Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version:31-08-2015 Exécuté par User (administrateur) sur SAMSUNG (02-09-2015 19:58:51) Exécuté depuis C:\Users\User\Desktop Profils chargés: User (Profils disponibles: User) Platform: Windows 10 Home (X64) Langue: Français (France) Internet Explorer Version 11 (Navigateur par défaut: Chrome) Mode d'amorçage: Normal Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processus (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.) (AMD) C:\WINDOWS\System32\atiesrxx.exe (AMD) C:\WINDOWS\System32\atieclxx.exe (Hewlett-Packard Company) C:\Program Files (x86)\Hp\Common\HPSupportSolutionsFrameworkService.exe (BlueStack Systems, Inc.) C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe (Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe (BlueStack Systems, Inc.) C:\Program Files (x86)\BlueStacks\HD-UpdaterService.exe (Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe () C:\Program Files (x86)\40D64780-1441019846-11E2-B75C-D682995C0000\jnscC9ED.tmp () C:\Program Files (x86)\40D64780-1441019846-11E2-B75C-D682995C0000\knsu76E5.tmpfs (Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe (Samsung Electronics CO., LTD.) C:\ProgramData\Samsung\SW Update Service\SWMAgent.exe () C:\Program Files (x86)\40D64780-1441019846-11E2-B75C-D682995C0000\hnsaEB23.tmp (Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe (Microsoft Corporation) C:\WINDOWS\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersServer.exe (Microsoft Corporation) C:\WINDOWS\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe (Microsoft Corporation) C:\WINDOWS\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe (Microsoft Corporation) C:\WINDOWS\System32\SettingSyncHost.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Nota Inc.) C:\Program Files (x86)\Gyazo\GyStation.exe (Microsoft Corporation) C:\Users\User\AppData\Local\Microsoft\OneDrive\OneDrive.exe (Hewlett-Packard) C:\Program Files (x86)\Hp\HP Software Update\hpwuschd2.exe (McAfee, Inc.) C:\Program Files\McAfee Security Scan\3.11.149\SSScheduler.exe (Microsoft Corporation) C:\WINDOWS\System32\rundll32.exe (Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Samsung Electronics CO., LTD.) C:\Program Files\Samsung\S Agent\CommonAgent.exe (Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.6120.42011.0_x64__8wekyb3d8bbwe\HxMail.exe (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.6120.42011.0_x64__8wekyb3d8bbwe\HxTsr.exe (Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe ==================== Registre (Avec liste blanche) =========================== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.) HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13885696 2015-06-24] (Realtek Semiconductor) HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard) HKLM-x32\...\Run: [] => [X] HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [334896 2015-06-08] (Oracle Corporation) HKLM-x32\...\Run: [BlueStacks Agent] => C:\Program Files (x86)\BlueStacks\HD-Agent.exe [904824 2015-08-19] (BlueStack Systems, Inc.) HKU\S-1-5-21-821314145-1687148295-769642077-1001\...\Run: [Gyazo] => C:\Program Files (x86)\Gyazo\GyStation.exe [3098424 2015-08-19] (Nota Inc.) HKU\S-1-5-21-821314145-1687148295-769642077-1001\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3696912 2014-03-04] (Disc Soft Ltd) HKU\S-1-5-21-821314145-1687148295-769642077-1001\...\Run: [OneDrive] => C:\Users\User\AppData\Local\Microsoft\OneDrive\OneDrive.exe [404064 2015-08-19] (Microsoft Corporation) HKU\S-1-5-21-821314145-1687148295-769642077-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8455960 2015-08-20] (Piriform Ltd) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk [2015-03-03] ShortcutTarget: McAfee Security Scan Plus.lnk -> C:\Program Files\McAfee Security Scan\3.11.149\SSScheduler.exe (McAfee, Inc.) Startup: C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Alertes de surveillance de l'encre - HP Officejet 2620 series.lnk [2015-02-23] ShortcutTarget: Alertes de surveillance de l'encre - HP Officejet 2620 series.lnk -> C:\Program Files\HP\HP Officejet 2620 series\Bin\HPStatusBL.dll (Hewlett-Packard Co.) ==================== Internet (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.) Hosts: 0.0.0.1 mssplus.mcafee.com Tcpip\Parameters: [DhcpNameServer] 192.168.1.254 Tcpip\..\Interfaces\{d4d0e312-8fad-4981-9af2-e3dabc9427d6}: [DhcpNameServer] 192.168.1.254 Internet Explorer: ================== HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/?LinkID=617910&ResetID=130854934031623940&GUID=8CB7FE4C-44A4-4664-A655-82170900D4C7 HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.com HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm HKU\S-1-5-21-821314145-1687148295-769642077-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/?LinkID=617910&ResetID=130854934031633765&GUID=8CB7FE4C-44A4-4664-A655-82170900D4C7 SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office15\OCHelper.dll [2012-10-01] (Microsoft Corporation) BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-05-01] (Microsoft Corporation) BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office15\URLREDIR.DLL [2012-10-01] (Microsoft Corporation) BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL [2012-10-01] (Microsoft Corporation) BHO-x32: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll [2012-10-01] (Microsoft Corporation) BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_51\bin\ssv.dll [2015-08-16] (Oracle Corporation) BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-05-01] (Microsoft Corporation) BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office15\URLREDIR.DLL [2012-10-01] (Microsoft Corporation) BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL [2012-10-01] (Microsoft Corporation) BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_51\bin\jp2ssv.dll [2015-08-16] (Oracle Corporation) Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL [2012-10-01] (Microsoft Corporation) Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-05-01] (Microsoft Corporation) Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-05-01] (Microsoft Corporation) FireFox: ======== FF ProfilePath: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\7kvale12.default FF Homepage: hxxp://www.google.fr/ FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~1\Office15\NPSPWRAP.DLL [2012-10-01] (Microsoft Corporation) FF Plugin-x32: @java.com/DTPlugin,version=11.51.2 -> C:\Program Files (x86)\Java\jre1.8.0_51\bin\dtplugin\npDeployJava1.dll [2015-08-16] (Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=11.51.2 -> C:\Program Files (x86)\Java\jre1.8.0_51\bin\plugin2\npjp2.dll [2015-08-16] (Oracle Corporation) FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2012-10-01] (Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL [2012-10-01] (Microsoft Corporation) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.13\npGoogleUpdate3.dll [2015-08-28] (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.13\npGoogleUpdate3.dll [2015-08-28] (Google Inc.) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2015-06-29] (Adobe Systems Inc.) FF Plugin HKU\S-1-5-21-821314145-1687148295-769642077-1001: @squareclock.com/SQ3DPlayer_Production_Castorama_Dressing_Internet -> C:\Users\User\AppData\Local\SquareClock.Production_Castorama_Dressing_Internet\NPSQ3D.dll [2015-05-23] (SquareClock SAS) FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npMeetingJoinPluginOC.dll [2012-10-01] (Microsoft Corporation) FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll [2015-06-29] (Adobe Systems Inc.) FF Extension: Pas de nom - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\7kvale12.default\extensions\defsearchp@gmail.com [non trouvé(e)] FF Extension: Pas de nom - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\7kvale12.default\extensions\deskCutv2@gmail.com [non trouvé(e)] FF Extension: Pas de nom - C:\Program Files\shopperz300820151453\Firefox [non trouvé(e)] FF Extension: Pas de nom - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\7kvale12.default\extensions\d4db60df25f14dae9dd18@185c395f9e794c9ab86be3eb.com [non trouvé(e)] Chrome: ======= CHR StartupUrls: Default -> "https://www.google.fr/?gws_rd=ssl" CHR DefaultSuggestURL: Default -> {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&gs_ri={google:suggestRid}&xssi=t&q={searchTerms}&{google:inputType}{google:cursorPosition}{google:currentPageUrl}{google:pageClassification}{google:searchVersion}{google:sessionToken}{google:prefetchQuery}sugkey={google:suggestAPIKeyParameter} CHR Profile: C:\Users\User\AppData\Local\Google\Chrome\User Data\Default CHR Extension: (Google Slides) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2014-11-27] CHR Extension: (Entanglement Web App) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\aciahcmjmecflokailenpkdchphgkefd [2014-12-31] CHR Extension: (Google Docs) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-11-27] CHR Extension: (Google Drive) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-11-27] CHR Extension: (YouTube) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-11-27] CHR Extension: (Adblock Plus) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2015-07-05] CHR Extension: (Google Search) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-11-27] CHR Extension: (Google Sheets) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2014-11-27] CHR Extension: (Chrome Hotword Shared Module) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-03-15] CHR Extension: (Poppit!) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\mcbkbpnkkkipelfledbfocopglifcfmi [2014-12-31] CHR Extension: (Chrome Web Store Payments) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-11-27] CHR Extension: (Gmail) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-11-27] CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2015-05-01] ==================== Services (Avec liste blanche) ======================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) S3 BstHdAndroidSvc; C:\Program Files (x86)\BlueStacks\HD-Service.exe [437880 2015-08-19] (BlueStack Systems, Inc.) R2 BstHdLogRotatorSvc; C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe [413304 2015-08-19] (BlueStack Systems, Inc.) R2 BstHdUpdaterSvc; C:\Program Files (x86)\BlueStacks\HD-UpdaterService.exe [839288 2015-08-19] (BlueStack Systems, Inc.) R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1394816 2015-05-01] (Microsoft Corporation) R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1772672 2015-05-01] (Microsoft Corporation) R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hp\Common\HPSupportSolutionsFrameworkService.exe [89864 2014-12-11] (Hewlett-Packard Company) R2 jimocoso; C:\Program Files (x86)\40D64780-1441019846-11E2-B75C-D682995C0000\jnscC9ED.tmp [227328 2015-08-31] () [Fichier non signé] S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.11.149\McCHSvc.exe [289256 2015-06-26] (McAfee, Inc.) R2 SWUpdateService; C:\ProgramData\Samsung\SW Update Service\SWMAgent.exe [3000664 2014-10-21] (Samsung Electronics CO., LTD.) R2 totyseku; C:\Program Files (x86)\40D64780-1441019846-11E2-B75C-D682995C0000\hnsaEB23.tmp [137728 2015-08-31] () [Fichier non signé] R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [362928 2015-07-10] (Microsoft Corporation) R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-07-10] (Microsoft Corporation) R2 mikypuku; C:\Program Files (x86)\40D64780-1441019846-11E2-B75C-D682995C0000\knsu76E5.tmpfs [X] ===================== Pilotes (Avec liste blanche) ========================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R3 AtiHDAudioService; C:\Windows\system32\drivers\AtihdWT6.sys [102912 2015-05-28] (Advanced Micro Devices) R2 BstHdDrv; C:\Program Files (x86)\BlueStacks\HD-Hypervisor-amd64.sys [146040 2015-08-19] (BlueStack Systems) R3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [237568 2015-07-10] (Microsoft Corporation) R1 dtsoftbus01; C:\Windows\System32\drivers\dtsoftbus01.sys [283064 2015-02-12] (Disc Soft Ltd) R3 DVB7700ALL; C:\Windows\System32\Drivers\dvb7700all.sys [798760 2015-08-16] (DiBcom) R3 i8042HDR; C:\Windows\system32\DRIVERS\i8042HDR.sys [15920 2009-08-14] (Windows (R) Codename Longhorn DDK provider) S0 LSI_SAS3i; C:\Windows\System32\drivers\lsi_sas3i.sys [99168 2015-07-10] (Avago Technologies) R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [587264 2015-07-10] (Realtek ) S3 UdeCx; C:\Windows\System32\drivers\udecx.sys [44032 2015-07-10] () S3 wfpcapture; \SystemRoot\System32\drivers\wfpcapture.sys [X] ==================== NetSvcs (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) ==================== Un mois - Créés - fichiers et dossiers ======== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2015-09-02 19:58 - 2015-09-02 19:59 - 00017470 _____ C:\Users\User\Desktop\FRST.txt 2015-09-02 19:58 - 2015-09-02 19:58 - 00000000 ____D C:\FRST 2015-09-02 19:58 - 2015-09-02 19:52 - 02188800 _____ (Farbar) C:\Users\User\Desktop\FRST64.exe 2015-09-02 19:56 - 2015-09-02 19:56 - 00016148 _____ C:\WINDOWS\system32\SAMSUNG_User_HistoryPrediction.bin 2015-09-02 19:40 - 2015-09-02 19:41 - 00014620 _____ C:\Users\User\Desktop\ZHPCleaner.txt 2015-09-02 19:37 - 2015-09-02 19:21 - 24345872 _____ (Malwarebytes Corporation ) C:\Users\User\Desktop\mbam-setup-2.1.8.1057.exe 2015-09-02 19:35 - 2015-09-02 19:35 - 00000910 _____ C:\Users\User\Desktop\ZHPCleaner.lnk 2015-09-02 19:24 - 2015-09-02 19:25 - 00000123 _____ C:\Users\User\Desktop\chrome.url 2015-09-02 19:22 - 2015-09-02 19:22 - 00002852 _____ C:\WINDOWS\System32\Tasks\CCleanerSkipUAC 2015-09-02 19:20 - 2015-09-02 19:20 - 00000564 _____ C:\WINDOWS\PFRO.log 2015-09-02 19:05 - 2015-09-02 18:52 - 01654272 _____ C:\Users\User\Desktop\adwcleaner_5.005.exe 2015-09-02 19:05 - 2015-09-02 18:51 - 01941504 _____ C:\Users\User\Desktop\ZHPCleaner (1).exe 2015-09-02 18:59 - 2015-09-02 19:34 - 00000275 _____ C:\WINDOWS\WindowsUpdate.log 2015-09-02 18:46 - 2015-09-02 18:46 - 00000863 _____ C:\Users\Public\Desktop\CCleaner.lnk 2015-09-02 18:46 - 2015-09-02 18:46 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner 2015-09-02 18:46 - 2015-09-02 18:46 - 00000000 ____D C:\Program Files\CCleaner 2015-09-02 18:42 - 2015-09-02 18:26 - 03521472 _____ (Nicolas Coolman ) C:\Users\User\Desktop\ZHPFix.exe 2015-09-02 18:17 - 2015-09-02 18:17 - 00123164 _____ C:\Users\User\Desktop\ZHPDiag.txt 2015-09-02 18:12 - 2015-09-02 18:12 - 01917952 _____ C:\Users\User\ZHPDiag3.exe 2015-09-02 18:11 - 2015-09-02 19:41 - 00000000 ____D C:\Users\User\AppData\Roaming\ZHP 2015-09-02 18:11 - 2015-09-02 18:13 - 00000901 _____ C:\Users\User\Desktop\ZHPDiag.lnk 2015-09-02 17:48 - 2015-09-02 17:09 - 01917952 _____ C:\Users\User\Desktop\ZHPDiag3.exe 2015-09-02 13:44 - 2015-09-02 13:44 - 00000000 ____D C:\Recovery 2015-09-02 13:19 - 2015-09-02 13:43 - 00000000 ___HD C:\$Windows.~BT 2015-09-01 15:02 - 2015-09-02 15:01 - 00000000 _____ C:\Recovery.txt 2015-09-01 14:11 - 2015-09-01 14:12 - 06667640 _____ (Piriform Ltd) C:\Users\User\Desktop\ccsetup509.exe 2015-09-01 14:09 - 2015-09-01 14:09 - 00000000 ___HD C:\OneDriveTemp 2015-08-31 23:16 - 2015-09-02 18:58 - 00000000 ____D C:\WINDOWS\Minidump 2015-08-31 14:00 - 2015-09-01 00:20 - 00000004 _____ C:\WINDOWS\SysWOW64\029B560A371F4E00AB32838EBC01B9E7 2015-08-31 13:18 - 2015-08-08 13:02 - 00000854 _____ C:\WINDOWS\system32\Drivers\etc\hp.bak 2015-08-31 13:17 - 2015-09-02 18:44 - 00004736 _____ C:\WINDOWS\SysWOW64\Toheosyzk.ini 2015-08-31 13:17 - 2015-09-02 18:44 - 00002448 _____ C:\WINDOWS\SysWOW64\ToheosyzkOff.ini 2015-08-31 13:17 - 2015-09-02 18:44 - 00002448 _____ C:\WINDOWS\system32\ToheosyzkOff.ini 2015-08-31 13:17 - 2015-08-31 13:18 - 00000000 ____D C:\Program Files (x86)\40D64780-1441019846-11E2-B75C-D682995C0000 2015-08-31 13:17 - 2015-08-30 13:56 - 00353648 _____ C:\WINDOWS\system32\Toheosyzk64.dll 2015-08-31 13:17 - 2015-08-30 13:56 - 00283504 _____ C:\WINDOWS\SysWOW64\Toheosyzk.dll 2015-08-31 13:16 - 2015-08-31 13:16 - 00000102 _____ C:\ProgramData\{262E20B8-6E20-4CEF-B1FD-D022AB1085F5}.dat 2015-08-31 13:16 - 2015-08-31 13:16 - 00000000 ____D C:\WINDOWS\system32\abis 2015-08-31 13:02 - 2015-08-31 13:03 - 00677005 _____ C:\Users\User\Downloads\MediaPlayerSetup7.3.3__6629_i1614724169_il7.rar 2015-08-31 13:02 - 2015-08-31 13:02 - 00677005 _____ C:\Users\User\Downloads\MediaPlayerSetup7.3.3__6629_i1614722901_il7.rar 2015-08-30 03:07 - 2015-08-30 03:07 - 00010925 _____ C:\Users\User\Downloads\minions-2015-hc-truefrench-hdrip-720p-md-xvid-mzisys-55e257703be92.torrent 2015-08-30 03:02 - 2015-08-30 03:02 - 00012992 _____ C:\Users\User\Downloads\a-thousand-times-good-night-2014-french-bdrip-x264-ext-mzisys-55e2562a9ec92.torrent 2015-08-28 18:32 - 2015-08-19 06:50 - 00609592 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll 2015-08-28 00:42 - 2015-08-28 00:42 - 00028581 _____ C:\Users\User\Downloads\good-kill-2014-truefrench-brrip-xvid-svr-55df925689abb.torrent 2015-08-28 00:36 - 2015-08-28 00:36 - 00030522 _____ C:\Users\User\Downloads\minions-2015-hc-truefrench-hdrip-md-x264-extreme-55df9103e6031.torrent 2015-08-28 00:30 - 2015-08-28 00:30 - 00028500 _____ C:\Users\User\Downloads\the-cobbler-2014-truefrench-bdrip-xvid-extreme-55df8f7bc4d22.torrent 2015-08-27 12:29 - 2015-09-02 19:00 - 00000000 ____D C:\Program Files (x86)\BlueStacks 2015-08-27 12:29 - 2015-08-27 12:29 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BlueStacks 2015-08-27 12:29 - 2015-08-27 12:29 - 00000000 ____D C:\ProgramData\BlueStacks 2015-08-27 12:26 - 2015-09-02 18:58 - 00000000 ____D C:\ProgramData\BlueStacksSetup 2015-08-27 12:26 - 2015-08-27 12:26 - 00000000 ____D C:\Users\User\AppData\Local\Bluestacks 2015-08-27 12:03 - 2015-08-27 12:26 - 14634624 _____ (BlueStack Systems Inc.) C:\Users\User\Downloads\ThinInstaller_native (1).exe 2015-08-27 01:54 - 2015-08-27 01:54 - 00452865 _____ C:\Users\User\Documents\ouaaa.htm 2015-08-19 08:26 - 2015-08-13 06:33 - 24593408 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll 2015-08-19 08:26 - 2015-08-13 06:23 - 02178560 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll 2015-08-19 08:26 - 2015-08-13 06:22 - 02093056 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidsvc.dll 2015-08-19 08:26 - 2015-08-13 06:20 - 00414208 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll 2015-08-19 08:26 - 2015-08-13 06:17 - 01795072 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll 2015-08-19 08:26 - 2015-08-13 06:07 - 19323392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll 2015-08-19 08:26 - 2015-08-13 05:53 - 00311808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll 2015-08-19 08:26 - 2015-08-11 12:04 - 04532304 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe 2015-08-19 08:26 - 2015-08-11 12:04 - 02462648 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll 2015-08-19 08:26 - 2015-08-11 12:04 - 01087296 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll 2015-08-19 08:26 - 2015-08-11 12:03 - 08021840 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe 2015-08-19 08:26 - 2015-08-11 12:03 - 00442208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys 2015-08-19 08:26 - 2015-08-11 12:02 - 00554744 _____ (Microsoft Corporation) C:\WINDOWS\system32\directmanipulation.dll 2015-08-19 08:26 - 2015-08-11 12:02 - 00292856 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppHost.exe 2015-08-19 08:26 - 2015-08-11 12:02 - 00080720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\stornvme.sys 2015-08-19 08:26 - 2015-08-11 11:57 - 03622256 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll 2015-08-19 08:26 - 2015-08-11 11:52 - 00993104 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReAgent.dll 2015-08-19 08:26 - 2015-08-11 11:50 - 01643872 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll 2015-08-19 08:26 - 2015-08-11 11:40 - 04048808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe 2015-08-19 08:26 - 2015-08-11 11:40 - 02151208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll 2015-08-19 08:26 - 2015-08-11 11:40 - 00918320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll 2015-08-19 08:26 - 2015-08-11 11:38 - 00454000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\directmanipulation.dll 2015-08-19 08:26 - 2015-08-11 11:37 - 00243800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppHost.exe 2015-08-19 08:26 - 2015-08-11 11:31 - 02880032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll 2015-08-19 08:26 - 2015-08-11 11:26 - 00845664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ReAgent.dll 2015-08-19 08:26 - 2015-08-11 11:23 - 16706560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll 2015-08-19 08:26 - 2015-08-11 11:22 - 21875200 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll 2015-08-19 08:26 - 2015-08-11 11:21 - 00148992 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringservice.dll 2015-08-19 08:26 - 2015-08-11 11:21 - 00052224 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringclient.dll 2015-08-19 08:26 - 2015-08-11 11:20 - 02224640 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll 2015-08-19 08:26 - 2015-08-11 11:20 - 00483328 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll 2015-08-19 08:26 - 2015-08-11 11:19 - 00235520 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Notifications.dll 2015-08-19 08:26 - 2015-08-11 11:18 - 00235008 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserMgrProxy.dll 2015-08-19 08:26 - 2015-08-11 11:16 - 02416640 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll 2015-08-19 08:26 - 2015-08-11 11:14 - 00404480 _____ C:\WINDOWS\system32\diagtrack_wininternal.dll 2015-08-19 08:26 - 2015-08-11 11:13 - 00413184 _____ C:\WINDOWS\system32\diagtrack_win.dll 2015-08-19 08:26 - 2015-08-11 11:11 - 02446336 _____ C:\WINDOWS\system32\InputService.dll 2015-08-19 08:26 - 2015-08-11 11:11 - 00553472 _____ (Microsoft Corporation) C:\WINDOWS\system32\GamePanel.exe 2015-08-19 08:26 - 2015-08-11 11:10 - 00778752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll 2015-08-19 08:26 - 2015-08-11 11:10 - 00324096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll 2015-08-19 08:26 - 2015-08-11 11:10 - 00293376 _____ C:\WINDOWS\system32\TextInputFramework.dll 2015-08-19 08:26 - 2015-08-11 11:09 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuautoappupdate.dll 2015-08-19 08:26 - 2015-08-11 11:08 - 00893440 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApiPublic.dll 2015-08-19 08:26 - 2015-08-11 11:08 - 00563200 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApi.dll 2015-08-19 08:26 - 2015-08-11 11:07 - 01178112 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll 2015-08-19 08:26 - 2015-08-11 11:07 - 00593920 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll 2015-08-19 08:26 - 2015-08-11 11:07 - 00115712 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeParserTask.exe 2015-08-19 08:26 - 2015-08-11 11:06 - 07523328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll 2015-08-19 08:26 - 2015-08-11 11:06 - 02662400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll 2015-08-19 08:26 - 2015-08-11 11:05 - 03527168 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll 2015-08-19 08:26 - 2015-08-11 11:05 - 00996352 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXService.dll 2015-08-19 08:26 - 2015-08-11 11:05 - 00342016 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationGeofences.dll 2015-08-19 08:26 - 2015-08-11 11:05 - 00269312 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationFramework.dll 2015-08-19 08:26 - 2015-08-11 11:05 - 00137216 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationPermissions.dll 2015-08-19 08:26 - 2015-08-11 11:05 - 00078848 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationFrameworkInternalPS.dll 2015-08-19 08:26 - 2015-08-11 11:03 - 02558976 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll 2015-08-19 08:26 - 2015-08-11 11:02 - 03588096 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys 2015-08-19 08:26 - 2015-08-11 11:02 - 01890304 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll 2015-08-19 08:26 - 2015-08-11 11:02 - 00621056 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll 2015-08-19 08:26 - 2015-08-11 11:02 - 00186368 _____ (Microsoft Corporation) C:\WINDOWS\system32\cloudAP.dll 2015-08-19 08:26 - 2015-08-11 11:01 - 01334784 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll 2015-08-19 08:26 - 2015-08-11 11:00 - 00336384 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe 2015-08-19 08:26 - 2015-08-11 11:00 - 00274432 _____ (Microsoft Corporation) C:\WINDOWS\system32\syncutil.dll 2015-08-19 08:26 - 2015-08-11 10:59 - 01106432 _____ (Microsoft Corporation) C:\WINDOWS\system32\sysmain.dll 2015-08-19 08:26 - 2015-08-11 10:59 - 00642560 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdbui.dll 2015-08-19 08:26 - 2015-08-11 10:59 - 00123392 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll 2015-08-19 08:26 - 2015-08-11 10:59 - 00042496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tetheringclient.dll 2015-08-19 08:26 - 2015-08-11 10:58 - 00372224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneDriveSettingSyncProvider.dll 2015-08-19 08:26 - 2015-08-11 10:57 - 13024768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll 2015-08-19 08:26 - 2015-08-11 10:57 - 00159744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserMgrProxy.dll 2015-08-19 08:26 - 2015-08-11 10:51 - 01916928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll 2015-08-19 08:26 - 2015-08-11 10:51 - 01823232 _____ C:\WINDOWS\SysWOW64\InputService.dll 2015-08-19 08:26 - 2015-08-11 10:50 - 00420352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GamePanel.exe 2015-08-19 08:26 - 2015-08-11 10:50 - 00200704 _____ C:\WINDOWS\SysWOW64\TextInputFramework.dll 2015-08-19 08:26 - 2015-08-11 10:50 - 00131584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Core.TextInput.dll 2015-08-19 08:26 - 2015-08-11 10:49 - 00586752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll 2015-08-19 08:26 - 2015-08-11 10:49 - 00247808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll 2015-08-19 08:26 - 2015-08-11 10:48 - 00671232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MbaeApiPublic.dll 2015-08-19 08:26 - 2015-08-11 10:47 - 00448512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MbaeApi.dll 2015-08-19 08:26 - 2015-08-11 10:45 - 18805760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll 2015-08-19 08:26 - 2015-08-11 10:45 - 01820672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Logon.dll 2015-08-19 08:26 - 2015-08-11 10:43 - 02748416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll 2015-08-19 08:26 - 2015-08-11 10:42 - 05454848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll 2015-08-19 08:26 - 2015-08-11 10:40 - 01964544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll 2015-08-19 08:26 - 2015-08-11 10:40 - 01593856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll 2015-08-19 08:26 - 2015-08-11 10:40 - 01112064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll 2015-08-19 08:26 - 2015-08-11 10:39 - 00280576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe 2015-08-19 08:26 - 2015-08-11 10:38 - 00162304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ReInfo.dll 2015-08-17 07:01 - 2015-08-17 07:01 - 00001229 _____ C:\Users\User\Downloads\robin-des-bois-la-veritable-histoire-2015-french-dvdrip-xvid-lys-55d16aa419869.torrent 2015-08-17 07:00 - 2015-08-17 07:00 - 00001210 _____ C:\Users\User\Downloads\cendrillon-2015-truefrench-bdrip-xvid-ext-55d16a8b7f1f5.torrent 2015-08-17 06:59 - 2015-08-17 06:59 - 00028261 _____ C:\Users\User\Downloads\les-gorilles-2015-truefrench-webrip-xvid-svr-55d16a304e3e7.torrent 2015-08-17 06:49 - 2015-08-17 06:49 - 00000000 ____D C:\Users\User\AppData\Local\NetworkTiles 2015-08-16 21:54 - 2015-08-16 21:54 - 00000000 ____D C:\WINDOWS\system32\SleepStudy 2015-08-16 21:13 - 2015-08-18 09:14 - 00000000 ____D C:\Users\User\AppData\Local\MicrosoftEdge 2015-08-16 21:06 - 2015-08-19 23:09 - 00002412 _____ C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2015-08-16 21:06 - 2015-08-16 21:06 - 00798760 _____ (DiBcom) C:\WINDOWS\system32\Drivers\dvb7700all.sys 2015-08-16 21:06 - 2015-08-16 21:06 - 00215592 _____ (YUAN Inc) C:\WINDOWS\system32\avfcp.ax 2015-08-16 21:06 - 2015-08-16 21:06 - 00173608 _____ (YUAN Inc) C:\WINDOWS\SysWOW64\avfcp32.ax 2015-08-16 21:05 - 2015-08-16 21:05 - 00000000 ____D C:\ProgramData\Microsoft OneDrive 2015-08-16 21:03 - 2015-08-16 21:03 - 00000000 ____D C:\Users\User\AppData\Local\Publishers 2015-08-16 21:02 - 2015-08-17 07:08 - 00000000 ____D C:\Users\User\AppData\Local\Comms 2015-08-16 21:02 - 2015-08-16 21:02 - 00000020 ___SH C:\Users\User\ntuser.ini 2015-08-16 21:02 - 2015-08-16 21:02 - 00000000 ____D C:\Users\User\AppData\Local\TileDataLayer 2015-08-16 20:48 - 2015-09-02 18:58 - 00000000 ___DC C:\WINDOWS\Panther 2015-08-16 20:45 - 2015-08-16 20:45 - 22322624 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 20857848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 14241792 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 12589056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 12503552 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 11557888 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 11262464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 09889792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 08613200 _____ (Microsoft Corp.) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 07569408 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 07051264 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 06878256 _____ (Microsoft Corp.) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 06488312 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 06305792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Search.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 06101504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mos.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 05118024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 05076480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingMaps.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 04791296 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 04760576 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 04611584 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 04398080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Search.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 04350464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExplorerFrame.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 04169728 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbon.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 03780096 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 03687936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 03579904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 03443200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIRibbon.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 03362816 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 03248640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 03248128 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 02741760 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 02646528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 02606080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msftedit.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 02498808 _____ C:\WINDOWS\system32\CoreUIComponents.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 02415104 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 02235904 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 02207744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 02147080 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d9.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 02125312 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 02116448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys 2015-08-16 20:45 - 2015-08-16 20:45 - 02112512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\actxprxy.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 01985024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 01983840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys 2015-08-16 20:45 - 2015-08-16 20:45 - 01867160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d9.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 01822280 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 01773056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 01769056 _____ C:\WINDOWS\SysWOW64\CoreUIComponents.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 01714176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.appcore.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 01679360 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 01611264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 01602560 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 01601536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Speech.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 01591856 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 01562968 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpmde.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 01561872 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 01533496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 01521664 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActiveSyncProvider.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 01420288 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataService.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 01418240 _____ (Microsoft Corporation) C:\WINDOWS\system32\RecoveryDrive.exe 2015-08-16 20:45 - 2015-08-16 20:45 - 01417216 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 01411072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Editing.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 01396064 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 01383424 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys 2015-08-16 20:45 - 2015-08-16 20:45 - 01380864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 01365072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 01356368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmde.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 01294352 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi 2015-08-16 20:45 - 2015-08-16 20:45 - 01290752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Shell.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 01274880 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifinetworkmanager.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 01212416 _____ (Microsoft Corporation) C:\WINDOWS\system32\RemoteNaturalLanguage.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 01203200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 01203200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Unistore.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 01201664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Cred.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 01200400 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 01169408 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 01168736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys 2015-08-16 20:45 - 2015-08-16 20:45 - 01162240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Speech.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 01135312 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipUp.exe 2015-08-16 20:45 - 2015-08-16 20:45 - 01123400 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe 2015-08-16 20:45 - 2015-08-16 20:45 - 01101792 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 01067520 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 01061888 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 01043968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Editing.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 01043872 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 01031680 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorDataService.exe 2015-08-16 20:45 - 2015-08-16 20:45 - 01025840 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsrcsnk.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 01018568 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi 2015-08-16 20:45 - 2015-08-16 20:45 - 01008640 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00980832 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi 2015-08-16 20:45 - 2015-08-16 20:45 - 00966424 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00962400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00934752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\refsv1.sys 2015-08-16 20:45 - 2015-08-16 20:45 - 00925696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Unistore.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00911360 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedStartModel.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00902656 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe 2015-08-16 20:45 - 2015-08-16 20:45 - 00898560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RemoteNaturalLanguage.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00896144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsrcsnk.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00877016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00872448 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntshrui.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00869376 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlCore.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00859136 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00858408 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe 2015-08-16 20:45 - 2015-08-16 20:45 - 00856064 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContactApis.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00855552 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00850432 _____ (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00846336 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00841728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Import.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00832512 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00828416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Bluetooth.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00823336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MrmCoreR.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00816576 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00814080 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctfuimanager.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00808856 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00801632 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe 2015-08-16 20:45 - 2015-08-16 20:45 - 00799232 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpccpl.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00798208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntshrui.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00783872 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00783112 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00762896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00754688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Cred.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00752640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctfuimanager.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00752640 _____ (Microsoft Corporation) C:\WINDOWS\system32\efscore.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00750592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comdlg32.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00713312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00712192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe 2015-08-16 20:45 - 2015-08-16 20:45 - 00705520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00700256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe 2015-08-16 20:45 - 2015-08-16 20:45 - 00695136 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimgapi.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00685568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdiWiFi.sys 2015-08-16 20:45 - 2015-08-16 20:45 - 00680448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Connectivity.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00679424 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppContracts.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00677888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00670208 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00667136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttp.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00658568 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipSVC.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00654848 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToManager.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00644128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00632168 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00630160 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00623616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ContactApis.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00608936 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe 2015-08-16 20:45 - 2015-08-16 20:45 - 00601344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys 2015-08-16 20:45 - 2015-08-16 20:45 - 00599552 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnapps.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00595456 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00594472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00590336 _____ (Microsoft Corporation) C:\WINDOWS\system32\MessagingDataModel2.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00589824 _____ (Microsoft Corporation) C:\WINDOWS\system32\uxtheme.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00589312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\efscore.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00584704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIRibbonRes.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00584704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Sensors.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00584704 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbonRes.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00584544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wimgapi.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00583128 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00578048 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe 2015-08-16 20:45 - 2015-08-16 20:45 - 00575488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Import.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00573440 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.Desktop.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00569344 _____ (Microsoft Corporation) C:\WINDOWS\system32\MCRecvSrc.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00565088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\acpi.sys 2015-08-16 20:45 - 2015-08-16 20:45 - 00542720 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFolder.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00539728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe 2015-08-16 20:45 - 2015-08-16 20:45 - 00527952 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00521568 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimserv.exe 2015-08-16 20:45 - 2015-08-16 20:45 - 00521216 _____ (Microsoft Corporation) C:\WINDOWS\system32\PsmServiceExtHost.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00518144 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00516960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBHUB3.SYS 2015-08-16 20:45 - 2015-08-16 20:45 - 00510976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00507696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxgi.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00505696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys 2015-08-16 20:45 - 2015-08-16 20:45 - 00505344 _____ C:\WINDOWS\system32\EditionUpgradeManagerObj.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00503808 _____ (Microsoft Corporation) C:\WINDOWS\system32\tileobjserver.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00503296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.Connectivity.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00501008 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00498016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbhub.sys 2015-08-16 20:45 - 2015-08-16 20:45 - 00497152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToManager.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00494592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LogonController.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00494592 _____ (Microsoft Corporation) C:\WINDOWS\system32\StoreAgent.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00487424 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmkvsrcsnk.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00485888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BlockedShutdown.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00480256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MCRecvSrc.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00473088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpnapps.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00465920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MessagingDataModel2.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00458752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\uxtheme.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00452608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchFolder.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00446976 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapConfiguration.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00445240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00441344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppContracts.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00437248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Sensors.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00430592 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcomapi.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00425824 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00421888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00416256 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdedit.exe 2015-08-16 20:45 - 2015-08-16 20:45 - 00414720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BioFeedback.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00407616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00407040 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredProvDataModel.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00393568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys 2015-08-16 20:45 - 2015-08-16 20:45 - 00384000 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppBroker.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00373248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmkvsrcsnk.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00366592 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00365056 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00359936 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncsi.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00356352 _____ (Microsoft Corporation) C:\WINDOWS\system32\stobject.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00343040 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00342528 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvr.exe 2015-08-16 20:45 - 2015-08-16 20:45 - 00335360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CredProvDataModel.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00335248 _____ (Microsoft Corporation) C:\WINDOWS\system32\wintrust.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00333168 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFPlay.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00329728 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00328704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapConfiguration.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00325984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys 2015-08-16 20:45 - 2015-08-16 20:45 - 00322048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.BlockedShutdown.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00322048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\stobject.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00317440 _____ (Microsoft Corporation) C:\WINDOWS\system32\configmanager2.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00316928 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConhostV2.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00311808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppBroker.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00310784 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsApi.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00310784 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActionCenter.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00306688 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationObjFactory.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00303616 _____ (Microsoft Corporation) C:\WINDOWS\system32\MBMediaManager.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00303104 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00296960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Bluetooth.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00294912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00291840 _____ (Microsoft Corporation) C:\WINDOWS\system32\systemcpl.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00290312 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininit.exe 2015-08-16 20:45 - 2015-08-16 20:45 - 00287744 _____ (Microsoft Corporation) C:\WINDOWS\system32\provhandlers.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00285632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFPlay.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00283648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.BioFeedback.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00282112 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEEventDispatcher.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00280064 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00279552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\systemcpl.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00275456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcastdvr.exe 2015-08-16 20:45 - 2015-08-16 20:45 - 00273920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00271872 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConsoleLogon.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00268800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NotificationObjFactory.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00268800 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00265480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wintrust.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00263168 _____ (Microsoft Corporation) C:\WINDOWS\system32\DisplayManager.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00261632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActionCenter.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00253952 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_UserAccount.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00252768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00251392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SensorsApi.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00247808 _____ C:\WINDOWS\system32\facecredentialprovider.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00243248 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00242176 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00237392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdyboost.sys 2015-08-16 20:45 - 2015-08-16 20:45 - 00232960 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicesFlowBroker.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00229376 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorService.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00217088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VEEventDispatcher.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00215040 _____ (Microsoft Corporation) C:\WINDOWS\system32\notepad.exe 2015-08-16 20:45 - 2015-08-16 20:45 - 00215040 _____ (Microsoft Corporation) C:\WINDOWS\notepad.exe 2015-08-16 20:45 - 2015-08-16 20:45 - 00208736 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00208384 _____ (Microsoft Corporation) C:\WINDOWS\system32\srumsvc.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00207872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\notepad.exe 2015-08-16 20:45 - 2015-08-16 20:45 - 00204288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmcsp.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00204288 _____ (Microsoft Corporation) C:\WINDOWS\system32\OmaDmAgent.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00200528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wof.sys 2015-08-16 20:45 - 2015-08-16 20:45 - 00195584 _____ (Microsoft Corporation) C:\WINDOWS\system32\fwpolicyiomgr.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00195072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.LockScreen.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00193536 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedStartModelShim.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00193024 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseModernAppMgmtCSP.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00191488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DisplayManager.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00190464 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReInfo.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00187904 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00186880 _____ (Microsoft Corporation) C:\WINDOWS\system32\BootMenuUX.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00185856 _____ (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00181760 _____ (Microsoft Corporation) C:\WINDOWS\system32\shutdownux.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00181088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00179712 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_SignInOptions.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00179712 _____ (Microsoft Corporation) C:\WINDOWS\system32\coredpus.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00179200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srumsvc.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00176640 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdboot.exe 2015-08-16 20:45 - 2015-08-16 20:45 - 00171520 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinBioDataModel.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00169984 _____ (Microsoft Corporation) C:\WINDOWS\system32\storewuauth.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00168960 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe 2015-08-16 20:45 - 2015-08-16 20:45 - 00167424 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Privacy.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00163328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fwpolicyiomgr.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00162304 _____ (Microsoft Corporation) C:\WINDOWS\system32\SubscriptionMgr.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00155136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tunnel.sys 2015-08-16 20:45 - 2015-08-16 20:45 - 00151040 _____ (Microsoft Corporation) C:\WINDOWS\system32\TabSvc.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00150528 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe 2015-08-16 20:45 - 2015-08-16 20:45 - 00137216 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEStoreEventHandlers.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00122880 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEDataLayerHelpers.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00120832 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmclient.exe 2015-08-16 20:45 - 2015-08-16 20:45 - 00120832 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkStatus.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00116736 _____ (Microsoft Corporation) C:\WINDOWS\system32\sendmail.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00107520 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmapi.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00104960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sendmail.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00102752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mountmgr.sys 2015-08-16 20:45 - 2015-08-16 20:45 - 00097128 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcd.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00093696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmapi.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00091648 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsNativeApi.V2.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00084480 _____ (Microsoft Corporation) C:\WINDOWS\system32\spbcd.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00082616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcd.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00081920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VEDataLayerHelpers.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00080384 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxSysprep.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00078848 _____ (Microsoft Corporation) C:\WINDOWS\system32\VPNv2CSP.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00078336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SensorsNativeApi.V2.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00075264 _____ (Microsoft Corporation) C:\WINDOWS\system32\ACPBackgroundManagerPolicy.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\system32\setbcdlocale.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00069120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\spbcd.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.ProxyStub.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00067072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbser.sys 2015-08-16 20:45 - 2015-08-16 20:45 - 00065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\msiexec.exe 2015-08-16 20:45 - 2015-08-16 20:45 - 00065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthhfenum.sys 2015-08-16 20:45 - 2015-08-16 20:45 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\unenrollhook.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00061280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dam.sys 2015-08-16 20:45 - 2015-08-16 20:45 - 00060928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.OneCore.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msiexec.exe 2015-08-16 20:45 - 2015-08-16 20:45 - 00057856 _____ (Microsoft Corporation) C:\WINDOWS\system32\hmkd.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00056320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.PAL.Desktop.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00055296 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe 2015-08-16 20:45 - 2015-08-16 20:45 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmprc.exe 2015-08-16 20:45 - 2015-08-16 20:45 - 00052264 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wpcfltr.sys 2015-08-16 20:45 - 2015-08-16 20:45 - 00046432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msgpiowin32.sys 2015-08-16 20:45 - 2015-08-16 20:45 - 00046080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\UcmUcsi.sys 2015-08-16 20:45 - 2015-08-16 20:45 - 00045568 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00045056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hmkd.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00041984 _____ (Microsoft Corporation) C:\WINDOWS\system32\VoiceActivationManager.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00037376 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00034816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VoiceActivationManager.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00032768 _____ C:\WINDOWS\system32\LicenseManagerApi.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\system32\calc.exe 2015-08-16 20:45 - 2015-08-16 20:45 - 00031232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\calc.exe 2015-08-16 20:45 - 2015-08-16 20:45 - 00028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationControllerPS.dll 2015-08-16 20:45 - 2015-08-16 20:45 - 00024576 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManagerShellext.exe 2015-08-16 20:42 - 2015-08-16 20:42 - 00008192 _____ C:\WINDOWS\system32\config\userdiff 2015-08-16 20:41 - 2015-08-16 20:41 - 00000000 ____D C:\WINDOWS\SysWOW64\XPSViewer 2015-08-16 20:41 - 2015-08-16 20:41 - 00000000 ____D C:\Program Files\Reference Assemblies 2015-08-16 20:41 - 2015-08-16 20:41 - 00000000 ____D C:\Program Files\MSBuild 2015-08-16 20:41 - 2015-08-16 20:41 - 00000000 ____D C:\Program Files (x86)\Reference Assemblies 2015-08-16 20:41 - 2015-08-16 20:41 - 00000000 ____D C:\Program Files (x86)\MSBuild 2015-08-16 20:41 - 2009-08-14 21:58 - 00015920 _____ (Windows (R) Codename Longhorn DDK provider) C:\WINDOWS\system32\Drivers\i8042HDR.sys 2015-08-16 20:40 - 2015-06-17 19:10 - 01166520 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll 2015-08-16 20:40 - 2015-06-17 19:10 - 00124112 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll 2015-08-16 20:40 - 2015-06-17 19:10 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe 2015-08-16 20:40 - 2015-05-29 22:07 - 00778936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll 2015-08-16 20:40 - 2015-05-29 22:07 - 00102608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll 2015-08-16 20:40 - 2015-05-29 22:07 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe 2015-08-16 20:14 - 2015-08-16 20:14 - 00000000 _SHDL C:\Users\Default\Voisinage réseau 2015-08-16 20:14 - 2015-08-16 20:14 - 00000000 _SHDL C:\Users\Default\Voisinage d'impression 2015-08-16 20:14 - 2015-08-16 20:14 - 00000000 _SHDL C:\Users\Default\Modèles 2015-08-16 20:14 - 2015-08-16 20:14 - 00000000 _SHDL C:\Users\Default\Menu Démarrer 2015-08-16 20:14 - 2015-08-16 20:14 - 00000000 _SHDL C:\Users\Default\Documents\Mes vidéos 2015-08-16 20:14 - 2015-08-16 20:14 - 00000000 _SHDL C:\Users\Default\Documents\Mes images 2015-08-16 20:14 - 2015-08-16 20:14 - 00000000 _SHDL C:\Users\Default\Documents\Ma musique 2015-08-16 20:14 - 2015-08-16 20:14 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programmes 2015-08-16 20:14 - 2015-08-16 20:14 - 00000000 _SHDL C:\Users\Default\AppData\Local\Historique 2015-08-16 20:14 - 2015-08-16 20:14 - 00000000 _SHDL C:\Users\Default User\Documents\Mes vidéos 2015-08-16 20:14 - 2015-08-16 20:14 - 00000000 _SHDL C:\Users\Default User\Documents\Mes images 2015-08-16 20:14 - 2015-08-16 20:14 - 00000000 _SHDL C:\Users\Default User\Documents\Ma musique 2015-08-16 20:14 - 2015-08-16 20:14 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programmes 2015-08-16 20:14 - 2015-08-16 20:14 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Historique 2015-08-16 20:12 - 2015-08-16 20:12 - 00023108 _____ C:\WINDOWS\system32\emptyregdb.dat 2015-08-16 20:10 - 2015-09-02 19:35 - 01839260 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2015-08-16 20:03 - 2015-07-10 12:59 - 02718208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll 2015-08-16 20:01 - 2015-08-16 20:01 - 00001576 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk 2015-08-16 19:58 - 2015-08-16 19:58 - 00000000 ____D C:\WINDOWS\system32\config\bbimigrate 2015-08-16 19:56 - 2015-08-16 21:02 - 00000000 ___RD C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories 2015-08-16 19:56 - 2015-08-16 19:56 - 00000000 _SHDL C:\Users\User\Voisinage réseau 2015-08-16 19:56 - 2015-08-16 19:56 - 00000000 _SHDL C:\Users\User\Voisinage d'impression 2015-08-16 19:56 - 2015-08-16 19:56 - 00000000 _SHDL C:\Users\User\Modèles 2015-08-16 19:56 - 2015-08-16 19:56 - 00000000 _SHDL C:\Users\User\Menu Démarrer 2015-08-16 19:56 - 2015-08-16 19:56 - 00000000 _SHDL C:\Users\User\Documents\Mes vidéos 2015-08-16 19:56 - 2015-08-16 19:56 - 00000000 _SHDL C:\Users\User\Documents\Mes images 2015-08-16 19:56 - 2015-08-16 19:56 - 00000000 _SHDL C:\Users\User\Documents\Ma musique 2015-08-16 19:56 - 2015-08-16 19:56 - 00000000 _SHDL C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programmes 2015-08-16 19:56 - 2015-08-16 19:56 - 00000000 _SHDL C:\Users\User\AppData\Local\Historique 2015-08-16 19:56 - 2015-07-10 13:04 - 00000000 __RSD C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell 2015-08-16 19:56 - 2015-07-10 13:04 - 00000000 ___RD C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools 2015-08-16 19:56 - 2015-07-10 13:04 - 00000000 ___RD C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility 2015-08-16 19:56 - 2015-07-10 13:04 - 00000000 ____D C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance 2015-08-16 19:54 - 2015-08-16 19:59 - 00000000 ____D C:\ProgramData\HP 2015-08-16 19:54 - 2015-08-16 19:54 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf 2015-08-16 19:54 - 2015-08-16 19:54 - 00000000 ____H C:\ProgramData\DP45977C.lfl 2015-08-16 19:54 - 2015-08-16 19:54 - 00000000 ____D C:\WINDOWS\SysWOW64\RTCOM 2015-08-16 19:54 - 2015-08-16 19:54 - 00000000 ____D C:\Program Files\Realtek 2015-08-16 19:54 - 2015-08-16 19:54 - 00000000 ____D C:\Program Files\Common Files\Atheros 2015-08-16 19:53 - 2015-08-16 19:58 - 00000000 ____D C:\Program Files\AMD 2015-08-16 19:53 - 2015-08-16 19:53 - 00000000 ____D C:\Program Files\Common Files\ATI Technologies 2015-08-16 19:53 - 2015-08-16 19:53 - 00000000 _____ C:\WINDOWS\ativpsrm.bin 2015-08-16 19:50 - 2015-08-16 19:51 - 00028632 _____ C:\WINDOWS\system32\NetSetupMig.log 2015-08-16 19:12 - 2015-08-16 20:14 - 00009528 _____ C:\WINDOWS\diagwrn.xml 2015-08-16 19:12 - 2015-08-16 20:14 - 00009528 _____ C:\WINDOWS\diagerr.xml 2015-08-13 02:26 - 2015-08-16 20:12 - 00003214 _____ C:\WINDOWS\System32\Tasks\{660D10F9-5C40-4F93-BB17-2E2A982CE875} 2015-08-09 16:31 - 2015-08-09 16:31 - 01519504 _____ C:\Users\User\Downloads\Gaspar+Noe+Love.rar_10924_i42441218_il345.exe.zip 2015-08-09 16:27 - 2015-08-09 16:27 - 00014408 _____ C:\Users\User\Downloads\Film_complet_en_francais_HD_TrueFrench 720p- YIFY.zip (1).torrent 2015-08-08 22:17 - 2015-08-08 22:17 - 00000000 ____D C:\Users\User\AppData\Local\GWX 2015-08-08 13:02 - 2015-08-16 20:02 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee Security Scan Plus 2015-08-08 13:02 - 2015-08-08 13:02 - 00000000 ____D C:\Program Files\McAfee Security Scan 2015-08-06 17:55 - 2015-08-06 17:55 - 00014407 _____ C:\Users\User\Downloads\the-age-of-adaline-2015-truefrench-bdrip-xvid-ext-mzisys-55c38387c7e7d.torrent 2015-08-06 05:22 - 2015-08-06 05:22 - 00012182 _____ C:\Users\User\Downloads\barely-lethal-2015-truefrench-bdrip-x264-ext-mzisys-55c2d30a522dd.torrent 2015-08-06 05:18 - 2015-08-06 05:18 - 00035707 _____ C:\Users\User\Downloads\secret-agency-barely-lethal-2015-truefrench-1080p-bluray-x264-svr-55c2d20863d19.torrent 2015-08-04 15:27 - 2015-08-04 15:27 - 00057584 _____ C:\Users\User\Downloads\minions-2015-truefrench-ts-md-xvid-eternity-55c0bdacc8b27.torrent 2015-08-03 12:11 - 2015-08-03 12:11 - 00014408 _____ C:\Users\User\Downloads\Film_complet_en_francais_HD_TrueFrench 720p- YIFY.zip.torrent 2015-08-03 12:04 - 2015-08-03 12:04 - 00017232 _____ C:\Users\User\Downloads\895ED9DF0B97550D30F8456FA65CA5F558331A96.torrent ==================== Un mois - Modifiés - fichiers et dossiers ======== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2015-09-02 19:55 - 2015-07-10 12:55 - 00000000 ____D C:\WINDOWS\CbsTemp 2015-09-02 19:35 - 2015-07-10 18:24 - 00819778 _____ C:\WINDOWS\system32\perfh00C.dat 2015-09-02 19:35 - 2015-07-10 18:24 - 00154144 _____ C:\WINDOWS\system32\perfc00C.dat 2015-09-02 19:35 - 2015-02-22 15:13 - 00000000 ____D C:\Users\User\OneDrive 2015-09-02 19:34 - 2014-11-27 13:03 - 00001092 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job 2015-09-02 19:34 - 2014-11-27 13:03 - 00001088 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job 2015-09-02 19:28 - 2015-07-10 14:21 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT 2015-09-02 19:28 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\sru 2015-09-02 19:28 - 2015-07-10 11:05 - 00524288 ___SH C:\WINDOWS\system32\config\BBI 2015-09-02 19:27 - 2015-06-22 18:46 - 00000000 ____D C:\AdwCleaner 2015-09-02 19:27 - 2015-02-01 07:00 - 00004156 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{BF6C7492-AE0B-4809-9099-B36747F86943} 2015-09-02 19:20 - 2015-07-10 14:20 - 00413352 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2015-09-02 19:13 - 2015-02-24 23:13 - 00001130 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk 2015-09-02 19:13 - 2015-02-24 23:13 - 00001118 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk 2015-09-02 18:58 - 2015-02-12 17:50 - 00000000 ____D C:\Users\User\AppData\Roaming\DAEMON Tools Lite 2015-09-02 18:58 - 2015-01-14 13:37 - 00000000 ____D C:\Users\User\AppData\Roaming\MPC-HC 2015-09-02 18:58 - 2014-12-31 17:22 - 00000000 ____D C:\Users\User\AppData\Roaming\Azureus 2015-09-02 18:28 - 2015-02-12 17:54 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox 2015-09-01 00:47 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\NDF 2015-09-01 00:45 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\LiveKernelReports 2015-08-31 23:33 - 2015-07-10 13:04 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel 2015-08-31 16:20 - 2015-03-03 23:31 - 00000000 ____D C:\Program Files (x86)\Adobe 2015-08-31 16:16 - 2014-11-27 13:04 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome 2015-08-31 13:16 - 2015-07-10 13:00 - 00680256 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll 2015-08-31 13:16 - 2015-07-10 13:00 - 00534064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnsapi.dll 2015-08-31 01:58 - 2014-12-31 17:38 - 00000000 ____D C:\Users\User\AppData\Roaming\Skype 2015-08-29 16:02 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\AppReadiness 2015-08-28 09:54 - 2014-11-27 12:58 - 00000000 ____D C:\Users\User\AppData\Roaming\Adobe 2015-08-28 09:29 - 2014-11-27 13:03 - 00004150 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA 2015-08-28 09:29 - 2014-11-27 13:03 - 00003918 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore 2015-08-27 12:30 - 2015-07-10 13:04 - 00000000 __RHD C:\Users\Public\Libraries 2015-08-21 20:51 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\rescache 2015-08-21 03:30 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns 2015-08-21 03:30 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\appraiser 2015-08-20 13:01 - 2015-07-08 09:51 - 00003508 _____ C:\WINDOWS\System32\Tasks\GyazoUpdateTaskMachineDaily 2015-08-20 13:01 - 2015-01-02 06:49 - 00003372 _____ C:\WINDOWS\System32\Tasks\GyazoUpdateTaskMachine 2015-08-20 13:01 - 2015-01-02 06:49 - 00000000 ____D C:\Program Files (x86)\Gyazo 2015-08-19 23:57 - 2015-06-28 17:48 - 00000000 ____D C:\Users\User\Documents\Bibliothèque calibre 2015-08-17 06:50 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\appcompat 2015-08-17 06:48 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\WinBioDatabase 2015-08-17 03:42 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\restore 2015-08-16 21:24 - 2014-11-27 12:58 - 00000000 ____D C:\Users\User\AppData\Local\Packages 2015-08-16 21:13 - 2015-01-11 16:45 - 00000000 ____D C:\ProgramData\Oracle 2015-08-16 21:12 - 2015-01-11 16:46 - 00097888 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll 2015-08-16 21:12 - 2015-01-11 16:45 - 00000000 ____D C:\Program Files (x86)\Java 2015-08-16 21:02 - 2015-07-10 13:04 - 00000000 ___RD C:\WINDOWS\PurchaseDialog 2015-08-16 21:02 - 2015-07-10 13:04 - 00000000 ___RD C:\WINDOWS\PrintDialog 2015-08-16 21:02 - 2015-07-10 13:04 - 00000000 ___RD C:\WINDOWS\MiracastView 2015-08-16 20:48 - 2015-07-10 13:04 - 00028672 _____ C:\WINDOWS\system32\config\BCD-Template 2015-08-16 20:46 - 2015-07-10 13:04 - 00000000 ___RD C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories 2015-08-16 20:46 - 2015-07-10 13:04 - 00000000 ___RD C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories 2015-08-16 20:46 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\SysWOW64\oobe 2015-08-16 20:46 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\SystemResetPlatform 2015-08-16 20:46 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\Provisioning 2015-08-16 20:46 - 2015-07-10 11:05 - 00000000 ____D C:\WINDOWS\SysWOW64\Dism 2015-08-16 20:46 - 2015-07-10 11:05 - 00000000 ____D C:\WINDOWS\system32\Dism 2015-08-16 20:41 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\SysWOW64\MUI 2015-08-16 20:41 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\MUI 2015-08-16 20:14 - 2015-07-10 13:04 - 00000000 ____D C:\Program Files\Windows NT 2015-08-16 20:14 - 2015-07-10 11:05 - 00000000 __RHD C:\Users\Default 2015-08-16 20:12 - 2015-08-01 23:57 - 00002998 _____ C:\WINDOWS\System32\Tasks\SUPatchForW10Up 2015-08-16 20:12 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\Registration 2015-08-16 20:12 - 2015-03-03 23:54 - 00003996 _____ C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task 2015-08-16 20:12 - 2015-02-23 20:15 - 00003722 _____ C:\WINDOWS\System32\Tasks\HPCustParticipation HP Officejet 2620 series 2015-08-16 20:12 - 2015-01-14 13:35 - 00003782 _____ C:\WINDOWS\System32\Tasks\klcp_update 2015-08-16 20:12 - 2014-12-31 17:26 - 00003262 _____ C:\WINDOWS\System32\Tasks\{C8195234-0A0F-4AEA-AF67-C5F00465FBDE} 2015-08-16 20:12 - 2014-11-27 13:08 - 00003152 _____ C:\WINDOWS\System32\Tasks\SAgent 2015-08-16 20:12 - 2014-11-27 13:04 - 00003706 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-821314145-1687148295-769642077-1001 2015-08-16 20:10 - 2015-07-10 13:04 - 00000000 __RSD C:\WINDOWS\Media 2015-08-16 20:02 - 2015-07-10 18:28 - 00000000 ____D C:\WINDOWS\ShellNew 2015-08-16 20:02 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\FxsTmp 2015-08-16 20:02 - 2015-07-10 11:05 - 00032768 ___SH C:\WINDOWS\system32\config\ELAM 2015-08-16 20:02 - 2015-06-28 17:47 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\calibre - E-book Management 2015-08-16 20:02 - 2015-04-04 20:46 - 00000000 ____D C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WBFS Manager 2015-08-16 20:02 - 2015-04-04 20:33 - 00000000 ____D C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR 2015-08-16 20:02 - 2015-04-04 20:33 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR 2015-08-16 20:02 - 2015-03-17 18:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GeoGebra 5 2015-08-16 20:02 - 2015-02-23 20:15 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP 2015-08-16 20:02 - 2015-02-12 17:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013 2015-08-16 20:02 - 2015-02-12 17:50 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DAEMON Tools Lite 2015-08-16 20:02 - 2015-01-14 13:35 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack 2015-08-16 20:02 - 2015-01-11 16:45 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java 2015-08-16 20:02 - 2015-01-11 16:21 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LibreOffice 4.3 2015-08-16 20:02 - 2015-01-10 17:12 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Enregistrement utilisateur de Canon MG3100 series 2015-08-16 20:02 - 2015-01-10 17:07 - 00000000 ____D C:\WINDOWS\system32\STRING 2015-08-16 20:02 - 2015-01-02 06:49 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Gyazo 2015-08-16 20:02 - 2014-12-31 17:38 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype 2015-08-16 20:02 - 2014-11-27 13:08 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Samsung 2015-08-16 20:01 - 2013-08-22 15:36 - 00000000 ____D C:\Users\Default.migrated 2015-08-16 19:59 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\SysWOW64\zh-HK 2015-08-16 19:59 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\SysWOW64\uk-UA 2015-08-16 19:59 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\SysWOW64\tr-TR 2015-08-16 19:59 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\SysWOW64\th-TH 2015-08-16 19:59 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\SysWOW64\sr-Latn-RS 2015-08-16 19:59 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\SysWOW64\sl-SI 2015-08-16 19:59 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\SysWOW64\sk-SK 2015-08-16 19:59 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\SysWOW64\ro-RO 2015-08-16 19:59 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\SysWOW64\lv-LV 2015-08-16 19:59 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\SysWOW64\lt-LT 2015-08-16 19:59 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\SysWOW64\hr-HR 2015-08-16 19:59 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\SysWOW64\he-IL 2015-08-16 19:59 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\SysWOW64\et-EE 2015-08-16 19:59 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\SysWOW64\en-GB 2015-08-16 19:59 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\SysWOW64\bg-BG 2015-08-16 19:59 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\SysWOW64\ar-SA 2015-08-16 19:59 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\zh-HK 2015-08-16 19:59 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\uk-UA 2015-08-16 19:59 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\tr-TR 2015-08-16 19:59 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\th-TH 2015-08-16 19:59 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\sr-Latn-RS 2015-08-16 19:59 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\spool 2015-08-16 19:59 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\sl-SI 2015-08-16 19:59 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\sk-SK 2015-08-16 19:59 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\ro-RO 2015-08-16 19:59 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\oobe 2015-08-16 19:59 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\lv-LV 2015-08-16 19:59 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\lt-LT 2015-08-16 19:59 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\InputMethod 2015-08-16 19:59 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\hr-HR 2015-08-16 19:59 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\he-IL 2015-08-16 19:59 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\et-EE 2015-08-16 19:59 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\en-GB 2015-08-16 19:59 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\bg-BG 2015-08-16 19:59 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\ar-SA 2015-08-16 19:59 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\InputMethod 2015-08-16 19:59 - 2015-06-27 12:16 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apowersoft 2015-08-16 19:59 - 2014-12-31 17:51 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mumble 2015-08-16 19:59 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\system32\WindowsInternal.Inbox.Shared 2015-08-16 19:59 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\system32\WindowsInternal.Inbox.Media.Shared 2015-08-16 19:59 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\MediaViewer 2015-08-16 19:59 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\ADFS 2015-08-16 19:58 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\Recovery 2015-08-16 19:58 - 2015-07-10 13:04 - 00000000 ____D C:\Program Files\Common Files\System 2015-08-16 19:58 - 2015-07-10 13:04 - 00000000 ____D C:\Program Files\Common Files\microsoft shared 2015-08-16 19:56 - 2015-07-10 11:05 - 00000000 ____D C:\WINDOWS\system32\Sysprep 2015-08-14 13:51 - 2015-02-01 07:00 - 00000000 __SHD C:\Users\User\AppData\Local\EmieUserList 2015-08-14 13:51 - 2015-02-01 07:00 - 00000000 __SHD C:\Users\User\AppData\Local\EmieSiteList 2015-08-14 13:51 - 2015-02-01 07:00 - 00000000 __SHD C:\Users\User\AppData\Local\EmieBrowserModeList 2015-08-12 00:28 - 2015-01-02 01:08 - 00000000 ____D C:\WINDOWS\system32\MRT 2015-08-12 00:26 - 2015-01-02 01:08 - 132483416 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2015-08-08 17:38 - 2015-07-10 13:06 - 00794088 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe 2015-08-08 17:38 - 2015-07-10 13:06 - 00179688 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl 2015-08-08 13:02 - 2015-03-03 23:32 - 00001950 _____ C:\Users\Public\Desktop\McAfee Security Scan Plus.lnk 2015-08-08 13:02 - 2015-03-03 23:32 - 00000000 ____D C:\ProgramData\McAfee Security Scan 2015-08-08 05:33 - 2013-08-22 17:36 - 00000000 ___RD C:\WINDOWS\ToastData ==================== Fichiers à la racine de certains dossiers ======= 2015-04-19 14:20 - 2015-04-19 14:20 - 0005872 _____ () C:\Users\User\AppData\Roaming\5spFX7xhNB02V 2015-04-19 14:20 - 2015-04-19 14:20 - 0005872 _____ () C:\Users\User\AppData\Roaming\7L0U0LLr4vOQQJ2kaAPQjlB 2015-04-14 18:28 - 2015-04-14 18:28 - 0004387 _____ () C:\Users\User\AppData\Roaming\fmBPTHerkQlrFdziy1G9IBXK 2015-04-14 18:28 - 2015-04-14 18:28 - 0004387 _____ () C:\Users\User\AppData\Roaming\JmIIVwhy78OiwhBUwd 2015-04-14 18:28 - 2015-04-14 18:28 - 0004387 _____ () C:\Users\User\AppData\Roaming\krcFUWSqvYZSSiX 2015-04-19 14:20 - 2015-04-19 14:20 - 0005872 _____ () C:\Users\User\AppData\Roaming\q4hKmSPuq4 2015-04-19 14:20 - 2015-04-19 14:20 - 0005872 _____ () C:\Users\User\AppData\Roaming\rzh0wh240gmcwqiXN5HNv 2015-04-05 11:35 - 2015-05-01 00:35 - 0000091 _____ () C:\Users\User\AppData\Roaming\WB.CFG 2015-04-14 18:28 - 2015-04-14 18:28 - 0004387 _____ () C:\Users\User\AppData\Roaming\yCSi9rRd7s0245YJRwKjAt4 2015-02-23 20:15 - 2015-02-23 20:15 - 0000057 _____ () C:\ProgramData\Ament.ini 2015-08-16 19:54 - 2015-08-16 19:54 - 0000000 ____H () C:\ProgramData\DP45977C.lfl 2015-08-31 13:16 - 2015-08-31 13:16 - 0000102 _____ () C:\ProgramData\{262E20B8-6E20-4CEF-B1FD-D022AB1085F5}.dat Fichiers à déplacer ou supprimer: ==================== C:\ProgramData\{262E20B8-6E20-4CEF-B1FD-D022AB1085F5}.dat C:\Users\User\ZHPDiag3.exe Certains fichiers dans TEMP: ==================== C:\Users\User\AppData\Local\Temp\sqlite3.dll C:\Users\User\AppData\Local\Temp\Uninstall.exe ==================== Bamital & volsnap ================= (Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.) C:\WINDOWS\system32\winlogon.exe => Le fichier est signé numériquement C:\WINDOWS\system32\wininit.exe => Le fichier est signé numériquement C:\WINDOWS\explorer.exe => Le fichier est signé numériquement C:\WINDOWS\SysWOW64\explorer.exe => Le fichier est signé numériquement C:\WINDOWS\system32\svchost.exe => Le fichier est signé numériquement C:\WINDOWS\SysWOW64\svchost.exe => Le fichier est signé numériquement C:\WINDOWS\system32\services.exe => Le fichier est signé numériquement C:\WINDOWS\system32\User32.dll => Le fichier est signé numériquement C:\WINDOWS\SysWOW64\User32.dll => Le fichier est signé numériquement C:\WINDOWS\system32\userinit.exe => Le fichier est signé numériquement C:\WINDOWS\SysWOW64\userinit.exe => Le fichier est signé numériquement C:\WINDOWS\system32\rpcss.dll => Le fichier est signé numériquement C:\WINDOWS\system32\dnsapi.dll [2015-07-10 13:00] - [2015-08-31 13:16] - 0680256 ____A (Microsoft Corporation) D72F00D038CAF288009C8A7FC3BA2B11 C:\WINDOWS\SysWOW64\dnsapi.dll [2015-07-10 13:00] - [2015-08-31 13:16] - 0534064 ____A (Microsoft Corporation) 4111492514CD8085E67C844E9C9FD74D C:\WINDOWS\system32\Drivers\volsnap.sys => Le fichier est signé numériquement LastRegBack: 2015-09-02 19:55 ==================== Fin de FRST.txt ============================