Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:03-06-2015
Ran by alex0392 (administrator) on PCALEX on 05-06-2015 21:00:48
Running from C:\Users\alex0392\AppData\Local\Microsoft\Windows\INetCache\IE\P759CHVO
Loaded Profiles: alex0392 (Available Profiles: alex0392)
Platform: Windows 8.1 Connected (X64) OS Language: Français (France)
Internet Explorer Version 11 (Default browser: IE)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AMD) C:\Windows\System32\atiesrxx.exe
(Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\tbaseprovisioning.exe
(Avast Software s.r.o.) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
() C:\Program Files\ATI Technologies\ATI.ACE\a4\AdaptiveSleepService.exe
() C:\ProgramData\NetEngine\bin\D10\netengine.exe
(Windows (R) Win 7 DDK provider) C:\Program Files (x86)\Bluetooth Suite\AdminService.exe
() C:\Users\alex0392\AppData\Roaming\9A1D372B-1431622113-E411-B0BB-F8A963F773D4\nst666C.tmp
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
() C:\Program Files (x86)\DTS, Inc\DTS Studio Sound\dts_apo_service.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDService.exe
(Infonaut) C:\Program Files (x86)\Infonaut_1.10.0.14\Service\insvc.exe
() C:\Users\alex0392\AppData\Local\9A1D372B-1431629924-E411-B0BB-F8A963F773D4\cnsh5FA5.tmp
(Aztec Media Inc) C:\Program Files (x86)\Assets Manager\smdmf\SmdmFService.exe
() C:\Program Files (x86)\Edu App\updateEduApp.exe
() C:\Users\alex0392\AppData\Roaming\9A1D372B-1431622113-E411-B0BB-F8A963F773D4\hnsi4E05.tmp
(Toshiba Corporation) C:\Program Files\TOSHIBA\Teco\TecoService.exe
(Useful Technology) C:\ProgramData\yZtQXrWuX\YraWITD.exe
(WildTangent) C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\TPHM\TPCHSrv.exe
(Toshiba Europe GmbH) C:\Program Files (x86)\Toshiba TEMPRO\TemproSvc.exe
(AMD) C:\Windows\System32\atieclxx.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
() C:\Users\alex0392\AppData\Local\gmsd_fr_521\upgmsd_fr_521.exe
() C:\ProgramData\NetEngine\bin\D10\netengine.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\Hotkey\TCrdMain_Win8.exe
(Akamai Technologies, Inc.) C:\Users\alex0392\AppData\Local\Akamai\netsession_win.exe
(Akamai Technologies, Inc.) C:\Users\alex0392\AppData\Local\Akamai\netsession_win.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(TOSHIBA CORPORATION) C:\Program Files (x86)\TOSHIBA\Utilities\KeNotify.exe
(PC Utilities Software Limited) C:\ProgramData\{61a6765c-7b7d-bbfa-61a6-6765c7b7d971}\hqghumeaylnlf.exe
(Avast Software s.r.o.) C:\Program Files\AVAST Software\Avast\avastui.exe
() C:\Program Files (x86)\gmsd_fr_521\gmsd_fr_521.exe
(SoftBrain Technologies Ltd.) C:\Users\alex0392\AppData\Local\SmartWeb\SmartWebHelper.exe
() C:\Program Files (x86)\gmsd_fr_539\gmsd_fr_539.exe
(Boxore OU) C:\Program Files (x86)\Boxore\Boxore Client\boxore.exe
() C:\Program Files (x86)\gmsd_fr_579\gmsd_fr_579.exe
(Boxore OU) C:\Program Files (x86)\Boxore\Boxore Client\boxore.exe
() C:\Program Files (x86)\gmsd_fr_596\gmsd_fr_596.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\Teco\TecoResident.exe
(TOSHIBA) C:\Program Files\TOSHIBA\TOSHIBA Smart View Utility\TDUSrv64.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\TPHM\TPCHWMsg.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\TOSHIBA Service Station\ToshibaServiceStation.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(SoftBrain Technologies Ltd.) C:\Users\alex0392\AppData\Local\SmartWeb\SmartWebApp.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Adobe Systems Incorporated) C:\Windows\System32\Macromed\Flash\FlashUtil_ActiveX.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [] => [X]
HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [3244360 2014-03-04] (ELAN Microelectronics Corp.)
HKLM\...\Run: [TCrdMain] => C:\Program Files\TOSHIBA\Hotkey\TCrdMain_Win8.exe [2556768 2013-10-08] (TOSHIBA Corporation)
HKLM\...\Run: [TSSSrv] => C:\Program Files (x86)\TOSHIBA\System Setting\TSSSrv.exe [296008 2013-10-21] (TOSHIBA Corporation)
HKLM-x32\...\Run: [KeNotify] => C:\Program Files (x86)\TOSHIBA\Utilities\KeNotify.exe [34160 2013-08-05] (TOSHIBA CORPORATION)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [5515496 2015-05-11] (Avast Software s.r.o.)
HKLM-x32\...\Run: [gmsd_fr_521] => C:\Program Files (x86)\gmsd_fr_521\gmsd_fr_521.exe [3981256 2015-05-12] ()
HKLM-x32\...\Run: [SmartWeb] => C:\Users\alex0392\AppData\Local\SmartWeb\SmartWebHelper.exe [270368 2015-02-17] (SoftBrain Technologies Ltd.)
HKLM-x32\...\Run: [gmsd_fr_539] => C:\Program Files (x86)\gmsd_fr_539\gmsd_fr_539.exe [3979720 2015-05-14] ()
HKLM-x32\...\Run: [Boxore Client] => C:\Program Files (x86)\Boxore\Boxore Client\boxore.exe [1527808 2015-05-07] (Boxore OU)
HKLM-x32\...\Run: [gmsd_fr_579] => C:\Program Files (x86)\gmsd_fr_579\gmsd_fr_579.exe [3980968 2015-05-26] ()
HKLM-x32\...\Run: [gmsd_fr_596] => C:\Program Files (x86)\gmsd_fr_596\gmsd_fr_596.exe [3983528 2015-05-31] ()
HKLM-x32\...\RunOnce: [upgmsd_fr_521.exe] => C:\Users\alex0392\AppData\Local\gmsd_fr_521\upgmsd_fr_521.exe [3288520 2015-05-12] ()
HKU\S-1-5-21-2239201703-2798331281-184381461-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8202008 2015-04-08] (Piriform Ltd)
HKU\S-1-5-21-2239201703-2798331281-184381461-1001\...\Run: [Akamai NetSession Interface] => C:\Users\alex0392\AppData\Local\Akamai\netsession_win.exe [4673432 2014-10-29] (Akamai Technologies, Inc.)
AppInit_DLLs: C:\PROGRA~2\SearchProtect\SearchProtect\bin\VC64Loader.dll => C:\Program Files (x86)\SearchProtect\SearchProtect\bin\VC64Loader.dll [263952 2015-04-28] (Client Connect LTD)
AppInit_DLLs-x32: C:\PROGRA~2\SearchProtect\SearchProtect\bin\VC32Loader.dll => C:\Program Files (x86)\SearchProtect\SearchProtect\bin\VC32Loader.dll [223504 2015-04-28] (Client Connect LTD)
Startup: C:\Users\alex0392\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\hqghumeaylnlf.lnk [2015-05-14]
ShortcutTarget: hqghumeaylnlf.lnk -> C:\ProgramData\{61a6765c-7b7d-bbfa-61a6-6765c7b7d971}\hqghumeaylnlf.exe (PC Utilities Software Limited)
Startup: C:\Users\alex0392\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\SmartWeb.lnk [2015-05-14]
ShortcutTarget: SmartWeb.lnk -> C:\Users\alex0392\AppData\Local\SmartWeb\SmartWebHelper.exe (SoftBrain Technologies Ltd.)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2015-05-11] (Avast Software s.r.o.)
GroupPolicy: Group Policy on Chrome detected <======= ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.sweet-page.com/web/?type=ds&ts=1431592189&z=10d2db8a2e0d545ed1d9bbag9z3cag8w2t1o2gamet&from=corfr&uid=TOSHIBAXMQ01ABD100_64CBW1J9TXX64CBW1J9T&q={searchTerms}
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://www.sweet-page.com/web/?type=ds&ts=1431592189&z=10d2db8a2e0d545ed1d9bbag9z3cag8w2t1o2gamet&from=corfr&uid=TOSHIBAXMQ01ABD100_64CBW1J9TXX64CBW1J9T&q={searchTerms}
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.sweet-page.com/web/?type=ds&ts=1431592189&z=10d2db8a2e0d545ed1d9bbag9z3cag8w2t1o2gamet&from=corfr&uid=TOSHIBAXMQ01ABD100_64CBW1J9TXX64CBW1J9T&q={searchTerms}
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.sweet-page.com/web/?type=ds&ts=1431592189&z=10d2db8a2e0d545ed1d9bbag9z3cag8w2t1o2gamet&from=corfr&uid=TOSHIBAXMQ01ABD100_64CBW1J9TXX64CBW1J9T&q={searchTerms}
HKU\S-1-5-21-2239201703-2798331281-184381461-1001\Software\Microsoft\Internet Explorer\Main,Start Page = http://google.fr/
HKU\S-1-5-21-2239201703-2798331281-184381461-1001\Software\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = http://toshiba.eu/symbaloo_c
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM -> {2f23ab71-4ac6-41f2-a955-ea576e553146} URL =
SearchScopes: HKLM -> {9BB47C17-9C68-4BB3-B188-DD9AF0FD2498} URL = http://www.default-search.net/search?sid=498&aid=156&itype=n&ver=16064&tm=713&src=ds&p={searchTerms}
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> {9BB47C17-9C68-4BB3-B188-DD9AF0FD2498} URL = http://www.default-search.net/search?sid=498&aid=156&itype=n&ver=16064&tm=713&src=ds&p={searchTerms}
SearchScopes: HKU\S-1-5-21-2239201703-2798331281-184381461-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/search?PC=WCUG&FORM=WCUGDF&q={searchTerms}
SearchScopes: HKU\S-1-5-21-2239201703-2798331281-184381461-1001 -> {015DB5FA-EAFB-4592-A95B-F44D3EE87FA9} URL = http://www.trovi.com/Results.aspx?gd=&ctid=CT3330124&octid=EB_ORIGINAL_CTID&ISID=MCC9CF37B-18A4-4A20-BF00-B891F4B77095&SearchSource=58&CUI=&UM=8&UP=SPF21A5056-28AF-4D9A-A1DE-FD26AB60C0FA&D=051715&q={searchTerms}&SSPV=
SearchScopes: HKU\S-1-5-21-2239201703-2798331281-184381461-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/search?PC=WCUG&FORM=WCUGDF&q={searchTerms}
SearchScopes: HKU\S-1-5-21-2239201703-2798331281-184381461-1001 -> {2f23ab71-4ac6-41f2-a955-ea576e553146} URL = http://www.bing.com/search?PC=WCUG&FORM=WCUGDF&q={searchTerms}
SearchScopes: HKU\S-1-5-21-2239201703-2798331281-184381461-1001 -> {9BB47C17-9C68-4BB3-B188-DD9AF0FD2498} URL = http://www.default-search.net/search?sid=498&aid=156&itype=n&ver=16064&tm=713&src=ds&p={searchTerms}
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2015-05-11] (Avast Software s.r.o.)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-05-11] (Avast Software s.r.o.)
Tcpip\Parameters: [DhcpNameServer] 212.27.40.241 212.27.40.240
StartMenuInternet: IEXPLORE.EXE - iexplore.exe

FireFox:
========
FF Plugin-x32: @tools.Software.com/Software Update;version=3 -> C:\Program Files (x86)\Software\Update\1.3.25.0\npSoftwareUpdate3.dll [2015-05-17] (The Software Group)
FF Plugin-x32: @tools.Software.com/Software Update;version=9 -> C:\Program Files (x86)\Software\Update\1.3.25.0\npSoftwareUpdate3.dll [2015-05-17] (The Software Group)
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll [2013-08-06] ()
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2015-05-11]

Chrome:
=======
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChromeSp.crx [2015-05-11]
CHR HKLM-x32\...\Chrome\Extension: [fpmeembnagmagppkgghhfjfdfajdfcah] - https://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2015-05-11]
CHR HKLM-x32\...\Chrome\Extension: [iomphmdalfmaifjccmagmllnicjoghhk] - https://clients2.google.com/service/update2/crx

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdaptiveSleepService; C:\Program Files\ATI Technologies\ATI.ACE\A4\AdaptiveSleepService.exe [140288 2014-04-22] () [File not signed]
R2 AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [319104 2014-03-18] (Windows (R) Win 7 DDK provider) [File not signed]
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [343336 2015-05-11] (Avast Software s.r.o.)
R2 dixozidy; C:\Users\alex0392\AppData\Roaming\9A1D372B-1431622113-E411-B0BB-F8A963F773D4\nst666C.tmp [420352 2015-05-15] () [File not signed]
R2 dts_apo_service; C:\Program Files (x86)\DTS, Inc\DTS Studio Sound\dts_apo_service.exe [21840 2014-03-03] ()
R2 ETDService; C:\Program Files\Elantech\ETDService.exe [103240 2014-03-04] (ELAN Microelectronics Corp.)
R2 GamesAppIntegrationService; C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe [227904 2014-02-26] (WildTangent)
R2 insvc_1.10.0.14; C:\Program Files (x86)\Infonaut_1.10.0.14\Service\insvc.exe [278600 2015-04-10] (Infonaut)
R2 migicisy; C:\Users\alex0392\AppData\Local\9A1D372B-1431629924-E411-B0BB-F8A963F773D4\cnsh5FA5.tmp [221184 2015-05-14] () [File not signed]
R2 SmdmFService; C:\Program Files (x86)\Assets Manager\smdmf\SmdmFService.exe [3203840 2015-04-15] (Aztec Media Inc)
S2 Software_update; C:\Program Files (x86)\Software\Update\SoftwareUpdate.exe [119408 2015-05-17] (The Software Group)
S3 Software_update_m; C:\Program Files (x86)\Software\Update\SoftwareUpdate.exe [119408 2015-05-17] (The Software Group)
R2 tbaseprovisioning; C:\Windows\SysWOW64\tbaseprovisioning.exe [51712 2014-02-24] (Advanced Micro Devices, Inc.)
R3 TemproMonitoringService; C:\Program Files (x86)\Toshiba TEMPRO\TemproSvc.exe [116088 2013-12-24] (Toshiba Europe GmbH)
R2 Update Edu App; C:\Program Files (x86)\Edu App\updateEduApp.exe [462056 2015-06-04] ()
S2 Util Edu App; C:\Program Files (x86)\Edu App\bin\utilEduApp.exe [464104 2015-06-05] ()
R2 vekusevo; C:\Users\alex0392\AppData\Roaming\9A1D372B-1431622113-E411-B0BB-F8A963F773D4\hnsi4E05.tmp [418816 2015-05-14] () [File not signed]
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [366520 2015-02-04] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23792 2015-02-04] (Microsoft Corporation)
R2 YraWITD; C:\ProgramData\yZtQXrWuX\YraWITD.exe [2731488 2015-05-14] (Useful Technology)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 AmdAS4; C:\Windows\System32\drivers\AmdAS4.sys [17640 2013-10-24] (Advanced Micro Devices, INC.)
S3 amdkmcsp; C:\Windows\system32\DRIVERS\amdkmcsp.sys [85704 2014-02-24] (Advanced Micro Devices, Inc. )
R0 amdkmpfd; C:\Windows\System32\drivers\amdkmpfd.sys [36608 2013-12-14] (Advanced Micro Devices, Inc.)
R0 amdpsp; C:\Windows\System32\DRIVERS\amdpsp.sys [230088 2014-02-24] (Advanced Micro Devices, Inc. )
R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [29168 2015-05-11] ()
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [89944 2015-05-11] (Avast Software s.r.o.)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93528 2015-05-11] (Avast Software s.r.o.)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65736 2015-05-11] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1047320 2015-05-11] (Avast Software s.r.o.)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [442264 2015-05-11] (Avast Software s.r.o.)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [137288 2015-05-11] (Avast Software s.r.o.)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [272248 2015-05-11] ()
R3 athr; C:\Windows\system32\DRIVERS\athwbx.sys [3888640 2014-02-14] (Qualcomm Atheros Communications, Inc.)
R3 AtiHDAudioService; C:\Windows\system32\drivers\AtihdWB6.sys [222720 2013-12-19] (Advanced Micro Devices)
R3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [226304 2014-03-18] (Microsoft Corporation)
R3 ETDSMBus; C:\Windows\system32\DRIVERS\ETDSMBus.sys [24904 2014-02-06] (ELAN Microelectronic Corp.)
R1 F06DEFF2-5B9C-490D-910F-35D3A9119622; C:\Program Files (x86)\Assets Manager\smdmf\x64\smdmfmgrc3.cfg [46752 2015-04-15] (Aztec Media Inc)
R1 innfd_1_10_0_14; C:\Windows\System32\drivers\innfd_1_10_0_14.sys [58224 2015-04-10] (Infonaut)
R3 RSP2STOR; C:\Windows\system32\DRIVERS\RtsP2Stor.sys [291544 2014-01-03] (Realtek Semiconductor Corp.)
R3 Thotkey; C:\Windows\System32\drivers\Thotkey.sys [33168 2013-10-10] (Windows (R) Win 7 DDK provider)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114496 2015-02-04] (Microsoft Corporation)
R1 {11944e07-3e46-4956-b8c7-7e52c7a44c1d}Gw64; C:\Windows\System32\drivers\{11944e07-3e46-4956-b8c7-7e52c7a44c1d}Gw64.sys [48776 2015-05-15] (StdLib)
R1 {36ed28a4-ac0a-4653-91ff-10beb4246550}Gw64; C:\Windows\System32\drivers\{36ed28a4-ac0a-4653-91ff-10beb4246550}Gw64.sys [48776 2015-05-31] (StdLib)
R1 {3f1219df-4a4d-40a3-9537-f2a95f4016b3}Gw64; C:\Windows\System32\drivers\{3f1219df-4a4d-40a3-9537-f2a95f4016b3}Gw64.sys [48776 2015-05-19] (StdLib)
R1 {6dd55e9a-3d06-4d70-b5e7-05fc3e0a3d66}Gw64; C:\Windows\System32\drivers\{6dd55e9a-3d06-4d70-b5e7-05fc3e0a3d66}Gw64.sys [48776 2015-05-23] (StdLib)
R1 {848705a5-8a27-403e-9b59-732d0608bcbc}Gw64; C:\Windows\System32\drivers\{848705a5-8a27-403e-9b59-732d0608bcbc}Gw64.sys [48776 2015-05-26] (StdLib)
R1 {e2590817-40ca-4d03-8e1f-67fd8517bae9}Gw64; C:\Windows\System32\drivers\{e2590817-40ca-4d03-8e1f-67fd8517bae9}Gw64.sys [48776 2015-05-17] (StdLib)
R1 {eb01aed1-bba3-4e72-8323-a77bb027b1d4}Gw64; C:\Windows\System32\drivers\{eb01aed1-bba3-4e72-8323-a77bb027b1d4}Gw64.sys [48776 2015-06-01] (StdLib)
S3 SPPD; \??\C:\Windows\system32\drivers\SPPD.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-06-05 21:00 - 2015-06-05 21:00 - 00000000 ____D C:\FRST
2015-06-02 06:53 - 2015-06-02 06:54 - 00000000 ____D C:\Program Files (x86)\gmsd_fr_596
2015-06-02 06:53 - 2015-06-02 06:53 - 00000000 ____D C:\Users\alex0392\AppData\Local\gmsd_fr_596
2015-06-01 18:47 - 2015-06-01 05:39 - 00048776 _____ (StdLib) C:\Windows\system32\Drivers\{eb01aed1-bba3-4e72-8323-a77bb027b1d4}Gw64.sys
2015-06-01 06:16 - 2015-05-31 16:45 - 00048776 _____ (StdLib) C:\Windows\system32\Drivers\{36ed28a4-ac0a-4653-91ff-10beb4246550}Gw64.sys
2015-06-01 06:02 - 2015-06-05 06:07 - 00000928 _____ C:\Windows\setupact.log
2015-06-01 06:02 - 2015-06-01 06:02 - 00000000 _____ C:\Windows\setuperr.log
2015-05-28 06:48 - 2015-05-28 06:48 - 00000000 ____D C:\Users\alex0392\AppData\Local\gmsd_fr_579
2015-05-28 06:48 - 2015-05-28 06:48 - 00000000 ____D C:\Program Files (x86)\gmsd_fr_579
2015-05-27 06:15 - 2015-05-26 19:38 - 00048776 _____ (StdLib) C:\Windows\system32\Drivers\{848705a5-8a27-403e-9b59-732d0608bcbc}Gw64.sys
2015-05-26 06:17 - 2015-06-05 20:57 - 01694833 _____ C:\Windows\WindowsUpdate.log
2015-05-25 21:41 - 2015-05-25 21:41 - 00000000 ____D C:\Program Files (x86)\JCA2000
2015-05-24 09:02 - 2015-05-24 09:02 - 00000000 ____D C:\ProgramData\TOSHIBA Tempro
2015-05-24 09:02 - 2015-05-24 09:02 - 00000000 ____D C:\ProgramData\IsolatedStorage
2015-05-23 13:13 - 2015-05-23 13:13 - 00000000 ____D C:\Users\alex0392\AppData\Roaming\Lavasoft
2015-05-23 13:09 - 2015-05-23 13:09 - 00000000 ____D C:\ProgramData\Lavasoft
2015-05-23 12:57 - 2015-05-23 12:58 - 00000000 ____D C:\Program Files (x86)\Infonaut_1.10.0.14
2015-05-23 12:54 - 2015-05-23 00:40 - 00048776 _____ (StdLib) C:\Windows\system32\Drivers\{6dd55e9a-3d06-4d70-b5e7-05fc3e0a3d66}Gw64.sys
2015-05-21 07:37 - 2015-05-21 07:37 - 00000000 ____D C:\ProgramData\Psuofees
2015-05-20 06:18 - 2015-05-19 18:53 - 00048776 _____ (StdLib) C:\Windows\system32\Drivers\{3f1219df-4a4d-40a3-9537-f2a95f4016b3}Gw64.sys
2015-05-18 12:43 - 2015-05-17 14:38 - 00048776 _____ (StdLib) C:\Windows\system32\Drivers\{e2590817-40ca-4d03-8e1f-67fd8517bae9}Gw64.sys
2015-05-17 16:01 - 2015-04-30 22:35 - 00124112 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2015-05-17 16:01 - 2015-04-30 22:35 - 00102608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2015-05-17 10:02 - 2015-05-17 10:02 - 00000000 ____D C:\Users\alex0392\AppData\Local\Boxore
2015-05-17 10:02 - 2015-05-17 10:02 - 00000000 ____D C:\Program Files (x86)\Boxore
2015-05-17 08:00 - 2015-05-23 12:56 - 00000000 ____D C:\Users\alex0392\AppData\Local\avabvyxvdy
2015-05-17 08:00 - 2015-05-18 19:28 - 00000000 ____D C:\Program Files (x86)\SearchProtect
2015-05-17 08:00 - 2015-05-17 08:00 - 00000000 ____D C:\Users\alex0392\AppData\Local\SearchProtect
2015-05-17 07:55 - 2015-06-05 21:00 - 00000936 _____ C:\Windows\Tasks\SoftwareUpdateTaskMachineUA.job
2015-05-17 07:55 - 2015-06-05 20:10 - 00000932 _____ C:\Windows\Tasks\SoftwareUpdateTaskMachineCore.job
2015-05-17 07:55 - 2015-05-17 07:55 - 00003908 _____ C:\Windows\System32\Tasks\SoftwareUpdateTaskMachineUA
2015-05-17 07:55 - 2015-05-17 07:55 - 00003672 _____ C:\Windows\System32\Tasks\SoftwareUpdateTaskMachineCore
2015-05-17 07:55 - 2015-05-17 07:55 - 00000000 ____D C:\Program Files (x86)\Software
2015-05-16 18:15 - 2015-05-16 18:15 - 00000290 __RSH C:\ProgramData\ntuser.pol
2015-05-16 12:22 - 2014-03-11 15:21 - 00918528 _____ (Microsoft Corporation) C:\Windows\system32\MrmCoreR.dll
2015-05-16 12:22 - 2014-03-11 15:02 - 00629760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MrmCoreR.dll
2015-05-16 12:11 - 2014-10-31 00:37 - 00129536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\poqexec.exe
2015-05-16 12:11 - 2014-10-31 00:34 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\poqexec.exe
2015-05-16 12:07 - 2014-05-27 17:53 - 02518360 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2015-05-16 12:07 - 2014-05-17 06:59 - 16871936 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.dll
2015-05-16 12:07 - 2014-05-17 06:13 - 12711424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.dll
2015-05-16 12:06 - 2014-06-05 16:13 - 00216368 _____ (Microsoft Corporation) C:\Windows\system32\rsaenh.dll
2015-05-16 12:06 - 2014-06-05 15:14 - 00189016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rsaenh.dll
2015-05-16 12:06 - 2014-06-02 04:10 - 00423768 _____ (Microsoft Corporation) C:\Windows\system32\hal.dll
2015-05-16 12:06 - 2014-05-31 12:07 - 00467800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBHUB3.SYS
2015-05-16 12:06 - 2014-05-31 12:07 - 00440664 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2015-05-16 12:06 - 2014-05-31 12:07 - 00419672 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2015-05-16 12:06 - 2014-05-31 12:07 - 00089944 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2015-05-16 12:06 - 2014-05-31 12:07 - 00027480 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2015-05-16 12:06 - 2014-05-31 08:30 - 00037376 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys
2015-05-16 12:06 - 2014-05-31 08:27 - 00110592 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFPf.sys
2015-05-16 12:06 - 2014-05-31 08:26 - 00227840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFRd.sys
2015-05-16 12:06 - 2014-05-31 06:01 - 00284672 _____ (Microsoft Corporation) C:\Windows\system32\WUDFHost.exe
2015-05-16 12:06 - 2014-05-31 06:01 - 00209408 _____ (Microsoft Corporation) C:\Windows\system32\WUDFPlatform.dll
2015-05-16 12:06 - 2014-05-31 06:01 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\WUDFSvc.dll
2015-05-16 12:06 - 2014-05-27 11:56 - 00323584 _____ (Microsoft Corporation) C:\Windows\system32\DaOtpCredentialProvider.dll
2015-05-16 12:06 - 2014-05-27 11:53 - 00270848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DaOtpCredentialProvider.dll
2015-05-16 12:06 - 2014-03-31 07:35 - 00428888 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2015-05-16 11:54 - 2014-08-07 04:12 - 01336624 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2015-05-16 11:54 - 2014-08-02 05:56 - 01064448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2015-05-16 11:53 - 2015-02-04 01:58 - 00264000 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdFilter.sys
2015-05-16 11:53 - 2015-02-04 01:58 - 00114496 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdNisDrv.sys
2015-05-16 11:53 - 2015-02-04 01:58 - 00044024 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdBoot.sys
2015-05-16 11:53 - 2015-02-03 01:53 - 00014848 _____ (Microsoft Corporation) C:\Windows\system32\winshfhc.dll
2015-05-16 11:53 - 2015-02-03 01:53 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winshfhc.dll
2015-05-16 11:32 - 2015-05-16 11:32 - 00613255 _____ (CMI Limited) C:\Users\alex0392\AppData\Local\nsoBFA3.tmp
2015-05-16 11:32 - 2015-05-16 11:32 - 00000000 __SHD C:\Users\alex0392\AppData\Roaming\AnyProtectEx
2015-05-16 11:19 - 2015-05-16 11:19 - 00000000 ____D C:\Users\alex0392\AppData\Local\speed browser
2015-05-16 10:51 - 2015-02-12 19:40 - 22291584 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2015-05-16 10:51 - 2015-02-12 19:34 - 19731824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2015-05-16 10:51 - 2014-06-17 00:26 - 00779264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\osk.exe
2015-05-16 10:51 - 2014-06-17 00:24 - 00834048 _____ (Microsoft Corporation) C:\Windows\system32\osk.exe
2015-05-16 10:50 - 2014-09-27 09:13 - 00104336 _____ (Microsoft Corporation) C:\Windows\system32\ncryptsslp.dll
2015-05-16 10:50 - 2014-09-27 07:24 - 00088800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncryptsslp.dll
2015-05-16 10:50 - 2014-09-27 05:30 - 00185856 _____ (Microsoft Corporation) C:\Windows\system32\dpapisrv.dll
2015-05-16 10:50 - 2014-05-30 05:03 - 00563200 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2015-05-16 10:49 - 2015-05-01 01:05 - 00429568 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2015-05-16 10:49 - 2015-05-01 00:48 - 00358912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2015-05-16 10:49 - 2015-03-23 23:59 - 07476032 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2015-05-16 10:49 - 2015-03-23 23:59 - 01733952 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2015-05-16 10:49 - 2015-03-23 23:59 - 00360480 _____ (Microsoft Corporation) C:\Windows\system32\sechost.dll
2015-05-16 10:49 - 2015-03-23 23:58 - 01498872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2015-05-16 10:49 - 2015-03-23 23:45 - 00257216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sechost.dll
2015-05-16 10:49 - 2015-03-20 06:12 - 00246272 _____ (Microsoft Corporation) C:\Windows\system32\microsoft-windows-system-events.dll
2015-05-16 10:49 - 2015-03-20 06:10 - 00285184 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2015-05-16 10:49 - 2015-03-20 06:10 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2015-05-16 10:49 - 2015-03-20 05:17 - 00411648 _____ (Microsoft Corporation) C:\Windows\system32\tracerpt.exe
2015-05-16 10:49 - 2015-03-20 04:41 - 00369152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tracerpt.exe
2015-05-16 10:49 - 2015-03-20 04:40 - 00950784 _____ (Microsoft Corporation) C:\Windows\system32\tdh.dll
2015-05-16 10:49 - 2015-03-20 04:16 - 00749568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdh.dll
2015-05-16 10:49 - 2015-01-28 03:31 - 00402432 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
2015-05-16 10:49 - 2015-01-28 03:11 - 00357376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMPhoto.dll
2015-05-16 10:49 - 2014-12-09 03:50 - 00225280 _____ (Microsoft Corporation) C:\Windows\system32\profsvc.dll
2015-05-16 10:49 - 2014-10-29 04:43 - 00019968 _____ (Microsoft Corporation) C:\Windows\system32\diskperf.exe
2015-05-16 10:49 - 2014-10-29 04:17 - 00110592 _____ (Microsoft Corporation) C:\Windows\system32\logman.exe
2015-05-16 10:49 - 2014-10-29 03:58 - 00017920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\diskperf.exe
2015-05-16 10:49 - 2014-10-29 03:57 - 00016896 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2015-05-16 10:49 - 2014-10-29 03:38 - 00087552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\logman.exe
2015-05-16 10:49 - 2014-10-29 03:26 - 00046592 _____ (Microsoft Corporation) C:\Windows\system32\typeperf.exe
2015-05-16 10:49 - 2014-10-29 03:26 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\relog.exe
2015-05-16 10:49 - 2014-10-29 03:15 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2015-05-16 10:49 - 2014-10-29 03:15 - 00005632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2015-05-16 10:49 - 2014-10-29 03:14 - 00004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2015-05-16 10:49 - 2014-10-29 03:13 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2015-05-16 10:49 - 2014-10-29 03:13 - 00008704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2015-05-16 10:49 - 2014-10-29 03:04 - 00041472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\typeperf.exe
2015-05-16 10:49 - 2014-10-29 03:04 - 00038400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\relog.exe
2015-05-16 10:46 - 2014-12-09 05:45 - 00393728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scesrv.dll
2015-05-16 10:46 - 2014-12-09 03:56 - 00538624 _____ (Microsoft Corporation) C:\Windows\system32\scesrv.dll
2015-05-16 10:46 - 2014-12-06 05:17 - 00360448 _____ (Microsoft Corporation) C:\Windows\system32\ncsi.dll
2015-05-16 10:46 - 2014-12-06 03:41 - 00391680 _____ (Microsoft Corporation) C:\Windows\system32\nlasvc.dll
2015-05-16 10:46 - 2014-10-29 03:24 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\nlaapi.dll
2015-05-16 10:46 - 2014-10-29 03:01 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nlaapi.dll
2015-05-16 10:46 - 2014-06-13 03:15 - 00517528 _____ (Microsoft Corporation) C:\Windows\system32\dxgi.dll
2015-05-16 10:46 - 2014-06-13 03:14 - 01557848 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2015-05-16 10:46 - 2014-06-13 02:10 - 00406400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxgi.dll
2015-05-16 10:46 - 2014-06-06 13:34 - 02133504 _____ (Microsoft Corporation) C:\Windows\system32\dwmcore.dll
2015-05-16 10:46 - 2014-03-06 14:53 - 02141912 _____ (Microsoft Corporation) C:\Windows\system32\d3d11.dll
2015-05-16 10:46 - 2014-03-06 14:51 - 00379224 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2015-05-16 10:46 - 2014-03-06 14:39 - 00212992 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll
2015-05-16 10:46 - 2014-03-06 13:13 - 01779800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d11.dll
2015-05-16 10:46 - 2014-03-06 08:09 - 01764864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dwmcore.dll
2015-05-16 10:44 - 2015-04-14 00:48 - 04180480 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2015-05-16 10:44 - 2015-04-10 03:00 - 01996800 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2015-05-16 10:44 - 2015-04-10 02:50 - 01387008 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2015-05-16 10:44 - 2015-04-10 02:26 - 01560576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2015-05-16 10:44 - 2015-03-30 07:47 - 00561928 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2015-05-16 10:44 - 2015-03-27 05:27 - 00445440 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2015-05-16 10:44 - 2015-03-27 04:50 - 00324096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll
2015-05-16 10:44 - 2015-03-27 04:48 - 01441792 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2015-05-16 10:44 - 2015-02-24 10:32 - 00991552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\http.sys
2015-05-16 10:44 - 2015-02-20 05:03 - 00358912 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2015-05-16 10:44 - 2015-02-20 04:58 - 00044032 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2015-05-16 10:44 - 2015-02-20 04:20 - 00301056 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2015-05-16 10:44 - 2015-02-20 04:15 - 00035840 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2015-05-16 10:44 - 2015-01-16 00:43 - 00177984 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2015-05-16 10:44 - 2014-10-29 04:51 - 00154112 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2015-05-16 10:44 - 2014-10-29 04:50 - 00736768 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2015-05-16 10:44 - 2014-10-29 04:49 - 00003072 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2015-05-16 10:44 - 2014-10-29 04:44 - 00096256 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2015-05-16 10:44 - 2014-10-29 04:44 - 00014848 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2015-05-16 10:44 - 2014-10-29 04:06 - 00736768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2015-05-16 10:44 - 2014-10-29 04:06 - 00154112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2015-05-16 10:44 - 2014-10-29 04:04 - 00003072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll
2015-05-16 10:44 - 2014-10-29 04:00 - 00077824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2015-05-16 10:44 - 2014-10-29 04:00 - 00011776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll
2015-05-16 10:44 - 2014-08-23 07:18 - 02149376 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2015-05-16 10:44 - 2014-08-23 07:03 - 01346048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2015-05-16 10:44 - 2014-06-20 03:48 - 01273184 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2015-05-16 10:44 - 2014-06-20 01:52 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2015-05-16 10:43 - 2015-02-21 01:49 - 00780800 _____ (Microsoft Corporation) C:\Windows\system32\lsm.dll
2015-05-16 10:43 - 2014-10-29 04:48 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\workerdd.dll
2015-05-16 10:43 - 2014-06-04 11:27 - 00114520 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
2015-05-16 10:43 - 2014-06-04 07:31 - 00356352 _____ (Microsoft Corporation) C:\Windows\system32\msihnd.dll
2015-05-16 10:43 - 2014-06-04 07:22 - 02790912 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2015-05-16 10:43 - 2014-06-04 06:43 - 00281088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msihnd.dll
2015-05-16 10:43 - 2014-06-04 06:38 - 03304448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2015-05-16 10:43 - 2014-06-04 04:15 - 02642944 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2015-05-16 10:43 - 2014-06-04 04:14 - 02318336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2015-05-16 10:42 - 2015-01-31 01:20 - 00203264 _____ (Microsoft Corporation) C:\Windows\system32\ubpm.dll
2015-05-16 10:42 - 2015-01-30 05:01 - 00097792 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidbth.sys
2015-05-16 10:42 - 2015-01-30 05:00 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rfcomm.sys
2015-05-16 10:42 - 2015-01-29 20:45 - 01763352 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2015-05-16 10:42 - 2015-01-29 20:34 - 01488040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2015-05-16 10:42 - 2015-01-27 06:22 - 00131584 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll
2015-05-16 10:42 - 2015-01-27 04:11 - 03547648 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2015-05-16 10:42 - 2014-10-29 05:56 - 00027456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpvideominiport.sys
2015-05-16 10:42 - 2014-10-29 04:46 - 00081920 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\BTHUSB.SYS
2015-05-16 10:42 - 2014-10-29 04:46 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bthenum.sys
2015-05-16 10:42 - 2014-10-29 04:45 - 01198080 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bthport.sys
2015-05-16 10:42 - 2014-10-29 04:37 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\rfxvmt.dll
2015-05-16 10:42 - 2014-10-29 04:03 - 00241152 _____ (Microsoft Corporation) C:\Windows\system32\fsquirt.exe
2015-05-16 10:42 - 2014-10-17 09:01 - 00789184 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2015-05-16 10:42 - 2014-10-17 08:58 - 00602768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2015-05-16 10:42 - 2014-08-02 02:18 - 01212928 _____ (Microsoft Corporation) C:\Windows\system32\schedsvc.dll
2015-05-16 10:41 - 2014-12-12 04:04 - 00087040 _____ (Microsoft Corporation) C:\Windows\system32\TSWbPrxy.exe
2015-05-16 10:41 - 2014-10-23 07:48 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\packager.dll
2015-05-16 10:41 - 2014-10-23 07:05 - 00072192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\packager.dll
2015-05-16 10:40 - 2014-12-12 02:51 - 00075776 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ahcache.sys
2015-05-16 10:39 - 2014-12-19 08:26 - 00140800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
2015-05-16 10:39 - 2014-09-04 02:12 - 00590336 _____ (Microsoft Corporation) C:\Windows\system32\rastls.dll
2015-05-16 10:39 - 2014-09-04 02:01 - 00514048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rastls.dll
2015-05-16 10:38 - 2015-04-09 00:55 - 00410128 _____ (Microsoft Corporation) C:\Windows\system32\services.exe
2015-05-16 10:38 - 2015-03-13 04:58 - 00259072 _____ (Microsoft Corporation) C:\Windows\system32\pku2u.dll
2015-05-16 10:38 - 2015-03-13 04:37 - 00208896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pku2u.dll
2015-05-16 10:37 - 2014-10-13 04:43 - 00238912 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\sdbus.sys
2015-05-16 10:37 - 2014-10-13 04:43 - 00153920 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dumpsd.sys
2015-05-16 10:37 - 2014-10-13 04:43 - 00086336 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pdc.sys
2015-05-16 10:37 - 2014-10-13 04:43 - 00039744 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\intelpep.sys
2015-05-16 10:37 - 2014-06-10 00:13 - 00035480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TsWpfWrp.exe
2015-05-16 10:37 - 2014-06-10 00:13 - 00035480 _____ (Microsoft Corporation) C:\Windows\system32\TsWpfWrp.exe
2015-05-16 10:35 - 2014-06-06 15:04 - 00586240 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2015-05-16 10:35 - 2014-06-06 14:18 - 00488960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qedit.dll
2015-05-16 10:27 - 2015-05-16 10:27 - 01498192 _____ C:\ProgramData\setup_b3beb926d4584838816299f17649ed18.exe
2015-05-16 10:24 - 2015-05-16 10:26 - 00000000 ____D C:\ProgramData\Browser
2015-05-15 22:16 - 2015-05-15 22:16 - 00003158 _____ C:\Windows\System32\Tasks\{96CF3D96-ABD9-4575-90F5-9E36BFEA9A22}
2015-05-15 22:08 - 2015-05-15 22:08 - 00000000 ____D C:\Program Files (x86)\CinemaPlus-3.2cV15.05
2015-05-15 22:06 - 2015-06-05 20:57 - 00000000 ____D C:\ProgramData\smdmf
2015-05-15 22:06 - 2015-05-15 22:06 - 00000000 ____D C:\Program Files (x86)\Assets Manager
2015-05-15 22:03 - 2015-05-15 10:52 - 00048776 _____ (StdLib) C:\Windows\system32\Drivers\{11944e07-3e46-4956-b8c7-7e52c7a44c1d}Gw64.sys
2015-05-15 21:59 - 2015-06-05 06:13 - 00000000 ____D C:\Program Files (x86)\Edu App
2015-05-15 21:58 - 2015-05-30 20:24 - 00000000 ____D C:\Program Files (x86)\SafeGuard
2015-05-15 21:56 - 2015-05-15 21:56 - 00000000 _____ C:\Windows\SysWOW64\Number of results
2015-05-15 21:55 - 2015-05-16 11:30 - 00000000 ____D C:\Users\alex0392\AppData\Local\gmsd_fr_539
2015-05-15 21:55 - 2015-05-16 11:30 - 00000000 ____D C:\Program Files (x86)\gmsd_fr_539
2015-05-15 21:31 - 2015-03-14 10:54 - 00133256 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2015-05-15 21:31 - 2015-03-14 03:56 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2015-05-15 21:31 - 2015-03-14 03:56 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2015-05-15 21:31 - 2015-03-14 03:51 - 00015360 _____ (Microsoft Corporation) C:\Windows\system32\wu.upgrade.ps.dll
2015-05-15 21:31 - 2015-03-14 03:37 - 00267264 _____ (Microsoft Corporation) C:\Windows\system32\WinSetupUI.dll
2015-05-15 21:31 - 2015-03-14 03:14 - 00027136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll
2015-05-15 21:31 - 2015-03-14 02:22 - 03678720 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2015-05-15 21:31 - 2015-03-14 02:12 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2015-05-15 21:31 - 2015-03-14 02:12 - 00035840 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2015-05-15 21:31 - 2015-03-14 02:09 - 00200192 _____ (Microsoft Corporation) C:\Windows\system32\storewuauth.dll
2015-05-15 21:31 - 2015-03-14 02:08 - 00408064 _____ (Microsoft Corporation) C:\Windows\system32\WUSettingsProvider.dll
2015-05-15 21:31 - 2015-03-14 02:08 - 00095744 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2015-05-15 21:31 - 2015-03-14 02:06 - 02373632 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2015-05-15 21:31 - 2015-03-14 02:06 - 00891392 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2015-05-15 21:31 - 2015-03-14 02:02 - 00124928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll
2015-05-15 21:31 - 2015-03-14 02:02 - 00029696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe
2015-05-15 21:31 - 2015-03-14 01:59 - 00721920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2015-05-15 21:31 - 2015-03-14 01:59 - 00081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
2015-05-15 21:31 - 2014-10-18 08:50 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\wuaext.dll
2015-05-15 21:29 - 2015-03-04 12:25 - 00377152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\clfs.sys
2015-05-15 21:29 - 2015-03-04 05:04 - 00075264 _____ (Microsoft Corporation) C:\Windows\system32\clfsw32.dll
2015-05-15 21:29 - 2015-03-04 04:19 - 00058880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\clfsw32.dll
2015-05-15 18:26 - 2014-12-08 21:42 - 00535640 _____ (Microsoft Corporation) C:\Windows\system32\wer.dll
2015-05-15 18:26 - 2014-12-08 21:42 - 00531616 _____ (Microsoft Corporation) C:\Windows\system32\ci.dll
2015-05-15 18:26 - 2014-12-08 21:42 - 00448792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wer.dll
2015-05-15 18:26 - 2014-12-08 21:42 - 00413248 _____ (Microsoft Corporation) C:\Windows\system32\Faultrep.dll
2015-05-15 18:26 - 2014-12-08 21:42 - 00372408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Faultrep.dll
2015-05-15 18:26 - 2014-12-08 21:42 - 00108944 _____ (Microsoft Corporation) C:\Windows\system32\EncDump.dll
2015-05-15 18:26 - 2014-12-08 21:42 - 00038264 _____ (Microsoft Corporation) C:\Windows\system32\WerFaultSecure.exe
2015-05-15 18:26 - 2014-12-08 21:42 - 00033584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WerFaultSecure.exe
2015-05-15 18:26 - 2014-12-06 03:35 - 00229888 _____ (Microsoft Corporation) C:\Windows\system32\AudioEndpointBuilder.dll
2015-05-15 18:26 - 2014-10-29 06:00 - 00465320 _____ (Microsoft Corporation) C:\Windows\system32\WerFault.exe
2015-05-15 18:26 - 2014-10-29 06:00 - 00139984 _____ (Microsoft Corporation) C:\Windows\system32\wermgr.exe
2015-05-15 18:26 - 2014-10-29 05:52 - 00500016 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll
2015-05-15 18:26 - 2014-10-29 05:52 - 00482872 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll
2015-05-15 18:26 - 2014-10-29 05:52 - 00394120 _____ (Microsoft Corporation) C:\Windows\system32\AUDIOKSE.dll
2015-05-15 18:26 - 2014-10-29 05:52 - 00272248 _____ (Microsoft Corporation) C:\Windows\system32\audiodg.exe
2015-05-15 18:26 - 2014-10-29 05:12 - 00413136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WerFault.exe
2015-05-15 18:26 - 2014-10-29 05:12 - 00136296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wermgr.exe
2015-05-15 18:26 - 2014-10-29 05:07 - 00424544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioEng.dll
2015-05-15 18:26 - 2014-10-29 05:07 - 00370424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioSes.dll
2015-05-15 18:26 - 2014-10-29 05:07 - 00344536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AUDIOKSE.dll
2015-05-15 18:26 - 2014-10-29 04:44 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\werdiagcontroller.dll
2015-05-15 18:26 - 2014-10-29 03:59 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\werdiagcontroller.dll
2015-05-15 18:26 - 2014-10-29 03:02 - 00911360 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
2015-05-15 18:18 - 2014-10-29 04:42 - 00026112 _____ (Microsoft Corporation) C:\Windows\system32\jnwmon.dll
2015-05-15 18:18 - 2014-10-29 03:19 - 00268288 _____ (Microsoft Corporation) C:\Windows\system32\InkEd.dll
2015-05-15 18:18 - 2014-10-29 02:59 - 00230912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\InkEd.dll
2015-05-15 18:17 - 2015-01-21 07:54 - 01384712 _____ (Microsoft Corporation) C:\Windows\system32\msctf.dll
2015-05-15 18:17 - 2015-01-21 07:15 - 01123848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msctf.dll
2015-05-15 18:14 - 2015-05-20 06:14 - 00003456 _____ C:\Windows\System32\Tasks\NetEngine
2015-05-15 18:14 - 2015-05-15 18:14 - 00000000 ____D C:\ProgramData\Radio
2015-05-15 18:14 - 2015-05-15 18:14 - 00000000 ____D C:\ProgramData\NetEngine
2015-05-15 16:51 - 2014-11-10 01:19 - 00991232 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2015-05-15 16:51 - 2014-11-10 01:19 - 00806400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2015-05-15 16:46 - 2014-07-24 05:20 - 00875688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcr120_clr0400.dll
2015-05-15 16:46 - 2014-07-24 05:20 - 00869544 _____ (Microsoft Corporation) C:\Windows\system32\msvcr120_clr0400.dll
2015-05-14 19:59 - 2015-05-28 06:41 - 00000000 ____D C:\Users\alex0392\AppData\Local\SmartWeb
2015-05-14 19:59 - 2015-05-28 06:40 - 00004042 _____ C:\Windows\System32\Tasks\SmartWeb Upgrade Trigger Task
2015-05-14 19:57 - 2015-05-14 19:57 - 00000000 ____D C:\BreakingNewsAlert
2015-05-14 19:30 - 2015-05-14 19:30 - 00000000 ____D C:\Users\alex0392\AppData\Local\Wild Tangent
2015-05-14 19:25 - 2015-05-14 19:25 - 00000000 ____D C:\Users\alex0392\AppData\Roaming\WildTangent
2015-05-14 19:25 - 2015-05-14 19:25 - 00000000 ____D C:\ProgramData\BlueStacks
2015-05-14 19:13 - 2015-05-14 19:13 - 00000000 ____D C:\ProgramData\4b7125d9000019b6
2015-05-14 19:00 - 2015-05-15 21:57 - 00000000 ____D C:\Users\alex0392\AppData\Local\BreakingNewsAlert
2015-05-14 18:59 - 2015-05-24 08:54 - 00000000 ____D C:\Users\alex0392\AppData\Local\9A1D372B-1431629948-E411-B0BB-F8A963F773D4
2015-05-14 18:58 - 2015-05-15 14:11 - 00000000 ____D C:\Users\alex0392\AppData\Local\9A1D372B-1431629924-E411-B0BB-F8A963F773D4
2015-05-14 18:58 - 2015-05-14 18:59 - 00000000 ____D C:\ProgramData\yZtQXrWuX
2015-05-14 18:58 - 2015-05-14 18:58 - 00000000 ____D C:\ProgramData\BreakingNewsAlert
2015-05-14 18:54 - 2015-06-05 20:21 - 00000000 ____D C:\ProgramData\{61a6765c-7b7d-bbfa-61a6-6765c7b7d971}
2015-05-14 18:54 - 2015-06-05 20:13 - 00000000 ____D C:\Users\alex0392\AppData\Local\gmsd_fr_521
2015-05-14 18:54 - 2015-05-14 18:54 - 00000000 ____D C:\ProgramData\LolliScan
2015-05-14 18:54 - 2015-05-14 18:54 - 00000000 ____D C:\Program Files (x86)\gmsd_fr_521
2015-05-14 18:50 - 2013-08-22 15:25 - 00000824 _____ C:\Windows\system32\Drivers\etc\hp.bak
2015-05-14 18:48 - 2015-06-05 17:26 - 00000000 ____D C:\Users\alex0392\AppData\Roaming\9A1D372B-1431622113-E411-B0BB-F8A963F773D4
2015-05-14 18:48 - 2015-05-14 18:48 - 00000000 ____D C:\Users\alex0392\AppData\Roaming\VOPackage
2015-05-14 18:48 - 2015-05-14 18:48 - 00000000 ____D C:\Users\alex0392\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VOPackage
2015-05-14 15:02 - 2015-05-31 22:02 - 00000000 ____D C:\Users\alex0392\Desktop\image varier
2015-05-14 10:29 - 2015-05-14 10:38 - 00000000 ____D C:\Users\alex0392\AppData\Local\Akamai
2015-05-14 10:29 - 2015-05-14 10:29 - 00000000 ____D C:\AeriaGames
2015-05-13 10:20 - 2015-05-13 10:20 - 00000000 ____D C:\ProgramData\ToshibaEurope
2015-05-12 10:47 - 2015-05-14 14:28 - 00000000 ____D C:\Users\alex0392\Documents\CyberLink
2015-05-12 10:47 - 2015-05-12 10:47 - 00000000 ____D C:\Users\alex0392\AppData\Roaming\CyberLink
2015-05-12 10:47 - 2015-05-12 10:47 - 00000000 ____D C:\Users\alex0392\AppData\Local\CyberLink
2015-05-12 09:57 - 2015-05-12 09:57 - 00001879 _____ C:\Users\alex0392\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\avast! antivirus.lnk
2015-05-12 06:07 - 2015-05-12 06:07 - 00000000 ____D C:\ProgramData\788452b800004047
2015-05-11 21:53 - 2015-05-14 18:53 - 00000354 _____ C:\Windows\Tasks\Chromium.job
2015-05-11 21:53 - 2015-05-11 21:53 - 00002692 _____ C:\Windows\System32\Tasks\Chromium
2015-05-11 21:52 - 2015-05-11 21:53 - 00000000 ____D C:\Users\alex0392\AppData\Local\Chromium
2015-05-11 21:50 - 2015-05-11 21:50 - 00002792 _____ C:\Windows\System32\Tasks\CCleanerSkipUAC
2015-05-11 21:50 - 2015-05-11 21:50 - 00000845 _____ C:\Users\Public\Desktop\CCleaner.lnk
2015-05-11 21:50 - 2015-05-11 21:50 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2015-05-11 21:50 - 2015-05-11 21:50 - 00000000 ____D C:\Program Files\CCleaner
2015-05-11 21:48 - 2015-05-11 21:48 - 06480808 _____ (Piriform Ltd) C:\Users\alex0392\Downloads\ccleaner_5-05-5176_fr_14492 [1].exe
2015-05-11 21:47 - 2015-05-11 21:47 - 00701552 _____ (Application Internet ) C:\Users\alex0392\Downloads\ccleaner_5-05-5176_fr_14492.exe
2015-05-11 21:40 - 2015-05-11 21:40 - 00000000 ____D C:\Users\alex0392\AppData\Roaming\AVAST Software
2015-05-11 19:53 - 2015-05-11 19:53 - 00001949 _____ C:\Users\Public\Desktop\Avast Free Antivirus.lnk
2015-05-11 19:53 - 2015-05-11 19:53 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software
2015-05-11 19:52 - 2015-06-05 06:16 - 00004182 _____ C:\Windows\System32\Tasks\avast! Emergency Update
2015-05-11 19:51 - 2015-05-15 14:08 - 00000000 ____D C:\Program Files\Google
2015-05-11 19:31 - 2015-05-14 19:12 - 00000000 ____D C:\Users\alex0392\AppData\Local\Google
2015-05-11 19:30 - 2015-05-11 19:30 - 00442264 _____ (Avast Software s.r.o.) C:\Windows\system32\Drivers\aswSP.sys
2015-05-11 19:30 - 2015-05-11 19:30 - 00364472 _____ (Avast Software s.r.o.) C:\Windows\system32\aswBoot.exe
2015-05-11 19:30 - 2015-05-11 19:30 - 00272248 _____ C:\Windows\system32\Drivers\aswVmm.sys
2015-05-11 19:30 - 2015-05-11 19:30 - 00137288 _____ (Avast Software s.r.o.) C:\Windows\system32\Drivers\aswStm.sys
2015-05-11 19:30 - 2015-05-11 19:30 - 00093528 _____ (Avast Software s.r.o.) C:\Windows\system32\Drivers\aswRdr2.sys
2015-05-11 19:30 - 2015-05-11 19:30 - 00089944 _____ (Avast Software s.r.o.) C:\Windows\system32\Drivers\aswMonFlt.sys
2015-05-11 19:30 - 2015-05-11 19:30 - 00065736 _____ C:\Windows\system32\Drivers\aswRvrt.sys
2015-05-11 19:30 - 2015-05-11 19:30 - 00043112 _____ (Avast Software s.r.o.) C:\Windows\avastSS.scr
2015-05-11 19:30 - 2015-05-11 19:30 - 00029168 _____ C:\Windows\system32\Drivers\aswHwid.sys
2015-05-11 19:30 - 2015-05-11 19:29 - 01047320 _____ (Avast Software s.r.o.) C:\Windows\system32\Drivers\aswSnx.sys
2015-05-11 19:19 - 2015-05-11 19:19 - 00000000 ____D C:\Program Files\AVAST Software
2015-05-11 19:18 - 2015-05-11 19:18 - 00000000 ____D C:\ProgramData\AVAST Software
2015-05-11 19:17 - 2015-05-11 19:17 - 05481336 _____ (Avast Software s.r.o.) C:\Users\alex0392\Downloads\avast_free_antivirus_setup_online_01net.exe
2015-05-11 18:57 - 2015-05-11 18:57 - 00000000 ____D C:\Users\alex0392\AppData\Roaming\Macromedia
2015-05-11 18:51 - 2015-05-11 18:51 - 00000000 __SHD C:\Users\alex0392\AppData\Local\EmieUserList
2015-05-11 18:51 - 2015-05-11 18:51 - 00000000 __SHD C:\Users\alex0392\AppData\Local\EmieSiteList
2015-05-11 18:51 - 2015-05-11 18:51 - 00000000 ____D C:\Users\alex0392\AppData\Roaming\ATI
2015-05-11 18:51 - 2015-05-11 18:51 - 00000000 ____D C:\Users\alex0392\AppData\Local\ATI
2015-05-11 18:50 - 2015-06-05 20:57 - 00003596 _____ C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2239201703-2798331281-184381461-1001
2015-05-11 18:46 - 2015-05-11 18:46 - 00000000 ____D C:\Users\alex0392\AppData\Local\TOSHIBA
2015-05-11 18:44 - 2015-06-05 17:58 - 00000000 ____D C:\Users\alex0392
2015-05-11 18:44 - 2015-05-29 20:02 - 00000000 ____D C:\Users\alex0392\AppData\Local\Packages
2015-05-11 18:44 - 2015-05-16 18:19 - 00000960 _____ C:\Users\alex0392\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2015-05-11 18:44 - 2015-05-11 18:44 - 00000020 ___SH C:\Users\alex0392\ntuser.ini
2015-05-11 18:44 - 2015-05-11 18:44 - 00000000 _SHDL C:\Users\alex0392\Voisinage réseau
2015-05-11 18:44 - 2015-05-11 18:44 - 00000000 _SHDL C:\Users\alex0392\Voisinage d'impression
2015-05-11 18:44 - 2015-05-11 18:44 - 00000000 _SHDL C:\Users\alex0392\Modèles
2015-05-11 18:44 - 2015-05-11 18:44 - 00000000 _SHDL C:\Users\alex0392\Menu Démarrer
2015-05-11 18:44 - 2015-05-11 18:44 - 00000000 _SHDL C:\Users\alex0392\Documents\Mes vidéos
2015-05-11 18:44 - 2015-05-11 18:44 - 00000000 _SHDL C:\Users\alex0392\Documents\Mes images
2015-05-11 18:44 - 2015-05-11 18:44 - 00000000 _SHDL C:\Users\alex0392\Documents\Ma musique
2015-05-11 18:44 - 2015-05-11 18:44 - 00000000 _SHDL C:\Users\alex0392\AppData\Roaming\Microsoft\Windows\Start Menu\Programmes
2015-05-11 18:44 - 2015-05-11 18:44 - 00000000 _SHDL C:\Users\alex0392\AppData\Local\Historique
2015-05-11 18:44 - 2015-05-11 18:44 - 00000000 ____D C:\Users\alex0392\AppData\Roaming\Adobe
2015-05-11 18:44 - 2015-05-11 18:44 - 00000000 ____D C:\Users\alex0392\AppData\Local\VirtualStore
2015-05-11 18:44 - 2014-03-18 12:06 - 00000000 ___RD C:\Users\alex0392\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-05-11 18:44 - 2014-03-18 12:06 - 00000000 ___RD C:\Users\alex0392\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2015-05-11 18:44 - 2014-03-18 11:54 - 00000369 _____ C:\Users\alex0392\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pictures.lnk
2015-05-11 18:44 - 2014-03-18 11:54 - 00000369 _____ C:\Users\alex0392\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Documents.lnk
2015-05-11 18:44 - 2013-08-22 17:36 - 00000000 ___RD C:\Users\alex0392\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-05-11 18:44 - 2013-08-22 17:36 - 00000000 ____D C:\Users\alex0392\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2015-05-11 18:38 - 2015-05-11 18:38 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-06-05 21:00 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\system32\sru
2015-06-05 17:33 - 2013-08-22 17:20 - 00000000 ____D C:\Windows\CbsTemp
2015-06-05 17:20 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\system32\NDF
2015-06-05 06:13 - 2013-08-22 15:25 - 00000226 _____ C:\Windows\win.ini
2015-06-05 06:08 - 2014-05-22 19:59 - 01865684 _____ C:\Windows\SysWOW64\rootpa.e2e
2015-06-05 06:07 - 2013-08-22 16:45 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2015-06-02 19:06 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\LiveKernelReports
2015-06-02 18:41 - 2014-05-06 16:37 - 00812350 _____ C:\Windows\system32\perfh00C.dat
2015-06-02 18:41 - 2014-05-06 16:37 - 00159412 _____ C:\Windows\system32\perfc00C.dat
2015-06-02 18:41 - 2014-03-18 11:53 - 01824010 _____ C:\Windows\system32\PerfStringBackup.INI
2015-05-31 07:38 - 2014-05-22 19:56 - 00065536 _____ C:\Windows\system32\spu_storage.bin
2015-05-29 20:02 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\AppReadiness
2015-05-25 20:43 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\rescache
2015-05-25 20:28 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\system32\SecureBootUpdates
2015-05-17 16:22 - 2013-08-22 16:44 - 00337960 _____ C:\Windows\system32\FNTCACHE.DAT
2015-05-17 16:20 - 2013-08-22 17:36 - 00000000 ___RD C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-05-17 16:20 - 2013-08-22 17:36 - 00000000 ___RD C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2015-05-17 16:20 - 2013-08-22 17:36 - 00000000 ___RD C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-05-17 16:20 - 2013-08-22 17:36 - 00000000 ___RD C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2015-05-17 16:20 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\system32\sr-Latn-RS
2015-05-17 16:20 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\system32\sr-Latn-CS
2015-05-17 16:20 - 2013-08-22 17:36 - 00000000 ____D C:\Program Files\Windows Defender
2015-05-17 16:20 - 2013-08-22 17:36 - 00000000 ____D C:\Program Files (x86)\Windows Defender
2015-05-17 15:32 - 2014-05-22 20:23 - 00000000 ____D C:\Program Files (x86)\Google
2015-05-16 18:11 - 2013-08-22 17:36 - 00000000 ___RD C:\Windows\ToastData
2015-05-16 12:48 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\system32\GroupPolicy
2015-05-15 22:52 - 2014-03-18 11:38 - 00000000 ____D C:\Program Files\Windows Journal
2015-05-14 19:30 - 2014-05-22 20:26 - 00000000 ____D C:\ProgramData\WildTangent
2015-05-14 19:25 - 2014-05-22 20:26 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2015-05-14 11:54 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\WinStore
2015-05-14 11:54 - 2013-08-22 17:36 - 00000000 ____D C:\Program Files\Windows Photo Viewer
2015-05-14 11:54 - 2013-08-22 17:36 - 00000000 ____D C:\Program Files\Common Files\System
2015-05-14 11:54 - 2013-08-22 17:36 - 00000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2015-05-14 11:54 - 2013-08-22 15:36 - 00000000 ____D C:\Windows\servicing
2015-05-14 11:53 - 2014-05-06 16:36 - 00000000 ____D C:\Windows\SysWOW64\XPSViewer
2015-05-14 11:53 - 2014-03-18 11:25 - 00000000 ____D C:\Windows\SysWOW64\winrm
2015-05-14 11:53 - 2014-03-18 11:25 - 00000000 ____D C:\Windows\SysWOW64\WCN
2015-05-14 11:53 - 2014-03-18 11:25 - 00000000 ____D C:\Windows\SysWOW64\slmgr
2015-05-14 11:53 - 2014-03-18 11:25 - 00000000 ____D C:\Windows\SysWOW64\Printing_Admin_Scripts
2015-05-14 11:53 - 2014-03-18 11:25 - 00000000 ____D C:\Windows\system32\winrm
2015-05-14 11:53 - 2014-03-18 11:25 - 00000000 ____D C:\Windows\system32\WCN
2015-05-14 11:53 - 2014-03-18 11:25 - 00000000 ____D C:\Windows\system32\slmgr
2015-05-14 11:53 - 2014-03-18 11:25 - 00000000 ____D C:\Windows\system32\Printing_Admin_Scripts
2015-05-14 11:53 - 2013-08-22 17:36 - 00000000 ___RD C:\Windows\ImmersiveControlPanel
2015-05-14 11:53 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\SysWOW64\tr-TR
2015-05-14 11:53 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\SysWOW64\MUI
2015-05-14 11:53 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\SysWOW64\Com
2015-05-14 11:53 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\system32\tr-TR
2015-05-14 11:53 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\system32\SystemResetPlatform
2015-05-14 11:53 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\system32\MUI
2015-05-14 11:53 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\system32\migwiz
2015-05-14 11:53 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\system32\Com
2015-05-14 11:53 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\PolicyDefinitions
2015-05-14 11:53 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\IME
2015-05-14 11:53 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\Help
2015-05-14 11:53 - 2013-08-22 15:36 - 00000000 ____D C:\Windows\SysWOW64\oobe
2015-05-14 11:53 - 2013-08-22 15:36 - 00000000 ____D C:\Windows\SysWOW64\Dism
2015-05-14 11:53 - 2013-08-22 15:36 - 00000000 ____D C:\Windows\system32\Sysprep
2015-05-14 11:53 - 2013-08-22 15:36 - 00000000 ____D C:\Windows\system32\oobe
2015-05-14 11:53 - 2013-08-22 15:36 - 00000000 ____D C:\Windows\system32\Dism
2015-05-13 10:12 - 2014-05-22 20:36 - 00000000 ____D C:\Program Files\Common Files\mcafee
2015-05-12 10:47 - 2014-05-22 20:18 - 00000000 ____D C:\ProgramData\CyberLink
2015-05-11 22:50 - 2014-05-22 19:57 - 00000000 ____D C:\ProgramData\AMD
2015-05-11 21:50 - 2014-05-23 21:59 - 00000000 ____D C:\Windows\Panther
2015-05-11 19:28 - 2013-08-22 17:36 - 00000000 ___HD C:\Windows\ELAMBKUP
2015-05-11 19:18 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\system32\restore
2015-05-11 19:16 - 2014-05-22 20:36 - 00000000 ____D C:\ProgramData\McAfee
2015-05-11 18:52 - 2014-05-22 20:22 - 00000000 ____D C:\ProgramData\TOSHIBA
2015-05-11 18:46 - 2013-08-22 15:25 - 00262144 ___SH C:\Windows\system32\config\ELAM
2015-05-11 18:44 - 2014-05-22 20:36 - 00000000 ____D C:\Program Files (x86)\McAfee
2015-05-11 18:44 - 2014-03-18 11:25 - 00000000 ____D C:\Windows\SysWOW64\sysprep

==================== Files in the root of some directories =======

2015-05-16 11:32 - 2015-05-16 11:32 - 0613255 _____ (CMI Limited) C:\Users\alex0392\AppData\Local\nsoBFA3.tmp
2014-05-22 20:02 - 2014-05-22 20:02 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
2015-05-16 10:27 - 2015-05-16 10:27 - 1498192 _____ () C:\ProgramData\setup_b3beb926d4584838816299f17649ed18.exe

Files to move or delete:
====================
C:\ProgramData\setup_b3beb926d4584838816299f17649ed18.exe


Some files in TEMP:
====================
C:\Users\alex0392\AppData\Local\Temp\SpotifyUninstall.exe
C:\Users\alex0392\AppData\Local\Temp\Uninstall.exe


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2015-06-05 17:43

==================== End of log ============================