Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 12-06-2017 Exécuté par PATRICK (administrateur) sur PATRICK (13-06-2017 18:13:23) Exécuté depuis C:\Users\PATRICK\Desktop Profils chargés: PATRICK (Profils disponibles: defaultuser0 & PATRICK & Classic .NET AppPool & .NET v4.5 & .NET v2.0 & .NET v4.5 Classic & .NET v2.0 Classic) Platform: Windows 10 Pro Version 1607 (X64) Langue: Français (France) Internet Explorer Version 11 (Navigateur par défaut: Chrome) Mode d'amorçage: Normal Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processus (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.) Impossible d'accéder au processus -> Secure System (AMD) C:\Windows\System32\atiesrxx.exe (AMD) C:\Windows\System32\atieclxx.exe (Microsoft Corporation) C:\Program Files\Windows MultiPoint Server\WmsSelfHealingSvc.exe (Microsoft Corporation) C:\Program Files\Windows MultiPoint Server\WmsSvc.exe (Microsoft Corporation) C:\Windows\System32\mqsvc.exe (Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe (Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe (Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe (Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe (Microsoft Corporation) C:\Windows\System32\vmms.exe (Microsoft Corporation) C:\Windows\System32\TCPSVCS.EXE (Validity Sensors, Inc.) C:\Windows\System32\valWBFPolicyService.exe (Microsoft Corporation) C:\Windows\System32\snmp.exe (Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe (Microsoft Corporation) C:\Windows\System32\inetsrv\inetinfo.exe (Microsoft Corporation) C:\Windows\System32\nfsclnt.exe (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe (Microsoft Corporation) C:\Program Files\Windows MultiPoint Server\WmsSessionAgent.exe (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe (Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe (Microsoft Corporation) C:\Windows\System32\mqtgsvc.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe (Microsoft Corporation) C:\Windows\System32\vmcompute.exe (Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe (Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.5\GoogleCrashHandler.exe (Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.5\GoogleCrashHandler64.exe (Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe (Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\cnext.exe (SoftPerfect) C:\Program Files\NetWorx\networx.exe (Tonec Inc.) C:\Program Files (x86)\Internet Download Manager\IDMan.exe () C:\Program Files (x86)\PdaNet for Android\PdaNetPC.exe (Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe (Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\IPC\AdobeIPCBroker.exe (Tonec Inc.) C:\Program Files (x86)\Internet Download Manager\IEMonitor.exe (Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ADS\Adobe Desktop Service.exe (Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\HEX\Adobe CEF Helper.exe () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync.exe (Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\CCXProcess.exe (Node.js) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\libs\node.exe (Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\HEX\Adobe CEF Helper.exe () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.4.86.0_x64__kzf8qxf38zg5c\SkypeHost.exe (Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe () C:\Users\PATRICK\Desktop\ZHPDiag3.exe (Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.14393.1051_none_7f2bf7ea21d201b2\TiWorker.exe (Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.ZuneVideo_3.6.19281.0_x64__8wekyb3d8bbwe\Video.UI.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_11606.1001.39.0_x64__8wekyb3d8bbwe\WinStore.Mobile.exe ==================== Registre (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.) HKLM\...\Run: [WindowsDefender] => C:\Program Files\Windows Defender\MSASCuiL.exe [631808 2017-01-11] (Microsoft Corporation) HKLM\...\Run: [StartCN] => C:\Program Files\AMD\CNext\CNext\cnext.exe [4926664 2016-02-26] (Advanced Micro Devices, Inc.) HKLM\...\Run: [NetWorx] => C:\Program Files\NetWorx\networx.exe [7640904 2016-12-08] (SoftPerfect) HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [558496 2014-02-27] (Adobe Systems Incorporated) HKLM\...\Run: [MsmqIntCert] => "C:\Windows\System32\regsvr32.exe" /s "C:\Windows\System32\mqrt.dll" HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3954352 2016-04-28] (Synaptics Incorporated) HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2384984 2016-12-09] (Adobe Systems Incorporated) HKU\S-1-5-21-345267097-4265932199-292608978-1001\...\Run: [IDMan] => C:\Program Files (x86)\Internet Download Manager\IDMan.exe [3924024 2015-12-29] (Tonec Inc.) HKU\S-1-5-18\Control Panel\Desktop\\SCRNSAVE.EXE -> ShellIconOverlayIdentifiers: [ IDM Shell Extension] -> {CDC95B92-E27C-4745-A8C5-64A52A78855D} => C:\Program Files (x86)\Internet Download Manager\IDMShellExt64.dll [2015-08-14] (Tonec Inc.) ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-10-25] () ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-10-25] () ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-10-25] () Startup: C:\Users\PATRICK\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\PdaNet Desktop.lnk [2017-06-11] ShortcutTarget: PdaNet Desktop.lnk -> C:\Program Files (x86)\PdaNet for Android\PdaNetPC.exe () ==================== Internet (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.) HKLM\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\Internet Settings: [ProxySettingsPerUser] 0 <======= ATTENTION (Restriction - ProxySettings) ProxyEnable: [HKLM] => Proxy est activé. ProxyEnable: [HKLM-x32] => Proxy est activé. ProxyServer: [HKLM] => http=127.0.0.1:8080;https=127.0.0.1:8080 ProxyServer: [HKLM-x32] => http=127.0.0.1:8080;https=127.0.0.1:8080 AutoConfigURL: [HKLM] => http=127.0.0.1:8080;https=127.0.0.1:8080 Hosts: Il y a plus d'un élément dans hosts. Voir la section Hosts de Addition.txt Tcpip\Parameters: [DhcpNameServer] 192.168.43.1 Tcpip\..\Interfaces\{0cadb53b-80fa-4fa1-9228-8381b13f0ee9}: [DhcpNameServer] 8.8.8.8 Tcpip\..\Interfaces\{ed2f431f-8e0d-48a5-afe2-9b7101cb27b6}: [DhcpNameServer] 192.168.43.1 ManualProxies: 1http=127.0.0.1:8080;https=127.0.0.1:8080 Internet Explorer: ================== HKU\S-1-5-21-345267097-4265932199-292608978-1001\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/fr-fr/?ocid=iehp BHO: IDM integration (IDMIEHlprObj Class) -> {0055C089-8582-441B-A0BF-17B458C2A3A8} -> C:\Program Files (x86)\Internet Download Manager\IDMIECC64.dll [2015-12-08] (Internet Download Manager, Tonec Inc.) BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2017-06-11] (Microsoft Corporation) BHO: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\GROOVEEX.DLL [2017-06-11] (Microsoft Corporation) BHO-x32: IDM integration (IDMIEHlprObj Class) -> {0055C089-8582-441B-A0BF-17B458C2A3A8} -> C:\Program Files (x86)\Internet Download Manager\IDMIECC.dll [2015-12-08] (Internet Download Manager, Tonec Inc.) BHO-x32: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll [2017-06-11] (Microsoft Corporation) BHO-x32: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\root\Office16\GROOVEEX.DLL [2017-06-11] (Microsoft Corporation) Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2017-06-11] (Microsoft Corporation) Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2017-06-11] (Microsoft Corporation) Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2017-06-11] (Microsoft Corporation) Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2017-06-11] (Microsoft Corporation) FireFox: ======== FF HKU\S-1-5-21-345267097-4265932199-292608978-1001\...\SeaMonkey\Extensions: [mozilla_cc@internetdownloadmanager.com] - C:\Users\PATRICK\AppData\Roaming\IDM\idmmzcc5 FF Extension: (IDM CC) - C:\Users\PATRICK\AppData\Roaming\IDM\idmmzcc5 [2017-06-13] [non signé] FF HKU\S-1-5-21-345267097-4265932199-292608978-1001\...\SeaMonkey\Extensions: [mozilla_cc2@internetdownloadmanager.com] - C:\Program Files (x86)\Internet Download Manager\idmmzcc2.xpi FF Extension: (IDM integration) - C:\Program Files (x86)\Internet Download Manager\idmmzcc2.xpi [2015-12-09] FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [2014-04-28] (Adobe Systems) FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll [2015-07-11] (Google, Inc.) FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2017-06-11] (Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2017-06-11] (Microsoft Corporation) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-06-13] (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-06-13] (Google Inc.) FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=2.2.2 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN) FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll [2014-04-28] (Adobe Systems) Chrome: ======= CHR Profile: C:\Users\PATRICK\AppData\Local\Google\Chrome\User Data\Default [2017-06-13] CHR Extension: (Google Slides) - C:\Users\PATRICK\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-06-13] CHR Extension: (Google Docs) - C:\Users\PATRICK\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-06-13] CHR Extension: (Google Drive) - C:\Users\PATRICK\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-06-13] CHR Extension: (YouTube) - C:\Users\PATRICK\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-06-13] CHR Extension: (Google Sheets) - C:\Users\PATRICK\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-06-13] CHR Extension: (Google Docs hors connexion) - C:\Users\PATRICK\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-06-13] CHR Extension: (IDM Integration Module) - C:\Users\PATRICK\AppData\Local\Google\Chrome\User Data\Default\Extensions\ngpampappnmepgilojfohadhhmbhlaek [2017-06-13] CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\PATRICK\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-06-13] CHR Extension: (Gmail) - C:\Users\PATRICK\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-06-13] CHR Extension: (Chrome Media Router) - C:\Users\PATRICK\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-06-13] CHR HKLM\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files (x86)\Internet Download Manager\IDMGCExt.crx [2015-12-29] CHR HKLM-x32\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files (x86)\Internet Download Manager\IDMGCExt.crx [2015-12-29] ==================== Services (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [753240 2016-12-09] (Adobe Systems Incorporated) R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2207960 2016-09-26] (Adobe Systems, Incorporated) S3 c2wts; C:\Program Files\Windows Identity Foundation\v3.5\c2wtshost.exe [5632 2017-06-13] (Microsoft Corporation) R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [2776664 2015-08-16] (Microsoft Corporation) S3 DsRoleSvc; C:\Windows\system32\dsrolesrv.dll [293376 2017-06-13] (Microsoft Corporation) R2 ftpsvc; C:\Windows\system32\inetsrv\ftpsvc.dll [382976 2017-06-13] (Microsoft Corporation) S3 hns; C:\Windows\System32\HostNetSvc.dll [553984 2017-01-11] (Microsoft Corporation) R2 IISADMIN; C:\Windows\system32\inetsrv\inetinfo.exe [17408 2017-06-13] (Microsoft Corporation) R2 iprip; C:\Windows\System32\iprip.dll [35328 2017-06-13] (Microsoft Corporation) R2 LPDSVC; C:\Windows\system32\lpdsvc.dll [49152 2017-06-13] (Microsoft Corporation) S3 LxssManager; C:\Windows\system32\lxss\LxssManager.dll [327168 2017-01-11] (Microsoft Corporation) R2 MSMQTriggers; C:\Windows\system32\mqtgsvc.exe [163840 2017-06-13] (Microsoft Corporation) R2 NfsClnt; C:\Windows\system32\nfsclnt.exe [99328 2017-06-13] (Microsoft Corporation) S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [2889896 2017-01-11] (Microsoft Corporation) R2 SNMP; C:\Windows\System32\snmp.exe [53248 2017-01-11] (Microsoft Corporation) R2 SNMP; C:\Windows\SysWOW64\snmp.exe [47104 2017-01-11] (Microsoft Corporation) R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [253960 2016-04-28] (Synaptics Incorporated) S4 UwfServicingSvc; C:\Windows\System32\UwfServicingSvc.exe [50016 2017-01-11] (Microsoft Corporation) R2 valWBFPolicyService; C:\Windows\system32\valWBFPolicyService.exe [35328 2013-10-12] (Validity Sensors, Inc.) R3 vmcompute; C:\Windows\system32\vmcompute.exe [1911296 2017-01-11] (Microsoft Corporation) R2 vmms; C:\Windows\system32\vmms.exe [14422528 2017-01-11] (Microsoft Corporation) R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [347328 2016-07-16] (Microsoft Corporation) R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103720 2016-07-16] (Microsoft Corporation) R2 Wms; C:\Program Files\Windows MultiPoint Server\WmsSvc.exe [1047040 2017-01-11] (Microsoft Corporation) R2 WmsRepair; C:\Program Files\Windows MultiPoint Server\WmsSelfHealingSvc.exe [72704 2017-06-13] (Microsoft Corporation) S3 WMSVC; C:\Windows\system32\inetsrv\wmsvc.exe [12288 2017-06-13] (Microsoft Corporation) S2 TunMirror; "C:\ProgramData\KMSAuto\bin\TunMirror.exe" [X] ===================== Pilotes (Avec liste blanche) ====================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R0 amdkmafd; C:\Windows\System32\drivers\amdkmafd.sys [23240 2016-02-26] (Advanced Micro Devices, Inc.) R3 AtiHDAudioService; C:\Windows\system32\drivers\AtihdWT6.sys [102400 2016-02-26] (Advanced Micro Devices) S3 lunparser; C:\Windows\System32\drivers\lunparser.sys [22528 2017-06-13] (Microsoft Corporation) R1 MpKsle977b2ac; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{D337C037-E687-48A9-BE85-1CF163E3A212}\MpKsle977b2ac.sys [44928 2017-06-13] (Microsoft Corporation) R2 msdcb; C:\Windows\System32\drivers\msdcb.sys [70144 2017-06-13] (Microsoft Corporation) S3 NetAdapterCx; C:\Windows\System32\drivers\NetAdapterCx.sys [90624 2016-07-16] () R3 netr28x; C:\Windows\System32\drivers\netr28x.sys [2504192 2016-07-16] (MediaTek Inc.) R1 networx; C:\Windows\System32\drivers\networx.sys [72632 2016-10-04] (NetFilterSDK.com) R3 NfsRdr; C:\Windows\System32\drivers\nfsrdr.sys [260608 2017-06-13] (Microsoft Corporation) S3 passthruparser; C:\Windows\System32\drivers\passthruparser.sys [24576 2017-06-13] (Microsoft Corporation) S3 pcip; C:\Windows\System32\drivers\pcip.sys [46592 2017-06-13] (Microsoft Corporation) S3 ptun0901; C:\Windows\System32\drivers\ptun0901.sys [27136 2014-08-08] (The OpenVPN Project) S3 pvhdparser; C:\Windows\System32\drivers\pvhdparser.sys [50176 2017-06-13] (Microsoft Corporation) S3 ramparser; C:\Windows\System32\drivers\ramparser.sys [30720 2017-06-13] (Microsoft Corporation) R3 RpcXdr; C:\Windows\System32\drivers\rpcxdr.sys [132608 2017-06-13] (Microsoft Corporation) R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [589824 2016-07-16] (Realtek ) S3 smbdirect; C:\Windows\System32\DRIVERS\smbdirect.sys [159232 2017-01-11] (Microsoft Corporation) R3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [52904 2016-04-28] (Synaptics Incorporated) R3 Synth3dVsp; C:\Windows\System32\drivers\synth3dvsp.sys [103424 2017-06-13] (Microsoft Corporation) R0 uwfreg; C:\Windows\System32\drivers\uwfreg.sys [51040 2017-01-11] (Microsoft Corporation) R0 uwfs; C:\Windows\System32\drivers\uwfs.sys [45408 2017-01-11] (Microsoft Corporation) R0 uwfvol; C:\Windows\System32\drivers\uwfvol.sys [74080 2017-01-11] (Microsoft Corporation) S3 vhdparser; C:\Windows\System32\drivers\vhdparser.sys [26624 2017-06-13] (Microsoft Corporation) R2 VMSP; C:\Windows\System32\drivers\vmswitch.sys [1616384 2017-01-11] (Microsoft Corporation) R0 vmsproxy; C:\Windows\System32\drivers\vmsproxy.sys [33632 2017-01-11] (Microsoft Corporation) S3 VMSVSF; C:\Windows\System32\drivers\vmswitch.sys [1616384 2017-01-11] (Microsoft Corporation) S3 VMSVSP; C:\Windows\System32\drivers\vmswitch.sys [1616384 2017-01-11] (Microsoft Corporation) S0 WdBoot; C:\Windows\System32\drivers\WdBoot.sys [44056 2016-07-16] (Microsoft Corporation) R0 WdFilter; C:\Windows\System32\drivers\WdFilter.sys [290144 2016-07-16] (Microsoft Corporation) R3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [123232 2016-07-16] (Microsoft Corporation) R0 WmsVolFilter; C:\Windows\System32\drivers\WmsVolFilter.sys [27648 2017-06-13] (Microsoft Corporation) R3 WmsWlFltr; C:\Windows\System32\DRIVERS\WmsWlFltr.sys [47104 2017-06-13] (Microsoft Corporation) ==================== NetSvcs (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) NETSVC: hns -> C:\Windows\System32\HostNetSvc.dll (Microsoft Corporation) ==================== Un mois - Créés - fichiers et dossiers ======== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2017-06-13 17:52 - 2017-06-13 17:52 - 00096450 _____ C:\Users\PATRICK\Desktop\ZHPDiag.txt 2017-06-13 17:47 - 2017-06-13 17:47 - 02742784 ____N C:\Users\PATRICK\Desktop\ZHPDiag3.exe 2017-06-13 17:47 - 2017-06-13 17:47 - 00000867 _____ C:\Users\PATRICK\Desktop\ZHPDiag.lnk 2017-06-13 17:39 - 2017-06-13 17:40 - 00033803 _____ C:\Users\PATRICK\Desktop\Addition.txt 2017-06-13 17:36 - 2017-06-13 18:13 - 00021183 _____ C:\Users\PATRICK\Desktop\FRST.txt 2017-06-13 17:09 - 2017-06-13 18:13 - 00000000 ____D C:\FRST 2017-06-13 17:06 - 2017-06-13 17:06 - 02438656 ____N (Farbar) C:\Users\PATRICK\Desktop\FRST64.exe 2017-06-13 16:56 - 2017-06-13 16:56 - 26384456 ____N C:\Users\PATRICK\Desktop\RogueKillerX64.exe 2017-06-13 16:55 - 2017-06-13 16:52 - 04110280 ____N C:\Users\PATRICK\Desktop\adwcleaner_6.047.exe 2017-06-13 16:31 - 2017-06-13 17:00 - 00002369 _____ C:\Users\PATRICK\Desktop\ZHPCleaner.txt 2017-06-13 16:20 - 2017-06-13 17:49 - 00000000 ____D C:\Users\PATRICK\AppData\Roaming\ZHP 2017-06-13 16:20 - 2017-06-13 17:49 - 00000000 ____D C:\Users\PATRICK\AppData\Local\ZHP 2017-06-13 16:20 - 2017-06-13 16:20 - 00000877 _____ C:\Users\PATRICK\Desktop\ZHPCleaner.lnk 2017-06-13 16:19 - 2017-06-13 16:08 - 02786816 ____N C:\Users\PATRICK\Desktop\ZHPCleaner.exe 2017-06-13 15:23 - 2017-06-13 18:07 - 00000000 ____D C:\Users\.NET v4.5 Classic 2017-06-13 15:23 - 2017-06-13 18:07 - 00000000 ____D C:\Users\.NET v4.5 2017-06-13 15:23 - 2017-06-13 15:23 - 02119916 _____ C:\Windows\SysWOW64\PerfStringBackup.INI 2017-06-13 15:23 - 2017-06-13 15:23 - 00000020 ___SH C:\Users\Classic .NET AppPool\ntuser.ini 2017-06-13 15:23 - 2017-06-13 15:23 - 00000020 ___SH C:\Users\.NET v4.5\ntuser.ini 2017-06-13 15:23 - 2017-06-13 15:23 - 00000020 ___SH C:\Users\.NET v4.5 Classic\ntuser.ini 2017-06-13 15:23 - 2017-06-13 15:23 - 00000020 ___SH C:\Users\.NET v2.0\ntuser.ini 2017-06-13 15:23 - 2017-06-13 15:23 - 00000020 ___SH C:\Users\.NET v2.0 Classic\ntuser.ini 2017-06-13 15:23 - 2017-06-13 15:23 - 00000000 _SHDL C:\Users\Classic .NET AppPool\Voisinage réseau 2017-06-13 15:23 - 2017-06-13 15:23 - 00000000 _SHDL C:\Users\Classic .NET AppPool\Voisinage d'impression 2017-06-13 15:23 - 2017-06-13 15:23 - 00000000 _SHDL C:\Users\Classic .NET AppPool\Modèles 2017-06-13 15:23 - 2017-06-13 15:23 - 00000000 _SHDL C:\Users\Classic .NET AppPool\Mes documents 2017-06-13 15:23 - 2017-06-13 15:23 - 00000000 _SHDL C:\Users\Classic .NET AppPool\Menu Démarrer 2017-06-13 15:23 - 2017-06-13 15:23 - 00000000 _SHDL C:\Users\Classic .NET AppPool\Documents\Mes vidéos 2017-06-13 15:23 - 2017-06-13 15:23 - 00000000 _SHDL C:\Users\Classic .NET AppPool\Documents\Mes images 2017-06-13 15:23 - 2017-06-13 15:23 - 00000000 _SHDL C:\Users\Classic .NET AppPool\Documents\Ma musique 2017-06-13 15:23 - 2017-06-13 15:23 - 00000000 _SHDL C:\Users\Classic .NET AppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programmes 2017-06-13 15:23 - 2017-06-13 15:23 - 00000000 _SHDL C:\Users\Classic .NET AppPool\AppData\Local\Historique 2017-06-13 15:23 - 2017-06-13 15:23 - 00000000 _SHDL C:\Users\.NET v4.5\Voisinage réseau 2017-06-13 15:23 - 2017-06-13 15:23 - 00000000 _SHDL C:\Users\.NET v4.5\Voisinage d'impression 2017-06-13 15:23 - 2017-06-13 15:23 - 00000000 _SHDL C:\Users\.NET v4.5\Modèles 2017-06-13 15:23 - 2017-06-13 15:23 - 00000000 _SHDL C:\Users\.NET v4.5\Mes documents 2017-06-13 15:23 - 2017-06-13 15:23 - 00000000 _SHDL C:\Users\.NET v4.5\Menu Démarrer 2017-06-13 15:23 - 2017-06-13 15:23 - 00000000 _SHDL C:\Users\.NET v4.5\Documents\Mes vidéos 2017-06-13 15:23 - 2017-06-13 15:23 - 00000000 _SHDL C:\Users\.NET v4.5\Documents\Mes images 2017-06-13 15:23 - 2017-06-13 15:23 - 00000000 _SHDL C:\Users\.NET v4.5\Documents\Ma musique 2017-06-13 15:23 - 2017-06-13 15:23 - 00000000 _SHDL C:\Users\.NET v4.5\AppData\Roaming\Microsoft\Windows\Start Menu\Programmes 2017-06-13 15:23 - 2017-06-13 15:23 - 00000000 _SHDL C:\Users\.NET v4.5\AppData\Local\Historique 2017-06-13 15:23 - 2017-06-13 15:23 - 00000000 _SHDL C:\Users\.NET v4.5 Classic\Voisinage réseau 2017-06-13 15:23 - 2017-06-13 15:23 - 00000000 _SHDL C:\Users\.NET v4.5 Classic\Voisinage d'impression 2017-06-13 15:23 - 2017-06-13 15:23 - 00000000 _SHDL C:\Users\.NET v4.5 Classic\Modèles 2017-06-13 15:23 - 2017-06-13 15:23 - 00000000 _SHDL C:\Users\.NET v4.5 Classic\Mes documents 2017-06-13 15:23 - 2017-06-13 15:23 - 00000000 _SHDL C:\Users\.NET v4.5 Classic\Menu Démarrer 2017-06-13 15:23 - 2017-06-13 15:23 - 00000000 _SHDL C:\Users\.NET v4.5 Classic\Documents\Mes vidéos 2017-06-13 15:23 - 2017-06-13 15:23 - 00000000 _SHDL C:\Users\.NET v4.5 Classic\Documents\Mes images 2017-06-13 15:23 - 2017-06-13 15:23 - 00000000 _SHDL C:\Users\.NET v4.5 Classic\Documents\Ma musique 2017-06-13 15:23 - 2017-06-13 15:23 - 00000000 _SHDL C:\Users\.NET v4.5 Classic\AppData\Roaming\Microsoft\Windows\Start Menu\Programmes 2017-06-13 15:23 - 2017-06-13 15:23 - 00000000 _SHDL C:\Users\.NET v4.5 Classic\AppData\Local\Historique 2017-06-13 15:23 - 2017-06-13 15:23 - 00000000 _SHDL C:\Users\.NET v2.0\Voisinage réseau 2017-06-13 15:23 - 2017-06-13 15:23 - 00000000 _SHDL C:\Users\.NET v2.0\Voisinage d'impression 2017-06-13 15:23 - 2017-06-13 15:23 - 00000000 _SHDL C:\Users\.NET v2.0\Modèles 2017-06-13 15:23 - 2017-06-13 15:23 - 00000000 _SHDL C:\Users\.NET v2.0\Mes documents 2017-06-13 15:23 - 2017-06-13 15:23 - 00000000 _SHDL C:\Users\.NET v2.0\Menu Démarrer 2017-06-13 15:23 - 2017-06-13 15:23 - 00000000 _SHDL C:\Users\.NET v2.0\Documents\Mes vidéos 2017-06-13 15:23 - 2017-06-13 15:23 - 00000000 _SHDL C:\Users\.NET v2.0\Documents\Mes images 2017-06-13 15:23 - 2017-06-13 15:23 - 00000000 _SHDL C:\Users\.NET v2.0\Documents\Ma musique 2017-06-13 15:23 - 2017-06-13 15:23 - 00000000 _SHDL C:\Users\.NET v2.0\AppData\Roaming\Microsoft\Windows\Start Menu\Programmes 2017-06-13 15:23 - 2017-06-13 15:23 - 00000000 _SHDL C:\Users\.NET v2.0\AppData\Local\Historique 2017-06-13 15:23 - 2017-06-13 15:23 - 00000000 _SHDL C:\Users\.NET v2.0 Classic\Voisinage réseau 2017-06-13 15:23 - 2017-06-13 15:23 - 00000000 _SHDL C:\Users\.NET v2.0 Classic\Voisinage d'impression 2017-06-13 15:23 - 2017-06-13 15:23 - 00000000 _SHDL C:\Users\.NET v2.0 Classic\Modèles 2017-06-13 15:23 - 2017-06-13 15:23 - 00000000 _SHDL C:\Users\.NET v2.0 Classic\Mes documents 2017-06-13 15:23 - 2017-06-13 15:23 - 00000000 _SHDL C:\Users\.NET v2.0 Classic\Menu Démarrer 2017-06-13 15:23 - 2017-06-13 15:23 - 00000000 _SHDL C:\Users\.NET v2.0 Classic\Documents\Mes vidéos 2017-06-13 15:23 - 2017-06-13 15:23 - 00000000 _SHDL C:\Users\.NET v2.0 Classic\Documents\Mes images 2017-06-13 15:23 - 2017-06-13 15:23 - 00000000 _SHDL C:\Users\.NET v2.0 Classic\Documents\Ma musique 2017-06-13 15:23 - 2017-06-13 15:23 - 00000000 _SHDL C:\Users\.NET v2.0 Classic\AppData\Roaming\Microsoft\Windows\Start Menu\Programmes 2017-06-13 15:23 - 2017-06-13 15:23 - 00000000 _SHDL C:\Users\.NET v2.0 Classic\AppData\Local\Historique 2017-06-13 15:23 - 2017-06-13 15:23 - 00000000 ____D C:\Users\Classic .NET AppPool 2017-06-13 15:23 - 2017-06-13 15:23 - 00000000 ____D C:\Users\.NET v2.0 Classic 2017-06-13 15:23 - 2017-06-13 15:23 - 00000000 ____D C:\Users\.NET v2.0 2017-06-13 15:23 - 2017-04-29 02:59 - 00835576 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe 2017-06-13 15:23 - 2017-04-29 02:59 - 00177656 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl 2017-06-13 15:14 - 2017-06-13 15:14 - 00000000 ___SD C:\Windows\system32\lxss 2017-06-13 15:14 - 2017-06-13 15:14 - 00000000 ___SD C:\Windows\system32\containers 2017-06-13 15:14 - 2017-06-13 15:14 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IIS 2017-06-13 15:14 - 2017-06-13 15:14 - 00000000 ____D C:\Windows\SysWOW64\BestPractices 2017-06-13 15:14 - 2017-06-13 15:14 - 00000000 ____D C:\Windows\system32\msmq 2017-06-13 15:14 - 2017-06-13 15:14 - 00000000 ____D C:\Windows\system32\MRT 2017-06-13 15:14 - 2017-06-13 15:14 - 00000000 ____D C:\Windows\system32\BestPractices 2017-06-13 15:14 - 2017-06-13 15:14 - 00000000 ____D C:\Windows\system32\040C 2017-06-13 15:14 - 2017-06-13 15:14 - 00000000 ____D C:\Windows\ADAM 2017-06-13 15:14 - 2017-06-13 15:14 - 00000000 ____D C:\Users\Public\Documents\Hyper-V 2017-06-13 15:14 - 2017-06-13 15:14 - 00000000 ____D C:\Program Files\Windows MultiPoint Server 2017-06-13 15:14 - 2017-06-13 15:14 - 00000000 ____D C:\Program Files\Windows Identity Foundation 2017-06-13 15:14 - 2017-06-13 15:14 - 00000000 ____D C:\Program Files\Hyper-V 2017-06-13 15:14 - 2017-06-13 15:14 - 00000000 ____D C:\Program Files\CMAK 2017-06-13 15:14 - 2017-06-13 15:14 - 00000000 ____D C:\Program Files (x86)\CMAK 2017-06-13 15:13 - 2017-06-13 15:14 - 132223576 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe 2017-06-13 15:12 - 2017-06-13 15:12 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_SynTP_01011.Wdf 2017-06-13 15:12 - 2017-06-13 15:12 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_Smb_driver_Intel_01011.Wdf 2017-06-13 15:12 - 2017-06-13 15:12 - 00000000 ____D C:\Program Files\Synaptics 2017-06-13 15:12 - 2016-04-28 00:53 - 00052904 _____ (Synaptics Incorporated) C:\Windows\system32\Drivers\Smb_driver_Intel.sys 2017-06-13 14:50 - 2017-06-13 14:50 - 00002342 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2017-06-13 14:50 - 2017-06-13 14:50 - 00002330 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2017-06-13 14:49 - 2017-06-13 14:49 - 00003586 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA 2017-06-13 14:49 - 2017-06-13 14:49 - 00003462 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore 2017-06-13 14:49 - 2017-06-13 14:32 - 00565416 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe 2017-06-13 14:46 - 2017-06-13 14:48 - 49745000 _____ (Google Inc.) C:\Users\PATRICK\Downloads\ChromeStandaloneSetup64.exe 2017-06-13 14:34 - 2016-12-21 09:08 - 00142848 _____ (Microsoft Corporation) C:\Windows\system32\poqexec.exe 2017-06-13 14:34 - 2016-12-21 06:44 - 00120320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\poqexec.exe 2017-06-13 14:17 - 2017-06-13 14:17 - 00339653 _____ C:\Users\PATRICK\Desktop\LES INGREDIENTS.pdf 2017-06-13 14:13 - 2017-06-13 14:13 - 00000000 ____D C:\Users\PATRICK\AppData\LocalLow\Temp 2017-06-13 14:13 - 2017-06-13 14:13 - 00000000 ____D C:\Users\PATRICK\AppData\Local\OfficeBSCache-MyComputer 2017-06-13 10:55 - 2017-06-13 10:55 - 333448408 _____ C:\Users\PATRICK\Desktop\008 MainComp.avi 2017-06-12 22:04 - 2017-06-12 22:04 - 00001139 _____ C:\Users\Public\Desktop\VLC media player.lnk 2017-06-12 14:09 - 2017-06-12 14:12 - 00000000 ____D C:\ProgramData\Validity 2017-06-12 14:09 - 2017-06-12 14:09 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_wbf_vfs301_01_09_00.Wdf 2017-06-12 14:09 - 2017-06-12 14:09 - 00000000 ____D C:\Program Files\Validity Sensors 2017-06-12 13:15 - 2017-06-12 13:15 - 390736996 _____ C:\Users\PATRICK\Desktop\Intro.avi 2017-06-12 12:28 - 2017-06-12 12:28 - 00000194 _____ C:\Users\PATRICK\Documents\Media Browser Provider Exception 2017-06-12 12:28 - 2017-06-12 12:28 - 00000172 _____ C:\Users\PATRICK\Documents\Recent Directories 2017-06-12 12:28 - 2017-06-12 12:28 - 00000156 _____ C:\Users\PATRICK\Documents\SharedView Column Settings 2017-06-12 12:09 - 2017-06-12 12:09 - 00000000 ____D C:\Users\PATRICK\AppData\Roaming\Google 2017-06-12 12:08 - 2017-06-12 12:08 - 00000000 ____D C:\Users\PATRICK\Desktop\Soccer Sport Opener 2017-06-12 12:07 - 2017-06-12 12:07 - 233097303 _____ C:\Users\PATRICK\Downloads\Soccer Sport Opener (3).zip 2017-06-12 10:11 - 2017-06-12 10:11 - 00001243 _____ C:\Users\PATRICK\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AMD Radeon Settings.lnk 2017-06-12 09:32 - 2017-06-13 14:25 - 06455792 _____ C:\Users\PATRICK\Desktop\Pack.psd 2017-06-12 09:04 - 2017-06-12 09:08 - 03518820 _____ C:\Users\PATRICK\Desktop\Zportif logo.psd 2017-06-12 08:27 - 2017-06-12 08:27 - 00000029 _____ C:\Users\PATRICK\Documents\Winkey.txt 2017-06-12 08:27 - 2014-05-25 02:36 - 00015360 _____ C:\Windows\system32\SppExtComObjHook.dll 2017-06-12 08:27 - 2014-05-25 02:36 - 00004608 _____ C:\Windows\system32\SppExtComObjPatcher.exe 2017-06-12 01:28 - 2017-06-12 01:28 - 242029833 _____ C:\Users\PATRICK\Desktop\Marie Agnes.mp4 2017-06-12 00:22 - 2017-06-12 00:22 - 00000000 ____D C:\ProgramData\boost_interprocess 2017-06-11 23:34 - 2017-06-11 23:34 - 00000000 ____D C:\Users\PATRICK\AppData\Local\Tempzxpsignf08936073dff02b4 2017-06-11 19:17 - 2017-06-11 19:17 - 00000000 ____D C:\Users\PATRICK\AppData\Local\NetworkTiles 2017-06-11 18:07 - 2017-06-11 18:07 - 00001151 _____ C:\Users\PATRICK\Desktop\Premiere Pro CC 2017.lnk 2017-06-11 18:02 - 2017-06-11 18:02 - 00001151 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Premiere Pro CC 2017.lnk 2017-06-11 18:02 - 2017-06-11 18:02 - 00000000 ____D C:\Users\Public\Documents\Adobe 2017-06-11 18:01 - 2017-06-11 18:01 - 00000000 ____D C:\Users\Public\Documents\AdobeInstalledCodecs 2017-06-11 17:56 - 2017-06-11 17:56 - 00007602 _____ C:\Users\PATRICK\AppData\Local\Resmon.ResmonCfg 2017-06-11 17:40 - 2017-06-11 17:40 - 00001615 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Application Manager.lnk 2017-06-11 17:37 - 2017-06-11 17:37 - 00000000 ____D C:\Users\PATRICK\AppData\Roaming\Macromedia 2017-06-11 17:36 - 2017-06-11 17:36 - 00001271 _____ C:\Users\PATRICK\Desktop\After Effects CC 2017.lnk 2017-06-11 17:36 - 2017-06-11 17:36 - 00001085 _____ C:\Users\PATRICK\Desktop\Photoshop CC 2017.lnk 2017-06-11 17:27 - 2017-06-11 17:27 - 00001271 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe After Effects CC 2017.lnk 2017-06-11 17:10 - 2017-06-11 17:10 - 00001226 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Creative Cloud.lnk 2017-06-11 16:49 - 2017-06-11 16:49 - 00001085 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Photoshop CC 2017.lnk 2017-06-11 16:32 - 2017-06-11 18:01 - 00000000 ____D C:\Program Files\Adobe 2017-06-11 16:32 - 2017-06-11 17:46 - 00000000 ____D C:\Program Files\Common Files\Adobe 2017-06-11 16:11 - 2017-06-11 16:11 - 00000000 ____D C:\Program Files (x86)\Adobe 2017-06-11 16:08 - 2017-06-13 17:22 - 00000000 ____D C:\Users\PATRICK\AppData\Roaming\DMCache 2017-06-11 16:08 - 2017-06-13 00:23 - 00000000 ____D C:\Users\PATRICK\AppData\Roaming\IDM 2017-06-11 16:08 - 2017-06-11 16:10 - 00000000 ____D C:\Program Files (x86)\Internet Download Manager 2017-06-11 16:08 - 2017-06-11 16:08 - 00000000 ____D C:\Users\PATRICK\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Download Manager 2017-06-11 16:08 - 2017-06-11 16:08 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Internet Download Manager 2017-06-11 16:08 - 2017-06-11 16:08 - 00000000 ____D C:\ProgramData\IDM 2017-06-11 15:29 - 2017-06-11 15:29 - 00000000 ____D C:\Users\PATRICK\AppData\LocalLow\Adobe 2017-06-11 15:28 - 2017-06-11 19:46 - 00000000 ____D C:\Users\PATRICK\AppData\Local\Adobe 2017-06-11 15:28 - 2017-06-11 18:56 - 00000000 ____D C:\ProgramData\Adobe 2017-06-11 15:28 - 2017-06-11 15:28 - 00000000 ____D C:\Users\PATRICK\AppData\Local\CEF 2017-06-11 15:22 - 2014-08-08 18:31 - 00027136 _____ (The OpenVPN Project) C:\Windows\system32\Drivers\ptun0901.sys 2017-06-11 15:08 - 2017-06-13 14:29 - 00004178 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{949A80ED-F9E5-41DF-B823-A8046D0745D0} 2017-06-11 15:06 - 2017-06-11 15:06 - 00002588 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype Entreprise 2016.lnk 2017-06-11 15:06 - 2017-06-11 15:06 - 00002576 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive Entreprise.lnk 2017-06-11 15:06 - 2017-06-11 15:06 - 00002514 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerPoint 2016.lnk 2017-06-11 15:06 - 2017-06-11 15:06 - 00002514 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Access 2016.lnk 2017-06-11 15:06 - 2017-06-11 15:06 - 00002499 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlook 2016.lnk 2017-06-11 15:06 - 2017-06-11 15:06 - 00002497 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word 2016.lnk 2017-06-11 15:06 - 2017-06-11 15:06 - 00002487 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneNote 2016.lnk 2017-06-11 15:06 - 2017-06-11 15:06 - 00002487 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel 2016.lnk 2017-06-11 15:06 - 2017-06-11 15:06 - 00002437 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Publisher 2016.lnk 2017-06-11 15:06 - 2017-06-11 15:06 - 00000000 ____D C:\Users\PATRICK\AppData\Local\MicrosoftEdge 2017-06-11 15:06 - 2017-06-11 15:06 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outils Microsoft Office 2016 2017-06-11 15:03 - 2017-06-11 15:03 - 00000000 ____D C:\Users\PATRICK\AppData\Local\PeerDistRepub 2017-06-11 15:03 - 2017-06-11 15:03 - 00000000 ____D C:\ProgramData\SoftPerfect 2017-06-11 15:03 - 2017-06-11 15:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NetWorx 2017-06-11 15:03 - 2017-06-11 15:03 - 00000000 ____D C:\Program Files\NetWorx 2017-06-11 15:03 - 2016-10-04 18:04 - 00072632 _____ (NetFilterSDK.com) C:\Windows\system32\Drivers\networx.sys 2017-06-11 15:02 - 2017-06-11 15:02 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Picasa 3 2017-06-11 15:01 - 2017-06-13 14:50 - 00000000 ____D C:\Users\PATRICK\AppData\Local\Google 2017-06-11 15:01 - 2017-06-13 14:49 - 00000000 ____D C:\Program Files (x86)\Google 2017-06-11 15:00 - 2017-06-11 19:33 - 00000000 ____D C:\Program Files (x86)\Microsoft Office 2017-06-11 15:00 - 2017-06-11 15:00 - 00000000 ____D C:\Program Files\Microsoft Office 15 2017-06-11 14:58 - 2017-06-11 14:58 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PdaNet for Android 2017-06-11 14:58 - 2017-06-11 14:58 - 00000000 ____D C:\Program Files (x86)\PdaNet for Android 2017-06-11 14:58 - 2011-11-25 00:25 - 00015360 _____ (June Fabrics Technology Inc.) C:\Windows\system32\Drivers\pneteth.sys 2017-06-11 14:56 - 2017-06-13 16:31 - 00000000 ____D C:\Users\PATRICK\AppData\Roaming\vlc 2017-06-11 14:56 - 2017-06-11 14:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Recuva 2017-06-11 14:56 - 2017-06-11 14:56 - 00000000 ____D C:\Program Files\Recuva 2017-06-11 14:55 - 2017-06-11 14:55 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN 2017-06-11 14:55 - 2017-06-11 14:55 - 00000000 ____D C:\Program Files (x86)\VideoLAN 2017-06-11 14:54 - 2017-06-11 14:54 - 00000000 ____D C:\Users\PATRICK\AppData\Roaming\WinRAR 2017-06-11 14:53 - 2017-06-11 14:53 - 00003584 _____ C:\Windows\SECOH-QAD.dll 2017-06-11 14:52 - 2010-12-06 04:16 - 00090112 _____ (Vestris Inc.) C:\Windows\system32\Vestris.ResourceLib.dll 2017-06-11 14:49 - 2017-06-11 14:49 - 00000000 ____D C:\Users\PATRICK\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR 2017-06-11 14:49 - 2017-06-11 14:49 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR 2017-06-11 14:48 - 2017-06-11 14:49 - 00000000 ____D C:\Program Files\WinRAR 2017-06-11 14:41 - 2017-06-11 14:41 - 00000000 ____D C:\Users\PATRICK\AppData\Local\Comms 2017-06-11 14:35 - 2017-06-11 15:27 - 00000000 ____D C:\Users\PATRICK\AppData\Local\AMD 2017-06-11 14:35 - 2017-06-11 14:35 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Settings 2017-06-11 14:35 - 2017-06-11 14:35 - 00000000 ____D C:\Program Files (x86)\AMD 2017-06-11 14:35 - 2017-06-11 14:35 - 00000000 ____D C:\AMD 2017-06-11 14:34 - 2017-06-11 14:34 - 00000000 ____D C:\Program Files\Common Files\ATI Technologies 2017-06-11 14:34 - 2017-06-11 14:34 - 00000000 _____ C:\Windows\ativpsrm.bin 2017-06-11 14:34 - 2017-04-10 01:59 - 328369528 _____ (AMD Inc.) C:\Users\PATRICK\Desktop\non-whql-64bit-nieg-radeon-crimson-16.2.1-win10-win8.1-win7-feb27.exe 2017-06-11 14:31 - 2017-06-11 16:23 - 00000000 ____D C:\ProgramData\Package Cache 2017-06-11 14:31 - 2017-06-11 14:35 - 00000000 ____D C:\Program Files\AMD 2017-06-11 14:26 - 2017-06-11 14:26 - 00002413 _____ C:\Users\PATRICK\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2017-06-11 14:26 - 2017-06-11 14:26 - 00000000 ___RD C:\Users\PATRICK\OneDrive 2017-06-11 14:25 - 2017-06-11 14:25 - 00000000 ____D C:\Windows\pss 2017-06-11 14:25 - 2017-06-11 14:25 - 00000000 ____D C:\ProgramData\Microsoft OneDrive 2017-06-11 14:24 - 2017-06-11 14:11 - 00000000 ____D C:\Windows\Panther 2017-06-11 14:23 - 2017-06-11 14:23 - 00000000 ____D C:\Users\PATRICK\AppData\Local\Publishers 2017-06-11 14:22 - 2017-06-13 17:28 - 02337660 _____ C:\Windows\system32\PerfStringBackup.INI 2017-06-11 14:22 - 2017-06-12 08:30 - 00000000 __RHD C:\Users\Public\AccountPictures 2017-06-11 14:22 - 2017-06-11 20:05 - 00000000 ____D C:\Users\PATRICK\AppData\Roaming\Adobe 2017-06-11 14:22 - 2017-06-11 14:41 - 00000000 ____D C:\Users\PATRICK\AppData\Local\Packages 2017-06-11 14:22 - 2017-06-11 14:39 - 00000000 ____D C:\Users\PATRICK\AppData\Local\ConnectedDevicesPlatform 2017-06-11 14:22 - 2017-06-11 14:22 - 00000020 ___SH C:\Users\PATRICK\ntuser.ini 2017-06-11 14:22 - 2017-06-11 14:22 - 00000000 _SHDL C:\Users\PATRICK\Voisinage réseau 2017-06-11 14:22 - 2017-06-11 14:22 - 00000000 _SHDL C:\Users\PATRICK\Voisinage d'impression 2017-06-11 14:22 - 2017-06-11 14:22 - 00000000 _SHDL C:\Users\PATRICK\Modèles 2017-06-11 14:22 - 2017-06-11 14:22 - 00000000 _SHDL C:\Users\PATRICK\Mes documents 2017-06-11 14:22 - 2017-06-11 14:22 - 00000000 _SHDL C:\Users\PATRICK\Menu Démarrer 2017-06-11 14:22 - 2017-06-11 14:22 - 00000000 _SHDL C:\Users\PATRICK\Documents\Mes vidéos 2017-06-11 14:22 - 2017-06-11 14:22 - 00000000 _SHDL C:\Users\PATRICK\Documents\Mes images 2017-06-11 14:22 - 2017-06-11 14:22 - 00000000 _SHDL C:\Users\PATRICK\Documents\Ma musique 2017-06-11 14:22 - 2017-06-11 14:22 - 00000000 _SHDL C:\Users\PATRICK\AppData\Roaming\Microsoft\Windows\Start Menu\Programmes 2017-06-11 14:22 - 2017-06-11 14:22 - 00000000 _SHDL C:\Users\PATRICK\AppData\Local\Historique 2017-06-11 14:22 - 2017-06-11 14:22 - 00000000 ____D C:\Users\PATRICK\AppData\Local\VirtualStore 2017-06-11 14:22 - 2017-06-11 14:22 - 00000000 ____D C:\Users\PATRICK\AppData\Local\TileDataLayer 2017-06-11 14:21 - 2017-06-13 16:34 - 00000000 ____D C:\Users\PATRICK 2017-06-11 14:20 - 2017-06-11 14:22 - 00000000 ____D C:\Users\defaultuser0\AppData\Local\Packages 2017-06-11 14:20 - 2017-06-11 14:20 - 00000000 ____D C:\Users\defaultuser0\AppData\Local\VirtualStore 2017-06-11 14:20 - 2017-06-11 14:20 - 00000000 ____D C:\Users\defaultuser0\AppData\Local\TileDataLayer 2017-06-11 14:20 - 2017-06-11 14:20 - 00000000 ____D C:\Users\defaultuser0\AppData\Local\ConnectedDevicesPlatform 2017-06-11 14:18 - 2017-06-11 14:18 - 00000000 ____D C:\Windows\CSC 2017-06-11 14:18 - 2016-07-16 13:41 - 02716672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintConfig.dll 2017-06-11 14:15 - 2017-06-11 14:15 - 00000020 ___SH C:\Users\defaultuser0\ntuser.ini 2017-06-11 14:15 - 2017-06-11 14:15 - 00000000 _SHDL C:\Users\Public\Documents\Mes vidéos 2017-06-11 14:15 - 2017-06-11 14:15 - 00000000 _SHDL C:\Users\Public\Documents\Mes images 2017-06-11 14:15 - 2017-06-11 14:15 - 00000000 _SHDL C:\Users\Public\Documents\Ma musique 2017-06-11 14:15 - 2017-06-11 14:15 - 00000000 _SHDL C:\Users\defaultuser0\Voisinage réseau 2017-06-11 14:15 - 2017-06-11 14:15 - 00000000 _SHDL C:\Users\defaultuser0\Voisinage d'impression 2017-06-11 14:15 - 2017-06-11 14:15 - 00000000 _SHDL C:\Users\defaultuser0\Modèles 2017-06-11 14:15 - 2017-06-11 14:15 - 00000000 _SHDL C:\Users\defaultuser0\Mes documents 2017-06-11 14:15 - 2017-06-11 14:15 - 00000000 _SHDL C:\Users\defaultuser0\Menu Démarrer 2017-06-11 14:15 - 2017-06-11 14:15 - 00000000 _SHDL C:\Users\defaultuser0\Documents\Mes vidéos 2017-06-11 14:15 - 2017-06-11 14:15 - 00000000 _SHDL C:\Users\defaultuser0\Documents\Mes images 2017-06-11 14:15 - 2017-06-11 14:15 - 00000000 _SHDL C:\Users\defaultuser0\Documents\Ma musique 2017-06-11 14:15 - 2017-06-11 14:15 - 00000000 _SHDL C:\Users\defaultuser0\AppData\Roaming\Microsoft\Windows\Start Menu\Programmes 2017-06-11 14:15 - 2017-06-11 14:15 - 00000000 _SHDL C:\Users\defaultuser0\AppData\Local\Historique 2017-06-11 14:15 - 2017-06-11 14:15 - 00000000 _SHDL C:\Users\Default\Voisinage réseau 2017-06-11 14:15 - 2017-06-11 14:15 - 00000000 _SHDL C:\Users\Default\Voisinage d'impression 2017-06-11 14:15 - 2017-06-11 14:15 - 00000000 _SHDL C:\Users\Default\Modèles 2017-06-11 14:15 - 2017-06-11 14:15 - 00000000 _SHDL C:\Users\Default\Mes documents 2017-06-11 14:15 - 2017-06-11 14:15 - 00000000 _SHDL C:\Users\Default\Menu Démarrer 2017-06-11 14:15 - 2017-06-11 14:15 - 00000000 _SHDL C:\Users\Default\Documents\Mes vidéos 2017-06-11 14:15 - 2017-06-11 14:15 - 00000000 _SHDL C:\Users\Default\Documents\Mes images 2017-06-11 14:15 - 2017-06-11 14:15 - 00000000 _SHDL C:\Users\Default\Documents\Ma musique 2017-06-11 14:15 - 2017-06-11 14:15 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programmes 2017-06-11 14:15 - 2017-06-11 14:15 - 00000000 _SHDL C:\Users\Default\AppData\Local\Historique 2017-06-11 14:15 - 2017-06-11 14:15 - 00000000 _SHDL C:\Users\Default User\Documents\Mes vidéos 2017-06-11 14:15 - 2017-06-11 14:15 - 00000000 _SHDL C:\Users\Default User\Documents\Mes images 2017-06-11 14:15 - 2017-06-11 14:15 - 00000000 _SHDL C:\Users\Default User\Documents\Ma musique 2017-06-11 14:15 - 2017-06-11 14:15 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programmes 2017-06-11 14:15 - 2017-06-11 14:15 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Historique 2017-06-11 14:15 - 2017-06-11 14:15 - 00000000 _SHDL C:\ProgramData\Modèles 2017-06-11 14:15 - 2017-06-11 14:15 - 00000000 _SHDL C:\ProgramData\Microsoft\Windows\Start Menu\Programmes 2017-06-11 14:15 - 2017-06-11 14:15 - 00000000 _SHDL C:\ProgramData\Menu Démarrer 2017-06-11 14:15 - 2017-06-11 14:15 - 00000000 _SHDL C:\ProgramData\Bureau 2017-06-11 14:15 - 2017-06-11 14:15 - 00000000 _SHDL C:\Program Files\Fichiers communs 2017-06-11 14:15 - 2017-06-11 14:15 - 00000000 ____D C:\Users\defaultuser0 2017-06-11 13:28 - 2017-06-11 13:28 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdMtpDr_01_11_00.Wdf 2017-06-11 13:27 - 2017-06-11 13:27 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf 2017-06-11 13:27 - 2017-06-11 13:27 - 00000000 ____D C:\ProgramData\USOShared 2017-06-11 13:26 - 2017-06-13 17:23 - 00000006 ____H C:\Windows\Tasks\SA.DAT 2017-06-11 13:25 - 2017-06-13 16:13 - 00000000 ____D C:\Windows\system32\SleepStudy 2017-06-11 13:25 - 2017-06-11 20:43 - 05734496 _____ C:\Windows\system32\FNTCACHE.DAT 2017-06-11 13:25 - 2017-06-11 13:25 - 00000000 ____D C:\Windows\ServiceProfiles 2017-06-10 22:44 - 2017-06-10 22:44 - 09755284 _____ C:\Users\PATRICK\Desktop\ù.psd 2017-06-10 22:27 - 2017-06-10 23:31 - 00000000 ____D C:\Users\PATRICK\Desktop\FM 2017-06-10 16:08 - 2017-06-10 16:08 - 00108932 _____ C:\Users\PATRICK\Downloads\FORTD___.TTF 2017-06-10 16:05 - 2017-06-10 16:05 - 01050875 _____ C:\Users\PATRICK\Downloads\Crystal Pattern.pat 2017-06-06 02:46 - 2017-06-06 02:46 - 00062249 _____ C:\Users\PATRICK\Desktop\[MTN CI] Internet gratuit avec YourFreedom VPN (pack apk+config) - Internet.html 2017-06-06 02:46 - 2017-06-06 02:46 - 00000000 ____D C:\Users\PATRICK\Desktop\[MTN CI] Internet gratuit avec YourFreedom VPN (pack apk+config) - Internet_files 2017-06-05 00:58 - 2017-06-06 01:13 - 00000000 ____D C:\Users\PATRICK\Desktop\Make up 2017-06-04 23:21 - 2017-06-04 23:29 - 67358165 _____ C:\Users\PATRICK\Downloads\IMG_6436.psd 2017-06-04 18:21 - 2017-06-06 00:02 - 00000000 ____D C:\Users\PATRICK\Desktop\Sarah 2017-06-03 19:13 - 2017-06-03 19:13 - 07444038 _____ C:\Users\PATRICK\Downloads\brush_pack___splashes_of_paint_by_mouritsada_stock.abr 2017-06-03 16:41 - 2017-06-03 16:41 - 00020366 _____ C:\Users\PATRICK\Downloads\orangetv (1).m3u 2017-06-03 01:43 - 2017-04-15 13:52 - 00000000 ____D C:\Users\PATRICK\Desktop\DroidVPN_v3.0.2.7 2017-06-02 21:06 - 2017-06-04 18:21 - 00000000 ____D C:\Users\PATRICK\Desktop\k music 2017-06-02 14:20 - 2017-06-02 16:48 - 02891133 _____ C:\Users\PATRICK\Desktop\zportif 2.psd 2017-06-02 13:19 - 2017-06-01 09:44 - 00000000 ____D C:\Users\PATRICK\Desktop\NAH recharge 2017-06-02 01:54 - 2017-06-11 14:47 - 00000000 ____D C:\Users\PATRICK\Desktop\Ivana 2017-05-31 22:26 - 2017-05-31 22:26 - 00000898 _____ C:\Users\PATRICK\Desktop\mtn 51.txt 2017-05-30 18:08 - 2017-05-30 20:51 - 00000000 ____D C:\Users\PATRICK\Desktop\my brush 2017-05-29 16:52 - 2017-05-29 16:52 - 00003875 _____ C:\Users\PATRICK\Downloads\bein-2805 (1).zip 2017-05-29 11:03 - 2017-05-29 11:03 - 00034911 _____ C:\Users\PATRICK\Downloads\bein-2805 (1).m3u 2017-05-28 02:26 - 2017-05-28 02:26 - 00005985 _____ C:\Users\PATRICK\Downloads\france2705.m3u 2017-05-28 02:25 - 2017-05-28 02:25 - 00065299 _____ C:\Users\PATRICK\Downloads\world2705n.m3u 2017-05-27 20:26 - 2017-05-27 20:26 - 00034911 _____ C:\Users\PATRICK\Downloads\bein-2805.m3u 2017-05-26 19:42 - 2017-06-06 13:29 - 00000000 ____D C:\Users\PATRICK\Documents\Bandicam 2017-05-26 19:37 - 2017-05-28 12:35 - 34249212 _____ C:\Users\PATRICK\Downloads\com.adobe.psmobile_3.5.275-52_minAPI16(armeabi-v7a)(nodpi)_apkmirror.com.apk 2017-05-26 19:37 - 2017-05-28 02:08 - 103338619 _____ C:\Users\PATRICK\Downloads\dji.go.v4_4.1.0-1023963_minAPI19(armeabi-v7a)(nodpi)_apkmirror.com.apk 2017-05-26 00:01 - 2017-05-26 00:01 - 00000615 _____ C:\Users\PATRICK\Downloads\1.srt 2017-05-25 23:18 - 2017-05-25 23:18 - 00056924 _____ C:\Users\PATRICK\Downloads\Game of Thrones Saison 3 FRENCH HDTV.torrent 2017-05-24 01:19 - 2017-06-13 10:47 - 00000000 ___RD C:\Users\PATRICK\Desktop\Suave 2017-05-22 12:05 - 2017-05-22 12:05 - 00035933 _____ C:\Users\PATRICK\Downloads\Windows 7 Ultimate Sp1 Mise à Jour Décembre 2016 (1).torrent 2017-05-21 15:11 - 2017-05-21 15:11 - 13501229 _____ C:\Users\PATRICK\Downloads\Jean noel.psd 2017-05-20 22:13 - 2017-05-20 22:13 - 00035933 _____ C:\Users\PATRICK\Downloads\Windows 7 Ultimate Sp1 Mise à Jour Décembre 2016.torrent 2017-05-20 18:12 - 2017-05-20 18:12 - 00000017 _____ C:\Users\PATRICK\Desktop\JHJ.txt 2017-05-19 02:32 - 2017-05-19 03:00 - 31594785 _____ C:\Users\PATRICK\Downloads\com.ea.gp.fifamobile_6.0.0-44_minAPI16(armeabi-v7a)(nodpi)_apkmirror.com.apk 2017-05-19 02:28 - 2017-05-19 14:11 - 39261975 _____ C:\Users\PATRICK\Downloads\com.gameloft.android.ANMP.GloftMOHM_1.4.2b-14223_minAPI15(armeabi-v7a,x86)(nodpi)_apkmirror.com.apk 2017-05-18 23:29 - 2017-05-18 23:29 - 27819245 _____ C:\Users\PATRICK\Downloads\PES2017_v1.0.1__8066_Revdl.com.apk 2017-05-18 21:55 - 2017-05-18 21:55 - 00005970 _____ C:\Users\PATRICK\Downloads\internet.svg 2017-05-18 20:29 - 2017-05-18 20:29 - 00051106 _____ C:\Users\PATRICK\Downloads\WhatsApp Image 2017-05-18 at 16.47.25.jpeg 2017-05-18 17:54 - 2017-05-21 23:12 - 00000000 ____D C:\Users\PATRICK\Desktop\all black 2017-05-17 14:19 - 2017-05-17 14:19 - 00000000 ____D C:\Users\PATRICK\Documents\DAZ 3D 2017-05-16 19:59 - 2017-05-18 03:55 - 89935003 _____ C:\Users\PATRICK\Downloads\com.tinyco.futurama.beta_1.1.0-1104_minAPI12(armeabi,armeabi-v7a)(nodpi)_apkmirror.com.apk 2017-05-16 19:50 - 2017-06-06 01:18 - 00000000 ____D C:\Users\PATRICK\Desktop\Ultrasurf 13.04 2017-05-15 17:27 - 2017-05-15 17:27 - 00000000 ____D C:\Users\PATRICK\Desktop\Adobe Premiere Pro Auto-Save 2017-05-15 10:29 - 2017-06-01 02:07 - 00000000 ____D C:\Users\PATRICK\Desktop\Papouni News 2017-05-15 01:59 - 2017-05-15 16:22 - 31373666 _____ C:\Users\PATRICK\Downloads\com.instagram.android_10.21.0-58256051_minAPI16(armeabi-v7a)(nodpi)_apkmirror.com.apk ==================== Un mois - Modifiés - fichiers et dossiers ======== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2017-06-13 17:40 - 2016-07-16 13:45 - 00000000 ____D C:\Windows\INF 2017-06-13 17:28 - 2016-07-17 00:40 - 00916964 _____ C:\Windows\system32\perfh00C.dat 2017-06-13 17:28 - 2016-07-17 00:40 - 00218350 _____ C:\Windows\system32\perfc00C.dat 2017-06-13 17:26 - 2016-07-16 13:47 - 00000000 ____D C:\Windows\system32\inetsrv 2017-06-13 17:22 - 2016-07-16 08:04 - 00262144 _____ C:\Windows\system32\config\BBI 2017-06-13 15:23 - 2016-07-16 13:47 - 00000000 ____D C:\Windows\Registration 2017-06-13 15:14 - 2016-07-17 00:40 - 00000000 ____D C:\Windows\system32\fr 2017-06-13 15:14 - 2016-07-16 13:47 - 00000000 ____D C:\Windows\SysWOW64\inetsrv 2017-06-13 15:14 - 2016-07-16 13:47 - 00000000 ____D C:\Windows\schemas 2017-06-13 15:14 - 2016-07-16 13:47 - 00000000 ____D C:\Windows\PolicyDefinitions 2017-06-13 15:14 - 2016-07-16 13:47 - 00000000 ____D C:\Program Files\Common Files\microsoft shared 2017-06-13 15:13 - 2016-07-16 13:36 - 00000000 ____D C:\Windows\CbsTemp 2017-06-13 15:10 - 2016-07-16 13:44 - 00096256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mqoa.tlb 2017-06-13 15:10 - 2016-07-16 13:44 - 00090624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mqoa30.tlb 2017-06-13 15:10 - 2016-07-16 13:44 - 00090624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\evntagnt.dll 2017-06-13 15:10 - 2016-07-16 13:44 - 00055296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mqoa20.tlb 2017-06-13 15:10 - 2016-07-16 13:44 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\hostmib.dll 2017-06-13 15:10 - 2016-07-16 13:44 - 00036864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mqoa10.tlb 2017-06-13 15:10 - 2016-07-16 13:44 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\snmpmib.dll 2017-06-13 15:10 - 2016-07-16 13:43 - 01149404 _____ C:\Windows\system32\WindowsHyperVCluster.V2.mof 2017-06-13 15:10 - 2016-07-16 13:43 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\HgsClientWmi.dll 2017-06-13 15:10 - 2016-07-16 13:43 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\nfsrc.dll 2017-06-13 15:10 - 2016-07-16 13:41 - 00103424 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Synth3dVsp.sys 2017-06-13 15:09 - 2016-07-16 13:44 - 01129984 _____ (Microsoft Corporation) C:\Windows\system32\Microsoft.Windows.Smc.dll 2017-06-13 15:09 - 2016-07-16 13:44 - 00293376 _____ (Microsoft Corporation) C:\Windows\system32\dsrolesrv.dll 2017-06-13 15:09 - 2016-07-16 13:44 - 00265728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mqoa.dll 2017-06-13 15:09 - 2016-07-16 13:44 - 00248320 _____ (Microsoft Corporation) C:\Windows\system32\dsmgmt.exe 2017-06-13 15:09 - 2016-07-16 13:44 - 00226304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dsdbutil.exe 2017-06-13 15:09 - 2016-07-16 13:44 - 00194560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\snmpsnap.dll 2017-06-13 15:09 - 2016-07-16 13:44 - 00098816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\evntwin.exe 2017-06-13 15:09 - 2016-07-16 13:44 - 00072704 _____ (Microsoft Corporation) C:\Windows\system32\WSDRCWSProxy.DLL 2017-06-13 15:09 - 2016-07-16 13:44 - 00058368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSDEWSProxy.DLL 2017-06-13 15:09 - 2016-07-16 13:44 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\mqise.dll 2017-06-13 15:09 - 2016-07-16 13:44 - 00038912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\csvde.exe 2017-06-13 15:09 - 2016-07-16 13:44 - 00033614 _____ C:\Windows\system32\ScanManagement.msc 2017-06-13 15:09 - 2016-07-16 13:44 - 00009096 _____ C:\Windows\SysWOW64\msmqtrc.mof 2017-06-13 15:09 - 2016-07-16 13:43 - 01017344 _____ (Microsoft Corporation) C:\Windows\system32\adprop.dll 2017-06-13 15:09 - 2016-07-16 13:43 - 00779776 _____ (Microsoft Corporation) C:\Windows\system32\vmconnect.exe 2017-06-13 15:09 - 2016-07-16 13:43 - 00775168 _____ (Microsoft Corporation) C:\Windows\system32\adsiedit.dll 2017-06-13 15:09 - 2016-07-16 13:43 - 00336296 _____ (Microsoft Corporation) C:\Windows\system32\TpmEngUM.dll 2017-06-13 15:09 - 2016-07-16 13:43 - 00227328 _____ (Microsoft Corporation) C:\Windows\system32\mqrt.dll 2017-06-13 15:09 - 2016-07-16 13:43 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\CCG.exe 2017-06-13 15:09 - 2016-07-16 13:43 - 00175616 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mqac.sys 2017-06-13 15:09 - 2016-07-16 13:43 - 00144380 _____ C:\Windows\system32\adsiedit.msc 2017-06-13 15:09 - 2016-07-16 13:43 - 00128128 _____ (Microsoft Corporation) C:\Windows\system32\vmsp.exe 2017-06-13 15:09 - 2016-07-16 13:43 - 00107882 _____ C:\Windows\system32\mib_ii.mib 2017-06-13 15:09 - 2016-07-16 13:43 - 00072704 _____ (Microsoft Corporation) C:\Windows\system32\nfscprop.dll 2017-06-13 15:09 - 2016-07-16 13:43 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\BootExpCfg.exe 2017-06-13 15:09 - 2016-07-16 13:43 - 00048593 _____ C:\Windows\system32\hostmib.mib 2017-06-13 15:09 - 2016-07-16 13:43 - 00042496 _____ (Microsoft Corporation) C:\Windows\system32\lprmon.dll 2017-06-13 15:09 - 2016-07-16 13:43 - 00035328 _____ (Microsoft Corporation) C:\Windows\system32\iprip.dll 2017-06-13 15:09 - 2016-07-16 13:43 - 00034317 _____ C:\Windows\system32\msiprip2.mib 2017-06-13 15:09 - 2016-07-16 13:43 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ramparser.sys 2017-06-13 15:09 - 2016-07-16 13:43 - 00030448 _____ C:\Windows\system32\mcastmib.mib 2017-06-13 15:09 - 2016-07-16 13:43 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\RdvgmProxy.dll 2017-06-13 15:09 - 2016-07-16 13:43 - 00026236 _____ C:\Windows\system32\wins.mib 2017-06-13 15:09 - 2016-07-16 13:43 - 00026112 _____ (Microsoft Corporation) C:\Windows\system32\lprhelp.dll 2017-06-13 15:09 - 2016-07-16 13:43 - 00026100 _____ C:\Windows\system32\lmmib2.mib 2017-06-13 15:09 - 2016-07-16 13:43 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\passthruparser.sys 2017-06-13 15:09 - 2016-07-16 13:43 - 00022462 _____ C:\Windows\system32\rfc2571.mib 2017-06-13 15:09 - 2016-07-16 13:43 - 00021271 _____ C:\Windows\system32\http.mib 2017-06-13 15:09 - 2016-07-16 13:43 - 00015799 _____ C:\Windows\system32\ipforwd.mib 2017-06-13 15:09 - 2016-07-16 13:43 - 00015360 _____ (Microsoft Corporation) C:\Windows\system32\lprmonui.dll 2017-06-13 15:09 - 2016-07-16 13:43 - 00015032 _____ C:\Windows\system32\authserv.mib 2017-06-13 15:09 - 2016-07-16 13:43 - 00014032 _____ C:\Windows\system32\accserv.mib 2017-06-13 15:09 - 2016-07-16 13:43 - 00013767 _____ C:\Windows\system32\msipbtp.mib 2017-06-13 15:09 - 2016-07-16 13:43 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\lpr.exe 2017-06-13 15:09 - 2016-07-16 13:43 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\lpq.exe 2017-06-13 15:09 - 2016-07-16 13:43 - 00006179 _____ C:\Windows\system32\ftp.mib 2017-06-13 15:09 - 2016-07-16 13:43 - 00004597 _____ C:\Windows\system32\dhcp.mib 2017-06-13 15:09 - 2016-07-16 13:43 - 00004411 _____ C:\Windows\system32\smi.mib 2017-06-13 15:09 - 2016-07-16 13:41 - 00046592 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pcip.sys 2017-06-13 15:08 - 2016-07-16 13:44 - 00216064 _____ (Microsoft Corporation) C:\Windows\system32\mqtrig.dll 2017-06-13 15:08 - 2016-07-16 13:44 - 00097792 _____ (Microsoft Corporation) C:\Windows\system32\evntagnt.dll 2017-06-13 15:08 - 2016-07-16 13:44 - 00078336 _____ (Microsoft Corporation) C:\Windows\system32\ldifde.exe 2017-06-13 15:08 - 2016-07-16 13:44 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\WSDEWSProxy.DLL 2017-06-13 15:08 - 2016-07-16 13:44 - 00065024 _____ (Microsoft Corporation) C:\Windows\system32\ntdsatq.dll 2017-06-13 15:08 - 2016-07-16 13:44 - 00045056 _____ (Microsoft Corporation) C:\Windows\system32\lmmib2.dll 2017-06-13 15:08 - 2016-07-16 13:44 - 00043520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\hostmib.dll 2017-06-13 15:08 - 2016-07-16 13:44 - 00041472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dsacls.exe 2017-06-13 15:08 - 2016-07-16 13:44 - 00027136 _____ (Microsoft Corporation) C:\Windows\system32\evntcmd.exe 2017-06-13 15:08 - 2016-07-16 13:44 - 00020992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdsperf.dll 2017-06-13 15:08 - 2016-07-16 13:44 - 00018432 _____ (Microsoft Corporation) C:\Windows\system32\wow64mib.dll 2017-06-13 15:08 - 2016-07-16 13:44 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\snmpmib.dll 2017-06-13 15:08 - 2016-07-16 13:43 - 00564224 _____ (Microsoft Corporation) C:\Windows\system32\mqutil.dll 2017-06-13 15:08 - 2016-07-16 13:43 - 00395264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnet.dll 2017-06-13 15:08 - 2016-07-16 13:43 - 00331776 _____ (Microsoft Corporation) C:\Windows\system32\schmmgmt.dll 2017-06-13 15:08 - 2016-07-16 13:43 - 00248320 _____ (Microsoft Corporation) C:\Windows\system32\RemoteFileBrowse.dll 2017-06-13 15:08 - 2016-07-16 13:43 - 00206848 _____ (Microsoft Corporation) C:\Windows\system32\nfscommgmt.dll 2017-06-13 15:08 - 2016-07-16 13:43 - 00150016 _____ (Microsoft Corporation) C:\Windows\system32\nfsadmin.exe 2017-06-13 15:08 - 2016-07-16 13:43 - 00144967 _____ C:\Windows\system32\virtmgmt.msc 2017-06-13 15:08 - 2016-07-16 13:43 - 00127488 _____ (Microsoft Corporation) C:\Windows\system32\mqlogmgr.dll 2017-06-13 15:08 - 2016-07-16 13:43 - 00106496 _____ (Microsoft Corporation) C:\Windows\system32\rpcinfo.exe 2017-06-13 15:08 - 2016-07-16 13:43 - 00100352 _____ (Microsoft Corporation) C:\Windows\system32\umount.exe 2017-06-13 15:08 - 2016-07-16 13:43 - 00096256 _____ (Microsoft Corporation) C:\Windows\system32\mqoa.tlb 2017-06-13 15:08 - 2016-07-16 13:43 - 00095232 _____ (Microsoft Corporation) C:\Windows\system32\mount.exe 2017-06-13 15:08 - 2016-07-16 13:43 - 00093510 _____ C:\Windows\system32\nfsmgmt.msc 2017-06-13 15:08 - 2016-07-16 13:43 - 00090624 _____ (Microsoft Corporation) C:\Windows\system32\mqoa30.tlb 2017-06-13 15:08 - 2016-07-16 13:43 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\showmount.exe 2017-06-13 15:08 - 2016-07-16 13:43 - 00075616 _____ (Microsoft Corporation) C:\Windows\system32\rtpm.dll 2017-06-13 15:08 - 2016-07-16 13:43 - 00070144 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msdcb.sys 2017-06-13 15:08 - 2016-07-16 13:43 - 00063488 _____ (Microsoft Corporation) C:\Windows\system32\HyperVSysprepProvider.dll 2017-06-13 15:08 - 2016-07-16 13:43 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnathlp.dll 2017-06-13 15:08 - 2016-07-16 13:43 - 00055296 _____ (Microsoft Corporation) C:\Windows\system32\mqoa20.tlb 2017-06-13 15:08 - 2016-07-16 13:43 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pvhdparser.sys 2017-06-13 15:08 - 2016-07-16 13:43 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\mqoa10.tlb 2017-06-13 15:08 - 2016-07-16 13:43 - 00027136 _____ (Microsoft Corporation) C:\Windows\system32\RdvGpuInfo.dll 2017-06-13 15:08 - 2016-07-16 13:43 - 00024944 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\kbldfltr.sys 2017-06-13 15:08 - 2016-07-16 13:43 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\simptcp.dll 2017-06-13 15:08 - 2016-07-16 13:43 - 00023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnsvr.exe 2017-06-13 15:08 - 2016-07-16 13:43 - 00021504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RdvgmProxy.dll 2017-06-13 15:08 - 2016-07-16 13:43 - 00008704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnhupnp.dll 2017-06-13 15:08 - 2016-07-16 13:43 - 00008704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnhpast.dll 2017-06-13 15:08 - 2016-07-16 13:43 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnlobby.dll 2017-06-13 15:08 - 2016-07-16 13:43 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnaddr.dll 2017-06-13 15:07 - 2016-07-16 13:44 - 00261632 _____ (Microsoft Corporation) C:\Windows\system32\dsdbutil.exe 2017-06-13 15:07 - 2016-07-16 13:44 - 00194048 _____ (Microsoft Corporation) C:\Windows\system32\lsadb.dll 2017-06-13 15:07 - 2016-07-16 13:44 - 00192512 _____ (Microsoft Corporation) C:\Windows\system32\ntdskcc.dll 2017-06-13 15:07 - 2016-07-16 13:44 - 00176640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dsmgmt.exe 2017-06-13 15:07 - 2016-07-16 13:44 - 00160768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mqrt.dll 2017-06-13 15:07 - 2016-07-16 13:44 - 00125440 _____ (Microsoft Corporation) C:\Windows\system32\evntwin.exe 2017-06-13 15:07 - 2016-07-16 13:44 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSDRCWSProxy.DLL 2017-06-13 15:07 - 2016-07-16 13:44 - 00060928 _____ (Microsoft Corporation) C:\Windows\system32\ntdsbsrv.dll 2017-06-13 15:07 - 2016-07-16 13:44 - 00047974 _____ C:\Windows\SysWOW64\IIsScHlp.wsc 2017-06-13 15:07 - 2016-07-16 13:44 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\csvde.exe 2017-06-13 15:07 - 2016-07-16 13:44 - 00041401 _____ C:\Windows\SysWOW64\IIsExt.vbs 2017-06-13 15:07 - 2016-07-16 13:44 - 00038912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mqise.dll 2017-06-13 15:07 - 2016-07-16 13:44 - 00018432 _____ (Microsoft Corporation) C:\Windows\system32\adamssip.dll 2017-06-13 15:07 - 2016-07-16 13:44 - 00012288 _____ (Microsoft Corporation) C:\Windows\system32\dsamain.exe 2017-06-13 15:07 - 2016-07-16 13:44 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\ntdsmsg.dll 2017-06-13 15:07 - 2016-07-16 13:43 - 01414144 _____ (Microsoft Corporation) C:\Windows\system32\mqqm.dll 2017-06-13 15:07 - 2016-07-16 13:43 - 00335200 _____ (Microsoft Corporation) C:\Windows\system32\eshell.exe 2017-06-13 15:07 - 2016-07-16 13:43 - 00310784 _____ (Microsoft Corporation) C:\Windows\system32\mqoa.dll 2017-06-13 15:07 - 2016-07-16 13:43 - 00260608 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\nfsrdr.sys 2017-06-13 15:07 - 2016-07-16 13:43 - 00246272 _____ (Microsoft Corporation) C:\Windows\system32\snmpsnap.dll 2017-06-13 15:07 - 2016-07-16 13:43 - 00228352 _____ (Microsoft Corporation) C:\Windows\system32\dsuiwiz.dll 2017-06-13 15:07 - 2016-07-16 13:43 - 00132608 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rpcxdr.sys 2017-06-13 15:07 - 2016-07-16 13:43 - 00107882 _____ C:\Windows\SysWOW64\mib_ii.mib 2017-06-13 15:07 - 2016-07-16 13:43 - 00099328 _____ (Microsoft Corporation) C:\Windows\system32\nfsclnt.exe 2017-06-13 15:07 - 2016-07-16 13:43 - 00096256 _____ (Microsoft Corporation) C:\Windows\system32\nfsnp.dll 2017-06-13 15:07 - 2016-07-16 13:43 - 00089440 _____ (Microsoft Corporation) C:\Windows\system32\KeyboardFilterSvc.dll 2017-06-13 15:07 - 2016-07-16 13:43 - 00049152 _____ (Microsoft Corporation) C:\Windows\system32\lpdsvc.dll 2017-06-13 15:07 - 2016-07-16 13:43 - 00048593 _____ C:\Windows\SysWOW64\hostmib.mib 2017-06-13 15:07 - 2016-07-16 13:43 - 00047974 _____ C:\Windows\system32\IIsScHlp.wsc 2017-06-13 15:07 - 2016-07-16 13:43 - 00041401 _____ C:\Windows\system32\IIsExt.vbs 2017-06-13 15:07 - 2016-07-16 13:43 - 00038240 _____ (Microsoft Corporation) C:\Windows\system32\ShellLauncherConfig.dll 2017-06-13 15:07 - 2016-07-16 13:43 - 00037728 _____ (Microsoft Corporation) C:\Windows\system32\ShellLauncherConfig.exe 2017-06-13 15:07 - 2016-07-16 13:43 - 00034317 _____ C:\Windows\SysWOW64\msiprip2.mib 2017-06-13 15:07 - 2016-07-16 13:43 - 00030448 _____ C:\Windows\SysWOW64\mcastmib.mib 2017-06-13 15:07 - 2016-07-16 13:43 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\aspperf.dll 2017-06-13 15:07 - 2016-07-16 13:43 - 00027648 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WmsVolFilter.sys 2017-06-13 15:07 - 2016-07-16 13:43 - 00026464 _____ (Microsoft Corporation) C:\Windows\system32\MCDeviceNotify.dll 2017-06-13 15:07 - 2016-07-16 13:43 - 00026236 _____ C:\Windows\SysWOW64\wins.mib 2017-06-13 15:07 - 2016-07-16 13:43 - 00026100 _____ C:\Windows\SysWOW64\lmmib2.mib 2017-06-13 15:07 - 2016-07-16 13:43 - 00023040 _____ (Microsoft Corporation) C:\Windows\system32\infoadmn.dll 2017-06-13 15:07 - 2016-07-16 13:43 - 00022528 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\lunparser.sys 2017-06-13 15:07 - 2016-07-16 13:43 - 00022462 _____ C:\Windows\SysWOW64\rfc2571.mib 2017-06-13 15:07 - 2016-07-16 13:43 - 00021271 _____ C:\Windows\SysWOW64\http.mib 2017-06-13 15:07 - 2016-07-16 13:43 - 00018432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\infoadmn.dll 2017-06-13 15:07 - 2016-07-16 13:43 - 00015799 _____ C:\Windows\SysWOW64\ipforwd.mib 2017-06-13 15:07 - 2016-07-16 13:43 - 00015032 _____ C:\Windows\SysWOW64\authserv.mib 2017-06-13 15:07 - 2016-07-16 13:43 - 00014032 _____ C:\Windows\SysWOW64\accserv.mib 2017-06-13 15:07 - 2016-07-16 13:43 - 00013767 _____ C:\Windows\SysWOW64\msipbtp.mib 2017-06-13 15:07 - 2016-07-16 13:43 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\infoctrs.dll 2017-06-13 15:07 - 2016-07-16 13:43 - 00011264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\infoctrs.dll 2017-06-13 15:07 - 2016-07-16 13:43 - 00009096 _____ C:\Windows\system32\msmqtrc.mof 2017-06-13 15:07 - 2016-07-16 13:43 - 00006179 _____ C:\Windows\SysWOW64\ftp.mib 2017-06-13 15:07 - 2016-07-16 13:43 - 00004597 _____ C:\Windows\SysWOW64\dhcp.mib 2017-06-13 15:07 - 2016-07-16 13:43 - 00004411 _____ C:\Windows\SysWOW64\smi.mib 2017-06-13 15:07 - 2016-07-16 13:42 - 00015712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\lxss.sys 2017-06-13 15:06 - 2016-07-16 13:44 - 00491520 _____ (Microsoft Corporation) C:\Windows\system32\SMCNative.dll 2017-06-13 15:06 - 2016-07-16 13:44 - 00165376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mqtrig.dll 2017-06-13 15:06 - 2016-07-16 13:44 - 00038400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lmmib2.dll 2017-06-13 15:06 - 2016-07-16 13:44 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\evntcmd.exe 2017-06-13 15:06 - 2016-07-16 13:43 - 00471040 _____ (Microsoft Corporation) C:\Windows\system32\dpnet.dll 2017-06-13 15:06 - 2016-07-16 13:43 - 00207360 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\winnat.sys 2017-06-13 15:06 - 2016-07-16 13:43 - 00129024 _____ (Microsoft Corporation) C:\Windows\system32\telnet.exe 2017-06-13 15:06 - 2016-07-16 13:43 - 00068096 _____ (Microsoft Corporation) C:\Windows\system32\dpnathlp.dll 2017-06-13 15:06 - 2016-07-16 13:43 - 00041824 _____ (Microsoft Corporation) C:\Windows\system32\KeyboardFilterCore.dll 2017-06-13 15:06 - 2016-07-16 13:43 - 00027136 _____ (Microsoft Corporation) C:\Windows\system32\dpnsvr.exe 2017-06-13 15:06 - 2016-07-16 13:43 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aspperf.dll 2017-06-13 15:06 - 2016-07-16 13:43 - 00010240 _____ (Microsoft Corporation) C:\Windows\system32\dpnhupnp.dll 2017-06-13 15:06 - 2016-07-16 13:43 - 00010240 _____ (Microsoft Corporation) C:\Windows\system32\dpnhpast.dll 2017-06-13 15:06 - 2016-07-16 13:43 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\dpnlobby.dll 2017-06-13 15:06 - 2016-07-16 13:43 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\dpnaddr.dll 2017-06-13 15:05 - 2016-07-16 13:44 - 00562176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mqutil.dll 2017-06-13 15:05 - 2016-07-16 13:44 - 00360448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SMCNative.dll 2017-06-13 15:05 - 2016-07-16 13:44 - 00176640 _____ (Microsoft Corporation) C:\Windows\system32\ntdsetup.dll 2017-06-13 15:05 - 2016-07-16 13:44 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ldifde.exe 2017-06-13 15:05 - 2016-07-16 13:44 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\dsacls.exe 2017-06-13 15:05 - 2016-07-16 13:44 - 00024064 _____ (Microsoft Corporation) C:\Windows\system32\ntdsperf.dll 2017-06-13 15:05 - 2016-07-16 13:43 - 01569750 _____ C:\Windows\system32\WindowsVirtualization.V2.mof 2017-06-13 15:05 - 2016-07-16 13:43 - 00193024 _____ (Microsoft Corporation) C:\Windows\system32\CCGLaunchPad.dll 2017-06-13 15:05 - 2016-07-16 13:43 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\mqtgsvc.exe 2017-06-13 15:05 - 2016-07-16 13:43 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\mqbkup.exe 2017-06-13 15:05 - 2016-07-16 13:43 - 00047104 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WmsWlFltr.sys 2017-06-13 15:05 - 2016-07-16 13:43 - 00034144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KeyboardFilterCore.dll 2017-06-13 15:05 - 2016-07-16 13:43 - 00026624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vhdparser.sys 2017-06-13 15:05 - 2016-07-16 13:43 - 00026112 _____ (Microsoft Corporation) C:\Windows\system32\mqsvc.exe 2017-06-13 15:05 - 2016-07-16 13:43 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\TFTP.EXE 2017-06-13 15:00 - 2016-07-16 13:47 - 00000000 ____D C:\Windows\system32\NDF 2017-06-13 14:52 - 2016-07-16 13:43 - 00340992 _____ (Microsoft Corporation) C:\Windows\system32\nfscimprov.dll 2017-06-13 14:51 - 2016-07-16 13:44 - 00621568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mqsnap.dll 2017-06-13 14:51 - 2016-07-16 13:44 - 00015360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mqcertui.dll 2017-06-13 14:51 - 2016-07-16 13:43 - 00785408 _____ (Microsoft Corporation) C:\Windows\system32\mqsnap.dll 2017-06-13 14:51 - 2016-07-16 13:43 - 00220672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dplayx.dll 2017-06-13 14:51 - 2016-07-16 13:43 - 00120832 _____ C:\Windows\system32\uwfcsp.dll 2017-06-13 14:51 - 2016-07-16 13:43 - 00099840 _____ C:\Windows\system32\uwfcfgmgmt.dll 2017-06-13 14:51 - 2016-07-16 13:43 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpwsockx.dll 2017-06-13 14:51 - 2016-07-16 13:43 - 00025088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpmodemx.dll 2017-06-13 14:51 - 2016-07-16 13:43 - 00020992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dplaysvr.exe 2017-06-13 14:51 - 2016-07-16 13:43 - 00018944 _____ (Microsoft Corporation) C:\Windows\system32\mqcertui.dll 2017-06-13 14:51 - 2016-07-16 13:43 - 00017920 _____ C:\Windows\system32\uwfservicingapi.dll 2017-06-13 14:44 - 2016-07-16 13:41 - 00152064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vmbusr.sys 2017-06-13 14:44 - 2016-07-16 13:41 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\vmbuspiper.dll 2017-06-12 14:13 - 2016-07-16 13:47 - 00000000 ____D C:\Windows\system32\WinBioDatabase 2017-06-12 14:09 - 2016-07-16 13:47 - 00000000 ____D C:\Windows\system32\WinBioPlugIns 2017-06-12 13:43 - 2014-12-16 19:58 - 00000000 ____D C:\Users\PATRICK\Downloads\Compressed 2017-06-12 12:05 - 2016-07-16 13:47 - 00000000 ____D C:\Windows\appcompat 2017-06-11 19:08 - 2016-07-16 13:47 - 00000000 ___HD C:\Program Files\WindowsApps 2017-06-11 17:51 - 2017-04-30 11:45 - 00000000 ___HD C:\adobeTemp 2017-06-11 16:49 - 2015-03-28 22:31 - 00000000 ____D C:\Users\PATRICK\Documents\Adobe 2017-06-11 15:18 - 2016-07-16 13:47 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2017-06-11 14:46 - 2016-07-16 13:47 - 00000000 ____D C:\Windows\AppReadiness 2017-06-11 14:45 - 2017-01-09 14:07 - 00000000 ___RD C:\Users\PATRICK\Documents\Scanned Documents 2017-06-11 14:23 - 2016-07-16 13:47 - 00028672 _____ C:\Windows\system32\config\BCD-Template 2017-06-11 14:21 - 2016-07-16 13:47 - 00000000 ____D C:\Windows\rescache 2017-06-11 14:18 - 2016-07-16 13:47 - 00000000 ____D C:\Windows\system32\spool 2017-06-11 14:18 - 2016-07-16 13:47 - 00000000 ____D C:\Windows\system32\FxsTmp 2017-06-11 14:15 - 2016-07-16 13:47 - 00000000 ____D C:\Program Files\Windows NT 2017-06-11 13:33 - 2016-07-16 08:04 - 00000000 ____D C:\Windows\system32\Sysprep 2017-06-11 13:29 - 2016-07-16 13:47 - 00000000 ___RD C:\Windows\PrintDialog 2017-06-11 13:29 - 2016-07-16 13:47 - 00000000 ___RD C:\Windows\MiracastView 2017-06-11 13:29 - 2016-07-16 13:47 - 00000000 ___RD C:\Windows\ImmersiveControlPanel 2017-06-11 13:27 - 2016-07-16 13:47 - 00000000 ____D C:\ProgramData\USOPrivate 2017-06-11 13:26 - 2016-07-16 08:04 - 00032768 _____ C:\Windows\system32\config\ELAM 2017-06-03 13:06 - 2017-05-12 04:44 - 00000000 ____D C:\Users\PATRICK\Downloads\Video 2017-06-02 15:22 - 2016-11-24 23:01 - 00001485 _____ C:\Users\PATRICK\Desktop\UsbFix.lnk 2017-05-30 18:10 - 2017-05-08 18:13 - 00000000 ____D C:\Users\PATRICK\Desktop\Most Wanted 2017-05-30 18:10 - 2017-02-26 13:44 - 00000000 ____D C:\Users\PATRICK\Desktop\Nouveau dossier 2017-05-28 02:08 - 2017-04-26 00:04 - 00000528 _____ C:\Users\PATRICK\Desktop\4g.txt 2017-05-27 15:22 - 2013-12-18 12:17 - 00000000 ____D C:\Users\PATRICK\Desktop\PdaNet+ V4.12 2017-05-26 23:06 - 2015-09-27 22:32 - 00000000 ____D C:\Users\PATRICK\Documents\ZedTV 2017-05-26 18:38 - 2017-04-26 13:23 - 00000000 ____D C:\Users\PATRICK\Desktop\Ultrasurf 2017-05-15 16:23 - 2016-12-05 00:01 - 00000703 _____ C:\Users\PATRICK\Desktop\Default.ihq 2017-05-15 11:49 - 2017-04-21 21:09 - 00000000 ____D C:\Users\PATRICK\Desktop\Test Pr 2017-05-14 12:22 - 2017-05-13 23:59 - 47025485 _____ C:\Users\PATRICK\Downloads\com.ea.game.simpsons4_row_4.26.5-165_minAPI11(armeabi-v7a)(nodpi)_apkmirror.com.apk ==================== Fichiers à la racine de certains dossiers ======= 2017-06-11 17:56 - 2017-06-11 17:56 - 0007602 _____ () C:\Users\PATRICK\AppData\Local\Resmon.ResmonCfg ==================== Bamital & volsnap ====================== (Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.) C:\Windows\system32\winlogon.exe => Le fichier est signé numériquement C:\Windows\system32\wininit.exe => Le fichier est signé numériquement C:\Windows\explorer.exe => Le fichier est signé numériquement C:\Windows\SysWOW64\explorer.exe => Le fichier est signé numériquement C:\Windows\system32\svchost.exe => Le fichier est signé numériquement C:\Windows\SysWOW64\svchost.exe => Le fichier est signé numériquement C:\Windows\system32\services.exe => Le fichier est signé numériquement C:\Windows\system32\User32.dll => Le fichier est signé numériquement C:\Windows\SysWOW64\User32.dll => Le fichier est signé numériquement C:\Windows\system32\userinit.exe => Le fichier est signé numériquement C:\Windows\SysWOW64\userinit.exe => Le fichier est signé numériquement C:\Windows\system32\rpcss.dll => Le fichier est signé numériquement C:\Windows\system32\dnsapi.dll => Le fichier est signé numériquement C:\Windows\SysWOW64\dnsapi.dll => Le fichier est signé numériquement C:\Windows\system32\Drivers\volsnap.sys => Le fichier est signé numériquement LastRegBack: 2017-06-11 13:25 ==================== Fin de FRST.txt ============================