - 2014-05-30 10:08 - 00728064 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2014-07-29 15:39 - 2014-05-30 10:08 - 00340992 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2014-07-29 15:39 - 2014-05-30 10:08 - 00314880 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2014-07-29 15:39 - 2014-05-30 10:08 - 00307200 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2014-07-29 15:39 - 2014-05-30 10:08 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2014-07-29 15:39 - 2014-05-30 10:08 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2014-07-29 15:39 - 2014-05-30 10:08 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2014-07-29 15:39 - 2014-05-30 09:52 - 00550912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2014-07-29 15:39 - 2014-05-30 09:52 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2014-07-29 15:39 - 2014-05-30 09:52 - 00247808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2014-07-29 15:39 - 2014-05-30 09:52 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2014-07-29 15:39 - 2014-05-30 09:52 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2014-07-29 15:39 - 2014-05-30 09:52 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2014-07-29 15:39 - 2014-05-30 09:52 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2014-07-29 15:39 - 2014-05-30 08:45 - 00497152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2014-07-29 15:38 - 2014-06-20 22:14 - 00266424 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-07-29 15:38 - 2014-06-20 21:39 - 00240824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-07-29 15:38 - 2014-06-19 03:39 - 23464448 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-07-29 15:38 - 2014-06-19 03:06 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-07-29 15:38 - 2014-06-19 03:06 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-07-29 15:38 - 2014-06-19 02:48 - 02768384 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-07-29 15:38 - 2014-06-19 02:42 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-07-29 15:38 - 2014-06-19 02:42 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-07-29 15:38 - 2014-06-19 02:41 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-07-29 15:38 - 2014-06-19 02:41 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-07-29 15:38 - 2014-06-19 02:32 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-07-29 15:38 - 2014-06-19 02:31 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-07-29 15:38 - 2014-06-19 02:26 - 00598016 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-07-29 15:38 - 2014-06-19 02:24 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-07-29 15:38 - 2014-06-19 02:24 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-07-29 15:38 - 2014-06-19 02:23 - 00752640 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-07-29 15:38 - 2014-06-19 02:16 - 17276416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-07-29 15:38 - 2014-06-19 02:14 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-07-29 15:38 - 2014-06-19 02:09 - 00452608 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-07-29 15:38 - 2014-06-19 01:59 - 00038400 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-07-29 15:38 - 2014-06-19 01:56 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-07-29 15:38 - 2014-06-19 01:53 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-07-29 15:38 - 2014-06-19 01:51 - 05721088 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-07-29 15:38 - 2014-06-19 01:50 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-07-29 15:38 - 2014-06-19 01:48 - 00292864 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-07-29 15:38 - 2014-06-19 01:39 - 00608768 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-07-29 15:38 - 2014-06-19 01:38 - 00455168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-07-29 15:38 - 2014-06-19 01:37 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-07-29 15:38 - 2014-06-19 01:36 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-07-29 15:38 - 2014-06-19 01:35 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2014-07-29 15:38 - 2014-06-19 01:33 - 00631808 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-07-29 15:38 - 2014-06-19 01:32 - 02179072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-07-29 15:38 - 2014-06-19 01:28 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-07-29 15:38 - 2014-06-19 01:28 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-07-29 15:38 - 2014-06-19 01:27 - 02040832 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-07-29 15:38 - 2014-06-19 01:27 - 01249280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-07-29 15:38 - 2014-06-19 01:25 - 00442368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-07-29 15:38 - 2014-06-19 01:23 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-07-29 15:38 - 2014-06-19 01:22 - 00592896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-07-29 15:38 - 2014-06-19 01:12 - 00367616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-07-29 15:38 - 2014-06-19 01:06 - 00032256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-07-29 15:38 - 2014-06-19 01:01 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-07-29 15:38 - 2014-06-19 00:59 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-07-29 15:38 - 2014-06-19 00:58 - 02266112 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-07-29 15:38 - 2014-06-19 00:58 - 00239616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-07-29 15:38 - 2014-06-19 00:52 - 04254720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-07-29 15:38 - 2014-06-19 00:51 - 13527040 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-07-29 15:38 - 2014-06-19 00:49 - 00526336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-07-29 15:38 - 2014-06-19 00:46 - 01068032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2014-07-29 15:38 - 2014-06-19 00:45 - 01964544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-07-29 15:38 - 2014-06-19 00:35 - 11742208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-07-29 15:38 - 2014-06-19 00:34 - 01393664 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-07-29 15:38 - 2014-06-19 00:15 - 00846336 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-07-29 15:38 - 2014-06-19 00:13 - 01791488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-07-29 15:38 - 2014-06-19 00:09 - 01139200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-07-29 15:38 - 2014-06-19 00:07 - 00704512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-07-29 15:36 - 2014-06-05 16:45 - 01460736 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2014-07-29 15:36 - 2014-06-05 16:26 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2014-07-29 15:36 - 2014-06-05 16:25 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2014-07-29 15:18 - 2014-07-30 13:58 - 00000280 _____ () C:\Windows\setupact.log
2014-07-29 15:18 - 2014-07-29 15:18 - 00000000 _____ () C:\Windows\setuperr.log
2014-07-29 01:25 - 2014-07-30 13:20 - 00000000 ____D () C:\AdwCleaner
2014-07-28 16:31 - 2014-07-28 16:31 - 00003232 ____N () C:\bootsqm.dat
2014-07-15 18:00 - 2014-07-29 15:16 - 00000000 ____D () C:\Users\Jonath\Desktop\Caisse Régionale d'Ile de France_files
2014-07-15 18:00 - 2014-07-15 18:00 - 00062895 _____ () C:\Users\Jonath\Desktop\Caisse Régionale d'Ile de France.htm
2014-07-13 05:33 - 2014-07-13 05:41 - 718284800 _____ () C:\Users\Jonath\Downloads\Dumb.And.Dumber.FRENCH.DVDRIP.DIVX-RTC.RICKO.avi
2014-07-10 14:06 - 2014-07-10 14:13 - 733978641 _____ () C:\Users\Jonath\Downloads\f-fighter.avi
2014-07-10 12:22 - 2014-07-10 12:33 - 890656783 _____ () C:\Users\Jonath\Downloads\ZT-Full.metal.jacket.DVDRiP.french.www.Zone-Telechargement.com.avi
2014-07-10 02:19 - 2014-07-30 14:03 - 00003192 _____ () C:\Windows\System32\Tasks\HPCeeScheduleForJonath
2014-07-10 02:19 - 2014-07-30 14:03 - 00000336 _____ () C:\Windows\Tasks\HPCeeScheduleForJonath.job
2014-07-10 02:09 - 2014-07-29 15:16 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2014-07-10 02:09 - 2014-07-29 15:16 - 00000000 ____D () C:\Program Files\CCleaner
2014-07-10 02:09 - 2014-07-10 02:09 - 00002774 _____ () C:\Windows\System32\Tasks\CCleanerSkipUAC
2014-07-10 02:09 - 2014-07-10 02:09 - 00000822 _____ () C:\Users\Public\Desktop\CCleaner.lnk
2014-07-10 02:05 - 2014-07-10 02:21 - 00000000 ____D () C:\Windows\Minidump
2014-07-10 02:04 - 2014-07-10 02:03 - 04812672 _____ (Piriform Ltd) C:\Users\Jonath\Downloads\ccsetup415 [1].exe
2014-07-10 02:03 - 2014-07-10 02:04 - 04812672 _____ (Piriform Ltd) C:\Users\Jonath\Downloads\ccleaner_4-15_fr_14492.exe
2014-07-10 01:18 - 2014-07-10 01:39 - 2208391168 _____ () C:\Users\Jonath\Downloads\Zone-telechargement.com.APCNW.2CD.VF.avi
2014-07-09 19:55 - 2014-07-09 19:55 - 00975624 _____ (Poker Pro Labs) C:\Users\Jonath\Downloads\superhudsetup.exe
2014-07-09 17:46 - 2014-07-09 17:53 - 733972480 _____ () C:\Users\Jonath\Downloads\M_moires_de_nos_p_res__Flags_Of_Our_Fathers_.avi
2014-07-09 13:32 - 2014-07-09 13:32 - 00000212 _____ () C:\Users\Jonath\Downloads\frame2 (1).html
2014-07-09 13:23 - 2014-07-09 13:41 - 1472522734 _____ () C:\Users\Jonath\Downloads\The.Thin.Red.Line.1998.TRUEFRENCH.DVDRiP.XviD-HuSh-www.Zone-Telechargement.com.avi
2014-07-07 00:16 - 2014-07-07 00:23 - 733670269 _____ () C:\Users\Jonath\Downloads\Walk.of.Shame.2014.FRENCH.BRRip.zone-telechargement.com.avi
2014-07-06 20:43 - 2014-07-06 21:01 - 1464492061 _____ () C:\Users\Jonath\Downloads\Pulp Fiction-www.Zone-Telechargement.com.avi
2014-07-05 16:31 - 2014-07-05 16:40 - 732641280 _____ () C:\Users\Jonath\Downloads\Franck.Dubosc.Il.etait.une.fois.DVDRIP.Portmat.www.zone-telechargement.com.avi
2014-07-05 15:02 - 2014-07-05 15:20 - 1469888542 _____ () C:\Users\Jonath\Downloads\Loup.VFF.zone-telechargement.com.avi
2014-07-05 00:03 - 2014-07-05 00:12 - 734400513 _____ () C:\Users\Jonath\Downloads\Las.Vegas.Parano.avi
2014-07-04 01:45 - 2014-07-04 01:53 - 736325659 _____ () C:\Users\Jonath\Downloads\Rise.Of.PApes.avi
2014-07-04 01:00 - 2014-07-04 01:00 - 00000212 _____ () C:\Users\Jonath\Downloads\frame2.html
2014-07-01 11:05 - 2014-07-01 11:23 - 1464981516 _____ () C:\Users\Jonath\Downloads\The.Legend.Of.Hercules.2014.FRENCH.DVDRiP.AC3.zone-telechargement.com.avi
2014-06-30 22:53 - 2014-06-30 22:53 - 00001600 _____ () C:\Users\Jonath\Downloads\view.php

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-07-30 15:14 - 2014-07-30 12:37 - 00015656 _____ () C:\Users\Jonath\Downloads\FRST.txt
2014-07-30 15:13 - 2014-07-30 12:36 - 00000000 ____D () C:\FRST
2014-07-30 15:12 - 2012-02-09 19:42 - 00748112 _____ () C:\Windows\system32\perfh00C.dat
2014-07-30 15:12 - 2012-02-09 19:42 - 00150346 _____ () C:\Windows\system32\perfc00C.dat
2014-07-30 15:12 - 2009-07-14 07:13 - 01670184 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-07-30 15:11 - 2013-11-01 16:53 - 01584392 _____ () C:\Windows\WindowsUpdate.log
2014-07-30 15:11 - 2012-02-09 11:12 - 00001002 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-07-30 14:21 - 2013-11-02 00:23 - 00001068 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-07-30 14:21 - 2013-11-02 00:23 - 00001064 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-07-30 14:05 - 2009-07-14 06:45 - 00031472 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-07-30 14:05 - 2009-07-14 06:45 - 00031472 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-07-30 14:03 - 2014-07-30 14:03 - 00001459 _____ () C:\Users\Jonath\Desktop\Malware rapport.txt
2014-07-30 14:03 - 2014-07-10 02:19 - 00003192 _____ () C:\Windows\System32\Tasks\HPCeeScheduleForJonath
2014-07-30 14:03 - 2014-07-10 02:19 - 00000336 _____ () C:\Windows\Tasks\HPCeeScheduleForJonath.job
2014-07-30 14:00 - 2014-07-30 13:43 - 00122584 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-07-30 13:58 - 2014-07-30 13:21 - 00000638 _____ () C:\Windows\PFRO.log
2014-07-30 13:58 - 2014-07-29 15:18 - 00000280 _____ () C:\Windows\setupact.log
2014-07-30 13:58 - 2009-07-14 07:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-07-30 13:58 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\Cursors
2014-07-30 13:43 - 2014-07-30 13:43 - 00001106 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-07-30 13:43 - 2014-07-30 13:43 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2014-07-30 13:43 - 2014-07-30 13:43 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-07-30 13:43 - 2014-07-30 13:43 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-07-30 13:42 - 2014-07-30 13:42 - 17292760 _____ (Malwarebytes Corporation ) C:\Users\Jonath\Downloads\mbam-setup-2.0.2.1012.exe
2014-07-30 13:37 - 2014-07-30 13:37 - 00000919 _____ () C:\Users\Jonath\Desktop\JRT.txt
2014-07-30 13:28 - 2014-07-30 13:28 - 00000000 ____D () C:\Windows\ERUNT
2014-07-30 13:27 - 2014-07-30 13:27 - 01016261 _____ (Thisisu) C:\Users\Jonath\Downloads\JRT (1).exe
2014-07-30 13:20 - 2014-07-29 01:25 - 00000000 ____D () C:\AdwCleaner
2014-07-30 13:19 - 2014-03-16 15:38 - 00000000 ____D () C:\Program Files (x86)\Xeester
2014-07-30 13:15 - 2014-07-30 13:15 - 01365551 _____ () C:\Users\Jonath\Downloads\adwcleaner_3.301.exe
2014-07-30 13:10 - 2014-07-30 13:09 - 01016261 _____ (Thisisu) C:\Users\Jonath\Downloads\JRT.exe
2014-07-30 12:39 - 2014-07-30 12:38 - 00030887 _____ () C:\Users\Jonath\Downloads\Addition.txt
2014-07-30 12:36 - 2014-07-30 12:36 - 02093568 _____ (Farbar) C:\Users\Jonath\Downloads\FRST64.exe
2014-07-30 12:03 - 2013-11-01 16:57 - 00003944 _____ () C:\Windows\System32\Tasks\User_Feed_Synchronization-{93E7E702-D5DE-47E5-98CB-9D4976CAC4A1}
2014-07-29 20:25 - 2013-11-02 00:24 - 00002181 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-07-29 16:06 - 2009-07-14 06:45 - 00275856 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-07-29 16:04 - 2014-06-24 14:34 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-07-29 16:04 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\SysWOW64\Dism
2014-07-29 16:04 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\system32\Dism
2014-07-29 15:50 - 2013-11-16 14:41 - 00000000 ____D () C:\Windows\system32\MRT
2014-07-29 15:47 - 2013-11-16 14:41 - 96441528 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-07-29 15:43 - 2014-07-29 15:43 - 00000000 ____D () C:\Windows\Sun
2014-07-29 15:43 - 2014-07-29 15:43 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2014-07-29 15:43 - 2014-07-29 15:42 - 00004269 _____ () C:\Windows\SysWOW64\jupdate-1.7.0_65-b20.log
2014-07-29 15:43 - 2013-11-03 22:46 - 00000000 ____D () C:\ProgramData\Oracle
2014-07-29 15:43 - 2013-11-03 22:45 - 00000000 ____D () C:\Program Files (x86)\Java
2014-07-29 15:32 - 2013-12-02 00:58 - 00000000 ____D () C:\Program Files\Microsoft Silverlight
2014-07-29 15:32 - 2013-12-02 00:58 - 00000000 ____D () C:\Program Files (x86)\Microsoft Silverlight
2014-07-29 15:28 - 2013-12-02 00:59 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2014-07-29 15:18 - 2014-07-29 15:18 - 00000000 _____ () C:\Windows\setuperr.log
2014-07-29 15:18 - 2013-11-01 16:54 - 00000000 ____D () C:\Users\Jonath
2014-07-29 15:17 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\rescache
2014-07-29 15:16 - 2014-07-15 18:00 - 00000000 ____D () C:\Users\Jonath\Desktop\Caisse Régionale d'Ile de France_files
2014-07-29 15:16 - 2014-07-10 02:09 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2014-07-29 15:16 - 2014-07-10 02:09 - 00000000 ____D () C:\Program Files\CCleaner
2014-07-29 15:16 - 2014-06-28 15:18 - 00000000 ____D () C:\Program Files (x86)\Winamax Poker
2014-07-29 15:16 - 2014-01-14 20:15 - 00000000 ____D () C:\Users\Jonath\AppData\Roaming\vlc
2014-07-29 15:16 - 2014-01-14 20:15 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2014-07-29 15:16 - 2014-01-12 21:18 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\World of Warplanes
2014-07-29 15:16 - 2013-11-03 19:09 - 00000000 ____D () C:\Users\Jonath\Documents\Youcam
2014-07-29 15:16 - 2013-11-02 00:24 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2014-07-29 15:16 - 2012-02-09 11:23 - 00000000 ____D () C:\ProgramData\Hewlett-Packard
2014-07-29 15:16 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\AppCompat
2014-07-29 15:16 - 2009-07-14 05:20 - 00000000 ____D () C:\Program Files\Common Files\Microsoft Shared
2014-07-29 15:14 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\registration
2014-07-28 18:40 - 2013-11-03 19:34 - 00000000 ____D () C:\Users\Jonath\AppData\Local\CrashDumps
2014-07-28 16:31 - 2014-07-28 16:31 - 00003232 ____N () C:\bootsqm.dat
2014-07-15 18:06 - 2014-01-07 18:37 - 00000000 ____D () C:\Users\Jonath\Desktop\photo i phone
2014-07-15 18:00 - 2014-07-15 18:00 - 00062895 _____ () C:\Users\Jonath\Desktop\Caisse Régionale d'Ile de France.htm
2014-07-13 05:41 - 2014-07-13 05:33 - 718284800 _____ () C:\Users\Jonath\Downloads\Dumb.And.Dumber.FRENCH.DVDRIP.DIVX-RTC.RICKO.avi
2014-07-11 03:02 - 2014-07-29 15:43 - 00098216 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2014-07-11 02:56 - 2014-07-29 15:43 - 00272808 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2014-07-11 02:56 - 2014-07-29 15:43 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2014-07-11 02:55 - 2014-07-29 15:43 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2014-07-10 14:13 - 2014-07-10 14:06 - 733978641 _____ () C:\Users\Jonath\Downloads\f-fighter.avi
2014-07-10 12:33 - 2014-07-10 12:22 - 890656783 _____ () C:\Users\Jonath\Downloads\ZT-Full.metal.jacket.DVDRiP.french.www.Zone-Telechargement.com.avi
2014-07-10 02:21 - 2014-07-10 02:05 - 00000000 ____D () C:\Windows\Minidump
2014-07-10 02:21 - 2013-11-03 19:11 - 00000000 ____D () C:\Users\Jonath\AppData\Roaming\Skype
2014-07-10 02:21 - 2007-01-02 03:25 - 00000000 ____D () C:\Windows\Panther
2014-07-10 02:09 - 2014-07-10 02:09 - 00002774 _____ () C:\Windows\System32\Tasks\CCleanerSkipUAC
2014-07-10 02:09 - 2014-07-10 02:09 - 00000822 _____ () C:\Users\Public\Desktop\CCleaner.lnk
2014-07-10 02:04 - 2014-07-10 02:03 - 04812672 _____ (Piriform Ltd) C:\Users\Jonath\Downloads\ccleaner_4-15_fr_14492.exe
2014-07-10 02:03 - 2014-07-10 02:04 - 04812672 _____ (Piriform Ltd) C:\Users\Jonath\Downloads\ccsetup415 [1].exe
2014-07-10 01:39 - 2014-07-10 01:18 - 2208391168 _____ () C:\Users\Jonath\Downloads\Zone-telechargement.com.APCNW.2CD.VF.avi
2014-07-09 19:55 - 2014-07-09 19:55 - 00975624 _____ (Poker Pro Labs) C:\Users\Jonath\Downloads\superhudsetup.exe
2014-07-09 17:53 - 2014-07-09 17:46 - 733972480 _____ () C:\Users\Jonath\Downloads\M_moires_de_nos_p_res__Flags_Of_Our_Fathers_.avi
2014-07-09 13:41 - 2014-07-09 13:23 - 1472522734 _____ () C:\Users\Jonath\Downloads\The.Thin.Red.Line.1998.TRUEFRENCH.DVDRiP.XviD-HuSh-www.Zone-Telechargement.com.avi
2014-07-09 13:32 - 2014-07-09 13:32 - 00000212 _____ () C:\Users\Jonath\Downloads\frame2 (1).html
2014-07-09 00:48 - 2012-02-09 11:12 - 00699056 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-07-09 00:48 - 2012-02-09 11:12 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-07-09 00:48 - 2012-02-09 11:12 - 00003940 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-07-07 00:23 - 2014-07-07 00:16 - 733670269 _____ () C:\Users\Jonath\Downloads\Walk.of.Shame.2014.FRENCH.BRRip.zone-telechargement.com.avi
2014-07-06 21:01 - 2014-07-06 20:43 - 1464492061 _____ () C:\Users\Jonath\Downloads\Pulp Fiction-www.Zone-Telechargement.com.avi
2014-07-06 18:41 - 2013-11-24 14:50 - 00000000 _____ () C:\Windows\system32\HP_ActiveX_Patch_NOT_DETECTED.txt
2014-07-06 18:41 - 2013-11-03 15:15 - 00000052 _____ () C:\Windows\SysWOW64\DOErrors.log
2014-07-05 16:40 - 2014-07-05 16:31 - 732641280 _____ () C:\Users\Jonath\Downloads\Franck.Dubosc.Il.etait.une.fois.DVDRIP.Portmat.www.zone-telechargement.com.avi
2014-07-05 15:20 - 2014-07-05 15:02 - 1469888542 _____ () C:\Users\Jonath\Downloads\Loup.VFF.zone-telechargement.com.avi
2014-07-05 00:12 - 2014-07-05 00:03 - 734400513 _____ () C:\Users\Jonath\Downloads\Las.Vegas.Parano.avi
2014-07-04 01:53 - 2014-07-04 01:45 - 736325659 _____ () C:\Users\Jonath\Downloads\Rise.Of.PApes.avi
2014-07-04 01:00 - 2014-07-04 01:00 - 00000212 _____ () C:\Users\Jonath\Downloads\frame2.html
2014-07-01 11:40 - 2009-07-14 07:08 - 00021860 _____ () C:\Windows\Tasks\SCHEDLGU.TXT
2014-07-01 11:23 - 2014-07-01 11:05 - 1464981516 _____ () C:\Users\Jonath\Downloads\The.Legend.Of.Hercules.2014.FRENCH.DVDRiP.AC3.zone-telechargement.com.avi
2014-06-30 22:53 - 2014-06-30 22:53 - 00001600 _____ () C:\Users\Jonath\Downloads\view.php
2014-06-30 04:09 - 2014-07-29 15:40 - 00519168 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-06-30 04:04 - 2014-07-29 15:40 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll

Some content of TEMP:
====================
C:\Users\Jonath\AppData\Local\Temp\jre-7u65-windows-i586-iftw.exe
C:\Users\Jonath\AppData\Local\Temp\Quarantine.exe
C:\Users\Jonath\AppData\Local\Temp\Rocket.exe


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2014-07-10 16:29

==================== End Of Log ============================