Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 22-03-2020
Exécuté par twist (administrateur) sur LAPTOP-7AC8CGGP (HP HP Notebook) (23-03-2020 11:14:53)
Exécuté depuis C:\Users\twist\Desktop
Profils chargés: twist (Profils disponibles: twist & Administrateur)
Platform: Windows 10 Home Version 1903 18362.720 (X64) Langue: Français (France)
Navigateur par défaut: FF
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processus (Avec liste blanche) =================

(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)

(AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
(AVB Disc Soft, SIA -> Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DTShellHlp.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.452\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.452\GoogleCrashHandler64.exe
(Hewlett-Packard Company -> HP Inc.) C:\Program Files (x86)\HP\HP System Event\HPWMISVC.exe
(HP Inc. -> HP Inc.) C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel(R) Software -> Intel Corporation) C:\Windows\SysWOW64\esif_uf.exe
(Intel(R) Software -> Intel Corporation) C:\Windows\Temp\DPTF\esif_assist_64.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2020.19081.28230.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.YourPhone_1.20012.135.0_x64__8wekyb3d8bbwe\YourPhoneServer\YourPhoneServer.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.20022.11011.0_x64__8wekyb3d8bbwe\Video.UI.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\browser_broker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeSH.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2003.6-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2003.6-0\NisSrv.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe

==================== Registre (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9274304 2018-05-30] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM-x32\...\Run: [HPMessageService] => C:\Program Files (x86)\HP\HP System Event\HPMSGSVC.exe [657424 2016-01-11] (Hewlett-Packard Company -> HP Inc.)
HKLM-x32\...\Run: [HPRadioMgr] => C:\Program Files (x86)\HP\HP Wireless Button Driver\HPRadioMgr64.exe [258600 2016-01-05] (Hewlett-Packard -> HP)
HKLM-x32\...\Run: [PowerDVD14Agent] => C:\Program Files (x86)\CyberLink\PowerDVD14\PowerDVD14Agent.exe [795336 2016-01-29] (CyberLink Corp. -> CyberLink Corp.)
HKLM-x32\...\Run: [BCSSync] => C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [91520 2010-03-13] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-2766756463-1548402130-1882496729-1002\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [731240 2018-09-05] (AVB Disc Soft, SIA -> Disc Soft Ltd)
HKU\S-1-5-21-2766756463-1548402130-1882496729-1002\...\Run: [Overwolf] => C:\Program Files (x86)\Overwolf\OverwolfLauncher.exe [1670472 2019-11-19] (Overwolf Ltd -> Overwolf Ltd.)
HKU\S-1-5-21-2766756463-1548402130-1882496729-1002\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3278288 2019-10-30] (Valve -> Valve Corporation)
HKU\S-1-5-21-2766756463-1548402130-1882496729-1002\...\MountPoints2: {0de7929c-7cc7-11e6-b913-806e6f6e6963} - "F:\autorun.exe"
HKU\S-1-5-21-2766756463-1548402130-1882496729-1002\...\MountPoints2: {a26ab4d1-8229-11e8-b993-ec8eb50dee07} - "I:\autorun.exe"
HKU\S-1-5-21-2766756463-1548402130-1882496729-1002\...\MountPoints2: {c4cc8147-8cd5-11e6-b923-441ca89f00bc} - "E:\autorun.exe"
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\80.0.3987.149\Installer\chrmstp.exe [2020-03-18] (Google LLC -> Google LLC)
Lsa: [Authentication Packages] msv1_0 SshdPinAuthLsa
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Avast SecureLine VPN.lnk [2019-06-20]
ShortcutTarget: Avast SecureLine VPN.lnk -> C:\Program Files\AVAST Software\SecureLine\Vpn.exe (AVAST Software s.r.o. -> AVAST Software)
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION

==================== Tâches planifiées (Avec liste blanche) ============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

Task: {1A5FED2D-978B-494E-A250-107B2847BC7F} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2003.6-0\MpCmdRun.exe [480272 2020-03-21] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {22A296E0-598B-4FCD-9BDC-0BE62F1507FA} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132 => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [18168 2017-07-13] (Intel(R) Software Asset Manager -> Intel Corporation)
Task: {27022E2A-7663-4BFD-B1DC-621FA0F6CD00} - System32\Tasks\Hewlett-Packard\HP Active Health\HP Active Health Scan (HPSA) => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe
Task: {2F6F4E2A-2924-41CD-9FC4-08F548FDE614} - System32\Tasks\HPCeeScheduleFortwist => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [96568 2015-06-16] (Hewlett-Packard Company -> Hewlett-Packard)
Task: {42187205-92A7-415E-B1DE-B3315BFFC0E9} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132-Logon => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [18168 2017-07-13] (Intel(R) Software Asset Manager -> Intel Corporation)
Task: {449B9B58-13E8-48C6-B912-85E47FBAE726} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2019-12-11] (Adobe Inc. -> Adobe)
Task: {4FD700E6-3E76-4672-90CE-64AA6B38FB62} - System32\Tasks\Overwolf Updater Task => C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [2431304 2019-11-19] (Overwolf Ltd -> Overwolf LTD)
Task: {5DE30E74-7294-4465-8409-83D251792D46} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2003.6-0\MpCmdRun.exe [480272 2020-03-21] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {71B163AE-945A-4A2C-8541-7FCEB4CF628C} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-09-08] (Google Inc -> Google Inc.)
Task: {71E3895D-FC64-4382-923D-37A301E5763A} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_303_Plugin.exe [1457720 2019-12-11] (Adobe Inc. -> Adobe)
Task: {71E4F30F-AED9-4DDC-BD9F-829CC69B6503} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2003.6-0\MpCmdRun.exe [480272 2020-03-21] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {87FC2F52-276E-4533-B66E-B5ECDF3AC1D3} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [655736 2019-07-31] (HP Inc. -> HP Inc.)
Task: {89F64A13-3D7C-49C6-A4FB-BDF3801AE774} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe
Task: {8FB522E6-A093-4E53-AA7D-FAB4B1778B68} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2003.6-0\MpCmdRun.exe [480272 2020-03-21] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {932C68EF-BC5F-4F2B-8988-4E16DBA8056A} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Product Configurator => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\ProductConfig.exe
Task: {9CD44CFA-CECF-4834-A1CF-0637639E5680} - System32\Tasks\Microsoft\VisualStudio\Updates\BackgroundDownload => C:\Program Files (x86)\Microsoft Visual Studio\Installer\resources\app\ServiceHub\Services\Microsoft.VisualStudio.Setup.Service\BackgroundDownload.exe [65432 2019-09-07] (Microsoft Corporation -> Microsoft)
Task: {A5C73CAF-B4F2-47FB-BF32-E22F8F9977AC} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe
Task: {AC5FB782-2336-4C08-804C-2CEE64F35AE7} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe
Task: {B1D11ED4-7AD8-4567-AC9A-F27AB313345F} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2018-09-08] (Google Inc -> Google Inc.)
Task: {C376FD50-EA68-4C7C-B1F2-F275C21B338A} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe
Task: {C62BCDCE-83CA-42FB-A9B9-0A030DC496D5} - System32\Tasks\Avast SecureLine VPN Update => c:\program files\avast software\secureline\vpnupdate.exe [1390472 2019-10-23] (AVAST Software s.r.o. -> AVAST Software)
Task: {CA387A67-169A-41B5-9024-7B994FCFA0EA} - System32\Tasks\HPDAS => C:\Program [Argument = Files\HP\HP ePrint\HP.DeliveryAndStatus.Desktop.App.exe /CheckJobs]
Task: {CB67FD0D-3458-46A4-91F1-E7336E7463A3} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe
Task: {D823C63A-844D-4E55-A25C-83D4B2341981} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe [147832 2020-02-24] (HP Inc. -> HP Inc.)

(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)

Task: C:\WINDOWS\Tasks\HPCeeScheduleFortwist.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe

==================== Internet (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{a6d7084d-dff1-443f-a904-c6c4728f02cb}: [DhcpNameServer] 192.168.1.254

Internet Explorer:
==================
SearchScopes: HKU\S-1-5-21-2766756463-1548402130-1882496729-1002 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2010-03-25] (Microsoft Corporation -> Microsoft Corporation)
BHO: McAfee WebAdvisor -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> C:\Program Files\McAfee\WebAdvisor\x64\IEPlugin.dll [2020-03-10] (McAfee, LLC -> McAfee, LLC)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2010-02-28] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2010-03-25] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: McAfee WebAdvisor -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> C:\Program Files\McAfee\WebAdvisor\win32\IEPlugin.dll [2020-03-10] (McAfee, LLC -> McAfee, LLC)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2010-02-28] (Microsoft Corporation -> Microsoft Corporation)

Edge:
======
DownloadDir: C:\Users\twist\Downloads

FireFox:
========
FF DefaultProfile: at08zuwm.default
FF ProfilePath: C:\Users\twist\AppData\Roaming\Mozilla\Firefox\Profiles\at08zuwm.default [2020-03-23]
FF DownloadDir: C:\Users\twist\Desktop\highlander\1
FF Homepage: Mozilla\Firefox\Profiles\at08zuwm.default -> hxxps://www.qwant.com/?client=ext-firefox-hp
FF HomepageOverride: Mozilla\Firefox\Profiles\at08zuwm.default -> Enabled: qwantcomforfirefox@jetpack
FF Extension: (Deutsch (DE) Language Pack) - C:\Users\twist\AppData\Roaming\Mozilla\Firefox\Profiles\at08zuwm.default\Extensions\langpack-de@firefox.mozilla.org.xpi [2020-03-11]
FF Extension: (English (GB) Language Pack) - C:\Users\twist\AppData\Roaming\Mozilla\Firefox\Profiles\at08zuwm.default\Extensions\langpack-en-GB@firefox.mozilla.org.xpi [2020-03-11]
FF Extension: (English (US) Language Pack) - C:\Users\twist\AppData\Roaming\Mozilla\Firefox\Profiles\at08zuwm.default\Extensions\langpack-en-US@firefox.mozilla.org.xpi [2020-03-11]
FF Extension: (Oui) - C:\Users\twist\AppData\Roaming\Mozilla\Firefox\Profiles\at08zuwm.default\Extensions\qwantcomforfirefox@jetpack.xpi [2018-12-21]
FF Extension: (Avast SafePrice | Comparaison, offres, coupons) - C:\Users\twist\AppData\Roaming\Mozilla\Firefox\Profiles\at08zuwm.default\Extensions\sp@avast.com.xpi [2019-02-17]
FF Extension: (Avast Online Security) - C:\Users\twist\AppData\Roaming\Mozilla\Firefox\Profiles\at08zuwm.default\Extensions\wrc@avast.com.xpi [2020-03-06]
FF Extension: (hide.me Proxy) - C:\Users\twist\AppData\Roaming\Mozilla\Firefox\Profiles\at08zuwm.default\Extensions\{7079d3c5-b1a0-4964-8a7a-add0d2af8f52}.xpi [2019-11-25]
FF Extension: (Video DownloadHelper) - C:\Users\twist\AppData\Roaming\Mozilla\Firefox\Profiles\at08zuwm.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2019-07-09]
FF Extension: (Ecosia – Le moteur de recherche qui plante des arbres) - C:\Users\twist\AppData\Roaming\Mozilla\Firefox\Profiles\at08zuwm.default\Extensions\{d04b0b40-3dab-4f0b-97a6-04ec3eddbfb0}.xpi [2018-10-03]
FF Extension: (Greasemonkey) - C:\Users\twist\AppData\Roaming\Mozilla\Firefox\Profiles\at08zuwm.default\Extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}.xpi [2019-12-14]
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_32_0_0_303.dll [2019-12-11] (Adobe Inc. -> )
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_303.dll [2019-12-11] (Adobe Inc. -> )
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\WINDOWS\SysWOW64\Adobe\Director\np32dsw_1234204.dll [2018-06-06] (Adobe Systems, Inc.) [Fichier non signé]
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin HKU\S-1-5-21-2766756463-1548402130-1882496729-1002: ubisoft.com/uplaypc -> C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll [2019-02-28] (Ubisoft Entertainment Sweden AB -> )

Chrome:
=======
CHR Profile: C:\Users\twist\AppData\Local\Google\Chrome\User Data\Default [2020-03-20]
CHR DefaultSearchURL: Default -> hxxps://fr.search.yahoo.com/search?fr=mcafee&type=E210FR91082G0&p={searchTerms}
CHR DefaultSearchKeyword: Default -> mcafee
CHR DefaultSuggestURL: Default -> hxxps://fr.search.yahoo.com/sugg/gossip/gossip-fr-partner?output=fxjson&appid=mca&source=yahoo_mcafee_searchassist&command={searchTerms}
CHR Extension: (Docs) - C:\Users\twist\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-09-08]
CHR Extension: (YouTube) - C:\Users\twist\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-09-08]
CHR Extension: (Avast SafePrice | Comparaison, offres, coupons) - C:\Users\twist\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2020-03-20]
CHR Extension: (McAfee® WebAdvisor) - C:\Users\twist\AppData\Local\Google\Chrome\User Data\Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2020-02-23]
CHR Extension: (Avast Online Security) - C:\Users\twist\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2020-03-13]
CHR Extension: (Secure Shell) - C:\Users\twist\AppData\Local\Google\Chrome\User Data\Default\Extensions\iodihamcpbpeioajjeobimgagajmlibd [2020-03-17]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\twist\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-09]
CHR Extension: (Chrome Media Router) - C:\Users\twist\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-03-20]
CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck]
CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki]

==================== Services (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [3648104 2018-09-05] (AVB Disc Soft, SIA -> Disc Soft Ltd)
R2 esifsvc; C:\WINDOWS\SysWOW64\esif_uf.exe [1419424 2016-11-30] (Intel(R) Software -> Intel Corporation)
S3 hpqcaslwmiex; C:\Program Files (x86)\HP\Shared\hpqwmiex.exe [1077568 2017-04-10] (HP Inc. -> HP)
R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [361848 2019-12-06] (HP Inc. -> HP Inc.)
R2 HPWMISVC; c:\Program Files (x86)\HP\HP System Event\HPWMISVC.exe [606224 2016-01-11] (Hewlett-Packard Company -> HP Inc.)
R2 igfxCUIService2.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [370856 2019-02-25] (Intel Corporation -> Intel Corporation)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [762568 2018-06-08] (Intel(R) Trust Services -> Intel(R) Corporation)
S3 Intel(R) SUR QC SAM; C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [18168 2017-07-13] (Intel(R) Software Asset Manager -> Intel Corporation)
S2 Intel(R) TPM Provisioning Service; C:\Program Files\Intel\iCLS Client\TPMProvisioningService.exe [714952 2018-06-08] (Intel(R) Trust Services -> Intel(R) Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [218176 2018-06-27] (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation)
S2 LxssManagerUser; C:\WINDOWS\system32\lxss\LxssManager.dll [632832 2020-01-16] (Microsoft Windows -> Microsoft Corporation)
R2 LxssManagerUser_c707d; C:\WINDOWS\system32\svchost.exe [53744 2019-03-19] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 LxssManagerUser_c707d; C:\WINDOWS\SysWOW64\svchost.exe [45448 2019-03-19] (Microsoft Windows Publisher -> Microsoft Corporation)
S4 MariaDB; C:\Program Files\MariaDB 10.4\bin\mysqld.exe [16171432 2019-09-08] (MariaDB Corporation Ab -> )
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6933272 2020-03-21] (Malwarebytes Inc -> Malwarebytes)
S4 McAfee WebAdvisor; C:\Program Files\McAfee\WebAdvisor\ServiceHost.exe [907224 2020-03-10] (McAfee, LLC -> McAfee, LLC)
S4 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2475312 2019-12-12] (Electronic Arts, Inc. -> Electronic Arts)
S4 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3352376 2019-12-12] (Electronic Arts, Inc. -> Electronic Arts)
S4 OverwolfUpdater; C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [2431304 2019-11-19] (Overwolf Ltd -> Overwolf LTD)
S4 RichVideo64; C:\Program Files\CyberLink\Shared files\RichVideo64.exe [389896 2014-04-14] (CyberLink Corp. -> )
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [265664 2018-05-30] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [278616 2017-08-18] (Synaptics Incorporated -> Synaptics Incorporated)
S4 VBoxSDS; C:\Program Files\Oracle\VirtualBox\VBoxSDS.exe [694016 2019-09-03] (Oracle Corporation -> Oracle Corporation)
S3 VSStandardCollectorService150; C:\Program Files (x86)\Microsoft Visual Studio\Shared\Common\DiagnosticsHub.Collection.Service\StandardCollector.Service.exe [147392 2019-04-30] (Microsoft Corporation -> Microsoft Corporation)
S4 wampapache64; C:\wamp64\bin\apache\apache2.4.41\bin\httpd.exe [29696 2019-08-09] (Apache Software Foundation) [Fichier non signé]
S4 wampmariadb64; C:\wamp64\bin\mariadb\mariadb10.4.10\bin\mysqld.exe [15837608 2019-11-07] (MariaDB Corporation Ab -> )
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2003.6-0\NisSrv.exe [3294680 2020-03-21] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2003.6-0\MsMpEng.exe [103168 2020-03-21] (Microsoft Windows Publisher -> Microsoft Corporation)
S2 AvastWscReporter; "C:\Program Files\AVAST Software\Avast\wsc_proxy.exe" /runassvc /rpcserver [X]

===================== Pilotes (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [131984 2017-05-18] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R3 dptf_cpu; C:\WINDOWS\System32\drivers\dptf_cpu.sys [52208 2016-11-30] (Intel(R) Software -> Intel Corporation)
R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [30264 2016-10-08] (Disc Soft Ltd -> Disc Soft Ltd)
R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [47672 2016-10-08] (Disc Soft Ltd -> Disc Soft Ltd)
R3 esif_lf; C:\WINDOWS\system32\DRIVERS\esif_lf.sys [260080 2016-11-30] (Intel(R) Software -> Intel Corporation)
S3 FTDIBUS; C:\WINDOWS\system32\drivers\ftdibus.sys [129448 2017-09-20] (Future Technology Devices International Ltd -> Future Technology Devices International Ltd.)
S3 ggsomc; C:\WINDOWS\System32\drivers\ggsomc.sys [30424 2017-03-05] (Sony Mobile Communications AB -> Sony Mobile Communications)
R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [214496 2020-03-23] (Malwarebytes Inc -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [20936 2020-03-21] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [248968 2020-03-23] (Malwarebytes Inc -> Malwarebytes)
R3 P9Rdr; C:\WINDOWS\System32\drivers\p9rdr.sys [88888 2019-09-06] (Microsoft Windows -> Microsoft Corporation)
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [1138000 2018-08-19] (Realtek Semiconductor Corp. -> Realtek )
S3 SmbDrv; C:\WINDOWS\System32\drivers\Smb_driver_AMDASF.sys [53848 2017-08-18] (Synaptics Incorporated -> Synaptics Incorporated)
R3 SmbDrvI; C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys [55384 2017-08-18] (Synaptics Incorporated -> Synaptics Incorporated)
R0 sptd2; C:\WINDOWS\System32\Drivers\sptd2.sys [207344 2019-02-19] (Disc Soft Ltd -> Duplex Secure Ltd)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [166288 2017-05-18] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 ssudqcfilter; C:\WINDOWS\System32\drivers\ssudqcfilter.sys [64912 2017-05-18] (Samsung Electronics Co., Ltd. -> QUALCOMM Incorporated)
R3 VBoxNetAdp; C:\WINDOWS\system32\DRIVERS\VBoxNetAdp6.sys [237376 2019-09-03] (Oracle Corporation -> Oracle Corporation)
R1 VBoxNetLwf; C:\WINDOWS\system32\DRIVERS\VBoxNetLwf.sys [248464 2019-09-03] (Oracle Corporation -> Oracle Corporation)
R0 VMSNPXY; C:\WINDOWS\System32\drivers\VmsProxyHNic.sys [39736 2020-02-12] (Microsoft Windows -> Microsoft Corporation)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [45960 2020-03-21] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [391392 2020-03-21] (Microsoft Windows -> Microsoft Corporation)
S3 wdm_usb; C:\WINDOWS\system32\DRIVERS\usb2ser.sys [151184 2016-07-15] (NGO -> MBB)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [59104 2020-03-21] (Microsoft Windows -> Microsoft Corporation)
R3 WirelessButtonDriver64; C:\WINDOWS\System32\drivers\WirelessButtonDriver64.sys [35392 2019-11-15] (HP Inc. -> HP)

==================== NetSvcs (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)


==================== Un mois (créés) ===================

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2020-03-23 11:14 - 2020-03-23 11:16 - 000028619 _____ C:\Users\twist\Desktop\FRST.txt
2020-03-23 10:52 - 2020-03-23 11:15 - 000000000 ____D C:\FRST
2020-03-23 10:51 - 2020-03-23 11:14 - 002279936 _____ (Farbar) C:\Users\twist\Desktop\FRST64-2.1.exe
2020-03-23 09:15 - 2020-03-23 09:46 - 000000000 ____D C:\Users\twist\AppData\Roaming\ZHP
2020-03-23 09:15 - 2020-03-23 09:16 - 000000872 _____ C:\Users\twist\Desktop\ZHPDiag.lnk
2020-03-23 09:15 - 2020-03-23 09:15 - 000000000 ____D C:\Users\twist\AppData\Local\ZHP
2020-03-23 00:14 - 2020-03-23 00:14 - 000248968 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2020-03-23 00:14 - 2020-03-23 00:14 - 000214496 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys
2020-03-23 00:02 - 2020-03-23 00:10 - 000000000 ____D C:\AdwCleaner
2020-03-22 18:18 - 2020-03-23 00:13 - 130809856 _____ C:\WINDOWS\system32\config\SOFTWARE
2020-03-22 18:02 - 2020-03-22 18:18 - 000000000 ____D C:\WINDOWS\Microsoft Antimalware
2020-03-21 22:08 - 2020-03-21 22:08 - 025444352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Hydrogen.dll
2020-03-21 22:08 - 2020-03-21 22:08 - 009930552 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2020-03-21 22:08 - 2020-03-21 22:08 - 007604584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2020-03-21 22:08 - 2020-03-21 22:08 - 006520776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2020-03-21 22:08 - 2020-03-21 22:08 - 004563416 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2020-03-21 22:08 - 2020-03-21 22:08 - 001610240 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramCompositor.dll
2020-03-21 22:08 - 2020-03-21 22:08 - 001398584 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2020-03-21 22:08 - 2020-03-21 22:08 - 001077048 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2020-03-21 22:08 - 2020-03-21 22:08 - 000772096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
2020-03-21 22:08 - 2020-03-21 22:08 - 000689152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CPFilters.dll
2020-03-21 22:08 - 2020-03-21 22:08 - 000561464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2020-03-21 00:38 - 2020-03-21 00:38 - 000002028 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2020-03-16 11:44 - 2020-03-20 19:53 - 000000364 _____ C:\WINDOWS\Tasks\HPCeeScheduleFortwist.job
2020-03-16 11:44 - 2020-03-20 11:44 - 000003256 _____ C:\WINDOWS\system32\Tasks\HPCeeScheduleFortwist
2020-03-13 01:53 - 2020-03-13 01:53 - 011607552 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2020-03-13 01:53 - 2020-03-13 01:53 - 009711616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll
2020-03-13 01:53 - 2020-03-13 01:53 - 004825600 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d12SDKLayers.dll
2020-03-13 01:53 - 2020-03-13 01:53 - 003557888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d12SDKLayers.dll
2020-03-13 01:53 - 2020-03-13 01:53 - 000303616 _____ (Microsoft Corporation) C:\WINDOWS\system32\DirectML.Debug.dll
2020-03-13 01:53 - 2020-03-13 01:53 - 000214016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DirectML.Debug.dll
2020-03-13 01:52 - 2020-03-13 01:52 - 025900544 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2020-03-13 01:52 - 2020-03-13 01:52 - 022635008 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2020-03-13 01:52 - 2020-03-13 01:52 - 019850240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2020-03-13 01:52 - 2020-03-13 01:52 - 019812352 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramWorld.dll
2020-03-13 01:52 - 2020-03-13 01:52 - 018027008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2020-03-13 01:52 - 2020-03-13 01:52 - 007755776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2020-03-13 01:52 - 2020-03-13 01:52 - 007259648 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2020-03-13 01:52 - 2020-03-13 01:52 - 006285312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2020-03-13 01:52 - 2020-03-13 01:52 - 005911040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2020-03-13 01:52 - 2020-03-13 01:52 - 004855808 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2020-03-13 01:52 - 2020-03-13 01:52 - 004580352 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2020-03-13 01:52 - 2020-03-13 01:52 - 004348408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Mirage.dll
2020-03-13 01:52 - 2020-03-13 01:52 - 004129648 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2020-03-13 01:52 - 2020-03-13 01:52 - 003819520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2020-03-13 01:52 - 2020-03-13 01:52 - 003488768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2020-03-13 01:52 - 2020-03-13 01:52 - 003243296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Mirage.dll
2020-03-13 01:52 - 2020-03-13 01:52 - 002956688 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2020-03-13 01:52 - 2020-03-13 01:52 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2020-03-13 01:52 - 2020-03-13 01:52 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2020-03-13 01:52 - 2020-03-13 01:52 - 002494744 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2020-03-13 01:52 - 2020-03-13 01:52 - 002399544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmswitch.sys
2020-03-13 01:52 - 2020-03-13 01:52 - 002315680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2vdec.dll
2020-03-13 01:52 - 2020-03-13 01:52 - 002224952 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngine.dll
2020-03-13 01:52 - 2020-03-13 01:52 - 002180408 _____ (Microsoft Corporation) C:\WINDOWS\system32\workfolderssvc.dll
2020-03-13 01:52 - 2020-03-13 01:52 - 002072664 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2020-03-13 01:52 - 2020-03-13 01:52 - 002031104 _____ C:\WINDOWS\system32\rdpnano.dll
2020-03-13 01:52 - 2020-03-13 01:52 - 001867816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
2020-03-13 01:52 - 2020-03-13 01:52 - 001835128 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsrcsnk.dll
2020-03-13 01:52 - 2020-03-13 01:52 - 001770552 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll
2020-03-13 01:52 - 2020-03-13 01:52 - 001555904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll
2020-03-13 01:52 - 2020-03-13 01:52 - 001540096 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll
2020-03-13 01:52 - 2020-03-13 01:52 - 001490640 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2020-03-13 01:52 - 2020-03-13 01:52 - 001417976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsrcsnk.dll
2020-03-13 01:52 - 2020-03-13 01:52 - 001319936 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll
2020-03-13 01:52 - 2020-03-13 01:52 - 001284096 _____ (Microsoft Corporation) C:\WINDOWS\system32\werconcpl.dll
2020-03-13 01:52 - 2020-03-13 01:52 - 001283600 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2020-03-13 01:52 - 2020-03-13 01:52 - 001282944 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfreadwrite.dll
2020-03-13 01:52 - 2020-03-13 01:52 - 001273856 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcore.dll
2020-03-13 01:52 - 2020-03-13 01:52 - 001218632 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipUp.exe
2020-03-13 01:52 - 2020-03-13 01:52 - 001214976 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2020-03-13 01:52 - 2020-03-13 01:52 - 001108040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2020-03-13 01:52 - 2020-03-13 01:52 - 001098720 _____ (Microsoft Corporation) C:\WINDOWS\system32\DolbyDecMFT.dll
2020-03-13 01:52 - 2020-03-13 01:52 - 001088000 _____ (Microsoft Corporation) C:\WINDOWS\system32\MCRecvSrc.dll
2020-03-13 01:52 - 2020-03-13 01:52 - 001080832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpcore.dll
2020-03-13 01:52 - 2020-03-13 01:52 - 001012792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll
2020-03-13 01:52 - 2020-03-13 01:52 - 001000960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Mirage.Internal.dll
2020-03-13 01:52 - 2020-03-13 01:52 - 000952416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DolbyDecMFT.dll
2020-03-13 01:52 - 2020-03-13 01:52 - 000923136 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll
2020-03-13 01:52 - 2020-03-13 01:52 - 000883712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MCRecvSrc.dll
2020-03-13 01:52 - 2020-03-13 01:52 - 000843776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll
2020-03-13 01:52 - 2020-03-13 01:52 - 000835584 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkfoldersControl.dll
2020-03-13 01:52 - 2020-03-13 01:52 - 000757632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfreadwrite.dll
2020-03-13 01:52 - 2020-03-13 01:52 - 000710144 _____ (Microsoft Corporation) C:\WINDOWS\system32\odbc32.dll
2020-03-13 01:52 - 2020-03-13 01:52 - 000705536 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2020-03-13 01:52 - 2020-03-13 01:52 - 000701440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Mirage.Internal.dll
2020-03-13 01:52 - 2020-03-13 01:52 - 000669496 _____ (Microsoft Corporation) C:\WINDOWS\system32\computecore.dll
2020-03-13 01:52 - 2020-03-13 01:52 - 000668672 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsecedit.dll
2020-03-13 01:52 - 2020-03-13 01:52 - 000667136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EdgeManager.dll
2020-03-13 01:52 - 2020-03-13 01:52 - 000604160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\odbc32.dll
2020-03-13 01:52 - 2020-03-13 01:52 - 000562176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2020-03-13 01:52 - 2020-03-13 01:52 - 000525312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsecedit.dll
2020-03-13 01:52 - 2020-03-13 01:52 - 000510768 _____ (Microsoft Corporation) C:\WINDOWS\system32\systemreset.exe
2020-03-13 01:52 - 2020-03-13 01:52 - 000444416 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSFlacDecoder.dll
2020-03-13 01:52 - 2020-03-13 01:52 - 000380416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSFlacDecoder.dll
2020-03-13 01:52 - 2020-03-13 01:52 - 000328192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\upnphost.dll
2020-03-13 01:52 - 2020-03-13 01:52 - 000287744 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSFlacEncoder.dll
2020-03-13 01:52 - 2020-03-13 01:52 - 000239616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSFlacEncoder.dll
2020-03-13 01:52 - 2020-03-13 01:52 - 000227840 _____ (Microsoft Corporation) C:\WINDOWS\system32\IndexedDbLegacy.dll
2020-03-13 01:52 - 2020-03-13 01:52 - 000225792 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkFoldersShell.dll
2020-03-13 01:52 - 2020-03-13 01:52 - 000183808 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngOnline.dll
2020-03-13 01:52 - 2020-03-13 01:52 - 000175616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\IndexedDbLegacy.dll
2020-03-13 01:52 - 2020-03-13 01:52 - 000155136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2020-03-13 01:52 - 2020-03-13 01:52 - 000148992 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAppInstaller.exe
2020-03-13 01:52 - 2020-03-13 01:52 - 000139776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakrathunk.dll
2020-03-13 01:52 - 2020-03-13 01:52 - 000123904 _____ (Microsoft Corporation) C:\WINDOWS\system32\wercplsupport.dll
2020-03-13 01:52 - 2020-03-13 01:52 - 000117248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll
2020-03-13 01:52 - 2020-03-13 01:52 - 000105472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakrathunk.dll
2020-03-13 01:52 - 2020-03-13 01:52 - 000105472 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkFolders.exe
2020-03-13 01:52 - 2020-03-13 01:52 - 000097080 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
2020-03-13 01:52 - 2020-03-13 01:52 - 000092672 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseDesktopAppMgmtCSP.dll
2020-03-13 01:52 - 2020-03-13 01:52 - 000078848 _____ (Microsoft Corporation) C:\WINDOWS\system32\ProvSysprep.dll
2020-03-13 01:52 - 2020-03-13 01:52 - 000065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\iemigplugin.dll
2020-03-13 01:52 - 2020-03-13 01:52 - 000063488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iemigplugin.dll
2020-03-13 01:52 - 2020-03-13 01:52 - 000058368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\udhisapi.dll
2020-03-13 01:52 - 2020-03-13 01:52 - 000042296 _____ (Microsoft Corporation) C:\WINDOWS\system32\SysResetErr.exe
2020-03-13 01:52 - 2020-03-13 01:52 - 000035328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\upnpcont.exe
2020-03-13 01:52 - 2020-03-13 01:52 - 000032056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdpvideominiport.sys
2020-03-13 01:52 - 2020-03-13 01:52 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msimsg.dll
2020-03-13 01:52 - 2020-03-13 01:52 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\msimsg.dll
2020-03-13 01:52 - 2020-03-13 01:52 - 000019768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngine.exe
2020-03-13 01:52 - 2020-03-13 01:52 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth12.bin
2020-03-13 01:52 - 2020-03-13 01:52 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth11.bin
2020-03-13 01:52 - 2020-03-13 01:52 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth10.bin
2020-03-13 01:51 - 2020-03-13 01:51 - 006084344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2020-03-13 01:51 - 2020-03-13 01:51 - 005764664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2020-03-13 01:51 - 2020-03-13 01:51 - 005112832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2020-03-13 01:51 - 2020-03-13 01:51 - 005040640 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2020-03-13 01:51 - 2020-03-13 01:51 - 004538880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2020-03-13 01:51 - 2020-03-13 01:51 - 003971808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2020-03-13 01:51 - 2020-03-13 01:51 - 003860832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rtmpltfm.dll
2020-03-13 01:51 - 2020-03-13 01:51 - 002875904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\esent.dll
2020-03-13 01:51 - 2020-03-13 01:51 - 002800640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2020-03-13 01:51 - 2020-03-13 01:51 - 002773568 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2020-03-13 01:51 - 2020-03-13 01:51 - 002740736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\directml.dll
2020-03-13 01:51 - 2020-03-13 01:51 - 002584008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2020-03-13 01:51 - 2020-03-13 01:51 - 002561536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2020-03-13 01:51 - 2020-03-13 01:51 - 002307584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmSvc.dll
2020-03-13 01:51 - 2020-03-13 01:51 - 002305536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2020-03-13 01:51 - 2020-03-13 01:51 - 002259872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2020-03-13 01:51 - 2020-03-13 01:51 - 002021888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll
2020-03-13 01:51 - 2020-03-13 01:51 - 001985104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll
2020-03-13 01:51 - 2020-03-13 01:51 - 001854976 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2020-03-13 01:51 - 2020-03-13 01:51 - 001835008 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2020-03-13 01:51 - 2020-03-13 01:51 - 001729024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallService.dll
2020-03-13 01:51 - 2020-03-13 01:51 - 001697792 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2020-03-13 01:51 - 2020-03-13 01:51 - 001688064 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsPrint.dll
2020-03-13 01:51 - 2020-03-13 01:51 - 001684992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2020-03-13 01:51 - 2020-03-13 01:51 - 001665416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2020-03-13 01:51 - 2020-03-13 01:51 - 001664896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2020-03-13 01:51 - 2020-03-13 01:51 - 001647072 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2020-03-13 01:51 - 2020-03-13 01:51 - 001484600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecs.dll
2020-03-13 01:51 - 2020-03-13 01:51 - 001458688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2020-03-13 01:51 - 2020-03-13 01:51 - 001413632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2020-03-13 01:51 - 2020-03-13 01:51 - 001412096 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.Handlers.dll
2020-03-13 01:51 - 2020-03-13 01:51 - 001264128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Speech.dll
2020-03-13 01:51 - 2020-03-13 01:51 - 001260544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpsharercom.dll
2020-03-13 01:51 - 2020-03-13 01:51 - 001190912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Graphics.Display.DisplayEnhancementService.dll
2020-03-13 01:51 - 2020-03-13 01:51 - 001097728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2020-03-13 01:51 - 2020-03-13 01:51 - 001054376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2020-03-13 01:51 - 2020-03-13 01:51 - 001031680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XpsPrint.dll
2020-03-13 01:51 - 2020-03-13 01:51 - 001007672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2020-03-13 01:51 - 2020-03-13 01:51 - 000980320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rtmpal.dll
2020-03-13 01:51 - 2020-03-13 01:51 - 000935040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Taskmgr.exe
2020-03-13 01:51 - 2020-03-13 01:51 - 000921088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll
2020-03-13 01:51 - 2020-03-13 01:51 - 000915296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rtmcodecs.dll
2020-03-13 01:51 - 2020-03-13 01:51 - 000898048 _____ (Microsoft Corporation) C:\WINDOWS\system32\MdmDiagnostics.dll
2020-03-13 01:51 - 2020-03-13 01:51 - 000895488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2020-03-13 01:51 - 2020-03-13 01:51 - 000892696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinTypes.dll
2020-03-13 01:51 - 2020-03-13 01:51 - 000868864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windowsperformancerecordercontrol.dll
2020-03-13 01:51 - 2020-03-13 01:51 - 000836608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TpmCoreProvisioning.dll
2020-03-13 01:51 - 2020-03-13 01:51 - 000814080 _____ (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.dll
2020-03-13 01:51 - 2020-03-13 01:51 - 000783480 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcblaunch.exe
2020-03-13 01:51 - 2020-03-13 01:51 - 000776488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxgi.dll
2020-03-13 01:51 - 2020-03-13 01:51 - 000769552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttp.dll
2020-03-13 01:51 - 2020-03-13 01:51 - 000748032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.OnlineId.dll
2020-03-13 01:51 - 2020-03-13 01:51 - 000734720 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpksetup.exe
2020-03-13 01:51 - 2020-03-13 01:51 - 000732000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ortcengine.dll
2020-03-13 01:51 - 2020-03-13 01:51 - 000691712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comdlg32.dll
2020-03-13 01:51 - 2020-03-13 01:51 - 000680448 _____ (Microsoft Corporation) C:\WINDOWS\system32\vpnike.dll
2020-03-13 01:51 - 2020-03-13 01:51 - 000680184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2020-03-13 01:51 - 2020-03-13 01:51 - 000670720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2020-03-13 01:51 - 2020-03-13 01:51 - 000668296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2020-03-13 01:51 - 2020-03-13 01:51 - 000654336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\uReFS.dll
2020-03-13 01:51 - 2020-03-13 01:51 - 000646656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Management.dll
2020-03-13 01:51 - 2020-03-13 01:51 - 000627216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicensingWinRT.dll
2020-03-13 01:51 - 2020-03-13 01:51 - 000613888 _____ (Microsoft Corporation) C:\WINDOWS\system32\netprofmsvc.dll
2020-03-13 01:51 - 2020-03-13 01:51 - 000599552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActivationManager.dll
2020-03-13 01:51 - 2020-03-13 01:51 - 000595968 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2020-03-13 01:51 - 2020-03-13 01:51 - 000592896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2020-03-13 01:51 - 2020-03-13 01:51 - 000562688 _____ (Microsoft Corporation) C:\WINDOWS\system32\iprtrmgr.dll
2020-03-13 01:51 - 2020-03-13 01:51 - 000551824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sxs.dll
2020-03-13 01:51 - 2020-03-13 01:51 - 000532480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2020-03-13 01:51 - 2020-03-13 01:51 - 000526848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlidprov.dll
2020-03-13 01:51 - 2020-03-13 01:51 - 000518656 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncsi.dll
2020-03-13 01:51 - 2020-03-13 01:51 - 000516096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iprtrmgr.dll
2020-03-13 01:51 - 2020-03-13 01:51 - 000500224 _____ (Microsoft Corporation) C:\WINDOWS\system32\mprdim.dll
2020-03-13 01:51 - 2020-03-13 01:51 - 000478792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sechost.dll
2020-03-13 01:51 - 2020-03-13 01:51 - 000469504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll
2020-03-13 01:51 - 2020-03-13 01:51 - 000455168 _____ (Microsoft Corporation) C:\WINDOWS\system32\upnphost.dll
2020-03-13 01:51 - 2020-03-13 01:51 - 000443904 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgeIso.dll
2020-03-13 01:51 - 2020-03-13 01:51 - 000415744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2020-03-13 01:51 - 2020-03-13 01:51 - 000403456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mprdim.dll
2020-03-13 01:51 - 2020-03-13 01:51 - 000382976 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlasvc.dll
2020-03-13 01:51 - 2020-03-13 01:51 - 000358912 _____ (Microsoft Corporation) C:\WINDOWS\system32\dusmsvc.dll
2020-03-13 01:51 - 2020-03-13 01:51 - 000355840 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsDocumentTargetPrint.dll
2020-03-13 01:51 - 2020-03-13 01:51 - 000336384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2020-03-13 01:51 - 2020-03-13 01:51 - 000330240 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmclient.exe
2020-03-13 01:51 - 2020-03-13 01:51 - 000329216 _____ (Microsoft Corporation) C:\WINDOWS\system32\DiagnosticLogCSP.dll
2020-03-13 01:51 - 2020-03-13 01:51 - 000327680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgeIso.dll
2020-03-13 01:51 - 2020-03-13 01:51 - 000324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32k.sys
2020-03-13 01:51 - 2020-03-13 01:51 - 000308736 _____ (Microsoft Corporation) C:\WINDOWS\system32\msIso.dll
2020-03-13 01:51 - 2020-03-13 01:51 - 000307712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wincorlib.dll
2020-03-13 01:51 - 2020-03-13 01:51 - 000299520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssvp.dll
2020-03-13 01:51 - 2020-03-13 01:51 - 000291840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ahcache.sys
2020-03-13 01:51 - 2020-03-13 01:51 - 000287232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sppcomapi.dll
2020-03-13 01:51 - 2020-03-13 01:51 - 000283136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Search.ProtocolHandler.MAPI2.dll
2020-03-13 01:51 - 2020-03-13 01:51 - 000279040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll
2020-03-13 01:51 - 2020-03-13 01:51 - 000277504 _____ (Microsoft Corporation) C:\WINDOWS\system32\scecli.dll
2020-03-13 01:51 - 2020-03-13 01:51 - 000251904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msIso.dll
2020-03-13 01:51 - 2020-03-13 01:51 - 000251392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XpsDocumentTargetPrint.dll
2020-03-13 01:51 - 2020-03-13 01:51 - 000235520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmWmiPl.dll
2020-03-13 01:51 - 2020-03-13 01:51 - 000226816 _____ (Microsoft Corporation) C:\WINDOWS\system32\netprofm.dll
2020-03-13 01:51 - 2020-03-13 01:51 - 000214016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scecli.dll
2020-03-13 01:51 - 2020-03-13 01:51 - 000213984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EditionUpgradeManagerObj.dll
2020-03-13 01:51 - 2020-03-13 01:51 - 000211968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchFilterHost.exe
2020-03-13 01:51 - 2020-03-13 01:51 - 000210744 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcbloader.dll
2020-03-13 01:51 - 2020-03-13 01:51 - 000206336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndiswan.sys
2020-03-13 01:51 - 2020-03-13 01:51 - 000199480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wermgr.exe
2020-03-13 01:51 - 2020-03-13 01:51 - 000193592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\weretw.dll
2020-03-13 01:51 - 2020-03-13 01:51 - 000181248 _____ (Microsoft Corporation) C:\WINDOWS\system32\notepad.exe
2020-03-13 01:51 - 2020-03-13 01:51 - 000181248 _____ (Microsoft Corporation) C:\WINDOWS\notepad.exe
2020-03-13 01:51 - 2020-03-13 01:51 - 000179712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallServiceTasks.dll
2020-03-13 01:51 - 2020-03-13 01:51 - 000179712 _____ (Microsoft Corporation) C:\WINDOWS\system32\LanguageComponentsInstaller.dll
2020-03-13 01:51 - 2020-03-13 01:51 - 000179200 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtm.dll
2020-03-13 01:51 - 2020-03-13 01:51 - 000168448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EditionUpgradeHelper.dll
2020-03-13 01:51 - 2020-03-13 01:51 - 000166400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MicrosoftAccountTokenProvider.dll
2020-03-13 01:51 - 2020-03-13 01:51 - 000165504 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcmnutils.dll
2020-03-13 01:51 - 2020-03-13 01:51 - 000164776 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmapi.dll
2020-03-13 01:51 - 2020-03-13 01:51 - 000161792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rtm.dll
2020-03-13 01:51 - 2020-03-13 01:51 - 000160768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssph.dll
2020-03-13 01:51 - 2020-03-13 01:51 - 000155136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\notepad.exe
2020-03-13 01:51 - 2020-03-13 01:51 - 000146432 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceUpdateAgent.dll
2020-03-13 01:51 - 2020-03-13 01:51 - 000143872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmAuto.dll
2020-03-13 01:51 - 2020-03-13 01:51 - 000138752 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceMetadataRetrievalClient.dll
2020-03-13 01:51 - 2020-03-13 01:51 - 000137216 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnpclean.dll
2020-03-13 01:51 - 2020-03-13 01:51 - 000136328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\omadmapi.dll
2020-03-13 01:51 - 2020-03-13 01:51 - 000135168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\NdisImPlatform.sys
2020-03-13 01:51 - 2020-03-13 01:51 - 000133944 _____ (Microsoft Corporation) C:\WINDOWS\system32\ImplatSetup.dll
2020-03-13 01:51 - 2020-03-13 01:51 - 000130112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmcmnutils.dll
2020-03-13 01:51 - 2020-03-13 01:51 - 000120560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\profext.dll
2020-03-13 01:51 - 2020-03-13 01:51 - 000114176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\agilevpn.sys
2020-03-13 01:51 - 2020-03-13 01:51 - 000113152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssitlb.dll
2020-03-13 01:51 - 2020-03-13 01:51 - 000112128 _____ (Microsoft Corporation) C:\WINDOWS\system32\AxInstSv.dll
2020-03-13 01:51 - 2020-03-13 01:51 - 000107520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GraphicsCapture.dll
2020-03-13 01:51 - 2020-03-13 01:51 - 000105832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OpenWith.exe
2020-03-13 01:51 - 2020-03-13 01:51 - 000102760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\profapi.dll
2020-03-13 01:51 - 2020-03-13 01:51 - 000093184 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlaapi.dll
2020-03-13 01:51 - 2020-03-13 01:51 - 000089568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32u.dll
2020-03-13 01:51 - 2020-03-13 01:51 - 000089088 _____ (Microsoft Corporation) C:\WINDOWS\system32\asycfilt.dll
2020-03-13 01:51 - 2020-03-13 01:51 - 000087552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dot3api.dll
2020-03-13 01:51 - 2020-03-13 01:51 - 000087040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dot3msm.dll
2020-03-13 01:51 - 2020-03-13 01:51 - 000084480 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterpriseresourcemanager.dll
2020-03-13 01:51 - 2020-03-13 01:51 - 000074752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\asycfilt.dll
2020-03-13 01:51 - 2020-03-13 01:51 - 000071680 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpremove.exe
2020-03-13 01:51 - 2020-03-13 01:51 - 000068408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DeviceReactivation.dll
2020-03-13 01:51 - 2020-03-13 01:51 - 000068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\udhisapi.dll
2020-03-13 01:51 - 2020-03-13 01:51 - 000066048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSManMigrationPlugin.dll
2020-03-13 01:51 - 2020-03-13 01:51 - 000066048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\enterpriseresourcemanager.dll
2020-03-13 01:51 - 2020-03-13 01:51 - 000061952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmRes.dll
2020-03-13 01:51 - 2020-03-13 01:51 - 000060416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssprxy.dll
2020-03-13 01:51 - 2020-03-13 01:51 - 000060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\AxInstUI.exe
2020-03-13 01:51 - 2020-03-13 01:51 - 000055376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rtmmvrortc.dll
2020-03-13 01:51 - 2020-03-13 01:51 - 000052736 _____ (Microsoft Corporation) C:\WINDOWS\system32\jsproxy.dll
2020-03-13 01:51 - 2020-03-13 01:51 - 000048640 _____ (Microsoft Corporation) C:\WINDOWS\system32\dusmapi.dll
2020-03-13 01:51 - 2020-03-13 01:51 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msscntrs.dll
2020-03-13 01:51 - 2020-03-13 01:51 - 000045568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf3216.dll
2020-03-13 01:51 - 2020-03-13 01:51 - 000045056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jsproxy.dll
2020-03-13 01:51 - 2020-03-13 01:51 - 000045056 _____ (Microsoft Corporation) C:\WINDOWS\system32\npmproxy.dll
2020-03-13 01:51 - 2020-03-13 01:51 - 000042336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tbs.dll
2020-03-13 01:51 - 2020-03-13 01:51 - 000040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\upnpcont.exe
2020-03-13 01:51 - 2020-03-13 01:51 - 000040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afunix.sys
2020-03-13 01:51 - 2020-03-13 01:51 - 000038912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werdiagcontroller.dll
2020-03-13 01:51 - 2020-03-13 01:51 - 000037888 _____ (Microsoft Corporation) C:\WINDOWS\system32\dusmtask.exe
2020-03-13 01:51 - 2020-03-13 01:51 - 000037376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsmprovhost.exe
2020-03-13 01:51 - 2020-03-13 01:51 - 000036352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSManHTTPConfig.exe
2020-03-13 01:51 - 2020-03-13 01:51 - 000033280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LaunchWinApp.exe
2020-03-13 01:51 - 2020-03-13 01:51 - 000029696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sxstrace.exe
2020-03-13 01:51 - 2020-03-13 01:51 - 000029696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Drivers\afunix.sys
2020-03-13 01:51 - 2020-03-13 01:51 - 000029696 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlmproxy.dll
2020-03-13 01:51 - 2020-03-13 01:51 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmAgent.dll
2020-03-13 01:51 - 2020-03-13 01:51 - 000023040 _____ (Microsoft Corporation) C:\WINDOWS\system32\msauserext.dll
2020-03-13 01:51 - 2020-03-13 01:51 - 000018944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msauserext.dll
2020-03-13 01:51 - 2020-03-13 01:51 - 000017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlmsprep.dll
2020-03-13 01:51 - 2020-03-13 01:51 - 000016384 _____ (Microsoft Corporation) C:\WINDOWS\system32\MUILanguageCleanup.dll
2020-03-13 01:51 - 2020-03-13 01:51 - 000014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\LangCleanupSysprepAction.dll
2020-03-13 01:51 - 2020-03-13 01:51 - 000011776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsmplpxy.dll
2020-03-13 01:51 - 2020-03-13 01:51 - 000011776 _____ (Microsoft Corporation) C:\WINDOWS\system32\iprtprio.dll
2020-03-13 01:51 - 2020-03-13 01:51 - 000010752 _____ (Microsoft Corporation) C:\WINDOWS\system32\DMAlertListener.ProxyStub.dll
2020-03-13 01:51 - 2020-03-13 01:51 - 000010240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LaunchTM.exe
2020-03-13 01:51 - 2020-03-13 01:51 - 000010240 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpksetupproxyserv.dll
2020-03-13 01:51 - 2020-03-13 01:51 - 000009216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iprtprio.dll
2020-03-13 01:51 - 2020-03-13 01:51 - 000007680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DMAlertListener.ProxyStub.dll
2020-03-13 01:51 - 2020-03-13 01:51 - 000007168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msimg32.dll
2020-03-13 01:51 - 2020-03-13 01:51 - 000003584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TpmCertResources.dll
2020-03-13 01:51 - 2020-03-13 01:51 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth9.bin
2020-03-13 01:51 - 2020-03-13 01:51 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth8.bin
2020-03-13 01:51 - 2020-03-13 01:51 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth7.bin
2020-03-13 01:51 - 2020-03-13 01:51 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth6.bin
2020-03-13 01:51 - 2020-03-13 01:51 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth5.bin
2020-03-13 01:51 - 2020-03-13 01:51 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth4.bin
2020-03-13 01:51 - 2020-03-13 01:51 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth3.bin
2020-03-13 01:51 - 2020-03-13 01:51 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth2.bin
2020-03-13 01:51 - 2020-03-13 01:51 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth1.bin
2020-03-13 01:50 - 2020-03-13 01:50 - 007905784 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2020-03-13 01:50 - 2020-03-13 01:50 - 007263992 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2020-03-13 01:50 - 2020-03-13 01:50 - 006436352 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2020-03-13 01:50 - 2020-03-13 01:50 - 006168064 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll
2020-03-13 01:50 - 2020-03-13 01:50 - 004898144 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtmpltfm.dll
2020-03-13 01:50 - 2020-03-13 01:50 - 004471296 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputService.dll
2020-03-13 01:50 - 2020-03-13 01:50 - 004140544 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsThresholdAdminFlowUI.dll
2020-03-13 01:50 - 2020-03-13 01:50 - 004048896 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRH.dll
2020-03-13 01:50 - 2020-03-13 01:50 - 003799552 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2020-03-13 01:50 - 2020-03-13 01:50 - 003728896 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2020-03-13 01:50 - 2020-03-13 01:50 - 003552768 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2020-03-13 01:50 - 2020-03-13 01:50 - 003371720 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2020-03-13 01:50 - 2020-03-13 01:50 - 003263488 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2020-03-13 01:50 - 2020-03-13 01:50 - 003260928 _____ (Microsoft Corporation) C:\WINDOWS\system32\esent.dll
2020-03-13 01:50 - 2020-03-13 01:50 - 002986808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2020-03-13 01:50 - 2020-03-13 01:50 - 002870272 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2020-03-13 01:50 - 2020-03-13 01:50 - 002768440 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2020-03-13 01:50 - 2020-03-13 01:50 - 002698040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2020-03-13 01:50 - 2020-03-13 01:50 - 002453504 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallService.dll
2020-03-13 01:50 - 2020-03-13 01:50 - 002087376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2020-03-13 01:50 - 2020-03-13 01:50 - 001999952 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2020-03-13 01:50 - 2020-03-13 01:50 - 001972536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\refs.sys
2020-03-13 01:50 - 2020-03-13 01:50 - 001885184 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2020-03-13 01:50 - 2020-03-13 01:50 - 001823232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Speech.dll
2020-03-13 01:50 - 2020-03-13 01:50 - 001764336 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll
2020-03-13 01:50 - 2020-03-13 01:50 - 001757304 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2020-03-13 01:50 - 2020-03-13 01:50 - 001743888 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2020-03-13 01:50 - 2020-03-13 01:50 - 001657120 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2020-03-13 01:50 - 2020-03-13 01:50 - 001609216 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2020-03-13 01:50 - 2020-03-13 01:50 - 001513040 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2020-03-13 01:50 - 2020-03-13 01:50 - 001482040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2020-03-13 01:50 - 2020-03-13 01:50 - 001481216 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpsharercom.dll
2020-03-13 01:50 - 2020-03-13 01:50 - 001480192 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocoreworker.exe
2020-03-13 01:50 - 2020-03-13 01:50 - 001396152 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2020-03-13 01:50 - 2020-03-13 01:50 - 001394168 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinTypes.dll
2020-03-13 01:50 - 2020-03-13 01:50 - 001366128 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2020-03-13 01:50 - 2020-03-13 01:50 - 001354080 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtmpal.dll
2020-03-13 01:50 - 2020-03-13 01:50 - 001260480 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2020-03-13 01:50 - 2020-03-13 01:50 - 001182448 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2020-03-13 01:50 - 2020-03-13 01:50 - 001153024 _____ (Microsoft Corporation) C:\WINDOWS\system32\windowsperformancerecordercontrol.dll
2020-03-13 01:50 - 2020-03-13 01:50 - 001091936 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtmcodecs.dll
2020-03-13 01:50 - 2020-03-13 01:50 - 001083904 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2020-03-13 01:50 - 2020-03-13 01:50 - 001071184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Taskmgr.exe
2020-03-13 01:50 - 2020-03-13 01:50 - 001032544 _____ (Microsoft Corporation) C:\WINDOWS\system32\ortcengine.dll
2020-03-13 01:50 - 2020-03-13 01:50 - 000988160 _____ (Microsoft Corporation) C:\WINDOWS\system32\refsutil.exe
2020-03-13 01:50 - 2020-03-13 01:50 - 000983896 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll
2020-03-13 01:50 - 2020-03-13 01:50 - 000974848 _____ (Microsoft Corporation) C:\WINDOWS\system32\uDWM.dll
2020-03-13 01:50 - 2020-03-13 01:50 - 000945384 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll
2020-03-13 01:50 - 2020-03-13 01:50 - 000929144 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthService.exe
2020-03-13 01:50 - 2020-03-13 01:50 - 000916480 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
2020-03-13 01:50 - 2020-03-13 01:50 - 000908504 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2020-03-13 01:50 - 2020-03-13 01:50 - 000877232 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2020-03-13 01:50 - 2020-03-13 01:50 - 000851968 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2020-03-13 01:50 - 2020-03-13 01:50 - 000845312 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2020-03-13 01:50 - 2020-03-13 01:50 - 000838144 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Language.dll
2020-03-13 01:50 - 2020-03-13 01:50 - 000796904 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2020-03-13 01:50 - 2020-03-13 01:50 - 000765440 _____ (Microsoft Corporation) C:\WINDOWS\system32\uReFS.dll
2020-03-13 01:50 - 2020-03-13 01:50 - 000741392 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicensingWinRT.dll
2020-03-13 01:50 - 2020-03-13 01:50 - 000678912 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll
2020-03-13 01:50 - 2020-03-13 01:50 - 000661816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afd.sys
2020-03-13 01:50 - 2020-03-13 01:50 - 000642216 _____ (Microsoft Corporation) C:\WINDOWS\system32\TextInputFramework.dll
2020-03-13 01:50 - 2020-03-13 01:50 - 000638464 _____ (Microsoft Corporation) C:\WINDOWS\system32\MBMediaManager.dll
2020-03-13 01:50 - 2020-03-13 01:50 - 000636848 _____ (Microsoft Corporation) C:\WINDOWS\system32\sxs.dll
2020-03-13 01:50 - 2020-03-13 01:50 - 000605896 _____ (Microsoft Corporation) C:\WINDOWS\system32\sechost.dll
2020-03-13 01:50 - 2020-03-13 01:50 - 000605184 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2020-03-13 01:50 - 2020-03-13 01:50 - 000578560 _____ (Microsoft Corporation) C:\WINDOWS\system32\SppExtComObj.Exe
2020-03-13 01:50 - 2020-03-13 01:50 - 000568832 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnprv.dll
2020-03-13 01:50 - 2020-03-13 01:50 - 000568832 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Speech.UXRes.dll
2020-03-13 01:50 - 2020-03-13 01:50 - 000550400 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2020-03-13 01:50 - 2020-03-13 01:50 - 000535552 _____ (Microsoft Corporation) C:\WINDOWS\system32\usosvc.dll
2020-03-13 01:50 - 2020-03-13 01:50 - 000522384 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2020-03-13 01:50 - 2020-03-13 01:50 - 000489984 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvc.dll
2020-03-13 01:50 - 2020-03-13 01:50 - 000477496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS
2020-03-13 01:50 - 2020-03-13 01:50 - 000460800 _____ (Microsoft Corporation) C:\WINDOWS\system32\slui.exe
2020-03-13 01:50 - 2020-03-13 01:50 - 000459688 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotifyIcon.exe
2020-03-13 01:50 - 2020-03-13 01:50 - 000457216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cldflt.sys
2020-03-13 01:50 - 2020-03-13 01:50 - 000457016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2020-03-13 01:50 - 2020-03-13 01:50 - 000448000 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsEnvironment.Desktop.dll
2020-03-13 01:50 - 2020-03-13 01:50 - 000435200 _____ (Microsoft Corporation) C:\WINDOWS\system32\wincorlib.dll
2020-03-13 01:50 - 2020-03-13 01:50 - 000401408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2020-03-13 01:50 - 2020-03-13 01:50 - 000392192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2020-03-13 01:50 - 2020-03-13 01:50 - 000368128 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssvp.dll
2020-03-13 01:50 - 2020-03-13 01:50 - 000353960 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppwinob.dll
2020-03-13 01:50 - 2020-03-13 01:50 - 000320312 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthAgent.dll
2020-03-13 01:50 - 2020-03-13 01:50 - 000309248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srvnet.sys
2020-03-13 01:50 - 2020-03-13 01:50 - 000307712 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcomapi.dll
2020-03-13 01:50 - 2020-03-13 01:50 - 000263168 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnservice.dll
2020-03-13 01:50 - 2020-03-13 01:50 - 000260920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys
2020-03-13 01:50 - 2020-03-13 01:50 - 000258048 _____ (Microsoft Corporation) C:\WINDOWS\system32\VPNv2CSP.dll
2020-03-13 01:50 - 2020-03-13 01:50 - 000248064 _____ (Microsoft Corporation) C:\WINDOWS\system32\weretw.dll
2020-03-13 01:50 - 2020-03-13 01:50 - 000240640 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFilterHost.exe
2020-03-13 01:50 - 2020-03-13 01:50 - 000234984 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditionUpgradeManagerObj.dll
2020-03-13 01:50 - 2020-03-13 01:50 - 000231936 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallServiceTasks.dll
2020-03-13 01:50 - 2020-03-13 01:50 - 000221200 _____ (Microsoft Corporation) C:\WINDOWS\system32\wermgr.exe
2020-03-13 01:50 - 2020-03-13 01:50 - 000204800 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssph.dll
2020-03-13 01:50 - 2020-03-13 01:50 - 000201744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wcifs.sys
2020-03-13 01:50 - 2020-03-13 01:50 - 000177152 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditionUpgradeHelper.dll
2020-03-13 01:50 - 2020-03-13 01:50 - 000147456 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2020-03-13 01:50 - 2020-03-13 01:50 - 000146712 _____ (Microsoft Corporation) C:\WINDOWS\system32\profext.dll
2020-03-13 01:50 - 2020-03-13 01:50 - 000144384 _____ (Microsoft Corporation) C:\WINDOWS\system32\GraphicsCapture.dll
2020-03-13 01:50 - 2020-03-13 01:50 - 000138752 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputLocaleManager.dll
2020-03-13 01:50 - 2020-03-13 01:50 - 000133256 _____ (Microsoft Corporation) C:\WINDOWS\system32\profapi.dll
2020-03-13 01:50 - 2020-03-13 01:50 - 000128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssitlb.dll
2020-03-13 01:50 - 2020-03-13 01:50 - 000127064 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32u.dll
2020-03-13 01:50 - 2020-03-13 01:50 - 000120048 _____ (Microsoft Corporation) C:\WINDOWS\system32\OpenWith.exe
2020-03-13 01:50 - 2020-03-13 01:50 - 000118784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Taskbar.dll
2020-03-13 01:50 - 2020-03-13 01:50 - 000107832 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthProxyStub.dll
2020-03-13 01:50 - 2020-03-13 01:50 - 000105984 _____ (Microsoft Corporation) C:\WINDOWS\system32\utcutil.dll
2020-03-13 01:50 - 2020-03-13 01:50 - 000098104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\crashdmp.sys
2020-03-13 01:50 - 2020-03-13 01:50 - 000089616 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceReactivation.dll
2020-03-13 01:50 - 2020-03-13 01:50 - 000087040 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditBufferTestHook.dll
2020-03-13 01:50 - 2020-03-13 01:50 - 000063288 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthHost.exe
2020-03-13 01:50 - 2020-03-13 01:50 - 000060928 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf3216.dll
2020-03-13 01:50 - 2020-03-13 01:50 - 000060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\msscntrs.dll
2020-03-13 01:50 - 2020-03-13 01:50 - 000056672 _____ (Microsoft Corporation) C:\WINDOWS\system32\rtmmvrortc.dll
2020-03-13 01:50 - 2020-03-13 01:50 - 000044544 _____ (Microsoft Corporation) C:\WINDOWS\system32\werdiagcontroller.dll
2020-03-13 01:50 - 2020-03-13 01:50 - 000043520 _____ (Microsoft Corporation) C:\WINDOWS\system32\LaunchWinApp.exe
2020-03-13 01:50 - 2020-03-13 01:50 - 000041472 _____ (Microsoft Corporation) C:\WINDOWS\system32\WordBreakers.dll
2020-03-13 01:50 - 2020-03-13 01:50 - 000036352 _____ (Microsoft Corporation) C:\WINDOWS\system32\sxstrace.exe
2020-03-13 01:50 - 2020-03-13 01:50 - 000024064 _____ (Microsoft Corporation) C:\WINDOWS\system32\wci.dll
2020-03-13 01:50 - 2020-03-13 01:50 - 000012288 _____ (Microsoft Corporation) C:\WINDOWS\system32\pacjsworker.exe
2020-03-13 01:50 - 2020-03-13 01:50 - 000011776 _____ (Microsoft Corporation) C:\WINDOWS\system32\LaunchTM.exe
2020-03-13 01:50 - 2020-03-13 01:50 - 000008192 _____ (Microsoft Corporation) C:\WINDOWS\system32\msimg32.dll
2020-03-13 01:50 - 2020-03-13 01:50 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tier2punctuations.dll
2020-03-13 01:49 - 2020-03-13 01:49 - 004622280 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2020-03-13 01:49 - 2020-03-13 01:49 - 003708928 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2020-03-13 01:49 - 2020-03-13 01:49 - 003587896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2020-03-13 01:49 - 2020-03-13 01:49 - 003143168 _____ (Microsoft Corporation) C:\WINDOWS\system32\directml.dll
2020-03-13 01:49 - 2020-03-13 01:49 - 002808832 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmSvc.dll
2020-03-13 01:49 - 2020-03-13 01:49 - 002715648 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2020-03-13 01:49 - 2020-03-13 01:49 - 002522112 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll
2020-03-13 01:49 - 2020-03-13 01:49 - 002474496 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
2020-03-13 01:49 - 2020-03-13 01:49 - 002289152 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2020-03-13 01:49 - 2020-03-13 01:49 - 002157056 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidsvc.dll
2020-03-13 01:49 - 2020-03-13 01:49 - 001762304 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2020-03-13 01:49 - 2020-03-13 01:49 - 001751040 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2020-03-13 01:49 - 2020-03-13 01:49 - 001581056 _____ (Microsoft Corporation) C:\WINDOWS\system32\qmgr.dll
2020-03-13 01:49 - 2020-03-13 01:49 - 001428992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys
2020-03-13 01:49 - 2020-03-13 01:49 - 001180160 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2020-03-13 01:49 - 2020-03-13 01:49 - 001149712 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe
2020-03-13 01:49 - 2020-03-13 01:49 - 001092096 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmCoreProvisioning.dll
2020-03-13 01:49 - 2020-03-13 01:49 - 001057792 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
2020-03-13 01:49 - 2020-03-13 01:49 - 001027000 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipSVC.dll
2020-03-13 01:49 - 2020-03-13 01:49 - 000914944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.OnlineId.dll
2020-03-13 01:49 - 2020-03-13 01:49 - 000878080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.Service.dll
2020-03-13 01:49 - 2020-03-13 01:49 - 000874296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2020-03-13 01:49 - 2020-03-13 01:49 - 000863232 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32spl.dll
2020-03-13 01:49 - 2020-03-13 01:49 - 000833616 _____ (Microsoft Corporation) C:\WINDOWS\system32\pkeyhelper.dll
2020-03-13 01:49 - 2020-03-13 01:49 - 000802304 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2020-03-13 01:49 - 2020-03-13 01:49 - 000782848 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifinetworkmanager.dll
2020-03-13 01:49 - 2020-03-13 01:49 - 000749568 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll
2020-03-13 01:49 - 2020-03-13 01:49 - 000649728 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidprov.dll
2020-03-13 01:49 - 2020-03-13 01:49 - 000637240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys
2020-03-13 01:49 - 2020-03-13 01:49 - 000540672 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2020-03-13 01:49 - 2020-03-13 01:49 - 000531768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS
2020-03-13 01:49 - 2020-03-13 01:49 - 000441144 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2020-03-13 01:49 - 2020-03-13 01:49 - 000433152 _____ (Microsoft Corporation) C:\WINDOWS\system32\MicrosoftAccountExtension.dll
2020-03-13 01:49 - 2020-03-13 01:49 - 000429880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\volsnap.sys
2020-03-13 01:49 - 2020-03-13 01:49 - 000379904 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll
2020-03-13 01:49 - 2020-03-13 01:49 - 000355000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelpep.sys
2020-03-13 01:49 - 2020-03-13 01:49 - 000338432 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll
2020-03-13 01:49 - 2020-03-13 01:49 - 000337920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Acx01000.sys
2020-03-13 01:49 - 2020-03-13 01:49 - 000306696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbvideo.sys
2020-03-13 01:49 - 2020-03-13 01:49 - 000294400 _____ (Microsoft Corporation) C:\WINDOWS\system32\provops.dll
2020-03-13 01:49 - 2020-03-13 01:49 - 000291328 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceDirectoryClient.dll
2020-03-13 01:49 - 2020-03-13 01:49 - 000285184 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmWmiPl.dll
2020-03-13 01:49 - 2020-03-13 01:49 - 000282112 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcpopkeysrv.dll
2020-03-13 01:49 - 2020-03-13 01:49 - 000273408 _____ (Microsoft Corporation) C:\WINDOWS\system32\MicrosoftAccountCloudAP.dll
2020-03-13 01:49 - 2020-03-13 01:49 - 000271872 _____ (Microsoft Corporation) C:\WINDOWS\system32\provhandlers.dll
2020-03-13 01:49 - 2020-03-13 01:49 - 000268288 _____ (Microsoft Corporation) C:\WINDOWS\system32\dot3svc.dll
2020-03-13 01:49 - 2020-03-13 01:49 - 000265216 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdd.dll
2020-03-13 01:49 - 2020-03-13 01:49 - 000262656 _____ (Microsoft Corporation) C:\WINDOWS\system32\netman.dll
2020-03-13 01:49 - 2020-03-13 01:49 - 000259584 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmcsp.dll
2020-03-13 01:49 - 2020-03-13 01:49 - 000250896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tpm.sys
2020-03-13 01:49 - 2020-03-13 01:49 - 000250880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\winnat.sys
2020-03-13 01:49 - 2020-03-13 01:49 - 000239104 _____ (Microsoft Corporation) C:\WINDOWS\system32\vdsbas.dll
2020-03-13 01:49 - 2020-03-13 01:49 - 000233472 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCore.dll
2020-03-13 01:49 - 2020-03-13 01:49 - 000232960 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll
2020-03-13 01:49 - 2020-03-13 01:49 - 000231936 _____ (Microsoft Corporation) C:\WINDOWS\system32\TetheringMgr.dll
2020-03-13 01:49 - 2020-03-13 01:49 - 000228864 _____ (Microsoft Corporation) C:\WINDOWS\system32\MicrosoftAccountTokenProvider.dll
2020-03-13 01:49 - 2020-03-13 01:49 - 000224056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelppm.sys
2020-03-13 01:49 - 2020-03-13 01:49 - 000222520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ataport.sys
2020-03-13 01:49 - 2020-03-13 01:49 - 000208696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\processr.sys
2020-03-13 01:49 - 2020-03-13 01:49 - 000201728 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXApplicabilityBlob.dll
2020-03-13 01:49 - 2020-03-13 01:49 - 000201528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\amdppm.sys
2020-03-13 01:49 - 2020-03-13 01:49 - 000199992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\amdk8.sys
2020-03-13 01:49 - 2020-03-13 01:49 - 000183608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbccgp.sys
2020-03-13 01:49 - 2020-03-13 01:49 - 000182272 _____ (Microsoft Corporation) C:\WINDOWS\system32\appinfo.dll
2020-03-13 01:49 - 2020-03-13 01:49 - 000180232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys
2020-03-13 01:49 - 2020-03-13 01:49 - 000174592 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmAuto.dll
2020-03-13 01:49 - 2020-03-13 01:49 - 000174392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storahci.sys
2020-03-13 01:49 - 2020-03-13 01:49 - 000151568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmbus.sys
2020-03-13 01:49 - 2020-03-13 01:49 - 000141840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\stornvme.sys
2020-03-13 01:49 - 2020-03-13 01:49 - 000141824 _____ (Microsoft Corporation) C:\WINDOWS\system32\provpackageapidll.dll
2020-03-13 01:49 - 2020-03-13 01:49 - 000138240 _____ (Microsoft Corporation) C:\WINDOWS\system32\TelephonyInteractiveUser.dll
2020-03-13 01:49 - 2020-03-13 01:49 - 000131896 _____ (Microsoft Corporation) C:\WINDOWS\system32\DTUHandler.exe
2020-03-13 01:49 - 2020-03-13 01:49 - 000128312 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifitask.exe
2020-03-13 01:49 - 2020-03-13 01:49 - 000120320 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCsp.dll
2020-03-13 01:49 - 2020-03-13 01:49 - 000114688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hdaudbus.sys
2020-03-13 01:49 - 2020-03-13 01:49 - 000114688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthenum.sys
2020-03-13 01:49 - 2020-03-13 01:49 - 000108032 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanprotdim.dll
2020-03-13 01:49 - 2020-03-13 01:49 - 000103936 _____ (Microsoft Corporation) C:\WINDOWS\system32\dot3msm.dll
2020-03-13 01:49 - 2020-03-13 01:49 - 000102912 _____ (Microsoft Corporation) C:\WINDOWS\system32\NFCProvisioningPlugin.dll
2020-03-13 01:49 - 2020-03-13 01:49 - 000099328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BTHUSB.SYS
2020-03-13 01:49 - 2020-03-13 01:49 - 000097792 _____ (Microsoft Corporation) C:\WINDOWS\system32\provdatastore.dll
2020-03-13 01:49 - 2020-03-13 01:49 - 000092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\dot3api.dll
2020-03-13 01:49 - 2020-03-13 01:49 - 000091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\ProvPluginEng.dll
2020-03-13 01:49 - 2020-03-13 01:49 - 000089088 _____ (Microsoft Corporation) C:\WINDOWS\system32\BarcodeProvisioningPlugin.dll
2020-03-13 01:49 - 2020-03-13 01:49 - 000084992 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSManMigrationPlugin.dll
2020-03-13 01:49 - 2020-03-13 01:49 - 000084480 _____ (Microsoft Corporation) C:\WINDOWS\system32\provtool.exe
2020-03-13 01:49 - 2020-03-13 01:49 - 000077824 _____ (Microsoft Corporation) C:\WINDOWS\system32\CustomInstallExec.exe
2020-03-13 01:49 - 2020-03-13 01:49 - 000076288 _____ (Microsoft Corporation) C:\WINDOWS\system32\autopilot.dll
2020-03-13 01:49 - 2020-03-13 01:49 - 000070656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.EnrollmentStatusTracking.ConfigProvider.dll
2020-03-13 01:49 - 2020-03-13 01:49 - 000069632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\monitor.sys
2020-03-13 01:49 - 2020-03-13 01:49 - 000067112 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsManagementServiceWinRt.ProxyStub.dll
2020-03-13 01:49 - 2020-03-13 01:49 - 000066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\RemovableMediaProvisioningPlugin.dll
2020-03-13 01:49 - 2020-03-13 01:49 - 000066336 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlrmdr.exe
2020-03-13 01:49 - 2020-03-13 01:49 - 000061952 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmRes.dll
2020-03-13 01:49 - 2020-03-13 01:49 - 000056632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pciidex.sys
2020-03-13 01:49 - 2020-03-13 01:49 - 000054784 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSAProfileNotificationHandler.dll
2020-03-13 01:49 - 2020-03-13 01:49 - 000048256 _____ (Microsoft Corporation) C:\WINDOWS\system32\tbs.dll
2020-03-13 01:49 - 2020-03-13 01:49 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsmprovhost.exe
2020-03-13 01:49 - 2020-03-13 01:49 - 000045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\cellulardatacapabilityhandler.dll
2020-03-13 01:49 - 2020-03-13 01:49 - 000043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiredNetworkCSP.dll
2020-03-13 01:49 - 2020-03-13 01:49 - 000041984 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSManHTTPConfig.exe
2020-03-13 01:49 - 2020-03-13 01:49 - 000036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BthMini.SYS
2020-03-13 01:49 - 2020-03-13 01:49 - 000033792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.Provisioning.ProxyStub.dll
2020-03-13 01:49 - 2020-03-13 01:49 - 000032256 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmAgent.dll
2020-03-13 01:49 - 2020-03-13 01:49 - 000031232 _____ (Microsoft Corporation) C:\WINDOWS\system32\FaxPrinterInstaller.dll
2020-03-13 01:49 - 2020-03-13 01:49 - 000030720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\KNetPwrDepBroker.sys
2020-03-13 01:49 - 2020-03-13 01:49 - 000030008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\atapi.sys
2020-03-13 01:49 - 2020-03-13 01:49 - 000029712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tbs.sys
2020-03-13 01:49 - 2020-03-13 01:49 - 000028936 _____ (Microsoft Corporation) C:\WINDOWS\system32\vmbuspipe.dll
2020-03-13 01:49 - 2020-03-13 01:49 - 000025600 _____ (Microsoft Corporation) C:\WINDOWS\system32\autopilotdiag.dll
2020-03-13 01:49 - 2020-03-13 01:49 - 000019984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelide.sys
2020-03-13 01:49 - 2020-03-13 01:49 - 000019456 _____ (Microsoft Corporation) C:\WINDOWS\system32\mpnotify.exe
2020-03-13 01:49 - 2020-03-13 01:49 - 000016912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pciide.sys
2020-03-13 01:49 - 2020-03-13 01:49 - 000015872 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsmplpxy.dll
2020-03-13 01:49 - 2020-03-13 01:49 - 000003584 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmCertResources.dll
2020-03-13 01:49 - 2020-03-13 01:49 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\TelephonyInteractiveUserRes.dll
2020-03-13 00:55 - 2020-02-11 05:48 - 000390656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\poqexec.exe
2020-03-13 00:55 - 2020-02-11 05:37 - 000492544 _____ (Microsoft Corporation) C:\WINDOWS\system32\poqexec.exe
2020-03-10 17:07 - 2020-03-14 17:18 - 000000000 ____D C:\Program Files\Mozilla Firefox
2020-02-27 23:51 - 2020-02-27 23:55 - 008236576 _____ C:\Users\twist\Desktop\charles-philippe_devoir_macalculatrice.rar
2020-02-27 23:39 - 2020-02-27 23:51 - 000000000 ____D C:\Users\twist\Desktop\Macalculatrice
2020-02-27 09:23 - 2020-02-27 09:23 - 000000000 ____D C:\Users\twist\.AndroidStudio3.6
2020-02-26 18:32 - 2020-02-26 18:32 - 000000016 _____ C:\Users\twist\.emulator_console_auth_token
2020-02-23 23:58 - 2020-02-24 00:05 - 000000000 ____D C:\Users\twist\AppData\Roaming\FileZilla
2020-02-23 23:58 - 2020-02-24 00:05 - 000000000 ____D C:\Users\twist\AppData\Local\FileZilla
2020-02-23 23:58 - 2020-02-23 23:58 - 000000000 ____D C:\Program Files\McAfee
2020-02-23 23:56 - 2020-02-23 23:56 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FileZilla FTP Client
2020-02-23 23:55 - 2020-02-23 23:57 - 000000000 ____D C:\Program Files\FileZilla FTP Client

==================== Un mois (modifiés) ==================

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2020-03-23 11:04 - 2019-03-19 05:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-03-23 10:55 - 2018-05-18 23:03 - 000000000 ____D C:\Users\twist\AppData\LocalLow\Mozilla
2020-03-23 09:22 - 2018-12-08 17:54 - 000000000 ____D C:\Users\twist\AppData\Roaming\audacity
2020-03-23 08:51 - 2019-03-19 05:52 - 000000000 ___HD C:\Program Files\WindowsApps
2020-03-23 08:51 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\AppReadiness
2020-03-23 08:09 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2020-03-23 08:09 - 2019-03-19 05:50 - 000000000 ____D C:\WINDOWS\INF
2020-03-23 07:57 - 2019-09-06 13:04 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2020-03-23 07:32 - 2016-09-17 09:38 - 000000000 ____D C:\ProgramData\Hewlett-Packard
2020-03-23 00:20 - 2018-09-08 13:41 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2020-03-23 00:20 - 2018-05-18 21:48 - 000000000 __SHD C:\Users\twist\IntelGraphicsProfiles
2020-03-23 00:13 - 2019-09-06 13:44 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2020-03-23 00:13 - 2019-03-19 05:37 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2020-03-23 00:11 - 2018-09-08 14:19 - 000000000 ____D C:\Users\twist\AppData\Roaming\Hewlett-Packard
2020-03-23 00:11 - 2018-09-08 14:19 - 000000000 ____D C:\Users\twist\AppData\Local\HP
2020-03-23 00:11 - 2018-09-08 14:19 - 000000000 ____D C:\Users\twist\AppData\Local\Hewlett-Packard
2020-03-23 00:11 - 2016-09-17 10:34 - 000000000 ____D C:\ProgramData\HP
2020-03-23 00:11 - 2016-09-17 09:40 - 000000000 ____D C:\Program Files (x86)\Hewlett-Packard
2020-03-23 00:11 - 2016-04-15 11:45 - 000000000 ____D C:\Program Files\HP
2020-03-23 00:11 - 2016-04-09 08:56 - 000000000 ___HD C:\hp
2020-03-23 00:10 - 2018-02-26 13:40 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lavasoft
2020-03-22 19:02 - 2018-09-08 15:28 - 000000000 ____D C:\Users\twist\AppData\Local\CrashDumps
2020-03-22 03:46 - 2018-09-08 14:20 - 000000000 ____D C:\Users\twist\AppData\Local\PlaceholderTileLogoFolder
2020-03-22 03:20 - 2018-09-08 14:15 - 000000000 ____D C:\Users\twist\AppData\Local\Packages
2020-03-22 03:05 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\ShellExperiences
2020-03-22 03:05 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\bcastdvr
2020-03-22 03:04 - 2019-09-06 13:16 - 000000000 ____D C:\Users\twist
2020-03-22 00:04 - 2019-09-06 13:16 - 000000000 ____D C:\Users\Administrateur.LAPTOP-7AC8CGGP
2020-03-21 22:17 - 2019-03-19 05:37 - 000000000 ____D C:\WINDOWS\CbsTemp
2020-03-21 00:35 - 2019-08-18 13:08 - 000153312 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys
2020-03-21 00:35 - 2019-08-18 13:08 - 000020936 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamElam.sys
2020-03-21 00:22 - 2018-09-08 14:13 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2020-03-20 23:58 - 2019-11-25 09:07 - 000000000 ____D C:\Users\twist\AppData\Local\cache
2020-03-20 23:06 - 2019-09-06 13:44 - 000003590 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2020-03-20 23:06 - 2019-09-06 13:44 - 000003466 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2020-03-20 01:59 - 2018-09-08 15:24 - 000000000 ____D C:\Users\twist\AppData\Roaming\vlc
2020-03-20 00:09 - 2019-03-28 21:47 - 000000000 ____D C:\Users\twist\AppData\Roaming\Molotov
2020-03-18 21:45 - 2018-09-08 15:10 - 000002266 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-03-18 21:45 - 2018-09-08 15:10 - 000002225 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2020-03-18 12:49 - 2019-11-04 16:42 - 000000000 ____D C:\workspaceSTM32
2020-03-18 12:07 - 2017-07-22 19:34 - 000000000 ____D C:\Jeux
2020-03-17 23:31 - 2019-09-06 13:29 - 002890136 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2020-03-17 23:31 - 2019-09-06 13:03 - 000817302 _____ C:\WINDOWS\system32\perfh019.dat
2020-03-17 23:31 - 2019-09-06 13:03 - 000176204 _____ C:\WINDOWS\system32\perfc019.dat
2020-03-17 23:31 - 2019-03-19 13:00 - 000815002 _____ C:\WINDOWS\system32\perfh00C.dat
2020-03-17 23:31 - 2019-03-19 13:00 - 000159780 _____ C:\WINDOWS\system32\perfc00C.dat
2020-03-14 17:32 - 2018-05-18 21:48 - 000000000 ___RD C:\Users\twist\3D Objects
2020-03-14 17:32 - 2015-11-02 19:02 - 000000000 __RHD C:\Users\Public\AccountPictures
2020-03-14 17:19 - 2019-09-06 13:03 - 000474232 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2020-03-14 17:18 - 2018-09-08 14:59 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2020-03-14 17:14 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2020-03-14 17:14 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2020-03-14 17:14 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\SystemResources
2020-03-14 17:14 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2020-03-14 17:14 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\setup
2020-03-14 17:13 - 2019-03-19 05:52 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2020-03-14 17:13 - 2019-03-19 05:52 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2020-03-14 17:13 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\oobe
2020-03-14 17:13 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\Dism
2020-03-14 17:13 - 2019-03-19 05:52 - 000000000 ____D C:\Program Files\Windows Defender
2020-03-14 17:13 - 2019-03-19 05:37 - 000000000 ____D C:\WINDOWS\servicing
2020-03-13 11:24 - 2018-09-08 14:47 - 000000000 ____D C:\WINDOWS\system32\MRT
2020-03-13 10:31 - 2018-09-08 14:46 - 121542864 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2020-03-11 10:27 - 2020-01-21 12:46 - 000000000 ____D C:\Users\twist\Desktop\images
2020-03-11 08:51 - 2018-09-08 14:59 - 000001012 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2020-03-10 00:38 - 2019-10-10 08:57 - 000000000 ____D C:\Users\twist\Desktop\travail
2020-03-09 11:15 - 2018-05-18 23:08 - 000000000 ____D C:\Users\twist\Desktop\cours
2020-03-08 19:31 - 2018-05-19 01:12 - 000000000 ___RD C:\Users\twist\Documents\Scanned Documents
2020-02-29 16:21 - 2019-04-10 19:41 - 000000000 ____D C:\Users\twist\AppData\Roaming\Google
2020-02-27 13:48 - 2019-06-11 11:11 - 000000000 ____D C:\Users\twist\.android
2020-02-27 11:00 - 2019-06-11 11:40 - 000000000 ____D C:\Users\twist\AndroidStudioProjects
2020-02-25 10:31 - 2020-02-04 14:06 - 000017784 _____ C:\Users\twist\Desktop\theatres-et-salles-de-spectacles.csv
2020-02-24 00:04 - 2019-09-23 14:45 - 000000128 _____ C:\Users\twist\AppData\Local\PUTTY.RND
2020-02-23 23:58 - 2016-09-17 10:50 - 000000000 ____D C:\ProgramData\McAfee
2020-02-22 00:07 - 2018-05-18 22:28 - 000000000 ____D C:\Users\twist\.VirtualBox

==================== Fichiers à la racine de certains dossiers ========

2019-10-22 09:11 - 2019-10-22 09:11 - 000001456 _____ () C:\Users\twist\AppData\Local\Adobe Enregistrer pour le Web 11.0 Prefs
2019-09-23 14:45 - 2020-02-24 00:04 - 000000128 _____ () C:\Users\twist\AppData\Local\PUTTY.RND
2019-12-20 19:44 - 2019-12-20 19:44 - 000001235 _____ () C:\Users\twist\AppData\Local\recently-used.xbel
2019-11-24 02:19 - 2019-11-24 19:39 - 000007604 _____ () C:\Users\twist\AppData\Local\Resmon.ResmonCfg

==================== SigCheck ============================

(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)

==================== Fin de FRST.txt ========================