cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version:11-10-2015 01
Exécuté par sand (administrateur) sur PC_SALON (11-10-2015 21:54:19)
Exécuté depuis C:\Users\sand\Downloads
Profils chargés: sand & Admin123 (Profils disponibles: sand & Admin123 & Administrateur)
Platform: Windows 10 Home (X64) Langue: Français (France)
Internet Explorer Version 11 (Navigateur par défaut: Chrome)
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processus (Avec liste blanche) =================

(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)

(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Acer Incorporated) C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe
(Acer Incorporate) C:\Program Files\Packard Bell\Packard Bell Launch Manager\LMSvc.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
() C:\Windows\System32\igfxTray.exe
(Acer Incorporate) C:\Program Files\Packard Bell\Packard Bell Quick Access\QASvc.exe
(Acer Incorporate) C:\Program Files\Packard Bell\Packard Bell Quick Access\RMSvc.exe
(Acer Incorporate) C:\Program Files\Packard Bell\Packard Bell Quick Access\QAEvent.exe
(Acer Incorporate) C:\Program Files\Packard Bell\Packard Bell Quick Access\QAMsg.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Acer Incorporate) C:\Program Files\Packard Bell\Packard Bell Quick Access\QuickAccess.exe
(Acer Incorporated) C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerTray.exe
(Acer Incorporated) C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerSvc.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Acer Incorporated) C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerEvent.exe
(TODO: ) C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Nero AG) C:\Program Files (x86)\Nero\Update\NASvc.exe
(Acer) C:\Program Files (x86)\Acer\Acer Portal\AcerPortal.exe
(Acer Cloud Technology) C:\Program Files (x86)\Acer\AOP Framework\acer\ccd.exe
(Acer Incorporated) C:\Program Files\Packard Bell\Packard Bell Recovery Management\Notification\Notification.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
() C:\Windows\System32\igfxTray.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Acer Incorporate) C:\Program Files\Packard Bell\Packard Bell Quick Access\QAEvent.exe
(Acer Incorporate) C:\Program Files\Packard Bell\Packard Bell Quick Access\QAMsg.exe
(Acer Incorporate) C:\Program Files\Packard Bell\Packard Bell Quick Access\QuickAccess.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Acer Incorporated) C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerTray.exe
() C:\Program Files (x86)\Acer\abDocs\abDocsDllLoaderMonitor.exe
(Acer Cloud Technology) C:\Program Files (x86)\Acer\AOP Framework\acer\ccd.exe
(Acer Incorporated) C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerEvent.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Microsoft Corporation) C:\Windows\System32\InstallAgent.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe


==================== Registre (Avec liste blanche) ===========================

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13647576 2013-08-27] (Realtek Semiconductor)
HKLM\...\Run: [IgfxTray] => C:\Windows\system32\igfxtray.exe [396688 2015-07-18] ()
HKLM\...\Run: [HotKeysCmds] => "C:\Windows\system32\hkcmd.exe"
HKLM\...\Run: [Persistence] => "C:\Windows\system32\igfxpers.exe"
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3944136 2015-06-04] (Synaptics Incorporated)
HKLM-x32\...\Run: [rec_en_77] => C:\Program Files (x86)\rec_en_77\rec_en_77.exe [3969536 2015-10-04] ()
HKLM\...\Policies\Explorer\Run: [BtvStack] => C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe
HKU\S-1-5-21-581744776-2104340524-879650286-1001\...\Run: [abDocsDllLoader] => C:\Program Files (x86)\Acer\abDocs\abDocsDllLoaderMonitor.exe [1769312 2015-07-27] ()
HKU\S-1-5-21-581744776-2104340524-879650286-1004\...\RunOnce: [Uninstall C:\Users\Admin123\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Admin123\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64"
ShellIconOverlayIdentifiers: [ ACloudSynced] -> {5CCE71FA-9F61-4F24-9CD1-98D819B40D68} => C:\Program Files (x86)\Acer\shellext\x64\shellext_win.dll [2015-08-13] (Acer Incorporated)
ShellIconOverlayIdentifiers: [ ACloudSyncing] -> {C1E1456F-C2D8-4C96-870D-35F1E13941EE} => C:\Program Files (x86)\Acer\shellext\x64\shellext_win.dll [2015-08-13] (Acer Incorporated)
ShellIconOverlayIdentifiers: [ ACloudToBeSynced] -> {307523FA-DDC0-4068-983F-2A6B34627744} => C:\Program Files (x86)\Acer\shellext\x64\shellext_win.dll [2015-08-13] (Acer Incorporated)

==================== Internet (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{6d85c7ff-8d98-4ff0-ae79-4de0513cd6f1}: [DhcpNameServer] 192.168.1.254

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/?LinkID=617910&ResetID=130886389728714688&GUID=9E2DE397-B405-42EC-89D3-00D7FB40178F
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://google.com
HKU\S-1-5-21-581744776-2104340524-879650286-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.google.com/
HKU\S-1-5-21-581744776-2104340524-879650286-1004\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://acer13.msn.com/?pc=APJB
HKU\S-1-5-21-581744776-2104340524-879650286-1004\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://acer13.msn.com/?pc=APJB
SearchScopes: HKLM -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKLM -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKLM-x32 -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKLM-x32 -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1

FireFox:
========
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-09-04] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-09-04] (Intel Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-10-07] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-10-07] (Google Inc.)
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll [2013-07-13] ()

Chrome:
=======
CHR Profile: C:\Users\sand\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Slides) - C:\Users\sand\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-10-09]
CHR Extension: (Google Docs) - C:\Users\sand\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-10-09]
CHR Extension: (Google Drive) - C:\Users\sand\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-09]
CHR Extension: (YouTube) - C:\Users\sand\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-10-09]
CHR Extension: (Recherche Google) - C:\Users\sand\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-09]
CHR Extension: (Google Sheets) - C:\Users\sand\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-10-09]
CHR Extension: (Google Docs hors connexion) - C:\Users\sand\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-10-09]
CHR Extension: (Chrome Hotword Shared Module) - C:\Users\sand\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-10-07]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\sand\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-07-14]
CHR Extension: (Gmail) - C:\Users\sand\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-10-09]

==================== Services (Avec liste blanche) ========================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R2 CCDMonitorService; C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe [2858336 2015-07-23] (Acer Incorporated)
R3 ePowerSvc; C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerSvc.exe [663592 2013-07-05] (Acer Incorporated)
R2 GamesAppIntegrationService; C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe [235008 2013-07-16] (TODO: ) [Fichier non signé]
R2 igfxCUIService2.0.0.0; C:\Windows\system32\igfxCUIService.exe [351120 2015-07-18] (Intel Corporation)
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [733696 2013-05-11] (Intel(R) Corporation) [Fichier non signé]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [822232 2013-05-11] (Intel(R) Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-09-04] (Intel Corporation)
R2 LMSvc; C:\Program Files\Packard Bell\Packard Bell Launch Manager\LMSvc.exe [457768 2013-08-03] (Acer Incorporate)
R3 QASvc; C:\Program Files\Packard Bell\Packard Bell Quick Access\QASvc.exe [457768 2013-08-02] (Acer Incorporate)
R3 RMSvc; C:\Program Files\Packard Bell\Packard Bell Quick Access\RMSvc.exe [448040 2013-08-02] (Acer Incorporate)
R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [249032 2015-06-04] (Synaptics Incorporated)
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [362928 2015-07-10] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-07-10] (Microsoft Corporation)

===================== Pilotes (Avec liste blanche) ==========================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R3 athr; C:\Windows\System32\drivers\athwbx.sys [3859968 2013-08-15] (Qualcomm Atheros Communications, Inc.)
R3 LMDriver; C:\Windows\System32\drivers\LMDriver.sys [21360 2013-07-17] (Acer Incorporated)
R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [99288 2013-12-19] (Intel Corporation)
R3 RadioShim; C:\Windows\System32\drivers\RadioShim.sys [14680 2013-07-17] (Acer Incorporated)
R3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [42696 2015-06-04] (Synaptics Incorporated)
S3 UdeCx; C:\Windows\System32\drivers\udecx.sys [44032 2015-07-10] ()
S0 WdBoot; C:\Windows\System32\drivers\WdBoot.sys [44568 2015-07-10] (Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\WdFilter.sys [291680 2015-07-10] (Microsoft Corporation)
R2 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [119648 2015-07-10] (Microsoft Corporation)

==================== NetSvcs (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)


==================== Un mois - Créés - fichiers et dossiers ========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2015-10-11 21:54 - 2015-10-11 21:55 - 00014061 _____ C:\Users\sand\Downloads\FRST.txt
2015-10-11 21:54 - 2015-10-11 21:54 - 00000000 ____D C:\FRST
2015-10-11 21:53 - 2015-10-11 21:53 - 02195456 _____ (Farbar) C:\Users\sand\Downloads\FRST64.exe
2015-10-11 21:52 - 2015-10-11 21:52 - 00016148 _____ C:\WINDOWS\system32\PC_SALON_sand_HistoryPrediction.bin
2015-10-11 21:41 - 2015-10-11 21:41 - 00000000 ____D C:\ProgramData\Norton
2015-10-11 21:26 - 2015-10-11 21:26 - 00000000 ____D C:\WINDOWS\ERUNT
2015-10-11 19:32 - 2015-10-11 19:32 - 00016148 _____ C:\WINDOWS\system32\PC_SALON_Admin123_HistoryPrediction.bin
2015-10-11 18:32 - 2015-10-11 18:33 - 05669256 _____ C:\Users\Admin123\Downloads\DriversCloudx64_8_0_2_1.exe
2015-10-11 18:31 - 2015-10-11 18:31 - 00000000 ____D C:\Users\Admin123\AppData\Local\Acer Aspire R7 Tutorial
2015-10-11 18:06 - 2015-10-11 18:07 - 00002399 _____ C:\Users\Admin123\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2015-10-11 18:06 - 2015-10-11 18:07 - 00000000 ___RD C:\Users\Admin123\OneDrive
2015-10-11 18:05 - 2015-10-11 18:05 - 00001341 _____ C:\Users\Admin123\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\RtkGUI.lnk
2015-10-11 18:04 - 2015-10-11 18:04 - 00000000 ____D C:\Users\Admin123\AppData\Local\Publishers
2015-10-11 18:03 - 2015-10-11 19:36 - 00000000 ____D C:\Users\Admin123\AppData\Local\CrashDumps
2015-10-11 18:03 - 2015-10-11 18:03 - 00000000 ____D C:\Users\Admin123\AppData\Roaming\Adobe
2015-10-11 18:03 - 2015-10-11 18:03 - 00000000 ____D C:\Users\Admin123\AppData\Local\VirtualStore
2015-10-11 18:03 - 2015-10-11 18:03 - 00000000 ____D C:\Users\Admin123\AppData\Local\AOP SDK
2015-10-11 18:02 - 2015-10-11 19:45 - 00000000 ____D C:\Users\Admin123\AppData\Local\Packages
2015-10-11 18:02 - 2015-10-11 18:06 - 00000000 ____D C:\Users\Admin123
2015-10-11 18:02 - 2015-10-11 18:02 - 00000020 ___SH C:\Users\Admin123\ntuser.ini
2015-10-11 18:02 - 2015-10-11 18:02 - 00000000 _SHDL C:\Users\Admin123\Voisinage réseau
2015-10-11 18:02 - 2015-10-11 18:02 - 00000000 _SHDL C:\Users\Admin123\Voisinage d'impression
2015-10-11 18:02 - 2015-10-11 18:02 - 00000000 _SHDL C:\Users\Admin123\Modèles
2015-10-11 18:02 - 2015-10-11 18:02 - 00000000 _SHDL C:\Users\Admin123\Menu Démarrer
2015-10-11 18:02 - 2015-10-11 18:02 - 00000000 _SHDL C:\Users\Admin123\Documents\Mes vidéos
2015-10-11 18:02 - 2015-10-11 18:02 - 00000000 _SHDL C:\Users\Admin123\Documents\Mes images
2015-10-11 18:02 - 2015-10-11 18:02 - 00000000 _SHDL C:\Users\Admin123\Documents\Ma musique
2015-10-11 18:02 - 2015-10-11 18:02 - 00000000 _SHDL C:\Users\Admin123\AppData\Roaming\Microsoft\Windows\Start Menu\Programmes
2015-10-11 18:02 - 2015-10-11 18:02 - 00000000 _SHDL C:\Users\Admin123\AppData\Local\Historique
2015-10-11 18:02 - 2015-10-11 18:02 - 00000000 ___RD C:\Users\Admin123\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-10-11 18:02 - 2015-10-11 18:02 - 00000000 ____D C:\Users\Admin123\AppData\Roaming\Synaptics
2015-10-11 18:02 - 2015-10-11 18:02 - 00000000 ____D C:\Users\Admin123\AppData\Local\TileDataLayer
2015-10-11 18:02 - 2015-10-11 18:02 - 00000000 ____D C:\Users\Admin123\AppData\Local\Google
2015-10-11 18:02 - 2015-07-31 00:42 - 00000000 __RSD C:\Users\Admin123\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell
2015-10-11 18:02 - 2015-07-31 00:42 - 00000000 ___RD C:\Users\Admin123\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-10-11 18:02 - 2015-07-31 00:42 - 00000000 ___RD C:\Users\Admin123\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2015-10-11 18:02 - 2015-07-31 00:42 - 00000000 ____D C:\Users\Admin123\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2015-10-11 16:56 - 2015-10-11 16:56 - 00000000 ____D C:\Users\TEMP\AppData\Local\AOP SDK
2015-10-11 16:55 - 2015-10-11 17:04 - 00000000 ____D C:\Users\TEMP\AppData\Local\Packages
2015-10-11 16:55 - 2015-10-11 17:04 - 00000000 ____D C:\Users\TEMP
2015-10-11 01:40 - 2015-10-11 17:28 - 00000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware
2015-10-11 01:40 - 2015-10-11 01:40 - 00000000 ____D C:\ProgramData\Malwarebytes
2015-10-10 16:46 - 2015-10-10 16:47 - 00000000 ____D C:\Program Files (x86)\ZHPFix
2015-10-08 18:07 - 2015-07-05 12:08 - 00300704 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2015-10-08 17:01 - 2015-10-08 17:01 - 00000085 _____ C:\WINDOWS\wininit.ini
2015-10-08 16:54 - 2015-10-08 16:54 - 00280728 _____ C:\WINDOWS\Minidump\100815-42984-01.dmp
2015-10-08 16:54 - 2015-10-08 16:54 - 00000000 ____D C:\WINDOWS\Minidump
2015-10-08 16:53 - 2015-10-08 16:54 - 00202000 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2015-10-08 16:53 - 2015-10-08 16:53 - 561246708 _____ C:\WINDOWS\MEMORY.DMP
2015-10-08 14:05 - 2015-10-08 14:05 - 11588952 _____ (Microsoft Corporation) C:\Users\sand\Downloads\microsoft-se_4-8-204-0_fr_291762_32.exe
2015-10-08 14:01 - 2015-10-11 19:32 - 00000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2015-10-07 23:01 - 2015-08-26 18:37 - 134753440 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2015-10-07 22:42 - 2015-10-11 17:35 - 00005342 _____ C:\WINDOWS\system32\PerfStringBackup.TMP
2015-10-07 22:33 - 2015-10-07 22:33 - 00000000 ____D C:\WINDOWS\system32\SleepStudy
2015-10-07 22:28 - 2015-10-07 22:28 - 01969152 _____ C:\Users\sand\ZHPCleaner.exe
2015-10-07 21:55 - 2015-10-11 17:10 - 00000000 ____D C:\Users\sand\AppData\Roaming\ZHP
2015-10-07 21:13 - 2015-10-07 21:33 - 00000000 ___HD C:\$SysReset
2015-10-07 17:27 - 2015-10-07 21:22 - 00010304 _____ C:\WINDOWS\SysWOW64\MediaStreamingServiceOff.ini
2015-10-07 17:24 - 2015-10-11 17:28 - 00000000 ____D C:\Program Files (x86)\rec_en_77
2015-10-07 17:21 - 2015-10-07 21:32 - 00002372 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2015-10-07 17:21 - 2015-10-07 21:32 - 00002372 _____ C:\ProgramData\Desktop\Google Chrome.lnk
2015-10-07 17:21 - 2015-10-07 17:21 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2015-10-07 17:20 - 2015-10-11 17:31 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WaInterEn
2015-10-07 17:20 - 2015-10-11 17:28 - 00000000 ____D C:\ProgramData\tjMrhTGjgZ
2015-10-07 17:20 - 2015-10-11 17:28 - 00000000 ____D C:\Program Files\WaInterEn
2015-10-07 17:20 - 2015-10-07 21:23 - 00000004 _____ C:\WINDOWS\SysWOW64\029B560A371F4E00AB32838EBC01B9E7
2015-10-07 17:20 - 2015-10-07 17:20 - 00000296 _____ C:\task.vbs
2015-10-07 17:19 - 2015-10-11 21:29 - 00001094 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2015-10-07 17:19 - 2015-10-11 19:32 - 00001090 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2015-10-07 17:19 - 2015-10-07 17:24 - 00004152 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2015-10-07 17:19 - 2015-10-07 17:24 - 00003920 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2015-10-07 17:16 - 2015-10-11 17:35 - 00004158 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{EB1A4C25-97BE-463A-87A9-CFBBE7CC62AD}
2015-10-07 16:48 - 2013-08-22 15:25 - 00000824 _____ C:\WINDOWS\system32\Drivers\etc\hosts.20151007-164807.backup
2015-10-07 15:42 - 2015-07-28 17:52 - 00821920 _____ (Safer-Networking Ltd. ) C:\Users\Public\Desktop\Post Win10 Spybot-install.exe
2015-10-07 15:42 - 2015-07-28 17:52 - 00821920 _____ (Safer-Networking Ltd. ) C:\ProgramData\Desktop\Post Win10 Spybot-install.exe
2015-10-07 10:08 - 2015-10-07 10:08 - 00000000 ____D C:\WINDOWS\System32\Tasks\Safer-Networking
2015-10-07 10:06 - 2015-10-07 10:07 - 46525608 _____ (Safer-Networking Ltd. ) C:\Users\sand\Downloads\spybot-2.4.exe
2015-10-06 23:22 - 2015-10-06 23:22 - 00003388 _____ C:\WINDOWS\System32\Tasks\AcerCloud
2015-10-06 23:22 - 2015-10-06 23:22 - 00002165 _____ C:\Users\Public\Desktop\Acer Portal.lnk
2015-10-06 23:22 - 2015-10-06 23:22 - 00002165 _____ C:\ProgramData\Desktop\Acer Portal.lnk
2015-10-06 23:21 - 2015-10-06 23:21 - 00000000 ____D C:\Users\sand\AppData\Local\AcerCloud
2015-10-06 23:20 - 2015-10-06 23:20 - 00002106 _____ C:\Users\Public\Desktop\abDocs.lnk
2015-10-06 23:20 - 2015-10-06 23:20 - 00002106 _____ C:\ProgramData\Desktop\abDocs.lnk
2015-10-06 23:18 - 2015-10-06 23:19 - 00000000 ____D C:\Users\sand\AppData\Local\Doc
2015-10-06 23:17 - 2015-10-06 23:17 - 00002138 _____ C:\Users\Public\Desktop\abMedia.lnk
2015-10-06 23:17 - 2015-10-06 23:17 - 00002138 _____ C:\ProgramData\Desktop\abMedia.lnk
2015-10-06 23:16 - 2015-10-06 23:16 - 00000000 ____D C:\Users\sand\AppData\Local\ClearfiMedia
2015-10-06 23:13 - 2015-10-07 21:22 - 00000000 ____D C:\Users\sand\AppData\Local\Acer
2015-10-06 23:13 - 2015-10-06 23:13 - 00002142 _____ C:\Users\Public\Desktop\abPhoto.lnk
2015-10-06 23:13 - 2015-10-06 23:13 - 00002142 _____ C:\ProgramData\Desktop\abPhoto.lnk
2015-10-06 23:12 - 2015-10-06 23:12 - 00000000 ____D C:\Users\sand\AppData\Local\AOP SDK
2015-10-06 23:11 - 2015-10-06 23:11 - 00000000 ____D C:\Users\sand\AppData\Roaming\acer
2015-10-06 23:11 - 2015-10-06 23:11 - 00000000 ____D C:\Users\sand\AppData\Local\ClearfiPhoto
2015-10-06 22:52 - 2015-10-06 22:52 - 00000000 ____D C:\Users\sand\AppData\Local\NetworkTiles
2015-10-06 22:44 - 2015-10-07 09:34 - 00000000 ___DC C:\WINDOWS\Panther
2015-10-06 22:44 - 2015-10-06 21:51 - 00000000 __SHD C:\Recovery
2015-10-06 22:40 - 2015-10-06 22:40 - 00000000 ____D C:\Windows.old
2015-10-06 22:37 - 2015-10-06 22:37 - 02824248 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2015-10-06 22:37 - 2015-10-06 22:37 - 02646528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2015-10-06 22:37 - 2015-10-06 22:37 - 02446648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2vdec.dll
2015-10-06 22:37 - 2015-10-06 22:37 - 02156400 _____ (Microsoft Corporation) C:\WINDOWS\system32\hevcdecoder.dll
2015-10-06 22:37 - 2015-10-06 22:37 - 02154808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2015-10-06 22:37 - 2015-10-06 22:37 - 01918464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2015-10-06 22:37 - 2015-10-06 22:37 - 01895568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hevcdecoder.dll
2015-10-06 22:37 - 2015-10-06 22:37 - 01563392 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll
2015-10-06 22:37 - 2015-10-06 22:37 - 01357888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmde.dll
2015-10-06 22:37 - 2015-10-06 22:37 - 00646672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2015-10-06 22:37 - 2015-10-06 22:37 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usoapi.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 24595456 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 21875712 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 19325440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 18806272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 16708608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 13027840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 08020816 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2015-10-06 22:36 - 2015-10-06 22:36 - 07569408 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 07523328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 07055872 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 06572032 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanmm.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 06487248 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 06101504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mos.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 05454848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 05120056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 05079552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingMaps.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 04791296 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 03781120 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 03586560 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2015-10-06 22:36 - 2015-10-06 22:36 - 03579904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 03248640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 02987520 _____ (Microsoft Corporation) C:\WINDOWS\system32\esent.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 02740224 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 02660864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 02639872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\esent.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 02494712 _____ C:\WINDOWS\system32\CoreUIComponents.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 02464216 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 02432336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2015-10-06 22:36 - 2015-10-06 22:36 - 02417664 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 02236416 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 02228736 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 02226688 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 02207232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 02178560 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 02093056 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidsvc.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 01983824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2015-10-06 22:36 - 2015-10-06 22:36 - 01844736 _____ (Microsoft Corporation) C:\WINDOWS\system32\workfolderssvc.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 01820160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Logon.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 01812480 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnidui.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 01795072 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 01766952 _____ C:\WINDOWS\SysWOW64\CoreUIComponents.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 01601536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Speech.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 01563472 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpmde.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 01423872 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataService.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 01397088 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 01382400 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2015-10-06 22:36 - 2015-10-06 22:36 - 01331200 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 01295712 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpx.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 01290240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Shell.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 01276416 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifinetworkmanager.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 01216512 _____ (Microsoft Corporation) C:\WINDOWS\system32\netcenter.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 01213440 _____ (Microsoft Corporation) C:\WINDOWS\system32\RemoteNaturalLanguage.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 01205248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Unistore.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 01203712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 01181696 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 01171456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netcenter.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 01168736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2015-10-06 22:36 - 2015-10-06 22:36 - 01162240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Speech.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 01104384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 01067520 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 01010176 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXService.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 00966416 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 00962400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 00929280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys
2015-10-06 22:36 - 2015-10-06 22:36 - 00928256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Unistore.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 00928256 _____ (Microsoft Corporation) C:\WINDOWS\system32\JpMapControl.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 00910848 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedStartModel.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 00899584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RemoteNaturalLanguage.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 00894256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Wdf01000.sys
2015-10-06 22:36 - 2015-10-06 22:36 - 00869376 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlCore.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 00859136 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 00856576 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPSSVC.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 00856576 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContactApis.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 00832512 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 00828928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Bluetooth.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 00809352 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 00796160 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 00784136 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 00781976 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfds.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 00780288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 00771072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 00764416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 00752640 _____ (Microsoft Corporation) C:\WINDOWS\system32\ChatApis.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 00720896 _____ (Microsoft Corporation) C:\WINDOWS\system32\EmailApis.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 00701952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\JpMapControl.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 00690688 _____ (Microsoft Corporation) C:\WINDOWS\system32\CellularAPI.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 00689152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 00685568 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppointmentApis.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 00677888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapControlCore.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 00671232 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUDFx02000.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 00658528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfds.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 00627712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 00625152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ContactApis.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 00621056 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 00613376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 00599552 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnapps.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 00591360 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 00590336 _____ (Microsoft Corporation) C:\WINDOWS\system32\MessagingDataModel2.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 00587264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 00584656 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 00579584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppointmentApis.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 00579072 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2015-10-06 22:36 - 2015-10-06 22:36 - 00574464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 00570880 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApi.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 00557568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ChatApis.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 00555768 _____ (Microsoft Corporation) C:\WINDOWS\system32\directmanipulation.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 00553808 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
2015-10-06 22:36 - 2015-10-06 22:36 - 00537080 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWanAPI.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 00526336 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 00525312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EmailApis.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 00521728 _____ (Microsoft Corporation) C:\WINDOWS\system32\PsmServiceExtHost.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 00517632 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 00516448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBHUB3.SYS
2015-10-06 22:36 - 2015-10-06 22:36 - 00513536 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcsvc.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 00512000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 00508248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 00505696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2015-10-06 22:36 - 2015-10-06 22:36 - 00504320 _____ (Microsoft Corporation) C:\WINDOWS\system32\DataSenseHandlers.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 00503808 _____ (Microsoft Corporation) C:\WINDOWS\system32\tileobjserver.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 00501008 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 00494592 _____ (Microsoft Corporation) C:\WINDOWS\system32\StoreAgent.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 00483328 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 00480256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Web.Core.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 00476760 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFCaptureEngine.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 00473088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpnapps.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 00467968 _____ (Microsoft Corporation) C:\WINDOWS\system32\MBMediaManager.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 00466432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MessagingDataModel2.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 00465920 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanconn.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 00464896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 00454656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MbaeApi.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 00454512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\directmanipulation.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 00446976 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapConfiguration.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 00441168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncHost.exe
2015-10-06 22:36 - 2015-10-06 22:36 - 00439296 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationWebproxy.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 00434376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFCaptureEngine.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 00428128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWanAPI.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 00421888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 00414208 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 00408064 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredProvDataModel.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 00407608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 00406864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS
2015-10-06 22:36 - 2015-10-06 22:36 - 00403456 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenrollengine.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 00395088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2015-10-06 22:36 - 2015-10-06 22:36 - 00387584 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppBroker.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 00378368 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemEventsBrokerServer.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 00371712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneDriveSettingSyncProvider.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 00371712 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlasvc.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 00366592 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 00359936 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncsi.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 00347136 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncryptprov.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 00346112 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngccredprov.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 00342016 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationGeofences.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 00336384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CredProvDataModel.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 00332624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fastfat.sys
2015-10-06 22:36 - 2015-10-06 22:36 - 00328704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapConfiguration.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 00324096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 00320000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\portcls.sys
2015-10-06 22:36 - 2015-10-06 22:36 - 00317440 _____ (Microsoft Corporation) C:\WINDOWS\system32\configmanager2.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 00313856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppBroker.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 00312832 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsApi.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 00311808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 00288256 _____ (Microsoft Corporation) C:\WINDOWS\system32\PimIndexMaintenance.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 00281600 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEEventDispatcher.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 00278352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys
2015-10-06 22:36 - 2015-10-06 22:36 - 00274944 _____ (Microsoft Corporation) C:\WINDOWS\system32\syncutil.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 00273920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 00269312 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 00268800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncryptprov.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 00268800 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationFramework.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 00267776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 00257024 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataAccountApis.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 00253440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SensorsApi.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 00247808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 00243760 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 00224256 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCore.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 00223232 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneCallHistoryApis.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 00221184 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationPeWiFi.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 00217088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VEEventDispatcher.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 00215552 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationCrowdsource.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 00204800 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmcsp.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 00204288 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationPeCell.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 00202240 _____ (Microsoft Corporation) C:\WINDOWS\system32\accountaccessor.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 00195584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataAccountApis.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 00195072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.LockScreen.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 00193024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Management.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 00187904 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 00186880 _____ (Microsoft Corporation) C:\WINDOWS\system32\cloudAP.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 00185344 _____ (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 00176640 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationPeIP.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 00172032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhoneCallHistoryApis.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 00169984 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmregistration.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 00168960 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmmigrator.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 00163840 _____ (Microsoft Corporation) C:\WINDOWS\system32\CallHistoryClient.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 00162304 _____ (Microsoft Corporation) C:\WINDOWS\system32\SubscriptionMgr.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 00160256 _____ (Microsoft Corporation) C:\WINDOWS\system32\enrollmentapi.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 00154624 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcertinst.exe
2015-10-06 22:36 - 2015-10-06 22:36 - 00149504 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringservice.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 00145920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mdmregistration.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 00143360 _____ (Microsoft Corporation) C:\WINDOWS\system32\provops.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 00137728 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEStoreEventHandlers.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 00131072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CallHistoryClient.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 00121856 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcsps.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 00120832 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmclient.exe
2015-10-06 22:36 - 2015-10-06 22:36 - 00118272 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCsp.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 00106496 _____ (Microsoft Corporation) C:\WINDOWS\system32\KeywordDetectorMsftSidAdapter.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 00102304 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmapi.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 00099664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys
2015-10-06 22:36 - 2015-10-06 22:36 - 00095744 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationWiFiAdapter.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 00088384 _____ (Microsoft Corporation) C:\WINDOWS\system32\remoteaudioendpoint.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 00088064 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngckeyenum.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 00084480 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAppInstaller.exe
2015-10-06 22:36 - 2015-10-06 22:36 - 00083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceEnroller.exe
2015-10-06 22:36 - 2015-10-06 22:36 - 00081488 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 00079872 _____ (Microsoft Corporation) C:\WINDOWS\system32\HttpsDataSource.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 00074880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\remoteaudioendpoint.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 00073728 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwancfg.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 00068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseDesktopAppMgmtCSP.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 00053760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Speech.Pal.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 00041472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Speech.Pal.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 00036352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\buttonconverter.sys
2015-10-06 22:36 - 2015-10-06 22:36 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\syncmlhook.dll
2015-10-06 22:36 - 2015-10-06 22:36 - 00026624 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManagerShellext.exe
2015-10-06 22:32 - 2015-10-06 22:32 - 00002387 _____ C:\Users\sand\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2015-10-06 22:30 - 2015-10-06 22:30 - 00008192 _____ C:\WINDOWS\system32\config\userdiff
2015-10-06 22:28 - 2015-10-06 22:28 - 00000000 ____D C:\WINDOWS\SysWOW64\XPSViewer
2015-10-06 22:28 - 2015-10-06 22:28 - 00000000 ____D C:\Program Files\Reference Assemblies
2015-10-06 22:28 - 2015-10-06 22:28 - 00000000 ____D C:\Program Files\MSBuild
2015-10-06 22:28 - 2015-10-06 22:28 - 00000000 ____D C:\Program Files (x86)\Reference Assemblies
2015-10-06 22:28 - 2015-10-06 22:28 - 00000000 ____D C:\Program Files (x86)\MSBuild
2015-10-06 22:27 - 2015-05-29 22:07 - 00778936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll
2015-10-06 22:27 - 2015-05-29 22:07 - 00102608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2015-10-06 22:27 - 2015-05-29 22:07 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe
2015-10-06 22:26 - 2015-06-17 19:10 - 01166520 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll
2015-10-06 22:26 - 2015-06-17 19:10 - 00124112 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2015-10-06 22:26 - 2015-06-17 19:10 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe
2015-10-06 22:25 - 2015-10-06 22:25 - 00000000 ____D C:\Users\sand\AppData\Local\Publishers
2015-10-06 22:24 - 2015-10-07 16:49 - 00000000 ____D C:\Users\sand\AppData\Local\Comms
2015-10-06 22:23 - 2015-10-06 22:23 - 00000000 ____D C:\Users\sand\AppData\Local\TileDataLayer
2015-10-06 22:22 - 2015-10-06 22:22 - 00000020 ___SH C:\Users\sand\ntuser.ini
2015-10-06 22:16 - 2015-10-06 22:16 - 00000000 _SHDL C:\Users\Default\Voisinage réseau
2015-10-06 22:16 - 2015-10-06 22:16 - 00000000 _SHDL C:\Users\Default\Voisinage d'impression
2015-10-06 22:16 - 2015-10-06 22:16 - 00000000 _SHDL C:\Users\Default\Modèles
2015-10-06 22:16 - 2015-10-06 22:16 - 00000000 _SHDL C:\Users\Default\Menu Démarrer
2015-10-06 22:16 - 2015-10-06 22:16 - 00000000 _SHDL C:\Users\Default\Documents\Mes vidéos
2015-10-06 22:16 - 2015-10-06 22:16 - 00000000 _SHDL C:\Users\Default\Documents\Mes images
2015-10-06 22:16 - 2015-10-06 22:16 - 00000000 _SHDL C:\Users\Default\Documents\Ma musique
2015-10-06 22:16 - 2015-10-06 22:16 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programmes
2015-10-06 22:16 - 2015-10-06 22:16 - 00000000 _SHDL C:\Users\Default\AppData\Local\Historique
2015-10-06 22:16 - 2015-10-06 22:16 - 00000000 _SHDL C:\Users\Default User\Voisinage réseau
2015-10-06 22:16 - 2015-10-06 22:16 - 00000000 _SHDL C:\Users\Default User\Voisinage d'impression
2015-10-06 22:16 - 2015-10-06 22:16 - 00000000 _SHDL C:\Users\Default User\Modèles
2015-10-06 22:16 - 2015-10-06 22:16 - 00000000 _SHDL C:\Users\Default User\Menu Démarrer
2015-10-06 22:16 - 2015-10-06 22:16 - 00000000 _SHDL C:\Users\Default User\Documents\Mes vidéos
2015-10-06 22:16 - 2015-10-06 22:16 - 00000000 _SHDL C:\Users\Default User\Documents\Mes images
2015-10-06 22:16 - 2015-10-06 22:16 - 00000000 _SHDL C:\Users\Default User\Documents\Ma musique
2015-10-06 22:16 - 2015-10-06 22:16 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programmes
2015-10-06 22:16 - 2015-10-06 22:16 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Historique
2015-10-06 21:58 - 2015-10-06 21:58 - 00001576 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2015-10-06 21:54 - 2015-10-06 21:54 - 00000000 ____D C:\WINDOWS\system32\config\bbimigrate
2015-10-06 21:52 - 2015-10-11 17:32 - 00000000 ____D C:\Users\sand
2015-10-06 21:52 - 2015-10-11 17:29 - 00000000 ____D C:\Users\Administrator
2015-10-06 21:52 - 2015-10-06 22:23 - 00000000 ___RD C:\Users\sand\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-10-06 21:52 - 2015-10-06 21:52 - 00000000 _SHDL C:\Users\sand\Voisinage réseau
2015-10-06 21:52 - 2015-10-06 21:52 - 00000000 _SHDL C:\Users\sand\Voisinage d'impression
2015-10-06 21:52 - 2015-10-06 21:52 - 00000000 _SHDL C:\Users\sand\Modèles
2015-10-06 21:52 - 2015-10-06 21:52 - 00000000 _SHDL C:\Users\sand\Menu Démarrer
2015-10-06 21:52 - 2015-10-06 21:52 - 00000000 _SHDL C:\Users\sand\Documents\Mes vidéos
2015-10-06 21:52 - 2015-10-06 21:52 - 00000000 _SHDL C:\Users\sand\Documents\Mes images
2015-10-06 21:52 - 2015-10-06 21:52 - 00000000 _SHDL C:\Users\sand\Documents\Ma musique
2015-10-06 21:52 - 2015-10-06 21:52 - 00000000 _SHDL C:\Users\sand\AppData\Roaming\Microsoft\Windows\Start Menu\Programmes
2015-10-06 21:52 - 2015-10-06 21:52 - 00000000 _SHDL C:\Users\sand\AppData\Local\Historique
2015-10-06 21:52 - 2015-10-06 21:52 - 00000000 _SHDL C:\Users\Administrator\Voisinage réseau
2015-10-06 21:52 - 2015-10-06 21:52 - 00000000 _SHDL C:\Users\Administrator\Voisinage d'impression
2015-10-06 21:52 - 2015-10-06 21:52 - 00000000 _SHDL C:\Users\Administrator\Modèles
2015-10-06 21:52 - 2015-10-06 21:52 - 00000000 _SHDL C:\Users\Administrator\Menu Démarrer
2015-10-06 21:52 - 2015-10-06 21:52 - 00000000 _SHDL C:\Users\Administrator\Documents\Mes vidéos
2015-10-06 21:52 - 2015-10-06 21:52 - 00000000 _SHDL C:\Users\Administrator\Documents\Mes images
2015-10-06 21:52 - 2015-10-06 21:52 - 00000000 _SHDL C:\Users\Administrator\Documents\Ma musique
2015-10-06 21:52 - 2015-10-06 21:52 - 00000000 _SHDL C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programmes
2015-10-06 21:52 - 2015-10-06 21:52 - 00000000 _SHDL C:\Users\Administrator\AppData\Local\Historique
2015-10-06 21:52 - 2015-09-10 07:27 - 00000000 ___RD C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-10-06 21:52 - 2015-07-31 00:42 - 00000000 __RSD C:\Users\sand\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell
2015-10-06 21:52 - 2015-07-31 00:42 - 00000000 __RSD C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell
2015-10-06 21:52 - 2015-07-31 00:42 - 00000000 ___RD C:\Users\sand\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-10-06 21:52 - 2015-07-31 00:42 - 00000000 ___RD C:\Users\sand\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2015-10-06 21:52 - 2015-07-31 00:42 - 00000000 ___RD C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-10-06 21:52 - 2015-07-31 00:42 - 00000000 ___RD C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2015-10-06 21:52 - 2015-07-31 00:42 - 00000000 ____D C:\Users\sand\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2015-10-06 21:52 - 2015-07-31 00:42 - 00000000 ____D C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2015-10-06 21:49 - 2015-10-06 21:49 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_SynTP_01011.Wdf
2015-10-06 21:49 - 2015-10-06 21:49 - 00000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2015-10-06 21:49 - 2015-10-06 21:49 - 00000000 ____D C:\Program Files\Realtek
2015-10-06 21:48 - 2015-10-06 21:48 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_TeeDriverx64_01011.Wdf
2015-10-06 21:48 - 2015-10-06 21:48 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_Smb_driver_Intel_01011.Wdf
2015-10-06 21:48 - 2015-10-06 21:48 - 00000000 ____D C:\Program Files\Synaptics
2015-10-06 21:48 - 2015-07-17 23:58 - 00086528 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.DLL
2015-10-06 21:47 - 2015-10-06 21:54 - 00000000 ____D C:\Program Files\Intel
2015-10-06 21:47 - 2015-10-06 21:47 - 00000000 ____D C:\Program Files\Common Files\Atheros
2015-10-06 21:10 - 2015-10-06 22:12 - 00006687 _____ C:\WINDOWS\comsetup.log
2015-10-06 20:25 - 2015-10-06 21:09 - 00000000 ___HD C:\$Windows.~BT
2015-10-06 20:20 - 2015-10-06 20:20 - 00000000 ____D C:\ESD
2015-10-06 19:32 - 2015-10-06 19:32 - 00000000 ___HD C:\$Windows.~WS
2015-10-06 19:31 - 2015-10-06 19:31 - 19733696 _____ (Microsoft Corporation) C:\Users\sand\Downloads\MediaCreationToolx64.exe
2015-10-06 19:28 - 2015-10-06 19:28 - 00026288 _____ C:\Users\sand\Downloads\GWXWebWindows.exe
2015-10-06 19:27 - 2015-10-06 19:27 - 00002259 _____ C:\WINDOWS\epplauncher.mif
2015-10-06 19:27 - 2015-10-06 19:27 - 00000000 ____D C:\94603e38e66f4762ff39f9e07b
2015-10-06 19:26 - 2015-10-06 19:26 - 14261952 _____ (Microsoft Corporation) C:\Users\sand\Downloads\mseinstall (2).exe
2015-09-25 19:51 - 2015-09-25 19:51 - 00099560 _____ (Broadcom Corporation) C:\WINDOWS\system32\Drivers\bScsiSDa.sys

==================== Un mois - Modifiés - fichiers et dossiers ========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2021-10-21 15:36 - 2014-05-27 08:40 - 00000852 _____ C:\WINDOWS\system32\Drivers\RTKHDRC.dat
2021-10-04 09:34 - 2014-05-27 08:40 - 00000712 _____ C:\WINDOWS\system32\Drivers\RTMICEQ0.dat
2015-10-11 21:47 - 2015-07-26 14:39 - 00000000 ____D C:\Users\sand\AppData\Local\CrashDumps
2015-10-11 21:27 - 2015-06-06 14:43 - 00001981 _____ C:\DelFix.txt
2015-10-11 21:24 - 2015-07-31 00:42 - 00000000 ____D C:\WINDOWS\system32\sru
2015-10-11 20:44 - 2014-05-27 08:22 - 00000275 _____ C:\WINDOWS\WindowsUpdate.log
2015-10-11 19:51 - 2015-07-31 00:42 - 00000000 ____D C:\WINDOWS\AppReadiness
2015-10-11 19:27 - 2015-07-31 00:25 - 00000000 ____D C:\WINDOWS\CbsTemp
2015-10-11 18:21 - 2015-07-30 23:52 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2015-10-11 18:20 - 2015-07-10 11:05 - 00524288 ___SH C:\WINDOWS\system32\config\BBI
2015-10-11 17:29 - 2015-07-10 11:47 - 00000000 ____D C:\WINDOWS\system32\Sysprep
2015-10-11 17:11 - 2015-07-31 00:42 - 00000000 ____D C:\WINDOWS\registration
2015-10-11 11:14 - 2015-09-09 22:43 - 01266300 _____ C:\WINDOWS\PFRO.log
2015-10-11 11:13 - 2014-08-27 09:29 - 00000000 ___DO C:\Users\sand\OneDrive
2015-10-10 16:31 - 2015-07-31 00:42 - 00000000 ____D C:\WINDOWS\system32\NDF
2015-10-10 14:55 - 2014-08-22 15:54 - 00000000 ____D C:\Users\sand\Desktop\divers
2015-10-07 23:06 - 2015-07-26 22:21 - 00000000 ____D C:\WINDOWS\system32\MRT
2015-10-07 23:00 - 2015-07-31 00:42 - 00000000 ____D C:\WINDOWS\system32\restore
2015-10-07 21:08 - 2014-08-22 12:39 - 00000000 ____D C:\Users\sand\AppData\Local\Packages
2015-10-07 17:20 - 2015-07-14 15:18 - 00000000 ____D C:\Program Files (x86)\Google
2015-10-07 16:58 - 2013-07-26 01:01 - 00469192 _____ (Broadcom Corporation) C:\WINDOWS\system32\Drivers\k57nd60a.sys
2015-10-07 15:42 - 2015-07-30 12:11 - 00000000 ____D C:\Program Files\Common Files\AV
2015-10-07 10:05 - 2015-07-31 00:42 - 00000000 ____D C:\WINDOWS\system32\WinBioDatabase
2015-10-07 09:34 - 2015-07-31 00:42 - 00000000 ____D C:\WINDOWS\appcompat
2015-10-06 23:22 - 2014-05-27 09:01 - 00000000 ____D C:\Program Files (x86)\Acer
2015-10-06 23:22 - 2014-05-27 08:53 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acer
2015-10-06 23:17 - 2015-07-03 12:46 - 00000000 ____D C:\Users\sand\AppData\Local\clear.fi
2015-10-06 23:11 - 2013-11-08 10:20 - 00000000 ___HD C:\OEM
2015-10-06 22:47 - 2015-07-31 00:42 - 00000000 ___HD C:\WINDOWS\ELAMBKUP
2015-10-06 22:45 - 2015-07-10 11:05 - 00032768 ___SH C:\WINDOWS\system32\config\ELAM
2015-10-06 22:44 - 2015-07-31 00:42 - 00028672 _____ C:\WINDOWS\system32\config\BCD-Template
2015-10-06 22:37 - 2015-07-31 00:42 - 00000000 ___SD C:\WINDOWS\SysWOW64\F12
2015-10-06 22:37 - 2015-07-31 00:42 - 00000000 ___SD C:\WINDOWS\system32\F12
2015-10-06 22:37 - 2015-07-31 00:42 - 00000000 ___RD C:\WINDOWS\PurchaseDialog
2015-10-06 22:37 - 2015-07-31 00:42 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessibility
2015-10-06 22:37 - 2015-07-31 00:42 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2015-10-06 22:37 - 2015-07-31 00:42 - 00000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2015-10-06 22:37 - 2015-07-31 00:42 - 00000000 ____D C:\WINDOWS\system32\appraiser
2015-10-06 22:37 - 2015-07-31 00:42 - 00000000 ____D C:\WINDOWS\Provisioning
2015-10-06 22:37 - 2015-07-31 00:42 - 00000000 ____D C:\WINDOWS\L2Schemas
2015-10-06 22:36 - 2015-07-31 00:43 - 00812008 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2015-10-06 22:36 - 2015-07-31 00:43 - 00178152 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2015-10-06 22:28 - 2015-07-31 00:42 - 00000000 ____D C:\WINDOWS\SysWOW64\MUI
2015-10-06 22:28 - 2015-07-31 00:42 - 00000000 ____D C:\WINDOWS\system32\MUI
2015-10-06 22:23 - 2013-11-08 10:44 - 00000000 ___HD C:\Intel
2015-10-06 22:18 - 2015-07-31 00:42 - 00000000 ____D C:\WINDOWS\rescache
2015-10-06 22:16 - 2015-07-31 00:42 - 00000000 ____D C:\Program Files\Windows NT
2015-10-06 22:16 - 2015-07-10 11:47 - 00000000 __RHD C:\Users\Default
2015-10-06 22:15 - 2015-07-30 23:50 - 00019484 _____ C:\WINDOWS\setupact.log
2015-10-06 22:15 - 2015-07-03 07:19 - 00013338 _____ C:\WINDOWS\diagwrn.xml
2015-10-06 22:15 - 2015-07-03 07:19 - 00013338 _____ C:\WINDOWS\diagerr.xml
2015-10-06 22:11 - 2015-07-03 12:56 - 00003706 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-581744776-2104340524-879650286-1001
2015-10-06 22:11 - 2014-05-27 08:56 - 00003038 _____ C:\WINDOWS\System32\Tasks\Quick Access
2015-10-06 22:11 - 2014-05-27 08:55 - 00003056 _____ C:\WINDOWS\System32\Tasks\Power Management
2015-10-06 22:11 - 2014-05-27 08:14 - 00003702 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-581744776-2104340524-879650286-500
2015-10-06 22:11 - 2013-11-08 10:55 - 00004528 _____ C:\WINDOWS\System32\Tasks\ALUAgent
2015-10-06 22:06 - 2015-07-31 00:42 - 00000000 __RHD C:\Users\Public\Libraries
2015-10-06 22:00 - 2015-07-31 00:42 - 00000000 ____D C:\WINDOWS\LiveKernelReports
2015-10-06 22:00 - 2015-07-31 00:42 - 00000000 ____D C:\WINDOWS\Help
2015-10-06 22:00 - 2014-05-27 08:59 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink PowerDVD 12
2015-10-06 22:00 - 2013-11-08 10:55 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Packard Bell
2015-10-06 21:59 - 2015-07-31 00:43 - 00005306 _____ C:\WINDOWS\DtcInstall.log
2015-10-06 21:59 - 2013-08-22 15:36 - 00000000 ____D C:\Users\Default.migrated
2015-10-06 21:57 - 2015-07-31 00:42 - 00000000 ____D C:\WINDOWS\system32\oobe
2015-10-06 21:57 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\system32\WindowsInternal.Inbox.Shared
2015-10-06 21:57 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\system32\WindowsInternal.Inbox.Media.Shared
2015-10-06 21:56 - 2015-07-31 00:42 - 00000000 ____D C:\WINDOWS\system32\InputMethod
2015-10-06 21:55 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\MediaViewer
2015-10-06 21:54 - 2015-07-31 00:42 - 00000000 ____D C:\WINDOWS\system32\Recovery
2015-10-06 21:54 - 2015-07-31 00:42 - 00000000 ____D C:\WINDOWS\InputMethod
2015-10-06 21:54 - 2015-07-31 00:42 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2015-10-06 21:54 - 2014-05-27 08:42 - 00000000 ____D C:\Program Files (x86)\Qualcomm Atheros
2015-10-06 21:54 - 2013-11-08 10:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero
2015-10-06 21:54 - 2013-11-08 10:47 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2015-10-06 21:54 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\ADFS
2015-10-06 21:53 - 2013-11-08 10:34 - 00000000 ____D C:\Users\Administrator\AppData\Local\Packages

==================== Fichiers à la racine de certains dossiers =======

2015-07-21 16:30 - 2015-07-21 16:30 - 6420480 _____ () C:\Program Files (x86)\GUTB78D.tmp

Fichiers à déplacer ou supprimer:
====================
C:\Users\sand\ZHPCleaner.exe


==================== Bamital & volsnap =================

(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)

C:\WINDOWS\system32\winlogon.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\wininit.exe => Le fichier est signé numériquement
C:\WINDOWS\explorer.exe => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\explorer.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\svchost.exe => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\svchost.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\services.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\User32.dll => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\User32.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\userinit.exe => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\userinit.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\rpcss.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\dnsapi.dll => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\dnsapi.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\Drivers\volsnap.sys => Le fichier est signé numériquement


LastRegBack: 2015-10-06 21:45

==================== Fin de FRST.txt ============================

Publicité


Signaler le contenu de ce document

Publicité