Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 09.12.2018 Exécuté par DRATH REVAN (administrateur) sur DESKTOP-I7T3RIP (13-12-2018 11:59:22) Exécuté depuis F:\Mes documents\telechargement Profils chargés: DRATH REVAN (Profils disponibles: DRATH REVAN) Platform: Windows 10 Pro N 10240.17443 (X64) Langue: Français (France) Internet Explorer Version 11 (Navigateur par défaut: "C:\Users\DRATH REVAN\AppData\Local\Vivaldi\Application\vivaldi.exe" -- "%1") Mode d'amorçage: Normal Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processus (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.) (AMD) C:\Windows\System32\atiesrxx.exe (AMD) C:\Windows\System32\atieclxx.exe (AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\AVGSvc.exe () C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.22\AsSysCtrlService.exe (ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AAHM\1.00.22\aaHMSvc.exe (Broadcom Corporation.) C:\Windows\System32\BtwRSupportService.exe (CheckMAL Inc.) C:\Program Files\CheckMAL\AppCheck\AppCheckS.exe () C:\Program Files (x86)\ASUS\AXSP\1.02.00\atkexComSvc.exe (EnigmaSoft Limited) C:\Program Files\EnigmaSoft\SpyHunter\ShKernel.exe (ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AsusFanControlService\1.06.17\AsusFanControlService.exe (Intel Corporation) C:\Windows\System32\IPROSetMonitor.exe (Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe (Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe (IObit) C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe () C:\Program Files (x86)\NordVPN\nordvpn-service.exe (Saitek) C:\Program Files\Saitek\DirectOutput\DirectOutputService.exe (EnigmaSoft Limited) C:\Program Files\EnigmaSoft\SpyHunter\ShMonitor.exe (Plex, Inc.) C:\Program Files (x86)\Plex\Plex Media Server\Plex Update Service.exe (Electronic Arts) C:\Program Files (x86)\Origin\OriginWebHelperService.exe (ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite III\Push Notice\PushNotifyServer.exe (Bitdefender LLC) C:\Program Files\Bitdefender\Tools\BDAntiRansomware\BDAntiRansomware.exe (ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite III\AISuite3.exe () C:\Program Files (x86)\ASUS\AI Suite III\DIP4\DIPAwayMode\DipAwayMode.exe () C:\Program Files (x86)\ASUS\AI Suite III\EZ Update\EzUpdt.exe (EnigmaSoft Limited) C:\Program Files\EnigmaSoft\SpyHunter\SpyHunter5.exe (Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe (ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite III\USB 3.0 Boost\U3BoostSvr64.exe () C:\Program Files (x86)\ASUS\AI Suite III\Push Notice\PushNoticeMonitor.exe () C:\Program Files (x86)\ASUS\AI Suite III\Push Notice\PushNotify_PCCtrl.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe (CheckMAL Inc.) C:\Program Files\CheckMAL\AppCheck\AppCheck.exe (AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\AVGUI.exe (Plex, Inc.) C:\Program Files (x86)\Plex\Plex Media Server\Plex Media Server.exe (Python Software Foundation) C:\Program Files (x86)\Plex\Plex Media Server\PlexScriptHost.exe (Binary Fortress Software) C:\Program Files (x86)\DisplayFusion\DisplayFusion.exe (Python Software Foundation) C:\Program Files (x86)\Plex\Plex Media Server\PlexScriptHost.exe (Plex, Inc.) C:\Program Files (x86)\Plex\Plex Media Server\Plex DLNA Server.exe (Plex) C:\Program Files (x86)\Plex\Plex Media Server\Plex Tuner Service.exe (Binary Fortress Software) C:\Program Files (x86)\DisplayFusion\DisplayFusionService.exe (Binary Fortress Software) C:\Program Files (x86)\DisplayFusion\DisplayFusionHookApp64.exe (Binary Fortress Software) C:\Program Files (x86)\DisplayFusion\DisplayFusionHookApp32.exe (NordVPN) C:\Program Files (x86)\NordVPN\NordVPN.exe (Microsoft Corporation) C:\Program Files\rempl\sedsvc.exe (Vivaldi Technologies AS) C:\Users\DRATH REVAN\AppData\Local\Vivaldi\Application\update_notifier.exe (Vivaldi Technologies AS) C:\Users\DRATH REVAN\AppData\Local\Vivaldi\Application\vivaldi.exe (Vivaldi Technologies AS) C:\Users\DRATH REVAN\AppData\Local\Vivaldi\Application\vivaldi.exe (Vivaldi Technologies AS) C:\Users\DRATH REVAN\AppData\Local\Vivaldi\Application\vivaldi.exe (Vivaldi Technologies AS) C:\Users\DRATH REVAN\AppData\Local\Vivaldi\Application\vivaldi.exe (Vivaldi Technologies AS) C:\Users\DRATH REVAN\AppData\Local\Vivaldi\Application\vivaldi.exe (Vivaldi Technologies AS) C:\Users\DRATH REVAN\AppData\Local\Vivaldi\Application\vivaldi.exe (Vivaldi Technologies AS) C:\Users\DRATH REVAN\AppData\Local\Vivaldi\Application\vivaldi.exe (Vivaldi Technologies AS) C:\Users\DRATH REVAN\AppData\Local\Vivaldi\Application\vivaldi.exe (Vivaldi Technologies AS) C:\Users\DRATH REVAN\AppData\Local\Vivaldi\Application\vivaldi.exe (Vivaldi Technologies AS) C:\Users\DRATH REVAN\AppData\Local\Vivaldi\Application\vivaldi.exe (Vivaldi Technologies AS) C:\Users\DRATH REVAN\AppData\Local\Vivaldi\Application\vivaldi.exe (Vivaldi Technologies AS) C:\Users\DRATH REVAN\AppData\Local\Vivaldi\Application\vivaldi.exe (Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\amddvr.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe () C:\Program Files (x86)\ASUS\AI Suite III\AsusMiniBar.exe (Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\amdow.exe (IObit) C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallMonitor.exe (The OpenVPN Project) C:\Program Files (x86)\NordVPN\Resources\Binaries\64bit\openvpn-nordvpn.exe (AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Antivirus\x64\aswidsagenta.exe (BitTorrent, Inc.) C:\Program Files (x86)\uTorrent\uTorrent.exe () C:\Program Files (x86)\ContaCam\ContaCam.exe () C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1604.21020.2000_x64__8wekyb3d8bbwe\Calculator.exe (Vivaldi Technologies AS) C:\Users\DRATH REVAN\AppData\Local\Vivaldi\Application\vivaldi.exe (Vivaldi Technologies AS) C:\Users\DRATH REVAN\AppData\Local\Vivaldi\Application\vivaldi.exe (Vivaldi Technologies AS) C:\Users\DRATH REVAN\AppData\Local\Vivaldi\Application\vivaldi.exe (Adobe Systems Inc.) C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\acrotray.exe (Vivaldi Technologies AS) C:\Users\DRATH REVAN\AppData\Local\Vivaldi\Application\vivaldi.exe (Vivaldi Technologies AS) C:\Users\DRATH REVAN\AppData\Local\Vivaldi\Application\vivaldi.exe (Vivaldi Technologies AS) C:\Users\DRATH REVAN\AppData\Local\Vivaldi\Application\vivaldi.exe (Vivaldi Technologies AS) C:\Users\DRATH REVAN\AppData\Local\Vivaldi\Application\vivaldi.exe () F:\Mes documents\telechargement\ZHPDiag3.exe (Vivaldi Technologies AS) C:\Users\DRATH REVAN\AppData\Local\Vivaldi\Application\vivaldi.exe (Vivaldi Technologies AS) C:\Users\DRATH REVAN\AppData\Local\Vivaldi\Application\vivaldi.exe ==================== Registre (Avec liste blanche) =========================== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.) HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [322472 2015-06-23] (Intel Corporation) HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8483032 2015-05-28] (Realtek Semiconductor) HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-11] (Adobe Systems Incorporated) HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2670056 2018-09-10] (Adobe Systems, Incorporated) HKLM\...\Run: [AppCheck Tray] => C:\Program Files\CheckMAL\AppCheck\AppCheck.exe [1672976 2018-11-21] (CheckMAL Inc.) HKLM\...\Run: [AVGUI.exe] => C:\Program Files\AVG\Antivirus\AvLaunch.exe [290064 2018-12-13] (AVG Technologies CZ, s.r.o.) HKLM-x32\...\Run: [ASUS AiChargerPlus Execute] => C:\Program Files (x86)\InstallShield Installation Information\{E6931688-DA2B-4E16-8539-3D323D69C677}\AiChargerPlus.exe [550272 2013-01-28] (ASUSTek Computer Inc.) HKLM-x32\...\Run: [Acrobat Assistant 8.0] => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Acrotray.exe [1871344 2018-10-06] (Adobe Systems Inc.) HKLM-x32\...\Run: [] => [X] HKU\S-1-5-21-3249716817-4142608158-2748813561-1001\...\Run: [Plex Media Server] => C:\Program Files (x86)\Plex\Plex Media Server\Plex Media Server.exe [18580968 2018-11-23] (Plex, Inc.) HKU\S-1-5-21-3249716817-4142608158-2748813561-1001\...\Run: [DisplayFusion] => C:\Program Files (x86)\DisplayFusion\DisplayFusion.exe [9013136 2018-06-27] (Binary Fortress Software) HKU\S-1-5-21-3249716817-4142608158-2748813561-1001\...\Run: [Videostream] => C:\Users\DRATH REVAN\AppData\Local\Videostream\app-0.3.5\Videostream.exe [339608 2018-10-12] (Videostream) HKU\S-1-5-21-3249716817-4142608158-2748813561-1001\...\Run: [HP OfficeJet 4650 series (NET)] => C:\Program Files\HP\HP OfficeJet 4650 series\Bin\ScanToPCActivationApp.exe [3770504 2017-04-06] (HP Inc.) HKU\S-1-5-21-3249716817-4142608158-2748813561-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3208992 2018-10-13] (Valve Corporation) HKU\S-1-5-21-3249716817-4142608158-2748813561-1001\...\Run: [EADM] => C:\Program Files (x86)\Origin\Origin.exe [3113768 2018-11-20] (Electronic Arts) HKU\S-1-5-21-3249716817-4142608158-2748813561-1001\...\Run: [NordVPN] => C:\Program Files (x86)\NordVPN\NordVPN.exe [3036112 2018-11-06] (NordVPN) HKU\S-1-5-21-3249716817-4142608158-2748813561-1001\...\Run: [Vivaldi Update Notifier] => C:\Users\DRATH REVAN\AppData\Local\Vivaldi\Application\update_notifier.exe [1506888 2018-11-22] (Vivaldi Technologies AS) HKU\S-1-5-21-3249716817-4142608158-2748813561-1001\...\Run: [ContaCam] => C:\Program Files (x86)\ContaCam\ContaCam.exe [15058432 2018-11-07] () HKU\S-1-5-18\...\Run: [Plex Media Server] => C:\Program Files (x86)\Plex\Plex Media Server\Plex Media Server.exe [18580968 2018-11-23] (Plex, Inc.) GroupPolicy: Restriction ? <==== ATTENTION CHR HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION ==================== Internet (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.) Tcpip\Parameters: [DhcpNameServer] 103.86.99.99 103.86.96.96 103.86.96.100 103.86.99.100 Tcpip\..\Interfaces\{4e8d3f8a-b755-4b5d-8086-bea146c49a80}: [DhcpNameServer] 192.168.1.254 Tcpip\..\Interfaces\{6c11fa53-6b8a-4872-bed1-6859bfcd65ca}: [DhcpNameServer] 103.86.99.99 103.86.96.96 103.86.96.100 103.86.99.100 Internet Explorer: ================== HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <==== ATTENTION HKU\S-1-5-21-3249716817-4142608158-2748813561-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.google.com/ BHO: ExplorerWnd Helper -> {10921475-03CE-4E04-90CE-E2E7EF20C814} -> C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallExplorer.dll [2015-11-12] (IObit) BHO: LastPass Vault -> {95D9ECF5-2A4D-4550-BE49-70D42F71296E} -> C:\Program Files (x86)\LastPass\LPToolbar_x64.dll [2018-12-12] (LastPass) BHO: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2017-11-27] (Adobe Systems Incorporated) BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL [2018-07-18] (Microsoft Corporation) BHO: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2017-11-27] (Adobe Systems Incorporated) BHO-x32: LastPass Vault -> {95D9ECF5-2A4D-4550-BE49-70D42F71296E} -> C:\Program Files (x86)\LastPass\LPToolbar.dll [2018-12-12] (LastPass) BHO-x32: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2017-11-27] (Adobe Systems Incorporated) BHO-x32: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2017-11-27] (Adobe Systems Incorporated) Toolbar: HKLM - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2017-11-27] (Adobe Systems Incorporated) Toolbar: HKLM - LastPass Toolbar - {9f6b5cc3-5c7b-4b5c-97af-19dec1e380e5} - C:\Program Files (x86)\LastPass\LPToolbar_x64.dll [2018-12-12] (LastPass) Toolbar: HKLM-x32 - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2017-11-27] (Adobe Systems Incorporated) Toolbar: HKLM-x32 - LastPass Toolbar - {9f6b5cc3-5c7b-4b5c-97af-19dec1e380e5} - C:\Program Files (x86)\LastPass\LPToolbar.dll [2018-12-12] (LastPass) FireFox: ======== FF HKLM\...\Firefox\Extensions: [web2pdfextension.17@acrobat.adobe.com] - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi FF Extension: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi [2018-10-06] FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension.17@acrobat.adobe.com] - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi FF Plugin: @lastpass.com/NPLastPass -> C:\Program Files (x86)\LastPass\nplastpass64.dll [2018-12-12] (LastPass) FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [2015-01-23] (Adobe Systems) FF Plugin-x32: @lastpass.com/NPLastPass -> C:\Program Files (x86)\LastPass\nplastpass64.dll [2018-12-12] (LastPass) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL [2014-01-23] (Microsoft Corporation) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-12-13] (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-12-13] (Google Inc.) FF Plugin-x32: Adobe Acrobat -> C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2018-10-06] (Adobe Systems Inc.) FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll [2015-01-23] (Adobe Systems) Chrome: ======= CHR StartupUrls: Default -> "hxxps://www.google.com/" CHR Profile: C:\Users\DRATH REVAN\AppData\Local\Google\Chrome\User Data\Default [2018-12-13] CHR Extension: (Slides) - C:\Users\DRATH REVAN\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-12-12] CHR Extension: (Docs) - C:\Users\DRATH REVAN\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-12-12] CHR Extension: (Google Drive) - C:\Users\DRATH REVAN\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-12-12] CHR Extension: (YouTube) - C:\Users\DRATH REVAN\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-12-13] CHR Extension: (Gmail) - C:\Users\DRATH REVAN\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2018-12-12] CHR HKLM\...\Chrome\Extension: [hdokiejnpimakedhajhdlcegeplioahd] - hxxp://clients2.google.com/service/update2/crx CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx CHR HKLM-x32\...\Chrome\Extension: [hdokiejnpimakedhajhdlcegeplioahd] - hxxp://clients2.google.com/service/update2/crx CHR HKLM-x32\...\Chrome\Extension: [mbckjcfnjmoiinpgddefodcighgikkgn] - hxxps://clients2.google.com/service/update2/crx ==================== Services (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [2910696 2018-09-10] (Adobe Systems, Incorporated) R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2704872 2018-09-10] (Adobe Systems, Incorporated) S3 ALG; C:\Windows\System32\alg.exe [97792 2015-07-10] (Microsoft Corporation) [Fichier non signé] R2 AppCheck; C:\Program Files\CheckMAL\AppCheck\AppCheckS.exe [1153024 2018-11-21] (CheckMAL Inc.) R2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\1.02.00\atkexComSvc.exe [936728 2018-09-06] () R2 asHmComSvc; C:\Program Files (x86)\ASUS\AAHM\1.00.22\aaHMSvc.exe [954648 2018-09-06] (ASUSTeK Computer Inc.) R2 AsSysCtrlService; C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.22\AsSysCtrlService.exe [1360016 2018-09-06] () [Fichier non signé] R2 AsusFanControlService; C:\Program Files (x86)\ASUS\AsusFanControlService\1.06.17\AsusFanControlService.exe [394552 2018-09-06] (ASUSTeK Computer Inc.) R2 AVG Antivirus; C:\Program Files\AVG\Antivirus\AVGSvc.exe [324048 2018-12-13] (AVG Technologies CZ, s.r.o.) R3 avgbIDSAgent; C:\Program Files\AVG\Antivirus\x64\aswidsagenta.exe [8237160 2018-12-13] (AVG Technologies CZ, s.r.o.) S3 AvgWscReporter; C:\Program Files\AVG\Antivirus\wsc_proxy.exe [110048 2018-12-13] (AVG Technologies CZ, s.r.o.) R2 DisplayFusionService; C:\Program Files (x86)\DisplayFusion\DisplayFusionService.exe [5598624 2018-06-27] (Binary Fortress Software) R2 EsgShKernel; C:\Program Files\EnigmaSoft\SpyHunter\ShKernel.exe [10072880 2018-12-12] (EnigmaSoft Limited) S3 GoogleChromeElevationService; C:\Program Files (x86)\Google\Chrome\Application\71.0.3578.98\elevation_service.exe [443872 2018-12-12] (Google Inc.) S2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [18856 2015-06-23] (Intel Corporation) R2 LiveUpdateSvc; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2960160 2016-04-22] (IObit) R2 nordvpn-service; C:\Program Files (x86)\NordVPN\nordvpn-service.exe [437200 2018-11-06] () S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2269504 2018-11-20] (Electronic Arts) R2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3130696 2018-11-20] (Electronic Arts) R2 PlexUpdateService; C:\Program Files (x86)\Plex\Plex Media Server\Plex Update Service.exe [2246632 2018-11-23] (Plex, Inc.) R2 SaiDOutput; C:\Program Files\Saitek\DirectOutput\DirectOutputService.exe [241152 2008-04-04] (Saitek) [Fichier non signé] R2 ShMonitor; C:\Program Files\EnigmaSoft\SpyHunter\ShMonitor.exe [537904 2018-12-12] (EnigmaSoft Limited) S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [362928 2016-10-25] (Microsoft Corporation) S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2017-06-03] (Microsoft Corporation) ===================== Pilotes (Avec liste blanche) ====================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R3 AiChargerPlus; C:\Windows\SysWow64\drivers\AiChargerPlus.sys [14848 2013-01-28] (ASUSTek Computer Inc.) S3 AndnetBus; C:\Windows\System32\drivers\lgandnetbus64.sys [30208 2016-08-31] (LG Electronics Inc.) S3 AndNetDiag; C:\Windows\system32\DRIVERS\lgandnetdiag64.sys [30720 2016-08-24] (LG Electronics Inc.) S3 ANDNetModem; C:\Windows\system32\DRIVERS\lgandnetmodem64.sys [37376 2016-08-24] (LG Electronics Inc.) R3 AppCheckD; C:\Program Files\CheckMAL\AppCheck\AppCheckD.sys [98176 2018-11-22] (CheckMAL Inc.) R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [15232 2018-10-12] () R3 ASMTFilter; C:\Windows\SysWow64\drivers\asmtufdriver.sys [24792 2014-06-13] (hxxp://www.asmedia.com.tw) R0 asstor64; C:\Windows\System32\drivers\asstor64.sys [83792 2018-10-12] (Asmedia Technology) R1 AsUpIO; C:\Windows\SysWow64\drivers\AsUpIO.sys [14464 2018-09-06] () R3 ASUSFILTER; C:\Windows\SysWow64\drivers\ASUSFILTER.sys [46152 2018-09-06] (MCCI Corporation) R3 AtiHDAudioService; C:\Windows\system32\drivers\AtihdWT6.sys [107496 2018-07-17] (Advanced Micro Devices) S1 avgArPot; C:\Windows\System32\drivers\avgArPot.sys [201504 2018-12-13] (AVG Technologies CZ, s.r.o.) R1 avgbidsdriver; C:\Windows\System32\drivers\avgbidsdrivera.sys [231104 2018-12-13] (AVG Technologies CZ, s.r.o.) R0 avgbidsh; C:\Windows\System32\drivers\avgbidsha.sys [202528 2018-12-13] (AVG Technologies CZ, s.r.o.) R0 avgblog; C:\Windows\System32\drivers\avgbloga.sys [346840 2018-12-13] (AVG Technologies CZ, s.r.o.) R0 avgbuniv; C:\Windows\System32\drivers\avgbuniva.sys [59744 2018-12-13] (AVG Technologies CZ, s.r.o.) R0 avgElam; C:\Windows\System32\drivers\avgElam.sys [15344 2018-12-13] (AVG Technologies CZ, s.r.o.) S3 avgHwid; C:\Windows\System32\drivers\avgHwid.sys [46648 2018-12-13] (AVG Technologies CZ, s.r.o.) R1 avgKbd; C:\Windows\System32\drivers\avgKbd.sys [42552 2018-12-13] (AVG Technologies CZ, s.r.o.) R2 avgMonFlt; C:\Windows\System32\drivers\avgMonFlt.sys [163496 2018-12-13] (AVG Technologies CZ, s.r.o.) R1 avgRdr; C:\Windows\System32\drivers\avgRdr2.sys [112040 2018-12-13] (AVG Technologies CZ, s.r.o.) R0 avgRvrt; C:\Windows\System32\drivers\avgRvrt.sys [87680 2018-12-13] (AVG Technologies CZ, s.r.o.) R1 avgSnx; C:\Windows\System32\drivers\avgSnx.sys [1028920 2018-12-13] (AVG Technologies CZ, s.r.o.) R1 avgSP; C:\Windows\System32\drivers\avgSP.sys [469520 2018-12-13] (AVG Technologies CZ, s.r.o.) R2 avgStm; C:\Windows\System32\drivers\avgStm.sys [208712 2018-12-13] (AVG Technologies CZ, s.r.o.) R0 avgVmm; C:\Windows\System32\drivers\avgVmm.sys [380704 2018-12-13] (AVG Technologies CZ, s.r.o.) S3 CorsairVBusDriver; C:\Windows\System32\drivers\CorsairVBusDriver.sys [46944 2018-09-17] (Corsair) S3 CorsairVHidDriver; C:\Windows\System32\drivers\CorsairVHidDriver.sys [23392 2018-09-17] (Corsair) S3 dmvsc; C:\Windows\System32\drivers\dmvsc.sys [33792 2015-07-10] (Microsoft Corporation) [Fichier non signé] R3 EnigmaFileMonDriver; C:\Windows\system32\Drivers\EnigmaFileMonDriver.sys [69432 2018-12-13] (EnigmaSoft Limited) S3 fcvsc; C:\Windows\System32\drivers\fcvsc.sys [31232 2015-07-10] (Microsoft Corporation) [Fichier non signé] S3 gencounter; C:\Windows\System32\drivers\vmgencounter.sys [13312 2015-07-10] (Microsoft Corporation) [Fichier non signé] R1 HWiNFO32; C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [27552 2018-10-12] (REALiX(tm)) S3 hyperkbd; C:\Windows\System32\drivers\hyperkbd.sys [16384 2015-07-10] (Microsoft Corporation) [Fichier non signé] S3 HyperVideo; C:\Windows\system32\DRIVERS\HyperVideo.sys [26112 2015-07-10] (Microsoft Corporation) [Fichier non signé] R3 IOMap; C:\Windows\system32\drivers\IOMap64.sys [24824 2018-09-06] (ASUSTeK Computer Inc.) S3 IPNAT; C:\Windows\System32\drivers\ipnat.sys [143360 2015-07-10] (Microsoft Corporation) [Fichier non signé] S3 netvsc; C:\Windows\System32\drivers\netvsc.sys [94720 2015-07-10] (Microsoft Corporation) [Fichier non signé] S3 s3cap; C:\Windows\System32\drivers\vms3cap.sys [8704 2015-07-10] (Microsoft Corporation) [Fichier non signé] S3 SaiH0762; C:\Windows\system32\DRIVERS\SaiH0762.sys [178560 2008-04-04] (Saitek) S3 Synth3dVsc; C:\Windows\System32\drivers\Synth3dVsc.sys [64000 2015-07-10] (Microsoft Corporation) [Fichier non signé] R3 tapnordvpn; C:\Windows\System32\drivers\tapnordvpn.sys [44896 2018-07-24] (The OpenVPN Project) S3 UdeCx; C:\Windows\System32\drivers\udecx.sys [44032 2015-07-10] () S3 VMBusHID; C:\Windows\System32\drivers\VMBusHID.sys [25088 2015-07-10] (Microsoft Corporation) [Fichier non signé] S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44568 2015-07-10] (Microsoft Corporation) S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [291680 2015-07-10] (Microsoft Corporation) S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [119648 2015-07-10] (Microsoft Corporation) U1 avgbdisk; pas de ImagePath S3 cpuz138; \??\C:\Users\DRATHR~1\AppData\Local\Temp\cpuz138\cpuz138_x64.sys [X] <==== ATTENTION S3 wfpcapture; \SystemRoot\System32\drivers\wfpcapture.sys [X] ==================== NetSvcs (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) ==================== Un mois - Créés - fichiers et dossiers ======== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2018-12-13 11:57 - 2018-12-13 11:57 - 000016148 _____ C:\Windows\system32\DESKTOP-I7T3RIP_DRATH REVAN_HistoryPrediction.bin 2018-12-13 11:15 - 2018-12-13 11:15 - 000433793 _____ C:\Users\DRATH REVAN\Desktop\ZHPDiag.txt 2018-12-13 10:48 - 2018-12-13 11:59 - 000000000 ____D C:\FRST 2018-12-13 09:05 - 2018-12-13 09:05 - 000000000 ____D C:\Users\DRATH REVAN\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ContaCam 2018-12-13 08:47 - 2018-12-13 08:47 - 000003210 _____ C:\Windows\System32\Tasks\BDAntiCryptoWallTask 2018-12-13 08:46 - 2018-12-13 08:46 - 000002377 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2018-12-13 08:46 - 2018-12-13 08:46 - 000002336 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2018-12-13 08:45 - 2018-12-13 08:45 - 000003588 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA 2018-12-13 08:45 - 2018-12-13 08:45 - 000003464 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore 2018-12-13 08:44 - 2018-12-13 08:44 - 000000000 ____D C:\Users\DRATH REVAN\AppData\Roaming\AVG 2018-12-13 08:43 - 2018-12-13 08:43 - 000001890 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG AntiVirus Gratuit.lnk 2018-12-13 08:43 - 2018-12-13 08:43 - 000001878 _____ C:\Users\Public\Desktop\AVG AntiVirus Gratuit.lnk 2018-12-13 08:43 - 2018-12-13 08:43 - 000000000 ____D C:\Users\DRATH REVAN\AppData\Local\Avg 2018-12-13 08:40 - 2018-12-13 08:40 - 000003992 _____ C:\Windows\System32\Tasks\Antivirus Emergency Update 2018-12-13 08:40 - 2018-12-13 08:40 - 000000000 ____D C:\Windows\System32\Tasks\AVG 2018-12-13 08:40 - 2018-12-13 08:39 - 001028920 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgSnx.sys 2018-12-13 08:40 - 2018-12-13 08:39 - 000469520 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgSP.sys 2018-12-13 08:40 - 2018-12-13 08:39 - 000380704 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgVmm.sys 2018-12-13 08:40 - 2018-12-13 08:39 - 000346840 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgbloga.sys 2018-12-13 08:40 - 2018-12-13 08:39 - 000231104 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgbidsdrivera.sys 2018-12-13 08:40 - 2018-12-13 08:39 - 000208712 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgStm.sys 2018-12-13 08:40 - 2018-12-13 08:39 - 000202528 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgbidsha.sys 2018-12-13 08:40 - 2018-12-13 08:39 - 000201504 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgArPot.sys 2018-12-13 08:40 - 2018-12-13 08:39 - 000163496 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgMonFlt.sys 2018-12-13 08:40 - 2018-12-13 08:39 - 000112040 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgRdr2.sys 2018-12-13 08:40 - 2018-12-13 08:39 - 000087680 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgRvrt.sys 2018-12-13 08:40 - 2018-12-13 08:39 - 000059744 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgbuniva.sys 2018-12-13 08:40 - 2018-12-13 08:39 - 000046648 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgHwid.sys 2018-12-13 08:40 - 2018-12-13 08:39 - 000042552 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgKbd.sys 2018-12-13 08:40 - 2018-12-13 08:39 - 000015344 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgElam.sys 2018-12-13 08:39 - 2018-12-13 08:39 - 000378640 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\avgBoot.exe 2018-12-13 08:39 - 2018-12-13 08:39 - 000000000 ____D C:\Program Files\Common Files\AVG 2018-12-13 08:36 - 2018-12-13 08:36 - 000000000 ____D C:\Program Files\AVG 2018-12-13 08:32 - 2018-12-13 10:33 - 000000000 ____D C:\ProgramData\AVG 2018-12-13 08:32 - 2018-12-13 08:36 - 000000322 _____ C:\Windows\Tasks\Uninstaller_SkipUac_DRATH_REVAN.job 2018-12-13 08:32 - 2018-12-13 08:32 - 000002532 _____ C:\Windows\System32\Tasks\Uninstaller_SkipUac_DRATH_REVAN 2018-12-13 01:27 - 2018-12-13 01:27 - 000000000 _____ C:\Users\DRATH REVAN\FIX.BAT 2018-12-13 01:14 - 2018-12-13 01:14 - 000000214 _____ C:\Windows\Tasks\CreateExplorerShellUnelevatedTask.job 2018-12-13 01:12 - 2018-12-13 01:12 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Resource Kit Tools 2018-12-13 01:12 - 2018-12-13 01:12 - 000000000 ____D C:\Program Files (x86)\Windows Resource Kits 2018-12-13 00:12 - 2018-12-13 00:12 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BDAntiRansomware 2018-12-13 00:12 - 2018-12-13 00:12 - 000000000 ____D C:\Program Files\Bitdefender 2018-12-12 23:28 - 2018-12-12 23:30 - 000000000 ____D C:\Users\DRATH REVAN\AppData\LocalLow\LastPass 2018-12-12 23:28 - 2018-12-12 23:28 - 000001166 _____ C:\Users\Public\Desktop\My LastPass Vault.lnk 2018-12-12 23:28 - 2018-12-12 23:28 - 000000000 ____D C:\Users\DRATH REVAN\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\LastPass 2018-12-12 23:28 - 2018-12-12 23:28 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LastPass 2018-12-12 23:28 - 2018-12-12 23:28 - 000000000 ____D C:\Program Files (x86)\LastPass 2018-12-12 22:43 - 2018-12-12 22:43 - 000000000 ____D C:\Windows\pss 2018-12-12 22:29 - 2018-12-12 23:02 - 000000000 ____D C:\rei 2018-12-12 22:05 - 2018-12-13 10:49 - 000000000 ____D C:\Backup(AppCheck) 2018-12-12 22:05 - 2018-12-12 22:36 - 000000000 ____D C:\ProgramData\CheckMAL 2018-12-12 22:05 - 2018-12-12 22:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AppCheck 2018-12-12 22:05 - 2018-12-12 22:05 - 000000000 ____D C:\Program Files\CheckMAL 2018-12-12 21:54 - 2018-12-12 21:54 - 000000883 _____ C:\Users\DRATH REVAN\Desktop\ZHPCleaner.lnk 2018-12-12 21:46 - 2018-12-12 21:46 - 000000000 ___HD C:\$AV_ASW 2018-12-12 21:33 - 2018-12-12 21:33 - 007321808 _____ (Malwarebytes) C:\Users\DRATH REVAN\Desktop\adwcleaner_7.2.5.0.exe 2018-12-12 21:33 - 2018-12-12 21:33 - 000000000 ____D C:\AdwCleaner 2018-12-12 21:12 - 2018-12-13 11:15 - 000000135 _____ C:\Users\DRATH 2018-12-12 21:12 - 2018-12-13 11:15 - 000000000 ____D C:\Users\DRATH REVAN\AppData\Roaming\ZHP 2018-12-12 21:12 - 2018-12-12 21:52 - 000000000 ____D C:\Users\DRATH REVAN\AppData\Local\ZHP 2018-12-12 21:12 - 2018-12-12 21:12 - 000000871 _____ C:\Users\DRATH REVAN\Desktop\ZHPDiag.lnk 2018-12-12 20:24 - 2018-12-12 20:24 - 000000000 ____D C:\Users\DRATH REVAN\AppData\Roaming\www.shadowexplorer.com 2018-12-12 20:13 - 2018-12-12 20:24 - 000000000 _RSHD C:\ProgramData\Key-Base 2018-12-12 20:13 - 2018-12-12 20:13 - 000000000 ____D C:\ProgramData\{1279DF6B-E0C0-2455-2C96-0E24FB25E831} 2018-12-12 20:10 - 2018-12-13 08:48 - 000069432 _____ (EnigmaSoft Limited) C:\Windows\system32\Drivers\EnigmaFileMonDriver.sys 2018-12-12 20:10 - 2018-12-12 20:10 - 000001059 _____ C:\Users\Public\Desktop\SpyHunter5.lnk 2018-12-12 20:10 - 2018-12-12 20:10 - 000000000 ____D C:\sh5ldr 2018-12-12 20:10 - 2018-12-12 20:10 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EnigmaSoft 2018-12-12 20:10 - 2018-12-12 20:10 - 000000000 ____D C:\ProgramData\EnigmaSoft Limited 2018-12-12 20:09 - 2018-12-12 20:09 - 000000000 ____D C:\Program Files\EnigmaSoft 2018-12-12 19:58 - 2018-12-12 19:58 - 000000000 ____D C:\Users\DRATH REVAN\AppData\Local\Google 2018-12-12 19:57 - 2018-12-13 08:46 - 000000000 ____D C:\Program Files (x86)\Google 2018-12-12 19:31 - 2018-12-12 19:31 - 000003390 _____ C:\Windows\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3249716817-4142608158-2748813561-1001 2018-12-12 19:31 - 2018-12-12 19:31 - 000002423 _____ C:\Users\DRATH REVAN\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2018-12-12 19:03 - 2018-12-12 19:03 - 000722944 _____ C:\Users\DRATH REVAN\AppData\Local\sham.db 2018-12-12 19:03 - 2018-12-12 19:03 - 000070896 _____ C:\Users\DRATH REVAN\AppData\Local\Config.xml 2018-12-12 19:03 - 2018-12-12 19:03 - 000009266 _____ C:\Users\DRATH REVAN\AppData\Roaming\ADXKRNV-DECRYPT.txt 2018-12-12 19:03 - 2018-12-12 19:03 - 000009266 _____ C:\Users\DRATH REVAN\ADXKRNV-DECRYPT.txt 2018-12-12 19:00 - 2018-12-12 19:00 - 000000000 ____D C:\ProgramData\boost_interprocess 2018-12-12 18:56 - 2018-12-12 19:22 - 000000000 ____D C:\Users\DRATH REVAN\AppData\Roaming\x86_microsoft-windows-nap-oobsha.resources_31bf3856ad364e35_6.1.7600.16385_en-us_5c3829424d904f50 2018-12-12 18:56 - 2018-12-12 18:56 - 000000000 ____D C:\Users\DRATH REVAN\AppData\Roaming\ComfortSoftware 2018-12-12 18:55 - 2018-12-12 18:56 - 000000000 ____D C:\ProgramData\Nawa 2018-12-10 20:26 - 2018-12-13 09:06 - 000000000 ____D C:\ContaCam 2018-12-10 20:26 - 2018-12-13 09:05 - 000000000 ____D C:\Program Files (x86)\ContaCam 2018-12-10 20:26 - 2018-12-10 20:26 - 000000000 ____D C:\Users\DRATH REVAN\AppData\Roaming\Contaware 2018-12-10 20:24 - 2018-12-10 20:26 - 016268801 _____ (Contaware.com) C:\Users\DRATH REVAN\Desktop\ContaCam-9.0.5-Setup.exe 2018-12-07 18:49 - 2018-12-07 18:49 - 000182332 _____ C:\Users\DRATH REVAN\Desktop\edf.pdf 2018-12-05 21:04 - 2018-12-13 00:11 - 000000000 ____D C:\Users\DRATH REVAN\AppData\Roaming\Autodesk 2018-12-05 21:04 - 2018-12-05 21:04 - 000002724 _____ C:\Users\DRATH REVAN\Desktop\Autodesk Fusion 360.lnk 2018-12-05 21:04 - 2018-12-05 21:04 - 000000000 ____D C:\Users\DRATH REVAN\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Autodesk 2018-12-05 21:04 - 2018-12-05 21:04 - 000000000 ____D C:\ProgramData\Autodesk 2018-12-05 20:45 - 2018-12-05 21:04 - 000000000 ____D C:\Users\DRATH REVAN\AppData\Local\Autodesk 2018-12-05 20:41 - 2018-12-05 20:41 - 011142112 _____ (Autodesk, Inc) C:\Users\DRATH REVAN\Desktop\Fusion 360 Client Downloader.exe 2018-12-05 20:41 - 2018-12-05 20:41 - 000000000 ____D C:\Users\DRATH REVAN\AppData\Roaming\cura 2018-12-05 20:41 - 2018-12-05 20:41 - 000000000 ____D C:\Users\DRATH REVAN\AppData\Local\cura 2018-12-05 20:41 - 2018-12-05 20:41 - 000000000 ____D C:\Users\DRATH REVAN\AppData\Local\cache 2018-12-05 20:41 - 2018-12-05 20:41 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ultimaker Cura 2018-12-05 20:40 - 2018-12-05 20:41 - 000000000 ____D C:\Program Files\Ultimaker Cura 3.6 2018-12-05 20:34 - 2018-12-05 20:36 - 150789240 _____ C:\Users\DRATH REVAN\Desktop\Ultimaker_Cura-3.6.0-win64.exe 2018-12-05 15:50 - 2018-12-05 15:50 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Plex Media Server 2018-12-05 15:50 - 2018-12-05 15:50 - 000000000 ____D C:\Program Files (x86)\Plex 2018-11-25 14:35 - 2018-11-27 17:49 - 000000000 ____D C:\Program Files (x86)\Mozilla Thunderbird 2018-11-25 14:35 - 2018-11-25 14:35 - 000001294 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Thunderbird.lnk 2018-11-25 14:35 - 2018-11-25 14:35 - 000001282 _____ C:\Users\Public\Desktop\Mozilla Thunderbird.lnk 2018-11-25 13:08 - 2018-11-26 23:03 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2018-11-25 12:21 - 2018-11-25 14:21 - 000000000 ____D C:\Users\DRATH REVAN\AppData\Local\Comms 2018-11-25 10:55 - 2018-11-25 14:41 - 000000000 ____D C:\Users\DRATH REVAN\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Foundry 376, LLC 2018-11-21 10:54 - 2018-11-21 10:54 - 001321760 _____ (CheckMAL Inc.) C:\Windows\system32\AppCheck64.dll 2018-11-21 10:54 - 2018-11-21 10:54 - 001194976 _____ (CheckMAL Inc.) C:\Windows\SysWOW64\AppCheck32.dll 2018-11-19 21:50 - 2018-11-19 21:50 - 000000000 ____D C:\Users\DRATH REVAN\AppData\Local\SketchUp 2018-11-19 20:33 - 2018-11-19 20:33 - 000000000 ____D C:\Users\DRATH REVAN\AppData\Roaming\Trimble Connect for SketchUp 2018-11-19 20:31 - 2018-11-25 13:08 - 000000000 ____D C:\ProgramData\SketchUp 2018-11-19 20:31 - 2018-11-19 21:50 - 000000000 ____D C:\Users\DRATH REVAN\AppData\Roaming\SketchUp 2018-11-19 20:31 - 2018-11-19 21:47 - 000000000 ____D C:\ProgramData\Reprise 2018-11-19 15:03 - 2018-11-19 15:03 - 000004774 _____ C:\Windows\System32\Tasks\Adobe Flash Player PPAPI Notifier 2018-11-19 12:53 - 2018-12-13 08:47 - 080740352 _____ C:\Windows\system32\config\SOFTWARE 2018-11-19 12:53 - 2018-12-13 08:47 - 000524288 _____ C:\Windows\system32\config\DEFAULT 2018-11-19 12:53 - 2018-12-13 08:47 - 000028672 _____ C:\Windows\system32\config\SECURITY 2018-11-19 12:53 - 2018-11-19 12:53 - 005693440 _____ C:\Windows\system32\config\DRIVERS.iodefrag.bak 2018-11-19 12:53 - 2018-11-19 12:53 - 000040960 _____ C:\Windows\system32\config\SAM 2018-11-19 12:53 - 2018-11-19 12:53 - 000000000 ____H C:\asc_rdflag 2018-11-19 12:49 - 2018-11-19 12:49 - 005693440 _____ C:\Windows\system32\config\DRIVERS.iobit 2018-11-19 12:48 - 2018-11-19 12:48 - 000003160 _____ C:\Windows\System32\Tasks\StartCN 2018-11-19 12:48 - 2018-11-19 12:48 - 000003074 _____ C:\Windows\System32\Tasks\StartDVR 2018-11-19 12:48 - 2018-11-19 12:48 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Settings 2018-11-19 12:48 - 2018-11-19 12:48 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\##ID_STRING16## 2018-11-19 12:48 - 2018-11-19 12:48 - 000000000 ____D C:\Program Files (x86)\AMD 2018-11-19 12:47 - 2018-11-19 12:48 - 000000000 ____D C:\Windows\LastGood.Tmp 2018-11-19 12:46 - 2018-11-19 12:46 - 000000000 ____D C:\Program Files (x86)\VulkanRT 2018-11-19 12:40 - 2018-11-19 12:44 - 000000060 _____ C:\ProgramData\SoftwareUpdateTemp.xml 2018-11-19 12:36 - 2018-11-19 12:36 - 000000000 ____D C:\Users\DRATH REVAN\AppData\Local\NVIDIA Corporation 2018-11-19 12:35 - 2018-11-19 12:35 - 000000000 ____D C:\Users\DRATH REVAN\AppData\Roaming\Eidos Montreal 2018-11-19 11:11 - 2018-11-19 11:11 - 000001029 _____ C:\Users\Public\Desktop\Shadow of The Tomb Raider.lnk 2018-11-19 11:11 - 2018-11-19 11:11 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mephisto 2018-11-19 11:11 - 2010-06-02 04:55 - 000527192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_7.dll 2018-11-19 11:11 - 2010-06-02 04:55 - 000518488 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_7.dll 2018-11-19 11:11 - 2010-06-02 04:55 - 000239960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_7.dll 2018-11-19 11:11 - 2010-06-02 04:55 - 000176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_7.dll 2018-11-19 11:11 - 2010-06-02 04:55 - 000077656 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_5.dll 2018-11-19 11:11 - 2010-06-02 04:55 - 000074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_5.dll 2018-11-19 11:11 - 2010-05-26 11:41 - 002526056 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_43.dll 2018-11-19 11:11 - 2010-05-26 11:41 - 002401112 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_43.dll 2018-11-19 11:11 - 2010-05-26 11:41 - 002106216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_43.dll 2018-11-19 11:11 - 2010-05-26 11:41 - 001998168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_43.dll 2018-11-19 11:11 - 2010-05-26 11:41 - 001907552 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_43.dll 2018-11-19 11:11 - 2010-05-26 11:41 - 001868128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_43.dll 2018-11-19 11:11 - 2010-05-26 11:41 - 000511328 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_43.dll 2018-11-19 11:11 - 2010-05-26 11:41 - 000470880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_43.dll 2018-11-19 11:11 - 2010-05-26 11:41 - 000276832 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_43.dll 2018-11-19 11:11 - 2010-05-26 11:41 - 000248672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_43.dll 2018-11-19 11:11 - 2010-02-04 10:01 - 000530776 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_6.dll 2018-11-19 11:11 - 2010-02-04 10:01 - 000528216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_6.dll 2018-11-19 11:11 - 2010-02-04 10:01 - 000238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_6.dll 2018-11-19 11:11 - 2010-02-04 10:01 - 000176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_6.dll 2018-11-19 11:11 - 2010-02-04 10:01 - 000078680 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_4.dll 2018-11-19 11:11 - 2010-02-04 10:01 - 000074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_4.dll 2018-11-19 11:11 - 2010-02-04 10:01 - 000024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_7.dll 2018-11-19 11:11 - 2010-02-04 10:01 - 000022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_7.dll 2018-11-19 11:11 - 2009-09-04 17:44 - 000517960 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_5.dll 2018-11-19 11:11 - 2009-09-04 17:44 - 000515416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_5.dll 2018-11-19 11:11 - 2009-09-04 17:44 - 000238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_5.dll 2018-11-19 11:11 - 2009-09-04 17:44 - 000176968 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_5.dll 2018-11-19 11:11 - 2009-09-04 17:44 - 000073544 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_3.dll 2018-11-19 11:11 - 2009-09-04 17:44 - 000069464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_3.dll 2018-11-19 11:11 - 2009-09-04 17:29 - 005554512 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_42.dll 2018-11-19 11:11 - 2009-09-04 17:29 - 005501792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_42.dll 2018-11-19 11:11 - 2009-09-04 17:29 - 002582888 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_42.dll 2018-11-19 11:11 - 2009-09-04 17:29 - 002475352 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_42.dll 2018-11-19 11:11 - 2009-09-04 17:29 - 001974616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_42.dll 2018-11-19 11:11 - 2009-09-04 17:29 - 001892184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_42.dll 2018-11-19 11:11 - 2009-09-04 17:29 - 000523088 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_42.dll 2018-11-19 11:11 - 2009-09-04 17:29 - 000453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_42.dll 2018-11-19 11:11 - 2009-09-04 17:29 - 000285024 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_42.dll 2018-11-19 11:11 - 2009-09-04 17:29 - 000235344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_42.dll 2018-11-19 11:11 - 2009-03-16 14:18 - 000521560 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_4.dll 2018-11-19 11:11 - 2009-03-16 14:18 - 000517448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_4.dll 2018-11-19 11:11 - 2009-03-16 14:18 - 000235352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_4.dll 2018-11-19 11:11 - 2009-03-16 14:18 - 000174936 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_4.dll 2018-11-19 11:11 - 2009-03-16 14:18 - 000024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_6.dll 2018-11-19 11:11 - 2009-03-16 14:18 - 000022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_6.dll 2018-11-19 11:11 - 2009-03-09 15:27 - 005425496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_41.dll 2018-11-19 11:11 - 2009-03-09 15:27 - 004178264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_41.dll 2018-11-19 11:11 - 2009-03-09 15:27 - 002430312 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_41.dll 2018-11-19 11:11 - 2009-03-09 15:27 - 001846632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_41.dll 2018-11-19 11:11 - 2009-03-09 15:27 - 000520544 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_41.dll 2018-11-19 11:11 - 2009-03-09 15:27 - 000453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_41.dll 2018-11-19 11:11 - 2008-10-27 10:04 - 000518480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_3.dll 2018-11-19 11:11 - 2008-10-27 10:04 - 000514384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_3.dll 2018-11-19 11:11 - 2008-10-27 10:04 - 000235856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_3.dll 2018-11-19 11:11 - 2008-10-27 10:04 - 000175440 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_3.dll 2018-11-19 11:11 - 2008-10-27 10:04 - 000074576 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_2.dll 2018-11-19 11:11 - 2008-10-27 10:04 - 000070992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_2.dll 2018-11-19 11:11 - 2008-10-27 10:04 - 000025936 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_5.dll 2018-11-19 11:11 - 2008-10-27 10:04 - 000023376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_5.dll 2018-11-19 11:11 - 2008-10-15 06:22 - 005631312 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_40.dll 2018-11-19 11:11 - 2008-10-15 06:22 - 004379984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_40.dll 2018-11-19 11:11 - 2008-10-15 06:22 - 002605920 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_40.dll 2018-11-19 11:11 - 2008-10-15 06:22 - 002036576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_40.dll 2018-11-19 11:11 - 2008-10-15 06:22 - 000519000 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_40.dll 2018-11-19 11:11 - 2008-10-15 06:22 - 000452440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_40.dll 2018-11-19 11:11 - 2008-07-31 10:41 - 000238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_2.dll 2018-11-19 11:11 - 2008-07-31 10:41 - 000177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_2.dll 2018-11-19 11:11 - 2008-07-31 10:41 - 000072200 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_1.dll 2018-11-19 11:11 - 2008-07-31 10:41 - 000068616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_1.dll 2018-11-19 11:11 - 2008-07-31 10:40 - 000513544 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_2.dll 2018-11-19 11:11 - 2008-07-31 10:40 - 000509448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_2.dll 2018-11-19 11:11 - 2008-07-10 11:01 - 000467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_39.dll 2018-11-19 11:11 - 2008-07-10 11:00 - 004992520 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_39.dll 2018-11-19 11:11 - 2008-07-10 11:00 - 003851784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_39.dll 2018-11-19 11:11 - 2008-07-10 11:00 - 001942552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_39.dll 2018-11-19 11:11 - 2008-07-10 11:00 - 001493528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_39.dll 2018-11-19 11:11 - 2008-07-10 11:00 - 000540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_39.dll 2018-11-19 11:11 - 2008-05-30 14:19 - 000511496 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_1.dll 2018-11-19 11:11 - 2008-05-30 14:19 - 000507400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_1.dll 2018-11-19 11:11 - 2008-05-30 14:18 - 000238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_1.dll 2018-11-19 11:11 - 2008-05-30 14:18 - 000177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_1.dll 2018-11-19 11:11 - 2008-05-30 14:17 - 000068104 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_0.dll 2018-11-19 11:11 - 2008-05-30 14:17 - 000065032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_0.dll 2018-11-19 11:11 - 2008-05-30 14:17 - 000025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_4.dll 2018-11-19 11:11 - 2008-05-30 14:16 - 000028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_4.dll 2018-11-19 11:11 - 2008-05-30 14:11 - 004991496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_38.dll 2018-11-19 11:11 - 2008-05-30 14:11 - 003850760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_38.dll 2018-11-19 11:11 - 2008-05-30 14:11 - 001941528 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_38.dll 2018-11-19 11:11 - 2008-05-30 14:11 - 001491992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_38.dll 2018-11-19 11:11 - 2008-05-30 14:11 - 000540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_38.dll 2018-11-19 11:11 - 2008-05-30 14:11 - 000467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_38.dll 2018-11-19 11:11 - 2008-03-05 16:04 - 000489480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_0.dll 2018-11-19 11:11 - 2008-03-05 16:03 - 000479752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_0.dll 2018-11-19 11:11 - 2008-03-05 16:03 - 000238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_0.dll 2018-11-19 11:11 - 2008-03-05 16:03 - 000177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_0.dll 2018-11-19 11:11 - 2008-03-05 16:00 - 000028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_3.dll 2018-11-19 11:11 - 2008-03-05 16:00 - 000025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_3.dll 2018-11-19 11:11 - 2008-03-05 15:56 - 004910088 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_37.dll 2018-11-19 11:11 - 2008-03-05 15:56 - 003786760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_37.dll 2018-11-19 11:11 - 2008-03-05 15:56 - 001860120 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_37.dll 2018-11-19 11:11 - 2008-03-05 15:56 - 001420824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_37.dll 2018-11-19 11:11 - 2008-02-05 23:07 - 000529424 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_37.dll 2018-11-19 11:11 - 2008-02-05 23:07 - 000462864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_37.dll 2018-11-19 11:11 - 2007-10-22 03:40 - 000411656 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_10.dll 2018-11-19 11:11 - 2007-10-22 03:39 - 000267272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_10.dll 2018-11-19 11:11 - 2007-10-22 03:37 - 000021000 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_2.dll 2018-11-19 11:11 - 2007-10-22 03:37 - 000017928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_2.dll 2018-11-19 11:11 - 2007-10-12 15:14 - 005081608 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_36.dll 2018-11-19 11:11 - 2007-10-12 15:14 - 003734536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_36.dll 2018-11-19 11:11 - 2007-10-12 15:14 - 002006552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_36.dll 2018-11-19 11:11 - 2007-10-12 15:14 - 001374232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_36.dll 2018-11-19 11:11 - 2007-10-02 09:56 - 000508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_36.dll 2018-11-19 11:11 - 2007-10-02 09:56 - 000444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_36.dll 2018-11-19 11:11 - 2007-07-20 00:57 - 000411496 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_9.dll 2018-11-19 11:11 - 2007-07-20 00:57 - 000267112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_9.dll 2018-11-19 11:11 - 2007-07-19 18:14 - 005073256 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_35.dll 2018-11-19 11:11 - 2007-07-19 18:14 - 003727720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_35.dll 2018-11-19 11:11 - 2007-07-19 18:14 - 001985904 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_35.dll 2018-11-19 11:11 - 2007-07-19 18:14 - 001358192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_35.dll 2018-11-19 11:11 - 2007-07-19 18:14 - 000508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_35.dll 2018-11-19 11:11 - 2007-07-19 18:14 - 000444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_35.dll 2018-11-19 11:11 - 2007-06-20 20:49 - 000409960 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_8.dll 2018-11-19 11:11 - 2007-06-20 20:46 - 000266088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_8.dll 2018-11-19 11:11 - 2007-05-16 16:45 - 004496232 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_34.dll 2018-11-19 11:11 - 2007-05-16 16:45 - 003497832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_34.dll 2018-11-19 11:11 - 2007-05-16 16:45 - 001401200 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_34.dll 2018-11-19 11:11 - 2007-05-16 16:45 - 001124720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_34.dll 2018-11-19 11:11 - 2007-05-16 16:45 - 000506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_34.dll 2018-11-19 11:11 - 2007-05-16 16:45 - 000443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_34.dll 2018-11-19 11:11 - 2007-04-04 18:55 - 000403304 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_7.dll 2018-11-19 11:11 - 2007-04-04 18:55 - 000261480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_7.dll 2018-11-19 11:11 - 2007-04-04 18:54 - 000107368 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_3.dll 2018-11-19 11:11 - 2007-04-04 18:53 - 000081768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_3.dll 2018-11-19 11:11 - 2007-03-15 16:57 - 000506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_33.dll 2018-11-19 11:11 - 2007-03-15 16:57 - 000443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_33.dll 2018-11-19 11:11 - 2007-03-12 16:42 - 004494184 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_33.dll 2018-11-19 11:11 - 2007-03-12 16:42 - 003495784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_33.dll 2018-11-19 11:11 - 2007-03-12 16:42 - 001400176 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_33.dll 2018-11-19 11:11 - 2007-03-12 16:42 - 001123696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_33.dll 2018-11-19 11:11 - 2007-03-05 12:42 - 000017688 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_1.dll 2018-11-19 11:11 - 2007-03-05 12:42 - 000015128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_1.dll 2018-11-19 11:11 - 2007-01-24 15:27 - 000393576 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_6.dll 2018-11-19 11:11 - 2007-01-24 15:27 - 000255848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_6.dll 2018-11-19 11:11 - 2006-12-08 12:02 - 000251672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_5.dll 2018-11-19 11:11 - 2006-12-08 12:00 - 000390424 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_5.dll 2018-11-19 11:11 - 2006-11-29 13:06 - 004398360 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_32.dll 2018-11-19 11:11 - 2006-11-29 13:06 - 003426072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_32.dll 2018-11-19 11:11 - 2006-11-29 13:06 - 000469264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10.dll 2018-11-19 11:11 - 2006-11-29 13:06 - 000440080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10.dll 2018-11-19 11:11 - 2006-09-28 16:05 - 003977496 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_31.dll 2018-11-19 11:11 - 2006-09-28 16:05 - 002414360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_31.dll 2018-11-19 11:11 - 2006-09-28 16:05 - 000237848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_4.dll 2018-11-19 11:11 - 2006-09-28 16:04 - 000364824 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_4.dll 2018-11-19 11:11 - 2006-07-28 09:31 - 000083736 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_2.dll 2018-11-19 11:11 - 2006-07-28 09:30 - 000363288 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_3.dll 2018-11-19 11:11 - 2006-07-28 09:30 - 000236824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_3.dll 2018-11-19 11:11 - 2006-07-28 09:30 - 000062744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_2.dll 2018-11-19 11:11 - 2006-05-31 07:24 - 000230168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_2.dll 2018-11-19 11:11 - 2006-05-31 07:22 - 000354072 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_2.dll 2018-11-19 11:11 - 2006-03-31 12:41 - 003927248 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_30.dll 2018-11-19 11:11 - 2006-03-31 12:40 - 002388176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_30.dll 2018-11-19 11:11 - 2006-03-31 12:40 - 000352464 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_1.dll 2018-11-19 11:11 - 2006-03-31 12:39 - 000229584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_1.dll 2018-11-19 11:11 - 2006-03-31 12:39 - 000083664 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_1.dll 2018-11-19 11:11 - 2006-03-31 12:39 - 000062672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_1.dll 2018-11-19 11:11 - 2006-02-03 08:43 - 003830992 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_29.dll 2018-11-19 11:11 - 2006-02-03 08:43 - 002332368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_29.dll 2018-11-19 11:11 - 2006-02-03 08:42 - 000355536 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_0.dll 2018-11-19 11:11 - 2006-02-03 08:42 - 000230096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_0.dll 2018-11-19 11:11 - 2006-02-03 08:41 - 000016592 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_0.dll 2018-11-19 11:11 - 2006-02-03 08:41 - 000014032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_0.dll 2018-11-19 11:11 - 2005-12-05 18:09 - 003815120 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_28.dll 2018-11-19 11:11 - 2005-12-05 18:09 - 002323664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_28.dll 2018-11-19 11:11 - 2005-07-22 19:59 - 003807440 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_27.dll 2018-11-19 11:11 - 2005-07-22 19:59 - 002319568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_27.dll 2018-11-19 11:11 - 2005-05-26 15:34 - 003767504 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_26.dll 2018-11-19 11:11 - 2005-05-26 15:34 - 002297552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_26.dll 2018-11-19 11:11 - 2005-03-18 17:19 - 003823312 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_25.dll 2018-11-19 11:11 - 2005-03-18 17:19 - 002337488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_25.dll 2018-11-19 11:11 - 2005-02-05 19:45 - 003544272 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_24.dll 2018-11-19 11:11 - 2005-02-05 19:45 - 002222800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_24.dll 2018-11-19 10:58 - 2018-11-19 10:58 - 000000000 ____D C:\Users\DRATH REVAN\AppData\Local\Mephisto 2018-11-18 16:22 - 2018-11-18 16:22 - 000007605 _____ C:\Users\DRATH REVAN\AppData\Local\Resmon.ResmonCfg 2018-11-18 12:30 - 2018-11-19 01:06 - 000000000 ____D C:\Users\DRATH REVAN\Desktop\Shadow.of.The.Tomb.Raider.FRENCH-Mephisto 2018-11-16 10:27 - 2018-11-10 15:57 - 000000001 ___SH C:\BOOTNXT 2018-11-16 10:27 - 2017-03-28 09:46 - 000397506 __RSH C:\bootmgr 2018-11-16 09:24 - 2018-11-16 09:29 - 000000600 _____ C:\Users\DRATH REVAN\AppData\Local\PUTTY.RND 2018-11-15 18:10 - 2015-11-11 13:08 - 000008336 _____ C:\Windows\system32\SppExtComObjPatcher.exe 2018-11-15 18:10 - 2014-05-25 01:36 - 000015360 _____ C:\Windows\system32\SppExtComObjHook.dll 2018-11-15 15:57 - 2018-11-15 15:57 - 000002471 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat DC.lnk 2018-11-15 14:51 - 2018-11-15 14:51 - 000001982 _____ C:\Users\Public\Desktop\NordVPN.lnk 2018-11-15 14:51 - 2018-11-15 14:51 - 000000000 ___HD C:\Users\DRATH REVAN\AppData\Local\NordVPN 2018-11-15 14:51 - 2018-11-15 14:51 - 000000000 ____D C:\ProgramData\NordVpn 2018-11-15 14:51 - 2018-11-15 14:51 - 000000000 ____D C:\ProgramData\Caphyon 2018-11-15 14:50 - 2018-11-15 14:51 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NordVPN 2018-11-15 14:50 - 2018-11-15 14:51 - 000000000 ____D C:\Program Files (x86)\NordVPN 2018-11-15 14:50 - 2018-11-15 14:50 - 000000000 ____D C:\Program Files (x86)\NordVPN network TAP 2018-11-14 08:43 - 2018-12-13 00:11 - 000000000 __RHD C:\Users\DRATH REVAN\3D Objects ==================== Un mois - Modifiés - fichiers et dossiers ======== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2018-12-13 11:57 - 2018-10-12 13:04 - 000000000 _____ C:\Windows\Path.idx 2018-12-13 11:53 - 2018-10-12 12:28 - 000000000 ____D C:\Users\DRATH REVAN\AppData\Roaming\uTorrent 2018-12-13 11:11 - 2018-10-12 12:33 - 000000000 ___HD C:\Users\DRATH REVAN\AppData\Local\MicrosoftEdge 2018-12-13 09:22 - 2018-10-12 13:58 - 000000000 ___HD C:\Users\DRATH REVAN\AppData\Local\CrashDumps 2018-12-13 08:54 - 2018-10-12 11:54 - 001842682 _____ C:\Windows\system32\PerfStringBackup.INI 2018-12-13 08:54 - 2015-07-10 17:22 - 000820816 _____ C:\Windows\system32\perfh00C.dat 2018-12-13 08:54 - 2015-07-10 17:22 - 000154680 _____ C:\Windows\system32\perfc00C.dat 2018-12-13 08:54 - 2015-07-10 12:01 - 000000000 ____D C:\Windows\INF 2018-12-13 08:52 - 2018-11-07 19:16 - 000000000 ____D C:\ProgramData\Origin 2018-12-13 08:51 - 2018-10-12 12:59 - 001048576 _____ C:\Windows\PE_Rom.dll 2018-12-13 08:48 - 2018-11-07 10:42 - 000000000 ____D C:\ProgramData\AVAST Software 2018-12-13 08:48 - 2015-07-10 13:25 - 000000006 ____H C:\Windows\Tasks\SA.DAT 2018-12-13 08:47 - 2018-10-12 12:44 - 000065536 _____ C:\Windows\system32\spu_storage.bin 2018-12-13 08:47 - 2015-07-10 10:05 - 000262144 ___SH C:\Windows\system32\config\BBI 2018-12-13 08:39 - 2015-07-10 12:02 - 000000000 ___HD C:\Windows\ELAMBKUP 2018-12-13 01:27 - 2018-10-12 12:17 - 000000000 ___HD C:\Users\DRATH REVAN 2018-12-13 00:51 - 2018-10-12 12:32 - 000000000 ____D C:\Users\DRATH REVAN\AppData\Roaming\IObit 2018-12-13 00:51 - 2018-10-12 12:32 - 000000000 ____D C:\ProgramData\IObit 2018-12-13 00:12 - 2018-11-07 10:02 - 000000000 ___HD C:\$GetCurrent 2018-12-13 00:11 - 2018-11-07 19:17 - 000000000 ___HD C:\Users\DRATH REVAN\.QtWebEngineProcess 2018-12-13 00:11 - 2018-11-07 19:17 - 000000000 ___HD C:\Users\DRATH REVAN\.Origin 2018-12-13 00:11 - 2018-11-04 01:39 - 000000000 ____D C:\Users\DRATH REVAN\AppData\Roaming\ATI 2018-12-13 00:11 - 2018-10-12 12:55 - 000000000 ____D C:\Intel 2018-12-13 00:11 - 2018-10-12 12:43 - 000000000 ____D C:\AMD 2018-12-13 00:11 - 2018-10-12 12:17 - 000000000 ____D C:\Users\DRATH REVAN\AppData\Roaming\Adobe 2018-12-12 23:09 - 2018-10-12 12:29 - 000000000 ____D C:\Users\DRATH REVAN\AppData\LocalLow\Mozilla 2018-12-12 22:08 - 2018-10-14 08:46 - 000000000 ____D C:\Users\Default\AppData\Local\Microsoft Help 2018-12-12 22:08 - 2018-10-14 08:46 - 000000000 ____D C:\Users\Default User\AppData\Local\Microsoft Help 2018-12-12 22:08 - 2018-10-12 13:47 - 000000000 ____D C:\Program Files (x86)\Microsoft SQL Server 2018-12-12 22:08 - 2018-06-19 22:29 - 000000000 ___HD C:\$WINDOWS.~BT 2018-12-12 22:08 - 2015-07-10 12:02 - 000000000 ____D C:\PerfLogs 2018-12-12 21:44 - 2018-10-13 19:37 - 000000000 ____D C:\Windows\system32\MRT 2018-12-12 21:42 - 2018-10-13 19:37 - 137260640 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe 2018-12-12 19:31 - 2018-10-12 12:19 - 000000000 ___RD C:\Users\DRATH REVAN\OneDrive 2018-12-12 19:30 - 2018-10-12 13:48 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013 2018-12-12 19:30 - 2015-07-10 12:02 - 000000167 _____ C:\Windows\win.ini 2018-12-12 19:23 - 2018-10-12 12:45 - 000000000 ____D C:\ProgramData\ProductData 2018-12-12 19:23 - 2018-10-12 12:45 - 000000000 ____D C:\ProgramData\Package Cache 2018-12-12 19:23 - 2018-10-12 12:33 - 000000000 ____D C:\Users\DRATH REVAN\AppData\Roaming\ProductData 2018-12-12 19:23 - 2015-07-10 12:02 - 000000000 ___HD C:\Windows\system32\GroupPolicy 2018-12-12 19:23 - 2015-07-10 12:02 - 000000000 ____D C:\Windows\SysWOW64\GroupPolicy 2018-12-12 19:21 - 2018-10-12 13:46 - 000000000 ____D C:\Program Files (x86)\Microsoft Office 2018-12-12 19:21 - 2015-07-10 12:02 - 000000000 ___HD C:\Program Files\WindowsApps 2018-12-12 19:21 - 2015-07-10 12:02 - 000000000 ____D C:\Windows\registration 2018-12-12 19:04 - 2018-10-12 12:29 - 000000000 ____D C:\Users\DRATH REVAN\AppData\Roaming\Mozilla 2018-12-12 19:03 - 2018-10-12 12:33 - 000001033 _____ C:\Users\DRATH.adxkrnv 2018-12-10 23:04 - 2018-10-13 19:38 - 000592616 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe 2018-12-10 20:10 - 2015-07-10 12:02 - 000000000 ____D C:\Windows\LiveKernelReports 2018-12-07 10:22 - 2018-10-13 19:36 - 000000000 ____D C:\Program Files\rempl 2018-12-06 08:13 - 2018-11-07 19:20 - 000000000 ____D C:\Program Files (x86)\Origin 2018-12-05 20:41 - 2018-10-28 17:53 - 000000000 ____D C:\Program Files\DIFX 2018-11-27 08:25 - 2015-07-10 12:02 - 000000000 ____D C:\Windows\AppReadiness 2018-11-25 14:23 - 2018-10-12 13:48 - 000000000 ____D C:\Users\DRATH REVAN\AppData\Local\SquirrelTemp 2018-11-25 14:22 - 2018-10-12 12:17 - 000000000 ____D C:\Users\DRATH REVAN\AppData\Local\Packages 2018-11-25 11:00 - 2018-11-07 19:16 - 000000000 ____D C:\Users\DRATH REVAN\AppData\Roaming\Origin 2018-11-24 16:22 - 2018-10-12 12:28 - 000002401 _____ C:\Users\DRATH REVAN\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Vivaldi.lnk 2018-11-24 16:22 - 2018-10-12 12:28 - 000000000 ____D C:\Users\DRATH REVAN\AppData\Local\Vivaldi 2018-11-21 14:20 - 2018-10-12 13:58 - 000000000 ___HD C:\Users\DRATH REVAN\AppData\Local\DisplayFusion 2018-11-19 15:03 - 2018-10-12 13:42 - 000000000 ___HD C:\Users\DRATH REVAN\AppData\Local\Adobe 2018-11-19 15:03 - 2015-07-10 12:02 - 000000000 ____D C:\Windows\SysWOW64\Macromed 2018-11-19 15:03 - 2015-07-10 12:02 - 000000000 ____D C:\Windows\system32\Macromed 2018-11-19 12:54 - 2015-07-10 13:23 - 000273152 _____ C:\Windows\system32\FNTCACHE.DAT 2018-11-19 12:53 - 2018-11-04 00:44 - 079953920 _____ C:\Windows\system32\config\SOFTWARE.iodefrag.old 2018-11-19 12:53 - 2018-11-04 00:44 - 079945728 _____ C:\Windows\system32\config\SOFTWARE.iodefrag.bak 2018-11-19 12:53 - 2018-11-04 00:44 - 000405504 _____ C:\Windows\system32\config\DEFAULT.iodefrag.bak 2018-11-19 12:53 - 2018-11-04 00:44 - 000040960 _____ C:\Windows\system32\config\SAM.iodefrag.bak 2018-11-19 12:53 - 2018-11-04 00:44 - 000028672 _____ C:\Windows\system32\config\SECURITY.iodefrag.old 2018-11-19 12:53 - 2018-11-04 00:44 - 000028672 _____ C:\Windows\system32\config\SECURITY.iodefrag.bak 2018-11-19 12:52 - 2018-11-04 00:44 - 000524288 _____ C:\Windows\system32\config\DEFAULT.iodefrag.old 2018-11-19 12:52 - 2018-10-12 12:32 - 000000282 _____ C:\Windows\Tasks\ASC9_SkipUac_DRATH REVAN.job 2018-11-19 12:48 - 2018-10-12 12:45 - 000000000 ___HD C:\Users\DRATH REVAN\AppData\Local\AMD 2018-11-19 12:48 - 2018-10-12 12:44 - 000000000 ____D C:\Program Files\AMD 2018-11-17 22:33 - 2018-11-07 19:03 - 000000000 ____D C:\Program Files (x86)\Steam 2018-11-16 23:35 - 2018-11-07 19:23 - 000000000 ____D C:\Program Files (x86)\Origin Games 2018-11-16 13:22 - 2018-11-10 09:02 - 000000000 ____D C:\Users\DRATH REVAN\Desktop\xpentology 2018-11-16 10:27 - 2018-10-12 12:47 - 000008192 __RSH C:\BOOTSECT.BAK 2018-11-16 10:27 - 2018-10-12 12:47 - 000000000 ____D C:\Windows\Panther 2018-11-16 10:27 - 2015-07-10 10:05 - 000032768 ___SH C:\Windows\system32\config\ELAM 2018-11-16 10:25 - 2018-10-13 21:44 - 000009528 _____ C:\Windows\diagwrn.xml 2018-11-16 10:25 - 2018-10-13 21:44 - 000009528 _____ C:\Windows\diagerr.xml 2018-11-13 12:52 - 2015-07-10 12:02 - 000000000 ____D C:\Windows\system32\NDF ==================== Fichiers à la racine de certains dossiers ======= 2018-12-13 01:27 - 2018-12-13 01:27 - 000000000 _____ () C:\Users\DRATH REVAN\FIX.BAT 2018-12-12 19:03 - 2018-12-12 19:03 - 000009266 _____ () C:\Users\DRATH REVAN\AppData\Roaming\ADXKRNV-DECRYPT.txt 2018-12-12 19:03 - 2018-12-12 19:03 - 000070896 _____ () C:\Users\DRATH REVAN\AppData\Local\Config.xml 2018-10-15 08:51 - 2018-10-15 08:51 - 000000000 ____H () C:\Users\DRATH REVAN\AppData\Local\oobelibMkey.log 2018-11-16 09:24 - 2018-11-16 09:29 - 000000600 _____ () C:\Users\DRATH REVAN\AppData\Local\PUTTY.RND 2018-11-18 16:22 - 2018-11-18 16:22 - 000007605 _____ () C:\Users\DRATH REVAN\AppData\Local\Resmon.ResmonCfg 2018-12-12 19:03 - 2018-12-12 19:03 - 000722944 _____ () C:\Users\DRATH REVAN\AppData\Local\sham.db ==================== Bamital & volsnap ====================== (Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.) C:\Windows\system32\winlogon.exe => Le fichier est signé numériquement C:\Windows\system32\wininit.exe => Le fichier est signé numériquement C:\Windows\explorer.exe => Le fichier est signé numériquement C:\Windows\SysWOW64\explorer.exe => Le fichier est signé numériquement C:\Windows\system32\svchost.exe => Le fichier est signé numériquement C:\Windows\SysWOW64\svchost.exe => Le fichier est signé numériquement C:\Windows\system32\services.exe => Le fichier est signé numériquement C:\Windows\system32\User32.dll => Le fichier est signé numériquement C:\Windows\SysWOW64\User32.dll => Le fichier est signé numériquement C:\Windows\system32\userinit.exe => Le fichier est signé numériquement C:\Windows\SysWOW64\userinit.exe => Le fichier est signé numériquement C:\Windows\system32\rpcss.dll => Le fichier est signé numériquement C:\Windows\system32\dnsapi.dll => Le fichier est signé numériquement C:\Windows\SysWOW64\dnsapi.dll => Le fichier est signé numériquement C:\Windows\system32\Drivers\volsnap.sys => Le fichier est signé numériquement LastRegBack: 2018-12-09 13:33 ==================== Fin de FRST.txt ============================