Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 04-09-2019 Exécuté par mickael (administrateur) sur LEPETIT (Medion Akoya P7628) (05-09-2019 09:50:07) Exécuté depuis C:\Users\mickael\Desktop\desinfection Profils chargés: mickael (Profils disponibles: UpdatusUser & mickael & defaultuser1 & Administrateur & Invité) Platform: Windows 10 Home Version 1809 17763.678 (X64) Langue: Français (France) Navigateur par défaut: Chrome Mode d'amorçage: Normal Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processus (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.) () [Fichier non signé] C:\Program Files (x86)\PHotkey\GFNEXSrv.exe () [Fichier non signé] C:\Program Files (x86)\PHotkey\GPMTray.exe () [Fichier non signé] C:\Program Files (x86)\PHotkey\PHotkey.exe () [Fichier non signé] C:\Program Files (x86)\PHotkey\POsd.exe (Adobe Inc. -> Adobe Systems) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe (Adobe Inc. -> Adobe Systems) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Adobe Inc. -> Adobe) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe (Apple Inc. -> Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc. -> Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe (Apple Inc. -> Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe (Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe (Apple Inc. -> Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe (Apple Inc. -> Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe (Apple Inc. -> Apple, Inc.) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\secd.exe (CyberLink Corp. -> ) C:\Program Files\CyberLink\Shared files\RichVideo64.exe (CyberLink Corp. -> CyberLink) C:\Program Files (x86)\CyberLink\PowerDVD10\Device\MediaServer\CLMSMonitorService.exe (Epic Games Inc. -> Epic Games, Inc.) C:\Program Files (x86)\Epic Games\Launcher\Engine\Binaries\Win64\UnrealCEFSubProcess.exe (Epic Games Inc. -> Epic Games, Inc.) C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe (GlavSoft LLC -> GlavSoft LLC.) C:\Program Files\TightVNC\tvnserver.exe (GlavSoft LLC -> GlavSoft LLC.) C:\Program Files\TightVNC\tvnserver.exe (Google Inc -> Google Inc.) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (Google Inc -> Google Inc.) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (Google Inc -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.34.11\GoogleCrashHandler.exe (Google Inc -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.34.11\GoogleCrashHandler64.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Intel Corporation - Intel® Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe (Intel Corporation - Intel® Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe (Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe (Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxEM.exe (Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxHK.exe (Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxTray.exe (Intel Corporation -> Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe (Intel Corporation -> Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe (Intel Corporation -> Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe (Intel Corporation-Mobile Wireless Group -> Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\ibtrksrv.exe (Intel(R) Wireless Connectivity Solutions -> Intel Corporation) C:\Windows\System32\ibtsiva.exe (Intel® Upgrade Service -> Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe (Ivaylo Beltchev -> IvoSoft) C:\Program Files\Classic Shell\ClassicStartMenu.exe (Malwarebytes Corporation -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe (Malwarebytes Corporation -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe (Microsoft Corporation -> Microsoft Corporation) C:\Users\mickael\AppData\Local\Microsoft\OneDrive\OneDrive.exe (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.YourPhone_1.19071.901.0_x64__8wekyb3d8bbwe\YourPhone.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\LocationNotificationWindows.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MDMAgent.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1907.4-0\MsMpEng.exe (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1907.4-0\NisSrv.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe (PEGATRON CORPORATION -> TODO: ) C:\Program Files (x86)\PHotkey\HCSynApi.exe (Piriform Software Ltd -> Piriform Software) C:\Program Files (x86)\CCleaner Browser\Application\CCleanerBrowser.exe (Piriform Software Ltd -> Piriform Software) C:\Program Files (x86)\CCleaner Browser\Update\1.5.21.0\CCleanerBrowserCrashHandler.exe (Piriform Software Ltd -> Piriform Software) C:\Program Files (x86)\CCleaner Browser\Update\1.5.21.0\CCleanerBrowserCrashHandler64.exe (Piriform Software Ltd -> Piriform Software) C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Program Files (x86)\epson\MyEpson Portal\mep.exe (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Program Files (x86)\epson\MyEpson Portal\mepService.exe (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Windows\System32\escsvc64.exe (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION) C:\Windows\System32\spool\drivers\x64\3\E_YATIRFE.EXE (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION) C:\Windows\System32\spool\drivers\x64\3\E_YATIRFE.EXE (Skype) C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.51.72.0_x64__kzf8qxf38zg5c\SkypeApp.exe (Skype) C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.51.72.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe Impossible d'accéder au processus -> CLMSServer.exe Impossible d'accéder au processus -> explorer.exe Impossible d'accéder au processus -> PeopleExperienceHost.exe ==================== Registre (Avec liste blanche) =========================== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.) HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [286704 2013-04-30] (Intel Corporation - Intel® Rapid Storage Technology -> Intel Corporation) HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [18388936 2018-05-30] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1501120 2018-05-30] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3951280 2016-01-08] (Synaptics Incorporated -> Synaptics Incorporated) HKLM\...\Run: [Classic Start Menu] => C:\Program Files\Classic Shell\ClassicStartMenu.exe [163640 2018-07-15] (Ivaylo Beltchev -> IvoSoft) HKLM\...\Run: [tvncontrol] => C:\Program Files\TightVNC\tvnserver.exe [1802864 2019-07-04] (GlavSoft LLC -> GlavSoft LLC.) HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [302904 2019-07-19] (Apple Inc. -> Apple Inc.) HKLM\...\Policies\Explorer: [ConfirmFileDelete] 1 HKU\S-1-5-21-190913519-231562731-365285733-1002\...\Run: [EpicGamesLauncher] => C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [35926416 2019-08-28] (Epic Games Inc. -> Epic Games, Inc.) HKU\S-1-5-21-190913519-231562731-365285733-1002\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [23153344 2019-07-11] (Piriform Software Ltd -> Piriform Software Ltd) HKU\S-1-5-21-190913519-231562731-365285733-1002\...\Run: [iCloudServices] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [67384 2019-05-08] (Apple Inc. -> Apple Inc.) HKU\S-1-5-21-190913519-231562731-365285733-1002\...\Run: [EPLTarget\P0000000000000000] => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YATIRFE.EXE [417776 2014-11-14] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION) HKU\S-1-5-21-190913519-231562731-365285733-1002\...\Run: [EPLTarget\P0000000000000001] => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YATIRFE.EXE [417776 2014-11-14] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION) HKU\S-1-5-21-190913519-231562731-365285733-1002\...\Run: [iCloudDrive] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe [110392 2019-05-08] (Apple Inc. -> Apple Inc.) HKU\S-1-5-21-190913519-231562731-365285733-1002\...\Run: [GarminExpress] => C:\Program Files (x86)\Garmin\Express\express.exe [30871024 2019-08-21] (Garmin International, Inc. -> Garmin Ltd. or its subsidiaries) HKU\S-1-5-18\...\Run: [GarminExpress] => C:\Program Files (x86)\Garmin\Express\express.exe [30871024 2019-08-21] (Garmin International, Inc. -> Garmin Ltd. or its subsidiaries) HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\76.0.3809.132\Installer\chrmstp.exe [2019-08-29] (Google LLC -> Google LLC) HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{052EB454-9F19-CB42-7875-807F79F311C4}] -> C:\Program Files (x86)\CCleaner Browser\Application\75.1.103.145\Installer\chrmstp.exe [2019-08-10] (Piriform Software Ltd -> Piriform Software) HKLM\Software\...\Authentication\Credential Providers: [{538C240D-3DEE-4032-AB4C-08A3A6EB0861}] -> C:\Program Files (x86)\CyberLink\YouCam\CLCredProv\x64\CLCredProv.dll [2013-09-18] (CyberLink Corp. -> CyberLink) FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION ==================== Tâches planifiées (Avec liste blanche) ============= (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) Task: {069E56F4-AF16-4353-B941-2A73ED765400} - System32\Tasks\Microsoft\Windows\Shell\FamilySafetyUpload => {EBF00FCB-0769-4B81-9BEC-6C05514111AA} Task: {07ECD7CA-027C-420B-B111-3982C98F7C20} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1907.4-0\MpCmdRun.exe [469960 2019-07-26] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {099BD123-12E7-4599-89B6-3D6FD4802C60} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [619416 2019-07-11] (Piriform Software Ltd -> Piriform Software Ltd) Task: {0DDB73BB-E9A8-48C7-85F5-43E1321ED4B3} - System32\Tasks\Microsoft\Windows\SideShow\SystemDataProviders => {7CCA6768-8373-4D28-8876-83E8B4E3A969} Task: {1059EDDF-8408-4715-ACB4-F5CEDB3019B2} - System32\Tasks\CCleaner Browser Heartbeat Task (Logon) => C:\Program Files (x86)\CCleaner Browser\Application\CCleanerBrowser.exe [1828216 2019-07-23] (Piriform Software Ltd -> Piriform Software) Task: {3141AAC7-DE44-4B29-9D2D-F58CA6F46ABD} - System32\Tasks\Microsoft\Windows\SideShow\SessionAgent => {45F26E9E-6199-477F-85DA-AF1EDFE067B1} Task: {32EED334-53DE-44B2-8CD4-C316EECB0184} - System32\Tasks\CCleanerUpdateTaskMachineCore => C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe [209128 2019-07-20] (Piriform Software Ltd -> Piriform Software) Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\WINDOWS\System32\AutoWorkplace.exe Task: {38B88A42-0D8B-407A-B768-588DFCA5CE69} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1907.4-0\MpCmdRun.exe [469960 2019-07-26] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {3D521490-1B40-4848-957D-3ECBB519B7F1} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1907.4-0\MpCmdRun.exe [469960 2019-07-26] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {43C7E434-4584-4A40-8B0C-2FEE3CF546B0} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [152216 2017-10-24] (Google Inc -> Google Inc.) Task: {44B4F122-AC87-4C48-8149-D11E79624503} - System32\Tasks\EPSON XP-243 245 247 Series Update {6246F3ED-E09D-43BC-A264-D1BF5F93EE4D} => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSRFE.EXE [690536 2013-11-22] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION) Task: {50FB65CA-D741-4320-9058-C82EA8788D05} - System32\Tasks\Synaptics TouchPad Enhancements => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3951280 2016-01-08] (Synaptics Incorporated -> Synaptics Incorporated) Task: {5977A3AE-E186-498C-9E07-DEFF1BED5774} - System32\Tasks\EPSON XP-243 245 247 Series Update {E9D0EF47-AA8B-42AA-887C-44AD4DC4374E} => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSRFE.EXE [690536 2013-11-22] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION) Task: {5A3FB241-0B11-4EA5-BC66-0D9F1B406040} - System32\Tasks\Microsoft\Windows\Customer Experience Improvement Program\BthSQM => {C8367320-6F85-11E0-A1F0-0800200C9A66} C:\WINDOWS\System32\BthTelemetry.dll [31232 2018-09-15] (Microsoft Windows -> Microsoft Corporation) Task: {6DFCB649-0769-4F83-BB10-F60F235F6D3D} - System32\Tasks\Microsoft\Windows\SkyDrive\Idle Sync Maintenance Task => {BF6C1E47-86EC-4194-9CE5-13C15DCB2001} Task: {6F51A493-3643-4567-9230-C775E40DD26A} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [152216 2017-10-24] (Google Inc -> Google Inc.) Task: {7C0C03ED-4D20-4255-B657-BB8A2195D44E} - System32\Tasks\Microsoft\Windows\MobilePC\HotStart => {06DA0625-9701-43DA-BFD7-FBEEA2180A1E} Task: {872D0E53-FD2E-41E3-B431-698AF82882CE} - System32\Tasks\Microsoft\Windows\SkyDrive\Routine Maintenance Task => {1B1F472E-3221-4826-97DB-2C2324D389AE} Task: {8C45F97F-32BF-407D-939A-11D2E0D1793E} - System32\Tasks\Apple Diagnostics => C:\Program Files (x86)\Common Files\Apple\Internet Services\EReporter.exe [67896 2019-07-22] (Apple Inc. -> Apple Inc.) Task: {8DD653EB-4CF4-49E5-B572-2A3F6AE19C67} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_238_pepper.exe [1452600 2019-08-14] (Adobe Inc. -> Adobe) Task: {94CD9053-54E4-4574-ADC3-46C128E1EEF8} - System32\Tasks\Microsoft\Windows\SideShow\GadgetManager => {FF87090D-4A9A-4F47-879B-29A80C355D61} Task: {960A7477-1800-4ED1-978E-4978F3D0EBA3} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe [2045832 2019-08-19] (AVAST Software s.r.o. -> AVAST Software) Task: {A03F0079-1956-43BF-B06E-603021A2DB6E} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2019-08-14] (Adobe Inc. -> Adobe) Task: {A5B971A6-89A0-4FE4-8DAB-4C734FC5566C} - System32\Tasks\CCleaner Browser Heartbeat Task (Hourly) => C:\Program Files (x86)\CCleaner Browser\Application\CCleanerBrowser.exe [1828216 2019-07-23] (Piriform Software Ltd -> Piriform Software) Task: {A67F3F59-3A1D-48E4-97B1-1F03AB29356F} - System32\Tasks\CCleanerUpdateTaskMachineUA => C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe [209128 2019-07-20] (Piriform Software Ltd -> Piriform Software) Task: {AC379963-260F-4382-B5B0-7E5569C80729} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1236048 2019-07-24] (Adobe Inc. -> Adobe Systems) Task: {C5B157C9-C706-4812-A73E-8B0E3C9FF942} - System32\Tasks\GarminUpdaterTask => C:\Program Files (x86)\Garmin\Express SelfUpdater\ExpressSelfUpdater.exe [40432 2019-08-21] (Garmin International, Inc. -> ) Task: {CE2DE968-E342-40D7-9566-427D45E4A886} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40B4-8963-D3C761B18371} Task: {DD9FE118-F2B5-4910-871B-DA088A4CA8D2} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [16835256 2019-07-11] (Piriform Software Ltd -> Piriform Software Ltd) Task: {E27A3E84-BFBC-46D7-8AE8-94D0832EE6C1} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [616320 2018-01-08] (Apple Inc. -> Apple Inc.) Task: {EE2A9065-6C08-4AB5-9D88-1987D73075E4} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1} Task: {F50F9C5A-8AB7-403A-AEC2-E4D19BF05AAA} - System32\Tasks\Microsoft\Windows\SideShow\AutoWake => {E51DFD48-AA36-4B45-BB52-E831F02E8316} Task: {FB3E551B-571E-45CE-923C-EF53A6AD80D6} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1907.4-0\MpCmdRun.exe [469960 2019-07-26] (Microsoft Windows Publisher -> Microsoft Corporation) (Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.) Task: C:\WINDOWS\Tasks\EPSON XP-243 245 247 Series Update {6246F3ED-E09D-43BC-A264-D1BF5F93EE4D}.job => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSRFE.EXE:/EXE:{6246F3ED-E09D-43BC-A264-D1BF5F93EE4D} /F:UpdateWORKGROUP\LEPETIT$ĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi Task: C:\WINDOWS\Tasks\EPSON XP-243 245 247 Series Update {E9D0EF47-AA8B-42AA-887C-44AD4DC4374E}.job => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSRFE.EXE:/EXE:{E9D0EF47-AA8B-42AA-887C-44AD4DC4374E} /F:UpdateWORKGROUP\LEPETIT$ĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi Task: C:\WINDOWS\Tasks\Synaptics TouchPad Enhancements.job => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe ==================== Internet (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.) Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{a4fa6d93-3706-4ce3-b674-d7ebf96a90ac}: [DhcpNameServer] 172.20.10.1 Tcpip\..\Interfaces\{B61691EC-6F42-485F-A794-7B2056A6AD8B}: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{EDD4F01F-CB21-41A2-83D6-E7A9E2B0B9A8}: [DhcpNameServer] 192.168.1.1 Internet Explorer: ================== BHO: ExplorerBHO Class -> {449D0D6E-2412-4E61-B68F-1CB625CD9E52} -> C:\Program Files\Classic Shell\ClassicExplorer64.dll [2018-07-15] (Ivaylo Beltchev -> IvoSoft) BHO: Easy Photo Print -> {9421DD08-935F-4701-A9CA-22DF90AC4EA6} -> C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll [2015-07-31] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) BHO: ClassicIEBHO Class -> {EA801577-E6AD-4BD5-8F71-4BE0154331A4} -> C:\Program Files\Classic Shell\ClassicIEDLL_64.dll [2018-07-15] (Ivaylo Beltchev -> IvoSoft) BHO-x32: E-Web Print -> {201CF130-E29C-4E5C-A73F-CD197DEFA6AE} -> C:\Program Files (x86)\Epson Software\E-Web Print\ewps_tb.dll [2014-11-27] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION) BHO-x32: ExplorerBHO Class -> {449D0D6E-2412-4E61-B68F-1CB625CD9E52} -> C:\Program Files\Classic Shell\ClassicExplorer32.dll [2018-07-15] (Ivaylo Beltchev -> IvoSoft) BHO-x32: ClassicIEBHO Class -> {EA801577-E6AD-4BD5-8F71-4BE0154331A4} -> C:\Program Files\Classic Shell\ClassicIEDLL_32.dll [2018-07-15] (Ivaylo Beltchev -> IvoSoft) BHO-x32: Pas de nom -> {FFCB3198-32F3-4E8B-9539-4324694ED664} -> Pas de fichier Toolbar: HKLM - Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll [2015-07-31] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) Toolbar: HKLM - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer64.dll [2018-07-15] (Ivaylo Beltchev -> IvoSoft) Toolbar: HKLM-x32 - E-Web Print - {201CF130-E29C-4E5C-A73F-CD197DEFA6AE} - C:\Program Files (x86)\Epson Software\E-Web Print\ewps_tb.dll [2014-11-27] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION) Toolbar: HKLM-x32 - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer32.dll [2018-07-15] (Ivaylo Beltchev -> IvoSoft) FireFox: ======== FF HKLM-x32\...\Firefox\Extensions: [e-webprint@epson.com] - C:\Program Files (x86)\Epson Software\E-Web Print\Firefox Add-on FF Extension: (E-Web Print) - C:\Program Files (x86)\Epson Software\E-Web Print\Firefox Add-on [2019-01-18] [Legacy] [non signé] FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [Pas de fichier] FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [Pas de fichier] FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3508.0205 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2013-02-05] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.34.11\npGoogleUpdate3.dll [2019-05-15] (Google Inc -> Google LLC) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.34.11\npGoogleUpdate3.dll [2019-05-15] (Google Inc -> Google LLC) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2019-07-31] (Adobe Inc. -> Adobe Systems Inc.) Chrome: ======= CHR DefaultProfile: Default CHR HomePage: Default -> hxxps://www.google.com/ CHR StartupUrls: Default -> "hxxps://www.google.com/","hxxps://www.google.com/","hxxps://www.google.com/","hxxps://www.google.com/","hxxps://www.google.com/","hxxps://www.google.com/","hxxp://www.google.com/" CHR NewTab: Default -> Not-active:"chrome-extension://pahplobpnpkkginldibgnocfdnebjhcj/ntp.html" CHR Profile: C:\Users\mickael\AppData\Local\Google\Chrome\User Data\Default [2019-09-05] CHR DownloadDir: C:\Users\mickael\Desktop\desinfection CHR Extension: (Slides) - C:\Users\mickael\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-24] CHR Extension: (Docs) - C:\Users\mickael\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-24] CHR Extension: (Google Drive) - C:\Users\mickael\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-10-17] CHR Extension: (YouTube) - C:\Users\mickael\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-10-24] CHR Extension: (Adblock Plus - bloqueur de publicités gratuit) - C:\Users\mickael\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2019-08-27] CHR Extension: (Adaware Ad Block) - C:\Users\mickael\AppData\Local\Google\Chrome\User Data\Default\Extensions\cmllgdnjnkbapbchnebiedipojhmnjej [2018-06-20] CHR Extension: (Sheets) - C:\Users\mickael\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-24] CHR Extension: (Barre de Confiance CM-CIC) - C:\Users\mickael\AppData\Local\Google\Chrome\User Data\Default\Extensions\ffjkhaeogkeelkioellpgcebmekedpag [2018-10-06] CHR Extension: (Google Docs hors connexion) - C:\Users\mickael\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-08-22] CHR Extension: (Vérificateur de messages Google) - C:\Users\mickael\AppData\Local\Google\Chrome\User Data\Default\Extensions\mihcahmgecmbnbcchbopgniflfhgnkff [2018-10-06] CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\mickael\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-04-06] CHR Extension: (Adaware Web Protection) - C:\Users\mickael\AppData\Local\Google\Chrome\User Data\Default\Extensions\nnooggpliipegmffiolegeppbgkclbpi [2018-05-20] CHR Extension: (EasyFileConvert) - C:\Users\mickael\AppData\Local\Google\Chrome\User Data\Default\Extensions\pahplobpnpkkginldibgnocfdnebjhcj [2019-09-04] CHR Extension: (Gmail) - C:\Users\mickael\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-04-15] CHR Extension: (Chrome Media Router) - C:\Users\mickael\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-08-11] CHR Profile: C:\Users\mickael\AppData\Local\Google\Chrome\User Data\Guest Profile [2019-09-04] CHR Profile: C:\Users\mickael\AppData\Local\Google\Chrome\User Data\System Profile [2019-09-04] ==================== Services (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [96056 2019-04-29] (Apple Inc. -> Apple Inc.) S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [7206312 2018-07-18] (BattlEye Innovations e.K. -> ) S2 ccleaner; C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe [209128 2019-07-20] (Piriform Software Ltd -> Piriform Software) S3 CCleanerBrowserElevationService; C:\Program Files (x86)\CCleaner Browser\Application\75.1.103.145\elevation_service.exe [978680 2019-07-23] (Piriform Software Ltd -> Piriform Software) S3 ccleanerm; C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe [209128 2019-07-20] (Piriform Software Ltd -> Piriform Software) R2 CyberLink PowerDVD 10 MS Monitor Service; C:\Program Files (x86)\CyberLink\PowerDVD10\Device\MediaServer\CLMSMonitorService.exe [74712 2013-03-11] (CyberLink Corp. -> CyberLink) S2 CyberLink PowerDVD 10 MS Service; C:\Program Files (x86)\CyberLink\PowerDVD10\Device\MediaServer\CLMSServer.exe [316376 2013-03-11] (CyberLink Corp. -> CyberLink) S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [780928 2018-05-27] (EasyAntiCheat Oy -> EasyAntiCheat Ltd) R2 EpsonScanSvc; C:\WINDOWS\system32\EscSvc64.exe [145224 2016-11-08] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) R2 GFNEXSrv; C:\Program Files (x86)\PHotkey\GFNEXSrv.exe [160256 2013-01-19] () [Fichier non signé] R2 ibtsiva; C:\WINDOWS\system32\ibtsiva.exe [183480 2017-08-10] (Intel(R) Wireless Connectivity Solutions -> Intel Corporation) R2 igfxCUIService1.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [317416 2018-09-20] (Intel Corporation -> Intel Corporation) R2 Intel(R) Wireless Bluetooth(R) 4.0 Radio Management; C:\Program Files (x86)\Intel\Bluetooth\ibtrksrv.exe [156616 2013-06-26] (Intel Corporation-Mobile Wireless Group -> Intel Corporation) R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6744288 2019-06-26] (Malwarebytes Corporation -> Malwarebytes) R2 MyEpson Portal Service; C:\Program Files (x86)\EPSON\MyEpson Portal\mepService.exe [714712 2017-06-28] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [310880 2018-10-26] (Intel Corporation -> ) R2 RichVideo64; C:\Program Files\CyberLink\Shared files\RichVideo64.exe [389896 2013-03-06] (CyberLink Corp. -> ) R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [246448 2016-01-08] (Synaptics Incorporated -> Synaptics Incorporated) R2 tvnserver; C:\Program Files\TightVNC\tvnserver.exe [1802864 2019-07-04] (GlavSoft LLC -> GlavSoft LLC.) R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1907.4-0\NisSrv.exe [2552416 2019-07-26] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1907.4-0\MsMpEng.exe [108832 2019-07-26] (Microsoft Windows Publisher -> Microsoft Corporation) R2 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [4059744 2018-10-26] (Intel Corporation -> Intel® Corporation) R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000 ===================== Pilotes (Avec liste blanche) ====================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) S3 AMPPAL; C:\WINDOWS\System32\drivers\AMPPAL.sys [165344 2013-05-01] (Intel Corporation-Mobile Wireless Group -> Windows (R) Win 7 DDK provider) S3 btmhsf; C:\WINDOWS\system32\DRIVERS\btmhsf.sys [1385272 2013-04-23] (Motorola Solutions Inc. -> Motorola Solutions, Inc.) R3 ibtusb; C:\WINDOWS\system32\DRIVERS\ibtusb.sys [232976 2017-08-10] (Intel(R) Wireless Connectivity Solutions -> Intel Corporation) S3 libusb0; C:\WINDOWS\system32\DRIVERS\libusb0.sys [44480 2013-09-23] (Akeo Consulting -> hxxp://libusb-win32.sourceforge.net) S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [20936 2019-06-26] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes) R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [275232 2019-08-14] (Malwarebytes Corporation -> Malwarebytes) R3 NETwNb64; C:\WINDOWS\System32\drivers\Netwbw02.sys [3586696 2018-09-26] (Intel(R) Wireless Connectivity Solutions -> Intel Corporation) R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nvpmwu.inf_amd64_f2045d1eeb288d10\nvlddmkm.sys [14456920 2017-05-18] (NVIDIA Corporation -> NVIDIA Corporation) R2 PEGAGFN; C:\Program Files (x86)\PHotkey\PEGAGFN.sys [14344 2009-09-11] (PEGATRON CORPORATION -> PEGATRON) R3 PegaRadioSwitch; C:\WINDOWS\System32\drivers\PegaRadioSwitch.sys [23552 2013-03-06] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider) R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [1131024 2018-10-23] (Realtek Semiconductor Corp. -> Realtek ) S3 SmbDrv; C:\WINDOWS\System32\drivers\Smb_driver_AMDASF.sys [29424 2013-06-04] (Synaptics Incorporated -> Synaptics Incorporated) R3 SmbDrvI; C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys [42664 2016-01-08] (Synaptics Incorporated -> Synaptics Incorporated) S3 USBAAPL64; C:\WINDOWS\System32\Drivers\usbaapl64.sys [54784 2017-10-11] (Microsoft Windows Hardware Compatibility Publisher -> Apple, Inc.) S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [47496 2019-07-26] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [344288 2019-07-26] (Microsoft Windows -> Microsoft Corporation) R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [54496 2019-07-26] (Microsoft Windows -> Microsoft Corporation) ==================== NetSvcs (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) ==================== Un mois (créés) ======== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2019-09-04 08:59 - 2019-09-05 09:50 - 000000000 ____D C:\FRST 2019-09-04 08:35 - 2019-09-05 09:50 - 000000000 ____D C:\Users\mickael\Desktop\desinfection 2019-09-03 10:46 - 2019-09-03 10:58 - 000047518 _____ C:\Users\mickael\Downloads\Re- Fwd- Demande de stage dans l-ecole de Masleon..eml 2019-08-29 23:33 - 2019-08-29 23:33 - 000000000 ____D C:\Users\mickael\AppData\LocalLow\Adobe 2019-08-29 23:32 - 2019-08-29 23:32 - 000004562 _____ C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task 2019-08-29 23:31 - 2019-08-29 23:35 - 000002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk 2019-08-29 23:31 - 2019-08-29 23:31 - 000002128 _____ C:\Users\Public\Desktop\Acrobat Reader DC.lnk 2019-08-29 23:30 - 2019-08-29 23:30 - 000000000 ____D C:\Program Files (x86)\Adobe 2019-08-29 23:29 - 2019-08-29 23:34 - 000000000 ____D C:\ProgramData\Adobe 2019-08-29 19:11 - 2019-08-29 19:11 - 000000000 ___HD C:\OneDriveTemp 2019-08-26 12:26 - 2019-08-26 12:26 - 000119232 _____ C:\Users\mickael\Downloads\vassivieres.gpx 2019-08-14 10:19 - 2019-08-14 10:19 - 000275232 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys 2019-08-13 21:38 - 2019-08-13 21:39 - 086490200 _____ (Garmin Ltd or its subsidiaries) C:\Users\mickael\Downloads\GarminExpress.exe 2019-08-13 21:32 - 2019-08-13 21:32 - 009748752 _____ (Garmin Ltd or its subsidiaries) C:\Users\mickael\Downloads\WebUpdater_WindowsXPSP3andnewer__257.exe 2019-08-13 20:24 - 2019-08-13 20:24 - 011724288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll 2019-08-13 20:24 - 2019-08-13 20:24 - 009941504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll 2019-08-13 20:24 - 2019-08-13 20:24 - 002469440 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll 2019-08-13 20:24 - 2019-08-13 20:24 - 002323688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2vdec.dll 2019-08-13 20:24 - 2019-08-13 20:24 - 000632320 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncController.dll 2019-08-13 20:24 - 2019-08-13 20:24 - 000501248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SyncController.dll 2019-08-13 20:24 - 2019-08-13 20:24 - 000092832 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpfve.sys 2019-08-13 20:23 - 2019-08-13 20:23 - 026808320 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll 2019-08-13 20:23 - 2019-08-13 20:23 - 023453696 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll 2019-08-13 20:23 - 2019-08-13 20:23 - 020816896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll 2019-08-13 20:23 - 2019-08-13 20:23 - 019011584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll 2019-08-13 20:23 - 2019-08-13 20:23 - 012939776 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll 2019-08-13 20:23 - 2019-08-13 20:23 - 012244992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll 2019-08-13 20:23 - 2019-08-13 20:23 - 008900608 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll 2019-08-13 20:23 - 2019-08-13 20:23 - 007921664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll 2019-08-13 20:23 - 2019-08-13 20:23 - 007871488 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll 2019-08-13 20:23 - 2019-08-13 20:23 - 006544552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll 2019-08-13 20:23 - 2019-08-13 20:23 - 006441472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll 2019-08-13 20:23 - 2019-08-13 20:23 - 006308016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll 2019-08-13 20:23 - 2019-08-13 20:23 - 006065152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll 2019-08-13 20:23 - 2019-08-13 20:23 - 005764608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll 2019-08-13 20:23 - 2019-08-13 20:23 - 005587968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll 2019-08-13 20:23 - 2019-08-13 20:23 - 005086208 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll 2019-08-13 20:23 - 2019-08-13 20:23 - 004628992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll 2019-08-13 20:23 - 2019-08-13 20:23 - 004344832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExplorerFrame.dll 2019-08-13 20:23 - 2019-08-13 20:23 - 003818632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe 2019-08-13 20:23 - 2019-08-13 20:23 - 003656704 _____ (Microsoft Corporation) C:\WINDOWS\system32\mispace.dll 2019-08-13 20:23 - 2019-08-13 20:23 - 002942976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mispace.dll 2019-08-13 20:23 - 2019-08-13 20:23 - 002926096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys 2019-08-13 20:23 - 2019-08-13 20:23 - 002778760 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll 2019-08-13 20:23 - 2019-08-13 20:23 - 002765312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll 2019-08-13 20:23 - 2019-08-13 20:23 - 002346496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll 2019-08-13 20:23 - 2019-08-13 20:23 - 002298880 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngine.dll 2019-08-13 20:23 - 2019-08-13 20:23 - 002278792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll 2019-08-13 20:23 - 2019-08-13 20:23 - 002177336 _____ (Microsoft Corporation) C:\WINDOWS\system32\workfolderssvc.dll 2019-08-13 20:23 - 2019-08-13 20:23 - 002096128 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl 2019-08-13 20:23 - 2019-08-13 20:23 - 002017792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl 2019-08-13 20:23 - 2019-08-13 20:23 - 001711104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll 2019-08-13 20:23 - 2019-08-13 20:23 - 001701888 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll 2019-08-13 20:23 - 2019-08-13 20:23 - 001668752 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll 2019-08-13 20:23 - 2019-08-13 20:23 - 001506304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll 2019-08-13 20:23 - 2019-08-13 20:23 - 001485312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll 2019-08-13 20:23 - 2019-08-13 20:23 - 001477432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxPackaging.dll 2019-08-13 20:23 - 2019-08-13 20:23 - 001465984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll 2019-08-13 20:23 - 2019-08-13 20:23 - 001290752 _____ (Microsoft Corporation) C:\WINDOWS\system32\werconcpl.dll 2019-08-13 20:23 - 2019-08-13 20:23 - 001280000 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpsvc.dll 2019-08-13 20:23 - 2019-08-13 20:23 - 001278808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Taskmgr.exe 2019-08-13 20:23 - 2019-08-13 20:23 - 001257472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll 2019-08-13 20:23 - 2019-08-13 20:23 - 001224704 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll 2019-08-13 20:23 - 2019-08-13 20:23 - 001222160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpbase.dll 2019-08-13 20:23 - 2019-08-13 20:23 - 001221528 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipUp.exe 2019-08-13 20:23 - 2019-08-13 20:23 - 000993792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comdlg32.dll 2019-08-13 20:23 - 2019-08-13 20:23 - 000956416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Unistore.dll 2019-08-13 20:23 - 2019-08-13 20:23 - 000882688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe 2019-08-13 20:23 - 2019-08-13 20:23 - 000840192 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll 2019-08-13 20:23 - 2019-08-13 20:23 - 000806024 _____ (Microsoft Corporation) C:\WINDOWS\system32\BioIso.exe 2019-08-13 20:23 - 2019-08-13 20:23 - 000791040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Web.Core.dll 2019-08-13 20:23 - 2019-08-13 20:23 - 000791040 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll 2019-08-13 20:23 - 2019-08-13 20:23 - 000783184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll 2019-08-13 20:23 - 2019-08-13 20:23 - 000763392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mprddm.dll 2019-08-13 20:23 - 2019-08-13 20:23 - 000730112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FlightSettings.dll 2019-08-13 20:23 - 2019-08-13 20:23 - 000690688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CPFilters.dll 2019-08-13 20:23 - 2019-08-13 20:23 - 000684032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll 2019-08-13 20:23 - 2019-08-13 20:23 - 000669184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll 2019-08-13 20:23 - 2019-08-13 20:23 - 000658944 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXService.dll 2019-08-13 20:23 - 2019-08-13 20:23 - 000535056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys 2019-08-13 20:23 - 2019-08-13 20:23 - 000532992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll 2019-08-13 20:23 - 2019-08-13 20:23 - 000525824 _____ (Microsoft Corporation) C:\WINDOWS\system32\nltest.exe 2019-08-13 20:23 - 2019-08-13 20:23 - 000522104 _____ (Microsoft Corporation) C:\WINDOWS\system32\systemreset.exe 2019-08-13 20:23 - 2019-08-13 20:23 - 000515440 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcryptprimitives.dll 2019-08-13 20:23 - 2019-08-13 20:23 - 000495104 _____ (Microsoft Corporation) C:\WINDOWS\system32\werui.dll 2019-08-13 20:23 - 2019-08-13 20:23 - 000487424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\newdev.dll 2019-08-13 20:23 - 2019-08-13 20:23 - 000440320 _____ (Microsoft Corporation) C:\WINDOWS\system32\P2PGraph.dll 2019-08-13 20:23 - 2019-08-13 20:23 - 000431616 _____ (Microsoft Corporation) C:\WINDOWS\system32\p2psvc.dll 2019-08-13 20:23 - 2019-08-13 20:23 - 000428032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werui.dll 2019-08-13 20:23 - 2019-08-13 20:23 - 000425984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll 2019-08-13 20:23 - 2019-08-13 20:23 - 000398848 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll 2019-08-13 20:23 - 2019-08-13 20:23 - 000360960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\P2PGraph.dll 2019-08-13 20:23 - 2019-08-13 20:23 - 000356352 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnrpsvc.dll 2019-08-13 20:23 - 2019-08-13 20:23 - 000353280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd3x40.dll 2019-08-13 20:23 - 2019-08-13 20:23 - 000349184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe 2019-08-13 20:23 - 2019-08-13 20:23 - 000345600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll 2019-08-13 20:23 - 2019-08-13 20:23 - 000341504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msexcl40.dll 2019-08-13 20:23 - 2019-08-13 20:23 - 000334848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicensingDiagSpp.dll 2019-08-13 20:23 - 2019-08-13 20:23 - 000313344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd2x40.dll 2019-08-13 20:23 - 2019-08-13 20:23 - 000297984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.System.Diagnostics.dll 2019-08-13 20:23 - 2019-08-13 20:23 - 000284672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Search.ProtocolHandler.MAPI2.dll 2019-08-13 20:23 - 2019-08-13 20:23 - 000264704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Lights.dll 2019-08-13 20:23 - 2019-08-13 20:23 - 000253952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ShellCommonCommonProxyStub.dll 2019-08-13 20:23 - 2019-08-13 20:23 - 000242176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rastapi.dll 2019-08-13 20:23 - 2019-08-13 20:23 - 000232448 _____ (Microsoft Corporation) C:\WINDOWS\system32\ssdpsrv.dll 2019-08-13 20:23 - 2019-08-13 20:23 - 000228352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.System.SystemManagement.dll 2019-08-13 20:23 - 2019-08-13 20:23 - 000228352 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe 2019-08-13 20:23 - 2019-08-13 20:23 - 000219136 _____ (Microsoft Corporation) C:\WINDOWS\system32\P2P.dll 2019-08-13 20:23 - 2019-08-13 20:23 - 000217088 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWWIN.EXE 2019-08-13 20:23 - 2019-08-13 20:23 - 000205824 _____ (Microsoft Corporation) C:\WINDOWS\system32\p2pnetsh.dll 2019-08-13 20:23 - 2019-08-13 20:23 - 000183808 _____ (Microsoft Corporation) C:\WINDOWS\system32\fsutil.exe 2019-08-13 20:23 - 2019-08-13 20:23 - 000180736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWWIN.EXE 2019-08-13 20:23 - 2019-08-13 20:23 - 000179200 _____ (Microsoft Corporation) C:\WINDOWS\system32\t2embed.dll 2019-08-13 20:23 - 2019-08-13 20:23 - 000177664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\p2pnetsh.dll 2019-08-13 20:23 - 2019-08-13 20:23 - 000173568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\P2P.dll 2019-08-13 20:23 - 2019-08-13 20:23 - 000173216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xmllite.dll 2019-08-13 20:23 - 2019-08-13 20:23 - 000167424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdpdr.sys 2019-08-13 20:23 - 2019-08-13 20:23 - 000165888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MicrosoftAccountTokenProvider.dll 2019-08-13 20:23 - 2019-08-13 20:23 - 000155136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll 2019-08-13 20:23 - 2019-08-13 20:23 - 000152576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ComposableShellProxyStub.dll 2019-08-13 20:23 - 2019-08-13 20:23 - 000152576 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceSoftwareInstallationClient.dll 2019-08-13 20:23 - 2019-08-13 20:23 - 000148480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fsutil.exe 2019-08-13 20:23 - 2019-08-13 20:23 - 000144384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssph.dll 2019-08-13 20:23 - 2019-08-13 20:23 - 000138752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\t2embed.dll 2019-08-13 20:23 - 2019-08-13 20:23 - 000125440 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll 2019-08-13 20:23 - 2019-08-13 20:23 - 000122368 _____ (Microsoft Corporation) C:\WINDOWS\system32\wercplsupport.dll 2019-08-13 20:23 - 2019-08-13 20:23 - 000121656 _____ (Microsoft Corporation) C:\WINDOWS\system32\kdnet.dll 2019-08-13 20:23 - 2019-08-13 20:23 - 000117248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll 2019-08-13 20:23 - 2019-08-13 20:23 - 000114128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rmclient.dll 2019-08-13 20:23 - 2019-08-13 20:23 - 000098816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontsub.dll 2019-08-13 20:23 - 2019-08-13 20:23 - 000089600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\drvsetup.dll 2019-08-13 20:23 - 2019-08-13 20:23 - 000078848 _____ (Microsoft Corporation) C:\WINDOWS\system32\offreg.dll 2019-08-13 20:23 - 2019-08-13 20:23 - 000075264 _____ (Microsoft Corporation) C:\WINDOWS\system32\Groupinghc.dll 2019-08-13 20:23 - 2019-08-13 20:23 - 000070656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usoapi.dll 2019-08-13 20:23 - 2019-08-13 20:23 - 000058882 _____ C:\WINDOWS\system32\srms.dat 2019-08-13 20:23 - 2019-08-13 20:23 - 000058880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\offreg.dll 2019-08-13 20:23 - 2019-08-13 20:23 - 000053760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.System.Profile.PlatformDiagnosticsAndUsageDataSettings.dll 2019-08-13 20:23 - 2019-08-13 20:23 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hmkd.dll 2019-08-13 20:23 - 2019-08-13 20:23 - 000021504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shunimpl.dll 2019-08-13 20:22 - 2019-08-13 20:22 - 022114960 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll 2019-08-13 20:22 - 2019-08-13 20:22 - 009682744 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe 2019-08-13 20:22 - 2019-08-13 20:22 - 007884288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll 2019-08-13 20:22 - 2019-08-13 20:22 - 007687784 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll 2019-08-13 20:22 - 2019-08-13 20:22 - 007645392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll 2019-08-13 20:22 - 2019-08-13 20:22 - 006925312 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll 2019-08-13 20:22 - 2019-08-13 20:22 - 005570968 _____ (Microsoft Corporation) C:\WINDOWS\system32\StartTileData.dll 2019-08-13 20:22 - 2019-08-13 20:22 - 004737536 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll 2019-08-13 20:22 - 2019-08-13 20:22 - 004588544 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe 2019-08-13 20:22 - 2019-08-13 20:22 - 004351656 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe 2019-08-13 20:22 - 2019-08-13 20:22 - 004056576 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeContent.dll 2019-08-13 20:22 - 2019-08-13 20:22 - 003978240 _____ (Microsoft Corporation) C:\WINDOWS\system32\bootux.dll 2019-08-13 20:22 - 2019-08-13 20:22 - 003635200 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys 2019-08-13 20:22 - 2019-08-13 20:22 - 003567104 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll 2019-08-13 20:22 - 2019-08-13 20:22 - 003385856 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll 2019-08-13 20:22 - 2019-08-13 20:22 - 003363856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys 2019-08-13 20:22 - 2019-08-13 20:22 - 003335224 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll 2019-08-13 20:22 - 2019-08-13 20:22 - 003333632 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll 2019-08-13 20:22 - 2019-08-13 20:22 - 002999808 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll 2019-08-13 20:22 - 2019-08-13 20:22 - 002842112 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll 2019-08-13 20:22 - 2019-08-13 20:22 - 002767160 _____ (Microsoft Corporation) C:\WINDOWS\system32\UpdateAgent.dll 2019-08-13 20:22 - 2019-08-13 20:22 - 002706432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys 2019-08-13 20:22 - 2019-08-13 20:22 - 002700792 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll 2019-08-13 20:22 - 2019-08-13 20:22 - 002593544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll 2019-08-13 20:22 - 2019-08-13 20:22 - 002438576 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll 2019-08-13 20:22 - 2019-08-13 20:22 - 002421760 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys 2019-08-13 20:22 - 2019-08-13 20:22 - 002189312 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll 2019-08-13 20:22 - 2019-08-13 20:22 - 002073232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll 2019-08-13 20:22 - 2019-08-13 20:22 - 002031104 _____ C:\WINDOWS\system32\rdpnano.dll 2019-08-13 20:22 - 2019-08-13 20:22 - 002022096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll 2019-08-13 20:22 - 2019-08-13 20:22 - 001966904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\refs.sys 2019-08-13 20:22 - 2019-08-13 20:22 - 001892864 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtsvc.dll 2019-08-13 20:22 - 2019-08-13 20:22 - 001733120 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreShell.dll 2019-08-13 20:22 - 2019-08-13 20:22 - 001715712 _____ (Microsoft Corporation) C:\WINDOWS\system32\ISM.dll 2019-08-13 20:22 - 2019-08-13 20:22 - 001701880 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi 2019-08-13 20:22 - 2019-08-13 20:22 - 001674752 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll 2019-08-13 20:22 - 2019-08-13 20:22 - 001662264 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxPackaging.dll 2019-08-13 20:22 - 2019-08-13 20:22 - 001641400 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll 2019-08-13 20:22 - 2019-08-13 20:22 - 001605632 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll 2019-08-13 20:22 - 2019-08-13 20:22 - 001483872 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll 2019-08-13 20:22 - 2019-08-13 20:22 - 001479184 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpbase.dll 2019-08-13 20:22 - 2019-08-13 20:22 - 001472568 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe 2019-08-13 20:22 - 2019-08-13 20:22 - 001466880 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll 2019-08-13 20:22 - 2019-08-13 20:22 - 001391096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Taskmgr.exe 2019-08-13 20:22 - 2019-08-13 20:22 - 001344960 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi 2019-08-13 20:22 - 2019-08-13 20:22 - 001321784 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpx.dll 2019-08-13 20:22 - 2019-08-13 20:22 - 001294488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll 2019-08-13 20:22 - 2019-08-13 20:22 - 001267712 _____ (Microsoft Corporation) C:\WINDOWS\system32\APMon.dll 2019-08-13 20:22 - 2019-08-13 20:22 - 001260560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\http.sys 2019-08-13 20:22 - 2019-08-13 20:22 - 001253688 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe 2019-08-13 20:22 - 2019-08-13 20:22 - 001232384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys 2019-08-13 20:22 - 2019-08-13 20:22 - 001205248 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcss.dll 2019-08-13 20:22 - 2019-08-13 20:22 - 001182240 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe 2019-08-13 20:22 - 2019-08-13 20:22 - 001180464 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll 2019-08-13 20:22 - 2019-08-13 20:22 - 001171968 _____ (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.dll 2019-08-13 20:22 - 2019-08-13 20:22 - 001160704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Unistore.dll 2019-08-13 20:22 - 2019-08-13 20:22 - 001098272 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcMon.exe 2019-08-13 20:22 - 2019-08-13 20:22 - 001057792 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe 2019-08-13 20:22 - 2019-08-13 20:22 - 001054712 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe 2019-08-13 20:22 - 2019-08-13 20:22 - 001048376 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe 2019-08-13 20:22 - 2019-08-13 20:22 - 001038336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll 2019-08-13 20:22 - 2019-08-13 20:22 - 001020416 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll 2019-08-13 20:22 - 2019-08-13 20:22 - 001008640 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll 2019-08-13 20:22 - 2019-08-13 20:22 - 001004544 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll 2019-08-13 20:22 - 2019-08-13 20:22 - 000980992 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll 2019-08-13 20:22 - 2019-08-13 20:22 - 000927232 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll 2019-08-13 20:22 - 2019-08-13 20:22 - 000900096 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll 2019-08-13 20:22 - 2019-08-13 20:22 - 000895792 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll 2019-08-13 20:22 - 2019-08-13 20:22 - 000889344 _____ (Microsoft Corporation) C:\WINDOWS\system32\FlightSettings.dll 2019-08-13 20:22 - 2019-08-13 20:22 - 000888832 _____ (Microsoft Corporation) C:\WINDOWS\system32\mprddm.dll 2019-08-13 20:22 - 2019-08-13 20:22 - 000869888 _____ (Microsoft Corporation) C:\WINDOWS\system32\netlogon.dll 2019-08-13 20:22 - 2019-08-13 20:22 - 000864568 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthService.exe 2019-08-13 20:22 - 2019-08-13 20:22 - 000853504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll 2019-08-13 20:22 - 2019-08-13 20:22 - 000850976 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll 2019-08-13 20:22 - 2019-08-13 20:22 - 000833024 _____ (Microsoft Corporation) C:\WINDOWS\system32\iphlpsvc.dll 2019-08-13 20:22 - 2019-08-13 20:22 - 000816640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\PEAuth.sys 2019-08-13 20:22 - 2019-08-13 20:22 - 000799784 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll 2019-08-13 20:22 - 2019-08-13 20:22 - 000794040 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll 2019-08-13 20:22 - 2019-08-13 20:22 - 000788480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll 2019-08-13 20:22 - 2019-08-13 20:22 - 000771072 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcRefreshTask.dll 2019-08-13 20:22 - 2019-08-13 20:22 - 000764416 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll 2019-08-13 20:22 - 2019-08-13 20:22 - 000758688 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcblaunch.exe 2019-08-13 20:22 - 2019-08-13 20:22 - 000732168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys 2019-08-13 20:22 - 2019-08-13 20:22 - 000684544 _____ (Microsoft Corporation) C:\WINDOWS\system32\vpnike.dll 2019-08-13 20:22 - 2019-08-13 20:22 - 000680184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll 2019-08-13 20:22 - 2019-08-13 20:22 - 000678680 _____ (Microsoft Corporation) C:\WINDOWS\system32\services.exe 2019-08-13 20:22 - 2019-08-13 20:22 - 000664576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netlogon.dll 2019-08-13 20:22 - 2019-08-13 20:22 - 000663552 _____ (Microsoft Corporation) C:\WINDOWS\system32\PsmServiceExtHost.dll 2019-08-13 20:22 - 2019-08-13 20:22 - 000652088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys 2019-08-13 20:22 - 2019-08-13 20:22 - 000622080 _____ (Microsoft Corporation) C:\WINDOWS\system32\NgcCtnrSvc.dll 2019-08-13 20:22 - 2019-08-13 20:22 - 000616960 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll 2019-08-13 20:22 - 2019-08-13 20:22 - 000603280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll 2019-08-13 20:22 - 2019-08-13 20:22 - 000594944 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll 2019-08-13 20:22 - 2019-08-13 20:22 - 000586256 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll 2019-08-13 20:22 - 2019-08-13 20:22 - 000580024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnsapi.dll 2019-08-13 20:22 - 2019-08-13 20:22 - 000574464 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe 2019-08-13 20:22 - 2019-08-13 20:22 - 000553784 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcasvc.dll 2019-08-13 20:22 - 2019-08-13 20:22 - 000529408 _____ (Microsoft Corporation) C:\WINDOWS\system32\ShellCommonCommonProxyStub.dll 2019-08-13 20:22 - 2019-08-13 20:22 - 000523776 _____ (Microsoft Corporation) C:\WINDOWS\system32\newdev.dll 2019-08-13 20:22 - 2019-08-13 20:22 - 000519168 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcext.dll 2019-08-13 20:22 - 2019-08-13 20:22 - 000508968 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFault.exe 2019-08-13 20:22 - 2019-08-13 20:22 - 000482104 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdedit.exe 2019-08-13 20:22 - 2019-08-13 20:22 - 000476160 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll 2019-08-13 20:22 - 2019-08-13 20:22 - 000449576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll 2019-08-13 20:22 - 2019-08-13 20:22 - 000447488 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ks.sys 2019-08-13 20:22 - 2019-08-13 20:22 - 000444728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFault.exe 2019-08-13 20:22 - 2019-08-13 20:22 - 000415744 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe 2019-08-13 20:22 - 2019-08-13 20:22 - 000407040 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe 2019-08-13 20:22 - 2019-08-13 20:22 - 000398928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcryptprimitives.dll 2019-08-13 20:22 - 2019-08-13 20:22 - 000394240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll 2019-08-13 20:22 - 2019-08-13 20:22 - 000387832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Faultrep.dll 2019-08-13 20:22 - 2019-08-13 20:22 - 000385536 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlasvc.dll 2019-08-13 20:22 - 2019-08-13 20:22 - 000383504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msrpc.sys 2019-08-13 20:22 - 2019-08-13 20:22 - 000378880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Lights.dll 2019-08-13 20:22 - 2019-08-13 20:22 - 000375752 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotifyIcon.exe 2019-08-13 20:22 - 2019-08-13 20:22 - 000371200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.System.Diagnostics.dll 2019-08-13 20:22 - 2019-08-13 20:22 - 000363520 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicensingDiagSpp.dll 2019-08-13 20:22 - 2019-08-13 20:22 - 000349696 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsrslvr.dll 2019-08-13 20:22 - 2019-08-13 20:22 - 000346624 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncryptprov.dll 2019-08-13 20:22 - 2019-08-13 20:22 - 000329216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.System.SystemManagement.dll 2019-08-13 20:22 - 2019-08-13 20:22 - 000317952 _____ (Microsoft Corporation) C:\WINDOWS\system32\ComposableShellProxyStub.dll 2019-08-13 20:22 - 2019-08-13 20:22 - 000310072 _____ (Microsoft Corporation) C:\WINDOWS\system32\computestorage.dll 2019-08-13 20:22 - 2019-08-13 20:22 - 000305664 _____ (Microsoft Corporation) C:\WINDOWS\system32\wc_storage.dll 2019-08-13 20:22 - 2019-08-13 20:22 - 000294512 _____ (Microsoft Corporation) C:\WINDOWS\system32\skci.dll 2019-08-13 20:22 - 2019-08-13 20:22 - 000281600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncryptprov.dll 2019-08-13 20:22 - 2019-08-13 20:22 - 000278624 _____ (Microsoft Corporation) C:\WINDOWS\system32\LsaIso.exe 2019-08-13 20:22 - 2019-08-13 20:22 - 000270848 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcTok.exe 2019-08-13 20:22 - 2019-08-13 20:22 - 000262336 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppwinob.dll 2019-08-13 20:22 - 2019-08-13 20:22 - 000257024 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicCapsule.dll 2019-08-13 20:22 - 2019-08-13 20:22 - 000254976 _____ (Microsoft Corporation) C:\WINDOWS\system32\rastapi.dll 2019-08-13 20:22 - 2019-08-13 20:22 - 000253256 _____ (Microsoft Corporation) C:\WINDOWS\system32\logoncli.dll 2019-08-13 20:22 - 2019-08-13 20:22 - 000248120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tpm.sys 2019-08-13 20:22 - 2019-08-13 20:22 - 000241664 _____ (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll 2019-08-13 20:22 - 2019-08-13 20:22 - 000241664 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceSetupManager.dll 2019-08-13 20:22 - 2019-08-13 20:22 - 000240640 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFilterHost.exe 2019-08-13 20:22 - 2019-08-13 20:22 - 000230848 _____ (Microsoft Corporation) C:\WINDOWS\system32\xmllite.dll 2019-08-13 20:22 - 2019-08-13 20:22 - 000227840 _____ (Microsoft Corporation) C:\WINDOWS\system32\MicrosoftAccountTokenProvider.dll 2019-08-13 20:22 - 2019-08-13 20:22 - 000212792 _____ (Microsoft Corporation) C:\WINDOWS\system32\wermgr.exe 2019-08-13 20:22 - 2019-08-13 20:22 - 000203064 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcbloader.dll 2019-08-13 20:22 - 2019-08-13 20:22 - 000201528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\appid.sys 2019-08-13 20:22 - 2019-08-13 20:22 - 000200504 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_SIUF.dll 2019-08-13 20:22 - 2019-08-13 20:22 - 000197632 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatepolicy.dll 2019-08-13 20:22 - 2019-08-13 20:22 - 000193536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Win32CompatibilityAppraiserCSP.dll 2019-08-13 20:22 - 2019-08-13 20:22 - 000193040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wermgr.exe 2019-08-13 20:22 - 2019-08-13 20:22 - 000189712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\logoncli.dll 2019-08-13 20:22 - 2019-08-13 20:22 - 000182784 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssph.dll 2019-08-13 20:22 - 2019-08-13 20:22 - 000180224 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhosdeployment.dll 2019-08-13 20:22 - 2019-08-13 20:22 - 000178176 _____ (Microsoft Corporation) C:\WINDOWS\system32\appsruprov.dll 2019-08-13 20:22 - 2019-08-13 20:22 - 000169472 _____ (Microsoft Corporation) C:\WINDOWS\system32\drvinst.exe 2019-08-13 20:22 - 2019-08-13 20:22 - 000161792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\updatepolicy.dll 2019-08-13 20:22 - 2019-08-13 20:22 - 000152408 _____ (Microsoft Corporation) C:\WINDOWS\system32\KerbClientShared.dll 2019-08-13 20:22 - 2019-08-13 20:22 - 000152080 _____ (Microsoft Corporation) C:\WINDOWS\system32\rmclient.dll 2019-08-13 20:22 - 2019-08-13 20:22 - 000145408 _____ (Microsoft Corporation) C:\WINDOWS\system32\musdialoghandlers.dll 2019-08-13 20:22 - 2019-08-13 20:22 - 000141736 _____ (Microsoft Corporation) C:\WINDOWS\system32\wldp.dll 2019-08-13 20:22 - 2019-08-13 20:22 - 000138752 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputLocaleManager.dll 2019-08-13 20:22 - 2019-08-13 20:22 - 000138240 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppc.dll 2019-08-13 20:22 - 2019-08-13 20:22 - 000134968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\scmbus.sys 2019-08-13 20:22 - 2019-08-13 20:22 - 000125016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KerbClientShared.dll 2019-08-13 20:22 - 2019-08-13 20:22 - 000120832 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatecsp.dll 2019-08-13 20:22 - 2019-08-13 20:22 - 000118480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wldp.dll 2019-08-13 20:22 - 2019-08-13 20:22 - 000117248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pmem.sys 2019-08-13 20:22 - 2019-08-13 20:22 - 000116224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bowser.sys 2019-08-13 20:22 - 2019-08-13 20:22 - 000108544 _____ (Microsoft Corporation) C:\WINDOWS\system32\usoapi.dll 2019-08-13 20:22 - 2019-08-13 20:22 - 000108544 _____ (Microsoft Corporation) C:\WINDOWS\system32\drvsetup.dll 2019-08-13 20:22 - 2019-08-13 20:22 - 000107008 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreShellExtFramework.dll 2019-08-13 20:22 - 2019-08-13 20:22 - 000104248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bindflt.sys 2019-08-13 20:22 - 2019-08-13 20:22 - 000092672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BTHUSB.SYS 2019-08-13 20:22 - 2019-08-13 20:22 - 000092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\DiskSnapshot.exe 2019-08-13 20:22 - 2019-08-13 20:22 - 000087056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\winhvr.sys 2019-08-13 20:22 - 2019-08-13 20:22 - 000080384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dtdump.exe 2019-08-13 20:22 - 2019-08-13 20:22 - 000071168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.System.Profile.PlatformDiagnosticsAndUsageDataSettings.dll 2019-08-13 20:22 - 2019-08-13 20:22 - 000070144 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndproxy.sys 2019-08-13 20:22 - 2019-08-13 20:22 - 000059904 _____ (Microsoft Corporation) C:\WINDOWS\system32\hmkd.dll 2019-08-13 20:22 - 2019-08-13 20:22 - 000056320 _____ (Microsoft Corporation) C:\WINDOWS\system32\msscntrs.dll 2019-08-13 20:22 - 2019-08-13 20:22 - 000048128 _____ (Microsoft Corporation) C:\WINDOWS\system32\UsoClient.exe 2019-08-13 20:22 - 2019-08-13 20:22 - 000047104 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsUpdateElevatedInstaller.exe 2019-08-13 20:22 - 2019-08-13 20:22 - 000032784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\winhv.sys 2019-08-13 20:22 - 2019-08-13 20:22 - 000032568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\uefi.sys 2019-08-13 20:22 - 2019-08-13 20:22 - 000027136 _____ (Microsoft Corporation) C:\WINDOWS\system32\kdcpw.dll 2019-08-13 20:22 - 2019-08-13 20:22 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\shunimpl.dll 2019-08-13 20:22 - 2019-08-13 20:22 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tzres.dll 2019-08-13 20:22 - 2019-08-13 20:22 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzres.dll 2019-08-13 20:22 - 2019-08-13 20:22 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth8.bin 2019-08-13 20:22 - 2019-08-13 20:22 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth7.bin 2019-08-13 20:22 - 2019-08-13 20:22 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth6.bin 2019-08-13 20:22 - 2019-08-13 20:22 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth5.bin 2019-08-13 20:22 - 2019-08-13 20:22 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth4.bin 2019-08-13 20:22 - 2019-08-13 20:22 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth3.bin 2019-08-13 20:22 - 2019-08-13 20:22 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth2.bin 2019-08-13 20:22 - 2019-08-13 20:22 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth1.bin 2019-08-10 23:14 - 2019-08-10 23:14 - 000000020 ___SH C:\Users\defaultuser1.Lepetit\ntuser.ini 2019-08-10 23:14 - 2019-08-10 23:14 - 000000000 ____D C:\Users\defaultuser1.Lepetit\AppData\Roaming\Intel 2019-08-10 23:14 - 2019-08-10 23:14 - 000000000 ____D C:\Users\defaultuser1.Lepetit\AppData\Local\VirtualStore 2019-08-10 23:14 - 2019-08-10 23:14 - 000000000 ____D C:\Users\defaultuser1.Lepetit\AppData\Local\Packages 2019-08-10 23:14 - 2019-08-10 23:14 - 000000000 ____D C:\Users\defaultuser1.Lepetit\AppData\Local\mbamtray 2019-08-10 23:14 - 2019-08-10 23:14 - 000000000 ____D C:\Users\defaultuser1.Lepetit\AppData\Local\ConnectedDevicesPlatform 2019-08-10 23:14 - 2019-08-10 23:14 - 000000000 ____D C:\Users\defaultuser1.Lepetit 2019-08-10 23:14 - 2018-10-06 22:01 - 000001841 _____ C:\Users\defaultuser1.Lepetit\Desktop\MEDIONhome.lnk 2019-08-10 23:14 - 2018-10-06 22:01 - 000001711 _____ C:\Users\defaultuser1.Lepetit\Desktop\LIFESTORE.lnk 2019-08-10 23:14 - 2018-10-06 22:01 - 000001087 _____ C:\Users\defaultuser1.Lepetit\Desktop\ALDI Page d’accueil.lnk 2019-08-10 23:14 - 2018-10-06 22:01 - 000001069 _____ C:\Users\defaultuser1.Lepetit\Desktop\ALDI Service Photo.lnk 2019-08-10 23:14 - 2018-09-15 09:29 - 000001105 _____ C:\Users\defaultuser1.Lepetit\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2019-08-10 19:45 - 2019-08-10 19:45 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes 2019-08-10 19:45 - 2019-08-10 19:45 - 000000000 ____D C:\Program Files\iPod 2019-08-10 19:44 - 2019-08-10 19:45 - 000000000 ____D C:\Program Files\iTunes 2019-08-10 19:39 - 2019-08-10 19:39 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iCloud ==================== Un mois (modifiés) ======== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2019-09-05 10:31 - 2018-09-15 09:33 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2019-09-05 10:09 - 2019-05-15 22:30 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2019-09-05 09:41 - 2018-11-03 14:40 - 000000000 ___RD C:\Users\mickael\OneDrive 2019-09-05 09:37 - 2018-12-15 14:40 - 000000000 ___RD C:\Users\mickael\iCloudDrive 2019-09-05 09:30 - 2017-08-11 11:14 - 000000000 __SHD C:\Users\mickael\IntelGraphicsProfiles 2019-09-04 18:21 - 2013-10-08 04:53 - 000000000 ____D C:\ProgramData\NVIDIA 2019-09-04 18:19 - 2017-09-23 12:19 - 000000000 ____D C:\Users\mickael\AppData\Local\ClassicShell 2019-09-04 18:09 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\LiveKernelReports 2019-09-04 17:47 - 2018-10-15 20:26 - 000000000 ____D C:\Users\mickael\AppData\Local\CrashDumps 2019-09-04 14:50 - 2018-09-15 09:23 - 000000000 ____D C:\WINDOWS\CbsTemp 2019-09-04 08:32 - 2018-09-15 09:31 - 000000000 ____D C:\WINDOWS\INF 2019-09-03 16:18 - 2019-04-28 23:06 - 000000000 ____D C:\Users\mickael\Desktop\NANOU 2019-09-02 07:39 - 2019-05-15 22:56 - 000004210 _____ C:\WINDOWS\System32\Tasks\CCleaner Update 2019-08-31 12:06 - 2018-09-15 09:33 - 000000000 ___HD C:\Program Files\WindowsApps 2019-08-31 12:06 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\AppReadiness 2019-08-29 23:33 - 2017-10-24 21:35 - 000000000 ____D C:\Users\mickael\AppData\Local\Adobe 2019-08-29 23:33 - 2017-09-17 00:49 - 000000000 ____D C:\Users\mickael\AppData\Roaming\Adobe 2019-08-29 23:33 - 2017-09-17 00:47 - 000000000 ____D C:\Users\mickael\AppData\Local\Packages 2019-08-29 23:23 - 2018-11-30 19:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EPSON Software 2019-08-29 23:23 - 2018-11-30 19:05 - 000000000 ____D C:\Program Files (x86)\EPSON Software 2019-08-29 23:17 - 2018-11-30 19:01 - 000000000 ____D C:\ProgramData\Epson 2019-08-29 22:47 - 2017-10-24 21:36 - 000002303 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2019-08-29 19:11 - 2019-05-15 22:56 - 000003362 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-190913519-231562731-365285733-1002 2019-08-29 19:11 - 2019-05-15 22:37 - 000002407 _____ C:\Users\mickael\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2019-08-28 14:46 - 2019-05-15 22:45 - 001773222 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2019-08-28 14:46 - 2018-09-15 18:39 - 000793010 _____ C:\WINDOWS\system32\perfh00C.dat 2019-08-28 14:46 - 2018-09-15 18:39 - 000150042 _____ C:\WINDOWS\system32\perfc00C.dat 2019-08-22 21:29 - 2018-10-06 21:40 - 000000000 ____D C:\ProgramData\Garmin 2019-08-22 20:20 - 2019-07-27 10:13 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Garmin 2019-08-22 20:20 - 2019-05-15 22:56 - 000003626 _____ C:\WINDOWS\System32\Tasks\GarminUpdaterTask 2019-08-22 20:20 - 2018-11-03 11:26 - 000000000 ____D C:\Program Files (x86)\Garmin 2019-08-22 20:20 - 2013-10-08 06:50 - 000000000 ____D C:\ProgramData\Package Cache 2019-08-14 20:02 - 2019-05-15 22:56 - 000004766 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player PPAPI Notifier 2019-08-14 20:02 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed 2019-08-14 20:02 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\system32\Macromed 2019-08-14 13:32 - 2019-05-15 22:37 - 000000000 ____D C:\Users\mickael 2019-08-14 13:32 - 2018-11-03 14:24 - 000000000 ___RD C:\Users\mickael\3D Objects 2019-08-14 13:32 - 2013-10-08 12:52 - 000000000 __RHD C:\Users\Public\AccountPictures 2019-08-14 10:18 - 2019-05-15 22:56 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2019-08-14 10:18 - 2019-05-15 22:30 - 000317808 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2019-08-13 22:13 - 2018-09-15 08:09 - 000524288 _____ C:\WINDOWS\system32\config\BBI 2019-08-13 22:11 - 2018-09-15 09:33 - 000000000 ___SD C:\WINDOWS\system32\UNP 2019-08-13 22:11 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe 2019-08-13 22:11 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\system32\oobe 2019-08-13 22:11 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\Provisioning 2019-08-13 22:11 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\bcastdvr 2019-08-13 21:33 - 2018-10-06 21:39 - 000000000 ____D C:\Program Files\DIFX 2019-08-13 20:46 - 2017-09-23 13:53 - 000000000 ____D C:\WINDOWS\system32\MRT 2019-08-13 20:29 - 2013-03-22 19:03 - 134272480 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2019-08-10 19:20 - 2019-07-20 11:57 - 000003842 _____ C:\WINDOWS\System32\Tasks\CCleaner Browser Heartbeat Task (Hourly) 2019-08-10 19:20 - 2019-07-20 11:57 - 000003258 _____ C:\WINDOWS\System32\Tasks\CCleaner Browser Heartbeat Task (Logon) 2019-08-10 19:20 - 2019-07-20 11:57 - 000002389 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner Browser.lnk 2019-08-10 19:20 - 2019-07-20 11:55 - 000000000 ____D C:\Program Files (x86)\CCleaner Browser ==================== Fichiers à la racine de certains dossiers ================ 2018-10-24 05:07 - 2018-10-24 05:07 - 000479232 _____ () C:\Users\mickael\setup.exe 2018-12-22 18:08 - 2018-12-22 18:08 - 000004608 _____ () C:\Users\mickael\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini 2019-06-27 12:11 - 2019-06-27 12:11 - 000000001 _____ () C:\Users\mickael\AppData\Local\RawCopy.1.10.agreement 2019-06-27 12:12 - 2019-06-29 14:57 - 000000024 _____ () C:\Users\mickael\AppData\Local\RawCopy.opendialog.dir 2019-06-27 12:12 - 2019-06-29 14:57 - 000000001 _____ () C:\Users\mickael\AppData\Local\RawCopy.opendialog.filterindex 2019-06-27 12:12 - 2019-06-27 17:32 - 000000024 _____ () C:\Users\mickael\AppData\Local\RawCopy.savedialog.dir 2019-06-27 12:12 - 2019-06-27 17:32 - 000000001 _____ () C:\Users\mickael\AppData\Local\RawCopy.savedialog.filterindex 2019-06-27 12:12 - 2019-06-29 14:57 - 000000046 _____ () C:\Users\mickael\AppData\Local\RawCopy.sourcedisk.filepath 2019-06-27 12:12 - 2019-06-29 14:57 - 000000001 _____ () C:\Users\mickael\AppData\Local\RawCopy.sourcedisk.index ==================== SigCheckExt ================ 2016-09-14 15:31 - 2016-09-14 15:31 - 000500736 ____S (SEIKO EPSON CORPORATION) C:\WINDOWS\system32\enppmon.dll 2016-09-14 15:31 - 2016-09-14 15:31 - 002642944 ____S (SEIKO EPSON CORPORATION) C:\WINDOWS\system32\enppui.dll 2016-09-14 15:31 - 2016-09-14 15:31 - 000500736 ____S (SEIKO EPSON CORPORATION) C:\WINDOWS\system32\ensppmon.dll 2016-09-14 15:31 - 2016-09-14 15:31 - 002642944 ____S (SEIKO EPSON CORPORATION) C:\WINDOWS\system32\ensppui.dll 2012-07-25 22:22 - 2012-07-26 05:07 - 007300096 _____ (Intel Corporation) C:\WINDOWS\system32\igd10umd64.dll 2012-07-25 22:22 - 2012-07-26 05:07 - 007228416 _____ (Intel Corporation) C:\WINDOWS\system32\igdumd64.dll 2013-10-08 04:41 - 2012-11-02 11:41 - 000053248 _____ (Windows XP Bundled build C-Centric Single User) C:\WINDOWS\SysWOW64\CSVer.dll 2012-06-24 01:24 - 2012-06-24 01:24 - 005892608 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igd10umd32.dll 2012-07-25 22:22 - 2012-06-24 01:24 - 005895680 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdumd32.dll 2012-06-19 19:52 - 2012-06-19 19:52 - 000001536 _____ C:\WINDOWS\SysWOW64\IusEventLog.dll 2013-10-07 09:22 - 2013-10-07 09:22 - 000499712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcp71.dll 2013-10-07 09:22 - 2013-10-07 09:22 - 000348160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcr71.dll 2018-10-24 05:07 - 2018-10-24 05:07 - 000479232 _____ C:\Users\mickael\setup.exe ==================== SigCheck =============================== (Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.) ==================== Fin de FRST.txt ============================