cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version:18-04-2016
Exécuté par geant casino (administrateur) sur GEANT (24-04-2016 16:10:59)
Exécuté depuis C:\Users\geant casino\Desktop
Profils chargés: geant casino (Profils disponibles: geant casino)
Platform: Windows 8.1 (X64) Langue: Français (France)
Internet Explorer Version 11 (Navigateur par défaut: Chrome)
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processus (Avec liste blanche) =================

(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)

(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgrsa.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgcsrva.exe
(IBM Corp.) C:\Program Files (x86)\Trusteer\Rapport\bin\RapportMgmtService.exe
(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
() C:\Program Files\ATI Technologies\ATI.ACE\a4\AdaptiveSleepService.exe
(Windows (R) Win 7 DDK provider) C:\Program Files (x86)\Bluetooth Suite\AdminService.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgidsagent.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgwdsvcx.exe
(Conexant Systems Inc.) C:\Windows\System32\CxAudMsg64.exe
() C:\Program Files (x86)\DTS, Inc\DTS Studio Sound\dts_apo_service.exe
() C:\ProgramData\DatacardService\HWDeviceService64.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
(TOSHIBA Corporation) C:\Windows\System32\TODDSrv.exe
(Toshiba Corporation) C:\Program Files\Toshiba\Teco\TecoService.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgnsa.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgemca.exe
(WildTangent) C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe
(Huawei Technologies Co., Ltd.) C:\ProgramData\DatacardService\DCSHelper.exe
(IBM Corp.) C:\Program Files (x86)\Trusteer\Rapport\bin\RapportService.exe
(Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
() C:\Windows\SysWOW64\UMonit64.exe
(Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe
(TOSHIBA Corporation) C:\Program Files\Toshiba\Hotkey\TCrdMain_Win8.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Toshiba Europe GmbH) C:\Program Files (x86)\Toshiba TEMPRO\Toshiba.Tempro.UI.CommonNotifier.exe
(Toshiba Europe GmbH) C:\Program Files (x86)\Toshiba TEMPRO\TemproSvc.exe
(TOSHIBA Corporation) C:\Program Files\Toshiba\TOSHIBA Service Station\ToshibaServiceStation.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(TOSHIBA Corporation) C:\Program Files\Toshiba\TPHM\TPCHSrv.exe
(TOSHIBA Corporation) C:\Program Files\Toshiba\TPHM\TPCHWMsg.exe
(Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.3.9600.17709_none_fa7932f59afc2e40\TiWorker.exe
(TOSHIBA Corporation) C:\Program Files\Toshiba\TOSHIBA Service Station\TMachInfo.exe
(Microsoft Corporation) C:\Windows\System32\SrTasks.exe
(Microsoft Corporation) C:\Windows\SysWOW64\WWAHost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe


==================== Registre (Avec liste blanche) ===========================

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)

HKLM\...\Run: [] => [X]
HKLM\...\Run: [cAudioFilterAgent] => C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe [894048 2013-01-12] (Conexant Systems, Inc.)
HKLM\...\Run: [SmartAudio] => C:\Program Files\CONEXANT\SAII\SACpl.exe [1647616 2012-06-13] (Conexant Systems, Inc.)
HKLM\...\Run: [TosWaitSrv] => C:\Program Files\TOSHIBA\TPHM\TosWaitSrv.exe [354144 2013-08-14] (TOSHIBA Corporation)
HKLM\...\Run: [TCrdMain] => C:\Program Files\TOSHIBA\Hotkey\TCrdMain_Win8.exe [2556768 2013-08-18] (TOSHIBA Corporation)
HKLM\...\Run: [TecoResident] => C:\Program Files\TOSHIBA\Teco\TecoResident.exe [178016 2013-08-21] (TOSHIBA Corporation)
HKLM\...\Run: [TSSSrv] => C:\Program Files (x86)\TOSHIBA\System Setting\TSSSrv.exe [296520 2013-09-12] (TOSHIBA Corporation)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2778864 2014-08-06] (Synaptics Incorporated)
HKLM-x32\...\Run: [TSVU] => c:\Program Files\TOSHIBA\TOSHIBA Smart View Utility\TosSmartViewLauncher.exe [516512 2013-07-23] (TOSHIBA)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [767176 2015-02-12] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [AvgUi] => C:\Program Files (x86)\AVG\Framework\Common\avguirnx.exe [186640 2016-04-14] (AVG Technologies CZ, s.r.o.)
HKLM-x32\...\Run: [AVG_UI] => C:\Program Files (x86)\AVG\Av\avgui.exe [3930384 2016-04-06] (AVG Technologies CZ, s.r.o.)
HKU\S-1-5-21-1359495801-2136348393-1888701871-1001\...\Run: [Spotify Web Helper] => C:\Users\geant casino\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe [1171000 2014-05-14] (Spotify Ltd)
HKU\S-1-5-21-1359495801-2136348393-1888701871-1001\...\Run: [Facebook Update] => C:\Users\geant casino\AppData\Local\Facebook\Update\FacebookUpdate.exe [138096 2014-07-01] (Facebook Inc.)
HKU\S-1-5-21-1359495801-2136348393-1888701871-1001\...\Run: [KiesPreload] => C:\Program Files (x86)\Samsung\Kies\Kies.exe /preload
HKU\S-1-5-21-1359495801-2136348393-1888701871-1001\...\Run: [AppEx Accelerator UI] => C:\Program Files\AMD Quick Stream\AMDQuickStream.exe [482528 2014-03-31] (AppEx Networks Corporation)
HKU\S-1-5-21-1359495801-2136348393-1888701871-1001\...\MountPoints2: {dc5fe054-5bd5-11e5-8289-089e01c0b6b6} - "E:\AutoRun.exe"
HKU\S-1-5-21-1359495801-2136348393-1888701871-1001\...\MountPoints2: {ecf9161a-fc62-11e4-8283-089e01c0b6b6} - "E:\AutoRun.exe"
HKU\S-1-5-21-1359495801-2136348393-1888701871-1001\...\MountPoints2: {ecf9163e-fc62-11e4-8283-089e01c0b6b6} - "E:\AutoRun.exe"
HKU\S-1-5-21-1359495801-2136348393-1888701871-1001\...\MountPoints2: {ecf91c7d-fc62-11e4-8283-089e01c0b6b6} - "E:\AutoRun.exe"
HKU\S-1-5-21-1359495801-2136348393-1888701871-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\system32\scrnsave.scr [11776 2013-08-22] (Microsoft Corporation)

==================== Internet (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{4D5D8ECC-0B61-4AEF-804C-404E88686884}: [DhcpNameServer] 40.41.1.201 40.41.1.203
Tcpip\..\Interfaces\{FD956188-F7A1-413E-926D-2A53E6D4D13E}: [DhcpNameServer] 192.168.1.1

Internet Explorer:
==================
HKU\S-1-5-21-1359495801-2136348393-1888701871-1001\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-1359495801-2136348393-1888701871-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://toshiba13.msn.com/?pc=TEJB
HKU\S-1-5-21-1359495801-2136348393-1888701871-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://toshiba.eu/symbaloo_c
HKU\S-1-5-21-1359495801-2136348393-1888701871-1001\Software\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = hxxp://toshiba.eu/symbaloo_c
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-1359495801-2136348393-1888701871-1001 -> DefaultScope {502C5892-0BD4-40A5-A622-AC52FBD1BF5E} URL =
SearchScopes: HKU\S-1-5-21-1359495801-2136348393-1888701871-1001 -> {502C5892-0BD4-40A5-A622-AC52FBD1BF5E} URL =
BHO-x32: Windows Live Messenger Companion Helper -> {9FDDE16B-836F-4806-AB1F-1455CBEFF289} -> C:\Program Files (x86)\Windows Live\Companion\companioncore.dll [2012-03-08] (Microsoft Corporation)
StartMenuInternet: IEXPLORE.EXE - iexplore.exe

FireFox:
========
FF ProfilePath: C:\Users\geant casino\AppData\Roaming\Mozilla\Firefox\Profiles\q2bi63zd.default
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_21_0_0_213.dll [2016-04-22] ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-11] ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_21_0_0_213.dll [2016-04-22] ()
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-11] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3555.0308 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-03-20] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-03-20] (Google Inc.)
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\1\NP_wtapp.dll [2015-05-14] ()
FF Plugin HKU\S-1-5-21-1359495801-2136348393-1888701871-1001: @Skype Limited.com/Facebook Video Calling Plugin -> C:\Users\geant casino\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll [2014-07-24] (Skype Limited)
FF Plugin HKU\S-1-5-21-1359495801-2136348393-1888701871-1001: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\geant casino\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2014-07-07] (Unity Technologies ApS)

Chrome:
=======
CHR HomePage: Default -> hxxp://www.google.com/
CHR StartupUrls: Default -> "hxxp://www.google.com/"
CHR Plugin: (Widevine Content Decryption Module) - C:\Users\geant casino\AppData\Local\Google\Chrome\User Data\WidevineCDM\1.4.8.866\_platform_specific\win_x86\widevinecdmadapter.dll => Pas de fichier
CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\50.0.2661.87\PepperFlash\pepflashplayer.dll ()
CHR Profile: C:\Users\geant casino\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Drive) - C:\Users\geant casino\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-01-09]
CHR Extension: (YouTube) - C:\Users\geant casino\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-27]
CHR Extension: (Recherche Google) - C:\Users\geant casino\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2016-01-09]
CHR Extension: (la météo locale) - C:\Users\geant casino\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhjepakjckgnfbmmopjiendmekokmiaj [2016-04-22]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\geant casino\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-22]
CHR Extension: (Gmail) - C:\Users\geant casino\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-04-09]
CHR HKU\S-1-5-21-1359495801-2136348393-1888701871-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [bbjllphbppobebmjpjcijfbakobcheof] - hxxps://clients2.google.com/service/update2/crx

==================== Services (Avec liste blanche) ========================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R2 AdaptiveSleepService; C:\Program Files\ATI Technologies\ATI.ACE\A4\AdaptiveSleepService.exe [140288 2015-02-12] () [Fichier non signé]
R2 AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [312448 2013-08-22] (Windows (R) Win 7 DDK provider) [Fichier non signé]
S3 AvgAMPS; C:\Program Files (x86)\AVG\Av\avgamps.exe [638456 2016-04-06] (AVG Technologies CZ, s.r.o.)
R2 AVGIDSAgent; C:\Program Files (x86)\AVG\Av\avgidsagent.exe [3993088 2016-04-06] (AVG Technologies CZ, s.r.o.)
R2 avgsvc; C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe [1074448 2016-04-14] (AVG Technologies CZ, s.r.o.)
R2 avgwd; C:\Program Files (x86)\AVG\Av\avgwdsvcx.exe [593880 2016-04-06] (AVG Technologies CZ, s.r.o.)
R2 dts_apo_service; C:\Program Files (x86)\DTS, Inc\DTS Studio Sound\dts_apo_service.exe [19792 2013-09-10] ()
R2 GamesAppIntegrationService; C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe [373312 2015-05-14] (WildTangent)
R2 HWDeviceService64.exe; C:\ProgramData\DatacardService\HWDeviceService64.exe [346976 2011-03-14] ()
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [Fichier non signé]
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1809720 2014-05-12] (Malwarebytes Corporation)
S2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [860472 2014-05-12] (Malwarebytes Corporation)
R2 RapportMgmtService; C:\Program Files (x86)\Trusteer\Rapport\bin\RapportMgmtService.exe [2372080 2016-03-23] (IBM Corp.)
R3 TemproMonitoringService; C:\Program Files (x86)\Toshiba TEMPRO\TemproSvc.exe [120392 2015-11-17] (Toshiba Europe GmbH)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [366552 2015-07-07] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2015-07-07] (Microsoft Corporation)
S2 mfemms; "C:\Program Files\Common Files\McAfee\SystemCore\\mfemms.exe" [X]

===================== Pilotes (Avec liste blanche) ==========================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R3 AmdAS4; C:\Windows\System32\drivers\AmdAS4.sys [17640 2013-10-24] (Advanced Micro Devices, INC.)
R2 APXACC; C:\Windows\system32\DRIVERS\appexDrv.sys [229056 2014-10-28] (AppEx Networks Corporation)
R3 athr; C:\Windows\system32\DRIVERS\athwbx.sys [4226560 2014-10-17] (Qualcomm Atheros Communications, Inc.)
R3 AtiHDAudioService; C:\Windows\system32\drivers\AtihdWB6.sys [138240 2013-06-22] (Advanced Micro Devices)
S0 Avgboota; C:\Windows\System32\DRIVERS\avgboota.sys [21632 2016-01-07] (AVG Technologies CZ, s.r.o.)
R1 Avgdiska; C:\Windows\System32\DRIVERS\avgdiska.sys [162592 2016-02-16] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSDriver; C:\Windows\System32\DRIVERS\avgidsdrivera.sys [306976 2016-03-08] (AVG Technologies CZ, s.r.o.)
R0 AVGIDSHA; C:\Windows\System32\DRIVERS\avgidsha.sys [272304 2016-01-26] (AVG Technologies CZ, s.r.o.)
R1 Avgldx64; C:\Windows\System32\DRIVERS\avgldx64.sys [284080 2015-10-21] (AVG Technologies CZ, s.r.o.)
R0 Avgloga; C:\Windows\System32\DRIVERS\avgloga.sys [360736 2016-02-16] (AVG Technologies CZ, s.r.o.)
R0 Avgmfx64; C:\Windows\System32\DRIVERS\avgmfx64.sys [246560 2016-03-07] (AVG Technologies CZ, s.r.o.)
R0 Avgrkx64; C:\Windows\System32\DRIVERS\avgrkx64.sys [42416 2015-12-04] (AVG Technologies CZ, s.r.o.)
R0 avguniva; C:\Windows\System32\DRIVERS\avguniva.sys [71456 2016-03-08] (AVG Technologies CZ, s.r.o.)
R1 Avgwfpa; C:\Windows\system32\DRIVERS\avgwfpa.sys [315840 2015-12-16] (AVG Technologies CZ, s.r.o.)
S0 ebdrv; C:\Windows\System32\drivers\evbda.sys [3357024 2013-08-22] (Broadcom Corporation)
U5 GeneStor; C:\Windows\System32\Drivers\GeneStor.sys [105704 2013-08-16] (GenesysLogic)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2014-05-12] (Malwarebytes Corporation)
S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [64216 2014-05-12] (Malwarebytes Corporation)
S3 mfeaack; C:\Windows\System32\drivers\mfeaack.sys [422184 2016-01-29] (McAfee, Inc.)
S3 MWAC; \??\C:\Windows\SysWOW64\drivers\ [0 ] () <==== ATTENTION (zéro octet Fichier/Dossier)
R1 RapportCerberus_1609035; C:\ProgramData\Trusteer\Rapport\store\exts\RapportCerberus\baseline\RapportCerberus64_1609035.sys [1156456 2016-04-22] (IBM Corp.)
R1 RapportEI64; C:\Program Files (x86)\Trusteer\Rapport\bin\x64\RapportEI64.sys [544360 2016-03-23] (IBM Corp.)
R0 RapportHades64; C:\Windows\System32\Drivers\RapportHades64.sys [215560 2016-03-23] (IBM Corp.)
R0 RapportKE64; C:\Windows\System32\Drivers\RapportKE64.sys [470056 2016-03-23] (IBM Corp.)
R1 RapportPG64; C:\Program Files (x86)\Trusteer\Rapport\bin\x64\RapportPG64.sys [523432 2016-03-23] (IBM Corp.)
S3 RTWlanE; C:\Windows\system32\DRIVERS\rtwlane.sys [1936088 2013-07-31] (Realtek Semiconductor Corporation )
R3 Thotkey; C:\Windows\System32\drivers\Thotkey.sys [32624 2013-08-19] (Windows (R) Win 7 DDK provider)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44560 2015-07-07] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [270168 2015-07-07] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114520 2015-07-07] (Microsoft Corporation)

==================== NetSvcs (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)


==================== Un mois - Créés - fichiers et dossiers ========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2016-04-24 16:10 - 2016-04-24 16:12 - 00017875 _____ C:\Users\geant casino\Desktop\FRST.txt
2016-04-24 16:10 - 2016-04-24 16:10 - 00000000 ____D C:\FRST
2016-04-24 16:03 - 2016-04-24 16:03 - 02375680 _____ (Farbar) C:\Users\geant casino\Desktop\FRST64.exe
2016-04-24 15:48 - 2016-04-24 15:48 - 00000057 _____ C:\Users\geant casino\Desktop\rapport pc pb.txt
2016-04-24 15:39 - 2016-04-24 15:39 - 00001209 _____ C:\Users\geant casino\Desktop\ZHPFixReport.txt
2016-04-23 19:54 - 2016-04-23 19:54 - 03480040 _____ (McAfee, Inc.) C:\Users\geant casino\Desktop\MCPR.exe
2016-04-23 19:15 - 2016-04-23 19:17 - 00000000 ____D C:\Program Files (x86)\ZHPFix
2016-04-23 19:15 - 2016-04-23 19:15 - 00001876 _____ C:\Users\Public\Desktop\ZHPFix.lnk
2016-04-23 19:15 - 2016-04-23 19:15 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ZHP
2016-04-23 19:12 - 2016-04-23 19:12 - 03521617 _____ (Nicolas Coolman ) C:\Users\geant casino\Downloads\ZHPFix.exe
2016-04-23 18:29 - 2016-04-24 09:54 - 00097862 _____ C:\Users\geant casino\Desktop\ZHPDiag.txt
2016-04-23 17:03 - 2016-04-24 09:10 - 00000210 _____ C:\Users\geant
2016-04-23 16:53 - 2016-04-24 09:10 - 00000846 _____ C:\Users\geant casino\Desktop\ZHPDiag.lnk
2016-04-23 16:52 - 2016-04-24 15:39 - 00000000 ____D C:\Users\geant casino\AppData\Roaming\ZHP
2016-04-23 16:47 - 2016-04-23 16:48 - 02192896 _____ C:\Users\geant casino\Downloads\ZHPDiag3.exe
2016-04-23 15:49 - 2016-04-05 23:53 - 00829944 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2016-04-23 15:49 - 2016-04-05 23:53 - 00176632 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2016-04-23 14:51 - 2016-04-23 14:51 - 00001915 _____ C:\Users\Public\Desktop\Battery Check Utility.lnk
2016-04-23 14:46 - 2016-03-31 02:28 - 00571904 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2016-04-23 14:46 - 2016-03-31 02:17 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2016-04-23 14:46 - 2016-03-31 01:56 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2016-04-23 14:46 - 2016-03-31 01:53 - 00496640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2016-04-23 14:46 - 2016-03-31 01:45 - 00663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2016-04-23 14:46 - 2016-03-31 01:30 - 04611072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2016-04-23 14:46 - 2016-03-31 01:27 - 00880128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll
2016-04-23 14:46 - 2016-03-31 01:05 - 02121216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2016-04-23 14:46 - 2016-03-31 01:00 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2016-04-23 14:45 - 2016-03-31 02:54 - 25817600 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2016-04-23 14:45 - 2016-03-31 02:25 - 06052352 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2016-04-23 14:45 - 2016-03-31 01:50 - 01032704 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
2016-04-23 14:45 - 2016-03-31 01:30 - 02596864 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2016-04-23 14:45 - 2016-03-31 01:06 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2016-04-23 14:43 - 2016-03-31 02:03 - 20352512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2016-04-23 14:43 - 2016-03-31 01:43 - 00806400 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2016-04-23 14:43 - 2016-03-31 01:39 - 15415808 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2016-04-23 14:43 - 2016-03-31 01:21 - 13811712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2016-04-23 14:42 - 2016-03-31 01:18 - 01547264 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2016-04-23 14:42 - 2016-03-31 01:02 - 01311744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2016-04-23 14:41 - 2016-03-31 02:31 - 02892800 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2016-04-23 14:41 - 2016-03-31 01:51 - 02285056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2016-04-23 14:41 - 2016-03-31 01:42 - 02131968 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2016-04-23 14:41 - 2016-03-31 01:23 - 00693248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2016-04-23 14:40 - 2016-03-31 01:43 - 00725504 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2016-04-23 14:40 - 2016-03-31 01:43 - 00379392 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2016-04-23 14:40 - 2016-03-31 01:23 - 02056192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2016-04-23 14:40 - 2016-03-31 01:23 - 00330752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2016-04-23 14:39 - 2016-03-31 01:56 - 00145408 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2016-04-23 14:39 - 2016-03-31 01:55 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2016-04-23 14:39 - 2016-03-31 01:45 - 00262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2016-04-23 14:39 - 2016-03-31 01:30 - 00279040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2016-04-23 14:39 - 2016-03-31 01:30 - 00128000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2016-04-23 14:39 - 2016-03-31 01:24 - 00230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2016-04-23 14:39 - 2016-02-08 22:29 - 00099328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\hlink.dll
2016-04-23 14:39 - 2016-02-08 20:14 - 00108544 _____ (Microsoft Corporation) C:\Windows\system32\hlink.dll
2016-04-23 12:20 - 2016-02-02 20:16 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rasl2tp.sys
2016-04-23 12:15 - 2016-03-16 01:00 - 00561952 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2016-04-23 12:15 - 2016-03-15 16:14 - 01441792 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2016-04-23 12:15 - 2016-03-11 16:48 - 00833024 _____ (Microsoft Corporation) C:\Windows\system32\samsrv.dll
2016-04-23 12:15 - 2016-03-10 20:22 - 00201728 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2016-04-23 12:15 - 2016-03-10 20:21 - 00401920 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2016-04-23 12:15 - 2016-03-10 20:20 - 00284672 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2016-04-23 12:15 - 2016-03-10 19:44 - 00445440 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2016-04-23 12:15 - 2016-03-10 19:16 - 00324096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll
2016-04-23 12:15 - 2016-03-10 19:03 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\samlib.dll
2016-04-23 12:15 - 2016-03-10 18:48 - 00064512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\samlib.dll
2016-04-23 12:14 - 2016-04-04 08:35 - 00046768 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe
2016-04-23 12:14 - 2016-04-02 15:26 - 01386496 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2016-04-23 12:14 - 2016-04-02 15:26 - 01169408 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2016-04-23 12:14 - 2016-03-28 15:21 - 00698368 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2016-04-23 12:14 - 2016-03-28 15:21 - 00499200 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2016-04-23 12:14 - 2016-03-28 15:21 - 00279040 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2016-04-23 12:14 - 2016-03-28 15:21 - 00215040 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
2016-04-23 12:14 - 2016-03-28 15:21 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2016-04-23 12:14 - 2016-02-05 16:46 - 01455104 _____ (Microsoft Corporation) C:\Windows\system32\VSSVC.exe
2016-04-23 12:14 - 2016-01-21 21:35 - 00952928 _____ (Microsoft Corporation) C:\Windows\system32\mfmp4srcsnk.dll
2016-04-23 12:14 - 2016-01-21 20:42 - 00786152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfmp4srcsnk.dll
2016-04-23 12:13 - 2016-03-03 18:47 - 02345472 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2016-04-23 12:13 - 2016-03-03 18:33 - 01556992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2016-04-23 12:13 - 2016-03-03 03:39 - 01661576 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll
2016-04-23 12:13 - 2016-03-03 03:39 - 01212248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ole32.dll
2016-04-23 12:13 - 2016-02-09 03:31 - 22365472 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2016-04-23 12:13 - 2016-02-09 03:31 - 19794896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2016-04-23 12:13 - 2016-02-09 03:31 - 02757616 _____ (Microsoft Corporation) C:\Windows\explorer.exe
2016-04-23 12:13 - 2016-02-09 03:31 - 02412576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\explorer.exe
2016-04-23 12:13 - 2016-02-09 03:31 - 00273264 _____ (Microsoft Corporation) C:\Windows\system32\SystemSettingsAdminFlows.exe
2016-04-23 12:13 - 2016-02-08 22:55 - 02712576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ExplorerFrame.dll
2016-04-23 12:13 - 2016-02-08 22:15 - 02551808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\themecpl.dll
2016-04-23 12:13 - 2016-02-08 22:02 - 01197056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usercpl.dll
2016-04-23 12:13 - 2016-02-08 21:48 - 12879360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.dll
2016-04-23 12:13 - 2016-02-08 21:43 - 00524288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SettingSyncHost.exe
2016-04-23 12:13 - 2016-02-08 21:40 - 00539648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\hgcpl.dll
2016-04-23 12:13 - 2016-02-08 21:39 - 00305152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\stobject.dll
2016-04-23 12:13 - 2016-02-08 21:37 - 00141312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SettingMonitor.dll
2016-04-23 12:13 - 2016-02-08 21:35 - 00954880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.appcore.dll
2016-04-23 12:13 - 2016-02-08 21:34 - 00667648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SettingSyncCore.dll
2016-04-23 12:13 - 2016-02-08 21:33 - 00520192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SettingSync.dll
2016-04-23 12:13 - 2016-02-08 20:50 - 03120640 _____ (Microsoft Corporation) C:\Windows\system32\ExplorerFrame.dll
2016-04-23 12:13 - 2016-02-08 19:55 - 02592256 _____ (Microsoft Corporation) C:\Windows\system32\themecpl.dll
2016-04-23 12:13 - 2016-02-08 19:33 - 01278464 _____ (Microsoft Corporation) C:\Windows\system32\usercpl.dll
2016-04-23 12:13 - 2016-02-08 19:15 - 02880000 _____ (Microsoft Corporation) C:\Windows\system32\actxprxy.dll
2016-04-23 12:13 - 2016-02-08 19:12 - 14466560 _____ (Microsoft Corporation) C:\Windows\system32\twinui.dll
2016-04-23 12:13 - 2016-02-08 19:02 - 00653824 _____ (Microsoft Corporation) C:\Windows\system32\SettingSyncHost.exe
2016-04-23 12:13 - 2016-02-08 19:00 - 00599552 _____ (Microsoft Corporation) C:\Windows\system32\hgcpl.dll
2016-04-23 12:13 - 2016-02-08 18:58 - 00336384 _____ (Microsoft Corporation) C:\Windows\system32\stobject.dll
2016-04-23 12:13 - 2016-02-08 18:55 - 00173056 _____ (Microsoft Corporation) C:\Windows\system32\SettingMonitor.dll
2016-04-23 12:13 - 2016-02-08 18:53 - 02171904 _____ (Microsoft Corporation) C:\Windows\system32\SystemSettingsAdminFlowUI.dll
2016-04-23 12:13 - 2016-02-08 18:53 - 01348096 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentServer.dll
2016-04-23 12:13 - 2016-02-08 18:50 - 01220096 _____ (Microsoft Corporation) C:\Windows\system32\twinui.appcore.dll
2016-04-23 12:13 - 2016-02-08 18:50 - 00841728 _____ (Microsoft Corporation) C:\Windows\system32\SettingSyncCore.dll
2016-04-23 12:13 - 2016-02-08 18:48 - 00655872 _____ (Microsoft Corporation) C:\Windows\system32\SettingSync.dll
2016-04-23 12:13 - 2016-02-08 18:47 - 02819584 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers.dll
2016-04-23 12:13 - 2016-02-08 18:44 - 00955392 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.dll
2016-04-23 12:13 - 2016-02-03 17:14 - 00080896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\IPMIDrv.sys
2016-04-23 12:13 - 2016-02-02 19:51 - 00162304 _____ (Microsoft Corporation) C:\Windows\system32\WsmAuto.dll
2016-04-23 12:13 - 2016-02-02 19:19 - 00144384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmAuto.dll
2016-04-23 12:13 - 2016-02-02 19:01 - 00031744 _____ (Microsoft Corporation) C:\Windows\system32\WsmAgent.dll
2016-04-23 12:13 - 2016-02-02 18:51 - 02609152 _____ (Microsoft Corporation) C:\Windows\system32\WsmSvc.dll
2016-04-23 12:13 - 2016-02-02 18:48 - 00285184 _____ (Microsoft Corporation) C:\Windows\system32\WsmWmiPl.dll
2016-04-23 12:13 - 2016-02-02 18:46 - 00026112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmAgent.dll
2016-04-23 12:13 - 2016-02-02 18:41 - 02170880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmSvc.dll
2016-04-23 12:13 - 2016-02-02 18:39 - 00236032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmWmiPl.dll
2016-04-23 12:13 - 2016-01-27 17:18 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\rpcss.dll
2016-04-23 12:13 - 2014-11-08 04:38 - 00166912 _____ (Microsoft Corporation) C:\Windows\system32\AppxAllUserStore.dll
2016-04-23 12:13 - 2014-11-08 04:17 - 00143360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppxAllUserStore.dll
2016-04-23 12:13 - 2014-10-29 04:18 - 00031744 _____ (Microsoft Corporation) C:\Windows\system32\wsmprovhost.exe
2016-04-23 12:13 - 2014-10-29 04:16 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\WSManHTTPConfig.exe
2016-04-23 12:13 - 2014-10-29 03:44 - 00070656 _____ (Microsoft Corporation) C:\Windows\system32\WSManMigrationPlugin.dll
2016-04-23 12:13 - 2014-10-29 03:39 - 00035328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wsmprovhost.exe
2016-04-23 12:13 - 2014-10-29 03:37 - 00031744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSManHTTPConfig.exe
2016-04-23 12:13 - 2014-10-29 03:28 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\wsmplpxy.dll
2016-04-23 12:13 - 2014-10-29 03:17 - 00268800 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentClient.dll
2016-04-23 12:13 - 2014-10-29 03:14 - 00058880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSManMigrationPlugin.dll
2016-04-23 12:13 - 2014-10-29 03:05 - 00011776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wsmplpxy.dll
2016-04-23 12:13 - 2014-10-29 02:58 - 00214016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppXDeploymentClient.dll
2016-04-23 12:12 - 2016-02-03 17:11 - 01673728 _____ (Microsoft Corporation) C:\Windows\system32\workfolderssvc.dll
2016-04-23 12:12 - 2016-02-02 19:15 - 00787456 _____ (Microsoft Corporation) C:\Windows\system32\WorkfoldersControl.dll
2016-04-23 12:12 - 2016-01-26 21:15 - 00072024 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vpci.sys
2016-04-23 12:12 - 2016-01-21 00:40 - 00099672 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\disk.sys
2016-04-23 12:12 - 2014-10-29 04:19 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\WorkFolders.exe
2016-04-23 12:12 - 2014-10-29 03:50 - 00193536 _____ (Microsoft Corporation) C:\Windows\system32\WorkFoldersShell.dll
2016-04-23 12:11 - 2016-01-22 07:22 - 02487296 _____ (Microsoft Corporation) C:\Windows\system32\storagewmi.dll
2016-04-23 12:11 - 2016-01-22 07:11 - 01482240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\storagewmi.dll
2016-04-23 12:11 - 2014-10-29 03:27 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\smphost.dll
2016-04-23 12:11 - 2014-10-29 03:04 - 00011776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\smphost.dll
2016-04-23 12:09 - 2016-02-05 21:07 - 00378712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storport.sys
2016-04-23 12:09 - 2016-02-04 20:07 - 00222720 _____ (Microsoft Corporation) C:\Windows\system32\dhcpsapi.dll
2016-04-23 12:09 - 2016-02-04 19:35 - 00142848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpsapi.dll
2016-04-23 12:09 - 2016-02-02 19:18 - 01574912 _____ (Microsoft Corporation) C:\Windows\system32\wbengine.exe
2016-04-23 12:09 - 2016-01-31 19:17 - 00779264 _____ (Microsoft Corporation) C:\Windows\system32\WindowsAnytimeUpgradeui.exe
2016-04-23 12:07 - 2016-03-10 21:19 - 07452512 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2016-04-23 12:07 - 2016-03-10 21:17 - 01663192 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2016-04-23 12:07 - 2016-03-10 21:17 - 01523216 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2016-04-23 12:07 - 2016-03-10 21:17 - 01490128 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2016-04-23 12:07 - 2016-03-10 21:17 - 01358960 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe
2016-04-23 12:07 - 2016-03-10 21:17 - 01133752 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2016-04-23 12:07 - 2016-03-10 19:48 - 00862720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2016-04-23 12:07 - 2016-03-10 19:43 - 00161280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msorcl32.dll
2016-04-23 12:07 - 2016-03-10 18:55 - 00166400 _____ (Microsoft Corporation) C:\Windows\system32\mtxoci.dll
2016-04-23 12:07 - 2016-03-10 18:42 - 00116736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mtxoci.dll
2016-04-23 11:59 - 2016-02-05 17:11 - 00845312 _____ (Microsoft Corporation) C:\Windows\system32\BFE.DLL
2016-04-23 11:59 - 2016-02-05 17:11 - 00422400 _____ (Microsoft Corporation) C:\Windows\system32\FWPUCLNT.DLL
2016-04-23 11:59 - 2016-02-05 17:07 - 00272384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FWPUCLNT.DLL
2016-04-23 11:59 - 2016-02-05 17:02 - 01083904 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
2016-04-23 11:59 - 2016-02-04 18:23 - 00713216 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll
2016-04-23 11:59 - 2016-02-04 18:22 - 00561664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nshwfp.dll
2016-04-23 11:36 - 2016-03-03 18:13 - 00059392 _____ (Microsoft Corporation) C:\Windows\system32\basesrv.dll
2016-04-23 11:35 - 2016-02-07 01:05 - 00551256 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vhdmp.sys
2016-04-23 11:35 - 2016-02-07 00:41 - 00316760 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\volsnap.sys
2016-04-23 06:26 - 2016-04-23 06:26 - 00000000 ____D C:\Program Files (x86)\Toshiba TEMPRO
2016-04-23 04:26 - 2016-03-29 16:05 - 04175872 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2016-04-23 04:15 - 2016-04-23 04:15 - 00000000 ____D C:\Program Files\Common Files\AV
2016-04-22 22:52 - 2016-01-10 19:50 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\cfgbkend.dll
2016-04-22 22:52 - 2016-01-10 19:16 - 00898048 _____ (Microsoft Corporation) C:\Windows\system32\CPFilters.dll
2016-04-22 22:52 - 2016-01-10 19:14 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cfgbkend.dll
2016-04-22 22:52 - 2016-01-10 19:12 - 00532480 _____ (Microsoft Corporation) C:\Windows\system32\EncDec.dll
2016-04-22 22:52 - 2016-01-10 18:51 - 00702976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CPFilters.dll
2016-04-22 22:52 - 2016-01-10 18:49 - 00443392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\EncDec.dll
2016-04-22 22:52 - 2016-01-06 20:25 - 00416768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys
2016-04-22 22:52 - 2015-12-30 23:53 - 02017624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2016-04-22 22:52 - 2015-12-02 17:04 - 00670208 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2016-04-22 22:52 - 2015-12-02 17:01 - 00561664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qedit.dll
2016-04-22 22:51 - 2016-01-09 03:38 - 00091992 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2016-04-22 22:45 - 2016-01-24 20:19 - 00419160 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\spaceport.sys
2016-04-22 22:45 - 2016-01-24 20:19 - 00331608 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Classpnp.sys
2016-04-22 22:45 - 2016-01-24 13:57 - 01335296 _____ (Microsoft Corporation) C:\Windows\system32\mispace.dll
2016-04-22 22:45 - 2016-01-24 13:45 - 01063424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mispace.dll
2016-04-22 22:43 - 2015-12-05 07:58 - 02745184 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL
2016-04-22 22:43 - 2015-12-05 07:58 - 02528784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVDECOD.DLL
2016-04-22 22:43 - 2015-12-05 07:58 - 02450240 _____ (Microsoft Corporation) C:\Windows\system32\WMVENCOD.DLL
2016-04-22 22:43 - 2015-12-05 07:58 - 02447136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVENCOD.DLL
2016-04-22 22:43 - 2015-12-05 07:58 - 02334104 _____ (Microsoft Corporation) C:\Windows\system32\mfcore.dll
2016-04-22 22:43 - 2015-12-05 07:58 - 02324744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfcore.dll
2016-04-22 22:43 - 2015-12-05 07:58 - 01877504 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2adec.dll
2016-04-22 22:43 - 2015-12-05 07:58 - 01484888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2adec.dll
2016-04-22 22:43 - 2015-12-05 07:58 - 01288128 _____ (Microsoft Corporation) C:\Windows\system32\mfnetsrc.dll
2016-04-22 22:43 - 2015-12-05 07:58 - 01210200 _____ (Microsoft Corporation) C:\Windows\system32\WMADMOD.DLL
2016-04-22 22:43 - 2015-12-05 07:58 - 01115640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfnetsrc.dll
2016-04-22 22:43 - 2015-12-05 07:58 - 01037680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMADMOD.DLL
2016-04-22 22:43 - 2015-12-05 07:58 - 00914672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMADMOE.DLL
2016-04-22 22:43 - 2015-12-05 07:58 - 00850680 _____ (Microsoft Corporation) C:\Windows\system32\mfnetcore.dll
2016-04-22 22:43 - 2015-12-05 07:58 - 00735496 _____ (Microsoft Corporation) C:\Windows\system32\evr.dll
2016-04-22 22:43 - 2015-12-05 07:58 - 00700360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfnetcore.dll
2016-04-22 22:43 - 2015-12-05 07:58 - 00584656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\evr.dll
2016-04-22 22:43 - 2015-12-05 07:58 - 00557856 _____ (Microsoft Corporation) C:\Windows\system32\WMVSDECD.DLL
2016-04-22 22:43 - 2015-12-05 07:58 - 00498472 _____ (Microsoft Corporation) C:\Windows\system32\mfsvr.dll
2016-04-22 22:43 - 2015-12-05 07:58 - 00492736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVSDECD.DLL
2016-04-22 22:43 - 2015-12-03 19:36 - 01697792 _____ (Microsoft Corporation) C:\Windows\system32\quartz.dll
2016-04-22 22:43 - 2015-12-03 19:06 - 01501184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\quartz.dll
2016-04-22 22:43 - 2015-12-03 18:40 - 01010688 _____ (Microsoft Corporation) C:\Windows\system32\WMSPDMOD.DLL
2016-04-22 22:43 - 2015-12-03 18:29 - 00887296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMSPDMOD.DLL
2016-04-22 22:42 - 2015-12-05 07:58 - 01798480 _____ (Microsoft Corporation) C:\Windows\system32\WMALFXGFXDSP.dll
2016-04-22 22:42 - 2015-12-05 07:58 - 01150232 _____ (Microsoft Corporation) C:\Windows\system32\WMADMOE.DLL
2016-04-22 22:42 - 2015-12-05 07:58 - 00629600 _____ (Microsoft Corporation) C:\Windows\system32\MP4SDECD.DLL
2016-04-22 22:42 - 2015-12-05 07:58 - 00463776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MP4SDECD.DLL
2016-04-22 22:42 - 2015-12-05 07:58 - 00399776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfsvr.dll
2016-04-22 22:42 - 2015-12-05 07:58 - 00299080 _____ (Microsoft Corporation) C:\Windows\system32\VIDRESZR.DLL
2016-04-22 22:42 - 2015-12-05 07:58 - 00275312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MPG4DECD.DLL
2016-04-22 22:42 - 2015-12-05 07:58 - 00274280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MP43DECD.DLL
2016-04-22 22:42 - 2015-12-05 07:58 - 00250520 _____ (Microsoft Corporation) C:\Windows\system32\MPG4DECD.DLL
2016-04-22 22:42 - 2015-12-05 07:58 - 00248432 _____ (Microsoft Corporation) C:\Windows\system32\MP43DECD.DLL
2016-04-22 22:42 - 2015-12-05 07:58 - 00246856 _____ (Microsoft Corporation) C:\Windows\system32\RESAMPLEDMO.DLL
2016-04-22 22:42 - 2015-12-05 07:58 - 00244296 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll
2016-04-22 22:42 - 2015-12-05 07:58 - 00229272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RESAMPLEDMO.DLL
2016-04-22 22:42 - 2015-12-05 07:58 - 00203016 _____ (Microsoft Corporation) C:\Windows\system32\COLORCNV.DLL
2016-04-22 22:42 - 2015-12-05 07:58 - 00184912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\COLORCNV.DLL
2016-04-22 22:42 - 2015-12-05 07:58 - 00183856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\VIDRESZR.DLL
2016-04-22 22:42 - 2015-12-05 07:58 - 00116720 _____ (Microsoft Corporation) C:\Windows\system32\MP3DMOD.DLL
2016-04-22 22:42 - 2015-12-05 07:58 - 00110544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfps.dll
2016-04-22 22:42 - 2015-12-05 07:58 - 00099136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MP3DMOD.DLL
2016-04-22 22:42 - 2015-12-05 07:58 - 00090904 _____ (Microsoft Corporation) C:\Windows\system32\devenum.dll
2016-04-22 22:42 - 2015-12-05 07:58 - 00090392 _____ (Microsoft Corporation) C:\Windows\system32\mfvdsp.dll
2016-04-22 22:42 - 2015-12-05 07:58 - 00081032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\devenum.dll
2016-04-22 22:42 - 2015-12-05 07:58 - 00076936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfvdsp.dll
2016-04-22 22:42 - 2015-12-03 20:07 - 00340992 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll
2016-04-22 22:42 - 2015-12-03 20:07 - 00289792 _____ (Microsoft Corporation) C:\Windows\system32\ksproxy.ax
2016-04-22 22:42 - 2015-12-03 20:05 - 00644608 _____ (Microsoft Corporation) C:\Windows\system32\WMVXENCD.DLL
2016-04-22 22:42 - 2015-12-03 20:02 - 01664000 _____ (Microsoft Corporation) C:\Windows\system32\WMSPDMOE.DLL
2016-04-22 22:42 - 2015-12-03 20:00 - 00451072 _____ (Microsoft Corporation) C:\Windows\system32\WMVSENCD.DLL
2016-04-22 22:42 - 2015-12-03 19:58 - 00378880 _____ (Microsoft Corporation) C:\Windows\system32\SysFxUI.dll
2016-04-22 22:42 - 2015-12-03 19:30 - 00468480 _____ (Microsoft Corporation) C:\Windows\system32\MFWMAAEC.DLL
2016-04-22 22:42 - 2015-12-03 19:28 - 00519680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qdvd.dll
2016-04-22 22:42 - 2015-12-03 19:28 - 00245760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ksproxy.ax
2016-04-22 22:42 - 2015-12-03 19:27 - 00736256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVXENCD.DLL
2016-04-22 22:42 - 2015-12-03 19:24 - 01411584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMSPDMOE.DLL
2016-04-22 22:42 - 2015-12-03 19:23 - 00402432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVSENCD.DLL
2016-04-22 22:42 - 2015-12-03 19:01 - 00743936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFWMAAEC.DLL
2016-04-22 22:42 - 2014-10-29 05:58 - 00014528 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\drmkaud.sys
2016-04-22 22:42 - 2014-10-29 05:52 - 00022208 _____ (Microsoft Corporation) C:\Windows\system32\ksuser.dll
2016-04-22 22:42 - 2014-10-29 05:07 - 00019096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ksuser.dll
2016-04-22 22:42 - 2014-10-29 04:47 - 00089088 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\drmk.sys
2016-04-22 22:42 - 2014-10-29 04:46 - 00272384 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\portcls.sys
2016-04-22 22:38 - 2016-02-11 16:21 - 00869576 _____ (Microsoft Corporation) C:\Windows\system32\msvcr120_clr0400.dll
2016-04-22 22:38 - 2016-02-11 16:21 - 00678600 _____ (Microsoft Corporation) C:\Windows\system32\msvcp120_clr0400.dll
2016-04-22 22:38 - 2016-02-11 16:20 - 00875720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcr120_clr0400.dll
2016-04-22 22:38 - 2016-02-11 16:20 - 00536776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcp120_clr0400.dll
2016-04-22 22:34 - 2016-02-05 16:59 - 07784960 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Data.Pdf.dll
2016-04-22 22:34 - 2016-02-05 16:55 - 05264384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Data.Pdf.dll
2016-04-22 22:34 - 2016-02-05 16:48 - 07075840 _____ (Microsoft Corporation) C:\Windows\system32\glcndFilter.dll
2016-04-22 22:34 - 2016-02-05 16:47 - 05268480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\glcndFilter.dll
2016-04-22 22:27 - 2016-01-10 21:37 - 00442720 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2016-04-22 22:27 - 2016-01-10 20:39 - 00332640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2016-04-22 22:27 - 2016-01-10 18:56 - 00186880 _____ (Microsoft Corporation) C:\Windows\system32\dpapisrv.dll
2016-04-22 22:02 - 2016-01-22 07:07 - 02778624 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2016-04-22 22:02 - 2016-01-22 06:58 - 02464256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2016-04-22 21:57 - 2016-01-09 03:49 - 00218448 _____ (Microsoft Corporation) C:\Windows\system32\rsaenh.dll
2016-04-22 21:57 - 2016-01-09 03:49 - 00192120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rsaenh.dll
2016-04-22 21:37 - 2016-04-23 15:46 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2016-04-22 21:06 - 2016-04-22 21:06 - 00000000 ____D C:\Users\geant casino\AppData\Roaming\AVG
2016-04-22 21:00 - 2016-04-22 21:00 - 00000000 ____D C:\Users\geant casino\AppData\Roaming\TuneUp Software
2016-04-22 21:00 - 2016-04-22 21:00 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG
2016-04-22 20:57 - 2016-04-22 20:57 - 00000000 ___HD C:\$AVG
2016-04-22 20:44 - 2016-04-24 15:19 - 00000000 ____D C:\ProgramData\MFAData
2016-04-22 20:44 - 2016-04-22 20:44 - 00000000 ____D C:\Users\geant casino\AppData\Local\MFAData
2016-04-22 20:39 - 2015-12-03 21:42 - 00397224 _____ (Microsoft Corporation) C:\Windows\system32\bcryptprimitives.dll
2016-04-22 20:39 - 2015-12-03 21:42 - 00137968 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2016-04-22 20:39 - 2015-12-03 21:42 - 00106960 _____ (Microsoft Corporation) C:\Windows\system32\ncryptsslp.dll
2016-04-22 20:39 - 2015-12-03 21:41 - 00177488 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2016-04-22 20:39 - 2015-12-03 20:52 - 00340872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcryptprimitives.dll
2016-04-22 20:39 - 2015-12-03 20:52 - 00120376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2016-04-22 20:39 - 2015-12-03 20:52 - 00091416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncryptsslp.dll
2016-04-22 20:39 - 2015-12-03 19:07 - 00432128 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2016-04-22 20:39 - 2015-12-03 18:45 - 00357888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2016-04-22 20:04 - 2016-04-22 20:04 - 00000882 _____ C:\Users\Public\Desktop\AVG.lnk
2016-04-22 20:04 - 2016-04-22 20:04 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG Zen
2016-04-22 19:41 - 2016-04-22 20:57 - 00000000 ____D C:\ProgramData\Avg
2016-04-22 19:41 - 2016-04-22 20:53 - 00000000 ____D C:\Program Files (x86)\AVG
2016-04-22 19:38 - 2016-04-22 21:05 - 00000000 ____D C:\Users\geant casino\AppData\Local\Avg
2016-04-22 19:38 - 2016-04-22 20:03 - 00000000 ____D C:\Users\geant casino\AppData\Local\AvgSetupLog
2016-04-22 19:38 - 2016-04-22 19:38 - 02895464 _____ (AVG Technologies) C:\Users\geant casino\Downloads\AVG_Protection_Free_1144.exe
2016-04-06 12:06 - 2016-01-19 21:13 - 02175008 _____ (Microsoft Corporation) C:\Windows\system32\combase.dll
2016-04-06 12:06 - 2016-01-19 21:13 - 01063464 _____ (Microsoft Corporation) C:\Windows\system32\WinTypes.dll
2016-04-06 12:06 - 2016-01-19 20:23 - 01564496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\combase.dll
2016-04-06 12:06 - 2016-01-19 20:23 - 00548024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WinTypes.dll
2016-04-06 12:06 - 2016-01-19 18:37 - 00267776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wincorlib.dll
2016-04-06 12:06 - 2014-10-29 03:24 - 00391168 _____ (Microsoft Corporation) C:\Windows\system32\wincorlib.dll
2016-04-06 12:05 - 2016-01-06 20:25 - 00140800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
2016-04-06 12:02 - 2016-02-06 20:08 - 00031744 _____ (Microsoft Corporation) C:\Windows\system32\seclogon.dll
2016-04-06 12:00 - 2016-02-12 21:14 - 00136904 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2016-04-06 12:00 - 2016-02-12 17:14 - 03708416 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2016-04-06 12:00 - 2016-02-12 16:55 - 00409088 _____ (Microsoft Corporation) C:\Windows\system32\WUSettingsProvider.dll
2016-04-06 12:00 - 2016-02-12 16:54 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2016-04-06 12:00 - 2016-02-12 16:48 - 02244096 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2016-04-06 12:00 - 2016-02-12 16:47 - 00897024 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2016-04-06 12:00 - 2016-02-12 16:46 - 00726528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2016-04-06 11:59 - 2016-02-12 16:54 - 00095744 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2016-04-06 11:59 - 2016-02-12 16:54 - 00035840 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2016-04-06 11:59 - 2016-02-12 16:51 - 00124928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll
2016-04-06 11:59 - 2016-02-12 16:51 - 00081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
2016-04-06 11:59 - 2016-02-12 16:51 - 00029696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe
2016-04-06 11:58 - 2016-02-03 17:09 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\olepro32.dll
2016-04-06 11:58 - 2016-02-03 17:00 - 00091136 _____ (Microsoft Corporation) C:\Windows\system32\asycfilt.dll
2016-04-06 11:58 - 2016-02-03 17:00 - 00077824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\asycfilt.dll
2016-04-06 11:57 - 2016-01-07 01:46 - 00148752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wscapi.dll
2016-04-06 11:57 - 2016-01-07 01:45 - 00177712 _____ (Microsoft Corporation) C:\Windows\system32\wscapi.dll
2016-04-06 11:57 - 2016-01-06 18:47 - 00146944 _____ (Microsoft Corporation) C:\Windows\system32\wscsvc.dll
2016-04-06 11:57 - 2015-11-19 16:33 - 00994760 _____ (Microsoft Corporation) C:\Windows\system32\ucrtbase.dll
2016-04-06 11:57 - 2015-11-19 16:26 - 00922432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ucrtbase.dll
2016-04-06 11:57 - 2014-10-29 04:40 - 00014848 _____ (Microsoft Corporation) C:\Windows\system32\wscproxystub.dll
2016-04-06 11:57 - 2014-10-29 04:35 - 00025088 _____ (Microsoft Corporation) C:\Windows\system32\wscisvif.dll
2016-04-06 11:57 - 2014-10-29 03:56 - 00011264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wscproxystub.dll
2016-04-06 11:57 - 2014-10-29 03:52 - 00020992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wscisvif.dll
2016-04-06 11:55 - 2016-01-13 23:26 - 01737080 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2016-04-06 11:55 - 2016-01-13 23:26 - 01501488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2016-04-06 11:55 - 2016-01-10 20:18 - 00246784 _____ (Microsoft Corporation) C:\Windows\system32\microsoft-windows-system-events.dll
2016-04-06 11:55 - 2016-01-10 18:41 - 01707008 _____ (Microsoft Corporation) C:\Windows\system32\comsvcs.dll
2016-04-06 11:55 - 2016-01-10 18:31 - 01344512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comsvcs.dll
2016-04-06 11:54 - 2016-02-05 17:03 - 15432704 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2016-04-06 11:52 - 2016-02-05 17:00 - 13318144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll
2016-04-06 11:51 - 2016-02-05 21:07 - 00292696 _____ (Microsoft Corporation) C:\Windows\system32\WMASF.DLL
2016-04-06 11:51 - 2016-02-05 21:07 - 00243032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMASF.DLL
2016-04-06 11:51 - 2014-10-29 04:45 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\msdxm.ocx
2016-04-06 11:51 - 2014-10-29 04:45 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\dxmasf.dll
2016-04-06 11:51 - 2014-10-29 04:33 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\LAPRXY.DLL
2016-04-06 11:51 - 2014-10-29 04:08 - 00010240 _____ (Microsoft Corporation) C:\Windows\system32\spwmp.dll
2016-04-06 11:51 - 2014-10-29 04:00 - 00004608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdxm.ocx
2016-04-06 11:51 - 2014-10-29 04:00 - 00004608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxmasf.dll
2016-04-06 11:51 - 2014-10-29 03:51 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LAPRXY.DLL
2016-04-06 11:51 - 2014-10-29 03:32 - 00008704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\spwmp.dll
2016-03-31 16:07 - 2016-02-06 18:58 - 00987648 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2016-03-31 16:07 - 2016-02-06 18:32 - 00801792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2016-03-31 16:07 - 2015-12-30 22:49 - 00470360 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
2016-03-31 16:07 - 2015-12-07 12:56 - 01380600 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2016-03-31 16:07 - 2015-12-04 17:00 - 01097216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2016-03-31 15:57 - 2016-01-31 21:16 - 00148832 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBSTOR.SYS
2016-03-31 15:52 - 2016-02-04 20:18 - 00358912 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2016-03-31 15:52 - 2016-02-04 20:12 - 00044032 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2016-03-31 15:52 - 2016-02-04 19:44 - 00301568 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2016-03-31 15:52 - 2016-02-04 19:39 - 00035840 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2016-03-31 15:50 - 2015-12-28 23:42 - 00713216 _____ (Microsoft Corporation) C:\Windows\system32\WinSync.dll
2016-03-31 15:50 - 2015-12-28 22:31 - 00578048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WinSync.dll
2016-03-31 15:50 - 2015-12-20 16:57 - 00839168 _____ (Microsoft Corporation) C:\Windows\system32\netlogon.dll
2016-03-31 15:50 - 2015-12-20 16:43 - 00696320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netlogon.dll
2016-03-31 15:49 - 2016-02-04 19:24 - 00603648 _____ (Microsoft Corporation) C:\Windows\system32\mfds.dll
2016-03-31 15:49 - 2016-02-04 19:02 - 00483328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfds.dll
2016-03-31 15:49 - 2016-01-05 17:00 - 00570880 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe
2016-03-31 15:49 - 2015-12-20 16:56 - 00616960 _____ (Microsoft Corporation) C:\Windows\system32\msra.exe
2016-03-31 15:49 - 2015-12-17 20:29 - 00131584 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll
2016-03-31 15:49 - 2015-12-17 18:17 - 03547648 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2016-03-31 15:49 - 2015-12-08 21:08 - 00685432 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2016-03-31 15:49 - 2015-12-08 21:07 - 00507176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2016-03-31 15:49 - 2014-10-29 04:29 - 00049664 _____ (Microsoft Corporation) C:\Windows\system32\sdchange.exe
2016-03-31 15:49 - 2014-10-29 04:00 - 00121856 _____ (Microsoft Corporation) C:\Windows\system32\racpldlg.dll
2016-03-31 15:49 - 2014-10-29 03:52 - 00108032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msra.exe
2016-03-31 15:49 - 2014-10-29 03:48 - 00040960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sdchange.exe
2016-03-31 15:49 - 2014-10-29 03:26 - 00110592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\racpldlg.dll
2016-03-31 15:49 - 2014-10-29 03:21 - 00026112 _____ (Microsoft Corporation) C:\Windows\system32\delegatorprovider.dll
2016-03-31 15:49 - 2014-10-29 03:21 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\storagewmi_passthru.dll
2016-03-31 15:49 - 2014-10-29 03:00 - 00020480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\delegatorprovider.dll
2016-03-31 15:49 - 2014-10-29 03:00 - 00019968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\storagewmi_passthru.dll
2016-03-31 13:23 - 2016-03-31 13:23 - 00002219 _____ C:\Users\Public\Desktop\Toshiba Tempro.lnk
2016-03-31 13:21 - 2016-04-23 06:25 - 00000000 ____D C:\Users\ADMINI~1
2016-03-31 12:58 - 2016-03-31 12:58 - 00004060 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2016-03-31 12:57 - 2016-03-31 12:57 - 00003824 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore1d0f17320ec4c25

==================== Un mois - Modifiés - fichiers et dossiers ========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2016-04-24 16:03 - 2015-05-17 08:57 - 00001002 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2016-04-24 16:03 - 2014-05-02 18:47 - 00001088 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2016-04-24 15:29 - 2014-07-21 20:29 - 00000000 ___DO C:\Users\geant casino\OneDrive
2016-04-24 15:27 - 2015-09-17 20:03 - 00001084 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore1d0f17320ec4c25.job
2016-04-24 15:27 - 2014-05-02 18:47 - 00001084 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2016-04-24 15:21 - 2013-08-22 16:45 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-04-24 15:20 - 2013-09-24 13:33 - 00065536 _____ C:\Windows\system32\spu_storage.bin
2016-04-24 15:20 - 2013-08-22 15:25 - 00786432 ___SH C:\Windows\system32\config\BBI
2016-04-24 15:19 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\AppReadiness
2016-04-24 15:08 - 2013-08-22 15:36 - 00000000 ____D C:\Windows\Inf
2016-04-24 10:24 - 2014-07-01 10:19 - 00000968 _____ C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1359495801-2136348393-1888701871-1001UA.job
2016-04-24 10:24 - 2014-07-01 10:19 - 00000946 _____ C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1359495801-2136348393-1888701871-1001Core.job
2016-04-24 09:36 - 2013-08-22 17:20 - 00000000 ____D C:\Windows\CbsTemp
2016-04-24 09:23 - 2014-02-06 05:20 - 00003600 _____ C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1359495801-2136348393-1888701871-1001
2016-04-24 06:26 - 2014-04-27 02:37 - 00003952 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{56168391-7CC0-4EB7-AFA6-7443280FBC0C}
2016-04-23 20:24 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\system32\NDF
2016-04-23 20:19 - 2014-07-08 08:05 - 00000000 ____D C:\Program Files (x86)\MarkAny
2016-04-23 20:02 - 2013-08-22 17:36 - 00000000 ___HD C:\Windows\ELAMBKUP
2016-04-23 19:44 - 2014-05-02 18:47 - 00000000 ____D C:\Users\geant casino\AppData\Local\Google
2016-04-23 19:24 - 2014-06-20 15:48 - 00000000 ____D C:\Users\geant casino\AppData\Roaming\Samsung
2016-04-23 19:24 - 2014-06-20 15:48 - 00000000 ____D C:\Users\geant casino\AppData\Local\Samsung
2016-04-23 19:24 - 2014-06-20 15:36 - 00000000 ____D C:\Program Files (x86)\Samsung
2016-04-23 19:22 - 2014-06-20 15:36 - 00000000 ____D C:\ProgramData\Samsung
2016-04-23 19:22 - 2013-09-11 21:25 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2016-04-23 19:04 - 2015-04-22 08:05 - 00000000 ____D C:\Users\geant casino\AppData\Roaming\Mozilla
2016-04-23 17:15 - 2013-08-22 17:36 - 00000000 ___HD C:\Program Files\WindowsApps
2016-04-23 16:16 - 2013-09-24 13:55 - 00000000 ____D C:\Windows\System32\Tasks\TOSHIBA
2016-04-23 16:07 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\rescache
2016-04-23 15:51 - 2013-09-11 21:22 - 01824010 _____ C:\Windows\system32\PerfStringBackup.INI
2016-04-23 15:51 - 2013-08-28 17:40 - 00812350 _____ C:\Windows\system32\perfh00C.dat
2016-04-23 15:51 - 2013-08-28 17:40 - 00159412 _____ C:\Windows\system32\perfc00C.dat
2016-04-23 15:46 - 2015-05-15 19:38 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2016-04-23 15:46 - 2013-08-22 16:44 - 00337960 _____ C:\Windows\system32\FNTCACHE.DAT
2016-04-23 15:38 - 2015-04-09 21:19 - 00000000 ____D C:\Windows\system32\appraiser
2016-04-23 15:38 - 2014-07-10 22:06 - 00000000 ___SD C:\Windows\system32\CompatTel
2016-04-23 15:38 - 2013-08-22 17:36 - 00000000 ___RD C:\Windows\ToastData
2016-04-23 15:37 - 2014-04-29 00:18 - 00000000 ____D C:\Windows\system32\MRT
2016-04-23 15:26 - 2014-04-29 00:17 - 135176864 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2016-04-23 15:02 - 2015-04-15 11:49 - 00000000 ____D C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2016-04-23 14:53 - 2013-09-24 13:44 - 00000000 ____D C:\Program Files (x86)\TOSHIBA
2016-04-23 14:50 - 2013-09-11 21:25 - 00000000 ____D C:\Program Files\Toshiba
2016-04-23 14:33 - 2014-07-15 10:16 - 00122584 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2016-04-23 06:32 - 2014-05-02 18:50 - 00002224 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-04-23 06:30 - 2014-05-02 18:50 - 00002212 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2016-04-23 04:13 - 2014-07-21 15:51 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2016-04-23 04:13 - 2014-07-21 15:51 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2016-04-23 00:22 - 2015-04-16 19:38 - 00000000 ___SD C:\Windows\SysWOW64\GWX
2016-04-23 00:22 - 2015-04-16 19:38 - 00000000 ___SD C:\Windows\system32\GWX
2016-04-23 00:22 - 2013-08-22 21:11 - 00000000 ____D C:\Program Files\Windows Journal
2016-04-23 00:01 - 2014-07-21 15:55 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2016-04-22 23:03 - 2015-05-15 20:54 - 00000000 __SHD C:\Users\geant casino\AppData\Local\EmieBrowserModeList
2016-04-22 23:03 - 2015-04-18 11:47 - 00000000 __SHD C:\Users\geant casino\AppData\LocalLow\EmieBrowserModeList
2016-04-22 23:03 - 2014-05-04 19:32 - 00000000 __SHD C:\Users\geant casino\AppData\LocalLow\EmieUserList
2016-04-22 23:03 - 2014-05-04 19:31 - 00000000 __SHD C:\Users\geant casino\AppData\LocalLow\EmieSiteList
2016-04-22 23:03 - 2014-05-04 19:31 - 00000000 __SHD C:\Users\geant casino\AppData\Local\EmieUserList
2016-04-22 23:03 - 2014-05-04 19:31 - 00000000 __SHD C:\Users\geant casino\AppData\Local\EmieSiteList
2016-04-22 21:26 - 2013-08-22 15:25 - 00262144 ___SH C:\Windows\system32\config\ELAM
2016-04-22 20:04 - 2015-05-17 08:57 - 00003890 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2016-04-22 19:14 - 2015-06-01 08:00 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Trusteer Sécurité des points d'accès
2016-03-31 14:29 - 2013-09-24 13:31 - 00000000 ____D C:\ProgramData\Package Cache

==================== Bamital & volsnap =================

(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)

C:\Windows\system32\winlogon.exe => Le fichier est signé numériquement
C:\Windows\system32\wininit.exe => Le fichier est signé numériquement
C:\Windows\explorer.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\explorer.exe => Le fichier est signé numériquement
C:\Windows\system32\svchost.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\svchost.exe => Le fichier est signé numériquement
C:\Windows\system32\services.exe => Le fichier est signé numériquement
C:\Windows\system32\User32.dll => Le fichier est signé numériquement
C:\Windows\SysWOW64\User32.dll => Le fichier est signé numériquement
C:\Windows\system32\userinit.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\userinit.exe => Le fichier est signé numériquement
C:\Windows\system32\rpcss.dll => Le fichier est signé numériquement
C:\Windows\system32\dnsapi.dll => Le fichier est signé numériquement
C:\Windows\SysWOW64\dnsapi.dll => Le fichier est signé numériquement
C:\Windows\system32\Drivers\volsnap.sys => Le fichier est signé numériquement


LastRegBack: 2016-04-22 22:23

==================== Fin de FRST.txt ============================

Publicité


Signaler le contenu de ce document

Publicité