Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 17-04-2017 01 Exécuté par ludov (administrateur) sur DARSHA (18-04-2017 16:09:41) Exécuté depuis C:\Users\ludov\Downloads Profils chargés: ludov & postgres (Profils disponibles: ludov & postgres) Platform: Windows 10 Pro Version 1703 (X64) Langue: Français (France) Internet Explorer Version 11 (Navigateur par défaut: Opera) Mode d'amorçage: Normal Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processus (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.) (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe (Intel Corporation) C:\Windows\System32\igfxCUIService.exe (ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDService.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe (Apple Inc.) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Logitech Inc.) C:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe (Micro-Star International Co., Ltd.) C:\Program Files (x86)\SCM\MSIService.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Electronic Arts) C:\Program Files (x86)\Origin\OriginWebHelperService.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe (Microsoft Corporation) C:\Windows\System32\SecurityHealthService.exe (PostgreSQL Global Development Group) C:\Program Files\PostgreSQL\9.2\bin\pg_ctl.exe (PostgreSQL Global Development Group) C:\Program Files\PostgreSQL\9.2\bin\postgres.exe (PostgreSQL Global Development Group) C:\Program Files\PostgreSQL\9.2\bin\postgres.exe (PostgreSQL Global Development Group) C:\Program Files\PostgreSQL\9.2\bin\postgres.exe (PostgreSQL Global Development Group) C:\Program Files\PostgreSQL\9.2\bin\postgres.exe (PostgreSQL Global Development Group) C:\Program Files\PostgreSQL\9.2\bin\postgres.exe (PostgreSQL Global Development Group) C:\Program Files\PostgreSQL\9.2\bin\postgres.exe (PostgreSQL Global Development Group) C:\Program Files\PostgreSQL\9.2\bin\postgres.exe (ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe (Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe (ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe (Intel Corporation) C:\Windows\System32\igfxEM.exe (Intel Corporation) C:\Windows\System32\igfxHK.exe () C:\Windows\System32\igfxTray.exe (Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.3\GoogleCrashHandler.exe (Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.3\GoogleCrashHandler64.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe (Microsoft Corporation) C:\Windows\System32\InstallAgent.exe (Microsoft Corporation) C:\Windows\System32\InstallAgentUserBroker.exe (Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Microsoft Corporation) C:\Windows\System32\rundll32.exe (MSI) C:\Program Files (x86)\SCM\SCM.exe (Logitech Inc.) C:\Program Files\Logitech Gaming Software\LCore.exe (Microsoft Corporation) C:\Program Files\Microsoft Xbox 360 Accessories\XBoxStat.exe (Logitech, Inc.) C:\Program Files\Logitech\LogiOptions\LogiOptions.exe (Logitech, Inc.) C:\ProgramData\LogiShrd\LogiOptions\Software\Current\LogiOptionsMgr.exe (Microsoft Corporation) C:\Windows\System32\cmd.exe (ultracopier.first-world.info) C:\Program Files\Ultracopier\ultracopier.exe (Akamai Technologies, Inc.) C:\Users\ludov\AppData\Local\Akamai\netsession_win.exe (Akamai Technologies, Inc.) C:\Users\ludov\AppData\Local\Akamai\netsession_win.exe (Sand Studio) C:\Program Files (x86)\AirDroid\AirDroid.exe () C:\Users\ludov\AppData\Roaming\gplyra\gplyra\gplyra.exe (JAP-Team) C:\Program Files (x86)\JonDo\JonDo.exe (InstallShield Software Corporation) C:\Program Files (x86)\Common Files\InstallShield\UpdateService\issch.exe (Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (Evernote Corp., 305 Walnut Street, Redwood City, CA 94063) C:\Program Files (x86)\Evernote\Evernote\EvernoteClipper.exe (Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe (Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe (Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe (AVAST Software s.r.o.) C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe () C:\Users\ludov\Downloads\ZHPCleaner.exe (Microsoft Corporation) C:\Windows\System32\smartscreen.exe (Opera Software) C:\Program Files\Opera\44.0.2510.1218_0\opera.exe (Opera Software) C:\Program Files\Opera\44.0.2510.1218_0\opera_crashreporter.exe (Opera Software) C:\Program Files\Opera\44.0.2510.1218_0\opera.exe (Opera Software) C:\Program Files\Opera\44.0.2510.1218_0\opera.exe (Opera Software) C:\Program Files\Opera\44.0.2510.1218_0\opera.exe (Opera Software) C:\Program Files\Opera\44.0.2510.1218_0\opera.exe (Opera Software) C:\Program Files\Opera\44.0.2510.1218_0\opera.exe (Opera Software) C:\Program Files\Opera\44.0.2510.1218_0\opera.exe (Opera Software) C:\Program Files\Opera\44.0.2510.1218_0\opera.exe (Opera Software) C:\Program Files\Opera\44.0.2510.1218_0\opera.exe (Opera Software) C:\Program Files\Opera\44.0.2510.1218_0\opera.exe (Opera Software) C:\Program Files\Opera\44.0.2510.1218_0\opera.exe (Opera Software) C:\Program Files\Opera\44.0.2510.1218_0\opera.exe (Opera Software) C:\Program Files\Opera\44.0.2510.1218_0\opera.exe (Opera Software) C:\Program Files\Opera\44.0.2510.1218_0\opera.exe (Opera Software) C:\Program Files\Opera\44.0.2510.1218_0\opera.exe ==================== Registre (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.) HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [629152 2017-03-18] (Microsoft Corporation) HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [16404224 2015-12-22] (Realtek Semiconductor) HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [3366624 2016-09-18] (ELAN Microelectronics Corp.) HKLM\...\Run: [MBCfg64] => C:\Windows\system32\RunDLL32.exe C:\Windows\system32\MBCfg64.dll,RunDLLEntry MBCfg64 HKLM\...\Run: [SCM] => C:\Program Files (x86)\SCM\SCM.exe [297984 2016-01-22] (MSI) HKLM\...\Run: [Launch LCore] => C:\Program Files\Logitech Gaming Software\LCore.exe [15818872 2016-04-29] (Logitech Inc.) HKLM\...\Run: [XboxStat] => C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe [825184 2009-09-30] (Microsoft Corporation) HKLM\...\Run: [ShadowPlay] => "C:\WINDOWS\system32\rundll32.exe" C:\WINDOWS\system32\nvspcap64.dll,ShadowPlayOnSystemStart HKLM\...\Run: [LogiOptions] => C:\Program Files\Logitech\LogiOptions\LogiOptions.exe [1739896 2017-01-14] (Logitech, Inc.) HKLM\...\Run: [gplyra] => C:\Users\ludov\AppData\Roaming\gplyra\gplyra\start.cmd [216 2017-01-10] () HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [213824 2017-04-18] (AVAST Software) HKLM-x32\...\Run: [ISUSScheduler] => C:\Program Files (x86)\Common Files\InstallShield\UpdateService\issch.exe [81920 2005-02-16] (InstallShield Software Corporation) HKLM-x32\...\Run: [UpdReg] => C:\Windows\UpdReg.EXE [90112 2000-05-11] (Creative Technology Ltd.) HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2016-12-12] (Oracle Corporation) HKLM-x32\...\Run: [DFX] => C:\Program Files (x86)\DFX\DFX.exe [1325240 2017-04-18] () HKU\S-1-5-21-1339816307-2836813866-747712884-1001\...\Run: [ultracopier] => C:\Program Files\Ultracopier\ultracopier.exe [1176576 2016-01-02] (ultracopier.first-world.info) HKU\S-1-5-21-1339816307-2836813866-747712884-1001\...\Run: [Shareaza] => C:\Program Files\Shareaza\Shareaza.exe [5684224 2015-10-06] (Shareaza Development Team) HKU\S-1-5-21-1339816307-2836813866-747712884-1001\...\Run: [Akamai NetSession Interface] => C:\Users\ludov\AppData\Local\Akamai\netsession_win.exe [4490200 2017-01-03] (Akamai Technologies, Inc.) HKU\S-1-5-21-1339816307-2836813866-747712884-1001\...\Run: [GoogleDriveSync] => C:\Program Files (x86)\Google\Drive\googledrivesync.exe [23819304 2017-03-21] (Google) HKU\S-1-5-21-1339816307-2836813866-747712884-1001\...\Run: [AirDroid 3] => C:\Program Files (x86)\AirDroid\AirDroid.exe [8654456 2017-03-06] (Sand Studio) HKU\S-1-5-21-1339816307-2836813866-747712884-1001\...\Run: [hubiC] => C:\Program Files\OVH\hubiC\hubiC.exe [3527168 2015-03-03] (OVH) HKU\S-1-5-21-1339816307-2836813866-747712884-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [9364696 2017-03-03] (Piriform Ltd) HKU\S-1-5-21-1339816307-2836813866-747712884-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [27545048 2017-03-14] (Skype Technologies S.A.) HKU\S-1-5-21-1339816307-2836813866-747712884-1002\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [517120 2017-03-18] (Microsoft Corporation) HKLM\...\Providers\n6olq5b5: C:\Program Files (x86)\Grakerghstertecult Reports\local64spl.dll [311808 2017-04-18] () ShellExecuteHooks: Pas de nom - {D404EF92-20EB-11E7-8685-64006A5CFC23} - C:\Users\ludov\AppData\Roaming\Plerserserofecult\Pretuiedsiherty.dll [148480 2017-04-18] () ShellExecuteHooks: Pas de nom - {8A9933DE-2339-11E7-AC2F-64006A5CFC23} - C:\Users\ludov\AppData\Roaming\Plraward\Heduly.dll -> Pas de fichier ShellIconOverlayIdentifiers: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => -> Pas de fichier ShellIconOverlayIdentifiers: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => -> Pas de fichier ShellIconOverlayIdentifiers: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => -> Pas de fichier ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2017-03-21] (Google) ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2017-03-21] (Google) ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2017-03-21] (Google) ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-04-18] (AVAST Software) ShellIconOverlayIdentifiers: [HubicBackupRootOverlayHandler] -> {2DF0C6DB-1E85-4894-9D4F-63CB0EAB17EA} => C:\Windows\system32\mscoree.dll [2017-03-18] (Microsoft Corporation) ShellIconOverlayIdentifiers: [HubicPublishedItemOverlayHandler] -> {7C76B697-27DF-4CFF-9909-863905561298} => C:\Windows\system32\mscoree.dll [2017-03-18] (Microsoft Corporation) ShellIconOverlayIdentifiers: [HubicSyncItemOverlayHandler] -> {9B497753-D273-4A80-9DE8-72248D7FA595} => C:\Windows\system32\mscoree.dll [2017-03-18] (Microsoft Corporation) ShellIconOverlayIdentifiers: [HubicUnsyncItemOverlayHandler] -> {D5454A6E-0904-4BA3-9E4A-240A5080259D} => C:\Windows\system32\mscoree.dll [2017-03-18] (Microsoft Corporation) ShellIconOverlayIdentifiers-x32: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => -> Pas de fichier ShellIconOverlayIdentifiers-x32: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => -> Pas de fichier ShellIconOverlayIdentifiers-x32: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => -> Pas de fichier Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\JonDo.lnk [2016-12-26] ShortcutTarget: JonDo.lnk -> C:\Program Files (x86)\JonDo\JonDo.exe (JAP-Team) Startup: C:\Users\ludov\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\EvernoteClipper.lnk [2016-09-17] ShortcutTarget: EvernoteClipper.lnk -> C:\Program Files (x86)\Evernote\Evernote\EvernoteClipper.exe (Evernote Corp., 305 Walnut Street, Redwood City, CA 94063) BootExecute: autocheck autochk * aswBoot.exe /M:107d3dc88 /wow /dir:"C:\Program Files\AVAST Software\Avast" GroupPolicy: Restriction <======= ATTENTION ==================== Internet (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.) AutoConfigURL: [S-1-5-21-1339816307-2836813866-747712884-1001] => hxxp://noblok.biz/wpad.dat?09cbd3c542908e5211e5b6f770d6cfa327395680 Hosts: Il y a plus d'un élément dans hosts. Voir la section Hosts de Addition.txt Tcpip\Parameters: [DhcpNameServer] 212.27.40.240 212.27.40.241 Tcpip\Parameters: [NameServer] 82.163.143.157 82.163.142.159 Tcpip\..\Interfaces\{050b2a37-a239-45b0-a6ce-6455a70d7fbd}: [DhcpNameServer] 82.163.143.157 Tcpip\..\Interfaces\{2445f636-52f1-4d96-b50e-b7f41be50440}: [DhcpNameServer] 192.168.43.1 Tcpip\..\Interfaces\{45055ebb-e116-4ac6-a1f4-8d0fdca59334}: [DhcpNameServer] 212.27.40.240 212.27.40.241 Tcpip\..\Interfaces\{8248813e-9af5-410d-b4a1-ec641b4c8fce}: [DhcpNameServer] 82.163.143.157 Tcpip\..\Interfaces\{8385d8ad-5327-4c73-8251-beaf0e186bd9}: [DhcpNameServer] 82.163.143.157 ManualProxies: 0hxxp://noblok.biz/wpad.dat?09cbd3c542908e5211e5b6f770d6cfa327395680 Internet Explorer: ================== HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.google.com/?bcutc=sp-006 HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxps://www.google.com/search?bcutc=sp-006&q={searchTerms} HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = HKU\S-1-5-21-1339816307-2836813866-747712884-1001\Software\Microsoft\Internet Explorer\Main,Search Page = hxxps://www.google.com/search?bcutc=sp-006&q={searchTerms} HKU\S-1-5-21-1339816307-2836813866-747712884-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.google.com/?bcutc=sp-006 SearchScopes: HKLM-x32 -> DefaultScope {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = hxxps://www.google.com/search?bcutc=sp-006&q={searchTerms} SearchScopes: HKLM-x32 -> {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = hxxps://www.google.com/search?bcutc=sp-006&q={searchTerms} SearchScopes: HKU\S-1-5-21-1339816307-2836813866-747712884-1001 -> DefaultScope {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = hxxps://www.google.com/search?bcutc=sp-006&q={searchTerms} SearchScopes: HKU\S-1-5-21-1339816307-2836813866-747712884-1001 -> {3ADF4718-BE00-4576-B91E-797EB1C60539} URL = hxxps://fr.search.yahoo.com/search?p={searchTerms}&fr=yset_ie_syc_oracle&type=orcl_default SearchScopes: HKU\S-1-5-21-1339816307-2836813866-747712884-1001 -> {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = hxxps://www.google.com/search?bcutc=sp-006&q={searchTerms} BHO: Shareaza Web Download Hook -> {0EEDB912-C5FA-486F-8334-57288578C627} -> C:\Program Files\Shareaza\RazaWebHook64.dll [2015-10-06] (Shareaza Development Team) BHO: Pas de nom -> {FF20459C-DA6E-41A7-80BC-8F4FEFD9C575} -> Pas de fichier BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_121\bin\ssv.dll [2017-01-21] (Oracle Corporation) BHO-x32: Evernote extension -> {92EF2EAD-A7CE-4424-B0DB-499CF856608E} -> C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll [2016-10-31] (Evernote Corp., 305 Walnut Street, Redwood City, CA 94063) BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_121\bin\jp2ssv.dll [2017-01-21] (Oracle Corporation) FireFox: ======== FF DefaultProfile: 111ruxe1.default FF DefaultProfile: r1ab49uk.default FF ProfilePath: C:\Users\ludov\AppData\Roaming\Mozilla\Firefox\naweriweentcofise\Profiles\r1ab49uk.default\Profiles\r1ab49uk.default [non trouvé(e)] FF ProfilePath: C:\Users\ludov\AppData\Roaming\Mozilla\Firefox\naweriweentcofise\Profiles\r1ab49uk.default\Profiles\JonDoFox [non trouvé(e)] FF ProfilePath: C:\Users\ludov\AppData\Roaming\Zotero\Zotero\Profiles\111ruxe1.default [2017-04-10] FF Extension: (Zotero LibreOffice Integration) - C:\Program Files (x86)\Zotero Standalone\extensions\zoteroOpenOfficeIntegration@zotero.org [2015-12-22] [non signé] FF Extension: (Zotero Word for Windows Integration) - C:\Program Files (x86)\Zotero Standalone\extensions\zoteroWinWordIntegration@zotero.org [2015-12-22] [non signé] FF ProfilePath: C:\Users\ludov\AppData\Roaming\Mozilla\Firefox\Profiles\r1ab49uk.default [2017-04-18] FF DefaultSearchEngine: Mozilla\Firefox\Profiles\r1ab49uk.default -> Google FF Session Restore: Mozilla\Firefox\Profiles\r1ab49uk.default -> est activé. FF SelectedSearchEngine: Mozilla\Firefox\Profiles\r1ab49uk.default -> Google FF DefaultSearchUrl: Mozilla\Firefox\Profiles\r1ab49uk.default -> hxxps://www.google.com/search?bcutc=sp-006 FF SearchEngineOrder.1: Mozilla\Firefox\Profiles\r1ab49uk.default -> Google FF Keyword.URL: Mozilla\Firefox\Profiles\r1ab49uk.default -> hxxps://www.google.com/search?bcutc=sp-006 FF Homepage: Mozilla\Firefox\Profiles\r1ab49uk.default -> hxxps://www.google.com/?bcutc=sp-006 FF NewTab: Mozilla\Firefox\Profiles\r1ab49uk.default -> about:newtab FF Extension: (Extension Signal Spam) - C:\Users\ludov\AppData\Roaming\Mozilla\Firefox\Profiles\r1ab49uk.default\Extensions\@addonsignalspam.xpi [2016-12-31] FF Extension: (Adblock Plus Pop-up Addon) - C:\Users\ludov\AppData\Roaming\Mozilla\Firefox\Profiles\r1ab49uk.default\Extensions\adblockpopups@jessehakanen.net.xpi [2016-04-30] FF Extension: (pearltrees) - C:\Users\ludov\AppData\Roaming\Mozilla\Firefox\Profiles\r1ab49uk.default\Extensions\collector@broceliand.fr.xpi [2017-03-17] FF Extension: (Element Hiding Helper for Adblock Plus) - C:\Users\ludov\AppData\Roaming\Mozilla\Firefox\Profiles\r1ab49uk.default\Extensions\elemhidehelper@adblockplus.org.xpi [2017-04-13] FF Extension: (MEGA) - C:\Users\ludov\AppData\Roaming\Mozilla\Firefox\Profiles\r1ab49uk.default\Extensions\firefox@mega.co.nz.xpi [2017-04-13] FF Extension: (GPO support for Firefox and Thunderbird) - C:\Users\ludov\AppData\Roaming\Mozilla\Firefox\Profiles\r1ab49uk.default\Extensions\gpo@extensions.org.xpi [2017-01-07] FF Extension: (HTTPS Everywhere) - C:\Users\ludov\AppData\Roaming\Mozilla\Firefox\Profiles\r1ab49uk.default\Extensions\https-everywhere@eff.org.xpi [2017-04-13] FF Extension: (APK Downloader) - C:\Users\ludov\AppData\Roaming\Mozilla\Firefox\Profiles\r1ab49uk.default\Extensions\jid1-6MGm94JnyY2VkA@jetpack.xpi [2017-02-15] FF Extension: (uBlock Origin) - C:\Users\ludov\AppData\Roaming\Mozilla\Firefox\Profiles\r1ab49uk.default\Extensions\uBlock0@raymondhill.net.xpi [2017-04-10] FF Extension: (Zotero) - C:\Users\ludov\AppData\Roaming\Mozilla\Firefox\Profiles\r1ab49uk.default\Extensions\zotero@chnm.gmu.edu.xpi [2016-11-15] FF Extension: (Zotero LibreOffice Integration) - C:\Users\ludov\AppData\Roaming\Mozilla\Firefox\Profiles\r1ab49uk.default\Extensions\zoteroOpenOfficeIntegration@zotero.org [2016-11-15] FF Extension: (Padlet Mini) - C:\Users\ludov\AppData\Roaming\Mozilla\Firefox\Profiles\r1ab49uk.default\Extensions\{3CF3766A-04BC-45F4-88FF-037C0DA371C6}.xpi [2015-12-22] FF Extension: (Flash and Video Download) - C:\Users\ludov\AppData\Roaming\Mozilla\Firefox\Profiles\r1ab49uk.default\Extensions\{bee6eb20-01e0-ebd1-da83-080329fb9a3a} [2017-03-10] FF Extension: (Adblock Plus) - C:\Users\ludov\AppData\Roaming\Mozilla\Firefox\Profiles\r1ab49uk.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2016-11-24] FF Extension: (Pas de nom) - C:\Users\ludov\AppData\Roaming\Mozilla\Firefox\Profiles\r1ab49uk.default\Extensions\{E0B8C461-F8FB-49b4-8373-FE32E9252800}.xpi [2016-12-16] FF Extension: (Disable Prefetch) - C:\Users\ludov\AppData\Roaming\Mozilla\Firefox\Profiles\r1ab49uk.default\features\{59a9e51a-6921-41f8-9402-40da7209ded6}\disable-prefetch@mozilla.org.xpi [2017-04-08] FF SearchPlugin: C:\Users\ludov\AppData\Roaming\Mozilla\Firefox\Profiles\r1ab49uk.default\searchplugins\google-avast.xml [2017-04-18] FF SearchPlugin: C:\Users\ludov\AppData\Roaming\Mozilla\Firefox\Profiles\r1ab49uk.default\searchplugins\qwant.xml [2016-01-19] FF ProfilePath: C:\Users\ludov\AppData\Roaming\Mozilla\Firefox\Profiles\JonDoFox [2017-04-18] FF NewTab: Mozilla\Firefox\Profiles\JonDoFox -> about:newtab FF SelectedSearchEngine: Mozilla\Firefox\Profiles\JonDoFox -> Google FF Homepage: Mozilla\Firefox\Profiles\JonDoFox -> hxxps://www.google.com/?bcutc=sp-006 FF NetworkProxy: Mozilla\Firefox\Profiles\JonDoFox -> ftp", "127.0.0.1" FF NetworkProxy: Mozilla\Firefox\Profiles\JonDoFox -> ftp_port", 4001 FF NetworkProxy: Mozilla\Firefox\Profiles\JonDoFox -> gopher", "127.0.0.1" FF NetworkProxy: Mozilla\Firefox\Profiles\JonDoFox -> gopher_port", 4001 FF NetworkProxy: Mozilla\Firefox\Profiles\JonDoFox -> http", "127.0.0.1" FF NetworkProxy: Mozilla\Firefox\Profiles\JonDoFox -> http_port", 4001 FF NetworkProxy: Mozilla\Firefox\Profiles\JonDoFox -> no_proxies_on", "" FF NetworkProxy: Mozilla\Firefox\Profiles\JonDoFox -> socks", "127.0.0.1" FF NetworkProxy: Mozilla\Firefox\Profiles\JonDoFox -> socks_port", 4001 FF NetworkProxy: Mozilla\Firefox\Profiles\JonDoFox -> socks_remote_dns", true FF NetworkProxy: Mozilla\Firefox\Profiles\JonDoFox -> ssl", "127.0.0.1" FF NetworkProxy: Mozilla\Firefox\Profiles\JonDoFox -> ssl_port", 4001 FF NetworkProxy: Mozilla\Firefox\Profiles\JonDoFox -> type", 1 FF DefaultSearchEngine: Mozilla\Firefox\Profiles\JonDoFox -> Google FF DefaultSearchUrl: Mozilla\Firefox\Profiles\JonDoFox -> hxxps://www.google.com/search?bcutc=sp-006 FF SearchEngineOrder.1: Mozilla\Firefox\Profiles\JonDoFox -> Google FF Keyword.URL: Mozilla\Firefox\Profiles\JonDoFox -> hxxps://www.google.com/search?bcutc=sp-006 FF Extension: (CanvasBlocker) - C:\Users\ludov\AppData\Roaming\Mozilla\Firefox\Profiles\JonDoFox\Extensions\CanvasBlocker@kkapsner.de.xpi [2016-03-14] FF Extension: (HTTPS-Everywhere) - C:\Users\ludov\AppData\Roaming\Mozilla\Firefox\Profiles\JonDoFox\Extensions\https-everywhere@eff.org [2016-12-26] FF Extension: (JonDoFox) - C:\Users\ludov\AppData\Roaming\Mozilla\Firefox\Profiles\JonDoFox\Extensions\{437be45a-4114-11dd-b9ab-71d256d89593}.xpi [2015-12-21] FF Extension: (NoScript) - C:\Users\ludov\AppData\Roaming\Mozilla\Firefox\Profiles\JonDoFox\Extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}.xpi [2016-03-14] FF Extension: (Cookie Controller) - C:\Users\ludov\AppData\Roaming\Mozilla\Firefox\Profiles\JonDoFox\Extensions\{ac2cfa60-bc96-11e0-962b-0800200c9a66}.xpi [2016-03-14] FF Extension: (Video DownloadHelper) - C:\Users\ludov\AppData\Roaming\Mozilla\Firefox\Profiles\JonDoFox\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d} [2016-12-26] FF Extension: (Adblock Plus) - C:\Users\ludov\AppData\Roaming\Mozilla\Firefox\Profiles\JonDoFox\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2016-03-14] FF Extension: (ProfileSwitcher) - C:\Users\ludov\AppData\Roaming\Mozilla\Firefox\Profiles\JonDoFox\Extensions\{fa8476cf-a98c-4e08-99b4-65a69cb4b7d4}.xpi [2016-03-16] FF SearchPlugin: C:\Users\ludov\AppData\Roaming\Mozilla\Firefox\Profiles\JonDoFox\searchplugins\duckduckgo-ssl-javascript-free.xml [2016-03-14] FF SearchPlugin: C:\Users\ludov\AppData\Roaming\Mozilla\Firefox\Profiles\JonDoFox\searchplugins\google-avast.xml [2017-04-18] FF SearchPlugin: C:\Users\ludov\AppData\Roaming\Mozilla\Firefox\Profiles\JonDoFox\searchplugins\google-de-ssl.xml [2016-03-14] FF SearchPlugin: C:\Users\ludov\AppData\Roaming\Mozilla\Firefox\Profiles\JonDoFox\searchplugins\google-encrypted-no-personalization.xml [2016-03-14] FF SearchPlugin: C:\Users\ludov\AppData\Roaming\Mozilla\Firefox\Profiles\JonDoFox\searchplugins\ixquick-ssl-pictures---deutsch.xml [2016-03-14] FF SearchPlugin: C:\Users\ludov\AppData\Roaming\Mozilla\Firefox\Profiles\JonDoFox\searchplugins\ixquick-ssl-pictures---english.xml [2016-03-14] FF SearchPlugin: C:\Users\ludov\AppData\Roaming\Mozilla\Firefox\Profiles\JonDoFox\searchplugins\ixquick.xml [2016-03-14] FF SearchPlugin: C:\Users\ludov\AppData\Roaming\Mozilla\Firefox\Profiles\JonDoFox\searchplugins\leo-eng-ger.xml [2016-03-14] FF SearchPlugin: C:\Users\ludov\AppData\Roaming\Mozilla\Firefox\Profiles\JonDoFox\searchplugins\leo-esp-ale.xml [2016-03-14] FF SearchPlugin: C:\Users\ludov\AppData\Roaming\Mozilla\Firefox\Profiles\JonDoFox\searchplugins\leo-fra-all.xml [2016-03-14] FF SearchPlugin: C:\Users\ludov\AppData\Roaming\Mozilla\Firefox\Profiles\JonDoFox\searchplugins\metager.xml [2016-03-14] FF SearchPlugin: C:\Users\ludov\AppData\Roaming\Mozilla\Firefox\Profiles\JonDoFox\searchplugins\ssl-wikipedia-deutsch.xml [2016-03-14] FF SearchPlugin: C:\Users\ludov\AppData\Roaming\Mozilla\Firefox\Profiles\JonDoFox\searchplugins\ssl-wikipedia-english.xml [2016-03-14] FF SearchPlugin: C:\Users\ludov\AppData\Roaming\Mozilla\Firefox\Profiles\JonDoFox\searchplugins\startpage-https---deutsch.xml [2016-03-14] FF SearchPlugin: C:\Users\ludov\AppData\Roaming\Mozilla\Firefox\Profiles\JonDoFox\searchplugins\startpage-https.xml [2016-03-14] FF Extension: (Site Deployment Checker) - C:\Program Files (x86)\Mozilla Firefox\browser\features\deployment-checker@mozilla.org.xpi [2017-04-01] [non signé] FF Extension: (VK+OK AdBlock) - C:\Program Files (x86)\Mozilla Firefox\browser\features\{35998068-D378-47CF-8F13-02C7F10D885B} [2017-04-18] [non signé] FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF48 FF Extension: (Avast Online Security) - C:\Program Files\AVAST Software\Avast\WebRep\FF48 [2017-04-18] FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF48 FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_25_0_0_148.dll [2017-04-12] () FF Plugin: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll [2017-03-06] (Tracker Software Products (Canada) Ltd.) FF Plugin: @tracker-software.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll [2017-03-06] (Tracker Software Products (Canada) Ltd.) FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_25_0_0_148.dll [2017-04-12] () FF Plugin-x32: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll [2017-03-06] (Tracker Software Products (Canada) Ltd.) FF Plugin-x32: @java.com/DTPlugin,version=11.121.2 -> C:\Program Files (x86)\Java\jre1.8.0_121\bin\dtplugin\npDeployJava1.dll [2017-01-21] (Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=11.121.2 -> C:\Program Files (x86)\Java\jre1.8.0_121\bin\plugin2\npjp2.dll [2017-01-21] (Oracle Corporation) FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.3\npGoogleUpdate3.dll [2017-04-07] (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.3\npGoogleUpdate3.dll [2017-04-07] (Google Inc.) FF Plugin-x32: @tracker-software.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll [2017-03-06] (Tracker Software Products (Canada) Ltd.) FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN) FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN) FF Plugin HKU\S-1-5-21-1339816307-2836813866-747712884-1001: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll [2017-03-06] (Tracker Software Products (Canada) Ltd.) FF Plugin HKU\S-1-5-21-1339816307-2836813866-747712884-1001: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\ludov\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2016-05-25] (Unity Technologies ApS) FF Plugin HKU\S-1-5-21-1339816307-2836813866-747712884-1001: SkypePlugin -> C:\Users\ludov\AppData\Local\SkypePlugin\7.25.0.32\npGatewayNpapi.dll [2016-09-01] (Skype Technologies S.A.) FF Plugin HKU\S-1-5-21-1339816307-2836813866-747712884-1001: SkypePlugin64 -> C:\Users\ludov\AppData\Local\SkypePlugin\7.25.0.32\npGatewayNpapi-x64.dll [2016-09-01] (Skype Technologies S.A.) FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npPDFXCviewNPPlugin.dll [2015-05-27] (Tracker Software Products (Canada) Ltd.) FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin.dll [2016-06-19] (Apple Inc.) FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin2.dll [2016-06-19] (Apple Inc.) FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin3.dll [2016-06-19] (Apple Inc.) FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin4.dll [2016-06-19] (Apple Inc.) FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin5.dll [2016-06-19] (Apple Inc.) FF ExtraCheck: C:\Program Files (x86)\mozilla firefox\defaults\pref\1235583859.js [2017-04-01] <==== ATTENTION (Pointe vers un fichier *.cfg) FF ExtraCheck: C:\Program Files (x86)\mozilla firefox\1235583859.cfg [2017-04-01] <==== ATTENTION Opera: ======= OPR Extension: (Evernote Web Clipper) - C:\Users\ludov\AppData\Roaming\Opera Software\Opera Stable\Extensions\afgbccjghcnbcdjgogpckamibfkceahd [2017-02-20] OPR Extension: (Zotero Connector) - C:\Users\ludov\AppData\Roaming\Opera Software\Opera Stable\Extensions\aglkdfckbibjdkdoconjbdggodkdchbn [2017-02-20] OPR Extension: (Video Downloader Multiformat) - C:\Users\ludov\AppData\Roaming\Opera Software\Opera Stable\Extensions\beemgnphifpbdehfmohojkhlklfaddih [2017-02-20] OPR Extension: (HTTPS partout) - C:\Users\ludov\AppData\Roaming\Opera Software\Opera Stable\Extensions\edaplhobcmdaneconioghljnnopmkhgm [2017-04-07] OPR Extension: (uBlock Origin) - C:\Users\ludov\AppData\Roaming\Opera Software\Opera Stable\Extensions\kccohkcpppjjkkjppopfnflnebibpida [2017-03-21] OPR Extension: (Adblock Plus) - C:\Users\ludov\AppData\Roaming\Opera Software\Opera Stable\Extensions\oidhhegpmlfpoeialbgcdocjalghfpkp [2017-03-24] OPR Extension: (qwantcom) - C:\Users\ludov\AppData\Roaming\Opera Software\Opera Stable\Extensions\pcdbekffgfnmjeacgnmdbekgjffgfckb [2017-02-20] StartMenuInternet: (HKLM) OperaStable - C:\Program Files\Opera\Launcher.exe ==================== Services (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe [7398336 2017-04-18] (AVAST Software s.r.o.) R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [261712 2017-04-18] (AVAST Software) S3 DevicesFlowUserSvc; C:\WINDOWS\System32\DevicesFlowBroker.dll [689152 2017-03-18] (Microsoft Corporation) S3 DevicesFlowUserSvc_473f2; C:\WINDOWS\system32\svchost.exe [47664 2017-03-18] (Microsoft Corporation) S3 DevicesFlowUserSvc_473f2; C:\WINDOWS\SysWOW64\svchost.exe [40904 2017-03-18] (Microsoft Corporation) R2 DusmSvc; C:\WINDOWS\System32\dusmsvc.dll [302592 2017-03-18] (Microsoft Corporation) R2 ETDService; C:\Program Files\Elantech\ETDService.exe [144096 2016-09-18] (ELAN Microelectronics Corp.) R2 igfxCUIService2.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [373744 2016-11-02] (Intel Corporation) S3 IpxlatCfgSvc; C:\WINDOWS\System32\IpxlatCfg.dll [64000 2017-03-18] (Microsoft Corporation) R2 LogiRegistryService; C:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe [193656 2016-04-29] (Logitech Inc.) R2 Micro Star SCM; C:\Program Files (x86)\SCM\MSIService.exe [160768 2016-01-22] (Micro-Star International Co., Ltd.) [Fichier non signé] S3 NaturalAuthentication; C:\WINDOWS\System32\NaturalAuth.dll [723968 2017-03-18] (Microsoft Corporation) R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [462784 2017-02-23] (NVIDIA Corporation) S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [462784 2017-02-23] (NVIDIA Corporation) R2 NVDisplay.ContainerLocalSystem; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [462784 2017-04-01] (NVIDIA Corporation) R2 NvTelemetryContainer; C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe [427064 2017-04-01] (NVIDIA Corporation) S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2124296 2017-04-17] (Electronic Arts) R2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [2185232 2017-04-17] (Electronic Arts) R2 postgresql-x64-9.2; C:\Program Files\PostgreSQL\9.2\bin\pg_ctl.exe [89600 2013-04-02] (PostgreSQL Global Development Group) [Fichier non signé] R2 SecurityHealthService; C:\WINDOWS\system32\SecurityHealthService.exe [335808 2017-03-18] (Microsoft Corporation) S3 SEMgrSvc; C:\WINDOWS\system32\SEMgrSvc.dll [1191424 2017-03-18] (Microsoft Corporation) S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [3913064 2017-03-20] (Microsoft Corporation) S3 spectrum; C:\WINDOWS\system32\spectrum.exe [891904 2017-03-18] (Microsoft Corporation) R3 TokenBroker; C:\WINDOWS\System32\TokenBroker.dll [1054720 2017-03-18] (Microsoft Corporation) R3 TokenBroker; C:\WINDOWS\SysWOW64\TokenBroker.dll [799232 2017-03-18] (Microsoft Corporation) S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [342264 2017-03-18] (Microsoft Corporation) S3 WFDSConMgrSvc; C:\WINDOWS\System32\wfdsconmgrsvc.dll [555008 2017-03-18] (Microsoft Corporation) S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [102816 2017-03-18] (Microsoft Corporation) S3 wlpasvc; C:\WINDOWS\System32\lpasvc.dll [1295360 2017-03-18] (Microsoft Corporation) S3 xbgm; C:\WINDOWS\System32\xbgmsvc.dll [301216 2017-03-18] (Microsoft Corporation) S3 XboxGipSvc; C:\WINDOWS\System32\XboxGipSvc.dll [18944 2017-03-18] (Microsoft Corporation) S2 Recover; C:\Program Files\Intel\9KZO0R1UV6HSNR2\i9nPtSzTGI.exe [X] ===================== Pilotes (Avec liste blanche) ====================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R1 aswbidsdriver; C:\WINDOWS\system32\drivers\aswbidsdrivera.sys [307736 2017-04-18] (AVAST Software s.r.o.) R0 aswbidsh; C:\WINDOWS\system32\drivers\aswbidsha.sys [189768 2017-04-18] (AVAST Software s.r.o.) R0 aswblog; C:\WINDOWS\system32\drivers\aswbloga.sys [334088 2017-04-18] (AVAST Software s.r.o.) R0 aswbuniv; C:\WINDOWS\system32\drivers\aswbuniva.sys [48528 2017-04-18] (AVAST Software s.r.o.) S3 aswHwid; C:\WINDOWS\system32\drivers\aswHwid.sys [38296 2017-04-18] (AVAST Software) R1 aswKbd; C:\WINDOWS\system32\drivers\aswKbd.sys [32600 2017-04-18] (AVAST Software) R2 aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [127112 2017-04-18] (AVAST Software) R1 aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [101152 2017-04-18] (AVAST Software) S0 aswRvrt; C:\WINDOWS\system32\drivers\aswRvrt.sys [75704 2017-04-18] (AVAST Software) R1 aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [1005048 2017-04-18] (AVAST Software) R1 aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [556784 2017-04-18] (AVAST Software) R2 aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [164064 2017-04-18] (AVAST Software) R0 aswVmm; C:\WINDOWS\system32\drivers\aswVmm.sys [339696 2017-04-18] (AVAST Software) R2 atksgt; C:\WINDOWS\System32\DRIVERS\atksgt.sys [310984 2016-09-03] () R3 BthLEEnum; C:\WINDOWS\system32\DRIVERS\Microsoft.Bluetooth.Legacy.LEEnumerator.sys [96768 2017-03-18] (Microsoft Corporation) R3 CAD; C:\WINDOWS\System32\drivers\CAD.sys [53664 2017-03-18] (Microsoft Corporation) S2 CldFlt; C:\WINDOWS\System32\drivers\cldflt.sys [12288 2017-03-18] (Microsoft Corporation) S3 DFX11_1; C:\WINDOWS\system32\drivers\dfx11_1x64.sys [28008 2012-12-13] (Windows (R) Win 7 DDK provider) R3 DFX12; C:\WINDOWS\system32\drivers\dfx12x64.sys [28344 2015-10-13] (Windows (R) Win 7 DDK provider) R3 ETDSMBus; C:\WINDOWS\System32\drivers\ETDSMBus.sys [31832 2016-09-18] (ELAN Microelectronic Corp.) S3 iaLPSS2i_GPIO2_BXT_P; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_BXT_P.sys [85504 2017-03-18] (Intel Corporation) S3 iaLPSS2i_I2C_BXT_P; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_BXT_P.sys [168448 2017-03-18] (Intel Corporation) R1 ISODrive; C:\Program Files (x86)\UltraISO\drivers\ISODrv64.sys [115448 2013-11-21] (EZB Systems, Inc.) R2 LGCoreTemp; C:\Program Files\Logitech Gaming Software\Drivers\LgCoreTemp\lgcoretemp.sys [14184 2015-06-21] (Logitech) S3 LGJoyXlCore; C:\WINDOWS\system32\drivers\LGJoyXlCore.sys [85160 2016-04-19] (Logitech Inc.) R3 LGSHidFilt; C:\WINDOWS\system32\DRIVERS\LGSHidFilt.Sys [64280 2013-05-30] (Logitech Inc.) R2 lirsgt; C:\WINDOWS\System32\DRIVERS\lirsgt.sys [42696 2016-09-03] () S3 mausbhost; C:\WINDOWS\System32\drivers\mausbhost.sys [405408 2017-03-18] (Microsoft Corporation) S3 mausbip; C:\WINDOWS\System32\drivers\mausbip.sys [51104 2017-03-18] (Microsoft Corporation) S3 NetAdapterCx; C:\WINDOWS\System32\drivers\NetAdapterCx.sys [122368 2017-03-18] (Microsoft Corporation) R1 NetUtils2016; C:\WINDOWS\system32\drivers\NetUtils2016.sys [907160 2017-04-18] () <==== ATTENTION S3 nvdimmn; C:\WINDOWS\System32\drivers\nvdimmn.sys [80896 2017-03-18] (Microsoft Corporation) R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nvmii.inf_amd64_a3355cab84ee4624\nvlddmkm.sys [14841784 2017-04-03] (NVIDIA Corporation) S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [27584 2017-02-23] (NVIDIA Corporation) R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [46016 2017-01-20] (NVIDIA Corporation) R3 nvvhci; C:\WINDOWS\System32\drivers\nvvhci.sys [76840 2017-04-01] (NVIDIA Corporation) S3 pmem; C:\WINDOWS\System32\drivers\pmem.sys [101376 2017-03-18] (Microsoft Corporation) R3 RtkBtFilter; C:\WINDOWS\system32\DRIVERS\RtkBtfilter.sys [593624 2016-01-11] (Realtek Semiconductor Corporation) R3 rtwlane_13; C:\WINDOWS\System32\drivers\rtwlane_13.sys [3717120 2017-03-18] (Realtek Semiconductor Corporation ) S3 SDFRd; C:\WINDOWS\System32\drivers\SDFRd.sys [31128 2017-03-18] () S3 SpatialGraphFilter; C:\WINDOWS\System32\drivers\SpatialGraphFilter.sys [40352 2017-03-20] (Microsoft Corporation) S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [44632 2017-03-18] (Microsoft Corporation) S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [294816 2017-03-18] (Microsoft Corporation) S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [121248 2017-03-18] (Microsoft Corporation) S3 WinNat; C:\WINDOWS\System32\drivers\winnat.sys [217088 2017-03-18] (Microsoft Corporation) S3 xhunter1; C:\WINDOWS\xhunter1.sys [36808 2016-07-15] (Wellbia.com Co., Ltd.) ==================== NetSvcs (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) NETSVC: NaturalAuthentication -> C:\Windows\System32\NaturalAuth.dll (Microsoft Corporation) NETSVC: xbgm -> C:\Windows\System32\xbgmsvc.dll (Microsoft Corporation) NETSVC: TokenBroker -> C:\Windows\System32\TokenBroker.dll (Microsoft Corporation) NETSVC: XboxGipSvc -> C:\Windows\System32\XboxGipSvc.dll (Microsoft Corporation) NETSVCx32: TokenBroker -> C:\Windows\SysWOW64\TokenBroker.dll (Microsoft Corporation) ==================== Un mois - Créés - fichiers et dossiers ======== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2017-04-18 16:04 - 2017-04-18 16:04 - 00022962 _____ C:\Users\ludov\Desktop\ZHPCleaner.txt 2017-04-18 15:57 - 2017-04-18 15:57 - 00000000 ____D C:\Users\ludov\AppData\Local\AVAST Software 2017-04-18 15:56 - 2017-04-18 16:06 - 00057249 _____ C:\Users\ludov\Downloads\Addition.txt 2017-04-18 15:56 - 2017-04-18 15:56 - 00001914 _____ C:\Users\Public\Desktop\QuickTime Player.lnk 2017-04-18 15:56 - 2017-04-18 15:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime 2017-04-18 15:56 - 2017-04-18 15:56 - 00000000 ____D C:\ProgramData\Apple Computer 2017-04-18 15:54 - 2017-04-18 16:09 - 00041009 _____ C:\Users\ludov\Downloads\FRST.txt 2017-04-18 15:53 - 2017-04-18 16:09 - 00000000 ____D C:\FRST 2017-04-18 15:53 - 2017-04-18 15:53 - 00000000 ___RD C:\Program Files (x86)\Skype 2017-04-18 15:53 - 2017-04-18 15:53 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype 2017-04-18 15:52 - 2017-04-18 15:52 - 02424832 _____ (Farbar) C:\Users\ludov\Desktop\FRST64.exe 2017-04-18 15:51 - 2017-04-18 15:58 - 00000000 ____D C:\Users\ludov\AppData\Local\ZHP 2017-04-18 15:51 - 2017-04-18 15:51 - 00000875 _____ C:\Users\ludov\Desktop\ZHPCleaner.lnk 2017-04-18 15:50 - 2017-04-18 15:50 - 02761728 _____ C:\Users\ludov\Downloads\ZHPCleaner.exe 2017-04-18 15:50 - 2017-04-18 15:50 - 00004030 _____ C:\WINDOWS\System32\Tasks\SafeZone scheduled Autoupdate 1492523425 2017-04-18 15:50 - 2017-04-18 15:50 - 00001088 _____ C:\Users\Public\Desktop\Avast SafeZone Browser.lnk 2017-04-18 15:50 - 2017-04-18 15:50 - 00001088 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast SafeZone Browser.lnk 2017-04-18 15:50 - 2017-04-18 15:50 - 00000000 ___HD C:\$AV_ASW 2017-04-18 15:49 - 2017-04-18 15:49 - 00032600 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys 2017-04-18 15:47 - 2017-04-18 15:47 - 00000000 ____D C:\Users\ludov\AppData\Roaming\AVAST Software 2017-04-18 15:46 - 2017-04-18 15:46 - 00556784 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys 2017-04-18 15:46 - 2017-04-18 15:46 - 00399944 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe 2017-04-18 15:46 - 2017-04-18 15:46 - 00339696 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys 2017-04-18 15:46 - 2017-04-18 15:46 - 00164064 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys 2017-04-18 15:46 - 2017-04-18 15:46 - 00127112 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys 2017-04-18 15:46 - 2017-04-18 15:46 - 00101152 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys 2017-04-18 15:46 - 2017-04-18 15:46 - 00075704 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys 2017-04-18 15:46 - 2017-04-18 15:46 - 00038296 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswHwid.sys 2017-04-18 15:46 - 2017-04-18 15:46 - 00003994 _____ C:\WINDOWS\System32\Tasks\Avast Emergency Update 2017-04-18 15:46 - 2017-04-18 15:46 - 00001979 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Antivirus Gratuit.lnk 2017-04-18 15:46 - 2017-04-18 15:46 - 00001967 _____ C:\Users\Public\Desktop\Avast Antivirus Gratuit.lnk 2017-04-18 15:46 - 2017-04-18 15:46 - 00000000 ____D C:\WINDOWS\System32\Tasks\AVAST Software 2017-04-18 15:46 - 2017-04-18 15:46 - 00000000 ____D C:\Program Files\Common Files\AV 2017-04-18 15:46 - 2017-04-18 15:45 - 01005048 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys 2017-04-18 15:46 - 2017-04-18 15:45 - 00334088 _____ (AVAST Software s.r.o.) C:\WINDOWS\system32\Drivers\aswbloga.sys 2017-04-18 15:46 - 2017-04-18 15:45 - 00307736 _____ (AVAST Software s.r.o.) C:\WINDOWS\system32\Drivers\aswbidsdrivera.sys 2017-04-18 15:46 - 2017-04-18 15:45 - 00189768 _____ (AVAST Software s.r.o.) C:\WINDOWS\system32\Drivers\aswbidsha.sys 2017-04-18 15:46 - 2017-04-18 15:45 - 00048528 _____ (AVAST Software s.r.o.) C:\WINDOWS\system32\Drivers\aswbuniva.sys 2017-04-18 15:44 - 2017-04-18 15:49 - 00000000 ____D C:\Program Files\AVAST Software 2017-04-18 15:43 - 2017-04-18 15:49 - 00000000 ____D C:\ProgramData\AVAST Software 2017-04-18 15:42 - 2017-04-18 15:42 - 06654960 _____ (AVAST Software) C:\Users\ludov\Downloads\avast_free_antivirus_setup_online.exe 2017-04-18 15:38 - 2017-04-18 15:39 - 00000132 _____ C:\ProgramData\log.binb 2017-04-18 15:34 - 2017-04-18 15:34 - 00002052 _____ C:\WINDOWS\System32\Tasks\KBLTDxx167 2017-04-18 15:33 - 2017-04-18 15:51 - 00000000 ____D C:\Users\ludov\AppData\Roaming\81293564 2017-04-18 15:33 - 2017-04-18 15:51 - 00000000 ____D C:\Program Files\QYI70YW8NN 2017-04-18 15:33 - 2017-04-18 15:51 - 00000000 ____D C:\Program Files\F1COQ93XN6 2017-04-18 15:33 - 2017-04-18 15:51 - 00000000 ____D C:\Program Files\5IMUO9NG8O 2017-04-18 15:33 - 2017-04-18 15:50 - 00000000 ____D C:\Program Files\JI7Y6MVHNK 2017-04-18 15:33 - 2017-04-18 15:37 - 00624640 _____ C:\WINDOWS\system32\NetUtils2016.dll 2017-04-18 15:33 - 2017-04-18 15:37 - 00000000 ____D C:\Users\ludov\AppData\Roaming\Plraward 2017-04-18 15:33 - 2017-04-18 15:37 - 00000000 ____D C:\Program Files (x86)\DiskP 2017-04-18 15:33 - 2017-04-18 15:34 - 00000002 _____ C:\END 2017-04-18 15:33 - 2017-04-18 15:33 - 00907160 _____ C:\WINDOWS\system32\Drivers\NetUtils2016.sys 2017-04-18 15:33 - 2017-04-18 15:33 - 00006188 _____ C:\WINDOWS\System32\Tasks\Zociwardshter Launcher 2017-04-18 15:33 - 2017-04-18 15:33 - 00003766 _____ C:\WINDOWS\System32\Tasks\SoftUpgrade 2017-04-18 15:33 - 2017-04-18 15:33 - 00000000 ____D C:\WINDOWS\system32\sstmp 2017-04-18 15:33 - 2017-04-18 15:33 - 00000000 ____D C:\Users\ludov\AppData\Roaming\Note-UP 2017-04-18 15:33 - 2017-04-18 15:33 - 00000000 ____D C:\Users\ludov\AppData\Roaming\gplyra 2017-04-18 15:33 - 2017-04-18 15:33 - 00000000 ____D C:\Users\ludov\AppData\Local\Jeqeshzernely 2017-04-18 15:33 - 2017-04-18 15:33 - 00000000 ____D C:\Program Files (x86)\Zociwardshter Launcher 2017-04-18 15:33 - 2017-04-18 15:33 - 00000000 ____D C:\Program Files (x86)\SoftUpgrade 2017-04-18 15:05 - 2017-04-18 16:04 - 00000000 ____D C:\Users\ludov\AppData\Roaming\ZHP 2017-04-18 15:05 - 2017-04-18 15:05 - 00000865 _____ C:\Users\ludov\Desktop\ZHPDiag.lnk 2017-04-18 15:03 - 2017-04-18 15:03 - 02105344 _____ C:\Users\ludov\Downloads\ZHPDiag3.exe 2017-04-18 14:48 - 2017-04-18 14:48 - 00010976 _____ C:\Users\ludov\Documents\cc_20170418_144853.reg 2017-04-18 14:47 - 2017-04-18 14:47 - 00002852 _____ C:\WINDOWS\System32\Tasks\CCleanerSkipUAC 2017-04-18 14:47 - 2017-04-18 14:47 - 00000863 _____ C:\Users\Public\Desktop\CCleaner.lnk 2017-04-18 14:47 - 2017-04-18 14:47 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner 2017-04-18 14:47 - 2017-04-18 14:47 - 00000000 ____D C:\Program Files\CCleaner 2017-04-18 14:46 - 2017-04-18 14:46 - 09274608 _____ (Piriform Ltd) C:\Users\ludov\Downloads\ccleaner_5-28-6005_fr_14492.exe 2017-04-18 13:03 - 2017-04-18 13:03 - 00001590 _____ C:\Users\ludov\Desktop\adwcleaner.lnk 2017-04-18 12:58 - 2017-04-18 15:33 - 00000000 ____D C:\AdwCleaner 2017-04-18 12:57 - 2017-04-18 12:57 - 04089296 _____ C:\Users\ludov\Downloads\adwcleaner_6.045.exe 2017-04-18 12:23 - 2017-04-18 12:24 - 01186120 _____ (Opera Software) C:\Users\ludov\Downloads\OperaSetup.exe 2017-04-18 12:21 - 2017-04-18 12:21 - 00001004 _____ C:\Users\ludov\Desktop\DFX - Raccourci.lnk 2017-04-18 12:20 - 2017-04-18 12:20 - 00000000 ____D C:\Users\ludov\AppData\Local\DFX 2017-04-18 12:20 - 2017-04-18 12:20 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DFX Audio Enhancer 2017-04-18 12:20 - 2017-04-18 12:20 - 00000000 ____D C:\Program Files (x86)\DFX 2017-04-18 12:19 - 2017-04-18 12:19 - 00000000 ____D C:\Users\postgres\AppData\Roaming\vlc 2017-04-18 12:17 - 2017-04-18 12:17 - 00000000 ____D C:\Users\ludov\Downloads\DFX Audio Enhancer v12.010 Final + Crack {B4tman} 2017-04-18 12:08 - 2017-04-18 12:08 - 00004400 _____ C:\WINDOWS\System32\Tasks\SMW_UpdateTask_Time_3832303039353939322d3255576c235a6c5755412a34 2017-04-18 12:07 - 2017-04-18 12:07 - 00006106 _____ C:\WINDOWS\System32\Tasks\Grakerghstertecult Reports 2017-04-18 12:07 - 2017-04-18 12:07 - 00003972 _____ C:\WINDOWS\System32\Tasks\{15B97C94-A212-CB3F-8596-CAE3E0AF3CDB} 2017-04-18 12:07 - 2017-04-18 12:07 - 00003882 _____ C:\WINDOWS\System32\Tasks\{37D42B3B-3E20-178A-2BFF-6C5FA986E25C} 2017-04-18 12:07 - 2017-04-18 12:07 - 00000000 ____H C:\WINDOWS\system32\BIT2474.tmp 2017-04-18 12:07 - 2017-04-18 12:07 - 00000000 ____D C:\Users\ludov\AppData\Roaming\Plerserserofecult 2017-04-18 12:07 - 2017-04-18 12:07 - 00000000 ____D C:\Users\ludov\AppData\Local\Phecerghtstenage 2017-04-18 12:07 - 2017-04-18 12:07 - 00000000 ____D C:\ProgramData\{4DFD8BFD-FA56-3C56-FEF4-DE46A228ED63} 2017-04-18 12:07 - 2017-04-18 12:07 - 00000000 ____D C:\Program Files (x86)\VKOKAdBlockU 2017-04-18 12:07 - 2017-04-18 12:07 - 00000000 ____D C:\Program Files (x86)\VKOKAdBlockIE 2017-04-18 12:07 - 2017-04-18 12:07 - 00000000 ____D C:\Program Files (x86)\Grakerghstertecult Reports 2017-04-18 12:06 - 2017-04-18 12:06 - 00000000 ____D C:\WINDOWS\system32\SSL 2017-04-18 12:04 - 2017-04-18 15:50 - 00000000 ____D C:\Users\ludov\AppData\Roaming\52773050 2017-04-18 12:04 - 2017-04-18 15:50 - 00000000 ____D C:\Program Files\L6TZXCA015 2017-04-18 12:04 - 2017-04-18 15:50 - 00000000 ____D C:\Program Files\E5KF0EXF00 2017-04-18 12:04 - 2017-04-18 15:50 - 00000000 ____D C:\Program Files\BXVNHN4YVW 2017-04-18 12:04 - 2017-04-18 15:38 - 00005459 _____ C:\ProgramData\log.ewbt 2017-04-18 12:04 - 2017-04-18 15:38 - 00000128 _____ C:\ProgramData\log.ewbb 2017-04-18 12:04 - 2017-04-18 12:04 - 00000000 ____D C:\Users\ludov\AppData\Local\CrashRpt 2017-04-18 11:43 - 2017-04-18 11:43 - 00014943 _____ C:\Users\ludov\Downloads\Grille d’observation de communication non verbale et verbale dans les situations de jeu, de tâches éducatives (2).pdf 2017-04-18 11:29 - 2017-04-18 11:29 - 00014943 _____ C:\Users\ludov\Downloads\Grille d’observation de communication non verbale et verbale dans les situations de jeu, de tâches éducatives (1).pdf 2017-04-18 11:27 - 2017-04-18 11:27 - 00802058 _____ C:\Users\ludov\Downloads\11article_jeux_de_ra_oea_Ole.pdf 2017-04-18 11:26 - 2017-04-18 11:26 - 00066487 _____ C:\Users\ludov\Downloads\la-grille-de-rousseau.pdf 2017-04-17 20:35 - 2017-04-17 20:35 - 00000000 ___HD C:\Program Files\Common Files\EAInstaller 2017-04-17 19:41 - 2017-04-17 23:39 - 00000000 ____D C:\Program Files (x86)\Mass Effect Andromeda 2017-04-17 16:44 - 2017-04-18 16:01 - 00000000 ____D C:\Users\ludov\Downloads\Mass.Effect.Andromeda-CPY 2017-04-16 09:38 - 2017-04-16 09:38 - 00000000 ____D C:\Users\ludov\Documents\BioWare 2017-04-16 09:38 - 2017-04-16 09:38 - 00000000 ____D C:\Users\ludov\ansel 2017-04-16 09:36 - 2017-04-16 09:36 - 00000000 ____D C:\WINDOWS\SysWOW64\directx 2017-04-15 16:38 - 2017-04-15 16:38 - 00000091 ____H C:\Users\ludov\Downloads\.~lock.differentes formes devaluation.doc# 2017-04-15 16:35 - 2017-04-15 16:35 - 00014943 _____ C:\Users\ludov\Downloads\Grille d’observation de communication non verbale et verbale dans les situations de jeu, de tâches éducatives.pdf 2017-04-15 16:33 - 2017-04-15 16:33 - 00021436 _____ C:\Users\ludov\Downloads\grille_evaluation_comm_orale.pdf 2017-04-15 16:32 - 2017-04-15 16:32 - 02016750 _____ C:\Users\ludov\Downloads\u42-grille-evaluation.pdf 2017-04-15 16:32 - 2017-04-15 16:32 - 00004100 _____ C:\Users\ludov\Downloads\2_7_grille_evaluation_communication.PDF 2017-04-15 16:14 - 2017-04-15 16:14 - 02456233 _____ C:\Users\ludov\Downloads\guide_reunions.pdf 2017-04-14 15:10 - 2017-04-14 15:10 - 00000000 ____D C:\Windows.old 2017-04-14 15:09 - 2017-04-14 15:09 - 23680512 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll 2017-04-14 15:09 - 2017-04-14 15:09 - 23675392 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll 2017-04-14 15:09 - 2017-04-14 15:09 - 20505600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll 2017-04-14 15:09 - 2017-04-14 15:09 - 19334144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll 2017-04-14 15:09 - 2017-04-14 15:09 - 12787200 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll 2017-04-14 15:09 - 2017-04-14 15:09 - 11869696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll 2017-04-14 15:09 - 2017-04-14 15:09 - 08319392 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe 2017-04-14 15:09 - 2017-04-14 15:09 - 08247296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll 2017-04-14 15:09 - 2017-04-14 15:09 - 07904784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll 2017-04-14 15:09 - 2017-04-14 15:09 - 06756920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll 2017-04-14 15:09 - 2017-04-14 15:09 - 06296064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll 2017-04-14 15:09 - 2017-04-14 15:09 - 05477088 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneCoreUAPCommonProxyStub.dll 2017-04-14 15:09 - 2017-04-14 15:09 - 03672064 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys 2017-04-14 15:09 - 2017-04-14 15:09 - 02957824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys 2017-04-14 15:09 - 2017-04-14 15:09 - 02444184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys 2017-04-14 15:09 - 2017-04-14 15:09 - 02085280 _____ (Microsoft Corporation) C:\WINDOWS\system32\UpdateAgent.dll 2017-04-14 15:09 - 2017-04-14 15:09 - 01760264 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll 2017-04-14 15:09 - 2017-04-14 15:09 - 01657344 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsPrint.dll 2017-04-14 15:09 - 2017-04-14 15:09 - 01605632 _____ (Microsoft Corporation) C:\WINDOWS\system32\quartz.dll 2017-04-14 15:09 - 2017-04-14 15:09 - 01604312 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll 2017-04-14 15:09 - 2017-04-14 15:09 - 01518088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecs.dll 2017-04-14 15:09 - 2017-04-14 15:09 - 01506816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\quartz.dll 2017-04-14 15:09 - 2017-04-14 15:09 - 01411640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll 2017-04-14 15:09 - 2017-04-14 15:09 - 01356800 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll 2017-04-14 15:09 - 2017-04-14 15:09 - 01323880 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll 2017-04-14 15:09 - 2017-04-14 15:09 - 01147296 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe 2017-04-14 15:09 - 2017-04-14 15:09 - 01060352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XpsPrint.dll 2017-04-14 15:09 - 2017-04-14 15:09 - 01024416 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe 2017-04-14 15:09 - 2017-04-14 15:09 - 00986592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll 2017-04-14 15:09 - 2017-04-14 15:09 - 00805376 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll 2017-04-14 15:09 - 2017-04-14 15:09 - 00750560 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe 2017-04-14 15:09 - 2017-04-14 15:09 - 00626520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe 2017-04-14 15:09 - 2017-04-14 15:09 - 00624640 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll 2017-04-14 15:09 - 2017-04-14 15:09 - 00545792 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv 2017-04-14 15:09 - 2017-04-14 15:09 - 00433664 _____ (Microsoft Corporation) C:\WINDOWS\system32\msIso.dll 2017-04-14 15:09 - 2017-04-14 15:09 - 00429568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv 2017-04-14 15:09 - 2017-04-14 15:09 - 00409504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys 2017-04-14 15:09 - 2017-04-14 15:09 - 00382368 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll 2017-04-14 15:09 - 2017-04-14 15:09 - 00364032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msIso.dll 2017-04-14 15:09 - 2017-04-14 15:09 - 00357888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll 2017-04-14 15:09 - 2017-04-14 15:09 - 00354360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcryptprimitives.dll 2017-04-14 15:09 - 2017-04-14 15:09 - 00347136 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsDocumentTargetPrint.dll 2017-04-14 15:09 - 2017-04-14 15:09 - 00311192 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll 2017-04-14 15:09 - 2017-04-14 15:09 - 00252928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XpsDocumentTargetPrint.dll 2017-04-14 15:09 - 2017-04-14 15:09 - 00205728 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll 2017-04-14 15:09 - 2017-04-14 15:09 - 00119296 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataTimeUtil.dll 2017-04-14 15:09 - 2017-04-14 15:09 - 00094720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataTimeUtil.dll 2017-04-14 15:09 - 2017-04-14 15:09 - 00091648 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmjpegdec.dll 2017-04-14 15:09 - 2017-04-14 15:09 - 00087552 _____ (Microsoft Corporation) C:\WINDOWS\system32\asycfilt.dll 2017-04-14 15:09 - 2017-04-14 15:09 - 00081408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmjpegdec.dll 2017-04-14 15:09 - 2017-04-14 15:09 - 00078336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\asycfilt.dll 2017-04-14 15:09 - 2017-04-14 15:09 - 00047104 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll 2017-04-14 15:09 - 2017-04-14 15:09 - 00038912 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll 2017-04-14 15:09 - 2017-04-14 15:09 - 00035840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BasicRender.sys 2017-04-14 15:09 - 2017-04-14 15:09 - 00032004 _____ C:\WINDOWS\system32\edgehtmlpluginpolicy.bin 2017-04-14 15:07 - 2017-04-14 15:07 - 00000000 ____D C:\Users\ludov\AppData\Local\DBG 2017-04-14 15:06 - 2017-04-14 15:06 - 00543648 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe 2017-04-14 15:06 - 2017-04-14 15:06 - 00388000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS 2017-04-14 15:06 - 2017-03-17 23:00 - 05739008 _____ (Microsoft Corporation) C:\WINDOWS\system32\prm0009.dll 2017-04-14 15:06 - 2017-03-17 22:59 - 02629120 _____ (Microsoft Corporation) C:\WINDOWS\system32\NlsLexicons0009.dll 2017-04-14 15:06 - 2017-03-17 22:48 - 06348288 _____ (Microsoft Corporation) C:\WINDOWS\system32\NlsData0009.dll 2017-04-14 15:06 - 2017-03-17 22:43 - 02629120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NlsLexicons0009.dll 2017-04-14 15:06 - 2017-03-17 22:35 - 05484544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NlsData0009.dll 2017-04-14 15:05 - 2017-04-14 15:05 - 00000000 ___HD C:\OneDriveTemp 2017-04-14 15:03 - 2017-04-14 15:03 - 00000000 ____D C:\ProgramData\Microsoft OneDrive 2017-04-14 15:01 - 2017-04-14 15:01 - 00008192 _____ C:\WINDOWS\system32\config\userdiff 2017-04-14 15:01 - 2017-04-14 15:01 - 00000020 ___SH C:\Users\ludov\ntuser.ini 2017-04-14 15:01 - 2017-04-14 14:16 - 00000000 ____D C:\WINDOWS\ServiceProfiles 2017-04-14 14:57 - 2017-04-14 14:57 - 00000000 ____D C:\WINDOWS\SysWOW64\XPSViewer 2017-04-14 14:57 - 2017-04-14 14:57 - 00000000 ____D C:\Program Files\Reference Assemblies 2017-04-14 14:57 - 2017-04-14 14:57 - 00000000 ____D C:\Program Files\MSBuild 2017-04-14 14:57 - 2017-04-14 14:57 - 00000000 ____D C:\Program Files (x86)\Reference Assemblies 2017-04-14 14:57 - 2017-04-14 14:57 - 00000000 ____D C:\Program Files (x86)\MSBuild 2017-04-14 14:56 - 2017-02-10 12:26 - 01166520 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll 2017-04-14 14:56 - 2017-02-10 12:26 - 00124624 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll 2017-04-14 14:56 - 2017-02-10 12:26 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe 2017-04-14 14:56 - 2017-02-10 12:21 - 00778936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll 2017-04-14 14:56 - 2017-02-10 12:21 - 00103120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll 2017-04-14 14:56 - 2017-02-10 12:21 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe 2017-04-14 14:38 - 2017-04-14 14:40 - 00011433 _____ C:\WINDOWS\diagwrn.xml 2017-04-14 14:38 - 2017-04-14 14:40 - 00011433 _____ C:\WINDOWS\diagerr.xml 2017-04-14 14:36 - 2017-04-18 15:43 - 02020610 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2017-04-14 14:34 - 2017-04-18 15:37 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT 2017-04-14 14:34 - 2017-04-18 12:30 - 00003956 _____ C:\WINDOWS\System32\Tasks\Opera scheduled Autoupdate 1487603058 2017-04-14 14:34 - 2017-04-16 10:49 - 00003198 _____ C:\WINDOWS\System32\Tasks\TrackerAutoUpdate 2017-04-14 14:34 - 2017-04-14 15:05 - 00003272 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task v2 2017-04-14 14:34 - 2017-04-14 14:34 - 00003398 _____ C:\WINDOWS\System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2017-04-14 14:34 - 2017-04-14 14:34 - 00003114 _____ C:\WINDOWS\System32\Tasks\MSI_Help_Desk_Agent 2017-04-14 14:34 - 2017-04-14 14:34 - 00002984 _____ C:\WINDOWS\System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2017-04-14 14:34 - 2017-04-14 14:34 - 00002968 _____ C:\WINDOWS\System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2017-04-14 14:34 - 2017-04-14 14:34 - 00002956 _____ C:\WINDOWS\System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2017-04-14 14:34 - 2017-04-14 14:34 - 00002838 _____ C:\WINDOWS\System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2017-04-14 14:34 - 2017-04-14 14:34 - 00002786 _____ C:\WINDOWS\System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2017-04-14 14:34 - 2017-04-14 14:34 - 00002744 _____ C:\WINDOWS\System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2017-04-14 14:34 - 2017-04-14 14:34 - 00002432 _____ C:\WINDOWS\System32\Tasks\MSIAfterburner 2017-04-14 14:34 - 2017-04-14 14:34 - 00002184 _____ C:\WINDOWS\System32\Tasks\{501DE4A2-1CFC-4A74-A495-1C0CEC02C10E} 2017-04-14 14:33 - 2017-04-14 14:34 - 00003514 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA 2017-04-14 14:33 - 2017-04-14 14:34 - 00003450 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater 2017-04-14 14:33 - 2017-04-14 14:34 - 00003290 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore 2017-04-14 14:30 - 2017-04-14 14:30 - 00000020 ___SH C:\Users\postgres\ntuser.ini 2017-04-14 14:27 - 2017-04-14 14:27 - 00000000 ____D C:\ProgramData\USOShared 2017-04-14 14:26 - 2017-04-14 14:26 - 00001576 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk 2017-04-14 14:23 - 2017-04-14 14:28 - 00000000 ____D C:\WINDOWS\system32\config\bbimigrate 2017-04-14 14:21 - 2017-04-18 14:17 - 00000000 ____D C:\Users\ludov 2017-04-14 14:21 - 2017-04-14 14:31 - 00000000 ____D C:\Users\postgres 2017-04-14 14:21 - 2017-04-14 14:21 - 00000000 _SHDL C:\Users\postgres\Voisinage réseau 2017-04-14 14:21 - 2017-04-14 14:21 - 00000000 _SHDL C:\Users\postgres\Voisinage d'impression 2017-04-14 14:21 - 2017-04-14 14:21 - 00000000 _SHDL C:\Users\postgres\Modèles 2017-04-14 14:21 - 2017-04-14 14:21 - 00000000 _SHDL C:\Users\postgres\Mes documents 2017-04-14 14:21 - 2017-04-14 14:21 - 00000000 _SHDL C:\Users\postgres\Menu Démarrer 2017-04-14 14:21 - 2017-04-14 14:21 - 00000000 _SHDL C:\Users\postgres\Documents\Mes vidéos 2017-04-14 14:21 - 2017-04-14 14:21 - 00000000 _SHDL C:\Users\postgres\Documents\Mes images 2017-04-14 14:21 - 2017-04-14 14:21 - 00000000 _SHDL C:\Users\postgres\Documents\Ma musique 2017-04-14 14:21 - 2017-04-14 14:21 - 00000000 _SHDL C:\Users\postgres\AppData\Roaming\Microsoft\Windows\Start Menu\Programmes 2017-04-14 14:21 - 2017-04-14 14:21 - 00000000 _SHDL C:\Users\postgres\AppData\Local\Historique 2017-04-14 14:21 - 2017-04-14 14:21 - 00000000 _SHDL C:\Users\ludov\Voisinage réseau 2017-04-14 14:21 - 2017-04-14 14:21 - 00000000 _SHDL C:\Users\ludov\Voisinage d'impression 2017-04-14 14:21 - 2017-04-14 14:21 - 00000000 _SHDL C:\Users\ludov\Modèles 2017-04-14 14:21 - 2017-04-14 14:21 - 00000000 _SHDL C:\Users\ludov\Mes documents 2017-04-14 14:21 - 2017-04-14 14:21 - 00000000 _SHDL C:\Users\ludov\Menu Démarrer 2017-04-14 14:21 - 2017-04-14 14:21 - 00000000 _SHDL C:\Users\ludov\Documents\Mes vidéos 2017-04-14 14:21 - 2017-04-14 14:21 - 00000000 _SHDL C:\Users\ludov\Documents\Mes images 2017-04-14 14:21 - 2017-04-14 14:21 - 00000000 _SHDL C:\Users\ludov\Documents\Ma musique 2017-04-14 14:21 - 2017-04-14 14:21 - 00000000 _SHDL C:\Users\ludov\AppData\Roaming\Microsoft\Windows\Start Menu\Programmes 2017-04-14 14:21 - 2017-04-14 14:21 - 00000000 _SHDL C:\Users\ludov\AppData\Local\Historique 2017-04-14 14:20 - 2017-04-18 15:37 - 00000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat 2017-04-14 14:20 - 2017-04-18 12:04 - 00000000 ____D C:\Program Files\Intel 2017-04-14 14:20 - 2017-04-14 14:23 - 00000000 ____D C:\Program Files\Elantech 2017-04-14 14:20 - 2017-04-14 14:20 - 00000200 _____ C:\WINDOWS\system32\{EC94D02F-D200-4428-9531-05AF7F9799CB}.bat 2017-04-14 14:20 - 2017-04-14 14:20 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf 2017-04-14 14:20 - 2017-04-14 14:20 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_ETD_01011.Wdf 2017-04-14 14:20 - 2017-04-14 14:20 - 00000000 _____ C:\WINDOWS\system32\GfxValDisplayLog.bin 2017-04-14 14:20 - 2016-11-02 00:05 - 00099848 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.DLL 2017-04-14 14:19 - 2017-04-18 15:39 - 00000000 ____D C:\ProgramData\NVIDIA 2017-04-14 14:19 - 2017-04-14 14:24 - 00000000 ____D C:\ProgramData\NVIDIA Corporation 2017-04-14 14:19 - 2017-04-14 14:24 - 00000000 ____D C:\Program Files\NVIDIA Corporation 2017-04-14 14:19 - 2017-04-14 14:24 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation 2017-04-14 14:19 - 2017-04-14 14:19 - 00018960 _____ (Logitech, Inc.) C:\WINDOWS\system32\Drivers\LNonPnP.sys 2017-04-14 14:19 - 2017-04-14 14:19 - 00000000 ____D C:\WINDOWS\SysWOW64\RTCOM 2017-04-14 14:19 - 2017-04-14 14:19 - 00000000 ____D C:\Program Files\Realtek 2017-04-14 14:19 - 2017-04-01 04:10 - 06437312 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll 2017-04-14 14:19 - 2017-04-01 04:10 - 02481208 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll 2017-04-14 14:19 - 2017-04-01 04:10 - 01764408 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll 2017-04-14 14:19 - 2017-04-01 04:10 - 00549944 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshext.dll 2017-04-14 14:19 - 2017-04-01 04:10 - 00393784 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll 2017-04-14 14:19 - 2017-04-01 04:10 - 00081856 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshextr.dll 2017-04-14 14:19 - 2017-04-01 04:10 - 00071224 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll 2017-04-14 14:19 - 2017-04-01 04:09 - 00001951 _____ C:\WINDOWS\NvContainerRecovery.bat 2017-04-14 14:19 - 2017-03-31 12:15 - 07851747 _____ C:\WINDOWS\system32\nvcoproc.bin 2017-04-14 14:19 - 2017-03-18 22:56 - 02233344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll 2017-04-14 14:16 - 2017-04-18 14:52 - 00334640 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2017-04-14 14:16 - 2017-04-18 14:12 - 00000000 ____D C:\WINDOWS\system32\SleepStudy 2017-04-14 10:52 - 2017-04-18 14:49 - 00000000 ___DC C:\WINDOWS\Panther 2017-04-13 17:48 - 2017-04-13 22:46 - 00000000 ____D C:\Users\ludov\Downloads\Mirror's_Edge_pfr 2017-04-13 17:39 - 2017-04-13 17:43 - 42892103 _____ C:\Users\ludov\Downloads\Mirror's_Edge_pfr.rar 2017-04-13 17:39 - 2017-04-13 17:39 - 00000000 ____D C:\Program Files (x86)\AGEIA Technologies 2017-04-13 17:37 - 2017-04-14 14:28 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mirror's Edge [GOG.com] 2017-04-13 17:37 - 2017-04-13 17:39 - 00000000 ____D C:\Users\ludov\Documents\EA Games 2017-04-13 17:23 - 2017-04-14 14:24 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Croteam 2017-04-13 17:14 - 2017-04-13 17:14 - 00000000 ____D C:\Program Files (x86)\Croteam 2017-04-13 16:53 - 2017-04-13 16:53 - 00001252 _____ C:\Users\ludov\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Paramètres de sécurité et de confidentialité.lnk 2017-04-13 16:53 - 2017-04-13 16:53 - 00000000 ____D C:\Users\ludov\AppData\Local\UNP 2017-04-13 16:00 - 2017-04-13 16:00 - 03118277 _____ C:\WINDOWS\c62dde4a76c447e5de97755e8ca79357.exe 2017-04-13 09:33 - 2017-04-14 14:28 - 00000000 ____D C:\WINDOWS\system32\UNP 2017-04-13 09:33 - 2017-04-14 14:28 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bonjour 2017-04-13 09:33 - 2017-04-13 09:34 - 00000000 ____D C:\Program Files\UNP 2017-04-13 09:33 - 2017-04-13 09:33 - 00000000 ____D C:\Program Files (x86)\Bonjour 2017-04-12 17:28 - 2017-03-28 07:37 - 00031232 _____ (Microsoft Corporation) C:\WINDOWS\system32\DdcWnsListener.dll 2017-04-12 17:28 - 2017-03-28 07:28 - 00261632 _____ (Microsoft Corporation) C:\WINDOWS\system32\indexeddbserver.dll 2017-04-12 11:34 - 2017-04-12 11:34 - 00079464 _____ C:\Users\ludov\Downloads\EATDD-DGERN20102111 (3).pdf 2017-04-12 11:30 - 2017-04-12 11:30 - 00080366 _____ C:\Users\ludov\Downloads\STAV-2013-M7 (1).pdf 2017-04-12 11:25 - 2017-04-12 11:25 - 00065243 _____ C:\Users\ludov\Downloads\MP2.pdf 2017-04-12 11:22 - 2017-04-12 11:22 - 00079464 _____ C:\Users\ludov\Downloads\EATDD-DGERN20102111 (2).pdf 2017-04-12 11:13 - 2017-04-12 11:13 - 00019290 _____ C:\Users\ludov\Downloads\btsa_DATR_M58-2012.pdf 2017-04-12 11:12 - 2017-04-12 11:12 - 00124121 _____ C:\Users\ludov\Downloads\m22.pdf 2017-04-12 11:07 - 2017-04-12 11:07 - 00093811 _____ C:\Users\ludov\Downloads\EAT-DGERN20112086Z (1).pdf 2017-04-12 11:05 - 2017-04-12 11:05 - 00093811 _____ C:\Users\ludov\Downloads\EAT-DGERN20112086Z.pdf 2017-04-12 10:57 - 2017-04-12 10:57 - 00062332 _____ C:\Users\ludov\Downloads\STAV-2013-M5.pdf 2017-04-12 10:54 - 2017-04-12 10:54 - 00080366 _____ C:\Users\ludov\Downloads\STAV-2013-M7.pdf 2017-04-12 10:53 - 2017-04-12 10:53 - 00088203 _____ C:\Users\ludov\Downloads\2ndeGT-DA-EATDD.pdf 2017-04-12 10:52 - 2017-04-12 10:52 - 06230616 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerInstaller.exe 2017-04-12 10:52 - 2017-04-12 10:52 - 00079464 _____ C:\Users\ludov\Downloads\EATDD-DGERN20102111 (1).pdf 2017-04-12 10:51 - 2017-04-12 10:51 - 00079464 _____ C:\Users\ludov\Downloads\EATDD-DGERN20102111.pdf 2017-04-12 10:49 - 2017-04-12 10:49 - 00228684 _____ C:\Users\ludov\Downloads\LESC-dans-le-bac-technologique-2013.pdf 2017-04-12 10:42 - 2017-04-12 10:42 - 00062794 _____ C:\Users\ludov\Downloads\bacpro-mg1.pdf 2017-04-12 10:42 - 2017-04-12 10:42 - 00062794 _____ C:\Users\ludov\Downloads\bacpro-mg1 (1).pdf 2017-04-12 10:40 - 2017-04-12 10:40 - 00143327 _____ C:\Users\ludov\Downloads\2nde-DA-EG1 (1).pdf 2017-04-12 10:28 - 2017-04-12 10:28 - 00372206 _____ C:\Users\ludov\Downloads\capa-sapver-refJuillet2015.pdf 2017-04-12 10:27 - 2017-04-12 10:27 - 00060935 _____ C:\Users\ludov\Downloads\M1.pdf 2017-04-12 10:26 - 2017-04-12 10:26 - 00037905 _____ C:\Users\ludov\Downloads\4-m8-esc.pdf 2017-04-12 10:25 - 2017-04-12 10:25 - 02963102 _____ C:\Users\ludov\Downloads\capa-iaa-00-complet.pdf 2017-04-12 10:24 - 2017-04-12 10:24 - 01180838 _____ C:\Users\ludov\Downloads\DNB2017-InfoFamille.pdf 2017-04-12 10:24 - 2017-04-12 10:24 - 00141756 _____ C:\Users\ludov\Downloads\4e-3eEA-FicheCom-Jan2016.pdf 2017-04-12 10:22 - 2017-04-12 10:22 - 00922394 _____ C:\Users\ludov\Downloads\4e3e-refJuillet2016.pdf 2017-04-12 10:04 - 2017-04-12 10:04 - 00010902 _____ C:\Users\ludov\Downloads\EVALUATIONS.pdf 2017-04-11 10:49 - 2017-04-11 10:49 - 00143327 _____ C:\Users\ludov\Downloads\2nde-DA-EG1.pdf 2017-04-08 10:17 - 2017-04-08 10:17 - 01709919 _____ C:\Users\ludov\Downloads\2015.UE104.ROQUES.CECILE.pdf 2017-04-08 10:16 - 2017-04-08 10:16 - 03898980 _____ C:\Users\ludov\Downloads\2015.UE104.BIJOU.CLEMENT.pdf 2017-04-07 17:53 - 2017-04-07 17:53 - 05542097 _____ C:\Users\ludov\Downloads\TC94 LESCANO.ppsx 2017-04-07 17:32 - 2017-04-07 17:32 - 00498494 _____ C:\Users\ludov\Downloads\ASTER_2003_37_189.pdf 2017-04-07 17:28 - 2017-04-07 17:28 - 00275568 _____ C:\Users\ludov\Downloads\48-octobre-2009.pdf 2017-04-07 16:41 - 2017-04-14 14:28 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LibreOffice 5.2 2017-04-07 16:41 - 2017-04-07 16:41 - 00001251 _____ C:\Users\Public\Desktop\LibreOffice 5.2.lnk 2017-04-07 16:41 - 2017-04-07 16:41 - 00000000 ____D C:\Program Files (x86)\LibreOffice 5 2017-04-07 16:07 - 2017-04-07 16:07 - 02375618 _____ C:\Users\ludov\Downloads\brusseau_lilian.pdf 2017-04-07 16:07 - 2017-04-07 16:07 - 01773577 _____ C:\Users\ludov\Downloads\olibet_ilaria.pdf 2017-04-07 15:03 - 2017-04-03 16:49 - 00048696 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvpciflt.sys 2017-04-07 15:03 - 2017-04-01 05:27 - 40201152 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcompiler.dll 2017-04-07 15:03 - 2017-04-01 05:27 - 35354048 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglv64.dll 2017-04-07 15:03 - 2017-04-01 05:27 - 35280320 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcompiler.dll 2017-04-07 15:03 - 2017-04-01 05:27 - 28592184 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglv32.dll 2017-04-07 15:03 - 2017-04-01 05:27 - 11111392 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll 2017-04-07 15:03 - 2017-04-01 05:27 - 11056272 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvptxJitCompiler.dll 2017-04-07 15:03 - 2017-04-01 05:27 - 10635192 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvopencl.dll 2017-04-07 15:03 - 2017-04-01 05:27 - 09316648 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll 2017-04-07 15:03 - 2017-04-01 05:27 - 09014792 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvptxJitCompiler.dll 2017-04-07 15:03 - 2017-04-01 05:27 - 08876272 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvopencl.dll 2017-04-07 15:03 - 2017-04-01 05:27 - 04085712 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll 2017-04-07 15:03 - 2017-04-01 05:27 - 03790904 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll 2017-04-07 15:03 - 2017-04-01 05:27 - 03602296 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll 2017-04-07 15:03 - 2017-04-01 05:27 - 03246016 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll 2017-04-07 15:03 - 2017-04-01 05:27 - 01988032 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6438165.dll 2017-04-07 15:03 - 2017-04-01 05:27 - 01591352 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6438165.dll 2017-04-07 15:03 - 2017-04-01 05:27 - 01278528 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncMFTH264.dll 2017-04-07 15:03 - 2017-04-01 05:27 - 01055800 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll 2017-04-07 15:03 - 2017-04-01 05:27 - 00995920 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncMFTH264.dll 2017-04-07 15:03 - 2017-04-01 05:27 - 00990144 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll 2017-04-07 15:03 - 2017-04-01 05:27 - 00960448 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll 2017-04-07 15:03 - 2017-04-01 05:27 - 00911296 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll 2017-04-07 15:03 - 2017-04-01 05:27 - 00776048 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll 2017-04-07 15:03 - 2017-04-01 05:27 - 00688968 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvfatbinaryLoader.dll 2017-04-07 15:03 - 2017-04-01 05:27 - 00612088 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll 2017-04-07 15:03 - 2017-04-01 05:27 - 00609728 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll 2017-04-07 15:03 - 2017-04-01 05:27 - 00577544 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvfatbinaryLoader.dll 2017-04-07 15:03 - 2017-04-01 05:27 - 00499136 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll 2017-04-07 15:03 - 2017-04-01 05:27 - 00045061 _____ C:\WINDOWS\system32\nvinfo.pb 2017-04-07 15:03 - 2017-04-01 05:27 - 00000669 _____ C:\WINDOWS\SysWOW64\nv-vk32.json 2017-04-07 15:03 - 2017-04-01 05:27 - 00000669 _____ C:\WINDOWS\system32\nv-vk64.json 2017-04-07 15:03 - 2017-04-01 02:41 - 00076840 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvhci.sys 2017-04-06 07:34 - 2017-04-13 16:58 - 00000000 ____D C:\Users\ludov\Downloads\Call.of.Duty.Advanced.Warfare-CODEX 2017-04-06 05:57 - 2017-04-06 05:58 - 00000000 ____D C:\Users\ludov\Downloads\Grand Theft Auto V [FitGirl Ultra Repack] 2017-04-05 22:53 - 2017-04-05 22:53 - 00000000 ____D C:\Users\ludov\Downloads\Rise.Of.The.Tomb.Raider-CONSPIR4CY 2017-04-05 19:55 - 2017-04-05 19:55 - 00000000 ____D C:\Users\ludov\Downloads\Mirrors.Edge-GOG 2017-04-04 18:08 - 2017-04-04 18:08 - 00000000 ____D C:\Users\ludov\AppData\Roaming\NVIDIA 2017-04-04 16:16 - 2017-04-04 16:16 - 00000000 ____D C:\Users\ludov\Documents\NBGI 2017-04-04 16:16 - 2017-04-04 16:16 - 00000000 ____D C:\Users\ludov\AppData\Local\NBGI 2017-04-04 15:43 - 2017-04-04 16:06 - 00000000 ____D C:\Program Files (x86)\ Borderlands The Pre-Sequel 2017-04-04 15:18 - 2017-04-04 15:18 - 00000000 ____D C:\Program Files (x86)\NAMCO BANDAI Games 2017-04-04 15:15 - 2017-04-14 14:28 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Games for Windows Marketplace 2017-04-04 15:15 - 2017-04-14 14:24 - 00000000 ____D C:\WINDOWS\SysWOW64\xlive 2017-04-04 15:15 - 2017-04-04 15:15 - 00000000 ____D C:\Program Files (x86)\Microsoft Games for Windows - LIVE 2017-04-04 15:14 - 2017-04-04 15:16 - 140983344 _____ C:\Users\ludov\Downloads\DDLValley.rocks_Call.of.Duty.Advanced.Warfare.Update.1-RELOADED (1).rar 2017-04-04 15:03 - 2017-04-04 15:03 - 00835359 _____ C:\Users\ludov\Downloads\rld-codawproper.rar 2017-04-04 12:13 - 2017-04-04 12:13 - 00000000 ____D C:\Users\Public\Documents\Steam 2017-04-04 08:59 - 2017-04-04 08:59 - 00000000 ____D C:\Users\ludov\Downloads\Hitman-CPY 2017-04-03 23:04 - 2017-04-03 23:04 - 00000000 ____D C:\Users\ludov\Downloads\Mirrors.Edge.Catalyst-CPY 2017-04-03 19:20 - 2017-04-03 19:20 - 00000000 ____D C:\Users\ludov\Downloads\Far.Cry.Primal-CPY 2017-04-02 22:04 - 2017-04-02 22:04 - 00000000 ____D C:\Users\ludov\Downloads\The.Talos.Principle.MULTi15-PROPHET 2017-04-02 18:58 - 2017-04-02 18:58 - 00000349 _____ C:\Users\Public\Documents\PCLECHAL.INI 2017-04-02 18:55 - 2017-04-14 14:28 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Pinnacle Studio 18 2017-04-02 18:55 - 2017-04-02 18:55 - 00000000 ____D C:\Users\ludov\AppData\Local\Pinnacle 2017-04-02 18:55 - 2017-04-02 18:55 - 00000000 ____D C:\ProgramData\Pinnacle 2017-04-02 18:55 - 2017-04-02 18:55 - 00000000 ____D C:\Program Files\Pinnacle 2017-04-02 18:54 - 2017-04-02 18:54 - 00000000 ____D C:\Users\ludov\AppData\Local\Downloaded Installations 2017-04-02 18:14 - 2017-04-02 18:14 - 00000000 ____D C:\Users\ludov\Downloads\Pinnacle Studio Ultimate 18.5.1.827 + Content + Bonus Content 2017-04-02 08:15 - 2017-04-02 08:15 - 00087904 _____ (Microsoft Corporation) C:\WINDOWS\system32\UNPUXWorker.exe 2017-04-01 19:31 - 2017-04-01 19:32 - 14895389 _____ C:\Users\ludov\Downloads\Pinnacle Studio Ultimate 18.0.1.10212 Pré CRACK.rar 2017-04-01 19:17 - 2017-04-01 19:17 - 00000000 ____D C:\Users\ludov\Downloads\Corel_Pinnacle_Studio_18_Ultimate_Only_Keygen 2017-04-01 19:15 - 2017-04-01 19:15 - 00206531 _____ C:\Users\ludov\Downloads\Corel_Pinnacle_Studio_18_Ultimate_Only_Keygen.rar 2017-03-25 10:53 - 2017-03-25 10:53 - 00000000 ____D C:\Users\Default\AppData\Local\Google 2017-03-25 10:53 - 2017-03-25 10:53 - 00000000 ____D C:\Users\Default User\AppData\Local\Google 2017-03-22 15:19 - 2017-03-22 15:19 - 00000925 _____ C:\Users\ludov\Desktop\Ultracopier.lnk 2017-03-21 18:34 - 2017-03-21 18:34 - 00000000 ____D C:\Users\ludov\Documents\Battlefield 1 2017-03-21 11:54 - 2017-03-17 03:01 - 01983424 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6437892.dll 2017-03-21 11:54 - 2017-03-17 03:01 - 01589696 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6437892.dll 2017-03-21 11:49 - 2017-03-21 11:49 - 00000000 ____D C:\Program Files (x86)\Origin Games 2017-03-21 11:48 - 2017-04-17 19:37 - 00000000 ____D C:\Program Files (x86)\Origin 2017-03-21 11:48 - 2017-04-14 14:28 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Origin 2017-03-21 11:48 - 2017-03-21 11:48 - 00001062 _____ C:\Users\Public\Desktop\Origin.lnk 2017-03-21 11:47 - 2017-03-21 11:49 - 00000000 ____D C:\Users\ludov\AppData\Local\Origin 2017-03-21 01:04 - 2017-03-21 01:04 - 00000000 ____D C:\Users\ludov\Downloads\Mad.Max-CPY 2017-03-20 17:56 - 2017-03-20 17:56 - 00000000 ____D C:\Users\ludov\Downloads\Sherlock.Holmes.The.Devils.Daughter-CPY 2017-03-20 10:51 - 2017-04-14 14:28 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Resident Evil 7 Biohazard 2017-03-20 10:14 - 2017-03-20 11:01 - 00000000 ____D C:\Program Files (x86)\Resident Evil 7 Biohazard 2017-03-20 09:54 - 2017-04-04 14:24 - 00000000 ____D C:\Users\ludov\Downloads\Rise of the Tomb Raider Game PC Full 2017-03-20 09:44 - 2017-03-20 09:46 - 00000000 ____D C:\Users\ludov\Downloads\Doom-CPY 2017-03-20 07:47 - 2017-04-14 13:38 - 00000000 ___HD C:\$WINDOWS.~BT 2017-03-20 07:13 - 2017-03-18 22:59 - 00034774 _____ C:\WINDOWS\Professional.xml 2017-03-20 07:12 - 2017-04-14 15:05 - 00000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection 2017-03-20 07:12 - 2017-04-14 14:34 - 00000000 ____D C:\WINDOWS\HoloShell 2017-03-20 07:12 - 2017-03-20 07:12 - 00000000 __SHD C:\WINDOWS\BitLockerDiscoveryVolumeContents 2017-03-20 07:12 - 2017-03-20 07:12 - 00000000 ___SD C:\WINDOWS\system32\AppV 2017-03-20 07:12 - 2017-03-20 07:12 - 00000000 ____D C:\WINDOWS\system32\Hydrogen 2017-03-20 07:12 - 2017-03-20 07:12 - 00000000 ____D C:\WINDOWS\RemotePackages 2017-03-20 07:12 - 2017-03-20 07:12 - 00000000 ____D C:\ProgramData\WindowsHolographicDevices 2017-03-20 07:12 - 2016-11-02 00:05 - 00103952 _____ (Khronos Group) C:\WINDOWS\SysWOW64\opencl.dll 2017-03-20 07:11 - 2017-04-14 15:06 - 00000000 ____D C:\WINDOWS\OCR 2017-03-20 07:11 - 2017-03-20 07:11 - 00000000 ____D C:\WINDOWS\SKB 2017-03-20 07:10 - 2017-04-18 15:43 - 00915984 _____ C:\WINDOWS\system32\perfh00C.dat 2017-03-20 07:10 - 2017-04-18 15:43 - 00181598 _____ C:\WINDOWS\system32\perfc00C.dat 2017-03-20 07:10 - 2017-04-14 15:05 - 00000000 ____D C:\WINDOWS\SysWOW64\winrm 2017-03-20 07:10 - 2017-04-14 15:05 - 00000000 ____D C:\WINDOWS\SysWOW64\WCN 2017-03-20 07:10 - 2017-04-14 15:05 - 00000000 ____D C:\WINDOWS\SysWOW64\slmgr 2017-03-20 07:10 - 2017-04-14 15:05 - 00000000 ____D C:\WINDOWS\SysWOW64\Printing_Admin_Scripts 2017-03-20 07:10 - 2017-04-14 15:05 - 00000000 ____D C:\WINDOWS\system32\winrm 2017-03-20 07:10 - 2017-04-14 15:05 - 00000000 ____D C:\WINDOWS\system32\WCN 2017-03-20 07:10 - 2017-04-14 15:05 - 00000000 ____D C:\WINDOWS\system32\slmgr 2017-03-20 07:10 - 2017-04-14 15:05 - 00000000 ____D C:\WINDOWS\system32\Printing_Admin_Scripts 2017-03-20 07:10 - 2017-03-20 07:12 - 00000000 ____D C:\WINDOWS\system32\fr 2017-03-20 07:10 - 2017-03-20 07:10 - 00000000 ____D C:\WINDOWS\SysWOW64\sysprep 2017-03-20 07:10 - 2017-03-20 07:10 - 00000000 ____D C:\WINDOWS\SysWOW64\fr 2017-03-20 07:10 - 2017-03-20 07:10 - 00000000 ____D C:\WINDOWS\SysWOW64\0409 2017-03-20 07:10 - 2017-03-20 07:10 - 00000000 ____D C:\WINDOWS\system32\0409 2017-03-20 07:10 - 2017-03-20 07:10 - 00000000 ____D C:\WINDOWS\DigitalLocker 2017-03-20 07:10 - 2017-03-20 07:09 - 00351124 _____ C:\WINDOWS\system32\perfi00C.dat 2017-03-20 07:10 - 2017-03-20 07:09 - 00040694 _____ C:\WINDOWS\system32\perfd00C.dat 2017-03-20 07:10 - 2017-03-18 07:54 - 02021680 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpmde.dll 2017-03-20 07:10 - 2017-03-18 07:40 - 00387416 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpps.dll 2017-03-20 07:10 - 2017-03-18 07:40 - 00276400 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpeffects.dll 2017-03-20 07:10 - 2017-03-18 07:11 - 01339352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmpmde.dll 2017-03-20 07:10 - 2017-03-18 07:00 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdxm.ocx 2017-03-20 07:10 - 2017-03-18 07:00 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxmasf.dll 2017-03-20 07:10 - 2017-03-18 06:59 - 00011264 _____ (Microsoft Corporation) C:\WINDOWS\system32\spwmp.dll 2017-03-20 07:10 - 2017-03-18 06:59 - 00002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmerror.dll 2017-03-20 07:10 - 2017-03-18 06:58 - 00214528 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpdxm.dll 2017-03-20 07:10 - 2017-03-18 06:57 - 00249016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmpeffects.dll 2017-03-20 07:10 - 2017-03-18 06:57 - 00153976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmpps.dll 2017-03-20 07:10 - 2017-03-18 06:56 - 09261568 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmploc.DLL 2017-03-20 07:10 - 2017-03-18 06:56 - 00123904 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpshell.dll 2017-03-20 07:10 - 2017-03-18 06:55 - 00566272 _____ (Microsoft Corporation) C:\WINDOWS\system32\quickassist.exe 2017-03-20 07:10 - 2017-03-18 06:54 - 00231424 _____ (Microsoft Corporation) C:\WINDOWS\system32\unregmp2.exe 2017-03-20 07:10 - 2017-03-18 06:45 - 13381120 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll 2017-03-20 07:10 - 2017-03-18 06:44 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\spwmp.dll 2017-03-20 07:10 - 2017-03-18 06:44 - 00005632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msdxm.ocx 2017-03-20 07:10 - 2017-03-18 06:44 - 00005632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxmasf.dll 2017-03-20 07:10 - 2017-03-18 06:44 - 00002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmerror.dll 2017-03-20 07:10 - 2017-03-18 06:42 - 00172032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmpdxm.dll 2017-03-20 07:10 - 2017-03-18 06:41 - 09261568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmploc.DLL 2017-03-20 07:10 - 2017-03-18 06:41 - 00100352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmpshell.dll 2017-03-20 07:10 - 2017-03-18 06:40 - 00458752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\quickassist.exe 2017-03-20 07:10 - 2017-03-18 06:39 - 00190976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\unregmp2.exe 2017-03-20 07:10 - 2017-03-18 06:37 - 12227072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll 2017-03-20 07:10 - 2017-03-18 05:00 - 00044032 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdxm.tlb 2017-03-20 07:10 - 2017-03-18 05:00 - 00018944 _____ (Microsoft Corporation) C:\WINDOWS\system32\amcompat.tlb 2017-03-20 07:10 - 2017-03-18 04:52 - 00044032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msdxm.tlb 2017-03-20 07:10 - 2017-03-18 04:52 - 00018944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\amcompat.tlb 2017-03-19 13:18 - 2017-03-19 13:18 - 00000000 ____D C:\Users\ludov\Downloads\Sherlock.Holmes.The.Devils.Daughter.CRACKFIX-CPY ==================== Un mois - Modifiés - fichiers et dossiers ======== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2017-04-18 16:05 - 2016-01-24 19:20 - 00000000 ____D C:\Users\ludov\AppData\Local\Google 2017-04-18 16:05 - 2016-01-24 19:20 - 00000000 ____D C:\Program Files (x86)\Google 2017-04-18 15:57 - 2016-11-28 16:22 - 00000000 ____D C:\Program Files (x86)\Mozilla Thunderbird 2017-04-18 15:57 - 2015-12-22 07:53 - 00001278 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Thunderbird.lnk 2017-04-18 15:57 - 2015-12-22 07:53 - 00001266 _____ C:\Users\Public\Desktop\Mozilla Thunderbird.lnk 2017-04-18 15:57 - 2015-12-22 07:52 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2017-04-18 15:57 - 2015-12-22 07:44 - 00000000 ____D C:\Users\ludov\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR 2017-04-18 15:57 - 2015-12-22 07:44 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR 2017-04-18 15:57 - 2015-12-22 07:44 - 00000000 ____D C:\Program Files\WinRAR 2017-04-18 15:56 - 2017-01-10 15:07 - 00000000 ____D C:\Users\ludov\AppData\Roaming\AirDroid 2017-04-18 15:56 - 2016-06-19 02:35 - 00000000 ____D C:\Program Files (x86)\QuickTime 2017-04-18 15:55 - 2015-12-22 07:59 - 00001204 _____ C:\Users\ludov\Desktop\Start Tor Browser.lnk 2017-04-18 15:55 - 2015-12-22 07:56 - 00001106 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk 2017-04-18 15:55 - 2015-12-22 07:56 - 00001106 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk 2017-04-18 15:53 - 2016-06-15 08:22 - 00002640 _____ C:\Users\Public\Desktop\Skype.lnk 2017-04-18 15:53 - 2016-06-15 08:22 - 00000000 ____D C:\ProgramData\Skype 2017-04-18 15:53 - 2015-12-22 07:50 - 00000000 ____D C:\ProgramData\Package Cache 2017-04-18 15:37 - 2017-01-10 15:07 - 00000000 ____D C:\Users\ludov\Documents\AirDroid 2017-04-18 15:37 - 2015-12-22 07:44 - 00000000 __SHD C:\Users\ludov\IntelGraphicsProfiles 2017-04-18 15:36 - 2017-03-18 13:40 - 00786432 _____ C:\WINDOWS\system32\config\BBI 2017-04-18 14:50 - 2015-12-22 17:21 - 00000000 ____D C:\Users\ludov\AppData\Roaming\XnView 2017-04-18 14:49 - 2017-03-18 23:01 - 00000000 ____D C:\WINDOWS\INF 2017-04-18 14:49 - 2016-02-18 22:23 - 00000000 ____D C:\Users\ludov\AppData\Local\CrashDumps 2017-04-18 14:31 - 2016-01-27 15:30 - 00000000 ____D C:\Users\ludov\AppData\Roaming\Disk Cleaner 2017-04-18 14:30 - 2015-12-22 12:25 - 00000000 ____D C:\Users\ludov\AppData\Roaming\Macromedia 2017-04-18 13:05 - 2017-01-12 00:02 - 00000638 _____ C:\WINDOWS\Tasks\TrackerAutoUpdate.job 2017-04-18 13:05 - 2015-12-22 08:00 - 00000390 __RSH C:\ProgramData\ntuser.pol 2017-04-18 13:03 - 2017-02-20 17:04 - 00000828 _____ C:\Users\Public\Desktop\Opera.lnk 2017-04-18 13:03 - 2017-01-10 15:06 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AirDroid 2017-04-18 13:03 - 2016-12-26 17:38 - 00000000 ____D C:\Users\ludov\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\JonDoFox 2017-04-18 13:03 - 2015-12-22 07:59 - 00001036 _____ C:\Users\ludov\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Start Tor Browser.lnk 2017-04-18 13:02 - 2017-01-13 16:55 - 00000000 ____D C:\Users\ludov\AppData\Roaming\foobar2000 2017-04-18 13:02 - 2015-12-21 23:46 - 00000000 ___RD C:\Users\ludov\OneDrive 2017-04-18 12:30 - 2017-02-20 17:04 - 00001162 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera.lnk 2017-04-18 12:30 - 2017-02-20 16:48 - 00000000 ____D C:\Program Files\Opera 2017-04-18 12:11 - 2015-12-30 21:02 - 00000000 ____D C:\Program Files (x86)\Creative 2017-04-18 12:04 - 2016-07-07 17:09 - 00000000 ____D C:\Program Files\Hounds 2017-04-18 11:01 - 2017-03-18 23:03 - 00000000 ___HD C:\Program Files\WindowsApps 2017-04-18 11:01 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\AppReadiness 2017-04-17 20:04 - 2016-07-21 13:28 - 00000000 ____D C:\Users\ludov\AppData\Roaming\Origin 2017-04-17 20:04 - 2016-07-21 00:28 - 00000000 ____D C:\ProgramData\Origin 2017-04-16 10:49 - 2017-02-08 21:11 - 00000000 ____D C:\Games 2017-04-16 10:49 - 2016-05-06 17:02 - 00001063 _____ C:\Users\Public\Desktop\PDF-Viewer.lnk 2017-04-16 10:49 - 2016-05-06 17:02 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDF-XChange PDF Viewer 2017-04-16 10:48 - 2016-05-06 17:02 - 00000000 ____D C:\Program Files\Tracker Software 2017-04-16 09:36 - 2016-07-15 20:58 - 00000000 ___HD C:\WINDOWS\msdownld.tmp 2017-04-15 15:42 - 2016-11-20 10:54 - 00000000 ____D C:\Users\ludov\AppData\LocalLow\Mozilla 2017-04-15 04:40 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\appcompat 2017-04-14 17:04 - 2017-03-18 22:51 - 00000000 ____D C:\WINDOWS\CbsTemp 2017-04-14 15:19 - 2015-12-21 23:43 - 00000000 ____D C:\Users\ludov\AppData\Local\Packages 2017-04-14 15:15 - 2017-03-18 23:03 - 00028672 _____ C:\WINDOWS\system32\config\BCD-Template 2017-04-14 15:10 - 2017-03-18 23:06 - 00000000 ____D C:\WINDOWS\Setup 2017-04-14 15:05 - 2017-03-18 23:03 - 00000000 ___SD C:\WINDOWS\SysWOW64\F12 2017-04-14 15:05 - 2017-03-18 23:03 - 00000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs 2017-04-14 15:05 - 2017-03-18 23:03 - 00000000 ___SD C:\WINDOWS\system32\F12 2017-04-14 15:05 - 2017-03-18 23:03 - 00000000 ___SD C:\WINDOWS\system32\dsc 2017-04-14 15:05 - 2017-03-18 23:03 - 00000000 ___SD C:\WINDOWS\system32\DiagSvcs 2017-04-14 15:05 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\system32\SystemResetPlatform 2017-04-14 15:05 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\system32\migwiz 2017-04-14 15:05 - 2017-03-18 23:03 - 00000000 ____D C:\Program Files\Windows Photo Viewer 2017-04-14 15:05 - 2017-03-18 23:03 - 00000000 ____D C:\Program Files\Windows Defender 2017-04-14 15:05 - 2017-03-18 23:03 - 00000000 ____D C:\Program Files (x86)\Windows Photo Viewer 2017-04-14 15:05 - 2017-03-18 23:03 - 00000000 ____D C:\Program Files (x86)\Windows Defender 2017-04-14 15:05 - 2017-03-18 13:40 - 00000000 ____D C:\WINDOWS\servicing 2017-04-14 15:05 - 2015-12-21 23:46 - 00002407 _____ C:\Users\ludov\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2017-04-14 15:02 - 2016-09-26 11:11 - 00000000 ____D C:\Users\ludov\AppData\Local\ConnectedDevicesPlatform 2017-04-14 15:02 - 2015-12-30 20:15 - 00000000 ____D C:\Users\ludov\AppData\Local\MicrosoftEdge 2017-04-14 15:01 - 2017-03-18 23:03 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel 2017-04-14 15:01 - 2015-12-21 23:43 - 00000000 __RHD C:\Users\Public\AccountPictures 2017-04-14 14:57 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\SysWOW64\MUI 2017-04-14 14:57 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\system32\MUI 2017-04-14 14:43 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\rescache 2017-04-14 14:41 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\Registration 2017-04-14 14:41 - 2017-03-18 23:03 - 00000000 ____D C:\Program Files\Windows NT 2017-04-14 14:40 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\system32\WinBioDatabase 2017-04-14 14:40 - 2017-03-18 13:40 - 00032768 _____ C:\WINDOWS\system32\config\ELAM 2017-04-14 14:38 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\Tasks_Migrated 2017-04-14 14:34 - 2016-01-12 19:10 - 00023208 _____ C:\WINDOWS\system32\emptyregdb.dat 2017-04-14 14:33 - 2017-03-18 23:03 - 00000000 __RHD C:\Users\Public\Libraries 2017-04-14 14:28 - 2017-02-18 18:08 - 00000000 ____D C:\Users\ludov\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ultracopier 2017-04-14 14:28 - 2017-02-09 17:25 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dying Light 2017-04-14 14:28 - 2017-02-01 13:18 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth 2017-04-14 14:28 - 2017-01-06 15:50 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Video to Video 2017-04-14 14:28 - 2016-12-28 16:07 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive 2017-04-14 14:28 - 2016-12-26 17:31 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\JonDo 2017-04-14 14:28 - 2016-11-22 11:08 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Freeplane 2017-04-14 14:28 - 2016-11-21 13:05 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\XnView 2017-04-14 14:28 - 2016-11-16 16:02 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Gephi 2017-04-14 14:28 - 2016-09-22 10:02 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation 2017-04-14 14:28 - 2016-09-07 08:15 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PCSX2 2017-04-14 14:28 - 2016-07-21 14:47 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Xbox 360 Accessories 2017-04-14 14:28 - 2016-07-18 15:38 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logitech 2017-04-14 14:28 - 2016-07-08 12:34 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\League of Legends 2017-04-14 14:28 - 2016-06-19 02:31 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PostgreSQL 9.2 2017-04-14 14:28 - 2016-06-19 01:27 - 00000000 ____D C:\WINDOWS\fr 2017-04-14 14:28 - 2016-02-16 15:30 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Inkscape 0.91 2017-04-14 14:28 - 2015-12-30 21:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Creative 2017-04-14 14:28 - 2015-12-22 17:16 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EPSON Software 2017-04-14 14:28 - 2015-12-22 12:45 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Roadkil.Net 2017-04-14 14:28 - 2015-12-22 08:02 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java 2017-04-14 14:28 - 2015-12-22 07:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Disk Cleaner 2017-04-14 14:28 - 2015-12-22 07:55 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Shareaza 2017-04-14 14:28 - 2015-12-22 07:54 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN 2017-04-14 14:28 - 2015-12-22 07:50 - 00000000 ____D C:\Users\ludov\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\InfraRecorder 2017-04-14 14:28 - 2015-12-22 07:49 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FirstClass 2017-04-14 14:28 - 2015-12-22 07:47 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LAV Filters 2017-04-14 14:28 - 2015-12-22 07:46 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\UltraISO 2017-04-14 14:27 - 2017-03-18 23:03 - 00000000 ____D C:\ProgramData\USOPrivate 2017-04-14 14:27 - 2017-03-18 23:03 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2017-04-14 14:24 - 2017-03-18 23:03 - 00000000 ___SD C:\WINDOWS\Downloaded Program Files 2017-04-14 14:24 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\SysWOW64\Macromed 2017-04-14 14:24 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\SysWOW64\GroupPolicy 2017-04-14 14:24 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\system32\spool 2017-04-14 14:24 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\system32\NDF 2017-04-14 14:24 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\system32\Macromed 2017-04-14 14:24 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\PolicyDefinitions 2017-04-14 14:24 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\LiveKernelReports 2017-04-14 14:24 - 2017-01-06 15:44 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FlashIntegro 2017-04-14 14:24 - 2016-11-15 17:53 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Evernote 2017-04-14 14:24 - 2016-07-21 13:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EA 2017-04-14 14:24 - 2016-07-15 15:42 - 00000000 __SHD C:\WINDOWS\SysWOW64\AI_RecycleBin 2017-04-14 14:24 - 2016-04-24 15:05 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MSI 2017-04-14 14:24 - 2016-03-13 13:30 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Vulkan 1.0.3.0 2017-04-14 14:24 - 2015-12-22 17:14 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EPSON 2017-04-14 14:23 - 2017-03-18 23:03 - 00000000 ____D C:\Program Files\Common Files\microsoft shared 2017-04-14 14:23 - 2015-07-10 13:04 - 00000000 ___HD C:\WINDOWS\system32\GroupPolicy 2017-04-14 14:20 - 2017-03-18 13:40 - 00000000 ____D C:\WINDOWS\system32\Sysprep 2017-04-14 14:19 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\Help 2017-04-13 17:50 - 2016-08-10 12:39 - 00000000 ____D C:\Users\ludov\Desktop\Jeux 2017-04-13 17:30 - 2016-08-27 02:03 - 00000000 ____D C:\GOG Games 2017-04-12 18:37 - 2015-12-22 02:59 - 00000000 ____D C:\WINDOWS\system32\MRT 2017-04-12 18:35 - 2015-12-22 02:59 - 148601744 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2017-04-09 10:21 - 2015-12-22 07:43 - 00000000 ____D C:\Users\ludov\Documents\Cours ENFA 2017-04-08 17:12 - 2015-12-22 03:00 - 00532136 _____ (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe 2017-04-07 17:53 - 2016-01-10 13:05 - 00087552 _____ C:\Users\ludov\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini 2017-04-07 15:06 - 2016-03-13 13:30 - 00000000 ____D C:\Program Files (x86)\VulkanRT 2017-04-04 18:08 - 2016-08-27 14:42 - 00000000 ____D C:\Users\ludov\Documents\My Games 2017-04-04 16:51 - 2016-07-12 11:01 - 00000000 ____D C:\Users\ludov\AppData\Local\ElevatedDiagnostics 2017-04-04 15:13 - 2016-11-24 14:51 - 00000000 ____D C:\Users\ludov\Downloads\Films 2017-04-03 18:56 - 2017-03-18 23:06 - 00835576 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe 2017-04-03 18:56 - 2017-03-18 23:06 - 00177656 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl 2017-04-01 23:28 - 2015-12-22 07:56 - 00000000 ____D C:\Users\ludov\AppData\Roaming\vlc 2017-04-01 19:27 - 2016-12-14 23:57 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox 2017-04-01 05:27 - 2016-12-26 13:58 - 00001951 _____ C:\WINDOWS\NvTelemetryContainerRecovery.bat 2017-03-20 07:12 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\SystemResources 2017-03-20 07:12 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\SystemApps 2017-03-20 07:12 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\security 2017-03-20 07:12 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\schemas 2017-03-20 07:12 - 2017-03-18 22:59 - 20414976 _____ (Microsoft Corporation) C:\WINDOWS\system32\Hydrogen.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 17048064 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramCompositor.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 07138816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Havok.Physics.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 03162112 _____ (Microsoft Corporation) C:\WINDOWS\system32\SnippingTool.exe 2017-03-20 07:12 - 2017-03-18 22:59 - 02376096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.AppAgent.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 02228128 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntSubsystems64.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 02194944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.ModernAppAgent.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 01955328 _____ (Microsoft Corporation) C:\WINDOWS\system32\PeerDistSvc.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 01886208 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 01839520 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntVirtualization.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 01693600 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVIntegration.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 01624480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Microsoft.Uev.AppAgent.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 01516448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppVEntSubsystems32.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 01452960 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntSubsystemController.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 01317888 _____ (Microsoft Corporation) C:\WINDOWS\system32\srmclient.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 01311744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SensorsCpl.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 01311744 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsCpl.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 01200640 _____ (Microsoft Corporation) C:\WINDOWS\system32\AgentService.exe 2017-03-20 07:12 - 2017-03-18 22:59 - 01197056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.CommonBridge.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 01161216 ____R (Microsoft Corporation) C:\WINDOWS\system32\Windows.Mirage.Internal.Capture.UX.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 01141760 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplySettingsTemplateCatalog.exe 2017-03-20 07:12 - 2017-03-18 22:59 - 01100704 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVPolicy.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00992672 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVManifest.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00960000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.MixedRealityCapture.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00947712 _____ (Microsoft Corporation) C:\WINDOWS\system32\HoloSI.PCShell.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00912896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srmclient.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00867328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Sensors.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00846752 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVClient.exe 2017-03-20 07:12 - 2017-03-18 22:59 - 00844704 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntStreamingManager.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00844192 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVOrchestration.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00804864 _____ (Microsoft Corporation) C:\WINDOWS\system32\fvewiz.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00800256 _____ (Microsoft Corporation) C:\WINDOWS\system32\pmcsnap.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00800256 _____ (Microsoft Corporation) C:\WINDOWS\system32\mblctr.exe 2017-03-20 07:12 - 2017-03-18 22:59 - 00793600 _____ (Microsoft Corporation) C:\WINDOWS\system32\pwcreator.exe 2017-03-20 07:12 - 2017-03-18 22:59 - 00785920 _____ (Microsoft Corporation) C:\WINDOWS\system32\cscui.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00774560 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVReporting.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00751616 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.PrinterCustomActions.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00728064 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.Office2013CustomActions.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00725504 _____ (Microsoft Corporation) C:\WINDOWS\system32\cscsvc.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00718848 _____ (Microsoft Corporation) C:\WINDOWS\system32\PeerDistCacheProvider.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00699296 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVCatalog.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00672672 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVPublishing.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00664576 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpprefcl.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00662016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdvgogl32.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00648192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Sensors.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00637440 _____ (Microsoft Corporation) C:\WINDOWS\system32\srmscan.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00572928 _____ (Microsoft Corporation) C:\WINDOWS\system32\msTextPrediction.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00559104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\csc.sys 2017-03-20 07:12 - 2017-03-18 22:59 - 00556032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gpprefcl.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00548864 _____ (Microsoft Corporation) C:\WINDOWS\system32\AdmTmpl.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00546304 _____ (Microsoft Corporation) C:\WINDOWS\system32\scrptadm.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00529920 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_HoloLens_Environment.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00528896 ____R (Microsoft Corporation) C:\WINDOWS\system32\MixedRealityCapture.Pipeline.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00506784 _____ (Microsoft Corporation) C:\WINDOWS\system32\TransportDSA.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00498688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Microsoft.Uev.Office2013CustomActions.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00473088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scrptadm.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00457216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srmscan.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00448000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AdmTmpl.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00448000 _____ (Microsoft Corporation) C:\WINDOWS\system32\appmgr.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00416256 _____ (Microsoft Corporation) C:\WINDOWS\system32\PeerDistSh.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00416256 _____ (Microsoft Corporation) C:\WINDOWS\system32\HolographicExtensions.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00413184 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpshell.exe 2017-03-20 07:12 - 2017-03-18 22:59 - 00411648 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsApi.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00409600 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppIdPolicyEngineApi.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00407552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.CscUnpinTool.exe 2017-03-20 07:12 - 2017-03-18 22:59 - 00399264 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVScripting.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00391168 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpclip.exe 2017-03-20 07:12 - 2017-03-18 22:59 - 00364032 _____ (Microsoft Corporation) C:\WINDOWS\system32\bdechangepin.exe 2017-03-20 07:12 - 2017-03-18 22:59 - 00363520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\appmgr.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00345600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PeerDistSh.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00329728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Feedback.Analog.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00329216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SensorsApi.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00325120 _____ (Microsoft Corporation) C:\WINDOWS\system32\fvecpl.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00316416 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpinit.exe 2017-03-20 07:12 - 2017-03-18 22:59 - 00312832 _____ (Microsoft Corporation) C:\WINDOWS\system32\SrpUxNativeSnapIn.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00304640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SrpUxNativeSnapIn.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00299624 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpendp.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00290816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.ConfigWrapper.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00289280 _____ (Microsoft Corporation) C:\WINDOWS\system32\cscobj.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00287744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.ManagedEventLogging.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00283136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppIdPolicyEngineApi.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00282112 _____ (Microsoft Corporation) C:\WINDOWS\system32\ddputils.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00281088 _____ (Microsoft Corporation) C:\WINDOWS\system32\HolographicRuntimes.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00280064 _____ (Microsoft Corporation) C:\WINDOWS\system32\srm.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00279040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srm.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00275456 _____ (Microsoft Corporation) C:\WINDOWS\system32\srmstormod.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00274944 _____ (Microsoft Corporation) C:\WINDOWS\system32\umrdp.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00273408 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreShellAPI.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00269640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpendp.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00267264 _____ (Microsoft Corporation) C:\WINDOWS\system32\HoloShellRuntime.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00264608 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVFileSystemMetadata.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00261632 _____ (Microsoft Corporation) C:\WINDOWS\system32\ppcsnap.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00260096 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpatialStore.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00248832 _____ (Microsoft Corporation) C:\WINDOWS\system32\svf.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00242688 _____ (Microsoft Corporation) C:\WINDOWS\system32\HoloSHExtensions.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00235424 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVShNotify.exe 2017-03-20 07:12 - 2017-03-18 22:59 - 00232352 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVStreamMap.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00230816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mssecflt.sys 2017-03-20 07:12 - 2017-03-18 22:59 - 00229888 _____ (Microsoft Corporation) C:\WINDOWS\system32\ddpchunk.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00224256 _____ (Microsoft Corporation) C:\WINDOWS\system32\appvetwsharedperformance.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00224256 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppvClientEventLog.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00223232 _____ (Microsoft Corporation) C:\WINDOWS\system32\AuditNativeSnapIn.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00222720 _____ (Microsoft Corporation) C:\WINDOWS\system32\PeerDist.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00222208 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationSettings.exe 2017-03-20 07:12 - 2017-03-18 22:59 - 00221184 _____ (Microsoft Corporation) C:\WINDOWS\system32\PeerDistCleaner.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00220672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AuditNativeSnapIn.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00219136 _____ (Microsoft Corporation) C:\WINDOWS\system32\tspubwmi.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00219136 _____ (Microsoft Corporation) C:\WINDOWS\system32\tscfgwmi.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00212992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.CmUtil.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00210432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cscobj.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00207360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\HoloShellRuntime.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00205824 _____ (Microsoft Corporation) C:\WINDOWS\system32\sensrsvc.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00203672 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVStreamingUX.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00201728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreShellAPI.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00196096 _____ (Microsoft Corporation) C:\WINDOWS\system32\appmgmts.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00189440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srmstormod.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00186272 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVDllSurrogate.exe 2017-03-20 07:12 - 2017-03-18 22:59 - 00185344 _____ (Microsoft Corporation) C:\WINDOWS\system32\hwrreg.exe 2017-03-20 07:12 - 2017-03-18 22:59 - 00184224 _____ (Microsoft Corporation) C:\WINDOWS\system32\mavinject.exe 2017-03-20 07:12 - 2017-03-18 22:59 - 00183296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdpdr.sys 2017-03-20 07:12 - 2017-03-18 22:59 - 00182784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdvgocl32.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00182784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PeerDist.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00181760 _____ (Microsoft Corporation) C:\WINDOWS\system32\tssrvlic.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00181760 _____ (Microsoft Corporation) C:\WINDOWS\system32\PeerDistWSDDiscoProv.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00176128 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpinput.exe 2017-03-20 07:12 - 2017-03-18 22:59 - 00173984 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVNice.exe 2017-03-20 07:12 - 2017-03-18 22:59 - 00173568 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetpp.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00170496 _____ (Microsoft Corporation) C:\WINDOWS\system32\srmshell.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00163840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\appmgmts.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00162816 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveprompt.exe 2017-03-20 07:12 - 2017-03-18 22:59 - 00161696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\AppvVemgr.sys 2017-03-20 07:12 - 2017-03-18 22:59 - 00154112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdvgu1132.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00149920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mavinject.exe 2017-03-20 07:12 - 2017-03-18 22:59 - 00147439 _____ C:\WINDOWS\SysWOW64\gpedit.msc 2017-03-20 07:12 - 2017-03-18 22:59 - 00147439 _____ C:\WINDOWS\system32\gpedit.msc 2017-03-20 07:12 - 2017-03-18 22:59 - 00146432 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppManagementConfiguration.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00146389 _____ C:\WINDOWS\system32\printmanagement.msc 2017-03-20 07:12 - 2017-03-18 22:59 - 00145408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.SecureAssessment.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00143776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\AppvVfs.sys 2017-03-20 07:12 - 2017-03-18 22:59 - 00143264 _____ (Microsoft Corporation) C:\WINDOWS\system32\CscMig.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00139264 ____R (Microsoft Corporation) C:\WINDOWS\system32\SecureAssessmentHandlers.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00139264 _____ (Microsoft Corporation) C:\WINDOWS\system32\ddptrace.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00137728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.Analog.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00137112 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipRenew.exe 2017-03-20 07:12 - 2017-03-18 22:59 - 00135168 _____ (Microsoft Corporation) C:\WINDOWS\system32\adrclient.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00133632 _____ (Microsoft Corporation) C:\WINDOWS\system32\appvetwclientres.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00133120 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsClassExtension.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00132608 _____ (Microsoft Corporation) C:\WINDOWS\system32\BdeHdCfg.exe 2017-03-20 07:12 - 2017-03-18 22:59 - 00129024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppManagementConfiguration.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00128200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.Display.BrightnessOverride.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00127904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\AppVStrm.sys 2017-03-20 07:12 - 2017-03-18 22:59 - 00125015 ____R C:\WINDOWS\system32\CaptureCountdown.hcp 2017-03-20 07:12 - 2017-03-18 22:59 - 00124416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srmshell.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00124416 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_AnalogShell.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00121856 _____ (Microsoft Corporation) C:\WINDOWS\system32\DesktopView.Internal.Broker.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00120458 _____ C:\WINDOWS\system32\secpol.msc 2017-03-20 07:12 - 2017-03-18 22:59 - 00119808 _____ (Microsoft Corporation) C:\WINDOWS\system32\IoTAssignedAccessLockFramework.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00119017 ____R C:\WINDOWS\system32\CaptureBrackets.hcp 2017-03-20 07:12 - 2017-03-18 22:59 - 00113152 _____ (Microsoft Corporation) C:\WINDOWS\system32\baaupdate.exe 2017-03-20 07:12 - 2017-03-18 22:59 - 00108032 ____R (Microsoft Corporation) C:\WINDOWS\system32\MixedRealityCapture.Broker.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00106496 _____ C:\WINDOWS\system32\RDVGHelper.exe 2017-03-20 07:12 - 2017-03-18 22:59 - 00102912 _____ (Microsoft Corporation) C:\WINDOWS\system32\BdeHdCfgLib.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00102400 _____ (Microsoft Corporation) C:\WINDOWS\system32\BitLockerWizardElev.exe 2017-03-20 07:12 - 2017-03-18 22:59 - 00102400 _____ (Microsoft Corporation) C:\WINDOWS\system32\BitLockerWizard.exe 2017-03-20 07:12 - 2017-03-18 22:59 - 00099784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.Display.BrightnessOverride.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00099328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\adrclient.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00097792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdvgumd32.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00096256 ____R (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.SecureAssessment.CfgProvider.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00096256 _____ (Microsoft Corporation) C:\WINDOWS\system32\AssignedAccessCsp.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00095744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\auditpolmsg.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00095744 _____ (Microsoft Corporation) C:\WINDOWS\system32\auditpolmsg.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00094624 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00091136 _____ C:\WINDOWS\system32\hvsigpext.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00090112 _____ C:\WINDOWS\system32\hvsievaluator.exe 2017-03-20 07:12 - 2017-03-18 22:59 - 00090112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srmlib.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00090112 _____ (Microsoft Corporation) C:\WINDOWS\system32\srmlib.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00090112 _____ (Microsoft Corporation) C:\WINDOWS\system32\datamarketsvc.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00087552 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseAppVMgmtCSP.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpsign.exe 2017-03-20 07:12 - 2017-03-18 22:59 - 00085504 _____ (Microsoft Corporation) C:\WINDOWS\system32\srmtrace.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00085504 _____ (Microsoft Corporation) C:\WINDOWS\system32\PackageInspector.exe 2017-03-20 07:12 - 2017-03-18 22:59 - 00082944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.SyncController.exe 2017-03-20 07:12 - 2017-03-18 22:59 - 00080384 _____ (Microsoft Corporation) C:\WINDOWS\system32\dggpext.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00077216 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncAppvPublishingServer.exe 2017-03-20 07:12 - 2017-03-18 22:59 - 00076288 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssecuser.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00072704 _____ (Microsoft Corporation) C:\WINDOWS\system32\AuditPolicyGPInterop.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00071680 _____ (Microsoft Corporation) C:\WINDOWS\system32\PrintBrmUi.exe 2017-03-20 07:12 - 2017-03-18 22:59 - 00070656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.Common.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\ddp_ps.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00064512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srmtrace.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00060928 _____ (Microsoft Corporation) C:\WINDOWS\system32\LSCSHostPolicy.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00058880 _____ (Microsoft Corporation) C:\WINDOWS\system32\ShellCompositor.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.ModernAppCore.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00056832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AuditPolicyGPInterop.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00055808 _____ (Microsoft Corporation) C:\WINDOWS\system32\UevAppMonitor.exe 2017-03-20 07:12 - 2017-03-18 22:59 - 00055296 _____ (Microsoft Corporation) C:\WINDOWS\system32\PeerDistHttpTrans.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00054272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.CabUtil.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00052736 _____ (Microsoft Corporation) C:\WINDOWS\system32\windowsdefenderapplicationguardcsp.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00052224 ____R (Microsoft Corporation) C:\WINDOWS\system32\Windows.Mirage.Internal.Capture.Pipeline.ProxyStub.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00051200 _____ (Microsoft Corporation) C:\WINDOWS\system32\DFDWiz.exe 2017-03-20 07:12 - 2017-03-18 22:59 - 00050176 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpscript.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00049152 _____ (Microsoft Corporation) C:\WINDOWS\system32\RotMgr.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00048128 _____ (Microsoft Corporation) C:\WINDOWS\system32\hwrcomp.exe 2017-03-20 07:12 - 2017-03-18 22:59 - 00047104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.EventLogMessages.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.Office2010CustomActions.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\dfdts.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00044032 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpscript.exe 2017-03-20 07:12 - 2017-03-18 22:59 - 00043566 _____ C:\WINDOWS\SysWOW64\rsop.msc 2017-03-20 07:12 - 2017-03-18 22:59 - 00043566 _____ C:\WINDOWS\system32\rsop.msc 2017-03-20 07:12 - 2017-03-18 22:59 - 00042496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.Analog.ProxyStub.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00042400 _____ (Microsoft Corporation) C:\WINDOWS\system32\EmbeddedAppLauncherConfig.exe 2017-03-20 07:12 - 2017-03-18 22:59 - 00041472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gpscript.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00041472 _____ (Microsoft Corporation) C:\WINDOWS\system32\PeerDistAD.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00041376 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVClientPS.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\UevAgentPolicyGenerator.exe 2017-03-20 07:12 - 2017-03-18 22:59 - 00040864 _____ (Microsoft Corporation) C:\WINDOWS\system32\EmbeddedAppLauncherConfig.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00040352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\SpatialGraphFilter.sys 2017-03-20 07:12 - 2017-03-18 22:59 - 00040344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\UevAgentDriver.sys 2017-03-20 07:12 - 2017-03-18 22:59 - 00039936 _____ (Microsoft Corporation) C:\WINDOWS\system32\CIWmi.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00037888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gpscript.exe 2017-03-20 07:12 - 2017-03-18 22:59 - 00037376 _____ (Microsoft Corporation) C:\WINDOWS\system32\rfxvmt.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00036864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Microsoft.Uev.Office2010CustomActions.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00035840 ____R (Microsoft Corporation) C:\WINDOWS\system32\MixedRealityCapture.exe 2017-03-20 07:12 - 2017-03-18 22:59 - 00033792 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetppui.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00032256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rfxvmt.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00031744 _____ (Microsoft Corporation) C:\WINDOWS\system32\srm_ps.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00030720 _____ C:\WINDOWS\system32\LockdownUtil.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00030624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdpvideominiport.sys 2017-03-20 07:12 - 2017-03-18 22:59 - 00028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\qwinsta.exe 2017-03-20 07:12 - 2017-03-18 22:59 - 00027648 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorPerformanceEvents.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00027648 _____ (Microsoft Corporation) C:\WINDOWS\system32\qprocess.exe 2017-03-20 07:12 - 2017-03-18 22:59 - 00027040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppVClientPS.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00026624 _____ (Microsoft Corporation) C:\WINDOWS\system32\lstelemetry.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\msg.exe 2017-03-20 07:12 - 2017-03-18 22:59 - 00025600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Win32_DeviceGuard.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00025088 _____ (Microsoft Corporation) C:\WINDOWS\system32\quser.exe 2017-03-20 07:12 - 2017-03-18 22:59 - 00024992 _____ (Microsoft Corporation) C:\WINDOWS\system32\embeddedapplauncher.exe 2017-03-20 07:12 - 2017-03-18 22:59 - 00024576 _____ (Microsoft Corporation) C:\WINDOWS\system32\qappsrv.exe 2017-03-20 07:12 - 2017-03-18 22:59 - 00024576 _____ (Microsoft Corporation) C:\WINDOWS\system32\chgport.exe 2017-03-20 07:12 - 2017-03-18 22:59 - 00024064 _____ (Microsoft Corporation) C:\WINDOWS\system32\tskill.exe 2017-03-20 07:12 - 2017-03-18 22:59 - 00023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsdiscon.exe 2017-03-20 07:12 - 2017-03-18 22:59 - 00023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\tscon.exe 2017-03-20 07:12 - 2017-03-18 22:59 - 00023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.Management.WmiAccess.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00023040 _____ (Microsoft Corporation) C:\WINDOWS\system32\rwinsta.exe 2017-03-20 07:12 - 2017-03-18 22:59 - 00023040 _____ (Microsoft Corporation) C:\WINDOWS\system32\logoff.exe 2017-03-20 07:12 - 2017-03-18 22:59 - 00023040 _____ (Microsoft Corporation) C:\WINDOWS\system32\chglogon.exe 2017-03-20 07:12 - 2017-03-18 22:59 - 00022528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Feedback.Analog.ProxyStub.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00022528 _____ (Microsoft Corporation) C:\WINDOWS\system32\chgusr.exe 2017-03-20 07:12 - 2017-03-18 22:59 - 00022016 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnpinst.exe 2017-03-20 07:12 - 2017-03-18 22:59 - 00022016 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorCustomAdbAlgorithm.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00021920 _____ (Microsoft Corporation) C:\WINDOWS\system32\ScriptRunner.exe 2017-03-20 07:12 - 2017-03-18 22:59 - 00021504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.Management.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00020992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.ModernAppData.WinRT.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00019872 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVTerminator.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00019456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.SyncCommon.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00018432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.Common.WinRT.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00018432 _____ (Microsoft Corporation) C:\WINDOWS\system32\DesktopView.Internal.Broker.ProxyStub.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00018336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppVTerminator.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00017920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.LocalSyncProvider.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00017806 ____R C:\WINDOWS\system32\CaptureToast.hcp 2017-03-20 07:12 - 2017-03-18 22:59 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\reset.exe 2017-03-20 07:12 - 2017-03-18 22:59 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\change.exe 2017-03-20 07:12 - 2017-03-18 22:59 - 00016896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srm_ps.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00016896 _____ (Microsoft Corporation) C:\WINDOWS\system32\query.exe 2017-03-20 07:12 - 2017-03-18 22:59 - 00015264 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVSentinel.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00014336 _____ C:\WINDOWS\system32\HolographicShareInterop.ProxyStub.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.ModernSync.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00013824 _____ (Microsoft Corporation) C:\WINDOWS\system32\UevTemplateBaselineGenerator.exe 2017-03-20 07:12 - 2017-03-18 22:59 - 00013824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.AgentDriverEvents.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00013824 _____ (Microsoft Corporation) C:\WINDOWS\system32\appvetwstreamingux.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00013728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppVSentinel.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00011776 _____ (Microsoft Corporation) C:\WINDOWS\system32\UevTemplateConfigItemGenerator.exe 2017-03-20 07:12 - 2017-03-18 22:59 - 00011776 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSErrRedir.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00011776 _____ (Microsoft Corporation) C:\WINDOWS\system32\BdeSysprep.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00011264 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.SmbSyncProvider.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00008192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.MonitorSyncProvider.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00007680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.SyncConditions.dll 2017-03-20 07:12 - 2017-03-18 22:59 - 00006144 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.SecureAssessment.Diagnostics.dll 2017-03-20 07:12 - 2017-03-18 22:56 - 00125952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tsusbhub.sys 2017-03-20 07:12 - 2017-03-18 22:56 - 00037280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\terminpt.sys 2017-03-20 07:12 - 2017-03-18 22:56 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdpbus.sys 2017-03-20 07:11 - 2017-03-18 22:59 - 06238208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NlsLexicons000c.dll 2017-03-20 07:11 - 2017-03-18 22:59 - 06238208 _____ (Microsoft Corporation) C:\WINDOWS\system32\NlsLexicons000c.dll 2017-03-20 07:11 - 2017-03-18 22:59 - 02352128 _____ (Microsoft Corporation) C:\WINDOWS\system32\NlsData000c.dll 2017-03-20 07:11 - 2017-03-18 22:59 - 02264064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NlsData000c.dll 2017-03-20 07:10 - 2017-03-18 23:03 - 00000000 ___RD C:\WINDOWS\PrintDialog 2017-03-20 07:10 - 2017-03-18 23:03 - 00000000 ___RD C:\WINDOWS\MiracastView 2017-03-20 07:10 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\SysWOW64\setup 2017-03-20 07:10 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\SysWOW64\oobe 2017-03-20 07:10 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\SysWOW64\lv-LV 2017-03-20 07:10 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\SysWOW64\lt-LT 2017-03-20 07:10 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\SysWOW64\et-EE 2017-03-20 07:10 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\SysWOW64\es-MX 2017-03-20 07:10 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\SysWOW64\en-GB 2017-03-20 07:10 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\SysWOW64\Dism 2017-03-20 07:10 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\SysWOW64\Com 2017-03-20 07:10 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns 2017-03-20 07:10 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\system32\setup 2017-03-20 07:10 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\system32\oobe 2017-03-20 07:10 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\system32\lv-LV 2017-03-20 07:10 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\system32\lt-LT 2017-03-20 07:10 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\system32\et-EE 2017-03-20 07:10 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\system32\es-MX 2017-03-20 07:10 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\system32\en-GB 2017-03-20 07:10 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\system32\Com 2017-03-20 07:10 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\IME 2017-03-20 07:10 - 2017-03-18 23:03 - 00000000 ____D C:\Program Files\Common Files\System 2017-03-20 07:10 - 2017-03-18 13:40 - 00000000 ____D C:\WINDOWS\system32\Dism ==================== Fichiers à la racine de certains dossiers ======= 2016-07-15 21:16 - 2016-07-15 21:16 - 0000643 _____ () C:\Program Files (x86)\Blacklight Retribution_frUpdaterLog.txt 2016-01-10 13:05 - 2017-04-07 17:53 - 0087552 _____ () C:\Users\ludov\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini 2016-11-23 11:48 - 2016-11-23 11:48 - 0000993 _____ () C:\Users\ludov\AppData\Local\recently-used.xbel 2017-04-18 15:38 - 2017-04-18 15:39 - 0000132 _____ () C:\ProgramData\log.binb 2017-04-18 12:04 - 2017-04-18 15:38 - 0000128 _____ () C:\ProgramData\log.ewbb 2017-04-18 12:04 - 2017-04-18 15:38 - 0005459 _____ () C:\ProgramData\log.ewbt 2016-12-26 13:59 - 2017-01-28 11:41 - 0010108 _____ () C:\ProgramData\NvTelemetryContainer.log 2016-12-26 13:59 - 2017-01-23 01:02 - 0015939 _____ () C:\ProgramData\NvTelemetryContainer.log_backup1 Fichiers à déplacer ou supprimer: ==================== C:\Users\ludov\installshield_scm.reg C:\Users\ludov\scm.reg Certains fichiers dans TEMP: ==================== 2017-04-18 12:04 - 2017-04-18 12:05 - 29130696 _____ (AppTrailers) C:\Users\ludov\AppData\Local\Temp\AppTrailers.9.1.10amt.exe 2017-04-17 12:40 - 2017-04-17 12:40 - 3189080 _____ (Lead IT) C:\Users\ludov\AppData\Local\Temp\EBw2bxgv-prog.exe 2017-04-17 12:40 - 2017-04-17 12:40 - 0140872 _____ () C:\Users\ludov\AppData\Local\Temp\EBw2bxgv-upd.exe 2017-04-17 12:40 - 2017-04-17 12:40 - 3001176 _____ (IT Genius) C:\Users\ludov\AppData\Local\Temp\feCP1jH4-prog.exe 2017-04-18 15:34 - 2017-04-18 15:34 - 3957784 _____ (Geek Unіnstaller) C:\Users\ludov\AppData\Local\Temp\geek64.exe 2017-04-18 15:32 - 2017-04-18 15:32 - 0729363 _____ ( ) C:\Users\ludov\AppData\Local\Temp\global_installer.exe 2017-04-18 12:06 - 2017-04-18 12:06 - 0788464 _____ () C:\Users\ludov\AppData\Local\Temp\mesafe.exe 2017-04-18 15:33 - 2017-04-18 15:33 - 0453091 _____ (WeMonetize ) C:\Users\ludov\AppData\Local\Temp\PQ4345W.exe 2017-04-18 12:04 - 2017-04-18 12:04 - 0498510 _____ ( ) C:\Users\ludov\AppData\Local\Temp\Setup.exe 2017-04-18 12:04 - 2017-04-18 12:04 - 0381908 _____ ( ) C:\Users\ludov\AppData\Local\Temp\speedownloader.exe 2017-04-18 12:04 - 2017-04-18 12:04 - 0524972 _____ (WeMonetize ) C:\Users\ludov\AppData\Local\Temp\U0Y8HUT.exe 2017-04-18 12:04 - 2017-04-18 12:04 - 1199825 _____ () C:\Users\ludov\AppData\Local\Temp\unins000.exe 2017-04-18 12:04 - 2017-04-18 12:04 - 1249917 _____ (VideoBox ) C:\Users\ludov\AppData\Local\Temp\vbsetup.exe 2017-04-18 12:06 - 2017-04-18 12:06 - 2843062 _____ () C:\Users\ludov\AppData\Local\Temp\vk_ok_adblock.exe 2017-04-18 12:05 - 2017-04-18 12:06 - 10181463 _____ () C:\Users\ludov\AppData\Local\Temp\wajam_install.exe ==================== Bamital & volsnap ====================== (Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.) C:\WINDOWS\system32\winlogon.exe => Le fichier est signé numériquement C:\WINDOWS\system32\wininit.exe => Le fichier est signé numériquement C:\WINDOWS\explorer.exe => Le fichier est signé numériquement C:\WINDOWS\SysWOW64\explorer.exe => Le fichier est signé numériquement C:\WINDOWS\system32\svchost.exe => Le fichier est signé numériquement C:\WINDOWS\SysWOW64\svchost.exe => Le fichier est signé numériquement C:\WINDOWS\system32\services.exe => Le fichier est signé numériquement C:\WINDOWS\system32\User32.dll => Le fichier est signé numériquement C:\WINDOWS\SysWOW64\User32.dll => Le fichier est signé numériquement C:\WINDOWS\system32\userinit.exe => Le fichier est signé numériquement C:\WINDOWS\SysWOW64\userinit.exe => Le fichier est signé numériquement C:\WINDOWS\system32\rpcss.dll => Le fichier est signé numériquement C:\WINDOWS\system32\dnsapi.dll => Le fichier est signé numériquement C:\WINDOWS\SysWOW64\dnsapi.dll => Le fichier est signé numériquement C:\WINDOWS\system32\Drivers\volsnap.sys => Le fichier est signé numériquement LastRegBack: 2017-04-14 14:16 ==================== Fin de FRST.txt ============================