Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 20-08-2017
Exécuté par Zahraa Rached (administrateur) sur ZAHRAA-RACHED (27-08-2017 15:49:38)
Exécuté depuis C:\Users\Zahraa Rached\Desktop
Profils chargés: Zahraa Rached (Profils disponibles: Zahraa Rached & Administrateur)
Platform: Windows 10 Home Version 1607 (X64) Langue: Français (France)
Internet Explorer Version 11 (Navigateur par défaut: Chrome)
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\sched.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
() C:\Windows\System32\igfxTray.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avguard.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\SoftwareUpdater\Avira.SoftwareUpdater.ServiceHost.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(Intel Corporation) C:\Windows\syswow64\esif_uf.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
(Locktime Software) C:\Program Files\Locktime Software\NetLimiter 4\NLSvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
(Intel Corporation) C:\Windows\Temp\DPTF\esif_assist_64.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
() C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.19.820.0_x64__kzf8qxf38zg5c\SkypeHost.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
(Mad Catz) C:\Program Files\Mad Catz\RAT1\RAT1_Profiler.exe
(Locktime Software) C:\Program Files\Locktime Software\NetLimiter 4\NLClientApp.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avgnt.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avshadow.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.5\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.5\GoogleCrashHandler64.exe
(Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
() C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.17062.12911.0_x64__8wekyb3d8bbwe\Video.UI.exe
() C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.35063.13610.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Discord Inc.) C:\Users\Zahraa Rached\AppData\Local\Discord\app-0.0.298\Discord.exe
(Discord Inc.) C:\Users\Zahraa Rached\AppData\Local\Discord\app-0.0.298\Discord.exe
(Discord Inc.) C:\Users\Zahraa Rached\AppData\Local\Discord\app-0.0.298\Discord.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvspcaps64.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
==================== Registre (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [RAT1] => C:\Program Files\Mad Catz\RAT1\RAT1_Profiler.exe [62464 2016-12-16] (Mad Catz)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2017-07-12] (Oracle Corporation)
HKLM-x32\...\Run: [Avira SystrayStartTrigger] => C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe [97512 2017-08-02] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [avgnt] => C:\Program Files (x86)\Avira\Antivirus\avgnt.exe [919032 2017-08-09] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [SDTray] => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe [4174464 2017-05-23] (Safer-Networking Ltd.)
Winlogon\Notify\SDWinLogon-x32: SDWinLogon.dll [X]
HKU\S-1-5-21-2640403193-1110186342-2843918691-1001\...\Run: [Discord] => C:\Users\Zahraa Rached\AppData\Local\Discord\app-0.0.298\Discord.exe [57477112 2017-08-08] (Discord Inc.)
HKU\S-1-5-21-2640403193-1110186342-2843918691-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [9818328 2017-06-30] (Piriform Ltd)
HKU\S-1-5-21-2640403193-1110186342-2843918691-1001\...\Run: [NetLimiter] => C:\Program Files\Locktime Software\NetLimiter 4\nlclientapp.exe [57904 2017-05-05] (Locktime Software)
HKU\S-1-5-21-2640403193-1110186342-2843918691-1001\...\MountPoints2: {7b3f83e2-8411-11e6-8320-1c872cb196e1} - "F:\Auto.exe"
BootExecute: autocheck autochk * sdnclean64.exe
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Hosts: Il y a plus d'un élément dans hosts. Voir la section Hosts de Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.42.129
Tcpip\..\Interfaces\{7b7871c9-df90-4e13-b9a4-1af9632ed372}: [NameServer] 192.168.1.1
Tcpip\..\Interfaces\{7b7871c9-df90-4e13-b9a4-1af9632ed372}: [DhcpNameServer] 192.168.43.1
Tcpip\..\Interfaces\{9c89dab0-1d48-4b97-813f-2f79fd441a73}: [DhcpNameServer] 192.168.42.129
Tcpip\..\Interfaces\{bec6416b-f2de-40d0-a252-bdd5fd354423}: [DhcpNameServer] 192.168.42.129
Tcpip\..\Interfaces\{c3d192f7-5e6e-4033-83c3-7d12a1762cd8}: [DhcpNameServer] 192.168.42.129
Internet Explorer:
==================
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
StartMenuInternet: IEXPLORE.EXE - iexplore.exe
FireFox:
========
FF Plugin: @java.com/DTPlugin,version=11.141.2 -> C:\Program Files\Java\jre1.8.0_141\bin\dtplugin\npDeployJava1.dll [2017-07-25] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.141.2 -> C:\Program Files\Java\jre1.8.0_141\bin\plugin2\npjp2.dll [2017-07-25] (Oracle Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-07-25] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-07-25] (Google Inc.)
Chrome:
=======
CHR Profile: C:\Users\Zahraa Rached\AppData\Local\Google\Chrome\User Data\Default [2017-08-27]
CHR Extension: (Google Slides) - C:\Users\Zahraa Rached\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-07-25]
CHR Extension: (Google Docs) - C:\Users\Zahraa Rached\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-07-25]
CHR Extension: (Google Drive) - C:\Users\Zahraa Rached\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-07-25]
CHR Extension: (YouTube) - C:\Users\Zahraa Rached\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-07-25]
CHR Extension: (Avira Safe Shopping) - C:\Users\Zahraa Rached\AppData\Local\Google\Chrome\User Data\Default\Extensions\ccbpbkebodcjkknkfkpmfeciinhidaeh [2017-07-27]
CHR Extension: (Adblock Plus) - C:\Users\Zahraa Rached\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2017-07-25]
CHR Extension: (Google Sheets) - C:\Users\Zahraa Rached\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-07-25]
CHR Extension: (Google Docs Offline) - C:\Users\Zahraa Rached\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-07-25]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Zahraa Rached\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-08-22]
CHR Extension: (Gmail) - C:\Users\Zahraa Rached\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-07-25]
CHR Extension: (Chrome Media Router) - C:\Users\Zahraa Rached\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-08-08]
CHR HKLM\...\Chrome\Extension: [ccbpbkebodcjkknkfkpmfeciinhidaeh] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [ccbpbkebodcjkknkfkpmfeciinhidaeh] - hxxps://clients2.google.com/service/update2/crx
==================== Services (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S2 AntiVirMailService; C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe [1128432 2017-08-09] (Avira Operations GmbH & Co. KG)
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\Antivirus\sched.exe [490968 2017-08-09] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\Antivirus\avguard.exe [490968 2017-08-09] (Avira Operations GmbH & Co. KG)
S2 AntiVirWebService; C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe [1525240 2017-08-09] (Avira Operations GmbH & Co. KG)
R2 Avira.ServiceHost; C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe [389312 2017-08-02] (Avira Operations GmbH & Co. KG)
R2 AviraUpdaterService; C:\Program Files (x86)\Avira\SoftwareUpdater\Avira.SoftwareUpdater.ServiceHost.exe [102304 2017-08-08] (Avira Operations GmbH & Co. KG)
R2 esifsvc; C:\WINDOWS\SysWoW64\esif_uf.exe [1394360 2015-08-12] (Intel Corporation)
R2 igfxCUIService2.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [373728 2016-11-30] (Intel Corporation)
R2 nlsvc; C:\Program Files\Locktime Software\NetLimiter 4\NLSvc.exe [323632 2017-05-05] (Locktime Software)
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [512960 2017-08-18] (NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [512960 2017-08-18] (NVIDIA Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [462968 2017-07-19] (NVIDIA Corporation)
R2 NvTelemetryContainer; C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe [449984 2017-08-18] (NVIDIA Corporation)
R2 SDScannerService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [1776864 2017-05-23] (Safer-Networking Ltd.)
R2 SDUpdateService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [2131760 2017-05-23] (Safer-Networking Ltd.)
R2 SDWSCService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [233936 2017-05-23] (Safer-Networking Ltd.)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [347320 2017-04-28] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103712 2017-04-28] (Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ======================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R0 avdevprot; C:\WINDOWS\System32\DRIVERS\avdevprot.sys [60920 2017-07-04] (Avira Operations GmbH & Co. KG)
R2 avgntflt; C:\WINDOWS\System32\DRIVERS\avgntflt.sys [173784 2017-08-09] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\WINDOWS\system32\DRIVERS\avipbb.sys [167464 2017-08-09] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\WINDOWS\system32\DRIVERS\avkmgr.sys [44488 2017-07-04] (Avira Operations GmbH & Co. KG)
R2 avnetflt; C:\WINDOWS\system32\DRIVERS\avnetflt.sys [88488 2017-07-04] (Avira Operations GmbH & Co. KG)
R0 avusbflt; C:\WINDOWS\System32\Drivers\avusbflt.sys [38048 2017-07-04] (Avira Operations GmbH & Co. KG)
R3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [131984 2017-05-18] (Samsung Electronics Co., Ltd.)
R3 dptf_cpu; C:\WINDOWS\System32\drivers\dptf_cpu.sys [53752 2015-08-12] (Intel Corporation)
R3 esif_lf; C:\WINDOWS\system32\DRIVERS\esif_lf.sys [261624 2015-08-12] (Intel Corporation)
R3 HIDSwitch; C:\WINDOWS\System32\drivers\AsRadioControl.sys [31120 2016-12-19] (ASUS)
R0 IntelHSWPcc; C:\WINDOWS\System32\drivers\IntelPcc.sys [88256 2015-06-09] (Intel Corporation)
S3 NetAdapterCx; C:\WINDOWS\System32\drivers\NetAdapterCx.sys [90624 2016-07-16] ()
R0 nldrv; C:\WINDOWS\System32\drivers\nldrv.sys [149880 2017-05-05] (Locktime Software)
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nvami.inf_amd64_15c6c286fd4435fd\nvlddmkm.sys [15668664 2017-07-19] (NVIDIA Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30144 2017-08-18] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [48064 2017-07-26] (NVIDIA Corporation)
R3 nvvhci; C:\WINDOWS\System32\drivers\nvvhci.sys [57792 2017-08-18] (NVIDIA Corporation)
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [589824 2016-07-16] (Realtek )
R3 RTSPER; C:\WINDOWS\system32\DRIVERS\RtsPer.sys [751632 2015-05-14] (Realsil Semiconductor Corporation)
R3 SaiMini; C:\WINDOWS\System32\drivers\SaiMini.sys [33496 2017-01-16] (Saitek)
R3 SaiNtBus; C:\WINDOWS\system32\drivers\SaiBus.sys [69080 2017-01-16] (Saitek)
R3 usbrndis6; C:\WINDOWS\System32\drivers\usb80236.sys [23040 2016-07-16] (Microsoft Corporation)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [44056 2016-07-16] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [290144 2016-07-16] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [123232 2016-07-16] (Microsoft Corporation)
S3 _hid_0738_1726; C:\WINDOWS\system32\DRIVERS\_hid_0738_1726.sys [219736 2017-01-16] (Saitek)
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois - Créés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2017-08-27 15:49 - 2017-08-27 15:51 - 000016366 _____ C:\Users\Zahraa Rached\Desktop\FRST.txt
2017-08-27 15:48 - 2017-08-27 15:49 - 002395648 _____ (Farbar) C:\Users\Zahraa Rached\Desktop\FRST64.exe
2017-08-27 13:33 - 2017-08-27 13:33 - 000001096 _____ C:\Users\Zahraa Rached\Downloads\K_akayro.txt
2017-08-27 11:51 - 2017-04-12 12:25 - 000000230 _____ C:\Users\Zahraa Rached\Desktop\Verzidee Privates 63$.reg
2017-08-27 11:50 - 2017-05-01 17:51 - 000001053 _____ C:\Users\Zahraa Rached\Desktop\Reg. 0KB+OP Reach By BernardCombo 3.reg
2017-08-27 11:47 - 2017-08-27 11:47 - 004101412 _____ C:\Users\Zahraa Rached\Desktop\BEST REGEDIT PACK vfinale.rar
2017-08-27 11:42 - 2017-08-27 11:42 - 000000513 _____ C:\Users\Zahraa Rached\Desktop\Regedit & Install.rar
2017-08-27 11:40 - 2017-08-27 11:40 - 000005425 _____ C:\Users\Zahraa Rached\Desktop\Custom Order (313).reg
2017-08-27 11:38 - 2017-08-27 11:38 - 000105772 _____ C:\Users\Zahraa Rached\Desktop\ZHPDiag.txt
2017-08-27 11:34 - 2017-08-27 11:35 - 002819968 _____ C:\Users\Zahraa Rached\Desktop\ZHPDiag3.exe
2017-08-26 23:27 - 2017-08-26 23:27 - 000000000 ____D C:\WINDOWS\System32\Tasks\Safer-Networking
2017-08-26 23:26 - 2017-08-26 23:36 - 000000000 ____D C:\ProgramData\Spybot - Search & Destroy
2017-08-26 23:26 - 2017-08-26 23:30 - 000000000 ____D C:\Program Files (x86)\Spybot - Search & Destroy 2
2017-08-26 23:26 - 2017-08-26 23:26 - 000001466 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot-S&D Start Center.lnk
2017-08-26 23:26 - 2017-08-26 23:26 - 000001454 _____ C:\Users\Public\Desktop\Spybot-S&D Start Center.lnk
2017-08-26 23:26 - 2017-08-26 23:26 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy 2
2017-08-26 23:26 - 2017-05-23 09:22 - 000032240 _____ (Safer-Networking Ltd.) C:\WINDOWS\system32\sdnclean64.exe
2017-08-26 23:17 - 2017-08-26 23:26 - 051725936 _____ (Safer-Networking Ltd. ) C:\Users\Zahraa Rached\Desktop\spybotsd-2.6.46.exe
2017-08-26 12:33 - 2017-08-26 12:33 - 000004306 _____ C:\Users\Zahraa Rached\Desktop\MouseDelayFix-1.0.jar
2017-08-26 12:32 - 2017-08-26 12:32 - 000000668 _____ C:\Users\Zahraa Rached\Desktop\VerzideREG.reg
2017-08-25 18:47 - 2017-08-25 18:47 - 000000671 _____ C:\Users\Zahraa Rached\Desktop\Script.bat
2017-08-25 00:02 - 2017-08-25 00:04 - 000372832 _____ C:\Users\Zahraa Rached\Desktop\videoplayback.mp4.sfk
2017-08-25 00:00 - 2017-08-25 00:01 - 011980581 _____ C:\Users\Zahraa Rached\Desktop\videoplayback.mp4
2017-08-24 23:24 - 2017-08-25 00:30 - 000128856 _____ C:\Users\Zahraa Rached\Desktop\MDT.veg
2017-08-24 23:24 - 2017-08-25 00:06 - 000104448 _____ C:\Users\Zahraa Rached\Desktop\MDT.veg.bak
2017-08-24 11:35 - 2017-08-26 21:49 - 000000000 ____D C:\Users\Zahraa Rached\AppData\Roaming\Notepad++
2017-08-24 11:35 - 2017-08-24 11:35 - 000000000 ____D C:\Users\Zahraa Rached\AppData\Local\Notepad++
2017-08-24 11:35 - 2017-08-24 11:35 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Notepad++
2017-08-24 11:35 - 2017-08-24 11:35 - 000000000 ____D C:\Program Files (x86)\Notepad++
2017-08-24 11:33 - 2017-08-24 11:35 - 002883688 _____ C:\Users\Zahraa Rached\Desktop\npp.7.5.Installer.exe
2017-08-23 20:14 - 2017-08-23 20:15 - 002087504 _____ C:\Users\Zahraa Rached\Desktop\1.9.4-OptiFine_HD_U_B6.jar
2017-08-23 17:29 - 2017-08-23 17:29 - 001728735 _____ C:\Users\Zahraa Rached\Desktop\OptiFine_1.9.4_HD_U_B6.jar
2017-08-23 16:33 - 2017-08-23 16:33 - 000562888 _____ (Shark Labs) C:\Users\Zahraa Rached\Desktop\VoiceChanger64(0.66).exe
2017-08-23 15:54 - 2017-08-23 15:55 - 016841456 _____ C:\Users\Zahraa Rached\Documents\pooop.mp4
2017-08-23 15:35 - 2017-08-23 15:35 - 000194280 _____ C:\Users\Zahraa Rached\Desktop\coco77-hotmail.mp4.sfk
2017-08-23 15:15 - 2017-08-23 15:15 - 113073742 _____ C:\Users\Zahraa Rached\Desktop\Video 23-08-2017 15-15-03.mp4
2017-08-23 15:12 - 2017-08-23 15:14 - 262945706 _____ C:\Users\Zahraa Rached\Desktop\Video 23-08-2017 15-12-30.mp4
2017-08-23 15:08 - 2017-08-23 15:09 - 072241666 _____ C:\Users\Zahraa Rached\Desktop\Video 23-08-2017 15-08-11.mp4
2017-08-23 15:05 - 2017-08-23 15:05 - 000000000 ____D C:\Users\Zahraa Rached\AppData\Roaming\Mirillis
2017-08-23 15:05 - 2017-08-23 15:05 - 000000000 ____D C:\ProgramData\Mirillis
2017-08-23 15:04 - 2017-08-23 15:09 - 000000000 ____D C:\Users\Zahraa Rached\AppData\Local\Mirillis
2017-08-23 12:09 - 2017-08-23 12:09 - 000000000 ____D C:\Users\Zahraa Rached\Desktop\mod 1.10
2017-08-22 20:47 - 2017-08-22 20:50 - 033757054 _____ C:\Users\Zahraa Rached\Documents\Sans titre.mp4
2017-08-22 20:41 - 2017-08-22 20:41 - 000035384 _____ C:\Users\Zahraa Rached\Desktop\Sans titre.veg
2017-08-22 20:01 - 2017-08-22 20:01 - 000012374 _____ C:\Users\Zahraa Rached\Downloads\jelly_crazies.zip
2017-08-22 20:00 - 2017-08-22 20:00 - 000077690 _____ C:\Users\Zahraa Rached\Downloads\funhouse.zip
2017-08-22 20:00 - 2017-08-22 20:00 - 000055053 _____ C:\Users\Zahraa Rached\Downloads\fluo_gums.zip
2017-08-22 20:00 - 2017-08-22 20:00 - 000028639 _____ C:\Users\Zahraa Rached\Downloads\bubblegum.zip
2017-08-22 19:55 - 2017-08-22 19:55 - 000000103 _____ C:\WINDOWS\MSUTIL.INI
2017-08-22 19:55 - 2017-08-22 19:55 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GenArts Sapphire OFX
2017-08-22 19:55 - 2017-08-22 19:55 - 000000000 ____D C:\ProgramData\GenArts
2017-08-22 19:55 - 2017-08-22 19:55 - 000000000 ____D C:\Program Files\Common Files\OFX
2017-08-22 19:55 - 2017-08-22 19:55 - 000000000 ____D C:\Program Files (x86)\GenArts
2017-08-22 19:55 - 2010-02-04 07:58 - 000584376 _____ (Intel Corporation) C:\WINDOWS\system32\libiomp5md.dll
2017-08-22 19:55 - 2010-02-04 07:40 - 000575672 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\libiomp5md.dll
2017-08-22 19:41 - 2017-08-22 19:41 - 000000000 ____D C:\Users\Zahraa Rached\AppData\Roaming\Publish Providers
2017-08-22 19:37 - 2017-08-22 19:40 - 000000000 ____D C:\Users\Zahraa Rached\AppData\Local\Sony
2017-08-22 19:37 - 2017-08-22 19:37 - 000006148 _____ C:\WINDOWS\system32\--traceoff
2017-08-22 19:37 - 2017-08-22 19:37 - 000001113 _____ C:\Users\Public\Desktop\Vegas Pro 13.0 (64-bit).lnk
2017-08-22 19:37 - 2017-08-22 19:37 - 000000000 ____D C:\ProgramData\Sony
2017-08-22 19:37 - 2017-08-22 19:37 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sony
2017-08-22 19:37 - 2017-08-22 19:37 - 000000000 ____D C:\Program Files\Sony
2017-08-22 19:37 - 2017-08-22 19:37 - 000000000 ____D C:\Program Files (x86)\Sony
2017-08-22 19:37 - 2017-08-22 19:37 - 000000000 _____ C:\WINDOWS\system32\--debugoff
2017-08-22 19:36 - 2017-08-22 19:46 - 000000000 ____D C:\Users\Zahraa Rached\AppData\Roaming\Sony
2017-08-22 14:25 - 2017-08-26 15:17 - 000000000 ____D C:\Users\Zahraa Rached\AppData\Roaming\TS3Client
2017-08-20 15:36 - 2017-08-23 16:48 - 000000242 _____ C:\Users\Zahraa Rached\Documents\ClownfishVoiceChanger.ini
2017-08-20 15:36 - 2017-08-20 15:37 - 000002168 _____ C:\Users\Public\Desktop\ClownfishVoiceChanger.lnk
2017-08-20 15:36 - 2017-08-20 15:36 - 000000000 ____D C:\Users\Zahraa Rached\Documents\ClownfishSoundTemp
2017-08-20 15:36 - 2017-08-20 15:36 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ClownfishVoiceChanger
2017-08-20 15:36 - 2017-08-20 15:36 - 000000000 ____D C:\Program Files (x86)\ClownfishVoiceChanger
2017-08-20 00:17 - 2017-08-20 00:17 - 000007350 _____ C:\Users\Zahraa Rached\Downloads\Regedits.rar
2017-08-20 00:17 - 2017-08-20 00:17 - 000000444 _____ C:\Users\Zahraa Rached\Downloads\ArticRege.rar
2017-08-19 23:59 - 2017-08-27 12:36 - 000006202 _____ C:\Users\Zahraa Rached\Desktop\Ziblackinggg Private Regedit.reg
2017-08-19 23:57 - 2017-08-19 23:57 - 000000987 _____ C:\Users\Zahraa Rached\Downloads\regedit.rar
2017-08-19 18:09 - 2017-08-19 18:09 - 000000512 _____ C:\Users\Zahraa Rached\Downloads\CUSTOM REGEDIT.rar
2017-08-19 17:46 - 2017-08-19 17:46 - 000001367 _____ C:\Users\Zahraa Rached\Downloads\Orilation.zip
2017-08-19 17:39 - 2017-08-19 17:39 - 000001538 _____ C:\Users\Zahraa Rached\Downloads\Ziblacking Private Regedit.rar
2017-08-18 19:40 - 2017-08-18 19:41 - 000038389 _____ C:\Users\Zahraa Rached\Downloads\Connection Unlocker by ElFly.zip
2017-08-18 19:26 - 2017-08-18 19:26 - 000000733 _____ C:\Users\Zahraa Rached\Downloads\HitDetect.rar
2017-08-18 18:51 - 2017-08-18 18:51 - 000017747 _____ C:\Users\Zahraa Rached\Downloads\Regedit & DNS.rar
2017-08-17 22:29 - 2017-08-17 22:29 - 000007683 _____ C:\Users\Zahraa Rached\Downloads\regedit kyprak.rar
2017-08-17 19:43 - 2017-08-17 19:43 - 000000074 _____ C:\Users\Zahraa Rached\Downloads\MTU (1).bat
2017-08-17 18:48 - 2017-08-17 18:48 - 000006962 _____ C:\Users\Zahraa Rached\Downloads\8 blok reach BEST REG.rar
2017-08-17 17:57 - 2017-08-17 17:59 - 000264192 _____ () C:\Users\Zahraa Rached\Downloads\RegeditEngine - Premium.exe
2017-08-17 17:54 - 2017-08-17 17:56 - 010832812 _____ C:\Users\Zahraa Rached\Downloads\ORATION.rar
2017-08-17 17:47 - 2017-08-17 17:47 - 000000407 _____ C:\Users\Zahraa Rached\Downloads\Regedits manuel avec lien de vidéo pour linstallation(2).rar
2017-08-17 16:16 - 2017-08-17 16:21 - 017905549 _____ C:\Users\Zahraa Rached\Downloads\Oration no kb & reach.zip
2017-08-17 16:16 - 2017-08-17 16:16 - 000003385 _____ C:\Users\Zahraa Rached\Downloads\DESTROY MINECRAFT V9.zip
2017-08-17 16:16 - 2017-08-17 16:16 - 000000000 ____D C:\Users\Zahraa Rached\Downloads\FUNCRAFT REGEDIT
2017-08-17 15:59 - 2017-08-17 16:05 - 022647968 _____ C:\Users\Zahraa Rached\Downloads\! §8Oni§fZ§8uka §3§bV5 (1).zip
2017-08-17 15:48 - 2017-08-17 15:59 - 003265600 _____ C:\Users\Zahraa Rached\Downloads\! §8Oni§fZ§8uka §3§bV5.zip
2017-08-17 15:31 - 2017-08-17 15:31 - 000217250 _____ C:\Users\Zahraa Rached\Downloads\REGEDIT TWEAKER_SWAMPIE.rar
2017-08-17 14:48 - 2017-08-17 14:49 - 001833329 _____ C:\Users\Zahraa Rached\Downloads\R.I.P Funcraft.zip
2017-08-17 14:46 - 2017-08-17 14:56 - 013222300 _____ C:\Users\Zahraa Rached\Downloads\Unconfirmed 923872.crdownload
2017-08-17 13:44 - 2017-08-17 13:44 - 000000994 _____ C:\Users\Zahraa Rached\Downloads\Connexion.bat
2017-08-16 22:01 - 2017-08-16 22:01 - 000659456 _____ (Speed Guide Inc.) C:\Users\Zahraa Rached\Downloads\TCPOptimizer_v308.exe
2017-08-16 20:33 - 2017-08-16 20:33 - 000002631 _____ C:\Users\Zahraa Rached\Downloads\FirstBackup.spg
2017-08-16 20:32 - 2017-08-16 20:32 - 000696320 _____ (Speed Guide Inc.) C:\Users\Zahraa Rached\Downloads\TCPOptimizer.exe
2017-08-16 16:27 - 2017-08-16 16:28 - 000000034 _____ C:\Users\Zahraa Rached\Downloads\reach.bat
2017-08-16 15:57 - 2017-08-16 15:57 - 000004106 _____ C:\Users\Zahraa Rached\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\gpedit.lnk
2017-08-16 15:56 - 2017-08-16 15:56 - 000032194 _____ C:\Users\Zahraa Rached\Desktop\Console1.msc
2017-08-16 15:50 - 2011-04-09 16:44 - 000901344 _____ (Richard ) C:\Users\Zahraa Rached\Downloads\setup.exe
2017-08-16 15:49 - 2017-08-16 15:50 - 000875012 _____ C:\Users\Zahraa Rached\Downloads\add_gpedit_msc_by_jwils876-d3kh6vm.zip
2017-08-16 15:41 - 2017-08-16 15:42 - 000000130 _____ C:\Users\Zahraa Rached\Downloads\BITS.bat
2017-08-16 15:33 - 2017-08-16 15:35 - 004901928 _____ C:\Users\Zahraa Rached\Downloads\cfosspeed-v1022.exe
2017-08-16 11:11 - 2017-08-16 11:11 - 000025446 _____ C:\Users\Zahraa Rached\Downloads\MinecraftCapes Forge 1.10.jar
2017-08-16 10:40 - 2017-08-16 10:40 - 000009871 _____ C:\Users\Zahraa Rached\Downloads\MinecraftCapes Forge 1.7.10.jar
2017-08-16 10:07 - 2017-08-16 10:07 - 000069536 _____ C:\Users\Zahraa Rached\Downloads\advancedcapes-4.0.jar
2017-08-16 10:07 - 2017-08-16 10:07 - 000029467 _____ C:\Users\Zahraa Rached\Downloads\advancedcapes-1.5.jar
2017-08-16 10:03 - 2017-08-16 10:03 - 000640074 _____ C:\Users\Zahraa Rached\Downloads\CheatBreaker Modpack 1.7.10.zip
2017-08-15 16:40 - 2017-08-17 16:10 - 000000074 _____ C:\Users\Zahraa Rached\Downloads\MTU.bat
2017-08-15 16:06 - 2017-08-15 16:13 - 034322291 _____ C:\Users\Zahraa Rached\Downloads\§4Sharingan §f Rush.zip
2017-08-15 14:39 - 2017-08-27 12:07 - 000000000 ____D C:\Users\Zahraa Rached\AppData\Local\CrashDumps
2017-08-13 21:01 - 2017-08-27 15:22 - 000000000 ____D C:\Users\Zahraa Rached\Desktop\FAST
2017-08-13 15:02 - 2017-08-13 15:08 - 023775976 _____ C:\Users\Zahraa Rached\Downloads\! Konoha Rush 16x V2.zip
2017-08-13 14:55 - 2017-08-13 14:55 - 000546689 _____ C:\Users\Zahraa Rached\Downloads\DnsJumper_v1-0-5.zip
2017-08-13 11:21 - 2017-08-13 11:22 - 002091761 _____ C:\Users\Zahraa Rached\Downloads\OptiFine_1.10_HD_U_E3.jar
2017-08-13 11:20 - 2017-08-13 11:23 - 004353862 _____ C:\Users\Zahraa Rached\Downloads\forge-1.10-12.18.0.2000-1.10.0-installer.jar
2017-08-13 10:54 - 2017-08-13 10:55 - 004736452 _____ C:\Users\Zahraa Rached\Downloads\forge-1.11.2-13.20.1.2386-installer.jar
2017-08-13 10:54 - 2017-08-13 10:55 - 002106193 _____ C:\Users\Zahraa Rached\Downloads\OptiFine_1.11.2_HD_U_C3.jar
2017-08-12 18:28 - 2017-08-12 18:28 - 000000000 ____D C:\Users\Zahraa Rached\Desktop\PAck
2017-08-12 17:16 - 2017-08-12 17:23 - 034236699 _____ C:\Users\Zahraa Rached\Downloads\! Re Zero.zip
2017-08-12 17:09 - 2017-08-27 15:47 - 000001295 _____ C:\Users\Zahraa Rached\Desktop\nativelog.txt
2017-08-12 17:09 - 2017-08-12 17:15 - 033506456 _____ C:\Users\Zahraa Rached\Downloads\Molé Molé.zip
2017-08-12 17:08 - 2017-08-12 17:09 - 000620888 _____ C:\Users\Zahraa Rached\Downloads\DeiRaMod.jar
2017-08-12 16:08 - 2015-10-02 13:41 - 000901344 _____ (Richard ) C:\Users\Zahraa Rached\Desktop\setup.exe
2017-08-12 16:06 - 2017-08-12 16:06 - 002439408 _____ C:\Users\Zahraa Rached\Downloads\wumt.zip
2017-08-12 16:05 - 2016-07-16 13:54 - 000012020 _____ C:\WINDOWS\system32\gpedit.msc
2017-08-12 16:00 - 2017-08-16 15:50 - 000707354 _____ C:\WINDOWS\unins000.exe
2017-08-12 16:00 - 2017-08-16 15:50 - 000003668 _____ C:\WINDOWS\unins000.dat
2017-08-12 16:00 - 2017-08-12 16:09 - 000000000 ____D C:\WINDOWS\SysWOW64\GPBAK
2017-08-12 16:00 - 2017-08-12 16:00 - 000876029 _____ C:\Users\Zahraa Rached\Downloads\gpedit_msc.zip
2017-08-12 16:00 - 2008-04-14 02:11 - 000295936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\appmgr.dll
2017-08-12 16:00 - 2001-08-23 13:00 - 000034871 _____ C:\WINDOWS\SysWOW64\gpedit.msc
2017-08-11 14:04 - 2017-08-11 14:04 - 000003043 _____ C:\Users\Zahraa Rached\Desktop\RAT1.lnk
2017-08-11 14:04 - 2017-08-11 14:04 - 000000000 ____D C:\Users\Zahraa Rached\AppData\Local\SmartTechnology
2017-08-11 14:04 - 2017-08-11 14:04 - 000000000 ____D C:\Program Files\Mad Catz
2017-08-11 14:02 - 2017-08-11 14:04 - 018383304 _____ (Mad catz ) C:\Users\Zahraa Rached\Downloads\RAT_1_Mouse_7_0_60_3_x64_Software.exe
2017-08-11 14:01 - 2017-08-11 14:01 - 000000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel__hid_0738_1726_01009.Wdf
2017-08-11 13:59 - 2017-08-11 14:00 - 004849752 _____ (Mad catz ) C:\Users\Zahraa Rached\Downloads\RAT_1_Mouse_7_0_60_3_x64_Drivers.exe
2017-08-11 13:38 - 2017-08-11 13:38 - 000001310 _____ C:\Users\Zahraa Rached\Desktop\TeamSpeak 3 Client.lnk
2017-08-11 13:38 - 2017-08-11 13:38 - 000001268 _____ C:\Users\Zahraa Rached\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TeamSpeak 3 Client.lnk
2017-08-11 13:38 - 2017-08-11 13:38 - 000000000 ____D C:\Users\Zahraa Rached\AppData\Local\TeamSpeak 3 Client
2017-08-11 13:36 - 2017-08-11 14:51 - 1341015676 _____ C:\Users\Zahraa Rached\Downloads\javaw 08-08-2017 13-33-37.mp4
2017-08-11 13:34 - 2017-08-11 13:37 - 077967920 _____ (TeamSpeak Systems GmbH) C:\Users\Zahraa Rached\Downloads\TeamSpeak3-Client-win64-3.1.5.exe
2017-08-10 13:59 - 2017-08-10 13:59 - 000001142 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\paint.net.lnk
2017-08-10 13:59 - 2017-08-10 13:59 - 000001130 _____ C:\Users\Public\Desktop\paint.net.lnk
2017-08-10 13:59 - 2017-08-10 13:59 - 000000000 ____D C:\Program Files\paint.net
2017-08-10 13:58 - 2017-08-10 14:02 - 000000000 ____D C:\Users\Zahraa Rached\AppData\Local\paint.net
2017-08-10 13:56 - 2017-08-10 13:57 - 007208217 _____ C:\Users\Zahraa Rached\Downloads\paint.net.4.0.17.install.zip
2017-08-09 21:08 - 2017-08-09 21:08 - 000000000 ____D C:\Users\Zahraa Rached\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Discord Inc
2017-08-09 20:58 - 2017-08-09 20:58 - 000000000 ___HD C:\$WINDOWS.~BT
2017-08-08 14:04 - 2017-08-08 14:04 - 000054150 _____ C:\Users\Zahraa Rached\Downloads\javaw 08-08-2017 13-33-37.mp4.bmp
2017-08-08 13:02 - 2017-08-22 22:01 - 000000000 ____D C:\Users\Zahraa Rached\AppData\Roaming\AnyDesk
2017-08-08 13:02 - 2017-08-08 13:02 - 001787592 _____ C:\Users\Zahraa Rached\Downloads\AnyDesk.exe
2017-08-02 21:32 - 2017-08-02 21:36 - 021368730 _____ C:\Users\Zahraa Rached\Downloads\!§dFu§3Tweatz §dF§3a§dd§3e.zip
2017-08-02 21:29 - 2017-08-02 21:29 - 000000000 ____D C:\Users\Zahraa Rached\Desktop\MONTAGE pot
2017-08-02 18:32 - 2017-08-02 18:32 - 000000000 ____D C:\Users\Zahraa Rached\AppData\Roaming\Locktime
2017-08-02 18:30 - 2017-08-02 18:30 - 000000000 ____D C:\ProgramData\Locktime
2017-08-02 18:27 - 2017-08-02 18:27 - 000001271 _____ C:\Users\Public\Desktop\NetLimiter 4 (x64).lnk
2017-08-02 18:27 - 2017-08-02 18:27 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NetLimiter 4
2017-08-02 18:27 - 2017-08-02 18:27 - 000000000 ____D C:\Program Files\Locktime Software
2017-08-02 18:25 - 2017-08-02 18:32 - 000000000 ____D C:\Users\Zahraa Rached\AppData\Roaming\Locktime Software
2017-08-02 18:19 - 2017-08-02 18:25 - 020199056 _____ (Locktime Software) C:\Users\Zahraa Rached\Downloads\netlimiter-4.0.30.0.exe
2017-08-01 10:42 - 2017-04-18 20:35 - 000000000 ___HD C:\Users\Zahraa Rached\Desktop\Guru3D.com
2017-08-01 10:19 - 2017-08-25 00:07 - 000000000 ____D C:\Users\Zahraa Rached\Desktop\ma playlist
2017-07-31 21:26 - 2017-07-31 21:26 - 000000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_WpdMtpDr_01_11_00.Wdf
2017-07-28 14:57 - 2017-07-28 14:57 - 000000000 ____D C:\Users\Zahraa Rached\AppData\LocalLow\Temp
2017-07-28 14:26 - 2017-07-28 14:26 - 000000000 ___RD C:\Users\Zahraa Rached\3D Objects
2017-07-28 11:47 - 2017-07-28 11:47 - 000001467 _____ C:\Users\Zahraa Rached\Desktop\launcher - Raccourci.lnk
2017-07-28 11:47 - 2017-07-28 11:47 - 000000000 ___RD C:\Users\Zahraa Rached\Documents\Scanned Documents
2017-07-28 11:47 - 2017-07-28 11:47 - 000000000 ____D C:\Users\Zahraa Rached\Documents\Fax
2017-07-28 11:44 - 2017-07-28 12:02 - 000000108 ____H C:\Users\Zahraa Rached\Desktop\Nouveau document texte.txt
2017-07-28 11:41 - 2017-07-28 11:41 - 000000000 ___HD C:\Users\Zahraa Rached\Desktop\Nouveau dossier (2)
2017-07-28 11:25 - 2017-07-28 11:25 - 000000000 ____D C:\Users\Zahraa Rached\AppData\Roaming\java
2017-07-28 11:24 - 2017-07-28 11:50 - 000000000 ____D C:\Users\Zahraa Rached\AppData\Roaming\.azlauncher
2017-07-28 11:24 - 2017-07-28 11:24 - 000516931 _____ (-) C:\Users\Zahraa Rached\Downloads\AZ_Minecraft_Launcher_Offline.exe
2017-07-28 11:20 - 2017-07-28 11:20 - 000000398 _____ C:\Users\Zahraa Rached\AppData\Roaming\AdobeWLCMR2Cache.dat
==================== Un mois - Modifiés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2017-08-27 15:49 - 2017-07-27 16:48 - 000000000 ____D C:\FRST
2017-08-27 15:47 - 2017-07-24 20:57 - 000000000 ____D C:\Users\Zahraa Rached\AppData\Roaming\.minecraft
2017-08-27 13:07 - 2017-07-24 21:01 - 000000000 ____D C:\ProgramData\NVIDIA
2017-08-27 12:46 - 2017-07-24 19:04 - 000000000 ____D C:\Users\Zahraa Rached
2017-08-27 12:37 - 2017-07-25 09:06 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2017-08-27 12:37 - 2017-07-24 18:56 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2017-08-27 12:37 - 2015-07-11 04:15 - 000000000 __SHD C:\Users\Zahraa Rached\IntelGraphicsProfiles
2017-08-27 12:36 - 2017-07-24 19:26 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2017-08-27 12:14 - 2017-07-24 19:44 - 000000000 ____D C:\WINDOWS\AppReadiness
2017-08-27 12:07 - 2017-07-24 19:49 - 003520756 _____ C:\WINDOWS\system32\perfh00C.dat
2017-08-27 12:07 - 2017-07-24 19:49 - 000961838 _____ C:\WINDOWS\system32\perfc00C.dat
2017-08-27 12:07 - 2017-07-24 19:44 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2017-08-27 12:07 - 2017-07-24 19:43 - 000000000 ____D C:\WINDOWS\INF
2017-08-27 12:07 - 2017-07-24 19:11 - 007262650 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2017-08-27 11:39 - 2017-07-24 19:44 - 000000000 ___HD C:\Program Files\WindowsApps
2017-08-27 11:36 - 2017-07-27 14:48 - 000000000 ____D C:\Users\Zahraa Rached\AppData\Roaming\ZHP
2017-08-27 11:36 - 2017-07-27 14:48 - 000000000 ____D C:\Users\Zahraa Rached\AppData\Local\ZHP
2017-08-27 11:35 - 2017-07-27 14:48 - 000000212 _____ C:\Users\Zahraa
2017-08-27 11:34 - 2017-07-24 20:42 - 000004190 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{CF205955-86BC-4F4F-A755-0669A5BB9DA2}
2017-08-26 23:37 - 2017-07-24 18:55 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2017-08-26 12:33 - 2017-07-25 12:34 - 000000000 ____D C:\Users\Zahraa Rached\Desktop\mods 1.9
2017-08-25 19:21 - 2017-07-25 09:32 - 000000000 ____D C:\Users\Zahraa Rached\AppData\Local\ElevatedDiagnostics
2017-08-25 16:17 - 2017-07-24 19:31 - 000000000 ____D C:\WINDOWS\CbsTemp
2017-08-23 22:30 - 2017-07-24 19:54 - 000000000 ___DC C:\WINDOWS\Panther
2017-08-23 12:05 - 2017-07-24 18:55 - 000206504 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2017-08-22 19:54 - 2017-07-24 19:44 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2017-08-22 17:53 - 2017-07-24 19:44 - 000000000 ____D C:\WINDOWS\system32\NDF
2017-08-21 21:44 - 2017-07-27 14:43 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
2017-08-21 21:44 - 2017-07-25 10:38 - 000000000 ____D C:\ProgramData\Package Cache
2017-08-20 15:39 - 2017-02-03 19:30 - 000000000 ____D C:\Users\Zahraa Rached\Documents\Enregistrements audio
2017-08-20 15:05 - 2017-07-24 21:01 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2017-08-20 14:52 - 2017-07-25 10:39 - 000004308 _____ C:\WINDOWS\System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-08-20 14:52 - 2017-07-25 10:39 - 000004000 _____ C:\WINDOWS\System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-08-20 14:52 - 2017-07-25 10:39 - 000003994 _____ C:\WINDOWS\System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-08-20 14:52 - 2017-07-25 10:39 - 000003894 _____ C:\WINDOWS\System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-08-20 14:52 - 2017-07-25 10:39 - 000003866 _____ C:\WINDOWS\System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-08-20 14:52 - 2017-07-25 10:39 - 000003858 _____ C:\WINDOWS\System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-08-20 14:52 - 2017-07-25 10:39 - 000003696 _____ C:\WINDOWS\System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-08-20 14:52 - 2017-07-25 10:39 - 000003654 _____ C:\WINDOWS\System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-08-20 14:52 - 2017-07-25 10:39 - 000001491 _____ C:\Users\Public\Desktop\GeForce Experience.lnk
2017-08-20 14:52 - 2017-07-24 21:00 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2017-08-20 14:52 - 2017-07-24 21:00 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2017-08-20 12:34 - 2012-07-08 12:35 - 000000000 ____D C:\Users\Zahraa Rached\Desktop\D
2017-08-19 15:41 - 2017-07-25 08:56 - 000002272 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2017-08-19 15:41 - 2017-07-25 08:56 - 000002260 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2017-08-18 06:37 - 2017-07-25 10:39 - 001923008 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspcap64.dll
2017-08-18 06:37 - 2017-07-25 10:39 - 001755072 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspbridge64.dll
2017-08-18 06:37 - 2017-07-25 10:39 - 001505728 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspcap.dll
2017-08-18 06:37 - 2017-07-25 10:39 - 001317312 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspbridge.dll
2017-08-18 06:37 - 2017-07-25 10:39 - 000121280 _____ C:\WINDOWS\system32\NvRtmpStreamer64.dll
2017-08-18 06:37 - 2017-07-25 10:37 - 000057792 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvhci.sys
2017-08-18 06:36 - 2017-07-25 10:37 - 000179136 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvaudcap64v.dll
2017-08-18 06:36 - 2017-07-25 10:37 - 000146368 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvaudcap32v.dll
2017-08-17 20:11 - 2017-07-25 10:39 - 000001951 _____ C:\WINDOWS\NvContainerRecovery.bat
2017-08-17 18:26 - 2017-07-25 10:39 - 000001951 _____ C:\WINDOWS\NvTelemetryContainerRecovery.bat
2017-08-17 17:30 - 2017-07-24 19:44 - 000000000 ____D C:\WINDOWS\registration
2017-08-16 20:20 - 2017-07-25 12:34 - 000000000 ____D C:\Users\Zahraa Rached\Desktop\mods 1.7
2017-08-12 16:00 - 2017-07-24 19:44 - 000000000 ____D C:\WINDOWS\SysWOW64\GroupPolicy
2017-08-09 22:12 - 2017-07-27 14:57 - 000173784 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avgntflt.sys
2017-08-09 22:12 - 2017-07-27 14:57 - 000167464 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avipbb.sys
2017-08-09 21:08 - 2017-07-25 15:20 - 000002279 _____ C:\Users\Zahraa Rached\Desktop\Discord.lnk
2017-08-09 21:08 - 2017-07-25 15:20 - 000000000 ____D C:\Users\Zahraa Rached\AppData\Roaming\discord
2017-08-09 21:08 - 2017-07-25 15:20 - 000000000 ____D C:\Users\Zahraa Rached\AppData\Local\Discord
2017-08-09 21:01 - 2017-07-26 12:49 - 000000000 ____D C:\WINDOWS\system32\MRT
2017-08-09 20:59 - 2017-07-26 12:49 - 140394280 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2017-08-09 20:11 - 2017-07-24 19:32 - 000000000 ____D C:\Users\Zahraa Rached\AppData\Local\Comms
2017-08-02 18:24 - 2017-07-25 10:39 - 000000000 ____D C:\Users\Zahraa Rached\AppData\Local\NVIDIA Corporation
2017-08-01 12:03 - 2017-07-27 21:54 - 000000000 ____D C:\Users\Zahraa Rached\AppData\Roaming\.PrøClient
2017-07-31 17:14 - 2017-07-24 19:46 - 000835576 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2017-07-31 17:14 - 2017-07-24 19:46 - 000177648 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
==================== Fichiers à la racine de certains dossiers =======
2017-07-28 11:20 - 2017-07-28 11:20 - 000000398 _____ () C:\Users\Zahraa Rached\AppData\Roaming\AdobeWLCMR2Cache.dat
2017-07-25 09:11 - 2017-07-25 09:11 - 000000000 ____H () C:\ProgramData\DP45977C.lfl
Certains fichiers dans TEMP:
====================
2017-08-26 22:15 - 2017-08-26 22:15 - 000019968 _____ (Red Hat®, Inc.) C:\Users\Zahraa Rached\AppData\Local\Temp\jansi-64-113212889926174382.dll
2017-08-26 21:50 - 2017-08-26 21:50 - 000019968 _____ (Red Hat®, Inc.) C:\Users\Zahraa Rached\AppData\Local\Temp\jansi-64-1866192590559028862.dll
2017-08-26 17:58 - 2017-08-26 17:58 - 000019968 _____ (Red Hat®, Inc.) C:\Users\Zahraa Rached\AppData\Local\Temp\jansi-64-2913701424294085253.dll
2017-08-26 15:49 - 2017-08-26 15:49 - 000019968 ____N (Red Hat®, Inc.) C:\Users\Zahraa Rached\AppData\Local\Temp\jansi-64-3016579392669315308.dll
2017-08-27 14:45 - 2017-08-27 14:45 - 000019968 ____N (Red Hat®, Inc.) C:\Users\Zahraa Rached\AppData\Local\Temp\jansi-64-3021188723369571547.dll
2017-08-26 22:59 - 2017-08-26 22:59 - 000019968 ____N (Red Hat®, Inc.) C:\Users\Zahraa Rached\AppData\Local\Temp\jansi-64-324827857182163311.dll
2017-08-26 18:17 - 2017-08-26 18:17 - 000019968 ____N (Red Hat®, Inc.) C:\Users\Zahraa Rached\AppData\Local\Temp\jansi-64-3288910540905486957.dll
2017-08-26 21:29 - 2017-08-26 21:29 - 000019968 ____N (Red Hat®, Inc.) C:\Users\Zahraa Rached\AppData\Local\Temp\jansi-64-3790234212344773239.dll
2017-08-26 16:01 - 2017-08-26 16:01 - 000019968 _____ (Red Hat®, Inc.) C:\Users\Zahraa Rached\AppData\Local\Temp\jansi-64-4167432776137344996.dll
2017-08-26 15:20 - 2017-08-26 15:20 - 000019968 _____ (Red Hat®, Inc.) C:\Users\Zahraa Rached\AppData\Local\Temp\jansi-64-5163988089563526185.dll
2017-08-26 17:16 - 2017-08-26 17:16 - 000019968 ____N (Red Hat®, Inc.) C:\Users\Zahraa Rached\AppData\Local\Temp\jansi-64-5868414155610821768.dll
2017-08-27 14:08 - 2017-08-27 14:08 - 000019968 _____ (Red Hat®, Inc.) C:\Users\Zahraa Rached\AppData\Local\Temp\jansi-64-6445517785397994053.dll
2017-08-26 12:37 - 2017-08-26 12:37 - 000019968 ____N (Red Hat®, Inc.) C:\Users\Zahraa Rached\AppData\Local\Temp\jansi-64-6684720386639686464.dll
2017-08-27 12:46 - 2017-08-27 12:46 - 000019968 ____N (Red Hat®, Inc.) C:\Users\Zahraa Rached\AppData\Local\Temp\jansi-64-7124355316926919162.dll
2017-08-26 16:29 - 2017-08-26 16:29 - 000019968 ____N (Red Hat®, Inc.) C:\Users\Zahraa Rached\AppData\Local\Temp\jansi-64-7276443333951742611.dll
2017-08-26 15:31 - 2017-08-26 15:31 - 000019968 ____N (Red Hat®, Inc.) C:\Users\Zahraa Rached\AppData\Local\Temp\jansi-64-7344199056107607812.dll
2017-08-26 20:52 - 2017-08-26 20:52 - 000019968 _____ (Red Hat®, Inc.) C:\Users\Zahraa Rached\AppData\Local\Temp\jansi-64-7428260808843771623.dll
2017-08-26 15:41 - 2017-08-26 15:41 - 000019968 _____ (Red Hat®, Inc.) C:\Users\Zahraa Rached\AppData\Local\Temp\jansi-64-7690666442828921542.dll
2017-08-26 12:50 - 2017-08-26 12:50 - 000019968 ____N (Red Hat®, Inc.) C:\Users\Zahraa Rached\AppData\Local\Temp\jansi-64-8392573223131218162.dll
2017-08-27 14:18 - 2017-08-27 14:18 - 000019968 ____N (Red Hat®, Inc.) C:\Users\Zahraa Rached\AppData\Local\Temp\jansi-64-839867814723291536.dll
2017-08-26 16:52 - 2017-08-26 16:52 - 000019968 ____N (Red Hat®, Inc.) C:\Users\Zahraa Rached\AppData\Local\Temp\jansi-64-8750303689435947669.dll
2017-08-27 12:05 - 2017-08-27 12:05 - 000019968 ____N (Red Hat®, Inc.) C:\Users\Zahraa Rached\AppData\Local\Temp\jansi-64-8762562930353220091.dll
2017-08-26 14:25 - 2017-08-26 14:25 - 000019968 ____N (Red Hat®, Inc.) C:\Users\Zahraa Rached\AppData\Local\Temp\jansi-64-9109173535172023603.dll
==================== Bamital & volsnap ======================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
C:\WINDOWS\system32\winlogon.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\wininit.exe => Le fichier est signé numériquement
C:\WINDOWS\explorer.exe => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\explorer.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\svchost.exe => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\svchost.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\services.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\User32.dll => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\User32.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\userinit.exe => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\userinit.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\rpcss.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\dnsapi.dll => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\dnsapi.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\Drivers\volsnap.sys => Le fichier est signé numériquement
LastRegBack: 2017-08-11 21:20
==================== Fin de FRST.txt ============================
Exécuté par Zahraa Rached (administrateur) sur ZAHRAA-RACHED (27-08-2017 15:49:38)
Exécuté depuis C:\Users\Zahraa Rached\Desktop
Profils chargés: Zahraa Rached (Profils disponibles: Zahraa Rached & Administrateur)
Platform: Windows 10 Home Version 1607 (X64) Langue: Français (France)
Internet Explorer Version 11 (Navigateur par défaut: Chrome)
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\sched.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
() C:\Windows\System32\igfxTray.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avguard.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\SoftwareUpdater\Avira.SoftwareUpdater.ServiceHost.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(Intel Corporation) C:\Windows\syswow64\esif_uf.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
(Locktime Software) C:\Program Files\Locktime Software\NetLimiter 4\NLSvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
(Intel Corporation) C:\Windows\Temp\DPTF\esif_assist_64.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
() C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.19.820.0_x64__kzf8qxf38zg5c\SkypeHost.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
(Mad Catz) C:\Program Files\Mad Catz\RAT1\RAT1_Profiler.exe
(Locktime Software) C:\Program Files\Locktime Software\NetLimiter 4\NLClientApp.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avgnt.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avshadow.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.5\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.5\GoogleCrashHandler64.exe
(Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
() C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.17062.12911.0_x64__8wekyb3d8bbwe\Video.UI.exe
() C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.35063.13610.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Discord Inc.) C:\Users\Zahraa Rached\AppData\Local\Discord\app-0.0.298\Discord.exe
(Discord Inc.) C:\Users\Zahraa Rached\AppData\Local\Discord\app-0.0.298\Discord.exe
(Discord Inc.) C:\Users\Zahraa Rached\AppData\Local\Discord\app-0.0.298\Discord.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvspcaps64.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
==================== Registre (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [RAT1] => C:\Program Files\Mad Catz\RAT1\RAT1_Profiler.exe [62464 2016-12-16] (Mad Catz)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2017-07-12] (Oracle Corporation)
HKLM-x32\...\Run: [Avira SystrayStartTrigger] => C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe [97512 2017-08-02] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [avgnt] => C:\Program Files (x86)\Avira\Antivirus\avgnt.exe [919032 2017-08-09] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [SDTray] => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe [4174464 2017-05-23] (Safer-Networking Ltd.)
Winlogon\Notify\SDWinLogon-x32: SDWinLogon.dll [X]
HKU\S-1-5-21-2640403193-1110186342-2843918691-1001\...\Run: [Discord] => C:\Users\Zahraa Rached\AppData\Local\Discord\app-0.0.298\Discord.exe [57477112 2017-08-08] (Discord Inc.)
HKU\S-1-5-21-2640403193-1110186342-2843918691-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [9818328 2017-06-30] (Piriform Ltd)
HKU\S-1-5-21-2640403193-1110186342-2843918691-1001\...\Run: [NetLimiter] => C:\Program Files\Locktime Software\NetLimiter 4\nlclientapp.exe [57904 2017-05-05] (Locktime Software)
HKU\S-1-5-21-2640403193-1110186342-2843918691-1001\...\MountPoints2: {7b3f83e2-8411-11e6-8320-1c872cb196e1} - "F:\Auto.exe"
BootExecute: autocheck autochk * sdnclean64.exe
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Hosts: Il y a plus d'un élément dans hosts. Voir la section Hosts de Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.42.129
Tcpip\..\Interfaces\{7b7871c9-df90-4e13-b9a4-1af9632ed372}: [NameServer] 192.168.1.1
Tcpip\..\Interfaces\{7b7871c9-df90-4e13-b9a4-1af9632ed372}: [DhcpNameServer] 192.168.43.1
Tcpip\..\Interfaces\{9c89dab0-1d48-4b97-813f-2f79fd441a73}: [DhcpNameServer] 192.168.42.129
Tcpip\..\Interfaces\{bec6416b-f2de-40d0-a252-bdd5fd354423}: [DhcpNameServer] 192.168.42.129
Tcpip\..\Interfaces\{c3d192f7-5e6e-4033-83c3-7d12a1762cd8}: [DhcpNameServer] 192.168.42.129
Internet Explorer:
==================
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
StartMenuInternet: IEXPLORE.EXE - iexplore.exe
FireFox:
========
FF Plugin: @java.com/DTPlugin,version=11.141.2 -> C:\Program Files\Java\jre1.8.0_141\bin\dtplugin\npDeployJava1.dll [2017-07-25] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.141.2 -> C:\Program Files\Java\jre1.8.0_141\bin\plugin2\npjp2.dll [2017-07-25] (Oracle Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-07-25] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-07-25] (Google Inc.)
Chrome:
=======
CHR Profile: C:\Users\Zahraa Rached\AppData\Local\Google\Chrome\User Data\Default [2017-08-27]
CHR Extension: (Google Slides) - C:\Users\Zahraa Rached\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-07-25]
CHR Extension: (Google Docs) - C:\Users\Zahraa Rached\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-07-25]
CHR Extension: (Google Drive) - C:\Users\Zahraa Rached\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-07-25]
CHR Extension: (YouTube) - C:\Users\Zahraa Rached\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-07-25]
CHR Extension: (Avira Safe Shopping) - C:\Users\Zahraa Rached\AppData\Local\Google\Chrome\User Data\Default\Extensions\ccbpbkebodcjkknkfkpmfeciinhidaeh [2017-07-27]
CHR Extension: (Adblock Plus) - C:\Users\Zahraa Rached\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2017-07-25]
CHR Extension: (Google Sheets) - C:\Users\Zahraa Rached\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-07-25]
CHR Extension: (Google Docs Offline) - C:\Users\Zahraa Rached\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-07-25]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Zahraa Rached\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-08-22]
CHR Extension: (Gmail) - C:\Users\Zahraa Rached\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-07-25]
CHR Extension: (Chrome Media Router) - C:\Users\Zahraa Rached\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-08-08]
CHR HKLM\...\Chrome\Extension: [ccbpbkebodcjkknkfkpmfeciinhidaeh] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [ccbpbkebodcjkknkfkpmfeciinhidaeh] - hxxps://clients2.google.com/service/update2/crx
==================== Services (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S2 AntiVirMailService; C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe [1128432 2017-08-09] (Avira Operations GmbH & Co. KG)
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\Antivirus\sched.exe [490968 2017-08-09] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\Antivirus\avguard.exe [490968 2017-08-09] (Avira Operations GmbH & Co. KG)
S2 AntiVirWebService; C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe [1525240 2017-08-09] (Avira Operations GmbH & Co. KG)
R2 Avira.ServiceHost; C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe [389312 2017-08-02] (Avira Operations GmbH & Co. KG)
R2 AviraUpdaterService; C:\Program Files (x86)\Avira\SoftwareUpdater\Avira.SoftwareUpdater.ServiceHost.exe [102304 2017-08-08] (Avira Operations GmbH & Co. KG)
R2 esifsvc; C:\WINDOWS\SysWoW64\esif_uf.exe [1394360 2015-08-12] (Intel Corporation)
R2 igfxCUIService2.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [373728 2016-11-30] (Intel Corporation)
R2 nlsvc; C:\Program Files\Locktime Software\NetLimiter 4\NLSvc.exe [323632 2017-05-05] (Locktime Software)
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [512960 2017-08-18] (NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [512960 2017-08-18] (NVIDIA Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [462968 2017-07-19] (NVIDIA Corporation)
R2 NvTelemetryContainer; C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe [449984 2017-08-18] (NVIDIA Corporation)
R2 SDScannerService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [1776864 2017-05-23] (Safer-Networking Ltd.)
R2 SDUpdateService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [2131760 2017-05-23] (Safer-Networking Ltd.)
R2 SDWSCService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [233936 2017-05-23] (Safer-Networking Ltd.)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [347320 2017-04-28] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103712 2017-04-28] (Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ======================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R0 avdevprot; C:\WINDOWS\System32\DRIVERS\avdevprot.sys [60920 2017-07-04] (Avira Operations GmbH & Co. KG)
R2 avgntflt; C:\WINDOWS\System32\DRIVERS\avgntflt.sys [173784 2017-08-09] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\WINDOWS\system32\DRIVERS\avipbb.sys [167464 2017-08-09] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\WINDOWS\system32\DRIVERS\avkmgr.sys [44488 2017-07-04] (Avira Operations GmbH & Co. KG)
R2 avnetflt; C:\WINDOWS\system32\DRIVERS\avnetflt.sys [88488 2017-07-04] (Avira Operations GmbH & Co. KG)
R0 avusbflt; C:\WINDOWS\System32\Drivers\avusbflt.sys [38048 2017-07-04] (Avira Operations GmbH & Co. KG)
R3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [131984 2017-05-18] (Samsung Electronics Co., Ltd.)
R3 dptf_cpu; C:\WINDOWS\System32\drivers\dptf_cpu.sys [53752 2015-08-12] (Intel Corporation)
R3 esif_lf; C:\WINDOWS\system32\DRIVERS\esif_lf.sys [261624 2015-08-12] (Intel Corporation)
R3 HIDSwitch; C:\WINDOWS\System32\drivers\AsRadioControl.sys [31120 2016-12-19] (ASUS)
R0 IntelHSWPcc; C:\WINDOWS\System32\drivers\IntelPcc.sys [88256 2015-06-09] (Intel Corporation)
S3 NetAdapterCx; C:\WINDOWS\System32\drivers\NetAdapterCx.sys [90624 2016-07-16] ()
R0 nldrv; C:\WINDOWS\System32\drivers\nldrv.sys [149880 2017-05-05] (Locktime Software)
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nvami.inf_amd64_15c6c286fd4435fd\nvlddmkm.sys [15668664 2017-07-19] (NVIDIA Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30144 2017-08-18] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [48064 2017-07-26] (NVIDIA Corporation)
R3 nvvhci; C:\WINDOWS\System32\drivers\nvvhci.sys [57792 2017-08-18] (NVIDIA Corporation)
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [589824 2016-07-16] (Realtek )
R3 RTSPER; C:\WINDOWS\system32\DRIVERS\RtsPer.sys [751632 2015-05-14] (Realsil Semiconductor Corporation)
R3 SaiMini; C:\WINDOWS\System32\drivers\SaiMini.sys [33496 2017-01-16] (Saitek)
R3 SaiNtBus; C:\WINDOWS\system32\drivers\SaiBus.sys [69080 2017-01-16] (Saitek)
R3 usbrndis6; C:\WINDOWS\System32\drivers\usb80236.sys [23040 2016-07-16] (Microsoft Corporation)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [44056 2016-07-16] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [290144 2016-07-16] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [123232 2016-07-16] (Microsoft Corporation)
S3 _hid_0738_1726; C:\WINDOWS\system32\DRIVERS\_hid_0738_1726.sys [219736 2017-01-16] (Saitek)
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois - Créés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2017-08-27 15:49 - 2017-08-27 15:51 - 000016366 _____ C:\Users\Zahraa Rached\Desktop\FRST.txt
2017-08-27 15:48 - 2017-08-27 15:49 - 002395648 _____ (Farbar) C:\Users\Zahraa Rached\Desktop\FRST64.exe
2017-08-27 13:33 - 2017-08-27 13:33 - 000001096 _____ C:\Users\Zahraa Rached\Downloads\K_akayro.txt
2017-08-27 11:51 - 2017-04-12 12:25 - 000000230 _____ C:\Users\Zahraa Rached\Desktop\Verzidee Privates 63$.reg
2017-08-27 11:50 - 2017-05-01 17:51 - 000001053 _____ C:\Users\Zahraa Rached\Desktop\Reg. 0KB+OP Reach By BernardCombo 3.reg
2017-08-27 11:47 - 2017-08-27 11:47 - 004101412 _____ C:\Users\Zahraa Rached\Desktop\BEST REGEDIT PACK vfinale.rar
2017-08-27 11:42 - 2017-08-27 11:42 - 000000513 _____ C:\Users\Zahraa Rached\Desktop\Regedit & Install.rar
2017-08-27 11:40 - 2017-08-27 11:40 - 000005425 _____ C:\Users\Zahraa Rached\Desktop\Custom Order (313).reg
2017-08-27 11:38 - 2017-08-27 11:38 - 000105772 _____ C:\Users\Zahraa Rached\Desktop\ZHPDiag.txt
2017-08-27 11:34 - 2017-08-27 11:35 - 002819968 _____ C:\Users\Zahraa Rached\Desktop\ZHPDiag3.exe
2017-08-26 23:27 - 2017-08-26 23:27 - 000000000 ____D C:\WINDOWS\System32\Tasks\Safer-Networking
2017-08-26 23:26 - 2017-08-26 23:36 - 000000000 ____D C:\ProgramData\Spybot - Search & Destroy
2017-08-26 23:26 - 2017-08-26 23:30 - 000000000 ____D C:\Program Files (x86)\Spybot - Search & Destroy 2
2017-08-26 23:26 - 2017-08-26 23:26 - 000001466 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot-S&D Start Center.lnk
2017-08-26 23:26 - 2017-08-26 23:26 - 000001454 _____ C:\Users\Public\Desktop\Spybot-S&D Start Center.lnk
2017-08-26 23:26 - 2017-08-26 23:26 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy 2
2017-08-26 23:26 - 2017-05-23 09:22 - 000032240 _____ (Safer-Networking Ltd.) C:\WINDOWS\system32\sdnclean64.exe
2017-08-26 23:17 - 2017-08-26 23:26 - 051725936 _____ (Safer-Networking Ltd. ) C:\Users\Zahraa Rached\Desktop\spybotsd-2.6.46.exe
2017-08-26 12:33 - 2017-08-26 12:33 - 000004306 _____ C:\Users\Zahraa Rached\Desktop\MouseDelayFix-1.0.jar
2017-08-26 12:32 - 2017-08-26 12:32 - 000000668 _____ C:\Users\Zahraa Rached\Desktop\VerzideREG.reg
2017-08-25 18:47 - 2017-08-25 18:47 - 000000671 _____ C:\Users\Zahraa Rached\Desktop\Script.bat
2017-08-25 00:02 - 2017-08-25 00:04 - 000372832 _____ C:\Users\Zahraa Rached\Desktop\videoplayback.mp4.sfk
2017-08-25 00:00 - 2017-08-25 00:01 - 011980581 _____ C:\Users\Zahraa Rached\Desktop\videoplayback.mp4
2017-08-24 23:24 - 2017-08-25 00:30 - 000128856 _____ C:\Users\Zahraa Rached\Desktop\MDT.veg
2017-08-24 23:24 - 2017-08-25 00:06 - 000104448 _____ C:\Users\Zahraa Rached\Desktop\MDT.veg.bak
2017-08-24 11:35 - 2017-08-26 21:49 - 000000000 ____D C:\Users\Zahraa Rached\AppData\Roaming\Notepad++
2017-08-24 11:35 - 2017-08-24 11:35 - 000000000 ____D C:\Users\Zahraa Rached\AppData\Local\Notepad++
2017-08-24 11:35 - 2017-08-24 11:35 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Notepad++
2017-08-24 11:35 - 2017-08-24 11:35 - 000000000 ____D C:\Program Files (x86)\Notepad++
2017-08-24 11:33 - 2017-08-24 11:35 - 002883688 _____ C:\Users\Zahraa Rached\Desktop\npp.7.5.Installer.exe
2017-08-23 20:14 - 2017-08-23 20:15 - 002087504 _____ C:\Users\Zahraa Rached\Desktop\1.9.4-OptiFine_HD_U_B6.jar
2017-08-23 17:29 - 2017-08-23 17:29 - 001728735 _____ C:\Users\Zahraa Rached\Desktop\OptiFine_1.9.4_HD_U_B6.jar
2017-08-23 16:33 - 2017-08-23 16:33 - 000562888 _____ (Shark Labs) C:\Users\Zahraa Rached\Desktop\VoiceChanger64(0.66).exe
2017-08-23 15:54 - 2017-08-23 15:55 - 016841456 _____ C:\Users\Zahraa Rached\Documents\pooop.mp4
2017-08-23 15:35 - 2017-08-23 15:35 - 000194280 _____ C:\Users\Zahraa Rached\Desktop\coco77-hotmail.mp4.sfk
2017-08-23 15:15 - 2017-08-23 15:15 - 113073742 _____ C:\Users\Zahraa Rached\Desktop\Video 23-08-2017 15-15-03.mp4
2017-08-23 15:12 - 2017-08-23 15:14 - 262945706 _____ C:\Users\Zahraa Rached\Desktop\Video 23-08-2017 15-12-30.mp4
2017-08-23 15:08 - 2017-08-23 15:09 - 072241666 _____ C:\Users\Zahraa Rached\Desktop\Video 23-08-2017 15-08-11.mp4
2017-08-23 15:05 - 2017-08-23 15:05 - 000000000 ____D C:\Users\Zahraa Rached\AppData\Roaming\Mirillis
2017-08-23 15:05 - 2017-08-23 15:05 - 000000000 ____D C:\ProgramData\Mirillis
2017-08-23 15:04 - 2017-08-23 15:09 - 000000000 ____D C:\Users\Zahraa Rached\AppData\Local\Mirillis
2017-08-23 12:09 - 2017-08-23 12:09 - 000000000 ____D C:\Users\Zahraa Rached\Desktop\mod 1.10
2017-08-22 20:47 - 2017-08-22 20:50 - 033757054 _____ C:\Users\Zahraa Rached\Documents\Sans titre.mp4
2017-08-22 20:41 - 2017-08-22 20:41 - 000035384 _____ C:\Users\Zahraa Rached\Desktop\Sans titre.veg
2017-08-22 20:01 - 2017-08-22 20:01 - 000012374 _____ C:\Users\Zahraa Rached\Downloads\jelly_crazies.zip
2017-08-22 20:00 - 2017-08-22 20:00 - 000077690 _____ C:\Users\Zahraa Rached\Downloads\funhouse.zip
2017-08-22 20:00 - 2017-08-22 20:00 - 000055053 _____ C:\Users\Zahraa Rached\Downloads\fluo_gums.zip
2017-08-22 20:00 - 2017-08-22 20:00 - 000028639 _____ C:\Users\Zahraa Rached\Downloads\bubblegum.zip
2017-08-22 19:55 - 2017-08-22 19:55 - 000000103 _____ C:\WINDOWS\MSUTIL.INI
2017-08-22 19:55 - 2017-08-22 19:55 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GenArts Sapphire OFX
2017-08-22 19:55 - 2017-08-22 19:55 - 000000000 ____D C:\ProgramData\GenArts
2017-08-22 19:55 - 2017-08-22 19:55 - 000000000 ____D C:\Program Files\Common Files\OFX
2017-08-22 19:55 - 2017-08-22 19:55 - 000000000 ____D C:\Program Files (x86)\GenArts
2017-08-22 19:55 - 2010-02-04 07:58 - 000584376 _____ (Intel Corporation) C:\WINDOWS\system32\libiomp5md.dll
2017-08-22 19:55 - 2010-02-04 07:40 - 000575672 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\libiomp5md.dll
2017-08-22 19:41 - 2017-08-22 19:41 - 000000000 ____D C:\Users\Zahraa Rached\AppData\Roaming\Publish Providers
2017-08-22 19:37 - 2017-08-22 19:40 - 000000000 ____D C:\Users\Zahraa Rached\AppData\Local\Sony
2017-08-22 19:37 - 2017-08-22 19:37 - 000006148 _____ C:\WINDOWS\system32\--traceoff
2017-08-22 19:37 - 2017-08-22 19:37 - 000001113 _____ C:\Users\Public\Desktop\Vegas Pro 13.0 (64-bit).lnk
2017-08-22 19:37 - 2017-08-22 19:37 - 000000000 ____D C:\ProgramData\Sony
2017-08-22 19:37 - 2017-08-22 19:37 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sony
2017-08-22 19:37 - 2017-08-22 19:37 - 000000000 ____D C:\Program Files\Sony
2017-08-22 19:37 - 2017-08-22 19:37 - 000000000 ____D C:\Program Files (x86)\Sony
2017-08-22 19:37 - 2017-08-22 19:37 - 000000000 _____ C:\WINDOWS\system32\--debugoff
2017-08-22 19:36 - 2017-08-22 19:46 - 000000000 ____D C:\Users\Zahraa Rached\AppData\Roaming\Sony
2017-08-22 14:25 - 2017-08-26 15:17 - 000000000 ____D C:\Users\Zahraa Rached\AppData\Roaming\TS3Client
2017-08-20 15:36 - 2017-08-23 16:48 - 000000242 _____ C:\Users\Zahraa Rached\Documents\ClownfishVoiceChanger.ini
2017-08-20 15:36 - 2017-08-20 15:37 - 000002168 _____ C:\Users\Public\Desktop\ClownfishVoiceChanger.lnk
2017-08-20 15:36 - 2017-08-20 15:36 - 000000000 ____D C:\Users\Zahraa Rached\Documents\ClownfishSoundTemp
2017-08-20 15:36 - 2017-08-20 15:36 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ClownfishVoiceChanger
2017-08-20 15:36 - 2017-08-20 15:36 - 000000000 ____D C:\Program Files (x86)\ClownfishVoiceChanger
2017-08-20 00:17 - 2017-08-20 00:17 - 000007350 _____ C:\Users\Zahraa Rached\Downloads\Regedits.rar
2017-08-20 00:17 - 2017-08-20 00:17 - 000000444 _____ C:\Users\Zahraa Rached\Downloads\ArticRege.rar
2017-08-19 23:59 - 2017-08-27 12:36 - 000006202 _____ C:\Users\Zahraa Rached\Desktop\Ziblackinggg Private Regedit.reg
2017-08-19 23:57 - 2017-08-19 23:57 - 000000987 _____ C:\Users\Zahraa Rached\Downloads\regedit.rar
2017-08-19 18:09 - 2017-08-19 18:09 - 000000512 _____ C:\Users\Zahraa Rached\Downloads\CUSTOM REGEDIT.rar
2017-08-19 17:46 - 2017-08-19 17:46 - 000001367 _____ C:\Users\Zahraa Rached\Downloads\Orilation.zip
2017-08-19 17:39 - 2017-08-19 17:39 - 000001538 _____ C:\Users\Zahraa Rached\Downloads\Ziblacking Private Regedit.rar
2017-08-18 19:40 - 2017-08-18 19:41 - 000038389 _____ C:\Users\Zahraa Rached\Downloads\Connection Unlocker by ElFly.zip
2017-08-18 19:26 - 2017-08-18 19:26 - 000000733 _____ C:\Users\Zahraa Rached\Downloads\HitDetect.rar
2017-08-18 18:51 - 2017-08-18 18:51 - 000017747 _____ C:\Users\Zahraa Rached\Downloads\Regedit & DNS.rar
2017-08-17 22:29 - 2017-08-17 22:29 - 000007683 _____ C:\Users\Zahraa Rached\Downloads\regedit kyprak.rar
2017-08-17 19:43 - 2017-08-17 19:43 - 000000074 _____ C:\Users\Zahraa Rached\Downloads\MTU (1).bat
2017-08-17 18:48 - 2017-08-17 18:48 - 000006962 _____ C:\Users\Zahraa Rached\Downloads\8 blok reach BEST REG.rar
2017-08-17 17:57 - 2017-08-17 17:59 - 000264192 _____ () C:\Users\Zahraa Rached\Downloads\RegeditEngine - Premium.exe
2017-08-17 17:54 - 2017-08-17 17:56 - 010832812 _____ C:\Users\Zahraa Rached\Downloads\ORATION.rar
2017-08-17 17:47 - 2017-08-17 17:47 - 000000407 _____ C:\Users\Zahraa Rached\Downloads\Regedits manuel avec lien de vidéo pour linstallation(2).rar
2017-08-17 16:16 - 2017-08-17 16:21 - 017905549 _____ C:\Users\Zahraa Rached\Downloads\Oration no kb & reach.zip
2017-08-17 16:16 - 2017-08-17 16:16 - 000003385 _____ C:\Users\Zahraa Rached\Downloads\DESTROY MINECRAFT V9.zip
2017-08-17 16:16 - 2017-08-17 16:16 - 000000000 ____D C:\Users\Zahraa Rached\Downloads\FUNCRAFT REGEDIT
2017-08-17 15:59 - 2017-08-17 16:05 - 022647968 _____ C:\Users\Zahraa Rached\Downloads\! §8Oni§fZ§8uka §3§bV5 (1).zip
2017-08-17 15:48 - 2017-08-17 15:59 - 003265600 _____ C:\Users\Zahraa Rached\Downloads\! §8Oni§fZ§8uka §3§bV5.zip
2017-08-17 15:31 - 2017-08-17 15:31 - 000217250 _____ C:\Users\Zahraa Rached\Downloads\REGEDIT TWEAKER_SWAMPIE.rar
2017-08-17 14:48 - 2017-08-17 14:49 - 001833329 _____ C:\Users\Zahraa Rached\Downloads\R.I.P Funcraft.zip
2017-08-17 14:46 - 2017-08-17 14:56 - 013222300 _____ C:\Users\Zahraa Rached\Downloads\Unconfirmed 923872.crdownload
2017-08-17 13:44 - 2017-08-17 13:44 - 000000994 _____ C:\Users\Zahraa Rached\Downloads\Connexion.bat
2017-08-16 22:01 - 2017-08-16 22:01 - 000659456 _____ (Speed Guide Inc.) C:\Users\Zahraa Rached\Downloads\TCPOptimizer_v308.exe
2017-08-16 20:33 - 2017-08-16 20:33 - 000002631 _____ C:\Users\Zahraa Rached\Downloads\FirstBackup.spg
2017-08-16 20:32 - 2017-08-16 20:32 - 000696320 _____ (Speed Guide Inc.) C:\Users\Zahraa Rached\Downloads\TCPOptimizer.exe
2017-08-16 16:27 - 2017-08-16 16:28 - 000000034 _____ C:\Users\Zahraa Rached\Downloads\reach.bat
2017-08-16 15:57 - 2017-08-16 15:57 - 000004106 _____ C:\Users\Zahraa Rached\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\gpedit.lnk
2017-08-16 15:56 - 2017-08-16 15:56 - 000032194 _____ C:\Users\Zahraa Rached\Desktop\Console1.msc
2017-08-16 15:50 - 2011-04-09 16:44 - 000901344 _____ (Richard ) C:\Users\Zahraa Rached\Downloads\setup.exe
2017-08-16 15:49 - 2017-08-16 15:50 - 000875012 _____ C:\Users\Zahraa Rached\Downloads\add_gpedit_msc_by_jwils876-d3kh6vm.zip
2017-08-16 15:41 - 2017-08-16 15:42 - 000000130 _____ C:\Users\Zahraa Rached\Downloads\BITS.bat
2017-08-16 15:33 - 2017-08-16 15:35 - 004901928 _____ C:\Users\Zahraa Rached\Downloads\cfosspeed-v1022.exe
2017-08-16 11:11 - 2017-08-16 11:11 - 000025446 _____ C:\Users\Zahraa Rached\Downloads\MinecraftCapes Forge 1.10.jar
2017-08-16 10:40 - 2017-08-16 10:40 - 000009871 _____ C:\Users\Zahraa Rached\Downloads\MinecraftCapes Forge 1.7.10.jar
2017-08-16 10:07 - 2017-08-16 10:07 - 000069536 _____ C:\Users\Zahraa Rached\Downloads\advancedcapes-4.0.jar
2017-08-16 10:07 - 2017-08-16 10:07 - 000029467 _____ C:\Users\Zahraa Rached\Downloads\advancedcapes-1.5.jar
2017-08-16 10:03 - 2017-08-16 10:03 - 000640074 _____ C:\Users\Zahraa Rached\Downloads\CheatBreaker Modpack 1.7.10.zip
2017-08-15 16:40 - 2017-08-17 16:10 - 000000074 _____ C:\Users\Zahraa Rached\Downloads\MTU.bat
2017-08-15 16:06 - 2017-08-15 16:13 - 034322291 _____ C:\Users\Zahraa Rached\Downloads\§4Sharingan §f Rush.zip
2017-08-15 14:39 - 2017-08-27 12:07 - 000000000 ____D C:\Users\Zahraa Rached\AppData\Local\CrashDumps
2017-08-13 21:01 - 2017-08-27 15:22 - 000000000 ____D C:\Users\Zahraa Rached\Desktop\FAST
2017-08-13 15:02 - 2017-08-13 15:08 - 023775976 _____ C:\Users\Zahraa Rached\Downloads\! Konoha Rush 16x V2.zip
2017-08-13 14:55 - 2017-08-13 14:55 - 000546689 _____ C:\Users\Zahraa Rached\Downloads\DnsJumper_v1-0-5.zip
2017-08-13 11:21 - 2017-08-13 11:22 - 002091761 _____ C:\Users\Zahraa Rached\Downloads\OptiFine_1.10_HD_U_E3.jar
2017-08-13 11:20 - 2017-08-13 11:23 - 004353862 _____ C:\Users\Zahraa Rached\Downloads\forge-1.10-12.18.0.2000-1.10.0-installer.jar
2017-08-13 10:54 - 2017-08-13 10:55 - 004736452 _____ C:\Users\Zahraa Rached\Downloads\forge-1.11.2-13.20.1.2386-installer.jar
2017-08-13 10:54 - 2017-08-13 10:55 - 002106193 _____ C:\Users\Zahraa Rached\Downloads\OptiFine_1.11.2_HD_U_C3.jar
2017-08-12 18:28 - 2017-08-12 18:28 - 000000000 ____D C:\Users\Zahraa Rached\Desktop\PAck
2017-08-12 17:16 - 2017-08-12 17:23 - 034236699 _____ C:\Users\Zahraa Rached\Downloads\! Re Zero.zip
2017-08-12 17:09 - 2017-08-27 15:47 - 000001295 _____ C:\Users\Zahraa Rached\Desktop\nativelog.txt
2017-08-12 17:09 - 2017-08-12 17:15 - 033506456 _____ C:\Users\Zahraa Rached\Downloads\Molé Molé.zip
2017-08-12 17:08 - 2017-08-12 17:09 - 000620888 _____ C:\Users\Zahraa Rached\Downloads\DeiRaMod.jar
2017-08-12 16:08 - 2015-10-02 13:41 - 000901344 _____ (Richard ) C:\Users\Zahraa Rached\Desktop\setup.exe
2017-08-12 16:06 - 2017-08-12 16:06 - 002439408 _____ C:\Users\Zahraa Rached\Downloads\wumt.zip
2017-08-12 16:05 - 2016-07-16 13:54 - 000012020 _____ C:\WINDOWS\system32\gpedit.msc
2017-08-12 16:00 - 2017-08-16 15:50 - 000707354 _____ C:\WINDOWS\unins000.exe
2017-08-12 16:00 - 2017-08-16 15:50 - 000003668 _____ C:\WINDOWS\unins000.dat
2017-08-12 16:00 - 2017-08-12 16:09 - 000000000 ____D C:\WINDOWS\SysWOW64\GPBAK
2017-08-12 16:00 - 2017-08-12 16:00 - 000876029 _____ C:\Users\Zahraa Rached\Downloads\gpedit_msc.zip
2017-08-12 16:00 - 2008-04-14 02:11 - 000295936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\appmgr.dll
2017-08-12 16:00 - 2001-08-23 13:00 - 000034871 _____ C:\WINDOWS\SysWOW64\gpedit.msc
2017-08-11 14:04 - 2017-08-11 14:04 - 000003043 _____ C:\Users\Zahraa Rached\Desktop\RAT1.lnk
2017-08-11 14:04 - 2017-08-11 14:04 - 000000000 ____D C:\Users\Zahraa Rached\AppData\Local\SmartTechnology
2017-08-11 14:04 - 2017-08-11 14:04 - 000000000 ____D C:\Program Files\Mad Catz
2017-08-11 14:02 - 2017-08-11 14:04 - 018383304 _____ (Mad catz ) C:\Users\Zahraa Rached\Downloads\RAT_1_Mouse_7_0_60_3_x64_Software.exe
2017-08-11 14:01 - 2017-08-11 14:01 - 000000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel__hid_0738_1726_01009.Wdf
2017-08-11 13:59 - 2017-08-11 14:00 - 004849752 _____ (Mad catz ) C:\Users\Zahraa Rached\Downloads\RAT_1_Mouse_7_0_60_3_x64_Drivers.exe
2017-08-11 13:38 - 2017-08-11 13:38 - 000001310 _____ C:\Users\Zahraa Rached\Desktop\TeamSpeak 3 Client.lnk
2017-08-11 13:38 - 2017-08-11 13:38 - 000001268 _____ C:\Users\Zahraa Rached\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TeamSpeak 3 Client.lnk
2017-08-11 13:38 - 2017-08-11 13:38 - 000000000 ____D C:\Users\Zahraa Rached\AppData\Local\TeamSpeak 3 Client
2017-08-11 13:36 - 2017-08-11 14:51 - 1341015676 _____ C:\Users\Zahraa Rached\Downloads\javaw 08-08-2017 13-33-37.mp4
2017-08-11 13:34 - 2017-08-11 13:37 - 077967920 _____ (TeamSpeak Systems GmbH) C:\Users\Zahraa Rached\Downloads\TeamSpeak3-Client-win64-3.1.5.exe
2017-08-10 13:59 - 2017-08-10 13:59 - 000001142 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\paint.net.lnk
2017-08-10 13:59 - 2017-08-10 13:59 - 000001130 _____ C:\Users\Public\Desktop\paint.net.lnk
2017-08-10 13:59 - 2017-08-10 13:59 - 000000000 ____D C:\Program Files\paint.net
2017-08-10 13:58 - 2017-08-10 14:02 - 000000000 ____D C:\Users\Zahraa Rached\AppData\Local\paint.net
2017-08-10 13:56 - 2017-08-10 13:57 - 007208217 _____ C:\Users\Zahraa Rached\Downloads\paint.net.4.0.17.install.zip
2017-08-09 21:08 - 2017-08-09 21:08 - 000000000 ____D C:\Users\Zahraa Rached\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Discord Inc
2017-08-09 20:58 - 2017-08-09 20:58 - 000000000 ___HD C:\$WINDOWS.~BT
2017-08-08 14:04 - 2017-08-08 14:04 - 000054150 _____ C:\Users\Zahraa Rached\Downloads\javaw 08-08-2017 13-33-37.mp4.bmp
2017-08-08 13:02 - 2017-08-22 22:01 - 000000000 ____D C:\Users\Zahraa Rached\AppData\Roaming\AnyDesk
2017-08-08 13:02 - 2017-08-08 13:02 - 001787592 _____ C:\Users\Zahraa Rached\Downloads\AnyDesk.exe
2017-08-02 21:32 - 2017-08-02 21:36 - 021368730 _____ C:\Users\Zahraa Rached\Downloads\!§dFu§3Tweatz §dF§3a§dd§3e.zip
2017-08-02 21:29 - 2017-08-02 21:29 - 000000000 ____D C:\Users\Zahraa Rached\Desktop\MONTAGE pot
2017-08-02 18:32 - 2017-08-02 18:32 - 000000000 ____D C:\Users\Zahraa Rached\AppData\Roaming\Locktime
2017-08-02 18:30 - 2017-08-02 18:30 - 000000000 ____D C:\ProgramData\Locktime
2017-08-02 18:27 - 2017-08-02 18:27 - 000001271 _____ C:\Users\Public\Desktop\NetLimiter 4 (x64).lnk
2017-08-02 18:27 - 2017-08-02 18:27 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NetLimiter 4
2017-08-02 18:27 - 2017-08-02 18:27 - 000000000 ____D C:\Program Files\Locktime Software
2017-08-02 18:25 - 2017-08-02 18:32 - 000000000 ____D C:\Users\Zahraa Rached\AppData\Roaming\Locktime Software
2017-08-02 18:19 - 2017-08-02 18:25 - 020199056 _____ (Locktime Software) C:\Users\Zahraa Rached\Downloads\netlimiter-4.0.30.0.exe
2017-08-01 10:42 - 2017-04-18 20:35 - 000000000 ___HD C:\Users\Zahraa Rached\Desktop\Guru3D.com
2017-08-01 10:19 - 2017-08-25 00:07 - 000000000 ____D C:\Users\Zahraa Rached\Desktop\ma playlist
2017-07-31 21:26 - 2017-07-31 21:26 - 000000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_WpdMtpDr_01_11_00.Wdf
2017-07-28 14:57 - 2017-07-28 14:57 - 000000000 ____D C:\Users\Zahraa Rached\AppData\LocalLow\Temp
2017-07-28 14:26 - 2017-07-28 14:26 - 000000000 ___RD C:\Users\Zahraa Rached\3D Objects
2017-07-28 11:47 - 2017-07-28 11:47 - 000001467 _____ C:\Users\Zahraa Rached\Desktop\launcher - Raccourci.lnk
2017-07-28 11:47 - 2017-07-28 11:47 - 000000000 ___RD C:\Users\Zahraa Rached\Documents\Scanned Documents
2017-07-28 11:47 - 2017-07-28 11:47 - 000000000 ____D C:\Users\Zahraa Rached\Documents\Fax
2017-07-28 11:44 - 2017-07-28 12:02 - 000000108 ____H C:\Users\Zahraa Rached\Desktop\Nouveau document texte.txt
2017-07-28 11:41 - 2017-07-28 11:41 - 000000000 ___HD C:\Users\Zahraa Rached\Desktop\Nouveau dossier (2)
2017-07-28 11:25 - 2017-07-28 11:25 - 000000000 ____D C:\Users\Zahraa Rached\AppData\Roaming\java
2017-07-28 11:24 - 2017-07-28 11:50 - 000000000 ____D C:\Users\Zahraa Rached\AppData\Roaming\.azlauncher
2017-07-28 11:24 - 2017-07-28 11:24 - 000516931 _____ (-) C:\Users\Zahraa Rached\Downloads\AZ_Minecraft_Launcher_Offline.exe
2017-07-28 11:20 - 2017-07-28 11:20 - 000000398 _____ C:\Users\Zahraa Rached\AppData\Roaming\AdobeWLCMR2Cache.dat
==================== Un mois - Modifiés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2017-08-27 15:49 - 2017-07-27 16:48 - 000000000 ____D C:\FRST
2017-08-27 15:47 - 2017-07-24 20:57 - 000000000 ____D C:\Users\Zahraa Rached\AppData\Roaming\.minecraft
2017-08-27 13:07 - 2017-07-24 21:01 - 000000000 ____D C:\ProgramData\NVIDIA
2017-08-27 12:46 - 2017-07-24 19:04 - 000000000 ____D C:\Users\Zahraa Rached
2017-08-27 12:37 - 2017-07-25 09:06 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2017-08-27 12:37 - 2017-07-24 18:56 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2017-08-27 12:37 - 2015-07-11 04:15 - 000000000 __SHD C:\Users\Zahraa Rached\IntelGraphicsProfiles
2017-08-27 12:36 - 2017-07-24 19:26 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2017-08-27 12:14 - 2017-07-24 19:44 - 000000000 ____D C:\WINDOWS\AppReadiness
2017-08-27 12:07 - 2017-07-24 19:49 - 003520756 _____ C:\WINDOWS\system32\perfh00C.dat
2017-08-27 12:07 - 2017-07-24 19:49 - 000961838 _____ C:\WINDOWS\system32\perfc00C.dat
2017-08-27 12:07 - 2017-07-24 19:44 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2017-08-27 12:07 - 2017-07-24 19:43 - 000000000 ____D C:\WINDOWS\INF
2017-08-27 12:07 - 2017-07-24 19:11 - 007262650 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2017-08-27 11:39 - 2017-07-24 19:44 - 000000000 ___HD C:\Program Files\WindowsApps
2017-08-27 11:36 - 2017-07-27 14:48 - 000000000 ____D C:\Users\Zahraa Rached\AppData\Roaming\ZHP
2017-08-27 11:36 - 2017-07-27 14:48 - 000000000 ____D C:\Users\Zahraa Rached\AppData\Local\ZHP
2017-08-27 11:35 - 2017-07-27 14:48 - 000000212 _____ C:\Users\Zahraa
2017-08-27 11:34 - 2017-07-24 20:42 - 000004190 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{CF205955-86BC-4F4F-A755-0669A5BB9DA2}
2017-08-26 23:37 - 2017-07-24 18:55 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2017-08-26 12:33 - 2017-07-25 12:34 - 000000000 ____D C:\Users\Zahraa Rached\Desktop\mods 1.9
2017-08-25 19:21 - 2017-07-25 09:32 - 000000000 ____D C:\Users\Zahraa Rached\AppData\Local\ElevatedDiagnostics
2017-08-25 16:17 - 2017-07-24 19:31 - 000000000 ____D C:\WINDOWS\CbsTemp
2017-08-23 22:30 - 2017-07-24 19:54 - 000000000 ___DC C:\WINDOWS\Panther
2017-08-23 12:05 - 2017-07-24 18:55 - 000206504 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2017-08-22 19:54 - 2017-07-24 19:44 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2017-08-22 17:53 - 2017-07-24 19:44 - 000000000 ____D C:\WINDOWS\system32\NDF
2017-08-21 21:44 - 2017-07-27 14:43 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
2017-08-21 21:44 - 2017-07-25 10:38 - 000000000 ____D C:\ProgramData\Package Cache
2017-08-20 15:39 - 2017-02-03 19:30 - 000000000 ____D C:\Users\Zahraa Rached\Documents\Enregistrements audio
2017-08-20 15:05 - 2017-07-24 21:01 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2017-08-20 14:52 - 2017-07-25 10:39 - 000004308 _____ C:\WINDOWS\System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-08-20 14:52 - 2017-07-25 10:39 - 000004000 _____ C:\WINDOWS\System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-08-20 14:52 - 2017-07-25 10:39 - 000003994 _____ C:\WINDOWS\System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-08-20 14:52 - 2017-07-25 10:39 - 000003894 _____ C:\WINDOWS\System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-08-20 14:52 - 2017-07-25 10:39 - 000003866 _____ C:\WINDOWS\System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-08-20 14:52 - 2017-07-25 10:39 - 000003858 _____ C:\WINDOWS\System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-08-20 14:52 - 2017-07-25 10:39 - 000003696 _____ C:\WINDOWS\System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-08-20 14:52 - 2017-07-25 10:39 - 000003654 _____ C:\WINDOWS\System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-08-20 14:52 - 2017-07-25 10:39 - 000001491 _____ C:\Users\Public\Desktop\GeForce Experience.lnk
2017-08-20 14:52 - 2017-07-24 21:00 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2017-08-20 14:52 - 2017-07-24 21:00 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2017-08-20 12:34 - 2012-07-08 12:35 - 000000000 ____D C:\Users\Zahraa Rached\Desktop\D
2017-08-19 15:41 - 2017-07-25 08:56 - 000002272 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2017-08-19 15:41 - 2017-07-25 08:56 - 000002260 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2017-08-18 06:37 - 2017-07-25 10:39 - 001923008 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspcap64.dll
2017-08-18 06:37 - 2017-07-25 10:39 - 001755072 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspbridge64.dll
2017-08-18 06:37 - 2017-07-25 10:39 - 001505728 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspcap.dll
2017-08-18 06:37 - 2017-07-25 10:39 - 001317312 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspbridge.dll
2017-08-18 06:37 - 2017-07-25 10:39 - 000121280 _____ C:\WINDOWS\system32\NvRtmpStreamer64.dll
2017-08-18 06:37 - 2017-07-25 10:37 - 000057792 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvhci.sys
2017-08-18 06:36 - 2017-07-25 10:37 - 000179136 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvaudcap64v.dll
2017-08-18 06:36 - 2017-07-25 10:37 - 000146368 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvaudcap32v.dll
2017-08-17 20:11 - 2017-07-25 10:39 - 000001951 _____ C:\WINDOWS\NvContainerRecovery.bat
2017-08-17 18:26 - 2017-07-25 10:39 - 000001951 _____ C:\WINDOWS\NvTelemetryContainerRecovery.bat
2017-08-17 17:30 - 2017-07-24 19:44 - 000000000 ____D C:\WINDOWS\registration
2017-08-16 20:20 - 2017-07-25 12:34 - 000000000 ____D C:\Users\Zahraa Rached\Desktop\mods 1.7
2017-08-12 16:00 - 2017-07-24 19:44 - 000000000 ____D C:\WINDOWS\SysWOW64\GroupPolicy
2017-08-09 22:12 - 2017-07-27 14:57 - 000173784 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avgntflt.sys
2017-08-09 22:12 - 2017-07-27 14:57 - 000167464 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avipbb.sys
2017-08-09 21:08 - 2017-07-25 15:20 - 000002279 _____ C:\Users\Zahraa Rached\Desktop\Discord.lnk
2017-08-09 21:08 - 2017-07-25 15:20 - 000000000 ____D C:\Users\Zahraa Rached\AppData\Roaming\discord
2017-08-09 21:08 - 2017-07-25 15:20 - 000000000 ____D C:\Users\Zahraa Rached\AppData\Local\Discord
2017-08-09 21:01 - 2017-07-26 12:49 - 000000000 ____D C:\WINDOWS\system32\MRT
2017-08-09 20:59 - 2017-07-26 12:49 - 140394280 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2017-08-09 20:11 - 2017-07-24 19:32 - 000000000 ____D C:\Users\Zahraa Rached\AppData\Local\Comms
2017-08-02 18:24 - 2017-07-25 10:39 - 000000000 ____D C:\Users\Zahraa Rached\AppData\Local\NVIDIA Corporation
2017-08-01 12:03 - 2017-07-27 21:54 - 000000000 ____D C:\Users\Zahraa Rached\AppData\Roaming\.PrøClient
2017-07-31 17:14 - 2017-07-24 19:46 - 000835576 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2017-07-31 17:14 - 2017-07-24 19:46 - 000177648 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
==================== Fichiers à la racine de certains dossiers =======
2017-07-28 11:20 - 2017-07-28 11:20 - 000000398 _____ () C:\Users\Zahraa Rached\AppData\Roaming\AdobeWLCMR2Cache.dat
2017-07-25 09:11 - 2017-07-25 09:11 - 000000000 ____H () C:\ProgramData\DP45977C.lfl
Certains fichiers dans TEMP:
====================
2017-08-26 22:15 - 2017-08-26 22:15 - 000019968 _____ (Red Hat®, Inc.) C:\Users\Zahraa Rached\AppData\Local\Temp\jansi-64-113212889926174382.dll
2017-08-26 21:50 - 2017-08-26 21:50 - 000019968 _____ (Red Hat®, Inc.) C:\Users\Zahraa Rached\AppData\Local\Temp\jansi-64-1866192590559028862.dll
2017-08-26 17:58 - 2017-08-26 17:58 - 000019968 _____ (Red Hat®, Inc.) C:\Users\Zahraa Rached\AppData\Local\Temp\jansi-64-2913701424294085253.dll
2017-08-26 15:49 - 2017-08-26 15:49 - 000019968 ____N (Red Hat®, Inc.) C:\Users\Zahraa Rached\AppData\Local\Temp\jansi-64-3016579392669315308.dll
2017-08-27 14:45 - 2017-08-27 14:45 - 000019968 ____N (Red Hat®, Inc.) C:\Users\Zahraa Rached\AppData\Local\Temp\jansi-64-3021188723369571547.dll
2017-08-26 22:59 - 2017-08-26 22:59 - 000019968 ____N (Red Hat®, Inc.) C:\Users\Zahraa Rached\AppData\Local\Temp\jansi-64-324827857182163311.dll
2017-08-26 18:17 - 2017-08-26 18:17 - 000019968 ____N (Red Hat®, Inc.) C:\Users\Zahraa Rached\AppData\Local\Temp\jansi-64-3288910540905486957.dll
2017-08-26 21:29 - 2017-08-26 21:29 - 000019968 ____N (Red Hat®, Inc.) C:\Users\Zahraa Rached\AppData\Local\Temp\jansi-64-3790234212344773239.dll
2017-08-26 16:01 - 2017-08-26 16:01 - 000019968 _____ (Red Hat®, Inc.) C:\Users\Zahraa Rached\AppData\Local\Temp\jansi-64-4167432776137344996.dll
2017-08-26 15:20 - 2017-08-26 15:20 - 000019968 _____ (Red Hat®, Inc.) C:\Users\Zahraa Rached\AppData\Local\Temp\jansi-64-5163988089563526185.dll
2017-08-26 17:16 - 2017-08-26 17:16 - 000019968 ____N (Red Hat®, Inc.) C:\Users\Zahraa Rached\AppData\Local\Temp\jansi-64-5868414155610821768.dll
2017-08-27 14:08 - 2017-08-27 14:08 - 000019968 _____ (Red Hat®, Inc.) C:\Users\Zahraa Rached\AppData\Local\Temp\jansi-64-6445517785397994053.dll
2017-08-26 12:37 - 2017-08-26 12:37 - 000019968 ____N (Red Hat®, Inc.) C:\Users\Zahraa Rached\AppData\Local\Temp\jansi-64-6684720386639686464.dll
2017-08-27 12:46 - 2017-08-27 12:46 - 000019968 ____N (Red Hat®, Inc.) C:\Users\Zahraa Rached\AppData\Local\Temp\jansi-64-7124355316926919162.dll
2017-08-26 16:29 - 2017-08-26 16:29 - 000019968 ____N (Red Hat®, Inc.) C:\Users\Zahraa Rached\AppData\Local\Temp\jansi-64-7276443333951742611.dll
2017-08-26 15:31 - 2017-08-26 15:31 - 000019968 ____N (Red Hat®, Inc.) C:\Users\Zahraa Rached\AppData\Local\Temp\jansi-64-7344199056107607812.dll
2017-08-26 20:52 - 2017-08-26 20:52 - 000019968 _____ (Red Hat®, Inc.) C:\Users\Zahraa Rached\AppData\Local\Temp\jansi-64-7428260808843771623.dll
2017-08-26 15:41 - 2017-08-26 15:41 - 000019968 _____ (Red Hat®, Inc.) C:\Users\Zahraa Rached\AppData\Local\Temp\jansi-64-7690666442828921542.dll
2017-08-26 12:50 - 2017-08-26 12:50 - 000019968 ____N (Red Hat®, Inc.) C:\Users\Zahraa Rached\AppData\Local\Temp\jansi-64-8392573223131218162.dll
2017-08-27 14:18 - 2017-08-27 14:18 - 000019968 ____N (Red Hat®, Inc.) C:\Users\Zahraa Rached\AppData\Local\Temp\jansi-64-839867814723291536.dll
2017-08-26 16:52 - 2017-08-26 16:52 - 000019968 ____N (Red Hat®, Inc.) C:\Users\Zahraa Rached\AppData\Local\Temp\jansi-64-8750303689435947669.dll
2017-08-27 12:05 - 2017-08-27 12:05 - 000019968 ____N (Red Hat®, Inc.) C:\Users\Zahraa Rached\AppData\Local\Temp\jansi-64-8762562930353220091.dll
2017-08-26 14:25 - 2017-08-26 14:25 - 000019968 ____N (Red Hat®, Inc.) C:\Users\Zahraa Rached\AppData\Local\Temp\jansi-64-9109173535172023603.dll
==================== Bamital & volsnap ======================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
C:\WINDOWS\system32\winlogon.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\wininit.exe => Le fichier est signé numériquement
C:\WINDOWS\explorer.exe => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\explorer.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\svchost.exe => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\svchost.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\services.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\User32.dll => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\User32.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\userinit.exe => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\userinit.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\rpcss.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\dnsapi.dll => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\dnsapi.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\Drivers\volsnap.sys => Le fichier est signé numériquement
LastRegBack: 2017-08-11 21:20
==================== Fin de FRST.txt ============================