Jump to content

Welcome to Geeks to Go - Register now for FREE

Geeks To Go is a helpful hub, where thousands of volunteer geeks quickly serve friendly answers and support. Check out the forums and get free advice from the experts. Register now to gain access to all of our features, it's FREE and only takes one minute. Once registered and logged in, you will be able to create topics, post replies to existing threads, give reputation to your fellow members, get your own private messenger, post status updates, manage your profile and so much more.

Create Account How it Works
Photo

Few bugs and new warning


  • Please log in to reply

#1
Tanguy Lemoine

Tanguy Lemoine

    New Member

  • Member
  • Pip
  • 1 posts

Hello, I have fews problems with my computer, like warning pop up : "You don't have enough memory, close programs to don't loose your work..." with fews browser tabs open only, I have 8 Go of RAM, should be ok.
And alert with my antivirus malwarebytes, of blocking bad website when I am using skype.
 
 
Résultats d'analyse de  Farbar Recovery Scan Tool (FRST) (x64) Version: 22-01-2017
Exécuté par Gitney (administrateur) sur GITNEY-PC (23-01-2017 11:42:06)
Exécuté depuis C:\Users\Gitney\Downloads
Profils chargés: Gitney (Profils disponibles: Gitney & Administrateur)
Platform: Windows 7 Professional Service Pack 1 (X64) Langue: Français (France)
Internet Explorer Version 11 (Navigateur par défaut: Chrome)
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo...very-scan-tool/
 
==================== Processus (Avec liste blanche) =================
 
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
 
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(Malwarebytes) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
(Malwarebytes) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\nvwirelesscontroller.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
(Malwarebytes) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
(Logitech, Inc.) C:\Program Files\Logitech\SetPointP\SetPoint.exe
(DT Soft Ltd) C:\Program Files (x86)\DAEMON Tools Pro\DTShellHlp.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\AAM Updates Notifier.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(DT Soft Ltd) C:\Program Files (x86)\DAEMON Tools Pro\DTAgent.exe
(Google) C:\Program Files (x86)\Google\Drive\googledrivesync.exe
(Logitech, Inc.) C:\Program Files\Common Files\LogiShrd\KHAL3\KHALMNPR.exe
(AgileBits) C:\Program Files (x86)\1Password 4\Agile1pAgent.exe
(Razer USA Ltd) C:\Program Files (x86)\Razer\BlackWidow Ultimate\BlackWidowUltimateTray.exe
(Google) C:\Program Files (x86)\Google\Drive\googledrivesync.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLoader.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\QuickGesture\x64\QuickGesture64.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\QuickGesture\x86\QuickGesture.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPCenter.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPHelper.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusSGPlusBTServer64.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusSmartGestureDetector64.exe
(Intel Corporation) C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office15\EXCEL.EXE
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office15\EXCEL.EXE
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Celartem, Inc., doing business as Extensis.) C:\Program Files (x86)\Extensis\Suitcase Fusion 4\FMCore.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(FileZilla Project) C:\Program Files\FileZilla FTP Client\filezilla.exe
(FileZilla Project) C:\Program Files\FileZilla FTP Client\fzsftp.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Thunderbird\thunderbird.exe
(Adobe Systems, Inc.) C:\Program Files (x86)\Adobe\Adobe Dreamweaver CS6\Dreamweaver.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(OldTimer Tools) C:\Users\Gitney\Downloads\OTL.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
 
==================== Registre (Avec liste blanche) ====================
 
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
 
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [444904 2012-09-20] (Adobe Systems Incorporated)
HKLM\...\Run: [EvtMgr6] => C:\Program Files\Logitech\SetPointP\SetPoint.exe [3113592 2015-08-26] (Logitech, Inc.)
HKLM\...\Run: [ShadowPlay] => "C:\Windows\system32\rundll32.exe" C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9181696 2016-12-02] (Realtek Semiconductor)
HKLM-x32\...\Run: [Agile1pAgent] => C:\Program Files (x86)\1Password 4\Agile1pAgent.exe [4915344 2016-12-22] (AgileBits)
HKLM-x32\...\Run: [WheelMouse] => C:\Advanced Wheel Mouse\wh_exec.exe [147456 2010-05-26] ()
HKLM-x32\...\Run: [AdobeCS6ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [1073312 2012-03-09] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Razer Blackwidow Driver] => C:\Program Files (x86)\Razer\BlackWidow Ultimate\BlackWidowUltimateTray.exe [887712 2012-05-09] (Razer USA Ltd)
Winlogon\Notify\LBTWlgn: c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll (Logitech, Inc.)
HKU\S-1-5-21-1386449573-318092387-2846027111-1000\...\Run: [AdobeBridge] => [X]
HKU\S-1-5-21-1386449573-318092387-2846027111-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [6501656 2014-10-23] (Piriform Ltd)
HKU\S-1-5-21-1386449573-318092387-2846027111-1000\...\Run: [Google Update] => C:\Users\Gitney\AppData\Local\Google\Update\1.3.32.7\GoogleUpdateCore.exe [601752 2016-12-17] (Google Inc.)
HKU\S-1-5-21-1386449573-318092387-2846027111-1000\...\Run: [DAEMON Tools Pro Agent] => C:\Program Files (x86)\DAEMON Tools Pro\DTAgent.exe [3108480 2012-10-23] (DT Soft Ltd)
HKU\S-1-5-21-1386449573-318092387-2846027111-1000\...\Run: [GoogleDriveSync] => C:\Program Files (x86)\Google\Drive\googledrivesync.exe [23818360 2016-11-30] (Google)
HKU\S-1-5-21-1386449573-318092387-2846027111-1000\...\MountPoints2: {1268a964-c870-11e3-b2ba-c860006ac262} - E:\Startme.exe
HKU\S-1-5-21-1386449573-318092387-2846027111-1000\...\MountPoints2: {1c3b20db-7a8d-11e1-9295-806e6f6e6963} - F:\Bin\assetup.exe
HKU\S-1-5-21-1386449573-318092387-2846027111-1000\...\MountPoints2: {42dc4d4d-7f1a-11e1-935f-c860006ac262} - E:\Startme.exe
HKU\S-1-5-21-1386449573-318092387-2846027111-1000\...\MountPoints2: {92fccd4e-4b26-11e6-aad1-305a3a0127dc} - E:\Setup.exe
HKU\S-1-5-21-1386449573-318092387-2846027111-1000\...\MountPoints2: {d88936dd-50f8-11e4-9b3e-c860006ac262} - E:\setup.exe
ShellIconOverlayIdentifiers: [  GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2016-11-30] (Google)
ShellIconOverlayIdentifiers: [  GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2016-11-30] (Google)
ShellIconOverlayIdentifiers: [  GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2016-11-30] (Google)
Startup: C:\Users\Gitney\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Splice for Windows.lnk [2016-10-19]
ShortcutTarget: Splice for Windows.lnk -> C:\Users\Gitney\AppData\Local\Splice\Splice.WinClient\Splice.WinClient.exe (Pas de fichier)
GroupPolicyScripts: Restriction <======= ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Restriction <======= ATTENTION
 
==================== Internet (Avec liste blanche) ====================
 
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
 
ProxyServer: [S-1-5-21-1386449573-318092387-2846027111-1000] => proxy.trueinternet.co.th:8080
Hosts: Il y a plus d'un élément dans hosts. Voir la section Hosts de Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 0.0.0.0
Tcpip\..\Interfaces\{A04EF891-ED19-4ABF-8F79-FF5D94B85CEE}: [DhcpNameServer] 10.10.10.1
Tcpip\..\Interfaces\{D10F64C4-7F97-4612-9BD2-B88910344556}: [DhcpNameServer] 192.168.1.1 0.0.0.0
Tcpip\..\Interfaces\{FCFF4644-46AE-4FD2-B302-46EDDD59331C}: [DhcpNameServer] 203.144.206.49 203.144.206.29
 
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://search.avira.net/#web/result?source=art&q=
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxps://search.avira.net/#web/result?source=art&q=
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxps://search.avira.net/#web/result?source=art&q=
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxps://search.avira.net/#web/result?source=art&q=
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxps://search.avira.net/#web/result?source=art&q=
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxps://search.avira.net/#web/result?source=art&q=
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxps://search.avira.net/#web/result?source=art&q=
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxps://search.avira.net/#web/result?source=art&q=
HKU\S-1-5-21-1386449573-318092387-2846027111-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://search.avira.net/#web/result?source=art&q=
HKU\S-1-5-21-1386449573-318092387-2846027111-1000\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxps://search.avira.net/#web/result?source=art&q=
HKU\S-1-5-21-1386449573-318092387-2846027111-1000\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxps://search.avira.net/#web/result?source=art&q=
HKU\S-1-5-21-1386449573-318092387-2846027111-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/th-th/?ocid=iehp
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-21-1386449573-318092387-2846027111-1000 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
BHO: 1Password -> {037C06D5-3893-49E8-9AC0-41F7524AFBF5} -> C:\Program Files (x86)\1Password 4\x64\Agile1pIE4.dll [2016-12-22] (AgileBits)
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office15\OCHelper.dll [2016-12-13] (Microsoft Corporation)
BHO: Java™ Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll [2015-01-09] (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corp.)
BHO: Logitech SetPoint -> {AF949550-9094-4807-95EC-D1C317803333} -> C:\Program Files\Logitech\SetPointP\SetPointSmooth.dll [2015-08-26] (Logitech, Inc.)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office15\URLREDIR.DLL [2014-01-23] (Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL [2016-11-15] (Microsoft Corporation)
BHO: Java™ Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll [2015-01-09] (Oracle Corporation)
BHO-x32: HP Print Enhancer -> {0347C33E-8762-4905-BF09-768834316C61} -> C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll [2009-10-22] (Hewlett-Packard Co.)
BHO-x32: 1Password -> {037C06D5-3893-49E8-9AC0-41F7524AFBF5} -> C:\Program Files (x86)\1Password 4\x86\Agile1pIE4.dll [2016-12-22] (AgileBits)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll [2016-12-13] (Microsoft Corporation)
BHO-x32: Java™ Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\ssv.dll [2015-03-20] (Oracle Corporation)
BHO-x32: Programme d’aide de l’Assistant de connexion au compte Microsoft -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corp.)
BHO-x32: Logitech SetPoint -> {AF949550-9094-4807-95EC-D1C317803333} -> C:\Program Files\Logitech\SetPointP\32-bit\SetPointSmooth.dll [2015-08-26] (Logitech, Inc.)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office15\URLREDIR.DLL [2014-01-21] (Microsoft Corporation)
BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL [2016-11-15] (Microsoft Corporation)
BHO-x32: Java™ Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\jp2ssv.dll [2015-03-20] (Oracle Corporation)
BHO-x32: HP Smart BHO Class -> {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} -> C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll [2009-10-22] (Hewlett-Packard Co.)
Toolbar: HKU\S-1-5-21-1386449573-318092387-2846027111-1000 -> Pas de nom - {2318C2B1-4965-11D4-9B18-009027A5CD4F} -  Pas de fichier
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL [2016-08-16] (Microsoft Corporation)
 
FireFox:
========
FF ProfilePath: C:\Users\Gitney\AppData\Roaming\Mozilla\Firefox\Profiles\qzun8pr6.default [2017-01-23]
FF Homepage: Mozilla\Firefox\Profiles\qzun8pr6.default -> hxxps://dub129.mail.live.com/?fid=flinbox
FF NetworkProxy: Mozilla\Firefox\Profiles\qzun8pr6.default -> backup.ftp", "proxy.trueinternet.co.th"
FF NetworkProxy: Mozilla\Firefox\Profiles\qzun8pr6.default -> backup.ftp_port", 8080
FF NetworkProxy: Mozilla\Firefox\Profiles\qzun8pr6.default -> backup.socks", "proxy.trueinternet.co.th"
FF NetworkProxy: Mozilla\Firefox\Profiles\qzun8pr6.default -> backup.socks_port", 8080
FF NetworkProxy: Mozilla\Firefox\Profiles\qzun8pr6.default -> backup.ssl", "proxy.trueinternet.co.th"
FF NetworkProxy: Mozilla\Firefox\Profiles\qzun8pr6.default -> backup.ssl_port", 8080
FF NetworkProxy: Mozilla\Firefox\Profiles\qzun8pr6.default -> ftp", "proxy.trueinternet.co.th"
FF NetworkProxy: Mozilla\Firefox\Profiles\qzun8pr6.default -> ftp_port", 8080
FF NetworkProxy: Mozilla\Firefox\Profiles\qzun8pr6.default -> http", "proxy.trueinternet.co.th"
FF NetworkProxy: Mozilla\Firefox\Profiles\qzun8pr6.default -> http_port", 8080
FF NetworkProxy: Mozilla\Firefox\Profiles\qzun8pr6.default -> share_proxy_settings", true
FF NetworkProxy: Mozilla\Firefox\Profiles\qzun8pr6.default -> socks", "proxy.trueinternet.co.th"
FF NetworkProxy: Mozilla\Firefox\Profiles\qzun8pr6.default -> socks_port", 8080
FF NetworkProxy: Mozilla\Firefox\Profiles\qzun8pr6.default -> ssl", "proxy.trueinternet.co.th"
FF NetworkProxy: Mozilla\Firefox\Profiles\qzun8pr6.default -> ssl_port", 8080
FF Extension: (Youtube Mp3 Downloader) - C:\Users\Gitney\AppData\Roaming\Mozilla\Firefox\Profiles\qzun8pr6.default\Extensions\[email protected] [2016-11-07]
FF Extension: (YouTube mp3) - C:\Users\Gitney\AppData\Roaming\Mozilla\Firefox\Profiles\qzun8pr6.default\Extensions\[email protected] [2016-04-30]
FF Extension: (1Password) - C:\Users\Gitney\AppData\Roaming\Mozilla\Firefox\Profiles\qzun8pr6.default\Extensions\[email protected] [2016-11-16]
FF Extension: (Youtube MP3 Podcaster) - C:\Users\Gitney\AppData\Roaming\Mozilla\Firefox\Profiles\qzun8pr6.default\Extensions\[email protected] [2016-11-07]
FF Extension: (Download YouTube Videos as MP4) - C:\Users\Gitney\AppData\Roaming\Mozilla\Firefox\Profiles\qzun8pr6.default\Extensions\{b9bfaf1c-a63f-47cd-8b9a-29526ced9060}.xpi [2016-09-11]
FF SearchPlugin: C:\Users\Gitney\AppData\Roaming\Mozilla\Firefox\Profiles\qzun8pr6.default\searchplugins\pagerank-lookup.xml [2013-05-20]
FF SearchPlugin: C:\Users\Gitney\AppData\Roaming\Mozilla\Firefox\Profiles\qzun8pr6.default\searchplugins\who-is-lookup.xml [2014-08-06]
FF HKLM-x32\...\Firefox\Extensions: [[email protected]] - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF Extension: (HP Smart Web Printing) - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2012-04-02] [non signé]
FF HKLM-x32\...\Firefox\Extensions: [{F003DA68-8256-4b37-A6C4-350FA04494DF}] - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt
FF Extension: (Logitech SetPoint) - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt [2016-10-23] [non signé]
FF HKU\S-1-5-21-1386449573-318092387-2846027111-1000\...\Firefox\Extensions: [[email protected]] - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF Plugin: @java.com/DTPlugin,version=10.72.2 -> C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll [2015-01-09] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.72.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll [2015-01-09] (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE -> disabled [Pas de fichier]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50901.0\npctrl.dll [2016-08-31] ( Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~1\Office15\NPSPWRAP.DLL [2014-01-23] (Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [2012-09-20] (Adobe Systems)
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw_1222172.dll [2015-11-19] (Adobe Systems, Inc.)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll [2015-01-06] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.56 -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll [2015-01-06] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2015-01-06] (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.40.2 -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\dtplugin\npDeployJava1.dll [2015-03-20] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.40.2 -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\plugin2\npjp2.dll [2015-03-20] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [Pas de fichier]
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2016-09-13] (Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50901.0\npctrl.dll [2016-08-31] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL [2014-01-21] (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2016-12-12] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2016-12-12] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-18] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-18] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.1.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2016-12-18] (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll [2012-09-20] (Adobe Systems)
FF Plugin HKU\S-1-5-21-1386449573-318092387-2846027111-1000: @citrixonline.com/appdetectorplugin -> C:\Users\Gitney\AppData\Local\Citrix\Plugins\104\npappdetector.dll [2015-04-24] (Citrix Online)
FF Plugin HKU\S-1-5-21-1386449573-318092387-2846027111-1000: @tools.google.com/Google Update;version=3 -> C:\Users\Gitney\AppData\Local\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-17] (Google Inc.)
FF Plugin HKU\S-1-5-21-1386449573-318092387-2846027111-1000: @tools.google.com/Google Update;version=9 -> C:\Users\Gitney\AppData\Local\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-17] (Google Inc.)
FF Plugin HKU\S-1-5-21-1386449573-318092387-2846027111-1000: ubisoft.com/uplaypc -> C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll [Pas de fichier]
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\np32asw.dll [2004-07-02] (Macromedia, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npMeetingJoinPluginOC.dll [2016-09-13] (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll [2016-12-18] (Adobe Systems Inc.)
 
Chrome: 
=======
CHR Profile: C:\Users\Gitney\AppData\Local\Google\Chrome\User Data\Default [2017-01-23]
CHR Extension: (1Password: Password Manager and Secure Wallet) - C:\Users\Gitney\AppData\Local\Google\Chrome\User Data\Default\Extensions\aomjjhallfgjeglblehebfpbcfeobpgk [2016-11-23]
CHR Extension: (Google Drive) - C:\Users\Gitney\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-03-15]
CHR Extension: (ColorZilla) - C:\Users\Gitney\AppData\Local\Google\Chrome\User Data\Default\Extensions\bhlhnicpbhignbdhedgjhgdocnmhomnp [2016-12-25]
CHR Extension: (YouTube) - C:\Users\Gitney\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-03-15]
CHR Extension: (Keyword Tool Dominator) - C:\Users\Gitney\AppData\Local\Google\Chrome\User Data\Default\Extensions\ifllhnpbdlifihflnfooolhjicbknpob [2017-01-09]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Gitney\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-01-19]
CHR Extension: (Convertisseur Audio) - C:\Users\Gitney\AppData\Local\Google\Chrome\User Data\Default\Extensions\ojfphighcpfimfhblaigjckljcoeipga [2016-11-07]
CHR Extension: (Gmail) - C:\Users\Gitney\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-03-15]
CHR Extension: (Chrome Media Router) - C:\Users\Gitney\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-01-08]
CHR Extension: (Majestic Backlink Analyzer) - C:\Users\Gitney\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnmjaflneibolacpepklokkjnakmikmg [2017-01-19]
CHR HKU\S-1-5-21-1386449573-318092387-2846027111-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [apdfllckaahabafndbhieahigkjlhalf] - C:\Users\Gitney\AppData\Local\Google\Drive\apdfllckaahabafndbhieahigkjlhalf_live.crx [2014-03-24]
CHR HKU\S-1-5-21-1386449573-318092387-2846027111-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh] - hxxps://clients2.google.com/service/update2/crx
 
Opera: 
=======
OPR Extension: (Flash Player for YouTube™) - C:\Users\Gitney\AppData\Roaming\Opera Software\Opera Stable\Extensions\knbfimhapmnifdchcafinkbfikmomaak [2016-03-15]
 
==================== Services (Avec liste blanche) ====================
 
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
 
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [77104 2015-09-02] (Apple Inc.)
R2 DbxSvc; C:\Windows\system32\DbxSvc.exe [38000 2016-10-11] (Dropbox, Inc.)
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe [15720 2013-11-21] (Intel Corporation)
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [Fichier non signé]
S3 Intel® Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [887256 2014-05-13] (Intel® Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe [158496 2015-01-06] (Intel Corporation)
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1514464 2016-03-10] (Malwarebytes)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1136608 2016-03-10] (Malwarebytes)
R2 Net Driver HPZ12; C:\Windows\system32\HPZinw12.dll [71680 2010-01-18] (Hewlett-Packard) [Fichier non signé]
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [462784 2016-12-12] (NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [462784 2016-12-12] (NVIDIA Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [459832 2016-12-12] (NVIDIA Corporation)
R2 NVIDIA Wireless Controller Service; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\nvwirelesscontroller.exe [1163712 2016-12-12] (NVIDIA Corporation)
R2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [89600 2010-01-18] (Hewlett-Packard) [Fichier non signé]
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2014-10-13] ()
S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [Fichier non signé]
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [7534864 2016-08-25] (TeamViewer GmbH)
S3 wampapache64; D:\wamp64\bin\apache\apache2.4.23\bin\httpd.exe [29696 2016-07-01] (Apache Software Foundation) [Fichier non signé]
S3 wampmysqld64; D:\wamp64\bin\mysql\mysql5.7.14\bin\mysqld.exe [39885824 2016-07-12] () [Fichier non signé]
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
S2 yoodaPG; C:/Yooda/SeeUrankFalcon/pgsql/bin/pg_ctl.exe runservice -N "yoodaPG" -D "C:/ProgramData/Yooda/SeeUrankFalcon/Data" [X]
 
===================== Pilotes (Avec liste blanche) ======================
 
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
 
R2 AdobeDriveCS5; C:\Windows\system32\drivers\AdobeDriveCS5.sys [75440 2010-08-23] (Adobe Systems Incorporated)
R2 AdobeDriveCS5; C:\Windows\SysWOW64\drivers\AdobeDriveCS5.sys [62608 2011-07-27] (Adobe Systems Incorporated)
R3 AsusVBus; C:\Windows\System32\DRIVERS\AsusVBus.sys [39704 2015-10-07] (Windows ® Win 7 DDK provider)
R3 ATP; C:\Windows\System32\DRIVERS\AsusTP.sys [75584 2015-10-07] (ASUS Corporation)
S3 AVEO; C:\Windows\System32\DRIVERS\AVEOdcnt.sys [305920 2011-10-24] (AVEO)
S3 BtHidBus; C:\Windows\System32\Drivers\BtHidBus.sys [24032 2013-10-08] (IVT Corporation.)
S3 dg_ssudbus; C:\Windows\System32\DRIVERS\ssudbus.sys [129152 2016-04-25] (Samsung Electronics Co., Ltd.)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283200 2014-10-11] (DT Soft Ltd)
R3 fwlanusb6_860; C:\Windows\System32\DRIVERS\fwlanusb6_860.sys [2274336 2015-07-20] (AVM GmbH)
R0 iaStorF; C:\Windows\System32\DRIVERS\iaStorF.sys [28008 2013-11-21] (Intel Corporation)
S3 IvtAudioBusSrv; C:\Windows\System32\Drivers\IvtBtBus.sys [27256 2012-12-24] (IVT Corporation.)
S3 IvtPanBusSrv; C:\Windows\System32\Drivers\btnetBus.sys [31480 2012-12-24] (IVT Corporation.)
S3 ManyCam; C:\Windows\System32\DRIVERS\mcvidrv.sys [49304 2014-12-29] (Visicom Media Inc.)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [27008 2016-03-10] (Malwarebytes)
R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [192216 2017-01-23] (Malwarebytes)
R3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [64896 2016-03-10] (Malwarebytes Corporation)
S3 mcaudrv_simple; C:\Windows\System32\drivers\mcaudrv_x64.sys [35992 2014-12-29] (Visicom Media Inc.)
R3 MEIx64; C:\Windows\System32\DRIVERS\TeeDriverx64.sys [181304 2016-03-28] (Intel Corporation)
R2 npf; C:\Windows\System32\drivers\npf.sys [36600 2015-11-15] (Riverbed Technology, Inc.)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [27584 2016-12-12] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [46016 2016-12-12] (NVIDIA Corporation)
S3 RimUsb; C:\Windows\System32\Drivers\RimUsb_AMD64.sys [27520 2007-05-14] (Research In Motion Limited)
R3 RzSynapse; C:\Windows\System32\DRIVERS\RzSynapse.sys [154624 2011-05-12] (Razer USA Ltd)
S3 ssudmdm; C:\Windows\System32\DRIVERS\ssudmdm.sys [221824 2016-04-25] (Samsung Electronics Co., Ltd.)
R0 Tpkd; C:\Windows\System32\Drivers\Tpkd.sys [103272 2009-05-21] (PACE Anti-Piracy, Inc.) [Fichier non signé]
U5 UnlockerDriver5; C:\Program Files\Unlocker\UnlockerDriver5.sys [12352 2010-07-02] ()
S3 USBAAPL64; C:\Windows\System32\Drivers\usbaapl64.sys [54784 2013-03-18] (Apple, Inc.) [Fichier non signé]
S3 usbrndis6; C:\Windows\System32\DRIVERS\usb80236.sys [19968 2013-02-12] (Microsoft Corporation)
S3 VLAN; C:\Windows\System32\DRIVERS\RtVLAN60.sys [29472 2010-01-14] (Windows ® Codename Longhorn DDK provider)
S3 whfltr2k; C:\Windows\System32\DRIVERS\whfltr2k.sys [10368 2009-09-17] ()
R3 WsAudioDevice_383S(1); C:\Windows\System32\drivers\WsAudioDevice_383S(1).sys [29288 2012-03-02] (Wondershare)
S3 BlueletAudio; system32\DRIVERS\blueletaudio.sys [X]
S3 BprotectEx; \??\C:\Windows\System32\drivers\BprotectEx.sys [X]
S3 BT; system32\DRIVERS\btnetdrv.sys [X]
S3 BTCOM; system32\DRIVERS\btcomport.sys [X]
S3 Btcsrusb; System32\Drivers\btcusb.sys [X]
S3 dbx; system32\DRIVERS\dbx.sys [X]
S3 dgderdrv; System32\drivers\dgderdrv.sys [X]
S3 IvtComBusSrv; System32\Drivers\btcombus.sys [X]
S3 PCFApiUtil; \??\C:\Program Files (x86)\Baidu Security\PC Faster\5.0.0.0\PCFApiUtil64.sys [X]
S3 RTL8192su; system32\DRIVERS\RTL8192su.sys [X]
S3 vmci; \SystemRoot\system32\DRIVERS\vmci.sys [X]
S3 VMnetAdapter; system32\DRIVERS\vmnetadapter.sys [X]
 
==================== NetSvcs (Avec liste blanche) ===================
 
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
 
 
==================== Un mois - Créés - fichiers et dossiers ========
 
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
 
2017-01-23 11:35 - 2017-01-23 11:42 - 00034661 _____ C:\Users\Gitney\Downloads\FRST.txt
2017-01-23 11:35 - 2017-01-23 11:42 - 00000000 ____D C:\FRST
2017-01-23 11:35 - 2017-01-23 11:36 - 00076303 _____ C:\Users\Gitney\Downloads\Addition.txt
2017-01-23 11:34 - 2017-01-23 11:34 - 02420736 _____ (Farbar) C:\Users\Gitney\Downloads\FRST64.exe
2017-01-23 11:28 - 2017-01-23 11:28 - 00333056 _____ C:\Users\Gitney\Downloads\pjjoint_uploader.exe
2017-01-23 11:20 - 2017-01-23 11:20 - 00313086 _____ C:\Users\Gitney\Desktop\OTL.Txt
2017-01-23 11:20 - 2017-01-23 11:20 - 00105972 _____ C:\Users\Gitney\Downloads\Extras.Txt
2017-01-23 11:13 - 2017-01-23 11:13 - 00000512 _____ C:\PhysicalMBR.bin
2017-01-23 11:10 - 2017-01-23 11:10 - 00602112 _____ (OldTimer Tools) C:\Users\Gitney\Downloads\OTL.exe
2017-01-23 08:43 - 2017-01-23 08:43 - 00022722 _____ C:\Users\Gitney\Desktop\steampunk-influenced.jpeg
2017-01-23 02:41 - 2017-01-23 02:42 - 04007449 _____ C:\Users\Gitney\Downloads\1042622.mp4
2017-01-22 19:09 - 2017-01-22 19:09 - 11862881 _____ C:\Users\Gitney\Desktop\appli.zip
2017-01-19 05:08 - 2017-01-19 05:08 - 00000053 _____ C:\Users\Gitney\Downloads\google09873db2e498fee0.html
2017-01-18 13:49 - 2017-01-18 13:49 - 00018661 _____ C:\Users\Gitney\Downloads\FA005444.pdf
2017-01-18 13:48 - 2017-01-18 13:48 - 00018863 _____ C:\Users\Gitney\Downloads\FA005445.pdf
2017-01-18 13:48 - 2017-01-18 13:48 - 00018705 _____ C:\Users\Gitney\Downloads\FA000084.pdf
2017-01-18 13:47 - 2017-01-18 13:47 - 00016769 _____ C:\Users\Gitney\Downloads\LI000082.pdf
2017-01-18 11:50 - 2017-01-18 11:50 - 00011302 _____ C:\Users\Gitney\Downloads\facture202507203331.pdf
2017-01-18 07:40 - 2017-01-18 07:40 - 00018222 _____ C:\Users\Gitney\Downloads\FA005443 (2).pdf
2017-01-18 07:32 - 2017-01-18 07:32 - 00018222 _____ C:\Users\Gitney\Downloads\FA005443 (1).pdf
2017-01-18 07:31 - 2017-01-18 07:31 - 00018222 _____ C:\Users\Gitney\Downloads\FA005443.pdf
2017-01-18 05:57 - 2017-01-18 05:58 - 00612331 _____ C:\Users\Gitney\Downloads\order_2017-01-17_235753.csv
2017-01-18 05:46 - 2017-01-18 05:46 - 00045287 _____ C:\Users\Gitney\Downloads\FA000164.pdf
2017-01-18 04:21 - 2017-01-18 04:22 - 21754946 _____ C:\Users\Gitney\Downloads\prestashop_1.6.1.11_fr.zip
2017-01-18 03:48 - 2017-01-18 06:44 - 00010593 _____ C:\Users\Gitney\Desktop\config.inc.php
2017-01-18 03:48 - 2017-01-18 03:48 - 00004410 _____ C:\Users\Gitney\Desktop\defines_uri.inc.php
2017-01-18 03:48 - 2017-01-18 03:48 - 00000657 _____ C:\Users\Gitney\Desktop\settings.old.php
2017-01-16 16:24 - 2017-01-16 16:24 - 00000000 ____D C:\Program Files (x86)\GUM8BDD.tmp
2017-01-16 16:24 - 2017-01-16 16:24 - 00000000 ____D C:\Program Files (x86)\GCR8B60.tmp
2017-01-15 18:03 - 2017-01-15 18:03 - 00024865 _____ C:\Users\Gitney\Downloads\bricandbroc.odt
2017-01-15 17:06 - 2017-01-15 17:06 - 02765636 _____ C:\Users\Gitney\Desktop\error_log.txt
2017-01-15 16:54 - 2017-01-15 16:54 - 06975096 _____ (Tim Kosse) C:\Users\Gitney\Downloads\FileZilla_3.24.0_win64-setup.exe
2017-01-12 16:15 - 2017-01-12 16:15 - 00053224 _____ C:\Users\Gitney\Downloads\Keyword Planner 2017-01-12 at 10-15-05.csv
2017-01-12 08:44 - 2017-01-12 08:44 - 00495457 _____ C:\Users\Gitney\Downloads\Les-Critères-de-Référencement-en-2016-Mis-à-Jour.xlsx
2017-01-12 08:44 - 2017-01-12 08:44 - 00000165 ____H C:\Users\Gitney\Downloads\~$Les-Critères-de-Référencement-en-2016-Mis-à-Jour.xlsx
2017-01-12 04:54 - 2017-01-12 04:54 - 00000752 _____ C:\Users\Gitney\Desktop\Start Tor Browser.lnk
2017-01-12 04:54 - 2017-01-12 04:54 - 00000000 ____D C:\Users\Gitney\Desktop\Tor Browser
2017-01-12 04:52 - 2017-01-12 04:53 - 50929736 _____ C:\Users\Gitney\Downloads\torbrowser-install-6.0.8_fr.exe
2017-01-12 04:51 - 2017-01-12 04:51 - 07486880 _____ C:\Users\Gitney\Downloads\BolehGUI305.exe
2017-01-12 04:51 - 2017-01-12 04:51 - 00034469 _____ C:\Users\Gitney\Downloads\tarzan_n.zip
2017-01-12 04:51 - 2017-01-12 04:51 - 00001851 _____ C:\Users\Gitney\Desktop\BolehVPN.lnk
2017-01-12 04:51 - 2017-01-12 04:51 - 00000000 ____D C:\Users\Gitney\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BolehVPN
2017-01-12 04:51 - 2017-01-12 04:51 - 00000000 ____D C:\Program Files (x86)\BolehVPN
2017-01-12 04:45 - 2017-01-12 04:45 - 00094576 _____ C:\Users\Gitney\AppData\Local\GDIPFONTCACHEV1.DAT
2017-01-12 04:01 - 2017-01-12 04:01 - 00000000 ____D C:\Windows\rescache
2017-01-12 03:24 - 2017-01-12 03:24 - 00363512 _____ C:\Windows\system32\FNTCACHE.DAT
2017-01-12 03:22 - 2017-01-12 03:22 - 00000000 ____D C:\Users\Gitney\AppData\Local\ElevatedDiagnostics
2017-01-12 02:10 - 2017-01-12 02:10 - 00163731 _____ C:\Users\Gitney\Downloads\video-1483250555.mp4
2017-01-12 01:35 - 2017-01-12 01:35 - 00002254 _____ C:\Users\Gitney\Desktop\ProjectMaker.lnk
2017-01-12 01:35 - 2017-01-12 01:35 - 00002247 _____ C:\Users\Gitney\Desktop\ZennoPoster.lnk
2017-01-12 00:55 - 2017-01-12 00:55 - 00000909 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Market Samurai.lnk
2017-01-12 00:55 - 2017-01-12 00:55 - 00000000 ____D C:\Program Files (x86)\Market Samurai
2017-01-12 00:43 - 2017-01-12 00:56 - 168581752 _____ (DevAge, Vestris Inc. & Contributors) C:\Users\Gitney\Downloads\ZennoPosterStandard-EN-v5.10.1.0.exe
2017-01-11 22:21 - 2017-01-11 22:21 - 00091092 _____ C:\Users\Gitney\Downloads\invoices.pdf
2017-01-11 05:38 - 2017-01-06 01:55 - 00154856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2017-01-11 05:38 - 2017-01-06 01:55 - 00095464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2017-01-11 05:38 - 2017-01-06 01:52 - 01460736 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2017-01-11 05:38 - 2017-01-06 01:52 - 01212928 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2017-01-11 05:38 - 2017-01-06 01:52 - 00730624 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2017-01-11 05:38 - 2017-01-06 01:52 - 00690688 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2017-01-11 05:38 - 2017-01-06 01:52 - 00463872 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2017-01-11 05:38 - 2017-01-06 01:52 - 00345600 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2017-01-11 05:38 - 2017-01-06 01:52 - 00316928 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2017-01-11 05:38 - 2017-01-06 01:52 - 00312320 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2017-01-11 05:38 - 2017-01-06 01:52 - 00210432 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2017-01-11 05:38 - 2017-01-06 01:52 - 00190464 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll
2017-01-11 05:38 - 2017-01-06 01:52 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2017-01-11 05:38 - 2017-01-06 01:52 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2017-01-11 05:38 - 2017-01-06 01:52 - 00123904 _____ (Microsoft Corporation) C:\Windows\system32\bcrypt.dll
2017-01-11 05:38 - 2017-01-06 01:52 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2017-01-11 05:38 - 2017-01-06 01:52 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2017-01-11 05:38 - 2017-01-06 01:52 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
2017-01-11 05:38 - 2017-01-06 01:52 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2017-01-11 05:38 - 2017-01-06 01:52 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2017-01-11 05:38 - 2017-01-06 01:52 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2017-01-11 05:38 - 2017-01-06 00:43 - 00666112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2017-01-11 05:38 - 2017-01-06 00:43 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2017-01-11 05:38 - 2017-01-06 00:43 - 00342528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll
2017-01-11 05:38 - 2017-01-06 00:43 - 00261120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2017-01-11 05:38 - 2017-01-06 00:43 - 00254464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2017-01-11 05:38 - 2017-01-06 00:43 - 00223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2017-01-11 05:38 - 2017-01-06 00:43 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2017-01-11 05:38 - 2017-01-06 00:43 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2017-01-11 05:38 - 2017-01-06 00:43 - 00141312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpchttp.dll
2017-01-11 05:38 - 2017-01-06 00:43 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2017-01-11 05:38 - 2017-01-06 00:43 - 00082944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcrypt.dll
2017-01-11 05:38 - 2017-01-06 00:43 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2017-01-11 05:38 - 2017-01-06 00:43 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll
2017-01-11 05:38 - 2017-01-06 00:43 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2017-01-11 05:38 - 2017-01-06 00:43 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2017-01-11 05:38 - 2017-01-06 00:42 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2017-01-11 05:38 - 2017-01-06 00:32 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2017-01-11 05:38 - 2017-01-06 00:25 - 00159744 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2017-01-11 05:38 - 2017-01-06 00:24 - 00291328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2017-01-11 05:38 - 2017-01-06 00:24 - 00129536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2017-01-11 05:38 - 2017-01-06 00:24 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2017-01-11 05:38 - 2017-01-06 00:23 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
2017-01-11 05:38 - 2017-01-06 00:19 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptbase.dll
2017-01-11 05:09 - 2017-01-11 07:14 - 00000000 ____D C:\Users\Gitney\AppData\Roaming\Cryptocat
2017-01-11 05:09 - 2017-01-11 05:09 - 00000000 ____D C:\Users\Gitney\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Nadim Kobeissi
2017-01-11 05:09 - 2017-01-11 05:09 - 00000000 ____D C:\Users\Gitney\AppData\Local\Cryptocat
2017-01-11 05:06 - 2017-01-11 05:09 - 55680573 _____ C:\Users\Gitney\Downloads\Cryptocat-win32-x64.zip
2017-01-09 21:29 - 2017-01-09 21:29 - 00036145 _____ C:\Users\Gitney\Downloads\tang-bang-pot-hut-decembre-janvier.pdf
2017-01-09 21:26 - 2017-01-09 21:26 - 00146101 _____ C:\Users\Gitney\Downloads\tang-bang-pot-hut-decembre-janvier (1).numbers
2017-01-09 21:25 - 2017-01-09 21:25 - 00146101 _____ C:\Users\Gitney\Downloads\tang-bang-pot-hut-decembre-janvier.numbers
2017-01-04 13:49 - 2017-01-04 13:49 - 00000000 ____D C:\Windows\SysWOW64\RTCOM
2017-01-04 13:49 - 2017-01-04 13:49 - 00000000 ____D C:\Program Files\Realtek
2017-01-04 13:42 - 2016-12-02 09:29 - 72520712 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoRes64.dat
2017-01-04 13:42 - 2016-12-02 09:29 - 14057248 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioRealtek64.dll
2017-01-04 13:42 - 2016-12-02 09:29 - 13122576 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVoiceAPO3064.dll
2017-01-04 13:42 - 2016-12-02 09:29 - 12988336 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVoiceAPO4064.dll
2017-01-04 13:42 - 2016-12-02 09:29 - 10532048 _____ (Intel Corporation) C:\Windows\system32\IntelSSTAPO.dll
2017-01-04 13:42 - 2016-12-02 09:29 - 07704619 _____ C:\Windows\system32\Drivers\RTAIODAT.DAT
2017-01-04 13:42 - 2016-12-02 09:29 - 07172912 _____ (Dolby Laboratories) C:\Windows\system32\R4EEP64A.dll
2017-01-04 13:42 - 2016-12-02 09:29 - 07096184 _____ (Dolby Laboratories) C:\Windows\system32\DDPP64A.dll
2017-01-04 13:42 - 2016-12-02 09:29 - 06264632 _____ (Dolby Laboratories) C:\Windows\system32\DDPP64AF3.dll
2017-01-04 13:42 - 2016-12-02 09:29 - 06198136 _____ (Nahimic Inc) C:\Windows\system32\NAHIMICV3apo.dll
2017-01-04 13:42 - 2016-12-02 09:29 - 05793520 _____ (Nahimic Inc) C:\Windows\system32\NAHIMICV2apo.dll
2017-01-04 13:42 - 2016-12-02 09:29 - 05593608 _____ (Nahimic Inc) C:\Windows\system32\NAHIMICAPOlfx.dll
2017-01-04 13:42 - 2016-12-02 09:29 - 05523456 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHD64.sys
2017-01-04 13:42 - 2016-12-02 09:29 - 05347000 _____ (Dolby Laboratories) C:\Windows\system32\DolbyDAX2APOv211.dll
2017-01-04 13:42 - 2016-12-02 09:29 - 03503048 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApi64.dll
2017-01-04 13:42 - 2016-12-02 09:29 - 03299816 _____ (Yamaha Corporation) C:\Windows\system32\YamahaAE2.dll
2017-01-04 13:42 - 2016-12-02 09:29 - 03295064 _____ (Fortemedia Corporation) C:\Windows\system32\FMAPO64.dll
2017-01-04 13:42 - 2016-12-02 09:29 - 03204096 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtPgEx64.dll
2017-01-04 13:42 - 2016-12-02 09:29 - 03201376 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RltkAPO64.dll
2017-01-04 13:42 - 2016-12-02 09:29 - 03014144 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTSnMg64.cpl
2017-01-04 13:42 - 2016-12-02 09:29 - 02995000 _____ (DTS, Inc.) C:\Windows\system32\slcnt64.dll
2017-01-04 13:42 - 2016-12-02 09:29 - 02828432 _____ (Realtek Semiconductor Corp.) C:\Windows\SysWOW64\RltkAPO.dll
2017-01-04 13:42 - 2016-12-02 09:29 - 02706856 _____ (DTS, Inc.) C:\Windows\system32\sltech64.dll
2017-01-04 13:42 - 2016-12-02 09:29 - 02444688 _____ (Dolby Laboratories) C:\Windows\system32\DolbyDAX2APOv201.dll
2017-01-04 13:42 - 2016-12-02 09:29 - 02291304 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO7064.dll
2017-01-04 13:42 - 2016-12-02 09:29 - 02201088 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoInstII64.dll
2017-01-04 13:42 - 2016-12-02 09:29 - 02190984 _____ (Yamaha Corporation) C:\Windows\system32\YamahaAE.dll
2017-01-04 13:42 - 2016-12-02 09:29 - 02110592 _____ (Waves Audio Ltd.) C:\Windows\system32\WavesGUILib64.dll
2017-01-04 13:42 - 2016-12-02 09:29 - 02050168 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioEQ64.dll
2017-01-04 13:42 - 2016-12-02 09:29 - 01965808 _____ (Dolby Laboratories) C:\Windows\system32\DDPD64A.dll
2017-01-04 13:42 - 2016-12-02 09:29 - 01959592 _____ (Dolby Laboratories) C:\Windows\system32\DDPD64AF3.dll
2017-01-04 13:42 - 2016-12-02 09:29 - 01780616 _____ (DTS) C:\Windows\system32\DTSS2SpeakerDLL64.dll
2017-01-04 13:42 - 2016-12-02 09:29 - 01615656 _____ (Conexant Systems Inc.) C:\Windows\system32\CX64APO.dll
2017-01-04 13:42 - 2016-12-02 09:29 - 01591056 _____ (DTS) C:\Windows\system32\DTSS2HeadphoneDLL64.dll
2017-01-04 13:42 - 2016-12-02 09:29 - 01529136 _____ (Conexant Systems Inc.) C:\Windows\system32\CX64Proxy.dll
2017-01-04 13:42 - 2016-12-02 09:29 - 01508928 _____ (DTS) C:\Windows\system32\DTSBoostDLL64.dll
2017-01-04 13:42 - 2016-12-02 09:29 - 01435136 _____ (Synopsys, Inc.) C:\Windows\system32\SRRPTR64.dll
2017-01-04 13:42 - 2016-12-02 09:29 - 01422920 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO6064.dll
2017-01-04 13:42 - 2016-12-02 09:29 - 01382232 _____ (TOSHIBA Corporation) C:\Windows\system32\tosade.dll
2017-01-04 13:42 - 2016-12-02 09:29 - 01360512 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTCOM64.dll
2017-01-04 13:42 - 2016-12-02 09:29 - 01337640 _____ (Toshiba Client Solutions Co., Ltd.) C:\Windows\system32\tossaeapo64.dll
2017-01-04 13:42 - 2016-12-02 09:29 - 01334376 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxSpeechAPO64.dll
2017-01-04 13:42 - 2016-12-02 09:29 - 01213656 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO5064.dll
2017-01-04 13:42 - 2016-12-02 09:29 - 01186816 _____ (Intel Corporation) C:\Windows\system32\IntelSstCApoPropPage.dll
2017-01-04 13:42 - 2016-12-02 09:29 - 01166152 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO4064.dll
2017-01-04 13:42 - 2016-12-02 09:29 - 01133584 _____ (Dolby Laboratories) C:\Windows\system32\DolbyDAX2APOProp.dll
2017-01-04 13:42 - 2016-12-02 09:29 - 01003856 _____ (Nahimic Inc) C:\Windows\system32\NahimicAPONSControl.dll
2017-01-04 13:42 - 2016-12-02 09:29 - 01003320 _____ (Sound Research, Corp.) C:\Windows\system32\SEHDHF64.dll
2017-01-04 13:42 - 2016-12-02 09:29 - 00999848 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVoiceAPO2064.dll
2017-01-04 13:42 - 2016-12-02 09:29 - 00984912 _____ (DTS, Inc.) C:\Windows\system32\sl3apo64.dll
2017-01-04 13:42 - 2016-12-02 09:29 - 00965016 _____ (Sony Corporation) C:\Windows\system32\SFSS_APO.dll
2017-01-04 13:42 - 2016-12-02 09:29 - 00962120 _____ (Toshiba Client Solutions Co., Ltd.) C:\Windows\system32\tosasfapo64.dll
2017-01-04 13:42 - 2016-12-02 09:29 - 00931616 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPOShell64.dll
2017-01-04 13:42 - 2016-12-02 09:29 - 00923736 _____ (Sony Corporation) C:\Windows\system32\MISS_APO.dll
2017-01-04 13:42 - 2016-12-02 09:29 - 00873456 _____ (TOSHIBA Corporation) C:\Windows\system32\tadefxapo264.dll
2017-01-04 13:42 - 2016-12-02 09:29 - 00865912 _____ (Sound Research, Corp.) C:\Windows\SysWOW64\SEHDHF32.dll
2017-01-04 13:42 - 2016-12-02 09:29 - 00859216 _____ (Sound Research, Corp.) C:\Windows\system32\SEHDRA64.dll
2017-01-04 13:42 - 2016-12-02 09:29 - 00850400 _____ (Sound Research, Corp.) C:\Windows\system32\SECOMN64.dll
2017-01-04 13:42 - 2016-12-02 09:29 - 00743960 _____ (DTS) C:\Windows\system32\DTSBassEnhancementDLL64.dll
2017-01-04 13:42 - 2016-12-02 09:29 - 00727432 _____ (DTS) C:\Windows\system32\DTSSymmetryDLL64.dll
2017-01-04 13:42 - 2016-12-02 09:29 - 00721800 _____ (Sound Research, Corp.) C:\Windows\SysWOW64\SECOMN32.dll
2017-01-04 13:42 - 2016-12-02 09:29 - 00708312 _____ (DTS) C:\Windows\system32\DTSVoiceClarityDLL64.dll
2017-01-04 13:42 - 2016-12-02 09:29 - 00689872 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtDataProc64.dll
2017-01-04 13:42 - 2016-12-02 09:29 - 00678176 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO30.dll
2017-01-04 13:42 - 2016-12-02 09:29 - 00677672 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVolumeSDAPO.dll
2017-01-04 13:42 - 2016-12-02 09:29 - 00618176 _____ (Knowles Acoustics ) C:\Windows\system32\KAAPORT64.dll
2017-01-04 13:42 - 2016-12-02 09:29 - 00601144 _____ (Toshiba Client Solutions Co., Ltd.) C:\Windows\system32\tossaemaxapo64.dll
2017-01-04 13:42 - 2016-12-02 09:29 - 00588032 _____ (ICEpower a/s) C:\Windows\system32\ICEsoundAPO64.dll
2017-01-04 13:42 - 2016-12-02 09:29 - 00574752 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAC64.dll
2017-01-04 13:42 - 2016-12-02 09:29 - 00532376 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSX64.dll
2017-01-04 13:42 - 2016-12-02 09:29 - 00514520 _____ (DTS) C:\Windows\system32\DTSU2PLFX64.dll
2017-01-04 13:42 - 2016-12-02 09:29 - 00504304 _____ (DTS) C:\Windows\system32\DTSNeoPCDLL64.dll
2017-01-04 13:42 - 2016-12-02 09:29 - 00500552 _____ (DTS) C:\Windows\system32\DTSU2PGFX64.dll
2017-01-04 13:42 - 2016-12-02 09:29 - 00499152 _____ (Sound Research, Corp.) C:\Windows\system32\SEAPO64.dll
2017-01-04 13:42 - 2016-12-02 09:29 - 00467152 _____ (Synopsys, Inc.) C:\Windows\system32\SRAPO64.dll
2017-01-04 13:42 - 2016-12-02 09:29 - 00447712 _____ (Dolby Laboratories) C:\Windows\system32\R4EED64A.dll
2017-01-04 13:42 - 2016-12-02 09:29 - 00447176 _____ (Toshiba Client Solutions Co., Ltd.) C:\Windows\system32\toseaeapo64.dll
2017-01-04 13:42 - 2016-12-02 09:29 - 00445400 _____ (DTS) C:\Windows\system32\DTSLimiterDLL64.dll
2017-01-04 13:42 - 2016-12-02 09:29 - 00441264 _____ (DTS) C:\Windows\system32\DTSGainCompensatorDLL64.dll
2017-01-04 13:42 - 2016-12-02 09:29 - 00428224 _____ (DTS) C:\Windows\system32\DTSU2PREC64.dll
2017-01-04 13:42 - 2016-12-02 09:29 - 00416504 _____ (Harman) C:\Windows\system32\HMUI.dll
2017-01-04 13:42 - 2016-12-02 09:29 - 00387312 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEP64A.dll
2017-01-04 13:42 - 2016-12-02 09:29 - 00381400 _____ (Synopsys, Inc.) C:\Windows\system32\SRCOM64.dll
2017-01-04 13:42 - 2016-12-02 09:29 - 00378384 _____ (Dolby Laboratories) C:\Windows\system32\HiFiDAX2API.dll
2017-01-04 13:42 - 2016-12-02 09:29 - 00366120 _____ (Windows ® Win 7 DDK provider) C:\Windows\system32\HMAPO.dll
2017-01-04 13:42 - 2016-12-02 09:29 - 00362048 _____ (Dolby Laboratories) C:\Windows\system32\DDPO64AF3.dll
2017-01-04 13:42 - 2016-12-02 09:29 - 00360344 _____ (Harman) C:\Windows\system32\HMClariFi.dll
2017-01-04 13:42 - 2016-12-02 09:29 - 00343704 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtlCPAPI64.dll
2017-01-04 13:42 - 2016-12-02 09:29 - 00341144 _____ (Synopsys, Inc.) C:\Windows\SysWOW64\SRCOM.dll
2017-01-04 13:42 - 2016-12-02 09:29 - 00341144 _____ (Synopsys, Inc.) C:\Windows\system32\SRCOM.dll
2017-01-04 13:42 - 2016-12-02 09:29 - 00330560 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO20.dll
2017-01-04 13:42 - 2016-12-02 09:29 - 00327448 _____ (Dolby Laboratories) C:\Windows\system32\DDPO64A.dll
2017-01-04 13:42 - 2016-12-02 09:29 - 00321712 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DHT64.dll
2017-01-04 13:42 - 2016-12-02 09:29 - 00321712 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DAA64.dll
2017-01-04 13:42 - 2016-12-02 09:29 - 00310416 _____ (Dolby Laboratories) C:\Windows\system32\DDPA64F3.dll
2017-01-04 13:42 - 2016-12-02 09:29 - 00272712 _____ (Dolby Laboratories) C:\Windows\system32\DDPA64.dll
2017-01-04 13:42 - 2016-12-02 09:29 - 00258864 _____ (TODO: <Company name>) C:\Windows\system32\slprp64.dll
2017-01-04 13:42 - 2016-12-02 09:29 - 00253896 _____ (DTS) C:\Windows\system32\DTSGFXAPO64.dll
2017-01-04 13:42 - 2016-12-02 09:29 - 00253864 _____ (DTS) C:\Windows\system32\DTSLFXAPO64.dll
2017-01-04 13:42 - 2016-12-02 09:29 - 00252872 _____ (DTS) C:\Windows\system32\DTSGFXAPONS64.dll
2017-01-04 13:42 - 2016-12-02 09:29 - 00231912 _____ (Synopsys, Inc.) C:\Windows\system32\SFNHK64.dll
2017-01-04 13:42 - 2016-12-02 09:29 - 00221960 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSH64.dll
2017-01-04 13:42 - 2016-12-02 09:29 - 00214832 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEED64A.dll
2017-01-04 13:42 - 2016-12-02 09:29 - 00209536 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSHP64.dll
2017-01-04 13:42 - 2016-12-02 09:29 - 00203840 _____ (Harman) C:\Windows\system32\HMHVS.dll
2017-01-04 13:42 - 2016-12-02 09:29 - 00192976 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCfg64.dll
2017-01-04 13:42 - 2016-12-02 09:29 - 00190928 _____ (Harman) C:\Windows\system32\HMEQ_Voice.dll
2017-01-04 13:42 - 2016-12-02 09:29 - 00190928 _____ (Harman) C:\Windows\system32\HMEQ.dll
2017-01-04 13:42 - 2016-12-02 09:29 - 00179592 _____ (Harman) C:\Windows\system32\HMLimiter.dll
2017-01-04 13:42 - 2016-12-02 09:29 - 00166200 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSWOW64.dll
2017-01-04 13:42 - 2016-12-02 09:29 - 00158696 _____ (TOSHIBA Corporation) C:\Windows\system32\tadefxapo.dll
2017-01-04 13:42 - 2016-12-02 09:29 - 00154360 _____ (Harman) C:\Windows\system32\HarmanAudioInterface.dll
2017-01-04 13:42 - 2016-12-02 09:29 - 00151784 _____ (Dolby Laboratories) C:\Windows\system32\R4EEL64A.dll
2017-01-04 13:42 - 2016-12-02 09:29 - 00134200 _____ (Dolby Laboratories) C:\Windows\system32\R4EEA64A.dll
2017-01-04 13:42 - 2016-12-02 09:29 - 00122320 _____ (Real Sound Lab SIA) C:\Windows\system32\CONEQMSAPOGUILibrary.dll
2017-01-04 13:42 - 2016-12-02 09:29 - 00118592 _____ C:\Windows\system32\AcpiServiceVnA64.dll
2017-01-04 13:42 - 2016-12-02 09:29 - 00118592 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAR64.dll
2017-01-04 13:42 - 2016-12-02 09:29 - 00110984 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEL64A.dll
2017-01-04 13:42 - 2016-12-02 09:29 - 00105304 _____ C:\Windows\system32\audioLibVc.dll
2017-01-04 13:42 - 2016-12-02 09:29 - 00090912 _____ (Synopsys, Inc.) C:\Windows\system32\SFCOM64.dll
2017-01-04 13:42 - 2016-12-02 09:29 - 00088344 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEG64A.dll
2017-01-04 13:42 - 2016-12-02 09:29 - 00088320 _____ (Synopsys, Inc.) C:\Windows\system32\SFAPO64.dll
2017-01-04 13:42 - 2016-12-02 09:29 - 00084616 _____ (Dolby Laboratories) C:\Windows\system32\R4EEG64A.dll
2017-01-04 13:42 - 2016-12-02 09:29 - 00083624 _____ (Virage Logic Corporation / Sonic Focus) C:\Windows\SysWOW64\SFCOM.dll
2017-01-04 13:42 - 2016-12-02 09:29 - 00075536 _____ (TOSHIBA CORPORATION.) C:\Windows\system32\tepeqapo64.dll
2017-01-04 13:42 - 2016-12-02 09:29 - 00023688 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCoLDR64.dll
2017-01-04 13:38 - 2017-01-04 13:38 - 00003836 _____ C:\Windows\System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-01-04 13:38 - 2017-01-04 13:38 - 00003836 _____ C:\Windows\System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-01-04 13:38 - 2017-01-04 13:38 - 00003786 _____ C:\Windows\System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-01-04 13:38 - 2017-01-04 13:38 - 00003774 _____ C:\Windows\System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-01-04 13:38 - 2017-01-04 13:38 - 00003598 _____ C:\Windows\System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-01-04 13:38 - 2017-01-04 13:38 - 00003538 _____ C:\Windows\System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-01-04 13:38 - 2017-01-04 13:38 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2017-01-04 13:38 - 2016-12-12 09:37 - 01854400 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll
2017-01-04 13:38 - 2016-12-12 09:37 - 01755072 _____ (NVIDIA Corporation) C:\Windows\system32\nvspbridge64.dll
2017-01-04 13:38 - 2016-12-12 09:37 - 01452480 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll
2017-01-04 13:38 - 2016-12-12 09:37 - 01317312 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspbridge.dll
2017-01-04 13:38 - 2016-12-12 09:37 - 00120256 _____ C:\Windows\system32\NvRtmpStreamer64.dll
2017-01-04 13:37 - 2017-01-04 13:37 - 00000000 ____D C:\Program Files (x86)\VulkanRT
2017-01-04 13:37 - 2016-12-12 01:23 - 00134712 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe
2017-01-04 13:37 - 2016-09-10 01:25 - 00269600 _____ C:\Windows\SysWOW64\vulkan-1.dll
2017-01-04 13:37 - 2016-09-10 01:25 - 00261920 _____ C:\Windows\system32\vulkan-1.dll
2017-01-04 13:37 - 2016-09-10 01:25 - 00110880 _____ C:\Windows\SysWOW64\vulkaninfo.exe
2017-01-04 13:37 - 2016-09-10 01:24 - 00125216 _____ C:\Windows\system32\vulkaninfo.exe
2017-01-04 13:36 - 2016-12-12 09:37 - 40125496 _____ C:\Windows\system32\nvcompiler.dll
2017-01-04 13:36 - 2016-12-12 09:37 - 35222976 _____ C:\Windows\SysWOW64\nvcompiler.dll
2017-01-04 13:36 - 2016-12-12 09:37 - 34703416 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2017-01-04 13:36 - 2016-12-12 09:37 - 28138432 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2017-01-04 13:36 - 2016-12-12 09:37 - 17376896 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2017-01-04 13:36 - 2016-12-12 09:37 - 14410472 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll
2017-01-04 13:36 - 2016-12-12 09:37 - 14073400 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2017-01-04 13:36 - 2016-12-12 09:37 - 10912744 _____ (NVIDIA Corporation) C:\Windows\system32\nvptxJitCompiler.dll
2017-01-04 13:36 - 2016-12-12 09:37 - 10795312 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2017-01-04 13:36 - 2016-12-12 09:37 - 10345696 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2017-01-04 13:36 - 2016-12-12 09:37 - 09151216 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2017-01-04 13:36 - 2016-12-12 09:37 - 08913328 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvptxJitCompiler.dll
2017-01-04 13:36 - 2016-12-12 09:37 - 08753832 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2017-01-04 13:36 - 2016-12-12 09:37 - 03640376 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2017-01-04 13:36 - 2016-12-12 09:37 - 03479744 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2017-01-04 13:36 - 2016-12-12 09:37 - 03206080 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2017-01-04 13:36 - 2016-12-12 09:37 - 01953336 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6437633.dll
2017-01-04 13:36 - 2016-12-12 09:37 - 01586744 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6437633.dll
2017-01-04 13:36 - 2016-12-12 09:37 - 01036224 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2017-01-04 13:36 - 2016-12-12 09:37 - 00975416 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2017-01-04 13:36 - 2016-12-12 09:37 - 00944184 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2017-01-04 13:36 - 2016-12-12 09:37 - 00896056 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2017-01-04 13:36 - 2016-12-12 09:37 - 00683640 _____ (NVIDIA Corporation) C:\Windows\system32\nvfatbinaryLoader.dll
2017-01-04 13:36 - 2016-12-12 09:37 - 00572888 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvfatbinaryLoader.dll
2017-01-04 13:36 - 2016-12-12 09:37 - 00521096 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2017-01-04 13:36 - 2016-12-12 09:37 - 00438208 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll
2017-01-04 13:36 - 2016-12-12 09:37 - 00435904 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2017-01-04 13:36 - 2016-12-12 09:37 - 00407248 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll
2017-01-04 13:36 - 2016-12-12 09:37 - 00388544 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll
2017-01-04 13:36 - 2016-12-12 09:37 - 00170688 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll
2017-01-04 13:36 - 2016-12-12 09:37 - 00153184 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll
2017-01-04 13:36 - 2016-12-12 09:37 - 00148016 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll
2017-01-04 13:36 - 2016-12-12 09:37 - 00131536 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll
2017-01-04 13:36 - 2016-12-12 09:37 - 00101824 _____ (NVIDIA Corporation) C:\Windows\system32\nvaudcap64v.dll
2017-01-04 13:36 - 2016-12-12 09:37 - 00091584 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvaudcap32v.dll
2017-01-04 13:36 - 2016-12-12 09:37 - 00046016 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad64v.sys
2017-01-04 13:21 - 2017-01-12 06:57 - 00000000 ____D C:\Users\Gitney\Downloads\Vuze Leap
2017-01-04 13:21 - 2017-01-08 19:04 - 00000000 ____D C:\Users\Gitney\AppData\Roaming\Vuze Leap
2017-01-04 13:21 - 2017-01-04 13:21 - 01412560 _____ (Azureus Software, Inc.) C:\Users\Gitney\Downloads\VuzeLeapSetup.exe
2017-01-04 13:21 - 2017-01-04 13:21 - 00000000 ____D C:\Users\Gitney\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Vuze Leap
2017-01-04 11:26 - 2017-01-04 11:27 - 05799500 _____ C:\Users\Gitney\Downloads\akeebabackupwp-2.0.4-core.zip
2017-01-04 11:07 - 2017-01-04 11:52 - 371323499 _____ (Realtek Semiconductor Corp.) C:\Users\Gitney\Downloads\Win7_Win8_Win81_Win10_R280.exe
2017-01-04 11:07 - 2017-01-04 11:43 - 387532560 _____ (NVIDIA Corporation) C:\Users\Gitney\Downloads\376.33-desktop-win8-win7-64bit-international-whql.exe
2017-01-03 14:05 - 2016-12-20 13:33 - 01037832 _____ (Realtek ) C:\Windows\system32\Drivers\Rt64win7.sys
2017-01-03 14:05 - 2016-12-20 13:33 - 00082544 _____ (Realtek Semiconductor Corporation) C:\Windows\system32\RtNicProp64.dll
2017-01-03 13:48 - 2017-01-03 13:48 - 01624440 _____ (Tous Les Drivers) C:\Users\Gitney\Downloads\Mes_Drivers_3.0.4.exe
2016-12-28 02:39 - 2016-12-28 02:39 - 00002231 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-12-27 11:59 - 2016-12-27 12:01 - 00348160 _____ C:\Users\Gitney\Documents\Base de données1.accdb
2016-12-27 11:59 - 2016-12-27 11:59 - 00344064 _____ C:\Users\Gitney\Documents\Base de données1.accdb.accdb
2016-12-27 11:09 - 2016-12-27 10:42 - 00000163 _____ C:\Program Files (x86)\INSTALL.LOG
2016-12-27 10:46 - 2016-12-27 10:46 - 00000000 ____D C:\Users\Gitney\Documents\Shared Toad
2016-12-27 10:46 - 2016-12-27 10:46 - 00000000 ____D C:\Users\Gitney\AppData\Roaming\Quest Software
2016-12-27 10:46 - 2016-12-27 10:46 - 00000000 ____D C:\Users\Gitney\AppData\Roaming\Dell
2016-12-27 10:46 - 2016-12-27 10:46 - 00000000 ____D C:\Users\Gitney\AppData\Local\Quest Software
2016-12-27 10:46 - 2016-12-27 10:46 - 00000000 ____D C:\ProgramData\Quest Software
2016-12-27 10:45 - 2016-12-27 11:43 - 00000000 ____D C:\Program Files (x86)\Dell
 
==================== Un mois - Modifiés - fichiers et dossiers ========
 
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
 
2017-01-23 11:20 - 2015-03-30 17:51 - 00000600 _____ C:\Users\Gitney\AppData\Local\PUTTY.RND
2017-01-23 11:07 - 2012-11-14 01:30 - 00000000 ____D C:\Users\Gitney\AppData\Roaming\Skype
2017-01-23 10:17 - 2016-12-09 10:03 - 00000000 ____D C:\Users\Gitney\AppData\Local\FileZilla
2017-01-23 10:00 - 2016-10-21 09:18 - 00192216 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2017-01-23 09:39 - 2012-12-10 02:50 - 00000000 ____D C:\Users\Gitney\AppData\Roaming\FileZilla
2017-01-23 04:26 - 2009-07-14 11:45 - 00067360 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2017-01-23 04:26 - 2009-07-14 11:45 - 00067360 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2017-01-23 02:00 - 2014-09-03 07:43 - 00000000 ____D C:\Users\Gitney\AppData\Local\Adobe
2017-01-22 16:33 - 2012-11-14 01:30 - 00000000 ____D C:\ProgramData\Skype
2017-01-22 15:34 - 2015-02-03 15:11 - 00003874 _____ C:\Windows\System32\Tasks\Opera scheduled Autoupdate 1422951112
2017-01-22 15:34 - 2012-12-14 14:07 - 00000000 ____D C:\Program Files (x86)\Opera
2017-01-22 15:32 - 2016-03-16 11:46 - 00006662 _____ C:\Windows\system32\PerfStringBackup.TMP
2017-01-22 15:32 - 2009-07-14 10:20 - 00000000 ____D C:\Windows\inf
2017-01-22 15:27 - 2016-11-23 16:34 - 00003490 _____ C:\Windows\System32\Tasks\AutoKMS
2017-01-22 15:26 - 2015-12-10 06:18 - 00000000 ____D C:\ProgramData\ASUS Smart Gesture
2017-01-22 15:26 - 2012-03-31 03:05 - 00000000 ____D C:\ProgramData\NVIDIA
2017-01-22 15:26 - 2009-07-14 12:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2017-01-19 05:59 - 2016-11-21 09:34 - 00000000 ____D C:\Users\Gitney\AppData\LocalLow\Mozilla
2017-01-19 02:23 - 2009-07-14 10:20 - 00000000 ____D C:\Windows\system32\NDF
2017-01-18 19:48 - 2014-08-06 09:53 - 00000000 ____D C:\Users\Gitney\AppData\Local\CrashDumps
2017-01-17 15:22 - 2014-09-03 17:49 - 00000010 _____ C:\Users\Gitney\AppData\Local\.HG88C586-G30G-2HE2-DGDE-8H3E1D530D30
2017-01-17 15:22 - 2014-09-03 17:49 - 00000010 _____ C:\ProgramData\.F464B91F-G49F-3G3D-CFCD-9G7D2C141C96
2017-01-16 16:24 - 2012-03-31 01:03 - 00003500 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2017-01-16 16:24 - 2012-03-31 01:03 - 00003372 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2017-01-15 17:09 - 2012-11-16 04:48 - 00000000 ____D C:\Users\Gitney\AppData\Roaming\Notepad++
2017-01-15 16:55 - 2015-10-18 19:06 - 00000000 ____D C:\Users\Gitney\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FileZilla FTP Client
2017-01-15 16:55 - 2015-10-18 19:06 - 00000000 ____D C:\Program Files\FileZilla FTP Client
2017-01-15 13:10 - 2013-01-22 02:25 - 00002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
2017-01-12 04:54 - 2016-08-13 04:12 - 00000800 _____ C:\Users\Gitney\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Start Tor Browser.lnk
2017-01-12 03:02 - 2013-09-28 06:39 - 00000000 ____D C:\Windows\system32\MRT
2017-01-12 03:00 - 2013-09-28 06:39 - 135657872 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2017-01-12 02:14 - 2016-04-18 06:29 - 00000000 ____D C:\Users\Gitney\AppData\Roaming\ZennoLab
2017-01-12 02:14 - 2016-04-18 06:27 - 00000000 ____D C:\ProgramData\Isolated Storage
2017-01-12 01:35 - 2016-04-18 06:28 - 00000000 ____D C:\Users\Gitney\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ZennoLab
2017-01-12 01:35 - 2016-04-18 06:25 - 00000000 ____D C:\ZL.tmp
2017-01-11 21:38 - 2014-12-25 23:34 - 00004476 _____ C:\Windows\System32\Tasks\Adobe Acrobat Update Task
2017-01-11 05:09 - 2016-10-19 04:42 - 00000000 ____D C:\Users\Gitney\AppData\Local\SquirrelTemp
2017-01-11 03:01 - 2015-07-01 12:03 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
2017-01-11 03:01 - 2009-01-02 18:26 - 00000689 _____ C:\Windows\win.ini
2017-01-10 09:48 - 2009-07-14 12:08 - 00032482 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2017-01-04 13:49 - 2015-11-15 03:07 - 00000000 ____D C:\Windows\system32\DAX2
2017-01-04 13:49 - 2012-03-31 01:04 - 00000000 ___HD C:\Program Files (x86)\Temp
2017-01-04 13:42 - 2014-04-17 18:41 - 00000000 ____D C:\Users\Gitney\AppData\Local\NVIDIA Corporation
2017-01-04 13:42 - 2012-03-31 00:44 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2017-01-04 13:39 - 2012-03-31 03:05 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2017-01-04 13:38 - 2013-09-19 17:55 - 00000000 ____D C:\Users\Gitney\AppData\Local\NVIDIA
2017-01-04 13:38 - 2012-03-31 03:05 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2017-01-04 13:38 - 2012-03-31 03:04 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2017-01-04 13:22 - 2016-05-28 23:39 - 00000000 ____D C:\Program Files\Vuze
2017-01-04 12:12 - 2016-05-28 23:39 - 00000000 ____D C:\Users\Gitney\AppData\Roaming\Azureus
2017-01-04 12:12 - 2012-12-04 02:49 - 00000000 ____D C:\Windows\Minidump
2017-01-04 12:09 - 2016-04-18 06:26 - 00000000 ____D C:\Program Files (x86)\ZennoLab
2017-01-04 12:05 - 2016-09-29 20:54 - 00000000 ____D C:\Program Files (x86)\Ubisoft
2017-01-04 12:05 - 2016-01-22 01:03 - 00000000 ____D C:\Program Files (x86)\Steinberg
2017-01-04 12:05 - 2012-12-13 19:34 - 00000000 ____D C:\Users\Gitney\AppData\Local\Ubisoft Game Launcher
2017-01-04 11:02 - 2014-12-02 09:15 - 00000000 ____D C:\Program Files (x86)\WinMerge
2017-01-04 11:02 - 2012-12-06 01:52 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2017-01-04 11:01 - 2013-05-19 00:52 - 00000000 ____D C:\Program Files (x86)\FreeTime
2017-01-04 11:01 - 2012-12-05 07:06 - 00000000 ____D C:\Users\Gitney\AppData\Local\PokerStars.FR
2017-01-04 11:01 - 2012-12-05 07:06 - 00000000 ____D C:\Program Files (x86)\PokerStars.FR
2017-01-04 10:37 - 2016-12-16 09:28 - 00000000 ____D C:\Users\Gitney\Desktop\Clé et certifat SSL
2017-01-04 09:56 - 2016-11-24 03:53 - 00000000 ____D C:\Program Files (x86)\Mozilla Thunderbird
2017-01-03 14:05 - 2012-03-31 00:44 - 00000000 ____D C:\Program Files (x86)\Realtek
2017-01-03 13:52 - 2013-01-05 11:55 - 00000000 ____D C:\ProgramData\Package Cache
2017-01-03 13:52 - 2012-03-31 03:09 - 00000000 ____D C:\Program Files\Intel
2017-01-03 13:43 - 2012-04-01 00:02 - 00000000 ____D C:\Users\Gitney\AppData\Roaming\vlc
2016-12-27 11:43 - 2009-07-14 10:20 - 00000000 ____D C:\Windows\Microsoft.NET
2016-12-27 10:45 - 2009-07-14 10:20 - 00000000 ____D C:\Program Files (x86)\Common Files
2016-12-26 22:54 - 2014-10-02 18:30 - 00000000 ____D C:\Program Files (x86)\1Password 4
2016-12-26 10:57 - 2014-10-06 09:07 - 00000000 ____D C:\Users\Gitney\AppData\Roaming\AgileBits
 
==================== Fichiers à la racine de certains dossiers =======
 
2016-12-27 11:09 - 2016-12-27 10:42 - 0000163 _____ () C:\Program Files (x86)\INSTALL.LOG
2012-11-09 23:18 - 2012-11-09 23:18 - 0000132 _____ () C:\Users\Gitney\AppData\Roaming\Adobe PNG Format CS5 Prefs
2014-08-01 05:24 - 2014-08-01 22:23 - 0000268 _____ () C:\Users\Gitney\AppData\Roaming\ltpReg.txt
2014-10-14 13:14 - 2014-10-14 13:14 - 0012958 _____ () C:\Users\Gitney\AppData\Roaming\Microsoft Access 97-2003.CAL
2015-01-18 16:54 - 2016-09-03 19:04 - 0000132 _____ () C:\Users\Gitney\AppData\Roaming\Préfs Filtre IllExportation Adobe CS6
2013-04-26 09:52 - 2013-04-26 09:52 - 0000132 _____ () C:\Users\Gitney\AppData\Roaming\Préfs Format GIF Adobe CS6
2012-11-21 00:48 - 2016-09-24 16:50 - 0000132 _____ () C:\Users\Gitney\AppData\Roaming\Préfs Format PNG Adobe CS6
2014-08-06 11:19 - 2014-09-03 17:47 - 0000010 _____ () C:\Users\Gitney\AppData\Local\.56C369H5-8CEH-20F1-75G2-452FC2FCCD50
2014-09-03 17:49 - 2017-01-17 15:22 - 0000010 _____ () C:\Users\Gitney\AppData\Local\.HG88C586-G30G-2HE2-DGDE-8H3E1D530D30
2013-03-26 20:05 - 2016-12-08 21:21 - 0001456 _____ () C:\Users\Gitney\AppData\Local\Adobe Enregistrer pour le Web 13.0 Prefs
2012-11-10 01:07 - 2015-01-27 12:02 - 0014848 _____ () C:\Users\Gitney\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2015-03-30 17:51 - 2017-01-23 11:20 - 0000600 _____ () C:\Users\Gitney\AppData\Local\PUTTY.RND
2013-10-22 21:56 - 2013-10-22 21:56 - 0008063 _____ () C:\Users\Gitney\AppData\Local\recently-used.xbel
2014-04-26 14:28 - 2016-12-07 23:31 - 0007610 _____ () C:\Users\Gitney\AppData\Local\resmon.resmoncfg
2014-08-06 11:19 - 2014-09-03 17:47 - 0000010 _____ () C:\ProgramData\.93067BD7-6BGG-312E-86F3-566EB31BBC4E
2014-09-03 17:49 - 2017-01-17 15:22 - 0000010 _____ () C:\ProgramData\.F464B91F-G49F-3G3D-CFCD-9G7D2C141C96
2014-08-06 11:19 - 2014-08-06 11:19 - 0000014 _____ () C:\ProgramData\.ST140
2014-09-03 17:50 - 2014-09-03 17:50 - 0000043 _____ () C:\ProgramData\.ST150
2015-11-15 03:08 - 2015-11-15 03:08 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
2012-04-02 21:48 - 2014-10-13 17:16 - 0001812 _____ () C:\ProgramData\hpzinstall.log
2014-11-10 11:30 - 2014-11-10 11:30 - 0000016 _____ () C:\ProgramData\mntemp
 
Certains fichiers dans TEMP:
====================
2017-01-23 11:17 - 2016-11-13 00:21 - 13653504 _____ (Microsoft Corporation) C:\Users\Gitney\AppData\Local\Temp\ieframe.dll
2017-01-22 16:28 - 2017-01-22 16:29 - 43918808 _____ (Skype Technologies S.A.) C:\Users\Gitney\AppData\Local\Temp\SkypeSetup.exe
 
==================== Bamital & volsnap ======================
 
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
 
C:\Windows\system32\winlogon.exe => Le fichier est signé numériquement
C:\Windows\system32\wininit.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\wininit.exe => Le fichier est signé numériquement
C:\Windows\explorer.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\explorer.exe => Le fichier est signé numériquement
C:\Windows\system32\svchost.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\svchost.exe => Le fichier est signé numériquement
C:\Windows\system32\services.exe => Le fichier est signé numériquement
C:\Windows\system32\User32.dll => Le fichier est signé numériquement
C:\Windows\SysWOW64\User32.dll => Le fichier est signé numériquement
C:\Windows\system32\userinit.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\userinit.exe => Le fichier est signé numériquement
C:\Windows\system32\rpcss.dll => Le fichier est signé numériquement
C:\Windows\system32\dnsapi.dll => Le fichier est signé numériquement
C:\Windows\SysWOW64\dnsapi.dll => Le fichier est signé numériquement
C:\Windows\system32\Drivers\volsnap.sys => Le fichier est signé numériquement
 
LastRegBack: 2017-01-23 01:05
 
==================== Fin de FRST.txt ============================


  • 0

Advertisements


#2
RKinner

RKinner

    Malware Expert

  • Expert
  • 20,007 posts
  • MVP

The memory error usually means a memory leak.  Get Process Explorer:

 

 
Save it to your desktop then run it (Vista or Win7 - right click and Run As Administrator).  
 
Click on the column header: Working Set  (4th from right in case it has a French Name)
 
This should sort things so that the biggest memory users is at the top (if not hit Working Set again)
 
Now watch the top memory user.  If this is a memory leak then it will slowly increase as time goes by and you open more windows.  Note the Process (name in column 1).  This is the culprit.  If it's a program then it needs to be updated.  If it's a browser then one of the extensions is probably the culprit.  If it's an svchost.exe then:
 
 
View, Select Column, check Verified Signer, OK
Options, Verify Image Signatures
 
 
Click twice on the CPU column header  to sort things by CPU usage with the big hitters at the top.  
 
Wait a full minute then:
 
File, Save As, Save.  Note the file name.   Open the file  on your desktop and copy and paste the text to a reply.
 
 
Copy the next 2 lines:
 
TASKLIST /SVC  > \junk.txt
notepad \junk.txt
 
Open an Elevated Command Prompt:
Start, All Programs, Accessories then right click on Command Prompt and Run as Administrator
 
 
Right click and Paste (or Edit then Paste) and the copied lines should appear.
Hit Enter if notepad does not open.  Copy and paste the text from notepad into a reply. 
 

Can you also post the addition.txt file?  If you didn't get it then run FRST again, click on Addition.txt then press the Scan button.


  • 0






Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP