cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 15-08-2016 01
Exécuté par besrour (administrateur) sur LENOVO-PC (15-08-2016 19:30:49)
Exécuté depuis C:\Users\besrour\Desktop
Profils chargés: besrour (Profils disponibles: besrour)
Platform: Windows 8.1 Single Language (Update) (X64) Langue: Français (France)
Internet Explorer Version 11 (Navigateur par défaut: "C:\Program Files (x86)\Maxthon\bin\maxthon.exe" "%1")
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processus (Avec liste blanche) =================

(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvscpapisvr.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Greatis Software, LLC) C:\Program Files (x86)\BootRacer\BootRacerServ.exe
(Arcai.com) C:\Program Files (x86)\netcut\services\aips.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Endpoint Security 10 for Windows SP1\avpsus.exe
(Uwe A. Ruttkamp) C:\Users\besrour\Desktop\elect\dhcpsrv\dhcpsrv.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDService.exe
(Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(AnchorFree Inc.) C:\Program Files (x86)\Hotspot Shield\bin\cmw_srv.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\utilities\ibtsiva.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
() C:\Program Files (x86)\InternetEverywhere\InternetEverywhere_Service.exe
(Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\NetworkAgent\klnagent.exe
(LENOVO INCORPORATED.) C:\Program Files\Lenovo\iMController\SystemAgentService.exe
(Lenovo(beijing) Limited) C:\Program Files (x86)\Lenovo\Lenovo Settings\LenovoSetSvr.exe
(Lenovo(beijing) Limited) C:\Windows\System32\LenovoWiFiHotspotSvr.exe
(Lenovo(beijing) Limited) C:\Program Files (x86)\Lenovo\Lenovo Updates\LUService.exe
(Maxthon) C:\Program Files (x86)\Maxthon\Modules\Service\Update\MaxthonUpdateSvc.exe
(PointGrab LTD) C:\Program Files (x86)\Lenovo\Motion Control\PGService.exe
(PointGrab LTD) C:\Program Files (x86)\Lenovo\Motion Control\PG_Service_Launcher.exe
(Lenovo) C:\Program Files\Lenovo PhoneCompanion\PhoneCompanionPusher.exe
(Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
() C:\Program Files\CyberLink\Shared files\RichVideo64.exe
(PointGrab LTD) C:\Program Files (x86)\Lenovo\Motion Control\WebcamSplitterServer.exe
(SoftEther VPN Project at University of Tsukuba, Japan.) C:\Program Files\SoftEther VPN Client\vpnclient_x64.exe
() C:\Program Files (x86)\Lenovo\Lenovo VeriFace Pro\VfConnectorService.exe
(VMware, Inc.) C:\Windows\SysWOW64\vmnat.exe
(Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Endpoint Security 10 for Windows SP1\avp.exe
(Connectify) C:\Program Files (x86)\Connectify\ConnectifyService.exe
(Connectify) C:\Program Files (x86)\Connectify\Connectifyd.exe
(VMware, Inc.) C:\Program Files (x86)\VMware\VMware Player\vmware-authd.exe
(VMware, Inc.) C:\Windows\SysWOW64\vmnetdhcp.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
() C:\Program Files (x86)\Lenovo\CCSDK\CCSDK.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
() C:\Program Files\Lenovo PhoneCompanion\adb.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
() C:\Windows\System32\igfxTray.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(CyberLink Corp.) C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
() C:\Program Files (x86)\InternetEverywhere\InternetEverywhere.exe
(CyberLink) C:\Program Files (x86)\Lenovo\Power2Go\CLMLSvc_P2G8.exe
(Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Endpoint Security 10 for Windows SP1\avp.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
() C:\Program Files (x86)\InternetEverywhere\InternetEverywhere_Launcher.exe
(Realtek semiconductor) C:\Windows\RTFTrack.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
() C:\Program Files\Realtek\Audio\HDA\FMAPP.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Lenovo) C:\Program Files\Lenovo\Onekey Theater\OnekeyStudio.exe
(Lenovo) C:\Program Files\Lenovo PhoneCompanion\Phone Companion.exe
(Lenovo(beijing) Limited) C:\Program Files (x86)\Lenovo\Energy Manager\Energy Manager.exe
(Lenovo(beijing) Limited) C:\Program Files (x86)\Lenovo\Energy Manager\utility.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Lenovo) C:\Program Files\Lenovo\Lenovo Solution Center\LSCNotify.exe
(Lenovo) C:\Users\besrour\AppData\Local\Apps\2.0\H08J9H95.GJD\OAZBXPHD.L5V\lsb...tion_91a10ba61c75c82d_0001.0006_e3bbae03e10aca14\LSB.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Connectify) C:\Program Files (x86)\Connectify\Connectify.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Tonec Inc.) C:\Program Files (x86)\Internet Download Manager\IDMan.exe
(Tonec Inc.) C:\Program Files (x86)\Internet Download Manager\IEMonitor.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Connectify) C:\Program Files (x86)\Connectify\ConnectifyNetServices.exe


==================== Registre (Avec liste blanche) ===========================

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)

HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2397120 2016-06-14] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => "C:\WINDOWS\system32\rundll32.exe" C:\WINDOWS\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [RtsFT] => C:\WINDOWS\RTFTrack.exe [6340312 2014-06-10] (Realtek semiconductor)
HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [3276104 2014-03-12] (ELAN Microelectronics Corp.)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13667032 2014-02-24] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1379544 2014-03-05] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_LENOVO_DOLBYDRAGON] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1379544 2014-03-05] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_LENOVO_MICPKEY] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1379544 2014-03-05] (Realtek Semiconductor)
HKLM\...\Run: [OnekeyStudio] => C:\Program Files\Lenovo\Onekey Theater\OnekeyStudio.exe [4196432 2012-09-14] (Lenovo)
HKLM\...\Run: [PhoneCompanion] => C:\Program Files\Lenovo PhoneCompanion\Phone Companion.exe [836592 2015-03-13] (Lenovo)
HKLM\...\Run: [Energy Manager] => C:\Program Files (x86)\Lenovo\Energy Manager\Energy Manager.exe [16093512 2015-03-13] (Lenovo(beijing) Limited)
HKLM\...\Run: [Lenovo Utility] => C:\Program Files (x86)\Lenovo\Energy Manager\Utility.exe [8235848 2015-03-13] (Lenovo(beijing) Limited)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2786032 2014-03-07] (Synaptics Incorporated)
HKLM\...\Run: [SoftEther VPN Client UI Helper] => C:\Program Files\SoftEther VPN Client\vpnclient_x64.exe [5250280 2016-04-19] (SoftEther VPN Project at University of Tsukuba, Japan.)
HKLM\...\Run: [Connectify Hotspot] => C:\Program Files (x86)\Connectify\Connectify.exe [3755296 2013-12-23] (Connectify)
HKLM\...\Run: [Connectify Dispatch] => C:\Program Files (x86)\Connectify\DispatchUI.exe [1685280 2013-12-23] (Connectify)
HKLM-x32\...\Run: [CLMLServer_For_P2G8] => C:\Program Files (x86)\Lenovo\Power2Go\CLMLSvc_P2G8.exe [110344 2014-09-09] (CyberLink)
HKLM-x32\...\Run: [CLVirtualDrive] => C:\Program Files (x86)\Lenovo\Power2Go\VirtualDrive.exe [492808 2014-09-09] (CyberLink Corp.)
HKLM-x32\...\Run: [AVP] => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Endpoint Security 10 for Windows SP1\avp.exe [1194320 2015-11-10] (Kaspersky Lab ZAO)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [595480 2016-03-20] (Oracle Corporation)
HKLM-x32\...\Run: [InternetEverywhere_InternetEverywhere_Launcher.exe] => C:\Program Files (x86)\InternetEverywhere\InternetEverywhere_Launcher.exe [969464 2015-08-25] ()
HKLM\...\Policies\Explorer\Run: [BootRacer] => C:\Program Files (x86)\BootRacer\Bootrace.exe [4774840 2016-05-23] (Greatis Software)
HKLM\...\Policies\Explorer: [DisableLocalMachineRun] 1
HKLM\...\Policies\Explorer: [DisableCurrentUserRun] 1
HKLM\...\Policies\Explorer: [DisableLocalMachineRunOnce] 1
HKLM\...\Policies\Explorer: [DisableCurrentUserRunOnce] 1
HKU\S-1-5-21-1033190954-1280823902-2519575533-1001\...\Run: [IDMan] => C:\Program Files (x86)\Internet Download Manager\IDMan.exe [3933392 2016-04-04] (Tonec Inc.)
HKU\S-1-5-21-1033190954-1280823902-2519575533-1001\...\Run: [uTorrent] => C:\Users\besrour\AppData\Roaming\uTorrent\uTorrent.exe [2530304 2016-05-20] (BitTorrent Inc.)
HKU\S-1-5-21-1033190954-1280823902-2519575533-1001\...\MountPoints2: {786a7ba9-5585-11e6-8333-f0761c6d7484} - "F:\Lenovo_Suite.exe"
HKU\S-1-5-21-1033190954-1280823902-2519575533-1001\...\MountPoints2: {c132e7dd-2cd0-11e6-8316-f0761c6d7484} - "E:\Lenovo_Suite.exe"
ShellIconOverlayIdentifiers: [ IDM Shell Extension] -> {CDC95B92-E27C-4745-A8C5-64A52A78855D} => C:\Program Files (x86)\Internet Download Manager\IDMShellExt64.dll [2015-08-14] (Tonec Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SoftEther VPN Client Manager Startup.lnk [2016-04-19]
ShortcutTarget: SoftEther VPN Client Manager Startup.lnk -> C:\Program Files\SoftEther VPN Client\vpncmgr_x64.exe (SoftEther VPN Project at University of Tsukuba, Japan.)

==================== Internet (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)

Tcpip\..\Interfaces\{17F7C9D7-F509-4027-9F6C-D8AF1BD6CE7E}: [NameServer] 10.47.9.34 10.47.9.36
Tcpip\..\Interfaces\{2971A228-F4AE-4B03-B4D0-5BFD2A65E280}: [NameServer] 10.47.9.34 10.47.9.36
Tcpip\..\Interfaces\{2E9393CC-4784-4A8E-BC65-18992BE16CBA}: [DhcpNameServer] 8.8.8.8 8.8.4.4
Tcpip\..\Interfaces\{4773E6ED-E8FE-477F-B94C-A42B1AC117CF}: [DhcpNameServer] 172.16.34.1
Tcpip\..\Interfaces\{676C3656-7CE5-4749-9E85-E09D21DF6E00}: [DhcpNameServer] 8.8.8.8
Tcpip\..\Interfaces\{696240F2-B9E2-4FD4-B281-7FA99F8AAF77}: [DhcpNameServer] 192.168.43.1
Tcpip\..\Interfaces\{889F42D9-2CFA-4EE1-915A-535229B07340}: [DhcpNameServer] 10.11.0.1
Tcpip\..\Interfaces\{E4598BF1-098F-436E-9F44-C37F1E9F7D48}: [DhcpNameServer] 10.5.0.1
Tcpip\..\Interfaces\{EFF26E8E-D0FF-4F4B-9C67-FEBE7D8E03A7}: [NameServer] 10.47.9.34 10.47.9.36

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://google.fr
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-1033190954-1280823902-2519575533-1001\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-1033190954-1280823902-2519575533-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://lenovo13.msn.com/?pc=LCJB
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-1033190954-1280823902-2519575533-1001 -> DefaultScope {EDB7BE80-145E-47EA-A951-9307F6D9560D} URL =
SearchScopes: HKU\S-1-5-21-1033190954-1280823902-2519575533-1001 -> {EDB7BE80-145E-47EA-A951-9307F6D9560D} URL =
BHO: IDM integration (IDMIEHlprObj Class) -> {0055C089-8582-441B-A0BF-17B458C2A3A8} -> C:\Program Files (x86)\Internet Download Manager\IDMIECC64.dll [2015-12-08] (Internet Download Manager, Tonec Inc.)
BHO-x32: IDM integration (IDMIEHlprObj Class) -> {0055C089-8582-441B-A0BF-17B458C2A3A8} -> C:\Program Files (x86)\Internet Download Manager\IDMIECC.dll [2015-12-08] (Internet Download Manager, Tonec Inc.)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_77\bin\ssv.dll [2016-04-09] (Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_77\bin\jp2ssv.dll [2016-04-09] (Oracle Corporation)

FireFox:
========
FF Plugin: @videolan.org/vlc,version=2.2.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-09-16] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-09-16] (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.77.2 -> C:\Program Files (x86)\Java\jre1.8.0_77\bin\dtplugin\npDeployJava1.dll [2016-04-09] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.77.2 -> C:\Program Files (x86)\Java\jre1.8.0_77\bin\plugin2\npjp2.dll [2016-04-09] (Oracle Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2016-07-10] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2016-07-10] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-29] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-29] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2016-06-30] (Adobe Systems Inc.)
FF HKU\S-1-5-21-1033190954-1280823902-2519575533-1001\...\SeaMonkey\Extensions: [mozilla_cc2@internetdownloadmanager.com] - C:\Program Files (x86)\Internet Download Manager\idmmzcc2.xpi
FF Extension: IDM integration - C:\Program Files (x86)\Internet Download Manager\idmmzcc2.xpi [2016-03-10]
FF HKU\S-1-5-21-1033190954-1280823902-2519575533-1001\...\SeaMonkey\Extensions: [mozilla_cc@internetdownloadmanager.com] - C:\Users\besrour\AppData\Roaming\IDM\idmmzcc5
FF Extension: IDM CC - C:\Users\besrour\AppData\Roaming\IDM\idmmzcc5 [2016-08-15] [non signé]

Chrome:
=======
CHR Profile: C:\Users\besrour\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Slides) - C:\Users\besrour\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-10-15]
CHR Extension: (Google Docs) - C:\Users\besrour\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-10-15]
CHR Extension: (Google Drive) - C:\Users\besrour\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-21]
CHR Extension: (YouTube) - C:\Users\besrour\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-10-15]
CHR Extension: (Recherche Google) - C:\Users\besrour\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-28]
CHR Extension: (Google Sheets) - C:\Users\besrour\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-10-15]
CHR Extension: (Google Docs hors connexion) - C:\Users\besrour\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-04-01]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\besrour\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-04]
CHR Extension: (Gmail) - C:\Users\besrour\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-10-15]
CHR Extension: (Chrome Media Router) - C:\Users\besrour\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-08-13]
CHR HKLM\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files (x86)\Internet Download Manager\IDMGCExt.crx [2016-03-11]

==================== Services (Avec liste blanche) ========================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R2 AIPS; C:\Program Files (x86)\netcut\services\AIPS.exe [262144 2011-07-28] (Arcai.com) [Fichier non signé]
R2 AVP; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Endpoint Security 10 for Windows SP1\avp.exe [1194320 2015-11-10] (Kaspersky Lab ZAO)
R2 avpsus; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Endpoint Security 10 for Windows SP1\avpsus.exe [2481072 2015-11-10] (Kaspersky Lab ZAO)
R2 BootRacerServ; C:\Program Files (x86)\BootRacer\BootRacerServ.exe [87992 2016-05-10] (Greatis Software, LLC)
R2 CCSDK; C:\Program Files (x86)\Lenovo\CCSDK\CCSDK.exe [592880 2014-07-09] ()
R2 Connectify; C:\Program Files (x86)\Connectify\ConnectifyService.exe [487936 2013-12-23] (Connectify) [Fichier non signé]
R2 DHCPServer; C:\Users\besrour\Desktop\elect\dhcpsrv\dhcpsrv.exe [110592 2015-09-17] (Uwe A. Ruttkamp) [Fichier non signé]
R2 ETDService; C:\Program Files\Elantech\ETDService.exe [101680 2013-10-15] (ELAN Microelectronics Corp.)
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1163712 2016-06-14] (NVIDIA Corporation)
R2 hshld; C:\Program Files (x86)\Hotspot Shield\bin\cmw_srv.exe [2756736 2016-04-19] (AnchorFree Inc.)
S3 HssTrayService; C:\Program Files (x86)\Hotspot Shield\bin\HssTrayService.EXE [103176 2016-04-19] ()
R2 ibtsiva; C:\Program Files (x86)\Intel\Bluetooth\utilities\ibtsiva.exe [125168 2014-12-12] (Intel Corporation)
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [328296 2014-11-21] (Intel Corporation)
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [747520 2013-08-27] (Intel(R) Corporation) [Fichier non signé]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [828376 2013-08-27] (Intel(R) Corporation)
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [131544 2013-09-16] (Intel Corporation)
R2 InternetEverywhere_Service; C:\Program Files (x86)\InternetEverywhere\InternetEverywhere_Service.exe [600824 2015-08-25] ()
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-09-16] (Intel Corporation)
R2 klnagent; C:\Program Files (x86)\Kaspersky Lab\NetworkAgent\klnagent.exe [105960 2014-11-19] (Kaspersky Lab ZAO)
S3 klnsacwsrv; C:\Program Files (x86)\Kaspersky Lab\NetworkAgent\klnsacwsrv.exe [90528 2014-11-19] (Kaspersky Lab ZAO)
S3 Lenovo EasyPlus Hotspot; C:\Program Files (x86)\Common Files\lenovo\easyplussdk\bin\EPHotspot64.exe [561408 2014-09-22] (Lenovo)
R2 Lenovo System Agent Service; C:\Program Files\Lenovo\iMController\SystemAgentService.exe [584664 2015-12-14] (LENOVO INCORPORATED.)
R2 LenovoSetSvr; C:\Program Files (x86)\Lenovo\Lenovo Settings\LenovoSetSvr.exe [389680 2015-03-13] (Lenovo(beijing) Limited)
R2 LenovoWiFiHotspotSvr; C:\Windows\System32\LenovoWiFiHotspotSvr.exe [198192 2015-03-13] (Lenovo(beijing) Limited)
S3 LSCWinService; C:\Program Files\Lenovo\Lenovo Solution Center\App\LSCWinService.exe [272864 2016-01-08] (Lenovo)
R2 LUService; C:\Program Files (x86)\Lenovo\Lenovo Updates\LUService.exe [38896 2014-02-17] (Lenovo(beijing) Limited)
R2 MaxthonUpdateSvc; C:\Program Files (x86)\Maxthon\Modules\Service\Update\MaxthonUpdateSvc.exe [1872808 2093-09-30] (Maxthon)
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [268192 2014-11-19] ()
S3 npggsvc; C:\WINDOWS\SysWOW64\GameMon.des [3916368 2016-01-09] (INCA Internet Co., Ltd.)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1879488 2016-06-14] (NVIDIA Corporation)
R3 NvStreamNetworkSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe [3632576 2016-06-14] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [2521024 2016-06-14] (NVIDIA Corporation)
R2 PGService; C:\Program Files (x86)\Lenovo\Motion Control\PGService.exe [167176 2014-02-25] (PointGrab LTD)
R2 PG_Service_Launcher; C:\Program Files (x86)\Lenovo\Motion Control\PG_Service_Launcher.exe [512776 2014-02-25] (PointGrab LTD)
R2 PhoneCompanionPusher; C:\Program Files\Lenovo PhoneCompanion\PhoneCompanionPusher.exe [288240 2015-03-13] (Lenovo)
S3 PhoneCompanionVap; C:\Program Files\Lenovo PhoneCompanion\PhoneCompanionVap.exe [308720 2015-03-13] (Lenovo)
R2 RichVideo64; C:\Program Files\CyberLink\Shared files\RichVideo64.exe [390632 2012-04-24] ()
R2 SEVPNCLIENT; C:\Program Files\SoftEther VPN Client\vpnclient_x64.exe [5250280 2016-04-19] (SoftEther VPN Project at University of Tsukuba, Japan.)
S3 TESHelper; c:\Program Files\Common Files\Lenovo\Magic Transfer\x64\MagicTransferTESHelper.exe [104696 2015-03-13] (Lenovo)
R2 VeriFaceSrv; C:\Program Files (x86)\Lenovo\Lenovo VeriFace Pro\VfConnectorService.exe [68880 2015-03-13] ()
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [366552 2015-07-07] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2015-07-07] (Microsoft Corporation)
R2 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [3820960 2014-11-19] (Intel® Corporation)

===================== Pilotes (Avec liste blanche) ==========================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

S3 ASPI; C:\WINDOWS\SysWOW64\DRIVERS\ASPI32.sys [84832 2002-07-17] (Adaptec) [Fichier non signé]
S3 CH341SER_A64; C:\Windows\System32\Drivers\CH341S64.SYS [58368 2011-11-04] (www.winchiphead.com)
R1 CLVirtualDrive; C:\Windows\system32\DRIVERS\CLVirtualDrive.sys [91912 2013-11-12] (CyberLink)
R1 cnnctfy3; C:\Windows\system32\DRIVERS\cnnctfy3.sys [35352 2016-06-29] (Connectify)
S0 ebdrv; C:\Windows\System32\drivers\evbda.sys [3357024 2013-08-22] (Broadcom Corporation)
S3 ETDSMBus; C:\Windows\system32\DRIVERS\ETDSMBus.sys [24904 2014-03-11] (ELAN Microelectronic Corp.)
R3 frzway; C:\Windows\system32\DRIVERS\frzway.sys [34552 2015-08-27] (The OpenVPN Project)
R3 hwusb_cdcacm; C:\Windows\system32\DRIVERS\ew_cdcacm.sys [125952 2014-07-25] (Huawei Technologies Co., Ltd.)
R3 hwusb_wwanecm; C:\Windows\system32\DRIVERS\ew_wwanecm.sys [380672 2014-09-30] (Huawei Technologies Co., Ltd.)
R3 ibtusb; C:\Windows\system32\DRIVERS\ibtusb.sys [231152 2014-12-12] (Intel Corporation)
R0 kl1; C:\Windows\System32\DRIVERS\kl1.sys [478392 2015-09-11] (Kaspersky Lab ZAO)
S0 klelam; C:\Windows\System32\DRIVERS\klelam.sys [31848 2015-08-29] (Kaspersky Lab)
U5 klflt; C:\Windows\System32\Drivers\klflt.sys [111984 2015-09-30] (Kaspersky Lab ZAO)
R1 KLFLTDEV; C:\Windows\system32\DRIVERS\klfltdev.sys [39096 2015-10-05] (Kaspersky Lab ZAO)
R1 KLIF; C:\Windows\System32\DRIVERS\klif.sys [678784 2015-09-30] (Kaspersky Lab ZAO)
R1 KLIM6; C:\Windows\system32\DRIVERS\klim6.sys [42152 2015-08-17] (AO Kaspersky Lab)
S3 KLNetMon; C:\Windows\system32\DRIVERS\klmon.sys [107528 2014-11-19] (Kaspersky Lab ZAO)
R1 klwfp; C:\Windows\system32\DRIVERS\klwfp.sys [78008 2015-10-01] (Kaspersky Lab ZAO)
R1 kneps; C:\Windows\system32\DRIVERS\kneps.sys [188584 2015-09-11] (Kaspersky Lab ZAO)
R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [99288 2013-09-16] (Intel Corporation)
S0 mfeelamk; C:\Windows\System32\drivers\mfeelamk.sys [80920 2015-07-02] (McAfee, Inc.)
S3 NdisImPlatformMp; C:\Windows\system32\DRIVERS\NdisImPlatform.sys [126464 2014-11-21] (Microsoft Corporation)
R3 Neo_VPN; C:\Windows\system32\DRIVERS\Neo_VPN.sys [38432 2016-04-19] (SoftEther Corporation)
R3 NETwNb64; C:\Windows\system32\DRIVERS\Netwbw02.sys [3494680 2014-12-08] (Intel Corporation)
S3 NETwNe64; C:\Windows\system32\DRIVERS\NETwew00.sys [3344352 2013-07-08] (Intel Corporation)
R2 npf; C:\Windows\System32\drivers\npf.sys [36600 2015-11-15] (Riverbed Technology, Inc.)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [26560 2016-06-14] (NVIDIA Corporation)
S3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [56384 2016-04-14] (NVIDIA Corporation)
R3 RTSPER; C:\Windows\system32\DRIVERS\RtsPer.sys [444632 2013-10-24] (Realsil Semiconductor Corporation)
R3 rtsuvc; C:\Windows\system32\DRIVERS\rtsuvc.sys [9121496 2014-06-10] (Realtek Semiconductor Corp.)
R3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [34544 2014-03-07] (Synaptics Incorporated)
S3 ssudserd; C:\Windows\system32\DRIVERS\ssudserd.sys [214832 2015-12-08] (DEVGURU Co., LTD.(www.devguru.co.kr))
R3 taphss6; C:\Windows\system32\DRIVERS\taphss6.sys [42064 2016-02-12] (Anchorfree Inc.)
S1 VBoxNetAdp; C:\Windows\system32\DRIVERS\VBoxNetAdp6.sys [117768 2015-09-08] (Oracle Corporation)
S3 VBoxUSB; C:\Windows\System32\Drivers\VBoxUSB.sys [125520 2015-09-08] (Oracle Corporation)
R0 vsock; C:\Windows\System32\drivers\vsock.sys [75512 2015-11-05] (VMware, Inc.)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44560 2015-07-07] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [270168 2015-07-07] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114520 2015-07-07] (Microsoft Corporation)
R3 WinDriver6; C:\Windows\system32\drivers\windrvr6.sys [273920 2014-10-26] (Jungo Connectivity)
S3 wsvd; C:\Windows\system32\DRIVERS\wsvd.sys [102376 2012-06-13] ("CyberLink)
S3 SANDRA; \??\C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2016.RTMa\WNt600x64\Sandra.sys [X]

==================== NetSvcs (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)


==================== Un mois - Créés - fichiers et dossiers ========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2016-08-15 19:30 - 2016-08-15 19:31 - 00028760 _____ C:\Users\besrour\Desktop\FRST.txt
2016-08-15 19:30 - 2016-08-15 19:30 - 00000000 ____D C:\FRST
2016-08-15 19:29 - 2016-08-15 19:29 - 02394624 _____ (Farbar) C:\Users\besrour\Desktop\FRST64.exe
2016-08-15 11:56 - 2016-08-15 11:56 - 00001283 _____ C:\Users\besrour\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Wi-FiHotspotChgToast.lnk
2016-08-15 11:20 - 2016-08-15 11:20 - 00159285 _____ C:\Users\besrour\Desktop\ZHPDiag.txt
2016-08-15 11:17 - 2016-08-15 11:17 - 00001894 _____ C:\Users\besrour\Desktop\ZHPFixReport.txt
2016-08-15 11:17 - 2016-08-15 11:17 - 00001894 _____ C:\Users\besrour\Desktop\ZHPFix[R1].txt
2016-08-15 11:14 - 2016-08-15 11:14 - 03521617 _____ (Nicolas Coolman ) C:\Users\besrour\Downloads\ZHPFix.exe
2016-08-15 11:14 - 2016-08-15 11:14 - 00001876 _____ C:\Users\Public\Desktop\ZHPFix.lnk
2016-08-15 11:14 - 2016-08-15 11:14 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ZHP
2016-08-15 11:14 - 2016-08-15 11:14 - 00000000 ____D C:\Program Files (x86)\ZHPFix
2016-08-15 10:34 - 2016-08-15 11:20 - 00000000 ____D C:\Users\besrour\AppData\Roaming\ZHP
2016-08-15 10:34 - 2016-08-15 11:18 - 00000841 _____ C:\Users\besrour\Desktop\ZHPDiag.lnk
2016-08-15 10:34 - 2016-08-15 10:34 - 02293248 _____ C:\Users\besrour\Downloads\ZHPDiag3.exe
2016-08-15 10:00 - 2016-08-15 10:00 - 00688992 _____ C:\Users\besrour\Downloads\nvspcap64.zip
2016-08-15 00:51 - 2016-08-15 00:51 - 00000000 ____D C:\Users\besrour\AppData\Local\BootRacer
2016-08-15 00:47 - 2016-08-15 19:21 - 00036864 _____ C:\Users\Public\Documents\bootracer.his
2016-08-15 00:46 - 2016-08-15 19:22 - 00001119 _____ C:\Users\Public\Documents\bootracer.ini
2016-08-15 00:46 - 2016-08-15 19:22 - 00000000 ____D C:\ProgramData\BootRacer
2016-08-15 00:46 - 2016-08-15 11:45 - 00000000 ____D C:\Program Files (x86)\BootRacer
2016-08-15 00:46 - 2016-08-15 00:46 - 00000000 ____D C:\Users\besrour\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BootRacer
2016-08-14 20:52 - 2016-08-14 20:52 - 03784256 _____ C:\Users\besrour\Desktop\adwcleaner_6.000.exe
2016-08-14 16:01 - 2016-08-14 20:47 - 00000000 ____D C:\Users\besrour\Downloads\WinDlg_v1_29
2016-08-14 16:00 - 2016-08-14 16:00 - 00974733 _____ C:\Users\besrour\Downloads\WinDlg_v1_29.zip
2016-08-14 15:49 - 2016-08-14 15:49 - 00000000 ____D C:\Users\besrour\AppData\Local\CrystalDiskMark5
2016-08-14 15:41 - 2016-08-14 15:41 - 00000000 ____D C:\Users\besrour\Intel
2016-08-14 15:39 - 2016-08-14 15:40 - 12839336 _____ (Lenovo Group Limited ) C:\Users\besrour\Downloads\49rs03ww.exe
2016-08-14 11:11 - 2016-07-12 15:08 - 00175616 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmTasks.dll
2016-08-13 16:15 - 2016-07-02 05:29 - 00828408 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2016-08-13 16:15 - 2016-07-02 05:29 - 00176632 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2016-08-12 21:25 - 2016-06-18 21:06 - 00590688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fvevol.sys
2016-08-12 21:25 - 2016-06-18 21:06 - 00072408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpfve.sys
2016-08-12 21:25 - 2016-06-11 20:52 - 00379232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys
2016-08-12 21:25 - 2016-06-11 20:52 - 00057184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\stornvme.sys
2016-08-12 21:25 - 2016-06-11 19:05 - 00216576 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpresult.exe
2016-08-12 21:25 - 2016-06-11 17:50 - 00987136 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2016-08-12 21:25 - 2016-06-11 17:46 - 00482304 _____ (Microsoft Corporation) C:\WINDOWS\system32\tpmvsc.dll
2016-08-12 21:25 - 2016-06-11 17:44 - 00509440 _____ (Microsoft Corporation) C:\WINDOWS\system32\webio.dll
2016-08-12 21:25 - 2016-06-11 17:37 - 00796672 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll
2016-08-12 21:25 - 2016-06-11 17:24 - 00800768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2016-08-12 21:25 - 2016-06-11 17:20 - 00413184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webio.dll
2016-08-12 21:25 - 2016-06-11 17:16 - 00626176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttp.dll
2016-08-12 21:25 - 2016-06-11 04:44 - 00107984 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncryptsslp.dll
2016-08-12 21:25 - 2016-06-11 04:44 - 00091416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncryptsslp.dll
2016-08-12 21:25 - 2016-06-10 21:07 - 03820544 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcore.dll
2016-08-12 21:25 - 2016-06-10 21:03 - 00432128 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2016-08-12 21:25 - 2016-06-10 20:04 - 03547136 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll
2016-08-12 21:25 - 2016-06-10 19:11 - 06521800 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2016-08-12 21:25 - 2016-06-10 19:07 - 03273728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpcore.dll
2016-08-12 21:25 - 2016-06-10 19:04 - 00357376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll
2016-08-12 21:25 - 2016-06-04 01:38 - 01613528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\crypt32.dll
2016-08-12 21:25 - 2016-06-04 01:37 - 01970968 _____ (Microsoft Corporation) C:\WINDOWS\system32\crypt32.dll
2016-08-12 21:25 - 2016-05-29 08:08 - 22361344 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2016-08-12 21:25 - 2016-05-28 19:31 - 19788688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2016-08-12 21:25 - 2016-05-18 21:56 - 01291776 _____ (Microsoft Corporation) C:\WINDOWS\system32\certutil.exe
2016-08-12 21:25 - 2016-05-18 21:28 - 02635264 _____ (Microsoft Corporation) C:\WINDOWS\system32\CertEnroll.dll
2016-08-12 21:25 - 2016-05-18 21:16 - 02317824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CertEnroll.dll
2016-08-12 21:25 - 2016-05-14 06:19 - 01134768 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2016-08-12 21:25 - 2016-05-14 00:08 - 00111616 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidclass.sys
2016-08-12 21:25 - 2016-05-14 00:08 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidusb.sys
2016-08-12 21:25 - 2016-05-13 23:24 - 00862720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2016-08-12 21:25 - 2016-05-13 22:42 - 03667968 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2016-08-12 21:25 - 2016-05-13 22:26 - 02230784 _____ (Microsoft Corporation) C:\WINDOWS\system32\wucltux.dll
2016-08-12 21:25 - 2016-05-13 22:26 - 00897024 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2016-08-12 21:25 - 2016-05-13 22:16 - 00727040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2016-08-12 21:25 - 2016-05-06 22:59 - 00331608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Classpnp.sys
2016-08-12 21:25 - 2016-05-06 18:13 - 00138240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dfsc.sys
2016-08-12 21:25 - 2016-05-05 19:28 - 01661072 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2016-08-12 21:25 - 2016-05-05 18:39 - 01212256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2016-08-12 21:25 - 2016-05-05 18:02 - 03320832 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2016-08-12 21:25 - 2016-05-05 17:29 - 03607040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2016-08-12 21:25 - 2016-04-16 14:56 - 01080320 _____ (Microsoft Corporation) C:\WINDOWS\system32\IKEEXT.DLL
2016-08-12 21:25 - 2016-04-09 23:14 - 00306176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Geolocation.dll
2016-08-12 21:25 - 2016-04-09 23:10 - 00816128 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcss.dll
2016-08-12 21:25 - 2016-04-09 23:02 - 00346112 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationApi.dll
2016-08-12 21:25 - 2016-04-09 22:59 - 00218112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Geolocation.dll
2016-08-12 21:25 - 2016-04-09 22:55 - 00881152 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPSSVC.dll
2016-08-12 21:25 - 2016-04-07 17:06 - 00927744 _____ (Microsoft Corporation) C:\WINDOWS\system32\iphlpsvc.dll
2016-08-12 21:25 - 2016-04-06 22:21 - 00114528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mup.sys
2016-08-12 21:25 - 2016-04-06 19:20 - 00402432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2016-08-12 21:25 - 2016-04-06 19:17 - 18825216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2016-08-12 21:25 - 2016-04-06 17:25 - 15158272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2016-08-12 21:25 - 2016-04-05 23:37 - 00205824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndiswan.sys
2016-08-12 21:24 - 2016-06-11 18:14 - 00192512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gpresult.exe
2016-08-12 21:24 - 2016-06-10 19:11 - 01487992 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2016-08-12 21:24 - 2016-06-10 19:11 - 00261376 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppwinob.dll
2016-08-12 21:24 - 2016-06-10 19:11 - 00125024 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptxml.dll
2016-08-12 21:24 - 2016-06-10 19:10 - 00099136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptxml.dll
2016-08-12 21:24 - 2016-06-09 20:32 - 00228864 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebClnt.dll
2016-08-12 21:24 - 2016-06-09 19:18 - 00199168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WebClnt.dll
2016-08-12 21:24 - 2016-06-07 19:10 - 00083456 _____ (Microsoft Corporation) C:\WINDOWS\system32\hbaapi.dll
2016-08-12 21:24 - 2016-06-07 18:13 - 00066560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hbaapi.dll
2016-08-12 21:24 - 2016-05-18 22:54 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\system32\certenc.dll
2016-08-12 21:24 - 2016-05-18 22:15 - 00044032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certenc.dll
2016-08-12 21:24 - 2016-05-18 21:33 - 01060352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certutil.exe
2016-08-12 21:24 - 2016-05-14 21:26 - 00136904 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2016-08-12 21:24 - 2016-05-14 00:08 - 00032512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidparse.sys
2016-08-12 21:24 - 2016-05-13 22:30 - 00035840 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapp.exe
2016-08-12 21:24 - 2016-05-13 22:29 - 00140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuwebv.dll
2016-08-12 21:24 - 2016-05-13 22:27 - 00409088 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUSettingsProvider.dll
2016-08-12 21:24 - 2016-05-13 22:27 - 00095744 _____ (Microsoft Corporation) C:\WINDOWS\system32\wudriver.dll
2016-08-12 21:24 - 2016-05-13 22:18 - 00124928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuwebv.dll
2016-08-12 21:24 - 2016-05-13 22:18 - 00029696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapp.exe
2016-08-12 21:24 - 2016-05-13 22:16 - 00081920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wudriver.dll
2016-08-12 21:24 - 2016-05-12 19:36 - 00034600 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserAccountBroker.exe
2016-08-12 21:24 - 2016-05-12 18:39 - 00030984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserAccountBroker.exe
2016-08-12 21:24 - 2016-05-05 18:18 - 00065024 _____ (Microsoft Corporation) C:\WINDOWS\system32\msiexec.exe
2016-08-12 21:24 - 2016-05-05 17:37 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msiexec.exe
2016-08-12 21:24 - 2016-05-05 17:34 - 00086016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\olepro32.dll
2016-08-12 21:24 - 2016-05-05 16:28 - 02778624 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2016-08-12 21:24 - 2016-05-05 16:16 - 02464768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2016-08-12 21:24 - 2016-04-10 06:35 - 00551256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdmp.sys
2016-08-12 21:24 - 2016-04-09 23:15 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\wfapigp.dll
2016-08-12 21:24 - 2016-04-09 23:09 - 00754176 _____ (Microsoft Corporation) C:\WINDOWS\system32\FirewallAPI.dll
2016-08-12 21:24 - 2016-04-09 22:59 - 00020480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wfapigp.dll
2016-08-12 21:24 - 2016-04-09 22:56 - 00543232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FirewallAPI.dll
2016-08-12 21:24 - 2016-04-09 22:52 - 00281088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LocationApi.dll
2016-08-12 21:24 - 2016-04-02 14:58 - 00108032 _____ (Microsoft Corporation) C:\WINDOWS\system32\BdeHdCfgLib.dll
2016-08-12 21:24 - 2016-04-01 18:40 - 00322048 _____ (Microsoft Corporation) C:\WINDOWS\system32\fvecpl.dll
2016-08-12 21:24 - 2016-04-01 17:53 - 00348672 _____ (Microsoft Corporation) C:\WINDOWS\system32\bdesvc.dll
2016-08-12 21:24 - 2016-04-01 17:50 - 00737280 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll
2016-08-12 21:24 - 2016-02-04 17:57 - 00018944 _____ (Microsoft Corporation) C:\WINDOWS\system32\httpprxp.dll
2016-08-12 21:24 - 2016-02-04 17:49 - 00125440 _____ (Microsoft Corporation) C:\WINDOWS\system32\httpprxm.dll
2016-08-12 21:24 - 2016-02-04 17:39 - 00077824 _____ (Microsoft Corporation) C:\WINDOWS\system32\adhsvc.dll
2016-08-12 20:36 - 2016-05-25 14:22 - 00875712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcr120_clr0400.dll
2016-08-12 20:36 - 2016-05-25 14:22 - 00536768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcp120_clr0400.dll
2016-08-12 20:36 - 2016-05-25 14:12 - 00869576 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcr120_clr0400.dll
2016-08-12 20:36 - 2016-05-25 14:12 - 00678600 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcp120_clr0400.dll
2016-08-12 20:32 - 2016-08-02 07:54 - 25808384 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2016-08-12 20:32 - 2016-08-02 07:32 - 02894336 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2016-08-12 20:32 - 2016-08-02 07:31 - 00572416 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2016-08-12 20:32 - 2016-08-02 07:20 - 00615936 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieui.dll
2016-08-12 20:32 - 2016-08-02 07:18 - 06047744 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2016-08-12 20:32 - 2016-08-02 07:18 - 00817664 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2016-08-12 20:32 - 2016-08-02 06:55 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2016-08-12 20:32 - 2016-08-02 06:54 - 20343808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2016-08-12 20:32 - 2016-08-02 06:51 - 00497664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2016-08-12 20:32 - 2016-08-02 06:47 - 02286592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2016-08-12 20:32 - 2016-08-02 06:46 - 01032704 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcomm.dll
2016-08-12 20:32 - 2016-08-02 06:41 - 00663552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2016-08-12 20:32 - 2016-08-02 06:40 - 00262144 _____ (Microsoft Corporation) C:\WINDOWS\system32\webcheck.dll
2016-08-12 20:32 - 2016-08-02 06:39 - 00378880 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2016-08-12 20:32 - 2016-08-02 06:38 - 00806400 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2016-08-12 20:32 - 2016-08-02 06:38 - 00724992 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2016-08-12 20:32 - 2016-08-02 06:36 - 02131456 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2016-08-12 20:32 - 2016-08-02 06:28 - 15412224 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2016-08-12 20:32 - 2016-08-02 06:23 - 02868224 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2016-08-12 20:32 - 2016-08-02 06:21 - 04608000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2016-08-12 20:32 - 2016-08-02 06:20 - 00880128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcomm.dll
2016-08-12 20:32 - 2016-08-02 06:15 - 00692736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2016-08-12 20:32 - 2016-08-02 06:15 - 00330752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2016-08-12 20:32 - 2016-08-02 06:14 - 02055680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2016-08-12 20:32 - 2016-08-02 06:11 - 13808128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2016-08-12 20:32 - 2016-08-02 06:10 - 01550848 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2016-08-12 20:32 - 2016-08-02 05:59 - 00800768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2016-08-12 20:32 - 2016-08-02 05:56 - 02393088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2016-08-12 20:32 - 2016-08-02 05:53 - 01316352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2016-08-12 20:32 - 2016-08-02 05:51 - 00710144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2016-08-12 20:32 - 2016-07-06 15:26 - 07793152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2016-08-12 20:32 - 2016-07-06 15:26 - 07075328 _____ (Microsoft Corporation) C:\WINDOWS\system32\glcndFilter.dll
2016-08-12 20:32 - 2016-07-06 15:23 - 05270016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\glcndFilter.dll
2016-08-12 20:32 - 2016-07-06 15:21 - 05265920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2016-08-12 20:32 - 2016-06-21 19:32 - 00146432 _____ (Microsoft Corporation) C:\WINDOWS\system32\poqexec.exe
2016-08-12 20:32 - 2016-06-21 15:12 - 00129536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\poqexec.exe
2016-08-12 20:32 - 2016-06-11 18:22 - 00145408 _____ (Microsoft Corporation) C:\WINDOWS\system32\iepeers.dll
2016-08-12 20:32 - 2016-06-11 18:21 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MshtmlDac.dll
2016-08-12 20:32 - 2016-06-11 18:20 - 00315392 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll
2016-08-12 20:32 - 2016-06-11 17:44 - 00128000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iepeers.dll
2016-08-12 20:32 - 2016-06-11 17:43 - 00279040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtrans.dll
2016-08-12 20:32 - 2016-06-11 17:33 - 00230400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webcheck.dll
2016-08-12 20:24 - 2016-07-08 15:18 - 04169216 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2016-08-12 20:19 - 2016-07-09 01:09 - 00442712 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2016-08-12 20:19 - 2016-07-09 01:08 - 00332632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2016-08-12 20:19 - 2016-07-08 15:32 - 01753600 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2016-08-12 20:19 - 2016-07-08 15:25 - 01491456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2016-08-12 20:19 - 2016-07-08 15:22 - 01445376 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2016-08-12 20:19 - 2016-07-08 15:19 - 00840704 _____ (Microsoft Corporation) C:\WINDOWS\system32\netlogon.dll
2016-08-12 20:19 - 2016-07-08 15:17 - 00696832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netlogon.dll
2016-08-12 20:19 - 2016-07-07 23:33 - 00201728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys
2016-08-12 20:19 - 2016-07-07 22:53 - 00445440 _____ (Microsoft Corporation) C:\WINDOWS\system32\certcli.dll
2016-08-12 20:19 - 2016-07-07 21:06 - 00324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certcli.dll
2016-08-12 20:19 - 2016-05-19 00:18 - 00563024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2016-08-12 20:19 - 2016-05-19 00:18 - 00397232 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcryptprimitives.dll
2016-08-12 20:19 - 2016-05-19 00:16 - 00178016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2016-08-12 20:19 - 2016-05-18 23:28 - 00340880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcryptprimitives.dll
2016-08-12 20:17 - 2016-06-25 21:05 - 00050368 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2016-08-12 20:17 - 2016-06-25 19:13 - 00165376 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetpp.dll
2016-08-12 20:17 - 2016-06-25 17:24 - 00345600 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntprint.dll
2016-08-12 20:17 - 2016-06-25 17:15 - 01094656 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2016-08-12 20:17 - 2016-06-25 17:13 - 00864256 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32spl.dll
2016-08-12 20:17 - 2016-06-25 17:05 - 00306176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntprint.dll
2016-08-12 20:17 - 2016-06-22 14:48 - 00268800 _____ (Microsoft Corporation) C:\WINDOWS\system32\centel.dll
2016-08-12 20:17 - 2016-06-21 14:48 - 01490432 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2016-08-12 20:17 - 2016-06-21 14:48 - 01208320 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2016-08-12 20:17 - 2016-06-21 14:48 - 00571904 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2016-08-12 20:17 - 2016-06-21 14:48 - 00544256 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2016-08-12 20:17 - 2016-06-21 14:48 - 00294912 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2016-08-12 20:17 - 2016-06-21 14:48 - 00219136 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
2016-08-12 20:17 - 2016-06-21 14:48 - 00076800 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2016-08-12 20:17 - 2016-06-11 20:45 - 07445856 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2016-08-12 20:17 - 2016-01-30 20:50 - 00477184 _____ (Microsoft Corporation) C:\WINDOWS\system32\puiobj.dll
2016-08-12 20:17 - 2016-01-30 20:00 - 00192512 _____ (Microsoft Corporation) C:\WINDOWS\system32\puiapi.dll
2016-08-12 20:17 - 2016-01-30 19:48 - 00269312 _____ (Microsoft Corporation) C:\WINDOWS\system32\DafPrintProvider.dll
2016-08-12 20:17 - 2016-01-30 19:18 - 00367104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\puiobj.dll
2016-08-12 20:17 - 2016-01-30 18:48 - 00167424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\puiapi.dll
2016-08-12 20:17 - 2016-01-30 18:41 - 00203776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DafPrintProvider.dll
2016-08-05 12:19 - 2016-08-05 12:19 - 05347424 _____ C:\WINDOWS\Minidump\080516-22703-01.dmp
2016-08-04 13:39 - 2016-08-04 13:40 - 01242440 _____ C:\WINDOWS\Minidump\080416-54562-01.dmp
2016-08-04 13:35 - 2016-08-04 13:36 - 01291240 _____ C:\WINDOWS\Minidump\080416-56812-01.dmp
2016-08-04 13:31 - 2016-08-04 13:32 - 04982192 _____ C:\WINDOWS\Minidump\080416-57031-01.dmp
2016-08-04 10:25 - 2016-08-04 10:25 - 00006330 _____ C:\Users\besrour\Documents\cc_20160804_102544.reg
2016-08-04 07:46 - 2016-08-15 00:45 - 00000000 ____D C:\AdwCleaner
2016-08-04 07:19 - 2016-08-05 12:19 - 903603784 _____ C:\WINDOWS\MEMORY.DMP
2016-08-02 23:43 - 2016-08-02 23:43 - 00006212 _____ C:\Users\besrour\Documents\cc_20160802_234334.reg
2016-07-28 15:10 - 2016-07-28 15:10 - 00002628 _____ C:\Users\besrour\Documents\cc_20160728_151003.reg
2016-07-25 10:59 - 2016-07-11 03:13 - 01887800 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvCamera64.dll
2016-07-25 10:59 - 2016-07-11 03:13 - 01595840 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvCamera32.dll
2016-07-25 10:58 - 2016-07-10 23:36 - 00127424 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvStreaming.exe
2016-07-25 10:58 - 2016-05-04 03:23 - 00129824 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2016-07-25 10:58 - 2016-05-04 03:22 - 00130848 _____ C:\WINDOWS\system32\vulkan-1.dll
2016-07-25 10:58 - 2016-05-04 03:22 - 00045344 _____ C:\WINDOWS\system32\vulkaninfo.exe
2016-07-25 10:58 - 2016-05-04 03:22 - 00040224 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2016-07-25 10:55 - 2016-07-11 03:13 - 39977920 _____ C:\WINDOWS\system32\nvcompiler.dll
2016-07-25 10:55 - 2016-07-11 03:13 - 35115968 _____ C:\WINDOWS\SysWOW64\nvcompiler.dll
2016-07-25 10:55 - 2016-07-11 03:13 - 31640512 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglv64.dll
2016-07-25 10:55 - 2016-07-11 03:13 - 25414080 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglv32.dll
2016-07-25 10:55 - 2016-07-11 03:13 - 19220352 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvwgf2umx.dll
2016-07-25 10:55 - 2016-07-11 03:13 - 17321352 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvd3dumx.dll
2016-07-25 10:55 - 2016-07-11 03:13 - 16790552 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvwgf2um.dll
2016-07-25 10:55 - 2016-07-11 03:13 - 14371384 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvd3dum.dll
2016-07-25 10:55 - 2016-07-11 03:13 - 13581880 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvlddmkm.sys
2016-07-25 10:55 - 2016-07-11 03:13 - 10691632 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvopencl.dll
2016-07-25 10:55 - 2016-07-11 03:13 - 10656112 _____ C:\WINDOWS\system32\nvptxJitCompiler.dll
2016-07-25 10:55 - 2016-07-11 03:13 - 10234336 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2016-07-25 10:55 - 2016-07-11 03:13 - 09020656 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvopencl.dll
2016-07-25 10:55 - 2016-07-11 03:13 - 08742360 _____ C:\WINDOWS\SysWOW64\nvptxJitCompiler.dll
2016-07-25 10:55 - 2016-07-11 03:13 - 08615336 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2016-07-25 10:55 - 2016-07-11 03:13 - 03840096 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2016-07-25 10:55 - 2016-07-11 03:13 - 03542072 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2016-07-25 10:55 - 2016-07-11 03:13 - 03099072 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2016-07-25 10:55 - 2016-07-11 03:13 - 01939000 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6436881.dll
2016-07-25 10:55 - 2016-07-11 03:13 - 01571776 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6436881.dll
2016-07-25 10:55 - 2016-07-11 03:13 - 01001016 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2016-07-25 10:55 - 2016-07-11 03:13 - 00930360 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2016-07-25 10:55 - 2016-07-11 03:13 - 00909880 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2016-07-25 10:55 - 2016-07-11 03:13 - 00852024 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2016-07-25 10:55 - 2016-07-11 03:13 - 00694672 _____ C:\WINDOWS\system32\nvfatbinaryLoader.dll
2016-07-25 10:55 - 2016-07-11 03:13 - 00583736 _____ C:\WINDOWS\SysWOW64\nvfatbinaryLoader.dll
2016-07-25 10:55 - 2016-07-11 03:13 - 00544120 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2016-07-25 10:55 - 2016-07-11 03:13 - 00459320 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2016-07-25 10:55 - 2016-07-11 03:13 - 00444472 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll
2016-07-25 10:55 - 2016-07-11 03:13 - 00394808 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll
2016-07-25 10:55 - 2016-07-11 03:13 - 00177952 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvinitx.dll
2016-07-25 10:55 - 2016-07-11 03:13 - 00155768 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvinit.dll
2016-07-25 10:55 - 2016-07-11 03:13 - 00039124 _____ C:\WINDOWS\system32\nvinfo.pb
2016-07-17 15:01 - 2016-07-17 15:01 - 00019709 _____ C:\Users\besrour\Desktop\Sans nom 1.ods
2016-07-16 17:09 - 2016-08-15 12:09 - 00001002 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2016-07-16 17:09 - 2016-08-13 23:20 - 00001064 _____ C:\WINDOWS\Tasks\Adobe Flash Player PPAPI Notifier.job
2016-07-16 17:09 - 2016-08-02 05:18 - 00004034 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player PPAPI Notifier
2016-07-16 17:09 - 2016-08-02 05:18 - 00003890 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater

==================== Un mois - Modifiés - fichiers et dossiers ========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2016-08-15 19:31 - 2016-01-23 15:07 - 00000000 ____D C:\ProgramData\Kaspersky Lab
2016-08-15 19:25 - 2015-03-14 05:15 - 00815034 _____ C:\WINDOWS\system32\perfh00C.dat
2016-08-15 19:25 - 2015-03-14 05:15 - 00160622 _____ C:\WINDOWS\system32\perfc00C.dat
2016-08-15 19:25 - 2014-11-21 05:44 - 01832192 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2016-08-15 19:25 - 2013-08-22 14:36 - 00000000 ____D C:\WINDOWS\Inf
2016-08-15 19:24 - 2015-10-15 12:17 - 00001092 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2016-08-15 19:24 - 2013-08-22 15:45 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-08-15 12:27 - 2015-10-15 10:54 - 00003600 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1033190954-1280823902-2519575533-1001
2016-08-15 12:02 - 2015-10-15 12:17 - 00001096 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2016-08-15 11:57 - 2015-10-15 16:18 - 00000000 ____D C:\Users\besrour\AppData\Roaming\DMCache
2016-08-15 11:56 - 2015-10-15 11:51 - 00000000 ____D C:\ProgramData\LU
2016-08-15 11:46 - 2016-04-19 23:05 - 00000000 ____D C:\Program Files\SoftEther VPN Client
2016-08-15 11:46 - 2016-02-08 22:37 - 00000000 ____D C:\ProgramData\VMware
2016-08-15 11:45 - 2016-02-28 12:00 - 00000000 ____D C:\ProgramData\NVIDIA
2016-08-15 11:42 - 2015-03-13 21:14 - 00014848 _____ C:\WINDOWS\system32\VfService.trf
2016-08-15 10:22 - 2016-05-05 22:43 - 00000000 ____D C:\Program Files (x86)\Virtual Router
2016-08-15 10:01 - 2016-06-16 18:05 - 00000000 ____D C:\Users\besrour\Desktop\Nouveau dossier
2016-08-15 10:01 - 2013-08-22 16:36 - 00000000 ___HD C:\Program Files\WindowsApps
2016-08-15 10:01 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\AppReadiness
2016-08-14 19:35 - 2015-10-15 12:10 - 00000000 ____D C:\Users\besrour\AppData\Roaming\vlc
2016-08-14 18:11 - 2015-12-23 08:39 - 00000000 ____D C:\Users\besrour\Documents\My Games
2016-08-14 17:06 - 2016-01-27 13:39 - 00000000 ____D C:\Program Files (x86)\SpeedFan
2016-08-14 15:41 - 2015-10-15 10:48 - 00000000 ____D C:\Users\besrour
2016-08-14 15:11 - 2015-10-15 16:18 - 00000000 ____D C:\Users\besrour\Downloads\Compressed
2016-08-14 14:24 - 2013-08-22 16:20 - 00000000 ____D C:\WINDOWS\CbsTemp
2016-08-14 14:21 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2016-08-14 14:17 - 2013-08-22 14:25 - 00262144 ___SH C:\WINDOWS\system32\config\BBI
2016-08-14 11:00 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\rescache
2016-08-13 19:28 - 2015-10-15 11:51 - 00000000 ____D C:\Users\besrour\Downloads\video
2016-08-13 16:12 - 2013-08-22 15:44 - 00417288 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2016-08-12 22:06 - 2015-10-18 17:11 - 00000000 ____D C:\WINDOWS\system32\appraiser
2016-08-12 22:06 - 2013-08-22 16:36 - 00000000 ___RD C:\WINDOWS\ToastData
2016-08-12 22:04 - 2015-10-18 16:40 - 00000000 ____D C:\WINDOWS\system32\MRT
2016-08-12 22:00 - 2015-10-18 16:40 - 147640136 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2016-08-12 21:02 - 2015-10-15 12:19 - 00002224 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-08-12 21:02 - 2015-10-15 12:19 - 00002212 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2016-08-12 20:36 - 2014-11-21 05:20 - 00000000 ____D C:\Program Files\Windows Journal
2016-08-09 09:46 - 2015-12-24 11:01 - 00000000 ____D C:\Users\besrour\AppData\Local\CrashDumps
2016-08-08 23:08 - 2016-04-04 23:16 - 00000000 ____D C:\Users\besrour\AppData\Roaming\IDM
2016-08-06 00:35 - 2016-01-04 18:34 - 00002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2016-08-05 12:19 - 2015-12-25 20:01 - 00000000 ____D C:\WINDOWS\Minidump
2016-08-04 12:51 - 2016-01-03 13:03 - 00000000 ____D C:\UsbFix
2016-08-04 07:59 - 2016-02-08 18:14 - 00192216 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2016-08-02 05:24 - 2015-10-15 12:10 - 00000898 _____ C:\Users\Public\Desktop\VLC media player.lnk
2016-08-02 05:19 - 2015-10-15 15:17 - 00000000 ____D C:\Users\besrour\AppData\Local\Adobe
2016-07-29 00:57 - 2015-10-15 12:17 - 00004068 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2016-07-29 00:57 - 2015-10-15 12:17 - 00003832 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2016-07-28 16:07 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\NDF
2016-07-28 15:39 - 2016-06-29 14:59 - 00000000 ____D C:\Program Files (x86)\Connectify
2016-07-28 15:39 - 2016-05-20 23:55 - 00000000 ____D C:\Users\besrour\AppData\Roaming\uTorrent
2016-07-25 10:59 - 2015-03-13 20:48 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2016-07-16 17:09 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\SysWOW64\Macromed
2016-07-16 17:09 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\Macromed

==================== Fichiers à la racine de certains dossiers =======

2016-05-09 21:32 - 2016-05-09 21:34 - 0000600 _____ () C:\Users\besrour\AppData\Roaming\winscp.rnd
2016-02-12 20:16 - 2016-02-12 20:17 - 0003584 _____ () C:\Users\besrour\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2016-02-02 22:53 - 2016-05-09 21:39 - 0000600 _____ () C:\Users\besrour\AppData\Local\PUTTY.RND
2015-10-15 11:56 - 2016-06-07 08:12 - 0007600 _____ () C:\Users\besrour\AppData\Local\Resmon.ResmonCfg
2015-03-13 20:57 - 2015-03-13 20:57 - 0000000 ____H () C:\ProgramData\DP45977C.lfl

Certains de taille zéro octet fichiers/dossiers:
==========================
C:\Windows\SysWOW64\nsprs.dll
C:\Windows\SysWOW64\serauth1.dll
C:\Windows\SysWOW64\serauth2.dll
C:\Windows\SysWOW64\ssprs.dll

==================== Bamital & volsnap =================

(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)

C:\WINDOWS\system32\winlogon.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\wininit.exe => Le fichier est signé numériquement
C:\WINDOWS\explorer.exe => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\explorer.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\svchost.exe => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\svchost.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\services.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\User32.dll => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\User32.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\userinit.exe => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\userinit.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\rpcss.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\dnsapi.dll => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\dnsapi.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\Drivers\volsnap.sys => Le fichier est signé numériquement


LastRegBack: 2016-08-15 12:27

==================== Fin de FRST.txt ============================

Publicité


Signaler le contenu de ce document

Publicité