Results 1 to 7 of 7
  1. #1
    Member
    Join Date
    Jul 2017
    Posts
    4
    Points
    0

    Default Hello, I need some help

    Hello Help2Go Community, I just realise that my personal Computer/Netwok has been hacked.
    Bad people steal somme of my credential . It's local felony i guess, because these person ask to my bank to send new credit cards in my mailbox.

    I'm pretty sure that the breach was from the weak security of the network, but i would like to be sure that nothing remains on my computer.
    i just run a full scan of my PC before runing the hijackthis
    I'm putting the logs at the end of the message.
    checkup.

    Thank you very much for your time and your experience!

    Regards
    Crocq






    Malwarebytes:

    Malwarebytes
    www.malwarebytes.com

    -Détails du journal-
    Date de l'analyse: 12/07/2017
    Heure de l'analyse: 17:12
    Fichier journal: Malwarebytes.txt
    Administrateur: Oui

    -Informations du logiciel-
    Version: 3.1.2.1733
    Version de composants: 1.0.141
    Version de pack de mise à jour: 1.0.2351
    Licence: Essai

    -Informations système-
    Système d'exploitation: Windows 10
    Processeur: x64
    Système de fichiers: NTFS
    Utilisateur: BROUSSEOUILISSE\crocq

    -Résumé de l'analyse-
    Type d'analyse: Analyse des menaces
    Résultat: Terminé
    Objets analysés: 489660
    Menaces détectées: 0
    (Aucun élément malveillant détecté)
    Menaces mises en quarantaine: 0
    (Aucun élément malveillant détecté)
    Temps écoulé: 0 min, 55 s

    -Options d'analyse-
    Mémoire: Activé
    Démarrage: Activé
    Système de fichiers: Activé
    Archives: Activé
    Rootkits: Désactivé
    Heuristique: Activé
    PUP: Activé
    PUM: Activé

    -Détails de l'analyse-
    Processus: 0
    (Aucun élément malveillant détecté)

    Module: 0
    (Aucun élément malveillant détecté)

    Clé du registre: 0
    (Aucun élément malveillant détecté)

    Valeur du registre: 0
    (Aucun élément malveillant détecté)

    Données du registre: 0
    (Aucun élément malveillant détecté)

    Flux de données: 0
    (Aucun élément malveillant détecté)

    Dossier: 0
    (Aucun élément malveillant détecté)

    Fichier: 0
    (Aucun élément malveillant détecté)

    Secteur physique: 0
    (Aucun élément malveillant détecté)


    (end)






    SUPERAntiSpyware Scan Log

    SUPERAntiSpyware Scan Log
    SUPERAntiSpyware | Remove Malware | Remove Spyware - AntiMalware, AntiSpyware, AntiAdware!

    Generated 07/12/2017 at 06:41 PM

    Application Version : 6.0.1244
    Database Version : 13788

    Scan type : Complete Scan
    Total Scan Time : 00:19:09

    Operating System Information
    Windows 10 Home 64-bit (Build 10.00.15063)
    UAC On - Limited User

    Memory items scanned : 1411
    Memory threats detected : 0
    Registry items scanned : 69961
    Registry threats detected : 0
    File items scanned : 34235
    File threats detected : 2

    Adware.Tracking Cookie
    .scorecardresearch.com\UID [ C:\USERS\CROCQ\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .scorecardresearch.com\UIDR [ C:\USERS\CROCQ\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]

    ============
    End of Log
    ============


    hijackthis

    Logfile of Trend Micro HijackThis v2.0.5
    Scan saved at 19:02:52, on 12/07/2017
    Platform: Unknown Windows (WinNT 6.02.1008)
    MSIE: Internet Explorer v11.0 (11.00.15063.0000)


    Boot mode: Normal

    Running processes:
    C:\Program Files (x86)\Western Digital\WD Security\WDDriveAutoUnlock.exe
    C:\Program Files (x86)\Western Digital\WD Utilities\WDDriveUtilitiesHelper.exe
    C:\Program Files (x86)\Western Digital\WD Quick View\WDDMStatus.exe
    C:\PROGRAM FILES (X86)\WESTERN DIGITAL\WD APP MANAGER\PLUGINS\WD BACKUP\App\WDBackupService.exe
    C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
    C:\Program Files\Bitdefender\Bitdefender 2017\antispam32\obk.exe
    C:\Program Files\Bitdefender\Bitdefender 2017\antispam32\obkch.exe
    C:\Program Files\Bitdefender\Bitdefender 2017\antispam32\OBKAgent.exe
    C:\WINDOWS\SysWOW64\ctfmon.exe
    C:\Program Files\Bitdefender\Bitdefender 2017\antispam32\obk.exe
    C:\Program Files\Bitdefender\Bitdefender 2017\antispam32\obk.exe
    C:\Program Files\Bitdefender\Bitdefender 2017\antispam32\obk.exe
    C:\Program Files\Bitdefender\Bitdefender 2017\antispam32\obk.exe
    C:\Program Files\Bitdefender\Bitdefender 2017\antispam32\obk.exe
    C:\Program Files\Malwarebytes\Anti-Malware\mbam.exe
    C:\Users\crocq\AppData\Local\Discord\app-0.0.297\Discord.exe
    C:\Users\crocq\AppData\Local\Discord\app-0.0.297\Discord.exe
    C:\Users\crocq\AppData\Local\Discord\app-0.0.297\Discord.exe
    C:\Program Files\Bitdefender\Bitdefender 2017\antispam32\obk.exe
    C:\Users\crocq\Downloads\HijackThis.exe
    C:\WINDOWS\SysWOW64\DllHost.exe

    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Bing
    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
    R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
    R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
    R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
    F2 - REG:system.ini: UserInit=
    O2 - BHO: Bitdefender Wallet - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Program Files\Bitdefender\Bitdefender 2017\Antispam32\pmbxie.dll
    O3 - Toolbar: Bitdefender Wallet - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Program Files\Bitdefender\Bitdefender 2017\Antispam32\pmbxie.dll
    O4 - HKLM\..\Run: [Razer Synapse] "C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe"
    O4 - HKLM\..\Run: [Adobe Creative Cloud] "C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe" --showwindow=false --onOSstartup=true
    O4 - HKLM\..\Run: [WDAppManager] C:\Program Files (x86)\Western Digital\WD App Manager\AppManagerLauncher.exe
    O4 - HKLM\..\Run: [WD Drive Unlocker] C:\Program Files (x86)\Western Digital\WD Security\WDDriveAutoUnlock.exe
    O4 - HKLM\..\Run: [DriveUtilitiesHelper] C:\Program Files (x86)\Western Digital\WD Utilities\WDDriveUtilitiesHelper.exe
    O4 - HKLM\..\Run: [WD Quick View] C:\Program Files (x86)\Western Digital\WD Quick View\WDDMStatus.exe
    O4 - HKLM\..\Run: [Autodesk Desktop App] "C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AutodeskDesktopApp.exe" -tray
    O4 - HKCU\..\Run: [GoogleChromeAutoLaunch_D4597A70D3FBAEDD67D809FFC94E88D8] "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window /prefetch:5
    O4 - HKCU\..\Run: [GoogleDriveSync] "C:\Program Files (x86)\Google\Drive\googledrivesync.exe" /autostart
    O4 - HKCU\..\Run: [OneDrive] "C:\Users\crocq\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
    O4 - HKCU\..\Run: [Discord] C:\Users\crocq\AppData\Local\Discord\app-0.0.297\Discord.exe
    O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
    O4 - Global Startup: Serveur réseau.lnk = C:\Program Files (x86)\WIBUKEY\Server\WkSvMgr.exe
    O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
    O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
    O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
    O23 - Service: SAS Core Service (!SASCORE) - SUPERAntiSpyware.com - C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
    O23 - Service: Autodesk Desktop App Service (AdAppMgrSvc) - Autodesk Inc. - C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AdAppMgrSvc.exe
    O23 - Service: AdobeUpdateService - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
    O23 - Service: Adobe Genuine Software Integrity Service (AGSService) - Adobe Systems, Incorporated - C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
    O23 - Service: @%SystemRoot%\system32\AJRouter.dll,-2 (AJRouter) - Unknown owner - C:\WINDOWS\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
    O23 - Service: @%systemroot%\system32\appidsvc.dll,-100 (AppIDSvc) - Unknown owner - C:\WINDOWS\system32\svchost.exe
    O23 - Service: @%systemroot%\system32\appinfo.dll,-100 (Appinfo) - Unknown owner - C:\WINDOWS\system32\svchost.exe
    O23 - Service: @%SystemRoot%\System32\AppReadiness.dll,-1000 (AppReadiness) - Unknown owner - C:\WINDOWS\System32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\appxdeploymentserver.dll,-1 (AppXSvc) - Unknown owner - C:\WINDOWS\system32\svchost.exe
    O23 - Service: ASLDR Service (ASLDRService) - ASUSTek Computer Inc. - C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
    O23 - Service: @%SystemRoot%\system32\AudioEndpointBuilder.dll,-204 (AudioEndpointBuilder) - Unknown owner - C:\WINDOWS\System32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\audiosrv.dll,-200 (Audiosrv) - Unknown owner - C:\WINDOWS\System32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\AxInstSV.dll,-103 (AxInstSV) - Unknown owner - C:\WINDOWS\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\bdesvc.dll,-100 (BDESVC) - Unknown owner - C:\WINDOWS\System32\svchost.exe
    O23 - Service: BattlEye Service (BEService) - Unknown owner - C:\Program Files (x86)\Common Files\BattlEye\BEService.exe
    O23 - Service: @%SystemRoot%\system32\bfe.dll,-1001 (BFE) - Unknown owner - C:\WINDOWS\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\qmgr.dll,-1000 (BITS) - Unknown owner - C:\WINDOWS\System32\svchost.exe
    O23 - Service: @%windir%\system32\bisrv.dll,-100 (BrokerInfrastructure) - Unknown owner - C:\WINDOWS\system32\svchost.exe
    O23 - Service: @%systemroot%\system32\browser.dll,-100 (Browser) - Unknown owner - C:\WINDOWS\System32\svchost.exe
    O23 - Service: @%SystemRoot%\System32\BthHFSrv.dll,-103 (BthHFSrv) - Unknown owner - C:\WINDOWS\System32\svchost.exe
    O23 - Service: @%SystemRoot%\System32\bthserv.dll,-101 (bthserv) - Unknown owner - C:\WINDOWS\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\cdpsvc.dll,-100 (CDPSvc) - Unknown owner - C:\WINDOWS\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\cdpusersvc.dll,-100 (CDPUserSvc) - Unknown owner - C:\WINDOWS\system32\svchost.exe
    O23 - Service: CDPUserSvc_4bf4c - Unknown owner - C:\WINDOWS\system32\svchost.exe
    O23 - Service: @%SystemRoot%\System32\certprop.dll,-11 (CertPropSvc) - Unknown owner - C:\WINDOWS\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\ClipSVC.dll,-103 (ClipSVC) - Unknown owner - C:\WINDOWS\System32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\coremessaging.dll,-1 (CoreMessagingRegistrar) - Unknown owner - C:\WINDOWS\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\cryptsvc.dll,-1001 (CryptSvc) - Unknown owner - C:\WINDOWS\system32\svchost.exe
    O23 - Service: @combase.dll,-5012 (DcomLaunch) - Unknown owner - C:\WINDOWS\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\defragsvc.dll,-101 (defragsvc) - Unknown owner - C:\WINDOWS\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\das.dll,-100 (DeviceAssociationService) - Unknown owner - C:\WINDOWS\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\umpnpmgr.dll,-100 (DeviceInstall) - Unknown owner - C:\WINDOWS\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\DevicesFlowBroker.dll,-103 (DevicesFlowUserSvc) - Unknown owner - C:\WINDOWS\system32\svchost.exe
    O23 - Service: DevicesFlowUserSvc_4bf4c - Unknown owner - C:\WINDOWS\system32\svchost.exe
    O23 - Service: Bitdefender Device Management Service (DevMgmtService) - Bitdefender - C:\Program Files\Bitdefender\Bitdefender Device Management\DevMgmtService.exe
    O23 - Service: @%SystemRoot%\system32\DevQueryBroker.dll,-100 (DevQueryBroker) - Unknown owner - C:\WINDOWS\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\dhcpcore.dll,-100 (Dhcp) - Unknown owner - C:\WINDOWS\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
    O23 - Service: @%SystemRoot%\system32\diagtrack.dll,-3001 (DiagTrack) - Unknown owner - C:\WINDOWS\System32\svchost.exe
    O23 - Service: @%systemroot%\system32\Windows.Internal.Management.dll,-100 (DmEnrollmentSvc) - Unknown owner - C:\WINDOWS\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\dmwappushsvc.dll,-200 (dmwappushservice) - Unknown owner - C:\WINDOWS\system32\svchost.exe
    O23 - Service: @%SystemRoot%\System32\dnsapi.dll,-101 (Dnscache) - Unknown owner - C:\WINDOWS\system32\svchost.exe
    O23 - Service: @%systemroot%\system32\dosvc.dll,-100 (DoSvc) - Unknown owner - C:\WINDOWS\system32\svchost.exe
    O23 - Service: @%systemroot%\system32\dot3svc.dll,-1102 (dot3svc) - Unknown owner - C:\WINDOWS\system32\svchost.exe
    O23 - Service: @%systemroot%\system32\dps.dll,-500 (DPS) - Unknown owner - C:\WINDOWS\System32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\DeviceSetupManager.dll,-1000 (DsmSvc) - Unknown owner - C:\WINDOWS\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\dssvc.dll,-10003 (DsSvc) - Unknown owner - C:\WINDOWS\System32\svchost.exe
    O23 - Service: @%SystemRoot%\System32\dusmsvc.dll,-1 (DusmSvc) - Unknown owner - C:\WINDOWS\System32\svchost.exe
    O23 - Service: @%systemroot%\system32\eapsvc.dll,-1 (EapHost) - Unknown owner - C:\WINDOWS\System32\svchost.exe
    O23 - Service: EasyAntiCheat - EasyAntiCheat Ltd - C:\WINDOWS\system32\EasyAntiCheat.exe
    O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
    O23 - Service: @%SystemRoot%\system32\embeddedmodesvc.dll,-201 (embeddedmode) - Unknown owner - C:\WINDOWS\System32\svchost.exe
    O23 - Service: @EnterpriseAppMgmtSvc.dll,-1 (EntAppSvc) - Unknown owner - C:\WINDOWS\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\wevtsvc.dll,-200 (EventLog) - Unknown owner - C:\WINDOWS\System32\svchost.exe
    O23 - Service: @comres.dll,-2450 (EventSystem) - Unknown owner - C:\WINDOWS\system32\svchost.exe
    O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
    O23 - Service: @%systemroot%\system32\fdPHost.dll,-100 (fdPHost) - Unknown owner - C:\WINDOWS\system32\svchost.exe
    O23 - Service: @%systemroot%\system32\fdrespub.dll,-100 (FDResPub) - Unknown owner - C:\WINDOWS\system32\svchost.exe
    O23 - Service: @%systemroot%\system32\fhsvc.dll,-101 (fhsvc) - Unknown owner - C:\WINDOWS\system32\svchost.exe
    O23 - Service: FlexNet Licensing Service 64 - Flexera Software LLC - C:\Program Files\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService64.exe
    O23 - Service: @%systemroot%\system32\FntCache.dll,-100 (FontCache) - Unknown owner - C:\WINDOWS\system32\svchost.exe
    O23 - Service: @%systemroot%\system32\FrameServer.dll,-100 (FrameServer) - Unknown owner - C:\WINDOWS\System32\svchost.exe
    O23 - Service: @gpapi.dll,-112 (gpsvc) - Unknown owner - C:\WINDOWS\system32\svchost.exe
    O23 - Service: Service Google Update (gupdate) (gupdate) - Unknown owner - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
    O23 - Service: Service Google Update (gupdatem) (gupdatem) - Unknown owner - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
    O23 - Service: @%SystemRoot%\System32\hidserv.dll,-101 (hidserv) - Unknown owner - C:\WINDOWS\system32\svchost.exe
    O23 - Service: @%SystemRoot%\System32\ListSvc.dll,-100 (HomeGroupListener) - Unknown owner - C:\WINDOWS\System32\svchost.exe
    O23 - Service: @%SystemRoot%\System32\provsvc.dll,-100 (HomeGroupProvider) - Unknown owner - C:\WINDOWS\System32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\hvhostsvc.dll,-100 (HvHost) - Unknown owner - C:\WINDOWS\system32\svchost.exe
    O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
    O23 - Service: @oem67.inf,%SERVICE_NAME%;Intel Bluetooth Service (ibtsiva) - Unknown owner - C:\WINDOWS\system32\ibtsiva (file missing)
    O23 - Service: @%SystemRoot%\System32\tetheringservice.dll,-4097 (icssvc) - Unknown owner - C:\WINDOWS\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\ikeext.dll,-501 (IKEEXT) - Unknown owner - C:\WINDOWS\system32\svchost.exe
    O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
    O23 - Service: @%SystemRoot%\system32\iphlpsvc.dll,-500 (iphlpsvc) - Unknown owner - C:\WINDOWS\System32\svchost.exe
    O23 - Service: @%Systemroot%\system32\ipxlatcfg.dll,-500 (IpxlatCfgSvc) - Unknown owner - C:\WINDOWS\System32\svchost.exe
    O23 - Service: @%SystemRoot%\System32\irmon.dll,-2000 (irmon) - Unknown owner - C:\WINDOWS\system32\svchost.exe
    O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
    O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
    O23 - Service: @comres.dll,-2946 (KtmRm) - Unknown owner - C:\WINDOWS\System32\svchost.exe
    O23 - Service: @%systemroot%\system32\srvsvc.dll,-100 (LanmanServer) - Unknown owner - C:\WINDOWS\system32\svchost.exe
    O23 - Service: @%systemroot%\system32\wkssvc.dll,-100 (LanmanWorkstation) - Unknown owner - C:\WINDOWS\System32\svchost.exe
    O23 - Service: @%SystemRoot%\System32\lfsvc.dll,-1 (lfsvc) - Unknown owner - C:\WINDOWS\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\licensemanagersvc.dll,-200 (LicenseManager) - Unknown owner - C:\WINDOWS\System32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\lltdres.dll,-1 (lltdsvc) - Unknown owner - C:\WINDOWS\System32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\lmhsvc.dll,-101 (lmhosts) - Unknown owner - C:\WINDOWS\System32\svchost.exe
    O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
    O23 - Service: @%windir%\system32\lsm.dll,-1001 (LSM) - Unknown owner - C:\WINDOWS\system32\svchost.exe
    O23 - Service: @%SystemRoot%\System32\moshost.dll,-100 (MapsBroker) - Unknown owner - C:\WINDOWS\System32\svchost.exe
    O23 - Service: Malwarebytes Service (MBAMService) - Malwarebytes - C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe
    O23 - Service: @%SystemRoot%\system32\MessagingService.dll,-100 (MessagingService) - Unknown owner - C:\WINDOWS\system32\svchost.exe
    O23 - Service: MessagingService_4bf4c - Unknown owner - C:\WINDOWS\system32\svchost.exe
    O23 - Service: mental ray Satellite for Autodesk 3ds Max 2016 64-bit (mi-raysat_3dsmax2016_64) - Unknown owner - C:\Program Files\Autodesk\3ds Max 2016\NVIDIA\Satellite\raysat_3dsmax2016_64server.exe
    O23 - Service: @%SystemRoot%\system32\FirewallAPI.dll,-23090 (MpsSvc) - Unknown owner - C:\WINDOWS\system32\svchost.exe
    O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
    O23 - Service: @%SystemRoot%\system32\iscsidsc.dll,-5000 (MSiSCSI) - Unknown owner - C:\WINDOWS\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\msimsg.dll,-27 (msiserver) - Unknown owner - C:\WINDOWS\system32\msiexec.exe
    O23 - Service: @%systemroot%\system32\NaturalAuth.dll,-100 (NaturalAuthentication) - Unknown owner - C:\WINDOWS\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\ncasvc.dll,-3009 (NcaSvc) - Unknown owner - C:\WINDOWS\System32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\ncbservice.dll,-500 (NcbService) - Unknown owner - C:\WINDOWS\System32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\NcdAutoSetup.dll,-100 (NcdAutoSetup) - Unknown owner - C:\WINDOWS\System32\svchost.exe
    O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
    O23 - Service: @%SystemRoot%\system32\netman.dll,-109 (Netman) - Unknown owner - C:\WINDOWS\System32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\netprofmsvc.dll,-202 (netprofm) - Unknown owner - C:\WINDOWS\System32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\NetSetupSvc.dll,-3 (NetSetupSvc) - Unknown owner - C:\WINDOWS\System32\svchost.exe
    O23 - Service: @%SystemRoot%\System32\NgcCtnrSvc.dll,-1 (NgcCtnrSvc) - Unknown owner - C:\WINDOWS\system32\svchost.exe
    O23 - Service: @%SystemRoot%\System32\ngcsvc.dll,-100 (NgcSvc) - Unknown owner - C:\WINDOWS\system32\svchost.exe
    O23 - Service: @%SystemRoot%\System32\nlasvc.dll,-1 (NlaSvc) - Unknown owner - C:\WINDOWS\System32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\nsisvc.dll,-200 (nsi) - Unknown owner - C:\WINDOWS\system32\svchost.exe
    O23 - Service: NVIDIA LocalSystem Container (NvContainerLocalSystem) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
    O23 - Service: NVIDIA NetworkService Container (NvContainerNetworkService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
    O23 - Service: NVIDIA Display Container LS (NVDisplay.ContainerLocalSystem) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
    O23 - Service: NVIDIA Telemetry Container (NvTelemetryContainer) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
    O23 - Service: @%SystemRoot%\system32\APHostRes.dll,-10002 (OneSyncSvc) - Unknown owner - C:\WINDOWS\system32\svchost.exe
    O23 - Service: OneSyncSvc_4bf4c - Unknown owner - C:\WINDOWS\system32\svchost.exe
    O23 - Service: Origin Client Service - Electronic Arts - D:\Origin\OriginClientService.exe
    O23 - Service: Origin Web Helper Service - Electronic Arts - D:\Origin\OriginWebHelperService.exe
    O23 - Service: @%SystemRoot%\system32\pnrpsvc.dll,-8004 (p2pimsvc) - Unknown owner - C:\WINDOWS\System32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\p2psvc.dll,-8006 (p2psvc) - Unknown owner - C:\WINDOWS\System32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\pcasvc.dll,-1 (PcaSvc) - Unknown owner - C:\WINDOWS\system32\svchost.exe
    O23 - Service: @%systemroot%\sysWow64\perfhost.exe,-2 (PerfHost) - Unknown owner - C:\WINDOWS\SysWow64\perfhost.exe
    O23 - Service: @%SystemRoot%\system32\PhoneserviceRes.dll,-10000 (PhoneSvc) - Unknown owner - C:\WINDOWS\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\UserDataAccessRes.dll,-15001 (PimIndexMaintenanceSvc) - Unknown owner - C:\WINDOWS\system32\svchost.exe
    O23 - Service: PimIndexMaintenanceSvc_4bf4c - Unknown owner - C:\WINDOWS\system32\svchost.exe
    O23 - Service: @%systemroot%\system32\pla.dll,-500 (pla) - Unknown owner - C:\WINDOWS\System32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\umpnpmgr.dll,-200 (PlugPlay) - Unknown owner - C:\WINDOWS\system32\svchost.exe
    O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe
    O23 - Service: @%SystemRoot%\system32\pnrpauto.dll,-8002 (PNRPAutoReg) - Unknown owner - C:\WINDOWS\System32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\pnrpsvc.dll,-8000 (PNRPsvc) - Unknown owner - C:\WINDOWS\System32\svchost.exe
    O23 - Service: @%SystemRoot%\System32\polstore.dll,-5010 (PolicyAgent) - Unknown owner - C:\WINDOWS\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\umpo.dll,-100 (Power) - Unknown owner - C:\WINDOWS\system32\svchost.exe
    O23 - Service: @C:\WINDOWS\system32\spool\drivers\x64\3\PrintConfig.dll,-1 (PrintNotify) - Unknown owner - C:\WINDOWS\system32\svchost.exe
    O23 - Service: ProductAgentService - Bitdefender - C:\Program Files\Bitdefender Agent\ProductAgentService.exe
    O23 - Service: @%systemroot%\system32\profsvc.dll,-300 (ProfSvc) - Unknown owner - C:\WINDOWS\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\qwave.dll,-1 (QWAVE) - Unknown owner - C:\WINDOWS\system32\svchost.exe
    O23 - Service: @%Systemroot%\system32\rasauto.dll,-200 (RasAuto) - Unknown owner - C:\WINDOWS\System32\svchost.exe
    O23 - Service: @%Systemroot%\system32\rasmans.dll,-200 (RasMan) - Unknown owner - C:\WINDOWS\System32\svchost.exe
    O23 - Service: Razer Game Scanner (Razer Game Scanner Service) - Unknown owner - C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
    O23 - Service: @%SystemRoot%\System32\RDXService.dll,-256 (RetailDemo) - Unknown owner - C:\WINDOWS\System32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\RMapi.dll,-1001 (RmSvc) - Unknown owner - C:\WINDOWS\System32\svchost.exe
    O23 - Service: @%windir%\system32\RpcEpMap.dll,-1001 (RpcEptMapper) - Unknown owner - C:\WINDOWS\system32\svchost.exe
    O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
    O23 - Service: @combase.dll,-5010 (RpcSs) - Unknown owner - C:\WINDOWS\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
    O23 - Service: @%SystemRoot%\System32\ScDeviceEnum.dll,-100 (ScDeviceEnum) - Unknown owner - C:\WINDOWS\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\schedsvc.dll,-100 (Schedule) - Unknown owner - C:\WINDOWS\system32\svchost.exe
    O23 - Service: @%SystemRoot%\System32\certprop.dll,-13 (SCPolicySvc) - Unknown owner - C:\WINDOWS\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\sdrsvc.dll,-107 (SDRSVC) - Unknown owner - C:\WINDOWS\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\seclogon.dll,-7001 (seclogon) - Unknown owner - C:\WINDOWS\system32\svchost.exe
    O23 - Service: @%systemroot%\system32\SecurityHealthAgent.dll,-1002 (SecurityHealthService) - Unknown owner - C:\WINDOWS\system32\SecurityHealthService.exe (file missing)
    O23 - Service: @%SystemRoot%\System32\SEMgrSvc.dll,-1001 (SEMgrSvc) - Unknown owner - C:\WINDOWS\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\Sens.dll,-200 (SENS) - Unknown owner - C:\WINDOWS\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
    O23 - Service: @%SystemRoot%\System32\sensorservice.dll,-1000 (SensorService) - Unknown owner - C:\WINDOWS\system32\svchost.exe
    O23 - Service: @%SystemRoot%\System32\sensrsvc.dll,-1000 (SensrSvc) - Unknown owner - C:\WINDOWS\system32\svchost.exe
    O23 - Service: @%SystemRoot%\System32\SessEnv.dll,-1026 (SessionEnv) - Unknown owner - C:\WINDOWS\System32\svchost.exe
    O23 - Service: SetupARService - Unknown owner - C:\Program Files (x86)\Realtek\Audio\SetupAfterRebootService.exe
    O23 - Service: @%SystemRoot%\system32\ipnathlp.dll,-106 (SharedAccess) - Unknown owner - C:\WINDOWS\System32\svchost.exe
    O23 - Service: @%SystemRoot%\System32\shsvcs.dll,-12288 (ShellHWDetection) - Unknown owner - C:\WINDOWS\System32\svchost.exe
    O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
    O23 - Service: @%SystemRoot%\System32\smphost.dll,-102 (smphost) - Unknown owner - C:\WINDOWS\System32\svchost.exe
    O23 - Service: @%SystemRoot%\System32\SmsRouterSvc.dll,-10001 (SmsRouter) - Unknown owner - C:\WINDOWS\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
    O23 - Service: @%systemroot%\system32\spectrum.exe,-101 (spectrum) - Unknown owner - C:\WINDOWS\system32\spectrum.exe (file missing)
    O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
    O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
    O23 - Service: @%systemroot%\system32\ssdpsrv.dll,-100 (SSDPSRV) - Unknown owner - C:\WINDOWS\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\sstpsvc.dll,-200 (SstpSvc) - Unknown owner - C:\WINDOWS\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\windows.staterepository.dll,-1 (StateRepository) - Unknown owner - C:\WINDOWS\system32\svchost.exe
    O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
    O23 - Service: @%SystemRoot%\system32\wiaservc.dll,-9 (stisvc) - Unknown owner - C:\WINDOWS\system32\svchost.exe
    O23 - Service: @%SystemRoot%\System32\StorSvc.dll,-100 (StorSvc) - Unknown owner - C:\WINDOWS\System32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\svsvc.dll,-101 (svsvc) - Unknown owner - C:\WINDOWS\system32\svchost.exe
    O23 - Service: @%SystemRoot%\System32\swprv.dll,-103 (swprv) - Unknown owner - C:\WINDOWS\System32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\sysmain.dll,-1000 (SysMain) - Unknown owner - C:\WINDOWS\system32\svchost.exe
    O23 - Service: @%windir%\system32\SystemEventsBrokerServer.dll,-1001 (SystemEventsBroker) - Unknown owner - C:\WINDOWS\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\TabSvc.dll,-100 (TabletInputService) - Unknown owner - C:\WINDOWS\System32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\tapisrv.dll,-10100 (TapiSrv) - Unknown owner - C:\WINDOWS\System32\svchost.exe
    O23 - Service: TeamViewer 12 (TeamViewer) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
    O23 - Service: @%SystemRoot%\System32\termsrv.dll,-268 (TermService) - Unknown owner - C:\WINDOWS\System32\svchost.exe
    O23 - Service: @%SystemRoot%\System32\themeservice.dll,-8192 (Themes) - Unknown owner - C:\WINDOWS\System32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing)
    O23 - Service: @%SystemRoot%\system32\tileobjserver.dll,-1 (tiledatamodelsvc) - Unknown owner - C:\WINDOWS\system32\svchost.exe
    O23 - Service: @%windir%\system32\TimeBrokerServer.dll,-1001 (TimeBrokerSvc) - Unknown owner - C:\WINDOWS\system32\svchost.exe
    O23 - Service: @%systemroot%\system32\tokenbroker.dll,-100 (TokenBroker) - Unknown owner - C:\WINDOWS\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\trkwks.dll,-1 (TrkWks) - Unknown owner - C:\WINDOWS\System32\svchost.exe
    O23 - Service: @%SystemRoot%\servicing\TrustedInstaller.exe,-100 (TrustedInstaller) - Unknown owner - C:\WINDOWS\servicing\TrustedInstaller.exe
    O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
    O23 - Service: @%SystemRoot%\system32\umrdp.dll,-1000 (UmRdpService) - Unknown owner - C:\WINDOWS\System32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\UserDataAccessRes.dll,-10003 (UnistoreSvc) - Unknown owner - C:\WINDOWS\System32\svchost.exe
    O23 - Service: UnistoreSvc_4bf4c - Unknown owner - C:\WINDOWS\System32\svchost.exe
    O23 - Service: Bitdefender Desktop Update Service (UPDATESRV) - Bitdefender - C:\Program Files\Bitdefender\Bitdefender 2017\updatesrv.exe
    O23 - Service: @%systemroot%\system32\upnphost.dll,-213 (upnphost) - Unknown owner - C:\WINDOWS\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\UserDataAccessRes.dll,-14001 (UserDataSvc) - Unknown owner - C:\WINDOWS\system32\svchost.exe
    O23 - Service: UserDataSvc_4bf4c - Unknown owner - C:\WINDOWS\system32\svchost.exe
    O23 - Service: @%systemroot%\system32\usermgr.dll,-100 (UserManager) - Unknown owner - C:\WINDOWS\system32\svchost.exe
    O23 - Service: @%systemroot%\system32\usocore.dll,-101 (UsoSvc) - Unknown owner - C:\WINDOWS\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
    O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
    O23 - Service: @%systemroot%\system32\icsvc.dll,-801 (vmicguestinterface) - Unknown owner - C:\WINDOWS\system32\svchost.exe
    O23 - Service: @%systemroot%\system32\icsvc.dll,-101 (vmicheartbeat) - Unknown owner - C:\WINDOWS\system32\svchost.exe
    O23 - Service: @%systemroot%\system32\icsvc.dll,-201 (vmickvpexchange) - Unknown owner - C:\WINDOWS\system32\svchost.exe
    O23 - Service: @%systemroot%\system32\icsvcext.dll,-601 (vmicrdv) - Unknown owner - C:\WINDOWS\system32\svchost.exe
    O23 - Service: @%systemroot%\system32\icsvc.dll,-301 (vmicshutdown) - Unknown owner - C:\WINDOWS\system32\svchost.exe
    O23 - Service: @%systemroot%\system32\icsvc.dll,-401 (vmictimesync) - Unknown owner - C:\WINDOWS\system32\svchost.exe
    O23 - Service: @%systemroot%\system32\icsvc.dll,-901 (vmicvmsession) - Unknown owner - C:\WINDOWS\system32\svchost.exe
    O23 - Service: @%systemroot%\system32\icsvcext.dll,-501 (vmicvss) - Unknown owner - C:\WINDOWS\system32\svchost.exe
    O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
    O23 - Service: Bitdefender Virus Shield (VSSERV) - Bitdefender - C:\Program Files\Bitdefender\Bitdefender 2017\vsserv.exe
    O23 - Service: Bitdefender Protected Service (vsservp) - Bitdefender - C:\Program Files\Bitdefender\Bitdefender 2017\vsservp.exe
    O23 - Service: @%SystemRoot%\system32\w32time.dll,-200 (W32Time) - Unknown owner - C:\WINDOWS\system32\svchost.exe
    O23 - Service: @%SystemRoot%\System32\WalletService.dll,-1000 (WalletService) - Unknown owner - C:\WINDOWS\System32\svchost.exe
    O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
    O23 - Service: @%systemroot%\system32\wbiosrvc.dll,-100 (WbioSrvc) - Unknown owner - C:\WINDOWS\system32\svchost.exe
    O23 - Service: @%SystemRoot%\System32\wcmsvc.dll,-4097 (Wcmsvc) - Unknown owner - C:\WINDOWS\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\wcncsvc.dll,-3 (wcncsvc) - Unknown owner - C:\WINDOWS\System32\svchost.exe
    O23 - Service: WD Drive Manager (WDDriveService) - Western Digital Technologies, Inc. - C:\Program Files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe
    O23 - Service: @%systemroot%\system32\wdi.dll,-502 (WdiServiceHost) - Unknown owner - C:\WINDOWS\System32\svchost.exe
    O23 - Service: @%systemroot%\system32\wdi.dll,-500 (WdiSystemHost) - Unknown owner - C:\WINDOWS\System32\svchost.exe
    O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
    O23 - Service: @%systemroot%\system32\webclnt.dll,-100 (WebClient) - Unknown owner - C:\WINDOWS\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\wecsvc.dll,-200 (Wecsvc) - Unknown owner - C:\WINDOWS\system32\svchost.exe
    O23 - Service: @%systemroot%\system32\wephostsvc.dll,-100 (WEPHOSTSVC) - Unknown owner - C:\WINDOWS\system32\svchost.exe
    O23 - Service: @%SystemRoot%\System32\wercplsupport.dll,-101 (wercplsupport) - Unknown owner - C:\WINDOWS\System32\svchost.exe
    O23 - Service: @%SystemRoot%\System32\wersvc.dll,-100 (WerSvc) - Unknown owner - C:\WINDOWS\System32\svchost.exe
    O23 - Service: @%SystemRoot%\System32\wfdsconmgrsvc.dll,-9000 (WFDSConMgrSvc) - Unknown owner - C:\WINDOWS\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\wiarpc.dll,-2 (WiaRpc) - Unknown owner - C:\WINDOWS\system32\svchost.exe
    O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
    O23 - Service: @%SystemRoot%\system32\winhttp.dll,-100 (WinHttpAutoProxySvc) - Unknown owner - C:\WINDOWS\system32\svchost.exe
    O23 - Service: @%Systemroot%\system32\wbem\wmisvc.dll,-205 (Winmgmt) - Unknown owner - C:\WINDOWS\system32\svchost.exe
    O23 - Service: @%Systemroot%\system32\wsmsvc.dll,-101 (WinRM) - Unknown owner - C:\WINDOWS\System32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\flightsettings.dll,-104 (wisvc) - Unknown owner - C:\WINDOWS\system32\svchost.exe
    O23 - Service: @%SystemRoot%\System32\wlansvc.dll,-257 (WlanSvc) - Unknown owner - C:\WINDOWS\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\wlidsvc.dll,-100 (wlidsvc) - Unknown owner - C:\WINDOWS\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\lpasvc.dll,-1000 (wlpasvc) - Unknown owner - C:\WINDOWS\system32\svchost.exe
    O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
    O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
    O23 - Service: @%systemroot%\system32\workfolderssvc.dll,-102 (workfolderssvc) - Unknown owner - C:\WINDOWS\System32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\wpdbusenum.dll,-100 (WPDBusEnum) - Unknown owner - C:\WINDOWS\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\wpnservice.dll,-1 (WpnService) - Unknown owner - C:\WINDOWS\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\WpnUserService.dll,-1 (WpnUserService) - Unknown owner - C:\WINDOWS\system32\svchost.exe
    O23 - Service: WpnUserService_4bf4c - Unknown owner - C:\WINDOWS\system32\svchost.exe
    O23 - Service: @%SystemRoot%\System32\wscsvc.dll,-200 (wscsvc) - Unknown owner - C:\WINDOWS\System32\svchost.exe
    O23 - Service: @%systemroot%\system32\SearchIndexer.exe,-103 (WSearch) - Unknown owner - C:\WINDOWS\system32\SearchIndexer.exe
    O23 - Service: Wacom Professional Service (WTabletServicePro) - Wacom Technology, Corp. - C:\Program Files\Tablet\Wacom\WTabletServicePro.exe
    O23 - Service: @%systemroot%\system32\wuaueng.dll,-105 (wuauserv) - Unknown owner - C:\WINDOWS\system32\svchost.exe
    O23 - Service: @%SystemRoot%\system32\wudfsvc.dll,-1000 (wudfsvc) - Unknown owner - C:\WINDOWS\system32\svchost.exe
    O23 - Service: @%SystemRoot%\System32\wwansvc.dll,-257 (WwanSvc) - Unknown owner - C:\WINDOWS\system32\svchost.exe
    O23 - Service: @%systemroot%\system32\xbgmsvc.dll,-100 (xbgm) - Unknown owner - C:\WINDOWS\system32\svchost.exe
    O23 - Service: @%systemroot%\system32\XblAuthManager.dll,-100 (XblAuthManager) - Unknown owner - C:\WINDOWS\system32\svchost.exe
    O23 - Service: @%systemroot%\system32\XblGameSave.dll,-100 (XblGameSave) - Unknown owner - C:\WINDOWS\system32\svchost.exe
    O23 - Service: @%systemroot%\system32\xboxgipsvc.dll,-100 (XboxGipSvc) - Unknown owner - C:\WINDOWS\system32\svchost.exe
    O23 - Service: @%systemroot%\system32\XboxNetApiSvc.dll,-100 (XboxNetApiSvc) - Unknown owner - C:\WINDOWS\system32\svchost.exe

    --
    End of file - 35845 bytes

  2. #2
    Member Spyware Fighter zep516's Avatar
    Join Date
    Dec 2005
    Location
    Pittsburgh, Pa
    Posts
    7,158
    Points
    1301

    Default

    Hello Crocq,

    Lets take a closer look at things

    Please download Farbar Recovery Scan Tool and save it to your Desktop.
    Note: You need to run the version compatible with your system. If you are not sure which version applies to your system download both of them and try to run them. Only one of them will run on your system, that will be the right version.
    • Right click to run as administrator (XP users click run after receipt of Windows Security Warning - Open File). When the tool opens click Yes to disclaimer.
    • Press Scan button.
    • It will produce a log called FRST.txt in the same directory the tool is run from.
    • Please copy and paste log back here.
    • The first time the tool is run it generates another log (Addition.txt - also located in the same directory as FRST.exe/FRST64.exe). Please also paste that along with the FRST.txt into your reply.

  3. #3
    Member
    Join Date
    Jul 2017
    Posts
    4
    Points
    0

    Default

    Hi Zep.
    Thanks for your help!

    Here are the logs:

    Addition:

    Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 11-07-2017
    Exécuté par crocq (12-07-2017 19:55:20)
    Exécuté depuis C:\Users\crocq\Downloads
    Windows 10 Home Version 1703 (X64) (2017-05-06 16:11:21)
    Mode d'amorçage: Normal
    ==========================================================


    ==================== Comptes: =============================

    Administrateur (S-1-5-21-1918836148-936291157-4271617375-500 - Administrator - Disabled)
    crocq (S-1-5-21-1918836148-936291157-4271617375-1001 - Administrator - Enabled) => C:\Users\crocq
    DefaultAccount (S-1-5-21-1918836148-936291157-4271617375-503 - Limited - Disabled)
    defaultuser0 (S-1-5-21-1918836148-936291157-4271617375-1000 - Limited - Disabled) => C:\Users\defaultuser0
    Invité (S-1-5-21-1918836148-936291157-4271617375-501 - Limited - Disabled)
    stbxr (S-1-5-21-1918836148-936291157-4271617375-1002 - Limited - Enabled) => C:\Users\stbxr

    ==================== Centre de sécurité ========================

    (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)

    AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
    AV: Malwarebytes (Enabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B}
    AV: Bitdefender Antivirus (Enabled - Up to date) {3FB17364-4FCC-0FA7-6BBF-973897395371}
    AS: Bitdefender Antispyware (Enabled - Up to date) {84D09280-69F6-0029-510F-AC4AECBE19CC}
    AS: Malwarebytes (Disabled - Up to date) {98619B37-4FC4-67F2-1C99-EEF6D47DBD96}
    AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
    FW: Bitdefender Firewall (Enabled) {078AF241-05A3-0EFF-40E0-3E0D69EA140A}

    ==================== Programmes installés ======================

    (Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.)

    Adobe Bridge CC 2017 (HKLM-x32\...\KBRG_7_0) (Version: 7.0 - Adobe Systems Incorporated)
    Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 3.9.1.335 - Adobe Systems Incorporated)
    Adobe Photoshop CC 2015.5 (HKLM-x32\...\PHSP_17_0) (Version: 17.0.0 - Adobe Systems Incorporated)
    AKVIS OilPaint (HKLM\...\{EB956473-E6EC-43D9-A706-0276B7C560AE}) (Version: 5.0.520.13548 - AKVIS)
    Ansel (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Ansel) (Version: 382.53 - NVIDIA Corporation) Hidden
    Application de bureau Autodesk (HKLM-x32\...\Autodesk Desktop App) (Version: 7.0.5.154 - Autodesk)
    Argo (HKLM\...\Steam App 530700) (Version: - Bohemia Interactive)
    ATK Package (HKLM-x32\...\{AB5C933E-5C7D-4D30-B314-9C83A49B94BE}) (Version: 1.0.0050 - ASUS)
    Autodesk 3ds Max 2016 (HKLM\...\{52B37EC7-D836-0410-0464-3C24BCED2010}) (Version: 18.0.873.0 - Autodesk) Hidden
    Autodesk 3ds Max 2016 (HKLM\...\Autodesk 3ds Max 2016) (Version: 18.0.873.0 - Autodesk)
    Autodesk 3ds Max 2016 Populate Data (HKLM\...\{57E92DED-DC7C-41E5-B9E1-76D83BD2EABE}) (Version: 18.0.0.0 - Autodesk)
    Autodesk Advanced Material Library Image Library 2016 (HKLM-x32\...\{94AD53E7-493B-4291-8714-7A3B761D2783}) (Version: 6.3.0.19 - Autodesk)
    Autodesk Backburner 2016 (HKLM-x32\...\{8C5F38D2-9EFE-49A4-B3F5-BF3210FED168}) (Version: 16.0.0.0 - Autodesk)
    Autodesk Civil View for 3ds Max 2016 64-bit (HKLM\...\{1C4FFAF0-6DBB-4F7A-A386-46747D060826}) (Version: 18.0.0.0 - Autodesk)
    Autodesk Fusion 360 (HKU\S-1-5-21-1918836148-936291157-4271617375-1001\...\73e72ada57b7480280f7a6f4a289729f) (Version: 2.0.3133 - Autodesk, Inc.)
    Autodesk Inventor Server Engine for 3ds Max 2016 (HKLM\...\{9167CA34-4E58-49E3-8892-3C439739D2D3}) (Version: 18.0 - Autodesk)
    Autodesk License Service (x64) - 4.1 (HKLM\...\{B827D6B7-7731-43BA-92EC-916C89C88964}) (Version: 4.1.1.0 - Autodesk)
    Autodesk Material Library 2016 (HKLM-x32\...\{29A7D6EC-63C2-42FD-8143-5812ABD2923F}) (Version: 6.3.0.19 - Autodesk)
    Autodesk Material Library Base Resolution Image Library 2016 (HKLM-x32\...\{6B4CFC6E-ECB0-47FE-95D3-65C680ED0687}) (Version: 6.3.0.19 - Autodesk)
    Autodesk Material Library Medium Resolution Image Library 2016 (HKLM-x32\...\{415A5A54-325E-4815-9940-62A889CA3877}) (Version: 6.3.0.19 - Autodesk)
    Autodesk Maya 2017 (HKLM\...\{847DE41D-1C5A-4A52-ADD4-AE708757EDBD}) (Version: 17.0.1720.0 - Autodesk) Hidden
    Autodesk Maya 2017 (HKLM\...\Autodesk Maya 2017) (Version: 17.0.1720.0 - Autodesk)
    Autodesk Revit Interoperability for 3ds Max (HKLM\...\{0BB716E0-1600-0610-0000-097DC2F354DF}) (Version: 16.0.394.0 - Autodesk) Hidden
    Autodesk Revit Interoperability for 3ds Max (HKLM\...\Autodesk Revit Interoperability for 3ds Max ) (Version: 16.0.394.0 - Autodesk)
    Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
    Bitdefender Agent (HKLM\...\Bitdefender Agent) (Version: 21.0.21.970 - Bitdefender)
    Bitdefender Device Management (HKLM\...\Bitdefender Device Management) (Version: 21.0.22.1050 - Bitdefender)
    Bitdefender Total Security 2017 (HKLM\...\Bitdefender) (Version: 21.0.22.1050 - Bitdefender)
    Crusader Kings II (HKLM\...\Steam App 203770) (Version: - Paradox Development Studio)
    Discord (HKU\S-1-5-21-1918836148-936291157-4271617375-1001\...\Discord) (Version: 0.0.297 - Hammer & Chisel, Inc.)
    Dungeon of the Endless (HKLM\...\Steam App 249050) (Version: - AMPLITUDE Studios)
    ELAN Touchpad 11.5.21.6_X64_WHQL (HKLM\...\Elantech) (Version: 11.5.21.6 - ELAN Microelectronic Corp.)
    Europa Universalis IV (HKLM\...\Steam App 236850) (Version: - Paradox Development Studio)
    Foxit Reader (HKLM-x32\...\Foxit Reader_is1) (Version: 8.3.0.14878 - Foxit Software Inc.)
    Google Chrome (HKLM-x32\...\Google Chrome) (Version: 59.0.3071.115 - Google Inc.)
    Google Drive (HKLM-x32\...\{A1238426-ECDF-4639-BE2F-8D12A97AE23C}) (Version: 2.34.5075.1619 - Google, Inc.)
    Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.5 - Google Inc.) Hidden
    Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.6.0.1035 - Intel Corporation)
    Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 14.10.0.1016 - Intel Corporation)
    KeyShot 6 64 bit (HKLM-x32\...\KeyShot 6_64) (Version: 6.2 64 bit - Luxion ApS)
    Lazy Nezumi Pro 17.3.25.1950 (HKLM-x32\...\Lazy Nezumi Pro_is1) (Version: 17.3.25.1950 - Guillaume Stordeur)
    Logiciel pour périphérique à chipset Intel® (HKLM-x32\...\{bb0592a7-5772-4736-9d55-2402740085db}) (Version: 10.1.1.38 - Intel(R) Corporation) Hidden
    Malwarebytes version 3.1.2.1733 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.1.2.1733 - Malwarebytes)
    Megascans Studio version 0.912 (HKLM\...\{696362E1-CAA9-473E-9E0B-688602F65F5E}_is1) (Version: 0.912 - Quixel AB)
    Metro 2033 Redux (HKLM\...\Steam App 286690) (Version: - 4A GAMES)
    Metro: Last Light Redux (HKLM\...\Steam App 287390) (Version: - 4A Games)
    Microsoft Chart Controls for Microsoft .NET Framework 3.5 (HKLM-x32\...\{41785C66-90F2-40CE-8CB5-1C94BFC97280}) (Version: 3.5.0.0 - Microsoft Corporation)
    Microsoft OneDrive (HKU\S-1-5-21-1918836148-936291157-4271617375-1001\...\OneDriveSetup.exe) (Version: 17.3.6816.0313 - Microsoft Corporation)
    Microsoft OneDrive (HKU\S-1-5-21-1918836148-936291157-4271617375-1002\...\OneDriveSetup.exe) (Version: 17.3.6917.0607 - Microsoft Corporation)
    Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
    Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
    Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
    Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
    Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (HKLM\...\{350AA351-21FA-3270-8B7A-835434E766AD}) (Version: 9.0.21022 - Microsoft Corporation)
    Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
    Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
    Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
    Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
    Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
    Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
    Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
    Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
    Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
    Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
    Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
    Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
    Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
    Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24215 (HKLM-x32\...\{d992c12e-cab2-426f-bde3-fb8c53950b0d}) (Version: 14.0.24215.1 - Microsoft Corporation)
    Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
    Mises à jour NVIDIA 25.0.0.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 25.0.0.0 - NVIDIA Corporation) Hidden
    Mount & Blade: Warband (HKLM\...\Steam App 48700) (Version: - TaleWorlds Entertainment)
    MtoA for Maya 2017 (HKU\S-1-5-21-1918836148-936291157-4271617375-1001\...\MtoA2017) (Version: 1.3.0.0 - Solid Angle)
    NVIDIA GeForce Experience 3.6.0.74 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.6.0.74 - NVIDIA Corporation)
    NVIDIA Logiciel système PhysX 9.17.0329 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.17.0329 - NVIDIA Corporation)
    NVIDIA Pilote 3D Vision 382.53 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 382.53 - NVIDIA Corporation)
    NVIDIA Pilote audio HD : 1.3.34.27 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.27 - NVIDIA Corporation)
    NVIDIA Pilote graphique 382.53 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 382.53 - NVIDIA Corporation)
    NvNodejs (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvNodejs) (Version: 3.6.0.74 - NVIDIA Corporation) Hidden
    NvTelemetry (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvTelemetry) (Version: 2.4.10.0 - NVIDIA Corporation) Hidden
    NvvHci (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvvHci) (Version: 2.02.0.5 - NVIDIA Corporation) Hidden
    OpenAL (HKLM-x32\...\OpenAL) (Version: - )
    Origin (HKLM-x32\...\Origin) (Version: 10.4.13.6637 - Electronic Arts, Inc.)
    Overwatch (HKLM-x32\...\Overwatch) (Version: - Blizzard Entertainment)
    Panneau de configuration NVIDIA 382.53 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 382.53 - NVIDIA Corporation) Hidden
    PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.992 - Even Balance, Inc.)
    PureRef (HKLM-x32\...\PureRef) (Version: 1.8.0 - Idyllic Pixel)
    Razer Comms (HKLM-x32\...\Razer Comms) (Version: 5.12 - Razer Inc.)
    Razer Synapse (HKLM-x32\...\{0D78BEE2-F8FF-4498-AF1A-3FF81CED8AC6}) (Version: 2.20.15.1104 - Razer Inc.)
    Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.12.1007.2016 - Realtek)
    Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7701 - Realtek Semiconductor Corp.)
    Redshift (HKLM\...\Redshift) (Version: 2.0.86 - Redshift Rendering Technologies, Inc.)
    Revo Uninstaller Pro 3.1.9 (HKLM\...\{67579783-0FB7-4F7B-B881-E5BE47C9DBE0}_is1) (Version: 3.1.9 - VS Revo Group, Ltd.)
    Rising Storm 2: Vietnam (HKLM\...\Steam App 418460) (Version: - Antimatter Games)
    Rising Storm/Red Orchestra 2 Multiplayer (HKLM\...\Steam App 35450) (Version: - Tripwire Interactive)
    SHIELD Streaming (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.NvStreamSrv) (Version: 7.1.0370 - NVIDIA Corporation) Hidden
    SHIELD Wireless Controller Driver (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_ShieldWirelessController) (Version: 3.6.0.74 - NVIDIA Corporation) Hidden
    Sid Meier's Civilization V (HKLM\...\Steam App 8930) (Version: - Firaxis Games)
    Skype™ 7.35 (HKLM-x32\...\{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}) (Version: 7.35.101 - Skype Technologies S.A.)
    Spotify (HKU\S-1-5-21-1918836148-936291157-4271617375-1001\...\Spotify) (Version: 1.0.57.474.gca9c9538 - Spotify AB)
    Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
    Steel Division: Normandy 44 (HKLM\...\Steam App 572410) (Version: - Eugen Systems)
    SUPERAntiSpyware (HKLM\...\{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}) (Version: 6.0.1244 - SUPERAntiSpyware.com)
    Tablette Wacom (HKLM\...\Wacom Tablet Driver) (Version: 6.3.19-3 - Wacom Technology Corp.)
    TAP-Windows 9.21.2 (HKLM\...\TAP-Windows) (Version: 9.21.2 - )
    TeamViewer 12 (HKLM-x32\...\TeamViewer) (Version: 12.0.72365 - TeamViewer)
    The Long Dark (HKLM\...\Steam App 305620) (Version: - Hinterland Studio Inc.)
    The Witness (HKLM\...\Steam App 210970) (Version: - Thekla, Inc.)
    Total War: ROME II - Emperor Edition (HKLM\...\Steam App 214950) (Version: - Creative Assembly)
    Visual Studio 2010 SP1 Runtime x64 (HKLM\...\{F6305232-7952-4CCE-BDCD-9B2E66591C4A}) (Version: 1.0.0 - Microsoft Corporation)
    Visual Studio 2010 SP1 Runtime x86 (HKLM-x32\...\{AEA163A5-BA2F-4E63-9529-DE8606AC82A4}) (Version: 1.0.0 - Microsoft Corporation)
    VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.4 - VideoLAN)
    VPNetwork LLC - TorGuard - Online Privacy Protection Services (HKLM-x32\...\VPNetwork LLC TorGuard) (Version: "0.3.69" - "VPNetwork LLC")
    V-Ray for 3dsmax 2016 for x64 (HKLM\...\V-Ray for 3dsmax 2016 for x64) (Version: 3.40.01 - Chaos Software Ltd)
    Vulkan Run Time Libraries 1.0.42.1 (HKLM\...\VulkanRT1.0.42.1) (Version: 1.0.42.1 - LunarG, Inc.)
    Wargame: Red Dragon (HKLM\...\Steam App 251060) (Version: - Eugen Systems)
    WD Backup (HKLM-x32\...\{4AACAFC7-951A-4215-B430-3DFCFF2E6CED}) (Version: 1.5.5953.19614 - Western Digital Technologies, Inc) Hidden
    WD Backup (HKLM-x32\...\{a8c9535a-ecd9-4172-a330-0cb5ff9dbed9}) (Version: 1.5.5953.19614 - Western Digital Technologies, Inc.)
    WD Drive Utilities (HKLM-x32\...\{48996CDD-DD81-4197-93FE-0971E73C5CA7}) (Version: 1.3.2.2 - Western Digital Technologies, Inc.) Hidden
    WD Drive Utilities (HKLM-x32\...\{eab1fb93-61fb-48de-b815-b4e9b68d2ef1}) (Version: 1.3.2.2 - Western Digital Technologies, Inc.)
    WD Quick View (HKLM-x32\...\{EDBCC917-ADE2-4470-83F1-D0A233D9495C}) (Version: 2.4.10.17 - Western Digital Technologies, Inc.)
    WD Security (HKLM-x32\...\{249644e6-451a-4a5c-bd5c-21eeb9eec79d}) (Version: 1.3.1.2 - Western Digital Technologies, Inc.)
    WD Security (HKLM-x32\...\{7CC2EDF2-83EC-4707-BDD3-72469236A6CC}) (Version: 1.3.1.2 - Western Digital Technologies, Inc.) Hidden
    WebTablet FB Plugin 32 bit (HKLM-x32\...\Wacom WebTabletPlugin for Internet Explorer and Netscape) (Version: 2.1.0.7 - Wacom Technology Corp.)
    WebTablet FB Plugin 64 bit (HKLM\...\Wacom WebTabletPlugin for Internet Explorer and Netscape) (Version: 2.1.0.7 - Wacom Technology Corp.)
    WibuKey Setup (WibuKey Remove) (HKLM\...\{00060000-0000-1004-8002-0000C06B5161}) (Version: Version 6.32 of 2015-Jul-21 (Build 1504) (Setup) - WIBU-SYSTEMS AG)
    Windows 10 Update and Privacy Settings (HKLM\...\{293F2009-0145-450B-B4AA-063D43FB368C}) (Version: 1.0.13.0 - Microsoft Corporation)
    WinRAR 5.40 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.40.0 - win.rar GmbH)
    World Machine 2 Professional Edition (HKLM-x32\...\World Machine2Pro) (Version: - )
    XCOM 2 (HKLM\...\Steam App 268500) (Version: - Firaxis)
    ZBrush 4R7 (HKLM-x32\...\ZBrush 4R7 4R7) (Version: 4R7 - Pixologic)

    ==================== Personnalisé CLSID (Avec liste blanche): ==========================

    (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

    CustomCLSID: HKU\S-1-5-21-1918836148-936291157-4271617375-1001_Classes\CLSID\{073CB204-6B29-46FC-AB98-451F1D068741}\InprocServer32 -> C:\Program Files\Autodesk\3ds Max 2016\Inventor Server\Bin\TestServer.dll => Pas de fichier
    CustomCLSID: HKU\S-1-5-21-1918836148-936291157-4271617375-1001_Classes\CLSID\{0E270DAA-1BE6-48F2-AC49-B0E469795F52}\InprocServer32 -> %%systemroot%%\system32\shell32.dll => Pas de fichier
    CustomCLSID: HKU\S-1-5-21-1918836148-936291157-4271617375-1001_Classes\CLSID\{8C23B656-4E6E-4B45-9920-9617168D39A3}\InprocServer32 -> C:\Program Files\Autodesk\3ds Max 2016\Inventor Server\Bin\TestServer.dll => Pas de fichier
    CustomCLSID: HKU\S-1-5-21-1918836148-936291157-4271617375-1001_Classes\CLSID\{C4F0910E-E0B4-4E68-8086-452730C7A26A}\InprocServer32 -> C:\Users\crocq\AppData\Local\Autodesk\webdeploy\production\0c6c8be812b2dce050a3457de4077e03313640ae\NPreview10.dll ()
    CustomCLSID: HKU\S-1-5-21-1918836148-936291157-4271617375-1001_Classes\CLSID\{E5B0515D-48D2-4F04-906D-0192ED65A2DD}\InprocServer32 -> C:\Program Files\Autodesk\3ds Max 2016\Inventor Server\Bin\TestServer.dll => Pas de fichier
    CustomCLSID: HKU\S-1-5-21-1918836148-936291157-4271617375-1001_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Systems)
    ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2017-03-21] (Google)
    ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2017-03-21] (Google)
    ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2017-03-21] (Google)
    ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-10-25] ()
    ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-10-25] ()
    ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-10-25] ()
    ContextMenuHandlers01: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-10-25] ()
    ContextMenuHandlers01: [BDFVCtxMenuExt] -> {9E96C1F5-0EFA-4348-9460-15D6802C70AA} => C:\Program Files\Bitdefender\Bitdefender 2017\bdfvsctx.dll [2017-04-24] (Bitdefender)
    ContextMenuHandlers01: [Foxit_ConvertToPDF_Reader] -> {A94757A0-0226-426F-B4F1-4DF381C630D3} => C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\ConvertToPDFShellExtension_x64.dll [2017-03-31] (Foxit Software Inc.)
    ContextMenuHandlers01: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files (x86)\Google\Drive\contextmenu64.dll [2017-03-21] (Google)
    ContextMenuHandlers01: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2016-08-15] (Alexander Roshal)
    ContextMenuHandlers01: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => -> Pas de fichier
    ContextMenuHandlers03: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2017-05-09] (Malwarebytes)
    ContextMenuHandlers04: [BDFVCtxMenuExt] -> {9E96C1F5-0EFA-4348-9460-15D6802C70AA} => C:\Program Files\Bitdefender\Bitdefender 2017\bdfvsctx.dll [2017-04-24] (Bitdefender)
    ContextMenuHandlers04: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files (x86)\Google\Drive\contextmenu64.dll [2017-03-21] (Google)
    ContextMenuHandlers05: [BDFVCtxMenuExt] -> {9E96C1F5-0EFA-4348-9460-15D6802C70AA} => C:\Program Files\Bitdefender\Bitdefender 2017\bdfvsctx.dll [2017-04-24] (Bitdefender)
    ContextMenuHandlers05: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2017-06-07] (NVIDIA Corporation)
    ContextMenuHandlers06: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-10-25] ()
    ContextMenuHandlers06: [BDFVCtxMenuExt] -> {9E96C1F5-0EFA-4348-9460-15D6802C70AA} => C:\Program Files\Bitdefender\Bitdefender 2017\bdfvsctx.dll [2017-04-24] (Bitdefender)
    ContextMenuHandlers06: [Foxit_ConvertToPDF_Reader] -> {A94757A0-0226-426F-B4F1-4DF381C630D3} => C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\ConvertToPDFShellExtension_x64.dll [2017-03-31] (Foxit Software Inc.)
    ContextMenuHandlers06: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2017-05-09] (Malwarebytes)
    ContextMenuHandlers06: [RUShellExt] -> {2C5515DC-2A7E-4BFD-B813-CACC2B685EB7} => C:\Program Files\VS Revo Group\Revo Uninstaller Pro\RUExt.dll [2016-12-15] (VS Revo Group)
    ContextMenuHandlers06: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2016-08-15] (Alexander Roshal)
    ContextMenuHandlers06: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => -> Pas de fichier

    ==================== Tâches planifiées (Avec liste blanche) =============

    (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

    Task: {00F0E6F8-20EE-4E40-B1FA-882027B2AA7E} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-06-07] (NVIDIA Corporation)
    Task: {09EF9741-510D-44B7-BBD2-ADDA3F2834A5} - System32\Tasks\RtHDVBg => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2015-12-25] (Realtek Semiconductor)
    Task: {1C226EB3-DB96-49B5-9726-4CED18A7543B} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-06-07] (NVIDIA Corporation)
    Task: {39D4560A-3FFA-4BD8-B45E-C00FA1C914D7} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-01-02] (Google Inc.)
    Task: {4B0FD656-BBD8-48C8-A17A-C21388B272D9} - System32\Tasks\Bitdefender AgentTask_AD394AE64E874073B10A89FEEC305A3C => C:\Program Files\Bitdefender\Bitdefender 2017\bdagent.exe [2017-04-24] (Bitdefender)
    Task: {5732A3EE-C29D-42A7-A5E2-3FD9D5CA0FF7} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2017-06-07] (NVIDIA Corporation)
    Task: {758B184D-0709-4007-B0EF-BB262384F7A3} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2017-06-07] (NVIDIA Corporation)
    Task: {785DEF1D-72B0-4A07-ACC5-4636D8F32AE2} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [2015-12-25] (Realtek Semiconductor)
    Task: {82C8F692-E512-4489-95D5-01990DF812A0} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [2017-06-07] (NVIDIA Corporation)
    Task: {945FBA82-E5A7-4212-83BD-A305C62685E0} - System32\Tasks\AdobeAAMUpdater-1.0-MicrosoftAccount-crocq.clem@hotmail.fr => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2016-07-01] (Adobe Systems Incorporated)
    Task: {AB666504-471B-4944-A309-A60B0DE16255} - System32\Tasks\RtHDVBg_ListenToDevice => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2015-12-25] (Realtek Semiconductor)
    Task: {B4C71B8C-3E1C-4957-BBB3-79D3520C1A62} - System32\Tasks\Bitdefender Agent WatchDog_65D6944A0EF74FDAB96E31112AD39864 => C:\Program Files\Bitdefender Agent\WatchDog.exe [2017-04-11] (Bitdefender)
    Task: {C2A7A05C-6640-4C36-8B20-294F8D096889} - System32\Tasks\SUPERAntiSpyware Scheduled Task a22b9c13-1843-4b2a-b488-94d0b1269191 => C:\Program Files\SUPERAntiSpyware\SASTask.exe [2013-11-07] (SUPERAdBlocker.com)
    Task: {CA26DD4B-80C2-459B-ACDF-F49DCB92F384} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-06-07] (NVIDIA Corporation)
    Task: {CDDA09B2-F551-4490-B496-F6549400A287} - System32\Tasks\Intel PTT EK Recertification => C:\Program Files\Intel\iCLS Client\IntelPTTEKRecertification.exe [2016-07-26] (Intel(R) Corporation)
    Task: {D016B585-1617-4E1E-B5F2-23FD5D2E8139} - System32\Tasks\SUPERAntiSpyware Scheduled Task 3add6fb9-5df4-4107-a590-985d616f8f9e => C:\Program Files\SUPERAntiSpyware\SASTask.exe [2013-11-07] (SUPERAdBlocker.com)
    Task: {DC29FA90-EF2A-4D8D-8F5B-6A012AC170E2} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-01-02] (Google Inc.)
    Task: {EB9A53CC-A8C6-4946-9226-B9226014152E} - System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-06-07] (NVIDIA Corporation)
    Task: {ED00C7C8-587E-4764-A990-12AC3195D149} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [2017-06-07] (NVIDIA Corporation)
    Task: {ED3378D8-84BE-4525-B239-82FC970277B0} - System32\Tasks\ATK Package A22126881260 => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe [2015-09-22] (ASUSTek Computer Inc.)
    Task: {EE43317B-DBB4-4BE2-8C63-B6B91B43DEB3} - System32\Tasks\ATK Package 36D18D69AFC3 => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe [2015-09-22] (ASUSTek Computer Inc.)

    (Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)

    Task: C:\WINDOWS\Tasks\SUPERAntiSpyware Scheduled Task 3add6fb9-5df4-4107-a590-985d616f8f9e.job => C:\Program Files\SUPERAntiSpyware\SASTask.exe C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
    Task: C:\WINDOWS\Tasks\SUPERAntiSpyware Scheduled Task a22b9c13-1843-4b2a-b488-94d0b1269191.job => C:\Program Files\SUPERAntiSpyware\SASTask.exe C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe

    ==================== Raccourcis & WMI ========================

    (Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.)


    Shortcut: C:\Users\crocq\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\KeyShot 6 64\Documentation\KeyShot Manual.lnk -> hxxp://keyshot.com/manual/keyshot6/KeyShot_6_Manual.pd
    Shortcut: C:\Users\crocq\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\3d-Coat-V4.5\Online_Documentation.lnk -> hxxp://3d-coat.com/manual

    ==================== Modules chargés (Avec liste blanche) ==============

    2017-04-24 21:25 - 2017-04-24 21:25 - 00111832 _____ () C:\Program Files\Bitdefender\Bitdefender 2017\bdmetrics.dll
    2017-02-08 00:07 - 2017-02-08 00:07 - 01008448 _____ () C:\Program Files\Bitdefender\Bitdefender 2017\otengines_02451_002\ashttpbr.mdl
    2017-02-08 00:07 - 2017-02-08 00:07 - 00541952 _____ () C:\Program Files\Bitdefender\Bitdefender 2017\otengines_02451_002\ashttpdsp.mdl
    2017-02-08 00:07 - 2017-02-08 00:07 - 03243920 _____ () C:\Program Files\Bitdefender\Bitdefender 2017\otengines_02451_002\ashttpph.mdl
    2017-02-08 00:07 - 2017-02-08 00:07 - 01544568 _____ () C:\Program Files\Bitdefender\Bitdefender 2017\otengines_02451_002\ashttprbl.mdl
    2017-05-27 13:23 - 2017-05-27 13:26 - 00076888 _____ () C:\WINDOWS\SysWOW64\PnkBstrA.exe
    2016-09-24 19:20 - 2016-09-24 19:21 - 00189264 _____ () C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
    2017-07-12 16:32 - 2017-07-12 16:35 - 02270664 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\MwacLib.dll
    2016-10-25 10:57 - 2016-10-25 10:57 - 00491184 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll
    2017-03-18 16:58 - 2017-03-18 16:58 - 00138000 _____ () C:\WINDOWS\SYSTEM32\inputhost.dll
    2017-01-03 15:13 - 2016-12-09 22:09 - 01658320 _____ () C:\Program Files\Tablet\Wacom\libxml2.dll
    2017-03-18 16:59 - 2017-03-20 01:11 - 01731072 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
    2017-06-27 22:23 - 2017-06-22 23:21 - 03807064 _____ () C:\Program Files (x86)\Google\Chrome\Application\59.0.3071.115\libglesv2.dll
    2017-06-27 22:23 - 2017-06-22 23:21 - 00100184 _____ () C:\Program Files (x86)\Google\Chrome\Application\59.0.3071.115\libegl.dll
    2017-05-29 19:46 - 2017-05-29 19:46 - 00023328 _____ () C:\Program Files\Bitdefender\Bitdefender 2017\lang\en-US\bdsystray.txtui
    2017-06-03 15:55 - 2017-03-10 06:48 - 00061944 _____ () C:\Program Files (x86)\Autodesk\Autodesk Desktop App\QtSolutions_Service-head.dll
    2017-06-03 15:55 - 2017-03-10 06:48 - 00110584 _____ () C:\Program Files (x86)\Autodesk\Autodesk Desktop App\qjson0.dll
    2017-07-03 22:59 - 2017-04-05 10:09 - 02493440 _____ () D:\Origin\libGLESv2.dll
    2016-10-05 22:17 - 2016-10-05 22:17 - 01243936 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll
    2017-07-03 22:59 - 2017-04-05 10:09 - 00012288 _____ () D:\Origin\libEGL.DLL
    2017-05-16 15:52 - 2017-01-04 15:28 - 01958912 _____ () C:\Users\crocq\AppData\Local\Discord\app-0.0.297\ffmpeg.dll
    2017-05-16 15:52 - 2017-05-16 15:52 - 01082880 _____ () \\?\C:\Users\crocq\AppData\Roaming\discord\0.0.297\modules\discord_voice\discord_voice.node
    2017-05-16 15:52 - 2017-05-16 15:52 - 03750400 _____ () \\?\C:\Users\crocq\AppData\Roaming\discord\0.0.297\modules\discord_voice\libdiscord.dll
    2017-05-16 15:52 - 2017-05-16 15:52 - 00914432 _____ () \\?\C:\Users\crocq\AppData\Roaming\discord\0.0.297\modules\discord_utils\discord_utils.node
    2017-05-16 15:52 - 2017-05-16 15:52 - 01127424 _____ () \\?\C:\Users\crocq\AppData\Roaming\discord\0.0.297\modules\discord_toaster\discord_toaster.node
    2017-05-16 15:52 - 2017-01-04 15:28 - 02278912 _____ () C:\Users\crocq\AppData\Local\Discord\app-0.0.297\libglesv2.dll
    2017-05-16 15:52 - 2017-01-04 15:28 - 00096768 _____ () C:\Users\crocq\AppData\Local\Discord\app-0.0.297\libegl.dll
    2017-07-12 19:52 - 2017-07-12 19:52 - 00148992 _____ () \\?\C:\Users\crocq\AppData\Local\Temp\5E39.tmp.node
    2017-05-16 15:52 - 2017-05-16 15:52 - 02658296 _____ () \\?\C:\Users\crocq\AppData\Roaming\discord\0.0.297\modules\discord_rpc\discord_rpc.node
    2017-05-22 13:54 - 2017-05-22 13:54 - 02665976 _____ () \\?\C:\Users\crocq\AppData\Roaming\discord\0.0.297\modules\discord_contact_import\discord_contact_import.node

    ==================== Alternate Data Streams (Avec liste blanche) =========

    (Si un élément est inclus dans le fichier fixlist.txt, seul le flux de données additionnel (ADS - Alternate Data Stream) sera supprimé.)

    AlternateDataStreams: C:\ProgramData\TEMP:94D97A40 [140]
    AlternateDataStreams: C:\Users\crocq\Desktop\DS4Windows.exe:BDU [0]
    AlternateDataStreams: C:\Users\crocq\Downloads\adwcleaner_6.047.exe:BDU [0]
    AlternateDataStreams: C:\Users\crocq\Downloads\FRST64.exe:BDU [0]
    AlternateDataStreams: C:\Users\crocq\Downloads\HijackThis.exe:BDU [0]
    AlternateDataStreams: C:\Users\crocq\Downloads\mb3-setup-35891.35891-3.1.2.1733-1.0.139-1.0.2060.exe:BDU [0]
    AlternateDataStreams: C:\Users\crocq\Downloads\SUPERAntiSpyware.exe:BDU [0]

    ==================== Mode sans échec (Avec liste blanche) ===================

    (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.)

    HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
    HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

    ==================== Association (Avec liste blanche) ===============

    (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé.)


    ==================== Internet Explorer sites de confiance/sensibles ===============

    (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre.)


    ==================== Hosts contenu: ==========================

    (Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.)

    2017-01-04 18:44 - 2017-07-12 19:30 - 00001027 _____ C:\WINDOWS\system32\Drivers\etc\hosts

    127.0.0.1 lmlicenses.wip4.adobe.com
    127.0.0.1 lm.licenses.adobe.com
    127.0.0.1 na1r.services.adobe.com
    127.0.0.1 hlrcv.stage.adobe.com
    127.0.0.1 practivate.adobe.com
    127.0.0.1 activate.adobe.com

    ==================== Autres zones ============================

    (Actuellement, il n'y a pas de correction automatique pour cette section.)

    HKU\S-1-5-21-1918836148-936291157-4271617375-1000\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Windows\img0.jpg
    HKU\S-1-5-21-1918836148-936291157-4271617375-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\crocq\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\{5e75c733-1792-4fd2-8f70-d3e347bfd37d}.jpeg
    HKU\S-1-5-21-1918836148-936291157-4271617375-1002\Control Panel\Desktop\\Wallpaper -> C:\WINDOWS\web\wallpaper\Windows\img0.jpg
    DNS Servers: 192.168.0.1 - 23.233.128.16
    HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
    HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
    Le Pare-feu est activé.

    ==================== MSCONFIG/TASK MANAGER éléments désactivés ==

    HKLM\...\StartupApproved\StartupFolder: => "Serveur réseau.lnk"
    HKLM\...\StartupApproved\Run: => "AdobeAAMUpdater-1.0"
    HKLM\...\StartupApproved\Run: => "IAStorIcon"
    HKLM\...\StartupApproved\Run32: => "Adobe Creative Cloud"
    HKLM\...\StartupApproved\Run32: => "ADSKAppManager"
    HKLM\...\StartupApproved\Run32: => "Razer Synapse"
    HKLM\...\StartupApproved\Run32: => "Autodesk Desktop App"
    HKU\S-1-5-21-1918836148-936291157-4271617375-1001\...\StartupApproved\Run: => "OneDrive"
    HKU\S-1-5-21-1918836148-936291157-4271617375-1001\...\StartupApproved\Run: => "GoogleChromeAutoLaunch_D4597A70D3FBAEDD67D809FFC94E88D8"
    HKU\S-1-5-21-1918836148-936291157-4271617375-1001\...\StartupApproved\Run: => "Razer Comms"
    HKU\S-1-5-21-1918836148-936291157-4271617375-1001\...\StartupApproved\Run: => "Discord"
    HKU\S-1-5-21-1918836148-936291157-4271617375-1001\...\StartupApproved\Run: => "GoogleDriveSync"

    ==================== RèglesPare-feu (Avec liste blanche) ===============

    (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

    FirewallRules: [{4695174D-0B69-4001-96DE-3407AC851F8E}] => (Allow) D:\Steam\steamapps\common\Red Orchestra 2\Binaries\Win32\ROGame.exe
    FirewallRules: [{74394137-C91D-4917-96D3-69E7342453A6}] => (Allow) D:\Steam\steamapps\common\Red Orchestra 2\Binaries\Win32\ROGame.exe
    FirewallRules: [{2DB77965-4546-4E60-A4C1-5DB6452BAAF1}] => (Allow) D:\Steam\steamapps\common\Europa Universalis IV\eu4.exe
    FirewallRules: [{5B386AEA-2A21-4352-9CB7-E13B5CB9B37A}] => (Allow) D:\Steam\steamapps\common\Europa Universalis IV\eu4.exe
    FirewallRules: [{08CE18FF-24BE-49FD-B41F-E01B165D63E8}] => (Allow) D:\Steam\steamapps\common\Total War Rome II\launcher\launcher.exe
    FirewallRules: [{9BDF42DF-CC17-4D4A-AE05-C1394495CAB3}] => (Allow) D:\Steam\steamapps\common\Total War Rome II\launcher\launcher.exe
    FirewallRules: [{B112DC4F-0CB6-462E-ADE5-7377BF2E5FB6}] => (Allow) D:\Steam\steamapps\common\Total War WARHAMMER\launcher\launcher.exe
    FirewallRules: [{DA661398-AD86-4079-965C-E906FF856201}] => (Allow) D:\Steam\steamapps\common\Total War WARHAMMER\launcher\launcher.exe
    FirewallRules: [{E05764E3-2852-4125-B7AC-27BE5EE2F506}] => (Allow) C:\Program Files\KeyShot6\bin\keyshot_daemon.exe
    FirewallRules: [{893B8733-F873-49E9-B84A-A935837A95B5}] => (Allow) C:\Program Files\KeyShot6\bin\keyshot6.exe
    FirewallRules: [{5E4F735E-C440-4CF9-B6BE-D5F1A114CAE9}] => (Allow) D:\Steam\steamapps\common\Dungeon of the Endless\DungeonoftheEndless.exe
    FirewallRules: [{694111FE-18E4-4525-8EE7-BABFCC68C090}] => (Allow) D:\Steam\steamapps\common\Dungeon of the Endless\DungeonoftheEndless.exe
    FirewallRules: [{3FC9A43D-E0A0-4146-98E2-A2F2461BA631}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
    FirewallRules: [{B7A86217-725A-4CAA-999F-FA9BC581171F}] => (Allow) D:\Steam\steamapps\common\insurgency2\insurgency.exe
    FirewallRules: [{7BD0203D-8A63-457C-9E00-3EEBA836194C}] => (Allow) D:\Steam\steamapps\common\insurgency2\insurgency.exe
    FirewallRules: [{9C6FFDB1-603C-4286-8217-E799A8FDC648}] => (Allow) D:\Steam\steamapps\common\Squad\squad_launcher.exe
    FirewallRules: [{2B175A8B-8EA4-4651-A46B-D28C3D0B7940}] => (Allow) D:\Steam\steamapps\common\Squad\squad_launcher.exe
    FirewallRules: [{E0D543C2-1F6C-4E72-A124-4C3AA865DD90}] => (Allow) D:\Steam\steamapps\common\Arma 3\arma3launcher.exe
    FirewallRules: [{BE8D3D1D-175E-4F7C-8A6D-629860EA0DCF}] => (Allow) D:\Steam\steamapps\common\Arma 3\arma3launcher.exe
    FirewallRules: [{F78CFF79-0D4E-4D34-843A-1EA231F1D40B}] => (Allow) D:\Steam\steamapps\common\ASTRONEER Early Access\Astro.exe
    FirewallRules: [{7A7357DE-0C04-4006-8643-4529C1C803A4}] => (Allow) D:\Steam\steamapps\common\ASTRONEER Early Access\Astro.exe
    FirewallRules: [{AD8396C6-79DB-4610-AB4D-E5AAC1EFD637}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
    FirewallRules: [{C8382AAA-840E-4778-A172-6EF37654205B}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
    FirewallRules: [{8EF9EE04-86D2-4A4C-8422-BC1789505F86}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
    FirewallRules: [{CDAE99E1-774F-4813-BD2E-F9F0E90D72B8}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
    FirewallRules: [{8F144E8C-9AA1-49A9-8112-4F8AEECD902C}] => (Allow) D:\Steam\steamapps\common\The Witness\witness_d3d11.exe
    FirewallRules: [{A7B68E61-DF91-45F1-9F2B-22D5EC921A64}] => (Allow) D:\Steam\steamapps\common\The Witness\witness_d3d11.exe
    FirewallRules: [{272BC6CB-E89C-49AB-BA2B-B6FCD7A90162}] => (Allow) D:\Steam\bin\cef\cef.win7\steamwebhelper.exe
    FirewallRules: [{ED1CD3F1-A857-49E9-8AF2-25EC45DFFC71}] => (Allow) D:\Steam\bin\cef\cef.win7\steamwebhelper.exe
    FirewallRules: [{9CA005F6-9A0A-47CA-861C-9167D7B0480E}] => (Allow) D:\Steam\Steam.exe
    FirewallRules: [{AC4A7159-747D-4F7F-96F5-3185E1EB25EB}] => (Allow) D:\Steam\Steam.exe
    FirewallRules: [{12AB7533-5C94-48A0-B7EE-0C037DFA1619}] => (Allow) C:\Program Files\Chaos Group\V-Ray\3dsmax 2016 for x64\vrlservice.exe
    FirewallRules: [{2C50527E-EC47-43CE-AB25-34CD4192A904}] => (Allow) C:\Program Files\Chaos Group\V-Ray\3dsmax 2016 for x64\vrlservice.exe
    FirewallRules: [{93E6B8A4-65D1-4C84-9620-B0E8F682112C}] => (Allow) C:\Program Files\Autodesk\3ds Max 2016\NVIDIA\Satellite\raysat_3dsmax2016_64.exe
    FirewallRules: [{496F1F99-D692-4FB2-B989-4A0BE1E712E2}] => (Allow) C:\Program Files\Autodesk\3ds Max 2016\NVIDIA\Satellite\raysat_3dsmax2016_64.exe
    FirewallRules: [{696C7631-E9E8-4C50-BDED-7ABA9ED6D305}] => (Allow) C:\Program Files\Autodesk\3ds Max 2016\NVIDIA\Satellite\raysat_3dsmax2016_64server.exe
    FirewallRules: [{AB3D9FE8-1196-46A6-AB74-E92F2568BAE5}] => (Allow) C:\Program Files\Autodesk\3ds Max 2016\NVIDIA\Satellite\raysat_3dsmax2016_64server.exe
    FirewallRules: [{18220348-5B26-48CD-947B-169C27550700}] => (Allow) C:\Users\crocq\AppData\Roaming\uTorrent\uTorrent.exe
    FirewallRules: [{EC120D6D-C939-4814-8FDC-280AAD2F4195}] => (Allow) C:\Users\crocq\AppData\Roaming\uTorrent\uTorrent.exe
    FirewallRules: [{DACB1DFA-83FE-4E5D-A7C3-453A98B2FA29}] => (Allow) C:\Users\crocq\AppData\Roaming\uTorrent\uTorrent.exe
    FirewallRules: [{09F0022A-FEE8-4866-83EF-EE5939881834}] => (Allow) C:\Users\crocq\AppData\Roaming\uTorrent\uTorrent.exe
    FirewallRules: [{44BCA9AB-DA51-44F2-9AC5-06F16D7E28C1}] => (Allow) C:\Users\crocq\AppData\Roaming\uTorrent\uTorrent.exe
    FirewallRules: [{8E4B93A6-9A05-4538-953D-3DF045E207C6}] => (Allow) C:\Users\crocq\AppData\Roaming\uTorrent\uTorrent.exe
    FirewallRules: [{BC7B83BF-65A1-4AAF-BB94-1DE547A25044}] => (Allow) D:\Steam\steamapps\common\Sid Meier's Civilization V\Launcher.exe
    FirewallRules: [{B62A3C06-BDD4-4DB9-A6D9-DBB873F0EA7C}] => (Allow) D:\Steam\steamapps\common\Sid Meier's Civilization V\Launcher.exe
    FirewallRules: [{DD1C7FC2-9D78-4185-B43C-FF1F33498CA7}] => (Allow) D:\Steam\steamapps\common\Crusader Kings II\CK2game.exe
    FirewallRules: [{FFE37BF6-093D-41C3-8E7C-A066FC982BAD}] => (Allow) D:\Steam\steamapps\common\Crusader Kings II\CK2game.exe
    FirewallRules: [{6A5E9967-ADE8-4CCA-A3FC-48CE6D92074C}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
    FirewallRules: [{73964DB6-6070-4532-80BC-6B3B2BB52A62}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
    FirewallRules: [{5AA41092-5307-4D97-8646-CF894B1B1987}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
    FirewallRules: [{403E4694-CFFB-4B6F-B720-CFD2A0FF19E4}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
    FirewallRules: [{9A429DBB-47B8-4E16-BB79-D64440EC7AA1}] => (Allow) D:\Steam\steamapps\common\Rising Storm 2\Binaries\Win64\RisingStorm2.exe
    FirewallRules: [{4F6006A2-13BF-4D9E-A469-CB24D731B0B4}] => (Allow) D:\Steam\steamapps\common\Rising Storm 2\Binaries\Win64\RisingStorm2.exe
    FirewallRules: [{52692D23-B4E4-411F-B746-3B1E86191767}] => (Allow) D:\Steam\steamapps\common\Metro Last Light Redux\metro.exe
    FirewallRules: [{1176E427-696B-4A03-9D03-02F4FC8BDCE0}] => (Allow) D:\Steam\steamapps\common\Metro Last Light Redux\metro.exe
    FirewallRules: [{5BCAEC2D-2563-465E-91F7-F364115255BE}] => (Allow) D:\Steam\steamapps\common\Metro 2033 Redux\metro.exe
    FirewallRules: [{BC9B577B-F4CF-40C1-A272-FB5AE0EC8763}] => (Allow) D:\Steam\steamapps\common\Metro 2033 Redux\metro.exe
    FirewallRules: [{7F48ADDB-D9E4-4210-BE7F-C57684C8EBC5}] => (Allow) D:\Steam\steamapps\common\Pillars of Eternity\PillarsOfEternity.exe
    FirewallRules: [{F4D7C09D-6B4C-409B-825F-2672A7F80529}] => (Allow) D:\Steam\steamapps\common\Pillars of Eternity\PillarsOfEternity.exe
    FirewallRules: [{CA2D0C98-1075-49A1-929F-27D5412B234D}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
    FirewallRules: [{8EADA86C-83DC-43C7-884F-423173337D1B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
    FirewallRules: [{D9848F1A-1AE8-4FBB-A949-77F93EFEE0CB}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
    FirewallRules: [{71DC2DA5-6523-43D8-988E-CBEEE9431234}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
    FirewallRules: [{E0FBFA92-B203-4616-8BA4-531CFCA2092D}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
    FirewallRules: [{91057BB1-0D93-46EE-A7D5-66DFB6743615}] => (Allow) D:\Steam\steamapps\common\Steel Division\SteelDivision.exe
    FirewallRules: [{DB7022D3-E548-4837-BE6B-18C3C7574041}] => (Allow) D:\Steam\steamapps\common\Steel Division\SteelDivision.exe
    FirewallRules: [{49CEDEF6-8020-4445-A001-72B17EC8A71F}] => (Allow) D:\Steam\steamapps\common\Argo\argobattleye.exe
    FirewallRules: [{E7EBCD76-56D7-4593-86C2-CDFC35E2EDF5}] => (Allow) D:\Steam\steamapps\common\Argo\argobattleye.exe
    FirewallRules: [{26762C13-F1B1-487D-A1CC-10D1D90BCFF1}] => (Allow) D:\Steam\steamapps\common\Wargame Red Dragon\WarGame3.exe
    FirewallRules: [{949B3271-7D14-4BA7-9AB2-788534C49D61}] => (Allow) D:\Steam\steamapps\common\Wargame Red Dragon\WarGame3.exe
    FirewallRules: [{0ED33B00-662C-462F-BF80-423383221A0B}] => (Allow) D:\Steam\steamapps\common\TheLongDark\tld.exe
    FirewallRules: [{2FA4A8E5-D9C2-43C9-9411-7C6B7B8B73AA}] => (Allow) D:\Steam\steamapps\common\TheLongDark\tld.exe
    FirewallRules: [{D26481C9-648E-4D90-9346-9C61B530A1E2}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
    FirewallRules: [{D9A7CD62-4DDB-40B4-BEC4-44F3F72DF593}] => (Allow) D:\Steam\steamapps\common\MountBlade Warband\mb_warband.exe
    FirewallRules: [{DC59D2CC-CA81-4C1A-B57E-B2B864344C86}] => (Allow) D:\Steam\steamapps\common\MountBlade Warband\mb_warband.exe
    FirewallRules: [{1226A034-FABA-44FA-8331-241657BF4837}] => (Allow) D:\Steam\steamapps\common\XCOM 2\Binaries\Win64\Launcher\ModLauncherWPF.exe
    FirewallRules: [{F1484B44-5BFD-486C-854B-2CA6AB5CACC0}] => (Allow) D:\Steam\steamapps\common\XCOM 2\Binaries\Win64\Launcher\ModLauncherWPF.exe

    ==================== Points de restauration =========================

    18-06-2017 13:57:56 Point de contrôle planifié
    27-06-2017 22:33:20 Point de contrôle planifié
    03-07-2017 00:04:18 DirectX est installé
    08-07-2017 14:14:00 Revo Uninstaller Pro's restore point - Malwarebytes version 3.1.2.1733
    10-07-2017 22:07:51 DirectX est installé

    ==================== Éléments en erreur du Gestionnaire de périphériques =============


    ==================== Erreurs du Journal des événements: =========================

    Erreurs Application:
    ==================
    Error: (07/12/2017 04:36:51 PM) (Source: SideBySide) (EventID: 78) (User: )
    Description: La création du contexte d’activation a échoué pour «*c:\program files (x86)\adobe\adobe creative cloud\utils\Creative Cloud Uninstaller.exe*». Erreur dans le fichier de manifeste ou de stratégie «**» à la ligne .
    Une version de composant nécessaire à l’application est en conflit avec une autre version de composant déjà active.
    Les composants en conflit sont :
    Composant 1*: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.15063.483_none_6dad63fefc436da8.manifest.
    Composant 2*: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.15063.483_none_26002d27e7c744a2.manifest.

    Error: (07/12/2017 04:36:49 PM) (Source: SideBySide) (EventID: 63) (User: )
    Description: La création du contexte d’activation a échoué pour «*c:\program files (x86)\wibukey\server\WkSvCtrl.dll*». Erreur dans le fichier de manifeste ou de stratégie «*c:\program files (x86)\wibukey\server\WkSvCtrl.dll*» à la ligne 6.
    La valeur «*6.32.1504.(500 + 0)*» de l’attribut «*version*» de l’élément «*assemblyIdentity*» n’est pas valide.

    Error: (07/12/2017 04:34:52 PM) (Source: SideBySide) (EventID: 78) (User: )
    Description: La création du contexte d’activation a échoué pour «*c:\program files (x86)\adobe\adobe creative cloud\utils\Creative Cloud Uninstaller.exe*». Erreur dans le fichier de manifeste ou de stratégie «**» à la ligne .
    Une version de composant nécessaire à l’application est en conflit avec une autre version de composant déjà active.
    Les composants en conflit sont :
    Composant 1*: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.15063.483_none_6dad63fefc436da8.manifest.
    Composant 2*: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.15063.483_none_26002d27e7c744a2.manifest.

    Error: (07/12/2017 04:34:46 PM) (Source: SideBySide) (EventID: 63) (User: )
    Description: La création du contexte d’activation a échoué pour «*c:\program files (x86)\wibukey\server\WkSvCtrl.dll*». Erreur dans le fichier de manifeste ou de stratégie «*c:\program files (x86)\wibukey\server\WkSvCtrl.dll*» à la ligne 6.
    La valeur «*6.32.1504.(500 + 0)*» de l’attribut «*version*» de l’élément «*assemblyIdentity*» n’est pas valide.

    Error: (07/12/2017 04:30:16 PM) (Source: SetupARService) (EventID: 0) (User: )
    Description: Le service ne peut pas être démarré. System.NullReferenceException: La référence d'objet n'est pas définie à une instance d'un objet.
    à SetupAfterRebootService.SetupARService.OnStart(String[] args)
    à System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state)

    Error: (07/12/2017 04:07:23 PM) (Source: SideBySide) (EventID: 78) (User: )
    Description: La création du contexte d’activation a échoué pour «*c:\program files (x86)\adobe\adobe creative cloud\utils\Creative Cloud Uninstaller.exe*». Erreur dans le fichier de manifeste ou de stratégie «**» à la ligne .
    Une version de composant nécessaire à l’application est en conflit avec une autre version de composant déjà active.
    Les composants en conflit sont :
    Composant 1*: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.15063.483_none_6dad63fefc436da8.manifest.
    Composant 2*: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.15063.483_none_26002d27e7c744a2.manifest.

    Error: (07/12/2017 04:07:22 PM) (Source: SideBySide) (EventID: 63) (User: )
    Description: La création du contexte d’activation a échoué pour «*c:\program files (x86)\wibukey\server\WkSvCtrl.dll*». Erreur dans le fichier de manifeste ou de stratégie «*c:\program files (x86)\wibukey\server\WkSvCtrl.dll*» à la ligne 6.
    La valeur «*6.32.1504.(500 + 0)*» de l’attribut «*version*» de l’élément «*assemblyIdentity*» n’est pas valide.

    Error: (07/12/2017 03:33:42 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: BROUSSEOUILISSE)
    Description: Échec de l’activation de l’application windows.immersivecontrolpanel_cw5n1h2txyewy!microsoft.windows.immersivecontrolpanel avec l’erreur*: -2147417836 Pour plus d’informations, voir le journal Microsoft-Windows-TWinUI/Opérationnel.

    Error: (07/12/2017 02:41:00 PM) (Source: SideBySide) (EventID: 78) (User: )
    Description: La création du contexte d’activation a échoué pour «*c:\program files (x86)\adobe\adobe creative cloud\utils\Creative Cloud Uninstaller.exe*». Erreur dans le fichier de manifeste ou de stratégie «**» à la ligne .
    Une version de composant nécessaire à l’application est en conflit avec une autre version de composant déjà active.
    Les composants en conflit sont :
    Composant 1*: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.15063.483_none_6dad63fefc436da8.manifest.
    Composant 2*: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.15063.483_none_26002d27e7c744a2.manifest.

    Error: (07/12/2017 02:40:59 PM) (Source: SideBySide) (EventID: 63) (User: )
    Description: La création du contexte d’activation a échoué pour «*c:\program files (x86)\wibukey\server\WkSvCtrl.dll*». Erreur dans le fichier de manifeste ou de stratégie «*c:\program files (x86)\wibukey\server\WkSvCtrl.dll*» à la ligne 6.
    La valeur «*6.32.1504.(500 + 0)*» de l’attribut «*version*» de l’élément «*assemblyIdentity*» n’est pas valide.


    Erreurs système:
    =============
    Error: (07/12/2017 07:34:28 PM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT)
    Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID
    {6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
    et l’APPID
    {4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
    au SID AUTORITE NT\SERVICE LOCAL de l’utilisateur (S-1-5-19) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants.

    Error: (07/12/2017 07:34:28 PM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT)
    Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID
    {6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
    et l’APPID
    {4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
    au SID AUTORITE NT\SERVICE LOCAL de l’utilisateur (S-1-5-19) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants.

    Error: (07/12/2017 07:34:21 PM) (Source: DCOM) (EventID: 10010) (User: BROUSSEOUILISSE)
    Description: Le serveur {9BA05972-F6A8-11CF-A442-00A0C90A8F39} ne s’est pas enregistré sur DCOM avant la fin du temps imparti.

    Error: (07/12/2017 04:30:20 PM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT)
    Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID
    {6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
    et l’APPID
    {4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
    au SID AUTORITE NT\SERVICE LOCAL de l’utilisateur (S-1-5-19) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants.

    Error: (07/12/2017 04:30:20 PM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT)
    Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID
    {6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
    et l’APPID
    {4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
    au SID AUTORITE NT\SERVICE LOCAL de l’utilisateur (S-1-5-19) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants.

    Error: (07/12/2017 04:30:15 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
    Description: Le service CldFlt n’a pas pu démarrer en raison de l’erreur*:
    Cette demande n’est pas prise en charge.

    Error: (07/12/2017 04:29:53 PM) (Source: Service Control Manager) (EventID: 7038) (User: )
    Description: Le service WerSvc n’a pas pu ouvrir de session en tant que NT AUTHORITY\SYSTEM avec le mot de passe actuellement configuré en raison de l’erreur suivante*:
    Cette demande n’est pas prise en charge.


    Pour vous assurer que le service est configuré correctement, utilisez le composant logiciel enfichable Services dans Microsoft Management Console (MMC).

    Error: (07/12/2017 03:37:47 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
    Description: Le service Steam Client Service n’a pas pu démarrer en raison de l’erreur*:
    Le service n’a pas répondu assez vite à la demande de lancement ou de contrôle.

    Error: (07/12/2017 03:37:47 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
    Description: Le dépassement de délai (30000 millisecondes) a été atteint lors de l’attente de la connexion du service Steam Client Service.

    Error: (07/12/2017 02:31:25 PM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT)
    Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID
    {6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
    et l’APPID
    {4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
    au SID AUTORITE NT\SERVICE LOCAL de l’utilisateur (S-1-5-19) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants.


    CodeIntegrity:
    ===================================
    Date: 2017-07-12 17:31:40.751
    Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume2\Windows\System32\nvspcap64.dll that did not meet the Store signing level requirements.

    Date: 2017-07-12 16:30:19.041
    Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Bitdefender\Bitdefender 2017\vsservp.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bitdefender\Bitdefender 2017\dbghelp.dll that did not meet the Custom 3 / Antimalware signing level requirements.

    Date: 2017-07-12 14:32:52.699
    Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume2\Windows\System32\nvspcap64.dll that did not meet the Store signing level requirements.

    Date: 2017-07-12 14:29:47.886
    Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Bitdefender\Bitdefender 2017\vsservp.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bitdefender\Bitdefender 2017\dbghelp.dll that did not meet the Custom 3 / Antimalware signing level requirements.

    Date: 2017-07-11 21:40:53.224
    Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Bitdefender\Bitdefender 2017\vsservp.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bitdefender\Bitdefender 2017\dbghelp.dll that did not meet the Custom 3 / Antimalware signing level requirements.

    Date: 2017-07-10 20:39:41.412
    Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Bitdefender\Bitdefender 2017\vsservp.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bitdefender\Bitdefender 2017\dbghelp.dll that did not meet the Custom 3 / Antimalware signing level requirements.

    Date: 2017-07-10 19:41:11.670
    Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Bitdefender\Bitdefender 2017\vsservp.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bitdefender\Bitdefender 2017\dbghelp.dll that did not meet the Custom 3 / Antimalware signing level requirements.

    Date: 2017-07-09 20:33:00.255
    Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Bitdefender\Bitdefender 2017\vsservp.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bitdefender\Bitdefender 2017\dbghelp.dll that did not meet the Custom 3 / Antimalware signing level requirements.

    Date: 2017-07-09 12:03:09.325
    Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Bitdefender\Bitdefender 2017\vsservp.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bitdefender\Bitdefender 2017\dbghelp.dll that did not meet the Custom 3 / Antimalware signing level requirements.

    Date: 2017-07-08 14:15:12.395
    Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Bitdefender\Bitdefender 2017\vsservp.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bitdefender\Bitdefender 2017\dbghelp.dll that did not meet the Custom 3 / Antimalware signing level requirements.


    ==================== Infos Mémoire ===========================

    Processeur: Intel(R) Core(TM) i7-4720HQ CPU @ 2.60GHz
    Pourcentage de mémoire utilisée: 23%
    Mémoire physique - RAM - totale: 24525.17 MB
    Mémoire physique - RAM - disponible: 18716.08 MB
    Mémoire virtuelle totale: 28109.17 MB
    Mémoire virtuelle disponible: 22597.72 MB

    ==================== Lecteurs ================================

    Drive c: (OS) (Fixed) (Total:499.51 GB) (Free:320.06 GB) NTFS
    Drive d: (FUN) (Fixed) (Total:477.96 GB) (Free:42.21 GB) NTFS
    Drive e: (DATA2) (Fixed) (Total:371.85 GB) (Free:98.68 GB) NTFS
    Drive f: (WORKS) (Fixed) (Total:558.91 GB) (Free:144.99 GB) NTFS

    ==================== MBR & Table des partitions ==================

    ========================================================
    Disk: 0 (MBR Code: Windows 7 or 8) (Size: 978.1 GB) (Disk ID: 00000000)

    Partition: GPT.

    ========================================================
    Disk: 1 (Size: 931.5 GB) (Disk ID: CC5F7439)

    Partition: GPT.

    ==================== Fin de Addition.txt ============================






    Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 11-07-2017
    Exécuté par crocq (administrateur) sur BROUSSEOUILISSE (12-07-2017 19:54:47)
    Exécuté depuis C:\Users\crocq\Downloads
    Profils chargés: defaultuser0 & crocq & stbxr (Profils disponibles: defaultuser0 & crocq & stbxr)
    Platform: Windows 10 Home Version 1703 (X64) Langue: Français (France)
    Internet Explorer Version 11 (Navigateur par défaut: Chrome)
    Mode d'amorçage: Normal
    Tutoriel pour Farbar Recovery Scan Tool: FRST Tutorial - How to use Farbar Recovery Scan Tool - Malware Removal Guides and Tutorials

    ==================== Processus (Avec liste blanche) =================

    (Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)

    (Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2017\vsserv.exe
    (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
    (Bitdefender) C:\Program Files\Bitdefender\Bitdefender Device Management\DevMgmtService.exe
    (Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\WTabletServicePro.exe
    (ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
    (SUPERAntiSpyware.com) C:\Program Files\SUPERAntiSpyware\SASCore64.exe
    (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
    () C:\Windows\SysWOW64\PnkBstrA.exe
    (Intel Corporation) C:\Windows\System32\ibtsiva.exe
    (Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
    (Autodesk Inc.) C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AdAppMgrSvc.exe
    () C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
    (Bitdefender) C:\Program Files\Bitdefender Agent\ProductAgentService.exe
    (Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
    (Western Digital Technologies, Inc.) C:\Program Files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe
    (Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2017\updatesrv.exe
    (Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2017\vsservp.exe
    (Electronic Arts) D:\Origin\OriginWebHelperService.exe
    (TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
    (Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.5\GoogleCrashHandler.exe
    (Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.5\GoogleCrashHandler64.exe
    (Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
    (Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
    (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
    (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
    (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
    (ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
    (Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\Wacom_TabletUser.exe
    (Wacom Technology) C:\Program Files\Tablet\Wacom\WacomHost.exe
    (Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\Wacom_TouchUser.exe
    (ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
    (ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
    (Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\Wacom_Tablet.exe
    (Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersServer.exe
    (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
    (Microsoft Corporation) C:\Windows\System32\dllhost.exe
    (Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
    (ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
    (ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
    (Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
    (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
    (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
    (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
    (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
    (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
    (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
    (SUPERAntiSpyware) C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
    (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
    (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
    (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
    (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
    (Western Digital Technologies, Inc.) C:\Program Files (x86)\Western Digital\WD Security\WDDriveAutoUnlock.exe
    (Western Digital Technologies, Inc.) C:\Program Files (x86)\Western Digital\WD App Manager\WDAppManager.exe
    (Western Digital Technologies, Inc.) C:\Program Files (x86)\Western Digital\WD Utilities\WDDriveUtilitiesHelper.exe
    (Western Digital Technologies, Inc.) C:\Program Files (x86)\Western Digital\WD Quick View\WDDMStatus.exe
    (Western Digital Technologies, Inc.) C:\Program Files (x86)\Western Digital\WD App Manager\Plugins\WD Backup\App\WDBackupService.exe
    (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
    (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
    (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
    (Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2017\bdagent.exe
    (Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2017\bdwtxag.exe
    (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
    (Electronic Arts) D:\Origin\OriginThinSetupInternal.exe
    (Microsoft Corporation) C:\Windows\System32\smartscreen.exe
    (Hammer & Chisel, Inc.) C:\Users\crocq\AppData\Local\Discord\app-0.0.297\Discord.exe
    (Hammer & Chisel, Inc.) C:\Users\crocq\AppData\Local\Discord\app-0.0.297\Discord.exe
    (Hammer & Chisel, Inc.) C:\Users\crocq\AppData\Local\Discord\app-0.0.297\Discord.exe
    (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
    (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
    (Microsoft Corporation) C:\Windows\System32\dllhost.exe

    ==================== Registre (Avec liste blanche) ====================

    (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)

    HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [629152 2017-03-18] (Microsoft Corporation)
    HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [3350232 2015-09-17] (ELAN Microelectronics Corp.)
    HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [322104 2016-02-03] (Intel Corporation)
    HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [508128 2016-07-01] (Adobe Systems Incorporated)
    HKLM\...\Run: [ShadowPlay] => "C:\WINDOWS\system32\rundll32.exe" C:\WINDOWS\system32\nvspcap64.dll,ShadowPlayOnSystemStart
    HKLM\...\Run: [Malwarebytes TrayApp] => C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\mbamtray.exe [3146704 2017-05-09] (Malwarebytes)
    HKLM-x32\...\Run: [Razer Synapse] => C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe [596640 2016-11-04] (Razer Inc.)
    HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2383040 2016-10-25] (Adobe Systems Incorporated)
    HKLM-x32\...\Run: [WDAppManager] => C:\Program Files (x86)\Western Digital\WD App Manager\AppManagerLauncher.exe [21384 2016-04-19] (Western Digital Technologies, Inc.)
    HKLM-x32\...\Run: [WD Drive Unlocker] => C:\Program Files (x86)\Western Digital\WD Security\WDDriveAutoUnlock.exe [1761120 2015-12-07] (Western Digital Technologies, Inc.)
    HKLM-x32\...\Run: [DriveUtilitiesHelper] => C:\Program Files (x86)\Western Digital\WD Utilities\WDDriveUtilitiesHelper.exe [1890664 2016-01-14] (Western Digital Technologies, Inc.)
    HKLM-x32\...\Run: [WD Quick View] => C:\Program Files (x86)\Western Digital\WD Quick View\WDDMStatus.exe [5564784 2015-02-12] (Western Digital Technologies, Inc.)
    HKLM-x32\...\Run: [Autodesk Desktop App] => C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AutodeskDesktopApp.exe [704424 2017-03-10] (Autodesk, Inc.)
    HKU\S-1-5-21-1918836148-936291157-4271617375-1000\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [517120 2017-03-18] (Microsoft Corporation)
    HKU\S-1-5-21-1918836148-936291157-4271617375-1001\...\Run: [GoogleChromeAutoLaunch_D4597A70D3FBAEDD67D809FFC94E88D8] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [1197912 2017-06-22] (Google Inc.)
    HKU\S-1-5-21-1918836148-936291157-4271617375-1001\...\Run: [GoogleDriveSync] => C:\Program Files (x86)\Google\Drive\googledrivesync.exe [23819304 2017-03-21] (Google)
    HKU\S-1-5-21-1918836148-936291157-4271617375-1001\...\Run: [Discord] => C:\Users\crocq\AppData\Local\Discord\app-0.0.297\Discord.exe [64290304 2017-01-04] (Hammer & Chisel, Inc.)
    HKU\S-1-5-21-1918836148-936291157-4271617375-1001\...\Run: [SUPERAntiSpyware] => C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [7963552 2017-06-12] (SUPERAntiSpyware)
    Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Serveur réseau.lnk [2017-01-02]
    ShortcutTarget: Serveur réseau.lnk -> C:\Program Files (x86)\WIBUKEY\Server\WkSvMgr.exe (WIBU-SYSTEMS AG)

    ==================== Internet (Avec liste blanche) ====================

    (Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)

    Hosts: Il y a plus d'un élément dans hosts. Voir la section Hosts de Addition.txt
    Tcpip\Parameters: [DhcpNameServer] 192.168.0.1 23.233.128.16 24.225.128.17
    Tcpip\..\Interfaces\{1913958c-4b40-4506-80fa-0fbdd8a29c46}: [DhcpNameServer] 192.168.0.1 23.233.128.16 24.225.128.17

    Internet Explorer:
    ==================
    HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
    HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
    HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
    HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
    HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
    HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
    HKU\S-1-5-21-1918836148-936291157-4271617375-1001\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
    HKU\S-1-5-21-1918836148-936291157-4271617375-1002\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
    URLSearchHook: [S-1-5-21-1918836148-936291157-4271617375-1000_classes] ATTENTION => URLSearchHook par défaut est absent
    URLSearchHook: [S-1-5-21-1918836148-936291157-4271617375-1002_classes] ATTENTION => URLSearchHook par défaut est absent
    SearchScopes: HKU\S-1-5-21-1918836148-936291157-4271617375-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
    BHO: Bitdefender Wallet -> {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} -> C:\Program Files\Bitdefender\Bitdefender 2017\pmbxie.dll [2017-04-24] (Bitdefender)
    BHO-x32: Bitdefender Wallet -> {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} -> C:\Program Files\Bitdefender\Bitdefender 2017\Antispam32\pmbxie.dll [2017-04-24] (Bitdefender)
    Toolbar: HKLM - Bitdefender Wallet - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Program Files\Bitdefender\Bitdefender 2017\pmbxie.dll [2017-04-24] (Bitdefender)
    Toolbar: HKLM-x32 - Bitdefender Wallet - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Program Files\Bitdefender\Bitdefender 2017\Antispam32\pmbxie.dll [2017-04-24] (Bitdefender)

    FireFox:
    ========
    FF HKLM\...\Firefox\Extensions: [bdwteffv20@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender 2017\antispam32\bdwteff
    FF Extension: (Bitdefender Wallet) - C:\Program Files\Bitdefender\Bitdefender 2017\antispam32\bdwteff [2017-05-06]
    FF HKLM\...\Thunderbird\Extensions: [bdThunderbird@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender 2017\bdtbext
    FF Extension: (Bitdefender Antispam Toolbar) - C:\Program Files\Bitdefender\Bitdefender 2017\bdtbext [2016-12-13] [non signé]
    FF HKLM-x32\...\Firefox\Extensions: [bdwteffv20@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender 2017\antispam32\bdwteff
    FF HKLM-x32\...\Thunderbird\Extensions: [bdThunderbird@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender 2017\bdtbext
    FF Plugin: @wacom.com/wtPlugin,version=2.1.0.7 -> C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom)
    FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2016-10-25] (Adobe Systems)
    FF Plugin: wacom.com/WacomTabletPlugin -> C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom)
    FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2017-06-07] (NVIDIA Corporation)
    FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2017-06-07] (NVIDIA Corporation)
    FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-27] (Google Inc.)
    FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-27] (Google Inc.)
    FF Plugin-x32: @wacom.com/wtPlugin,version=2.1.0.7 -> C:\Program Files (x86)\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom)
    FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2016-10-25] (Adobe Systems)
    FF Plugin-x32: wacom.com/WacomTabletPlugin -> C:\Program Files (x86)\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom)

    Chrome:
    =======
    CHR HomePage: Default -> hxxp://search.conduit.com/?ctid=CT3320691&octid=EB_ORIGINAL_CTID&SearchSource=55&CUI=&UM=4&UP=SPA381169A-72D4-45BC-B4E7-6DC7ECC0C6C8&SSPV=
    CHR StartupUrls: Default -> "hxxps://dub125.mail.live.com/default.aspx?id=64855","hxxps://mail.google.com/mail/u/0/#inbox","hxxp://www.pinterest.com/","hxxp://muddycolors.blogspot.ca/","hxxp://worldcosplay.net/","hxxps://www.flickr.com/photos/118643197@N08/favorites","hxxp://www.deviantart.com/","hxxp://conceptartworld.com/"
    CHR NewTab: Default -> Active:"chrome-extension://bhnpmdabjgpimmnbmhefncbghknfegog/flickr-tab.html"
    CHR Profile: C:\Users\crocq\AppData\Local\Google\Chrome\User Data\Default [2017-07-12]
    CHR Extension: (Google Slides) - C:\Users\crocq\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-01-02]
    CHR Extension: (Google Docs) - C:\Users\crocq\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-01-02]
    CHR Extension: (Google*Drive) - C:\Users\crocq\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-01-02]
    CHR Extension: (Onglet Flickr) - C:\Users\crocq\AppData\Local\Google\Chrome\User Data\Default\Extensions\bhnpmdabjgpimmnbmhefncbghknfegog [2017-05-27]
    CHR Extension: (YouTube) - C:\Users\crocq\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-01-02]
    CHR Extension: (Google Sheets) - C:\Users\crocq\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-01-02]
    CHR Extension: (Google*Docs hors connexion) - C:\Users\crocq\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-01-02]
    CHR Extension: (AdBlock) - C:\Users\crocq\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2017-06-26]
    CHR Extension: (Bookmark Manager) - C:\Users\crocq\AppData\Local\Google\Chrome\User Data\Default\Extensions\gmlllbghnfkpflemihljekbapjopfjik [2017-01-02]
    CHR Extension: (Bouton Enregistrer Pinterest) - C:\Users\crocq\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpdjojdkbbmdfjfahjcgigfpmkopogic [2017-04-22]
    CHR Extension: (Google Play Music) - C:\Users\crocq\AppData\Local\Google\Chrome\User Data\Default\Extensions\icppfcnhkcmnfdhfhphakoifcfokfdhg [2017-01-02]
    CHR Extension: (DownFlickr - Flickr Downloader) - C:\Users\crocq\AppData\Local\Google\Chrome\User Data\Default\Extensions\idiemcijhbenngdhkdiipmpkafnkbkeg [2017-01-02]
    CHR Extension: (1-click-timer) - C:\Users\crocq\AppData\Local\Google\Chrome\User Data\Default\Extensions\igloknlllonknnbkfgggfkigmeegmakf [2017-01-02]
    CHR Extension: (Application Launcher for Drive (by Google)) - C:\Users\crocq\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2017-01-08]
    CHR Extension: (Extension Google*Keep pour Chrome) - C:\Users\crocq\AppData\Local\Google\Chrome\User Data\Default\Extensions\lpcaedmchfhocbbapmcbpinfpgnhiddi [2017-01-02]
    CHR Extension: (Paiements via le Chrome*Web*Store) - C:\Users\crocq\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-03-09]
    CHR Extension: (Gmail) - C:\Users\crocq\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-01-02]
    CHR Extension: (Chrome Media Router) - C:\Users\crocq\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-07-12]
    CHR Extension: (Appel Skype) - C:\Users\crocq\AppData\Local\Google\Chrome\User Data\Default\Extensions\poghlonenmjdkfghdpfomojhhfggildk [2017-01-02]
    CHR HKU\S-1-5-21-1918836148-936291157-4271617375-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh] - hxxps://clients2.google.com/service/update2/crx
    CHR HKLM-x32\...\Chrome\Extension: [gannpgaobkkhmpomoijebaigcapoeebl] - hxxps://clients2.google.com/service/update2/crx

    ==================== Services (Avec liste blanche) ====================

    (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

    R2 !SASCORE; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [173472 2017-01-30] (SUPERAntiSpyware.com)
    R2 AdAppMgrSvc; C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AdAppMgrSvc.exe [1309176 2017-03-10] (Autodesk Inc.)
    R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [744640 2016-10-25] (Adobe Systems Incorporated)
    R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2246256 2017-05-18] (Adobe Systems, Incorporated)
    S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [1536520 2017-06-23] ()
    R2 DevMgmtService; C:\Program Files\Bitdefender\Bitdefender Device Management\DevMgmtService.exe [104096 2017-05-18] (Bitdefender)
    S3 EasyAntiCheat; C:\WINDOWS\SysWOW64\EasyAntiCheat.exe [382504 2017-05-30] (EasyAntiCheat Ltd)
    R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [18488 2016-02-03] (Intel Corporation)
    S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [987432 2016-07-26] (Intel(R) Corporation)
    R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [177440 2016-10-05] (Intel Corporation)
    R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [4470736 2017-05-09] (Malwarebytes)
    S3 mi-raysat_3dsmax2016_64; C:\Program Files\Autodesk\3ds Max 2016\NVIDIA\Satellite\raysat_3dsmax2016_64server.exe [86016 2011-09-15] () [Fichier non signé]
    S3 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [495040 2017-06-07] (NVIDIA Corporation)
    S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [495040 2017-06-07] (NVIDIA Corporation)
    R2 NVDisplay.ContainerLocalSystem; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [462968 2017-06-07] (NVIDIA Corporation)
    R2 NvTelemetryContainer; C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe [449984 2017-06-07] (NVIDIA Corporation)
    S3 Origin Client Service; D:\Origin\OriginClientService.exe [2168208 2017-06-15] (Electronic Arts)
    R2 Origin Web Helper Service; D:\Origin\OriginWebHelperService.exe [3148184 2017-06-15] (Electronic Arts)
    R2 PnkBstrA; C:\WINDOWS\SysWOW64\PnkBstrA.exe [76888 2017-05-27] ()
    R2 ProductAgentService; C:\Program Files\Bitdefender Agent\ProductAgentService.exe [1254736 2017-04-11] (Bitdefender)
    R2 Razer Game Scanner Service; C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe [189264 2016-09-24] ()
    S2 SetupARService; C:\Program Files (x86)\Realtek\Audio\SetupAfterRebootService.exe [10752 2017-01-02] () [Fichier non signé]
    R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [10351856 2016-12-15] (TeamViewer GmbH)
    R2 UPDATESRV; C:\Program Files\Bitdefender\Bitdefender 2017\updatesrv.exe [218416 2017-04-24] (Bitdefender)
    R2 VSSERV; C:\Program Files\Bitdefender\Bitdefender 2017\vsserv.exe [1442896 2017-05-29] (Bitdefender)
    R2 vsservp; C:\Program Files\Bitdefender\Bitdefender 2017\vsservp.exe [524872 2016-08-25] (Bitdefender)
    R2 WDDriveService; C:\Program Files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe [308088 2015-12-07] (Western Digital Technologies, Inc.)
    S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [342264 2017-03-18] (Microsoft Corporation)
    S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [102816 2017-06-20] (Microsoft Corporation)
    R2 WTabletServicePro; C:\Program Files\Tablet\Wacom\WTabletServicePro.exe [671696 2016-12-09] (Wacom Technology, Corp.)
    R2 ibtsiva; %SystemRoot%\system32\ibtsiva [X]
    S3 WD Backup Drive Helper; C:\Windows\SysWoW64\dllhost.exe /Processid:{4AB831D3-8315-414C-8A7A-303105288D0B}
    S3 WD Backup Snapshot; C:\Windows\SysWoW64\dllhost.exe /Processid:{302480DF-3AC5-4400-BE7B-DD77AF93B6DD}

    ===================== Pilotes (Avec liste blanche) ======================

    (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

    R0 avc3; C:\WINDOWS\System32\DRIVERS\avc3.sys [1612648 2017-05-29] (BitDefender)
    R3 avckf; C:\WINDOWS\System32\DRIVERS\avckf.sys [879600 2017-05-29] (BitDefender)
    S0 bdelam; C:\WINDOWS\System32\drivers\bdelam.sys [23672 2016-03-14] (Bitdefender)
    R1 bdfwfpf; C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf.sys [128400 2016-06-24] (BitDefender LLC)
    R1 BDVEDISK; C:\WINDOWS\system32\DRIVERS\bdvedisk.sys [87912 2015-12-04] (BitDefender)
    R0 gzflt; C:\WINDOWS\System32\DRIVERS\gzflt.sys [182944 2016-10-29] (BitDefender LLC)
    R3 ibtusb; C:\WINDOWS\system32\DRIVERS\ibtusb.sys [250624 2016-10-15] (Intel Corporation)
    R0 ignis; C:\WINDOWS\system32\DRIVERS\ignis.sys [305120 2017-04-09] (Bitdefender)
    R0 IntelHSWPcc; C:\WINDOWS\System32\drivers\IntelPcc.sys [88256 2015-06-09] (Intel Corporation)
    R2 MBAMChameleon; C:\WINDOWS\system32\drivers\MBAMChameleon.sys [188312 2017-07-12] (Malwarebytes)
    R3 MBAMFarflt; C:\WINDOWS\system32\drivers\farflt.sys [113592 2017-07-12] (Malwarebytes)
    R3 MBAMProtection; C:\WINDOWS\system32\drivers\mbam.sys [44960 2017-07-12] (Malwarebytes)
    R3 MBAMSwissArmy; C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [252832 2017-07-12] (Malwarebytes)
    R3 MBAMWebProtection; C:\WINDOWS\system32\drivers\mwac.sys [93600 2017-07-12] (Malwarebytes)
    R3 Netwtw04; C:\WINDOWS\system32\DRIVERS\Netwtw04.sys [7918840 2016-12-19] (Intel Corporation)
    R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nvami.inf_amd64_62e8f88c97b34401\nvlddmkm.sys [14461344 2017-06-08] (NVIDIA Corporation)
    S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30144 2017-06-07] (NVIDIA Corporation)
    R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [48064 2017-06-07] (NVIDIA Corporation)
    R3 nvvhci; C:\WINDOWS\System32\drivers\nvvhci.sys [57792 2017-06-07] (NVIDIA Corporation)
    R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [955424 2016-12-19] (Realtek )
    R3 rzendpt; C:\WINDOWS\System32\drivers\rzendpt.sys [50392 2015-08-13] (Razer Inc)
    R2 rzpmgrk; C:\Windows\system32\drivers\rzpmgrk.sys [44144 2016-09-16] (Razer, Inc.)
    R2 rzpnk; C:\Windows\system32\drivers\rzpnk.sys [137840 2016-09-07] (Razer, Inc.)
    R1 SASDIFSV; C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [14928 2011-07-22] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
    R1 SASKUTIL; C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [12368 2011-07-12] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
    R3 ScpVBus; C:\WINDOWS\System32\drivers\ScpVBus.sys [39168 2013-05-19] (Scarlet.Crush Productions)
    S3 SDFRd; C:\WINDOWS\System32\drivers\SDFRd.sys [31128 2017-03-18] ()
    R0 trufos; C:\WINDOWS\System32\DRIVERS\trufos.sys [520032 2016-06-22] (BitDefender S.R.L.)
    R3 WacHidRouterPro; C:\WINDOWS\System32\drivers\wachidrouter.sys [119448 2016-12-05] (Wacom Technology)
    S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [44632 2017-03-18] (Microsoft Corporation)
    S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [294816 2017-03-18] (Microsoft Corporation)
    S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [121248 2017-03-18] (Microsoft Corporation)
    R2 WIBUKEY; C:\WINDOWS\System32\DRIVERS\WibuKey64.sys [106760 2017-01-02] (WIBU-SYSTEMS AG)

    ==================== NetSvcs (Avec liste blanche) ===================

    (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)


    ==================== Un mois - Créés - fichiers et dossiers ========

    (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

    2017-07-12 19:54 - 2017-07-12 19:55 - 00026291 _____ C:\Users\crocq\Downloads\FRST.txt
    2017-07-12 19:54 - 2017-07-12 19:54 - 02435584 _____ (Farbar) C:\Users\crocq\Downloads\FRST64.exe
    2017-07-12 19:54 - 2017-07-12 19:54 - 00000000 ____D C:\FRST
    2017-07-12 17:52 - 2017-07-12 17:52 - 00000000 ___RD C:\Users\crocq\Downloads\TWinPeaks S03
    2017-07-12 17:47 - 2017-07-12 17:51 - 00441240 _____ C:\Users\crocq\Documents\Ca_Fraud_Alert_Request_Form Rapha.pdf
    2017-07-12 17:43 - 2017-07-12 17:42 - 00433169 _____ C:\Users\crocq\Documents\Ca_Fraud_Alert_Request_Form Clement - Copie.pdf
    2017-07-12 17:42 - 2017-07-12 17:42 - 00433169 _____ C:\Users\crocq\Documents\Ca_Fraud_Alert_Request_Form Clement.pdf
    2017-07-12 17:13 - 2017-07-12 17:13 - 00001508 _____ C:\Users\crocq\Desktop\Malwarebytes.txt
    2017-07-12 16:56 - 2017-07-12 16:56 - 00000341 _____ C:\Users\crocq\Desktop\Nouveau document texte.txt
    2017-07-12 16:32 - 2017-07-12 16:35 - 00252832 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
    2017-07-12 16:32 - 2017-07-12 16:35 - 00113592 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\farflt.sys
    2017-07-12 16:32 - 2017-07-12 16:35 - 00093600 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys
    2017-07-12 16:32 - 2017-07-12 16:35 - 00077376 _____ C:\WINDOWS\system32\Drivers\mbae64.sys
    2017-07-12 16:32 - 2017-07-12 16:35 - 00044960 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
    2017-07-12 16:32 - 2017-07-12 16:32 - 00188312 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMChameleon.sys
    2017-07-12 16:32 - 2017-07-12 16:32 - 00001914 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
    2017-07-12 16:32 - 2017-07-12 16:32 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
    2017-07-12 16:32 - 2017-07-12 16:32 - 00000000 ____D C:\ProgramData\Malwarebytes
    2017-07-12 16:32 - 2017-07-12 16:32 - 00000000 ____D C:\Program Files\Malwarebytes
    2017-07-12 16:07 - 2017-07-12 16:30 - 00000542 _____ C:\WINDOWS\Tasks\SUPERAntiSpyware Scheduled Task a22b9c13-1843-4b2a-b488-94d0b1269191.job
    2017-07-12 16:07 - 2017-07-12 16:30 - 00000542 _____ C:\WINDOWS\Tasks\SUPERAntiSpyware Scheduled Task 3add6fb9-5df4-4107-a590-985d616f8f9e.job
    2017-07-12 16:07 - 2017-07-12 16:07 - 00003782 _____ C:\WINDOWS\System32\Tasks\SUPERAntiSpyware Scheduled Task a22b9c13-1843-4b2a-b488-94d0b1269191
    2017-07-12 16:07 - 2017-07-12 16:07 - 00003700 _____ C:\WINDOWS\System32\Tasks\SUPERAntiSpyware Scheduled Task 3add6fb9-5df4-4107-a590-985d616f8f9e
    2017-07-12 16:07 - 2017-07-12 16:07 - 00001851 _____ C:\Users\Public\Desktop\SUPERAntiSpyware Free Edition.lnk
    2017-07-12 16:07 - 2017-07-12 16:07 - 00000000 ____D C:\Users\crocq\AppData\Roaming\SUPERAntiSpyware.com
    2017-07-12 16:07 - 2017-07-12 16:07 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SUPERAntiSpyware
    2017-07-12 16:06 - 2017-07-12 16:07 - 00000000 ____D C:\Program Files\SUPERAntiSpyware
    2017-07-12 16:06 - 2017-07-12 16:06 - 30316624 _____ (SUPERAntiSpyware) C:\Users\crocq\Downloads\SUPERAntiSpyware.exe
    2017-07-12 16:06 - 2017-07-12 16:06 - 00000000 ____D C:\ProgramData\SUPERAntiSpyware.com
    2017-07-12 15:20 - 2017-07-12 15:20 - 00000000 ____D C:\Users\crocq\Downloads\backups
    2017-07-12 15:16 - 2017-07-12 15:16 - 00388608 _____ (Trend Micro Inc.) C:\Users\crocq\Downloads\HijackThis.exe
    2017-07-12 14:40 - 2017-07-12 14:40 - 00131128 _____ C:\Users\crocq\Downloads\backup-EMG2926-2017-07-12.cg
    2017-07-11 21:48 - 2017-07-07 10:00 - 00947712 _____ (Microsoft Corporation) C:\WINDOWS\system32\HoloSI.PCShell.dll
    2017-07-11 21:48 - 2017-07-07 03:27 - 01147288 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
    2017-07-11 21:48 - 2017-07-07 03:27 - 01024928 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
    2017-07-11 21:48 - 2017-07-07 03:27 - 00750560 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
    2017-07-11 21:48 - 2017-07-07 03:26 - 01065104 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
    2017-07-11 21:48 - 2017-07-07 03:25 - 00899824 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
    2017-07-11 21:48 - 2017-07-07 03:24 - 00117664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys
    2017-07-11 21:48 - 2017-07-07 03:23 - 02399728 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
    2017-07-11 21:48 - 2017-07-07 03:22 - 08318880 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
    2017-07-11 21:48 - 2017-07-07 03:22 - 01186464 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
    2017-07-11 21:48 - 2017-07-07 03:21 - 32688336 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecsRaw.dll
    2017-07-11 21:48 - 2017-07-07 03:21 - 02969880 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreUIComponents.dll
    2017-07-11 21:48 - 2017-07-07 03:20 - 02021680 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpmde.dll
    2017-07-11 21:48 - 2017-07-07 03:20 - 00923040 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
    2017-07-11 21:48 - 2017-07-07 03:20 - 00519584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netio.sys
    2017-07-11 21:48 - 2017-07-07 03:20 - 00382368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys
    2017-07-11 21:48 - 2017-07-07 03:15 - 02444696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
    2017-07-11 21:48 - 2017-07-07 03:14 - 07325584 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
    2017-07-11 21:48 - 2017-07-07 03:14 - 05477088 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneCoreUAPCommonProxyStub.dll
    2017-07-11 21:48 - 2017-07-07 03:14 - 01760264 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll
    2017-07-11 21:48 - 2017-07-07 03:14 - 01171032 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcomp.dll
    2017-07-11 21:48 - 2017-07-07 03:13 - 00872472 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipSVC.dll
    2017-07-11 21:48 - 2017-07-07 03:13 - 00554392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBHUB3.SYS
    2017-07-11 21:48 - 2017-07-07 03:13 - 00336320 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthService.exe
    2017-07-11 21:48 - 2017-07-07 03:13 - 00147800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Clipc.dll
    2017-07-11 21:48 - 2017-07-07 03:12 - 00411040 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
    2017-07-11 21:48 - 2017-07-07 03:12 - 00318232 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininit.exe
    2017-07-11 21:48 - 2017-07-07 03:11 - 07904784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
    2017-07-11 21:48 - 2017-07-07 03:11 - 00094624 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
    2017-07-11 21:48 - 2017-07-07 03:10 - 21353208 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
    2017-07-11 21:48 - 2017-07-07 03:10 - 01670496 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll
    2017-07-11 21:48 - 2017-07-07 03:10 - 01337848 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
    2017-07-11 21:48 - 2017-07-07 03:10 - 01325968 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
    2017-07-11 21:48 - 2017-07-07 03:10 - 00372128 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHost.dll
    2017-07-11 21:48 - 2017-07-07 03:10 - 00254168 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
    2017-07-11 21:48 - 2017-07-07 03:09 - 00041376 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininitext.dll
    2017-07-11 21:48 - 2017-07-07 03:07 - 01106848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\http.sys
    2017-07-11 21:48 - 2017-07-07 03:07 - 00058488 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsass.exe
    2017-07-11 21:48 - 2017-07-07 02:57 - 00626528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
    2017-07-11 21:48 - 2017-07-07 02:57 - 00125344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmapi.dll
    2017-07-11 21:48 - 2017-07-07 02:40 - 23677440 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
    2017-07-11 21:48 - 2017-07-07 02:39 - 01839872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
    2017-07-11 21:48 - 2017-07-07 02:39 - 00096128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmcmnutils.dll
    2017-07-11 21:48 - 2017-07-07 02:37 - 31652264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecsRaw.dll
    2017-07-11 21:48 - 2017-07-07 02:37 - 02259760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreUIComponents.dll
    2017-07-11 21:48 - 2017-07-07 02:37 - 01339352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmpmde.dll
    2017-07-11 21:48 - 2017-07-07 02:31 - 05820984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
    2017-07-11 21:48 - 2017-07-07 02:31 - 01518088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecs.dll
    2017-07-11 21:48 - 2017-07-07 02:31 - 00129184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32.dll
    2017-07-11 21:48 - 2017-07-07 02:30 - 02165752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
    2017-07-11 21:48 - 2017-07-07 02:30 - 00949920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dcomp.dll
    2017-07-11 21:48 - 2017-07-07 02:30 - 00750496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
    2017-07-11 21:48 - 2017-07-07 02:29 - 00349600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
    2017-07-11 21:48 - 2017-07-07 02:29 - 00123520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Clipc.dll
    2017-07-11 21:48 - 2017-07-07 02:27 - 06759512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
    2017-07-11 21:48 - 2017-07-07 02:27 - 03670016 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
    2017-07-11 21:48 - 2017-07-07 02:27 - 01050624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll
    2017-07-11 21:48 - 2017-07-07 02:27 - 00557568 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieui.dll
    2017-07-11 21:48 - 2017-07-07 02:27 - 00443392 _____ (Microsoft Corporation) C:\WINDOWS\system32\PerceptionSimulationExtensions.dll
    2017-07-11 21:48 - 2017-07-07 02:27 - 00360960 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConhostV2.dll
    2017-07-11 21:48 - 2017-07-07 02:26 - 20373408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
    2017-07-11 21:48 - 2017-07-07 02:26 - 17364992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
    2017-07-11 21:48 - 2017-07-07 02:26 - 01529384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmde.dll
    2017-07-11 21:48 - 2017-07-07 02:26 - 01195240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll
    2017-07-11 21:48 - 2017-07-07 02:26 - 00988168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
    2017-07-11 21:48 - 2017-07-07 02:25 - 02199552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
    2017-07-11 21:48 - 2017-07-07 02:25 - 00035232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininitext.dll
    2017-07-11 21:48 - 2017-07-07 02:23 - 00583160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll
    2017-07-11 21:48 - 2017-07-07 02:23 - 00110592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
    2017-07-11 21:48 - 2017-07-07 02:23 - 00095232 _____ (Microsoft Corporation) C:\WINDOWS\system32\wudriver.dll
    2017-07-11 21:48 - 2017-07-07 02:22 - 07931392 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
    2017-07-11 21:48 - 2017-07-07 02:22 - 00520704 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll
    2017-07-11 21:48 - 2017-07-07 02:22 - 00130048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthpan.sys
    2017-07-11 21:48 - 2017-07-07 02:21 - 00064512 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsrv.dll
    2017-07-11 21:48 - 2017-07-07 02:20 - 23681536 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
    2017-07-11 21:48 - 2017-07-07 02:20 - 08331264 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
    2017-07-11 21:48 - 2017-07-07 02:20 - 00175616 _____ (Microsoft Corporation) C:\WINDOWS\system32\prntvpt.dll
    2017-07-11 21:48 - 2017-07-07 02:19 - 07149056 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll
    2017-07-11 21:48 - 2017-07-07 02:19 - 00527360 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadcloudap.dll
    2017-07-11 21:48 - 2017-07-07 02:19 - 00256000 _____ (Microsoft Corporation) C:\WINDOWS\system32\domgmt.dll
    2017-07-11 21:48 - 2017-07-07 02:19 - 00165888 _____ (Microsoft Corporation) C:\WINDOWS\system32\storewuauth.dll
    2017-07-11 21:48 - 2017-07-07 02:18 - 07336448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
    2017-07-11 21:48 - 2017-07-07 02:18 - 00548864 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorService.dll
    2017-07-11 21:48 - 2017-07-07 02:18 - 00353280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wldap32.dll
    2017-07-11 21:48 - 2017-07-07 02:18 - 00274944 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecsExt.dll
    2017-07-11 21:48 - 2017-07-07 02:17 - 01878016 _____ (Microsoft Corporation) C:\WINDOWS\system32\AzureSettingSyncProvider.dll
    2017-07-11 21:48 - 2017-07-07 02:17 - 01260544 _____ (Microsoft Corporation) C:\WINDOWS\system32\GamePanel.exe
    2017-07-11 21:48 - 2017-07-07 02:17 - 00692736 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
    2017-07-11 21:48 - 2017-07-07 02:17 - 00588800 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
    2017-07-11 21:48 - 2017-07-07 02:17 - 00422400 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpAXHolder.dll
    2017-07-11 21:48 - 2017-07-07 02:17 - 00229888 _____ (Microsoft Corporation) C:\WINDOWS\system32\SIHClient.exe
    2017-07-11 21:48 - 2017-07-07 02:16 - 12786176 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
    2017-07-11 21:48 - 2017-07-07 02:16 - 00925696 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll
    2017-07-11 21:48 - 2017-07-07 02:16 - 00545792 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
    2017-07-11 21:48 - 2017-07-07 02:15 - 08238080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
    2017-07-11 21:48 - 2017-07-07 02:15 - 00922112 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
    2017-07-11 21:48 - 2017-07-07 02:14 - 08211968 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
    2017-07-11 21:48 - 2017-07-07 02:14 - 03784704 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapRouter.dll
    2017-07-11 21:48 - 2017-07-07 02:14 - 02956800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
    2017-07-11 21:48 - 2017-07-07 02:14 - 01802240 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
    2017-07-11 21:48 - 2017-07-07 02:14 - 01448960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
    2017-07-11 21:48 - 2017-07-07 02:14 - 00790016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.dll
    2017-07-11 21:48 - 2017-07-07 02:14 - 00570880 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhotoScreensaver.scr
    2017-07-11 21:48 - 2017-07-07 02:13 - 13839872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
    2017-07-11 21:48 - 2017-07-07 02:13 - 05892096 _____ (Microsoft Corporation) C:\WINDOWS\system32\d2d1.dll
    2017-07-11 21:48 - 2017-07-07 02:13 - 00840192 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll
    2017-07-11 21:48 - 2017-07-07 02:12 - 04730880 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
    2017-07-11 21:48 - 2017-07-07 02:12 - 03307008 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
    2017-07-11 21:48 - 2017-07-07 02:12 - 02499584 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll
    2017-07-11 21:48 - 2017-07-07 02:12 - 02199552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.Resources.dll
    2017-07-11 21:48 - 2017-07-07 02:12 - 02055168 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
    2017-07-11 21:48 - 2017-07-07 02:12 - 01713664 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActiveSyncProvider.dll
    2017-07-11 21:48 - 2017-07-07 02:12 - 01420800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Maps.dll
    2017-07-11 21:48 - 2017-07-07 02:12 - 01305088 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
    2017-07-11 21:48 - 2017-07-07 02:12 - 01293824 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll
    2017-07-11 21:48 - 2017-07-07 02:12 - 01142272 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
    2017-07-11 21:48 - 2017-07-07 02:12 - 00706560 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
    2017-07-11 21:48 - 2017-07-07 02:11 - 03139584 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll
    2017-07-11 21:48 - 2017-07-07 02:11 - 02829824 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
    2017-07-11 21:48 - 2017-07-07 02:11 - 02649600 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
    2017-07-11 21:48 - 2017-07-07 02:11 - 02177024 _____ (Microsoft Corporation) C:\WINDOWS\system32\OpcServices.dll
    2017-07-11 21:48 - 2017-07-07 02:11 - 01888256 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
    2017-07-11 21:48 - 2017-07-07 02:11 - 01812480 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll
    2017-07-11 21:48 - 2017-07-07 02:11 - 00986112 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
    2017-07-11 21:48 - 2017-07-07 02:10 - 05557760 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbgeng.dll
    2017-07-11 21:48 - 2017-07-07 02:10 - 04707840 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
    2017-07-11 21:48 - 2017-07-07 02:10 - 02444288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
    2017-07-11 21:48 - 2017-07-07 02:10 - 00079872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wudriver.dll
    2017-07-11 21:48 - 2017-07-07 02:10 - 00025088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eapprovp.dll
    2017-07-11 21:48 - 2017-07-07 02:09 - 20504576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
    2017-07-11 21:48 - 2017-07-07 02:09 - 00365056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll
    2017-07-11 21:48 - 2017-07-07 02:08 - 00285696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb10.sys
    2017-07-11 21:48 - 2017-07-07 02:07 - 00272896 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToReceiver.dll
    2017-07-11 21:48 - 2017-07-07 02:07 - 00117248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\raschap.dll
    2017-07-11 21:48 - 2017-07-07 02:06 - 00412160 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsApi.dll
    2017-07-11 21:48 - 2017-07-07 02:06 - 00241152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecsExt.dll
    2017-07-11 21:48 - 2017-07-07 02:06 - 00205824 _____ (Microsoft Corporation) C:\WINDOWS\system32\sensrsvc.dll
    2017-07-11 21:48 - 2017-07-07 02:05 - 19335168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
    2017-07-11 21:48 - 2017-07-07 02:05 - 11870720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
    2017-07-11 21:48 - 2017-07-07 02:05 - 06728192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
    2017-07-11 21:48 - 2017-07-07 02:05 - 05719040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingMaps.dll
    2017-07-11 21:48 - 2017-07-07 02:05 - 00502784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DevicePairing.dll
    2017-07-11 21:48 - 2017-07-07 02:05 - 00370176 _____ (Microsoft Corporation) C:\WINDOWS\system32\msinfo32.exe
    2017-07-11 21:48 - 2017-07-07 02:05 - 00312320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Wldap32.dll
    2017-07-11 21:48 - 2017-07-07 02:04 - 05961216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
    2017-07-11 21:48 - 2017-07-07 02:04 - 01403392 _____ (Microsoft Corporation) C:\WINDOWS\system32\wdc.dll
    2017-07-11 21:48 - 2017-07-07 02:04 - 01248768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AzureSettingSyncProvider.dll
    2017-07-11 21:48 - 2017-07-07 02:04 - 00754176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
    2017-07-11 21:48 - 2017-07-07 02:04 - 00506368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
    2017-07-11 21:48 - 2017-07-07 02:04 - 00394240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Management.dll
    2017-07-11 21:48 - 2017-07-07 02:04 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\system32\csrsrv.dll
    2017-07-11 21:48 - 2017-07-07 02:03 - 06123520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mos.dll
    2017-07-11 21:48 - 2017-07-07 02:03 - 00636416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WpcWebFilter.dll
    2017-07-11 21:48 - 2017-07-07 02:03 - 00446464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rastls.dll
    2017-07-11 21:48 - 2017-07-07 02:02 - 00952832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comdlg32.dll
    2017-07-11 21:48 - 2017-07-07 02:02 - 00508416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhotoScreensaver.scr
    2017-07-11 21:48 - 2017-07-07 02:01 - 06287360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
    2017-07-11 21:48 - 2017-07-07 02:01 - 02859520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
    2017-07-11 21:48 - 2017-07-07 02:00 - 07596544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
    2017-07-11 21:48 - 2017-07-07 02:00 - 05225984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll
    2017-07-11 21:48 - 2017-07-07 02:00 - 02588160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapRouter.dll
    2017-07-11 21:48 - 2017-07-07 02:00 - 01626624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
    2017-07-11 21:48 - 2017-07-07 02:00 - 01565184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3.dll
    2017-07-11 21:48 - 2017-07-07 02:00 - 01019904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aadtb.dll
    2017-07-11 21:48 - 2017-07-07 01:59 - 04417024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExplorerFrame.dll
    2017-07-11 21:48 - 2017-07-07 01:59 - 03656704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
    2017-07-11 21:48 - 2017-07-07 01:59 - 01494016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActiveSyncProvider.dll
    2017-07-11 21:48 - 2017-07-07 01:59 - 01355264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OpcServices.dll
    2017-07-11 21:48 - 2017-07-07 01:59 - 00787456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
    2017-07-11 21:48 - 2017-07-07 01:58 - 04559360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbgeng.dll
    2017-07-11 21:48 - 2017-07-07 01:58 - 02782720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msftedit.dll
    2017-07-11 21:48 - 2017-07-07 01:58 - 02298368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
    2017-07-11 21:48 - 2017-07-07 01:58 - 01237504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.Maps.dll
    2017-07-11 21:48 - 2017-07-07 01:55 - 00342528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMPhoto.dll
    2017-07-11 21:48 - 2017-07-07 01:55 - 00329216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SensorsApi.dll
    2017-07-11 21:48 - 2017-07-07 01:53 - 01301504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wdc.dll
    2017-07-11 21:48 - 2017-07-07 01:53 - 00338432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msinfo32.exe
    2017-07-11 21:48 - 2017-07-01 18:52 - 00031932 _____ C:\WINDOWS\system32\edgehtmlpluginpolicy.bin
    2017-07-11 21:48 - 2017-06-20 02:18 - 01564576 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
    2017-07-11 21:48 - 2017-06-20 02:18 - 00096672 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
    2017-07-11 21:48 - 2017-06-20 02:17 - 00629152 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
    2017-07-11 21:48 - 2017-06-20 02:17 - 00544160 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
    2017-07-11 21:48 - 2017-06-20 02:17 - 00334240 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
    2017-07-11 21:48 - 2017-06-20 02:17 - 00034720 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe
    2017-07-11 21:48 - 2017-06-20 02:16 - 01214880 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
    2017-07-11 21:48 - 2017-06-20 02:16 - 00335776 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcntel.dll
    2017-07-11 21:48 - 2017-06-20 02:15 - 00233376 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
    2017-07-11 21:48 - 2017-06-20 02:11 - 01395152 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
    2017-07-11 21:48 - 2017-06-20 02:11 - 00411992 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSAudDecMFT.dll
    2017-07-11 21:48 - 2017-06-20 02:10 - 02327456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
    2017-07-11 21:48 - 2017-06-20 02:10 - 01930320 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
    2017-07-11 21:48 - 2017-06-20 02:08 - 01242528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
    2017-07-11 21:48 - 2017-06-20 02:06 - 00279968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msiscsi.sys
    2017-07-11 21:48 - 2017-06-20 02:05 - 01057832 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll
    2017-07-11 21:48 - 2017-06-20 02:04 - 04847424 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
    2017-07-11 21:48 - 2017-06-20 02:04 - 00472728 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanager.dll
    2017-07-11 21:48 - 2017-06-20 02:03 - 00820128 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
    2017-07-11 21:48 - 2017-06-20 02:03 - 00102312 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredentialUIBroker.exe
    2017-07-11 21:48 - 2017-06-20 02:02 - 02645688 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
    2017-07-11 21:48 - 2017-06-20 02:02 - 01055648 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll
    2017-07-11 21:48 - 2017-06-20 02:00 - 00558920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.dll
    2017-07-11 21:48 - 2017-06-20 02:00 - 00255904 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll
    2017-07-11 21:48 - 2017-06-20 02:00 - 00142752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wcifs.sys
    2017-07-11 21:48 - 2017-06-20 01:59 - 06554928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
    2017-07-11 21:48 - 2017-06-20 01:59 - 01220072 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
    2017-07-11 21:48 - 2017-06-20 01:59 - 01054280 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
    2017-07-11 21:48 - 2017-06-20 01:59 - 00583304 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe
    2017-07-11 21:48 - 2017-06-20 01:59 - 00467504 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFCaptureEngine.dll
    2017-07-11 21:48 - 2017-06-20 01:58 - 00833160 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditionUpgradeManagerObj.dll
    2017-07-11 21:48 - 2017-06-20 01:58 - 00406072 _____ (Microsoft Corporation) C:\WINDOWS\system32\MMDevAPI.dll
    2017-07-11 21:48 - 2017-06-20 01:57 - 02681760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
    2017-07-11 21:48 - 2017-06-20 01:57 - 00204192 _____ (Microsoft Corporation) C:\WINDOWS\system32\basecsp.dll
    2017-07-11 21:48 - 2017-06-20 01:34 - 00192416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aepic.dll
    2017-07-11 21:48 - 2017-06-20 01:15 - 01620368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
    2017-07-11 21:48 - 2017-06-20 01:15 - 00455104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSAudDecMFT.dll
    2017-07-11 21:48 - 2017-06-20 01:14 - 01150784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ucrtbase.dll
    2017-07-11 21:48 - 2017-06-20 01:13 - 00787712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll
    2017-07-11 21:48 - 2017-06-20 01:13 - 00056832 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinBioDataModelOOBE.exe
    2017-07-11 21:48 - 2017-06-20 01:12 - 00293376 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
    2017-07-11 21:48 - 2017-06-20 01:12 - 00264192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbvideo.sys
    2017-07-11 21:48 - 2017-06-20 01:12 - 00231936 _____ (Microsoft Corporation) C:\WINDOWS\system32\DolbyMATEnc.dll
    2017-07-11 21:48 - 2017-06-20 01:12 - 00115712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bridge.sys
    2017-07-11 21:48 - 2017-06-20 01:12 - 00086528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hdaudbus.sys
    2017-07-11 21:48 - 2017-06-20 01:11 - 00200192 _____ (Microsoft Corporation) C:\WINDOWS\system32\ScDeviceEnum.dll
    2017-07-11 21:48 - 2017-06-20 01:11 - 00084992 _____ (Microsoft Corporation) C:\WINDOWS\system32\MshtmlDac.dll
    2017-07-11 21:48 - 2017-06-20 01:10 - 00778240 _____ (Microsoft Corporation) C:\WINDOWS\system32\DolbyHrtfEnc.dll
    2017-07-11 21:48 - 2017-06-20 01:10 - 00722432 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
    2017-07-11 21:48 - 2017-06-20 01:10 - 00315392 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsEnvironment.Desktop.dll
    2017-07-11 21:48 - 2017-06-20 01:10 - 00188928 _____ (Microsoft Corporation) C:\WINDOWS\system32\wincredui.dll
    2017-07-11 21:48 - 2017-06-20 01:10 - 00096256 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
    2017-07-11 21:48 - 2017-06-20 01:09 - 00555008 _____ (Microsoft Corporation) C:\WINDOWS\system32\WFDSConMgrSvc.dll
    2017-07-11 21:48 - 2017-06-20 01:09 - 00551424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Payments.dll
    2017-07-11 21:48 - 2017-06-20 01:09 - 00497152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Shell.BlueLightReduction.dll
    2017-07-11 21:48 - 2017-06-20 01:09 - 00427008 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll
    2017-07-11 21:48 - 2017-06-20 01:09 - 00406032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\policymanager.dll
    2017-07-11 21:48 - 2017-06-20 01:09 - 00357888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Narrator.exe
    2017-07-11 21:48 - 2017-06-20 01:09 - 00250368 _____ (Microsoft Corporation) C:\WINDOWS\system32\SCardSvr.dll
    2017-07-11 21:48 - 2017-06-20 01:09 - 00208384 _____ (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll
    2017-07-11 21:48 - 2017-06-20 01:09 - 00189952 _____ (Microsoft Corporation) C:\WINDOWS\system32\certprop.dll
    2017-07-11 21:48 - 2017-06-20 01:09 - 00140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\iepeers.dll
    2017-07-11 21:48 - 2017-06-20 01:09 - 00062464 _____ (Microsoft Corporation) C:\WINDOWS\system32\dataclen.dll
    2017-07-11 21:48 - 2017-06-20 01:08 - 04469840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
    2017-07-11 21:48 - 2017-06-20 01:08 - 00646656 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockHostingFramework.dll
    2017-07-11 21:48 - 2017-06-20 01:08 - 00386560 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
    2017-07-11 21:48 - 2017-06-20 01:08 - 00365056 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Notifications.dll
    2017-07-11 21:48 - 2017-06-20 01:08 - 00328704 _____ (Microsoft Corporation) C:\WINDOWS\system32\PsmServiceExtHost.dll
    2017-07-11 21:48 - 2017-06-20 01:08 - 00327168 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinBioDataModel.dll
    2017-07-11 21:48 - 2017-06-20 01:08 - 00274944 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll
    2017-07-11 21:48 - 2017-06-20 01:08 - 00251392 _____ (Microsoft Corporation) C:\WINDOWS\system32\scksp.dll
    2017-07-11 21:48 - 2017-06-20 01:07 - 02475136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10warp.dll
    2017-07-11 21:48 - 2017-06-20 01:07 - 00982016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys
    2017-07-11 21:48 - 2017-06-20 01:07 - 00823296 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApi.dll
    2017-07-11 21:48 - 2017-06-20 01:07 - 00632832 _____ (Microsoft Corporation) C:\WINDOWS\system32\tileobjserver.dll
    2017-07-11 21:48 - 2017-06-20 01:07 - 00626176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll
    2017-07-11 21:48 - 2017-06-20 01:07 - 00510976 _____ (Microsoft Corporation) C:\WINDOWS\system32\TDLMigration.dll
    2017-07-11 21:48 - 2017-06-20 01:07 - 00411136 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll
    2017-07-11 21:48 - 2017-06-20 01:07 - 00346016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudExperienceHostCommon.dll
    2017-07-11 21:48 - 2017-06-20 01:07 - 00138656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudExperienceHostUser.dll
    2017-07-11 21:48 - 2017-06-20 01:06 - 00942592 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbiosrvc.dll
    2017-07-11 21:48 - 2017-06-20 01:06 - 00847872 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
    2017-07-11 21:48 - 2017-06-20 01:06 - 00754592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll
    2017-07-11 21:48 - 2017-06-20 01:06 - 00751104 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
    2017-07-11 21:48 - 2017-06-20 01:06 - 00411648 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll
    2017-07-11 21:48 - 2017-06-20 01:06 - 00299520 _____ (Microsoft Corporation) C:\WINDOWS\system32\AboveLockAppHost.dll
    2017-07-11 21:48 - 2017-06-20 01:06 - 00278944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\thumbcache.dll
    2017-07-11 21:48 - 2017-06-20 01:05 - 04447744 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
    2017-07-11 21:48 - 2017-06-20 01:05 - 01468416 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
    2017-07-11 21:48 - 2017-06-20 01:05 - 00687616 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
    2017-07-11 21:48 - 2017-06-20 01:05 - 00585216 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppReadiness.dll
    2017-07-11 21:48 - 2017-06-20 01:05 - 00438096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.dll
    2017-07-11 21:48 - 2017-06-20 01:05 - 00417792 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgentUserBroker.exe
    2017-07-11 21:48 - 2017-06-20 01:05 - 00406528 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputSwitch.dll
    2017-07-11 21:48 - 2017-06-20 01:05 - 00374784 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe
    2017-07-11 21:48 - 2017-06-20 01:05 - 00364032 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
    2017-07-11 21:48 - 2017-06-20 01:05 - 00056832 _____ (Microsoft Corporation) C:\WINDOWS\system32\cldapi.dll
    2017-07-11 21:48 - 2017-06-20 01:04 - 02330520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
    2017-07-11 21:48 - 2017-06-20 01:04 - 01818624 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll
    2017-07-11 21:48 - 2017-06-20 01:04 - 01425920 _____ (Microsoft Corporation) C:\WINDOWS\system32\certutil.exe
    2017-07-11 21:48 - 2017-06-20 01:04 - 01178528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxPackaging.dll
    2017-07-11 21:48 - 2017-06-20 01:04 - 01177600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Unistore.dll
    2017-07-11 21:48 - 2017-06-20 01:04 - 01077496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webservices.dll
    2017-07-11 21:48 - 2017-06-20 01:04 - 00899072 _____ (Microsoft Corporation) C:\WINDOWS\system32\SmartcardCredentialProvider.dll
    2017-07-11 21:48 - 2017-06-20 01:04 - 00802816 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
    2017-07-11 21:48 - 2017-06-20 01:04 - 00400896 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXTaskFactory.dll
    2017-07-11 21:48 - 2017-06-20 01:04 - 00181656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll
    2017-07-11 21:48 - 2017-06-20 01:04 - 00178176 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditionUpgradeHelper.dll
    2017-07-11 21:48 - 2017-06-20 01:04 - 00049656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msasn1.dll
    2017-07-11 21:48 - 2017-06-20 01:03 - 05806048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
    2017-07-11 21:48 - 2017-06-20 01:03 - 02077184 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
    2017-07-11 21:48 - 2017-06-20 01:03 - 01396224 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
    2017-07-11 21:48 - 2017-06-20 01:03 - 00864240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
    2017-07-11 21:48 - 2017-06-20 01:03 - 00443728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFCaptureEngine.dll
    2017-07-11 21:48 - 2017-06-20 01:02 - 03377664 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
    2017-07-11 21:48 - 2017-06-20 01:02 - 03204096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Bluetooth.Profiles.Gatt.dll
    2017-07-11 21:48 - 2017-06-20 01:02 - 02804736 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
    2017-07-11 21:48 - 2017-06-20 01:02 - 01886208 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
    2017-07-11 21:48 - 2017-06-20 01:02 - 01121928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
    2017-07-11 21:48 - 2017-06-20 01:02 - 00681984 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
    2017-07-11 21:48 - 2017-06-20 01:02 - 00354400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MMDevAPI.dll
    2017-07-11 21:48 - 2017-06-20 01:01 - 04536320 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
    2017-07-11 21:48 - 2017-06-20 01:01 - 04396032 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_47.dll
    2017-07-11 21:48 - 2017-06-20 01:01 - 03803136 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsThresholdAdminFlowUI.dll
    2017-07-11 21:48 - 2017-06-20 01:01 - 03332096 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRH.dll
    2017-07-11 21:48 - 2017-06-20 01:01 - 03059200 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll
    2017-07-11 21:48 - 2017-06-20 01:01 - 01076736 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll
    2017-07-11 21:48 - 2017-06-20 01:01 - 00176032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\basecsp.dll
    2017-07-11 21:48 - 2017-06-20 01:00 - 03057664 _____ (Microsoft Corporation) C:\WINDOWS\system32\CertEnroll.dll
    2017-07-11 21:48 - 2017-06-20 01:00 - 02597888 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
    2017-07-11 21:48 - 2017-06-20 01:00 - 02171392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll
    2017-07-11 21:48 - 2017-06-20 00:59 - 02938880 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputService.dll
    2017-07-11 21:48 - 2017-06-20 00:59 - 01674240 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
    2017-07-11 21:48 - 2017-06-20 00:59 - 01357824 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
    2017-07-11 21:48 - 2017-06-20 00:58 - 00625152 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
    2017-07-11 21:48 - 2017-06-20 00:56 - 00985600 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSWorkspace.dll
    2017-07-11 21:48 - 2017-06-20 00:54 - 00059392 _____ (Microsoft Corporation) C:\WINDOWS\system32\DmApiSetExtImplDesktop.dll
    2017-07-11 21:48 - 2017-06-20 00:49 - 00899072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctfuimanager.dll
    2017-07-11 21:48 - 2017-06-20 00:49 - 00331776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleacc.dll
    2017-07-11 21:48 - 2017-06-20 00:46 - 00132096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Microsoft.Bluetooth.Profiles.Gatt.Interface.dll
    2017-07-11 21:48 - 2017-06-20 00:45 - 00111104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.System.Profile.RetailInfo.dll
    2017-07-11 21:48 - 2017-06-20 00:45 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MshtmlDac.dll
    2017-07-11 21:48 - 2017-06-20 00:43 - 00329728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll
    2017-07-11 21:48 - 2017-06-20 00:43 - 00173568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ClipboardServer.dll
    2017-07-11 21:48 - 2017-06-20 00:43 - 00151552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wincredui.dll
    2017-07-11 21:48 - 2017-06-20 00:43 - 00139776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BluetoothApis.dll
    2017-07-11 21:48 - 2017-06-20 00:43 - 00124928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iepeers.dll
    2017-07-11 21:48 - 2017-06-20 00:43 - 00080384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmled.dll
    2017-07-11 21:48 - 2017-06-20 00:43 - 00052224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dataclen.dll
    2017-07-11 21:48 - 2017-06-20 00:42 - 00641024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certca.dll
    2017-07-11 21:48 - 2017-06-20 00:42 - 00387584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Payments.dll
    2017-07-11 21:48 - 2017-06-20 00:42 - 00338432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
    2017-07-11 21:48 - 2017-06-20 00:42 - 00266240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtrans.dll
    2017-07-11 21:48 - 2017-06-20 00:42 - 00226304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scksp.dll
    2017-07-11 21:48 - 2017-06-20 00:42 - 00121856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sendmail.dll
    2017-07-11 21:48 - 2017-06-20 00:41 - 00734208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcastdvr.exe
    2017-07-11 21:48 - 2017-06-20 00:41 - 00646656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MbaeApi.dll
    2017-07-11 21:48 - 2017-06-20 00:41 - 00601088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SndVolSSO.dll
    2017-07-11 21:48 - 2017-06-20 00:41 - 00433152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Bluetooth.dll
    2017-07-11 21:48 - 2017-06-20 00:41 - 00201216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\credprovhost.dll
    2017-07-11 21:48 - 2017-06-20 00:40 - 00368128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgentUserBroker.exe
    2017-07-11 21:48 - 2017-06-20 00:40 - 00356864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActivationManager.dll
    2017-07-11 21:48 - 2017-06-20 00:40 - 00342016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certcli.dll
    2017-07-11 21:48 - 2017-06-20 00:40 - 00247808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AboveLockAppHost.dll
    2017-07-11 21:48 - 2017-06-20 00:40 - 00230912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edputil.dll
    2017-07-11 21:48 - 2017-06-20 00:40 - 00038400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBrokerUI.dll
    2017-07-11 21:48 - 2017-06-20 00:39 - 02814464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\themeui.dll
    2017-07-11 21:48 - 2017-06-20 00:39 - 02671616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
    2017-07-11 21:48 - 2017-06-20 00:39 - 00969728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Unistore.dll
    2017-07-11 21:48 - 2017-06-20 00:39 - 00646144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mmsys.cpl
    2017-07-11 21:48 - 2017-06-20 00:39 - 00471040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VAN.dll
    2017-07-11 21:48 - 2017-06-20 00:39 - 00312320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
    2017-07-11 21:48 - 2017-06-20 00:38 - 01451008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll
    2017-07-11 21:48 - 2017-06-20 00:38 - 01285120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbghelp.dll
    2017-07-11 21:48 - 2017-06-20 00:38 - 01171968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certutil.exe
    2017-07-11 21:48 - 2017-06-20 00:38 - 00663040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
    2017-07-11 21:48 - 2017-06-20 00:38 - 00648192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SmartcardCredentialProvider.dll
    2017-07-11 21:48 - 2017-06-20 00:38 - 00329728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgent.exe
    2017-07-11 21:48 - 2017-06-20 00:37 - 02008576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
    2017-07-11 21:48 - 2017-06-20 00:36 - 03667456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_47.dll
    2017-07-11 21:48 - 2017-06-20 00:35 - 02679296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SRH.dll
    2017-07-11 21:48 - 2017-06-20 00:35 - 02132480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
    2017-07-11 21:48 - 2017-06-20 00:35 - 00050176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cldapi.dll
    2017-07-11 21:48 - 2017-06-20 00:34 - 04056576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
    2017-07-11 21:48 - 2017-06-20 00:34 - 02750464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CertEnroll.dll
    2017-07-11 21:48 - 2017-06-20 00:34 - 02211328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputService.dll
    2017-07-11 21:48 - 2017-06-20 00:34 - 01492480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Bluetooth.dll
    2017-07-11 21:48 - 2017-06-20 00:34 - 00760832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasapi32.dll
    2017-07-11 21:48 - 2017-06-20 00:31 - 00334848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToDevice.dll
    2017-07-11 21:48 - 2017-06-20 00:30 - 00209920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wdmaud.drv
    2017-07-11 21:48 - 2017-06-20 00:30 - 00157696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpchttp.dll
    2017-07-11 21:48 - 2017-06-20 00:30 - 00089088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\olepro32.dll
    2017-07-11 21:48 - 2017-06-20 00:28 - 00584192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\apphelp.dll
    2017-07-11 21:47 - 2017-07-07 03:27 - 00965024 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.efi
    2017-07-11 21:47 - 2017-07-07 03:27 - 00821664 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.exe
    2017-07-11 21:47 - 2017-07-07 03:22 - 00119384 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcmnutils.dll
    2017-07-11 21:47 - 2017-07-07 03:17 - 01017760 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
    2017-07-11 21:47 - 2017-07-07 03:12 - 00228256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys
    2017-07-11 21:47 - 2017-07-07 02:27 - 01640448 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
    2017-07-11 21:47 - 2017-07-07 02:27 - 00859136 _____ (Microsoft Corporation) C:\WINDOWS\system32\uDWM.dll
    2017-07-11 21:47 - 2017-07-07 02:27 - 00577024 _____ (Microsoft Corporation) C:\WINDOWS\system32\duser.dll
    2017-07-11 21:47 - 2017-07-07 02:24 - 00114688 _____ (Microsoft Corporation) C:\WINDOWS\system32\officecsp.dll
    2017-07-11 21:47 - 2017-07-07 02:23 - 00113152 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhosdeployment.dll
    2017-07-11 21:47 - 2017-07-07 02:23 - 00029696 _____ (Microsoft Corporation) C:\WINDOWS\system32\eapprovp.dll
    2017-07-11 21:47 - 2017-07-07 02:21 - 00096256 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActiveSyncCsp.dll
    2017-07-11 21:47 - 2017-07-07 02:19 - 00137216 _____ (Microsoft Corporation) C:\WINDOWS\system32\raschap.dll
    2017-07-11 21:47 - 2017-07-07 02:18 - 00563712 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicePairing.dll
    2017-07-11 21:47 - 2017-07-07 02:17 - 00536064 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll
    2017-07-11 21:47 - 2017-07-07 02:14 - 00497152 _____ (Microsoft Corporation) C:\WINDOWS\system32\rastls.dll
    2017-07-11 21:47 - 2017-07-07 02:11 - 00406528 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
    2017-07-11 21:47 - 2017-07-07 02:07 - 00430080 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToDevice.dll
    2017-07-11 21:47 - 2017-07-07 02:07 - 00391168 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPhoto.dll
    2017-07-11 21:47 - 2017-07-07 02:04 - 01703424 _____ (Microsoft Corporation) C:\WINDOWS\system32\aitstatic.exe
    2017-07-11 21:47 - 2017-06-20 02:17 - 00136096 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
    2017-07-11 21:47 - 2017-06-20 02:03 - 00179608 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostUser.dll
    2017-07-11 21:47 - 2017-06-20 02:02 - 00426912 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostCommon.dll
    2017-07-11 21:47 - 2017-06-20 01:58 - 00203168 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostBroker.dll
    2017-07-11 21:47 - 2017-06-20 01:16 - 00970752 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctfuimanager.dll
    2017-07-11 21:47 - 2017-06-20 01:16 - 00417280 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleacc.dll
    2017-07-11 21:47 - 2017-06-20 01:14 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mskssrv.sys
    2017-07-11 21:47 - 2017-06-20 01:13 - 00216064 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Bluetooth.Profiles.Gatt.Interface.dll
    2017-07-11 21:47 - 2017-06-20 01:13 - 00081408 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanprotdim.dll
    2017-07-11 21:47 - 2017-06-20 01:13 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\WFDSConMgr.dll
    2017-07-11 21:47 - 2017-06-20 01:12 - 00144384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.System.Profile.RetailInfo.dll
    2017-07-11 21:47 - 2017-06-20 01:10 - 00189440 _____ (Microsoft Corporation) C:\WINDOWS\system32\BluetoothApis.dll
    2017-07-11 21:47 - 2017-06-20 01:09 - 00205312 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipboardServer.dll
    2017-07-11 21:47 - 2017-06-20 01:09 - 00135680 _____ (Microsoft Corporation) C:\WINDOWS\system32\sendmail.dll
    2017-07-11 21:47 - 2017-06-20 01:08 - 00791040 _____ (Microsoft Corporation) C:\WINDOWS\system32\certca.dll
    2017-07-11 21:47 - 2017-06-20 01:07 - 00916992 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvr.exe
    2017-07-11 21:47 - 2017-06-20 01:07 - 00757248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdiWiFi.sys
    2017-07-11 21:47 - 2017-06-20 01:07 - 00621056 _____ (Microsoft Corporation) C:\WINDOWS\system32\SndVolSSO.dll
    2017-07-11 21:47 - 2017-06-20 01:06 - 00455680 _____ (Microsoft Corporation) C:\WINDOWS\system32\certcli.dll
    2017-07-11 21:47 - 2017-06-20 01:06 - 00335872 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudDomainJoinDataModelServer.dll
    2017-07-11 21:47 - 2017-06-20 01:06 - 00253440 _____ (Microsoft Corporation) C:\WINDOWS\system32\edputil.dll
    2017-07-11 21:47 - 2017-06-20 01:06 - 00045056 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBrokerUI.dll
    2017-07-11 21:47 - 2017-06-20 01:05 - 02873344 _____ (Microsoft Corporation) C:\WINDOWS\system32\themeui.dll
    2017-07-11 21:47 - 2017-06-20 01:05 - 00873472 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll
    2017-07-11 21:47 - 2017-06-20 01:05 - 00696320 _____ (Microsoft Corporation) C:\WINDOWS\system32\mmsys.cpl
    2017-07-11 21:47 - 2017-06-20 01:02 - 00081920 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudDomainJoinAUG.dll
    2017-07-11 21:47 - 2017-06-20 01:01 - 00809984 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasapi32.dll
    2017-07-11 21:47 - 2017-06-20 01:01 - 00397312 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascustom.dll
    2017-07-11 21:47 - 2017-06-20 00:57 - 00290816 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmclient.exe
    2017-07-11 21:47 - 2017-06-20 00:57 - 00138752 _____ (Microsoft Corporation) C:\WINDOWS\system32\DMPushRouterCore.dll
    2017-07-11 21:47 - 2017-06-20 00:56 - 00600064 _____ (Microsoft Corporation) C:\WINDOWS\system32\FrameServer.dll
    2017-07-11 21:47 - 2017-06-20 00:56 - 00241152 _____ (Microsoft Corporation) C:\WINDOWS\system32\wdmaud.drv
    2017-07-10 22:09 - 2017-07-10 22:09 - 00000000 ____D C:\Users\crocq\AppData\Roaming\FiraxisLive
    2017-07-10 22:08 - 2017-07-10 22:08 - 00000000 ____D C:\Users\crocq\AppData\Roaming\ModLauncherWPF
    2017-07-10 19:44 - 2017-07-10 19:44 - 00000000 ____D C:\Users\stbxr\AppData\Local\CEF
    2017-07-10 19:42 - 2017-07-10 19:42 - 00000000 ____D C:\Users\stbxr\Desktop\Nouveau dossier
    2017-07-09 22:47 - 2017-07-09 23:01 - 00000000 ____D C:\Users\crocq\Downloads\Contact (1997) [1080p]
    2017-07-08 14:20 - 2017-07-12 17:32 - 00000000 ____D C:\Users\crocq\Desktop\Vulcain
    2017-07-08 13:51 - 2017-07-08 13:51 - 64025992 _____ (Malwarebytes ) C:\Users\crocq\Downloads\mb3-setup-35891.35891-3.1.2.1733-1.0.139-1.0.2060.exe
    2017-07-08 13:44 - 2017-07-08 13:46 - 00000000 ____D C:\AdwCleaner
    2017-07-08 13:43 - 2017-07-08 13:43 - 04110280 _____ C:\Users\crocq\Downloads\adwcleaner_6.047.exe
    2017-07-08 11:35 - 2017-07-08 11:35 - 00000000 ____D C:\Users\crocq\AppData\Local\Tempzxpsign9a8ac4ce78fa2ee7
    2017-07-08 11:35 - 2017-07-08 11:35 - 00000000 ____D C:\Users\crocq\AppData\Local\Tempzxpsign411a33a95293832f
    2017-07-08 10:50 - 2017-07-08 10:49 - 00084602 _____ C:\Users\crocq\Desktop\HocusPocus_SinterKlaas.pdf
    2017-07-03 21:33 - 2017-07-03 21:33 - 00000202 _____ C:\Users\crocq\Desktop\XCOM 2.url
    2017-07-03 00:06 - 2017-07-03 00:24 - 00000000 ____D C:\Users\crocq\Documents\Mount&Blade Warband Savegames
    2017-07-03 00:04 - 2017-07-03 00:19 - 00000000 ____D C:\Users\crocq\Documents\Mount&Blade Warband
    2017-07-03 00:04 - 2017-07-03 00:06 - 00000000 ____D C:\Users\crocq\AppData\Roaming\Mount&Blade Warband
    2017-07-02 23:53 - 2017-07-02 23:53 - 00000201 _____ C:\Users\crocq\Desktop\Mount & Blade Warband.url
    2017-07-02 20:18 - 2017-07-02 20:18 - 00000000 ____D C:\Users\crocq\ansel
    2017-07-02 19:31 - 2017-07-02 19:31 - 00000000 ____D C:\Users\crocq\AppData\Local\Tempzxpsignd60c41b90d9cf714
    2017-07-02 19:31 - 2017-07-02 19:31 - 00000000 ____D C:\Users\crocq\AppData\Local\Tempzxpsign85a17077dc917a31
    2017-07-01 20:42 - 2017-07-01 20:42 - 00002199 _____ C:\Users\Public\Desktop\TorGuard.lnk
    2017-07-01 20:42 - 2017-07-01 20:42 - 00000000 ____D C:\Users\crocq\AppData\Local\VPNetworkLLC
    2017-07-01 20:41 - 2017-07-01 20:41 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VPNetwork LLC
    2017-07-01 20:41 - 2017-07-01 20:41 - 00000000 ____D C:\Program Files\TAP-Windows
    2017-07-01 20:41 - 2017-07-01 20:41 - 00000000 ____D C:\Program Files (x86)\VPNetwork LLC
    2017-06-25 20:59 - 2017-06-25 21:00 - 00000000 ____D C:\Users\crocq\Downloads\THE SIMPSONS - Saison 21 (2009-2010)
    2017-06-25 20:43 - 2017-06-25 20:44 - 00000000 ____D C:\Users\crocq\Downloads\Brooklyn.Nine-Nine.S04.VOSTFR.WEB-DL.x264-ARK01
    2017-06-25 15:49 - 2017-06-25 15:49 - 00000000 ____D C:\Users\crocq\AppData\Local\Tempzxpsignf7e02f918f4ff1ec
    2017-06-25 15:49 - 2017-06-25 15:49 - 00000000 ____D C:\Users\crocq\AppData\Local\Tempzxpsign0feb0cebf6c90888
    2017-06-25 14:51 - 2017-06-25 14:51 - 00000000 ____D C:\Users\crocq\AppData\Local\Tempzxpsignf337cf88aed64fc4
    2017-06-25 14:51 - 2017-06-25 14:51 - 00000000 ____D C:\Users\crocq\AppData\Local\Tempzxpsign7a687d342312d671
    2017-06-24 18:22 - 2017-06-24 18:22 - 00000000 ____D C:\Users\crocq\AppData\Local\Tempzxpsignc87fc88a2fbeb235
    2017-06-24 18:22 - 2017-06-24 18:22 - 00000000 ____D C:\Users\crocq\AppData\Local\Tempzxpsign2cfa194283330b1f
    2017-06-24 15:23 - 2017-06-24 15:23 - 00000000 ____D C:\Users\crocq\AppData\Local\Tempzxpsigncdb1706ef9f99257
    2017-06-24 15:23 - 2017-06-24 15:23 - 00000000 ____D C:\Users\crocq\AppData\Local\Tempzxpsigna31bc913e7c3729b
    2017-06-24 15:17 - 2017-06-24 15:17 - 00000000 ____D C:\Users\crocq\AppData\Local\Tempzxpsignafe4454eeb4c4436
    2017-06-24 14:51 - 2017-06-24 14:51 - 00000000 ____D C:\Users\crocq\AppData\Local\Tempzxpsignff695c750a172951
    2017-06-24 14:51 - 2017-06-24 14:51 - 00000000 ____D C:\Users\crocq\AppData\Local\Tempzxpsigna0fecb58005ef6f3
    2017-06-24 14:51 - 2017-06-24 14:51 - 00000000 ____D C:\Users\crocq\AppData\Local\Tempzxpsign28583943a3fe9f43
    2017-06-24 11:22 - 2017-07-10 19:44 - 00000000 ____D C:\Users\stbxr\AppData\Local\NVIDIA Corporation
    2017-06-23 21:50 - 2017-06-23 21:50 - 00000000 ____D C:\Users\crocq\AppData\Local\Hinterland
    2017-06-23 21:49 - 2017-06-23 21:49 - 00000000 ____D C:\Users\crocq\AppData\LocalLow\Hinterland
    2017-06-23 19:47 - 2017-06-23 19:47 - 00000000 ____D C:\Users\crocq\Documents\Arma 3 - Other Profiles
    2017-06-23 18:13 - 2017-06-24 00:53 - 00000000 ____D C:\Users\crocq\AppData\Local\Argo
    2017-06-23 18:13 - 2017-06-23 18:16 - 00000000 ____D C:\Users\crocq\Documents\Argo
    2017-06-23 01:58 - 2017-06-23 01:58 - 00004308 _____ C:\WINDOWS\System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
    2017-06-23 01:58 - 2017-06-23 01:58 - 00004000 _____ C:\WINDOWS\System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
    2017-06-23 01:58 - 2017-06-23 01:58 - 00003994 _____ C:\WINDOWS\System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
    2017-06-23 01:58 - 2017-06-23 01:58 - 00003894 _____ C:\WINDOWS\System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
    2017-06-23 01:58 - 2017-06-23 01:58 - 00003866 _____ C:\WINDOWS\System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
    2017-06-23 01:58 - 2017-06-23 01:58 - 00003858 _____ C:\WINDOWS\System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
    2017-06-23 01:58 - 2017-06-23 01:58 - 00003696 _____ C:\WINDOWS\System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
    2017-06-23 01:58 - 2017-06-23 01:58 - 00003654 _____ C:\WINDOWS\System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
    2017-06-23 01:58 - 2017-06-23 01:58 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
    2017-06-23 01:58 - 2017-06-07 21:45 - 01893312 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspcap64.dll
    2017-06-23 01:58 - 2017-06-07 21:45 - 01755072 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspbridge64.dll
    2017-06-23 01:58 - 2017-06-07 21:45 - 01477056 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspcap.dll
    2017-06-23 01:58 - 2017-06-07 21:45 - 01317312 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspbridge.dll
    2017-06-23 01:58 - 2017-06-07 21:45 - 00121280 _____ C:\WINDOWS\system32\NvRtmpStreamer64.dll
    2017-06-23 01:58 - 2017-06-07 21:45 - 00001951 _____ C:\WINDOWS\NvTelemetryContainerRecovery.bat
    2017-06-23 01:57 - 2017-06-23 01:57 - 00000000 ____D C:\Program Files (x86)\VulkanRT
    2017-06-23 01:57 - 2017-06-07 21:45 - 00512960 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
    2017-06-23 01:57 - 2017-06-07 21:45 - 00418752 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
    2017-06-23 01:57 - 2017-06-07 19:38 - 00134592 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvStreaming.exe
    2017-06-23 01:57 - 2017-03-10 17:17 - 00536864 _____ C:\WINDOWS\system32\vulkan-1.dll
    2017-06-23 01:57 - 2017-03-10 17:17 - 00525600 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
    2017-06-23 01:57 - 2017-03-10 17:17 - 00254240 _____ C:\WINDOWS\system32\vulkaninfo.exe
    2017-06-23 01:57 - 2017-03-10 17:17 - 00233760 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
    2017-06-23 01:55 - 2017-06-07 21:45 - 40201664 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcompiler.dll
    2017-06-23 01:55 - 2017-06-07 21:45 - 35390584 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglv64.dll
    2017-06-23 01:55 - 2017-06-07 21:45 - 35281344 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcompiler.dll
    2017-06-23 01:55 - 2017-06-07 21:45 - 28624320 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglv32.dll
    2017-06-23 01:55 - 2017-06-07 21:45 - 11056272 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvptxJitCompiler.dll
    2017-06-23 01:55 - 2017-06-07 21:45 - 11028664 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
    2017-06-23 01:55 - 2017-06-07 21:45 - 10551256 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvopencl.dll
    2017-06-23 01:55 - 2017-06-07 21:45 - 09248144 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
    2017-06-23 01:55 - 2017-06-07 21:45 - 09014976 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvptxJitCompiler.dll
    2017-06-23 01:55 - 2017-06-07 21:45 - 08808488 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvopencl.dll
    2017-06-23 01:55 - 2017-06-07 21:45 - 03796928 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
    2017-06-23 01:55 - 2017-06-07 21:45 - 03625992 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
    2017-06-23 01:55 - 2017-06-07 21:45 - 03256440 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
    2017-06-23 01:55 - 2017-06-07 21:45 - 01988216 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6438253.dll
    2017-06-23 01:55 - 2017-06-07 21:45 - 01606776 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6438253.dll
    2017-06-23 01:55 - 2017-06-07 21:45 - 01278712 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncMFTH264.dll
    2017-06-23 01:55 - 2017-06-07 21:45 - 01275944 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncMFThevc.dll
    2017-06-23 01:55 - 2017-06-07 21:45 - 01056888 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
    2017-06-23 01:55 - 2017-06-07 21:45 - 00995736 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncMFTH264.dll
    2017-06-23 01:55 - 2017-06-07 21:45 - 00994240 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
    2017-06-23 01:55 - 2017-06-07 21:45 - 00993360 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncMFThevc.dll
    2017-06-23 01:55 - 2017-06-07 21:45 - 00964216 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
    2017-06-23 01:55 - 2017-06-07 21:45 - 00914880 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
    2017-06-23 01:55 - 2017-06-07 21:45 - 00775864 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
    2017-06-23 01:55 - 2017-06-07 21:45 - 00725112 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvDecMFTMjpeg.dll
    2017-06-23 01:55 - 2017-06-07 21:45 - 00688784 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvfatbinaryLoader.dll
    2017-06-23 01:55 - 2017-06-07 21:45 - 00618928 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmcumd.dll
    2017-06-23 01:55 - 2017-06-07 21:45 - 00612088 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
    2017-06-23 01:55 - 2017-06-07 21:45 - 00609728 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll
    2017-06-23 01:55 - 2017-06-07 21:45 - 00584128 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvDecMFTMjpeg.dll
    2017-06-23 01:55 - 2017-06-07 21:45 - 00577728 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvfatbinaryLoader.dll
    2017-06-23 01:55 - 2017-06-07 21:45 - 00499320 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll
    2017-06-23 01:55 - 2017-06-07 21:45 - 00175552 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvaudcap64v.dll
    2017-06-23 01:55 - 2017-06-07 21:45 - 00143296 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvaudcap32v.dll
    2017-06-23 01:55 - 2017-06-07 21:45 - 00057792 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvhci.sys
    2017-06-23 01:55 - 2017-06-07 21:45 - 00048064 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvad64v.sys
    2017-06-23 01:55 - 2017-06-07 21:45 - 00045976 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvhdap64.dll
    2017-06-21 23:36 - 2017-06-21 23:36 - 00000000 ____D C:\Users\crocq\AppData\Local\Tempzxpsignb760ac9c41a42ba9
    2017-06-21 23:36 - 2017-06-21 23:36 - 00000000 ____D C:\Users\crocq\AppData\Local\Tempzxpsign34bc9578663132d7
    2017-06-21 23:36 - 2017-06-21 23:36 - 00000000 ____D C:\Users\crocq\AppData\Local\Tempzxpsign2221473bb62656da
    2017-06-21 21:52 - 2017-07-09 22:46 - 00000000 ____D C:\Users\crocq\AppData\LocalLow\uTorrent
    2017-06-21 19:58 - 2017-06-21 19:58 - 934376020 _____ C:\WINDOWS\MEMORY.DMP
    2017-06-21 19:58 - 2017-06-21 19:58 - 02442012 _____ C:\WINDOWS\Minidump\062117-9265-01.dmp
    2017-06-18 22:18 - 2017-06-18 22:18 - 00000000 ____D C:\Users\crocq\AppData\Local\Tempzxpsign8bd06467d314e917
    2017-06-18 22:18 - 2017-06-18 22:18 - 00000000 ____D C:\Users\crocq\AppData\Local\Tempzxpsign5897254430056fdd
    2017-06-18 22:18 - 2017-06-18 22:18 - 00000000 ____D C:\Users\crocq\AppData\Local\Tempzxpsign218cf26d8ca6ff0a
    2017-06-18 17:54 - 2017-06-18 17:54 - 00000000 ____D C:\Users\crocq\AppData\Local\Tempzxpsign341e107bdcc957b4
    2017-06-18 17:53 - 2017-06-18 17:53 - 00000000 ____D C:\Users\crocq\AppData\Local\Tempzxpsignef70e8cfb9cbbf7a
    2017-06-18 17:53 - 2017-06-18 17:53 - 00000000 ____D C:\Users\crocq\AppData\Local\Tempzxpsign96f86a2456437ad2
    2017-06-13 23:30 - 2017-06-03 06:15 - 01596600 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
    2017-06-13 23:30 - 2017-06-03 06:15 - 00382368 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
    2017-06-13 23:30 - 2017-06-03 06:10 - 00130464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tm.sys
    2017-06-13 23:30 - 2017-06-03 06:09 - 01003624 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase.dll
    2017-06-13 23:30 - 2017-06-03 06:07 - 00119712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tdx.sys
    2017-06-13 23:30 - 2017-06-03 06:00 - 00321376 _____ (Microsoft Corporation) C:\WINDOWS\system32\capauthz.dll
    2017-06-13 23:30 - 2017-06-03 06:00 - 00219040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tpm.sys
    2017-06-13 23:30 - 2017-06-03 05:59 - 01409048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
    2017-06-13 23:30 - 2017-06-03 05:59 - 00311200 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
    2017-06-13 23:30 - 2017-06-03 05:59 - 00259400 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotifyIcon.exe
    2017-06-13 23:30 - 2017-06-03 05:58 - 00660384 _____ (Microsoft Corporation) C:\WINDOWS\system32\comctl32.dll
    2017-06-13 23:30 - 2017-06-03 05:26 - 00266640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\capauthz.dll
    2017-06-13 23:30 - 2017-06-03 05:23 - 00573856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comctl32.dll
    2017-06-13 23:30 - 2017-06-03 05:14 - 00099328 _____ (Microsoft Corporation) C:\WINDOWS\system32\utcutil.dll
    2017-06-13 23:30 - 2017-06-03 05:14 - 00047104 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
    2017-06-13 23:30 - 2017-06-03 05:12 - 00119296 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataTimeUtil.dll
    2017-06-13 23:30 - 2017-06-03 05:11 - 00128000 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
    2017-06-13 23:30 - 2017-06-03 05:11 - 00052736 _____ (Microsoft Corporation) C:\WINDOWS\system32\musdialoghandlers.dll
    2017-06-13 23:30 - 2017-06-03 05:11 - 00038912 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
    2017-06-13 23:30 - 2017-06-03 05:11 - 00035840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BasicRender.sys
    2017-06-13 23:30 - 2017-06-03 05:11 - 00002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzres.dll
    2017-06-13 23:30 - 2017-06-03 05:10 - 00102400 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe
    2017-06-13 23:30 - 2017-06-03 05:10 - 00076800 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCredentialDeployment.exe
    2017-06-13 23:30 - 2017-06-03 05:09 - 00271872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Identity.Provider.dll
    2017-06-13 23:30 - 2017-06-03 05:09 - 00221184 _____ (Microsoft Corporation) C:\WINDOWS\system32\devicengccredprov.dll
    2017-06-13 23:30 - 2017-06-03 05:09 - 00094720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataTimeUtil.dll
    2017-06-13 23:30 - 2017-06-03 05:07 - 00778240 _____ C:\WINDOWS\system32\MBR2GPT.EXE
    2017-06-13 23:30 - 2017-06-03 05:07 - 00197120 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdboot.exe
    2017-06-13 23:30 - 2017-06-03 05:07 - 00002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tzres.dll
    2017-06-13 23:30 - 2017-06-03 05:06 - 00551936 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmCoreProvisioning.dll
    2017-06-13 23:30 - 2017-06-03 05:05 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Identity.Provider.dll
    2017-06-13 23:30 - 2017-06-03 05:05 - 00169984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\devicengccredprov.dll
    2017-06-13 23:30 - 2017-06-03 05:04 - 00805888 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
    2017-06-13 23:30 - 2017-06-03 05:03 - 00467456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TpmCoreProvisioning.dll
    2017-06-13 23:30 - 2017-06-03 05:01 - 06726656 _____ (Microsoft Corporation) C:\WINDOWS\system32\mspaint.exe
    2017-06-13 23:30 - 2017-06-03 05:00 - 00933376 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
    2017-06-13 23:30 - 2017-06-03 05:00 - 00358400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll
    2017-06-13 23:30 - 2017-06-03 04:59 - 02625024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
    2017-06-13 23:30 - 2017-06-03 04:59 - 00975360 _____ (Microsoft Corporation) C:\WINDOWS\HelpPane.exe
    2017-06-13 23:30 - 2017-06-03 04:58 - 02516480 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
    2017-06-13 23:30 - 2017-06-03 04:58 - 01046016 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcsvc.dll
    2017-06-13 23:30 - 2017-06-03 04:58 - 00827392 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32spl.dll
    2017-06-13 23:30 - 2017-06-03 04:57 - 06535168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mspaint.exe
    2017-06-13 23:30 - 2017-06-03 04:57 - 00797184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
    2017-06-13 23:30 - 2017-06-03 04:54 - 02341376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll
    2017-06-13 23:30 - 2017-06-03 04:51 - 00064512 _____ (Microsoft Corporation) C:\WINDOWS\bfsvc.exe
    2017-06-13 23:30 - 2017-05-20 05:13 - 01333136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
    2017-06-13 23:30 - 2017-05-20 04:55 - 00606960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
    2017-06-13 23:30 - 2017-05-20 04:47 - 01474800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll
    2017-06-13 23:30 - 2017-05-20 04:46 - 01266544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll
    2017-06-13 23:30 - 2017-05-20 04:44 - 00519680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
    2017-06-13 23:30 - 2017-05-20 04:43 - 04672848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
    2017-06-13 23:30 - 2017-05-20 04:43 - 02424016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
    2017-06-13 23:30 - 2017-05-20 04:43 - 01455592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll
    2017-06-13 23:30 - 2017-05-20 04:29 - 00584192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIRibbonRes.dll
    2017-06-13 23:30 - 2017-05-20 04:27 - 00141824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\smartscreenps.dll
    2017-06-13 23:30 - 2017-05-20 04:26 - 00059904 _____ C:\WINDOWS\SysWOW64\xboxgipsynthetic.dll
    2017-06-13 23:30 - 2017-05-20 04:26 - 00025088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\odbcconf.dll
    2017-06-13 23:30 - 2017-05-20 04:25 - 00826368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NPSMDesktopProvider.dll
    2017-06-13 23:30 - 2017-05-20 04:25 - 00174080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Web.Diagnostics.dll
    2017-06-13 23:30 - 2017-05-20 04:22 - 01292288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVPXENC.dll
    2017-06-13 23:30 - 2017-05-20 04:22 - 00754176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MessagingDataModel2.dll
    2017-06-13 23:30 - 2017-05-20 04:22 - 00394240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DictationManager.dll
    2017-06-13 23:30 - 2017-05-20 04:21 - 01984000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DeviceFlows.DataModel.dll
    2017-06-13 23:30 - 2017-05-20 04:21 - 00476672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneDriveSettingSyncProvider.dll
    2017-06-13 23:30 - 2017-05-20 04:21 - 00444928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.System.Launcher.dll
    2017-06-13 23:30 - 2017-05-20 04:20 - 00807424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StoreAgent.dll
    2017-06-13 23:30 - 2017-05-20 04:17 - 00909312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncCore.dll
    2017-06-13 23:30 - 2017-05-20 04:16 - 00899584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.appcore.dll
    2017-06-13 23:30 - 2017-05-20 04:15 - 02088960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapGeocoder.dll
    2017-06-13 23:30 - 2017-05-20 04:14 - 01035264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ShareHost.dll
    2017-06-13 23:30 - 2017-05-20 04:11 - 01536512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
    2017-06-13 23:30 - 2017-05-20 04:10 - 00332800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Midi.dll
    2017-06-13 23:30 - 2017-05-20 04:10 - 00128000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NPSM.dll
    2017-06-13 23:30 - 2017-05-20 04:08 - 00174080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RstrtMgr.dll
    2017-06-13 23:30 - 2017-05-20 03:08 - 01459728 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
    2017-06-13 23:30 - 2017-05-20 03:08 - 00543648 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe
    2017-06-13 23:30 - 2017-05-20 03:07 - 00287648 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys
    2017-06-13 23:30 - 2017-05-20 03:03 - 00777400 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
    2017-06-13 23:30 - 2017-05-20 02:59 - 00112544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dam.sys
    2017-06-13 23:30 - 2017-05-20 02:58 - 00188824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpsd.sys
    2017-06-13 23:30 - 2017-05-20 02:56 - 00712608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
    2017-06-13 23:30 - 2017-05-20 02:56 - 00370928 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
    2017-06-13 23:30 - 2017-05-20 02:55 - 01911752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
    2017-06-13 23:30 - 2017-05-20 02:55 - 01506712 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
    2017-06-13 23:30 - 2017-05-20 02:55 - 00961952 _____ (Microsoft Corporation) C:\WINDOWS\system32\efscore.dll
    2017-06-13 23:30 - 2017-05-20 02:55 - 00211872 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
    2017-06-13 23:30 - 2017-05-20 02:54 - 00730016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdmp.sys
    2017-06-13 23:30 - 2017-05-20 02:54 - 00546208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys
    2017-06-13 23:30 - 2017-05-20 02:54 - 00144288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storahci.sys
    2017-06-13 23:30 - 2017-05-20 02:53 - 00654976 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
    2017-06-13 23:30 - 2017-05-20 02:53 - 00363424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fastfat.sys
    2017-06-13 23:30 - 2017-05-20 02:52 - 04709528 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
    2017-06-13 23:30 - 2017-05-20 02:52 - 01700408 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
    2017-06-13 23:30 - 2017-05-20 02:51 - 02604256 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
    2017-06-13 23:30 - 2017-05-20 02:48 - 00387928 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpps.dll
    2017-06-13 23:30 - 2017-05-20 02:10 - 00809472 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthSSO.dll
    2017-06-13 23:30 - 2017-05-20 02:10 - 00584192 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbonRes.dll
    2017-06-13 23:30 - 2017-05-20 02:09 - 00209408 _____ (Microsoft Corporation) C:\WINDOWS\system32\smartscreenps.dll
    2017-06-13 23:30 - 2017-05-20 02:08 - 00029696 _____ (Microsoft Corporation) C:\WINDOWS\system32\odbcconf.dll
    2017-06-13 23:30 - 2017-05-20 02:08 - 00013312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rootmdm.sys
    2017-06-13 23:30 - 2017-05-20 02:07 - 00277504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\xboxgip.sys
    2017-06-13 23:30 - 2017-05-20 02:07 - 00133120 _____ (Microsoft Corporation) C:\WINDOWS\system32\XblGameSaveExt.dll
    2017-06-13 23:30 - 2017-05-20 02:07 - 00015872 _____ (Microsoft Corporation) C:\WINDOWS\system32\snmptrap.exe
    2017-06-13 23:30 - 2017-05-20 02:06 - 00232448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.Diagnostics.dll
    2017-06-13 23:30 - 2017-05-20 02:06 - 00192512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.SharedPC.AccountManager.dll
    2017-06-13 23:30 - 2017-05-20 02:03 - 00892416 _____ (Microsoft Corporation) C:\WINDOWS\system32\MessagingDataModel2.dll
    2017-06-13 23:30 - 2017-05-20 02:03 - 00549888 _____ (Microsoft Corporation) C:\WINDOWS\system32\DictationManager.dll
    2017-06-13 23:30 - 2017-05-20 02:03 - 00491520 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Display.dll
    2017-06-13 23:30 - 2017-05-20 02:02 - 00616960 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowManagement.dll
    2017-06-13 23:30 - 2017-05-20 02:01 - 02347520 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceFlows.DataModel.dll
    2017-06-13 23:30 - 2017-05-20 02:01 - 00970240 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpsvc.dll
    2017-06-13 23:30 - 2017-05-20 02:01 - 00586240 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll
    2017-06-13 23:30 - 2017-05-20 02:01 - 00149504 _____ (Microsoft Corporation) C:\WINDOWS\system32\embeddedmodesvc.dll
    2017-06-13 23:30 - 2017-05-20 02:00 - 01078272 _____ (Microsoft Corporation) C:\WINDOWS\system32\StoreAgent.dll
    2017-06-13 23:30 - 2017-05-20 02:00 - 01067008 _____ (Microsoft Corporation) C:\WINDOWS\system32\XboxNetApiSvc.dll
    2017-06-13 23:30 - 2017-05-20 01:59 - 01141760 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll
    2017-06-13 23:30 - 2017-05-20 01:59 - 01028608 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
    2017-06-13 23:30 - 2017-05-20 01:59 - 00972800 _____ (Microsoft Corporation) C:\WINDOWS\system32\sysmain.dll
    2017-06-13 23:30 - 2017-05-20 01:58 - 03135488 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapGeocoder.dll
    2017-06-13 23:30 - 2017-05-20 01:58 - 00909824 _____ (Microsoft Corporation) C:\WINDOWS\system32\ISM.dll
    2017-06-13 23:30 - 2017-05-20 01:56 - 02730496 _____ (Microsoft Corporation) C:\WINDOWS\system32\smartscreen.exe
    2017-06-13 23:30 - 2017-05-20 01:55 - 01102848 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll
    2017-06-13 23:30 - 2017-05-20 01:54 - 01275904 _____ (Microsoft Corporation) C:\WINDOWS\system32\ShareHost.dll
    2017-06-13 23:30 - 2017-05-20 01:52 - 00557568 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnprv.dll
    2017-06-13 23:30 - 2017-05-20 01:52 - 00476160 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
    2017-06-13 23:30 - 2017-05-20 01:51 - 01706496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
    2017-06-13 23:30 - 2017-05-20 01:51 - 00148480 _____ (Microsoft Corporation) C:\WINDOWS\system32\umpo.dll
    2017-06-13 23:30 - 2017-05-20 01:50 - 00439808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Midi.dll
    2017-06-13 23:30 - 2017-05-20 01:50 - 00159744 _____ (Microsoft Corporation) C:\WINDOWS\system32\NPSM.dll
    2017-06-13 23:30 - 2017-05-20 01:48 - 02438656 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngine.dll
    2017-06-13 23:30 - 2017-05-20 01:47 - 00641536 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdbui.dll
    2017-06-13 23:30 - 2017-05-20 01:47 - 00199680 _____ (Microsoft Corporation) C:\WINDOWS\system32\RstrtMgr.dll
    2017-06-13 23:29 - 2017-06-03 05:14 - 00142848 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmredir.dll
    2017-06-13 23:29 - 2017-05-20 02:10 - 00088576 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsrvext.dll
    2017-06-13 23:29 - 2017-05-20 02:10 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksthunk.sys
    2017-06-13 23:29 - 2017-05-20 02:08 - 00086016 _____ C:\WINDOWS\system32\xboxgipsynthetic.dll
    2017-06-13 23:29 - 2017-05-20 02:06 - 00866816 _____ (Microsoft Corporation) C:\WINDOWS\system32\NPSMDesktopProvider.dll
    2017-06-13 23:29 - 2017-05-20 02:02 - 00601088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.System.Launcher.dll
    2017-06-13 23:29 - 2017-05-20 01:58 - 01046016 _____ (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.dll
    2017-06-13 23:29 - 2017-05-20 01:48 - 00061952 _____ (Microsoft Corporation) C:\WINDOWS\system32\vss_ps.dll
    2017-06-13 00:33 - 2017-06-13 00:33 - 00000000 ____D C:\Users\crocq\AppData\Local\Tempzxpsigne3aac80d1b534b5e
    2017-06-13 00:33 - 2017-06-13 00:33 - 00000000 ____D C:\Users\crocq\AppData\Local\Tempzxpsignd962ddceba3c0128
    2017-06-13 00:33 - 2017-06-13 00:33 - 00000000 ____D C:\Users\crocq\AppData\Local\Tempzxpsign80e60b2a5218040d
    2017-06-13 00:08 - 2017-06-13 00:08 - 00000000 ____D C:\Users\crocq\AppData\Local\Tempzxpsignc996670cc819622c
    2017-06-13 00:07 - 2017-06-13 00:07 - 00000000 ____D C:\Users\crocq\AppData\Local\Tempzxpsigna4e583a16c491f36
    2017-06-13 00:07 - 2017-06-13 00:07 - 00000000 ____D C:\Users\crocq\AppData\Local\Tempzxpsign6727ea35e70e15ef
    2017-06-12 23:10 - 2017-06-12 23:10 - 00000000 ____D C:\Users\crocq\Documents\4A Games
    2017-06-12 23:08 - 2017-06-12 23:08 - 00000000 ____D C:\Users\crocq\AppData\Local\4A Games
    2017-06-12 02:02 - 2017-06-12 02:02 - 00000000 ____D C:\Users\crocq\AppData\Local\Tempzxpsign599a01beb25b9198
    2017-06-12 02:01 - 2017-06-12 02:01 - 00000000 ____D C:\Users\crocq\AppData\Local\Tempzxpsign86e08a4329a730f5
    2017-06-12 02:01 - 2017-06-12 02:01 - 00000000 ____D C:\Users\crocq\AppData\Local\Tempzxpsign0bfbf9dfa5fbc17f
    2017-06-12 01:45 - 2017-06-12 01:45 - 00000000 ____D C:\Users\crocq\AppData\Local\Tempzxpsign53ea360a162a1efe
    2017-06-12 01:44 - 2017-06-12 01:44 - 00000000 ____D C:\Users\crocq\AppData\Local\Tempzxpsign700a1fc2f3688a2b
    2017-06-12 01:44 - 2017-06-12 01:44 - 00000000 ____D C:\Users\crocq\AppData\Local\Tempzxpsign1f20719f1a800faa

    ==================== Un mois - Modifiés - fichiers et dossiers ========

    (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

    2017-07-12 19:39 - 2017-01-02 13:35 - 00000000 ____D C:\Program Files\Bitdefender Agent
    2017-07-12 19:34 - 2017-05-06 12:04 - 00000000 ____D C:\Users\crocq
    2017-07-12 19:34 - 2017-05-06 12:03 - 00000000 ____D C:\ProgramData\NVIDIA
    2017-07-12 18:54 - 2017-05-06 12:02 - 00000000 ____D C:\WINDOWS\system32\SleepStudy
    2017-07-12 17:35 - 2017-03-18 07:40 - 00131072 _____ C:\WINDOWS\system32\config\ELAM
    2017-07-12 17:30 - 2017-01-03 19:19 - 00000000 ____D C:\Users\crocq\Desktop\Inspirational
    2017-07-12 16:37 - 2017-05-06 12:12 - 03440556 _____ C:\WINDOWS\system32\PerfStringBackup.INI
    2017-07-12 16:37 - 2017-03-20 01:10 - 01678478 _____ C:\WINDOWS\system32\perfh00C.dat
    2017-07-12 16:37 - 2017-03-20 01:10 - 00404102 _____ C:\WINDOWS\system32\perfc00C.dat
    2017-07-12 16:30 - 2017-05-06 12:08 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
    2017-07-12 16:29 - 2017-03-18 07:40 - 01048576 _____ C:\WINDOWS\system32\config\BBI
    2017-07-12 16:29 - 2017-01-02 13:41 - 00046156 _____ C:\bdlog.txt
    2017-07-12 15:41 - 2017-03-18 17:03 - 00000000 ____D C:\WINDOWS\system32\NDF
    2017-07-12 15:16 - 2017-01-02 03:08 - 00000000 ____D C:\Users\crocq\AppData\Local\VirtualStore
    2017-07-12 14:37 - 2017-03-18 17:03 - 00000000 ___HD C:\Program Files\WindowsApps
    2017-07-12 14:37 - 2017-03-18 17:03 - 00000000 ____D C:\WINDOWS\AppReadiness
    2017-07-12 14:35 - 2017-03-18 17:01 - 00000000 ____D C:\WINDOWS\INF
    2017-07-12 14:35 - 2017-01-02 17:23 - 00000000 ____D C:\Users\crocq\AppData\Local\Adobe
    2017-07-12 14:30 - 2017-05-06 12:04 - 00000000 ____D C:\Users\stbxr
    2017-07-12 14:29 - 2017-05-06 12:02 - 00221944 _____ C:\WINDOWS\system32\FNTCACHE.DAT
    2017-07-12 02:40 - 2017-03-18 17:03 - 00000000 ___SD C:\WINDOWS\SysWOW64\F12
    2017-07-12 02:40 - 2017-03-18 17:03 - 00000000 ___SD C:\WINDOWS\system32\F12
    2017-07-12 02:40 - 2017-03-18 17:03 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
    2017-07-12 02:40 - 2017-03-18 17:03 - 00000000 ___RD C:\Program Files\Windows Defender
    2017-07-12 02:40 - 2017-03-18 17:03 - 00000000 ____D C:\WINDOWS\system32\oobe
    2017-07-12 02:40 - 2017-03-18 17:03 - 00000000 ____D C:\WINDOWS\system32\migwiz
    2017-07-12 02:40 - 2017-03-18 17:03 - 00000000 ____D C:\WINDOWS\system32\appraiser
    2017-07-12 02:40 - 2017-03-18 17:03 - 00000000 ____D C:\WINDOWS\ShellExperiences
    2017-07-12 02:40 - 2017-03-18 17:03 - 00000000 ____D C:\Program Files\Windows Photo Viewer
    2017-07-12 02:40 - 2017-03-18 17:03 - 00000000 ____D C:\Program Files (x86)\Windows Photo Viewer
    2017-07-12 02:40 - 2017-03-18 17:03 - 00000000 ____D C:\Program Files (x86)\Windows Defender
    2017-07-12 02:40 - 2017-03-05 20:21 - 00000000 ___RD C:\Users\stbxr\OneDrive
    2017-07-12 00:42 - 2017-01-03 02:35 - 00757800 _____ C:\WINDOWS\system32\Drivers\EasyAntiCheat.sys
    2017-07-12 00:33 - 2017-01-02 23:20 - 00000000 ____D C:\Users\crocq\AppData\Roaming\vlc
    2017-07-11 23:02 - 2017-01-04 12:52 - 00000000 ____D C:\Program Files (x86)\TeamViewer
    2017-07-11 21:50 - 2017-03-18 16:51 - 00000000 ____D C:\WINDOWS\CbsTemp
    2017-07-11 21:50 - 2017-01-03 12:35 - 00000000 ____D C:\WINDOWS\system32\MRT
    2017-07-11 21:49 - 2017-01-03 12:35 - 135225752 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
    2017-07-11 00:55 - 2017-01-03 00:09 - 00000000 ____D C:\Users\crocq\AppData\Local\Battle.net
    2017-07-10 22:09 - 2017-01-08 02:09 - 00000000 ____D C:\Users\crocq\Documents\My Games
    2017-07-10 00:09 - 2017-01-04 16:18 - 00000000 ____D C:\Users\crocq\AppData\Local\Spotify
    2017-07-10 00:09 - 2017-01-02 13:45 - 00000000 ____D C:\Users\crocq\AppData\Roaming\uTorrent
    2017-07-09 21:06 - 2017-01-04 16:18 - 00000000 ____D C:\Users\crocq\AppData\Roaming\Spotify
    2017-07-09 12:47 - 2017-05-16 15:52 - 00000000 ____D C:\Users\crocq\AppData\Roaming\discord
    2017-07-08 13:46 - 2017-01-02 15:20 - 00000000 ____D C:\Users\crocq\AppData\Local\CrashDumps
    2017-07-08 13:40 - 2017-01-02 12:43 - 00565416 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
    2017-07-08 13:18 - 2017-01-02 03:10 - 00000000 ____D C:\Users\crocq\AppData\Roaming\Skype
    2017-07-02 21:30 - 2017-03-18 17:03 - 00000000 ____D C:\WINDOWS\Registration
    2017-07-02 20:31 - 2017-05-07 19:36 - 00000000 ____D C:\Users\crocq\AppData\Local\Arma 3
    2017-07-02 20:29 - 2017-05-07 11:45 - 00000000 ____D C:\Program Files (x86)\A3Launcher
    2017-07-02 20:22 - 2017-01-03 22:16 - 00000000 ____D C:\Users\crocq\AppData\Roaming\The Witness
    2017-07-01 20:37 - 2017-01-27 13:43 - 00000000 ____D C:\Users\crocq\AppData\Local\NVIDIA Corporation
    2017-06-30 10:47 - 2017-03-18 17:06 - 00835576 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
    2017-06-30 10:47 - 2017-03-18 17:06 - 00177656 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
    2017-06-27 22:23 - 2017-01-02 03:13 - 00002272 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
    2017-06-24 15:22 - 2017-05-21 01:52 - 00000000 ____D C:\Users\crocq\AppData\Local\Arma 3 Launcher
    2017-06-24 11:21 - 2017-05-06 12:08 - 00003290 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task v2
    2017-06-24 11:21 - 2017-03-05 20:21 - 00002409 _____ C:\Users\stbxr\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
    2017-06-23 18:13 - 2017-05-07 19:36 - 00000000 ____D C:\ProgramData\Bohemia Interactive
    2017-06-23 01:58 - 2017-05-06 12:03 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
    2017-06-23 01:58 - 2017-05-06 12:03 - 00000000 ____D C:\Program Files\NVIDIA Corporation
    2017-06-23 01:58 - 2017-05-06 12:03 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
    2017-06-21 19:58 - 2017-05-09 23:42 - 00000000 ____D C:\WINDOWS\Minidump
    2017-06-19 23:38 - 2017-06-11 13:02 - 00000000 ____D C:\Users\crocq\Documents\3D-CoatV45
    2017-06-16 22:49 - 2017-03-18 17:03 - 00000000 ____D C:\WINDOWS\rescache
    2017-06-15 22:33 - 2017-01-02 03:08 - 00000000 __RHD C:\Users\Public\AccountPictures
    2017-06-13 23:52 - 2017-03-18 17:03 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns

    ==================== Fichiers à la racine de certains dossiers =======

    2017-06-11 18:30 - 2017-06-11 18:47 - 0000762 _____ () C:\Users\crocq\AppData\Roaming\Coolorus 2
    2017-04-16 15:11 - 2017-04-16 15:11 - 0000443 _____ () C:\Users\crocq\AppData\Roaming\PureRef.ini
    2017-06-11 13:13 - 2017-06-19 22:46 - 0000025 ____H () C:\Users\crocq\AppData\Roaming\uninst2.log
    2017-06-11 13:13 - 2017-06-19 22:46 - 0000025 ____H () C:\Users\crocq\AppData\Local\uninst3.log
    2017-01-02 13:35 - 2017-01-02 13:35 - 0047712 _____ () C:\ProgramData\agent.1483378510.bdinstall.bin
    2017-06-11 01:46 - 2017-06-11 01:46 - 0030962 _____ () C:\ProgramData\agent.update.1497160009.bdinstall.bin
    2017-01-02 13:40 - 2017-01-02 13:40 - 0389681 _____ () C:\ProgramData\cl.1483378667.bdinstall.bin
    2017-01-02 13:40 - 2017-01-02 13:40 - 0055885 _____ () C:\ProgramData\dm.1483378833.bdinstall.bin
    2017-06-11 01:47 - 2017-06-11 01:47 - 0040615 _____ () C:\ProgramData\dm.update.1497160021.bdinstall.bin
    2017-05-06 12:03 - 2017-05-06 12:03 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
    2017-06-11 13:13 - 2017-06-19 22:46 - 0000025 ____H () C:\ProgramData\temp21.log

    ==================== Bamital & volsnap ======================

    (Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)

    C:\WINDOWS\system32\winlogon.exe => Le fichier est signé numériquement
    C:\WINDOWS\system32\wininit.exe => Le fichier est signé numériquement
    C:\WINDOWS\explorer.exe => Le fichier est signé numériquement
    C:\WINDOWS\SysWOW64\explorer.exe => Le fichier est signé numériquement
    C:\WINDOWS\system32\svchost.exe => Le fichier est signé numériquement
    C:\WINDOWS\SysWOW64\svchost.exe => Le fichier est signé numériquement
    C:\WINDOWS\system32\services.exe => Le fichier est signé numériquement
    C:\WINDOWS\system32\User32.dll => Le fichier est signé numériquement
    C:\WINDOWS\SysWOW64\User32.dll => Le fichier est signé numériquement
    C:\WINDOWS\system32\userinit.exe => Le fichier est signé numériquement
    C:\WINDOWS\SysWOW64\userinit.exe => Le fichier est signé numériquement
    C:\WINDOWS\system32\rpcss.dll => Le fichier est signé numériquement
    C:\WINDOWS\system32\dnsapi.dll => Le fichier est signé numériquement
    C:\WINDOWS\SysWOW64\dnsapi.dll => Le fichier est signé numériquement
    C:\WINDOWS\system32\Drivers\volsnap.sys => Le fichier est signé numériquement

    LastRegBack: 2017-07-11 23:39

    ==================== Fin de FRST.txt ============================

    Thanks a lot for your help.

  4. #4
    Member
    Join Date
    Jul 2017
    Posts
    4
    Points
    0

    Default

    Hi Zep.
    Thanks for your help!

    Here are the logs:

    Addition:

    Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 11-07-2017
    Exécuté par crocq (12-07-2017 19:55:20)
    Exécuté depuis C:\Users\crocq\Downloads
    Windows 10 Home Version 1703 (X64) (2017-05-06 16:11:21)
    Mode d'amorçage: Normal
    ==========================================================


    ==================== Comptes: =============================

    Administrateur (S-1-5-21-1918836148-936291157-4271617375-500 - Administrator - Disabled)
    crocq (S-1-5-21-1918836148-936291157-4271617375-1001 - Administrator - Enabled) => C:\Users\crocq
    DefaultAccount (S-1-5-21-1918836148-936291157-4271617375-503 - Limited - Disabled)
    defaultuser0 (S-1-5-21-1918836148-936291157-4271617375-1000 - Limited - Disabled) => C:\Users\defaultuser0
    Invité (S-1-5-21-1918836148-936291157-4271617375-501 - Limited - Disabled)
    stbxr (S-1-5-21-1918836148-936291157-4271617375-1002 - Limited - Enabled) => C:\Users\stbxr

    ==================== Centre de sécurité ========================

    (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)

    AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
    AV: Malwarebytes (Enabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B}
    AV: Bitdefender Antivirus (Enabled - Up to date) {3FB17364-4FCC-0FA7-6BBF-973897395371}
    AS: Bitdefender Antispyware (Enabled - Up to date) {84D09280-69F6-0029-510F-AC4AECBE19CC}
    AS: Malwarebytes (Disabled - Up to date) {98619B37-4FC4-67F2-1C99-EEF6D47DBD96}
    AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
    FW: Bitdefender Firewall (Enabled) {078AF241-05A3-0EFF-40E0-3E0D69EA140A}

    ==================== Programmes installés ======================

    (Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.)

    Adobe Bridge CC 2017 (HKLM-x32\...\KBRG_7_0) (Version: 7.0 - Adobe Systems Incorporated)
    Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 3.9.1.335 - Adobe Systems Incorporated)
    Adobe Photoshop CC 2015.5 (HKLM-x32\...\PHSP_17_0) (Version: 17.0.0 - Adobe Systems Incorporated)
    AKVIS OilPaint (HKLM\...\{EB956473-E6EC-43D9-A706-0276B7C560AE}) (Version: 5.0.520.13548 - AKVIS)
    Ansel (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Ansel) (Version: 382.53 - NVIDIA Corporation) Hidden
    Application de bureau Autodesk (HKLM-x32\...\Autodesk Desktop App) (Version: 7.0.5.154 - Autodesk)
    Argo (HKLM\...\Steam App 530700) (Version: - Bohemia Interactive)
    ATK Package (HKLM-x32\...\{AB5C933E-5C7D-4D30-B314-9C83A49B94BE}) (Version: 1.0.0050 - ASUS)
    Autodesk 3ds Max 2016 (HKLM\...\{52B37EC7-D836-0410-0464-3C24BCED2010}) (Version: 18.0.873.0 - Autodesk) Hidden
    Autodesk 3ds Max 2016 (HKLM\...\Autodesk 3ds Max 2016) (Version: 18.0.873.0 - Autodesk)
    Autodesk 3ds Max 2016 Populate Data (HKLM\...\{57E92DED-DC7C-41E5-B9E1-76D83BD2EABE}) (Version: 18.0.0.0 - Autodesk)
    Autodesk Advanced Material Library Image Library 2016 (HKLM-x32\...\{94AD53E7-493B-4291-8714-7A3B761D2783}) (Version: 6.3.0.19 - Autodesk)
    Autodesk Backburner 2016 (HKLM-x32\...\{8C5F38D2-9EFE-49A4-B3F5-BF3210FED168}) (Version: 16.0.0.0 - Autodesk)
    Autodesk Civil View for 3ds Max 2016 64-bit (HKLM\...\{1C4FFAF0-6DBB-4F7A-A386-46747D060826}) (Version: 18.0.0.0 - Autodesk)
    Autodesk Fusion 360 (HKU\S-1-5-21-1918836148-936291157-4271617375-1001\...\73e72ada57b7480280f7a6f4a289729f) (Version: 2.0.3133 - Autodesk, Inc.)
    Autodesk Inventor Server Engine for 3ds Max 2016 (HKLM\...\{9167CA34-4E58-49E3-8892-3C439739D2D3}) (Version: 18.0 - Autodesk)
    Autodesk License Service (x64) - 4.1 (HKLM\...\{B827D6B7-7731-43BA-92EC-916C89C88964}) (Version: 4.1.1.0 - Autodesk)
    Autodesk Material Library 2016 (HKLM-x32\...\{29A7D6EC-63C2-42FD-8143-5812ABD2923F}) (Version: 6.3.0.19 - Autodesk)
    Autodesk Material Library Base Resolution Image Library 2016 (HKLM-x32\...\{6B4CFC6E-ECB0-47FE-95D3-65C680ED0687}) (Version: 6.3.0.19 - Autodesk)
    Autodesk Material Library Medium Resolution Image Library 2016 (HKLM-x32\...\{415A5A54-325E-4815-9940-62A889CA3877}) (Version: 6.3.0.19 - Autodesk)
    Autodesk Maya 2017 (HKLM\...\{847DE41D-1C5A-4A52-ADD4-AE708757EDBD}) (Version: 17.0.1720.0 - Autodesk) Hidden
    Autodesk Maya 2017 (HKLM\...\Autodesk Maya 2017) (Version: 17.0.1720.0 - Autodesk)
    Autodesk Revit Interoperability for 3ds Max (HKLM\...\{0BB716E0-1600-0610-0000-097DC2F354DF}) (Version: 16.0.394.0 - Autodesk) Hidden
    Autodesk Revit Interoperability for 3ds Max (HKLM\...\Autodesk Revit Interoperability for 3ds Max ) (Version: 16.0.394.0 - Autodesk)
    Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
    Bitdefender Agent (HKLM\...\Bitdefender Agent) (Version: 21.0.21.970 - Bitdefender)
    Bitdefender Device Management (HKLM\...\Bitdefender Device Management) (Version: 21.0.22.1050 - Bitdefender)
    Bitdefender Total Security 2017 (HKLM\...\Bitdefender) (Version: 21.0.22.1050 - Bitdefender)
    Crusader Kings II (HKLM\...\Steam App 203770) (Version: - Paradox Development Studio)
    Discord (HKU\S-1-5-21-1918836148-936291157-4271617375-1001\...\Discord) (Version: 0.0.297 - Hammer & Chisel, Inc.)
    Dungeon of the Endless (HKLM\...\Steam App 249050) (Version: - AMPLITUDE Studios)
    ELAN Touchpad 11.5.21.6_X64_WHQL (HKLM\...\Elantech) (Version: 11.5.21.6 - ELAN Microelectronic Corp.)
    Europa Universalis IV (HKLM\...\Steam App 236850) (Version: - Paradox Development Studio)
    Foxit Reader (HKLM-x32\...\Foxit Reader_is1) (Version: 8.3.0.14878 - Foxit Software Inc.)
    Google Chrome (HKLM-x32\...\Google Chrome) (Version: 59.0.3071.115 - Google Inc.)
    Google Drive (HKLM-x32\...\{A1238426-ECDF-4639-BE2F-8D12A97AE23C}) (Version: 2.34.5075.1619 - Google, Inc.)
    Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.5 - Google Inc.) Hidden
    Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.6.0.1035 - Intel Corporation)
    Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 14.10.0.1016 - Intel Corporation)
    KeyShot 6 64 bit (HKLM-x32\...\KeyShot 6_64) (Version: 6.2 64 bit - Luxion ApS)
    Lazy Nezumi Pro 17.3.25.1950 (HKLM-x32\...\Lazy Nezumi Pro_is1) (Version: 17.3.25.1950 - Guillaume Stordeur)
    Logiciel pour périphérique à chipset Intel® (HKLM-x32\...\{bb0592a7-5772-4736-9d55-2402740085db}) (Version: 10.1.1.38 - Intel(R) Corporation) Hidden
    Malwarebytes version 3.1.2.1733 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.1.2.1733 - Malwarebytes)
    Megascans Studio version 0.912 (HKLM\...\{696362E1-CAA9-473E-9E0B-688602F65F5E}_is1) (Version: 0.912 - Quixel AB)
    Metro 2033 Redux (HKLM\...\Steam App 286690) (Version: - 4A GAMES)
    Metro: Last Light Redux (HKLM\...\Steam App 287390) (Version: - 4A Games)
    Microsoft Chart Controls for Microsoft .NET Framework 3.5 (HKLM-x32\...\{41785C66-90F2-40CE-8CB5-1C94BFC97280}) (Version: 3.5.0.0 - Microsoft Corporation)
    Microsoft OneDrive (HKU\S-1-5-21-1918836148-936291157-4271617375-1001\...\OneDriveSetup.exe) (Version: 17.3.6816.0313 - Microsoft Corporation)
    Microsoft OneDrive (HKU\S-1-5-21-1918836148-936291157-4271617375-1002\...\OneDriveSetup.exe) (Version: 17.3.6917.0607 - Microsoft Corporation)
    Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
    Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
    Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
    Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
    Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (HKLM\...\{350AA351-21FA-3270-8B7A-835434E766AD}) (Version: 9.0.21022 - Microsoft Corporation)
    Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
    Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
    Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
    Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
    Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
    Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
    Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
    Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
    Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
    Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
    Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
    Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
    Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
    Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24215 (HKLM-x32\...\{d992c12e-cab2-426f-bde3-fb8c53950b0d}) (Version: 14.0.24215.1 - Microsoft Corporation)
    Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
    Mises à jour NVIDIA 25.0.0.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 25.0.0.0 - NVIDIA Corporation) Hidden
    Mount & Blade: Warband (HKLM\...\Steam App 48700) (Version: - TaleWorlds Entertainment)
    MtoA for Maya 2017 (HKU\S-1-5-21-1918836148-936291157-4271617375-1001\...\MtoA2017) (Version: 1.3.0.0 - Solid Angle)
    NVIDIA GeForce Experience 3.6.0.74 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.6.0.74 - NVIDIA Corporation)
    NVIDIA Logiciel système PhysX 9.17.0329 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.17.0329 - NVIDIA Corporation)
    NVIDIA Pilote 3D Vision 382.53 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 382.53 - NVIDIA Corporation)
    NVIDIA Pilote audio HD : 1.3.34.27 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.27 - NVIDIA Corporation)
    NVIDIA Pilote graphique 382.53 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 382.53 - NVIDIA Corporation)
    NvNodejs (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvNodejs) (Version: 3.6.0.74 - NVIDIA Corporation) Hidden
    NvTelemetry (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvTelemetry) (Version: 2.4.10.0 - NVIDIA Corporation) Hidden
    NvvHci (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvvHci) (Version: 2.02.0.5 - NVIDIA Corporation) Hidden
    OpenAL (HKLM-x32\...\OpenAL) (Version: - )
    Origin (HKLM-x32\...\Origin) (Version: 10.4.13.6637 - Electronic Arts, Inc.)
    Overwatch (HKLM-x32\...\Overwatch) (Version: - Blizzard Entertainment)
    Panneau de configuration NVIDIA 382.53 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 382.53 - NVIDIA Corporation) Hidden
    PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.992 - Even Balance, Inc.)
    PureRef (HKLM-x32\...\PureRef) (Version: 1.8.0 - Idyllic Pixel)
    Razer Comms (HKLM-x32\...\Razer Comms) (Version: 5.12 - Razer Inc.)
    Razer Synapse (HKLM-x32\...\{0D78BEE2-F8FF-4498-AF1A-3FF81CED8AC6}) (Version: 2.20.15.1104 - Razer Inc.)
    Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.12.1007.2016 - Realtek)
    Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7701 - Realtek Semiconductor Corp.)
    Redshift (HKLM\...\Redshift) (Version: 2.0.86 - Redshift Rendering Technologies, Inc.)
    Revo Uninstaller Pro 3.1.9 (HKLM\...\{67579783-0FB7-4F7B-B881-E5BE47C9DBE0}_is1) (Version: 3.1.9 - VS Revo Group, Ltd.)
    Rising Storm 2: Vietnam (HKLM\...\Steam App 418460) (Version: - Antimatter Games)
    Rising Storm/Red Orchestra 2 Multiplayer (HKLM\...\Steam App 35450) (Version: - Tripwire Interactive)
    SHIELD Streaming (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.NvStreamSrv) (Version: 7.1.0370 - NVIDIA Corporation) Hidden
    SHIELD Wireless Controller Driver (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_ShieldWirelessController) (Version: 3.6.0.74 - NVIDIA Corporation) Hidden
    Sid Meier's Civilization V (HKLM\...\Steam App 8930) (Version: - Firaxis Games)
    Skype™ 7.35 (HKLM-x32\...\{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}) (Version: 7.35.101 - Skype Technologies S.A.)
    Spotify (HKU\S-1-5-21-1918836148-936291157-4271617375-1001\...\Spotify) (Version: 1.0.57.474.gca9c9538 - Spotify AB)
    Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
    Steel Division: Normandy 44 (HKLM\...\Steam App 572410) (Version: - Eugen Systems)
    SUPERAntiSpyware (HKLM\...\{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}) (Version: 6.0.1244 - SUPERAntiSpyware.com)
    Tablette Wacom (HKLM\...\Wacom Tablet Driver) (Version: 6.3.19-3 - Wacom Technology Corp.)
    TAP-Windows 9.21.2 (HKLM\...\TAP-Windows) (Version: 9.21.2 - )
    TeamViewer 12 (HKLM-x32\...\TeamViewer) (Version: 12.0.72365 - TeamViewer)
    The Long Dark (HKLM\...\Steam App 305620) (Version: - Hinterland Studio Inc.)
    The Witness (HKLM\...\Steam App 210970) (Version: - Thekla, Inc.)
    Total War: ROME II - Emperor Edition (HKLM\...\Steam App 214950) (Version: - Creative Assembly)
    Visual Studio 2010 SP1 Runtime x64 (HKLM\...\{F6305232-7952-4CCE-BDCD-9B2E66591C4A}) (Version: 1.0.0 - Microsoft Corporation)
    Visual Studio 2010 SP1 Runtime x86 (HKLM-x32\...\{AEA163A5-BA2F-4E63-9529-DE8606AC82A4}) (Version: 1.0.0 - Microsoft Corporation)
    VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.4 - VideoLAN)
    VPNetwork LLC - TorGuard - Online Privacy Protection Services (HKLM-x32\...\VPNetwork LLC TorGuard) (Version: "0.3.69" - "VPNetwork LLC")
    V-Ray for 3dsmax 2016 for x64 (HKLM\...\V-Ray for 3dsmax 2016 for x64) (Version: 3.40.01 - Chaos Software Ltd)
    Vulkan Run Time Libraries 1.0.42.1 (HKLM\...\VulkanRT1.0.42.1) (Version: 1.0.42.1 - LunarG, Inc.)
    Wargame: Red Dragon (HKLM\...\Steam App 251060) (Version: - Eugen Systems)
    WD Backup (HKLM-x32\...\{4AACAFC7-951A-4215-B430-3DFCFF2E6CED}) (Version: 1.5.5953.19614 - Western Digital Technologies, Inc) Hidden
    WD Backup (HKLM-x32\...\{a8c9535a-ecd9-4172-a330-0cb5ff9dbed9}) (Version: 1.5.5953.19614 - Western Digital Technologies, Inc.)
    WD Drive Utilities (HKLM-x32\...\{48996CDD-DD81-4197-93FE-0971E73C5CA7}) (Version: 1.3.2.2 - Western Digital Technologies, Inc.) Hidden
    WD Drive Utilities (HKLM-x32\...\{eab1fb93-61fb-48de-b815-b4e9b68d2ef1}) (Version: 1.3.2.2 - Western Digital Technologies, Inc.)
    WD Quick View (HKLM-x32\...\{EDBCC917-ADE2-4470-83F1-D0A233D9495C}) (Version: 2.4.10.17 - Western Digital Technologies, Inc.)
    WD Security (HKLM-x32\...\{249644e6-451a-4a5c-bd5c-21eeb9eec79d}) (Version: 1.3.1.2 - Western Digital Technologies, Inc.)
    WD Security (HKLM-x32\...\{7CC2EDF2-83EC-4707-BDD3-72469236A6CC}) (Version: 1.3.1.2 - Western Digital Technologies, Inc.) Hidden
    WebTablet FB Plugin 32 bit (HKLM-x32\...\Wacom WebTabletPlugin for Internet Explorer and Netscape) (Version: 2.1.0.7 - Wacom Technology Corp.)
    WebTablet FB Plugin 64 bit (HKLM\...\Wacom WebTabletPlugin for Internet Explorer and Netscape) (Version: 2.1.0.7 - Wacom Technology Corp.)
    WibuKey Setup (WibuKey Remove) (HKLM\...\{00060000-0000-1004-8002-0000C06B5161}) (Version: Version 6.32 of 2015-Jul-21 (Build 1504) (Setup) - WIBU-SYSTEMS AG)
    Windows 10 Update and Privacy Settings (HKLM\...\{293F2009-0145-450B-B4AA-063D43FB368C}) (Version: 1.0.13.0 - Microsoft Corporation)
    WinRAR 5.40 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.40.0 - win.rar GmbH)
    World Machine 2 Professional Edition (HKLM-x32\...\World Machine2Pro) (Version: - )
    XCOM 2 (HKLM\...\Steam App 268500) (Version: - Firaxis)
    ZBrush 4R7 (HKLM-x32\...\ZBrush 4R7 4R7) (Version: 4R7 - Pixologic)

    ==================== Personnalisé CLSID (Avec liste blanche): ==========================

    (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

    CustomCLSID: HKU\S-1-5-21-1918836148-936291157-4271617375-1001_Classes\CLSID\{073CB204-6B29-46FC-AB98-451F1D068741}\InprocServer32 -> C:\Program Files\Autodesk\3ds Max 2016\Inventor Server\Bin\TestServer.dll => Pas de fichier
    CustomCLSID: HKU\S-1-5-21-1918836148-936291157-4271617375-1001_Classes\CLSID\{0E270DAA-1BE6-48F2-AC49-B0E469795F52}\InprocServer32 -> %%systemroot%%\system32\shell32.dll => Pas de fichier
    CustomCLSID: HKU\S-1-5-21-1918836148-936291157-4271617375-1001_Classes\CLSID\{8C23B656-4E6E-4B45-9920-9617168D39A3}\InprocServer32 -> C:\Program Files\Autodesk\3ds Max 2016\Inventor Server\Bin\TestServer.dll => Pas de fichier
    CustomCLSID: HKU\S-1-5-21-1918836148-936291157-4271617375-1001_Classes\CLSID\{C4F0910E-E0B4-4E68-8086-452730C7A26A}\InprocServer32 -> C:\Users\crocq\AppData\Local\Autodesk\webdeploy\production\0c6c8be812b2dce050a3457de4077e03313640ae\NPreview10.dll ()
    CustomCLSID: HKU\S-1-5-21-1918836148-936291157-4271617375-1001_Classes\CLSID\{E5B0515D-48D2-4F04-906D-0192ED65A2DD}\InprocServer32 -> C:\Program Files\Autodesk\3ds Max 2016\Inventor Server\Bin\TestServer.dll => Pas de fichier
    CustomCLSID: HKU\S-1-5-21-1918836148-936291157-4271617375-1001_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Systems)
    ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2017-03-21] (Google)
    ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2017-03-21] (Google)
    ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2017-03-21] (Google)
    ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-10-25] ()
    ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-10-25] ()
    ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-10-25] ()
    ContextMenuHandlers01: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-10-25] ()
    ContextMenuHandlers01: [BDFVCtxMenuExt] -> {9E96C1F5-0EFA-4348-9460-15D6802C70AA} => C:\Program Files\Bitdefender\Bitdefender 2017\bdfvsctx.dll [2017-04-24] (Bitdefender)
    ContextMenuHandlers01: [Foxit_ConvertToPDF_Reader] -> {A94757A0-0226-426F-B4F1-4DF381C630D3} => C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\ConvertToPDFShellExtension_x64.dll [2017-03-31] (Foxit Software Inc.)
    ContextMenuHandlers01: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files (x86)\Google\Drive\contextmenu64.dll [2017-03-21] (Google)
    ContextMenuHandlers01: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2016-08-15] (Alexander Roshal)
    ContextMenuHandlers01: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => -> Pas de fichier
    ContextMenuHandlers03: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2017-05-09] (Malwarebytes)
    ContextMenuHandlers04: [BDFVCtxMenuExt] -> {9E96C1F5-0EFA-4348-9460-15D6802C70AA} => C:\Program Files\Bitdefender\Bitdefender 2017\bdfvsctx.dll [2017-04-24] (Bitdefender)
    ContextMenuHandlers04: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files (x86)\Google\Drive\contextmenu64.dll [2017-03-21] (Google)
    ContextMenuHandlers05: [BDFVCtxMenuExt] -> {9E96C1F5-0EFA-4348-9460-15D6802C70AA} => C:\Program Files\Bitdefender\Bitdefender 2017\bdfvsctx.dll [2017-04-24] (Bitdefender)
    ContextMenuHandlers05: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2017-06-07] (NVIDIA Corporation)
    ContextMenuHandlers06: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-10-25] ()
    ContextMenuHandlers06: [BDFVCtxMenuExt] -> {9E96C1F5-0EFA-4348-9460-15D6802C70AA} => C:\Program Files\Bitdefender\Bitdefender 2017\bdfvsctx.dll [2017-04-24] (Bitdefender)
    ContextMenuHandlers06: [Foxit_ConvertToPDF_Reader] -> {A94757A0-0226-426F-B4F1-4DF381C630D3} => C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\ConvertToPDFShellExtension_x64.dll [2017-03-31] (Foxit Software Inc.)
    ContextMenuHandlers06: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2017-05-09] (Malwarebytes)
    ContextMenuHandlers06: [RUShellExt] -> {2C5515DC-2A7E-4BFD-B813-CACC2B685EB7} => C:\Program Files\VS Revo Group\Revo Uninstaller Pro\RUExt.dll [2016-12-15] (VS Revo Group)
    ContextMenuHandlers06: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2016-08-15] (Alexander Roshal)
    ContextMenuHandlers06: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => -> Pas de fichier

    ==================== Tâches planifiées (Avec liste blanche) =============

    (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

    Task: {00F0E6F8-20EE-4E40-B1FA-882027B2AA7E} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-06-07] (NVIDIA Corporation)
    Task: {09EF9741-510D-44B7-BBD2-ADDA3F2834A5} - System32\Tasks\RtHDVBg => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2015-12-25] (Realtek Semiconductor)
    Task: {1C226EB3-DB96-49B5-9726-4CED18A7543B} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-06-07] (NVIDIA Corporation)
    Task: {39D4560A-3FFA-4BD8-B45E-C00FA1C914D7} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-01-02] (Google Inc.)
    Task: {4B0FD656-BBD8-48C8-A17A-C21388B272D9} - System32\Tasks\Bitdefender AgentTask_AD394AE64E874073B10A89FEEC305A3C => C:\Program Files\Bitdefender\Bitdefender 2017\bdagent.exe [2017-04-24] (Bitdefender)
    Task: {5732A3EE-C29D-42A7-A5E2-3FD9D5CA0FF7} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2017-06-07] (NVIDIA Corporation)
    Task: {758B184D-0709-4007-B0EF-BB262384F7A3} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2017-06-07] (NVIDIA Corporation)
    Task: {785DEF1D-72B0-4A07-ACC5-4636D8F32AE2} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [2015-12-25] (Realtek Semiconductor)
    Task: {82C8F692-E512-4489-95D5-01990DF812A0} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [2017-06-07] (NVIDIA Corporation)
    Task: {945FBA82-E5A7-4212-83BD-A305C62685E0} - System32\Tasks\AdobeAAMUpdater-1.0-MicrosoftAccount-crocq.clem@hotmail.fr => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2016-07-01] (Adobe Systems Incorporated)
    Task: {AB666504-471B-4944-A309-A60B0DE16255} - System32\Tasks\RtHDVBg_ListenToDevice => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2015-12-25] (Realtek Semiconductor)
    Task: {B4C71B8C-3E1C-4957-BBB3-79D3520C1A62} - System32\Tasks\Bitdefender Agent WatchDog_65D6944A0EF74FDAB96E31112AD39864 => C:\Program Files\Bitdefender Agent\WatchDog.exe [2017-04-11] (Bitdefender)
    Task: {C2A7A05C-6640-4C36-8B20-294F8D096889} - System32\Tasks\SUPERAntiSpyware Scheduled Task a22b9c13-1843-4b2a-b488-94d0b1269191 => C:\Program Files\SUPERAntiSpyware\SASTask.exe [2013-11-07] (SUPERAdBlocker.com)
    Task: {CA26DD4B-80C2-459B-ACDF-F49DCB92F384} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-06-07] (NVIDIA Corporation)
    Task: {CDDA09B2-F551-4490-B496-F6549400A287} - System32\Tasks\Intel PTT EK Recertification => C:\Program Files\Intel\iCLS Client\IntelPTTEKRecertification.exe [2016-07-26] (Intel(R) Corporation)
    Task: {D016B585-1617-4E1E-B5F2-23FD5D2E8139} - System32\Tasks\SUPERAntiSpyware Scheduled Task 3add6fb9-5df4-4107-a590-985d616f8f9e => C:\Program Files\SUPERAntiSpyware\SASTask.exe [2013-11-07] (SUPERAdBlocker.com)
    Task: {DC29FA90-EF2A-4D8D-8F5B-6A012AC170E2} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-01-02] (Google Inc.)
    Task: {EB9A53CC-A8C6-4946-9226-B9226014152E} - System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-06-07] (NVIDIA Corporation)
    Task: {ED00C7C8-587E-4764-A990-12AC3195D149} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [2017-06-07] (NVIDIA Corporation)
    Task: {ED3378D8-84BE-4525-B239-82FC970277B0} - System32\Tasks\ATK Package A22126881260 => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe [2015-09-22] (ASUSTek Computer Inc.)
    Task: {EE43317B-DBB4-4BE2-8C63-B6B91B43DEB3} - System32\Tasks\ATK Package 36D18D69AFC3 => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe [2015-09-22] (ASUSTek Computer Inc.)

    (Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)

    Task: C:\WINDOWS\Tasks\SUPERAntiSpyware Scheduled Task 3add6fb9-5df4-4107-a590-985d616f8f9e.job => C:\Program Files\SUPERAntiSpyware\SASTask.exe C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
    Task: C:\WINDOWS\Tasks\SUPERAntiSpyware Scheduled Task a22b9c13-1843-4b2a-b488-94d0b1269191.job => C:\Program Files\SUPERAntiSpyware\SASTask.exe C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe

    ==================== Raccourcis & WMI ========================

    (Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.)


    Shortcut: C:\Users\crocq\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\KeyShot 6 64\Documentation\KeyShot Manual.lnk -> hxxp://keyshot.com/manual/keyshot6/KeyShot_6_Manual.pd
    Shortcut: C:\Users\crocq\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\3d-Coat-V4.5\Online_Documentation.lnk -> hxxp://3d-coat.com/manual

    ==================== Modules chargés (Avec liste blanche) ==============

    2017-04-24 21:25 - 2017-04-24 21:25 - 00111832 _____ () C:\Program Files\Bitdefender\Bitdefender 2017\bdmetrics.dll
    2017-02-08 00:07 - 2017-02-08 00:07 - 01008448 _____ () C:\Program Files\Bitdefender\Bitdefender 2017\otengines_02451_002\ashttpbr.mdl
    2017-02-08 00:07 - 2017-02-08 00:07 - 00541952 _____ () C:\Program Files\Bitdefender\Bitdefender 2017\otengines_02451_002\ashttpdsp.mdl
    2017-02-08 00:07 - 2017-02-08 00:07 - 03243920 _____ () C:\Program Files\Bitdefender\Bitdefender 2017\otengines_02451_002\ashttpph.mdl
    2017-02-08 00:07 - 2017-02-08 00:07 - 01544568 _____ () C:\Program Files\Bitdefender\Bitdefender 2017\otengines_02451_002\ashttprbl.mdl
    2017-05-27 13:23 - 2017-05-27 13:26 - 00076888 _____ () C:\WINDOWS\SysWOW64\PnkBstrA.exe
    2016-09-24 19:20 - 2016-09-24 19:21 - 00189264 _____ () C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
    2017-07-12 16:32 - 2017-07-12 16:35 - 02270664 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\MwacLib.dll
    2016-10-25 10:57 - 2016-10-25 10:57 - 00491184 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll
    2017-03-18 16:58 - 2017-03-18 16:58 - 00138000 _____ () C:\WINDOWS\SYSTEM32\inputhost.dll
    2017-01-03 15:13 - 2016-12-09 22:09 - 01658320 _____ () C:\Program Files\Tablet\Wacom\libxml2.dll
    2017-03-18 16:59 - 2017-03-20 01:11 - 01731072 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
    2017-06-27 22:23 - 2017-06-22 23:21 - 03807064 _____ () C:\Program Files (x86)\Google\Chrome\Application\59.0.3071.115\libglesv2.dll
    2017-06-27 22:23 - 2017-06-22 23:21 - 00100184 _____ () C:\Program Files (x86)\Google\Chrome\Application\59.0.3071.115\libegl.dll
    2017-05-29 19:46 - 2017-05-29 19:46 - 00023328 _____ () C:\Program Files\Bitdefender\Bitdefender 2017\lang\en-US\bdsystray.txtui
    2017-06-03 15:55 - 2017-03-10 06:48 - 00061944 _____ () C:\Program Files (x86)\Autodesk\Autodesk Desktop App\QtSolutions_Service-head.dll
    2017-06-03 15:55 - 2017-03-10 06:48 - 00110584 _____ () C:\Program Files (x86)\Autodesk\Autodesk Desktop App\qjson0.dll
    2017-07-03 22:59 - 2017-04-05 10:09 - 02493440 _____ () D:\Origin\libGLESv2.dll
    2016-10-05 22:17 - 2016-10-05 22:17 - 01243936 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll
    2017-07-03 22:59 - 2017-04-05 10:09 - 00012288 _____ () D:\Origin\libEGL.DLL
    2017-05-16 15:52 - 2017-01-04 15:28 - 01958912 _____ () C:\Users\crocq\AppData\Local\Discord\app-0.0.297\ffmpeg.dll
    2017-05-16 15:52 - 2017-05-16 15:52 - 01082880 _____ () \\?\C:\Users\crocq\AppData\Roaming\discord\0.0.297\modules\discord_voice\discord_voice.node
    2017-05-16 15:52 - 2017-05-16 15:52 - 03750400 _____ () \\?\C:\Users\crocq\AppData\Roaming\discord\0.0.297\modules\discord_voice\libdiscord.dll
    2017-05-16 15:52 - 2017-05-16 15:52 - 00914432 _____ () \\?\C:\Users\crocq\AppData\Roaming\discord\0.0.297\modules\discord_utils\discord_utils.node
    2017-05-16 15:52 - 2017-05-16 15:52 - 01127424 _____ () \\?\C:\Users\crocq\AppData\Roaming\discord\0.0.297\modules\discord_toaster\discord_toaster.node
    2017-05-16 15:52 - 2017-01-04 15:28 - 02278912 _____ () C:\Users\crocq\AppData\Local\Discord\app-0.0.297\libglesv2.dll
    2017-05-16 15:52 - 2017-01-04 15:28 - 00096768 _____ () C:\Users\crocq\AppData\Local\Discord\app-0.0.297\libegl.dll
    2017-07-12 19:52 - 2017-07-12 19:52 - 00148992 _____ () \\?\C:\Users\crocq\AppData\Local\Temp\5E39.tmp.node
    2017-05-16 15:52 - 2017-05-16 15:52 - 02658296 _____ () \\?\C:\Users\crocq\AppData\Roaming\discord\0.0.297\modules\discord_rpc\discord_rpc.node
    2017-05-22 13:54 - 2017-05-22 13:54 - 02665976 _____ () \\?\C:\Users\crocq\AppData\Roaming\discord\0.0.297\modules\discord_contact_import\discord_contact_import.node

    ==================== Alternate Data Streams (Avec liste blanche) =========

    (Si un élément est inclus dans le fichier fixlist.txt, seul le flux de données additionnel (ADS - Alternate Data Stream) sera supprimé.)

    AlternateDataStreams: C:\ProgramData\TEMP:94D97A40 [140]
    AlternateDataStreams: C:\Users\crocq\Desktop\DS4Windows.exe:BDU [0]
    AlternateDataStreams: C:\Users\crocq\Downloads\adwcleaner_6.047.exe:BDU [0]
    AlternateDataStreams: C:\Users\crocq\Downloads\FRST64.exe:BDU [0]
    AlternateDataStreams: C:\Users\crocq\Downloads\HijackThis.exe:BDU [0]
    AlternateDataStreams: C:\Users\crocq\Downloads\mb3-setup-35891.35891-3.1.2.1733-1.0.139-1.0.2060.exe:BDU [0]
    AlternateDataStreams: C:\Users\crocq\Downloads\SUPERAntiSpyware.exe:BDU [0]

    ==================== Mode sans échec (Avec liste blanche) ===================

    (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.)

    HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
    HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

    ==================== Association (Avec liste blanche) ===============

    (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé.)


    ==================== Internet Explorer sites de confiance/sensibles ===============

    (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre.)


    ==================== Hosts contenu: ==========================

    (Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.)

    2017-01-04 18:44 - 2017-07-12 19:30 - 00001027 _____ C:\WINDOWS\system32\Drivers\etc\hosts

    127.0.0.1 lmlicenses.wip4.adobe.com
    127.0.0.1 lm.licenses.adobe.com
    127.0.0.1 na1r.services.adobe.com
    127.0.0.1 hlrcv.stage.adobe.com
    127.0.0.1 practivate.adobe.com
    127.0.0.1 activate.adobe.com

    ==================== Autres zones ============================

    (Actuellement, il n'y a pas de correction automatique pour cette section.)

    HKU\S-1-5-21-1918836148-936291157-4271617375-1000\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Windows\img0.jpg
    HKU\S-1-5-21-1918836148-936291157-4271617375-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\crocq\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\{5e75c733-1792-4fd2-8f70-d3e347bfd37d}.jpeg
    HKU\S-1-5-21-1918836148-936291157-4271617375-1002\Control Panel\Desktop\\Wallpaper -> C:\WINDOWS\web\wallpaper\Windows\img0.jpg
    DNS Servers: 192.168.0.1 - 23.233.128.16
    HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
    HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
    Le Pare-feu est activé.

    ==================== MSCONFIG/TASK MANAGER éléments désactivés ==

    HKLM\...\StartupApproved\StartupFolder: => "Serveur réseau.lnk"
    HKLM\...\StartupApproved\Run: => "AdobeAAMUpdater-1.0"
    HKLM\...\StartupApproved\Run: => "IAStorIcon"
    HKLM\...\StartupApproved\Run32: => "Adobe Creative Cloud"
    HKLM\...\StartupApproved\Run32: => "ADSKAppManager"
    HKLM\...\StartupApproved\Run32: => "Razer Synapse"
    HKLM\...\StartupApproved\Run32: => "Autodesk Desktop App"
    HKU\S-1-5-21-1918836148-936291157-4271617375-1001\...\StartupApproved\Run: => "OneDrive"
    HKU\S-1-5-21-1918836148-936291157-4271617375-1001\...\StartupApproved\Run: => "GoogleChromeAutoLaunch_D4597A70D3FBAEDD67D809FFC94E88D8"
    HKU\S-1-5-21-1918836148-936291157-4271617375-1001\...\StartupApproved\Run: => "Razer Comms"
    HKU\S-1-5-21-1918836148-936291157-4271617375-1001\...\StartupApproved\Run: => "Discord"
    HKU\S-1-5-21-1918836148-936291157-4271617375-1001\...\StartupApproved\Run: => "GoogleDriveSync"

    ==================== RèglesPare-feu (Avec liste blanche) ===============

    (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

    FirewallRules: [{4695174D-0B69-4001-96DE-3407AC851F8E}] => (Allow) D:\Steam\steamapps\common\Red Orchestra 2\Binaries\Win32\ROGame.exe
    FirewallRules: [{74394137-C91D-4917-96D3-69E7342453A6}] => (Allow) D:\Steam\steamapps\common\Red Orchestra 2\Binaries\Win32\ROGame.exe
    FirewallRules: [{2DB77965-4546-4E60-A4C1-5DB6452BAAF1}] => (Allow) D:\Steam\steamapps\common\Europa Universalis IV\eu4.exe
    FirewallRules: [{5B386AEA-2A21-4352-9CB7-E13B5CB9B37A}] => (Allow) D:\Steam\steamapps\common\Europa Universalis IV\eu4.exe
    FirewallRules: [{08CE18FF-24BE-49FD-B41F-E01B165D63E8}] => (Allow) D:\Steam\steamapps\common\Total War Rome II\launcher\launcher.exe
    FirewallRules: [{9BDF42DF-CC17-4D4A-AE05-C1394495CAB3}] => (Allow) D:\Steam\steamapps\common\Total War Rome II\launcher\launcher.exe
    FirewallRules: [{B112DC4F-0CB6-462E-ADE5-7377BF2E5FB6}] => (Allow) D:\Steam\steamapps\common\Total War WARHAMMER\launcher\launcher.exe
    FirewallRules: [{DA661398-AD86-4079-965C-E906FF856201}] => (Allow) D:\Steam\steamapps\common\Total War WARHAMMER\launcher\launcher.exe
    FirewallRules: [{E05764E3-2852-4125-B7AC-27BE5EE2F506}] => (Allow) C:\Program Files\KeyShot6\bin\keyshot_daemon.exe
    FirewallRules: [{893B8733-F873-49E9-B84A-A935837A95B5}] => (Allow) C:\Program Files\KeyShot6\bin\keyshot6.exe
    FirewallRules: [{5E4F735E-C440-4CF9-B6BE-D5F1A114CAE9}] => (Allow) D:\Steam\steamapps\common\Dungeon of the Endless\DungeonoftheEndless.exe
    FirewallRules: [{694111FE-18E4-4525-8EE7-BABFCC68C090}] => (Allow) D:\Steam\steamapps\common\Dungeon of the Endless\DungeonoftheEndless.exe
    FirewallRules: [{3FC9A43D-E0A0-4146-98E2-A2F2461BA631}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
    FirewallRules: [{B7A86217-725A-4CAA-999F-FA9BC581171F}] => (Allow) D:\Steam\steamapps\common\insurgency2\insurgency.exe
    FirewallRules: [{7BD0203D-8A63-457C-9E00-3EEBA836194C}] => (Allow) D:\Steam\steamapps\common\insurgency2\insurgency.exe
    FirewallRules: [{9C6FFDB1-603C-4286-8217-E799A8FDC648}] => (Allow) D:\Steam\steamapps\common\Squad\squad_launcher.exe
    FirewallRules: [{2B175A8B-8EA4-4651-A46B-D28C3D0B7940}] => (Allow) D:\Steam\steamapps\common\Squad\squad_launcher.exe
    FirewallRules: [{E0D543C2-1F6C-4E72-A124-4C3AA865DD90}] => (Allow) D:\Steam\steamapps\common\Arma 3\arma3launcher.exe
    FirewallRules: [{BE8D3D1D-175E-4F7C-8A6D-629860EA0DCF}] => (Allow) D:\Steam\steamapps\common\Arma 3\arma3launcher.exe
    FirewallRules: [{F78CFF79-0D4E-4D34-843A-1EA231F1D40B}] => (Allow) D:\Steam\steamapps\common\ASTRONEER Early Access\Astro.exe
    FirewallRules: [{7A7357DE-0C04-4006-8643-4529C1C803A4}] => (Allow) D:\Steam\steamapps\common\ASTRONEER Early Access\Astro.exe
    FirewallRules: [{AD8396C6-79DB-4610-AB4D-E5AAC1EFD637}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
    FirewallRules: [{C8382AAA-840E-4778-A172-6EF37654205B}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
    FirewallRules: [{8EF9EE04-86D2-4A4C-8422-BC1789505F86}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
    FirewallRules: [{CDAE99E1-774F-4813-BD2E-F9F0E90D72B8}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
    FirewallRules: [{8F144E8C-9AA1-49A9-8112-4F8AEECD902C}] => (Allow) D:\Steam\steamapps\common\The Witness\witness_d3d11.exe
    FirewallRules: [{A7B68E61-DF91-45F1-9F2B-22D5EC921A64}] => (Allow) D:\Steam\steamapps\common\The Witness\witness_d3d11.exe
    FirewallRules: [{272BC6CB-E89C-49AB-BA2B-B6FCD7A90162}] => (Allow) D:\Steam\bin\cef\cef.win7\steamwebhelper.exe
    FirewallRules: [{ED1CD3F1-A857-49E9-8AF2-25EC45DFFC71}] => (Allow) D:\Steam\bin\cef\cef.win7\steamwebhelper.exe
    FirewallRules: [{9CA005F6-9A0A-47CA-861C-9167D7B0480E}] => (Allow) D:\Steam\Steam.exe
    FirewallRules: [{AC4A7159-747D-4F7F-96F5-3185E1EB25EB}] => (Allow) D:\Steam\Steam.exe
    FirewallRules: [{12AB7533-5C94-48A0-B7EE-0C037DFA1619}] => (Allow) C:\Program Files\Chaos Group\V-Ray\3dsmax 2016 for x64\vrlservice.exe
    FirewallRules: [{2C50527E-EC47-43CE-AB25-34CD4192A904}] => (Allow) C:\Program Files\Chaos Group\V-Ray\3dsmax 2016 for x64\vrlservice.exe
    FirewallRules: [{93E6B8A4-65D1-4C84-9620-B0E8F682112C}] => (Allow) C:\Program Files\Autodesk\3ds Max 2016\NVIDIA\Satellite\raysat_3dsmax2016_64.exe
    FirewallRules: [{496F1F99-D692-4FB2-B989-4A0BE1E712E2}] => (Allow) C:\Program Files\Autodesk\3ds Max 2016\NVIDIA\Satellite\raysat_3dsmax2016_64.exe
    FirewallRules: [{696C7631-E9E8-4C50-BDED-7ABA9ED6D305}] => (Allow) C:\Program Files\Autodesk\3ds Max 2016\NVIDIA\Satellite\raysat_3dsmax2016_64server.exe
    FirewallRules: [{AB3D9FE8-1196-46A6-AB74-E92F2568BAE5}] => (Allow) C:\Program Files\Autodesk\3ds Max 2016\NVIDIA\Satellite\raysat_3dsmax2016_64server.exe
    FirewallRules: [{18220348-5B26-48CD-947B-169C27550700}] => (Allow) C:\Users\crocq\AppData\Roaming\uTorrent\uTorrent.exe
    FirewallRules: [{EC120D6D-C939-4814-8FDC-280AAD2F4195}] => (Allow) C:\Users\crocq\AppData\Roaming\uTorrent\uTorrent.exe
    FirewallRules: [{DACB1DFA-83FE-4E5D-A7C3-453A98B2FA29}] => (Allow) C:\Users\crocq\AppData\Roaming\uTorrent\uTorrent.exe
    FirewallRules: [{09F0022A-FEE8-4866-83EF-EE5939881834}] => (Allow) C:\Users\crocq\AppData\Roaming\uTorrent\uTorrent.exe
    FirewallRules: [{44BCA9AB-DA51-44F2-9AC5-06F16D7E28C1}] => (Allow) C:\Users\crocq\AppData\Roaming\uTorrent\uTorrent.exe
    FirewallRules: [{8E4B93A6-9A05-4538-953D-3DF045E207C6}] => (Allow) C:\Users\crocq\AppData\Roaming\uTorrent\uTorrent.exe
    FirewallRules: [{BC7B83BF-65A1-4AAF-BB94-1DE547A25044}] => (Allow) D:\Steam\steamapps\common\Sid Meier's Civilization V\Launcher.exe
    FirewallRules: [{B62A3C06-BDD4-4DB9-A6D9-DBB873F0EA7C}] => (Allow) D:\Steam\steamapps\common\Sid Meier's Civilization V\Launcher.exe
    FirewallRules: [{DD1C7FC2-9D78-4185-B43C-FF1F33498CA7}] => (Allow) D:\Steam\steamapps\common\Crusader Kings II\CK2game.exe
    FirewallRules: [{FFE37BF6-093D-41C3-8E7C-A066FC982BAD}] => (Allow) D:\Steam\steamapps\common\Crusader Kings II\CK2game.exe
    FirewallRules: [{6A5E9967-ADE8-4CCA-A3FC-48CE6D92074C}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
    FirewallRules: [{73964DB6-6070-4532-80BC-6B3B2BB52A62}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
    FirewallRules: [{5AA41092-5307-4D97-8646-CF894B1B1987}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
    FirewallRules: [{403E4694-CFFB-4B6F-B720-CFD2A0FF19E4}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
    FirewallRules: [{9A429DBB-47B8-4E16-BB79-D64440EC7AA1}] => (Allow) D:\Steam\steamapps\common\Rising Storm 2\Binaries\Win64\RisingStorm2.exe
    FirewallRules: [{4F6006A2-13BF-4D9E-A469-CB24D731B0B4}] => (Allow) D:\Steam\steamapps\common\Rising Storm 2\Binaries\Win64\RisingStorm2.exe
    FirewallRules: [{52692D23-B4E4-411F-B746-3B1E86191767}] => (Allow) D:\Steam\steamapps\common\Metro Last Light Redux\metro.exe
    FirewallRules: [{1176E427-696B-4A03-9D03-02F4FC8BDCE0}] => (Allow) D:\Steam\steamapps\common\Metro Last Light Redux\metro.exe
    FirewallRules: [{5BCAEC2D-2563-465E-91F7-F364115255BE}] => (Allow) D:\Steam\steamapps\common\Metro 2033 Redux\metro.exe
    FirewallRules: [{BC9B577B-F4CF-40C1-A272-FB5AE0EC8763}] => (Allow) D:\Steam\steamapps\common\Metro 2033 Redux\metro.exe
    FirewallRules: [{7F48ADDB-D9E4-4210-BE7F-C57684C8EBC5}] => (Allow) D:\Steam\steamapps\common\Pillars of Eternity\PillarsOfEternity.exe
    FirewallRules: [{F4D7C09D-6B4C-409B-825F-2672A7F80529}] => (Allow) D:\Steam\steamapps\common\Pillars of Eternity\PillarsOfEternity.exe
    FirewallRules: [{CA2D0C98-1075-49A1-929F-27D5412B234D}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
    FirewallRules: [{8EADA86C-83DC-43C7-884F-423173337D1B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
    FirewallRules: [{D9848F1A-1AE8-4FBB-A949-77F93EFEE0CB}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
    FirewallRules: [{71DC2DA5-6523-43D8-988E-CBEEE9431234}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
    FirewallRules: [{E0FBFA92-B203-4616-8BA4-531CFCA2092D}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
    FirewallRules: [{91057BB1-0D93-46EE-A7D5-66DFB6743615}] => (Allow) D:\Steam\steamapps\common\Steel Division\SteelDivision.exe
    FirewallRules: [{DB7022D3-E548-4837-BE6B-18C3C7574041}] => (Allow) D:\Steam\steamapps\common\Steel Division\SteelDivision.exe
    FirewallRules: [{49CEDEF6-8020-4445-A001-72B17EC8A71F}] => (Allow) D:\Steam\steamapps\common\Argo\argobattleye.exe
    FirewallRules: [{E7EBCD76-56D7-4593-86C2-CDFC35E2EDF5}] => (Allow) D:\Steam\steamapps\common\Argo\argobattleye.exe
    FirewallRules: [{26762C13-F1B1-487D-A1CC-10D1D90BCFF1}] => (Allow) D:\Steam\steamapps\common\Wargame Red Dragon\WarGame3.exe
    FirewallRules: [{949B3271-7D14-4BA7-9AB2-788534C49D61}] => (Allow) D:\Steam\steamapps\common\Wargame Red Dragon\WarGame3.exe
    FirewallRules: [{0ED33B00-662C-462F-BF80-423383221A0B}] => (Allow) D:\Steam\steamapps\common\TheLongDark\tld.exe
    FirewallRules: [{2FA4A8E5-D9C2-43C9-9411-7C6B7B8B73AA}] => (Allow) D:\Steam\steamapps\common\TheLongDark\tld.exe
    FirewallRules: [{D26481C9-648E-4D90-9346-9C61B530A1E2}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
    FirewallRules: [{D9A7CD62-4DDB-40B4-BEC4-44F3F72DF593}] => (Allow) D:\Steam\steamapps\common\MountBlade Warband\mb_warband.exe
    FirewallRules: [{DC59D2CC-CA81-4C1A-B57E-B2B864344C86}] => (Allow) D:\Steam\steamapps\common\MountBlade Warband\mb_warband.exe
    FirewallRules: [{1226A034-FABA-44FA-8331-241657BF4837}] => (Allow) D:\Steam\steamapps\common\XCOM 2\Binaries\Win64\Launcher\ModLauncherWPF.exe
    FirewallRules: [{F1484B44-5BFD-486C-854B-2CA6AB5CACC0}] => (Allow) D:\Steam\steamapps\common\XCOM 2\Binaries\Win64\Launcher\ModLauncherWPF.exe

    ==================== Points de restauration =========================

    18-06-2017 13:57:56 Point de contrôle planifié
    27-06-2017 22:33:20 Point de contrôle planifié
    03-07-2017 00:04:18 DirectX est installé
    08-07-2017 14:14:00 Revo Uninstaller Pro's restore point - Malwarebytes version 3.1.2.1733
    10-07-2017 22:07:51 DirectX est installé

    ==================== Éléments en erreur du Gestionnaire de périphériques =============


    ==================== Erreurs du Journal des événements: =========================

    Erreurs Application:
    ==================
    Error: (07/12/2017 04:36:51 PM) (Source: SideBySide) (EventID: 78) (User: )
    Description: La création du contexte d’activation a échoué pour «*c:\program files (x86)\adobe\adobe creative cloud\utils\Creative Cloud Uninstaller.exe*». Erreur dans le fichier de manifeste ou de stratégie «**» à la ligne .
    Une version de composant nécessaire à l’application est en conflit avec une autre version de composant déjà active.
    Les composants en conflit sont :
    Composant 1*: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.15063.483_none_6dad63fefc436da8.manifest.
    Composant 2*: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.15063.483_none_26002d27e7c744a2.manifest.

    Error: (07/12/2017 04:36:49 PM) (Source: SideBySide) (EventID: 63) (User: )
    Description: La création du contexte d’activation a échoué pour «*c:\program files (x86)\wibukey\server\WkSvCtrl.dll*». Erreur dans le fichier de manifeste ou de stratégie «*c:\program files (x86)\wibukey\server\WkSvCtrl.dll*» à la ligne 6.
    La valeur «*6.32.1504.(500 + 0)*» de l’attribut «*version*» de l’élément «*assemblyIdentity*» n’est pas valide.

    Error: (07/12/2017 04:34:52 PM) (Source: SideBySide) (EventID: 78) (User: )
    Description: La création du contexte d’activation a échoué pour «*c:\program files (x86)\adobe\adobe creative cloud\utils\Creative Cloud Uninstaller.exe*». Erreur dans le fichier de manifeste ou de stratégie «**» à la ligne .
    Une version de composant nécessaire à l’application est en conflit avec une autre version de composant déjà active.
    Les composants en conflit sont :
    Composant 1*: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.15063.483_none_6dad63fefc436da8.manifest.
    Composant 2*: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.15063.483_none_26002d27e7c744a2.manifest.

    Error: (07/12/2017 04:34:46 PM) (Source: SideBySide) (EventID: 63) (User: )
    Description: La création du contexte d’activation a échoué pour «*c:\program files (x86)\wibukey\server\WkSvCtrl.dll*». Erreur dans le fichier de manifeste ou de stratégie «*c:\program files (x86)\wibukey\server\WkSvCtrl.dll*» à la ligne 6.
    La valeur «*6.32.1504.(500 + 0)*» de l’attribut «*version*» de l’élément «*assemblyIdentity*» n’est pas valide.

    Error: (07/12/2017 04:30:16 PM) (Source: SetupARService) (EventID: 0) (User: )
    Description: Le service ne peut pas être démarré. System.NullReferenceException: La référence d'objet n'est pas définie à une instance d'un objet.
    à SetupAfterRebootService.SetupARService.OnStart(String[] args)
    à System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state)

    Error: (07/12/2017 04:07:23 PM) (Source: SideBySide) (EventID: 78) (User: )
    Description: La création du contexte d’activation a échoué pour «*c:\program files (x86)\adobe\adobe creative cloud\utils\Creative Cloud Uninstaller.exe*». Erreur dans le fichier de manifeste ou de stratégie «**» à la ligne .
    Une version de composant nécessaire à l’application est en conflit avec une autre version de composant déjà active.
    Les composants en conflit sont :
    Composant 1*: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.15063.483_none_6dad63fefc436da8.manifest.
    Composant 2*: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.15063.483_none_26002d27e7c744a2.manifest.

    Error: (07/12/2017 04:07:22 PM) (Source: SideBySide) (EventID: 63) (User: )
    Description: La création du contexte d’activation a échoué pour «*c:\program files (x86)\wibukey\server\WkSvCtrl.dll*». Erreur dans le fichier de manifeste ou de stratégie «*c:\program files (x86)\wibukey\server\WkSvCtrl.dll*» à la ligne 6.
    La valeur «*6.32.1504.(500 + 0)*» de l’attribut «*version*» de l’élément «*assemblyIdentity*» n’est pas valide.

    Error: (07/12/2017 03:33:42 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: BROUSSEOUILISSE)
    Description: Échec de l’activation de l’application windows.immersivecontrolpanel_cw5n1h2txyewy!microsoft.windows.immersivecontrolpanel avec l’erreur*: -2147417836 Pour plus d’informations, voir le journal Microsoft-Windows-TWinUI/Opérationnel.

    Error: (07/12/2017 02:41:00 PM) (Source: SideBySide) (EventID: 78) (User: )
    Description: La création du contexte d’activation a échoué pour «*c:\program files (x86)\adobe\adobe creative cloud\utils\Creative Cloud Uninstaller.exe*». Erreur dans le fichier de manifeste ou de stratégie «**» à la ligne .
    Une version de composant nécessaire à l’application est en conflit avec une autre version de composant déjà active.
    Les composants en conflit sont :
    Composant 1*: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.15063.483_none_6dad63fefc436da8.manifest.
    Composant 2*: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.15063.483_none_26002d27e7c744a2.manifest.

    Error: (07/12/2017 02:40:59 PM) (Source: SideBySide) (EventID: 63) (User: )
    Description: La création du contexte d’activation a échoué pour «*c:\program files (x86)\wibukey\server\WkSvCtrl.dll*». Erreur dans le fichier de manifeste ou de stratégie «*c:\program files (x86)\wibukey\server\WkSvCtrl.dll*» à la ligne 6.
    La valeur «*6.32.1504.(500 + 0)*» de l’attribut «*version*» de l’élément «*assemblyIdentity*» n’est pas valide.


    Erreurs système:
    =============
    Error: (07/12/2017 07:34:28 PM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT)
    Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID
    {6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
    et l’APPID
    {4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
    au SID AUTORITE NT\SERVICE LOCAL de l’utilisateur (S-1-5-19) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants.

    Error: (07/12/2017 07:34:28 PM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT)
    Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID
    {6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
    et l’APPID
    {4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
    au SID AUTORITE NT\SERVICE LOCAL de l’utilisateur (S-1-5-19) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants.

    Error: (07/12/2017 07:34:21 PM) (Source: DCOM) (EventID: 10010) (User: BROUSSEOUILISSE)
    Description: Le serveur {9BA05972-F6A8-11CF-A442-00A0C90A8F39} ne s’est pas enregistré sur DCOM avant la fin du temps imparti.

    Error: (07/12/2017 04:30:20 PM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT)
    Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID
    {6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
    et l’APPID
    {4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
    au SID AUTORITE NT\SERVICE LOCAL de l’utilisateur (S-1-5-19) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants.

    Error: (07/12/2017 04:30:20 PM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT)
    Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID
    {6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
    et l’APPID
    {4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
    au SID AUTORITE NT\SERVICE LOCAL de l’utilisateur (S-1-5-19) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants.

    Error: (07/12/2017 04:30:15 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
    Description: Le service CldFlt n’a pas pu démarrer en raison de l’erreur*:
    Cette demande n’est pas prise en charge.

    Error: (07/12/2017 04:29:53 PM) (Source: Service Control Manager) (EventID: 7038) (User: )
    Description: Le service WerSvc n’a pas pu ouvrir de session en tant que NT AUTHORITY\SYSTEM avec le mot de passe actuellement configuré en raison de l’erreur suivante*:
    Cette demande n’est pas prise en charge.


    Pour vous assurer que le service est configuré correctement, utilisez le composant logiciel enfichable Services dans Microsoft Management Console (MMC).

    Error: (07/12/2017 03:37:47 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
    Description: Le service Steam Client Service n’a pas pu démarrer en raison de l’erreur*:
    Le service n’a pas répondu assez vite à la demande de lancement ou de contrôle.

    Error: (07/12/2017 03:37:47 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
    Description: Le dépassement de délai (30000 millisecondes) a été atteint lors de l’attente de la connexion du service Steam Client Service.

    Error: (07/12/2017 02:31:25 PM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT)
    Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID
    {6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
    et l’APPID
    {4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
    au SID AUTORITE NT\SERVICE LOCAL de l’utilisateur (S-1-5-19) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants.


    CodeIntegrity:
    ===================================
    Date: 2017-07-12 17:31:40.751
    Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume2\Windows\System32\nvspcap64.dll that did not meet the Store signing level requirements.

    Date: 2017-07-12 16:30:19.041
    Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Bitdefender\Bitdefender 2017\vsservp.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bitdefender\Bitdefender 2017\dbghelp.dll that did not meet the Custom 3 / Antimalware signing level requirements.

    Date: 2017-07-12 14:32:52.699
    Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume2\Windows\System32\nvspcap64.dll that did not meet the Store signing level requirements.

    Date: 2017-07-12 14:29:47.886
    Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Bitdefender\Bitdefender 2017\vsservp.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bitdefender\Bitdefender 2017\dbghelp.dll that did not meet the Custom 3 / Antimalware signing level requirements.

    Date: 2017-07-11 21:40:53.224
    Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Bitdefender\Bitdefender 2017\vsservp.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bitdefender\Bitdefender 2017\dbghelp.dll that did not meet the Custom 3 / Antimalware signing level requirements.

    Date: 2017-07-10 20:39:41.412
    Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Bitdefender\Bitdefender 2017\vsservp.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bitdefender\Bitdefender 2017\dbghelp.dll that did not meet the Custom 3 / Antimalware signing level requirements.

    Date: 2017-07-10 19:41:11.670
    Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Bitdefender\Bitdefender 2017\vsservp.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bitdefender\Bitdefender 2017\dbghelp.dll that did not meet the Custom 3 / Antimalware signing level requirements.

    Date: 2017-07-09 20:33:00.255
    Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Bitdefender\Bitdefender 2017\vsservp.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bitdefender\Bitdefender 2017\dbghelp.dll that did not meet the Custom 3 / Antimalware signing level requirements.

    Date: 2017-07-09 12:03:09.325
    Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Bitdefender\Bitdefender 2017\vsservp.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bitdefender\Bitdefender 2017\dbghelp.dll that did not meet the Custom 3 / Antimalware signing level requirements.

    Date: 2017-07-08 14:15:12.395
    Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Bitdefender\Bitdefender 2017\vsservp.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bitdefender\Bitdefender 2017\dbghelp.dll that did not meet the Custom 3 / Antimalware signing level requirements.


    ==================== Infos Mémoire ===========================

    Processeur: Intel(R) Core(TM) i7-4720HQ CPU @ 2.60GHz
    Pourcentage de mémoire utilisée: 23%
    Mémoire physique - RAM - totale: 24525.17 MB
    Mémoire physique - RAM - disponible: 18716.08 MB
    Mémoire virtuelle totale: 28109.17 MB
    Mémoire virtuelle disponible: 22597.72 MB

    ==================== Lecteurs ================================

    Drive c: (OS) (Fixed) (Total:499.51 GB) (Free:320.06 GB) NTFS
    Drive d: (FUN) (Fixed) (Total:477.96 GB) (Free:42.21 GB) NTFS
    Drive e: (DATA2) (Fixed) (Total:371.85 GB) (Free:98.68 GB) NTFS
    Drive f: (WORKS) (Fixed) (Total:558.91 GB) (Free:144.99 GB) NTFS

    ==================== MBR & Table des partitions ==================

    ========================================================
    Disk: 0 (MBR Code: Windows 7 or 8) (Size: 978.1 GB) (Disk ID: 00000000)

    Partition: GPT.

    ========================================================
    Disk: 1 (Size: 931.5 GB) (Disk ID: CC5F7439)

    Partition: GPT.

    ==================== Fin de Addition.txt ============================






    Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 11-07-2017
    Exécuté par crocq (administrateur) sur BROUSSEOUILISSE (12-07-2017 19:54:47)
    Exécuté depuis C:\Users\crocq\Downloads
    Profils chargés: defaultuser0 & crocq & stbxr (Profils disponibles: defaultuser0 & crocq & stbxr)
    Platform: Windows 10 Home Version 1703 (X64) Langue: Français (France)
    Internet Explorer Version 11 (Navigateur par défaut: Chrome)
    Mode d'amorçage: Normal
    Tutoriel pour Farbar Recovery Scan Tool: FRST Tutorial - How to use Farbar Recovery Scan Tool - Malware Removal Guides and Tutorials

    ==================== Processus (Avec liste blanche) =================

    (Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)

    (Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2017\vsserv.exe
    (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
    (Bitdefender) C:\Program Files\Bitdefender\Bitdefender Device Management\DevMgmtService.exe
    (Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\WTabletServicePro.exe
    (ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
    (SUPERAntiSpyware.com) C:\Program Files\SUPERAntiSpyware\SASCore64.exe
    (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
    () C:\Windows\SysWOW64\PnkBstrA.exe
    (Intel Corporation) C:\Windows\System32\ibtsiva.exe
    (Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
    (Autodesk Inc.) C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AdAppMgrSvc.exe
    () C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
    (Bitdefender) C:\Program Files\Bitdefender Agent\ProductAgentService.exe
    (Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
    (Western Digital Technologies, Inc.) C:\Program Files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe
    (Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2017\updatesrv.exe
    (Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2017\vsservp.exe
    (Electronic Arts) D:\Origin\OriginWebHelperService.exe
    (TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
    (Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.5\GoogleCrashHandler.exe
    (Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.5\GoogleCrashHandler64.exe
    (Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
    (Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
    (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
    (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
    (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
    (ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
    (Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\Wacom_TabletUser.exe
    (Wacom Technology) C:\Program Files\Tablet\Wacom\WacomHost.exe
    (Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\Wacom_TouchUser.exe
    (ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
    (ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
    (Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\Wacom_Tablet.exe
    (Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersServer.exe
    (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
    (Microsoft Corporation) C:\Windows\System32\dllhost.exe
    (Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
    (ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
    (ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
    (Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
    (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
    (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
    (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
    (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
    (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
    (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
    (SUPERAntiSpyware) C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
    (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
    (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
    (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
    (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
    (Western Digital Technologies, Inc.) C:\Program Files (x86)\Western Digital\WD Security\WDDriveAutoUnlock.exe
    (Western Digital Technologies, Inc.) C:\Program Files (x86)\Western Digital\WD App Manager\WDAppManager.exe
    (Western Digital Technologies, Inc.) C:\Program Files (x86)\Western Digital\WD Utilities\WDDriveUtilitiesHelper.exe
    (Western Digital Technologies, Inc.) C:\Program Files (x86)\Western Digital\WD Quick View\WDDMStatus.exe
    (Western Digital Technologies, Inc.) C:\Program Files (x86)\Western Digital\WD App Manager\Plugins\WD Backup\App\WDBackupService.exe
    (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
    (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
    (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
    (Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2017\bdagent.exe
    (Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2017\bdwtxag.exe
    (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
    (Electronic Arts) D:\Origin\OriginThinSetupInternal.exe
    (Microsoft Corporation) C:\Windows\System32\smartscreen.exe
    (Hammer & Chisel, Inc.) C:\Users\crocq\AppData\Local\Discord\app-0.0.297\Discord.exe
    (Hammer & Chisel, Inc.) C:\Users\crocq\AppData\Local\Discord\app-0.0.297\Discord.exe
    (Hammer & Chisel, Inc.) C:\Users\crocq\AppData\Local\Discord\app-0.0.297\Discord.exe
    (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
    (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
    (Microsoft Corporation) C:\Windows\System32\dllhost.exe

    ==================== Registre (Avec liste blanche) ====================

    (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)

    HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [629152 2017-03-18] (Microsoft Corporation)
    HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [3350232 2015-09-17] (ELAN Microelectronics Corp.)
    HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [322104 2016-02-03] (Intel Corporation)
    HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [508128 2016-07-01] (Adobe Systems Incorporated)
    HKLM\...\Run: [ShadowPlay] => "C:\WINDOWS\system32\rundll32.exe" C:\WINDOWS\system32\nvspcap64.dll,ShadowPlayOnSystemStart
    HKLM\...\Run: [Malwarebytes TrayApp] => C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\mbamtray.exe [3146704 2017-05-09] (Malwarebytes)
    HKLM-x32\...\Run: [Razer Synapse] => C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe [596640 2016-11-04] (Razer Inc.)
    HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2383040 2016-10-25] (Adobe Systems Incorporated)
    HKLM-x32\...\Run: [WDAppManager] => C:\Program Files (x86)\Western Digital\WD App Manager\AppManagerLauncher.exe [21384 2016-04-19] (Western Digital Technologies, Inc.)
    HKLM-x32\...\Run: [WD Drive Unlocker] => C:\Program Files (x86)\Western Digital\WD Security\WDDriveAutoUnlock.exe [1761120 2015-12-07] (Western Digital Technologies, Inc.)
    HKLM-x32\...\Run: [DriveUtilitiesHelper] => C:\Program Files (x86)\Western Digital\WD Utilities\WDDriveUtilitiesHelper.exe [1890664 2016-01-14] (Western Digital Technologies, Inc.)
    HKLM-x32\...\Run: [WD Quick View] => C:\Program Files (x86)\Western Digital\WD Quick View\WDDMStatus.exe [5564784 2015-02-12] (Western Digital Technologies, Inc.)
    HKLM-x32\...\Run: [Autodesk Desktop App] => C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AutodeskDesktopApp.exe [704424 2017-03-10] (Autodesk, Inc.)
    HKU\S-1-5-21-1918836148-936291157-4271617375-1000\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [517120 2017-03-18] (Microsoft Corporation)
    HKU\S-1-5-21-1918836148-936291157-4271617375-1001\...\Run: [GoogleChromeAutoLaunch_D4597A70D3FBAEDD67D809FFC94E88D8] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [1197912 2017-06-22] (Google Inc.)
    HKU\S-1-5-21-1918836148-936291157-4271617375-1001\...\Run: [GoogleDriveSync] => C:\Program Files (x86)\Google\Drive\googledrivesync.exe [23819304 2017-03-21] (Google)
    HKU\S-1-5-21-1918836148-936291157-4271617375-1001\...\Run: [Discord] => C:\Users\crocq\AppData\Local\Discord\app-0.0.297\Discord.exe [64290304 2017-01-04] (Hammer & Chisel, Inc.)
    HKU\S-1-5-21-1918836148-936291157-4271617375-1001\...\Run: [SUPERAntiSpyware] => C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [7963552 2017-06-12] (SUPERAntiSpyware)
    Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Serveur réseau.lnk [2017-01-02]
    ShortcutTarget: Serveur réseau.lnk -> C:\Program Files (x86)\WIBUKEY\Server\WkSvMgr.exe (WIBU-SYSTEMS AG)

    ==================== Internet (Avec liste blanche) ====================

    (Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)

    Hosts: Il y a plus d'un élément dans hosts. Voir la section Hosts de Addition.txt
    Tcpip\Parameters: [DhcpNameServer] 192.168.0.1 23.233.128.16 24.225.128.17
    Tcpip\..\Interfaces\{1913958c-4b40-4506-80fa-0fbdd8a29c46}: [DhcpNameServer] 192.168.0.1 23.233.128.16 24.225.128.17

    Internet Explorer:
    ==================
    HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
    HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
    HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
    HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
    HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
    HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
    HKU\S-1-5-21-1918836148-936291157-4271617375-1001\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
    HKU\S-1-5-21-1918836148-936291157-4271617375-1002\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
    URLSearchHook: [S-1-5-21-1918836148-936291157-4271617375-1000_classes] ATTENTION => URLSearchHook par défaut est absent
    URLSearchHook: [S-1-5-21-1918836148-936291157-4271617375-1002_classes] ATTENTION => URLSearchHook par défaut est absent
    SearchScopes: HKU\S-1-5-21-1918836148-936291157-4271617375-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
    BHO: Bitdefender Wallet -> {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} -> C:\Program Files\Bitdefender\Bitdefender 2017\pmbxie.dll [2017-04-24] (Bitdefender)
    BHO-x32: Bitdefender Wallet -> {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} -> C:\Program Files\Bitdefender\Bitdefender 2017\Antispam32\pmbxie.dll [2017-04-24] (Bitdefender)
    Toolbar: HKLM - Bitdefender Wallet - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Program Files\Bitdefender\Bitdefender 2017\pmbxie.dll [2017-04-24] (Bitdefender)
    Toolbar: HKLM-x32 - Bitdefender Wallet - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Program Files\Bitdefender\Bitdefender 2017\Antispam32\pmbxie.dll [2017-04-24] (Bitdefender)

    FireFox:
    ========
    FF HKLM\...\Firefox\Extensions: [bdwteffv20@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender 2017\antispam32\bdwteff
    FF Extension: (Bitdefender Wallet) - C:\Program Files\Bitdefender\Bitdefender 2017\antispam32\bdwteff [2017-05-06]
    FF HKLM\...\Thunderbird\Extensions: [bdThunderbird@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender 2017\bdtbext
    FF Extension: (Bitdefender Antispam Toolbar) - C:\Program Files\Bitdefender\Bitdefender 2017\bdtbext [2016-12-13] [non signé]
    FF HKLM-x32\...\Firefox\Extensions: [bdwteffv20@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender 2017\antispam32\bdwteff
    FF HKLM-x32\...\Thunderbird\Extensions: [bdThunderbird@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender 2017\bdtbext
    FF Plugin: @wacom.com/wtPlugin,version=2.1.0.7 -> C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom)
    FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2016-10-25] (Adobe Systems)
    FF Plugin: wacom.com/WacomTabletPlugin -> C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom)
    FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2017-06-07] (NVIDIA Corporation)
    FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2017-06-07] (NVIDIA Corporation)
    FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-27] (Google Inc.)
    FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-27] (Google Inc.)
    FF Plugin-x32: @wacom.com/wtPlugin,version=2.1.0.7 -> C:\Program Files (x86)\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom)
    FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2016-10-25] (Adobe Systems)
    FF Plugin-x32: wacom.com/WacomTabletPlugin -> C:\Program Files (x86)\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom)

    Chrome:
    =======
    CHR HomePage: Default -> hxxp://search.conduit.com/?ctid=CT3320691&octid=EB_ORIGINAL_CTID&SearchSource=55&CUI=&UM=4&UP=SPA381169A-72D4-45BC-B4E7-6DC7ECC0C6C8&SSPV=
    CHR StartupUrls: Default -> "hxxps://dub125.mail.live.com/default.aspx?id=64855","hxxps://mail.google.com/mail/u/0/#inbox","hxxp://www.pinterest.com/","hxxp://muddycolors.blogspot.ca/","hxxp://worldcosplay.net/","hxxps://www.flickr.com/photos/118643197@N08/favorites","hxxp://www.deviantart.com/","hxxp://conceptartworld.com/"
    CHR NewTab: Default -> Active:"chrome-extension://bhnpmdabjgpimmnbmhefncbghknfegog/flickr-tab.html"
    CHR Profile: C:\Users\crocq\AppData\Local\Google\Chrome\User Data\Default [2017-07-12]
    CHR Extension: (Google Slides) - C:\Users\crocq\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-01-02]
    CHR Extension: (Google Docs) - C:\Users\crocq\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-01-02]
    CHR Extension: (Google*Drive) - C:\Users\crocq\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-01-02]
    CHR Extension: (Onglet Flickr) - C:\Users\crocq\AppData\Local\Google\Chrome\User Data\Default\Extensions\bhnpmdabjgpimmnbmhefncbghknfegog [2017-05-27]
    CHR Extension: (YouTube) - C:\Users\crocq\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-01-02]
    CHR Extension: (Google Sheets) - C:\Users\crocq\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-01-02]
    CHR Extension: (Google*Docs hors connexion) - C:\Users\crocq\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-01-02]
    CHR Extension: (AdBlock) - C:\Users\crocq\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2017-06-26]
    CHR Extension: (Bookmark Manager) - C:\Users\crocq\AppData\Local\Google\Chrome\User Data\Default\Extensions\gmlllbghnfkpflemihljekbapjopfjik [2017-01-02]
    CHR Extension: (Bouton Enregistrer Pinterest) - C:\Users\crocq\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpdjojdkbbmdfjfahjcgigfpmkopogic [2017-04-22]
    CHR Extension: (Google Play Music) - C:\Users\crocq\AppData\Local\Google\Chrome\User Data\Default\Extensions\icppfcnhkcmnfdhfhphakoifcfokfdhg [2017-01-02]
    CHR Extension: (DownFlickr - Flickr Downloader) - C:\Users\crocq\AppData\Local\Google\Chrome\User Data\Default\Extensions\idiemcijhbenngdhkdiipmpkafnkbkeg [2017-01-02]
    CHR Extension: (1-click-timer) - C:\Users\crocq\AppData\Local\Google\Chrome\User Data\Default\Extensions\igloknlllonknnbkfgggfkigmeegmakf [2017-01-02]
    CHR Extension: (Application Launcher for Drive (by Google)) - C:\Users\crocq\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2017-01-08]
    CHR Extension: (Extension Google*Keep pour Chrome) - C:\Users\crocq\AppData\Local\Google\Chrome\User Data\Default\Extensions\lpcaedmchfhocbbapmcbpinfpgnhiddi [2017-01-02]
    CHR Extension: (Paiements via le Chrome*Web*Store) - C:\Users\crocq\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-03-09]
    CHR Extension: (Gmail) - C:\Users\crocq\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-01-02]
    CHR Extension: (Chrome Media Router) - C:\Users\crocq\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-07-12]
    CHR Extension: (Appel Skype) - C:\Users\crocq\AppData\Local\Google\Chrome\User Data\Default\Extensions\poghlonenmjdkfghdpfomojhhfggildk [2017-01-02]
    CHR HKU\S-1-5-21-1918836148-936291157-4271617375-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh] - hxxps://clients2.google.com/service/update2/crx
    CHR HKLM-x32\...\Chrome\Extension: [gannpgaobkkhmpomoijebaigcapoeebl] - hxxps://clients2.google.com/service/update2/crx

    ==================== Services (Avec liste blanche) ====================

    (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

    R2 !SASCORE; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [173472 2017-01-30] (SUPERAntiSpyware.com)
    R2 AdAppMgrSvc; C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AdAppMgrSvc.exe [1309176 2017-03-10] (Autodesk Inc.)
    R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [744640 2016-10-25] (Adobe Systems Incorporated)
    R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2246256 2017-05-18] (Adobe Systems, Incorporated)
    S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [1536520 2017-06-23] ()
    R2 DevMgmtService; C:\Program Files\Bitdefender\Bitdefender Device Management\DevMgmtService.exe [104096 2017-05-18] (Bitdefender)
    S3 EasyAntiCheat; C:\WINDOWS\SysWOW64\EasyAntiCheat.exe [382504 2017-05-30] (EasyAntiCheat Ltd)
    R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [18488 2016-02-03] (Intel Corporation)
    S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [987432 2016-07-26] (Intel(R) Corporation)
    R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [177440 2016-10-05] (Intel Corporation)
    R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [4470736 2017-05-09] (Malwarebytes)
    S3 mi-raysat_3dsmax2016_64; C:\Program Files\Autodesk\3ds Max 2016\NVIDIA\Satellite\raysat_3dsmax2016_64server.exe [86016 2011-09-15] () [Fichier non signé]
    S3 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [495040 2017-06-07] (NVIDIA Corporation)
    S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [495040 2017-06-07] (NVIDIA Corporation)
    R2 NVDisplay.ContainerLocalSystem; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [462968 2017-06-07] (NVIDIA Corporation)
    R2 NvTelemetryContainer; C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe [449984 2017-06-07] (NVIDIA Corporation)
    S3 Origin Client Service; D:\Origin\OriginClientService.exe [2168208 2017-06-15] (Electronic Arts)
    R2 Origin Web Helper Service; D:\Origin\OriginWebHelperService.exe [3148184 2017-06-15] (Electronic Arts)
    R2 PnkBstrA; C:\WINDOWS\SysWOW64\PnkBstrA.exe [76888 2017-05-27] ()
    R2 ProductAgentService; C:\Program Files\Bitdefender Agent\ProductAgentService.exe [1254736 2017-04-11] (Bitdefender)
    R2 Razer Game Scanner Service; C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe [189264 2016-09-24] ()
    S2 SetupARService; C:\Program Files (x86)\Realtek\Audio\SetupAfterRebootService.exe [10752 2017-01-02] () [Fichier non signé]
    R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [10351856 2016-12-15] (TeamViewer GmbH)
    R2 UPDATESRV; C:\Program Files\Bitdefender\Bitdefender 2017\updatesrv.exe [218416 2017-04-24] (Bitdefender)
    R2 VSSERV; C:\Program Files\Bitdefender\Bitdefender 2017\vsserv.exe [1442896 2017-05-29] (Bitdefender)
    R2 vsservp; C:\Program Files\Bitdefender\Bitdefender 2017\vsservp.exe [524872 2016-08-25] (Bitdefender)
    R2 WDDriveService; C:\Program Files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe [308088 2015-12-07] (Western Digital Technologies, Inc.)
    S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [342264 2017-03-18] (Microsoft Corporation)
    S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [102816 2017-06-20] (Microsoft Corporation)
    R2 WTabletServicePro; C:\Program Files\Tablet\Wacom\WTabletServicePro.exe [671696 2016-12-09] (Wacom Technology, Corp.)
    R2 ibtsiva; %SystemRoot%\system32\ibtsiva [X]
    S3 WD Backup Drive Helper; C:\Windows\SysWoW64\dllhost.exe /Processid:{4AB831D3-8315-414C-8A7A-303105288D0B}
    S3 WD Backup Snapshot; C:\Windows\SysWoW64\dllhost.exe /Processid:{302480DF-3AC5-4400-BE7B-DD77AF93B6DD}

    ===================== Pilotes (Avec liste blanche) ======================

    (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

    R0 avc3; C:\WINDOWS\System32\DRIVERS\avc3.sys [1612648 2017-05-29] (BitDefender)
    R3 avckf; C:\WINDOWS\System32\DRIVERS\avckf.sys [879600 2017-05-29] (BitDefender)
    S0 bdelam; C:\WINDOWS\System32\drivers\bdelam.sys [23672 2016-03-14] (Bitdefender)
    R1 bdfwfpf; C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf.sys [128400 2016-06-24] (BitDefender LLC)
    R1 BDVEDISK; C:\WINDOWS\system32\DRIVERS\bdvedisk.sys [87912 2015-12-04] (BitDefender)
    R0 gzflt; C:\WINDOWS\System32\DRIVERS\gzflt.sys [182944 2016-10-29] (BitDefender LLC)
    R3 ibtusb; C:\WINDOWS\system32\DRIVERS\ibtusb.sys [250624 2016-10-15] (Intel Corporation)
    R0 ignis; C:\WINDOWS\system32\DRIVERS\ignis.sys [305120 2017-04-09] (Bitdefender)
    R0 IntelHSWPcc; C:\WINDOWS\System32\drivers\IntelPcc.sys [88256 2015-06-09] (Intel Corporation)
    R2 MBAMChameleon; C:\WINDOWS\system32\drivers\MBAMChameleon.sys [188312 2017-07-12] (Malwarebytes)
    R3 MBAMFarflt; C:\WINDOWS\system32\drivers\farflt.sys [113592 2017-07-12] (Malwarebytes)
    R3 MBAMProtection; C:\WINDOWS\system32\drivers\mbam.sys [44960 2017-07-12] (Malwarebytes)
    R3 MBAMSwissArmy; C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [252832 2017-07-12] (Malwarebytes)
    R3 MBAMWebProtection; C:\WINDOWS\system32\drivers\mwac.sys [93600 2017-07-12] (Malwarebytes)
    R3 Netwtw04; C:\WINDOWS\system32\DRIVERS\Netwtw04.sys [7918840 2016-12-19] (Intel Corporation)
    R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nvami.inf_amd64_62e8f88c97b34401\nvlddmkm.sys [14461344 2017-06-08] (NVIDIA Corporation)
    S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30144 2017-06-07] (NVIDIA Corporation)
    R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [48064 2017-06-07] (NVIDIA Corporation)
    R3 nvvhci; C:\WINDOWS\System32\drivers\nvvhci.sys [57792 2017-06-07] (NVIDIA Corporation)
    R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [955424 2016-12-19] (Realtek )
    R3 rzendpt; C:\WINDOWS\System32\drivers\rzendpt.sys [50392 2015-08-13] (Razer Inc)
    R2 rzpmgrk; C:\Windows\system32\drivers\rzpmgrk.sys [44144 2016-09-16] (Razer, Inc.)
    R2 rzpnk; C:\Windows\system32\drivers\rzpnk.sys [137840 2016-09-07] (Razer, Inc.)
    R1 SASDIFSV; C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [14928 2011-07-22] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
    R1 SASKUTIL; C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [12368 2011-07-12] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
    R3 ScpVBus; C:\WINDOWS\System32\drivers\ScpVBus.sys [39168 2013-05-19] (Scarlet.Crush Productions)
    S3 SDFRd; C:\WINDOWS\System32\drivers\SDFRd.sys [31128 2017-03-18] ()
    R0 trufos; C:\WINDOWS\System32\DRIVERS\trufos.sys [520032 2016-06-22] (BitDefender S.R.L.)
    R3 WacHidRouterPro; C:\WINDOWS\System32\drivers\wachidrouter.sys [119448 2016-12-05] (Wacom Technology)
    S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [44632 2017-03-18] (Microsoft Corporation)
    S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [294816 2017-03-18] (Microsoft Corporation)
    S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [121248 2017-03-18] (Microsoft Corporation)
    R2 WIBUKEY; C:\WINDOWS\System32\DRIVERS\WibuKey64.sys [106760 2017-01-02] (WIBU-SYSTEMS AG)

    ==================== NetSvcs (Avec liste blanche) ===================

    (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)


    ==================== Un mois - Créés - fichiers et dossiers ========

    (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

    2017-07-12 19:54 - 2017-07-12 19:55 - 00026291 _____ C:\Users\crocq\Downloads\FRST.txt
    2017-07-12 19:54 - 2017-07-12 19:54 - 02435584 _____ (Farbar) C:\Users\crocq\Downloads\FRST64.exe
    2017-07-12 19:54 - 2017-07-12 19:54 - 00000000 ____D C:\FRST
    2017-07-12 17:52 - 2017-07-12 17:52 - 00000000 ___RD C:\Users\crocq\Downloads\TWinPeaks S03
    2017-07-12 17:47 - 2017-07-12 17:51 - 00441240 _____ C:\Users\crocq\Documents\Ca_Fraud_Alert_Request_Form Rapha.pdf
    2017-07-12 17:43 - 2017-07-12 17:42 - 00433169 _____ C:\Users\crocq\Documents\Ca_Fraud_Alert_Request_Form Clement - Copie.pdf
    2017-07-12 17:42 - 2017-07-12 17:42 - 00433169 _____ C:\Users\crocq\Documents\Ca_Fraud_Alert_Request_Form Clement.pdf
    2017-07-12 17:13 - 2017-07-12 17:13 - 00001508 _____ C:\Users\crocq\Desktop\Malwarebytes.txt
    2017-07-12 16:56 - 2017-07-12 16:56 - 00000341 _____ C:\Users\crocq\Desktop\Nouveau document texte.txt
    2017-07-12 16:32 - 2017-07-12 16:35 - 00252832 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
    2017-07-12 16:32 - 2017-07-12 16:35 - 00113592 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\farflt.sys
    2017-07-12 16:32 - 2017-07-12 16:35 - 00093600 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys
    2017-07-12 16:32 - 2017-07-12 16:35 - 00077376 _____ C:\WINDOWS\system32\Drivers\mbae64.sys
    2017-07-12 16:32 - 2017-07-12 16:35 - 00044960 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
    2017-07-12 16:32 - 2017-07-12 16:32 - 00188312 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMChameleon.sys
    2017-07-12 16:32 - 2017-07-12 16:32 - 00001914 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
    2017-07-12 16:32 - 2017-07-12 16:32 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
    2017-07-12 16:32 - 2017-07-12 16:32 - 00000000 ____D C:\ProgramData\Malwarebytes
    2017-07-12 16:32 - 2017-07-12 16:32 - 00000000 ____D C:\Program Files\Malwarebytes
    2017-07-12 16:07 - 2017-07-12 16:30 - 00000542 _____ C:\WINDOWS\Tasks\SUPERAntiSpyware Scheduled Task a22b9c13-1843-4b2a-b488-94d0b1269191.job
    2017-07-12 16:07 - 2017-07-12 16:30 - 00000542 _____ C:\WINDOWS\Tasks\SUPERAntiSpyware Scheduled Task 3add6fb9-5df4-4107-a590-985d616f8f9e.job
    2017-07-12 16:07 - 2017-07-12 16:07 - 00003782 _____ C:\WINDOWS\System32\Tasks\SUPERAntiSpyware Scheduled Task a22b9c13-1843-4b2a-b488-94d0b1269191
    2017-07-12 16:07 - 2017-07-12 16:07 - 00003700 _____ C:\WINDOWS\System32\Tasks\SUPERAntiSpyware Scheduled Task 3add6fb9-5df4-4107-a590-985d616f8f9e
    2017-07-12 16:07 - 2017-07-12 16:07 - 00001851 _____ C:\Users\Public\Desktop\SUPERAntiSpyware Free Edition.lnk
    2017-07-12 16:07 - 2017-07-12 16:07 - 00000000 ____D C:\Users\crocq\AppData\Roaming\SUPERAntiSpyware.com
    2017-07-12 16:07 - 2017-07-12 16:07 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SUPERAntiSpyware
    2017-07-12 16:06 - 2017-07-12 16:07 - 00000000 ____D C:\Program Files\SUPERAntiSpyware
    2017-07-12 16:06 - 2017-07-12 16:06 - 30316624 _____ (SUPERAntiSpyware) C:\Users\crocq\Downloads\SUPERAntiSpyware.exe
    2017-07-12 16:06 - 2017-07-12 16:06 - 00000000 ____D C:\ProgramData\SUPERAntiSpyware.com
    2017-07-12 15:20 - 2017-07-12 15:20 - 00000000 ____D C:\Users\crocq\Downloads\backups
    2017-07-12 15:16 - 2017-07-12 15:16 - 00388608 _____ (Trend Micro Inc.) C:\Users\crocq\Downloads\HijackThis.exe
    2017-07-12 14:40 - 2017-07-12 14:40 - 00131128 _____ C:\Users\crocq\Downloads\backup-EMG2926-2017-07-12.cg
    2017-07-11 21:48 - 2017-07-07 10:00 - 00947712 _____ (Microsoft Corporation) C:\WINDOWS\system32\HoloSI.PCShell.dll
    2017-07-11 21:48 - 2017-07-07 03:27 - 01147288 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
    2017-07-11 21:48 - 2017-07-07 03:27 - 01024928 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
    2017-07-11 21:48 - 2017-07-07 03:27 - 00750560 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
    2017-07-11 21:48 - 2017-07-07 03:26 - 01065104 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
    2017-07-11 21:48 - 2017-07-07 03:25 - 00899824 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
    2017-07-11 21:48 - 2017-07-07 03:24 - 00117664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys
    2017-07-11 21:48 - 2017-07-07 03:23 - 02399728 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
    2017-07-11 21:48 - 2017-07-07 03:22 - 08318880 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
    2017-07-11 21:48 - 2017-07-07 03:22 - 01186464 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
    2017-07-11 21:48 - 2017-07-07 03:21 - 32688336 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecsRaw.dll
    2017-07-11 21:48 - 2017-07-07 03:21 - 02969880 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreUIComponents.dll
    2017-07-11 21:48 - 2017-07-07 03:20 - 02021680 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpmde.dll
    2017-07-11 21:48 - 2017-07-07 03:20 - 00923040 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
    2017-07-11 21:48 - 2017-07-07 03:20 - 00519584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netio.sys
    2017-07-11 21:48 - 2017-07-07 03:20 - 00382368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys
    2017-07-11 21:48 - 2017-07-07 03:15 - 02444696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
    2017-07-11 21:48 - 2017-07-07 03:14 - 07325584 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
    2017-07-11 21:48 - 2017-07-07 03:14 - 05477088 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneCoreUAPCommonProxyStub.dll
    2017-07-11 21:48 - 2017-07-07 03:14 - 01760264 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll
    2017-07-11 21:48 - 2017-07-07 03:14 - 01171032 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcomp.dll
    2017-07-11 21:48 - 2017-07-07 03:13 - 00872472 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipSVC.dll
    2017-07-11 21:48 - 2017-07-07 03:13 - 00554392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBHUB3.SYS
    2017-07-11 21:48 - 2017-07-07 03:13 - 00336320 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthService.exe
    2017-07-11 21:48 - 2017-07-07 03:13 - 00147800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Clipc.dll
    2017-07-11 21:48 - 2017-07-07 03:12 - 00411040 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
    2017-07-11 21:48 - 2017-07-07 03:12 - 00318232 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininit.exe
    2017-07-11 21:48 - 2017-07-07 03:11 - 07904784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
    2017-07-11 21:48 - 2017-07-07 03:11 - 00094624 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
    2017-07-11 21:48 - 2017-07-07 03:10 - 21353208 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
    2017-07-11 21:48 - 2017-07-07 03:10 - 01670496 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll
    2017-07-11 21:48 - 2017-07-07 03:10 - 01337848 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
    2017-07-11 21:48 - 2017-07-07 03:10 - 01325968 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
    2017-07-11 21:48 - 2017-07-07 03:10 - 00372128 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHost.dll
    2017-07-11 21:48 - 2017-07-07 03:10 - 00254168 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
    2017-07-11 21:48 - 2017-07-07 03:09 - 00041376 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininitext.dll
    2017-07-11 21:48 - 2017-07-07 03:07 - 01106848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\http.sys
    2017-07-11 21:48 - 2017-07-07 03:07 - 00058488 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsass.exe
    2017-07-11 21:48 - 2017-07-07 02:57 - 00626528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
    2017-07-11 21:48 - 2017-07-07 02:57 - 00125344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmapi.dll
    2017-07-11 21:48 - 2017-07-07 02:40 - 23677440 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
    2017-07-11 21:48 - 2017-07-07 02:39 - 01839872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
    2017-07-11 21:48 - 2017-07-07 02:39 - 00096128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmcmnutils.dll
    2017-07-11 21:48 - 2017-07-07 02:37 - 31652264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecsRaw.dll
    2017-07-11 21:48 - 2017-07-07 02:37 - 02259760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreUIComponents.dll
    2017-07-11 21:48 - 2017-07-07 02:37 - 01339352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmpmde.dll
    2017-07-11 21:48 - 2017-07-07 02:31 - 05820984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
    2017-07-11 21:48 - 2017-07-07 02:31 - 01518088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecs.dll
    2017-07-11 21:48 - 2017-07-07 02:31 - 00129184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32.dll
    2017-07-11 21:48 - 2017-07-07 02:30 - 02165752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
    2017-07-11 21:48 - 2017-07-07 02:30 - 00949920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dcomp.dll
    2017-07-11 21:48 - 2017-07-07 02:30 - 00750496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
    2017-07-11 21:48 - 2017-07-07 02:29 - 00349600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
    2017-07-11 21:48 - 2017-07-07 02:29 - 00123520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Clipc.dll
    2017-07-11 21:48 - 2017-07-07 02:27 - 06759512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
    2017-07-11 21:48 - 2017-07-07 02:27 - 03670016 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
    2017-07-11 21:48 - 2017-07-07 02:27 - 01050624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll
    2017-07-11 21:48 - 2017-07-07 02:27 - 00557568 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieui.dll
    2017-07-11 21:48 - 2017-07-07 02:27 - 00443392 _____ (Microsoft Corporation) C:\WINDOWS\system32\PerceptionSimulationExtensions.dll
    2017-07-11 21:48 - 2017-07-07 02:27 - 00360960 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConhostV2.dll
    2017-07-11 21:48 - 2017-07-07 02:26 - 20373408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
    2017-07-11 21:48 - 2017-07-07 02:26 - 17364992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
    2017-07-11 21:48 - 2017-07-07 02:26 - 01529384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmde.dll
    2017-07-11 21:48 - 2017-07-07 02:26 - 01195240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll
    2017-07-11 21:48 - 2017-07-07 02:26 - 00988168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
    2017-07-11 21:48 - 2017-07-07 02:25 - 02199552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
    2017-07-11 21:48 - 2017-07-07 02:25 - 00035232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininitext.dll
    2017-07-11 21:48 - 2017-07-07 02:23 - 00583160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll
    2017-07-11 21:48 - 2017-07-07 02:23 - 00110592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
    2017-07-11 21:48 - 2017-07-07 02:23 - 00095232 _____ (Microsoft Corporation) C:\WINDOWS\system32\wudriver.dll
    2017-07-11 21:48 - 2017-07-07 02:22 - 07931392 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
    2017-07-11 21:48 - 2017-07-07 02:22 - 00520704 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll
    2017-07-11 21:48 - 2017-07-07 02:22 - 00130048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthpan.sys
    2017-07-11 21:48 - 2017-07-07 02:21 - 00064512 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsrv.dll
    2017-07-11 21:48 - 2017-07-07 02:20 - 23681536 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
    2017-07-11 21:48 - 2017-07-07 02:20 - 08331264 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
    2017-07-11 21:48 - 2017-07-07 02:20 - 00175616 _____ (Microsoft Corporation) C:\WINDOWS\system32\prntvpt.dll
    2017-07-11 21:48 - 2017-07-07 02:19 - 07149056 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll
    2017-07-11 21:48 - 2017-07-07 02:19 - 00527360 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadcloudap.dll
    2017-07-11 21:48 - 2017-07-07 02:19 - 00256000 _____ (Microsoft Corporation) C:\WINDOWS\system32\domgmt.dll
    2017-07-11 21:48 - 2017-07-07 02:19 - 00165888 _____ (Microsoft Corporation) C:\WINDOWS\system32\storewuauth.dll
    2017-07-11 21:48 - 2017-07-07 02:18 - 07336448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
    2017-07-11 21:48 - 2017-07-07 02:18 - 00548864 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorService.dll
    2017-07-11 21:48 - 2017-07-07 02:18 - 00353280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wldap32.dll
    2017-07-11 21:48 - 2017-07-07 02:18 - 00274944 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecsExt.dll
    2017-07-11 21:48 - 2017-07-07 02:17 - 01878016 _____ (Microsoft Corporation) C:\WINDOWS\system32\AzureSettingSyncProvider.dll
    2017-07-11 21:48 - 2017-07-07 02:17 - 01260544 _____ (Microsoft Corporation) C:\WINDOWS\system32\GamePanel.exe
    2017-07-11 21:48 - 2017-07-07 02:17 - 00692736 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
    2017-07-11 21:48 - 2017-07-07 02:17 - 00588800 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
    2017-07-11 21:48 - 2017-07-07 02:17 - 00422400 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpAXHolder.dll
    2017-07-11 21:48 - 2017-07-07 02:17 - 00229888 _____ (Microsoft Corporation) C:\WINDOWS\system32\SIHClient.exe
    2017-07-11 21:48 - 2017-07-07 02:16 - 12786176 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
    2017-07-11 21:48 - 2017-07-07 02:16 - 00925696 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll
    2017-07-11 21:48 - 2017-07-07 02:16 - 00545792 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
    2017-07-11 21:48 - 2017-07-07 02:15 - 08238080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
    2017-07-11 21:48 - 2017-07-07 02:15 - 00922112 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
    2017-07-11 21:48 - 2017-07-07 02:14 - 08211968 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
    2017-07-11 21:48 - 2017-07-07 02:14 - 03784704 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapRouter.dll
    2017-07-11 21:48 - 2017-07-07 02:14 - 02956800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
    2017-07-11 21:48 - 2017-07-07 02:14 - 01802240 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
    2017-07-11 21:48 - 2017-07-07 02:14 - 01448960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
    2017-07-11 21:48 - 2017-07-07 02:14 - 00790016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.dll
    2017-07-11 21:48 - 2017-07-07 02:14 - 00570880 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhotoScreensaver.scr
    2017-07-11 21:48 - 2017-07-07 02:13 - 13839872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
    2017-07-11 21:48 - 2017-07-07 02:13 - 05892096 _____ (Microsoft Corporation) C:\WINDOWS\system32\d2d1.dll
    2017-07-11 21:48 - 2017-07-07 02:13 - 00840192 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll
    2017-07-11 21:48 - 2017-07-07 02:12 - 04730880 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
    2017-07-11 21:48 - 2017-07-07 02:12 - 03307008 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
    2017-07-11 21:48 - 2017-07-07 02:12 - 02499584 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll
    2017-07-11 21:48 - 2017-07-07 02:12 - 02199552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.Resources.dll
    2017-07-11 21:48 - 2017-07-07 02:12 - 02055168 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
    2017-07-11 21:48 - 2017-07-07 02:12 - 01713664 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActiveSyncProvider.dll
    2017-07-11 21:48 - 2017-07-07 02:12 - 01420800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Maps.dll
    2017-07-11 21:48 - 2017-07-07 02:12 - 01305088 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
    2017-07-11 21:48 - 2017-07-07 02:12 - 01293824 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll
    2017-07-11 21:48 - 2017-07-07 02:12 - 01142272 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
    2017-07-11 21:48 - 2017-07-07 02:12 - 00706560 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
    2017-07-11 21:48 - 2017-07-07 02:11 - 03139584 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll
    2017-07-11 21:48 - 2017-07-07 02:11 - 02829824 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
    2017-07-11 21:48 - 2017-07-07 02:11 - 02649600 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
    2017-07-11 21:48 - 2017-07-07 02:11 - 02177024 _____ (Microsoft Corporation) C:\WINDOWS\system32\OpcServices.dll
    2017-07-11 21:48 - 2017-07-07 02:11 - 01888256 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
    2017-07-11 21:48 - 2017-07-07 02:11 - 01812480 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll
    2017-07-11 21:48 - 2017-07-07 02:11 - 00986112 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
    2017-07-11 21:48 - 2017-07-07 02:10 - 05557760 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbgeng.dll
    2017-07-11 21:48 - 2017-07-07 02:10 - 04707840 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
    2017-07-11 21:48 - 2017-07-07 02:10 - 02444288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
    2017-07-11 21:48 - 2017-07-07 02:10 - 00079872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wudriver.dll
    2017-07-11 21:48 - 2017-07-07 02:10 - 00025088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eapprovp.dll
    2017-07-11 21:48 - 2017-07-07 02:09 - 20504576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
    2017-07-11 21:48 - 2017-07-07 02:09 - 00365056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll
    2017-07-11 21:48 - 2017-07-07 02:08 - 00285696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb10.sys
    2017-07-11 21:48 - 2017-07-07 02:07 - 00272896 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToReceiver.dll
    2017-07-11 21:48 - 2017-07-07 02:07 - 00117248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\raschap.dll
    2017-07-11 21:48 - 2017-07-07 02:06 - 00412160 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsApi.dll
    2017-07-11 21:48 - 2017-07-07 02:06 - 00241152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecsExt.dll
    2017-07-11 21:48 - 2017-07-07 02:06 - 00205824 _____ (Microsoft Corporation) C:\WINDOWS\system32\sensrsvc.dll
    2017-07-11 21:48 - 2017-07-07 02:05 - 19335168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
    2017-07-11 21:48 - 2017-07-07 02:05 - 11870720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
    2017-07-11 21:48 - 2017-07-07 02:05 - 06728192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
    2017-07-11 21:48 - 2017-07-07 02:05 - 05719040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingMaps.dll
    2017-07-11 21:48 - 2017-07-07 02:05 - 00502784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DevicePairing.dll
    2017-07-11 21:48 - 2017-07-07 02:05 - 00370176 _____ (Microsoft Corporation) C:\WINDOWS\system32\msinfo32.exe
    2017-07-11 21:48 - 2017-07-07 02:05 - 00312320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Wldap32.dll
    2017-07-11 21:48 - 2017-07-07 02:04 - 05961216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
    2017-07-11 21:48 - 2017-07-07 02:04 - 01403392 _____ (Microsoft Corporation) C:\WINDOWS\system32\wdc.dll
    2017-07-11 21:48 - 2017-07-07 02:04 - 01248768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AzureSettingSyncProvider.dll
    2017-07-11 21:48 - 2017-07-07 02:04 - 00754176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
    2017-07-11 21:48 - 2017-07-07 02:04 - 00506368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
    2017-07-11 21:48 - 2017-07-07 02:04 - 00394240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Management.dll
    2017-07-11 21:48 - 2017-07-07 02:04 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\system32\csrsrv.dll
    2017-07-11 21:48 - 2017-07-07 02:03 - 06123520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mos.dll
    2017-07-11 21:48 - 2017-07-07 02:03 - 00636416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WpcWebFilter.dll
    2017-07-11 21:48 - 2017-07-07 02:03 - 00446464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rastls.dll
    2017-07-11 21:48 - 2017-07-07 02:02 - 00952832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comdlg32.dll
    2017-07-11 21:48 - 2017-07-07 02:02 - 00508416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhotoScreensaver.scr
    2017-07-11 21:48 - 2017-07-07 02:01 - 06287360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
    2017-07-11 21:48 - 2017-07-07 02:01 - 02859520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
    2017-07-11 21:48 - 2017-07-07 02:00 - 07596544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
    2017-07-11 21:48 - 2017-07-07 02:00 - 05225984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll
    2017-07-11 21:48 - 2017-07-07 02:00 - 02588160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapRouter.dll
    2017-07-11 21:48 - 2017-07-07 02:00 - 01626624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
    2017-07-11 21:48 - 2017-07-07 02:00 - 01565184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3.dll
    2017-07-11 21:48 - 2017-07-07 02:00 - 01019904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aadtb.dll
    2017-07-11 21:48 - 2017-07-07 01:59 - 04417024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExplorerFrame.dll
    2017-07-11 21:48 - 2017-07-07 01:59 - 03656704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
    2017-07-11 21:48 - 2017-07-07 01:59 - 01494016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActiveSyncProvider.dll
    2017-07-11 21:48 - 2017-07-07 01:59 - 01355264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OpcServices.dll
    2017-07-11 21:48 - 2017-07-07 01:59 - 00787456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
    2017-07-11 21:48 - 2017-07-07 01:58 - 04559360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbgeng.dll
    2017-07-11 21:48 - 2017-07-07 01:58 - 02782720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msftedit.dll
    2017-07-11 21:48 - 2017-07-07 01:58 - 02298368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
    2017-07-11 21:48 - 2017-07-07 01:58 - 01237504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.Maps.dll
    2017-07-11 21:48 - 2017-07-07 01:55 - 00342528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMPhoto.dll
    2017-07-11 21:48 - 2017-07-07 01:55 - 00329216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SensorsApi.dll
    2017-07-11 21:48 - 2017-07-07 01:53 - 01301504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wdc.dll
    2017-07-11 21:48 - 2017-07-07 01:53 - 00338432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msinfo32.exe
    2017-07-11 21:48 - 2017-07-01 18:52 - 00031932 _____ C:\WINDOWS\system32\edgehtmlpluginpolicy.bin
    2017-07-11 21:48 - 2017-06-20 02:18 - 01564576 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
    2017-07-11 21:48 - 2017-06-20 02:18 - 00096672 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
    2017-07-11 21:48 - 2017-06-20 02:17 - 00629152 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
    2017-07-11 21:48 - 2017-06-20 02:17 - 00544160 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
    2017-07-11 21:48 - 2017-06-20 02:17 - 00334240 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
    2017-07-11 21:48 - 2017-06-20 02:17 - 00034720 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe
    2017-07-11 21:48 - 2017-06-20 02:16 - 01214880 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
    2017-07-11 21:48 - 2017-06-20 02:16 - 00335776 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcntel.dll
    2017-07-11 21:48 - 2017-06-20 02:15 - 00233376 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
    2017-07-11 21:48 - 2017-06-20 02:11 - 01395152 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
    2017-07-11 21:48 - 2017-06-20 02:11 - 00411992 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSAudDecMFT.dll
    2017-07-11 21:48 - 2017-06-20 02:10 - 02327456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
    2017-07-11 21:48 - 2017-06-20 02:10 - 01930320 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
    2017-07-11 21:48 - 2017-06-20 02:08 - 01242528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
    2017-07-11 21:48 - 2017-06-20 02:06 - 00279968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msiscsi.sys
    2017-07-11 21:48 - 2017-06-20 02:05 - 01057832 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll
    2017-07-11 21:48 - 2017-06-20 02:04 - 04847424 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
    2017-07-11 21:48 - 2017-06-20 02:04 - 00472728 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanager.dll
    2017-07-11 21:48 - 2017-06-20 02:03 - 00820128 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
    2017-07-11 21:48 - 2017-06-20 02:03 - 00102312 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredentialUIBroker.exe
    2017-07-11 21:48 - 2017-06-20 02:02 - 02645688 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
    2017-07-11 21:48 - 2017-06-20 02:02 - 01055648 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll
    2017-07-11 21:48 - 2017-06-20 02:00 - 00558920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.dll
    2017-07-11 21:48 - 2017-06-20 02:00 - 00255904 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll
    2017-07-11 21:48 - 2017-06-20 02:00 - 00142752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wcifs.sys
    2017-07-11 21:48 - 2017-06-20 01:59 - 06554928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
    2017-07-11 21:48 - 2017-06-20 01:59 - 01220072 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
    2017-07-11 21:48 - 2017-06-20 01:59 - 01054280 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
    2017-07-11 21:48 - 2017-06-20 01:59 - 00583304 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe
    2017-07-11 21:48 - 2017-06-20 01:59 - 00467504 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFCaptureEngine.dll
    2017-07-11 21:48 - 2017-06-20 01:58 - 00833160 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditionUpgradeManagerObj.dll
    2017-07-11 21:48 - 2017-06-20 01:58 - 00406072 _____ (Microsoft Corporation) C:\WINDOWS\system32\MMDevAPI.dll
    2017-07-11 21:48 - 2017-06-20 01:57 - 02681760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
    2017-07-11 21:48 - 2017-06-20 01:57 - 00204192 _____ (Microsoft Corporation) C:\WINDOWS\system32\basecsp.dll
    2017-07-11 21:48 - 2017-06-20 01:34 - 00192416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aepic.dll
    2017-07-11 21:48 - 2017-06-20 01:15 - 01620368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
    2017-07-11 21:48 - 2017-06-20 01:15 - 00455104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSAudDecMFT.dll
    2017-07-11 21:48 - 2017-06-20 01:14 - 01150784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ucrtbase.dll
    2017-07-11 21:48 - 2017-06-20 01:13 - 00787712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll
    2017-07-11 21:48 - 2017-06-20 01:13 - 00056832 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinBioDataModelOOBE.exe
    2017-07-11 21:48 - 2017-06-20 01:12 - 00293376 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
    2017-07-11 21:48 - 2017-06-20 01:12 - 00264192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbvideo.sys
    2017-07-11 21:48 - 2017-06-20 01:12 - 00231936 _____ (Microsoft Corporation) C:\WINDOWS\system32\DolbyMATEnc.dll
    2017-07-11 21:48 - 2017-06-20 01:12 - 00115712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bridge.sys
    2017-07-11 21:48 - 2017-06-20 01:12 - 00086528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hdaudbus.sys
    2017-07-11 21:48 - 2017-06-20 01:11 - 00200192 _____ (Microsoft Corporation) C:\WINDOWS\system32\ScDeviceEnum.dll
    2017-07-11 21:48 - 2017-06-20 01:11 - 00084992 _____ (Microsoft Corporation) C:\WINDOWS\system32\MshtmlDac.dll
    2017-07-11 21:48 - 2017-06-20 01:10 - 00778240 _____ (Microsoft Corporation) C:\WINDOWS\system32\DolbyHrtfEnc.dll
    2017-07-11 21:48 - 2017-06-20 01:10 - 00722432 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
    2017-07-11 21:48 - 2017-06-20 01:10 - 00315392 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsEnvironment.Desktop.dll
    2017-07-11 21:48 - 2017-06-20 01:10 - 00188928 _____ (Microsoft Corporation) C:\WINDOWS\system32\wincredui.dll
    2017-07-11 21:48 - 2017-06-20 01:10 - 00096256 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
    2017-07-11 21:48 - 2017-06-20 01:09 - 00555008 _____ (Microsoft Corporation) C:\WINDOWS\system32\WFDSConMgrSvc.dll
    2017-07-11 21:48 - 2017-06-20 01:09 - 00551424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Payments.dll
    2017-07-11 21:48 - 2017-06-20 01:09 - 00497152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Shell.BlueLightReduction.dll
    2017-07-11 21:48 - 2017-06-20 01:09 - 00427008 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll
    2017-07-11 21:48 - 2017-06-20 01:09 - 00406032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\policymanager.dll
    2017-07-11 21:48 - 2017-06-20 01:09 - 00357888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Narrator.exe
    2017-07-11 21:48 - 2017-06-20 01:09 - 00250368 _____ (Microsoft Corporation) C:\WINDOWS\system32\SCardSvr.dll
    2017-07-11 21:48 - 2017-06-20 01:09 - 00208384 _____ (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll
    2017-07-11 21:48 - 2017-06-20 01:09 - 00189952 _____ (Microsoft Corporation) C:\WINDOWS\system32\certprop.dll
    2017-07-11 21:48 - 2017-06-20 01:09 - 00140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\iepeers.dll
    2017-07-11 21:48 - 2017-06-20 01:09 - 00062464 _____ (Microsoft Corporation) C:\WINDOWS\system32\dataclen.dll
    2017-07-11 21:48 - 2017-06-20 01:08 - 04469840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
    2017-07-11 21:48 - 2017-06-20 01:08 - 00646656 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockHostingFramework.dll
    2017-07-11 21:48 - 2017-06-20 01:08 - 00386560 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
    2017-07-11 21:48 - 2017-06-20 01:08 - 00365056 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Notifications.dll
    2017-07-11 21:48 - 2017-06-20 01:08 - 00328704 _____ (Microsoft Corporation) C:\WINDOWS\system32\PsmServiceExtHost.dll
    2017-07-11 21:48 - 2017-06-20 01:08 - 00327168 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinBioDataModel.dll
    2017-07-11 21:48 - 2017-06-20 01:08 - 00274944 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll
    2017-07-11 21:48 - 2017-06-20 01:08 - 00251392 _____ (Microsoft Corporation) C:\WINDOWS\system32\scksp.dll
    2017-07-11 21:48 - 2017-06-20 01:07 - 02475136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10warp.dll
    2017-07-11 21:48 - 2017-06-20 01:07 - 00982016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys
    2017-07-11 21:48 - 2017-06-20 01:07 - 00823296 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApi.dll
    2017-07-11 21:48 - 2017-06-20 01:07 - 00632832 _____ (Microsoft Corporation) C:\WINDOWS\system32\tileobjserver.dll
    2017-07-11 21:48 - 2017-06-20 01:07 - 00626176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll
    2017-07-11 21:48 - 2017-06-20 01:07 - 00510976 _____ (Microsoft Corporation) C:\WINDOWS\system32\TDLMigration.dll
    2017-07-11 21:48 - 2017-06-20 01:07 - 00411136 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll
    2017-07-11 21:48 - 2017-06-20 01:07 - 00346016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudExperienceHostCommon.dll
    2017-07-11 21:48 - 2017-06-20 01:07 - 00138656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudExperienceHostUser.dll
    2017-07-11 21:48 - 2017-06-20 01:06 - 00942592 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbiosrvc.dll
    2017-07-11 21:48 - 2017-06-20 01:06 - 00847872 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
    2017-07-11 21:48 - 2017-06-20 01:06 - 00754592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll
    2017-07-11 21:48 - 2017-06-20 01:06 - 00751104 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
    2017-07-11 21:48 - 2017-06-20 01:06 - 00411648 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll
    2017-07-11 21:48 - 2017-06-20 01:06 - 00299520 _____ (Microsoft Corporation) C:\WINDOWS\system32\AboveLockAppHost.dll
    2017-07-11 21:48 - 2017-06-20 01:06 - 00278944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\thumbcache.dll
    2017-07-11 21:48 - 2017-06-20 01:05 - 04447744 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
    2017-07-11 21:48 - 2017-06-20 01:05 - 01468416 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
    2017-07-11 21:48 - 2017-06-20 01:05 - 00687616 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
    2017-07-11 21:48 - 2017-06-20 01:05 - 00585216 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppReadiness.dll
    2017-07-11 21:48 - 2017-06-20 01:05 - 00438096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.dll
    2017-07-11 21:48 - 2017-06-20 01:05 - 00417792 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgentUserBroker.exe
    2017-07-11 21:48 - 2017-06-20 01:05 - 00406528 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputSwitch.dll
    2017-07-11 21:48 - 2017-06-20 01:05 - 00374784 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe
    2017-07-11 21:48 - 2017-06-20 01:05 - 00364032 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
    2017-07-11 21:48 - 2017-06-20 01:05 - 00056832 _____ (Microsoft Corporation) C:\WINDOWS\system32\cldapi.dll
    2017-07-11 21:48 - 2017-06-20 01:04 - 02330520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
    2017-07-11 21:48 - 2017-06-20 01:04 - 01818624 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll
    2017-07-11 21:48 - 2017-06-20 01:04 - 01425920 _____ (Microsoft Corporation) C:\WINDOWS\system32\certutil.exe
    2017-07-11 21:48 - 2017-06-20 01:04 - 01178528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxPackaging.dll
    2017-07-11 21:48 - 2017-06-20 01:04 - 01177600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Unistore.dll
    2017-07-11 21:48 - 2017-06-20 01:04 - 01077496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webservices.dll
    2017-07-11 21:48 - 2017-06-20 01:04 - 00899072 _____ (Microsoft Corporation) C:\WINDOWS\system32\SmartcardCredentialProvider.dll
    2017-07-11 21:48 - 2017-06-20 01:04 - 00802816 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
    2017-07-11 21:48 - 2017-06-20 01:04 - 00400896 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXTaskFactory.dll
    2017-07-11 21:48 - 2017-06-20 01:04 - 00181656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll
    2017-07-11 21:48 - 2017-06-20 01:04 - 00178176 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditionUpgradeHelper.dll
    2017-07-11 21:48 - 2017-06-20 01:04 - 00049656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msasn1.dll
    2017-07-11 21:48 - 2017-06-20 01:03 - 05806048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
    2017-07-11 21:48 - 2017-06-20 01:03 - 02077184 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
    2017-07-11 21:48 - 2017-06-20 01:03 - 01396224 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
    2017-07-11 21:48 - 2017-06-20 01:03 - 00864240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
    2017-07-11 21:48 - 2017-06-20 01:03 - 00443728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFCaptureEngine.dll
    2017-07-11 21:48 - 2017-06-20 01:02 - 03377664 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
    2017-07-11 21:48 - 2017-06-20 01:02 - 03204096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Bluetooth.Profiles.Gatt.dll
    2017-07-11 21:48 - 2017-06-20 01:02 - 02804736 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
    2017-07-11 21:48 - 2017-06-20 01:02 - 01886208 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
    2017-07-11 21:48 - 2017-06-20 01:02 - 01121928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
    2017-07-11 21:48 - 2017-06-20 01:02 - 00681984 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
    2017-07-11 21:48 - 2017-06-20 01:02 - 00354400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MMDevAPI.dll
    2017-07-11 21:48 - 2017-06-20 01:01 - 04536320 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
    2017-07-11 21:48 - 2017-06-20 01:01 - 04396032 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_47.dll
    2017-07-11 21:48 - 2017-06-20 01:01 - 03803136 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsThresholdAdminFlowUI.dll
    2017-07-11 21:48 - 2017-06-20 01:01 - 03332096 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRH.dll
    2017-07-11 21:48 - 2017-06-20 01:01 - 03059200 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll
    2017-07-11 21:48 - 2017-06-20 01:01 - 01076736 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll
    2017-07-11 21:48 - 2017-06-20 01:01 - 00176032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\basecsp.dll
    2017-07-11 21:48 - 2017-06-20 01:00 - 03057664 _____ (Microsoft Corporation) C:\WINDOWS\system32\CertEnroll.dll
    2017-07-11 21:48 - 2017-06-20 01:00 - 02597888 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
    2017-07-11 21:48 - 2017-06-20 01:00 - 02171392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll
    2017-07-11 21:48 - 2017-06-20 00:59 - 02938880 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputService.dll
    2017-07-11 21:48 - 2017-06-20 00:59 - 01674240 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
    2017-07-11 21:48 - 2017-06-20 00:59 - 01357824 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
    2017-07-11 21:48 - 2017-06-20 00:58 - 00625152 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
    2017-07-11 21:48 - 2017-06-20 00:56 - 00985600 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSWorkspace.dll
    2017-07-11 21:48 - 2017-06-20 00:54 - 00059392 _____ (Microsoft Corporation) C:\WINDOWS\system32\DmApiSetExtImplDesktop.dll
    2017-07-11 21:48 - 2017-06-20 00:49 - 00899072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctfuimanager.dll
    2017-07-11 21:48 - 2017-06-20 00:49 - 00331776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleacc.dll
    2017-07-11 21:48 - 2017-06-20 00:46 - 00132096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Microsoft.Bluetooth.Profiles.Gatt.Interface.dll
    2017-07-11 21:48 - 2017-06-20 00:45 - 00111104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.System.Profile.RetailInfo.dll
    2017-07-11 21:48 - 2017-06-20 00:45 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MshtmlDac.dll
    2017-07-11 21:48 - 2017-06-20 00:43 - 00329728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll
    2017-07-11 21:48 - 2017-06-20 00:43 - 00173568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ClipboardServer.dll
    2017-07-11 21:48 - 2017-06-20 00:43 - 00151552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wincredui.dll
    2017-07-11 21:48 - 2017-06-20 00:43 - 00139776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BluetoothApis.dll
    2017-07-11 21:48 - 2017-06-20 00:43 - 00124928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iepeers.dll
    2017-07-11 21:48 - 2017-06-20 00:43 - 00080384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmled.dll
    2017-07-11 21:48 - 2017-06-20 00:43 - 00052224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dataclen.dll
    2017-07-11 21:48 - 2017-06-20 00:42 - 00641024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certca.dll
    2017-07-11 21:48 - 2017-06-20 00:42 - 00387584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Payments.dll
    2017-07-11 21:48 - 2017-06-20 00:42 - 00338432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
    2017-07-11 21:48 - 2017-06-20 00:42 - 00266240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtrans.dll
    2017-07-11 21:48 - 2017-06-20 00:42 - 00226304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scksp.dll
    2017-07-11 21:48 - 2017-06-20 00:42 - 00121856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sendmail.dll
    2017-07-11 21:48 - 2017-06-20 00:41 - 00734208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcastdvr.exe
    2017-07-11 21:48 - 2017-06-20 00:41 - 00646656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MbaeApi.dll
    2017-07-11 21:48 - 2017-06-20 00:41 - 00601088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SndVolSSO.dll
    2017-07-11 21:48 - 2017-06-20 00:41 - 00433152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Bluetooth.dll
    2017-07-11 21:48 - 2017-06-20 00:41 - 00201216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\credprovhost.dll
    2017-07-11 21:48 - 2017-06-20 00:40 - 00368128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgentUserBroker.exe
    2017-07-11 21:48 - 2017-06-20 00:40 - 00356864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActivationManager.dll
    2017-07-11 21:48 - 2017-06-20 00:40 - 00342016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certcli.dll
    2017-07-11 21:48 - 2017-06-20 00:40 - 00247808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AboveLockAppHost.dll
    2017-07-11 21:48 - 2017-06-20 00:40 - 00230912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edputil.dll
    2017-07-11 21:48 - 2017-06-20 00:40 - 00038400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBrokerUI.dll
    2017-07-11 21:48 - 2017-06-20 00:39 - 02814464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\themeui.dll
    2017-07-11 21:48 - 2017-06-20 00:39 - 02671616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
    2017-07-11 21:48 - 2017-06-20 00:39 - 00969728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Unistore.dll
    2017-07-11 21:48 - 2017-06-20 00:39 - 00646144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mmsys.cpl
    2017-07-11 21:48 - 2017-06-20 00:39 - 00471040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VAN.dll
    2017-07-11 21:48 - 2017-06-20 00:39 - 00312320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
    2017-07-11 21:48 - 2017-06-20 00:38 - 01451008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll
    2017-07-11 21:48 - 2017-06-20 00:38 - 01285120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbghelp.dll
    2017-07-11 21:48 - 2017-06-20 00:38 - 01171968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certutil.exe
    2017-07-11 21:48 - 2017-06-20 00:38 - 00663040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
    2017-07-11 21:48 - 2017-06-20 00:38 - 00648192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SmartcardCredentialProvider.dll
    2017-07-11 21:48 - 2017-06-20 00:38 - 00329728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgent.exe
    2017-07-11 21:48 - 2017-06-20 00:37 - 02008576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
    2017-07-11 21:48 - 2017-06-20 00:36 - 03667456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_47.dll
    2017-07-11 21:48 - 2017-06-20 00:35 - 02679296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SRH.dll
    2017-07-11 21:48 - 2017-06-20 00:35 - 02132480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
    2017-07-11 21:48 - 2017-06-20 00:35 - 00050176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cldapi.dll
    2017-07-11 21:48 - 2017-06-20 00:34 - 04056576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
    2017-07-11 21:48 - 2017-06-20 00:34 - 02750464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CertEnroll.dll
    2017-07-11 21:48 - 2017-06-20 00:34 - 02211328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputService.dll
    2017-07-11 21:48 - 2017-06-20 00:34 - 01492480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Bluetooth.dll
    2017-07-11 21:48 - 2017-06-20 00:34 - 00760832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasapi32.dll
    2017-07-11 21:48 - 2017-06-20 00:31 - 00334848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToDevice.dll
    2017-07-11 21:48 - 2017-06-20 00:30 - 00209920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wdmaud.drv
    2017-07-11 21:48 - 2017-06-20 00:30 - 00157696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpchttp.dll
    2017-07-11 21:48 - 2017-06-20 00:30 - 00089088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\olepro32.dll
    2017-07-11 21:48 - 2017-06-20 00:28 - 00584192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\apphelp.dll
    2017-07-11 21:47 - 2017-07-07 03:27 - 00965024 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.efi
    2017-07-11 21:47 - 2017-07-07 03:27 - 00821664 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.exe
    2017-07-11 21:47 - 2017-07-07 03:22 - 00119384 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcmnutils.dll
    2017-07-11 21:47 - 2017-07-07 03:17 - 01017760 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
    2017-07-11 21:47 - 2017-07-07 03:12 - 00228256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys
    2017-07-11 21:47 - 2017-07-07 02:27 - 01640448 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
    2017-07-11 21:47 - 2017-07-07 02:27 - 00859136 _____ (Microsoft Corporation) C:\WINDOWS\system32\uDWM.dll
    2017-07-11 21:47 - 2017-07-07 02:27 - 00577024 _____ (Microsoft Corporation) C:\WINDOWS\system32\duser.dll
    2017-07-11 21:47 - 2017-07-07 02:24 - 00114688 _____ (Microsoft Corporation) C:\WINDOWS\system32\officecsp.dll
    2017-07-11 21:47 - 2017-07-07 02:23 - 00113152 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhosdeployment.dll
    2017-07-11 21:47 - 2017-07-07 02:23 - 00029696 _____ (Microsoft Corporation) C:\WINDOWS\system32\eapprovp.dll
    2017-07-11 21:47 - 2017-07-07 02:21 - 00096256 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActiveSyncCsp.dll
    2017-07-11 21:47 - 2017-07-07 02:19 - 00137216 _____ (Microsoft Corporation) C:\WINDOWS\system32\raschap.dll
    2017-07-11 21:47 - 2017-07-07 02:18 - 00563712 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicePairing.dll
    2017-07-11 21:47 - 2017-07-07 02:17 - 00536064 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll
    2017-07-11 21:47 - 2017-07-07 02:14 - 00497152 _____ (Microsoft Corporation) C:\WINDOWS\system32\rastls.dll
    2017-07-11 21:47 - 2017-07-07 02:11 - 00406528 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
    2017-07-11 21:47 - 2017-07-07 02:07 - 00430080 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToDevice.dll
    2017-07-11 21:47 - 2017-07-07 02:07 - 00391168 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPhoto.dll
    2017-07-11 21:47 - 2017-07-07 02:04 - 01703424 _____ (Microsoft Corporation) C:\WINDOWS\system32\aitstatic.exe
    2017-07-11 21:47 - 2017-06-20 02:17 - 00136096 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
    2017-07-11 21:47 - 2017-06-20 02:03 - 00179608 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostUser.dll
    2017-07-11 21:47 - 2017-06-20 02:02 - 00426912 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostCommon.dll
    2017-07-11 21:47 - 2017-06-20 01:58 - 00203168 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostBroker.dll
    2017-07-11 21:47 - 2017-06-20 01:16 - 00970752 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctfuimanager.dll
    2017-07-11 21:47 - 2017-06-20 01:16 - 00417280 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleacc.dll
    2017-07-11 21:47 - 2017-06-20 01:14 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mskssrv.sys
    2017-07-11 21:47 - 2017-06-20 01:13 - 00216064 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Bluetooth.Profiles.Gatt.Interface.dll
    2017-07-11 21:47 - 2017-06-20 01:13 - 00081408 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanprotdim.dll
    2017-07-11 21:47 - 2017-06-20 01:13 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\WFDSConMgr.dll
    2017-07-11 21:47 - 2017-06-20 01:12 - 00144384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.System.Profile.RetailInfo.dll
    2017-07-11 21:47 - 2017-06-20 01:10 - 00189440 _____ (Microsoft Corporation) C:\WINDOWS\system32\BluetoothApis.dll
    2017-07-11 21:47 - 2017-06-20 01:09 - 00205312 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipboardServer.dll
    2017-07-11 21:47 - 2017-06-20 01:09 - 00135680 _____ (Microsoft Corporation) C:\WINDOWS\system32\sendmail.dll
    2017-07-11 21:47 - 2017-06-20 01:08 - 00791040 _____ (Microsoft Corporation) C:\WINDOWS\system32\certca.dll
    2017-07-11 21:47 - 2017-06-20 01:07 - 00916992 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvr.exe
    2017-07-11 21:47 - 2017-06-20 01:07 - 00757248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdiWiFi.sys
    2017-07-11 21:47 - 2017-06-20 01:07 - 00621056 _____ (Microsoft Corporation) C:\WINDOWS\system32\SndVolSSO.dll
    2017-07-11 21:47 - 2017-06-20 01:06 - 00455680 _____ (Microsoft Corporation) C:\WINDOWS\system32\certcli.dll
    2017-07-11 21:47 - 2017-06-20 01:06 - 00335872 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudDomainJoinDataModelServer.dll
    2017-07-11 21:47 - 2017-06-20 01:06 - 00253440 _____ (Microsoft Corporation) C:\WINDOWS\system32\edputil.dll
    2017-07-11 21:47 - 2017-06-20 01:06 - 00045056 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBrokerUI.dll
    2017-07-11 21:47 - 2017-06-20 01:05 - 02873344 _____ (Microsoft Corporation) C:\WINDOWS\system32\themeui.dll
    2017-07-11 21:47 - 2017-06-20 01:05 - 00873472 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll
    2017-07-11 21:47 - 2017-06-20 01:05 - 00696320 _____ (Microsoft Corporation) C:\WINDOWS\system32\mmsys.cpl
    2017-07-11 21:47 - 2017-06-20 01:02 - 00081920 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudDomainJoinAUG.dll
    2017-07-11 21:47 - 2017-06-20 01:01 - 00809984 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasapi32.dll
    2017-07-11 21:47 - 2017-06-20 01:01 - 00397312 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascustom.dll
    2017-07-11 21:47 - 2017-06-20 00:57 - 00290816 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmclient.exe
    2017-07-11 21:47 - 2017-06-20 00:57 - 00138752 _____ (Microsoft Corporation) C:\WINDOWS\system32\DMPushRouterCore.dll
    2017-07-11 21:47 - 2017-06-20 00:56 - 00600064 _____ (Microsoft Corporation) C:\WINDOWS\system32\FrameServer.dll
    2017-07-11 21:47 - 2017-06-20 00:56 - 00241152 _____ (Microsoft Corporation) C:\WINDOWS\system32\wdmaud.drv
    2017-07-10 22:09 - 2017-07-10 22:09 - 00000000 ____D C:\Users\crocq\AppData\Roaming\FiraxisLive
    2017-07-10 22:08 - 2017-07-10 22:08 - 00000000 ____D C:\Users\crocq\AppData\Roaming\ModLauncherWPF
    2017-07-10 19:44 - 2017-07-10 19:44 - 00000000 ____D C:\Users\stbxr\AppData\Local\CEF
    2017-07-10 19:42 - 2017-07-10 19:42 - 00000000 ____D C:\Users\stbxr\Desktop\Nouveau dossier
    2017-07-09 22:47 - 2017-07-09 23:01 - 00000000 ____D C:\Users\crocq\Downloads\Contact (1997) [1080p]
    2017-07-08 14:20 - 2017-07-12 17:32 - 00000000 ____D C:\Users\crocq\Desktop\Vulcain
    2017-07-08 13:51 - 2017-07-08 13:51 - 64025992 _____ (Malwarebytes ) C:\Users\crocq\Downloads\mb3-setup-35891.35891-3.1.2.1733-1.0.139-1.0.2060.exe
    2017-07-08 13:44 - 2017-07-08 13:46 - 00000000 ____D C:\AdwCleaner
    2017-07-08 13:43 - 2017-07-08 13:43 - 04110280 _____ C:\Users\crocq\Downloads\adwcleaner_6.047.exe
    2017-07-08 11:35 - 2017-07-08 11:35 - 00000000 ____D C:\Users\crocq\AppData\Local\Tempzxpsign9a8ac4ce78fa2ee7
    2017-07-08 11:35 - 2017-07-08 11:35 - 00000000 ____D C:\Users\crocq\AppData\Local\Tempzxpsign411a33a95293832f
    2017-07-08 10:50 - 2017-07-08 10:49 - 00084602 _____ C:\Users\crocq\Desktop\HocusPocus_SinterKlaas.pdf
    2017-07-03 21:33 - 2017-07-03 21:33 - 00000202 _____ C:\Users\crocq\Desktop\XCOM 2.url
    2017-07-03 00:06 - 2017-07-03 00:24 - 00000000 ____D C:\Users\crocq\Documents\Mount&Blade Warband Savegames
    2017-07-03 00:04 - 2017-07-03 00:19 - 00000000 ____D C:\Users\crocq\Documents\Mount&Blade Warband
    2017-07-03 00:04 - 2017-07-03 00:06 - 00000000 ____D C:\Users\crocq\AppData\Roaming\Mount&Blade Warband
    2017-07-02 23:53 - 2017-07-02 23:53 - 00000201 _____ C:\Users\crocq\Desktop\Mount & Blade Warband.url
    2017-07-02 20:18 - 2017-07-02 20:18 - 00000000 ____D C:\Users\crocq\ansel
    2017-07-02 19:31 - 2017-07-02 19:31 - 00000000 ____D C:\Users\crocq\AppData\Local\Tempzxpsignd60c41b90d9cf714
    2017-07-02 19:31 - 2017-07-02 19:31 - 00000000 ____D C:\Users\crocq\AppData\Local\Tempzxpsign85a17077dc917a31
    2017-07-01 20:42 - 2017-07-01 20:42 - 00002199 _____ C:\Users\Public\Desktop\TorGuard.lnk
    2017-07-01 20:42 - 2017-07-01 20:42 - 00000000 ____D C:\Users\crocq\AppData\Local\VPNetworkLLC
    2017-07-01 20:41 - 2017-07-01 20:41 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VPNetwork LLC
    2017-07-01 20:41 - 2017-07-01 20:41 - 00000000 ____D C:\Program Files\TAP-Windows
    2017-07-01 20:41 - 2017-07-01 20:41 - 00000000 ____D C:\Program Files (x86)\VPNetwork LLC
    2017-06-25 20:59 - 2017-06-25 21:00 - 00000000 ____D C:\Users\crocq\Downloads\THE SIMPSONS - Saison 21 (2009-2010)
    2017-06-25 20:43 - 2017-06-25 20:44 - 00000000 ____D C:\Users\crocq\Downloads\Brooklyn.Nine-Nine.S04.VOSTFR.WEB-DL.x264-ARK01
    2017-06-25 15:49 - 2017-06-25 15:49 - 00000000 ____D C:\Users\crocq\AppData\Local\Tempzxpsignf7e02f918f4ff1ec
    2017-06-25 15:49 - 2017-06-25 15:49 - 00000000 ____D C:\Users\crocq\AppData\Local\Tempzxpsign0feb0cebf6c90888
    2017-06-25 14:51 - 2017-06-25 14:51 - 00000000 ____D C:\Users\crocq\AppData\Local\Tempzxpsignf337cf88aed64fc4
    2017-06-25 14:51 - 2017-06-25 14:51 - 00000000 ____D C:\Users\crocq\AppData\Local\Tempzxpsign7a687d342312d671
    2017-06-24 18:22 - 2017-06-24 18:22 - 00000000 ____D C:\Users\crocq\AppData\Local\Tempzxpsignc87fc88a2fbeb235
    2017-06-24 18:22 - 2017-06-24 18:22 - 00000000 ____D C:\Users\crocq\AppData\Local\Tempzxpsign2cfa194283330b1f
    2017-06-24 15:23 - 2017-06-24 15:23 - 00000000 ____D C:\Users\crocq\AppData\Local\Tempzxpsigncdb1706ef9f99257
    2017-06-24 15:23 - 2017-06-24 15:23 - 00000000 ____D C:\Users\crocq\AppData\Local\Tempzxpsigna31bc913e7c3729b
    2017-06-24 15:17 - 2017-06-24 15:17 - 00000000 ____D C:\Users\crocq\AppData\Local\Tempzxpsignafe4454eeb4c4436
    2017-06-24 14:51 - 2017-06-24 14:51 - 00000000 ____D C:\Users\crocq\AppData\Local\Tempzxpsignff695c750a172951
    2017-06-24 14:51 - 2017-06-24 14:51 - 00000000 ____D C:\Users\crocq\AppData\Local\Tempzxpsigna0fecb58005ef6f3
    2017-06-24 14:51 - 2017-06-24 14:51 - 00000000 ____D C:\Users\crocq\AppData\Local\Tempzxpsign28583943a3fe9f43
    2017-06-24 11:22 - 2017-07-10 19:44 - 00000000 ____D C:\Users\stbxr\AppData\Local\NVIDIA Corporation
    2017-06-23 21:50 - 2017-06-23 21:50 - 00000000 ____D C:\Users\crocq\AppData\Local\Hinterland
    2017-06-23 21:49 - 2017-06-23 21:49 - 00000000 ____D C:\Users\crocq\AppData\LocalLow\Hinterland
    2017-06-23 19:47 - 2017-06-23 19:47 - 00000000 ____D C:\Users\crocq\Documents\Arma 3 - Other Profiles
    2017-06-23 18:13 - 2017-06-24 00:53 - 00000000 ____D C:\Users\crocq\AppData\Local\Argo
    2017-06-23 18:13 - 2017-06-23 18:16 - 00000000 ____D C:\Users\crocq\Documents\Argo
    2017-06-23 01:58 - 2017-06-23 01:58 - 00004308 _____ C:\WINDOWS\System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
    2017-06-23 01:58 - 2017-06-23 01:58 - 00004000 _____ C:\WINDOWS\System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
    2017-06-23 01:58 - 2017-06-23 01:58 - 00003994 _____ C:\WINDOWS\System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
    2017-06-23 01:58 - 2017-06-23 01:58 - 00003894 _____ C:\WINDOWS\System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
    2017-06-23 01:58 - 2017-06-23 01:58 - 00003866 _____ C:\WINDOWS\System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
    2017-06-23 01:58 - 2017-06-23 01:58 - 00003858 _____ C:\WINDOWS\System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
    2017-06-23 01:58 - 2017-06-23 01:58 - 00003696 _____ C:\WINDOWS\System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
    2017-06-23 01:58 - 2017-06-23 01:58 - 00003654 _____ C:\WINDOWS\System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
    2017-06-23 01:58 - 2017-06-23 01:58 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
    2017-06-23 01:58 - 2017-06-07 21:45 - 01893312 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspcap64.dll
    2017-06-23 01:58 - 2017-06-07 21:45 - 01755072 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspbridge64.dll
    2017-06-23 01:58 - 2017-06-07 21:45 - 01477056 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspcap.dll
    2017-06-23 01:58 - 2017-06-07 21:45 - 01317312 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspbridge.dll
    2017-06-23 01:58 - 2017-06-07 21:45 - 00121280 _____ C:\WINDOWS\system32\NvRtmpStreamer64.dll
    2017-06-23 01:58 - 2017-06-07 21:45 - 00001951 _____ C:\WINDOWS\NvTelemetryContainerRecovery.bat
    2017-06-23 01:57 - 2017-06-23 01:57 - 00000000 ____D C:\Program Files (x86)\VulkanRT
    2017-06-23 01:57 - 2017-06-07 21:45 - 00512960 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
    2017-06-23 01:57 - 2017-06-07 21:45 - 00418752 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
    2017-06-23 01:57 - 2017-06-07 19:38 - 00134592 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvStreaming.exe
    2017-06-23 01:57 - 2017-03-10 17:17 - 00536864 _____ C:\WINDOWS\system32\vulkan-1.dll
    2017-06-23 01:57 - 2017-03-10 17:17 - 00525600 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
    2017-06-23 01:57 - 2017-03-10 17:17 - 00254240 _____ C:\WINDOWS\system32\vulkaninfo.exe
    2017-06-23 01:57 - 2017-03-10 17:17 - 00233760 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
    2017-06-23 01:55 - 2017-06-07 21:45 - 40201664 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcompiler.dll
    2017-06-23 01:55 - 2017-06-07 21:45 - 35390584 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglv64.dll
    2017-06-23 01:55 - 2017-06-07 21:45 - 35281344 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcompiler.dll
    2017-06-23 01:55 - 2017-06-07 21:45 - 28624320 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglv32.dll
    2017-06-23 01:55 - 2017-06-07 21:45 - 11056272 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvptxJitCompiler.dll
    2017-06-23 01:55 - 2017-06-07 21:45 - 11028664 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
    2017-06-23 01:55 - 2017-06-07 21:45 - 10551256 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvopencl.dll
    2017-06-23 01:55 - 2017-06-07 21:45 - 09248144 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
    2017-06-23 01:55 - 2017-06-07 21:45 - 09014976 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvptxJitCompiler.dll
    2017-06-23 01:55 - 2017-06-07 21:45 - 08808488 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvopencl.dll
    2017-06-23 01:55 - 2017-06-07 21:45 - 03796928 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
    2017-06-23 01:55 - 2017-06-07 21:45 - 03625992 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
    2017-06-23 01:55 - 2017-06-07 21:45 - 03256440 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
    2017-06-23 01:55 - 2017-06-07 21:45 - 01988216 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6438253.dll
    2017-06-23 01:55 - 2017-06-07 21:45 - 01606776 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6438253.dll
    2017-06-23 01:55 - 2017-06-07 21:45 - 01278712 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncMFTH264.dll
    2017-06-23 01:55 - 2017-06-07 21:45 - 01275944 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncMFThevc.dll
    2017-06-23 01:55 - 2017-06-07 21:45 - 01056888 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
    2017-06-23 01:55 - 2017-06-07 21:45 - 00995736 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncMFTH264.dll
    2017-06-23 01:55 - 2017-06-07 21:45 - 00994240 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
    2017-06-23 01:55 - 2017-06-07 21:45 - 00993360 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncMFThevc.dll
    2017-06-23 01:55 - 2017-06-07 21:45 - 00964216 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
    2017-06-23 01:55 - 2017-06-07 21:45 - 00914880 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
    2017-06-23 01:55 - 2017-06-07 21:45 - 00775864 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
    2017-06-23 01:55 - 2017-06-07 21:45 - 00725112 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvDecMFTMjpeg.dll
    2017-06-23 01:55 - 2017-06-07 21:45 - 00688784 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvfatbinaryLoader.dll
    2017-06-23 01:55 - 2017-06-07 21:45 - 00618928 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmcumd.dll
    2017-06-23 01:55 - 2017-06-07 21:45 - 00612088 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
    2017-06-23 01:55 - 2017-06-07 21:45 - 00609728 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll
    2017-06-23 01:55 - 2017-06-07 21:45 - 00584128 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvDecMFTMjpeg.dll
    2017-06-23 01:55 - 2017-06-07 21:45 - 00577728 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvfatbinaryLoader.dll
    2017-06-23 01:55 - 2017-06-07 21:45 - 00499320 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll
    2017-06-23 01:55 - 2017-06-07 21:45 - 00175552 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvaudcap64v.dll
    2017-06-23 01:55 - 2017-06-07 21:45 - 00143296 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvaudcap32v.dll
    2017-06-23 01:55 - 2017-06-07 21:45 - 00057792 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvhci.sys
    2017-06-23 01:55 - 2017-06-07 21:45 - 00048064 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvad64v.sys
    2017-06-23 01:55 - 2017-06-07 21:45 - 00045976 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvhdap64.dll
    2017-06-21 23:36 - 2017-06-21 23:36 - 00000000 ____D C:\Users\crocq\AppData\Local\Tempzxpsignb760ac9c41a42ba9
    2017-06-21 23:36 - 2017-06-21 23:36 - 00000000 ____D C:\Users\crocq\AppData\Local\Tempzxpsign34bc9578663132d7
    2017-06-21 23:36 - 2017-06-21 23:36 - 00000000 ____D C:\Users\crocq\AppData\Local\Tempzxpsign2221473bb62656da
    2017-06-21 21:52 - 2017-07-09 22:46 - 00000000 ____D C:\Users\crocq\AppData\LocalLow\uTorrent
    2017-06-21 19:58 - 2017-06-21 19:58 - 934376020 _____ C:\WINDOWS\MEMORY.DMP
    2017-06-21 19:58 - 2017-06-21 19:58 - 02442012 _____ C:\WINDOWS\Minidump\062117-9265-01.dmp
    2017-06-18 22:18 - 2017-06-18 22:18 - 00000000 ____D C:\Users\crocq\AppData\Local\Tempzxpsign8bd06467d314e917
    2017-06-18 22:18 - 2017-06-18 22:18 - 00000000 ____D C:\Users\crocq\AppData\Local\Tempzxpsign5897254430056fdd
    2017-06-18 22:18 - 2017-06-18 22:18 - 00000000 ____D C:\Users\crocq\AppData\Local\Tempzxpsign218cf26d8ca6ff0a
    2017-06-18 17:54 - 2017-06-18 17:54 - 00000000 ____D C:\Users\crocq\AppData\Local\Tempzxpsign341e107bdcc957b4
    2017-06-18 17:53 - 2017-06-18 17:53 - 00000000 ____D C:\Users\crocq\AppData\Local\Tempzxpsignef70e8cfb9cbbf7a
    2017-06-18 17:53 - 2017-06-18 17:53 - 00000000 ____D C:\Users\crocq\AppData\Local\Tempzxpsign96f86a2456437ad2
    2017-06-13 23:30 - 2017-06-03 06:15 - 01596600 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
    2017-06-13 23:30 - 2017-06-03 06:15 - 00382368 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
    2017-06-13 23:30 - 2017-06-03 06:10 - 00130464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tm.sys
    2017-06-13 23:30 - 2017-06-03 06:09 - 01003624 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase.dll
    2017-06-13 23:30 - 2017-06-03 06:07 - 00119712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tdx.sys
    2017-06-13 23:30 - 2017-06-03 06:00 - 00321376 _____ (Microsoft Corporation) C:\WINDOWS\system32\capauthz.dll
    2017-06-13 23:30 - 2017-06-03 06:00 - 00219040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tpm.sys
    2017-06-13 23:30 - 2017-06-03 05:59 - 01409048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
    2017-06-13 23:30 - 2017-06-03 05:59 - 00311200 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
    2017-06-13 23:30 - 2017-06-03 05:59 - 00259400 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotifyIcon.exe
    2017-06-13 23:30 - 2017-06-03 05:58 - 00660384 _____ (Microsoft Corporation) C:\WINDOWS\system32\comctl32.dll
    2017-06-13 23:30 - 2017-06-03 05:26 - 00266640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\capauthz.dll
    2017-06-13 23:30 - 2017-06-03 05:23 - 00573856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comctl32.dll
    2017-06-13 23:30 - 2017-06-03 05:14 - 00099328 _____ (Microsoft Corporation) C:\WINDOWS\system32\utcutil.dll
    2017-06-13 23:30 - 2017-06-03 05:14 - 00047104 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
    2017-06-13 23:30 - 2017-06-03 05:12 - 00119296 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataTimeUtil.dll
    2017-06-13 23:30 - 2017-06-03 05:11 - 00128000 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
    2017-06-13 23:30 - 2017-06-03 05:11 - 00052736 _____ (Microsoft Corporation) C:\WINDOWS\system32\musdialoghandlers.dll
    2017-06-13 23:30 - 2017-06-03 05:11 - 00038912 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
    2017-06-13 23:30 - 2017-06-03 05:11 - 00035840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BasicRender.sys
    2017-06-13 23:30 - 2017-06-03 05:11 - 00002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzres.dll
    2017-06-13 23:30 - 2017-06-03 05:10 - 00102400 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe
    2017-06-13 23:30 - 2017-06-03 05:10 - 00076800 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCredentialDeployment.exe
    2017-06-13 23:30 - 2017-06-03 05:09 - 00271872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Identity.Provider.dll
    2017-06-13 23:30 - 2017-06-03 05:09 - 00221184 _____ (Microsoft Corporation) C:\WINDOWS\system32\devicengccredprov.dll
    2017-06-13 23:30 - 2017-06-03 05:09 - 00094720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataTimeUtil.dll
    2017-06-13 23:30 - 2017-06-03 05:07 - 00778240 _____ C:\WINDOWS\system32\MBR2GPT.EXE
    2017-06-13 23:30 - 2017-06-03 05:07 - 00197120 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdboot.exe
    2017-06-13 23:30 - 2017-06-03 05:07 - 00002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tzres.dll
    2017-06-13 23:30 - 2017-06-03 05:06 - 00551936 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmCoreProvisioning.dll
    2017-06-13 23:30 - 2017-06-03 05:05 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Identity.Provider.dll
    2017-06-13 23:30 - 2017-06-03 05:05 - 00169984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\devicengccredprov.dll
    2017-06-13 23:30 - 2017-06-03 05:04 - 00805888 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
    2017-06-13 23:30 - 2017-06-03 05:03 - 00467456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TpmCoreProvisioning.dll
    2017-06-13 23:30 - 2017-06-03 05:01 - 06726656 _____ (Microsoft Corporation) C:\WINDOWS\system32\mspaint.exe
    2017-06-13 23:30 - 2017-06-03 05:00 - 00933376 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
    2017-06-13 23:30 - 2017-06-03 05:00 - 00358400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll
    2017-06-13 23:30 - 2017-06-03 04:59 - 02625024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
    2017-06-13 23:30 - 2017-06-03 04:59 - 00975360 _____ (Microsoft Corporation) C:\WINDOWS\HelpPane.exe
    2017-06-13 23:30 - 2017-06-03 04:58 - 02516480 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
    2017-06-13 23:30 - 2017-06-03 04:58 - 01046016 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcsvc.dll
    2017-06-13 23:30 - 2017-06-03 04:58 - 00827392 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32spl.dll
    2017-06-13 23:30 - 2017-06-03 04:57 - 06535168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mspaint.exe
    2017-06-13 23:30 - 2017-06-03 04:57 - 00797184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
    2017-06-13 23:30 - 2017-06-03 04:54 - 02341376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll
    2017-06-13 23:30 - 2017-06-03 04:51 - 00064512 _____ (Microsoft Corporation) C:\WINDOWS\bfsvc.exe
    2017-06-13 23:30 - 2017-05-20 05:13 - 01333136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
    2017-06-13 23:30 - 2017-05-20 04:55 - 00606960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
    2017-06-13 23:30 - 2017-05-20 04:47 - 01474800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll
    2017-06-13 23:30 - 2017-05-20 04:46 - 01266544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll
    2017-06-13 23:30 - 2017-05-20 04:44 - 00519680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
    2017-06-13 23:30 - 2017-05-20 04:43 - 04672848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
    2017-06-13 23:30 - 2017-05-20 04:43 - 02424016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
    2017-06-13 23:30 - 2017-05-20 04:43 - 01455592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll
    2017-06-13 23:30 - 2017-05-20 04:29 - 00584192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIRibbonRes.dll
    2017-06-13 23:30 - 2017-05-20 04:27 - 00141824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\smartscreenps.dll
    2017-06-13 23:30 - 2017-05-20 04:26 - 00059904 _____ C:\WINDOWS\SysWOW64\xboxgipsynthetic.dll
    2017-06-13 23:30 - 2017-05-20 04:26 - 00025088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\odbcconf.dll
    2017-06-13 23:30 - 2017-05-20 04:25 - 00826368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NPSMDesktopProvider.dll
    2017-06-13 23:30 - 2017-05-20 04:25 - 00174080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Web.Diagnostics.dll
    2017-06-13 23:30 - 2017-05-20 04:22 - 01292288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVPXENC.dll
    2017-06-13 23:30 - 2017-05-20 04:22 - 00754176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MessagingDataModel2.dll
    2017-06-13 23:30 - 2017-05-20 04:22 - 00394240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DictationManager.dll
    2017-06-13 23:30 - 2017-05-20 04:21 - 01984000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DeviceFlows.DataModel.dll
    2017-06-13 23:30 - 2017-05-20 04:21 - 00476672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneDriveSettingSyncProvider.dll
    2017-06-13 23:30 - 2017-05-20 04:21 - 00444928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.System.Launcher.dll
    2017-06-13 23:30 - 2017-05-20 04:20 - 00807424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StoreAgent.dll
    2017-06-13 23:30 - 2017-05-20 04:17 - 00909312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncCore.dll
    2017-06-13 23:30 - 2017-05-20 04:16 - 00899584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.appcore.dll
    2017-06-13 23:30 - 2017-05-20 04:15 - 02088960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapGeocoder.dll
    2017-06-13 23:30 - 2017-05-20 04:14 - 01035264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ShareHost.dll
    2017-06-13 23:30 - 2017-05-20 04:11 - 01536512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
    2017-06-13 23:30 - 2017-05-20 04:10 - 00332800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Midi.dll
    2017-06-13 23:30 - 2017-05-20 04:10 - 00128000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NPSM.dll
    2017-06-13 23:30 - 2017-05-20 04:08 - 00174080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RstrtMgr.dll
    2017-06-13 23:30 - 2017-05-20 03:08 - 01459728 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
    2017-06-13 23:30 - 2017-05-20 03:08 - 00543648 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe
    2017-06-13 23:30 - 2017-05-20 03:07 - 00287648 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys
    2017-06-13 23:30 - 2017-05-20 03:03 - 00777400 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
    2017-06-13 23:30 - 2017-05-20 02:59 - 00112544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dam.sys
    2017-06-13 23:30 - 2017-05-20 02:58 - 00188824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpsd.sys
    2017-06-13 23:30 - 2017-05-20 02:56 - 00712608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
    2017-06-13 23:30 - 2017-05-20 02:56 - 00370928 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
    2017-06-13 23:30 - 2017-05-20 02:55 - 01911752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
    2017-06-13 23:30 - 2017-05-20 02:55 - 01506712 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
    2017-06-13 23:30 - 2017-05-20 02:55 - 00961952 _____ (Microsoft Corporation) C:\WINDOWS\system32\efscore.dll
    2017-06-13 23:30 - 2017-05-20 02:55 - 00211872 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
    2017-06-13 23:30 - 2017-05-20 02:54 - 00730016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdmp.sys
    2017-06-13 23:30 - 2017-05-20 02:54 - 00546208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys
    2017-06-13 23:30 - 2017-05-20 02:54 - 00144288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storahci.sys
    2017-06-13 23:30 - 2017-05-20 02:53 - 00654976 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
    2017-06-13 23:30 - 2017-05-20 02:53 - 00363424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fastfat.sys
    2017-06-13 23:30 - 2017-05-20 02:52 - 04709528 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
    2017-06-13 23:30 - 2017-05-20 02:52 - 01700408 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
    2017-06-13 23:30 - 2017-05-20 02:51 - 02604256 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
    2017-06-13 23:30 - 2017-05-20 02:48 - 00387928 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpps.dll
    2017-06-13 23:30 - 2017-05-20 02:10 - 00809472 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthSSO.dll
    2017-06-13 23:30 - 2017-05-20 02:10 - 00584192 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbonRes.dll
    2017-06-13 23:30 - 2017-05-20 02:09 - 00209408 _____ (Microsoft Corporation) C:\WINDOWS\system32\smartscreenps.dll
    2017-06-13 23:30 - 2017-05-20 02:08 - 00029696 _____ (Microsoft Corporation) C:\WINDOWS\system32\odbcconf.dll
    2017-06-13 23:30 - 2017-05-20 02:08 - 00013312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rootmdm.sys
    2017-06-13 23:30 - 2017-05-20 02:07 - 00277504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\xboxgip.sys
    2017-06-13 23:30 - 2017-05-20 02:07 - 00133120 _____ (Microsoft Corporation) C:\WINDOWS\system32\XblGameSaveExt.dll
    2017-06-13 23:30 - 2017-05-20 02:07 - 00015872 _____ (Microsoft Corporation) C:\WINDOWS\system32\snmptrap.exe
    2017-06-13 23:30 - 2017-05-20 02:06 - 00232448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.Diagnostics.dll
    2017-06-13 23:30 - 2017-05-20 02:06 - 00192512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.SharedPC.AccountManager.dll
    2017-06-13 23:30 - 2017-05-20 02:03 - 00892416 _____ (Microsoft Corporation) C:\WINDOWS\system32\MessagingDataModel2.dll
    2017-06-13 23:30 - 2017-05-20 02:03 - 00549888 _____ (Microsoft Corporation) C:\WINDOWS\system32\DictationManager.dll
    2017-06-13 23:30 - 2017-05-20 02:03 - 00491520 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Display.dll
    2017-06-13 23:30 - 2017-05-20 02:02 - 00616960 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowManagement.dll
    2017-06-13 23:30 - 2017-05-20 02:01 - 02347520 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceFlows.DataModel.dll
    2017-06-13 23:30 - 2017-05-20 02:01 - 00970240 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpsvc.dll
    2017-06-13 23:30 - 2017-05-20 02:01 - 00586240 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll
    2017-06-13 23:30 - 2017-05-20 02:01 - 00149504 _____ (Microsoft Corporation) C:\WINDOWS\system32\embeddedmodesvc.dll
    2017-06-13 23:30 - 2017-05-20 02:00 - 01078272 _____ (Microsoft Corporation) C:\WINDOWS\system32\StoreAgent.dll
    2017-06-13 23:30 - 2017-05-20 02:00 - 01067008 _____ (Microsoft Corporation) C:\WINDOWS\system32\XboxNetApiSvc.dll
    2017-06-13 23:30 - 2017-05-20 01:59 - 01141760 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll
    2017-06-13 23:30 - 2017-05-20 01:59 - 01028608 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
    2017-06-13 23:30 - 2017-05-20 01:59 - 00972800 _____ (Microsoft Corporation) C:\WINDOWS\system32\sysmain.dll
    2017-06-13 23:30 - 2017-05-20 01:58 - 03135488 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapGeocoder.dll
    2017-06-13 23:30 - 2017-05-20 01:58 - 00909824 _____ (Microsoft Corporation) C:\WINDOWS\system32\ISM.dll
    2017-06-13 23:30 - 2017-05-20 01:56 - 02730496 _____ (Microsoft Corporation) C:\WINDOWS\system32\smartscreen.exe
    2017-06-13 23:30 - 2017-05-20 01:55 - 01102848 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll
    2017-06-13 23:30 - 2017-05-20 01:54 - 01275904 _____ (Microsoft Corporation) C:\WINDOWS\system32\ShareHost.dll
    2017-06-13 23:30 - 2017-05-20 01:52 - 00557568 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnprv.dll
    2017-06-13 23:30 - 2017-05-20 01:52 - 00476160 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
    2017-06-13 23:30 - 2017-05-20 01:51 - 01706496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
    2017-06-13 23:30 - 2017-05-20 01:51 - 00148480 _____ (Microsoft Corporation) C:\WINDOWS\system32\umpo.dll
    2017-06-13 23:30 - 2017-05-20 01:50 - 00439808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Midi.dll
    2017-06-13 23:30 - 2017-05-20 01:50 - 00159744 _____ (Microsoft Corporation) C:\WINDOWS\system32\NPSM.dll
    2017-06-13 23:30 - 2017-05-20 01:48 - 02438656 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngine.dll
    2017-06-13 23:30 - 2017-05-20 01:47 - 00641536 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdbui.dll
    2017-06-13 23:30 - 2017-05-20 01:47 - 00199680 _____ (Microsoft Corporation) C:\WINDOWS\system32\RstrtMgr.dll
    2017-06-13 23:29 - 2017-06-03 05:14 - 00142848 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmredir.dll
    2017-06-13 23:29 - 2017-05-20 02:10 - 00088576 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsrvext.dll
    2017-06-13 23:29 - 2017-05-20 02:10 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksthunk.sys
    2017-06-13 23:29 - 2017-05-20 02:08 - 00086016 _____ C:\WINDOWS\system32\xboxgipsynthetic.dll
    2017-06-13 23:29 - 2017-05-20 02:06 - 00866816 _____ (Microsoft Corporation) C:\WINDOWS\system32\NPSMDesktopProvider.dll
    2017-06-13 23:29 - 2017-05-20 02:02 - 00601088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.System.Launcher.dll
    2017-06-13 23:29 - 2017-05-20 01:58 - 01046016 _____ (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.dll
    2017-06-13 23:29 - 2017-05-20 01:48 - 00061952 _____ (Microsoft Corporation) C:\WINDOWS\system32\vss_ps.dll
    2017-06-13 00:33 - 2017-06-13 00:33 - 00000000 ____D C:\Users\crocq\AppData\Local\Tempzxpsigne3aac80d1b534b5e
    2017-06-13 00:33 - 2017-06-13 00:33 - 00000000 ____D C:\Users\crocq\AppData\Local\Tempzxpsignd962ddceba3c0128
    2017-06-13 00:33 - 2017-06-13 00:33 - 00000000 ____D C:\Users\crocq\AppData\Local\Tempzxpsign80e60b2a5218040d
    2017-06-13 00:08 - 2017-06-13 00:08 - 00000000 ____D C:\Users\crocq\AppData\Local\Tempzxpsignc996670cc819622c
    2017-06-13 00:07 - 2017-06-13 00:07 - 00000000 ____D C:\Users\crocq\AppData\Local\Tempzxpsigna4e583a16c491f36
    2017-06-13 00:07 - 2017-06-13 00:07 - 00000000 ____D C:\Users\crocq\AppData\Local\Tempzxpsign6727ea35e70e15ef
    2017-06-12 23:10 - 2017-06-12 23:10 - 00000000 ____D C:\Users\crocq\Documents\4A Games
    2017-06-12 23:08 - 2017-06-12 23:08 - 00000000 ____D C:\Users\crocq\AppData\Local\4A Games
    2017-06-12 02:02 - 2017-06-12 02:02 - 00000000 ____D C:\Users\crocq\AppData\Local\Tempzxpsign599a01beb25b9198
    2017-06-12 02:01 - 2017-06-12 02:01 - 00000000 ____D C:\Users\crocq\AppData\Local\Tempzxpsign86e08a4329a730f5
    2017-06-12 02:01 - 2017-06-12 02:01 - 00000000 ____D C:\Users\crocq\AppData\Local\Tempzxpsign0bfbf9dfa5fbc17f
    2017-06-12 01:45 - 2017-06-12 01:45 - 00000000 ____D C:\Users\crocq\AppData\Local\Tempzxpsign53ea360a162a1efe
    2017-06-12 01:44 - 2017-06-12 01:44 - 00000000 ____D C:\Users\crocq\AppData\Local\Tempzxpsign700a1fc2f3688a2b
    2017-06-12 01:44 - 2017-06-12 01:44 - 00000000 ____D C:\Users\crocq\AppData\Local\Tempzxpsign1f20719f1a800faa

    ==================== Un mois - Modifiés - fichiers et dossiers ========

    (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

    2017-07-12 19:39 - 2017-01-02 13:35 - 00000000 ____D C:\Program Files\Bitdefender Agent
    2017-07-12 19:34 - 2017-05-06 12:04 - 00000000 ____D C:\Users\crocq
    2017-07-12 19:34 - 2017-05-06 12:03 - 00000000 ____D C:\ProgramData\NVIDIA
    2017-07-12 18:54 - 2017-05-06 12:02 - 00000000 ____D C:\WINDOWS\system32\SleepStudy
    2017-07-12 17:35 - 2017-03-18 07:40 - 00131072 _____ C:\WINDOWS\system32\config\ELAM
    2017-07-12 17:30 - 2017-01-03 19:19 - 00000000 ____D C:\Users\crocq\Desktop\Inspirational
    2017-07-12 16:37 - 2017-05-06 12:12 - 03440556 _____ C:\WINDOWS\system32\PerfStringBackup.INI
    2017-07-12 16:37 - 2017-03-20 01:10 - 01678478 _____ C:\WINDOWS\system32\perfh00C.dat
    2017-07-12 16:37 - 2017-03-20 01:10 - 00404102 _____ C:\WINDOWS\system32\perfc00C.dat
    2017-07-12 16:30 - 2017-05-06 12:08 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
    2017-07-12 16:29 - 2017-03-18 07:40 - 01048576 _____ C:\WINDOWS\system32\config\BBI
    2017-07-12 16:29 - 2017-01-02 13:41 - 00046156 _____ C:\bdlog.txt
    2017-07-12 15:41 - 2017-03-18 17:03 - 00000000 ____D C:\WINDOWS\system32\NDF
    2017-07-12 15:16 - 2017-01-02 03:08 - 00000000 ____D C:\Users\crocq\AppData\Local\VirtualStore
    2017-07-12 14:37 - 2017-03-18 17:03 - 00000000 ___HD C:\Program Files\WindowsApps
    2017-07-12 14:37 - 2017-03-18 17:03 - 00000000 ____D C:\WINDOWS\AppReadiness
    2017-07-12 14:35 - 2017-03-18 17:01 - 00000000 ____D C:\WINDOWS\INF
    2017-07-12 14:35 - 2017-01-02 17:23 - 00000000 ____D C:\Users\crocq\AppData\Local\Adobe
    2017-07-12 14:30 - 2017-05-06 12:04 - 00000000 ____D C:\Users\stbxr
    2017-07-12 14:29 - 2017-05-06 12:02 - 00221944 _____ C:\WINDOWS\system32\FNTCACHE.DAT
    2017-07-12 02:40 - 2017-03-18 17:03 - 00000000 ___SD C:\WINDOWS\SysWOW64\F12
    2017-07-12 02:40 - 2017-03-18 17:03 - 00000000 ___SD C:\WINDOWS\system32\F12
    2017-07-12 02:40 - 2017-03-18 17:03 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
    2017-07-12 02:40 - 2017-03-18 17:03 - 00000000 ___RD C:\Program Files\Windows Defender
    2017-07-12 02:40 - 2017-03-18 17:03 - 00000000 ____D C:\WINDOWS\system32\oobe
    2017-07-12 02:40 - 2017-03-18 17:03 - 00000000 ____D C:\WINDOWS\system32\migwiz
    2017-07-12 02:40 - 2017-03-18 17:03 - 00000000 ____D C:\WINDOWS\system32\appraiser
    2017-07-12 02:40 - 2017-03-18 17:03 - 00000000 ____D C:\WINDOWS\ShellExperiences
    2017-07-12 02:40 - 2017-03-18 17:03 - 00000000 ____D C:\Program Files\Windows Photo Viewer
    2017-07-12 02:40 - 2017-03-18 17:03 - 00000000 ____D C:\Program Files (x86)\Windows Photo Viewer
    2017-07-12 02:40 - 2017-03-18 17:03 - 00000000 ____D C:\Program Files (x86)\Windows Defender
    2017-07-12 02:40 - 2017-03-05 20:21 - 00000000 ___RD C:\Users\stbxr\OneDrive
    2017-07-12 00:42 - 2017-01-03 02:35 - 00757800 _____ C:\WINDOWS\system32\Drivers\EasyAntiCheat.sys
    2017-07-12 00:33 - 2017-01-02 23:20 - 00000000 ____D C:\Users\crocq\AppData\Roaming\vlc
    2017-07-11 23:02 - 2017-01-04 12:52 - 00000000 ____D C:\Program Files (x86)\TeamViewer
    2017-07-11 21:50 - 2017-03-18 16:51 - 00000000 ____D C:\WINDOWS\CbsTemp
    2017-07-11 21:50 - 2017-01-03 12:35 - 00000000 ____D C:\WINDOWS\system32\MRT
    2017-07-11 21:49 - 2017-01-03 12:35 - 135225752 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
    2017-07-11 00:55 - 2017-01-03 00:09 - 00000000 ____D C:\Users\crocq\AppData\Local\Battle.net
    2017-07-10 22:09 - 2017-01-08 02:09 - 00000000 ____D C:\Users\crocq\Documents\My Games
    2017-07-10 00:09 - 2017-01-04 16:18 - 00000000 ____D C:\Users\crocq\AppData\Local\Spotify
    2017-07-10 00:09 - 2017-01-02 13:45 - 00000000 ____D C:\Users\crocq\AppData\Roaming\uTorrent
    2017-07-09 21:06 - 2017-01-04 16:18 - 00000000 ____D C:\Users\crocq\AppData\Roaming\Spotify
    2017-07-09 12:47 - 2017-05-16 15:52 - 00000000 ____D C:\Users\crocq\AppData\Roaming\discord
    2017-07-08 13:46 - 2017-01-02 15:20 - 00000000 ____D C:\Users\crocq\AppData\Local\CrashDumps
    2017-07-08 13:40 - 2017-01-02 12:43 - 00565416 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
    2017-07-08 13:18 - 2017-01-02 03:10 - 00000000 ____D C:\Users\crocq\AppData\Roaming\Skype
    2017-07-02 21:30 - 2017-03-18 17:03 - 00000000 ____D C:\WINDOWS\Registration
    2017-07-02 20:31 - 2017-05-07 19:36 - 00000000 ____D C:\Users\crocq\AppData\Local\Arma 3
    2017-07-02 20:29 - 2017-05-07 11:45 - 00000000 ____D C:\Program Files (x86)\A3Launcher
    2017-07-02 20:22 - 2017-01-03 22:16 - 00000000 ____D C:\Users\crocq\AppData\Roaming\The Witness
    2017-07-01 20:37 - 2017-01-27 13:43 - 00000000 ____D C:\Users\crocq\AppData\Local\NVIDIA Corporation
    2017-06-30 10:47 - 2017-03-18 17:06 - 00835576 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
    2017-06-30 10:47 - 2017-03-18 17:06 - 00177656 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
    2017-06-27 22:23 - 2017-01-02 03:13 - 00002272 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
    2017-06-24 15:22 - 2017-05-21 01:52 - 00000000 ____D C:\Users\crocq\AppData\Local\Arma 3 Launcher
    2017-06-24 11:21 - 2017-05-06 12:08 - 00003290 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task v2
    2017-06-24 11:21 - 2017-03-05 20:21 - 00002409 _____ C:\Users\stbxr\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
    2017-06-23 18:13 - 2017-05-07 19:36 - 00000000 ____D C:\ProgramData\Bohemia Interactive
    2017-06-23 01:58 - 2017-05-06 12:03 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
    2017-06-23 01:58 - 2017-05-06 12:03 - 00000000 ____D C:\Program Files\NVIDIA Corporation
    2017-06-23 01:58 - 2017-05-06 12:03 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
    2017-06-21 19:58 - 2017-05-09 23:42 - 00000000 ____D C:\WINDOWS\Minidump
    2017-06-19 23:38 - 2017-06-11 13:02 - 00000000 ____D C:\Users\crocq\Documents\3D-CoatV45
    2017-06-16 22:49 - 2017-03-18 17:03 - 00000000 ____D C:\WINDOWS\rescache
    2017-06-15 22:33 - 2017-01-02 03:08 - 00000000 __RHD C:\Users\Public\AccountPictures
    2017-06-13 23:52 - 2017-03-18 17:03 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns

    ==================== Fichiers à la racine de certains dossiers =======

    2017-06-11 18:30 - 2017-06-11 18:47 - 0000762 _____ () C:\Users\crocq\AppData\Roaming\Coolorus 2
    2017-04-16 15:11 - 2017-04-16 15:11 - 0000443 _____ () C:\Users\crocq\AppData\Roaming\PureRef.ini
    2017-06-11 13:13 - 2017-06-19 22:46 - 0000025 ____H () C:\Users\crocq\AppData\Roaming\uninst2.log
    2017-06-11 13:13 - 2017-06-19 22:46 - 0000025 ____H () C:\Users\crocq\AppData\Local\uninst3.log
    2017-01-02 13:35 - 2017-01-02 13:35 - 0047712 _____ () C:\ProgramData\agent.1483378510.bdinstall.bin
    2017-06-11 01:46 - 2017-06-11 01:46 - 0030962 _____ () C:\ProgramData\agent.update.1497160009.bdinstall.bin
    2017-01-02 13:40 - 2017-01-02 13:40 - 0389681 _____ () C:\ProgramData\cl.1483378667.bdinstall.bin
    2017-01-02 13:40 - 2017-01-02 13:40 - 0055885 _____ () C:\ProgramData\dm.1483378833.bdinstall.bin
    2017-06-11 01:47 - 2017-06-11 01:47 - 0040615 _____ () C:\ProgramData\dm.update.1497160021.bdinstall.bin
    2017-05-06 12:03 - 2017-05-06 12:03 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
    2017-06-11 13:13 - 2017-06-19 22:46 - 0000025 ____H () C:\ProgramData\temp21.log

    ==================== Bamital & volsnap ======================

    (Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)

    C:\WINDOWS\system32\winlogon.exe => Le fichier est signé numériquement
    C:\WINDOWS\system32\wininit.exe => Le fichier est signé numériquement
    C:\WINDOWS\explorer.exe => Le fichier est signé numériquement
    C:\WINDOWS\SysWOW64\explorer.exe => Le fichier est signé numériquement
    C:\WINDOWS\system32\svchost.exe => Le fichier est signé numériquement
    C:\WINDOWS\SysWOW64\svchost.exe => Le fichier est signé numériquement
    C:\WINDOWS\system32\services.exe => Le fichier est signé numériquement
    C:\WINDOWS\system32\User32.dll => Le fichier est signé numériquement
    C:\WINDOWS\SysWOW64\User32.dll => Le fichier est signé numériquement
    C:\WINDOWS\system32\userinit.exe => Le fichier est signé numériquement
    C:\WINDOWS\SysWOW64\userinit.exe => Le fichier est signé numériquement
    C:\WINDOWS\system32\rpcss.dll => Le fichier est signé numériquement
    C:\WINDOWS\system32\dnsapi.dll => Le fichier est signé numériquement
    C:\WINDOWS\SysWOW64\dnsapi.dll => Le fichier est signé numériquement
    C:\WINDOWS\system32\Drivers\volsnap.sys => Le fichier est signé numériquement

    LastRegBack: 2017-07-11 23:39

    ==================== Fin de FRST.txt ============================

    Thanks a lot for your help.

  5. #5
    Member Spyware Fighter zep516's Avatar
    Join Date
    Dec 2005
    Location
    Pittsburgh, Pa
    Posts
    7,158
    Points
    1301

    Default

    A few items to fix

    NOTICE: This script was written specifically for this user, for use on that particular machine. Running this on another machine may cause damage to your operating system
    Open notepad (Start =>All Programs => Accessories => Notepad).
    Copy/Paste the contents of the code box below into Notepad.
    Code:
    start
    CloseProcesses:
    CreateRestorePoint:
    HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
    HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
    HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
    HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
    HKU\S-1-5-21-1918836148-936291157-4271617375-1001\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
    HKU\S-1-5-21-1918836148-936291157-4271617375-1002\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
    URLSearchHook: [S-1-5-21-1918836148-936291157-4271617375-1000_classes] ATTENTION => URLSearchHook par défaut est absent
    URLSearchHook: [S-1-5-21-1918836148-936291157-4271617375-1002_classes] ATTENTION => URLSearchHook par défaut est absent
    SearchScopes: HKU\S-1-5-21-1918836148-936291157-4271617375-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
    R2 ibtsiva; %SystemRoot%\system32\ibtsiva [X]
    2017-07-02 19:31 - 2017-07-02 19:31 - 00000000 ____D C:\Users\crocq\AppData\Local\Tempzxpsignd60c41b90d9cf714
    2017-07-02 19:31 - 2017-07-02 19:31 - 00000000 ____D C:\Users\crocq\AppData\Local\Tempzxpsign85a17077dc917a31
    2017-06-25 15:49 - 2017-06-25 15:49 - 00000000 ____D C:\Users\crocq\AppData\Local\Tempzxpsignf7e02f918f4ff1ec
    2017-06-25 15:49 - 2017-06-25 15:49 - 00000000 ____D C:\Users\crocq\AppData\Local\Tempzxpsign0feb0cebf6c90888
    2017-06-25 14:51 - 2017-06-25 14:51 - 00000000 ____D C:\Users\crocq\AppData\Local\Tempzxpsignf337cf88aed64fc4
    2017-06-25 14:51 - 2017-06-25 14:51 - 00000000 ____D C:\Users\crocq\AppData\Local\Tempzxpsign7a687d342312d671
    2017-06-24 18:22 - 2017-06-24 18:22 - 00000000 ____D C:\Users\crocq\AppData\Local\Tempzxpsignc87fc88a2fbeb235
    2017-06-24 18:22 - 2017-06-24 18:22 - 00000000 ____D C:\Users\crocq\AppData\Local\Tempzxpsign2cfa194283330b1f
    2017-06-24 15:23 - 2017-06-24 15:23 - 00000000 ____D C:\Users\crocq\AppData\Local\Tempzxpsigncdb1706ef9f99257
    2017-06-24 15:23 - 2017-06-24 15:23 - 00000000 ____D C:\Users\crocq\AppData\Local\Tempzxpsigna31bc913e7c3729b
    2017-06-24 15:17 - 2017-06-24 15:17 - 00000000 ____D C:\Users\crocq\AppData\Local\Tempzxpsignafe4454eeb4c4436
    2017-06-24 14:51 - 2017-06-24 14:51 - 00000000 ____D C:\Users\crocq\AppData\Local\Tempzxpsignff695c750a172951
    2017-06-24 14:51 - 2017-06-24 14:51 - 00000000 ____D C:\Users\crocq\AppData\Local\Tempzxpsigna0fecb58005ef6f3
    2017-06-24 14:51 - 2017-06-24 14:51 - 00000000 ____D C:\Users\crocq\AppData\Local\Tempzxpsign28583943a3fe9f43
    2017-06-21 23:36 - 2017-06-21 23:36 - 00000000 ____D C:\Users\crocq\AppData\Local\Tempzxpsignb760ac9c41a42ba9
    2017-06-21 23:36 - 2017-06-21 23:36 - 00000000 ____D C:\Users\crocq\AppData\Local\Tempzxpsign34bc9578663132d7
    2017-06-21 23:36 - 2017-06-21 23:36 - 00000000 ____D C:\Users\crocq\AppData\Local\Tempzxpsign2221473bb62656da
    2017-06-21 21:52 - 2017-07-09 22:46 - 00000000 ____D C:\Users\crocq\AppData\LocalLow\uTorrent
    2017-06-13 00:33 - 2017-06-13 00:33 - 00000000 ____D C:\Users\crocq\AppData\Local\Tempzxpsignd962ddceba3c0128
    2017-06-13 00:33 - 2017-06-13 00:33 - 00000000 ____D C:\Users\crocq\AppData\Local\Tempzxpsign80e60b2a5218040d
    2017-06-13 00:08 - 2017-06-13 00:08 - 00000000 ____D C:\Users\crocq\AppData\Local\Tempzxpsignc996670cc819622c
    2017-06-13 00:07 - 2017-06-13 00:07 - 00000000 ____D C:\Users\crocq\AppData\Local\Tempzxpsigna4e583a16c491f36
    2017-06-13 00:07 - 2017-06-13 00:07 - 00000000 ____D C:\Users\crocq\AppData\Local\Tempzxpsign6727ea35e70e15ef
    2017-06-12 02:02 - 2017-06-12 02:02 - 00000000 ____D C:\Users\crocq\AppData\Local\Tempzxpsign599a01beb25b9198
    2017-06-12 02:01 - 2017-06-12 02:01 - 00000000 ____D C:\Users\crocq\AppData\Local\Tempzxpsign86e08a4329a730f5
    2017-06-12 02:01 - 2017-06-12 02:01 - 00000000 ____D C:\Users\crocq\AppData\Local\Tempzxpsign0bfbf9dfa5fbc17f
    2017-06-12 01:45 - 2017-06-12 01:45 - 00000000 ____D C:\Users\crocq\AppData\Local\Tempzxpsign53ea360a162a1efe
    2017-06-12 01:44 - 2017-06-12 01:44 - 00000000 ____D C:\Users\crocq\AppData\Local\Tempzxpsign700a1fc2f3688a2b
    2017-06-12 01:44 - 2017-06-12 01:44 - 00000000 ____D C:\Users\crocq\AppData\Local\Tempzxpsign1f20719f1a800faa
    2017-01-02 13:35 - 2017-01-02 13:35 - 0047712 _____ () C:\ProgramData\agent.1483378510.bdinstall.bin
    2017-06-11 01:46 - 2017-06-11 01:46 - 0030962 _____ () C:\ProgramData\agent.update.1497160009.bdinstall.bin
    2017-01-02 13:40 - 2017-01-02 13:40 - 0389681 _____ () C:\ProgramData\cl.1483378667.bdinstall.bin
    2017-01-02 13:40 - 2017-01-02 13:40 - 0055885 _____ () C:\ProgramData\dm.1483378833.bdinstall.bin
    2017-06-11 01:47 - 2017-06-11 01:47 - 0040615 _____ () C:\ProgramData\dm.update.1497160021.bdinstall.bin
    ContextMenuHandlers06: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => -> Pas de fichier
    CustomCLSID: HKU\S-1-5-21-1918836148-936291157-4271617375-1001_Classes\CLSID\{073CB204-6B29-46FC-AB98-451F1D068741}\InprocServer32 -> C:\Program Files\Autodesk\3ds Max 2016\Inventor Server\Bin\TestServer.dll => Pas de fichier
    CustomCLSID: HKU\S-1-5-21-1918836148-936291157-4271617375-1001_Classes\CLSID\{0E270DAA-1BE6-48F2-AC49-B0E469795F52}\InprocServer32 -> %%systemroot%%\system32\shell32.dll => Pas de fichier
    CustomCLSID: HKU\S-1-5-21-1918836148-936291157-4271617375-1001_Classes\CLSID\{8C23B656-4E6E-4B45-9920-9617168D39A3}\InprocServer32 -> C:\Program Files\Autodesk\3ds Max 2016\Inventor Server\Bin\TestServer.dll => Pas de fichier
    CustomCLSID: HKU\S-1-5-21-1918836148-936291157-4271617375-1001_Classes\CLSID\{C4F0910E-E0B4-4E68-8086-452730C7A26A}\InprocServer32 -> C:\Users\crocq\AppData\Local\Autodesk\webdeploy\production\0c6c8be812b2dce050a3457de4077e03313640ae\NPreview10.dll ()
    CustomCLSID: HKU\S-1-5-21-1918836148-936291157-4271617375-1001_Classes\CLSID\{E5B0515D-48D2-4F04-906D-0192ED65A2DD}\InprocServer32 -> C:\Program Files\Autodesk\3ds Max 2016\Inventor Server\Bin\TestServer.dll => Pas de fichier
    ContextMenuHandlers01: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => -> Pas de fichier
    AlternateDataStreams: C:\ProgramData\TEMP:94D97A40 [140]
    AlternateDataStreams: C:\Users\crocq\Desktop\DS4Windows.exe:BDU [0]
    AlternateDataStreams: C:\Users\crocq\Downloads\adwcleaner_6.047.exe:BDU [0]
    AlternateDataStreams: C:\Users\crocq\Downloads\FRST64.exe:BDU [0]
    AlternateDataStreams: C:\Users\crocq\Downloads\HijackThis.exe:BDU [0]
    AlternateDataStreams: C:\Users\crocq\Downloads\mb3-setup-35891.35891-3.1.2.1733-1.0.139-1.0.2060.exe:BDU [0]
    AlternateDataStreams: C:\Users\crocq\Downloads\SUPERAntiSpyware.exe:BDU [0]
    CHR HomePage: Default -> hxxp://search.conduit.com/?ctid=CT3320691&octid=EB_ORIGINAL_CTID&SearchSource=55&CUI=&UM=4&UP=SPA381169A-72D4-45BC-B4E7-6DC7ECC0C6C8&SSPV=
    CMD: bitsadmin /reset /allusers
    CMD: netsh winsock reset catalog
    CMD: ipconfig /flushdns
    RemoveProxy:
    Emptytemp:
    • Click Format and ensure Wordwrap is unchecked.
    • Save as Fixlist.txt to C:\Users\crocq\Downloads (Must be in this location)
    • Run FRST/FRST64 and press the Fix button just once and wait.
    • If the tool needed a restart please make sure you let the system to restart normally and let the tool completes its run after restart.
    • The tool will make a log here C:\Users\crocq\Downloads (Fixlog.txt). Please post it to your reply.


    Note: If the tool warns you about the version you're using being an outdated version please download and run the updated version.

  6. #6
    Member
    Join Date
    Jul 2017
    Posts
    4
    Points
    0

    Default

    Thank you very much Zep.

    Just to understand: is there some viruses or trojan/Worms on my computer?

    Regards, and thank you again

  7. #7
    Member Spyware Fighter zep516's Avatar
    Join Date
    Dec 2005
    Location
    Pittsburgh, Pa
    Posts
    7,158
    Points
    1301

    Default

    No viruses or Trojans /worms.

    Just a bit of clean up. Everything else looks good !