Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 21-12-2014 01
Ran by User (administrator) on USER-PC on 23-12-2014 20:05:10
Running from C:\Users\User\Desktop\Luc\Nouveau dossier\FRST
Loaded Profile: User (Available profiles: User)
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: Français (France)
Internet Explorer Version 11
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Akamai Technologies, Inc.) C:\Users\User\AppData\Local\Akamai\netsession_win.exe
(Akamai Technologies, Inc.) C:\Users\User\AppData\Local\Akamai\netsession_win.exe
(Brother Industries, Ltd.) C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe
(Apple Inc.) C:\Program Files (x86)\iTunes\iTunesHelper.exe
(Brother Industries, Ltd.) C:\Program Files (x86)\ControlCenter4\BrCtrlCntr.exe
(Brother Industries, Ltd.) C:\Program Files (x86)\Browny02\BrYNSvc.exe
(Brother Industries, Ltd.) C:\Program Files (x86)\ControlCenter4\BrCcUxSys.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [43816 2014-07-31] (Apple Inc.)
HKLM-x32\...\Run: [ControlCenter4] => C:\Program Files (x86)\ControlCenter4\BrCcBoot.exe [139264 2011-04-20] (Brother Industries, Ltd.)
HKLM-x32\...\Run: [BrStsMon00] => C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe [2621440 2010-06-10] (Brother Industries, Ltd.)
HKLM-x32\...\Run: [Aeria Ignite] => C:\Program Files (x86)\Aeria Games\Ignite\aeriaignite.exe [1925656 2013-06-06] (Aeria Games & Entertainment)
HKLM-x32\...\Run: [iTunesHelper] => C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2014-09-01] (Apple Inc.)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1021128 2014-11-20] (Adobe Systems Incorporated)
HKU\S-1-5-19\...\Run: [PPS Accelerator] => D:\PPS.tv\PPStream\\PPSKernel.exe
HKU\S-1-5-19\...\Run: [QyKernel] => D:\IQIYI Video\LStyle\QyKernel.exe
HKU\S-1-5-20\...\Run: [PPS Accelerator] => D:\PPS.tv\PPStream\\PPSKernel.exe
HKU\S-1-5-20\...\Run: [QyKernel] => D:\IQIYI Video\LStyle\QyKernel.exe
HKU\S-1-5-21-418592747-3305732625-987032889-1001\...\Run: [ctfmon] => C:\Windows\system32\ctfmon.exe [9728 2009-07-14] (Microsoft Corporation)
HKU\S-1-5-21-418592747-3305732625-987032889-1001\...\Run: [Akamai NetSession Interface] => C:\Users\User\AppData\Local\Akamai\netsession_win.exe [4673432 2014-10-29] (Akamai Technologies, Inc.)
HKU\S-1-5-21-418592747-3305732625-987032889-1001\...\RunOnce: [Adobe Speed Launcher] => 1419321858
HKU\S-1-5-21-418592747-3305732625-987032889-1001\...\RunOnce: [FlashPlayerUpdate] => C:\Windows\system32\Macromed\Flash\FlashUtil64_15_0_0_223_ActiveX.exe [540848 2014-11-15] (Adobe Systems Incorporated)
HKU\S-1-5-21-418592747-3305732625-987032889-1001\...\Policies\Explorer: [NolowDiskSpaceChecks] 1
HKU\S-1-5-21-418592747-3305732625-987032889-1001\...\MountPoints2: {38094e4f-fe42-11d5-9223-001fc62a20b1} - F:\HTC_Sync_Manager_PC.exe
HKU\S-1-5-18\...\Run: [PPS Accelerator] => D:\PPS.tv\PPStream\\PPSKernel.exe
HKU\S-1-5-18\...\Run: [QyKernel] => D:\IQIYI Video\LStyle\QyKernel.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

ProxyEnable: [.DEFAULT] => Internet Explorer proxy is enabled.
ProxyServer: [.DEFAULT] => http=127.0.0.1:8877;https=127.0.0.1:8877
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com
HKU\S-1-5-21-418592747-3305732625-987032889-1001\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/
HKU\S-1-5-21-418592747-3305732625-987032889-1001\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://fr.msn.com/?ocid=iehp
StartMenuInternet: IEXPLORE.EXE - iexplore.exe
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\.DEFAULT -> {4633EF93-D676-472f-A0FF-E1916B0B2E30} URL = http://www.baidu.com/s?tn=utf7_dg&wd={searchTerms}&ie=utf-8
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-418592747-3305732625-987032889-1001 -> {4633EF93-D676-472f-A0FF-E1916B0B2E30} URL = http://www.baidu.com/s?tn=90023077_hao_pg&wd={searchTerms}&ie=utf-8
BHO-x32: PIPI Link Helper -> {1A3440C6-F123-4CAB-84EE-C814E1AE0D8F} -> C:\Users\User\AppData\Roaming\pipi\JfCheck.dll (PIPI Tech.)
BHO-x32: 电脑管家网页防火墙 -> {7C260B4B-F7A0-40B5-B403-BEFCDC6A4C3B} -> No File
DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
Handler: KuGoo - {6AC4FBC7-AA38-45EC-9634-D6D20B679EFC} - C:\PROGRA~2\KuGou\KGMusic\KUGOO3~1.OCX No File
Handler: KuGoo3 - {6AC4FBC7-AA38-45EC-9634-D6D20B679EFC} - C:\PROGRA~2\KuGou\KGMusic\KUGOO3~1.OCX No File
Handler-x32: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.14.0.8117.0416.dll (Microsoft Corporation)
Handler-x32: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.14.0.8117.0416.dll (Microsoft Corporation)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.254

FireFox:
========
FF ProfilePath: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\424bz92j.default
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_14_0_0_145.dll ()
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin: @pps.tv/npWebPlayer -> D:\IQIYI Video\LStyle\npWebPlayer.dll No File
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_14_0_0_145.dll ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin -> C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll No File
FF Plugin-x32: @pps.tv/npWebPlayer -> D:\IQIYI Video\LStyle\npWebPlayer.dll No File
FF Plugin-x32: @pptv.com/plugin -> C:\Program Files (x86)\Internet Explorer\PPLite\plugin\1.0.1.1710\npplugin2.dll (PPLive Corporation)
FF Plugin-x32: @qq.com/npAndroidAssistant -> C:\Program Files (x86)\Common Files\Tencent\QQPhoneManager\\1.8.101.2154\npQQPhoneManagerExt.dll No File
FF Plugin-x32: @qq.com/npqscall -> C:\Program Files (x86)\Common Files\Tencent\NPQSCALL\npqscall.dll No File
FF Plugin-x32: @qq.com/QQPCMgr -> C:\Program Files (x86)\Tencent\QQPCMgr\8.5.10251.228\npQMExtensionsMozilla.dll No File
FF Plugin-x32: @qq.com/QQPhotoDrawEx -> C:\Program Files (x86)\Tencent\Qzone\npQQPhotoDrawEx.dll No File
FF Plugin-x32: @qq.com/QzoneMusic -> E:\Program Files\Tencent\QQMusic\npQzoneMusic.dll No File
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-418592747-3305732625-987032889-1001: @pps.tv/npWebPlayer -> D:\IQIYI Video\LStyle\npWebPlayer.dll No File
FF Plugin HKU\S-1-5-21-418592747-3305732625-987032889-1001: @tools.google.com/Google Update;version=3 -> C:\Users\User\AppData\Local\Google\Update\1.3.21.111\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKU\S-1-5-21-418592747-3305732625-987032889-1001: @tools.google.com/Google Update;version=9 -> C:\Users\User\AppData\Local\Google\Update\1.3.21.111\npGoogleUpdate3.dll (Google Inc.)
FF Extension: No Name - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} [Not Found]

Chrome:
=======
CHR HomePage: Default ->
CHR StartupUrls: Default -> "https://www.google.fr/"
CHR DefaultSuggestURL: Default -> {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&gs_ri={google:suggestRid}&xssi=t&q={searchTerms}&{google:inputType}{google:cursorPosition}{google:currentPageUrl}{google:pageClassification}{google:searchVersion}{google:sessionToken}{google:prefetchQuery}sugkey={google:suggestAPIKeyParameter}
CHR Profile: C:\Users\User\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Drive) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-12-16]
CHR Extension: (Google Voice Search Hotword (Beta)) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2014-09-21]
CHR Extension: (YouTube) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-12-16]
CHR Extension: (Recherche Google) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-12-16]
CHR Extension: (Google Wallet) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-09-02]
CHR Extension: (Gmail) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-12-16]

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R3 BrYNSvc; C:\Program Files (x86)\Browny02\BrYNSvc.exe [245760 2010-01-25] (Brother Industries, Ltd.) [File not signed]
S3 npggsvc; C:\Windows\SysWOW64\GameMon.des [3931352 2012-01-01] (INCA Internet Co., Ltd.) [File not signed]

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R1 avgtp; C:\Windows\system32\drivers\avgtpx64.sys [46368 2014-02-13] (AVG Technologies)
S3 NPPTNT2; C:\Windows\SysWOW64\npptNT2.sys [4682 2005-01-04] (INCA Internet Co., Ltd.) [File not signed]
R1 TFsFlt; C:\Windows\System32\Drivers\TFsFltX64.sys [87864 2013-11-14] (电脑管家)
S3 EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys [X]
S3 ksapi64; \??\C:\Windows\system32\drivers\ksapi64.sys [X]
S3 QMUdisk; \??\C:\Program Files (x86)\Tencent\QQPCMgr\8.5.10251.228\QMUdisk64.sys [X]
S2 QQSysMonX64; \??\C:\Program Files (x86)\Tencent\QQPCMgr\8.5.10251.228\QQSysMonX64.sys [X]
S1 TSCPM; \??\C:\Program Files (x86)\Tencent\QQPCMgr\8.5.10251.228\tscpm64.sys [X]
S1 wpnfd_1_10_0_1; system32\drivers\wpnfd_1_10_0_1.sys [X]
S3 X6va008; \??\C:\Windows\SysWOW64\Drivers\X6va008 [X]
S3 X6va009; \??\C:\Windows\SysWOW64\Drivers\X6va009 [X]
S3 X6va010; \??\C:\Windows\SysWOW64\Drivers\X6va010 [X]
S3 X6va011; \??\C:\Windows\SysWOW64\Drivers\X6va011 [X]
S3 X6va012; \??\C:\Windows\SysWOW64\Drivers\X6va012 [X]
S3 X6va013; \??\C:\Windows\SysWOW64\Drivers\X6va013 [X]
S3 X6va015; \??\C:\Windows\SysWOW64\Drivers\X6va015 [X]
S3 X6va016; \??\C:\Windows\SysWOW64\Drivers\X6va016 [X]
S3 xhunter1; \??\C:\Windows\xhunter1.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-12-23 17:48 - 2014-12-23 17:48 - 00000000 ____D () C:\Users\User\AppData\Roaming\IQIYI Video
2014-12-23 17:48 - 2014-12-23 17:48 - 00000000 ____D () C:\ProgramData\IQIYI Video
2014-12-23 09:03 - 2014-12-23 09:03 - 00273384 _____ () C:\Windows\Minidump\122314-19016-01.dmp
2014-12-23 08:36 - 2014-12-23 08:36 - 00277456 _____ () C:\Windows\Minidump\122314-21153-01.dmp
2014-12-23 08:36 - 2014-12-23 08:36 - 00000000 _____ () C:\Users\User\AppData\Local\{63F45D77-FA56-42D5-A779-66DB03318B46}
2014-12-22 09:36 - 2014-12-22 09:36 - 00000000 __SHD () C:\found.003
2014-12-21 14:39 - 2014-12-21 14:39 - 00277456 _____ () C:\Windows\Minidump\122114-27097-01.dmp
2014-12-20 13:40 - 2014-09-05 03:11 - 06584320 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2014-12-20 13:40 - 2014-09-05 02:52 - 05703168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2014-12-20 13:16 - 2014-12-20 13:16 - 00277456 _____ () C:\Windows\Minidump\122014-29390-01.dmp
2014-12-20 12:58 - 2014-12-20 12:58 - 00000000 _____ () C:\Users\User\AppData\Local\{E34A065E-0652-499D-B676-EF77E109B802}
2014-12-20 12:43 - 2014-12-20 12:43 - 00000000 ____H () C:\Users\User\AppData\Local\BITF9E8.tmp
2014-12-20 12:43 - 2014-12-20 12:43 - 00000000 _____ () C:\Users\User\AppData\Local\{A4D26EAE-5CE6-4101-A01E-790ED1EBE6E5}
2014-12-20 12:38 - 2014-12-20 12:38 - 00000000 _____ () C:\Users\User\AppData\Local\{9000C304-C745-42C8-9401-D623AE616BB8}
2014-12-19 17:21 - 2013-10-02 03:22 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\TsUsbFlt.sys
2014-12-19 17:21 - 2013-10-02 03:11 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2014-12-19 17:21 - 2013-10-02 03:08 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2014-12-19 17:21 - 2013-10-02 02:48 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\MsRdpWebAccess.dll
2014-12-19 17:21 - 2013-10-02 02:48 - 00018944 _____ (Microsoft Corporation) C:\Windows\system32\wksprtPS.dll
2014-12-19 17:21 - 2013-10-02 02:29 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll
2014-12-19 17:21 - 2013-10-02 02:10 - 00044544 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbGDCoInstaller.dll
2014-12-19 17:21 - 2013-10-02 01:15 - 01057280 _____ (Microsoft Corporation) C:\Windows\system32\rdvidcrl.dll
2014-12-19 17:21 - 2013-10-02 01:14 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MsRdpWebAccess.dll
2014-12-19 17:21 - 2013-10-02 01:14 - 00017920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wksprtPS.dll
2014-12-19 17:21 - 2013-10-02 01:08 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\TSWbPrxy.exe
2014-12-19 17:21 - 2013-10-02 01:01 - 00420864 _____ (Microsoft Corporation) C:\Windows\system32\wksprt.exe
2014-12-19 17:21 - 2013-10-02 00:58 - 00053248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll
2014-12-19 17:21 - 2013-10-02 00:31 - 01147392 _____ (Microsoft Corporation) C:\Windows\system32\mstsc.exe
2014-12-19 17:21 - 2013-10-02 00:08 - 00855552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdvidcrl.dll
2014-12-19 17:21 - 2013-10-01 23:34 - 01068544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstsc.exe
2014-12-19 09:22 - 2014-12-13 06:09 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-12-19 09:22 - 2014-12-13 04:33 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-12-19 08:56 - 2014-12-19 08:56 - 00002253 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-12-19 08:56 - 2014-12-19 08:56 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2014-12-19 08:54 - 2014-12-23 19:59 - 00001064 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-12-19 08:54 - 2014-12-23 09:04 - 00001060 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-12-19 08:54 - 2014-12-19 08:54 - 00004060 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2014-12-19 08:54 - 2014-12-19 08:54 - 00003808 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2014-12-18 20:51 - 2014-12-18 20:51 - 00000000 ____D () C:\Users\User\AppData\Roaming\kunlun
2014-12-18 17:52 - 2014-12-18 17:59 - 00000000 ____D () C:\ProgramData\BlueStacksSetup
2014-12-17 15:46 - 2014-12-18 19:34 - 00000000 ____D () C:\Program Files\WhoCrashed
2014-12-17 15:46 - 2014-12-17 15:46 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WhoCrashed
2014-12-17 15:45 - 2014-12-17 15:45 - 02707808 _____ (Resplendence Software Projects Sp. ) C:\Users\User\Downloads\whocrashedSetup.exe
2014-12-17 15:36 - 2014-12-17 15:36 - 00277400 _____ () C:\Windows\Minidump\121714-26629-01.dmp
2014-12-15 20:01 - 2014-12-15 20:01 - 00000000 ____H () C:\Users\User\AppData\Local\BIT9BC2.tmp
2014-12-15 20:00 - 2014-12-15 20:00 - 00262144 _____ () C:\Windows\Minidump\121514-37783-01.dmp
2014-12-15 20:00 - 2014-12-15 20:00 - 00000000 _____ () C:\Users\User\AppData\Local\{A29B8EBA-5273-4E94-8115-84716FA1A94C}
2014-12-14 20:50 - 2014-12-14 20:50 - 00277456 _____ () C:\Windows\Minidump\121414-21652-01.dmp
2014-12-14 20:37 - 2014-12-23 20:05 - 00000000 ____D () C:\FRST
2014-12-14 12:10 - 2014-12-14 12:10 - 00266576 _____ () C:\Windows\Minidump\121414-70668-01.dmp
2014-12-14 12:04 - 2014-12-14 12:04 - 00000000 ____D () C:\Windows\system32\appraiser
2014-12-13 15:50 - 2014-12-04 03:50 - 00830976 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2014-12-13 15:50 - 2014-12-04 03:50 - 00741376 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2014-12-13 15:50 - 2014-12-04 03:50 - 00413184 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2014-12-13 15:50 - 2014-12-04 03:50 - 00396800 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2014-12-13 15:50 - 2014-12-04 03:50 - 00227328 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-12-13 15:50 - 2014-12-04 03:50 - 00192000 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
2014-12-13 15:50 - 2014-12-04 03:44 - 01083392 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-12-13 15:50 - 2014-12-02 00:28 - 01232040 _____ (Microsoft Corporation) C:\Windows\system32\aitstatic.exe
2014-12-13 15:50 - 2014-11-27 02:43 - 00389296 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-12-13 15:50 - 2014-11-27 02:10 - 00342200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-12-13 15:50 - 2014-11-22 04:13 - 25059840 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-12-13 15:50 - 2014-11-22 04:06 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-12-13 15:50 - 2014-11-22 04:06 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-12-13 15:50 - 2014-11-22 03:50 - 00580096 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-12-13 15:50 - 2014-11-22 03:50 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-12-13 15:50 - 2014-11-22 03:49 - 02885120 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-12-13 15:50 - 2014-11-22 03:49 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-12-13 15:50 - 2014-11-22 03:48 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-12-13 15:50 - 2014-11-22 03:41 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-12-13 15:50 - 2014-11-22 03:40 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-12-13 15:50 - 2014-11-22 03:37 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-12-13 15:50 - 2014-11-22 03:35 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-12-13 15:50 - 2014-11-22 03:34 - 06039552 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-12-13 15:50 - 2014-11-22 03:34 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-12-13 15:50 - 2014-11-22 03:26 - 00968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-12-13 15:50 - 2014-11-22 03:22 - 19749376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-12-13 15:50 - 2014-11-22 03:22 - 00490496 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-12-13 15:50 - 2014-11-22 03:20 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-12-13 15:50 - 2014-11-22 03:14 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-12-13 15:50 - 2014-11-22 03:09 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-12-13 15:50 - 2014-11-22 03:08 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-12-13 15:50 - 2014-11-22 03:07 - 00501248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-12-13 15:50 - 2014-11-22 03:07 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-12-13 15:50 - 2014-11-22 03:06 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-12-13 15:50 - 2014-11-22 03:05 - 00316928 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-12-13 15:50 - 2014-11-22 03:05 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2014-12-13 15:50 - 2014-11-22 03:01 - 02277888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-12-13 15:50 - 2014-11-22 02:59 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-12-13 15:50 - 2014-11-22 02:58 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-12-13 15:50 - 2014-11-22 02:56 - 00478208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-12-13 15:50 - 2014-11-22 02:54 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-12-13 15:50 - 2014-11-22 02:49 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-12-13 15:50 - 2014-11-22 02:49 - 00718848 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-12-13 15:50 - 2014-11-22 02:47 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-12-13 15:50 - 2014-11-22 02:46 - 02125312 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-12-13 15:50 - 2014-11-22 02:45 - 00418304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-12-13 15:50 - 2014-11-22 02:43 - 14412800 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-12-13 15:50 - 2014-11-22 02:40 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-12-13 15:50 - 2014-11-22 02:36 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-12-13 15:50 - 2014-11-22 02:35 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-12-13 15:50 - 2014-11-22 02:33 - 00285696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-12-13 15:50 - 2014-11-22 02:29 - 04299264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-12-13 15:50 - 2014-11-22 02:28 - 02358272 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-12-13 15:50 - 2014-11-22 02:23 - 00688640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-12-13 15:50 - 2014-11-22 02:22 - 02052096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-12-13 15:50 - 2014-11-22 02:21 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2014-12-13 15:50 - 2014-11-22 02:15 - 01548288 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-12-13 15:50 - 2014-11-22 02:13 - 12836864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-12-13 15:50 - 2014-11-22 02:03 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-12-13 15:50 - 2014-11-22 02:00 - 01888256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-12-13 15:50 - 2014-11-22 01:56 - 01307136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-12-13 15:50 - 2014-11-22 01:54 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-12-13 15:50 - 2014-11-11 04:09 - 01424384 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2014-12-13 15:50 - 2014-11-11 03:44 - 01230336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2014-12-13 15:48 - 2014-11-11 04:08 - 00728064 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2014-12-13 15:48 - 2014-11-11 04:08 - 00241152 _____ (Microsoft Corporation) C:\Windows\system32\pku2u.dll
2014-12-13 15:48 - 2014-11-11 03:44 - 00550912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2014-12-13 15:48 - 2014-11-11 03:44 - 00186880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pku2u.dll
2014-12-13 15:48 - 2014-11-11 02:46 - 00119296 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdx.sys
2014-12-13 15:45 - 2014-11-08 04:16 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2014-12-13 15:45 - 2014-11-08 03:45 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2014-12-13 15:45 - 2014-10-30 03:03 - 00165888 _____ (Microsoft Corporation) C:\Windows\system32\charmap.exe
2014-12-13 15:45 - 2014-10-30 02:45 - 00155136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\charmap.exe
2014-12-13 15:45 - 2014-10-03 03:12 - 02020352 _____ (Microsoft Corporation) C:\Windows\system32\WsmSvc.dll
2014-12-13 15:45 - 2014-10-03 03:12 - 00346624 _____ (Microsoft Corporation) C:\Windows\system32\WSManMigrationPlugin.dll
2014-12-13 15:45 - 2014-10-03 03:12 - 00310272 _____ (Microsoft Corporation) C:\Windows\system32\WsmWmiPl.dll
2014-12-13 15:45 - 2014-10-03 03:12 - 00181248 _____ (Microsoft Corporation) C:\Windows\system32\WsmAuto.dll
2014-12-13 15:45 - 2014-10-03 03:11 - 00266240 _____ (Microsoft Corporation) C:\Windows\system32\WSManHTTPConfig.exe
2014-12-13 15:45 - 2014-10-03 02:45 - 01177088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmSvc.dll
2014-12-13 15:45 - 2014-10-03 02:45 - 00248832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSManMigrationPlugin.dll
2014-12-13 15:45 - 2014-10-03 02:45 - 00214016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmWmiPl.dll
2014-12-13 15:45 - 2014-10-03 02:45 - 00145920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmAuto.dll
2014-12-13 15:45 - 2014-10-03 02:44 - 00198656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSManHTTPConfig.exe
2014-12-13 15:26 - 2014-07-07 03:06 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\mfpmp.exe
2014-12-13 15:26 - 2014-07-07 03:02 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\mferror.dll
2014-12-13 15:26 - 2014-07-07 02:37 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mferror.dll
2014-12-13 15:25 - 2014-10-18 03:05 - 04121600 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll
2014-12-13 15:25 - 2014-10-18 02:33 - 03209728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf.dll
2014-12-13 15:25 - 2014-07-07 03:06 - 00206848 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll
2014-12-13 15:25 - 2014-07-07 03:06 - 00055808 _____ (Microsoft Corporation) C:\Windows\system32\rrinstaller.exe
2014-12-13 15:25 - 2014-07-07 02:40 - 00103424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfps.dll
2014-12-13 15:25 - 2014-07-07 02:39 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rrinstaller.exe
2014-12-13 15:25 - 2014-07-07 02:39 - 00023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfpmp.exe
2014-12-12 22:12 - 2014-12-12 22:12 - 00000000 __SHD () C:\Users\Luc1\AppData\Local\EmieUserList
2014-12-12 22:12 - 2014-12-12 22:12 - 00000000 __SHD () C:\Users\Luc1\AppData\Local\EmieSiteList
2014-12-12 22:12 - 2014-12-12 22:12 - 00000000 __SHD () C:\Users\Luc1\AppData\Local\EmieBrowserModeList
2014-12-12 22:08 - 2014-12-13 15:19 - 00000000 ____D () C:\Users\Luc1\AppData\Roaming\ControlCenter4
2014-12-12 22:04 - 2014-12-12 22:04 - 00064024 _____ () C:\Users\Luc1\AppData\Local\GDIPFONTCACHEV1.DAT
2014-12-12 22:04 - 2014-12-12 22:04 - 00000000 ____D () C:\Users\Luc1\AppData\Roaming\Apple Computer
2014-12-12 22:03 - 2014-12-13 15:20 - 00000000 ____D () C:\Users\Luc1
2014-12-12 22:03 - 2014-12-12 22:03 - 00000000 _SHDL () C:\Users\Luc1\Voisinage réseau
2014-12-12 22:03 - 2014-12-12 22:03 - 00000000 _SHDL () C:\Users\Luc1\Voisinage d'impression
2014-12-12 22:03 - 2014-12-12 22:03 - 00000000 _SHDL () C:\Users\Luc1\Modèles
2014-12-12 22:03 - 2014-12-12 22:03 - 00000000 _SHDL () C:\Users\Luc1\Menu Démarrer
2014-12-12 22:03 - 2014-12-12 22:03 - 00000000 _SHDL () C:\Users\Luc1\Documents\Mes vidéos
2014-12-12 22:03 - 2014-12-12 22:03 - 00000000 _SHDL () C:\Users\Luc1\Documents\Mes images
2014-12-12 22:03 - 2014-12-12 22:03 - 00000000 _SHDL () C:\Users\Luc1\Documents\Ma musique
2014-12-12 22:03 - 2014-12-12 22:03 - 00000000 _SHDL () C:\Users\Luc1\AppData\Roaming\Microsoft\Windows\Start Menu\Programmes
2014-12-12 22:03 - 2014-12-12 22:03 - 00000000 _SHDL () C:\Users\Luc1\AppData\Local\Historique
2014-12-12 22:03 - 2014-12-12 22:03 - 00000000 ____D () C:\Users\Luc1\AppData\Roaming\Adobe
2014-12-12 22:03 - 2014-12-12 22:03 - 00000000 ____D () C:\Users\Luc1\AppData\Local\VirtualStore
2014-12-12 22:03 - 2014-12-12 22:03 - 00000000 ____D () C:\Users\Luc1\AppData\Local\Google
2014-12-12 22:03 - 2013-11-15 22:27 - 00000000 ____D () C:\Users\Luc1\AppData\Roaming\Macromedia
2014-12-11 16:46 - 2014-12-12 18:15 - 00000000 ____D () C:\BaseData
2014-12-11 16:46 - 2014-12-11 16:46 - 00000000 ____D () C:\RepData
2014-12-11 16:46 - 2014-12-11 16:46 - 00000000 ____D () C:\LogData
2014-12-11 16:43 - 2014-12-11 16:46 - 00000000 ___HD () C:\Users\User\funshion
2014-12-10 22:29 - 2014-12-11 15:58 - 00000000 ____D () C:\ProgramData\E1864A66-75E3-486a-BD95-D1B7D99A84A7
2014-12-10 22:16 - 2014-12-10 22:16 - 00000000 ____D () C:\ProgramData\Softorino
2014-12-10 14:54 - 2014-12-10 14:54 - 00000000 __SHD () C:\found.002
2014-12-09 21:50 - 2014-12-11 15:58 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-11-30 20:46 - 2014-12-12 19:28 - 00000000 ____D () C:\Program Files\CCleaner

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-12-23 17:49 - 2012-04-26 19:28 - 00000000 ____D () C:\Users\User\AppData\Roaming\PPStream
2014-12-23 17:48 - 2014-09-21 18:20 - 00000000 ____D () C:\Users\User\AppData\Roaming\KuGou8
2014-12-23 17:48 - 2014-09-21 18:20 - 00000000 ____D () C:\Program Files (x86)\KuGou
2014-12-23 17:11 - 2013-10-09 12:34 - 00040578 _____ () C:\Windows\setupact.log
2014-12-23 17:11 - 2012-04-28 15:12 - 00000000 ____D () C:\Users\User\AppData\Roaming\Skype
2014-12-23 15:39 - 2012-04-24 19:42 - 01378306 _____ () C:\Windows\WindowsUpdate.log
2014-12-23 09:10 - 2009-07-14 05:45 - 00022464 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-12-23 09:10 - 2009-07-14 05:45 - 00022464 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-12-23 09:07 - 2009-07-14 16:24 - 01281858 _____ () C:\Windows\system32\perfh00C.dat
2014-12-23 09:07 - 2009-07-14 16:24 - 00667110 _____ () C:\Windows\system32\perfc00C.dat
2014-12-23 09:07 - 2009-07-14 06:13 - 00006264 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-12-23 09:03 - 2012-05-19 12:01 - 00000000 ____D () C:\Windows\Minidump
2014-12-23 09:03 - 2009-07-14 06:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-12-22 10:23 - 2012-05-02 10:04 - 00000000 ____D () C:\Users\User\AppData\Roaming\PIPI
2014-12-22 09:39 - 2009-07-14 06:08 - 00032482 _____ () C:\Windows\Tasks\SCHEDLGU.TXT
2014-12-21 14:46 - 2014-07-12 15:41 - 00000000 ____D () C:\Users\User\Documents\Dragonsaga
2014-12-20 18:08 - 2013-03-14 03:02 - 00000000 ____D () C:\Program Files\Microsoft Silverlight
2014-12-20 18:08 - 2013-03-14 03:02 - 00000000 ____D () C:\Program Files (x86)\Microsoft Silverlight
2014-12-19 21:33 - 2014-10-01 20:49 - 00000000 ____D () C:\Users\User\AppData\Local\Adobe
2014-12-19 21:27 - 2012-04-26 19:20 - 00001912 _____ () C:\Windows\epplauncher.mif
2014-12-19 17:25 - 2009-07-14 04:20 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
2014-12-19 17:24 - 2013-10-10 14:28 - 00676314 _____ () C:\Windows\PFRO.log
2014-12-19 08:55 - 2014-07-24 13:23 - 00000000 ____D () C:\Users\User\Desktop\Luc
2014-12-19 08:46 - 2014-07-17 14:04 - 00000000 ____D () C:\Users\User\AppData\Local\Akamai
2014-12-19 08:46 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\registration
2014-12-18 21:02 - 2012-06-22 23:13 - 00000000 ____D () C:\Program Files (x86)\Google
2014-12-18 18:51 - 2009-07-14 04:20 - 00000000 __RHD () C:\Users\Public\Libraries
2014-12-17 20:15 - 2012-04-24 19:43 - 00000000 ___RD () C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2014-12-16 15:59 - 2013-12-04 13:31 - 00000000 ____D () C:\AdwCleaner
2014-12-15 21:25 - 2012-04-26 19:28 - 00000000 ____D () C:\Users\User\AppData\Local\Google
2014-12-15 21:15 - 2012-04-26 19:24 - 00000000 ____D () C:\Users\User\AppData\Local\Deployment
2014-12-15 20:40 - 2014-11-13 20:43 - 00000000 ____D () C:\Users\User\AppData\Roaming\ppslog
2014-12-15 20:37 - 2013-05-11 02:29 - 00001001 _____ () C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-12-15 20:37 - 2012-04-27 13:33 - 00001154 _____ () C:\Users\User\Desktop\Internet Explorer.lnk
2014-12-15 20:13 - 2012-04-26 20:14 - 00000000 ____D () C:\Users\User\Tracing
2014-12-14 12:04 - 2014-07-24 17:40 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-12-14 12:04 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\PolicyDefinitions
2014-12-13 15:40 - 2013-08-15 02:02 - 00000000 ____D () C:\Windows\system32\MRT
2014-12-13 15:27 - 2012-04-27 08:00 - 112710672 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-12-13 15:20 - 2012-05-14 13:46 - 00000000 ___SD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice.org 3.4
2014-12-13 15:19 - 2014-10-08 18:37 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2014-12-13 15:19 - 2014-10-06 17:07 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2014-12-13 15:19 - 2014-07-17 13:59 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AeriaGames
2014-12-13 15:19 - 2014-07-03 18:39 - 00000000 ___HD () C:\Users\Public\FunAcce
2014-12-13 15:19 - 2014-03-08 17:03 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fraps
2014-12-13 15:19 - 2014-01-03 21:26 - 00000000 ____D () C:\Program Files (x86)\AbiWord
2014-12-13 15:19 - 2012-12-22 11:00 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NewFeature1
2014-12-13 15:19 - 2012-10-30 11:16 - 00000000 ____D () C:\Program Files (x86)\Super macro
2014-12-13 15:19 - 2012-06-16 20:41 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2014-12-13 15:19 - 2012-04-26 20:13 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live
2014-12-13 15:19 - 2012-04-24 20:22 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Catalyst Control Center
2014-12-13 15:19 - 2009-07-14 06:32 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2014-12-13 15:19 - 2009-07-14 04:20 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance
2014-12-13 15:19 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\rescache
2014-12-13 15:18 - 2012-09-15 10:44 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Brother
2014-12-12 19:43 - 2014-04-10 20:05 - 00002441 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
2014-12-12 19:29 - 2014-10-13 20:56 - 00000000 ____D () C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CopyTrans Control Center
2014-12-12 19:29 - 2014-10-06 19:14 - 00000000 ____D () C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2014-12-12 19:29 - 2014-10-06 17:04 - 00000000 ____D () C:\Program Files\iTunes
2014-12-12 19:29 - 2014-10-06 17:04 - 00000000 ____D () C:\Program Files (x86)\iTunes
2014-12-12 19:29 - 2014-07-16 01:03 - 00000000 ____D () C:\Users\User\AppData\Roaming\Funshion
2014-12-12 19:29 - 2013-12-03 10:13 - 00000000 ____D () C:\ProgramData\LocalStorage
2014-12-12 19:29 - 2012-12-01 18:57 - 00000000 ____D () C:\Users\Public\Sony Online Entertainment
2014-12-12 19:29 - 2009-07-14 16:35 - 00000000 ___RD () C:\Users\Public\Recorded TV
2014-12-12 19:29 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\system32\NDF
2014-12-12 19:29 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\servicing
2014-12-12 19:29 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\AppCompat
2014-12-12 19:29 - 2009-07-14 04:20 - 00000000 ____D () C:\Program Files\Common Files\Microsoft Shared
2014-12-12 19:26 - 2014-10-13 20:56 - 00000000 ____D () C:\Users\User\AppData\Roaming\WindSolutions
2014-12-12 19:26 - 2012-06-24 20:16 - 00000000 ____D () C:\Users\User\AppData\Roaming\TeamViewer
2014-12-12 19:26 - 2012-04-24 19:51 - 00000000 ____D () C:\Users\User\AppData\Roaming\Macromedia
2014-12-12 19:25 - 2014-07-24 13:07 - 00000000 ____D () C:\Users\User\AppData\Local\Mozilla
2014-12-12 19:23 - 2014-10-06 17:04 - 00000000 ____D () C:\Program Files\iPod
2014-12-12 19:23 - 2012-04-26 21:04 - 00000000 ____D () C:\Program Files\Common Files\Apple
2014-12-12 19:23 - 2012-04-26 20:55 - 00000000 ____D () C:\ProgramData\Apple Computer
2014-12-12 19:23 - 2012-04-26 20:28 - 00000000 ____D () C:\Users\Public\Documents\Tencent
2014-12-10 22:08 - 2014-04-22 07:51 - 00000000 ____D () C:\Users\User\AppData\Roaming\CloudMedia
2014-12-09 21:50 - 2013-12-04 09:31 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-11-30 21:04 - 2012-04-24 20:34 - 00000000 ____D () C:\Windows\Panther
2014-11-24 14:04 - 2012-04-24 20:14 - 00275080 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe

Some content of TEMP:
====================
C:\Users\User\AppData\Local\Temp\KGUpdater.exe
C:\Users\User\AppData\Local\Temp\Uninstaller-4504.exe
C:\Users\User\AppData\Local\Temp\upexd.dll


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2014-12-16 18:36

==================== End Of Log ============================