Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x86) Version: 25-06-2017 01
Exécuté par LE CONNETABLE (administrateur) sur LEPATTON (26-06-2017 10:10:17)
Exécuté depuis C:\Users\LE CONNETABLE\Desktop
Profils chargés: LE CONNETABLE (Profils disponibles: LE CONNETABLE & DefaultAppPool)
Platform: Microsoft Windows 10 Famille Version 1703 (X86) Langue: Français (France)
Internet Explorer Version 11 (Navigateur par défaut: FF)
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Seiko Epson Corporation) C:\Windows\System32\escsvc.exe
(SEIKO EPSON CORPORATION) C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50ST7.EXE
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(SEIKO EPSON CORPORATION) C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50RP7.EXE
() C:\Program Files\Synology\CloudStation\bin\vss-service.exe
(ABBYY) C:\Program Files\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe
(Windows (R) Win 7 DDK provider) C:\Windows\System32\DbxSvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
() C:\Program Files\Synology\Assistant\UsbClientService.exe
(VIA Technologies, Inc.) C:\Windows\System32\ViakaraokeSrv.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
() C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.18.614.0_x86__kzf8qxf38zg5c\SkypeHost.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Synology Inc.) C:\Users\LE CONNETABLE\AppData\Local\CloudStation\CloudStation.app\bin\cloud-drive-ui.exe
(Synology Inc.) C:\Users\LE CONNETABLE\AppData\Local\CloudStation\CloudStation.app\bin\cloud-drive-connect.exe
(Synology Inc.) C:\Users\LE CONNETABLE\AppData\Local\CloudStation\CloudStation.app\bin\cloud-drive-daemon.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_11705.1001.21.0_x86__8wekyb3d8bbwe\WinStore.App.exe
() C:\Program Files\WindowsApps\Microsoft.ZuneMusic_10.17042.14111.0_x86__8wekyb3d8bbwe\Music.UI.exe
() C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.18062.12990.0_x86__8wekyb3d8bbwe\Microsoft.Photos.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Apache Software Foundation) C:\Program Files\OpenOffice 4\program\scalc.exe
(Apache Software Foundation) C:\Program Files\OpenOffice 4\program\soffice.exe
(Apache Software Foundation) C:\Program Files\OpenOffice 4\program\soffice.bin
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
==================== Registre (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [485280 2017-03-18] (Microsoft Corporation)
HKLM\...\Run: [NvBackend] => C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe [2634896 2015-07-24] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [Malwarebytes TrayApp] => C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\mbamtray.exe [3146704 2017-05-09] (Malwarebytes)
HKU\S-1-5-21-3209782926-3138353277-2660692922-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner.exe [7648984 2017-06-13] (Piriform Ltd)
HKU\S-1-5-21-3209782926-3138353277-2660692922-1000\...\Run: [uTorrent] => C:\Users\LE CONNETABLE\AppData\Roaming\uTorrent\uTorrent.exe [1980608 2017-06-07] (BitTorrent Inc.)
HKU\S-1-5-21-3209782926-3138353277-2660692922-1000\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\WINDOWS\system32\scrnsave.scr [29184 2017-03-18] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ 01UnsuppModule] -> {AEB16659-2125-4ADA-A4AB-45EE21E86469} => C:\Users\LE CONNETABLE\AppData\Local\CloudStation\CloudStation.app\icon-overlay\17\x86\iconOverlay.dll [2017-01-04] (TODO:)
ShellIconOverlayIdentifiers: [ 02SyncingModule] -> {48AB5ADA-36B1-4137-99C9-2BD97F8788AB} => C:\Users\LE CONNETABLE\AppData\Local\CloudStation\CloudStation.app\icon-overlay\17\x86\iconOverlay.dll [2017-01-04] (TODO:)
ShellIconOverlayIdentifiers: [ 03SyncedModule] -> {472CE1AD-5D53-4BCF-A1FB-3982A5F55138} => C:\Users\LE CONNETABLE\AppData\Local\CloudStation\CloudStation.app\icon-overlay\17\x86\iconOverlay.dll [2017-01-04] (TODO:)
ShellIconOverlayIdentifiers: [ 04ReadOnlyModule] -> {A433C3E0-8B24-40EB-93C3-4B10D9959F58} => C:\Users\LE CONNETABLE\AppData\Local\CloudStation\CloudStation.app\icon-overlay\17\x86\iconOverlay.dll [2017-01-04] (TODO:)
ShellIconOverlayIdentifiers: [ 05NoPermModule] -> {C701AD67-3DF0-47C9-89CB-DFA6207BE229} => C:\Users\LE CONNETABLE\AppData\Local\CloudStation\CloudStation.app\icon-overlay\17\x86\iconOverlay.dll [2017-01-04] (TODO:)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Pas de fichier
Startup: C:\Users\LE CONNETABLE\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Synology Cloud Station Drive.lnk [2017-06-26]
ShortcutTarget: Synology Cloud Station Drive.lnk -> C:\Program Files\Synology\CloudStation\bin\launcher.exe (Synology Inc.)
CHR HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
ProxyServer: [S-1-5-21-3209782926-3138353277-2660692922-1000] => :0
AutoConfigURL: [S-1-5-21-3209782926-3138353277-2660692922-1000] => :0
Hosts: 127.0.0.1 localhost
Tcpip\..\Interfaces\{60a50d7e-8a14-4637-b234-ee787f64ec61}: [DhcpNameServer] 10.11.0.1
Tcpip\..\Interfaces\{8e24db6c-f4a4-49c2-a0f5-3ec4be5bbce5}: [NameServer] 80.10.246.2,80.10.246.129
Tcpip\..\Interfaces\{e7ec1896-6f63-416b-9748-5d8cffaa2dab}: [DhcpNameServer] 10.11.0.1
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com
HKU\S-1-5-21-3209782926-3138353277-2660692922-1000\Software\Microsoft\Internet Explorer\Main,Start Page =
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-3209782926-3138353277-2660692922-1000 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-3209782926-3138353277-2660692922-1000 -> {E2172FE1-4CAE-462C-BC76-50D9837A2F09} URL = hxxp://www.google.com/search?hl=en&q={searchTerms}&rlz=1I7PRFB_frFR451
BHO: E-Web Print -> {201CF130-E29C-4E5C-A73F-CD197DEFA6AE} -> C:\Program Files\Epson Software\E-Web Print\ewps_tb.dll [2013-02-28] (SEIKO EPSON CORPORATION)
BHO: Module complémentaire de navigateur pour la désactivation de Google Analytics -> {75EF13CE-B59E-41ba-8A5A-A944031BD8B4} -> C:\Program Files\Google\Google Analytics Opt-Out\gaoptout.dll [2014-04-03] (Google, Inc.)
BHO: Easy Photo Print -> {9421DD08-935F-4701-A9CA-22DF90AC4EA6} -> C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll [2012-01-25] (SEIKO EPSON CORPORATION)
Toolbar: HKLM - Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll [2012-01-25] (SEIKO EPSON CORPORATION)
Toolbar: HKLM - E-Web Print - {201CF130-E29C-4E5C-A73F-CD197DEFA6AE} - C:\Program Files\Epson Software\E-Web Print\ewps_tb.dll [2013-02-28] (SEIKO EPSON CORPORATION)
Toolbar: HKU\S-1-5-21-3209782926-3138353277-2660692922-1000 -> Pas de nom - {681D7A5C-C4A3-4434-828F-2287AB4C0572} - Pas de fichier
DPF: {166B1BCA-3F9C-11CF-8075-444553540000} hxxp://download.macromedia.com/pub/shockwave/cabs/director/sw.cab
DPF: {D0C0F75C-683A-4390-A791-1ACFD5599AB8} hxxp://gameshell.oberon-media.com/Gameshell/GameHost/1.0/OberonGameHost.cab
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2014-07-14] (Microsoft Corporation)
FireFox:
========
FF ProfilePath: C:\Users\LE CONNETABLE\AppData\Roaming\Mozilla\Firefox\Profiles\g58glucx.default-1454691080315 [2017-06-26]
FF NewTab: Mozilla\Firefox\Profiles\g58glucx.default-1454691080315 -> about:newtab
FF Homepage: Mozilla\Firefox\Profiles\g58glucx.default-1454691080315 -> hxxps://messageriepro3.orange.fr/#mail/SF_INBOX
FF Keyword.URL: Mozilla\Firefox\Profiles\g58glucx.default-1454691080315 -> user_pref("keyword.URL", true);
FF Extension: (Adblock Plus) - C:\Users\LE CONNETABLE\AppData\Roaming\Mozilla\Firefox\Profiles\g58glucx.default-1454691080315\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2017-06-07]
FF Extension: (Skype Click to Call) - C:\Program Files\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}.xpi [2014-07-14] [non signé]
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF32_26_0_0_131.dll [2017-06-17] ()
FF Plugin: @adobe.com/ShockwavePlayer -> C:\Windows\system32\Adobe\Director\np32dsw_1210150.dll [2014-03-11] (Adobe Systems, Inc.)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] ( Microsoft Corporation)
FF Plugin: @nvidia.com/3DVision -> C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll [2016-11-14] (NVIDIA Corporation)
FF Plugin: @nvidia.com/3DVisionStreaming -> C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2016-11-14] (NVIDIA Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-06-24] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-06-24] (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.2.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2017-04-05] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-3209782926-3138353277-2660692922-1000: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\LE CONNETABLE\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2014-11-18] (Unity Technologies ApS)
Chrome:
=======
CHR DefaultProfile: Default
CHR dev: Chrome dev build détecté(e)! <==== ATTENTION
==================== Services (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 ABBYY.Licensing.FineReader.Sprint.9.0; C:\Program Files\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe [759048 2009-05-14] (ABBYY)
R2 Cloud Station Drive VSS Service; C:\Program Files\Synology\CloudStation\bin\vss-service.exe [244248 2016-07-04] ()
R2 DbxSvc; C:\WINDOWS\system32\DbxSvc.exe [36648 2016-10-06] (Windows (R) Win 7 DDK provider)
R2 EpsonScanSvc; C:\Windows\system32\EscSvc.exe [122000 2011-12-12] (Seiko Epson Corporation)
R2 EPSON_EB_RPCV4_04; C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50ST7.EXE [167520 2012-02-20] (SEIKO EPSON CORPORATION)
R2 EPSON_PM_RPCV4_04; C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50RP7.EXE [142432 2012-02-21] (SEIKO EPSON CORPORATION)
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [921232 2015-07-24] (NVIDIA Corporation)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [3398608 2017-05-09] (Malwarebytes)
R2 NvNetworkService; C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe [1871504 2015-07-24] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [4305040 2015-07-24] (NVIDIA Corporation)
R2 UsbClientService; C:\Program Files\Synology\Assistant\UsbClientService.exe [248840 2016-03-18] () [Fichier non signé]
R2 VIAKaraokeService; C:\WINDOWS\system32\viakaraokesrv.exe [46736 2015-12-09] (VIA Technologies, Inc.)
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [265352 2017-03-18] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [82488 2017-03-18] (Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ======================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 atksgt; C:\WINDOWS\System32\DRIVERS\atksgt.sys [281760 2013-03-25] ()
R3 busenum; C:\WINDOWS\System32\drivers\busenum.sys [53728 2012-08-03] (Windows (R) Win 7 DDK provider)
R3 camfilt2; C:\WINDOWS\system32\DRIVERS\camfilt2.sys [96384 2007-08-29] (Guillemot Corporation)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [109184 2016-09-05] (Samsung Electronics Co., Ltd.)
R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae.sys [59936 2017-06-24] ()
R2 lirsgt; C:\WINDOWS\System32\DRIVERS\lirsgt.sys [25888 2013-03-25] ()
R2 MBAMChameleon; C:\WINDOWS\system32\drivers\MBAMChameleon.sys [162208 2017-06-24] (Malwarebytes)
R3 MBAMFarflt; C:\WINDOWS\system32\drivers\farflt.sys [97208 2017-06-25] (Malwarebytes)
R3 MBAMProtection; C:\WINDOWS\system32\drivers\mbam.sys [39840 2017-06-25] (Malwarebytes)
R0 MBAMSwissArmy; C:\WINDOWS\System32\drivers\MBAMSwissArmy.sys [220576 2017-06-25] (Malwarebytes)
R3 MBAMWebProtection; C:\WINDOWS\system32\drivers\mwac.sys [74656 2017-06-26] (Malwarebytes)
R1 MpKsl4b01a644; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{C9C1DF1D-6EC7-4E9C-B2A4-594F4DFFDFA1}\MpKsl4b01a644.sys [39168 2017-06-25] (Microsoft Corporation)
R1 MpKsle702a616; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{3AF8CE6E-E029-440A-99D0-9CC2E6FDDF0A}\MpKsle702a616.sys [39168 2017-06-25] (Microsoft Corporation)
R3 MTsensor; C:\WINDOWS\system32\DRIVERS\ASACPI.sys [5810 2004-08-13] ()
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [18576 2015-07-24] (NVIDIA Corporation)
S3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad32v.sys [44840 2015-08-11] (NVIDIA Corporation)
R3 ovt530; C:\WINDOWS\System32\Drivers\ov530vid.sys [167464 2007-02-02] (OmniVision Technologies, Inc.)
R3 rt640x86; C:\WINDOWS\System32\drivers\rt640x86.sys [746752 2015-07-28] (Realtek )
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [147072 2016-09-05] (Samsung Electronics Co., Ltd.)
R3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [35088 2013-04-30] (The OpenVPN Project)
R3 VIAHdAudAddService; C:\WINDOWS\system32\drivers\viahduaa.sys [573560 2015-12-09] (VIA Technologies, Inc.)
S0 WdBoot; C:\WINDOWS\System32\drivers\WdBoot.sys [37464 2017-03-18] (Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\WdFilter.sys [243104 2017-03-18] (Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [96672 2017-03-18] (Microsoft Corporation)
U3 idsvc; pas de ImagePath
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois - Créés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2017-06-26 10:10 - 2017-06-26 10:11 - 00017060 _____ C:\Users\LE CONNETABLE\Desktop\FRST.txt
2017-06-26 10:09 - 2017-06-26 10:10 - 00000000 ____D C:\FRST
2017-06-26 10:08 - 2017-06-26 10:08 - 01780224 _____ (Farbar) C:\Users\LE CONNETABLE\Desktop\FRST.exe
2017-06-26 08:17 - 2017-06-26 08:17 - 00129095 _____ C:\Users\LE CONNETABLE\Desktop\ZHPDiag.txt
2017-06-26 08:11 - 2017-06-26 08:13 - 00000000 ____D C:\Users\LE CONNETABLE\AppData\Local\ZHP
2017-06-26 08:11 - 2017-06-26 08:12 - 00000911 _____ C:\Users\LE CONNETABLE\Desktop\ZHPDiag.lnk
2017-06-26 08:10 - 2017-06-26 08:10 - 02754944 _____ C:\Users\LE CONNETABLE\Downloads\ZHPDiag3.exe
2017-06-25 18:22 - 2017-06-25 18:23 - 04110280 _____ C:\Users\LE CONNETABLE\Downloads\adwcleaner_6.047.exe
2017-06-25 18:19 - 2017-06-25 18:19 - 00044802 _____ C:\Users\LE CONNETABLE\Documents\cc_20170625_181953.reg
2017-06-24 10:54 - 2017-06-26 08:36 - 00074656 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys
2017-06-24 10:54 - 2017-06-25 17:56 - 00097208 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\farflt.sys
2017-06-24 10:54 - 2017-06-25 17:56 - 00039840 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2017-06-24 10:54 - 2017-06-24 10:54 - 00162208 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMChameleon.sys
2017-06-24 10:51 - 2017-06-24 10:54 - 00059936 _____ C:\WINDOWS\system32\Drivers\mbae.sys
2017-06-24 10:51 - 2017-06-24 10:51 - 00002097 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2017-06-24 10:51 - 2017-06-24 10:51 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2017-06-24 10:50 - 2017-06-24 10:50 - 00000000 ____D C:\Program Files\Malwarebytes
2017-06-24 10:47 - 2017-06-24 10:48 - 64025992 _____ (Malwarebytes ) C:\Users\LE CONNETABLE\Downloads\mb3-setup-cb.NT-3.1.2.1733-10139.exe
2017-06-24 09:51 - 2017-06-25 18:26 - 00000000 ____D C:\AdwCleaner
2017-06-24 07:55 - 2017-06-25 18:31 - 00000200 _____ C:\Users\LE CONNETABLE\SecurityKISSTunnel.config
2017-06-22 17:56 - 2017-06-22 18:06 - 00055079 _____ C:\Users\LE CONNETABLE\Documents\sferis.odt
2017-06-21 17:25 - 2017-06-21 17:35 - 00056191 _____ C:\Users\LE CONNETABLE\Documents\jAZZENBAIE.odt
2017-06-18 20:09 - 2017-06-18 20:09 - 00330300 _____ C:\Users\LE CONNETABLE\Downloads\Fiche_info_licence_Sc_Educ_2017_IDF.pdf
2017-06-13 20:17 - 2017-06-03 11:36 - 01150784 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase.dll
2017-06-13 20:17 - 2017-06-03 11:33 - 00095640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tdx.sys
2017-06-13 20:17 - 2017-06-03 11:25 - 00177056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tpm.sys
2017-06-13 20:17 - 2017-06-03 11:24 - 00249016 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotifyIcon.exe
2017-06-13 20:17 - 2017-06-03 11:20 - 02086304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2017-06-13 20:17 - 2017-06-03 11:11 - 00073728 _____ (Microsoft Corporation) C:\WINDOWS\system32\utcutil.dll
2017-06-13 20:17 - 2017-06-03 11:09 - 00094720 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataTimeUtil.dll
2017-06-13 20:17 - 2017-06-03 11:08 - 00027648 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BasicRender.sys
2017-06-13 20:17 - 2017-06-03 11:07 - 00239104 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2017-06-13 20:17 - 2017-06-03 11:07 - 00041472 _____ (Microsoft Corporation) C:\WINDOWS\system32\musdialoghandlers.dll
2017-06-13 20:17 - 2017-06-03 11:06 - 00088064 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe
2017-06-13 20:17 - 2017-06-03 11:04 - 00556032 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2017-06-13 20:17 - 2017-06-03 11:03 - 00467456 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmCoreProvisioning.dll
2017-06-13 20:17 - 2017-06-03 10:59 - 02672128 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2017-06-13 20:17 - 2017-06-03 10:57 - 00797184 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2017-06-13 20:17 - 2017-06-03 10:55 - 02132480 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2017-06-13 20:17 - 2017-06-03 10:55 - 00791552 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcsvc.dll
2017-06-13 20:17 - 2017-06-03 10:54 - 01831936 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2017-06-13 20:17 - 2017-05-20 11:00 - 00233376 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys
2017-06-13 20:17 - 2017-05-20 10:50 - 00155040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpsd.sys
2017-06-13 20:17 - 2017-05-20 10:47 - 01474800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2017-06-13 20:17 - 2017-05-20 10:46 - 00754080 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll
2017-06-13 20:17 - 2017-05-20 10:46 - 00534424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdmp.sys
2017-06-13 20:17 - 2017-05-20 10:46 - 00122272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storahci.sys
2017-06-13 20:17 - 2017-05-20 10:45 - 00480160 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys
2017-06-13 20:17 - 2017-05-20 10:45 - 00259352 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthService.exe
2017-06-13 20:17 - 2017-05-20 10:43 - 01529384 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll
2017-06-13 20:17 - 2017-05-20 10:29 - 00786944 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthSSO.dll
2017-06-13 20:17 - 2017-05-20 10:27 - 00008704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rootmdm.sys
2017-06-13 20:17 - 2017-05-20 10:26 - 00226304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\xboxgip.sys
2017-06-13 20:17 - 2017-05-20 10:26 - 00013824 _____ (Microsoft Corporation) C:\WINDOWS\system32\snmptrap.exe
2017-06-13 20:17 - 2017-05-20 10:25 - 00174080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.Diagnostics.dll
2017-06-13 20:17 - 2017-05-20 10:25 - 00113664 _____ (Microsoft Corporation) C:\WINDOWS\system32\XblGameSaveExt.dll
2017-06-13 20:17 - 2017-05-20 10:20 - 00807424 _____ (Microsoft Corporation) C:\WINDOWS\system32\StoreAgent.dll
2017-06-13 20:17 - 2017-05-20 10:20 - 00368128 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgentUserBroker.exe
2017-06-13 20:17 - 2017-05-20 10:17 - 00329728 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe
2017-06-13 20:16 - 2017-06-03 11:59 - 01427656 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2017-06-13 20:16 - 2017-06-03 11:59 - 00626528 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2017-06-13 20:16 - 2017-06-03 11:59 - 00311200 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2017-06-13 20:16 - 2017-06-03 11:37 - 00098208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tm.sys
2017-06-13 20:16 - 2017-06-03 11:36 - 05862304 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2017-06-13 20:16 - 2017-06-03 11:35 - 02259768 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreUIComponents.dll
2017-06-13 20:16 - 2017-06-03 11:33 - 00698384 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2017-06-13 20:16 - 2017-06-03 11:28 - 02022816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2017-06-13 20:16 - 2017-06-03 11:26 - 00777400 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipSVC.dll
2017-06-13 20:16 - 2017-06-03 11:26 - 00266640 _____ (Microsoft Corporation) C:\WINDOWS\system32\capauthz.dll
2017-06-13 20:16 - 2017-06-03 11:23 - 20373920 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2017-06-13 20:16 - 2017-06-03 11:23 - 06760024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2017-06-13 20:16 - 2017-06-03 11:23 - 00573856 _____ (Microsoft Corporation) C:\WINDOWS\system32\comctl32.dll
2017-06-13 20:16 - 2017-06-03 11:22 - 00296352 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHost.dll
2017-06-13 20:16 - 2017-06-03 11:11 - 02958848 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2017-06-13 20:16 - 2017-06-03 11:11 - 00116736 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmredir.dll
2017-06-13 20:16 - 2017-06-03 11:11 - 00038912 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2017-06-13 20:16 - 2017-06-03 11:10 - 00309760 _____ (Microsoft Corporation) C:\WINDOWS\system32\PerceptionSimulationExtensions.dll
2017-06-13 20:16 - 2017-06-03 11:07 - 00002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzres.dll
2017-06-13 20:16 - 2017-06-03 11:06 - 00061440 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCredentialDeployment.exe
2017-06-13 20:16 - 2017-06-03 11:05 - 20506624 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2017-06-13 20:16 - 2017-06-03 11:05 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Identity.Provider.dll
2017-06-13 20:16 - 2017-06-03 11:05 - 00169984 _____ (Microsoft Corporation) C:\WINDOWS\system32\devicengccredprov.dll
2017-06-13 20:16 - 2017-06-03 11:04 - 00661504 _____ C:\WINDOWS\system32\MBR2GPT.EXE
2017-06-13 20:16 - 2017-06-03 11:03 - 19336192 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2017-06-13 20:16 - 2017-06-03 11:03 - 00168960 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdboot.exe
2017-06-13 20:16 - 2017-06-03 11:00 - 00358400 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2017-06-13 20:16 - 2017-06-03 10:59 - 00636416 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll
2017-06-13 20:16 - 2017-06-03 10:58 - 05961216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2017-06-13 20:16 - 2017-06-03 10:57 - 11870720 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2017-06-13 20:16 - 2017-06-03 10:57 - 06535168 _____ (Microsoft Corporation) C:\WINDOWS\system32\mspaint.exe
2017-06-13 20:16 - 2017-06-03 10:57 - 01248768 _____ (Microsoft Corporation) C:\WINDOWS\system32\AzureSettingSyncProvider.dll
2017-06-13 20:16 - 2017-06-03 10:56 - 06292992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2017-06-13 20:16 - 2017-06-03 10:55 - 03656192 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2017-06-13 20:16 - 2017-06-03 10:55 - 02369536 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2017-06-13 20:16 - 2017-06-03 10:55 - 01844224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
2017-06-13 20:16 - 2017-06-03 10:55 - 01585664 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2017-06-13 20:16 - 2017-06-03 10:55 - 01560064 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2017-06-13 20:16 - 2017-06-03 10:55 - 01019904 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll
2017-06-13 20:16 - 2017-06-03 10:55 - 00949760 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2017-06-13 20:16 - 2017-06-03 10:55 - 00886272 _____ (Microsoft Corporation) C:\WINDOWS\HelpPane.exe
2017-06-13 20:16 - 2017-06-03 10:55 - 00622592 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32spl.dll
2017-06-13 20:16 - 2017-06-03 10:54 - 02341376 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2017-06-13 20:16 - 2017-06-03 10:54 - 02298368 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2017-06-13 20:16 - 2017-06-03 10:53 - 04559360 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbgeng.dll
2017-06-13 20:16 - 2017-06-03 10:52 - 01331200 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2017-06-13 20:16 - 2017-06-03 10:46 - 00055808 _____ (Microsoft Corporation) C:\WINDOWS\bfsvc.exe
2017-06-13 20:16 - 2017-05-20 11:13 - 01333136 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2017-06-13 20:16 - 2017-05-20 10:55 - 00606960 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2017-06-13 20:16 - 2017-05-20 10:50 - 00095648 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dam.sys
2017-06-13 20:16 - 2017-05-20 10:48 - 04469832 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2017-06-13 20:16 - 2017-05-20 10:48 - 00297576 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2017-06-13 20:16 - 2017-05-20 10:47 - 00755616 _____ (Microsoft Corporation) C:\WINDOWS\system32\efscore.dll
2017-06-13 20:16 - 2017-05-20 10:47 - 00582560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2017-06-13 20:16 - 2017-05-20 10:46 - 05821496 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2017-06-13 20:16 - 2017-05-20 10:46 - 01266544 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
2017-06-13 20:16 - 2017-05-20 10:46 - 00173472 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2017-06-13 20:16 - 2017-05-20 10:45 - 00349600 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2017-06-13 20:16 - 2017-05-20 10:44 - 00519680 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2017-06-13 20:16 - 2017-05-20 10:44 - 00296352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fastfat.sys
2017-06-13 20:16 - 2017-05-20 10:44 - 00181664 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll
2017-06-13 20:16 - 2017-05-20 10:43 - 05802968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2017-06-13 20:16 - 2017-05-20 10:43 - 04672848 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2017-06-13 20:16 - 2017-05-20 10:43 - 02424016 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2017-06-13 20:16 - 2017-05-20 10:43 - 01455592 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2017-06-13 20:16 - 2017-05-20 10:43 - 01120864 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2017-06-13 20:16 - 2017-05-20 10:43 - 00354400 _____ (Microsoft Corporation) C:\WINDOWS\system32\MMDevAPI.dll
2017-06-13 20:16 - 2017-05-20 10:29 - 13840384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2017-06-13 20:16 - 2017-05-20 10:29 - 00584192 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbonRes.dll
2017-06-13 20:16 - 2017-05-20 10:29 - 00314880 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConhostV2.dll
2017-06-13 20:16 - 2017-05-20 10:29 - 00075776 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsrvext.dll
2017-06-13 20:16 - 2017-05-20 10:27 - 02199552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
2017-06-13 20:16 - 2017-05-20 10:27 - 00141824 _____ (Microsoft Corporation) C:\WINDOWS\system32\smartscreenps.dll
2017-06-13 20:16 - 2017-05-20 10:26 - 00059904 _____ C:\WINDOWS\system32\xboxgipsynthetic.dll
2017-06-13 20:16 - 2017-05-20 10:26 - 00025088 _____ (Microsoft Corporation) C:\WINDOWS\system32\odbcconf.dll
2017-06-13 20:16 - 2017-05-20 10:25 - 00826368 _____ (Microsoft Corporation) C:\WINDOWS\system32\NPSMDesktopProvider.dll
2017-06-13 20:16 - 2017-05-20 10:24 - 00362496 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll
2017-06-13 20:16 - 2017-05-20 10:24 - 00140800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.SharedPC.AccountManager.dll
2017-06-13 20:16 - 2017-05-20 10:23 - 06728192 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2017-06-13 20:16 - 2017-05-20 10:22 - 00754176 _____ (Microsoft Corporation) C:\WINDOWS\system32\MessagingDataModel2.dll
2017-06-13 20:16 - 2017-05-20 10:22 - 00394240 _____ (Microsoft Corporation) C:\WINDOWS\system32\DictationManager.dll
2017-06-13 20:16 - 2017-05-20 10:22 - 00359424 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadcloudap.dll
2017-06-13 20:16 - 2017-05-20 10:22 - 00331776 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Display.dll
2017-06-13 20:16 - 2017-05-20 10:22 - 00291840 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll
2017-06-13 20:16 - 2017-05-20 10:21 - 01984000 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceFlows.DataModel.dll
2017-06-13 20:16 - 2017-05-20 10:21 - 00476672 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll
2017-06-13 20:16 - 2017-05-20 10:21 - 00454144 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowManagement.dll
2017-06-13 20:16 - 2017-05-20 10:21 - 00444928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.System.Launcher.dll
2017-06-13 20:16 - 2017-05-20 10:21 - 00349184 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll
2017-06-13 20:16 - 2017-05-20 10:21 - 00103424 _____ (Microsoft Corporation) C:\WINDOWS\system32\embeddedmodesvc.dll
2017-06-13 20:16 - 2017-05-20 10:20 - 00507392 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2017-06-13 20:16 - 2017-05-20 10:20 - 00354304 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll
2017-06-13 20:16 - 2017-05-20 10:19 - 05719040 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
2017-06-13 20:16 - 2017-05-20 10:19 - 01208320 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2017-06-13 20:16 - 2017-05-20 10:19 - 00872448 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2017-06-13 20:16 - 2017-05-20 10:19 - 00868352 _____ (Microsoft Corporation) C:\WINDOWS\system32\XboxNetApiSvc.dll
2017-06-13 20:16 - 2017-05-20 10:19 - 00787456 _____ (Microsoft Corporation) C:\WINDOWS\system32\sysmain.dll
2017-06-13 20:16 - 2017-05-20 10:19 - 00768000 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll
2017-06-13 20:16 - 2017-05-20 10:19 - 00678912 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2017-06-13 20:16 - 2017-05-20 10:19 - 00617472 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2017-06-13 20:16 - 2017-05-20 10:18 - 01450496 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll
2017-06-13 20:16 - 2017-05-20 10:18 - 00532992 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
2017-06-13 20:16 - 2017-05-20 10:18 - 00456704 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppReadiness.dll
2017-06-13 20:16 - 2017-05-20 10:17 - 01513984 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2017-06-13 20:16 - 2017-05-20 10:17 - 00952832 _____ (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.dll
2017-06-13 20:16 - 2017-05-20 10:17 - 00909312 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll
2017-06-13 20:16 - 2017-05-20 10:17 - 00707072 _____ (Microsoft Corporation) C:\WINDOWS\system32\ISM.dll
2017-06-13 20:16 - 2017-05-20 10:17 - 00050176 _____ (Microsoft Corporation) C:\WINDOWS\system32\cldapi.dll
2017-06-13 20:16 - 2017-05-20 10:16 - 05225984 _____ (Microsoft Corporation) C:\WINDOWS\system32\d2d1.dll
2017-06-13 20:16 - 2017-05-20 10:16 - 03667456 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_47.dll
2017-06-13 20:16 - 2017-05-20 10:16 - 02588160 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapRouter.dll
2017-06-13 20:16 - 2017-05-20 10:16 - 01918464 _____ (Microsoft Corporation) C:\WINDOWS\system32\smartscreen.exe
2017-06-13 20:16 - 2017-05-20 10:16 - 00899584 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll
2017-06-13 20:16 - 2017-05-20 10:15 - 02088960 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapGeocoder.dll
2017-06-13 20:16 - 2017-05-20 10:15 - 01830400 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll
2017-06-13 20:16 - 2017-05-20 10:14 - 04417024 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
2017-06-13 20:16 - 2017-05-20 10:14 - 04056576 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2017-06-13 20:16 - 2017-05-20 10:14 - 03097088 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsThresholdAdminFlowUI.dll
2017-06-13 20:16 - 2017-05-20 10:14 - 02679296 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRH.dll
2017-06-13 20:16 - 2017-05-20 10:14 - 02211328 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputService.dll
2017-06-13 20:16 - 2017-05-20 10:14 - 01035264 _____ (Microsoft Corporation) C:\WINDOWS\system32\ShareHost.dll
2017-06-13 20:16 - 2017-05-20 10:12 - 01127936 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2017-06-13 20:16 - 2017-05-20 10:12 - 00557568 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2017-06-13 20:16 - 2017-05-20 10:12 - 00485888 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnprv.dll
2017-06-13 20:16 - 2017-05-20 10:11 - 01536512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2017-06-13 20:16 - 2017-05-20 10:11 - 00125440 _____ (Microsoft Corporation) C:\WINDOWS\system32\umpo.dll
2017-06-13 20:16 - 2017-05-20 10:10 - 00332800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Midi.dll
2017-06-13 20:16 - 2017-05-20 10:10 - 00128000 _____ (Microsoft Corporation) C:\WINDOWS\system32\NPSM.dll
2017-06-13 20:16 - 2017-05-20 10:10 - 00089088 _____ (Microsoft Corporation) C:\WINDOWS\system32\olepro32.dll
2017-06-13 20:16 - 2017-05-20 10:08 - 01926656 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngine.dll
2017-06-13 20:16 - 2017-05-20 10:08 - 00524288 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdbui.dll
2017-06-13 20:16 - 2017-05-20 10:08 - 00174080 _____ (Microsoft Corporation) C:\WINDOWS\system32\RstrtMgr.dll
2017-06-10 17:41 - 2017-06-10 17:42 - 00000000 ____D C:\Users\LE CONNETABLE\Downloads\[nextorrent.net] Roger Waters - Is This the Life We Really Want 2017
2017-06-10 17:30 - 2017-06-10 17:38 - 00000000 ____D C:\Users\LE CONNETABLE\Downloads\[ Torrent9.info ] Alt-J - Relaxer[2017][MP3-320]
2017-06-08 07:56 - 2017-06-08 07:56 - 00100221 _____ C:\Users\LE CONNETABLE\Downloads\170411 BORDE et SINGER.pdf
2017-06-07 18:50 - 2017-06-07 18:50 - 00000020 ___SH C:\Users\DefaultAppPool\ntuser.ini
2017-06-07 18:50 - 2017-06-07 18:50 - 00000000 _SHDL C:\Users\DefaultAppPool\Voisinage réseau
2017-06-07 18:50 - 2017-06-07 18:50 - 00000000 _SHDL C:\Users\DefaultAppPool\Voisinage d'impression
2017-06-07 18:50 - 2017-06-07 18:50 - 00000000 _SHDL C:\Users\DefaultAppPool\Modèles
2017-06-07 18:50 - 2017-06-07 18:50 - 00000000 _SHDL C:\Users\DefaultAppPool\Mes documents
2017-06-07 18:50 - 2017-06-07 18:50 - 00000000 _SHDL C:\Users\DefaultAppPool\Menu Démarrer
2017-06-07 18:50 - 2017-06-07 18:50 - 00000000 _SHDL C:\Users\DefaultAppPool\Documents\Mes vidéos
2017-06-07 18:50 - 2017-06-07 18:50 - 00000000 _SHDL C:\Users\DefaultAppPool\Documents\Mes images
2017-06-07 18:50 - 2017-06-07 18:50 - 00000000 _SHDL C:\Users\DefaultAppPool\Documents\Ma musique
2017-06-07 18:50 - 2017-06-07 18:50 - 00000000 _SHDL C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programmes
2017-06-07 18:50 - 2017-06-07 18:50 - 00000000 _SHDL C:\Users\DefaultAppPool\AppData\Local\Historique
2017-06-07 18:50 - 2017-06-07 18:50 - 00000000 ____D C:\Users\DefaultAppPool
2017-06-07 18:50 - 2015-07-21 20:26 - 00002106 _____ C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft OneDrive.lnk
==================== Un mois - Modifiés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2017-06-26 09:58 - 2016-07-02 06:31 - 00000000 ____D C:\Users\LE CONNETABLE\Documents\COMPTA
2017-06-26 09:51 - 2017-05-17 07:55 - 00000000 ____D C:\WINDOWS\system32\SleepStudy
2017-06-26 08:16 - 2017-03-18 20:23 - 00000000 ____D C:\WINDOWS\system32\FxsTmp
2017-06-26 08:14 - 2017-03-09 18:06 - 00000000 ____D C:\Users\LE CONNETABLE\AppData\Roaming\ZHP
2017-06-26 08:12 - 2017-03-09 18:07 - 00000210 _____ C:\Users\LE
2017-06-26 07:47 - 2016-11-16 10:52 - 00000000 ____D C:\Users\LE CONNETABLE\AppData\LocalLow\Mozilla
2017-06-26 07:42 - 2017-03-18 20:23 - 00000000 ____D C:\WINDOWS\AppReadiness
2017-06-26 07:39 - 2017-05-17 07:59 - 00000000 ____D C:\Users\LE CONNETABLE
2017-06-26 07:39 - 2016-07-05 16:02 - 00000000 ___RD C:\Users\LE CONNETABLE\Desktop\CloudStation
2017-06-25 18:30 - 2017-01-12 09:24 - 00000000 ____D C:\Program Files\SecurityKISS Tunnel
2017-06-25 18:21 - 2015-09-22 18:00 - 00000000 ____D C:\Users\LE CONNETABLE\Downloads\FICHIERS PROGRAMMES
2017-06-25 18:18 - 2017-03-18 20:21 - 00000000 ____D C:\WINDOWS\INF
2017-06-25 17:56 - 2017-05-17 08:21 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2017-06-25 17:56 - 2017-05-17 07:57 - 00000000 ____D C:\ProgramData\NVIDIA
2017-06-25 17:56 - 2014-02-01 13:22 - 00220576 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2017-06-25 07:42 - 2016-07-05 16:02 - 00000000 ____D C:\Users\LE CONNETABLE\AppData\Local\CloudStation
2017-06-24 19:48 - 2016-07-05 15:43 - 00005000 _____ C:\ProgramData\zmlomobd.kxh
2017-06-24 19:10 - 2011-09-30 16:28 - 00000000 ____D C:\Users\LE CONNETABLE\AppData\Local\Google
2017-06-24 19:10 - 2011-09-30 16:27 - 00000000 ____D C:\Program Files\Google
2017-06-24 17:46 - 2016-11-19 19:41 - 00000000 ____D C:\Users\LE CONNETABLE\Downloads\LAURENCE
2017-06-24 11:31 - 2017-03-18 08:02 - 01835008 _____ C:\WINDOWS\system32\config\BBI
2017-06-24 10:50 - 2012-01-09 13:06 - 00000000 ____D C:\ProgramData\Malwarebytes
2017-06-24 10:12 - 2016-11-16 10:40 - 00000000 ____D C:\Program Files\Mozilla Firefox
2017-06-24 10:12 - 2014-06-17 12:08 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service
2017-06-23 07:15 - 2017-03-18 20:23 - 00000000 ___HD C:\Program Files\WindowsApps
2017-06-22 11:44 - 2015-08-26 09:05 - 00000000 ____D C:\Users\LE CONNETABLE\Documents\fact non payé
2017-06-21 17:39 - 2016-04-06 17:03 - 00000000 ____D C:\Users\LE CONNETABLE\Documents\devis
2017-06-21 10:19 - 2015-04-27 18:50 - 00000000 ____D C:\Users\LE CONNETABLE\Documents\hotel Patton
2017-06-20 08:36 - 2016-07-01 09:55 - 00000000 ____D C:\Users\LE CONNETABLE\Documents\A- documents HUBIC
2017-06-17 09:10 - 2017-03-18 20:23 - 00000000 ____D C:\WINDOWS\system32\Macromed
2017-06-15 19:27 - 2016-12-23 19:21 - 00000000 ____D C:\Users\LE CONNETABLE\AppData\Roaming\uTorrent
2017-06-15 19:26 - 2017-05-16 09:51 - 00000000 ___DC C:\WINDOWS\Panther
2017-06-15 18:06 - 2015-12-27 10:41 - 00001038 _____ C:\Users\Public\Desktop\CCleaner.lnk
2017-06-14 08:48 - 2017-03-18 20:23 - 00000000 ____D C:\WINDOWS\rescache
2017-06-14 07:23 - 2017-05-17 07:58 - 02330688 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2017-06-14 07:23 - 2017-03-19 10:22 - 01044344 _____ C:\WINDOWS\system32\perfh00C.dat
2017-06-14 07:23 - 2017-03-19 10:22 - 00228796 _____ C:\WINDOWS\system32\perfc00C.dat
2017-06-14 07:19 - 2015-08-22 20:50 - 00000000 __RHD C:\Users\Public\AccountPictures
2017-06-14 07:16 - 2017-05-17 07:55 - 00315152 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2017-06-14 07:15 - 2012-01-06 18:42 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2017-06-13 20:42 - 2017-03-18 20:23 - 00000000 ___SD C:\WINDOWS\system32\F12
2017-06-13 20:42 - 2017-03-18 20:23 - 00000000 ___RD C:\Program Files\Windows Defender
2017-06-13 20:42 - 2017-03-18 20:23 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2017-06-13 20:42 - 2017-03-18 20:23 - 00000000 ____D C:\WINDOWS\system32\oobe
2017-06-13 20:42 - 2017-03-18 20:23 - 00000000 ____D C:\WINDOWS\system32\appraiser
2017-06-13 20:42 - 2017-03-18 20:23 - 00000000 ____D C:\WINDOWS\ShellExperiences
2017-06-13 20:42 - 2017-03-18 20:23 - 00000000 ____D C:\Program Files\Windows Photo Viewer
2017-06-13 20:26 - 2013-08-14 22:53 - 00000000 ____D C:\WINDOWS\system32\MRT
2017-06-13 20:22 - 2017-03-18 20:14 - 00000000 ____D C:\WINDOWS\CbsTemp
2017-06-13 20:22 - 2011-10-03 10:54 - 130903960 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2017-06-13 20:20 - 2012-01-06 18:42 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2017-06-13 08:38 - 2015-12-04 09:50 - 00000000 ____D C:\Users\LE CONNETABLE\Documents\LOGO
2017-06-12 19:51 - 2015-08-22 20:50 - 00000000 ____D C:\Users\LE CONNETABLE\AppData\Local\Packages
2017-06-12 19:37 - 2016-01-13 19:06 - 00000000 ____D C:\Users\LE CONNETABLE\AppData\Local\ElevatedDiagnostics
2017-06-10 18:28 - 2017-05-10 17:32 - 00000000 ____D C:\Users\LE CONNETABLE\AppData\LocalLow\uTorrent
2017-06-07 18:41 - 2017-05-10 17:33 - 00000000 ____D C:\Users\LE CONNETABLE\Downloads\Kasabian - For Crying Out Loud [2CD Deluxe] (2017) FLAC
2017-06-03 08:32 - 2017-03-18 20:25 - 00835576 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2017-06-03 08:32 - 2017-03-18 20:25 - 00177656 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2017-05-31 07:54 - 2011-09-30 16:00 - 00456360 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2017-05-30 21:01 - 2016-04-11 09:54 - 00000000 ____D C:\Users\LE CONNETABLE\Documents\HEULA
2017-05-29 17:44 - 2016-08-10 18:59 - 00018343 _____ C:\Users\LE CONNETABLE\Documents\CHIEN.odt
==================== Fichiers à la racine de certains dossiers =======
2013-09-27 08:42 - 2013-09-27 08:42 - 0000024 ___SH () C:\Users\LE CONNETABLE\AppData\Roaming\1D959CA221C7573.sys
2012-10-15 18:57 - 2014-05-15 12:39 - 0003760 _____ () C:\Users\LE CONNETABLE\AppData\Roaming\Rim.Desktop.Exception.log
2012-10-15 18:55 - 2014-05-19 17:50 - 0004205 _____ () C:\Users\LE CONNETABLE\AppData\Roaming\Rim.Desktop.HttpServerSetup.log
2012-10-15 18:57 - 2014-05-15 12:39 - 0001694 _____ () C:\Users\LE CONNETABLE\AppData\Roaming\Rim.DesktopHelper.Exception.log
2012-11-14 16:49 - 2014-05-15 12:39 - 0001463 _____ () C:\Users\LE CONNETABLE\AppData\Roaming\Rim.Transcoder.Exception.log
2013-09-27 08:42 - 2013-09-27 08:42 - 0000024 ___SH () C:\Users\LE CONNETABLE\AppData\Roaming\System5908ConfigCollection.dat
2012-11-14 16:49 - 2017-02-08 19:14 - 0019456 _____ () C:\Users\LE CONNETABLE\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2016-05-15 20:09 - 2016-05-17 07:46 - 0000129 _____ () C:\Users\LE CONNETABLE\AppData\Local\fd0e404db734464904e5f09af1edf356
2015-11-10 08:31 - 2015-11-10 08:31 - 0000017 _____ () C:\Users\LE CONNETABLE\AppData\Local\resmon.resmoncfg
2014-01-16 14:42 - 2014-01-16 14:42 - 0000000 _____ () C:\Users\LE CONNETABLE\AppData\Local\{578AD45E-D490-4792-AC23-09102312A253}
2016-07-05 15:43 - 2016-07-05 15:43 - 0000016 _____ () C:\ProgramData\mntemp
2016-07-05 15:43 - 2017-06-24 19:48 - 0005000 _____ () C:\ProgramData\zmlomobd.kxh
==================== Bamital & volsnap ======================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
C:\WINDOWS\explorer.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\winlogon.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\wininit.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\svchost.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\services.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\User32.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\userinit.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\rpcss.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\dnsapi.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\Drivers\volsnap.sys => Le fichier est signé numériquement
LastRegBack: 2017-06-19 08:32
==================== Fin de FRST.txt ============================
Exécuté par LE CONNETABLE (administrateur) sur LEPATTON (26-06-2017 10:10:17)
Exécuté depuis C:\Users\LE CONNETABLE\Desktop
Profils chargés: LE CONNETABLE (Profils disponibles: LE CONNETABLE & DefaultAppPool)
Platform: Microsoft Windows 10 Famille Version 1703 (X86) Langue: Français (France)
Internet Explorer Version 11 (Navigateur par défaut: FF)
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Seiko Epson Corporation) C:\Windows\System32\escsvc.exe
(SEIKO EPSON CORPORATION) C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50ST7.EXE
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(SEIKO EPSON CORPORATION) C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50RP7.EXE
() C:\Program Files\Synology\CloudStation\bin\vss-service.exe
(ABBYY) C:\Program Files\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe
(Windows (R) Win 7 DDK provider) C:\Windows\System32\DbxSvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
() C:\Program Files\Synology\Assistant\UsbClientService.exe
(VIA Technologies, Inc.) C:\Windows\System32\ViakaraokeSrv.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
() C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.18.614.0_x86__kzf8qxf38zg5c\SkypeHost.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Synology Inc.) C:\Users\LE CONNETABLE\AppData\Local\CloudStation\CloudStation.app\bin\cloud-drive-ui.exe
(Synology Inc.) C:\Users\LE CONNETABLE\AppData\Local\CloudStation\CloudStation.app\bin\cloud-drive-connect.exe
(Synology Inc.) C:\Users\LE CONNETABLE\AppData\Local\CloudStation\CloudStation.app\bin\cloud-drive-daemon.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_11705.1001.21.0_x86__8wekyb3d8bbwe\WinStore.App.exe
() C:\Program Files\WindowsApps\Microsoft.ZuneMusic_10.17042.14111.0_x86__8wekyb3d8bbwe\Music.UI.exe
() C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.18062.12990.0_x86__8wekyb3d8bbwe\Microsoft.Photos.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Apache Software Foundation) C:\Program Files\OpenOffice 4\program\scalc.exe
(Apache Software Foundation) C:\Program Files\OpenOffice 4\program\soffice.exe
(Apache Software Foundation) C:\Program Files\OpenOffice 4\program\soffice.bin
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
==================== Registre (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [485280 2017-03-18] (Microsoft Corporation)
HKLM\...\Run: [NvBackend] => C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe [2634896 2015-07-24] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [Malwarebytes TrayApp] => C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\mbamtray.exe [3146704 2017-05-09] (Malwarebytes)
HKU\S-1-5-21-3209782926-3138353277-2660692922-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner.exe [7648984 2017-06-13] (Piriform Ltd)
HKU\S-1-5-21-3209782926-3138353277-2660692922-1000\...\Run: [uTorrent] => C:\Users\LE CONNETABLE\AppData\Roaming\uTorrent\uTorrent.exe [1980608 2017-06-07] (BitTorrent Inc.)
HKU\S-1-5-21-3209782926-3138353277-2660692922-1000\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\WINDOWS\system32\scrnsave.scr [29184 2017-03-18] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ 01UnsuppModule] -> {AEB16659-2125-4ADA-A4AB-45EE21E86469} => C:\Users\LE CONNETABLE\AppData\Local\CloudStation\CloudStation.app\icon-overlay\17\x86\iconOverlay.dll [2017-01-04] (TODO:
ShellIconOverlayIdentifiers: [ 02SyncingModule] -> {48AB5ADA-36B1-4137-99C9-2BD97F8788AB} => C:\Users\LE CONNETABLE\AppData\Local\CloudStation\CloudStation.app\icon-overlay\17\x86\iconOverlay.dll [2017-01-04] (TODO:
ShellIconOverlayIdentifiers: [ 03SyncedModule] -> {472CE1AD-5D53-4BCF-A1FB-3982A5F55138} => C:\Users\LE CONNETABLE\AppData\Local\CloudStation\CloudStation.app\icon-overlay\17\x86\iconOverlay.dll [2017-01-04] (TODO:
ShellIconOverlayIdentifiers: [ 04ReadOnlyModule] -> {A433C3E0-8B24-40EB-93C3-4B10D9959F58} => C:\Users\LE CONNETABLE\AppData\Local\CloudStation\CloudStation.app\icon-overlay\17\x86\iconOverlay.dll [2017-01-04] (TODO:
ShellIconOverlayIdentifiers: [ 05NoPermModule] -> {C701AD67-3DF0-47C9-89CB-DFA6207BE229} => C:\Users\LE CONNETABLE\AppData\Local\CloudStation\CloudStation.app\icon-overlay\17\x86\iconOverlay.dll [2017-01-04] (TODO:
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Pas de fichier
Startup: C:\Users\LE CONNETABLE\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Synology Cloud Station Drive.lnk [2017-06-26]
ShortcutTarget: Synology Cloud Station Drive.lnk -> C:\Program Files\Synology\CloudStation\bin\launcher.exe (Synology Inc.)
CHR HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
ProxyServer: [S-1-5-21-3209782926-3138353277-2660692922-1000] => :0
AutoConfigURL: [S-1-5-21-3209782926-3138353277-2660692922-1000] => :0
Hosts: 127.0.0.1 localhost
Tcpip\..\Interfaces\{60a50d7e-8a14-4637-b234-ee787f64ec61}: [DhcpNameServer] 10.11.0.1
Tcpip\..\Interfaces\{8e24db6c-f4a4-49c2-a0f5-3ec4be5bbce5}: [NameServer] 80.10.246.2,80.10.246.129
Tcpip\..\Interfaces\{e7ec1896-6f63-416b-9748-5d8cffaa2dab}: [DhcpNameServer] 10.11.0.1
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com
HKU\S-1-5-21-3209782926-3138353277-2660692922-1000\Software\Microsoft\Internet Explorer\Main,Start Page =
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-3209782926-3138353277-2660692922-1000 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-3209782926-3138353277-2660692922-1000 -> {E2172FE1-4CAE-462C-BC76-50D9837A2F09} URL = hxxp://www.google.com/search?hl=en&q={searchTerms}&rlz=1I7PRFB_frFR451
BHO: E-Web Print -> {201CF130-E29C-4E5C-A73F-CD197DEFA6AE} -> C:\Program Files\Epson Software\E-Web Print\ewps_tb.dll [2013-02-28] (SEIKO EPSON CORPORATION)
BHO: Module complémentaire de navigateur pour la désactivation de Google Analytics -> {75EF13CE-B59E-41ba-8A5A-A944031BD8B4} -> C:\Program Files\Google\Google Analytics Opt-Out\gaoptout.dll [2014-04-03] (Google, Inc.)
BHO: Easy Photo Print -> {9421DD08-935F-4701-A9CA-22DF90AC4EA6} -> C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll [2012-01-25] (SEIKO EPSON CORPORATION)
Toolbar: HKLM - Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll [2012-01-25] (SEIKO EPSON CORPORATION)
Toolbar: HKLM - E-Web Print - {201CF130-E29C-4E5C-A73F-CD197DEFA6AE} - C:\Program Files\Epson Software\E-Web Print\ewps_tb.dll [2013-02-28] (SEIKO EPSON CORPORATION)
Toolbar: HKU\S-1-5-21-3209782926-3138353277-2660692922-1000 -> Pas de nom - {681D7A5C-C4A3-4434-828F-2287AB4C0572} - Pas de fichier
DPF: {166B1BCA-3F9C-11CF-8075-444553540000} hxxp://download.macromedia.com/pub/shockwave/cabs/director/sw.cab
DPF: {D0C0F75C-683A-4390-A791-1ACFD5599AB8} hxxp://gameshell.oberon-media.com/Gameshell/GameHost/1.0/OberonGameHost.cab
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2014-07-14] (Microsoft Corporation)
FireFox:
========
FF ProfilePath: C:\Users\LE CONNETABLE\AppData\Roaming\Mozilla\Firefox\Profiles\g58glucx.default-1454691080315 [2017-06-26]
FF NewTab: Mozilla\Firefox\Profiles\g58glucx.default-1454691080315 -> about:newtab
FF Homepage: Mozilla\Firefox\Profiles\g58glucx.default-1454691080315 -> hxxps://messageriepro3.orange.fr/#mail/SF_INBOX
FF Keyword.URL: Mozilla\Firefox\Profiles\g58glucx.default-1454691080315 -> user_pref("keyword.URL", true);
FF Extension: (Adblock Plus) - C:\Users\LE CONNETABLE\AppData\Roaming\Mozilla\Firefox\Profiles\g58glucx.default-1454691080315\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2017-06-07]
FF Extension: (Skype Click to Call) - C:\Program Files\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}.xpi [2014-07-14] [non signé]
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF32_26_0_0_131.dll [2017-06-17] ()
FF Plugin: @adobe.com/ShockwavePlayer -> C:\Windows\system32\Adobe\Director\np32dsw_1210150.dll [2014-03-11] (Adobe Systems, Inc.)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] ( Microsoft Corporation)
FF Plugin: @nvidia.com/3DVision -> C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll [2016-11-14] (NVIDIA Corporation)
FF Plugin: @nvidia.com/3DVisionStreaming -> C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2016-11-14] (NVIDIA Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-06-24] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-06-24] (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.2.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2017-04-05] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-3209782926-3138353277-2660692922-1000: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\LE CONNETABLE\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2014-11-18] (Unity Technologies ApS)
Chrome:
=======
CHR DefaultProfile: Default
CHR dev: Chrome dev build détecté(e)! <==== ATTENTION
==================== Services (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 ABBYY.Licensing.FineReader.Sprint.9.0; C:\Program Files\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe [759048 2009-05-14] (ABBYY)
R2 Cloud Station Drive VSS Service; C:\Program Files\Synology\CloudStation\bin\vss-service.exe [244248 2016-07-04] ()
R2 DbxSvc; C:\WINDOWS\system32\DbxSvc.exe [36648 2016-10-06] (Windows (R) Win 7 DDK provider)
R2 EpsonScanSvc; C:\Windows\system32\EscSvc.exe [122000 2011-12-12] (Seiko Epson Corporation)
R2 EPSON_EB_RPCV4_04; C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50ST7.EXE [167520 2012-02-20] (SEIKO EPSON CORPORATION)
R2 EPSON_PM_RPCV4_04; C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50RP7.EXE [142432 2012-02-21] (SEIKO EPSON CORPORATION)
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [921232 2015-07-24] (NVIDIA Corporation)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [3398608 2017-05-09] (Malwarebytes)
R2 NvNetworkService; C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe [1871504 2015-07-24] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [4305040 2015-07-24] (NVIDIA Corporation)
R2 UsbClientService; C:\Program Files\Synology\Assistant\UsbClientService.exe [248840 2016-03-18] () [Fichier non signé]
R2 VIAKaraokeService; C:\WINDOWS\system32\viakaraokesrv.exe [46736 2015-12-09] (VIA Technologies, Inc.)
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [265352 2017-03-18] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [82488 2017-03-18] (Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ======================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 atksgt; C:\WINDOWS\System32\DRIVERS\atksgt.sys [281760 2013-03-25] ()
R3 busenum; C:\WINDOWS\System32\drivers\busenum.sys [53728 2012-08-03] (Windows (R) Win 7 DDK provider)
R3 camfilt2; C:\WINDOWS\system32\DRIVERS\camfilt2.sys [96384 2007-08-29] (Guillemot Corporation)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [109184 2016-09-05] (Samsung Electronics Co., Ltd.)
R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae.sys [59936 2017-06-24] ()
R2 lirsgt; C:\WINDOWS\System32\DRIVERS\lirsgt.sys [25888 2013-03-25] ()
R2 MBAMChameleon; C:\WINDOWS\system32\drivers\MBAMChameleon.sys [162208 2017-06-24] (Malwarebytes)
R3 MBAMFarflt; C:\WINDOWS\system32\drivers\farflt.sys [97208 2017-06-25] (Malwarebytes)
R3 MBAMProtection; C:\WINDOWS\system32\drivers\mbam.sys [39840 2017-06-25] (Malwarebytes)
R0 MBAMSwissArmy; C:\WINDOWS\System32\drivers\MBAMSwissArmy.sys [220576 2017-06-25] (Malwarebytes)
R3 MBAMWebProtection; C:\WINDOWS\system32\drivers\mwac.sys [74656 2017-06-26] (Malwarebytes)
R1 MpKsl4b01a644; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{C9C1DF1D-6EC7-4E9C-B2A4-594F4DFFDFA1}\MpKsl4b01a644.sys [39168 2017-06-25] (Microsoft Corporation)
R1 MpKsle702a616; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{3AF8CE6E-E029-440A-99D0-9CC2E6FDDF0A}\MpKsle702a616.sys [39168 2017-06-25] (Microsoft Corporation)
R3 MTsensor; C:\WINDOWS\system32\DRIVERS\ASACPI.sys [5810 2004-08-13] ()
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [18576 2015-07-24] (NVIDIA Corporation)
S3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad32v.sys [44840 2015-08-11] (NVIDIA Corporation)
R3 ovt530; C:\WINDOWS\System32\Drivers\ov530vid.sys [167464 2007-02-02] (OmniVision Technologies, Inc.)
R3 rt640x86; C:\WINDOWS\System32\drivers\rt640x86.sys [746752 2015-07-28] (Realtek )
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [147072 2016-09-05] (Samsung Electronics Co., Ltd.)
R3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [35088 2013-04-30] (The OpenVPN Project)
R3 VIAHdAudAddService; C:\WINDOWS\system32\drivers\viahduaa.sys [573560 2015-12-09] (VIA Technologies, Inc.)
S0 WdBoot; C:\WINDOWS\System32\drivers\WdBoot.sys [37464 2017-03-18] (Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\WdFilter.sys [243104 2017-03-18] (Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [96672 2017-03-18] (Microsoft Corporation)
U3 idsvc; pas de ImagePath
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois - Créés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2017-06-26 10:10 - 2017-06-26 10:11 - 00017060 _____ C:\Users\LE CONNETABLE\Desktop\FRST.txt
2017-06-26 10:09 - 2017-06-26 10:10 - 00000000 ____D C:\FRST
2017-06-26 10:08 - 2017-06-26 10:08 - 01780224 _____ (Farbar) C:\Users\LE CONNETABLE\Desktop\FRST.exe
2017-06-26 08:17 - 2017-06-26 08:17 - 00129095 _____ C:\Users\LE CONNETABLE\Desktop\ZHPDiag.txt
2017-06-26 08:11 - 2017-06-26 08:13 - 00000000 ____D C:\Users\LE CONNETABLE\AppData\Local\ZHP
2017-06-26 08:11 - 2017-06-26 08:12 - 00000911 _____ C:\Users\LE CONNETABLE\Desktop\ZHPDiag.lnk
2017-06-26 08:10 - 2017-06-26 08:10 - 02754944 _____ C:\Users\LE CONNETABLE\Downloads\ZHPDiag3.exe
2017-06-25 18:22 - 2017-06-25 18:23 - 04110280 _____ C:\Users\LE CONNETABLE\Downloads\adwcleaner_6.047.exe
2017-06-25 18:19 - 2017-06-25 18:19 - 00044802 _____ C:\Users\LE CONNETABLE\Documents\cc_20170625_181953.reg
2017-06-24 10:54 - 2017-06-26 08:36 - 00074656 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys
2017-06-24 10:54 - 2017-06-25 17:56 - 00097208 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\farflt.sys
2017-06-24 10:54 - 2017-06-25 17:56 - 00039840 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2017-06-24 10:54 - 2017-06-24 10:54 - 00162208 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMChameleon.sys
2017-06-24 10:51 - 2017-06-24 10:54 - 00059936 _____ C:\WINDOWS\system32\Drivers\mbae.sys
2017-06-24 10:51 - 2017-06-24 10:51 - 00002097 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2017-06-24 10:51 - 2017-06-24 10:51 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2017-06-24 10:50 - 2017-06-24 10:50 - 00000000 ____D C:\Program Files\Malwarebytes
2017-06-24 10:47 - 2017-06-24 10:48 - 64025992 _____ (Malwarebytes ) C:\Users\LE CONNETABLE\Downloads\mb3-setup-cb.NT-3.1.2.1733-10139.exe
2017-06-24 09:51 - 2017-06-25 18:26 - 00000000 ____D C:\AdwCleaner
2017-06-24 07:55 - 2017-06-25 18:31 - 00000200 _____ C:\Users\LE CONNETABLE\SecurityKISSTunnel.config
2017-06-22 17:56 - 2017-06-22 18:06 - 00055079 _____ C:\Users\LE CONNETABLE\Documents\sferis.odt
2017-06-21 17:25 - 2017-06-21 17:35 - 00056191 _____ C:\Users\LE CONNETABLE\Documents\jAZZENBAIE.odt
2017-06-18 20:09 - 2017-06-18 20:09 - 00330300 _____ C:\Users\LE CONNETABLE\Downloads\Fiche_info_licence_Sc_Educ_2017_IDF.pdf
2017-06-13 20:17 - 2017-06-03 11:36 - 01150784 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase.dll
2017-06-13 20:17 - 2017-06-03 11:33 - 00095640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tdx.sys
2017-06-13 20:17 - 2017-06-03 11:25 - 00177056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tpm.sys
2017-06-13 20:17 - 2017-06-03 11:24 - 00249016 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotifyIcon.exe
2017-06-13 20:17 - 2017-06-03 11:20 - 02086304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2017-06-13 20:17 - 2017-06-03 11:11 - 00073728 _____ (Microsoft Corporation) C:\WINDOWS\system32\utcutil.dll
2017-06-13 20:17 - 2017-06-03 11:09 - 00094720 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataTimeUtil.dll
2017-06-13 20:17 - 2017-06-03 11:08 - 00027648 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BasicRender.sys
2017-06-13 20:17 - 2017-06-03 11:07 - 00239104 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2017-06-13 20:17 - 2017-06-03 11:07 - 00041472 _____ (Microsoft Corporation) C:\WINDOWS\system32\musdialoghandlers.dll
2017-06-13 20:17 - 2017-06-03 11:06 - 00088064 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe
2017-06-13 20:17 - 2017-06-03 11:04 - 00556032 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2017-06-13 20:17 - 2017-06-03 11:03 - 00467456 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmCoreProvisioning.dll
2017-06-13 20:17 - 2017-06-03 10:59 - 02672128 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2017-06-13 20:17 - 2017-06-03 10:57 - 00797184 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2017-06-13 20:17 - 2017-06-03 10:55 - 02132480 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2017-06-13 20:17 - 2017-06-03 10:55 - 00791552 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcsvc.dll
2017-06-13 20:17 - 2017-06-03 10:54 - 01831936 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2017-06-13 20:17 - 2017-05-20 11:00 - 00233376 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys
2017-06-13 20:17 - 2017-05-20 10:50 - 00155040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpsd.sys
2017-06-13 20:17 - 2017-05-20 10:47 - 01474800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2017-06-13 20:17 - 2017-05-20 10:46 - 00754080 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll
2017-06-13 20:17 - 2017-05-20 10:46 - 00534424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdmp.sys
2017-06-13 20:17 - 2017-05-20 10:46 - 00122272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storahci.sys
2017-06-13 20:17 - 2017-05-20 10:45 - 00480160 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys
2017-06-13 20:17 - 2017-05-20 10:45 - 00259352 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthService.exe
2017-06-13 20:17 - 2017-05-20 10:43 - 01529384 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll
2017-06-13 20:17 - 2017-05-20 10:29 - 00786944 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthSSO.dll
2017-06-13 20:17 - 2017-05-20 10:27 - 00008704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rootmdm.sys
2017-06-13 20:17 - 2017-05-20 10:26 - 00226304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\xboxgip.sys
2017-06-13 20:17 - 2017-05-20 10:26 - 00013824 _____ (Microsoft Corporation) C:\WINDOWS\system32\snmptrap.exe
2017-06-13 20:17 - 2017-05-20 10:25 - 00174080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.Diagnostics.dll
2017-06-13 20:17 - 2017-05-20 10:25 - 00113664 _____ (Microsoft Corporation) C:\WINDOWS\system32\XblGameSaveExt.dll
2017-06-13 20:17 - 2017-05-20 10:20 - 00807424 _____ (Microsoft Corporation) C:\WINDOWS\system32\StoreAgent.dll
2017-06-13 20:17 - 2017-05-20 10:20 - 00368128 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgentUserBroker.exe
2017-06-13 20:17 - 2017-05-20 10:17 - 00329728 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe
2017-06-13 20:16 - 2017-06-03 11:59 - 01427656 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2017-06-13 20:16 - 2017-06-03 11:59 - 00626528 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2017-06-13 20:16 - 2017-06-03 11:59 - 00311200 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2017-06-13 20:16 - 2017-06-03 11:37 - 00098208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tm.sys
2017-06-13 20:16 - 2017-06-03 11:36 - 05862304 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2017-06-13 20:16 - 2017-06-03 11:35 - 02259768 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreUIComponents.dll
2017-06-13 20:16 - 2017-06-03 11:33 - 00698384 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2017-06-13 20:16 - 2017-06-03 11:28 - 02022816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2017-06-13 20:16 - 2017-06-03 11:26 - 00777400 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipSVC.dll
2017-06-13 20:16 - 2017-06-03 11:26 - 00266640 _____ (Microsoft Corporation) C:\WINDOWS\system32\capauthz.dll
2017-06-13 20:16 - 2017-06-03 11:23 - 20373920 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2017-06-13 20:16 - 2017-06-03 11:23 - 06760024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2017-06-13 20:16 - 2017-06-03 11:23 - 00573856 _____ (Microsoft Corporation) C:\WINDOWS\system32\comctl32.dll
2017-06-13 20:16 - 2017-06-03 11:22 - 00296352 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHost.dll
2017-06-13 20:16 - 2017-06-03 11:11 - 02958848 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2017-06-13 20:16 - 2017-06-03 11:11 - 00116736 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmredir.dll
2017-06-13 20:16 - 2017-06-03 11:11 - 00038912 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2017-06-13 20:16 - 2017-06-03 11:10 - 00309760 _____ (Microsoft Corporation) C:\WINDOWS\system32\PerceptionSimulationExtensions.dll
2017-06-13 20:16 - 2017-06-03 11:07 - 00002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzres.dll
2017-06-13 20:16 - 2017-06-03 11:06 - 00061440 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCredentialDeployment.exe
2017-06-13 20:16 - 2017-06-03 11:05 - 20506624 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2017-06-13 20:16 - 2017-06-03 11:05 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Identity.Provider.dll
2017-06-13 20:16 - 2017-06-03 11:05 - 00169984 _____ (Microsoft Corporation) C:\WINDOWS\system32\devicengccredprov.dll
2017-06-13 20:16 - 2017-06-03 11:04 - 00661504 _____ C:\WINDOWS\system32\MBR2GPT.EXE
2017-06-13 20:16 - 2017-06-03 11:03 - 19336192 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2017-06-13 20:16 - 2017-06-03 11:03 - 00168960 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdboot.exe
2017-06-13 20:16 - 2017-06-03 11:00 - 00358400 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2017-06-13 20:16 - 2017-06-03 10:59 - 00636416 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll
2017-06-13 20:16 - 2017-06-03 10:58 - 05961216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2017-06-13 20:16 - 2017-06-03 10:57 - 11870720 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2017-06-13 20:16 - 2017-06-03 10:57 - 06535168 _____ (Microsoft Corporation) C:\WINDOWS\system32\mspaint.exe
2017-06-13 20:16 - 2017-06-03 10:57 - 01248768 _____ (Microsoft Corporation) C:\WINDOWS\system32\AzureSettingSyncProvider.dll
2017-06-13 20:16 - 2017-06-03 10:56 - 06292992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2017-06-13 20:16 - 2017-06-03 10:55 - 03656192 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2017-06-13 20:16 - 2017-06-03 10:55 - 02369536 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2017-06-13 20:16 - 2017-06-03 10:55 - 01844224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
2017-06-13 20:16 - 2017-06-03 10:55 - 01585664 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2017-06-13 20:16 - 2017-06-03 10:55 - 01560064 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2017-06-13 20:16 - 2017-06-03 10:55 - 01019904 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll
2017-06-13 20:16 - 2017-06-03 10:55 - 00949760 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2017-06-13 20:16 - 2017-06-03 10:55 - 00886272 _____ (Microsoft Corporation) C:\WINDOWS\HelpPane.exe
2017-06-13 20:16 - 2017-06-03 10:55 - 00622592 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32spl.dll
2017-06-13 20:16 - 2017-06-03 10:54 - 02341376 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2017-06-13 20:16 - 2017-06-03 10:54 - 02298368 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2017-06-13 20:16 - 2017-06-03 10:53 - 04559360 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbgeng.dll
2017-06-13 20:16 - 2017-06-03 10:52 - 01331200 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2017-06-13 20:16 - 2017-06-03 10:46 - 00055808 _____ (Microsoft Corporation) C:\WINDOWS\bfsvc.exe
2017-06-13 20:16 - 2017-05-20 11:13 - 01333136 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2017-06-13 20:16 - 2017-05-20 10:55 - 00606960 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2017-06-13 20:16 - 2017-05-20 10:50 - 00095648 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dam.sys
2017-06-13 20:16 - 2017-05-20 10:48 - 04469832 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2017-06-13 20:16 - 2017-05-20 10:48 - 00297576 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2017-06-13 20:16 - 2017-05-20 10:47 - 00755616 _____ (Microsoft Corporation) C:\WINDOWS\system32\efscore.dll
2017-06-13 20:16 - 2017-05-20 10:47 - 00582560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2017-06-13 20:16 - 2017-05-20 10:46 - 05821496 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2017-06-13 20:16 - 2017-05-20 10:46 - 01266544 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
2017-06-13 20:16 - 2017-05-20 10:46 - 00173472 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2017-06-13 20:16 - 2017-05-20 10:45 - 00349600 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2017-06-13 20:16 - 2017-05-20 10:44 - 00519680 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2017-06-13 20:16 - 2017-05-20 10:44 - 00296352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fastfat.sys
2017-06-13 20:16 - 2017-05-20 10:44 - 00181664 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll
2017-06-13 20:16 - 2017-05-20 10:43 - 05802968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2017-06-13 20:16 - 2017-05-20 10:43 - 04672848 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2017-06-13 20:16 - 2017-05-20 10:43 - 02424016 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2017-06-13 20:16 - 2017-05-20 10:43 - 01455592 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2017-06-13 20:16 - 2017-05-20 10:43 - 01120864 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2017-06-13 20:16 - 2017-05-20 10:43 - 00354400 _____ (Microsoft Corporation) C:\WINDOWS\system32\MMDevAPI.dll
2017-06-13 20:16 - 2017-05-20 10:29 - 13840384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2017-06-13 20:16 - 2017-05-20 10:29 - 00584192 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbonRes.dll
2017-06-13 20:16 - 2017-05-20 10:29 - 00314880 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConhostV2.dll
2017-06-13 20:16 - 2017-05-20 10:29 - 00075776 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsrvext.dll
2017-06-13 20:16 - 2017-05-20 10:27 - 02199552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
2017-06-13 20:16 - 2017-05-20 10:27 - 00141824 _____ (Microsoft Corporation) C:\WINDOWS\system32\smartscreenps.dll
2017-06-13 20:16 - 2017-05-20 10:26 - 00059904 _____ C:\WINDOWS\system32\xboxgipsynthetic.dll
2017-06-13 20:16 - 2017-05-20 10:26 - 00025088 _____ (Microsoft Corporation) C:\WINDOWS\system32\odbcconf.dll
2017-06-13 20:16 - 2017-05-20 10:25 - 00826368 _____ (Microsoft Corporation) C:\WINDOWS\system32\NPSMDesktopProvider.dll
2017-06-13 20:16 - 2017-05-20 10:24 - 00362496 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll
2017-06-13 20:16 - 2017-05-20 10:24 - 00140800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.SharedPC.AccountManager.dll
2017-06-13 20:16 - 2017-05-20 10:23 - 06728192 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2017-06-13 20:16 - 2017-05-20 10:22 - 00754176 _____ (Microsoft Corporation) C:\WINDOWS\system32\MessagingDataModel2.dll
2017-06-13 20:16 - 2017-05-20 10:22 - 00394240 _____ (Microsoft Corporation) C:\WINDOWS\system32\DictationManager.dll
2017-06-13 20:16 - 2017-05-20 10:22 - 00359424 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadcloudap.dll
2017-06-13 20:16 - 2017-05-20 10:22 - 00331776 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Display.dll
2017-06-13 20:16 - 2017-05-20 10:22 - 00291840 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll
2017-06-13 20:16 - 2017-05-20 10:21 - 01984000 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceFlows.DataModel.dll
2017-06-13 20:16 - 2017-05-20 10:21 - 00476672 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll
2017-06-13 20:16 - 2017-05-20 10:21 - 00454144 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowManagement.dll
2017-06-13 20:16 - 2017-05-20 10:21 - 00444928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.System.Launcher.dll
2017-06-13 20:16 - 2017-05-20 10:21 - 00349184 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll
2017-06-13 20:16 - 2017-05-20 10:21 - 00103424 _____ (Microsoft Corporation) C:\WINDOWS\system32\embeddedmodesvc.dll
2017-06-13 20:16 - 2017-05-20 10:20 - 00507392 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2017-06-13 20:16 - 2017-05-20 10:20 - 00354304 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll
2017-06-13 20:16 - 2017-05-20 10:19 - 05719040 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
2017-06-13 20:16 - 2017-05-20 10:19 - 01208320 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2017-06-13 20:16 - 2017-05-20 10:19 - 00872448 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2017-06-13 20:16 - 2017-05-20 10:19 - 00868352 _____ (Microsoft Corporation) C:\WINDOWS\system32\XboxNetApiSvc.dll
2017-06-13 20:16 - 2017-05-20 10:19 - 00787456 _____ (Microsoft Corporation) C:\WINDOWS\system32\sysmain.dll
2017-06-13 20:16 - 2017-05-20 10:19 - 00768000 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll
2017-06-13 20:16 - 2017-05-20 10:19 - 00678912 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2017-06-13 20:16 - 2017-05-20 10:19 - 00617472 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2017-06-13 20:16 - 2017-05-20 10:18 - 01450496 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll
2017-06-13 20:16 - 2017-05-20 10:18 - 00532992 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
2017-06-13 20:16 - 2017-05-20 10:18 - 00456704 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppReadiness.dll
2017-06-13 20:16 - 2017-05-20 10:17 - 01513984 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2017-06-13 20:16 - 2017-05-20 10:17 - 00952832 _____ (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.dll
2017-06-13 20:16 - 2017-05-20 10:17 - 00909312 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll
2017-06-13 20:16 - 2017-05-20 10:17 - 00707072 _____ (Microsoft Corporation) C:\WINDOWS\system32\ISM.dll
2017-06-13 20:16 - 2017-05-20 10:17 - 00050176 _____ (Microsoft Corporation) C:\WINDOWS\system32\cldapi.dll
2017-06-13 20:16 - 2017-05-20 10:16 - 05225984 _____ (Microsoft Corporation) C:\WINDOWS\system32\d2d1.dll
2017-06-13 20:16 - 2017-05-20 10:16 - 03667456 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_47.dll
2017-06-13 20:16 - 2017-05-20 10:16 - 02588160 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapRouter.dll
2017-06-13 20:16 - 2017-05-20 10:16 - 01918464 _____ (Microsoft Corporation) C:\WINDOWS\system32\smartscreen.exe
2017-06-13 20:16 - 2017-05-20 10:16 - 00899584 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll
2017-06-13 20:16 - 2017-05-20 10:15 - 02088960 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapGeocoder.dll
2017-06-13 20:16 - 2017-05-20 10:15 - 01830400 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll
2017-06-13 20:16 - 2017-05-20 10:14 - 04417024 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
2017-06-13 20:16 - 2017-05-20 10:14 - 04056576 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2017-06-13 20:16 - 2017-05-20 10:14 - 03097088 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsThresholdAdminFlowUI.dll
2017-06-13 20:16 - 2017-05-20 10:14 - 02679296 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRH.dll
2017-06-13 20:16 - 2017-05-20 10:14 - 02211328 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputService.dll
2017-06-13 20:16 - 2017-05-20 10:14 - 01035264 _____ (Microsoft Corporation) C:\WINDOWS\system32\ShareHost.dll
2017-06-13 20:16 - 2017-05-20 10:12 - 01127936 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2017-06-13 20:16 - 2017-05-20 10:12 - 00557568 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2017-06-13 20:16 - 2017-05-20 10:12 - 00485888 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnprv.dll
2017-06-13 20:16 - 2017-05-20 10:11 - 01536512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2017-06-13 20:16 - 2017-05-20 10:11 - 00125440 _____ (Microsoft Corporation) C:\WINDOWS\system32\umpo.dll
2017-06-13 20:16 - 2017-05-20 10:10 - 00332800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Midi.dll
2017-06-13 20:16 - 2017-05-20 10:10 - 00128000 _____ (Microsoft Corporation) C:\WINDOWS\system32\NPSM.dll
2017-06-13 20:16 - 2017-05-20 10:10 - 00089088 _____ (Microsoft Corporation) C:\WINDOWS\system32\olepro32.dll
2017-06-13 20:16 - 2017-05-20 10:08 - 01926656 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngine.dll
2017-06-13 20:16 - 2017-05-20 10:08 - 00524288 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdbui.dll
2017-06-13 20:16 - 2017-05-20 10:08 - 00174080 _____ (Microsoft Corporation) C:\WINDOWS\system32\RstrtMgr.dll
2017-06-10 17:41 - 2017-06-10 17:42 - 00000000 ____D C:\Users\LE CONNETABLE\Downloads\[nextorrent.net] Roger Waters - Is This the Life We Really Want 2017
2017-06-10 17:30 - 2017-06-10 17:38 - 00000000 ____D C:\Users\LE CONNETABLE\Downloads\[ Torrent9.info ] Alt-J - Relaxer[2017][MP3-320]
2017-06-08 07:56 - 2017-06-08 07:56 - 00100221 _____ C:\Users\LE CONNETABLE\Downloads\170411 BORDE et SINGER.pdf
2017-06-07 18:50 - 2017-06-07 18:50 - 00000020 ___SH C:\Users\DefaultAppPool\ntuser.ini
2017-06-07 18:50 - 2017-06-07 18:50 - 00000000 _SHDL C:\Users\DefaultAppPool\Voisinage réseau
2017-06-07 18:50 - 2017-06-07 18:50 - 00000000 _SHDL C:\Users\DefaultAppPool\Voisinage d'impression
2017-06-07 18:50 - 2017-06-07 18:50 - 00000000 _SHDL C:\Users\DefaultAppPool\Modèles
2017-06-07 18:50 - 2017-06-07 18:50 - 00000000 _SHDL C:\Users\DefaultAppPool\Mes documents
2017-06-07 18:50 - 2017-06-07 18:50 - 00000000 _SHDL C:\Users\DefaultAppPool\Menu Démarrer
2017-06-07 18:50 - 2017-06-07 18:50 - 00000000 _SHDL C:\Users\DefaultAppPool\Documents\Mes vidéos
2017-06-07 18:50 - 2017-06-07 18:50 - 00000000 _SHDL C:\Users\DefaultAppPool\Documents\Mes images
2017-06-07 18:50 - 2017-06-07 18:50 - 00000000 _SHDL C:\Users\DefaultAppPool\Documents\Ma musique
2017-06-07 18:50 - 2017-06-07 18:50 - 00000000 _SHDL C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programmes
2017-06-07 18:50 - 2017-06-07 18:50 - 00000000 _SHDL C:\Users\DefaultAppPool\AppData\Local\Historique
2017-06-07 18:50 - 2017-06-07 18:50 - 00000000 ____D C:\Users\DefaultAppPool
2017-06-07 18:50 - 2015-07-21 20:26 - 00002106 _____ C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft OneDrive.lnk
==================== Un mois - Modifiés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2017-06-26 09:58 - 2016-07-02 06:31 - 00000000 ____D C:\Users\LE CONNETABLE\Documents\COMPTA
2017-06-26 09:51 - 2017-05-17 07:55 - 00000000 ____D C:\WINDOWS\system32\SleepStudy
2017-06-26 08:16 - 2017-03-18 20:23 - 00000000 ____D C:\WINDOWS\system32\FxsTmp
2017-06-26 08:14 - 2017-03-09 18:06 - 00000000 ____D C:\Users\LE CONNETABLE\AppData\Roaming\ZHP
2017-06-26 08:12 - 2017-03-09 18:07 - 00000210 _____ C:\Users\LE
2017-06-26 07:47 - 2016-11-16 10:52 - 00000000 ____D C:\Users\LE CONNETABLE\AppData\LocalLow\Mozilla
2017-06-26 07:42 - 2017-03-18 20:23 - 00000000 ____D C:\WINDOWS\AppReadiness
2017-06-26 07:39 - 2017-05-17 07:59 - 00000000 ____D C:\Users\LE CONNETABLE
2017-06-26 07:39 - 2016-07-05 16:02 - 00000000 ___RD C:\Users\LE CONNETABLE\Desktop\CloudStation
2017-06-25 18:30 - 2017-01-12 09:24 - 00000000 ____D C:\Program Files\SecurityKISS Tunnel
2017-06-25 18:21 - 2015-09-22 18:00 - 00000000 ____D C:\Users\LE CONNETABLE\Downloads\FICHIERS PROGRAMMES
2017-06-25 18:18 - 2017-03-18 20:21 - 00000000 ____D C:\WINDOWS\INF
2017-06-25 17:56 - 2017-05-17 08:21 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2017-06-25 17:56 - 2017-05-17 07:57 - 00000000 ____D C:\ProgramData\NVIDIA
2017-06-25 17:56 - 2014-02-01 13:22 - 00220576 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2017-06-25 07:42 - 2016-07-05 16:02 - 00000000 ____D C:\Users\LE CONNETABLE\AppData\Local\CloudStation
2017-06-24 19:48 - 2016-07-05 15:43 - 00005000 _____ C:\ProgramData\zmlomobd.kxh
2017-06-24 19:10 - 2011-09-30 16:28 - 00000000 ____D C:\Users\LE CONNETABLE\AppData\Local\Google
2017-06-24 19:10 - 2011-09-30 16:27 - 00000000 ____D C:\Program Files\Google
2017-06-24 17:46 - 2016-11-19 19:41 - 00000000 ____D C:\Users\LE CONNETABLE\Downloads\LAURENCE
2017-06-24 11:31 - 2017-03-18 08:02 - 01835008 _____ C:\WINDOWS\system32\config\BBI
2017-06-24 10:50 - 2012-01-09 13:06 - 00000000 ____D C:\ProgramData\Malwarebytes
2017-06-24 10:12 - 2016-11-16 10:40 - 00000000 ____D C:\Program Files\Mozilla Firefox
2017-06-24 10:12 - 2014-06-17 12:08 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service
2017-06-23 07:15 - 2017-03-18 20:23 - 00000000 ___HD C:\Program Files\WindowsApps
2017-06-22 11:44 - 2015-08-26 09:05 - 00000000 ____D C:\Users\LE CONNETABLE\Documents\fact non payé
2017-06-21 17:39 - 2016-04-06 17:03 - 00000000 ____D C:\Users\LE CONNETABLE\Documents\devis
2017-06-21 10:19 - 2015-04-27 18:50 - 00000000 ____D C:\Users\LE CONNETABLE\Documents\hotel Patton
2017-06-20 08:36 - 2016-07-01 09:55 - 00000000 ____D C:\Users\LE CONNETABLE\Documents\A- documents HUBIC
2017-06-17 09:10 - 2017-03-18 20:23 - 00000000 ____D C:\WINDOWS\system32\Macromed
2017-06-15 19:27 - 2016-12-23 19:21 - 00000000 ____D C:\Users\LE CONNETABLE\AppData\Roaming\uTorrent
2017-06-15 19:26 - 2017-05-16 09:51 - 00000000 ___DC C:\WINDOWS\Panther
2017-06-15 18:06 - 2015-12-27 10:41 - 00001038 _____ C:\Users\Public\Desktop\CCleaner.lnk
2017-06-14 08:48 - 2017-03-18 20:23 - 00000000 ____D C:\WINDOWS\rescache
2017-06-14 07:23 - 2017-05-17 07:58 - 02330688 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2017-06-14 07:23 - 2017-03-19 10:22 - 01044344 _____ C:\WINDOWS\system32\perfh00C.dat
2017-06-14 07:23 - 2017-03-19 10:22 - 00228796 _____ C:\WINDOWS\system32\perfc00C.dat
2017-06-14 07:19 - 2015-08-22 20:50 - 00000000 __RHD C:\Users\Public\AccountPictures
2017-06-14 07:16 - 2017-05-17 07:55 - 00315152 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2017-06-14 07:15 - 2012-01-06 18:42 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2017-06-13 20:42 - 2017-03-18 20:23 - 00000000 ___SD C:\WINDOWS\system32\F12
2017-06-13 20:42 - 2017-03-18 20:23 - 00000000 ___RD C:\Program Files\Windows Defender
2017-06-13 20:42 - 2017-03-18 20:23 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2017-06-13 20:42 - 2017-03-18 20:23 - 00000000 ____D C:\WINDOWS\system32\oobe
2017-06-13 20:42 - 2017-03-18 20:23 - 00000000 ____D C:\WINDOWS\system32\appraiser
2017-06-13 20:42 - 2017-03-18 20:23 - 00000000 ____D C:\WINDOWS\ShellExperiences
2017-06-13 20:42 - 2017-03-18 20:23 - 00000000 ____D C:\Program Files\Windows Photo Viewer
2017-06-13 20:26 - 2013-08-14 22:53 - 00000000 ____D C:\WINDOWS\system32\MRT
2017-06-13 20:22 - 2017-03-18 20:14 - 00000000 ____D C:\WINDOWS\CbsTemp
2017-06-13 20:22 - 2011-10-03 10:54 - 130903960 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2017-06-13 20:20 - 2012-01-06 18:42 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2017-06-13 08:38 - 2015-12-04 09:50 - 00000000 ____D C:\Users\LE CONNETABLE\Documents\LOGO
2017-06-12 19:51 - 2015-08-22 20:50 - 00000000 ____D C:\Users\LE CONNETABLE\AppData\Local\Packages
2017-06-12 19:37 - 2016-01-13 19:06 - 00000000 ____D C:\Users\LE CONNETABLE\AppData\Local\ElevatedDiagnostics
2017-06-10 18:28 - 2017-05-10 17:32 - 00000000 ____D C:\Users\LE CONNETABLE\AppData\LocalLow\uTorrent
2017-06-07 18:41 - 2017-05-10 17:33 - 00000000 ____D C:\Users\LE CONNETABLE\Downloads\Kasabian - For Crying Out Loud [2CD Deluxe] (2017) FLAC
2017-06-03 08:32 - 2017-03-18 20:25 - 00835576 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2017-06-03 08:32 - 2017-03-18 20:25 - 00177656 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2017-05-31 07:54 - 2011-09-30 16:00 - 00456360 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2017-05-30 21:01 - 2016-04-11 09:54 - 00000000 ____D C:\Users\LE CONNETABLE\Documents\HEULA
2017-05-29 17:44 - 2016-08-10 18:59 - 00018343 _____ C:\Users\LE CONNETABLE\Documents\CHIEN.odt
==================== Fichiers à la racine de certains dossiers =======
2013-09-27 08:42 - 2013-09-27 08:42 - 0000024 ___SH () C:\Users\LE CONNETABLE\AppData\Roaming\1D959CA221C7573.sys
2012-10-15 18:57 - 2014-05-15 12:39 - 0003760 _____ () C:\Users\LE CONNETABLE\AppData\Roaming\Rim.Desktop.Exception.log
2012-10-15 18:55 - 2014-05-19 17:50 - 0004205 _____ () C:\Users\LE CONNETABLE\AppData\Roaming\Rim.Desktop.HttpServerSetup.log
2012-10-15 18:57 - 2014-05-15 12:39 - 0001694 _____ () C:\Users\LE CONNETABLE\AppData\Roaming\Rim.DesktopHelper.Exception.log
2012-11-14 16:49 - 2014-05-15 12:39 - 0001463 _____ () C:\Users\LE CONNETABLE\AppData\Roaming\Rim.Transcoder.Exception.log
2013-09-27 08:42 - 2013-09-27 08:42 - 0000024 ___SH () C:\Users\LE CONNETABLE\AppData\Roaming\System5908ConfigCollection.dat
2012-11-14 16:49 - 2017-02-08 19:14 - 0019456 _____ () C:\Users\LE CONNETABLE\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2016-05-15 20:09 - 2016-05-17 07:46 - 0000129 _____ () C:\Users\LE CONNETABLE\AppData\Local\fd0e404db734464904e5f09af1edf356
2015-11-10 08:31 - 2015-11-10 08:31 - 0000017 _____ () C:\Users\LE CONNETABLE\AppData\Local\resmon.resmoncfg
2014-01-16 14:42 - 2014-01-16 14:42 - 0000000 _____ () C:\Users\LE CONNETABLE\AppData\Local\{578AD45E-D490-4792-AC23-09102312A253}
2016-07-05 15:43 - 2016-07-05 15:43 - 0000016 _____ () C:\ProgramData\mntemp
2016-07-05 15:43 - 2017-06-24 19:48 - 0005000 _____ () C:\ProgramData\zmlomobd.kxh
==================== Bamital & volsnap ======================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
C:\WINDOWS\explorer.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\winlogon.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\wininit.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\svchost.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\services.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\User32.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\userinit.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\rpcss.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\dnsapi.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\Drivers\volsnap.sys => Le fichier est signé numériquement
LastRegBack: 2017-06-19 08:32
==================== Fin de FRST.txt ============================