Sujet Précédent Sujet Suivant

Avast, une menace a ete detectée : virus svchost.exe

Fermé
pepette59 - 8 avril 2015 à 19:03
lilidurhone Messages postés 43343 Date d'inscription lundi 25 avril 2011 Statut Contributeur sécurité Dernière intervention 18 septembre 2023 - 11 avril 2015 à 17:52
Bonjour,

j'ai plusieurs messages incessants d'avast, "une menace a ete detectée, virus svchost.exe"
je ne comprends pas du tout ce que ça veut dire. j'ai fait un scan puis nettoyage adwcleaner. Voici le rapport :
Mais après avoir fait ça, que dois je faire ?

Merci beaucoup pour votre aide




# AdwCleaner v4.201 - Rapport créé le 08/04/2015 à 18:37:30
# Mis à jour le 08/04/2015 par Xplode
# Base de données : 2015-04-08.1 [Serveur]
# Système d'exploitation : Windows 8.1 (x64)
# Nom d'utilisateur : Perrine - PERRINE
# Exécuté depuis : C:\Users\Perrine\Downloads\adwcleaner_4.201.exe
# Option : Nettoyer
          • [ Services ] *****
          • [ Fichiers / Dossiers ] *****


Dossier Supprimé : C:\ProgramData\297d770a00006dce
Fichier Supprimé : C:\Users\Perrine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\SuperOptimizer.lnk
          • [ Tâches planifiées ] *****
          • [ Raccourcis ] *****
          • [ Registre ] *****


Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{459DD0F7-0D55-D3DC-67BC-E6BE37E9D762}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{237FDFDB-3722-470E-8BA8-90196DABE967}
Clé Supprimée : HKLM\SOFTWARE\Classes\TypeLib\{F126C9FC-9299-40F2-BD42-C59023AD1E7F}
Clé Supprimée : [x64] HKLM\SOFTWARE\Classes\Interface\{237FDFDB-3722-470E-8BA8-90196DABE967}
Clé Supprimée : HKCU\Software\Super Optimizer
Clé Supprimée : HKCU\Software\Appscion
Clé Supprimée : HKCU\Software\AppDataLow\{1146AC44-2F03-4431-B4FD-889BC837521F}
Clé Supprimée : HKLM\SOFTWARE\{3A7D3E19-1B79-4E4E-BD96-5467DA2C4EF0}
Clé Supprimée : HKLM\SOFTWARE\{6791A2F3-FC80-475C-A002-C014AF797E9C}
Donnée Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings [ProxyOverride] - *.local
          • [ Navigateurs ] *****


-\\ Internet Explorer v11.0.9600.17416


-\\ Google Chrome v41.0.2272.118

[C:\Users\Perrine\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] - Supprimée [Extension] : eofcbnmajmjmplflapaojjnihcjkigck
[C:\Users\Perrine\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] - Supprimée [Extension] : pfkfdlcdbajamklbneflfbcmfgddmpae
[C:\Users\Perrine\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] - Supprimée [Startup_URLs] : hxxp://www.google.com/", "hxxp://start.mysearchdial.com/?f=1&a=tele1202&cd=2XzuyEtN2Y1L1QzuyDtB0ByB0CtA0D0D0EyB0EtCyBzytAtDtN0D0Tzu0CyBtCyEtN1L2XzutBtFtBtFtCyEtFtCtAyBzytN1L1CzutCyD1B1P1R&cr=589149697&ir=


AdwCleaner[R0].txt - [882 octets] - [15/10/2014 05:18:29]
AdwCleaner[R1].txt - [2507 octets] - [08/04/2015 18:31:33]
AdwCleaner[S0].txt - [930 octets] - [15/10/2014 05:23:56]
AdwCleaner[S1].txt - [2359 octets] - [08/04/2015 18:37:30]

########## EOF - C:\AdwCleaner\AdwCleaner[S1].txt - [2419 octets] ##########



13 réponses

Réponse 1 / 13
lilidurhone Messages postés 43343 Date d'inscription lundi 25 avril 2011 Statut Contributeur sécurité Dernière intervention 18 septembre 2023 3 804
8 avril 2015 à 19:40
ZHPCleaner




Désactiver l'Anti-virus

Ton moteur de recherche va se fermer il faudra le réouvrir pour poster les rapports

téléchargement : https://nicolascoolman.eu




- Cet outil ne nécessite aucune installation, il est très rapide car basé sur l'éxécution de scripts.
- Clique droit sur le dossier téléchargé


- Clique sur Scanner :

- Savoir que tous les navigateurs ou onglets ouvert seront fermés et qu'il faudra les remettre

- En cas de présence d'un proxy, un message apparaît avec la question suivante
- Avez-vous installé ce proxy ? suivi de l'adresse IP du proxy
- Si vous n'avez pas installé de Proxy, cliquer sur "NON" pour accepter la réparation du proxy.

- En cas de présence d'un serveur inconnu, un message peut apparaître avec la question suivante
- Avez-vous installé ce serveur ? suivi du nom du serveur
- Si vous n'avez pas installé de serveur,, cliquer sur "NON" pour accepter la réparation



- Fournir le rapport
1
pepette59
8 avril 2015 à 19:42
je comprends pas le début ? c'est quoi zhpcleaner ? Je dois desactiver avast ?
Merci
0
Réponse 2 / 13
lilidurhone Messages postés 43343 Date d'inscription lundi 25 avril 2011 Statut Contributeur sécurité Dernière intervention 18 septembre 2023 3 804
8 avril 2015 à 19:08
Quel est le chemin exact du fichier détecté?
0
Pepette59
8 avril 2015 à 19:15
C'est c:\Windows\System32
0
Réponse 3 / 13
lilidurhone Messages postés 43343 Date d'inscription lundi 25 avril 2011 Statut Contributeur sécurité Dernière intervention 18 septembre 2023 3 804
8 avril 2015 à 19:16
▶ Télécharge ici : FRST (de Farbar)
!!! En fonction de ta version de Windows, prends la "32-Bit Version" ou la "64-Bit Version" !!!
Aide : va dans Démarrer > Panneau de configuration > Système pour savoir si tu es sous 32 bits ou 64 bits.

▶ Double-clique sur l'icône FRST.exe pour lancer le programme. (Sous Windows Vista, 7 et 8, il faut faire un clic droit dessus, puis exécuter en tant qu'administrateur.) Clique ensuite sur Oui lorsqu'un message d'avertissement (Disclaimer) s'affiche.

▶ Sur le menu principal, clique sur le bouton Scan et patiente le temps de l'analyse.

▶ A la fin du scan, deux rapports s'affichent, FRST.txt et Addition.txt Poste les rapports dans ta prochaine réponse.

Les rapport se trouvent ici : C:\FRST\Logs

▶ Envoie-les sur https://www.cjoint.com/ et poste les liens obtenus en échange.
0
pepette59
Modifié par pepette59 le 8/04/2015 à 19:33
et les deux liens que j'ai eu :

http://cjoint.com/?EDitQEIFuAD

http://cjoint.com/?EDitTaBzP8F
0
Réponse 4 / 13
jean448 Messages postés 1331 Date d'inscription mardi 29 décembre 2009 Statut Membre Dernière intervention 26 janvier 2017 237
8 avril 2015 à 19:24
Salut

Adwcleaner n'est pas un antivirus, c'est à Avast de s'en occuper ( tu dois lui dire de mettre en quarantaine s'il le fait pas automatiquement) fait d'abord un scan avec malwarebyte (version gratuit suffit) en mode menace puis passe avec Avast

Après tu as des test plus approfondis que lilidurhone à l'air de vouloir te proposer
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 5 / 13
pepette59
8 avril 2015 à 19:27
Merci pour les infos en tout cas !!

Voilà les rapports : FRST.txt

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 11-03-2015
Ran by Perrine (administrator) on PERRINE on 08-04-2015 19:20:31
Running from C:\Users\Perrine\Downloads
Loaded Profiles: Perrine (Available profiles: Perrine)
Platform: Windows 8.1 (X64) OS Language: Français (France)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Windows (R) Win 7 DDK provider) C:\Program Files (x86)\Bluetooth Suite\AdminService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(Samsung Electronics CO., LTD.) C:\Program Files (x86)\Samsung\Settings\CmdServer\EasyLauncher.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Samsung Electronics CO., LTD.) C:\ProgramData\SAMSUNG\SW Update Service\SWMAgent.exe
(Atheros) C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
(Avast Software) C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe
() C:\Program Files (x86)\Samsung\Settings\CmdServer\EasySettingsCmdServer.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\ng\ngservice.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Samsung Electronics CO., LTD.) C:\Program Files (x86)\Samsung\Settings\sSettings.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20689_x64__8wekyb3d8bbwe\livecomm.exe
(Intel Corporation) C:\Windows\System32\igfxext.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel Corporation) C:\Windows\System32\igfxTray.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
(Qualcomm Atheros) C:\Program Files (x86)\Bluetooth Suite\BtTray.exe
(Samsung Electronics CO., LTD.) C:\Program Files (x86)\Samsung\Quick Starter\Quick Starter.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Samsung Electronics CO., LTD.) C:\Program Files\Samsung\S Agent\CommonAgent.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Samsung Electronics CO., LTD.) C:\Program Files\Samsung\Support Center\GuaranaAgent.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13776088 2014-12-11] (Realtek Semiconductor)
HKLM\...\Run: [BtTray] => C:\Program Files (x86)\Bluetooth Suite\BtTray.exe [766080 2012-10-31] (Qualcomm Atheros)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2917688 2012-10-16] (Synaptics Incorporated)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [169768 2015-02-13] (Apple Inc.)
HKLM-x32\...\Run: [IAStorIcon] => C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [277504 2012-07-09] (Intel Corporation)
HKLM-x32\...\Run: [Adobe Reader Speed Launcher] => C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe [40336 2014-09-04] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959176 2014-08-21] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [RemoteControl10] => C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe [97392 2012-08-15] (CyberLink Corp.)
HKLM-x32\...\Run: [CLMLServer_For_P2G8] => C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe [111120 2012-06-08] (CyberLink)
HKLM-x32\...\Run: [CLVirtualDrive] => C:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe [491120 2012-07-12] (CyberLink Corp.)
HKLM-x32\...\Run: [Intel AppUp(SM) center] => C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe [155488 2012-07-13] (Intel Corporation)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [5227648 2015-03-16] (AVAST Software)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [335232 2015-02-10] (Oracle Corporation)
HKU\S-1-5-21-2830974330-3213038589-3334289725-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [7063832 2014-11-21] (Piriform Ltd)
HKU\S-1-5-21-2830974330-3213038589-3334289725-1001\...\Run: [Quick Starter] => C:\Program Files (x86)\Samsung\Quick Starter\Quick Starter.exe [2358064 2014-07-15] (Samsung Electronics CO., LTD.)
HKU\S-1-5-21-2830974330-3213038589-3334289725-1001\...\Run: [GoogleChromeAutoLaunch_542A69DB0AC506DEA989911B95D0DB7F] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [809288 2015-03-30] (Google Inc.)
HKU\S-1-5-21-2830974330-3213038589-3334289725-1001\Control Panel\Desktop\\SCRNSAVE.EXE ->
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll (AVAST Software)
CHR HKU\S-1-5-21-2830974330-3213038589-3334289725-1001\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/?pc=AV01
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://www.bing.com/search?q={searchTerms}&FORM=AVASDF&PC=AV01
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKU\S-1-5-21-2830974330-3213038589-3334289725-1001\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.bing.com/search?q={searchTerms}&FORM=AVASDF&PC=AV01
HKU\S-1-5-21-2830974330-3213038589-3334289725-1001\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.msn.com/?pc=AV01
SearchScopes: HKLM-x32 -> {632F07F3-19A1-4d16-A23F-E6CE9486BAB5} URL = http://www.bing.com/search?q={searchTerms}&FORM=AVASDF&PC=AV01
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-2830974330-3213038589-3334289725-1001 -> {5F6AE902-9EA7-4329-89CC-8F8737BA95CD} URL =
SearchScopes: HKU\S-1-5-21-2830974330-3213038589-3334289725-1001 -> {60DC6690-5E35-4A6D-8719-6126A97EC1FA} URL = http://www.google.com/search?q={searchTerms}&rlz=1I7AVNB_frFR594
SearchScopes: HKU\S-1-5-21-2830974330-3213038589-3334289725-1001 -> {632F07F3-19A1-4d16-A23F-E6CE9486BAB5} URL = http://www.bing.com/search?q={searchTerms}&FORM=AVASDF&PC=AV01
BHO: CIESpeechBHO Class -> {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} -> C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll [2012-10-31] (Qualcomm Atheros Commnucations)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2014-12-02] (AVAST Software)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\ssv.dll [2015-03-16] (Oracle Corporation)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2014-12-02] (AVAST Software)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\jp2ssv.dll [2015-03-16] (Oracle Corporation)
Toolbar: HKU\S-1-5-21-2830974330-3213038589-3334289725-1001 -> No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
StartMenuInternet: IEXPLORE.EXE - iexplore.exe

FireFox:
========
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2014-10-30] ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2012-06-07] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2012-06-07] (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.40.2 -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\dtplugin\npDeployJava1.dll [2015-03-16] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.40.2 -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\plugin2\npjp2.dll [2015-03-16] (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\4.0.60310.0\npctrl.dll [2011-03-09] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3503.0728 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-07-27] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-10] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-10] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll [2014-09-04] (Adobe Systems Inc.)
FF HKLM-x32\...\Firefox\Extensions: [***@***] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2014-06-23]

Chrome:
=======
CHR HomePage: Default ->
CHR StartupUrls: Default -> "hxxp://www.google.com/", "hxxp://start.mysearchdial.com/?f=1&a=tele1202&cd=2XzuyEtN2Y1L1QzuyDtB0ByB0CtA0D0D0EyB0EtCyBzytAtDtN0D0Tzu0CyBtCyEtN1L2XzutBtFtBtFtCyEtFtCtAyBzytN1L1CzutCyD1B1P1R&cr=589149697&ir=", "hxxp://www.nationzoom.com/?type=hp&ts=1390096797&from=amt&uid=WDCXWD7500BPVT-35HXZT3_WD-WXC1A921965119651", "hxxp://astromenda.com/?f=7&a=ast_tele_14_42_other&cd=2XzuyEtN2Y1L1QzuyDtB0ByB0CtA0D0D0EyB0EtCyBzytAtDtN0D0Tzu0StCtDtCzztN1L2XzutAtFtBtFtCtFyDtN1L1CzutCyEtBzytDyD1V1TtN1L1G1B1V1N2Y1L1Qzu2StC0A0B0Dzy0D0FyBtG0E0D0CyCtGtCtA0BzytG0B0Fzz0FtGyBzztB0DyC0Dzz0CtA0BzyyB2QtN1M1F1B2Z1V1N2Y1L1Qzu2S0C0D0FyDzzyBzy0FtGyD0EyBtCtGyE0DyB0EtGzz0EzzyCtGyB0CzytDyEyDyCtB0F0AtCyD2Q&cr=1705146441&ir="
CHR DefaultSuggestURL: Default -> {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&gs_ri={google:suggestRid}&xssi=t&q={searchTerms}&{google:inputType}{google:cursorPosition}{google:currentPageUrl}{google:pageClassification}{google:searchVersion}{google:sessionToken}{google:prefetchQuery}sugkey={google:suggestAPIKeyParameter}
CHR Profile: C:\Users\Perrine\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Meteo en France) - C:\Users\Perrine\AppData\Local\Google\Chrome\User Data\Default\Extensions\anakpfpojdnocblgejmienjaaggfgbdj [2015-03-18]
CHR Extension: (Google Drive) - C:\Users\Perrine\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-06-23]
CHR Extension: (YouTube) - C:\Users\Perrine\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-06-23]
CHR Extension: (Facebook) - C:\Users\Perrine\AppData\Local\Google\Chrome\User Data\Default\Extensions\boeajhmfdjldchidhphikilcgdacljfm [2015-03-18]
CHR Extension: (Adblock Plus) - C:\Users\Perrine\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2015-04-04]
CHR Extension: (Google Search) - C:\Users\Perrine\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-06-23]
CHR Extension: (Calculator) - C:\Users\Perrine\AppData\Local\Google\Chrome\User Data\Default\Extensions\fhgccgjmilgadndgigplchopkfhfcphj [2015-03-18]
CHR Extension: (Chrome Hotword Shared Module) - C:\Users\Perrine\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-03-16]
CHR Extension: (Neon Pool Table) - C:\Users\Perrine\AppData\Local\Google\Chrome\User Data\Default\Extensions\lpcnmhphplmplfhhimehmpbfhclpkgge [2015-03-18]
CHR Extension: (Mailorama App) - C:\Users\Perrine\AppData\Local\Google\Chrome\User Data\Default\Extensions\mggkbalhdfhjalmmicijhgeoialfhjia [2015-03-18]
CHR Extension: (Google Wallet) - C:\Users\Perrine\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-06-23]
CHR Extension: (Outlook.com) - C:\Users\Perrine\AppData\Local\Google\Chrome\User Data\Default\Extensions\pfpeapihoiogbcmdmnibeplnikfnhoge [2015-03-18]
CHR Extension: (Gmail) - C:\Users\Perrine\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-06-23]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2014-12-02]

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [77128 2015-01-20] (Apple Inc.)
R2 AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [322176 2014-06-17] (Windows (R) Win 7 DDK provider) [File not signed]
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-12-02] (AVAST Software)
R3 AvastVBoxSvc; C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe [4012248 2014-12-02] (Avast Software)
S3 BthHFSrv; C:\Windows\System32\BthHFSrv.dll [324608 2014-10-29] (Microsoft Corporation)
R2 Easy Launcher; C:\Program Files (x86)\Samsung\Settings\CmdServer\EasyLauncher.exe [1593152 2014-01-29] (Samsung Electronics CO., LTD.)
R2 IAStorDataMgrSvc; C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [7168 2012-07-09] (Intel Corporation) [File not signed]
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [319376 2014-10-01] (Intel Corporation)
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [128896 2012-07-18] (Intel Corporation)
S3 iumsvc; C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [174368 2014-02-28] ()
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [165760 2012-07-18] (Intel Corporation)
R2 SWUpdateService; C:\ProgramData\Samsung\SW Update Service\SWMAgent.exe [3000664 2015-01-06] (Samsung Electronics CO., LTD.)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [366520 2015-02-04] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23792 2015-02-04] (Microsoft Corporation)
R2 ZAtheros Bt and Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [323584 2014-06-17] (Atheros) [File not signed]

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R0 amdkmpfd; C:\Windows\System32\drivers\amdkmpfd.sys [62152 2014-10-28] (Advanced Micro Devices, Inc.)
R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [29208 2014-12-02] ()
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [83280 2014-12-02] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93568 2014-12-02] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2014-12-02] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1050432 2014-12-02] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [436624 2014-12-02] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [116728 2014-12-02] (AVAST Software)
S3 aswTap; C:\Windows\system32\DRIVERS\aswTap.sys [44640 2014-06-27] (The OpenVPN Project)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [267632 2014-12-02] ()
S3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [226304 2014-03-18] (Microsoft Corporation)
R1 CLVirtualDrive; C:\Windows\system32\DRIVERS\CLVirtualDrive.sys [92536 2012-06-25] (CyberLink)
S3 RadioHIDMini; C:\Windows\System32\drivers\RadioHIDMini.sys [23408 2012-07-27] (Windows (R) Win 7 DDK provider) [File not signed]
R2 VBoxAswDrv; C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [271752 2014-12-02] (Avast Software)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114496 2015-02-04] (Microsoft Corporation)
S3 BTATH_LWFLT; \SystemRoot\system32\DRIVERS\btath_lwflt.sys [X]
S3 esgiguard; \??\C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-04-08 19:20 - 2015-04-08 19:21 - 00019349 _____ () C:\Users\Perrine\Downloads\FRST.txt
2015-04-08 19:20 - 2015-04-08 19:20 - 00000000 ____D () C:\FRST
2015-04-08 19:19 - 2015-04-08 19:19 - 02095616 _____ (Farbar) C:\Users\Perrine\Downloads\FRST64.exe
2015-04-08 19:04 - 2015-04-08 19:04 - 00002504 _____ () C:\Users\Perrine\Desktop\AdwCleaner[S1].txt
2015-04-08 18:41 - 2015-04-08 18:42 - 00000197 _____ () C:\WINDOWS\system32\2015-04-08-16-41-44.044-AvastVBoxSVC.exe-2632.log
2015-04-08 18:28 - 2015-04-08 18:28 - 02217984 _____ () C:\Users\Perrine\Downloads\adwcleaner_4.201.exe
2015-04-07 22:26 - 2015-04-07 22:29 - 00000197 _____ () C:\WINDOWS\system32\2015-04-07-20-26-52.063-AvastVBoxSVC.exe-2380.log
2015-04-04 22:15 - 2015-04-04 22:15 - 00000000 ___SD () C:\WINDOWS\SysWOW64\GWX
2015-04-04 22:15 - 2015-04-04 22:15 - 00000000 ___SD () C:\WINDOWS\system32\GWX
2015-04-04 22:11 - 2015-04-04 22:14 - 00000197 _____ () C:\WINDOWS\system32\2015-04-04-20-11-37.067-AvastVBoxSVC.exe-2228.log
2015-04-04 21:59 - 2015-04-08 18:39 - 00000732 _____ () C:\WINDOWS\setupact.log
2015-04-04 21:59 - 2015-04-04 21:59 - 00003146 _____ () C:\WINDOWS\System32\Tasks\RTKCPL
2015-04-04 21:59 - 2015-04-04 21:59 - 00000000 ____H () C:\ProgramData\DP45977C.lfl
2015-04-04 21:59 - 2015-04-04 21:59 - 00000000 _____ () C:\WINDOWS\setuperr.log
2015-04-01 23:49 - 2015-04-01 23:49 - 00000197 _____ () C:\WINDOWS\system32\2015-04-01-21-49-19.032-AvastVBoxSVC.exe-3356.log
2015-04-01 11:50 - 2015-04-01 11:53 - 00000197 _____ () C:\WINDOWS\system32\2015-04-01-09-50-34.004-AvastVBoxSVC.exe-2228.log
2015-04-01 11:48 - 2015-04-01 11:48 - 00003434 _____ () C:\WINDOWS\System32\Tasks\Settings
2015-03-31 22:34 - 2015-03-31 22:35 - 00000197 _____ () C:\WINDOWS\system32\2015-03-31-20-34-15.058-AvastVBoxSVC.exe-2172.log
2015-03-31 21:57 - 2015-03-31 21:57 - 00000197 _____ () C:\WINDOWS\system32\2015-03-31-19-57-33.089-AvastVBoxSVC.exe-3312.log
2015-03-31 17:53 - 2015-03-31 17:54 - 00000197 _____ () C:\WINDOWS\system32\2015-03-31-15-53-31.047-AvastVBoxSVC.exe-2632.log
2015-03-31 17:32 - 2015-03-14 10:20 - 01385256 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2015-03-31 17:32 - 2015-03-14 10:13 - 01124352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2015-03-31 17:09 - 2015-03-31 17:10 - 00000197 _____ () C:\WINDOWS\system32\2015-03-31-15-09-37.052-AvastVBoxSVC.exe-2584.log
2015-03-26 00:29 - 2015-03-26 00:31 - 00000197 _____ () C:\WINDOWS\system32\2015-03-25-22-29-43.024-AvastVBoxSVC.exe-2284.log
2015-03-26 00:23 - 2015-03-11 00:08 - 00943104 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2015-03-26 00:23 - 2015-03-11 00:08 - 00030720 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2015-03-26 00:22 - 2015-03-11 00:08 - 01107456 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2015-03-26 00:22 - 2015-03-11 00:08 - 00760320 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2015-03-26 00:22 - 2015-03-11 00:08 - 00677888 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2015-03-26 00:22 - 2015-03-11 00:08 - 00414208 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2015-03-26 00:21 - 2015-03-11 04:38 - 00227328 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepdu.dll
2015-03-17 01:10 - 2015-03-17 01:11 - 00000197 _____ () C:\WINDOWS\system32\2015-03-16-23-10-14.097-AvastVBoxSVC.exe-3864.log
2015-03-17 00:51 - 2015-03-17 00:51 - 00000000 ____D () C:\Users\Perrine\AppData\Roaming\QuickScan
2015-03-17 00:49 - 2015-03-17 01:09 - 00000000 ____D () C:\ProgramData\{b01c9ed6-19a4-9dec-b01c-c9ed619a7b58}
2015-03-17 00:49 - 2015-03-17 00:49 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2015-03-17 00:48 - 2015-03-17 00:48 - 00000000 ____D () C:\Program Files (x86)\Microsoft Silverlight
2015-03-17 00:08 - 2015-03-17 00:08 - 00000197 _____ () C:\WINDOWS\system32\2015-03-16-22-08-28.070-AvastVBoxSVC.exe-2848.log
2015-03-16 23:54 - 2015-03-16 23:55 - 00000000 ____D () C:\ProgramData\E1864A66-75E3-486a-BD95-D1B7D99A84A7
2015-03-16 23:47 - 2015-03-16 23:47 - 00000000 ____D () C:\WINDOWS\System32\Tasks\Apple
2015-03-16 23:43 - 2015-03-16 23:44 - 00000197 _____ () C:\WINDOWS\system32\2015-03-16-21-43-17.004-AvastVBoxSVC.exe-2944.log
2015-03-16 22:45 - 2015-03-16 22:45 - 00000197 _____ () C:\WINDOWS\system32\2015-03-16-20-45-36.017-AvastVBoxSVC.exe-2700.log
2015-03-16 20:05 - 2015-03-16 20:06 - 00000000 ____D () C:\Users\Perrine\AppData\Roaming\Easy File Share
2015-03-16 19:50 - 2015-03-16 19:50 - 00001216 _____ () C:\Users\Perrine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\S Agent.lnk
2015-03-16 19:48 - 2015-03-16 19:49 - 00000197 _____ () C:\WINDOWS\system32\2015-03-16-17-48-58.058-AvastVBoxSVC.exe-2692.log
2015-03-16 19:43 - 2015-03-16 19:43 - 00000197 _____ () C:\WINDOWS\system32\2015-03-16-17-43-09.013-AvastVBoxSVC.exe-2420.log
2015-03-16 19:36 - 2015-03-16 19:36 - 00000000 ____D () C:\Program Files\DIFX
2015-03-16 19:35 - 2015-03-16 19:35 - 00003126 _____ () C:\WINDOWS\System32\Tasks\advRecovery
2015-03-16 00:38 - 2015-03-04 23:24 - 00792032 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2015-03-16 00:38 - 2015-03-04 23:24 - 00178144 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2015-03-16 00:37 - 2015-03-16 00:38 - 00000197 _____ () C:\WINDOWS\system32\2015-03-15-22-37-58.011-AvastVBoxSVC.exe-2088.log
2015-03-12 23:43 - 2014-04-16 01:34 - 00029888 _____ (Microsoft Corporation) C:\WINDOWS\system32\aspnet_counters.dll
2015-03-12 23:42 - 2014-04-16 01:35 - 00028352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aspnet_counters.dll
2015-03-12 23:32 - 2014-10-29 05:59 - 00014144 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\swenum.sys
2015-03-12 23:32 - 2014-10-29 04:22 - 00428032 _____ (Microsoft Corporation) C:\WINDOWS\system32\msihnd.dll
2015-03-12 23:32 - 2014-10-29 03:42 - 00325120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msihnd.dll
2015-03-12 23:31 - 2014-10-29 06:03 - 00116032 _____ (Microsoft Corporation) C:\WINDOWS\system32\consent.exe
2015-03-12 23:31 - 2014-10-29 04:45 - 00081408 _____ (Microsoft Corporation) C:\WINDOWS\system32\packager.dll
2015-03-12 23:31 - 2014-10-29 04:19 - 03320320 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2015-03-12 23:31 - 2014-10-29 04:00 - 00072192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\packager.dll
2015-03-12 23:31 - 2014-10-29 03:45 - 03607040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2015-03-12 23:31 - 2014-10-29 03:17 - 00186368 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpapisrv.dll
2015-03-12 23:31 - 2014-10-29 03:10 - 02344960 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll
2015-03-12 23:31 - 2014-10-29 02:52 - 15432704 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2015-03-12 23:31 - 2014-10-29 02:51 - 01554432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3.dll
2015-03-12 23:31 - 2014-10-29 02:45 - 13318144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll
2015-03-12 23:30 - 2014-10-29 06:00 - 01540696 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2015-03-12 23:30 - 2014-10-29 05:59 - 03460472 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSService.dll
2015-03-12 23:30 - 2014-10-29 05:59 - 02529856 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2015-03-12 23:30 - 2014-10-29 05:57 - 03138720 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVCORE.DLL
2015-03-12 23:30 - 2014-10-29 05:57 - 03118096 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcMon.exe
2015-03-12 23:30 - 2014-10-29 05:57 - 01286048 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSAudDecMFT.dll
2015-03-12 23:30 - 2014-10-29 05:55 - 02174976 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2015-03-12 23:30 - 2014-10-29 05:52 - 02334080 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2015-03-12 23:30 - 2014-10-29 05:13 - 01901240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll
2015-03-12 23:30 - 2014-10-29 05:11 - 02689392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVCORE.DLL
2015-03-12 23:30 - 2014-10-29 05:07 - 02324208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2015-03-12 23:30 - 2014-10-29 04:59 - 03109376 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
2015-03-12 23:30 - 2014-10-29 04:29 - 04483072 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbon.dll
2015-03-12 23:30 - 2014-10-29 04:24 - 04418560 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbgeng.dll
2015-03-12 23:30 - 2014-10-29 03:56 - 03754496 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVidCtl.dll
2015-03-12 23:30 - 2014-10-29 03:51 - 00941056 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsFilt.dll
2015-03-12 23:30 - 2014-10-29 03:45 - 00165888 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpinput.exe
2015-03-12 23:30 - 2014-10-29 03:43 - 07075328 _____ (Microsoft Corporation) C:\WINDOWS\system32\glcndFilter.dll
2015-03-12 23:30 - 2014-10-29 03:40 - 00360448 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpclip.exe
2015-03-12 23:30 - 2014-10-29 03:39 - 02896384 _____ (Microsoft Corporation) C:\WINDOWS\system32\esent.dll
2015-03-12 23:30 - 2014-10-29 03:38 - 04690432 _____ (Microsoft Corporation) C:\WINDOWS\system32\xpsrchvw.exe
2015-03-12 23:30 - 2014-10-29 03:35 - 04709888 _____ (Microsoft Corporation) C:\WINDOWS\system32\d2d1.dll
2015-03-12 23:30 - 2014-10-29 03:35 - 03256320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wpc.dll
2015-03-12 23:30 - 2014-10-29 03:28 - 03820544 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcore.dll
2015-03-12 23:30 - 2014-10-29 03:26 - 03561984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIRibbon.dll
2015-03-12 23:30 - 2014-10-29 03:24 - 02464768 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10warp.dll
2015-03-12 23:30 - 2014-10-29 03:22 - 03633664 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2015-03-12 23:30 - 2014-10-29 03:16 - 05267968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\glcndFilter.dll
2015-03-12 23:30 - 2014-10-29 03:12 - 02749952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2015-03-12 23:30 - 2014-10-29 03:08 - 02608640 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmSvc.dll
2015-03-12 23:30 - 2014-10-29 03:08 - 02542080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\esent.dll
2015-03-12 23:30 - 2014-10-29 03:05 - 03273216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpcore.dll
2015-03-12 23:30 - 2014-10-29 03:04 - 01376256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2015-03-12 23:30 - 2014-10-29 03:03 - 04067840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll
2015-03-12 23:30 - 2014-10-29 03:02 - 14354944 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2015-03-12 23:30 - 2014-10-29 02:54 - 07784960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2015-03-12 23:30 - 2014-10-29 02:52 - 02554880 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2015-03-12 23:30 - 2014-10-29 02:50 - 12749824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2015-03-12 23:30 - 2014-10-29 02:48 - 03056128 _____ (Microsoft Corporation) C:\WINDOWS\system32\xpsservices.dll
2015-03-12 23:30 - 2014-10-29 02:46 - 09530368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Search.dll
2015-03-12 23:30 - 2014-10-29 02:46 - 01919488 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsPrint.dll
2015-03-12 23:30 - 2014-10-29 02:43 - 05264384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2015-03-12 23:30 - 2014-10-29 02:42 - 01922560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2015-03-12 23:30 - 2014-10-29 02:38 - 07032320 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2015-03-12 23:30 - 2014-10-29 02:37 - 06386176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Search.dll
2015-03-12 23:30 - 2014-10-29 02:33 - 06213632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2015-03-12 23:30 - 2014-10-07 08:45 - 03307112 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2015-03-12 23:30 - 2014-10-07 05:44 - 02890296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2vdec.dll
2015-03-12 23:29 - 2014-10-29 06:10 - 01816008 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskschd.dll
2015-03-12 23:29 - 2014-10-29 06:00 - 02314952 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll
2015-03-12 23:29 - 2014-10-29 06:00 - 02229168 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d9.dll
2015-03-12 23:29 - 2014-10-29 05:58 - 00014528 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\drmkaud.sys
2015-03-12 23:29 - 2014-10-29 05:57 - 02745160 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVDECOD.DLL
2015-03-12 23:29 - 2014-10-29 05:57 - 02450216 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVENCOD.DLL
2015-03-12 23:29 - 2014-10-29 05:55 - 01660528 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2015-03-12 23:29 - 2014-10-29 05:55 - 01543768 _____ (Microsoft Corporation) C:\WINDOWS\system32\webservices.dll
2015-03-12 23:29 - 2014-10-29 05:52 - 01518504 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll
2015-03-12 23:29 - 2014-10-29 05:52 - 01509688 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpmde.dll
2015-03-12 23:29 - 2014-10-29 05:52 - 01288096 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetsrc.dll
2015-03-12 23:29 - 2014-10-29 05:52 - 01165744 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfasfsrcsnk.dll
2015-03-12 23:29 - 2014-10-29 05:52 - 01064720 _____ (Microsoft Corporation) C:\WINDOWS\system32\drmv2clt.dll
2015-03-12 23:29 - 2014-10-29 05:51 - 01310912 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll
2015-03-12 23:29 - 2014-10-29 05:12 - 01946144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d11.dll
2015-03-12 23:29 - 2014-10-29 05:12 - 01907384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d9.dll
2015-03-12 23:29 - 2014-10-29 05:11 - 02528760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVDECOD.DLL
2015-03-12 23:29 - 2014-10-29 05:11 - 02447104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVENCOD.DLL
2015-03-12 23:29 - 2014-10-29 05:11 - 01024200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSAudDecMFT.dll
2015-03-12 23:29 - 2014-10-29 05:10 - 01564464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2015-03-12 23:29 - 2014-10-29 05:10 - 01209624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2015-03-12 23:29 - 2014-10-29 05:07 - 01321192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmde.dll
2015-03-12 23:29 - 2014-10-29 05:07 - 01115104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetsrc.dll
2015-03-12 23:29 - 2014-10-29 04:25 - 00785920 _____ (Microsoft Corporation) C:\WINDOWS\system32\blackbox.dll
2015-03-12 23:29 - 2014-10-29 04:17 - 02003456 _____ (Microsoft Corporation) C:\WINDOWS\system32\mmc.exe
2015-03-12 23:29 - 2014-10-29 04:10 - 02706432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExplorerFrame.dll
2015-03-12 23:29 - 2014-10-29 04:08 - 01540096 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagperf.dll
2015-03-12 23:29 - 2014-10-29 04:00 - 02162176 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRH.dll
2015-03-12 23:29 - 2014-10-29 03:57 - 02924032 _____ (Microsoft Corporation) C:\WINDOWS\system32\mmcndmgr.dll
2015-03-12 23:29 - 2014-10-29 03:55 - 01697280 _____ (Microsoft Corporation) C:\WINDOWS\system32\quartz.dll
2015-03-12 23:29 - 2014-10-29 03:47 - 02072064 _____ (Microsoft Corporation) C:\WINDOWS\system32\OpcServices.dll
2015-03-12 23:29 - 2014-10-29 03:44 - 02984448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbgeng.dll
2015-03-12 23:29 - 2014-10-29 03:42 - 01999872 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2015-03-12 23:29 - 2014-10-29 03:31 - 02941952 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebSync.dll
2015-03-12 23:29 - 2014-10-29 03:24 - 02364928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mmcndmgr.dll
2015-03-12 23:29 - 2014-10-29 03:23 - 01500672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\quartz.dll
2015-03-12 23:29 - 2014-10-29 03:22 - 02410496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVidCtl.dll
2015-03-12 23:29 - 2014-10-29 03:21 - 01250816 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll
2015-03-12 23:29 - 2014-10-29 03:18 - 01753600 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2015-03-12 23:29 - 2014-10-29 03:17 - 01360896 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpsvc.dll
2015-03-12 23:29 - 2014-10-29 03:14 - 03553280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xpsrchvw.exe
2015-03-12 23:29 - 2014-10-29 03:11 - 01639424 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidsvc.dll
2015-03-12 23:29 - 2014-10-29 03:10 - 02469888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Wpc.dll
2015-03-12 23:29 - 2014-10-29 03:08 - 02174976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10warp.dll
2015-03-12 23:29 - 2014-10-29 03:08 - 01822720 _____ (Microsoft Corporation) C:\WINDOWS\system32\dui70.dll
2015-03-12 23:29 - 2014-10-29 03:08 - 01560576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll
2015-03-12 23:29 - 2014-10-29 03:03 - 02635264 _____ (Microsoft Corporation) C:\WINDOWS\system32\CertEnroll.dll
2015-03-12 23:29 - 2014-10-29 03:03 - 02487296 _____ (Microsoft Corporation) C:\WINDOWS\system32\storagewmi.dll
2015-03-12 23:29 - 2014-10-29 02:59 - 01490944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2015-03-12 23:29 - 2014-10-29 02:56 - 01337344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2015-03-12 23:29 - 2014-10-29 02:52 - 02170368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmSvc.dll
2015-03-12 23:29 - 2014-10-29 02:52 - 01461248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dui70.dll
2015-03-12 23:29 - 2014-10-29 02:52 - 01275904 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFolder.dll
2015-03-12 23:29 - 2014-10-29 02:50 - 02317824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CertEnroll.dll
2015-03-12 23:29 - 2014-10-29 02:50 - 01482752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\storagewmi.dll
2015-03-12 23:29 - 2014-10-29 02:46 - 01348096 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2015-03-12 23:29 - 2014-10-29 02:45 - 01725952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2015-03-12 23:29 - 2014-10-29 02:42 - 01221120 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll
2015-03-12 23:29 - 2014-10-29 02:41 - 02880000 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpccpl.dll
2015-03-12 23:29 - 2014-10-29 02:41 - 01317376 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Streaming.dll
2015-03-12 23:29 - 2014-10-29 02:39 - 01000448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchFolder.dll
2015-03-12 23:29 - 2014-10-29 02:35 - 01668096 _____ (Microsoft Corporation) C:\WINDOWS\system32\workfolderssvc.dll
2015-03-12 23:29 - 2014-10-29 02:34 - 01544192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2015-03-12 23:29 - 2014-10-15 10:32 - 02025792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2015-03-12 23:29 - 2014-09-25 05:42 - 00373568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys
2015-03-12 23:28 - 2014-10-29 06:04 - 00105872 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncryptsslp.dll
2015-03-12 23:28 - 2014-10-29 06:00 - 01385216 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32.dll
2015-03-12 23:28 - 2014-10-29 05:57 - 01576312 _____ (Microsoft Corporation) C:\WINDOWS\system32\propsys.dll
2015-03-12 23:28 - 2014-10-29 05:57 - 01210176 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMADMOD.DLL
2015-03-12 23:28 - 2014-10-29 05:55 - 01133200 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2015-03-12 23:28 - 2014-10-29 05:52 - 00988544 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsrcsnk.dll
2015-03-12 23:28 - 2014-10-29 05:52 - 00850656 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetcore.dll
2015-03-12 23:28 - 2014-10-29 05:52 - 00821696 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2015-03-12 23:28 - 2014-10-29 05:52 - 00734448 _____ (Microsoft Corporation) C:\WINDOWS\system32\evr.dll
2015-03-12 23:28 - 2014-10-29 05:52 - 00634768 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll
2015-03-12 23:28 - 2014-10-29 05:52 - 00580024 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmdrmdev.dll
2015-03-12 23:28 - 2014-10-29 05:18 - 00848568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\taskschd.dll
2015-03-12 23:28 - 2014-10-29 05:18 - 00016504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\psapi.dll
2015-03-12 23:28 - 2014-10-29 05:11 - 01037656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMADMOD.DLL
2015-03-12 23:28 - 2014-10-29 05:10 - 01287112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\propsys.dll
2015-03-12 23:28 - 2014-10-29 05:10 - 01178104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webservices.dll
2015-03-12 23:28 - 2014-10-29 05:07 - 00959112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfasfsrcsnk.dll
2015-03-12 23:28 - 2014-10-29 05:07 - 00857384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsrcsnk.dll
2015-03-12 23:28 - 2014-10-29 05:07 - 00705008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll
2015-03-12 23:28 - 2014-10-29 05:07 - 00700328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetcore.dll
2015-03-12 23:28 - 2014-10-29 05:07 - 00584120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\evr.dll
2015-03-12 23:28 - 2014-10-29 05:07 - 00551064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf.dll
2015-03-12 23:28 - 2014-10-29 05:05 - 00890128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\drmv2clt.dll
2015-03-12 23:28 - 2014-10-29 04:56 - 01164288 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSMPEG2ENC.DLL
2015-03-12 23:28 - 2014-10-29 04:50 - 01192960 _____ (Microsoft Corporation) C:\WINDOWS\system32\uxtheme.dll
2015-03-12 23:28 - 2014-10-29 04:43 - 00685056 _____ (Microsoft Corporation) C:\WINDOWS\system32\riched20.dll
2015-03-12 23:28 - 2014-10-29 04:31 - 00971264 _____ (Microsoft Corporation) C:\WINDOWS\system32\sqlceqp40.dll
2015-03-12 23:28 - 2014-10-29 04:29 - 01246720 _____ (Microsoft Corporation) C:\WINDOWS\system32\ogldrv.dll
2015-03-12 23:28 - 2014-10-29 04:28 - 01502208 _____ (Microsoft Corporation) C:\WINDOWS\system32\xpssvcs.dll
2015-03-12 23:28 - 2014-10-29 04:26 - 00771584 _____ (Microsoft Corporation) C:\WINDOWS\system32\odbc32.dll
2015-03-12 23:28 - 2014-10-29 04:07 - 06692352 _____ (Microsoft Corporation) C:\WINDOWS\system32\mspaint.exe
2015-03-12 23:28 - 2014-10-29 04:03 - 00862720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2015-03-12 23:28 - 2014-10-29 03:56 - 01526784 _____ (Microsoft Corporation) C:\WINDOWS\system32\pla.dll
2015-03-12 23:28 - 2014-10-29 03:56 - 00603648 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfds.dll
2015-03-12 23:28 - 2014-10-29 03:53 - 01101824 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdvidcrl.dll
2015-03-12 23:28 - 2014-10-29 03:53 - 00881152 _____ (Microsoft Corporation) C:\WINDOWS\system32\printfilterpipelinesvc.exe
2015-03-12 23:28 - 2014-10-29 03:50 - 01289216 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMNetMgr.dll
2015-03-12 23:28 - 2014-10-29 03:49 - 00742400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sqlceqp40.dll
2015-03-12 23:28 - 2014-10-29 03:48 - 01080832 _____ (Microsoft Corporation) C:\WINDOWS\system32\sbe.dll
2015-03-12 23:28 - 2014-10-29 03:48 - 00780288 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsm.dll
2015-03-12 23:28 - 2014-10-29 03:46 - 01497600 _____ (Microsoft Corporation) C:\WINDOWS\system32\RecoveryDrive.exe
2015-03-12 23:28 - 2014-10-29 03:45 - 00717312 _____ (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.dll
2015-03-12 23:28 - 2014-10-29 03:45 - 00618496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\blackbox.dll
2015-03-12 23:28 - 2014-10-29 03:43 - 01092608 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdosys.dll
2015-03-12 23:28 - 2014-10-29 03:43 - 00933376 _____ (Microsoft Corporation) C:\WINDOWS\system32\qmgr.dll
2015-03-12 23:28 - 2014-10-29 03:42 - 03724800 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinSAT.exe
2015-03-12 23:28 - 2014-10-29 03:39 - 00898048 _____ (Microsoft Corporation) C:\WINDOWS\system32\CPFilters.dll
2015-03-12 23:28 - 2014-10-29 03:37 - 01563136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mmc.exe
2015-03-12 23:28 - 2014-10-29 03:34 - 01114624 _____ (Microsoft Corporation) C:\WINDOWS\system32\termsrv.dll
2015-03-12 23:28 - 2014-10-29 03:34 - 01037824 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSWorkspace.dll
2015-03-12 23:28 - 2014-10-29 03:33 - 01056768 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebcamUi.dll
2015-03-12 23:28 - 2014-10-29 03:32 - 01843712 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPDMC.exe
2015-03-12 23:28 - 2014-10-29 03:32 - 01390080 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2015-03-12 23:28 - 2014-10-29 03:25 - 01812992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SRH.dll
2015-03-12 23:28 - 2014-10-29 03:25 - 01534464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pla.dll
2015-03-12 23:28 - 2014-10-29 03:24 - 01217024 _____ (Microsoft Corporation) C:\WINDOWS\system32\sysmain.dll
2015-03-12 23:28 - 2014-10-29 03:20 - 01492480 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbghelp.dll
2015-03-12 23:28 - 2014-10-29 03:19 - 00817664 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcss.dll
2015-03-12 23:28 - 2014-10-29 03:19 - 00713216 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinSync.dll
2015-03-12 23:28 - 2014-10-29 03:18 - 01050624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMNetMgr.dll
2015-03-12 23:28 - 2014-10-29 03:17 - 01402368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OpcServices.dll
2015-03-12 23:28 - 2014-10-29 03:17 - 00829952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sbe.dll
2015-03-12 23:28 - 2014-10-29 03:16 - 01696256 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtsvc.dll
2015-03-12 23:28 - 2014-10-29 03:14 - 00802816 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll
2015-03-12 23:28 - 2014-10-29 03:12 - 00645120 _____ (Microsoft Corporation) C:\WINDOWS\system32\msTextPrediction.dll
2015-03-12 23:28 - 2014-10-29 03:10 - 01096704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32.dll
2015-03-12 23:28 - 2014-10-29 03:09 - 01335296 _____ (Microsoft Corporation) C:\WINDOWS\system32\mispace.dll
2015-03-12 23:28 - 2014-10-29 03:09 - 00658944 _____ (Microsoft Corporation) C:\WINDOWS\system32\duser.dll
2015-03-12 23:28 - 2014-10-29 03:08 - 01478144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMPDMC.exe
2015-03-12 23:28 - 2014-10-29 03:08 - 00881664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WebcamUi.dll
2015-03-12 23:28 - 2014-10-29 03:07 - 01396736 _____ (Microsoft Corporation) C:\WINDOWS\system32\SmartcardCredentialProvider.dll
2015-03-12 23:28 - 2014-10-29 03:07 - 01247232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.Http.dll
2015-03-12 23:28 - 2014-10-29 03:07 - 00747008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll
2015-03-12 23:28 - 2014-10-29 03:06 - 00747520 _____ (Microsoft Corporation) C:\WINDOWS\system32\StructuredQuery.dll
2015-03-12 23:28 - 2014-10-29 03:03 - 01547264 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll
2015-03-12 23:28 - 2014-10-29 03:03 - 00740352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.OnlineId.dll
2015-03-12 23:28 - 2014-10-29 03:01 - 01710592 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdtctm.dll
2015-03-12 23:28 - 2014-10-29 03:01 - 00843776 _____ (Microsoft Corporation) C:\WINDOWS\system32\uDWM.dll
2015-03-12 23:28 - 2014-10-29 03:00 - 01705984 _____ (Microsoft Corporation) C:\WINDOWS\system32\comsvcs.dll
2015-03-12 23:28 - 2014-10-29 02:59 - 01636864 _____ (Microsoft Corporation) C:\WINDOWS\system32\RacEngn.dll
2015-03-12 23:28 - 2014-10-29 02:59 - 01207296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbghelp.dll
2015-03-12 23:28 - 2014-10-29 02:59 - 01021440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll
2015-03-12 23:28 - 2014-10-29 02:56 - 01248256 _____ (Microsoft Corporation) C:\WINDOWS\system32\NaturalLanguage6.dll
2015-03-12 23:28 - 2014-10-29 02:56 - 01001984 _____ (Microsoft Corporation) C:\WINDOWS\system32\MsSpellCheckingFacility.dll
2015-03-12 23:28 - 2014-10-29 02:56 - 00653312 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
2015-03-12 23:28 - 2014-10-29 02:56 - 00631808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttp.dll
2015-03-12 23:28 - 2014-10-29 02:53 - 01063424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mispace.dll
2015-03-12 23:28 - 2014-10-29 02:52 - 01265152 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2015-03-12 23:28 - 2014-10-29 02:52 - 00903168 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2015-03-12 23:28 - 2014-10-29 02:52 - 00801792 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.dll
2015-03-12 23:28 - 2014-10-29 02:48 - 01344000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comsvcs.dll
2015-03-12 23:28 - 2014-10-29 02:48 - 00949760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\uxtheme.dll
2015-03-12 23:28 - 2014-10-29 02:46 - 01265152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RacEngn.dll
2015-03-12 23:28 - 2014-10-29 02:46 - 01015808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2015-03-12 23:28 - 2014-10-29 02:45 - 00918016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NaturalLanguage6.dll
2015-03-12 23:28 - 2014-10-29 02:42 - 00841728 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll
2015-03-12 23:28 - 2014-10-29 02:40 - 02104832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xpsservices.dll
2015-03-12 23:28 - 2014-10-29 02:40 - 00651264 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSync.dll
2015-03-12 23:28 - 2014-10-29 02:38 - 01262080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XpsPrint.dll
2015-03-12 23:28 - 2014-10-29 02:37 - 00724480 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2015-03-12 23:28 - 2014-10-29 02:36 - 00954880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.appcore.dll
2015-03-12 23:28 - 2014-10-29 02:35 - 00772096 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmIndexer.dll
2015-03-12 23:28 - 2014-10-29 02:33 - 01102848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Streaming.dll
2015-03-12 23:28 - 2014-10-29 02:31 - 00626176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
2015-03-12 23:27 - 2014-10-29 06:09 - 01950280 _____ (Microsoft Corporation) C:\WINDOWS\system32\setupapi.dll
2015-03-12 23:27 - 2014-10-29 06:09 - 01309744 _____ (Microsoft Corporation) C:\WINDOWS\system32\kernel32.dll
2015-03-12 23:27 - 2014-10-29 06:09 - 01239576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Taskmgr.exe
2015-03-12 23:27 - 2014-10-29 06:03 - 00435008 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2015-03-12 23:27 - 2014-10-29 06:00 - 00740664 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10level9.dll
2015-03-12 23:27 - 2014-10-29 06:00 - 00544408 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll
2015-03-12 23:27 - 2014-10-29 06:00 - 00379568 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcomp.dll
2015-03-12 23:27 - 2014-10-29 05:57 - 01552704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2015-03-12 23:27 - 2014-10-29 05:57 - 01150208 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMADMOE.DLL
2015-03-12 23:27 - 2014-10-29 05:57 - 00643064 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
2015-03-12 23:27 - 2014-10-29 05:57 - 00557832 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVSDECD.DLL
2015-03-12 23:27 - 2014-10-29 05:57 - 00389952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2015-03-12 23:27 - 2014-10-29 05:55 - 01063432 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinTypes.dll
2015-03-12 23:27 - 2014-10-29 05:55 - 00730824 _____ (Microsoft Corporation) C:\WINDOWS\system32\clbcatq.dll
2015-03-12 23:27 - 2014-10-29 05:55 - 00426120 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsmf.dll
2015-03-12 23:27 - 2014-10-29 05:54 - 00685408 _____ (Microsoft Corporation) C:\WINDOWS\system32\advapi32.dll
2015-03-12 23:27 - 2014-10-29 05:53 - 00411128 _____ (Microsoft Corporation) C:\WINDOWS\system32\services.exe
2015-03-12 23:27 - 2014-10-29 05:52 - 00497936 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2015-03-12 23:27 - 2014-10-29 05:52 - 00444728 _____ (Microsoft Corporation) C:\WINDOWS\system32\MMDevAPI.dll
2015-03-12 23:27 - 2014-10-29 05:52 - 00405456 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfreadwrite.dll
2015-03-12 23:27 - 2014-10-29 05:52 - 00356936 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFCaptureEngine.dll
2015-03-12 23:27 - 2014-10-29 05:18 - 01782912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\setupapi.dll
2015-03-12 23:27 - 2014-10-29 05:18 - 01103768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Taskmgr.exe
2015-03-12 23:27 - 2014-10-29 05:12 - 00616704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10level9.dll
2015-03-12 23:27 - 2014-10-29 05:12 - 00430176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxgi.dll
2015-03-12 23:27 - 2014-10-29 05:12 - 00403776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netcfgx.dll
2015-03-12 23:27 - 2014-10-29 05:11 - 00914648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMADMOE.DLL
2015-03-12 23:27 - 2014-10-29 05:11 - 00492704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVSDECD.DLL
2015-03-12 23:27 - 2014-10-29 05:11 - 00488064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmpeffects.dll
2015-03-12 23:27 - 2014-10-29 05:10 - 00569128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\clbcatq.dll
2015-03-12 23:27 - 2014-10-29 05:10 - 00492232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll
2015-03-12 23:27 - 2014-10-29 05:07 - 00482360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmdrmdev.dll
2015-03-12 23:27 - 2014-10-29 05:07 - 00409040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfreadwrite.dll
2015-03-12 23:27 - 2014-10-29 05:07 - 00399752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2015-03-12 23:27 - 2014-10-29 05:07 - 00331048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MMDevAPI.dll
2015-03-12 23:27 - 2014-10-29 05:06 - 00507152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\advapi32.dll
2015-03-12 23:27 - 2014-10-29 04:48 - 00925696 _____ (Microsoft Corporation) C:\WINDOWS\system32\autoconv.exe
2015-03-12 23:27 - 2014-10-29 04:48 - 00636416 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUDFx02000.dll
2015-03-12 23:27 - 2014-10-29 04:44 - 00110080 _____ (Microsoft Corporation) C:\WINDOWS\system32\appinfo.dll
2015-03-12 23:27 - 2014-10-29 04:42 - 01091584 _____ (Microsoft Corporation) C:\WINDOWS\system32\opengl32.dll
2015-03-12 23:27 - 2014-10-29 04:40 - 00610816 _____ (Microsoft Corporation) C:\WINDOWS\system32\sxs.dll
2015-03-12 23:27 - 2014-10-29 04:36 - 00546304 _____ (Microsoft Corporation) C:\WINDOWS\system32\sqlcese40.dll
2015-03-12 23:27 - 2014-10-29 04:33 - 07558144 _____ (Microsoft Corporation) C:\WINDOWS\system32\NL7Data0011.dll
2015-03-12 23:27 - 2014-10-29 04:33 - 00799744 _____ (Microsoft Corporation) C:\WINDOWS\system32\sqlsrv32.dll
2015-03-12 23:27 - 2014-10-29 04:30 - 00734208 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSWB70804.dll
2015-03-12 23:27 - 2014-10-29 04:30 - 00734208 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSWB70404.dll
2015-03-12 23:27 - 2014-10-29 04:30 - 00734208 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSWB7001E.dll
2015-03-12 23:27 - 2014-10-29 04:30 - 00734208 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSWB70011.dll
2015-03-12 23:27 - 2014-10-29 04:29 - 00620544 _____ (Microsoft Corporation) C:\WINDOWS\system32\dsound.dll
2015-03-12 23:27 - 2014-10-29 04:27 - 00899584 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUDFx.dll
2015-03-12 23:27 - 2014-10-29 04:27 - 00208384 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsRasterService.dll
2015-03-12 23:27 - 2014-10-29 04:26 - 00710144 _____ (Microsoft Corporation) C:\WINDOWS\system32\SmartCardSimulator.dll
2015-03-12 23:27 - 2014-10-29 04:18 - 00784384 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpksetup.exe
2015-03-12 23:27 - 2014-10-29 04:11 - 01070080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSMPEG2ENC.DLL
2015-03-12 23:27 - 2014-10-29 04:11 - 00435712 _____ (Microsoft Corporation) C:\WINDOWS\system32\mswmdm.dll
2015-03-12 23:27 - 2014-10-29 04:09 - 00632320 _____ (Microsoft Corporation) C:\WINDOWS\system32\psisdecd.dll
2015-03-12 23:27 - 2014-10-29 04:08 - 00858624 _____ (Microsoft Corporation) C:\WINDOWS\system32\comuid.dll
2015-03-12 23:27 - 2014-10-29 04:08 - 00670208 _____ (Microsoft Corporation) C:\WINDOWS\system32\qedit.dll
2015-03-12 23:27 - 2014-10-29 04:08 - 00458752 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmdrmnet.dll
2015-03-12 23:27 - 2014-10-29 04:08 - 00390656 _____ (Microsoft Corporation) C:\WINDOWS\system32\difxapi.dll
2015-03-12 23:27 - 2014-10-29 04:07 - 00468992 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsGdiConverter.dll
2015-03-12 23:27 - 2014-10-29 04:06 - 01313792 _____ (Microsoft Corporation) C:\WINDOWS\system32\vds.exe
2015-03-12 23:27 - 2014-10-29 04:06 - 00980480 _____ (Microsoft Corporation) C:\WINDOWS\system32\imapi2fs.dll
2015-03-12 23:27 - 2014-10-29 04:06 - 00235008 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSAC3ENC.DLL
2015-03-12 23:27 - 2014-10-29 04:05 - 00679424 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiaaut.dll
2015-03-12 23:27 - 2014-10-29 04:04 - 00070144 _____ (Microsoft Corporation) C:\WINDOWS\system32\WavDest.dll
2015-03-12 23:27 - 2014-10-29 04:03 - 02334720 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncCenter.dll
2015-03-12 23:27 - 2014-10-29 04:03 - 00832000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\autoconv.exe
2015-03-12 23:27 - 2014-10-29 04:00 - 00652800 _____ (Microsoft Corporation) C:\WINDOWS\system32\FXSCOMEX.dll
2015-03-12 23:27 - 2014-10-29 03:59 - 01106432 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpedit.dll
2015-03-12 23:27 - 2014-10-29 03:59 - 00670720 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiaservc.dll
2015-03-12 23:27 - 2014-10-29 03:59 - 00564224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\riched20.dll
2015-03-12 23:27 - 2014-10-29 03:57 - 01479168 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsecedit.dll
2015-03-12 23:27 - 2014-10-29 03:57 - 01038336 _____ (Microsoft Corporation) C:\WINDOWS\system32\aclui.dll
2015-03-12 23:27 - 2014-10-29 03:57 - 00777728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\opengl32.dll
2015-03-12 23:27 - 2014-10-29 03:56 - 00499200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sxs.dll
2015-03-12 23:27 - 2014-10-29 03:54 - 00432640 _____ (Microsoft Corporation) C:\WINDOWS\system32\msscp.dll
2015-03-12 23:27 - 2014-10-29 03:54 - 00366080 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDEServer.exe
2015-03-12 23:27 - 2014-10-29 03:53 - 01065984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d8.dll
2015-03-12 23:27 - 2014-10-29 03:53 - 00468992 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssph.dll
2015-03-12 23:27 - 2014-10-29 03:53 - 00433152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sqlcese40.dll
2015-03-12 23:27 - 2014-10-29 03:51 - 00477184 _____ (Microsoft Corporation) C:\WINDOWS\system32\puiobj.dll
2015-03-12 23:27 - 2014-10-29 03:50 - 00711680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sqlsrv32.dll
2015-03-12 23:27 - 2014-10-29 03:49 - 02236416 _____ (Microsoft Corporation) C:\WINDOWS\system32\certmgr.dll
2015-03-12 23:27 - 2014-10-29 03:48 - 00524800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSWB70804.dll
2015-03-12 23:27 - 2014-10-29 03:48 - 00524800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSWB70404.dll
2015-03-12 23:27 - 2014-10-29 03:48 - 00524800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSWB7001E.dll
2015-03-12 23:27 - 2014-10-29 03:48 - 00524800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSWB70011.dll
2015-03-12 23:27 - 2014-10-29 03:47 - 01096192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ogldrv.dll
2015-03-12 23:27 - 2014-10-29 03:47 - 00982016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xpssvcs.dll
2015-03-12 23:27 - 2014-10-29 03:47 - 00517120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dsound.dll
2015-03-12 23:27 - 2014-10-29 03:46 - 01001472 _____ (Microsoft Corporation) C:\WINDOWS\HelpPane.exe
2015-03-12 23:27 - 2014-10-29 03:45 - 00672768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\odbc32.dll
2015-03-12 23:27 - 2014-10-29 03:45 - 00519680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\qdvd.dll
2015-03-12 23:27 - 2014-10-29 03:42 - 00852480 _____ (Microsoft Corporation) C:\WINDOWS\system32\PurchaseWindowsLicense.dll
2015-03-12 23:27 - 2014-10-29 03:40 - 02067968 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpdshext.dll
2015-03-12 23:27 - 2014-10-29 03:39 - 01571328 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbengine.exe
2015-03-12 23:27 - 2014-10-29 03:37 - 01436160 _____ (Microsoft Corporation) C:\WINDOWS\system32\wdc.dll
2015-03-12 23:27 - 2014-10-29 03:36 - 02764288 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameux.dll
2015-03-12 23:27 - 2014-10-29 03:36 - 01252864 _____ (Microsoft Corporation) C:\WINDOWS\system32\werconcpl.dll
2015-03-12 23:27 - 2014-10-29 03:36 - 01008128 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2015-03-12 23:27 - 2014-10-29 03:36 - 00787456 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkfoldersControl.dll
2015-03-12 23:27 - 2014-10-29 03:36 - 00609792 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmdrmsdk.dll
2015-03-12 23:27 - 2014-10-29 03:36 - 00585728 _____ (Microsoft Corporation) C:\WINDOWS\system32\PrintDialogs.dll
2015-03-12 23:27 - 2014-10-29 03:35 - 00532480 _____ (Microsoft Corporation) C:\WINDOWS\system32\EncDec.dll
2015-03-12 23:27 - 2014-10-29 03:32 - 00654848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comuid.dll
2015-03-12 23:27 - 2014-10-29 03:32 - 00512512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\psisdecd.dll
2015-03-12 23:27 - 2014-10-29 03:32 - 00391680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmdrmnet.dll
2015-03-12 23:27 - 2014-10-29 03:31 - 01278464 _____ (Microsoft Corporation) C:\WINDOWS\system32\usercpl.dll
2015-03-12 23:27 - 2014-10-29 03:31 - 00761344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\imapi2fs.dll
2015-03-12 23:27 - 2014-10-29 03:31 - 00561664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\qedit.dll
2015-03-12 23:27 - 2014-10-29 03:30 - 06465536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mspaint.exe
2015-03-12 23:27 - 2014-10-29 03:30 - 00358400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wldap32.dll
2015-03-12 23:27 - 2014-10-29 03:29 - 00833536 _____ (Microsoft Corporation) C:\WINDOWS\system32\samsrv.dll
2015-03-12 23:27 - 2014-10-29 03:26 - 00838656 _____ (Microsoft Corporation) C:\WINDOWS\system32\netlogon.dll
2015-03-12 23:27 - 2014-10-29 03:25 - 01058816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gpedit.dll
2015-03-12 23:27 - 2014-10-29 03:24 - 01335296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsecedit.dll
2015-03-12 23:27 - 2014-10-29 03:24 - 00902144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aclui.dll
2015-03-12 23:27 - 2014-10-29 03:23 - 00484352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfds.dll
2015-03-12 23:27 - 2014-10-29 03:22 - 00465920 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidprov.dll
2015-03-12 23:27 - 2014-10-29 03:21 - 00856064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdvidcrl.dll
2015-03-12 23:27 - 2014-10-29 03:21 - 00482304 _____ (Microsoft Corporation) C:\WINDOWS\system32\tpmvsc.dll
2015-03-12 23:27 - 2014-10-29 03:21 - 00391680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssph.dll
2015-03-12 23:27 - 2014-10-29 03:20 - 00510464 _____ (Microsoft Corporation) C:\WINDOWS\system32\webio.dll
2015-03-12 23:27 - 2014-10-29 03:19 - 00754176 _____ (Microsoft Corporation) C:\WINDOWS\system32\FirewallAPI.dll
2015-03-12 23:27 - 2014-10-29 03:19 - 00550912 _____ (Microsoft Corporation) C:\WINDOWS\system32\netprofmsvc.dll
2015-03-12 23:27 - 2014-10-29 03:18 - 01984000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certmgr.dll
2015-03-12 23:27 - 2014-10-29 03:17 - 00945664 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdh.dll
2015-03-12 23:27 - 2014-10-29 03:16 - 00391168 _____ (Microsoft Corporation) C:\WINDOWS\system32\secproc.dll
2015-03-12 23:27 - 2014-10-29 03:16 - 00389632 _____ (Microsoft Corporation) C:\WINDOWS\system32\secproc_isv.dll
2015-03-12 23:27 - 2014-10-29 03:16 - 00332288 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAnimation.dll
2015-03-12 23:27 - 2014-10-29 03:14 - 00854528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdos
0
Réponse 6 / 13
pepette59
8 avril 2015 à 19:35
Avast ne le trouve pas sur le scan mais uniquement par vagues de message "une menace a été detectée", je ne sais pas ce qu'il fait du fichier car je n'ai pas les propositions "mettre en quarantaine" ou "supprimer" et je ne retrouve pas non plus le fichier dans la zone de quarantaine...
0
Réponse 7 / 13
lilidurhone Messages postés 43343 Date d'inscription lundi 25 avril 2011 Statut Contributeur sécurité Dernière intervention 18 septembre 2023 3 804
8 avril 2015 à 19:44
Oui tu le désactive quan tu l'auras téléchargé
0
Réponse 8 / 13
pepette59
8 avril 2015 à 20:08
Voila le rapport :

~ ZHPCleaner v2015.4.7.160 by Nicolas Coolman (08/04/2015)
~ Run by Perrine (Administrator) (08/04/2015 19:56:42)
~ Forum : http://forum.nicolascoolman.fr
~ Facebook : https://www.facebook.com/nicolascoolman1
~ State version : Version OK
~ Type : Scanner
~ Report : C:\Users\Perrine\Desktop\ZHPCleaner.txt
~ Quarantine : C:\Users\Perrine\AppData\Roaming\ZHP\ZHPCleaner_Quarantine.txt
~ UAC : Activate
~ Boot Mode : Normal (Normal boot)
~ Windows 81, 64-bit (Build 9600)


---\\ Service. (2)
[S] TROUVÉ : esgiguard (Crapware.SpyHunter)
[S] TROUVÉ : PCSUUCDRV (PUP.PCSpeedUp)


---\\ Navigateur internet. (1)
TROUVÉ Chrome URL: hxxp://www.google.com/,hxxp://start.mysearchdial.com/?f=1&a=tele1202&cd=2XzuyEtN2Y1L1QzuyDtB0ByB0CtA[...] (PUP.Astromenda)


---\\ Fichier hôte. (1)
~ Le fichier hôte est légitime. (21)


---\\ Tâche planifiée. (0)
~ Aucun élément malicieux trouvé.


---\\ Explorateur ( Dossiers, Fichiers ). (5)
TROUVÉ fichier: C:\WINDOWS\Prefetch\SPYHUNTER-INSTALLER (1).EXE-55E988BA.pf (Crapware.SpyHunter)
TROUVÉ fichier: C:\WINDOWS\Prefetch\SPYHUNTER-INSTALLER.EXE-04D09BD8.pf (Crapware.SpyHunter)
TROUVÉ fichier: C:\WINDOWS\Prefetch\SPYHUNTER4.EXE-3B4E3201.pf (Crapware.SpyHunter)
TROUVÉ fichier: C:\WINDOWS\Prefetch\SYSTWEAKASP.TMP-79533514.pf (PUP.Systweak)
TROUVÉ fichier: C:\ProgramData\{b01c9ed6-19a4-9dec-b01c-c9ed619a7b58}\SuperOptimizer.exe [Super PC Tools Ltd - Fix PC problems and optimize performance](PUP.SuperPCTools)


---\\ Base de Registres ( Clés, Valeurs, Données ). (3)
TROUVÉ clé: [X64] HKLM\SYSTEM\CurrentControlSet\Services\esgiguard [C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys (Not File) (Not File)] (Crapware.SpyHunter)
TROUVÉ clé: [X64] HKLM\SYSTEM\CurrentControlSet\Services\PCSUUCDRV [ (Not File) (Not File)] (PUP.PCSpeedUp)
TROUVÉ valeur: HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\\GoogleChromeAutoLaunch_542A69DB0AC506DEA989911B95D0DB7F ["C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window] (PUP.Vosteran)



---\\ Bilan de la réparation
~ Aucune réparation effectuée.
~ Ce navigateur est absent (Mozilla Firefox)
~ Ce navigateur est absent (Opera Software)


---\\ Statistiques
~ Items scannés : 76232
~ Items trouvés : 11
~ Items réparés : 0


End of clean at 20:06:48
===================
ZHPCleaner-[S]-08042015-20_06_48.txt
0
pepette59
8 avril 2015 à 20:09
je reactive avast ?
0
Réponse 9 / 13
lilidurhone Messages postés 43343 Date d'inscription lundi 25 avril 2011 Statut Contributeur sécurité Dernière intervention 18 septembre 2023 3 804
8 avril 2015 à 20:13
tu nettoies et ensuite tu réactives avast
0
Réponse 10 / 13
pepette59
8 avril 2015 à 20:35
J'ai nettoyé et j'ai réactivé avast
0
Réponse 11 / 13
lilidurhone Messages postés 43343 Date d'inscription lundi 25 avril 2011 Statut Contributeur sécurité Dernière intervention 18 septembre 2023 3 804
8 avril 2015 à 21:06
On continue vendredi
0
Réponse 12 / 13
pepette59
11 avril 2015 à 16:42
Bonjour,

Est ce que je dois encore faire des choses sur mon ordinateur ?

Merci
0
Réponse 13 / 13
lilidurhone Messages postés 43343 Date d'inscription lundi 25 avril 2011 Statut Contributeur sécurité Dernière intervention 18 septembre 2023 3 804
11 avril 2015 à 17:52
Dis moi si avast détecte quelque chose
0

Discussions similaires

"Aucune application permettant d'ouvrir cette URL"
sidojaice -
JIP -

24 réponses
Pix
Anyssa -
vibe -

4 réponses
Trouver le mot réellement écrit en lettres capitales PIX
ETHAN -
kirikou -

4 réponses
Menace "Interpol" après webcam coquine
diego34 -
Panth33ra -

4 réponses
Hameçonnage ce soir 499 euros pour abonnement Avast
Colette34 -
Gerper -

2 réponses