Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x86) Version: 18-09-2016
Exécuté par marouane (administrateur) sur DESKTOP-OS3F0NT (19-09-2016 21:15:45)
Exécuté depuis C:\Users\marouane\Downloads\Programs
Profils chargés: marouane (Profils disponibles: marouane)
Platform: Microsoft Windows 10 Professionnel Version 1511 (X86) Langue: Français (France)
Internet Explorer Version 11 (Navigateur par défaut: Edge)
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(AVAST Software) E:\avaset\AvastSvc.exe
(Protexis Inc.) C:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe
(SafeNet, Inc) C:\Program Files\Common Files\SafeNet Sentinel\Sentinel Protection Server\WinNT\spnsrvnt.exe
(SafeNet, Inc.) C:\Program Files\Common Files\SafeNet Sentinel\Sentinel Keys Server\sntlkeyssrvr.exe
(SafeNet, Inc.) C:\Program Files\Common Files\SafeNet Sentinel\Sentinel Security Runtime\sntlsrtsrvr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe
(TeamViewer GmbH) C:\Program Files\TeamViewer\TeamViewer_Service.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
(Smadsoft) C:\Program Files\SMADAV\SMΔRTP.exe
() C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeHost.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe
(AVAST Software) E:\avaset\avastui.exe
(BitTorrent Inc.) C:\Users\marouane\AppData\Roaming\uTorrent\uTorrent.exe
(Disc Soft Ltd) C:\Program Files\DAEMON Tools Ultra\DTAgent.exe
(Disc Soft Ltd) C:\Program Files\DAEMON Tools Ultra\DiscSoftBusService.exe
(BitTorrent Inc.) C:\Users\marouane\AppData\Roaming\uTorrent\updates\3.4.8_42576\utorrentie.exe
(BitTorrent Inc.) C:\Users\marouane\AppData\Roaming\uTorrent\updates\3.4.8_42576\utorrentie.exe
(Electronic Arts) C:\Program Files\Electronic Arts\EADM\Core.exe
(Tonec Inc.) C:\Program Files\Internet Download Manager\IDMan.exe
(BitTorrent Inc.) C:\Users\marouane\AppData\Roaming\uTorrent\updates\3.4.8_42576\utorrentie.exe
(Tonec Inc.) C:\Program Files\Internet Download Manager\IEMonitor.exe
(Microsoft Corporation) C:\Windows\System32\wbem\unsecapp.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Microsoft Corporation) C:\Program Files\Windows Media Player\wmplayer.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
(Microsoft Corporation) C:\Windows\System32\browser_broker.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
==================== Registre (Avec liste blanche) ===========================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [NvBackend] => C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe [2789248 2016-02-17] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\nvspcap.dll [1571624 2016-02-17] (NVIDIA Corporation)
HKLM\...\Run: [AvastUI.exe] => E:\avaset\AvastUI.exe [9107616 2016-09-19] (AVAST Software)
HKU\S-1-5-19\...\Winlogon: [Shell] C:\Windows\Explorer.exe [4074160 2016-09-07] (Microsoft Corporation) <==== ATTENTION
HKU\S-1-5-20\...\Winlogon: [Shell] C:\Windows\Explorer.exe [4074160 2016-09-07] (Microsoft Corporation) <==== ATTENTION
HKU\S-1-5-21-1053301872-3416716514-3691607857-1001\...\Run: [uTorrent] => C:\Users\marouane\AppData\Roaming\uTorrent\uTorrent.exe [2139840 2016-09-19] (BitTorrent Inc.)
HKU\S-1-5-21-1053301872-3416716514-3691607857-1001\...\Run: [DAEMON Tools Ultra Agent] => C:\Program Files\DAEMON Tools Ultra\DTAgent.exe [3639568 2014-07-10] (Disc Soft Ltd)
HKU\S-1-5-21-1053301872-3416716514-3691607857-1001\...\Run: [Viber] => C:\Users\marouane\AppData\Local\Viber\Viber.exe [51657424 2015-11-09] ()
HKU\S-1-5-21-1053301872-3416716514-3691607857-1001\...\Run: [Skype] => C:\Program Files\Skype\Phone\Skype.exe [29538432 2016-08-17] (Skype Technologies S.A.)
HKU\S-1-5-21-1053301872-3416716514-3691607857-1001\...\Run: [Steam] => C:\Program Files\Steam\steam.exe [3077712 2016-03-31] (Valve Corporation)
HKU\S-1-5-21-1053301872-3416716514-3691607857-1001\...\Run: [EA Core] => C:\Program Files\Electronic Arts\EADM\Core.exe [3321856 2008-12-11] (Electronic Arts)
HKU\S-1-5-21-1053301872-3416716514-3691607857-1001\...\Run: [IDMan] => C:\Program Files\Internet Download Manager\IDMan.exe [3886672 2016-05-04] (Tonec Inc.)
HKU\S-1-5-21-1053301872-3416716514-3691607857-1001\...\MountPoints2: {6d5062cb-9b1f-11e5-9413-902b34436274} - "G:\Setup.exe"
HKU\S-1-5-21-1053301872-3416716514-3691607857-1001\...\MountPoints2: {8db01f02-c94b-11e5-9441-902b34436274} - "G:\Fairlight\Installer.exe"
HKU\S-1-5-21-1053301872-3416716514-3691607857-1001\...\MountPoints2: {a8558dc3-57dd-11e6-94d2-902b34436274} - "G:\Install.bat"
HKU\S-1-5-21-1053301872-3416716514-3691607857-1001\...\Winlogon: [Shell] C:\Windows\Explorer.exe [4074160 2016-09-07] (Microsoft Corporation) <==== ATTENTION
HKU\S-1-5-18\...\Winlogon: [Shell] C:\Windows\Explorer.exe [4074160 2016-09-07] (Microsoft Corporation) <==== ATTENTION
ShellIconOverlayIdentifiers: [ IDM Shell Extension] -> {CDC95B92-E27C-4745-A8C5-64A52A78855D} => C:\Program Files\Internet Download Manager\IDMShellExt.dll [2015-08-14] (Tonec Inc.)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => E:\avaset\ashShell.dll [2016-09-19] (AVAST Software)
ShellIconOverlayIdentifiers: [AutoCAD Digital Signatures Icon Overlay Handler] -> {36A21736-36C2-4C11-8ACB-D4136F2B57BD} => C:\WINDOWS\system32\AcSignIcon.dll [2006-03-05] (Autodesk)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Accélérateur de démarrage AutoCAD.lnk [2015-12-09]
ShortcutTarget: Accélérateur de démarrage AutoCAD.lnk -> C:\Program Files\Common Files\Autodesk Shared\acstart17.exe (Autodesk, Inc)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Adobe Gamma Loader.lnk [2016-08-16]
ShortcutTarget: Adobe Gamma Loader.lnk -> C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe (Adobe Systems, Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk [2016-03-22]
ShortcutTarget: McAfee Security Scan Plus.lnk -> C:\Program Files\McAfee Security Scan\3.11.292\SSScheduler.exe (McAfee, Inc.)
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 192.168.1.1
Tcpip\..\Interfaces\{72eca85c-ff6d-4389-be78-c8d852febb01}: [DhcpNameServer] 192.168.1.1 192.168.1.1
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.symantec.com/redirects/security_response/fix_homepage/index.jsp?lg=fr&pid=NIS&pvid=22.7.0.76
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxp://search.msn.com/spbasic.htm
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.symantec.com/redirects/security_response/fix_homepage/index.jsp?lg=fr&pid=NIS&pvid=22.7.0.76
HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxp://search.msn.com/spbasic.htm
HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.symantec.com/redirects/security_response/fix_homepage/index.jsp?lg=fr&pid=NIS&pvid=22.7.0.76
HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxp://search.msn.com/spbasic.htm
HKU\S-1-5-21-1053301872-3416716514-3691607857-1001\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\S-1-5-21-1053301872-3416716514-3691607857-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.symantec.com/redirects/security_response/fix_homepage/index.jsp?lg=fr&pid=NIS&pvid=22.7.0.76
HKU\S-1-5-21-1053301872-3416716514-3691607857-1001\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxp://search.msn.com/spbasic.htm
BHO: IDM integration (IDMIEHlprObj Class) -> {0055C089-8582-441B-A0BF-17B458C2A3A8} -> C:\Program Files\Internet Download Manager\IDMIECC.dll [2015-12-08] (Internet Download Manager, Tonec Inc.)
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/products/plugin/autodl/jinstall-142-windows-i586.cab
DPF: {CAFEEFAC-0014-0002-0004-ABCDEFFEDCBA} hxxp://java.sun.com/products/plugin/autodl/jinstall-142-windows-i586.cab
FireFox:
========
FF ProfilePath: C:\Users\marouane\AppData\Roaming\Mozilla\Firefox\Profiles\ubeyjb4n.default
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF32_23_0_0_162.dll [2016-09-13] ()
FF Plugin: @nvidia.com/3DVision -> C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll [2016-03-22] (NVIDIA Corporation)
FF Plugin: @nvidia.com/3DVisionStreaming -> C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2016-03-22] (NVIDIA Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-29] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-29] (Google Inc.)
FF SearchPlugin: C:\Users\marouane\AppData\Roaming\Mozilla\Firefox\Profiles\ubeyjb4n.default\searchplugins\norton-safe-search.xml [2015-12-04]
FF HKLM\...\Firefox\Extensions: [sp@avast.com] - E:\avaset\SafePrice\FF
FF Extension: (Avast SafePrice) - E:\avaset\SafePrice\FF [2016-09-19]
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - E:\avaset\WebRep\FF
FF Extension: (Avast Online Security) - E:\avaset\WebRep\FF [2016-09-19]
FF HKU\S-1-5-21-1053301872-3416716514-3691607857-1001\...\Firefox\Extensions: [mozilla_cc2@internetdownloadmanager.com] - C:\Program Files\Internet Download Manager\idmmzcc2.xpi
FF Extension: (IDM integration) - C:\Program Files\Internet Download Manager\idmmzcc2.xpi [2016-03-10]
FF HKU\S-1-5-21-1053301872-3416716514-3691607857-1001\...\Firefox\Extensions: [mozilla_cc@internetdownloadmanager.com] - C:\Users\marouane\AppData\Roaming\IDM\idmmzcc5
FF Extension: (IDM CC) - C:\Users\marouane\AppData\Roaming\IDM\idmmzcc5 [2016-09-19] [non signé]
FF HKU\S-1-5-21-1053301872-3416716514-3691607857-1001\...\SeaMonkey\Extensions: [mozilla_cc@internetdownloadmanager.com] - C:\Users\marouane\AppData\Roaming\IDM\idmmzcc5
FF HKU\S-1-5-21-1053301872-3416716514-3691607857-1001\...\SeaMonkey\Extensions: [mozilla_cc2@internetdownloadmanager.com] - C:\Program Files\Internet Download Manager\idmmzcc2.xpi
Chrome:
=======
CHR DefaultSearchURL: Default -> hxxps://nortonsafe.search.ask.com/web?q={searchTerms}&o=APN11908&prt=cr
CHR DefaultSearchKeyword: Default -> NortonSafe
CHR DefaultSuggestURL: Default -> hxxps://ss-sym.search.ask.com/ss?q={searchTerms}&li=ff
CHR Profile: C:\Users\marouane\AppData\Local\Google\Chrome\User Data\Default [2016-09-19]
CHR Extension: (Google Slides) - C:\Users\marouane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-07-18]
CHR Extension: (Google Docs) - C:\Users\marouane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-07-18]
CHR Extension: (Google Drive) - C:\Users\marouane\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-07-18]
CHR Extension: (YouTube) - C:\Users\marouane\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-07-18]
CHR Extension: (Norton Home Page for Chrome) - C:\Users\marouane\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejbdobdndcjhdmljipngpeoekdinlohe [2016-07-18]
CHR Extension: (Google Sheets) - C:\Users\marouane\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-07-18]
CHR Extension: (Google Docs hors connexion) - C:\Users\marouane\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-07-18]
CHR Extension: (IDM Integration Module) - C:\Users\marouane\AppData\Local\Google\Chrome\User Data\Default\Extensions\ngpampappnmepgilojfohadhhmbhlaek [2016-07-18]
CHR Extension: (Norton Safe) - C:\Users\marouane\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmgcfemagnogdodbambjhdcmfcpicngl [2016-09-07]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\marouane\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-07-18]
CHR Extension: (Gmail) - C:\Users\marouane\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-07-18]
CHR Extension: (Chrome Media Router) - C:\Users\marouane\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-09-18]
CHR HKLM\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files\Internet Download Manager\IDMGCExt.crx [2016-02-11]
==================== Services (Avec liste blanche) ========================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 avast! Antivirus; E:\avaset\AvastSvc.exe [197128 2016-09-19] (AVAST Software)
R3 Disc Soft Bus Service; C:\Program Files\DAEMON Tools Ultra\DiscSoftBusService.exe [887056 2014-07-10] (Disc Soft Ltd)
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [931200 2016-02-17] (NVIDIA Corporation)
S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.11.292\McCHSvc.exe [239880 2016-02-05] (McAfee, Inc.)
R2 NvNetworkService; C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe [1880960 2016-02-17] (NVIDIA Corporation)
R3 NvStreamNetworkSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe [5316480 2016-02-17] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [2169216 2016-02-17] (NVIDIA Corporation)
R2 SentinelKeysServer; C:\Program Files\Common Files\SafeNet Sentinel\Sentinel Keys Server\sntlkeyssrvr.exe [376832 2013-01-09] (SafeNet, Inc.) [Fichier non signé]
R2 SentinelProtectionServer; C:\Program Files\Common Files\SafeNet Sentinel\Sentinel Protection Server\WinNT\spnsrvnt.exe [1259872 2013-01-09] (SafeNet, Inc)
R2 SentinelSecurityRuntime; C:\Program Files\Common Files\SafeNet Sentinel\Sentinel Security Runtime\sntlsrtsrvr.exe [293216 2013-01-09] (SafeNet, Inc.)
R2 TeamViewer; C:\Program Files\TeamViewer\TeamViewer_Service.exe [7183632 2016-07-18] (TeamViewer GmbH)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [280376 2015-10-30] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23264 2016-09-07] (Microsoft Corporation)
S3 Origin Client Service; "E:\les jeux\medal of honor\Origin\OriginClientService.exe" [X]
===================== Pilotes (Avec liste blanche) ==========================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 aswHwid; C:\WINDOWS\system32\drivers\aswHwid.sys [34008 2016-09-19] (AVAST Software)
R1 aswKbd; C:\WINDOWS\system32\drivers\aswKbd.sys [35096 2016-09-19] (AVAST Software)
R2 aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [92256 2016-09-19] (AVAST Software)
R1 aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [91232 2016-09-19] (AVAST Software)
R0 aswRvrt; C:\WINDOWS\system32\Drivers\aswRvrt.sys [60424 2016-09-19] (AVAST Software)
R1 aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [735488 2016-09-19] (AVAST Software)
R1 aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [434144 2016-09-19] (AVAST Software)
R2 aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [118664 2016-09-19] (AVAST Software)
R0 aswVmm; C:\WINDOWS\system32\Drivers\aswVmm.sys [224616 2016-09-19] (AVAST Software)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [109184 2016-09-05] (Samsung Electronics Co., Ltd.)
R3 dtscsibus; C:\WINDOWS\system32\DRIVERS\dtscsibus.sys [24704 2015-12-05] (Disc Soft Ltd)
S3 GPIO; C:\WINDOWS\System32\drivers\iaiogpio.sys [22016 2015-10-30] (Intel Corporation) [Fichier non signé]
R3 MEI; C:\WINDOWS\System32\drivers\TeeDriverW8.sys [172096 2016-03-22] (Intel Corporation)
R0 MxEFUF; C:\WINDOWS\System32\drivers\MxEFUF32.sys [102728 2016-03-22] (Matrox Graphics Inc.)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [27008 2016-02-17] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad32v.sys [42128 2015-12-18] (NVIDIA Corporation)
S3 rspWhySoSlow; C:\WINDOWS\System32\DRIVERS\rspWhy32.sys [24832 2016-02-06] (Resplendence Software Projects Sp.)
R3 SmbDrvI; C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys [26792 2015-11-30] (Synaptics Incorporated)
S3 ssudserd; C:\WINDOWS\system32\DRIVERS\ssudserd.sys [184192 2014-01-22] (DEVGURU Co., LTD.(www.devguru.co.kr))
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [37400 2015-10-30] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [246104 2015-10-30] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [98648 2015-10-30] (Microsoft Corporation)
S3 WUDFWpdMtp; C:\WINDOWS\system32\DRIVERS\WUDFRd.sys [163328 2015-10-30] (Microsoft Corporation)
R2 zumbus; C:\WINDOWS\System32\drivers\zumbus.sys [41472 2016-03-22] (Microsoft Corporation)
S3 NAVENG; \??\C:\Program Files\Norton Security with Backup\NortonData\22.7.0.76\Definitions\SDSDefs\20160601.040\NAVENG.SYS [X]
S3 NAVEX15; \??\C:\Program Files\Norton Security with Backup\NortonData\22.7.0.76\Definitions\SDSDefs\20160601.040\NAVEX15.SYS [X]
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois - Créés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2016-09-19 21:15 - 2016-09-19 21:15 - 00000000 ____D C:\FRST
2016-09-19 21:03 - 2016-09-19 21:03 - 00001777 _____ C:\Users\marouane\Desktop\ZHPFix[R2].txt
2016-09-19 21:01 - 2016-09-19 21:04 - 00001939 _____ C:\Users\marouane\Desktop\ZHPFixReport.txt
2016-09-19 20:42 - 2016-09-19 20:42 - 00035096 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
2016-09-19 20:04 - 2016-09-19 20:04 - 00001868 _____ C:\Users\Public\Desktop\ZHPFix.lnk
2016-09-19 20:04 - 2016-09-19 20:04 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ZHP
2016-09-19 20:04 - 2016-09-19 20:04 - 00000000 ____D C:\Program Files\ZHPFix
2016-09-19 19:54 - 2016-09-19 20:00 - 03521617 _____ (Nicolas Coolman ) C:\Users\marouane\Downloads\ZHPFix.exe
2016-09-19 19:20 - 2016-09-19 19:20 - 00115230 _____ C:\Users\marouane\Desktop\ZHPDiag2.txt
2016-09-19 15:59 - 2016-09-19 15:59 - 00001278 _____ C:\Users\marouane\Desktop\malwar.txt
2016-09-19 15:12 - 2016-09-19 15:12 - 00001133 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2016-09-19 15:12 - 2016-09-19 15:12 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2016-09-19 15:12 - 2016-09-19 15:12 - 00000000 ____D C:\Program Files\Malwarebytes Anti-Malware
2016-09-19 15:12 - 2016-03-10 14:09 - 00053120 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mwac.sys
2016-09-19 15:12 - 2016-03-10 14:08 - 00126336 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2016-09-19 15:12 - 2016-03-10 14:08 - 00024448 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2016-09-19 14:53 - 2016-09-19 14:54 - 00020480 _____ C:\Users\marouane\Downloads\mbam-setup-2.2.1.1043.exe.3puihsz.partial
2016-09-19 14:27 - 2016-09-19 14:27 - 00003430 _____ C:\Users\marouane\Desktop\AdwCleaner[C0].txt
2016-09-19 14:23 - 2016-09-19 17:41 - 00000000 ____D C:\AdwCleaner
2016-09-19 14:22 - 2016-09-19 14:23 - 03861056 _____ C:\Users\marouane\Desktop\adwcleaner_6.020.exe
2016-09-19 14:16 - 2016-09-19 14:17 - 00004046 _____ C:\Users\marouane\Desktop\Rkill.txt
2016-09-19 14:15 - 2016-09-19 14:16 - 02030536 _____ (Bleeping Computer, LLC) C:\Users\marouane\Downloads\rkill.com
2016-09-19 10:25 - 2016-09-19 10:25 - 00000689 _____ C:\Users\Public\Desktop\Avast Antivirus Gratuit.lnk
2016-09-19 10:25 - 2016-09-19 10:25 - 00000689 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Antivirus Gratuit.lnk
2016-09-19 10:25 - 2016-09-19 10:25 - 00000000 ____D C:\Users\marouane\AppData\Roaming\AVAST Software
2016-09-19 10:24 - 2016-09-19 16:34 - 00735488 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswsnx.sys
2016-09-19 10:24 - 2016-09-19 10:24 - 00921280 _____ (Microsoft Corporation) C:\WINDOWS\ucrtbase.dll
2016-09-19 10:24 - 2016-09-19 10:24 - 00434144 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2016-09-19 10:24 - 2016-09-19 10:24 - 00319760 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2016-09-19 10:24 - 2016-09-19 10:24 - 00224616 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2016-09-19 10:24 - 2016-09-19 10:24 - 00118664 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
2016-09-19 10:24 - 2016-09-19 10:24 - 00092256 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2016-09-19 10:24 - 2016-09-19 10:24 - 00091232 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2016-09-19 10:24 - 2016-09-19 10:24 - 00060424 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2016-09-19 10:24 - 2016-09-19 10:24 - 00053208 _____ (AVAST Software) C:\WINDOWS\avastSS.scr
2016-09-19 10:24 - 2016-09-19 10:24 - 00034008 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswHwid.sys
2016-09-19 09:32 - 2016-09-19 19:25 - 00115260 _____ C:\Users\marouane\Desktop\ZHPDiag.txt
2016-09-19 09:25 - 2016-09-19 21:04 - 00000000 ____D C:\Users\marouane\AppData\Roaming\ZHP
2016-09-19 09:25 - 2016-09-19 20:11 - 00000868 _____ C:\Users\marouane\Desktop\ZHPDiag.lnk
2016-09-19 09:22 - 2016-09-19 09:22 - 00000034 _____ C:\Users\marouane\Desktop\magic.txt
2016-09-16 20:37 - 2016-09-16 20:38 - 00594582 _____ C:\Users\marouane\Downloads\DXF_Halftone_21.zip
2016-09-16 20:36 - 2016-09-16 20:42 - 07731642 _____ C:\Users\marouane\Downloads\الابواب والشبابيك.pdf
2016-09-16 20:36 - 2016-09-16 20:38 - 01228696 _____ C:\Users\marouane\Downloads\كتالوج الستاير لمكاينات السي ان سي (1).pdf
2016-09-16 20:35 - 2016-09-16 20:35 - 00629714 _____ C:\Users\marouane\Downloads\mawunka (1).cdr
2016-09-16 20:25 - 2016-09-16 20:25 - 00095131 _____ C:\Users\marouane\Downloads\اباجورة-شجرة (1).cdr
2016-09-16 20:22 - 2016-09-16 20:23 - 00499885 _____ C:\Users\marouane\Downloads\lit bebe new model.dxf
2016-09-16 20:13 - 2016-09-16 20:13 - 00248320 _____ C:\Users\marouane\Downloads\2 (2).art
2016-09-16 20:12 - 2016-09-16 20:13 - 00163840 _____ C:\Users\marouane\Downloads\سرير حبيبه.art
2016-09-15 21:57 - 2016-09-15 21:57 - 00000000 ____D C:\WINDOWS\LastGood.Tmp
2016-09-14 07:52 - 2016-09-07 06:39 - 01862000 _____ C:\WINDOWS\system32\CoreUIComponents.dll
2016-09-14 07:52 - 2016-09-07 06:39 - 01051584 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2016-09-14 07:52 - 2016-09-07 06:39 - 00601744 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2016-09-14 07:52 - 2016-09-07 06:39 - 00545432 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2016-09-14 07:52 - 2016-09-07 06:39 - 00138960 _____ (Microsoft Corporation) C:\WINDOWS\system32\sspicli.dll
2016-09-14 07:52 - 2016-09-07 06:37 - 00100704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecdd.sys
2016-09-14 07:52 - 2016-09-07 06:35 - 01174368 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2016-09-14 07:52 - 2016-09-07 06:33 - 00986976 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll
2016-09-14 07:52 - 2016-09-07 06:33 - 00023776 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2016-09-14 07:52 - 2016-09-07 06:25 - 00310112 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifitask.exe
2016-09-14 07:52 - 2016-09-07 06:24 - 00355672 _____ (Microsoft Corporation) C:\WINDOWS\system32\netcfgx.dll
2016-09-14 07:52 - 2016-09-07 06:22 - 02937384 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2016-09-14 07:52 - 2016-09-07 06:22 - 01824264 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2016-09-14 07:52 - 2016-09-07 06:21 - 01300016 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcMon.exe
2016-09-14 07:52 - 2016-09-07 06:12 - 00727752 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcomp.dll
2016-09-14 07:52 - 2016-09-07 06:08 - 00042920 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsass.exe
2016-09-14 07:52 - 2016-09-07 06:07 - 01951848 _____ (Microsoft Corporation) C:\WINDOWS\system32\hevcdecoder.dll
2016-09-14 07:52 - 2016-09-07 05:47 - 00074752 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsCSP.dll
2016-09-14 07:52 - 2016-09-07 05:42 - 00050176 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosHostClient.dll
2016-09-14 07:52 - 2016-09-07 05:39 - 00103424 _____ (Microsoft Corporation) C:\WINDOWS\system32\wificonnapi.dll
2016-09-14 07:52 - 2016-09-07 05:39 - 00023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\mapsupdatetask.dll
2016-09-14 07:52 - 2016-09-07 05:38 - 00059392 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosStorage.dll
2016-09-14 07:52 - 2016-09-07 05:37 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsBtSvc.dll
2016-09-14 07:52 - 2016-09-07 05:36 - 00054784 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshost.dll
2016-09-14 07:52 - 2016-09-07 05:35 - 00256512 _____ (Microsoft Corporation) C:\WINDOWS\system32\unimdm.tsp
2016-09-14 07:52 - 2016-09-07 05:35 - 00131072 _____ (Microsoft Corporation) C:\WINDOWS\system32\usbceip.dll
2016-09-14 07:52 - 2016-09-07 05:34 - 00203776 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshostcore.dll
2016-09-14 07:52 - 2016-09-07 05:33 - 00527360 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneProviders.dll
2016-09-14 07:52 - 2016-09-07 05:33 - 00122880 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Geolocation.dll
2016-09-14 07:52 - 2016-09-07 05:32 - 06529024 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanmm.dll
2016-09-14 07:52 - 2016-09-07 05:32 - 00442368 _____ (Microsoft Corporation) C:\WINDOWS\system32\MBMediaManager.dll
2016-09-14 07:52 - 2016-09-07 05:32 - 00386048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.LowLevel.dll
2016-09-14 07:52 - 2016-09-07 05:32 - 00292864 _____ (Microsoft Corporation) C:\WINDOWS\system32\dot3ui.dll
2016-09-14 07:52 - 2016-09-07 05:32 - 00213504 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkBindingEngineMigPlugin.dll
2016-09-14 07:52 - 2016-09-07 05:31 - 00590336 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneService.dll
2016-09-14 07:52 - 2016-09-07 05:31 - 00335872 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2016-09-14 07:52 - 2016-09-07 05:30 - 18676224 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2016-09-14 07:52 - 2016-09-07 05:30 - 00395776 _____ (Microsoft Corporation) C:\WINDOWS\system32\WlanMediaManager.dll
2016-09-14 07:52 - 2016-09-07 05:30 - 00349696 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapConfiguration.dll
2016-09-14 07:52 - 2016-09-07 05:30 - 00309248 _____ (Microsoft Corporation) C:\WINDOWS\system32\IPSECSVC.DLL
2016-09-14 07:52 - 2016-09-07 05:29 - 19350016 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2016-09-14 07:52 - 2016-09-07 05:29 - 00442368 _____ (Microsoft Corporation) C:\WINDOWS\system32\dlnashext.dll
2016-09-14 07:52 - 2016-09-07 05:29 - 00439296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.UX.EapRequestHandler.dll
2016-09-14 07:52 - 2016-09-07 05:28 - 04143104 _____ (Microsoft Corporation) C:\WINDOWS\system32\WlanMM.dll
2016-09-14 07:52 - 2016-09-07 05:28 - 01762816 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnidui.dll
2016-09-14 07:52 - 2016-09-07 05:28 - 01226752 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcnwiz.dll
2016-09-14 07:52 - 2016-09-07 05:28 - 00846336 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasgcw.dll
2016-09-14 07:52 - 2016-09-07 05:28 - 00800768 _____ (Microsoft Corporation) C:\WINDOWS\system32\JpMapControl.dll
2016-09-14 07:52 - 2016-09-07 05:28 - 00674816 _____ (Microsoft Corporation) C:\WINDOWS\system32\MiracastReceiver.dll
2016-09-14 07:52 - 2016-09-07 05:28 - 00611840 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll
2016-09-14 07:52 - 2016-09-07 05:28 - 00413696 _____ (Microsoft Corporation) C:\WINDOWS\system32\WLanConn.dll
2016-09-14 07:52 - 2016-09-07 05:28 - 00385536 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanconn.dll
2016-09-14 07:52 - 2016-09-07 05:28 - 00284160 _____ (Microsoft Corporation) C:\WINDOWS\system32\eappcfg.dll
2016-09-14 07:52 - 2016-09-07 05:27 - 00957440 _____ (Microsoft Corporation) C:\WINDOWS\system32\srmclient.dll
2016-09-14 07:52 - 2016-09-07 05:27 - 00784896 _____ (Microsoft Corporation) C:\WINDOWS\system32\NMAA.dll
2016-09-14 07:52 - 2016-09-07 05:27 - 00481792 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUDFx.dll
2016-09-14 07:52 - 2016-09-07 05:27 - 00477184 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieui.dll
2016-09-14 07:52 - 2016-09-07 05:27 - 00401408 _____ (Microsoft Corporation) C:\WINDOWS\system32\icsvc.dll
2016-09-14 07:52 - 2016-09-07 05:27 - 00230400 _____ (Microsoft Corporation) C:\WINDOWS\system32\webcheck.dll
2016-09-14 07:52 - 2016-09-07 05:26 - 02050048 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2016-09-14 07:52 - 2016-09-07 05:26 - 01497088 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPDMC.exe
2016-09-14 07:52 - 2016-09-07 05:26 - 00754176 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcss.dll
2016-09-14 07:52 - 2016-09-07 05:26 - 00711680 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlCore.dll
2016-09-14 07:52 - 2016-09-07 05:26 - 00687616 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2016-09-14 07:52 - 2016-09-07 05:26 - 00501760 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2016-09-14 07:52 - 2016-09-07 05:25 - 06296064 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll
2016-09-14 07:52 - 2016-09-07 05:25 - 01526272 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2016-09-14 07:52 - 2016-09-07 05:25 - 00952320 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2016-09-14 07:52 - 2016-09-07 05:24 - 01028608 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifinetworkmanager.dll
2016-09-14 07:52 - 2016-09-07 05:24 - 00785920 _____ (Microsoft Corporation) C:\WINDOWS\system32\mprddm.dll
2016-09-14 07:52 - 2016-09-07 05:23 - 01364480 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtsvc.dll
2016-09-14 07:52 - 2016-09-07 05:22 - 12134400 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2016-09-14 07:52 - 2016-09-07 05:21 - 00620544 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsFilt.dll
2016-09-14 07:52 - 2016-09-07 05:20 - 00401920 _____ (Microsoft Corporation) C:\WINDOWS\system32\StikyNot.exe
2016-09-14 07:52 - 2016-09-07 05:19 - 03663360 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2016-09-14 07:52 - 2016-09-07 05:19 - 03555840 _____ (Microsoft Corporation) C:\WINDOWS\system32\xpsrchvw.exe
2016-09-14 07:52 - 2016-09-07 05:19 - 00064512 _____ (Microsoft Corporation) C:\WINDOWS\system32\ImplatSetup.dll
2016-09-14 07:52 - 2016-09-07 05:18 - 05205504 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
2016-09-14 07:52 - 2016-09-07 05:18 - 01735680 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2016-09-14 07:52 - 2016-09-07 05:17 - 02679808 _____ (Microsoft Corporation) C:\WINDOWS\system32\netshell.dll
2016-09-14 07:52 - 2016-09-07 05:17 - 01931776 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll
2016-09-14 07:52 - 2016-09-07 05:17 - 01902592 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2016-09-14 07:52 - 2016-09-07 05:17 - 00854016 _____ (Microsoft Corporation) C:\WINDOWS\system32\termsrv.dll
2016-09-14 07:52 - 2016-09-07 05:16 - 03671040 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2016-09-14 07:52 - 2016-09-07 05:16 - 02361856 _____ (Microsoft Corporation) C:\WINDOWS\system32\mmcndmgr.dll
2016-09-14 07:52 - 2016-09-07 05:16 - 02217984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wpc.dll
2016-09-14 07:52 - 2016-09-07 05:15 - 05659136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2016-09-14 07:52 - 2016-09-07 05:15 - 01900544 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2016-09-14 07:52 - 2016-09-07 05:15 - 01626112 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2016-09-14 07:52 - 2016-09-07 05:15 - 01249280 _____ (Microsoft Corporation) C:\WINDOWS\system32\usercpl.dll
2016-09-14 07:52 - 2016-09-07 05:14 - 06743040 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2016-09-14 07:52 - 2016-09-07 05:14 - 02553856 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2016-09-14 07:52 - 2016-09-07 05:14 - 02177024 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmSvc.dll
2016-09-14 07:52 - 2016-09-07 05:11 - 03065344 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstsc.exe
2016-09-14 07:52 - 2016-09-07 05:11 - 01106944 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpeechPal.dll
2016-09-14 07:52 - 2016-09-07 05:10 - 00712704 _____ (Microsoft Corporation) C:\WINDOWS\system32\RemoteNaturalLanguage.dll
2016-09-14 07:52 - 2016-09-07 05:09 - 00824832 _____ (Microsoft Corporation) C:\WINDOWS\system32\adtschema.dll
2016-09-14 07:52 - 2016-09-07 05:09 - 00063488 _____ (Microsoft Corporation) C:\WINDOWS\system32\msobjs.dll
2016-09-14 07:52 - 2016-09-07 05:09 - 00049664 _____ (Microsoft Corporation) C:\WINDOWS\system32\csrsrv.dll
2016-09-14 07:52 - 2016-09-07 02:15 - 00445765 _____ C:\WINDOWS\system32\ApnDatabase.xml
2016-09-14 07:51 - 2016-09-07 06:41 - 00229216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys
2016-09-14 07:51 - 2016-09-07 06:40 - 01561392 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2016-09-14 07:51 - 2016-09-07 06:39 - 00628440 _____ (Microsoft Corporation) C:\WINDOWS\system32\kernel32.dll
2016-09-14 07:51 - 2016-09-07 06:37 - 00572272 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskschd.dll
2016-09-14 07:51 - 2016-09-07 06:35 - 00433504 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcasvc.dll
2016-09-14 07:51 - 2016-09-07 06:24 - 02180128 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2016-09-14 07:51 - 2016-09-07 06:24 - 01349632 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll
2016-09-14 07:51 - 2016-09-07 06:24 - 01334680 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpmde.dll
2016-09-14 07:51 - 2016-09-07 06:24 - 01118200 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetsrc.dll
2016-09-14 07:51 - 2016-09-07 06:24 - 00980352 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfasfsrcsnk.dll
2016-09-14 07:51 - 2016-09-07 06:24 - 00925064 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2016-09-14 07:51 - 2016-09-07 06:24 - 00709176 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2016-09-14 07:51 - 2016-09-07 06:24 - 00511312 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll
2016-09-14 07:51 - 2016-09-07 06:24 - 00501600 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupEngine.dll
2016-09-14 07:51 - 2016-09-07 06:24 - 00496360 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmdrmdev.dll
2016-09-14 07:51 - 2016-09-07 06:24 - 00451928 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFCaptureEngine.dll
2016-09-14 07:51 - 2016-09-07 06:22 - 00703840 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2016-09-14 07:51 - 2016-09-07 06:21 - 21123320 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2016-09-14 07:51 - 2016-09-07 06:21 - 05240952 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2016-09-14 07:51 - 2016-09-07 06:21 - 04074160 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2016-09-14 07:51 - 2016-09-07 06:21 - 00613112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2016-09-14 07:51 - 2016-09-07 06:21 - 00465760 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
2016-09-14 07:51 - 2016-09-07 06:20 - 05598832 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2016-09-14 07:51 - 2016-09-07 06:20 - 01355336 _____ (Microsoft Corporation) C:\WINDOWS\system32\propsys.dll
2016-09-14 07:51 - 2016-09-07 06:20 - 01337680 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2016-09-14 07:51 - 2016-09-07 06:20 - 00836752 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
2016-09-14 07:51 - 2016-09-07 06:20 - 00633192 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppwinob.dll
2016-09-14 07:51 - 2016-09-07 06:20 - 00569744 _____ (Microsoft Corporation) C:\WINDOWS\system32\SHCore.dll
2016-09-14 07:51 - 2016-09-07 06:20 - 00036136 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplicationFrameHost.exe
2016-09-14 07:51 - 2016-09-07 06:19 - 00995296 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipUp.exe
2016-09-14 07:51 - 2016-09-07 06:19 - 00549728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ClipSp.sys
2016-09-14 07:51 - 2016-09-07 06:19 - 00510872 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipSVC.dll
2016-09-14 07:51 - 2016-09-07 06:19 - 00505136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2016-09-14 07:51 - 2016-09-07 06:19 - 00294752 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2016-09-14 07:51 - 2016-09-07 06:13 - 02186856 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll
2016-09-14 07:51 - 2016-09-07 06:13 - 01865584 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d9.dll
2016-09-14 07:51 - 2016-09-07 06:12 - 02195632 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10warp.dll
2016-09-14 07:51 - 2016-09-07 06:12 - 01712992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2016-09-14 07:51 - 2016-09-07 06:12 - 01522152 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll
2016-09-14 07:51 - 2016-09-07 06:12 - 01174008 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2016-09-14 07:51 - 2016-09-07 06:11 - 00381784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2016-09-14 07:51 - 2016-09-07 06:11 - 00180064 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys
2016-09-14 07:51 - 2016-09-07 06:10 - 00228864 _____ (Microsoft Corporation) C:\WINDOWS\system32\FileHistory.exe
2016-09-14 07:51 - 2016-09-07 06:08 - 28083144 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecsRaw.dll
2016-09-14 07:51 - 2016-09-07 06:08 - 01861984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2016-09-14 07:51 - 2016-09-07 06:07 - 00403920 _____ (Microsoft Corporation) C:\WINDOWS\system32\DMRServer.dll
2016-09-14 07:51 - 2016-09-07 06:07 - 00253080 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpeffects.dll
2016-09-14 07:51 - 2016-09-07 05:43 - 00239616 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcl.dll
2016-09-14 07:51 - 2016-09-07 05:42 - 00572928 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll
2016-09-14 07:51 - 2016-09-07 05:40 - 00023040 _____ (Microsoft Corporation) C:\WINDOWS\system32\cmintegrator.dll
2016-09-14 07:51 - 2016-09-07 05:39 - 00074752 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecureTimeAggregator.dll
2016-09-14 07:51 - 2016-09-07 05:38 - 00584704 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbonRes.dll
2016-09-14 07:51 - 2016-09-07 05:38 - 00038912 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsmprovhost.exe
2016-09-14 07:51 - 2016-09-07 05:37 - 00145408 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmAuto.dll
2016-09-14 07:51 - 2016-09-07 05:37 - 00040448 _____ (Microsoft Corporation) C:\WINDOWS\system32\fodhelper.exe
2016-09-14 07:51 - 2016-09-07 05:37 - 00026624 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmAgent.dll
2016-09-14 07:51 - 2016-09-07 05:36 - 00250880 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppLockerCSP.dll
2016-09-14 07:51 - 2016-09-07 05:36 - 00102912 _____ (Microsoft Corporation) C:\WINDOWS\system32\shsetup.dll
2016-09-14 07:51 - 2016-09-07 05:36 - 00091648 _____ (Microsoft Corporation) C:\WINDOWS\system32\MediaFoundation.DefaultPerceptionProvider.dll
2016-09-14 07:51 - 2016-09-07 05:36 - 00074240 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2016-09-14 07:51 - 2016-09-07 05:36 - 00039424 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmTasks.dll
2016-09-14 07:51 - 2016-09-07 05:35 - 09324032 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmploc.DLL
2016-09-14 07:51 - 2016-09-07 05:35 - 00393216 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbemcomn.dll
2016-09-14 07:51 - 2016-09-07 05:35 - 00205312 _____ (Microsoft Corporation) C:\WINDOWS\system32\oemlicense.dll
2016-09-14 07:51 - 2016-09-07 05:35 - 00115712 _____ (Microsoft Corporation) C:\WINDOWS\system32\mmcshext.dll
2016-09-14 07:51 - 2016-09-07 05:35 - 00052736 _____ (Microsoft Corporation) C:\WINDOWS\system32\vsstrace.dll
2016-09-14 07:51 - 2016-09-07 05:34 - 00300032 _____ (Microsoft Corporation) C:\WINDOWS\system32\mmcbase.dll
2016-09-14 07:51 - 2016-09-07 05:34 - 00163840 _____ (Microsoft Corporation) C:\WINDOWS\system32\cic.dll
2016-09-14 07:51 - 2016-09-07 05:34 - 00125440 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdrsvc.dll
2016-09-14 07:51 - 2016-09-07 05:34 - 00104960 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdshext.dll
2016-09-14 07:51 - 2016-09-07 05:33 - 00497664 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
2016-09-14 07:51 - 2016-09-07 05:33 - 00290304 _____ (Microsoft Corporation) C:\WINDOWS\system32\WmpDui.dll
2016-09-14 07:51 - 2016-09-07 05:33 - 00238080 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmWmiPl.dll
2016-09-14 07:51 - 2016-09-07 05:33 - 00200704 _____ (Microsoft Corporation) C:\WINDOWS\system32\DisplayManager.dll
2016-09-14 07:51 - 2016-09-07 05:33 - 00187392 _____ (Microsoft Corporation) C:\WINDOWS\system32\MicrosoftAccountCloudAP.dll
2016-09-14 07:51 - 2016-09-07 05:33 - 00164352 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsrv.dll
2016-09-14 07:51 - 2016-09-07 05:33 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\IdCtrls.dll
2016-09-14 07:51 - 2016-09-07 05:32 - 00581632 _____ (Microsoft Corporation) C:\WINDOWS\system32\apphelp.dll
2016-09-14 07:51 - 2016-09-07 05:32 - 00465408 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2016-09-14 07:51 - 2016-09-07 05:32 - 00339456 _____ (Microsoft Corporation) C:\WINDOWS\system32\azroleui.dll
2016-09-14 07:51 - 2016-09-07 05:32 - 00260096 _____ (Microsoft Corporation) C:\WINDOWS\system32\apprepsync.dll
2016-09-14 07:51 - 2016-09-07 05:31 - 09920512 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2016-09-14 07:51 - 2016-09-07 05:31 - 01985024 _____ (Microsoft Corporation) C:\WINDOWS\system32\certmgr.dll
2016-09-14 07:51 - 2016-09-07 05:31 - 01496064 _____ (Microsoft Corporation) C:\WINDOWS\system32\aitstatic.exe
2016-09-14 07:51 - 2016-09-07 05:31 - 00753664 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctfuimanager.dll
2016-09-14 07:51 - 2016-09-07 05:31 - 00579072 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpprefcl.dll
2016-09-14 07:51 - 2016-09-07 05:31 - 00541184 _____ (Microsoft Corporation) C:\WINDOWS\system32\GamePanel.exe
2016-09-14 07:51 - 2016-09-07 05:31 - 00282624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2016-09-14 07:51 - 2016-09-07 05:31 - 00262656 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack_win.dll
2016-09-14 07:51 - 2016-09-07 05:31 - 00261632 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseAppMgmtSvc.dll
2016-09-14 07:51 - 2016-09-07 05:31 - 00246784 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadcloudap.dll
2016-09-14 07:51 - 2016-09-07 05:31 - 00190464 _____ (Microsoft Corporation) C:\WINDOWS\system32\apprepapi.dll
2016-09-14 07:51 - 2016-09-07 05:30 - 00471552 _____ (Microsoft Corporation) C:\WINDOWS\system32\filemgmt.dll
2016-09-14 07:51 - 2016-09-07 05:30 - 00425472 _____ (Microsoft Corporation) C:\WINDOWS\system32\WalletService.dll
2016-09-14 07:51 - 2016-09-07 05:30 - 00202752 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsqmcons.exe
2016-09-14 07:51 - 2016-09-07 05:29 - 00320000 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhcfg.dll
2016-09-14 07:51 - 2016-09-07 05:29 - 00283136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BioFeedback.dll
2016-09-14 07:51 - 2016-09-07 05:29 - 00250880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2016-09-14 07:51 - 2016-09-07 05:29 - 00238592 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecsExt.dll
2016-09-14 07:51 - 2016-09-07 05:29 - 00230912 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXTaskFactory.dll
2016-09-14 07:51 - 2016-09-07 05:28 - 00879616 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebcamUi.dll
2016-09-14 07:51 - 2016-09-07 05:28 - 00654336 _____ (Microsoft Corporation) C:\WINDOWS\system32\winipcsecproc_ssp.dll
2016-09-14 07:51 - 2016-09-07 05:28 - 00638976 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmIndexer.dll
2016-09-14 07:51 - 2016-09-07 05:28 - 00604160 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
2016-09-14 07:51 - 2016-09-07 05:28 - 00489984 _____ (Microsoft Corporation) C:\WINDOWS\system32\mbsmsapi.dll
2016-09-14 07:51 - 2016-09-07 05:28 - 00445952 _____ (Microsoft Corporation) C:\WINDOWS\system32\PsmServiceExtHost.dll
2016-09-14 07:51 - 2016-09-07 05:28 - 00413184 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll
2016-09-14 07:51 - 2016-09-07 05:28 - 00373248 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.UserAccountsHandlers.dll
2016-09-14 07:51 - 2016-09-07 05:28 - 00340480 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv.sys
2016-09-14 07:51 - 2016-09-07 05:28 - 00337920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Geolocation.dll
2016-09-14 07:51 - 2016-09-07 05:28 - 00334848 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredProvDataModel.dll
2016-09-14 07:51 - 2016-09-07 05:28 - 00296448 _____ (Microsoft Corporation) C:\WINDOWS\system32\sysdm.cpl
2016-09-14 07:51 - 2016-09-07 05:28 - 00282624 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2016-09-14 07:51 - 2016-09-07 05:28 - 00186368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srvnet.sys
2016-09-14 07:51 - 2016-09-07 05:27 - 01746944 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Bluetooth.dll
2016-09-14 07:51 - 2016-09-07 05:27 - 01139712 _____ (Microsoft Corporation) C:\WINDOWS\system32\vssapi.dll
2016-09-14 07:51 - 2016-09-07 05:27 - 00963072 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_health.dll
2016-09-14 07:51 - 2016-09-07 05:27 - 00824832 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Vpn.dll
2016-09-14 07:51 - 2016-09-07 05:27 - 00792576 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2016-09-14 07:51 - 2016-09-07 05:27 - 00765440 _____ (Microsoft Corporation) C:\WINDOWS\system32\nettrace.dll
2016-09-14 07:51 - 2016-09-07 05:27 - 00708608 _____ (Microsoft Corporation) C:\WINDOWS\system32\CPFilters.dll
2016-09-14 07:51 - 2016-09-07 05:27 - 00585216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.AccountsControl.dll
2016-09-14 07:51 - 2016-09-07 05:27 - 00525824 _____ (Microsoft Corporation) C:\WINDOWS\system32\configurationclient.dll
2016-09-14 07:51 - 2016-09-07 05:27 - 00521728 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmdrmsdk.dll
2016-09-14 07:51 - 2016-09-07 05:27 - 00517632 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToManager.dll
2016-09-14 07:51 - 2016-09-07 05:27 - 00502272 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicePairing.dll
2016-09-14 07:51 - 2016-09-07 05:27 - 00400896 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll
2016-09-14 07:51 - 2016-09-07 05:27 - 00372224 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppBroker.dll
2016-09-14 07:51 - 2016-09-07 05:27 - 00100864 _____ (Microsoft Corporation) C:\WINDOWS\system32\offlinelsa.dll
2016-09-14 07:51 - 2016-09-07 05:26 - 01915392 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSAJApi.dll
2016-09-14 07:51 - 2016-09-07 05:26 - 01537536 _____ (Microsoft Corporation) C:\WINDOWS\system32\pla.dll
2016-09-14 07:51 - 2016-09-07 05:26 - 01508352 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmsipc.dll
2016-09-14 07:51 - 2016-09-07 05:26 - 01223168 _____ (Microsoft Corporation) C:\WINDOWS\system32\RecoveryDrive.exe
2016-09-14 07:51 - 2016-09-07 05:26 - 01035776 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplicationFrame.dll
2016-09-14 07:51 - 2016-09-07 05:26 - 00854528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll
2016-09-14 07:51 - 2016-09-07 05:26 - 00826368 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2016-09-14 07:51 - 2016-09-07 05:26 - 00740352 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedStartModel.dll
2016-09-14 07:51 - 2016-09-07 05:26 - 00738816 _____ (Microsoft Corporation) C:\WINDOWS\system32\appwiz.cpl
2016-09-14 07:51 - 2016-09-07 05:26 - 00736768 _____ (Microsoft Corporation) C:\WINDOWS\system32\SmartcardCredentialProvider.dll
2016-09-14 07:51 - 2016-09-07 05:26 - 00706048 _____ (Microsoft Corporation) C:\WINDOWS\system32\usermgr.dll
2016-09-14 07:51 - 2016-09-07 05:26 - 00673280 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApiPublic.dll
2016-09-14 07:51 - 2016-09-07 05:26 - 00645632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Storage.Search.dll
2016-09-14 07:51 - 2016-09-07 05:26 - 00638464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.dll
2016-09-14 07:51 - 2016-09-07 05:26 - 00482816 _____ (Microsoft Corporation) C:\WINDOWS\system32\duser.dll
2016-09-14 07:51 - 2016-09-07 05:26 - 00434688 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2016-09-14 07:51 - 2016-09-07 05:26 - 00233984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb10.sys
2016-09-14 07:51 - 2016-09-07 05:25 - 02578432 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameux.dll
2016-09-14 07:51 - 2016-09-07 05:25 - 01944576 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputService.dll
2016-09-14 07:51 - 2016-09-07 05:25 - 01467392 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2016-09-14 07:51 - 2016-09-07 05:25 - 01388032 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2016-09-14 07:51 - 2016-09-07 05:25 - 01139712 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll
2016-09-14 07:51 - 2016-09-07 05:25 - 01105920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Audio.dll
2016-09-14 07:51 - 2016-09-07 05:25 - 01043456 _____ (Microsoft Corporation) C:\WINDOWS\system32\VSSVC.exe
2016-09-14 07:51 - 2016-09-07 05:25 - 00759808 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2016-09-14 07:51 - 2016-09-07 05:25 - 00673280 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll
2016-09-14 07:51 - 2016-09-07 05:25 - 00489984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll
2016-09-14 07:51 - 2016-09-07 05:25 - 00207872 _____ (Microsoft Corporation) C:\WINDOWS\system32\licensingdiag.exe
2016-09-14 07:51 - 2016-09-07 05:24 - 03695104 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_47.dll
2016-09-14 07:51 - 2016-09-07 05:24 - 01276928 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_fs.dll
2016-09-14 07:51 - 2016-09-07 05:24 - 01070592 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagperf.dll
2016-09-14 07:51 - 2016-09-07 05:24 - 00783872 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXService.dll
2016-09-14 07:51 - 2016-09-07 05:24 - 00764928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Cred.dll
2016-09-14 07:51 - 2016-09-07 05:24 - 00667648 _____ (Microsoft Corporation) C:\WINDOWS\system32\AzureSettingSyncProvider.dll
2016-09-14 07:51 - 2016-09-07 05:24 - 00489984 _____ (Microsoft Corporation) C:\WINDOWS\system32\ShareHost.dll
2016-09-14 07:51 - 2016-09-07 05:23 - 01562112 _____ (Microsoft Corporation) C:\WINDOWS\system32\mmc.exe
2016-09-14 07:51 - 2016-09-07 05:23 - 01309696 _____ (Microsoft Corporation) C:\WINDOWS\system32\wdc.dll
2016-09-14 07:51 - 2016-09-07 05:23 - 00980480 _____ (Microsoft Corporation) C:\WINDOWS\system32\winipcsecproc.dll
2016-09-14 07:51 - 2016-09-07 05:22 - 12585472 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2016-09-14 07:51 - 2016-09-07 05:22 - 02106368 _____ (Microsoft Corporation) C:\WINDOWS\system32\storagewmi.dll
2016-09-14 07:51 - 2016-09-07 05:22 - 01987072 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2016-09-14 07:51 - 2016-09-07 05:22 - 01552896 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidsvc.dll
2016-09-14 07:51 - 2016-09-07 05:22 - 00778240 _____ (Microsoft Corporation) C:\WINDOWS\system32\MsSpellCheckingFacility.dll
2016-09-14 07:51 - 2016-09-07 05:22 - 00694272 _____ (Microsoft Corporation) C:\WINDOWS\system32\uDWM.dll
2016-09-14 07:51 - 2016-09-07 05:21 - 02527232 _____ (Microsoft Corporation) C:\WINDOWS\system32\mispace.dll
2016-09-14 07:51 - 2016-09-07 05:21 - 01063936 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpedit.dll
2016-09-14 07:51 - 2016-09-07 05:21 - 00639488 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2016-09-14 07:51 - 2016-09-07 05:20 - 03196928 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2016-09-14 07:51 - 2016-09-07 05:20 - 01044992 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdengin2.dll
2016-09-14 07:51 - 2016-09-07 05:20 - 00900096 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorDataService.exe
2016-09-14 07:51 - 2016-09-07 05:20 - 00742400 _____ (Microsoft Corporation) C:\WINDOWS\system32\IKEEXT.DLL
2016-09-14 07:51 - 2016-09-07 05:20 - 00581632 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.dll
2016-09-14 07:51 - 2016-09-07 05:19 - 06471168 _____ (Microsoft Corporation) C:\WINDOWS\system32\mspaint.exe
2016-09-14 07:51 - 2016-09-07 05:19 - 05325824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2016-09-14 07:51 - 2016-09-07 05:19 - 04078592 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbgeng.dll
2016-09-14 07:51 - 2016-09-07 05:19 - 02798080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2016-09-14 07:51 - 2016-09-07 05:19 - 01801216 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll
2016-09-14 07:51 - 2016-09-07 05:19 - 01072128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.Http.dll
2016-09-14 07:51 - 2016-09-07 05:19 - 00515584 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhotoScreensaver.scr
2016-09-14 07:51 - 2016-09-07 05:19 - 00503296 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSync.dll
2016-09-14 07:51 - 2016-09-07 05:18 - 02973696 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2016-09-14 07:51 - 2016-09-07 05:18 - 01635840 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebSync.dll
2016-09-14 07:51 - 2016-09-07 05:18 - 00592384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.dll
2016-09-14 07:51 - 2016-09-07 05:18 - 00450560 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncController.dll
2016-09-14 07:51 - 2016-09-07 05:17 - 03459584 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbon.dll
2016-09-14 07:51 - 2016-09-07 05:17 - 02880512 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsThresholdAdminFlowUI.dll
2016-09-14 07:51 - 2016-09-07 05:17 - 02062336 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2016-09-14 07:51 - 2016-09-07 05:17 - 01502208 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2016-09-14 07:51 - 2016-09-07 05:17 - 00359936 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenrollengine.dll
2016-09-14 07:51 - 2016-09-07 05:16 - 04759040 _____ (Microsoft Corporation) C:\WINDOWS\system32\d2d1.dll
2016-09-14 07:51 - 2016-09-07 05:16 - 04412928 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
2016-09-14 07:51 - 2016-09-07 05:16 - 02680320 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll
2016-09-14 07:51 - 2016-09-07 05:16 - 02155008 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2016-09-14 07:51 - 2016-09-07 05:16 - 01984000 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2016-09-14 07:51 - 2016-09-07 05:16 - 01582080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2016-09-14 07:51 - 2016-09-07 05:16 - 01087488 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2016-09-14 07:51 - 2016-09-07 05:16 - 00574976 _____ (Microsoft Corporation) C:\WINDOWS\system32\hgcpl.dll
2016-09-14 07:51 - 2016-09-07 05:16 - 00232448 _____ (Microsoft Corporation) C:\WINDOWS\system32\notepad.exe
2016-09-14 07:51 - 2016-09-07 05:16 - 00232448 _____ (Microsoft Corporation) C:\WINDOWS\notepad.exe
2016-09-14 07:51 - 2016-09-07 05:15 - 02772480 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2016-09-14 07:51 - 2016-09-07 05:15 - 02604032 _____ (Microsoft Corporation) C:\WINDOWS\system32\CertEnroll.dll
2016-09-14 07:51 - 2016-09-07 05:15 - 01448960 _____ (Microsoft Corporation) C:\WINDOWS\system32\dui70.dll
2016-09-14 07:51 - 2016-09-07 05:15 - 00835072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Streaming.dll
2016-09-14 07:51 - 2016-09-07 05:15 - 00802816 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntshrui.dll
2016-09-14 07:51 - 2016-09-07 05:15 - 00748032 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2016-09-14 07:51 - 2016-09-07 05:15 - 00573440 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserLanguagesCpl.dll
2016-09-14 07:51 - 2016-09-07 05:15 - 00452608 _____ (Microsoft Corporation) C:\WINDOWS\system32\w32time.dll
2016-09-14 07:51 - 2016-09-07 05:14 - 02519552 _____ (Microsoft Corporation) C:\WINDOWS\system32\themecpl.dll
2016-09-14 07:51 - 2016-09-07 05:14 - 02000896 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll
2016-09-14 07:51 - 2016-09-07 05:14 - 01799680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
2016-09-14 07:51 - 2016-09-07 05:14 - 01708032 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActiveSyncProvider.dll
2016-09-14 07:51 - 2016-09-07 05:12 - 01075200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Shell.dll
2016-09-14 07:51 - 2016-09-07 05:12 - 00754176 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll
2016-09-14 07:51 - 2016-09-07 05:12 - 00339456 _____ (Microsoft Corporation) C:\WINDOWS\system32\certcli.dll
2016-09-14 07:51 - 2016-09-07 05:10 - 00942592 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2016-09-14 07:51 - 2016-09-07 05:10 - 00627200 _____ (Microsoft Corporation) C:\WINDOWS\system32\certca.dll
2016-09-14 07:51 - 2016-09-07 05:10 - 00438784 _____ (Microsoft Corporation) C:\WINDOWS\system32\DbgModel.dll
2016-09-14 07:50 - 2016-09-07 06:40 - 00876504 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2016-09-14 07:50 - 2016-09-07 06:40 - 00771120 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2016-09-14 07:50 - 2016-09-07 06:39 - 05794144 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2016-09-14 07:50 - 2016-09-07 06:39 - 00927080 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2016-09-14 07:50 - 2016-09-07 06:39 - 00845568 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll
2016-09-14 07:50 - 2016-09-07 06:39 - 00354144 _____ (Microsoft Corporation) C:\WINDOWS\system32\halmacpi.dll
2016-09-14 07:50 - 2016-09-07 06:39 - 00354144 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2016-09-14 07:50 - 2016-09-07 06:33 - 02885680 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSService.dll
2016-09-14 07:50 - 2016-09-07 06:33 - 02026736 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2016-09-14 07:50 - 2016-09-07 06:23 - 00104800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ufxsynopsys.sys
2016-09-14 07:50 - 2016-09-07 06:22 - 00957608 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2016-09-14 07:50 - 2016-09-07 06:19 - 00360480 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcryptprimitives.dll
2016-09-14 07:50 - 2016-09-07 05:47 - 00072192 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
2016-09-14 07:50 - 2016-09-07 05:46 - 00088576 _____ (Microsoft Corporation) C:\WINDOWS\system32\olepro32.dll
2016-09-14 07:50 - 2016-09-07 05:41 - 00094720 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataTimeUtil.dll
2016-09-14 07:50 - 2016-09-07 05:41 - 00025600 _____ (Microsoft Corporation) C:\WINDOWS\system32\odbcconf.dll
2016-09-14 07:50 - 2016-09-07 05:40 - 13018624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2016-09-14 07:50 - 2016-09-07 05:39 - 00053760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.ProxyStub.dll
2016-09-14 07:50 - 2016-09-07 05:38 - 00012288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\MTConfig.sys
2016-09-14 07:50 - 2016-09-07 05:37 - 00035328 _____ (Microsoft Corporation) C:\WINDOWS\system32\deviceassociation.dll
2016-09-14 07:50 - 2016-09-07 05:36 - 00047104 _____ (Microsoft Corporation) C:\WINDOWS\system32\fwcfg.dll
2016-09-14 07:50 - 2016-09-07 05:35 - 00024064 _____ (Microsoft Corporation) C:\WINDOWS\system32\CheckNetIsolation.exe
2016-09-14 07:50 - 2016-09-07 05:34 - 00267776 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
2016-09-14 07:50 - 2016-09-07 05:34 - 00187392 _____ (Microsoft Corporation) C:\WINDOWS\system32\PeerDist.dll
2016-09-14 07:50 - 2016-09-07 05:34 - 00059392 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiarpc.dll
2016-09-14 07:50 - 2016-09-07 05:33 - 00310784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\HdAudio.sys
2016-09-14 07:50 - 2016-09-07 05:33 - 00224256 _____ (Microsoft Corporation) C:\WINDOWS\system32\prnntfy.dll
2016-09-14 07:50 - 2016-09-07 05:32 - 00173056 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUDFPlatform.dll
2016-09-14 07:50 - 2016-09-07 05:31 - 00453632 _____ (Microsoft Corporation) C:\WINDOWS\system32\AdmTmpl.dll
2016-09-14 07:50 - 2016-09-07 05:31 - 00358912 _____ (Microsoft Corporation) C:\WINDOWS\system32\authfwcfg.dll
2016-09-14 07:50 - 2016-09-07 05:31 - 00172544 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedStartModelShim.dll
2016-09-14 07:50 - 2016-09-07 05:30 - 00576000 _____ (Microsoft Corporation) C:\WINDOWS\system32\nshwfp.dll
2016-09-14 07:50 - 2016-09-07 05:30 - 00569856 _____ (Microsoft Corporation) C:\WINDOWS\system32\qdvd.dll
2016-09-14 07:50 - 2016-09-07 05:30 - 00249344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.OneCore.dll
2016-09-14 07:50 - 2016-09-07 05:29 - 00242688 _____ (Microsoft Corporation) C:\WINDOWS\system32\sti.dll
2016-09-14 07:50 - 2016-09-07 05:28 - 00525312 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiaservc.dll
2016-09-14 07:50 - 2016-09-07 05:28 - 00400896 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2016-09-14 07:50 - 2016-09-07 05:28 - 00355328 _____ (Microsoft Corporation) C:\WINDOWS\system32\das.dll
2016-09-14 07:50 - 2016-09-07 05:27 - 00799744 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRH.dll
2016-09-14 07:50 - 2016-09-07 05:27 - 00651776 _____ (Microsoft Corporation) C:\WINDOWS\system32\comuid.dll
2016-09-14 07:50 - 2016-09-07 05:27 - 00552960 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppointmentApis.dll
2016-09-14 07:50 - 2016-09-07 05:27 - 00417280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.Desktop.dll
2016-09-14 07:50 - 2016-09-07 05:27 - 00153088 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSSync.dll
2016-09-14 07:50 - 2016-09-07 05:26 - 01588224 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll
2016-09-14 07:50 - 2016-09-07 05:26 - 01117184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Speech.dll
2016-09-14 07:50 - 2016-09-07 05:26 - 00689152 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2016-09-14 07:50 - 2016-09-07 05:25 - 04404736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Search.dll
2016-09-14 07:50 - 2016-09-07 05:25 - 01401856 _____ (Microsoft Corporation) C:\WINDOWS\system32\workfolderssvc.dll
2016-09-14 07:50 - 2016-09-07 05:25 - 01328128 _____ (Microsoft Corporation) C:\WINDOWS\system32\comsvcs.dll
2016-09-14 07:50 - 2016-09-07 05:25 - 01228800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Globalization.dll
2016-09-14 07:50 - 2016-09-07 05:25 - 00769536 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContactApis.dll
2016-09-14 07:50 - 2016-09-07 05:25 - 00509952 _____ (Microsoft Corporation) C:\WINDOWS\system32\spoolsv.exe
2016-09-14 07:50 - 2016-09-07 05:24 - 00805888 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSShared.dll
2016-09-14 07:50 - 2016-09-07 05:24 - 00460800 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFolder.dll
2016-09-14 07:50 - 2016-09-07 05:22 - 00628224 _____ (Microsoft Corporation) C:\WINDOWS\system32\printfilterpipelinesvc.exe
2016-09-14 07:50 - 2016-09-07 05:21 - 01183744 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataService.dll
2016-09-14 07:50 - 2016-09-07 05:20 - 00683008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2016-09-14 07:50 - 2016-09-07 05:19 - 02102272 _____ (Microsoft Corporation) C:\WINDOWS\system32\xpsservices.dll
2016-09-14 07:50 - 2016-09-07 05:18 - 01609728 _____ (Microsoft Corporation) C:\WINDOWS\system32\PeerDistSvc.dll
2016-09-14 07:50 - 2016-09-07 05:16 - 01194496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Phone.dll
2016-09-14 07:50 - 2016-09-07 05:16 - 01123328 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsPrint.dll
2016-09-14 07:50 - 2016-09-07 05:16 - 00925184 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2016-09-14 07:50 - 2016-09-07 05:16 - 00314880 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsDocumentTargetPrint.dll
2016-09-14 07:50 - 2016-09-07 05:15 - 01556992 _____ (Microsoft Corporation) C:\WINDOWS\system32\OpcServices.dll
2016-09-14 07:50 - 2016-09-07 05:15 - 00812544 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2016-09-14 07:50 - 2016-09-07 05:14 - 03483648 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll
2016-09-14 07:50 - 2016-09-07 05:14 - 00737792 _____ (Microsoft Corporation) C:\WINDOWS\system32\pmcsnap.dll
2016-09-14 07:50 - 2016-09-07 05:12 - 02632192 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcore.dll
2016-09-14 07:50 - 2016-09-07 05:12 - 02180096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepository.dll
2016-09-14 07:50 - 2016-09-07 05:09 - 00183296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ahcache.sys
2016-09-13 13:54 - 2016-09-13 13:57 - 02801216 _____ C:\Users\marouane\Downloads\Cheb Midou Tofla Hablatni يا يما سلكيني سØورها بدا يخدم.mp3.ij3tahb.partial
2016-09-12 21:43 - 2016-09-12 22:03 - 00000000 ____D C:\Users\marouane\Desktop\foto de bladi
2016-09-09 20:06 - 2016-09-19 18:25 - 00000000 ____D C:\Users\marouane\Desktop\lycé
2016-09-08 16:01 - 2016-09-08 20:50 - 00794010 _____ C:\Users\marouane\Desktop\poteux fini.dxf
2016-09-08 13:08 - 2016-09-08 13:09 - 00000000 ____D C:\Users\marouane\Desktop\nacer
2016-09-07 18:51 - 2016-09-09 14:50 - 01360358 _____ C:\Users\marouane\Desktop\lycé.dxf
2016-09-07 18:40 - 2016-09-07 18:40 - 00000000 ____D C:\Users\marouane\Documents\Minhas paletas
2016-09-07 18:24 - 2016-09-07 18:24 - 00000000 ____D C:\Program Files\Common Files\Protexis
2016-09-07 18:24 - 2016-09-07 18:24 - 00000000 ____D C:\Program Files\Common Files\Corel
2016-09-07 18:21 - 2016-09-07 18:24 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CorelDRAW Graphics Suite X5
2016-09-07 18:20 - 2016-09-07 18:20 - 00000000 ____D C:\Program Files\Corel
2016-09-07 18:12 - 2016-09-07 18:13 - 00000000 ____D C:\Users\marouane\Desktop\Corel Draw X5
2016-09-05 19:26 - 2016-09-05 19:32 - 00000000 ____D C:\ProgramData\CorelDRAW Graphics Suite X7 x64
2016-09-05 05:47 - 2016-09-05 05:47 - 00109184 _____ (Samsung Electronics Co., Ltd.) C:\WINDOWS\system32\Drivers\ssudbus.sys
2016-09-01 15:46 - 2016-09-14 11:21 - 00000000 ___RD C:\Users\marouane\Desktop\Nouveau dossier (2)
2016-08-27 21:26 - 2016-02-22 00:59 - 881004098 _____ C:\ASD.G.2016.720p.HD.By.Ahmed.Elrakaiby.mkv
2016-08-27 21:18 - 2016-01-20 23:07 - 882198875 _____ C:\EYP.R.2015.720p.HDRip.By.Ahmed.Elrakaiby.mkv
2016-08-27 21:17 - 2016-01-18 04:21 - 633108065 _____ C:\EYP.W.2016.720p.DVDSCR.By.Ahmed.Elrakaiby.mkv
==================== Un mois - Modifiés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2016-09-19 21:14 - 2015-11-24 23:19 - 00000000 ____D C:\Users\marouane\AppData\Roaming\uTorrent
2016-09-19 21:14 - 2015-10-30 16:07 - 00824258 _____ C:\WINDOWS\system32\perfh00C.dat
2016-09-19 21:14 - 2015-10-30 16:07 - 00155558 _____ C:\WINDOWS\system32\perfc00C.dat
2016-09-19 21:14 - 2015-10-30 06:47 - 00000000 ____D C:\WINDOWS\INF
2016-09-19 21:14 - 2015-09-25 11:40 - 01848398 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2016-09-19 21:13 - 2016-07-18 13:49 - 00001096 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2016-09-19 21:10 - 2015-09-25 13:24 - 00000000 ____D C:\Users\marouane\AppData\Roaming\DMCache
2016-09-19 21:09 - 2016-04-07 15:46 - 00000000 ____D C:\Users\marouane\AppData\LocalLow\uTorrent
2016-09-19 21:09 - 2016-01-20 16:28 - 00000000 ____D C:\Users\marouane\AppData\Roaming\ViberPC
2016-09-19 21:08 - 2016-07-18 13:49 - 00001092 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2016-09-19 21:07 - 2015-12-01 10:58 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-09-19 21:07 - 2015-12-01 10:45 - 00000000 ____D C:\ProgramData\NVIDIA
2016-09-19 21:07 - 2015-10-30 06:13 - 00786432 ___SH C:\WINDOWS\system32\config\BBI
2016-09-19 20:59 - 2016-03-04 10:47 - 00001002 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2016-09-19 20:53 - 2015-12-04 20:22 - 00000000 ____D C:\Users\marouane\AppData\Local\CrashDumps
2016-09-19 20:42 - 2015-09-25 13:06 - 00000000 ____D C:\ProgramData\AVAST Software
2016-09-19 17:43 - 2015-10-30 06:48 - 00000000 ____D C:\WINDOWS\schemas
2016-09-19 17:26 - 2016-03-13 18:15 - 00170200 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2016-09-19 17:00 - 2016-03-13 15:58 - 00000000 __SHD C:\[Smad-Cage]
2016-09-19 16:02 - 2016-02-29 15:25 - 00000000 ____D C:\Users\marouane\AppData\Roaming\Skype
2016-09-19 15:19 - 2016-02-29 15:25 - 00000000 ___RD C:\Program Files\Skype
2016-09-19 15:19 - 2016-02-29 15:25 - 00000000 ____D C:\ProgramData\Skype
2016-09-19 11:06 - 2015-12-03 19:05 - 00000000 ____D C:\ProgramData\Norton
2016-09-19 11:06 - 2015-12-01 10:48 - 00000000 ____D C:\Users\marouane
2016-09-19 11:02 - 2015-10-30 06:48 - 00000000 ___HD C:\WINDOWS\ELAMBKUP
2016-09-19 11:02 - 2015-10-30 06:13 - 00032768 ___SH C:\WINDOWS\system32\config\ELAM
2016-09-19 09:20 - 2015-11-14 09:29 - 00000000 ____D C:\mes document personal
2016-09-18 18:08 - 2015-10-30 06:48 - 00000000 ____D C:\WINDOWS\AppReadiness
2016-09-18 01:51 - 2016-07-23 22:51 - 00001064 _____ C:\WINDOWS\Tasks\Adobe Flash Player PPAPI Notifier.job
2016-09-17 01:21 - 2016-07-18 14:06 - 00002216 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-09-17 00:09 - 2015-10-30 06:48 - 00000000 ____D C:\WINDOWS\system32\Macromed
2016-09-16 23:59 - 2016-03-02 09:15 - 00037997 _____ C:\Users\marouane\Downloads\ABSTRATOS (5) (1).rar
2016-09-16 20:48 - 2015-10-30 06:48 - 00000000 ___HD C:\Program Files\WindowsApps
2016-09-16 13:46 - 2015-10-30 06:48 - 00000000 ____D C:\WINDOWS\rescache
2016-09-16 01:07 - 2015-09-25 13:24 - 00000000 ____D C:\Users\marouane\Downloads\Video
2016-09-14 17:34 - 2015-09-25 11:46 - 00000000 __RHD C:\Users\Public\AccountPictures
2016-09-14 17:27 - 2015-10-30 06:48 - 00000000 ___SD C:\WINDOWS\system32\F12
2016-09-14 17:27 - 2015-10-30 06:48 - 00000000 ___RD C:\WINDOWS\PrintDialog
2016-09-14 17:27 - 2015-10-30 06:48 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2016-09-14 17:27 - 2015-10-30 06:48 - 00000000 ___RD C:\WINDOWS\DevicesFlow
2016-09-14 17:27 - 2015-10-30 06:48 - 00000000 ____D C:\WINDOWS\system32\oobe
2016-09-14 17:27 - 2015-10-30 06:48 - 00000000 ____D C:\WINDOWS\system32\migwiz
2016-09-14 17:27 - 2015-10-30 06:48 - 00000000 ____D C:\Program Files\Windows Photo Viewer
2016-09-14 17:27 - 2015-10-30 06:48 - 00000000 ____D C:\Program Files\Windows Defender
2016-09-14 17:27 - 2015-10-30 06:15 - 00000000 ____D C:\WINDOWS\system32\AdvancedInstallers
2016-09-14 12:25 - 2015-10-30 06:48 - 00000000 ____D C:\WINDOWS\system32\appraiser
2016-09-14 12:25 - 2015-10-30 06:39 - 00000000 ____D C:\WINDOWS\CbsTemp
2016-09-14 12:23 - 2015-09-25 17:26 - 00000000 ____D C:\WINDOWS\system32\MRT
2016-09-14 12:17 - 2015-09-25 17:25 - 141747376 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2016-09-13 23:20 - 2015-09-25 11:46 - 00000000 ____D C:\Users\marouane\AppData\Local\Packages
2016-09-07 18:24 - 2015-10-31 16:01 - 00000000 ____D C:\ProgramData\Corel
2016-09-07 17:02 - 2015-09-25 13:24 - 00000000 ____D C:\Users\marouane\Downloads\Compressed
2016-09-07 16:11 - 2015-09-25 15:18 - 00001078 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera.lnk
2016-09-07 16:11 - 2015-09-25 15:18 - 00000000 ____D C:\Program Files\Opera
2016-09-07 10:31 - 2016-04-29 16:07 - 00000000 ____D C:\Users\marouane\AppData\Roaming\IDM
2016-09-07 02:00 - 2015-10-30 06:49 - 00828408 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2016-09-07 02:00 - 2015-10-30 06:49 - 00176632 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2016-09-05 19:31 - 2015-09-30 15:33 - 00000000 ____D C:\ProgramData\CorelDRAW Graphics Suite X7
2016-09-05 19:26 - 2015-10-31 15:57 - 00000000 ____D C:\ProgramData\CorelDRAW Graphics Suite X5
==================== Fichiers à la racine de certains dossiers =======
2015-09-30 18:53 - 2015-09-27 17:17 - 10973857 _____ () C:\Program Files\تعلم ARTCAM كاملا الدرس 23 (الدرس الثالث 3D) - YouTube.mp4
2016-06-28 06:36 - 2016-06-28 06:36 - 0001471 _____ () C:\Users\marouane\AppData\Local\recently-used.xbel
2015-11-16 09:36 - 2016-03-22 16:41 - 0000016 _____ () C:\ProgramData\mntemp
2015-11-16 09:36 - 2015-11-16 09:36 - 0004905 _____ () C:\ProgramData\mtbjfghn.xbe
==================== Bamital & volsnap =================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
C:\WINDOWS\explorer.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\winlogon.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\wininit.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\svchost.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\services.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\User32.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\userinit.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\rpcss.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\dnsapi.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\Drivers\volsnap.sys => Le fichier est signé numériquement
LastRegBack: 2016-09-14 12:16
==================== Fin de FRST.txt ============================
Exécuté par marouane (administrateur) sur DESKTOP-OS3F0NT (19-09-2016 21:15:45)
Exécuté depuis C:\Users\marouane\Downloads\Programs
Profils chargés: marouane (Profils disponibles: marouane)
Platform: Microsoft Windows 10 Professionnel Version 1511 (X86) Langue: Français (France)
Internet Explorer Version 11 (Navigateur par défaut: Edge)
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(AVAST Software) E:\avaset\AvastSvc.exe
(Protexis Inc.) C:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe
(SafeNet, Inc) C:\Program Files\Common Files\SafeNet Sentinel\Sentinel Protection Server\WinNT\spnsrvnt.exe
(SafeNet, Inc.) C:\Program Files\Common Files\SafeNet Sentinel\Sentinel Keys Server\sntlkeyssrvr.exe
(SafeNet, Inc.) C:\Program Files\Common Files\SafeNet Sentinel\Sentinel Security Runtime\sntlsrtsrvr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe
(TeamViewer GmbH) C:\Program Files\TeamViewer\TeamViewer_Service.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
(Smadsoft) C:\Program Files\SMADAV\SMΔRTP.exe
() C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeHost.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe
(AVAST Software) E:\avaset\avastui.exe
(BitTorrent Inc.) C:\Users\marouane\AppData\Roaming\uTorrent\uTorrent.exe
(Disc Soft Ltd) C:\Program Files\DAEMON Tools Ultra\DTAgent.exe
(Disc Soft Ltd) C:\Program Files\DAEMON Tools Ultra\DiscSoftBusService.exe
(BitTorrent Inc.) C:\Users\marouane\AppData\Roaming\uTorrent\updates\3.4.8_42576\utorrentie.exe
(BitTorrent Inc.) C:\Users\marouane\AppData\Roaming\uTorrent\updates\3.4.8_42576\utorrentie.exe
(Electronic Arts) C:\Program Files\Electronic Arts\EADM\Core.exe
(Tonec Inc.) C:\Program Files\Internet Download Manager\IDMan.exe
(BitTorrent Inc.) C:\Users\marouane\AppData\Roaming\uTorrent\updates\3.4.8_42576\utorrentie.exe
(Tonec Inc.) C:\Program Files\Internet Download Manager\IEMonitor.exe
(Microsoft Corporation) C:\Windows\System32\wbem\unsecapp.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Microsoft Corporation) C:\Program Files\Windows Media Player\wmplayer.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
(Microsoft Corporation) C:\Windows\System32\browser_broker.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
==================== Registre (Avec liste blanche) ===========================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [NvBackend] => C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe [2789248 2016-02-17] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\nvspcap.dll [1571624 2016-02-17] (NVIDIA Corporation)
HKLM\...\Run: [AvastUI.exe] => E:\avaset\AvastUI.exe [9107616 2016-09-19] (AVAST Software)
HKU\S-1-5-19\...\Winlogon: [Shell] C:\Windows\Explorer.exe [4074160 2016-09-07] (Microsoft Corporation) <==== ATTENTION
HKU\S-1-5-20\...\Winlogon: [Shell] C:\Windows\Explorer.exe [4074160 2016-09-07] (Microsoft Corporation) <==== ATTENTION
HKU\S-1-5-21-1053301872-3416716514-3691607857-1001\...\Run: [uTorrent] => C:\Users\marouane\AppData\Roaming\uTorrent\uTorrent.exe [2139840 2016-09-19] (BitTorrent Inc.)
HKU\S-1-5-21-1053301872-3416716514-3691607857-1001\...\Run: [DAEMON Tools Ultra Agent] => C:\Program Files\DAEMON Tools Ultra\DTAgent.exe [3639568 2014-07-10] (Disc Soft Ltd)
HKU\S-1-5-21-1053301872-3416716514-3691607857-1001\...\Run: [Viber] => C:\Users\marouane\AppData\Local\Viber\Viber.exe [51657424 2015-11-09] ()
HKU\S-1-5-21-1053301872-3416716514-3691607857-1001\...\Run: [Skype] => C:\Program Files\Skype\Phone\Skype.exe [29538432 2016-08-17] (Skype Technologies S.A.)
HKU\S-1-5-21-1053301872-3416716514-3691607857-1001\...\Run: [Steam] => C:\Program Files\Steam\steam.exe [3077712 2016-03-31] (Valve Corporation)
HKU\S-1-5-21-1053301872-3416716514-3691607857-1001\...\Run: [EA Core] => C:\Program Files\Electronic Arts\EADM\Core.exe [3321856 2008-12-11] (Electronic Arts)
HKU\S-1-5-21-1053301872-3416716514-3691607857-1001\...\Run: [IDMan] => C:\Program Files\Internet Download Manager\IDMan.exe [3886672 2016-05-04] (Tonec Inc.)
HKU\S-1-5-21-1053301872-3416716514-3691607857-1001\...\MountPoints2: {6d5062cb-9b1f-11e5-9413-902b34436274} - "G:\Setup.exe"
HKU\S-1-5-21-1053301872-3416716514-3691607857-1001\...\MountPoints2: {8db01f02-c94b-11e5-9441-902b34436274} - "G:\Fairlight\Installer.exe"
HKU\S-1-5-21-1053301872-3416716514-3691607857-1001\...\MountPoints2: {a8558dc3-57dd-11e6-94d2-902b34436274} - "G:\Install.bat"
HKU\S-1-5-21-1053301872-3416716514-3691607857-1001\...\Winlogon: [Shell] C:\Windows\Explorer.exe [4074160 2016-09-07] (Microsoft Corporation) <==== ATTENTION
HKU\S-1-5-18\...\Winlogon: [Shell] C:\Windows\Explorer.exe [4074160 2016-09-07] (Microsoft Corporation) <==== ATTENTION
ShellIconOverlayIdentifiers: [ IDM Shell Extension] -> {CDC95B92-E27C-4745-A8C5-64A52A78855D} => C:\Program Files\Internet Download Manager\IDMShellExt.dll [2015-08-14] (Tonec Inc.)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => E:\avaset\ashShell.dll [2016-09-19] (AVAST Software)
ShellIconOverlayIdentifiers: [AutoCAD Digital Signatures Icon Overlay Handler] -> {36A21736-36C2-4C11-8ACB-D4136F2B57BD} => C:\WINDOWS\system32\AcSignIcon.dll [2006-03-05] (Autodesk)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Accélérateur de démarrage AutoCAD.lnk [2015-12-09]
ShortcutTarget: Accélérateur de démarrage AutoCAD.lnk -> C:\Program Files\Common Files\Autodesk Shared\acstart17.exe (Autodesk, Inc)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Adobe Gamma Loader.lnk [2016-08-16]
ShortcutTarget: Adobe Gamma Loader.lnk -> C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe (Adobe Systems, Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk [2016-03-22]
ShortcutTarget: McAfee Security Scan Plus.lnk -> C:\Program Files\McAfee Security Scan\3.11.292\SSScheduler.exe (McAfee, Inc.)
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 192.168.1.1
Tcpip\..\Interfaces\{72eca85c-ff6d-4389-be78-c8d852febb01}: [DhcpNameServer] 192.168.1.1 192.168.1.1
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.symantec.com/redirects/security_response/fix_homepage/index.jsp?lg=fr&pid=NIS&pvid=22.7.0.76
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxp://search.msn.com/spbasic.htm
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.symantec.com/redirects/security_response/fix_homepage/index.jsp?lg=fr&pid=NIS&pvid=22.7.0.76
HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxp://search.msn.com/spbasic.htm
HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.symantec.com/redirects/security_response/fix_homepage/index.jsp?lg=fr&pid=NIS&pvid=22.7.0.76
HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxp://search.msn.com/spbasic.htm
HKU\S-1-5-21-1053301872-3416716514-3691607857-1001\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\S-1-5-21-1053301872-3416716514-3691607857-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.symantec.com/redirects/security_response/fix_homepage/index.jsp?lg=fr&pid=NIS&pvid=22.7.0.76
HKU\S-1-5-21-1053301872-3416716514-3691607857-1001\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxp://search.msn.com/spbasic.htm
BHO: IDM integration (IDMIEHlprObj Class) -> {0055C089-8582-441B-A0BF-17B458C2A3A8} -> C:\Program Files\Internet Download Manager\IDMIECC.dll [2015-12-08] (Internet Download Manager, Tonec Inc.)
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/products/plugin/autodl/jinstall-142-windows-i586.cab
DPF: {CAFEEFAC-0014-0002-0004-ABCDEFFEDCBA} hxxp://java.sun.com/products/plugin/autodl/jinstall-142-windows-i586.cab
FireFox:
========
FF ProfilePath: C:\Users\marouane\AppData\Roaming\Mozilla\Firefox\Profiles\ubeyjb4n.default
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF32_23_0_0_162.dll [2016-09-13] ()
FF Plugin: @nvidia.com/3DVision -> C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll [2016-03-22] (NVIDIA Corporation)
FF Plugin: @nvidia.com/3DVisionStreaming -> C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2016-03-22] (NVIDIA Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-29] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-29] (Google Inc.)
FF SearchPlugin: C:\Users\marouane\AppData\Roaming\Mozilla\Firefox\Profiles\ubeyjb4n.default\searchplugins\norton-safe-search.xml [2015-12-04]
FF HKLM\...\Firefox\Extensions: [sp@avast.com] - E:\avaset\SafePrice\FF
FF Extension: (Avast SafePrice) - E:\avaset\SafePrice\FF [2016-09-19]
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - E:\avaset\WebRep\FF
FF Extension: (Avast Online Security) - E:\avaset\WebRep\FF [2016-09-19]
FF HKU\S-1-5-21-1053301872-3416716514-3691607857-1001\...\Firefox\Extensions: [mozilla_cc2@internetdownloadmanager.com] - C:\Program Files\Internet Download Manager\idmmzcc2.xpi
FF Extension: (IDM integration) - C:\Program Files\Internet Download Manager\idmmzcc2.xpi [2016-03-10]
FF HKU\S-1-5-21-1053301872-3416716514-3691607857-1001\...\Firefox\Extensions: [mozilla_cc@internetdownloadmanager.com] - C:\Users\marouane\AppData\Roaming\IDM\idmmzcc5
FF Extension: (IDM CC) - C:\Users\marouane\AppData\Roaming\IDM\idmmzcc5 [2016-09-19] [non signé]
FF HKU\S-1-5-21-1053301872-3416716514-3691607857-1001\...\SeaMonkey\Extensions: [mozilla_cc@internetdownloadmanager.com] - C:\Users\marouane\AppData\Roaming\IDM\idmmzcc5
FF HKU\S-1-5-21-1053301872-3416716514-3691607857-1001\...\SeaMonkey\Extensions: [mozilla_cc2@internetdownloadmanager.com] - C:\Program Files\Internet Download Manager\idmmzcc2.xpi
Chrome:
=======
CHR DefaultSearchURL: Default -> hxxps://nortonsafe.search.ask.com/web?q={searchTerms}&o=APN11908&prt=cr
CHR DefaultSearchKeyword: Default -> NortonSafe
CHR DefaultSuggestURL: Default -> hxxps://ss-sym.search.ask.com/ss?q={searchTerms}&li=ff
CHR Profile: C:\Users\marouane\AppData\Local\Google\Chrome\User Data\Default [2016-09-19]
CHR Extension: (Google Slides) - C:\Users\marouane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-07-18]
CHR Extension: (Google Docs) - C:\Users\marouane\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-07-18]
CHR Extension: (Google Drive) - C:\Users\marouane\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-07-18]
CHR Extension: (YouTube) - C:\Users\marouane\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-07-18]
CHR Extension: (Norton Home Page for Chrome) - C:\Users\marouane\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejbdobdndcjhdmljipngpeoekdinlohe [2016-07-18]
CHR Extension: (Google Sheets) - C:\Users\marouane\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-07-18]
CHR Extension: (Google Docs hors connexion) - C:\Users\marouane\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-07-18]
CHR Extension: (IDM Integration Module) - C:\Users\marouane\AppData\Local\Google\Chrome\User Data\Default\Extensions\ngpampappnmepgilojfohadhhmbhlaek [2016-07-18]
CHR Extension: (Norton Safe) - C:\Users\marouane\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmgcfemagnogdodbambjhdcmfcpicngl [2016-09-07]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\marouane\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-07-18]
CHR Extension: (Gmail) - C:\Users\marouane\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-07-18]
CHR Extension: (Chrome Media Router) - C:\Users\marouane\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-09-18]
CHR HKLM\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files\Internet Download Manager\IDMGCExt.crx [2016-02-11]
==================== Services (Avec liste blanche) ========================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 avast! Antivirus; E:\avaset\AvastSvc.exe [197128 2016-09-19] (AVAST Software)
R3 Disc Soft Bus Service; C:\Program Files\DAEMON Tools Ultra\DiscSoftBusService.exe [887056 2014-07-10] (Disc Soft Ltd)
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [931200 2016-02-17] (NVIDIA Corporation)
S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.11.292\McCHSvc.exe [239880 2016-02-05] (McAfee, Inc.)
R2 NvNetworkService; C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe [1880960 2016-02-17] (NVIDIA Corporation)
R3 NvStreamNetworkSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe [5316480 2016-02-17] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [2169216 2016-02-17] (NVIDIA Corporation)
R2 SentinelKeysServer; C:\Program Files\Common Files\SafeNet Sentinel\Sentinel Keys Server\sntlkeyssrvr.exe [376832 2013-01-09] (SafeNet, Inc.) [Fichier non signé]
R2 SentinelProtectionServer; C:\Program Files\Common Files\SafeNet Sentinel\Sentinel Protection Server\WinNT\spnsrvnt.exe [1259872 2013-01-09] (SafeNet, Inc)
R2 SentinelSecurityRuntime; C:\Program Files\Common Files\SafeNet Sentinel\Sentinel Security Runtime\sntlsrtsrvr.exe [293216 2013-01-09] (SafeNet, Inc.)
R2 TeamViewer; C:\Program Files\TeamViewer\TeamViewer_Service.exe [7183632 2016-07-18] (TeamViewer GmbH)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [280376 2015-10-30] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23264 2016-09-07] (Microsoft Corporation)
S3 Origin Client Service; "E:\les jeux\medal of honor\Origin\OriginClientService.exe" [X]
===================== Pilotes (Avec liste blanche) ==========================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 aswHwid; C:\WINDOWS\system32\drivers\aswHwid.sys [34008 2016-09-19] (AVAST Software)
R1 aswKbd; C:\WINDOWS\system32\drivers\aswKbd.sys [35096 2016-09-19] (AVAST Software)
R2 aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [92256 2016-09-19] (AVAST Software)
R1 aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [91232 2016-09-19] (AVAST Software)
R0 aswRvrt; C:\WINDOWS\system32\Drivers\aswRvrt.sys [60424 2016-09-19] (AVAST Software)
R1 aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [735488 2016-09-19] (AVAST Software)
R1 aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [434144 2016-09-19] (AVAST Software)
R2 aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [118664 2016-09-19] (AVAST Software)
R0 aswVmm; C:\WINDOWS\system32\Drivers\aswVmm.sys [224616 2016-09-19] (AVAST Software)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [109184 2016-09-05] (Samsung Electronics Co., Ltd.)
R3 dtscsibus; C:\WINDOWS\system32\DRIVERS\dtscsibus.sys [24704 2015-12-05] (Disc Soft Ltd)
S3 GPIO; C:\WINDOWS\System32\drivers\iaiogpio.sys [22016 2015-10-30] (Intel Corporation) [Fichier non signé]
R3 MEI; C:\WINDOWS\System32\drivers\TeeDriverW8.sys [172096 2016-03-22] (Intel Corporation)
R0 MxEFUF; C:\WINDOWS\System32\drivers\MxEFUF32.sys [102728 2016-03-22] (Matrox Graphics Inc.)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [27008 2016-02-17] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad32v.sys [42128 2015-12-18] (NVIDIA Corporation)
S3 rspWhySoSlow; C:\WINDOWS\System32\DRIVERS\rspWhy32.sys [24832 2016-02-06] (Resplendence Software Projects Sp.)
R3 SmbDrvI; C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys [26792 2015-11-30] (Synaptics Incorporated)
S3 ssudserd; C:\WINDOWS\system32\DRIVERS\ssudserd.sys [184192 2014-01-22] (DEVGURU Co., LTD.(www.devguru.co.kr))
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [37400 2015-10-30] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [246104 2015-10-30] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [98648 2015-10-30] (Microsoft Corporation)
S3 WUDFWpdMtp; C:\WINDOWS\system32\DRIVERS\WUDFRd.sys [163328 2015-10-30] (Microsoft Corporation)
R2 zumbus; C:\WINDOWS\System32\drivers\zumbus.sys [41472 2016-03-22] (Microsoft Corporation)
S3 NAVENG; \??\C:\Program Files\Norton Security with Backup\NortonData\22.7.0.76\Definitions\SDSDefs\20160601.040\NAVENG.SYS [X]
S3 NAVEX15; \??\C:\Program Files\Norton Security with Backup\NortonData\22.7.0.76\Definitions\SDSDefs\20160601.040\NAVEX15.SYS [X]
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois - Créés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2016-09-19 21:15 - 2016-09-19 21:15 - 00000000 ____D C:\FRST
2016-09-19 21:03 - 2016-09-19 21:03 - 00001777 _____ C:\Users\marouane\Desktop\ZHPFix[R2].txt
2016-09-19 21:01 - 2016-09-19 21:04 - 00001939 _____ C:\Users\marouane\Desktop\ZHPFixReport.txt
2016-09-19 20:42 - 2016-09-19 20:42 - 00035096 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
2016-09-19 20:04 - 2016-09-19 20:04 - 00001868 _____ C:\Users\Public\Desktop\ZHPFix.lnk
2016-09-19 20:04 - 2016-09-19 20:04 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ZHP
2016-09-19 20:04 - 2016-09-19 20:04 - 00000000 ____D C:\Program Files\ZHPFix
2016-09-19 19:54 - 2016-09-19 20:00 - 03521617 _____ (Nicolas Coolman ) C:\Users\marouane\Downloads\ZHPFix.exe
2016-09-19 19:20 - 2016-09-19 19:20 - 00115230 _____ C:\Users\marouane\Desktop\ZHPDiag2.txt
2016-09-19 15:59 - 2016-09-19 15:59 - 00001278 _____ C:\Users\marouane\Desktop\malwar.txt
2016-09-19 15:12 - 2016-09-19 15:12 - 00001133 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2016-09-19 15:12 - 2016-09-19 15:12 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2016-09-19 15:12 - 2016-09-19 15:12 - 00000000 ____D C:\Program Files\Malwarebytes Anti-Malware
2016-09-19 15:12 - 2016-03-10 14:09 - 00053120 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mwac.sys
2016-09-19 15:12 - 2016-03-10 14:08 - 00126336 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2016-09-19 15:12 - 2016-03-10 14:08 - 00024448 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2016-09-19 14:53 - 2016-09-19 14:54 - 00020480 _____ C:\Users\marouane\Downloads\mbam-setup-2.2.1.1043.exe.3puihsz.partial
2016-09-19 14:27 - 2016-09-19 14:27 - 00003430 _____ C:\Users\marouane\Desktop\AdwCleaner[C0].txt
2016-09-19 14:23 - 2016-09-19 17:41 - 00000000 ____D C:\AdwCleaner
2016-09-19 14:22 - 2016-09-19 14:23 - 03861056 _____ C:\Users\marouane\Desktop\adwcleaner_6.020.exe
2016-09-19 14:16 - 2016-09-19 14:17 - 00004046 _____ C:\Users\marouane\Desktop\Rkill.txt
2016-09-19 14:15 - 2016-09-19 14:16 - 02030536 _____ (Bleeping Computer, LLC) C:\Users\marouane\Downloads\rkill.com
2016-09-19 10:25 - 2016-09-19 10:25 - 00000689 _____ C:\Users\Public\Desktop\Avast Antivirus Gratuit.lnk
2016-09-19 10:25 - 2016-09-19 10:25 - 00000689 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Antivirus Gratuit.lnk
2016-09-19 10:25 - 2016-09-19 10:25 - 00000000 ____D C:\Users\marouane\AppData\Roaming\AVAST Software
2016-09-19 10:24 - 2016-09-19 16:34 - 00735488 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswsnx.sys
2016-09-19 10:24 - 2016-09-19 10:24 - 00921280 _____ (Microsoft Corporation) C:\WINDOWS\ucrtbase.dll
2016-09-19 10:24 - 2016-09-19 10:24 - 00434144 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2016-09-19 10:24 - 2016-09-19 10:24 - 00319760 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2016-09-19 10:24 - 2016-09-19 10:24 - 00224616 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2016-09-19 10:24 - 2016-09-19 10:24 - 00118664 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
2016-09-19 10:24 - 2016-09-19 10:24 - 00092256 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2016-09-19 10:24 - 2016-09-19 10:24 - 00091232 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2016-09-19 10:24 - 2016-09-19 10:24 - 00060424 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2016-09-19 10:24 - 2016-09-19 10:24 - 00053208 _____ (AVAST Software) C:\WINDOWS\avastSS.scr
2016-09-19 10:24 - 2016-09-19 10:24 - 00034008 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswHwid.sys
2016-09-19 09:32 - 2016-09-19 19:25 - 00115260 _____ C:\Users\marouane\Desktop\ZHPDiag.txt
2016-09-19 09:25 - 2016-09-19 21:04 - 00000000 ____D C:\Users\marouane\AppData\Roaming\ZHP
2016-09-19 09:25 - 2016-09-19 20:11 - 00000868 _____ C:\Users\marouane\Desktop\ZHPDiag.lnk
2016-09-19 09:22 - 2016-09-19 09:22 - 00000034 _____ C:\Users\marouane\Desktop\magic.txt
2016-09-16 20:37 - 2016-09-16 20:38 - 00594582 _____ C:\Users\marouane\Downloads\DXF_Halftone_21.zip
2016-09-16 20:36 - 2016-09-16 20:42 - 07731642 _____ C:\Users\marouane\Downloads\الابواب والشبابيك.pdf
2016-09-16 20:36 - 2016-09-16 20:38 - 01228696 _____ C:\Users\marouane\Downloads\كتالوج الستاير لمكاينات السي ان سي (1).pdf
2016-09-16 20:35 - 2016-09-16 20:35 - 00629714 _____ C:\Users\marouane\Downloads\mawunka (1).cdr
2016-09-16 20:25 - 2016-09-16 20:25 - 00095131 _____ C:\Users\marouane\Downloads\اباجورة-شجرة (1).cdr
2016-09-16 20:22 - 2016-09-16 20:23 - 00499885 _____ C:\Users\marouane\Downloads\lit bebe new model.dxf
2016-09-16 20:13 - 2016-09-16 20:13 - 00248320 _____ C:\Users\marouane\Downloads\2 (2).art
2016-09-16 20:12 - 2016-09-16 20:13 - 00163840 _____ C:\Users\marouane\Downloads\سرير حبيبه.art
2016-09-15 21:57 - 2016-09-15 21:57 - 00000000 ____D C:\WINDOWS\LastGood.Tmp
2016-09-14 07:52 - 2016-09-07 06:39 - 01862000 _____ C:\WINDOWS\system32\CoreUIComponents.dll
2016-09-14 07:52 - 2016-09-07 06:39 - 01051584 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2016-09-14 07:52 - 2016-09-07 06:39 - 00601744 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2016-09-14 07:52 - 2016-09-07 06:39 - 00545432 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
2016-09-14 07:52 - 2016-09-07 06:39 - 00138960 _____ (Microsoft Corporation) C:\WINDOWS\system32\sspicli.dll
2016-09-14 07:52 - 2016-09-07 06:37 - 00100704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecdd.sys
2016-09-14 07:52 - 2016-09-07 06:35 - 01174368 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2016-09-14 07:52 - 2016-09-07 06:33 - 00986976 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll
2016-09-14 07:52 - 2016-09-07 06:33 - 00023776 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2016-09-14 07:52 - 2016-09-07 06:25 - 00310112 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifitask.exe
2016-09-14 07:52 - 2016-09-07 06:24 - 00355672 _____ (Microsoft Corporation) C:\WINDOWS\system32\netcfgx.dll
2016-09-14 07:52 - 2016-09-07 06:22 - 02937384 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2016-09-14 07:52 - 2016-09-07 06:22 - 01824264 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2016-09-14 07:52 - 2016-09-07 06:21 - 01300016 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcMon.exe
2016-09-14 07:52 - 2016-09-07 06:12 - 00727752 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcomp.dll
2016-09-14 07:52 - 2016-09-07 06:08 - 00042920 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsass.exe
2016-09-14 07:52 - 2016-09-07 06:07 - 01951848 _____ (Microsoft Corporation) C:\WINDOWS\system32\hevcdecoder.dll
2016-09-14 07:52 - 2016-09-07 05:47 - 00074752 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsCSP.dll
2016-09-14 07:52 - 2016-09-07 05:42 - 00050176 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosHostClient.dll
2016-09-14 07:52 - 2016-09-07 05:39 - 00103424 _____ (Microsoft Corporation) C:\WINDOWS\system32\wificonnapi.dll
2016-09-14 07:52 - 2016-09-07 05:39 - 00023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\mapsupdatetask.dll
2016-09-14 07:52 - 2016-09-07 05:38 - 00059392 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosStorage.dll
2016-09-14 07:52 - 2016-09-07 05:37 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsBtSvc.dll
2016-09-14 07:52 - 2016-09-07 05:36 - 00054784 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshost.dll
2016-09-14 07:52 - 2016-09-07 05:35 - 00256512 _____ (Microsoft Corporation) C:\WINDOWS\system32\unimdm.tsp
2016-09-14 07:52 - 2016-09-07 05:35 - 00131072 _____ (Microsoft Corporation) C:\WINDOWS\system32\usbceip.dll
2016-09-14 07:52 - 2016-09-07 05:34 - 00203776 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshostcore.dll
2016-09-14 07:52 - 2016-09-07 05:33 - 00527360 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneProviders.dll
2016-09-14 07:52 - 2016-09-07 05:33 - 00122880 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Geolocation.dll
2016-09-14 07:52 - 2016-09-07 05:32 - 06529024 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanmm.dll
2016-09-14 07:52 - 2016-09-07 05:32 - 00442368 _____ (Microsoft Corporation) C:\WINDOWS\system32\MBMediaManager.dll
2016-09-14 07:52 - 2016-09-07 05:32 - 00386048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.LowLevel.dll
2016-09-14 07:52 - 2016-09-07 05:32 - 00292864 _____ (Microsoft Corporation) C:\WINDOWS\system32\dot3ui.dll
2016-09-14 07:52 - 2016-09-07 05:32 - 00213504 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkBindingEngineMigPlugin.dll
2016-09-14 07:52 - 2016-09-07 05:31 - 00590336 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneService.dll
2016-09-14 07:52 - 2016-09-07 05:31 - 00335872 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2016-09-14 07:52 - 2016-09-07 05:30 - 18676224 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2016-09-14 07:52 - 2016-09-07 05:30 - 00395776 _____ (Microsoft Corporation) C:\WINDOWS\system32\WlanMediaManager.dll
2016-09-14 07:52 - 2016-09-07 05:30 - 00349696 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapConfiguration.dll
2016-09-14 07:52 - 2016-09-07 05:30 - 00309248 _____ (Microsoft Corporation) C:\WINDOWS\system32\IPSECSVC.DLL
2016-09-14 07:52 - 2016-09-07 05:29 - 19350016 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2016-09-14 07:52 - 2016-09-07 05:29 - 00442368 _____ (Microsoft Corporation) C:\WINDOWS\system32\dlnashext.dll
2016-09-14 07:52 - 2016-09-07 05:29 - 00439296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.UX.EapRequestHandler.dll
2016-09-14 07:52 - 2016-09-07 05:28 - 04143104 _____ (Microsoft Corporation) C:\WINDOWS\system32\WlanMM.dll
2016-09-14 07:52 - 2016-09-07 05:28 - 01762816 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnidui.dll
2016-09-14 07:52 - 2016-09-07 05:28 - 01226752 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcnwiz.dll
2016-09-14 07:52 - 2016-09-07 05:28 - 00846336 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasgcw.dll
2016-09-14 07:52 - 2016-09-07 05:28 - 00800768 _____ (Microsoft Corporation) C:\WINDOWS\system32\JpMapControl.dll
2016-09-14 07:52 - 2016-09-07 05:28 - 00674816 _____ (Microsoft Corporation) C:\WINDOWS\system32\MiracastReceiver.dll
2016-09-14 07:52 - 2016-09-07 05:28 - 00611840 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll
2016-09-14 07:52 - 2016-09-07 05:28 - 00413696 _____ (Microsoft Corporation) C:\WINDOWS\system32\WLanConn.dll
2016-09-14 07:52 - 2016-09-07 05:28 - 00385536 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanconn.dll
2016-09-14 07:52 - 2016-09-07 05:28 - 00284160 _____ (Microsoft Corporation) C:\WINDOWS\system32\eappcfg.dll
2016-09-14 07:52 - 2016-09-07 05:27 - 00957440 _____ (Microsoft Corporation) C:\WINDOWS\system32\srmclient.dll
2016-09-14 07:52 - 2016-09-07 05:27 - 00784896 _____ (Microsoft Corporation) C:\WINDOWS\system32\NMAA.dll
2016-09-14 07:52 - 2016-09-07 05:27 - 00481792 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUDFx.dll
2016-09-14 07:52 - 2016-09-07 05:27 - 00477184 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieui.dll
2016-09-14 07:52 - 2016-09-07 05:27 - 00401408 _____ (Microsoft Corporation) C:\WINDOWS\system32\icsvc.dll
2016-09-14 07:52 - 2016-09-07 05:27 - 00230400 _____ (Microsoft Corporation) C:\WINDOWS\system32\webcheck.dll
2016-09-14 07:52 - 2016-09-07 05:26 - 02050048 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2016-09-14 07:52 - 2016-09-07 05:26 - 01497088 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPDMC.exe
2016-09-14 07:52 - 2016-09-07 05:26 - 00754176 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcss.dll
2016-09-14 07:52 - 2016-09-07 05:26 - 00711680 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlCore.dll
2016-09-14 07:52 - 2016-09-07 05:26 - 00687616 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2016-09-14 07:52 - 2016-09-07 05:26 - 00501760 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2016-09-14 07:52 - 2016-09-07 05:25 - 06296064 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll
2016-09-14 07:52 - 2016-09-07 05:25 - 01526272 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2016-09-14 07:52 - 2016-09-07 05:25 - 00952320 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2016-09-14 07:52 - 2016-09-07 05:24 - 01028608 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifinetworkmanager.dll
2016-09-14 07:52 - 2016-09-07 05:24 - 00785920 _____ (Microsoft Corporation) C:\WINDOWS\system32\mprddm.dll
2016-09-14 07:52 - 2016-09-07 05:23 - 01364480 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtsvc.dll
2016-09-14 07:52 - 2016-09-07 05:22 - 12134400 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2016-09-14 07:52 - 2016-09-07 05:21 - 00620544 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsFilt.dll
2016-09-14 07:52 - 2016-09-07 05:20 - 00401920 _____ (Microsoft Corporation) C:\WINDOWS\system32\StikyNot.exe
2016-09-14 07:52 - 2016-09-07 05:19 - 03663360 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2016-09-14 07:52 - 2016-09-07 05:19 - 03555840 _____ (Microsoft Corporation) C:\WINDOWS\system32\xpsrchvw.exe
2016-09-14 07:52 - 2016-09-07 05:19 - 00064512 _____ (Microsoft Corporation) C:\WINDOWS\system32\ImplatSetup.dll
2016-09-14 07:52 - 2016-09-07 05:18 - 05205504 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
2016-09-14 07:52 - 2016-09-07 05:18 - 01735680 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2016-09-14 07:52 - 2016-09-07 05:17 - 02679808 _____ (Microsoft Corporation) C:\WINDOWS\system32\netshell.dll
2016-09-14 07:52 - 2016-09-07 05:17 - 01931776 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll
2016-09-14 07:52 - 2016-09-07 05:17 - 01902592 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2016-09-14 07:52 - 2016-09-07 05:17 - 00854016 _____ (Microsoft Corporation) C:\WINDOWS\system32\termsrv.dll
2016-09-14 07:52 - 2016-09-07 05:16 - 03671040 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2016-09-14 07:52 - 2016-09-07 05:16 - 02361856 _____ (Microsoft Corporation) C:\WINDOWS\system32\mmcndmgr.dll
2016-09-14 07:52 - 2016-09-07 05:16 - 02217984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wpc.dll
2016-09-14 07:52 - 2016-09-07 05:15 - 05659136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2016-09-14 07:52 - 2016-09-07 05:15 - 01900544 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2016-09-14 07:52 - 2016-09-07 05:15 - 01626112 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2016-09-14 07:52 - 2016-09-07 05:15 - 01249280 _____ (Microsoft Corporation) C:\WINDOWS\system32\usercpl.dll
2016-09-14 07:52 - 2016-09-07 05:14 - 06743040 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2016-09-14 07:52 - 2016-09-07 05:14 - 02553856 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2016-09-14 07:52 - 2016-09-07 05:14 - 02177024 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmSvc.dll
2016-09-14 07:52 - 2016-09-07 05:11 - 03065344 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstsc.exe
2016-09-14 07:52 - 2016-09-07 05:11 - 01106944 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpeechPal.dll
2016-09-14 07:52 - 2016-09-07 05:10 - 00712704 _____ (Microsoft Corporation) C:\WINDOWS\system32\RemoteNaturalLanguage.dll
2016-09-14 07:52 - 2016-09-07 05:09 - 00824832 _____ (Microsoft Corporation) C:\WINDOWS\system32\adtschema.dll
2016-09-14 07:52 - 2016-09-07 05:09 - 00063488 _____ (Microsoft Corporation) C:\WINDOWS\system32\msobjs.dll
2016-09-14 07:52 - 2016-09-07 05:09 - 00049664 _____ (Microsoft Corporation) C:\WINDOWS\system32\csrsrv.dll
2016-09-14 07:52 - 2016-09-07 02:15 - 00445765 _____ C:\WINDOWS\system32\ApnDatabase.xml
2016-09-14 07:51 - 2016-09-07 06:41 - 00229216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys
2016-09-14 07:51 - 2016-09-07 06:40 - 01561392 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2016-09-14 07:51 - 2016-09-07 06:39 - 00628440 _____ (Microsoft Corporation) C:\WINDOWS\system32\kernel32.dll
2016-09-14 07:51 - 2016-09-07 06:37 - 00572272 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskschd.dll
2016-09-14 07:51 - 2016-09-07 06:35 - 00433504 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcasvc.dll
2016-09-14 07:51 - 2016-09-07 06:24 - 02180128 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2016-09-14 07:51 - 2016-09-07 06:24 - 01349632 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll
2016-09-14 07:51 - 2016-09-07 06:24 - 01334680 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpmde.dll
2016-09-14 07:51 - 2016-09-07 06:24 - 01118200 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetsrc.dll
2016-09-14 07:51 - 2016-09-07 06:24 - 00980352 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfasfsrcsnk.dll
2016-09-14 07:51 - 2016-09-07 06:24 - 00925064 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2016-09-14 07:51 - 2016-09-07 06:24 - 00709176 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2016-09-14 07:51 - 2016-09-07 06:24 - 00511312 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll
2016-09-14 07:51 - 2016-09-07 06:24 - 00501600 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupEngine.dll
2016-09-14 07:51 - 2016-09-07 06:24 - 00496360 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmdrmdev.dll
2016-09-14 07:51 - 2016-09-07 06:24 - 00451928 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFCaptureEngine.dll
2016-09-14 07:51 - 2016-09-07 06:22 - 00703840 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2016-09-14 07:51 - 2016-09-07 06:21 - 21123320 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2016-09-14 07:51 - 2016-09-07 06:21 - 05240952 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2016-09-14 07:51 - 2016-09-07 06:21 - 04074160 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2016-09-14 07:51 - 2016-09-07 06:21 - 00613112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2016-09-14 07:51 - 2016-09-07 06:21 - 00465760 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
2016-09-14 07:51 - 2016-09-07 06:20 - 05598832 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2016-09-14 07:51 - 2016-09-07 06:20 - 01355336 _____ (Microsoft Corporation) C:\WINDOWS\system32\propsys.dll
2016-09-14 07:51 - 2016-09-07 06:20 - 01337680 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2016-09-14 07:51 - 2016-09-07 06:20 - 00836752 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
2016-09-14 07:51 - 2016-09-07 06:20 - 00633192 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppwinob.dll
2016-09-14 07:51 - 2016-09-07 06:20 - 00569744 _____ (Microsoft Corporation) C:\WINDOWS\system32\SHCore.dll
2016-09-14 07:51 - 2016-09-07 06:20 - 00036136 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplicationFrameHost.exe
2016-09-14 07:51 - 2016-09-07 06:19 - 00995296 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipUp.exe
2016-09-14 07:51 - 2016-09-07 06:19 - 00549728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ClipSp.sys
2016-09-14 07:51 - 2016-09-07 06:19 - 00510872 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipSVC.dll
2016-09-14 07:51 - 2016-09-07 06:19 - 00505136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2016-09-14 07:51 - 2016-09-07 06:19 - 00294752 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2016-09-14 07:51 - 2016-09-07 06:13 - 02186856 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll
2016-09-14 07:51 - 2016-09-07 06:13 - 01865584 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d9.dll
2016-09-14 07:51 - 2016-09-07 06:12 - 02195632 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10warp.dll
2016-09-14 07:51 - 2016-09-07 06:12 - 01712992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2016-09-14 07:51 - 2016-09-07 06:12 - 01522152 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll
2016-09-14 07:51 - 2016-09-07 06:12 - 01174008 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2016-09-14 07:51 - 2016-09-07 06:11 - 00381784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2016-09-14 07:51 - 2016-09-07 06:11 - 00180064 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys
2016-09-14 07:51 - 2016-09-07 06:10 - 00228864 _____ (Microsoft Corporation) C:\WINDOWS\system32\FileHistory.exe
2016-09-14 07:51 - 2016-09-07 06:08 - 28083144 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecsRaw.dll
2016-09-14 07:51 - 2016-09-07 06:08 - 01861984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2016-09-14 07:51 - 2016-09-07 06:07 - 00403920 _____ (Microsoft Corporation) C:\WINDOWS\system32\DMRServer.dll
2016-09-14 07:51 - 2016-09-07 06:07 - 00253080 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpeffects.dll
2016-09-14 07:51 - 2016-09-07 05:43 - 00239616 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcl.dll
2016-09-14 07:51 - 2016-09-07 05:42 - 00572928 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll
2016-09-14 07:51 - 2016-09-07 05:40 - 00023040 _____ (Microsoft Corporation) C:\WINDOWS\system32\cmintegrator.dll
2016-09-14 07:51 - 2016-09-07 05:39 - 00074752 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecureTimeAggregator.dll
2016-09-14 07:51 - 2016-09-07 05:38 - 00584704 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbonRes.dll
2016-09-14 07:51 - 2016-09-07 05:38 - 00038912 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsmprovhost.exe
2016-09-14 07:51 - 2016-09-07 05:37 - 00145408 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmAuto.dll
2016-09-14 07:51 - 2016-09-07 05:37 - 00040448 _____ (Microsoft Corporation) C:\WINDOWS\system32\fodhelper.exe
2016-09-14 07:51 - 2016-09-07 05:37 - 00026624 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmAgent.dll
2016-09-14 07:51 - 2016-09-07 05:36 - 00250880 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppLockerCSP.dll
2016-09-14 07:51 - 2016-09-07 05:36 - 00102912 _____ (Microsoft Corporation) C:\WINDOWS\system32\shsetup.dll
2016-09-14 07:51 - 2016-09-07 05:36 - 00091648 _____ (Microsoft Corporation) C:\WINDOWS\system32\MediaFoundation.DefaultPerceptionProvider.dll
2016-09-14 07:51 - 2016-09-07 05:36 - 00074240 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2016-09-14 07:51 - 2016-09-07 05:36 - 00039424 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmTasks.dll
2016-09-14 07:51 - 2016-09-07 05:35 - 09324032 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmploc.DLL
2016-09-14 07:51 - 2016-09-07 05:35 - 00393216 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbemcomn.dll
2016-09-14 07:51 - 2016-09-07 05:35 - 00205312 _____ (Microsoft Corporation) C:\WINDOWS\system32\oemlicense.dll
2016-09-14 07:51 - 2016-09-07 05:35 - 00115712 _____ (Microsoft Corporation) C:\WINDOWS\system32\mmcshext.dll
2016-09-14 07:51 - 2016-09-07 05:35 - 00052736 _____ (Microsoft Corporation) C:\WINDOWS\system32\vsstrace.dll
2016-09-14 07:51 - 2016-09-07 05:34 - 00300032 _____ (Microsoft Corporation) C:\WINDOWS\system32\mmcbase.dll
2016-09-14 07:51 - 2016-09-07 05:34 - 00163840 _____ (Microsoft Corporation) C:\WINDOWS\system32\cic.dll
2016-09-14 07:51 - 2016-09-07 05:34 - 00125440 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdrsvc.dll
2016-09-14 07:51 - 2016-09-07 05:34 - 00104960 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdshext.dll
2016-09-14 07:51 - 2016-09-07 05:33 - 00497664 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
2016-09-14 07:51 - 2016-09-07 05:33 - 00290304 _____ (Microsoft Corporation) C:\WINDOWS\system32\WmpDui.dll
2016-09-14 07:51 - 2016-09-07 05:33 - 00238080 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmWmiPl.dll
2016-09-14 07:51 - 2016-09-07 05:33 - 00200704 _____ (Microsoft Corporation) C:\WINDOWS\system32\DisplayManager.dll
2016-09-14 07:51 - 2016-09-07 05:33 - 00187392 _____ (Microsoft Corporation) C:\WINDOWS\system32\MicrosoftAccountCloudAP.dll
2016-09-14 07:51 - 2016-09-07 05:33 - 00164352 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsrv.dll
2016-09-14 07:51 - 2016-09-07 05:33 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\IdCtrls.dll
2016-09-14 07:51 - 2016-09-07 05:32 - 00581632 _____ (Microsoft Corporation) C:\WINDOWS\system32\apphelp.dll
2016-09-14 07:51 - 2016-09-07 05:32 - 00465408 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2016-09-14 07:51 - 2016-09-07 05:32 - 00339456 _____ (Microsoft Corporation) C:\WINDOWS\system32\azroleui.dll
2016-09-14 07:51 - 2016-09-07 05:32 - 00260096 _____ (Microsoft Corporation) C:\WINDOWS\system32\apprepsync.dll
2016-09-14 07:51 - 2016-09-07 05:31 - 09920512 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2016-09-14 07:51 - 2016-09-07 05:31 - 01985024 _____ (Microsoft Corporation) C:\WINDOWS\system32\certmgr.dll
2016-09-14 07:51 - 2016-09-07 05:31 - 01496064 _____ (Microsoft Corporation) C:\WINDOWS\system32\aitstatic.exe
2016-09-14 07:51 - 2016-09-07 05:31 - 00753664 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctfuimanager.dll
2016-09-14 07:51 - 2016-09-07 05:31 - 00579072 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpprefcl.dll
2016-09-14 07:51 - 2016-09-07 05:31 - 00541184 _____ (Microsoft Corporation) C:\WINDOWS\system32\GamePanel.exe
2016-09-14 07:51 - 2016-09-07 05:31 - 00282624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2016-09-14 07:51 - 2016-09-07 05:31 - 00262656 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack_win.dll
2016-09-14 07:51 - 2016-09-07 05:31 - 00261632 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseAppMgmtSvc.dll
2016-09-14 07:51 - 2016-09-07 05:31 - 00246784 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadcloudap.dll
2016-09-14 07:51 - 2016-09-07 05:31 - 00190464 _____ (Microsoft Corporation) C:\WINDOWS\system32\apprepapi.dll
2016-09-14 07:51 - 2016-09-07 05:30 - 00471552 _____ (Microsoft Corporation) C:\WINDOWS\system32\filemgmt.dll
2016-09-14 07:51 - 2016-09-07 05:30 - 00425472 _____ (Microsoft Corporation) C:\WINDOWS\system32\WalletService.dll
2016-09-14 07:51 - 2016-09-07 05:30 - 00202752 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsqmcons.exe
2016-09-14 07:51 - 2016-09-07 05:29 - 00320000 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhcfg.dll
2016-09-14 07:51 - 2016-09-07 05:29 - 00283136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BioFeedback.dll
2016-09-14 07:51 - 2016-09-07 05:29 - 00250880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2016-09-14 07:51 - 2016-09-07 05:29 - 00238592 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecsExt.dll
2016-09-14 07:51 - 2016-09-07 05:29 - 00230912 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXTaskFactory.dll
2016-09-14 07:51 - 2016-09-07 05:28 - 00879616 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebcamUi.dll
2016-09-14 07:51 - 2016-09-07 05:28 - 00654336 _____ (Microsoft Corporation) C:\WINDOWS\system32\winipcsecproc_ssp.dll
2016-09-14 07:51 - 2016-09-07 05:28 - 00638976 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmIndexer.dll
2016-09-14 07:51 - 2016-09-07 05:28 - 00604160 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
2016-09-14 07:51 - 2016-09-07 05:28 - 00489984 _____ (Microsoft Corporation) C:\WINDOWS\system32\mbsmsapi.dll
2016-09-14 07:51 - 2016-09-07 05:28 - 00445952 _____ (Microsoft Corporation) C:\WINDOWS\system32\PsmServiceExtHost.dll
2016-09-14 07:51 - 2016-09-07 05:28 - 00413184 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll
2016-09-14 07:51 - 2016-09-07 05:28 - 00373248 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.UserAccountsHandlers.dll
2016-09-14 07:51 - 2016-09-07 05:28 - 00340480 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv.sys
2016-09-14 07:51 - 2016-09-07 05:28 - 00337920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Geolocation.dll
2016-09-14 07:51 - 2016-09-07 05:28 - 00334848 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredProvDataModel.dll
2016-09-14 07:51 - 2016-09-07 05:28 - 00296448 _____ (Microsoft Corporation) C:\WINDOWS\system32\sysdm.cpl
2016-09-14 07:51 - 2016-09-07 05:28 - 00282624 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2016-09-14 07:51 - 2016-09-07 05:28 - 00186368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srvnet.sys
2016-09-14 07:51 - 2016-09-07 05:27 - 01746944 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Bluetooth.dll
2016-09-14 07:51 - 2016-09-07 05:27 - 01139712 _____ (Microsoft Corporation) C:\WINDOWS\system32\vssapi.dll
2016-09-14 07:51 - 2016-09-07 05:27 - 00963072 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_health.dll
2016-09-14 07:51 - 2016-09-07 05:27 - 00824832 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Vpn.dll
2016-09-14 07:51 - 2016-09-07 05:27 - 00792576 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2016-09-14 07:51 - 2016-09-07 05:27 - 00765440 _____ (Microsoft Corporation) C:\WINDOWS\system32\nettrace.dll
2016-09-14 07:51 - 2016-09-07 05:27 - 00708608 _____ (Microsoft Corporation) C:\WINDOWS\system32\CPFilters.dll
2016-09-14 07:51 - 2016-09-07 05:27 - 00585216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.AccountsControl.dll
2016-09-14 07:51 - 2016-09-07 05:27 - 00525824 _____ (Microsoft Corporation) C:\WINDOWS\system32\configurationclient.dll
2016-09-14 07:51 - 2016-09-07 05:27 - 00521728 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmdrmsdk.dll
2016-09-14 07:51 - 2016-09-07 05:27 - 00517632 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToManager.dll
2016-09-14 07:51 - 2016-09-07 05:27 - 00502272 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicePairing.dll
2016-09-14 07:51 - 2016-09-07 05:27 - 00400896 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll
2016-09-14 07:51 - 2016-09-07 05:27 - 00372224 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppBroker.dll
2016-09-14 07:51 - 2016-09-07 05:27 - 00100864 _____ (Microsoft Corporation) C:\WINDOWS\system32\offlinelsa.dll
2016-09-14 07:51 - 2016-09-07 05:26 - 01915392 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSAJApi.dll
2016-09-14 07:51 - 2016-09-07 05:26 - 01537536 _____ (Microsoft Corporation) C:\WINDOWS\system32\pla.dll
2016-09-14 07:51 - 2016-09-07 05:26 - 01508352 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmsipc.dll
2016-09-14 07:51 - 2016-09-07 05:26 - 01223168 _____ (Microsoft Corporation) C:\WINDOWS\system32\RecoveryDrive.exe
2016-09-14 07:51 - 2016-09-07 05:26 - 01035776 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplicationFrame.dll
2016-09-14 07:51 - 2016-09-07 05:26 - 00854528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll
2016-09-14 07:51 - 2016-09-07 05:26 - 00826368 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2016-09-14 07:51 - 2016-09-07 05:26 - 00740352 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedStartModel.dll
2016-09-14 07:51 - 2016-09-07 05:26 - 00738816 _____ (Microsoft Corporation) C:\WINDOWS\system32\appwiz.cpl
2016-09-14 07:51 - 2016-09-07 05:26 - 00736768 _____ (Microsoft Corporation) C:\WINDOWS\system32\SmartcardCredentialProvider.dll
2016-09-14 07:51 - 2016-09-07 05:26 - 00706048 _____ (Microsoft Corporation) C:\WINDOWS\system32\usermgr.dll
2016-09-14 07:51 - 2016-09-07 05:26 - 00673280 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApiPublic.dll
2016-09-14 07:51 - 2016-09-07 05:26 - 00645632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Storage.Search.dll
2016-09-14 07:51 - 2016-09-07 05:26 - 00638464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.dll
2016-09-14 07:51 - 2016-09-07 05:26 - 00482816 _____ (Microsoft Corporation) C:\WINDOWS\system32\duser.dll
2016-09-14 07:51 - 2016-09-07 05:26 - 00434688 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2016-09-14 07:51 - 2016-09-07 05:26 - 00233984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb10.sys
2016-09-14 07:51 - 2016-09-07 05:25 - 02578432 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameux.dll
2016-09-14 07:51 - 2016-09-07 05:25 - 01944576 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputService.dll
2016-09-14 07:51 - 2016-09-07 05:25 - 01467392 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2016-09-14 07:51 - 2016-09-07 05:25 - 01388032 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2016-09-14 07:51 - 2016-09-07 05:25 - 01139712 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll
2016-09-14 07:51 - 2016-09-07 05:25 - 01105920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Audio.dll
2016-09-14 07:51 - 2016-09-07 05:25 - 01043456 _____ (Microsoft Corporation) C:\WINDOWS\system32\VSSVC.exe
2016-09-14 07:51 - 2016-09-07 05:25 - 00759808 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2016-09-14 07:51 - 2016-09-07 05:25 - 00673280 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll
2016-09-14 07:51 - 2016-09-07 05:25 - 00489984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll
2016-09-14 07:51 - 2016-09-07 05:25 - 00207872 _____ (Microsoft Corporation) C:\WINDOWS\system32\licensingdiag.exe
2016-09-14 07:51 - 2016-09-07 05:24 - 03695104 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_47.dll
2016-09-14 07:51 - 2016-09-07 05:24 - 01276928 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_fs.dll
2016-09-14 07:51 - 2016-09-07 05:24 - 01070592 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagperf.dll
2016-09-14 07:51 - 2016-09-07 05:24 - 00783872 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXService.dll
2016-09-14 07:51 - 2016-09-07 05:24 - 00764928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Cred.dll
2016-09-14 07:51 - 2016-09-07 05:24 - 00667648 _____ (Microsoft Corporation) C:\WINDOWS\system32\AzureSettingSyncProvider.dll
2016-09-14 07:51 - 2016-09-07 05:24 - 00489984 _____ (Microsoft Corporation) C:\WINDOWS\system32\ShareHost.dll
2016-09-14 07:51 - 2016-09-07 05:23 - 01562112 _____ (Microsoft Corporation) C:\WINDOWS\system32\mmc.exe
2016-09-14 07:51 - 2016-09-07 05:23 - 01309696 _____ (Microsoft Corporation) C:\WINDOWS\system32\wdc.dll
2016-09-14 07:51 - 2016-09-07 05:23 - 00980480 _____ (Microsoft Corporation) C:\WINDOWS\system32\winipcsecproc.dll
2016-09-14 07:51 - 2016-09-07 05:22 - 12585472 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2016-09-14 07:51 - 2016-09-07 05:22 - 02106368 _____ (Microsoft Corporation) C:\WINDOWS\system32\storagewmi.dll
2016-09-14 07:51 - 2016-09-07 05:22 - 01987072 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2016-09-14 07:51 - 2016-09-07 05:22 - 01552896 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidsvc.dll
2016-09-14 07:51 - 2016-09-07 05:22 - 00778240 _____ (Microsoft Corporation) C:\WINDOWS\system32\MsSpellCheckingFacility.dll
2016-09-14 07:51 - 2016-09-07 05:22 - 00694272 _____ (Microsoft Corporation) C:\WINDOWS\system32\uDWM.dll
2016-09-14 07:51 - 2016-09-07 05:21 - 02527232 _____ (Microsoft Corporation) C:\WINDOWS\system32\mispace.dll
2016-09-14 07:51 - 2016-09-07 05:21 - 01063936 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpedit.dll
2016-09-14 07:51 - 2016-09-07 05:21 - 00639488 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2016-09-14 07:51 - 2016-09-07 05:20 - 03196928 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2016-09-14 07:51 - 2016-09-07 05:20 - 01044992 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdengin2.dll
2016-09-14 07:51 - 2016-09-07 05:20 - 00900096 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorDataService.exe
2016-09-14 07:51 - 2016-09-07 05:20 - 00742400 _____ (Microsoft Corporation) C:\WINDOWS\system32\IKEEXT.DLL
2016-09-14 07:51 - 2016-09-07 05:20 - 00581632 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.dll
2016-09-14 07:51 - 2016-09-07 05:19 - 06471168 _____ (Microsoft Corporation) C:\WINDOWS\system32\mspaint.exe
2016-09-14 07:51 - 2016-09-07 05:19 - 05325824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2016-09-14 07:51 - 2016-09-07 05:19 - 04078592 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbgeng.dll
2016-09-14 07:51 - 2016-09-07 05:19 - 02798080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2016-09-14 07:51 - 2016-09-07 05:19 - 01801216 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll
2016-09-14 07:51 - 2016-09-07 05:19 - 01072128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.Http.dll
2016-09-14 07:51 - 2016-09-07 05:19 - 00515584 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhotoScreensaver.scr
2016-09-14 07:51 - 2016-09-07 05:19 - 00503296 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSync.dll
2016-09-14 07:51 - 2016-09-07 05:18 - 02973696 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2016-09-14 07:51 - 2016-09-07 05:18 - 01635840 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebSync.dll
2016-09-14 07:51 - 2016-09-07 05:18 - 00592384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.dll
2016-09-14 07:51 - 2016-09-07 05:18 - 00450560 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncController.dll
2016-09-14 07:51 - 2016-09-07 05:17 - 03459584 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbon.dll
2016-09-14 07:51 - 2016-09-07 05:17 - 02880512 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsThresholdAdminFlowUI.dll
2016-09-14 07:51 - 2016-09-07 05:17 - 02062336 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2016-09-14 07:51 - 2016-09-07 05:17 - 01502208 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2016-09-14 07:51 - 2016-09-07 05:17 - 00359936 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenrollengine.dll
2016-09-14 07:51 - 2016-09-07 05:16 - 04759040 _____ (Microsoft Corporation) C:\WINDOWS\system32\d2d1.dll
2016-09-14 07:51 - 2016-09-07 05:16 - 04412928 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
2016-09-14 07:51 - 2016-09-07 05:16 - 02680320 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll
2016-09-14 07:51 - 2016-09-07 05:16 - 02155008 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2016-09-14 07:51 - 2016-09-07 05:16 - 01984000 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2016-09-14 07:51 - 2016-09-07 05:16 - 01582080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2016-09-14 07:51 - 2016-09-07 05:16 - 01087488 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2016-09-14 07:51 - 2016-09-07 05:16 - 00574976 _____ (Microsoft Corporation) C:\WINDOWS\system32\hgcpl.dll
2016-09-14 07:51 - 2016-09-07 05:16 - 00232448 _____ (Microsoft Corporation) C:\WINDOWS\system32\notepad.exe
2016-09-14 07:51 - 2016-09-07 05:16 - 00232448 _____ (Microsoft Corporation) C:\WINDOWS\notepad.exe
2016-09-14 07:51 - 2016-09-07 05:15 - 02772480 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2016-09-14 07:51 - 2016-09-07 05:15 - 02604032 _____ (Microsoft Corporation) C:\WINDOWS\system32\CertEnroll.dll
2016-09-14 07:51 - 2016-09-07 05:15 - 01448960 _____ (Microsoft Corporation) C:\WINDOWS\system32\dui70.dll
2016-09-14 07:51 - 2016-09-07 05:15 - 00835072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Streaming.dll
2016-09-14 07:51 - 2016-09-07 05:15 - 00802816 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntshrui.dll
2016-09-14 07:51 - 2016-09-07 05:15 - 00748032 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2016-09-14 07:51 - 2016-09-07 05:15 - 00573440 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserLanguagesCpl.dll
2016-09-14 07:51 - 2016-09-07 05:15 - 00452608 _____ (Microsoft Corporation) C:\WINDOWS\system32\w32time.dll
2016-09-14 07:51 - 2016-09-07 05:14 - 02519552 _____ (Microsoft Corporation) C:\WINDOWS\system32\themecpl.dll
2016-09-14 07:51 - 2016-09-07 05:14 - 02000896 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll
2016-09-14 07:51 - 2016-09-07 05:14 - 01799680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
2016-09-14 07:51 - 2016-09-07 05:14 - 01708032 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActiveSyncProvider.dll
2016-09-14 07:51 - 2016-09-07 05:12 - 01075200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Shell.dll
2016-09-14 07:51 - 2016-09-07 05:12 - 00754176 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll
2016-09-14 07:51 - 2016-09-07 05:12 - 00339456 _____ (Microsoft Corporation) C:\WINDOWS\system32\certcli.dll
2016-09-14 07:51 - 2016-09-07 05:10 - 00942592 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2016-09-14 07:51 - 2016-09-07 05:10 - 00627200 _____ (Microsoft Corporation) C:\WINDOWS\system32\certca.dll
2016-09-14 07:51 - 2016-09-07 05:10 - 00438784 _____ (Microsoft Corporation) C:\WINDOWS\system32\DbgModel.dll
2016-09-14 07:50 - 2016-09-07 06:40 - 00876504 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2016-09-14 07:50 - 2016-09-07 06:40 - 00771120 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2016-09-14 07:50 - 2016-09-07 06:39 - 05794144 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2016-09-14 07:50 - 2016-09-07 06:39 - 00927080 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2016-09-14 07:50 - 2016-09-07 06:39 - 00845568 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll
2016-09-14 07:50 - 2016-09-07 06:39 - 00354144 _____ (Microsoft Corporation) C:\WINDOWS\system32\halmacpi.dll
2016-09-14 07:50 - 2016-09-07 06:39 - 00354144 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2016-09-14 07:50 - 2016-09-07 06:33 - 02885680 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSService.dll
2016-09-14 07:50 - 2016-09-07 06:33 - 02026736 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2016-09-14 07:50 - 2016-09-07 06:23 - 00104800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ufxsynopsys.sys
2016-09-14 07:50 - 2016-09-07 06:22 - 00957608 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2016-09-14 07:50 - 2016-09-07 06:19 - 00360480 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcryptprimitives.dll
2016-09-14 07:50 - 2016-09-07 05:47 - 00072192 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
2016-09-14 07:50 - 2016-09-07 05:46 - 00088576 _____ (Microsoft Corporation) C:\WINDOWS\system32\olepro32.dll
2016-09-14 07:50 - 2016-09-07 05:41 - 00094720 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataTimeUtil.dll
2016-09-14 07:50 - 2016-09-07 05:41 - 00025600 _____ (Microsoft Corporation) C:\WINDOWS\system32\odbcconf.dll
2016-09-14 07:50 - 2016-09-07 05:40 - 13018624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2016-09-14 07:50 - 2016-09-07 05:39 - 00053760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.ProxyStub.dll
2016-09-14 07:50 - 2016-09-07 05:38 - 00012288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\MTConfig.sys
2016-09-14 07:50 - 2016-09-07 05:37 - 00035328 _____ (Microsoft Corporation) C:\WINDOWS\system32\deviceassociation.dll
2016-09-14 07:50 - 2016-09-07 05:36 - 00047104 _____ (Microsoft Corporation) C:\WINDOWS\system32\fwcfg.dll
2016-09-14 07:50 - 2016-09-07 05:35 - 00024064 _____ (Microsoft Corporation) C:\WINDOWS\system32\CheckNetIsolation.exe
2016-09-14 07:50 - 2016-09-07 05:34 - 00267776 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
2016-09-14 07:50 - 2016-09-07 05:34 - 00187392 _____ (Microsoft Corporation) C:\WINDOWS\system32\PeerDist.dll
2016-09-14 07:50 - 2016-09-07 05:34 - 00059392 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiarpc.dll
2016-09-14 07:50 - 2016-09-07 05:33 - 00310784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\HdAudio.sys
2016-09-14 07:50 - 2016-09-07 05:33 - 00224256 _____ (Microsoft Corporation) C:\WINDOWS\system32\prnntfy.dll
2016-09-14 07:50 - 2016-09-07 05:32 - 00173056 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUDFPlatform.dll
2016-09-14 07:50 - 2016-09-07 05:31 - 00453632 _____ (Microsoft Corporation) C:\WINDOWS\system32\AdmTmpl.dll
2016-09-14 07:50 - 2016-09-07 05:31 - 00358912 _____ (Microsoft Corporation) C:\WINDOWS\system32\authfwcfg.dll
2016-09-14 07:50 - 2016-09-07 05:31 - 00172544 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedStartModelShim.dll
2016-09-14 07:50 - 2016-09-07 05:30 - 00576000 _____ (Microsoft Corporation) C:\WINDOWS\system32\nshwfp.dll
2016-09-14 07:50 - 2016-09-07 05:30 - 00569856 _____ (Microsoft Corporation) C:\WINDOWS\system32\qdvd.dll
2016-09-14 07:50 - 2016-09-07 05:30 - 00249344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.OneCore.dll
2016-09-14 07:50 - 2016-09-07 05:29 - 00242688 _____ (Microsoft Corporation) C:\WINDOWS\system32\sti.dll
2016-09-14 07:50 - 2016-09-07 05:28 - 00525312 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiaservc.dll
2016-09-14 07:50 - 2016-09-07 05:28 - 00400896 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2016-09-14 07:50 - 2016-09-07 05:28 - 00355328 _____ (Microsoft Corporation) C:\WINDOWS\system32\das.dll
2016-09-14 07:50 - 2016-09-07 05:27 - 00799744 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRH.dll
2016-09-14 07:50 - 2016-09-07 05:27 - 00651776 _____ (Microsoft Corporation) C:\WINDOWS\system32\comuid.dll
2016-09-14 07:50 - 2016-09-07 05:27 - 00552960 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppointmentApis.dll
2016-09-14 07:50 - 2016-09-07 05:27 - 00417280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.Desktop.dll
2016-09-14 07:50 - 2016-09-07 05:27 - 00153088 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSSync.dll
2016-09-14 07:50 - 2016-09-07 05:26 - 01588224 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll
2016-09-14 07:50 - 2016-09-07 05:26 - 01117184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Speech.dll
2016-09-14 07:50 - 2016-09-07 05:26 - 00689152 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2016-09-14 07:50 - 2016-09-07 05:25 - 04404736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Search.dll
2016-09-14 07:50 - 2016-09-07 05:25 - 01401856 _____ (Microsoft Corporation) C:\WINDOWS\system32\workfolderssvc.dll
2016-09-14 07:50 - 2016-09-07 05:25 - 01328128 _____ (Microsoft Corporation) C:\WINDOWS\system32\comsvcs.dll
2016-09-14 07:50 - 2016-09-07 05:25 - 01228800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Globalization.dll
2016-09-14 07:50 - 2016-09-07 05:25 - 00769536 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContactApis.dll
2016-09-14 07:50 - 2016-09-07 05:25 - 00509952 _____ (Microsoft Corporation) C:\WINDOWS\system32\spoolsv.exe
2016-09-14 07:50 - 2016-09-07 05:24 - 00805888 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSShared.dll
2016-09-14 07:50 - 2016-09-07 05:24 - 00460800 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFolder.dll
2016-09-14 07:50 - 2016-09-07 05:22 - 00628224 _____ (Microsoft Corporation) C:\WINDOWS\system32\printfilterpipelinesvc.exe
2016-09-14 07:50 - 2016-09-07 05:21 - 01183744 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataService.dll
2016-09-14 07:50 - 2016-09-07 05:20 - 00683008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2016-09-14 07:50 - 2016-09-07 05:19 - 02102272 _____ (Microsoft Corporation) C:\WINDOWS\system32\xpsservices.dll
2016-09-14 07:50 - 2016-09-07 05:18 - 01609728 _____ (Microsoft Corporation) C:\WINDOWS\system32\PeerDistSvc.dll
2016-09-14 07:50 - 2016-09-07 05:16 - 01194496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Phone.dll
2016-09-14 07:50 - 2016-09-07 05:16 - 01123328 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsPrint.dll
2016-09-14 07:50 - 2016-09-07 05:16 - 00925184 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2016-09-14 07:50 - 2016-09-07 05:16 - 00314880 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsDocumentTargetPrint.dll
2016-09-14 07:50 - 2016-09-07 05:15 - 01556992 _____ (Microsoft Corporation) C:\WINDOWS\system32\OpcServices.dll
2016-09-14 07:50 - 2016-09-07 05:15 - 00812544 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2016-09-14 07:50 - 2016-09-07 05:14 - 03483648 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll
2016-09-14 07:50 - 2016-09-07 05:14 - 00737792 _____ (Microsoft Corporation) C:\WINDOWS\system32\pmcsnap.dll
2016-09-14 07:50 - 2016-09-07 05:12 - 02632192 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcore.dll
2016-09-14 07:50 - 2016-09-07 05:12 - 02180096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepository.dll
2016-09-14 07:50 - 2016-09-07 05:09 - 00183296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ahcache.sys
2016-09-13 13:54 - 2016-09-13 13:57 - 02801216 _____ C:\Users\marouane\Downloads\Cheb Midou Tofla Hablatni يا يما سلكيني سØورها بدا يخدم.mp3.ij3tahb.partial
2016-09-12 21:43 - 2016-09-12 22:03 - 00000000 ____D C:\Users\marouane\Desktop\foto de bladi
2016-09-09 20:06 - 2016-09-19 18:25 - 00000000 ____D C:\Users\marouane\Desktop\lycé
2016-09-08 16:01 - 2016-09-08 20:50 - 00794010 _____ C:\Users\marouane\Desktop\poteux fini.dxf
2016-09-08 13:08 - 2016-09-08 13:09 - 00000000 ____D C:\Users\marouane\Desktop\nacer
2016-09-07 18:51 - 2016-09-09 14:50 - 01360358 _____ C:\Users\marouane\Desktop\lycé.dxf
2016-09-07 18:40 - 2016-09-07 18:40 - 00000000 ____D C:\Users\marouane\Documents\Minhas paletas
2016-09-07 18:24 - 2016-09-07 18:24 - 00000000 ____D C:\Program Files\Common Files\Protexis
2016-09-07 18:24 - 2016-09-07 18:24 - 00000000 ____D C:\Program Files\Common Files\Corel
2016-09-07 18:21 - 2016-09-07 18:24 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CorelDRAW Graphics Suite X5
2016-09-07 18:20 - 2016-09-07 18:20 - 00000000 ____D C:\Program Files\Corel
2016-09-07 18:12 - 2016-09-07 18:13 - 00000000 ____D C:\Users\marouane\Desktop\Corel Draw X5
2016-09-05 19:26 - 2016-09-05 19:32 - 00000000 ____D C:\ProgramData\CorelDRAW Graphics Suite X7 x64
2016-09-05 05:47 - 2016-09-05 05:47 - 00109184 _____ (Samsung Electronics Co., Ltd.) C:\WINDOWS\system32\Drivers\ssudbus.sys
2016-09-01 15:46 - 2016-09-14 11:21 - 00000000 ___RD C:\Users\marouane\Desktop\Nouveau dossier (2)
2016-08-27 21:26 - 2016-02-22 00:59 - 881004098 _____ C:\ASD.G.2016.720p.HD.By.Ahmed.Elrakaiby.mkv
2016-08-27 21:18 - 2016-01-20 23:07 - 882198875 _____ C:\EYP.R.2015.720p.HDRip.By.Ahmed.Elrakaiby.mkv
2016-08-27 21:17 - 2016-01-18 04:21 - 633108065 _____ C:\EYP.W.2016.720p.DVDSCR.By.Ahmed.Elrakaiby.mkv
==================== Un mois - Modifiés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2016-09-19 21:14 - 2015-11-24 23:19 - 00000000 ____D C:\Users\marouane\AppData\Roaming\uTorrent
2016-09-19 21:14 - 2015-10-30 16:07 - 00824258 _____ C:\WINDOWS\system32\perfh00C.dat
2016-09-19 21:14 - 2015-10-30 16:07 - 00155558 _____ C:\WINDOWS\system32\perfc00C.dat
2016-09-19 21:14 - 2015-10-30 06:47 - 00000000 ____D C:\WINDOWS\INF
2016-09-19 21:14 - 2015-09-25 11:40 - 01848398 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2016-09-19 21:13 - 2016-07-18 13:49 - 00001096 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2016-09-19 21:10 - 2015-09-25 13:24 - 00000000 ____D C:\Users\marouane\AppData\Roaming\DMCache
2016-09-19 21:09 - 2016-04-07 15:46 - 00000000 ____D C:\Users\marouane\AppData\LocalLow\uTorrent
2016-09-19 21:09 - 2016-01-20 16:28 - 00000000 ____D C:\Users\marouane\AppData\Roaming\ViberPC
2016-09-19 21:08 - 2016-07-18 13:49 - 00001092 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2016-09-19 21:07 - 2015-12-01 10:58 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-09-19 21:07 - 2015-12-01 10:45 - 00000000 ____D C:\ProgramData\NVIDIA
2016-09-19 21:07 - 2015-10-30 06:13 - 00786432 ___SH C:\WINDOWS\system32\config\BBI
2016-09-19 20:59 - 2016-03-04 10:47 - 00001002 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2016-09-19 20:53 - 2015-12-04 20:22 - 00000000 ____D C:\Users\marouane\AppData\Local\CrashDumps
2016-09-19 20:42 - 2015-09-25 13:06 - 00000000 ____D C:\ProgramData\AVAST Software
2016-09-19 17:43 - 2015-10-30 06:48 - 00000000 ____D C:\WINDOWS\schemas
2016-09-19 17:26 - 2016-03-13 18:15 - 00170200 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2016-09-19 17:00 - 2016-03-13 15:58 - 00000000 __SHD C:\[Smad-Cage]
2016-09-19 16:02 - 2016-02-29 15:25 - 00000000 ____D C:\Users\marouane\AppData\Roaming\Skype
2016-09-19 15:19 - 2016-02-29 15:25 - 00000000 ___RD C:\Program Files\Skype
2016-09-19 15:19 - 2016-02-29 15:25 - 00000000 ____D C:\ProgramData\Skype
2016-09-19 11:06 - 2015-12-03 19:05 - 00000000 ____D C:\ProgramData\Norton
2016-09-19 11:06 - 2015-12-01 10:48 - 00000000 ____D C:\Users\marouane
2016-09-19 11:02 - 2015-10-30 06:48 - 00000000 ___HD C:\WINDOWS\ELAMBKUP
2016-09-19 11:02 - 2015-10-30 06:13 - 00032768 ___SH C:\WINDOWS\system32\config\ELAM
2016-09-19 09:20 - 2015-11-14 09:29 - 00000000 ____D C:\mes document personal
2016-09-18 18:08 - 2015-10-30 06:48 - 00000000 ____D C:\WINDOWS\AppReadiness
2016-09-18 01:51 - 2016-07-23 22:51 - 00001064 _____ C:\WINDOWS\Tasks\Adobe Flash Player PPAPI Notifier.job
2016-09-17 01:21 - 2016-07-18 14:06 - 00002216 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-09-17 00:09 - 2015-10-30 06:48 - 00000000 ____D C:\WINDOWS\system32\Macromed
2016-09-16 23:59 - 2016-03-02 09:15 - 00037997 _____ C:\Users\marouane\Downloads\ABSTRATOS (5) (1).rar
2016-09-16 20:48 - 2015-10-30 06:48 - 00000000 ___HD C:\Program Files\WindowsApps
2016-09-16 13:46 - 2015-10-30 06:48 - 00000000 ____D C:\WINDOWS\rescache
2016-09-16 01:07 - 2015-09-25 13:24 - 00000000 ____D C:\Users\marouane\Downloads\Video
2016-09-14 17:34 - 2015-09-25 11:46 - 00000000 __RHD C:\Users\Public\AccountPictures
2016-09-14 17:27 - 2015-10-30 06:48 - 00000000 ___SD C:\WINDOWS\system32\F12
2016-09-14 17:27 - 2015-10-30 06:48 - 00000000 ___RD C:\WINDOWS\PrintDialog
2016-09-14 17:27 - 2015-10-30 06:48 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2016-09-14 17:27 - 2015-10-30 06:48 - 00000000 ___RD C:\WINDOWS\DevicesFlow
2016-09-14 17:27 - 2015-10-30 06:48 - 00000000 ____D C:\WINDOWS\system32\oobe
2016-09-14 17:27 - 2015-10-30 06:48 - 00000000 ____D C:\WINDOWS\system32\migwiz
2016-09-14 17:27 - 2015-10-30 06:48 - 00000000 ____D C:\Program Files\Windows Photo Viewer
2016-09-14 17:27 - 2015-10-30 06:48 - 00000000 ____D C:\Program Files\Windows Defender
2016-09-14 17:27 - 2015-10-30 06:15 - 00000000 ____D C:\WINDOWS\system32\AdvancedInstallers
2016-09-14 12:25 - 2015-10-30 06:48 - 00000000 ____D C:\WINDOWS\system32\appraiser
2016-09-14 12:25 - 2015-10-30 06:39 - 00000000 ____D C:\WINDOWS\CbsTemp
2016-09-14 12:23 - 2015-09-25 17:26 - 00000000 ____D C:\WINDOWS\system32\MRT
2016-09-14 12:17 - 2015-09-25 17:25 - 141747376 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2016-09-13 23:20 - 2015-09-25 11:46 - 00000000 ____D C:\Users\marouane\AppData\Local\Packages
2016-09-07 18:24 - 2015-10-31 16:01 - 00000000 ____D C:\ProgramData\Corel
2016-09-07 17:02 - 2015-09-25 13:24 - 00000000 ____D C:\Users\marouane\Downloads\Compressed
2016-09-07 16:11 - 2015-09-25 15:18 - 00001078 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera.lnk
2016-09-07 16:11 - 2015-09-25 15:18 - 00000000 ____D C:\Program Files\Opera
2016-09-07 10:31 - 2016-04-29 16:07 - 00000000 ____D C:\Users\marouane\AppData\Roaming\IDM
2016-09-07 02:00 - 2015-10-30 06:49 - 00828408 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2016-09-07 02:00 - 2015-10-30 06:49 - 00176632 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2016-09-05 19:31 - 2015-09-30 15:33 - 00000000 ____D C:\ProgramData\CorelDRAW Graphics Suite X7
2016-09-05 19:26 - 2015-10-31 15:57 - 00000000 ____D C:\ProgramData\CorelDRAW Graphics Suite X5
==================== Fichiers à la racine de certains dossiers =======
2015-09-30 18:53 - 2015-09-27 17:17 - 10973857 _____ () C:\Program Files\تعلم ARTCAM كاملا الدرس 23 (الدرس الثالث 3D) - YouTube.mp4
2016-06-28 06:36 - 2016-06-28 06:36 - 0001471 _____ () C:\Users\marouane\AppData\Local\recently-used.xbel
2015-11-16 09:36 - 2016-03-22 16:41 - 0000016 _____ () C:\ProgramData\mntemp
2015-11-16 09:36 - 2015-11-16 09:36 - 0004905 _____ () C:\ProgramData\mtbjfghn.xbe
==================== Bamital & volsnap =================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
C:\WINDOWS\explorer.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\winlogon.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\wininit.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\svchost.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\services.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\User32.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\userinit.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\rpcss.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\dnsapi.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\Drivers\volsnap.sys => Le fichier est signé numériquement
LastRegBack: 2016-09-14 12:16
==================== Fin de FRST.txt ============================