Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 16-08-2017 Exécuté par Tarik (administrateur) sur TARIK-PC (17-08-2017 00:15:32) Exécuté depuis C:\Users\Tarik\Desktop Profils chargés: Tarik (Profils disponibles: Tarik) Platform: Windows 7 Ultimate Service Pack 1 (X64) Langue: Français (France) Internet Explorer Version 8 (Navigateur par défaut: Chrome) Mode d'amorçage: Normal Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processus (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.) (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\afwServ.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe (Tonec Inc.) C:\Program Files (x86)\Internet Download Manager\IDMan.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe (Tonec Inc.) C:\Program Files (x86)\Internet Download Manager\IEMonitor.exe (AVAST Software s.r.o.) C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe (Microsoft Corporation) C:\Windows\System32\taskmgr.exe ==================== Registre (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.) HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2397120 2016-11-14] (NVIDIA Corporation) HKLM\...\Run: [ShadowPlay] => "C:\Windows\system32\rundll32.exe" C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [213832 2017-08-13] (AVAST Software) HKLM\...\RunOnce: [!MOF64] => cmd.exe /c "cd %windir%\microsoft.net\framework64\v4.0.30319 & mofcomp.exe -autorecover mof\servicemodel.mof & mofcomp.exe -autorecover mof\servicemodel35.mof & mofcomp.exe -autorecover aspnet.mof & c (l'élément de données a 182 caractères en plus). HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION HKU\S-1-5-21-537063883-398577583-2752917369-1000\...\Run: [IDMan] => C:\Program Files (x86)\Internet Download Manager\IDMan.exe [4014136 2017-08-05] (Tonec Inc.) ==================== Internet (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.) Tcpip\Parameters: [DhcpNameServer] 62.251.230.206 62.251.229.241 Tcpip\..\Interfaces\{FF623F66-EE70-4BDF-856E-620B588A91B6}: [DhcpNameServer] 62.251.230.206 62.251.229.241 Internet Explorer: ================== SearchScopes: HKU\S-1-5-21-537063883-398577583-2752917369-1000 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = BHO: IDM integration (IDMIEHlprObj Class) -> {0055C089-8582-441B-A0BF-17B458C2A3A8} -> C:\Program Files (x86)\Internet Download Manager\IDMIECC64.dll [2017-07-12] (Internet Download Manager, Tonec Inc.) BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2017-08-13] (AVAST Software) BHO-x32: IDM integration (IDMIEHlprObj Class) -> {0055C089-8582-441B-A0BF-17B458C2A3A8} -> C:\Program Files (x86)\Internet Download Manager\IDMIECC.dll [2017-07-12] (Internet Download Manager, Tonec Inc.) BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2017-08-13] (AVAST Software) Filter: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\System32\urlmon.dll [2010-11-21] (Microsoft Corporation) Filter-x32: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll [2010-11-21] (Microsoft Corporation) Filter: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\System32\urlmon.dll [2010-11-21] (Microsoft Corporation) Filter-x32: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll [2010-11-21] (Microsoft Corporation) FireFox: ======== FF HKU\S-1-5-21-537063883-398577583-2752917369-1000\...\SeaMonkey\Extensions: [mozilla_cc@internetdownloadmanager.com] - C:\Users\Tarik\AppData\Roaming\IDM\idmmzcc5 FF Extension: (IDM CC) - C:\Users\Tarik\AppData\Roaming\IDM\idmmzcc5 [2017-08-13] [non signé] FF HKU\S-1-5-21-537063883-398577583-2752917369-1000\...\SeaMonkey\Extensions: [mozilla_cc2@internetdownloadmanager.com] - C:\Program Files (x86)\Internet Download Manager\idmmzcc2.xpi FF Extension: (IDM integration) - C:\Program Files (x86)\Internet Download Manager\idmmzcc2.xpi [2017-01-26] FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2016-11-14] (NVIDIA Corporation) FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2016-11-14] (NVIDIA Corporation) Chrome: ======= CHR HomePage: Default -> hxxp://www.google.co.ma/ CHR StartupUrls: Default -> "hxxps://www.google.co.ma/" CHR Profile: C:\Users\Tarik\AppData\Local\Google\Chrome\User Data\Default [2017-08-17] CHR Extension: (Google Slides) - C:\Users\Tarik\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-08-13] CHR Extension: (Google Docs) - C:\Users\Tarik\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-08-13] CHR Extension: (Google Drive) - C:\Users\Tarik\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-08-13] CHR Extension: (YouTube) - C:\Users\Tarik\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-08-13] CHR Extension: (Google Sheets) - C:\Users\Tarik\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-08-13] CHR Extension: (FBDown Video Downloader) - C:\Users\Tarik\AppData\Local\Google\Chrome\User Data\Default\Extensions\fhplmmllnpjjlncfjpbbpjadoeijkogc [2017-08-13] CHR Extension: (Google Docs hors connexion) - C:\Users\Tarik\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-08-13] CHR Extension: (Extension Google Keep pour Chrome) - C:\Users\Tarik\AppData\Local\Google\Chrome\User Data\Default\Extensions\lpcaedmchfhocbbapmcbpinfpgnhiddi [2017-08-13] CHR Extension: (Planner 5D Design d'intérieur) - C:\Users\Tarik\AppData\Local\Google\Chrome\User Data\Default\Extensions\mcafejemebbngbglfoinpoaannbihjna [2017-08-13] CHR Extension: (Extension AllDebrid ) - C:\Users\Tarik\AppData\Local\Google\Chrome\User Data\Default\Extensions\mdjbgnpehbhpibonmjjjbjaoechnlcaf [2017-08-14] CHR Extension: (Right Inbox for Gmail) - C:\Users\Tarik\AppData\Local\Google\Chrome\User Data\Default\Extensions\mflnemhkomgploogccdmcloekbloobgb [2017-08-13] CHR Extension: (IDM Integration Module) - C:\Users\Tarik\AppData\Local\Google\Chrome\User Data\Default\Extensions\ngpampappnmepgilojfohadhhmbhlaek [2017-08-13] CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Tarik\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-08-13] CHR Extension: (AdF.ly Skipper ★WORKING: 8/12/2017★) - C:\Users\Tarik\AppData\Local\Google\Chrome\User Data\Default\Extensions\obnfifcganohemahpomajbhocfkdgmjb [2017-08-13] CHR Extension: (Gmail) - C:\Users\Tarik\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-08-13] CHR Extension: (Chrome Media Router) - C:\Users\Tarik\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-08-13] CHR Extension: (Clearbit Connect - Supercharge Gmail™) - C:\Users\Tarik\AppData\Local\Google\Chrome\User Data\Default\Extensions\pmnhcgfcafcnkbengdcanjablaabjplo [2017-08-13] CHR Extension: (Eiffel Tower) - C:\Users\Tarik\AppData\Local\Google\Chrome\User Data\Default\Extensions\ppbaibkigenhdcommebegmmmpoolmpip [2017-08-13] CHR HKLM\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files (x86)\Internet Download Manager\IDMGCExt.crx [2017-08-05] CHR HKLM-x32\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files (x86)\Internet Download Manager\IDMGCExt.crx [2017-08-05] StartMenuInternet: Google Chrome.MSUWTEXXHEVH3ZXIWVZFYY64EA - C:\Users\Tarik\AppData\Local\Google\Chrome\Application\chrome.exe ==================== Services (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe [7430992 2017-08-13] (AVAST Software s.r.o.) R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [263312 2017-08-13] (AVAST Software) R2 avast! Firewall; C:\Program Files\AVAST Software\Avast\afwServ.exe [311592 2017-08-13] (AVAST Software) S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [1530888 2017-08-13] () R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1163712 2016-11-14] (NVIDIA Corporation) R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1879488 2016-11-14] (NVIDIA Corporation) S3 NvStreamNetworkSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe [3632576 2016-11-14] (NVIDIA Corporation) S2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [2521024 2016-11-14] (NVIDIA Corporation) S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2016-05-15] (Microsoft Corporation) ===================== Pilotes (Avec liste blanche) ====================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R1 aswbidsdriver; C:\Windows\system32\drivers\aswbidsdrivera.sys [320008 2017-08-13] (AVAST Software s.r.o.) R0 aswbidsh; C:\Windows\system32\drivers\aswbidsha.sys [198976 2017-08-13] (AVAST Software s.r.o.) R0 aswblog; C:\Windows\system32\drivers\aswbloga.sys [343288 2017-08-13] (AVAST Software s.r.o.) R0 aswbuniv; C:\Windows\system32\drivers\aswbuniva.sys [57728 2017-08-13] (AVAST Software s.r.o.) S3 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [46984 2017-08-13] (AVAST Software) R1 aswKbd; C:\Windows\system32\drivers\aswKbd.sys [41800 2017-08-13] (AVAST Software) R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [146704 2017-08-13] (AVAST Software) R3 aswNetNd6; C:\Windows\System32\DRIVERS\aswNetNd6.sys [38152 2017-08-13] (AVAST Software) R1 aswNetSec; C:\Windows\system32\drivers\aswNetSec.sys [554528 2017-08-13] (AVAST Software) R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [110352 2017-08-13] (AVAST Software) R0 aswRvrt; C:\Windows\system32\drivers\aswRvrt.sys [84392 2017-08-13] (AVAST Software) R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1015880 2017-08-13] (AVAST Software) R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [585608 2017-08-13] (AVAST Software) R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [198768 2017-08-13] (AVAST Software) R0 aswVmm; C:\Windows\system32\drivers\aswVmm.sys [361336 2017-08-13] (AVAST Software) S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [27584 2016-11-14] (NVIDIA Corporation) R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [56384 2016-11-14] (NVIDIA Corporation) ==================== NetSvcs (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) ==================== Un mois - Créés - fichiers et dossiers ======== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2017-08-17 00:15 - 2017-08-17 00:15 - 000012719 _____ C:\Users\Tarik\Desktop\FRST.txt 2017-08-17 00:12 - 2017-08-17 00:15 - 000000000 ____D C:\FRST 2017-08-17 00:12 - 2017-08-17 00:12 - 002395648 _____ (Farbar) C:\Users\Tarik\Desktop\FRST64.exe 2017-08-16 18:52 - 2017-08-16 18:52 - 000000000 ____D C:\ProgramData\SWCUTemp 2017-08-16 18:42 - 2017-08-16 18:42 - 000000792 _____ C:\Users\Tarik\Desktop\ZHPCleaner.lnk 2017-08-16 18:41 - 2017-08-16 18:41 - 002854784 _____ C:\Users\Tarik\Desktop\ZHPCleaner.exe 2017-08-16 18:21 - 2017-08-16 18:24 - 065033984 _____ (Malwarebytes ) C:\Users\Tarik\Desktop\mb3-setup-consumer-3.1.2.1733-1.0.160-1.0.2251.exe 2017-08-16 18:06 - 2017-08-16 18:06 - 004110280 _____ C:\Users\Tarik\Desktop\adwcleaner_6.047.exe 2017-08-16 17:57 - 2017-08-16 18:14 - 000000000 ____D C:\AdwCleaner 2017-08-16 14:14 - 2017-08-16 20:53 - 000000000 ____D C:\Users\Tarik\AppData\Roaming\ZHP 2017-08-16 14:14 - 2017-08-16 18:42 - 000000000 ____D C:\Users\Tarik\AppData\Local\ZHP 2017-08-16 14:14 - 2017-08-16 14:24 - 000000782 _____ C:\Users\Tarik\Desktop\ZHPDiag.lnk 2017-08-16 14:14 - 2017-08-16 14:14 - 002812800 _____ C:\Users\Tarik\Desktop\ZHPDiag3.exe 2017-08-16 12:50 - 2017-08-16 14:42 - 000000000 ____D C:\Users\Tarik\AppData\Roaming\TS3Client 2017-08-16 12:48 - 2017-08-16 12:48 - 000000971 _____ C:\Users\Public\Desktop\TeamSpeak 3 Client.lnk 2017-08-16 12:48 - 2017-08-16 12:48 - 000000933 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamSpeak 3 Client.lnk 2017-08-16 12:48 - 2017-08-16 12:48 - 000000000 ____D C:\Program Files\TeamSpeak 3 Client 2017-08-16 12:32 - 2017-08-16 12:32 - 000001437 _____ C:\Users\Tarik\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk 2017-08-15 19:34 - 2017-08-15 19:34 - 000000000 ____D C:\Users\Tarik\AppData\Roaming\MPC-HC 2017-08-15 18:47 - 2017-08-15 18:47 - 000001450 _____ C:\Users\Tarik\Desktop\Punisher.lnk 2017-08-13 23:21 - 2017-08-13 23:21 - 000001248 _____ C:\Users\Tarik\Desktop\Adrenaline.lnk 2017-08-13 23:20 - 2017-08-13 23:20 - 000001402 _____ C:\Users\Tarik\Desktop\Hack nasef_pro.lnk 2017-08-13 23:17 - 2017-08-13 23:17 - 000001485 _____ C:\Users\Tarik\Desktop\Hack Knife 3_pro_V2.0.lnk 2017-08-13 23:16 - 2017-08-13 23:16 - 000001400 _____ C:\Users\Tarik\Desktop\DLLInjector v2.lnk 2017-08-13 23:16 - 2017-08-13 23:16 - 000001371 _____ C:\Users\Tarik\Desktop\HACK AccessoireS.lnk 2017-08-13 23:16 - 2017-08-13 23:16 - 000001320 _____ C:\Users\Tarik\Desktop\Hacker Dvl.lnk 2017-08-13 18:26 - 2017-08-13 18:26 - 000000000 ___HD C:\$AV_ASW 2017-08-13 18:08 - 2017-08-13 18:11 - 000000000 ____D C:\Users\Tarik\AppData\Local\CrashDumps 2017-08-13 17:22 - 2017-08-13 17:23 - 000642576 _____ C:\Windows\Minidump\081317-34647-01.dmp 2017-08-13 17:22 - 2017-08-13 17:22 - 322952720 _____ C:\Windows\MEMORY.DMP 2017-08-13 17:22 - 2017-08-13 17:22 - 000000000 ____D C:\Windows\Minidump 2017-08-13 16:42 - 2017-08-13 17:02 - 000003918 _____ C:\Windows\System32\Tasks\SafeZone scheduled Autoupdate 1502638924 2017-08-13 16:42 - 2017-08-13 16:42 - 000001047 _____ C:\Users\Public\Desktop\Avast SafeZone Browser.lnk 2017-08-13 16:42 - 2017-08-13 16:42 - 000001047 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast SafeZone Browser.lnk 2017-08-13 16:41 - 2017-08-13 16:41 - 000041800 _____ (AVAST Software) C:\Windows\system32\Drivers\aswKbd.sys 2017-08-13 16:37 - 2017-08-13 16:37 - 000000000 ____D C:\Users\Tarik\AppData\Roaming\AVAST Software 2017-08-13 16:36 - 2017-08-13 16:36 - 000001926 _____ C:\Users\Public\Desktop\Avast Premier.lnk 2017-08-13 16:36 - 2017-08-13 16:36 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software 2017-08-13 16:35 - 2017-08-13 16:35 - 001015880 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsnx.sys 2017-08-13 16:35 - 2017-08-13 16:35 - 000146704 _____ (AVAST Software) C:\Windows\system32\Drivers\aswmonflt.sys 2017-08-13 16:35 - 2017-08-13 16:35 - 000003914 _____ C:\Windows\System32\Tasks\Avast Emergency Update 2017-08-13 16:35 - 2017-08-13 16:34 - 000585608 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys 2017-08-13 16:35 - 2017-08-13 16:34 - 000554528 _____ (AVAST Software) C:\Windows\system32\Drivers\aswNetSec.sys 2017-08-13 16:35 - 2017-08-13 16:34 - 000400464 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe 2017-08-13 16:35 - 2017-08-13 16:34 - 000361336 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys 2017-08-13 16:35 - 2017-08-13 16:34 - 000343288 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswbloga.sys 2017-08-13 16:35 - 2017-08-13 16:34 - 000320008 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswbidsdrivera.sys 2017-08-13 16:35 - 2017-08-13 16:34 - 000198976 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswbidsha.sys 2017-08-13 16:35 - 2017-08-13 16:34 - 000198768 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys 2017-08-13 16:35 - 2017-08-13 16:34 - 000110352 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys 2017-08-13 16:35 - 2017-08-13 16:34 - 000084392 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys 2017-08-13 16:35 - 2017-08-13 16:34 - 000057728 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswbuniva.sys 2017-08-13 16:35 - 2017-08-13 16:34 - 000046984 _____ (AVAST Software) C:\Windows\system32\Drivers\aswHwid.sys 2017-08-13 16:34 - 2017-08-13 16:34 - 000038152 _____ (AVAST Software) C:\Windows\system32\Drivers\aswNetNd6.sys 2017-08-13 16:30 - 2017-08-13 16:41 - 000000000 ____D C:\Program Files\AVAST Software 2017-08-13 16:29 - 2017-08-13 17:00 - 000000000 ____D C:\ProgramData\AVAST Software 2017-08-13 16:04 - 2017-08-15 18:55 - 000000000 ____D C:\Users\Tarik\AppData\Roaming\dll 2.0 2017-08-13 15:17 - 2017-08-13 15:17 - 000000000 ____D C:\Users\Tarik\Documents\BlackSquad 2017-08-13 15:17 - 2017-08-13 15:17 - 000000000 ____D C:\Users\Tarik\AppData\Roaming\NVIDIA 2017-08-13 15:17 - 2010-06-02 04:55 - 000527192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_7.dll 2017-08-13 15:17 - 2010-06-02 04:55 - 000518488 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_7.dll 2017-08-13 15:17 - 2010-06-02 04:55 - 000239960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_7.dll 2017-08-13 15:17 - 2010-06-02 04:55 - 000176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_7.dll 2017-08-13 15:17 - 2010-06-02 04:55 - 000077656 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_5.dll 2017-08-13 15:17 - 2010-06-02 04:55 - 000074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_5.dll 2017-08-13 15:17 - 2010-05-26 11:41 - 002526056 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_43.dll 2017-08-13 15:17 - 2010-05-26 11:41 - 002106216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_43.dll 2017-08-13 15:17 - 2010-05-26 11:41 - 001907552 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_43.dll 2017-08-13 15:17 - 2010-05-26 11:41 - 001868128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_43.dll 2017-08-13 15:17 - 2010-02-04 10:01 - 000530776 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_6.dll 2017-08-13 15:17 - 2010-02-04 10:01 - 000528216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_6.dll 2017-08-13 15:17 - 2010-02-04 10:01 - 000238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_6.dll 2017-08-13 15:17 - 2010-02-04 10:01 - 000176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_6.dll 2017-08-13 15:17 - 2010-02-04 10:01 - 000078680 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_4.dll 2017-08-13 15:17 - 2010-02-04 10:01 - 000074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_4.dll 2017-08-13 15:17 - 2010-02-04 10:01 - 000024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_7.dll 2017-08-13 15:17 - 2010-02-04 10:01 - 000022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_7.dll 2017-08-13 15:17 - 2009-09-04 17:44 - 000517960 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_5.dll 2017-08-13 15:17 - 2009-09-04 17:44 - 000515416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_5.dll 2017-08-13 15:17 - 2009-09-04 17:44 - 000238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_5.dll 2017-08-13 15:17 - 2009-09-04 17:44 - 000176968 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_5.dll 2017-08-13 15:17 - 2009-09-04 17:44 - 000073544 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_3.dll 2017-08-13 15:17 - 2009-09-04 17:44 - 000069464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_3.dll 2017-08-13 15:17 - 2009-09-04 17:29 - 005554512 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_42.dll 2017-08-13 15:17 - 2009-09-04 17:29 - 005501792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_42.dll 2017-08-13 15:17 - 2009-09-04 17:29 - 002582888 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_42.dll 2017-08-13 15:17 - 2009-09-04 17:29 - 002475352 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_42.dll 2017-08-13 15:17 - 2009-09-04 17:29 - 001974616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_42.dll 2017-08-13 15:17 - 2009-09-04 17:29 - 001892184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_42.dll 2017-08-13 15:17 - 2009-09-04 17:29 - 000523088 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_42.dll 2017-08-13 15:17 - 2009-09-04 17:29 - 000453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_42.dll 2017-08-13 15:17 - 2009-09-04 17:29 - 000285024 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_42.dll 2017-08-13 15:17 - 2009-09-04 17:29 - 000235344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_42.dll 2017-08-13 15:17 - 2009-03-16 14:18 - 000521560 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_4.dll 2017-08-13 15:17 - 2009-03-16 14:18 - 000517448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_4.dll 2017-08-13 15:17 - 2009-03-16 14:18 - 000235352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_4.dll 2017-08-13 15:17 - 2009-03-16 14:18 - 000174936 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_4.dll 2017-08-13 15:17 - 2009-03-16 14:18 - 000024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_6.dll 2017-08-13 15:17 - 2009-03-16 14:18 - 000022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_6.dll 2017-08-13 15:17 - 2009-03-09 15:27 - 005425496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_41.dll 2017-08-13 15:17 - 2009-03-09 15:27 - 004178264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_41.dll 2017-08-13 15:17 - 2009-03-09 15:27 - 002430312 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_41.dll 2017-08-13 15:17 - 2009-03-09 15:27 - 001846632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_41.dll 2017-08-13 15:17 - 2009-03-09 15:27 - 000520544 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_41.dll 2017-08-13 15:17 - 2009-03-09 15:27 - 000453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_41.dll 2017-08-13 15:16 - 2008-10-27 10:04 - 000518480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_3.dll 2017-08-13 15:16 - 2008-10-27 10:04 - 000514384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_3.dll 2017-08-13 15:16 - 2008-10-27 10:04 - 000235856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_3.dll 2017-08-13 15:16 - 2008-10-27 10:04 - 000175440 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_3.dll 2017-08-13 15:16 - 2008-10-27 10:04 - 000074576 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_2.dll 2017-08-13 15:16 - 2008-10-27 10:04 - 000070992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_2.dll 2017-08-13 15:16 - 2008-10-27 10:04 - 000025936 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_5.dll 2017-08-13 15:16 - 2008-10-27 10:04 - 000023376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_5.dll 2017-08-13 15:16 - 2008-10-15 06:22 - 005631312 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_40.dll 2017-08-13 15:16 - 2008-10-15 06:22 - 004379984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_40.dll 2017-08-13 15:16 - 2008-10-15 06:22 - 002605920 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_40.dll 2017-08-13 15:16 - 2008-10-15 06:22 - 002036576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_40.dll 2017-08-13 15:16 - 2008-10-15 06:22 - 000519000 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_40.dll 2017-08-13 15:16 - 2008-10-15 06:22 - 000452440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_40.dll 2017-08-13 15:16 - 2008-07-31 10:41 - 000238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_2.dll 2017-08-13 15:16 - 2008-07-31 10:41 - 000177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_2.dll 2017-08-13 15:16 - 2008-07-31 10:41 - 000072200 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_1.dll 2017-08-13 15:16 - 2008-07-31 10:41 - 000068616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_1.dll 2017-08-13 15:16 - 2008-07-31 10:40 - 000513544 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_2.dll 2017-08-13 15:16 - 2008-07-31 10:40 - 000509448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_2.dll 2017-08-13 15:16 - 2008-07-10 11:01 - 000467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_39.dll 2017-08-13 15:16 - 2008-07-10 11:00 - 004992520 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_39.dll 2017-08-13 15:16 - 2008-07-10 11:00 - 003851784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_39.dll 2017-08-13 15:16 - 2008-07-10 11:00 - 001942552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_39.dll 2017-08-13 15:16 - 2008-07-10 11:00 - 001493528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_39.dll 2017-08-13 15:16 - 2008-07-10 11:00 - 000540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_39.dll 2017-08-13 15:16 - 2008-05-30 14:19 - 000511496 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_1.dll 2017-08-13 15:16 - 2008-05-30 14:19 - 000507400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_1.dll 2017-08-13 15:16 - 2008-05-30 14:18 - 000238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_1.dll 2017-08-13 15:16 - 2008-05-30 14:18 - 000177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_1.dll 2017-08-13 15:16 - 2008-05-30 14:17 - 000068104 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_0.dll 2017-08-13 15:16 - 2008-05-30 14:17 - 000065032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_0.dll 2017-08-13 15:16 - 2008-05-30 14:17 - 000025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_4.dll 2017-08-13 15:16 - 2008-05-30 14:16 - 000028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_4.dll 2017-08-13 15:16 - 2008-05-30 14:11 - 004991496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_38.dll 2017-08-13 15:16 - 2008-05-30 14:11 - 003850760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_38.dll 2017-08-13 15:16 - 2008-05-30 14:11 - 001941528 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_38.dll 2017-08-13 15:16 - 2008-05-30 14:11 - 001491992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_38.dll 2017-08-13 15:16 - 2008-05-30 14:11 - 000540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_38.dll 2017-08-13 15:16 - 2008-05-30 14:11 - 000467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_38.dll 2017-08-13 15:16 - 2008-03-05 16:04 - 000489480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_0.dll 2017-08-13 15:16 - 2008-03-05 16:03 - 000479752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_0.dll 2017-08-13 15:16 - 2008-03-05 16:03 - 000238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_0.dll 2017-08-13 15:16 - 2008-03-05 16:03 - 000177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_0.dll 2017-08-13 15:16 - 2008-03-05 16:00 - 000028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_3.dll 2017-08-13 15:16 - 2008-03-05 16:00 - 000025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_3.dll 2017-08-13 15:16 - 2008-03-05 15:56 - 004910088 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_37.dll 2017-08-13 15:16 - 2008-03-05 15:56 - 003786760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_37.dll 2017-08-13 15:16 - 2008-03-05 15:56 - 001860120 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_37.dll 2017-08-13 15:16 - 2008-03-05 15:56 - 001420824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_37.dll 2017-08-13 15:16 - 2008-02-05 23:07 - 000529424 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_37.dll 2017-08-13 15:16 - 2008-02-05 23:07 - 000462864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_37.dll 2017-08-13 15:16 - 2007-10-22 03:40 - 000411656 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_10.dll 2017-08-13 15:16 - 2007-10-22 03:39 - 000267272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_10.dll 2017-08-13 15:16 - 2007-10-22 03:37 - 000021000 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_2.dll 2017-08-13 15:16 - 2007-10-22 03:37 - 000017928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_2.dll 2017-08-13 15:16 - 2007-10-12 15:14 - 005081608 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_36.dll 2017-08-13 15:16 - 2007-10-12 15:14 - 003734536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_36.dll 2017-08-13 15:16 - 2007-10-12 15:14 - 002006552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_36.dll 2017-08-13 15:16 - 2007-10-12 15:14 - 001374232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_36.dll 2017-08-13 15:16 - 2007-10-02 09:56 - 000508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_36.dll 2017-08-13 15:16 - 2007-10-02 09:56 - 000444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_36.dll 2017-08-13 15:16 - 2007-07-20 00:57 - 000411496 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_9.dll 2017-08-13 15:16 - 2007-07-20 00:57 - 000267112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_9.dll 2017-08-13 15:16 - 2007-07-19 18:14 - 005073256 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_35.dll 2017-08-13 15:16 - 2007-07-19 18:14 - 003727720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_35.dll 2017-08-13 15:16 - 2007-07-19 18:14 - 001985904 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_35.dll 2017-08-13 15:16 - 2007-07-19 18:14 - 001358192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_35.dll 2017-08-13 15:16 - 2007-07-19 18:14 - 000508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_35.dll 2017-08-13 15:16 - 2007-07-19 18:14 - 000444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_35.dll 2017-08-13 15:16 - 2007-06-20 20:49 - 000409960 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_8.dll 2017-08-13 15:16 - 2007-06-20 20:46 - 000266088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_8.dll 2017-08-13 15:16 - 2007-05-16 16:45 - 004496232 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_34.dll 2017-08-13 15:16 - 2007-05-16 16:45 - 003497832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_34.dll 2017-08-13 15:16 - 2007-05-16 16:45 - 001401200 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_34.dll 2017-08-13 15:16 - 2007-05-16 16:45 - 001124720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_34.dll 2017-08-13 15:16 - 2007-05-16 16:45 - 000506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_34.dll 2017-08-13 15:16 - 2007-05-16 16:45 - 000443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_34.dll 2017-08-13 15:16 - 2007-04-04 18:55 - 000403304 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_7.dll 2017-08-13 15:16 - 2007-04-04 18:55 - 000261480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_7.dll 2017-08-13 15:16 - 2007-04-04 18:54 - 000107368 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_3.dll 2017-08-13 15:16 - 2007-04-04 18:53 - 000081768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_3.dll 2017-08-13 15:16 - 2007-03-15 16:57 - 000506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_33.dll 2017-08-13 15:16 - 2007-03-15 16:57 - 000443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_33.dll 2017-08-13 15:16 - 2007-03-12 16:42 - 004494184 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_33.dll 2017-08-13 15:16 - 2007-03-12 16:42 - 003495784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_33.dll 2017-08-13 15:16 - 2007-03-12 16:42 - 001400176 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_33.dll 2017-08-13 15:16 - 2007-03-12 16:42 - 001123696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_33.dll 2017-08-13 15:16 - 2007-03-05 12:42 - 000017688 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_1.dll 2017-08-13 15:16 - 2007-03-05 12:42 - 000015128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_1.dll 2017-08-13 15:16 - 2007-01-24 15:27 - 000393576 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_6.dll 2017-08-13 15:16 - 2007-01-24 15:27 - 000255848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_6.dll 2017-08-13 15:16 - 2006-12-08 12:02 - 000251672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_5.dll 2017-08-13 15:16 - 2006-12-08 12:00 - 000390424 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_5.dll 2017-08-13 15:16 - 2006-11-29 13:06 - 004398360 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_32.dll 2017-08-13 15:16 - 2006-11-29 13:06 - 003426072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_32.dll 2017-08-13 15:16 - 2006-11-29 13:06 - 000469264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10.dll 2017-08-13 15:16 - 2006-11-29 13:06 - 000440080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10.dll 2017-08-13 15:16 - 2006-09-28 16:05 - 003977496 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_31.dll 2017-08-13 15:16 - 2006-09-28 16:05 - 002414360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_31.dll 2017-08-13 15:16 - 2006-09-28 16:05 - 000237848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_4.dll 2017-08-13 15:16 - 2006-09-28 16:04 - 000364824 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_4.dll 2017-08-13 15:16 - 2006-07-28 09:31 - 000083736 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_2.dll 2017-08-13 15:16 - 2006-07-28 09:30 - 000363288 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_3.dll 2017-08-13 15:16 - 2006-07-28 09:30 - 000236824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_3.dll 2017-08-13 15:16 - 2006-07-28 09:30 - 000062744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_2.dll 2017-08-13 15:16 - 2006-05-31 07:24 - 000230168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_2.dll 2017-08-13 15:16 - 2006-05-31 07:22 - 000354072 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_2.dll 2017-08-13 15:16 - 2006-03-31 12:41 - 003927248 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_30.dll 2017-08-13 15:16 - 2006-03-31 12:40 - 002388176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_30.dll 2017-08-13 15:16 - 2006-03-31 12:40 - 000352464 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_1.dll 2017-08-13 15:16 - 2006-03-31 12:39 - 000229584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_1.dll 2017-08-13 15:16 - 2006-03-31 12:39 - 000083664 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_1.dll 2017-08-13 15:16 - 2006-03-31 12:39 - 000062672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_1.dll 2017-08-13 15:16 - 2006-02-03 08:43 - 003830992 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_29.dll 2017-08-13 15:16 - 2006-02-03 08:43 - 002332368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_29.dll 2017-08-13 15:16 - 2006-02-03 08:42 - 000355536 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_0.dll 2017-08-13 15:16 - 2006-02-03 08:42 - 000230096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_0.dll 2017-08-13 15:16 - 2006-02-03 08:41 - 000016592 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_0.dll 2017-08-13 15:16 - 2006-02-03 08:41 - 000014032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_0.dll 2017-08-13 15:16 - 2005-12-05 18:09 - 003815120 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_28.dll 2017-08-13 15:16 - 2005-12-05 18:09 - 002323664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_28.dll 2017-08-13 15:16 - 2005-07-22 19:59 - 003807440 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_27.dll 2017-08-13 15:16 - 2005-07-22 19:59 - 002319568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_27.dll 2017-08-13 15:16 - 2005-05-26 15:34 - 003767504 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_26.dll 2017-08-13 15:16 - 2005-05-26 15:34 - 002297552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_26.dll 2017-08-13 15:16 - 2005-03-18 17:19 - 003823312 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_25.dll 2017-08-13 15:16 - 2005-03-18 17:19 - 002337488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_25.dll 2017-08-13 15:16 - 2005-02-05 19:45 - 003544272 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_24.dll 2017-08-13 15:16 - 2005-02-05 19:45 - 002222800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_24.dll 2017-08-13 14:32 - 2017-08-13 14:32 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adrenaline 2017-08-13 14:22 - 2017-08-13 14:22 - 000000000 ____D C:\Game Power 7 2017-08-13 09:06 - 2017-08-13 01:21 - 000000000 ____D C:\Windows\Panther 2017-08-13 05:14 - 2017-08-13 05:14 - 000000222 _____ C:\Users\Tarik\Desktop\Black Squad.url 2017-08-13 05:14 - 2017-08-13 05:14 - 000000000 ____D C:\Users\Tarik\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam 2017-08-13 05:02 - 2017-08-13 05:02 - 000000000 ____D C:\Users\Tarik\AppData\Local\Steam 2017-08-13 05:02 - 2017-08-13 05:02 - 000000000 ____D C:\Users\Tarik\AppData\Local\CEF 2017-08-13 04:51 - 2017-08-16 14:15 - 000000000 ____D C:\Program Files (x86)\Steam 2017-08-13 04:51 - 2017-08-13 04:51 - 000000973 _____ C:\Users\Public\Desktop\Steam.lnk 2017-08-13 04:51 - 2017-08-13 04:51 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam 2017-08-13 04:35 - 2017-08-13 04:35 - 000000000 ____D C:\Users\Tarik\Documents\BFBC2 2017-08-13 03:54 - 2017-08-13 03:54 - 000000000 ____D C:\Users\Tarik\AppData\Local\ESET 2017-08-13 03:47 - 2017-08-13 03:47 - 000000000 ____D C:\Users\Tarik\AppData\Local\NVIDIA Corporation 2017-08-13 03:44 - 2017-08-13 03:47 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation 2017-08-13 03:44 - 2017-08-13 03:44 - 000000000 ____D C:\Users\Tarik\AppData\Local\NVIDIA 2017-08-13 03:44 - 2016-11-14 13:30 - 001767712 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll 2017-08-13 03:44 - 2016-11-14 13:30 - 001756560 _____ (NVIDIA Corporation) C:\Windows\system32\nvspbridge64.dll 2017-08-13 03:44 - 2016-11-14 13:30 - 001377752 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll 2017-08-13 03:44 - 2016-11-14 13:30 - 001316136 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspbridge.dll 2017-08-13 03:44 - 2016-11-14 13:30 - 000112168 _____ C:\Windows\system32\NvRtmpStreamer64.dll 2017-08-13 03:44 - 2010-05-26 11:41 - 002401112 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_43.dll 2017-08-13 03:44 - 2010-05-26 11:41 - 001998168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_43.dll 2017-08-13 03:44 - 2010-05-26 11:41 - 000511328 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_43.dll 2017-08-13 03:44 - 2010-05-26 11:41 - 000470880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_43.dll 2017-08-13 03:44 - 2010-05-26 11:41 - 000276832 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_43.dll 2017-08-13 03:44 - 2010-05-26 11:41 - 000248672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_43.dll 2017-08-13 03:43 - 2017-08-17 00:01 - 000000000 ____D C:\ProgramData\NVIDIA 2017-08-13 03:43 - 2017-08-13 03:44 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation 2017-08-13 03:43 - 2017-08-13 03:43 - 000000000 ____D C:\Program Files (x86)\AGEIA Technologies 2017-08-13 03:43 - 2016-11-14 10:45 - 000615992 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe 2017-08-13 03:42 - 2017-08-13 03:44 - 000000000 ____D C:\ProgramData\NVIDIA Corporation 2017-08-13 03:42 - 2017-08-13 03:42 - 000000000 ____D C:\Users\Tarik\AppData\Roaming\ESET 2017-08-13 03:42 - 2016-11-14 13:30 - 000082488 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll 2017-08-13 03:42 - 2016-11-14 13:30 - 000067520 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll 2017-08-13 03:42 - 2016-11-14 12:15 - 006789056 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll 2017-08-13 03:42 - 2016-11-14 12:15 - 003528128 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll 2017-08-13 03:42 - 2016-11-14 12:15 - 002558512 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll 2017-08-13 03:42 - 2016-11-14 12:15 - 000932728 _____ (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe 2017-08-13 03:42 - 2016-11-14 12:15 - 000384888 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll 2017-08-13 03:42 - 2016-11-14 12:15 - 000062328 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll 2017-08-13 03:42 - 2016-11-14 10:09 - 007513855 _____ C:\Windows\system32\nvcoproc.bin 2017-08-13 03:41 - 2017-08-16 12:49 - 000000000 ____D C:\ProgramData\Package Cache 2017-08-13 03:40 - 2016-11-14 13:30 - 031523384 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll 2017-08-13 03:40 - 2016-11-14 13:30 - 024208440 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll 2017-08-13 03:40 - 2016-11-14 13:30 - 023000000 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll 2017-08-13 03:40 - 2016-11-14 13:30 - 018634216 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll 2017-08-13 03:40 - 2016-11-14 13:30 - 017559384 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll 2017-08-13 03:40 - 2016-11-14 13:30 - 016128720 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll 2017-08-13 03:40 - 2016-11-14 13:30 - 015301056 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll 2017-08-13 03:40 - 2016-11-14 13:30 - 014497712 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll 2017-08-13 03:40 - 2016-11-14 13:30 - 013915720 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll 2017-08-13 03:40 - 2016-11-14 13:30 - 013826968 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll 2017-08-13 03:40 - 2016-11-14 13:30 - 012905016 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys 2017-08-13 03:40 - 2016-11-14 13:30 - 011270656 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll 2017-08-13 03:40 - 2016-11-14 13:30 - 011208312 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll 2017-08-13 03:40 - 2016-11-14 13:30 - 004253240 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll 2017-08-13 03:40 - 2016-11-14 13:30 - 003995192 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll 2017-08-13 03:40 - 2016-11-14 13:30 - 003207824 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll 2017-08-13 03:40 - 2016-11-14 13:30 - 002822568 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll 2017-08-13 03:40 - 2016-11-14 13:30 - 001908272 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6434201.dll 2017-08-13 03:40 - 2016-11-14 13:30 - 001557552 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6434201.dll 2017-08-13 03:40 - 2016-11-14 13:30 - 001515296 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdagenco6420103.dll 2017-08-13 03:40 - 2016-11-14 13:30 - 000951232 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll 2017-08-13 03:40 - 2016-11-14 13:30 - 000913856 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll 2017-08-13 03:40 - 2016-11-14 13:30 - 000909760 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll 2017-08-13 03:40 - 2016-11-14 13:30 - 000876480 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll 2017-08-13 03:40 - 2016-11-14 13:30 - 000197408 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda64v.sys 2017-08-13 03:40 - 2016-11-14 13:30 - 000114744 _____ (NVIDIA Corporation) C:\Windows\system32\nvaudcap64v.dll 2017-08-13 03:40 - 2016-11-14 13:30 - 000104512 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvaudcap32v.dll 2017-08-13 03:40 - 2016-11-14 13:30 - 000056384 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad64v.sys 2017-08-13 03:40 - 2016-11-14 13:30 - 000031520 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdap64.dll 2017-08-13 03:40 - 2016-11-14 13:30 - 000026157 _____ C:\Windows\system32\nvinfo.pb 2017-08-13 03:39 - 2017-08-13 03:44 - 000000000 ____D C:\Program Files\NVIDIA Corporation 2017-08-13 03:38 - 2017-08-13 03:38 - 000000000 ____D C:\NVIDIA 2017-08-13 02:14 - 2017-08-13 02:14 - 000003160 _____ C:\Windows\System32\Tasks\klcp_update 2017-08-13 02:13 - 2017-08-13 02:13 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack 2017-08-13 02:13 - 2017-08-13 02:13 - 000000000 ____D C:\Program Files (x86)\K-Lite Codec Pack 2017-08-13 02:03 - 2017-08-16 20:57 - 000000000 ____D C:\Users\Tarik\AppData\Roaming\DMCache 2017-08-13 02:03 - 2017-08-15 18:45 - 000000000 ____D C:\Users\Tarik\AppData\Roaming\IDM 2017-08-13 02:03 - 2017-08-13 19:44 - 000000000 ____D C:\Program Files (x86)\Internet Download Manager 2017-08-13 02:03 - 2017-08-13 02:03 - 000000000 ____D C:\Users\Tarik\Downloads\Video 2017-08-13 02:03 - 2017-08-13 02:03 - 000000000 ____D C:\Users\Tarik\Downloads\Compressed 2017-08-13 02:03 - 2017-08-13 02:03 - 000000000 ____D C:\Users\Tarik\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Download Manager 2017-08-13 02:03 - 2017-08-13 02:03 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Internet Download Manager 2017-08-13 02:03 - 2017-08-13 02:03 - 000000000 ____D C:\ProgramData\IDM 2017-08-13 02:02 - 2017-08-13 02:03 - 000803328 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe 2017-08-13 02:02 - 2017-08-13 02:03 - 000144896 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl 2017-08-13 02:02 - 2017-08-13 02:03 - 000004646 _____ C:\Windows\System32\Tasks\Adobe Flash Player PPAPI Notifier 2017-08-13 02:02 - 2017-08-13 02:03 - 000004496 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater 2017-08-13 02:02 - 2017-08-13 02:03 - 000000000 ____D C:\Windows\system32\Macromed 2017-08-13 02:02 - 2017-08-13 02:02 - 000000000 ____D C:\Windows\SysWOW64\Macromed 2017-08-13 01:56 - 2017-08-13 01:56 - 000000000 ____D C:\Users\Tarik\AppData\Roaming\Google 2017-08-13 01:55 - 2017-08-13 14:31 - 000000000 ____D C:\Users\Tarik\AppData\Local\Google 2017-08-13 01:55 - 2017-08-13 01:55 - 000002348 _____ C:\Users\Tarik\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2017-08-13 01:55 - 2017-08-13 01:55 - 000002340 _____ C:\Users\Tarik\Desktop\Google Chrome.lnk 2017-08-13 01:55 - 2017-08-13 01:55 - 000000000 ____D C:\Users\Tarik\AppData\Roaming\WinRAR 2017-08-13 01:55 - 2017-08-13 01:55 - 000000000 ____D C:\Users\Tarik\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR 2017-08-13 01:55 - 2017-08-13 01:55 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR 2017-08-13 01:54 - 2017-08-13 18:24 - 000000000 ____D C:\Program Files\WinRAR 2017-08-13 01:23 - 2017-08-16 12:32 - 000001477 _____ C:\Users\Tarik\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk 2017-08-13 01:23 - 2017-08-13 01:23 - 000000000 ____D C:\Users\Tarik\AppData\Roaming\Adobe 2017-08-13 01:22 - 2017-08-13 16:35 - 000000000 ____D C:\Users\Tarik\AppData\Local\VirtualStore 2017-08-13 01:22 - 2017-08-13 03:54 - 000058016 _____ C:\Users\Tarik\AppData\Local\GDIPFONTCACHEV1.DAT 2017-08-13 01:22 - 2017-08-13 01:23 - 000000000 ____D C:\Users\Tarik 2017-08-13 01:22 - 2017-08-13 01:22 - 000000020 ___SH C:\Users\Tarik\ntuser.ini 2017-08-13 01:22 - 2017-08-13 01:22 - 000000000 _SHDL C:\Users\Tarik\Voisinage réseau 2017-08-13 01:22 - 2017-08-13 01:22 - 000000000 _SHDL C:\Users\Tarik\Voisinage d'impression 2017-08-13 01:22 - 2017-08-13 01:22 - 000000000 _SHDL C:\Users\Tarik\Modèles 2017-08-13 01:22 - 2017-08-13 01:22 - 000000000 _SHDL C:\Users\Tarik\Mes documents 2017-08-13 01:22 - 2017-08-13 01:22 - 000000000 _SHDL C:\Users\Tarik\Menu Démarrer 2017-08-13 01:22 - 2017-08-13 01:22 - 000000000 _SHDL C:\Users\Tarik\Documents\Mes vidéos 2017-08-13 01:22 - 2017-08-13 01:22 - 000000000 _SHDL C:\Users\Tarik\Documents\Mes images 2017-08-13 01:22 - 2017-08-13 01:22 - 000000000 _SHDL C:\Users\Tarik\Documents\Ma musique 2017-08-13 01:22 - 2017-08-13 01:22 - 000000000 _SHDL C:\Users\Tarik\AppData\Roaming\Microsoft\Windows\Start Menu\Programmes 2017-08-13 01:22 - 2017-08-13 01:22 - 000000000 _SHDL C:\Users\Tarik\AppData\Local\Historique 2017-08-13 01:22 - 2011-04-12 09:28 - 000000000 ____D C:\Users\Tarik\AppData\Roaming\Media Center Programs 2017-08-13 01:20 - 2017-08-13 01:20 - 000000000 _SHDL C:\Users\Public\Documents\Mes vidéos 2017-08-13 01:20 - 2017-08-13 01:20 - 000000000 _SHDL C:\Users\Public\Documents\Mes images 2017-08-13 01:20 - 2017-08-13 01:20 - 000000000 _SHDL C:\Users\Public\Documents\Ma musique 2017-08-13 01:20 - 2017-08-13 01:20 - 000000000 _SHDL C:\Users\Default\Voisinage réseau 2017-08-13 01:20 - 2017-08-13 01:20 - 000000000 _SHDL C:\Users\Default\Voisinage d'impression 2017-08-13 01:20 - 2017-08-13 01:20 - 000000000 _SHDL C:\Users\Default\Modèles 2017-08-13 01:20 - 2017-08-13 01:20 - 000000000 _SHDL C:\Users\Default\Mes documents 2017-08-13 01:20 - 2017-08-13 01:20 - 000000000 _SHDL C:\Users\Default\Menu Démarrer 2017-08-13 01:20 - 2017-08-13 01:20 - 000000000 _SHDL C:\Users\Default\Documents\Mes vidéos 2017-08-13 01:20 - 2017-08-13 01:20 - 000000000 _SHDL C:\Users\Default\Documents\Mes images 2017-08-13 01:20 - 2017-08-13 01:20 - 000000000 _SHDL C:\Users\Default\Documents\Ma musique 2017-08-13 01:20 - 2017-08-13 01:20 - 000000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programmes 2017-08-13 01:20 - 2017-08-13 01:20 - 000000000 _SHDL C:\Users\Default\AppData\Local\Historique 2017-08-13 01:20 - 2017-08-13 01:20 - 000000000 _SHDL C:\Users\Default User\Documents\Mes vidéos 2017-08-13 01:20 - 2017-08-13 01:20 - 000000000 _SHDL C:\Users\Default User\Documents\Mes images 2017-08-13 01:20 - 2017-08-13 01:20 - 000000000 _SHDL C:\Users\Default User\Documents\Ma musique 2017-08-13 01:20 - 2017-08-13 01:20 - 000000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programmes 2017-08-13 01:20 - 2017-08-13 01:20 - 000000000 _SHDL C:\Users\Default User\AppData\Local\Historique 2017-08-13 01:20 - 2017-08-13 01:20 - 000000000 _SHDL C:\ProgramData\Modèles 2017-08-13 01:20 - 2017-08-13 01:20 - 000000000 _SHDL C:\ProgramData\Microsoft\Windows\Start Menu\Programmes 2017-08-13 01:20 - 2017-08-13 01:20 - 000000000 _SHDL C:\ProgramData\Menu Démarrer 2017-08-13 01:20 - 2017-08-13 01:20 - 000000000 _SHDL C:\ProgramData\Favoris 2017-08-13 01:20 - 2017-08-13 01:20 - 000000000 _SHDL C:\ProgramData\Bureau 2017-08-13 01:20 - 2017-08-13 01:20 - 000000000 _SHDL C:\Program Files\Fichiers communs 2017-08-12 23:14 - 2017-08-12 23:14 - 000001345 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Center.lnk 2017-08-12 23:14 - 2017-08-12 23:14 - 000001326 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows DVD Maker.lnk 2017-08-12 23:13 - 2017-08-12 23:13 - 000000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdFs_01_09_00.Wdf 2017-08-05 17:31 - 2017-08-05 17:26 - 000225568 _____ (Tonec Inc.) C:\Windows\system32\Drivers\idmwfp.sys 2017-07-23 03:32 - 2017-07-23 03:32 - 003223040 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys 2017-07-23 03:32 - 2017-07-23 03:32 - 002319872 _____ (Microsoft Corporation) C:\Windows\system32\tquery.dll 2017-07-23 03:32 - 2017-07-23 03:32 - 002222080 _____ (Microsoft Corporation) C:\Windows\system32\mssrch.dll 2017-07-23 03:32 - 2017-07-23 03:32 - 002058240 _____ (Microsoft Corporation) C:\Windows\system32\Query.dll 2017-07-23 03:32 - 2017-07-23 03:32 - 001895656 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys 2017-07-23 03:32 - 2017-07-23 03:32 - 001867264 _____ (Microsoft Corporation) C:\Windows\system32\ExplorerFrame.dll 2017-07-23 03:32 - 2017-07-23 03:32 - 001680616 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys 2017-07-23 03:32 - 2017-07-23 03:32 - 001549312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tquery.dll 2017-07-23 03:32 - 2017-07-23 03:32 - 001499648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ExplorerFrame.dll 2017-07-23 03:32 - 2017-07-23 03:32 - 001460736 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll 2017-07-23 03:32 - 2017-07-23 03:32 - 001400320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssrch.dll 2017-07-23 03:32 - 2017-07-23 03:32 - 001363968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Query.dll 2017-07-23 03:32 - 2017-07-23 03:32 - 001363456 _____ (Microsoft Corporation) C:\Windows\system32\wdc.dll 2017-07-23 03:32 - 2017-07-23 03:32 - 001227264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdc.dll 2017-07-23 03:32 - 2017-07-23 03:32 - 001212928 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll 2017-07-23 03:32 - 2017-07-23 03:32 - 000986856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys 2017-07-23 03:32 - 2017-07-23 03:32 - 000778240 _____ (Microsoft Corporation) C:\Windows\system32\mssvp.dll 2017-07-23 03:32 - 2017-07-23 03:32 - 000753664 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\http.sys 2017-07-23 03:32 - 2017-07-23 03:32 - 000731648 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll 2017-07-23 03:32 - 2017-07-23 03:32 - 000690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll 2017-07-23 03:32 - 2017-07-23 03:32 - 000690688 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll 2017-07-23 03:32 - 2017-07-23 03:32 - 000666624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssvp.dll 2017-07-23 03:32 - 2017-07-23 03:32 - 000666112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll 2017-07-23 03:32 - 2017-07-23 03:32 - 000594432 _____ (Microsoft Corporation) C:\Windows\system32\wvc.dll 2017-07-23 03:32 - 2017-07-23 03:32 - 000591872 _____ (Microsoft Corporation) C:\Windows\system32\SearchIndexer.exe 2017-07-23 03:32 - 2017-07-23 03:32 - 000554496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll 2017-07-23 03:32 - 2017-07-23 03:32 - 000491520 _____ (Microsoft Corporation) C:\Windows\system32\mssph.dll 2017-07-23 03:32 - 2017-07-23 03:32 - 000475136 _____ (Microsoft Corporation) C:\Windows\system32\sysmon.ocx 2017-07-23 03:32 - 2017-07-23 03:32 - 000463872 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll 2017-07-23 03:32 - 2017-07-23 03:32 - 000444928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wvc.dll 2017-07-23 03:32 - 2017-07-23 03:32 - 000427520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchIndexer.exe 2017-07-23 03:32 - 2017-07-23 03:32 - 000390144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sysmon.ocx 2017-07-23 03:32 - 2017-07-23 03:32 - 000379392 _____ (Microsoft Corporation) C:\Windows\system32\msinfo32.exe 2017-07-23 03:32 - 2017-07-23 03:32 - 000377576 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys 2017-07-23 03:32 - 2017-07-23 03:32 - 000370920 _____ (Microsoft Corporation) C:\Windows\system32\clfs.sys 2017-07-23 03:32 - 2017-07-23 03:32 - 000345600 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll 2017-07-23 03:32 - 2017-07-23 03:32 - 000342528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll 2017-07-23 03:32 - 2017-07-23 03:32 - 000337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssph.dll 2017-07-23 03:32 - 2017-07-23 03:32 - 000316928 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll 2017-07-23 03:32 - 2017-07-23 03:32 - 000313856 _____ (Microsoft Corporation) C:\Windows\system32\Wldap32.dll 2017-07-23 03:32 - 2017-07-23 03:32 - 000312320 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll 2017-07-23 03:32 - 2017-07-23 03:32 - 000303616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msinfo32.exe 2017-07-23 03:32 - 2017-07-23 03:32 - 000291328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys 2017-07-23 03:32 - 2017-07-23 03:32 - 000288256 _____ (Microsoft Corporation) C:\Windows\system32\mssphtb.dll 2017-07-23 03:32 - 2017-07-23 03:32 - 000287976 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS 2017-07-23 03:32 - 2017-07-23 03:32 - 000271360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Wldap32.dll 2017-07-23 03:32 - 2017-07-23 03:32 - 000265448 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys 2017-07-23 03:32 - 2017-07-23 03:32 - 000261120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll 2017-07-23 03:32 - 2017-07-23 03:32 - 000254464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll 2017-07-23 03:32 - 2017-07-23 03:32 - 000249856 _____ (Microsoft Corporation) C:\Windows\system32\SearchProtocolHost.exe 2017-07-23 03:32 - 2017-07-23 03:32 - 000223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll 2017-07-23 03:32 - 2017-07-23 03:32 - 000210432 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll 2017-07-23 03:32 - 2017-07-23 03:32 - 000197120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssphtb.dll 2017-07-23 03:32 - 2017-07-23 03:32 - 000190464 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll 2017-07-23 03:32 - 2017-07-23 03:32 - 000172544 _____ (Microsoft Corporation) C:\Windows\system32\perfmon.exe 2017-07-23 03:32 - 2017-07-23 03:32 - 000172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll 2017-07-23 03:32 - 2017-07-23 03:32 - 000164352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchProtocolHost.exe 2017-07-23 03:32 - 2017-07-23 03:32 - 000159744 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys 2017-07-23 03:32 - 2017-07-23 03:32 - 000157184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\perfmon.exe 2017-07-23 03:32 - 2017-07-23 03:32 - 000154856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys 2017-07-23 03:32 - 2017-07-23 03:32 - 000146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll 2017-07-23 03:32 - 2017-07-23 03:32 - 000146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll 2017-07-23 03:32 - 2017-07-23 03:32 - 000144384 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll 2017-07-23 03:32 - 2017-07-23 03:32 - 000141312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpchttp.dll 2017-07-23 03:32 - 2017-07-23 03:32 - 000135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll 2017-07-23 03:32 - 2017-07-23 03:32 - 000129536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys 2017-07-23 03:32 - 2017-07-23 03:32 - 000123904 _____ (Microsoft Corporation) C:\Windows\system32\bcrypt.dll 2017-07-23 03:32 - 2017-07-23 03:32 - 000115200 _____ (Microsoft Corporation) C:\Windows\system32\mssitlb.dll 2017-07-23 03:32 - 2017-07-23 03:32 - 000113664 _____ (Microsoft Corporation) C:\Windows\system32\SearchFilterHost.exe 2017-07-23 03:32 - 2017-07-23 03:32 - 000104448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssitlb.dll 2017-07-23 03:32 - 2017-07-23 03:32 - 000103936 _____ (Microsoft Corporation) C:\Windows\system32\resmon.exe 2017-07-23 03:32 - 2017-07-23 03:32 - 000103424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\resmon.exe 2017-07-23 03:32 - 2017-07-23 03:32 - 000099840 _____ (Microsoft Corporation) C:\Windows\system32\mssprxy.dll 2017-07-23 03:32 - 2017-07-23 03:32 - 000096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll 2017-07-23 03:32 - 2017-07-23 03:32 - 000095464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys 2017-07-23 03:32 - 2017-07-23 03:32 - 000086528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchFilterHost.exe 2017-07-23 03:32 - 2017-07-23 03:32 - 000086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll 2017-07-23 03:32 - 2017-07-23 03:32 - 000082944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcrypt.dll 2017-07-23 03:32 - 2017-07-23 03:32 - 000075264 _____ (Microsoft Corporation) C:\Windows\system32\msscntrs.dll 2017-07-23 03:32 - 2017-07-23 03:32 - 000065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll 2017-07-23 03:32 - 2017-07-23 03:32 - 000064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe 2017-07-23 03:32 - 2017-07-23 03:32 - 000060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll 2017-07-23 03:32 - 2017-07-23 03:32 - 000060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll 2017-07-23 03:32 - 2017-07-23 03:32 - 000059392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msscntrs.dll 2017-07-23 03:32 - 2017-07-23 03:32 - 000058880 _____ (Microsoft Corporation) C:\Windows\system32\pdhui.dll 2017-07-23 03:32 - 2017-07-23 03:32 - 000050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe 2017-07-23 03:32 - 2017-07-23 03:32 - 000047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pdhui.dll 2017-07-23 03:32 - 2017-07-23 03:32 - 000043520 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll 2017-07-23 03:32 - 2017-07-23 03:32 - 000036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptbase.dll 2017-07-23 03:32 - 2017-07-23 03:32 - 000034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssprxy.dll 2017-07-23 03:32 - 2017-07-23 03:32 - 000030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe 2017-07-23 03:32 - 2017-07-23 03:32 - 000028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll 2017-07-23 03:32 - 2017-07-23 03:32 - 000028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll 2017-07-23 03:32 - 2017-07-23 03:32 - 000022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll 2017-07-23 03:32 - 2017-07-23 03:32 - 000022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll 2017-07-23 03:32 - 2017-07-23 03:32 - 000017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll 2017-07-23 03:32 - 2017-07-23 03:32 - 000014336 _____ (Microsoft Corporation) C:\Windows\system32\msshooks.dll 2017-07-23 03:32 - 2017-07-23 03:32 - 000009728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msshooks.dll 2017-07-23 03:32 - 2017-07-23 03:32 - 000002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll 2017-07-23 03:32 - 2017-07-23 03:32 - 000002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll ==================== Un mois - Modifiés - fichiers et dossiers ======== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2017-08-17 00:09 - 2009-07-14 05:45 - 000026352 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2017-08-17 00:09 - 2009-07-14 05:45 - 000026352 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2017-08-17 00:06 - 2016-05-15 21:39 - 002025838 _____ C:\Windows\system32\PerfStringBackup.INI 2017-08-17 00:06 - 2016-04-18 22:26 - 000684756 _____ C:\Windows\system32\perfh00C.dat 2017-08-17 00:06 - 2016-04-18 22:26 - 000436830 _____ C:\Windows\system32\perfh001.dat 2017-08-17 00:06 - 2016-04-18 22:26 - 000126872 _____ C:\Windows\system32\perfc00C.dat 2017-08-17 00:06 - 2016-04-18 22:26 - 000076572 _____ C:\Windows\system32\perfc001.dat 2017-08-17 00:06 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\inf 2017-08-17 00:01 - 2009-07-14 06:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT 2017-08-16 19:32 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\rescache 2017-08-16 12:22 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\PolicyDefinitions 2017-08-13 09:06 - 2009-07-14 06:32 - 000032768 _____ C:\Windows\system32\config\BCD-Template 2017-08-13 04:02 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\LiveKernelReports 2017-08-13 03:42 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\Help 2017-08-13 01:26 - 2009-07-14 05:45 - 000267672 _____ C:\Windows\system32\FNTCACHE.DAT 2017-08-13 01:20 - 2009-07-14 04:20 - 000000000 ____D C:\Program Files\Windows NT 2017-08-12 23:14 - 2009-07-14 06:32 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games 2017-08-12 23:13 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\system32\sysprep 2017-08-12 23:08 - 2011-04-12 09:28 - 000000000 ____D C:\Windows\CSC Certains fichiers dans TEMP: ==================== 2017-08-13 16:23 - 2017-08-15 19:29 - 000000000 _____ () C:\Users\Tarik\AppData\Local\Temp\ea42f1831149fc0626633f3572b884bd.dll 2017-08-13 16:24 - 2017-08-15 19:12 - 000000093 _____ () C:\Users\Tarik\AppData\Local\Temp\ecd9d25d321aac68d5e7986f84ae739c.dll 2017-08-13 16:00 - 2017-08-13 16:03 - 000159744 _____ () C:\Users\Tarik\AppData\Local\Temp\Hack Black Squad.exe ==================== Bamital & volsnap ====================== (Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.) C:\Windows\system32\winlogon.exe => Le fichier est signé numériquement C:\Windows\system32\wininit.exe => Le fichier est signé numériquement C:\Windows\SysWOW64\wininit.exe => Le fichier est signé numériquement C:\Windows\explorer.exe => Le fichier est signé numériquement C:\Windows\SysWOW64\explorer.exe => Le fichier est signé numériquement C:\Windows\system32\svchost.exe => Le fichier est signé numériquement C:\Windows\SysWOW64\svchost.exe => Le fichier est signé numériquement C:\Windows\system32\services.exe => Le fichier est signé numériquement C:\Windows\system32\User32.dll => Le fichier est signé numériquement C:\Windows\SysWOW64\User32.dll => Le fichier est signé numériquement C:\Windows\system32\userinit.exe => Le fichier est signé numériquement C:\Windows\SysWOW64\userinit.exe => Le fichier est signé numériquement C:\Windows\system32\rpcss.dll => Le fichier est signé numériquement C:\Windows\system32\dnsapi.dll => Le fichier est signé numériquement C:\Windows\SysWOW64\dnsapi.dll => Le fichier est signé numériquement C:\Windows\system32\Drivers\volsnap.sys => Le fichier est signé numériquement LastRegBack: 2017-08-16 19:24 ==================== Fin de FRST.txt ============================