Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x86) Version: 01-01-2017
Exécuté par M (administrateur) sur PC-MOON (01-01-2017 21:35:12)
Exécuté depuis C:\Users\M\Downloads
Profils chargés: M (Profils disponibles: M)
Platform: Microsoft Windows 10 Professionnel Version 1607 (X86) Langue: Français (France)
Internet Explorer Version 11 (Navigateur par défaut: Chrome)
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(AMD) C:\Windows\System32\atiesrxx.exe
(Hewlett-Packard Company) C:\Windows\System32\hpservice.exe
(AnchorFree Inc.) C:\Program Files\Hotspot Shield\bin\hsswd.exe
(Safer-Networking Ltd.) C:\Program Files\Spybot - Search & Destroy 2\SDFSSvc.exe
(Safer-Networking Ltd.) C:\Program Files\Spybot - Search & Destroy 2\SDUpdSvc.exe
(DEVGURU Co., LTD.) C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(Andrea Electronics Corporation) C:\Windows\System32\AEADISRV.EXE
(LSI Corporation) C:\Program Files\LSI SoftModem\agrsmsvc.exe
(McAfee, Inc.) C:\Program Files\TrueKey\McT9197.tmp
(Safer-Networking Ltd.) C:\Program Files\Spybot - Search & Destroy 2\SDWSCSvc.exe
(HP Inc.) C:\Program Files\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
(HP) C:\Program Files\HP\Shared\hpqwmiex.exe
(McAfee, Inc.) C:\Program Files\TrueKey\McAfee.TrueKey.Service.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Analog Devices, Inc.) C:\Program Files\Analog Devices\Core\smax4pnp.exe
(Safer-Networking Ltd.) C:\Program Files\Spybot - Search & Destroy 2\SDTray.exe
(Panda Security) C:\Program Files\Panda USB Vaccine\USBVaccine.exe
(Hewlett-Packard Co.) C:\Program Files\HP\HP Officejet 6500 E710n-z\Bin\ScanToPCActivationApp.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Hewlett-Packard Co.) C:\Program Files\HP\HP Officejet 6500 E710n-z\Bin\HPNetworkCommunicatorCom.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
==================== Registre (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [SoundMAXPnP] => C:\Program Files\Analog Devices\Core\smax4pnp.exe [1314816 2009-05-18] (Analog Devices, Inc.)
HKLM\...\Run: [SDTray] => C:\Program Files\Spybot - Search & Destroy 2\SDTray.exe [4101584 2014-04-25] (Safer-Networking Ltd.)
HKLM\...\Run: [KeePass 2 PreLoad] => C:\Program Files\KeePass Password Safe 2\KeePass.exe [2779136 2016-06-11] (Dominik Reichl)
HKU\S-1-5-21-3733518740-3488311968-3693124628-1001\...\Run: [HP Officejet 6500 E710n-z (NET)] => C:\Program Files\HP\HP Officejet 6500 E710n-z\Bin\ScanToPCActivationApp.exe [1837672 2012-10-17] (Hewlett-Packard Co.)
HKU\S-1-5-21-3733518740-3488311968-3693124628-1001\...\Run: [SysinfY2X] => C:\WINDOWS\system32\cmd.exe /c start wscript /e:VBScript.Encode %temp%\SysinfY2X.db
Lsa: [Notification Packages] scecli C:\Program Files\TrueKey\McAfeeTrueKeyPasswordFilter
Startup: C:\Users\M\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Alertes de surveillance de l'encre - HP Officejet 6500 E710n-z (réseau).lnk [2017-01-01]
ShortcutTarget: Alertes de surveillance de l'encre - HP Officejet 6500 E710n-z (réseau).lnk -> C:\Program Files\HP\HP Officejet 6500 E710n-z\Bin\HPStatusBL.dll (Hewlett-Packard Co.)
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Hosts: Il y a plus d'un élément dans hosts. Voir la section Hosts de Addition.txt
Tcpip\Parameters: [DhcpNameServer] 193.95.59.20 8.8.8.8
Tcpip\..\Interfaces\{0c998684-a94a-4666-a403-30f62a398e75}: [DhcpNameServer] 193.95.59.20 8.8.8.8
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKU\S-1-5-21-3733518740-3488311968-3693124628-1001\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
BHO: True Key Helper -> {0F4B8786-5502-4803-8EBC-F652A1153BB6} -> C:\Program Files\Intel Security\True Key\MSIE\truekey_ie.dll [2016-12-10] (Intel Security)
BHO: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-09-23] (Adobe Systems Incorporated)
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office15\OCHelper.dll [2016-08-27] (Microsoft Corporation)
BHO: Adobe Acrobat Create PDF Toolbar Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll [2012-09-23] (Adobe Systems Incorporated)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL [2016-11-15] (Microsoft Corporation)
BHO: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2016-07-21] (HP Inc.)
BHO: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll [2012-09-23] (Adobe Systems Incorporated)
Toolbar: HKLM - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll [2012-09-23] (Adobe Systems Incorporated)
Toolbar: HKLM - True Key - {4BAAC1B8-0800-42C9-8FA6-08B211F356B8} - C:\Program Files\Intel Security\True Key\MSIE\truekey_ie.dll [2016-12-10] (Intel Security)
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL [2016-05-17] (Microsoft Corporation)
FireFox:
========
FF DefaultProfile: i9pwjduz.default
FF ProfilePath: C:\Users\M\AppData\Roaming\Mozilla\Firefox\Profiles\i9pwjduz.default [2017-01-01]
FF Homepage: Mozilla\Firefox\Profiles\i9pwjduz.default -> hxxps://www.google.com/?trackid=sp-006
FF Session Restore: Mozilla\Firefox\Profiles\i9pwjduz.default -> est activé.
FF Extension: (iGraal) - C:\Users\M\AppData\Roaming\Mozilla\Firefox\Profiles\i9pwjduz.default\Extensions\{dbac9680-d559-4cd4-9765-059879e8c467}.xpi [2016-08-12]
FF HKLM\...\Firefox\Extensions: [web2pdfextension@web2pdf.adobedotcom] - C:\Program Files\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn
FF Extension: (Adobe Acrobat - Create PDF) - C:\Program Files\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn [2016-08-11] [non signé]
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF32_24_0_0_186.dll [2016-12-23] ()
FF Plugin: @adobe.com/ShockwavePlayer -> C:\WINDOWS\system32\Adobe\Director\np32dsw_1225195.dll [2016-09-20] (Adobe Systems, Inc.)
FF Plugin: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2016-07-19] (Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~1\Office15\NPSPWRAP.DLL [2014-01-23] (Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-20] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-20] (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.2.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat 11.0\Acrobat\Air\nppdf32.dll [2012-09-23] (Adobe Systems Inc.)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll [2012-09-20] (Adobe Systems)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npMeetingJoinPluginOC.dll [2016-07-19] (Microsoft Corporation)
Chrome:
=======
CHR StartupUrls: Default -> "hxxp://www.istartsurf.com/?type=hp&ts=1447829487&z=b51c383ff66f5471f0df15fg9zcz0m1b5odt0gatde&from=cor&uid=WDCXWD3200BEVT-60ZCT1_WD-WXEX08CR8046R8046","hxxp://www.yessearches.com/?mode=nnnb&ptid=wak&uid=A8B5EEC81143E47855117801E91966E6&v=20160202&ts=AHEpBHQoA3QnBE.."
CHR DefaultSearchURL: Default -> hxxps://duckduckgo.com/?q={searchTerms}
CHR DefaultSearchKeyword: Default -> duckduckgo.com
CHR Session Restore: Default -> est activé.
CHR Profile: C:\Users\M\AppData\Local\Google\Chrome\User Data\Default [2017-01-01]
CHR Extension: (Google Slides) - C:\Users\M\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-08-11]
CHR Extension: (Google Docs) - C:\Users\M\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-08-11]
CHR Extension: (Google Drive) - C:\Users\M\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-08-11]
CHR Extension: (DuckDuckGo Search) - C:\Users\M\AppData\Local\Google\Chrome\User Data\Default\Extensions\bkdgflcldnnnapblkhphbgpggdiikppg [2016-10-16]
CHR Extension: (YouTube) - C:\Users\M\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-08-11]
CHR Extension: (Adobe Acrobat) - C:\Users\M\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2016-09-08]
CHR Extension: (My JDownloader) - C:\Users\M\AppData\Local\Google\Chrome\User Data\Default\Extensions\fbcohnmimjicjdomonkcbcpbpnhggkip [2016-08-11]
CHR Extension: (Google Sheets) - C:\Users\M\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-08-11]
CHR Extension: (IBA Opt-out (by Google)) - C:\Users\M\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbiekjoijknlhijdjbaadobpkdhmoebb [2016-08-11]
CHR Extension: (Google Docs hors connexion) - C:\Users\M\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-08-11]
CHR Extension: (Disconnect) - C:\Users\M\AppData\Local\Google\Chrome\User Data\Default\Extensions\jeoacafpbcihiomhlakheieifhpjdfeo [2016-10-16]
CHR Extension: (iGraal) - C:\Users\M\AppData\Local\Google\Chrome\User Data\Default\Extensions\kmhkepipobnjllejbafajoemahjejdcm [2016-08-17]
CHR Extension: (Office Online) - C:\Users\M\AppData\Local\Google\Chrome\User Data\Default\Extensions\ndjpnladcallmjemlbaebfadecfhkepb [2016-10-13]
CHR Extension: (Mailtrack for Gmail) - C:\Users\M\AppData\Local\Google\Chrome\User Data\Default\Extensions\ndnaehgpjlnokgebbaldlmgkapkpjkkb [2016-12-12]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\M\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-08-11]
CHR Extension: (Gmail) - C:\Users\M\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-08-11]
CHR Extension: (Chrome Media Router) - C:\Users\M\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-12-20]
CHR Profile: C:\Users\M\AppData\Local\Google\Chrome\User Data\System Profile [2016-09-20]
CHR HKLM\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - C:\Program Files\Adobe\Acrobat 11.0\Acrobat\Browser\WCChromeExtn\WCChromeExtn.crx [2012-09-23]
CHR HKLM\...\Chrome\Extension: [jkfpchpiljkaemlpmpebnglgkomamfeo] - hxxps://clients2.google.com/service/update2/crx
==================== Services (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S2 0037521482698351mcinstcleanup; C:\WINDOWS\TEMP\003752~1.EXE [922152 2016-03-02] (McAfee, Inc.)
R2 AgereModemAudio; C:\Program Files\LSI SoftModem\agrsmsvc.exe [26112 2009-12-03] (LSI Corporation)
R3 hpqcaslwmiex; C:\Program Files\HP\Shared\hpqwmiex.exe [1031704 2016-06-03] (HP)
R2 HPSupportSolutionsFrameworkService; C:\Program Files\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [31776 2016-12-07] (HP Inc.)
R2 HssWd; C:\Program Files\Hotspot Shield\bin\hsswd.exe [864464 2015-12-19] (AnchorFree Inc.)
R2 SDScannerService; C:\Program Files\Spybot - Search & Destroy 2\SDFSSvc.exe [1738200 2014-04-25] (Safer-Networking Ltd.)
R2 SDUpdateService; C:\Program Files\Spybot - Search & Destroy 2\SDUpdSvc.exe [4088608 2016-09-21] (Safer-Networking Ltd.)
R2 SDWSCService; C:\Program Files\Spybot - Search & Destroy 2\SDWSCSvc.exe [171928 2014-04-25] (Safer-Networking Ltd.)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [1887272 2016-09-15] (Microsoft Corporation)
R2 ss_conn_service; C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [754784 2016-04-25] (DEVGURU Co., LTD.)
R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [220776 2016-02-11] (Synaptics Incorporated)
R2 TrueKey; C:\Program Files\TrueKey\McAfee.TrueKey.Service.exe [996336 2016-11-30] (McAfee, Inc.)
R2 TrueKeyScheduler; C:\Program Files\TrueKey\McTkSchedulerService.exe [17304 2016-11-30] (McAfee, Inc.)
S3 TrueKeyServiceHelper; C:\Program Files\TrueKey\McAfee.TrueKey.ServiceHelper.exe [73968 2016-11-30] (McAfee, Inc.)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [271496 2016-07-16] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [84928 2016-07-16] (Microsoft Corporation)
S2 InstallerService; C:\Program Files\TrueKey\Mcafee.TrueKey.InstallerService.exe -originalversion 4.4.127.0 [X]
===================== Pilotes (Avec liste blanche) ======================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [109184 2016-09-05] (Samsung Electronics Co., Ltd.)
R3 int0800; C:\WINDOWS\System32\drivers\flashud.sys [42496 2009-09-09] (Intel Corporation)
S3 MBAMSwissArmy; C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [170200 2016-08-12] (Malwarebytes)
S3 NetAdapterCx; C:\WINDOWS\System32\drivers\NetAdapterCx.sys [62976 2016-07-16] ()
R3 NETwNs32; C:\WINDOWS\System32\drivers\NETwNs32.sys [7518208 2016-07-16] (Intel Corporation)
R0 PxHelp20; C:\WINDOWS\System32\drivers\PxHelp20.sys [46096 2013-09-03] (Corel Corporation)
R1 SDHookDriver; C:\Program Files\Spybot - Search & Destroy 2\SDHookDrv32.sys [46336 2014-04-25] ()
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [147072 2016-09-05] (Samsung Electronics Co., Ltd.)
S3 TTDrv; C:\KOPLAYER\vbox\TTDrv.sys [209904 2015-12-26] (Oracle Corporation)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [37912 2016-07-16] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [244576 2016-07-16] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [100192 2016-07-16] (Microsoft Corporation)
S3 WUDFWpdMtp; C:\WINDOWS\system32\DRIVERS\WUDFRd.sys [161280 2016-07-16] (Microsoft Corporation)
R3 yukonw8; C:\WINDOWS\System32\drivers\yk63x86.sys [242688 2016-07-16] (Marvell)
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois - Créés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2017-01-01 21:35 - 2017-01-01 21:36 - 00018155 _____ C:\Users\M\Downloads\FRST.txt
2017-01-01 21:35 - 2017-01-01 21:35 - 00000000 ____D C:\FRST
2017-01-01 21:17 - 2017-01-01 21:34 - 01760256 _____ (Farbar) C:\Users\M\Downloads\FRST.exe
2016-12-28 18:00 - 2016-12-28 23:31 - 00000000 ____D C:\Users\M\Downloads\Rich Bitch Has An Itch
2016-12-26 19:16 - 2016-12-26 19:16 - 00029491 _____ C:\Users\M\Desktop\engagement pour CEC Stimulation Dr MBA.docx
2016-12-26 18:19 - 2016-12-26 18:19 - 00017943 _____ C:\Users\M\Downloads\engagement.docx
2016-12-25 17:12 - 2016-12-25 17:13 - 00000000 ____D C:\Users\M\Downloads\Films Téléch 2016
2016-12-25 17:10 - 2016-12-25 17:11 - 00000000 ____D C:\Users\M\Downloads\Cours de CEC Pédagogie (bases fonda)
2016-12-25 16:58 - 2016-12-25 17:22 - 00000000 ____D C:\Users\M\Downloads\Dossier M D
2016-12-25 16:05 - 2016-12-25 22:42 - 00000000 ____D C:\Users\M\Downloads\Cours de CEC IMAGERIE APP LOCO
2016-12-23 23:42 - 2016-12-23 23:43 - 06197275 _____ C:\Users\M\Downloads\دليل المستشار البلدي في النصوص التشريعية و الترتيبية ذات الصلة بالعمل البلدي 2016.pdf
2016-12-23 17:02 - 2016-12-23 17:02 - 00000000 ____D C:\Users\M\AppData\Local\Macromedia
2016-12-23 16:13 - 2016-12-23 16:14 - 00000000 ____D C:\Users\M\AppData\Local\tkdata
2016-12-23 16:13 - 2016-12-23 16:13 - 00000000 ____D C:\Users\M\AppData\Local\CEF
2016-12-23 16:12 - 2016-12-31 15:40 - 00001348 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\True Key.lnk
2016-12-23 16:12 - 2016-12-23 16:12 - 00000000 ____D C:\ProgramData\TrueKey
2016-12-23 16:12 - 2016-12-23 16:12 - 00000000 ____D C:\Program Files\Intel Security
2016-12-23 16:11 - 2016-12-23 16:11 - 00000000 ____D C:\Program Files\Common Files\McAfee
2016-12-23 16:00 - 2016-12-31 15:40 - 00000000 ____D C:\Program Files\TrueKey
2016-12-23 16:00 - 2016-12-25 11:34 - 00001002 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2016-12-21 22:37 - 2016-12-22 19:42 - 00000000 ____D C:\Users\M\.TianTianVM
2016-12-21 22:37 - 2016-12-21 22:37 - 00000000 ____D C:\Users\Public\Thunder Network
2016-12-21 22:37 - 2016-12-21 22:37 - 00000000 ____D C:\ProgramData\Thunder Network
2016-12-21 22:35 - 2016-12-21 23:32 - 00000000 ____D C:\KOPLAYER
2016-12-21 22:35 - 2016-12-21 23:20 - 00000000 ____D C:\Users\M\AppData\Local\KOPLAYERData
2016-12-21 22:35 - 2016-12-21 22:35 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KOPLAYER
2016-12-19 01:20 - 2016-12-19 01:21 - 09836494 _____ C:\Users\M\Downloads\مقدمة في التاريخ الآخر - سليمان بشير.pdf
2016-12-18 21:08 - 2016-12-18 21:08 - 00410389 _____ C:\Users\M\Documents\HMHP2.jpeg
2016-12-18 21:08 - 2016-12-18 21:08 - 00167709 _____ C:\Users\M\Documents\HMHP1.jpeg
2016-12-15 15:01 - 2016-12-15 15:01 - 00038755 _____ C:\Users\M\Desktop\UsbFix_Report.txt
2016-12-15 15:01 - 2016-12-15 15:01 - 00000000 _RSHD C:\Autorun.inf
2016-12-13 23:15 - 2016-12-09 11:54 - 01415520 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2016-12-13 23:15 - 2016-12-09 11:54 - 00115552 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2016-12-13 23:15 - 2016-12-09 11:16 - 00890984 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2016-12-13 23:15 - 2016-12-09 11:16 - 00784064 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2016-12-13 23:15 - 2016-12-09 11:14 - 06019936 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2016-12-13 23:15 - 2016-12-09 11:12 - 00276832 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys
2016-12-13 23:15 - 2016-12-09 11:11 - 02048496 _____ C:\WINDOWS\system32\CoreUIComponents.dll
2016-12-13 23:15 - 2016-12-09 11:10 - 00583136 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2016-12-13 23:15 - 2016-12-09 11:09 - 00133296 _____ (Microsoft Corporation) C:\WINDOWS\system32\sspicli.dll
2016-12-13 23:15 - 2016-12-09 11:01 - 02323728 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10warp.dll
2016-12-13 23:15 - 2016-12-09 11:01 - 01897824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2016-12-13 23:15 - 2016-12-09 11:01 - 01503544 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll
2016-12-13 23:15 - 2016-12-09 11:01 - 00551264 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2016-12-13 23:15 - 2016-12-09 11:01 - 00342880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2016-12-13 23:15 - 2016-12-09 11:00 - 00523784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2016-12-13 23:15 - 2016-12-09 11:00 - 00117720 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcrypt.dll
2016-12-13 23:15 - 2016-12-09 10:57 - 06668040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2016-12-13 23:15 - 2016-12-09 10:57 - 01852720 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2016-12-13 23:15 - 2016-12-09 10:55 - 00198496 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHost.dll
2016-12-13 23:15 - 2016-12-09 10:52 - 01413664 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2016-12-13 23:15 - 2016-12-09 10:52 - 01344992 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2016-12-13 23:15 - 2016-12-09 10:41 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\system32\WordBreakers.dll
2016-12-13 23:15 - 2016-12-09 10:40 - 00147968 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2016-12-13 23:15 - 2016-12-09 10:37 - 00330752 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadcloudap.dll
2016-12-13 23:15 - 2016-12-09 10:37 - 00186368 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdd.dll
2016-12-13 23:15 - 2016-12-09 10:36 - 00231936 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll
2016-12-13 23:15 - 2016-12-09 10:35 - 00359424 _____ (Microsoft Corporation) C:\WINDOWS\system32\facecredentialprovider.dll
2016-12-13 23:15 - 2016-12-09 10:34 - 00822784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2016-12-13 23:15 - 2016-12-09 10:32 - 00635904 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2016-12-13 23:15 - 2016-12-09 10:31 - 03689984 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2016-12-13 23:15 - 2016-12-09 10:31 - 00313856 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2016-12-13 23:15 - 2016-12-09 10:31 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\system32\indexeddbserver.dll
2016-12-13 23:15 - 2016-12-09 10:30 - 19413504 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2016-12-13 23:15 - 2016-12-09 10:30 - 04612608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2016-12-13 23:15 - 2016-12-09 10:28 - 01284096 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdtctm.dll
2016-12-13 23:15 - 2016-12-09 10:27 - 19417088 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2016-12-13 23:15 - 2016-12-09 10:23 - 12177920 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2016-12-13 23:15 - 2016-12-09 10:22 - 03776000 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2016-12-13 23:15 - 2016-12-09 10:20 - 06044160 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2016-12-13 23:15 - 2016-12-09 10:20 - 03198464 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdp.dll
2016-12-13 23:15 - 2016-12-09 10:18 - 03666432 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2016-12-13 23:15 - 2016-12-09 10:18 - 02138112 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputService.dll
2016-12-13 23:15 - 2016-12-09 10:18 - 01235456 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2016-12-13 23:15 - 2016-12-09 10:18 - 00165376 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmregistration.dll
2016-12-13 23:15 - 2016-12-09 10:17 - 01120768 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2016-12-13 23:15 - 2016-12-09 10:17 - 00886272 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll
2016-12-13 23:15 - 2016-12-09 10:17 - 00566784 _____ (Microsoft Corporation) C:\WINDOWS\system32\ShareHost.dll
2016-12-13 23:15 - 2016-12-09 10:16 - 02998272 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2016-12-13 23:15 - 2016-12-09 10:16 - 01880576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
2016-12-13 23:15 - 2016-12-09 10:16 - 00586240 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll
2016-12-13 23:15 - 2016-12-09 10:16 - 00353280 _____ (Microsoft Corporation) C:\WINDOWS\system32\TextInputFramework.dll
2016-12-13 23:15 - 2016-12-09 10:15 - 00206848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
2016-12-13 23:15 - 2016-12-09 10:15 - 00092672 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputLocaleManager.dll
2016-12-13 23:15 - 2016-12-09 10:15 - 00068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditBufferTestHook.dll
2016-12-13 23:15 - 2016-09-15 17:53 - 00185344 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapibase.dll
2016-12-12 21:17 - 2016-12-12 21:17 - 00126053 _____ C:\Users\M\Desktop\RCS Education app form 2016.docx
2016-12-11 22:20 - 2016-12-11 22:20 - 00534417 _____ C:\Users\M\Desktop\Dictionnaire de Médecine Orthopédique Français, Italien, Anglais - JC de Mauroy.pdf
2016-12-09 21:24 - 2016-11-11 08:49 - 00869848 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll
2016-12-09 21:24 - 2016-11-11 08:48 - 02277248 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll
2016-12-09 21:24 - 2016-11-11 08:47 - 00527880 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll
2016-12-09 21:24 - 2016-11-11 08:42 - 00959112 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2016-12-09 21:24 - 2016-11-11 08:38 - 01263856 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2016-12-09 21:24 - 2016-11-11 08:19 - 00364544 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupShim.dll
2016-12-09 21:24 - 2016-11-11 08:17 - 00333312 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll
2016-12-09 21:24 - 2016-11-11 08:15 - 01722368 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRHInproc.dll
2016-12-09 21:24 - 2016-11-11 08:15 - 01357824 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll
2016-12-09 21:24 - 2016-11-11 08:15 - 00441856 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppReadiness.dll
2016-12-09 21:24 - 2016-11-11 08:06 - 01228288 _____ (Microsoft Corporation) C:\WINDOWS\system32\usercpl.dll
2016-12-09 21:24 - 2016-11-11 08:04 - 01992704 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2016-12-09 21:23 - 2016-11-11 09:07 - 00448864 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2016-12-09 21:23 - 2016-11-11 09:01 - 02206496 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2016-12-09 21:23 - 2016-11-11 09:01 - 01969912 _____ (Microsoft Corporation) C:\WINDOWS\system32\hevcdecoder.dll
2016-12-09 21:23 - 2016-11-11 09:01 - 00167848 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscapi.dll
2016-12-09 21:23 - 2016-11-11 08:59 - 01586736 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2016-12-09 21:23 - 2016-11-11 08:59 - 00292192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fastfat.sys
2016-12-09 21:23 - 2016-11-11 08:59 - 00106336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\partmgr.sys
2016-12-09 21:23 - 2016-11-11 08:49 - 00263472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Storage.ApplicationData.dll
2016-12-09 21:23 - 2016-11-11 08:49 - 00248480 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanager.dll
2016-12-09 21:23 - 2016-11-11 08:47 - 05722832 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2016-12-09 21:23 - 2016-11-11 08:46 - 00186720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys
2016-12-09 21:23 - 2016-11-11 08:45 - 02166752 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2016-12-09 21:23 - 2016-11-11 08:45 - 00846560 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinTypes.dll
2016-12-09 21:23 - 2016-11-11 08:45 - 00355680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2016-12-09 21:23 - 2016-11-11 08:45 - 00261984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2016-12-09 21:23 - 2016-11-11 08:45 - 00175968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tpm.sys
2016-12-09 21:23 - 2016-11-11 08:42 - 20969928 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2016-12-09 21:23 - 2016-11-11 08:42 - 03892864 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2016-12-09 21:23 - 2016-11-11 08:42 - 01123912 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2016-12-09 21:23 - 2016-11-11 08:42 - 00952416 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2016-12-09 21:23 - 2016-11-11 08:42 - 00091936 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfaudiocnv.dll
2016-12-09 21:23 - 2016-11-11 08:41 - 04311736 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2016-12-09 21:23 - 2016-11-11 08:37 - 00381720 _____ (Microsoft Corporation) C:\WINDOWS\system32\services.exe
2016-12-09 21:23 - 2016-11-11 08:30 - 00274944 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXTaskFactory.dll
2016-12-09 21:23 - 2016-11-11 08:29 - 00034816 _____ (Microsoft Corporation) C:\WINDOWS\system32\CbtBackgroundManagerPolicy.dll
2016-12-09 21:23 - 2016-11-11 08:28 - 01631232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
2016-12-09 21:23 - 2016-11-11 08:27 - 00090624 _____ (Microsoft Corporation) C:\WINDOWS\system32\VPNv2CSP.dll
2016-12-09 21:23 - 2016-11-11 08:27 - 00081408 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReportingCSP.dll
2016-12-09 21:23 - 2016-11-11 08:27 - 00065024 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetCfgNotifyObjectHost.exe
2016-12-09 21:23 - 2016-11-11 08:27 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\system32\LaunchWinApp.exe
2016-12-09 21:23 - 2016-11-11 08:26 - 00216576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\xboxgip.sys
2016-12-09 21:23 - 2016-11-11 08:25 - 00135168 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseModernAppMgmtCSP.dll
2016-12-09 21:23 - 2016-11-11 08:25 - 00117248 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsBtSvc.dll
2016-12-09 21:23 - 2016-11-11 08:25 - 00110592 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcertinst.exe
2016-12-09 21:23 - 2016-11-11 08:25 - 00071168 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosStorage.dll
2016-12-09 21:23 - 2016-11-11 08:24 - 00519680 _____ (Microsoft Corporation) C:\WINDOWS\system32\vpnike.dll
2016-12-09 21:23 - 2016-11-11 08:24 - 00156672 _____ (Microsoft Corporation) C:\WINDOWS\system32\BcastDVRHelper.dll
2016-12-09 21:23 - 2016-11-11 08:24 - 00138240 _____ (Microsoft Corporation) C:\WINDOWS\system32\DisplayManager.dll
2016-12-09 21:23 - 2016-11-11 08:24 - 00127488 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEStoreEventHandlers.dll
2016-12-09 21:23 - 2016-11-11 08:24 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshost.dll
2016-12-09 21:23 - 2016-11-11 08:23 - 00254976 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpusersvc.dll
2016-12-09 21:23 - 2016-11-11 08:23 - 00140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppCapture.dll
2016-12-09 21:23 - 2016-11-11 08:23 - 00132096 _____ (Microsoft Corporation) C:\WINDOWS\system32\ACPBackgroundManagerPolicy.dll
2016-12-09 21:23 - 2016-11-11 08:22 - 00505856 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvr.exe
2016-12-09 21:23 - 2016-11-11 08:22 - 00080896 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2016-12-09 21:23 - 2016-11-11 08:22 - 00062976 _____ (Microsoft Corporation) C:\WINDOWS\system32\HttpsDataSource.dll
2016-12-09 21:23 - 2016-11-11 08:22 - 00035328 _____ (Microsoft Corporation) C:\WINDOWS\system32\EAMProgressHandler.dll
2016-12-09 21:23 - 2016-11-11 08:21 - 00332288 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapConfiguration.dll
2016-12-09 21:23 - 2016-11-11 08:21 - 00242176 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseAppMgmtSvc.dll
2016-12-09 21:23 - 2016-11-11 08:21 - 00240128 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshostcore.dll
2016-12-09 21:23 - 2016-11-11 08:21 - 00164864 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpapisrv.dll
2016-12-09 21:23 - 2016-11-11 08:21 - 00091648 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.BackgroundManagerPolicy.dll
2016-12-09 21:23 - 2016-11-11 08:20 - 00306176 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2016-12-09 21:23 - 2016-11-11 08:20 - 00288768 _____ (Microsoft Corporation) C:\WINDOWS\system32\wincorlib.dll
2016-12-09 21:23 - 2016-11-11 08:20 - 00111616 _____ (Microsoft Corporation) C:\WINDOWS\system32\EDPCleanup.exe
2016-12-09 21:23 - 2016-11-11 08:19 - 13868544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2016-12-09 21:23 - 2016-11-11 08:19 - 00506880 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicePairing.dll
2016-12-09 21:23 - 2016-11-11 08:19 - 00447488 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_StorageSense.dll
2016-12-09 21:23 - 2016-11-11 08:19 - 00384512 _____ (Microsoft Corporation) C:\WINDOWS\system32\DataSenseHandlers.dll
2016-12-09 21:23 - 2016-11-11 08:19 - 00298496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll
2016-12-09 21:23 - 2016-11-11 08:19 - 00114176 _____ (Microsoft Corporation) C:\WINDOWS\system32\setupugc.exe
2016-12-09 21:23 - 2016-11-11 08:18 - 02333184 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmSvc.dll
2016-12-09 21:23 - 2016-11-11 08:18 - 01336320 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsecedit.dll
2016-12-09 21:23 - 2016-11-11 08:18 - 01196544 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscui.cpl
2016-12-09 21:23 - 2016-11-11 08:18 - 00790528 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2016-12-09 21:23 - 2016-11-11 08:18 - 00725504 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2016-12-09 21:23 - 2016-11-11 08:18 - 00431616 _____ (Microsoft Corporation) C:\WINDOWS\system32\efswrt.dll
2016-12-09 21:23 - 2016-11-11 08:18 - 00294400 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpsvc.dll
2016-12-09 21:23 - 2016-11-11 08:18 - 00142848 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscsvc.dll
2016-12-09 21:23 - 2016-11-11 08:18 - 00108544 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscinterop.dll
2016-12-09 21:23 - 2016-11-11 08:18 - 00086528 _____ (Microsoft Corporation) C:\WINDOWS\system32\RjvMDMConfig.dll
2016-12-09 21:23 - 2016-11-11 08:18 - 00052224 _____ (Microsoft Corporation) C:\WINDOWS\system32\ProvSysprep.dll
2016-12-09 21:23 - 2016-11-11 08:17 - 00247296 _____ (Microsoft Corporation) C:\WINDOWS\system32\domgmt.dll
2016-12-09 21:23 - 2016-11-11 08:17 - 00151040 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXApplicabilityBlob.dll
2016-12-09 21:23 - 2016-11-11 08:17 - 00033280 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSManHTTPConfig.exe
2016-12-09 21:23 - 2016-11-11 08:16 - 01377792 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2016-12-09 21:23 - 2016-11-11 08:15 - 07626752 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2016-12-09 21:23 - 2016-11-11 08:15 - 00838144 _____ (Microsoft Corporation) C:\WINDOWS\system32\JpMapControl.dll
2016-12-09 21:23 - 2016-11-11 08:15 - 00561152 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll
2016-12-09 21:23 - 2016-11-11 08:15 - 00348672 _____ (Microsoft Corporation) C:\WINDOWS\system32\zipfldr.dll
2016-12-09 21:23 - 2016-11-11 08:15 - 00298496 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascustom.dll
2016-12-09 21:23 - 2016-11-11 08:14 - 00473600 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXService.dll
2016-12-09 21:23 - 2016-11-11 08:14 - 00395264 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenrollengine.dll
2016-12-09 21:23 - 2016-11-11 08:13 - 00626688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
2016-12-09 21:23 - 2016-11-11 08:13 - 00499200 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2016-12-09 21:23 - 2016-11-11 08:13 - 00144896 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceEnroller.exe
2016-12-09 21:23 - 2016-11-11 08:12 - 01584128 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidsvc.dll
2016-12-09 21:23 - 2016-11-11 08:12 - 00529408 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnprv.dll
2016-12-09 21:23 - 2016-11-11 08:12 - 00147968 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppnp.dll
2016-12-09 21:23 - 2016-11-11 08:11 - 03306496 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2016-12-09 21:23 - 2016-11-11 08:11 - 00309760 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
2016-12-09 21:23 - 2016-11-11 08:10 - 06109184 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll
2016-12-09 21:23 - 2016-11-11 08:10 - 00746496 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdtcprx.dll
2016-12-09 21:23 - 2016-11-11 08:10 - 00083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\umpoext.dll
2016-12-09 21:23 - 2016-11-11 08:09 - 05380608 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
2016-12-09 21:23 - 2016-11-11 08:09 - 00786432 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2016-12-09 21:23 - 2016-11-11 08:09 - 00545280 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmkvsrcsnk.dll
2016-12-09 21:23 - 2016-11-11 08:08 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\system32\xolehlp.dll
2016-12-09 21:23 - 2016-11-11 08:07 - 01948160 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2016-12-09 21:23 - 2016-11-11 08:07 - 01136128 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2016-12-09 21:23 - 2016-11-11 08:07 - 00131072 _____ (Microsoft Corporation) C:\WINDOWS\system32\dialserver.dll
2016-12-09 21:23 - 2016-11-11 08:06 - 06474752 _____ (Microsoft Corporation) C:\WINDOWS\system32\mspaint.exe
2016-12-09 21:23 - 2016-11-11 08:06 - 02362880 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapRouter.dll
2016-12-09 21:23 - 2016-11-11 08:06 - 02109952 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapGeocoder.dll
2016-12-09 21:23 - 2016-11-11 08:06 - 00400384 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToManager.dll
2016-12-09 21:23 - 2016-11-11 08:06 - 00359936 _____ (Microsoft Corporation) C:\WINDOWS\system32\mtxclu.dll
2016-12-09 21:23 - 2016-11-11 08:05 - 04423680 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
2016-12-09 21:23 - 2016-11-11 08:04 - 02682880 _____ (Microsoft Corporation) C:\WINDOWS\system32\netshell.dll
2016-12-09 21:23 - 2016-11-11 08:04 - 01887232 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2016-12-09 21:23 - 2016-11-11 08:04 - 01595392 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2016-12-09 21:23 - 2016-11-11 08:04 - 00920576 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2016-12-09 21:23 - 2016-11-11 08:04 - 00818176 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2016-12-09 21:23 - 2016-11-11 08:04 - 00715264 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlCore.dll
2016-12-09 21:23 - 2016-11-11 08:04 - 00706048 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll
2016-12-09 21:23 - 2016-11-11 08:04 - 00296960 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2016-12-09 21:23 - 2016-11-11 08:04 - 00241152 _____ (Microsoft Corporation) C:\WINDOWS\system32\wkssvc.dll
2016-12-09 21:23 - 2016-11-11 08:03 - 02484736 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameux.dll
2016-12-09 21:23 - 2016-11-11 08:03 - 02256384 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2016-12-09 21:23 - 2016-11-11 08:03 - 01556480 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2016-12-09 21:23 - 2016-11-11 08:03 - 00772608 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntshrui.dll
2016-12-09 21:23 - 2016-11-11 08:03 - 00760832 _____ (Microsoft Corporation) C:\WINDOWS\system32\NMAA.dll
2016-12-09 21:23 - 2016-11-11 08:03 - 00565248 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasapi32.dll
2016-12-09 21:23 - 2016-11-11 08:02 - 00612352 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsm.dll
2016-12-09 21:22 - 2016-11-11 09:39 - 00484584 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2016-12-09 21:22 - 2016-11-11 09:07 - 00081760 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceReactivation.dll
2016-12-09 21:22 - 2016-11-11 09:00 - 01725136 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2016-12-09 21:22 - 2016-11-11 08:54 - 00122208 _____ (Microsoft Corporation) C:\WINDOWS\system32\migisol.dll
2016-12-09 21:22 - 2016-11-11 08:47 - 01430720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2016-12-09 21:22 - 2016-11-11 08:47 - 00861024 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll
2016-12-09 21:22 - 2016-11-11 08:42 - 00382784 _____ (Microsoft Corporation) C:\WINDOWS\system32\AUDIOKSE.dll
2016-12-09 21:22 - 2016-11-11 08:42 - 00313088 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe
2016-12-09 21:22 - 2016-11-11 08:42 - 00152416 _____ (Microsoft Corporation) C:\WINDOWS\system32\RTWorkQ.dll
2016-12-09 21:22 - 2016-11-11 08:41 - 01384704 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2016-12-09 21:22 - 2016-11-11 08:41 - 00802608 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditionUpgradeManagerObj.dll
2016-12-09 21:22 - 2016-11-11 08:41 - 00675568 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppwinob.dll
2016-12-09 21:22 - 2016-11-11 08:26 - 00030720 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReAgentc.exe
2016-12-09 21:22 - 2016-11-11 08:25 - 00032256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\modem.sys
2016-12-09 21:22 - 2016-11-11 08:24 - 00519168 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngccredprov.dll
2016-12-09 21:22 - 2016-11-11 08:23 - 00094208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryClient.dll
2016-12-09 21:22 - 2016-11-11 08:22 - 00299520 _____ (Microsoft Corporation) C:\WINDOWS\system32\NgcCtnr.dll
2016-12-09 21:22 - 2016-11-11 08:22 - 00122880 _____ (Microsoft Corporation) C:\WINDOWS\system32\sendmail.dll
2016-12-09 21:22 - 2016-11-11 08:22 - 00054784 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpremove.exe
2016-12-09 21:22 - 2016-11-11 08:21 - 00180224 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe
2016-12-09 21:22 - 2016-11-11 08:20 - 00557568 _____ (Microsoft Corporation) C:\WINDOWS\system32\StoreAgent.dll
2016-12-09 21:22 - 2016-11-11 08:20 - 00223232 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgentUserBroker.exe
2016-12-09 21:22 - 2016-11-11 08:19 - 01755136 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceFlows.DataModel.dll
2016-12-09 21:22 - 2016-11-11 08:19 - 00284672 _____ (Microsoft Corporation) C:\WINDOWS\system32\apprepsync.dll
2016-12-09 21:22 - 2016-11-11 08:19 - 00125952 _____ (Microsoft Corporation) C:\WINDOWS\system32\apprepapi.dll
2016-12-09 21:22 - 2016-11-11 08:16 - 00253952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2016-12-09 21:22 - 2016-11-11 08:14 - 00158720 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditionUpgradeHelper.dll
2016-12-09 21:22 - 2016-11-11 08:13 - 00230400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb10.sys
2016-12-09 21:22 - 2016-11-11 08:12 - 00259584 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdtcuiu.dll
2016-12-09 21:22 - 2016-11-11 08:06 - 01602048 _____ (Microsoft Corporation) C:\WINDOWS\system32\aitstatic.exe
2016-12-09 21:22 - 2016-11-11 08:05 - 03370496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepository.dll
2016-12-09 21:22 - 2016-11-11 08:05 - 00578560 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2016-12-09 20:50 - 2016-12-25 11:34 - 00002662 _____ C:\WINDOWS\PFRO.log
2016-12-09 14:03 - 2016-12-09 14:03 - 00041418 _____ C:\Users\M\Desktop\CNGOT_ticket.pdf
2016-12-06 22:10 - 2016-12-06 22:10 - 00059078 _____ C:\Users\M\Desktop\15400548_1437167969634546_3462021473388912085_n.jpg
==================== Un mois - Modifiés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2017-01-01 14:24 - 2016-11-21 20:52 - 00000000 ____D C:\Users\M\AppData\LocalLow\Mozilla
2016-12-31 21:09 - 2016-08-27 16:07 - 00000320 _____ C:\WINDOWS\Tasks\HPCeeScheduleForM.job
2016-12-28 23:28 - 2016-08-11 15:48 - 00000000 ____D C:\Users\M\AppData\Roaming\vlc
2016-12-28 23:17 - 2016-10-03 22:01 - 00000000 ____D C:\Users\M\Downloads\New
2016-12-28 22:34 - 2016-08-11 19:21 - 00000000 ____D C:\Users\M\AppData\Local\JDownloader v2.0
2016-12-28 21:53 - 2016-11-07 21:09 - 00002674 _____ C:\WINDOWS\setupact.log
2016-12-28 18:45 - 2016-09-26 21:46 - 00039919 ____H C:\Users\M\AppData\Local\IconCache.db
2016-12-26 19:42 - 2016-01-15 01:03 - 25194496 ___SH C:\pagefile.sys
2016-12-26 19:37 - 2016-07-16 09:29 - 00000000 ____D C:\WINDOWS\LiveKernelReports
2016-12-26 19:36 - 2016-07-16 03:22 - 00000000 ____D C:\WINDOWS\System32
2016-12-26 19:26 - 2016-09-26 20:52 - 00000000 ____D C:\Users\M
2016-12-26 19:25 - 2016-01-27 21:29 - 00004225 _____ C:\Users\M\Desktop\Nouveau document texte.txt
2016-12-26 19:16 - 2016-01-15 01:16 - 00000000 ___RD C:\Users\M\Desktop
2016-12-26 18:22 - 2016-08-11 15:05 - 00000000 ____D C:\Users\M\AppData\Local\Packages
2016-12-26 01:24 - 2016-07-16 03:22 - 00000000 ____D C:\WINDOWS\system32\config
2016-12-25 21:39 - 2016-08-11 19:16 - 00000000 ____D C:\ProgramData\McAfee
2016-12-25 21:38 - 2016-11-26 21:14 - 00000000 ____D C:\Program Files\McAfee
2016-12-25 17:16 - 2016-02-14 14:48 - 00000000 ____D C:\Users\M\Downloads\Cours de CEC Tum App Locom
2016-12-25 17:12 - 2016-06-18 01:56 - 00000000 ____D C:\Users\M\Downloads\Pictures
2016-12-25 17:11 - 2016-02-14 14:50 - 00000000 ____D C:\Users\M\Downloads\Cours de CEC Méthodo de Rech
2016-12-25 17:08 - 2016-06-14 00:04 - 00000000 ____D C:\Users\M\Downloads\JDownloader@M
2016-12-25 16:59 - 2016-02-14 14:46 - 00000000 ____D C:\Users\M\Downloads\Dossier Prog Jan 2016
2016-12-25 16:39 - 2016-01-15 01:16 - 00000000 ___RD C:\Users\M\Documents
2016-12-25 16:38 - 2016-02-14 14:45 - 00000000 ____D C:\Users\M\Downloads\Dossier Music Jan 2016
2016-12-25 16:12 - 2016-06-21 01:05 - 00000000 ____D C:\Users\M\Downloads\La cheville vue de l'intérieur
2016-12-25 11:34 - 2016-11-21 16:47 - 00000000 ____D C:\Program Files\Mozilla Firefox
2016-12-25 11:34 - 2016-09-26 21:12 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-12-25 11:34 - 2016-09-26 20:42 - 00000000 ____D C:\WINDOWS\system32\SleepStudy
2016-12-25 11:34 - 2016-08-12 21:57 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service
2016-12-25 11:34 - 2016-01-15 01:03 - 268435456 ___SH C:\swapfile.sys
2016-12-25 11:04 - 2016-09-26 20:51 - 00524288 ___SH C:\WINDOWS\system32\config\COMPONENTS{5e8c1be4-4b78-11e6-80cb-90b11c253418}.TMContainer00000000000000000002.regtrans-ms
2016-12-25 11:04 - 2016-09-26 20:51 - 00065536 ___SH C:\WINDOWS\system32\config\COMPONENTS{5e8c1be4-4b78-11e6-80cb-90b11c253418}.TM.blf
2016-12-25 11:04 - 2016-07-16 03:22 - 44040192 _____ C:\WINDOWS\system32\config\COMPONENTS
2016-12-25 10:16 - 2013-08-22 09:17 - 00000000 ___HD C:\Users\Public\Desktop
2016-12-25 10:11 - 2016-09-26 20:51 - 00524288 ___SH C:\WINDOWS\system32\config\COMPONENTS{5e8c1be4-4b78-11e6-80cb-90b11c253418}.TMContainer00000000000000000001.regtrans-ms
2016-12-25 09:49 - 2016-07-16 03:22 - 00000000 ____D C:\WINDOWS\WinSxS
2016-12-24 21:09 - 2016-08-27 16:05 - 00000052 _____ C:\WINDOWS\system32\DOErrors.log
2016-12-24 21:09 - 2016-08-10 23:50 - 00000000 ____D C:\WINDOWS\Tasks
2016-12-24 21:09 - 2016-07-16 09:29 - 00000000 ____D C:\WINDOWS\system32\Tasks
2016-12-24 17:31 - 2016-07-16 09:29 - 00000000 ____D C:\WINDOWS\AppReadiness
2016-12-23 17:02 - 2016-01-15 01:16 - 00000000 ___SD C:\Users\M\AppData\LocalLow\Microsoft
2016-12-23 17:01 - 2016-07-16 09:29 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\StartUp
2016-12-23 17:01 - 2016-07-16 09:29 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs
2016-12-23 17:01 - 2016-07-16 09:29 - 00000000 ___HD C:\ProgramData
2016-12-23 17:01 - 2016-07-16 03:22 - 00000000 ___RD C:\Program Files
2016-12-23 16:11 - 2016-09-23 01:34 - 00000000 ____D C:\ProgramData\Package Cache
2016-12-23 16:11 - 2016-08-13 10:17 - 00000000 ____D C:\Program Files\Common Files\AV
2016-12-23 16:11 - 2016-07-16 09:29 - 00000000 __SHD C:\WINDOWS\Installer
2016-12-23 16:11 - 2016-07-16 03:22 - 00000000 ____D C:\Program Files\Common Files
2016-12-23 16:11 - 2016-03-03 23:12 - 00000000 ____D C:\Config.Msi
2016-12-23 16:02 - 2016-08-11 15:26 - 00000000 ____D C:\Users\M\AppData\Local\Adobe
2016-12-23 16:00 - 2016-07-16 09:29 - 00000000 ____D C:\WINDOWS\system32\Macromed
2016-12-23 13:46 - 2016-07-16 09:29 - 00000000 ____D C:\WINDOWS\system32\catroot2
2016-12-23 13:34 - 2016-07-16 09:29 - 00000000 ___HD C:\Program Files\WindowsApps
2016-12-21 22:37 - 2016-07-16 09:29 - 00000000 ___RD C:\Users\Public
2016-12-21 17:27 - 2016-07-16 09:29 - 00000000 __RSD C:\WINDOWS\assembly
2016-12-20 16:10 - 2016-08-11 15:40 - 00002216 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-12-18 20:58 - 2016-07-16 09:29 - 00000000 ____D C:\WINDOWS\rescache
2016-12-15 15:01 - 2016-09-05 17:14 - 00000000 ____D C:\UsbFix
2016-12-15 14:35 - 2016-09-05 17:14 - 00001485 _____ C:\Users\M\Desktop\UsbFix.lnk
2016-12-14 21:50 - 2016-01-10 09:41 - 00000000 __SHD C:\Boot
2016-12-14 21:48 - 2016-09-26 20:42 - 00354760 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2016-12-14 21:47 - 2016-09-26 20:42 - 00524288 ___SH C:\WINDOWS\system32\config\DRIVERS{5e8c1bea-4b78-11e6-80cb-90b11c253418}.TMContainer00000000000000000001.regtrans-ms
2016-12-14 21:47 - 2016-09-26 20:42 - 00065536 ___SH C:\WINDOWS\system32\config\DRIVERS{5e8c1bea-4b78-11e6-80cb-90b11c253418}.TM.blf
2016-12-14 21:47 - 2016-07-16 09:29 - 00000000 ____D C:\WINDOWS\system32\fr-FR
2016-12-14 21:47 - 2016-07-16 09:29 - 00000000 ____D C:\WINDOWS\system32\en-US
2016-12-14 21:47 - 2016-07-16 09:29 - 00000000 ____D C:\WINDOWS\system32\drivers
2016-12-14 21:47 - 2016-07-16 09:29 - 00000000 ____D C:\WINDOWS\system32\Boot
2016-12-14 21:47 - 2016-07-16 09:29 - 00000000 ____D C:\WINDOWS\ShellExperiences
2016-12-14 21:47 - 2016-07-16 09:29 - 00000000 ____D C:\WINDOWS\apppatch
2016-12-14 21:47 - 2016-07-16 03:22 - 70778880 _____ C:\WINDOWS\system32\config\SOFTWARE
2016-12-14 21:47 - 2016-07-16 03:22 - 12845056 _____ C:\WINDOWS\system32\config\SYSTEM
2016-12-14 21:47 - 2016-07-16 03:22 - 00524288 _____ C:\WINDOWS\system32\config\DEFAULT
2016-12-14 21:47 - 2016-07-16 03:22 - 00524288 _____ C:\WINDOWS\system32\config\BBI
2016-12-14 21:47 - 2016-07-16 03:22 - 00028672 _____ C:\WINDOWS\system32\config\SECURITY
2016-12-14 21:47 - 2016-07-16 03:22 - 00000000 ____D C:\WINDOWS\system32\DriverStore
2016-12-14 21:46 - 2016-07-16 09:30 - 00000796 ___SH C:\ProgramData\Microsoft\Windows\Start Menu\Programs\desktop.ini
2016-12-14 21:04 - 2016-07-16 09:19 - 00000000 ____D C:\WINDOWS\CbsTemp
2016-12-14 00:05 - 2016-08-11 19:36 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
2016-12-14 00:03 - 2016-08-11 19:25 - 00000000 ____D C:\ProgramData\Microsoft Help
2016-12-14 00:03 - 2016-08-10 23:50 - 00000167 _____ C:\WINDOWS\win.ini
2016-12-13 23:43 - 2016-08-11 18:26 - 00000000 ____D C:\WINDOWS\system32\MRT
2016-12-13 23:38 - 2016-08-11 18:26 - 133430776 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2016-12-12 00:56 - 2016-10-12 21:33 - 00835576 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2016-12-12 00:56 - 2016-10-12 21:33 - 00177656 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2016-12-10 00:29 - 2016-09-26 20:52 - 00524288 ___SH C:\Users\M\NTUSER.DAT{3a1a5eaa-8421-11e6-8757-fa2ec96a5e2a}.TMContainer00000000000000000002.regtrans-ms
2016-12-10 00:29 - 2016-09-26 20:52 - 00065536 ___SH C:\Users\M\NTUSER.DAT{3a1a5eaa-8421-11e6-8757-fa2ec96a5e2a}.TM.blf
2016-12-09 23:21 - 2016-08-11 00:41 - 01685746 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2016-12-09 23:21 - 2016-07-16 18:15 - 00633774 _____ C:\WINDOWS\system32\perfh00C.dat
2016-12-09 23:21 - 2016-07-16 18:15 - 00112920 _____ C:\WINDOWS\system32\perfc00C.dat
2016-12-09 23:21 - 2016-07-16 09:31 - 00770694 _____ C:\WINDOWS\system32\perfh009.dat
2016-12-09 23:21 - 2016-07-16 09:31 - 00172940 _____ C:\WINDOWS\system32\perfc009.dat
2016-12-09 23:21 - 2016-07-16 09:28 - 00000000 ____D C:\WINDOWS\INF
2016-12-09 23:16 - 2016-09-26 21:30 - 00000174 ___SH C:\Users\M\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\desktop.ini
2016-12-09 23:16 - 2016-09-26 20:52 - 00000000 ___RD C:\Users\M\AppData\Roaming\Microsoft\Windows\Start Menu\Programs
2016-12-09 23:16 - 2016-08-11 15:05 - 00000282 ___SH C:\Users\M\Desktop\desktop.ini
2016-12-09 23:16 - 2016-08-11 15:05 - 00000174 ___SH C:\Users\M\AppData\Roaming\Microsoft\Windows\Start Menu\desktop.ini
2016-12-09 23:16 - 2016-08-11 15:05 - 00000000 ___RD C:\Users\M\Searches
2016-12-09 23:16 - 2016-08-11 15:05 - 00000000 ___RD C:\Users\M\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2016-12-09 23:16 - 2016-08-11 15:05 - 00000000 ___RD C:\Users\M\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2016-12-09 23:16 - 2016-07-15 23:31 - 00000402 ___SH C:\Users\M\Documents\desktop.ini
2016-12-09 23:16 - 2016-07-15 23:31 - 00000282 ___SH C:\Users\M\Downloads\desktop.ini
2016-12-09 23:16 - 2016-01-15 01:24 - 00000000 ___RD C:\Users\M\Contacts
2016-12-09 23:16 - 2016-01-15 01:16 - 00000000 ___RD C:\Users\M\Videos
2016-12-09 23:16 - 2016-01-15 01:16 - 00000000 ___RD C:\Users\M\Saved Games
2016-12-09 23:16 - 2016-01-15 01:16 - 00000000 ___RD C:\Users\M\Pictures
2016-12-09 23:16 - 2016-01-15 01:16 - 00000000 ___RD C:\Users\M\Music
2016-12-09 23:16 - 2016-01-15 01:16 - 00000000 ___RD C:\Users\M\Links
2016-12-09 23:16 - 2016-01-15 01:16 - 00000000 ___RD C:\Users\M\Favorites
2016-12-09 23:16 - 2016-01-15 01:13 - 00000000 __RHD C:\Users\Public\AccountPictures
2016-12-09 23:15 - 2016-07-16 03:22 - 00262144 _____ C:\Users\Default\NTUSER.DAT
2016-12-09 22:30 - 2016-07-16 09:29 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2016-12-09 22:30 - 2016-07-16 09:29 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
2016-12-09 22:30 - 2016-07-16 09:29 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2016-12-09 22:30 - 2016-07-16 09:29 - 00000000 ____D C:\WINDOWS\system32\wbem
2016-12-09 22:30 - 2016-07-16 09:29 - 00000000 ____D C:\WINDOWS\system32\sr-Latn-CS
2016-12-09 22:30 - 2016-07-16 09:29 - 00000000 ____D C:\WINDOWS\system32\oobe
2016-12-09 22:30 - 2016-07-16 09:29 - 00000000 ____D C:\WINDOWS\bcastdvr
2016-12-09 22:30 - 2016-07-16 09:29 - 00000000 ____D C:\Program Files\Internet Explorer
2016-12-09 22:30 - 2016-07-16 03:22 - 00000000 ____D C:\WINDOWS\system32\Sysprep
2016-12-09 22:30 - 2016-07-16 03:22 - 00000000 ____D C:\WINDOWS\system32\Dism
2016-12-09 22:30 - 2016-07-16 03:22 - 00000000 ____D C:\WINDOWS\servicing
2016-12-09 15:52 - 2013-08-22 09:22 - 00389408 __RSH C:\bootmgr
2016-12-09 00:28 - 2016-10-16 01:17 - 00000000 ____D C:\Users\M\Desktop\Court CV
2016-12-03 15:47 - 2016-11-02 21:50 - 00070656 _____ C:\Users\M\Desktop\Plan_recherche 00.doc
2016-12-02 13:55 - 2016-08-11 20:27 - 00000000 ____D C:\Program Files\Spybot - Search & Destroy 2
==================== Fichiers à la racine de certains dossiers =======
2016-08-12 08:16 - 2016-08-12 08:16 - 0000057 _____ () C:\ProgramData\Ament.ini
2016-09-23 02:04 - 2016-09-23 02:04 - 0001143 _____ () C:\ProgramData\StreamingMediaTechnologyLog.txt
Certains fichiers dans TEMP:
====================
C:\Users\M\AppData\Local\Temp\proxy_vole1060615292894534333.dll
C:\Users\M\AppData\Local\Temp\proxy_vole3047260858106918130.dll
C:\Users\M\AppData\Local\Temp\proxy_vole6834071755603756725.dll
==================== Bamital & volsnap ======================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
C:\WINDOWS\explorer.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\winlogon.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\wininit.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\svchost.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\services.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\User32.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\userinit.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\rpcss.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\dnsapi.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\Drivers\volsnap.sys => Le fichier est signé numériquement
LastRegBack: 2017-01-01 21:23
==================== Fin de FRST.txt ============================
Exécuté par M (administrateur) sur PC-MOON (01-01-2017 21:35:12)
Exécuté depuis C:\Users\M\Downloads
Profils chargés: M (Profils disponibles: M)
Platform: Microsoft Windows 10 Professionnel Version 1607 (X86) Langue: Français (France)
Internet Explorer Version 11 (Navigateur par défaut: Chrome)
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(AMD) C:\Windows\System32\atiesrxx.exe
(Hewlett-Packard Company) C:\Windows\System32\hpservice.exe
(AnchorFree Inc.) C:\Program Files\Hotspot Shield\bin\hsswd.exe
(Safer-Networking Ltd.) C:\Program Files\Spybot - Search & Destroy 2\SDFSSvc.exe
(Safer-Networking Ltd.) C:\Program Files\Spybot - Search & Destroy 2\SDUpdSvc.exe
(DEVGURU Co., LTD.) C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(Andrea Electronics Corporation) C:\Windows\System32\AEADISRV.EXE
(LSI Corporation) C:\Program Files\LSI SoftModem\agrsmsvc.exe
(McAfee, Inc.) C:\Program Files\TrueKey\McT9197.tmp
(Safer-Networking Ltd.) C:\Program Files\Spybot - Search & Destroy 2\SDWSCSvc.exe
(HP Inc.) C:\Program Files\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
(HP) C:\Program Files\HP\Shared\hpqwmiex.exe
(McAfee, Inc.) C:\Program Files\TrueKey\McAfee.TrueKey.Service.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Analog Devices, Inc.) C:\Program Files\Analog Devices\Core\smax4pnp.exe
(Safer-Networking Ltd.) C:\Program Files\Spybot - Search & Destroy 2\SDTray.exe
(Panda Security) C:\Program Files\Panda USB Vaccine\USBVaccine.exe
(Hewlett-Packard Co.) C:\Program Files\HP\HP Officejet 6500 E710n-z\Bin\ScanToPCActivationApp.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Hewlett-Packard Co.) C:\Program Files\HP\HP Officejet 6500 E710n-z\Bin\HPNetworkCommunicatorCom.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
==================== Registre (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [SoundMAXPnP] => C:\Program Files\Analog Devices\Core\smax4pnp.exe [1314816 2009-05-18] (Analog Devices, Inc.)
HKLM\...\Run: [SDTray] => C:\Program Files\Spybot - Search & Destroy 2\SDTray.exe [4101584 2014-04-25] (Safer-Networking Ltd.)
HKLM\...\Run: [KeePass 2 PreLoad] => C:\Program Files\KeePass Password Safe 2\KeePass.exe [2779136 2016-06-11] (Dominik Reichl)
HKU\S-1-5-21-3733518740-3488311968-3693124628-1001\...\Run: [HP Officejet 6500 E710n-z (NET)] => C:\Program Files\HP\HP Officejet 6500 E710n-z\Bin\ScanToPCActivationApp.exe [1837672 2012-10-17] (Hewlett-Packard Co.)
HKU\S-1-5-21-3733518740-3488311968-3693124628-1001\...\Run: [SysinfY2X] => C:\WINDOWS\system32\cmd.exe /c start wscript /e:VBScript.Encode %temp%\SysinfY2X.db
Lsa: [Notification Packages] scecli C:\Program Files\TrueKey\McAfeeTrueKeyPasswordFilter
Startup: C:\Users\M\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Alertes de surveillance de l'encre - HP Officejet 6500 E710n-z (réseau).lnk [2017-01-01]
ShortcutTarget: Alertes de surveillance de l'encre - HP Officejet 6500 E710n-z (réseau).lnk -> C:\Program Files\HP\HP Officejet 6500 E710n-z\Bin\HPStatusBL.dll (Hewlett-Packard Co.)
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Hosts: Il y a plus d'un élément dans hosts. Voir la section Hosts de Addition.txt
Tcpip\Parameters: [DhcpNameServer] 193.95.59.20 8.8.8.8
Tcpip\..\Interfaces\{0c998684-a94a-4666-a403-30f62a398e75}: [DhcpNameServer] 193.95.59.20 8.8.8.8
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKU\S-1-5-21-3733518740-3488311968-3693124628-1001\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
BHO: True Key Helper -> {0F4B8786-5502-4803-8EBC-F652A1153BB6} -> C:\Program Files\Intel Security\True Key\MSIE\truekey_ie.dll [2016-12-10] (Intel Security)
BHO: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-09-23] (Adobe Systems Incorporated)
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office15\OCHelper.dll [2016-08-27] (Microsoft Corporation)
BHO: Adobe Acrobat Create PDF Toolbar Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll [2012-09-23] (Adobe Systems Incorporated)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL [2016-11-15] (Microsoft Corporation)
BHO: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2016-07-21] (HP Inc.)
BHO: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll [2012-09-23] (Adobe Systems Incorporated)
Toolbar: HKLM - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll [2012-09-23] (Adobe Systems Incorporated)
Toolbar: HKLM - True Key - {4BAAC1B8-0800-42C9-8FA6-08B211F356B8} - C:\Program Files\Intel Security\True Key\MSIE\truekey_ie.dll [2016-12-10] (Intel Security)
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL [2016-05-17] (Microsoft Corporation)
FireFox:
========
FF DefaultProfile: i9pwjduz.default
FF ProfilePath: C:\Users\M\AppData\Roaming\Mozilla\Firefox\Profiles\i9pwjduz.default [2017-01-01]
FF Homepage: Mozilla\Firefox\Profiles\i9pwjduz.default -> hxxps://www.google.com/?trackid=sp-006
FF Session Restore: Mozilla\Firefox\Profiles\i9pwjduz.default -> est activé.
FF Extension: (iGraal) - C:\Users\M\AppData\Roaming\Mozilla\Firefox\Profiles\i9pwjduz.default\Extensions\{dbac9680-d559-4cd4-9765-059879e8c467}.xpi [2016-08-12]
FF HKLM\...\Firefox\Extensions: [web2pdfextension@web2pdf.adobedotcom] - C:\Program Files\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn
FF Extension: (Adobe Acrobat - Create PDF) - C:\Program Files\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn [2016-08-11] [non signé]
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF32_24_0_0_186.dll [2016-12-23] ()
FF Plugin: @adobe.com/ShockwavePlayer -> C:\WINDOWS\system32\Adobe\Director\np32dsw_1225195.dll [2016-09-20] (Adobe Systems, Inc.)
FF Plugin: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2016-07-19] (Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~1\Office15\NPSPWRAP.DLL [2014-01-23] (Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-20] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-20] (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.2.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat 11.0\Acrobat\Air\nppdf32.dll [2012-09-23] (Adobe Systems Inc.)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll [2012-09-20] (Adobe Systems)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npMeetingJoinPluginOC.dll [2016-07-19] (Microsoft Corporation)
Chrome:
=======
CHR StartupUrls: Default -> "hxxp://www.istartsurf.com/?type=hp&ts=1447829487&z=b51c383ff66f5471f0df15fg9zcz0m1b5odt0gatde&from=cor&uid=WDCXWD3200BEVT-60ZCT1_WD-WXEX08CR8046R8046","hxxp://www.yessearches.com/?mode=nnnb&ptid=wak&uid=A8B5EEC81143E47855117801E91966E6&v=20160202&ts=AHEpBHQoA3QnBE.."
CHR DefaultSearchURL: Default -> hxxps://duckduckgo.com/?q={searchTerms}
CHR DefaultSearchKeyword: Default -> duckduckgo.com
CHR Session Restore: Default -> est activé.
CHR Profile: C:\Users\M\AppData\Local\Google\Chrome\User Data\Default [2017-01-01]
CHR Extension: (Google Slides) - C:\Users\M\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-08-11]
CHR Extension: (Google Docs) - C:\Users\M\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-08-11]
CHR Extension: (Google Drive) - C:\Users\M\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-08-11]
CHR Extension: (DuckDuckGo Search) - C:\Users\M\AppData\Local\Google\Chrome\User Data\Default\Extensions\bkdgflcldnnnapblkhphbgpggdiikppg [2016-10-16]
CHR Extension: (YouTube) - C:\Users\M\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-08-11]
CHR Extension: (Adobe Acrobat) - C:\Users\M\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2016-09-08]
CHR Extension: (My JDownloader) - C:\Users\M\AppData\Local\Google\Chrome\User Data\Default\Extensions\fbcohnmimjicjdomonkcbcpbpnhggkip [2016-08-11]
CHR Extension: (Google Sheets) - C:\Users\M\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-08-11]
CHR Extension: (IBA Opt-out (by Google)) - C:\Users\M\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbiekjoijknlhijdjbaadobpkdhmoebb [2016-08-11]
CHR Extension: (Google Docs hors connexion) - C:\Users\M\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-08-11]
CHR Extension: (Disconnect) - C:\Users\M\AppData\Local\Google\Chrome\User Data\Default\Extensions\jeoacafpbcihiomhlakheieifhpjdfeo [2016-10-16]
CHR Extension: (iGraal) - C:\Users\M\AppData\Local\Google\Chrome\User Data\Default\Extensions\kmhkepipobnjllejbafajoemahjejdcm [2016-08-17]
CHR Extension: (Office Online) - C:\Users\M\AppData\Local\Google\Chrome\User Data\Default\Extensions\ndjpnladcallmjemlbaebfadecfhkepb [2016-10-13]
CHR Extension: (Mailtrack for Gmail) - C:\Users\M\AppData\Local\Google\Chrome\User Data\Default\Extensions\ndnaehgpjlnokgebbaldlmgkapkpjkkb [2016-12-12]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\M\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-08-11]
CHR Extension: (Gmail) - C:\Users\M\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-08-11]
CHR Extension: (Chrome Media Router) - C:\Users\M\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-12-20]
CHR Profile: C:\Users\M\AppData\Local\Google\Chrome\User Data\System Profile [2016-09-20]
CHR HKLM\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - C:\Program Files\Adobe\Acrobat 11.0\Acrobat\Browser\WCChromeExtn\WCChromeExtn.crx [2012-09-23]
CHR HKLM\...\Chrome\Extension: [jkfpchpiljkaemlpmpebnglgkomamfeo] - hxxps://clients2.google.com/service/update2/crx
==================== Services (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S2 0037521482698351mcinstcleanup; C:\WINDOWS\TEMP\003752~1.EXE [922152 2016-03-02] (McAfee, Inc.)
R2 AgereModemAudio; C:\Program Files\LSI SoftModem\agrsmsvc.exe [26112 2009-12-03] (LSI Corporation)
R3 hpqcaslwmiex; C:\Program Files\HP\Shared\hpqwmiex.exe [1031704 2016-06-03] (HP)
R2 HPSupportSolutionsFrameworkService; C:\Program Files\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [31776 2016-12-07] (HP Inc.)
R2 HssWd; C:\Program Files\Hotspot Shield\bin\hsswd.exe [864464 2015-12-19] (AnchorFree Inc.)
R2 SDScannerService; C:\Program Files\Spybot - Search & Destroy 2\SDFSSvc.exe [1738200 2014-04-25] (Safer-Networking Ltd.)
R2 SDUpdateService; C:\Program Files\Spybot - Search & Destroy 2\SDUpdSvc.exe [4088608 2016-09-21] (Safer-Networking Ltd.)
R2 SDWSCService; C:\Program Files\Spybot - Search & Destroy 2\SDWSCSvc.exe [171928 2014-04-25] (Safer-Networking Ltd.)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [1887272 2016-09-15] (Microsoft Corporation)
R2 ss_conn_service; C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [754784 2016-04-25] (DEVGURU Co., LTD.)
R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [220776 2016-02-11] (Synaptics Incorporated)
R2 TrueKey; C:\Program Files\TrueKey\McAfee.TrueKey.Service.exe [996336 2016-11-30] (McAfee, Inc.)
R2 TrueKeyScheduler; C:\Program Files\TrueKey\McTkSchedulerService.exe [17304 2016-11-30] (McAfee, Inc.)
S3 TrueKeyServiceHelper; C:\Program Files\TrueKey\McAfee.TrueKey.ServiceHelper.exe [73968 2016-11-30] (McAfee, Inc.)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [271496 2016-07-16] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [84928 2016-07-16] (Microsoft Corporation)
S2 InstallerService; C:\Program Files\TrueKey\Mcafee.TrueKey.InstallerService.exe -originalversion 4.4.127.0 [X]
===================== Pilotes (Avec liste blanche) ======================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [109184 2016-09-05] (Samsung Electronics Co., Ltd.)
R3 int0800; C:\WINDOWS\System32\drivers\flashud.sys [42496 2009-09-09] (Intel Corporation)
S3 MBAMSwissArmy; C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [170200 2016-08-12] (Malwarebytes)
S3 NetAdapterCx; C:\WINDOWS\System32\drivers\NetAdapterCx.sys [62976 2016-07-16] ()
R3 NETwNs32; C:\WINDOWS\System32\drivers\NETwNs32.sys [7518208 2016-07-16] (Intel Corporation)
R0 PxHelp20; C:\WINDOWS\System32\drivers\PxHelp20.sys [46096 2013-09-03] (Corel Corporation)
R1 SDHookDriver; C:\Program Files\Spybot - Search & Destroy 2\SDHookDrv32.sys [46336 2014-04-25] ()
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [147072 2016-09-05] (Samsung Electronics Co., Ltd.)
S3 TTDrv; C:\KOPLAYER\vbox\TTDrv.sys [209904 2015-12-26] (Oracle Corporation)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [37912 2016-07-16] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [244576 2016-07-16] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [100192 2016-07-16] (Microsoft Corporation)
S3 WUDFWpdMtp; C:\WINDOWS\system32\DRIVERS\WUDFRd.sys [161280 2016-07-16] (Microsoft Corporation)
R3 yukonw8; C:\WINDOWS\System32\drivers\yk63x86.sys [242688 2016-07-16] (Marvell)
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois - Créés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2017-01-01 21:35 - 2017-01-01 21:36 - 00018155 _____ C:\Users\M\Downloads\FRST.txt
2017-01-01 21:35 - 2017-01-01 21:35 - 00000000 ____D C:\FRST
2017-01-01 21:17 - 2017-01-01 21:34 - 01760256 _____ (Farbar) C:\Users\M\Downloads\FRST.exe
2016-12-28 18:00 - 2016-12-28 23:31 - 00000000 ____D C:\Users\M\Downloads\Rich Bitch Has An Itch
2016-12-26 19:16 - 2016-12-26 19:16 - 00029491 _____ C:\Users\M\Desktop\engagement pour CEC Stimulation Dr MBA.docx
2016-12-26 18:19 - 2016-12-26 18:19 - 00017943 _____ C:\Users\M\Downloads\engagement.docx
2016-12-25 17:12 - 2016-12-25 17:13 - 00000000 ____D C:\Users\M\Downloads\Films Téléch 2016
2016-12-25 17:10 - 2016-12-25 17:11 - 00000000 ____D C:\Users\M\Downloads\Cours de CEC Pédagogie (bases fonda)
2016-12-25 16:58 - 2016-12-25 17:22 - 00000000 ____D C:\Users\M\Downloads\Dossier M D
2016-12-25 16:05 - 2016-12-25 22:42 - 00000000 ____D C:\Users\M\Downloads\Cours de CEC IMAGERIE APP LOCO
2016-12-23 23:42 - 2016-12-23 23:43 - 06197275 _____ C:\Users\M\Downloads\دليل المستشار البلدي في النصوص التشريعية و الترتيبية ذات الصلة بالعمل البلدي 2016.pdf
2016-12-23 17:02 - 2016-12-23 17:02 - 00000000 ____D C:\Users\M\AppData\Local\Macromedia
2016-12-23 16:13 - 2016-12-23 16:14 - 00000000 ____D C:\Users\M\AppData\Local\tkdata
2016-12-23 16:13 - 2016-12-23 16:13 - 00000000 ____D C:\Users\M\AppData\Local\CEF
2016-12-23 16:12 - 2016-12-31 15:40 - 00001348 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\True Key.lnk
2016-12-23 16:12 - 2016-12-23 16:12 - 00000000 ____D C:\ProgramData\TrueKey
2016-12-23 16:12 - 2016-12-23 16:12 - 00000000 ____D C:\Program Files\Intel Security
2016-12-23 16:11 - 2016-12-23 16:11 - 00000000 ____D C:\Program Files\Common Files\McAfee
2016-12-23 16:00 - 2016-12-31 15:40 - 00000000 ____D C:\Program Files\TrueKey
2016-12-23 16:00 - 2016-12-25 11:34 - 00001002 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2016-12-21 22:37 - 2016-12-22 19:42 - 00000000 ____D C:\Users\M\.TianTianVM
2016-12-21 22:37 - 2016-12-21 22:37 - 00000000 ____D C:\Users\Public\Thunder Network
2016-12-21 22:37 - 2016-12-21 22:37 - 00000000 ____D C:\ProgramData\Thunder Network
2016-12-21 22:35 - 2016-12-21 23:32 - 00000000 ____D C:\KOPLAYER
2016-12-21 22:35 - 2016-12-21 23:20 - 00000000 ____D C:\Users\M\AppData\Local\KOPLAYERData
2016-12-21 22:35 - 2016-12-21 22:35 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KOPLAYER
2016-12-19 01:20 - 2016-12-19 01:21 - 09836494 _____ C:\Users\M\Downloads\مقدمة في التاريخ الآخر - سليمان بشير.pdf
2016-12-18 21:08 - 2016-12-18 21:08 - 00410389 _____ C:\Users\M\Documents\HMHP2.jpeg
2016-12-18 21:08 - 2016-12-18 21:08 - 00167709 _____ C:\Users\M\Documents\HMHP1.jpeg
2016-12-15 15:01 - 2016-12-15 15:01 - 00038755 _____ C:\Users\M\Desktop\UsbFix_Report.txt
2016-12-15 15:01 - 2016-12-15 15:01 - 00000000 _RSHD C:\Autorun.inf
2016-12-13 23:15 - 2016-12-09 11:54 - 01415520 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2016-12-13 23:15 - 2016-12-09 11:54 - 00115552 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2016-12-13 23:15 - 2016-12-09 11:16 - 00890984 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2016-12-13 23:15 - 2016-12-09 11:16 - 00784064 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2016-12-13 23:15 - 2016-12-09 11:14 - 06019936 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2016-12-13 23:15 - 2016-12-09 11:12 - 00276832 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys
2016-12-13 23:15 - 2016-12-09 11:11 - 02048496 _____ C:\WINDOWS\system32\CoreUIComponents.dll
2016-12-13 23:15 - 2016-12-09 11:10 - 00583136 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2016-12-13 23:15 - 2016-12-09 11:09 - 00133296 _____ (Microsoft Corporation) C:\WINDOWS\system32\sspicli.dll
2016-12-13 23:15 - 2016-12-09 11:01 - 02323728 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10warp.dll
2016-12-13 23:15 - 2016-12-09 11:01 - 01897824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2016-12-13 23:15 - 2016-12-09 11:01 - 01503544 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll
2016-12-13 23:15 - 2016-12-09 11:01 - 00551264 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2016-12-13 23:15 - 2016-12-09 11:01 - 00342880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2016-12-13 23:15 - 2016-12-09 11:00 - 00523784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2016-12-13 23:15 - 2016-12-09 11:00 - 00117720 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcrypt.dll
2016-12-13 23:15 - 2016-12-09 10:57 - 06668040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2016-12-13 23:15 - 2016-12-09 10:57 - 01852720 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2016-12-13 23:15 - 2016-12-09 10:55 - 00198496 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHost.dll
2016-12-13 23:15 - 2016-12-09 10:52 - 01413664 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2016-12-13 23:15 - 2016-12-09 10:52 - 01344992 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2016-12-13 23:15 - 2016-12-09 10:41 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\system32\WordBreakers.dll
2016-12-13 23:15 - 2016-12-09 10:40 - 00147968 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2016-12-13 23:15 - 2016-12-09 10:37 - 00330752 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadcloudap.dll
2016-12-13 23:15 - 2016-12-09 10:37 - 00186368 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdd.dll
2016-12-13 23:15 - 2016-12-09 10:36 - 00231936 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll
2016-12-13 23:15 - 2016-12-09 10:35 - 00359424 _____ (Microsoft Corporation) C:\WINDOWS\system32\facecredentialprovider.dll
2016-12-13 23:15 - 2016-12-09 10:34 - 00822784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2016-12-13 23:15 - 2016-12-09 10:32 - 00635904 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2016-12-13 23:15 - 2016-12-09 10:31 - 03689984 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2016-12-13 23:15 - 2016-12-09 10:31 - 00313856 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2016-12-13 23:15 - 2016-12-09 10:31 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\system32\indexeddbserver.dll
2016-12-13 23:15 - 2016-12-09 10:30 - 19413504 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2016-12-13 23:15 - 2016-12-09 10:30 - 04612608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2016-12-13 23:15 - 2016-12-09 10:28 - 01284096 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdtctm.dll
2016-12-13 23:15 - 2016-12-09 10:27 - 19417088 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2016-12-13 23:15 - 2016-12-09 10:23 - 12177920 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2016-12-13 23:15 - 2016-12-09 10:22 - 03776000 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2016-12-13 23:15 - 2016-12-09 10:20 - 06044160 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2016-12-13 23:15 - 2016-12-09 10:20 - 03198464 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdp.dll
2016-12-13 23:15 - 2016-12-09 10:18 - 03666432 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2016-12-13 23:15 - 2016-12-09 10:18 - 02138112 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputService.dll
2016-12-13 23:15 - 2016-12-09 10:18 - 01235456 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2016-12-13 23:15 - 2016-12-09 10:18 - 00165376 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmregistration.dll
2016-12-13 23:15 - 2016-12-09 10:17 - 01120768 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2016-12-13 23:15 - 2016-12-09 10:17 - 00886272 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll
2016-12-13 23:15 - 2016-12-09 10:17 - 00566784 _____ (Microsoft Corporation) C:\WINDOWS\system32\ShareHost.dll
2016-12-13 23:15 - 2016-12-09 10:16 - 02998272 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2016-12-13 23:15 - 2016-12-09 10:16 - 01880576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
2016-12-13 23:15 - 2016-12-09 10:16 - 00586240 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll
2016-12-13 23:15 - 2016-12-09 10:16 - 00353280 _____ (Microsoft Corporation) C:\WINDOWS\system32\TextInputFramework.dll
2016-12-13 23:15 - 2016-12-09 10:15 - 00206848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
2016-12-13 23:15 - 2016-12-09 10:15 - 00092672 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputLocaleManager.dll
2016-12-13 23:15 - 2016-12-09 10:15 - 00068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditBufferTestHook.dll
2016-12-13 23:15 - 2016-09-15 17:53 - 00185344 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapibase.dll
2016-12-12 21:17 - 2016-12-12 21:17 - 00126053 _____ C:\Users\M\Desktop\RCS Education app form 2016.docx
2016-12-11 22:20 - 2016-12-11 22:20 - 00534417 _____ C:\Users\M\Desktop\Dictionnaire de Médecine Orthopédique Français, Italien, Anglais - JC de Mauroy.pdf
2016-12-09 21:24 - 2016-11-11 08:49 - 00869848 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll
2016-12-09 21:24 - 2016-11-11 08:48 - 02277248 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll
2016-12-09 21:24 - 2016-11-11 08:47 - 00527880 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll
2016-12-09 21:24 - 2016-11-11 08:42 - 00959112 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2016-12-09 21:24 - 2016-11-11 08:38 - 01263856 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2016-12-09 21:24 - 2016-11-11 08:19 - 00364544 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupShim.dll
2016-12-09 21:24 - 2016-11-11 08:17 - 00333312 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll
2016-12-09 21:24 - 2016-11-11 08:15 - 01722368 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRHInproc.dll
2016-12-09 21:24 - 2016-11-11 08:15 - 01357824 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll
2016-12-09 21:24 - 2016-11-11 08:15 - 00441856 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppReadiness.dll
2016-12-09 21:24 - 2016-11-11 08:06 - 01228288 _____ (Microsoft Corporation) C:\WINDOWS\system32\usercpl.dll
2016-12-09 21:24 - 2016-11-11 08:04 - 01992704 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2016-12-09 21:23 - 2016-11-11 09:07 - 00448864 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2016-12-09 21:23 - 2016-11-11 09:01 - 02206496 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2016-12-09 21:23 - 2016-11-11 09:01 - 01969912 _____ (Microsoft Corporation) C:\WINDOWS\system32\hevcdecoder.dll
2016-12-09 21:23 - 2016-11-11 09:01 - 00167848 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscapi.dll
2016-12-09 21:23 - 2016-11-11 08:59 - 01586736 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2016-12-09 21:23 - 2016-11-11 08:59 - 00292192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fastfat.sys
2016-12-09 21:23 - 2016-11-11 08:59 - 00106336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\partmgr.sys
2016-12-09 21:23 - 2016-11-11 08:49 - 00263472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Storage.ApplicationData.dll
2016-12-09 21:23 - 2016-11-11 08:49 - 00248480 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanager.dll
2016-12-09 21:23 - 2016-11-11 08:47 - 05722832 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2016-12-09 21:23 - 2016-11-11 08:46 - 00186720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys
2016-12-09 21:23 - 2016-11-11 08:45 - 02166752 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2016-12-09 21:23 - 2016-11-11 08:45 - 00846560 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinTypes.dll
2016-12-09 21:23 - 2016-11-11 08:45 - 00355680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2016-12-09 21:23 - 2016-11-11 08:45 - 00261984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2016-12-09 21:23 - 2016-11-11 08:45 - 00175968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tpm.sys
2016-12-09 21:23 - 2016-11-11 08:42 - 20969928 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2016-12-09 21:23 - 2016-11-11 08:42 - 03892864 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2016-12-09 21:23 - 2016-11-11 08:42 - 01123912 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2016-12-09 21:23 - 2016-11-11 08:42 - 00952416 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2016-12-09 21:23 - 2016-11-11 08:42 - 00091936 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfaudiocnv.dll
2016-12-09 21:23 - 2016-11-11 08:41 - 04311736 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2016-12-09 21:23 - 2016-11-11 08:37 - 00381720 _____ (Microsoft Corporation) C:\WINDOWS\system32\services.exe
2016-12-09 21:23 - 2016-11-11 08:30 - 00274944 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXTaskFactory.dll
2016-12-09 21:23 - 2016-11-11 08:29 - 00034816 _____ (Microsoft Corporation) C:\WINDOWS\system32\CbtBackgroundManagerPolicy.dll
2016-12-09 21:23 - 2016-11-11 08:28 - 01631232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
2016-12-09 21:23 - 2016-11-11 08:27 - 00090624 _____ (Microsoft Corporation) C:\WINDOWS\system32\VPNv2CSP.dll
2016-12-09 21:23 - 2016-11-11 08:27 - 00081408 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReportingCSP.dll
2016-12-09 21:23 - 2016-11-11 08:27 - 00065024 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetCfgNotifyObjectHost.exe
2016-12-09 21:23 - 2016-11-11 08:27 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\system32\LaunchWinApp.exe
2016-12-09 21:23 - 2016-11-11 08:26 - 00216576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\xboxgip.sys
2016-12-09 21:23 - 2016-11-11 08:25 - 00135168 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseModernAppMgmtCSP.dll
2016-12-09 21:23 - 2016-11-11 08:25 - 00117248 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsBtSvc.dll
2016-12-09 21:23 - 2016-11-11 08:25 - 00110592 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcertinst.exe
2016-12-09 21:23 - 2016-11-11 08:25 - 00071168 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosStorage.dll
2016-12-09 21:23 - 2016-11-11 08:24 - 00519680 _____ (Microsoft Corporation) C:\WINDOWS\system32\vpnike.dll
2016-12-09 21:23 - 2016-11-11 08:24 - 00156672 _____ (Microsoft Corporation) C:\WINDOWS\system32\BcastDVRHelper.dll
2016-12-09 21:23 - 2016-11-11 08:24 - 00138240 _____ (Microsoft Corporation) C:\WINDOWS\system32\DisplayManager.dll
2016-12-09 21:23 - 2016-11-11 08:24 - 00127488 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEStoreEventHandlers.dll
2016-12-09 21:23 - 2016-11-11 08:24 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshost.dll
2016-12-09 21:23 - 2016-11-11 08:23 - 00254976 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpusersvc.dll
2016-12-09 21:23 - 2016-11-11 08:23 - 00140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppCapture.dll
2016-12-09 21:23 - 2016-11-11 08:23 - 00132096 _____ (Microsoft Corporation) C:\WINDOWS\system32\ACPBackgroundManagerPolicy.dll
2016-12-09 21:23 - 2016-11-11 08:22 - 00505856 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvr.exe
2016-12-09 21:23 - 2016-11-11 08:22 - 00080896 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2016-12-09 21:23 - 2016-11-11 08:22 - 00062976 _____ (Microsoft Corporation) C:\WINDOWS\system32\HttpsDataSource.dll
2016-12-09 21:23 - 2016-11-11 08:22 - 00035328 _____ (Microsoft Corporation) C:\WINDOWS\system32\EAMProgressHandler.dll
2016-12-09 21:23 - 2016-11-11 08:21 - 00332288 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapConfiguration.dll
2016-12-09 21:23 - 2016-11-11 08:21 - 00242176 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseAppMgmtSvc.dll
2016-12-09 21:23 - 2016-11-11 08:21 - 00240128 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshostcore.dll
2016-12-09 21:23 - 2016-11-11 08:21 - 00164864 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpapisrv.dll
2016-12-09 21:23 - 2016-11-11 08:21 - 00091648 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.BackgroundManagerPolicy.dll
2016-12-09 21:23 - 2016-11-11 08:20 - 00306176 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2016-12-09 21:23 - 2016-11-11 08:20 - 00288768 _____ (Microsoft Corporation) C:\WINDOWS\system32\wincorlib.dll
2016-12-09 21:23 - 2016-11-11 08:20 - 00111616 _____ (Microsoft Corporation) C:\WINDOWS\system32\EDPCleanup.exe
2016-12-09 21:23 - 2016-11-11 08:19 - 13868544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2016-12-09 21:23 - 2016-11-11 08:19 - 00506880 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicePairing.dll
2016-12-09 21:23 - 2016-11-11 08:19 - 00447488 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_StorageSense.dll
2016-12-09 21:23 - 2016-11-11 08:19 - 00384512 _____ (Microsoft Corporation) C:\WINDOWS\system32\DataSenseHandlers.dll
2016-12-09 21:23 - 2016-11-11 08:19 - 00298496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll
2016-12-09 21:23 - 2016-11-11 08:19 - 00114176 _____ (Microsoft Corporation) C:\WINDOWS\system32\setupugc.exe
2016-12-09 21:23 - 2016-11-11 08:18 - 02333184 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmSvc.dll
2016-12-09 21:23 - 2016-11-11 08:18 - 01336320 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsecedit.dll
2016-12-09 21:23 - 2016-11-11 08:18 - 01196544 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscui.cpl
2016-12-09 21:23 - 2016-11-11 08:18 - 00790528 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2016-12-09 21:23 - 2016-11-11 08:18 - 00725504 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2016-12-09 21:23 - 2016-11-11 08:18 - 00431616 _____ (Microsoft Corporation) C:\WINDOWS\system32\efswrt.dll
2016-12-09 21:23 - 2016-11-11 08:18 - 00294400 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpsvc.dll
2016-12-09 21:23 - 2016-11-11 08:18 - 00142848 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscsvc.dll
2016-12-09 21:23 - 2016-11-11 08:18 - 00108544 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscinterop.dll
2016-12-09 21:23 - 2016-11-11 08:18 - 00086528 _____ (Microsoft Corporation) C:\WINDOWS\system32\RjvMDMConfig.dll
2016-12-09 21:23 - 2016-11-11 08:18 - 00052224 _____ (Microsoft Corporation) C:\WINDOWS\system32\ProvSysprep.dll
2016-12-09 21:23 - 2016-11-11 08:17 - 00247296 _____ (Microsoft Corporation) C:\WINDOWS\system32\domgmt.dll
2016-12-09 21:23 - 2016-11-11 08:17 - 00151040 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXApplicabilityBlob.dll
2016-12-09 21:23 - 2016-11-11 08:17 - 00033280 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSManHTTPConfig.exe
2016-12-09 21:23 - 2016-11-11 08:16 - 01377792 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2016-12-09 21:23 - 2016-11-11 08:15 - 07626752 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2016-12-09 21:23 - 2016-11-11 08:15 - 00838144 _____ (Microsoft Corporation) C:\WINDOWS\system32\JpMapControl.dll
2016-12-09 21:23 - 2016-11-11 08:15 - 00561152 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll
2016-12-09 21:23 - 2016-11-11 08:15 - 00348672 _____ (Microsoft Corporation) C:\WINDOWS\system32\zipfldr.dll
2016-12-09 21:23 - 2016-11-11 08:15 - 00298496 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascustom.dll
2016-12-09 21:23 - 2016-11-11 08:14 - 00473600 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXService.dll
2016-12-09 21:23 - 2016-11-11 08:14 - 00395264 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenrollengine.dll
2016-12-09 21:23 - 2016-11-11 08:13 - 00626688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
2016-12-09 21:23 - 2016-11-11 08:13 - 00499200 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2016-12-09 21:23 - 2016-11-11 08:13 - 00144896 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceEnroller.exe
2016-12-09 21:23 - 2016-11-11 08:12 - 01584128 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidsvc.dll
2016-12-09 21:23 - 2016-11-11 08:12 - 00529408 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnprv.dll
2016-12-09 21:23 - 2016-11-11 08:12 - 00147968 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppnp.dll
2016-12-09 21:23 - 2016-11-11 08:11 - 03306496 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2016-12-09 21:23 - 2016-11-11 08:11 - 00309760 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
2016-12-09 21:23 - 2016-11-11 08:10 - 06109184 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll
2016-12-09 21:23 - 2016-11-11 08:10 - 00746496 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdtcprx.dll
2016-12-09 21:23 - 2016-11-11 08:10 - 00083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\umpoext.dll
2016-12-09 21:23 - 2016-11-11 08:09 - 05380608 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
2016-12-09 21:23 - 2016-11-11 08:09 - 00786432 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2016-12-09 21:23 - 2016-11-11 08:09 - 00545280 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmkvsrcsnk.dll
2016-12-09 21:23 - 2016-11-11 08:08 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\system32\xolehlp.dll
2016-12-09 21:23 - 2016-11-11 08:07 - 01948160 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2016-12-09 21:23 - 2016-11-11 08:07 - 01136128 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2016-12-09 21:23 - 2016-11-11 08:07 - 00131072 _____ (Microsoft Corporation) C:\WINDOWS\system32\dialserver.dll
2016-12-09 21:23 - 2016-11-11 08:06 - 06474752 _____ (Microsoft Corporation) C:\WINDOWS\system32\mspaint.exe
2016-12-09 21:23 - 2016-11-11 08:06 - 02362880 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapRouter.dll
2016-12-09 21:23 - 2016-11-11 08:06 - 02109952 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapGeocoder.dll
2016-12-09 21:23 - 2016-11-11 08:06 - 00400384 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToManager.dll
2016-12-09 21:23 - 2016-11-11 08:06 - 00359936 _____ (Microsoft Corporation) C:\WINDOWS\system32\mtxclu.dll
2016-12-09 21:23 - 2016-11-11 08:05 - 04423680 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
2016-12-09 21:23 - 2016-11-11 08:04 - 02682880 _____ (Microsoft Corporation) C:\WINDOWS\system32\netshell.dll
2016-12-09 21:23 - 2016-11-11 08:04 - 01887232 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2016-12-09 21:23 - 2016-11-11 08:04 - 01595392 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2016-12-09 21:23 - 2016-11-11 08:04 - 00920576 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2016-12-09 21:23 - 2016-11-11 08:04 - 00818176 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2016-12-09 21:23 - 2016-11-11 08:04 - 00715264 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlCore.dll
2016-12-09 21:23 - 2016-11-11 08:04 - 00706048 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll
2016-12-09 21:23 - 2016-11-11 08:04 - 00296960 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2016-12-09 21:23 - 2016-11-11 08:04 - 00241152 _____ (Microsoft Corporation) C:\WINDOWS\system32\wkssvc.dll
2016-12-09 21:23 - 2016-11-11 08:03 - 02484736 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameux.dll
2016-12-09 21:23 - 2016-11-11 08:03 - 02256384 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2016-12-09 21:23 - 2016-11-11 08:03 - 01556480 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2016-12-09 21:23 - 2016-11-11 08:03 - 00772608 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntshrui.dll
2016-12-09 21:23 - 2016-11-11 08:03 - 00760832 _____ (Microsoft Corporation) C:\WINDOWS\system32\NMAA.dll
2016-12-09 21:23 - 2016-11-11 08:03 - 00565248 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasapi32.dll
2016-12-09 21:23 - 2016-11-11 08:02 - 00612352 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsm.dll
2016-12-09 21:22 - 2016-11-11 09:39 - 00484584 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2016-12-09 21:22 - 2016-11-11 09:07 - 00081760 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceReactivation.dll
2016-12-09 21:22 - 2016-11-11 09:00 - 01725136 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2016-12-09 21:22 - 2016-11-11 08:54 - 00122208 _____ (Microsoft Corporation) C:\WINDOWS\system32\migisol.dll
2016-12-09 21:22 - 2016-11-11 08:47 - 01430720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2016-12-09 21:22 - 2016-11-11 08:47 - 00861024 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll
2016-12-09 21:22 - 2016-11-11 08:42 - 00382784 _____ (Microsoft Corporation) C:\WINDOWS\system32\AUDIOKSE.dll
2016-12-09 21:22 - 2016-11-11 08:42 - 00313088 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe
2016-12-09 21:22 - 2016-11-11 08:42 - 00152416 _____ (Microsoft Corporation) C:\WINDOWS\system32\RTWorkQ.dll
2016-12-09 21:22 - 2016-11-11 08:41 - 01384704 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2016-12-09 21:22 - 2016-11-11 08:41 - 00802608 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditionUpgradeManagerObj.dll
2016-12-09 21:22 - 2016-11-11 08:41 - 00675568 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppwinob.dll
2016-12-09 21:22 - 2016-11-11 08:26 - 00030720 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReAgentc.exe
2016-12-09 21:22 - 2016-11-11 08:25 - 00032256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\modem.sys
2016-12-09 21:22 - 2016-11-11 08:24 - 00519168 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngccredprov.dll
2016-12-09 21:22 - 2016-11-11 08:23 - 00094208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryClient.dll
2016-12-09 21:22 - 2016-11-11 08:22 - 00299520 _____ (Microsoft Corporation) C:\WINDOWS\system32\NgcCtnr.dll
2016-12-09 21:22 - 2016-11-11 08:22 - 00122880 _____ (Microsoft Corporation) C:\WINDOWS\system32\sendmail.dll
2016-12-09 21:22 - 2016-11-11 08:22 - 00054784 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpremove.exe
2016-12-09 21:22 - 2016-11-11 08:21 - 00180224 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe
2016-12-09 21:22 - 2016-11-11 08:20 - 00557568 _____ (Microsoft Corporation) C:\WINDOWS\system32\StoreAgent.dll
2016-12-09 21:22 - 2016-11-11 08:20 - 00223232 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgentUserBroker.exe
2016-12-09 21:22 - 2016-11-11 08:19 - 01755136 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceFlows.DataModel.dll
2016-12-09 21:22 - 2016-11-11 08:19 - 00284672 _____ (Microsoft Corporation) C:\WINDOWS\system32\apprepsync.dll
2016-12-09 21:22 - 2016-11-11 08:19 - 00125952 _____ (Microsoft Corporation) C:\WINDOWS\system32\apprepapi.dll
2016-12-09 21:22 - 2016-11-11 08:16 - 00253952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2016-12-09 21:22 - 2016-11-11 08:14 - 00158720 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditionUpgradeHelper.dll
2016-12-09 21:22 - 2016-11-11 08:13 - 00230400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb10.sys
2016-12-09 21:22 - 2016-11-11 08:12 - 00259584 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdtcuiu.dll
2016-12-09 21:22 - 2016-11-11 08:06 - 01602048 _____ (Microsoft Corporation) C:\WINDOWS\system32\aitstatic.exe
2016-12-09 21:22 - 2016-11-11 08:05 - 03370496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepository.dll
2016-12-09 21:22 - 2016-11-11 08:05 - 00578560 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2016-12-09 20:50 - 2016-12-25 11:34 - 00002662 _____ C:\WINDOWS\PFRO.log
2016-12-09 14:03 - 2016-12-09 14:03 - 00041418 _____ C:\Users\M\Desktop\CNGOT_ticket.pdf
2016-12-06 22:10 - 2016-12-06 22:10 - 00059078 _____ C:\Users\M\Desktop\15400548_1437167969634546_3462021473388912085_n.jpg
==================== Un mois - Modifiés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2017-01-01 14:24 - 2016-11-21 20:52 - 00000000 ____D C:\Users\M\AppData\LocalLow\Mozilla
2016-12-31 21:09 - 2016-08-27 16:07 - 00000320 _____ C:\WINDOWS\Tasks\HPCeeScheduleForM.job
2016-12-28 23:28 - 2016-08-11 15:48 - 00000000 ____D C:\Users\M\AppData\Roaming\vlc
2016-12-28 23:17 - 2016-10-03 22:01 - 00000000 ____D C:\Users\M\Downloads\New
2016-12-28 22:34 - 2016-08-11 19:21 - 00000000 ____D C:\Users\M\AppData\Local\JDownloader v2.0
2016-12-28 21:53 - 2016-11-07 21:09 - 00002674 _____ C:\WINDOWS\setupact.log
2016-12-28 18:45 - 2016-09-26 21:46 - 00039919 ____H C:\Users\M\AppData\Local\IconCache.db
2016-12-26 19:42 - 2016-01-15 01:03 - 25194496 ___SH C:\pagefile.sys
2016-12-26 19:37 - 2016-07-16 09:29 - 00000000 ____D C:\WINDOWS\LiveKernelReports
2016-12-26 19:36 - 2016-07-16 03:22 - 00000000 ____D C:\WINDOWS\System32
2016-12-26 19:26 - 2016-09-26 20:52 - 00000000 ____D C:\Users\M
2016-12-26 19:25 - 2016-01-27 21:29 - 00004225 _____ C:\Users\M\Desktop\Nouveau document texte.txt
2016-12-26 19:16 - 2016-01-15 01:16 - 00000000 ___RD C:\Users\M\Desktop
2016-12-26 18:22 - 2016-08-11 15:05 - 00000000 ____D C:\Users\M\AppData\Local\Packages
2016-12-26 01:24 - 2016-07-16 03:22 - 00000000 ____D C:\WINDOWS\system32\config
2016-12-25 21:39 - 2016-08-11 19:16 - 00000000 ____D C:\ProgramData\McAfee
2016-12-25 21:38 - 2016-11-26 21:14 - 00000000 ____D C:\Program Files\McAfee
2016-12-25 17:16 - 2016-02-14 14:48 - 00000000 ____D C:\Users\M\Downloads\Cours de CEC Tum App Locom
2016-12-25 17:12 - 2016-06-18 01:56 - 00000000 ____D C:\Users\M\Downloads\Pictures
2016-12-25 17:11 - 2016-02-14 14:50 - 00000000 ____D C:\Users\M\Downloads\Cours de CEC Méthodo de Rech
2016-12-25 17:08 - 2016-06-14 00:04 - 00000000 ____D C:\Users\M\Downloads\JDownloader@M
2016-12-25 16:59 - 2016-02-14 14:46 - 00000000 ____D C:\Users\M\Downloads\Dossier Prog Jan 2016
2016-12-25 16:39 - 2016-01-15 01:16 - 00000000 ___RD C:\Users\M\Documents
2016-12-25 16:38 - 2016-02-14 14:45 - 00000000 ____D C:\Users\M\Downloads\Dossier Music Jan 2016
2016-12-25 16:12 - 2016-06-21 01:05 - 00000000 ____D C:\Users\M\Downloads\La cheville vue de l'intérieur
2016-12-25 11:34 - 2016-11-21 16:47 - 00000000 ____D C:\Program Files\Mozilla Firefox
2016-12-25 11:34 - 2016-09-26 21:12 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-12-25 11:34 - 2016-09-26 20:42 - 00000000 ____D C:\WINDOWS\system32\SleepStudy
2016-12-25 11:34 - 2016-08-12 21:57 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service
2016-12-25 11:34 - 2016-01-15 01:03 - 268435456 ___SH C:\swapfile.sys
2016-12-25 11:04 - 2016-09-26 20:51 - 00524288 ___SH C:\WINDOWS\system32\config\COMPONENTS{5e8c1be4-4b78-11e6-80cb-90b11c253418}.TMContainer00000000000000000002.regtrans-ms
2016-12-25 11:04 - 2016-09-26 20:51 - 00065536 ___SH C:\WINDOWS\system32\config\COMPONENTS{5e8c1be4-4b78-11e6-80cb-90b11c253418}.TM.blf
2016-12-25 11:04 - 2016-07-16 03:22 - 44040192 _____ C:\WINDOWS\system32\config\COMPONENTS
2016-12-25 10:16 - 2013-08-22 09:17 - 00000000 ___HD C:\Users\Public\Desktop
2016-12-25 10:11 - 2016-09-26 20:51 - 00524288 ___SH C:\WINDOWS\system32\config\COMPONENTS{5e8c1be4-4b78-11e6-80cb-90b11c253418}.TMContainer00000000000000000001.regtrans-ms
2016-12-25 09:49 - 2016-07-16 03:22 - 00000000 ____D C:\WINDOWS\WinSxS
2016-12-24 21:09 - 2016-08-27 16:05 - 00000052 _____ C:\WINDOWS\system32\DOErrors.log
2016-12-24 21:09 - 2016-08-10 23:50 - 00000000 ____D C:\WINDOWS\Tasks
2016-12-24 21:09 - 2016-07-16 09:29 - 00000000 ____D C:\WINDOWS\system32\Tasks
2016-12-24 17:31 - 2016-07-16 09:29 - 00000000 ____D C:\WINDOWS\AppReadiness
2016-12-23 17:02 - 2016-01-15 01:16 - 00000000 ___SD C:\Users\M\AppData\LocalLow\Microsoft
2016-12-23 17:01 - 2016-07-16 09:29 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\StartUp
2016-12-23 17:01 - 2016-07-16 09:29 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs
2016-12-23 17:01 - 2016-07-16 09:29 - 00000000 ___HD C:\ProgramData
2016-12-23 17:01 - 2016-07-16 03:22 - 00000000 ___RD C:\Program Files
2016-12-23 16:11 - 2016-09-23 01:34 - 00000000 ____D C:\ProgramData\Package Cache
2016-12-23 16:11 - 2016-08-13 10:17 - 00000000 ____D C:\Program Files\Common Files\AV
2016-12-23 16:11 - 2016-07-16 09:29 - 00000000 __SHD C:\WINDOWS\Installer
2016-12-23 16:11 - 2016-07-16 03:22 - 00000000 ____D C:\Program Files\Common Files
2016-12-23 16:11 - 2016-03-03 23:12 - 00000000 ____D C:\Config.Msi
2016-12-23 16:02 - 2016-08-11 15:26 - 00000000 ____D C:\Users\M\AppData\Local\Adobe
2016-12-23 16:00 - 2016-07-16 09:29 - 00000000 ____D C:\WINDOWS\system32\Macromed
2016-12-23 13:46 - 2016-07-16 09:29 - 00000000 ____D C:\WINDOWS\system32\catroot2
2016-12-23 13:34 - 2016-07-16 09:29 - 00000000 ___HD C:\Program Files\WindowsApps
2016-12-21 22:37 - 2016-07-16 09:29 - 00000000 ___RD C:\Users\Public
2016-12-21 17:27 - 2016-07-16 09:29 - 00000000 __RSD C:\WINDOWS\assembly
2016-12-20 16:10 - 2016-08-11 15:40 - 00002216 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-12-18 20:58 - 2016-07-16 09:29 - 00000000 ____D C:\WINDOWS\rescache
2016-12-15 15:01 - 2016-09-05 17:14 - 00000000 ____D C:\UsbFix
2016-12-15 14:35 - 2016-09-05 17:14 - 00001485 _____ C:\Users\M\Desktop\UsbFix.lnk
2016-12-14 21:50 - 2016-01-10 09:41 - 00000000 __SHD C:\Boot
2016-12-14 21:48 - 2016-09-26 20:42 - 00354760 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2016-12-14 21:47 - 2016-09-26 20:42 - 00524288 ___SH C:\WINDOWS\system32\config\DRIVERS{5e8c1bea-4b78-11e6-80cb-90b11c253418}.TMContainer00000000000000000001.regtrans-ms
2016-12-14 21:47 - 2016-09-26 20:42 - 00065536 ___SH C:\WINDOWS\system32\config\DRIVERS{5e8c1bea-4b78-11e6-80cb-90b11c253418}.TM.blf
2016-12-14 21:47 - 2016-07-16 09:29 - 00000000 ____D C:\WINDOWS\system32\fr-FR
2016-12-14 21:47 - 2016-07-16 09:29 - 00000000 ____D C:\WINDOWS\system32\en-US
2016-12-14 21:47 - 2016-07-16 09:29 - 00000000 ____D C:\WINDOWS\system32\drivers
2016-12-14 21:47 - 2016-07-16 09:29 - 00000000 ____D C:\WINDOWS\system32\Boot
2016-12-14 21:47 - 2016-07-16 09:29 - 00000000 ____D C:\WINDOWS\ShellExperiences
2016-12-14 21:47 - 2016-07-16 09:29 - 00000000 ____D C:\WINDOWS\apppatch
2016-12-14 21:47 - 2016-07-16 03:22 - 70778880 _____ C:\WINDOWS\system32\config\SOFTWARE
2016-12-14 21:47 - 2016-07-16 03:22 - 12845056 _____ C:\WINDOWS\system32\config\SYSTEM
2016-12-14 21:47 - 2016-07-16 03:22 - 00524288 _____ C:\WINDOWS\system32\config\DEFAULT
2016-12-14 21:47 - 2016-07-16 03:22 - 00524288 _____ C:\WINDOWS\system32\config\BBI
2016-12-14 21:47 - 2016-07-16 03:22 - 00028672 _____ C:\WINDOWS\system32\config\SECURITY
2016-12-14 21:47 - 2016-07-16 03:22 - 00000000 ____D C:\WINDOWS\system32\DriverStore
2016-12-14 21:46 - 2016-07-16 09:30 - 00000796 ___SH C:\ProgramData\Microsoft\Windows\Start Menu\Programs\desktop.ini
2016-12-14 21:04 - 2016-07-16 09:19 - 00000000 ____D C:\WINDOWS\CbsTemp
2016-12-14 00:05 - 2016-08-11 19:36 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
2016-12-14 00:03 - 2016-08-11 19:25 - 00000000 ____D C:\ProgramData\Microsoft Help
2016-12-14 00:03 - 2016-08-10 23:50 - 00000167 _____ C:\WINDOWS\win.ini
2016-12-13 23:43 - 2016-08-11 18:26 - 00000000 ____D C:\WINDOWS\system32\MRT
2016-12-13 23:38 - 2016-08-11 18:26 - 133430776 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2016-12-12 00:56 - 2016-10-12 21:33 - 00835576 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2016-12-12 00:56 - 2016-10-12 21:33 - 00177656 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2016-12-10 00:29 - 2016-09-26 20:52 - 00524288 ___SH C:\Users\M\NTUSER.DAT{3a1a5eaa-8421-11e6-8757-fa2ec96a5e2a}.TMContainer00000000000000000002.regtrans-ms
2016-12-10 00:29 - 2016-09-26 20:52 - 00065536 ___SH C:\Users\M\NTUSER.DAT{3a1a5eaa-8421-11e6-8757-fa2ec96a5e2a}.TM.blf
2016-12-09 23:21 - 2016-08-11 00:41 - 01685746 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2016-12-09 23:21 - 2016-07-16 18:15 - 00633774 _____ C:\WINDOWS\system32\perfh00C.dat
2016-12-09 23:21 - 2016-07-16 18:15 - 00112920 _____ C:\WINDOWS\system32\perfc00C.dat
2016-12-09 23:21 - 2016-07-16 09:31 - 00770694 _____ C:\WINDOWS\system32\perfh009.dat
2016-12-09 23:21 - 2016-07-16 09:31 - 00172940 _____ C:\WINDOWS\system32\perfc009.dat
2016-12-09 23:21 - 2016-07-16 09:28 - 00000000 ____D C:\WINDOWS\INF
2016-12-09 23:16 - 2016-09-26 21:30 - 00000174 ___SH C:\Users\M\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\desktop.ini
2016-12-09 23:16 - 2016-09-26 20:52 - 00000000 ___RD C:\Users\M\AppData\Roaming\Microsoft\Windows\Start Menu\Programs
2016-12-09 23:16 - 2016-08-11 15:05 - 00000282 ___SH C:\Users\M\Desktop\desktop.ini
2016-12-09 23:16 - 2016-08-11 15:05 - 00000174 ___SH C:\Users\M\AppData\Roaming\Microsoft\Windows\Start Menu\desktop.ini
2016-12-09 23:16 - 2016-08-11 15:05 - 00000000 ___RD C:\Users\M\Searches
2016-12-09 23:16 - 2016-08-11 15:05 - 00000000 ___RD C:\Users\M\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2016-12-09 23:16 - 2016-08-11 15:05 - 00000000 ___RD C:\Users\M\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2016-12-09 23:16 - 2016-07-15 23:31 - 00000402 ___SH C:\Users\M\Documents\desktop.ini
2016-12-09 23:16 - 2016-07-15 23:31 - 00000282 ___SH C:\Users\M\Downloads\desktop.ini
2016-12-09 23:16 - 2016-01-15 01:24 - 00000000 ___RD C:\Users\M\Contacts
2016-12-09 23:16 - 2016-01-15 01:16 - 00000000 ___RD C:\Users\M\Videos
2016-12-09 23:16 - 2016-01-15 01:16 - 00000000 ___RD C:\Users\M\Saved Games
2016-12-09 23:16 - 2016-01-15 01:16 - 00000000 ___RD C:\Users\M\Pictures
2016-12-09 23:16 - 2016-01-15 01:16 - 00000000 ___RD C:\Users\M\Music
2016-12-09 23:16 - 2016-01-15 01:16 - 00000000 ___RD C:\Users\M\Links
2016-12-09 23:16 - 2016-01-15 01:16 - 00000000 ___RD C:\Users\M\Favorites
2016-12-09 23:16 - 2016-01-15 01:13 - 00000000 __RHD C:\Users\Public\AccountPictures
2016-12-09 23:15 - 2016-07-16 03:22 - 00262144 _____ C:\Users\Default\NTUSER.DAT
2016-12-09 22:30 - 2016-07-16 09:29 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2016-12-09 22:30 - 2016-07-16 09:29 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
2016-12-09 22:30 - 2016-07-16 09:29 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2016-12-09 22:30 - 2016-07-16 09:29 - 00000000 ____D C:\WINDOWS\system32\wbem
2016-12-09 22:30 - 2016-07-16 09:29 - 00000000 ____D C:\WINDOWS\system32\sr-Latn-CS
2016-12-09 22:30 - 2016-07-16 09:29 - 00000000 ____D C:\WINDOWS\system32\oobe
2016-12-09 22:30 - 2016-07-16 09:29 - 00000000 ____D C:\WINDOWS\bcastdvr
2016-12-09 22:30 - 2016-07-16 09:29 - 00000000 ____D C:\Program Files\Internet Explorer
2016-12-09 22:30 - 2016-07-16 03:22 - 00000000 ____D C:\WINDOWS\system32\Sysprep
2016-12-09 22:30 - 2016-07-16 03:22 - 00000000 ____D C:\WINDOWS\system32\Dism
2016-12-09 22:30 - 2016-07-16 03:22 - 00000000 ____D C:\WINDOWS\servicing
2016-12-09 15:52 - 2013-08-22 09:22 - 00389408 __RSH C:\bootmgr
2016-12-09 00:28 - 2016-10-16 01:17 - 00000000 ____D C:\Users\M\Desktop\Court CV
2016-12-03 15:47 - 2016-11-02 21:50 - 00070656 _____ C:\Users\M\Desktop\Plan_recherche 00.doc
2016-12-02 13:55 - 2016-08-11 20:27 - 00000000 ____D C:\Program Files\Spybot - Search & Destroy 2
==================== Fichiers à la racine de certains dossiers =======
2016-08-12 08:16 - 2016-08-12 08:16 - 0000057 _____ () C:\ProgramData\Ament.ini
2016-09-23 02:04 - 2016-09-23 02:04 - 0001143 _____ () C:\ProgramData\StreamingMediaTechnologyLog.txt
Certains fichiers dans TEMP:
====================
C:\Users\M\AppData\Local\Temp\proxy_vole1060615292894534333.dll
C:\Users\M\AppData\Local\Temp\proxy_vole3047260858106918130.dll
C:\Users\M\AppData\Local\Temp\proxy_vole6834071755603756725.dll
==================== Bamital & volsnap ======================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
C:\WINDOWS\explorer.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\winlogon.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\wininit.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\svchost.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\services.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\User32.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\userinit.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\rpcss.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\dnsapi.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\Drivers\volsnap.sys => Le fichier est signé numériquement
LastRegBack: 2017-01-01 21:23
==================== Fin de FRST.txt ============================