Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 21-08-2016 01 Exécuté par David (administrateur) sur PC_DAVID (26-08-2016 15:13:20) Exécuté depuis C:\Users\David\Desktop Profils chargés: David (Profils disponibles: David) Platform: Windows 10 Home Version 1607 (X64) Langue: Français (France) Internet Explorer Version 11 (Navigateur par défaut: FF) Mode d'amorçage: Normal Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processus (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.) (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (Intel Corporation) C:\Windows\System32\igfxCUIService.exe () C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe (Acer Incorporate) C:\Program Files\Acer\Acer Launch Manager\LMSvc.exe (Intel Corporation) C:\Windows\System32\ibtsiva.exe (Acer Incorporated) C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe (Chicony) C:\Program Files (x86)\Dell\Dell KM632 Wireless Keyboard Caps Lock Indicator\OSDSrv.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe (Dassault Systemes) C:\Program Files\Dassault Systemes\B23\win_b64\code\bin\CATSysDemon.exe (Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe (Acresso Software Inc.) C:\SIMULIA\License\lmgrd.exe (Acresso Software Inc.) C:\SIMULIA\License\lmgrd.exe (Acer Cloud Technology) C:\Program Files (x86)\Acer\AOP Framework\acer\ccd.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe (Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe (Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe (Acer Incorporate) C:\Program Files\Acer\Acer Quick Access\QASvc.exe (Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe (Dassault Systemes SIMULIA Corp) C:\SIMULIA\License\ABAQUSLM.exe (Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe (Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe (Intel Corporation) C:\Windows\System32\igfxEM.exe (Intel Corporation) C:\Windows\System32\igfxHK.exe () C:\Windows\System32\igfxTray.exe (Dolby Laboratories Inc.) C:\Program Files\Dolby Digital Plus\ddp.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe (NVIDIA Corporation) C:\Users\David\AppData\Local\NVIDIA\NvBackend\ApplicationOntology\NvOAWrapperCache.exe () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.7.102.0_x64__kzf8qxf38zg5c\SkypeHost.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe (Acer Incorporate) C:\Program Files\Acer\Acer Launch Manager\LMEvent.exe (Acer Incorporate) C:\Program Files\Acer\Acer Launch Manager\LMLockHandler.exe (Acer Incorporate) C:\Program Files\Acer\Acer Quick Access\QAEvent.exe (Acer Incorporate) C:\Program Files\Acer\Acer Launch Manager\LMTray.exe (Acer Incorporate) C:\Program Files\Acer\Acer Quick Access\QAMsg.exe (Microsoft Corporation) C:\Windows\System32\smartscreen.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe (Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe (Acer Incorporated) C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exe (CANON INC.) C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe (Elaborate Bytes AG) C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe (Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe () C:\Program Files (x86)\Dell\Dell KM632 Wireless Keyboard Caps Lock Indicator\LaunchOSDSrv.exe (Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (DELL) C:\Program Files (x86)\Dell\Dell KM632 Wireless Keyboard Caps Lock Indicator\IndicatorOSD.exe (Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerTray.exe (Intel Corporation) C:\Windows\System32\igfxext.exe (Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerEvent.exe (Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerWinMonitor.exe () C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\esrv.exe (Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe (Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.7167.40727.0_x64__8wekyb3d8bbwe\HxTsr.exe (Microsoft Corporation) C:\Windows\System32\BackgroundTransferHost.exe (Microsoft Corporation) C:\Windows\System32\InstallAgent.exe (Microsoft Corporation) C:\Windows\System32\InstallAgentUserBroker.exe (Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe (Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe (Microsoft Corporation) C:\Windows\System32\DeviceCensus.exe ==================== Registre (Avec liste blanche) =========================== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.) HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [16161536 2015-07-23] (Realtek Semiconductor) HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1403136 2015-07-23] (Realtek Semiconductor) HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2397120 2016-06-14] (NVIDIA Corporation) HKLM\...\Run: [ShadowPlay] => C:\WINDOWS\system32\nvspcap64.dll [1767944 2016-06-14] (NVIDIA Corporation) HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [322104 2016-02-03] (Intel Corporation) HKLM\...\Run: [WindowsDefender] => C:\Program Files\Windows Defender\MSASCuiL.exe [631808 2016-07-16] (Microsoft Corporation) HKLM-x32\...\Run: [BacKGround Agent] => C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exe [66304 2015-05-06] (Acer Incorporated) HKLM-x32\...\Run: [BCSSync] => C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [89184 2012-11-05] (Microsoft Corporation) HKLM-x32\...\Run: [IJNetworkScannerSelectorEX] => C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe [452016 2011-01-15] (CANON INC.) HKLM-x32\...\Run: [VirtualCloneDrive] => C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe [88984 2013-03-10] (Elaborate Bytes AG) HKLM-x32\...\Run: [Chicony_OSD] => C:\Program Files (x86)\Dell\Dell KM632 Wireless Keyboard Caps Lock Indicator\LaunchOSDSrv.exe [53248 2011-01-12] () HKLM-x32\...\Run: [SunJavaUpdateSched] => "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" HKU\S-1-5-21-2239795892-1550188572-3530150212-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8641240 2016-02-12] (Piriform Ltd) HKU\S-1-5-21-2239795892-1550188572-3530150212-1001\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [4471536 2015-05-21] (Disc Soft Ltd) HKU\S-1-5-21-2239795892-1550188572-3530150212-1001\...\Run: [GalaxyClient] => C:\Program Files (x86)\GalaxyClient\GalaxyClient.exe [7249976 2015-08-28] (GOG.com) HKU\S-1-5-21-2239795892-1550188572-3530150212-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [2852128 2016-08-03] (Valve Corporation) HKU\S-1-5-21-2239795892-1550188572-3530150212-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [26424960 2016-06-29] (Skype Technologies S.A.) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\LOLRecorder.lnk [2015-12-23] ShortcutTarget: LOLRecorder.lnk -> C:\Program Files (x86)\LOLReplay\LOLRecorder.exe (LOL Replay) Startup: C:\Users\David\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Curse.lnk [2015-07-02] ShortcutTarget: Curse.lnk -> C:\Users\David\AppData\Roaming\Curse Client\Bin\Curse.exe (Curse, Inc) ==================== Internet (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.) Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 192.168.1.1 Tcpip\..\Interfaces\{bf4a7e15-a5fc-44e4-b0ef-59a68dff2dcb}: [DhcpNameServer] 192.168.1.1 192.168.1.1 Internet Explorer: ================== HKU\S-1-5-21-2239795892-1550188572-3530150212-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://acer13.msn.com/?pc=ACJB HKU\S-1-5-21-2239795892-1550188572-3530150212-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://acer13.msn.com/?pc=ACJB SearchScopes: HKU\S-1-5-21-2239795892-1550188572-3530150212-1001 -> DefaultScope {232C5073-1888-4F24-AADA-2CED3C826062} URL = BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation) BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_101\bin\ssv.dll [2016-08-05] (Oracle Corporation) BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation) BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_101\bin\jp2ssv.dll [2016-08-05] (Oracle Corporation) BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation) BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation) Handler: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\siteadvisor\x64\McIEPlg.dll [2015-04-17] (McAfee, Inc.) Handler-x32: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\siteadvisor\McIEPlg.dll [2015-04-17] (McAfee, Inc.) Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\siteadvisor\x64\McIEPlg.dll [2015-04-17] (McAfee, Inc.) Handler-x32: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\siteadvisor\McIEPlg.dll [2015-04-17] (McAfee, Inc.) FireFox: ======== FF ProfilePath: C:\Users\David\AppData\Roaming\Mozilla\Firefox\Profiles\Y5Y6j1PN.default FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_22_0_0_209.dll [2016-07-12] () FF Plugin: @java.com/DTPlugin,version=11.101.2 -> C:\Program Files\Java\jre1.8.0_101\bin\dtplugin\npDeployJava1.dll [2016-08-05] (Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=11.101.2 -> C:\Program Files\Java\jre1.8.0_101\bin\plugin2\npjp2.dll [2016-08-05] (Oracle Corporation) FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation) FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_22_0_0_209.dll [2016-07-12] () FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2014-02-19] (Intel Corporation) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2014-02-19] (Intel Corporation) FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-28] (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-28] (Google Inc.) FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2016-06-30] (Adobe Systems Inc.) FF Plugin HKU\.DEFAULT: @hola.org/FlashPlayer -> C:\Users\David\AppData\Local\Hola\firefox_hola\app\flash\NPSWF32_18_0_0_232.dll [Pas de fichier] FF Plugin HKU\.DEFAULT: @hola.org/vlc -> C:\Users\David\AppData\Local\Hola\firefox_hola\app\vlc\npvlc.dll [Pas de fichier] FF Extension: (Avira Browser Safety) - C:\Users\David\AppData\Roaming\Mozilla\Firefox\Profiles\Y5Y6j1PN.default\Extensions\abs@avira.com [2016-07-14] FF Extension: (Adblock Plus) - C:\Users\David\AppData\Roaming\Mozilla\Firefox\Profiles\Y5Y6j1PN.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2016-04-29] FF HKLM\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files (x86)\McAfee\SiteAdvisor FF Extension: (McAfee SiteAdvisor) - C:\Program Files (x86)\McAfee\SiteAdvisor [2015-06-03] [non signé] FF HKLM-x32\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files (x86)\McAfee\SiteAdvisor Chrome: ======= CHR HomePage: Default -> hxxp://www.google.com/ CHR Profile: C:\Users\David\AppData\Local\Google\Chrome\User Data\Default CHR Extension: (Google Slides) - C:\Users\David\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-06-03] CHR Extension: (Google Docs) - C:\Users\David\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-06-03] CHR Extension: (Google Drive) - C:\Users\David\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-21] CHR Extension: (YouTube) - C:\Users\David\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-25] CHR Extension: (Recherche Google) - C:\Users\David\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-26] CHR Extension: (Pandora) - C:\Users\David\AppData\Local\Google\Chrome\User Data\Default\Extensions\fbangkleohkafngihneedemihgfeikcl [2015-06-03] CHR Extension: (Google Sheets) - C:\Users\David\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-06-03] CHR Extension: (SiteAdvisor) - C:\Users\David\AppData\Local\Google\Chrome\User Data\Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2015-07-02] CHR Extension: (Google Docs hors connexion) - C:\Users\David\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-15] CHR Extension: (AdBlock) - C:\Users\David\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2016-07-19] CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\David\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-06-16] CHR Extension: (Hola - Unlimited Proxy VPN) - C:\Users\David\AppData\Local\Google\Chrome\User Data\Default\Extensions\opalpjjboefohnelaemnhdhlceibbcgl [2015-11-13] CHR Extension: (Gmail) - C:\Users\David\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-06-03] CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - C:\Program Files (x86)\McAfee\SiteAdvisor\McChPlg.crx [2015-06-03] CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - C:\Program Files (x86)\McAfee\SiteAdvisor\McChPlg.crx [2015-06-03] CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx ==================== Services (Avec liste blanche) ======================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R2 BBDemon; C:\Program Files\Dassault Systemes\B23\win_b64\code\bin\CATSysDemon.exe [46592 2012-09-22] (Dassault Systemes) [Fichier non signé] R2 CCDMonitorService; C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe [2839296 2015-05-06] (Acer Incorporated) S3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe [1272560 2015-05-21] (Disc Soft Ltd) S2 DS License Server; C:\Program Files\Dassault Systemes\DS License Server\win_b64\code\bin\DSLicSrv.exe [837632 2013-02-17] (Dassault Systemes) [Fichier non signé] R3 ePowerSvc; C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe [2573032 2014-06-12] (Acer Incorporated) S2 ESRV_SVC_WILLAMETTE; C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\esrv_svc.exe [416408 2016-03-09] () S3 GalaxyClientService; C:\Program Files (x86)\GalaxyClient\GalaxyClientService.exe [1720888 2015-08-28] (GOG.com) S3 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [6920248 2015-08-28] (GOG.com) R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1163712 2016-06-14] (NVIDIA Corporation) R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [18488 2016-02-03] (Intel Corporation) R2 igfxCUIService2.0.0.0; C:\Windows\system32\igfxCUIService.exe [370064 2015-10-18] (Intel Corporation) S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [887232 2014-01-31] (Intel(R) Corporation) R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [131544 2014-02-19] (Intel Corporation) S3 iumsvc; C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [178312 2015-09-25] (Intel Corporation) R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [154584 2014-02-19] (Intel Corporation) R2 LMSvc; C:\Program Files\Acer\Acer Launch Manager\LMSvc.exe [466664 2014-06-10] (Acer Incorporate) S3 McAfee SiteAdvisor Service; C:\Program Files (x86)\McAfee\SiteAdvisor\McSACore.exe [154856 2015-05-04] (McAfee, Inc.) R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1879488 2016-06-14] (NVIDIA Corporation) R3 NvStreamNetworkSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe [3632576 2016-06-14] (NVIDIA Corporation) R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [2521024 2016-06-14] (NVIDIA Corporation) S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2122248 2016-07-14] (Electronic Arts) R2 OSDSvc; C:\Program Files (x86)\Dell\Dell KM632 Wireless Keyboard Caps Lock Indicator\OSDSrv.exe [176128 2010-12-01] (Chicony) [Fichier non signé] R3 QASvc; C:\Program Files\Acer\Acer Quick Access\QASvc.exe [458984 2014-06-26] (Acer Incorporate) R2 RichVideo; C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe [254512 2012-04-24] () R2 SIMULIA FLEXnet License Server; C:\SIMULIA\License\lmgrd.exe [1767688 2011-07-18] (Acresso Software Inc.) S2 SystemUsageReportSvc_WILLAMETTE; C:\Program Files (x86)\Intel Driver Update Utility\SUR\SurSvc.exe [118424 2016-03-09] () S3 USER_ESRV_SVC_WILLAMETTE; C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\esrv_svc.exe [416408 2016-03-09] () R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [347328 2016-07-16] (Microsoft Corporation) R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103720 2016-07-16] (Microsoft Corporation) R2 ibtsiva; %SystemRoot%\system32\ibtsiva [X] ===================== Pilotes (Avec liste blanche) ========================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R3 dtlitescsibus; C:\Windows\System32\drivers\dtlitescsibus.sys [30264 2015-06-05] (Disc Soft Ltd) R3 frzway; C:\Windows\System32\drivers\frzway.sys [34552 2015-09-08] (The OpenVPN Project) R3 ibtusb; C:\Windows\system32\DRIVERS\ibtusb.sys [349960 2016-07-12] (Intel Corporation) R3 LMDriver; C:\Windows\System32\drivers\LMDriver.sys [21360 2013-07-17] (Acer Incorporated) R1 LUMDriver; C:\WINDOWS\system32\drivers\LUMDriver.sys [24848 2008-01-02] (IBM) R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [116736 2014-02-19] (Intel Corporation) S3 NetAdapterCx; C:\Windows\System32\drivers\NetAdapterCx.sys [90624 2016-07-16] () R3 Netwtw02; C:\Windows\System32\drivers\Netwtw02.sys [6723848 2016-01-29] (Intel Corporation) R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [26560 2016-06-14] (NVIDIA Corporation) R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [56384 2016-04-14] (NVIDIA Corporation) R3 RadioShim; C:\Windows\System32\drivers\RadioShim.sys [14680 2013-07-17] (Acer Incorporated) R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [936192 2016-05-28] (Realtek ) R3 RTSUER; C:\Windows\system32\Drivers\RtsUer.sys [422656 2016-03-14] (Realsil Semiconductor Corporation) R3 semav6msr64; C:\WINDOWS\system32\drivers\semav6msr64.sys [21984 2016-03-09] () S3 sshid; C:\Windows\System32\drivers\sshid.sys [51392 2016-01-14] (SteelSeries ApS) S1 VBoxNetAdp; C:\Windows\system32\DRIVERS\VBoxNetAdp6.sys [117768 2015-10-02] (Oracle Corporation) R1 VBoxNetLwf; C:\Windows\system32\DRIVERS\VBoxNetLwf.sys [146584 2015-10-02] (Oracle Corporation) S0 WdBoot; C:\Windows\System32\drivers\WdBoot.sys [44056 2016-07-16] (Microsoft Corporation) R0 WdFilter; C:\Windows\System32\drivers\WdFilter.sys [290144 2016-07-16] (Microsoft Corporation) R3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [123232 2016-07-16] (Microsoft Corporation) ==================== NetSvcs (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) ==================== Un mois - Créés - fichiers et dossiers ======== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2016-08-26 15:13 - 2016-08-26 15:13 - 00023722 _____ C:\Users\David\Desktop\FRST.txt 2016-08-26 15:13 - 2016-08-26 15:13 - 00000000 ____D C:\FRST 2016-08-26 15:12 - 2016-08-26 15:12 - 02396160 _____ (Farbar) C:\Users\David\Desktop\FRST64.exe 2016-08-25 16:26 - 2016-08-25 16:26 - 00099852 _____ C:\Users\David\Downloads\releveFERRER(1).pdf 2016-08-25 16:24 - 2016-08-25 16:24 - 00000679 _____ C:\Users\David\Desktop\JRT.txt 2016-08-25 16:22 - 2016-08-25 16:22 - 00000000 _____ C:\Users\David\Downloads\releveFERRER.pdf 2016-08-25 16:21 - 2016-08-25 16:21 - 01610560 _____ (Malwarebytes) C:\Users\David\Desktop\JRT.exe 2016-08-25 01:44 - 2016-08-25 01:44 - 00000229 _____ C:\Users\David\Desktop\villes.txt 2016-08-24 21:11 - 2016-08-24 21:11 - 00001272 _____ C:\Users\David\Desktop\MAL.txt 2016-08-24 20:07 - 2016-08-06 06:33 - 00354264 _____ (Microsoft Corporation) C:\WINDOWS\system32\systemreset.exe 2016-08-24 20:07 - 2016-08-06 06:31 - 00041824 _____ (Microsoft Corporation) C:\WINDOWS\system32\SysResetErr.exe 2016-08-24 20:07 - 2016-08-06 06:30 - 01883784 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll 2016-08-24 20:07 - 2016-08-06 06:29 - 00128352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\partmgr.sys 2016-08-24 20:07 - 2016-08-06 06:17 - 00450400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys 2016-08-24 20:07 - 2016-08-06 06:17 - 00224096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys 2016-08-24 20:07 - 2016-08-06 06:16 - 00435040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys 2016-08-24 20:07 - 2016-08-06 05:40 - 00239104 _____ (Microsoft Corporation) C:\WINDOWS\system32\dafpos.dll 2016-08-24 20:07 - 2016-08-06 05:35 - 00471552 _____ (Microsoft Corporation) C:\WINDOWS\system32\DscCore.dll 2016-08-24 20:07 - 2016-08-06 05:33 - 01304576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsp_fs.dll 2016-08-24 20:07 - 2016-08-06 05:33 - 01106432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsp_health.dll 2016-08-24 20:07 - 2016-08-06 05:31 - 00100864 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpninprc.dll 2016-08-24 20:07 - 2016-08-06 05:24 - 01875456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Logon.dll 2016-08-24 20:07 - 2016-08-06 05:19 - 01812480 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngine.dll 2016-08-24 20:07 - 2016-08-05 11:14 - 01066328 _____ (Microsoft Corporation) C:\WINDOWS\system32\pidgenx.dll 2016-08-24 20:07 - 2016-08-05 11:12 - 05622600 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe 2016-08-24 20:07 - 2016-08-05 11:10 - 00939872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pidgenx.dll 2016-08-24 20:07 - 2016-08-05 11:05 - 00665768 _____ (Microsoft Corporation) C:\WINDOWS\system32\GenValObj.exe 2016-08-24 20:06 - 2016-08-06 06:18 - 00396168 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanapi.dll 2016-08-24 20:06 - 2016-08-06 05:48 - 00015872 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanhlp.dll 2016-08-24 20:06 - 2016-08-06 05:48 - 00011264 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngine.exe 2016-08-24 20:06 - 2016-08-06 05:43 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvcpal.dll 2016-08-24 20:06 - 2016-08-06 05:41 - 00462336 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansec.dll 2016-08-24 20:06 - 2016-08-06 05:41 - 00412160 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanmsm.dll 2016-08-24 20:06 - 2016-08-06 05:41 - 00068096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncPolicy.dll 2016-08-24 20:06 - 2016-08-06 05:38 - 17187328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll 2016-08-24 20:06 - 2016-08-06 05:33 - 01082368 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll 2016-08-24 20:06 - 2016-08-05 10:28 - 00022016 _____ (Microsoft Corporation) C:\WINDOWS\system32\slcext.dll 2016-08-24 20:06 - 2016-08-05 10:22 - 00138240 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppc.dll 2016-08-24 20:06 - 2016-08-05 10:20 - 00538112 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcext.dll 2016-08-24 20:06 - 2016-08-05 10:08 - 00135168 _____ (Microsoft Corporation) C:\WINDOWS\system32\slc.dll 2016-08-24 20:05 - 2016-08-06 06:08 - 01430208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll 2016-08-24 20:05 - 2016-08-06 06:08 - 00843104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll 2016-08-24 20:05 - 2016-08-06 06:08 - 00509784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncHost.exe 2016-08-24 20:05 - 2016-08-06 06:03 - 20965240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll 2016-08-24 20:05 - 2016-08-06 05:47 - 00027648 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiFiConfigSP.dll 2016-08-24 20:05 - 2016-08-06 05:42 - 00179712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgent.exe 2016-08-24 20:05 - 2016-08-06 05:42 - 00171520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ClipboardServer.dll 2016-08-24 20:05 - 2016-08-06 05:41 - 00554496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StoreAgent.dll 2016-08-24 20:05 - 2016-08-06 05:40 - 00426496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneDriveSettingSyncProvider.dll 2016-08-24 20:05 - 2016-08-06 05:40 - 00222720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgentUserBroker.exe 2016-08-24 20:05 - 2016-08-06 05:39 - 00298496 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifiprofilessettinghandler.dll 2016-08-24 20:05 - 2016-08-06 05:37 - 00253952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll 2016-08-24 20:05 - 2016-08-06 05:30 - 13080576 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll 2016-08-24 20:05 - 2016-08-06 05:28 - 00936960 _____ (Microsoft Corporation) C:\WINDOWS\system32\MCRecvSrc.dll 2016-08-24 20:05 - 2016-08-06 05:23 - 02370048 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll 2016-08-24 20:05 - 2016-08-06 05:23 - 00860672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncCore.dll 2016-08-24 20:04 - 2016-08-06 06:26 - 01176664 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll 2016-08-24 20:04 - 2016-08-06 06:26 - 00409944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS 2016-08-24 20:04 - 2016-08-06 06:18 - 00584032 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe 2016-08-24 20:04 - 2016-08-06 06:17 - 00790760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll 2016-08-24 20:04 - 2016-08-06 06:16 - 01099104 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe 2016-08-24 20:04 - 2016-08-06 06:16 - 00987488 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe 2016-08-24 20:04 - 2016-08-06 06:13 - 00381760 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppHost.exe 2016-08-24 20:04 - 2016-08-06 06:09 - 00151224 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll 2016-08-24 20:04 - 2016-08-06 06:08 - 02537816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys 2016-08-24 20:04 - 2016-08-06 06:08 - 02251432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll 2016-08-24 20:04 - 2016-08-06 06:03 - 01360456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetsrc.dll 2016-08-24 20:04 - 2016-08-06 06:03 - 01343928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsrcsnk.dll 2016-08-24 20:04 - 2016-08-06 06:03 - 00980824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetcore.dll 2016-08-24 20:04 - 2016-08-06 06:03 - 00955008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll 2016-08-24 20:04 - 2016-08-06 06:03 - 00529928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf.dll 2016-08-24 20:04 - 2016-08-06 06:03 - 00036168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfpmp.exe 2016-08-24 20:04 - 2016-08-06 05:48 - 01631232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll 2016-08-24 20:04 - 2016-08-06 05:47 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\system32\iernonce.dll 2016-08-24 20:04 - 2016-08-06 05:46 - 00047104 _____ (Microsoft Corporation) C:\WINDOWS\system32\wfdprov.dll 2016-08-24 20:04 - 2016-08-06 05:45 - 00327680 _____ (Microsoft Corporation) C:\WINDOWS\system32\container.dll 2016-08-24 20:04 - 2016-08-06 05:45 - 00066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\iesetup.dll 2016-08-24 20:04 - 2016-08-06 05:45 - 00049664 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorageUsage.dll 2016-08-24 20:04 - 2016-08-06 05:45 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\netiougc.exe 2016-08-24 20:04 - 2016-08-06 05:45 - 00029696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iernonce.dll 2016-08-24 20:04 - 2016-08-06 05:45 - 00025600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netiougc.exe 2016-08-24 20:04 - 2016-08-06 05:44 - 00061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iesetup.dll 2016-08-24 20:04 - 2016-08-06 05:43 - 00280064 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_WorkAccess.dll 2016-08-24 20:04 - 2016-08-06 05:43 - 00200704 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipboardServer.dll 2016-08-24 20:04 - 2016-08-06 05:42 - 00223744 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe 2016-08-24 20:04 - 2016-08-06 05:40 - 00387584 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll 2016-08-24 20:04 - 2016-08-06 05:40 - 00234496 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcpipcfg.dll 2016-08-24 20:04 - 2016-08-06 05:39 - 00431616 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpAXHolder.dll 2016-08-24 20:04 - 2016-08-06 05:39 - 00181760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tcpipcfg.dll 2016-08-24 20:04 - 2016-08-06 05:38 - 00526848 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll 2016-08-24 20:04 - 2016-08-06 05:37 - 00340480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll 2016-08-24 20:04 - 2016-08-06 05:34 - 01883648 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_fs.dll 2016-08-24 20:04 - 2016-08-06 05:34 - 01545728 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_health.dll 2016-08-24 20:04 - 2016-08-06 05:34 - 00104960 _____ (Microsoft Corporation) C:\WINDOWS\system32\CastLaunch.dll 2016-08-24 20:04 - 2016-08-06 05:33 - 00396800 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll 2016-08-24 20:04 - 2016-08-06 05:31 - 12174336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll 2016-08-24 20:04 - 2016-08-06 05:28 - 00210432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\offlinesam.dll 2016-08-24 20:04 - 2016-08-06 05:28 - 00086016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\samlib.dll 2016-08-24 20:04 - 2016-08-06 05:26 - 00758784 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll 2016-08-24 20:04 - 2016-08-06 05:26 - 00691712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll 2016-08-24 20:04 - 2016-08-06 05:25 - 03116032 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSAJApi.dll 2016-08-24 20:04 - 2016-08-06 05:24 - 02680832 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll 2016-08-24 20:04 - 2016-08-06 05:24 - 02095616 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl 2016-08-24 20:04 - 2016-08-06 05:24 - 02026496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl 2016-08-24 20:04 - 2016-08-06 05:23 - 01062400 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll 2016-08-24 20:04 - 2016-08-06 05:23 - 00391168 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll 2016-08-24 20:04 - 2016-08-06 05:21 - 00102400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\offlinelsa.dll 2016-08-24 20:04 - 2016-08-05 10:29 - 00568832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Speech.UXRes.dll 2016-08-24 20:04 - 2016-08-05 10:07 - 01170944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Speech.dll 2016-08-24 20:03 - 2016-08-06 06:32 - 01046976 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi 2016-08-24 20:03 - 2016-08-06 06:32 - 00885832 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe 2016-08-24 20:03 - 2016-08-06 06:30 - 01349128 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi 2016-08-24 20:03 - 2016-08-06 06:30 - 01163696 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe 2016-08-24 20:03 - 2016-08-06 06:18 - 01859264 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll 2016-08-24 20:03 - 2016-08-06 06:18 - 01260384 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll 2016-08-24 20:03 - 2016-08-06 06:17 - 00619368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys 2016-08-24 20:03 - 2016-08-06 06:16 - 00942432 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.efi 2016-08-24 20:03 - 2016-08-06 06:16 - 00807776 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.exe 2016-08-24 20:03 - 2016-08-06 06:16 - 00073568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hvservice.sys 2016-08-24 20:03 - 2016-08-06 06:16 - 00020320 _____ (Microsoft Corporation) C:\WINDOWS\system32\kdhvcom.dll 2016-08-24 20:03 - 2016-08-06 06:15 - 00408600 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsmf.dll 2016-08-24 20:03 - 2016-08-06 06:13 - 22218808 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll 2016-08-24 20:03 - 2016-08-06 06:13 - 01847048 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsrcsnk.dll 2016-08-24 20:03 - 2016-08-06 06:13 - 01453992 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetsrc.dll 2016-08-24 20:03 - 2016-08-06 06:13 - 01071728 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetcore.dll 2016-08-24 20:03 - 2016-08-06 06:13 - 01066096 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll 2016-08-24 20:03 - 2016-08-06 06:04 - 00361096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsmf.dll 2016-08-24 20:03 - 2016-08-06 06:03 - 01557296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmde.dll 2016-08-24 20:03 - 2016-08-06 05:44 - 00035328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\deviceassociation.dll 2016-08-24 20:03 - 2016-08-06 05:43 - 00268800 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe 2016-08-24 20:03 - 2016-08-06 05:42 - 00211456 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe 2016-08-24 20:03 - 2016-08-06 05:41 - 13867520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll 2016-08-24 20:03 - 2016-08-06 05:41 - 00743424 _____ (Microsoft Corporation) C:\WINDOWS\system32\StoreAgent.dll 2016-08-24 20:03 - 2016-08-06 05:41 - 00323584 _____ (Microsoft Corporation) C:\WINDOWS\system32\domgmt.dll 2016-08-24 20:03 - 2016-08-06 05:40 - 00259584 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgentUserBroker.exe 2016-08-24 20:03 - 2016-08-06 05:38 - 00320000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll 2016-08-24 20:03 - 2016-08-06 05:35 - 09127936 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll 2016-08-24 20:03 - 2016-08-06 05:31 - 00884224 _____ (Microsoft Corporation) C:\WINDOWS\system32\samsrv.dll 2016-08-24 20:03 - 2016-08-06 05:31 - 00558080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\clusapi.dll 2016-08-24 20:03 - 2016-08-06 05:29 - 00298496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\resutils.dll 2016-08-24 20:03 - 2016-08-06 05:29 - 00237568 _____ (Microsoft Corporation) C:\WINDOWS\system32\offlinesam.dll 2016-08-24 20:03 - 2016-08-06 05:29 - 00123904 _____ (Microsoft Corporation) C:\WINDOWS\system32\samlib.dll 2016-08-24 20:03 - 2016-08-06 05:26 - 02422784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSAJApi.dll 2016-08-24 20:03 - 2016-08-06 05:23 - 01491456 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll 2016-08-24 20:03 - 2016-08-06 05:23 - 01231872 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll 2016-08-24 20:03 - 2016-08-06 05:19 - 00114688 _____ (Microsoft Corporation) C:\WINDOWS\system32\offlinelsa.dll 2016-08-24 20:03 - 2016-08-05 10:29 - 00019968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\slcext.dll 2016-08-24 20:03 - 2016-08-05 10:20 - 00466432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sppcext.dll 2016-08-24 20:02 - 2016-08-06 06:31 - 00077664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\stornvme.sys 2016-08-24 20:02 - 2016-08-06 06:30 - 07814496 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe 2016-08-24 20:02 - 2016-08-06 06:23 - 00168800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys 2016-08-24 20:02 - 2016-08-06 06:13 - 00595488 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll 2016-08-24 20:02 - 2016-08-06 06:13 - 00044472 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfpmp.exe 2016-08-24 20:02 - 2016-08-06 05:48 - 01631232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.Resources.dll 2016-08-24 20:02 - 2016-08-06 05:47 - 00043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\LaunchWinApp.exe 2016-08-24 20:02 - 2016-08-06 05:47 - 00038400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidusb.sys 2016-08-24 20:02 - 2016-08-06 05:46 - 00040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidparse.sys 2016-08-24 20:02 - 2016-08-06 05:43 - 00156672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidclass.sys 2016-08-24 20:02 - 2016-08-06 05:41 - 00266240 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConsoleLogon.dll 2016-08-24 20:02 - 2016-08-06 05:38 - 00049152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Shell.dll 2016-08-24 20:02 - 2016-08-06 05:30 - 01255936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AzureSettingSyncProvider.dll 2016-08-24 20:02 - 2016-08-06 05:29 - 04749312 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll 2016-08-24 20:02 - 2016-08-06 05:28 - 00544768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\uReFS.dll 2016-08-24 20:01 - 2016-08-06 06:29 - 00199008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wof.sys 2016-08-24 20:01 - 2016-08-06 06:18 - 02745224 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll 2016-08-24 20:01 - 2016-08-06 06:16 - 00026408 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe 2016-08-24 20:01 - 2016-08-06 06:13 - 01694200 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll 2016-08-24 20:01 - 2016-08-06 06:08 - 00313560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlanapi.dll 2016-08-24 20:01 - 2016-08-06 05:49 - 22570496 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll 2016-08-24 20:01 - 2016-08-06 05:48 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups2.dll 2016-08-24 20:01 - 2016-08-06 05:48 - 00015360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlanhlp.dll 2016-08-24 20:01 - 2016-08-06 05:46 - 00094720 _____ (Microsoft Corporation) C:\WINDOWS\system32\dasHost.exe 2016-08-24 20:01 - 2016-08-06 05:46 - 00057344 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinBioDataModelOOBE.exe 2016-08-24 20:01 - 2016-08-06 05:45 - 00038912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wfdprov.dll 2016-08-24 20:01 - 2016-08-06 05:44 - 00226816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbvideo.sys 2016-08-24 20:01 - 2016-08-06 05:44 - 00047616 _____ (Microsoft Corporation) C:\WINDOWS\system32\deviceassociation.dll 2016-08-24 20:01 - 2016-08-06 05:41 - 00243712 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinBioDataModel.dll 2016-08-24 20:01 - 2016-08-06 05:39 - 00295424 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudBackupSettings.dll 2016-08-24 20:01 - 2016-08-06 05:39 - 00261120 _____ (Microsoft Corporation) C:\WINDOWS\system32\indexeddbserver.dll 2016-08-24 20:01 - 2016-08-06 05:36 - 00447488 _____ (Microsoft Corporation) C:\WINDOWS\system32\das.dll 2016-08-24 20:01 - 2016-08-06 05:34 - 00023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\smphost.dll 2016-08-24 20:01 - 2016-08-06 05:33 - 23682560 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll 2016-08-24 20:01 - 2016-08-06 05:33 - 00020992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\smphost.dll 2016-08-24 20:01 - 2016-08-06 05:31 - 03244032 _____ (Microsoft Corporation) C:\WINDOWS\system32\mispace.dll 2016-08-24 20:01 - 2016-08-06 05:31 - 02710528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mispace.dll 2016-08-24 20:01 - 2016-08-06 05:31 - 01052672 _____ (Microsoft Corporation) C:\WINDOWS\system32\qmgr.dll 2016-08-24 20:01 - 2016-08-06 05:29 - 00627200 _____ (Microsoft Corporation) C:\WINDOWS\system32\uReFS.dll 2016-08-24 20:01 - 2016-08-06 05:25 - 01595904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll 2016-08-24 20:01 - 2016-08-06 05:24 - 02314752 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll 2016-08-24 20:01 - 2016-08-06 05:23 - 01780736 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll 2016-08-24 20:01 - 2016-08-06 05:23 - 01508864 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys 2016-08-24 20:01 - 2016-08-06 05:23 - 00520192 _____ (Microsoft Corporation) C:\WINDOWS\system32\w32time.dll 2016-08-24 20:01 - 2016-08-05 10:07 - 01643008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Speech.dll 2016-08-24 20:00 - 2016-08-06 05:45 - 00226304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\container.dll 2016-08-24 20:00 - 2016-08-06 05:41 - 00231424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudBackupSettings.dll 2016-08-24 20:00 - 2016-08-06 05:37 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\indexeddbserver.dll 2016-08-24 20:00 - 2016-08-06 05:36 - 19422720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll 2016-08-24 20:00 - 2016-08-06 05:35 - 07624192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll 2016-08-24 20:00 - 2016-08-06 05:34 - 19418624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll 2016-08-24 19:59 - 2016-08-06 05:50 - 02755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb 2016-08-24 19:59 - 2016-08-06 05:48 - 02755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb 2016-08-24 19:59 - 2016-08-06 05:30 - 12345344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll 2016-08-24 19:59 - 2016-08-06 05:29 - 13433856 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll 2016-08-24 19:59 - 2016-08-06 05:27 - 00640000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MCRecvSrc.dll 2016-08-24 19:56 - 2016-08-06 06:24 - 01570680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll 2016-08-24 19:56 - 2016-08-06 06:08 - 01469120 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll 2016-08-24 19:56 - 2016-08-06 06:08 - 00587968 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll 2016-08-24 19:56 - 2016-08-06 06:08 - 00050880 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe 2016-08-24 19:56 - 2016-08-06 06:02 - 00321280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppHost.exe 2016-08-24 19:56 - 2016-08-06 05:32 - 00715264 _____ (Microsoft Corporation) C:\WINDOWS\system32\clusapi.dll 2016-08-24 19:56 - 2016-08-06 05:31 - 01908224 _____ (Microsoft Corporation) C:\WINDOWS\system32\AzureSettingSyncProvider.dll 2016-08-24 19:56 - 2016-08-06 05:27 - 02510848 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll 2016-08-24 19:56 - 2016-08-05 10:29 - 00568832 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Speech.UXRes.dll 2016-08-24 19:55 - 2016-08-06 05:48 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LaunchWinApp.exe 2016-08-24 19:55 - 2016-08-06 05:48 - 00010752 _____ (Microsoft Corporation) C:\WINDOWS\system32\spwmp.dll 2016-08-24 19:55 - 2016-08-06 05:48 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\spwmp.dll 2016-08-24 19:55 - 2016-08-06 05:48 - 00005120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msdxm.ocx 2016-08-24 19:55 - 2016-08-06 05:48 - 00005120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxmasf.dll 2016-08-24 19:55 - 2016-08-06 05:47 - 00006656 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdxm.ocx 2016-08-24 19:55 - 2016-08-06 05:47 - 00006656 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxmasf.dll 2016-08-24 19:55 - 2016-08-06 05:40 - 00083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncPolicy.dll 2016-08-24 19:55 - 2016-08-06 05:30 - 00374784 _____ (Microsoft Corporation) C:\WINDOWS\system32\resutils.dll 2016-08-24 19:55 - 2016-08-05 10:23 - 00105984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sppc.dll 2016-08-24 19:55 - 2016-08-05 10:18 - 00118272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\slc.dll 2016-08-24 19:54 - 2016-08-06 05:46 - 09260032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmploc.DLL 2016-08-24 19:52 - 2016-08-06 05:46 - 09260032 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmploc.DLL 2016-08-24 19:29 - 2016-08-24 19:29 - 00002579 _____ C:\Users\David\Desktop\AdwCleaner[C0].txt 2016-08-24 17:08 - 2016-08-24 19:25 - 00000000 ____D C:\AdwCleaner 2016-08-24 17:08 - 2016-08-24 17:08 - 03784256 _____ C:\Users\David\Downloads\adwcleaner_6.000.exe 2016-08-24 14:02 - 2016-08-24 14:10 - 00000000 ____D C:\Users\David\AppData\Roaming\ZHP 2016-08-24 14:02 - 2016-08-24 14:05 - 02299904 _____ C:\Users\David\ZHPDiag3.exe 2016-08-24 13:40 - 2016-08-24 13:40 - 00000000 ____D C:\ProgramData\Microsoft OneDrive 2016-08-24 13:35 - 2016-08-24 13:35 - 00000000 ____D C:\ProgramData\USOShared 2016-08-24 13:34 - 2016-08-24 19:28 - 00000000 ____D C:\Users\David\AppData\Local\ConnectedDevicesPlatform 2016-08-24 13:33 - 2016-08-24 13:33 - 00000020 ___SH C:\Users\David\ntuser.ini 2016-08-24 03:32 - 2016-08-24 03:17 - 00000000 ___DC C:\WINDOWS\Panther 2016-08-24 03:29 - 2016-08-24 03:29 - 08124416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll 2016-08-24 03:29 - 2016-08-24 03:29 - 06044672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll 2016-08-24 03:29 - 2016-08-24 03:29 - 01081856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll 2016-08-24 03:29 - 2016-08-24 03:29 - 00822784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll 2016-08-24 03:29 - 2016-08-24 03:29 - 00140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakrathunk.dll 2016-08-24 03:29 - 2016-08-24 03:29 - 00121344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakrathunk.dll 2016-08-24 03:29 - 2016-08-24 03:29 - 00000000 ____D C:\Windows.old 2016-08-24 03:28 - 2016-08-24 03:28 - 06664192 _____ (Microsoft Corporation) C:\WINDOWS\system32\mspaint.exe 2016-08-24 03:28 - 2016-08-24 03:28 - 06474752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mspaint.exe 2016-08-24 03:28 - 2016-08-24 03:28 - 05511168 _____ (Microsoft Corporation) C:\WINDOWS\system32\aclui.dll 2016-08-24 03:28 - 2016-08-24 03:28 - 05398016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aclui.dll 2016-08-24 03:28 - 2016-08-24 03:28 - 03617280 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys 2016-08-24 03:28 - 2016-08-24 03:28 - 02999296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys 2016-08-24 03:28 - 2016-08-24 03:28 - 02190688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys 2016-08-24 03:28 - 2016-08-24 03:28 - 01708544 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtsvc.dll 2016-08-24 03:28 - 2016-08-24 03:28 - 01656320 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll 2016-08-24 03:28 - 2016-08-24 03:28 - 01461200 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll 2016-08-24 03:28 - 2016-08-24 03:28 - 01456640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll 2016-08-24 03:28 - 2016-08-24 03:28 - 01435896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll 2016-08-24 03:28 - 2016-08-24 03:28 - 01418304 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll 2016-08-24 03:28 - 2016-08-24 03:28 - 01265424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll 2016-08-24 03:28 - 2016-08-24 03:28 - 00909312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Search.dll 2016-08-24 03:28 - 2016-08-24 03:28 - 00770048 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll 2016-08-24 03:28 - 2016-08-24 03:28 - 00712192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Search.dll 2016-08-24 03:28 - 2016-08-24 03:28 - 00658784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys 2016-08-24 03:28 - 2016-08-24 03:28 - 00509952 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Bluetooth.dll 2016-08-24 03:28 - 2016-08-24 03:28 - 00496128 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.UserAccountsHandlers.dll 2016-08-24 03:28 - 2016-08-24 03:28 - 00495104 _____ (Microsoft Corporation) C:\WINDOWS\system32\DataSenseHandlers.dll 2016-08-24 03:28 - 2016-08-24 03:28 - 00402272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys 2016-08-24 03:28 - 2016-08-24 03:28 - 00389000 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtapi.dll 2016-08-24 03:28 - 2016-08-24 03:28 - 00297552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wevtapi.dll 2016-08-24 03:28 - 2016-08-24 03:28 - 00289792 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeveloperOptionsSettingsHandlers.dll 2016-08-24 03:28 - 2016-08-24 03:28 - 00241496 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHost.dll 2016-08-24 03:28 - 2016-08-24 03:28 - 00231424 _____ (Microsoft Corporation) C:\WINDOWS\system32\shutdownux.dll 2016-08-24 03:28 - 2016-08-24 03:28 - 00227840 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdd.dll 2016-08-24 03:28 - 2016-08-24 03:28 - 00210944 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys 2016-08-24 03:28 - 2016-08-24 03:28 - 00150528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32k.sys 2016-08-24 03:28 - 2016-08-24 03:28 - 00114192 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32u.dll 2016-08-24 03:28 - 2016-08-24 03:28 - 00079536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32u.dll 2016-08-24 03:28 - 2016-08-24 03:28 - 00062816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dam.sys 2016-08-24 03:28 - 2016-08-24 03:28 - 00058880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Shell.Search.UriHandler.dll 2016-08-24 03:28 - 2016-08-24 03:28 - 00047104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Shell.Search.UriHandler.dll 2016-08-24 03:27 - 2016-08-24 03:27 - 00008192 _____ C:\WINDOWS\system32\config\userdiff 2016-08-24 03:27 - 2016-07-15 20:29 - 05739008 _____ (Microsoft Corporation) C:\WINDOWS\system32\prm0009.dll 2016-08-24 03:27 - 2016-07-15 20:29 - 02629120 _____ (Microsoft Corporation) C:\WINDOWS\system32\NlsLexicons0009.dll 2016-08-24 03:27 - 2016-07-15 20:14 - 06354944 _____ (Microsoft Corporation) C:\WINDOWS\system32\NlsData0009.dll 2016-08-24 03:27 - 2016-07-15 19:45 - 02629120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NlsLexicons0009.dll 2016-08-24 03:27 - 2016-07-15 19:29 - 05489664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NlsData0009.dll 2016-08-24 03:24 - 2016-08-24 03:24 - 00000000 ____D C:\WINDOWS\SysWOW64\XPSViewer 2016-08-24 03:24 - 2016-08-24 03:24 - 00000000 ____D C:\Program Files\Reference Assemblies 2016-08-24 03:24 - 2016-08-24 03:24 - 00000000 ____D C:\Program Files\MSBuild 2016-08-24 03:24 - 2016-08-24 03:24 - 00000000 ____D C:\Program Files (x86)\Reference Assemblies 2016-08-24 03:24 - 2016-08-24 02:52 - 00000000 ____D C:\Program Files (x86)\MSBuild 2016-08-24 03:24 - 2016-05-25 15:31 - 01166520 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll 2016-08-24 03:24 - 2016-05-25 15:31 - 00124624 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll 2016-08-24 03:24 - 2016-05-25 15:31 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe 2016-08-24 03:24 - 2016-05-25 12:03 - 00778936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll 2016-08-24 03:24 - 2016-05-25 12:03 - 00103120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll 2016-08-24 03:24 - 2016-05-25 12:03 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe 2016-08-24 03:16 - 2016-08-24 03:16 - 00000000 _SHDL C:\Users\Default\Voisinage réseau 2016-08-24 03:16 - 2016-08-24 03:16 - 00000000 _SHDL C:\Users\Default\Voisinage d'impression 2016-08-24 03:16 - 2016-08-24 03:16 - 00000000 _SHDL C:\Users\Default\Modèles 2016-08-24 03:16 - 2016-08-24 03:16 - 00000000 _SHDL C:\Users\Default\Mes documents 2016-08-24 03:16 - 2016-08-24 03:16 - 00000000 _SHDL C:\Users\Default\Menu Démarrer 2016-08-24 03:16 - 2016-08-24 03:16 - 00000000 _SHDL C:\Users\Default\Documents\Mes vidéos 2016-08-24 03:16 - 2016-08-24 03:16 - 00000000 _SHDL C:\Users\Default\Documents\Mes images 2016-08-24 03:16 - 2016-08-24 03:16 - 00000000 _SHDL C:\Users\Default\Documents\Ma musique 2016-08-24 03:16 - 2016-08-24 03:16 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programmes 2016-08-24 03:16 - 2016-08-24 03:16 - 00000000 _SHDL C:\Users\Default\AppData\Local\Historique 2016-08-24 03:16 - 2016-08-24 03:16 - 00000000 _SHDL C:\Users\Default User\Documents\Mes vidéos 2016-08-24 03:16 - 2016-08-24 03:16 - 00000000 _SHDL C:\Users\Default User\Documents\Mes images 2016-08-24 03:16 - 2016-08-24 03:16 - 00000000 _SHDL C:\Users\Default User\Documents\Ma musique 2016-08-24 03:16 - 2016-08-24 03:16 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programmes 2016-08-24 03:16 - 2016-08-24 03:16 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Historique 2016-08-24 03:13 - 2016-08-24 03:15 - 00007623 _____ C:\WINDOWS\diagwrn.xml 2016-08-24 03:13 - 2016-08-24 03:15 - 00007623 _____ C:\WINDOWS\diagerr.xml 2016-08-24 03:01 - 2016-08-24 21:15 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT 2016-08-24 03:01 - 2016-08-24 03:01 - 00003910 _____ C:\WINDOWS\System32\Tasks\ACCAgent 2016-08-24 03:01 - 2016-08-24 03:01 - 00003606 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA 2016-08-24 03:01 - 2016-08-24 03:01 - 00003482 _____ C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task 2016-08-24 03:01 - 2016-08-24 03:01 - 00003382 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore 2016-08-24 03:01 - 2016-08-24 03:01 - 00003216 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater 2016-08-24 03:01 - 2016-08-24 03:01 - 00003046 _____ C:\WINDOWS\System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 2016-08-24 03:01 - 2016-08-24 03:01 - 00002880 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2239795892-1550188572-3530150212-1001 2016-08-24 03:01 - 2016-08-24 03:01 - 00002878 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2239795892-1550188572-3530150212-500 2016-08-24 03:01 - 2016-08-24 03:01 - 00002680 _____ C:\WINDOWS\System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473-Logon 2016-08-24 03:01 - 2016-08-24 03:01 - 00002444 _____ C:\WINDOWS\System32\Tasks\Microsoft_Hardware_Launch_mousekeyboardcenter_exe 2016-08-24 03:01 - 2016-08-24 03:01 - 00002392 _____ C:\WINDOWS\System32\Tasks\Microsoft_Hardware_Launch_ipoint_exe 2016-08-24 03:01 - 2016-08-24 03:01 - 00002388 _____ C:\WINDOWS\System32\Tasks\Microsoft_Hardware_Launch_itype_exe 2016-08-24 03:01 - 2016-08-24 03:01 - 00002374 _____ C:\WINDOWS\System32\Tasks\Microsoft_MKC_Logon_Task_ipoint.exe 2016-08-24 03:01 - 2016-08-24 03:01 - 00002374 _____ C:\WINDOWS\System32\Tasks\{CA8CA3C9-4D30-4F13-AE12-49E31EC9EEB4} 2016-08-24 03:01 - 2016-08-24 03:01 - 00002370 _____ C:\WINDOWS\System32\Tasks\Microsoft_MKC_Logon_Task_itype.exe 2016-08-24 03:01 - 2016-08-24 03:01 - 00002350 _____ C:\WINDOWS\System32\Tasks\Quick Access Quick Launcher 2016-08-24 03:01 - 2016-08-24 03:01 - 00002324 _____ C:\WINDOWS\System32\Tasks\{9139F1DC-CE27-4C92-A156-498577525919} 2016-08-24 03:01 - 2016-08-24 03:01 - 00002318 _____ C:\WINDOWS\System32\Tasks\{6FA5B6A9-642B-4A2F-B05A-084B662A902D} 2016-08-24 03:01 - 2016-08-24 03:01 - 00002304 _____ C:\WINDOWS\System32\Tasks\{93041643-E60C-4259-A3AF-6916E4675196} 2016-08-24 03:01 - 2016-08-24 03:01 - 00002292 _____ C:\WINDOWS\System32\Tasks\{B9A6F56B-006C-434A-ABC3-6D2AAB3AFDCD} 2016-08-24 03:01 - 2016-08-24 03:01 - 00002274 _____ C:\WINDOWS\System32\Tasks\DolbySelectorTask 2016-08-24 03:01 - 2016-08-24 03:01 - 00002264 _____ C:\WINDOWS\System32\Tasks\Power Management 2016-08-24 03:01 - 2016-08-24 03:01 - 00002238 _____ C:\WINDOWS\System32\Tasks\Launch Manager 2016-08-24 03:01 - 2016-08-24 03:01 - 00002236 _____ C:\WINDOWS\System32\Tasks\CCleanerSkipUAC 2016-08-24 03:01 - 2016-08-24 03:01 - 00002230 _____ C:\WINDOWS\System32\Tasks\Quick Access 2016-08-24 03:01 - 2016-08-24 03:01 - 00002110 _____ C:\WINDOWS\System32\Tasks\USER_ESRV_SVC_WILLAMETTE 2016-08-24 03:01 - 2016-08-24 03:01 - 00000000 ____D C:\WINDOWS\System32\Tasks\OfficeSoftwareProtectionPlatform 2016-08-24 03:01 - 2016-08-24 03:01 - 00000000 ____D C:\WINDOWS\System32\Tasks\Intel 2016-08-24 03:01 - 2014-12-24 03:22 - 00003596 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-4095573088-2473530933-1474106655-500 2016-08-24 03:01 - 2014-07-14 20:10 - 00003594 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1857877272-2050632404-221344034-500 2016-08-24 02:49 - 2016-08-24 02:49 - 00001576 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk 2016-08-24 02:49 - 2016-08-24 02:49 - 00000000 ____D C:\Users\Default\AppData\Local\Microsoft Help 2016-08-24 02:49 - 2016-08-24 02:49 - 00000000 ____D C:\Users\Default User\AppData\Local\Microsoft Help 2016-08-24 02:43 - 2016-08-24 02:52 - 00000000 ____D C:\WINDOWS\system32\config\bbimigrate 2016-08-24 02:40 - 2016-08-26 00:56 - 00000000 ____D C:\Users\David 2016-08-24 02:40 - 2016-08-24 02:40 - 00000000 _SHDL C:\Users\David\Voisinage réseau 2016-08-24 02:40 - 2016-08-24 02:40 - 00000000 _SHDL C:\Users\David\Voisinage d'impression 2016-08-24 02:40 - 2016-08-24 02:40 - 00000000 _SHDL C:\Users\David\Modèles 2016-08-24 02:40 - 2016-08-24 02:40 - 00000000 _SHDL C:\Users\David\Mes documents 2016-08-24 02:40 - 2016-08-24 02:40 - 00000000 _SHDL C:\Users\David\Menu Démarrer 2016-08-24 02:40 - 2016-08-24 02:40 - 00000000 _SHDL C:\Users\David\Documents\Mes vidéos 2016-08-24 02:40 - 2016-08-24 02:40 - 00000000 _SHDL C:\Users\David\Documents\Mes images 2016-08-24 02:40 - 2016-08-24 02:40 - 00000000 _SHDL C:\Users\David\Documents\Ma musique 2016-08-24 02:40 - 2016-08-24 02:40 - 00000000 _SHDL C:\Users\David\AppData\Roaming\Microsoft\Windows\Start Menu\Programmes 2016-08-24 02:40 - 2016-08-24 02:40 - 00000000 _SHDL C:\Users\David\AppData\Local\Historique 2016-08-24 02:37 - 2016-08-24 02:37 - 34438088 _____ C:\WINDOWS\system32\Drivers\rtkhdasetting.zip 2016-08-24 02:37 - 2016-08-24 02:37 - 00000000 ____H C:\ProgramData\DP45977C.lfl 2016-08-24 02:37 - 2016-08-24 02:37 - 00000000 ____D C:\WINDOWS\SysWOW64\sda 2016-08-24 02:37 - 2016-08-24 02:37 - 00000000 ____D C:\WINDOWS\SysWOW64\RTCOM 2016-08-24 02:37 - 2016-08-24 02:37 - 00000000 ____D C:\WINDOWS\system32\DAX2 2016-08-24 02:37 - 2016-08-24 02:37 - 00000000 ____D C:\Program Files\Realtek 2016-08-24 02:36 - 2016-08-26 15:10 - 00000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat 2016-08-24 02:36 - 2016-08-24 02:44 - 00000000 ____D C:\ProgramData\NVIDIA Corporation 2016-08-24 02:36 - 2016-08-24 02:44 - 00000000 ____D C:\Program Files\NVIDIA Corporation 2016-08-24 02:36 - 2016-08-24 02:36 - 00000200 _____ C:\WINDOWS\system32\{EC94D02F-D200-4428-9531-05AF7F9799CB}.bat 2016-08-24 02:36 - 2016-08-24 02:36 - 00000000 ____D C:\ProgramData\NVIDIA 2016-08-24 02:36 - 2016-07-16 13:41 - 02716672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll 2016-08-24 02:36 - 2016-07-11 00:58 - 06385720 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll 2016-08-24 02:36 - 2016-07-11 00:58 - 02465848 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll 2016-08-24 02:36 - 2016-07-11 00:58 - 01762752 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll 2016-08-24 02:36 - 2016-07-11 00:58 - 01362880 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvvsvc.exe 2016-08-24 02:36 - 2016-07-11 00:58 - 00546240 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshext.dll 2016-08-24 02:36 - 2016-07-11 00:58 - 00393784 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll 2016-08-24 02:36 - 2016-07-11 00:58 - 00083512 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshextr.dll 2016-08-24 02:36 - 2016-07-11 00:58 - 00069568 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll 2016-08-24 02:36 - 2016-07-07 19:05 - 07211925 _____ C:\WINDOWS\system32\nvcoproc.bin 2016-08-24 02:36 - 2015-10-18 17:21 - 00105472 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.DLL 2016-08-24 02:36 - 2015-10-18 17:21 - 00099856 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.DLL 2016-08-24 02:35 - 2016-08-24 02:44 - 00000000 ____D C:\Program Files\Intel 2016-08-24 02:35 - 2016-08-24 02:35 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_TeeDriverx64_01011.Wdf 2016-08-24 02:33 - 2016-08-26 00:56 - 00000000 ____D C:\WINDOWS\system32\SleepStudy 2016-08-24 02:33 - 2016-08-24 19:26 - 00399088 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2016-08-24 02:33 - 2016-08-24 02:33 - 00000000 ____D C:\WINDOWS\ServiceProfiles 2016-08-23 15:50 - 2016-08-23 15:50 - 00000000 ____D C:\Users\David\Documents\BILLETS BIKINI 2016-08-22 14:06 - 2016-08-22 14:06 - 00448831 _____ C:\Users\David\Downloads\PERF_ECHO_MANAGER.pdf 2016-08-18 13:23 - 2016-08-18 13:23 - 05817580 _____ C:\Users\David\Desktop\Convention.pdf 2016-08-18 13:23 - 2011-01-01 00:00 - 00814734 _____ C:\Users\David\Desktop\Diplome.pdf 2016-08-06 15:48 - 2016-08-06 15:48 - 00000000 ____D C:\ProgramData\ANDREA VACONDIO 2016-08-05 14:11 - 2016-08-24 02:52 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDFsam Basic 2016-08-05 14:11 - 2016-08-05 14:11 - 00000000 ____D C:\Program Files (x86)\PDFsam Basic 2016-08-05 14:10 - 2016-08-24 02:52 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java 2016-08-05 14:10 - 2016-08-05 19:31 - 00000000 ____D C:\Users\David\.oracle_jre_usage 2016-08-05 14:10 - 2016-08-05 19:30 - 00110144 _____ (Oracle Corporation) C:\WINDOWS\system32\WindowsAccessBridge-64.dll 2016-08-05 14:10 - 2016-08-05 14:10 - 00000000 ____D C:\Users\David\AppData\Roaming\Sun 2016-08-05 14:10 - 2016-08-05 14:10 - 00000000 ____D C:\Users\David\AppData\LocalLow\Sun 2016-08-05 14:09 - 2016-08-05 19:37 - 00000000 ____D C:\ProgramData\Oracle 2016-08-05 14:09 - 2016-08-05 19:31 - 00000000 ____D C:\Program Files\Java 2016-08-05 14:09 - 2016-08-05 14:09 - 00000000 ____D C:\Users\David\AppData\LocalLow\Oracle 2016-08-05 14:08 - 2016-08-05 14:08 - 05459320 _____ (PDFsam) C:\Users\David\Downloads\PDFsam_Basic_Installer.exe 2016-08-03 00:14 - 2016-08-03 00:14 - 00001147 _____ C:\Users\Public\Desktop\VLC media player.lnk 2016-07-28 16:37 - 2016-07-28 16:37 - 00002726 _____ C:\Users\David\AppData\Roaming\Microsoft\Windows\Start Menu\µTorrent.lnk 2016-07-28 16:36 - 2016-07-28 22:42 - 00000000 ____D C:\Users\David\AppData\Roaming\uTorrent 2016-07-28 16:36 - 2016-07-28 16:36 - 02369536 _____ (BitTorrent Inc.) C:\Users\David\Downloads\uTorrent(1).exe ==================== Un mois - Modifiés - fichiers et dossiers ======== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2016-08-26 15:10 - 2015-06-03 16:47 - 00000000 __SHD C:\Users\David\IntelGraphicsProfiles 2016-08-26 00:56 - 2015-09-27 22:56 - 00000000 ____D C:\Program Files (x86)\Steam 2016-08-25 23:56 - 2016-07-16 13:45 - 00000000 ____D C:\WINDOWS\INF 2016-08-25 23:39 - 2015-10-10 22:17 - 00000000 ____D C:\ProgramData\Origin 2016-08-25 23:01 - 2016-07-16 13:47 - 00000000 ___HD C:\Program Files\WindowsApps 2016-08-25 23:01 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\AppReadiness 2016-08-25 16:14 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\appcompat 2016-08-25 00:28 - 2015-06-03 23:27 - 00000000 __RHD C:\Users\Public\AccountPictures 2016-08-24 21:14 - 2016-07-16 08:04 - 00524288 _____ C:\WINDOWS\system32\config\BBI 2016-08-24 21:13 - 2016-07-16 13:47 - 00000000 ___SD C:\WINDOWS\system32\dsc 2016-08-24 21:13 - 2016-07-16 13:47 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel 2016-08-24 21:13 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\appraiser 2016-08-24 21:13 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\ShellExperiences 2016-08-24 20:13 - 2016-07-16 13:36 - 00000000 ____D C:\WINDOWS\CbsTemp 2016-08-24 19:47 - 2015-06-04 03:23 - 00192216 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys 2016-08-24 19:41 - 2015-11-28 13:52 - 00001179 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk 2016-08-24 19:41 - 2015-06-04 03:22 - 00000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware 2016-08-24 19:34 - 2016-07-17 00:40 - 00530198 _____ C:\WINDOWS\system32\perfh00C.dat 2016-08-24 19:34 - 2016-07-17 00:40 - 00085266 _____ C:\WINDOWS\system32\perfc00C.dat 2016-08-24 19:34 - 2015-07-29 21:43 - 01492964 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2016-08-24 19:23 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\Registration 2016-08-24 14:18 - 2015-06-03 16:47 - 00000000 ____D C:\Users\David\AppData\Local\Packages 2016-08-24 13:44 - 2015-07-29 21:57 - 00002453 _____ C:\Users\David\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2016-08-24 13:44 - 2015-06-03 16:57 - 00000000 ___RD C:\Users\David\OneDrive 2016-08-24 13:36 - 2016-07-16 13:47 - 00000000 ____D C:\ProgramData\USOPrivate 2016-08-24 03:32 - 2016-07-16 13:47 - 00028672 _____ C:\WINDOWS\system32\config\BCD-Template 2016-08-24 03:29 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\es-MX 2016-08-24 03:28 - 2016-07-17 00:41 - 00000000 ____D C:\WINDOWS\OCR 2016-08-24 03:24 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\SysWOW64\MUI 2016-08-24 03:24 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\MUI 2016-08-24 03:17 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\rescache 2016-08-24 03:16 - 2016-07-16 13:47 - 00000000 ____D C:\Program Files\Windows NT 2016-08-24 03:16 - 2016-07-16 08:04 - 00032768 _____ C:\WINDOWS\system32\config\ELAM 2016-08-24 03:13 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\WinBioDatabase 2016-08-24 03:13 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\system32\Tasks_Migrated 2016-08-24 03:01 - 2015-07-29 21:47 - 00023208 _____ C:\WINDOWS\system32\emptyregdb.dat 2016-08-24 03:00 - 2016-07-16 13:47 - 00000000 __RSD C:\WINDOWS\Media 2016-08-24 03:00 - 2016-07-16 13:47 - 00000000 __RHD C:\Users\Public\Libraries 2016-08-24 02:59 - 2015-11-25 00:20 - 01459410 _____ C:\WINDOWS\SysWOW64\PerfStringBackup.INI 2016-08-24 02:52 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\Help 2016-08-24 02:52 - 2016-05-28 22:54 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel Driver Update Utility 2016-08-24 02:52 - 2016-05-28 19:08 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DriversCloud.com 2016-08-24 02:52 - 2016-05-05 13:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\STAR WARS Battlefront 2016-08-24 02:52 - 2016-05-05 12:19 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Origin 2016-08-24 02:52 - 2016-02-01 00:42 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DS License Server 2016-08-24 02:52 - 2016-02-01 00:39 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CATIA 2016-08-24 02:52 - 2016-01-27 13:08 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dolby 2016-08-24 02:52 - 2015-12-19 15:49 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\League of Legends 2016-08-24 02:52 - 2015-12-14 16:27 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\maxima-5.37.3 2016-08-24 02:52 - 2015-12-04 23:55 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation 2016-08-24 02:52 - 2015-11-17 16:21 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Abaqus 6.13-1 2016-08-24 02:52 - 2015-11-17 16:03 - 00000000 ____D C:\Users\David\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SIMULIA FLEXnet Licensing 2016-08-24 02:52 - 2015-10-30 21:03 - 00000000 ____D C:\WINDOWS\ShellNew 2016-08-24 02:52 - 2015-10-15 20:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Oracle VM VirtualBox 2016-08-24 02:52 - 2015-09-27 23:13 - 00000000 ____D C:\Users\David\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam 2016-08-24 02:52 - 2015-09-27 22:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam 2016-08-24 02:52 - 2015-09-20 19:32 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Games for Windows Marketplace 2016-08-24 02:52 - 2015-07-08 20:42 - 00000000 ____D C:\WINDOWS\system32\STRING 2016-08-24 02:52 - 2015-07-05 23:11 - 00000000 ____D C:\Users\David\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TeamSpeak 3 Client 2016-08-24 02:52 - 2015-06-09 22:04 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SharePoint 2016-08-24 02:52 - 2015-06-09 22:04 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2016-08-24 02:52 - 2015-06-05 17:05 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip 2016-08-24 02:52 - 2015-06-05 11:51 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN 2016-08-24 02:52 - 2015-06-05 10:06 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\scilab-5.5.2 (64-bit) 2016-08-24 02:52 - 2015-06-05 09:54 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Notepad++ 2016-08-24 02:52 - 2015-06-05 09:52 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RDM 6 2016-08-24 02:52 - 2015-06-05 09:44 - 00000000 ___SD C:\Users\David\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OpenOffice 4.1.1 2016-08-24 02:52 - 2015-06-05 09:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DAEMON Tools Lite 2016-08-24 02:52 - 2015-06-04 03:27 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner 2016-08-24 02:52 - 2015-06-04 03:22 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware 2016-08-24 02:52 - 2015-06-03 17:14 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battle.net 2016-08-24 02:52 - 2014-12-24 03:06 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink PowerDirector 10 2016-08-24 02:52 - 2014-12-24 03:04 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink PhotoDirector 3 2016-08-24 02:52 - 2014-12-24 03:00 - 00000000 ___SD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acer 2016-08-24 02:52 - 2014-12-24 02:47 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel 2016-08-24 02:49 - 2016-07-16 13:47 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2016-08-24 02:49 - 2015-10-30 08:28 - 00000000 ____D C:\Users\Default.migrated 2016-08-24 02:47 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\SysWOW64\Macromed 2016-08-24 02:47 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\SysWOW64\lv-LV 2016-08-24 02:47 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\SysWOW64\lt-LT 2016-08-24 02:47 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\SysWOW64\et-EE 2016-08-24 02:47 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\SysWOW64\en-GB 2016-08-24 02:47 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\spool 2016-08-24 02:47 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\oobe 2016-08-24 02:47 - 2015-09-19 16:29 - 00000000 ____D C:\WINDOWS\SysWOW64\xlive 2016-08-24 02:47 - 2014-12-24 02:50 - 00000000 ___HD C:\WINDOWS\system32\WLANProfiles 2016-08-24 02:47 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\system32\WindowsInternal.Inbox.Shared 2016-08-24 02:47 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\system32\WindowsInternal.Inbox.Media.Shared 2016-08-24 02:46 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\NDF 2016-08-24 02:46 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\Macromed 2016-08-24 02:46 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\lv-LV 2016-08-24 02:46 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\lt-LT 2016-08-24 02:46 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\InputMethod 2016-08-24 02:46 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\et-EE 2016-08-24 02:46 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\en-GB 2016-08-24 02:45 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\LiveKernelReports 2016-08-24 02:45 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\InputMethod 2016-08-24 02:45 - 2015-07-08 20:42 - 00000000 ___HD C:\WINDOWS\system32\CanonIJ Uninstaller Information 2016-08-24 02:44 - 2016-07-16 13:47 - 00000000 ____D C:\Program Files\Common Files\microsoft shared 2016-08-24 02:44 - 2016-02-20 17:51 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype 2016-08-24 02:44 - 2015-12-19 14:27 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Elaborate Bytes 2016-08-24 02:44 - 2015-07-27 00:06 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GOG.com 2016-08-24 02:44 - 2015-07-08 20:43 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon Utilities 2016-08-24 02:44 - 2015-07-08 20:43 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon MG5300 series 2016-08-24 02:44 - 2015-06-05 09:49 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CASIO 2016-08-24 02:44 - 2014-07-14 19:55 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games 2016-08-24 02:40 - 2016-07-16 08:04 - 00000000 ____D C:\WINDOWS\system32\Sysprep 2016-08-24 02:37 - 2016-07-16 13:47 - 00000000 ___RD C:\WINDOWS\PrintDialog 2016-08-24 02:37 - 2016-07-16 13:47 - 00000000 ___RD C:\WINDOWS\MiracastView 2016-08-23 17:09 - 2016-07-17 01:55 - 00000000 ___HD C:\$WINDOWS.~BT 2016-08-23 16:45 - 2015-06-03 17:05 - 00001094 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job 2016-08-23 16:27 - 2015-10-14 11:08 - 00001002 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job 2016-08-23 15:43 - 2015-06-03 17:05 - 00001090 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job 2016-08-23 00:08 - 2016-06-14 00:27 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox 2016-08-23 00:08 - 2016-03-15 23:15 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2016-08-19 00:30 - 2015-07-02 23:23 - 00000000 ____D C:\Users\David\AppData\Roaming\Curse Client 2016-08-19 00:30 - 2015-06-05 19:46 - 00000000 ____D C:\Users\David\AppData\Local\CrashDumps 2016-08-17 13:59 - 2015-06-08 13:12 - 00000000 ____D C:\Users\David\AppData\Roaming\vlc 2016-08-11 23:29 - 2015-06-04 03:45 - 00000000 ____D C:\WINDOWS\system32\MRT 2016-08-11 23:21 - 2015-06-04 03:44 - 147640136 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2016-08-06 15:50 - 2016-05-24 18:55 - 00000000 ____D C:\ProgramData\PDFsam Enhanced 2016-08-05 19:58 - 2015-06-03 17:06 - 00002274 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2016-08-05 15:20 - 2015-06-04 03:29 - 00002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk 2016-07-27 21:25 - 2016-02-01 15:54 - 00504488 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe ==================== Fichiers à la racine de certains dossiers ======= 2016-01-04 01:36 - 2016-01-04 01:36 - 0000017 _____ () C:\Users\David\AppData\Local\resmon.resmoncfg 2016-08-24 02:37 - 2016-08-24 02:37 - 0000000 ____H () C:\ProgramData\DP45977C.lfl Fichiers à déplacer ou supprimer: ==================== C:\Users\David\ZHPDiag3.exe Certains fichiers dans TEMP: ==================== C:\Users\David\AppData\Local\Temp\libeay32.dll C:\Users\David\AppData\Local\Temp\msvcr120.dll C:\Users\David\AppData\Local\Temp\sqlite3.dll ==================== Bamital & volsnap ================= (Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.) C:\WINDOWS\system32\winlogon.exe => Le fichier est signé numériquement C:\WINDOWS\system32\wininit.exe => Le fichier est signé numériquement C:\WINDOWS\explorer.exe => Le fichier est signé numériquement C:\WINDOWS\SysWOW64\explorer.exe => Le fichier est signé numériquement C:\WINDOWS\system32\svchost.exe => Le fichier est signé numériquement C:\WINDOWS\SysWOW64\svchost.exe => Le fichier est signé numériquement C:\WINDOWS\system32\services.exe => Le fichier est signé numériquement C:\WINDOWS\system32\User32.dll => Le fichier est signé numériquement C:\WINDOWS\SysWOW64\User32.dll => Le fichier est signé numériquement C:\WINDOWS\system32\userinit.exe => Le fichier est signé numériquement C:\WINDOWS\SysWOW64\userinit.exe => Le fichier est signé numériquement C:\WINDOWS\system32\rpcss.dll => Le fichier est signé numériquement C:\WINDOWS\system32\dnsapi.dll => Le fichier est signé numériquement C:\WINDOWS\SysWOW64\dnsapi.dll => Le fichier est signé numériquement C:\WINDOWS\system32\Drivers\volsnap.sys => Le fichier est signé numériquement LastRegBack: 2016-08-24 02:32 ==================== Fin de FRST.txt ============================