Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 12-02-2020 Exécuté par Christophe (administrateur) sur CHELNOV-PC (ASUS All Series) (14-02-2020 19:48:23) Exécuté depuis C:\Users\Christophe\Desktop Profils chargés: Christophe (Profils disponibles: Christophe) Platform: Windows 10 Home Version 1903 18362.657 (X64) Langue: Français (France) Navigateur par défaut: IE Mode d'amorçage: Normal Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processus (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.) () [Fichier non signé] C:\Soft 3D Install Directory\3DS Max 2014\3ds Max 2014\NVIDIA\Satellite\raysat_3dsmax2014_64server.exe (Adobe Systems Incorporated -> Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe (Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe (ASUSTeK Computer Inc. -> ) C:\Program Files (x86)\ASUS\AXSP\1.01.02\atkexComSvc.exe (BlueStack Systems, Inc. -> BlueStack Systems, Inc.) C:\Program Files (x86)\BlueStacks\HD-Agent.exe (BlueStack Systems, Inc. -> BlueStack Systems, Inc.) C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe (Cambridge Silicon Radio Ltd. -> ) C:\Program Files\CSR\CSR Harmony Wireless Software Stack\CsrSyncMLServer.exe (Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited) C:\Program Files\CSR\CSR Harmony Wireless Software Stack\CsrAudioguiCtrl.exe (Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited) C:\Program Files\CSR\CSR Harmony Wireless Software Stack\CsrHCRPServer.exe (Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited) C:\Program Files\CSR\CSR Harmony Wireless Software Stack\HarmonyUserStartup.exe (Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited) C:\Program Files\CSR\CSR Harmony Wireless Software Stack\TrayApplication.exe (Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited) C:\Program Files\CSR\CSR Harmony Wireless Software Stack\vksts.exe (Google Inc -> Google Inc.) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\officeclicktorun.exe (Microsoft Corporation -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12001.1001.5.0_x64__8wekyb3d8bbwe\WinStore.App.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\browser_broker.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeSH.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2001.7-0\MsMpEng.exe (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2001.7-0\NisSrv.exe (NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (Popcorn Time) [Fichier non signé] C:\Program Files (x86)\Popcorn Time\Updater.exe (Power Software Limited -> ) C:\Program Files\WinArchiver\WAService.exe (Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe (Skype Software Sarl -> Skype Technologies S.A.) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Wacom Technology Corp. -> Wacom Technology) C:\Program Files\Tablet\Wacom\WacomHost.exe (Wacom Technology Corp. -> Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\Wacom_Tablet.exe (Wacom Technology Corp. -> Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\Wacom_TabletUser.exe (Wacom Technology Corp. -> Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\Wacom_TouchUser.exe (Wacom Technology Corp. -> Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\WTabletServicePro.exe (WIBU-SYSTEMS AG -> WIBU-SYSTEMS AG) C:\Program Files (x86)\WIBUKEY\Server\WkSvMgr.exe (WIBU-SYSTEMS AG -> WIBU-SYSTEMS AG) C:\Program Files (x86)\WIBUKEY\Server\WkSvW32.exe ==================== Registre (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.) HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [7634648 2014-08-14] (Realtek Semiconductor Corp -> Realtek Semiconductor) HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [446392 2012-04-04] (Adobe Systems Incorporated -> Adobe Systems Incorporated) HKLM\...\Run: [iTunesHelper] => D:\iTunes\iTunesHelper.exe [176952 2016-07-26] (Apple Inc. -> Apple Inc.) HKLM\...\Run: [CsrHCRPServer] => C:\Program Files\CSR\CSR Harmony Wireless Software Stack\CsrHCRPServer.exe [1134288 2012-03-22] (Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited) HKLM\...\Run: [CsrAudioguiCtrl] => C:\Program Files\CSR\CSR Harmony Wireless Software Stack\CsrAudioguiCtrl.exe [511696 2012-03-22] (Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited) HKLM\...\Run: [CsrSyncMLServer] => C:\Program Files\CSR\CSR Harmony Wireless Software Stack\CsrSyncMLServer.exe [244944 2012-03-22] (Cambridge Silicon Radio Ltd. -> ) HKLM\...\Run: [vksts] => C:\Program Files\CSR\CSR Harmony Wireless Software Stack\vksts.exe [25792 2012-03-22] (Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited) HKLM\...\Run: [HarmonyUserStartup] => C:\Program Files\CSR\CSR Harmony Wireless Software Stack\HarmonyUserStartup.exe [39128 2012-03-22] (Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited) HKLM\...\Run: [CSRHarmonySkypePlugin] => C:\Program Files (x86)\CSR\CSR Harmony Wireless Software Stack\CSRHarmonySkypePlugin.exe [146656 2012-03-22] (Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited) HKLM\...\Run: [TrayApplication] => C:\Program Files\CSR\CSR Harmony Wireless Software Stack\TrayApplication.exe [529616 2012-03-22] (Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited) HKLM-x32\...\Run: [SwitchBoard] => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Test Signing Certificate -> Adobe Systems Incorporated) [Fichier non signé] HKLM-x32\...\Run: [AdobeCS6ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [1073312 2012-03-09] (Adobe Systems Incorporated -> Adobe Systems Incorporated) HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [937920 2011-09-05] (Adobe Systems, Incorporated -> Adobe Systems Incorporated) HKLM-x32\...\Run: [Adobe Acrobat Speed Launcher] => C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrobat_sl.exe [36760 2011-09-05] (Adobe Systems, Incorporated -> Adobe Systems Incorporated) HKLM-x32\...\Run: [Acrobat Assistant 8.0] => C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrotray.exe [2904984 2011-09-05] (Adobe Systems, Incorporated -> Adobe Systems Inc.) HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [507776 2014-10-07] (Oracle America, Inc. -> Oracle Corporation) HKU\S-1-5-21-1853260028-296559677-1043706777-1002\...\Run: [Steam] => D:\Gamez\Steam\steam.exe [3311568 2020-01-18] (Valve -> Valve Corporation) HKU\S-1-5-21-1853260028-296559677-1043706777-1002\...\Run: [BlueStacks Agent] => C:\Program Files (x86)\BlueStacks\HD-Agent.exe [225816 2017-03-21] (BlueStack Systems, Inc. -> BlueStack Systems, Inc.) HKU\S-1-5-21-1853260028-296559677-1043706777-1002\...\Run: [Spotify] => C:\Users\Christophe\AppData\Roaming\Spotify\Spotify.exe [25828256 2019-09-02] (Spotify AB -> Spotify Ltd) HKU\S-1-5-21-1853260028-296559677-1043706777-1002\...\Run: [Skype for Desktop] => C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe [91511144 2020-01-24] (Skype Software Sarl -> Skype Technologies S.A.) HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\80.0.3987.100\Installer\chrmstp.exe [2020-02-12] (Google LLC -> Google LLC) HKLM\Software\...\Authentication\Credential Providers: [{5355DA8C-FE32-49b4-A567-A67535C86592}] -> C:\Program Files\CSR\CSR Harmony Wireless Software Stack\BLEtokenCredentialProvider.dll [2012-03-22] (Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Serveur réseau.lnk [2015-01-10] ShortcutTarget: Serveur réseau.lnk -> C:\Program Files (x86)\WIBUKEY\Server\WkSvMgr.exe (WIBU-SYSTEMS AG -> WIBU-SYSTEMS AG) CHR HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION ==================== Tâches planifiées (Avec liste blanche) ============ (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) Task: {16230F64-ABBC-4155-AA42-0B9283F8CCDC} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3487440 2018-11-13] (NVIDIA Corporation -> NVIDIA Corporation) Task: {19C2311B-2462-449E-9725-E0D5E8E9CB34} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Pas de fichier <==== ATTENTION Task: {1AEFC629-5449-4BD8-AA72-00B7CBBD0311} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2001.7-0\MpCmdRun.exe [473544 2020-02-04] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {25595495-476B-4667-B57A-B921DF3FC8FB} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [569416 2016-02-23] (Apple Inc. -> Apple Inc.) Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\WINDOWS\System32\AutoWorkplace.exe Task: {38119ACA-5EEE-43C3-87C6-6CA838318CF0} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2001.7-0\MpCmdRun.exe [473544 2020-02-04] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {3B990954-99D1-40A6-BC9B-7D1FBFCF2D18} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [855760 2018-11-13] (NVIDIA Corporation -> NVIDIA Corporation) Task: {57F121C7-2CBE-43AB-BC67-27F260B2E76C} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime -> Pas de fichier <==== ATTENTION Task: {5A3FB241-0B11-4EA5-BC66-0D9F1B406040} - System32\Tasks\Microsoft\Windows\Customer Experience Improvement Program\BthSQM => {C8367320-6F85-11E0-A1F0-0800200C9A66} C:\WINDOWS\System32\BthTelemetry.dll [32256 2019-03-19] (Microsoft Windows -> Microsoft Corporation) Task: {5CEFCDE9-5D7A-4084-8C2B-D7A426A4818F} - \Microsoft\Windows\Setup\GWXTriggers\OnIdle-5d -> Pas de fichier <==== ATTENTION Task: {65F783EB-490B-4E62-987F-B8CE73085C7E} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [773328 2018-11-13] (NVIDIA Corporation -> NVIDIA Corporation) Task: {67538C26-BBB6-403B-BEED-53AAB02609AE} - \Optimize Start Menu Cache Files-S-1-5-21-1853260028-296559677-1043706777-1001 -> Pas de fichier <==== ATTENTION Task: {6DFCB649-0769-4F83-BB10-F60F235F6D3D} - System32\Tasks\Microsoft\Windows\SkyDrive\Idle Sync Maintenance Task => {BF6C1E47-86EC-4194-9CE5-13C15DCB2001} Task: {781C009F-D15F-4E7D-B2B9-95FB3C4BA846} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2001.7-0\MpCmdRun.exe [473544 2020-02-04] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {7903D678-3607-430F-A1EB-418D35126D17} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> Pas de fichier <==== ATTENTION Task: {7E5B8065-585B-4127-AD07-4307753B64F7} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [773328 2018-11-13] (NVIDIA Corporation -> NVIDIA Corporation) Task: {8385D0D0-1E92-4FD9-8039-70916C521961} - System32\Tasks\CreateChoiceProcessTask => C:\Windows\BrowserChoice\browserchoice.exe Task: {83AC864B-0782-4D5B-9C3D-CC0845DDC621} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [696016 2018-11-13] (NVIDIA Corporation -> NVIDIA Corporation) Task: {872D0E53-FD2E-41E3-B431-698AF82882CE} - System32\Tasks\Microsoft\Windows\SkyDrive\Routine Maintenance Task => {1B1F472E-3221-4826-97DB-2C2324D389AE} Task: {8851F66B-4A70-4114-ABCF-E46E67532DF0} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [995024 2018-11-13] (NVIDIA Corporation -> NVIDIA Corporation) Task: {89EC10AA-4CA8-4443-8D5F-01F5A8AA8418} - \Microsoft\Windows\UNP\RunCampaignManager -> Pas de fichier <==== ATTENTION Task: {93534A57-0B45-4A13-993A-B084FF268D67} - System32\Tasks\Microsoft\Windows\Shell\FamilySafetyUpload => {EBF00FCB-0769-4B81-9BEC-6C05514111AA} Task: {95740913-21B3-4634-8833-54836C74D20C} - System32\Tasks\NvTmRepCR1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [950480 2018-11-13] (NVIDIA Corporation -> NVIDIA Corporation) Task: {9CA694C5-7A50-4CA8-B2AB-A4B3B7024B61} - \Microsoft\Windows\Setup\GWXTriggers\Time-Weekend -> Pas de fichier <==== ATTENTION Task: {9D55CF85-3C42-436B-BA8B-5D7E49912E20} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Pas de fichier <==== ATTENTION Task: {A2D574CE-4E73-4A34-BDE8-B1FE9DA5F881} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Pas de fichier <==== ATTENTION Task: {A703F847-2410-4BEC-8031-62EC8A73BA94} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_330_Plugin.exe [1458232 2020-02-11] (Adobe Inc. -> Adobe) Task: {ACD3125C-9B69-428F-AC1F-6C27871873C1} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Pas de fichier <==== ATTENTION Task: {B267BAB2-9792-452C-8498-EBAE062DE617} - System32\Tasks\NvTmRepCR3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [950480 2018-11-13] (NVIDIA Corporation -> NVIDIA Corporation) Task: {B4020EBA-85AA-4B43-BDBA-D34B3B063BD8} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [979024 2019-02-13] (Microsoft Corporation -> Microsoft Corporation) Task: {B621A272-191F-47BB-93BF-51F02B54D842} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2017-06-20] (Google Inc -> Google Inc.) Task: {CD1FD8B6-0B27-4001-A495-0AC84F65FD51} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Pas de fichier <==== ATTENTION Task: {CDD6D9B6-3BB7-4C2C-A543-5B501165BD2D} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [855760 2018-11-13] (NVIDIA Corporation -> NVIDIA Corporation) Task: {CE2DE968-E342-40D7-9566-427D45E4A886} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40B4-8963-D3C761B18371} Task: {D3329EEE-7777-4353-9782-C07023ECE764} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2017-06-20] (Google Inc -> Google Inc.) Task: {D3D9FAF2-FEF2-4DC8-BFBC-F7FD214564F9} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2001.7-0\MpCmdRun.exe [473544 2020-02-04] (Microsoft Windows Publisher -> Microsoft Corporation) Task: {D8040C40-9613-48A8-AA86-F59AEC5973EB} - \Microsoft\Windows\Setup\gwx\rundetector -> Pas de fichier <==== ATTENTION Task: {DBA8557D-3F96-41E9-8330-C309C542F9F1} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Pas de fichier <==== ATTENTION Task: {E2EDA857-4A6E-44E2-B265-FE5F16986295} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonx86\Microsoft Shared\OFFICE15\OLicenseHeartbeat.exe [1156496 2019-12-17] (Microsoft Corporation -> Microsoft Corporation) Task: {F011F2E2-2B9F-4B56-B374-C828E6E993F0} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Pas de fichier <==== ATTENTION Task: {F086A982-7678-411F-8032-708B7C8D6AB1} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> Pas de fichier <==== ATTENTION Task: {F4749A74-BC47-4F18-A946-D84344A7B84F} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [979024 2019-02-13] (Microsoft Corporation -> Microsoft Corporation) Task: {F59AD5B8-3977-4BD1-A18D-FF0E3A6B1978} - \WPD\SqmUpload_S-1-5-21-1853260028-296559677-1043706777-1001 -> Pas de fichier <==== ATTENTION Task: {F5F82D74-B81F-4851-83DA-2C363DA98880} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime -> Pas de fichier <==== ATTENTION Task: {F84121FC-575F-472C-83B9-AAD3A2537EB0} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-02-11] (Adobe Inc. -> Adobe) Task: {FBE8F060-F29D-4659-B490-FC45C3FCCCB2} - System32\Tasks\NvTmRepCR2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [950480 2018-11-13] (NVIDIA Corporation -> NVIDIA Corporation) Task: {FCA539AC-B8A8-4DF8-88E5-E141659BEE80} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> Pas de fichier <==== ATTENTION Task: {FCC277AE-FAD2-451F-B65C-506BC3ECF196} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [950480 2018-11-13] (NVIDIA Corporation -> NVIDIA Corporation) (Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.) ==================== Internet (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.) Hosts: Il y a plus d'un élément dans hosts. Voir la section Hosts de Addition.txt Tcpip\Parameters: [DhcpNameServer] 192.168.1.254 Tcpip\..\Interfaces\{2d29d5fe-7939-4bfc-ae44-204ac2c75107}: [DhcpNameServer] 192.168.1.254 Internet Explorer: ================== HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.msn.com/?pc=MSE1 HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.com HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com HKU\S-1-5-21-1853260028-296559677-1043706777-1002\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.msn.com/?pc=MSE1 HKU\S-1-5-21-1853260028-296559677-1043706777-1002\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://www.ldlc.com SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll [2019-11-04] (Microsoft Corporation -> Microsoft Corporation) BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL [2019-11-04] (Microsoft Corporation -> Microsoft Corporation) Toolbar: HKLM-x32 - Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2011-09-05] (Adobe Systems, Incorporated -> Adobe Systems Incorporated) Toolbar: HKU\S-1-5-21-1853260028-296559677-1043706777-1002 -> Pas de nom - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - Pas de fichier Handler-x32: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL [2017-07-18] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll [2017-07-18] (Skype Software Sarl -> Skype Technologies) Edge: ====== DownloadDir: Edge HomeButtonPage: HKU\S-1-5-21-1853260028-296559677-1043706777-1002 -> hxxps://www.google.fr/ FireFox: ======== FF DefaultProfile: m3brdmlm.default-1581544698594 FF ProfilePath: C:\Users\Christophe\AppData\Roaming\Mozilla\Firefox\Profiles\m3brdmlm.default-1581544698594 [2020-02-12] FF Extension: (Site Deployment Checker) - C:\Program Files (x86)\Mozilla Firefox\browser\features\deployment-checker@mozilla.org.xpi [2017-03-31] [] [non signé] FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension@web2pdf.adobedotcom] - C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Browser\WCFirefoxExtn FF Extension: (Adobe Acrobat - Create PDF) - C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Browser\WCFirefoxExtn [2015-01-10] [] [non signé] FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_32_0_0_330.dll [2020-02-11] (Adobe Inc. -> ) FF Plugin: @java.com/DTPlugin,version=11.25.2 -> C:\Program Files\Java\jre1.8.0_25\bin\dtplugin\npDeployJava1.dll [2015-01-15] (Oracle America, Inc. -> Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=11.25.2 -> C:\Program Files\Java\jre1.8.0_25\bin\plugin2\npjp2.dll [2015-01-15] (Oracle America, Inc. -> Oracle Corporation) FF Plugin: @wacom.com/wtPlugin,version=2.1.0.7 -> C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom) [Fichier non signé] FF Plugin: wacom.com/WacomTabletPlugin -> C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom) [Fichier non signé] FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_330.dll [2020-02-11] (Adobe Inc. -> ) FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2015-12-18] (Apple Inc. -> ) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL [2015-02-03] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2018-11-13] (NVIDIA Corporation -> NVIDIA Corporation) FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2018-11-13] (NVIDIA Corporation -> NVIDIA Corporation) FF Plugin-x32: @wacom.com/wtPlugin,version=2.1.0.7 -> C:\Program Files (x86)\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom) [Fichier non signé] FF Plugin-x32: Adobe Acrobat -> C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Air\nppdf32.dll [2011-09-05] (Adobe Systems, Incorporated -> Adobe Systems Inc.) FF Plugin-x32: wacom.com/WacomTabletPlugin -> C:\Program Files (x86)\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom) [Fichier non signé] FF Plugin HKU\S-1-5-21-1853260028-296559677-1043706777-1002: @hola.org/FlashPlayer -> C:\Users\Christophe\AppData\Local\Hola\firefox\app\flash\NPSWF32_18_0_0_232.dll [2015-12-10] (Adobe Systems Incorporated -> ) FF Plugin HKU\S-1-5-21-1853260028-296559677-1043706777-1002: @hola.org/vlc -> C:\Users\Christophe\AppData\Local\Hola\firefox\app\vlc\npvlc.dll [2015-12-10] (Hola) [Fichier non signé] Chrome: ======= CHR Profile: C:\Users\Christophe\AppData\Local\Google\Chrome\User Data\Default [2020-02-12] CHR Extension: (Slides) - C:\Users\Christophe\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2020-02-12] CHR Extension: (Docs) - C:\Users\Christophe\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2020-02-12] CHR Extension: (Google Drive) - C:\Users\Christophe\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-06-20] CHR Extension: (YouTube) - C:\Users\Christophe\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-06-20] CHR Extension: (Sheets) - C:\Users\Christophe\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2020-02-12] CHR Extension: (Google Docs hors connexion) - C:\Users\Christophe\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-02-12] CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Christophe\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2020-02-12] CHR Extension: (Gmail) - C:\Users\Christophe\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-02-12] CHR Extension: (Chrome Media Router) - C:\Users\Christophe\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-02-12] CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] ==================== Services (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2016-03-02] (Apple Inc. -> Apple Inc.) R2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\1.01.02\atkexComSvc.exe [936728 2013-05-07] (ASUSTeK Computer Inc. -> ) S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8395968 2020-01-04] (BattlEye Innovations e.K. -> ) S3 BstHdAndroidSvc; C:\Program Files (x86)\BlueStacks\HD-Service.exe [428056 2017-03-21] (BlueStack Systems, Inc. -> BlueStack Systems, Inc.) R2 BstHdLogRotatorSvc; C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe [406040 2017-03-21] (BlueStack Systems, Inc. -> BlueStack Systems, Inc.) S3 BstHdPlusAndroidSvc; C:\Program Files (x86)\BlueStacks\HD-Plus-Service.exe [452632 2017-03-21] (BlueStack Systems, Inc. -> BlueStack Systems, Inc.) R2 ClickToRunSvc; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [3058256 2019-02-13] (Microsoft Corporation -> Microsoft Corporation) S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [803456 2019-03-13] (EasyAntiCheat Oy -> EasyAntiCheat Ltd) R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6960640 2019-12-11] (Malwarebytes Inc -> Malwarebytes) R2 mi-raysat_3dsmax2014_64; C:\Soft 3D Install Directory\3DS Max 2014\3ds Max 2014\NVIDIA\Satellite\raysat_3dsmax2014_64server.exe [86016 2011-09-15] () [Fichier non signé] R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [773328 2018-11-13] (NVIDIA Corporation -> NVIDIA Corporation) S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [773328 2018-11-13] (NVIDIA Corporation -> NVIDIA Corporation) S3 Origin Client Service; D:\Gamez\Origin\OriginClientService.exe [2466608 2019-11-19] (Electronic Arts, Inc. -> Electronic Arts) S2 Origin Web Helper Service; D:\Gamez\Origin\OriginWebHelperService.exe [3344176 2019-11-19] (Electronic Arts, Inc. -> Electronic Arts) S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Test Signing Certificate -> Adobe Systems Incorporated) [Fichier non signé] R2 Update service; C:\Program Files (x86)\Popcorn Time\Updater.exe [339968 2016-08-26] (Popcorn Time) [Fichier non signé] R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2001.7-0\NisSrv.exe [3284840 2020-02-04] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WinArchiver Service; C:\Program Files\WinArchiver\WAService.exe [257336 2014-12-19] (Power Software Limited -> ) R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2001.7-0\MsMpEng.exe [103168 2020-02-04] (Microsoft Windows Publisher -> Microsoft Corporation) R2 WkSvw32.exe; C:\Program Files (x86)\WIBUKEY\Server\WkSvw32.exe [657800 2015-01-10] (WIBU-SYSTEMS AG -> WIBU-SYSTEMS AG) R2 WTabletServicePro; C:\Program Files\Tablet\Wacom\WTabletServicePro.exe [671512 2014-12-22] (Wacom Technology Corp. -> Wacom Technology, Corp.) R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000 R2 NvTelemetryContainer; "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\plugins" -r ===================== Pilotes (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [15232 2012-08-22] (ASUSTeK Computer Inc. -> ) S3 BstHdDrv; C:\Program Files (x86)\BlueStacks\HD-Hypervisor-amd64.sys [152672 2017-03-21] (Bluestack Systems, Inc. -> BlueStack Systems) S3 BstkDrv; C:\Program Files (x86)\BlueStacks\BstkDrv.sys [270904 2017-03-21] (Bluestack Systems, Inc. -> Bluestack System Inc. ) S3 CsrBtPort; C:\WINDOWS\system32\DRIVERS\CsrBtPort.sys [2784968 2012-03-22] (Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited) S3 csrpan; C:\WINDOWS\System32\drivers\csrpan.sys [39616 2012-03-22] (Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited) S3 csrserial; C:\WINDOWS\system32\DRIVERS\csrserial.sys [61128 2012-03-22] (Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited) S3 csrusb; C:\WINDOWS\System32\Drivers\csrusb.sys [47296 2012-03-22] (Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited) S3 csrusbfilter; C:\WINDOWS\System32\Drivers\csrusbfilter.sys [23752 2012-03-22] (Cambridge Silicon Radio Ltd. -> Cambridge Silicon Radio Limited) S3 hidkmdf; C:\WINDOWS\System32\drivers\hidkmdf.sys [14136 2014-10-25] (Wacom Technology Corp. -> Windows (R) Win 7 DDK provider) R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [214496 2020-02-14] (Malwarebytes Inc -> Malwarebytes) S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [20936 2019-12-11] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes) R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [248968 2020-02-14] (Malwarebytes Inc -> Malwarebytes) R3 MEIx64; C:\WINDOWS\system32\DRIVERS\TeeDriverx64.sys [129312 2014-09-30] (Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation) S3 Netaapl; C:\WINDOWS\System32\drivers\netaapl64.sys [32352 2017-11-28] (Microsoft Windows Hardware Compatibility Publisher -> Apple Inc.) R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nvddi.inf_amd64_2341aac88431d6bf\nvlddmkm.sys [20371952 2018-11-13] (NVIDIA Corporation -> NVIDIA Corporation) S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30792 2018-11-13] (NVIDIA Corporation -> NVIDIA Corporation) R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [69544 2018-09-06] (NVIDIA Corporation -> NVIDIA Corporation) R3 nvvhci; C:\WINDOWS\System32\drivers\nvvhci.sys [74576 2018-11-13] (NVIDIA Corporation -> NVIDIA Corporation) R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [662528 2019-03-19] (Microsoft Windows -> Realtek ) R3 ScpVBus; C:\WINDOWS\System32\drivers\ScpVBus.sys [39168 2013-05-19] (Bruce James -> Scarlet.Crush Productions) S3 USBAAPL64; C:\WINDOWS\System32\Drivers\usbaapl64.sys [54784 2015-11-05] (Microsoft Windows Hardware Compatibility Publisher -> Apple, Inc.) R0 waemu; C:\WINDOWS\System32\Drivers\waemu.sys [142096 2014-12-19] (Power Software Limited -> Power Software Ltd) S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [45960 2020-02-04] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [376032 2020-02-04] (Microsoft Windows -> Microsoft Corporation) R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [53984 2020-02-04] (Microsoft Windows -> Microsoft Corporation) R2 WIBUKEY; C:\WINDOWS\System32\DRIVERS\WibuKey64.sys [105008 2015-01-10] (WIBU-SYSTEMS AG -> WIBU-SYSTEMS AG) R2 WinisoCDBus; C:\WINDOWS\System32\drivers\WinisoCDBus.sys [204032 2014-02-26] (ZJMedia Digital Technology Ltd. -> WinISO.com) ==================== NetSvcs (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) ==================== Un mois (créés) =================== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2020-02-14 19:48 - 2020-02-14 19:48 - 000035849 _____ C:\Users\Christophe\Desktop\FRST.txt 2020-02-14 19:42 - 2020-02-14 19:48 - 000000000 ____D C:\FRST 2020-02-14 19:42 - 2020-02-14 19:42 - 002279424 _____ (Farbar) C:\Users\Christophe\Desktop\FRST64.exe 2020-02-13 09:24 - 2020-02-13 09:24 - 000000000 ____D C:\ProgramData\ssh 2020-02-12 22:58 - 2020-02-12 22:58 - 000000000 ____D C:\Users\Christophe\Desktop\Anciennes données de Firefox 2020-02-12 22:57 - 2020-02-12 22:57 - 000101742 _____ C:\Users\Christophe\Desktop\bookmarks-2020-02-12.json 2020-02-12 22:46 - 2020-02-12 22:46 - 000388608 _____ (Trend Micro Inc.) C:\Users\Christophe\Downloads\HijackThis.exe 2020-02-12 09:06 - 2020-02-12 09:06 - 000001223 _____ C:\Users\Public\Desktop\Firefox.lnk 2020-02-12 01:33 - 2020-02-12 01:33 - 025900032 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 025444352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Hydrogen.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 022635008 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 019850240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 019813376 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramWorld.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 018026496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 009929016 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe 2020-02-12 01:33 - 2020-02-12 01:33 - 008013824 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 007905208 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 007754752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 007600448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 007263992 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 007259648 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 007017472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 006519752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 006435840 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 006284800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 006167552 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 006083832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 005912064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 005764664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 005502464 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdp.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 005112320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 005041664 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 004856832 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 004575232 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 004562896 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe 2020-02-12 01:33 - 2020-02-12 01:33 - 004538880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 004470784 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputService.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 004470272 _____ (Microsoft Corporation) C:\WINDOWS\system32\xpsrchvw.exe 2020-02-12 01:33 - 2020-02-12 01:33 - 004348616 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Mirage.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 004308480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdp.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 004129416 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 004005888 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeContent.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 003967888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe 2020-02-12 01:33 - 2020-02-12 01:33 - 003820032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 003792384 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 003728896 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys 2020-02-12 01:33 - 2020-02-12 01:33 - 003550208 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 003525592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 003484672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 003372440 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 003365376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xpsrchvw.exe 2020-02-12 01:33 - 2020-02-12 01:33 - 003263488 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 003243080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Mirage.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 002988552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys 2020-02-12 01:33 - 2020-02-12 01:33 - 002870272 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 002861568 _____ (Microsoft Corporation) C:\WINDOWS\system32\xpsservices.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 002800128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys 2020-02-12 01:33 - 2020-02-12 01:33 - 002773776 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 002766088 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb 2020-02-12 01:33 - 2020-02-12 01:33 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb 2020-02-12 01:33 - 2020-02-12 01:33 - 002703872 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebRuntimeManager.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 002584008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 002561536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 002493720 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 002314952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2vdec.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 002305536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 002260176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 002230232 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfasfsrcsnk.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 002225160 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngine.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 002084576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 002071552 _____ (Microsoft Corporation) C:\WINDOWS\system32\ISM.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 002032128 _____ C:\WINDOWS\system32\rdpnano.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 001999960 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 001916744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 001858560 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 001841152 _____ C:\WINDOWS\system32\TextInputMethodFormatter.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 001835128 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsrcsnk.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 001830200 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpserverbase.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 001757096 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi 2020-02-12 01:33 - 2020-02-12 01:33 - 001743680 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 001726480 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 001693184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 001687040 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsPrint.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 001664696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 001664680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 001657856 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 001655880 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 001610240 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramCompositor.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 001602560 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 001562424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpserverbase.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 001541632 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbengine.exe 2020-02-12 01:33 - 2020-02-12 01:33 - 001540096 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 001512320 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe 2020-02-12 01:33 - 2020-02-12 01:33 - 001505592 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpbase.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 001489064 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 001482040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys 2020-02-12 01:33 - 2020-02-12 01:33 - 001481216 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpsharercom.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 001480192 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocoreworker.exe 2020-02-12 01:33 - 2020-02-12 01:33 - 001417760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsrcsnk.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 001412096 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.Handlers.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 001398584 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe 2020-02-12 01:33 - 2020-02-12 01:33 - 001394168 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinTypes.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 001372160 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 001366128 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi 2020-02-12 01:33 - 2020-02-12 01:33 - 001319936 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 001300280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\http.sys 2020-02-12 01:33 - 2020-02-12 01:33 - 001284096 _____ (Microsoft Corporation) C:\WINDOWS\system32\werconcpl.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 001283592 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi 2020-02-12 01:33 - 2020-02-12 01:33 - 001273856 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcore.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 001272360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfasfsrcsnk.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 001260544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpsharercom.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 001218120 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipUp.exe 2020-02-12 01:33 - 2020-02-12 01:33 - 001216000 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdclt.exe 2020-02-12 01:33 - 2020-02-12 01:33 - 001214976 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 001213752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpbase.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 001195008 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdengin2.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 001182232 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe 2020-02-12 01:33 - 2020-02-12 01:33 - 001170960 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 001154448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 001151816 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 001105776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 001098720 _____ (Microsoft Corporation) C:\WINDOWS\system32\DolbyDecMFT.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 001097216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 001083904 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 001083392 _____ (Microsoft Corporation) C:\WINDOWS\system32\clusapi.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 001080832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpcore.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 001077264 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe 2020-02-12 01:33 - 2020-02-12 01:33 - 001060352 _____ (Microsoft Corporation) C:\WINDOWS\system32\termsrv.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 001051448 _____ (Microsoft Corporation) C:\WINDOWS\system32\pidgenx.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 001009664 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 001000960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Mirage.Internal.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000996352 _____ (Microsoft Corporation) C:\WINDOWS\system32\sysmain.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000974336 _____ (Microsoft Corporation) C:\WINDOWS\system32\uDWM.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000952416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DolbyDecMFT.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000949248 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthSSO.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000928120 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthService.exe 2020-02-12 01:33 - 2020-02-12 01:33 - 000923136 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000916480 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000913408 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000904504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ReAgent.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000895488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000892488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinTypes.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000891736 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000890368 _____ (Microsoft Corporation) C:\WINDOWS\system32\HolographicExtensions.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000882688 _____ (Microsoft Corporation) C:\WINDOWS\system32\CPFilters.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000875448 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000864256 _____ (Microsoft Corporation) C:\WINDOWS\system32\netlogon.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000857088 _____ C:\WINDOWS\system32\MBR2GPT.EXE 2020-02-12 01:33 - 2020-02-12 01:33 - 000852480 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000851968 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe 2020-02-12 01:33 - 2020-02-12 01:33 - 000843776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000839680 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000824848 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupEngine.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000805376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\clusapi.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000788992 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000784384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000783480 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcblaunch.exe 2020-02-12 01:33 - 2020-02-12 01:33 - 000774664 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe 2020-02-12 01:33 - 2020-02-12 01:33 - 000768488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000758800 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimgapi.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000749568 _____ (Microsoft Corporation) C:\WINDOWS\system32\FrameServer.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000747320 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000705536 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000704512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.FileExplorer.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000701440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Mirage.Internal.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000689152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CPFilters.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000685056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000679368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000678928 _____ (Microsoft Corporation) C:\WINDOWS\system32\StructuredQuery.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000673080 _____ (Microsoft Corporation) C:\WINDOWS\system32\comctl32.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000670720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe 2020-02-12 01:33 - 2020-02-12 01:33 - 000667136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000667136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EdgeManager.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000663552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netlogon.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000661816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afd.sys 2020-02-12 01:33 - 2020-02-12 01:33 - 000642008 _____ (Microsoft Corporation) C:\WINDOWS\system32\TextInputFramework.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000637440 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000629760 _____ (Microsoft Corporation) C:\WINDOWS\system32\ipnathlp.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000623104 _____ (Microsoft Corporation) C:\WINDOWS\system32\resutils.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000617784 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000610816 _____ (Microsoft Corporation) C:\WINDOWS\system32\netprofmsvc.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000605184 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe 2020-02-12 01:33 - 2020-02-12 01:33 - 000599552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActivationManager.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000598528 _____ (Microsoft Corporation) C:\WINDOWS\system32\webio.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000597816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wimgapi.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000587064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupEngine.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000578560 _____ (Microsoft Corporation) C:\WINDOWS\system32\SppExtComObj.Exe 2020-02-12 01:33 - 2020-02-12 01:33 - 000568120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comctl32.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000562176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000558592 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Notifications.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000550400 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys 2020-02-12 01:33 - 2020-02-12 01:33 - 000545432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.MediaControl.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000542288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StructuredQuery.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000537608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000535552 _____ (Microsoft Corporation) C:\WINDOWS\system32\usosvc.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000530432 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcext.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000521728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.System.Launcher.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000518456 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFault.exe 2020-02-12 01:33 - 2020-02-12 01:33 - 000516648 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimserv.exe 2020-02-12 01:33 - 2020-02-12 01:33 - 000516544 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000516096 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe 2020-02-12 01:33 - 2020-02-12 01:33 - 000512000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000510768 _____ (Microsoft Corporation) C:\WINDOWS\system32\systemreset.exe 2020-02-12 01:33 - 2020-02-12 01:33 - 000500736 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl 2020-02-12 01:33 - 2020-02-12 01:33 - 000497152 _____ (Microsoft Corporation) C:\WINDOWS\system32\werui.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000494080 _____ (Microsoft Corporation) C:\WINDOWS\system32\defragsvc.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000490496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.FileExplorer.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000490496 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvc.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000486912 _____ (Microsoft Corporation) C:\WINDOWS\system32\puiobj.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000486400 _____ (Microsoft Corporation) C:\WINDOWS\system32\srcore.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000477496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS 2020-02-12 01:33 - 2020-02-12 01:33 - 000476672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\resutils.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000475648 _____ (Microsoft Corporation) C:\WINDOWS\system32\DscCore.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000469504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webio.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000467952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000465208 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000459896 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotifyIcon.exe 2020-02-12 01:33 - 2020-02-12 01:33 - 000453432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFault.exe 2020-02-12 01:33 - 2020-02-12 01:33 - 000450560 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpclip.exe 2020-02-12 01:33 - 2020-02-12 01:33 - 000443904 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgeIso.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000441072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.MediaControl.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000435200 _____ (Microsoft Corporation) C:\WINDOWS\system32\wincorlib.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000430080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werui.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000422912 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpencom.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000422008 _____ (Microsoft Corporation) C:\WINDOWS\system32\SgrmEnclave_secure.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000421376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl 2020-02-12 01:33 - 2020-02-12 01:33 - 000416056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Classpnp.sys 2020-02-12 01:33 - 2020-02-12 01:33 - 000407040 _____ (Microsoft Corporation) C:\WINDOWS\system32\DispBroker.Desktop.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000405632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Faultrep.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000401408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe 2020-02-12 01:33 - 2020-02-12 01:33 - 000400696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys 2020-02-12 01:33 - 2020-02-12 01:33 - 000399360 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000392192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000384000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\puiobj.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000375504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AUDIOKSE.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000370688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000369504 _____ (Microsoft Corporation) C:\WINDOWS\system32\BCP47Langs.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000368128 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssvp.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000366416 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsensorgroup.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000355840 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicSvc.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000353280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpencom.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000350720 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_SpeechPrivacy.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000345088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000336384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe 2020-02-12 01:33 - 2020-02-12 01:33 - 000335448 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000327680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgeIso.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000324616 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000324608 _____ (Microsoft Corporation) C:\WINDOWS\system32\FSClient.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32k.sys 2020-02-12 01:33 - 2020-02-12 01:33 - 000324096 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpviewerax.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000311096 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthAgent.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000309248 _____ (Microsoft Corporation) C:\WINDOWS\system32\tapisrv.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000308736 _____ (Microsoft Corporation) C:\WINDOWS\system32\msIso.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000307712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wincorlib.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000300392 _____ (Microsoft Corporation) C:\WINDOWS\system32\skci.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000299520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssvp.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000285184 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicCapsule.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000283136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Search.ProtocolHandler.MAPI2.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000281088 _____ (Microsoft Corporation) C:\WINDOWS\system32\msutb.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000274464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BCP47Langs.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000270848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpviewerax.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000268800 _____ (Microsoft Corporation) C:\WINDOWS\system32\rstrui.exe 2020-02-12 01:33 - 2020-02-12 01:33 - 000266752 _____ (Microsoft Corporation) C:\WINDOWS\system32\DAFMCP.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000259984 _____ (Microsoft Corporation) C:\WINDOWS\system32\logoncli.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000252928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tapisrv.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000251904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msIso.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000249344 _____ (Microsoft Corporation) C:\WINDOWS\system32\srrstr.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000247856 _____ (Microsoft Corporation) C:\WINDOWS\system32\weretw.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000240640 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFilterHost.exe 2020-02-12 01:33 - 2020-02-12 01:33 - 000228864 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe 2020-02-12 01:33 - 2020-02-12 01:33 - 000227840 _____ (Microsoft Corporation) C:\WINDOWS\system32\IndexedDbLegacy.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000226816 _____ (Microsoft Corporation) C:\WINDOWS\system32\netprofm.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000225792 _____ (Microsoft Corporation) C:\WINDOWS\system32\wersvc.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000224768 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWWIN.EXE 2020-02-12 01:33 - 2020-02-12 01:33 - 000222208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Winlangdb.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000220984 _____ (Microsoft Corporation) C:\WINDOWS\system32\wermgr.exe 2020-02-12 01:33 - 2020-02-12 01:33 - 000217600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msutb.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000214528 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdsdwmdr.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000211968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchFilterHost.exe 2020-02-12 01:33 - 2020-02-12 01:33 - 000210744 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcbloader.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000204800 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssph.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000203776 _____ (Microsoft Corporation) C:\WINDOWS\system32\regapi.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000201728 _____ (Microsoft Corporation) C:\WINDOWS\system32\puiapi.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000199480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wermgr.exe 2020-02-12 01:33 - 2020-02-12 01:33 - 000197632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Win32CompatibilityAppraiserCSP.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000194560 _____ (Microsoft Corporation) C:\WINDOWS\system32\recdisc.exe 2020-02-12 01:33 - 2020-02-12 01:33 - 000193800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\weretw.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000190464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\regapi.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000190256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\logoncli.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000186880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWWIN.EXE 2020-02-12 01:33 - 2020-02-12 01:33 - 000186880 _____ (Microsoft Corp.) C:\WINDOWS\system32\Defrag.exe 2020-02-12 01:33 - 2020-02-12 01:33 - 000186672 _____ (Microsoft Corporation) C:\WINDOWS\system32\BCP47mrm.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000183808 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngOnline.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000179720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys 2020-02-12 01:33 - 2020-02-12 01:33 - 000175616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\IndexedDbLegacy.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000172032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\puiapi.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000165832 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFaultSecure.exe 2020-02-12 01:33 - 2020-02-12 01:33 - 000160768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssph.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000158208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Winlangdb.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000155136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000152064 _____ (Microsoft Corporation) C:\WINDOWS\system32\fdWSD.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000150536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFaultSecure.exe 2020-02-12 01:33 - 2020-02-12 01:33 - 000149504 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdrsvc.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000147456 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000143872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SpatialAudioLicenseSrv.exe 2020-02-12 01:33 - 2020-02-12 01:33 - 000143160 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupApi.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000139776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakrathunk.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000138752 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputLocaleManager.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000135168 _____ (Microsoft Corporation) C:\WINDOWS\system32\musdialoghandlers.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000133464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BCP47mrm.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000132624 _____ (Microsoft Corporation) C:\WINDOWS\system32\offlinelsa.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000130560 _____ (Microsoft Corporation) C:\WINDOWS\system32\globinputhost.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\usoapi.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssitlb.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000127280 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32u.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000126976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fdWSD.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000125440 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdshext.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000123392 _____ (Microsoft Corporation) C:\WINDOWS\system32\wercplsupport.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000119808 _____ (Microsoft Corporation) C:\WINDOWS\system32\DafPrintProvider.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000119296 _____ (Microsoft Corporation) C:\WINDOWS\system32\compstui.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000117264 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bindflt.sys 2020-02-12 01:33 - 2020-02-12 01:33 - 000117248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000113152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssitlb.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000112128 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetDriverInstall.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000108544 _____ (Microsoft Corporation) C:\WINDOWS\system32\fdSSDP.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000107832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupApi.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000107008 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicePairingExperienceMEM.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000106808 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthProxyStub.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000105984 _____ (Microsoft Corporation) C:\WINDOWS\system32\utcutil.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000105472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakrathunk.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000105472 _____ (Microsoft Corporation) C:\WINDOWS\system32\dfrgui.exe 2020-02-12 01:33 - 2020-02-12 01:33 - 000099712 _____ (Microsoft Corporation) C:\WINDOWS\system32\FsIso.exe 2020-02-12 01:33 - 2020-02-12 01:33 - 000097280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\compstui.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000097080 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000096768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\globinputhost.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000095232 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeedsbs.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000093496 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsqmcons.exe 2020-02-12 01:33 - 2020-02-12 01:33 - 000090624 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsgqec.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000090624 _____ (Microsoft Corporation) C:\WINDOWS\system32\keyiso.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000089600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dfrgui.exe 2020-02-12 01:33 - 2020-02-12 01:33 - 000089328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32u.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000089088 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicAgent.exe 2020-02-12 01:33 - 2020-02-12 01:33 - 000088576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fdSSDP.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000088576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DafPrintProvider.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000087040 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditBufferTestHook.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000084992 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthSystray.exe 2020-02-12 01:33 - 2020-02-12 01:33 - 000084496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hvservice.sys 2020-02-12 01:33 - 2020-02-12 01:33 - 000080896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetDriverInstall.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000079872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeedsbs.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000077824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usoapi.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000072816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\remoteaudioendpoint.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000071480 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32appinventorycsp.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000070144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsgqec.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000069120 _____ (Microsoft Corporation) C:\WINDOWS\system32\UsoClient.exe 2020-02-12 01:33 - 2020-02-12 01:33 - 000066560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\keyiso.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\findnetprinters.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\iemigplugin.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\printui.exe 2020-02-12 01:33 - 2020-02-12 01:33 - 000063488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iemigplugin.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000063488 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtutils.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000063288 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthHost.exe 2020-02-12 01:33 - 2020-02-12 01:33 - 000062464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\printui.exe 2020-02-12 01:33 - 2020-02-12 01:33 - 000060416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssprxy.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\msscntrs.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000059392 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserLanguageProfileCallback.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000059221 _____ C:\WINDOWS\system32\srms.dat 2020-02-12 01:33 - 2020-02-12 01:33 - 000058880 _____ C:\WINDOWS\system32\runexehelper.exe 2020-02-12 01:33 - 2020-02-12 01:33 - 000057856 _____ (Microsoft Corporation) C:\WINDOWS\system32\SrTasks.exe 2020-02-12 01:33 - 2020-02-12 01:33 - 000053248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\findnetprinters.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000052736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rtutils.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000046592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Websocket.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msscntrs.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000045056 _____ (Microsoft Corporation) C:\WINDOWS\system32\npmproxy.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000044544 _____ (Microsoft Corporation) C:\WINDOWS\system32\werdiagcontroller.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000044032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserLanguageProfileCallback.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000042512 _____ (Microsoft Corporation) C:\WINDOWS\system32\SysResetErr.exe 2020-02-12 01:33 - 2020-02-12 01:33 - 000041472 _____ (Microsoft Corporation) C:\WINDOWS\system32\WordBreakers.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000038912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werdiagcontroller.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000038400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mcicda.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000037392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wimmount.sys 2020-02-12 01:33 - 2020-02-12 01:33 - 000036864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Websocket.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000032056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdpvideominiport.sys 2020-02-12 01:33 - 2020-02-12 01:33 - 000029696 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlmproxy.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicPS.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000027648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mciwave.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msimsg.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\msimsg.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000024064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mciseq.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000021520 _____ (Microsoft Corporation) C:\WINDOWS\system32\kdhvcom.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000020944 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64cpu.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000019768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngine.exe 2020-02-12 01:33 - 2020-02-12 01:33 - 000017920 _____ (Microsoft Corporation) C:\WINDOWS\system32\icsunattend.exe 2020-02-12 01:33 - 2020-02-12 01:33 - 000017920 _____ (Microsoft Corporation) C:\WINDOWS\system32\bindflt.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlmsprep.dll 2020-02-12 01:33 - 2020-02-12 01:33 - 000015360 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeedssync.exe 2020-02-12 01:33 - 2020-02-12 01:33 - 000013824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeedssync.exe 2020-02-12 01:33 - 2020-02-12 01:33 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth9.bin 2020-02-12 01:33 - 2020-02-12 01:33 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth8.bin 2020-02-12 01:33 - 2020-02-12 01:33 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth7.bin 2020-02-12 01:33 - 2020-02-12 01:33 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth6.bin 2020-02-12 01:33 - 2020-02-12 01:33 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth5.bin 2020-02-12 01:33 - 2020-02-12 01:33 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth4.bin 2020-02-12 01:33 - 2020-02-12 01:33 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth3.bin 2020-02-12 01:33 - 2020-02-12 01:33 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth2.bin 2020-02-12 01:33 - 2020-02-12 01:33 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth12.bin 2020-02-12 01:33 - 2020-02-12 01:33 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth11.bin 2020-02-12 01:33 - 2020-02-12 01:33 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth10.bin 2020-02-12 01:33 - 2020-02-12 01:33 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth1.bin 2020-02-12 01:32 - 2020-02-12 01:32 - 017787904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll 2020-02-12 01:32 - 2020-02-12 01:32 - 006231200 _____ (Microsoft Corporation) C:\WINDOWS\system32\StartTileData.dll 2020-02-12 01:32 - 2020-02-12 01:32 - 004615376 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe 2020-02-12 01:32 - 2020-02-12 01:32 - 003703296 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll 2020-02-12 01:32 - 2020-02-12 01:32 - 003590968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys 2020-02-12 01:32 - 2020-02-12 01:32 - 003110400 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll 2020-02-12 01:32 - 2020-02-12 01:32 - 002714624 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys 2020-02-12 01:32 - 2020-02-12 01:32 - 002284544 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll 2020-02-12 01:32 - 2020-02-12 01:32 - 002125904 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll 2020-02-12 01:32 - 2020-02-12 01:32 - 001942016 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll 2020-02-12 01:32 - 2020-02-12 01:32 - 001748480 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll 2020-02-12 01:32 - 2020-02-12 01:32 - 001413912 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll 2020-02-12 01:32 - 2020-02-12 01:32 - 001149928 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe 2020-02-12 01:32 - 2020-02-12 01:32 - 001084216 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReAgent.dll 2020-02-12 01:32 - 2020-02-12 01:32 - 001026792 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipSVC.dll 2020-02-12 01:32 - 2020-02-12 01:32 - 000874296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys 2020-02-12 01:32 - 2020-02-12 01:32 - 000804872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdmp.sys 2020-02-12 01:32 - 2020-02-12 01:32 - 000803840 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll 2020-02-12 01:32 - 2020-02-12 01:32 - 000782848 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifinetworkmanager.dll 2020-02-12 01:32 - 2020-02-12 01:32 - 000750080 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll 2020-02-12 01:32 - 2020-02-12 01:32 - 000737280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.System.Launcher.dll 2020-02-12 01:32 - 2020-02-12 01:32 - 000735744 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll 2020-02-12 01:32 - 2020-02-12 01:32 - 000732200 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_StorageSense.dll 2020-02-12 01:32 - 2020-02-12 01:32 - 000727040 _____ (Microsoft Corporation) C:\WINDOWS\system32\agentactivationruntime.dll 2020-02-12 01:32 - 2020-02-12 01:32 - 000716288 _____ (Microsoft Corporation) C:\WINDOWS\system32\agentactivationruntimewindows.dll 2020-02-12 01:32 - 2020-02-12 01:32 - 000646656 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpsvc.dll 2020-02-12 01:32 - 2020-02-12 01:32 - 000637968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys 2020-02-12 01:32 - 2020-02-12 01:32 - 000589592 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe 2020-02-12 01:32 - 2020-02-12 01:32 - 000464384 _____ (Microsoft Corporation) C:\WINDOWS\system32\cloudAP.dll 2020-02-12 01:32 - 2020-02-12 01:32 - 000456192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.ConversationalAgent.dll 2020-02-12 01:32 - 2020-02-12 01:32 - 000441144 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys 2020-02-12 01:32 - 2020-02-12 01:32 - 000437776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys 2020-02-12 01:32 - 2020-02-12 01:32 - 000415808 _____ (Microsoft Corporation) C:\WINDOWS\system32\AUDIOKSE.dll 2020-02-12 01:32 - 2020-02-12 01:32 - 000296760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys 2020-02-12 01:32 - 2020-02-12 01:32 - 000291328 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceDirectoryClient.dll 2020-02-12 01:32 - 2020-02-12 01:32 - 000282112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.AppDefaults.dll 2020-02-12 01:32 - 2020-02-12 01:32 - 000277504 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_CapabilityAccess.dll 2020-02-12 01:32 - 2020-02-12 01:32 - 000265216 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdd.dll 2020-02-12 01:32 - 2020-02-12 01:32 - 000256000 _____ (Microsoft Corporation) C:\WINDOWS\system32\UpdateDeploymentProvider.dll 2020-02-12 01:32 - 2020-02-12 01:32 - 000250880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\winnat.sys 2020-02-12 01:32 - 2020-02-12 01:32 - 000209920 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhosdeployment.dll 2020-02-12 01:32 - 2020-02-12 01:32 - 000201728 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXApplicabilityBlob.dll 2020-02-12 01:32 - 2020-02-12 01:32 - 000194064 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpsd.sys 2020-02-12 01:32 - 2020-02-12 01:32 - 000184832 _____ (Microsoft Corporation) C:\WINDOWS\system32\AarSvc.dll 2020-02-12 01:32 - 2020-02-12 01:32 - 000169472 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpatialAudioLicenseSrv.exe 2020-02-12 01:32 - 2020-02-12 01:32 - 000157696 _____ (Microsoft Corporation) C:\WINDOWS\system32\dssvc.dll 2020-02-12 01:32 - 2020-02-12 01:32 - 000155648 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_AppExecutionAlias.dll 2020-02-12 01:32 - 2020-02-12 01:32 - 000151552 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_BackgroundApps.dll 2020-02-12 01:32 - 2020-02-12 01:32 - 000128528 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifitask.exe 2020-02-12 01:32 - 2020-02-12 01:32 - 000123904 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplicationControlCSP.dll 2020-02-12 01:32 - 2020-02-12 01:32 - 000089912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\volmgr.sys 2020-02-12 01:32 - 2020-02-12 01:32 - 000088352 _____ (Microsoft Corporation) C:\WINDOWS\system32\remoteaudioendpoint.dll 2020-02-12 01:32 - 2020-02-12 01:32 - 000077824 _____ (Microsoft Corporation) C:\WINDOWS\system32\CustomInstallExec.exe 2020-02-12 01:32 - 2020-02-12 01:32 - 000057856 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups2.dll 2020-02-12 01:32 - 2020-02-12 01:32 - 000057344 _____ (Microsoft Corporation) C:\WINDOWS\system32\audioresourceregistrar.dll 2020-02-12 01:32 - 2020-02-12 01:32 - 000048640 _____ (Microsoft Corporation) C:\WINDOWS\system32\mcicda.dll 2020-02-12 01:32 - 2020-02-12 01:32 - 000047208 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe 2020-02-12 01:32 - 2020-02-12 01:32 - 000034304 _____ (Microsoft Corporation) C:\WINDOWS\system32\mciwave.dll 2020-02-12 01:32 - 2020-02-12 01:32 - 000030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\mciseq.dll 2020-02-12 01:32 - 2020-02-12 01:32 - 000013312 _____ (Microsoft Corporation) C:\WINDOWS\system32\dstokenclean.exe 2020-02-12 01:29 - 2020-01-16 06:07 - 000492544 _____ (Microsoft Corporation) C:\WINDOWS\system32\poqexec.exe 2020-02-12 01:29 - 2020-01-16 05:23 - 000390656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\poqexec.exe 2020-02-12 01:07 - 2020-02-14 19:34 - 000248968 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys 2020-02-12 01:07 - 2020-02-14 19:34 - 000214496 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys 2020-02-11 19:55 - 2020-02-12 09:09 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox 2020-02-10 20:01 - 2020-02-10 20:48 - 000000000 ____D C:\Users\Christophe\AppData\LocalLow\uTorrent 2020-01-28 23:25 - 2020-02-14 19:48 - 000001178 _____ C:\Users\Christophe\Desktop\Nouveau document texte (2).txt 2020-01-22 20:17 - 2020-01-22 20:17 - 000000000 ____D C:\Users\Christophe\AppData\Local\cura 2020-01-22 20:14 - 2020-01-22 20:14 - 000000000 ____D C:\Users\Christophe\AppData\Roaming\cura 2020-01-22 20:14 - 2020-01-22 20:14 - 000000000 ____D C:\Program Files\DIFX 2020-01-22 20:11 - 2020-01-22 20:11 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ultimaker Cura 4.4 2020-01-22 20:11 - 2020-01-22 20:11 - 000000000 ____D C:\Program Files\Ultimaker Cura 4.4 2020-01-15 00:00 - 2020-01-15 00:00 - 001106944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Streaming.dll 2020-01-15 00:00 - 2020-01-15 00:00 - 000852480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Streaming.dll 2020-01-15 00:00 - 2020-01-15 00:00 - 000363840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsmf.dll ==================== Un mois (modifiés) ================== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2020-02-14 19:43 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\AppReadiness 2020-02-14 19:43 - 2019-03-19 05:50 - 000000000 ____D C:\WINDOWS\INF 2020-02-14 19:42 - 2017-07-13 11:20 - 000000000 ____D C:\ProgramData\NVIDIA 2020-02-14 19:41 - 2019-10-08 20:28 - 001771410 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2020-02-14 19:41 - 2019-03-19 13:00 - 000791936 _____ C:\WINDOWS\system32\perfh00C.dat 2020-02-14 19:41 - 2019-03-19 13:00 - 000150004 _____ C:\WINDOWS\system32\perfc00C.dat 2020-02-14 19:35 - 2019-03-19 05:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2020-02-14 19:35 - 2018-12-10 21:22 - 000000000 ____D C:\Users\Christophe\AppData\Roaming\Spotify 2020-02-14 19:35 - 2018-01-05 19:49 - 000000000 ___RD C:\Users\Christophe\3D Objects 2020-02-14 19:35 - 2016-02-13 14:18 - 000000000 __RHD C:\Users\Public\AccountPictures 2020-02-14 19:34 - 2019-10-08 20:17 - 005103680 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2020-02-14 19:34 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates 2020-02-14 19:33 - 2019-10-08 20:27 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2020-02-14 19:33 - 2015-01-10 01:37 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2020-02-13 09:25 - 2019-03-19 05:37 - 000524288 _____ C:\WINDOWS\system32\config\BBI 2020-02-13 09:24 - 2019-10-08 20:43 - 000000000 ____D C:\WINDOWS\HoloShell 2020-02-13 09:24 - 2019-03-19 05:52 - 000000000 ___RD C:\WINDOWS\PrintDialog 2020-02-13 09:24 - 2019-03-19 05:52 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel 2020-02-13 09:24 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe 2020-02-13 09:24 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism 2020-02-13 09:24 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\SystemResources 2020-02-13 09:24 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns 2020-02-13 09:24 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform 2020-02-13 09:24 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation 2020-02-13 09:24 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\oobe 2020-02-13 09:24 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\Dism 2020-02-13 09:24 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\ShellExperiences 2020-02-13 09:24 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\bcastdvr 2020-02-13 09:24 - 2019-03-19 05:37 - 000000000 ____D C:\WINDOWS\servicing 2020-02-13 09:22 - 2019-10-08 20:17 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2020-02-13 05:47 - 2019-03-19 05:37 - 000000000 ____D C:\WINDOWS\CbsTemp 2020-02-12 23:19 - 2016-11-18 19:51 - 000000000 ____D C:\Users\Christophe\AppData\LocalLow\Mozilla 2020-02-12 22:47 - 2015-01-10 00:20 - 000000000 ____D C:\Users\Christophe\AppData\Local\VirtualStore 2020-02-12 09:06 - 2015-01-10 01:37 - 000001235 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk 2020-02-12 01:35 - 2014-06-30 15:39 - 120407888 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2020-02-12 01:35 - 2014-06-30 15:39 - 000000000 ____D C:\WINDOWS\system32\MRT 2020-02-12 01:10 - 2019-12-11 05:01 - 000000000 ____D C:\Users\Christophe\AppData\Local\cache 2020-02-12 00:59 - 2015-12-15 01:26 - 000000000 ____D C:\Users\Christophe\AppData\Local\Ubisoft Game Launcher 2020-02-11 22:08 - 2015-02-28 13:08 - 000000000 ____D C:\Users\Christophe\AppData\Roaming\vlc 2020-02-11 19:50 - 2019-10-08 20:27 - 000004760 _____ C:\WINDOWS\system32\Tasks\Adobe Flash Player NPAPI Notifier 2020-02-11 19:50 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed 2020-02-11 19:50 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\Macromed 2020-02-11 09:44 - 2019-02-08 20:15 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype 2020-02-11 02:53 - 2019-07-17 18:35 - 000153312 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys 2020-02-10 20:48 - 2015-01-10 02:01 - 000000000 ____D C:\Users\Christophe\AppData\Roaming\uTorrent 2020-02-10 20:32 - 2019-03-23 15:03 - 000000000 ____D C:\Users\Christophe\AppData\Local\BitTorrentHelper 2020-02-10 19:50 - 2019-10-08 20:27 - 000003378 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1853260028-296559677-1043706777-1002 2020-02-10 19:50 - 2019-10-08 20:22 - 000002464 _____ C:\Users\Christophe\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2020-02-10 19:50 - 2015-01-10 01:26 - 000000000 ___RD C:\Users\Christophe\OneDrive 2020-02-08 14:41 - 2015-01-10 15:14 - 000000000 ____D C:\Users\Christophe\Documents\KeyShot 4 2020-02-07 21:56 - 2019-03-19 05:52 - 000000000 ___HD C:\Program Files\WindowsApps 2020-02-05 01:39 - 2019-10-08 20:27 - 000003590 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA 2020-02-05 01:39 - 2019-10-08 20:27 - 000003466 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore 2020-02-04 17:21 - 2018-02-28 20:44 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd 2020-02-03 21:56 - 2019-03-19 05:56 - 000835688 _____ (Adobe) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe 2020-02-03 21:56 - 2019-03-19 05:56 - 000179608 _____ (Adobe) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl 2020-01-30 22:07 - 2018-09-11 21:47 - 000000000 ____D C:\Users\Christophe\AppData\Roaming\Microsoft\Windows\Start Menu\SteamVR 2020-01-24 21:53 - 2018-06-23 09:03 - 000000000 ____D C:\Users\Christophe\AppData\Local\D3DSCache 2020-01-24 21:52 - 2015-01-10 11:47 - 000000000 ____D C:\ProgramData\FLEXnet 2020-01-24 06:43 - 2015-02-03 18:53 - 000000000 ____D C:\Program Files\Microsoft Office 15 2020-01-22 22:39 - 2017-06-20 22:22 - 000002306 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2020-01-22 22:39 - 2017-06-20 22:22 - 000002265 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2020-01-17 19:45 - 2019-03-19 05:52 - 000000000 ___SD C:\WINDOWS\system32\UNP ==================== Fichiers à la racine de certains dossiers ======== 2015-01-14 17:15 - 2015-01-14 17:15 - 000000132 _____ () C:\Users\Christophe\AppData\Roaming\Adobe BMP Format CS6 Prefs 2015-01-16 21:29 - 2015-01-16 21:29 - 000000132 _____ () C:\Users\Christophe\AppData\Roaming\Adobe PNG Format CS6 Prefs 2015-01-16 16:28 - 2019-01-03 23:58 - 000000132 _____ () C:\Users\Christophe\AppData\Roaming\Adobe Targa Format CS6 Prefs 2015-01-27 19:09 - 2017-10-16 21:50 - 000001456 _____ () C:\Users\Christophe\AppData\Local\Adobe Save for Web 13.0 Prefs 2015-02-04 14:19 - 2015-12-30 18:53 - 000004608 _____ () C:\Users\Christophe\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini 2017-03-27 08:37 - 2017-03-27 08:37 - 000000552 _____ () C:\Users\Christophe\AppData\Local\TroubleshooterConfig.json ==================== SigCheck ============================ (Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.) ==================== Fin de FRST.txt ========================