Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 10-06-2019 01
Exécuté par jmfig (administrateur) sur DESKTOP-EUHHVFM (HP HP 250 G4 Notebook PC) (12-06-2019 08:14:22)
Exécuté depuis C:\Users\jmfig\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\TempState\Downloads
Profils chargés: jmfig (Profils disponibles: jmfig)
Platform: Windows 10 Home Version 1809 17763.529 (X64) Langue: Français (France)
Navigateur par défaut: Edge
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processus (Avec liste blanche) =================

(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)

() [Fichier non signé] C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe
() [Fichier non signé] C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.46.60.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe
() [Fichier non signé] C:\Program Files\WindowsApps\Microsoft.YourPhone_1.19051.545.0_x64__8wekyb3d8bbwe\YourPhone.exe
(Adobe Systems, Incorporated -> Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iTunes_12095.7.41059.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe
(CyberLink Corp. -> ) C:\Program Files\CyberLink\Shared files\RichVideo64.exe
(CyberLink Corp. -> CyberLink Corp.) C:\Program Files (x86)\CyberLink\YouCam6\YouCamService6.exe
(Google Inc -> Google Inc.) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
(Google Inc -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.34.11\GoogleCrashHandler.exe
(Google Inc -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.34.11\GoogleCrashHandler64.exe
(Hewlett-Packard Company -> Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPWMISVC.exe
(HP Inc. -> HP Inc.) C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
(HP Inc. -> HP Inc.) C:\Program Files\HP\HP Touchpoint Analytics Client\TouchpointAnalyticsClientService.exe
(Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\TXE Components\DAL\jhi_service.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel(R) Software -> Intel Corporation) C:\Windows\SysWOW64\esif_uf.exe
(Intel(R) Software -> Intel Corporation) C:\Windows\Temp\DPTF\esif_assist_64.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\System32\WirelessKB850NotificationService.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
(Microsoft Corporation) [Fichier non signé] C:\Program Files (x86)\Microsoft Money\System\mnyexpr.exe
(Microsoft Corporation) [Fichier non signé] C:\Program Files (x86)\Microsoft Money\System\msmoney.exe
(Microsoft Corporation) [Fichier non signé] C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.46.60.0_x64__kzf8qxf38zg5c\SkypeApp.exe
(Microsoft Corporation) [Fichier non signé] C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.46.60.0_x64__kzf8qxf38zg5c\SkypeBridge\SkypeBridge.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\browser_broker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeSH.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Microsoft Windows Hardware Compatibility Publisher -> Realtek Semiconductor Corp.) C:\Windows\RtkBtManServ.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1905.4-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1905.4-0\NisSrv.exe
(Orange -> Orange) C:\Users\jmfig\AppData\Roaming\Orange\OrangeInside\OrangeInside.exe
(Realtek Semiconductor Corp -> ) C:\Program Files (x86)\Realtek\REALTEK Bluetooth\BTDevMgr.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor Corporation) C:\Program Files (x86)\Realtek\REALTEK Bluetooth\BTServer.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe

==================== Registre (Avec liste blanche) ===========================

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8911872 2016-10-15] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [BtServer] => C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTServer.exe [229592 2015-07-09] (Realtek Semiconductor Corp -> Realtek Semiconductor Corporation)
HKLM-x32\...\Run: [HPMessageService] => C:\Program Files (x86)\Hewlett-Packard\HP System Event\HPMSGSVC.exe [654088 2015-02-17] (Hewlett-Packard Company -> Hewlett-Packard Development Company, L.P.)
HKLM-x32\...\Run: [isa] => C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe [330240 2015-02-26] () [Fichier non signé]
HKLM-x32\...\Run: [PowerDVD14Agent] => C:\Program Files (x86)\CyberLink\PowerDVD14\PowerDVD14Agent.exe [795336 2015-10-29] (CyberLink Corp. -> CyberLink Corp.)
HKLM-x32\...\Run: [Start_OrangeWifi_{9d78a505-6248-4d1b-81b6-df69655beccf}] => C:\Program Files (x86)\Orange\wifi d'Orange\{9d78a505-6248-4d1b-81b6-df69655beccf}\OrangeWifi.exe [1944064 2014-03-26] () [Fichier non signé]
HKLM-x32\...\Run: [Start_Update_{9d78a505-6248-4d1b-81b6-df69655beccf}] => C:\Program Files (x86)\Orange\wifi d'Orange\{9d78a505-6248-4d1b-81b6-df69655beccf}\UpdteApp.exe [1013760 2014-03-26] () [Fichier non signé]
HKLM Group Policy restriction on software: %systemroot%\system32\mrt.exe <==== ATTENTION
HKU\S-1-5-21-1665738480-2676852349-3793447983-1001\...\Run: [MoneyAgent] => C:\Program Files (x86)\Microsoft Money\System\mnyexpr.exe [204863 2002-07-17] (Microsoft Corporation) [Fichier non signé]
HKU\S-1-5-21-1665738480-2676852349-3793447983-1001\...\Run: [EPSON Stylus DX6000 Series] => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_IATIBIE.EXE [213504 2007-10-05] (SEIKO EPSON Corporation -> SEIKO EPSON CORPORATION)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\74.0.3729.169\Installer\chrmstp.exe [2019-05-22] (Google LLC -> Google Inc.)
HKLM\Software\...\Authentication\Credential Providers: [{FA076B7A-C331-48e2-9EE9-7683A553739E}] -> C:\Program Files (x86)\CyberLink\YouCam6\CLCredProv\x64\CLCredProv.dll [2015-07-01] (CyberLink Corp. -> CyberLink)
HKLM\Software\...\Authentication\Credential Provider Filters: [{FA076B7A-C331-48e2-9EE9-7683A553739E}] -> C:\Program Files (x86)\CyberLink\YouCam6\CLCredProv\x64\CLCredProv.dll [2015-07-01] (CyberLink Corp. -> CyberLink)

==================== Tâches planifiées (Avec liste blanche) =============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

Task: {052B0BDA-94F0-440E-9485-BB1DC272769D} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [1488248 2018-12-10] (HP Inc. -> HP Inc.)
Task: {1B109942-9DC8-49C3-8DCF-DE68010620D6} - \Microsoft\Windows\UNP\RunCampaignManager -> Pas de fichier <==== ATTENTION
Task: {28CF3AFE-ED6E-44F2-9756-F37E24B2F85C} - System32\Tasks\Hewlett-Packard\HP Active Health\HP Active Health Scan (HPSA) => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe [25128 2017-11-17] (HP Inc. -> )
Task: {33835BC2-1459-4B1F-BA90-0A1ECAFC2C07} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1905.4-0\MpCmdRun.exe [469960 2019-06-06] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {381529BA-ED3A-4AA7-AC6A-49650679BA0D} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [1073528 2019-04-02] (HP Inc. -> HP Inc.)
Task: {3CEBFAD7-6EC8-43DF-8344-7B267ED81396} - System32\Tasks\HPCeeScheduleForjmfig => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [96568 2015-06-16] (Hewlett-Packard Company -> Hewlett-Packard)
Task: {3FBD40FE-98BF-4B03-AE61-F07D11DA4E00} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [1073528 2019-04-02] (HP Inc. -> HP Inc.)
Task: {40492189-9004-408D-98A0-73767ED6302E} - System32\Tasks\Microsoft\Windows\orangeinside => C:\Users\jmfig\AppData\Roaming\Orange\OrangeInside\OrangeInside.exe [1797360 2019-03-25] (Orange -> Orange)
Task: {406C2C8F-60B7-4BF1-867D-A134BD3054AF} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1905.4-0\MpCmdRun.exe [469960 2019-06-06] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {7698E9F4-643F-47C4-896C-1DFDB597921E} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1195544 2018-12-16] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Task: {7DAFF1CF-AD03-4189-AD8E-0877493F839C} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154440 2016-03-19] (Google Inc -> Google Inc.)
Task: {8D00632E-6B64-46C7-B7C6-5BA011D2FC8F} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Product Configurator => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\ProductConfig.exe [219512 2018-12-24] (HP Inc. -> HP Inc.)
Task: {92490DD0-F17B-4663-A960-E32C0077C631} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1905.4-0\MpCmdRun.exe [469960 2019-06-06] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {9A923975-C90C-468F-909E-9CB1EE26E290} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1905.4-0\MpCmdRun.exe [469960 2019-06-06] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {C1481446-6BDF-4224-ACB1-BA83F1FC6B5E} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154440 2016-03-19] (Google Inc -> Google Inc.)
Task: {C6CEB15E-AF81-4C73-9A1C-4EF2D92FA10D} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [651400 2017-09-20] (Hewlett Packard -> HP Inc.)
Task: {EA8961F8-5ABA-4E65-8849-04EA9A4551F6} - System32\Tasks\YCMServiceAgent => C:\Program Files (x86)\CyberLink\YouCam6\YouCamService6.exe [515512 2015-07-01] (CyberLink Corp. -> CyberLink Corp.)
Task: {F71D64BE-2913-44D7-B543-5D6A62F55223} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe [136056 2019-01-02] (HP Inc. -> HP Inc.)
Task: {F9378269-4CE3-489B-866B-6E8D9543D6E3} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [1488248 2018-12-10] (HP Inc. -> HP Inc.)

(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)

Task: C:\WINDOWS\Tasks\HPCeeScheduleForjmfig.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe

==================== Internet (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{31462ba9-0706-49a4-bbcb-f22ed0fb3d79}: [DhcpNameServer] 193.252.165.234
Tcpip\..\Interfaces\{9147ca5b-a608-43ae-ba68-5aad0c7444c7}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{9b7b9d7a-034c-4458-9711-4da52e5f603e}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{a11b4d36-5177-4562-8bdf-2889ad8f5731}: [DhcpNameServer] 193.252.165.234

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://fr.search.yahoo.com/yhs/web?hspart=iry&hsimp=yhs-fullyhosted_003&type=wbf_secureddownload_17_52¶m1=1¶m2=f%3D1%26b%3DIE%26cc%3Dfr%26pa%3Dwincy%26cd%3D2XzuyEtN2Y1L1Qzu0BtDyD0A0D0A0E0C0AzztBtBzyyC0CtBtN0D0Tzu0StBtCzzyCtN1L2XzuyEtFtBtCtFtDtFyDtCtN1L1CzutN1L1G1B1V1N2Y1L1Qzu2SyCtBzyzz0C0CyBtDtGtDtAyBzztGyEyCtDzztGyDtAyD0BtGyDzyzz0ByC0ByDzytAtC0B0E2QtN1M1F1B2Z1V1N2Y1L1Qzu2S1S1OtDtCzzzztAtDtG1Q1PtDtAtGyEtC1RyCtGzzzzyEtBtG1PzytDtDyD1OyByByE1Q1SyC2QtN0A0LzuyEtN1B2Z1V1T1S1NzutN1Q2Z1B1P1RzutCyDtCyEtBzzyEtDyDzy%26cr%3D1062281141%26a%3Dwbf_secureddownload_17_52%26os_ver%3D10.0%26os%3DWindows%2B10%2BHome
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://hp15-comm.msn.com/?pc=HRTE
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://hp15-comm.msn.com/?pc=HRTE
HKU\S-1-5-21-1665738480-2676852349-3793447983-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://r.orange.fr/r/Oodc_oi_odc?ref=O_OI_defaultPage_IEe64_w10e64_odc
HKU\S-1-5-21-1665738480-2676852349-3793447983-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://hp15-comm.msn.com/?pc=HRTE
HKU\S-1-5-21-1665738480-2676852349-3793447983-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://r.orange.fr/r/Oodc_IE_oi_v2?ref=O_OI_defaultPage_IE_odc
hxxp://r.orange.fr/r/Oodc_IE_oi_v2?ref=O_OI_defaultPage_IE_promoHP|hxxp://r.orange.fr/r/Oodc_IE_oi?ref=O_OI_defaultPage_IE_odc|hxxp://go.microsoft.com/fwlink/p/?LinkId=619797&pc=UE01&ocid=UE01DHP|hxxp://r.orange.fr/r/Ohome_portail?ref=O_OI_defaultPage_IE|www.asus.com
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://fr.search.yahoo.com/yhs/search?hspart=iry&hsimp=yhs-fullyhosted_003&type=wbf_secureddownload_17_52¶m1=1¶m2=f%3D4%26b%3DIE%26cc%3Dfr%26pa%3Dwincy%26cd%3D2XzuyEtN2Y1L1Qzu0BtDyD0A0D0A0E0C0AzztBtBzyyC0CtBtN0D0Tzu0StBtCzzyCtN1L2XzuyEtFtBtCtFtDtFyDtCtN1L1CzutN1L1G1B1V1N2Y1L1Qzu2SyCtBzyzz0C0CyBtDtGtDtAyBzztGyEyCtDzztGyDtAyD0BtGyDzyzz0ByC0ByDzytAtC0B0E2QtN1M1F1B2Z1V1N2Y1L1Qzu2S1S1OtDtCzzzztAtDtG1Q1PtDtAtGyEtC1RyCtGzzzzyEtBtG1PzytDtDyD1OyByByE1Q1SyC2QtN0A0LzuyEtN1B2Z1V1T1S1NzutN1Q2Z1B1P1RzutCyDtCyEtBzzyEtDyDzy%26cr%3D1062281141%26a%3Dwbf_secureddownload_17_52%26os_ver%3D10.0%26os%3DWindows%2B10%2BHome&p={searchTerms}
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://fr.search.yahoo.com/yhs/search?hspart=iry&hsimp=yhs-fullyhosted_003&type=wbf_secureddownload_17_52¶m1=1¶m2=f%3D4%26b%3DIE%26cc%3Dfr%26pa%3Dwincy%26cd%3D2XzuyEtN2Y1L1Qzu0BtDyD0A0D0A0E0C0AzztBtBzyyC0CtBtN0D0Tzu0StBtCzzyCtN1L2XzuyEtFtBtCtFtDtFyDtCtN1L1CzutN1L1G1B1V1N2Y1L1Qzu2SyCtBzyzz0C0CyBtDtGtDtAyBzztGyEyCtDzztGyDtAyD0BtGyDzyzz0ByC0ByDzytAtC0B0E2QtN1M1F1B2Z1V1N2Y1L1Qzu2S1S1OtDtCzzzztAtDtG1Q1PtDtAtGyEtC1RyCtGzzzzyEtBtG1PzytDtDyD1OyByByE1Q1SyC2QtN0A0LzuyEtN1B2Z1V1T1S1NzutN1Q2Z1B1P1RzutCyDtCyEtBzzyEtDyDzy%26cr%3D1062281141%26a%3Dwbf_secureddownload_17_52%26os_ver%3D10.0%26os%3DWindows%2B10%2BHome&p={searchTerms}
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://fr.search.yahoo.com/yhs/search?hspart=iry&hsimp=yhs-fullyhosted_003&type=wbf_secureddownload_17_52¶m1=1¶m2=f%3D4%26b%3DIE%26cc%3Dfr%26pa%3Dwincy%26cd%3D2XzuyEtN2Y1L1Qzu0BtDyD0A0D0A0E0C0AzztBtBzyyC0CtBtN0D0Tzu0StBtCzzyCtN1L2XzuyEtFtBtCtFtDtFyDtCtN1L1CzutN1L1G1B1V1N2Y1L1Qzu2SyCtBzyzz0C0CyBtDtGtDtAyBzztGyEyCtDzztGyDtAyD0BtGyDzyzz0ByC0ByDzytAtC0B0E2QtN1M1F1B2Z1V1N2Y1L1Qzu2S1S1OtDtCzzzztAtDtG1Q1PtDtAtGyEtC1RyCtGzzzzyEtBtG1PzytDtDyD1OyByByE1Q1SyC2QtN0A0LzuyEtN1B2Z1V1T1S1NzutN1Q2Z1B1P1RzutCyDtCyEtBzzyEtDyDzy%26cr%3D1062281141%26a%3Dwbf_secureddownload_17_52%26os_ver%3D10.0%26os%3DWindows%2B10%2BHome&p={searchTerms}
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://fr.search.yahoo.com/yhs/search?hspart=iry&hsimp=yhs-fullyhosted_003&type=wbf_secureddownload_17_52¶m1=1¶m2=f%3D4%26b%3DIE%26cc%3Dfr%26pa%3Dwincy%26cd%3D2XzuyEtN2Y1L1Qzu0BtDyD0A0D0A0E0C0AzztBtBzyyC0CtBtN0D0Tzu0StBtCzzyCtN1L2XzuyEtFtBtCtFtDtFyDtCtN1L1CzutN1L1G1B1V1N2Y1L1Qzu2SyCtBzyzz0C0CyBtDtGtDtAyBzztGyEyCtDzztGyDtAyD0BtGyDzyzz0ByC0ByDzytAtC0B0E2QtN1M1F1B2Z1V1N2Y1L1Qzu2S1S1OtDtCzzzztAtDtG1Q1PtDtAtGyEtC1RyCtGzzzzyEtBtG1PzytDtDyD1OyByByE1Q1SyC2QtN0A0LzuyEtN1B2Z1V1T1S1NzutN1Q2Z1B1P1RzutCyDtCyEtBzzyEtDyDzy%26cr%3D1062281141%26a%3Dwbf_secureddownload_17_52%26os_ver%3D10.0%26os%3DWindows%2B10%2BHome&p={searchTerms}
BHO-x32: Pas de nom -> {243B17DE-77C7-46BF-B94B-0B5F309A0E64} -> C:\Program Files (x86)\Microsoft Money\System\mnyside.dll [2002-07-17] (Microsoft Corporation) [Fichier non signé]
BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2016-07-21] (Hewlett-Packard Company -> HP Inc.)
BHO-x32: Pas de nom -> {FDD3B846-8D59-4ffb-8758-209B6AD74ACC} -> Pas de fichier

Edge:
======
Edge Extension: (Translator pour Microsoft Edge) -> MicrosoftTranslate_MicrosoftTranslatorforMicrosoftEdge_8wekyb3d8bbwe => C:\Program Files\WindowsApps\Microsoft.TranslatorforMicrosoftEdge_0.91.51.0_neutral__8wekyb3d8bbwe [2019-02-05]

FireFox:
========
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\windows\SysWOW64\Adobe\Director\np32dsw_1217157.dll [2015-02-05] (Adobe Systems, Inc.) [Fichier non signé]
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.56 -> C:\Program Files (x86)\Intel\TXE Components\IPT\npIntelWebAPIIPT.dll [2014-07-01] (Intel(R) Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\TXE Components\IPT\npIntelWebAPIUpdater.dll [2014-07-01] (Intel(R) Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.34.11\npGoogleUpdate3.dll [2019-05-15] (Google Inc -> Google LLC)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.34.11\npGoogleUpdate3.dll [2019-05-15] (Google Inc -> Google LLC)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2019-05-03] (Adobe Inc. -> Adobe Systems Inc.)

Chrome:
=======
CHR DefaultProfile: Default
CHR DefaultSearchURL: Default -> hxxp://srchbar.com/?q={searchTerms}
CHR DefaultSuggestURL: Default -> hxxp://srch.bar/?s={searchTerms}
CHR Profile: C:\Users\jmfig\AppData\Local\Google\Chrome\User Data\Default [2019-06-06]
CHR Extension: (Slides) - C:\Users\jmfig\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-25]
CHR Extension: (Docs) - C:\Users\jmfig\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-25]
CHR Extension: (Google Drive) - C:\Users\jmfig\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-03-07]
CHR Extension: (YouTube) - C:\Users\jmfig\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-03-07]
CHR Extension: (Sheets) - C:\Users\jmfig\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-25]
CHR Extension: (Google Docs hors connexion) - C:\Users\jmfig\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-09-02]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\jmfig\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-04-07]
CHR Extension: (Gmail) - C:\Users\jmfig\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-05-10]
CHR Extension: (Chrome Media Router) - C:\Users\jmfig\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-06-06]
CHR Profile: C:\Users\jmfig\AppData\Local\Google\Chrome\User Data\Guest Profile [2019-02-13]
CHR Profile: C:\Users\jmfig\AppData\Local\Google\Chrome\User Data\System Profile [2018-12-01]
CHR HKLM\...\Chrome\Extension: [nahhmpbckpgdidfnmfkfgiflpjijilce] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [pilplloabdedfmialnfchjomjmpjcoej] - hxxps://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-1665738480-2676852349-3793447983-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [nahhmpbckpgdidfnmfkfgiflpjijilce] - hxxps://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-1665738480-2676852349-3793447983-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [pilplloabdedfmialnfchjomjmpjcoej] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [nahhmpbckpgdidfnmfkfgiflpjijilce] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [pilplloabdedfmialnfchjomjmpjcoej] - hxxps://clients2.google.com/service/update2/crx

==================== Services (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R2 BTDevManager; C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTDevMgr.exe [125656 2015-09-18] (Realtek Semiconductor Corp -> )
R2 esifsvc; C:\WINDOWS\SysWOW64\esif_uf.exe [1385640 2015-08-18] (Intel(R) Software -> Intel Corporation)
R2 HPSupportSolutionsFrameworkService; c:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [347512 2018-12-06] (HP Inc. -> HP Inc.)
R2 HPTouchpointAnalyticsService; C:\Program Files\HP\HP Touchpoint Analytics Client\TouchpointAnalyticsClientService.exe [332216 2017-11-22] (HP Inc. -> HP Inc.)
R2 HPWMISVC; c:\Program Files (x86)\Hewlett-Packard\HP System Event\HPWMISVC.exe [608520 2015-02-17] (Hewlett-Packard Company -> Hewlett-Packard Development Company, L.P.)
R2 igfxCUIService2.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [370640 2019-02-25] (Intel Corporation -> Intel Corporation)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\TXE Components\TCS\SocketHeciServer.exe [881152 2015-05-22] (Intel® Trusted Connect Service -> Intel(R) Corporation)
R3 Intel(R) Security Assist; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe [330240 2015-02-26] () [Fichier non signé]
S2 isaHelperSvc; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe [7680 2015-02-26] () [Fichier non signé]
R2 jhi_service; C:\Program Files (x86)\Intel\TXE Components\DAL\jhi_service.exe [174368 2015-04-21] (Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation)
R2 RichVideo64; C:\Program Files\CyberLink\Shared files\RichVideo64.exe [389896 2014-04-14] (CyberLink Corp. -> )
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [326656 2016-10-15] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
R2 RtkBtManServ; C:\WINDOWS\RtkBtManServ.exe [687072 2018-05-31] (Microsoft Windows Hardware Compatibility Publisher -> Realtek Semiconductor Corp.)
R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [278616 2017-08-18] (Synaptics Incorporated -> Synaptics Incorporated)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1905.4-0\NisSrv.exe [2433136 2019-06-06] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1905.4-0\MsMpEng.exe [109896 2019-06-06] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WirelessKB850NotificationService; C:\WINDOWS\system32\WirelessKB850NotificationService.exe [176624 2018-05-14] (Microsoft Corporation -> Microsoft Corporation)

===================== Pilotes (Avec liste blanche) ======================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

S3 BR_MCU; C:\WINDOWS\System32\Drivers\br_mcu2usb.sys [23552 2009-12-08] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider)
R3 clwvd6; C:\WINDOWS\system32\DRIVERS\clwvd6.sys [41704 2013-10-29] (CyberLink Corp. -> CyberLink Corporation)
R3 dc3d; C:\WINDOWS\System32\drivers\dc3d.sys [47616 2016-02-18] (Hardware Group Test Cert -> Microsoft Corporation)
R3 dptf_acpi; C:\WINDOWS\System32\drivers\dptf_acpi.sys [55816 2015-08-18] (Intel(R) Software -> Intel Corporation)
R3 dptf_cpu; C:\WINDOWS\System32\drivers\dptf_cpu.sys [53752 2015-08-18] (Intel(R) Software -> Intel Corporation)
R3 esif_lf; C:\WINDOWS\system32\DRIVERS\esif_lf.sys [261624 2015-08-18] (Intel(R) Software -> Intel Corporation)
R3 igfxLP; C:\WINDOWS\system32\DRIVERS\igdkmd64lp.sys [7408576 2019-02-25] (Intel Corporation -> Intel Corporation)
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [895256 2015-06-18] (Realtek Semiconductor Corp -> Realtek )
R3 RtkBtFilter; C:\WINDOWS\System32\drivers\RtkBtfilter.sys [784264 2018-05-31] (Realtek Semiconductor Corp. -> Realtek Semiconductor Corporation)
R3 RTWlanE; C:\WINDOWS\System32\drivers\rtwlane.sys [7904088 2018-04-20] (Realtek Semiconductor Corp. -> Realtek Semiconductor Corporation )
S3 SmbDrv; C:\WINDOWS\System32\drivers\Smb_driver_AMDASF.sys [33448 2015-07-13] (Synaptics Incorporated -> Synaptics Incorporated)
R3 SmbDrvI; C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys [55384 2017-08-18] (Synaptics Incorporated -> Synaptics Incorporated)
R3 TXEIx64; C:\WINDOWS\System32\drivers\TXEIx64.sys [146232 2015-06-26] (Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [47496 2019-06-06] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [337632 2019-06-06] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [53984 2019-06-06] (Microsoft Windows -> Microsoft Corporation)
R3 WirelessButtonDriver64; C:\WINDOWS\System32\drivers\WirelessButtonDriver64.sys [35392 2019-05-16] (HP Inc. -> HP)
R3 WirelessKeyboardFilter; C:\WINDOWS\System32\drivers\WirelessKeyboardFilter.sys [49896 2016-07-22] (Microsoft Corporation -> Microsoft Corporation)
U3 aspnet_state; pas de ImagePath

==================== NetSvcs (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)


==================== Un mois (créés) ========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2019-06-12 08:13 - 2019-06-12 08:14 - 000000000 ____D C:\FRST
2019-06-07 12:26 - 2019-06-07 12:27 - 000000000 ___HD C:\$WINDOWS.~BT
2019-05-25 09:20 - 2019-05-25 09:20 - 000090028 _____ C:\Users\jmfig\Documents\véolia fact 1033488869.pdf
2019-05-23 16:07 - 2019-05-23 16:07 - 026809856 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2019-05-23 16:07 - 2019-05-23 16:07 - 023439360 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2019-05-23 16:07 - 2019-05-23 16:07 - 020816384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2019-05-23 16:07 - 2019-05-23 16:07 - 018999808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2019-05-23 16:07 - 2019-05-23 16:07 - 012869120 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2019-05-23 16:07 - 2019-05-23 16:07 - 012162048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2019-05-23 16:07 - 2019-05-23 16:07 - 007724992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2019-05-23 16:07 - 2019-05-23 16:07 - 005112792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2019-05-23 16:07 - 2019-05-23 16:07 - 002096128 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2019-05-23 16:07 - 2019-05-23 16:07 - 002017280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2019-05-23 16:07 - 2019-05-23 16:07 - 001750016 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2019-05-23 16:07 - 2019-05-23 16:07 - 001309696 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll
2019-05-23 16:07 - 2019-05-23 16:07 - 001260048 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2019-05-23 16:07 - 2019-05-23 16:07 - 000912384 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll
2019-05-23 16:07 - 2019-05-23 16:07 - 000898048 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll
2019-05-23 16:07 - 2019-05-23 16:07 - 000833024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll
2019-05-23 16:07 - 2019-05-23 16:07 - 000804352 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2019-05-23 16:07 - 2019-05-23 16:07 - 000791040 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2019-05-23 16:07 - 2019-05-23 16:07 - 000669184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2019-05-23 16:07 - 2019-05-23 16:07 - 000667136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fveapi.dll
2019-05-23 16:07 - 2019-05-23 16:07 - 000663040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EdgeManager.dll
2019-05-23 16:07 - 2019-05-23 16:07 - 000398848 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2019-05-23 16:07 - 2019-05-23 16:07 - 000375296 _____ (Microsoft Corporation) C:\WINDOWS\system32\esentutl.exe
2019-05-23 16:07 - 2019-05-23 16:07 - 000370688 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapibase.dll
2019-05-23 16:07 - 2019-05-23 16:07 - 000351744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll
2019-05-23 16:07 - 2019-05-23 16:07 - 000345600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2019-05-23 16:07 - 2019-05-23 16:07 - 000331264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\esentutl.exe
2019-05-23 16:07 - 2019-05-23 16:07 - 000311808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fveapibase.dll
2019-05-23 16:07 - 2019-05-23 16:07 - 000287912 _____ (Microsoft Corporation) C:\WINDOWS\system32\SIHClient.exe
2019-05-23 16:07 - 2019-05-23 16:07 - 000228352 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2019-05-23 16:06 - 2019-05-23 16:06 - 017484800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2019-05-23 16:06 - 2019-05-23 16:06 - 015221248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2019-05-23 16:06 - 2019-05-23 16:06 - 009682744 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2019-05-23 16:06 - 2019-05-23 16:06 - 007884288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2019-05-23 16:06 - 2019-05-23 16:06 - 007645608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2019-05-23 16:06 - 2019-05-23 16:06 - 006926336 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2019-05-23 16:06 - 2019-05-23 16:06 - 006545280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2019-05-23 16:06 - 2019-05-23 16:06 - 006441472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2019-05-23 16:06 - 2019-05-23 16:06 - 006309040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2019-05-23 16:06 - 2019-05-23 16:06 - 005764608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2019-05-23 16:06 - 2019-05-23 16:06 - 005297152 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdp.dll
2019-05-23 16:06 - 2019-05-23 16:06 - 005086208 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2019-05-23 16:06 - 2019-05-23 16:06 - 004627456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2019-05-23 16:06 - 2019-05-23 16:06 - 004588536 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2019-05-23 16:06 - 2019-05-23 16:06 - 003983872 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeContent.dll
2019-05-23 16:06 - 2019-05-23 16:06 - 003637248 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2019-05-23 16:06 - 2019-05-23 16:06 - 003426816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdp.dll
2019-05-23 16:06 - 2019-05-23 16:06 - 003384832 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2019-05-23 16:06 - 2019-05-23 16:06 - 003344896 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll
2019-05-23 16:06 - 2019-05-23 16:06 - 003270144 _____ (Microsoft Corporation) C:\WINDOWS\system32\esent.dll
2019-05-23 16:06 - 2019-05-23 16:06 - 002999808 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2019-05-23 16:06 - 2019-05-23 16:06 - 002777736 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2019-05-23 16:06 - 2019-05-23 16:06 - 002690048 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebRuntimeManager.dll
2019-05-23 16:06 - 2019-05-23 16:06 - 002638336 _____ (Microsoft Corporation) C:\WINDOWS\system32\smartscreen.exe
2019-05-23 16:06 - 2019-05-23 16:06 - 002627600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2019-05-23 16:06 - 2019-05-23 16:06 - 002421760 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2019-05-23 16:06 - 2019-05-23 16:06 - 002276192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2019-05-23 16:06 - 2019-05-23 16:06 - 002189312 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2019-05-23 16:06 - 2019-05-23 16:06 - 001860608 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2019-05-23 16:06 - 2019-05-23 16:06 - 001761280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2019-05-23 16:06 - 2019-05-23 16:06 - 001700312 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2019-05-23 16:06 - 2019-05-23 16:06 - 001644544 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2019-05-23 16:06 - 2019-05-23 16:06 - 001618944 ____R (The ICU Project) C:\WINDOWS\SysWOW64\icuin.dll
2019-05-23 16:06 - 2019-05-23 16:06 - 001605120 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2019-05-23 16:06 - 2019-05-23 16:06 - 001483872 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2019-05-23 16:06 - 2019-05-23 16:06 - 001471040 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2019-05-23 16:06 - 2019-05-23 16:06 - 001462272 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2019-05-23 16:06 - 2019-05-23 16:06 - 001387520 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvruserservice.dll
2019-05-23 16:06 - 2019-05-23 16:06 - 001342904 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2019-05-23 16:06 - 2019-05-23 16:06 - 001315328 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnapps.dll
2019-05-23 16:06 - 2019-05-23 16:06 - 001313792 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll
2019-05-23 16:06 - 2019-05-23 16:06 - 001256448 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcore.dll
2019-05-23 16:06 - 2019-05-23 16:06 - 001255936 _____ (Microsoft Corporation) C:\WINDOWS\system32\usermgr.dll
2019-05-23 16:06 - 2019-05-23 16:06 - 001254912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll
2019-05-23 16:06 - 2019-05-23 16:06 - 001180184 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2019-05-23 16:06 - 2019-05-23 16:06 - 001072640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpcore.dll
2019-05-23 16:06 - 2019-05-23 16:06 - 001054712 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe
2019-05-23 16:06 - 2019-05-23 16:06 - 001032704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2019-05-23 16:06 - 2019-05-23 16:06 - 001005056 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2019-05-23 16:06 - 2019-05-23 16:06 - 001000448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpnapps.dll
2019-05-23 16:06 - 2019-05-23 16:06 - 000998912 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2019-05-23 16:06 - 2019-05-23 16:06 - 000971776 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2019-05-23 16:06 - 2019-05-23 16:06 - 000887808 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
2019-05-23 16:06 - 2019-05-23 16:06 - 000787456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Web.Core.dll
2019-05-23 16:06 - 2019-05-23 16:06 - 000769536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
2019-05-23 16:06 - 2019-05-23 16:06 - 000758688 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcblaunch.exe
2019-05-23 16:06 - 2019-05-23 16:06 - 000756736 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll
2019-05-23 16:06 - 2019-05-23 16:06 - 000735232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.dll
2019-05-23 16:06 - 2019-05-23 16:06 - 000699392 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Language.dll
2019-05-23 16:06 - 2019-05-23 16:06 - 000692736 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadcloudap.dll
2019-05-23 16:06 - 2019-05-23 16:06 - 000615440 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys
2019-05-23 16:06 - 2019-05-23 16:06 - 000586040 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2019-05-23 16:06 - 2019-05-23 16:06 - 000570368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Web.dll
2019-05-23 16:06 - 2019-05-23 16:06 - 000555232 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppResolver.dll
2019-05-23 16:06 - 2019-05-23 16:06 - 000543744 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2019-05-23 16:06 - 2019-05-23 16:06 - 000515152 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanager.dll
2019-05-23 16:06 - 2019-05-23 16:06 - 000476160 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2019-05-23 16:06 - 2019-05-23 16:06 - 000451104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\policymanager.dll
2019-05-23 16:06 - 2019-05-23 16:06 - 000430904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Classpnp.sys
2019-05-23 16:06 - 2019-05-23 16:06 - 000427688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppResolver.dll
2019-05-23 16:06 - 2019-05-23 16:06 - 000375544 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotifyIcon.exe
2019-05-23 16:06 - 2019-05-23 16:06 - 000365056 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationControllerPS.dll
2019-05-23 16:06 - 2019-05-23 16:06 - 000359936 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceEnroller.exe
2019-05-23 16:06 - 2019-05-23 16:06 - 000351232 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicSvc.dll
2019-05-23 16:06 - 2019-05-23 16:06 - 000340480 _____ (Microsoft Corporation) C:\WINDOWS\system32\credprovhost.dll
2019-05-23 16:06 - 2019-05-23 16:06 - 000282424 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2019-05-23 16:06 - 2019-05-23 16:06 - 000280576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\credprovhost.dll
2019-05-23 16:06 - 2019-05-23 16:06 - 000279040 _____ (Microsoft Corporation) C:\WINDOWS\system32\srvsvc.dll
2019-05-23 16:06 - 2019-05-23 16:06 - 000275456 _____ (Microsoft Corporation) C:\WINDOWS\system32\storewuauth.dll
2019-05-23 16:06 - 2019-05-23 16:06 - 000262160 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys
2019-05-23 16:06 - 2019-05-23 16:06 - 000257024 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicCapsule.dll
2019-05-23 16:06 - 2019-05-23 16:06 - 000247608 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthAgent.dll
2019-05-23 16:06 - 2019-05-23 16:06 - 000246784 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmregistration.dll
2019-05-23 16:06 - 2019-05-23 16:06 - 000201728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mdmregistration.dll
2019-05-23 16:06 - 2019-05-23 16:06 - 000177152 _____ (Microsoft Corporation) C:\WINDOWS\system32\spacebridge.dll
2019-05-23 16:06 - 2019-05-23 16:06 - 000177152 _____ (Microsoft Corporation) C:\WINDOWS\system32\LanguageComponentsInstaller.dll
2019-05-23 16:06 - 2019-05-23 16:06 - 000165376 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompPkgSrv.exe
2019-05-23 16:06 - 2019-05-23 16:06 - 000152400 _____ (Microsoft Corporation) C:\WINDOWS\system32\KerbClientShared.dll
2019-05-23 16:06 - 2019-05-23 16:06 - 000114648 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompPkgSup.dll
2019-05-23 16:06 - 2019-05-23 16:06 - 000111104 _____ (Microsoft Corporation) C:\WINDOWS\system32\AxInstSv.dll
2019-05-23 16:06 - 2019-05-23 16:06 - 000108544 _____ (Microsoft Corporation) C:\WINDOWS\system32\usoapi.dll
2019-05-23 16:06 - 2019-05-23 16:06 - 000091424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CompPkgSup.dll
2019-05-23 16:06 - 2019-05-23 16:06 - 000076288 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicAgent.exe
2019-05-23 16:06 - 2019-05-23 16:06 - 000070144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usoapi.dll
2019-05-23 16:06 - 2019-05-23 16:06 - 000069120 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups.dll
2019-05-23 16:06 - 2019-05-23 16:06 - 000068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBrokerUI.dll
2019-05-23 16:06 - 2019-05-23 16:06 - 000060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\AssignedAccessRuntime.dll
2019-05-23 16:06 - 2019-05-23 16:06 - 000051712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBrokerUI.dll
2019-05-23 16:06 - 2019-05-23 16:06 - 000048128 _____ (Microsoft Corporation) C:\WINDOWS\system32\UsoClient.exe
2019-05-23 16:06 - 2019-05-23 16:06 - 000047104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AssignedAccessRuntime.dll
2019-05-23 16:06 - 2019-05-23 16:06 - 000035840 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups2.dll
2019-05-23 16:06 - 2019-05-23 16:06 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth8.bin
2019-05-23 16:06 - 2019-05-23 16:06 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth7.bin
2019-05-23 16:06 - 2019-05-23 16:06 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth6.bin
2019-05-23 16:06 - 2019-05-23 16:06 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth5.bin
2019-05-23 16:06 - 2019-05-23 16:06 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth4.bin
2019-05-23 16:06 - 2019-05-23 16:06 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth3.bin
2019-05-23 16:06 - 2019-05-23 16:06 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth2.bin
2019-05-23 16:06 - 2019-05-23 16:06 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth1.bin
2019-05-23 16:05 - 2019-05-23 16:05 - 007687576 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2019-05-23 16:05 - 2019-05-23 16:05 - 002928640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\esent.dll
2019-05-23 16:05 - 2019-05-23 16:05 - 002707968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2019-05-23 16:05 - 2019-05-23 16:05 - 001860096 ____R (The ICU Project) C:\WINDOWS\system32\icuin.dll
2019-05-23 16:05 - 2019-05-23 16:05 - 001298952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2019-05-23 16:05 - 2019-05-23 16:05 - 001253688 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2019-05-23 16:05 - 2019-05-23 16:05 - 001229312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys
2019-05-23 16:05 - 2019-05-23 16:05 - 001048592 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2019-05-23 16:05 - 2019-05-23 16:05 - 000924160 _____ (Microsoft Corporation) C:\WINDOWS\system32\samsrv.dll
2019-05-23 16:05 - 2019-05-23 16:05 - 000853504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2019-05-23 16:05 - 2019-05-23 16:05 - 000850760 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2019-05-23 16:05 - 2019-05-23 16:05 - 000773632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2019-05-23 16:05 - 2019-05-23 16:05 - 000651064 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2019-05-23 16:05 - 2019-05-23 16:05 - 000292664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msiscsi.sys
2019-05-23 16:05 - 2019-05-23 16:05 - 000240128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\winnat.sys
2019-05-23 16:05 - 2019-05-23 16:05 - 000196920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spacedump.sys
2019-05-23 16:05 - 2019-05-23 16:05 - 000165376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\spacebridge.dll
2019-05-23 16:05 - 2019-05-23 16:05 - 000125528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KerbClientShared.dll
2019-05-23 16:05 - 2019-05-23 16:05 - 000090632 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.dll
2019-05-23 16:05 - 2019-05-23 16:05 - 000090624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Microsoft.Bluetooth.Legacy.LEEnumerator.sys
2019-05-23 16:05 - 2019-05-23 16:05 - 000080400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hvservice.sys
2019-05-23 16:05 - 2019-05-23 16:05 - 000031232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wups.dll
2019-05-23 16:05 - 2019-05-23 16:05 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tzres.dll
2019-05-23 16:05 - 2019-05-23 16:05 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzres.dll
2019-05-17 10:26 - 2019-05-13 23:23 - 000835688 _____ (Adobe) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2019-05-17 10:26 - 2019-05-13 23:23 - 000179816 _____ (Adobe) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2019-05-17 10:01 - 2019-05-17 10:01 - 006072320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2019-05-17 10:01 - 2019-05-17 10:01 - 003905536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2019-05-17 10:01 - 2019-05-17 10:01 - 003743744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2019-05-17 10:01 - 2019-05-17 10:01 - 001311744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjet40.dll
2019-05-17 10:01 - 2019-05-17 10:01 - 001062400 _____ (Microsoft Corporation) C:\WINDOWS\system32\sysmain.dll
2019-05-17 10:01 - 2019-05-17 10:01 - 000684032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2019-05-17 10:01 - 2019-05-17 10:01 - 000427520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werui.dll
2019-05-17 10:01 - 2019-05-17 10:01 - 000376320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mspbde40.dll
2019-05-17 10:01 - 2019-05-17 10:01 - 000353280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd3x40.dll
2019-05-17 10:01 - 2019-05-17 10:01 - 000341504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msexcl40.dll
2019-05-17 10:01 - 2019-05-17 10:01 - 000240640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msltus40.dll
2019-05-17 10:01 - 2019-05-17 10:01 - 000181248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWWIN.EXE
2019-05-17 10:00 - 2019-05-17 10:00 - 007879680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2019-05-17 10:00 - 2019-05-17 10:00 - 004883968 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2019-05-17 10:00 - 2019-05-17 10:00 - 004660736 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2019-05-17 10:00 - 2019-05-17 10:00 - 003557888 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2019-05-17 10:00 - 2019-05-17 10:00 - 003363856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2019-05-17 10:00 - 2019-05-17 10:00 - 001701888 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2019-05-17 10:00 - 2019-05-17 10:00 - 001641616 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2019-05-17 10:00 - 2019-05-17 10:00 - 001484800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2019-05-17 10:00 - 2019-05-17 10:00 - 001395264 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2019-05-17 10:00 - 2019-05-17 10:00 - 001290752 _____ (Microsoft Corporation) C:\WINDOWS\system32\werconcpl.dll
2019-05-17 10:00 - 2019-05-17 10:00 - 001026792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2019-05-17 10:00 - 2019-05-17 10:00 - 000972288 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
2019-05-17 10:00 - 2019-05-17 10:00 - 000895792 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2019-05-17 10:00 - 2019-05-17 10:00 - 000865280 _____ (Microsoft Corporation) C:\WINDOWS\system32\netlogon.dll
2019-05-17 10:00 - 2019-05-17 10:00 - 000840192 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2019-05-17 10:00 - 2019-05-17 10:00 - 000807464 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2019-05-17 10:00 - 2019-05-17 10:00 - 000703488 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2019-05-17 10:00 - 2019-05-17 10:00 - 000680184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2019-05-17 10:00 - 2019-05-17 10:00 - 000660992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netlogon.dll
2019-05-17 10:00 - 2019-05-17 10:00 - 000594944 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2019-05-17 10:00 - 2019-05-17 10:00 - 000532480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2019-05-17 10:00 - 2019-05-17 10:00 - 000525824 _____ (Microsoft Corporation) C:\WINDOWS\system32\nltest.exe
2019-05-17 10:00 - 2019-05-17 10:00 - 000508432 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFault.exe
2019-05-17 10:00 - 2019-05-17 10:00 - 000495104 _____ (Microsoft Corporation) C:\WINDOWS\system32\werui.dll
2019-05-17 10:00 - 2019-05-17 10:00 - 000449376 _____ (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll
2019-05-17 10:00 - 2019-05-17 10:00 - 000444944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFault.exe
2019-05-17 10:00 - 2019-05-17 10:00 - 000387832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Faultrep.dll
2019-05-17 10:00 - 2019-05-17 10:00 - 000217088 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWWIN.EXE
2019-05-17 10:00 - 2019-05-17 10:00 - 000216064 _____ (Microsoft Corporation) C:\WINDOWS\system32\wersvc.dll
2019-05-17 10:00 - 2019-05-17 10:00 - 000212792 _____ (Microsoft Corporation) C:\WINDOWS\system32\wermgr.exe
2019-05-17 10:00 - 2019-05-17 10:00 - 000203272 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcbloader.dll
2019-05-17 10:00 - 2019-05-17 10:00 - 000192824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wermgr.exe
2019-05-17 10:00 - 2019-05-17 10:00 - 000179728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wfplwfs.sys
2019-05-17 10:00 - 2019-05-17 10:00 - 000179200 _____ (Microsoft Corporation) C:\WINDOWS\system32\t2embed.dll
2019-05-17 10:00 - 2019-05-17 10:00 - 000177976 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2019-05-17 10:00 - 2019-05-17 10:00 - 000163240 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFaultSecure.exe
2019-05-17 10:00 - 2019-05-17 10:00 - 000155136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2019-05-17 10:00 - 2019-05-17 10:00 - 000147736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFaultSecure.exe
2019-05-17 10:00 - 2019-05-17 10:00 - 000138752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\t2embed.dll
2019-05-17 10:00 - 2019-05-17 10:00 - 000128000 _____ (Microsoft Corporation) C:\WINDOWS\system32\microsoft-windows-kernel-processor-power-events.dll
2019-05-17 10:00 - 2019-05-17 10:00 - 000124928 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll
2019-05-17 10:00 - 2019-05-17 10:00 - 000122368 _____ (Microsoft Corporation) C:\WINDOWS\system32\wercplsupport.dll
2019-05-17 10:00 - 2019-05-17 10:00 - 000121656 _____ (Microsoft Corporation) C:\WINDOWS\system32\kdnet.dll
2019-05-17 10:00 - 2019-05-17 10:00 - 000098816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontsub.dll
2019-05-17 10:00 - 2019-05-17 10:00 - 000088576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\olepro32.dll
2019-05-17 10:00 - 2019-05-17 10:00 - 000079872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dtdump.exe
2019-05-17 10:00 - 2019-05-17 10:00 - 000066688 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptdll.dll
2019-05-17 10:00 - 2019-05-17 10:00 - 000055792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptdll.dll
2019-05-17 09:59 - 2019-05-17 09:59 - 000254952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelpep.sys
2019-05-17 09:59 - 2019-05-17 09:59 - 000223544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelppm.sys
2019-05-17 09:59 - 2019-05-17 09:59 - 000202768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\amdk8.sys
2019-05-17 09:59 - 2019-05-17 09:59 - 000201016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\amdppm.sys
2019-05-17 09:59 - 2019-05-17 09:59 - 000198456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\processr.sys
2019-05-17 09:59 - 2019-05-17 09:59 - 000092672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BTHUSB.SYS

==================== Un mois (modifiés) ========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2019-06-12 08:09 - 2019-02-19 20:47 - 000004178 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{14B9723A-5D59-4C37-992E-98522ED66F4C}
2019-06-11 20:30 - 2018-09-15 09:33 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2019-06-11 17:20 - 2019-02-19 20:03 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2019-06-11 16:34 - 2019-04-01 09:26 - 000000000 ____D C:\Users\jmfig\Documents\YouCam
2019-06-11 16:27 - 2017-06-03 16:42 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2019-06-11 16:27 - 2016-02-17 19:11 - 000000000 __SHD C:\Users\jmfig\IntelGraphicsProfiles
2019-06-11 16:26 - 2019-02-19 20:11 - 000000000 ____D C:\Users\jmfig
2019-06-11 16:25 - 2019-04-19 14:23 - 000000364 _____ C:\WINDOWS\Tasks\HPCeeScheduleForjmfig.job
2019-06-11 16:25 - 2019-02-19 20:47 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2019-06-11 16:08 - 2019-04-19 14:23 - 000003256 _____ C:\WINDOWS\System32\Tasks\HPCeeScheduleForjmfig
2019-06-08 20:31 - 2017-02-12 10:02 - 000000000 ____D C:\Users\jmfig\Documents\MONEY
2019-06-08 11:33 - 2018-09-15 09:33 - 000000000 ___HD C:\Program Files\WindowsApps
2019-06-08 11:33 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\AppReadiness
2019-06-08 11:22 - 2018-09-15 08:09 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2019-06-07 17:21 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2019-06-07 12:30 - 2019-02-15 08:59 - 000000000 ___DC C:\WINDOWS\Panther
2019-06-07 08:34 - 2018-09-15 09:31 - 000000000 ____D C:\WINDOWS\INF
2019-06-06 20:21 - 2019-02-19 20:47 - 000003380 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1665738480-2676852349-3793447983-1001
2019-06-06 20:21 - 2016-02-17 19:18 - 000000000 ___RD C:\Users\jmfig\OneDrive
2019-06-06 20:20 - 2019-02-19 20:11 - 000002412 _____ C:\Users\jmfig\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2019-06-06 20:11 - 2018-02-16 09:27 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2019-05-31 16:47 - 2018-07-13 16:26 - 000000000 ____D C:\ProgramData\Packages
2019-05-27 17:53 - 2018-02-14 15:12 - 000025086 _____ C:\Users\jmfig\Documents\PSEUDOS NOMS D UTILISATEUR ET MOTS DE PASSE.odt
2019-05-23 20:51 - 2019-02-19 20:03 - 000312880 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2019-05-23 20:47 - 2018-09-15 09:33 - 000000000 ___RD C:\Program Files\Windows Defender
2019-05-23 20:47 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\bcastdvr
2019-05-23 16:16 - 2018-09-15 09:23 - 000000000 ____D C:\WINDOWS\CbsTemp
2019-05-22 20:44 - 2017-03-07 19:05 - 000002486 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2019-05-22 20:44 - 2017-03-07 19:05 - 000002445 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2019-05-18 17:01 - 2018-01-17 23:49 - 000000000 ____D C:\Users\jmfig\AppData\Local\Packages
2019-05-18 16:59 - 2016-03-05 12:52 - 000000000 ____D C:\Users\jmfig\Documents\ACHATS GARANTIS cd jusqu'à fin 2016
2019-05-17 17:37 - 2019-02-19 20:25 - 001814392 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2019-05-17 17:37 - 2018-09-15 18:39 - 000794662 _____ C:\WINDOWS\system32\perfh00C.dat
2019-05-17 17:37 - 2018-09-15 18:39 - 000150678 _____ C:\WINDOWS\system32\perfc00C.dat
2019-05-17 10:21 - 2018-09-15 09:33 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2019-05-17 09:49 - 2018-02-02 11:49 - 000002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2019-05-16 11:32 - 2018-09-13 13:14 - 000035392 _____ (HP) C:\WINDOWS\system32\Drivers\WirelessButtonDriver64.sys
2019-05-15 20:48 - 2019-02-19 20:47 - 000003588 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2019-05-15 20:48 - 2019-02-19 20:47 - 000003464 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2019-05-15 20:44 - 2016-02-18 11:06 - 132445408 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2019-05-15 20:44 - 2016-02-18 11:06 - 000000000 ____D C:\WINDOWS\system32\MRT

==================== Fichiers à la racine de certains dossiers ================

2016-02-17 19:11 - 2019-06-12 08:05 - 001198187 _____ () C:\Users\jmfig\AppData\Local\BTServer.log
2016-07-26 16:18 - 2016-07-26 16:18 - 009276713 _____ () C:\Users\jmfig\AppData\Local\SelfExtractible.zip

==================== FLock ================

2019-06-07 13:20 C:\System Volume Information

==================== SigCheck ===============================

(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)

==================== Fin de FRST.txt ============================