Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 24-05-2017 Exécuté par Les Nols (administrateur) sur LESNOLS (26-05-2017 21:14:53) Exécuté depuis C:\Users\Neo\Downloads Profils chargés: Les Nols (Profils disponibles: Les Nols) Platform: Windows 8.1 (Update) (X64) Langue: Français (France) Internet Explorer Version 11 (Navigateur par défaut: FF) Mode d'amorçage: Normal Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processus (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.) (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe (Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe (Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe (Razer Inc.) C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKServer.exe (Razer Inc.) C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKService.exe () C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe (Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe (AVAST Software s.r.o.) C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe (Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe (Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe (Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe (Skype Technologies) C:\Program Files (x86)\Skype\Browser\SkypeBrowserHost.exe (Skype Technologies) C:\Program Files (x86)\Skype\Browser\SkypeBrowserHost.exe (Farbar) C:\Users\Neo\Downloads\FRST64(1).exe ==================== Registre (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.) HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [508128 2016-07-01] (Adobe Systems Incorporated) HKLM\...\Run: [ShadowPlay] => "C:\Windows\system32\rundll32.exe" C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart HKLM\...\Run: [Malwarebytes TrayApp] => C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\mbamtray.exe [3146704 2017-05-09] (Malwarebytes) HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [213824 2017-05-24] (AVAST Software) HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2404952 2017-03-27] (Adobe Systems Incorporated) HKLM-x32\...\Run: [] => [X] HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2017-03-15] (Oracle Corporation) HKLM-x32\...\Run: [Lightshot] => C:\Program Files (x86)\Skillbrains\lightshot\Lightshot.exe [225944 2017-04-11] () HKU\S-1-5-21-2688126532-4070146665-1156163858-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [27716568 2017-05-04] (Skype Technologies S.A.) HKU\S-1-5-21-2688126532-4070146665-1156163858-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [9773272 2017-05-19] (Piriform Ltd) HKU\S-1-5-21-2688126532-4070146665-1156163858-1001\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1 HKU\S-1-5-21-2688126532-4070146665-1156163858-1001\...\MountPoints2: {d20f8930-ec8e-11e6-824e-806e6f6e6963} - "E:\Overwatch Setup.exe" ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-10-25] () ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-10-25] () ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-10-25] () ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-05-24] (AVAST Software) ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-05-24] (AVAST Software) GroupPolicy: Restriction <======= ATTENTION GroupPolicy\User: Restriction <======= ATTENTION ==================== Internet (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.) Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{1A1D6E2C-7A7C-4428-897F-88654FFAE293}: [DhcpNameServer] 192.168.1.1 Internet Explorer: ================== HKU\S-1-5-21-2688126532-4070146665-1156163858-1001\Software\Microsoft\Internet Explorer\Main,Start Page = BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2017-05-24] (AVAST Software) BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_131\bin\ssv.dll [2017-05-01] (Oracle Corporation) BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2017-05-24] (AVAST Software) BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_131\bin\jp2ssv.dll [2017-05-01] (Oracle Corporation) FireFox: ======== FF DefaultProfile: 49o452rx.default FF ProfilePath: C:\Users\Neo\AppData\Roaming\Mozilla\Firefox\Profiles\49o452rx.default [2017-05-26] FF user.js: detected! => C:\Users\Neo\AppData\Roaming\Mozilla\Firefox\Profiles\49o452rx.default\user.js [2017-05-08] FF NewTab: Mozilla\Firefox\Profiles\49o452rx.default -> about:newtab FF DefaultSearchEngine: Mozilla\Firefox\Profiles\49o452rx.default -> Google FF DefaultSearchUrl: Mozilla\Firefox\Profiles\49o452rx.default -> hxxps://www.google.com/search?bcutc=sp-004-752 FF SearchEngineOrder.1: Mozilla\Firefox\Profiles\49o452rx.default -> Google FF SelectedSearchEngine: Mozilla\Firefox\Profiles\49o452rx.default -> Google FF Homepage: Mozilla\Firefox\Profiles\49o452rx.default -> about:home FF Keyword.URL: Mozilla\Firefox\Profiles\49o452rx.default -> hxxps://www.google.com/search?bcutc=sp-004-752 FF Extension: (MEGA) - C:\Users\Neo\AppData\Roaming\Mozilla\Firefox\Profiles\49o452rx.default\Extensions\firefox@mega.co.nz.xpi [2017-05-25] FF Extension: (Video Blocker) - C:\Users\Neo\AppData\Roaming\Mozilla\Firefox\Profiles\49o452rx.default\Extensions\jid1-3OQ5HY7YsLBV7Q@jetpack.xpi [2017-05-01] FF Extension: (Avast SafePrice) - C:\Users\Neo\AppData\Roaming\Mozilla\Firefox\Profiles\49o452rx.default\Extensions\sp@avast.com.xpi [2017-05-24] FF Extension: (Avast Online Security) - C:\Users\Neo\AppData\Roaming\Mozilla\Firefox\Profiles\49o452rx.default\Extensions\wrc@avast.com.xpi [2017-05-24] FF Extension: (Adblock Plus) - C:\Users\Neo\AppData\Roaming\Mozilla\Firefox\Profiles\49o452rx.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2017-05-25] FF Extension: (Simple YouTube MP3 Button) - C:\Users\Neo\AppData\Roaming\Mozilla\Firefox\Profiles\49o452rx.default\Extensions\{e33788ea-0bb9-4502-9c77-bdc551afc8ab}.xpi [2017-05-19] FF SearchPlugin: C:\Users\Neo\AppData\Roaming\Mozilla\Firefox\Profiles\49o452rx.default\searchplugins\google-avast.xml [2017-04-30] FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_25_0_0_171.dll [2017-05-10] () FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2017-03-27] (Adobe Systems) FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_25_0_0_171.dll [2017-05-10] () FF Plugin-x32: @java.com/DTPlugin,version=11.131.2 -> C:\Program Files (x86)\Java\jre1.8.0_131\bin\dtplugin\npDeployJava1.dll [2017-05-01] (Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=11.131.2 -> C:\Program Files (x86)\Java\jre1.8.0_131\bin\plugin2\npjp2.dll [2017-05-01] (Oracle Corporation) FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2017-05-18] (NVIDIA Corporation) FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2017-05-18] (NVIDIA Corporation) FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN) FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2017-03-27] (Adobe Systems) Chrome: ======= CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - hxxps://clients2.google.com/service/update2/crx ==================== Services (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [771672 2017-03-14] (Adobe Systems Incorporated) R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2227312 2017-02-27] (Adobe Systems, Incorporated) R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe [7346208 2017-05-24] (AVAST Software s.r.o.) R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [263304 2017-05-24] (AVAST Software) R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [4470736 2017-05-09] (Malwarebytes) R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [495224 2017-05-03] (NVIDIA Corporation) S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [495224 2017-05-03] (NVIDIA Corporation) R2 NVDisplay.ContainerLocalSystem; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [462968 2017-05-18] (NVIDIA Corporation) R2 NvTelemetryContainer; C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe [449984 2017-05-18] (NVIDIA Corporation) R2 Razer Chroma SDK Server; C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKServer.exe [401024 2017-05-02] (Razer Inc.) R2 Razer Chroma SDK Service; C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKService.exe [178312 2017-05-02] (Razer Inc.) R2 Razer Game Scanner Service; C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe [189264 2016-09-25] () S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [361824 2017-01-12] (Microsoft Corporation) S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [119872 2017-01-12] (Microsoft Corporation) ===================== Pilotes (Avec liste blanche) ====================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R1 aswbidsdriver; C:\Windows\system32\drivers\aswbidsdrivera.sys [311808 2017-05-24] (AVAST Software s.r.o.) R0 aswbidsh; C:\Windows\system32\drivers\aswbidsha.sys [190256 2017-05-24] (AVAST Software s.r.o.) R0 aswblog; C:\Windows\system32\drivers\aswbloga.sys [334576 2017-05-24] (AVAST Software s.r.o.) R0 aswbuniv; C:\Windows\system32\drivers\aswbuniva.sys [49016 2017-05-24] (AVAST Software s.r.o.) S3 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [38296 2017-05-24] (AVAST Software) R1 aswKbd; C:\Windows\system32\drivers\aswKbd.sys [32600 2017-05-24] (AVAST Software) R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [128648 2017-05-24] (AVAST Software) R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [101152 2017-05-24] (AVAST Software) R0 aswRvrt; C:\Windows\system32\drivers\aswRvrt.sys [75704 2017-05-24] (AVAST Software) R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1007160 2017-05-24] (AVAST Software) R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [569192 2017-05-24] (AVAST Software) R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [158880 2017-05-24] (AVAST Software) R0 aswVmm; C:\Windows\system32\drivers\aswVmm.sys [339696 2017-05-24] (AVAST Software) R1 ESProtectionDriver; C:\Windows\system32\drivers\mbae64.sys [77440 2017-05-09] () R2 MBAMChameleon; C:\Windows\system32\drivers\MBAMChameleon.sys [187320 2017-05-24] (Malwarebytes) R3 MBAMFarflt; C:\Windows\system32\drivers\farflt.sys [113592 2017-05-24] (Malwarebytes) R3 MBAMProtection; C:\Windows\system32\drivers\mbam.sys [43968 2017-05-24] (Malwarebytes) R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [251832 2017-05-24] (Malwarebytes) R3 MBAMWebProtection; C:\Windows\system32\drivers\mwac.sys [93624 2017-05-26] (Malwarebytes) S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30328 2017-05-03] (NVIDIA Corporation) R3 NVVADARM; C:\Windows\system32\drivers\nvvadarm.sys [46200 2017-05-18] (NVIDIA Corporation) R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [48248 2017-05-03] (NVIDIA Corporation) R3 nvvhci; C:\Windows\System32\drivers\nvvhci.sys [57976 2017-05-03] (NVIDIA Corporation) R3 rzendpt; C:\Windows\System32\drivers\rzendpt.sys [51736 2016-06-22] (Razer Inc) R2 rzpmgrk; C:\Windows\system32\drivers\rzpmgrk.sys [44144 2016-09-17] (Razer, Inc.) R2 rzpnk; C:\Windows\system32\drivers\rzpnk.sys [137840 2016-10-08] (Razer, Inc.) S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [46600 2017-02-10] (Microsoft Corporation) S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [274776 2017-01-12] (Microsoft Corporation) S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [117592 2017-01-12] (Microsoft Corporation) ==================== NetSvcs (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) ==================== Un mois - Créés - fichiers et dossiers ======== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2017-05-26 21:14 - 2017-05-26 21:16 - 00015280 _____ C:\Users\Neo\Downloads\FRST.txt 2017-05-26 21:14 - 2017-05-26 21:14 - 02429952 _____ (Farbar) C:\Users\Neo\Downloads\FRST64(1).exe 2017-05-26 21:14 - 2017-05-26 21:14 - 00000000 ____D C:\Users\Neo\Downloads\FRST-OlderVersion 2017-05-26 21:14 - 2017-05-26 21:14 - 00000000 ____D C:\FRST 2017-05-26 21:11 - 2017-05-26 21:12 - 80018313 _____ C:\Users\Neo\Desktop\trailer Blastrush.mp4 2017-05-25 17:29 - 2017-05-25 17:29 - 00458792 _____ C:\Users\Neo\Desktop\montage combo.veg 2017-05-25 15:54 - 2017-05-25 15:54 - 07636116 _____ C:\Users\Neo\Desktop\overlay layout.psd 2017-05-25 15:17 - 2017-05-25 15:17 - 00000000 ____D C:\Users\Neo\AppData\Local\Tempzxpsign853e61dadaa2104e 2017-05-25 14:27 - 2017-05-25 14:27 - 00000000 ____D C:\Users\Neo\AppData\Local\Tempzxpsign8dee6be3572afdf3 2017-05-25 14:27 - 2017-05-25 14:27 - 00000000 ____D C:\Users\Neo\AppData\Local\Tempzxpsign62660919de3022cd 2017-05-24 22:39 - 2017-05-24 22:40 - 00001094 _____ C:\Users\Neo\Desktop\regedit.lnk 2017-05-24 22:33 - 2017-05-24 22:33 - 00000000 ____D C:\ProgramData\SWCUTemp 2017-05-24 22:32 - 2017-05-24 22:32 - 00457896 _____ C:\Users\Neo\Desktop\montage combo.veg.bak 2017-05-24 21:48 - 2017-05-24 21:48 - 00000000 ____D C:\Users\Neo\Desktop\déban G Commu 2017-05-24 21:16 - 2017-05-24 21:16 - 00003916 _____ C:\Windows\System32\Tasks\SafeZone scheduled Autoupdate 1486407402 2017-05-24 21:16 - 2017-05-24 21:16 - 00001059 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast SafeZone Browser.lnk 2017-05-24 21:11 - 2017-05-24 21:11 - 00158880 _____ (AVAST Software) C:\Windows\system32\Drivers\aswstm.sys 2017-05-24 21:11 - 2017-05-24 21:11 - 00003914 _____ C:\Windows\System32\Tasks\Avast Emergency Update 2017-05-24 21:11 - 2017-05-24 21:10 - 01007160 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys 2017-05-24 21:11 - 2017-05-24 21:10 - 00569192 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys 2017-05-24 21:11 - 2017-05-24 21:10 - 00339696 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys 2017-05-24 21:11 - 2017-05-24 21:10 - 00334576 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswbloga.sys 2017-05-24 21:11 - 2017-05-24 21:10 - 00311808 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswbidsdrivera.sys 2017-05-24 21:11 - 2017-05-24 21:10 - 00190256 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswbidsha.sys 2017-05-24 21:11 - 2017-05-24 21:10 - 00158368 _____ (AVAST Software) C:\Windows\system32\Drivers\aswstm.sys.149565307762502 2017-05-24 21:11 - 2017-05-24 21:10 - 00128648 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys 2017-05-24 21:11 - 2017-05-24 21:10 - 00101152 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys 2017-05-24 21:11 - 2017-05-24 21:10 - 00075704 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys 2017-05-24 21:11 - 2017-05-24 21:10 - 00049016 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswbuniva.sys 2017-05-24 21:11 - 2017-05-24 21:10 - 00038296 _____ (AVAST Software) C:\Windows\system32\Drivers\aswHwid.sys 2017-05-24 21:11 - 2017-05-24 21:10 - 00032600 _____ (AVAST Software) C:\Windows\system32\Drivers\aswKbd.sys 2017-05-24 21:10 - 2017-05-24 21:10 - 00400456 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe 2017-05-24 20:45 - 2017-05-24 20:45 - 00000000 ____D C:\Users\Neo\AppData\Local\Tempzxpsign71644e0a68ca6392 2017-05-24 20:45 - 2017-05-24 20:45 - 00000000 ____D C:\Users\Neo\AppData\Local\Tempzxpsign07dad3ccb64c6068 2017-05-24 20:42 - 2017-05-24 20:42 - 00000000 ____D C:\Users\Neo\AppData\Local\Tempzxpsigne5100e403de8435a 2017-05-24 20:42 - 2017-05-24 20:42 - 00000000 ____D C:\Users\Neo\AppData\Local\Tempzxpsign4c7b89a23f0d3586 2017-05-23 16:18 - 2017-05-23 16:18 - 00000000 ____D C:\Program Files (x86)\VulkanRT 2017-05-23 16:18 - 2017-05-18 07:21 - 00134592 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe 2017-05-23 16:18 - 2017-03-10 23:17 - 00536864 _____ C:\Windows\system32\vulkan-1.dll 2017-05-23 16:18 - 2017-03-10 23:17 - 00525600 _____ C:\Windows\SysWOW64\vulkan-1.dll 2017-05-23 16:18 - 2017-03-10 23:17 - 00254240 _____ C:\Windows\system32\vulkaninfo.exe 2017-05-23 16:18 - 2017-03-10 23:17 - 00233760 _____ C:\Windows\SysWOW64\vulkaninfo.exe 2017-05-23 16:15 - 2017-05-18 09:33 - 40201848 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll 2017-05-23 16:15 - 2017-05-18 09:33 - 35349440 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll 2017-05-23 16:15 - 2017-05-18 09:33 - 35282040 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll 2017-05-23 16:15 - 2017-05-18 09:33 - 28593088 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll 2017-05-23 16:15 - 2017-05-18 09:33 - 20066768 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll 2017-05-23 16:15 - 2017-05-18 09:33 - 17426520 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll 2017-05-23 16:15 - 2017-05-18 09:33 - 16436488 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll 2017-05-23 16:15 - 2017-05-18 09:33 - 14271608 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys 2017-05-23 16:15 - 2017-05-18 09:33 - 13402816 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll 2017-05-23 16:15 - 2017-05-18 09:33 - 11056456 _____ (NVIDIA Corporation) C:\Windows\system32\nvptxJitCompiler.dll 2017-05-23 16:15 - 2017-05-18 09:33 - 11027968 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll 2017-05-23 16:15 - 2017-05-18 09:33 - 10551072 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll 2017-05-23 16:15 - 2017-05-18 09:33 - 09248328 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll 2017-05-23 16:15 - 2017-05-18 09:33 - 09014976 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvptxJitCompiler.dll 2017-05-23 16:15 - 2017-05-18 09:33 - 08808488 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll 2017-05-23 16:15 - 2017-05-18 09:33 - 04090016 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll 2017-05-23 16:15 - 2017-05-18 09:33 - 03603672 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll 2017-05-23 16:15 - 2017-05-18 09:33 - 03437688 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll 2017-05-23 16:15 - 2017-05-18 09:33 - 03020920 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll 2017-05-23 16:15 - 2017-05-18 09:33 - 01988216 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6438233.dll 2017-05-23 16:15 - 2017-05-18 09:33 - 01606592 _____ (NVIDIA Corporation) C:\Windows\system32\nvmcvadgenco64.dll 2017-05-23 16:15 - 2017-05-18 09:33 - 01606592 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6438233.dll 2017-05-23 16:15 - 2017-05-18 09:33 - 01055680 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll 2017-05-23 16:15 - 2017-05-18 09:33 - 00993912 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll 2017-05-23 16:15 - 2017-05-18 09:33 - 00964216 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll 2017-05-23 16:15 - 2017-05-18 09:33 - 00914880 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll 2017-05-23 16:15 - 2017-05-18 09:33 - 00895968 _____ (NVIDIA Corporation) C:\Windows\system32\nvmcumd.dll 2017-05-23 16:15 - 2017-05-18 09:33 - 00688968 _____ (NVIDIA Corporation) C:\Windows\system32\nvfatbinaryLoader.dll 2017-05-23 16:15 - 2017-05-18 09:33 - 00609912 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll 2017-05-23 16:15 - 2017-05-18 09:33 - 00577728 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvfatbinaryLoader.dll 2017-05-23 16:15 - 2017-05-18 09:33 - 00507688 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll 2017-05-23 16:15 - 2017-05-18 09:33 - 00499320 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll 2017-05-23 16:15 - 2017-05-18 09:33 - 00491208 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll 2017-05-23 16:15 - 2017-05-18 09:33 - 00426128 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll 2017-05-23 16:15 - 2017-05-18 09:33 - 00406736 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll 2017-05-23 16:15 - 2017-05-18 09:33 - 00170360 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll 2017-05-23 16:15 - 2017-05-18 09:33 - 00153184 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll 2017-05-23 16:15 - 2017-05-18 09:33 - 00148200 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll 2017-05-23 16:15 - 2017-05-18 09:33 - 00131536 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll 2017-05-23 16:15 - 2017-05-18 09:33 - 00124536 _____ (NVIDIA Corporation) C:\Windows\system32\nvaudcaparm.dll 2017-05-23 16:15 - 2017-05-18 09:33 - 00046200 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvadarm.sys 2017-05-23 16:15 - 2017-05-18 09:33 - 00042897 _____ C:\Windows\system32\nvinfo.pb 2017-05-23 12:23 - 2017-05-23 16:17 - 00000000 ____D C:\Windows\LastGood.Tmp 2017-05-23 12:23 - 2017-05-23 12:23 - 00004146 _____ C:\Windows\System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2017-05-23 12:23 - 2017-05-23 12:23 - 00003852 _____ C:\Windows\System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2017-05-23 12:23 - 2017-05-23 12:23 - 00003814 _____ C:\Windows\System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2017-05-23 12:23 - 2017-05-23 12:23 - 00003738 _____ C:\Windows\System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2017-05-23 12:23 - 2017-05-23 12:23 - 00003738 _____ C:\Windows\System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2017-05-23 12:23 - 2017-05-23 12:23 - 00003730 _____ C:\Windows\System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2017-05-23 12:23 - 2017-05-23 12:23 - 00003554 _____ C:\Windows\System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2017-05-23 12:23 - 2017-05-23 12:23 - 00003494 _____ C:\Windows\System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} 2017-05-23 12:23 - 2017-05-03 22:21 - 01893496 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll 2017-05-23 12:23 - 2017-05-03 22:21 - 01477240 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll 2017-05-23 12:23 - 2017-05-03 22:21 - 00175736 _____ (NVIDIA Corporation) C:\Windows\system32\nvaudcap64v.dll 2017-05-23 12:23 - 2017-05-03 22:21 - 00143480 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvaudcap32v.dll 2017-05-23 12:23 - 2017-05-03 22:21 - 00057976 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvhci.sys 2017-05-23 12:23 - 2017-05-03 22:21 - 00048248 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad64v.sys 2017-05-22 19:32 - 2017-05-22 19:32 - 00000000 ____D C:\Users\Neo\AppData\Local\Tempzxpsign6ae08ba5bad9323d 2017-05-22 19:12 - 2017-05-22 19:12 - 00000000 ____D C:\Users\Neo\AppData\Local\Tempzxpsign82b03d66308f3592 2017-05-22 19:08 - 2017-05-22 19:08 - 00000000 ____D C:\Users\Neo\AppData\Local\Tempzxpsignda3acfc6c0352090 2017-05-22 19:08 - 2017-05-22 19:08 - 00000000 ____D C:\Users\Neo\AppData\Local\Tempzxpsign50975d2f7b027fe2 2017-05-21 13:54 - 2017-05-21 13:54 - 00000000 ____D C:\Users\Neo\AppData\Local\Tempzxpsign82dcc48b328baf9a 2017-05-21 13:52 - 2017-05-21 13:52 - 00000000 ____D C:\Users\Neo\AppData\Local\Tempzxpsign312b679d9a6b802f 2017-05-20 22:14 - 2017-05-20 22:14 - 00000000 ____D C:\Users\Neo\AppData\Local\Tempzxpsignb440b84007739143 2017-05-20 22:05 - 2017-05-20 22:06 - 00000000 ____D C:\Users\Neo\Desktop\Désinfection 2017-05-20 20:21 - 2017-05-20 20:21 - 00000000 ____D C:\Users\Neo\AppData\Local\Tempzxpsign71220d079a720152 2017-05-20 20:06 - 2017-05-20 20:06 - 00000000 ____D C:\Users\Neo\AppData\Local\Tempzxpsigna1d8ebe9313b0425 2017-05-20 18:42 - 2017-05-20 18:42 - 00000000 ____D C:\Users\Neo\AppData\Local\Tempzxpsign8bae5125947c7766 2017-05-20 18:42 - 2017-05-20 18:42 - 00000000 ____D C:\Users\Neo\AppData\Local\Tempzxpsign47b3fff699256fc6 2017-05-20 18:42 - 2017-05-20 18:42 - 00000000 ____D C:\Users\Neo\AppData\Local\Tempzxpsign407b83ebdb9ab348 2017-05-20 18:42 - 2017-05-20 18:42 - 00000000 ____D C:\Users\Neo\AppData\Local\Tempzxpsign1f3ab02a30816bd9 2017-05-19 22:45 - 2017-05-19 22:45 - 00000000 ____D C:\Users\Neo\AppData\Local\Tempzxpsignfb7a06de183fa134 2017-05-19 22:27 - 2017-05-19 22:27 - 00000000 ____D C:\Users\Neo\AppData\Local\Tempzxpsign7edc9b8fe89f8c40 2017-05-19 21:19 - 2017-05-19 21:19 - 00000000 ____D C:\Users\Neo\AppData\Local\Tempzxpsigna3a7dd5d7443d084 2017-05-19 21:17 - 2017-05-19 21:17 - 00000000 ____D C:\Users\Neo\AppData\Local\Tempzxpsignf3e38f93fa1e9669 2017-05-19 21:17 - 2017-05-19 21:17 - 00000000 ____D C:\Users\Neo\AppData\Local\Tempzxpsign8d445207707aaad9 2017-05-19 16:23 - 2017-05-19 16:23 - 00000000 ____D C:\Users\Neo\AppData\Local\Tempzxpsignfcc662affd3236b8 2017-05-19 16:23 - 2017-05-19 16:23 - 00000000 ____D C:\Users\Neo\AppData\Local\Tempzxpsign764dac2754160c40 2017-05-18 20:56 - 2017-05-18 20:56 - 00000000 ____D C:\Users\Neo\AppData\Local\4kdownload.com 2017-05-18 20:55 - 2017-05-18 20:55 - 16647096 _____ (Open Media LLC ) C:\Users\Neo\Downloads\4kstogram_2.3.exe 2017-05-18 20:54 - 2017-05-18 20:54 - 00000000 ____D C:\Users\Neo\AppData\Local\Tempzxpsignd43947a463194847 2017-05-18 20:54 - 2017-05-18 20:54 - 00000000 ____D C:\Users\Neo\AppData\Local\Tempzxpsign9f4a983214c2c35e 2017-05-18 17:39 - 2017-05-18 17:39 - 00000000 ____D C:\Users\Neo\AppData\Local\Tempzxpsigna4fd883efa6bd14d 2017-05-18 17:39 - 2017-05-18 17:39 - 00000000 ____D C:\Users\Neo\AppData\Local\Tempzxpsign3b34a4cedb1b3cfe 2017-05-18 15:59 - 2017-05-26 21:06 - 00093624 _____ (Malwarebytes) C:\Windows\system32\Drivers\mwac.sys 2017-05-18 15:59 - 2017-05-24 21:16 - 00251832 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys 2017-05-18 15:59 - 2017-05-24 21:16 - 00113592 _____ (Malwarebytes) C:\Windows\system32\Drivers\farflt.sys 2017-05-18 15:59 - 2017-05-24 21:16 - 00043968 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys 2017-05-18 15:59 - 2017-05-24 11:39 - 00187320 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMChameleon.sys 2017-05-18 15:58 - 2017-05-18 15:58 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes 2017-05-18 15:58 - 2017-05-18 15:58 - 00000000 ____D C:\ProgramData\Malwarebytes 2017-05-18 15:58 - 2017-05-18 15:58 - 00000000 ____D C:\Program Files\Malwarebytes 2017-05-18 15:58 - 2017-05-09 16:37 - 00077440 _____ C:\Windows\system32\Drivers\mbae64.sys 2017-05-18 15:57 - 2017-05-18 15:58 - 63035592 _____ (Malwarebytes ) C:\Users\Neo\Downloads\mb3-setup-consumer-3.1.2.1733.exe 2017-05-17 20:02 - 2017-05-17 20:02 - 00035880 _____ C:\Users\Neo\Desktop\Soup.veg 2017-05-17 17:32 - 2017-05-17 17:32 - 00000000 ____D C:\Users\Neo\AppData\Local\Tempzxpsign5d18ff5700cd7158 2017-05-17 17:31 - 2017-05-17 17:31 - 00000000 ____D C:\Users\Neo\AppData\Local\Tempzxpsign86403c16f82fa4a1 2017-05-16 19:14 - 2017-05-16 19:14 - 00000000 ____D C:\Users\Neo\AppData\Local\Tempzxpsign49bd1bb71c158d3b 2017-05-16 18:39 - 2017-05-16 18:39 - 00000000 ____D C:\Users\Neo\AppData\Local\Tempzxpsign914793a28c5980bc 2017-05-16 18:29 - 2017-05-16 18:29 - 00000000 ____D C:\Users\Neo\AppData\Local\Tempzxpsign5e7ad10caa9ed47c 2017-05-16 18:28 - 2017-05-16 18:28 - 00000000 ____D C:\Users\Neo\AppData\Local\Tempzxpsign04c9534d39dd1a34 2017-05-15 21:45 - 2017-05-15 21:45 - 00000000 ____D C:\Users\Neo\AppData\Local\Tempzxpsign9300cc78822e5392 2017-05-15 21:45 - 2017-05-15 21:45 - 00000000 ____D C:\Users\Neo\AppData\Local\Tempzxpsign4348edfa4907fa2c 2017-05-15 21:38 - 2017-05-15 21:38 - 00000000 ____D C:\Users\Neo\AppData\Local\Tempzxpsign8eb99cb56fd0b559 2017-05-15 20:00 - 2017-05-15 20:00 - 00000000 ____D C:\Users\Neo\AppData\Local\Tempzxpsignae0763f5b026961f 2017-05-15 19:36 - 2017-05-15 19:36 - 00000000 ____D C:\Users\Neo\AppData\Local\Tempzxpsign277f4c9b2cf917f8 2017-05-15 19:35 - 2017-05-15 19:35 - 00000000 ____D C:\Users\Neo\AppData\Local\Tempzxpsignbec5de8ab99df43c 2017-05-15 19:35 - 2017-05-15 19:35 - 00000000 ____D C:\Users\Neo\AppData\Local\Tempzxpsign094d1f6d750dc376 2017-05-15 15:30 - 2017-05-15 15:30 - 11461065 _____ C:\Users\Neo\Downloads\livretcinemaallemand-12pages-2017-260417(1).pdf 2017-05-14 22:38 - 2017-05-14 22:38 - 00046696 _____ C:\Users\Neo\Desktop\edit pvp it's only.veg 2017-05-14 20:37 - 2017-05-14 20:37 - 00000000 ____D C:\Users\Neo\AppData\Local\Tempzxpsign669e84f51900ba60 2017-05-14 20:37 - 2017-05-14 20:37 - 00000000 ____D C:\Users\Neo\AppData\Local\Tempzxpsign4ce0a0298c4cada9 2017-05-14 20:34 - 2017-05-14 20:34 - 00000000 ____D C:\Users\Neo\AppData\Local\Tempzxpsign4f042d5574128e9e 2017-05-14 18:51 - 2017-05-14 18:51 - 00000000 ____D C:\Users\Neo\AppData\Local\Tempzxpsign8844364ee1ac7b49 2017-05-14 18:48 - 2017-05-14 18:48 - 00000000 ____D C:\Users\Neo\AppData\Local\Tempzxpsign7d960cb9859d980b 2017-05-14 12:47 - 2017-05-14 12:47 - 00000000 ____D C:\Users\Neo\AppData\Local\Tempzxpsign554a6fd0e9993589 2017-05-14 12:47 - 2017-05-14 12:47 - 00000000 ____D C:\Users\Neo\AppData\Local\Tempzxpsign47a6f3642ea46fd5 2017-05-14 12:47 - 2017-05-14 12:47 - 00000000 ____D C:\Users\Neo\AppData\Local\Tempzxpsign2256a8c9cb79fed2 2017-05-14 12:13 - 2017-05-14 12:13 - 00000000 ____D C:\Users\Neo\AppData\Local\Tempzxpsign488876f5cf4f245f 2017-05-14 12:09 - 2017-05-14 12:09 - 00000000 ____D C:\Users\Neo\AppData\Local\Tempzxpsignc651df28b61bb898 2017-05-14 12:09 - 2017-05-14 12:09 - 00000000 ____D C:\Users\Neo\AppData\Local\Tempzxpsign412e079817ffae08 2017-05-13 21:18 - 2017-05-13 21:18 - 00000000 ____D C:\Users\Neo\AppData\Local\Tempzxpsign59f6cf01b5e34981 2017-05-13 16:29 - 2017-05-13 16:29 - 00000000 ____D C:\Users\Neo\AppData\Local\Tempzxpsign8465e8b6c14eea71 2017-05-13 15:22 - 2017-05-13 15:22 - 00078633 _____ C:\Users\Neo\Downloads\dmPDF.pdf 2017-05-13 15:20 - 2017-05-26 20:56 - 00000410 _____ C:\Windows\Tasks\update-sys.job 2017-05-13 15:20 - 2017-05-26 19:59 - 00000410 _____ C:\Windows\Tasks\update-S-1-5-21-2688126532-4070146665-1156163858-1001.job 2017-05-13 15:20 - 2017-05-13 15:20 - 02732544 _____ (Skillbrains ) C:\Users\Neo\Downloads\setup-lightshot.exe 2017-05-13 15:20 - 2017-05-13 15:20 - 00003280 _____ C:\Windows\System32\Tasks\update-sys 2017-05-13 15:20 - 2017-05-13 15:20 - 00003264 _____ C:\Windows\System32\Tasks\update-S-1-5-21-2688126532-4070146665-1156163858-1001 2017-05-13 15:20 - 2017-05-13 15:20 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lightshot 2017-05-13 15:20 - 2017-05-13 15:20 - 00000000 ____D C:\Program Files (x86)\Skillbrains 2017-05-13 11:50 - 2017-05-13 11:50 - 00000000 ____D C:\Users\Neo\AppData\Local\Tempzxpsigne76719d10973f680 2017-05-13 11:50 - 2017-05-13 11:50 - 00000000 ____D C:\Users\Neo\AppData\Local\Tempzxpsignb8f7e03cd890fe47 2017-05-13 11:50 - 2017-05-13 11:50 - 00000000 ____D C:\Users\Neo\AppData\Local\Tempzxpsign49f5b9204ec47a03 2017-05-13 11:07 - 2017-05-13 11:07 - 00000000 ____D C:\Users\Neo\AppData\Local\Tempzxpsigncea41a23517f1c3a 2017-05-13 11:00 - 2017-05-13 11:00 - 00000000 ____D C:\Users\Neo\AppData\Local\Tempzxpsign3ae290e0d10433dd 2017-05-13 09:53 - 2017-05-13 09:53 - 00000000 ____D C:\Users\Neo\AppData\Local\AdAwareDesktop 2017-05-13 09:46 - 2017-05-13 09:46 - 00000000 ____D C:\Users\Neo\AppData\Local\AdAwareUpdater 2017-05-13 09:46 - 2017-05-13 09:46 - 00000000 ____D C:\Program Files\Common Files\adaware 2017-05-13 09:43 - 2017-05-13 09:43 - 00000000 ____D C:\ProgramData\Lavasoft 2017-05-13 09:42 - 2017-05-13 09:42 - 01707144 _____ C:\Users\Neo\Downloads\Adaware_Installer-11.2.5952.exe 2017-05-12 17:39 - 2017-05-12 17:40 - 11461065 _____ C:\Users\Neo\Downloads\livretcinemaallemand-12pages-2017-260417.pdf 2017-05-11 19:12 - 2017-05-11 19:15 - 00000000 ____D C:\Users\Neo\Desktop\Textes Edit PvP 2017-05-11 18:51 - 2017-05-11 18:51 - 00000000 ____D C:\Users\Neo\AppData\Local\Tempzxpsign411756c1ca94030a 2017-05-11 18:50 - 2017-05-11 18:50 - 00000000 ____D C:\Users\Neo\AppData\Local\Tempzxpsignd3f4d97962cca4c8 2017-05-11 18:50 - 2017-05-11 18:50 - 00000000 ____D C:\Users\Neo\AppData\Local\Tempzxpsign9ca3b08131474523 2017-05-10 17:00 - 2017-05-10 17:00 - 02769408 _____ C:\Users\Neo\ZHPCleaner.exe 2017-05-10 13:42 - 2017-05-10 15:57 - 00000000 ____D C:\Users\Neo\Documents\Overwatch 2017-05-10 13:25 - 2017-05-10 13:25 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Overwatch 2017-05-10 13:00 - 2017-04-29 00:44 - 00835576 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe 2017-05-10 13:00 - 2017-04-29 00:44 - 00177656 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl 2017-05-10 11:41 - 2017-04-28 23:15 - 07444824 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe 2017-05-10 11:41 - 2017-04-26 16:06 - 04169216 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys 2017-05-10 11:41 - 2017-04-16 12:23 - 02176584 _____ (Microsoft Corporation) C:\Windows\system32\combase.dll 2017-05-10 11:41 - 2017-04-16 12:23 - 01662096 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll 2017-05-10 11:41 - 2017-04-16 12:23 - 01063464 _____ (Microsoft Corporation) C:\Windows\system32\WinTypes.dll 2017-05-10 11:41 - 2017-04-16 12:18 - 01135288 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll 2017-05-10 11:41 - 2017-04-16 12:18 - 00803192 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll 2017-05-10 11:41 - 2017-04-16 11:07 - 01566032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\combase.dll 2017-05-10 11:41 - 2017-04-16 11:07 - 01213792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ole32.dll 2017-05-10 11:41 - 2017-04-16 11:07 - 00548032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WinTypes.dll 2017-05-10 11:41 - 2017-04-16 11:05 - 00612096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll 2017-05-10 11:41 - 2017-04-16 10:54 - 00576512 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll 2017-05-10 11:41 - 2017-04-16 10:54 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll 2017-05-10 11:41 - 2017-04-16 10:51 - 02899456 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll 2017-05-10 11:41 - 2017-04-16 10:37 - 00116224 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe 2017-05-10 11:41 - 2017-04-16 10:36 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll 2017-05-10 11:41 - 2017-04-16 10:35 - 25741312 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll 2017-05-10 11:41 - 2017-04-16 10:18 - 05977600 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll 2017-05-10 11:41 - 2017-04-16 10:16 - 00862720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll 2017-05-10 11:41 - 2017-04-16 10:10 - 00087552 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx 2017-05-10 11:41 - 2017-04-16 10:03 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll 2017-05-10 11:41 - 2017-04-16 10:02 - 00145408 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll 2017-05-10 11:41 - 2017-04-16 10:01 - 00499200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll 2017-05-10 11:41 - 2017-04-16 10:00 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll 2017-05-10 11:41 - 2017-04-16 10:00 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll 2017-05-10 11:41 - 2017-04-16 09:53 - 02290176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll 2017-05-10 11:41 - 2017-04-16 09:52 - 01033216 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll 2017-05-10 11:41 - 2017-04-16 09:49 - 20278272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll 2017-05-10 11:41 - 2017-04-16 09:47 - 00663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll 2017-05-10 11:41 - 2017-04-16 09:43 - 00262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll 2017-05-10 11:41 - 2017-04-16 09:40 - 00806912 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll 2017-05-10 11:41 - 2017-04-16 09:40 - 00725504 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe 2017-05-10 11:41 - 2017-04-16 09:40 - 00378880 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll 2017-05-10 11:41 - 2017-04-16 09:37 - 02132992 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl 2017-05-10 11:41 - 2017-04-16 09:29 - 00073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx 2017-05-10 11:41 - 2017-04-16 09:24 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll 2017-05-10 11:41 - 2017-04-16 09:23 - 00128000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll 2017-05-10 11:41 - 2017-04-16 09:22 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\rpcss.dll 2017-05-10 11:41 - 2017-04-16 09:22 - 00279040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll 2017-05-10 11:41 - 2017-04-16 09:17 - 00880640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll 2017-05-10 11:41 - 2017-04-16 09:12 - 00230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll 2017-05-10 11:41 - 2017-04-16 09:10 - 15250944 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll 2017-05-10 11:41 - 2017-04-16 09:10 - 00693248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll 2017-05-10 11:41 - 2017-04-16 09:10 - 00330752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll 2017-05-10 11:41 - 2017-04-16 09:08 - 04548608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll 2017-05-10 11:41 - 2017-04-16 09:08 - 02057216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl 2017-05-10 11:41 - 2017-04-16 09:04 - 03241472 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll 2017-05-10 11:41 - 2017-04-16 09:02 - 00267776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wincorlib.dll 2017-05-10 11:41 - 2017-04-16 08:53 - 13661184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll 2017-05-10 11:41 - 2017-04-16 08:50 - 01544704 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll 2017-05-10 11:41 - 2017-04-16 08:40 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll 2017-05-10 11:41 - 2017-04-16 08:37 - 02767872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll 2017-05-10 11:41 - 2017-04-16 08:34 - 01314816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll 2017-05-10 11:41 - 2017-04-16 08:34 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll 2017-05-10 11:41 - 2017-04-10 00:00 - 01548640 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys 2017-05-10 11:41 - 2017-04-10 00:00 - 00388448 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys 2017-05-10 11:41 - 2017-04-08 01:20 - 01375960 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll 2017-05-10 11:41 - 2017-04-07 15:56 - 01094656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll 2017-05-10 11:41 - 2017-04-02 18:41 - 00684544 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys 2017-05-10 11:41 - 2017-04-02 18:41 - 00414720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys 2017-05-10 11:41 - 2017-04-01 01:16 - 01968408 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll 2017-05-10 11:41 - 2017-03-31 23:59 - 01612504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll 2017-05-10 11:27 - 2017-05-26 19:05 - 00000000 ____D C:\Program Files (x86)\Overwatch 2017-05-10 11:26 - 2017-05-10 11:26 - 00000000 ____D C:\ProgramData\Blizzard Entertainment 2017-05-10 11:23 - 2017-05-26 19:15 - 00000000 ____D C:\Users\Neo\AppData\Local\Battle.net 2017-05-10 11:23 - 2017-05-10 11:23 - 00000000 ____D C:\Users\Neo\AppData\Local\Blizzard Entertainment 2017-05-10 11:23 - 2017-05-10 11:23 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Application Blizzard 2017-05-10 11:20 - 2017-05-26 17:19 - 00000000 ____D C:\Program Files (x86)\Blizzard App 2017-05-10 11:19 - 2017-05-10 11:26 - 00000000 ____D C:\Users\Neo\AppData\Roaming\Battle.net 2017-05-10 11:18 - 2017-05-10 11:19 - 00000000 ____D C:\ProgramData\Battle.net 2017-05-08 20:06 - 2017-05-08 20:29 - 00000000 ____D C:\Users\Neo\AppData\LocalLow\uTorrent 2017-05-08 14:12 - 2017-05-08 14:12 - 02609664 _____ (Microsoft Corporation) C:\Windows\system32\WsmSvc.dll 2017-05-08 14:12 - 2017-05-08 14:12 - 02170880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmSvc.dll 2017-05-08 14:12 - 2017-05-08 14:12 - 02017624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys 2017-05-08 14:12 - 2017-05-08 14:12 - 01437696 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll 2017-05-08 14:12 - 2017-05-08 14:12 - 00448285 _____ C:\Windows\system32\ApnDatabase.xml 2017-05-08 14:12 - 2017-05-08 14:12 - 00445440 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll 2017-05-08 14:12 - 2017-05-08 14:12 - 00401408 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys 2017-05-08 14:12 - 2017-05-08 14:12 - 00324096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll 2017-05-08 14:12 - 2017-05-08 14:12 - 00293376 _____ (Microsoft Corporation) C:\Windows\system32\wisp.dll 2017-05-08 14:12 - 2017-05-08 14:12 - 00285184 _____ (Microsoft Corporation) C:\Windows\system32\WsmWmiPl.dll 2017-05-08 14:12 - 2017-05-08 14:12 - 00285184 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys 2017-05-08 14:12 - 2017-05-08 14:12 - 00275800 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\msiscsi.sys 2017-05-08 14:12 - 2017-05-08 14:12 - 00236032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmWmiPl.dll 2017-05-08 14:12 - 2017-05-08 14:12 - 00230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wisp.dll 2017-05-08 14:12 - 2017-05-08 14:12 - 00206848 _____ (Microsoft Corporation) C:\Windows\system32\wmitomi.dll 2017-05-08 14:12 - 2017-05-08 14:12 - 00201728 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys 2017-05-08 14:12 - 2017-05-08 14:12 - 00159232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmitomi.dll 2017-05-08 14:02 - 2017-05-08 14:02 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kbdgeoqw.dll 2017-05-08 14:02 - 2017-05-08 14:02 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDAZST.DLL 2017-05-08 14:02 - 2017-05-08 14:02 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDAZEL.DLL 2017-05-08 14:02 - 2017-05-08 14:02 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDAZE.DLL 2017-05-08 14:02 - 2017-05-08 14:02 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\kbdgeoqw.dll 2017-05-08 14:02 - 2017-05-08 14:02 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDAZST.DLL 2017-05-08 14:02 - 2017-05-08 14:02 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDAZEL.DLL 2017-05-08 14:02 - 2017-05-08 14:02 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDAZE.DLL 2017-05-08 13:58 - 2017-05-08 13:58 - 04837376 _____ (Microsoft Corporation) C:\Windows\system32\SyncEngine.dll 2017-05-08 13:58 - 2017-05-08 13:58 - 01574400 _____ (Microsoft Corporation) C:\Windows\system32\vssapi.dll 2017-05-08 13:58 - 2017-05-08 13:58 - 01154048 _____ (Microsoft Corporation) C:\Windows\system32\SkyDrive.exe 2017-05-08 13:58 - 2017-05-08 13:58 - 01142272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vssapi.dll 2017-05-08 13:58 - 2017-05-08 13:58 - 01027584 _____ (Microsoft Corporation) C:\Windows\system32\MFMediaEngine.dll 2017-05-08 13:58 - 2017-05-08 13:58 - 00962216 _____ (Microsoft Corporation) C:\Windows\system32\mfplat.dll 2017-05-08 13:58 - 2017-05-08 13:58 - 00885760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFMediaEngine.dll 2017-05-08 13:58 - 2017-05-08 13:58 - 00827392 _____ (Microsoft Corporation) C:\Windows\system32\spoolsv.exe 2017-05-08 13:58 - 2017-05-08 13:58 - 00801584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfplat.dll 2017-05-08 13:58 - 2017-05-08 13:58 - 00733696 _____ (Microsoft Corporation) C:\Windows\system32\SkyDriveTelemetry.dll 2017-05-08 13:58 - 2017-05-08 13:58 - 00658432 _____ (Microsoft Corporation) C:\Windows\system32\WSDApi.dll 2017-05-08 13:58 - 2017-05-08 13:58 - 00555520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSDApi.dll 2017-05-08 13:58 - 2017-05-08 13:58 - 00514048 _____ (Microsoft Corporation) C:\Windows\system32\DevicePairing.dll 2017-05-08 13:58 - 2017-05-08 13:58 - 00465408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DevicePairing.dll 2017-05-08 13:58 - 2017-05-08 13:58 - 00309760 _____ (Microsoft Corporation) C:\Windows\system32\WSDMon.dll 2017-05-08 13:58 - 2017-05-08 13:58 - 00211968 _____ (Microsoft Corporation) C:\Windows\system32\QSHVHOST.DLL 2017-05-08 13:58 - 2017-05-08 13:58 - 00182784 _____ (Microsoft Corporation) C:\Windows\system32\rascfg.dll 2017-05-08 13:58 - 2017-05-08 13:58 - 00162304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rascfg.dll 2017-05-08 13:58 - 2017-05-08 13:58 - 00155648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\QSHVHOST.DLL 2017-05-08 13:58 - 2017-05-08 13:58 - 00128512 _____ (Microsoft Corporation) C:\Windows\splwow64.exe 2017-05-08 13:58 - 2017-05-08 13:58 - 00128000 _____ (Microsoft Corporation) C:\Windows\system32\QSVRMGMT.DLL 2017-05-08 13:58 - 2017-05-08 13:58 - 00094208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\QSVRMGMT.DLL 2017-05-08 13:58 - 2017-05-08 13:58 - 00086336 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pdc.sys 2017-05-08 13:58 - 2017-05-08 13:58 - 00080896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wanarp.sys 2017-05-08 13:58 - 2017-05-08 13:58 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\rasdiag.dll 2017-05-08 13:58 - 2017-05-08 13:58 - 00074752 _____ (Microsoft Corporation) C:\Windows\system32\vsstrace.dll 2017-05-08 13:58 - 2017-05-08 13:58 - 00072192 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndproxy.sys 2017-05-08 13:58 - 2017-05-08 13:58 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rasdiag.dll 2017-05-08 13:58 - 2017-05-08 13:58 - 00058176 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dam.sys 2017-05-08 13:58 - 2017-05-08 13:58 - 00055296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vsstrace.dll 2017-05-08 13:58 - 2017-05-08 13:58 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\kmddsp.tsp 2017-05-08 13:58 - 2017-05-08 13:58 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\rasmxs.dll 2017-05-08 13:58 - 2017-05-08 13:58 - 00039744 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\intelpep.sys 2017-05-08 13:58 - 2017-05-08 13:58 - 00039424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kmddsp.tsp 2017-05-08 13:58 - 2017-05-08 13:58 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rasmxs.dll 2017-05-08 13:58 - 2017-05-08 13:58 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\rasser.dll 2017-05-08 13:58 - 2017-05-08 13:58 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndistapi.sys 2017-05-08 13:58 - 2017-05-08 13:58 - 00022528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rasser.dll 2017-05-08 13:58 - 2017-05-08 13:58 - 00016896 _____ (Microsoft Corporation) C:\Windows\system32\eventcls.dll 2017-05-08 13:58 - 2017-05-08 13:58 - 00015360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\eventcls.dll 2017-05-08 13:55 - 2017-05-08 13:55 - 00672984 _____ (Microsoft Corporation) C:\Windows\system32\MDMAgent.exe 2017-05-08 13:55 - 2017-05-08 13:55 - 00463872 _____ (Microsoft Corporation) C:\Windows\system32\SystemSettings.Handlers.dll 2017-05-08 13:48 - 2017-05-12 18:11 - 00000000 ____D C:\Program Files (x86)\IObit 2017-05-08 13:48 - 2017-05-08 19:17 - 00000000 ____D C:\Users\Neo\AppData\Roaming\IObit 2017-05-08 13:48 - 2017-05-08 19:17 - 00000000 ____D C:\Users\Neo\AppData\LocalLow\IObit 2017-05-08 13:48 - 2017-05-08 19:17 - 00000000 ____D C:\ProgramData\IObit 2017-05-08 13:48 - 2017-05-08 13:48 - 00000000 ____D C:\Windows\Tasks\ImCleanDisabled 2017-05-08 13:48 - 2017-05-08 13:48 - 00000000 ____D C:\ProgramData\ProductData 2017-05-08 13:48 - 2017-05-08 13:48 - 00000000 ____D C:\ProgramData\{74E9F814-C737-42CC-B721-DBBC4059367A} 2017-05-07 16:38 - 2017-05-13 11:46 - 00000054 _____ C:\Users\Neo\AppData\Roaming\updater.cfg 2017-05-07 16:38 - 2017-05-07 16:44 - 00000000 ____D C:\Users\Neo\AppData\Local\LooksBuilder 2017-05-07 16:37 - 2017-05-07 16:37 - 00000000 ____D C:\Users\Neo\AppData\Roaming\Red Giant Link 2017-05-07 16:36 - 2017-05-07 16:36 - 00000000 ____D C:\ProgramData\RedGiant 2017-05-05 20:22 - 2017-05-14 20:05 - 00000000 ____D C:\Users\Neo\Desktop\Musique pour Edit PvP 2017-05-05 20:07 - 2017-05-05 20:07 - 00000000 ____D C:\Users\Neo\Documents\OFX Presets 2017-05-05 20:06 - 2017-05-20 18:56 - 00000000 ____D C:\Users\Neo\Desktop\Vidéos Random 2017-05-04 16:56 - 2017-05-02 00:32 - 01988032 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6438205.dll 2017-05-04 16:56 - 2017-05-02 00:32 - 01589696 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6438205.dll 2017-05-03 20:39 - 2017-05-03 20:39 - 00000000 ____D C:\Users\Neo\AppData\Roaming\GenArts 2017-05-03 20:26 - 2017-05-03 20:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GenArts Sapphire OFX 2017-05-03 20:26 - 2017-05-03 20:26 - 00000000 ____D C:\Program Files\Common Files\OFX 2017-05-03 20:26 - 2017-05-03 20:26 - 00000000 ____D C:\Program Files (x86)\GenArts 2017-05-03 20:26 - 2010-02-04 07:58 - 00584376 _____ (Intel Corporation) C:\Windows\system32\libiomp5md.dll 2017-05-03 20:26 - 2010-02-04 07:40 - 00575672 _____ (Intel Corporation) C:\Windows\SysWOW64\libiomp5md.dll 2017-05-03 20:16 - 2017-05-03 20:16 - 00000103 _____ C:\Windows\MSUTIL.INI 2017-05-03 20:16 - 2017-05-03 20:16 - 00000000 ____D C:\ProgramData\GenArts 2017-05-02 10:09 - 2017-05-02 10:09 - 00109696 _____ (Razer Inc.) C:\Windows\system32\RzChromaSDK64.dll 2017-05-02 10:09 - 2017-05-02 10:09 - 00102016 _____ (Razer Inc.) C:\Windows\SysWOW64\RzChromaSDK.dll 2017-05-02 08:40 - 2017-05-02 08:40 - 00048776 _____ (Razer Inc.) C:\Windows\SysWOW64\RzAPIChromaSDK.dll 2017-05-01 22:00 - 2017-05-01 22:00 - 00097856 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll 2017-05-01 22:00 - 2017-05-01 22:00 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java 2017-05-01 22:00 - 2017-05-01 22:00 - 00000000 ____D C:\Program Files (x86)\Java 2017-04-30 16:01 - 2017-05-14 11:44 - 00000000 ____D C:\Users\Neo\AppData\Roaming\ZHP 2017-04-30 16:01 - 2017-04-30 21:33 - 00000000 ____D C:\Users\Neo\AppData\Local\ZHP 2017-04-30 15:32 - 2017-04-30 15:32 - 00300832 _____ (Sysinternals - www.sysinternals.com) C:\Users\Neo\AppData\Local\Temptcpview.exe 2017-04-30 14:59 - 2017-04-20 03:57 - 01988216 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6438189.dll 2017-04-30 14:59 - 2017-04-20 03:57 - 01589880 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6438189.dll 2017-04-29 23:02 - 2017-04-29 23:02 - 00000706 _____ C:\Users\Neo\Documents\Bureau - Raccourci.lnk 2017-04-28 19:21 - 2017-05-24 16:25 - 00000000 ____D C:\Users\Neo\AppData\Roaming\AnyDesk 2017-04-28 19:21 - 2017-04-28 19:22 - 00000000 ____D C:\ProgramData\AnyDesk 2017-04-27 19:34 - 2017-05-06 19:32 - 00000000 ____D C:\Users\Neo\Desktop\Pack d'effets SVP ==================== Un mois - Modifiés - fichiers et dossiers ======== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2017-05-26 21:13 - 2017-02-06 22:09 - 00000000 ____D C:\Users\Neo\AppData\Roaming\.minecraft 2017-05-26 21:10 - 2017-04-01 11:40 - 00000000 ____D C:\Users\Neo\AppData\Local\ElevatedDiagnostics 2017-05-26 21:09 - 2017-02-07 20:20 - 00000000 ____D C:\Users\Neo\AppData\Roaming\Skype 2017-05-26 19:19 - 2017-02-06 20:38 - 00000000 ____D C:\Users\Neo\AppData\LocalLow\Mozilla 2017-05-26 19:17 - 2017-02-08 18:52 - 00000000 ____D C:\Users\Neo\AppData\Local\Pokemon Showdown 2017-05-26 17:21 - 2017-02-06 20:35 - 00000000 ____D C:\ProgramData\NVIDIA 2017-05-26 17:18 - 2013-08-22 15:36 - 00000000 ____D C:\Windows\Inf 2017-05-26 10:55 - 2017-02-08 16:54 - 00000000 ____D C:\Users\Neo\AppData\Local\Adobe 2017-05-25 17:34 - 2017-02-06 20:21 - 00003600 _____ C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2688126532-4070146665-1156163858-1001 2017-05-25 15:54 - 2017-02-20 12:27 - 00000000 ____D C:\Users\Neo\Desktop\Musique 2017-05-24 22:41 - 2017-02-15 23:31 - 00000000 ____D C:\Fraps 2017-05-24 22:39 - 2017-03-24 18:59 - 00000000 ____D C:\Users\Neo\AppData\Roaming\Process Hacker 2 2017-05-24 22:36 - 2017-02-07 20:12 - 00000000 ____D C:\Users\Neo\AppData\Local\Google 2017-05-24 22:36 - 2017-02-06 20:55 - 00000000 ____D C:\Program Files (x86)\Google 2017-05-24 22:34 - 2017-02-06 20:35 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information 2017-05-24 21:48 - 2017-02-13 18:33 - 00000000 ____D C:\Users\Neo\Desktop\Logiciels 2017-05-24 21:15 - 2013-08-22 16:45 - 00000006 ____H C:\Windows\Tasks\SA.DAT 2017-05-24 18:31 - 2017-02-22 20:04 - 00000000 ____D C:\Users\Neo\AppData\Local\Mirillis 2017-05-24 16:45 - 2017-02-09 22:06 - 00000000 ____D C:\Users\Neo\AppData\Roaming\TS3Client 2017-05-23 19:54 - 2017-04-16 13:18 - 00000000 ____D C:\Users\Neo\AppData\Roaming\HandBrake 2017-05-23 17:02 - 2017-02-08 16:59 - 00000000 ____D C:\Users\Neo\AppData\Local\CrashDumps 2017-05-23 17:02 - 2014-11-21 00:46 - 01734474 _____ C:\Windows\system32\PerfStringBackup.INI 2017-05-23 17:02 - 2014-11-21 00:03 - 00774688 _____ C:\Windows\system32\perfh00C.dat 2017-05-23 17:02 - 2014-11-21 00:03 - 00151426 _____ C:\Windows\system32\perfc00C.dat 2017-05-23 16:56 - 2017-02-06 20:46 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation 2017-05-23 16:55 - 2017-02-06 20:37 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2017-05-23 16:55 - 2017-02-06 20:37 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox 2017-05-23 16:19 - 2017-02-06 20:34 - 00000000 ____D C:\ProgramData\NVIDIA Corporation 2017-05-23 16:08 - 2017-02-09 20:42 - 00000000 ____D C:\Windows\system32\MRT 2017-05-23 16:05 - 2017-02-09 20:42 - 132223576 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe 2017-05-23 12:23 - 2017-02-06 20:34 - 00000000 ____D C:\Program Files\NVIDIA Corporation 2017-05-23 12:23 - 2017-02-06 20:34 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation 2017-05-18 16:10 - 2013-08-22 15:25 - 00262144 ___SH C:\Windows\system32\config\BBI 2017-05-18 15:56 - 2017-02-13 19:14 - 00000000 ____D C:\AdwCleaner 2017-05-18 09:33 - 2017-04-07 17:31 - 00001951 _____ C:\Windows\NvTelemetryContainerRecovery.bat 2017-05-18 07:55 - 2017-02-06 20:35 - 00001951 _____ C:\Windows\NvContainerRecovery.bat 2017-05-18 07:48 - 2017-02-06 20:35 - 06437824 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll 2017-05-18 07:48 - 2017-02-06 20:35 - 02479736 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll 2017-05-18 07:48 - 2017-02-06 20:35 - 01762936 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll 2017-05-18 07:48 - 2017-02-06 20:35 - 00548984 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshext.dll 2017-05-18 07:48 - 2017-02-06 20:35 - 00392312 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll 2017-05-18 07:48 - 2017-02-06 20:35 - 00081856 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshextr.dll 2017-05-18 07:48 - 2017-02-06 20:35 - 00069752 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll 2017-05-17 17:37 - 2017-02-06 20:16 - 00000000 ____D C:\Users\Neo 2017-05-16 20:09 - 2017-02-06 20:35 - 07993157 _____ C:\Windows\system32\nvcoproc.bin 2017-05-15 21:38 - 2017-02-06 20:16 - 00000000 ____D C:\Users\Neo\AppData\Roaming\Adobe 2017-05-15 21:32 - 2017-02-20 12:07 - 00000000 ____D C:\Users\Neo\Desktop\Packs de Textures 2017-05-14 20:02 - 2017-02-23 19:13 - 00000000 ____D C:\Users\Neo\AppData\Roaming\Audacity 2017-05-13 15:20 - 2017-02-22 20:00 - 00000425 _____ C:\Users\Neo\AppData\Local\UserProducts.xml 2017-05-13 11:33 - 2017-03-01 21:43 - 00000000 ____D C:\Users\Neo\Desktop\Vérif 2017-05-12 17:13 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\rescache 2017-05-11 18:21 - 2017-04-07 23:08 - 00000000 ____D C:\Users\Neo\AppData\Local\AxCrypt 2017-05-11 16:39 - 2017-03-15 23:08 - 00000000 ___RD C:\Program Files (x86)\Skype 2017-05-10 17:11 - 2013-08-22 16:44 - 00405064 _____ C:\Windows\system32\FNTCACHE.DAT 2017-05-10 17:07 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\PolicyDefinitions 2017-05-10 13:02 - 2013-08-22 17:20 - 00000000 ____D C:\Windows\CbsTemp 2017-05-10 11:26 - 2017-03-18 18:31 - 00004496 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater 2017-05-10 11:26 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\SysWOW64\Macromed 2017-05-10 11:26 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\system32\Macromed 2017-05-10 11:22 - 2017-02-07 20:20 - 00000000 ____D C:\ProgramData\Skype 2017-05-08 13:53 - 2017-02-20 12:05 - 00000000 ____D C:\Users\Neo\Desktop\Jeux - Annexe 2017-05-08 13:53 - 2017-02-06 19:07 - 00000000 ____D C:\Windows\Panther 2017-05-07 22:35 - 2017-02-06 20:16 - 00000000 ____D C:\Users\Neo\AppData\Local\Packages 2017-05-07 22:35 - 2013-08-22 17:36 - 00000000 ___HD C:\Program Files\WindowsApps 2017-05-07 22:35 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\AppReadiness 2017-05-07 22:25 - 2017-02-20 12:00 - 00000000 ____D C:\Users\Neo\Desktop\GFX 2017-05-03 22:21 - 2017-04-01 19:10 - 01755256 _____ (NVIDIA Corporation) C:\Windows\system32\nvspbridge64.dll 2017-05-03 22:21 - 2017-04-01 19:10 - 01317496 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspbridge.dll 2017-05-03 22:21 - 2017-04-01 19:10 - 00121464 _____ C:\Windows\system32\NvRtmpStreamer64.dll 2017-05-03 21:08 - 2017-02-11 21:01 - 00000000 ____D C:\Users\Neo\AppData\Roaming\Sony 2017-05-01 22:04 - 2017-02-06 21:09 - 00000000 ____D C:\ProgramData\Oracle 2017-04-30 12:27 - 2013-08-22 17:36 - 00000000 ___HD C:\Windows\system32\GroupPolicy 2017-04-30 12:27 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\SysWOW64\GroupPolicy 2017-04-27 20:28 - 2017-02-20 12:15 - 00000000 ____D C:\Users\Neo\Desktop\Polices d'écriture 2017-04-26 14:05 - 2017-04-17 12:24 - 00000034 _____ C:\Users\Neo\AppData\Roaming\AdobeWLCMCache.dat 2017-04-26 14:02 - 2017-02-13 19:11 - 00000000 ____D C:\Users\Neo\Desktop\MC ==================== Fichiers à la racine de certains dossiers ======= 2017-04-17 12:24 - 2017-04-26 14:05 - 0000034 _____ () C:\Users\Neo\AppData\Roaming\AdobeWLCMCache.dat 2017-05-07 16:38 - 2017-05-13 11:46 - 0000054 _____ () C:\Users\Neo\AppData\Roaming\updater.cfg 2017-04-30 15:32 - 2017-04-30 15:32 - 0300832 _____ (Sysinternals - www.sysinternals.com) C:\Users\Neo\AppData\Local\Temptcpview.exe 2017-02-22 20:00 - 2017-02-22 20:00 - 0000003 _____ () C:\Users\Neo\AppData\Local\updater.log 2017-02-22 20:00 - 2017-05-13 15:20 - 0000425 _____ () C:\Users\Neo\AppData\Local\UserProducts.xml Fichiers à déplacer ou supprimer: ==================== C:\Users\Neo\ZHPCleaner.exe Certains fichiers dans TEMP: ==================== 2017-05-24 22:37 - 2017-05-24 16:23 - 1774792 _____ () C:\Users\Neo\AppData\Local\Temp\AnyDeskUninst7988.exe 2017-05-23 16:16 - 2017-05-01 22:14 - 0367552 _____ (NVIDIA Corporation) C:\Users\Neo\AppData\Local\Temp\nvStInst.exe ==================== Bamital & volsnap ====================== (Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.) C:\Windows\system32\winlogon.exe => Le fichier est signé numériquement C:\Windows\system32\wininit.exe => Le fichier est signé numériquement C:\Windows\explorer.exe => Le fichier est signé numériquement C:\Windows\SysWOW64\explorer.exe => Le fichier est signé numériquement C:\Windows\system32\svchost.exe => Le fichier est signé numériquement C:\Windows\SysWOW64\svchost.exe => Le fichier est signé numériquement C:\Windows\system32\services.exe => Le fichier est signé numériquement C:\Windows\system32\User32.dll => Le fichier est signé numériquement C:\Windows\SysWOW64\User32.dll => Le fichier est signé numériquement C:\Windows\system32\userinit.exe => Le fichier est signé numériquement C:\Windows\SysWOW64\userinit.exe => Le fichier est signé numériquement C:\Windows\system32\rpcss.dll => Le fichier est signé numériquement C:\Windows\system32\dnsapi.dll => Le fichier est signé numériquement C:\Windows\SysWOW64\dnsapi.dll => Le fichier est signé numériquement C:\Windows\system32\Drivers\volsnap.sys => Le fichier est signé numériquement LastRegBack: 2017-05-18 12:03 ==================== Fin de FRST.txt ============================