Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x86) Version: 13-07-2016 02 Exécuté par bLrS_FcB (administrateur) sur DESKTOP-3I58AF3 (14-07-2016 14:40:11) Exécuté depuis C:\Users\bLrS_FcB\Desktop Profils chargés: bLrS_FcB (Profils disponibles: bLrS_FcB) Platform: Microsoft Windows 10 Professionnel Version 1511 (X86) Langue: Français (France) Internet Explorer Version 11 (Navigateur par défaut: Edge) Mode d'amorçage: Normal Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processus (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.) (ESET) C:\Program Files\ESET\ESET Smart Security\ekrn.exe (Intel Corporation) C:\Windows\System32\IntelCpHeciSvc.exe (Intel Corporation) C:\Windows\System32\igfxCUIService.exe (ESET) C:\Program Files\ESET\ESET Smart Security\egui.exe (Intel Corporation) C:\Windows\System32\igfxEM.exe (Intel Corporation) C:\Windows\System32\igfxHK.exe (Intel Corporation) C:\Windows\System32\igfxTray.exe (Google Inc.) C:\Program Files\Google\Update\1.3.30.3\GoogleCrashHandler.exe (Intel Corporation) C:\Program Files\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe (Intel Corporation) C:\Program Files\Intel\Intel(R) Management Engine Components\LMS\LMS.exe () C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeHost.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.ZuneVideo_3.6.21441.0_x86__8wekyb3d8bbwe\Video.UI.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_11602.1.26.0_x86__8wekyb3d8bbwe\WinStore.Mobile.exe (Wondershare) C:\Program Files\Wondershare\WAF\2.2.1.5\WsAppService.exe (Piriform Ltd) C:\Program Files\CCleaner\CCleaner.exe (Intel Corporation) C:\Program Files\Intel\Intel(R) Security Assist\isa.exe (Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe (Tonec Inc.) C:\Program Files\Internet Download Manager\IDMan.exe (Tonec Inc.) C:\Program Files\Internet Download Manager\IEMonitor.exe () C:\Users\bLrS_FcB\Desktop\RogueKiller.exe (Microsoft Corporation) C:\Windows\System32\rdrleakdiag.exe (Mozilla Corporation) C:\Program Files\Mozilla Firefox\plugin-container.exe (Adobe Systems, Inc.) C:\Windows\System32\Macromed\Flash\FlashPlayerPlugin_22_0_0_209.exe (Adobe Systems, Inc.) C:\Windows\System32\Macromed\Flash\FlashPlayerPlugin_22_0_0_209.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe ==================== Registre (Avec liste blanche) =========================== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.) HKU\S-1-5-21-173915376-1407685926-3399606585-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner.exe [6775512 2016-06-10] (Piriform Ltd) HKU\S-1-5-21-173915376-1407685926-3399606585-1001\...\Run: [IDMan] => C:\Program Files\Internet Download Manager\IDMan.exe [3919928 2016-06-02] (Tonec Inc.) HKU\S-1-5-21-173915376-1407685926-3399606585-1001\...\MountPoints2: {6309745a-2a29-11e6-9c5d-94de808d5ab4} - "D:\Auto.exe" HKU\S-1-5-21-173915376-1407685926-3399606585-1001\...\MountPoints2: {63097469-2a29-11e6-9c5d-94de808d5ab4} - "D:\Auto.exe" HKU\S-1-5-21-173915376-1407685926-3399606585-1001\...\MountPoints2: {779df6cb-1da7-11e6-9c52-94de808d5ab4} - "D:\AutoRun.exe" ShellIconOverlayIdentifiers: [ IDM Shell Extension] -> {CDC95B92-E27C-4745-A8C5-64A52A78855D} => C:\Program Files\Internet Download Manager\IDMShellExt.dll [2015-08-14] (Tonec Inc.) ==================== Internet (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.) Hosts: 127.0.0.1 gilisoft.com Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{d0acab2f-176e-49fb-b7d5-574183603344}: [NameServer] 158.43.240.4,212.127.151.92 Tcpip\..\Interfaces\{d0acab2f-176e-49fb-b7d5-574183603344}: [DhcpNameServer] 192.168.1.1 Internet Explorer: ================== BHO: IDM integration (IDMIEHlprObj Class) -> {0055C089-8582-441B-A0BF-17B458C2A3A8} -> C:\Program Files\Internet Download Manager\IDMIECC.dll [2015-12-08] (Internet Download Manager, Tonec Inc.) FireFox: ======== FF ProfilePath: C:\Users\bLrS_FcB\AppData\Roaming\Mozilla\Firefox\Profiles\jj7o9opb.default FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_22_0_0_209.dll [2016-07-12] () FF Plugin: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.68 -> C:\Program Files\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2015-04-21] (Intel Corporation) FF Plugin: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2015-04-21] (Intel Corporation) FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-05-15] (Google Inc.) FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-05-15] (Google Inc.) FF Plugin: @videolan.org/vlc,version=2.2.3 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-04-26] (VideoLAN) FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2016-05-27] (Adobe Systems Inc.) FF Extension: IDM integration - C:\Program Files\Internet Download Manager\idmmzcc2.xpi [2016-04-26] FF HKU\S-1-5-21-173915376-1407685926-3399606585-1001\...\Firefox\Extensions: [mozilla_cc2@internetdownloadmanager.com] - C:\Program Files\Internet Download Manager\idmmzcc2.xpi FF HKU\S-1-5-21-173915376-1407685926-3399606585-1001\...\SeaMonkey\Extensions: [mozilla_cc2@internetdownloadmanager.com] - C:\Program Files\Internet Download Manager\idmmzcc2.xpi FF HKU\S-1-5-21-173915376-1407685926-3399606585-1001\...\SeaMonkey\Extensions: [mozilla_cc@internetdownloadmanager.com] - C:\Users\bLrS_FcB\AppData\Roaming\IDM\idmmzcc5 FF Extension: IDM CC - C:\Users\bLrS_FcB\AppData\Roaming\IDM\idmmzcc5 [2016-07-14] [non signé] Chrome: ======= CHR Profile: C:\Users\bLrS_FcB\AppData\Local\Google\Chrome\User Data\Default CHR Extension: (Google Slides) - C:\Users\bLrS_FcB\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-04-28] CHR Extension: (Google Docs) - C:\Users\bLrS_FcB\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-04-28] CHR Extension: (Google Drive) - C:\Users\bLrS_FcB\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-04-28] CHR Extension: (YouTube) - C:\Users\bLrS_FcB\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-04-28] CHR Extension: (Google Sheets) - C:\Users\bLrS_FcB\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-04-28] CHR Extension: (Google Docs hors connexion) - C:\Users\bLrS_FcB\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-04-28] CHR Extension: (IDM Integration Module) - C:\Users\bLrS_FcB\AppData\Local\Google\Chrome\User Data\Default\Extensions\ngpampappnmepgilojfohadhhmbhlaek [2016-06-14] CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\bLrS_FcB\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-28] CHR Extension: (Gmail) - C:\Users\bLrS_FcB\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-04-28] CHR HKLM\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files\Internet Download Manager\IDMGCExt.crx [2016-05-20] ==================== Services (Avec liste blanche) ======================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R3 cphs; C:\Windows\system32\IntelCpHeciSvc.exe [280696 2016-01-13] (Intel Corporation) R2 ekrn; C:\Program Files\ESET\ESET Smart Security\ekrn.exe [1982752 2016-04-13] (ESET) S3 ICCS; C:\Program Files\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [169752 2012-04-24] (Intel Corporation) R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [274040 2016-01-13] (Intel Corporation) S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [662016 2015-05-22] (Intel(R) Corporation) R3 Intel(R) Security Assist; C:\Program Files\Intel\Intel(R) Security Assist\isa.exe [335872 2015-05-19] (Intel Corporation) [Fichier non signé] S2 isaHelperSvc; C:\Program Files\Intel\Intel(R) Security Assist\isaHelperService.exe [7680 2015-05-19] () [Fichier non signé] R2 jhi_service; C:\Program Files\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [223520 2015-07-10] (Intel Corporation) S2 MBAMScheduler; C:\Program Files\Malwarebytes Anti-Malware\mbamscheduler.exe [1871160 2015-03-17] (Malwarebytes Corporation) S2 MBAMService; C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe [1080120 2015-03-17] (Malwarebytes Corporation) S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [280376 2015-10-30] (Microsoft Corporation) S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23264 2016-07-01] (Microsoft Corporation) R2 WsAppService; C:\Program Files\Wondershare\WAF\2.2.1.5\WsAppService.exe [412672 2016-06-02] (Wondershare) [Fichier non signé] S3 WsDrvInst; "C:\Program Files\Wondershare\Dr.Fone for Android\DriverInstall.exe" [X] ===================== Pilotes (Avec liste blanche) ========================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [206312 2016-05-12] (ESET) S0 eelam; C:\Windows\System32\DRIVERS\eelam.sys [14464 2016-05-12] (ESET) R1 ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [146024 2016-05-12] (ESET) R2 ekbdflt; C:\Windows\system32\DRIVERS\ekbdflt.sys [111040 2016-05-12] (ESET) R1 epfw; C:\Windows\system32\DRIVERS\epfw.sys [152728 2016-05-12] (ESET) R1 EpfwLWF; C:\Windows\system32\DRIVERS\EpfwLWF.sys [44608 2016-04-30] (ESET) R0 epfwwfp; C:\Windows\System32\DRIVERS\epfwwfp.sys [71488 2016-05-12] (ESET) S3 intaud_WaveExtensible; C:\Windows\system32\drivers\intelaud.sys [44016 2015-12-01] (Intel Corporation) R3 iwdbus; C:\Windows\System32\drivers\iwdbus.sys [35320 2015-12-01] (Intel Corporation) S3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [24448 2016-03-10] (Malwarebytes) S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [53120 2016-03-10] (Malwarebytes Corporation) R3 MEI; C:\Windows\System32\drivers\TeeDriverW8.sys [162080 2015-07-07] (Intel Corporation) R3 rt640x86; C:\Windows\System32\drivers\rt640x86.sys [790272 2016-02-19] (Realtek ) U3 TrueSight; C:\Windows\System32\drivers\TrueSight.sys [24688 2016-07-14] () S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [37400 2015-10-30] (Microsoft Corporation) S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [246104 2015-10-30] (Microsoft Corporation) S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [98648 2015-10-30] (Microsoft Corporation) S3 WUDFWpdMtp; C:\Windows\system32\DRIVERS\WUDFRd.sys [163328 2015-10-30] (Microsoft Corporation) S3 ma-config_x86; \??\C:\Program Files\DriversCloud.com\Drivers\ma-config_x86.sys [X] ==================== NetSvcs (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) ==================== Un mois - Créés - fichiers et dossiers ======== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2016-07-14 14:40 - 2016-07-14 14:40 - 00012147 _____ C:\Users\bLrS_FcB\Desktop\FRST.txt 2016-07-14 14:39 - 2016-07-14 14:40 - 00000000 ____D C:\FRST 2016-07-14 14:37 - 2016-07-14 14:37 - 01741312 _____ (Farbar) C:\Users\bLrS_FcB\Desktop\FRST.exe 2016-07-14 13:37 - 2016-07-14 13:37 - 00003834 _____ C:\Users\bLrS_FcB\Desktop\rk_EF9700002.tmp.txt 2016-07-14 13:35 - 2016-07-14 13:35 - 00003808 _____ C:\Users\bLrS_FcB\Desktop\rk_7CAD.tmp.txt 2016-07-14 13:09 - 2016-07-14 13:09 - 00024688 _____ C:\Windows\system32\Drivers\TrueSight.sys 2016-07-14 13:05 - 2016-07-14 13:05 - 00000000 ____D C:\ProgramData\RogueKiller 2016-07-14 13:02 - 2016-07-14 13:05 - 20201032 _____ C:\Users\bLrS_FcB\Desktop\RogueKiller.exe 2016-07-14 10:37 - 2016-07-14 11:05 - 00073512 _____ C:\Users\bLrS_FcB\Desktop\ZHPDiag.txt 2016-07-14 10:35 - 2016-07-14 10:35 - 02228224 _____ C:\Users\bLrS_FcB\ZHPDiag3.exe 2016-07-14 10:34 - 2016-07-14 10:34 - 00000868 _____ C:\Users\bLrS_FcB\Desktop\ZHPDiag.lnk 2016-07-14 02:14 - 2016-07-14 02:14 - 00000000 ____D C:\Program Files\CMAK 2016-07-13 11:14 - 2016-07-01 05:39 - 05793632 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe 2016-07-13 11:14 - 2016-07-01 05:35 - 00792328 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll 2016-07-13 11:14 - 2016-07-01 05:23 - 01334680 _____ (Microsoft Corporation) C:\Windows\system32\wmpmde.dll 2016-07-13 11:14 - 2016-07-01 05:21 - 02921880 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll 2016-07-13 11:14 - 2016-07-01 05:21 - 00957608 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll 2016-07-13 11:14 - 2016-07-01 05:21 - 00703840 _____ (Microsoft Corporation) C:\Windows\system32\WWAHost.exe 2016-07-13 11:14 - 2016-07-01 05:21 - 00260448 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pci.sys 2016-07-13 11:14 - 2016-07-01 05:20 - 01300016 _____ (Microsoft Corporation) C:\Windows\system32\WpcMon.exe 2016-07-13 11:14 - 2016-07-01 05:19 - 05598832 _____ (Microsoft Corporation) C:\Windows\system32\sppsvc.exe 2016-07-13 11:14 - 2016-07-01 05:19 - 01337680 _____ (Microsoft Corporation) C:\Windows\system32\sppobjs.dll 2016-07-13 11:14 - 2016-07-01 05:19 - 00633192 _____ (Microsoft Corporation) C:\Windows\system32\sppwinob.dll 2016-07-13 11:14 - 2016-07-01 05:18 - 00995296 _____ (Microsoft Corporation) C:\Windows\system32\ClipUp.exe 2016-07-13 11:14 - 2016-07-01 05:18 - 00505136 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys 2016-07-13 11:14 - 2016-07-01 05:18 - 00139616 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys 2016-07-13 11:14 - 2016-07-01 05:17 - 01536600 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll 2016-07-13 11:14 - 2016-07-01 05:12 - 02186864 _____ (Microsoft Corporation) C:\Windows\system32\d3d11.dll 2016-07-13 11:14 - 2016-07-01 05:12 - 01866104 _____ (Microsoft Corporation) C:\Windows\system32\d3d9.dll 2016-07-13 11:14 - 2016-07-01 05:11 - 01712480 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys 2016-07-13 11:14 - 2016-07-01 05:11 - 01522160 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll 2016-07-13 11:14 - 2016-07-01 05:11 - 00521152 _____ (Microsoft Corporation) C:\Windows\system32\dxgi.dll 2016-07-13 11:14 - 2016-07-01 05:11 - 00484192 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms2.sys 2016-07-13 11:14 - 2016-07-01 05:11 - 00336224 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys 2016-07-13 11:14 - 2016-07-01 05:10 - 00727752 _____ (Microsoft Corporation) C:\Windows\system32\dcomp.dll 2016-07-13 11:14 - 2016-07-01 04:45 - 00088576 _____ (Microsoft Corporation) C:\Windows\system32\olepro32.dll 2016-07-13 11:14 - 2016-07-01 04:45 - 00074752 _____ (Microsoft Corporation) C:\Windows\system32\MapsCSP.dll 2016-07-13 11:14 - 2016-07-01 04:41 - 00572928 _____ (Microsoft Corporation) C:\Windows\system32\WpcWebFilter.dll 2016-07-13 11:14 - 2016-07-01 04:41 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\MosHostClient.dll 2016-07-13 11:14 - 2016-07-01 04:39 - 13018112 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.dll 2016-07-13 11:14 - 2016-07-01 04:39 - 00049152 _____ (Microsoft Corporation) C:\Windows\system32\cdpreference.exe 2016-07-13 11:14 - 2016-07-01 04:38 - 00145920 _____ (Microsoft Corporation) C:\Windows\system32\MusNotification.exe 2016-07-13 11:14 - 2016-07-01 04:38 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\mapsupdatetask.dll 2016-07-13 11:14 - 2016-07-01 04:37 - 00584704 _____ (Microsoft Corporation) C:\Windows\system32\UIRibbonRes.dll 2016-07-13 11:14 - 2016-07-01 04:37 - 00059904 _____ (Microsoft Corporation) C:\Windows\system32\MosStorage.dll 2016-07-13 11:14 - 2016-07-01 04:37 - 00055808 _____ (Microsoft Corporation) C:\Windows\system32\eappprxy.dll 2016-07-13 11:14 - 2016-07-01 04:36 - 00087040 _____ (Microsoft Corporation) C:\Windows\system32\MapsBtSvc.dll 2016-07-13 11:14 - 2016-07-01 04:36 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\Windows.StateRepositoryClient.dll 2016-07-13 11:14 - 2016-07-01 04:36 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\Windows.StateRepositoryBroker.dll 2016-07-13 11:14 - 2016-07-01 04:35 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\tzautoupdate.dll 2016-07-13 11:14 - 2016-07-01 04:35 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\moshost.dll 2016-07-13 11:14 - 2016-07-01 04:35 - 00049152 _____ (Microsoft Corporation) C:\Windows\system32\MusNotificationUx.exe 2016-07-13 11:14 - 2016-07-01 04:34 - 09919488 _____ (Microsoft Corporation) C:\Windows\system32\twinui.dll 2016-07-13 11:14 - 2016-07-01 04:34 - 00180736 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll 2016-07-13 11:14 - 2016-07-01 04:33 - 00203776 _____ (Microsoft Corporation) C:\Windows\system32\moshostcore.dll 2016-07-13 11:14 - 2016-07-01 04:32 - 00157696 _____ (Microsoft Corporation) C:\Windows\system32\SimCfg.dll 2016-07-13 11:14 - 2016-07-01 04:32 - 00096256 _____ (Microsoft Corporation) C:\Windows\system32\eappgnui.dll 2016-07-13 11:14 - 2016-07-01 04:31 - 06529024 _____ (Microsoft Corporation) C:\Windows\system32\wwanmm.dll 2016-07-13 11:14 - 2016-07-01 04:31 - 00542720 _____ (Microsoft Corporation) C:\Windows\system32\msra.exe 2016-07-13 11:14 - 2016-07-01 04:31 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\nwifi.sys 2016-07-13 11:14 - 2016-07-01 04:31 - 00290304 _____ (Microsoft Corporation) C:\Windows\system32\WmpDui.dll 2016-07-13 11:14 - 2016-07-01 04:31 - 00260096 _____ (Microsoft Corporation) C:\Windows\system32\apprepsync.dll 2016-07-13 11:14 - 2016-07-01 04:31 - 00238592 _____ (Microsoft Corporation) C:\Windows\system32\eapphost.dll 2016-07-13 11:14 - 2016-07-01 04:31 - 00164352 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll 2016-07-13 11:14 - 2016-07-01 04:31 - 00129024 _____ (Microsoft Corporation) C:\Windows\system32\SimAuth.dll 2016-07-13 11:14 - 2016-07-01 04:30 - 00292864 _____ (Microsoft Corporation) C:\Windows\system32\dot3ui.dll 2016-07-13 11:14 - 2016-07-01 04:30 - 00248320 _____ (Microsoft Corporation) C:\Windows\system32\eapp3hst.dll 2016-07-13 11:14 - 2016-07-01 04:30 - 00246784 _____ (Microsoft Corporation) C:\Windows\system32\aadcloudap.dll 2016-07-13 11:14 - 2016-07-01 04:30 - 00190464 _____ (Microsoft Corporation) C:\Windows\system32\apprepapi.dll 2016-07-13 11:14 - 2016-07-01 04:30 - 00123392 _____ (Microsoft Corporation) C:\Windows\system32\ProximityCommon.dll 2016-07-13 11:14 - 2016-07-01 04:29 - 00569856 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll 2016-07-13 11:14 - 2016-07-01 04:29 - 00395776 _____ (Microsoft Corporation) C:\Windows\system32\WlanMediaManager.dll 2016-07-13 11:14 - 2016-07-01 04:29 - 00349696 _____ (Microsoft Corporation) C:\Windows\system32\MapConfiguration.dll 2016-07-13 11:14 - 2016-07-01 04:29 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\cdpsvc.dll 2016-07-13 11:14 - 2016-07-01 04:28 - 00439296 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.UX.EapRequestHandler.dll 2016-07-13 11:14 - 2016-07-01 04:28 - 00238592 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecsExt.dll 2016-07-13 11:14 - 2016-07-01 04:27 - 01764864 _____ (Microsoft Corporation) C:\Windows\system32\pnidui.dll 2016-07-13 11:14 - 2016-07-01 04:27 - 01226752 _____ (Microsoft Corporation) C:\Windows\system32\wcnwiz.dll 2016-07-13 11:14 - 2016-07-01 04:27 - 00846336 _____ (Microsoft Corporation) C:\Windows\system32\rasgcw.dll 2016-07-13 11:14 - 2016-07-01 04:27 - 00496128 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Security.Authentication.Web.Core.dll 2016-07-13 11:14 - 2016-07-01 04:27 - 00385024 _____ (Microsoft Corporation) C:\Windows\system32\wwanconn.dll 2016-07-13 11:14 - 2016-07-01 04:27 - 00284160 _____ (Microsoft Corporation) C:\Windows\system32\eappcfg.dll 2016-07-13 11:14 - 2016-07-01 04:26 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\JpMapControl.dll 2016-07-13 11:14 - 2016-07-01 04:26 - 00612352 _____ (Microsoft Corporation) C:\Windows\system32\MapsStore.dll 2016-07-13 11:14 - 2016-07-01 04:26 - 00413696 _____ (Microsoft Corporation) C:\Windows\system32\WLanConn.dll 2016-07-13 11:14 - 2016-07-01 04:25 - 01228800 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Globalization.dll 2016-07-13 11:14 - 2016-07-01 04:25 - 01152000 _____ (Microsoft Corporation) C:\Windows\system32\win32kbase.sys 2016-07-13 11:14 - 2016-07-01 04:25 - 00826368 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll 2016-07-13 11:14 - 2016-07-01 04:25 - 00784896 _____ (Microsoft Corporation) C:\Windows\system32\NMAA.dll 2016-07-13 11:14 - 2016-07-01 04:25 - 00711680 _____ (Microsoft Corporation) C:\Windows\system32\MapControlCore.dll 2016-07-13 11:14 - 2016-07-01 04:25 - 00689152 _____ (Microsoft Corporation) C:\Windows\system32\modernexecserver.dll 2016-07-13 11:14 - 2016-07-01 04:25 - 00482816 _____ (Microsoft Corporation) C:\Windows\system32\duser.dll 2016-07-13 11:14 - 2016-07-01 04:24 - 12586496 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll 2016-07-13 11:14 - 2016-07-01 04:24 - 01467392 _____ (Microsoft Corporation) C:\Windows\system32\GdiPlus.dll 2016-07-13 11:14 - 2016-07-01 04:24 - 01448960 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Graphics.Printing.3D.dll 2016-07-13 11:14 - 2016-07-01 04:24 - 00673280 _____ (Microsoft Corporation) C:\Windows\system32\aadtb.dll 2016-07-13 11:14 - 2016-07-01 04:24 - 00468992 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Graphics.Printing.dll 2016-07-13 11:14 - 2016-07-01 04:23 - 03695104 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_47.dll 2016-07-13 11:14 - 2016-07-01 04:23 - 01166848 _____ (Microsoft Corporation) C:\Windows\system32\werconcpl.dll 2016-07-13 11:14 - 2016-07-01 04:22 - 06295552 _____ (Microsoft Corporation) C:\Windows\system32\mos.dll 2016-07-13 11:14 - 2016-07-01 04:22 - 00639488 _____ (Microsoft Corporation) C:\Windows\system32\TokenBroker.dll 2016-07-13 11:14 - 2016-07-01 04:20 - 03196928 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_nt.dll 2016-07-13 11:14 - 2016-07-01 04:19 - 01987072 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll 2016-07-13 11:14 - 2016-07-01 04:19 - 01582080 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Immersive.dll 2016-07-13 11:14 - 2016-07-01 04:19 - 00401920 _____ (Microsoft Corporation) C:\Windows\system32\StikyNot.exe 2016-07-13 11:14 - 2016-07-01 04:18 - 05205504 _____ (Microsoft Corporation) C:\Windows\system32\BingMaps.dll 2016-07-13 11:14 - 2016-07-01 04:18 - 02973696 _____ (Microsoft Corporation) C:\Windows\system32\win32kfull.sys 2016-07-13 11:14 - 2016-07-01 04:18 - 01448960 _____ (Microsoft Corporation) C:\Windows\system32\dui70.dll 2016-07-13 11:14 - 2016-07-01 04:17 - 01800704 _____ (Microsoft Corporation) C:\Windows\system32\NetworkMobileSettings.dll 2016-07-13 11:14 - 2016-07-01 04:16 - 01896960 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentServer.dll 2016-07-13 11:14 - 2016-07-01 04:16 - 01635840 _____ (Microsoft Corporation) C:\Windows\system32\WpcWebSync.dll 2016-07-13 11:14 - 2016-07-01 04:15 - 03459584 _____ (Microsoft Corporation) C:\Windows\system32\UIRibbon.dll 2016-07-13 11:14 - 2016-07-01 04:15 - 02679808 _____ (Microsoft Corporation) C:\Windows\system32\netshell.dll 2016-07-13 11:14 - 2016-07-01 04:15 - 02604032 _____ (Microsoft Corporation) C:\Windows\system32\CertEnroll.dll 2016-07-13 11:14 - 2016-07-01 04:15 - 02501632 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll 2016-07-13 11:14 - 2016-07-01 04:15 - 02217984 _____ (Microsoft Corporation) C:\Windows\system32\Wpc.dll 2016-07-13 11:14 - 2016-07-01 04:15 - 01733632 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.dll 2016-07-13 11:14 - 2016-07-01 04:15 - 01626112 _____ (Microsoft Corporation) C:\Windows\system32\dwmcore.dll 2016-07-13 11:14 - 2016-07-01 04:14 - 04759040 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll 2016-07-13 11:14 - 2016-07-01 04:14 - 02680320 _____ (Microsoft Corporation) C:\Windows\system32\msftedit.dll 2016-07-13 11:14 - 2016-07-01 04:14 - 01498624 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll 2016-07-13 11:14 - 2016-07-01 04:14 - 00705024 _____ (Microsoft Corporation) C:\Windows\system32\samsrv.dll 2016-07-13 11:14 - 2016-07-01 04:12 - 02179584 _____ (Microsoft Corporation) C:\Windows\system32\Windows.StateRepository.dll 2016-07-13 11:14 - 2016-07-01 04:12 - 00339456 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll 2016-07-13 11:14 - 2016-07-01 04:08 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\GlobCollationHost.dll 2016-07-13 11:13 - 2016-07-01 05:38 - 01862008 _____ C:\Windows\system32\CoreUIComponents.dll 2016-07-13 11:13 - 2016-07-01 05:32 - 02885680 _____ (Microsoft Corporation) C:\Windows\system32\WSService.dll 2016-07-13 11:13 - 2016-07-01 05:31 - 00023776 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe 2016-07-13 11:13 - 2016-07-01 05:23 - 01349640 _____ (Microsoft Corporation) C:\Windows\system32\winmde.dll 2016-07-13 11:13 - 2016-07-01 05:20 - 21123320 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll 2016-07-13 11:13 - 2016-07-01 05:20 - 00613120 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Internal.Shell.Broker.dll 2016-07-13 11:13 - 2016-07-01 05:19 - 05240960 _____ (Microsoft Corporation) C:\Windows\system32\windows.storage.dll 2016-07-13 11:13 - 2016-07-01 05:19 - 04074160 _____ (Microsoft Corporation) C:\Windows\explorer.exe 2016-07-13 11:13 - 2016-07-01 05:19 - 01355336 _____ (Microsoft Corporation) C:\Windows\system32\propsys.dll 2016-07-13 11:13 - 2016-07-01 05:19 - 00569752 _____ (Microsoft Corporation) C:\Windows\system32\SHCore.dll 2016-07-13 11:13 - 2016-07-01 05:18 - 00510880 _____ (Microsoft Corporation) C:\Windows\system32\ClipSVC.dll 2016-07-13 11:13 - 2016-07-01 05:18 - 00064584 _____ (Microsoft Corporation) C:\Windows\system32\Clipc.dll 2016-07-13 11:13 - 2016-07-01 04:40 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Speech.Pal.dll 2016-07-13 11:13 - 2016-07-01 04:38 - 00036352 _____ (Microsoft Corporation) C:\Windows\system32\musdialoghandlers.dll 2016-07-13 11:13 - 2016-07-01 04:34 - 00205312 _____ (Microsoft Corporation) C:\Windows\system32\oemlicense.dll 2016-07-13 11:13 - 2016-07-01 04:34 - 00070656 _____ (Microsoft Corporation) C:\Windows\system32\AppCapture.dll 2016-07-13 11:13 - 2016-07-01 04:34 - 00040960 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Shell.Search.UriHandler.dll 2016-07-13 11:13 - 2016-07-01 04:33 - 00309760 _____ (Microsoft Corporation) C:\Windows\system32\ntprint.dll 2016-07-13 11:13 - 2016-07-01 04:33 - 00267776 _____ (Microsoft Corporation) C:\Windows\system32\usocore.dll 2016-07-13 11:13 - 2016-07-01 04:32 - 00183808 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_Maps.dll 2016-07-13 11:13 - 2016-07-01 04:32 - 00138240 _____ (Microsoft Corporation) C:\Windows\system32\inetpp.dll 2016-07-13 11:13 - 2016-07-01 04:32 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\IdCtrls.dll 2016-07-13 11:13 - 2016-07-01 04:30 - 00339968 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll 2016-07-13 11:13 - 2016-07-01 04:30 - 00334336 _____ (Microsoft Corporation) C:\Windows\system32\bcastdvr.exe 2016-07-13 11:13 - 2016-07-01 04:30 - 00261632 _____ (Microsoft Corporation) C:\Windows\system32\EnterpriseAppMgmtSvc.dll 2016-07-13 11:13 - 2016-07-01 04:30 - 00151552 _____ (Microsoft Corporation) C:\Windows\system32\WSClient.dll 2016-07-13 11:13 - 2016-07-01 04:30 - 00140800 _____ (Microsoft Corporation) C:\Windows\system32\shutdownux.dll 2016-07-13 11:13 - 2016-07-01 04:29 - 00541184 _____ (Microsoft Corporation) C:\Windows\system32\GamePanel.exe 2016-07-13 11:13 - 2016-07-01 04:29 - 00315904 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.BlockedShutdown.dll 2016-07-13 11:13 - 2016-07-01 04:28 - 00578048 _____ (Microsoft Corporation) C:\Windows\system32\wiaaut.dll 2016-07-13 11:13 - 2016-07-01 04:28 - 00282624 _____ (Microsoft Corporation) C:\Windows\system32\msieftp.dll 2016-07-13 11:13 - 2016-07-01 04:28 - 00230912 _____ (Microsoft Corporation) C:\Windows\system32\RDXTaskFactory.dll 2016-07-13 11:13 - 2016-07-01 04:27 - 00373248 _____ (Microsoft Corporation) C:\Windows\system32\SystemSettings.UserAccountsHandlers.dll 2016-07-13 11:13 - 2016-07-01 04:27 - 00330752 _____ (Microsoft Corporation) C:\Windows\system32\winipcfile.dll 2016-07-13 11:13 - 2016-07-01 04:27 - 00253440 _____ (Microsoft Corporation) C:\Windows\system32\OneBackupHandler.dll 2016-07-13 11:13 - 2016-07-01 04:27 - 00250880 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Store.TestingFramework.dll 2016-07-13 11:13 - 2016-07-01 04:26 - 01746944 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_Bluetooth.dll 2016-07-13 11:13 - 2016-07-01 04:26 - 00779264 _____ (Microsoft Corporation) C:\Windows\system32\sbe.dll 2016-07-13 11:13 - 2016-07-01 04:26 - 00502272 _____ (Microsoft Corporation) C:\Windows\system32\DevicePairing.dll 2016-07-13 11:13 - 2016-07-01 04:26 - 00417280 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Cortana.Desktop.dll 2016-07-13 11:13 - 2016-07-01 04:26 - 00372224 _____ (Microsoft Corporation) C:\Windows\system32\LockAppBroker.dll 2016-07-13 11:13 - 2016-07-01 04:26 - 00153088 _____ (Microsoft Corporation) C:\Windows\system32\WSSync.dll 2016-07-13 11:13 - 2016-07-01 04:25 - 01508352 _____ (Microsoft Corporation) C:\Windows\system32\winmsipc.dll 2016-07-13 11:13 - 2016-07-01 04:25 - 01035776 _____ (Microsoft Corporation) C:\Windows\system32\ApplicationFrame.dll 2016-07-13 11:13 - 2016-07-01 04:25 - 00740352 _____ (Microsoft Corporation) C:\Windows\system32\SharedStartModel.dll 2016-07-13 11:13 - 2016-07-01 04:25 - 00738816 _____ (Microsoft Corporation) C:\Windows\system32\appwiz.cpl 2016-07-13 11:13 - 2016-07-01 04:25 - 00477184 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll 2016-07-13 11:13 - 2016-07-01 04:24 - 04404736 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Search.dll 2016-07-13 11:13 - 2016-07-01 04:24 - 01588224 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll 2016-07-13 11:13 - 2016-07-01 04:24 - 01484800 _____ (Microsoft Corporation) C:\Windows\system32\PrintDialogs3D.dll 2016-07-13 11:13 - 2016-07-01 04:24 - 00601600 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll 2016-07-13 11:13 - 2016-07-01 04:24 - 00434688 _____ (Microsoft Corporation) C:\Windows\system32\LogonController.dll 2016-07-13 11:13 - 2016-07-01 04:23 - 02578432 _____ (Microsoft Corporation) C:\Windows\system32\gameux.dll 2016-07-13 11:13 - 2016-07-01 04:23 - 00805888 _____ (Microsoft Corporation) C:\Windows\system32\WSShared.dll 2016-07-13 11:13 - 2016-07-01 04:23 - 00764928 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Cred.dll 2016-07-13 11:13 - 2016-07-01 04:23 - 00460800 _____ (Microsoft Corporation) C:\Windows\system32\SearchFolder.dll 2016-07-13 11:13 - 2016-07-01 04:23 - 00207872 _____ (Microsoft Corporation) C:\Windows\system32\licensingdiag.exe 2016-07-13 11:13 - 2016-07-01 04:22 - 00783872 _____ (Microsoft Corporation) C:\Windows\system32\RDXService.dll 2016-07-13 11:13 - 2016-07-01 04:22 - 00231936 _____ (Microsoft Corporation) C:\Windows\system32\updatehandlers.dll 2016-07-13 11:13 - 2016-07-01 04:21 - 00980480 _____ (Microsoft Corporation) C:\Windows\system32\winipcsecproc.dll 2016-07-13 11:13 - 2016-07-01 04:20 - 12128256 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll 2016-07-13 11:13 - 2016-07-01 04:19 - 06471168 _____ (Microsoft Corporation) C:\Windows\system32\mspaint.exe 2016-07-13 11:13 - 2016-07-01 04:19 - 00581632 _____ (Microsoft Corporation) C:\Windows\system32\twinapi.dll 2016-07-13 11:13 - 2016-07-01 04:18 - 00683008 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.BackgroundTransfer.dll 2016-07-13 11:13 - 2016-07-01 04:17 - 05323776 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Data.Pdf.dll 2016-07-13 11:13 - 2016-07-01 04:17 - 02155008 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll 2016-07-13 11:13 - 2016-07-01 04:16 - 00925184 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll 2016-07-13 11:13 - 2016-07-01 04:16 - 00898048 _____ (Microsoft Corporation) C:\Windows\HelpPane.exe 2016-07-13 11:13 - 2016-07-01 04:15 - 04413440 _____ (Microsoft Corporation) C:\Windows\system32\ExplorerFrame.dll 2016-07-13 11:13 - 2016-07-01 04:15 - 02880512 _____ (Microsoft Corporation) C:\Windows\system32\SystemSettingsThresholdAdminFlowUI.dll 2016-07-13 11:13 - 2016-07-01 04:15 - 01799680 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Logon.dll 2016-07-13 11:13 - 2016-07-01 04:15 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\hgcpl.dll 2016-07-13 11:13 - 2016-07-01 04:15 - 00573440 _____ (Microsoft Corporation) C:\Windows\system32\UserLanguagesCpl.dll 2016-07-13 11:13 - 2016-07-01 04:14 - 00802816 _____ (Microsoft Corporation) C:\Windows\system32\ntshrui.dll 2016-07-13 11:13 - 2016-07-01 04:13 - 02519552 _____ (Microsoft Corporation) C:\Windows\system32\themecpl.dll 2016-07-13 11:13 - 2016-07-01 04:13 - 01900032 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll 2016-07-13 11:13 - 2016-07-01 04:13 - 00813056 _____ (Microsoft Corporation) C:\Windows\system32\dosvc.dll 2016-07-13 11:13 - 2016-07-01 04:11 - 01106944 _____ (Microsoft Corporation) C:\Windows\system32\SpeechPal.dll 2016-07-13 11:13 - 2016-07-01 04:11 - 01075200 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Shell.dll 2016-07-13 11:13 - 2016-07-01 04:08 - 00517632 _____ (Microsoft Corporation) C:\Windows\system32\PlayToManager.dll 2016-07-13 11:12 - 2016-07-01 06:14 - 01303744 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll 2016-07-13 11:12 - 2016-07-01 06:14 - 01020096 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll 2016-07-13 11:12 - 2016-07-01 06:14 - 00484544 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll 2016-07-13 11:12 - 2016-07-01 06:14 - 00476864 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll 2016-07-13 11:12 - 2016-07-01 06:14 - 00266944 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll 2016-07-13 11:12 - 2016-07-01 06:14 - 00227008 _____ (Microsoft Corporation) C:\Windows\system32\DeviceCensus.exe 2016-07-13 11:12 - 2016-07-01 06:14 - 00081088 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll 2016-07-13 11:12 - 2016-07-01 06:14 - 00045760 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe 2016-07-13 11:12 - 2016-07-01 05:40 - 00228704 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\sdbus.sys 2016-07-13 11:12 - 2016-07-01 05:39 - 01561392 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll 2016-07-13 11:12 - 2016-07-01 05:39 - 00927080 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe 2016-07-13 11:12 - 2016-07-01 05:39 - 00875992 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi 2016-07-13 11:12 - 2016-07-01 05:39 - 00771120 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe 2016-07-13 11:12 - 2016-07-01 05:38 - 01083656 _____ (Microsoft Corporation) C:\Windows\system32\Taskmgr.exe 2016-07-13 11:12 - 2016-07-01 05:38 - 00032552 _____ (Microsoft Corporation) C:\Windows\system32\wldp.dll 2016-07-13 11:12 - 2016-07-01 05:23 - 01118208 _____ (Microsoft Corporation) C:\Windows\system32\mfnetsrc.dll 2016-07-13 11:12 - 2016-07-01 05:23 - 00925576 _____ (Microsoft Corporation) C:\Windows\system32\mfplat.dll 2016-07-13 11:12 - 2016-07-01 05:23 - 00709176 _____ (Microsoft Corporation) C:\Windows\system32\mfsvr.dll 2016-07-13 11:12 - 2016-07-01 05:23 - 00511320 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll 2016-07-13 11:12 - 2016-07-01 05:23 - 00032040 _____ (Microsoft Corporation) C:\Windows\system32\mfpmp.exe 2016-07-13 11:12 - 2016-07-01 05:20 - 00465760 _____ (Microsoft Corporation) C:\Windows\system32\SettingSyncHost.exe 2016-07-13 11:12 - 2016-07-01 05:19 - 00836760 _____ (Microsoft Corporation) C:\Windows\system32\twinapi.appcore.dll 2016-07-13 11:12 - 2016-07-01 05:07 - 28083144 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecsRaw.dll 2016-07-13 11:12 - 2016-07-01 05:06 - 01861984 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys 2016-07-13 11:12 - 2016-07-01 05:06 - 00403920 _____ (Microsoft Corporation) C:\Windows\system32\DMRServer.dll 2016-07-13 11:12 - 2016-07-01 04:39 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\NFCProvisioningPlugin.dll 2016-07-13 11:12 - 2016-07-01 04:35 - 00039424 _____ (Microsoft Corporation) C:\Windows\system32\TpmTasks.dll 2016-07-13 11:12 - 2016-07-01 04:35 - 00032768 _____ (Microsoft Corporation) C:\Windows\system32\msscntrs.dll 2016-07-13 11:12 - 2016-07-01 04:34 - 00350208 _____ (Microsoft Corporation) C:\Windows\system32\bdechangepin.exe 2016-07-13 11:12 - 2016-07-01 04:33 - 00326144 _____ (Microsoft Corporation) C:\Windows\system32\MusUpdateHandlers.dll 2016-07-13 11:12 - 2016-07-01 04:33 - 00057344 _____ (Microsoft Corporation) C:\Windows\system32\WPDShServiceObj.dll 2016-07-13 11:12 - 2016-07-01 04:32 - 00268800 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll 2016-07-13 11:12 - 2016-07-01 04:31 - 19347968 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll 2016-07-13 11:12 - 2016-07-01 04:31 - 00465408 _____ (Microsoft Corporation) C:\Windows\system32\enterprisecsps.dll 2016-07-13 11:12 - 2016-07-01 04:31 - 00190976 _____ (Microsoft Corporation) C:\Windows\system32\fhengine.dll 2016-07-13 11:12 - 2016-07-01 04:30 - 00282624 _____ (Microsoft Corporation) C:\Windows\system32\Search.ProtocolHandler.MAPI2.dll 2016-07-13 11:12 - 2016-07-01 04:30 - 00207872 _____ (Microsoft Corporation) C:\Windows\system32\provengine.dll 2016-07-13 11:12 - 2016-07-01 04:30 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\provhandlers.dll 2016-07-13 11:12 - 2016-07-01 04:30 - 00120832 _____ (Microsoft Corporation) C:\Windows\system32\provops.dll 2016-07-13 11:12 - 2016-07-01 04:29 - 00334848 _____ (Microsoft Corporation) C:\Windows\system32\fhsettingsprovider.dll 2016-07-13 11:12 - 2016-07-01 04:29 - 00272384 _____ (Microsoft Corporation) C:\Windows\system32\wmicmiplugin.dll 2016-07-13 11:12 - 2016-07-01 04:28 - 00320000 _____ (Microsoft Corporation) C:\Windows\system32\fhcfg.dll 2016-07-13 11:12 - 2016-07-01 04:28 - 00248320 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Cortana.OneCore.dll 2016-07-13 11:12 - 2016-07-01 04:28 - 00119296 _____ (Microsoft Corporation) C:\Windows\system32\mssph.dll 2016-07-13 11:12 - 2016-07-01 04:27 - 00282624 _____ (Microsoft Corporation) C:\Windows\system32\SearchProtocolHost.exe 2016-07-13 11:12 - 2016-07-01 04:27 - 00244736 _____ (Microsoft Corporation) C:\Windows\system32\mssphtb.dll 2016-07-13 11:12 - 2016-07-01 04:27 - 00216576 _____ (Microsoft Corporation) C:\Windows\system32\PlayToReceiver.dll 2016-07-13 11:12 - 2016-07-01 04:26 - 18674176 _____ (Microsoft Corporation) C:\Windows\system32\edgehtml.dll 2016-07-13 11:12 - 2016-07-01 04:26 - 01063936 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Editing.dll 2016-07-13 11:12 - 2016-07-01 04:26 - 00489984 _____ (Microsoft Corporation) C:\Windows\system32\mbsmsapi.dll 2016-07-13 11:12 - 2016-07-01 04:26 - 00413184 _____ (Microsoft Corporation) C:\Windows\system32\NotificationController.dll 2016-07-13 11:12 - 2016-07-01 04:26 - 00400896 _____ (Microsoft Corporation) C:\Windows\system32\OneDriveSettingSyncProvider.dll 2016-07-13 11:12 - 2016-07-01 04:25 - 02050048 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl 2016-07-13 11:12 - 2016-07-01 04:25 - 01117184 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Speech.dll 2016-07-13 11:12 - 2016-07-01 04:25 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\schedsvc.dll 2016-07-13 11:12 - 2016-07-01 04:25 - 00687616 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll 2016-07-13 11:12 - 2016-07-01 04:25 - 00502784 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll 2016-07-13 11:12 - 2016-07-01 04:25 - 00240640 _____ (Microsoft Corporation) C:\Windows\system32\taskeng.exe 2016-07-13 11:12 - 2016-07-01 04:25 - 00230400 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll 2016-07-13 11:12 - 2016-07-01 04:24 - 01497088 _____ (Microsoft Corporation) C:\Windows\system32\WMPDMC.exe 2016-07-13 11:12 - 2016-07-01 04:24 - 00405504 _____ (Microsoft Corporation) C:\Windows\system32\webio.dll 2016-07-13 11:12 - 2016-07-01 04:23 - 01526272 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll 2016-07-13 11:12 - 2016-07-01 04:23 - 01401856 _____ (Microsoft Corporation) C:\Windows\system32\workfolderssvc.dll 2016-07-13 11:12 - 2016-07-01 04:23 - 00760320 _____ (Microsoft Corporation) C:\Windows\system32\SearchIndexer.exe 2016-07-13 11:12 - 2016-07-01 04:23 - 00667648 _____ (Microsoft Corporation) C:\Windows\system32\AzureSettingSyncProvider.dll 2016-07-13 11:12 - 2016-07-01 04:23 - 00489984 _____ (Microsoft Corporation) C:\Windows\system32\ShareHost.dll 2016-07-13 11:12 - 2016-07-01 04:23 - 00291840 _____ (Microsoft Corporation) C:\Windows\system32\wuuhext.dll 2016-07-13 11:12 - 2016-07-01 04:21 - 04078080 _____ (Microsoft Corporation) C:\Windows\system32\dbgeng.dll 2016-07-13 11:12 - 2016-07-01 04:20 - 03555840 _____ (Microsoft Corporation) C:\Windows\system32\xpsrchvw.exe 2016-07-13 11:12 - 2016-07-01 04:20 - 02798080 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.dll 2016-07-13 11:12 - 2016-07-01 04:20 - 00777728 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.dll 2016-07-13 11:12 - 2016-07-01 04:19 - 00503296 _____ (Microsoft Corporation) C:\Windows\system32\SettingSync.dll 2016-07-13 11:12 - 2016-07-01 04:18 - 03663360 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll 2016-07-13 11:12 - 2016-07-01 04:16 - 02771968 _____ (Microsoft Corporation) C:\Windows\system32\tquery.dll 2016-07-13 11:12 - 2016-07-01 04:16 - 02062336 _____ (Microsoft Corporation) C:\Windows\system32\MFMediaEngine.dll 2016-07-13 11:12 - 2016-07-01 04:16 - 01984000 _____ (Microsoft Corporation) C:\Windows\system32\mssrch.dll 2016-07-13 11:12 - 2016-07-01 04:16 - 00742400 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL 2016-07-13 11:12 - 2016-07-01 04:15 - 00748032 _____ (Microsoft Corporation) C:\Windows\system32\wpncore.dll 2016-07-13 11:12 - 2016-07-01 04:15 - 00105472 _____ (Microsoft Corporation) C:\Windows\system32\dmcsps.dll 2016-07-13 11:12 - 2016-07-01 04:14 - 05660672 _____ (Microsoft Corporation) C:\Windows\system32\Chakra.dll 2016-07-13 11:12 - 2016-07-01 04:13 - 06740992 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll 2016-07-13 11:12 - 2016-07-01 04:13 - 02000896 _____ (Microsoft Corporation) C:\Windows\system32\twinui.appcore.dll 2016-07-13 11:12 - 2016-07-01 04:13 - 01249280 _____ (Microsoft Corporation) C:\Windows\system32\usercpl.dll 2016-07-13 11:12 - 2016-07-01 04:13 - 00835072 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Streaming.dll 2016-07-13 11:12 - 2016-07-01 04:12 - 03483648 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll 2016-07-13 11:12 - 2016-07-01 04:11 - 00754176 _____ (Microsoft Corporation) C:\Windows\system32\SettingSyncCore.dll 2016-07-13 11:12 - 2016-07-01 04:08 - 01976832 _____ (Microsoft Corporation) C:\Windows\system32\wpdshext.dll 2016-07-13 11:12 - 2016-07-01 04:08 - 00942592 _____ (Microsoft Corporation) C:\Windows\system32\reseteng.dll 2016-07-13 11:12 - 2016-07-01 04:08 - 00879616 _____ (Microsoft Corporation) C:\Windows\system32\WebcamUi.dll 2016-07-13 11:12 - 2016-06-18 01:22 - 00179712 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll 2016-07-13 11:12 - 2016-02-09 05:29 - 00279376 _____ (Microsoft Corporation) C:\Windows\system32\systemreset.exe 2016-07-13 11:11 - 2016-07-01 05:39 - 01051584 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi 2016-07-13 11:11 - 2016-07-01 04:46 - 00072192 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll 2016-07-13 11:11 - 2016-07-01 04:38 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\LegacyNetUX.dll 2016-07-13 11:11 - 2016-07-01 04:34 - 00074240 _____ (Microsoft Corporation) C:\Windows\system32\browserbroker.dll 2016-07-13 11:11 - 2016-07-01 04:32 - 00159232 _____ (Microsoft Corporation) C:\Windows\system32\LegacyNetUXHost.exe 2016-07-13 11:11 - 2016-07-01 04:31 - 00186880 _____ (Microsoft Corporation) C:\Windows\system32\schtasks.exe 2016-07-13 11:11 - 2016-07-01 04:31 - 00173056 _____ (Microsoft Corporation) C:\Windows\system32\WUDFPlatform.dll 2016-07-13 11:11 - 2016-07-01 04:28 - 00442368 _____ (Microsoft Corporation) C:\Windows\system32\dlnashext.dll 2016-07-13 11:11 - 2016-07-01 04:26 - 00585216 _____ (Microsoft Corporation) C:\Windows\system32\Windows.AccountsControl.dll 2016-07-13 11:11 - 2016-07-01 04:25 - 00645632 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Storage.Search.dll 2016-07-13 11:11 - 2016-07-01 04:14 - 00737792 _____ (Microsoft Corporation) C:\Windows\system32\pmcsnap.dll 2016-07-03 02:03 - 2016-07-03 02:10 - 00000000 ____D C:\Users\bLrS_FcB\AppData\Roaming\WhatsApp 2016-07-03 02:03 - 2016-07-03 02:10 - 00000000 ____D C:\Users\bLrS_FcB\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WhatsApp 2016-07-03 02:02 - 2016-07-03 02:10 - 00000000 ____D C:\Users\bLrS_FcB\AppData\Local\WhatsApp 2016-07-03 02:02 - 2016-07-03 02:03 - 00000000 ____D C:\Users\bLrS_FcB\AppData\Local\SquirrelTemp 2016-07-02 17:27 - 2016-07-03 02:21 - 00000000 ____D C:\Windows\Minidump 2016-06-20 18:13 - 2016-06-20 18:13 - 00000000 ____D C:\Users\bLrS_FcB\.android 2016-06-20 18:13 - 2016-06-20 18:13 - 00000000 ____D C:\ProgramData\wsr 2016-06-20 18:12 - 2016-06-20 18:12 - 00000000 ____D C:\Users\bLrS_FcB\AppData\Roaming\HMYGSetting 2016-06-20 18:04 - 2016-05-27 09:41 - 00000232 _____ C:\Windows\system32\dllhost.exe.config 2016-06-20 18:03 - 2016-07-14 11:23 - 00000000 ____D C:\Users\bLrS_FcB\AppData\Roaming\Wondershare 2016-06-20 18:03 - 2016-07-14 11:23 - 00000000 ____D C:\Program Files\Wondershare 2016-06-20 18:03 - 2016-06-20 18:04 - 00000000 ____D C:\ProgramData\Wondershare 2016-06-20 17:49 - 2016-06-20 18:03 - 00000000 ____D C:\Users\Public\Documents\Wondershare 2016-06-17 22:31 - 2016-07-02 17:44 - 00000000 ____D C:\Program Files\FreeHideIP 2016-06-17 22:31 - 2016-06-17 22:31 - 00000000 ____D C:\Users\bLrS_FcB\AppData\Roaming\FreeHideIP 2016-06-17 22:31 - 2016-06-17 22:31 - 00000000 ____D C:\ProgramData\FreeHideIP 2016-06-16 12:52 - 2016-06-16 12:52 - 00000000 ____D C:\Program Files\DIFX 2016-06-15 00:41 - 2016-05-28 06:25 - 04268880 _____ (Microsoft Corporation) C:\Windows\system32\setupapi.dll 2016-06-15 00:41 - 2016-05-28 06:25 - 00354656 _____ (Microsoft Corporation) C:\Windows\system32\halmacpi.dll 2016-06-15 00:41 - 2016-05-28 06:25 - 00354656 _____ (Microsoft Corporation) C:\Windows\system32\hal.dll 2016-06-15 00:41 - 2016-05-28 06:25 - 00173920 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tpm.sys 2016-06-15 00:41 - 2016-05-28 06:25 - 00096096 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\partmgr.sys 2016-06-15 00:41 - 2016-05-28 06:23 - 00388384 _____ (Microsoft Corporation) C:\Windows\system32\ws2_32.dll 2016-06-15 00:41 - 2016-05-28 06:22 - 00317280 _____ (Microsoft Corporation) C:\Windows\system32\mswsock.dll 2016-06-15 00:41 - 2016-05-28 06:10 - 00136032 _____ (Microsoft Corporation) C:\Windows\system32\NetworkUXBroker.exe 2016-06-15 00:41 - 2016-05-28 06:09 - 00501600 _____ (Microsoft Corporation) C:\Windows\system32\NetSetupEngine.dll 2016-06-15 00:41 - 2016-05-28 06:09 - 00084832 _____ (Microsoft Corporation) C:\Windows\system32\NetSetupApi.dll 2016-06-15 00:41 - 2016-05-28 06:08 - 00203104 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ufx01000.sys 2016-06-15 00:41 - 2016-05-28 06:06 - 00254656 _____ (Microsoft Corporation) C:\Windows\system32\LockAppHost.exe 2016-06-15 00:41 - 2016-05-28 06:04 - 00360480 _____ (Microsoft Corporation) C:\Windows\system32\bcryptprimitives.dll 2016-06-15 00:41 - 2016-05-28 06:04 - 00111608 _____ (Microsoft Corporation) C:\Windows\system32\gpapi.dll 2016-06-15 00:41 - 2016-05-28 06:04 - 00097096 _____ (Microsoft Corporation) C:\Windows\system32\ncryptsslp.dll 2016-06-15 00:41 - 2016-05-28 05:57 - 02195632 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll 2016-06-15 00:41 - 2016-05-28 05:57 - 01396592 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll 2016-06-15 00:41 - 2016-05-28 05:57 - 00546456 _____ (Microsoft Corporation) C:\Windows\system32\fontdrvhost.exe 2016-06-15 00:41 - 2016-05-28 05:57 - 00316256 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll 2016-06-15 00:41 - 2016-05-28 05:31 - 00091648 _____ (Microsoft Corporation) C:\Windows\system32\tdlrecover.exe 2016-06-15 00:41 - 2016-05-28 05:31 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dumpsdport.sys 2016-06-15 00:41 - 2016-05-28 05:25 - 00065024 _____ (Microsoft Corporation) C:\Windows\system32\adhsvc.dll 2016-06-15 00:41 - 2016-05-28 05:25 - 00037376 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll 2016-06-15 00:41 - 2016-05-28 05:25 - 00016896 _____ (Microsoft Corporation) C:\Windows\system32\httpprxp.dll 2016-06-15 00:41 - 2016-05-28 05:24 - 00093696 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll 2016-06-15 00:41 - 2016-05-28 05:24 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\FwRemoteSvr.dll 2016-06-15 00:41 - 2016-05-28 05:22 - 00161280 _____ (Microsoft Corporation) C:\Windows\system32\InstallAgent.exe 2016-06-15 00:41 - 2016-05-28 05:22 - 00122368 _____ (Microsoft Corporation) C:\Windows\system32\omadmclient.exe 2016-06-15 00:41 - 2016-05-28 05:22 - 00116224 _____ (Microsoft Corporation) C:\Windows\system32\dmcertinst.exe 2016-06-15 00:41 - 2016-05-28 05:21 - 00042496 _____ (Microsoft Corporation) C:\Windows\system32\gpscript.dll 2016-06-15 00:41 - 2016-05-28 05:20 - 00104960 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Ndu.sys 2016-06-15 00:41 - 2016-05-28 05:20 - 00057344 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcsvc6.dll 2016-06-15 00:41 - 2016-05-28 05:19 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidclass.sys 2016-06-15 00:41 - 2016-05-28 05:19 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcsvc.dll 2016-06-15 00:41 - 2016-05-28 05:19 - 00063488 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll 2016-06-15 00:41 - 2016-05-28 05:18 - 00211456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netbt.sys 2016-06-15 00:41 - 2016-05-28 05:18 - 00161792 _____ (Microsoft Corporation) C:\Windows\system32\BrokerLib.dll 2016-06-15 00:41 - 2016-05-28 05:18 - 00132096 _____ (Microsoft Corporation) C:\Windows\system32\tetheringservice.dll 2016-06-15 00:41 - 2016-05-28 05:17 - 00485888 _____ (Microsoft Corporation) C:\Windows\system32\newdev.dll 2016-06-15 00:41 - 2016-05-28 05:17 - 00415232 _____ (Microsoft Corporation) C:\Windows\system32\StoreAgent.dll 2016-06-15 00:41 - 2016-05-28 05:17 - 00160768 _____ (Microsoft Corporation) C:\Windows\system32\GnssAdapter.dll 2016-06-15 00:41 - 2016-05-28 05:17 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\wscsvc.dll 2016-06-15 00:41 - 2016-05-28 05:17 - 00142336 _____ (Microsoft Corporation) C:\Windows\system32\NetSetupSvc.dll 2016-06-15 00:41 - 2016-05-28 05:17 - 00129024 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_Privacy.dll 2016-06-15 00:41 - 2016-05-28 05:16 - 00442368 _____ (Microsoft Corporation) C:\Windows\system32\MBMediaManager.dll 2016-06-15 00:41 - 2016-05-28 05:16 - 00291328 _____ (Microsoft Corporation) C:\Windows\system32\polstore.dll 2016-06-15 00:41 - 2016-05-28 05:16 - 00230400 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcore6.dll 2016-06-15 00:41 - 2016-05-28 05:15 - 00579072 _____ (Microsoft Corporation) C:\Windows\system32\gpprefcl.dll 2016-06-15 00:41 - 2016-05-28 05:15 - 00535040 _____ (Microsoft Corporation) C:\Windows\system32\rastls.dll 2016-06-15 00:41 - 2016-05-28 05:15 - 00527872 _____ (Microsoft Corporation) C:\Windows\system32\vpnike.dll 2016-06-15 00:41 - 2016-05-28 05:15 - 00293888 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcore.dll 2016-06-15 00:41 - 2016-05-28 05:15 - 00274432 _____ (Microsoft Corporation) C:\Windows\system32\SystemEventsBrokerServer.dll 2016-06-15 00:41 - 2016-05-28 05:14 - 00846336 _____ (Microsoft Corporation) C:\Windows\system32\iphlpsvc.dll 2016-06-15 00:41 - 2016-05-28 05:14 - 00499712 _____ (Microsoft Corporation) C:\Windows\system32\MessagingDataModel2.dll 2016-06-15 00:41 - 2016-05-28 05:14 - 00309248 _____ (Microsoft Corporation) C:\Windows\system32\IPSECSVC.DLL 2016-06-15 00:41 - 2016-05-28 05:14 - 00219136 _____ (Microsoft Corporation) C:\Windows\system32\VEEventDispatcher.dll 2016-06-15 00:41 - 2016-05-28 05:14 - 00200192 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Internal.Management.dll 2016-06-15 00:41 - 2016-05-28 05:14 - 00133120 _____ (Microsoft Corporation) C:\Windows\system32\mdmmigrator.dll 2016-06-15 00:41 - 2016-05-28 05:13 - 00604672 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys 2016-06-15 00:41 - 2016-05-28 05:13 - 00467456 _____ (Microsoft Corporation) C:\Windows\system32\AppContracts.dll 2016-06-15 00:41 - 2016-05-28 05:13 - 00393728 _____ (Microsoft Corporation) C:\Windows\system32\tileobjserver.dll 2016-06-15 00:41 - 2016-05-28 05:13 - 00340480 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys 2016-06-15 00:41 - 2016-05-28 05:12 - 00614400 _____ (Microsoft Corporation) C:\Windows\system32\winhttp.dll 2016-06-15 00:41 - 2016-05-28 05:12 - 00521728 _____ (Microsoft Corporation) C:\Windows\system32\StructuredQuery.dll 2016-06-15 00:41 - 2016-05-28 05:12 - 00186880 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys 2016-06-15 00:41 - 2016-05-28 05:11 - 01445888 _____ (Microsoft Corporation) C:\Windows\system32\SRHInproc.dll 2016-06-15 00:41 - 2016-05-28 05:11 - 00890368 _____ (Microsoft Corporation) C:\Windows\system32\AppxPackaging.dll 2016-06-15 00:41 - 2016-05-28 05:11 - 00799744 _____ (Microsoft Corporation) C:\Windows\system32\SRH.dll 2016-06-15 00:41 - 2016-05-28 05:11 - 00453632 _____ (Microsoft Corporation) C:\Windows\system32\bisrv.dll 2016-06-15 00:41 - 2016-05-28 05:09 - 00109056 _____ (Microsoft Corporation) C:\Windows\system32\httpprxm.dll 2016-06-15 00:41 - 2016-05-28 05:04 - 00450560 _____ (Microsoft Corporation) C:\Windows\system32\SyncController.dll 2016-06-15 00:41 - 2016-05-28 05:04 - 00079360 _____ (Microsoft Corporation) C:\Windows\system32\DeviceEnroller.exe 2016-06-15 00:41 - 2016-05-28 05:03 - 01185280 _____ (Microsoft Corporation) C:\Windows\system32\LocationFramework.dll 2016-06-15 00:41 - 2016-05-28 05:03 - 00558080 _____ (Microsoft Corporation) C:\Windows\system32\internetmail.dll 2016-06-15 00:41 - 2016-05-28 05:03 - 00359936 _____ (Microsoft Corporation) C:\Windows\system32\dmenrollengine.dll 2016-06-15 00:41 - 2016-05-28 05:02 - 00103424 _____ (Microsoft Corporation) C:\Windows\system32\updatepolicy.dll 2016-06-15 00:41 - 2016-05-28 05:01 - 01193984 _____ (Microsoft Corporation) C:\Windows\system32\gpsvc.dll 2016-06-15 00:41 - 2016-05-28 05:01 - 00141824 _____ (Microsoft Corporation) C:\Windows\system32\enrollmentapi.dll 2016-06-15 00:41 - 2016-05-28 05:00 - 01707520 _____ (Microsoft Corporation) C:\Windows\system32\ActiveSyncProvider.dll 2016-06-15 00:41 - 2016-05-28 05:00 - 00151040 _____ (Microsoft Corporation) C:\Windows\system32\mdmregistration.dll 2016-06-15 00:41 - 2016-05-28 04:54 - 00063488 _____ (Microsoft Corporation) C:\Windows\system32\ngcpopkeysrv.dll 2016-06-14 00:12 - 2016-06-19 11:55 - 00000000 ____D C:\Program Files\Mozilla Firefox ==================== Un mois - Modifiés - fichiers et dossiers ======== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2016-07-14 14:25 - 2016-04-29 17:07 - 00119512 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys 2016-07-14 14:09 - 2016-04-28 20:58 - 00001096 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2016-07-14 13:50 - 2016-04-28 21:42 - 00001002 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job 2016-07-14 13:02 - 2016-05-30 17:53 - 00000000 ____D C:\Users\bLrS_FcB\AppData\Roaming\IDM 2016-07-14 12:09 - 2016-04-28 20:58 - 00001092 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2016-07-14 11:29 - 2015-10-30 06:47 - 00000000 ____D C:\Windows\INF 2016-07-14 11:23 - 2016-04-28 22:49 - 00000000 ____D C:\ProgramData\TEMP 2016-07-14 11:10 - 2016-06-12 01:23 - 00000000 ____D C:\Program Files\Recuva 2016-07-14 11:04 - 2016-05-30 12:55 - 00000000 ____D C:\Users\bLrS_FcB\AppData\Roaming\ZHP 2016-07-14 10:56 - 2016-04-28 20:24 - 01758862 _____ C:\Windows\system32\PerfStringBackup.INI 2016-07-14 10:56 - 2015-10-30 16:07 - 00787838 _____ C:\Windows\system32\perfh00C.dat 2016-07-14 10:56 - 2015-10-30 16:07 - 00147778 _____ C:\Windows\system32\perfc00C.dat 2016-07-14 10:53 - 2016-04-28 22:46 - 00000000 __SHD C:\Users\bLrS_FcB\IntelGraphicsProfiles 2016-07-14 10:53 - 2016-04-28 20:20 - 00000000 ____D C:\Users\bLrS_FcB 2016-07-14 10:52 - 2016-04-28 19:14 - 00000006 ____H C:\Windows\Tasks\SA.DAT 2016-07-14 09:19 - 2016-04-28 20:21 - 00000000 __RHD C:\Users\Public\AccountPictures 2016-07-14 02:16 - 2015-10-30 06:13 - 00524288 ___SH C:\Windows\system32\config\BBI 2016-07-14 02:15 - 2015-10-30 06:48 - 00000000 ____D C:\Windows\system32\oobe 2016-07-14 02:15 - 2015-10-30 06:48 - 00000000 ____D C:\Windows\system32\appraiser 2016-07-14 02:14 - 2015-10-30 16:14 - 00000000 ____D C:\Program Files\Windows Journal 2016-07-14 02:14 - 2015-10-30 06:48 - 00000000 ___RD C:\Windows\PrintDialog 2016-07-14 02:14 - 2015-10-30 06:48 - 00000000 ___RD C:\Windows\ImmersiveControlPanel 2016-07-14 02:14 - 2015-10-30 06:48 - 00000000 ___RD C:\Windows\DevicesFlow 2016-07-14 02:14 - 2015-10-30 06:48 - 00000000 ____D C:\Windows\Provisioning 2016-07-14 02:14 - 2015-10-30 06:48 - 00000000 ____D C:\Windows\PolicyDefinitions 2016-07-14 02:14 - 2015-10-30 06:48 - 00000000 ____D C:\Windows\bcastdvr 2016-07-14 02:14 - 2015-10-30 06:48 - 00000000 ____D C:\Program Files\Windows Photo Viewer 2016-07-14 02:14 - 2015-10-30 06:48 - 00000000 ____D C:\Program Files\Windows Defender 2016-07-14 02:13 - 2016-04-28 20:32 - 00000000 ____D C:\Users\bLrS_FcB\AppData\Roaming\DMCache 2016-07-13 12:01 - 2015-10-30 06:39 - 00000000 ____D C:\Windows\CbsTemp 2016-07-13 12:00 - 2016-04-29 00:34 - 00000000 ____D C:\Windows\system32\MRT 2016-07-13 11:55 - 2016-04-29 00:34 - 141983760 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe 2016-07-12 23:53 - 2015-10-30 06:48 - 00000000 ____D C:\Windows\system32\Macromed 2016-07-10 18:20 - 2015-10-30 06:48 - 00000000 ____D C:\Windows\AppReadiness 2016-07-09 18:19 - 2015-10-30 06:48 - 00000000 ___HD C:\Program Files\WindowsApps 2016-07-08 21:00 - 2016-05-08 19:12 - 00000000 ____D C:\Users\bLrS_FcB\AppData\Roaming\vlc 2016-07-08 16:53 - 2016-04-28 20:32 - 00000000 ____D C:\Users\bLrS_FcB\Downloads\Video 2016-07-03 02:20 - 2016-04-28 20:33 - 00001034 _____ C:\Users\Public\Desktop\CCleaner.lnk 2016-07-02 05:37 - 2015-10-30 06:49 - 00828408 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe 2016-07-02 05:37 - 2015-10-30 06:49 - 00176632 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl 2016-07-01 06:09 - 2015-10-30 07:22 - 00400310 __RSH C:\bootmgr 2016-06-19 17:59 - 2016-04-29 17:07 - 00000000 ____D C:\Program Files\Malwarebytes Anti-Malware 2016-06-19 11:55 - 2016-04-28 20:31 - 00001186 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk 2016-06-19 11:55 - 2016-04-28 20:31 - 00001174 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk 2016-06-19 11:55 - 2016-04-28 20:31 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service 2016-06-19 10:25 - 2016-04-28 20:20 - 00000000 ____D C:\Users\bLrS_FcB\AppData\Local\VirtualStore 2016-06-17 23:31 - 2015-10-30 06:48 - 00000000 ____D C:\Windows\rescache 2016-06-17 23:11 - 2016-04-28 21:42 - 00002216 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2016-06-17 23:11 - 2016-04-28 21:42 - 00002204 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2016-06-16 12:21 - 2015-10-30 06:48 - 00000000 ___SD C:\Windows\system32\DiagSvcs 2016-06-16 12:21 - 2015-10-30 06:48 - 00000000 ____D C:\Windows\system32\SystemResetPlatform 2016-06-16 11:41 - 2016-04-28 20:32 - 00000000 ____D C:\Users\bLrS_FcB\Downloads\Compressed Fichiers à déplacer ou supprimer: ==================== C:\Users\bLrS_FcB\ZHPDiag3.exe Certains fichiers dans TEMP: ==================== C:\Users\bLrS_FcB\AppData\Local\Temp\dllnt_dump.dll ==================== Bamital & volsnap ================= (Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.) C:\Windows\explorer.exe => Le fichier est signé numériquement C:\Windows\system32\winlogon.exe => Le fichier est signé numériquement C:\Windows\system32\wininit.exe => Le fichier est signé numériquement C:\Windows\system32\svchost.exe => Le fichier est signé numériquement C:\Windows\system32\services.exe => Le fichier est signé numériquement C:\Windows\system32\User32.dll => Le fichier est signé numériquement C:\Windows\system32\userinit.exe => Le fichier est signé numériquement C:\Windows\system32\rpcss.dll => Le fichier est signé numériquement C:\Windows\system32\dnsapi.dll => Le fichier est signé numériquement C:\Windows\system32\Drivers\volsnap.sys => Le fichier est signé numériquement LastRegBack: 2016-07-12 10:44 ==================== Fin de FRST.txt ============================