cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 26-06-2016 02
Exécuté par Anthony (administrateur) sur SCANIA (28-06-2016 16:45:41)
Exécuté depuis D:\Users\Anthony\Desktop
Profils chargés: Anthony (Profils disponibles: Anthony & DefaultAppPool)
Platform: Windows 8.1 Pro Student (Update) (X64) Langue: Français (France)
Internet Explorer Version 11 (Navigateur par défaut: IE)
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processus (Avec liste blanche) =================

(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)

(Hewlett-Packard Company) C:\Windows\System32\hpservice.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPWMISVC.exe
(Intel(R) Corporation) C:\Program Files\Intel\TXE Components\TCS\HeciServer.exe
() C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
() C:\Program Files (x86)\Intel Driver Update Utility\SUR\SurSvc.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
() C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\esrv_svc.exe
(Auslogics) C:\Program Files (x86)\Auslogics\Auslogics BoostSpeed\BoostSpeed.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Logitech Inc.) C:\Program Files\Logitech\Gaming Software\LWEMon.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTsysTray8.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPMSGSVC.exe
(Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe
() C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\esrv.exe
(Byte Technologies LLC) C:\Program Files\ByteFence\ByteFence.exe
(Microsoft Corporation) C:\Windows\SysWOW64\cmd.exe
(Microsoft Corporation) C:\Windows\SysWOW64\cmd.exe
() C:\Program Files\ByteFence\rtop\bin\rtop_svc.exe
() C:\Program Files\ByteFence\rtop\bin\rtop_bg.exe
(Adobe Systems Incorporated) C:\Windows\System32\Macromed\Flash\FlashUtil_ActiveX.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe


==================== Registre (Avec liste blanche) ===========================

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [7510896 2014-01-14] (Realtek Semiconductor)
HKLM\...\Run: [LoRdiStartOnce] => C:\Windows\LoRdi\LoRdiAccueil\LoRdiStartOnce.bat [103 2014-07-17] ()
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2803440 2014-01-07] (Synaptics Incorporated)
HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\system32\rundll32.exe C:\Windows\System32\LogiLDA.dll,LogiFetch
HKLM\...\Run: [Start WingMan Profiler] => C:\Program Files\Logitech\Gaming Software\LWEMon.exe [190536 2010-06-14] (Logitech Inc.)
HKLM-x32\...\Run: [AccelerometerSysTrayApplet] => C:\Program Files (x86)\Hewlett-Packard\HP 3D DriveGuard\AccelerometerST.exe [126240 2014-02-13] (Hewlett-Packard Company)
HKLM-x32\...\Run: [HPMessageService] => C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPMSGSVC.exe [1045304 2013-10-08] (Hewlett-Packard Development Company, L.P.)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2014-05-08] (Adobe Systems Incorporated)
Winlogon\Notify\igfxcui: C:\WINDOWS\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-903620719-2342569970-1390832242-1005\...\Run: [Chromium] => "d:\users\anthony\appdata\local\chromium\application\chrome.exe" --auto-launch-at-startup --profile-directory="Default" --restore-last-session
HKU\S-1-5-21-903620719-2342569970-1390832242-1005\...\MountPoints2: {a40114f2-8c81-11e5-828d-3464a977ebae} - "G:\setup.exe"
HKU\S-1-5-21-903620719-2342569970-1390832242-1005\...\MountPoints2: {a40115fc-8c81-11e5-828d-3464a977ebae} - "E:\setup.exe"
HKU\S-1-5-21-903620719-2342569970-1390832242-1005\...\MountPoints2: {c63e3737-bf33-11e5-82b8-3464a977ebae} - "E:\LaunchU3.exe" -a
ShellIconOverlayIdentifiers: [###MegaShellExtPending] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => D:\Users\Anthony\AppData\Local\MEGAsync\ShellExtX64.dll Pas de fichier
ShellIconOverlayIdentifiers: [###MegaShellExtSynced] -> {05B38830-F4E9-4329-978B-1DD28605D202} => D:\Users\Anthony\AppData\Local\MEGAsync\ShellExtX64.dll Pas de fichier
ShellIconOverlayIdentifiers: [###MegaShellExtSyncing] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => D:\Users\Anthony\AppData\Local\MEGAsync\ShellExtX64.dll Pas de fichier
ShellIconOverlayIdentifiers-x32: [###MegaShellExtPending] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => D:\Users\Anthony\AppData\Local\MEGAsync\ShellExtX32.dll Pas de fichier
ShellIconOverlayIdentifiers-x32: [###MegaShellExtSynced] -> {05B38830-F4E9-4329-978B-1DD28605D202} => D:\Users\Anthony\AppData\Local\MEGAsync\ShellExtX32.dll Pas de fichier
ShellIconOverlayIdentifiers-x32: [###MegaShellExtSyncing] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => D:\Users\Anthony\AppData\Local\MEGAsync\ShellExtX32.dll Pas de fichier
CHR HKLM\SOFTWARE\Policies\Google: Restriction <======= ATTENTION

==================== Internet (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)

Hosts: Il y a plus d'un élément dans hosts. Voir la section Hosts de Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.0.254
Tcpip\..\Interfaces\{034580EE-8790-44EA-ABE8-87F2853329A5}: [DhcpNameServer] 192.168.0.254
Tcpip\..\Interfaces\{159D9FD6-4108-4547-AAFF-09659B5EB443}: [DhcpNameServer] 192.168.0.254

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://fr.search.yahoo.com/yhs/web?hspart=iry&hsimp=yhs-fullyhosted_003&type=wbf_chtengin_16_26¶m1=1¶m2=f%3D1%26b%3DIE%26cc%3Dfr%26pa%3DWincy%26cd%3D2XzuyEtN2Y1L1Qzu0BtDtCtDyEtCyBtDyCyCyDtDyB0AyE0FtN0D0Tzu0StCyCyEtDtN1L2XzutAtFtBtAtFtCtFtBtN1L1Czu1BtAtN1L1G1B1V1N2Y1L1Qzu2SyCyBzy0DtDtA0AyDtGyB0FyD0BtGyB0A0B0DtGtB0AtB0AtGtByDtBtDtA0A0F0ByB0B0AtB2QtN1M1F1B2Z1V1N2Y1L1Qzu2S0CtAzzyCtBtCzyyCtGzy0EtCzztGyEyBtAyEtG0AzytBtBtGyCyC0A0D0FyBtAzyyE0F0Ezz2QtN0A0LzuyE%26cr%3D947602520%26a%3Dwbf_chtengin_16_26%26os_ver%3D6.3%26os%3DWindows%2B8.1%2BPro%2BStudent
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxps://fr.search.yahoo.com/yhs/web?hspart=iry&hsimp=yhs-fullyhosted_003&type=wbf_chtengin_16_26¶m1=1¶m2=f%3D1%26b%3DIE%26cc%3Dfr%26pa%3DWincy%26cd%3D2XzuyEtN2Y1L1Qzu0BtDtCtDyEtCyBtDyCyCyDtDyB0AyE0FtN0D0Tzu0StCyCyEtDtN1L2XzutAtFtBtAtFtCtFtBtN1L1Czu1BtAtN1L1G1B1V1N2Y1L1Qzu2SyCyBzy0DtDtA0AyDtGyB0FyD0BtGyB0A0B0DtGtB0AtB0AtGtByDtBtDtA0A0F0ByB0B0AtB2QtN1M1F1B2Z1V1N2Y1L1Qzu2S0CtAzzyCtBtCzyyCtGzy0EtCzztGyEyBtAyEtG0AzytBtBtGyCyC0A0D0FyBtAzyyE0F0Ezz2QtN0A0LzuyE%26cr%3D947602520%26a%3Dwbf_chtengin_16_26%26os_ver%3D6.3%26os%3DWindows%2B8.1%2BPro%2BStudent
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com
HKU\S-1-5-21-903620719-2342569970-1390832242-1005\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://google.fr/
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://fr.search.yahoo.com/yhs/search?hspart=iry&hsimp=yhs-fullyhosted_003&type=wbf_chtengin_16_26¶m1=1¶m2=f%3D4%26b%3DIE%26cc%3Dfr%26pa%3DWincy%26cd%3D2XzuyEtN2Y1L1Qzu0BtDtCtDyEtCyBtDyCyCyDtDyB0AyE0FtN0D0Tzu0StCyCyEtDtN1L2XzutAtFtBtAtFtCtFtBtN1L1Czu1BtAtN1L1G1B1V1N2Y1L1Qzu2SyCyBzy0DtDtA0AyDtGyB0FyD0BtGyB0A0B0DtGtB0AtB0AtGtByDtBtDtA0A0F0ByB0B0AtB2QtN1M1F1B2Z1V1N2Y1L1Qzu2S0CtAzzyCtBtCzyyCtGzy0EtCzztGyEyBtAyEtG0AzytBtBtGyCyC0A0D0FyBtAzyyE0F0Ezz2QtN0A0LzuyE%26cr%3D947602520%26a%3Dwbf_chtengin_16_26%26os_ver%3D6.3%26os%3DWindows%2B8.1%2BPro%2BStudent&p={searchTerms}
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://fr.search.yahoo.com/yhs/search?hspart=iry&hsimp=yhs-fullyhosted_003&type=wbf_chtengin_16_26¶m1=1¶m2=f%3D4%26b%3DIE%26cc%3Dfr%26pa%3DWincy%26cd%3D2XzuyEtN2Y1L1Qzu0BtDtCtDyEtCyBtDyCyCyDtDyB0AyE0FtN0D0Tzu0StCyCyEtDtN1L2XzutAtFtBtAtFtCtFtBtN1L1Czu1BtAtN1L1G1B1V1N2Y1L1Qzu2SyCyBzy0DtDtA0AyDtGyB0FyD0BtGyB0A0B0DtGtB0AtB0AtGtByDtBtDtA0A0F0ByB0B0AtB2QtN1M1F1B2Z1V1N2Y1L1Qzu2S0CtAzzyCtBtCzyyCtGzy0EtCzztGyEyBtAyEtG0AzytBtBtGyCyC0A0D0FyBtAzyyE0F0Ezz2QtN0A0LzuyE%26cr%3D947602520%26a%3Dwbf_chtengin_16_26%26os_ver%3D6.3%26os%3DWindows%2B8.1%2BPro%2BStudent&p={searchTerms}
SearchScopes: HKLM -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKLM-x32 -> DefaultScope la valeur est absente
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> {2f23ab71-4ac6-41f2-a955-ea576e553146} URL = hxxps://fr.search.yahoo.com/yhs/search?hspart=iry&hsimp=yhs-fullyhosted_003&type=wbf_chtengin_16_26¶m1=1¶m2=f%3D4%26b%3DIE%26cc%3Dfr%26pa%3DWincy%26cd%3D2XzuyEtN2Y1L1Qzu0BtDtCtDyEtCyBtDyCyCyDtDyB0AyE0FtN0D0Tzu0StCyCyEtDtN1L2XzutAtFtBtAtFtCtFtBtN1L1Czu1BtAtN1L1G1B1V1N2Y1L1Qzu2SyCyBzy0DtDtA0AyDtGyB0FyD0BtGyB0A0B0DtGtB0AtB0AtGtByDtBtDtA0A0F0ByB0B0AtB2QtN1M1F1B2Z1V1N2Y1L1Qzu2S0CtAzzyCtBtCzyyCtGzy0EtCzztGyEyBtAyEtG0AzytBtBtGyCyC0A0D0FyBtAzyyE0F0Ezz2QtN0A0LzuyE%26cr%3D947602520%26a%3Dwbf_chtengin_16_26%26os_ver%3D6.3%26os%3DWindows%2B8.1%2BPro%2BStudent&p={searchTerms}
SearchScopes: HKU\S-1-5-21-903620719-2342569970-1390832242-1005 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://fr.search.yahoo.com/yhs/search?hspart=iry&hsimp=yhs-fullyhosted_003&type=wbf_chtengin_16_26¶m1=1¶m2=f%3D4%26b%3DIE%26cc%3Dfr%26pa%3DWincy%26cd%3D2XzuyEtN2Y1L1Qzu0BtDtCtDyEtCyBtDyCyCyDtDyB0AyE0FtN0D0Tzu0StCyCyEtDtN1L2XzutAtFtBtAtFtCtFtBtN1L1Czu1BtAtN1L1G1B1V1N2Y1L1Qzu2SyCyBzy0DtDtA0AyDtGyB0FyD0BtGyB0A0B0DtGtB0AtB0AtGtByDtBtDtA0A0F0ByB0B0AtB2QtN1M1F1B2Z1V1N2Y1L1Qzu2S0CtAzzyCtBtCzyyCtGzy0EtCzztGyEyBtAyEtG0AzytBtBtGyCyC0A0D0FyBtAzyyE0F0Ezz2QtN0A0LzuyE%26cr%3D947602520%26a%3Dwbf_chtengin_16_26%26os_ver%3D6.3%26os%3DWindows%2B8.1%2BPro%2BStudent&p={searchTerms}
SearchScopes: HKU\S-1-5-21-903620719-2342569970-1390832242-1005 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-903620719-2342569970-1390832242-1005 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://fr.search.yahoo.com/yhs/search?hspart=iry&hsimp=yhs-fullyhosted_003&type=wbf_chtengin_16_26¶m1=1¶m2=f%3D4%26b%3DIE%26cc%3Dfr%26pa%3DWincy%26cd%3D2XzuyEtN2Y1L1Qzu0BtDtCtDyEtCyBtDyCyCyDtDyB0AyE0FtN0D0Tzu0StCyCyEtDtN1L2XzutAtFtBtAtFtCtFtBtN1L1Czu1BtAtN1L1G1B1V1N2Y1L1Qzu2SyCyBzy0DtDtA0AyDtGyB0FyD0BtGyB0A0B0DtGtB0AtB0AtGtByDtBtDtA0A0F0ByB0B0AtB2QtN1M1F1B2Z1V1N2Y1L1Qzu2S0CtAzzyCtBtCzyyCtGzy0EtCzztGyEyBtAyEtG0AzytBtBtGyCyC0A0D0FyBtAzyyE0F0Ezz2QtN0A0LzuyE%26cr%3D947602520%26a%3Dwbf_chtengin_16_26%26os_ver%3D6.3%26os%3DWindows%2B8.1%2BPro%2BStudent&p={searchTerms}
SearchScopes: HKU\S-1-5-21-903620719-2342569970-1390832242-1005 -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL =
StartMenuInternet: IEXPLORE.EXE - iexplore.exe

FireFox:
========
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_14_0_0_125.dll [2014-07-03] ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50428.0\npctrl.dll [2016-04-27] ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_14_0_0_125.dll [2014-07-03] ()
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw_1213153.dll [2014-06-24] (Adobe Systems, Inc.)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50428.0\npctrl.dll [2016-04-27] ( Microsoft Corporation)
FF Plugin-x32: @videolan.org/vlc,version=2.1.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-01-21] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.2 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-01-21] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2014-05-08] (Adobe Systems Inc.)

==================== Services (Avec liste blanche) ========================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R2 ESRV_SVC_WILLAMETTE; C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\esrv_svc.exe [416408 2016-03-09] ()
R2 HPWMISVC; C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPWMISVC.exe [1039160 2013-10-08] (Hewlett-Packard Development Company, L.P.)
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\TXE Components\TCS\HeciServer.exe [733696 2013-07-01] (Intel(R) Corporation) [Fichier non signé]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\TXE Components\TCS\SocketHeciServer.exe [822232 2013-07-01] (Intel(R) Corporation)
R2 ISCTAgent; C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe [200168 2013-12-04] ()
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [290520 2014-01-09] (Realtek Semiconductor)
R2 rtop; C:\Program Files\ByteFence\rtop\bin\rtop_svc.exe [254264 2016-06-28] ()
R2 SystemUsageReportSvc_WILLAMETTE; C:\Program Files (x86)\Intel Driver Update Utility\SUR\SurSvc.exe [118424 2016-03-09] ()
S3 USER_ESRV_SVC_WILLAMETTE; C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\esrv_svc.exe [416408 2016-03-09] ()
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [347880 2014-03-24] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2014-03-24] (Microsoft Corporation)
S3 Disc Soft Lite Bus Service; "C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe" [X]

===================== Pilotes (Avec liste blanche) ==========================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

S3 dg_ssudbus; C:\Windows\system32\DRIVERS\ssudbus.sys [129152 2016-04-25] (Samsung Electronics Co., Ltd.)
S3 dot4; C:\Windows\system32\DRIVERS\Dot4.sys [151968 2012-10-19] (Windows (R) Win 7 DDK provider)
S3 Dot4Print; C:\Windows\System32\drivers\Dot4Prt.sys [27040 2012-10-19] (Windows (R) Win 7 DDK provider)
R3 dtlitescsibus; C:\Windows\System32\drivers\dtlitescsibus.sys [30264 2015-11-17] (Disc Soft Ltd)
S3 dtultrascsibus; C:\Windows\System32\drivers\dtultrascsibus.sys [30264 2015-11-16] (Disc Soft Ltd)
S3 dtultrausbbus; C:\Windows\System32\drivers\dtultrausbbus.sys [47160 2015-11-16] (Disc Soft Ltd)
S0 ebdrv; C:\Windows\System32\drivers\evbda.sys [3357024 2013-08-22] (Broadcom Corporation)
R3 GPIO; C:\Windows\System32\drivers\iaiogpioe.sys [31232 2013-11-12] (Intel Corporation)
R3 iaioi2c; C:\Windows\System32\drivers\iaioi2ce.sys [67584 2013-11-12] (Intel Corporation)
R3 ikbevent; C:\Windows\system32\DRIVERS\ikbevent.sys [21408 2013-08-13] ()
R3 imsevent; C:\Windows\system32\DRIVERS\imsevent.sys [21920 2013-08-13] ()
R3 INETMON; C:\Windows\System32\Drivers\INETMON.sys [29088 2013-08-13] ()
R3 ISCT; C:\Windows\System32\drivers\ISCTD64.sys [46568 2013-08-13] ()
S3 LGJoyXlCore; C:\Windows\system32\drivers\LGJoyXlCore.sys [68384 2015-06-11] (Logitech Inc.)
R0 MBI; C:\Windows\System32\drivers\MBI.sys [29464 2013-10-11] (Intel Corporation)
S3 NETwNe64; C:\Windows\system32\DRIVERS\NETwew00.sys [3344352 2013-07-08] (Intel Corporation)
R3 RTSPER; C:\Windows\system32\DRIVERS\RtsPer.sys [445656 2013-11-09] (Realsil Semiconductor Corporation)
R3 RTWlanE; C:\Windows\system32\DRIVERS\rtwlane.sys [5127424 2016-05-12] (Realtek Semiconductor Corporation )
R3 semav6msr64; C:\WINDOWS\system32\drivers\semav6msr64.sys [21984 2016-03-09] ()
R3 SensorsServiceDriver; C:\Windows\system32\DRIVERS\WUDFRd.sys [227840 2014-05-31] (Microsoft Corporation)
S3 SmbDrv; C:\Windows\System32\drivers\Smb_driver_AMDASF.sys [29936 2014-01-07] (Synaptics Incorporated)
R3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [31472 2014-01-07] (Synaptics Incorporated)
S3 ssudmdm; C:\Windows\system32\DRIVERS\ssudmdm.sys [221824 2016-04-25] (Samsung Electronics Co., Ltd.)
R3 TXEIx64; C:\Windows\System32\drivers\TXEIx64.sys [97320 2015-05-28] (Intel Corporation)
R3 VirtualButtons; C:\Windows\System32\drivers\VirtualButtons.sys [32024 2013-10-05] (Intel Corporation)
S0 WdBoot; C:\Windows\System32\drivers\WdBoot.sys [35856 2014-03-24] (Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\WdFilter.sys [257880 2014-03-24] (Microsoft Corporation)
R3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [123224 2014-03-24] (Microsoft Corporation)
S3 WirelessButtonDriver; C:\Windows\System32\drivers\WirelessButtonDriver64.sys [31840 2016-03-24] (HP)
R3 WirelessButtonDriver64; C:\Windows\system32\DRIVERS\WirelessButtonDriver64.sys [31840 2016-03-24] (HP)
S3 clwvd; \SystemRoot\system32\DRIVERS\clwvd.sys [X]

==================== NetSvcs (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)


==================== Un mois - Créés - fichiers et dossiers ========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2016-06-28 16:45 - 2016-06-28 16:46 - 00018637 _____ D:\Users\Anthony\Desktop\FRST.txt
2016-06-28 16:45 - 2016-06-28 16:45 - 00000000 ____D C:\FRST
2016-06-28 16:44 - 2016-06-28 16:44 - 02389504 _____ (Farbar) D:\Users\Anthony\Desktop\FRST64.exe
2016-06-28 12:14 - 2016-06-28 12:14 - 00003476 _____ C:\WINDOWS\System32\Tasks\ByteFence Scan
2016-06-28 12:14 - 2016-06-28 12:14 - 00000000 ____D D:\Users\Anthony\AppData\Roaming\Microsoft\Windows\Start Menu\ByteFence
2016-06-28 11:13 - 2016-06-28 11:15 - 00000000 ____D D:\Users\Anthony\AppData\Local\Chromium
2016-06-28 11:12 - 2016-06-28 16:12 - 00000364 _____ C:\WINDOWS\Tasks\{21F17B17-8BDF-009A-9847-579731E5D5BC}.job
2016-06-28 11:12 - 2016-06-28 11:22 - 00000000 ____D C:\Program Files\ByteFence
2016-06-28 11:12 - 2016-06-28 11:16 - 00000000 ____D D:\Users\Anthony\AppData\Roaming\{24B81203-01EA-7F75-6ADC-58A7B60EA599}
2016-06-28 11:12 - 2016-06-28 11:12 - 00003368 _____ C:\WINDOWS\System32\Tasks\ByteFence
2016-06-28 11:12 - 2016-06-28 11:12 - 00002702 _____ C:\WINDOWS\System32\Tasks\{21F17B17-8BDF-009A-9847-579731E5D5BC}
2016-06-28 11:12 - 2016-06-28 11:12 - 00000981 _____ D:\Users\Anthony\Desktop\Cheat Engine.lnk
2016-06-28 11:12 - 2016-06-28 11:12 - 00000000 ____D D:\Users\Anthony\Documents\My Cheat Tables
2016-06-28 11:12 - 2016-06-28 11:12 - 00000000 ____D C:\Program Files (x86)\Cheat Engine 6.5.1
2016-06-28 11:11 - 2016-06-28 11:11 - 11461192 _____ (Cheat Engine ) D:\Users\Anthony\Downloads\CheatEngine651.exe
2016-06-27 21:27 - 2016-06-27 21:36 - 53190963 _____ D:\Users\Anthony\Downloads\volvobyMORGANXMODZ.scs
2016-06-27 18:15 - 2016-06-27 18:16 - 00041229 _____ D:\Users\Anthony\Downloads\R_grill_long_Scania_by_SavC.rar
2016-06-27 17:25 - 2016-06-27 17:30 - 85028487 _____ D:\Users\Anthony\Downloads\Scania_112H.rar
2016-06-27 15:48 - 2016-06-27 15:51 - 01811865 _____ D:\Users\Anthony\Downloads\Airco_for_all_Trucks.zip
2016-06-27 14:41 - 2016-06-27 14:42 - 22397166 _____ D:\Users\Anthony\Downloads\00.Kraker.scs
2016-06-27 14:01 - 2016-06-27 14:05 - 13657441 _____ D:\Users\Anthony\Downloads\Pack_scins_Scania_RJL.rar
2016-06-27 11:10 - 2016-06-27 11:11 - 03578555 _____ D:\Users\Anthony\Downloads\Scania_LE__2.zip
2016-06-27 09:08 - 2016-06-27 09:08 - 10988368 _____ D:\Users\Anthony\Downloads\Chereau_limited_edition.rar
2016-06-27 08:54 - 2016-06-27 08:56 - 00192216 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2016-06-27 08:53 - 2016-06-27 08:53 - 00000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware
2016-06-27 08:53 - 2016-03-10 14:09 - 00065408 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mwac.sys
2016-06-27 08:53 - 2016-03-10 14:08 - 00140672 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2016-06-27 08:53 - 2016-03-10 14:08 - 00027008 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2016-06-27 08:52 - 2016-06-27 08:53 - 22851472 _____ (Malwarebytes ) D:\Users\Anthony\Downloads\mbam-setup-cnet.35891-2.2.1.1043.exe
2016-06-27 08:49 - 2016-06-27 08:56 - 247375981 _____ D:\Users\Anthony\Downloads\DAF_XF_95_Weeda.rar
2016-06-26 21:47 - 2016-06-26 21:47 - 00046287 _____ D:\Users\Anthony\Downloads\Scania_R_S_Topline_Legro_skin.scs
2016-06-26 21:38 - 2016-06-26 21:39 - 00134298 _____ D:\Users\Anthony\Downloads\0.AdwinStam.rar
2016-06-26 15:19 - 2016-06-26 16:41 - 464350990 _____ D:\Users\Anthony\Downloads\facebook-synced-photos.zip
2016-06-26 11:40 - 2016-06-26 11:40 - 00026953 _____ D:\Users\Anthony\Downloads\skinRJL-Streamline-Porsche-Carrera-Cup-by-Kamiks.scs
2016-06-26 09:32 - 2016-06-26 09:08 - 00024064 _____ C:\WINDOWS\zoek-delete.exe
2016-06-26 09:08 - 2016-06-26 09:28 - 00000000 ____D C:\zoek_backup
2016-06-26 09:08 - 2016-06-26 09:08 - 01309184 _____ D:\Users\Anthony\Downloads\zoek.exe
2016-06-25 16:54 - 2016-06-25 16:54 - 07050004 _____ D:\Users\Anthony\Downloads\Alexa_Scania_RJL_indicators_display_gauges____________.scs
2016-06-25 15:36 - 2016-06-25 19:54 - 00000000 ____D D:\Users\Anthony\Desktop\driver plate
2016-06-24 22:27 - 2016-06-24 22:37 - 239473201 _____ D:\Users\Anthony\Downloads\sisl-mega-pack-2.2-ets.zip
2016-06-24 22:21 - 2016-06-24 22:22 - 05133147 _____ D:\Users\Anthony\Downloads\SiSL.s.Mega.Pack.Customization.zip
2016-06-24 18:26 - 2016-06-24 18:26 - 05952283 _____ D:\Users\Anthony\Downloads\Driver_Plate.scs
2016-06-24 15:26 - 2016-06-24 15:27 - 00000000 ____D C:\Program Files (x86)\ZHPFix
2016-06-24 15:25 - 2016-06-24 15:25 - 03521617 _____ (Nicolas Coolman ) D:\Users\Anthony\Downloads\ZHPFix.exe
2016-06-24 11:26 - 2016-06-24 11:27 - 27918393 _____ D:\Users\Anthony\Downloads\Scania_sound_By_misiek108.scs
2016-06-24 10:46 - 2016-06-27 14:13 - 00000000 ____D D:\Users\Anthony\Desktop\rapport
2016-06-24 10:42 - 2016-05-29 09:08 - 22361344 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2016-06-24 10:42 - 2016-05-28 20:31 - 19788688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2016-06-24 10:42 - 2016-05-19 01:18 - 00563024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2016-06-24 10:42 - 2016-05-19 01:18 - 00397232 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcryptprimitives.dll
2016-06-24 10:42 - 2016-05-19 01:16 - 00178016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2016-06-24 10:42 - 2016-05-19 00:28 - 00340880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcryptprimitives.dll
2016-06-24 10:42 - 2016-05-18 23:54 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\system32\certenc.dll
2016-06-24 10:42 - 2016-05-18 23:33 - 00445440 _____ (Microsoft Corporation) C:\WINDOWS\system32\certcli.dll
2016-06-24 10:42 - 2016-05-18 23:15 - 00044032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certenc.dll
2016-06-24 10:42 - 2016-05-18 22:59 - 00324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certcli.dll
2016-06-24 10:42 - 2016-05-18 22:56 - 01291776 _____ (Microsoft Corporation) C:\WINDOWS\system32\certutil.exe
2016-06-24 10:42 - 2016-05-18 22:33 - 01060352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certutil.exe
2016-06-24 10:42 - 2016-05-18 22:28 - 02635264 _____ (Microsoft Corporation) C:\WINDOWS\system32\CertEnroll.dll
2016-06-24 10:42 - 2016-05-18 22:16 - 02317824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CertEnroll.dll
2016-06-24 10:42 - 2016-05-14 22:26 - 00136904 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2016-06-24 10:42 - 2016-05-14 07:19 - 07446360 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2016-06-24 10:42 - 2016-05-14 07:19 - 01134768 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2016-06-24 10:42 - 2016-05-14 01:08 - 00111616 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidclass.sys
2016-06-24 10:42 - 2016-05-14 01:08 - 00032768 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidusb.sys
2016-06-24 10:42 - 2016-05-14 01:08 - 00032512 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidparse.sys
2016-06-24 10:42 - 2016-05-14 00:24 - 00862720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2016-06-24 10:42 - 2016-05-13 23:42 - 03667968 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2016-06-24 10:42 - 2016-05-13 23:30 - 00035840 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapp.exe
2016-06-24 10:42 - 2016-05-13 23:29 - 00140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuwebv.dll
2016-06-24 10:42 - 2016-05-13 23:27 - 00409088 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUSettingsProvider.dll
2016-06-24 10:42 - 2016-05-13 23:27 - 00095744 _____ (Microsoft Corporation) C:\WINDOWS\system32\wudriver.dll
2016-06-24 10:42 - 2016-05-13 23:26 - 02230784 _____ (Microsoft Corporation) C:\WINDOWS\system32\wucltux.dll
2016-06-24 10:42 - 2016-05-13 23:26 - 00897024 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2016-06-24 10:42 - 2016-05-13 23:18 - 00124928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuwebv.dll
2016-06-24 10:42 - 2016-05-13 23:18 - 00029696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapp.exe
2016-06-24 10:42 - 2016-05-13 23:16 - 00727040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2016-06-24 10:42 - 2016-05-13 23:16 - 00081920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wudriver.dll
2016-06-24 10:42 - 2016-05-12 20:36 - 00034600 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserAccountBroker.exe
2016-06-24 10:42 - 2016-05-12 19:39 - 00030984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserAccountBroker.exe
2016-06-24 10:42 - 2016-05-12 19:37 - 00087552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netvsc63.sys
2016-06-24 10:42 - 2016-05-11 04:24 - 00107984 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncryptsslp.dll
2016-06-24 10:42 - 2016-05-11 04:24 - 00091416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncryptsslp.dll
2016-06-24 10:42 - 2016-05-06 23:59 - 00331608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Classpnp.sys
2016-06-24 10:42 - 2016-05-06 19:13 - 00138240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dfsc.sys
2016-06-24 10:42 - 2016-05-05 20:28 - 01661072 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2016-06-24 10:42 - 2016-05-05 19:39 - 01212256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2016-06-24 10:42 - 2016-05-05 19:18 - 00065024 _____ (Microsoft Corporation) C:\WINDOWS\system32\msiexec.exe
2016-06-24 10:42 - 2016-05-05 19:02 - 03320832 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2016-06-24 10:42 - 2016-05-05 18:37 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msiexec.exe
2016-06-24 10:42 - 2016-05-05 18:34 - 00086016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\olepro32.dll
2016-06-24 10:42 - 2016-05-05 18:29 - 03607040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2016-06-24 10:42 - 2016-05-05 17:28 - 02778624 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2016-06-24 10:42 - 2016-05-05 17:16 - 02464768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2016-06-24 10:42 - 2016-04-16 15:56 - 01080320 _____ (Microsoft Corporation) C:\WINDOWS\system32\IKEEXT.DLL
2016-06-24 09:32 - 2016-06-28 08:14 - 00000837 _____ D:\Users\Anthony\Desktop\ZHPDiag.lnk
2016-06-24 09:32 - 2016-06-24 15:30 - 00000000 ____D D:\Users\Anthony\AppData\Roaming\ZHP
2016-06-24 09:31 - 2016-06-24 09:31 - 02216960 _____ D:\Users\Anthony\Downloads\ZHPDiag3.exe
2016-06-24 08:51 - 2016-06-24 08:54 - 03358714 _____ D:\Users\Anthony\Downloads\abasstreppas_sunshield_RJL.zip
2016-06-23 19:07 - 2016-06-23 19:09 - 76864653 _____ D:\Users\Anthony\Downloads\man_tgx_byMADster_v2.2.rar
2016-06-23 19:01 - 2016-06-23 19:02 - 05221530 _____ D:\Users\Anthony\Downloads\zzz_Scania_(RJL)_Blue_Stream_by_Borsuk.scs
2016-06-23 14:10 - 2016-06-23 14:11 - 12987382 _____ D:\Users\Anthony\Downloads\Backbumper Custom RJL Mod V2.rar
2016-06-23 08:56 - 2016-06-23 08:56 - 00810721 _____ D:\Users\Anthony\Downloads\9.15.0.1 [ZJ] Marker Re-Load Build 082 Demo By ZorroJan (01.07.16.).zip
2016-06-21 13:44 - 2016-06-21 13:44 - 00000000 ____D C:\Program Files (x86)\HP
2016-06-21 13:32 - 2015-01-06 05:01 - 00072192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndproxy.sys
2016-06-21 13:32 - 2015-01-06 04:59 - 00080896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wanarp.sys
2016-06-21 13:32 - 2015-01-06 03:12 - 00185856 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascfg.dll
2016-06-21 13:32 - 2015-01-06 03:02 - 00164864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rascfg.dll
2016-06-21 13:31 - 2016-04-10 07:35 - 00551256 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdmp.sys
2016-06-21 13:31 - 2016-04-10 00:15 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\wfapigp.dll
2016-06-21 13:31 - 2016-04-10 00:14 - 00306176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Geolocation.dll
2016-06-21 13:31 - 2016-04-10 00:10 - 00816128 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcss.dll
2016-06-21 13:31 - 2016-04-10 00:09 - 00754176 _____ (Microsoft Corporation) C:\WINDOWS\system32\FirewallAPI.dll
2016-06-21 13:31 - 2016-04-10 00:02 - 00346112 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationApi.dll
2016-06-21 13:31 - 2016-04-09 23:59 - 00218112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Geolocation.dll
2016-06-21 13:31 - 2016-04-09 23:59 - 00020480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wfapigp.dll
2016-06-21 13:31 - 2016-04-09 23:56 - 00543232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FirewallAPI.dll
2016-06-21 13:31 - 2016-04-09 23:55 - 00881152 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPSSVC.dll
2016-06-21 13:31 - 2016-04-09 23:52 - 00281088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LocationApi.dll
2016-06-21 13:31 - 2016-04-07 18:34 - 00987136 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2016-06-21 13:31 - 2016-04-07 18:06 - 00927744 _____ (Microsoft Corporation) C:\WINDOWS\system32\iphlpsvc.dll
2016-06-21 13:31 - 2016-04-07 17:36 - 00800768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2016-06-21 13:31 - 2016-04-06 23:21 - 00114528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mup.sys
2016-06-21 13:31 - 2016-04-06 20:20 - 00559104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\csc.sys
2016-06-21 13:31 - 2016-04-06 20:20 - 00402432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2016-06-21 13:31 - 2016-04-06 20:17 - 18825216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2016-06-21 13:31 - 2016-04-06 18:25 - 15158272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2016-06-21 13:31 - 2016-04-06 00:37 - 00205824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndiswan.sys
2016-06-21 13:31 - 2016-04-02 16:09 - 00130560 _____ (Microsoft Corporation) C:\WINDOWS\system32\BdeHdCfg.exe
2016-06-21 13:31 - 2016-04-02 15:58 - 00108032 _____ (Microsoft Corporation) C:\WINDOWS\system32\BdeHdCfgLib.dll
2016-06-21 13:31 - 2016-04-01 19:40 - 00322048 _____ (Microsoft Corporation) C:\WINDOWS\system32\fvecpl.dll
2016-06-21 13:31 - 2016-04-01 19:00 - 00840704 _____ (Microsoft Corporation) C:\WINDOWS\system32\netlogon.dll
2016-06-21 13:31 - 2016-04-01 18:53 - 00348672 _____ (Microsoft Corporation) C:\WINDOWS\system32\bdesvc.dll
2016-06-21 13:31 - 2016-04-01 18:50 - 00737280 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll
2016-06-21 13:31 - 2016-04-01 18:41 - 00696832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netlogon.dll
2016-06-21 13:31 - 2016-02-04 18:57 - 00018944 _____ (Microsoft Corporation) C:\WINDOWS\system32\httpprxp.dll
2016-06-21 13:31 - 2016-02-04 18:49 - 00125440 _____ (Microsoft Corporation) C:\WINDOWS\system32\httpprxm.dll
2016-06-21 13:31 - 2016-02-04 18:39 - 00077824 _____ (Microsoft Corporation) C:\WINDOWS\system32\adhsvc.dll
2016-06-21 13:31 - 2014-11-15 21:05 - 00801584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll
2016-06-21 13:31 - 2014-11-15 08:29 - 00962216 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2016-06-21 13:31 - 2014-11-14 08:57 - 01027584 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2016-06-21 13:31 - 2014-11-14 07:03 - 00885760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2016-06-21 13:31 - 2014-11-10 04:57 - 00096768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\agilevpn.sys
2016-06-21 13:31 - 2014-11-10 03:20 - 00420864 _____ (Microsoft Corporation) C:\WINDOWS\system32\vpnike.dll
2016-06-21 13:31 - 2014-11-10 03:08 - 00702464 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasapi32.dll
2016-06-21 13:31 - 2014-11-10 02:57 - 00624640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasapi32.dll
2016-06-21 13:31 - 2014-11-08 06:00 - 00024576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndistapi.sys
2016-06-21 13:31 - 2014-11-08 05:56 - 00048128 _____ (Microsoft Corporation) C:\WINDOWS\system32\kmddsp.tsp
2016-06-21 13:31 - 2014-11-08 05:56 - 00043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmxs.dll
2016-06-21 13:31 - 2014-11-08 05:56 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasser.dll
2016-06-21 13:31 - 2014-11-08 05:24 - 00077824 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasdiag.dll
2016-06-21 13:31 - 2014-11-08 05:13 - 00039424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kmddsp.tsp
2016-06-21 13:31 - 2014-11-08 05:13 - 00033280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasmxs.dll
2016-06-21 13:31 - 2014-11-08 05:13 - 00022528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasser.dll
2016-06-21 13:31 - 2014-11-08 04:48 - 00061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasdiag.dll
2016-06-21 13:31 - 2014-11-08 04:03 - 00733696 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDriveTelemetry.dll
2016-06-21 13:31 - 2014-11-08 03:58 - 04837376 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncEngine.dll
2016-06-21 13:31 - 2014-11-08 03:49 - 01154048 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDrive.exe
2016-06-21 13:31 - 2014-11-05 04:12 - 00211968 _____ (Microsoft Corporation) C:\WINDOWS\system32\QSHVHOST.DLL
2016-06-21 13:31 - 2014-11-05 04:12 - 00128000 _____ (Microsoft Corporation) C:\WINDOWS\system32\QSVRMGMT.DLL
2016-06-21 13:31 - 2014-11-05 04:06 - 00514048 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicePairing.dll
2016-06-21 13:31 - 2014-11-05 03:44 - 00657920 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll
2016-06-21 13:31 - 2014-11-05 03:43 - 00252416 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsrslvr.dll
2016-06-21 13:31 - 2014-11-05 03:39 - 00155648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\QSHVHOST.DLL
2016-06-21 13:31 - 2014-11-05 03:39 - 00094208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\QSVRMGMT.DLL
2016-06-21 13:31 - 2014-11-05 03:33 - 00465408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DevicePairing.dll
2016-06-21 13:31 - 2014-11-05 03:21 - 00658432 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSDApi.dll
2016-06-21 13:31 - 2014-11-05 03:20 - 00498688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnsapi.dll
2016-06-21 13:31 - 2014-11-05 03:14 - 00309760 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSDMon.dll
2016-06-21 13:31 - 2014-11-05 03:06 - 00555520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSDApi.dll
2016-06-21 13:31 - 2014-11-04 21:33 - 00058176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dam.sys
2016-06-21 13:31 - 2014-11-04 08:27 - 00128512 _____ (Microsoft Corporation) C:\WINDOWS\splwow64.exe
2016-06-21 13:31 - 2014-11-04 07:01 - 00827392 _____ (Microsoft Corporation) C:\WINDOWS\system32\spoolsv.exe
2016-06-21 13:31 - 2014-10-29 03:55 - 00242176 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinSCard.dll
2016-06-21 13:31 - 2014-10-29 03:13 - 00169984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinSCard.dll
2016-06-21 13:31 - 2014-10-21 03:59 - 00016896 _____ (Microsoft Corporation) C:\WINDOWS\system32\eventcls.dll
2016-06-21 13:31 - 2014-10-21 03:19 - 00015360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eventcls.dll
2016-06-21 13:31 - 2014-10-21 02:50 - 00074752 _____ (Microsoft Corporation) C:\WINDOWS\system32\vsstrace.dll
2016-06-21 13:31 - 2014-10-21 02:31 - 01574400 _____ (Microsoft Corporation) C:\WINDOWS\system32\vssapi.dll
2016-06-21 13:31 - 2014-10-21 02:31 - 00055296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vsstrace.dll
2016-06-21 13:31 - 2014-10-21 02:20 - 01142272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vssapi.dll
2016-06-21 13:31 - 2014-10-17 06:56 - 00039744 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelpep.sys
2016-06-21 13:31 - 2014-10-17 05:35 - 00086336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys
2016-06-21 13:29 - 2015-12-16 19:11 - 01200128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Globalization.dll
2016-06-21 13:29 - 2015-12-16 18:51 - 00868864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Globalization.dll
2016-06-21 13:29 - 2015-05-01 03:13 - 06521800 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2016-06-21 13:29 - 2015-05-01 03:13 - 01488000 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2016-06-21 13:29 - 2015-05-01 03:13 - 00261376 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppwinob.dll
2016-06-21 13:29 - 2014-11-17 22:17 - 00672984 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAgent.exe
2016-06-21 13:29 - 2014-11-14 08:54 - 00463872 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.Handlers.dll
2016-06-21 13:28 - 2015-06-10 00:39 - 00081920 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BTHUSB.SYS
2016-06-21 13:28 - 2015-06-10 00:39 - 00053248 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthenum.sys
2016-06-21 13:28 - 2015-06-10 00:38 - 01201664 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys
2016-06-20 19:24 - 2016-06-20 19:31 - 131481472 _____ D:\Users\Anthony\Downloads\Truck - Scania 143m edit by Ekualizer v3.7 - [1.24.x].7z
2016-06-20 19:07 - 2016-06-28 08:14 - 00000925 _____ D:\Users\Anthony\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2016-06-20 19:02 - 2016-06-20 19:02 - 00000000 ____D C:\Program Files (x86)\AdwCleaner
2016-06-20 14:03 - 2016-06-20 14:03 - 00000000 ____D D:\Users\Anthony\AppData\Local\Audacity
2016-06-16 17:58 - 2016-06-16 17:58 - 00000000 ____D C:\Program Files\TruckersMP
2016-06-16 16:26 - 2016-01-08 01:42 - 00993632 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcr120_clr0400.dll
2016-06-16 16:26 - 2016-01-08 01:42 - 00987848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcr120_clr0400.dll
2016-06-16 16:26 - 2016-01-08 01:42 - 00690016 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcp120_clr0400.dll
2016-06-16 16:26 - 2016-01-08 01:42 - 00484552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcp120_clr0400.dll
2016-06-15 20:43 - 2016-06-15 20:49 - 00000000 ____D D:\Users\Anthony\AppData\Local\paint.net
2016-06-15 20:43 - 2016-06-15 20:44 - 00000000 ____D C:\Program Files\paint.net
2016-06-15 19:53 - 2016-06-15 19:53 - 00030400 _____ (Microsoft Corporation) C:\WINDOWS\system32\aspnet_counters.dll
2016-06-15 19:53 - 2016-06-15 19:53 - 00028352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aspnet_counters.dll
2016-06-15 10:02 - 2016-04-12 17:46 - 14467584 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2016-06-15 10:02 - 2016-04-12 17:30 - 12879872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2016-06-15 10:00 - 2016-05-21 19:28 - 25802752 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2016-06-15 10:00 - 2016-05-21 18:57 - 20341248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2016-06-15 10:00 - 2016-05-21 00:09 - 00572416 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2016-06-15 10:00 - 2016-05-21 00:08 - 02895360 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2016-06-15 10:00 - 2016-05-21 00:02 - 06051328 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2016-06-15 10:00 - 2016-05-20 23:57 - 00497664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2016-06-15 10:00 - 2016-05-20 23:55 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MshtmlDac.dll
2016-06-15 10:00 - 2016-05-20 23:54 - 00817664 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2016-06-15 10:00 - 2016-05-20 23:50 - 02287104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2016-06-15 10:00 - 2016-05-20 23:44 - 00663552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2016-06-15 10:00 - 2016-05-20 23:29 - 13815808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2016-06-15 10:00 - 2016-05-20 23:27 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2016-06-15 10:00 - 2016-05-20 23:25 - 00315392 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll
2016-06-15 10:00 - 2016-05-20 23:25 - 00145408 _____ (Microsoft Corporation) C:\WINDOWS\system32\iepeers.dll
2016-06-15 10:00 - 2016-05-20 23:21 - 00279040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtrans.dll
2016-06-15 10:00 - 2016-05-20 23:21 - 00128000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iepeers.dll
2016-06-15 10:00 - 2016-05-20 23:19 - 01032704 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcomm.dll
2016-06-15 10:00 - 2016-05-20 23:16 - 00880128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcomm.dll
2016-06-15 10:00 - 2016-05-20 23:14 - 04610048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2016-06-15 10:00 - 2016-05-20 23:12 - 00230400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webcheck.dll
2016-06-15 10:00 - 2016-05-20 23:11 - 15420928 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2016-06-15 10:00 - 2016-05-20 23:11 - 00262144 _____ (Microsoft Corporation) C:\WINDOWS\system32\webcheck.dll
2016-06-15 10:00 - 2016-05-20 23:09 - 00693248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2016-06-15 10:00 - 2016-05-20 23:09 - 00379392 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2016-06-15 10:00 - 2016-05-20 23:08 - 02055680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2016-06-15 10:00 - 2016-05-20 23:08 - 00806400 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2016-06-15 10:00 - 2016-05-20 23:06 - 02131968 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2016-06-15 10:00 - 2016-05-20 22:46 - 02597888 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2016-06-15 10:00 - 2016-05-20 22:42 - 02121216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2016-06-15 10:00 - 2016-05-20 22:38 - 01310208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2016-06-15 10:00 - 2016-05-20 22:38 - 00710144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2016-06-15 10:00 - 2016-05-20 22:34 - 01544192 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2016-06-15 10:00 - 2016-05-20 22:23 - 00800768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2016-06-15 10:00 - 2016-05-14 22:01 - 00363104 _____ (Microsoft Corporation) C:\WINDOWS\system32\ws2_32.dll
2016-06-15 10:00 - 2016-05-14 22:01 - 00320720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ws2_32.dll
2016-06-15 10:00 - 2016-05-14 01:07 - 00675328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
2016-06-15 10:00 - 2016-05-14 01:07 - 00416768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv.sys
2016-06-15 10:00 - 2016-05-14 01:07 - 00281088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netbt.sys
2016-06-15 10:00 - 2016-05-14 01:06 - 00243712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srvnet.sys
2016-06-15 10:00 - 2016-05-13 23:58 - 00339456 _____ (Microsoft Corporation) C:\WINDOWS\system32\mswsock.dll
2016-06-15 10:00 - 2016-05-13 23:45 - 00802816 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll
2016-06-15 10:00 - 2016-05-13 23:35 - 00286208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mswsock.dll
2016-06-15 10:00 - 2016-05-13 23:26 - 00631808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttp.dll
2016-06-15 10:00 - 2016-05-12 20:38 - 00135336 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpapi.dll
2016-06-15 10:00 - 2016-05-12 19:43 - 00115704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gpapi.dll
2016-06-15 10:00 - 2016-05-12 18:24 - 00678912 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpprefcl.dll
2016-06-15 10:00 - 2016-05-12 18:17 - 00331776 _____ (Microsoft Corporation) C:\WINDOWS\system32\polstore.dll
2016-06-15 10:00 - 2016-05-12 18:12 - 00039936 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpscript.dll
2016-06-15 10:00 - 2016-05-12 18:08 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\FwRemoteSvr.dll
2016-06-15 10:00 - 2016-05-12 18:07 - 01360896 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpsvc.dll
2016-06-15 10:00 - 2016-05-12 17:59 - 00398848 _____ (Microsoft Corporation) C:\WINDOWS\system32\IPSECSVC.DLL
2016-06-15 10:00 - 2016-05-12 17:48 - 00580096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gpprefcl.dll
2016-06-15 10:00 - 2016-05-12 17:43 - 00291328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\polstore.dll
2016-06-15 10:00 - 2016-05-12 17:40 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gpscript.dll
2016-06-15 10:00 - 2016-05-12 17:37 - 00050176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FwRemoteSvr.dll
2016-06-15 10:00 - 2016-01-31 21:17 - 00118624 _____ (Microsoft Corporation) C:\WINDOWS\system32\consent.exe
2016-06-15 10:00 - 2016-01-31 20:07 - 00110080 _____ (Microsoft Corporation) C:\WINDOWS\system32\appinfo.dll
2016-06-15 09:59 - 2016-06-03 19:11 - 00472576 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcasvc.dll
2016-06-15 09:59 - 2016-06-03 15:38 - 01413120 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2016-06-15 09:59 - 2016-06-02 19:51 - 00050352 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2016-06-15 09:59 - 2016-05-29 17:04 - 01204224 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2016-06-15 09:59 - 2016-05-29 17:04 - 00569856 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2016-06-15 09:59 - 2016-05-29 17:04 - 00544256 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2016-06-15 09:59 - 2016-05-29 17:04 - 00276480 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2016-06-15 09:59 - 2016-05-29 17:04 - 00265216 _____ (Microsoft Corporation) C:\WINDOWS\system32\centel.dll
2016-06-15 09:59 - 2016-05-29 17:04 - 00076800 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2016-06-15 09:59 - 2016-05-18 07:31 - 00372568 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2016-06-15 09:59 - 2016-05-18 07:31 - 00315224 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
2016-06-15 09:59 - 2016-05-14 01:09 - 04169216 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2016-06-15 09:59 - 2016-05-14 01:04 - 00044032 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2016-06-15 09:59 - 2016-05-14 00:19 - 00035840 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2016-06-15 09:59 - 2016-05-09 23:35 - 07075328 _____ (Microsoft Corporation) C:\WINDOWS\system32\glcndFilter.dll
2016-06-15 09:59 - 2016-05-09 22:56 - 05270016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\glcndFilter.dll
2016-06-15 09:59 - 2016-05-09 22:45 - 07793152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2016-06-15 09:59 - 2016-05-09 22:23 - 05265920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2016-06-15 09:59 - 2016-05-06 17:45 - 00748544 _____ (Microsoft Corporation) C:\WINDOWS\system32\StructuredQuery.dll
2016-06-15 09:59 - 2016-05-06 17:23 - 00503808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StructuredQuery.dll
2016-06-15 09:56 - 2016-05-19 01:15 - 01379040 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32.dll
2016-06-15 09:56 - 2016-05-18 22:35 - 01097216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32.dll
2016-06-14 17:48 - 2016-06-14 17:48 - 00000000 ____D D:\Users\Anthony\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Blender
2016-06-14 13:36 - 2016-06-14 13:36 - 00000000 ____D D:\Users\Anthony\Scania
2016-06-14 13:18 - 2016-06-22 11:32 - 00000000 ____D D:\Users\Anthony\Desktop\ZM3
2016-06-13 13:28 - 2016-06-13 13:28 - 00000000 ____D D:\Users\Anthony\Desktop\highpipes
2016-06-13 08:58 - 2016-06-13 09:03 - 00000000 ____D D:\Users\Anthony\AppData\Local\Deployment
2016-06-13 08:58 - 2016-06-13 08:58 - 00000000 ____D D:\Users\Anthony\AppData\Local\Apps\2.0
2016-06-13 08:52 - 2016-06-13 08:58 - 00000000 ____D D:\Users\Anthony\AppData\Local\MEGAsync
2016-06-13 08:52 - 2016-06-13 08:52 - 00000000 ____D D:\Users\Anthony\AppData\Local\Mega Limited
2016-06-09 17:30 - 2016-06-09 17:30 - 00000000 ____D C:\Program Files\Logitech
2016-06-02 18:22 - 2016-06-02 18:23 - 00000000 ____D D:\Users\Anthony\Documents\Lettre

==================== Un mois - Modifiés - fichiers et dossiers ========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2016-06-28 16:24 - 2013-08-22 17:20 - 00000000 ____D C:\WINDOWS\CbsTemp
2016-06-28 15:44 - 2015-10-26 21:11 - 00003598 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-903620719-2342569970-1390832242-1005
2016-06-28 14:32 - 2015-10-27 10:27 - 00003936 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{C5B9718B-E8C3-4A17-8F74-1AE49294028C}
2016-06-28 14:20 - 2015-10-27 13:59 - 00000000 ____D C:\Program Files (x86)\Steam
2016-06-28 14:06 - 2015-10-27 10:36 - 00000000 ____D D:\Users\Anthony\AppData\Roaming\Mumble
2016-06-28 14:03 - 2016-04-22 19:00 - 00000000 ____D D:\Users\Anthony\Documents\Euro Truck Simulator 2
2016-06-28 11:12 - 2013-08-22 17:36 - 00000000 ___HD C:\WINDOWS\system32\GroupPolicy
2016-06-28 11:12 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\SysWOW64\GroupPolicy
2016-06-28 10:44 - 2014-07-04 02:10 - 00879742 _____ C:\WINDOWS\system32\perfh00C.dat
2016-06-28 10:44 - 2014-07-04 02:10 - 00184416 _____ C:\WINDOWS\system32\perfc00C.dat
2016-06-28 10:44 - 2014-03-18 11:53 - 02046802 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2016-06-28 10:44 - 2013-08-22 15:36 - 00000000 ____D C:\WINDOWS\Inf
2016-06-28 10:37 - 2014-03-18 11:38 - 00000000 ____D C:\WINDOWS\SKB
2016-06-28 10:37 - 2013-08-22 16:45 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-06-28 08:14 - 2016-05-02 20:12 - 00000821 _____ D:\Users\Anthony\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TeamSpeak 3 Client.lnk
2016-06-28 08:14 - 2016-05-01 19:25 - 00000295 _____ D:\Users\Anthony\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Corbeille.lnk
2016-06-28 08:14 - 2015-11-17 13:46 - 00001013 _____ D:\Users\Anthony\Desktop\farming.lnk
2016-06-28 08:14 - 2015-10-28 14:12 - 00000954 _____ D:\Users\Anthony\Desktop\PhotoFiltre 7.lnk
2016-06-28 08:14 - 2015-10-26 21:06 - 00000469 _____ D:\Users\Anthony\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Documents.lnk
2016-06-28 08:14 - 2015-10-26 21:06 - 00000467 _____ D:\Users\Anthony\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pictures.lnk
2016-06-27 18:35 - 2016-01-16 11:36 - 00000000 ____D D:\Users\Anthony\Desktop\mod ets2
2016-06-27 14:50 - 2015-12-05 13:28 - 00000000 ____D D:\Users\Anthony\Desktop\ets2, photos, skin
2016-06-26 10:40 - 2015-10-27 16:39 - 00000000 ____D D:\Users\Anthony\AppData\Local\CrashDumps
2016-06-26 09:28 - 2015-10-26 21:06 - 00000000 ____D D:\Users\Anthony
2016-06-24 17:48 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\rescache
2016-06-24 11:00 - 2015-10-26 21:06 - 00000000 ____D D:\Users\Anthony\AppData\Local\Google
2016-06-24 10:56 - 2014-07-03 16:53 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2016-06-24 10:56 - 2014-07-03 16:53 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2016-06-24 10:56 - 2013-08-22 15:25 - 00262144 ___SH C:\WINDOWS\system32\config\BBI
2016-06-24 10:55 - 2013-08-22 17:36 - 00000000 ___RD C:\WINDOWS\ToastData
2016-06-23 08:43 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\AppReadiness
2016-06-21 15:03 - 2013-08-22 16:44 - 00395440 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2016-06-21 14:06 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\SysWOW64\setup
2016-06-21 14:06 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\SysWOW64\inetsrv
2016-06-21 14:06 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\system32\setup
2016-06-21 14:06 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\system32\inetsrv
2016-06-20 17:58 - 2015-11-25 18:28 - 00000000 ____D D:\Users\Anthony\AppData\Roaming\vlc
2016-06-20 14:13 - 2016-04-29 20:22 - 00000000 ____D D:\Users\Anthony\AppData\Roaming\Audacity
2016-06-18 13:56 - 2013-08-22 17:36 - 00000000 ___HD C:\Program Files\WindowsApps
2016-06-16 22:15 - 2015-10-29 10:36 - 00000000 ____D C:\WINDOWS\system32\appraiser
2016-06-16 15:18 - 2014-07-04 00:44 - 00000000 ____D C:\WINDOWS\system32\MRT
2016-06-16 15:14 - 2014-07-04 00:44 - 142482544 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2016-06-15 15:49 - 2015-10-26 21:06 - 00000000 ____D D:\Users\Anthony\AppData\Local\Packages
2016-06-14 19:13 - 2013-08-22 17:38 - 00828408 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2016-06-14 19:13 - 2013-08-22 17:38 - 00176632 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2016-06-14 17:50 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\system32\NDF
2016-06-13 19:31 - 2014-07-04 00:50 - 00484008 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2016-06-13 08:52 - 2013-08-22 17:36 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2016-06-07 08:43 - 2016-02-02 20:32 - 00000000 ____D D:\Users\Anthony\Documents\American Truck Simulator
2016-06-03 20:44 - 2015-11-17 08:49 - 00000000 ____D D:\Users\Anthony\AppData\Local\ElevatedDiagnostics
2016-06-02 18:22 - 2015-11-17 13:48 - 00000000 ____D D:\Users\Anthony\Documents\My Games
2016-05-29 10:27 - 2015-10-27 10:36 - 00000000 ____D C:\Program Files (x86)\Mumble

==================== Fichiers à la racine de certains dossiers =======

2016-04-25 15:13 - 2016-04-25 15:13 - 0161399 _____ () C:\Program Files (x86)\changelog.txt
2016-04-25 15:13 - 2016-04-25 15:13 - 0375336 _____ () C:\Program Files (x86)\createfileassoc.exe
2016-04-25 15:13 - 2016-04-25 15:13 - 0447256 _____ (TeamSpeak Systems GmbH) C:\Program Files (x86)\error_report.exe
2016-03-08 16:16 - 2016-03-08 16:16 - 2084352 _____ (The OpenSSL Project, http://www.openssl.org/) C:\Program Files (x86)\libeay32.dll
2013-10-05 00:58 - 2013-10-05 00:58 - 0660128 _____ (Microsoft Corporation) C:\Program Files (x86)\msvcp120.dll
2013-10-05 00:58 - 2013-10-05 00:58 - 0963232 _____ (Microsoft Corporation) C:\Program Files (x86)\msvcr120.dll
2015-08-27 10:07 - 2015-08-27 10:07 - 1704176 _____ (Overwolf) C:\Program Files (x86)\OverwolfTeamSpeakInstaller.exe
2016-04-25 15:13 - 2016-04-25 15:13 - 0474904 _____ (TeamSpeak Systems GmbH) C:\Program Files (x86)\package_inst.exe
2016-02-17 13:41 - 2016-02-17 13:41 - 0000321 _____ () C:\Program Files (x86)\plugin_sdk.html
2016-04-19 17:02 - 2016-04-19 17:02 - 5629952 _____ (The Qt Company Ltd) C:\Program Files (x86)\Qt5Core.dll
2016-04-19 17:18 - 2016-04-19 17:18 - 3935744 _____ (The Qt Company Ltd) C:\Program Files (x86)\Qt5Gui.dll
2016-04-19 17:03 - 2016-04-19 17:03 - 1094656 _____ (The Qt Company Ltd) C:\Program Files (x86)\Qt5Network.dll
2016-04-19 17:02 - 2016-04-19 17:02 - 0216576 _____ (The Qt Company Ltd) C:\Program Files (x86)\Qt5Sql.dll
2016-04-19 17:05 - 2016-04-19 17:05 - 5426176 _____ (The Qt Company Ltd) C:\Program Files (x86)\Qt5Widgets.dll
2016-04-25 15:12 - 2016-04-25 15:12 - 0174872 _____ () C:\Program Files (x86)\quazip.dll
2016-03-08 16:16 - 2016-03-08 16:16 - 0349696 _____ (The OpenSSL Project, http://www.openssl.org/) C:\Program Files (x86)\ssleay32.dll
2016-04-25 15:12 - 2016-04-25 15:12 - 11480344 _____ (TeamSpeak Systems GmbH) C:\Program Files (x86)\ts3client_win64.exe
2016-05-02 20:12 - 2016-05-02 20:12 - 0393390 _____ (TeamSpeak Systems GmbH) C:\Program Files (x86)\Uninstall.exe
2016-04-25 15:13 - 2016-04-25 15:13 - 1532184 _____ (TeamSpeak Systems GmbH) C:\Program Files (x86)\update.exe
2016-02-17 13:41 - 2016-02-17 13:41 - 0579975 _____ () C:\Program Files (x86)\usb.ids

Fichiers à déplacer ou supprimer:
====================
C:\Windows\Tasks\{21F17B17-8BDF-009A-9847-579731E5D5BC}.job


==================== Bamital & volsnap =================

(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)

C:\WINDOWS\system32\winlogon.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\wininit.exe => Le fichier est signé numériquement
C:\WINDOWS\explorer.exe => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\explorer.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\svchost.exe => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\svchost.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\services.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\User32.dll => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\User32.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\userinit.exe => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\userinit.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\rpcss.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\dnsapi.dll => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\dnsapi.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\Drivers\volsnap.sys => Le fichier est signé numériquement


LastRegBack: 2016-06-21 20:06

==================== Fin de FRST.txt ============================

Publicité


Signaler le contenu de ce document

Publicité