cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 20-07-2016
Exécuté par Kim (administrateur) sur TOSHIBA (21-07-2016 11:45:54)
Exécuté depuis C:\Users\Kim\Downloads
Profils chargés: Kim (Profils disponibles: Kim)
Platform: Windows 8.1 (Update) (X64) Langue: Français (France)
Internet Explorer Version 11 (Navigateur par défaut: FF)
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processus (Avec liste blanche) =================

(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)

(AMD) C:\Windows\System32\atiesrxx.exe
( ) C:\Windows\System32\lxcycoms.exe
(Yahoo! Inc.) C:\Program Files (x86)\Yahoo!\SoftwareUpdate\YahooAUService.exe
(Malwarebytes) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
(Malwarebytes) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(AMD) C:\Windows\System32\atieclxx.exe
(IvoSoft) C:\Program Files\Classic Shell\ClassicStartMenu.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Malwarebytes) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
() C:\Program Files (x86)\Lexmark 3400 Series\lxcymon.exe
(Lexmark International Inc.) C:\Program Files (x86)\Lexmark 3400 Series\ezprint.exe
(Yahoo! Inc.) C:\Program Files (x86)\Yahoo!\Messenger\YahooMessenger.exe
(Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Yahoo! Inc.) C:\Program Files (x86)\Yahoo!\Messenger\YahooMessenger.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
(Microsoft Corporation) C:\Windows\splwow64.exe


==================== Registre (Avec liste blanche) ===========================

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)

HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2778864 2014-08-06] (Synaptics Incorporated)
HKLM\...\Run: [lxcymon.exe] => C:\Program Files (x86)\Lexmark 3400 Series\lxcymon.exe [291504 2007-06-25] ()
HKLM\...\Run: [EzPrint] => C:\Program Files (x86)\Lexmark 3400 Series\ezprint.exe [82608 2007-06-25] (Lexmark International Inc.)
HKLM\...\Run: [LXCYCATS] => rundll32 C:\Windows\system32\spool\DRIVERS\x64\3\LXCYtime.dll,RunDLLEntry
HKLM\...\Run: [Classic Start Menu] => C:\Program Files\Classic Shell\ClassicStartMenu.exe [161728 2015-08-09] (IvoSoft)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [8900328 2016-07-15] (AVAST Software)
HKU\S-1-5-21-2215089850-1969247420-2738818625-1001\...\Run: [CCleaner Monitoring] => F:\CCleaner\CCleaner64.exe [6501656 2014-10-29] (Piriform Ltd)
HKU\S-1-5-21-2215089850-1969247420-2738818625-1001\...\Run: [Messenger (Yahoo!)] => C:\Program Files (x86)\Yahoo!\Messenger\YahooMessenger.exe [6595928 2012-05-25] (Yahoo! Inc.)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2016-07-15] (AVAST Software)
ShellIconOverlayIdentifiers: [ShareOverlay] -> {594D4122-1F87-41E2-96C7-825FB4796516} => C:\Program Files\Classic Shell\ClassicExplorer64.dll [2015-08-09] (IvoSoft)
ShellIconOverlayIdentifiers-x32: [ShareOverlay] -> {594D4122-1F87-41E2-96C7-825FB4796516} => C:\Program Files\Classic Shell\ClassicExplorer32.dll [2015-08-09] (IvoSoft)

==================== Internet (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)

Tcpip\Parameters: [DhcpNameServer] 192.168.0.254
Tcpip\..\Interfaces\{49C51EFE-69D5-475F-B42D-6E31982051BF}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{CD688B7C-2E20-4A78-B590-B91A1A8DA9B6}: [DhcpNameServer] 192.168.0.254

Internet Explorer:
==================
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://fr.yahoo.com/?fr=mkg029
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://fr.yahoo.com/?fr=mkg029
HKU\S-1-5-21-2215089850-1969247420-2738818625-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://hxxp://fr.yahoo.com/?fr=mkg029.yahoo.com
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-2215089850-1969247420-2738818625-1001 -> DefaultScope {DECA3892-BA8F-44b8-A993-A466AD694AE4} URL = hxxp://fr.search.yahoo.com/search?p={searchTerms}&fr=mkg028
SearchScopes: HKU\S-1-5-21-2215089850-1969247420-2738818625-1001 -> {DECA3892-BA8F-44b8-A993-A466AD694AE4} URL = hxxp://fr.search.yahoo.com/search?p={searchTerms}&fr=mkg028
BHO: ExplorerBHO Class -> {449D0D6E-2412-4E61-B68F-1CB625CD9E52} -> C:\Program Files\Classic Shell\ClassicExplorer64.dll [2015-08-09] (IvoSoft)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2016-07-15] (AVAST Software)
BHO: ClassicIEBHO Class -> {EA801577-E6AD-4BD5-8F71-4BE0154331A4} -> C:\Program Files\Classic Shell\ClassicIEDLL_64.dll [2015-08-09] (IvoSoft)
BHO-x32: &Yahoo! Toolbar Helper -> {02478D38-C3F9-4efb-9B51-7695ECA05670} -> C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn0\yt.dll [2013-04-01] (Yahoo! Inc.)
BHO-x32: Lexmark Barre d'outils -> {1017A80C-6F09-4548-A84D-EDD6AC9525F0} -> C:\Program Files\Lexmark Toolbar\toolband.dll [2006-08-09] ()
BHO-x32: ExplorerBHO Class -> {449D0D6E-2412-4E61-B68F-1CB625CD9E52} -> C:\Program Files\Classic Shell\ClassicExplorer32.dll [2015-08-09] (IvoSoft)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2016-07-15] (AVAST Software)
BHO-x32: ClassicIEBHO Class -> {EA801577-E6AD-4BD5-8F71-4BE0154331A4} -> C:\Program Files\Classic Shell\ClassicIEDLL_32.dll [2015-08-09] (IvoSoft)
Toolbar: HKLM - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer64.dll [2015-08-09] (IvoSoft)
Toolbar: HKLM-x32 - Lexmark Barre d'outils - {1017A80C-6F09-4548-A84D-EDD6AC9525F0} - C:\Program Files\Lexmark Toolbar\toolband.dll [2006-08-09] ()
Toolbar: HKLM-x32 - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer32.dll [2015-08-09] (IvoSoft)
Toolbar: HKLM-x32 - Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn0\yt.dll [2013-04-01] (Yahoo! Inc.)

FireFox:
========
FF ProfilePath: C:\Users\Kim\AppData\Roaming\Mozilla\Firefox\Profiles\dxcl0uyc.default
FF NewTab: about:newtab
FF DefaultSearchEngine: Yahoo! (Avast)
FF DefaultSearchUrl: hxxps://fr.search.yahoo.com/yhs/search
FF SearchEngineOrder.1: Yahoo! (Avast)
FF SelectedSearchEngine: Yahoo! (Avast)
FF Homepage: hxxps://fr.yahoo.com/?fr=hp-avast&type=avastbcl
FF Keyword.URL: hxxps://fr.search.yahoo.com/yhs/search
FF Plugin: @videolan.org/vlc,version=2.1.3 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2014-01-31] (VideoLAN)
FF Plugin-x32: @messenger.yahoo.com/YahooMessengerStatePlugin;version=1.0.0.6 -> C:\Program Files (x86)\Yahoo!\Shared\npYState.dll [2012-05-25] (Yahoo! Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-07-01] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-07-01] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll [2015-09-24] (Adobe Systems Inc.)
FF user.js: detected! => C:\Users\Kim\AppData\Roaming\Mozilla\Firefox\Profiles\dxcl0uyc.default\user.js [2016-07-18]
FF SearchPlugin: C:\Users\Kim\AppData\Roaming\Mozilla\Firefox\Profiles\dxcl0uyc.default\searchplugins\yahoo-avast.xml [2016-07-01]
FF Extension: Mozilla Archive Format - C:\Users\Kim\AppData\Roaming\Mozilla\Firefox\Profiles\dxcl0uyc.default\extensions\{7f57cf46-4467-4c2d-adfa-0cba7c507e54}.xpi [2016-07-18]
FF Extension: FunCyberTab Extension - C:\Users\Kim\AppData\Roaming\Mozilla\Firefox\Profiles\dxcl0uyc.default\Extensions\FunCyberTab-the-extension1@mozilla.com.xpi [2016-06-28]
FF Extension: Yahoo! Toolbar - C:\Users\Kim\AppData\Roaming\Mozilla\Firefox\Profiles\dxcl0uyc.default\Extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1} [2016-07-18] [non signé]
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2016-07-18]
FF HKLM\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF
FF Extension: Avast SafePrice - C:\Program Files\AVAST Software\Avast\SafePrice\FF [2016-07-18]
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF HKLM-x32\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF

Chrome:
=======
CHR Profile: C:\Users\Kim\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Slides) - C:\Users\Kim\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-07-01]
CHR Extension: (Google Docs) - C:\Users\Kim\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-07-01]
CHR Extension: (Google Drive) - C:\Users\Kim\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-07-01]
CHR Extension: (YouTube) - C:\Users\Kim\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-07-01]
CHR Extension: (Google Sheets) - C:\Users\Kim\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-07-01]
CHR Extension: (Google Docs hors connexion) - C:\Users\Kim\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-07-01]
CHR Extension: (Avast Online Security) - C:\Users\Kim\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2016-07-16]
CHR Extension: (Gmail) - C:\Users\Kim\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-07-01]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - hxxps://clients2.google.com/service/update2/crx

==================== Services (Avec liste blanche) ========================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [197128 2016-07-15] (AVAST Software)
R2 lxcy_device; C:\Windows\system32\lxcycoms.exe [566448 2007-06-20] ( )
R2 lxcy_device; C:\Windows\SysWOW64\lxcycoms.exe [537264 2007-06-20] ( )
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1514464 2016-03-10] (Malwarebytes)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1136608 2016-03-10] (Malwarebytes)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [366552 2015-07-07] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2015-07-07] (Microsoft Corporation)

===================== Pilotes (Avec liste blanche) ==========================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R3 AmdAS4; C:\Windows\System32\drivers\AmdAS4.sys [17504 2013-02-07] (Advanced Micro Devices, INC.)
R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [37656 2016-06-30] (AVAST Software)
R1 aswKbd; C:\Windows\system32\drivers\aswKbd.sys [37144 2016-06-30] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [108304 2016-06-30] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [103064 2016-06-30] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [74544 2016-06-30] (AVAST Software)
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1070904 2016-06-30] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [473592 2016-07-15] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [162904 2016-06-30] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [290088 2016-06-30] (AVAST Software)
R3 athr; C:\Windows\system32\DRIVERS\athwbx.sys [4226560 2014-10-17] (Qualcomm Atheros Communications, Inc.)
R3 AtiHDAudioService; C:\Windows\system32\drivers\AtihdWB6.sys [138240 2013-06-22] (Advanced Micro Devices)
S0 ebdrv; C:\Windows\System32\drivers\evbda.sys [3357024 2013-08-22] (Broadcom Corporation)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [27008 2016-03-10] (Malwarebytes)
R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [192216 2016-07-21] (Malwarebytes)
R3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [65408 2016-03-10] (Malwarebytes Corporation)
R1 sbnetsys; C:\Windows\system32\DRIVERS\sbnetsys.sys [44648 2015-04-17] (NT Kernel Resources)
R3 Thotkey; C:\Windows\System32\drivers\Thotkey.sys [32624 2013-08-19] (Windows (R) Win 7 DDK provider)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44560 2015-07-07] (Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\WdFilter.sys [270168 2015-07-07] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114520 2015-07-07] (Microsoft Corporation)

==================== NetSvcs (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)


==================== Un mois - Créés - fichiers et dossiers ========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2016-07-21 11:45 - 2016-07-21 11:46 - 00014608 _____ C:\Users\Kim\Downloads\FRST.txt
2016-07-21 11:37 - 2016-07-21 11:39 - 02392275 _____ (Farbar) C:\Users\Kim\Downloads\Non confirmé 580556.crdownload
2016-07-21 11:28 - 2016-07-21 11:28 - 00073705 _____ C:\Users\Kim\Desktop\ZHPDiag.txt
2016-07-21 11:13 - 2016-07-21 11:14 - 02102195 _____ C:\Users\Kim\Downloads\FRST64(1).exe.part
2016-07-21 10:46 - 2016-07-21 10:59 - 48750920 _____ C:\Users\Kim\Downloads\BDPUARLauncher_FR.exe
2016-07-21 10:44 - 2016-07-21 10:45 - 02229760 _____ C:\Users\Kim\Downloads\ZHPDiag3.exe
2016-07-20 18:58 - 2016-07-20 18:59 - 02393600 _____ (Farbar) C:\Users\Kim\Downloads\FRST64.exe
2016-07-20 17:12 - 2016-07-20 17:12 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdMtpDr_01_11_00.Wdf
2016-07-19 19:57 - 2016-07-19 19:57 - 00000000 ____D C:\Users\Kim\Documents\courriersmariagepieces
2016-07-19 15:47 - 2016-07-20 13:53 - 00000838 _____ C:\Users\Kim\ZHPCleaner.lnk
2016-07-19 13:09 - 2016-07-19 13:10 - 00001867 _____ C:\Users\Kim\ZHPFix.lnk
2016-07-19 13:09 - 2016-07-19 13:10 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ZHPFIX1
2016-07-19 13:09 - 2016-07-19 13:10 - 00000000 ____D C:\Program Files (x86)\ZHPFix
2016-07-19 13:07 - 2016-07-19 13:08 - 03521617 _____ (Nicolas Coolman ) C:\Users\Kim\Downloads\ZHPFix.exe
2016-07-19 12:53 - 2016-07-21 10:42 - 02230272 _____ C:\Users\Kim\ZHPDiag3.exe
2016-07-19 12:52 - 2016-07-21 10:42 - 00000663 _____ C:\Users\Kim\Desktop\ZHPDiag.lnk
2016-07-19 12:30 - 2016-07-19 16:08 - 00001120 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2016-07-18 12:17 - 2016-07-18 12:17 - 00001940 _____ C:\Users\Public\Desktop\Avast Free Antivirus.lnk
2016-07-18 12:16 - 2016-06-30 15:15 - 00390984 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2016-07-18 12:04 - 2016-07-18 12:06 - 00000000 ____D C:\Users\Kim\AppData\Roaming\Yahoo!
2016-07-18 12:04 - 2016-07-18 12:04 - 00000000 ____D C:\Users\Kim\AppData\LocalLow\Yahoo! Companion
2016-07-18 12:04 - 2016-07-18 12:04 - 00000000 ____D C:\Users\Kim\AppData\LocalLow\Yahoo!
2016-07-18 12:04 - 2016-07-18 12:04 - 00000000 ____D C:\ProgramData\Yahoo! Companion
2016-07-18 12:03 - 2016-07-18 12:04 - 00000000 ____D C:\ProgramData\Yahoo!
2016-07-18 12:03 - 2016-07-18 12:03 - 00001159 _____ C:\Users\Public\Desktop\Yahoo! Messenger.lnk
2016-07-18 12:03 - 2016-07-18 12:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Yahoo! Messenger
2016-07-18 11:58 - 2016-07-18 12:04 - 00000000 ____D C:\Program Files (x86)\Yahoo!
2016-07-18 11:26 - 2016-07-18 11:26 - 00426360 _____ (Yahoo! Inc.) C:\Users\Kim\Downloads\msgr11fr(1).exe
2016-07-18 11:00 - 2016-07-18 11:00 - 00242376 _____ C:\Users\Kim\Downloads\Firefox Setup Stub 47.0.1.exe
2016-07-18 10:54 - 2016-07-18 10:55 - 02839384 _____ C:\Users\Kim\Downloads\flash-player_setup.exe
2016-07-17 13:24 - 2016-07-17 13:33 - 00000000 ____D C:\AdwCleaner
2016-07-17 13:22 - 2016-07-17 13:22 - 03712064 _____ C:\Users\Kim\Downloads\adwcleaner_5.201.exe
2016-07-16 21:31 - 2016-07-16 21:31 - 00001120 _____ C:\Users\Kim\Malwarebytes Anti-Malware.lnk
2016-07-16 20:16 - 2016-07-16 20:17 - 02281472 _____ C:\Users\Kim\Downloads\ZHPCleaner.exe
2016-07-16 19:23 - 2016-07-21 11:25 - 00000000 ____D C:\Users\Kim\AppData\Roaming\ZHP
2016-07-16 18:19 - 2016-07-21 11:00 - 00192216 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2016-07-16 18:19 - 2016-07-19 16:08 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2016-07-16 18:19 - 2016-07-19 16:08 - 00000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware
2016-07-16 18:19 - 2016-07-16 18:19 - 00000000 ____D C:\ProgramData\Malwarebytes
2016-07-16 18:19 - 2016-03-10 14:09 - 00065408 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2016-07-16 18:19 - 2016-03-10 14:08 - 00140672 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamchameleon.sys
2016-07-16 18:19 - 2016-03-10 14:08 - 00027008 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys
2016-07-16 18:15 - 2016-07-16 18:15 - 00000000 ____D C:\Users\Kim\AppData\Local\CEF
2016-07-16 18:02 - 2016-07-02 06:29 - 00828408 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2016-07-16 18:02 - 2016-07-02 06:29 - 00176632 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2016-07-15 22:21 - 2016-07-21 11:44 - 00000000 ____D C:\Users\Kim\AppData\Local\ClassicShell
2016-07-15 22:20 - 2016-07-15 22:20 - 00000000 ____D C:\Users\Kim\AppData\Roaming\ClassicShell
2016-07-15 22:20 - 2016-07-15 22:20 - 00000000 ____D C:\ProgramData\ClassicShell
2016-07-15 22:13 - 2016-07-21 11:45 - 00000000 ____D C:\FRST
2016-07-15 22:12 - 2016-07-15 22:12 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Classic Shell
2016-07-15 22:12 - 2016-07-15 22:12 - 00000000 ____D C:\Program Files\Classic Shell
2016-07-15 22:02 - 2016-07-15 22:02 - 00002740 _____ C:\Windows\System32\Tasks\CCleanerSkipUAC
2016-07-15 01:12 - 2016-07-18 13:07 - 00000000 _____ C:\Windows\SysWOW64\last.dump
2016-07-13 09:35 - 2016-06-11 20:14 - 00572416 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2016-07-13 09:35 - 2016-06-11 20:11 - 02895360 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2016-07-13 09:35 - 2016-06-11 19:56 - 25812992 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2016-07-13 09:35 - 2016-06-11 19:56 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2016-07-13 09:35 - 2016-06-11 19:42 - 06047744 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2016-07-13 09:35 - 2016-06-11 19:23 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2016-07-13 09:35 - 2016-06-11 19:22 - 00497664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2016-07-13 09:35 - 2016-06-11 19:22 - 00145408 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2016-07-13 09:35 - 2016-06-11 19:21 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2016-07-13 09:35 - 2016-06-11 19:20 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2016-07-13 09:35 - 2016-06-11 19:13 - 02287104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2016-07-13 09:35 - 2016-06-11 19:12 - 20348928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2016-07-13 09:35 - 2016-06-11 19:12 - 01032704 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
2016-07-13 09:35 - 2016-06-11 19:07 - 00663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2016-07-13 09:35 - 2016-06-11 19:03 - 00262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2016-07-13 09:35 - 2016-06-11 19:01 - 00378880 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2016-07-13 09:35 - 2016-06-11 19:00 - 00806400 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2016-07-13 09:35 - 2016-06-11 19:00 - 00724992 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2016-07-13 09:35 - 2016-06-11 18:57 - 02131456 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2016-07-13 09:35 - 2016-06-11 18:44 - 00128000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2016-07-13 09:35 - 2016-06-11 18:43 - 00279040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2016-07-13 09:35 - 2016-06-11 18:38 - 00880128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll
2016-07-13 09:35 - 2016-06-11 18:33 - 00230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2016-07-13 09:35 - 2016-06-11 18:31 - 04608000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2016-07-13 09:35 - 2016-06-11 18:31 - 00692736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2016-07-13 09:35 - 2016-06-11 18:31 - 00330752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2016-07-13 09:35 - 2016-06-11 18:30 - 15409664 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2016-07-13 09:35 - 2016-06-11 18:29 - 02055680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2016-07-13 09:35 - 2016-06-11 18:26 - 02869248 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2016-07-13 09:35 - 2016-06-11 18:15 - 13806080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2016-07-13 09:35 - 2016-06-11 18:12 - 01550848 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2016-07-13 09:35 - 2016-06-11 18:02 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2016-07-13 09:35 - 2016-06-11 17:59 - 02392576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2016-07-13 09:35 - 2016-06-11 17:56 - 01315840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2016-07-13 09:35 - 2016-06-11 17:56 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2016-07-13 09:32 - 2016-06-11 21:45 - 07445856 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2016-07-13 09:30 - 2016-06-25 22:05 - 00050368 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe
2016-07-13 09:30 - 2016-06-25 20:13 - 00165376 _____ (Microsoft Corporation) C:\Windows\system32\inetpp.dll
2016-07-13 09:30 - 2016-06-25 18:24 - 00345600 _____ (Microsoft Corporation) C:\Windows\system32\ntprint.dll
2016-07-13 09:30 - 2016-06-25 18:15 - 01094656 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll
2016-07-13 09:30 - 2016-06-25 18:13 - 00864256 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll
2016-07-13 09:30 - 2016-06-25 18:05 - 00306176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntprint.dll
2016-07-13 09:30 - 2016-06-22 15:48 - 00268800 _____ (Microsoft Corporation) C:\Windows\system32\centel.dll
2016-07-13 09:30 - 2016-06-21 20:32 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\poqexec.exe
2016-07-13 09:30 - 2016-06-21 16:12 - 00129536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\poqexec.exe
2016-07-13 09:30 - 2016-06-21 15:48 - 01490432 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2016-07-13 09:30 - 2016-06-21 15:48 - 01208320 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2016-07-13 09:30 - 2016-06-21 15:48 - 00571904 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2016-07-13 09:30 - 2016-06-21 15:48 - 00544256 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2016-07-13 09:30 - 2016-06-21 15:48 - 00294912 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2016-07-13 09:30 - 2016-06-21 15:48 - 00219136 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
2016-07-13 09:30 - 2016-06-21 15:48 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2016-07-13 09:30 - 2016-01-30 21:50 - 00477184 _____ (Microsoft Corporation) C:\Windows\system32\puiobj.dll
2016-07-13 09:30 - 2016-01-30 21:00 - 00192512 _____ (Microsoft Corporation) C:\Windows\system32\puiapi.dll
2016-07-13 09:30 - 2016-01-30 20:48 - 00269312 _____ (Microsoft Corporation) C:\Windows\system32\DafPrintProvider.dll
2016-07-13 09:30 - 2016-01-30 20:18 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\puiobj.dll
2016-07-13 09:30 - 2016-01-30 19:48 - 00167424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\puiapi.dll
2016-07-13 09:30 - 2016-01-30 19:41 - 00203776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DafPrintProvider.dll
2016-07-13 09:28 - 2016-05-25 15:22 - 00875712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcr120_clr0400.dll
2016-07-13 09:28 - 2016-05-25 15:22 - 00536768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcp120_clr0400.dll
2016-07-13 09:28 - 2016-05-25 15:12 - 00869576 _____ (Microsoft Corporation) C:\Windows\system32\msvcr120_clr0400.dll
2016-07-13 09:28 - 2016-05-25 15:12 - 00678600 _____ (Microsoft Corporation) C:\Windows\system32\msvcp120_clr0400.dll
2016-07-13 09:25 - 2016-06-10 23:35 - 04167680 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2016-07-12 18:41 - 2016-07-12 18:41 - 00969274 _____ C:\Users\Kim\Downloads\C360_2015-06-25-09-56-17-036.pdf
2016-07-11 12:37 - 2016-07-11 12:37 - 00020029 _____ C:\Users\Kim\Documents\cassationrevision12.07.2016.odt
2016-07-07 14:13 - 2016-07-07 14:13 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_LocationProvider_01_11_00.Wdf
2016-07-04 11:39 - 2016-07-04 11:39 - 00017038 _____ C:\Users\Kim\Documents\conseilau droitparis2.odt
2016-07-04 11:14 - 2016-07-04 12:17 - 00015781 _____ C:\Users\Kim\Documents\conseil au droitsParis1.odt
2016-07-04 08:27 - 2016-07-04 08:27 - 00000000 ____D C:\Users\Kim\AppData\Roaming\Macromedia
2016-07-02 14:53 - 2016-07-02 14:53 - 00013123 _____ C:\Users\Kim\Documents\Sans nom 1.odt
2016-07-02 14:00 - 2016-07-02 14:00 - 00003886 _____ C:\Windows\System32\Tasks\Adobe Acrobat Update Task
2016-07-01 11:54 - 2016-07-01 11:54 - 00002291 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-07-01 11:54 - 2016-07-01 11:54 - 00002279 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2016-07-01 11:43 - 2016-07-21 10:54 - 00001092 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2016-07-01 11:43 - 2016-07-21 09:33 - 00001088 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2016-07-01 11:43 - 2016-07-09 19:21 - 00000000 ____D C:\Users\Kim\AppData\Local\Google
2016-07-01 11:43 - 2016-07-01 12:49 - 00004064 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2016-07-01 11:43 - 2016-07-01 12:49 - 00003828 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2016-07-01 11:43 - 2016-07-01 11:54 - 00000000 ____D C:\Program Files (x86)\Google
2016-07-01 10:40 - 2016-07-01 10:40 - 00000000 ____D C:\Program Files\Common Files\Atheros
2016-07-01 10:39 - 2015-01-06 05:01 - 00072192 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndproxy.sys
2016-07-01 10:39 - 2015-01-06 04:59 - 00080896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wanarp.sys
2016-07-01 10:39 - 2015-01-06 03:12 - 00185856 _____ (Microsoft Corporation) C:\Windows\system32\rascfg.dll
2016-07-01 10:39 - 2015-01-06 03:02 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rascfg.dll
2016-07-01 10:36 - 2016-05-29 09:08 - 22361344 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2016-07-01 10:36 - 2016-05-28 20:31 - 19788688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2016-07-01 10:36 - 2016-05-19 01:18 - 00563024 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2016-07-01 10:36 - 2016-05-19 01:18 - 00397232 _____ (Microsoft Corporation) C:\Windows\system32\bcryptprimitives.dll
2016-07-01 10:36 - 2016-05-19 01:16 - 00178016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2016-07-01 10:36 - 2016-05-19 00:28 - 00340880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcryptprimitives.dll
2016-07-01 10:36 - 2016-05-18 23:54 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\certenc.dll
2016-07-01 10:36 - 2016-05-18 23:33 - 00445440 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2016-07-01 10:36 - 2016-05-18 23:15 - 00044032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certenc.dll
2016-07-01 10:36 - 2016-05-18 22:59 - 00324096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll
2016-07-01 10:36 - 2016-05-18 22:56 - 01291776 _____ (Microsoft Corporation) C:\Windows\system32\certutil.exe
2016-07-01 10:36 - 2016-05-18 22:33 - 01060352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certutil.exe
2016-07-01 10:36 - 2016-05-18 22:28 - 02635264 _____ (Microsoft Corporation) C:\Windows\system32\CertEnroll.dll
2016-07-01 10:36 - 2016-05-18 22:16 - 02317824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CertEnroll.dll
2016-07-01 10:36 - 2016-05-14 22:26 - 00136904 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2016-07-01 10:36 - 2016-05-14 07:19 - 01134768 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2016-07-01 10:36 - 2016-05-14 01:08 - 00111616 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\hidclass.sys
2016-07-01 10:36 - 2016-05-14 01:08 - 00032768 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\hidusb.sys
2016-07-01 10:36 - 2016-05-14 01:08 - 00032512 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\hidparse.sys
2016-07-01 10:36 - 2016-05-14 00:24 - 00862720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2016-07-01 10:36 - 2016-05-13 23:42 - 03667968 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2016-07-01 10:36 - 2016-05-13 23:30 - 00035840 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2016-07-01 10:36 - 2016-05-13 23:29 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2016-07-01 10:36 - 2016-05-13 23:27 - 00409088 _____ (Microsoft Corporation) C:\Windows\system32\WUSettingsProvider.dll
2016-07-01 10:36 - 2016-05-13 23:27 - 00095744 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2016-07-01 10:36 - 2016-05-13 23:26 - 02230784 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2016-07-01 10:36 - 2016-05-13 23:26 - 00897024 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2016-07-01 10:36 - 2016-05-13 23:18 - 00124928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll
2016-07-01 10:36 - 2016-05-13 23:18 - 00029696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe
2016-07-01 10:36 - 2016-05-13 23:16 - 00727040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2016-07-01 10:36 - 2016-05-13 23:16 - 00081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
2016-07-01 10:36 - 2016-05-12 20:36 - 00034600 _____ (Microsoft Corporation) C:\Windows\system32\UserAccountBroker.exe
2016-07-01 10:36 - 2016-05-12 19:39 - 00030984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UserAccountBroker.exe
2016-07-01 10:36 - 2016-05-12 19:37 - 00087552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netvsc63.sys
2016-07-01 10:36 - 2016-05-11 04:24 - 00107984 _____ (Microsoft Corporation) C:\Windows\system32\ncryptsslp.dll
2016-07-01 10:36 - 2016-05-11 04:24 - 00091416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncryptsslp.dll
2016-07-01 10:36 - 2016-05-06 23:59 - 00331608 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Classpnp.sys
2016-07-01 10:36 - 2016-05-06 19:13 - 00138240 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dfsc.sys
2016-07-01 10:36 - 2016-05-05 20:28 - 01661072 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll
2016-07-01 10:36 - 2016-05-05 19:39 - 01212256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ole32.dll
2016-07-01 10:36 - 2016-05-05 19:18 - 00065024 _____ (Microsoft Corporation) C:\Windows\system32\msiexec.exe
2016-07-01 10:36 - 2016-05-05 19:02 - 03320832 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2016-07-01 10:36 - 2016-05-05 18:37 - 00059904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msiexec.exe
2016-07-01 10:36 - 2016-05-05 18:34 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\olepro32.dll
2016-07-01 10:36 - 2016-05-05 18:29 - 03607040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2016-07-01 10:36 - 2016-05-05 17:28 - 02778624 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2016-07-01 10:36 - 2016-05-05 17:16 - 02464768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2016-07-01 10:36 - 2016-04-16 15:56 - 01080320 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
2016-07-01 10:35 - 2016-04-10 07:35 - 00551256 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\vhdmp.sys
2016-07-01 10:35 - 2016-04-10 00:15 - 00026112 _____ (Microsoft Corporation) C:\Windows\system32\wfapigp.dll
2016-07-01 10:35 - 2016-04-10 00:14 - 00306176 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Geolocation.dll
2016-07-01 10:35 - 2016-04-10 00:10 - 00816128 _____ (Microsoft Corporation) C:\Windows\system32\rpcss.dll
2016-07-01 10:35 - 2016-04-10 00:09 - 00754176 _____ (Microsoft Corporation) C:\Windows\system32\FirewallAPI.dll
2016-07-01 10:35 - 2016-04-10 00:02 - 00346112 _____ (Microsoft Corporation) C:\Windows\system32\LocationApi.dll
2016-07-01 10:35 - 2016-04-09 23:59 - 00218112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Devices.Geolocation.dll
2016-07-01 10:35 - 2016-04-09 23:59 - 00020480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wfapigp.dll
2016-07-01 10:35 - 2016-04-09 23:56 - 00543232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FirewallAPI.dll
2016-07-01 10:35 - 2016-04-09 23:55 - 00881152 _____ (Microsoft Corporation) C:\Windows\system32\MPSSVC.dll
2016-07-01 10:35 - 2016-04-09 23:52 - 00281088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LocationApi.dll
2016-07-01 10:35 - 2016-04-07 18:34 - 00987136 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2016-07-01 10:35 - 2016-04-07 18:06 - 00927744 _____ (Microsoft Corporation) C:\Windows\system32\iphlpsvc.dll
2016-07-01 10:35 - 2016-04-07 17:36 - 00800768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2016-07-01 10:35 - 2016-04-06 23:21 - 00114528 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mup.sys
2016-07-01 10:35 - 2016-04-06 20:20 - 00402432 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdbss.sys
2016-07-01 10:35 - 2016-04-06 20:17 - 18825216 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.dll
2016-07-01 10:35 - 2016-04-06 18:25 - 15158272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.dll
2016-07-01 10:35 - 2016-04-06 00:37 - 00205824 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndiswan.sys
2016-07-01 10:35 - 2016-04-02 15:58 - 00108032 _____ (Microsoft Corporation) C:\Windows\system32\BdeHdCfgLib.dll
2016-07-01 10:35 - 2016-04-01 19:40 - 00322048 _____ (Microsoft Corporation) C:\Windows\system32\fvecpl.dll
2016-07-01 10:35 - 2016-04-01 19:00 - 00840704 _____ (Microsoft Corporation) C:\Windows\system32\netlogon.dll
2016-07-01 10:35 - 2016-04-01 18:53 - 00348672 _____ (Microsoft Corporation) C:\Windows\system32\bdesvc.dll
2016-07-01 10:35 - 2016-04-01 18:50 - 00737280 _____ (Microsoft Corporation) C:\Windows\system32\fveapi.dll
2016-07-01 10:35 - 2016-04-01 18:41 - 00696832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netlogon.dll
2016-07-01 10:35 - 2016-02-04 18:57 - 00018944 _____ (Microsoft Corporation) C:\Windows\system32\httpprxp.dll
2016-07-01 10:35 - 2016-02-04 18:49 - 00125440 _____ (Microsoft Corporation) C:\Windows\system32\httpprxm.dll
2016-07-01 10:35 - 2016-02-04 18:39 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\adhsvc.dll
2016-07-01 10:33 - 2015-12-16 19:11 - 01200128 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Globalization.dll
2016-07-01 10:33 - 2015-12-16 18:51 - 00868864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Globalization.dll
2016-07-01 10:33 - 2015-10-22 19:43 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\kbdgeoqw.dll
2016-07-01 10:33 - 2015-10-22 19:43 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDAZST.DLL
2016-07-01 10:33 - 2015-10-22 19:43 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDAZEL.DLL
2016-07-01 10:33 - 2015-10-22 19:43 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDAZE.DLL
2016-07-01 10:33 - 2015-10-22 18:59 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kbdgeoqw.dll
2016-07-01 10:33 - 2015-10-22 18:59 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDAZST.DLL
2016-07-01 10:33 - 2015-10-22 18:59 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDAZEL.DLL
2016-07-01 10:33 - 2015-10-22 18:59 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDAZE.DLL
2016-07-01 10:33 - 2015-10-22 18:21 - 00323072 _____ (Microsoft Corporation) C:\Windows\system32\GlobCollationHost.dll
2016-07-01 10:33 - 2015-10-22 17:58 - 00200704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GlobCollationHost.dll
2016-07-01 10:33 - 2015-10-22 16:08 - 00513456 _____ C:\Windows\SysWOW64\locale.nls
2016-07-01 10:33 - 2015-10-22 16:08 - 00513456 _____ C:\Windows\system32\locale.nls
2016-07-01 10:33 - 2014-11-17 22:17 - 00672984 _____ (Microsoft Corporation) C:\Windows\system32\MDMAgent.exe
2016-07-01 10:33 - 2014-11-14 08:54 - 00463872 _____ (Microsoft Corporation) C:\Windows\system32\SystemSettings.Handlers.dll
2016-07-01 10:23 - 2015-05-01 03:13 - 06521800 _____ (Microsoft Corporation) C:\Windows\system32\sppsvc.exe
2016-07-01 10:23 - 2015-05-01 03:13 - 01488000 _____ (Microsoft Corporation) C:\Windows\system32\sppobjs.dll
2016-07-01 10:23 - 2015-05-01 03:13 - 00261376 _____ (Microsoft Corporation) C:\Windows\system32\sppwinob.dll
2016-07-01 10:22 - 2014-11-15 21:05 - 00801584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfplat.dll
2016-07-01 10:22 - 2014-11-15 08:29 - 00962216 _____ (Microsoft Corporation) C:\Windows\system32\mfplat.dll
2016-07-01 10:22 - 2014-11-14 08:57 - 01027584 _____ (Microsoft Corporation) C:\Windows\system32\MFMediaEngine.dll
2016-07-01 10:22 - 2014-11-14 07:03 - 00885760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFMediaEngine.dll
2016-07-01 10:22 - 2014-11-10 04:57 - 00096768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\agilevpn.sys
2016-07-01 10:22 - 2014-11-10 03:20 - 00420864 _____ (Microsoft Corporation) C:\Windows\system32\vpnike.dll
2016-07-01 10:22 - 2014-11-10 03:08 - 00702464 _____ (Microsoft Corporation) C:\Windows\system32\rasapi32.dll
2016-07-01 10:22 - 2014-11-10 02:57 - 00624640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rasapi32.dll
2016-07-01 10:22 - 2014-11-08 06:00 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndistapi.sys
2016-07-01 10:22 - 2014-11-08 05:56 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\kmddsp.tsp
2016-07-01 10:22 - 2014-11-08 05:56 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\rasmxs.dll
2016-07-01 10:22 - 2014-11-08 05:56 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\rasser.dll
2016-07-01 10:22 - 2014-11-08 05:24 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\rasdiag.dll
2016-07-01 10:22 - 2014-11-08 05:13 - 00039424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kmddsp.tsp
2016-07-01 10:22 - 2014-11-08 05:13 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rasmxs.dll
2016-07-01 10:22 - 2014-11-08 05:13 - 00022528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rasser.dll
2016-07-01 10:22 - 2014-11-08 04:48 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rasdiag.dll
2016-07-01 10:22 - 2014-11-08 04:03 - 00733696 _____ (Microsoft Corporation) C:\Windows\system32\SkyDriveTelemetry.dll
2016-07-01 10:22 - 2014-11-08 03:58 - 04837376 _____ (Microsoft Corporation) C:\Windows\system32\SyncEngine.dll
2016-07-01 10:22 - 2014-11-08 03:49 - 01154048 _____ (Microsoft Corporation) C:\Windows\system32\SkyDrive.exe
2016-07-01 10:22 - 2014-11-05 04:12 - 00211968 _____ (Microsoft Corporation) C:\Windows\system32\QSHVHOST.DLL
2016-07-01 10:22 - 2014-11-05 04:12 - 00128000 _____ (Microsoft Corporation) C:\Windows\system32\QSVRMGMT.DLL
2016-07-01 10:22 - 2014-11-05 04:06 - 00514048 _____ (Microsoft Corporation) C:\Windows\system32\DevicePairing.dll
2016-07-01 10:22 - 2014-11-05 03:44 - 00657920 _____ (Microsoft Corporation) C:\Windows\system32\dnsapi.dll
2016-07-01 10:22 - 2014-11-05 03:43 - 00252416 _____ (Microsoft Corporation) C:\Windows\system32\dnsrslvr.dll
2016-07-01 10:22 - 2014-11-05 03:39 - 00155648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\QSHVHOST.DLL
2016-07-01 10:22 - 2014-11-05 03:39 - 00094208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\QSVRMGMT.DLL
2016-07-01 10:22 - 2014-11-05 03:33 - 00465408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DevicePairing.dll
2016-07-01 10:22 - 2014-11-05 03:21 - 00658432 _____ (Microsoft Corporation) C:\Windows\system32\WSDApi.dll
2016-07-01 10:22 - 2014-11-05 03:20 - 00498688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dnsapi.dll
2016-07-01 10:22 - 2014-11-05 03:14 - 00309760 _____ (Microsoft Corporation) C:\Windows\system32\WSDMon.dll
2016-07-01 10:22 - 2014-11-05 03:06 - 00555520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSDApi.dll
2016-07-01 10:22 - 2014-11-04 21:33 - 00058176 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dam.sys
2016-07-01 10:22 - 2014-11-04 08:27 - 00128512 _____ (Microsoft Corporation) C:\Windows\splwow64.exe
2016-07-01 10:22 - 2014-11-04 07:01 - 00827392 _____ (Microsoft Corporation) C:\Windows\system32\spoolsv.exe
2016-07-01 10:22 - 2014-10-29 03:55 - 00242176 _____ (Microsoft Corporation) C:\Windows\system32\WinSCard.dll
2016-07-01 10:22 - 2014-10-29 03:13 - 00169984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WinSCard.dll
2016-07-01 10:22 - 2014-10-21 03:59 - 00016896 _____ (Microsoft Corporation) C:\Windows\system32\eventcls.dll
2016-07-01 10:22 - 2014-10-21 03:19 - 00015360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\eventcls.dll
2016-07-01 10:22 - 2014-10-21 02:50 - 00074752 _____ (Microsoft Corporation) C:\Windows\system32\vsstrace.dll
2016-07-01 10:22 - 2014-10-21 02:31 - 01574400 _____ (Microsoft Corporation) C:\Windows\system32\vssapi.dll
2016-07-01 10:22 - 2014-10-21 02:31 - 00055296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vsstrace.dll
2016-07-01 10:22 - 2014-10-21 02:20 - 01142272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vssapi.dll
2016-07-01 10:22 - 2014-10-17 06:56 - 00039744 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\intelpep.sys
2016-07-01 10:22 - 2014-10-17 05:35 - 00086336 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pdc.sys
2016-07-01 10:21 - 2015-06-10 00:39 - 00081920 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\BTHUSB.SYS
2016-07-01 10:21 - 2015-06-10 00:39 - 00053248 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\bthenum.sys
2016-07-01 10:21 - 2015-06-10 00:38 - 01201664 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\bthport.sys
2016-06-30 15:15 - 2016-06-30 15:15 - 00053208 _____ (AVAST Software) C:\Windows\avastSS.scr
2016-06-30 14:56 - 2016-07-02 08:41 - 00018729 _____ C:\Users\Kim\Documents\ELOGIE30.06.odt
2016-06-30 14:36 - 2016-07-01 11:34 - 00022109 _____ C:\Users\Kim\Documents\IARDBANQUEPOSTALE30.06.odt
2016-06-30 10:47 - 2016-06-30 10:47 - 00008192 _____ C:\Windows\system32\config\userdiff
2016-06-30 09:09 - 2016-06-30 11:01 - 00009528 _____ C:\Windows\diagwrn.xml
2016-06-30 09:09 - 2016-06-30 11:01 - 00009528 _____ C:\Windows\diagerr.xml
2016-06-29 16:52 - 2016-06-29 16:54 - 07574872 _____ (TreeCardGames ) C:\Users\Kim\Downloads\123freesolitaire-v103-setup(1).exe
2016-06-28 18:34 - 2016-07-12 19:16 - 00000000 ____D C:\Users\Kim\Downloads\XXX
2016-06-28 18:33 - 2016-06-28 18:33 - 00000000 ____D C:\Program Files (x86)\Rene.E Laboratory
2016-06-28 18:25 - 2016-06-28 18:25 - 00000000 ____D C:\ProgramData\TreeCardGames
2016-06-28 18:24 - 2016-07-01 10:59 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\123 Free Solitaire
2016-06-28 18:24 - 2016-06-30 19:12 - 00001120 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\123 Free Solitaire.lnk
2016-06-28 18:24 - 2016-06-30 19:12 - 00001108 _____ C:\Users\Public\Desktop\123 Free Solitaire.lnk
2016-06-28 18:24 - 2016-06-30 19:12 - 00000000 ____D C:\Program Files (x86)\123 Free Solitaire
2016-06-28 18:24 - 2016-06-28 18:24 - 00000000 ____D C:\Users\Kim\AppData\Roaming\TreeCardGames
2016-06-28 18:19 - 2016-06-28 18:19 - 00000000 ____D C:\Users\Kim\Documents\My Data Files
2016-06-28 18:18 - 2016-06-28 18:19 - 00000000 ____D C:\ProgramData\Wondershare
2016-06-28 18:18 - 2016-06-28 18:18 - 00000000 ____D C:\Users\Kim\AppData\Local\Wondershare
2016-06-28 18:18 - 2016-06-28 18:18 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wondershare
2016-06-28 18:18 - 2016-06-28 18:18 - 00000000 ____D C:\Program Files (x86)\Wondershare
2016-06-28 18:17 - 2016-06-28 18:17 - 00000000 ____D C:\Users\Public\Documents\Wondershare
2016-06-28 17:56 - 2021-10-31 19:57 - 00689664 _____ (AdminSystem Software Limited) C:\Windows\system32\ANPOP.dll
2016-06-28 17:56 - 2016-07-01 10:59 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Mail Recovery
2016-06-28 17:56 - 2016-06-28 18:02 - 00000000 ____D C:\Program Files\Windows Mail Recovery
2016-06-22 08:52 - 2016-04-12 17:46 - 14467584 _____ (Microsoft Corporation) C:\Windows\system32\twinui.dll
2016-06-22 08:52 - 2016-04-12 17:30 - 12879872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.dll
2016-06-22 07:51 - 2016-07-18 11:05 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2016-06-22 07:37 - 2016-07-20 18:27 - 00000000 ____D C:\Users\Kim\Documents\Bandicam
2016-06-22 07:37 - 2016-06-22 07:37 - 00000000 ____D C:\Users\Kim\AppData\Roaming\BANDISOFT
2016-06-22 07:36 - 2016-07-01 10:59 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bandicam
2016-06-22 07:36 - 2016-06-22 07:36 - 00001006 _____ C:\Users\Public\Desktop\Bandicam.lnk
2016-06-22 07:35 - 2016-06-22 07:36 - 00000000 ____D C:\Program Files (x86)\Bandicam
2016-06-22 07:35 - 2016-06-22 07:35 - 00000000 ____D C:\Program Files (x86)\BandiMPEG1
2016-06-22 07:33 - 2016-06-22 07:34 - 15619088 _____ (Bandisoft) C:\Users\Kim\Downloads\bandicam_3-1-0-1064_fr_383314.exe
2016-06-21 20:54 - 2016-06-30 15:28 - 00001152 _____ C:\Users\Public\Desktop\Lexmark Imaging Studio - 3400 Series.LNK
2016-06-21 20:54 - 2016-06-21 20:54 - 00000000 ____D C:\Program Files\Lexmark Toolbar
2016-06-21 20:50 - 2016-06-21 21:07 - 00000000 ____D C:\Program Files\lx_cats
2016-06-21 20:48 - 2016-07-01 10:59 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lexmark 3400 Series
2016-06-21 20:48 - 2016-06-30 15:24 - 00000000 ____D C:\Program Files (x86)\Lexmark 3400 Series
2016-06-21 20:48 - 2016-06-21 20:48 - 00000000 ____D C:\ProgramData\Ezprint
2016-06-21 20:48 - 2016-06-21 20:48 - 00000000 ____D C:\Program Files\Lexmark 3400 Series
2016-06-21 20:48 - 2007-06-20 06:29 - 00180912 _____ ( ) C:\Windows\SysWOW64\lxcyppls.exe
2016-06-21 20:48 - 2007-06-20 06:28 - 00537264 _____ ( ) C:\Windows\SysWOW64\lxcycoms.exe
2016-06-21 20:48 - 2007-06-20 06:28 - 00385712 _____ ( ) C:\Windows\SysWOW64\lxcyih.exe
2016-06-21 20:48 - 2007-06-20 06:28 - 00381616 _____ ( ) C:\Windows\SysWOW64\lxcycfg.exe
2016-06-21 20:48 - 2007-06-20 06:18 - 00001834 _____ C:\Windows\SysWOW64\lxcy.loc
2016-06-21 20:48 - 2007-05-17 07:25 - 00200704 _____ (Lexmark International, Inc.) C:\Windows\SysWOW64\lxcyinsb.dll
2016-06-21 20:48 - 2007-05-17 07:24 - 00176128 _____ (Lexmark International, Inc.) C:\Windows\SysWOW64\lxcyins.dll
2016-06-21 20:48 - 2007-05-17 07:24 - 00086016 _____ (Lexmark International, Inc.) C:\Windows\SysWOW64\lxcycub.dll
2016-06-21 20:48 - 2007-05-17 07:24 - 00077824 _____ (Lexmark International, Inc.) C:\Windows\SysWOW64\lxcycu.dll
2016-06-21 20:48 - 2007-05-17 07:23 - 00462848 _____ (Lexmark International, Inc.) C:\Windows\SysWOW64\lxcyutil.dll
2016-06-21 20:48 - 2007-04-22 22:11 - 00385024 _____ () C:\Windows\SysWOW64\lxcycomx.dll
2016-06-21 20:48 - 2007-04-04 11:40 - 00643072 _____ ( ) C:\Windows\SysWOW64\lxcypmui.dll
2016-06-21 20:48 - 2007-04-04 11:39 - 01224704 _____ ( ) C:\Windows\SysWOW64\lxcyserv.dll
2016-06-21 20:48 - 2007-04-04 11:34 - 00421888 _____ ( ) C:\Windows\SysWOW64\lxcycomm.dll
2016-06-21 20:48 - 2007-04-04 11:32 - 00585728 _____ ( ) C:\Windows\SysWOW64\lxcylmpm.dll
2016-06-21 20:48 - 2007-04-04 11:31 - 00397312 _____ ( ) C:\Windows\SysWOW64\lxcyiesc.dll
2016-06-21 20:48 - 2007-04-04 11:31 - 00274432 _____ C:\Windows\SysWOW64\lxcyinst.dll
2016-06-21 20:48 - 2007-04-04 11:29 - 00094208 _____ ( ) C:\Windows\SysWOW64\lxcypplc.dll
2016-06-21 20:48 - 2007-04-04 11:28 - 00684032 _____ ( ) C:\Windows\SysWOW64\lxcycomc.dll
2016-06-21 20:48 - 2007-04-04 11:28 - 00163840 _____ ( ) C:\Windows\SysWOW64\lxcyprox.dll
2016-06-21 20:48 - 2007-04-04 11:22 - 00413696 _____ ( ) C:\Windows\SysWOW64\lxcyinpa.dll
2016-06-21 20:48 - 2007-04-04 11:21 - 00995328 _____ ( ) C:\Windows\SysWOW64\lxcyusb1.dll
2016-06-21 20:48 - 2007-04-04 11:18 - 00696320 _____ ( ) C:\Windows\SysWOW64\lxcyhbn3.dll
2016-06-21 20:48 - 2007-03-15 09:26 - 00114688 _____ (Lexmark International, Inc.) C:\Windows\SysWOW64\lxcyinsr.dll
2016-06-21 20:48 - 2007-03-15 09:26 - 00040960 _____ (Lexmark International, Inc.) C:\Windows\SysWOW64\lxcycur.dll
2016-06-21 20:48 - 2007-03-15 09:25 - 00151552 _____ (Lexmark International, Inc.) C:\Windows\SysWOW64\lxcyjswr.dll
2016-06-21 20:48 - 2006-09-06 06:17 - 00077824 _____ (Lexmark International) C:\Windows\SysWOW64\lxcycfg.dll
2016-06-21 20:48 - 2006-05-09 17:15 - 00983107 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lxcygf.dll
2016-06-21 20:48 - 2006-02-28 15:53 - 00640071 _____ C:\Windows\SysWOW64\lxcyhelp.chm
2016-06-21 20:47 - 2016-06-30 15:24 - 00018448 _____ C:\Windows\system32\LexFiles.ulf
2016-06-21 20:47 - 2007-06-20 06:29 - 00566448 _____ ( ) C:\Windows\system32\lxcycoms.exe
2016-06-21 20:47 - 2007-06-20 06:29 - 00236208 _____ ( ) C:\Windows\system32\lxcycfg.exe
2016-06-21 20:47 - 2007-06-20 06:29 - 00233136 _____ ( ) C:\Windows\system32\lxcyih.exe
2016-06-21 20:47 - 2007-06-20 06:18 - 00001834 _____ C:\Windows\system32\lxcy.loc
2016-06-21 20:47 - 2007-05-17 08:43 - 00184320 _____ (Lexmark International, Inc.) C:\Windows\system32\lxcyinsb.dll
2016-06-21 20:47 - 2007-05-17 08:42 - 00237568 _____ (Lexmark International, Inc.) C:\Windows\system32\lxcyins.dll
2016-06-21 20:47 - 2007-05-17 08:42 - 00097280 _____ (Lexmark International, Inc.) C:\Windows\system32\lxcycu.dll
2016-06-21 20:47 - 2007-05-17 08:42 - 00067584 _____ (Lexmark International, Inc.) C:\Windows\system32\lxcycub.dll
2016-06-21 20:47 - 2007-05-17 08:41 - 00654848 _____ (Lexmark International, Inc.) C:\Windows\system32\lxcyutil.dll
2016-06-21 20:47 - 2007-04-04 12:22 - 00410112 _____ ( ) C:\Windows\system32\lxcypmui.dll
2016-06-21 20:47 - 2007-04-04 12:21 - 01418240 _____ ( ) C:\Windows\system32\lxcyserv.dll
2016-06-21 20:47 - 2007-04-04 12:14 - 00249856 _____ ( ) C:\Windows\system32\lxcycomm.dll
2016-06-21 20:47 - 2007-04-04 12:12 - 00488448 _____ ( ) C:\Windows\system32\lxcylmpm.dll
2016-06-21 20:47 - 2007-04-04 12:11 - 00194048 _____ C:\Windows\system32\lxcyinst.dll
2016-06-21 20:47 - 2007-04-04 12:10 - 00226816 _____ ( ) C:\Windows\system32\lxcyiesc.dll
2016-06-21 20:47 - 2007-04-04 12:08 - 00010752 _____ ( ) C:\Windows\system32\lxcypplc.dll
2016-06-21 20:47 - 2007-04-04 12:07 - 00696320 _____ ( ) C:\Windows\system32\lxcycomc.dll
2016-06-21 20:47 - 2007-04-04 12:06 - 00035328 _____ ( ) C:\Windows\system32\lxcyprox.dll
2016-06-21 20:47 - 2007-04-04 11:59 - 01099776 _____ ( ) C:\Windows\system32\lxcyusb1.dll
2016-06-21 20:47 - 2007-04-04 11:59 - 00238592 _____ ( ) C:\Windows\system32\lxcyinpa.dll
2016-06-21 20:47 - 2007-04-04 11:55 - 00305664 _____ ( ) C:\Windows\system32\lxcyhcp.dll
2016-06-21 20:47 - 2007-04-04 11:54 - 00660480 _____ ( ) C:\Windows\system32\lxcyhbn3.dll
2016-06-21 20:47 - 2007-03-15 09:26 - 00134144 _____ (Lexmark International, Inc.) C:\Windows\system32\lxcyjswr.dll
2016-06-21 20:47 - 2007-03-15 09:26 - 00097792 _____ (Lexmark International, Inc.) C:\Windows\system32\lxcyinsr.dll
2016-06-21 20:47 - 2007-03-15 09:26 - 00025088 _____ (Lexmark International, Inc.) C:\Windows\system32\lxcycur.dll
2016-06-21 20:47 - 2006-09-06 06:18 - 00064512 _____ (Lexmark International) C:\Windows\system32\lxcycfg.dll
2016-06-21 20:47 - 2006-05-09 17:15 - 00983107 _____ (Microsoft Corporation) C:\Windows\system32\lxcygf.dll
2016-06-21 20:47 - 2006-02-28 15:53 - 00640071 _____ C:\Windows\system32\lxcyhelp.chm
2016-06-21 20:12 - 2016-06-21 20:45 - 68819968 _____ C:\Users\Kim\Downloads\cjs3400FR(1).exe
2016-06-21 19:39 - 2016-06-21 19:39 - 00000000 ____D C:\Lexmark
2016-06-21 19:30 - 2016-06-21 19:30 - 00000000 ___HD C:\$SysReset
2016-06-21 19:29 - 2016-06-21 19:29 - 00112707 ____T C:\Users\Kim\Documents\assurance01.oxps
2016-06-21 19:29 - 2016-06-21 19:29 - 00000000 ____D C:\Users\Kim\AppData\LocalLow\Temp
2016-06-21 19:23 - 2016-05-12 20:38 - 00135336 _____ (Microsoft Corporation) C:\Windows\system32\gpapi.dll
2016-06-21 19:23 - 2016-05-12 19:43 - 00115704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gpapi.dll
2016-06-21 19:23 - 2016-05-12 18:17 - 00331776 _____ (Microsoft Corporation) C:\Windows\system32\polstore.dll
2016-06-21 19:23 - 2016-05-12 18:08 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\FwRemoteSvr.dll
2016-06-21 19:23 - 2016-05-12 18:07 - 01360896 _____ (Microsoft Corporation) C:\Windows\system32\gpsvc.dll
2016-06-21 19:23 - 2016-05-12 17:59 - 00398848 _____ (Microsoft Corporation) C:\Windows\system32\IPSECSVC.DLL
2016-06-21 19:23 - 2016-05-12 17:43 - 00291328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\polstore.dll
2016-06-21 19:23 - 2016-05-12 17:37 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FwRemoteSvr.dll
2016-06-21 18:49 - 2016-05-14 01:07 - 00675328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2016-06-21 18:49 - 2016-05-14 01:07 - 00416768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys
2016-06-21 18:49 - 2016-05-14 01:06 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2016-06-21 18:40 - 2016-06-03 19:11 - 00472576 _____ (Microsoft Corporation) C:\Windows\system32\pcasvc.dll
2016-06-21 18:40 - 2016-05-06 17:45 - 00748544 _____ (Microsoft Corporation) C:\Windows\system32\StructuredQuery.dll
2016-06-21 18:40 - 2016-05-06 17:23 - 00503808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\StructuredQuery.dll
2016-06-21 18:38 - 2016-05-09 23:35 - 07075328 _____ (Microsoft Corporation) C:\Windows\system32\glcndFilter.dll
2016-06-21 18:38 - 2016-05-09 22:56 - 05270016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\glcndFilter.dll
2016-06-21 18:38 - 2016-05-09 22:45 - 07793152 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Data.Pdf.dll
2016-06-21 18:38 - 2016-05-09 22:23 - 05265920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Data.Pdf.dll
2016-06-21 18:34 - 2016-05-18 07:31 - 00372568 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2016-06-21 18:34 - 2016-05-18 07:31 - 00315224 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2016-06-21 18:34 - 2016-05-14 01:04 - 00044032 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2016-06-21 18:34 - 2016-05-14 00:19 - 00035840 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2016-06-21 18:33 - 2016-01-31 21:17 - 00118624 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
2016-06-21 18:33 - 2016-01-31 20:07 - 00110080 _____ (Microsoft Corporation) C:\Windows\system32\appinfo.dll
2016-06-21 05:39 - 2016-05-19 01:15 - 01379040 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2016-06-21 05:39 - 2016-05-18 22:35 - 01097216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2016-06-21 05:39 - 2016-05-14 22:01 - 00363104 _____ (Microsoft Corporation) C:\Windows\system32\ws2_32.dll
2016-06-21 05:39 - 2016-05-14 22:01 - 00320720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ws2_32.dll
2016-06-21 05:39 - 2016-05-14 01:07 - 00281088 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netbt.sys
2016-06-21 05:39 - 2016-05-13 23:58 - 00339456 _____ (Microsoft Corporation) C:\Windows\system32\mswsock.dll
2016-06-21 05:39 - 2016-05-13 23:45 - 00802816 _____ (Microsoft Corporation) C:\Windows\system32\winhttp.dll
2016-06-21 05:39 - 2016-05-13 23:35 - 00286208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mswsock.dll
2016-06-21 05:39 - 2016-05-13 23:26 - 00631808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winhttp.dll

==================== Un mois - Modifiés - fichiers et dossiers ========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2016-07-21 11:25 - 2015-11-23 17:15 - 00000000 ____D C:\Users\Kim
2016-07-21 10:44 - 2014-03-18 12:02 - 01734474 _____ C:\Windows\system32\PerfStringBackup.INI
2016-07-21 10:44 - 2014-03-18 11:26 - 00775930 _____ C:\Windows\system32\perfh00C.dat
2016-07-21 10:44 - 2014-03-18 11:26 - 00151632 _____ C:\Windows\system32\perfc00C.dat
2016-07-21 10:44 - 2013-08-22 15:36 - 00000000 ____D C:\Windows\Inf
2016-07-21 09:36 - 2016-06-02 15:10 - 00003780 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{B40B6C55-8AC9-4639-A63E-548A5B12F456}
2016-07-21 09:33 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\AppReadiness
2016-07-20 17:48 - 2015-11-23 18:10 - 00000000 ____D C:\Users\Kim\AppData\Roaming\vlc
2016-07-20 11:38 - 2013-08-22 17:20 - 00000000 ____D C:\Windows\CbsTemp
2016-07-20 11:36 - 2016-06-02 11:34 - 00000000 ___SD C:\Windows\SysWOW64\GWX
2016-07-20 11:36 - 2016-06-02 11:34 - 00000000 ___SD C:\Windows\system32\GWX
2016-07-19 19:15 - 2015-11-23 17:22 - 00003600 _____ C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2215089850-1969247420-2738818625-1001
2016-07-19 16:04 - 2013-08-22 16:45 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-07-19 16:03 - 2016-06-01 14:59 - 00065536 _____ C:\Windows\system32\spu_storage.bin
2016-07-19 16:03 - 2013-08-22 15:25 - 00262144 ___SH C:\Windows\system32\config\BBI
2016-07-18 12:17 - 2016-06-02 14:35 - 00003914 _____ C:\Windows\System32\Tasks\SafeZone scheduled Autoupdate 1464870941
2016-07-18 12:17 - 2016-06-02 14:35 - 00001055 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast SafeZone Browser.lnk
2016-07-18 12:16 - 2016-06-02 14:31 - 00003922 _____ C:\Windows\System32\Tasks\avast! Emergency Update
2016-07-18 12:05 - 2015-11-23 17:16 - 00000000 ____D C:\Users\Kim\AppData\Local\VirtualStore
2016-07-18 11:09 - 2016-06-02 14:49 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2016-07-18 11:05 - 2016-06-02 14:49 - 00001177 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2016-07-18 11:05 - 2016-06-02 14:49 - 00001165 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2016-07-17 14:06 - 2016-06-01 18:31 - 00000000 ____D C:\Users\Kim\AppData\Roaming\Skype
2016-07-17 13:56 - 2016-06-01 18:30 - 00000000 ____D C:\ProgramData\Skype
2016-07-17 13:05 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\rescache
2016-07-16 20:54 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\system32\NDF
2016-07-15 22:58 - 2016-06-02 11:33 - 00000000 ____D C:\Windows\system32\appraiser
2016-07-15 22:58 - 2014-03-18 11:41 - 00000000 ____D C:\Program Files\Windows Journal
2016-07-15 22:58 - 2013-08-22 17:36 - 00000000 ___RD C:\Windows\ToastData
2016-07-15 22:03 - 2015-11-23 16:38 - 00000000 ____D C:\Windows\Panther
2016-07-15 01:12 - 2016-06-02 14:31 - 00473592 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2016-07-15 01:07 - 2013-08-22 16:44 - 00362680 _____ C:\Windows\system32\FNTCACHE.DAT
2016-07-13 09:28 - 2016-06-01 22:35 - 144749672 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2016-07-13 09:28 - 2016-06-01 22:35 - 00000000 ____D C:\Windows\system32\MRT
2016-07-02 14:00 - 2015-11-23 17:51 - 00002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader X.lnk
2016-07-01 11:06 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\SysWOW64\setup
2016-07-01 11:06 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\system32\setup
2016-07-01 10:59 - 2016-06-19 20:43 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2016-07-01 10:59 - 2015-11-23 18:28 - 00000000 ___SD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice 4.1.2
2016-07-01 10:59 - 2015-11-23 18:08 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2016-07-01 10:59 - 2013-08-22 17:36 - 00000000 ___HD C:\Program Files\WindowsApps
2016-07-01 10:59 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\MediaViewer
2016-07-01 10:59 - 2013-08-22 15:36 - 00000000 ____D C:\Windows\system32\oobe
2016-07-01 10:58 - 2016-06-02 14:31 - 00000000 ____D C:\Windows\System32\Tasks\AVAST Software
2016-07-01 10:58 - 2016-06-01 17:35 - 00000000 ____D C:\Program Files\CONEXANT
2016-07-01 10:58 - 2013-08-22 17:36 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2016-06-30 15:16 - 2016-06-02 14:31 - 00473592 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsp.sys.146853793246805
2016-06-30 15:15 - 2016-06-02 14:34 - 00037144 _____ (AVAST Software) C:\Windows\system32\Drivers\aswKbd.sys
2016-06-30 15:15 - 2016-06-02 14:31 - 01070904 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2016-06-30 15:15 - 2016-06-02 14:31 - 00290088 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys
2016-06-30 15:15 - 2016-06-02 14:31 - 00162904 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2016-06-30 15:15 - 2016-06-02 14:31 - 00108304 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2016-06-30 15:15 - 2016-06-02 14:31 - 00103064 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2016-06-30 15:15 - 2016-06-02 14:31 - 00074544 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys
2016-06-30 15:15 - 2016-06-02 14:31 - 00037656 _____ (AVAST Software) C:\Windows\system32\Drivers\aswHwid.sys
2016-06-30 13:57 - 2016-06-01 17:36 - 00000000 ____D C:\ProgramData\Conexant
2016-06-30 10:59 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\Registration
2016-06-30 09:21 - 2013-08-22 15:25 - 00262144 ___SH C:\Windows\system32\config\ELAM
2016-06-21 04:33 - 2015-11-23 17:16 - 00000000 ____D C:\Users\Kim\AppData\Local\Packages

Fichiers à déplacer ou supprimer:
====================
C:\Users\Kim\ZHPDiag3.exe


Certains fichiers dans TEMP:
====================
C:\Users\Kim\AppData\Local\Temp\Quarantine.exe
C:\Users\Kim\AppData\Local\Temp\sqlite3.dll


==================== Bamital & volsnap =================

(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)

C:\Windows\system32\winlogon.exe => Le fichier est signé numériquement
C:\Windows\system32\wininit.exe => Le fichier est signé numériquement
C:\Windows\explorer.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\explorer.exe => Le fichier est signé numériquement
C:\Windows\system32\svchost.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\svchost.exe => Le fichier est signé numériquement
C:\Windows\system32\services.exe => Le fichier est signé numériquement
C:\Windows\system32\User32.dll => Le fichier est signé numériquement
C:\Windows\SysWOW64\User32.dll => Le fichier est signé numériquement
C:\Windows\system32\userinit.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\userinit.exe => Le fichier est signé numériquement
C:\Windows\system32\rpcss.dll => Le fichier est signé numériquement
C:\Windows\system32\dnsapi.dll => Le fichier est signé numériquement
C:\Windows\SysWOW64\dnsapi.dll => Le fichier est signé numériquement
C:\Windows\system32\Drivers\volsnap.sys => Le fichier est signé numériquement


LastRegBack: 2016-07-15 22:26

==================== Fin de FRST.txt ============================

Publicité


Signaler le contenu de ce document

Publicité