Publicité
Publicité
Format du document : text/plain
Prévisualisation
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 17-12-2017
Ran by Vivicaca (administrator) on VIVICACA-PC (21-12-2017 14:43:16)
Running from C:\Users\Vivicaca\Charlotte\Desktop
Loaded Profiles: Vivicaca (Available Profiles: Vivicaca & DefaultAppPool)
Platform: Windows 10 Pro Version 1703 15063.786 (X64) Language: English (United States)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(AMD) C:\Windows\System32\atiesrxx.exe
() C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.05\AsSysCtrlService.exe
() C:\Program Files (x86)\GNU\GnuPG\dirmngr.exe
(Hi-Rez Studios) C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe
(Hewlett-Packard Company) C:\Program Files (x86)\HP\HPBDSService\HPBDSService.exe
(HP) C:\Program Files (x86)\HP\HPLaserJetService\HPLaserJetService.exe
(Microsoft Corporation) C:\Windows\System32\mqsvc.exe
(Native Instruments GmbH) C:\Program Files\Common Files\Native Instruments\Hardware\NIHardwareService.exe
(PACE Anti-Piracy, Inc.) C:\Program Files (x86)\Common Files\PACE\Services\LicenseServices\LDSvc.exe
(PC Tools) C:\Program Files (x86)\Common Files\PC Tools\sMonitor\StartManSvc.exe
(Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.12.17007.17123-0\MsMpEng.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.12.17007.17123-0\NisSrv.exe
() C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.10.572.0_x64__kzf8qxf38zg5c\SkypeHost.exe
(hxxp://tortoisesvn.net) C:\Program Files (x86)\TortoiseSVN\bin\TSVNCache.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(Microsoft Corporation) C:\Windows\System32\Taskmgr.exe
(HP Inc.) C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
(Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe
(hxxp://tortoisesvn.net) C:\Program Files (x86)\TortoiseSVN\bin\TSVNCache.exe
==================== Registry (Whitelisted) ===========================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [629152 2017-03-18] (Microsoft Corporation)
HKLM\...\Run: [UMonit] => C:\WINDOWS\SysWOW64\UMonit64.exe [45056 2014-07-07] ()
HKLM\...\Run: [HDAudDeck] => C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe [5299320 2012-10-25] (VIA)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [444904 2012-09-20] (Adobe Systems Incorporated)
HKLM\...\Run: [Everything] => C:\Program Files\Everything\Everything.exe [1441792 2014-08-06] ()
HKLM-x32\...\Run: [HDAudDeck] => C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe [5299320 2012-10-25] (VIA)
HKLM-x32\...\Run: [AdobeCS5ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe [406992 2010-02-22] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [SwitchBoard] => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [49208 2011-03-24] (Hewlett-Packard)
HKLM-x32\...\Run: [StatusAlerts] => C:\Program Files (x86)\HP\StatusAlerts\bin\HPStatusAlerts.exe [309120 2012-02-02] (Hewlett-Packard Company)
HKU\S-1-5-21-2317999798-2289613410-81454934-1001\...\Run: [Google Update] => C:\Users\Vivicaca\AppData\Local\Google\Update\1.3.33.5\GoogleUpdateCore.exe
HKU\S-1-5-21-2317999798-2289613410-81454934-1001\...\Run: [com.squirrel.slack.slack] => C:\Users\Vivicaca\AppData\Local\slack\Update.exe [1584656 2017-10-19] ()
HKU\S-1-5-21-2317999798-2289613410-81454934-1001\...\Run: [uTorrent] => C:\Users\Vivicaca\AppData\Roaming\uTorrent\uTorrent.exe [1981624 2017-12-03] (BitTorrent Inc.)
HKU\S-1-5-21-2317999798-2289613410-81454934-1001\...\MountPoints2: {f0b8bf44-526f-11e6-a944-806e6f6e6963} - "D:\start.exe"
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Hosts: 127.0.0.1 activate.adobe.com
Tcpip\Parameters: [DhcpNameServer] 192.168.0.254
Tcpip\..\Interfaces\{5310af2d-7564-41b9-b760-96dc30fc831c}: [DhcpNameServer] 192.168.0.254
Tcpip\..\Interfaces\{c8e0e385-6341-40e6-b071-4669ac14c991}: [DhcpNameServer] 192.168.0.254
Internet Explorer:
==================
HKU\S-1-5-21-2317999798-2289613410-81454934-1001\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://fr.msn.com/?ocid=iehp
SearchScopes: HKU\S-1-5-21-2317999798-2289613410-81454934-1001 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
BHO-x32: ContributeBHO Class -> {074C1DC5-9320-4A9A-947D-C042949C6216} -> C:\Program Files (x86)\Adobe\Adobe Contribute CS5\Plugins\IEPlugin\contributeieplugin.dll [2010-03-27] (Adobe Systems, Inc.)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2013-12-18] (Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2013-12-18] (Oracle Corporation)
Toolbar: HKLM-x32 - Contribute Toolbar - {517BDDE4-E3A7-4570-B21E-2B52B6139FC7} - C:\Program Files (x86)\Adobe\Adobe Contribute CS5\Plugins\IEPlugin\contributeieplugin.dll [2010-03-27] (Adobe Systems, Inc.)
FireFox:
========
FF DefaultProfile:
FF DefaultProfile: 54rirpb6.default
FF ProfilePath: C:\Users\Vivicaca\AppData\Roaming\Mozilla\Firefox\Profiles\54rirpb6.default [2017-12-21]
FF Extension: (uBlock Origin) - C:\Users\Vivicaca\AppData\Roaming\Mozilla\Firefox\Profiles\54rirpb6.default\Extensions\uBlock0@raymondhill.net.xpi [2017-12-15]
FF Extension: (NoScript) - C:\Users\Vivicaca\AppData\Roaming\Mozilla\Firefox\Profiles\54rirpb6.default\Extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}.xpi [2017-12-19]
FF HKLM-x32\...\Firefox\Extensions: [{01A8CA0A-4C96-465b-A49B-65C46FAD54F9}] - C:\Program Files (x86)\Adobe\Adobe Contribute CS5\Plugins\FirefoxPlugin\{01A8CA0A-4C96-465b-A49B-65C46FAD54F9}
FF Extension: (Adobe Contribute Toolbar) - C:\Program Files (x86)\Adobe\Adobe Contribute CS5\Plugins\FirefoxPlugin\{01A8CA0A-4C96-465b-A49B-65C46FAD54F9} [2015-03-26] [Legacy] [not signed]
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_23_0_0_162.dll [2016-09-15] ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] ( Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [2012-09-20] (Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_23_0_0_162.dll [2016-09-15] ()
FF Plugin-x32: @java.com/DTPlugin,version=10.51.2 -> C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll [2013-12-18] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.51.2 -> C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll [2013-12-18] (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-04-01] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-04-01] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3538.0513 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-04-01] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-04-01] (Microsoft Corporation)
FF Plugin-x32: @real.com/nppl3260;version=6.0.12.69 -> C:\Program Files (x86)\Media Convert Master\codec\real\browser\plugins\nppl3260.dll [No File]
FF Plugin-x32: @real.com/nprpjplug;version=6.0.12.69 -> C:\Program Files (x86)\Media Convert Master\codec\real\browser\plugins\nprpjplug.dll [No File]
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-15] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-15] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2017-11-04] (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll [2012-09-20] (Adobe Systems)
FF Plugin HKU\S-1-5-21-2317999798-2289613410-81454934-1001: @tools.google.com/Google Update;version=3 -> C:\Users\Vivicaca\AppData\Local\Google\Update\1.3.33.5\npGoogleUpdate3.dll [No File]
FF Plugin HKU\S-1-5-21-2317999798-2289613410-81454934-1001: @tools.google.com/Google Update;version=9 -> C:\Users\Vivicaca\AppData\Local\Google\Update\1.3.33.5\npGoogleUpdate3.dll [No File]
FF Plugin HKU\S-1-5-21-2317999798-2289613410-81454934-1001: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Vivicaca\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [No File]
FF Plugin HKU\S-1-5-21-2317999798-2289613410-81454934-1001: ubisoft.com/uplaypc -> C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll [2017-02-04] ()
Chrome:
=======
CHR DefaultProfile: Default
CHR HomePage: Default -> hxxp://www.google.com/
CHR StartupUrls: Default -> "","hxxp://www.google.com/","hxxps://isearch.avg.com/?cid={9ED8146E-D360-417C-B20D-351AD40342DB}&mid=2216993a35e247d08ecf6f3a42deceb0-4f3117d4fab6e0a35e01f7d5c97f6b069ad45913&lang=en&ds=st011&pr=sa&d=2012-09-21 13:32:45&v=12.2.5.34&sap=hp"
CHR Profile: C:\Users\Vivicaca\AppData\Local\Google\Chrome\User Data\Default [2017-12-21]
CHR Extension: (Docs) - C:\Users\Vivicaca\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-16]
CHR Extension: (Google Drive) - C:\Users\Vivicaca\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-31]
CHR Extension: (YouTube) - C:\Users\Vivicaca\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-10-31]
CHR Extension: (Adblock Plus) - C:\Users\Vivicaca\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2017-09-29]
CHR Extension: (FB Graffiti) - C:\Users\Vivicaca\AppData\Local\Google\Chrome\User Data\Default\Extensions\cmnchaikmnbbceccglncolgmbheoiehp [2015-02-05]
CHR Extension: (Recherche Google) - C:\Users\Vivicaca\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-31]
CHR Extension: (Adobe Acrobat) - C:\Users\Vivicaca\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2017-03-04]
CHR Extension: (Google Docs hors connexion) - C:\Users\Vivicaca\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-04-16]
CHR Extension: (Troll Emoticons) - C:\Users\Vivicaca\AppData\Local\Google\Chrome\User Data\Default\Extensions\hndllphbhpadfpoikpaofkkkpkpnmjik [2013-12-17]
CHR Extension: (Auto Refresh) - C:\Users\Vivicaca\AppData\Local\Google\Chrome\User Data\Default\Extensions\ifooldnmmcmlbdennkpdnlnbgbmfalko [2017-12-20]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Vivicaca\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-09-03]
CHR Extension: (Gmail) - C:\Users\Vivicaca\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-04-23]
CHR Extension: (Chrome Media Router) - C:\Users\Vivicaca\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-09-29]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
StartMenuInternet: Google Chrome - C:\Users\Vivicaca\AppData\Local\Google\Chrome\Application\chrome.exe
==================== Services (Whitelisted) ====================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [77128 2015-01-20] (Apple Inc.)
R2 AsSysCtrlService; C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.05\AsSysCtrlService.exe [109056 2010-06-24] () [File not signed]
S4 DigiRefresh; C:\Program Files (x86)\Digidesign\Drivers\MMERefresh.exe [77824 2008-12-03] (Digidesign, A Division of Avid Technology, Inc.) [File not signed]
R2 DirMngr; C:\Program Files (x86)\GNU\GnuPG\dirmngr.exe [216576 2015-09-09] () [File not signed]
U2 HiPatchService; C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe [9728 2015-11-03] (Hi-Rez Studios) [File not signed]
R2 HP DS Service; C:\Program Files (x86)\HP\HPBDSService\HPBDSService.exe [13824 2011-10-17] (Hewlett-Packard Company) [File not signed]
R2 HP LaserJet Service; C:\Program Files (x86)\HP\HPLaserJetService\HPLaserJetService.exe [164352 2011-08-03] (HP) [File not signed]
R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [29728 2016-08-15] (HP Inc.)
R2 Net Driver HPZ12; C:\Windows\System32\HPZinw12.dll [50688 2011-04-13] (Hewlett-Packard) [File not signed]
R2 NIHardwareService; C:\Program Files\Common Files\Native Instruments\Hardware\NIHardwareService.exe [5352960 2011-04-07] (Native Instruments GmbH) [File not signed]
S2 Norton PC Checkup Application Launcher; C:\Program Files (x86)\Norton PC Checkup\Engine\2.0.17.20\SymcPCCULaunchSvc.exe [135608 2011-11-07] (Symantec Corporation)
S2 PCCUJobMgr; C:\Program Files (x86)\Norton PC Checkup\Engine\2.0.17.20\ccSvcHst.exe [126392 2011-11-07] (Symantec Corporation)
R2 PCToolsSSDMonitorSvc; C:\Program Files (x86)\Common Files\PC Tools\sMonitor\StartManSvc.exe [632792 2010-10-01] (PC Tools)
R2 Pml Driver HPZ12; C:\Windows\System32\HPZipm12.dll [66048 2011-04-13] (Hewlett-Packard) [File not signed]
S4 Razer Game Scanner Service; C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe [187072 2015-02-05] ()
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [3913064 2017-03-19] (Microsoft Corporation)
S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [File not signed]
S3 VSStandardCollectorService140; C:\Program Files (x86)\Microsoft Visual Studio 14.0\Team Tools\DiagnosticsHub\Collector\StandardCollector.Service.exe [108776 2016-09-06] (Microsoft Corporation)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.12.17007.17123-0\NisSrv.exe [356176 2017-12-07] (Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.12.17007.17123-0\MsMpEng.exe [105792 2017-12-07] (Microsoft Corporation)
===================== Drivers (Whitelisted) ======================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [13440 2010-04-22] ()
R3 athr; C:\WINDOWS\System32\drivers\athw10x.sys [4320176 2017-08-28] (Qualcomm Atheros Communications, Inc.)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [131712 2016-09-05] (Samsung Electronics Co., Ltd.)
S3 hitmanpro37; C:\WINDOWS\system32\drivers\hitmanpro37.sys [55232 2017-07-14] ()
R3 MAFWPROFIRE; C:\WINDOWS\system32\DRIVERS\MAudioProFire.sys [288976 2013-06-03] (M-Audio, a brand of inMusic Brands, Inc.)
R1 MpKsl8e2bc6b9; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{60416BAB-8189-4FB5-B198-61FEA1A4224B}\MpKsl8e2bc6b9.sys [58120 2017-12-21] (Microsoft Corporation)
S3 MRV6X64P; C:\WINDOWS\System32\DRIVERS\MRVW13C.sys [244736 2007-05-03] (Marvell Semiconductor, Inc) [File not signed]
R3 MTsensor; C:\WINDOWS\system32\DRIVERS\ASACPI.sys [17280 2013-05-17] ()
S3 NPF; C:\WINDOWS\System32\drivers\npf.sys [47632 2009-10-20] (CACE Technologies, Inc.)
S3 PCAMp50a64; C:\WINDOWS\System32\Drivers\PCAMp50a64.sys [43328 2006-11-28] (Printing Communications Assoc., Inc. (PCAUSA))
S3 PCASp50a64; C:\WINDOWS\System32\Drivers\PCASp50a64.sys [41280 2006-11-28] (Printing Communications Assoc., Inc. (PCAUSA))
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [1020008 2017-10-31] (Realtek )
S3 rzp1endpt; C:\WINDOWS\System32\drivers\rzp1endpt.sys [40104 2014-12-30] (Razer Inc)
R2 rzpmgrk; C:\Windows\system32\drivers\rzpmgrk.sys [37184 2015-02-05] (Razer, Inc.)
R2 rzpnk; C:\Windows\system32\drivers\rzpnk.sys [129600 2015-03-03] (Razer, Inc.)
S3 rzvmouse; C:\WINDOWS\System32\drivers\rzvmouse.sys [31912 2014-12-30] (Razer Inc)
S3 SDFRd; C:\WINDOWS\System32\drivers\SDFRd.sys [31128 2017-03-18] ()
R3 SensorsSimulatorDriver; C:\WINDOWS\System32\drivers\WUDFRd.sys [220672 2017-03-18] (Microsoft Corporation)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [165504 2016-09-05] (Samsung Electronics Co., Ltd.)
R3 taphss6; C:\WINDOWS\System32\drivers\taphss6.sys [42064 2016-12-06] (Anchorfree Inc.)
S3 vjoy; C:\WINDOWS\System32\DRIVERS\vjoy.sys [56560 2015-08-15] (Shaul Eizikovich)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [46072 2017-12-07] (Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [288848 2017-12-07] (Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [129616 2017-12-07] (Microsoft Corporation)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2017-12-21 12:15 - 2017-12-21 12:28 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2017-12-21 10:50 - 2017-12-21 10:50 - 000000000 ____D C:\WINDOWS\Panther
2017-12-20 13:58 - 2017-12-20 13:58 - 000055978 _____ C:\Users\Vivicaca\Downloads\DOSSIER TDAH.pdf
2017-12-19 18:10 - 2017-12-21 12:14 - 000000022 _____ C:\WINDOWS\S.dirmngr
2017-12-19 16:19 - 2017-12-19 16:19 - 000000000 ____D C:\Users\Vivicaca\AppData\LocalLow\uTorrent
2017-12-17 23:26 - 2017-12-17 23:26 - 000061359 _____ C:\Users\Vivicaca\Downloads\Valerian.jpeg
2017-12-13 19:47 - 2017-12-13 19:47 - 000395530 _____ C:\Users\Vivicaca\Downloads\E-billet.pdf
2017-12-13 11:56 - 2017-11-30 04:33 - 001144728 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2017-12-13 11:56 - 2017-11-30 04:33 - 001015704 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2017-12-13 11:56 - 2017-11-30 04:33 - 000038808 _____ (Microsoft Corporation) C:\WINDOWS\system32\OOBEUpdater.exe
2017-12-13 11:56 - 2017-11-30 04:29 - 008319384 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2017-12-13 11:56 - 2017-11-30 04:26 - 002647216 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2017-12-13 11:56 - 2017-11-30 04:24 - 000870896 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll
2017-12-13 11:56 - 2017-11-30 04:23 - 007910960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2017-12-13 11:56 - 2017-11-30 04:23 - 001194248 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetcore.dll
2017-12-13 11:56 - 2017-11-30 04:00 - 002166808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2017-12-13 11:56 - 2017-11-30 03:59 - 023678464 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2017-12-13 11:56 - 2017-11-30 03:58 - 006763128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2017-12-13 11:56 - 2017-11-30 03:58 - 000702032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttp.dll
2017-12-13 11:56 - 2017-11-30 03:57 - 001123968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetcore.dll
2017-12-13 11:56 - 2017-11-30 03:45 - 000119808 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataTimeUtil.dll
2017-12-13 11:56 - 2017-11-30 03:45 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzres.dll
2017-12-13 11:56 - 2017-11-30 03:44 - 023679488 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2017-12-13 11:56 - 2017-11-30 03:44 - 019334144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2017-12-13 11:56 - 2017-11-30 03:44 - 000171008 _____ (Microsoft Corporation) C:\WINDOWS\system32\itss.dll
2017-12-13 11:56 - 2017-11-30 03:44 - 000110592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2017-12-13 11:56 - 2017-11-30 03:44 - 000042496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vwifimp.sys
2017-12-13 11:56 - 2017-11-30 03:43 - 020511232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2017-12-13 11:56 - 2017-11-30 03:43 - 000164352 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscript.exe
2017-12-13 11:56 - 2017-11-30 03:43 - 000095232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataTimeUtil.dll
2017-12-13 11:56 - 2017-11-30 03:43 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tzres.dll
2017-12-13 11:56 - 2017-11-30 03:42 - 001878016 _____ (Microsoft Corporation) C:\WINDOWS\system32\AzureSettingSyncProvider.dll
2017-12-13 11:56 - 2017-11-30 03:42 - 000560640 _____ (Microsoft Corporation) C:\WINDOWS\system32\iprtrmgr.dll
2017-12-13 11:56 - 2017-11-30 03:42 - 000304640 _____ (Microsoft Corporation) C:\WINDOWS\system32\dusmsvc.dll
2017-12-13 11:56 - 2017-11-30 03:42 - 000164352 _____ (Microsoft Corporation) C:\WINDOWS\system32\cscript.exe
2017-12-13 11:56 - 2017-11-30 03:42 - 000148992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\itss.dll
2017-12-13 11:56 - 2017-11-30 03:42 - 000100864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msscript.ocx
2017-12-13 11:56 - 2017-11-30 03:42 - 000080896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll
2017-12-13 11:56 - 2017-11-30 03:41 - 000527360 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadcloudap.dll
2017-12-13 11:56 - 2017-11-30 03:41 - 000414720 _____ (Microsoft Corporation) C:\WINDOWS\system32\provhandlers.dll
2017-12-13 11:56 - 2017-11-30 03:41 - 000225792 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2017-12-13 11:56 - 2017-11-30 03:41 - 000222208 _____ (Microsoft Corporation) C:\WINDOWS\system32\scrobj.dll
2017-12-13 11:56 - 2017-11-30 03:41 - 000146944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscript.exe
2017-12-13 11:56 - 2017-11-30 03:40 - 012803072 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2017-12-13 11:56 - 2017-11-30 03:40 - 000585216 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2017-12-13 11:56 - 2017-11-30 03:40 - 000528384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iprtrmgr.dll
2017-12-13 11:56 - 2017-11-30 03:40 - 000206336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scrobj.dll
2017-12-13 11:56 - 2017-11-30 03:40 - 000143360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cscript.exe
2017-12-13 11:56 - 2017-11-30 03:39 - 011888640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2017-12-13 11:56 - 2017-11-30 03:39 - 003206656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Bluetooth.Profiles.Gatt.dll
2017-12-13 11:56 - 2017-11-30 03:39 - 002809344 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2017-12-13 11:56 - 2017-11-30 03:39 - 000925696 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll
2017-12-13 11:56 - 2017-11-30 03:38 - 008195584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2017-12-13 11:56 - 2017-11-30 03:38 - 001248768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AzureSettingSyncProvider.dll
2017-12-13 11:56 - 2017-11-30 03:38 - 000684544 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
2017-12-13 11:56 - 2017-11-30 03:38 - 000636416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WpcWebFilter.dll
2017-12-13 11:56 - 2017-11-30 03:38 - 000497152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2017-12-13 11:56 - 2017-11-30 03:37 - 006252544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2017-12-13 11:56 - 2017-11-30 03:37 - 003306496 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2017-12-13 11:56 - 2017-11-30 03:37 - 002859520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2017-12-13 11:56 - 2017-11-30 03:37 - 001293824 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll
2017-12-13 11:56 - 2017-11-30 03:36 - 005557760 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbgeng.dll
2017-12-13 11:56 - 2017-11-30 03:36 - 004726784 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2017-12-13 11:56 - 2017-11-30 03:36 - 003652096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2017-12-13 11:56 - 2017-11-30 03:36 - 001802240 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2017-12-13 11:56 - 2017-11-30 03:36 - 001398784 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2017-12-13 11:56 - 2017-11-30 03:36 - 001019904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aadtb.dll
2017-12-13 11:56 - 2017-11-30 03:36 - 000755200 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2017-12-13 11:56 - 2017-11-30 03:36 - 000658432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2017-12-13 11:56 - 2017-11-30 03:35 - 001627136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2017-12-13 11:56 - 2017-11-30 03:34 - 004559360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbgeng.dll
2017-12-13 11:56 - 2017-11-17 10:46 - 002032536 _____ (Microsoft Corporation) C:\WINDOWS\system32\aitstatic.exe
2017-12-13 11:56 - 2017-11-17 10:46 - 001578904 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2017-12-13 11:56 - 2017-11-17 10:46 - 000821656 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.exe
2017-12-13 11:56 - 2017-11-17 10:46 - 000678808 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2017-12-13 11:56 - 2017-11-17 10:46 - 000613784 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2017-12-13 11:56 - 2017-11-17 10:46 - 000612248 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2017-12-13 11:56 - 2017-11-17 10:46 - 000484248 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcntel.dll
2017-12-13 11:56 - 2017-11-17 10:46 - 000379288 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2017-12-13 11:56 - 2017-11-17 10:46 - 000259992 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
2017-12-13 11:56 - 2017-11-17 10:46 - 000190360 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2017-12-13 11:56 - 2017-11-17 10:46 - 000136088 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2017-12-13 11:56 - 2017-11-17 10:46 - 000067992 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32appinventorycsp.dll
2017-12-13 11:56 - 2017-11-17 10:46 - 000034712 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe
2017-12-13 11:56 - 2017-11-17 10:41 - 000503704 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcasvc.dll
2017-12-13 11:56 - 2017-11-17 10:39 - 005477088 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneCoreUAPCommonProxyStub.dll
2017-12-13 11:56 - 2017-11-17 10:39 - 000643200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2017-12-13 11:56 - 2017-11-17 10:37 - 021353200 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2017-12-13 11:56 - 2017-11-17 10:31 - 000223640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aepic.dll
2017-12-13 11:56 - 2017-11-17 10:03 - 003668992 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2017-12-13 11:56 - 2017-11-17 10:00 - 002953216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2017-12-13 11:56 - 2017-11-17 09:59 - 000064512 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsrv.dll
2017-12-13 11:56 - 2017-11-17 09:56 - 000757248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdiWiFi.sys
2017-12-13 11:05 - 2017-12-13 11:06 - 000012649 _____ C:\Users\Vivicaca\Downloads\20171208121533583.pdf
2017-12-13 10:26 - 2017-12-12 15:58 - 000000226 _____ C:\Users\Vivicaca\Downloads\Neuropsys à contacter pour TDAH.txt
2017-12-12 10:36 - 2017-12-12 10:36 - 000000241 _____ C:\Users\Vivicaca\Downloads\Trucs à farmer à Zelda.txt
2017-12-09 15:57 - 2017-12-09 15:57 - 005799151 _____ C:\Users\Vivicaca\Downloads\politique aquatique 3.1 - 03_12_2017 10.12.m4a
2017-12-09 15:56 - 2017-12-09 15:56 - 004978576 _____ C:\Users\Vivicaca\Downloads\aint gonna cry instr - 01_11_2017 19.23.m4a
2017-12-08 17:20 - 2017-12-08 17:22 - 000000053 _____ C:\Users\Vivicaca\Downloads\Identifiants pôle emploi Toulouse.txt
2017-12-04 21:02 - 2017-12-04 21:02 - 000000375 _____ C:\WINDOWS\system32\sdi.cfg
2017-12-04 20:19 - 2017-08-28 18:47 - 004320176 _____ (Qualcomm Atheros Communications, Inc.) C:\WINDOWS\system32\Drivers\athw10x.sys
2017-12-04 20:06 - 2016-10-27 04:55 - 000919336 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\VMAPO64.DLL
2017-12-04 20:06 - 2016-10-27 04:55 - 000776456 _____ (Creative Technology Ltd.) C:\WINDOWS\SysWOW64\VMAPO32.DLL
2017-12-04 20:06 - 2016-10-27 04:55 - 000654560 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\VMTHX64.DLL
2017-12-04 20:06 - 2016-10-27 04:55 - 000588384 _____ (Creative Technology Ltd.) C:\WINDOWS\SysWOW64\VMTHX32.DLL
2017-12-04 20:06 - 2016-10-27 04:55 - 000419176 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\VMWRP64.DLL
2017-12-04 20:06 - 2016-10-27 04:55 - 000082960 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\VMPPLD64.DLL
2017-12-04 20:06 - 2016-10-27 04:55 - 000078792 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\VMPPCN64.DLL
2017-12-04 20:06 - 2016-10-27 04:54 - 002050984 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\VMAPO264.DLL
2017-12-04 20:06 - 2016-10-27 04:54 - 002045208 _____ (VIA Technologies, Inc.) C:\WINDOWS\system32\ViaMicArrayAPO.dll
2017-12-04 20:06 - 2016-10-27 04:54 - 001774288 _____ (Creative Technology Ltd.) C:\WINDOWS\SysWOW64\VMAPO232.DLL
2017-12-04 20:06 - 2016-10-27 04:54 - 001199104 _____ (VIA Technologies, Inc.) C:\WINDOWS\system32\ViaKaraokeApo.dll
2017-12-04 20:06 - 2016-10-27 04:54 - 000617488 _____ (VIA Technologies, Inc.) C:\WINDOWS\system32\VIASysFx.dll
2017-12-04 20:06 - 2016-10-27 04:53 - 003315336 _____ (VIA Technologies, Inc.) C:\WINDOWS\system32\VIAPropPageExt.dll
2017-12-04 20:06 - 2016-10-27 04:53 - 000140416 _____ (VIA Technologies,Inc.) C:\WINDOWS\system32\ViaKaraokePropPageExt.dll
2017-12-04 20:06 - 2016-10-27 04:53 - 000112256 _____ (VIA Technologies,Inc.) C:\WINDOWS\system32\ViaMicArrayPropPageExt.dll
2017-12-04 20:06 - 2016-10-27 04:51 - 000089464 _____ (Windows (R) Codename Longhorn DDK provider) C:\WINDOWS\system32\VtSrdAPO.dll
2017-12-04 20:06 - 2016-10-27 04:50 - 000069600 _____ (TODO:) C:\WINDOWS\system32\PropPageExt.dll
2017-12-04 20:06 - 2016-10-27 04:50 - 000050904 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\Drivers\VMfilt64.sys
2017-12-04 20:03 - 2017-12-04 20:03 - 000018960 _____ (Logitech, Inc.) C:\WINDOWS\system32\Drivers\LNonPnP.sys
2017-12-04 20:03 - 2015-06-18 03:25 - 001854096 _____ (Logitech, Inc.) C:\WINDOWS\system32\LkmdfCoInst.dll
2017-12-04 20:03 - 2015-06-18 03:25 - 000086672 _____ (Logitech, Inc.) C:\WINDOWS\system32\Drivers\LHidFilt.Sys
2017-12-04 20:03 - 2015-06-18 03:25 - 000069264 _____ (Logitech, Inc.) C:\WINDOWS\system32\Drivers\LMouFilt.Sys
2017-12-04 20:03 - 2015-06-18 03:25 - 000063120 _____ (Logitech, Inc.) C:\WINDOWS\system32\LMouFiltCoInst.dll
2017-12-04 20:03 - 2015-06-18 03:25 - 000050832 _____ (Logitech, Inc.) C:\WINDOWS\system32\Drivers\LUsbFilt.sys
2017-12-04 19:07 - 2017-12-04 19:39 - 013170687 _____ C:\WINDOWS\system32\Drivers\DP_Sounds_HDMI_17102.7z
2017-12-04 19:03 - 2017-12-04 19:40 - 123163491 _____ C:\WINDOWS\system32\Drivers\DP_Touchpad_Alps_17113.7z
2017-12-04 19:02 - 2017-12-04 19:19 - 039160649 _____ C:\WINDOWS\system32\Drivers\DP_Touchpad_Others_17103.7z
2017-12-04 19:00 - 2017-12-04 19:40 - 052636559 _____ C:\WINDOWS\system32\Drivers\DP_CardReader_17113.7z
2017-12-04 19:00 - 2017-12-04 19:22 - 001506885 _____ C:\WINDOWS\system32\Drivers\DP_TV_Beholder_17000.7z
2017-12-04 18:58 - 2017-12-04 19:39 - 046417705 _____ C:\WINDOWS\system32\Drivers\DP_Bluetooth_17113.7z
2017-12-04 18:58 - 2017-12-04 19:37 - 013025242 _____ C:\WINDOWS\system32\Drivers\DP_zVirtual_17113.7z
2017-12-04 18:57 - 2017-12-04 19:15 - 021738609 _____ C:\WINDOWS\system32\Drivers\DP_Touchpad_Cypress_17000.7z
2017-12-04 18:54 - 2017-12-04 19:16 - 103216212 _____ C:\WINDOWS\system32\Drivers\DP_Sound_Others_17112.7z
2017-12-04 18:53 - 2017-12-04 19:17 - 020097440 _____ C:\WINDOWS\system32\Drivers\DP_LAN_Intel_17112.7z
2017-12-04 18:53 - 2017-12-04 19:12 - 024162669 _____ C:\WINDOWS\system32\Drivers\DP_Monitor_17112.7z
2017-12-04 18:52 - 2017-12-04 19:40 - 367539589 _____ C:\WINDOWS\system32\Drivers\DP_Touchpad_Synaptics_17113.7z
2017-12-04 18:52 - 2017-12-04 19:40 - 164925924 _____ C:\WINDOWS\system32\Drivers\DP_Chipset_17112.7z
2017-12-04 18:52 - 2017-12-04 19:39 - 226233832 _____ C:\WINDOWS\system32\Drivers\DP_WebCam_17113.7z
2017-12-04 18:52 - 2017-12-04 19:11 - 062740186 _____ C:\WINDOWS\system32\Drivers\DP_Sound_CMedia_17104.7z
2017-12-04 18:51 - 2017-12-04 19:40 - 361814658 _____ C:\WINDOWS\system32\Drivers\DP_Sounds_Realtek_17113.7z
2017-12-04 18:51 - 2017-12-04 19:40 - 113137901 _____ C:\WINDOWS\system32\Drivers\DP_LAN_Others_17112.7z
2017-12-04 18:51 - 2017-12-04 19:40 - 040488266 _____ C:\WINDOWS\system32\Drivers\DP_MassStorage_17111.7z
2017-12-04 18:51 - 2017-12-04 19:33 - 183549583 _____ C:\WINDOWS\system32\Drivers\DP_Sound_Conexant_17113.7z
2017-12-04 18:51 - 2017-12-04 19:22 - 016770092 _____ C:\WINDOWS\system32\Drivers\DP_LAN_Realtek-NT_17113.7z
2017-12-04 18:51 - 2017-12-04 19:10 - 017778046 _____ C:\WINDOWS\system32\Drivers\DP_xUSB_17105.7z
2017-12-04 18:50 - 2017-12-04 19:40 - 951602088 _____ C:\WINDOWS\system32\Drivers\DP_Videos_AMD_Server_17113.7z
2017-12-04 18:50 - 2017-12-04 19:40 - 318126068 _____ C:\WINDOWS\system32\Drivers\DP_WLAN-WiFi_17113.7z
2017-12-04 18:50 - 2017-12-04 19:40 - 2285828249 _____ C:\WINDOWS\system32\Drivers\DP_Videos_AMD-NT_17112.7z
2017-12-04 18:50 - 2017-12-04 19:40 - 1948133371 _____ C:\WINDOWS\system32\Drivers\DP_Video_nVIDIA_Server_17112.7z
2017-12-04 18:50 - 2017-12-04 19:40 - 176538308 _____ C:\WINDOWS\system32\Drivers\DP_Misc_17112.7z
2017-12-04 18:50 - 2017-12-04 19:40 - 1677960246 _____ C:\WINDOWS\system32\Drivers\DP_Video_nVIDIA-NT_17113.7z
2017-12-04 18:50 - 2017-12-04 19:40 - 133864571 _____ C:\WINDOWS\system32\Drivers\DP_Biometric_17113.7z
2017-12-04 18:50 - 2017-12-04 19:40 - 1273858669 _____ C:\WINDOWS\system32\Drivers\DP_Video_Intel-NT_17112.7z
2017-12-04 18:50 - 2017-12-04 19:40 - 1129309466 _____ C:\WINDOWS\system32\Drivers\DP_Printer_17112.7z
2017-12-04 18:50 - 2017-12-04 19:38 - 013550979 _____ C:\WINDOWS\system32\Drivers\DP_zUSB3_17105.7z
2017-12-04 18:50 - 2017-12-04 19:37 - 087408110 _____ C:\WINDOWS\system32\Drivers\DP_Vendor_17112.7z
2017-12-04 18:50 - 2017-12-04 19:37 - 011492721 _____ C:\WINDOWS\system32\Drivers\DP_Sound_ADI_17000.7z
2017-12-04 18:50 - 2017-12-04 19:35 - 306090643 _____ C:\WINDOWS\system32\Drivers\DP_Videos_Others_17105.7z
2017-12-04 18:50 - 2017-12-04 19:32 - 066311877 _____ C:\WINDOWS\system32\Drivers\DP_WWAN-4G_17102.7z
2017-12-04 18:50 - 2017-12-04 19:25 - 317029673 _____ C:\WINDOWS\system32\Drivers\DP_Videos_AMD-XP_17000.7z
2017-12-04 18:50 - 2017-12-04 19:24 - 028063642 _____ C:\WINDOWS\system32\Drivers\DP_TV_Aver_17072.7z
2017-12-04 18:50 - 2017-12-04 19:23 - 131782481 _____ C:\WINDOWS\system32\Drivers\DP_Sound_Creative_17094.7z
2017-12-04 18:50 - 2017-12-04 19:17 - 088842407 _____ C:\WINDOWS\system32\Drivers\DP_Video_Intel-XP_17073.7z
2017-12-04 18:50 - 2017-12-04 19:17 - 028274780 _____ C:\WINDOWS\system32\Drivers\DP_TV_DVB_17105.7z
2017-12-04 18:50 - 2017-12-04 19:16 - 064079062 _____ C:\WINDOWS\system32\Drivers\DP_Telephone_17073.7z
2017-12-04 18:50 - 2017-12-04 19:11 - 072961603 _____ C:\WINDOWS\system32\Drivers\DP_Sound_VIA_17000.7z
2017-12-04 18:50 - 2017-12-04 19:10 - 084193004 _____ C:\WINDOWS\system32\Drivers\DP_TV_Others_17075.7z
2017-12-04 18:50 - 2017-12-04 19:09 - 078825537 _____ C:\WINDOWS\system32\Drivers\DP_Sound_IDT_17000.7z
2017-12-04 18:50 - 2017-12-04 19:09 - 075038285 _____ C:\WINDOWS\system32\Drivers\DP_Modem_17024.7z
2017-12-04 18:50 - 2017-12-04 19:01 - 007398179 _____ C:\WINDOWS\system32\Drivers\DP_LAN_Realtek-XP_17023.7z
2017-12-04 18:50 - 2017-12-04 18:50 - 000000000 ____D C:\WINDOWS\system32\update
2017-12-04 18:48 - 2017-12-04 18:48 - 000000000 ____D C:\WINDOWS\system32\indexes
2017-12-04 18:47 - 2017-11-08 23:20 - 001727704 _____ (www.SamLab.ws) C:\Users\Vivicaca\Downloads\SDI_x64_R1793.exe
2017-12-04 18:47 - 2017-11-08 23:20 - 001530584 _____ (www.SamLab.ws) C:\Users\Vivicaca\Downloads\SDI_R1793.exe
2017-12-04 18:47 - 2017-02-21 14:12 - 000000000 ____D C:\Users\Vivicaca\Downloads\indexes
2017-12-04 18:47 - 2017-02-21 03:18 - 000000000 ____D C:\Users\Vivicaca\Downloads\tools
2017-12-04 18:47 - 2016-07-31 03:17 - 000000817 _____ C:\Users\Vivicaca\Downloads\SDI_auto.bat
2017-12-04 18:45 - 2017-12-04 18:46 - 004229389 _____ C:\Users\Vivicaca\Downloads\SDI_R1793.zip
2017-11-26 23:26 - 2017-11-26 23:26 - 000226986 _____ C:\Users\Vivicaca\Downloads\autorisation_velotoulouse.pdf
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2017-12-21 14:43 - 2017-09-15 10:37 - 000000000 ____D C:\FRST
2017-12-21 14:41 - 2017-07-27 20:46 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2017-12-21 12:16 - 2017-09-08 02:16 - 000000000 ____D C:\Users\Vivicaca\AppData\Local\TSVNCache
2017-12-21 12:14 - 2017-07-27 21:27 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2017-12-21 12:13 - 2017-03-18 12:40 - 001048576 _____ C:\WINDOWS\system32\config\BBI
2017-12-21 12:11 - 2017-05-28 19:39 - 000000000 ____D C:\AdwCleaner
2017-12-21 12:09 - 2017-07-13 10:04 - 000000000 ____D C:\Users\Vivicaca\AppData\Roaming\ZHP
2017-12-21 11:32 - 2014-06-13 09:42 - 000000000 ____D C:\Users\Vivicaca\AppData\Local\Adobe
2017-12-21 11:31 - 2016-11-18 13:08 - 000000000 ____D C:\Users\Vivicaca\AppData\LocalLow\Mozilla
2017-12-21 11:16 - 2017-08-30 19:51 - 000000000 ____D C:\Users\Vivicaca\Downloads\dossier sans titre
2017-12-20 08:38 - 2017-03-18 22:03 - 000000000 ____D C:\WINDOWS\AppReadiness
2017-12-19 18:15 - 2017-03-18 22:01 - 000000000 ____D C:\WINDOWS\INF
2017-12-19 18:15 - 2017-03-18 21:51 - 000000000 ____D C:\WINDOWS\CbsTemp
2017-12-19 17:10 - 2017-08-24 19:57 - 000000000 ____D C:\Users\Vivicaca\AppData\Roaming\uTorrent
2017-12-19 16:44 - 2017-11-07 18:09 - 000000000 ___RD C:\Users\Vivicaca\Downloads\New folder (2)
2017-12-19 16:43 - 2010-08-30 12:33 - 000000000 ____D C:\Users\Vivicaca\AppData\LocalLow\Temp
2017-12-15 20:06 - 2017-07-27 20:52 - 000000000 ____D C:\Users\Vivicaca
2017-12-15 12:24 - 2017-03-18 22:03 - 000000000 ___HD C:\Program Files\WindowsApps
2017-12-14 15:18 - 2017-03-18 22:03 - 000000000 ____D C:\WINDOWS\rescache
2017-12-14 13:46 - 2016-06-18 14:33 - 000000000 ____D C:\Users\Vivicaca\AppData\Local\Packages
2017-12-13 19:30 - 2016-04-27 07:42 - 000000000 __RHD C:\Users\Public\AccountPictures
2017-12-13 18:13 - 2017-07-27 20:46 - 005024584 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2017-12-13 18:10 - 2017-06-15 12:58 - 000000000 ___SD C:\WINDOWS\UpdateAssistantV2
2017-12-13 18:10 - 2017-03-18 22:03 - 000000000 ____D C:\WINDOWS\system32\oobe
2017-12-13 12:11 - 2017-10-12 17:43 - 133326408 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT-KB890830.exe
2017-12-13 12:11 - 2013-07-11 22:41 - 000000000 ____D C:\WINDOWS\system32\MRT
2017-12-13 12:09 - 2010-09-02 07:18 - 133326408 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2017-12-09 12:16 - 2017-09-19 12:02 - 000001228 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2017-12-09 12:16 - 2016-09-02 02:02 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2017-12-04 20:22 - 2017-07-27 20:50 - 001337010 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2017-12-02 03:25 - 2017-03-18 22:06 - 000835576 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2017-12-02 03:25 - 2017-03-18 22:06 - 000177656 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2017-12-01 10:55 - 2017-04-11 23:02 - 000002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2017-11-23 23:32 - 2012-09-11 12:15 - 000000000 ____D C:\Program Files (x86)\Steam
2017-11-21 18:51 - 2010-08-26 05:56 - 000545440 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
==================== Files in the root of some directories =======
2016-11-25 08:39 - 2016-11-25 08:39 - 012194816 _____ (Cockos Incorporated) C:\Program Files (x86)\reaper.exe
2015-06-04 02:53 - 2015-11-16 01:51 - 000000132 _____ () C:\Users\Vivicaca\AppData\Roaming\Adobe PNG Format CS5 Prefs
2013-12-06 02:34 - 2013-12-06 02:35 - 000181116 _____ () C:\Users\Vivicaca\AppData\Roaming\FlamethrowerDriver_Install.log
2015-01-15 23:38 - 2015-01-15 23:38 - 000000655 _____ () C:\Users\Vivicaca\AppData\Roaming\MPQEditor.ini
2012-07-31 12:14 - 2012-08-02 01:53 - 000000808 _____ () C:\Users\Vivicaca\AppData\Roaming\VIVICACA-PC.MTBF.txt
2010-11-30 20:24 - 2013-11-19 09:01 - 000011776 _____ () C:\Users\Vivicaca\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2013-03-26 00:15 - 2013-11-11 20:02 - 000000600 _____ () C:\Users\Vivicaca\AppData\Local\PUTTY.RND
2011-02-26 16:14 - 2015-10-10 23:50 - 000007596 _____ () C:\Users\Vivicaca\AppData\Local\Resmon.ResmonCfg
Some files in TEMP:
====================
2017-12-20 11:21 - 2017-12-20 11:21 - 000032768 _____ () C:\Users\Vivicaca\AppData\Local\Temp\hh5uaiwx.dll
==================== Bamital & volsnap ======================
(There is no automatic fix for files that do not pass verification.)
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2017-12-21 12:28
==================== End of FRST.txt ============================
Ran by Vivicaca (administrator) on VIVICACA-PC (21-12-2017 14:43:16)
Running from C:\Users\Vivicaca\Charlotte\Desktop
Loaded Profiles: Vivicaca (Available Profiles: Vivicaca & DefaultAppPool)
Platform: Windows 10 Pro Version 1703 15063.786 (X64) Language: English (United States)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(AMD) C:\Windows\System32\atiesrxx.exe
() C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.05\AsSysCtrlService.exe
() C:\Program Files (x86)\GNU\GnuPG\dirmngr.exe
(Hi-Rez Studios) C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe
(Hewlett-Packard Company) C:\Program Files (x86)\HP\HPBDSService\HPBDSService.exe
(HP) C:\Program Files (x86)\HP\HPLaserJetService\HPLaserJetService.exe
(Microsoft Corporation) C:\Windows\System32\mqsvc.exe
(Native Instruments GmbH) C:\Program Files\Common Files\Native Instruments\Hardware\NIHardwareService.exe
(PACE Anti-Piracy, Inc.) C:\Program Files (x86)\Common Files\PACE\Services\LicenseServices\LDSvc.exe
(PC Tools) C:\Program Files (x86)\Common Files\PC Tools\sMonitor\StartManSvc.exe
(Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.12.17007.17123-0\MsMpEng.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.12.17007.17123-0\NisSrv.exe
() C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.10.572.0_x64__kzf8qxf38zg5c\SkypeHost.exe
(hxxp://tortoisesvn.net) C:\Program Files (x86)\TortoiseSVN\bin\TSVNCache.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(Microsoft Corporation) C:\Windows\System32\Taskmgr.exe
(HP Inc.) C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
(Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe
(hxxp://tortoisesvn.net) C:\Program Files (x86)\TortoiseSVN\bin\TSVNCache.exe
==================== Registry (Whitelisted) ===========================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [629152 2017-03-18] (Microsoft Corporation)
HKLM\...\Run: [UMonit] => C:\WINDOWS\SysWOW64\UMonit64.exe [45056 2014-07-07] ()
HKLM\...\Run: [HDAudDeck] => C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe [5299320 2012-10-25] (VIA)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [444904 2012-09-20] (Adobe Systems Incorporated)
HKLM\...\Run: [Everything] => C:\Program Files\Everything\Everything.exe [1441792 2014-08-06] ()
HKLM-x32\...\Run: [HDAudDeck] => C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe [5299320 2012-10-25] (VIA)
HKLM-x32\...\Run: [AdobeCS5ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe [406992 2010-02-22] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [SwitchBoard] => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [49208 2011-03-24] (Hewlett-Packard)
HKLM-x32\...\Run: [StatusAlerts] => C:\Program Files (x86)\HP\StatusAlerts\bin\HPStatusAlerts.exe [309120 2012-02-02] (Hewlett-Packard Company)
HKU\S-1-5-21-2317999798-2289613410-81454934-1001\...\Run: [Google Update] => C:\Users\Vivicaca\AppData\Local\Google\Update\1.3.33.5\GoogleUpdateCore.exe
HKU\S-1-5-21-2317999798-2289613410-81454934-1001\...\Run: [com.squirrel.slack.slack] => C:\Users\Vivicaca\AppData\Local\slack\Update.exe [1584656 2017-10-19] ()
HKU\S-1-5-21-2317999798-2289613410-81454934-1001\...\Run: [uTorrent] => C:\Users\Vivicaca\AppData\Roaming\uTorrent\uTorrent.exe [1981624 2017-12-03] (BitTorrent Inc.)
HKU\S-1-5-21-2317999798-2289613410-81454934-1001\...\MountPoints2: {f0b8bf44-526f-11e6-a944-806e6f6e6963} - "D:\start.exe"
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Hosts: 127.0.0.1 activate.adobe.com
Tcpip\Parameters: [DhcpNameServer] 192.168.0.254
Tcpip\..\Interfaces\{5310af2d-7564-41b9-b760-96dc30fc831c}: [DhcpNameServer] 192.168.0.254
Tcpip\..\Interfaces\{c8e0e385-6341-40e6-b071-4669ac14c991}: [DhcpNameServer] 192.168.0.254
Internet Explorer:
==================
HKU\S-1-5-21-2317999798-2289613410-81454934-1001\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://fr.msn.com/?ocid=iehp
SearchScopes: HKU\S-1-5-21-2317999798-2289613410-81454934-1001 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
BHO-x32: ContributeBHO Class -> {074C1DC5-9320-4A9A-947D-C042949C6216} -> C:\Program Files (x86)\Adobe\Adobe Contribute CS5\Plugins\IEPlugin\contributeieplugin.dll [2010-03-27] (Adobe Systems, Inc.)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2013-12-18] (Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2013-12-18] (Oracle Corporation)
Toolbar: HKLM-x32 - Contribute Toolbar - {517BDDE4-E3A7-4570-B21E-2B52B6139FC7} - C:\Program Files (x86)\Adobe\Adobe Contribute CS5\Plugins\IEPlugin\contributeieplugin.dll [2010-03-27] (Adobe Systems, Inc.)
FireFox:
========
FF DefaultProfile:
FF DefaultProfile: 54rirpb6.default
FF ProfilePath: C:\Users\Vivicaca\AppData\Roaming\Mozilla\Firefox\Profiles\54rirpb6.default [2017-12-21]
FF Extension: (uBlock Origin) - C:\Users\Vivicaca\AppData\Roaming\Mozilla\Firefox\Profiles\54rirpb6.default\Extensions\uBlock0@raymondhill.net.xpi [2017-12-15]
FF Extension: (NoScript) - C:\Users\Vivicaca\AppData\Roaming\Mozilla\Firefox\Profiles\54rirpb6.default\Extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}.xpi [2017-12-19]
FF HKLM-x32\...\Firefox\Extensions: [{01A8CA0A-4C96-465b-A49B-65C46FAD54F9}] - C:\Program Files (x86)\Adobe\Adobe Contribute CS5\Plugins\FirefoxPlugin\{01A8CA0A-4C96-465b-A49B-65C46FAD54F9}
FF Extension: (Adobe Contribute Toolbar) - C:\Program Files (x86)\Adobe\Adobe Contribute CS5\Plugins\FirefoxPlugin\{01A8CA0A-4C96-465b-A49B-65C46FAD54F9} [2015-03-26] [Legacy] [not signed]
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_23_0_0_162.dll [2016-09-15] ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] ( Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [2012-09-20] (Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_23_0_0_162.dll [2016-09-15] ()
FF Plugin-x32: @java.com/DTPlugin,version=10.51.2 -> C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll [2013-12-18] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.51.2 -> C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll [2013-12-18] (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-04-01] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-04-01] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3538.0513 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-04-01] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-04-01] (Microsoft Corporation)
FF Plugin-x32: @real.com/nppl3260;version=6.0.12.69 -> C:\Program Files (x86)\Media Convert Master\codec\real\browser\plugins\nppl3260.dll [No File]
FF Plugin-x32: @real.com/nprpjplug;version=6.0.12.69 -> C:\Program Files (x86)\Media Convert Master\codec\real\browser\plugins\nprpjplug.dll [No File]
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-15] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-15] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2017-11-04] (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll [2012-09-20] (Adobe Systems)
FF Plugin HKU\S-1-5-21-2317999798-2289613410-81454934-1001: @tools.google.com/Google Update;version=3 -> C:\Users\Vivicaca\AppData\Local\Google\Update\1.3.33.5\npGoogleUpdate3.dll [No File]
FF Plugin HKU\S-1-5-21-2317999798-2289613410-81454934-1001: @tools.google.com/Google Update;version=9 -> C:\Users\Vivicaca\AppData\Local\Google\Update\1.3.33.5\npGoogleUpdate3.dll [No File]
FF Plugin HKU\S-1-5-21-2317999798-2289613410-81454934-1001: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Vivicaca\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [No File]
FF Plugin HKU\S-1-5-21-2317999798-2289613410-81454934-1001: ubisoft.com/uplaypc -> C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll [2017-02-04] ()
Chrome:
=======
CHR DefaultProfile: Default
CHR HomePage: Default -> hxxp://www.google.com/
CHR StartupUrls: Default -> "","hxxp://www.google.com/","hxxps://isearch.avg.com/?cid={9ED8146E-D360-417C-B20D-351AD40342DB}&mid=2216993a35e247d08ecf6f3a42deceb0-4f3117d4fab6e0a35e01f7d5c97f6b069ad45913&lang=en&ds=st011&pr=sa&d=2012-09-21 13:32:45&v=12.2.5.34&sap=hp"
CHR Profile: C:\Users\Vivicaca\AppData\Local\Google\Chrome\User Data\Default [2017-12-21]
CHR Extension: (Docs) - C:\Users\Vivicaca\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-16]
CHR Extension: (Google Drive) - C:\Users\Vivicaca\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-31]
CHR Extension: (YouTube) - C:\Users\Vivicaca\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-10-31]
CHR Extension: (Adblock Plus) - C:\Users\Vivicaca\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2017-09-29]
CHR Extension: (FB Graffiti) - C:\Users\Vivicaca\AppData\Local\Google\Chrome\User Data\Default\Extensions\cmnchaikmnbbceccglncolgmbheoiehp [2015-02-05]
CHR Extension: (Recherche Google) - C:\Users\Vivicaca\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-31]
CHR Extension: (Adobe Acrobat) - C:\Users\Vivicaca\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2017-03-04]
CHR Extension: (Google Docs hors connexion) - C:\Users\Vivicaca\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-04-16]
CHR Extension: (Troll Emoticons) - C:\Users\Vivicaca\AppData\Local\Google\Chrome\User Data\Default\Extensions\hndllphbhpadfpoikpaofkkkpkpnmjik [2013-12-17]
CHR Extension: (Auto Refresh) - C:\Users\Vivicaca\AppData\Local\Google\Chrome\User Data\Default\Extensions\ifooldnmmcmlbdennkpdnlnbgbmfalko [2017-12-20]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Vivicaca\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-09-03]
CHR Extension: (Gmail) - C:\Users\Vivicaca\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-04-23]
CHR Extension: (Chrome Media Router) - C:\Users\Vivicaca\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-09-29]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
StartMenuInternet: Google Chrome - C:\Users\Vivicaca\AppData\Local\Google\Chrome\Application\chrome.exe
==================== Services (Whitelisted) ====================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [77128 2015-01-20] (Apple Inc.)
R2 AsSysCtrlService; C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.05\AsSysCtrlService.exe [109056 2010-06-24] () [File not signed]
S4 DigiRefresh; C:\Program Files (x86)\Digidesign\Drivers\MMERefresh.exe [77824 2008-12-03] (Digidesign, A Division of Avid Technology, Inc.) [File not signed]
R2 DirMngr; C:\Program Files (x86)\GNU\GnuPG\dirmngr.exe [216576 2015-09-09] () [File not signed]
U2 HiPatchService; C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe [9728 2015-11-03] (Hi-Rez Studios) [File not signed]
R2 HP DS Service; C:\Program Files (x86)\HP\HPBDSService\HPBDSService.exe [13824 2011-10-17] (Hewlett-Packard Company) [File not signed]
R2 HP LaserJet Service; C:\Program Files (x86)\HP\HPLaserJetService\HPLaserJetService.exe [164352 2011-08-03] (HP) [File not signed]
R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [29728 2016-08-15] (HP Inc.)
R2 Net Driver HPZ12; C:\Windows\System32\HPZinw12.dll [50688 2011-04-13] (Hewlett-Packard) [File not signed]
R2 NIHardwareService; C:\Program Files\Common Files\Native Instruments\Hardware\NIHardwareService.exe [5352960 2011-04-07] (Native Instruments GmbH) [File not signed]
S2 Norton PC Checkup Application Launcher; C:\Program Files (x86)\Norton PC Checkup\Engine\2.0.17.20\SymcPCCULaunchSvc.exe [135608 2011-11-07] (Symantec Corporation)
S2 PCCUJobMgr; C:\Program Files (x86)\Norton PC Checkup\Engine\2.0.17.20\ccSvcHst.exe [126392 2011-11-07] (Symantec Corporation)
R2 PCToolsSSDMonitorSvc; C:\Program Files (x86)\Common Files\PC Tools\sMonitor\StartManSvc.exe [632792 2010-10-01] (PC Tools)
R2 Pml Driver HPZ12; C:\Windows\System32\HPZipm12.dll [66048 2011-04-13] (Hewlett-Packard) [File not signed]
S4 Razer Game Scanner Service; C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe [187072 2015-02-05] ()
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [3913064 2017-03-19] (Microsoft Corporation)
S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [File not signed]
S3 VSStandardCollectorService140; C:\Program Files (x86)\Microsoft Visual Studio 14.0\Team Tools\DiagnosticsHub\Collector\StandardCollector.Service.exe [108776 2016-09-06] (Microsoft Corporation)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.12.17007.17123-0\NisSrv.exe [356176 2017-12-07] (Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.12.17007.17123-0\MsMpEng.exe [105792 2017-12-07] (Microsoft Corporation)
===================== Drivers (Whitelisted) ======================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [13440 2010-04-22] ()
R3 athr; C:\WINDOWS\System32\drivers\athw10x.sys [4320176 2017-08-28] (Qualcomm Atheros Communications, Inc.)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [131712 2016-09-05] (Samsung Electronics Co., Ltd.)
S3 hitmanpro37; C:\WINDOWS\system32\drivers\hitmanpro37.sys [55232 2017-07-14] ()
R3 MAFWPROFIRE; C:\WINDOWS\system32\DRIVERS\MAudioProFire.sys [288976 2013-06-03] (M-Audio, a brand of inMusic Brands, Inc.)
R1 MpKsl8e2bc6b9; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{60416BAB-8189-4FB5-B198-61FEA1A4224B}\MpKsl8e2bc6b9.sys [58120 2017-12-21] (Microsoft Corporation)
S3 MRV6X64P; C:\WINDOWS\System32\DRIVERS\MRVW13C.sys [244736 2007-05-03] (Marvell Semiconductor, Inc) [File not signed]
R3 MTsensor; C:\WINDOWS\system32\DRIVERS\ASACPI.sys [17280 2013-05-17] ()
S3 NPF; C:\WINDOWS\System32\drivers\npf.sys [47632 2009-10-20] (CACE Technologies, Inc.)
S3 PCAMp50a64; C:\WINDOWS\System32\Drivers\PCAMp50a64.sys [43328 2006-11-28] (Printing Communications Assoc., Inc. (PCAUSA))
S3 PCASp50a64; C:\WINDOWS\System32\Drivers\PCASp50a64.sys [41280 2006-11-28] (Printing Communications Assoc., Inc. (PCAUSA))
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [1020008 2017-10-31] (Realtek )
S3 rzp1endpt; C:\WINDOWS\System32\drivers\rzp1endpt.sys [40104 2014-12-30] (Razer Inc)
R2 rzpmgrk; C:\Windows\system32\drivers\rzpmgrk.sys [37184 2015-02-05] (Razer, Inc.)
R2 rzpnk; C:\Windows\system32\drivers\rzpnk.sys [129600 2015-03-03] (Razer, Inc.)
S3 rzvmouse; C:\WINDOWS\System32\drivers\rzvmouse.sys [31912 2014-12-30] (Razer Inc)
S3 SDFRd; C:\WINDOWS\System32\drivers\SDFRd.sys [31128 2017-03-18] ()
R3 SensorsSimulatorDriver; C:\WINDOWS\System32\drivers\WUDFRd.sys [220672 2017-03-18] (Microsoft Corporation)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [165504 2016-09-05] (Samsung Electronics Co., Ltd.)
R3 taphss6; C:\WINDOWS\System32\drivers\taphss6.sys [42064 2016-12-06] (Anchorfree Inc.)
S3 vjoy; C:\WINDOWS\System32\DRIVERS\vjoy.sys [56560 2015-08-15] (Shaul Eizikovich)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [46072 2017-12-07] (Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [288848 2017-12-07] (Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [129616 2017-12-07] (Microsoft Corporation)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2017-12-21 12:15 - 2017-12-21 12:28 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2017-12-21 10:50 - 2017-12-21 10:50 - 000000000 ____D C:\WINDOWS\Panther
2017-12-20 13:58 - 2017-12-20 13:58 - 000055978 _____ C:\Users\Vivicaca\Downloads\DOSSIER TDAH.pdf
2017-12-19 18:10 - 2017-12-21 12:14 - 000000022 _____ C:\WINDOWS\S.dirmngr
2017-12-19 16:19 - 2017-12-19 16:19 - 000000000 ____D C:\Users\Vivicaca\AppData\LocalLow\uTorrent
2017-12-17 23:26 - 2017-12-17 23:26 - 000061359 _____ C:\Users\Vivicaca\Downloads\Valerian.jpeg
2017-12-13 19:47 - 2017-12-13 19:47 - 000395530 _____ C:\Users\Vivicaca\Downloads\E-billet.pdf
2017-12-13 11:56 - 2017-11-30 04:33 - 001144728 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2017-12-13 11:56 - 2017-11-30 04:33 - 001015704 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2017-12-13 11:56 - 2017-11-30 04:33 - 000038808 _____ (Microsoft Corporation) C:\WINDOWS\system32\OOBEUpdater.exe
2017-12-13 11:56 - 2017-11-30 04:29 - 008319384 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2017-12-13 11:56 - 2017-11-30 04:26 - 002647216 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2017-12-13 11:56 - 2017-11-30 04:24 - 000870896 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll
2017-12-13 11:56 - 2017-11-30 04:23 - 007910960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2017-12-13 11:56 - 2017-11-30 04:23 - 001194248 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetcore.dll
2017-12-13 11:56 - 2017-11-30 04:00 - 002166808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2017-12-13 11:56 - 2017-11-30 03:59 - 023678464 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2017-12-13 11:56 - 2017-11-30 03:58 - 006763128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2017-12-13 11:56 - 2017-11-30 03:58 - 000702032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttp.dll
2017-12-13 11:56 - 2017-11-30 03:57 - 001123968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetcore.dll
2017-12-13 11:56 - 2017-11-30 03:45 - 000119808 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataTimeUtil.dll
2017-12-13 11:56 - 2017-11-30 03:45 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzres.dll
2017-12-13 11:56 - 2017-11-30 03:44 - 023679488 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2017-12-13 11:56 - 2017-11-30 03:44 - 019334144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2017-12-13 11:56 - 2017-11-30 03:44 - 000171008 _____ (Microsoft Corporation) C:\WINDOWS\system32\itss.dll
2017-12-13 11:56 - 2017-11-30 03:44 - 000110592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2017-12-13 11:56 - 2017-11-30 03:44 - 000042496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vwifimp.sys
2017-12-13 11:56 - 2017-11-30 03:43 - 020511232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2017-12-13 11:56 - 2017-11-30 03:43 - 000164352 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscript.exe
2017-12-13 11:56 - 2017-11-30 03:43 - 000095232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataTimeUtil.dll
2017-12-13 11:56 - 2017-11-30 03:43 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tzres.dll
2017-12-13 11:56 - 2017-11-30 03:42 - 001878016 _____ (Microsoft Corporation) C:\WINDOWS\system32\AzureSettingSyncProvider.dll
2017-12-13 11:56 - 2017-11-30 03:42 - 000560640 _____ (Microsoft Corporation) C:\WINDOWS\system32\iprtrmgr.dll
2017-12-13 11:56 - 2017-11-30 03:42 - 000304640 _____ (Microsoft Corporation) C:\WINDOWS\system32\dusmsvc.dll
2017-12-13 11:56 - 2017-11-30 03:42 - 000164352 _____ (Microsoft Corporation) C:\WINDOWS\system32\cscript.exe
2017-12-13 11:56 - 2017-11-30 03:42 - 000148992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\itss.dll
2017-12-13 11:56 - 2017-11-30 03:42 - 000100864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msscript.ocx
2017-12-13 11:56 - 2017-11-30 03:42 - 000080896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll
2017-12-13 11:56 - 2017-11-30 03:41 - 000527360 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadcloudap.dll
2017-12-13 11:56 - 2017-11-30 03:41 - 000414720 _____ (Microsoft Corporation) C:\WINDOWS\system32\provhandlers.dll
2017-12-13 11:56 - 2017-11-30 03:41 - 000225792 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2017-12-13 11:56 - 2017-11-30 03:41 - 000222208 _____ (Microsoft Corporation) C:\WINDOWS\system32\scrobj.dll
2017-12-13 11:56 - 2017-11-30 03:41 - 000146944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscript.exe
2017-12-13 11:56 - 2017-11-30 03:40 - 012803072 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2017-12-13 11:56 - 2017-11-30 03:40 - 000585216 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2017-12-13 11:56 - 2017-11-30 03:40 - 000528384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iprtrmgr.dll
2017-12-13 11:56 - 2017-11-30 03:40 - 000206336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scrobj.dll
2017-12-13 11:56 - 2017-11-30 03:40 - 000143360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cscript.exe
2017-12-13 11:56 - 2017-11-30 03:39 - 011888640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2017-12-13 11:56 - 2017-11-30 03:39 - 003206656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Bluetooth.Profiles.Gatt.dll
2017-12-13 11:56 - 2017-11-30 03:39 - 002809344 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2017-12-13 11:56 - 2017-11-30 03:39 - 000925696 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll
2017-12-13 11:56 - 2017-11-30 03:38 - 008195584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2017-12-13 11:56 - 2017-11-30 03:38 - 001248768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AzureSettingSyncProvider.dll
2017-12-13 11:56 - 2017-11-30 03:38 - 000684544 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
2017-12-13 11:56 - 2017-11-30 03:38 - 000636416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WpcWebFilter.dll
2017-12-13 11:56 - 2017-11-30 03:38 - 000497152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2017-12-13 11:56 - 2017-11-30 03:37 - 006252544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2017-12-13 11:56 - 2017-11-30 03:37 - 003306496 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2017-12-13 11:56 - 2017-11-30 03:37 - 002859520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2017-12-13 11:56 - 2017-11-30 03:37 - 001293824 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll
2017-12-13 11:56 - 2017-11-30 03:36 - 005557760 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbgeng.dll
2017-12-13 11:56 - 2017-11-30 03:36 - 004726784 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2017-12-13 11:56 - 2017-11-30 03:36 - 003652096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2017-12-13 11:56 - 2017-11-30 03:36 - 001802240 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2017-12-13 11:56 - 2017-11-30 03:36 - 001398784 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2017-12-13 11:56 - 2017-11-30 03:36 - 001019904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aadtb.dll
2017-12-13 11:56 - 2017-11-30 03:36 - 000755200 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2017-12-13 11:56 - 2017-11-30 03:36 - 000658432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2017-12-13 11:56 - 2017-11-30 03:35 - 001627136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2017-12-13 11:56 - 2017-11-30 03:34 - 004559360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbgeng.dll
2017-12-13 11:56 - 2017-11-17 10:46 - 002032536 _____ (Microsoft Corporation) C:\WINDOWS\system32\aitstatic.exe
2017-12-13 11:56 - 2017-11-17 10:46 - 001578904 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2017-12-13 11:56 - 2017-11-17 10:46 - 000821656 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.exe
2017-12-13 11:56 - 2017-11-17 10:46 - 000678808 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2017-12-13 11:56 - 2017-11-17 10:46 - 000613784 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2017-12-13 11:56 - 2017-11-17 10:46 - 000612248 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2017-12-13 11:56 - 2017-11-17 10:46 - 000484248 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcntel.dll
2017-12-13 11:56 - 2017-11-17 10:46 - 000379288 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2017-12-13 11:56 - 2017-11-17 10:46 - 000259992 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
2017-12-13 11:56 - 2017-11-17 10:46 - 000190360 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2017-12-13 11:56 - 2017-11-17 10:46 - 000136088 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2017-12-13 11:56 - 2017-11-17 10:46 - 000067992 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32appinventorycsp.dll
2017-12-13 11:56 - 2017-11-17 10:46 - 000034712 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe
2017-12-13 11:56 - 2017-11-17 10:41 - 000503704 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcasvc.dll
2017-12-13 11:56 - 2017-11-17 10:39 - 005477088 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneCoreUAPCommonProxyStub.dll
2017-12-13 11:56 - 2017-11-17 10:39 - 000643200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2017-12-13 11:56 - 2017-11-17 10:37 - 021353200 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2017-12-13 11:56 - 2017-11-17 10:31 - 000223640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aepic.dll
2017-12-13 11:56 - 2017-11-17 10:03 - 003668992 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2017-12-13 11:56 - 2017-11-17 10:00 - 002953216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2017-12-13 11:56 - 2017-11-17 09:59 - 000064512 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsrv.dll
2017-12-13 11:56 - 2017-11-17 09:56 - 000757248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdiWiFi.sys
2017-12-13 11:05 - 2017-12-13 11:06 - 000012649 _____ C:\Users\Vivicaca\Downloads\20171208121533583.pdf
2017-12-13 10:26 - 2017-12-12 15:58 - 000000226 _____ C:\Users\Vivicaca\Downloads\Neuropsys à contacter pour TDAH.txt
2017-12-12 10:36 - 2017-12-12 10:36 - 000000241 _____ C:\Users\Vivicaca\Downloads\Trucs à farmer à Zelda.txt
2017-12-09 15:57 - 2017-12-09 15:57 - 005799151 _____ C:\Users\Vivicaca\Downloads\politique aquatique 3.1 - 03_12_2017 10.12.m4a
2017-12-09 15:56 - 2017-12-09 15:56 - 004978576 _____ C:\Users\Vivicaca\Downloads\aint gonna cry instr - 01_11_2017 19.23.m4a
2017-12-08 17:20 - 2017-12-08 17:22 - 000000053 _____ C:\Users\Vivicaca\Downloads\Identifiants pôle emploi Toulouse.txt
2017-12-04 21:02 - 2017-12-04 21:02 - 000000375 _____ C:\WINDOWS\system32\sdi.cfg
2017-12-04 20:19 - 2017-08-28 18:47 - 004320176 _____ (Qualcomm Atheros Communications, Inc.) C:\WINDOWS\system32\Drivers\athw10x.sys
2017-12-04 20:06 - 2016-10-27 04:55 - 000919336 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\VMAPO64.DLL
2017-12-04 20:06 - 2016-10-27 04:55 - 000776456 _____ (Creative Technology Ltd.) C:\WINDOWS\SysWOW64\VMAPO32.DLL
2017-12-04 20:06 - 2016-10-27 04:55 - 000654560 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\VMTHX64.DLL
2017-12-04 20:06 - 2016-10-27 04:55 - 000588384 _____ (Creative Technology Ltd.) C:\WINDOWS\SysWOW64\VMTHX32.DLL
2017-12-04 20:06 - 2016-10-27 04:55 - 000419176 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\VMWRP64.DLL
2017-12-04 20:06 - 2016-10-27 04:55 - 000082960 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\VMPPLD64.DLL
2017-12-04 20:06 - 2016-10-27 04:55 - 000078792 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\VMPPCN64.DLL
2017-12-04 20:06 - 2016-10-27 04:54 - 002050984 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\VMAPO264.DLL
2017-12-04 20:06 - 2016-10-27 04:54 - 002045208 _____ (VIA Technologies, Inc.) C:\WINDOWS\system32\ViaMicArrayAPO.dll
2017-12-04 20:06 - 2016-10-27 04:54 - 001774288 _____ (Creative Technology Ltd.) C:\WINDOWS\SysWOW64\VMAPO232.DLL
2017-12-04 20:06 - 2016-10-27 04:54 - 001199104 _____ (VIA Technologies, Inc.) C:\WINDOWS\system32\ViaKaraokeApo.dll
2017-12-04 20:06 - 2016-10-27 04:54 - 000617488 _____ (VIA Technologies, Inc.) C:\WINDOWS\system32\VIASysFx.dll
2017-12-04 20:06 - 2016-10-27 04:53 - 003315336 _____ (VIA Technologies, Inc.) C:\WINDOWS\system32\VIAPropPageExt.dll
2017-12-04 20:06 - 2016-10-27 04:53 - 000140416 _____ (VIA Technologies,Inc.) C:\WINDOWS\system32\ViaKaraokePropPageExt.dll
2017-12-04 20:06 - 2016-10-27 04:53 - 000112256 _____ (VIA Technologies,Inc.) C:\WINDOWS\system32\ViaMicArrayPropPageExt.dll
2017-12-04 20:06 - 2016-10-27 04:51 - 000089464 _____ (Windows (R) Codename Longhorn DDK provider) C:\WINDOWS\system32\VtSrdAPO.dll
2017-12-04 20:06 - 2016-10-27 04:50 - 000069600 _____ (TODO:
2017-12-04 20:06 - 2016-10-27 04:50 - 000050904 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\Drivers\VMfilt64.sys
2017-12-04 20:03 - 2017-12-04 20:03 - 000018960 _____ (Logitech, Inc.) C:\WINDOWS\system32\Drivers\LNonPnP.sys
2017-12-04 20:03 - 2015-06-18 03:25 - 001854096 _____ (Logitech, Inc.) C:\WINDOWS\system32\LkmdfCoInst.dll
2017-12-04 20:03 - 2015-06-18 03:25 - 000086672 _____ (Logitech, Inc.) C:\WINDOWS\system32\Drivers\LHidFilt.Sys
2017-12-04 20:03 - 2015-06-18 03:25 - 000069264 _____ (Logitech, Inc.) C:\WINDOWS\system32\Drivers\LMouFilt.Sys
2017-12-04 20:03 - 2015-06-18 03:25 - 000063120 _____ (Logitech, Inc.) C:\WINDOWS\system32\LMouFiltCoInst.dll
2017-12-04 20:03 - 2015-06-18 03:25 - 000050832 _____ (Logitech, Inc.) C:\WINDOWS\system32\Drivers\LUsbFilt.sys
2017-12-04 19:07 - 2017-12-04 19:39 - 013170687 _____ C:\WINDOWS\system32\Drivers\DP_Sounds_HDMI_17102.7z
2017-12-04 19:03 - 2017-12-04 19:40 - 123163491 _____ C:\WINDOWS\system32\Drivers\DP_Touchpad_Alps_17113.7z
2017-12-04 19:02 - 2017-12-04 19:19 - 039160649 _____ C:\WINDOWS\system32\Drivers\DP_Touchpad_Others_17103.7z
2017-12-04 19:00 - 2017-12-04 19:40 - 052636559 _____ C:\WINDOWS\system32\Drivers\DP_CardReader_17113.7z
2017-12-04 19:00 - 2017-12-04 19:22 - 001506885 _____ C:\WINDOWS\system32\Drivers\DP_TV_Beholder_17000.7z
2017-12-04 18:58 - 2017-12-04 19:39 - 046417705 _____ C:\WINDOWS\system32\Drivers\DP_Bluetooth_17113.7z
2017-12-04 18:58 - 2017-12-04 19:37 - 013025242 _____ C:\WINDOWS\system32\Drivers\DP_zVirtual_17113.7z
2017-12-04 18:57 - 2017-12-04 19:15 - 021738609 _____ C:\WINDOWS\system32\Drivers\DP_Touchpad_Cypress_17000.7z
2017-12-04 18:54 - 2017-12-04 19:16 - 103216212 _____ C:\WINDOWS\system32\Drivers\DP_Sound_Others_17112.7z
2017-12-04 18:53 - 2017-12-04 19:17 - 020097440 _____ C:\WINDOWS\system32\Drivers\DP_LAN_Intel_17112.7z
2017-12-04 18:53 - 2017-12-04 19:12 - 024162669 _____ C:\WINDOWS\system32\Drivers\DP_Monitor_17112.7z
2017-12-04 18:52 - 2017-12-04 19:40 - 367539589 _____ C:\WINDOWS\system32\Drivers\DP_Touchpad_Synaptics_17113.7z
2017-12-04 18:52 - 2017-12-04 19:40 - 164925924 _____ C:\WINDOWS\system32\Drivers\DP_Chipset_17112.7z
2017-12-04 18:52 - 2017-12-04 19:39 - 226233832 _____ C:\WINDOWS\system32\Drivers\DP_WebCam_17113.7z
2017-12-04 18:52 - 2017-12-04 19:11 - 062740186 _____ C:\WINDOWS\system32\Drivers\DP_Sound_CMedia_17104.7z
2017-12-04 18:51 - 2017-12-04 19:40 - 361814658 _____ C:\WINDOWS\system32\Drivers\DP_Sounds_Realtek_17113.7z
2017-12-04 18:51 - 2017-12-04 19:40 - 113137901 _____ C:\WINDOWS\system32\Drivers\DP_LAN_Others_17112.7z
2017-12-04 18:51 - 2017-12-04 19:40 - 040488266 _____ C:\WINDOWS\system32\Drivers\DP_MassStorage_17111.7z
2017-12-04 18:51 - 2017-12-04 19:33 - 183549583 _____ C:\WINDOWS\system32\Drivers\DP_Sound_Conexant_17113.7z
2017-12-04 18:51 - 2017-12-04 19:22 - 016770092 _____ C:\WINDOWS\system32\Drivers\DP_LAN_Realtek-NT_17113.7z
2017-12-04 18:51 - 2017-12-04 19:10 - 017778046 _____ C:\WINDOWS\system32\Drivers\DP_xUSB_17105.7z
2017-12-04 18:50 - 2017-12-04 19:40 - 951602088 _____ C:\WINDOWS\system32\Drivers\DP_Videos_AMD_Server_17113.7z
2017-12-04 18:50 - 2017-12-04 19:40 - 318126068 _____ C:\WINDOWS\system32\Drivers\DP_WLAN-WiFi_17113.7z
2017-12-04 18:50 - 2017-12-04 19:40 - 2285828249 _____ C:\WINDOWS\system32\Drivers\DP_Videos_AMD-NT_17112.7z
2017-12-04 18:50 - 2017-12-04 19:40 - 1948133371 _____ C:\WINDOWS\system32\Drivers\DP_Video_nVIDIA_Server_17112.7z
2017-12-04 18:50 - 2017-12-04 19:40 - 176538308 _____ C:\WINDOWS\system32\Drivers\DP_Misc_17112.7z
2017-12-04 18:50 - 2017-12-04 19:40 - 1677960246 _____ C:\WINDOWS\system32\Drivers\DP_Video_nVIDIA-NT_17113.7z
2017-12-04 18:50 - 2017-12-04 19:40 - 133864571 _____ C:\WINDOWS\system32\Drivers\DP_Biometric_17113.7z
2017-12-04 18:50 - 2017-12-04 19:40 - 1273858669 _____ C:\WINDOWS\system32\Drivers\DP_Video_Intel-NT_17112.7z
2017-12-04 18:50 - 2017-12-04 19:40 - 1129309466 _____ C:\WINDOWS\system32\Drivers\DP_Printer_17112.7z
2017-12-04 18:50 - 2017-12-04 19:38 - 013550979 _____ C:\WINDOWS\system32\Drivers\DP_zUSB3_17105.7z
2017-12-04 18:50 - 2017-12-04 19:37 - 087408110 _____ C:\WINDOWS\system32\Drivers\DP_Vendor_17112.7z
2017-12-04 18:50 - 2017-12-04 19:37 - 011492721 _____ C:\WINDOWS\system32\Drivers\DP_Sound_ADI_17000.7z
2017-12-04 18:50 - 2017-12-04 19:35 - 306090643 _____ C:\WINDOWS\system32\Drivers\DP_Videos_Others_17105.7z
2017-12-04 18:50 - 2017-12-04 19:32 - 066311877 _____ C:\WINDOWS\system32\Drivers\DP_WWAN-4G_17102.7z
2017-12-04 18:50 - 2017-12-04 19:25 - 317029673 _____ C:\WINDOWS\system32\Drivers\DP_Videos_AMD-XP_17000.7z
2017-12-04 18:50 - 2017-12-04 19:24 - 028063642 _____ C:\WINDOWS\system32\Drivers\DP_TV_Aver_17072.7z
2017-12-04 18:50 - 2017-12-04 19:23 - 131782481 _____ C:\WINDOWS\system32\Drivers\DP_Sound_Creative_17094.7z
2017-12-04 18:50 - 2017-12-04 19:17 - 088842407 _____ C:\WINDOWS\system32\Drivers\DP_Video_Intel-XP_17073.7z
2017-12-04 18:50 - 2017-12-04 19:17 - 028274780 _____ C:\WINDOWS\system32\Drivers\DP_TV_DVB_17105.7z
2017-12-04 18:50 - 2017-12-04 19:16 - 064079062 _____ C:\WINDOWS\system32\Drivers\DP_Telephone_17073.7z
2017-12-04 18:50 - 2017-12-04 19:11 - 072961603 _____ C:\WINDOWS\system32\Drivers\DP_Sound_VIA_17000.7z
2017-12-04 18:50 - 2017-12-04 19:10 - 084193004 _____ C:\WINDOWS\system32\Drivers\DP_TV_Others_17075.7z
2017-12-04 18:50 - 2017-12-04 19:09 - 078825537 _____ C:\WINDOWS\system32\Drivers\DP_Sound_IDT_17000.7z
2017-12-04 18:50 - 2017-12-04 19:09 - 075038285 _____ C:\WINDOWS\system32\Drivers\DP_Modem_17024.7z
2017-12-04 18:50 - 2017-12-04 19:01 - 007398179 _____ C:\WINDOWS\system32\Drivers\DP_LAN_Realtek-XP_17023.7z
2017-12-04 18:50 - 2017-12-04 18:50 - 000000000 ____D C:\WINDOWS\system32\update
2017-12-04 18:48 - 2017-12-04 18:48 - 000000000 ____D C:\WINDOWS\system32\indexes
2017-12-04 18:47 - 2017-11-08 23:20 - 001727704 _____ (www.SamLab.ws) C:\Users\Vivicaca\Downloads\SDI_x64_R1793.exe
2017-12-04 18:47 - 2017-11-08 23:20 - 001530584 _____ (www.SamLab.ws) C:\Users\Vivicaca\Downloads\SDI_R1793.exe
2017-12-04 18:47 - 2017-02-21 14:12 - 000000000 ____D C:\Users\Vivicaca\Downloads\indexes
2017-12-04 18:47 - 2017-02-21 03:18 - 000000000 ____D C:\Users\Vivicaca\Downloads\tools
2017-12-04 18:47 - 2016-07-31 03:17 - 000000817 _____ C:\Users\Vivicaca\Downloads\SDI_auto.bat
2017-12-04 18:45 - 2017-12-04 18:46 - 004229389 _____ C:\Users\Vivicaca\Downloads\SDI_R1793.zip
2017-11-26 23:26 - 2017-11-26 23:26 - 000226986 _____ C:\Users\Vivicaca\Downloads\autorisation_velotoulouse.pdf
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2017-12-21 14:43 - 2017-09-15 10:37 - 000000000 ____D C:\FRST
2017-12-21 14:41 - 2017-07-27 20:46 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2017-12-21 12:16 - 2017-09-08 02:16 - 000000000 ____D C:\Users\Vivicaca\AppData\Local\TSVNCache
2017-12-21 12:14 - 2017-07-27 21:27 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2017-12-21 12:13 - 2017-03-18 12:40 - 001048576 _____ C:\WINDOWS\system32\config\BBI
2017-12-21 12:11 - 2017-05-28 19:39 - 000000000 ____D C:\AdwCleaner
2017-12-21 12:09 - 2017-07-13 10:04 - 000000000 ____D C:\Users\Vivicaca\AppData\Roaming\ZHP
2017-12-21 11:32 - 2014-06-13 09:42 - 000000000 ____D C:\Users\Vivicaca\AppData\Local\Adobe
2017-12-21 11:31 - 2016-11-18 13:08 - 000000000 ____D C:\Users\Vivicaca\AppData\LocalLow\Mozilla
2017-12-21 11:16 - 2017-08-30 19:51 - 000000000 ____D C:\Users\Vivicaca\Downloads\dossier sans titre
2017-12-20 08:38 - 2017-03-18 22:03 - 000000000 ____D C:\WINDOWS\AppReadiness
2017-12-19 18:15 - 2017-03-18 22:01 - 000000000 ____D C:\WINDOWS\INF
2017-12-19 18:15 - 2017-03-18 21:51 - 000000000 ____D C:\WINDOWS\CbsTemp
2017-12-19 17:10 - 2017-08-24 19:57 - 000000000 ____D C:\Users\Vivicaca\AppData\Roaming\uTorrent
2017-12-19 16:44 - 2017-11-07 18:09 - 000000000 ___RD C:\Users\Vivicaca\Downloads\New folder (2)
2017-12-19 16:43 - 2010-08-30 12:33 - 000000000 ____D C:\Users\Vivicaca\AppData\LocalLow\Temp
2017-12-15 20:06 - 2017-07-27 20:52 - 000000000 ____D C:\Users\Vivicaca
2017-12-15 12:24 - 2017-03-18 22:03 - 000000000 ___HD C:\Program Files\WindowsApps
2017-12-14 15:18 - 2017-03-18 22:03 - 000000000 ____D C:\WINDOWS\rescache
2017-12-14 13:46 - 2016-06-18 14:33 - 000000000 ____D C:\Users\Vivicaca\AppData\Local\Packages
2017-12-13 19:30 - 2016-04-27 07:42 - 000000000 __RHD C:\Users\Public\AccountPictures
2017-12-13 18:13 - 2017-07-27 20:46 - 005024584 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2017-12-13 18:10 - 2017-06-15 12:58 - 000000000 ___SD C:\WINDOWS\UpdateAssistantV2
2017-12-13 18:10 - 2017-03-18 22:03 - 000000000 ____D C:\WINDOWS\system32\oobe
2017-12-13 12:11 - 2017-10-12 17:43 - 133326408 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT-KB890830.exe
2017-12-13 12:11 - 2013-07-11 22:41 - 000000000 ____D C:\WINDOWS\system32\MRT
2017-12-13 12:09 - 2010-09-02 07:18 - 133326408 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2017-12-09 12:16 - 2017-09-19 12:02 - 000001228 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2017-12-09 12:16 - 2016-09-02 02:02 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2017-12-04 20:22 - 2017-07-27 20:50 - 001337010 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2017-12-02 03:25 - 2017-03-18 22:06 - 000835576 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2017-12-02 03:25 - 2017-03-18 22:06 - 000177656 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2017-12-01 10:55 - 2017-04-11 23:02 - 000002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2017-11-23 23:32 - 2012-09-11 12:15 - 000000000 ____D C:\Program Files (x86)\Steam
2017-11-21 18:51 - 2010-08-26 05:56 - 000545440 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
==================== Files in the root of some directories =======
2016-11-25 08:39 - 2016-11-25 08:39 - 012194816 _____ (Cockos Incorporated) C:\Program Files (x86)\reaper.exe
2015-06-04 02:53 - 2015-11-16 01:51 - 000000132 _____ () C:\Users\Vivicaca\AppData\Roaming\Adobe PNG Format CS5 Prefs
2013-12-06 02:34 - 2013-12-06 02:35 - 000181116 _____ () C:\Users\Vivicaca\AppData\Roaming\FlamethrowerDriver_Install.log
2015-01-15 23:38 - 2015-01-15 23:38 - 000000655 _____ () C:\Users\Vivicaca\AppData\Roaming\MPQEditor.ini
2012-07-31 12:14 - 2012-08-02 01:53 - 000000808 _____ () C:\Users\Vivicaca\AppData\Roaming\VIVICACA-PC.MTBF.txt
2010-11-30 20:24 - 2013-11-19 09:01 - 000011776 _____ () C:\Users\Vivicaca\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2013-03-26 00:15 - 2013-11-11 20:02 - 000000600 _____ () C:\Users\Vivicaca\AppData\Local\PUTTY.RND
2011-02-26 16:14 - 2015-10-10 23:50 - 000007596 _____ () C:\Users\Vivicaca\AppData\Local\Resmon.ResmonCfg
Some files in TEMP:
====================
2017-12-20 11:21 - 2017-12-20 11:21 - 000032768 _____ () C:\Users\Vivicaca\AppData\Local\Temp\hh5uaiwx.dll
==================== Bamital & volsnap ======================
(There is no automatic fix for files that do not pass verification.)
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2017-12-21 12:28
==================== End of FRST.txt ============================