Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 21-12-2016 Exécuté par Cassandra (administrateur) sur LAPTOP-5F4V1VBM (29-12-2016 14:20:19) Exécuté depuis C:\Users\Cassandra Lynn\Desktop Profils chargés: Cassandra (Profils disponibles: Cassandra) Platform: Windows 10 Home (X64) Langue: Français (France) Internet Explorer Version 11 (Navigateur par défaut: FF) Mode d'amorçage: Normal Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processus (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.) (IObit) C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe (IObit) C:\Program Files (x86)\IObit\Advanced SystemCare\ASCService.exe (Intel Corporation) C:\Windows\System32\igfxCUIService.exe (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe (IObit) C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe (Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe (Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (IObit) C:\Program Files (x86)\IObit\Smart Defrag\SmartDefrag.exe (Intel Corporation) C:\Windows\System32\igfxEM.exe (IObit) C:\Program Files (x86)\IObit\Advanced SystemCare\Monitor.exe (Intel Corporation) C:\Windows\System32\igfxHK.exe () C:\Windows\System32\igfxTray.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe (Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe (Acer Incorporated) C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exe () C:\Program Files (x86)\Acer\Care Center\ACCStd.exe (acer) C:\Program Files\Acer\User Experience Improvement Program\Framework\UBTService.exe (IObit) C:\Program Files (x86)\IObit\Driver Booster\4.1.0\UninstMon\PubMonitor.exe (Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (IObit) C:\Program Files (x86)\IObit\IObit Uninstaller\IUService.exe (IObit) C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallMonitor.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe (Microsoft Corporation) C:\Windows\System32\browser_broker.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe (Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe (Microsoft Corporation) C:\Program Files\Microsoft Office\Office15\WINWORD.EXE (Microsoft Corporation) C:\Windows\System32\SppExtComObj.Exe (Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe (Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe (Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe (Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\avBugReport.exe ==================== Registre (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.) HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [14040792 2015-07-07] (Realtek Semiconductor) HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [9080768 2016-11-16] (AVAST Software) HKLM-x32\...\Run: [SDTray] => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe [4127488 2015-06-16] (Safer-Networking Ltd.) HKLM-x32\...\Run: [IObit Malware Fighter] => C:\Program Files (x86)\IObit\IObit Malware Fighter\IMF.exe [6006560 2016-11-01] (IObit) HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2016-09-22] (Oracle Corporation) Winlogon\Notify\SDWinLogon-x32: SDWinLogon.dll [X] HKU\S-1-5-21-3374882169-2629884529-1317393073-1001\...\Run: [AcerPortal] => C:\Program Files (x86)\Acer\Acer Portal\AcerPortal.exe [2732760 2015-11-19] (Acer) HKU\S-1-5-21-3374882169-2629884529-1317393073-1001\...\Run: [AdobeBridge] => [X] HKU\S-1-5-21-3374882169-2629884529-1317393073-1001\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [4290240 2016-03-01] (Disc Soft Ltd) HKU\S-1-5-21-3374882169-2629884529-1317393073-1001\...\Run: [Advanced SystemCare 9] => C:\Program Files (x86)\IObit\Advanced SystemCare\ASCTray.exe [2022688 2016-04-26] (IObit) HKU\S-1-5-21-3374882169-2629884529-1317393073-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8590760 2015-12-08] (Piriform Ltd) HKU\S-1-5-21-3374882169-2629884529-1317393073-1001\...\RunOnce: [Uninstall C:\Users\Cassandra Lynn\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64] => C:\Windows\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Cassandra Lynn\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64" HKU\S-1-5-21-3374882169-2629884529-1317393073-1001\...\RunOnce: [Uninstall C:\Users\Cassandra Lynn\AppData\Local\Microsoft\OneDrive\17.3.5892.0626] => C:\Windows\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Cassandra Lynn\AppData\Local\Microsoft\OneDrive\17.3.5892.0626" HKU\S-1-5-21-3374882169-2629884529-1317393073-1001\...\Policies\Explorer: [NolowDiskSpaceChecks] 1 HKU\S-1-5-21-3374882169-2629884529-1317393073-1001\...\MountPoints2: {7babfba9-f7e6-11e5-9be3-54ab3a0294c3} - "F:\FalloutLauncher.exe" HKU\S-1-5-18\...\Run: [SpybotPostWindows10UpgradeReInstall] => C:\Program Files\Common Files\AV\Spybot - Search and Destroy\Test.exe [1011200 2015-07-28] (Safer-Networking Ltd.) ShellIconOverlayIdentifiers: [ ACloudSynced] -> {5CCE71FA-9F61-4F24-9CD1-98D819B40D68} => C:\Program Files (x86)\Acer\shellext\x64\shellext_win.dll [2015-11-19] (Acer Incorporated) ShellIconOverlayIdentifiers: [ ACloudSyncing] -> {C1E1456F-C2D8-4C96-870D-35F1E13941EE} => C:\Program Files (x86)\Acer\shellext\x64\shellext_win.dll [2015-11-19] (Acer Incorporated) ShellIconOverlayIdentifiers: [ ACloudToBeSynced] -> {307523FA-DDC0-4068-983F-2A6B34627744} => C:\Program Files (x86)\Acer\shellext\x64\shellext_win.dll [2015-11-19] (Acer Incorporated) ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2016-09-03] (AVAST Software) BootExecute: autocheck autochk * sdnclean64.exe ==================== Internet (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.) Hosts: Il y a plus d'un élément dans hosts. Voir la section Hosts de Addition.txt Tcpip\Parameters: [DhcpNameServer] 80.10.46.232 Tcpip\..\Interfaces\{77d6dd41-f161-45f9-b087-0d6fdb639151}: [DhcpNameServer] 80.10.46.232 Tcpip\..\Interfaces\{a579f064-fe42-4aec-8a64-a9374f525912}: [DhcpNameServer] 40.32.1.66 Internet Explorer: ================== HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank HKU\S-1-5-21-3374882169-2629884529-1317393073-1001\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank HKU\S-1-5-21-3374882169-2629884529-1317393073-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://acer15.msn.com/?pc=ACTE SearchScopes: HKU\S-1-5-21-3374882169-2629884529-1317393073-1001 -> DefaultScope {C2D81283-9F90-44E7-BF7C-07C5B22022FC} URL = SearchScopes: HKU\S-1-5-21-3374882169-2629884529-1317393073-1001 -> {C2D81283-9F90-44E7-BF7C-07C5B22022FC} URL = BHO: ExplorerWnd Helper -> {10921475-03CE-4E04-90CE-E2E7EF20C814} -> C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallExplorer.dll [2016-05-23] (IObit) BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office15\OCHelper.dll [2012-10-01] (Microsoft Corporation) BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office15\URLREDIR.DLL [2012-10-01] (Microsoft Corporation) BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL [2012-10-01] (Microsoft Corporation) BHO-x32: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll [2012-10-01] (Microsoft Corporation) BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_112\bin\ssv.dll [2016-12-27] (Oracle Corporation) BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office15\URLREDIR.DLL [2012-10-01] (Microsoft Corporation) BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL [2012-10-01] (Microsoft Corporation) BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_112\bin\jp2ssv.dll [2016-12-27] (Oracle Corporation) Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL [2012-10-01] (Microsoft Corporation) Edge: ====== Edge Session Restore: HKU\S-1-5-21-3374882169-2629884529-1317393073-1001 -> est activé. FireFox: ======== FF DefaultProfile: d4c58azk.default FF ProfilePath: C:\Users\Cassandra Lynn\AppData\Roaming\Mozilla\Firefox\Profiles\d4c58azk.default [2016-12-29] FF user.js: detected! => C:\Users\Cassandra Lynn\AppData\Roaming\Mozilla\Firefox\Profiles\d4c58azk.default\user.js [2016-06-18] FF DefaultSearchEngine: Mozilla\Firefox\Profiles\d4c58azk.default -> Recherche sécurisée FF Homepage: Mozilla\Firefox\Profiles\d4c58azk.default -> hxxp://www.google.fr/ FF Session Restore: Mozilla\Firefox\Profiles\d4c58azk.default -> est activé. FF Extension: (Dashlane) - C:\Users\Cassandra Lynn\AppData\Roaming\Mozilla\Firefox\Profiles\d4c58azk.default\Extensions\jetpack-extension@dashlane.com.xpi [2016-12-07] FF Extension: (Français Language Pack) - C:\Users\Cassandra Lynn\AppData\Roaming\Mozilla\Firefox\Profiles\d4c58azk.default\Extensions\langpack-fr@firefox.mozilla.org.xpi [2016-11-17] FF Extension: (Download YouTube Videos as MP4) - C:\Users\Cassandra Lynn\AppData\Roaming\Mozilla\Firefox\Profiles\d4c58azk.default\Extensions\{b9bfaf1c-a63f-47cd-8b9a-29526ced9060}.xpi [2016-09-10] FF Extension: (Video DownloadHelper) - C:\Users\Cassandra Lynn\AppData\Roaming\Mozilla\Firefox\Profiles\d4c58azk.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2016-10-29] FF Extension: (Adblock Plus) - C:\Users\Cassandra Lynn\AppData\Roaming\Mozilla\Firefox\Profiles\d4c58azk.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2016-11-23] FF SearchPlugin: C:\Users\Cassandra Lynn\AppData\Roaming\Mozilla\Firefox\Profiles\d4c58azk.default\searchplugins\McSiteAdvisor.xml [2016-03-20] FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF FF Extension: (Avast Online Security) - C:\Program Files\AVAST Software\Avast\WebRep\FF [2016-09-10] FF HKLM\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF FF Extension: (Avast SafePrice) - C:\Program Files\AVAST Software\Avast\SafePrice\FF [2016-09-10] FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF FF HKLM-x32\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_24_0_0_186.dll [2016-12-27] () FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~1\Office15\NPSPWRAP.DLL [2012-10-01] (Microsoft Corporation) FF Plugin: @videolan.org/vlc,version=2.2.2 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN) FF Plugin: @videolan.org/vlc,version=2.2.3 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN) FF Plugin: @videolan.org/vlc,version=2.2.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN) FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_24_0_0_186.dll [2016-12-27] () FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.68 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2015-04-21] (Intel Corporation) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2015-04-21] (Intel Corporation) FF Plugin-x32: @java.com/DTPlugin,version=11.112.2 -> C:\Program Files (x86)\Java\jre1.8.0_112\bin\dtplugin\npDeployJava1.dll [2016-12-27] (Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=11.112.2 -> C:\Program Files (x86)\Java\jre1.8.0_112\bin\plugin2\npjp2.dll [2016-12-27] (Oracle Corporation) FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2012-10-01] (Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL [2012-10-01] (Microsoft Corporation) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-16] (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-16] (Google Inc.) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2016-10-27] (Adobe Systems Inc.) FF Plugin HKU\S-1-5-21-3374882169-2629884529-1317393073-1001: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Cassandra Lynn\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2016-10-26] (Unity Technologies ApS) FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npMeetingJoinPluginOC.dll [2012-10-01] (Microsoft Corporation) FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll [2016-10-27] (Adobe Systems Inc.) Chrome: ======= CHR Session Restore: Default -> est activé. CHR Profile: C:\Users\Cassandra Lynn\AppData\Local\Google\Chrome\User Data\Default [2016-12-29] CHR Extension: (Google Slides) - C:\Users\Cassandra Lynn\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-01-14] CHR Extension: (Google Docs) - C:\Users\Cassandra Lynn\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-01-15] CHR Extension: (Google Drive) - C:\Users\Cassandra Lynn\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-01-15] CHR Extension: (YouTube) - C:\Users\Cassandra Lynn\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-01-15] CHR Extension: (Adblock Plus) - C:\Users\Cassandra Lynn\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2016-10-31] CHR Extension: (Recherche Google) - C:\Users\Cassandra Lynn\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2016-01-15] CHR Extension: (Avast Online Security) - C:\Users\Cassandra Lynn\AppData\Local\Google\Chrome\User Data\Default\Extensions\daanglpcpkjjlkhcbladppjphglbigam [2016-12-10] CHR Extension: (Avast SafePrice) - C:\Users\Cassandra Lynn\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2016-11-15] CHR Extension: (Google Sheets) - C:\Users\Cassandra Lynn\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-01-14] CHR Extension: (Google Docs hors connexion) - C:\Users\Cassandra Lynn\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-04-05] CHR Extension: (Avast Online Security) - C:\Users\Cassandra Lynn\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2016-12-17] CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Cassandra Lynn\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-05] CHR Extension: (Gmail) - C:\Users\Cassandra Lynn\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-01-15] CHR Extension: (Chrome Media Router) - C:\Users\Cassandra Lynn\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-12-16] CHR HKLM-x32\...\Chrome\Extension: [daanglpcpkjjlkhcbladppjphglbigam] - hxxps://clients2.google.com/service/update2/crx CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChromeSp.crx CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx ==================== Services (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R2 AdvancedSystemCareService9; C:\Program Files (x86)\IObit\Advanced SystemCare\ASCService.exe [446240 2016-01-05] (IObit) S3 AtherosSvc; C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\adminservice.exe [323152 2015-06-29] (Windows (R) Win 7 DDK provider) R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [197128 2016-09-03] (AVAST Software) S3 CCDMonitorService; C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe [2860760 2015-11-17] (Acer Incorporated) S3 cplspcon; C:\Windows\system32\IntelCpHDCPSvc.exe [595560 2015-09-05] (Intel Corporation) S3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe [1444544 2016-03-01] (Disc Soft Ltd) S3 ePowerSvc; C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe [2573568 2015-05-14] (Acer Incorporated) R2 igfxCUIService2.0.0.0; C:\Windows\system32\igfxCUIService.exe [350312 2015-09-05] (Intel Corporation) R2 IMFservice; C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe [1600800 2016-10-21] (IObit) S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [881152 2015-05-22] (Intel(R) Corporation) R3 Intel(R) Security Assist; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe [335872 2015-05-19] (Intel Corporation) [Fichier non signé] R2 IObitUnSvr; C:\Program Files (x86)\IObit\IObit Uninstaller\IUService.exe [360736 2016-10-28] (IObit) S2 isaHelperSvc; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe [7680 2015-05-19] () [Fichier non signé] R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [223520 2015-07-10] (Intel Corporation) R2 LiveUpdateSvc; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [3046688 2016-07-29] (IObit) R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [5544592 2015-07-14] (NVIDIA Corporation) S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2120712 2016-06-01] (Electronic Arts) S3 QALSvc; C:\Program Files\Acer\Acer Quick Access\QALSvc.exe [395616 2015-07-17] (Acer Incorporated) S3 QASvc; C:\Program Files\Acer\Acer Quick Access\QASvc.exe [450400 2015-07-17] (Acer Incorporated) R2 SDScannerService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [1750712 2015-06-16] (Safer-Networking Ltd.) S3 SDUpdateService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [2102496 2015-06-16] (Safer-Networking Ltd.) R2 SDWSCService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [224712 2015-07-24] (Safer-Networking Ltd.) S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [Fichier non signé] R3 UEIPSvc; C:\Program Files\Acer\User Experience Improvement Program\Framework\UBTService.exe [247040 2015-05-27] (acer) S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [362928 2016-10-25] (Microsoft Corporation) S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2016-11-19] (Microsoft Corporation) ===================== Pilotes (Avec liste blanche) ====================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) S3 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [37656 2016-09-03] (AVAST Software) R1 aswKbd; C:\Windows\system32\drivers\aswKbd.sys [37144 2016-09-03] (AVAST Software) R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [108816 2016-09-03] (AVAST Software) R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [103064 2016-09-03] (AVAST Software) R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [74544 2016-09-03] (AVAST Software) R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [969184 2016-09-18] (AVAST Software) R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [513632 2016-10-24] (AVAST Software) R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [163416 2016-09-03] (AVAST Software) R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [293352 2016-10-24] (AVAST Software) R3 athr; C:\Windows\System32\drivers\athw10x.sys [4317112 2016-12-27] (Qualcomm Atheros Communications, Inc.) S3 dg_ssudbus; C:\Windows\system32\DRIVERS\ssudbus.sys [131712 2016-11-08] (Samsung Electronics Co., Ltd.) S3 dot4; C:\Windows\system32\DRIVERS\Dot4.sys [151968 2016-02-16] (Windows (R) Win 7 DDK provider) S3 Dot4Print; C:\Windows\System32\drivers\Dot4Prt.sys [27040 2016-02-16] (Windows (R) Win 7 DDK provider) R3 dtlitescsibus; C:\Windows\System32\drivers\dtlitescsibus.sys [30264 2016-04-02] (Disc Soft Ltd) R3 dtliteusbbus; C:\Windows\System32\drivers\dtliteusbbus.sys [47672 2016-04-02] (Disc Soft Ltd) R3 ETDI2C; C:\Windows\system32\DRIVERS\ETDI2C.sys [175152 2015-06-09] (ELAN Microelectronic Corp.) R1 HWiNFO32; C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [27552 2016-11-16] (REALiX(tm)) R3 iaLPSS2_I2C; C:\Windows\System32\drivers\iaLPSS2_I2C.sys [184632 2016-12-27] (Intel Corporation) S4 IMFFilter; C:\Program Files (x86)\IObit\IObit Malware Fighter\Drivers\win7_amd64\IMFFilter.sys [22208 2016-04-01] (IObit) R3 LMDriver; C:\Windows\System32\drivers\LMDriver.sys [21344 2015-07-17] (Acer Incorporated) R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19600 2015-07-14] (NVIDIA Corporation) R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [47976 2015-07-03] (NVIDIA Corporation) R3 RadioShim; C:\Windows\System32\drivers\RadioShim.sys [14688 2015-07-17] (Acer Incorporated) S3 RegFilter; C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\regfilter.sys [34848 2016-07-27] (IObit.com) R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [946696 2016-12-27] (Realtek ) R3 RTSUER; C:\Windows\system32\Drivers\RtsUer.sys [418784 2016-12-27] (Realsil Semiconductor Corporation) R0 SmartDefragDriver; C:\Windows\System32\Drivers\SmartDefragDriver.sys [21360 2016-03-22] (IObit) S3 ssudmdm; C:\Windows\system32\DRIVERS\ssudmdm.sys [165504 2016-11-08] (Samsung Electronics Co., Ltd.) S3 UdeCx; C:\Windows\System32\drivers\udecx.sys [44032 2015-07-10] () S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44568 2015-07-10] (Microsoft Corporation) S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [291680 2015-07-10] (Microsoft Corporation) S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [119648 2015-07-10] (Microsoft Corporation) S3 wfpcapture; \SystemRoot\System32\drivers\wfpcapture.sys [X] ==================== NetSvcs (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) ==================== Un mois - Créés - fichiers et dossiers ======== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2016-12-29 14:20 - 2016-12-29 14:20 - 00026558 _____ C:\Users\Cassandra Lynn\Desktop\FRST.txt 2016-12-29 14:18 - 2016-12-29 14:20 - 00000000 ____D C:\FRST 2016-12-29 14:12 - 2016-12-29 14:12 - 00016148 _____ C:\Windows\system32\LAPTOP-5F4V1VBM_Cassandra_HistoryPrediction.bin 2016-12-29 14:05 - 2016-12-29 14:09 - 02420736 _____ (Farbar) C:\Users\Cassandra Lynn\Desktop\FRST64.exe 2016-12-29 13:18 - 2016-12-29 13:18 - 00016263 _____ C:\Users\Cassandra Lynn\Downloads\1-Gwendolin-GOLDENS (1).odt 2016-12-29 13:14 - 2016-12-29 13:14 - 00016263 _____ C:\Users\Cassandra Lynn\Downloads\1-Gwendolin-GOLDENS.odt 2016-12-29 13:07 - 2016-12-29 13:07 - 00003540 _____ C:\Windows\System32\Tasks\AutoKMS 2016-12-29 12:30 - 2016-12-29 12:30 - 00000000 ____D C:\Users\Cassandra Lynn\AppData\Roaming\WildTangent 2016-12-29 12:18 - 2016-12-29 12:18 - 00000000 ____D C:\Users\Cassandra Lynn\AppData\Local\III 2016-12-29 12:17 - 2016-12-29 12:17 - 00002520 _____ C:\Windows\System32\Tasks\Uninstaller_SkipUac_Cassandra 2016-12-29 12:17 - 2016-12-29 12:17 - 00001453 _____ C:\Users\Public\Desktop\IObit Uninstaller.lnk 2016-12-29 12:17 - 2016-12-29 12:17 - 00000318 _____ C:\Windows\Tasks\Uninstaller_SkipUac_Cassandra.job 2016-12-29 12:17 - 2016-12-29 12:17 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit Uninstaller 2016-12-29 11:42 - 2016-12-29 11:42 - 00003054 _____ C:\Windows\System32\Tasks\Driver Booster SkipUAC (Cassandra) 2016-12-29 11:36 - 2016-12-29 11:36 - 00000180 _____ C:\Windows\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat 2016-12-28 13:57 - 2016-12-29 00:56 - 00007102 _____ C:\Users\Cassandra Lynn\Downloads\5-Gibson-CONNOR.odt 2016-12-28 13:57 - 2016-12-28 13:57 - 00016884 _____ C:\Users\Cassandra Lynn\Downloads\3-Richard-PHILLIPS.odt 2016-12-28 13:57 - 2016-12-28 13:57 - 00016618 _____ C:\Users\Cassandra Lynn\Downloads\10-Raoul-GONZALES.odt 2016-12-28 13:57 - 2016-12-28 13:57 - 00015730 _____ C:\Users\Cassandra Lynn\Downloads\4-Edwin-WAYNE.odt 2016-12-28 13:41 - 2016-12-28 13:41 - 00015245 _____ C:\Users\Cassandra Lynn\Downloads\7-Chaves-DELACASA.odt 2016-12-28 13:41 - 2016-12-28 13:41 - 00015245 _____ C:\Users\Cassandra Lynn\Downloads\3D69.tmp 2016-12-27 18:02 - 2016-12-28 13:05 - 00000000 ____D C:\Windows\AutoKMS 2016-12-27 15:31 - 2016-12-27 15:32 - 00000000 ____D C:\ProgramData\SuperBoost 2016-12-27 15:29 - 2016-12-29 12:17 - 00000000 ____D C:\Program Files (x86)\SuperBoost 2016-12-27 15:29 - 2016-12-27 15:29 - 00000000 ____D C:\Users\Cassandra Lynn\AppData\Roaming\SuperBoost 2016-12-27 15:26 - 2016-12-27 15:26 - 00003280 _____ C:\Windows\System32\Tasks\SmartDefrag_AutoAnalyze 2016-12-27 15:26 - 2016-12-27 15:26 - 00003120 _____ C:\Windows\System32\Tasks\IObitSelfCheckTask 2016-12-27 15:25 - 2016-12-27 15:25 - 00003120 _____ C:\Windows\System32\Tasks\SmartDefrag_Startup 2016-12-27 15:25 - 2016-12-27 15:25 - 00003116 _____ C:\Windows\System32\Tasks\SmartDefrag_Update 2016-12-27 15:25 - 2016-12-27 15:25 - 00001243 _____ C:\Users\Public\Desktop\Smart Defrag 5.lnk 2016-12-27 15:25 - 2016-12-27 15:25 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Smart Defrag 2016-12-27 15:25 - 2016-03-25 14:33 - 00128288 _____ (IObit) C:\Windows\system32\IObitSmartDefragExtension.dll 2016-12-27 15:25 - 2016-03-22 11:02 - 00036824 _____ (IObit) C:\Windows\system32\SmartDefragBootTime.exe 2016-12-27 15:25 - 2016-03-22 11:02 - 00021360 _____ (IObit) C:\Windows\system32\Drivers\SmartDefragDriver.sys 2016-12-27 15:20 - 2016-12-29 12:13 - 00000000 ____D C:\Users\Cassandra Lynn\AppData\Roaming\Dashlane 2016-12-27 15:13 - 2016-12-27 15:13 - 00097856 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll 2016-12-27 15:09 - 2016-12-27 15:09 - 00204896 _____ (Intel Corporation) C:\Windows\system32\Drivers\TeeDriverW8x64.sys 2016-12-27 14:46 - 2016-12-27 14:46 - 00003402 _____ C:\Windows\System32\Tasks\Driver Booster Scheduler 2016-12-27 14:45 - 2016-12-27 15:14 - 00002377 _____ C:\Users\Public\Desktop\Driver Booster 4.lnk 2016-12-27 14:34 - 2016-12-27 14:34 - 09891328 _____ (Realtek Semiconductor Corp.) C:\Windows\SysWOW64\RsCRIcon.dll 2016-12-27 14:34 - 2016-12-27 14:34 - 04332032 _____ (Realtek Semiconductor Corp.) C:\Windows\RtCRU64.exe 2016-12-27 14:34 - 2016-12-27 14:34 - 00946696 _____ (Realtek ) C:\Windows\system32\Drivers\rt640x64.sys 2016-12-27 14:34 - 2016-12-27 14:34 - 00795640 _____ (Intel Corporation) C:\Windows\system32\Drivers\iaStorA.sys 2016-12-27 14:34 - 2016-12-27 14:34 - 00608664 _____ (Qualcomm Atheros) C:\Windows\system32\Drivers\btfilter.sys 2016-12-27 14:34 - 2016-12-27 14:34 - 00418784 _____ (Realsil Semiconductor Corporation) C:\Windows\system32\Drivers\RtsUer.sys 2016-12-27 14:34 - 2016-12-27 14:34 - 00084480 _____ (Realtek Semiconductor.) C:\Windows\system32\RtCRX64.dll 2016-12-27 14:34 - 2016-12-27 14:34 - 00082544 _____ (Realtek Semiconductor Corporation) C:\Windows\system32\RtNicProp64.dll 2016-12-27 14:34 - 2016-12-27 14:34 - 00000000 ____D C:\Windows\LastGood.Tmp 2016-12-27 14:33 - 2016-12-27 14:33 - 04317112 _____ (Qualcomm Atheros Communications, Inc.) C:\Windows\system32\Drivers\athw10x.sys 2016-12-27 14:32 - 2016-12-27 14:32 - 00184632 _____ (Intel Corporation) C:\Windows\system32\Drivers\iaLPSS2_I2C.sys 2016-12-26 21:36 - 2016-12-26 21:36 - 00203314 _____ C:\Users\Cassandra Lynn\Downloads\Livret Révolution En Marche - Volume 1.pdf 2016-12-26 21:28 - 2016-12-26 21:28 - 00203640 _____ C:\Users\Cassandra Lynn\Downloads\Procedure d'accueil.pdf 2016-12-26 21:26 - 2016-12-26 21:26 - 00838902 _____ C:\Users\Cassandra Lynn\Downloads\Formation_LS_diaporama_mai-10.pdf 2016-12-25 18:55 - 2016-12-25 18:55 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013 2016-12-25 18:54 - 2016-12-25 18:54 - 00000000 ____D C:\Program Files\Common Files\DESIGNER 2016-12-25 18:53 - 2016-12-25 18:53 - 00000000 ____D C:\Program Files (x86)\Microsoft SQL Server 2016-12-25 18:52 - 2016-12-25 18:53 - 00000000 ____D C:\Program Files\Microsoft SQL Server 2016-12-25 18:52 - 2016-12-25 18:52 - 00000000 ____D C:\Windows\PCHEALTH 2016-12-25 18:49 - 2016-12-25 18:49 - 00000000 ____D C:\Program Files\Microsoft Analysis Services 2016-12-25 18:49 - 2016-12-25 18:49 - 00000000 ____D C:\Program Files (x86)\Microsoft Analysis Services 2016-12-25 18:47 - 2016-12-25 18:47 - 00000000 __RHD C:\MSOCache 2016-12-25 17:35 - 2016-12-25 17:36 - 00000000 ___HD C:\$SysReset 2016-12-25 16:28 - 2016-12-25 16:28 - 00000000 ____D C:\ProgramData\TweakBit 2016-12-23 12:08 - 2016-12-23 12:08 - 00405506 _____ C:\Users\Cassandra Lynn\Downloads\MATHS cours 1.pdf 2016-12-20 18:16 - 2016-12-20 18:19 - 01268096 _____ C:\Users\Cassandra Lynn\Downloads\process-explorer_16-12_fr_14566.zip 2016-12-20 12:44 - 2016-12-20 12:52 - 00315576 _____ C:\Windows\Minidump\122016-247218-01.dmp 2016-12-19 14:00 - 2016-12-19 14:00 - 00014480 _____ C:\Users\Cassandra Lynn\Downloads\Le.Sixieme.Sens.Truefrench.DvdRip.Xvid.Ac3-XthanatosX.avi.torrent 2016-12-19 13:04 - 2016-12-19 13:09 - 00322304 _____ C:\Windows\Minidump\121916-339890-01.dmp 2016-12-19 13:02 - 2016-12-20 12:43 - 738602185 _____ C:\Windows\MEMORY.DMP 2016-12-16 15:57 - 2016-12-16 16:01 - 00314064 _____ C:\Windows\Minidump\121616-174578-01.dmp 2016-12-16 15:33 - 2016-12-16 15:35 - 00321112 _____ C:\Windows\Minidump\121616-327953-01.dmp 2016-12-16 00:23 - 2016-12-16 15:32 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox 2016-12-14 11:08 - 2016-12-12 00:02 - 00835576 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe 2016-12-14 11:08 - 2016-12-12 00:02 - 00177656 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl 2016-12-13 23:41 - 2016-11-19 11:45 - 06305792 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Search.dll 2016-12-13 23:41 - 2016-11-19 11:27 - 01538176 _____ (Microsoft Corporation) C:\Windows\system32\sppobjs.dll 2016-12-13 23:41 - 2016-11-19 10:46 - 22326760 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll 2016-12-13 23:41 - 2016-11-19 10:44 - 06525424 _____ (Microsoft Corporation) C:\Windows\system32\sppsvc.exe 2016-12-13 23:41 - 2016-11-19 10:44 - 01134792 _____ (Microsoft Corporation) C:\Windows\system32\ClipUp.exe 2016-12-13 23:41 - 2016-11-19 09:14 - 20862488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll 2016-12-13 23:41 - 2016-11-19 08:34 - 24595456 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll 2016-12-13 23:41 - 2016-11-19 08:16 - 16708608 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.dll 2016-12-13 23:41 - 2016-11-19 07:29 - 21855232 _____ (Microsoft Corporation) C:\Windows\system32\edgehtml.dll 2016-12-13 23:40 - 2016-11-19 11:30 - 01023208 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi 2016-12-13 23:40 - 2016-11-19 11:30 - 00862024 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe 2016-12-13 23:40 - 2016-11-19 11:29 - 04532304 _____ (Microsoft Corporation) C:\Windows\explorer.exe 2016-12-13 23:40 - 2016-11-19 11:29 - 02463704 _____ (Microsoft Corporation) C:\Windows\system32\mfcore.dll 2016-12-13 23:40 - 2016-11-19 11:29 - 00605472 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys 2016-12-13 23:40 - 2016-11-19 11:28 - 03467784 _____ (Microsoft Corporation) C:\Windows\system32\WSService.dll 2016-12-13 23:40 - 2016-11-19 11:28 - 00652864 _____ (Microsoft Corporation) C:\Windows\system32\sppwinob.dll 2016-12-13 23:40 - 2016-11-19 11:26 - 08015704 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe 2016-12-13 23:40 - 2016-11-19 11:26 - 01298008 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi 2016-12-13 23:40 - 2016-11-19 11:26 - 01127016 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe 2016-12-13 23:40 - 2016-11-19 11:26 - 00552288 _____ (Microsoft Corporation) C:\Windows\system32\SettingSyncHost.exe 2016-12-13 23:40 - 2016-11-19 11:25 - 02816016 _____ (Microsoft Corporation) C:\Windows\system32\WpcMon.exe 2016-12-13 23:40 - 2016-11-19 11:25 - 01043872 _____ (Microsoft Corporation) C:\Windows\system32\mfmp4srcsnk.dll 2016-12-13 23:40 - 2016-11-19 11:24 - 02495776 _____ C:\Windows\system32\CoreUIComponents.dll 2016-12-13 23:40 - 2016-11-19 11:21 - 02156400 _____ (Microsoft Corporation) C:\Windows\system32\hevcdecoder.dll 2016-12-13 23:40 - 2016-11-19 11:21 - 00381792 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\clfs.sys 2016-12-13 23:40 - 2016-11-19 11:20 - 00388896 _____ (Microsoft Corporation) C:\Windows\system32\wmpps.dll 2016-12-13 23:40 - 2016-11-19 11:19 - 02640872 _____ (Microsoft Corporation) C:\Windows\system32\WMVCORE.DLL 2016-12-13 23:40 - 2016-11-19 11:19 - 01150816 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll 2016-12-13 23:40 - 2016-11-19 11:18 - 01591304 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll 2016-12-13 23:40 - 2016-11-19 11:17 - 00158072 _____ (Microsoft Corporation) C:\Windows\system32\bcrypt.dll 2016-12-13 23:40 - 2016-11-19 11:16 - 02543784 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll 2016-12-13 23:40 - 2016-11-19 11:15 - 02601160 _____ (Microsoft Corporation) C:\Windows\system32\combase.dll 2016-12-13 23:40 - 2016-11-19 10:47 - 00801632 _____ (Microsoft Corporation) C:\Windows\system32\WWAHost.exe 2016-12-13 23:40 - 2016-11-19 10:46 - 00724168 _____ (Microsoft Corporation) C:\Windows\system32\SHCore.dll 2016-12-13 23:40 - 2016-11-19 10:46 - 00252768 _____ (Microsoft Corporation) C:\Windows\system32\ContentDeliveryManager.Utilities.dll 2016-12-13 23:40 - 2016-11-19 10:44 - 00176664 _____ (Microsoft Corporation) C:\Windows\system32\changepk.exe 2016-12-13 23:40 - 2016-11-19 10:43 - 00658568 _____ (Microsoft Corporation) C:\Windows\system32\ClipSVC.dll 2016-12-13 23:40 - 2016-11-19 10:40 - 00365920 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll 2016-12-13 23:40 - 2016-11-19 10:20 - 00224712 _____ (Microsoft Corporation) C:\Windows\system32\policymanager.dll 2016-12-13 23:40 - 2016-11-19 10:19 - 00671584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vhdmp.sys 2016-12-13 23:40 - 2016-11-19 10:18 - 01781416 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll 2016-12-13 23:40 - 2016-11-19 10:17 - 01366672 _____ (Microsoft Corporation) C:\Windows\system32\user32.dll 2016-12-13 23:40 - 2016-11-19 10:07 - 00723648 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll 2016-12-13 23:40 - 2016-11-19 10:04 - 00151904 _____ (Microsoft Corporation) C:\Windows\system32\migisol.dll 2016-12-13 23:40 - 2016-11-19 09:58 - 04046768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\explorer.exe 2016-12-13 23:40 - 2016-11-19 09:57 - 02153288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfcore.dll 2016-12-13 23:40 - 2016-11-19 09:57 - 01365584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll 2016-12-13 23:40 - 2016-11-19 09:53 - 00877568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfmp4srcsnk.dll 2016-12-13 23:40 - 2016-11-19 09:49 - 01895576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\hevcdecoder.dll 2016-12-13 23:40 - 2016-11-19 09:47 - 02369696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVCORE.DLL 2016-12-13 23:40 - 2016-11-19 09:44 - 02188472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll 2016-12-13 23:40 - 2016-11-19 09:42 - 01811360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\combase.dll 2016-12-13 23:40 - 2016-11-19 09:42 - 01310880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user32.dll 2016-12-13 23:40 - 2016-11-19 09:42 - 00106896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcrypt.dll 2016-12-13 23:40 - 2016-11-19 09:24 - 00524800 _____ C:\Windows\system32\EditionUpgradeManagerObj.dll 2016-12-13 23:40 - 2016-11-19 09:24 - 00374784 _____ C:\Windows\system32\EditionUpgradeHelper.dll 2016-12-13 23:40 - 2016-11-19 09:23 - 00748544 _____ (Microsoft Corporation) C:\Windows\system32\lsm.dll 2016-12-13 23:40 - 2016-11-19 09:16 - 00700256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WWAHost.exe 2016-12-13 23:40 - 2016-11-19 09:13 - 00565648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SHCore.dll 2016-12-13 23:40 - 2016-11-19 09:08 - 00303448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll 2016-12-13 23:40 - 2016-11-19 09:02 - 02902528 _____ (Microsoft Corporation) C:\Windows\system32\CertEnroll.dll 2016-12-13 23:40 - 2016-11-19 08:56 - 02238464 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll 2016-12-13 23:40 - 2016-11-19 08:54 - 00963072 _____ (Microsoft Corporation) C:\Windows\system32\WSShared.dll 2016-12-13 23:40 - 2016-11-19 08:53 - 03792896 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll 2016-12-13 23:40 - 2016-11-19 08:53 - 00185952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\policymanager.dll 2016-12-13 23:40 - 2016-11-19 08:50 - 01516968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll 2016-12-13 23:40 - 2016-11-19 08:50 - 01035776 _____ (Microsoft Corporation) C:\Windows\system32\TSWorkspace.dll 2016-12-13 23:40 - 2016-11-19 08:44 - 00893440 _____ (Microsoft Corporation) C:\Windows\system32\MbaeApiPublic.dll 2016-12-13 23:40 - 2016-11-19 08:43 - 02418688 _____ (Microsoft Corporation) C:\Windows\system32\MFMediaEngine.dll 2016-12-13 23:40 - 2016-11-19 08:34 - 00455680 _____ (Microsoft Corporation) C:\Windows\system32\RTMediaFrame.dll 2016-12-13 23:40 - 2016-11-19 08:25 - 12514816 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll 2016-12-13 23:40 - 2016-11-19 08:24 - 11557888 _____ (Microsoft Corporation) C:\Windows\system32\twinui.dll 2016-12-13 23:40 - 2016-11-19 08:22 - 01648640 _____ (Microsoft Corporation) C:\Windows\system32\comsvcs.dll 2016-12-13 23:40 - 2016-11-19 08:20 - 03170816 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll 2016-12-13 23:40 - 2016-11-19 08:20 - 01600512 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll 2016-12-13 23:40 - 2016-11-19 08:20 - 00573952 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll 2016-12-13 23:40 - 2016-11-19 08:19 - 02839040 _____ (Microsoft Corporation) C:\Windows\system32\Wpc.dll 2016-12-13 23:40 - 2016-11-19 08:19 - 01040384 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll 2016-12-13 23:40 - 2016-11-19 08:19 - 00775680 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll 2016-12-13 23:40 - 2016-11-19 08:18 - 02350080 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll 2016-12-13 23:40 - 2016-11-19 08:17 - 02253824 _____ (Microsoft Corporation) C:\Windows\system32\WpcWebSync.dll 2016-12-13 23:40 - 2016-11-19 08:15 - 00602624 _____ (Microsoft Corporation) C:\Windows\system32\LogonController.dll 2016-12-13 23:40 - 2016-11-19 08:12 - 00620544 _____ (Microsoft Corporation) C:\Windows\system32\AppReadiness.dll 2016-12-13 23:40 - 2016-11-19 08:04 - 01416704 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll 2016-12-13 23:40 - 2016-11-19 07:56 - 00578560 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe 2016-12-13 23:40 - 2016-11-19 07:54 - 02599424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CertEnroll.dll 2016-12-13 23:40 - 2016-11-19 07:48 - 07055872 _____ (Microsoft Corporation) C:\Windows\system32\BingMaps.dll 2016-12-13 23:40 - 2016-11-19 07:48 - 03362816 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll 2016-12-13 23:40 - 2016-11-19 07:48 - 00846848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NaturalLanguage6.dll 2016-12-13 23:40 - 2016-11-19 07:43 - 03873280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dbgeng.dll 2016-12-13 23:40 - 2016-11-19 07:43 - 00928256 _____ (Microsoft Corporation) C:\Windows\system32\JpMapControl.dll 2016-12-13 23:40 - 2016-11-19 07:41 - 04168704 _____ (Microsoft Corporation) C:\Windows\system32\UIRibbon.dll 2016-12-13 23:40 - 2016-11-19 07:41 - 00671232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MbaeApiPublic.dll 2016-12-13 23:40 - 2016-11-19 07:40 - 03581952 _____ (Microsoft Corporation) C:\Windows\system32\win32kfull.sys 2016-12-13 23:40 - 2016-11-19 07:39 - 01381376 _____ (Microsoft Corporation) C:\Windows\system32\win32kbase.sys 2016-12-13 23:40 - 2016-11-19 07:36 - 01918976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFMediaEngine.dll 2016-12-13 23:40 - 2016-11-19 07:35 - 14247424 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll 2016-12-13 23:40 - 2016-11-19 07:33 - 19334144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll 2016-12-13 23:40 - 2016-11-19 07:28 - 01844736 _____ (Microsoft Corporation) C:\Windows\system32\workfolderssvc.dll 2016-12-13 23:40 - 2016-11-19 07:26 - 09889792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.dll 2016-12-13 23:40 - 2016-11-19 07:24 - 03420160 _____ (Microsoft Corporation) C:\Windows\system32\WinSAT.exe 2016-12-13 23:40 - 2016-11-19 07:23 - 04398592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Search.dll 2016-12-13 23:40 - 2016-11-19 07:22 - 13027840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.dll 2016-12-13 23:40 - 2016-11-19 07:22 - 02639360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll 2016-12-13 23:40 - 2016-11-19 07:22 - 01382400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll 2016-12-13 23:40 - 2016-11-19 07:22 - 00501760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll 2016-12-13 23:40 - 2016-11-19 07:21 - 02198016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Wpc.dll 2016-12-13 23:40 - 2016-11-19 07:21 - 00885248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll 2016-12-13 23:40 - 2016-11-19 07:21 - 00679936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll 2016-12-13 23:40 - 2016-11-19 07:20 - 02153472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll 2016-12-13 23:40 - 2016-11-19 07:18 - 07528448 _____ (Microsoft Corporation) C:\Windows\system32\Chakra.dll 2016-12-13 23:40 - 2016-11-19 07:17 - 04791808 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll 2016-12-13 23:40 - 2016-11-19 07:16 - 07502848 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll 2016-12-13 23:40 - 2016-11-19 07:14 - 00939008 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.dll 2016-12-13 23:40 - 2016-11-19 07:00 - 03680256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll 2016-12-13 23:40 - 2016-11-19 06:56 - 00701952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JpMapControl.dll 2016-12-13 23:40 - 2016-11-19 06:54 - 03443200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIRibbon.dll 2016-12-13 23:40 - 2016-11-19 06:49 - 12594688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll 2016-12-13 23:40 - 2016-11-19 06:41 - 03580416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll 2016-12-13 23:40 - 2016-11-19 06:38 - 11271168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll 2016-12-13 23:40 - 2016-11-19 06:38 - 05456384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Chakra.dll 2016-12-13 23:40 - 2016-11-19 06:37 - 18796032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\edgehtml.dll 2016-12-13 23:40 - 2016-11-19 06:35 - 06713856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll 2016-12-13 23:40 - 2016-11-11 04:01 - 01774592 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Immersive.dll 2016-12-13 23:40 - 2016-11-11 03:37 - 01612288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Immersive.dll 2016-12-13 23:39 - 2016-11-19 11:30 - 00432352 _____ (Microsoft Corporation) C:\Windows\system32\bcryptprimitives.dll 2016-12-13 23:39 - 2016-11-19 11:16 - 00772448 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll 2016-12-13 23:39 - 2016-11-19 10:15 - 00983392 _____ (Microsoft Corporation) C:\Windows\system32\SecConfig.efi 2016-12-13 23:39 - 2016-11-19 10:14 - 00231264 _____ (Microsoft Corporation) C:\Windows\system32\ActionQueue.dll 2016-12-13 23:39 - 2016-11-19 09:58 - 00365128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcryptprimitives.dll 2016-12-13 23:39 - 2016-11-19 09:54 - 00439648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SettingSyncHost.exe 2016-12-13 23:39 - 2016-11-19 09:52 - 01766496 _____ C:\Windows\SysWOW64\CoreUIComponents.dll 2016-12-13 23:39 - 2016-11-19 09:26 - 00483328 _____ (Microsoft Corporation) C:\Windows\system32\OneDriveSettingSyncProvider.dll 2016-12-13 23:39 - 2016-11-19 09:23 - 00290304 _____ (Microsoft Corporation) C:\Windows\system32\oemlicense.dll 2016-12-13 23:39 - 2016-11-19 09:11 - 00446976 _____ (Microsoft Corporation) C:\Windows\system32\MapConfiguration.dll 2016-12-13 23:39 - 2016-11-19 09:07 - 00260096 _____ (Microsoft Corporation) C:\Windows\system32\wpr.exe 2016-12-13 23:39 - 2016-11-19 09:03 - 02446336 _____ C:\Windows\system32\InputService.dll 2016-12-13 23:39 - 2016-11-19 09:02 - 00553472 _____ (Microsoft Corporation) C:\Windows\system32\GamePanel.exe 2016-12-13 23:39 - 2016-11-19 09:00 - 00456704 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll 2016-12-13 23:39 - 2016-11-19 08:55 - 01123840 _____ (Microsoft Corporation) C:\Windows\system32\NaturalLanguage6.dll 2016-12-13 23:39 - 2016-11-19 08:55 - 00780288 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Store.dll 2016-12-13 23:39 - 2016-11-19 08:55 - 00324096 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Store.TestingFramework.dll 2016-12-13 23:39 - 2016-11-19 08:55 - 00183808 _____ (Microsoft Corporation) C:\Windows\system32\WSSync.dll 2016-12-13 23:39 - 2016-11-19 08:49 - 04847616 _____ (Microsoft Corporation) C:\Windows\system32\dbgeng.dll 2016-12-13 23:39 - 2016-11-19 08:47 - 00181760 _____ (Microsoft Corporation) C:\Windows\system32\verifiergui.exe 2016-12-13 23:39 - 2016-11-19 08:44 - 00814592 _____ (Microsoft Corporation) C:\Windows\system32\provcore.dll 2016-12-13 23:39 - 2016-11-19 08:41 - 00345088 _____ (Microsoft Corporation) C:\Windows\system32\eappcfg.dll 2016-12-13 23:39 - 2016-11-19 08:41 - 00326656 _____ (Microsoft Corporation) C:\Windows\system32\eapp3hst.dll 2016-12-13 23:39 - 2016-11-19 08:41 - 00279040 _____ (Microsoft Corporation) C:\Windows\system32\eapphost.dll 2016-12-13 23:39 - 2016-11-19 08:41 - 00107008 _____ (Microsoft Corporation) C:\Windows\system32\eappgnui.dll 2016-12-13 23:39 - 2016-11-19 08:40 - 00147456 _____ (Microsoft Corporation) C:\Windows\system32\iassvcs.dll 2016-12-13 23:39 - 2016-11-19 08:37 - 00120672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\migisol.dll 2016-12-13 23:39 - 2016-11-19 08:21 - 00199168 _____ (Microsoft Corporation) C:\Windows\system32\WindowsAnytimeUpgrade.exe 2016-12-13 23:39 - 2016-11-19 08:20 - 01686528 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll 2016-12-13 23:39 - 2016-11-19 08:19 - 00214528 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe 2016-12-13 23:39 - 2016-11-19 08:18 - 00799232 _____ (Microsoft Corporation) C:\Windows\system32\wpccpl.dll 2016-12-13 23:39 - 2016-11-19 08:14 - 00068608 _____ (Microsoft Corporation) C:\Windows\system32\lpremove.exe 2016-12-13 23:39 - 2016-11-19 08:11 - 00371712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\OneDriveSettingSyncProvider.dll 2016-12-13 23:39 - 2016-11-19 08:08 - 05448704 _____ (Microsoft Corporation) C:\Windows\system32\aclui.dll 2016-12-13 23:39 - 2016-11-19 08:08 - 00209920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oemlicense.dll 2016-12-13 23:39 - 2016-11-19 08:08 - 00110080 _____ (Microsoft Corporation) C:\Windows\system32\IdCtrls.dll 2016-12-13 23:39 - 2016-11-19 08:02 - 07569408 _____ (Microsoft Corporation) C:\Windows\system32\mos.dll 2016-12-13 23:39 - 2016-11-19 07:59 - 00819712 _____ (Microsoft Corporation) C:\Windows\system32\licensingdiag.exe 2016-12-13 23:39 - 2016-11-19 07:59 - 00328704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MapConfiguration.dll 2016-12-13 23:39 - 2016-11-19 07:58 - 00239104 _____ (Microsoft Corporation) C:\Windows\system32\apprepsync.dll 2016-12-13 23:39 - 2016-11-19 07:57 - 00249344 _____ (Microsoft Corporation) C:\Windows\system32\apprepapi.dll 2016-12-13 23:39 - 2016-11-19 07:54 - 00420352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GamePanel.exe 2016-12-13 23:39 - 2016-11-19 07:52 - 00338944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll 2016-12-13 23:39 - 2016-11-19 07:50 - 00171520 _____ (Microsoft Corporation) C:\Windows\system32\WPTaskScheduler.dll 2016-12-13 23:39 - 2016-11-19 07:48 - 00954368 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL 2016-12-13 23:39 - 2016-11-19 07:48 - 00247808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll 2016-12-13 23:39 - 2016-11-19 07:48 - 00153088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSSync.dll 2016-12-13 23:39 - 2016-11-19 07:47 - 00806912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSShared.dll 2016-12-13 23:39 - 2016-11-19 07:45 - 04453888 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_47.dll 2016-12-13 23:39 - 2016-11-19 07:42 - 00869376 _____ (Microsoft Corporation) C:\Windows\system32\MapControlCore.dll 2016-12-13 23:39 - 2016-11-19 07:41 - 00144384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\verifiergui.exe 2016-12-13 23:39 - 2016-11-19 07:40 - 00832512 _____ (Microsoft Corporation) C:\Windows\system32\MapsStore.dll 2016-12-13 23:39 - 2016-11-19 07:40 - 00584704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\provcore.dll 2016-12-13 23:39 - 2016-11-19 07:39 - 00584704 _____ (Microsoft Corporation) C:\Windows\system32\UIRibbonRes.dll 2016-12-13 23:39 - 2016-11-19 07:37 - 00279552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\eappcfg.dll 2016-12-13 23:39 - 2016-11-19 07:37 - 00243712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\eapp3hst.dll 2016-12-13 23:39 - 2016-11-19 07:37 - 00215040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\eapphost.dll 2016-12-13 23:39 - 2016-11-19 07:37 - 00136192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iassvcs.dll 2016-12-13 23:39 - 2016-11-19 07:37 - 00092160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\eappgnui.dll 2016-12-13 23:39 - 2016-11-19 07:36 - 00027136 _____ (Microsoft Corporation) C:\Windows\system32\ReAgentc.exe 2016-12-13 23:39 - 2016-11-19 07:32 - 00740864 _____ (Microsoft Corporation) C:\Windows\system32\AzureSettingSyncProvider.dll 2016-12-13 23:39 - 2016-11-19 07:32 - 00323072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RTMediaFrame.dll 2016-12-13 23:39 - 2016-11-19 07:32 - 00120320 _____ (Microsoft Corporation) C:\Windows\system32\UserDataTimeUtil.dll 2016-12-13 23:39 - 2016-11-19 07:31 - 00897024 _____ (Microsoft Corporation) C:\Windows\system32\SmiEngine.dll 2016-12-13 23:39 - 2016-11-19 07:28 - 00297984 _____ (Microsoft Corporation) C:\Windows\system32\winsku.dll 2016-12-13 23:39 - 2016-11-19 07:27 - 01061888 _____ (Microsoft Corporation) C:\Windows\system32\reseteng.dll 2016-12-13 23:39 - 2016-11-19 07:25 - 00128000 _____ (Microsoft Corporation) C:\Windows\system32\setupugc.exe 2016-12-13 23:39 - 2016-11-19 07:24 - 00166400 _____ (Microsoft Corporation) C:\Windows\system32\sppnp.dll 2016-12-13 23:39 - 2016-11-19 07:22 - 01492992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll 2016-12-13 23:39 - 2016-11-19 07:22 - 00088576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\olepro32.dll 2016-12-13 23:39 - 2016-11-19 07:20 - 01346048 _____ (Microsoft Corporation) C:\Windows\system32\WMNetMgr.dll 2016-12-13 23:39 - 2016-11-19 07:18 - 00504320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LogonController.dll 2016-12-13 23:39 - 2016-11-19 07:12 - 00092160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IdCtrls.dll 2016-12-13 23:39 - 2016-11-19 07:08 - 06101504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mos.dll 2016-12-13 23:39 - 2016-11-19 07:08 - 00617472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licensingdiag.exe 2016-12-13 23:39 - 2016-11-19 07:08 - 00158720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apprepsync.dll 2016-12-13 23:39 - 2016-11-19 07:07 - 00161792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apprepapi.dll 2016-12-13 23:39 - 2016-11-19 07:07 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\dbgcore.dll 2016-12-13 23:39 - 2016-11-19 06:59 - 05079552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\BingMaps.dll 2016-12-13 23:39 - 2016-11-19 06:57 - 03692032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_47.dll 2016-12-13 23:39 - 2016-11-19 06:53 - 00584704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIRibbonRes.dll 2016-12-13 23:39 - 2016-11-19 06:50 - 00023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ReAgentc.exe 2016-12-13 23:39 - 2016-11-19 06:48 - 00565760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AzureSettingSyncProvider.dll 2016-12-13 23:39 - 2016-11-19 06:48 - 00095232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UserDataTimeUtil.dll 2016-12-13 23:39 - 2016-11-19 06:42 - 00113664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setupugc.exe 2016-12-13 23:39 - 2016-11-19 06:39 - 01189888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMNetMgr.dll 2016-12-13 23:39 - 2016-11-19 06:34 - 00716288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MsSpellCheckingFacility.dll 2016-12-13 23:39 - 2016-11-19 06:27 - 00117760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dbgcore.dll 2016-12-12 16:04 - 2016-12-12 16:05 - 05963638 _____ C:\Users\Cassandra Lynn\Downloads\IKEA MON FILS.avi 2016-12-07 19:53 - 2016-12-07 19:58 - 00318352 _____ C:\Windows\Minidump\120716-322312-01.dmp 2016-12-06 18:22 - 2016-12-06 18:27 - 00324456 _____ C:\Windows\Minidump\120616-84593-01.dmp 2016-11-29 19:39 - 2016-11-29 19:40 - 05486230 _____ C:\Users\Cassandra Lynn\Downloads\TD-rodius_21-11-2015-150539.pdf 2016-11-29 00:28 - 2016-11-29 01:15 - 00000272 _____ C:\Users\Cassandra Lynn\Documents\Liste films à voir.txt ==================== Un mois - Modifiés - fichiers et dossiers ======== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2016-12-29 12:32 - 2015-08-31 11:50 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games 2016-12-29 12:32 - 2015-08-31 11:50 - 00000000 ____D C:\ProgramData\WildTangent 2016-12-29 12:31 - 2016-05-30 16:35 - 00000000 ____D C:\Users\Cassandra Lynn\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam 2016-12-29 12:31 - 2016-05-29 13:01 - 00000000 ____D C:\Program Files (x86)\Steam 2016-12-29 12:18 - 2015-11-16 11:14 - 00000000 __HDC C:\ProgramData\~0 2016-12-29 12:17 - 2016-05-31 18:09 - 00000000 ____D C:\ProgramData\ProductData 2016-12-29 12:17 - 2016-05-31 18:07 - 00000000 ____D C:\ProgramData\IObit 2016-12-29 12:17 - 2016-05-31 18:07 - 00000000 ____D C:\Program Files (x86)\IObit 2016-12-29 12:14 - 2016-11-17 18:17 - 00000000 ____D C:\Users\Cassandra Lynn\AppData\LocalLow\Mozilla 2016-12-29 11:47 - 2016-01-13 19:39 - 00000000 ____D C:\Users\Cassandra Lynn\AppData\Local\clear.fi 2016-12-29 11:40 - 2016-01-13 14:52 - 00004196 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{81EAC6AC-8E8C-4444-A7C4-C595E91FAA99} 2016-12-29 11:40 - 2015-11-16 18:38 - 00821020 _____ C:\Windows\system32\perfh00C.dat 2016-12-29 11:40 - 2015-11-16 18:38 - 00154350 _____ C:\Windows\system32\perfc00C.dat 2016-12-29 11:40 - 2015-08-31 12:01 - 01839260 _____ C:\Windows\system32\PerfStringBackup.INI 2016-12-29 11:40 - 2015-07-10 12:02 - 00000000 ____D C:\Windows\INF 2016-12-29 00:58 - 2016-01-13 15:16 - 00000000 ____D C:\Users\Cassandra Lynn\AppData\Roaming\Skype 2016-12-28 20:08 - 2016-07-11 21:43 - 00000000 ____D C:\Windows\AppReadiness 2016-12-28 19:35 - 2015-07-10 12:04 - 00000000 ___HD C:\Program Files\WindowsApps 2016-12-28 13:23 - 2016-09-10 02:17 - 00004278 _____ C:\Windows\System32\Tasks\avast! Emergency Update 2016-12-28 13:04 - 2016-01-13 14:10 - 00001002 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job 2016-12-28 13:04 - 2015-07-10 13:21 - 00000006 ____H C:\Windows\Tasks\SA.DAT 2016-12-28 13:03 - 2016-04-02 13:11 - 00000000 ____D C:\Users\Cassandra Lynn\AppData\Local\Unity 2016-12-27 15:44 - 2016-05-31 18:08 - 00000278 _____ C:\Windows\Tasks\ASC9_SkipUac_Cassandra.job 2016-12-27 15:40 - 2016-01-15 12:54 - 00000000 ____D C:\Users\Cassandra Lynn\AppData\Local\CrashDumps 2016-12-27 15:25 - 2016-05-31 18:07 - 00000000 ____D C:\Users\Cassandra Lynn\AppData\Roaming\IObit 2016-12-27 15:14 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\system32\Macromed 2016-12-27 15:13 - 2016-01-24 13:27 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java 2016-12-27 15:13 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\SysWOW64\Macromed 2016-12-27 15:12 - 2016-04-02 13:11 - 00000000 ____D C:\Users\Cassandra Lynn\AppData\LocalLow\Unity 2016-12-27 15:12 - 2016-01-24 13:27 - 00000000 ____D C:\Program Files (x86)\Java 2016-12-27 15:11 - 2015-11-16 11:05 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation 2016-12-27 15:11 - 2015-11-16 11:04 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation 2016-12-27 15:11 - 2015-11-16 11:02 - 00000000 ____D C:\ProgramData\NVIDIA Corporation 2016-12-27 15:11 - 2015-11-16 11:02 - 00000000 ____D C:\Program Files\NVIDIA Corporation 2016-12-27 15:11 - 2015-11-16 10:44 - 00000000 ____D C:\ProgramData\Package Cache 2016-12-27 14:45 - 2016-11-16 14:51 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Booster 4 2016-12-27 14:36 - 2015-07-10 13:20 - 04961104 _____ C:\Windows\system32\FNTCACHE.DAT 2016-12-27 14:36 - 2015-07-10 10:05 - 00262144 ___SH C:\Windows\system32\config\BBI 2016-12-27 14:34 - 2015-11-16 11:08 - 00000000 ____D C:\Windows\SysWOW64\sda 2016-12-27 12:34 - 2016-01-13 19:35 - 00000000 ____D C:\Users\Cassandra Lynn\AppData\Local\Packages 2016-12-27 00:36 - 2016-01-14 13:18 - 00000000 ____D C:\Users\Cassandra Lynn\AppData\Roaming\uTorrent 2016-12-26 02:00 - 2016-01-13 13:23 - 00000000 ____D C:\Users\Cassandra Lynn\Documents\Logiciels 2016-12-25 22:25 - 2016-01-13 19:35 - 00000000 ____D C:\Users\Cassandra Lynn\AppData\Local\NVIDIA Corporation 2016-12-25 22:25 - 2016-01-13 19:35 - 00000000 ____D C:\Users\Cassandra Lynn\AppData\Local\NVIDIA 2016-12-25 18:54 - 2015-07-10 14:14 - 00000000 ____D C:\Windows\ShellNew 2016-12-25 18:54 - 2015-07-10 12:04 - 00000000 ____D C:\Program Files\Common Files\microsoft shared 2016-12-25 18:53 - 2015-07-10 12:04 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2016-12-25 18:52 - 2016-01-15 20:22 - 00000000 ____D C:\Program Files\Microsoft Office 2016-12-25 18:50 - 2015-07-10 12:04 - 00000199 _____ C:\Windows\win.ini 2016-12-25 18:50 - 2015-07-10 12:04 - 00000000 ____D C:\Program Files\Common Files\System 2016-12-25 16:16 - 2016-04-24 13:14 - 00000000 ____D C:\Users\Cassandra Lynn\AppData\Roaming\vlc 2016-12-25 15:36 - 2016-04-13 22:59 - 00000000 ____D C:\Users\Cassandra Lynn\AppData\LocalLow\uTorrent 2016-12-22 00:10 - 2016-01-13 13:27 - 00000000 ____D C:\Users\Cassandra Lynn\AppData\Local\Comms 2016-12-21 13:22 - 2016-01-13 13:22 - 00000000 ____D C:\Users\Cassandra Lynn\Documents\Cours 2016-12-21 02:22 - 2016-01-13 19:35 - 00000000 ____D C:\Users\Cassandra Lynn 2016-12-20 15:15 - 2016-04-12 22:31 - 00000000 ____D C:\Users\Cassandra Lynn\Documents\My Games 2016-12-20 12:44 - 2016-02-07 17:41 - 00000000 ____D C:\Windows\Minidump 2016-12-19 17:32 - 2016-07-31 15:59 - 00005716 _____ C:\Users\Cassandra Lynn\Desktop\TO DO LIST.txt 2016-12-16 22:48 - 2016-01-14 12:56 - 00003586 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA 2016-12-16 22:48 - 2016-01-14 12:56 - 00003462 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore 2016-12-16 15:32 - 2015-08-31 11:51 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2016-12-15 20:19 - 2015-08-31 11:49 - 00000000 __RHD C:\Users\Public\AccountPictures 2016-12-15 01:36 - 2015-07-10 12:04 - 00000000 ___RD C:\Windows\ImmersiveControlPanel 2016-12-15 01:36 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\SysWOW64\oobe 2016-12-15 01:36 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\system32\oobe 2016-12-15 01:36 - 2015-07-10 12:04 - 00000000 ____D C:\Windows\system32\appraiser 2016-12-15 01:36 - 2015-07-10 12:04 - 00000000 ____D C:\Program Files\Windows Defender 2016-12-15 01:36 - 2015-07-10 12:04 - 00000000 ____D C:\Program Files (x86)\Windows Defender 2016-12-15 01:36 - 2015-07-10 10:05 - 00000000 ____D C:\Windows\SysWOW64\Dism 2016-12-15 01:36 - 2015-07-10 10:05 - 00000000 ____D C:\Windows\system32\Sysprep 2016-12-15 01:36 - 2015-07-10 10:05 - 00000000 ____D C:\Windows\system32\Dism 2016-12-14 23:03 - 2016-01-14 13:09 - 00002274 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2016-12-14 23:03 - 2016-01-14 13:09 - 00002262 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2016-12-14 11:08 - 2015-07-10 11:55 - 00000000 ____D C:\Windows\CbsTemp 2016-12-14 11:07 - 2016-01-14 23:22 - 00000000 ____D C:\Windows\system32\MRT 2016-12-14 11:03 - 2016-01-14 23:22 - 135632432 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe 2016-12-06 14:32 - 2016-03-02 23:18 - 00005120 _____ C:\Users\Cassandra Lynn\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini 2016-12-04 21:28 - 2016-05-31 18:08 - 00002244 _____ C:\Users\Public\Desktop\Advanced SystemCare 9.lnk 2016-12-02 21:01 - 2016-01-21 22:30 - 00000000 ____D C:\Users\Cassandra Lynn\AppData\Local\WMTools Downloaded Files ==================== Fichiers à la racine de certains dossiers ======= 2016-03-02 23:18 - 2016-12-06 14:32 - 0005120 _____ () C:\Users\Cassandra Lynn\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini 2015-11-16 10:50 - 2015-11-16 10:50 - 0000000 ____H () C:\ProgramData\DP45977C.lfl 2016-02-16 14:43 - 2016-02-16 14:44 - 0000242 _____ () C:\ProgramData\hpzinstall.log ==================== Bamital & volsnap ====================== (Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.) C:\Windows\system32\winlogon.exe => Le fichier est signé numériquement C:\Windows\system32\wininit.exe => Le fichier est signé numériquement C:\Windows\explorer.exe => Le fichier est signé numériquement C:\Windows\SysWOW64\explorer.exe => Le fichier est signé numériquement C:\Windows\system32\svchost.exe => Le fichier est signé numériquement C:\Windows\SysWOW64\svchost.exe => Le fichier est signé numériquement C:\Windows\system32\services.exe => Le fichier est signé numériquement C:\Windows\system32\User32.dll => Le fichier est signé numériquement C:\Windows\SysWOW64\User32.dll => Le fichier est signé numériquement C:\Windows\system32\userinit.exe => Le fichier est signé numériquement C:\Windows\SysWOW64\userinit.exe => Le fichier est signé numériquement C:\Windows\system32\rpcss.dll => Le fichier est signé numériquement C:\Windows\system32\dnsapi.dll => Le fichier est signé numériquement C:\Windows\SysWOW64\dnsapi.dll => Le fichier est signé numériquement C:\Windows\system32\Drivers\volsnap.sys => Le fichier est signé numériquement LastRegBack: 2016-12-27 14:58 ==================== Fin de FRST.txt ============================