Publicité
Publicité
Format du document : text/plain
Prévisualisation
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 28-03-2020
Ran by Chris (administrator) on CHRIS-PC (29-03-2020 05:13:11)
Running from C:\Users\Chris\Desktop
Loaded Profiles: Chris & Administrator (Available Profiles: Chris & Administrator)
Platform: Windows 10 Pro Version 1903 18362.10022 (X64) Language: Anglais (États-Unis)
Default browser: Chrome
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(@ByELDI -> @ByELDI) [File not signed] C:\Program Files\KMSpico\Service_KMS.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswEngSrv.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswidsagent.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\wsc_proxy.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avgnt.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avguard.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avshadow.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\ProtectedService.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\sched.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Optimizer Host\Avira.OptimizerHost.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\SoftwareUpdater\Avira.SoftwareUpdater.ServiceHost.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\VPN\Avira.VpnService.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG;) C:\Program Files (x86)\Avira\Home Guard\Avira.HomeGuard.Service.exe
(Broadcom Corporation -> Broadcom Corporation.) C:\Windows\System32\BtwRSupportService.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(Electronic Arts, Inc. -> Electronic Arts) C:\Program Files (x86)\Origin\OriginWebHelperService.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.452\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.452\GoogleCrashHandler64.exe
(HTC Corp. -> HTC) C:\Program Files\HTC Account\Htc.Identity.Service.exe
(IBM -> IBM Corp.) C:\Program Files (x86)\Trusteer\Rapport\bin\RapportMgmtService.exe
(IBM -> IBM Corp.) C:\Program Files (x86)\Trusteer\Rapport\bin\RapportService.exe
(IBM -> IBM Corp.) C:\Program Files (x86)\Trusteer\Rapport\bin\x64\RapportInjService_x64.exe
(IBM -> IBM Corp.) C:\Program Files (x86)\Trusteer\Rapport\bin\x64\RapportInjService_x64.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(McAfee, LLC -> McAfee, Inc.) C:\Program Files\McAfee\WebAdvisor\servicehost.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12003.1001.1.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.YourPhone_1.20031.74.0_x64__8wekyb3d8bbwe\YourPhoneServer\YourPhoneServer.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\browser_broker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeSH.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\Speech_OneCore\common\SpeechRuntime.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\WWAHost.exe
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_e0a5a1b06de180e3\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_e0a5a1b06de180e3\Display.NvContainer\NVDisplay.Container.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Razer USA Ltd. -> ) C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe
(Razer USA Ltd. -> ) C:\Program Files (x86)\Razer\Synapse3\UserProcess\Razer Synapse Service Process.exe
(Razer USA Ltd. -> ) C:\Program Files (x86)\Razer\Synapse3\WPFUI\Framework\Razer Synapse 3 Host\Razer Synapse 3.exe
(Razer USA Ltd. -> Razer Inc) C:\Program Files (x86)\Razer\Razer Services\GMS\GameManagerService.exe
(Razer USA Ltd. -> Razer Inc) C:\ProgramData\Razer\Synapse\Devices\Razer Surround\Driver\RzSurroundVADStreamingService.exe
(Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKServer.exe
(Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKService.exe
(Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer\Razer Cortex\RzKLService.exe
(Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer\Razer Services\Razer Central\Razer Central.exe
(Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer\Razer Services\Razer Central\RazerCentralService.exe
(Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe
(Razer USA Ltd. -> The CefSharp Authors) C:\Program Files (x86)\Razer\Razer Services\Razer Central\CefSharp.BrowserSubprocess.exe
(Realtek Semiconductor Corp -> ) C:\Windows\runSW.exe
(Realtek Semiconductor Corp -> Realtek) C:\Program Files (x86)\Realtek\USB Wireless LAN Utility\RtlService.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.) C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe
(SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION) C:\Program Files (x86)\Common Files\EPSON\EBAPI\eEBSvc.exe
(SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe
(Solute GmbH -> Avira) C:\Program Files (x86)\Avira\Safe Shopping\Avira Safe Shopping.exe
(TeamViewer GmbH -> TeamViewer GmbH) C:\Users\Public\temp\TeamViewer\TeamViewer_Service.exe
Failed to access process -> mbamtray.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [277664 2020-02-25] (Avast Software s.r.o. -> AVAST Software)
HKLM-x32\...\Run: [Avira SystrayStartTrigger] => C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe [238512 2020-02-26] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [Avira System Speedup User Starter] => C:\Program Files (x86)\Avira\System Speedup\Avira.SystemSpeedup.Core.Common.Starter.exe [331368 2020-01-30] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [6261248 2020-03-19] (Dropbox, Inc -> Dropbox, Inc.)
HKLM-x32\...\Run: [FUFAXRCV] => C:\Program Files (x86)\Epson Software\FAX Utility\FUFAXRCV.exe [665568 2018-10-05] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
HKLM-x32\...\Run: [FUFAXSTM] => C:\Program Files (x86)\Epson Software\FAX Utility\FUFAXSTM.exe [870368 2018-10-05] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-278662808-3718442249-2288055692-1001\...\Run: [EPSON7CDA87] => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_IATIFHA.EXE [223232 2008-11-17] (Microsoft Windows Hardware Compatibility Publisher -> SEIKO EPSON CORPORATION)
HKU\S-1-5-21-278662808-3718442249-2288055692-1001\...\Run: [WorkForce 310(Network)] => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_IATIFHA.EXE [223232 2008-11-17] (Microsoft Windows Hardware Compatibility Publisher -> SEIKO EPSON CORPORATION)
HKU\S-1-5-21-278662808-3718442249-2288055692-1001\...\Run: [ViveportDesktop] => D:\Program Files (x86)\VIVE\PCClient\Vive.exe [34835016 2020-01-15] (HTC Corp. -> HTC)
HKU\S-1-5-21-278662808-3718442249-2288055692-1001\...\Run: [Google Update] => C:\Users\Chris\AppData\Local\Google\Update\1.3.35.452\GoogleUpdateCore.exe [217544 2020-03-20] (Google LLC -> Google LLC)
HKU\S-1-5-21-278662808-3718442249-2288055692-1001\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
HKU\S-1-5-21-278662808-3718442249-2288055692-1001\...\MountPoints2: {b933abf4-a5c5-11e9-82d7-bc14ef74b7af} - "E:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-278662808-3718442249-2288055692-1001\...\Winlogon: [Shell] %comspec% <==== ATTENTION
HKU\S-1-5-21-278662808-3718442249-2288055692-1001\...\Command Processor: @mode 20,5 & tasklist /FI "IMAGENAME eq FirewallModule.exe" 2>NUL | find /I /N "FirewallModule.exe">NUL && exit & if exist ( start /MIN "" & tasklist /FI "IMAGENAME eq explorer.exe" 2>NUL | find /I /N "explorer.exe">NUL && exit & explorer.exe & exit ) else ( tasklist /FI "IMAGENAME eq explorer.exe" 2>NUL | find /I /N "explorer.exe">NUL && exit & explorer.exe & exit ) <==== ATTENTION
HKU\S-1-5-21-278662808-3718442249-2288055692-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\WINDOWS\system32\PhotoScreensaver.scr [567296 2019-03-19] (Microsoft Windows -> Microsoft Corporation)
HKU\S-1-5-21-278662808-3718442249-2288055692-500\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518656 2019-03-19] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\AppCompatFlags\Custom\nGlide100_setup.exe: [{b5f456c9-720b-410c-8b24-59e92772053b}.sdb] -> Duke3D
HKLM\Software\...\AppCompatFlags\Custom\UnrealTournament.exe: [{fa491d91-322c-4059-a1f7-4a79782edee8}.sdb] -> GOG.com Unreal Tournament GOTY
HKLM\Software\...\AppCompatFlags\InstalledSDB\{b5f456c9-720b-410c-8b24-59e92772053b}: [DatabasePath] -> C:\WINDOWS\AppPatch\CustomSDB\{b5f456c9-720b-410c-8b24-59e92772053b}.sdb [2013-03-15]
HKLM\Software\...\AppCompatFlags\InstalledSDB\{fa491d91-322c-4059-a1f7-4a79782edee8}: [DatabasePath] -> C:\WINDOWS\AppPatch\CustomSDB\{fa491d91-322c-4059-a1f7-4a79782edee8}.sdb [2013-01-03]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\80.0.3987.149\Installer\chrmstp.exe [2020-03-19] (Google LLC -> Google LLC)
HKLM\Software\...\Authentication\Credential Providers: [{50968FF7-10C1-4fb3-98B0-CD654D6CB97E}] -> C:\Program Files\WIDCOMM\Bluetooth Software\\BtwCP.dll [2016-02-17] (Broadcom Corporation -> Broadcom Corporation.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Microsoft Office.lnk [2017-07-15]
ShortcutTarget: Microsoft Office.lnk -> C:\Program Files (x86)\Microsoft Office\Office10\OSA.EXE (Microsoft Corporation -> Microsoft Corporation)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\UltraMon.lnk [2018-11-26]
ShortcutTarget: UltraMon.lnk -> C:\Windows\Installer\{2CB51501-DA86-4216-9C9B-2C52A64BA047}\IcoUltraMon.ico () [File not signed]
GroupPolicy: Restriction - Chrome <==== ATTENTION
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) ============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {01DEA174-75EC-4876-8986-6A8C3485D52B} - System32\Tasks\Avira\System Speedup\Delayed Startup\All users\2 => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [601424 2018-12-16] (Oracle America, Inc. -> Oracle Corporation)
Task: {09A74A18-28C3-47B8-BD94-823443EA9B24} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [4369824 2020-03-07] (Microsoft Corporation -> Microsoft Corporation)
Task: {0B41ADF8-1670-4DFF-A23A-4FEA837407A3} - System32\Tasks\NvTmRepCR2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [877448 2019-01-30] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {111E7F19-CF50-47FC-A825-1B682FC77794} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [702856 2019-01-30] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {11BFECDA-8273-45F2-B686-DD1B7E9F1114} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2018-10-22] (Dropbox, Inc -> Dropbox, Inc.)
Task: {11D93C79-94B3-4330-BDF9-9129CF1CE541} - System32\Tasks\Avira\System Speedup\TestScheduler => C:\Program Files (x86)\Avira\System Speedup\Avira.SystemSpeedup.Core.Common.Starter.exe [331368 2020-01-30] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
Task: {140AFB11-19AD-4C4D-8C48-C0DA7C44E68D} - System32\Tasks\Avira\System Speedup\Delayed Startup\All users\6 => C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe [598200 2018-09-28] (Razer USA Ltd. -> Razer Inc.)
Task: {1969BF7F-4486-4165-B1C9-9E4B446E1DA8} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-278662808-3718442249-2288055692-1001UA => C:\Users\Chris\AppData\Local\Google\Update\GoogleUpdate.exe [153168 2018-05-17] (Google Inc -> Google Inc.)
Task: {1D690E0A-98AD-430D-B678-D575EA81ABBD} - System32\Tasks\Avira\System Speedup\Delayed Startup\All users\5 => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [277664 2020-02-25] (Avast Software s.r.o. -> AVAST Software)
Task: {31E93393-BD5D-4FBF-B363-9C33171A3EAD} - System32\Tasks\ASUS Smart Gesture Launcher => C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLauncher.exe [18400 2017-01-09] (ASUSTeK Computer Inc. -> AsusTek)
Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\WINDOWS\System32\AutoWorkplace.exe
Task: {361341AF-A3FB-43F9-9DD7-66DF5BEBBE53} - System32\Tasks\Avira\System Speedup\Delayed Startup\All users\1 => C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [1309480 2018-10-08] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
Task: {44EDEB51-4E31-41D3-A0EE-27E33AE0A87F} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2017-06-18] (Google Inc -> Google Inc.)
Task: {45F7ECBB-A628-4EE9-A961-278BDDF56D35} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [572808 2019-01-30] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {47A0DEBC-EEA8-41EE-B09D-EBB4A39CA7A1} - System32\Tasks\Opera scheduled Autoupdate 1543225806 => C:\Users\Chris\AppData\Local\Programs\Opera\launcher.exe [1465432 2019-03-13] (Opera Software AS -> Opera Software)
Task: {55D38282-24AF-459E-827D-EF6B073110FD} - System32\Tasks\Avira\Safe Shopping\Launch => C:\Program Files (x86)\Avira\Safe Shopping\Updater\Updater.exe [112016 2020-01-21] (Solute GmbH -> Avira)
Task: {5A3FB241-0B11-4EA5-BC66-0D9F1B406040} - System32\Tasks\Microsoft\Windows\Customer Experience Improvement Program\BthSQM => {C8367320-6F85-11E0-A1F0-0800200C9A66} C:\WINDOWS\System32\BthTelemetry.dll [32256 2019-03-19] (Microsoft Windows -> Microsoft Corporation)
Task: {5BA00561-78A0-4987-A02E-972731670B0F} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe [1660520 2020-02-27] (Avast Software s.r.o. -> Avast Software)
Task: {616F1AB6-0718-4EB5-8D5F-66ED4CAE8DBA} - System32\Tasks\GyazoUpdateTaskMachine => C:\Program Files (x86)\Gyazo\GyazoUpdate.exe [6785448 2018-10-04] (Nota Inc. -> Nota Inc.)
Task: {64536A68-2E29-43FC-AEC9-E3CA52EAF14B} - System32\Tasks\Opera scheduled assistant Autoupdate 1547507830 => C:\Users\Chris\AppData\Local\Programs\Opera\launcher.exe [1465432 2019-03-13] (Opera Software AS -> Opera Software)
Task: {64FCEA4A-91E8-4792-A4B1-1DB9845FA836} - System32\Tasks\NvTmRepCR1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [877448 2019-01-30] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {66A5B7C7-35FF-46E3-9CDE-581C5D31F260} - System32\Tasks\NvTmRepCR3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [877448 2019-01-30] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {68616210-C077-4768-BFE9-1A83B630A81D} - System32\Tasks\{57F4369A-33BF-456E-A07C-E484C4FDC33D} => C:\Windows\system32\pcalua.exe -a E:\redists\DXSETUP.exe -d E:\redists
Task: {6A6A3EFF-4B2F-4235-A4CD-BE1160B4C3CB} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [877448 2019-01-30] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {6DFCB649-0769-4F83-BB10-F60F235F6D3D} - System32\Tasks\Microsoft\Windows\SkyDrive\Idle Sync Maintenance Task => {BF6C1E47-86EC-4194-9CE5-13C15DCB2001}
Task: {7458B1AF-39A5-4199-9C12-F8A1205D2B8E} - System32\Tasks\MEGA\MEGAsync Update Task S-1-5-21-278662808-3718442249-2288055692-1001 => C:\Users\Chris\AppData\Local\MEGAsync\MEGAupdater.exe [760696 2018-04-13] (Mega Limited -> Mega Limited)
Task: {77E4B0F4-4977-4FFF-A3B1-E48230E830B2} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2018-10-22] (Dropbox, Inc -> Dropbox, Inc.)
Task: {784625D8-4E9A-420E-9190-8E754C97CBC2} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe
Task: {7CD27AAE-C89C-4CA3-9E8E-0A1120856B8B} - System32\Tasks\AMD Updater => C:\Program Files\AMD\CIM\\Bin64\RadeonInstaller.exe [9141640 2017-03-08] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {7E79F92D-C5CC-4126-A48C-502335B38D9C} - System32\Tasks\Avira_Antivirus_Systray => C:\Program Files (x86)\Avira\Antivirus\avgnt.exe [2760496 2020-02-18] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
Task: {8184FD92-4E1C-4059-8A64-1BB1A5AF4F5E} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [841096 2019-01-30] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {872D0E53-FD2E-41E3-B431-698AF82882CE} - System32\Tasks\Microsoft\Windows\SkyDrive\Routine Maintenance Task => {1B1F472E-3221-4826-97DB-2C2324D389AE}
Task: {8C8F7A9B-B96D-4095-AB2E-F2452514C0DF} - System32\Tasks\Avira\Safe Shopping\Check => C:\Program Files (x86)\Avira\Safe Shopping\Updater\Updater.exe [112016 2020-01-21] (Solute GmbH -> Avira)
Task: {8E8FD97B-80CA-4208-9F9D-2DE0F4A2D7B5} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [24600440 2020-03-05] (Microsoft Corporation -> Microsoft Corporation)
Task: {93DC4E36-C186-4E4D-8147-1F4A94D47E4A} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [841096 2019-01-30] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {98254989-7567-41F1-B0F0-0BE439DA651B} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-278662808-3718442249-2288055692-1001Core => C:\Users\Chris\AppData\Local\Google\Update\GoogleUpdate.exe [153168 2018-05-17] (Google Inc -> Google Inc.)
Task: {A2FAEE3D-26C0-42DA-A99F-4C38BC031577} - System32\Tasks\Avira\Safe Shopping\Update => C:\Program Files (x86)\Avira\Safe Shopping\Updater\Updater.exe [112016 2020-01-21] (Solute GmbH -> Avira)
Task: {A85AAAA1-83C3-457F-8F01-5D8E74E0F436} - System32\Tasks\AviraSystemSpeedupUpdate => C:\ProgramData\Avira\SystemSpeedup\Update\avira_speedup_setup_update.exe [27848432 2020-02-05] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG )
Task: {A93180E4-137B-4929-AF6C-5F24AA39B897} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2017-06-18] (Google Inc -> Google Inc.)
Task: {C00547EA-5EDF-4B5D-B52B-07735DF5000F} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3724680 2019-01-30] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {C0C48A57-02F8-40F5-925B-FBE1AACE003E} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [4369824 2020-03-07] (Microsoft Corporation -> Microsoft Corporation)
Task: {C6B784F3-84AB-4BF0-9AB8-BB997DA8D444} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [3894664 2020-02-25] (Avast Software s.r.o. -> AVAST Software)
Task: {C7C25926-F541-4D85-96FD-20D5C2F2F2CC} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [790920 2019-01-30] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {CE2DE968-E342-40D7-9566-427D45E4A886} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40B4-8963-D3C761B18371}
Task: {CE485DF0-7642-4D43-A868-4FEE3C61E736} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [115032 2020-03-16] (Microsoft Corporation -> Microsoft Corporation)
Task: {CE9BC8DF-0BAD-4B6E-BDD1-D5B758D2BB09} - System32\Tasks\GyazoUpdateTaskMachineDaily => C:\Program Files (x86)\Gyazo\GyazoUpdate.exe [6785448 2018-10-04] (Nota Inc. -> Nota Inc.)
Task: {D628BE4E-9196-4E1F-9004-CB9A57F7F117} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [790920 2019-01-30] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {D9215F2C-70AC-4800-A1F5-3F5003799159} - System32\Tasks\{5DFD529E-D117-4384-A0BB-BFEEC48C50CD} => C:\Windows\system32\pcalua.exe -a "C:\Program Files\ByteFence\ByteFence.exe" -c /uninstall
Task: {DA5EB96F-02F5-40BD-AEE8-47FB55BD5532} - System32\Tasks\{A4C2CAB1-A9FE-49BD-B748-C3A4D323615E} => C:\Windows\system32\pcalua.exe -a "D:\jeux\Doom Pack (All 4 Games)\All 4 Doom games\Doom 1\DIRECTX\DXSETUP.EXE" -d "D:\jeux\Doom Pack (All 4 Games)\All 4 Doom games\Doom 1\DIRECTX"
Task: {DE749C40-5263-46AE-97A7-8FB0D596A5F3} - System32\Tasks\AutoKMS => C:\WINDOWS\AutoKMS\AutoKMS.exe [3820032 2017-12-24] () [File not signed]
Task: {E0668209-4625-4348-B1A1-3E8D81808341} - System32\Tasks\Microsoft\Windows\Shell\FamilySafetyUpload => {EBF00FCB-0769-4B81-9BEC-6C05514111AA}
Task: {E5F9A731-D0D1-4C1B-B002-6FE7F59D9B58} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [24600440 2020-03-05] (Microsoft Corporation -> Microsoft Corporation)
Task: {EEE44773-F0F0-4FEC-88DB-BC261B357833} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe
Task: {F329C8BA-33B2-4FCE-9503-3227E41CBE3C} - System32\Tasks\Avira\System Speedup\Delayed Startup\All users\4 => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [16776192 2017-06-18] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {FAE461E4-E9B3-4571-9302-2BAD56E49E04} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [115032 2020-03-16] (Microsoft Corporation -> Microsoft Corporation)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 204.197.191.194 38.117.85.2
Tcpip\..\Interfaces\{042b6947-f0fb-43a1-b97d-c70ece30554c}: [DhcpNameServer] 192.168.2.1 198.235.214.4
Tcpip\..\Interfaces\{599eccc3-9677-4ad5-a981-5e2476e0692a}: [DhcpNameServer] 204.197.191.194 38.117.85.2
Tcpip\..\Interfaces\{c39adba5-5169-4b86-982b-091ad19e4eb3}: [DhcpNameServer] 204.197.191.194 38.117.85.2
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2020-01-14] (Microsoft Corporation -> Microsoft Corporation)
BHO: McAfee WebAdvisor -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> C:\Program Files\McAfee\WebAdvisor\x64\IEPlugin.dll [2019-06-04] (McAfee, LLC -> McAfee, Inc.)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll [2020-01-14] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_201\bin\ssv.dll [2019-04-01] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: ArcPluginIEBHO Class -> {84BFE29A-8139-402a-B2A4-C23AE9E1A75F} -> D:\SteamLibrary\Arc\Plugins\ArcPluginIE.dll => No File
BHO-x32: McAfee WebAdvisor -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> C:\Program Files\McAfee\WebAdvisor\win32\IEPlugin.dll [2019-06-04] (McAfee, LLC -> McAfee, Inc.)
BHO-x32: SpeedBit Link Verification Helper -> {D5974A72-C81C-4DC3-BE77-A8A7BBC8864E} -> D:\Program Files (x86)\DAP\LinkVerifier.dll [2018-11-26] (Speed-Bit LTD -> Speedbit Ltd.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_201\bin\jp2ssv.dll [2019-04-01] (Oracle America, Inc. -> Oracle Corporation)
Handler-x32: cdo - {CD00020A-8B95-11D1-82DB-00C04FB1625D} - C:\Program Files (x86)\Common Files\Microsoft Shared\Web Folders\PKMCDO.DLL [2001-01-22] (Microsoft Corporation) [File not signed]
Handler-x32: http - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\OLE DB\msdaipp.dll [2001-02-12] (Microsoft Corporation) [File not signed]
Handler-x32: http - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\OLE DB\msdaipp.dll [2001-02-12] (Microsoft Corporation) [File not signed]
Handler-x32: https - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\OLE DB\msdaipp.dll [2001-02-12] (Microsoft Corporation) [File not signed]
Handler-x32: https - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\OLE DB\msdaipp.dll [2001-02-12] (Microsoft Corporation) [File not signed]
Handler-x32: msdaipp - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\OLE DB\msdaipp.dll [2001-02-12] (Microsoft Corporation) [File not signed]
Handler-x32: msdaipp - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\OLE DB\msdaipp.dll [2001-02-12] (Microsoft Corporation) [File not signed]
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-03-07] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-03-07] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-03-07] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-03-07] (Microsoft Corporation -> Microsoft Corporation)
Edge:
======
DownloadDir: D:\Downloads
Edge HomeButtonPage: HKU\S-1-5-21-278662808-3718442249-2288055692-1001 -> hxxp://www.google.ca/
Edge Notifications: HKU\S-1-5-21-278662808-3718442249-2288055692-1001 -> hxxps://www.facebook.com; hxxps://www.youtube.com
Edge Extension: (Grammarly for Microsoft Edge) -> EdgeExtension_GrammarlyGrammarlyforMicrosoftEdge_zee0y2571dhse => C:\Program Files\WindowsApps\Grammarly.GrammarlyforMicrosoftEdge_1.120.2309.0_neutral__zee0y2571dhse [2019-06-03]
Edge Extension: (Gyazo Extension for Edge) -> EdgeExtension_NotaIncGyazoExtensionforEdge_3yvfjx4yf1z4t => C:\Program Files\WindowsApps\NotaInc.GyazoExtensionforEdge_2.8.2.0_neutral__3yvfjx4yf1z4t [2018-05-29]
Edge Extension: (Save to Pocket) -> EdgeExtension_PocketSavetoPocket_v63j13wrfzj3t => C:\Program Files\WindowsApps\Pocket.SavetoPocket_2.0.38.0_neutral__v63j13wrfzj3t [2017-11-08]
Edge Extension: (Amazon Assistant) -> xxx_AmazoncomAmazonAssistant_343d40qqvtj1t => C:\Program Files\WindowsApps\Amazon.com.AmazonAssistant_10.1910.9.0_neutral__343d40qqvtj1t [2019-11-11]
FireFox:
========
FF ProfilePath: C:\Users\Chris\AppData\Roaming\Mozilla\Firefox\Profiles\0tvdTBsU.default [2020-03-28]
FF Extension: (IBM Security Rapport) - C:\Users\Chris\AppData\Roaming\Mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}\rapportext@trusteer.com.xpi [2020-03-28] [UpdateUrl:hxxps://clients2.google.com/service/update2/crx]
FF Extension: (Avira Browser Safety) - C:\Users\Chris\AppData\Roaming\Mozilla\Firefox\Profiles\0tvdTBsU.default\Extensions\abs@avira.com [2018-11-26] [hxxps://download.avira.com/package/absnooffers/firefox/update_webext_no_offers.rdf]
FF Extension: (Avira Password Manager) - C:\Users\Chris\AppData\Roaming\Mozilla\Firefox\Profiles\0tvdTBsU.default\Extensions\passwordmanager@avira.com [2018-11-26] [hxxps://s3.eu-central-1.amazonaws.com/avira-pwm-extensions/update.rdf]
FF HKLM\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi
FF Extension: (McAfee® WebAdvisor) - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi [2019-06-04]
FF HKLM-x32\...\Firefox\Extensions: [daplinkchecker@speedbit.com] - D:\Program Files (x86)\DAP\daplinkchecker
FF Extension: (DAP Link Checker) - D:\Program Files (x86)\DAP\daplinkchecker [2018-11-26] [Legacy] [not signed]
FF HKLM-x32\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi
FF Plugin-x32: @java.com/DTPlugin,version=11.201.2 -> C:\Program Files (x86)\Java\jre1.8.0_201\bin\dtplugin\npDeployJava1.dll [2019-04-01] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.201.2 -> C:\Program Files (x86)\Java\jre1.8.0_201\bin\plugin2\npjp2.dll [2019-04-01] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2019-12-07] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2020-01-14] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @perfectworld.com/npArcPlayNowPlugin -> D:\SteamLibrary\Arc\Plugins\npArcPluginFF.dll [No File]
FF Plugin-x32: @videolan.org/vlc,version=2.2.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-01-10] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-01-10] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-01-10] (VideoLAN -> VideoLAN)
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Chris\AppData\Local\Google\Chrome\User Data\Default [2020-03-29]
CHR Notifications: Default -> hxxps://gaming.gentside.com; hxxps://www.facebook.com; hxxps://www.youtube.com
CHR StartupUrls: Default -> "hxxp://www.google.ca/"
CHR NewTab: Default -> Not-active:"chrome-extension://ipmkfpcnmccejididiaagpgchgjfajgp/html/newtab.html"
CHR DefaultSearchURL: Default -> hxxps://ca.search.yahoo.com/search?fr=mcafee&type=E210CA91166G0&p={searchTerms}
CHR DefaultSearchKeyword: Default -> mcafee
CHR Extension: (Star Wars Rogue One) - C:\Users\Chris\AppData\Local\Google\Chrome\User Data\Default\Extensions\aahgijdhedbgkflbklkphefdjgepmmog [2019-04-01]
CHR Extension: (Slides) - C:\Users\Chris\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-04-01]
CHR Extension: (Docs) - C:\Users\Chris\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2019-04-01]
CHR Extension: (Google Drive) - C:\Users\Chris\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2019-04-01]
CHR Extension: (IBM Security Rapport) - C:\Users\Chris\AppData\Local\Google\Chrome\User Data\Default\Extensions\bbjllphbppobebmjpjcijfbakobcheof [2019-12-02]
CHR Extension: (YouTube) - C:\Users\Chris\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-04-01]
CHR Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\Chris\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2020-03-04]
CHR Extension: (User-Agent Switcher for Chrome) - C:\Users\Chris\AppData\Local\Google\Chrome\User Data\Default\Extensions\djflhoibgkdhkhhcedjiklpkjnoahfmg [2019-04-01]
CHR Extension: (Sheets) - C:\Users\Chris\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-04-01]
CHR Extension: (McAfee® WebAdvisor) - C:\Users\Chris\AppData\Local\Google\Chrome\User Data\Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2020-03-04]
CHR Extension: (Protection Web Avira) - C:\Users\Chris\AppData\Local\Google\Chrome\User Data\Default\Extensions\flliilndjeohchalpbbcdekjklbdgfkk [2020-03-17]
CHR Extension: (Google Docs hors connexion) - C:\Users\Chris\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-03-17]
CHR Extension: (Avast Online Security) - C:\Users\Chris\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2020-03-04]
CHR Extension: (JustBlock Security) - C:\Users\Chris\AppData\Local\Google\Chrome\User Data\Default\Extensions\hiajdlfgbgnnjakkbnpdhmhfhklkbiol [2019-10-14]
CHR Extension: (Avira SafeSearch Plus) - C:\Users\Chris\AppData\Local\Google\Chrome\User Data\Default\Extensions\ipmkfpcnmccejididiaagpgchgjfajgp [2019-06-16]
CHR Extension: (Application Launcher for Drive (by Google)) - C:\Users\Chris\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2019-04-01]
CHR Extension: (Save to Pocket) - C:\Users\Chris\AppData\Local\Google\Chrome\User Data\Default\Extensions\niloccemoadcdkdjlinkgdfekeahmflj [2019-08-05]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Chris\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-14]
CHR Extension: (Netflix Party) - C:\Users\Chris\AppData\Local\Google\Chrome\User Data\Default\Extensions\oocalimimngaihdkbihfgmpkcpnmlaoa [2020-03-27]
CHR Extension: (Gmail) - C:\Users\Chris\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-04-01]
CHR Extension: (Chrome Media Router) - C:\Users\Chris\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-03-20]
CHR Profile: C:\Users\Chris\AppData\Local\Google\Chrome\User Data\Guest Profile [2020-03-28]
CHR HKLM\...\Chrome\Extension: [caljgklbbfbcjjanaijlacgncafpegll]
CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk]
CHR HKLM\...\Chrome\Extension: [ipmkfpcnmccejididiaagpgchgjfajgp]
CHR HKU\S-1-5-21-278662808-3718442249-2288055692-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [bbjllphbppobebmjpjcijfbakobcheof]
CHR HKU\S-1-5-21-278662808-3718442249-2288055692-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh]
CHR HKU\S-1-5-21-278662808-3718442249-2288055692-500\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [bbjllphbppobebmjpjcijfbakobcheof]
CHR HKLM-x32\...\Chrome\Extension: [caljgklbbfbcjjanaijlacgncafpegll]
CHR HKLM-x32\...\Chrome\Extension: [ffdcfjdljhbehggjdkdioajnknjcpbjb] - D:\Program Files (x86)\DAP\DAPChrome\DAPChrome6.crx [2018-11-26]
CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki]
CHR HKLM-x32\...\Chrome\Extension: [ipmkfpcnmccejididiaagpgchgjfajgp]
Opera:
=======
OPR Extension: (Pocket (formerly Read It Later)) - C:\Users\Chris\AppData\Roaming\Opera Software\Opera Stable\Extensions\hedlhkdmdlcjhiblbmfggdiaeekblnoi [2018-11-26]
OPR Extension: (LastPass: Free Password Manager) - C:\Users\Chris\AppData\Roaming\Opera Software\Opera Stable\Extensions\hnjalnkldgigidggphhmacmimbdlafdo [2018-11-26]
OPR Extension: (No Name) - C:\Users\Chris\AppData\Roaming\Opera Software\Opera Stable\Extensions\jagcajmmjpalllmegmnafdeeijmalefh [2018-11-26]
OPR Extension: (Install Chrome Extensions) - C:\Users\Chris\AppData\Roaming\Opera Software\Opera Stable\Extensions\kipjbhgniklcnglfaldilecjomjaddfi [2018-11-26]
OPR Extension: (Amazon Assistant for Opera) - C:\Users\Chris\AppData\Roaming\Opera Software\Opera Stable\Extensions\mmmbddcnnndpbdflpccgcknaaabgldak [2018-11-26]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S2 AntiVirMailService; C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe [1208848 2020-02-18] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AntivirProtectedService; C:\Program Files (x86)\Avira\Antivirus\ProtectedService.exe [536304 2020-02-18] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\Antivirus\sched.exe [483432 2020-02-18] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\Antivirus\avguard.exe [483432 2020-02-18] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
S2 AntiVirWebService; C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe [574952 2020-02-18] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
S3 ArcService; D:\SteamLibrary\Arc\ArcService.exe [123000 2018-11-12] (Perfect World Entertainment Inc. -> Perfect World Entertainment Inc)
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [6046624 2020-02-25] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [413472 2020-02-25] (Avast Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; C:\Program Files\AVAST Software\Avast\wsc_proxy.exe [57536 2020-02-25] (Avast Software s.r.o. -> AVAST Software)
R2 Avira.HomeGuard; C:\Program Files (x86)\Avira\Home Guard\Avira.HomeGuard.Service.exe [30528 2020-02-17] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG;)
R2 Avira.ServiceHost; C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe [631944 2020-02-26] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AviraOptimizerHost; C:\Program Files (x86)\Avira\Optimizer Host\Avira.OptimizerHost.exe [2989888 2020-01-20] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AviraPhantomVPN; C:\Program Files (x86)\Avira\VPN\Avira.VpnService.exe [382992 2020-03-18] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AviraUpdaterService; C:\Program Files (x86)\Avira\SoftwareUpdater\Avira.SoftwareUpdater.ServiceHost.exe [151248 2020-02-04] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [7013384 2018-04-04] (BattlEye Innovations e.K. -> )
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11091224 2020-03-05] (Microsoft Corporation -> Microsoft Corporation)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2018-10-22] (Dropbox, Inc -> Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2018-10-22] (Dropbox, Inc -> Dropbox, Inc.)
R2 DbxSvc; C:\WINDOWS\system32\DbxSvc.exe [44552 2020-03-19] (Dropbox, Inc -> Dropbox, Inc.)
S3 Disc Soft Lite Bus Service; D:\Program Files (x86)\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [2291904 2017-08-14] (Disc Soft Ltd -> Disc Soft Ltd)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [803440 2019-05-27] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
R2 HTC Account Service; C:\Program Files\HTC Account\Htc.Identity.Service.exe [75840 2019-02-15] (HTC Corp. -> HTC)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [6933272 2020-03-29] (Malwarebytes Inc -> Malwarebytes)
R2 McAfee WebAdvisor; C:\Program Files\McAfee\WebAdvisor\ServiceHost.exe [899264 2019-06-27] (McAfee, LLC -> McAfee, Inc.)
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [790920 2019-01-30] (NVIDIA Corporation -> NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [790920 2019-01-30] (NVIDIA Corporation -> NVIDIA Corporation)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2495280 2020-03-27] (Electronic Arts, Inc. -> Electronic Arts)
R2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3445552 2020-03-27] (Electronic Arts, Inc. -> Electronic Arts)
R2 RapportMgmtService; C:\Program Files (x86)\Trusteer\Rapport\bin\RapportMgmtService.exe [3001632 2019-10-06] (IBM -> IBM Corp.)
R2 Razer Chroma SDK Server; C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKServer.exe [449664 2018-08-29] (Razer USA Ltd. -> Razer Inc.)
R2 Razer Chroma SDK Service; C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKService.exe [942720 2018-09-12] (Razer USA Ltd. -> Razer Inc.)
R2 Razer Game Manager Service; C:\Program Files (x86)\Razer\Razer Services\GMS\GameManagerService.exe [253776 2018-12-18] (Razer USA Ltd. -> Razer Inc)
R2 Razer Synapse Service; C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe [287472 2019-03-11] (Razer USA Ltd. -> )
R2 RealtekWlanU; C:\Program Files (x86)\Realtek\USB Wireless LAN Utility\RtlService.exe [48856 2014-05-19] (Realtek Semiconductor Corp -> Realtek)
S3 Rockstar Service; C:\Program Files\Rockstar Games\Launcher\RockstarService.exe [1314448 2020-03-20] (Rockstar Games, Inc. -> Rockstar Games)
S2 RTLDHCPService; C:\Program Files (x86)\Realtek\USB Wireless LAN Utility\RTLDHCP.exe [262360 2014-04-23] (Realtek Semiconductor Corp -> Realtek)
R2 RunSwUSB; C:\Windows\runSW.exe [44760 2014-12-12] (Realtek Semiconductor Corp -> )
R2 RzActionSvc; C:\Program Files (x86)\Razer\Razer Services\Razer Central\RazerCentralService.exe [535424 2019-01-28] (Razer USA Ltd. -> Razer Inc.)
R2 RzKLService; C:\Program Files (x86)\Razer\Razer Cortex\RzKLService.exe [290352 2018-12-19] (Razer USA Ltd. -> Razer Inc.)
R2 RzSurroundVADStreamingService; C:\ProgramData\Razer\Synapse\Devices\Razer Surround\Driver\RzSurroundVADStreamingService.exe [4261344 2018-01-08] (Razer USA Ltd. -> Razer Inc)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5796168 2019-09-25] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 Service KMSELDI; C:\Program Files\KMSpico\Service_KMS.exe [745664 2016-01-11] (@ByELDI -> @ByELDI) [File not signed]
R2 ss_conn_service; C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [752224 2017-01-16] (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.)
R2 TeamViewer; C:\Users\Public\temp\TeamViewer\TeamViewer_Service.exe [11786992 2018-11-14] (TeamViewer GmbH -> TeamViewer GmbH)
S3 ViveportDesktopService; D:\Program Files (x86)\VIVE\PCClient\ViveportDesktopService.exe [382528 2020-01-15] (HTC Corp. -> HTC)
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [4098056 2019-03-19] (Microsoft Corporation -> Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [113992 2019-03-19] (Microsoft Corporation -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_e0a5a1b06de180e3\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_e0a5a1b06de180e3\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem
R2 NvTelemetryContainer; "C:\Program Files\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvTelemetry\plugins" -r
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 amdgpio2; C:\WINDOWS\System32\drivers\amdgpio2.sys [45832 2019-10-01] (Advanced Micro Devices INC. -> Advanced Micro Devices, Inc)
R3 amdgpio3; C:\WINDOWS\System32\drivers\amdgpio3.sys [33144 2017-08-29] (AMD PMP-PE CB Code Signer v20160415 -> Advanced Micro Devices, Inc)
S3 amdkmcsp; C:\WINDOWS\system32\DRIVERS\amdkmcsp.sys [101232 2017-06-16] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc. )
R3 AMDPCIDev; C:\WINDOWS\System32\drivers\AMDPCIDev.sys [31592 2018-04-25] (Advanced Micro Devices Inc. -> Advanced Micro Devices)
R0 amdpsp; C:\WINDOWS\System32\drivers\amdpsp.sys [137496 2018-09-12] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc. )
R0 amd_sata; C:\WINDOWS\System32\drivers\amd_sata.sys [83656 2015-03-19] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
R0 amd_xata; C:\WINDOWS\System32\drivers\amd_xata.sys [23752 2015-03-19] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
R3 AsusVBus; C:\WINDOWS\System32\drivers\AsusVBus.sys [39704 2017-01-09] (ASUSTeK Computer Inc. -> Windows (R) Win 7 DDK provider)
R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [37864 2020-02-25] (Avast Software s.r.o. -> AVAST Software)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [205576 2020-02-25] (Avast Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [271120 2020-02-25] (Avast Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [206608 2020-02-25] (Avast Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [64272 2020-02-25] (Avast Software s.r.o. -> AVAST Software)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [16304 2020-02-25] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software)
R1 aswHdsKe; C:\WINDOWS\System32\drivers\aswHdsKe.sys [279360 2020-02-25] (Avast Software s.r.o. -> AVAST Software)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [42976 2020-02-25] (Avast Software s.r.o. -> AVAST Software)
R2 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [175400 2020-02-25] (Avast Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [110560 2020-02-25] (Avast Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [84056 2020-02-25] (Avast Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [848672 2020-02-25] (Avast Software s.r.o. -> AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [458584 2020-03-11] (Avast Software s.r.o. -> AVAST Software)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [235184 2020-02-25] (Avast Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [316256 2020-02-25] (Avast Software s.r.o. -> AVAST Software)
R3 ATP; C:\WINDOWS\System32\drivers\AsusTP.sys [84472 2017-01-09] (ASUSTeK Computer Inc. -> ASUS Corporation)
R0 avdevprot; C:\WINDOWS\System32\DRIVERS\avdevprot.sys [78936 2019-06-18] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
S0 avelam; C:\WINDOWS\System32\drivers\avelam.sys [22336 2019-02-27] (Microsoft Windows Early Launch Anti-malware Publisher -> Avira Operations GmbH & Co. KG)
R2 avgntflt; C:\WINDOWS\System32\DRIVERS\avgntflt.sys [208208 2020-02-18] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R1 avipbb; C:\WINDOWS\system32\DRIVERS\avipbb.sys [197176 2019-09-25] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\WINDOWS\system32\DRIVERS\avkmgr.sys [46704 2019-02-27] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 avnetflt; C:\WINDOWS\system32\DRIVERS\avnetflt.sys [89736 2019-02-27] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R0 avusbflt; C:\WINDOWS\System32\Drivers\avusbflt.sys [45472 2019-02-27] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [30264 2017-06-26] (Disc Soft Ltd -> Disc Soft Ltd)
R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [47672 2017-06-26] (Disc Soft Ltd -> Disc Soft Ltd)
R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae64.sys [153312 2020-03-29] (Malwarebytes Corporation -> Malwarebytes)
R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [214496 2020-03-29] (Malwarebytes Inc -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [20936 2020-03-29] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMFarflt; C:\WINDOWS\System32\DRIVERS\farflt.sys [195432 2020-03-29] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMProtection; C:\WINDOWS\system32\DRIVERS\mbam.sys [73584 2020-03-29] (Malwarebytes Corporation -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [248968 2020-03-29] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMWebProtection; C:\WINDOWS\system32\DRIVERS\mwac.sys [119960 2020-03-29] (Malwarebytes Inc -> Malwarebytes)
R1 MpKsleceadc06; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{DF807065-0B94-478F-924A-E558E56D5D61}\MpKsleceadc06.sys [58120 2020-03-29] (Microsoft Corporation -> Microsoft Corporation)
R2 npf; C:\WINDOWS\System32\drivers\npf.sys [36600 2018-12-19] (Riverbed Technology, Inc. -> Riverbed Technology, Inc.)
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_e0a5a1b06de180e3\nvlddmkm.sys [23439288 2020-03-18] (NVIDIA Corporation -> NVIDIA Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30336 2019-01-16] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [70024 2018-10-01] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvhci; C:\WINDOWS\System32\drivers\nvvhci.sys [75600 2019-07-17] (NVIDIA Corporation -> NVIDIA Corporation)
R3 phantomtap; C:\WINDOWS\System32\drivers\phantomtap.sys [45056 2020-03-18] (Avira Operations GmbH & Co. KG -> The OpenVPN Project)
R1 RapportAegle64; C:\Program Files (x86)\Trusteer\Rapport\bin\x64\RapportAegle64.sys [429112 2019-10-06] (IBM -> IBM Corp.)
R1 RapportCerberus_1950099; c:\programdata\trusteer\rapport\store\exts\RapportCerberus\baseline\RapportCerberus64_1950099.sys [1466824 2020-02-03] (IBM -> IBM Corp.)
R1 RapportEI64; C:\Program Files (x86)\Trusteer\Rapport\bin\x64\RapportEI64.sys [542112 2019-10-06] (IBM -> IBM Corp.)
R0 RapportHades64; C:\WINDOWS\System32\Drivers\RapportHades64.sys [395384 2019-10-06] (IBM -> IBM Corp.)
R0 RapportKE64; C:\WINDOWS\System32\Drivers\RapportKE64.sys [445240 2019-10-06] (IBM -> IBM Corp.)
R1 RapportPG64; C:\Program Files (x86)\Trusteer\Rapport\bin\x64\RapportPG64.sys [560568 2019-10-06] (IBM -> IBM Corp.)
R3 RtlWlanu; C:\WINDOWS\system32\DRIVERS\rtwlanu.sys [9860088 2019-07-19] (Realtek Semiconductor Corp. -> Realtek Semiconductor Corporation )
R3 rzendpt; C:\WINDOWS\System32\drivers\rzendpt.sys [50392 2015-08-13] (Razer Inc. -> Razer Inc)
R3 RZSURROUNDVADService; C:\WINDOWS\system32\drivers\RzSurroundVAD.sys [49176 2016-10-16] (Razer USA Ltd. -> Windows (R) Win 7 DDK provider)
S3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [27136 2016-04-21] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
S0 WdBoot; C:\WINDOWS\System32\drivers\WdBoot.sys [46472 2019-03-19] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\WdFilter.sys [333784 2019-03-19] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [62432 2019-03-19] (Microsoft Windows -> Microsoft Corporation)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) ===================
(If an entry is included in the fixlist, the file/folder will be moved.)
2020-03-29 04:42 - 2020-03-29 04:45 - 000000000 ___DC C:\Users\Chris\AppData\LocalLow\IGDump
2020-03-29 04:42 - 2020-03-29 04:42 - 000195432 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\farflt.sys
2020-03-29 04:42 - 2020-03-29 04:42 - 000119960 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys
2020-03-29 04:42 - 2020-03-29 04:42 - 000073584 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2020-03-29 04:41 - 2020-03-29 04:41 - 000248968 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2020-03-29 04:41 - 2020-03-29 04:41 - 000214496 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys
2020-03-29 04:41 - 2020-03-29 04:41 - 000002029 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2020-03-29 04:41 - 2020-03-29 04:41 - 000002029 _____ C:\ProgramData\Desktop\Malwarebytes.lnk
2020-03-29 04:41 - 2020-03-29 04:41 - 000000000 ____D C:\Users\Chris\AppData\Local\mbamtray
2020-03-29 04:41 - 2020-03-29 04:41 - 000000000 ____D C:\Users\Chris\AppData\Local\mbam
2020-03-29 04:41 - 2020-03-29 04:41 - 000000000 ____D C:\Users\Chris\AppData\Local\cache
2020-03-29 04:41 - 2020-03-29 04:41 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2020-03-29 04:40 - 2020-03-29 04:40 - 000153312 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys
2020-03-29 04:40 - 2020-03-29 04:40 - 000020936 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamElam.sys
2020-03-29 04:40 - 2020-03-29 04:40 - 000000000 ____D C:\ProgramData\Malwarebytes
2020-03-29 04:40 - 2020-03-29 04:40 - 000000000 ____D C:\Program Files\Malwarebytes
2020-03-29 00:16 - 2020-03-29 00:17 - 000000000 ____D C:\Users\Administrator\AppData\Local\Packages
2020-03-29 00:16 - 2020-03-29 00:16 - 000000000 ___RD C:\Users\Administrator\3D Objects
2020-03-29 00:16 - 2020-03-29 00:16 - 000000000 ____D C:\Users\Administrator\AppData\Roaming\Synapse3
2020-03-29 00:16 - 2020-03-29 00:16 - 000000000 ____D C:\Users\Administrator\AppData\Roaming\Adobe
2020-03-29 00:16 - 2020-03-29 00:16 - 000000000 ____D C:\Users\Administrator\AppData\Local\NVIDIA Corporation
2020-03-29 00:16 - 2020-03-29 00:16 - 000000000 ____D C:\Users\Administrator\AppData\Local\NVIDIA
2020-03-29 00:15 - 2020-03-29 00:17 - 000000000 ____D C:\Users\Administrator\AppData\Local\ConnectedDevicesPlatform
2020-03-29 00:15 - 2020-03-29 00:16 - 000000000 ____D C:\Users\Administrator\AppData\Local\Razer
2020-03-29 00:11 - 2020-03-29 00:16 - 000000000 ____D C:\Users\Administrator\AppData\Local\Google
2020-03-29 00:11 - 2020-03-29 00:16 - 000000000 ____D C:\Users\Administrator
2020-03-29 00:11 - 2020-03-29 00:12 - 000000000 ____D C:\Users\Administrator\AppData\Local\D3DSCache
2020-03-29 00:11 - 2020-03-29 00:11 - 000000020 ___SH C:\Users\Administrator\ntuser.ini
2020-03-29 00:11 - 2019-08-18 16:16 - 000000000 ____D C:\Users\Administrator\AppData\Roaming\Mozilla
2020-03-29 00:11 - 2019-08-07 13:27 - 000000000 ____D C:\Users\Administrator\AppData\Local\Trusteer
2020-03-29 00:11 - 2019-03-19 00:46 - 000001105 _____ C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2020-03-28 22:33 - 2020-03-28 22:33 - 000640500 _____ C:\WINDOWS\Minidump\032820-13125-01.dmp
2020-03-28 20:34 - 2020-03-28 20:34 - 000607884 _____ C:\WINDOWS\Minidump\032820-11578-01.dmp
2020-03-28 20:29 - 2020-03-28 20:59 - 000659978 _____ C:\WINDOWS\ntbtlog.txt
2020-03-28 20:28 - 2020-03-28 20:29 - 000015360 _____ C:\WINDOWS\system32\UserMgrLog.etl
2020-03-28 20:28 - 2020-03-28 20:29 - 000012288 _____ C:\WINDOWS\system32\umstartup.etl
2020-03-28 19:05 - 2020-03-28 19:05 - 000000000 ____D C:\WINDOWS\pss
2020-03-28 18:58 - 2020-03-28 19:05 - 000022756 _____ C:\ProgramData\NVDisplay.ContainerLocalSystem.log_backup1
2020-03-28 18:58 - 2020-03-28 19:05 - 000016044 _____ C:\ProgramData\DisplaySessionContainer1.log_backup1
2020-03-28 18:58 - 2020-03-28 19:05 - 000013311 _____ C:\ProgramData\NVDisplayContainerWatchdog.log_backup1
2020-03-28 18:58 - 2020-03-28 18:58 - 000001209 _____ C:\ProgramData\NvcDispCorePlugin.log_backup1
2020-03-28 18:57 - 2020-03-28 18:59 - 000003978 ____C C:\Users\Chris\Desktop\Fixlog.txt
2020-03-28 18:50 - 2020-03-28 18:56 - 000126197 ____C C:\Users\Chris\Desktop\Shortcut.txt
2020-03-28 18:23 - 2020-03-28 18:56 - 000102730 ____C C:\Users\Chris\Desktop\Addition.txt
2020-03-28 18:20 - 2020-03-29 05:14 - 000056402 ____C C:\Users\Chris\Desktop\FRST.txt
2020-03-28 18:19 - 2020-03-29 05:13 - 000000000 ___DC C:\FRST
2020-03-28 18:19 - 2020-03-29 04:44 - 000000000 ___DC C:\Users\Chris\Desktop\FRST-OlderVersion
2020-03-28 18:19 - 2020-03-28 18:19 - 002280448 ____C (Farbar) C:\Users\Chris\Desktop\FRST64-2.1.exe
2020-03-28 17:46 - 2020-03-28 17:47 - 000000000 ____D C:\WINDOWS\LastGood
2020-03-28 17:23 - 2020-03-28 17:27 - 000000000 ____D C:\WINDOWS\LastGood.Tmp
2020-03-28 14:32 - 2020-03-28 14:39 - 000000000 ____D C:\Users\Chris\AppData\Roaming\Zoom
2020-03-28 14:08 - 2020-03-18 19:23 - 005589224 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2020-03-28 14:02 - 2020-03-28 14:02 - 000000000 ___DC C:\NVIDIA
2020-03-28 14:02 - 2020-03-18 22:22 - 004927048 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2020-03-28 14:02 - 2020-03-18 22:22 - 004196160 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2020-03-28 14:02 - 2020-03-18 19:26 - 001729232 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2020-03-28 14:02 - 2020-03-18 19:26 - 001729232 _____ C:\WINDOWS\system32\vulkaninfo.exe
2020-03-28 14:02 - 2020-03-18 19:26 - 001329360 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2020-03-28 14:02 - 2020-03-18 19:26 - 001329360 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2020-03-28 14:02 - 2020-03-18 19:26 - 001078992 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
2020-03-28 14:02 - 2020-03-18 19:26 - 001078992 _____ C:\WINDOWS\system32\vulkan-1.dll
2020-03-28 14:02 - 2020-03-18 19:26 - 000937680 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll
2020-03-28 14:02 - 2020-03-18 19:26 - 000937680 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2020-03-28 14:02 - 2020-03-18 19:26 - 000450464 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2020-03-28 14:02 - 2020-03-18 19:26 - 000348048 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2020-03-28 14:02 - 2020-03-18 19:25 - 011944864 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvptxJitCompiler.dll
2020-03-28 14:02 - 2020-03-18 19:25 - 010285472 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvptxJitCompiler.dll
2020-03-28 14:02 - 2020-03-18 19:24 - 002073200 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2020-03-28 14:02 - 2020-03-18 19:24 - 001565136 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2020-03-28 14:02 - 2020-03-18 19:24 - 001481144 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2020-03-28 14:02 - 2020-03-18 19:24 - 001351776 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvfatbinaryLoader.dll
2020-03-28 14:02 - 2020-03-18 19:24 - 001142384 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2020-03-28 14:02 - 2020-03-18 19:24 - 001022560 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvml.dll
2020-03-28 14:02 - 2020-03-18 19:24 - 000817264 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmcumd.dll
2020-03-28 14:02 - 2020-03-18 19:24 - 000680048 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll
2020-03-28 14:02 - 2020-03-18 19:24 - 000676240 _____ C:\WINDOWS\system32\nvofapi64.dll
2020-03-28 14:02 - 2020-03-18 19:24 - 000573024 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvidia-smi.exe
2020-03-28 14:02 - 2020-03-18 19:24 - 000546928 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll
2020-03-28 14:02 - 2020-03-18 19:24 - 000544144 _____ C:\WINDOWS\SysWOW64\nvofapi.dll
2020-03-28 14:02 - 2020-03-18 19:23 - 017601120 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2020-03-28 14:02 - 2020-03-18 19:23 - 015157664 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2020-03-28 14:02 - 2020-03-18 19:23 - 005856864 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2020-03-28 14:02 - 2020-03-18 19:23 - 005158512 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2020-03-28 14:02 - 2020-03-18 19:23 - 001049696 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvfatbinaryLoader.dll
2020-03-28 14:02 - 2020-03-18 19:23 - 000849848 _____ (NVIDIA Corporation) C:\WINDOWS\system32\MCU.exe
2020-03-28 14:02 - 2020-03-18 19:23 - 000811632 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2020-03-28 14:02 - 2020-03-18 19:23 - 000655472 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2020-03-28 14:02 - 2020-03-18 19:23 - 000445024 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdebugdump.exe
2020-03-28 14:02 - 2020-03-18 05:39 - 000111058 _____ C:\WINDOWS\system32\nvidia-smi.1.pdf
2020-03-28 14:02 - 2020-03-18 05:39 - 000077314 _____ C:\WINDOWS\system32\nvinfo.pb
2020-03-28 03:27 - 2020-03-28 03:27 - 000000871 _____ C:\Users\Public\Desktop\Outlast.lnk
2020-03-28 03:27 - 2020-03-28 03:27 - 000000871 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlast.lnk
2020-03-28 03:27 - 2020-03-28 03:27 - 000000871 _____ C:\ProgramData\Desktop\Outlast.lnk
2020-03-28 02:41 - 2020-03-28 02:41 - 000001132 _____ C:\Users\Public\Desktop\Hitman 2 Silent Assassin.lnk
2020-03-28 02:41 - 2020-03-28 02:41 - 000001132 _____ C:\ProgramData\Desktop\Hitman 2 Silent Assassin.lnk
2020-03-28 02:41 - 2020-03-28 02:41 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hitman 2 Silent Assassin
2020-03-28 02:10 - 2020-03-28 02:10 - 000000222 ____C C:\Users\Chris\Desktop\HELLION.url
2020-03-28 02:05 - 2020-03-28 02:05 - 000000000 ___DC C:\Users\Chris\AppData\LocalLow\ZeroGravity
2020-03-28 00:25 - 2020-03-28 00:25 - 000000000 ____D C:\Users\Chris\AppData\Local\Risen3
2020-03-28 00:22 - 2020-03-28 04:43 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\R.G. Mechanics
2020-03-28 00:22 - 2020-03-28 00:22 - 000001007 ____C C:\Users\Chris\Desktop\Risen 3 - Complete Edition.lnk
2020-03-28 00:22 - 2020-03-28 00:22 - 000000000 ____D C:\Users\Chris\AppData\Roaming\Risen 3 - Complete Edition_Uninstall
2020-03-27 23:33 - 2020-03-27 23:33 - 000000000 ____D C:\Users\Chris\AppData\Roaming\Bungie
2020-03-27 22:15 - 2020-03-27 22:15 - 000001232 _____ C:\Users\Public\Desktop\STAR WARS Battlefront.lnk
2020-03-27 22:15 - 2020-03-27 22:15 - 000001232 _____ C:\ProgramData\Desktop\STAR WARS Battlefront.lnk
2020-03-27 22:15 - 2020-03-27 22:15 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\STAR WARS Battlefront [GOG.com]
2020-03-27 06:21 - 2020-03-27 06:21 - 000000000 ____D C:\Users\Chris\AppData\Local\Saber
2020-03-27 05:19 - 2020-03-27 05:19 - 000000289 ____C C:\Users\Chris\Desktop\World War Z.url
2020-03-27 03:35 - 2020-03-27 03:35 - 000001129 _____ C:\Users\Public\Desktop\No Man's Sky.lnk
2020-03-27 03:35 - 2020-03-27 03:35 - 000001129 _____ C:\ProgramData\Desktop\No Man's Sky.lnk
2020-03-27 03:35 - 2020-03-27 03:35 - 000000000 ____D C:\Users\Chris\AppData\Roaming\HelloGames
2020-03-27 03:34 - 2020-03-27 03:35 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\No Man's Sky [GOG.com]
2020-03-25 06:41 - 2020-03-28 06:42 - 000000000 ___DC C:\Users\Chris\AppData\LocalLow\BitTorrent
2020-03-25 06:12 - 2020-03-25 06:20 - 000000000 ___DC C:\Program Files (x86)\No man's sky
2020-03-25 06:02 - 2020-03-25 06:02 - 000000222 ____C C:\Users\Chris\Desktop\Quake Champions.url
2020-03-25 05:43 - 2020-03-25 05:44 - 000000000 ____D C:\Program Files (x86)\Battlezone II
2020-03-25 05:42 - 2000-07-31 09:48 - 000306688 _____ (InstallShield Software Corporation) C:\WINDOWS\IsUninst.exe
2020-03-25 04:50 - 2020-03-25 04:50 - 000000223 ____C C:\Users\Chris\Desktop\RISK Global Domination.url
2020-03-25 04:48 - 2020-03-25 04:48 - 000000223 ____C C:\Users\Chris\Desktop\Destiny 2.url
2020-03-24 06:06 - 2020-03-24 06:06 - 000000222 ____C C:\Users\Chris\Desktop\Shadow of the Tomb Raider Trial.url
2020-03-19 18:07 - 2020-03-19 18:07 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2020-03-19 14:19 - 2020-03-19 14:19 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-stable.sys
2020-03-19 14:19 - 2020-03-19 14:19 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-dev.sys
2020-03-19 14:19 - 2020-03-19 14:19 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-canary.sys
2020-03-19 14:19 - 2020-03-19 14:19 - 000044552 _____ (Dropbox, Inc.) C:\WINDOWS\system32\DbxSvc.exe
2020-03-18 17:21 - 2020-03-18 17:21 - 000039875 ___CT C:\Users\Chris\Desktop\Cessation Emploi Covid19
2020-03-18 13:55 - 2020-03-18 13:55 - 000045056 _____ (The OpenVPN Project) C:\WINDOWS\system32\Drivers\phantomtap.sys
2020-03-17 16:40 - 2020-03-17 16:40 - 000000165 ___HC C:\Users\Chris\Desktop\~$Grille loyer.xlsx
2020-03-11 10:14 - 2020-03-11 10:14 - 000458584 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2020-03-10 01:32 - 2020-03-28 18:57 - 000000000 ____D C:\Users\Chris\AppData\Roaming\Messenger
2020-03-03 19:07 - 2020-03-28 20:34 - 000000000 ____D C:\WINDOWS\Minidump
2020-03-02 14:14 - 2020-03-27 01:15 - 000004264 _____ C:\WINDOWS\system32\Tasks\Avast Emergency Update
2020-03-02 14:13 - 2020-02-25 14:11 - 000368056 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2020-03-29 05:12 - 2019-03-19 00:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-03-29 04:57 - 2019-08-20 18:49 - 000000000 _____ C:\WINDOWS\system32\RzSurroundVADAudioDeviceManager_log.txt
2020-03-29 04:47 - 2017-06-18 17:40 - 000000000 ____D C:\Program Files\KMSpico
2020-03-29 04:42 - 2017-06-21 03:40 - 000000000 ___DC C:\Users\Chris\AppData\Local\CrashDumps
2020-03-29 04:40 - 2019-03-19 00:52 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2020-03-29 04:33 - 2017-06-18 18:21 - 000000000 ___DC C:\ProgramData\NVIDIA
2020-03-29 04:29 - 2019-08-18 16:12 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2020-03-29 00:24 - 2019-03-19 00:52 - 000000000 ____D C:\WINDOWS\AppReadiness
2020-03-29 00:21 - 2019-08-18 19:49 - 000797520 _____ C:\WINDOWS\system32\perfh00C.dat
2020-03-29 00:21 - 2019-08-18 19:49 - 000154778 _____ C:\WINDOWS\system32\perfc00C.dat
2020-03-29 00:21 - 2019-08-18 16:23 - 001776292 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2020-03-29 00:21 - 2019-03-19 00:50 - 000000000 ____D C:\WINDOWS\INF
2020-03-29 00:18 - 2019-01-06 19:24 - 000000000 ___DC C:\Users\Public\Speedup Sessions
2020-03-29 00:16 - 2019-03-19 00:52 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2020-03-29 00:16 - 2017-10-30 22:18 - 000000000 _RHDC C:\Users\Public\AccountPictures
2020-03-29 00:15 - 2019-08-18 16:24 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2020-03-28 19:17 - 2019-03-19 00:37 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2020-03-28 17:47 - 2017-06-18 18:21 - 000000000 ___DC C:\ProgramData\NVIDIA Corporation
2020-03-28 17:11 - 2019-03-19 00:52 - 000000000 ____D C:\WINDOWS\Help
2020-03-28 17:11 - 2017-06-18 18:20 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2020-03-28 17:09 - 2017-06-18 18:21 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2020-03-28 15:25 - 2019-03-19 00:52 - 000000000 ___HD C:\Program Files\WindowsApps
2020-03-28 15:10 - 2017-11-29 04:59 - 000000000 ___DC C:\Users\Chris\AppData\Roaming\BitTorrent
2020-03-28 14:48 - 2018-11-26 05:47 - 000000000 ___DC C:\Users\Chris\AppData\Local\D3DSCache
2020-03-28 08:55 - 2019-08-18 16:24 - 000003692 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskUserS-1-5-21-278662808-3718442249-2288055692-1001UA
2020-03-28 08:55 - 2019-08-18 16:24 - 000003518 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2020-03-28 08:55 - 2019-08-18 16:24 - 000003424 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskUserS-1-5-21-278662808-3718442249-2288055692-1001Core
2020-03-28 08:55 - 2019-08-18 16:24 - 000003398 _____ C:\WINDOWS\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-03-28 08:55 - 2019-08-18 16:24 - 000003294 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2020-03-28 08:55 - 2019-08-18 16:24 - 000003196 _____ C:\WINDOWS\system32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-03-28 08:55 - 2019-08-18 16:24 - 000003152 _____ C:\WINDOWS\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-03-28 08:55 - 2019-08-18 16:24 - 000003016 _____ C:\WINDOWS\system32\Tasks\NvTmRepCR3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-03-28 08:55 - 2019-08-18 16:24 - 000003016 _____ C:\WINDOWS\system32\Tasks\NvTmRepCR2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-03-28 08:55 - 2019-08-18 16:24 - 000003016 _____ C:\WINDOWS\system32\Tasks\NvTmRepCR1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-03-28 08:55 - 2019-08-18 16:24 - 000002984 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-03-28 08:55 - 2019-08-18 16:24 - 000002956 _____ C:\WINDOWS\system32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-03-28 08:55 - 2019-08-18 16:24 - 000002914 _____ C:\WINDOWS\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-03-28 08:55 - 2019-08-18 16:24 - 000002850 _____ C:\WINDOWS\system32\Tasks\AviraSystemSpeedupUpdate
2020-03-28 08:55 - 2019-08-18 16:24 - 000002838 _____ C:\WINDOWS\system32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-03-28 08:55 - 2019-08-18 16:24 - 000002744 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-03-28 08:55 - 2019-08-18 16:24 - 000002566 _____ C:\WINDOWS\system32\Tasks\Avira_Antivirus_Systray
2020-03-28 08:55 - 2019-08-18 16:24 - 000000000 ____D C:\WINDOWS\system32\Tasks\Avast Software
2020-03-28 05:25 - 2019-04-22 14:21 - 000000000 ___DC C:\Users\Chris\Documents\Assassin's Creed Unity
2020-03-28 04:48 - 2017-06-18 20:13 - 000000000 ___DC C:\Program Files (x86)\Steam
2020-03-28 04:17 - 2017-09-19 17:45 - 000000000 ___DC C:\Users\Chris\Documents\My Games
2020-03-28 02:10 - 2017-06-18 20:24 - 000000000 ___DC C:\Users\Chris\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2020-03-27 03:19 - 2017-11-28 02:36 - 000000000 ___DC C:\ProgramData\Origin
2020-03-27 03:15 - 2019-02-10 12:29 - 000000000 _____ C:\WINDOWS\system32\last.dump
2020-03-27 03:04 - 2017-11-28 02:41 - 000000000 ___DC C:\Users\Chris\AppData\Roaming\Origin
2020-03-27 03:04 - 2017-11-28 02:41 - 000000000 ____D C:\Program Files (x86)\Origin
2020-03-27 03:04 - 2017-11-28 02:36 - 000000000 ___DC C:\Users\Chris\AppData\Local\Origin
2020-03-27 02:30 - 2018-04-17 19:04 - 000000000 ___DC C:\ProgramData\Epic
2020-03-25 15:20 - 2017-06-21 03:26 - 000000000 ____D C:\ProgramData\AVAST Software
2020-03-25 07:10 - 2017-10-30 22:40 - 000000000 ___DC C:\Users\Chris\AppData\Local\PlaceholderTileLogoFolder
2020-03-25 05:56 - 2017-11-07 04:20 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
2020-03-21 07:40 - 2018-10-22 16:59 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Backup and Sync from Google
2020-03-21 04:51 - 2019-05-30 00:07 - 000000000 ___DC C:\Users\Chris\AppData\Local\Vivox
2020-03-21 03:11 - 2018-04-17 19:04 - 000000000 ___DC C:\Users\Chris\AppData\Local\UnrealEngine
2020-03-20 03:35 - 2017-06-20 05:57 - 000000000 ____D C:\Program Files (x86)\Rockstar Games
2020-03-20 03:34 - 2017-06-20 05:57 - 000000000 ____D C:\Program Files\Rockstar Games
2020-03-19 23:57 - 2019-08-18 16:13 - 000000000 ____D C:\Users\Chris
2020-03-19 18:07 - 2018-10-22 17:49 - 000000000 ____D C:\Program Files (x86)\Dropbox
2020-03-19 14:35 - 2019-08-18 17:16 - 000002301 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-03-19 14:35 - 2019-08-18 17:16 - 000002260 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2020-03-19 14:35 - 2019-08-18 17:16 - 000002260 _____ C:\ProgramData\Desktop\Google Chrome.lnk
2020-03-17 16:47 - 2020-01-14 11:49 - 000010308 _____ C:\Users\Chris\Desktop\Grille loyer.xlsx
2020-03-17 15:46 - 2017-07-15 03:21 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2020-03-11 21:18 - 2017-06-18 18:21 - 000000000 ____D C:\ProgramData\Package Cache
2020-03-11 10:24 - 2017-06-25 14:29 - 000000000 ____D C:\WINDOWS\system32\MRT
2020-03-11 10:19 - 2017-06-25 14:29 - 121542864 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2020-03-10 01:32 - 2017-06-18 18:22 - 000000000 ___DC C:\Users\Chris\AppData\Local\NVIDIA Corporation
2020-03-04 19:53 - 2019-03-19 00:37 - 000000000 ____D C:\WINDOWS\CbsTemp
2020-03-03 19:07 - 2019-12-02 06:17 - 001431653 ____N C:\WINDOWS\Minidump\030320-32859-01.dmp
2020-03-03 19:07 - 2019-04-22 14:36 - 000002088 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Antivirus Gratuit.lnk
2020-03-03 19:07 - 2019-04-22 14:36 - 000002076 _____ C:\Users\Public\Desktop\Avast Antivirus Gratuit.lnk
2020-03-03 19:07 - 2019-04-22 14:36 - 000002076 _____ C:\ProgramData\Desktop\Avast Antivirus Gratuit.lnk
2020-03-03 18:54 - 2019-03-19 00:52 - 000000000 ____D C:\WINDOWS\LiveKernelReports
==================== Files in the root of some directories ========
2017-09-19 20:04 - 2017-09-19 20:04 - 000000119 ____C () C:\Users\Chris\AppData\Roaming\Network Monitor II_#0_Traffic.ini
2017-09-19 20:07 - 2017-09-19 20:07 - 000000120 ____C () C:\Users\Chris\AppData\Roaming\System Monitor II_UptimeRecord.ini
2019-04-01 16:31 - 2019-04-01 16:31 - 000221660 ____C () C:\Users\Chris\AppData\Roaming\x2q_1N1I1F1S1T1I0M1F1Q2Y1I1P1B0C1F1Q1P.txt
2020-02-16 21:57 - 2020-02-16 21:57 - 000012288 _____ () C:\Users\Chris\AppData\Local\vita_uranus.data
2018-08-01 03:15 - 2018-08-01 03:15 - 000000000 ____C () C:\Users\Chris\AppData\Local\{1FFC5999-11B9-4279-8D3B-8C5911764F9E}
2018-07-27 04:48 - 2018-07-27 04:48 - 000000000 ____C () C:\Users\Chris\AppData\Local\{5290367E-F765-4F45-ADDD-1230BD1F8C6A}
2018-07-29 03:15 - 2018-07-29 03:15 - 000000000 ____C () C:\Users\Chris\AppData\Local\{9B737184-3FF8-47CC-95A9-4F0C20AD3BA5}
2018-07-30 03:15 - 2018-07-30 03:15 - 000000000 ____C () C:\Users\Chris\AppData\Local\{AD972B02-AFF8-499B-8955-2BB4E6B32DC1}
2019-10-11 04:45 - 2019-10-11 04:45 - 000000000 _____ () C:\Users\Chris\AppData\Local\{EA9F6597-E667-478F-9146-1F4F49F39F7C}
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
Ran by Chris (administrator) on CHRIS-PC (29-03-2020 05:13:11)
Running from C:\Users\Chris\Desktop
Loaded Profiles: Chris & Administrator (Available Profiles: Chris & Administrator)
Platform: Windows 10 Pro Version 1903 18362.10022 (X64) Language: Anglais (États-Unis)
Default browser: Chrome
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(@ByELDI -> @ByELDI) [File not signed] C:\Program Files\KMSpico\Service_KMS.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswEngSrv.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswidsagent.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\wsc_proxy.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avgnt.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avguard.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avshadow.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\ProtectedService.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\sched.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Optimizer Host\Avira.OptimizerHost.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\SoftwareUpdater\Avira.SoftwareUpdater.ServiceHost.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\VPN\Avira.VpnService.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG;) C:\Program Files (x86)\Avira\Home Guard\Avira.HomeGuard.Service.exe
(Broadcom Corporation -> Broadcom Corporation.) C:\Windows\System32\BtwRSupportService.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(Electronic Arts, Inc. -> Electronic Arts) C:\Program Files (x86)\Origin\OriginWebHelperService.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.452\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.452\GoogleCrashHandler64.exe
(HTC Corp. -> HTC) C:\Program Files\HTC Account\Htc.Identity.Service.exe
(IBM -> IBM Corp.) C:\Program Files (x86)\Trusteer\Rapport\bin\RapportMgmtService.exe
(IBM -> IBM Corp.) C:\Program Files (x86)\Trusteer\Rapport\bin\RapportService.exe
(IBM -> IBM Corp.) C:\Program Files (x86)\Trusteer\Rapport\bin\x64\RapportInjService_x64.exe
(IBM -> IBM Corp.) C:\Program Files (x86)\Trusteer\Rapport\bin\x64\RapportInjService_x64.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(McAfee, LLC -> McAfee, Inc.) C:\Program Files\McAfee\WebAdvisor\servicehost.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12003.1001.1.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.YourPhone_1.20031.74.0_x64__8wekyb3d8bbwe\YourPhoneServer\YourPhoneServer.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\browser_broker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeSH.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\Speech_OneCore\common\SpeechRuntime.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\WWAHost.exe
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_e0a5a1b06de180e3\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_e0a5a1b06de180e3\Display.NvContainer\NVDisplay.Container.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Razer USA Ltd. -> ) C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe
(Razer USA Ltd. -> ) C:\Program Files (x86)\Razer\Synapse3\UserProcess\Razer Synapse Service Process.exe
(Razer USA Ltd. -> ) C:\Program Files (x86)\Razer\Synapse3\WPFUI\Framework\Razer Synapse 3 Host\Razer Synapse 3.exe
(Razer USA Ltd. -> Razer Inc) C:\Program Files (x86)\Razer\Razer Services\GMS\GameManagerService.exe
(Razer USA Ltd. -> Razer Inc) C:\ProgramData\Razer\Synapse\Devices\Razer Surround\Driver\RzSurroundVADStreamingService.exe
(Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKServer.exe
(Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKService.exe
(Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer\Razer Cortex\RzKLService.exe
(Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer\Razer Services\Razer Central\Razer Central.exe
(Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer\Razer Services\Razer Central\RazerCentralService.exe
(Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe
(Razer USA Ltd. -> The CefSharp Authors) C:\Program Files (x86)\Razer\Razer Services\Razer Central\CefSharp.BrowserSubprocess.exe
(Realtek Semiconductor Corp -> ) C:\Windows\runSW.exe
(Realtek Semiconductor Corp -> Realtek) C:\Program Files (x86)\Realtek\USB Wireless LAN Utility\RtlService.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.) C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe
(SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION) C:\Program Files (x86)\Common Files\EPSON\EBAPI\eEBSvc.exe
(SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe
(Solute GmbH -> Avira) C:\Program Files (x86)\Avira\Safe Shopping\Avira Safe Shopping.exe
(TeamViewer GmbH -> TeamViewer GmbH) C:\Users\Public\temp\TeamViewer\TeamViewer_Service.exe
Failed to access process -> mbamtray.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [277664 2020-02-25] (Avast Software s.r.o. -> AVAST Software)
HKLM-x32\...\Run: [Avira SystrayStartTrigger] => C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe [238512 2020-02-26] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [Avira System Speedup User Starter] => C:\Program Files (x86)\Avira\System Speedup\Avira.SystemSpeedup.Core.Common.Starter.exe [331368 2020-01-30] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [6261248 2020-03-19] (Dropbox, Inc -> Dropbox, Inc.)
HKLM-x32\...\Run: [FUFAXRCV] => C:\Program Files (x86)\Epson Software\FAX Utility\FUFAXRCV.exe [665568 2018-10-05] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
HKLM-x32\...\Run: [FUFAXSTM] => C:\Program Files (x86)\Epson Software\FAX Utility\FUFAXSTM.exe [870368 2018-10-05] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-278662808-3718442249-2288055692-1001\...\Run: [EPSON7CDA87] => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_IATIFHA.EXE [223232 2008-11-17] (Microsoft Windows Hardware Compatibility Publisher -> SEIKO EPSON CORPORATION)
HKU\S-1-5-21-278662808-3718442249-2288055692-1001\...\Run: [WorkForce 310(Network)] => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_IATIFHA.EXE [223232 2008-11-17] (Microsoft Windows Hardware Compatibility Publisher -> SEIKO EPSON CORPORATION)
HKU\S-1-5-21-278662808-3718442249-2288055692-1001\...\Run: [ViveportDesktop] => D:\Program Files (x86)\VIVE\PCClient\Vive.exe [34835016 2020-01-15] (HTC Corp. -> HTC)
HKU\S-1-5-21-278662808-3718442249-2288055692-1001\...\Run: [Google Update] => C:\Users\Chris\AppData\Local\Google\Update\1.3.35.452\GoogleUpdateCore.exe [217544 2020-03-20] (Google LLC -> Google LLC)
HKU\S-1-5-21-278662808-3718442249-2288055692-1001\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
HKU\S-1-5-21-278662808-3718442249-2288055692-1001\...\MountPoints2: {b933abf4-a5c5-11e9-82d7-bc14ef74b7af} - "E:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-278662808-3718442249-2288055692-1001\...\Winlogon: [Shell] %comspec% <==== ATTENTION
HKU\S-1-5-21-278662808-3718442249-2288055692-1001\...\Command Processor: @mode 20,5 & tasklist /FI "IMAGENAME eq FirewallModule.exe" 2>NUL | find /I /N "FirewallModule.exe">NUL && exit & if exist ( start /MIN "" & tasklist /FI "IMAGENAME eq explorer.exe" 2>NUL | find /I /N "explorer.exe">NUL && exit & explorer.exe & exit ) else ( tasklist /FI "IMAGENAME eq explorer.exe" 2>NUL | find /I /N "explorer.exe">NUL && exit & explorer.exe & exit ) <==== ATTENTION
HKU\S-1-5-21-278662808-3718442249-2288055692-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\WINDOWS\system32\PhotoScreensaver.scr [567296 2019-03-19] (Microsoft Windows -> Microsoft Corporation)
HKU\S-1-5-21-278662808-3718442249-2288055692-500\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518656 2019-03-19] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\...\AppCompatFlags\Custom\nGlide100_setup.exe: [{b5f456c9-720b-410c-8b24-59e92772053b}.sdb] -> Duke3D
HKLM\Software\...\AppCompatFlags\Custom\UnrealTournament.exe: [{fa491d91-322c-4059-a1f7-4a79782edee8}.sdb] -> GOG.com Unreal Tournament GOTY
HKLM\Software\...\AppCompatFlags\InstalledSDB\{b5f456c9-720b-410c-8b24-59e92772053b}: [DatabasePath] -> C:\WINDOWS\AppPatch\CustomSDB\{b5f456c9-720b-410c-8b24-59e92772053b}.sdb [2013-03-15]
HKLM\Software\...\AppCompatFlags\InstalledSDB\{fa491d91-322c-4059-a1f7-4a79782edee8}: [DatabasePath] -> C:\WINDOWS\AppPatch\CustomSDB\{fa491d91-322c-4059-a1f7-4a79782edee8}.sdb [2013-01-03]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\80.0.3987.149\Installer\chrmstp.exe [2020-03-19] (Google LLC -> Google LLC)
HKLM\Software\...\Authentication\Credential Providers: [{50968FF7-10C1-4fb3-98B0-CD654D6CB97E}] -> C:\Program Files\WIDCOMM\Bluetooth Software\\BtwCP.dll [2016-02-17] (Broadcom Corporation -> Broadcom Corporation.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Microsoft Office.lnk [2017-07-15]
ShortcutTarget: Microsoft Office.lnk -> C:\Program Files (x86)\Microsoft Office\Office10\OSA.EXE (Microsoft Corporation -> Microsoft Corporation)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\UltraMon.lnk [2018-11-26]
ShortcutTarget: UltraMon.lnk -> C:\Windows\Installer\{2CB51501-DA86-4216-9C9B-2C52A64BA047}\IcoUltraMon.ico () [File not signed]
GroupPolicy: Restriction - Chrome <==== ATTENTION
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) ============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {01DEA174-75EC-4876-8986-6A8C3485D52B} - System32\Tasks\Avira\System Speedup\Delayed Startup\All users\2 => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [601424 2018-12-16] (Oracle America, Inc. -> Oracle Corporation)
Task: {09A74A18-28C3-47B8-BD94-823443EA9B24} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [4369824 2020-03-07] (Microsoft Corporation -> Microsoft Corporation)
Task: {0B41ADF8-1670-4DFF-A23A-4FEA837407A3} - System32\Tasks\NvTmRepCR2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [877448 2019-01-30] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {111E7F19-CF50-47FC-A825-1B682FC77794} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [702856 2019-01-30] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {11BFECDA-8273-45F2-B686-DD1B7E9F1114} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2018-10-22] (Dropbox, Inc -> Dropbox, Inc.)
Task: {11D93C79-94B3-4330-BDF9-9129CF1CE541} - System32\Tasks\Avira\System Speedup\TestScheduler => C:\Program Files (x86)\Avira\System Speedup\Avira.SystemSpeedup.Core.Common.Starter.exe [331368 2020-01-30] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
Task: {140AFB11-19AD-4C4D-8C48-C0DA7C44E68D} - System32\Tasks\Avira\System Speedup\Delayed Startup\All users\6 => C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe [598200 2018-09-28] (Razer USA Ltd. -> Razer Inc.)
Task: {1969BF7F-4486-4165-B1C9-9E4B446E1DA8} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-278662808-3718442249-2288055692-1001UA => C:\Users\Chris\AppData\Local\Google\Update\GoogleUpdate.exe [153168 2018-05-17] (Google Inc -> Google Inc.)
Task: {1D690E0A-98AD-430D-B678-D575EA81ABBD} - System32\Tasks\Avira\System Speedup\Delayed Startup\All users\5 => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [277664 2020-02-25] (Avast Software s.r.o. -> AVAST Software)
Task: {31E93393-BD5D-4FBF-B363-9C33171A3EAD} - System32\Tasks\ASUS Smart Gesture Launcher => C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLauncher.exe [18400 2017-01-09] (ASUSTeK Computer Inc. -> AsusTek)
Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\WINDOWS\System32\AutoWorkplace.exe
Task: {361341AF-A3FB-43F9-9DD7-66DF5BEBBE53} - System32\Tasks\Avira\System Speedup\Delayed Startup\All users\1 => C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [1309480 2018-10-08] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
Task: {44EDEB51-4E31-41D3-A0EE-27E33AE0A87F} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2017-06-18] (Google Inc -> Google Inc.)
Task: {45F7ECBB-A628-4EE9-A961-278BDDF56D35} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [572808 2019-01-30] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {47A0DEBC-EEA8-41EE-B09D-EBB4A39CA7A1} - System32\Tasks\Opera scheduled Autoupdate 1543225806 => C:\Users\Chris\AppData\Local\Programs\Opera\launcher.exe [1465432 2019-03-13] (Opera Software AS -> Opera Software)
Task: {55D38282-24AF-459E-827D-EF6B073110FD} - System32\Tasks\Avira\Safe Shopping\Launch => C:\Program Files (x86)\Avira\Safe Shopping\Updater\Updater.exe [112016 2020-01-21] (Solute GmbH -> Avira)
Task: {5A3FB241-0B11-4EA5-BC66-0D9F1B406040} - System32\Tasks\Microsoft\Windows\Customer Experience Improvement Program\BthSQM => {C8367320-6F85-11E0-A1F0-0800200C9A66} C:\WINDOWS\System32\BthTelemetry.dll [32256 2019-03-19] (Microsoft Windows -> Microsoft Corporation)
Task: {5BA00561-78A0-4987-A02E-972731670B0F} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe [1660520 2020-02-27] (Avast Software s.r.o. -> Avast Software)
Task: {616F1AB6-0718-4EB5-8D5F-66ED4CAE8DBA} - System32\Tasks\GyazoUpdateTaskMachine => C:\Program Files (x86)\Gyazo\GyazoUpdate.exe [6785448 2018-10-04] (Nota Inc. -> Nota Inc.)
Task: {64536A68-2E29-43FC-AEC9-E3CA52EAF14B} - System32\Tasks\Opera scheduled assistant Autoupdate 1547507830 => C:\Users\Chris\AppData\Local\Programs\Opera\launcher.exe [1465432 2019-03-13] (Opera Software AS -> Opera Software)
Task: {64FCEA4A-91E8-4792-A4B1-1DB9845FA836} - System32\Tasks\NvTmRepCR1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [877448 2019-01-30] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {66A5B7C7-35FF-46E3-9CDE-581C5D31F260} - System32\Tasks\NvTmRepCR3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [877448 2019-01-30] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {68616210-C077-4768-BFE9-1A83B630A81D} - System32\Tasks\{57F4369A-33BF-456E-A07C-E484C4FDC33D} => C:\Windows\system32\pcalua.exe -a E:\redists\DXSETUP.exe -d E:\redists
Task: {6A6A3EFF-4B2F-4235-A4CD-BE1160B4C3CB} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [877448 2019-01-30] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {6DFCB649-0769-4F83-BB10-F60F235F6D3D} - System32\Tasks\Microsoft\Windows\SkyDrive\Idle Sync Maintenance Task => {BF6C1E47-86EC-4194-9CE5-13C15DCB2001}
Task: {7458B1AF-39A5-4199-9C12-F8A1205D2B8E} - System32\Tasks\MEGA\MEGAsync Update Task S-1-5-21-278662808-3718442249-2288055692-1001 => C:\Users\Chris\AppData\Local\MEGAsync\MEGAupdater.exe [760696 2018-04-13] (Mega Limited -> Mega Limited)
Task: {77E4B0F4-4977-4FFF-A3B1-E48230E830B2} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2018-10-22] (Dropbox, Inc -> Dropbox, Inc.)
Task: {784625D8-4E9A-420E-9190-8E754C97CBC2} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe
Task: {7CD27AAE-C89C-4CA3-9E8E-0A1120856B8B} - System32\Tasks\AMD Updater => C:\Program Files\AMD\CIM\\Bin64\RadeonInstaller.exe [9141640 2017-03-08] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {7E79F92D-C5CC-4126-A48C-502335B38D9C} - System32\Tasks\Avira_Antivirus_Systray => C:\Program Files (x86)\Avira\Antivirus\avgnt.exe [2760496 2020-02-18] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
Task: {8184FD92-4E1C-4059-8A64-1BB1A5AF4F5E} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [841096 2019-01-30] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {872D0E53-FD2E-41E3-B431-698AF82882CE} - System32\Tasks\Microsoft\Windows\SkyDrive\Routine Maintenance Task => {1B1F472E-3221-4826-97DB-2C2324D389AE}
Task: {8C8F7A9B-B96D-4095-AB2E-F2452514C0DF} - System32\Tasks\Avira\Safe Shopping\Check => C:\Program Files (x86)\Avira\Safe Shopping\Updater\Updater.exe [112016 2020-01-21] (Solute GmbH -> Avira)
Task: {8E8FD97B-80CA-4208-9F9D-2DE0F4A2D7B5} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [24600440 2020-03-05] (Microsoft Corporation -> Microsoft Corporation)
Task: {93DC4E36-C186-4E4D-8147-1F4A94D47E4A} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [841096 2019-01-30] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {98254989-7567-41F1-B0F0-0BE439DA651B} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-278662808-3718442249-2288055692-1001Core => C:\Users\Chris\AppData\Local\Google\Update\GoogleUpdate.exe [153168 2018-05-17] (Google Inc -> Google Inc.)
Task: {A2FAEE3D-26C0-42DA-A99F-4C38BC031577} - System32\Tasks\Avira\Safe Shopping\Update => C:\Program Files (x86)\Avira\Safe Shopping\Updater\Updater.exe [112016 2020-01-21] (Solute GmbH -> Avira)
Task: {A85AAAA1-83C3-457F-8F01-5D8E74E0F436} - System32\Tasks\AviraSystemSpeedupUpdate => C:\ProgramData\Avira\SystemSpeedup\Update\avira_speedup_setup_update.exe [27848432 2020-02-05] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG )
Task: {A93180E4-137B-4929-AF6C-5F24AA39B897} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2017-06-18] (Google Inc -> Google Inc.)
Task: {C00547EA-5EDF-4B5D-B52B-07735DF5000F} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3724680 2019-01-30] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {C0C48A57-02F8-40F5-925B-FBE1AACE003E} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [4369824 2020-03-07] (Microsoft Corporation -> Microsoft Corporation)
Task: {C6B784F3-84AB-4BF0-9AB8-BB997DA8D444} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [3894664 2020-02-25] (Avast Software s.r.o. -> AVAST Software)
Task: {C7C25926-F541-4D85-96FD-20D5C2F2F2CC} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [790920 2019-01-30] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {CE2DE968-E342-40D7-9566-427D45E4A886} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40B4-8963-D3C761B18371}
Task: {CE485DF0-7642-4D43-A868-4FEE3C61E736} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [115032 2020-03-16] (Microsoft Corporation -> Microsoft Corporation)
Task: {CE9BC8DF-0BAD-4B6E-BDD1-D5B758D2BB09} - System32\Tasks\GyazoUpdateTaskMachineDaily => C:\Program Files (x86)\Gyazo\GyazoUpdate.exe [6785448 2018-10-04] (Nota Inc. -> Nota Inc.)
Task: {D628BE4E-9196-4E1F-9004-CB9A57F7F117} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [790920 2019-01-30] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {D9215F2C-70AC-4800-A1F5-3F5003799159} - System32\Tasks\{5DFD529E-D117-4384-A0BB-BFEEC48C50CD} => C:\Windows\system32\pcalua.exe -a "C:\Program Files\ByteFence\ByteFence.exe" -c /uninstall
Task: {DA5EB96F-02F5-40BD-AEE8-47FB55BD5532} - System32\Tasks\{A4C2CAB1-A9FE-49BD-B748-C3A4D323615E} => C:\Windows\system32\pcalua.exe -a "D:\jeux\Doom Pack (All 4 Games)\All 4 Doom games\Doom 1\DIRECTX\DXSETUP.EXE" -d "D:\jeux\Doom Pack (All 4 Games)\All 4 Doom games\Doom 1\DIRECTX"
Task: {DE749C40-5263-46AE-97A7-8FB0D596A5F3} - System32\Tasks\AutoKMS => C:\WINDOWS\AutoKMS\AutoKMS.exe [3820032 2017-12-24] () [File not signed]
Task: {E0668209-4625-4348-B1A1-3E8D81808341} - System32\Tasks\Microsoft\Windows\Shell\FamilySafetyUpload => {EBF00FCB-0769-4B81-9BEC-6C05514111AA}
Task: {E5F9A731-D0D1-4C1B-B002-6FE7F59D9B58} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [24600440 2020-03-05] (Microsoft Corporation -> Microsoft Corporation)
Task: {EEE44773-F0F0-4FEC-88DB-BC261B357833} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe
Task: {F329C8BA-33B2-4FCE-9503-3227E41CBE3C} - System32\Tasks\Avira\System Speedup\Delayed Startup\All users\4 => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [16776192 2017-06-18] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {FAE461E4-E9B3-4571-9302-2BAD56E49E04} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [115032 2020-03-16] (Microsoft Corporation -> Microsoft Corporation)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 204.197.191.194 38.117.85.2
Tcpip\..\Interfaces\{042b6947-f0fb-43a1-b97d-c70ece30554c}: [DhcpNameServer] 192.168.2.1 198.235.214.4
Tcpip\..\Interfaces\{599eccc3-9677-4ad5-a981-5e2476e0692a}: [DhcpNameServer] 204.197.191.194 38.117.85.2
Tcpip\..\Interfaces\{c39adba5-5169-4b86-982b-091ad19e4eb3}: [DhcpNameServer] 204.197.191.194 38.117.85.2
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2020-01-14] (Microsoft Corporation -> Microsoft Corporation)
BHO: McAfee WebAdvisor -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> C:\Program Files\McAfee\WebAdvisor\x64\IEPlugin.dll [2019-06-04] (McAfee, LLC -> McAfee, Inc.)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll [2020-01-14] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_201\bin\ssv.dll [2019-04-01] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: ArcPluginIEBHO Class -> {84BFE29A-8139-402a-B2A4-C23AE9E1A75F} -> D:\SteamLibrary\Arc\Plugins\ArcPluginIE.dll => No File
BHO-x32: McAfee WebAdvisor -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> C:\Program Files\McAfee\WebAdvisor\win32\IEPlugin.dll [2019-06-04] (McAfee, LLC -> McAfee, Inc.)
BHO-x32: SpeedBit Link Verification Helper -> {D5974A72-C81C-4DC3-BE77-A8A7BBC8864E} -> D:\Program Files (x86)\DAP\LinkVerifier.dll [2018-11-26] (Speed-Bit LTD -> Speedbit Ltd.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_201\bin\jp2ssv.dll [2019-04-01] (Oracle America, Inc. -> Oracle Corporation)
Handler-x32: cdo - {CD00020A-8B95-11D1-82DB-00C04FB1625D} - C:\Program Files (x86)\Common Files\Microsoft Shared\Web Folders\PKMCDO.DLL [2001-01-22] (Microsoft Corporation) [File not signed]
Handler-x32: http - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\OLE DB\msdaipp.dll [2001-02-12] (Microsoft Corporation) [File not signed]
Handler-x32: http - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\OLE DB\msdaipp.dll [2001-02-12] (Microsoft Corporation) [File not signed]
Handler-x32: https - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\OLE DB\msdaipp.dll [2001-02-12] (Microsoft Corporation) [File not signed]
Handler-x32: https - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\OLE DB\msdaipp.dll [2001-02-12] (Microsoft Corporation) [File not signed]
Handler-x32: msdaipp - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\OLE DB\msdaipp.dll [2001-02-12] (Microsoft Corporation) [File not signed]
Handler-x32: msdaipp - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\OLE DB\msdaipp.dll [2001-02-12] (Microsoft Corporation) [File not signed]
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-03-07] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-03-07] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-03-07] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-03-07] (Microsoft Corporation -> Microsoft Corporation)
Edge:
======
DownloadDir: D:\Downloads
Edge HomeButtonPage: HKU\S-1-5-21-278662808-3718442249-2288055692-1001 -> hxxp://www.google.ca/
Edge Notifications: HKU\S-1-5-21-278662808-3718442249-2288055692-1001 -> hxxps://www.facebook.com; hxxps://www.youtube.com
Edge Extension: (Grammarly for Microsoft Edge) -> EdgeExtension_GrammarlyGrammarlyforMicrosoftEdge_zee0y2571dhse => C:\Program Files\WindowsApps\Grammarly.GrammarlyforMicrosoftEdge_1.120.2309.0_neutral__zee0y2571dhse [2019-06-03]
Edge Extension: (Gyazo Extension for Edge) -> EdgeExtension_NotaIncGyazoExtensionforEdge_3yvfjx4yf1z4t => C:\Program Files\WindowsApps\NotaInc.GyazoExtensionforEdge_2.8.2.0_neutral__3yvfjx4yf1z4t [2018-05-29]
Edge Extension: (Save to Pocket) -> EdgeExtension_PocketSavetoPocket_v63j13wrfzj3t => C:\Program Files\WindowsApps\Pocket.SavetoPocket_2.0.38.0_neutral__v63j13wrfzj3t [2017-11-08]
Edge Extension: (Amazon Assistant) -> xxx_AmazoncomAmazonAssistant_343d40qqvtj1t => C:\Program Files\WindowsApps\Amazon.com.AmazonAssistant_10.1910.9.0_neutral__343d40qqvtj1t [2019-11-11]
FireFox:
========
FF ProfilePath: C:\Users\Chris\AppData\Roaming\Mozilla\Firefox\Profiles\0tvdTBsU.default [2020-03-28]
FF Extension: (IBM Security Rapport) - C:\Users\Chris\AppData\Roaming\Mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}\rapportext@trusteer.com.xpi [2020-03-28] [UpdateUrl:hxxps://clients2.google.com/service/update2/crx]
FF Extension: (Avira Browser Safety) - C:\Users\Chris\AppData\Roaming\Mozilla\Firefox\Profiles\0tvdTBsU.default\Extensions\abs@avira.com [2018-11-26] [hxxps://download.avira.com/package/absnooffers/firefox/update_webext_no_offers.rdf]
FF Extension: (Avira Password Manager) - C:\Users\Chris\AppData\Roaming\Mozilla\Firefox\Profiles\0tvdTBsU.default\Extensions\passwordmanager@avira.com [2018-11-26] [hxxps://s3.eu-central-1.amazonaws.com/avira-pwm-extensions/update.rdf]
FF HKLM\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi
FF Extension: (McAfee® WebAdvisor) - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi [2019-06-04]
FF HKLM-x32\...\Firefox\Extensions: [daplinkchecker@speedbit.com] - D:\Program Files (x86)\DAP\daplinkchecker
FF Extension: (DAP Link Checker) - D:\Program Files (x86)\DAP\daplinkchecker [2018-11-26] [Legacy] [not signed]
FF HKLM-x32\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi
FF Plugin-x32: @java.com/DTPlugin,version=11.201.2 -> C:\Program Files (x86)\Java\jre1.8.0_201\bin\dtplugin\npDeployJava1.dll [2019-04-01] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.201.2 -> C:\Program Files (x86)\Java\jre1.8.0_201\bin\plugin2\npjp2.dll [2019-04-01] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2019-12-07] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2020-01-14] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @perfectworld.com/npArcPlayNowPlugin -> D:\SteamLibrary\Arc\Plugins\npArcPluginFF.dll [No File]
FF Plugin-x32: @videolan.org/vlc,version=2.2.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-01-10] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-01-10] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-01-10] (VideoLAN -> VideoLAN)
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Chris\AppData\Local\Google\Chrome\User Data\Default [2020-03-29]
CHR Notifications: Default -> hxxps://gaming.gentside.com; hxxps://www.facebook.com; hxxps://www.youtube.com
CHR StartupUrls: Default -> "hxxp://www.google.ca/"
CHR NewTab: Default -> Not-active:"chrome-extension://ipmkfpcnmccejididiaagpgchgjfajgp/html/newtab.html"
CHR DefaultSearchURL: Default -> hxxps://ca.search.yahoo.com/search?fr=mcafee&type=E210CA91166G0&p={searchTerms}
CHR DefaultSearchKeyword: Default -> mcafee
CHR Extension: (Star Wars Rogue One) - C:\Users\Chris\AppData\Local\Google\Chrome\User Data\Default\Extensions\aahgijdhedbgkflbklkphefdjgepmmog [2019-04-01]
CHR Extension: (Slides) - C:\Users\Chris\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-04-01]
CHR Extension: (Docs) - C:\Users\Chris\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2019-04-01]
CHR Extension: (Google Drive) - C:\Users\Chris\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2019-04-01]
CHR Extension: (IBM Security Rapport) - C:\Users\Chris\AppData\Local\Google\Chrome\User Data\Default\Extensions\bbjllphbppobebmjpjcijfbakobcheof [2019-12-02]
CHR Extension: (YouTube) - C:\Users\Chris\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-04-01]
CHR Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\Chris\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2020-03-04]
CHR Extension: (User-Agent Switcher for Chrome) - C:\Users\Chris\AppData\Local\Google\Chrome\User Data\Default\Extensions\djflhoibgkdhkhhcedjiklpkjnoahfmg [2019-04-01]
CHR Extension: (Sheets) - C:\Users\Chris\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-04-01]
CHR Extension: (McAfee® WebAdvisor) - C:\Users\Chris\AppData\Local\Google\Chrome\User Data\Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2020-03-04]
CHR Extension: (Protection Web Avira) - C:\Users\Chris\AppData\Local\Google\Chrome\User Data\Default\Extensions\flliilndjeohchalpbbcdekjklbdgfkk [2020-03-17]
CHR Extension: (Google Docs hors connexion) - C:\Users\Chris\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-03-17]
CHR Extension: (Avast Online Security) - C:\Users\Chris\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2020-03-04]
CHR Extension: (JustBlock Security) - C:\Users\Chris\AppData\Local\Google\Chrome\User Data\Default\Extensions\hiajdlfgbgnnjakkbnpdhmhfhklkbiol [2019-10-14]
CHR Extension: (Avira SafeSearch Plus) - C:\Users\Chris\AppData\Local\Google\Chrome\User Data\Default\Extensions\ipmkfpcnmccejididiaagpgchgjfajgp [2019-06-16]
CHR Extension: (Application Launcher for Drive (by Google)) - C:\Users\Chris\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2019-04-01]
CHR Extension: (Save to Pocket) - C:\Users\Chris\AppData\Local\Google\Chrome\User Data\Default\Extensions\niloccemoadcdkdjlinkgdfekeahmflj [2019-08-05]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Chris\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-14]
CHR Extension: (Netflix Party) - C:\Users\Chris\AppData\Local\Google\Chrome\User Data\Default\Extensions\oocalimimngaihdkbihfgmpkcpnmlaoa [2020-03-27]
CHR Extension: (Gmail) - C:\Users\Chris\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-04-01]
CHR Extension: (Chrome Media Router) - C:\Users\Chris\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-03-20]
CHR Profile: C:\Users\Chris\AppData\Local\Google\Chrome\User Data\Guest Profile [2020-03-28]
CHR HKLM\...\Chrome\Extension: [caljgklbbfbcjjanaijlacgncafpegll]
CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk]
CHR HKLM\...\Chrome\Extension: [ipmkfpcnmccejididiaagpgchgjfajgp]
CHR HKU\S-1-5-21-278662808-3718442249-2288055692-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [bbjllphbppobebmjpjcijfbakobcheof]
CHR HKU\S-1-5-21-278662808-3718442249-2288055692-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh]
CHR HKU\S-1-5-21-278662808-3718442249-2288055692-500\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [bbjllphbppobebmjpjcijfbakobcheof]
CHR HKLM-x32\...\Chrome\Extension: [caljgklbbfbcjjanaijlacgncafpegll]
CHR HKLM-x32\...\Chrome\Extension: [ffdcfjdljhbehggjdkdioajnknjcpbjb] - D:\Program Files (x86)\DAP\DAPChrome\DAPChrome6.crx [2018-11-26]
CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki]
CHR HKLM-x32\...\Chrome\Extension: [ipmkfpcnmccejididiaagpgchgjfajgp]
Opera:
=======
OPR Extension: (Pocket (formerly Read It Later)) - C:\Users\Chris\AppData\Roaming\Opera Software\Opera Stable\Extensions\hedlhkdmdlcjhiblbmfggdiaeekblnoi [2018-11-26]
OPR Extension: (LastPass: Free Password Manager) - C:\Users\Chris\AppData\Roaming\Opera Software\Opera Stable\Extensions\hnjalnkldgigidggphhmacmimbdlafdo [2018-11-26]
OPR Extension: (No Name) - C:\Users\Chris\AppData\Roaming\Opera Software\Opera Stable\Extensions\jagcajmmjpalllmegmnafdeeijmalefh [2018-11-26]
OPR Extension: (Install Chrome Extensions) - C:\Users\Chris\AppData\Roaming\Opera Software\Opera Stable\Extensions\kipjbhgniklcnglfaldilecjomjaddfi [2018-11-26]
OPR Extension: (Amazon Assistant for Opera) - C:\Users\Chris\AppData\Roaming\Opera Software\Opera Stable\Extensions\mmmbddcnnndpbdflpccgcknaaabgldak [2018-11-26]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S2 AntiVirMailService; C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe [1208848 2020-02-18] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AntivirProtectedService; C:\Program Files (x86)\Avira\Antivirus\ProtectedService.exe [536304 2020-02-18] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\Antivirus\sched.exe [483432 2020-02-18] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\Antivirus\avguard.exe [483432 2020-02-18] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
S2 AntiVirWebService; C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe [574952 2020-02-18] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
S3 ArcService; D:\SteamLibrary\Arc\ArcService.exe [123000 2018-11-12] (Perfect World Entertainment Inc. -> Perfect World Entertainment Inc)
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [6046624 2020-02-25] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [413472 2020-02-25] (Avast Software s.r.o. -> AVAST Software)
R2 AvastWscReporter; C:\Program Files\AVAST Software\Avast\wsc_proxy.exe [57536 2020-02-25] (Avast Software s.r.o. -> AVAST Software)
R2 Avira.HomeGuard; C:\Program Files (x86)\Avira\Home Guard\Avira.HomeGuard.Service.exe [30528 2020-02-17] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG;)
R2 Avira.ServiceHost; C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe [631944 2020-02-26] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AviraOptimizerHost; C:\Program Files (x86)\Avira\Optimizer Host\Avira.OptimizerHost.exe [2989888 2020-01-20] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AviraPhantomVPN; C:\Program Files (x86)\Avira\VPN\Avira.VpnService.exe [382992 2020-03-18] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AviraUpdaterService; C:\Program Files (x86)\Avira\SoftwareUpdater\Avira.SoftwareUpdater.ServiceHost.exe [151248 2020-02-04] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [7013384 2018-04-04] (BattlEye Innovations e.K. -> )
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11091224 2020-03-05] (Microsoft Corporation -> Microsoft Corporation)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2018-10-22] (Dropbox, Inc -> Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2018-10-22] (Dropbox, Inc -> Dropbox, Inc.)
R2 DbxSvc; C:\WINDOWS\system32\DbxSvc.exe [44552 2020-03-19] (Dropbox, Inc -> Dropbox, Inc.)
S3 Disc Soft Lite Bus Service; D:\Program Files (x86)\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [2291904 2017-08-14] (Disc Soft Ltd -> Disc Soft Ltd)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [803440 2019-05-27] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
R2 HTC Account Service; C:\Program Files\HTC Account\Htc.Identity.Service.exe [75840 2019-02-15] (HTC Corp. -> HTC)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [6933272 2020-03-29] (Malwarebytes Inc -> Malwarebytes)
R2 McAfee WebAdvisor; C:\Program Files\McAfee\WebAdvisor\ServiceHost.exe [899264 2019-06-27] (McAfee, LLC -> McAfee, Inc.)
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [790920 2019-01-30] (NVIDIA Corporation -> NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [790920 2019-01-30] (NVIDIA Corporation -> NVIDIA Corporation)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2495280 2020-03-27] (Electronic Arts, Inc. -> Electronic Arts)
R2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3445552 2020-03-27] (Electronic Arts, Inc. -> Electronic Arts)
R2 RapportMgmtService; C:\Program Files (x86)\Trusteer\Rapport\bin\RapportMgmtService.exe [3001632 2019-10-06] (IBM -> IBM Corp.)
R2 Razer Chroma SDK Server; C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKServer.exe [449664 2018-08-29] (Razer USA Ltd. -> Razer Inc.)
R2 Razer Chroma SDK Service; C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKService.exe [942720 2018-09-12] (Razer USA Ltd. -> Razer Inc.)
R2 Razer Game Manager Service; C:\Program Files (x86)\Razer\Razer Services\GMS\GameManagerService.exe [253776 2018-12-18] (Razer USA Ltd. -> Razer Inc)
R2 Razer Synapse Service; C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe [287472 2019-03-11] (Razer USA Ltd. -> )
R2 RealtekWlanU; C:\Program Files (x86)\Realtek\USB Wireless LAN Utility\RtlService.exe [48856 2014-05-19] (Realtek Semiconductor Corp -> Realtek)
S3 Rockstar Service; C:\Program Files\Rockstar Games\Launcher\RockstarService.exe [1314448 2020-03-20] (Rockstar Games, Inc. -> Rockstar Games)
S2 RTLDHCPService; C:\Program Files (x86)\Realtek\USB Wireless LAN Utility\RTLDHCP.exe [262360 2014-04-23] (Realtek Semiconductor Corp -> Realtek)
R2 RunSwUSB; C:\Windows\runSW.exe [44760 2014-12-12] (Realtek Semiconductor Corp -> )
R2 RzActionSvc; C:\Program Files (x86)\Razer\Razer Services\Razer Central\RazerCentralService.exe [535424 2019-01-28] (Razer USA Ltd. -> Razer Inc.)
R2 RzKLService; C:\Program Files (x86)\Razer\Razer Cortex\RzKLService.exe [290352 2018-12-19] (Razer USA Ltd. -> Razer Inc.)
R2 RzSurroundVADStreamingService; C:\ProgramData\Razer\Synapse\Devices\Razer Surround\Driver\RzSurroundVADStreamingService.exe [4261344 2018-01-08] (Razer USA Ltd. -> Razer Inc)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5796168 2019-09-25] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 Service KMSELDI; C:\Program Files\KMSpico\Service_KMS.exe [745664 2016-01-11] (@ByELDI -> @ByELDI) [File not signed]
R2 ss_conn_service; C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [752224 2017-01-16] (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.)
R2 TeamViewer; C:\Users\Public\temp\TeamViewer\TeamViewer_Service.exe [11786992 2018-11-14] (TeamViewer GmbH -> TeamViewer GmbH)
S3 ViveportDesktopService; D:\Program Files (x86)\VIVE\PCClient\ViveportDesktopService.exe [382528 2020-01-15] (HTC Corp. -> HTC)
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [4098056 2019-03-19] (Microsoft Corporation -> Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [113992 2019-03-19] (Microsoft Corporation -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_e0a5a1b06de180e3\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_e0a5a1b06de180e3\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem
R2 NvTelemetryContainer; "C:\Program Files\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvTelemetry\plugins" -r
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 amdgpio2; C:\WINDOWS\System32\drivers\amdgpio2.sys [45832 2019-10-01] (Advanced Micro Devices INC. -> Advanced Micro Devices, Inc)
R3 amdgpio3; C:\WINDOWS\System32\drivers\amdgpio3.sys [33144 2017-08-29] (AMD PMP-PE CB Code Signer v20160415 -> Advanced Micro Devices, Inc)
S3 amdkmcsp; C:\WINDOWS\system32\DRIVERS\amdkmcsp.sys [101232 2017-06-16] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc. )
R3 AMDPCIDev; C:\WINDOWS\System32\drivers\AMDPCIDev.sys [31592 2018-04-25] (Advanced Micro Devices Inc. -> Advanced Micro Devices)
R0 amdpsp; C:\WINDOWS\System32\drivers\amdpsp.sys [137496 2018-09-12] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc. )
R0 amd_sata; C:\WINDOWS\System32\drivers\amd_sata.sys [83656 2015-03-19] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
R0 amd_xata; C:\WINDOWS\System32\drivers\amd_xata.sys [23752 2015-03-19] (Advanced Micro Devices, Inc. -> Advanced Micro Devices)
R3 AsusVBus; C:\WINDOWS\System32\drivers\AsusVBus.sys [39704 2017-01-09] (ASUSTeK Computer Inc. -> Windows (R) Win 7 DDK provider)
R0 aswArDisk; C:\WINDOWS\System32\drivers\aswArDisk.sys [37864 2020-02-25] (Avast Software s.r.o. -> AVAST Software)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [205576 2020-02-25] (Avast Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriver.sys [271120 2020-02-25] (Avast Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidsh.sys [206608 2020-02-25] (Avast Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbuniv.sys [64272 2020-02-25] (Avast Software s.r.o. -> AVAST Software)
R0 aswElam; C:\WINDOWS\System32\drivers\aswElam.sys [16304 2020-02-25] (Microsoft Windows Early Launch Anti-malware Publisher -> AVAST Software)
R1 aswHdsKe; C:\WINDOWS\System32\drivers\aswHdsKe.sys [279360 2020-02-25] (Avast Software s.r.o. -> AVAST Software)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [42976 2020-02-25] (Avast Software s.r.o. -> AVAST Software)
R2 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [175400 2020-02-25] (Avast Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr2.sys [110560 2020-02-25] (Avast Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [84056 2020-02-25] (Avast Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [848672 2020-02-25] (Avast Software s.r.o. -> AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [458584 2020-03-11] (Avast Software s.r.o. -> AVAST Software)
R2 aswStm; C:\WINDOWS\System32\drivers\aswStm.sys [235184 2020-02-25] (Avast Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [316256 2020-02-25] (Avast Software s.r.o. -> AVAST Software)
R3 ATP; C:\WINDOWS\System32\drivers\AsusTP.sys [84472 2017-01-09] (ASUSTeK Computer Inc. -> ASUS Corporation)
R0 avdevprot; C:\WINDOWS\System32\DRIVERS\avdevprot.sys [78936 2019-06-18] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
S0 avelam; C:\WINDOWS\System32\drivers\avelam.sys [22336 2019-02-27] (Microsoft Windows Early Launch Anti-malware Publisher -> Avira Operations GmbH & Co. KG)
R2 avgntflt; C:\WINDOWS\System32\DRIVERS\avgntflt.sys [208208 2020-02-18] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R1 avipbb; C:\WINDOWS\system32\DRIVERS\avipbb.sys [197176 2019-09-25] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\WINDOWS\system32\DRIVERS\avkmgr.sys [46704 2019-02-27] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 avnetflt; C:\WINDOWS\system32\DRIVERS\avnetflt.sys [89736 2019-02-27] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R0 avusbflt; C:\WINDOWS\System32\Drivers\avusbflt.sys [45472 2019-02-27] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [30264 2017-06-26] (Disc Soft Ltd -> Disc Soft Ltd)
R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [47672 2017-06-26] (Disc Soft Ltd -> Disc Soft Ltd)
R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae64.sys [153312 2020-03-29] (Malwarebytes Corporation -> Malwarebytes)
R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [214496 2020-03-29] (Malwarebytes Inc -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [20936 2020-03-29] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMFarflt; C:\WINDOWS\System32\DRIVERS\farflt.sys [195432 2020-03-29] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMProtection; C:\WINDOWS\system32\DRIVERS\mbam.sys [73584 2020-03-29] (Malwarebytes Corporation -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [248968 2020-03-29] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMWebProtection; C:\WINDOWS\system32\DRIVERS\mwac.sys [119960 2020-03-29] (Malwarebytes Inc -> Malwarebytes)
R1 MpKsleceadc06; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{DF807065-0B94-478F-924A-E558E56D5D61}\MpKsleceadc06.sys [58120 2020-03-29] (Microsoft Corporation -> Microsoft Corporation)
R2 npf; C:\WINDOWS\System32\drivers\npf.sys [36600 2018-12-19] (Riverbed Technology, Inc. -> Riverbed Technology, Inc.)
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_e0a5a1b06de180e3\nvlddmkm.sys [23439288 2020-03-18] (NVIDIA Corporation -> NVIDIA Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30336 2019-01-16] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [70024 2018-10-01] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvhci; C:\WINDOWS\System32\drivers\nvvhci.sys [75600 2019-07-17] (NVIDIA Corporation -> NVIDIA Corporation)
R3 phantomtap; C:\WINDOWS\System32\drivers\phantomtap.sys [45056 2020-03-18] (Avira Operations GmbH & Co. KG -> The OpenVPN Project)
R1 RapportAegle64; C:\Program Files (x86)\Trusteer\Rapport\bin\x64\RapportAegle64.sys [429112 2019-10-06] (IBM -> IBM Corp.)
R1 RapportCerberus_1950099; c:\programdata\trusteer\rapport\store\exts\RapportCerberus\baseline\RapportCerberus64_1950099.sys [1466824 2020-02-03] (IBM -> IBM Corp.)
R1 RapportEI64; C:\Program Files (x86)\Trusteer\Rapport\bin\x64\RapportEI64.sys [542112 2019-10-06] (IBM -> IBM Corp.)
R0 RapportHades64; C:\WINDOWS\System32\Drivers\RapportHades64.sys [395384 2019-10-06] (IBM -> IBM Corp.)
R0 RapportKE64; C:\WINDOWS\System32\Drivers\RapportKE64.sys [445240 2019-10-06] (IBM -> IBM Corp.)
R1 RapportPG64; C:\Program Files (x86)\Trusteer\Rapport\bin\x64\RapportPG64.sys [560568 2019-10-06] (IBM -> IBM Corp.)
R3 RtlWlanu; C:\WINDOWS\system32\DRIVERS\rtwlanu.sys [9860088 2019-07-19] (Realtek Semiconductor Corp. -> Realtek Semiconductor Corporation )
R3 rzendpt; C:\WINDOWS\System32\drivers\rzendpt.sys [50392 2015-08-13] (Razer Inc. -> Razer Inc)
R3 RZSURROUNDVADService; C:\WINDOWS\system32\drivers\RzSurroundVAD.sys [49176 2016-10-16] (Razer USA Ltd. -> Windows (R) Win 7 DDK provider)
S3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [27136 2016-04-21] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
S0 WdBoot; C:\WINDOWS\System32\drivers\WdBoot.sys [46472 2019-03-19] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\WdFilter.sys [333784 2019-03-19] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [62432 2019-03-19] (Microsoft Windows -> Microsoft Corporation)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) ===================
(If an entry is included in the fixlist, the file/folder will be moved.)
2020-03-29 04:42 - 2020-03-29 04:45 - 000000000 ___DC C:\Users\Chris\AppData\LocalLow\IGDump
2020-03-29 04:42 - 2020-03-29 04:42 - 000195432 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\farflt.sys
2020-03-29 04:42 - 2020-03-29 04:42 - 000119960 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys
2020-03-29 04:42 - 2020-03-29 04:42 - 000073584 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2020-03-29 04:41 - 2020-03-29 04:41 - 000248968 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2020-03-29 04:41 - 2020-03-29 04:41 - 000214496 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys
2020-03-29 04:41 - 2020-03-29 04:41 - 000002029 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2020-03-29 04:41 - 2020-03-29 04:41 - 000002029 _____ C:\ProgramData\Desktop\Malwarebytes.lnk
2020-03-29 04:41 - 2020-03-29 04:41 - 000000000 ____D C:\Users\Chris\AppData\Local\mbamtray
2020-03-29 04:41 - 2020-03-29 04:41 - 000000000 ____D C:\Users\Chris\AppData\Local\mbam
2020-03-29 04:41 - 2020-03-29 04:41 - 000000000 ____D C:\Users\Chris\AppData\Local\cache
2020-03-29 04:41 - 2020-03-29 04:41 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2020-03-29 04:40 - 2020-03-29 04:40 - 000153312 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys
2020-03-29 04:40 - 2020-03-29 04:40 - 000020936 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamElam.sys
2020-03-29 04:40 - 2020-03-29 04:40 - 000000000 ____D C:\ProgramData\Malwarebytes
2020-03-29 04:40 - 2020-03-29 04:40 - 000000000 ____D C:\Program Files\Malwarebytes
2020-03-29 00:16 - 2020-03-29 00:17 - 000000000 ____D C:\Users\Administrator\AppData\Local\Packages
2020-03-29 00:16 - 2020-03-29 00:16 - 000000000 ___RD C:\Users\Administrator\3D Objects
2020-03-29 00:16 - 2020-03-29 00:16 - 000000000 ____D C:\Users\Administrator\AppData\Roaming\Synapse3
2020-03-29 00:16 - 2020-03-29 00:16 - 000000000 ____D C:\Users\Administrator\AppData\Roaming\Adobe
2020-03-29 00:16 - 2020-03-29 00:16 - 000000000 ____D C:\Users\Administrator\AppData\Local\NVIDIA Corporation
2020-03-29 00:16 - 2020-03-29 00:16 - 000000000 ____D C:\Users\Administrator\AppData\Local\NVIDIA
2020-03-29 00:15 - 2020-03-29 00:17 - 000000000 ____D C:\Users\Administrator\AppData\Local\ConnectedDevicesPlatform
2020-03-29 00:15 - 2020-03-29 00:16 - 000000000 ____D C:\Users\Administrator\AppData\Local\Razer
2020-03-29 00:11 - 2020-03-29 00:16 - 000000000 ____D C:\Users\Administrator\AppData\Local\Google
2020-03-29 00:11 - 2020-03-29 00:16 - 000000000 ____D C:\Users\Administrator
2020-03-29 00:11 - 2020-03-29 00:12 - 000000000 ____D C:\Users\Administrator\AppData\Local\D3DSCache
2020-03-29 00:11 - 2020-03-29 00:11 - 000000020 ___SH C:\Users\Administrator\ntuser.ini
2020-03-29 00:11 - 2019-08-18 16:16 - 000000000 ____D C:\Users\Administrator\AppData\Roaming\Mozilla
2020-03-29 00:11 - 2019-08-07 13:27 - 000000000 ____D C:\Users\Administrator\AppData\Local\Trusteer
2020-03-29 00:11 - 2019-03-19 00:46 - 000001105 _____ C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2020-03-28 22:33 - 2020-03-28 22:33 - 000640500 _____ C:\WINDOWS\Minidump\032820-13125-01.dmp
2020-03-28 20:34 - 2020-03-28 20:34 - 000607884 _____ C:\WINDOWS\Minidump\032820-11578-01.dmp
2020-03-28 20:29 - 2020-03-28 20:59 - 000659978 _____ C:\WINDOWS\ntbtlog.txt
2020-03-28 20:28 - 2020-03-28 20:29 - 000015360 _____ C:\WINDOWS\system32\UserMgrLog.etl
2020-03-28 20:28 - 2020-03-28 20:29 - 000012288 _____ C:\WINDOWS\system32\umstartup.etl
2020-03-28 19:05 - 2020-03-28 19:05 - 000000000 ____D C:\WINDOWS\pss
2020-03-28 18:58 - 2020-03-28 19:05 - 000022756 _____ C:\ProgramData\NVDisplay.ContainerLocalSystem.log_backup1
2020-03-28 18:58 - 2020-03-28 19:05 - 000016044 _____ C:\ProgramData\DisplaySessionContainer1.log_backup1
2020-03-28 18:58 - 2020-03-28 19:05 - 000013311 _____ C:\ProgramData\NVDisplayContainerWatchdog.log_backup1
2020-03-28 18:58 - 2020-03-28 18:58 - 000001209 _____ C:\ProgramData\NvcDispCorePlugin.log_backup1
2020-03-28 18:57 - 2020-03-28 18:59 - 000003978 ____C C:\Users\Chris\Desktop\Fixlog.txt
2020-03-28 18:50 - 2020-03-28 18:56 - 000126197 ____C C:\Users\Chris\Desktop\Shortcut.txt
2020-03-28 18:23 - 2020-03-28 18:56 - 000102730 ____C C:\Users\Chris\Desktop\Addition.txt
2020-03-28 18:20 - 2020-03-29 05:14 - 000056402 ____C C:\Users\Chris\Desktop\FRST.txt
2020-03-28 18:19 - 2020-03-29 05:13 - 000000000 ___DC C:\FRST
2020-03-28 18:19 - 2020-03-29 04:44 - 000000000 ___DC C:\Users\Chris\Desktop\FRST-OlderVersion
2020-03-28 18:19 - 2020-03-28 18:19 - 002280448 ____C (Farbar) C:\Users\Chris\Desktop\FRST64-2.1.exe
2020-03-28 17:46 - 2020-03-28 17:47 - 000000000 ____D C:\WINDOWS\LastGood
2020-03-28 17:23 - 2020-03-28 17:27 - 000000000 ____D C:\WINDOWS\LastGood.Tmp
2020-03-28 14:32 - 2020-03-28 14:39 - 000000000 ____D C:\Users\Chris\AppData\Roaming\Zoom
2020-03-28 14:08 - 2020-03-18 19:23 - 005589224 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2020-03-28 14:02 - 2020-03-28 14:02 - 000000000 ___DC C:\NVIDIA
2020-03-28 14:02 - 2020-03-18 22:22 - 004927048 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2020-03-28 14:02 - 2020-03-18 22:22 - 004196160 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2020-03-28 14:02 - 2020-03-18 19:26 - 001729232 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2020-03-28 14:02 - 2020-03-18 19:26 - 001729232 _____ C:\WINDOWS\system32\vulkaninfo.exe
2020-03-28 14:02 - 2020-03-18 19:26 - 001329360 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2020-03-28 14:02 - 2020-03-18 19:26 - 001329360 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2020-03-28 14:02 - 2020-03-18 19:26 - 001078992 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
2020-03-28 14:02 - 2020-03-18 19:26 - 001078992 _____ C:\WINDOWS\system32\vulkan-1.dll
2020-03-28 14:02 - 2020-03-18 19:26 - 000937680 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll
2020-03-28 14:02 - 2020-03-18 19:26 - 000937680 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2020-03-28 14:02 - 2020-03-18 19:26 - 000450464 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2020-03-28 14:02 - 2020-03-18 19:26 - 000348048 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2020-03-28 14:02 - 2020-03-18 19:25 - 011944864 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvptxJitCompiler.dll
2020-03-28 14:02 - 2020-03-18 19:25 - 010285472 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvptxJitCompiler.dll
2020-03-28 14:02 - 2020-03-18 19:24 - 002073200 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2020-03-28 14:02 - 2020-03-18 19:24 - 001565136 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2020-03-28 14:02 - 2020-03-18 19:24 - 001481144 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2020-03-28 14:02 - 2020-03-18 19:24 - 001351776 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvfatbinaryLoader.dll
2020-03-28 14:02 - 2020-03-18 19:24 - 001142384 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2020-03-28 14:02 - 2020-03-18 19:24 - 001022560 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvml.dll
2020-03-28 14:02 - 2020-03-18 19:24 - 000817264 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmcumd.dll
2020-03-28 14:02 - 2020-03-18 19:24 - 000680048 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll
2020-03-28 14:02 - 2020-03-18 19:24 - 000676240 _____ C:\WINDOWS\system32\nvofapi64.dll
2020-03-28 14:02 - 2020-03-18 19:24 - 000573024 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvidia-smi.exe
2020-03-28 14:02 - 2020-03-18 19:24 - 000546928 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll
2020-03-28 14:02 - 2020-03-18 19:24 - 000544144 _____ C:\WINDOWS\SysWOW64\nvofapi.dll
2020-03-28 14:02 - 2020-03-18 19:23 - 017601120 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2020-03-28 14:02 - 2020-03-18 19:23 - 015157664 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2020-03-28 14:02 - 2020-03-18 19:23 - 005856864 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2020-03-28 14:02 - 2020-03-18 19:23 - 005158512 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2020-03-28 14:02 - 2020-03-18 19:23 - 001049696 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvfatbinaryLoader.dll
2020-03-28 14:02 - 2020-03-18 19:23 - 000849848 _____ (NVIDIA Corporation) C:\WINDOWS\system32\MCU.exe
2020-03-28 14:02 - 2020-03-18 19:23 - 000811632 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2020-03-28 14:02 - 2020-03-18 19:23 - 000655472 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2020-03-28 14:02 - 2020-03-18 19:23 - 000445024 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdebugdump.exe
2020-03-28 14:02 - 2020-03-18 05:39 - 000111058 _____ C:\WINDOWS\system32\nvidia-smi.1.pdf
2020-03-28 14:02 - 2020-03-18 05:39 - 000077314 _____ C:\WINDOWS\system32\nvinfo.pb
2020-03-28 03:27 - 2020-03-28 03:27 - 000000871 _____ C:\Users\Public\Desktop\Outlast.lnk
2020-03-28 03:27 - 2020-03-28 03:27 - 000000871 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlast.lnk
2020-03-28 03:27 - 2020-03-28 03:27 - 000000871 _____ C:\ProgramData\Desktop\Outlast.lnk
2020-03-28 02:41 - 2020-03-28 02:41 - 000001132 _____ C:\Users\Public\Desktop\Hitman 2 Silent Assassin.lnk
2020-03-28 02:41 - 2020-03-28 02:41 - 000001132 _____ C:\ProgramData\Desktop\Hitman 2 Silent Assassin.lnk
2020-03-28 02:41 - 2020-03-28 02:41 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hitman 2 Silent Assassin
2020-03-28 02:10 - 2020-03-28 02:10 - 000000222 ____C C:\Users\Chris\Desktop\HELLION.url
2020-03-28 02:05 - 2020-03-28 02:05 - 000000000 ___DC C:\Users\Chris\AppData\LocalLow\ZeroGravity
2020-03-28 00:25 - 2020-03-28 00:25 - 000000000 ____D C:\Users\Chris\AppData\Local\Risen3
2020-03-28 00:22 - 2020-03-28 04:43 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\R.G. Mechanics
2020-03-28 00:22 - 2020-03-28 00:22 - 000001007 ____C C:\Users\Chris\Desktop\Risen 3 - Complete Edition.lnk
2020-03-28 00:22 - 2020-03-28 00:22 - 000000000 ____D C:\Users\Chris\AppData\Roaming\Risen 3 - Complete Edition_Uninstall
2020-03-27 23:33 - 2020-03-27 23:33 - 000000000 ____D C:\Users\Chris\AppData\Roaming\Bungie
2020-03-27 22:15 - 2020-03-27 22:15 - 000001232 _____ C:\Users\Public\Desktop\STAR WARS Battlefront.lnk
2020-03-27 22:15 - 2020-03-27 22:15 - 000001232 _____ C:\ProgramData\Desktop\STAR WARS Battlefront.lnk
2020-03-27 22:15 - 2020-03-27 22:15 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\STAR WARS Battlefront [GOG.com]
2020-03-27 06:21 - 2020-03-27 06:21 - 000000000 ____D C:\Users\Chris\AppData\Local\Saber
2020-03-27 05:19 - 2020-03-27 05:19 - 000000289 ____C C:\Users\Chris\Desktop\World War Z.url
2020-03-27 03:35 - 2020-03-27 03:35 - 000001129 _____ C:\Users\Public\Desktop\No Man's Sky.lnk
2020-03-27 03:35 - 2020-03-27 03:35 - 000001129 _____ C:\ProgramData\Desktop\No Man's Sky.lnk
2020-03-27 03:35 - 2020-03-27 03:35 - 000000000 ____D C:\Users\Chris\AppData\Roaming\HelloGames
2020-03-27 03:34 - 2020-03-27 03:35 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\No Man's Sky [GOG.com]
2020-03-25 06:41 - 2020-03-28 06:42 - 000000000 ___DC C:\Users\Chris\AppData\LocalLow\BitTorrent
2020-03-25 06:12 - 2020-03-25 06:20 - 000000000 ___DC C:\Program Files (x86)\No man's sky
2020-03-25 06:02 - 2020-03-25 06:02 - 000000222 ____C C:\Users\Chris\Desktop\Quake Champions.url
2020-03-25 05:43 - 2020-03-25 05:44 - 000000000 ____D C:\Program Files (x86)\Battlezone II
2020-03-25 05:42 - 2000-07-31 09:48 - 000306688 _____ (InstallShield Software Corporation) C:\WINDOWS\IsUninst.exe
2020-03-25 04:50 - 2020-03-25 04:50 - 000000223 ____C C:\Users\Chris\Desktop\RISK Global Domination.url
2020-03-25 04:48 - 2020-03-25 04:48 - 000000223 ____C C:\Users\Chris\Desktop\Destiny 2.url
2020-03-24 06:06 - 2020-03-24 06:06 - 000000222 ____C C:\Users\Chris\Desktop\Shadow of the Tomb Raider Trial.url
2020-03-19 18:07 - 2020-03-19 18:07 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2020-03-19 14:19 - 2020-03-19 14:19 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-stable.sys
2020-03-19 14:19 - 2020-03-19 14:19 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-dev.sys
2020-03-19 14:19 - 2020-03-19 14:19 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-canary.sys
2020-03-19 14:19 - 2020-03-19 14:19 - 000044552 _____ (Dropbox, Inc.) C:\WINDOWS\system32\DbxSvc.exe
2020-03-18 17:21 - 2020-03-18 17:21 - 000039875 ___CT C:\Users\Chris\Desktop\Cessation Emploi Covid19
2020-03-18 13:55 - 2020-03-18 13:55 - 000045056 _____ (The OpenVPN Project) C:\WINDOWS\system32\Drivers\phantomtap.sys
2020-03-17 16:40 - 2020-03-17 16:40 - 000000165 ___HC C:\Users\Chris\Desktop\~$Grille loyer.xlsx
2020-03-11 10:14 - 2020-03-11 10:14 - 000458584 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2020-03-10 01:32 - 2020-03-28 18:57 - 000000000 ____D C:\Users\Chris\AppData\Roaming\Messenger
2020-03-03 19:07 - 2020-03-28 20:34 - 000000000 ____D C:\WINDOWS\Minidump
2020-03-02 14:14 - 2020-03-27 01:15 - 000004264 _____ C:\WINDOWS\system32\Tasks\Avast Emergency Update
2020-03-02 14:13 - 2020-02-25 14:11 - 000368056 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2020-03-29 05:12 - 2019-03-19 00:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-03-29 04:57 - 2019-08-20 18:49 - 000000000 _____ C:\WINDOWS\system32\RzSurroundVADAudioDeviceManager_log.txt
2020-03-29 04:47 - 2017-06-18 17:40 - 000000000 ____D C:\Program Files\KMSpico
2020-03-29 04:42 - 2017-06-21 03:40 - 000000000 ___DC C:\Users\Chris\AppData\Local\CrashDumps
2020-03-29 04:40 - 2019-03-19 00:52 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2020-03-29 04:33 - 2017-06-18 18:21 - 000000000 ___DC C:\ProgramData\NVIDIA
2020-03-29 04:29 - 2019-08-18 16:12 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2020-03-29 00:24 - 2019-03-19 00:52 - 000000000 ____D C:\WINDOWS\AppReadiness
2020-03-29 00:21 - 2019-08-18 19:49 - 000797520 _____ C:\WINDOWS\system32\perfh00C.dat
2020-03-29 00:21 - 2019-08-18 19:49 - 000154778 _____ C:\WINDOWS\system32\perfc00C.dat
2020-03-29 00:21 - 2019-08-18 16:23 - 001776292 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2020-03-29 00:21 - 2019-03-19 00:50 - 000000000 ____D C:\WINDOWS\INF
2020-03-29 00:18 - 2019-01-06 19:24 - 000000000 ___DC C:\Users\Public\Speedup Sessions
2020-03-29 00:16 - 2019-03-19 00:52 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2020-03-29 00:16 - 2017-10-30 22:18 - 000000000 _RHDC C:\Users\Public\AccountPictures
2020-03-29 00:15 - 2019-08-18 16:24 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2020-03-28 19:17 - 2019-03-19 00:37 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2020-03-28 17:47 - 2017-06-18 18:21 - 000000000 ___DC C:\ProgramData\NVIDIA Corporation
2020-03-28 17:11 - 2019-03-19 00:52 - 000000000 ____D C:\WINDOWS\Help
2020-03-28 17:11 - 2017-06-18 18:20 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2020-03-28 17:09 - 2017-06-18 18:21 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2020-03-28 15:25 - 2019-03-19 00:52 - 000000000 ___HD C:\Program Files\WindowsApps
2020-03-28 15:10 - 2017-11-29 04:59 - 000000000 ___DC C:\Users\Chris\AppData\Roaming\BitTorrent
2020-03-28 14:48 - 2018-11-26 05:47 - 000000000 ___DC C:\Users\Chris\AppData\Local\D3DSCache
2020-03-28 08:55 - 2019-08-18 16:24 - 000003692 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskUserS-1-5-21-278662808-3718442249-2288055692-1001UA
2020-03-28 08:55 - 2019-08-18 16:24 - 000003518 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2020-03-28 08:55 - 2019-08-18 16:24 - 000003424 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskUserS-1-5-21-278662808-3718442249-2288055692-1001Core
2020-03-28 08:55 - 2019-08-18 16:24 - 000003398 _____ C:\WINDOWS\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-03-28 08:55 - 2019-08-18 16:24 - 000003294 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2020-03-28 08:55 - 2019-08-18 16:24 - 000003196 _____ C:\WINDOWS\system32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-03-28 08:55 - 2019-08-18 16:24 - 000003152 _____ C:\WINDOWS\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-03-28 08:55 - 2019-08-18 16:24 - 000003016 _____ C:\WINDOWS\system32\Tasks\NvTmRepCR3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-03-28 08:55 - 2019-08-18 16:24 - 000003016 _____ C:\WINDOWS\system32\Tasks\NvTmRepCR2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-03-28 08:55 - 2019-08-18 16:24 - 000003016 _____ C:\WINDOWS\system32\Tasks\NvTmRepCR1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-03-28 08:55 - 2019-08-18 16:24 - 000002984 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-03-28 08:55 - 2019-08-18 16:24 - 000002956 _____ C:\WINDOWS\system32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-03-28 08:55 - 2019-08-18 16:24 - 000002914 _____ C:\WINDOWS\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-03-28 08:55 - 2019-08-18 16:24 - 000002850 _____ C:\WINDOWS\system32\Tasks\AviraSystemSpeedupUpdate
2020-03-28 08:55 - 2019-08-18 16:24 - 000002838 _____ C:\WINDOWS\system32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-03-28 08:55 - 2019-08-18 16:24 - 000002744 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-03-28 08:55 - 2019-08-18 16:24 - 000002566 _____ C:\WINDOWS\system32\Tasks\Avira_Antivirus_Systray
2020-03-28 08:55 - 2019-08-18 16:24 - 000000000 ____D C:\WINDOWS\system32\Tasks\Avast Software
2020-03-28 05:25 - 2019-04-22 14:21 - 000000000 ___DC C:\Users\Chris\Documents\Assassin's Creed Unity
2020-03-28 04:48 - 2017-06-18 20:13 - 000000000 ___DC C:\Program Files (x86)\Steam
2020-03-28 04:17 - 2017-09-19 17:45 - 000000000 ___DC C:\Users\Chris\Documents\My Games
2020-03-28 02:10 - 2017-06-18 20:24 - 000000000 ___DC C:\Users\Chris\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2020-03-27 03:19 - 2017-11-28 02:36 - 000000000 ___DC C:\ProgramData\Origin
2020-03-27 03:15 - 2019-02-10 12:29 - 000000000 _____ C:\WINDOWS\system32\last.dump
2020-03-27 03:04 - 2017-11-28 02:41 - 000000000 ___DC C:\Users\Chris\AppData\Roaming\Origin
2020-03-27 03:04 - 2017-11-28 02:41 - 000000000 ____D C:\Program Files (x86)\Origin
2020-03-27 03:04 - 2017-11-28 02:36 - 000000000 ___DC C:\Users\Chris\AppData\Local\Origin
2020-03-27 02:30 - 2018-04-17 19:04 - 000000000 ___DC C:\ProgramData\Epic
2020-03-25 15:20 - 2017-06-21 03:26 - 000000000 ____D C:\ProgramData\AVAST Software
2020-03-25 07:10 - 2017-10-30 22:40 - 000000000 ___DC C:\Users\Chris\AppData\Local\PlaceholderTileLogoFolder
2020-03-25 05:56 - 2017-11-07 04:20 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
2020-03-21 07:40 - 2018-10-22 16:59 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Backup and Sync from Google
2020-03-21 04:51 - 2019-05-30 00:07 - 000000000 ___DC C:\Users\Chris\AppData\Local\Vivox
2020-03-21 03:11 - 2018-04-17 19:04 - 000000000 ___DC C:\Users\Chris\AppData\Local\UnrealEngine
2020-03-20 03:35 - 2017-06-20 05:57 - 000000000 ____D C:\Program Files (x86)\Rockstar Games
2020-03-20 03:34 - 2017-06-20 05:57 - 000000000 ____D C:\Program Files\Rockstar Games
2020-03-19 23:57 - 2019-08-18 16:13 - 000000000 ____D C:\Users\Chris
2020-03-19 18:07 - 2018-10-22 17:49 - 000000000 ____D C:\Program Files (x86)\Dropbox
2020-03-19 14:35 - 2019-08-18 17:16 - 000002301 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-03-19 14:35 - 2019-08-18 17:16 - 000002260 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2020-03-19 14:35 - 2019-08-18 17:16 - 000002260 _____ C:\ProgramData\Desktop\Google Chrome.lnk
2020-03-17 16:47 - 2020-01-14 11:49 - 000010308 _____ C:\Users\Chris\Desktop\Grille loyer.xlsx
2020-03-17 15:46 - 2017-07-15 03:21 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2020-03-11 21:18 - 2017-06-18 18:21 - 000000000 ____D C:\ProgramData\Package Cache
2020-03-11 10:24 - 2017-06-25 14:29 - 000000000 ____D C:\WINDOWS\system32\MRT
2020-03-11 10:19 - 2017-06-25 14:29 - 121542864 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2020-03-10 01:32 - 2017-06-18 18:22 - 000000000 ___DC C:\Users\Chris\AppData\Local\NVIDIA Corporation
2020-03-04 19:53 - 2019-03-19 00:37 - 000000000 ____D C:\WINDOWS\CbsTemp
2020-03-03 19:07 - 2019-12-02 06:17 - 001431653 ____N C:\WINDOWS\Minidump\030320-32859-01.dmp
2020-03-03 19:07 - 2019-04-22 14:36 - 000002088 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Antivirus Gratuit.lnk
2020-03-03 19:07 - 2019-04-22 14:36 - 000002076 _____ C:\Users\Public\Desktop\Avast Antivirus Gratuit.lnk
2020-03-03 19:07 - 2019-04-22 14:36 - 000002076 _____ C:\ProgramData\Desktop\Avast Antivirus Gratuit.lnk
2020-03-03 18:54 - 2019-03-19 00:52 - 000000000 ____D C:\WINDOWS\LiveKernelReports
==================== Files in the root of some directories ========
2017-09-19 20:04 - 2017-09-19 20:04 - 000000119 ____C () C:\Users\Chris\AppData\Roaming\Network Monitor II_#0_Traffic.ini
2017-09-19 20:07 - 2017-09-19 20:07 - 000000120 ____C () C:\Users\Chris\AppData\Roaming\System Monitor II_UptimeRecord.ini
2019-04-01 16:31 - 2019-04-01 16:31 - 000221660 ____C () C:\Users\Chris\AppData\Roaming\x2q_1N1I1F1S1T1I0M1F1Q2Y1I1P1B0C1F1Q1P.txt
2020-02-16 21:57 - 2020-02-16 21:57 - 000012288 _____ () C:\Users\Chris\AppData\Local\vita_uranus.data
2018-08-01 03:15 - 2018-08-01 03:15 - 000000000 ____C () C:\Users\Chris\AppData\Local\{1FFC5999-11B9-4279-8D3B-8C5911764F9E}
2018-07-27 04:48 - 2018-07-27 04:48 - 000000000 ____C () C:\Users\Chris\AppData\Local\{5290367E-F765-4F45-ADDD-1230BD1F8C6A}
2018-07-29 03:15 - 2018-07-29 03:15 - 000000000 ____C () C:\Users\Chris\AppData\Local\{9B737184-3FF8-47CC-95A9-4F0C20AD3BA5}
2018-07-30 03:15 - 2018-07-30 03:15 - 000000000 ____C () C:\Users\Chris\AppData\Local\{AD972B02-AFF8-499B-8955-2BB4E6B32DC1}
2019-10-11 04:45 - 2019-10-11 04:45 - 000000000 _____ () C:\Users\Chris\AppData\Local\{EA9F6597-E667-478F-9146-1F4F49F39F7C}
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================