Javascript Disabled Detected

You currently have javascript disabled. Several functions may not work. Please re-enable javascript to access full functionality.

unable to run windows defender

Started by Lakenton , Jun 16 2018 05:10 PM

Please log in to reply

#1
Lakenton

Posted 16 June 2018 - 05:10 PM

New Member

Member
5 posts

Hello

I have win 10 and windows defender is disabled. It says that the IT administrator has done this and I cant find a way to activate it.

There are various malware on the computer, and i ran Kaspersky in an attemt to get rid of them.

Thanks for you help, it is really appreciated.

here is the log from FRST additional txt:

Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 06.06.2018 01
Exécuté par I5 6600k (17-06-2018 01:04:13)
Exécuté depuis C:\Users\I5 6600k\Desktop
Windows 10 Pro Version 1803 17134.112 (X64) (2018-05-17 15:36:19)
Mode d'amorçage: Normal
==========================================================

==================== Comptes: =============================

Administrateur (S-1-5-21-1787737452-2190988134-442874814-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-1787737452-2190988134-442874814-503 - Limited - Disabled)
defaultuser0 (S-1-5-21-1787737452-2190988134-442874814-1000 - Limited - Disabled) => C:\Users\defaultuser0
I5 6600k (S-1-5-21-1787737452-2190988134-442874814-1001 - Administrator - Enabled) => C:\Users\I5 6600k
Invité (S-1-5-21-1787737452-2190988134-442874814-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-1787737452-2190988134-442874814-504 - Limited - Disabled)

==================== Centre de sécurité ========================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Kaspersky Free (Disabled - Up to date) {0AB30972-4BAC-7BEE-CBCA-B8F9E68797D8}
AS: Kaspersky Free (Disabled - Up to date) {B1D2E896-6D96-7460-F17A-838B9D00DD65}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Programmes installés ======================

(Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.)

3DMark (HKLM\...\{7051AEF3-01C3-4E7D-B4CC-8FBFA24B4D2B}) (Version: 2.1.2973.0 - Futuremark) Hidden
3DMark (HKLM-x32\...\{a0df0e52-2800-4963-9ba1-382620df4d05}) (Version: 2.1.2973.0 - Futuremark)
a380_screensaver (HKLM-x32\...\a380_screensaver) (Version: - )
Adobe Flash Player 26 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 26.0.0.137 - Adobe Systems Incorporated)
Adobe Photoshop CS6 (HKLM-x32\...\{74EB3499-8B95-4B5C-96EB-7B342F3FD0C6}) (Version: 13.0 - Adobe Systems Incorporated)
AlphaConsole version 8.8.0.0 (HKLM-x32\...\{0A2D39D8-6EFC-4BD3-9ADB-92CF9F25FA95}_is1) (Version: 8.8.0.0 - AlphaConsole)
Apple Application Support (32 bits) (HKLM-x32\...\{AFA1153A-F547-409B-B837-3A0D6C5A3FEC}) (Version: 3.1.3 - Apple Inc.)
Apple Application Support (64 bits) (HKLM\...\{D7B824DE-DA32-4772-9E5E-39C5158136A7}) (Version: 3.1.3 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{FD244E19-6EFE-4A2D-948A-0D45D4C168BE}) (Version: 9.0.0.26 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{FFD1F7F1-1AC9-4BC4-A908-0686D635ABAF}) (Version: 2.1.4.131 - Apple Inc.)
Asmedia USB Host Controller Driver (HKLM-x32\...\{E4FB0B39-C991-4EE7-95DD-1A1A7857D33D}) (Version: 1.16.33.1 - Asmedia Technology)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
calibre 64bit (HKLM\...\{82EA8033-0AE6-4C1A-91B6-D24BED49AB73}) (Version: 2.79.1 - Kovid Goyal)
Canon IJ Network Scan Utility (HKLM-x32\...\Canon_IJ_Network_Scan_UTILITY) (Version: - )
Canon IJ Network Tool (HKLM-x32\...\Canon_IJ_Network_UTILITY) (Version: 3.1.1 - Canon Inc.)
Canon MG5200 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MG5200_series) (Version: - Canon Inc.)
CPUID CPU-Z MSI 1.76 (HKLM\...\CPUID CPU-Z MSI_is1) (Version: 1.76 - CPUID, Inc.)
Cuphead (HKLM-x32\...\Cuphead_is1) (Version: - )
Deluge 1.3.14 (HKLM-x32\...\Deluge) (Version: - )
Discord (HKU\S-1-5-21-1787737452-2190988134-442874814-1001\...\Discord) (Version: 0.0.301 - Discord Inc.)
DisplayDriverAnalyzer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_DisplayDriverAnalyzer) (Version: 391.35 - NVIDIA Corporation) Hidden
f.lux (HKU\S-1-5-21-1787737452-2190988134-442874814-1001\...\Flux) (Version: - f.lux Software LLC)
FastDataX 1.20 (HKLM-x32\...\FastDataX_is1) (Version: 1.20 - )
FBReader for Windows (HKLM-x32\...\FBReader for Windows) (Version: - )
Futuremark SystemInfo (HKLM-x32\...\{E540B871-3230-4C5B-AAD5-A30F64398275}) (Version: 4.48.599.0 - Futuremark)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 67.0.3396.87 - Google Inc.)
Google Drive (HKLM-x32\...\{A8DC81F2-D365-4248-892A-FA3B5951F731}) (Version: 2.34.9392.7803 - Google, Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.17 - Google Inc.) Hidden
Intel® Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.6.0.1025 - Intel Corporation)
Intel® Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 14.8.0.1042 - Intel Corporation)
Intel® Serial IO (HKLM\...\{9FD91C5C-44AE-4D9D-85BE-AE52816B0294}) (Version: 30.63.1519.7 - Intel Corporation)
iTunes (HKLM\...\{CEC7613B-E286-4A31-BEE3-3F7798488D9F}) (Version: 12.1.3.6 - Apple Inc.)
Kaspersky Free (HKLM-x32\...\{718613F4-492D-4272-ACC3-D04A8EF0F883}) (Version: 19.0.0.1088 - Kaspersky Lab) Hidden
Kaspersky Free (HKLM-x32\...\InstallWIX_{718613F4-492D-4272-ACC3-D04A8EF0F883}) (Version: 19.0.0.1088 - Kaspersky Lab)
Kaspersky Secure Connection (HKLM-x32\...\{F10AA188-7166-430E-8810-FEAB2AD73DE3}) (Version: 19.0.0.1088 - Kaspersky Lab) Hidden
Kaspersky Secure Connection (HKLM-x32\...\InstallWIX_{F10AA188-7166-430E-8810-FEAB2AD73DE3}) (Version: 19.0.0.1088 - Kaspersky Lab)
Logiciel pour périphérique à chipset Intel® (HKLM-x32\...\{c7f54569-0018-439c-809a-48046a4d4ebc}) (Version: 10.1.1.9 - Intel® Corporation) Hidden
Microsoft OneDrive (HKU\S-1-5-21-1787737452-2190988134-442874814-1001\...\OneDriveSetup.exe) (Version: 18.065.0329.0002 - Microsoft Corporation)
Microsoft Silverlight (HKLM-x32\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23918 (HKLM-x32\...\{dab68466-3a7d-41a8-a5cf-415e3ff8ef71}) (Version: 14.0.23918.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23918 (HKLM-x32\...\{2e085fd2-a3e4-4b39-8e10-6b8d35f55244}) (Version: 14.0.23918.0 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation)
Mises à jour NVIDIA 31.1.10.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 31.1.10.0 - NVIDIA Corporation) Hidden
Mozilla Firefox 60.0.2 (x64 en-GB) (HKLM\...\Mozilla Firefox 60.0.2 (x64 en-GB)) (Version: 60.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 60.0.2.6730 - Mozilla)
MSI Afterburner 4.3.0 (HKLM-x32\...\Afterburner) (Version: 4.3.0 - MSI Co., LTD)
MSI Fast Boot (HKLM-x32\...\{0F212E7A-65EB-4668-A8D7-749026A64F8E}_is1) (Version: 1.0.1.8 - MSI)
MSI Gaming APP (HKLM-x32\...\{E0229316-E73B-484B-B9E0-45098AB38D8C}}_is1) (Version: 6.0.0.30 - MSI)
MSI Gaming Lan Manager (HKLM-x32\...\{3318282C-D4D6-4B29-BBD5-95FC34B54FF0}_is1) (Version: 1.0.0.25 - MSI)
MSI M-Cloud (HKLM-x32\...\{C2CA9595-A17F-4D28-BD6E-0E30447AF60B}}_is1) (Version: 1.0.0.21 - MSI)
MSI RAMDisk (HKLM-x32\...\{F29CF050-7278-4CDB-9EF8-2DC6DAA87453}}_is1) (Version: 1.0.0.19 - MSI)
MSI Super Charger (HKLM-x32\...\{7CDF10DD-A9B5-4DA3-AB95-E193248D4369}_is1) (Version: 1.3.0.07 - MSI)
MSI USB Speed Up (HKLM-x32\...\{79D5FA63-7003-4398-B882-C70ED18778D1}_is1) (Version: 1.0.0.09 - MSI)
MSI® Intel® Extreme Tuning Utility (HKLM-x32\...\{5D85C662-99AB-4B25-A6F0-ABB9D702F552}) (Version: 6.0.2.102 - Intel Corporation) Hidden
MSI® Intel® Extreme Tuning Utility (HKLM-x32\...\{bcbf202c-9746-4173-a49b-649bfd0adca6}) (Version: 6.0.2.102 - Intel Corporation)
Nox APP Player (HKLM-x32\...\Nox) (Version: 3.8.1.3 - Duodian Technology Co. Ltd.)
NVIDIA GeForce Experience 3.13.1.30 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.13.1.30 - NVIDIA Corporation)
NVIDIA Logiciel système PhysX 9.17.0524 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.17.0524 - NVIDIA Corporation)
NVIDIA Pilote 3D Vision 391.35 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 391.35 - NVIDIA Corporation)
NVIDIA Pilote du contrôleur 3D Vision 390.41 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 390.41 - NVIDIA Corporation)
NVIDIA Pilote graphique 391.35 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 391.35 - NVIDIA Corporation)
Online Application (HKLM-x32\...\{5266F634-7B7D-4537-BDDC-98DD6CFCBAA1}) (Version: 2.7.0 - Microleaves) Hidden <==== ATTENTION
OpenOffice 4.1.4 (HKLM-x32\...\{43D0929E-E6D1-40A9-81C5-2073F995A95D}) (Version: 4.14.9788 - Apache Software Foundation)
OpenShot Video Editor version 2.4.1 (HKLM\...\{4BB0DCDC-BC24-49EC-8937-72956C33A470}_is1) (Version: 2.4.1 - OpenShot Studios, LLC)
Ori and The Blind Forest - Definitive Edition (HKLM-x32\...\1384944984_is1) (Version: 2.0.0.2 - GOG.com)
Owlboy (HKLM-x32\...\1159880091_is1) (Version: 2.0.0.3 - GOG.com)
Panneau de configuration NVIDIA 391.35 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 391.35 - NVIDIA Corporation) Hidden
PDF Settings CS6 (HKLM-x32\...\{BFEAAE77-BD7F-4534-B286-9C5CB4697EB1}) (Version: 11.0 - Adobe Systems Incorporated) Hidden
PowerISO (HKLM-x32\...\PowerISO) (Version: 5.6 - Power Software Ltd)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.9.422.2016 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7960 - Realtek Semiconductor Corp.)
RivaTuner Statistics Server 6.5.0 (HKLM-x32\...\RTSS) (Version: 6.5.0 - Unwinder)
Rocket League (HKLM-x32\...\Rocket League_is1) (Version: - )
SafeFinder (HKLM-x32\...\{8CAD6B9B-498E-4DA0-B1F1-737D483C91C9}) (Version: 1.0.0.0 - Linkury) <==== ATTENTION
SaFeNetLoad 1.73 (HKLM-x32\...\SaFeNetLoad 1.73) (Version: 1.73 - SaFeNetLoad)
SearchAwesome (HKLM\...\NjNhZTFkNTN) (Version: 13.14.1.250 (i1.0) - SearchAwesome) <==== ATTENTION
Seasons after Fall (HKLM\...\c2Vhc29uc2FmdGVyZmFsbA_is1) (Version: 1 - )
Speccy (HKLM\...\Speccy) (Version: 1.31 - Piriform)
Spotify (HKU\S-1-5-21-1787737452-2190988134-442874814-1001\...\Spotify) (Version: 1.0.70.388.g8e1ed5af - Spotify AB)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Tablette Wacom (HKLM\...\Wacom Tablet Driver) (Version: 6.3.11w3 - Wacom Technology Corp.)
TAP-NordVPN 9.21.2 (HKLM\...\TAP-NordVPN) (Version: 9.21.2 - NordVPN.com)
Thunder Master v2.24 (HKLM-x32\...\{EE04522C-0814-4B63-AE57-0B63E5A355BB}_is1) (Version: 2.24.0.4 - Palit Microsystems Ltd.)
Twitch (HKU\S-1-5-21-1787737452-2190988134-442874814-1001\...\{DEE70742-F4E9-44CA-B2B9-EE95DCF37295}) (Version: 7.0.0.0 - Twitch Interactive, Inc.)
VideoPad Video Editor (HKLM-x32\...\VideoPad) (Version: 5.32 - NCH Software)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.6 - VideoLAN)
Vulkan Run Time Libraries 1.0.65.1 (HKLM\...\VulkanRT1.0.65.1) (Version: 1.0.65.1 - LunarG, Inc.) Hidden
WebTablet FB Plugin 32 bit (HKLM-x32\...\Wacom WebTabletPlugin for Internet Explorer and Netscape) (Version: 2.1.0.7 - Wacom Technology Corp.)
WebTablet FB Plugin 64 bit (HKLM\...\Wacom WebTabletPlugin for Internet Explorer and Netscape) (Version: 2.1.0.7 - Wacom Technology Corp.)
Windows 10 Upgrade Assistant (HKLM-x32\...\{D5C69738-B486-402E-85AC-2456D98A64E4}) (Version: 1.4.9200.17364 - Microsoft Corporation)
Windows Driver Package - BigNox Corporation YSDrv System (01/20/2017 4.3.12) (HKLM\...\1FF524CF3E58304F349D809470EC4A689914A4D5) (Version: 01/20/2017 4.3.12 - BigNox Corporation)
WinRAR 5.40 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.40.0 - win.rar GmbH)
X-Mouse Button Control 2.17 (HKLM-x32\...\X-Mouse Button Control) (Version: 2.17 - Highresolution Enterprises)
XSplit Gamecaster (HKLM-x32\...\{78378B98-F1F9-4B77-AE4B-1008838FDDC6}) (Version: 2.8.1605.2355 - SplitmediaLabs)

==================== Personnalisé CLSID (Avec liste blanche): ==========================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

ShellIconOverlayIdentifiers: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\I5 6600k\AppData\Local\MEGAsync\ShellExtX64.dll [2016-10-31] ()
ShellIconOverlayIdentifiers: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\I5 6600k\AppData\Local\MEGAsync\ShellExtX64.dll [2016-10-31] ()
ShellIconOverlayIdentifiers: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\I5 6600k\AppData\Local\MEGAsync\ShellExtX64.dll [2016-10-31] ()
ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2018-04-23] (Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2018-04-23] (Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2018-04-23] (Google)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Pas de fichier
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Pas de fichier
ShellIconOverlayIdentifiers-x32: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\I5 6600k\AppData\Local\MEGAsync\ShellExtX64.dll [2016-10-31] ()
ShellIconOverlayIdentifiers-x32: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\I5 6600k\AppData\Local\MEGAsync\ShellExtX64.dll [2016-10-31] ()
ShellIconOverlayIdentifiers-x32: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\I5 6600k\AppData\Local\MEGAsync\ShellExtX64.dll [2016-10-31] ()
ContextMenuHandlers1: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files (x86)\Google\Drive\contextmenu64.dll [2018-04-23] (Google)
ContextMenuHandlers1: [Kaspersky Anti-Virus 19.0.0] -> {755D388B-420B-4692-A974-84AAF0E577D3} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 19.0.0\x64\ShellEx.dll [2018-06-17] (AO Kaspersky Lab)
ContextMenuHandlers1: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\I5 6600k\AppData\Local\MEGAsync\ShellExtX64.dll [2016-10-31] ()
ContextMenuHandlers1: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => C:\Program Files (x86)\PowerISO\PWRISOSH.DLL [2013-04-15] (Power Software Ltd)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-08-15] (Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2016-08-15] (Alexander Roshal)
ContextMenuHandlers2: [Kaspersky Anti-Virus 19.0.0] -> {755D388B-420B-4692-A974-84AAF0E577D3} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 19.0.0\x64\ShellEx.dll [2018-06-17] (AO Kaspersky Lab)
ContextMenuHandlers3: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\I5 6600k\AppData\Local\MEGAsync\ShellExtX64.dll [2016-10-31] ()
ContextMenuHandlers4: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files (x86)\Google\Drive\contextmenu64.dll [2018-04-23] (Google)
ContextMenuHandlers4: [Kaspersky Anti-Virus 19.0.0] -> {755D388B-420B-4692-A974-84AAF0E577D3} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 19.0.0\x64\ShellEx.dll [2018-06-17] (AO Kaspersky Lab)
ContextMenuHandlers4: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\I5 6600k\AppData\Local\MEGAsync\ShellExtX64.dll [2016-10-31] ()
ContextMenuHandlers4: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => C:\Program Files (x86)\PowerISO\PWRISOSH.DLL [2013-04-15] (Power Software Ltd)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2018-03-24] (NVIDIA Corporation)
ContextMenuHandlers6: [Kaspersky Anti-Virus 19.0.0] -> {755D388B-420B-4692-A974-84AAF0E577D3} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 19.0.0\x64\ShellEx.dll [2018-06-17] (AO Kaspersky Lab)
ContextMenuHandlers6: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => C:\Program Files (x86)\PowerISO\PWRISOSH.DLL [2013-04-15] (Power Software Ltd)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-08-15] (Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2016-08-15] (Alexander Roshal)

==================== Tâches planifiées (Avec liste blanche) =============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

Task: {000037C3-2208-4287-A1DD-CBAE9F65D9DD} - System32\Tasks\handbookshandbooks => C:\Program Files (x86)\Lars\veta.exe [2018-06-16] ()
Task: {01BD0802-ADEF-4806-8563-6E6BF94AB0D7} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [2018-03-24] (NVIDIA Corporation)
Task: {0390B724-2C8E-4A94-BF93-C6840A183098} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2018-03-24] (NVIDIA Corporation)
Task: {0623CB49-9633-411A-BC4A-5A887C016564} - System32\Tasks\Intel\Intel Telemetry 2 (x86) => C:\Program Files (x86)\Intel\Telemetry 2.0\lrio.exe [2015-05-05] (Intel Corporation)
Task: {072508AF-84F8-462A-90DB-ABEC1EF7F5BC} - System32\Tasks\Intel PTT EK Recertification => C:\Program Files\Intel\iCLS Client\IntelPTTEKRecertification.exe [2016-07-26] (Intel® Corporation)
Task: {0AA5B8E0-7963-41B7-BDA4-1ED0CC89DD4F} - System32\Tasks\Online Application V2G2 => C:\Program Files (x86)\Microleaves\Online Application\Version 2.6.0\Online-Guardian.exe [2017-11-02] () <==== ATTENTION
Task: {0F7D1564-8738-4205-88F7-56306ED11102} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-11-20] (Google Inc.)
Task: {10A4E988-1C70-43CE-BAC9-86390C7F29F7} - \Iota\Micro\Miclip -> Pas de fichier <==== ATTENTION
Task: {1C723484-8871-45BA-B0BB-BEE14813ECBD} - System32\Tasks\Online Application V2G4 => C:\Program Files (x86)\Microleaves\Online Application\Version 2.6.0\Online-Guardian.exe [2017-11-02] () <==== ATTENTION
Task: {22E1A46F-D8C9-48C6-B52C-6DA2E9AF2F6C} - System32\Tasks\SoftUpgrade => C:\Program Files (x86)\SoftUpgrade\softup.exe [2018-05-03] () <==== ATTENTION
Task: {27C67C2B-038F-4CC1-9556-6B283824B697} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2015-08-27] (Apple Inc.)
Task: {2D544A3E-B1ED-445A-9B11-0E667895C469} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-11-20] (Google Inc.)
Task: {32D22E29-AF3C-48D3-A9AA-8DE9274E2353} - System32\Tasks\timetable loobytimetable looby => C:\Program Files (x86)\Who\Gum.exe [2018-06-16] ()
Task: {33B4FF7C-CEC0-44A3-89F8-738DE0003090} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2018-03-24] (NVIDIA Corporation)
Task: {38515381-2243-4CBB-9669-1D7FBE1195BF} - System32\Tasks\cleared-genetcleared-genet => C:\Program Files (x86)\telepathic\Gum.exe [2018-06-16] ()
Task: {403B67CE-9F08-4961-9F19-DCDCD9A7EA82} - System32\Tasks\ThunderMaster => C:\Program Files (x86)\Thunder Master\THPanel.exe [2016-10-26] (Palit Microsystems Ltd.)
Task: {52C75A0D-EC21-46F4-A27D-E6CC08FA75CB} - System32\Tasks\Online Application V2G3 => C:\Program Files (x86)\Microleaves\Online Application\Version 2.6.0\Online-Guardian.exe [2017-11-02] () <==== ATTENTION
Task: {65B85F6F-35B3-4459-A179-28255D5B7B25} - System32\Tasks\Microsoft\Windows\HelloFace\FODCleanupTask => C:\WINDOWS\System32\WinBioPlugIns\FaceFodUninstaller.exe [2018-04-12] ()
Task: {6F0D2638-45FD-40EA-8C33-A1F2AFF570BA} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-07-23] (Adobe Systems Incorporated)
Task: {716BA632-8117-44C0-BE60-874AEB44B6FB} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [2018-03-24] (NVIDIA Corporation)
Task: {7876A5A2-4AFD-4F30-95E4-F9F0F5D316B5} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2018-03-24] (NVIDIA Corporation)
Task: {7CD068C8-4E4D-467F-BD70-6FD1ACE10D34} - System32\Tasks\Online Application V2G6 => C:\Program Files (x86)\Microleaves\Online Application\Version 2.6.0\Online-Guardian.exe [2017-11-02] () <==== ATTENTION
Task: {802C59AA-95B0-4FC3-840E-A7EA6BC0EB87} - System32\Tasks\psychopathic_multilingualpsychopathic_multilingual => C:\Users\I5 6600k\AppData\Local\Gum.exe [2018-06-16] ()
Task: {87CC95B8-9D13-4DC3-82AE-823561BF0F4E} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2018-03-24] (NVIDIA Corporation)
Task: {91D3566A-1D1D-4B20-B6CC-D651831A4F29} - System32\Tasks\henkin alcan procurershenkin alcan procurers => C:\Users\I5 6600k\AppData\Local\Prune.exe [2018-06-16] ()
Task: {91E71A0A-0AB2-4A55-943D-6E84F17A3C23} - \Microsoft\Windows\UNP\RunCampaignManager -> Pas de fichier <==== ATTENTION
Task: {99976D42-A918-407F-9E37-CEA65DAFA402} - System32\Tasks\dimer_agreedimer_agree => C:\Program Files (x86)\Who\Prune.exe [2018-06-16] ()
Task: {AA9E581A-9909-4A80-BD86-218CCA322965} - System32\Tasks\extrasensoryextrasensory => C:\Program Files (x86)\tome\tome.exe [2018-06-16] ()
Task: {B41FE714-7682-4A2B-A987-9E81A917DC65} - System32\Tasks\MSISW_Host => C:\Windows\SysWoW64\muachost.exe [2015-08-18] (MSI)
Task: {C2F22878-8FEA-4AA5-8211-2E66E21ABB3B} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2018-03-24] (NVIDIA Corporation)
Task: {C61A30CA-1A1B-4CF9-8EAC-B77BBCF60800} - System32\Tasks\Online Application V2G1 => C:\Program Files (x86)\Microleaves\Online Application\Version 2.6.0\Online-Guardian.exe [2017-11-02] () <==== ATTENTION
Task: {C91AE315-DD27-421F-8153-0B57553B3D36} - System32\Tasks\salaamsalaam => C:\Program Files (x86)\Dioxins\Prune.exe [2018-06-16] ()
Task: {DADA5F1A-26FD-49D3-A7BC-23B28AA10571} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe [2018-03-24] (NVIDIA Corporation)
Task: {DDE29CEB-C783-485B-9E67-5C32FBC4F073} - System32\Tasks\Updater_Online_Application => C:\Program Files (x86)\Microleaves\Online Application\Online Application Updater.exe [2017-11-02] (Microleaves) <==== ATTENTION
Task: {E4E4AB7F-BFB1-4B86-AAD2-96516B94EF90} - System32\Tasks\MSIOSDx86_Host => C:\Program Files (x86)\MSI\Gaming APP\OSD\x86\MsiGamingOSD_x86.exe [2016-07-28] (Micro-Star INT'L CO., LTD.)
Task: {F4A3C5DD-AA48-4C7D-980B-3DD940736115} - System32\Tasks\MSIOSDx64_Host => C:\Program Files (x86)\MSI\Gaming APP\OSD\x64\MsiGamingOSD_x64.exe [2016-07-28] (Micro-Star INT'L CO., LTD.)
Task: {F59C2645-BE2D-4880-999C-241C48F0D8CD} - System32\Tasks\Online Application V2G5 => C:\Program Files (x86)\Microleaves\Online Application\Version 2.6.0\Online-Guardian.exe [2017-11-02] () <==== ATTENTION
Task: {FC124400-4275-44D6-B8CA-E32F92C315CD} - System32\Tasks\FastDataX Task => C:\Program Files (x86)\FastDataX\FastDataX.exe [2018-05-30] () <==== ATTENTION

(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)

Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
Task: C:\WINDOWS\Tasks\MSISW_Host.job => C:\WINDOWS\SysWOW64\muachost.exe
Task: C:\WINDOWS\Tasks\Online Application V2G1.job => C:\Program Files (x86)\Microleaves\Online Application\Version 2.6.0\Online-Guardian.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\Online Application V2G2.job => C:\Program Files (x86)\Microleaves\Online Application\Version 2.6.0\Online-Guardian.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\Online Application V2G3.job => C:\Program Files (x86)\Microleaves\Online Application\Version 2.6.0\Online-Guardian.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\Online Application V2G4.job => C:\Program Files (x86)\Microleaves\Online Application\Version 2.6.0\Online-Guardian.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\Online Application V2G5.job => C:\Program Files (x86)\Microleaves\Online Application\Version 2.6.0\Online-Guardian.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\Online Application V2G6.job => C:\Program Files (x86)\Microleaves\Online Application\Version 2.6.0\Online-Guardian.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\Updater_Online_Application.job => C:\Program Files (x86)\Microleaves\Online Application\Online Application Updater.exe <==== ATTENTION

==================== Raccourcis & WMI ========================

(Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.)

Shortcut: C:\Users\I5 6600k\Favorites\NCH Software Download Site.lnk -> hxxp://www.nchsoftware.com/index.htm

ShortcutWithArgument: C:\Users\I5 6600k\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe () -> %SNP% --disable-quic
ShortcutWithArgument: C:\Users\I5 6600k\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe () -> %SNP% --disable-quic
ShortcutWithArgument: C:\Users\I5 6600k\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Mozilla Firefox.lnk -> C:\Program Files (x86)\Mozilla Firefox\firefox.exe () -> %SNF%
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe () -> %SNP% --disable-quic
ShortcutWithArgument: C:\Users\Public\Desktop\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe () -> %SNP% --disable-quic

==================== Modules chargés (Avec liste blanche) ==============

2018-04-16 16:25 - 2018-03-24 03:19 - 000544192 _____ () C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem\DisplayDriverAnalyzer\_DisplayDriverCrashAnalyzer64.dll
2015-03-20 18:12 - 2015-03-20 18:12 - 000085832 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2015-03-20 18:12 - 2015-03-20 18:12 - 001346344 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2018-06-14 17:01 - 2018-06-14 17:01 - 000835800 _____ () C:\Program Files\NjNhZTFkNTN\ZGZiOWUzNWQ2Y2ZkMG.exe
2018-04-16 16:25 - 2018-03-24 03:19 - 001267648 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\libprotobuf.dll
2016-12-02 21:53 - 2016-06-14 17:35 - 000187392 _____ () C:\Program Files (x86)\MSI\Gaming APP\OSD\x64\D3D11FontDraw.dll
2016-12-02 21:54 - 2016-11-09 21:07 - 000018360 _____ () C:\Program Files (x86)\MSI\MSI OC Kit\ActiveX_Service\NahimicMonitor.exe
2016-12-02 21:54 - 2016-11-09 19:26 - 000025016 _____ () C:\Program Files (x86)\MSI\MSI OC Kit\ActiveX_Service\TriggerModeMonitor.exe
2018-04-12 01:34 - 2018-04-12 01:34 - 000491744 _____ () C:\Windows\System32\InputHost.dll
2016-10-31 21:45 - 2016-10-31 21:45 - 000592384 _____ () C:\Users\I5 6600k\AppData\Local\MEGAsync\ShellExtX64.dll
2018-04-12 01:34 - 2018-04-12 01:34 - 000472064 _____ () C:\Windows\ShellExperiences\TileControl.dll
2018-04-12 01:34 - 2018-04-12 01:34 - 002759168 _____ () C:\Windows\ShellComponents\TaskFlowUI.dll
2018-06-13 19:49 - 2018-06-08 10:56 - 002185216 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2017-08-28 09:16 - 2014-12-22 22:42 - 001356568 _____ () C:\Program Files\Tablet\Wacom\libxml2.dll
2018-06-16 22:20 - 2018-06-16 22:20 - 000078275 _____ () C:\Program Files (x86)\Lars\veta.exe
2018-06-06 16:10 - 2018-05-31 05:46 - 001827840 _____ () C:\new programs\ALphaconsole 2\AlphaConsole\AlphaConsole.exe
2018-06-06 16:10 - 2018-03-19 22:51 - 000010752 _____ () C:\new programs\ALphaconsole 2\AlphaConsole\AlphaConsoleUpdater.exe
2018-06-16 23:19 - 2018-06-16 23:19 - 002086400 _____ () C:\WINDOWS\fneyzupyiuxxyhzx.fneyz
2016-12-02 21:53 - 2016-06-14 17:35 - 000163328 _____ () C:\Program Files (x86)\MSI\Gaming APP\OSD\x86\D3D11FontDraw.dll
2018-04-16 16:25 - 2018-03-24 03:19 - 001041344 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\libprotobuf.dll
2018-06-16 23:19 - 2018-06-16 23:19 - 000011776 _____ () C:\Users\I5 6600k\AppData\Local\pfialx.dll
2016-08-30 01:19 - 2016-08-30 01:19 - 001243936 _____ () C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\ACE.dll

==================== Alternate Data Streams (Avec liste blanche) =========

(Si un élément est inclus dans le fichier fixlist.txt, seul le flux de données additionnel (ADS - Alternate Data Stream) sera supprimé.)

==================== Mode sans échec (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.)

==================== Association (Avec liste blanche) ===============

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé.)

==================== Internet Explorer sites de confiance/sensibles ===============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre.)

==================== Hosts contenu: ==========================

(Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.)

2016-07-16 13:47 - 2018-06-16 23:20 - 000001282 _____ C:\WINDOWS\system32\Drivers\etc\hosts

162.222.193.86       aoaomo.tremorhub.com
188.95.50.62       bobomo.tremorhub.com
162.222.193.86       www.howcast.com
162.222.193.86       howcast.com
162.222.193.86       www.ustream.tv
162.222.193.86       ustream.tv
162.222.193.86       www.livestream.com
162.222.193.86       livestream.com
162.222.193.86       www.dailymotion.com
162.222.193.86       dailymotion.com
192.192.3.8       www.virustotal.com
192.192.3.8       virustotal.com

==================== Autres zones ============================

(Actuellement, il n'y a pas de correction automatique pour cette section.)

HKU\S-1-5-21-1787737452-2190988134-442874814-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\I5 6600k\Pictures\Nouveau dossier\berg lake (lake).jpg
DNS Servers: 89.2.0.1 - 89.2.0.2
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
Le Pare-feu est activé.

==================== MSCONFIG/TASK MANAGER éléments désactivés ==

HKLM\...\StartupApproved\Run: => "iTunesHelper"
HKLM\...\StartupApproved\Run: => "WindowsDefender"
HKLM\...\StartupApproved\Run: => "AdobeAAMUpdater-1.0"
HKLM\...\StartupApproved\Run: => "MacDrive 10 helper"
HKLM\...\StartupApproved\Run32: => "AdobeCS6ServiceManager"
HKLM\...\StartupApproved\Run32: => "MSI Gaming Lan Manager"
HKLM\...\StartupApproved\Run32: => "PWRISOVM.EXE"
HKLM\...\StartupApproved\Run32: => "SwitchBoard"
HKU\S-1-5-21-1787737452-2190988134-442874814-1001\...\StartupApproved\Run: => "Discord"
HKU\S-1-5-21-1787737452-2190988134-442874814-1001\...\StartupApproved\Run: => "ProxyGate"
HKU\S-1-5-21-1787737452-2190988134-442874814-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-1787737452-2190988134-442874814-1001\...\StartupApproved\Run: => "Spotify"
HKU\S-1-5-21-1787737452-2190988134-442874814-1001\...\StartupApproved\Run: => "Spotify Web Helper"

==================== RèglesPare-feu (Avec liste blanche) ===============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

FirewallRules: [UDP Query User{B4F35F82-D461-4461-84F6-E296397424DB}C:\program files (x86)\mozilla firefox\firefox.exe] => (Allow) C:\program files (x86)\mozilla firefox\firefox.exe
FirewallRules: [TCP Query User{4E47F350-4BD4-4317-A29C-5E7079738E92}C:\program files (x86)\mozilla firefox\firefox.exe] => (Allow) C:\program files (x86)\mozilla firefox\firefox.exe
FirewallRules: [{3F22E60A-1B89-4A76-ADC3-8DA6F9127671}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{C286D6D2-FAB3-439C-8A85-A18617F06D96}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{8BFB8E8D-A889-4FFF-A456-CFC366E6B766}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{48EFF26E-C156-4AAD-A1D0-BDDBFDDA0FCB}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{9ABAF4D9-DEDD-4357-AAEA-4A66A703E492}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{D13F4CCD-0E53-469E-943D-3D2B2087FB3F}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{5C78A1C3-33B1-4DAC-B2F9-F71C64FD6A91}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe
FirewallRules: [{EA461A8B-FA4D-4FD8-A911-DDB19F89C178}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe
FirewallRules: [UDP Query User{1FCBD831-7605-4EA7-8E62-7184939B581D}C:\program files (x86)\windscribe\wsappcontrol.exe] => (Allow) C:\program files (x86)\windscribe\wsappcontrol.exe
FirewallRules: [TCP Query User{FEF46DAB-CF2F-4C4A-B869-B84C24C973A2}C:\program files (x86)\windscribe\wsappcontrol.exe] => (Allow) C:\program files (x86)\windscribe\wsappcontrol.exe
FirewallRules: [{8CE5EE5D-5630-445D-AAE6-E0D0086EE3D3}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{09FB0A13-7EE7-46E8-A25A-D32F9DC920F0}] => (Allow) LPort=26789
FirewallRules: [UDP Query User{1872E636-FAA8-48A0-8C57-49C0A9ACB4BB}C:\users\i5 6600k\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\i5 6600k\appdata\roaming\spotify\spotify.exe
FirewallRules: [TCP Query User{E1CF6E5A-56C7-49CD-8710-633C3E5D458E}C:\users\i5 6600k\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\i5 6600k\appdata\roaming\spotify\spotify.exe
FirewallRules: [{B3B3417A-5AFF-4E6A-AA8A-B20655142F75}] => (Allow) C:\Program Files (x86)\Bignox\BigNoxVM\RT\NoxVMHandle.exe
FirewallRules: [{07C94749-A3F6-4074-A587-4525330B3BFD}] => (Allow) C:\Program Files (x86)\Nox\bin\Nox.exe
FirewallRules: [{539BD5AB-58A0-467F-9D3A-5FE649EDBEB4}] => (Allow) C:\Program Files (x86)\Windroye\Windroye.exe
FirewallRules: [{35E815CD-0A12-4F21-8A96-55D272306450}] => (Allow) C:\Program Files (x86)\Windroye\Windroye.exe
FirewallRules: [{A1F88DE7-0CC2-4E28-8A07-F8147E591E44}] => (Allow) C:\Program Files\WindroyeBox\WindroyeBoxHD.exe
FirewallRules: [{10FC2EE3-8BB5-4211-86B5-F65202494D63}] => (Allow) C:\Program Files\WindroyeBox\WindroyeBoxHD.exe
FirewallRules: [{DA968976-4F08-4EB3-9758-F0A6CD20BC7C}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{10B37C85-4576-4255-837C-5C54BC6ECF1E}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{BE0723C8-5D80-4E00-A99D-9469D6E9F7B4}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{8AD0300B-D8BE-498C-9B4D-30F90FD90B6C}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{9B84DC25-D7AD-465B-ACB0-C116088FD67E}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{6312FFE7-1A79-4E0E-B0D2-1729372E4520}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [UDP Query User{0D74D554-3981-419B-84D6-18F70EEE5D8A}C:\program files (x86)\deluge\deluge.exe] => (Allow) C:\program files (x86)\deluge\deluge.exe
FirewallRules: [TCP Query User{46B17B16-3F8A-4E13-AE7B-CF0CF856E1BC}C:\program files (x86)\deluge\deluge.exe] => (Allow) C:\program files (x86)\deluge\deluge.exe
FirewallRules: [TCP Query User{00F9043C-376C-4D44-A468-6979EAB76805}C:\new programs\deluge\deluge.exe] => (Allow) C:\new programs\deluge\deluge.exe
FirewallRules: [UDP Query User{244DFA41-FCF2-4E56-A568-112A1D1CF9DD}C:\new programs\deluge\deluge.exe] => (Allow) C:\new programs\deluge\deluge.exe
FirewallRules: [TCP Query User{CE630850-AA50-44F9-BF9B-B8507B6B2221}C:\new programs\openshot video editor\launch.exe] => (Allow) C:\new programs\openshot video editor\launch.exe
FirewallRules: [UDP Query User{C68F9220-0BE2-47F5-AA6E-B50768F4E59E}C:\new programs\openshot video editor\launch.exe] => (Allow) C:\new programs\openshot video editor\launch.exe
FirewallRules: [{17195CA7-8751-403E-8115-F4A30446A42F}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{37A92A45-0A32-4C31-8736-7F5C7E4CEBDA}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{26941A65-BF3F-4708-845D-586B8755410B}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{5FAC51F9-4745-4DC8-8AAB-68470149CB35}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{1AC6F883-78E1-4980-9E00-EC134AB3DC6D}] => (Allow) C:\Program Files\iTunes\iTunes.exe
FirewallRules: [TCP Query User{34A5AFEB-E7B1-46F9-AF3A-68FFCEFE2942}C:\users\i5 6600k\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\i5 6600k\appdata\roaming\spotify\spotify.exe
FirewallRules: [UDP Query User{4C94226D-79E6-4B4E-BC15-0152D6685460}C:\users\i5 6600k\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\i5 6600k\appdata\roaming\spotify\spotify.exe
FirewallRules: [{5D7FA4F6-FCEE-41BB-BC11-174FA447E7C1}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.exe
FirewallRules: [{1E67EC73-AD3B-4F47-BC40-221F7ABB6550}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.x64.exe
FirewallRules: [{A751D089-7867-43C3-997E-1C2940CE0C46}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.exe
FirewallRules: [{33AA5F95-FBA5-4796-9876-3DA18745BBDF}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.x64.exe
FirewallRules: [{C21A1827-6D2C-40A5-ABDB-E9E2FB96C0DA}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Tools\Launcher.exe
FirewallRules: [{7C6469E4-AF56-4184-A44E-BB94CA3A0E3A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Tools\RemoteCrashSender.exe
FirewallRules: [{D4DA0548-CB4A-4003-89BA-D1B6573F41F2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.exe
FirewallRules: [{1621C35D-CAFF-4EBF-8CDA-1CB62EBE36AF}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.x64.exe
FirewallRules: [{EB1CB343-FFBF-4F06-8325-733D997E8D2A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.exe
FirewallRules: [{125B7FDC-488D-4D01-987A-E901272B1078}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Warframe.x64.exe
FirewallRules: [{48E1B4A6-6F2A-4F2D-A1C4-96A23280E4D8}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Tools\Launcher.exe
FirewallRules: [{7CE4437D-5DDD-489F-A6C3-F45C8D6664B4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Tools\RemoteCrashSender.exe
FirewallRules: [{FB4F216D-FE74-4FCF-ACDF-BBF705E5D2B4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe
FirewallRules: [{5B2368C0-C7EE-4C50-89C7-FDF093B052FA}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe
FirewallRules: [{217A8E47-20D4-44E2-8596-E91D24287026}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{59913FBE-D944-486C-9707-AA64E415CE9E}] => (Allow) C:\WINDOWS\system32\rundll32.exe
FirewallRules: [{6BEBC782-47EB-4227-8B8D-84725B9C303C}] => (Allow) C:\Program Files (x86)\Dioxins\Prune.exe
FirewallRules: [{D00289F0-1C63-408C-A7B2-43ABF0504CC0}] => (Allow) C:\Program Files (x86)\Who\Prune.exe
FirewallRules: [{4BCB202A-FBA3-4A31-9DAC-342576E1678E}] => (Allow) C:\Program Files (x86)\telepathic\Gum.exe
FirewallRules: [{E2245673-F81D-40A1-9B59-540CCE7AFB81}] => (Allow) C:\Program Files (x86)\Who\Gum.exe
FirewallRules: [{2CD19A2F-FF54-460A-9F11-0E71264D8B0F}] => (Allow) LPort=24680

==================== Points de restauration =========================

13-06-2018 19:47:50 Windows Update

==================== Éléments en erreur du Gestionnaire de périphériques =============

Name: Nexus 6
Description: Nexus 6
Class Guid: {eec5ad98-8080-425f-922a-dabf3de3f69a}
Manufacturer: motorola
Service: WUDFWpdMtp
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.

Name: Clavier standard PS/2
Description: Clavier standard PS/2
Class Guid: {4d36e96b-e325-11ce-bfc1-08002be10318}
Manufacturer: (Claviers standard)
Service: i8042prt
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.

Name: Souris Microsoft PS/2
Description: Souris Microsoft PS/2
Class Guid: {4d36e96f-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: i8042prt
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.

==================== Erreurs du Journal des événements: =========================

Erreurs Application:
==================
Error: (06/17/2018 12:57:49 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante IAStorDataMgrSvc.exe, version : 14.8.0.1042, horodatage : 0x5639dd97
Nom du module défaillant : unknown, version : 0.0.0.0, horodatage : 0x00000000
Code d’exception : 0xc0000005
Décalage d’erreur : 0x03f48105
ID du processus défaillant : 0x32d4
Heure de début de l’application défaillante : 0x01d405c555fa833f
Chemin d’accès de l’application défaillante : C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
Chemin d’accès du module défaillant: unknown
ID de rapport : 678760c4-773f-4ad8-a8ef-71a580a500a1
Nom complet du package défaillant :
ID de l’application relative au package défaillant :

Error: (06/17/2018 12:57:49 AM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Application : IAStorDataMgrSvc.exe
Version du Framework : v4.0.30319
Description : le processus a été arrêté en raison d'une exception non gérée.
Informations sur l'exception : System.NullReferenceException
   à IAStorUtil.SystemDataModelListener.ProcessSystemDataModelChanges()
   à IAStorUtil.SystemDataModelListener.LoadSavedSystemState()
   à IAStorDataMgr.EventRelay.<Start>b__0(System.Object)
   à System.Threading.QueueUserWorkItemCallback.WaitCallback_Context(System.Object)
   à System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
   à System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
   à System.Threading.QueueUserWorkItemCallback.System.Threading.IThreadPoolWorkItem.ExecuteWorkItem()
   à System.Threading.ThreadPoolWorkQueue.Dispatch()
   à System.Threading._ThreadPoolWaitCallback.PerformWaitCallback()

Error: (06/17/2018 12:54:59 AM) (Source: SetupARService) (EventID: 0) (User: )
Description: Le service ne peut pas être démarré. System.NullReferenceException: La référence d'objet n'est pas définie à une instance d'un objet.
   à SetupAfterRebootService.SetupARService.OnStart(String[] args)
   à System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state)

Error: (06/17/2018 12:53:35 AM) (Source: ESENT) (EventID: 544) (User: )
Description: DllHost (1352,D,50) Microsoft.Windows.Cortana_cw5n1h2txyewy_NOEDP_LEGACY_IDB: La lecture de page de base de données à partir du fichier « C:\Users\I5 6600k\AppData\Local\Packages\Microsoft.Windows.Cortana_cw5n1h2txyewy\AppData\Indexed DB\IndexedDB.edb » à l’adresse relative 65536 (0x0000000000010000) (page de base de données 1 (0x1)) de 32768 (0x00008000) octets a échoué au moment de la vérification en raison d’une non-concordance d’horodatage provoquée par la détection d’un vidage perdu. L’opération de lecture va échouer avec l’erreur -1119 (0xfffffba1).

L’état de vidage sur la page de base de données 1 (0x1) était 0, tandis que l’état de vidage sur la page de mappage de vidage 0 (0x0) était 1.

Si ce problème persiste, restaurez la base de données à partir d’une sauvegarde antérieure. Ce problème est certainement dû à du matériel défectueux. Contactez le fabricant du matériel pour obtenir de l’aide supplémentaire sur ce problème.

Error: (06/17/2018 12:53:35 AM) (Source: ESENT) (EventID: 476) (User: )
Description: DllHost (1352,D,50) Microsoft.Windows.Cortana_cw5n1h2txyewy_NOEDP_LEGACY_IDB: La lecture de pages de base de données à partir du fichier « C:\Users\I5 6600k\AppData\Local\Packages\Microsoft.Windows.Cortana_cw5n1h2txyewy\AppData\Indexed DB\IndexedDB.edb » à l’adresse relative 65536 (0x0000000000010000) (page 1 (0x1) de la base de données) de 32768 (0x00008000) octets a échoué lors de la vérification à cause de l’absence de données de page. L’opération de lecture échouera en indiquant l’erreur -1019 (0xfffffc05). Si le problème persiste, restaurez la base de données à partir d’une version de sauvegarde antérieure. Ce problème est probablement dû à du matériel défectueux. Contactez le fabricant de votre matériel pour obtenir de l’aide supplémentaire sur ce problème.

Error: (06/17/2018 12:50:07 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante SecHealthUI.exe, version : 10.0.17134.81, horodatage : 0x5b015b1c
Nom du module défaillant : msvcrt.dll, version : 7.0.17134.1, horodatage : 0x5cbba6fd
Code d’exception : 0x40000015
Décalage d’erreur : 0x000000000000add2
ID du processus défaillant : 0x2e50
Heure de début de l’application défaillante : 0x01d405c45f61032b
Chemin d’accès de l’application défaillante : C:\Windows\SystemApps\Microsoft.Windows.SecHealthUI_cw5n1h2txyewy\SecHealthUI.exe
Chemin d’accès du module défaillant: C:\WINDOWS\System32\msvcrt.dll
ID de rapport : 8cdc1a87-bb8c-4530-baff-6be86ebbb99d
Nom complet du package défaillant : Microsoft.Windows.SecHealthUI_10.0.17134.1_neutral__cw5n1h2txyewy
ID de l’application relative au package défaillant : SecHealthUI

Error: (06/17/2018 12:41:51 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante IAStorDataMgrSvc.exe, version : 14.8.0.1042, horodatage : 0x5639dd97
Nom du module défaillant : unknown, version : 0.0.0.0, horodatage : 0x00000000
Code d’exception : 0xc0000005
Décalage d’erreur : 0x04588105
ID du processus défaillant : 0x1138
Heure de début de l’application défaillante : 0x01d405c31de2c76b
Chemin d’accès de l’application défaillante : C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
Chemin d’accès du module défaillant: unknown
ID de rapport : 5742597c-1449-4745-8d1a-e59605e2407b
Nom complet du package défaillant :
ID de l’application relative au package défaillant :

Error: (06/17/2018 12:41:50 AM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Application : IAStorDataMgrSvc.exe
Version du Framework : v4.0.30319
Description : le processus a été arrêté en raison d'une exception non gérée.
Informations sur l'exception : System.NullReferenceException
   à IAStorUtil.SystemDataModelListener.ProcessSystemDataModelChanges()
   à IAStorUtil.SystemDataModelListener.LoadSavedSystemState()
   à IAStorDataMgr.EventRelay.<Start>b__0(System.Object)
   à System.Threading.QueueUserWorkItemCallback.WaitCallback_Context(System.Object)
   à System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
   à System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
   à System.Threading.QueueUserWorkItemCallback.System.Threading.IThreadPoolWorkItem.ExecuteWorkItem()
   à System.Threading.ThreadPoolWorkQueue.Dispatch()
   à System.Threading._ThreadPoolWaitCallback.PerformWaitCallback()

Erreurs système:
=============
Error: (06/17/2018 01:03:04 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-86BIKC5)
Description: Le serveur {B52D54BB-4818-4EB9-AA80-F9EACD371DF8} ne s’est pas enregistré sur DCOM avant la fin du temps imparti.

Error: (06/17/2018 01:01:04 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-86BIKC5)
Description: Le serveur {7D096C5F-AC08-4F1F-BEB7-5C22C517CE39} ne s’est pas enregistré sur DCOM avant la fin du temps imparti.

Error: (06/17/2018 01:00:01 AM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: Le service Intel® Extreme Tuning Utility Service est en attente de démarrage.

Error: (06/17/2018 12:59:04 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-86BIKC5)
Description: Le serveur {7D096C5F-AC08-4F1F-BEB7-5C22C517CE39} ne s’est pas enregistré sur DCOM avant la fin du temps imparti.

Error: (06/17/2018 12:58:00 AM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT)
Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Exécution pour l’application serveur COM avec le CLSID
Windows.SecurityCenter.WscBrokerManager
et l’APPID
Non disponible
au SID AUTORITE NT\Système de l’utilisateur (S-1-5-18) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants.

Error: (06/17/2018 12:57:50 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Le service Intel® Rapid Storage Technology s’est terminé de façon inattendue pour la 1ème fois.

Error: (06/17/2018 12:57:04 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-86BIKC5)
Description: Le serveur {E48EDA45-43C6-48E0-9323-A7B2067D9CD5} ne s’est pas enregistré sur DCOM avant la fin du temps imparti.

Error: (06/17/2018 12:55:06 AM) (Source: DCOM) (EventID: 10000) (User: DESKTOP-86BIKC5)
Description: Impossible de démarrer un serveur DCOM : {71DCE5D6-4B57-496B-AC21-CD5B54EB93FD}. L’erreur
« 5 »
s’est produite lors du démarrage de la commande :
C:\Users\I5 6600k\AppData\Local\Microsoft\OneDrive\18.065.0329.0002\FileCoAuth.exe -Embedding

CodeIntegrity:
===================================

Date: 2018-06-17 00:36:55.994
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\Kaspersky Lab\Kaspersky Free 19.0.0\avp.exe) attempted to load \Device\HarddiskVolume4\Program Files (x86)\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2018-06-17 00:35:18.514
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\Kaspersky Lab\Kaspersky Free 19.0.0\avp.exe) attempted to load \Device\HarddiskVolume4\Program Files (x86)\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2018-06-17 00:16:15.481
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\Kaspersky Lab\Kaspersky Free 19.0.0\avp.exe) attempted to load \Device\HarddiskVolume4\Program Files (x86)\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2018-06-17 00:16:15.455
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\Kaspersky Lab\Kaspersky Free 19.0.0\avp.exe) attempted to load \Device\HarddiskVolume4\Program Files (x86)\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2018-06-17 00:15:04.669
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\Kaspersky Lab\Kaspersky Free 19.0.0\avp.exe) attempted to load \Device\HarddiskVolume4\Program Files (x86)\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

==================== Infos Mémoire ===========================

Processeur: Intel® Core™ i5-6600K CPU @ 3.50GHz
Pourcentage de mémoire utilisée: 23%
Mémoire physique - RAM - totale: 12247.74 MB
Mémoire physique - RAM - disponible: 9336.23 MB
Mémoire virtuelle totale: 24495.48 MB
Mémoire virtuelle disponible: 20018.43 MB

==================== Lecteurs ================================

Drive b: (RAMDisk) (Fixed) (Total:0.25 GB) (Free:0.25 GB) FAT
Drive c: () (Fixed) (Total:223.02 GB) (Free:31.31 GB) NTFS
Drive d: () (Fixed) (Total:0.44 GB) (Free:0.04 GB) NTFS

\\?\Volume{402841c3-d1f5-4180-92f8-a4f75504fc66}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32

==================== MBR & Table des partitions ==================

========================================================
Disk: 0 (Size: 223.6 GB) (Disk ID: 4793E93F)

Partition: GPT.

==================== Fin de Addition.txt ============================

Edited by Lakenton, 16 June 2018 - 05:14 PM.

#2
Lakenton

Posted 16 June 2018 - 05:13 PM

New Member

Topic Starter
Member
5 posts

As you see above there is plenty of stuff going on.

Here is the text Bloc-notes from FRST:

Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 06.06.2018 01
Exécuté par I5 6600k (administrateur) sur DESKTOP-86BIKC5 (17-06-2018 01:03:46)
Exécuté depuis C:\Users\I5 6600k\Desktop
Profils chargés: I5 6600k (Profils disponibles: defaultuser0 & I5 6600k)
Platform: Windows 10 Pro Version 1803 17134.112 (X64) Langue: Français (France)
Internet Explorer Version 11 (Navigateur par défaut: Edge)
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo...very-scan-tool/

==================== Processus (Avec liste blanche) =================

(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)

(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\WTabletServicePro.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 19.0.0\avp.exe
(Micro-Star Int'l Co., Ltd.) C:\Program Files (x86)\MSI\Gaming APP\GamingApp_Service.exe
(Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\Gaming APP\GamingHotkey_Service.exe
(Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\MSI OC Kit\ActiveX_Service\MSI_ActiveX_Service.exe
(MSI) C:\Program Files (x86)\MSI\Fast Boot\FastBootService.exe
(Micro-Star Int'l Co., Ltd.) C:\Program Files (x86)\MSI\M-Cloud\MSI_Cloud_Service.exe
(Micro-Star Int'l Co., Ltd.) C:\Program Files (x86)\MSI\RAMDisk\MSI_RAMDisk_Service.exe
(MSI) C:\Program Files (x86)\MSI\Super Charger\ChargeService.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
() C:\Program Files\NjNhZTFkNTN\ZGZiOWUzNWQ2Y2ZkMG.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(Microsoft Corporation) C:\Windows\SysWOW64\rundll32.exe
(Palit Microsystems Ltd.) C:\Program Files (x86)\Thunder Master\THPanel.exe
(Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\Gaming APP\OSD\x86\MsiGamingOSD_x86.exe
(MSI) C:\Windows\SysWOW64\muachost.exe
(Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\Gaming APP\OSD\x64\MsiGamingOSD_x64.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
(Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\MSI OC Kit\ActiveX_Service\VideoCardMonitorII.exe
(Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\MSI OC Kit\ActiveX_Service\EyeRest.exe
() C:\Program Files (x86)\MSI\MSI OC Kit\ActiveX_Service\NahimicMonitor.exe
() C:\Program Files (x86)\MSI\MSI OC Kit\ActiveX_Service\TriggerModeMonitor.exe
(Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\Wacom_TabletUser.exe
(Wacom Technology) C:\Program Files\Tablet\Wacom\WacomHost.exe
(Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\Wacom_Tablet.exe
(Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\Wacom_TouchUser.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
(Microsoft Corporation) C:\Windows\System32\browser_broker.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 19.0.0\avpui.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(G-PANEL) C:\Program Files (x86)\Thunder Master\UI\G-PANEL.exe
() C:\Program Files (x86)\Lars\veta.exe
(f.lux Software LLC) C:\Users\I5 6600k\AppData\Local\FluxSoftware\Flux\flux.exe
() C:\new programs\ALphaconsole 2\AlphaConsole\AlphaConsole.exe
() C:\new programs\ALphaconsole 2\AlphaConsole\AlphaConsoleUpdater.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Corporation) C:\Windows\SysWOW64\rundll32.exe
(Intel Corporation) C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe
(Micro-Star INT'L CO.,LTD.) C:\Program Files (x86)\MSI\Fast Boot\FastBoot.exe
(MSI) C:\Program Files (x86)\MSI\Super Charger\Super Charger.exe
(Micro-Star INT'L CO., LTD.) C:\MSI\MSI USB Speed Up\USB_Speed_Up.exe
(CANON INC.) C:\Program Files (x86)\Canon\Canon IJ Network Scan Utility\CNMNSUT.exe
(Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe
(AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Secure Connection 3.0\ksde.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
(AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Secure Connection 3.0\ksdeui.exe
(Intel® Corporation) C:\Program Files (x86)\Intel\Intel® Extreme Tuning Utility\XtuService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Integrated Clock Controller Service\ICCProxy.exe
(Microsoft Corporation) C:\Windows\System32\Taskmgr.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe

==================== Registre (Avec liste blanche) ===========================

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)

HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [638872 2018-04-12] (Microsoft Corporation)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe [323056 2015-11-04] (Intel Corporation)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [446392 2012-04-04] (Adobe Systems Incorporated)
HKLM\...\Run: [WindowsDefender] => C:\Program Files\Windows Defender\MSASCuiL.exe [638872 2018-04-12] (Microsoft Corporation)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [169744 2015-09-12] (Apple Inc.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9037832 2016-10-21] (Realtek Semiconductor)
HKLM\...\Run: [Jong] => C:\Program Files (x86)\Dioxins\Prune.exe [181248 2018-06-16] ()
HKLM\...\Run: [Molder] => C:\Program Files (x86)\telepathic\Gum.exe [181248 2018-06-16] ()
HKLM\...\Run: [Hyrum] => C:\Program Files (x86)\Who\Prune.exe [181248 2018-06-16] ()
HKLM-x32\...\Run: [Fast Boot] => C:\Program Files (x86)\MSI\Fast Boot\StartFastBoot.exe [759120 2015-04-22] ()
HKLM-x32\...\Run: [MSI Gaming Lan Manager] => C:\MSI\MSI Gaming Lan Manager\MSI_Gaming_Lan_Manager.exe [1957816 2016-08-30] (Micro-Star INT'L CO., LTD.)
HKLM-x32\...\Run: [Super Charger] => C:\Program Files (x86)\MSI\Super Charger\Super Charger.exe [1022928 2016-07-27] (MSI)
HKLM-x32\...\Run: [USB_Speed_Up] => C:\MSI\MSI USB Speed Up\USB_Speed_Up.exe [2394040 2016-08-15] (Micro-Star INT'L CO., LTD.)
HKLM-x32\...\Run: [PWRISOVM.EXE] => C:\Program Files (x86)\PowerISO\PWRISOVM.EXE [337432 2013-04-15] (Power Software Ltd)
HKLM-x32\...\Run: [SwitchBoard] => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AdobeCS6ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [1073312 2012-03-09] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [IJNetworkScanUtility] => C:\Program Files (x86)\Canon\Canon IJ Network Scan Utility\CNMNSUT.exe [206240 2010-08-24] (CANON INC.)
HKLM-x32\...\Run: [Outrider] => C:\Program Files (x86)\Dioxins\Prune.exe [181248 2018-06-16] ()
HKLM-x32\...\Run: [Pupa] => C:\Program Files (x86)\telepathic\Gum.exe [181248 2018-06-16] ()
HKLM-x32\...\Run: [Spawned] => C:\Program Files (x86)\Who\Prune.exe [181248 2018-06-16] ()
HKLM Group Policy restriction on software: %systemroot%\system32\mrt.exe <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-19\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518144 2018-04-12] (Microsoft Corporation)
HKU\S-1-5-20\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518144 2018-04-12] (Microsoft Corporation)
HKU\S-1-5-21-1787737452-2190988134-442874814-1001\...\Run: [THPanel] => C:\Program Files (x86)\Thunder Master\THPanel.exe [2030424 2016-10-26] (Palit Microsystems Ltd.)
HKU\S-1-5-21-1787737452-2190988134-442874814-1001\...\Run: [Discord] => C:\Users\I5 6600k\AppData\Local\Discord\app-0.0.301\Discord.exe [57816920 2018-04-30] (Discord Inc.)
HKU\S-1-5-21-1787737452-2190988134-442874814-1001\...\Run: [f.lux] => C:\Users\I5 6600k\AppData\Local\FluxSoftware\Flux\flux.exe [1805832 2018-06-08] (f.lux Software LLC)
HKU\S-1-5-21-1787737452-2190988134-442874814-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3193632 2018-06-14] (Valve Corporation)
HKU\S-1-5-21-1787737452-2190988134-442874814-1001\...\Run: [Spotify] => C:\Users\I5 6600k\AppData\Roaming\Spotify\Spotify.exe [21070224 2018-01-01] (Spotify Ltd)
HKU\S-1-5-21-1787737452-2190988134-442874814-1001\...\Run: [AlphaConsole] => C:\new programs\ALphaconsole 2\AlphaConsole\AlphaConsole.exe [1827840 2018-05-31] ()
HKU\S-1-5-21-1787737452-2190988134-442874814-1001\...\Run: [usumli] => rundll32.exe "C:\Users\I5 6600k\AppData\Local\pfialx.dll",usumli <==== ATTENTION
HKU\S-1-5-21-1787737452-2190988134-442874814-1001\...\Run: [Apt] => C:\Program Files (x86)\Dioxins\Prune.exe [181248 2018-06-16] ()
HKU\S-1-5-21-1787737452-2190988134-442874814-1001\...\Run: [Abyssinian] => C:\Program Files (x86)\telepathic\Gum.exe [181248 2018-06-16] ()
HKU\S-1-5-21-1787737452-2190988134-442874814-1001\...\Run: [Communicating] => C:\Program Files (x86)\Who\Prune.exe [181248 2018-06-16] ()
HKU\S-1-5-21-1787737452-2190988134-442874814-1001\...\Run: [Abilene] => C:\Program Files (x86)\Dioxins\Prune.exe [181248 2018-06-16] ()
HKU\S-1-5-21-1787737452-2190988134-442874814-1001\...\Run: [Limbic] => C:\Program Files (x86)\telepathic\Gum.exe [181248 2018-06-16] ()
HKU\S-1-5-21-1787737452-2190988134-442874814-1001\...\Run: [Anteaters] => C:\Program Files (x86)\Who\Prune.exe [181248 2018-06-16] ()
HKU\S-1-5-21-1787737452-2190988134-442874814-1001\...\Run: [aldine] => C:\Program Files (x86)\Dioxins\Prune.exe [181248 2018-06-16] ()
HKU\S-1-5-21-1787737452-2190988134-442874814-1001\...\Run: [Spotify Web Helper] => C:\Users\I5 6600k\AppData\Roaming\Spotify\SpotifyWebHelper.exe [780688 2018-01-01] (Spotify Ltd)
HKU\S-1-5-21-1787737452-2190988134-442874814-1001\...\RunOnce: [Application Restart #1] => C:\Windows\SysWOW64\muachost.exe [1692840 2015-08-18] (MSI)
HKU\S-1-5-21-1787737452-2190988134-442874814-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\WINDOWS\system32\Ribbons.scr [148480 2018-04-12] (Microsoft Corporation)
AppInit_DLLs: C:\ProgramData\Quoteex\Labis.dll => C:\ProgramData\Quoteex\Labis.dll [342528 2018-06-16] ()
AppInit_DLLs-x32: C:\ProgramData\Quoteex\Y-string.dll => C:\ProgramData\Quoteex\Y-string.dll [460800 2018-06-17] ()
Startup: C:\Users\I5 6600k\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\floridian.lnk [2018-06-16]
ShortcutTarget: floridian.lnk -> C:\Program Files (x86)\Dioxins\Prune.exe ()
Startup: C:\Users\I5 6600k\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\floridianfloridian.lnk [2018-06-16]
ShortcutTarget: floridianfloridian.lnk -> C:\Program Files (x86)\telepathic\Gum.exe ()
Startup: C:\Users\I5 6600k\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Twitch.lnk [2018-01-28]
ShortcutTarget: Twitch.lnk -> C:\Users\I5 6600k\AppData\Roaming\Twitch\Bin\Twitch.exe (Twitch Interactive, Inc.)

==================== Internet (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)

Hosts: Il y a plus d'un élément dans hosts. Voir la section Hosts de Addition.txt
Tcpip\Parameters: [DhcpNameServer] 89.2.0.1 89.2.0.2
Tcpip\..\Interfaces\{60c195cd-efe8-4e52-a586-fe41902c7cc4}: [DhcpNameServer] 89.2.0.1 89.2.0.2
Tcpip\..\Interfaces\{7528e165-9ac9-48ae-820b-088892213e43}: [DhcpNameServer] 89.2.0.1 89.2.0.2

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page =
HKU\S-1-5-21-1787737452-2190988134-442874814-1001\Software\Microsoft\Internet Explorer\Main,Search Page = hxxps://%66%65%65%64.%73%6F%6E%69%63-%73%65%61%72%63%68.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGKBRGNclVS1AC6sNoH_F-zjl_VoQxUNkEB66XfsSM0TSS_qHsdHYrHfZAzS63spH6BBG8OfmJkH10AhsBi9W_adV-xWRv8z_r-2ag1bG3mU8nTCcS6iCIW8JPRNE4WtNVTH9lv8XblxVsVF1XjsP3ooz5sxsGdISGrZL1JOxIC9kvIV9yglf7uEvnA,,&q={searchTerms}
HKU\S-1-5-21-1787737452-2190988134-442874814-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://%66%65%65%64.%68%65%6C%70%65%72%62%61%72.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGKBRGNclVS1AC6sNoH_F-zjl_VoQxUNkEB66XfsSM0TSS_qHsdHYrHfZAzS63spH6BBG8OfmJkH10AhsBi9W_adV-xWRv8zzsjI5IbuIxZ-9mGBzo1UYdn8fhSweoGP2OBktWEa8BoKN5IvPPAeNi0FFykDVZ6iTZfwovIg36-hEBqCl6JTwpsYchA,,
SearchScopes: HKLM-x32 -> DefaultScope {ielnksrch} URL =
SearchScopes: HKLM-x32 -> ielnksrch URL = hxxps://%66%65%65%64.%73%6F%6E%69%63-%73%65%61%72%63%68.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGKBRGNclVS1AC6sNoH_F-zjl_VoQxUNkEB66XfsSM0TSS_qHsdHYrHfZAzS63spH6BBG8OfmJkH10AhsBi9W_adV-xWRv8z_r-2ag1bG3mU8nTCcS6iCIW8JPRNE4WtNVTH9lv8XblxVsVF1XjsP3ooz5sxsGdISGrZL1JOxIC9kvIV9yglf7uEvnA,,&q={searchTerms}
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-1787737452-2190988134-442874814-1001 -> DefaultScope {ielnksrch} URL = hxxps://%66%65%65%64.%73%6F%6E%69%63-%73%65%61%72%63%68.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGKBRGNclVS1AC6sNoH_F-zjl_VoQxUNkEB66XfsSM0TSS_qHsdHYrHfZAzS63spH6BBG8OfmJkH10AhsBi9W_adV-xWRv8z_r-2ag1bG3mU8nTCcS6iCIW8JPRNE4WtNVTH9lv8XblxVsVF1XjsP3ooz5sxsGdISGrZL1JOxIC9kvIV9yglf7uEvnA,,&q={searchTerms}
SearchScopes: HKU\S-1-5-21-1787737452-2190988134-442874814-1001 -> {ielnksrch} URL = hxxps://%66%65%65%64.%73%6F%6E%69%63-%73%65%61%72%63%68.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGKBRGNclVS1AC6sNoH_F-zjl_VoQxUNkEB66XfsSM0TSS_qHsdHYrHfZAzS63spH6BBG8OfmJkH10AhsBi9W_adV-xWRv8z_r-2ag1bG3mU8nTCcS6iCIW8JPRNE4WtNVTH9lv8XblxVsVF1XjsP3ooz5sxsGdISGrZL1JOxIC9kvIV9yglf7uEvnA,,&q={searchTerms}

FireFox:
========
FF DefaultProfile: 1kfd3m18.default
FF ProfilePath: C:\Users\I5 6600k\AppData\Roaming\Mozilla\Firefox\Profiles\1kfd3m18.default [2018-06-17]
FF Extension: (AdBlocker Ultimate) - C:\Users\I5 6600k\AppData\Roaming\Mozilla\Firefox\Profiles\1kfd3m18.default\Extensions\[email protected] [2017-12-13]
FF Extension: (Dictionnaire français) - C:\Users\I5 6600k\AppData\Roaming\Mozilla\Firefox\Profiles\1kfd3m18.default\Extensions\[email protected] [2018-05-10] [Legacy]
FF Extension: (uBlock Origin) - C:\Users\I5 6600k\AppData\Roaming\Mozilla\Firefox\Profiles\1kfd3m18.default\Extensions\[email protected] [2018-06-14]
FF Extension: (TLS 1.3 gradual roll-out fallback-limit) - C:\Users\I5 6600k\AppData\Roaming\Mozilla\Firefox\Profiles\1kfd3m18.default\features\{31574839-181a-49c4-a1a3-a7bc242e27da}\[email protected] [2018-06-10] [Legacy]
FF HKLM\...\Firefox\Extensions: [[email protected]] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 19.0.0\FFExt\light_plugin_firefox\addon.xpi
FF Extension: (Kaspersky Protection) - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 19.0.0\FFExt\light_plugin_firefox\addon.xpi [2018-06-17]
FF HKLM-x32\...\Firefox\Extensions: [[email protected]] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 19.0.0\FFExt\light_plugin_firefox\addon.xpi
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_26_0_0_137.dll [2017-07-23] ()
FF Plugin: @wacom.com/wtPlugin,version=2.1.0.7 -> C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom)
FF Plugin: wacom.com/WacomTabletPlugin -> C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_26_0_0_137.dll [2017-07-23] ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2015-09-04] ()
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-13] ( Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2018-03-24] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2018-03-24] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-05-18] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-05-18] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VLC\VLC\npvlc.dll [2017-05-24] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.6 -> C:\Program Files (x86)\VLC\VLC\npvlc.dll [2017-05-24] (VideoLAN)
FF Plugin-x32: @wacom.com/wtPlugin,version=2.1.0.7 -> C:\Program Files (x86)\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom)
FF Plugin-x32: wacom.com/WacomTabletPlugin -> C:\Program Files (x86)\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom)
FF ExtraCheck: C:\Program Files (x86)\mozilla firefox\defaults\pref\secure_cert.js [2018-06-17] <==== ATTENTION

Chrome:
=======
CHR Session Restore: Default -> est activé.
CHR Profile: C:\Users\I5 6600k\AppData\Local\Google\Chrome\User Data\Default [2018-06-16]
CHR Extension: (Slides) - C:\Users\I5 6600k\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-19]
CHR Extension: (Docs) - C:\Users\I5 6600k\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-19]
CHR Extension: (Google Drive) - C:\Users\I5 6600k\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-12-25]
CHR Extension: (YouTube) - C:\Users\I5 6600k\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-12-25]
CHR Extension: (Adblock Plus) - C:\Users\I5 6600k\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2018-04-18]
CHR Extension: (Adblock pour Youtube™) - C:\Users\I5 6600k\AppData\Local\Google\Chrome\User Data\Default\Extensions\cmedhionkhpnakcndndgjdbohmhepckk [2017-06-15]
CHR Extension: (Sheets) - C:\Users\I5 6600k\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-19]
CHR Extension: (Google Docs hors connexion) - C:\Users\I5 6600k\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-12-25]
CHR Extension: (Kaspersky Protection) - C:\Users\I5 6600k\AppData\Local\Google\Chrome\User Data\Default\Extensions\mchjnmdbdlkdbfliogedbnpnanfjnolk [2018-01-25]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\I5 6600k\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-04-16]
CHR Extension: (Gmail) - C:\Users\I5 6600k\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-12-25]
CHR Extension: (Chrome Media Router) - C:\Users\I5 6600k\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2018-04-16]
CHR HKLM\...\Chrome\Extension: [amkpcclbbgegoafihnpgomddadjhcadd] - hxxps://chrome.google.com/webstore/detail/amkpcclbbgegoafihnpgomddadjhcadd
CHR HKLM-x32\...\Chrome\Extension: [amkpcclbbgegoafihnpgomddadjhcadd] - hxxps://chrome.google.com/webstore/detail/amkpcclbbgegoafihnpgomddadjhcadd

==================== Services (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [77104 2015-09-02] (Apple Inc.)
R2 AVP19.0.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 19.0.0\avp.exe [619640 2018-02-28] (AO Kaspersky Lab)
S3 Futuremark SystemInfo Service; C:\Program Files (x86)\Futuremark\SystemInfo\FMSISvc.exe [342456 2016-08-11] (Futuremark)
R2 GamingApp_Service; C:\Program Files (x86)\MSI\Gaming APP\GamingApp_Service.exe [45008 2016-09-29] (Micro-Star Int'l Co., Ltd.)
R2 GamingHotkey_Service; C:\Program Files (x86)\MSI\Gaming APP\GamingHotkey_Service.exe [2019792 2016-05-16] (Micro-Star INT'L CO., LTD.)
S2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe [19440 2015-11-04] (Intel Corporation)
S3 Intel® Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [987432 2016-07-26] (Intel® Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe [177440 2016-08-30] (Intel Corporation)
S3 klvssbridge64_19.0.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 19.0.0\x64\vssbridge64.exe [416560 2018-06-17] (AO Kaspersky Lab)
R2 KSDE3.0.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Secure Connection 3.0\ksde.exe [617016 2018-02-28] (AO Kaspersky Lab)
R2 MSI_ActiveX_Service; C:\Program Files (x86)\MSI\MSI OC Kit\ActiveX_Service\MSI_ActiveX_Service.exe [78776 2016-11-09] (Micro-Star INT'L CO., LTD.)
R2 MSI_Cloud_Service; C:\Program Files (x86)\MSI\M-Cloud\MSI_Cloud_Service.exe [97232 2016-02-19] (Micro-Star Int'l Co., Ltd.)
R2 MSI_FastBoot; C:\Program Files (x86)\MSI\Fast Boot\FastBootService.exe [105296 2015-06-04] (MSI)
R2 MSI_RAMDisk_Service; C:\Program Files (x86)\MSI\RAMDisk\MSI_RAMDisk_Service.exe [69584 2016-08-08] (Micro-Star Int'l Co., Ltd.)
R2 MSI_SuperCharger; C:\Program Files (x86)\MSI\Super Charger\ChargeService.exe [163280 2016-08-01] (MSI)
R2 NjNhZTFkNTN; C:\Program Files\NjNhZTFkNTN\ZGZiOWUzNWQ2Y2ZkMG.exe [835800 2018-06-14] ()
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [522688 2018-03-24] (NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [522688 2018-03-24] (NVIDIA Corporation)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [4737448 2018-04-12] (Microsoft Corporation)
S2 SetupARService; C:\Program Files (x86)\Realtek\Audio\SetupAfterRebootService.exe [10752 2016-11-20] () [Fichier non signé]
S4 ssh-agent; C:\WINDOWS\System32\OpenSSH\ssh-agent.exe [495616 2018-03-10] ()
S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [Fichier non signé]
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [4451616 2018-04-12] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [105344 2018-04-12] (Microsoft Corporation)
R2 WTabletServicePro; C:\Program Files\Tablet\Wacom\WTabletServicePro.exe [671512 2014-12-22] (Wacom Technology, Corp.)
U2 XTU3SERVICE; C:\Program Files (x86)\Intel\Intel® Extreme Tuning Utility\XtuService.exe [19192 2015-10-06] (Intel® Corporation)
R2 Njc1YTg3MzN; rundll32.exe C:\WINDOWS\fneyzupyiuxxyhzx.fneyz RfBqsyF [X]
R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
R2 NvTelemetryContainer; "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\plugins" -r

===================== Pilotes (Avec liste blanche) ======================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R0 cm_km; C:\WINDOWS\System32\DRIVERS\cm_km.sys [243400 2018-01-27] (AO Kaspersky Lab)
R3 I2cHkBurn; C:\WINDOWS\system32\drivers\I2cHkBurn.sys [41760 2015-07-27] (FINTEK Corp.)
R2 iocbios2; C:\Program Files (x86)\Intel\Intel® Extreme Tuning Utility\Drivers\IocDriver\64bit\iocbios2.sys [30224 2015-05-28] (Intel Corporation)
S3 Kinonih; C:\WINDOWS\System32\drivers\kinonih.sys [32256 2016-06-22] (Kinoni)
R0 klbackupdisk; C:\WINDOWS\System32\DRIVERS\klbackupdisk.sys [72904 2017-12-27] (AO Kaspersky Lab)
R1 klbackupflt; C:\WINDOWS\System32\DRIVERS\klbackupflt.sys [122560 2018-02-02] (AO Kaspersky Lab)
R2 kldisk; C:\WINDOWS\system32\DRIVERS\kldisk.sys [85704 2018-06-17] (AO Kaspersky Lab)
S0 klelam; C:\WINDOWS\System32\DRIVERS\klelam.sys [29208 2017-03-30] (AO Kaspersky Lab)
R3 klflt; C:\WINDOWS\system32\DRIVERS\klflt.sys [220360 2018-06-17] (AO Kaspersky Lab)
R1 klhk; C:\WINDOWS\System32\drivers\klhk.sys [1191624 2018-06-17] (AO Kaspersky Lab)
R3 klids; C:\ProgramData\Kaspersky Lab\AVP19.0.0\Bases\klids.sys [180984 2018-06-17] (AO Kaspersky Lab)
R1 KLIF; C:\WINDOWS\System32\DRIVERS\klif.sys [1112256 2018-06-17] (AO Kaspersky Lab)
R1 klim6; C:\WINDOWS\system32\DRIVERS\klim6.sys [57032 2018-02-12] (AO Kaspersky Lab)
R3 klkbdflt; C:\WINDOWS\system32\DRIVERS\klkbdflt.sys [58048 2018-01-15] (AO Kaspersky Lab)
R3 klmouflt; C:\WINDOWS\system32\DRIVERS\klmouflt.sys [83496 2017-12-11] (AO Kaspersky Lab)
R1 klpd; C:\WINDOWS\System32\DRIVERS\klpd.sys [50648 2017-05-30] (AO Kaspersky Lab)
S3 klpnpflt; C:\WINDOWS\system32\DRIVERS\klpnpflt.sys [45784 2017-11-29] (AO Kaspersky Lab)
R3 kltap; C:\WINDOWS\System32\drivers\kltap.sys [48080 2018-02-12] (The OpenVPN Project)
R0 klupd_klif_arkmon; C:\WINDOWS\System32\Drivers\klupd_klif_arkmon.sys [236488 2018-06-17] (AO Kaspersky Lab)
R3 klupd_klif_kimul; C:\WINDOWS\System32\Drivers\klupd_klif_kimul.sys [87584 2018-06-17] (AO Kaspersky Lab)
R3 klupd_klif_klark; C:\WINDOWS\System32\Drivers\klupd_klif_klark.sys [258864 2018-06-17] (AO Kaspersky Lab)
R0 klupd_klif_klbg; C:\WINDOWS\System32\Drivers\klupd_klif_klbg.sys [109248 2018-06-17] (AO Kaspersky Lab)
R3 klupd_klif_mark; C:\WINDOWS\System32\Drivers\klupd_klif_mark.sys [177848 2018-06-17] (AO Kaspersky Lab)
S4 klwfp; C:\WINDOWS\system32\DRIVERS\klwfp.sys [100552 2018-02-17] (AO Kaspersky Lab)
R1 klwtp; C:\WINDOWS\system32\DRIVERS\klwtp.sys [176328 2018-02-17] (AO Kaspersky Lab)
R1 kneps; C:\WINDOWS\system32\DRIVERS\kneps.sys [203968 2018-02-24] (AO Kaspersky Lab)
R3 NTIOLib_ACTIVE_X; C:\Program Files (x86)\MSI\MSI OC Kit\ActiveX_Service\NTIOLib_X64.sys [13776 2016-04-12] (MSI)
R3 NTIOLib_FastBoot; C:\Program Files (x86)\MSI\Fast Boot\NTIOLib_X64.sys [13368 2012-10-26] (MSI)
S3 NTIOLib_OCKit_MB; C:\Program Files (x86)\MSI\MSI OC Kit\Driver_Service\NTIOLib_X64.sys [13776 2016-09-08] (MSI)
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_c1a085cc86772d3f\nvlddmkm.sys [17544792 2018-03-25] (NVIDIA Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [31168 2018-03-24] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [59240 2018-03-24] (NVIDIA Corporation)
R3 nvvhci; C:\WINDOWS\System32\drivers\nvvhci.sys [58816 2018-03-24] (NVIDIA Corporation)
S3 pmxdrv; C:\Windows\system32\drivers\pmxdrv.sys [31152 2016-11-20] ()
R2 RAMDriv; C:\WINDOWS\system32\DRIVERS\ramdriv.sys [86936 2016-03-10] (Micro-Star Int'l Co., Ltd.)
R2 RAMDriv; C:\Windows\SysWOW64\DRIVERS\ramdriv.sys [86936 2016-03-10] (Micro-Star Int'l Co., Ltd.)
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [937728 2016-05-17] (Realtek )
S3 RTCore64; C:\Program Files (x86)\MSI Afterburner\RTCore64.sys [14024 2016-10-24] ()
S3 ssdevfactory; C:\WINDOWS\System32\drivers\ssdevfactory.sys [25088 2015-04-14] (SteelSeries ApS)
R3 tapnordvpn; C:\WINDOWS\System32\drivers\tapnordvpn.sys [84432 2017-03-27] (The OpenVPN Project)
S3 tapwindscribe0901; C:\WINDOWS\System32\drivers\tapwindscribe0901.sys [54896 2017-09-13] (The OpenVPN Project)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [44616 2018-04-12] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [331680 2018-04-12] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [44032 2018-04-12] (Microsoft Corporation)
R1 WindroyeBoxDrv; C:\Program Files\WindroyeBox\WindroyeBoxDrv.sys [252672 2015-03-03] (Windroy Corporation)
R3 XSplit_Dummy; C:\WINDOWS\system32\drivers\xspltspk.sys [26200 2015-05-26] (SplitmediaLabs Limited)
R1 YSDrv; C:\WINDOWS\system32\DRIVERS\YSDrv.sys [270608 2017-04-26] (BigNox Corporation)
R1 YWFlOTQwZmNlYTA; C:\WINDOWS\System32\drivers\YWFlOTQwZmNlYTA.sys [205952 2018-06-14] ()

==================== NetSvcs (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

==================== Un mois - Créés - fichiers et dossiers ========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2018-06-17 00:34 - 2018-06-17 00:34 - 000000218 _____ C:\Users\I5 6600k\AppData\Local\recently-used.xbel
2018-06-17 00:26 - 2018-06-17 00:26 - 000000000 ____D C:\Users\I5 6600k\AppData\Local\Ori and the Blind Forest DE
2018-06-17 00:25 - 2018-06-17 00:25 - 000001658 _____ C:\Users\Public\Desktop\Ori and The Blind Forest - Definitive Edition.lnk
2018-06-17 00:25 - 2018-06-17 00:25 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ori and The Blind Forest - Definitive Edition [GOG.com]
2018-06-17 00:11 - 2018-06-17 00:11 - 000258864 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klupd_klif_klark.sys
2018-06-17 00:11 - 2018-06-17 00:11 - 000001287 _____ C:\Users\Public\Desktop\Kaspersky Secure Connection.lnk
2018-06-17 00:11 - 2018-06-17 00:11 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Secure Connection
2018-06-17 00:10 - 2018-06-17 00:10 - 000236488 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klupd_klif_arkmon.sys
2018-06-17 00:10 - 2018-06-17 00:10 - 000177848 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klupd_klif_mark.sys
2018-06-17 00:10 - 2018-06-17 00:10 - 000109248 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klupd_klif_klbg.sys
2018-06-17 00:10 - 2018-06-17 00:10 - 000087584 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klupd_klif_kimul.sys
2018-06-17 00:10 - 2018-06-17 00:10 - 000002114 _____ C:\Users\Public\Desktop\Kaspersky Free.lnk
2018-06-17 00:10 - 2018-06-17 00:10 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Free
2018-06-17 00:07 - 2018-06-17 00:57 - 000000000 ____D C:\ProgramData\Kaspersky Lab
2018-06-17 00:07 - 2018-06-17 00:27 - 001112256 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klif.sys
2018-06-17 00:07 - 2018-06-17 00:27 - 000220360 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klflt.sys
2018-06-17 00:07 - 2018-06-17 00:26 - 001191624 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klhk.sys
2018-06-17 00:07 - 2018-06-17 00:26 - 000152360 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\klhkum.dll
2018-06-17 00:07 - 2018-06-17 00:10 - 000000000 ____D C:\Program Files (x86)\Kaspersky Lab
2018-06-17 00:07 - 2013-05-06 08:13 - 000110176 _____ (Kaspersky Lab ZAO) C:\WINDOWS\system32\klfphc.dll
2018-06-17 00:06 - 2018-06-17 00:06 - 002545720 _____ (Kaspersky Lab) C:\Users\I5 6600k\Downloads\kfa19.0.0.1088fr_14161.exe
2018-06-16 23:49 - 2018-06-16 23:56 - 000000000 ____D C:\Users\I5 6600k\Downloads\Ori and the Blind Forest Definitive Edition
2018-06-16 23:27 - 2018-06-16 23:27 - 000009267 _____ C:\Users\I5 6600k\Documents\fr sci fi.odt
2018-06-16 23:21 - 2018-06-16 23:21 - 000003680 _____ C:\WINDOWS\System32\Tasks\FastDataX Task
2018-06-16 23:21 - 2018-06-16 23:21 - 000000000 ____D C:\Users\I5 6600k\AppData\Roaming\FastDataX
2018-06-16 23:21 - 2018-06-16 23:21 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2018-06-16 23:21 - 2018-06-16 23:21 - 000000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2018-06-16 23:21 - 2018-06-16 23:21 - 000000000 ____D C:\Program Files (x86)\FastDataX
2018-06-16 23:20 - 2018-06-17 00:38 - 000000000 ____D C:\Users\I5 6600k\AppData\Roaming\Interstatnogui
2018-06-16 23:20 - 2018-06-17 00:38 - 000000000 ____D C:\ProgramData\Quoteex
2018-06-16 23:20 - 2018-06-17 00:38 - 000000000 ____D C:\ProgramData\Logic Cramble
2018-06-16 23:20 - 2018-06-17 00:36 - 000000000 ___HD C:\Program Files (x86)\herrick
2018-06-16 23:20 - 2018-06-16 23:28 - 000000414 _____ C:\WINDOWS\Tasks\Updater_Online_Application.job
2018-06-16 23:20 - 2018-06-16 23:28 - 000000382 _____ C:\WINDOWS\Tasks\Online Application V2G6.job
2018-06-16 23:20 - 2018-06-16 23:28 - 000000382 _____ C:\WINDOWS\Tasks\Online Application V2G5.job
2018-06-16 23:20 - 2018-06-16 23:28 - 000000382 _____ C:\WINDOWS\Tasks\Online Application V2G4.job
2018-06-16 23:20 - 2018-06-16 23:28 - 000000382 _____ C:\WINDOWS\Tasks\Online Application V2G3.job
2018-06-16 23:20 - 2018-06-16 23:28 - 000000382 _____ C:\WINDOWS\Tasks\Online Application V2G2.job
2018-06-16 23:20 - 2018-06-16 23:28 - 000000382 _____ C:\WINDOWS\Tasks\Online Application V2G1.job
2018-06-16 23:20 - 2018-06-16 23:26 - 000003790 _____ C:\WINDOWS\System32\Tasks\SoftUpgrade
2018-06-16 23:20 - 2018-06-16 23:26 - 000003308 _____ C:\WINDOWS\System32\Tasks\Updater_Online_Application
2018-06-16 23:20 - 2018-06-16 23:26 - 000003272 _____ C:\WINDOWS\System32\Tasks\Online Application V2G3
2018-06-16 23:20 - 2018-06-16 23:26 - 000003272 _____ C:\WINDOWS\System32\Tasks\Online Application V2G2
2018-06-16 23:20 - 2018-06-16 23:26 - 000003272 _____ C:\WINDOWS\System32\Tasks\Online Application V2G1
2018-06-16 23:20 - 2018-06-16 23:26 - 000000000 ____D C:\Program Files (x86)\SoftUpgrade
2018-06-16 23:20 - 2018-06-16 23:21 - 000016416 _____ C:\Users\I5 6600k\AppData\Local\InstallationConfiguration.xml
2018-06-16 23:20 - 2018-06-16 23:20 - 001988242 _____ C:\Users\I5 6600k\AppData\Local\RanZootam.tst
2018-06-16 23:20 - 2018-06-16 23:20 - 000929792 _____ C:\Users\I5 6600k\AppData\Local\sham.db
2018-06-16 23:20 - 2018-06-16 23:20 - 000140800 _____ C:\Users\I5 6600k\AppData\Local\installer.dat
2018-06-16 23:20 - 2018-06-16 23:20 - 000126464 _____ C:\Users\I5 6600k\AppData\Local\noah.dat
2018-06-16 23:20 - 2018-06-16 23:20 - 000070896 _____ C:\Users\I5 6600k\AppData\Local\Config.xml
2018-06-16 23:20 - 2018-06-16 23:20 - 000015606 _____ C:\WINDOWS\SysWOW64\findit.xml
2018-06-16 23:20 - 2018-06-16 23:20 - 000005568 _____ C:\Users\I5 6600k\AppData\Local\md.xml
2018-06-16 23:20 - 2018-06-16 23:20 - 000003760 _____ C:\WINDOWS\System32\Tasks\psychopathic_multilingualpsychopathic_multilingual
2018-06-16 23:20 - 2018-06-16 23:20 - 000003752 _____ C:\WINDOWS\System32\Tasks\henkin alcan procurershenkin alcan procurers
2018-06-16 23:20 - 2018-06-16 23:20 - 000003716 _____ C:\WINDOWS\System32\Tasks\cleared-genetcleared-genet
2018-06-16 23:20 - 2018-06-16 23:20 - 000003710 _____ C:\WINDOWS\System32\Tasks\timetable loobytimetable looby
2018-06-16 23:20 - 2018-06-16 23:20 - 000003702 _____ C:\WINDOWS\System32\Tasks\extrasensoryextrasensory
2018-06-16 23:20 - 2018-06-16 23:20 - 000003698 _____ C:\WINDOWS\System32\Tasks\dimer_agreedimer_agree
2018-06-16 23:20 - 2018-06-16 23:20 - 000003690 _____ C:\WINDOWS\System32\Tasks\handbookshandbooks
2018-06-16 23:20 - 2018-06-16 23:20 - 000003686 _____ C:\WINDOWS\System32\Tasks\salaamsalaam
2018-06-16 23:20 - 2018-06-16 23:20 - 000003272 _____ C:\WINDOWS\System32\Tasks\Online Application V2G6
2018-06-16 23:20 - 2018-06-16 23:20 - 000003272 _____ C:\WINDOWS\System32\Tasks\Online Application V2G5
2018-06-16 23:20 - 2018-06-16 23:20 - 000003272 _____ C:\WINDOWS\System32\Tasks\Online Application V2G4
2018-06-16 23:20 - 2018-06-16 23:20 - 000000012 _____ C:\WINDOWS\b46902618
2018-06-16 23:20 - 2018-06-16 23:20 - 000000000 ___HD C:\Program Files (x86)\Who
2018-06-16 23:20 - 2018-06-16 23:20 - 000000000 ____D C:\Users\I5 6600k\AppData\Roaming\Microleaves
2018-06-16 23:20 - 2018-06-16 23:20 - 000000000 ____D C:\ProgramData\Quoteexs
2018-06-16 23:20 - 2018-06-16 23:20 - 000000000 ____D C:\Program Files (x86)\tome
2018-06-16 23:20 - 2018-06-16 23:20 - 000000000 ____D C:\Program Files (x86)\telepathic
2018-06-16 23:20 - 2018-06-16 23:20 - 000000000 ____D C:\Program Files (x86)\Microleaves
2018-06-16 23:20 - 2018-06-16 23:20 - 000000000 ____D C:\Program Files (x86)\Lars
2018-06-16 23:20 - 2018-06-16 23:20 - 000000000 ____D C:\Program Files (x86)\Dioxins
2018-06-16 23:19 - 2018-06-16 23:29 - 000000000 ____D C:\WINDOWS\SysWOW64\SSL
2018-06-16 23:19 - 2018-06-16 23:20 - 000002163 _____ C:\Users\I5 6600k\Desktop\SaFeNetLoad.lnk
2018-06-16 23:19 - 2018-06-16 23:19 - 002086400 _____ C:\WINDOWS\fneyzupyiuxxyhzx.fneyz
2018-06-16 23:19 - 2018-06-16 23:19 - 000011776 _____ C:\Users\I5 6600k\AppData\Local\pfialx.dll
2018-06-16 23:19 - 2018-06-16 23:19 - 000000000 ____D C:\WINDOWS\System32\Tasks\Iota
2018-06-16 23:19 - 2018-06-16 23:19 - 000000000 ____D C:\Program Files\NjNhZTFkNTN
2018-06-16 23:19 - 2018-06-16 23:19 - 000000000 ____D C:\Program Files (x86)\SaFeNetLoad
2018-06-16 22:20 - 2018-06-16 22:20 - 000181248 _____ C:\WINDOWS\samira.exe
2018-06-16 22:20 - 2018-06-16 22:20 - 000181248 _____ C:\Users\I5 6600k\AppData\Local\Prune.exe
2018-06-16 22:20 - 2018-06-16 22:20 - 000181248 _____ C:\Users\I5 6600k\AppData\Local\Gum.exe
2018-06-14 17:01 - 2018-06-14 17:01 - 001844224 _____ C:\WINDOWS\NzA5ZjY4ZjU0.exe
2018-06-14 17:01 - 2018-06-14 17:01 - 000205952 _____ C:\WINDOWS\system32\Drivers\YWFlOTQwZmNlYTA.sys
2018-06-14 17:01 - 2018-06-14 17:01 - 000098213 _____ C:\WINDOWS\uninstaller.dat
2018-06-13 19:49 - 2018-06-08 21:07 - 002266520 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntSubsystems64.dll
2018-06-13 19:49 - 2018-06-08 21:07 - 000506184 _____ (Microsoft Corporation) C:\WINDOWS\system32\systemreset.exe
2018-06-13 19:49 - 2018-06-08 21:07 - 000183712 _____ (Microsoft Corporation) C:\WINDOWS\system32\mavinject.exe
2018-06-13 19:49 - 2018-06-08 21:07 - 000040864 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVClientPS.dll
2018-06-13 19:49 - 2018-06-08 21:07 - 000019872 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVTerminator.dll
2018-06-13 19:49 - 2018-06-08 21:05 - 000094112 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
2018-06-13 19:49 - 2018-06-08 21:02 - 004527680 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2018-06-13 19:49 - 2018-06-08 21:02 - 001634808 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2018-06-13 19:49 - 2018-06-08 21:02 - 000661160 _____ (Microsoft Corporation) C:\WINDOWS\system32\GenValObj.exe
2018-06-13 19:49 - 2018-06-08 21:01 - 002395056 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVCORE.DLL
2018-06-13 19:49 - 2018-06-08 21:01 - 001046944 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReAgent.dll
2018-06-13 19:49 - 2018-06-08 20:48 - 000064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\iemigplugin.dll
2018-06-13 19:49 - 2018-06-08 20:47 - 000144384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxdav.sys
2018-06-13 19:49 - 2018-06-08 20:46 - 000584192 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbonRes.dll
2018-06-13 19:49 - 2018-06-08 20:45 - 012712448 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2018-06-13 19:49 - 2018-06-08 20:45 - 004392448 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2018-06-13 19:49 - 2018-06-08 20:45 - 001560576 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdt.exe
2018-06-13 19:49 - 2018-06-08 20:45 - 000808960 _____ C:\WINDOWS\system32\MBR2GPT.EXE
2018-06-13 19:49 - 2018-06-08 20:44 - 001121792 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSWorkspace.dll
2018-06-13 19:49 - 2018-06-08 20:44 - 000625152 _____ (Microsoft Corporation) C:\WINDOWS\system32\BootMenuUX.dll
2018-06-13 19:49 - 2018-06-08 20:44 - 000340992 _____ (Microsoft Corporation) C:\WINDOWS\system32\AcGenral.dll
2018-06-13 19:49 - 2018-06-08 20:44 - 000285184 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidcredprov.dll
2018-06-13 19:49 - 2018-06-08 20:43 - 003640832 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstsc.exe
2018-06-13 19:49 - 2018-06-08 20:43 - 002922496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
2018-06-13 19:49 - 2018-06-08 20:43 - 001719808 _____ (Microsoft Corporation) C:\WINDOWS\system32\dui70.dll
2018-06-13 19:49 - 2018-06-08 20:43 - 001659904 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsPrint.dll
2018-06-13 19:49 - 2018-06-08 20:43 - 001543680 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdtctm.dll
2018-06-13 19:49 - 2018-06-08 20:43 - 001364992 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvruserservice.dll
2018-06-13 19:49 - 2018-06-08 20:43 - 000392192 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2018-06-13 19:49 - 2018-06-08 20:42 - 003999232 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbon.dll
2018-06-13 19:49 - 2018-06-08 20:42 - 003653120 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2018-06-13 19:49 - 2018-06-08 20:42 - 002084864 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2018-06-13 19:49 - 2018-06-08 20:42 - 001605632 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll
2018-06-13 19:49 - 2018-06-08 20:42 - 000800256 _____ (Microsoft Corporation) C:\WINDOWS\system32\pwcreator.exe
2018-06-13 19:49 - 2018-06-08 20:42 - 000503296 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcext.dll
2018-06-13 19:49 - 2018-06-08 20:42 - 000463872 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpshell.exe
2018-06-13 19:49 - 2018-06-08 20:42 - 000327168 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpinit.exe
2018-06-13 19:49 - 2018-06-08 20:41 - 002019840 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngine.dll
2018-06-13 19:49 - 2018-06-08 20:41 - 001180672 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2018-06-13 19:49 - 2018-06-08 20:41 - 000878080 _____ (Microsoft Corporation) C:\WINDOWS\system32\CPFilters.dll
2018-06-13 19:49 - 2018-06-08 20:41 - 000758272 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2018-06-13 19:49 - 2018-06-08 20:41 - 000577024 _____ (Microsoft Corporation) C:\WINDOWS\system32\SppExtComObj.Exe
2018-06-13 19:49 - 2018-06-08 20:41 - 000182272 _____ (Microsoft Corporation) C:\WINDOWS\system32\easwrt.dll
2018-06-13 19:49 - 2018-06-08 20:40 - 000465920 _____ (Microsoft Corporation) C:\WINDOWS\system32\DXP.dll
2018-06-13 19:49 - 2018-06-08 19:07 - 000148896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mavinject.exe
2018-06-13 19:49 - 2018-06-08 19:06 - 001539488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppVEntSubsystems32.dll
2018-06-13 19:49 - 2018-06-08 19:04 - 001454024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2018-06-13 19:49 - 2018-06-08 18:58 - 002206544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVCORE.DLL
2018-06-13 19:49 - 2018-06-08 18:58 - 000917408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ReAgent.dll
2018-06-13 19:49 - 2018-06-08 18:51 - 011903488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2018-06-13 19:49 - 2018-06-08 18:50 - 001508352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msdt.exe
2018-06-13 19:49 - 2018-06-08 18:48 - 000668672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2018-06-13 19:49 - 2018-06-08 18:48 - 000344064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2018-06-13 19:49 - 2018-06-08 18:47 - 003492864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIRibbon.dll
2018-06-13 19:49 - 2018-06-08 18:47 - 002895872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2018-06-13 19:49 - 2018-06-08 18:47 - 001462784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dui70.dll
2018-06-13 19:49 - 2018-06-08 18:47 - 001032704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XpsPrint.dll
2018-06-13 19:49 - 2018-06-08 18:47 - 000703488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CPFilters.dll
2018-06-13 19:49 - 2018-06-08 18:47 - 000231936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlidcredprov.dll
2018-06-13 19:49 - 2018-06-08 18:46 - 003444224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstsc.exe
2018-06-13 19:49 - 2018-06-08 18:46 - 002016256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2018-06-13 19:49 - 2018-06-08 18:46 - 000908288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TSWorkspace.dll
2018-06-13 19:49 - 2018-06-08 18:45 - 002401280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AcGenral.dll
2018-06-13 19:49 - 2018-06-08 18:06 - 000976384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Spectrum.exe
2018-06-13 19:49 - 2018-06-08 18:05 - 001008640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.MixedRealityCapture.dll
2018-06-13 19:49 - 2018-06-08 18:05 - 000944640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Mirage.Internal.dll
2018-06-13 19:49 - 2018-06-08 16:00 - 000868864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.MixedRealityCapture.dll
2018-06-13 19:49 - 2018-06-08 16:00 - 000658432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Mirage.Internal.dll
2018-06-13 19:49 - 2018-06-08 12:38 - 005821544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10warp.dll
2018-06-13 19:49 - 2018-06-08 12:37 - 002417840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d11.dll
2018-06-13 19:49 - 2018-06-08 12:35 - 001613200 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3D12.dll
2018-06-13 19:49 - 2018-06-08 12:35 - 000613144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxgi.dll
2018-06-13 19:49 - 2018-06-08 12:34 - 001299056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3D12.dll
2018-06-13 19:49 - 2018-06-08 12:34 - 000748512 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll
2018-06-13 19:49 - 2018-06-08 12:31 - 007900984 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10warp.dll
2018-06-13 19:49 - 2018-06-08 12:31 - 003180176 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll
2018-06-13 19:49 - 2018-06-08 12:31 - 000029600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\uefi.sys
2018-06-13 19:49 - 2018-06-08 12:30 - 000705440 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdmp.sys
2018-06-13 19:49 - 2018-06-08 11:34 - 001140576 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2018-06-13 19:49 - 2018-06-08 11:34 - 000983016 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2018-06-13 19:49 - 2018-06-08 11:33 - 001213368 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipUp.exe
2018-06-13 19:49 - 2018-06-08 11:33 - 001034632 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe
2018-06-13 19:49 - 2018-06-08 11:33 - 000272296 _____ (Microsoft Corporation) C:\WINDOWS\system32\SgrmEnclave.dll
2018-06-13 19:49 - 2018-06-08 11:33 - 000269224 _____ (Microsoft Corporation) C:\WINDOWS\system32\SgrmEnclave_secure.dll
2018-06-13 19:49 - 2018-06-08 11:31 - 001174432 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2018-06-13 19:49 - 2018-06-08 11:31 - 001012640 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2018-06-13 19:49 - 2018-06-08 11:31 - 000226720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Ucx01000.sys
2018-06-13 19:49 - 2018-06-08 11:30 - 009148320 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2018-06-13 19:49 - 2018-06-08 11:30 - 003296896 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2018-06-13 19:49 - 2018-06-08 11:30 - 001798552 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
2018-06-13 19:49 - 2018-06-08 11:30 - 001363632 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinTypes.dll
2018-06-13 19:49 - 2018-06-08 11:30 - 001063328 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2018-06-13 19:49 - 2018-06-08 11:30 - 001017080 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2adec.dll
2018-06-13 19:49 - 2018-06-08 11:30 - 000723360 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimgapi.dll
2018-06-13 19:49 - 2018-06-08 11:30 - 000722808 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2018-06-13 19:49 - 2018-06-08 11:30 - 000709824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2018-06-13 19:49 - 2018-06-08 11:30 - 000567184 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcblaunch.exe
2018-06-13 19:49 - 2018-06-08 11:30 - 000565152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBHUB3.SYS
2018-06-13 19:49 - 2018-06-08 11:30 - 000527264 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimserv.exe
2018-06-13 19:49 - 2018-06-08 11:30 - 000491328 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll
2018-06-13 19:49 - 2018-06-08 11:30 - 000194456 _____ (Microsoft Corporation) C:\WINDOWS\system32\skci.dll
2018-06-13 19:49 - 2018-06-08 11:30 - 000170912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2018-06-13 19:49 - 2018-06-08 11:30 - 000137568 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcrypt.dll
2018-06-13 19:49 - 2018-06-08 11:30 - 000134584 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.dll
2018-06-13 19:49 - 2018-06-08 11:29 - 007520000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2018-06-13 19:49 - 2018-06-08 11:29 - 006817384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2018-06-13 19:49 - 2018-06-08 11:29 - 004970360 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepository.dll
2018-06-13 19:49 - 2018-06-08 11:29 - 004403280 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2018-06-13 19:49 - 2018-06-08 11:29 - 003283408 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreUIComponents.dll
2018-06-13 19:49 - 2018-06-08 11:29 - 002836384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2018-06-13 19:49 - 2018-06-08 11:29 - 002753048 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2018-06-13 19:49 - 2018-06-08 11:29 - 002590400 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVDECOD.DLL
2018-06-13 19:49 - 2018-06-08 11:29 - 002570712 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2018-06-13 19:49 - 2018-06-08 11:29 - 002564984 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2018-06-13 19:49 - 2018-06-08 11:29 - 002546592 _____ (Microsoft Corporation) C:\WINDOWS\system32\UpdateAgent.dll
2018-06-13 19:49 - 2018-06-08 11:29 - 002462272 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2018-06-13 19:49 - 2018-06-08 11:29 - 002422688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2018-06-13 19:49 - 2018-06-08 11:29 - 002371392 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2018-06-13 19:49 - 2018-06-08 11:29 - 001946328 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2018-06-13 19:49 - 2018-06-08 11:29 - 001934400 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2018-06-13 19:49 - 2018-06-08 11:29 - 001921952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\refs.sys
2018-06-13 19:49 - 2018-06-08 11:29 - 001792808 _____ (Microsoft Corporation) C:\WINDOWS\system32\propsys.dll
2018-06-13 19:49 - 2018-06-08 11:29 - 001784584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfasfsrcsnk.dll
2018-06-13 19:49 - 2018-06-08 11:29 - 001611592 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetsrc.dll
2018-06-13 19:49 - 2018-06-08 11:29 - 001457136 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2018-06-13 19:49 - 2018-06-08 11:29 - 001364184 _____ (Microsoft Corporation) C:\WINDOWS\system32\webservices.dll
2018-06-13 19:49 - 2018-06-08 11:29 - 001288816 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2018-06-13 19:49 - 2018-06-08 11:29 - 001258288 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2018-06-13 19:49 - 2018-06-08 11:29 - 001209800 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2018-06-13 19:49 - 2018-06-08 11:29 - 001190152 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll
2018-06-13 19:49 - 2018-06-08 11:29 - 001150416 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVP9DEC.dll
2018-06-13 19:49 - 2018-06-08 11:29 - 001148808 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2018-06-13 19:49 - 2018-06-08 11:29 - 001112608 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfds.dll
2018-06-13 19:49 - 2018-06-08 11:29 - 001097648 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvproc.dll
2018-06-13 19:49 - 2018-06-08 11:29 - 001026976 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\http.sys
2018-06-13 19:49 - 2018-06-08 11:29 - 000945568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\refsv1.sys
2018-06-13 19:49 - 2018-06-08 11:29 - 000885880 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2018-06-13 19:49 - 2018-06-08 11:29 - 000792992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2018-06-13 19:49 - 2018-06-08 11:29 - 000678840 _____ (Microsoft Corporation) C:\WINDOWS\system32\SHCore.dll
2018-06-13 19:49 - 2018-06-08 11:29 - 000659096 _____ (Microsoft Corporation) C:\WINDOWS\system32\StateRepository.Core.dll
2018-06-13 19:49 - 2018-06-08 11:29 - 000594128 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe
2018-06-13 19:49 - 2018-06-08 11:29 - 000416144 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSAudDecMFT.dll
2018-06-13 19:49 - 2018-06-08 11:29 - 000413824 _____ (Microsoft Corporation) C:\WINDOWS\system32\AUDIOKSE.dll
2018-06-13 19:49 - 2018-06-08 11:29 - 000413088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2018-06-13 19:49 - 2018-06-08 11:29 - 000375712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msrpc.sys
2018-06-13 19:49 - 2018-06-08 11:29 - 000313592 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsensorgroup.dll
2018-06-13 19:49 - 2018-06-08 11:29 - 000266656 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2018-06-13 19:49 - 2018-06-08 11:29 - 000260896 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2018-06-13 19:49 - 2018-06-08 11:29 - 000164768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wfplwfs.sys
2018-06-13 19:49 - 2018-06-08 11:29 - 000158720 _____ (Microsoft Corporation) C:\WINDOWS\system32\vertdll.dll
2018-06-13 19:49 - 2018-06-08 11:29 - 000084288 _____ (Microsoft Corporation) C:\WINDOWS\system32\LanguageOverlayUtil.dll
2018-06-13 19:49 - 2018-06-08 11:29 - 000057960 _____ (Microsoft Corporation) C:\WINDOWS\system32\kernel.appcore.dll
2018-06-13 19:49 - 2018-06-08 11:13 - 025846784 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2018-06-13 19:49 - 2018-06-08 11:12 - 000861616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2adec.dll
2018-06-13 19:49 - 2018-06-08 11:12 - 000786176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll
2018-06-13 19:49 - 2018-06-08 11:11 - 001461744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll
2018-06-13 19:49 - 2018-06-08 11:11 - 000550616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf.dll
2018-06-13 19:49 - 2018-06-08 11:10 - 002479272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2018-06-13 19:49 - 2018-06-08 11:10 - 002331584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2vdec.dll
2018-06-13 19:49 - 2018-06-08 11:10 - 002307336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVDECOD.DLL
2018-06-13 19:49 - 2018-06-08 11:10 - 001988072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll
2018-06-13 19:49 - 2018-06-08 11:10 - 001397200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVP9DEC.dll
2018-06-13 19:49 - 2018-06-08 11:10 - 001011992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2018-06-13 19:49 - 2018-06-08 11:10 - 000880152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinTypes.dll
2018-06-13 19:49 - 2018-06-08 11:10 - 000457152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSAudDecMFT.dll
2018-06-13 19:49 - 2018-06-08 11:10 - 000097176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcrypt.dll
2018-06-13 19:49 - 2018-06-08 11:09 - 006569960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2018-06-13 19:49 - 2018-06-08 11:09 - 006527064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2018-06-13 19:49 - 2018-06-08 11:09 - 004788512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2018-06-13 19:49 - 2018-06-08 11:09 - 004469832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepository.dll
2018-06-13 19:49 - 2018-06-08 11:09 - 002535552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
2018-06-13 19:49 - 2018-06-08 11:09 - 002486992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreUIComponents.dll
2018-06-13 19:49 - 2018-06-08 11:09 - 002242216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2018-06-13 19:49 - 2018-06-08 11:09 - 001980872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2018-06-13 19:49 - 2018-06-08 11:09 - 001805776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll
2018-06-13 19:49 - 2018-06-08 11:09 - 001709720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetsrc.dll
2018-06-13 19:49 - 2018-06-08 11:09 - 001620880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2018-06-13 19:49 - 2018-06-08 11:09 - 001584128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\propsys.dll
2018-06-13 19:49 - 2018-06-08 11:09 - 001380200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfasfsrcsnk.dll
2018-06-13 19:49 - 2018-06-08 11:09 - 001129648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvproc.dll
2018-06-13 19:49 - 2018-06-08 11:09 - 001077504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webservices.dll
2018-06-13 19:49 - 2018-06-08 11:09 - 001020168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll
2018-06-13 19:49 - 2018-06-08 11:09 - 000988136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2018-06-13 19:49 - 2018-06-08 11:09 - 000770160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfds.dll
2018-06-13 19:49 - 2018-06-08 11:09 - 000607648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wimgapi.dll
2018-06-13 19:49 - 2018-06-08 11:09 - 000568720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryPS.dll
2018-06-13 19:49 - 2018-06-08 11:09 - 000567144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll
2018-06-13 19:49 - 2018-06-08 11:09 - 000553248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SHCore.dll
2018-06-13 19:49 - 2018-06-08 11:09 - 000356960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcryptprimitives.dll
2018-06-13 19:49 - 2018-06-08 11:09 - 000064648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LanguageOverlayUtil.dll
2018-06-13 19:49 - 2018-06-08 11:09 - 000050208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kernel.appcore.dll
2018-06-13 19:49 - 2018-06-08 11:04 - 004706816 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdp.dll
2018-06-13 19:49 - 2018-06-08 11:03 - 022005760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2018-06-13 19:49 - 2018-06-08 11:03 - 000906752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Globalization.PhoneNumberFormatting.dll
2018-06-13 19:49 - 2018-06-08 11:03 - 000185344 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallServiceTasks.dll
2018-06-13 19:49 - 2018-06-08 11:03 - 000038400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryCore.dll
2018-06-13 19:49 - 2018-06-08 11:03 - 000032256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mskssrv.sys
2018-06-13 19:49 - 2018-06-08 11:02 - 022713856 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2018-06-13 19:49 - 2018-06-08 11:02 - 000096768 _____ (Microsoft Corporation) C:\WINDOWS\system32\usoapi.dll
2018-06-13 19:49 - 2018-06-08 11:02 - 000059904 _____ (Microsoft Corporation) C:\WINDOWS\system32\edpnotify.exe
2018-06-13 19:49 - 2018-06-08 11:02 - 000035840 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBrokerCookies.exe
2018-06-13 19:49 - 2018-06-08 11:01 - 004563456 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2018-06-13 19:49 - 2018-06-08 11:01 - 002961408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdp.dll
2018-06-13 19:49 - 2018-06-08 11:01 - 000342528 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserexport.exe
2018-06-13 19:49 - 2018-06-08 11:01 - 000295424 _____ (Microsoft Corporation) C:\WINDOWS\system32\FSClient.dll
2018-06-13 19:49 - 2018-06-08 11:01 - 000294912 _____ (Microsoft Corporation) C:\WINDOWS\system32\TDLMigration.dll
2018-06-13 19:49 - 2018-06-08 11:01 - 000209408 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXApplicabilityBlob.dll
2018-06-13 19:49 - 2018-06-08 11:01 - 000182272 _____ (Microsoft Corporation) C:\WINDOWS\system32\BitLockerCsp.dll
2018-06-13 19:49 - 2018-06-08 11:01 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\system32\tbauth.dll
2018-06-13 19:49 - 2018-06-08 11:01 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidparse.sys
2018-06-13 19:49 - 2018-06-08 11:00 - 019404288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2018-06-13 19:49 - 2018-06-08 11:00 - 004372992 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeContent.dll
2018-06-13 19:49 - 2018-06-08 11:00 - 003320320 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2018-06-13 19:49 - 2018-06-08 11:00 - 001285120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Maps.dll
2018-06-13 19:49 - 2018-06-08 11:00 - 000329216 _____ (Microsoft Corporation) C:\WINDOWS\system32\credprovs.dll
2018-06-13 19:49 - 2018-06-08 11:00 - 000275456 _____ (Microsoft Corporation) C:\WINDOWS\system32\SIHClient.exe
2018-06-13 19:49 - 2018-06-08 11:00 - 000149504 _____ (Microsoft Corporation) C:\WINDOWS\system32\dssvc.dll
2018-06-13 19:49 - 2018-06-08 11:00 - 000100864 _____ (Microsoft Corporation) C:\WINDOWS\system32\CapabilityAccessManagerClient.dll
2018-06-13 19:49 - 2018-06-08 11:00 - 000075776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mpsdrv.sys
2018-06-13 19:49 - 2018-06-08 10:59 - 006032384 _____ (Microsoft Corporation) C:\WINDOWS\system32\d2d1.dll
2018-06-13 19:49 - 2018-06-08 10:59 - 004867072 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2018-06-13 19:49 - 2018-06-08 10:59 - 003392512 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2018-06-13 19:49 - 2018-06-08 10:59 - 001767936 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2018-06-13 19:49 - 2018-06-08 10:59 - 001318400 _____ (Microsoft Corporation) C:\WINDOWS\system32\ISM.dll
2018-06-13 19:49 - 2018-06-08 10:59 - 000983040 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbiosrvc.dll
2018-06-13 19:49 - 2018-06-08 10:59 - 000673792 _____ (Microsoft Corporation) C:\WINDOWS\system32\FrameServer.dll
2018-06-13 19:49 - 2018-06-08 10:59 - 000564736 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll
2018-06-13 19:49 - 2018-06-08 10:59 - 000456704 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDEServer.exe
2018-06-13 19:49 - 2018-06-08 10:59 - 000177152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryUpgrade.dll
2018-06-13 19:49 - 2018-06-08 10:59 - 000174080 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhosdeployment.dll
2018-06-13 19:49 - 2018-06-08 10:58 - 007581696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2018-06-13 19:49 - 2018-06-08 10:58 - 003712512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2018-06-13 19:49 - 2018-06-08 10:58 - 001676800 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreShell.dll
2018-06-13 19:49 - 2018-06-08 10:58 - 000898560 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll
2018-06-13 19:49 - 2018-06-08 10:58 - 000894464 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll
2018-06-13 19:49 - 2018-06-08 10:58 - 000813568 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll
2018-06-13 19:49 - 2018-06-08 10:58 - 000781824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdiWiFi.sys
2018-06-13 19:49 - 2018-06-08 10:58 - 000266752 _____ (Microsoft Corporation) C:\WINDOWS\system32\CapabilityAccessManager.dll
2018-06-13 19:49 - 2018-06-08 10:58 - 000239104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FSClient.dll
2018-06-13 19:49 - 2018-06-08 10:58 - 000029184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBrokerCookies.exe
2018-06-13 19:49 - 2018-06-08 10:57 - 003348992 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll
2018-06-13 19:49 - 2018-06-08 10:57 - 002172416 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2018-06-13 19:49 - 2018-06-08 10:57 - 001708544 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSPhotography.dll
2018-06-13 19:49 - 2018-06-08 10:57 - 001485312 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallService.dll
2018-06-13 19:49 - 2018-06-08 10:57 - 000483328 _____ (Microsoft Corporation) C:\WINDOWS\system32\RTMediaFrame.dll
2018-06-13 19:49 - 2018-06-08 10:57 - 000401920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ks.sys
2018-06-13 19:49 - 2018-06-08 10:57 - 000310272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wincorlib.dll
2018-06-13 19:49 - 2018-06-08 10:57 - 000150016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryUpgrade.dll
2018-06-13 19:49 - 2018-06-08 10:57 - 000038400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tbauth.dll
2018-06-13 19:49 - 2018-06-08 10:56 - 005780992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2018-06-13 19:49 - 2018-06-08 10:56 - 005307392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll
2018-06-13 19:49 - 2018-06-08 10:56 - 004336128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2018-06-13 19:49 - 2018-06-08 10:56 - 003293696 _____ (Microsoft Corporation) C:\WINDOWS\system32\esent.dll
2018-06-13 19:49 - 2018-06-08 10:56 - 002902016 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2018-06-13 19:49 - 2018-06-08 10:56 - 002900480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2018-06-13 19:49 - 2018-06-08 10:56 - 002364928 _____ (Microsoft Corporation) C:\WINDOWS\system32\OpcServices.dll
2018-06-13 19:49 - 2018-06-08 10:56 - 001804288 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2018-06-13 19:49 - 2018-06-08 10:56 - 001550848 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2018-06-13 19:49 - 2018-06-08 10:56 - 001395200 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2018-06-13 19:49 - 2018-06-08 10:56 - 001361408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSPhotography.dll
2018-06-13 19:49 - 2018-06-08 10:56 - 000916480 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2018-06-13 19:49 - 2018-06-08 10:56 - 000908800 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSMPEG2ENC.DLL
2018-06-13 19:49 - 2018-06-08 10:56 - 000871424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.BackgroundMediaPlayback.dll
2018-06-13 19:49 - 2018-06-08 10:56 - 000869376 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Playback.BackgroundMediaPlayer.dll
2018-06-13 19:49 - 2018-06-08 10:56 - 000858112 _____ (Microsoft Corporation) C:\WINDOWS\system32\FlightSettings.dll
2018-06-13 19:49 - 2018-06-08 10:56 - 000715776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.dll
2018-06-13 19:49 - 2018-06-08 10:56 - 000684544 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2018-06-13 19:49 - 2018-06-08 10:56 - 000615424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EdgeManager.dll
2018-06-13 19:49 - 2018-06-08 10:56 - 000466432 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2018-06-13 19:49 - 2018-06-08 10:56 - 000389632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll
2018-06-13 19:49 - 2018-06-08 10:56 - 000331264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgeIso.dll
2018-06-13 19:49 - 2018-06-08 10:56 - 000264704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\credprovs.dll
2018-06-13 19:49 - 2018-06-08 10:55 - 003441152 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2018-06-13 19:49 - 2018-06-08 10:55 - 002248192 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidsvc.dll
2018-06-13 19:49 - 2018-06-08 10:55 - 002236928 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2018-06-13 19:49 - 2018-06-08 10:55 - 002061824 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll
2018-06-13 19:49 - 2018-06-08 10:55 - 001854976 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtsvc.dll
2018-06-13 19:49 - 2018-06-08 10:55 - 001371648 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
2018-06-13 19:49 - 2018-06-08 10:55 - 001242112 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmkvsrcsnk.dll
2018-06-13 19:49 - 2018-06-08 10:55 - 001192448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.Maps.dll
2018-06-13 19:49 - 2018-06-08 10:55 - 001171968 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll
2018-06-13 19:49 - 2018-06-08 10:55 - 001160192 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcss.dll
2018-06-13 19:49 - 2018-06-08 10:55 - 001070080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Streaming.dll
2018-06-13 19:49 - 2018-06-08 10:55 - 001033728 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2018-06-13 19:49 - 2018-06-08 10:55 - 000932352 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll
2018-06-13 19:49 - 2018-06-08 10:55 - 000849408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Playback.MediaPlayer.dll
2018-06-13 19:49 - 2018-06-08 10:55 - 000778752 _____ (Microsoft Corporation) C:\WINDOWS\system32\BFE.DLL
2018-06-13 19:49 - 2018-06-08 10:55 - 000776192 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2018-06-13 19:49 - 2018-06-08 10:55 - 000667648 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppReadiness.dll
2018-06-13 19:49 - 2018-06-08 10:55 - 000652800 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll
2018-06-13 19:49 - 2018-06-08 10:55 - 000630784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Playback.MediaPlayer.dll
2018-06-13 19:49 - 2018-06-08 10:55 - 000578560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll
2018-06-13 19:49 - 2018-06-08 10:55 - 000401920 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascustom.dll
2018-06-13 19:49 - 2018-06-08 10:54 - 003016192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2018-06-13 19:49 - 2018-06-08 10:54 - 002789376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msftedit.dll
2018-06-13 19:49 - 2018-06-08 10:54 - 001627136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2018-06-13 19:49 - 2018-06-08 10:54 - 001586176 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2018-06-13 19:49 - 2018-06-08 10:54 - 001348096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OpcServices.dll
2018-06-13 19:49 - 2018-06-08 10:54 - 001128448 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApiPublic.dll
2018-06-13 19:49 - 2018-06-08 10:54 - 000999936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll
2018-06-13 19:49 - 2018-06-08 10:54 - 000950272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncCore.dll
2018-06-13 19:49 - 2018-06-08 10:54 - 000857088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSMPEG2ENC.DLL
2018-06-13 19:49 - 2018-06-08 10:54 - 000842240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmkvsrcsnk.dll
2018-06-13 19:49 - 2018-06-08 10:54 - 000729088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FlightSettings.dll
2018-06-13 19:49 - 2018-06-08 10:54 - 000646656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Playback.BackgroundMediaPlayer.dll
2018-06-13 19:49 - 2018-06-08 10:54 - 000619520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WpcWebFilter.dll
2018-06-13 19:49 - 2018-06-08 10:54 - 000593408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Web.dll
2018-06-13 19:49 - 2018-06-08 10:54 - 000505344 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgeIso.dll
2018-06-13 19:49 - 2018-06-08 10:54 - 000375808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RTMediaFrame.dll
2018-06-13 19:49 - 2018-06-08 10:54 - 000251904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msIso.dll
2018-06-13 19:49 - 2018-06-08 10:54 - 000208384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSAC3ENC.DLL
2018-06-13 19:49 - 2018-06-08 10:53 - 001675264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll
2018-06-13 19:49 - 2018-06-08 10:53 - 001466368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2018-06-13 19:49 - 2018-06-08 10:53 - 001108992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallService.dll
2018-06-13 19:49 - 2018-06-08 10:53 - 000873472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Streaming.dll
2018-06-13 19:49 - 2018-06-08 10:53 - 000677888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Web.Core.dll
2018-06-13 19:49 - 2018-06-08 10:53 - 000669696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2018-06-13 19:49 - 2018-06-08 10:53 - 000648192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.BackgroundMediaPlayback.dll
2018-06-13 19:49 - 2018-06-08 10:53 - 000528384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActivationManager.dll
2018-06-13 19:49 - 2018-06-08 09:41 - 000001310 _____ C:\WINDOWS\system32\tcbres.wim
2018-06-13 19:49 - 2018-06-06 20:57 - 003733320 _____ C:\WINDOWS\system32\Windows.Mirage.dll
2018-06-13 19:49 - 2018-06-06 06:20 - 002841312 _____ C:\WINDOWS\SysWOW64\Windows.Mirage.dll
2018-06-13 19:49 - 2018-06-02 01:24 - 000713376 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVideoDSP.dll
2018-06-13 19:49 - 2018-06-02 00:54 - 001825792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.CloudStore.dll
2018-06-13 19:49 - 2018-05-25 05:24 - 000340480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msexcl40.dll
2018-06-13 19:49 - 2018-05-20 21:45 - 000308408 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2018-06-13 19:49 - 2018-05-20 21:43 - 021389360 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2018-06-13 19:49 - 2018-05-20 21:42 - 001649760 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d9.dll
2018-06-13 19:49 - 2018-05-20 21:42 - 000759192 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicensingWinRT.dll
2018-06-13 19:49 - 2018-05-20 21:26 - 000486912 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasplap.dll
2018-06-13 19:49 - 2018-05-20 21:23 - 004070400 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2018-06-13 19:49 - 2018-05-20 21:23 - 000947712 _____ (Microsoft Corporation) C:\WINDOWS\system32\mmsys.cpl
2018-06-13 19:49 - 2018-05-20 21:23 - 000899072 _____ (Microsoft Corporation) C:\WINDOWS\system32\uDWM.dll
2018-06-13 19:49 - 2018-05-20 21:22 - 001665024 _____ (Microsoft Corporation) C:\WINDOWS\system32\comsvcs.dll
2018-06-13 19:49 - 2018-05-20 21:22 - 001292288 _____ (Microsoft Corporation) C:\WINDOWS\system32\GamePanel.exe
2018-06-13 19:49 - 2018-05-20 21:22 - 000941056 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasdlg.dll
2018-06-13 19:49 - 2018-05-20 21:22 - 000804352 _____ (Microsoft Corporation) C:\WINDOWS\system32\SndVolSSO.dll
2018-06-13 19:49 - 2018-05-20 20:20 - 000022936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hvsicontainerservice.dll
2018-06-13 19:49 - 2018-05-20 20:15 - 000653208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicensingWinRT.dll
2018-06-13 19:49 - 2018-05-20 20:14 - 020383712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2018-06-13 19:49 - 2018-05-20 20:14 - 001490144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d9.dll
2018-06-13 19:49 - 2018-05-20 20:02 - 000461312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasplap.dll
2018-06-13 19:49 - 2018-05-20 20:00 - 000864768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mmsys.cpl
2018-06-13 19:49 - 2018-05-20 19:59 - 000863232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasdlg.dll
2018-06-13 19:49 - 2018-05-20 19:59 - 000747520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SndVolSSO.dll
2018-06-13 19:49 - 2018-05-20 18:59 - 023862784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Hydrogen.dll
2018-06-13 19:49 - 2018-05-20 18:45 - 001271296 _____ (Microsoft Corporation) C:\WINDOWS\system32\HoloSI.PCShell.dll
2018-06-13 19:49 - 2018-05-20 18:39 - 000788480 _____ (Microsoft Corporation) C:\WINDOWS\system32\DHolographicDisplay.dll
2018-06-13 19:49 - 2018-05-20 18:35 - 000677376 _____ (Microsoft Corporation) C:\WINDOWS\system32\HeadTrackerStorage.dll
2018-06-13 19:49 - 2018-05-20 18:34 - 000238592 _____ (Microsoft Corporation) C:\WINDOWS\system32\HoloShellRuntime.dll
2018-06-13 19:49 - 2018-05-20 16:54 - 000184320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\HoloShellRuntime.dll
2018-06-13 19:49 - 2018-05-20 14:33 - 000105368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\stornvme.sys
2018-06-13 19:49 - 2018-05-20 13:53 - 002178136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2018-06-13 19:49 - 2018-05-20 13:53 - 001947808 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2018-06-13 19:49 - 2018-05-20 13:53 - 001017088 _____ (Microsoft Corporation) C:\WINDOWS\system32\DolbyDecMFT.dll
2018-06-13 19:49 - 2018-05-20 13:53 - 001012408 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfreadwrite.dll
2018-06-13 19:49 - 2018-05-20 13:53 - 000131232 _____ (Microsoft Corporation) C:\WINDOWS\system32\rmclient.dll
2018-06-13 19:49 - 2018-05-20 13:53 - 000088472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\crashdmp.sys
2018-06-13 19:49 - 2018-05-20 13:52 - 007436632 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2018-06-13 19:49 - 2018-05-20 13:52 - 000735560 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2018-06-13 19:49 - 2018-05-20 13:52 - 000347704 _____ (Microsoft Corporation) C:\WINDOWS\system32\wintrust.dll
2018-06-13 19:49 - 2018-05-20 13:52 - 000130456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hvsocket.sys
2018-06-13 19:49 - 2018-05-20 13:52 - 000089984 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompPkgSup.dll
2018-06-13 19:49 - 2018-05-20 13:34 - 016592384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2018-06-13 19:49 - 2018-05-20 13:34 - 000861096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DolbyDecMFT.dll
2018-06-13 19:49 - 2018-05-20 13:33 - 001665920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll
2018-06-13 19:49 - 2018-05-20 13:33 - 000101288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rmclient.dll
2018-06-13 19:49 - 2018-05-20 13:32 - 006044104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2018-06-13 19:49 - 2018-05-20 13:32 - 001559368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll
2018-06-13 19:49 - 2018-05-20 13:32 - 001034096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfreadwrite.dll
2018-06-13 19:49 - 2018-05-20 13:32 - 000560488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2018-06-13 19:49 - 2018-05-20 13:32 - 000286200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wintrust.dll
2018-06-13 19:49 - 2018-05-20 13:32 - 000077040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CompPkgSup.dll
2018-06-13 19:49 - 2018-05-20 13:31 - 001456640 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcDesktopMonSvc.dll
2018-06-13 19:49 - 2018-05-20 13:30 - 008188928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2018-06-13 19:49 - 2018-05-20 13:28 - 000119296 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataTimeUtil.dll
2018-06-13 19:49 - 2018-05-20 13:28 - 000111616 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppHostRegistrationVerifier.exe
2018-06-13 19:49 - 2018-05-20 13:28 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzres.dll
2018-06-13 19:49 - 2018-05-20 13:27 - 000344576 _____ (Microsoft Corporation) C:\WINDOWS\system32\RasMediaManager.dll
2018-06-13 19:49 - 2018-05-20 13:27 - 000109568 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApiSetHost.AppExecutionAlias.dll
2018-06-13 19:49 - 2018-05-20 13:26 - 003392512 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2018-06-13 19:49 - 2018-05-20 13:26 - 001307648 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVPXENC.dll
2018-06-13 19:49 - 2018-05-20 13:26 - 000356352 _____ (Microsoft Corporation) C:\WINDOWS\system32\dafWfdProvider.dll
2018-06-13 19:49 - 2018-05-20 13:26 - 000266752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srvnet.sys
2018-06-13 19:49 - 2018-05-20 13:26 - 000236032 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtutil.exe
2018-06-13 19:49 - 2018-05-20 13:26 - 000154112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2018-06-13 19:49 - 2018-05-20 13:26 - 000098816 _____ (Microsoft Corporation) C:\WINDOWS\system32\TelephonyInteractiveUser.dll
2018-06-13 19:49 - 2018-05-20 13:26 - 000033792 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSHEIF.dll
2018-06-13 19:49 - 2018-05-20 13:25 - 000835584 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneService.dll
2018-06-13 19:49 - 2018-05-20 13:25 - 000384000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Phoneutil.dll
2018-06-13 19:49 - 2018-05-20 13:24 - 000726528 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2018-06-13 19:49 - 2018-05-20 13:24 - 000625152 _____ (Microsoft Corporation) C:\WINDOWS\system32\PsmServiceExtHost.dll
2018-06-13 19:49 - 2018-05-20 13:24 - 000234496 _____ (Microsoft Corporation) C:\WINDOWS\system32\DolbyMATEnc.dll
2018-06-13 19:49 - 2018-05-20 13:23 - 013873152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2018-06-13 19:49 - 2018-05-20 13:23 - 005951488 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbgeng.dll
2018-06-13 19:49 - 2018-05-20 13:23 - 002366976 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebRuntimeManager.dll
2018-06-13 19:49 - 2018-05-20 13:23 - 000933376 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasapi32.dll
2018-06-13 19:49 - 2018-05-20 13:23 - 000847360 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2018-06-13 19:49 - 2018-05-20 13:21 - 001371136 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll
2018-06-13 19:49 - 2018-05-20 13:21 - 001303040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Vpn.dll
2018-06-13 19:49 - 2018-05-20 13:21 - 001210880 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnapps.dll
2018-06-13 19:49 - 2018-05-20 13:21 - 000960512 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
2018-06-13 19:49 - 2018-05-20 13:21 - 000783360 _____ (Microsoft Corporation) C:\WINDOWS\system32\DolbyHrtfEnc.dll
2018-06-13 19:49 - 2018-05-20 13:17 - 002699776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2018-06-13 19:49 - 2018-05-20 13:16 - 006661120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2018-06-13 19:49 - 2018-05-20 13:16 - 000094720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataTimeUtil.dll
2018-06-13 19:49 - 2018-05-20 13:16 - 000081920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ApiSetHost.AppExecutionAlias.dll
2018-06-13 19:49 - 2018-05-20 13:16 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tzres.dll
2018-06-13 19:49 - 2018-05-20 13:15 - 000142848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallServiceTasks.dll
2018-06-13 19:49 - 2018-05-20 13:15 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSHEIF.dll
2018-06-13 19:49 - 2018-05-20 13:14 - 001295360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVPXENC.dll
2018-06-13 19:49 - 2018-05-20 13:14 - 000167936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wevtutil.exe
2018-06-13 19:49 - 2018-05-20 13:13 - 004929024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbgeng.dll
2018-06-13 19:49 - 2018-05-20 13:13 - 000317440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Phoneutil.dll
2018-06-13 19:49 - 2018-05-20 13:12 - 000992768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.Vpn.dll
2018-06-13 19:49 - 2018-05-20 13:12 - 000860160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasapi32.dll
2018-06-13 19:49 - 2018-05-20 13:11 - 001036288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aadtb.dll
2018-06-13 19:49 - 2018-05-20 13:11 - 001005568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpnapps.dll
2018-06-13 19:49 - 2018-05-20 10:26 - 000018716 _____ C:\WINDOWS\system32\srms-apr.dat
2018-06-13 19:49 - 2018-05-18 19:08 - 000018716 _____ C:\WINDOWS\SysWOW64\srms-apr.dat
2018-06-06 16:10 - 2018-06-06 16:10 - 000001043 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AlphaConsole.lnk
2018-06-06 16:10 - 2018-06-06 16:10 - 000001031 _____ C:\Users\Public\Desktop\AlphaConsole.lnk
2018-06-06 15:51 - 2018-06-06 15:51 - 000000000 ____D C:\Users\I5 6600k\AppData\Local\Deployment
2018-06-06 15:00 - 2018-06-06 15:00 - 000741306 _____ (AlphaConsole ) C:\Users\I5 6600k\Downloads\AlphaConsoleSetup.exe
2018-06-02 16:04 - 2016-07-21 04:40 - 000079538 ____N C:\Users\I5 6600k\Downloads\unicode.futurab.ttf
2018-06-02 16:04 - 2016-07-21 04:40 - 000078650 ____N C:\Users\I5 6600k\Downloads\unicode.futurabb.ttf
2018-06-02 16:04 - 2016-07-21 04:40 - 000050452 ____N C:\Users\I5 6600k\Downloads\futur.ttf
2018-06-02 16:04 - 2016-07-21 04:40 - 000041644 ____N C:\Users\I5 6600k\Downloads\tt0205m_.ttf
2018-06-02 16:04 - 2016-07-21 04:40 - 000040028 ____N C:\Users\I5 6600k\Downloads\Futura Extra Black font.ttf
2018-06-02 16:04 - 2016-07-21 04:40 - 000039564 ____N C:\Users\I5 6600k\Downloads\Futura Heavy Italic font.ttf
2018-06-02 16:04 - 2016-07-21 04:40 - 000039444 ____N C:\Users\I5 6600k\Downloads\Futura Bold Italic font.ttf
2018-06-02 16:04 - 2016-07-21 04:40 - 000039444 ____N C:\Users\I5 6600k\Downloads\Futura Bold font.ttf
2018-06-02 16:04 - 2016-07-21 04:40 - 000039172 ____N C:\Users\I5 6600k\Downloads\Futura Medium Italic font.ttf
2018-06-02 16:04 - 2016-07-21 04:40 - 000038980 ____N C:\Users\I5 6600k\Downloads\Futura Heavy font.ttf
2018-06-02 16:04 - 2016-07-21 04:40 - 000038860 ____N C:\Users\I5 6600k\Downloads\Futura XBlk BT.ttf
2018-06-02 16:04 - 2016-07-21 04:40 - 000038764 ____N C:\Users\I5 6600k\Downloads\futura medium bt.ttf
2018-06-02 16:04 - 2016-07-21 04:40 - 000038672 ____N C:\Users\I5 6600k\Downloads\Futura Book Italic font.ttf
2018-06-02 16:04 - 2016-07-21 04:40 - 000038052 ____N C:\Users\I5 6600k\Downloads\Futura Light Italic font.ttf
2018-06-02 16:04 - 2016-07-21 04:40 - 000037688 ____N C:\Users\I5 6600k\Downloads\Futura Book font.ttf
2018-06-02 16:04 - 2016-07-21 04:40 - 000037432 ____N C:\Users\I5 6600k\Downloads\futura light bt.ttf
2018-06-02 16:04 - 2016-07-21 04:40 - 000036336 ____N C:\Users\I5 6600k\Downloads\futura medium condensed bt.ttf
2018-06-02 16:04 - 2016-07-21 04:40 - 000035704 ____N C:\Users\I5 6600k\Downloads\Futura Light font.ttf
2018-06-02 16:04 - 2016-07-21 04:40 - 000017072 ____N C:\Users\I5 6600k\Downloads\Futura-CondensedLight.otf
2018-06-02 16:04 - 2016-07-09 17:02 - 000000044 ____N C:\Users\I5 6600k\Downloads\sharefonts.net.txt
2018-06-02 16:03 - 2018-06-02 16:03 - 000485556 _____ C:\Users\I5 6600k\Downloads\futura.zip
2018-06-02 15:52 - 2016-02-24 00:14 - 000000211 _____ C:\Users\I5 6600k\Desktop\.gitignore
2018-06-02 15:48 - 2016-02-24 00:14 - 000000000 ____D C:\Users\I5 6600k\Downloads\FASA-Retexture-master
2018-06-02 15:47 - 2018-06-02 15:47 - 005610441 _____ C:\Users\I5 6600k\Downloads\FASA-Retexture-master.zip
2018-05-23 09:47 - 2018-06-06 15:10 - 000000000 ____D C:\Users\I5 6600k\AppData\Local\D3DSCache
2018-05-21 10:43 - 2018-05-21 10:43 - 000022474 _____ C:\Users\I5 6600k\Documents\pfp eng 8.odt
2018-05-20 18:34 - 2018-05-21 10:53 - 000204487 _____ C:\Users\I5 6600k\Documents\rgf.odt

==================== Un mois - Modifiés - fichiers et dossiers ========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2018-06-17 01:03 - 2018-04-19 19:49 - 000030993 _____ C:\Users\I5 6600k\Desktop\FRST.txt
2018-06-17 01:03 - 2018-04-19 19:49 - 000000000 ____D C:\Users\I5 6600k\Desktop\FRST-OlderVersion
2018-06-17 01:03 - 2018-04-19 19:49 - 000000000 ____D C:\FRST
2018-06-17 01:03 - 2017-02-07 11:00 - 002413056 _____ (Farbar) C:\Users\I5 6600k\Desktop\FRST64.exe
2018-06-17 01:01 - 2018-05-17 17:33 - 001770012 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2018-06-17 01:01 - 2018-04-12 18:19 - 000790824 _____ C:\WINDOWS\system32\perfh00C.dat
2018-06-17 01:01 - 2018-04-12 18:19 - 000149854 _____ C:\WINDOWS\system32\perfc00C.dat
2018-06-17 01:01 - 2018-04-12 01:36 - 000000000 ____D C:\WINDOWS\INF
2018-06-17 00:57 - 2018-01-28 12:19 - 000000000 ____D C:\Users\I5 6600k\AppData\Roaming\Twitch
2018-06-17 00:57 - 2017-10-28 14:40 - 000000000 ____D C:\Program Files (x86)\Steam
2018-06-17 00:55 - 2018-04-16 16:25 - 000000000 ____D C:\ProgramData\NVIDIA
2018-06-17 00:54 - 2018-05-17 17:36 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2018-06-17 00:54 - 2018-04-11 23:04 - 000262144 _____ C:\WINDOWS\system32\config\BBI
2018-06-17 00:49 - 2016-11-20 14:43 - 000002347 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2018-06-17 00:49 - 2016-11-20 14:43 - 000002300 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2018-06-17 00:42 - 2018-04-12 01:38 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2018-06-17 00:37 - 2018-04-16 16:08 - 000000000 ____D C:\Users\I5 6600k\Desktop\Display driver uninstall
2018-06-17 00:34 - 2018-01-01 21:17 - 000000000 ____D C:\Users\I5 6600k\AppData\Local\Spotify
2018-06-17 00:28 - 2018-01-01 21:16 - 000000000 ____D C:\Users\I5 6600k\AppData\Roaming\Spotify
2018-06-17 00:27 - 2017-12-27 10:00 - 000085704 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\kldisk.sys
2018-06-17 00:22 - 2017-09-10 20:50 - 000000000 ____D C:\Program Files (x86)\Obduction
2018-06-17 00:11 - 2018-01-20 23:49 - 000000000 ____D C:\ProgramData\Kaspersky Lab Setup Files
2018-06-17 00:11 - 2017-02-04 17:34 - 000000000 ____D C:\Program Files\Common Files\AV
2018-06-17 00:07 - 2018-04-12 01:38 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2018-06-16 23:46 - 2016-12-25 17:12 - 000000000 ____D C:\Users\I5 6600k\AppData\Roaming\deluge
2018-06-16 23:28 - 2017-01-31 19:17 - 000000000 ____D C:\Users\I5 6600k\AppData\LocalLow\Mozilla
2018-06-16 23:20 - 2018-01-01 16:19 - 000000000 ____D C:\Users\I5 6600k\AppData\Local\AdvinstAnalytics
2018-06-16 23:20 - 2017-01-31 19:16 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2018-06-16 22:17 - 2018-05-17 17:36 - 000004172 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{86B270A6-111E-48B0-8B41-1B41A1B9222D}
2018-06-16 21:20 - 2018-05-16 22:18 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2018-06-16 09:19 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\AppReadiness
2018-06-15 20:53 - 2018-04-12 01:38 - 000000000 ___HD C:\Program Files\WindowsApps
2018-06-13 22:12 - 2018-05-16 22:18 - 004930864 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2018-06-13 22:12 - 2018-04-12 18:23 - 000000000 ____D C:\WINDOWS\SysWOW64\zu-ZA
2018-06-13 22:12 - 2018-04-12 18:23 - 000000000 ____D C:\WINDOWS\SysWOW64\yo-NG
2018-06-13 22:12 - 2018-04-12 18:23 - 000000000 ____D C:\WINDOWS\SysWOW64\xh-ZA
2018-06-13 22:12 - 2018-04-12 18:23 - 000000000 ____D C:\WINDOWS\SysWOW64\wo-SN
2018-06-13 22:12 - 2018-04-12 18:23 - 000000000 ____D C:\WINDOWS\SysWOW64\uz-Latn-UZ
2018-06-13 22:12 - 2018-04-12 18:23 - 000000000 ____D C:\WINDOWS\SysWOW64\tn-ZA
2018-06-13 22:12 - 2018-04-12 18:23 - 000000000 ____D C:\WINDOWS\SysWOW64\ti-ET
2018-06-13 22:12 - 2018-04-12 18:23 - 000000000 ____D C:\WINDOWS\SysWOW64\tg-Cyrl-TJ
2018-06-13 22:12 - 2018-04-12 18:23 - 000000000 ____D C:\WINDOWS\SysWOW64\sr-Cyrl-RS
2018-06-13 22:12 - 2018-04-12 18:23 - 000000000 ____D C:\WINDOWS\SysWOW64\sr-Cyrl-BA
2018-06-13 22:12 - 2018-04-12 18:23 - 000000000 ____D C:\WINDOWS\SysWOW64\sd-Arab-PK
2018-06-13 22:12 - 2018-04-12 18:23 - 000000000 ____D C:\WINDOWS\SysWOW64\rw-RW
2018-06-13 22:12 - 2018-04-12 18:23 - 000000000 ____D C:\WINDOWS\SysWOW64\quc-Latn-GT
2018-06-13 22:12 - 2018-04-12 18:23 - 000000000 ____D C:\WINDOWS\SysWOW64\pa-Arab-PK
2018-06-13 22:12 - 2018-04-12 18:23 - 000000000 ____D C:\WINDOWS\SysWOW64\nso-ZA
2018-06-13 22:12 - 2018-04-12 18:23 - 000000000 ____D C:\WINDOWS\SysWOW64\ku-Arab-IQ
2018-06-13 22:12 - 2018-04-12 18:23 - 000000000 ____D C:\WINDOWS\SysWOW64\ig-NG
2018-06-13 22:12 - 2018-04-12 18:23 - 000000000 ____D C:\WINDOWS\SysWOW64\ha-Latn-NG
2018-06-13 22:12 - 2018-04-12 18:23 - 000000000 ____D C:\WINDOWS\SysWOW64\chr-CHER-US
2018-06-13 22:12 - 2018-04-12 18:23 - 000000000 ____D C:\WINDOWS\SysWOW64\ca-ES-valencia
2018-06-13 22:12 - 2018-04-12 18:23 - 000000000 ____D C:\WINDOWS\SysWOW64\bs-Latn-BA
2018-06-13 22:12 - 2018-04-12 18:23 - 000000000 ____D C:\WINDOWS\SysWOW64\az-Latn-AZ
2018-06-13 22:12 - 2018-04-12 18:23 - 000000000 ____D C:\WINDOWS\system32\zu-ZA
2018-06-13 22:12 - 2018-04-12 18:23 - 000000000 ____D C:\WINDOWS\system32\yo-NG
2018-06-13 22:12 - 2018-04-12 18:23 - 000000000 ____D C:\WINDOWS\system32\xh-ZA
2018-06-13 22:12 - 2018-04-12 18:23 - 000000000 ____D C:\WINDOWS\system32\wo-SN
2018-06-13 22:12 - 2018-04-12 18:23 - 000000000 ____D C:\WINDOWS\system32\uz-Latn-UZ
2018-06-13 22:12 - 2018-04-12 18:23 - 000000000 ____D C:\WINDOWS\system32\tn-ZA
2018-06-13 22:12 - 2018-04-12 18:23 - 000000000 ____D C:\WINDOWS\system32\ti-ET
2018-06-13 22:12 - 2018-04-12 18:23 - 000000000 ____D C:\WINDOWS\system32\tg-Cyrl-TJ
2018-06-13 22:12 - 2018-04-12 18:23 - 000000000 ____D C:\WINDOWS\system32\sr-Cyrl-RS
2018-06-13 22:12 - 2018-04-12 18:23 - 000000000 ____D C:\WINDOWS\system32\sr-Cyrl-BA
2018-06-13 22:12 - 2018-04-12 18:23 - 000000000 ____D C:\WINDOWS\system32\sd-Arab-PK
2018-06-13 22:12 - 2018-04-12 18:23 - 000000000 ____D C:\WINDOWS\system32\rw-RW
2018-06-13 22:12 - 2018-04-12 18:23 - 000000000 ____D C:\WINDOWS\system32\quc-Latn-GT
2018-06-13 22:12 - 2018-04-12 18:23 - 000000000 ____D C:\WINDOWS\system32\pa-Arab-PK
2018-06-13 22:12 - 2018-04-12 18:23 - 000000000 ____D C:\WINDOWS\system32\nso-ZA
2018-06-13 22:12 - 2018-04-12 18:23 - 000000000 ____D C:\WINDOWS\system32\ku-Arab-IQ
2018-06-13 22:12 - 2018-04-12 18:23 - 000000000 ____D C:\WINDOWS\system32\ig-NG
2018-06-13 22:12 - 2018-04-12 18:23 - 000000000 ____D C:\WINDOWS\system32\ha-Latn-NG
2018-06-13 22:12 - 2018-04-12 18:23 - 000000000 ____D C:\WINDOWS\system32\chr-CHER-US
2018-06-13 22:12 - 2018-04-12 18:23 - 000000000 ____D C:\WINDOWS\system32\ca-ES-valencia
2018-06-13 22:12 - 2018-04-12 18:23 - 000000000 ____D C:\WINDOWS\system32\bs-Latn-BA
2018-06-13 22:12 - 2018-04-12 18:23 - 000000000 ____D C:\WINDOWS\system32\az-Latn-AZ
2018-06-13 22:12 - 2018-04-12 01:38 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2018-06-13 22:12 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\TextInput
2018-06-13 22:12 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2018-06-13 22:12 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2018-06-13 22:12 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\SysWOW64\en-GB
2018-06-13 22:12 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2018-06-13 22:12 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2018-06-13 22:12 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2018-06-13 22:12 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\system32\setup
2018-06-13 22:12 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\system32\oobe
2018-06-13 22:12 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\system32\en-GB
2018-06-13 22:12 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\system32\appraiser
2018-06-13 22:12 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\ShellExperiences
2018-06-13 22:12 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\bcastdvr
2018-06-13 22:12 - 2018-04-12 01:38 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2018-06-13 22:12 - 2018-04-12 01:38 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2018-06-13 22:12 - 2018-04-11 23:04 - 000000000 ____D C:\WINDOWS\system32\Dism
2018-06-13 22:12 - 2017-11-18 11:19 - 000000000 ___RD C:\Users\I5 6600k\3D Objects
2018-06-13 22:12 - 2017-01-31 19:16 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2018-06-13 22:12 - 2016-11-20 14:16 - 000000000 __RHD C:\Users\Public\AccountPictures
2018-06-13 19:50 - 2018-04-12 01:30 - 000000000 ____D C:\WINDOWS\CbsTemp
2018-06-13 19:49 - 2016-12-02 22:08 - 000000000 ____D C:\WINDOWS\system32\MRT
2018-06-13 19:48 - 2017-10-11 18:55 - 133315992 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT-KB890830.exe
2018-06-13 19:48 - 2016-12-02 22:08 - 133315992 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2018-06-13 12:26 - 2017-08-28 12:23 - 000000000 ____D C:\lake's drawings
2018-06-10 10:16 - 2017-01-31 19:16 - 000001228 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2018-06-09 11:51 - 2017-04-21 12:12 - 000000000 ____D C:\Users\I5 6600k\AppData\Local\ElevatedDiagnostics
2018-06-08 20:51 - 2017-08-24 16:39 - 000002171 _____ C:\Users\I5 6600k\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\f.lux.lnk
2018-06-06 16:10 - 2017-07-21 15:35 - 000000000 ____D C:\Users\I5 6600k\AppData\Local\DLLInjector
2018-06-06 16:09 - 2017-05-18 18:55 - 000000000 ____D C:\new programs
2018-06-06 15:45 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\system32\NDF
2018-06-06 14:59 - 2017-04-18 11:37 - 000000000 ____D C:\Users\I5 6600k\AppData\Roaming\discord
2018-06-06 01:29 - 2018-04-12 01:41 - 000835056 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2018-06-06 01:29 - 2018-04-12 01:41 - 000179704 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2018-06-05 14:13 - 2018-05-16 22:21 - 000000000 ____D C:\Users\I5 6600k
2018-06-02 08:17 - 2017-11-18 11:15 - 000000000 ____D C:\Users\I5 6600k\AppData\Local\Packages
2018-05-18 04:31 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\appcompat
2018-05-18 04:28 - 2018-05-17 17:36 - 000003588 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2018-05-18 04:28 - 2018-05-17 17:36 - 000003464 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2018-05-18 04:28 - 2016-11-20 14:16 - 000000000 ____D C:\Users\I5 6600k\AppData\Local\ConnectedDevicesPlatform

==================== Fichiers à la racine de certains dossiers =======

2017-09-17 17:54 - 2017-09-17 17:54 - 000000132 _____ () C:\Users\I5 6600k\AppData\Roaming\Adobe AIFF Format CS6 Prefs
2018-06-16 23:20 - 2018-06-16 23:20 - 000070896 _____ () C:\Users\I5 6600k\AppData\Local\Config.xml
2017-02-18 18:26 - 2017-02-23 20:24 - 001307648 _____ () C:\Users\I5 6600k\AppData\Local\file__0.localstorage
2018-06-16 22:20 - 2018-06-16 22:20 - 000181248 _____ () C:\Users\I5 6600k\AppData\Local\Gum.exe
2018-06-16 23:20 - 2018-06-16 23:21 - 000016416 _____ () C:\Users\I5 6600k\AppData\Local\InstallationConfiguration.xml
2018-06-16 23:20 - 2018-06-16 23:20 - 000140800 _____ () C:\Users\I5 6600k\AppData\Local\installer.dat
2018-06-16 23:20 - 2018-06-16 23:20 - 000005568 _____ () C:\Users\I5 6600k\AppData\Local\md.xml
2018-06-16 23:20 - 2018-06-16 23:20 - 000126464 _____ () C:\Users\I5 6600k\AppData\Local\noah.dat
2018-06-16 23:19 - 2018-06-16 23:19 - 000011776 _____ () C:\Users\I5 6600k\AppData\Local\pfialx.dll
2018-06-16 22:20 - 2018-06-16 22:20 - 000181248 _____ () C:\Users\I5 6600k\AppData\Local\Prune.exe
2018-06-16 23:20 - 2018-06-16 23:20 - 001988242 _____ () C:\Users\I5 6600k\AppData\Local\RanZootam.tst
2018-06-17 00:34 - 2018-06-17 00:34 - 000000218 _____ () C:\Users\I5 6600k\AppData\Local\recently-used.xbel
2018-06-16 23:20 - 2018-06-16 23:20 - 000929792 _____ () C:\Users\I5 6600k\AppData\Local\sham.db
2018-06-16 23:20 - 2018-06-16 23:20 - 000032038 _____ () C:\Users\I5 6600k\AppData\Local\uninstall_temp.ico

==================== Bamital & volsnap ======================

(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)

C:\WINDOWS\system32\winlogon.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\wininit.exe => Le fichier est signé numériquement
C:\WINDOWS\explorer.exe => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\explorer.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\svchost.exe => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\svchost.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\services.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\User32.dll => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\User32.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\userinit.exe => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\userinit.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\rpcss.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\dnsapi.dll => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\dnsapi.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\Drivers\volsnap.sys => Le fichier est signé numériquement

LastRegBack: 2018-05-16 22:18

==================== Fin de FRST.txt ============================