RÃ©sultats d'analyse de  Farbar Recovery Scan Tool (FRST) (x64) Version: 26-10-2017
ExÃ©cutÃ© par david mora (administrateur) sur DESKTOP-NQG84EE (31-10-2017 12:43:28)
ExÃ©cutÃ© depuis C:\Users\david mora\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\TempState\Downloads
Profils chargÃ©s: david mora (Profils disponibles: david mora)
Platform: Windows 10 Home Version 1709 16299.19 (X64) Langue: FranÃ§ais (France)
Internet Explorer Version 11 (Navigateur par dÃ©faut: Edge)
Mode d'amorÃ§age: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processus (Avec liste blanche) =================

(Si un Ã©lÃ©ment est inclus dans le fichier fixlist.txt, le processus sera arrÃªtÃ©. Le fichier ne sera pas dÃ©placÃ©.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(The OpenVPN Project) C:\Program Files\OpenVPN\bin\openvpnserv.exe
(AVAST Software s.r.o.) C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
() C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.7.597.0_x64__kzf8qxf38zg5c\SkypeHost.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
(Microsoft Corporation) C:\Windows\System32\browser_broker.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe

==================== Registre (Avec liste blanche) ===========================

(Si un Ã©lÃ©ment est inclus dans le fichier fixlist.txt, l'Ã©lÃ©ment de Registre sera restaurÃ© Ã  la valeur par dÃ©faut ou supprimÃ©. Le fichier ne sera pas dÃ©placÃ©.)

HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [630168 2017-09-29] (Microsoft Corporation)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [1794888 2015-06-29] (NVIDIA Corporation)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [253344 2017-10-29] (AVAST Software)
HKU\S-1-5-21-2699067487-3190404336-583160459-1001\...\Run: [uTorrent] => C:\Users\david mora\AppData\Roaming\uTorrent\uTorrent.exe [1985984 2017-10-29] (BitTorrent Inc.)
HKU\S-1-5-21-2699067487-3190404336-583160459-1001\...\Run: [Chromium] => c:\users\david mora\appdata\local\chromium\application\chrome.exe --auto-launch-at-startup --profile-directory=Default --restore-last-session
HKU\S-1-5-21-2699067487-3190404336-583160459-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [10021040 2017-10-18] (Piriform Ltd)
HKU\S-1-5-21-2699067487-3190404336-583160459-1001\...\Run: [OPENVPN-GUI] => C:\Program Files\OpenVPN\bin\openvpn-gui.exe [636032 2017-06-20] ()
HKU\S-1-5-21-2699067487-3190404336-583160459-1001\...\RunOnce: [Uninstall 17.3.7073.1013\amd64] => C:\Windows\system32\cmd.exe /q /c rmdir /s /q "C:\Users\david mora\AppData\Local\Microsoft\OneDrive\17.3.7073.1013\amd64"
HKU\S-1-5-21-2699067487-3190404336-583160459-1001\...\RunOnce: [Uninstall 17.3.7073.1013] => C:\Windows\system32\cmd.exe /q /c rmdir /s /q "C:\Users\david mora\AppData\Local\Microsoft\OneDrive\17.3.7073.1013"
HKU\S-1-5-18\...\RunOnce: [Application Restart #0] => C:\Program Files\Common Files\microsoft shared\ink\TabTip.exe [403128 2017-09-30] (Microsoft Corporation)

==================== Internet (Avec liste blanche) ====================

(Si un Ã©lÃ©ment est inclus dans le fichier fixlist.txt, s'il s'agit d'un Ã©lÃ©ment du Registre, il sera supprimÃ© ou restaurÃ© Ã  la valeur par dÃ©faut.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{8c676f29-eda9-4f8b-abd9-7b072e37b056}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{9f2b9049-bf39-41aa-85dc-6acb2e3412e4}: [DhcpNameServer] 8.8.8.8 213.186.33.99

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.palikan.com/?f=1&a=plk_popjar_17_43&cd=2XzuyEtN2Y1L1Qzu0FzztD0FyEtCtDyEtDtDtB0A0FyByC0AtN0D0Tzu0StBtCtBzztN1L2XzutAtFtByBtFyEtFyDyEtN1L1Czu1ByEtN1L1G1B1V1N2Y1L1Qzu2StBtDyDzzzy0FzytDtGtByB0F0BtGzz0AtCzztGtA0CyEtDtG0CzyyBzytB0C0FtBzyyDyD0F2QtN1M1F1B2Z1V1N2Y1L1Qzu2StD0FtAzz0E0EyC0FtG0C0E0FyDtGyE0FtBzztGzy0CyDtDtGtAzzzz0B0AtCtAyC0AtCtByE2QtN0A0LzuyE&cr=1679405004&ir=
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.palikan.com/?f=1&a=plk_popjar_17_43&cd=2XzuyEtN2Y1L1Qzu0FzztD0FyEtCtDyEtDtDtB0A0FyByC0AtN0D0Tzu0StBtCtBzztN1L2XzutAtFtByBtFyEtFyDyEtN1L1Czu1ByEtN1L1G1B1V1N2Y1L1Qzu2StBtDyDzzzy0FzytDtGtByB0F0BtGzz0AtCzztGtA0CyEtDtG0CzyyBzytB0C0FtBzyyDyD0F2QtN1M1F1B2Z1V1N2Y1L1Qzu2StD0FtAzz0E0EyC0FtG0C0E0FyDtGyE0FtBzztGzy0CyDtDtGtAzzzz0B0AtCtAyC0AtCtByE2QtN0A0LzuyE&cr=1679405004&ir=
HKU\S-1-5-21-2699067487-3190404336-583160459-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.palikan.com/?f=1&a=plk_popjar_17_43&cd=2XzuyEtN2Y1L1Qzu0FzztD0FyEtCtDyEtDtDtB0A0FyByC0AtN0D0Tzu0StBtCtBzztN1L2XzutAtFtByBtFyEtFyDyEtN1L1Czu1ByEtN1L1G1B1V1N2Y1L1Qzu2StBtDyDzzzy0FzytDtGtByB0F0BtGzz0AtCzztGtA0CyEtDtG0CzyyBzytB0C0FtBzyyDyD0F2QtN1M1F1B2Z1V1N2Y1L1Qzu2StD0FtAzz0E0EyC0FtG0C0E0FyDtGyE0FtBzztGzy0CyDtDtGtAzzzz0B0AtCtAyC0AtCtByE2QtN0A0LzuyE&cr=1679405004&ir=
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.palikan.com/results.php?f=4&a=plk_popjar_17_43&cd=2XzuyEtN2Y1L1Qzu0FzztD0FyEtCtDyEtDtDtB0A0FyByC0AtN0D0Tzu0StBtCtBzztN1L2XzutAtFtByBtFyEtFyDyEtN1L1Czu1ByEtN1L1G1B1V1N2Y1L1Qzu2StBtDyDzzzy0FzytDtGtByB0F0BtGzz0AtCzztGtA0CyEtDtG0CzyyBzytB0C0FtBzyyDyD0F2QtN1M1F1B2Z1V1N2Y1L1Qzu2StD0FtAzz0E0EyC0FtG0C0E0FyDtGyE0FtBzztGzy0CyDtDtGtAzzzz0B0AtCtAyC0AtCtByE2QtN0A0LzuyE&cr=1679405004&ir=&q={searchTerms}
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.palikan.com/results.php?f=4&a=plk_popjar_17_43&cd=2XzuyEtN2Y1L1Qzu0FzztD0FyEtCtDyEtDtDtB0A0FyByC0AtN0D0Tzu0StBtCtBzztN1L2XzutAtFtByBtFyEtFyDyEtN1L1Czu1ByEtN1L1G1B1V1N2Y1L1Qzu2StBtDyDzzzy0FzytDtGtByB0F0BtGzz0AtCzztGtA0CyEtDtG0CzyyBzytB0C0FtBzyyDyD0F2QtN1M1F1B2Z1V1N2Y1L1Qzu2StD0FtAzz0E0EyC0FtG0C0E0FyDtGyE0FtBzztGzy0CyDtDtGtAzzzz0B0AtCtAyC0AtCtByE2QtN0A0LzuyE&cr=1679405004&ir=&q={searchTerms}
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.palikan.com/results.php?f=4&a=plk_popjar_17_43&cd=2XzuyEtN2Y1L1Qzu0FzztD0FyEtCtDyEtDtDtB0A0FyByC0AtN0D0Tzu0StBtCtBzztN1L2XzutAtFtByBtFyEtFyDyEtN1L1Czu1ByEtN1L1G1B1V1N2Y1L1Qzu2StBtDyDzzzy0FzytDtGtByB0F0BtGzz0AtCzztGtA0CyEtDtG0CzyyBzytB0C0FtBzyyDyD0F2QtN1M1F1B2Z1V1N2Y1L1Qzu2StD0FtAzz0E0EyC0FtG0C0E0FyDtGyE0FtBzztGzy0CyDtDtGtAzzzz0B0AtCtAyC0AtCtByE2QtN0A0LzuyE&cr=1679405004&ir=&q={searchTerms}
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.palikan.com/results.php?f=4&a=plk_popjar_17_43&cd=2XzuyEtN2Y1L1Qzu0FzztD0FyEtCtDyEtDtDtB0A0FyByC0AtN0D0Tzu0StBtCtBzztN1L2XzutAtFtByBtFyEtFyDyEtN1L1Czu1ByEtN1L1G1B1V1N2Y1L1Qzu2StBtDyDzzzy0FzytDtGtByB0F0BtGzz0AtCzztGtA0CyEtDtG0CzyyBzytB0C0FtBzyyDyD0F2QtN1M1F1B2Z1V1N2Y1L1Qzu2StD0FtAzz0E0EyC0FtG0C0E0FyDtGyE0FtBzztGzy0CyDtDtGtAzzzz0B0AtCtAyC0AtCtByE2QtN0A0LzuyE&cr=1679405004&ir=&q={searchTerms}
StartMenuInternet: IEXPLORE.EXE - iexplore.exe

FireFox:
========
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2016-11-14] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2016-11-14] (NVIDIA Corporation)

==================== Services (Avec liste blanche) ====================

(Si un Ã©lÃ©ment est inclus dans le fichier fixlist.txt, il sera supprimÃ© du Registre. Le fichier ne sera pas dÃ©placÃ©, sauf s'il est inscrit sÃ©parÃ©ment.)

R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2017-09-07] (Apple Inc.)
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe [7446024 2017-10-29] (AVAST Software s.r.o.)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [281416 2017-10-29] (AVAST Software)
S3 OpenVPNService; C:\Program Files\OpenVPN\bin\openvpnserv2.exe [15872 2016-11-25] ( ) [Fichier non signÃ©]
R2 OpenVPNServiceInteractive; C:\Program Files\OpenVPN\bin\openvpnserv.exe [72832 2017-06-20] (The OpenVPN Project)
S3 OpenVPNServiceLegacy; C:\Program Files\OpenVPN\bin\openvpnserv.exe [72832 2017-06-20] (The OpenVPN Project)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [355304 2017-09-29] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [105944 2017-09-29] (Microsoft Corporation)

===================== Pilotes (Avec liste blanche) ======================

(Si un Ã©lÃ©ment est inclus dans le fichier fixlist.txt, il sera supprimÃ© du Registre. Le fichier ne sera pas dÃ©placÃ©, sauf s'il est inscrit sÃ©parÃ©ment.)

R1 aswbidsdriver; C:\Windows\system32\drivers\aswbidsdrivera.sys [321032 2017-10-29] (AVAST Software s.r.o.)
R0 aswbidsh; C:\Windows\system32\drivers\aswbidsha.sys [198976 2017-10-29] (AVAST Software s.r.o.)
R0 aswblog; C:\Windows\system32\drivers\aswbloga.sys [343288 2017-10-29] (AVAST Software s.r.o.)
R0 aswbuniv; C:\Windows\system32\drivers\aswbuniva.sys [57736 2017-10-29] (AVAST Software s.r.o.)
S3 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [47008 2017-10-29] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [147776 2017-10-29] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [110376 2017-10-29] (AVAST Software)
R0 aswRvrt; C:\Windows\system32\drivers\aswRvrt.sys [84416 2017-10-29] (AVAST Software)
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1029872 2017-10-29] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [587168 2017-10-29] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [201352 2017-10-29] (AVAST Software)
R0 aswVmm; C:\Windows\system32\drivers\aswVmm.sys [363440 2017-10-29] (AVAST Software)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44608 2017-09-29] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [309144 2017-09-29] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [119192 2017-09-29] (Microsoft Corporation)

==================== NetSvcs (Avec liste blanche) ===================

(Si un Ã©lÃ©ment est inclus dans le fichier fixlist.txt, il sera supprimÃ© du Registre. Le fichier ne sera pas dÃ©placÃ©, sauf s'il est inscrit sÃ©parÃ©ment.)


==================== Un mois - CrÃ©Ã©s - fichiers et dossiers ========

(Si un Ã©lÃ©ment est inclus dans le fichier fixlist.txt, le fichier/dossier sera dÃ©placÃ©.)

2017-10-31 12:40 - 2017-10-31 12:43 - 000000000 ____D C:\FRST
2017-10-31 12:36 - 2017-10-31 12:36 - 000000000 ____D C:\ProgramData\SWCUTemp
2017-10-30 21:00 - 2017-10-30 21:00 - 000000000 ____D C:\Program Files (x86)\RelevantKnowledge
2017-10-30 20:59 - 2017-10-30 21:01 - 000000000 ____D C:\Users\david mora\AppData\Roaming\Convertisseur MP3
2017-10-30 20:59 - 2017-10-30 20:59 - 000001188 _____ C:\Users\david mora\Desktop\Convertisseur MP3.lnk
2017-10-30 20:59 - 2017-10-30 20:59 - 000000000 ____D C:\Users\david mora\Documents\Convertir.co
2017-10-30 20:59 - 2017-10-30 20:59 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Convertisseur MP3
2017-10-30 20:59 - 2017-10-30 20:59 - 000000000 ____D C:\Program Files (x86)\Convertisseur MP3
2017-10-30 20:39 - 2017-10-30 20:39 - 000000000 ____D C:\Windows\pss
2017-10-30 12:27 - 2017-10-30 12:27 - 000000000 ____D C:\Users\david mora\AppData\Local\DBG
2017-10-29 23:37 - 2017-10-29 23:38 - 000000000 ____D C:\Windows\system32\MRT
2017-10-29 23:36 - 2017-10-29 23:36 - 126925120 ____C (Microsoft Corporation) C:\Windows\system32\MRT-KB890830.exe
2017-10-29 23:36 - 2017-10-29 23:36 - 126925120 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2017-10-29 23:33 - 2017-10-10 17:33 - 017080832 _____ (Microsoft Corporation) C:\Windows\system32\HologramCompositor.dll
2017-10-29 23:33 - 2017-10-10 17:25 - 000336896 _____ (Microsoft Corporation) C:\Windows\system32\HolographicRuntimes.dll
2017-10-29 23:33 - 2017-10-10 17:22 - 021752832 _____ (Microsoft Corporation) C:\Windows\system32\Hydrogen.dll
2017-10-29 23:33 - 2017-10-10 17:12 - 000664576 _____ (Microsoft Corporation) C:\Windows\system32\DHolographicDisplay.dll
2017-10-29 23:33 - 2017-10-10 08:11 - 000739696 _____ (Microsoft Corporation) C:\Windows\system32\dnsapi.dll
2017-10-29 23:33 - 2017-10-10 08:10 - 001200024 _____ (Microsoft Corporation) C:\Windows\system32\hvix64.exe
2017-10-29 23:33 - 2017-10-10 08:07 - 008592280 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2017-10-29 23:33 - 2017-10-10 08:02 - 002400664 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2017-10-29 23:33 - 2017-10-10 08:01 - 005906264 _____ (Microsoft Corporation) C:\Windows\system32\StartTileData.dll
2017-10-29 23:33 - 2017-10-10 08:00 - 001053592 _____ (Microsoft Corporation) C:\Windows\system32\hvax64.exe
2017-10-29 23:33 - 2017-10-10 07:59 - 001641536 _____ (Microsoft Corporation) C:\Windows\system32\gdi32full.dll
2017-10-29 23:33 - 2017-10-10 07:59 - 000778936 _____ (Microsoft Corporation) C:\Windows\system32\fontdrvhost.exe
2017-10-29 23:33 - 2017-10-10 07:54 - 001463856 _____ (Microsoft Corporation) C:\Windows\system32\msctf.dll
2017-10-29 23:33 - 2017-10-10 07:50 - 002573208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2017-10-29 23:33 - 2017-10-10 07:49 - 001554216 _____ (Microsoft Corporation) C:\Windows\system32\twinapi.appcore.dll
2017-10-29 23:33 - 2017-10-10 07:48 - 000677280 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2017-10-29 23:33 - 2017-10-10 07:36 - 001436432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32full.dll
2017-10-29 23:33 - 2017-10-10 07:31 - 001323840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msctf.dll
2017-10-29 23:33 - 2017-10-10 07:11 - 000597160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dnsapi.dll
2017-10-29 23:33 - 2017-10-10 07:07 - 001261864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinapi.appcore.dll
2017-10-29 23:33 - 2017-10-10 06:53 - 025246208 _____ (Microsoft Corporation) C:\Windows\system32\edgehtml.dll
2017-10-29 23:33 - 2017-10-10 06:47 - 002905600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32kfull.sys
2017-10-29 23:33 - 2017-10-10 06:46 - 001470976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GdiPlus.dll
2017-10-29 23:33 - 2017-10-10 06:43 - 018913792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\edgehtml.dll
2017-10-29 23:33 - 2017-10-10 06:41 - 019343360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2017-10-29 23:33 - 2017-10-10 06:39 - 006032896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Chakra.dll
2017-10-29 23:33 - 2017-10-10 06:39 - 003681280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2017-10-29 23:33 - 2017-10-10 06:37 - 003672064 _____ (Microsoft Corporation) C:\Windows\system32\win32kfull.sys
2017-10-29 23:33 - 2017-10-10 06:37 - 002869248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2017-10-29 23:33 - 2017-10-10 06:37 - 001559552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2017-10-29 23:33 - 2017-10-10 06:32 - 000538624 _____ (Microsoft Corporation) C:\Windows\system32\HolographicExtensions.dll
2017-10-29 23:33 - 2017-10-10 06:31 - 023664128 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2017-10-29 23:33 - 2017-10-10 06:31 - 000478208 _____ (Microsoft Corporation) C:\Windows\system32\NgcCtnr.dll
2017-10-29 23:33 - 2017-10-10 06:30 - 000442880 _____ (Microsoft Corporation) C:\Windows\system32\cryptngc.dll
2017-10-29 23:33 - 2017-10-10 06:29 - 008097792 _____ (Microsoft Corporation) C:\Windows\system32\Chakra.dll
2017-10-29 23:33 - 2017-10-10 06:28 - 004744192 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2017-10-29 23:33 - 2017-10-10 06:27 - 001165824 _____ (Microsoft Corporation) C:\Windows\system32\ISM.dll
2017-10-29 23:33 - 2017-10-10 06:26 - 003334144 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2017-10-29 23:33 - 2017-10-10 06:26 - 002106880 _____ (Microsoft Corporation) C:\Windows\system32\win32kbase.sys
2017-10-29 23:33 - 2017-10-10 06:26 - 001856000 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2017-10-29 23:33 - 2017-10-10 06:26 - 000812032 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2017-10-29 23:33 - 2017-10-10 06:25 - 001822208 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2017-10-29 23:33 - 2017-10-10 06:25 - 000925184 _____ (Microsoft Corporation) C:\Windows\system32\MPSSVC.dll
2017-10-29 23:33 - 2017-10-04 16:21 - 002474080 _____ C:\Windows\SysWOW64\Windows.Mirage.dll
2017-10-29 23:33 - 2017-10-04 15:37 - 003312432 _____ C:\Windows\system32\Windows.Mirage.dll
2017-10-29 23:33 - 2017-10-03 23:42 - 000345088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msexcl40.dll
2017-10-29 23:32 - 2017-10-10 08:14 - 000139672 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2017-10-29 23:32 - 2017-10-10 08:01 - 001633744 _____ (Microsoft Corporation) C:\Windows\system32\user32.dll
2017-10-29 23:32 - 2017-10-10 08:00 - 000373656 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\clfs.sys
2017-10-29 23:32 - 2017-10-10 07:53 - 000464416 _____ (Microsoft Corporation) C:\Windows\system32\bcryptprimitives.dll
2017-10-29 23:32 - 2017-10-10 07:53 - 000232344 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2017-10-29 23:32 - 2017-10-10 07:51 - 000184984 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2017-10-29 23:32 - 2017-10-10 07:49 - 000060824 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\urscx01000.sys
2017-10-29 23:32 - 2017-10-10 07:44 - 000246168 _____ (Microsoft Corporation) C:\Windows\system32\browserbroker.dll
2017-10-29 23:32 - 2017-10-10 07:43 - 000559000 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storport.sys
2017-10-29 23:32 - 2017-10-10 07:43 - 000418712 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2017-10-29 23:32 - 2017-10-10 07:43 - 000045976 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storufs.sys
2017-10-29 23:32 - 2017-10-10 07:31 - 001528912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user32.dll
2017-10-29 23:32 - 2017-10-10 07:30 - 000123520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2017-10-29 23:32 - 2017-10-10 07:26 - 000649304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontdrvhost.exe
2017-10-29 23:32 - 2017-10-10 07:06 - 000353688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2017-10-29 23:32 - 2017-10-10 06:46 - 000136192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\t2embed.dll
2017-10-29 23:32 - 2017-10-10 06:44 - 000106496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Chakradiag.dll
2017-10-29 23:32 - 2017-10-10 06:43 - 000566272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TpmCoreProvisioning.dll
2017-10-29 23:32 - 2017-10-10 06:43 - 000070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XblAuthTokenBrokerExt.dll
2017-10-29 23:32 - 2017-10-10 06:42 - 000374784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FirewallAPI.dll
2017-10-29 23:32 - 2017-10-10 06:42 - 000326144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptngc.dll
2017-10-29 23:32 - 2017-10-10 06:41 - 000591872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PCPKsp.dll
2017-10-29 23:32 - 2017-10-10 06:39 - 000664576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2017-10-29 23:32 - 2017-10-10 06:37 - 001587200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2017-10-29 23:32 - 2017-10-10 06:36 - 001664000 _____ (Microsoft Corporation) C:\Windows\system32\GdiPlus.dll
2017-10-29 23:32 - 2017-10-10 06:36 - 000177664 _____ (Microsoft Corporation) C:\Windows\system32\t2embed.dll
2017-10-29 23:32 - 2017-10-10 06:34 - 000140800 _____ (Microsoft Corporation) C:\Windows\system32\Chakradiag.dll
2017-10-29 23:32 - 2017-10-10 06:34 - 000057344 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\UcmUcsi.sys
2017-10-29 23:32 - 2017-10-10 06:34 - 000034816 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\BasicRender.sys
2017-10-29 23:32 - 2017-10-10 06:34 - 000028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2017-10-29 23:32 - 2017-10-10 06:33 - 000086016 _____ (Microsoft Corporation) C:\Windows\system32\XblAuthTokenBrokerExt.dll
2017-10-29 23:32 - 2017-10-10 06:33 - 000058880 _____ (Microsoft Corporation) C:\Windows\system32\TpmTasks.dll
2017-10-29 23:32 - 2017-10-10 06:32 - 000529408 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\nwifi.sys
2017-10-29 23:32 - 2017-10-10 06:32 - 000461312 _____ (Microsoft Corporation) C:\Windows\system32\wlansec.dll
2017-10-29 23:32 - 2017-10-10 06:31 - 000665088 _____ (Microsoft Corporation) C:\Windows\system32\TpmCoreProvisioning.dll
2017-10-29 23:32 - 2017-10-10 06:30 - 000708096 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2017-10-29 23:32 - 2017-10-10 06:30 - 000542208 _____ (Microsoft Corporation) C:\Windows\system32\FirewallAPI.dll
2017-10-29 23:32 - 2017-10-10 06:29 - 000769024 _____ (Microsoft Corporation) C:\Windows\system32\PCPKsp.dll
2017-10-29 23:32 - 2017-10-10 06:27 - 001547264 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2017-10-29 23:32 - 2017-10-10 06:24 - 000726016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2017-10-29 23:32 - 2017-10-10 06:24 - 000285696 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2017-10-29 23:32 - 2017-10-03 23:42 - 000640512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mswstr10.dll
2017-10-29 23:32 - 2017-10-03 23:42 - 000008704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msjint40.dll
2017-10-29 20:12 - 2017-10-29 20:12 - 000000000 ____D C:\Users\david mora\AppData\Local\Microsoft Help
2017-10-29 20:10 - 2017-10-29 20:10 - 000000000 ____D C:\Users\david mora\AppData\Local\PlaceholderTileLogoFolder
2017-10-29 20:06 - 2017-10-29 20:07 - 000000000 ____D C:\Users\david mora\Desktop\Microsoft Office Professional Plus 2013 VL Edition x86 x64 FR
2017-10-29 19:57 - 2017-05-27 12:20 - 259195720 _____ (Apple Inc.) C:\Users\david mora\Desktop\iTunes64Setup.exe
2017-10-29 19:33 - 2017-10-30 12:53 - 000000000 ____D C:\Users\david mora\Desktop\Nouveau dossier
2017-10-29 19:33 - 2017-10-30 07:57 - 000000000 ____D C:\Users\david mora\Desktop\FILMS
2017-10-29 19:28 - 2017-10-29 19:28 - 000003938 _____ C:\Windows\System32\Tasks\CCleaner Update
2017-10-29 19:28 - 2017-10-29 19:28 - 000002880 _____ C:\Windows\System32\Tasks\CCleanerSkipUAC
2017-10-29 19:28 - 2017-10-29 19:28 - 000000867 _____ C:\Users\Public\Desktop\CCleaner.lnk
2017-10-29 19:28 - 2017-10-29 19:28 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2017-10-29 19:28 - 2017-10-29 19:28 - 000000000 ____D C:\Program Files\CCleaner
2017-10-29 19:27 - 2017-10-29 19:27 - 010427120 _____ (Piriform Ltd) C:\Users\david mora\Downloads\ccsetup536.exe
2017-10-29 18:52 - 2017-10-29 20:14 - 000000140 _____ C:\Windows\Reimage.ini
2017-10-29 14:23 - 2017-10-29 14:23 - 056134208 _____ (Oracle Corporation) C:\Users\david mora\Downloads\JavaSetup [1].exe
2017-10-29 13:39 - 2017-10-29 13:39 - 000000000 ____D C:\Users\david mora\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CopyTrans Control Center
2017-10-29 13:38 - 2017-10-29 13:39 - 000001506 _____ C:\Users\david mora\Desktop\CopyTrans Control Center.lnk
2017-10-29 13:38 - 2017-10-29 13:38 - 004156736 _____ (WindSolutions) C:\Users\david mora\Downloads\Install_CopyTrans_Suite-0.982.exe
2017-10-29 13:33 - 2017-10-29 13:33 - 002164336 _____ C:\Users\david mora\Desktop\CopyTransMDHelper.exe
2017-10-29 13:33 - 2017-10-29 13:33 - 000000000 ____D C:\Users\david mora\AppData\Roaming\Apple Computer
2017-10-29 13:31 - 2017-10-29 13:32 - 000000000 ____D C:\ProgramData\Apple
2017-10-29 13:31 - 2017-10-29 13:32 - 000000000 ____D C:\Program Files\Common Files\Apple
2017-10-29 13:28 - 2017-10-29 13:39 - 000000000 ____D C:\Users\david mora\AppData\Roaming\WindSolutions
2017-10-29 13:28 - 2017-10-29 13:39 - 000000000 ____D C:\ProgramData\WindSolutions
2017-10-29 13:28 - 2017-10-29 13:33 - 000000000 ____D C:\Users\david mora\Downloads\CopyTransFRv5.531
2017-10-29 13:28 - 2017-10-29 13:28 - 015332180 _____ C:\Users\david mora\Downloads\CopyTransFRv5.531.zip
2017-10-29 13:27 - 2017-10-29 13:27 - 000000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdMtpDr_01_11_00.Wdf
2017-10-29 13:03 - 2017-10-30 20:51 - 1569713756 ____R C:\Users\david mora\Downloads\[ Torrent9.tv ] war.for.the.planet.of.the.apes.2017.french.720p.bluray.x264-lost.mkv
2017-10-29 12:59 - 2017-10-29 12:59 - 000000000 ____D C:\Users\david mora\Downloads\[www.Cpasbien.pe] Guardians.of.the.Galaxy.2014.MULTi.1080p.BluRay.x264-VENUM
2017-10-29 12:56 - 2017-10-29 12:56 - 000000000 ____D C:\Users\david mora\AppData\Roaming\Macromedia
2017-10-29 12:41 - 2017-10-29 12:41 - 000000000 ____D C:\Users\david mora\Downloads\Doctor.Strange.2016.MULTi.1080p.BluRay.x264-VENUE
2017-10-29 12:36 - 2017-10-30 21:11 - 3146998025 ____R C:\Users\david mora\Downloads\[ Torrent9.tv ] Transformers.The.Last.Knight.2017.MULTi.1080p.BluRay.x264-LOST.mkv
2017-10-29 12:25 - 2017-10-29 14:32 - 000000000 ____D C:\Users\david mora\Downloads\shaka
2017-10-29 12:24 - 2017-10-29 12:54 - 000000000 ____D C:\Users\david mora\Downloads\Shaka_Ponk-The_White_Pixel_Ape_(Smoking_Isolate_to_Keep_in_Shape)-2014-1nDD
2017-10-29 12:23 - 2017-10-29 12:23 - 000405606 _____ C:\Users\david mora\Downloads\spider-man-homecoming-french-bluray-1080p-2017.torrent
2017-10-29 12:07 - 2017-10-31 07:39 - 000000000 ____D C:\Users\david mora\AppData\Roaming\uTorrent
2017-10-29 12:07 - 2017-10-29 12:07 - 000000905 _____ C:\Users\david mora\Desktop\ÂµTorrent.lnk
2017-10-29 12:07 - 2017-10-29 12:07 - 000000885 _____ C:\Users\david mora\AppData\Roaming\Microsoft\Windows\Start Menu\ÂµTorrent.lnk
2017-10-29 12:05 - 2017-10-29 12:06 - 002849376 _____ (BitTorrent Inc.) C:\Users\david mora\Downloads\uTorrent.exe
2017-10-29 11:46 - 2017-10-29 11:46 - 000061304 _____ () C:\Windows\system32\Drivers\lpsport.sys
2017-10-29 11:46 - 2017-10-29 11:46 - 000001983 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Antivirus Gratuit.lnk
2017-10-29 11:46 - 2017-10-29 11:46 - 000001971 _____ C:\Users\Public\Desktop\Avast Antivirus Gratuit.lnk
2017-10-29 11:46 - 2017-10-29 11:46 - 000000000 ____D C:\Users\david mora\AppData\Roaming\AVAST Software
2017-10-29 11:46 - 2017-10-29 11:46 - 000000000 ____D C:\Users\david mora\AppData\Local\CEF
2017-10-29 11:45 - 2017-10-29 11:46 - 001029872 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsnx.sys
2017-10-29 11:45 - 2017-10-29 11:45 - 000587168 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2017-10-29 11:45 - 2017-10-29 11:45 - 000401488 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2017-10-29 11:45 - 2017-10-29 11:45 - 000363440 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys
2017-10-29 11:45 - 2017-10-29 11:45 - 000201352 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2017-10-29 11:45 - 2017-10-29 11:45 - 000147776 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2017-10-29 11:45 - 2017-10-29 11:45 - 000110376 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2017-10-29 11:45 - 2017-10-29 11:45 - 000084416 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys
2017-10-29 11:45 - 2017-10-29 11:45 - 000047008 _____ (AVAST Software) C:\Windows\system32\Drivers\aswHwid.sys
2017-10-29 11:45 - 2017-10-29 11:45 - 000003994 _____ C:\Windows\System32\Tasks\Avast Emergency Update
2017-10-29 11:45 - 2017-10-29 11:44 - 000343288 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswbloga.sys
2017-10-29 11:45 - 2017-10-29 11:44 - 000321032 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswbidsdrivera.sys
2017-10-29 11:45 - 2017-10-29 11:44 - 000198976 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswbidsha.sys
2017-10-29 11:45 - 2017-10-29 11:44 - 000057736 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswbuniva.sys
2017-10-29 11:43 - 2017-10-29 14:35 - 000000000 ____D C:\ProgramData\AVAST Software
2017-10-29 11:43 - 2017-10-29 11:43 - 007161304 _____ (AVAST Software) C:\Users\david mora\Downloads\avast_free_antivirus_setup_online_e1j.exe
2017-10-29 11:43 - 2017-10-29 11:43 - 000000000 ____D C:\Program Files\AVAST Software
2017-10-29 11:35 - 2017-10-29 11:35 - 000000957 _____ C:\Users\Public\Desktop\OpenVPN GUI.lnk
2017-10-29 11:35 - 2017-10-29 11:35 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TAP-Windows
2017-10-29 11:35 - 2017-10-29 11:35 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenVPN
2017-10-29 11:35 - 2017-10-29 11:35 - 000000000 ____D C:\Program Files\TAP-Windows
2017-10-29 11:35 - 2017-10-29 11:35 - 000000000 ____D C:\Program Files\OpenVPN
2017-10-29 11:34 - 2017-10-29 11:34 - 003453240 _____ C:\Users\david mora\Downloads\openvpn-install-2.4.3-I601.exe
2017-10-29 11:28 - 2017-10-29 11:28 - 000000000 ____D C:\Users\david mora\OpenVPN
2017-10-29 10:41 - 2017-10-31 12:38 - 000003386 _____ C:\Windows\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2699067487-3190404336-583160459-1001
2017-10-29 10:40 - 2017-10-31 12:38 - 000002426 _____ C:\Users\david mora\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2017-10-29 10:40 - 2017-10-31 12:38 - 000000000 ___RD C:\Users\david mora\OneDrive
2017-10-29 10:39 - 2017-10-29 10:39 - 000000000 ____D C:\Users\david mora\AppData\Local\Comms
2017-10-29 10:37 - 2017-10-29 10:37 - 000002138 _____ C:\Users\Public\Desktop\3D Vision Photo Viewer.lnk
2017-10-29 10:37 - 2017-10-29 10:37 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2017-10-29 10:33 - 2016-11-14 10:45 - 000615992 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe
2017-10-29 10:30 - 2017-10-29 10:30 - 000000000 ____D C:\Users\david mora\AppData\Local\NVIDIA
2017-10-29 10:30 - 2017-10-29 10:30 - 000000000 ____D C:\ProgramData\USOShared
2017-10-29 10:30 - 2017-10-29 10:30 - 000000000 ____D C:\ProgramData\Microsoft OneDrive
2017-10-29 10:28 - 2017-10-31 12:34 - 000000000 ____D C:\ProgramData\NVIDIA
2017-10-29 10:28 - 2017-10-29 10:28 - 000000000 ___HD C:\Users\david mora\MicrosoftEdgeBackups
2017-10-29 10:28 - 2017-10-29 10:28 - 000000000 ____D C:\Users\david mora\AppData\Local\MicrosoftEdge
2017-10-29 10:28 - 2017-10-29 10:28 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2017-10-29 10:27 - 2017-10-29 20:23 - 000000000 ____D C:\Users\david mora\AppData\Local\Packages
2017-10-29 10:27 - 2017-10-29 14:12 - 000000000 __RHD C:\Users\Public\AccountPictures
2017-10-29 10:27 - 2017-10-29 10:29 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2017-10-29 10:27 - 2017-10-29 10:28 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2017-10-29 10:27 - 2017-10-29 10:27 - 000000000 ___RD C:\Users\david mora\3D Objects
2017-10-29 10:27 - 2017-10-29 10:27 - 000000000 ____D C:\Users\david mora\AppData\Roaming\Adobe
2017-10-29 10:27 - 2017-10-29 10:27 - 000000000 ____D C:\Users\david mora\AppData\Local\VirtualStore
2017-10-29 10:27 - 2017-10-29 10:27 - 000000000 ____D C:\Users\david mora\AppData\Local\Publishers
2017-10-29 10:27 - 2017-10-29 10:27 - 000000000 ____D C:\Users\david mora\AppData\Local\ConnectedDevicesPlatform
2017-10-29 10:27 - 2016-12-09 11:53 - 000091832 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2017-10-29 10:27 - 2016-12-09 11:53 - 000076864 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2017-10-29 10:27 - 2016-11-14 12:15 - 006789056 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2017-10-29 10:27 - 2016-11-14 12:15 - 003528128 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll
2017-10-29 10:27 - 2016-11-14 12:15 - 002558512 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll
2017-10-29 10:27 - 2016-11-14 12:15 - 000932728 _____ (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
2017-10-29 10:27 - 2016-11-14 12:15 - 000384888 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
2017-10-29 10:27 - 2016-11-14 12:15 - 000062328 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
2017-10-29 10:27 - 2016-11-14 10:09 - 007513855 _____ C:\Windows\system32\nvcoproc.bin
2017-10-29 10:26 - 2017-10-31 12:39 - 002055650 _____ C:\Windows\system32\PerfStringBackup.INI
2017-10-29 10:26 - 2017-10-30 12:54 - 000000000 ____D C:\Users\david mora
2017-10-29 10:26 - 2017-10-29 10:26 - 000000020 ___SH C:\Users\david mora\ntuser.ini
2017-10-29 10:26 - 2017-10-29 10:26 - 000000000 _SHDL C:\Users\david mora\Voisinage rÃ©seau
2017-10-29 10:26 - 2017-10-29 10:26 - 000000000 _SHDL C:\Users\david mora\Voisinage d'impression
2017-10-29 10:26 - 2017-10-29 10:26 - 000000000 _SHDL C:\Users\david mora\ModÃ¨les
2017-10-29 10:26 - 2017-10-29 10:26 - 000000000 _SHDL C:\Users\david mora\Mes documents
2017-10-29 10:26 - 2017-10-29 10:26 - 000000000 _SHDL C:\Users\david mora\Menu DÃ©marrer
2017-10-29 10:26 - 2017-10-29 10:26 - 000000000 _SHDL C:\Users\david mora\Documents\Mes vidÃ©os
2017-10-29 10:26 - 2017-10-29 10:26 - 000000000 _SHDL C:\Users\david mora\Documents\Mes images
2017-10-29 10:26 - 2017-10-29 10:26 - 000000000 _SHDL C:\Users\david mora\Documents\Ma musique
2017-10-29 10:26 - 2017-10-29 10:26 - 000000000 _SHDL C:\Users\david mora\AppData\Roaming\Microsoft\Windows\Start Menu\Programmes
2017-10-29 10:26 - 2017-10-29 10:26 - 000000000 _SHDL C:\Users\david mora\AppData\Local\Historique
2017-10-29 10:22 - 2017-09-29 14:41 - 002241024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintConfig.dll
2017-10-29 10:20 - 2017-10-29 10:20 - 000000000 _SHDL C:\Users\Public\Documents\Mes vidÃ©os
2017-10-29 10:20 - 2017-10-29 10:20 - 000000000 _SHDL C:\Users\Public\Documents\Mes images
2017-10-29 10:20 - 2017-10-29 10:20 - 000000000 _SHDL C:\Users\Public\Documents\Ma musique
2017-10-29 10:20 - 2017-10-29 10:20 - 000000000 _SHDL C:\Users\Default\AppData\Local\Historique
2017-10-29 10:20 - 2017-10-29 10:20 - 000000000 _SHDL C:\Users\Default User\AppData\Local\Historique
2017-10-29 10:20 - 2017-10-29 10:20 - 000000000 _SHDL C:\ProgramData\ModÃ¨les
2017-10-29 10:20 - 2017-10-29 10:20 - 000000000 _SHDL C:\ProgramData\Microsoft\Windows\Start Menu\Programmes
2017-10-29 10:20 - 2017-10-29 10:20 - 000000000 _SHDL C:\ProgramData\Menu DÃ©marrer
2017-10-29 10:20 - 2017-10-29 10:20 - 000000000 _SHDL C:\ProgramData\Bureau
2017-10-29 10:20 - 2017-10-29 10:20 - 000000000 _SHDL C:\Program Files\Fichiers communs
2017-10-29 10:20 - 2017-10-29 10:20 - 000000000 _SHDL C:\Documents and Settings
2017-10-29 10:19 - 2017-10-29 10:19 - 000000000 _SHDL C:\Users\Default\Voisinage rÃ©seau
2017-10-29 10:19 - 2017-10-29 10:19 - 000000000 _SHDL C:\Users\Default\Voisinage d'impression
2017-10-29 10:19 - 2017-10-29 10:19 - 000000000 _SHDL C:\Users\Default\ModÃ¨les
2017-10-29 10:19 - 2017-10-29 10:19 - 000000000 _SHDL C:\Users\Default\Mes documents
2017-10-29 10:19 - 2017-10-29 10:19 - 000000000 _SHDL C:\Users\Default\Menu DÃ©marrer
2017-10-29 10:19 - 2017-10-29 10:19 - 000000000 _SHDL C:\Users\Default\Documents\Mes vidÃ©os
2017-10-29 10:19 - 2017-10-29 10:19 - 000000000 _SHDL C:\Users\Default\Documents\Mes images
2017-10-29 10:19 - 2017-10-29 10:19 - 000000000 _SHDL C:\Users\Default\Documents\Ma musique
2017-10-29 10:19 - 2017-10-29 10:19 - 000000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programmes
2017-10-29 10:19 - 2017-10-29 10:19 - 000000000 _SHDL C:\Users\Default User\Documents\Mes vidÃ©os
2017-10-29 10:19 - 2017-10-29 10:19 - 000000000 _SHDL C:\Users\Default User\Documents\Mes images
2017-10-29 10:19 - 2017-10-29 10:19 - 000000000 _SHDL C:\Users\Default User\Documents\Ma musique
2017-10-29 10:19 - 2017-10-29 10:19 - 000000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programmes
2017-10-29 10:13 - 2017-10-29 10:13 - 000000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf
2017-10-29 10:12 - 2017-10-31 12:34 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2017-10-29 10:12 - 2017-10-31 07:38 - 000000000 ____D C:\Windows\system32\SleepStudy
2017-10-29 10:12 - 2017-10-30 00:13 - 000222040 _____ C:\Windows\system32\FNTCACHE.DAT
2017-10-29 10:12 - 2017-10-29 10:12 - 000000000 ____D C:\Windows\ServiceProfiles
2017-10-29 10:11 - 2017-10-29 20:08 - 000000000 ____D C:\Windows\Panther

==================== Un mois - ModifiÃ©s - fichiers et dossiers ========

(Si un Ã©lÃ©ment est inclus dans le fichier fixlist.txt, le fichier/dossier sera dÃ©placÃ©.)

2017-10-31 12:42 - 2017-09-29 14:44 - 000000000 ____D C:\Windows\INF
2017-10-31 12:40 - 2017-09-29 14:46 - 000000000 ____D C:\Windows\AppReadiness
2017-10-31 12:39 - 2017-09-30 15:40 - 000945002 _____ C:\Windows\system32\perfh00C.dat
2017-10-31 12:39 - 2017-09-30 15:40 - 000194136 _____ C:\Windows\system32\perfc00C.dat
2017-10-31 07:40 - 2017-09-29 09:45 - 000524288 _____ C:\Windows\system32\config\BBI
2017-10-30 20:08 - 2017-09-29 14:46 - 000000000 ____D C:\Windows\DeliveryOptimization
2017-10-30 04:19 - 2017-09-29 14:46 - 000000000 ____D C:\Windows\appcompat
2017-10-30 00:10 - 2017-09-30 15:41 - 000000000 ____D C:\Windows\SysWOW64\zu-ZA
2017-10-30 00:10 - 2017-09-30 15:41 - 000000000 ____D C:\Windows\SysWOW64\yo-NG
2017-10-30 00:10 - 2017-09-30 15:41 - 000000000 ____D C:\Windows\SysWOW64\xh-ZA
2017-10-30 00:10 - 2017-09-30 15:41 - 000000000 ____D C:\Windows\SysWOW64\wo-SN
2017-10-30 00:10 - 2017-09-30 15:41 - 000000000 ____D C:\Windows\SysWOW64\vi-VN
2017-10-30 00:10 - 2017-09-30 15:41 - 000000000 ____D C:\Windows\SysWOW64\uz-Latn-UZ
2017-10-30 00:10 - 2017-09-30 15:41 - 000000000 ____D C:\Windows\SysWOW64\ur-PK
2017-10-30 00:10 - 2017-09-30 15:41 - 000000000 ____D C:\Windows\SysWOW64\ug-CN
2017-10-30 00:10 - 2017-09-30 15:41 - 000000000 ____D C:\Windows\SysWOW64\tt-RU
2017-10-30 00:10 - 2017-09-30 15:41 - 000000000 ____D C:\Windows\SysWOW64\tn-ZA
2017-10-30 00:10 - 2017-09-30 15:41 - 000000000 ____D C:\Windows\SysWOW64\tk-TM
2017-10-30 00:10 - 2017-09-30 15:41 - 000000000 ____D C:\Windows\SysWOW64\ti-ET
2017-10-30 00:10 - 2017-09-30 15:41 - 000000000 ____D C:\Windows\SysWOW64\tg-Cyrl-TJ
2017-10-30 00:10 - 2017-09-30 15:41 - 000000000 ____D C:\Windows\SysWOW64\te-IN
2017-10-30 00:10 - 2017-09-30 15:41 - 000000000 ____D C:\Windows\SysWOW64\ta-IN
2017-10-30 00:10 - 2017-09-30 15:41 - 000000000 ____D C:\Windows\SysWOW64\sw-KE
2017-10-30 00:10 - 2017-09-30 15:41 - 000000000 ____D C:\Windows\SysWOW64\sr-Cyrl-RS
2017-10-30 00:10 - 2017-09-30 15:41 - 000000000 ____D C:\Windows\SysWOW64\sr-Cyrl-BA
2017-10-30 00:10 - 2017-09-30 15:41 - 000000000 ____D C:\Windows\SysWOW64\sq-AL
2017-10-30 00:10 - 2017-09-30 15:41 - 000000000 ____D C:\Windows\SysWOW64\si-LK
2017-10-30 00:10 - 2017-09-30 15:41 - 000000000 ____D C:\Windows\SysWOW64\sd-Arab-PK
2017-10-30 00:10 - 2017-09-30 15:41 - 000000000 ____D C:\Windows\SysWOW64\rw-RW
2017-10-30 00:10 - 2017-09-30 15:41 - 000000000 ____D C:\Windows\SysWOW64\quz-PE
2017-10-30 00:10 - 2017-09-30 15:41 - 000000000 ____D C:\Windows\SysWOW64\quc-Latn-GT
2017-10-30 00:10 - 2017-09-30 15:41 - 000000000 ____D C:\Windows\SysWOW64\prs-AF
2017-10-30 00:10 - 2017-09-30 15:41 - 000000000 ____D C:\Windows\SysWOW64\pa-IN
2017-10-30 00:10 - 2017-09-30 15:41 - 000000000 ____D C:\Windows\SysWOW64\pa-Arab-PK
2017-10-30 00:10 - 2017-09-30 15:41 - 000000000 ____D C:\Windows\SysWOW64\or-IN
2017-10-30 00:10 - 2017-09-30 15:41 - 000000000 ____D C:\Windows\SysWOW64\nso-ZA
2017-10-30 00:10 - 2017-09-30 15:41 - 000000000 ____D C:\Windows\SysWOW64\nn-NO
2017-10-30 00:10 - 2017-09-30 15:41 - 000000000 ____D C:\Windows\SysWOW64\ne-NP
2017-10-30 00:10 - 2017-09-30 15:41 - 000000000 ____D C:\Windows\SysWOW64\mt-MT
2017-10-30 00:10 - 2017-09-30 15:41 - 000000000 ____D C:\Windows\SysWOW64\mr-IN
2017-10-30 00:10 - 2017-09-30 15:41 - 000000000 ____D C:\Windows\SysWOW64\mn-MN
2017-10-30 00:10 - 2017-09-30 15:41 - 000000000 ____D C:\Windows\SysWOW64\ml-IN
2017-10-30 00:10 - 2017-09-30 15:41 - 000000000 ____D C:\Windows\SysWOW64\mk-MK
2017-10-30 00:10 - 2017-09-30 15:41 - 000000000 ____D C:\Windows\SysWOW64\mi-NZ
2017-10-30 00:10 - 2017-09-30 15:41 - 000000000 ____D C:\Windows\SysWOW64\lo-LA
2017-10-30 00:10 - 2017-09-30 15:41 - 000000000 ____D C:\Windows\SysWOW64\lb-LU
2017-10-30 00:10 - 2017-09-30 15:41 - 000000000 ____D C:\Windows\SysWOW64\ky-KG
2017-10-30 00:10 - 2017-09-30 15:41 - 000000000 ____D C:\Windows\SysWOW64\ku-Arab-IQ
2017-10-30 00:10 - 2017-09-30 15:41 - 000000000 ____D C:\Windows\SysWOW64\kok-IN
2017-10-30 00:10 - 2017-09-30 15:41 - 000000000 ____D C:\Windows\SysWOW64\kn-IN
2017-10-30 00:10 - 2017-09-30 15:41 - 000000000 ____D C:\Windows\SysWOW64\km-KH
2017-10-30 00:10 - 2017-09-30 15:41 - 000000000 ____D C:\Windows\SysWOW64\kk-KZ
2017-10-30 00:10 - 2017-09-30 15:41 - 000000000 ____D C:\Windows\SysWOW64\ka-GE
2017-10-30 00:10 - 2017-09-30 15:41 - 000000000 ____D C:\Windows\SysWOW64\is-IS
2017-10-30 00:10 - 2017-09-30 15:41 - 000000000 ____D C:\Windows\SysWOW64\ig-NG
2017-10-30 00:10 - 2017-09-30 15:41 - 000000000 ____D C:\Windows\SysWOW64\id-ID
2017-10-30 00:10 - 2017-09-30 15:41 - 000000000 ____D C:\Windows\SysWOW64\hy-AM
2017-10-30 00:10 - 2017-09-30 15:41 - 000000000 ____D C:\Windows\SysWOW64\ha-Latn-NG
2017-10-30 00:10 - 2017-09-30 15:41 - 000000000 ____D C:\Windows\SysWOW64\gu-IN
2017-10-30 00:10 - 2017-09-30 15:41 - 000000000 ____D C:\Windows\SysWOW64\gd-GB
2017-10-30 00:10 - 2017-09-30 15:41 - 000000000 ____D C:\Windows\SysWOW64\ga-IE
2017-10-30 00:10 - 2017-09-30 15:41 - 000000000 ____D C:\Windows\SysWOW64\fil-PH
2017-10-30 00:10 - 2017-09-30 15:41 - 000000000 ____D C:\Windows\SysWOW64\fa-IR
2017-10-30 00:10 - 2017-09-30 15:41 - 000000000 ____D C:\Windows\SysWOW64\cy-GB
2017-10-30 00:10 - 2017-09-30 15:41 - 000000000 ____D C:\Windows\SysWOW64\chr-CHER-US
2017-10-30 00:10 - 2017-09-30 15:41 - 000000000 ____D C:\Windows\SysWOW64\ca-ES-valencia
2017-10-30 00:10 - 2017-09-30 15:41 - 000000000 ____D C:\Windows\SysWOW64\bs-Latn-BA
2017-10-30 00:10 - 2017-09-30 15:41 - 000000000 ____D C:\Windows\SysWOW64\bn-IN
2017-10-30 00:10 - 2017-09-30 15:41 - 000000000 ____D C:\Windows\SysWOW64\bn-BD
2017-10-30 00:10 - 2017-09-30 15:41 - 000000000 ____D C:\Windows\SysWOW64\be-BY
2017-10-30 00:10 - 2017-09-30 15:41 - 000000000 ____D C:\Windows\SysWOW64\az-Latn-AZ
2017-10-30 00:10 - 2017-09-30 15:41 - 000000000 ____D C:\Windows\SysWOW64\as-IN
2017-10-30 00:10 - 2017-09-30 15:41 - 000000000 ____D C:\Windows\SysWOW64\am-ET
2017-10-30 00:10 - 2017-09-30 15:41 - 000000000 ____D C:\Windows\SysWOW64\af-ZA
2017-10-30 00:10 - 2017-09-30 15:41 - 000000000 ____D C:\Windows\system32\zu-ZA
2017-10-30 00:10 - 2017-09-30 15:41 - 000000000 ____D C:\Windows\system32\yo-NG
2017-10-30 00:10 - 2017-09-30 15:41 - 000000000 ____D C:\Windows\system32\xh-ZA
2017-10-30 00:10 - 2017-09-30 15:41 - 000000000 ____D C:\Windows\system32\wo-SN
2017-10-30 00:10 - 2017-09-30 15:41 - 000000000 ____D C:\Windows\system32\vi-VN
2017-10-30 00:10 - 2017-09-30 15:41 - 000000000 ____D C:\Windows\system32\uz-Latn-UZ
2017-10-30 00:10 - 2017-09-30 15:41 - 000000000 ____D C:\Windows\system32\ur-PK
2017-10-30 00:10 - 2017-09-30 15:41 - 000000000 ____D C:\Windows\system32\ug-CN
2017-10-30 00:10 - 2017-09-30 15:41 - 000000000 ____D C:\Windows\system32\tt-RU
2017-10-30 00:10 - 2017-09-30 15:41 - 000000000 ____D C:\Windows\system32\tn-ZA
2017-10-30 00:10 - 2017-09-30 15:41 - 000000000 ____D C:\Windows\system32\tk-TM
2017-10-30 00:10 - 2017-09-30 15:41 - 000000000 ____D C:\Windows\system32\ti-ET
2017-10-30 00:10 - 2017-09-30 15:41 - 000000000 ____D C:\Windows\system32\tg-Cyrl-TJ
2017-10-30 00:10 - 2017-09-30 15:41 - 000000000 ____D C:\Windows\system32\te-IN
2017-10-30 00:10 - 2017-09-30 15:41 - 000000000 ____D C:\Windows\system32\ta-IN
2017-10-30 00:10 - 2017-09-30 15:41 - 000000000 ____D C:\Windows\system32\sw-KE
2017-10-30 00:10 - 2017-09-30 15:41 - 000000000 ____D C:\Windows\system32\sr-Cyrl-RS
2017-10-30 00:10 - 2017-09-30 15:41 - 000000000 ____D C:\Windows\system32\sr-Cyrl-BA
2017-10-30 00:10 - 2017-09-30 15:41 - 000000000 ____D C:\Windows\system32\sq-AL
2017-10-30 00:10 - 2017-09-30 15:41 - 000000000 ____D C:\Windows\system32\si-LK
2017-10-30 00:10 - 2017-09-30 15:41 - 000000000 ____D C:\Windows\system32\sd-Arab-PK
2017-10-30 00:10 - 2017-09-30 15:41 - 000000000 ____D C:\Windows\system32\rw-RW
2017-10-30 00:10 - 2017-09-30 15:41 - 000000000 ____D C:\Windows\system32\quz-PE
2017-10-30 00:10 - 2017-09-30 15:41 - 000000000 ____D C:\Windows\system32\quc-Latn-GT
2017-10-30 00:10 - 2017-09-30 15:41 - 000000000 ____D C:\Windows\system32\prs-AF
2017-10-30 00:10 - 2017-09-30 15:41 - 000000000 ____D C:\Windows\system32\pa-IN
2017-10-30 00:10 - 2017-09-30 15:41 - 000000000 ____D C:\Windows\system32\pa-Arab-PK
2017-10-30 00:10 - 2017-09-30 15:41 - 000000000 ____D C:\Windows\system32\or-IN
2017-10-30 00:10 - 2017-09-30 15:41 - 000000000 ____D C:\Windows\system32\nso-ZA
2017-10-30 00:10 - 2017-09-30 15:41 - 000000000 ____D C:\Windows\system32\nn-NO
2017-10-30 00:10 - 2017-09-30 15:41 - 000000000 ____D C:\Windows\system32\ne-NP
2017-10-30 00:10 - 2017-09-30 15:41 - 000000000 ____D C:\Windows\system32\mt-MT
2017-10-30 00:10 - 2017-09-30 15:41 - 000000000 ____D C:\Windows\system32\mr-IN
2017-10-30 00:10 - 2017-09-30 15:41 - 000000000 ____D C:\Windows\system32\mn-MN
2017-10-30 00:10 - 2017-09-30 15:41 - 000000000 ____D C:\Windows\system32\ml-IN
2017-10-30 00:10 - 2017-09-30 15:41 - 000000000 ____D C:\Windows\system32\mk-MK
2017-10-30 00:10 - 2017-09-30 15:41 - 000000000 ____D C:\Windows\system32\mi-NZ
2017-10-30 00:10 - 2017-09-30 15:41 - 000000000 ____D C:\Windows\system32\lo-LA
2017-10-30 00:10 - 2017-09-30 15:41 - 000000000 ____D C:\Windows\system32\lb-LU
2017-10-30 00:10 - 2017-09-30 15:41 - 000000000 ____D C:\Windows\system32\ky-KG
2017-10-30 00:10 - 2017-09-30 15:41 - 000000000 ____D C:\Windows\system32\ku-Arab-IQ
2017-10-30 00:10 - 2017-09-30 15:41 - 000000000 ____D C:\Windows\system32\kok-IN
2017-10-30 00:10 - 2017-09-30 15:41 - 000000000 ____D C:\Windows\system32\kn-IN
2017-10-30 00:10 - 2017-09-30 15:41 - 000000000 ____D C:\Windows\system32\km-KH
2017-10-30 00:10 - 2017-09-30 15:41 - 000000000 ____D C:\Windows\system32\kk-KZ
2017-10-30 00:10 - 2017-09-30 15:41 - 000000000 ____D C:\Windows\system32\ka-GE
2017-10-30 00:10 - 2017-09-30 15:41 - 000000000 ____D C:\Windows\system32\is-IS
2017-10-30 00:10 - 2017-09-30 15:41 - 000000000 ____D C:\Windows\system32\ig-NG
2017-10-30 00:10 - 2017-09-30 15:41 - 000000000 ____D C:\Windows\system32\id-ID
2017-10-30 00:10 - 2017-09-30 15:41 - 000000000 ____D C:\Windows\system32\hy-AM
2017-10-30 00:10 - 2017-09-30 15:41 - 000000000 ____D C:\Windows\system32\ha-Latn-NG
2017-10-30 00:10 - 2017-09-30 15:41 - 000000000 ____D C:\Windows\system32\gu-IN
2017-10-30 00:10 - 2017-09-30 15:41 - 000000000 ____D C:\Windows\system32\gd-GB
2017-10-30 00:10 - 2017-09-30 15:41 - 000000000 ____D C:\Windows\system32\ga-IE
2017-10-30 00:10 - 2017-09-30 15:41 - 000000000 ____D C:\Windows\system32\fil-PH
2017-10-30 00:10 - 2017-09-30 15:41 - 000000000 ____D C:\Windows\system32\fa-IR
2017-10-30 00:10 - 2017-09-30 15:41 - 000000000 ____D C:\Windows\system32\cy-GB
2017-10-30 00:10 - 2017-09-30 15:41 - 000000000 ____D C:\Windows\system32\chr-CHER-US
2017-10-30 00:10 - 2017-09-30 15:41 - 000000000 ____D C:\Windows\system32\ca-ES-valencia
2017-10-30 00:10 - 2017-09-30 15:41 - 000000000 ____D C:\Windows\system32\bs-Latn-BA
2017-10-30 00:10 - 2017-09-30 15:41 - 000000000 ____D C:\Windows\system32\bn-IN
2017-10-30 00:10 - 2017-09-30 15:41 - 000000000 ____D C:\Windows\system32\bn-BD
2017-10-30 00:10 - 2017-09-30 15:41 - 000000000 ____D C:\Windows\system32\be-BY
2017-10-30 00:10 - 2017-09-30 15:41 - 000000000 ____D C:\Windows\system32\az-Latn-AZ
2017-10-30 00:10 - 2017-09-30 15:41 - 000000000 ____D C:\Windows\system32\as-IN
2017-10-30 00:10 - 2017-09-30 15:41 - 000000000 ____D C:\Windows\system32\am-ET
2017-10-30 00:10 - 2017-09-30 15:41 - 000000000 ____D C:\Windows\system32\af-ZA
2017-10-30 00:10 - 2017-09-29 14:46 - 000000000 ____D C:\Windows\system32\appraiser
2017-10-29 23:39 - 2017-09-29 14:37 - 000000000 ____D C:\Windows\CbsTemp
2017-10-29 20:14 - 2017-09-29 14:46 - 000000000 ___HD C:\Program Files\WindowsApps
2017-10-29 20:12 - 2017-09-29 14:46 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2017-10-29 13:28 - 2017-09-14 15:48 - 015786992 _____ (WindSolutions) C:\Users\david mora\Desktop\CopyTrans.exe
2017-10-29 10:30 - 2017-09-29 14:46 - 000000000 ____D C:\ProgramData\USOPrivate
2017-10-29 10:27 - 2017-09-29 14:46 - 000000000 ____D C:\Windows\Help
2017-10-29 10:23 - 2017-09-29 14:46 - 000000000 ____D C:\Windows\system32\WinBioDatabase
2017-10-29 10:22 - 2017-09-29 14:46 - 000000000 ____D C:\Windows\system32\spool
2017-10-29 10:22 - 2017-09-29 14:46 - 000000000 ____D C:\Windows\system32\FxsTmp
2017-10-29 10:20 - 2017-09-29 14:46 - 000000000 ____D C:\Program Files\windows nt
2017-10-29 10:17 - 2017-09-29 09:45 - 000000000 ____D C:\Windows\system32\Sysprep
2017-10-29 10:14 - 2017-09-29 14:46 - 000000000 ___RD C:\Windows\PrintDialog
2017-10-29 10:14 - 2017-09-29 14:46 - 000000000 ___RD C:\Windows\ImmersiveControlPanel
2017-10-29 10:13 - 2017-09-29 09:45 - 000032768 _____ C:\Windows\system32\config\ELAM
2017-10-29 10:11 - 2017-09-29 14:46 - 000028672 _____ C:\Windows\system32\config\BCD-Template
2017-10-13 19:08 - 2017-09-29 14:49 - 000835576 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2017-10-13 19:08 - 2017-09-29 14:49 - 000177656 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl

Certains fichiers dans TEMP:
====================
2017-10-30 20:58 - 2017-10-30 20:58 - 007694194 _____ (Convertir.co                                                ) C:\Users\david mora\AppData\Local\Temp\convertisseur-mp3.exe
2017-10-29 18:54 - 2017-10-29 19:08 - 013489912 _____ (Reimage) C:\Users\david mora\AppData\Local\Temp\ReimagePackage.exe

==================== Bamital & volsnap ======================

(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas Ã  la vÃ©rification.)

C:\Windows\system32\winlogon.exe => Le fichier est signÃ© numÃ©riquement
C:\Windows\system32\wininit.exe => Le fichier est signÃ© numÃ©riquement
C:\Windows\explorer.exe => Le fichier est signÃ© numÃ©riquement
C:\Windows\SysWOW64\explorer.exe => Le fichier est signÃ© numÃ©riquement
C:\Windows\system32\svchost.exe => Le fichier est signÃ© numÃ©riquement
C:\Windows\SysWOW64\svchost.exe => Le fichier est signÃ© numÃ©riquement
C:\Windows\system32\services.exe => Le fichier est signÃ© numÃ©riquement
C:\Windows\system32\User32.dll => Le fichier est signÃ© numÃ©riquement
C:\Windows\SysWOW64\User32.dll => Le fichier est signÃ© numÃ©riquement
C:\Windows\system32\userinit.exe => Le fichier est signÃ© numÃ©riquement
C:\Windows\SysWOW64\userinit.exe => Le fichier est signÃ© numÃ©riquement
C:\Windows\system32\rpcss.dll => Le fichier est signÃ© numÃ©riquement
C:\Windows\system32\dnsapi.dll => Le fichier est signÃ© numÃ©riquement
C:\Windows\SysWOW64\dnsapi.dll => Le fichier est signÃ© numÃ©riquement
C:\Windows\system32\Drivers\volsnap.sys => Le fichier est signÃ© numÃ©riquement

LastRegBack: 2017-10-29 10:12

==================== Fin de FRST.txt ============================