cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 20-10-2017
Exécuté par Marionnette (administrateur) sur DESKTOP-SH0R0V2 (20-10-2017 20:42:18)
Exécuté depuis C:\Users\Marionnette\Downloads
Profils chargés: Marie Houlonne & Marionnette (Profils disponibles: Marie Houlonne & Marionnette)
Platform: Windows 10 Home Version 1703 15063.674 (X64) Langue: Français (France)
Internet Explorer Version 11 (Navigateur par défaut: Edge)
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processus (Avec liste blanche) =================

(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)

(Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\ki122581.inf_amd64_39d9112bbe77f060\igfxCUIService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(Windows (R) Win 7 DDK provider) C:\Program Files (x86)\Bluetooth Suite\AdminService.exe
(Portrait Displays, Inc.) C:\Program Files\Portrait Displays\Dell PremierColor\PremierColorService.exe
(Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\ki122581.inf_amd64_39d9112bbe77f060\IntelCpHDCPSvc.exe
(Waves Audio Ltd.) C:\Program Files\Waves\MaxxAudio\WavesSysSvc64.exe
(Rivet Networks) C:\Program Files\Killer Networking\Network Manager\KillerService.exe
(LaCie) C:\Program Files (x86)\LaCie\LaCie Desktop Manager\LaCieDesktopManagerDaemon.exe
(Intel Corporation) C:\Windows\System32\Intel\DPTF\esif_uf.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
(Genie9) C:\Program Files\Genie9\Genie Timeline\GenieTimelineService.exe
(McAfee, Inc.) C:\Program Files\Common Files\mcafee\SystemCore\mfemms.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(Intel Security, Inc.) C:\Program Files\Common Files\intel security\pef\CORE\PEFService.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\ki122581.inf_amd64_39d9112bbe77f060\IntelCpHeciSvc.exe
(McAfee, Inc.) C:\Windows\System32\mfevtps.exe
(McAfee, Inc.) C:\Windows\System32\mfevtps.exe
(McAfee, Inc.) C:\Program Files\Common Files\mcafee\SystemCore\mfefire.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.5\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.5\GoogleCrashHandler64.exe
(McAfee, Inc.) C:\Program Files (x86)\McAfee\SiteAdvisor\mcsacore.exe
(McAfee, Inc.) C:\Program Files\Common Files\mcafee\VSCore_15_7\mcapexe.exe
(McAfee, Inc.) C:\Program Files\Common Files\mcafee\csp\2.6.319.0\McCSPServiceHost.exe
(Intel Corporation) C:\Program Files\Intel\IntelSGXPSW\bin\x64\Release\aesm_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Dell Inc.) C:\Program Files\Dell\DellDataVault\DDVRulesProcessor.exe
(Dell Inc.) C:\Program Files (x86)\Dell Customer Connect\DCCService.exe
(Dell) C:\Program Files\Dell\SARemediation\agent\DellSupportAssistRemedationService.exe
(Dell Products, LP.) C:\Program Files (x86)\Dell Digital Delivery\DeliveryService.exe
(Dell Inc.) C:\Program Files (x86)\Dell Update\DellUpService.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(Dell) C:\Program Files\Dell\Dell Product Registration\PRSvc.exe
(Dell Inc.) C:\Program Files\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe
(Dell Inc.) C:\Program Files\Dell\DellDataVault\DDVDataCollector.exe
(Dell Inc.) C:\Program Files\Dell\DellDataVault\DDVCollectorSvcApi.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
(Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\ki122581.inf_amd64_39d9112bbe77f060\igfxEM.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(McAfee, Inc.) C:\Program Files (x86)\McAfee\SiteAdvisor\saUI.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Portrait Displays, Inc.) C:\Program Files\Portrait Displays\Dell PremierColor\PremierColor.exe
() C:\Program Files\Portrait Displays\Dell PremierColor\CTHelper.exe
(Waves Audio Ltd.) C:\Program Files\Waves\MaxxAudio\WavesSvc64.exe
(Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\ki122581.inf_amd64_39d9112bbe77f060\igfxext.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\IPC\AdobeIPCBroker.exe
(Adobe Systems Inc.) C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\acrotray.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ADS\Adobe Desktop Service.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\HEX\Adobe CEF Helper.exe
() C:\Program Files (x86)\Adobe\Adobe Sync\CoreSync\CoreSync.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\CCXProcess.exe
(Node.js) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\libs\node.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\HEX\Adobe CEF Helper.exe
(McAfee, Inc.) C:\Program Files\Common Files\mcafee\modulecore\ModuleCoreService.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Dell Inc.) C:\Program Files (x86)\Dell Update\DellUpTray.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(Dell Inc.) C:\Program Files\Dell\DellDataVault\nvapiw.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
(Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\ki122581.inf_amd64_39d9112bbe77f060\igfxEM.exe
() C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.19.856.0_x64__kzf8qxf38zg5c\SkypeHost.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(McAfee, Inc.) C:\Program Files (x86)\McAfee\SiteAdvisor\saUI.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Portrait Displays, Inc.) C:\Program Files\Portrait Displays\Dell PremierColor\PremierColor.exe
() C:\Program Files\Portrait Displays\Dell PremierColor\CTHelper.exe
(Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\ki122581.inf_amd64_39d9112bbe77f060\igfxext.exe
(Waves Audio Ltd.) C:\Program Files\Waves\MaxxAudio\WavesSvc64.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvspcaps64.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(Dashlane, Inc.) C:\Users\Marie Houlonne\AppData\Roaming\Dashlane\Dashlane.exe
(Dashlane, Inc.) C:\Users\Marie Houlonne\AppData\Roaming\Dashlane\DashlanePlugin.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(LaCie) C:\Program Files (x86)\LaCie\LaCie Desktop Manager\LaCie Desktop Manager.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\IPC\AdobeIPCBroker.exe
(Adobe Systems Inc.) C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\acrotray.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\HEX\Adobe CEF Helper.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ADS\Adobe Desktop Service.exe
() C:\Program Files (x86)\Adobe\Adobe Sync\CoreSync\CoreSync.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\CCXProcess.exe
(Node.js) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\libs\node.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCLibrary\CCLibrary.exe
(Node.js) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCLibrary\libs\node.exe
(McAfee, Inc.) C:\Program Files\Common Files\mcafee\modulecore\ModuleCoreService.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
() C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.39081.15820.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
() C:\Program Files\WindowsApps\Microsoft.ZuneMusic_10.17083.18321.0_x64__8wekyb3d8bbwe\Music.UI.exe
(Intel Corporation) C:\Windows\Temp\DPTF\esif_assist_64.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\cmd.exe
(Dashlane, Inc.) C:\Users\Marie Houlonne\AppData\Roaming\Dashlane\DashlanePlugin.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
() C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.19.856.0_x64__kzf8qxf38zg5c\SkypeHost.exe
(McAfee, Inc.) C:\Program Files\mcafee\MfeAV\MfeAVSvc.exe
(McAfee, Inc.) C:\Program Files\Common Files\mcafee\MMSSHost\MMSSHOST.exe
() C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.39081.15820.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
(McAfee, Inc.) C:\Program Files\Common Files\mcafee\modulecore\ModuleCoreService.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\HelpPane.exe
() C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.17092.13511.0_x64__8wekyb3d8bbwe\Video.UI.exe
(McAfee, Inc.) C:\Program Files\Common Files\mcafee\platform\McUICnt.exe
(McAfee, Inc.) C:\Program Files\Common Files\mcafee\platform\McUICnt.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(McAfee LLC.) C:\Program Files\Common Files\mcafee\amcore\mcshield.exe

==================== Registre (Avec liste blanche) ===========================

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)

HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [629152 2017-03-18] (Microsoft Corporation)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9240048 2017-09-20] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_PushButton] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1502696 2017-09-20] (Realtek Semiconductor)
HKLM\...\Run: [PremierColor] => C:\Program Files\Portrait Displays\Dell PremierColor\PremierColor.exe [5169488 2016-10-21] (Portrait Displays, Inc.)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [508128 2016-07-01] (Adobe Systems Incorporated)
HKLM\...\Run: [ShadowPlay] => "C:\Windows\system32\rundll32.exe" C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [WavesSvc] => C:\Program Files\Waves\MaxxAudio\WavesSvc64.exe [1189744 2017-06-27] (Waves Audio Ltd.)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [321096 2017-08-18] (Intel Corporation)
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2407008 2017-09-20] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Acrobat Assistant 8.0] => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Acrotray.exe [1871344 2017-08-10] (Adobe Systems Inc.)
HKLM-x32\...\Run: [] => [X]
HKU\S-1-5-21-3494934269-1802637253-2329854625-1001\...\Run: [Dashlane] => C:\Users\Marie Houlonne\AppData\Roaming\Dashlane\Dashlane.exe [508368 2017-09-27] (Dashlane, Inc.)
HKU\S-1-5-21-3494934269-1802637253-2329854625-1001\...\Run: [DashlanePlugin] => C:\Users\Marie Houlonne\AppData\Roaming\Dashlane\DashlanePlugin.exe [552400 2017-09-27] (Dashlane, Inc.)
HKU\S-1-5-21-3494934269-1802637253-2329854625-1001\...\Run: [AdobeBridge] => [X]
HKU\S-1-5-21-3494934269-1802637253-2329854625-1001\...\Run: [GoogleChromeAutoLaunch_35688F5EDB385C640944986EDCCB6D26] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [1451352 2017-09-21] (Google Inc.)
HKU\S-1-5-21-3494934269-1802637253-2329854625-1001\...\Run: [LaCie Desktop Manager 2 Startup] => C:\Program Files (x86)\LaCie\LaCie Desktop Manager\LaCie Desktop Manager.exe [872736 2015-06-09] (LaCie)
HKU\S-1-5-18\...\RunOnce: [Application Restart #0] => C:\Program Files\Common Files\microsoft shared\ink\TabTip.exe [391040 2017-03-19] (Microsoft Corporation)
GroupPolicy: Restriction - Chrome <==== ATTENTION

==================== Internet (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)

Tcpip\Parameters: [DhcpNameServer] 212.27.40.241 212.27.40.240
Tcpip\..\Interfaces\{3f5a4bbe-18b7-4667-a370-c6a7edb038a4}: [DhcpNameServer] 212.27.40.241 212.27.40.240

Internet Explorer:
==================
HKU\S-1-5-21-3494934269-1802637253-2329854625-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://dell17win10.msn.com/?pc=DCTE
HKU\S-1-5-21-3494934269-1802637253-2329854625-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://dell17win10.msn.com/?pc=DCTE
HKU\S-1-5-21-3494934269-1802637253-2329854625-1002\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://dell17win10.msn.com/?pc=DCTE
HKU\S-1-5-21-3494934269-1802637253-2329854625-1002\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://dell17win10.msn.com/?pc=DCTE
SearchScopes: HKU\S-1-5-21-3494934269-1802637253-2329854625-1001 -> DefaultScope {A62916DF-DF58-4DD3-9E34-9D4AB5A8BFE2} URL =
SearchScopes: HKU\S-1-5-21-3494934269-1802637253-2329854625-1001 -> {A62916DF-DF58-4DD3-9E34-9D4AB5A8BFE2} URL =
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2017-10-17] (Microsoft Corporation)
BHO: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2017-07-02] (Adobe Systems Incorporated)
BHO: McAfee WebAdvisor BHO -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll [2017-09-06] (McAfee, Inc.)
BHO: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\GROOVEEX.DLL [2017-09-28] (Microsoft Corporation)
BHO: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2017-07-02] (Adobe Systems Incorporated)
BHO-x32: Dashlane BHO -> {42D79B50-CC4A-4A8E-860F-BE674AF053A2} -> C:\Users\Marie Houlonne\AppData\Roaming\Dashlane\ie\Dashlanei.dll [2017-09-27] (Dashlane, Inc.)
BHO-x32: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2017-07-02] (Adobe Systems Incorporated)
BHO-x32: McAfee WebAdvisor BHO -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll [2017-09-06] (McAfee, Inc.)
BHO-x32: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2017-07-02] (Adobe Systems Incorporated)
Toolbar: HKLM - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2017-07-02] (Adobe Systems Incorporated)
Toolbar: HKLM-x32 - Dashlane Toolbar - {669695BC-A811-4A9D-8CDF-BA8C795F261C} - C:\Users\Marie Houlonne\AppData\Roaming\Dashlane\ie\KWIEBar.dll [2017-09-27] (Dashlane, Inc.)
Toolbar: HKLM-x32 - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2017-07-02] (Adobe Systems Incorporated)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2017-09-28] (Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2017-09-28] (Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2017-09-28] (Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2017-09-28] (Microsoft Corporation)
Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll [2017-09-06] (McAfee, Inc.)
Handler-x32: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll [2017-09-06] (McAfee, Inc.)
Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files\mcafee\msc\McSnIePl64.dll [2017-09-22] (McAfee, Inc.)
Filter-x32: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files (x86)\McAfee\msc\McSnIePl.dll [2017-09-22] (McAfee, Inc.)

FireFox:
========
FF HKLM\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files (x86)\McAfee\SiteAdvisor\saffplg.xpi
FF Extension: (McAfee WebAdvisor) - C:\Program Files (x86)\McAfee\SiteAdvisor\saffplg.xpi [2017-07-20]
FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension.15@web2pdf.adobedotcom] - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn
FF Extension: (Adobe Acrobat DC - Create PDF) - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn [2017-07-21]
FF HKLM-x32\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files (x86)\McAfee\SiteAdvisor\saffplg.xpi
FF HKLM-x32\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK
FF Extension: (McAfee Anti-Spam Thunderbird Extension) - C:\Program Files\McAfee\MSK [2017-10-13] [non signé]
FF Plugin: @mcafee.com/MSC,version=10 -> c:\PROGRA~1\mcafee\msc\NPMCSN~1.DLL [2017-09-22] ()
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2017-09-20] (Adobe Systems)
FF Plugin-x32: @mcafee.com/MSC,version=10 -> c:\PROGRA~2\mcafee\msc\NPMCSN~1.DLL [2017-09-22] ()
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2017-09-28] (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2017-09-16] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2017-09-16] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-08-14] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-08-14] (Google Inc.)
FF Plugin-x32: Adobe Acrobat -> C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2017-08-10] (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2017-09-20] (Adobe Systems)

Chrome:
=======
CHR Profile: C:\Users\Marionnette\AppData\Local\Google\Chrome\User Data\Default [2017-10-20]
CHR Extension: (Slides) - C:\Users\Marionnette\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-14]
CHR Extension: (Docs) - C:\Users\Marionnette\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-14]
CHR Extension: (Google Drive) - C:\Users\Marionnette\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-09-28]
CHR Extension: (YouTube) - C:\Users\Marionnette\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-09-28]
CHR Extension: (Adobe Acrobat) - C:\Users\Marionnette\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2017-09-28]
CHR Extension: (Sheets) - C:\Users\Marionnette\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-14]
CHR Extension: (McAfee® WebAdvisor) - C:\Users\Marionnette\AppData\Local\Google\Chrome\User Data\Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2017-09-28]
CHR Extension: (Google Docs hors connexion) - C:\Users\Marionnette\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-09-28]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Marionnette\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-09-28]
CHR Extension: (Gmail) - C:\Users\Marionnette\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-09-28]
CHR Extension: (Chrome Media Router) - C:\Users\Marionnette\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-09-28]
CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - hxxp://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - hxxp://clients2.google.com/service/update2/crx

==================== Services (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

S2 0148971508490071mcinstcleanup; C:\Windows\TEMP\014897~1.EXE [1277072 2017-09-05] (McAfee, Inc.)
R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [817760 2017-09-20] (Adobe Systems Incorporated)
R2 AESMService; C:\Program Files\Intel\IntelSGXPSW\bin\x64\Release\aesm_service.exe [3772120 2016-10-27] (Intel Corporation)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2257016 2017-08-23] (Adobe Systems, Incorporated)
R2 AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [338312 2016-09-07] (Windows (R) Win 7 DDK provider)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [7761584 2017-10-04] (Microsoft Corporation)
S3 ClientAnalyticsService; C:\Program Files\Common Files\McAfee\ClientAnalytics\Legacy\McClientAnalytics.exe [1511728 2017-08-10] (McAfee, Inc.)
R2 DDVCollectorSvcApi; C:\Program Files\Dell\DellDataVault\DDVCollectorSvcApi.exe [208760 2017-07-27] (Dell Inc.)
R2 DDVDataCollector; C:\Program Files\Dell\DellDataVault\DDVDataCollector.exe [3294584 2017-07-27] (Dell Inc.)
R2 DDVRulesProcessor; C:\Program Files\Dell\DellDataVault\DDVRulesProcessor.exe [217464 2017-07-27] (Dell Inc.)
R2 Dell Customer Connect; C:\Program Files (x86)\Dell Customer Connect\DCCService.exe [130936 2017-05-02] (Dell Inc.)
R2 Dell SupportAssist Remediation; C:\Program Files\Dell\SARemediation\agent\DellSupportAssistRemedationService.exe [122400 2017-08-23] (Dell)
R2 DellPremierColorService; C:\Program Files\Portrait Displays\Dell PremierColor\PremierColorService.exe [196944 2016-10-21] (Portrait Displays, Inc.)
R2 DellUpdate; C:\Program Files (x86)\Dell Update\DellUpService.exe [230248 2017-05-02] (Dell Inc.)
R2 esifsvc; C:\Windows\system32\Intel\DPTF\esif_uf.exe [2208888 2016-09-02] (Intel Corporation)
R2 GenieTimelineService; C:\Program Files\Genie9\Genie Timeline\GenieTimelineService.exe [662104 2012-09-16] (Genie9)
S3 iaStorAfsService; C:\Windows\IAStorAfsService\iaStorAfsService.exe [2413752 2017-08-18] (Intel Corporation)
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [17992 2017-08-18] (Intel Corporation)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [630048 2016-10-14] (Intel(R) Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [196200 2016-12-19] (Intel Corporation)
R2 Killer Service V2; C:\Program Files\Killer Networking\Network Manager\KillerService.exe [457104 2017-04-18] (Rivet Networks)
R2 LaCieDesktopManagerDaemon; C:\Program Files (x86)\LaCie\LaCie Desktop Manager\LaCieDesktopManagerDaemon.exe [1149728 2015-06-09] (LaCie)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6058960 2017-08-07] (Malwarebytes)
R2 McAfee SiteAdvisor Service; C:\Program Files (x86)\McAfee\SiteAdvisor\McSACore.exe [590880 2017-09-06] (McAfee, Inc.)
R2 McAPExe; C:\Program Files\Common Files\McAfee\VSCore_15_7\McApExe.exe [728808 2017-09-15] (McAfee, Inc.)
S3 McAWFwk; c:\Program Files\Common Files\mcafee\actwiz\McAWFwk.exe [454560 2017-01-17] (McAfee, Inc.)
R2 mccspsvc; C:\Program Files\Common Files\McAfee\CSP\2.6.319.0\\McCSPServiceHost.exe [2145496 2017-09-27] (McAfee, Inc.)
S3 mfefire; C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe [242640 2017-06-21] (McAfee, Inc.)
R2 mfemms; C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe [394704 2017-06-21] (McAfee, Inc.)
R3 mfevtp; C:\Windows\system32\mfevtps.exe [350160 2017-06-21] (McAfee, Inc.)
R2 ModuleCoreService; C:\Program Files\Common Files\McAfee\ModuleCore\ModuleCoreService.exe [1622856 2017-09-07] (McAfee, Inc.)
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [512960 2017-09-19] (NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [512960 2017-09-19] (NVIDIA Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [462968 2017-09-16] (NVIDIA Corporation)
R2 NvTelemetryContainer; C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe [449984 2017-09-19] (NVIDIA Corporation)
R2 PEFService; C:\Program Files\Common Files\Intel Security\PEF\CORE\PEFService.exe [1046456 2017-09-24] (Intel Security, Inc.)
R2 Product Registration; C:\Program Files\Dell\Dell Product Registration\PRSvc.exe [46632 2017-04-18] (Dell)
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [333296 2017-09-20] (Realtek Semiconductor)
R2 SupportAssistAgent; C:\Program Files\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe [53208 2017-09-22] (Dell Inc.)
S3 ThunderboltService; c:\Program Files (x86)\Intel\Thunderbolt Software\tbtsvc.exe [2018024 2016-11-17] (Intel Corporation)
R2 WavesSysSvc; C:\Program Files\Waves\MaxxAudio\WavesSysSvc64.exe [828792 2017-06-27] (Waves Audio Ltd.)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [342264 2017-03-18] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [102816 2017-06-20] (Microsoft Corporation)

===================== Pilotes (Avec liste blanche) ======================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R1 BfLwf; C:\Windows\system32\DRIVERS\bwcW10x64.sys [148200 2017-04-04] (Rivet Networks, LLC.)
R3 cfwids; C:\Windows\System32\drivers\cfwids.sys [77800 2017-06-26] (McAfee, Inc.)
R3 DDDriver; C:\Windows\system32\drivers\DDDriver64Dcsa.sys [32960 2017-04-11] (Dell Inc.)
R3 DellProf; C:\Windows\system32\drivers\DellProf.sys [32568 2017-04-11] (Dell Computer Corporation)
S3 dg_ssudbus; C:\Windows\system32\DRIVERS\ssudbus.sys [131984 2017-05-18] (Samsung Electronics Co., Ltd.)
R3 dptf_acpi; C:\Windows\System32\drivers\dptf_acpi.sys [71232 2016-08-13] (Intel Corporation)
R3 dptf_cpu; C:\Windows\System32\drivers\dptf_cpu.sys [66624 2016-08-13] (Intel Corporation)
R3 esif_lf; C:\Windows\system32\DRIVERS\esif_lf.sys [350272 2016-08-13] (Intel Corporation)
R1 ESProtectionDriver; C:\Windows\system32\drivers\mbae64.sys [77440 2017-10-04] ()
R3 HidEventFilter; C:\Windows\System32\drivers\HidEventFilter.sys [54816 2016-10-29] (Intel Corporation)
S3 HipShieldK; C:\Windows\System32\drivers\HipShieldK.sys [209608 2017-09-18] (McAfee, Inc.)
S3 iaLPSS2_GPIO2; C:\Windows\System32\drivers\iaLPSS2_GPIO2.sys [89912 2016-08-30] (Intel Corporation)
S3 iaStorAfs; C:\Windows\System32\drivers\iaStorAfs.sys [70664 2017-08-18] (Intel Corporation)
R2 MBAMChameleon; C:\Windows\System32\Drivers\MbamChameleon.sys [192952 2017-10-19] (Malwarebytes)
R3 MBAMFarflt; C:\Windows\system32\DRIVERS\farflt.sys [110016 2017-10-19] (Malwarebytes)
R3 MBAMProtection; C:\Windows\system32\DRIVERS\mbam.sys [45504 2017-10-19] (Malwarebytes)
R3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [252232 2017-10-19] (Malwarebytes)
R3 MBAMWebProtection; C:\Windows\system32\DRIVERS\mwac.sys [94144 2017-10-20] (Malwarebytes)
R3 mfeaack; C:\Windows\System32\drivers\mfeaack.sys [487408 2017-06-26] (McAfee, Inc.)
R3 mfeavfk; C:\Windows\System32\drivers\mfeavfk.sys [355312 2017-06-26] (McAfee, Inc.)
U3 mfeavfk01; pas de ImagePath
S0 mfeelamk; C:\Windows\System32\drivers\mfeelamk.sys [84544 2017-06-26] (McAfee, Inc.)
R3 mfefirek; C:\Windows\System32\drivers\mfefirek.sys [506352 2017-06-26] (McAfee, Inc.)
R0 mfehidk; C:\Windows\System32\drivers\mfehidk.sys [933360 2017-06-26] (McAfee, Inc.)
R3 mfencbdc; C:\Windows\System32\DRIVERS\mfencbdc.sys [504792 2017-06-27] (McAfee LLC.)
S3 mfencrk; C:\Windows\System32\DRIVERS\mfencrk.sys [108504 2017-06-27] (McAfee LLC.)
R3 mfeplk; C:\Windows\System32\drivers\mfeplk.sys [116208 2017-06-26] (McAfee, Inc.)
R3 mfesapsn; C:\Program Files (x86)\McAfee\SiteAdvisor\x64\mfesapsn.sys [111608 2017-02-14] (McAfee, Inc.)
R0 mfewfpk; C:\Windows\System32\drivers\mfewfpk.sys [253424 2017-06-26] (McAfee, Inc.)
S3 mosuport; C:\Windows\System32\drivers\mosuport.sys [367744 2016-12-23] (ASIX Electronics Corporation)
R3 nvlddmkm; C:\Windows\System32\DriverStore\FileRepository\nvdmi.inf_amd64_53c980648711c73a\nvlddmkm.sys [15619320 2017-09-18] (NVIDIA Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30144 2017-09-19] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [48064 2017-09-19] (NVIDIA Corporation)
R3 nvvhci; C:\Windows\System32\drivers\nvvhci.sys [57976 2017-09-16] (NVIDIA Corporation)
S3 RTSPER; C:\Windows\system32\DRIVERS\RtsPer.sys [779232 2016-08-05] (Realsil Semiconductor Corporation)
S3 rtux64w10; C:\Windows\System32\drivers\rtux64w10.sys [375296 2017-01-18] (Realtek )
S3 SDFRd; C:\Windows\System32\drivers\SDFRd.sys [31128 2017-03-18] ()
S3 ssudmdm; C:\Windows\system32\DRIVERS\ssudmdm.sys [166288 2017-05-18] (Samsung Electronics Co., Ltd.)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44632 2017-03-18] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [294816 2017-03-18] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [121248 2017-03-18] (Microsoft Corporation)

==================== NetSvcs (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)


==================== Un mois - Créés - fichiers et dossiers ========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2017-10-20 20:42 - 2017-10-20 20:42 - 000035183 _____ C:\Users\Marionnette\Downloads\FRST.txt
2017-10-20 20:42 - 2017-10-20 20:42 - 000000000 ____D C:\FRST
2017-10-20 20:37 - 2017-10-20 20:37 - 002402816 _____ (Farbar) C:\Users\Marionnette\Downloads\FRST64.exe
2017-10-20 20:20 - 2017-10-20 20:22 - 000000000 ____D C:\AdwCleaner
2017-10-20 20:02 - 2017-10-20 20:02 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee
2017-10-20 15:36 - 2017-10-20 15:36 - 000000000 ____D C:\Users\Marionnette\AppData\Local\Tempzxpsign0648cf2f2d30d735
2017-10-20 15:25 - 2017-10-20 15:25 - 000000000 ____D C:\Users\Marionnette\AppData\Local\Tempzxpsignb6e30f6a6bf903b0
2017-10-20 14:45 - 2017-10-20 14:45 - 000000000 ____D C:\Users\Marionnette\AppData\Local\Tempzxpsign9fd9346ae8ff93c4
2017-10-20 14:41 - 2017-10-20 14:41 - 000000000 ____D C:\Users\Marionnette\AppData\Local\Tempzxpsignd3085bac66821a93
2017-10-20 14:41 - 2017-10-20 14:41 - 000000000 ____D C:\Users\Marionnette\AppData\Local\Tempzxpsign798cb0a9fbed91f0
2017-10-19 11:16 - 2017-10-19 11:17 - 071535032 _____ (Malwarebytes ) C:\Users\Marionnette\Downloads\mb3-setup-35891.35891-3.2.2.2029-1.0.212-1.0.2951 (1).exe
2017-10-19 11:09 - 2017-10-20 20:15 - 000094144 _____ (Malwarebytes) C:\Windows\system32\Drivers\mwac.sys
2017-10-19 11:09 - 2017-10-19 11:09 - 000252232 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys
2017-10-19 11:09 - 2017-10-19 11:09 - 000192952 _____ (Malwarebytes) C:\Windows\system32\Drivers\MbamChameleon.sys
2017-10-19 11:09 - 2017-10-19 11:09 - 000110016 _____ (Malwarebytes) C:\Windows\system32\Drivers\farflt.sys
2017-10-19 11:09 - 2017-10-19 11:09 - 000045504 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys
2017-10-19 11:09 - 2017-10-19 11:09 - 000001914 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2017-10-19 11:09 - 2017-10-19 11:09 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2017-10-19 11:09 - 2017-10-19 11:09 - 000000000 ____D C:\ProgramData\Malwarebytes
2017-10-19 11:09 - 2017-10-19 11:09 - 000000000 ____D C:\Program Files\Malwarebytes
2017-10-19 11:09 - 2017-10-04 13:15 - 000077440 _____ C:\Windows\system32\Drivers\mbae64.sys
2017-10-19 11:06 - 2017-10-19 11:08 - 071535032 _____ (Malwarebytes ) C:\Users\Marionnette\Downloads\mb3-setup-35891.35891-3.2.2.2029-1.0.212-1.0.2951.exe
2017-10-19 10:31 - 2017-10-19 10:31 - 000000000 ____D C:\Users\Marionnette\AppData\Local\Tempzxpsign1c4077721891fd45
2017-10-19 10:00 - 2017-10-19 10:00 - 000000000 ____D C:\Users\Marionnette\AppData\Local\Tempzxpsign6422581953d1be8e
2017-10-19 09:08 - 2017-10-19 09:08 - 000000000 ____D C:\Users\Marionnette\AppData\Local\Tempzxpsign57a02611101a91ca
2017-10-18 18:06 - 2017-10-18 18:06 - 000000000 ____D C:\Users\Marionnette\AppData\Local\Tempzxpsign7433ae7e746eef0f
2017-10-18 18:02 - 2017-10-18 18:02 - 000000000 ____D C:\Users\Marionnette\AppData\Local\Tempzxpsignd553d4e459933774
2017-10-18 18:01 - 2017-10-18 18:01 - 000000000 ____D C:\Users\Marionnette\AppData\Local\Tempzxpsignab5880a7ab3bde1f
2017-10-18 17:58 - 2017-10-18 17:58 - 000000000 ____D C:\Users\Marionnette\AppData\Local\Tempzxpsign7c55fd53cdea8487
2017-10-18 16:37 - 2017-10-18 16:37 - 000000000 ____D C:\Users\Marionnette\AppData\Local\Tempzxpsignc98be6863ffcbf76
2017-10-18 16:36 - 2017-10-18 16:36 - 001190555 _____ C:\Users\Marionnette\Downloads\Mas Olivier-logo institutionnel.ai
2017-10-18 15:52 - 2017-10-18 15:52 - 000000000 ____D C:\Users\Marionnette\AppData\Local\Tempzxpsign0cfea6207e75458c
2017-10-18 15:07 - 2017-10-18 15:07 - 000000000 ____D C:\Users\Marionnette\AppData\Local\Tempzxpsign3f548ebe72fa6ba4
2017-10-18 09:09 - 2017-10-18 09:09 - 000000000 ____D C:\Users\Marionnette\AppData\Local\Tempzxpsign6b35c6da0217c7e3
2017-10-18 08:52 - 2017-10-18 08:52 - 000000000 ____D C:\Users\Marionnette\AppData\Local\Tempzxpsigna26477ea143de1a0
2017-10-17 16:15 - 2017-10-17 16:15 - 000000000 ____D C:\Users\Marionnette\AppData\Local\Tempzxpsign0dffc910928b6de1
2017-10-17 15:40 - 2017-10-17 15:40 - 000000000 ____D C:\Users\Marionnette\AppData\Local\Tempzxpsignc7c073421c869cc7
2017-10-17 15:34 - 2017-10-17 15:34 - 000000000 ____D C:\Users\Marionnette\AppData\Local\Tempzxpsign9b01b76a50974edc
2017-10-17 15:33 - 2017-10-17 15:33 - 000000000 ____D C:\Users\Marionnette\AppData\Local\Tempzxpsigncd534b77301054c6
2017-10-17 15:14 - 2017-10-17 15:14 - 000000000 ____D C:\Users\Marionnette\AppData\Local\Tempzxpsign766b5542872ce1c5
2017-10-17 15:11 - 2017-10-17 15:11 - 000000000 ____D C:\Users\Marionnette\AppData\Local\Tempzxpsign723f4b890ba7dd29
2017-10-17 15:03 - 2017-10-17 15:03 - 000000000 ____D C:\Users\Marionnette\AppData\Local\Tempzxpsign4b0290311e106572
2017-10-17 14:41 - 2017-10-17 14:41 - 000000000 ____D C:\Users\Marionnette\AppData\Local\Tempzxpsign4624bd050b73a9d3
2017-10-17 13:56 - 2017-10-17 13:56 - 000000290 __RSH C:\ProgramData\ntuser.pol
2017-10-17 13:54 - 2017-10-17 13:54 - 000570939 _____ ( ) C:\Users\Marionnette\Downloads\Neat_Video_4_Crack_Full_Latest.exe
2017-10-17 13:54 - 2017-10-17 13:54 - 000570939 _____ ( ) C:\Users\Marionnette\Downloads\Neat_Video_4_Crack_Full_Latest (1).exe
2017-10-17 13:38 - 2017-10-17 13:38 - 000000000 ____D C:\Users\Marionnette\Documents\Neat Video v4 for Premiere
2017-10-17 13:29 - 2017-10-17 13:29 - 009837688 _____ (Neat Video team, ABSoft ) C:\Users\Marionnette\Downloads\NeatPRSetupDemo64.exe
2017-10-17 13:29 - 2017-10-17 13:29 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Neat Video v4 for Premiere
2017-10-17 13:29 - 2017-10-17 13:29 - 000000000 ____D C:\Program Files\Neat Video v4 for Premiere
2017-10-17 12:59 - 2017-10-17 12:59 - 000000000 ____D C:\Users\Marionnette\AppData\Local\Tempzxpsign1ae03be56d2fde9d
2017-10-17 12:22 - 2017-10-17 12:22 - 000000000 ____D C:\Users\Marionnette\AppData\Local\Tempzxpsign8337d973f5f81263
2017-10-17 12:12 - 2017-10-17 12:12 - 000000000 ____D C:\Users\Marionnette\AppData\Local\Tempzxpsign98b733c58f50dfd3
2017-10-17 11:38 - 2017-10-17 11:38 - 000000000 ____D C:\Users\Marionnette\AppData\Local\Tempzxpsignc0977ad1a9b6fec0
2017-10-16 16:23 - 2017-10-16 16:23 - 000000000 ____D C:\Users\Marionnette\AppData\Local\Tempzxpsignf4cb8b113fdff7eb
2017-10-16 16:08 - 2017-10-16 16:08 - 000000000 ____D C:\Users\Marionnette\AppData\Local\Tempzxpsignb5d66e18874ecd9d
2017-10-16 15:51 - 2017-10-16 15:51 - 000000000 ____D C:\Users\Marionnette\AppData\Local\Tempzxpsignb903209260ae9318
2017-10-16 13:20 - 2017-10-16 13:20 - 000000000 ____D C:\Users\Marionnette\AppData\Local\Tempzxpsign65fe25eead6c3cf8
2017-10-16 13:20 - 2017-10-16 13:20 - 000000000 ____D C:\Users\Marionnette\AppData\Local\Tempzxpsign3b6968026da728a8
2017-10-16 13:17 - 2017-10-16 13:17 - 000000000 ____D C:\Users\Marionnette\AppData\Local\Tempzxpsign9254c2a0b8f08778
2017-10-16 11:19 - 2017-10-16 11:19 - 000000000 ____D C:\Users\Marionnette\AppData\Local\Tempzxpsign68a1a6135f7c0e6a
2017-10-16 10:09 - 2017-10-16 10:09 - 000000000 ____D C:\Users\Marionnette\AppData\Local\Tempzxpsign8d8743cd10a21c18
2017-10-16 09:48 - 2017-10-16 09:48 - 000000000 ____D C:\Users\Marionnette\AppData\Local\Tempzxpsign07e1fffd4bb04380
2017-10-16 09:08 - 2017-10-16 09:08 - 000000000 ____D C:\Users\Marionnette\AppData\Local\Tempzxpsign623f36ac95cfff18
2017-10-16 09:06 - 2017-10-16 09:06 - 000000000 ____D C:\Users\Marionnette\AppData\Local\Tempzxpsign15670405478044da
2017-10-16 09:05 - 2017-10-16 09:05 - 000000000 ____D C:\Users\Marionnette\AppData\Local\Tempzxpsignebf9fc9b4e16d66f
2017-10-16 09:04 - 2017-10-16 09:04 - 000000000 ____D C:\Users\Marionnette\AppData\Local\Tempzxpsignd6fd30dc796ad7dd
2017-10-15 15:52 - 2017-10-15 15:52 - 000000000 ____D C:\Users\Marionnette\AppData\Local\Tempzxpsignd1a76c4fda82f5a7
2017-10-15 15:17 - 2017-10-15 15:17 - 001208121 _____ C:\Users\Marionnette\Downloads\Exemple générique fin-recettes.pptx
2017-10-15 15:10 - 2017-10-15 15:10 - 000000000 ____D C:\Users\Marionnette\AppData\Local\Tempzxpsign7fa93a79b2bbfaff
2017-10-15 15:09 - 2017-10-15 15:09 - 000000000 ____D C:\Users\Marionnette\AppData\Local\Tempzxpsignc7e884defb88eec5
2017-10-15 15:09 - 2017-10-15 15:09 - 000000000 ____D C:\Users\Marionnette\AppData\Local\Tempzxpsignac1fab32e710aa6c
2017-10-13 13:59 - 2017-10-13 13:59 - 000000000 ____D C:\Users\Marionnette\AppData\Local\Tempzxpsign2f844b0f43c04df3
2017-10-13 11:58 - 2017-10-13 11:58 - 000000000 ____D C:\Users\Marionnette\AppData\Local\Tempzxpsign274c7448d8d0f884
2017-10-13 11:37 - 2017-10-13 11:37 - 000000000 ____D C:\Users\Marionnette\AppData\Local\Tempzxpsignd9a6885cb24cc779
2017-10-13 11:36 - 2017-10-13 11:36 - 000000000 ____D C:\Users\Marionnette\AppData\Local\Tempzxpsigne5c222f79adb6f62
2017-10-13 11:14 - 2017-10-13 11:14 - 000000000 ____D C:\Users\Marionnette\AppData\Local\Tempzxpsign855b4fad0fdd6e54
2017-10-13 11:10 - 2017-10-13 11:10 - 000000000 ____D C:\Users\Marionnette\AppData\Local\Tempzxpsign92602df8c404d98e
2017-10-13 10:54 - 2017-10-13 10:54 - 000000000 ____D C:\Users\Marionnette\AppData\Local\Tempzxpsign7b66a47a4f21a694
2017-10-13 10:21 - 2017-10-13 10:21 - 000000000 ____D C:\Users\Marionnette\AppData\Local\Tempzxpsigna2f687485023b763
2017-10-13 10:11 - 2017-10-13 10:11 - 000000000 ____D C:\Users\Marionnette\AppData\Local\Tempzxpsign031977c85c260fb6
2017-10-13 10:05 - 2017-10-13 10:05 - 000000000 ____D C:\Users\Marionnette\AppData\Local\Tempzxpsign723f7b749abf3455
2017-10-13 09:53 - 2017-10-13 09:53 - 000000000 ____D C:\Users\Marionnette\AppData\Local\Tempzxpsign1821522d50c6c8a2
2017-10-13 09:52 - 2017-10-13 09:52 - 000000000 ____D C:\Users\Marionnette\AppData\Local\Tempzxpsign15e6fc7809a2dfa4
2017-10-13 09:47 - 2017-10-13 09:47 - 043236437 _____ C:\Users\Marionnette\Downloads\audiojungle-20545763-ambient.zip
2017-10-13 09:31 - 2017-10-13 09:31 - 000108391 _____ C:\Users\Marionnette\Documents\telereglement_TF_20171013_093007.pdf
2017-10-13 09:30 - 2017-10-13 09:30 - 000108391 _____ C:\Users\Marionnette\Downloads\telereglement_TF_20171013_093007.pdf
2017-10-12 10:15 - 2017-10-12 10:15 - 000000000 ____D C:\Users\Marionnette\AppData\Local\Tempzxpsign0e10c2b9b46f5749
2017-10-11 13:58 - 2017-10-11 13:58 - 000000000 ____D C:\Users\Marie Houlonne\AppData\Local\Tempzxpsign526ce3088d312904
2017-10-11 12:16 - 2017-10-11 12:22 - 000000446 _____ C:\Windows\system32\Drivers\etc\hosts.ics
2017-10-11 11:22 - 2017-10-11 11:22 - 000000000 ____D C:\Users\Marionnette\AppData\Local\Tempzxpsign93e1674948764cd0
2017-10-11 11:20 - 2017-10-11 11:20 - 000000000 ____D C:\Users\Marionnette\AppData\Local\Tempzxpsignd196a90e7d0b66c5
2017-10-11 10:33 - 2017-10-11 10:33 - 126925120 ____C (Microsoft Corporation) C:\Windows\system32\MRT-KB890830.exe
2017-10-11 10:31 - 2017-09-30 07:49 - 001004136 _____ (Microsoft Corporation) C:\Windows\system32\ucrtbase.dll
2017-10-11 10:31 - 2017-09-30 07:49 - 000777400 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2017-10-11 10:31 - 2017-09-30 07:49 - 000135576 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2017-10-11 10:31 - 2017-09-30 07:48 - 008319384 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2017-10-11 10:31 - 2017-09-30 07:48 - 002399728 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2017-10-11 10:31 - 2017-09-30 07:48 - 002327448 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2017-10-11 10:31 - 2017-09-30 07:47 - 002969880 _____ (Microsoft Corporation) C:\Windows\system32\CoreUIComponents.dll
2017-10-11 10:31 - 2017-09-30 07:47 - 001194792 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2017-10-11 10:31 - 2017-09-30 07:45 - 000511896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2017-10-11 10:31 - 2017-09-30 07:44 - 000181912 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2017-10-11 10:31 - 2017-09-30 07:42 - 000820120 _____ (Microsoft Corporation) C:\Windows\system32\WWAHost.exe
2017-10-11 10:31 - 2017-09-30 07:41 - 005304496 _____ (Microsoft Corporation) C:\Windows\system32\Windows.StateRepository.dll
2017-10-11 10:31 - 2017-09-30 07:41 - 000654976 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentClient.dll
2017-10-11 10:31 - 2017-09-30 07:41 - 000259400 _____ (Microsoft Corporation) C:\Windows\system32\MusNotifyIcon.exe
2017-10-11 10:31 - 2017-09-30 07:40 - 000724704 _____ (Microsoft Corporation) C:\Windows\system32\wer.dll
2017-10-11 10:31 - 2017-09-30 07:40 - 000336320 _____ (Microsoft Corporation) C:\Windows\system32\SecurityHealthService.exe
2017-10-11 10:31 - 2017-09-30 07:40 - 000173976 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2017-10-11 10:31 - 2017-09-30 07:38 - 002239136 _____ (Microsoft Corporation) C:\Windows\system32\mfsrcsnk.dll
2017-10-11 10:31 - 2017-09-30 07:36 - 002672024 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2017-10-11 10:31 - 2017-09-30 07:36 - 000057976 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2017-10-11 10:31 - 2017-09-30 04:29 - 001408536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32full.dll
2017-10-11 10:31 - 2017-09-30 04:29 - 000804784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.dll
2017-10-11 10:31 - 2017-09-30 04:26 - 001333136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msctf.dll
2017-10-11 10:31 - 2017-09-30 04:26 - 001292872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user32.dll
2017-10-11 10:31 - 2017-09-30 04:10 - 001839872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2017-10-11 10:31 - 2017-09-30 04:10 - 001150776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ucrtbase.dll
2017-10-11 10:31 - 2017-09-30 04:10 - 000606072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2017-10-11 10:31 - 2017-09-30 04:10 - 000508344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dnsapi.dll
2017-10-11 10:31 - 2017-09-30 04:10 - 000480920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2017-10-11 10:31 - 2017-09-30 04:09 - 002259760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CoreUIComponents.dll
2017-10-11 10:31 - 2017-09-30 04:09 - 000787712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2017-10-11 10:31 - 2017-09-30 04:06 - 004471368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\explorer.exe
2017-10-11 10:31 - 2017-09-30 04:05 - 005827744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\windows.storage.dll
2017-10-11 10:31 - 2017-09-30 04:05 - 002603744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\OneCoreUAPCommonProxyStub.dll
2017-10-11 10:31 - 2017-09-30 04:05 - 001266544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinapi.appcore.dll
2017-10-11 10:31 - 2017-09-30 04:05 - 000750488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WWAHost.exe
2017-10-11 10:31 - 2017-09-30 04:05 - 000559000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SettingSyncHost.exe
2017-10-11 10:31 - 2017-09-30 04:04 - 004215184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.StateRepository.dll
2017-10-11 10:31 - 2017-09-30 04:04 - 000612120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wer.dll
2017-10-11 10:31 - 2017-09-30 04:04 - 000519680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppXDeploymentClient.dll
2017-10-11 10:31 - 2017-09-30 04:04 - 000438096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.dll
2017-10-11 10:31 - 2017-09-30 04:04 - 000347544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2017-10-11 10:31 - 2017-09-30 04:04 - 000182680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppxAllUserStore.dll
2017-10-11 10:31 - 2017-09-30 04:03 - 020373408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2017-10-11 10:31 - 2017-09-30 04:03 - 006768288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Protection.PlayReady.dll
2017-10-11 10:31 - 2017-09-30 04:03 - 001439032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfsrcsnk.dll
2017-10-11 10:31 - 2017-09-30 04:02 - 000175512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\basecsp.dll
2017-10-11 10:31 - 2017-09-30 04:01 - 000124544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2017-10-11 10:31 - 2017-09-29 09:46 - 023678976 _____ (Microsoft Corporation) C:\Windows\system32\edgehtml.dll
2017-10-11 10:31 - 2017-09-29 09:45 - 002953216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32kfull.sys
2017-10-11 10:31 - 2017-09-29 09:44 - 000133120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\t2embed.dll
2017-10-11 10:31 - 2017-09-29 09:43 - 002199552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.Resources.dll
2017-10-11 10:31 - 2017-09-29 09:43 - 000142336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\smartscreenps.dll
2017-10-11 10:31 - 2017-09-29 09:43 - 000060928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usoapi.dll
2017-10-11 10:31 - 2017-09-29 09:42 - 000018944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mgmtapi.dll
2017-10-11 10:31 - 2017-09-29 09:41 - 013844992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.dll
2017-10-11 10:31 - 2017-09-29 09:41 - 000110080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\BitLockerCsp.dll
2017-10-11 10:31 - 2017-09-29 09:40 - 006728192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.dll
2017-10-11 10:31 - 2017-09-29 09:40 - 000371200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\daxexec.dll
2017-10-11 10:31 - 2017-09-29 09:40 - 000086528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\updatepolicy.dll
2017-10-11 10:31 - 2017-09-29 09:39 - 020511232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\edgehtml.dll
2017-10-11 10:31 - 2017-09-29 09:39 - 011888640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2017-10-11 10:31 - 2017-09-29 09:39 - 000364032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msIso.dll
2017-10-11 10:31 - 2017-09-29 09:38 - 005721600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\BingMaps.dll
2017-10-11 10:31 - 2017-09-29 09:38 - 002671616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tquery.dll
2017-10-11 10:31 - 2017-09-29 09:38 - 001135616 ____R (The ICU Project) C:\Windows\SysWOW64\icuuc.dll
2017-10-11 10:31 - 2017-09-29 09:38 - 000471040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TpmCoreProvisioning.dll
2017-10-11 10:31 - 2017-09-29 09:38 - 000463360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webio.dll
2017-10-11 10:31 - 2017-09-29 09:38 - 000370688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FirewallAPI.dll
2017-10-11 10:31 - 2017-09-29 09:38 - 000308224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptngc.dll
2017-10-11 10:31 - 2017-09-29 09:38 - 000229376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scksp.dll
2017-10-11 10:31 - 2017-09-29 09:37 - 000306688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Graphics.dll
2017-10-11 10:31 - 2017-09-29 09:37 - 000038400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TokenBrokerUI.dll
2017-10-11 10:31 - 2017-09-29 09:36 - 019337216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2017-10-11 10:31 - 2017-09-29 09:36 - 000590336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PCPKsp.dll
2017-10-11 10:31 - 2017-09-29 09:35 - 003654656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2017-10-11 10:31 - 2017-09-29 09:34 - 006255616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Chakra.dll
2017-10-11 10:31 - 2017-09-29 09:34 - 002859520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2017-10-11 10:31 - 2017-09-29 09:34 - 000798720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TokenBroker.dll
2017-10-11 10:31 - 2017-09-29 09:34 - 000787456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2017-10-11 10:31 - 2017-09-29 09:34 - 000434176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinapi.dll
2017-10-11 10:31 - 2017-09-29 09:33 - 007598080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2017-10-11 10:31 - 2017-09-29 09:33 - 004559360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dbgeng.dll
2017-10-11 10:31 - 2017-09-29 09:33 - 001506816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\quartz.dll
2017-10-11 10:31 - 2017-09-29 09:33 - 000658944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2017-10-11 10:31 - 2017-09-29 09:32 - 002782720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msftedit.dll
2017-10-11 10:31 - 2017-09-29 09:32 - 002340864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2017-10-11 10:31 - 2017-09-29 09:32 - 001627136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2017-10-11 10:31 - 2017-09-29 09:32 - 001244160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.Phone.dll
2017-10-11 10:31 - 2017-09-29 09:32 - 000128512 _____ (Microsoft Corporation) C:\Windows\system32\mssprxy.dll
2017-10-11 10:31 - 2017-09-29 09:32 - 000035840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\BasicRender.sys
2017-10-11 10:31 - 2017-09-29 09:32 - 000029184 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2017-10-11 10:31 - 2017-09-29 09:32 - 000023040 _____ (Microsoft Corporation) C:\Windows\system32\mgmtapi.dll
2017-10-11 10:31 - 2017-09-29 09:31 - 003107328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstsc.exe
2017-10-11 10:31 - 2017-09-29 09:31 - 000306176 _____ (Microsoft Corporation) C:\Windows\system32\MusNotification.exe
2017-10-11 10:31 - 2017-09-29 09:31 - 000168448 _____ (Microsoft Corporation) C:\Windows\system32\MusNotificationUx.exe
2017-10-11 10:31 - 2017-09-29 09:31 - 000052736 _____ (Microsoft Corporation) C:\Windows\system32\musdialoghandlers.dll
2017-10-11 10:31 - 2017-09-29 09:30 - 023686144 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2017-10-11 10:31 - 2017-09-29 09:29 - 008333312 _____ (Microsoft Corporation) C:\Windows\system32\BingMaps.dll
2017-10-11 10:31 - 2017-09-29 09:29 - 001460736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wsp_fs.dll
2017-10-11 10:31 - 2017-09-29 09:29 - 001318912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wsp_health.dll
2017-10-11 10:31 - 2017-09-29 09:29 - 000724992 _____ (Microsoft Corporation) C:\Windows\system32\MusUpdateHandlers.dll
2017-10-11 10:31 - 2017-09-29 09:29 - 000157696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpchttp.dll
2017-10-11 10:31 - 2017-09-29 09:29 - 000102912 _____ (Microsoft Corporation) C:\Windows\system32\updatepolicy.dll
2017-10-11 10:31 - 2017-09-29 09:29 - 000083456 _____ (Microsoft Corporation) C:\Windows\system32\wpdbusenum.dll
2017-10-11 10:31 - 2017-09-29 09:28 - 000699904 _____ (Microsoft Corporation) C:\Windows\system32\FlightSettings.dll
2017-10-11 10:31 - 2017-09-29 09:28 - 000681472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\clusapi.dll
2017-10-11 10:31 - 2017-09-29 09:28 - 000473088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\resutils.dll
2017-10-11 10:31 - 2017-09-29 09:28 - 000458752 _____ (Microsoft Corporation) C:\Windows\system32\NgcCtnr.dll
2017-10-11 10:31 - 2017-09-29 09:28 - 000297984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mcbuilder.exe
2017-10-11 10:31 - 2017-09-29 09:28 - 000104448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Robocopy.exe
2017-10-11 10:31 - 2017-09-29 09:28 - 000040448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cipher.exe
2017-10-11 10:31 - 2017-09-29 09:27 - 012803072 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2017-10-11 10:31 - 2017-09-29 09:27 - 000409600 _____ (Microsoft Corporation) C:\Windows\system32\cryptngc.dll
2017-10-11 10:31 - 2017-09-29 09:27 - 000350720 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Graphics.dll
2017-10-11 10:31 - 2017-09-29 09:26 - 008213504 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2017-10-11 10:31 - 2017-09-29 09:25 - 008199168 _____ (Microsoft Corporation) C:\Windows\system32\Chakra.dll
2017-10-11 10:31 - 2017-09-29 09:25 - 000586240 _____ (Microsoft Corporation) C:\Windows\system32\AppReadiness.dll
2017-10-11 10:31 - 2017-09-29 09:24 - 003377664 _____ (Microsoft Corporation) C:\Windows\system32\tquery.dll
2017-10-11 10:31 - 2017-09-29 09:24 - 001628672 _____ (Microsoft Corporation) C:\Windows\system32\UserDataService.dll
2017-10-11 10:31 - 2017-09-29 09:23 - 005557760 _____ (Microsoft Corporation) C:\Windows\system32\dbgeng.dll
2017-10-11 10:31 - 2017-09-29 09:23 - 004730368 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2017-10-11 10:31 - 2017-09-29 09:23 - 001887744 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2017-10-11 10:31 - 2017-09-29 09:23 - 000756224 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2017-10-11 10:31 - 2017-09-29 09:22 - 002829824 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2017-10-11 10:31 - 2017-09-29 09:21 - 003304448 _____ (Microsoft Corporation) C:\Windows\system32\mstsc.exe
2017-10-11 10:31 - 2017-09-29 09:21 - 000476160 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Core.TextInput.dll
2017-10-11 10:31 - 2017-09-29 09:21 - 000414208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys
2017-10-11 10:31 - 2017-09-29 09:21 - 000124928 _____ (Microsoft Corporation) C:\Windows\system32\InputLocaleManager.dll
2017-10-11 10:31 - 2017-09-29 09:20 - 000804864 _____ (Microsoft Corporation) C:\Windows\system32\fvewiz.dll
2017-10-11 10:31 - 2017-09-29 09:20 - 000385536 _____ (Microsoft Corporation) C:\Windows\system32\bdesvc.dll
2017-10-11 10:31 - 2017-09-29 09:20 - 000286208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2017-10-11 10:31 - 2017-09-29 09:19 - 000325120 _____ (Microsoft Corporation) C:\Windows\system32\fvecpl.dll
2017-10-11 10:31 - 2017-09-29 09:19 - 000306176 _____ (Microsoft Corporation) C:\Windows\system32\fveui.dll
2017-10-11 10:31 - 2017-09-29 09:18 - 000215040 _____ (Microsoft Corporation) C:\Windows\system32\manage-bde.exe
2017-10-11 10:31 - 2017-09-29 09:18 - 000141312 _____ (Microsoft Corporation) C:\Windows\system32\BitLockerDeviceEncryption.exe
2017-10-11 10:31 - 2017-09-29 07:40 - 000804312 _____ C:\Windows\SysWOW64\locale.nls
2017-10-11 10:31 - 2017-09-29 07:40 - 000804312 _____ C:\Windows\system32\locale.nls
2017-10-11 10:31 - 2017-09-20 17:08 - 000640512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mswstr10.dll
2017-10-11 10:31 - 2017-09-20 17:08 - 000345088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msexcl40.dll
2017-10-11 10:31 - 2017-09-20 17:08 - 000008704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msjint40.dll
2017-10-11 10:31 - 2017-09-19 01:20 - 001065104 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2017-10-11 10:31 - 2017-09-19 01:20 - 000900376 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe
2017-10-11 10:31 - 2017-09-19 01:17 - 001395664 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2017-10-11 10:31 - 2017-09-19 01:17 - 001186464 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2017-10-11 10:31 - 2017-09-19 01:09 - 000554400 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBHUB3.SYS
2017-10-11 10:31 - 2017-09-19 00:20 - 000831488 _____ (Microsoft Corporation) C:\Windows\system32\MbaeApiPublic.dll
2017-10-11 10:31 - 2017-09-19 00:20 - 000049664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tetheringclient.dll
2017-10-11 10:31 - 2017-09-19 00:15 - 000648704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MbaeApiPublic.dll
2017-10-11 10:30 - 2017-09-30 07:52 - 001595152 _____ (Microsoft Corporation) C:\Windows\system32\gdi32full.dll
2017-10-11 10:30 - 2017-09-30 07:51 - 001458320 _____ (Microsoft Corporation) C:\Windows\system32\msctf.dll
2017-10-11 10:30 - 2017-09-30 07:51 - 001147288 _____ (Microsoft Corporation) C:\Windows\system32\hvix64.exe
2017-10-11 10:30 - 2017-09-30 07:51 - 000661224 _____ (Microsoft Corporation) C:\Windows\system32\dnsapi.dll
2017-10-11 10:30 - 2017-09-30 07:50 - 001346112 _____ (Microsoft Corporation) C:\Windows\system32\user32.dll
2017-10-11 10:30 - 2017-09-30 07:50 - 001068208 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.dll
2017-10-11 10:30 - 2017-09-30 07:50 - 001024920 _____ (Microsoft Corporation) C:\Windows\system32\hvax64.exe
2017-10-11 10:30 - 2017-09-30 07:48 - 000644696 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2017-10-11 10:30 - 2017-09-30 07:44 - 000712600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms2.sys
2017-10-11 10:30 - 2017-09-30 07:43 - 007318888 _____ (Microsoft Corporation) C:\Windows\system32\windows.storage.dll
2017-10-11 10:30 - 2017-09-30 07:43 - 002442136 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2017-10-11 10:30 - 2017-09-30 07:42 - 004848952 _____ (Microsoft Corporation) C:\Windows\explorer.exe
2017-10-11 10:30 - 2017-09-30 07:42 - 001506712 _____ (Microsoft Corporation) C:\Windows\system32\twinapi.appcore.dll
2017-10-11 10:30 - 2017-09-30 07:41 - 005477600 _____ (Microsoft Corporation) C:\Windows\system32\OneCoreUAPCommonProxyStub.dll
2017-10-11 10:30 - 2017-09-30 07:41 - 002086808 _____ (Microsoft Corporation) C:\Windows\system32\UpdateAgent.dll
2017-10-11 10:30 - 2017-09-30 07:41 - 000961944 _____ (Microsoft Corporation) C:\Windows\system32\efscore.dll
2017-10-11 10:30 - 2017-09-30 07:41 - 000651672 _____ (Microsoft Corporation) C:\Windows\system32\SettingSyncHost.exe
2017-10-11 10:30 - 2017-09-30 07:41 - 000257432 _____ (Microsoft Corporation) C:\Windows\system32\AppxAllUserStore.dll
2017-10-11 10:30 - 2017-09-30 07:41 - 000228248 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2017-10-11 10:30 - 2017-09-30 07:40 - 000642680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2017-10-11 10:30 - 2017-09-30 07:40 - 000558912 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.dll
2017-10-11 10:30 - 2017-09-30 07:40 - 000408984 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2017-10-11 10:30 - 2017-09-30 07:40 - 000184728 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys
2017-10-11 10:30 - 2017-09-30 07:40 - 000072944 _____ (Microsoft Corporation) C:\Windows\system32\easinvoker.exe
2017-10-11 10:30 - 2017-09-30 07:39 - 021351760 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2017-10-11 10:30 - 2017-09-30 07:39 - 000203672 _____ (Microsoft Corporation) C:\Windows\system32\basecsp.dll
2017-10-11 10:30 - 2017-09-30 07:38 - 007910072 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Protection.PlayReady.dll
2017-10-11 10:30 - 2017-09-29 09:34 - 017370624 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.dll
2017-10-11 10:30 - 2017-09-29 09:34 - 003669504 _____ (Microsoft Corporation) C:\Windows\system32\win32kfull.sys
2017-10-11 10:30 - 2017-09-29 09:33 - 000175616 _____ (Microsoft Corporation) C:\Windows\system32\t2embed.dll
2017-10-11 10:30 - 2017-09-29 09:32 - 002199552 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.Resources.dll
2017-10-11 10:30 - 2017-09-29 09:32 - 000209920 _____ (Microsoft Corporation) C:\Windows\system32\smartscreenps.dll
2017-10-11 10:30 - 2017-09-29 09:32 - 000087040 _____ (Microsoft Corporation) C:\Windows\system32\usoapi.dll
2017-10-11 10:30 - 2017-09-29 09:32 - 000064000 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2017-10-11 10:30 - 2017-09-29 09:31 - 000113152 _____ (Microsoft Corporation) C:\Windows\system32\wuuhosdeployment.dll
2017-10-11 10:30 - 2017-09-29 09:31 - 000057344 _____ (Microsoft Corporation) C:\Windows\system32\efssvc.dll
2017-10-11 10:30 - 2017-09-29 09:30 - 007931392 _____ (Microsoft Corporation) C:\Windows\system32\twinui.dll
2017-10-11 10:30 - 2017-09-29 09:30 - 000529408 _____ (Microsoft Corporation) C:\Windows\system32\daxexec.dll
2017-10-11 10:30 - 2017-09-29 09:30 - 000179200 _____ (Microsoft Corporation) C:\Windows\system32\BitLockerCsp.dll
2017-10-11 10:30 - 2017-09-29 09:30 - 000064512 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2017-10-11 10:30 - 2017-09-29 09:30 - 000043520 _____ (Microsoft Corporation) C:\Windows\system32\TpmTasks.dll
2017-10-11 10:30 - 2017-09-29 09:29 - 000550400 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\nwifi.sys
2017-10-11 10:30 - 2017-09-29 09:29 - 000461824 _____ (Microsoft Corporation) C:\Windows\system32\wlansec.dll
2017-10-11 10:30 - 2017-09-29 09:29 - 000433152 _____ (Microsoft Corporation) C:\Windows\system32\msIso.dll
2017-10-11 10:30 - 2017-09-29 09:29 - 000304640 _____ (Microsoft Corporation) C:\Windows\system32\dusmsvc.dll
2017-10-11 10:30 - 2017-09-29 09:29 - 000052736 _____ (Microsoft Corporation) C:\Windows\system32\ServiceWorkerHost.exe
2017-10-11 10:30 - 2017-09-29 09:28 - 000556032 _____ (Microsoft Corporation) C:\Windows\system32\TpmCoreProvisioning.dll
2017-10-11 10:30 - 2017-09-29 09:28 - 000527360 _____ (Microsoft Corporation) C:\Windows\system32\aadcloudap.dll
2017-10-11 10:30 - 2017-09-29 09:28 - 000256000 _____ (Microsoft Corporation) C:\Windows\system32\domgmt.dll
2017-10-11 10:30 - 2017-09-29 09:28 - 000254976 _____ (Microsoft Corporation) C:\Windows\system32\scksp.dll
2017-10-11 10:30 - 2017-09-29 09:27 - 001321984 ____R (The ICU Project) C:\Windows\system32\icuuc.dll
2017-10-11 10:30 - 2017-09-29 09:27 - 000616960 _____ (Microsoft Corporation) C:\Windows\system32\WindowManagement.dll
2017-10-11 10:30 - 2017-09-29 09:27 - 000565760 _____ (Microsoft Corporation) C:\Windows\system32\webio.dll
2017-10-11 10:30 - 2017-09-29 09:27 - 000538624 _____ (Microsoft Corporation) C:\Windows\system32\FirewallAPI.dll
2017-10-11 10:30 - 2017-09-29 09:27 - 000524800 _____ (Microsoft Corporation) C:\Windows\system32\TileDataRepository.dll
2017-10-11 10:30 - 2017-09-29 09:27 - 000412160 _____ (Microsoft Corporation) C:\Windows\system32\updatehandlers.dll
2017-10-11 10:30 - 2017-09-29 09:26 - 002809344 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentServer.dll
2017-10-11 10:30 - 2017-09-29 09:26 - 001468928 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.desktop.dll
2017-10-11 10:30 - 2017-09-29 09:26 - 001269760 _____ (Microsoft Corporation) C:\Windows\system32\enterprisecsps.dll
2017-10-11 10:30 - 2017-09-29 09:26 - 000772096 _____ (Microsoft Corporation) C:\Windows\system32\PCPKsp.dll
2017-10-11 10:30 - 2017-09-29 09:26 - 000356864 _____ (Microsoft Corporation) C:\Windows\system32\fveapibase.dll
2017-10-11 10:30 - 2017-09-29 09:26 - 000045056 _____ (Microsoft Corporation) C:\Windows\system32\TokenBrokerUI.dll
2017-10-11 10:30 - 2017-09-29 09:25 - 004175872 _____ (Microsoft Corporation) C:\Windows\system32\StartTileData.dll
2017-10-11 10:30 - 2017-09-29 09:25 - 002760704 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Shell.UnifiedTile.CuratedTileCollections.dll
2017-10-11 10:30 - 2017-09-29 09:24 - 003307008 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2017-10-11 10:30 - 2017-09-29 09:24 - 002503680 _____ (Microsoft Corporation) C:\Windows\system32\twinui.pcshell.dll
2017-10-11 10:30 - 2017-09-29 09:24 - 001886208 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.onecore.dll
2017-10-11 10:30 - 2017-09-29 09:24 - 001307648 _____ (Microsoft Corporation) C:\Windows\system32\dosvc.dll
2017-10-11 10:30 - 2017-09-29 09:24 - 000684032 _____ (Microsoft Corporation) C:\Windows\system32\usocore.dll
2017-10-11 10:30 - 2017-09-29 09:23 - 003140096 _____ (Microsoft Corporation) C:\Windows\system32\msftedit.dll
2017-10-11 10:30 - 2017-09-29 09:23 - 002730496 _____ (Microsoft Corporation) C:\Windows\system32\smartscreen.exe
2017-10-11 10:30 - 2017-09-29 09:23 - 002446336 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2017-10-11 10:30 - 2017-09-29 09:23 - 002055680 _____ (Microsoft Corporation) C:\Windows\system32\win32kbase.sys
2017-10-11 10:30 - 2017-09-29 09:23 - 001605632 _____ (Microsoft Corporation) C:\Windows\system32\quartz.dll
2017-10-11 10:30 - 2017-09-29 09:23 - 001460224 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2017-10-11 10:30 - 2017-09-29 09:23 - 001398784 _____ (Microsoft Corporation) C:\Windows\system32\wwansvc.dll
2017-10-11 10:30 - 2017-09-29 09:23 - 001052672 _____ (Microsoft Corporation) C:\Windows\system32\TokenBroker.dll
2017-10-11 10:30 - 2017-09-29 09:23 - 000986624 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2017-10-11 10:30 - 2017-09-29 09:23 - 000972288 _____ (Microsoft Corporation) C:\Windows\system32\MPSSVC.dll
2017-10-11 10:30 - 2017-09-29 09:23 - 000841216 _____ (Microsoft Corporation) C:\Windows\system32\fveapi.dll
2017-10-11 10:30 - 2017-09-29 09:23 - 000647168 _____ (Microsoft Corporation) C:\Windows\system32\RDXService.dll
2017-10-11 10:30 - 2017-09-29 09:23 - 000512000 _____ (Microsoft Corporation) C:\Windows\system32\twinapi.dll
2017-10-11 10:30 - 2017-09-29 09:22 - 001802240 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2017-10-11 10:30 - 2017-09-29 09:22 - 001438208 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.Phone.dll
2017-10-11 10:30 - 2017-09-29 09:22 - 000407040 _____ (Microsoft Corporation) C:\Windows\system32\wuuhext.dll
2017-10-11 10:30 - 2017-09-29 09:21 - 000722944 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2017-10-11 10:30 - 2017-09-29 09:21 - 000324096 _____ (Microsoft Corporation) C:\Windows\system32\DeviceEnroller.exe
2017-10-11 10:30 - 2017-09-29 09:21 - 000154624 _____ (Microsoft Corporation) C:\Windows\system32\regsvc.dll
2017-10-11 10:30 - 2017-09-29 09:21 - 000147456 _____ (Microsoft Corporation) C:\Windows\system32\TabSvc.dll
2017-10-11 10:30 - 2017-09-29 09:20 - 001811456 _____ (Microsoft Corporation) C:\Windows\system32\wsp_health.dll
2017-10-11 10:30 - 2017-09-29 09:20 - 000194560 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll
2017-10-11 10:30 - 2017-09-29 09:20 - 000150016 _____ (Microsoft Corporation) C:\Windows\system32\iscsiexe.dll
2017-10-11 10:30 - 2017-09-29 09:19 - 002088448 _____ (Microsoft Corporation) C:\Windows\system32\wsp_fs.dll
2017-10-11 10:30 - 2017-09-29 09:19 - 000208896 _____ (Microsoft Corporation) C:\Windows\system32\wscsvc.dll
2017-10-11 10:30 - 2017-09-29 09:18 - 002438656 _____ (Microsoft Corporation) C:\Windows\system32\ResetEngine.dll
2017-10-11 10:30 - 2017-09-29 09:18 - 001527296 _____ (Microsoft Corporation) C:\Windows\system32\RecoveryDrive.exe
2017-10-11 10:30 - 2017-09-29 09:18 - 000893440 _____ (Microsoft Corporation) C:\Windows\system32\clusapi.dll
2017-10-11 10:30 - 2017-09-29 09:18 - 000603136 _____ (Microsoft Corporation) C:\Windows\system32\resutils.dll
2017-10-11 10:30 - 2017-09-29 09:18 - 000347648 _____ (Microsoft Corporation) C:\Windows\system32\mcbuilder.exe
2017-10-11 10:30 - 2017-09-29 09:18 - 000130048 _____ (Microsoft Corporation) C:\Windows\system32\Robocopy.exe
2017-10-11 10:30 - 2017-09-29 09:18 - 000046592 _____ (Microsoft Corporation) C:\Windows\system32\cipher.exe
2017-10-11 10:30 - 2017-09-19 01:18 - 000965024 _____ (Microsoft Corporation) C:\Windows\system32\hvloader.efi
2017-10-11 10:30 - 2017-09-19 01:17 - 000821664 _____ (Microsoft Corporation) C:\Windows\system32\hvloader.exe
2017-10-11 10:30 - 2017-09-19 01:11 - 001018272 _____ (Microsoft Corporation) C:\Windows\system32\SecConfig.efi
2017-10-11 10:30 - 2017-09-19 00:26 - 000060416 _____ (Microsoft Corporation) C:\Windows\system32\tetheringclient.dll
2017-10-11 10:30 - 2017-09-19 00:25 - 000117248 _____ (Microsoft Corporation) C:\Windows\system32\eShims.dll
2017-10-11 10:30 - 2017-09-19 00:23 - 000210432 _____ (Microsoft Corporation) C:\Windows\system32\tetheringservice.dll
2017-10-10 16:04 - 2017-10-10 16:04 - 000000000 ____D C:\Users\Marionnette\AppData\Local\Tempzxpsign5a4168498979bd69
2017-10-10 14:17 - 2017-10-10 14:17 - 000000000 ____D C:\Users\Marionnette\AppData\Local\Tempzxpsignc1bd902f721ac9bf
2017-10-10 10:53 - 2017-10-10 10:53 - 000000000 ____D C:\Users\Marionnette\AppData\Roaming\Waves Audio
2017-10-10 10:44 - 2017-10-10 10:44 - 000000000 ____D C:\Users\Marionnette\AppData\Local\Tempzxpsigne23f46c884595e24
2017-10-09 14:06 - 2017-10-09 14:06 - 000000000 ____D C:\Users\Marionnette\AppData\Local\Tempzxpsignf8c91144b292cfb5
2017-10-09 12:29 - 2017-10-09 12:29 - 000059972 _____ C:\Users\Marionnette\Downloads\Logo Mas daumas gassac.ai
2017-10-08 10:31 - 2017-10-08 10:31 - 000000000 ____D C:\Users\Default\AppData\Roaming\Intel Corporation
2017-10-08 10:31 - 2017-10-08 10:31 - 000000000 ____D C:\Users\Default User\AppData\Roaming\Intel Corporation
2017-10-08 10:30 - 2017-10-08 10:36 - 000000000 ____D C:\Windows\IAStorAfsService
2017-10-08 10:30 - 2017-10-08 10:30 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel
2017-10-07 22:29 - 2017-10-07 22:29 - 000000000 ____D C:\Users\Marionnette\AppData\Local\Tempzxpsignac830d0e42764de3
2017-10-07 22:14 - 2017-10-07 22:14 - 000000000 ____D C:\Users\Marionnette\AppData\Local\Tempzxpsignaa53c537d50a6528
2017-10-07 22:14 - 2017-10-07 22:14 - 000000000 ____D C:\Users\Marionnette\AppData\Local\Tempzxpsign442dd7d759e630d7
2017-10-07 22:13 - 2017-10-07 22:13 - 000000000 ____D C:\Users\Marionnette\AppData\Local\Tempzxpsigne0bd6843d64b670a
2017-10-07 22:13 - 2017-10-07 22:13 - 000000000 ____D C:\Users\Marionnette\AppData\Local\Tempzxpsign6e62f09d9fbef591
2017-10-07 22:13 - 2017-10-07 22:13 - 000000000 ____D C:\Users\Marionnette\AppData\Local\Tempzxpsign255c5dc67c5d3f86
2017-10-07 12:52 - 2017-10-07 12:52 - 000000000 ____D C:\Users\Marionnette\AppData\Local\Tempzxpsign3c328cbda98b2453
2017-10-07 10:31 - 2017-10-07 10:31 - 000000000 ____D C:\Users\Marionnette\AppData\Local\Tempzxpsigne004fe02c0b89b7c
2017-10-07 10:00 - 2017-10-07 10:00 - 000000000 ____D C:\Users\Marionnette\AppData\Local\Tempzxpsign4e88e3184f390225
2017-10-07 09:55 - 2017-10-07 09:55 - 000000000 ____D C:\Users\Marionnette\AppData\Local\Tempzxpsign3d75c578bfe2f1fe
2017-10-07 09:40 - 2017-10-07 09:40 - 000000000 ____D C:\Users\Marionnette\AppData\Local\Tempzxpsigneca7961e66ff2963
2017-10-07 08:53 - 2017-10-07 08:53 - 000000000 ____D C:\Users\Marionnette\AppData\Local\Tempzxpsign6ab02afe7930ae46
2017-10-06 15:35 - 2017-10-06 15:35 - 000000000 ____D C:\Users\Marionnette\AppData\Local\Tempzxpsignd60305f252e18b63
2017-10-06 12:03 - 2017-10-06 12:03 - 000131698 _____ C:\Users\Marionnette\Downloads\Caisse Régionale de Crédit Agricole Mutuel du Languedoc.pdf.pdf
2017-10-06 12:01 - 2017-10-06 12:01 - 000189969 _____ C:\Users\Marionnette\Downloads\DEVIS-20170114-020.pdf
2017-10-06 10:31 - 2017-10-06 10:31 - 000000000 ____D C:\Users\Marionnette\AppData\Local\Tempzxpsign6b570205a2f05135
2017-10-06 10:06 - 2017-10-18 16:38 - 000000034 _____ C:\Users\Marionnette\AppData\Roaming\AdobeWLCMCache.dat
2017-10-06 10:06 - 2017-10-06 10:06 - 000000000 ____D C:\Users\Marionnette\AppData\LocalLow\Adobe
2017-10-06 09:44 - 2017-10-06 09:44 - 000000000 ____D C:\Users\Marionnette\AppData\Local\Tempzxpsign9bb9e1a2e1689a2b
2017-10-05 22:21 - 2017-10-05 22:21 - 000000000 ____D C:\Users\Marionnette\AppData\Local\Tempzxpsignb396ef1e8c9d7b50
2017-10-05 22:13 - 2017-10-05 22:13 - 000000000 ____D C:\Users\Marionnette\Creative Cloud Files
2017-10-05 10:45 - 2017-10-05 10:45 - 000000000 ____D C:\Users\Marionnette\AppData\Local\Tempzxpsign35cb368cc63f80e9
2017-10-04 14:29 - 2017-10-11 12:52 - 000000000 ____D C:\Users\Marionnette\AppData\Local\MicrosoftEdge
2017-10-04 09:45 - 2017-10-04 09:45 - 000000000 ____D C:\Users\Marionnette\AppData\Roaming\Skype
2017-10-04 09:23 - 2017-10-04 09:23 - 000000000 ____D C:\Users\Marionnette\AppData\Roaming\Macromedia
2017-09-28 15:55 - 2017-09-09 11:38 - 3986319666 _____ C:\Users\Marionnette\Desktop\DJI_0006.MOV
2017-09-28 15:54 - 2017-09-09 11:29 - 4208027971 _____ C:\Users\Marionnette\Desktop\DJI_0005.MOV
2017-09-28 15:47 - 2017-09-28 15:47 - 000000000 ____D C:\Users\Marionnette\AppData\Local\Tempzxpsign4963852157b1fe08
2017-09-28 15:29 - 2017-09-28 15:29 - 000130771 _____ C:\Users\Marionnette\Downloads\ChungDha_STV5_1 (1).zip
2017-09-28 15:27 - 2017-09-28 15:27 - 000130771 _____ C:\Users\Marionnette\Downloads\ChungDha_STV5_1.zip
2017-09-28 15:25 - 2017-09-28 15:25 - 000000000 ____D C:\Users\Marionnette\AppData\Local\Tempzxpsign5a6f7c0b9dfb5cb5
2017-09-28 15:17 - 2017-09-28 15:17 - 000181302 _____ C:\Users\Marionnette\Downloads\FACTURE-20170228-008.pdf
2017-09-28 15:14 - 2017-09-28 15:14 - 000000000 ____D C:\Users\Marionnette\AppData\Local\Comms
2017-09-28 15:01 - 2017-09-28 15:01 - 000000000 ____D C:\Users\Marionnette\AppData\Local\CrashDumps
2017-09-28 15:00 - 2017-09-28 15:00 - 000003658 _____ C:\Windows\System32\Tasks\AdobeAAMUpdater-1.0-DESKTOP-SH0R0V2-Marionnette
2017-09-28 15:00 - 2017-09-28 15:00 - 000000000 ____D C:\Users\Marionnette\AppData\Local\Tempzxpsigne3ca7f6b6e8dc086
2017-09-28 15:00 - 2017-09-28 15:00 - 000000000 ____D C:\Users\Marionnette\AppData\Local\DBG
2017-09-28 14:59 - 2017-10-15 15:09 - 000000000 ____D C:\Users\Marionnette\Documents\Adobe
2017-09-28 14:59 - 2017-10-10 10:31 - 000000000 ____D C:\Users\Marionnette\AppData\Local\NVIDIA Corporation
2017-09-28 14:59 - 2017-09-28 14:59 - 000003390 _____ C:\Windows\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3494934269-1802637253-2329854625-1002
2017-09-28 14:59 - 2017-09-28 14:59 - 000000000 ____D C:\Users\Marionnette\AppData\Roaming\NVIDIA
2017-09-28 14:59 - 2017-09-28 14:59 - 000000000 ____D C:\Users\Marionnette\AppData\Roaming\Intel Corporation
2017-09-28 14:59 - 2017-09-28 14:59 - 000000000 ____D C:\Users\Marionnette\AppData\Local\Dell
2017-09-28 14:58 - 2017-10-20 10:41 - 000000000 ____D C:\Users\Marionnette\AppData\Local\Adobe
2017-09-28 14:58 - 2017-09-28 14:59 - 000002431 _____ C:\Users\Marionnette\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2017-09-28 14:58 - 2017-09-28 14:59 - 000000000 ___RD C:\Users\Marionnette\OneDrive
2017-09-28 14:58 - 2017-09-28 14:58 - 000000000 ____D C:\Users\Marionnette\AppData\Roaming\Portrait Displays
2017-09-28 14:58 - 2017-09-28 14:58 - 000000000 ____D C:\Users\Marionnette\AppData\Local\Portrait Displays
2017-09-28 14:58 - 2017-09-28 14:58 - 000000000 ____D C:\Users\Marionnette\AppData\Local\ChromaTune_Dell
2017-09-28 14:58 - 2017-09-28 14:58 - 000000000 ____D C:\Users\Marionnette\AppData\Local\CEF
2017-09-28 14:57 - 2017-10-19 08:58 - 000000000 __SHD C:\Users\Marionnette\IntelGraphicsProfiles
2017-09-28 14:57 - 2017-10-18 14:53 - 000000000 ____D C:\Users\Marionnette\AppData\Local\Packages
2017-09-28 14:57 - 2017-10-15 15:08 - 000000000 ____D C:\Users\Marionnette\AppData\Roaming\Adobe
2017-09-28 14:57 - 2017-10-05 22:13 - 000000000 ____D C:\Users\Marionnette
2017-09-28 14:57 - 2017-10-04 09:20 - 000000000 ____D C:\Users\Marionnette\AppData\Local\ConnectedDevicesPlatform
2017-09-28 14:57 - 2017-09-28 15:59 - 000000000 ____D C:\Users\Marionnette\AppData\Local\Publishers
2017-09-28 14:57 - 2017-09-28 15:34 - 000000000 ____D C:\Users\Marionnette\AppData\Local\Google
2017-09-28 14:57 - 2017-09-28 14:57 - 000000020 ___SH C:\Users\Marionnette\ntuser.ini
2017-09-28 14:57 - 2017-09-28 14:57 - 000000000 _SHDL C:\Users\Marionnette\Voisinage réseau
2017-09-28 14:57 - 2017-09-28 14:57 - 000000000 _SHDL C:\Users\Marionnette\Voisinage d'impression
2017-09-28 14:57 - 2017-09-28 14:57 - 000000000 _SHDL C:\Users\Marionnette\Modèles
2017-09-28 14:57 - 2017-09-28 14:57 - 000000000 _SHDL C:\Users\Marionnette\Mes documents
2017-09-28 14:57 - 2017-09-28 14:57 - 000000000 _SHDL C:\Users\Marionnette\Menu Démarrer
2017-09-28 14:57 - 2017-09-28 14:57 - 000000000 _SHDL C:\Users\Marionnette\Documents\Mes vidéos
2017-09-28 14:57 - 2017-09-28 14:57 - 000000000 _SHDL C:\Users\Marionnette\Documents\Mes images
2017-09-28 14:57 - 2017-09-28 14:57 - 000000000 _SHDL C:\Users\Marionnette\Documents\Ma musique
2017-09-28 14:57 - 2017-09-28 14:57 - 000000000 _SHDL C:\Users\Marionnette\AppData\Roaming\Microsoft\Windows\Start Menu\Programmes
2017-09-28 14:57 - 2017-09-28 14:57 - 000000000 _SHDL C:\Users\Marionnette\AppData\Local\Historique
2017-09-28 14:57 - 2017-09-28 14:57 - 000000000 ____D C:\Users\Marionnette\AppData\Roaming\Genie9
2017-09-28 14:57 - 2017-09-28 14:57 - 000000000 ____D C:\Users\Marionnette\AppData\Local\VirtualStore
2017-09-28 14:57 - 2017-09-28 14:57 - 000000000 ____D C:\Users\Marionnette\AppData\Local\TileDataLayer
2017-09-28 14:57 - 2017-09-28 14:57 - 000000000 ____D C:\Users\Marionnette\AppData\Local\NVIDIA
2017-09-28 14:50 - 2017-09-28 14:50 - 000000000 ____D C:\Users\Marie Houlonne\AppData\Local\Tempzxpsign3ccca5b4250844a3
2017-09-28 14:47 - 2017-09-28 14:47 - 000002212 _____ C:\Users\Public\Desktop\3D Vision Photo Viewer.lnk
2017-09-28 14:46 - 2017-09-16 19:17 - 000135800 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe
2017-09-28 14:45 - 2017-09-16 21:27 - 040240064 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll
2017-09-28 14:45 - 2017-09-16 21:27 - 035925440 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2017-09-28 14:45 - 2017-09-16 21:27 - 035314112 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll
2017-09-28 14:45 - 2017-09-16 21:27 - 029020096 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2017-09-28 14:45 - 2017-09-16 21:27 - 023132720 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2017-09-28 14:45 - 2017-09-16 21:27 - 018849784 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2017-09-28 14:45 - 2017-09-16 21:27 - 013782904 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2017-09-28 14:45 - 2017-09-16 21:27 - 012241792 _____ (NVIDIA Corporation) C:\Windows\system32\nvptxJitCompiler.dll
2017-09-28 14:45 - 2017-09-16 21:27 - 011692856 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2017-09-28 14:45 - 2017-09-16 21:27 - 010087504 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvptxJitCompiler.dll
2017-09-28 14:45 - 2017-09-16 21:27 - 004145088 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2017-09-28 14:45 - 2017-09-16 21:27 - 003575744 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2017-09-28 14:45 - 2017-09-16 21:27 - 001988216 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6438569.dll
2017-09-28 14:45 - 2017-09-16 21:27 - 001606592 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6438569.dll
2017-09-28 14:45 - 2017-09-16 21:27 - 001291912 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncMFTH264.dll
2017-09-28 14:45 - 2017-09-16 21:27 - 001290024 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncMFThevc.dll
2017-09-28 14:45 - 2017-09-16 21:27 - 001067968 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2017-09-28 14:45 - 2017-09-16 21:27 - 001008816 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncMFTH264.dll
2017-09-28 14:45 - 2017-09-16 21:27 - 001007280 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncMFThevc.dll
2017-09-28 14:45 - 2017-09-16 21:27 - 001005176 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2017-09-28 14:45 - 2017-09-16 21:27 - 000972920 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2017-09-28 14:45 - 2017-09-16 21:27 - 000924280 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2017-09-28 14:45 - 2017-09-16 21:27 - 000781728 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2017-09-28 14:45 - 2017-09-16 21:27 - 000690504 _____ (NVIDIA Corporation) C:\Windows\system32\nvfatbinaryLoader.dll
2017-09-28 14:45 - 2017-09-16 21:27 - 000617232 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2017-09-28 14:45 - 2017-09-16 21:27 - 000609728 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll
2017-09-28 14:45 - 2017-09-16 21:27 - 000578056 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvfatbinaryLoader.dll
2017-09-28 14:45 - 2017-09-16 21:27 - 000499136 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll
2017-09-28 14:45 - 2017-09-16 21:27 - 000000669 _____ C:\Windows\SysWOW64\nv-vk32.json
2017-09-28 14:45 - 2017-09-16 21:27 - 000000669 _____ C:\Windows\system32\nv-vk64.json
2017-09-28 14:06 - 2017-09-28 14:06 - 000000000 ____D C:\Users\Marie Houlonne\AppData\Local\Tempzxpsignac3d74c780d2cdac
2017-09-28 13:47 - 2017-09-28 13:47 - 000000000 ____D C:\Users\Marie Houlonne\AppData\Local\Tempzxpsignbe658745dfc6815b
2017-09-28 13:14 - 2017-09-28 13:14 - 000001153 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Premiere Pro CC 2017.lnk
2017-09-28 13:14 - 2017-09-28 13:14 - 000000000 ____D C:\Users\Public\Documents\Adobe
2017-09-28 12:58 - 2017-09-28 12:58 - 000000000 ____D C:\Users\Marie Houlonne\AppData\Local\Tempzxpsign5eac7d9bd4861178
2017-09-28 12:56 - 2017-09-28 12:56 - 000000000 ____D C:\Users\Marie Houlonne\AppData\Local\Tempzxpsign47b6c860926b29b3
2017-09-28 12:27 - 2017-09-28 12:27 - 000000000 ____D C:\Users\Marie Houlonne\AppData\Local\Tempzxpsign5fb923c21cf53ab0
2017-09-28 10:42 - 2017-09-28 10:42 - 000000000 ____D C:\Users\Marie Houlonne\AppData\Local\Tempzxpsign7331cbd3eefcc3b1
2017-09-28 09:00 - 2017-09-28 09:00 - 000000000 ____D C:\Users\Marie Houlonne\AppData\Local\Tempzxpsign53076fa7743452d6
2017-09-27 19:45 - 2017-09-27 19:45 - 000000000 ____D C:\Users\Marie Houlonne\AppData\Local\Tempzxpsign060b3b56e25e98f4
2017-09-27 19:26 - 2017-10-20 18:13 - 000004222 _____ C:\Windows\System32\Tasks\Intel Security DAT Reputation (AMCore) Post DAT update endpoint safety pulse
2017-09-27 19:09 - 2017-09-27 19:09 - 000000000 ____D C:\Users\Marie Houlonne\AppData\Local\Tempzxpsignebf5518906a71aaf
2017-09-27 19:02 - 2017-09-27 19:02 - 000000000 ____D C:\Users\Marie Houlonne\AppData\Local\Tempzxpsigna9d8fb695b348a1b
2017-09-27 15:52 - 2017-09-27 15:52 - 000000000 ____D C:\Users\Marie Houlonne\AppData\Local\Tempzxpsign14d2b5a95baac64e
2017-09-27 14:28 - 2017-09-27 14:28 - 000000000 ____D C:\Users\Marie Houlonne\AppData\Local\Tempzxpsignde708946dd9999c0
2017-09-27 11:47 - 2017-09-27 11:47 - 000001115 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Waves MaxxAudioPro.lnk
2017-09-27 11:47 - 2017-09-27 11:47 - 000000000 ____D C:\Program Files\Waves
2017-09-27 10:36 - 2017-09-27 10:36 - 000000000 ____D C:\Users\Marie Houlonne\AppData\Local\Tempzxpsigndfd2a9c0ee4b79f8
2017-09-26 17:49 - 2017-09-26 17:49 - 000000000 ____D C:\Users\Marie Houlonne\AppData\Local\Tempzxpsign78065cb5ec72b545
2017-09-26 16:59 - 2017-09-26 16:59 - 000000000 ____D C:\Users\Marie Houlonne\AppData\Local\Tempzxpsign00f7dc74e068e391
2017-09-26 11:34 - 2017-09-26 11:34 - 000000000 ____D C:\Users\Marie Houlonne\AppData\Local\Tempzxpsign2fe5523d1b75e79a
2017-09-26 09:01 - 2017-09-26 09:01 - 000001304 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Creative Cloud.lnk
2017-09-26 09:01 - 2017-09-26 09:01 - 000001292 _____ C:\Users\Public\Desktop\Adobe Creative Cloud.lnk
2017-09-25 16:35 - 2017-09-25 16:35 - 000000000 ____D C:\Users\Marie Houlonne\AppData\Local\Tempzxpsigndf8e606bba27a0c5
2017-09-25 16:28 - 2017-09-25 16:28 - 000000000 ____D C:\Users\Marie Houlonne\AppData\Local\Tempzxpsign952004eddcb4feec
2017-09-25 16:25 - 2017-09-25 16:25 - 000000000 ____D C:\Users\Marie Houlonne\AppData\Local\Tempzxpsign05bbbb0bf8eccb03
2017-09-25 16:23 - 2017-09-25 16:23 - 000000000 ____D C:\Users\Marie Houlonne\AppData\Local\Tempzxpsign2f79228f0b505ad4
2017-09-25 16:21 - 2017-09-25 16:21 - 000000000 ____D C:\Users\Marie Houlonne\AppData\Local\Tempzxpsigna17708af6b11c2fb
2017-09-25 16:11 - 2017-09-25 16:11 - 000000000 ____D C:\Users\Marie Houlonne\AppData\Local\Tempzxpsign2d13e7f254f0a71d
2017-09-25 15:14 - 2017-09-25 15:14 - 000000000 ____D C:\Users\Marie Houlonne\AppData\Local\Tempzxpsignfb2b1694ad10dd16
2017-09-25 15:13 - 2017-09-25 15:13 - 000000000 ____D C:\Users\Marie Houlonne\AppData\Local\Tempzxpsignb34ddd7e39b8a61f
2017-09-25 15:10 - 2017-09-25 15:10 - 000000000 ____D C:\Users\Marie Houlonne\AppData\Local\Tempzxpsign5fbc97b2632aad47
2017-09-25 15:09 - 2017-09-25 15:09 - 000000000 ____D C:\Users\Marie Houlonne\AppData\Local\Tempzxpsign3ffd0783468f2348
2017-09-25 10:35 - 2017-09-25 10:35 - 000000000 ____D C:\Users\Marie Houlonne\AppData\Local\Tempzxpsign6f38e1d4bc8308b6
2017-09-25 10:21 - 2017-09-25 10:21 - 000000000 ____D C:\Users\Marie Houlonne\AppData\Local\Tempzxpsigna02a6bf4eadc8097
2017-09-25 10:01 - 2017-09-25 10:01 - 000000000 ____D C:\Users\Marie Houlonne\AppData\Local\Tempzxpsignd84b39f84e01ad90
2017-09-25 09:17 - 2017-09-25 09:17 - 000000000 ____D C:\Users\Marie Houlonne\AppData\Local\Tempzxpsignfcadad5c7ac71826
2017-09-25 09:09 - 2017-09-25 09:09 - 000000000 ____D C:\Users\Marie Houlonne\AppData\Local\Tempzxpsigna8956ed062a6f7b8
2017-09-25 09:06 - 2017-09-25 09:06 - 000000000 ____D C:\Users\Marie Houlonne\AppData\Local\Tempzxpsign9fc2ff1d1838ce62
2017-09-24 21:24 - 2017-09-24 21:24 - 000000000 ____D C:\Users\Marie Houlonne\AppData\Local\Tempzxpsignbd33633dccdc6fed
2017-09-24 20:06 - 2017-09-24 20:06 - 000000000 ____D C:\Users\Marie Houlonne\AppData\Local\Tempzxpsign6a763fe48eb5fba4
2017-09-24 20:02 - 2017-09-24 20:02 - 000000000 ____D C:\Users\Marie Houlonne\AppData\Local\Tempzxpsignc5c87f3a82002af2
2017-09-24 19:53 - 2017-09-24 19:53 - 000000000 ____D C:\Users\Marie Houlonne\AppData\Local\Tempzxpsign3d8ca8212206f0cf
2017-09-24 19:22 - 2017-09-24 19:22 - 000000000 ____D C:\Users\Marie Houlonne\AppData\Local\Tempzxpsignc6638a6c8c1aefbf
2017-09-24 16:55 - 2017-09-24 16:55 - 000000000 ____D C:\Users\Marie Houlonne\AppData\Local\Tempzxpsign94cf806e35a008a1
2017-09-24 16:49 - 2017-09-24 16:49 - 000000000 ____D C:\Users\Marie Houlonne\AppData\Local\Tempzxpsignc1a717e08225ca2a
2017-09-24 15:34 - 2017-09-24 15:34 - 000000000 ____D C:\Users\Marie Houlonne\AppData\Local\Tempzxpsigne620b348701fff77
2017-09-24 14:48 - 2017-09-24 14:48 - 000000000 ____D C:\Users\Marie Houlonne\AppData\Local\Tempzxpsign58600245eef99066
2017-09-24 14:04 - 2017-09-24 14:04 - 000000000 ____D C:\Users\Marie Houlonne\AppData\Local\Tempzxpsign51494b6b4597b25d
2017-09-21 16:14 - 2017-09-21 16:14 - 000000000 ____D C:\Users\Marie Houlonne\AppData\Local\Tempzxpsign42b44364e08fd296
2017-09-20 20:19 - 2017-09-20 20:19 - 003685864 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTSnMg64.cpl
2017-09-20 20:19 - 2017-09-20 20:19 - 003213832 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtPgEx64.dll
2017-09-20 20:19 - 2017-09-20 20:19 - 000248840 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTHDASIO64.dll
2017-09-20 20:18 - 2017-09-20 20:18 - 025135008 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioCapture64.dll
2017-09-20 20:18 - 2017-09-20 20:18 - 024252360 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioRenderAVX64.dll
2017-09-20 20:18 - 2017-09-20 20:18 - 024153416 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioRender64.dll
2017-09-20 20:18 - 2017-09-20 20:18 - 003548616 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApi64.dll
2017-09-20 20:18 - 2017-09-20 20:18 - 002219504 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoInstII64.dll
2017-09-20 20:18 - 2017-09-20 20:18 - 001367728 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTCOM64.dll
2017-09-20 20:18 - 2017-09-20 20:18 - 000749544 _____ (Intel(R) Corporation) C:\Windows\system32\Drivers\IntcOED.sys
2017-09-20 20:18 - 2017-09-20 20:18 - 000705608 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtDataProc64.dll
2017-09-20 20:18 - 2017-09-20 20:18 - 000582080 _____ (Intel Corporation) C:\Windows\system32\tbb_waves.dll
2017-09-20 20:18 - 2017-09-20 20:18 - 000353848 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtlCPAPI64.dll
2017-09-20 20:18 - 2017-09-20 20:18 - 000237288 _____ (Intel(R) Corporation) C:\Windows\system32\Drivers\IntcAudioBus.sys
2017-09-20 20:18 - 2017-09-20 20:18 - 000209416 _____ (Realtek Semiconductor Corp.) C:\Windows\SysWOW64\RTHDASIO.dll
2017-09-20 19:58 - 2017-09-20 19:58 - 012951320 _____ C:\Windows\system32\Drivers\RTAIODAT.DAT
2017-09-20 19:58 - 2017-09-20 19:58 - 000243016 _____ C:\Windows\system32\Drivers\dsp_fw_release.bin
2017-09-20 19:58 - 2017-09-20 19:58 - 000012288 _____ C:\Windows\system32\Drivers\dsp_fw_release_7CAD0808-AB10-CD23-EF45-12AB34CD56EF.bin
2017-09-20 16:35 - 2017-09-20 16:35 - 000000000 ____D C:\Users\Marie Houlonne\AppData\Local\Tempzxpsign887cc860b91acbfc
2017-09-20 09:19 - 2017-09-20 09:19 - 000000000 ____D C:\Users\Marie Houlonne\AppData\Local\Tempzxpsign3be5cd51d96c5764
2017-09-20 09:07 - 2017-09-20 09:07 - 000001543 _____ C:\Users\Marie Houlonne\AppData\Roaming\Microsoft\Windows\Start Menu\Time-Lapse Tool.lnk
2017-09-20 09:07 - 2017-09-20 09:07 - 000001541 _____ C:\Users\Marie Houlonne\Desktop\Time-Lapse Tool.lnk
2017-09-20 09:07 - 2017-09-20 09:07 - 000000000 ____D C:\Users\Marie Houlonne\AppData\Local\AI_Devs

==================== Un mois - Modifiés - fichiers et dossiers ========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2017-10-20 19:56 - 2017-07-10 14:16 - 000000000 ____D C:\Windows\system32\SleepStudy
2017-10-20 19:53 - 2017-08-10 18:19 - 000004034 _____ C:\Windows\System32\Tasks\Intel Security DAT Reputation (AMCore) periodic endpoint safety pulse
2017-10-20 17:48 - 2017-03-18 23:03 - 000000000 ____D C:\Windows\AppReadiness
2017-10-20 11:38 - 2017-07-21 10:43 - 000000000 ____D C:\Users\Marie Houlonne\AppData\Local\Adobe
2017-10-20 11:01 - 2017-07-10 14:28 - 000000000 ____D C:\Program Files (x86)\McAfee
2017-10-19 11:23 - 2017-03-18 23:03 - 000000000 ___HD C:\Program Files\WindowsApps
2017-10-19 11:21 - 2017-07-19 13:25 - 000000000 ____D C:\Users\Marie Houlonne\AppData\Local\Packages
2017-10-19 11:20 - 2017-07-21 10:16 - 000000000 ____D C:\Users\Marie Houlonne\AppData\Roaming\Dashlane
2017-10-19 11:18 - 2017-07-21 11:10 - 000000000 ___RD C:\Users\Marie Houlonne\Creative Cloud Files
2017-10-19 11:18 - 2017-07-19 13:25 - 000000000 __SHD C:\Users\Marie Houlonne\IntelGraphicsProfiles
2017-10-19 11:18 - 2017-07-19 13:25 - 000000000 ____D C:\Users\Marie Houlonne\AppData\Roaming\Adobe
2017-10-19 11:18 - 2017-07-10 14:29 - 000000000 __RHD C:\Users\Public\AccountPictures
2017-10-19 11:18 - 2017-07-10 14:26 - 000000000 ____D C:\ProgramData\NVIDIA
2017-10-18 13:19 - 2017-03-18 22:51 - 000000000 ____D C:\Windows\CbsTemp
2017-10-17 14:10 - 2017-07-10 14:21 - 000005848 _____ C:\Windows\system32\PerfStringBackup.INI
2017-10-17 14:10 - 2017-04-04 22:24 - 001834750 _____ C:\Windows\system32\perfh00C.dat
2017-10-17 14:10 - 2017-04-04 22:24 - 000451626 _____ C:\Windows\system32\perfc00C.dat
2017-10-17 14:05 - 2017-07-10 14:16 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2017-10-17 14:05 - 2017-03-18 13:40 - 001048576 _____ C:\Windows\system32\config\BBI
2017-10-17 13:56 - 2017-03-18 23:03 - 000000000 ___HD C:\Windows\system32\GroupPolicy
2017-10-17 13:56 - 2017-03-18 23:03 - 000000000 ____D C:\Windows\SysWOW64\GroupPolicy
2017-10-17 13:35 - 2017-07-10 14:16 - 005535840 _____ C:\Windows\system32\FNTCACHE.DAT
2017-10-17 09:12 - 2017-07-10 14:36 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2017-10-17 09:12 - 2017-03-18 23:03 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2017-10-13 12:26 - 2017-03-18 23:03 - 000000000 ____D C:\Windows\rescache
2017-10-13 11:33 - 2017-07-10 14:28 - 000003126 _____ C:\Windows\System32\Tasks\McAfeeLogon
2017-10-13 11:33 - 2017-07-10 14:28 - 000000000 ____D C:\Windows\System32\Tasks\McAfee
2017-10-13 11:33 - 2017-07-10 14:28 - 000000000 ____D C:\Program Files\Common Files\mcafee
2017-10-13 02:21 - 2017-03-18 23:06 - 000835576 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2017-10-13 02:21 - 2017-03-18 23:06 - 000177656 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2017-10-12 09:30 - 2017-03-18 23:01 - 000000000 ____D C:\Windows\INF
2017-10-11 17:34 - 2017-03-18 23:03 - 000230400 _____ (Microsoft Corporation) C:\Windows\system32\msclmd.dll
2017-10-11 17:34 - 2017-03-18 23:03 - 000207872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msclmd.dll
2017-10-11 17:34 - 2017-03-18 23:03 - 000000000 ____D C:\Windows\ShellExperiences
2017-10-11 17:34 - 2017-03-18 23:03 - 000000000 ____D C:\Windows\Provisioning
2017-10-11 13:58 - 2017-07-21 10:19 - 000001985 _____ C:\Users\Marie Houlonne\Desktop\Dashlane.lnk
2017-10-11 13:58 - 2017-07-21 10:16 - 000000000 ____D C:\Users\Marie Houlonne\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dashlane
2017-10-11 10:35 - 2017-07-21 11:08 - 000000000 ____D C:\Windows\system32\MRT
2017-10-11 10:33 - 2017-07-21 11:08 - 126925120 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2017-10-08 10:36 - 2017-07-10 14:22 - 000000000 ____D C:\Windows\System32\Tasks\Intel
2017-10-08 10:30 - 2017-07-10 14:22 - 000000000 ____D C:\Program Files (x86)\Intel
2017-10-08 10:30 - 2017-07-10 14:21 - 000000000 ____D C:\Program Files\Intel
2017-10-05 23:00 - 2017-03-18 23:03 - 000000000 ____D C:\Windows\LiveKernelReports
2017-09-28 14:47 - 2017-07-10 14:26 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2017-09-28 14:46 - 2017-07-10 14:23 - 000000000 ____D C:\Program Files (x86)\VulkanRT
2017-09-28 14:43 - 2017-07-10 14:26 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2017-09-28 14:31 - 2017-07-19 13:26 - 000000000 ____D C:\Users\Marie Houlonne\AppData\Local\NVIDIA Corporation
2017-09-28 14:30 - 2017-08-04 13:54 - 000004308 _____ C:\Windows\System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-09-28 14:30 - 2017-08-04 13:54 - 000004000 _____ C:\Windows\System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-09-28 14:30 - 2017-08-04 13:54 - 000003994 _____ C:\Windows\System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-09-28 14:30 - 2017-08-04 13:54 - 000003894 _____ C:\Windows\System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-09-28 14:30 - 2017-08-04 13:54 - 000003866 _____ C:\Windows\System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-09-28 14:30 - 2017-08-04 13:54 - 000003858 _____ C:\Windows\System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-09-28 14:30 - 2017-08-04 13:54 - 000003696 _____ C:\Windows\System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-09-28 14:30 - 2017-08-04 13:54 - 000003654 _____ C:\Windows\System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-09-28 14:30 - 2017-07-10 14:24 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2017-09-28 14:19 - 2017-07-19 13:25 - 000000000 ____D C:\Users\Marie Houlonne\AppData\Local\NVIDIA
2017-09-28 13:49 - 2017-07-21 10:24 - 000000000 _____ C:\Users\Marie Houlonne\AppData\LocalLow\rightsCheck_1.txt
2017-09-28 13:14 - 2017-07-21 10:52 - 000000000 ____D C:\Program Files\Adobe
2017-09-28 09:54 - 2017-07-10 14:21 - 000000000 ____D C:\ProgramData\Package Cache
2017-09-27 15:06 - 2017-08-14 20:00 - 000002272 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2017-09-27 15:06 - 2017-08-14 20:00 - 000002260 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2017-09-27 11:48 - 2017-07-10 14:22 - 000000000 ____D C:\Windows\system32\RTCOM
2017-09-27 11:48 - 2017-07-10 14:21 - 000000000 ____D C:\Windows\SysWOW64\RTCOM
2017-09-26 14:42 - 2017-07-31 11:08 - 000000000 ____D C:\Users\Marie Houlonne\AppData\Local\CrashDumps
2017-09-26 09:01 - 2017-07-21 10:50 - 000000000 ____D C:\Program Files (x86)\Adobe
2017-09-25 16:58 - 2017-07-31 17:48 - 000000033 _____ C:\Users\Marie Houlonne\AppData\Roaming\AdobeWLCMCache.dat
2017-09-21 16:42 - 2017-07-31 09:40 - 000003396 _____ C:\Windows\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3494934269-1802637253-2329854625-1001
2017-09-21 16:42 - 2017-07-19 13:27 - 000002440 _____ C:\Users\Marie Houlonne\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2017-09-21 16:42 - 2017-07-19 13:27 - 000000000 ___RD C:\Users\Marie Houlonne\OneDrive
2017-09-20 20:19 - 2017-07-10 14:21 - 005881208 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHD64.sys
2017-09-20 20:19 - 2017-07-10 14:21 - 000032408 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCoLDR64.dll
2017-09-20 20:18 - 2017-07-10 14:21 - 003556512 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RltkAPO64.dll
2017-09-20 20:18 - 2017-07-10 14:21 - 000203448 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCfg64.dll

==================== Fichiers à la racine de certains dossiers =======

2017-10-06 10:06 - 2017-10-18 16:38 - 000000034 _____ () C:\Users\Marionnette\AppData\Roaming\AdobeWLCMCache.dat

==================== Bamital & volsnap ======================

(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)

C:\Windows\system32\winlogon.exe => Le fichier est signé numériquement
C:\Windows\system32\wininit.exe => Le fichier est signé numériquement
C:\Windows\explorer.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\explorer.exe => Le fichier est signé numériquement
C:\Windows\system32\svchost.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\svchost.exe => Le fichier est signé numériquement
C:\Windows\system32\services.exe => Le fichier est signé numériquement
C:\Windows\system32\User32.dll => Le fichier est signé numériquement
C:\Windows\SysWOW64\User32.dll => Le fichier est signé numériquement
C:\Windows\system32\userinit.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\userinit.exe => Le fichier est signé numériquement
C:\Windows\system32\rpcss.dll => Le fichier est signé numériquement
C:\Windows\system32\dnsapi.dll => Le fichier est signé numériquement
C:\Windows\SysWOW64\dnsapi.dll => Le fichier est signé numériquement
C:\Windows\system32\Drivers\volsnap.sys => Le fichier est signé numériquement

LastRegBack: 2017-10-15 16:56

==================== Fin de FRST.txt ============================

Publicité


Signaler le contenu de ce document

Publicité