Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 25-11-2019 01
Exécuté par philippe (administrateur) sur DUDU (ASUSTeK COMPUTER INC. P30AD) (30-11-2019 11:46:52)
Exécuté depuis C:\Users\philippe\Desktop
Profils chargés: philippe (Profils disponibles: philippe & defaultuser1)
Platform: Windows 10 Home Version 1809 17763.864 (X64) Langue: Français (France)
Navigateur par défaut: Edge
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processus (Avec liste blanche) =================

(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)

(ASUSTeK Computer Inc. -> ) C:\Program Files (x86)\ASUS\AXSP\1.00.19\atkexComSvc.exe
(ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\ASUS Manager\SyncUp\Server\SyncUp Server.exe
(ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusSGPlusBTServer64.exe
(ASUSTeK Computer Inc. -> AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPCenter.exe
(ASUSTeK Computer Inc. -> AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPHelper.exe
(ASUSTeK Computer Inc. -> AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLoader.exe
(BitTorrent Inc -> BitTorrent Inc.) C:\Users\philippe\AppData\Roaming\uTorrent\helper\helper.exe
(BitTorrent Inc -> BitTorrent Inc.) C:\Users\philippe\AppData\Roaming\uTorrent\updates\3.5.5_45395\utorrentie.exe
(BitTorrent Inc -> BitTorrent Inc.) C:\Users\philippe\AppData\Roaming\uTorrent\updates\3.5.5_45395\utorrentie.exe
(BitTorrent Inc -> BitTorrent Inc.) C:\Users\philippe\AppData\Roaming\uTorrent\uTorrent.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(Dropbox, Inc -> The Qt Company Ltd.) C:\Program Files (x86)\Dropbox\Client\85.4.155\QtWebEngineProcess.exe
(Dropbox, Inc -> The Qt Company Ltd.) C:\Program Files (x86)\Dropbox\Client\85.4.155\QtWebEngineProcess.exe
(Dropbox, Inc -> The Qt Company Ltd.) C:\Program Files (x86)\Dropbox\Client\85.4.155\QtWebEngineProcess.exe
(FlashPeak Inc. -> FlashPeak Inc.) C:\Program Files (x86)\Slimjet\slimjet.exe
(FlashPeak Inc. -> FlashPeak Inc.) C:\Program Files (x86)\Slimjet\slimjet.exe
(FlashPeak Inc. -> FlashPeak Inc.) C:\Program Files (x86)\Slimjet\slimjet.exe
(FlashPeak Inc. -> FlashPeak Inc.) C:\Program Files (x86)\Slimjet\slimjet.exe
(FlashPeak Inc. -> FlashPeak Inc.) C:\Program Files (x86)\Slimjet\slimjet.exe
(FlashPeak Inc. -> FlashPeak Inc.) C:\Program Files (x86)\Slimjet\slimjet.exe
(FlashPeak Inc. -> FlashPeak Inc.) C:\Program Files (x86)\Slimjet\slimjet.exe
(FlashPeak Inc. -> FlashPeak Inc.) C:\Program Files (x86)\Slimjet\slimjet.exe
(FlashPeak Inc. -> FlashPeak Inc.) C:\Program Files (x86)\Slimjet\slimjet.exe
(FlashPeak Inc. -> FlashPeak Inc.) C:\Program Files (x86)\Slimjet\slimjet.exe
(FlashPeak Inc. -> FlashPeak Inc.) C:\Program Files (x86)\Slimjet\slimjet.exe
(FlashPeak Inc. -> FlashPeak Inc.) C:\Program Files (x86)\Slimjet\slimjet.exe
(Intel Corporation - Intel® Management Engine Firmware -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation - Intel® Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation - Intel® Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Intel Corporation - Software and Firmware Products -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel(R) Corporation) [Fichier non signé] C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel(R) pGFX -> ) C:\Windows\System32\igfxTray.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel® Corporation) [Fichier non signé] C:\Program Files\Intel\ConnectCenter\bin\CCFManager.exe
(LAVASOFT SOFTWARE CANADA INC -> ) C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.WCAssistant.WinService.exe
(LAVASOFT SOFTWARE CANADA INC -> Lavasoft) C:\Program Files (x86)\Lavasoft\Web Companion\Application\WebCompanion.exe
(Microsoft Corporation -> © 2015 Microsoft Corporation) C:\Users\philippe\AppData\Local\Microsoft\BingSvc\BingSvc.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Users\philippe\AppData\Local\Microsoft\OneDrive\OneDrive.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2019.19071.17920.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\browser_broker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeSH.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\WWAHost.exe
(Piriform Ltd -> Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Piriform Ltd -> Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Piriform Ltd -> Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Piriform Ltd -> Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Piriform Ltd -> Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Piriform Ltd -> Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Piriform Ltd -> Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Piriform Ltd -> Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Piriform Ltd -> Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Piriform Ltd -> Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Piriform Ltd -> Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Piriform Ltd -> Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Piriform Ltd -> Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Piriform Ltd -> Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Piriform Ltd -> Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Piriform Ltd -> Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.) C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe

==================== Registre (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)

HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [287592 2013-08-07] (Intel Corporation - Intel® Rapid Storage Technology -> Intel Corporation)
HKLM\...\Run: [IntelConnectCenter] => C:\Program Files\Intel\ConnectCenter\bin\ICCLauncher.exe [90112 2015-03-16] (Intel® Corporation) [Fichier non signé]
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8822016 2016-06-02] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1454336 2016-06-02] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [6260544 2019-11-14] (Dropbox, Inc -> Dropbox, Inc.)
HKLM Group Policy restriction on software: %systemroot%\system32\mrt.exe <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-314884808-1758805947-4041523921-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [18385368 2018-06-24] (Piriform Ltd -> Piriform Ltd)
HKU\S-1-5-21-314884808-1758805947-4041523921-1001\...\Run: [BingSvc] => C:\Users\philippe\AppData\Local\Microsoft\BingSvc\BingSvc.exe [144008 2015-11-05] (Microsoft Corporation -> © 2015 Microsoft Corporation)
HKU\S-1-5-21-314884808-1758805947-4041523921-1001\...\Run: [Chromium] => c:\users\philippe\appdata\local\chromium\application\chrome.exe [1068544 2016-03-18] (The Chromium Authors) [Fichier non signé]
HKU\S-1-5-21-314884808-1758805947-4041523921-1001\...\Run: [GoogleChromeAutoLaunch_2ECC2CAA2ACA2C72326DE38CB10F609C] => C:\Program Files (x86)\Slimjet\slimjet.exe [1547584 2018-07-18] (FlashPeak Inc. -> FlashPeak Inc.)
HKU\S-1-5-21-314884808-1758805947-4041523921-1001\...\Run: [uTorrent] => C:\Users\philippe\AppData\Roaming\uTorrent\uTorrent.exe [2005224 2019-11-07] (BitTorrent Inc -> BitTorrent Inc.)
HKU\S-1-5-21-314884808-1758805947-4041523921-1001\...\Run: [Web Companion] => C:\Program Files (x86)\Lavasoft\Web Companion\Application\WebCompanion.exe [7938648 2019-11-22] (LAVASOFT SOFTWARE CANADA INC -> Lavasoft)
HKU\S-1-5-21-314884808-1758805947-4041523921-1001\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
HKU\S-1-5-21-314884808-1758805947-4041523921-1001\...\MountPoints2: {5f13d510-5003-11e5-8264-086266a1bb6a} - "E:\LaunchU3.exe" -a
HKU\S-1-5-21-314884808-1758805947-4041523921-1001\...\MountPoints2: {76674735-463b-11e9-8307-086266a1bb6a} - "E:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-314884808-1758805947-4041523921-1001\...\MountPoints2: {a5e0b972-b3f4-11e4-8257-806e6f6e6963} - "F:\Autorun.exe"
HKU\S-1-5-21-314884808-1758805947-4041523921-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\WINDOWS\system32\Mystify.scr [152576 2018-09-15] (Microsoft Windows -> Microsoft Corporation)
HKU\S-1-5-18\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [18385368 2018-06-24] (Piriform Ltd -> Piriform Ltd)
HKU\S-1-5-18\...\Run: [Web Companion] => C:\Program Files (x86)\Lavasoft\Web Companion\Application\WebCompanion.exe [7938648 2019-11-22] (LAVASOFT SOFTWARE CANADA INC -> Lavasoft)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\78.0.3904.108\Installer\chrmstp.exe [2019-11-22] (Google LLC -> Google LLC)

==================== Tâches planifiées (Avec liste blanche) ============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

Task: {00CEDF1C-D34E-435B-87CA-3CBE3B24F70B} - System32\Tasks\ASUS\ASUS Manager BackgroundWindow => C:\Program Files (x86)\ASUS\ASUS Manager\BackgroundWindow.exe [21784 2013-08-24] (ASUSTeK Computer Inc. -> )
Task: {0ABF0BB9-0540-47EA-A290-E4B2FD0FC9F0} - System32\Tasks\Microsoft\Windows\Shell\FamilySafetyUpload => {EBF00FCB-0769-4B81-9BEC-6C05514111AA}
Task: {138A032E-68C6-4AD3-B5E5-70FA1129F390} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_30_0_0_134_Plugin.exe [1447936 2018-07-15] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
Task: {13C828AF-FEEC-4B97-AC92-F25E2CA1BD10} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1}
Task: {1AA09EBF-9618-460C-BC75-C05ECF9F86DB} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [13594584 2018-06-24] (Piriform Ltd -> Piriform Ltd)
Task: {1FE78B61-E31C-45A9-90CA-D542A165BF77} - System32\Tasks\ASUS\ASUS Update Checker => C:\Program Files (x86)\ASUS\ASUS Manager\Application Update\ASUSUpdateChecker.exe [919696 2014-03-18] (ASUSTeK Computer Inc. -> ) [Fichier non signé]
Task: {2EC96A06-1369-4EE1-AA0D-5D8FCC8D76B1} - System32\Tasks\ASUS\ASUS Manager - PC Cleanup - SecureDeleteBackground => C:\Program Files (x86)\ASUS\ASUS Manager\PC Cleanup\SecureDeleteBackground.exe [930448 2014-06-03] (ASUSTeK Computer Inc. -> ) [Fichier non signé]
Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\WINDOWS\System32\AutoWorkplace.exe
Task: {37132033-FF68-493D-90E5-4D6476A5DF23} - System32\Tasks\ASUS Smart Gesture Launcher => C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLauncher.exe [18392 2016-11-03] (ASUSTeK Computer Inc. -> AsusTek)
Task: {3A10551D-208F-4CAC-AB15-6E4760A00E4A} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-03-18] (Google Inc -> Google Inc.)
Task: {4F938889-5BF3-4C69-8BD9-C61F5E0393BD} - \WPD\SqmUpload_S-1-5-21-314884808-1758805947-4041523921-1001 -> Pas de fichier <==== ATTENTION
Task: {5A3FB241-0B11-4EA5-BC66-0D9F1B406040} - System32\Tasks\Microsoft\Windows\Customer Experience Improvement Program\BthSQM => {C8367320-6F85-11E0-A1F0-0800200C9A66} C:\WINDOWS\System32\BthTelemetry.dll [31232 2018-09-15] (Microsoft Windows -> Microsoft Corporation)
Task: {5B59F044-42E5-4E4C-944D-C447E7399B2A} - System32\Tasks\ASUS\ASUS Manager HotKey Service => C:\Program Files (x86)\ASUS\ASUS Manager\AsHKService.exe [225592 2014-03-19] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
Task: {5C822029-A70E-40B9-82A5-17D28BDD01CE} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWoW64\Macromed\Flash\FlashPlayerUpdateService.exe [335872 2018-07-15] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
Task: {5CFB16E6-4106-437A-B34A-27ACC498F0FF} - System32\Tasks\IntelBootstrapCCDashExe => C:\Program Files\Intel\ConnectCenter\bin\ICCLauncher.exe [90112 2015-03-16] (Intel® Corporation) [Fichier non signé]
Task: {5F421C1C-2A82-49C2-85DD-6693DD93CEF3} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [1873288 2019-09-18] (AVAST Software s.r.o. -> AVAST Software)
Task: {6DFCB649-0769-4F83-BB10-F60F235F6D3D} - System32\Tasks\Microsoft\Windows\SkyDrive\Idle Sync Maintenance Task => {BF6C1E47-86EC-4194-9CE5-13C15DCB2001}
Task: {80923F17-CCEC-4E7A-92A8-561636851D6C} - System32\Tasks\ASUS\SyncUp => C:\Program Files (x86)\ASUS\ASUS Manager\SyncUp\Server\SyncUp Server.exe [3493656 2014-11-04] (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
Task: {872D0E53-FD2E-41E3-B431-698AF82882CE} - System32\Tasks\Microsoft\Windows\SkyDrive\Routine Maintenance Task => {1B1F472E-3221-4826-97DB-2C2324D389AE}
Task: {ADF21DD0-964E-466E-B00B-83FAA7561BD5} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [619416 2019-02-16] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {B1102A34-8505-4833-AE8E-A9532239BD68} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-03-18] (Google Inc -> Google Inc.)
Task: {CE2DE968-E342-40D7-9566-427D45E4A886} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40B4-8963-D3C761B18371}
Task: {CF876613-A0A4-4B42-B4FD-20F610F916A2} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-11-05] (Dropbox, Inc -> Dropbox, Inc.)
Task: {D1CA72A4-1C1C-4867-A0CC-B42BD122FF4E} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe
Task: {D8094CD3-457F-48EF-9443-87E57D089FAE} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-11-05] (Dropbox, Inc -> Dropbox, Inc.)
Task: {D858163F-58C6-4E8C-8081-7943FBDB4BB2} - System32\Tasks\ASUS\Power_Manager_background => C:\Program Files (x86)\ASUS\ASUS Manager\Power Manager\Power Manager_background.exe [216344 2014-09-13] (ASUSTeK Computer Inc. -> ASUSTeK)
Task: {EA39430B-E9A9-438E-8AF0-A89E6194B522} - System32\Tasks\ASUS\ASUS Updater => C:\Program Files (x86)\ASUS\ASUS Manager\Application Update\ASUSFourceUpdater.exe [937104 2014-03-21] (ASUSTeK Computer Inc. -> ) [Fichier non signé]

(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)

Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe

==================== Internet (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{925b9370-43d8-4664-bc39-52b8b283a4e8}: [DhcpNameServer] 192.168.1.1

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://google.com
HKU\S-1-5-21-314884808-1758805947-4041523921-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxps://www.bing.com/search?FORM=INCOH1&PC=IC05&PTAG=ICO-17710c4c
HKU\S-1-5-21-314884808-1758805947-4041523921-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.bing.com/?pc=COS2&ptag=D071319-N0690A2D586A4510&form=CONMHP&conlogo=CT3335800
SearchScopes: HKLM -> DefaultScope la valeur est absente
SearchScopes: HKLM -> {26080cad-4adc-49ac-8c63-eda16e595cbd} URL = hxxps://www.bing.com/search?FORM=INCOH2&PC=IC05&PTAG=ICO-17710c4c&q={searchTerms}
SearchScopes: HKLM -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> {26080cad-4adc-49ac-8c63-eda16e595cbd} URL = hxxps://www.bing.com/search?FORM=INCOH2&PC=IC05&PTAG=ICO-17710c4c&q={searchTerms}
SearchScopes: HKLM-x32 -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02
SearchScopes: HKU\.DEFAULT -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02
SearchScopes: HKU\.DEFAULT -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL =
SearchScopes: HKU\S-1-5-21-314884808-1758805947-4041523921-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?pc=COS2&ptag=D071319-N0700A2D586A4510&form=CONBDF&conlogo=CT3335800&q={searchTerms}
SearchScopes: HKU\S-1-5-21-314884808-1758805947-4041523921-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?pc=COS2&ptag=D071319-N0700A2D586A4510&form=CONBDF&conlogo=CT3335800&q={searchTerms}
SearchScopes: HKU\S-1-5-21-314884808-1758805947-4041523921-1001 -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL =
SearchScopes: HKU\S-1-5-21-314884808-1758805947-4041523921-1001 -> {5e7797ae-5ca1-4b50-95d8-97e746340487} URL = hxxps://www.bing.com/search?FORM=INCOH2&PC=IC05&PTAG=ICO-17710c4c&q={searchTerms}

Edge:
======
DownloadDir: C:\Users\philippe\Downloads

FireFox:
========
FF DefaultProfile: wwmlvf64.default-1462294694257
FF ProfilePath: C:\Users\philippe\AppData\Roaming\Mozilla\Firefox\Profiles\wwmlvf64.default-1462294694257 [2019-07-16]
FF Homepage: Mozilla\Firefox\Profiles\wwmlvf64.default-1462294694257 -> hxxps://www.malwarebytes.org/restorebrowser/
FF Extension: (Greasemonkey) - C:\Users\philippe\AppData\Roaming\Mozilla\Firefox\Profiles\wwmlvf64.default-1462294694257\Extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}.xpi [2018-06-07]
FF ProfilePath: C:\Users\philippe\AppData\Roaming\Mozilla\Firefox\Profiles\1ezw63n2.default-1475516399714 [2019-07-16]
FF NewTab: Mozilla\Firefox\Profiles\1ezw63n2.default-1475516399714 -> about:newtab
FF ProfilePath: C:\Users\philippe\AppData\Roaming\Moonchild Productions\Pale Moon\Profiles\ene86pqq.default [2019-11-30]
FF Extension: (Greasemonkey) - C:\Users\philippe\AppData\Roaming\Moonchild Productions\Pale Moon\Profiles\ene86pqq.default\Extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}.xpi [2016-10-17] []
FF Extension: (Skype) - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}.xpi [2016-04-29] []
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_30_0_0_134.dll [2018-07-15] (Adobe Systems Incorporated -> )
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_30_0_0_134.dll [2018-07-15] (Adobe Systems Incorporated -> )
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-09-16] (Intel® Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-09-16] (Intel® Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-04-01] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.35.342\npGoogleUpdate3.dll [2019-11-18] (Google Inc -> Google LLC)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.35.342\npGoogleUpdate3.dll [2019-11-18] (Google Inc -> Google LLC)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-06-11] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-06-11] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-06-11] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-06-11] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-06-11] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-06-11] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-06-11] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-06-11] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.7.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-06-11] (VideoLAN -> VideoLAN)

Chrome:
=======
CHR DefaultSearchURL: Default -> hxxp://www.bing.com/search?pc=COS2&ptag=D071319-N0640A2D586A4510&form=CONBDF&conlogo=CT3335800&q={searchTerms}
CHR DefaultSearchKeyword: Default -> bing®
CHR DefaultSuggestURL: Default -> hxxp://api.bing.com/qsml.aspx?query={searchTerms}
CHR Notifications: Default -> hxxps://mail.google.com; hxxps://mg.mail.yahoo.com; hxxps://stream2foot.info; hxxps://www.facebook.com
CHR Profile: C:\Users\philippe\AppData\Local\Google\Chrome\User Data\Default [2019-11-30]
CHR Extension: (Slides) - C:\Users\philippe\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-03-19]
CHR Extension: (Docs) - C:\Users\philippe\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-03-19]
CHR Extension: (Google Drive) - C:\Users\philippe\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-11-12]
CHR Extension: (YouTube) - C:\Users\philippe\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-11-12]
CHR Extension: (uBlock Origin) - C:\Users\philippe\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2019-11-30]
CHR Extension: (Worldbank.org CBG) - C:\Users\philippe\AppData\Local\Google\Chrome\User Data\Default\Extensions\cklmbcdiggicgkfghpnlondffkkpkheg [2017-01-19]
CHR Extension: (Sheets) - C:\Users\philippe\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-03-19]
CHR Extension: (Widthie) - C:\Users\philippe\AppData\Local\Google\Chrome\User Data\Default\Extensions\gegdfeiahlfolhcfioipjlkombmgbakh [2019-04-05]
CHR Extension: (Google Docs hors connexion) - C:\Users\philippe\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-11-10]
CHR Extension: (Stuff.tv CBG) - C:\Users\philippe\AppData\Local\Google\Chrome\User Data\Default\Extensions\kcjccadpaggjijncnedadbobkbimmjpk [2017-01-27]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\philippe\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-11-30]
CHR Extension: (Gmail) - C:\Users\philippe\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-05-02]
CHR Extension: (Chrome Media Router) - C:\Users\philippe\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-11-30]
CHR Profile: C:\Users\philippe\AppData\Local\Google\Chrome\User Data\System Profile [2019-07-16]
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk]
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk]
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl]

==================== Services (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\1.00.19\atkexComSvc.exe [920736 2013-11-06] (ASUSTeK Computer Inc. -> )
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-11-05] (Dropbox, Inc -> Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-11-05] (Dropbox, Inc -> Dropbox, Inc.)
R2 DbxSvc; C:\WINDOWS\system32\DbxSvc.exe [51024 2019-11-14] (Dropbox, Inc -> Dropbox, Inc.)
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [Fichier non signé]
R2 igfxCUIService2.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [365040 2017-10-20] (Intel(R) pGFX -> Intel Corporation)
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [747520 2013-08-27] (Intel(R) Corporation) [Fichier non signé]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [828376 2013-08-27] (Intel® Trusted Connect Service -> Intel(R) Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-09-16] (Intel Corporation - Intel® Management Engine Firmware -> Intel Corporation)
R2 ss_conn_service; C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [752224 2017-01-16] (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.)
S2 STCServ; C:\Program Files\Intel\STCServ\STCServ.exe [8095456 2015-03-16] (Intel(R) iCDG WINS WSS CCF -> Intel Corporation)
R2 WCAssistantService; C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.WCAssistant.WinService.exe [28760 2019-11-22] (LAVASOFT SOFTWARE CANADA INC -> )
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [3831576 2019-06-11] (Microsoft Corporation -> Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [110944 2018-09-15] (Microsoft Corporation -> Microsoft Corporation)

===================== Pilotes (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [15232 2012-08-22] (ASUSTeK Computer Inc. -> )
R0 assdv2; C:\Windows\System32\Drivers\assdv2.sys [21816 2013-12-05] (ASUSTeK Computer Inc. -> )
R1 AsUpIO; C:\Windows\SysWow64\drivers\AsUpIO.sys [14464 2010-08-03] (ASUSTeK Computer Inc. -> )
R3 AsusVBus; C:\WINDOWS\System32\drivers\AsusVBus.sys [39704 2016-11-03] (ASUSTeK Computer Inc. -> Windows (R) Win 7 DDK provider)
R3 ATP; C:\WINDOWS\System32\drivers\AsusTP.sys [84472 2016-11-03] (ASUSTeK Computer Inc. -> ASUS Corporation)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [131712 2017-01-16] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
R3 MEIx64; C:\WINDOWS\system32\DRIVERS\TeeDriverx64.sys [99288 2013-09-16] (Intel Corporation - Intel® Management Engine Firmware -> Intel Corporation)
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [605696 2018-09-15] (Microsoft Windows -> Realtek )
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [165504 2017-01-16] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [35784 2016-10-06] (Avira Operations GmbH & Co. KG -> The OpenVPN Project)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [46584 2018-09-15] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [340008 2018-09-15] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [61992 2018-09-15] (Microsoft Windows -> Microsoft Corporation)

==================== NetSvcs (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)


==================== Un mois (créés) ===================

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2019-11-30 11:46 - 2019-11-30 11:48 - 000031242 _____ C:\Users\philippe\Desktop\FRST.txt
2019-11-30 11:46 - 2019-11-30 11:47 - 000000000 ____D C:\FRST
2019-11-30 11:42 - 2019-11-30 11:43 - 002262016 _____ (Farbar) C:\Users\philippe\Desktop\FRST64.exe
2019-11-30 10:30 - 2019-11-30 10:30 - 000000000 ____D C:\Users\defaultuser1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ASUS
2019-11-30 10:28 - 2019-11-30 10:29 - 000000000 ____D C:\Users\defaultuser1\AppData\Local\Packages
2019-11-30 10:27 - 2019-11-30 10:28 - 000000000 ____D C:\Users\defaultuser1\AppData\Local\ConnectedDevicesPlatform
2019-11-30 10:27 - 2019-11-30 10:27 - 000000020 ___SH C:\Users\defaultuser1\ntuser.ini
2019-11-30 10:27 - 2019-11-30 10:27 - 000000000 __SHD C:\Users\defaultuser1\IntelGraphicsProfiles
2019-11-30 10:27 - 2019-11-30 10:27 - 000000000 ____D C:\Users\defaultuser1\AppData\Local\VirtualStore
2019-11-30 10:27 - 2018-09-15 08:29 - 000001105 _____ C:\Users\defaultuser1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2019-11-30 10:26 - 2019-11-30 10:27 - 000000000 ____D C:\Users\defaultuser1
2019-11-30 10:26 - 2017-06-10 11:19 - 000000000 ____D C:\Users\defaultuser1\AppData\Local\Microsoft Help
2019-11-19 18:34 - 2019-11-30 10:27 - 000000000 ____D C:\Users\philippe\AppData\LocalLow\uTorrent
2019-11-17 17:46 - 2019-11-17 17:46 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2019-11-17 17:40 - 2019-11-17 17:40 - 019014144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2019-11-17 17:40 - 2019-11-17 17:40 - 012258816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2019-11-17 17:40 - 2019-11-17 17:40 - 011724288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2019-11-17 17:40 - 2019-11-17 17:40 - 009941504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll
2019-11-17 17:40 - 2019-11-17 17:40 - 005436696 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2019-11-17 17:40 - 2019-11-17 17:40 - 003550384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2019-11-17 17:40 - 2019-11-17 17:40 - 002393600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AcGenral.dll
2019-11-17 17:40 - 2019-11-17 17:40 - 001312256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjet40.dll
2019-11-17 17:40 - 2019-11-17 17:40 - 001267240 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2019-11-17 17:40 - 2019-11-17 17:40 - 001200920 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2019-11-17 17:40 - 2019-11-17 17:40 - 001024712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll
2019-11-17 17:40 - 2019-11-17 17:40 - 000687104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2019-11-17 17:40 - 2019-11-17 17:40 - 000263360 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2019-11-17 17:40 - 2019-11-17 17:40 - 000249856 _____ (Gracenote, Inc.) C:\WINDOWS\SysWOW64\gnsdk_fp.dll
2019-11-17 17:39 - 2019-11-17 17:40 - 006065152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2019-11-17 17:39 - 2019-11-17 17:39 - 023455232 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2019-11-17 17:39 - 2019-11-17 17:39 - 012960256 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2019-11-17 17:39 - 2019-11-17 17:39 - 007872000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2019-11-17 17:39 - 2019-11-17 17:39 - 006934016 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2019-11-17 17:39 - 2019-11-17 17:39 - 006547896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2019-11-17 17:39 - 2019-11-17 17:39 - 006318328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2019-11-17 17:39 - 2019-11-17 17:39 - 005770240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2019-11-17 17:39 - 2019-11-17 17:39 - 005608336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2019-11-17 17:39 - 2019-11-17 17:39 - 005575168 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll
2019-11-17 17:39 - 2019-11-17 17:39 - 004873216 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2019-11-17 17:39 - 2019-11-17 17:39 - 004661760 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2019-11-17 17:39 - 2019-11-17 17:39 - 003906560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2019-11-17 17:39 - 2019-11-17 17:39 - 003872336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2019-11-17 17:39 - 2019-11-17 17:39 - 003703296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2019-11-17 17:39 - 2019-11-17 17:39 - 003656792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneCoreUAPCommonProxyStub.dll
2019-11-17 17:39 - 2019-11-17 17:39 - 003496448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.AI.MachineLearning.dll
2019-11-17 17:39 - 2019-11-17 17:39 - 002918200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2019-11-17 17:39 - 2019-11-17 17:39 - 002871824 _____ (Microsoft Corporation) C:\WINDOWS\system32\aitstatic.exe
2019-11-17 17:39 - 2019-11-17 17:39 - 002765312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2019-11-17 17:39 - 2019-11-17 17:39 - 002699976 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2019-11-17 17:39 - 2019-11-17 17:39 - 002698752 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebRuntimeManager.dll
2019-11-17 17:39 - 2019-11-17 17:39 - 002628112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2019-11-17 17:39 - 2019-11-17 17:39 - 002348544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2019-11-17 17:39 - 2019-11-17 17:39 - 002072176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2019-11-17 17:39 - 2019-11-17 17:39 - 001994976 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2019-11-17 17:39 - 2019-11-17 17:39 - 001966096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\refs.sys
2019-11-17 17:39 - 2019-11-17 17:39 - 001918792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll
2019-11-17 17:39 - 2019-11-17 17:39 - 001729024 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreShell.dll
2019-11-17 17:39 - 2019-11-17 17:39 - 001726480 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2019-11-17 17:39 - 2019-11-17 17:39 - 001708544 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2019-11-17 17:39 - 2019-11-17 17:39 - 001702600 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2019-11-17 17:39 - 2019-11-17 17:39 - 001677808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2019-11-17 17:39 - 2019-11-17 17:39 - 001674480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2019-11-17 17:39 - 2019-11-17 17:39 - 001668752 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2019-11-17 17:39 - 2019-11-17 17:39 - 001486472 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2019-11-17 17:39 - 2019-11-17 17:39 - 001473296 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2019-11-17 17:39 - 2019-11-17 17:39 - 001465472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2019-11-17 17:39 - 2019-11-17 17:39 - 001388032 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvruserservice.dll
2019-11-17 17:39 - 2019-11-17 17:39 - 001346216 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2019-11-17 17:39 - 2019-11-17 17:39 - 001319936 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll
2019-11-17 17:39 - 2019-11-17 17:39 - 001291264 _____ (Microsoft Corporation) C:\WINDOWS\system32\werconcpl.dll
2019-11-17 17:39 - 2019-11-17 17:39 - 001183504 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2019-11-17 17:39 - 2019-11-17 17:39 - 001180248 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll
2019-11-17 17:39 - 2019-11-17 17:39 - 001098136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2019-11-17 17:39 - 2019-11-17 17:39 - 000948224 _____ (Microsoft Corporation) C:\WINDOWS\system32\uDWM.dll
2019-11-17 17:39 - 2019-11-17 17:39 - 000877568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2019-11-17 17:39 - 2019-11-17 17:39 - 000872448 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2019-11-17 17:39 - 2019-11-17 17:39 - 000842752 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2019-11-17 17:39 - 2019-11-17 17:39 - 000811536 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2019-11-17 17:39 - 2019-11-17 17:39 - 000808272 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2019-11-17 17:39 - 2019-11-17 17:39 - 000782968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll
2019-11-17 17:39 - 2019-11-17 17:39 - 000773208 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskschd.dll
2019-11-17 17:39 - 2019-11-17 17:39 - 000747536 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2019-11-17 17:39 - 2019-11-17 17:39 - 000729088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssvp.dll
2019-11-17 17:39 - 2019-11-17 17:39 - 000703488 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2019-11-17 17:39 - 2019-11-17 17:39 - 000676352 _____ (Microsoft Corporation) C:\WINDOWS\system32\sud.dll
2019-11-17 17:39 - 2019-11-17 17:39 - 000661264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2019-11-17 17:39 - 2019-11-17 17:39 - 000642560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sud.dll
2019-11-17 17:39 - 2019-11-17 17:39 - 000638480 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2019-11-17 17:39 - 2019-11-17 17:39 - 000613376 _____ (Microsoft Corporation) C:\WINDOWS\system32\uxtheme.dll
2019-11-17 17:39 - 2019-11-17 17:39 - 000596992 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptui.dll
2019-11-17 17:39 - 2019-11-17 17:39 - 000590336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActivationManager.dll
2019-11-17 17:39 - 2019-11-17 17:39 - 000588816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netio.sys
2019-11-17 17:39 - 2019-11-17 17:39 - 000553784 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcasvc.dll
2019-11-17 17:39 - 2019-11-17 17:39 - 000553472 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenrollengine.dll
2019-11-17 17:39 - 2019-11-17 17:39 - 000548864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptui.dll
2019-11-17 17:39 - 2019-11-17 17:39 - 000547328 _____ (Microsoft Corporation) C:\WINDOWS\system32\VAN.dll
2019-11-17 17:39 - 2019-11-17 17:39 - 000542320 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanager.dll
2019-11-17 17:39 - 2019-11-17 17:39 - 000535080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2019-11-17 17:39 - 2019-11-17 17:39 - 000533504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2019-11-17 17:39 - 2019-11-17 17:39 - 000520704 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Notifications.dll
2019-11-17 17:39 - 2019-11-17 17:39 - 000495616 _____ (Microsoft Corporation) C:\WINDOWS\system32\werui.dll
2019-11-17 17:39 - 2019-11-17 17:39 - 000481280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\uxtheme.dll
2019-11-17 17:39 - 2019-11-17 17:39 - 000474936 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS
2019-11-17 17:39 - 2019-11-17 17:39 - 000473832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\policymanager.dll
2019-11-17 17:39 - 2019-11-17 17:39 - 000465416 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2019-11-17 17:39 - 2019-11-17 17:39 - 000462336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmenrollengine.dll
2019-11-17 17:39 - 2019-11-17 17:39 - 000455168 _____ (Microsoft Corporation) C:\WINDOWS\system32\upnphost.dll
2019-11-17 17:39 - 2019-11-17 17:39 - 000435512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fltMgr.sys
2019-11-17 17:39 - 2019-11-17 17:39 - 000428032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werui.dll
2019-11-17 17:39 - 2019-11-17 17:39 - 000427832 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\volsnap.sys
2019-11-17 17:39 - 2019-11-17 17:39 - 000420864 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsEnvironment.Desktop.dll
2019-11-17 17:39 - 2019-11-17 17:39 - 000383288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msrpc.sys
2019-11-17 17:39 - 2019-11-17 17:39 - 000360960 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceEnroller.exe
2019-11-17 17:39 - 2019-11-17 17:39 - 000350208 _____ (Microsoft Corporation) C:\WINDOWS\system32\AcGenral.dll
2019-11-17 17:39 - 2019-11-17 17:39 - 000349184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2019-11-17 17:39 - 2019-11-17 17:39 - 000331264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\upnphost.dll
2019-11-17 17:39 - 2019-11-17 17:39 - 000324624 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2019-11-17 17:39 - 2019-11-17 17:39 - 000315904 _____ (Microsoft Corporation) C:\WINDOWS\system32\ComposableShellProxyStub.dll
2019-11-17 17:39 - 2019-11-17 17:39 - 000303104 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenterprisediagnostics.dll
2019-11-17 17:39 - 2019-11-17 17:39 - 000284672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Search.ProtocolHandler.MAPI2.dll
2019-11-17 17:39 - 2019-11-17 17:39 - 000273408 _____ (Microsoft Corporation) C:\WINDOWS\system32\ubpm.dll
2019-11-17 17:39 - 2019-11-17 17:39 - 000262152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys
2019-11-17 17:39 - 2019-11-17 17:39 - 000217088 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWWIN.EXE
2019-11-17 17:39 - 2019-11-17 17:39 - 000201528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\appid.sys
2019-11-17 17:39 - 2019-11-17 17:39 - 000180736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWWIN.EXE
2019-11-17 17:39 - 2019-11-17 17:39 - 000177664 _____ (Microsoft Corporation) C:\WINDOWS\system32\spacebridge.dll
2019-11-17 17:39 - 2019-11-17 17:39 - 000164368 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2019-11-17 17:39 - 2019-11-17 17:39 - 000151552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ComposableShellProxyStub.dll
2019-11-17 17:39 - 2019-11-17 17:39 - 000144384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssph.dll
2019-11-17 17:39 - 2019-11-17 17:39 - 000139776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\prntvpt.dll
2019-11-17 17:39 - 2019-11-17 17:39 - 000122368 _____ (Microsoft Corporation) C:\WINDOWS\system32\wercplsupport.dll
2019-11-17 17:39 - 2019-11-17 17:39 - 000112168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mountmgr.sys
2019-11-17 17:39 - 2019-11-17 17:39 - 000105832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OpenWith.exe
2019-11-17 17:39 - 2019-11-17 17:39 - 000101888 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreShellExtFramework.dll
2019-11-17 17:39 - 2019-11-17 17:39 - 000092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsqmcons.exe
2019-11-17 17:39 - 2019-11-17 17:39 - 000086744 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskhostw.exe
2019-11-17 17:39 - 2019-11-17 17:39 - 000079360 _____ (Microsoft Corporation) C:\WINDOWS\system32\usp10.dll
2019-11-17 17:39 - 2019-11-17 17:39 - 000077824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usp10.dll
2019-11-17 17:39 - 2019-11-17 17:39 - 000071696 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32appinventorycsp.dll
2019-11-17 17:39 - 2019-11-17 17:39 - 000071680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CapabilityAccessManagerClient.dll
2019-11-17 17:39 - 2019-11-17 17:39 - 000068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\udhisapi.dll
2019-11-17 17:39 - 2019-11-17 17:39 - 000064512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ApiSetHost.AppExecutionAlias.dll
2019-11-17 17:39 - 2019-11-17 17:39 - 000058368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\udhisapi.dll
2019-11-17 17:39 - 2019-11-17 17:39 - 000050176 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwm.exe
2019-11-17 17:39 - 2019-11-17 17:39 - 000047616 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2019-11-17 17:39 - 2019-11-17 17:39 - 000047104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AssignedAccessRuntime.dll
2019-11-17 17:39 - 2019-11-17 17:39 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\system32\compact.exe
2019-11-17 17:39 - 2019-11-17 17:39 - 000041472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\compact.exe
2019-11-17 17:39 - 2019-11-17 17:39 - 000038912 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2019-11-17 17:39 - 2019-11-17 17:39 - 000023768 _____ (Microsoft Corporation) C:\WINDOWS\system32\nsi.dll
2019-11-17 17:39 - 2019-11-17 17:39 - 000020144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nsi.dll
2019-11-17 17:38 - 2019-11-17 17:38 - 022137120 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2019-11-17 17:38 - 2019-11-17 17:38 - 009667896 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2019-11-17 17:38 - 2019-11-17 17:38 - 007700696 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2019-11-17 17:38 - 2019-11-17 17:38 - 007656072 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneCoreUAPCommonProxyStub.dll
2019-11-17 17:38 - 2019-11-17 17:38 - 007645392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2019-11-17 17:38 - 2019-11-17 17:38 - 005573232 _____ (Microsoft Corporation) C:\WINDOWS\system32\StartTileData.dll
2019-11-17 17:38 - 2019-11-17 17:38 - 004866560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.AI.MachineLearning.dll
2019-11-17 17:38 - 2019-11-17 17:38 - 004413936 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2019-11-17 17:38 - 2019-11-17 17:38 - 004303872 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2019-11-17 17:38 - 2019-11-17 17:38 - 004049920 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeContent.dll
2019-11-17 17:38 - 2019-11-17 17:38 - 003637760 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2019-11-17 17:38 - 2019-11-17 17:38 - 003576832 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2019-11-17 17:38 - 2019-11-17 17:38 - 003387392 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2019-11-17 17:38 - 2019-11-17 17:38 - 003363640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2019-11-17 17:38 - 2019-11-17 17:38 - 003333632 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2019-11-17 17:38 - 2019-11-17 17:38 - 003082752 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2019-11-17 17:38 - 2019-11-17 17:38 - 002848768 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2019-11-17 17:38 - 2019-11-17 17:38 - 002707968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2019-11-17 17:38 - 2019-11-17 17:38 - 002645504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll
2019-11-17 17:38 - 2019-11-17 17:38 - 002421248 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2019-11-17 17:38 - 2019-11-17 17:38 - 002192384 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2019-11-17 17:38 - 2019-11-17 17:38 - 002109960 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2019-11-17 17:38 - 2019-11-17 17:38 - 002050560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.CloudStore.dll
2019-11-17 17:38 - 2019-11-17 17:38 - 001933408 _____ (Microsoft Corporation) C:\WINDOWS\system32\crypt32.dll
2019-11-17 17:38 - 2019-11-17 17:38 - 001929728 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2019-11-17 17:38 - 2019-11-17 17:38 - 001904128 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2019-11-17 17:38 - 2019-11-17 17:38 - 001751432 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2019-11-17 17:38 - 2019-11-17 17:38 - 001668784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\crypt32.dll
2019-11-17 17:38 - 2019-11-17 17:38 - 001666440 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2019-11-17 17:38 - 2019-11-17 17:38 - 001644544 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2019-11-17 17:38 - 2019-11-17 17:38 - 001608192 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2019-11-17 17:38 - 2019-11-17 17:38 - 001538560 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbengine.exe
2019-11-17 17:38 - 2019-11-17 17:38 - 001388032 _____ (Microsoft Corporation) C:\WINDOWS\system32\qmgr.dll
2019-11-17 17:38 - 2019-11-17 17:38 - 001331536 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2019-11-17 17:38 - 2019-11-17 17:38 - 001294792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2019-11-17 17:38 - 2019-11-17 17:38 - 001262592 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.Handlers.dll
2019-11-17 17:38 - 2019-11-17 17:38 - 001258512 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2019-11-17 17:38 - 2019-11-17 17:38 - 001054712 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe
2019-11-17 17:38 - 2019-11-17 17:38 - 001054224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ClipSp.sys
2019-11-17 17:38 - 2019-11-17 17:38 - 001050112 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2019-11-17 17:38 - 2019-11-17 17:38 - 001049608 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2019-11-17 17:38 - 2019-11-17 17:38 - 001022464 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
2019-11-17 17:38 - 2019-11-17 17:38 - 000981504 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2019-11-17 17:38 - 2019-11-17 17:38 - 000927232 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll
2019-11-17 17:38 - 2019-11-17 17:38 - 000888560 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2019-11-17 17:38 - 2019-11-17 17:38 - 000869888 _____ (Microsoft Corporation) C:\WINDOWS\system32\netlogon.dll
2019-11-17 17:38 - 2019-11-17 17:38 - 000862008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2019-11-17 17:38 - 2019-11-17 17:38 - 000856424 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2019-11-17 17:38 - 2019-11-17 17:38 - 000834048 _____ (Microsoft Corporation) C:\WINDOWS\system32\iphlpsvc.dll
2019-11-17 17:38 - 2019-11-17 17:38 - 000807424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdiWiFi.sys
2019-11-17 17:38 - 2019-11-17 17:38 - 000801792 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssvp.dll
2019-11-17 17:38 - 2019-11-17 17:38 - 000775768 _____ (Microsoft Corporation) C:\WINDOWS\system32\pkeyhelper.dll
2019-11-17 17:38 - 2019-11-17 17:38 - 000774144 _____ (Microsoft Corporation) C:\WINDOWS\system32\spoolsv.exe
2019-11-17 17:38 - 2019-11-17 17:38 - 000764928 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll
2019-11-17 17:38 - 2019-11-17 17:38 - 000750592 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2019-11-17 17:38 - 2019-11-17 17:38 - 000741688 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_StorageSense.dll
2019-11-17 17:38 - 2019-11-17 17:38 - 000690688 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll
2019-11-17 17:38 - 2019-11-17 17:38 - 000680184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2019-11-17 17:38 - 2019-11-17 17:38 - 000664576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netlogon.dll
2019-11-17 17:38 - 2019-11-17 17:38 - 000652088 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe
2019-11-17 17:38 - 2019-11-17 17:38 - 000604344 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe
2019-11-17 17:38 - 2019-11-17 17:38 - 000595968 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2019-11-17 17:38 - 2019-11-17 17:38 - 000591160 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2019-11-17 17:38 - 2019-11-17 17:38 - 000575488 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2019-11-17 17:38 - 2019-11-17 17:38 - 000574464 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnprv.dll
2019-11-17 17:38 - 2019-11-17 17:38 - 000551936 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\nwifi.sys
2019-11-17 17:38 - 2019-11-17 17:38 - 000536320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\taskschd.dll
2019-11-17 17:38 - 2019-11-17 17:38 - 000514600 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcntel.dll
2019-11-17 17:38 - 2019-11-17 17:38 - 000513544 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
2019-11-17 17:38 - 2019-11-17 17:38 - 000509968 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFault.exe
2019-11-17 17:38 - 2019-11-17 17:38 - 000505640 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64win.dll
2019-11-17 17:38 - 2019-11-17 17:38 - 000462352 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2019-11-17 17:38 - 2019-11-17 17:38 - 000450632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll
2019-11-17 17:38 - 2019-11-17 17:38 - 000445752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFault.exe
2019-11-17 17:38 - 2019-11-17 17:38 - 000430592 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe
2019-11-17 17:38 - 2019-11-17 17:38 - 000415760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aepic.dll
2019-11-17 17:38 - 2019-11-17 17:38 - 000415744 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2019-11-17 17:38 - 2019-11-17 17:38 - 000408064 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascustom.dll
2019-11-17 17:38 - 2019-11-17 17:38 - 000394240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2019-11-17 17:38 - 2019-11-17 17:38 - 000389408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Faultrep.dll
2019-11-17 17:38 - 2019-11-17 17:38 - 000385848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2019-11-17 17:38 - 2019-11-17 17:38 - 000367104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wldap32.dll
2019-11-17 17:38 - 2019-11-17 17:38 - 000321024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Wldap32.dll
2019-11-17 17:38 - 2019-11-17 17:38 - 000292352 _____ (Microsoft Corporation) C:\WINDOWS\system32\CapabilityAccessManager.dll
2019-11-17 17:38 - 2019-11-17 17:38 - 000281088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.AppDefaults.dll
2019-11-17 17:38 - 2019-11-17 17:38 - 000256000 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnservice.dll
2019-11-17 17:38 - 2019-11-17 17:38 - 000240640 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFilterHost.exe
2019-11-17 17:38 - 2019-11-17 17:38 - 000226816 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_CapabilityAccess.dll
2019-11-17 17:38 - 2019-11-17 17:38 - 000214528 _____ (Microsoft Corporation) C:\WINDOWS\system32\wersvc.dll
2019-11-17 17:38 - 2019-11-17 17:38 - 000213304 _____ (Microsoft Corporation) C:\WINDOWS\system32\wermgr.exe
2019-11-17 17:38 - 2019-11-17 17:38 - 000198144 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanagerprecheck.dll
2019-11-17 17:38 - 2019-11-17 17:38 - 000193336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wermgr.exe
2019-11-17 17:38 - 2019-11-17 17:38 - 000182784 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssph.dll
2019-11-17 17:38 - 2019-11-17 17:38 - 000178176 _____ (Microsoft Corporation) C:\WINDOWS\system32\prntvpt.dll
2019-11-17 17:38 - 2019-11-17 17:38 - 000166400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\spacebridge.dll
2019-11-17 17:38 - 2019-11-17 17:38 - 000161792 _____ (Microsoft Corporation) C:\WINDOWS\system32\dssvc.dll
2019-11-17 17:38 - 2019-11-17 17:38 - 000160272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pacer.sys
2019-11-17 17:38 - 2019-11-17 17:38 - 000154624 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_AppExecutionAlias.dll
2019-11-17 17:38 - 2019-11-17 17:38 - 000152896 _____ (Microsoft Corporation) C:\WINDOWS\system32\userenv.dll
2019-11-17 17:38 - 2019-11-17 17:38 - 000151552 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_BackgroundApps.dll
2019-11-17 17:38 - 2019-11-17 17:38 - 000146432 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2019-11-17 17:38 - 2019-11-17 17:38 - 000141736 _____ (Microsoft Corporation) C:\WINDOWS\system32\wldp.dll
2019-11-17 17:38 - 2019-11-17 17:38 - 000138112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\userenv.dll
2019-11-17 17:38 - 2019-11-17 17:38 - 000132608 _____ (Microsoft Corporation) C:\WINDOWS\splwow64.exe
2019-11-17 17:38 - 2019-11-17 17:38 - 000124416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tunnel.sys
2019-11-17 17:38 - 2019-11-17 17:38 - 000120352 _____ (Microsoft Corporation) C:\WINDOWS\system32\OpenWith.exe
2019-11-17 17:38 - 2019-11-17 17:38 - 000118480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wldp.dll
2019-11-17 17:38 - 2019-11-17 17:38 - 000111104 _____ (Microsoft Corporation) C:\WINDOWS\system32\AxInstSv.dll
2019-11-17 17:38 - 2019-11-17 17:38 - 000110080 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinHvPlatform.dll
2019-11-17 17:38 - 2019-11-17 17:38 - 000109568 _____ (Microsoft Corporation) C:\WINDOWS\system32\CapabilityAccessManagerClient.dll
2019-11-17 17:38 - 2019-11-17 17:38 - 000090632 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.dll
2019-11-17 17:38 - 2019-11-17 17:38 - 000087080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\winhvr.sys
2019-11-17 17:38 - 2019-11-17 17:38 - 000087040 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApiSetHost.AppExecutionAlias.dll
2019-11-17 17:38 - 2019-11-17 17:38 - 000086840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\npfs.sys
2019-11-17 17:38 - 2019-11-17 17:38 - 000080896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dtdump.exe
2019-11-17 17:38 - 2019-11-17 17:38 - 000080400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hvservice.sys
2019-11-17 17:38 - 2019-11-17 17:38 - 000061480 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvhostsvc.dll
2019-11-17 17:38 - 2019-11-17 17:38 - 000060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmTasks.dll
2019-11-17 17:38 - 2019-11-17 17:38 - 000060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\AssignedAccessRuntime.dll
2019-11-17 17:38 - 2019-11-17 17:38 - 000056320 _____ (Microsoft Corporation) C:\WINDOWS\system32\msscntrs.dll
2019-11-17 17:38 - 2019-11-17 17:38 - 000043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiredNetworkCSP.dll
2019-11-17 17:38 - 2019-11-17 17:38 - 000036368 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe
2019-11-17 17:38 - 2019-11-17 17:38 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tzres.dll
2019-11-17 17:38 - 2019-11-17 17:38 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzres.dll
2019-11-17 17:38 - 2019-11-17 17:38 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth8.bin
2019-11-17 17:38 - 2019-11-17 17:38 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth7.bin
2019-11-17 17:38 - 2019-11-17 17:38 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth6.bin
2019-11-17 17:38 - 2019-11-17 17:38 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth5.bin
2019-11-17 17:38 - 2019-11-17 17:38 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth4.bin
2019-11-17 17:38 - 2019-11-17 17:38 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth3.bin
2019-11-17 17:38 - 2019-11-17 17:38 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth2.bin
2019-11-17 17:38 - 2019-11-17 17:38 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth1.bin
2019-11-17 17:37 - 2019-11-17 17:37 - 000667664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2019-11-17 17:37 - 2019-11-17 17:37 - 000520208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Vid.sys
2019-11-17 17:37 - 2019-11-17 17:37 - 000198968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spacedump.sys
2019-11-14 13:19 - 2019-11-14 13:19 - 000051024 _____ (Dropbox, Inc.) C:\WINDOWS\system32\DbxSvc.exe
2019-11-14 13:19 - 2019-11-14 13:19 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-stable.sys
2019-11-14 13:19 - 2019-11-14 13:19 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-dev.sys
2019-11-14 13:19 - 2019-11-14 13:19 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-canary.sys
2019-11-01 11:28 - 2019-11-01 11:28 - 000000384 _____ C:\Users\philippe\Downloads\7ee58d0a.ics

==================== Un mois (modifiés) ==================

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2019-11-30 11:48 - 2015-07-25 19:03 - 000000000 ____D C:\Users\philippe\AppData\Roaming\uTorrent
2019-11-30 11:39 - 2019-02-28 21:05 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2019-11-30 11:38 - 2018-09-15 08:33 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2019-11-30 10:41 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\AppReadiness
2019-11-30 10:27 - 2019-03-31 09:40 - 000000000 ____D C:\Users\philippe\AppData\Local\BitTorrentHelper
2019-11-30 10:27 - 2018-06-20 21:14 - 000000000 ____D C:\Users\philippe\AppData\Local\D3DSCache
2019-11-30 10:27 - 2017-08-04 22:13 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2019-11-30 10:25 - 2016-04-03 13:52 - 000000000 __SHD C:\Users\philippe\IntelGraphicsProfiles
2019-11-27 19:32 - 2018-09-15 08:33 - 000000000 ___HD C:\Program Files\WindowsApps
2019-11-24 10:12 - 2018-05-20 14:57 - 000000000 ____D C:\Users\philippe\AppData\Local\PlaceholderTileLogoFolder
2019-11-23 17:11 - 2017-12-19 18:43 - 000000000 ____D C:\Users\philippe\AppData\Local\Packages
2019-11-22 14:58 - 2018-03-18 10:09 - 000002306 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2019-11-22 14:58 - 2018-03-18 10:09 - 000002265 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2019-11-22 14:50 - 2019-02-28 21:25 - 000003362 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-314884808-1758805947-4041523921-1001
2019-11-22 14:50 - 2019-02-28 21:08 - 000002452 _____ C:\Users\philippe\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2019-11-22 14:50 - 2015-07-25 11:35 - 000000000 ___RD C:\Users\philippe\OneDrive
2019-11-18 17:44 - 2018-09-15 08:31 - 000000000 ____D C:\WINDOWS\INF
2019-11-18 17:43 - 2019-02-28 21:25 - 000003590 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2019-11-18 17:43 - 2019-02-28 21:25 - 000003466 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2019-11-18 17:43 - 2019-02-28 21:19 - 001773226 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2019-11-18 17:43 - 2018-09-15 17:39 - 000791936 _____ C:\WINDOWS\system32\perfh00C.dat
2019-11-18 17:43 - 2018-09-15 17:39 - 000150004 _____ C:\WINDOWS\system32\perfc00C.dat
2019-11-18 17:43 - 2015-07-25 19:47 - 000000000 ____D C:\Program Files (x86)\Google
2019-11-18 17:39 - 2017-12-19 19:07 - 000000000 ___RD C:\Users\philippe\3D Objects
2019-11-18 17:39 - 2016-02-13 14:18 - 000000000 __RHD C:\Users\Public\AccountPictures
2019-11-18 17:38 - 2019-02-28 21:05 - 000536072 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2019-11-18 17:37 - 2019-02-28 21:25 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2019-11-18 17:36 - 2018-09-15 07:09 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2019-11-18 17:35 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2019-11-18 17:35 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\system32\oobe
2019-11-18 17:35 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\system32\appraiser
2019-11-18 17:35 - 2018-09-15 07:09 - 000000000 ____D C:\WINDOWS\system32\Dism
2019-11-18 17:34 - 2018-09-15 08:33 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2019-11-18 17:34 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\ShellExperiences
2019-11-18 17:34 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2019-11-18 17:34 - 2018-09-15 08:33 - 000000000 ____D C:\WINDOWS\bcastdvr
2019-11-17 17:50 - 2018-09-15 08:23 - 000000000 ____D C:\WINDOWS\CbsTemp
2019-11-17 17:50 - 2015-08-06 20:07 - 128443096 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2019-11-17 17:50 - 2015-08-06 20:07 - 000000000 ____D C:\WINDOWS\system32\MRT
2019-11-17 17:48 - 2015-07-25 19:54 - 000000000 ____D C:\Program Files (x86)\Dropbox
2019-11-07 19:01 - 2019-02-28 21:25 - 000004162 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{23D2B6E8-A910-4A2A-AFC4-63FDC031E137}
2019-11-01 10:02 - 2018-07-14 11:38 - 000000000 ____D C:\ProgramData\Packages

==================== Fichiers à la racine de certains dossiers ========

2017-02-09 18:27 - 2017-02-09 18:27 - 002660864 _____ () C:\Users\philippe\ZHPDiag3.exe
2015-04-14 17:28 - 2015-04-14 17:28 - 000001171 _____ () C:\Users\philippe\AppData\Roaming\2mTqatwyc
2015-04-14 17:28 - 2015-04-14 17:28 - 000001171 _____ () C:\Users\philippe\AppData\Roaming\ATWmCuhFCF9U2ZvTALhMW
2015-04-19 13:20 - 2016-04-07 17:42 - 000000554 _____ () C:\Users\philippe\AppData\Roaming\dPmDc5COcq0
2015-04-19 13:20 - 2016-04-07 17:42 - 000000554 _____ () C:\Users\philippe\AppData\Roaming\eYLqAVHOtWj58
2015-04-14 17:28 - 2015-04-14 17:28 - 000001171 _____ () C:\Users\philippe\AppData\Roaming\KbShQ26pIQn5sxUj
2015-04-19 13:20 - 2016-04-07 17:42 - 000000554 _____ () C:\Users\philippe\AppData\Roaming\rtrFhXoE
2015-04-14 17:28 - 2015-04-14 17:28 - 000001171 _____ () C:\Users\philippe\AppData\Roaming\ryqlaqZ38OCwPP3q5
2016-11-13 10:39 - 2019-01-20 12:33 - 000000315 _____ () C:\Users\philippe\AppData\Roaming\WB.CFG
2015-04-19 13:20 - 2016-04-07 17:42 - 000000554 _____ () C:\Users\philippe\AppData\Roaming\wL4eBYqMLYWpwo9wL7gpMVnM50
2015-04-19 13:20 - 2016-04-07 17:42 - 000000554 _____ () C:\Users\philippe\AppData\Roaming\Y68hzk0obIF1C1e8Ew0u3mia9N
2016-04-23 16:51 - 2016-04-23 16:51 - 000007597 _____ () C:\Users\philippe\AppData\Local\Resmon.ResmonCfg

==================== SigCheck ============================

(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)

==================== Fin de FRST.txt ========================