Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x86) Version: 03-05-2017 01
Exécuté par kapro (administrateur) sur KAPRO-PC (05-05-2017 01:03:08)
Exécuté depuis C:\Users\kapro\Desktop
Profils chargés: kapro (Profils disponibles: kapro)
Platform: Microsoft Windows 7 Édition Intégrale (X86) Langue: Français (France)
Internet Explorer Version 8 (Navigateur par défaut: Chrome)
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtHDVBg.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtHDVBg.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\afwServ.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Tonec Inc.) C:\Program Files\Internet Download Manager\IDMan.exe
(Smadsoft) C:\Program Files\SMADAV\SMΔRTP.exe
(Andrea Electronics Corporation) C:\Program Files\Realtek\Audio\HDA\AERTSrv.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Tonec Inc.) C:\Program Files\Internet Download Manager\IEMonitor.exe
(Smadav Software) C:\Program Files\SMADAV\SmadavProtect32.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(IObit) C:\Program Files\IObit\IObit Uninstaller\UninstallMonitor.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\wbem\WMIC.exe
==================== Registre (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI.exe [8156672 2017-04-27] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg] => C:\Program Files\Realtek\Audio\HDA\RtHDVBg.exe [1070592 2017-04-27] (Realtek Semiconductor)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [213824 2017-05-03] (AVAST Software)
HKLM\...\Run: [Malwarebytes TrayApp] => C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\mbamtray.exe [2780112 2017-01-20] (Malwarebytes)
HKLM\...\Run: [SMΔRT-Protection] => C:\Program Files\Smadav\SMΔRTP.exe [1781760 2017-04-13] (Smadsoft)
HKU\S-1-5-21-365999879-2110489254-2640571219-1000\...\Run: [IDMan] => C:\Program Files\Internet Download Manager\IDMan.exe [4014136 2017-04-26] (Tonec Inc.)
HKU\S-1-5-21-365999879-2110489254-2640571219-1000\...\Policies\Explorer: [DisallowRun] 1
HKU\S-1-5-21-365999879-2110489254-2640571219-1000\...\Policies\Explorer\DisallowRun: [1] Mshta.exe
HKU\S-1-5-21-365999879-2110489254-2640571219-1000\...\Policies\Explorer\DisallowRun: [2] powershell.exe
HKU\S-1-5-21-365999879-2110489254-2640571219-1000\...\Policies\Explorer\DisallowRun: [3] bitsadmin.exe
ShellIconOverlayIdentifiers: [ IDM Shell Extension] -> {CDC95B92-E27C-4745-A8C5-64A52A78855D} => C:\Program Files\Internet Download Manager\IDMShellExt.dll [2015-08-14] (Tonec Inc.)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2017-05-03] (AVAST Software)
GroupPolicy: Restriction - Chrome <======= ATTENTION
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Hosts: Il y a plus d'un élément dans hosts. Voir la section Hosts de Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.4.1
Tcpip\..\Interfaces\{B80980AD-55B3-4613-815A-A3213A459859}: [DhcpNameServer] 192.168.4.1
Internet Explorer:
==================
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\S-1-5-21-365999879-2110489254-2640571219-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/ar-eg/?ocid=iehp
URLSearchHook: [S-1-5-21-365999879-2110489254-2640571219-1000] ATTENTION => URLSearchHook par défaut est absent
SearchScopes: HKLM -> DefaultScope la valeur est absente
BHO: IDM integration (IDMIEHlprObj Class) -> {0055C089-8582-441B-A0BF-17B458C2A3A8} -> C:\Program Files\Internet Download Manager\IDMIECC.dll [2016-12-10] (Internet Download Manager, Tonec Inc.)
BHO: ExplorerWnd Helper -> {10921475-03CE-4E04-90CE-E2E7EF20C814} -> C:\Program Files\IObit\IObit Uninstaller\UninstallExplorer.dll [2015-12-23] (IObit)
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office15\OCHelper.dll [2015-02-10] (Microsoft Corporation)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2017-04-27] (AVAST Software)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office15\URLREDIR.DLL [2014-01-23] (Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL [2015-01-21] (Microsoft Corporation)
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL [2015-02-17] (Microsoft Corporation)
FireFox:
========
FF HKU\S-1-5-21-365999879-2110489254-2640571219-1000\...\SeaMonkey\Extensions: [mozilla_cc@internetdownloadmanager.com] - C:\Users\kapro\AppData\Roaming\IDM\idmmzcc5
FF Extension: (IDM CC) - C:\Users\kapro\AppData\Roaming\IDM\idmmzcc5 [2017-04-27] [non signé]
FF HKU\S-1-5-21-365999879-2110489254-2640571219-1000\...\SeaMonkey\Extensions: [mozilla_cc2@internetdownloadmanager.com] - C:\Program Files\Internet Download Manager\idmmzcc2.xpi
FF Extension: (IDM integration) - C:\Program Files\Internet Download Manager\idmmzcc2.xpi [2017-01-26]
FF Plugin: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll [2017-03-06] (Tracker Software Products (Canada) Ltd.)
FF Plugin: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2015-02-10] (Microsoft Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50906.0\npctrl.dll [2017-03-09] ( Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\MICROS~1\Office15\NPSPWRAP.DLL [2014-01-23] (Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-27] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-27] (Google Inc.)
FF Plugin: @tracker-software.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll [2017-03-06] (Tracker Software Products (Canada) Ltd.)
FF Plugin: @videolan.org/vlc,version=2.2.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin HKU\S-1-5-21-365999879-2110489254-2640571219-1000: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll [2017-03-06] (Tracker Software Products (Canada) Ltd.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npMeetingJoinPluginOC.dll [2015-02-10] (Microsoft Corporation)
Chrome:
=======
CHR DefaultProfile: ChromeDefaultData
CHR StartupUrls: ChromeDefaultData -> "hxxp://www.mystartsearch.com/?type=hp&ts=1438715914&z=21e223b3f0c97db3c281da1g7zccaefozzjcktmlma&from=cmi&uid=TOSHIBAXMQ01ABF050_Z31KCQB2TXXZ31KCQB2T","hxxp://www.oursurfing.com/?type=hp&ts=1443048084&z=8ad267e782ddbb792e04c84gbz8zbc1edz2bbe4b2z&from=smt&uid=toshibaxmq01abf050_z31kcqb2txxz31kcqb2t","hxxp://www.initialsite123.com/?z=215701f39acf70f58f7d47cg1zctfc8o7b9z8mbmam&from=icb&uid=WDCXWD3200BEKT-60V5T1_WD-WXD1A400627406274&type=hp"
CHR Profile: C:\Users\kapro\AppData\Local\Google\Chrome\User Data\ChromeDefaultData [2017-05-05] <==== ATTENTION
CHR Extension: (Google Slides) - C:\Users\kapro\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-04-27]
CHR Extension: (Google Docs) - C:\Users\kapro\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\aohghmighlieiainnegkcijnfilokake [2017-04-27]
CHR Extension: (Google Drive) - C:\Users\kapro\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-04-27]
CHR Extension: (YouTube) - C:\Users\kapro\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-04-27]
CHR Extension: (Avast SafePrice) - C:\Users\kapro\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2017-04-28]
CHR Extension: (Google Sheets) - C:\Users\kapro\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-04-27]
CHR Extension: (Trigger Warnings on Campus) - C:\Users\kapro\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\gcopknacnjblbkpnjmnmahlgkeinadak [2017-04-27]
CHR Extension: (Google Docs hors connexion) - C:\Users\kapro\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-04-27]
CHR Extension: (AdBlock) - C:\Users\kapro\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2017-04-27]
CHR Extension: (IDM Integration Module) - C:\Users\kapro\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\ngpampappnmepgilojfohadhhmbhlaek [2017-04-27]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\kapro\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-04-27]
CHR Extension: (Gmail) - C:\Users\kapro\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-04-27]
CHR Extension: (Chrome Media Router) - C:\Users\kapro\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-04-27]
CHR HKLM\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files\Internet Download Manager\IDMGCExt.crx [2017-04-26]
==================== Services (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [5732136 2017-05-03] (AVAST Software s.r.o.)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [263304 2017-05-03] (AVAST Software)
R2 avast! Firewall; C:\Program Files\AVAST Software\Avast\afwServ.exe [310496 2017-05-03] (AVAST Software)
S3 BITCOMET_HELPER_SERVICE; C:\Program Files\BitComet\tools\BitCometService.exe [1296728 2013-11-29] (www.BitComet.com)
S2 LiveUpdateSvc; C:\Program Files\IObit\LiveUpdate\LiveUpdate.exe [2960672 2016-05-27] (IObit)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [3303888 2017-01-20] (Malwarebytes)
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService.exe [276992 2017-04-27] (Realtek Semiconductor)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2009-07-14] (Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ======================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R1 aswbidsdriver; C:\Windows\system32\drivers\aswbidsdriverx.sys [258288 2017-05-03] (AVAST Software s.r.o.)
R0 aswbidsh; C:\Windows\system32\drivers\aswbidshx.sys [148696 2017-05-03] (AVAST Software s.r.o.)
R0 aswblog; C:\Windows\system32\drivers\aswblogx.sys [268016 2017-05-03] (AVAST Software s.r.o.)
R0 aswbuniv; C:\Windows\system32\drivers\aswbunivx.sys [41664 2017-05-03] (AVAST Software s.r.o.)
S3 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [34136 2017-05-03] (AVAST Software)
R1 aswKbd; C:\Windows\system32\drivers\aswKbd.sys [31064 2017-05-03] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [107928 2017-05-03] (AVAST Software)
R3 aswNetNd6; C:\Windows\System32\DRIVERS\aswNetNd6.sys [27896 2017-04-28] (AVAST Software)
R1 aswNetSec; C:\Windows\system32\drivers\aswNetSec.sys [391048 2017-05-03] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [90336 2017-05-03] (AVAST Software)
R0 aswRvrt; C:\Windows\system32\drivers\aswRvrt.sys [62152 2017-05-03] (AVAST Software)
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [764576 2017-05-03] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [482608 2017-05-03] (AVAST Software)
S2 aswStm; C:\Windows\system32\drivers\aswStm.sys [114640 2017-05-03] (AVAST Software)
R0 aswVmm; C:\Windows\system32\drivers\aswVmm.sys [279800 2017-05-03] (AVAST Software)
R3 Btcsrusb; C:\Windows\System32\Drivers\btcusb.sys [47504 2017-04-27] (IVT Corporation.)
R1 ESProtectionDriver; C:\Windows\system32\drivers\mbae.sys [59904 2017-03-22] ()
R1 HWiNFO32; C:\Windows\system32\drivers\HWiNFO32.SYS [23840 2017-04-27] (REALiX(tm))
R0 iaStorA; C:\Windows\System32\DRIVERS\iaStorA.sys [527344 2013-02-04] (Intel Corporation)
R0 iaStorF; C:\Windows\System32\DRIVERS\iaStorF.sys [26096 2013-02-04] (Intel Corporation)
R3 IntcDAud; C:\Windows\System32\DRIVERS\IntcDAud.sys [270336 2011-08-23] (Intel(R) Corporation) [Fichier non signé]
R0 iusb3hcs; C:\Windows\System32\DRIVERS\iusb3hcs.sys [16440 2012-12-04] (Intel Corporation)
R2 MBAMChameleon; C:\Windows\system32\drivers\MBAMChameleon.sys [161216 2017-05-02] (Malwarebytes)
R3 MBAMFarflt; C:\Windows\system32\drivers\farflt.sys [96704 2017-05-05] (Malwarebytes)
R3 MBAMProtection; C:\Windows\system32\drivers\mbam.sys [39360 2017-05-05] (Malwarebytes)
R0 MBAMSwissArmy; C:\Windows\System32\drivers\MBAMSwissArmy.sys [220088 2017-05-05] (Malwarebytes)
R3 MBAMWebProtection; C:\Windows\system32\drivers\mwac.sys [64288 2017-05-05] (Malwarebytes)
R1 ndisrd; C:\Windows\System32\DRIVERS\ndisrd.sys [37408 2014-08-14] (NT Kernel Resources)
R3 SmbDrvI; C:\Windows\System32\DRIVERS\Smb_driver_Intel.sys [26792 2017-04-27] (Synaptics Incorporated)
R3 vpcbus; C:\Windows\System32\DRIVERS\vpchbus.sys [165376 2009-08-16] (Microsoft Corporation)
R1 vpcnfltr; C:\Windows\System32\DRIVERS\vpcnfltr.sys [55040 2009-08-16] (Microsoft Corporation)
R3 vpcusb; C:\Windows\System32\DRIVERS\vpcusb.sys [78336 2009-08-16] (Microsoft Corporation)
R1 vpcvmm; C:\Windows\System32\drivers\vpcvmm.sys [293904 2009-08-16] (Microsoft Corporation)
U2 ERSvc; pas de ImagePath
U2 IAStorDataMgrsvc; pas de ImagePath
U2 NIHardwareService; pas de ImagePath
U2 NVSvc; pas de ImagePath
U2 srService; pas de ImagePath
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois - Créés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2017-05-05 01:03 - 2017-05-05 01:03 - 00016886 _____ C:\Users\kapro\Desktop\FRST.txt
2017-05-05 01:02 - 2017-05-05 01:03 - 00000000 ____D C:\FRST
2017-05-05 00:59 - 2017-05-05 00:59 - 01769472 _____ (Farbar) C:\Users\kapro\Desktop\FRST.exe
2017-05-05 00:57 - 2017-05-05 00:57 - 00000000 ____D C:\ProgramData\SWCUTemp
2017-05-04 23:57 - 2017-05-05 00:58 - 00000000 ____D C:\Program Files\Baidu WiFiHotspot
2017-05-04 23:57 - 2017-05-04 23:57 - 00001105 _____ C:\Users\kapro\Desktop\Baidu WiFi Hotspot.lnk
2017-05-04 23:57 - 2017-05-04 23:57 - 00000000 ____D C:\Users\Public\Documents\PC Faster
2017-05-04 23:57 - 2017-05-04 23:57 - 00000000 ____D C:\Users\kapro\AppData\Roaming\Baidu
2017-05-04 23:57 - 2017-05-04 23:57 - 00000000 ____D C:\ProgramData\PC Faster
2017-05-04 23:57 - 2017-05-04 23:57 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Baidu WiFi Hotspot
2017-05-04 23:05 - 2017-05-04 23:05 - 00001312 _____ C:\Users\kapro\Desktop\ZHPFix[R2].txt
2017-05-04 18:59 - 2017-05-04 18:59 - 02722304 _____ C:\Users\kapro\ZHPDiag3.exe
2017-05-04 16:48 - 2017-05-04 16:48 - 00010013 ____R C:\Users\kapro\Desktop\Pre_Scan_04_05_2017_16_48_50.txt
2017-05-04 16:48 - 2017-05-04 16:48 - 00010013 ____R C:\Pre_Scan_04_05_2017_16_48_50.txt
2017-05-04 16:48 - 2017-05-04 16:48 - 00000970 _____ C:\Users\kapro\Desktop\Internet Explorer.lnk
2017-05-04 16:28 - 2017-05-04 16:52 - 00000000 ____D C:\Pre_Scan
2017-05-04 16:28 - 2017-05-04 16:28 - 00001526 _____ C:\Users\kapro\Desktop\Pre_Scan_Restore.lnk
2017-05-04 16:28 - 2017-05-04 16:28 - 00001136 _____ C:\Users\kapro\Desktop\Pre_Scan_Donate.lnk
2017-05-04 16:25 - 2017-05-04 16:25 - 03513768 _____ (SosVirus) C:\Users\kapro\Desktop\Pre_Scan.exe
2017-05-04 15:48 - 2017-05-04 15:51 - 00000000 ____D C:\Program Files\SMADAV
2017-05-04 15:48 - 2017-05-04 15:49 - 00000000 ___SD C:\[Smad-Cage]
2017-05-04 15:48 - 2017-05-04 15:48 - 00001022 _____ C:\Users\Public\Desktop\SMADΔV.lnk
2017-05-04 15:48 - 2017-05-04 15:48 - 00000000 ____D C:\Users\kapro\AppData\Roaming\Smadav
2017-05-04 15:48 - 2017-05-04 15:48 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SMADAV Antivirus
2017-05-04 14:49 - 2017-05-04 23:04 - 00001312 _____ C:\Users\kapro\Desktop\ZHPFixReport.txt
2017-05-04 14:47 - 2017-05-04 14:48 - 00000000 ____D C:\Program Files\ZHPFix
2017-05-04 14:47 - 2017-05-04 14:47 - 00001799 _____ C:\Users\Public\Desktop\ZHPFix.lnk
2017-05-04 14:47 - 2017-05-04 14:47 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ZHP
2017-05-04 14:43 - 2017-05-04 14:43 - 03521617 _____ (Nicolas Coolman ) C:\Users\kapro\Desktop\ZHPFix.exe
2017-05-03 20:08 - 2017-05-03 20:08 - 00000000 ___SD C:\Users\kapro\AppData\LocalLow\Temp
2017-05-03 18:03 - 2017-05-03 18:03 - 00330768 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2017-05-03 01:06 - 2017-05-03 01:06 - 00000000 ____D C:\Users\Default\AppData\Local\Microsoft Help
2017-05-03 01:06 - 2017-05-03 01:06 - 00000000 ____D C:\Users\Default User\AppData\Local\Microsoft Help
2017-05-03 01:01 - 2017-05-03 01:01 - 00000000 ____D C:\Program Files\Mozilla Firefox
2017-05-02 23:34 - 2017-04-30 05:45 - 271219744 _____ C:\Users\kapro\Desktop\One Piece - 786 [720P].mp4
2017-05-02 23:33 - 2017-05-01 21:06 - 295951505 _____ C:\Users\kapro\Desktop\DBS - 88 [720p]v2.MP4
2017-05-02 19:01 - 2017-05-02 19:01 - 00767024 _____ C:\Users\kapro\Desktop\rapp scan.txt
2017-05-02 18:37 - 2017-05-05 00:44 - 00096704 _____ (Malwarebytes) C:\Windows\system32\Drivers\farflt.sys
2017-05-02 18:37 - 2017-05-05 00:44 - 00064288 _____ (Malwarebytes) C:\Windows\system32\Drivers\mwac.sys
2017-05-02 18:37 - 2017-05-05 00:44 - 00039360 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys
2017-05-02 18:37 - 2017-05-02 18:37 - 00161216 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMChameleon.sys
2017-05-02 18:36 - 2017-05-05 00:44 - 00220088 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2017-05-02 18:36 - 2017-05-02 18:36 - 00002024 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2017-05-02 18:36 - 2017-05-02 18:36 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2017-05-02 18:36 - 2017-05-02 18:36 - 00000000 ____D C:\ProgramData\Malwarebytes
2017-05-02 18:36 - 2017-05-02 18:36 - 00000000 ____D C:\Program Files\Malwarebytes
2017-05-02 18:36 - 2017-03-22 11:02 - 00059904 _____ C:\Windows\system32\Drivers\mbae.sys
2017-05-02 18:35 - 2017-05-02 18:35 - 60107896 _____ (Malwarebytes ) C:\Users\kapro\Desktop\mb3-setup-consumer-3.0.6.1469-10103.exe
2017-05-02 18:22 - 2017-05-04 23:45 - 00000000 ____D C:\AdwCleaner
2017-05-02 18:21 - 2017-05-02 18:22 - 04102600 _____ C:\Users\kapro\Desktop\adwcleaner_6.046.exe
2017-05-02 18:18 - 2017-05-02 18:19 - 00003966 _____ C:\Users\kapro\Desktop\Rkill.txt
2017-05-02 18:15 - 2017-05-02 18:15 - 02030536 _____ (Bleeping Computer, LLC) C:\Users\kapro\Desktop\rkill.com
2017-05-02 16:36 - 2017-05-04 23:56 - 00095572 _____ C:\Users\kapro\Desktop\ZHPDiag.txt
2017-05-02 16:32 - 2017-05-04 23:55 - 00000000 ____D C:\Users\kapro\AppData\Roaming\ZHP
2017-05-02 16:32 - 2017-05-04 23:55 - 00000000 ____D C:\Users\kapro\AppData\Local\ZHP
2017-05-02 16:32 - 2017-05-04 18:59 - 00000625 _____ C:\Users\kapro\Desktop\ZHPDiag.lnk
2017-05-02 16:09 - 2017-05-02 16:31 - 02721280 _____ C:\Users\kapro\Desktop\ZHPDiag3.exe
2017-04-30 02:26 - 2017-04-30 02:34 - 00884413 _____ C:\Users\kapro\Downloads\Non confirmé 241778.crdownload
2017-04-30 01:49 - 2017-04-30 01:49 - 00000000 ____D C:\Users\kapro\Documents\KONAMI
2017-04-30 01:40 - 2017-04-30 01:40 - 00000000 ____D C:\ProgramData\KONAMI
2017-04-30 01:40 - 2017-04-30 01:40 - 00000000 ____D C:\Program Files\KONAMI
2017-04-30 01:26 - 2017-04-30 01:37 - 00000000 ____D C:\Users\kapro\Desktop\pes 2010 .mohdz
2017-04-30 00:56 - 2017-04-30 00:58 - 28119144 _____ C:\Users\kapro\Downloads\pes2017100mod-momen elwerdany.apk
2017-04-30 00:02 - 2017-04-30 00:02 - 00011149 _____ C:\Users\kapro\Downloads\Connectify_Hotspot_PRO_2017_With_Crack.exe.htm
2017-04-29 23:24 - 2017-04-29 23:28 - 00000000 ____D C:\Users\kapro\Desktop\Connectify Hotspot Pro & Dispatch Pro 8.0.0.30686 Incl. Crack [ATOM]
2017-04-29 23:03 - 2017-04-20 21:33 - 05158352 _____ (Baidu, Inc.) C:\Users\kapro\Desktop\WiFiHotspot_Setup_GL.exe
2017-04-29 22:56 - 2017-04-29 22:56 - 00172032 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2017-04-29 22:55 - 2017-04-29 22:55 - 00716800 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2017-04-29 22:55 - 2017-04-29 22:55 - 00571904 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2017-04-29 22:55 - 2017-04-29 22:55 - 00427520 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2017-04-29 22:55 - 2017-04-29 22:55 - 00310784 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys
2017-04-29 22:55 - 2017-04-29 22:55 - 00307200 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2017-04-29 22:55 - 2017-04-29 22:55 - 00194488 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fvevol.sys
2017-04-29 22:55 - 2017-04-29 22:55 - 00113664 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2017-04-29 22:54 - 2017-04-29 22:54 - 00314368 _____ (Microsoft Corporation) C:\Windows\system32\webio.dll
2017-04-29 22:54 - 2017-04-29 22:54 - 00221696 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2017-04-29 22:54 - 2017-04-29 22:54 - 00132608 _____ (Microsoft Corporation) C:\Windows\system32\cabview.dll
2017-04-29 22:54 - 2017-04-29 22:54 - 00123392 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2017-04-29 22:54 - 2017-04-29 22:54 - 00095744 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2017-04-29 22:53 - 2017-04-29 22:53 - 00224256 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2017-04-29 22:53 - 2017-04-29 22:53 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\sffp_sd.sys
2017-04-29 19:11 - 2009-08-16 17:30 - 01285208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys.backup
2017-04-29 18:47 - 2017-04-29 18:47 - 00095108 _____ C:\Windows\Uninstal.exe
2017-04-29 18:47 - 2017-04-29 18:47 - 00001985 _____ C:\Users\Public\Desktop\My 7 Optimizer.lnk
2017-04-29 18:47 - 2017-04-29 18:47 - 00000000 ____D C:\Windows\My 7 Add-On
2017-04-29 18:47 - 2017-04-29 18:47 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\My 7 Optimizer
2017-04-29 16:25 - 2017-04-29 16:25 - 00000000 ____D C:\ProgramData\Package Cache
2017-04-29 16:17 - 2017-04-29 16:17 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2017-04-29 16:17 - 2017-04-29 16:17 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2017-04-29 16:13 - 2017-04-29 16:13 - 00000000 ____D C:\Users\kapro\AppData\Local\ElevatedDiagnostics
2017-04-29 00:16 - 2017-04-29 00:16 - 00000000 _____ C:\Windows\system32\Drivers\Msft_User_WpdFs_01_09_00.Wdf
2017-04-28 23:56 - 2017-04-28 23:56 - 00002007 _____ C:\Users\Public\Desktop\Avast Premium.lnk
2017-04-28 23:56 - 2017-04-28 23:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software
2017-04-28 23:49 - 2017-05-03 18:02 - 00391048 _____ (AVAST Software) C:\Windows\system32\Drivers\aswNetSec.sys
2017-04-28 23:48 - 2017-04-28 23:48 - 00027896 _____ (AVAST Software) C:\Windows\system32\Drivers\aswNetNd6.sys
2017-04-28 02:02 - 2017-04-29 23:00 - 00000000 ____D C:\Users\kapro\AppData\LocalLow\Mozilla
2017-04-28 02:02 - 2017-04-28 02:02 - 00000000 ____D C:\ProgramData\Apple
2017-04-28 02:01 - 2017-04-28 02:01 - 00001962 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2017-04-28 02:01 - 2017-04-28 02:01 - 00001892 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2017-04-28 02:00 - 2017-04-29 00:04 - 00000000 ____D C:\Windows\psgo
2017-04-28 02:00 - 2017-04-28 02:00 - 00000000 ____D C:\Program Files\MIO
2017-04-28 02:00 - 2017-04-28 02:00 - 00000000 _____ C:\Windows\system32\44
2017-04-28 02:00 - 2017-04-28 02:00 - 00000000 _____ C:\Windows\system32\11
2017-04-28 01:59 - 2017-04-29 01:46 - 00000000 ____D C:\Program Files\MK
2017-04-28 01:59 - 2017-04-28 01:59 - 00000000 ____D C:\Program Files\Codwardgruqse
2017-04-27 22:58 - 2017-05-02 23:35 - 00000000 ____D C:\Users\kapro\AppData\Roaming\MPC-HC
2017-04-27 22:38 - 2017-04-27 22:38 - 00294115 _____ C:\Users\kapro\Downloads\ALL CHANNELS 28-04-2017.m3u
2017-04-27 22:31 - 2017-04-27 22:31 - 00059577 _____ C:\Users\kapro\Downloads\iptv الروعة مجانا .m3u
2017-04-27 22:09 - 2017-04-27 22:09 - 00000000 _____ C:\Windows\system32\Drivers\Msft_User_WpdMtpDr_01_09_00.Wdf
2017-04-27 18:02 - 2017-04-27 18:02 - 00000000 ____D C:\Windows\system32\EventProviders
2017-04-27 16:48 - 2017-04-27 16:56 - 00000000 ____D C:\Users\kapro\Desktop\EmbratoriaG6.5.2
2017-04-27 15:57 - 2017-04-27 15:57 - 00001175 _____ C:\Users\Public\Desktop\PDF-Viewer.lnk
2017-04-27 15:57 - 2017-04-27 15:57 - 00000000 ____D C:\ProgramData\Tracker Software
2017-04-27 15:57 - 2017-04-27 15:57 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDF-XChange PDF Viewer
2017-04-27 15:57 - 2017-04-27 15:57 - 00000000 ____D C:\Program Files\Tracker Software
2017-04-27 14:40 - 2017-04-27 14:55 - 00000000 ____D C:\Users\kapro\AppData\Local\Adobe
2017-04-27 14:25 - 2017-04-27 14:31 - 00003612 _____ C:\Users\Public\Desktop\R@1n.txt
2017-04-27 14:25 - 2017-04-27 14:25 - 00003584 _____ C:\Windows\KMS-R@1nHook.dll
2017-04-27 14:20 - 2017-05-03 01:31 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
2017-04-27 14:19 - 2017-04-27 14:19 - 00000000 ____D C:\Windows\PCHEALTH
2017-04-27 14:19 - 2017-04-27 14:19 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2017-04-27 14:19 - 2017-04-27 14:19 - 00000000 ____D C:\Program Files\Microsoft SQL Server
2017-04-27 14:19 - 2017-04-27 14:19 - 00000000 ____D C:\Program Files\Common Files\DESIGNER
2017-04-27 14:17 - 2017-04-27 14:19 - 00000000 ____D C:\Program Files\Microsoft Office
2017-04-27 14:17 - 2017-04-27 14:17 - 00000000 ____D C:\Users\kapro\AppData\Local\Microsoft Help
2017-04-27 14:17 - 2017-04-27 14:17 - 00000000 ____D C:\Program Files\Microsoft Analysis Services
2017-04-27 14:16 - 2017-04-27 14:16 - 00000000 __RHD C:\MSOCache
2017-04-27 14:07 - 2009-11-25 11:47 - 01130824 _____ (Microsoft Corporation) C:\Windows\system32\dfshim.dll
2017-04-27 14:07 - 2009-11-25 11:47 - 00297808 _____ (Microsoft Corporation) C:\Windows\system32\mscoree.dll
2017-04-27 14:07 - 2009-11-25 11:47 - 00295264 _____ (Microsoft Corporation) C:\Windows\system32\PresentationHost.exe
2017-04-27 14:07 - 2009-11-25 11:47 - 00099176 _____ (Microsoft Corporation) C:\Windows\system32\PresentationHostProxy.dll
2017-04-27 14:07 - 2009-11-25 11:47 - 00049472 _____ (Microsoft Corporation) C:\Windows\system32\netfxperf.dll
2017-04-27 13:23 - 2017-04-27 13:23 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack
2017-04-27 13:23 - 2017-04-27 13:23 - 00000000 ____D C:\Program Files\K-Lite Codec Pack
2017-04-27 13:23 - 2016-05-08 11:27 - 03613696 _____ (x264vfw project) C:\Windows\system32\x264vfw.dll
2017-04-27 13:23 - 2015-12-18 11:00 - 00674816 _____ C:\Windows\system32\xvidcore.dll
2017-04-27 13:23 - 2015-12-18 11:00 - 00282112 _____ C:\Windows\system32\xvidvfw.dll
2017-04-27 13:23 - 2015-10-24 18:00 - 00112128 _____ C:\Windows\system32\ff_vfw.dll
2017-04-27 13:23 - 2012-07-21 12:54 - 00122880 _____ (fccHandler) C:\Windows\system32\ac3acm.acm
2017-04-27 13:23 - 2011-12-07 19:32 - 00216064 _____ ( ) C:\Windows\system32\lagarith.dll
2017-04-27 13:22 - 2017-04-28 02:07 - 00000000 ____D C:\Users\kapro\AppData\Roaming\vlc
2017-04-27 13:22 - 2017-04-27 13:22 - 00001028 _____ C:\Users\Public\Desktop\VLC media player.lnk
2017-04-27 13:22 - 2017-04-27 13:22 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2017-04-27 13:22 - 2017-04-27 13:22 - 00000000 ____D C:\Program Files\VideoLAN
2017-04-27 13:22 - 2017-04-14 10:17 - 44819912 _____ (KLCP ) C:\Users\kapro\Desktop\K-Lite_Codec_Pack_1310_Mega.exe
2017-04-27 13:06 - 2017-04-27 13:06 - 00000000 ____D C:\Users\kapro\Desktop\BaiduWifi
2017-04-27 13:05 - 2017-04-29 17:14 - 00000438 _____ C:\Windows\system32\Drivers\etc\hosts.ics
2017-04-27 13:04 - 2017-04-27 13:04 - 00000000 ____D C:\Users\Public\Documents\Baidu
2017-04-27 13:04 - 2014-08-14 11:18 - 00037408 _____ (NT Kernel Resources) C:\Windows\system32\Drivers\ndisrd.sys
2017-04-27 12:59 - 2017-05-05 00:59 - 00000000 ____D C:\Users\kapro\AppData\Roaming\IDM
2017-04-27 12:59 - 2017-05-05 00:42 - 00000000 ____D C:\Users\kapro\AppData\Roaming\DMCache
2017-04-27 12:59 - 2017-05-04 16:07 - 00000000 ____D C:\Users\kapro\Downloads\Video
2017-04-27 12:59 - 2017-04-30 01:25 - 00000000 ____D C:\Users\kapro\Downloads\Compressed
2017-04-27 12:59 - 2017-04-27 13:00 - 00000000 ____D C:\Program Files\Internet Download Manager
2017-04-27 12:59 - 2017-04-27 12:59 - 00000983 _____ C:\Users\kapro\Desktop\Internet Download Manager.lnk
2017-04-27 12:59 - 2017-04-27 12:59 - 00000000 ____D C:\Users\kapro\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Download Manager
2017-04-27 12:59 - 2017-04-27 12:59 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Internet Download Manager
2017-04-27 12:59 - 2017-04-27 12:59 - 00000000 ____D C:\ProgramData\IDM
2017-04-27 12:50 - 2017-04-27 12:50 - 00000000 ____D C:\$AV_ASW
2017-04-27 12:49 - 2017-04-27 12:49 - 00001200 _____ C:\Users\Public\Desktop\Avast SafeZone Browser.lnk
2017-04-27 12:49 - 2017-04-27 12:49 - 00001200 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast SafeZone Browser.lnk
2017-04-27 12:49 - 2017-04-27 12:49 - 00000000 ____D C:\Users\kapro\AppData\Roaming\AVAST Software
2017-04-27 12:49 - 2017-04-27 12:49 - 00000000 ____D C:\Users\kapro\AppData\Local\CEF
2017-04-27 12:48 - 2017-05-03 18:03 - 00764576 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2017-04-27 12:48 - 2017-05-03 18:03 - 00482608 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2017-04-27 12:48 - 2017-05-03 18:03 - 00279800 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys
2017-04-27 12:48 - 2017-05-03 18:03 - 00114640 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2017-04-27 12:48 - 2017-05-03 18:03 - 00107928 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2017-04-27 12:48 - 2017-05-03 18:03 - 00090336 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2017-04-27 12:48 - 2017-05-03 18:03 - 00062152 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys
2017-04-27 12:48 - 2017-05-03 18:03 - 00034136 _____ (AVAST Software) C:\Windows\system32\Drivers\aswHwid.sys
2017-04-27 12:48 - 2017-05-03 18:03 - 00031064 _____ (AVAST Software) C:\Windows\system32\Drivers\aswKbd.sys
2017-04-27 12:48 - 2017-05-03 18:02 - 00268016 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswblogx.sys
2017-04-27 12:48 - 2017-05-03 18:02 - 00258288 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswbidsdriverx.sys
2017-04-27 12:48 - 2017-05-03 18:02 - 00148696 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswbidshx.sys
2017-04-27 12:48 - 2017-05-03 18:02 - 00041664 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswbunivx.sys
2017-04-27 12:48 - 2017-04-27 12:48 - 00000000 ____D C:\Program Files\Common Files\AV
2017-04-27 12:48 - 2017-04-27 12:47 - 00764064 _____ (AVAST Software) C:\Windows\system32\Drivers\aswF874.tmp
2017-04-27 12:48 - 2017-04-27 12:47 - 00472760 _____ (AVAST Software) C:\Windows\system32\Drivers\aswFDD6.tmp
2017-04-27 12:48 - 2017-04-27 12:47 - 00279800 _____ (AVAST Software) C:\Windows\system32\Drivers\aswFEB1.tmp
2017-04-27 12:48 - 2017-04-27 12:47 - 00267528 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswF42D.tmp
2017-04-27 12:48 - 2017-04-27 12:47 - 00255184 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswF276.tmp
2017-04-27 12:48 - 2017-04-27 12:47 - 00148208 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswF352.tmp
2017-04-27 12:48 - 2017-04-27 12:47 - 00118800 _____ (AVAST Software) C:\Windows\system32\Drivers\asw67.tmp
2017-04-27 12:48 - 2017-04-27 12:47 - 00106904 _____ (AVAST Software) C:\Windows\system32\Drivers\aswFBB2.tmp
2017-04-27 12:48 - 2017-04-27 12:47 - 00090336 _____ (AVAST Software) C:\Windows\system32\Drivers\aswF98E.tmp
2017-04-27 12:48 - 2017-04-27 12:47 - 00062152 _____ (AVAST Software) C:\Windows\system32\Drivers\aswFC9D.tmp
2017-04-27 12:48 - 2017-04-27 12:47 - 00041176 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswF566.tmp
2017-04-27 12:48 - 2017-04-27 12:47 - 00034136 _____ (AVAST Software) C:\Windows\system32\Drivers\aswFAB7.tmp
2017-04-27 12:48 - 2017-04-27 12:47 - 00031064 _____ (AVAST Software) C:\Windows\system32\Drivers\aswF6DD.tmp
2017-04-27 12:47 - 2017-04-27 12:47 - 00921280 _____ (Microsoft Corporation) C:\Windows\ucrtbase.dll
2017-04-27 12:47 - 2017-04-27 12:47 - 00000000 ____D C:\Program Files\AVAST Software
2017-04-27 12:46 - 2017-04-27 12:52 - 00000000 ____D C:\ProgramData\AVAST Software
2017-04-27 12:41 - 2017-05-03 19:25 - 00000000 ____D C:\Users\kapro\Desktop\EmbratoriaG7
2017-04-27 12:40 - 2017-04-27 12:44 - 00000000 ____D C:\Users\kapro\AppData\Roaming\WinRAR
2017-04-27 12:39 - 2017-04-29 23:31 - 00000000 ____D C:\Users\kapro\AppData\Roaming\BitComet
2017-04-27 12:39 - 2017-04-27 12:39 - 00000969 _____ C:\Users\Public\Desktop\BitComet.lnk
2017-04-27 12:39 - 2017-04-27 12:39 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BitComet
2017-04-27 12:39 - 2017-04-27 12:39 - 00000000 ____D C:\Program Files\BitComet
2017-04-27 12:37 - 2017-04-27 12:37 - 00000000 ____D C:\Users\kapro\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2017-04-27 12:37 - 2017-04-27 12:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2017-04-27 12:37 - 2017-04-27 12:37 - 00000000 ____D C:\Program Files\WinRAR
2017-04-27 12:36 - 2017-04-27 12:36 - 01975544 _____ C:\Users\kapro\Downloads\wrar55b1.exe
2017-04-27 12:32 - 2017-04-27 12:32 - 00009300 _____ C:\Users\kapro\Downloads\Keys.rar
2017-04-27 12:29 - 2017-04-27 12:31 - 288918364 _____ C:\Users\kapro\Downloads\Avast.AV.17.3.2291.0.rar
2017-04-27 12:18 - 2017-04-27 12:18 - 00000000 ____D C:\Users\kapro\AppData\Roaming\Google
2017-04-27 12:12 - 2017-04-27 12:13 - 00000132 _____ C:\ProgramData\log.binb
2017-04-27 12:08 - 2017-04-27 12:08 - 00785920 _____ (Realtek ) C:\Windows\system32\Drivers\Rt86win7.sys
2017-04-27 12:08 - 2017-04-27 12:08 - 00085608 _____ (Realtek Semiconductor Corporation) C:\Windows\system32\RtNicProp32.dll
2017-04-27 12:07 - 2017-04-27 12:07 - 72520712 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoRes.dat
2017-04-27 12:07 - 2017-04-27 12:07 - 09124224 _____ C:\Windows\system32\Drivers\RTAIODAT.DAT
2017-04-27 12:07 - 2017-04-27 12:07 - 04298752 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHDA.sys
2017-04-27 12:07 - 2017-04-27 12:07 - 03173736 _____ (DTS, Inc.) C:\Windows\system32\slcnt32.dll
2017-04-27 12:07 - 2017-04-27 12:07 - 02946560 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTSndMgr.cpl
2017-04-27 12:07 - 2017-04-27 12:07 - 02904576 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkPgExt.dll
2017-04-27 12:07 - 2017-04-27 12:07 - 02830480 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RltkAPO.dll
2017-04-27 12:07 - 2017-04-27 12:07 - 02800320 _____ (DTS, Inc.) C:\Windows\system32\sltech32.dll
2017-04-27 12:07 - 2017-04-27 12:07 - 02558352 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApoApi.dll
2017-04-27 12:07 - 2017-04-27 12:07 - 02149376 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCoInstII.dll
2017-04-27 12:07 - 2017-04-27 12:07 - 01527752 _____ (Conexant Systems Inc.) C:\Windows\system32\CX32APO.dll
2017-04-27 12:07 - 2017-04-27 12:07 - 01451616 _____ (Conexant Systems Inc.) C:\Windows\system32\CX32Proxy.dll
2017-04-27 12:07 - 2017-04-27 12:07 - 01074048 _____ (Synopsys, Inc.) C:\Windows\system32\SRRPTR.dll
2017-04-27 12:07 - 2017-04-27 12:07 - 00911080 _____ (DTS, Inc.) C:\Windows\system32\sl3apo32.dll
2017-04-27 12:07 - 2017-04-27 12:07 - 00532888 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTACap.dll
2017-04-27 12:07 - 2017-04-27 12:07 - 00401040 _____ (Synopsys, Inc.) C:\Windows\system32\SRAPO.dll
2017-04-27 12:07 - 2017-04-27 12:07 - 00371808 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEP32A.dll
2017-04-27 12:07 - 2017-04-27 12:07 - 00370024 _____ (Conexant Systems, Inc.) C:\Windows\system32\Caf32APO2.dll
2017-04-27 12:07 - 2017-04-27 12:07 - 00357152 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSXT.dll
2017-04-27 12:07 - 2017-04-27 12:07 - 00341144 _____ (Synopsys, Inc.) C:\Windows\system32\SRCOM.dll
2017-04-27 12:07 - 2017-04-27 12:07 - 00307232 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DHT32.dll
2017-04-27 12:07 - 2017-04-27 12:07 - 00307232 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DAA32.dll
2017-04-27 12:07 - 2017-04-27 12:07 - 00232752 _____ (TODO:) C:\Windows\system32\slprp32.dll
2017-04-27 12:07 - 2017-04-27 12:07 - 00181224 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEED32A.dll
2017-04-27 12:07 - 2017-04-27 12:07 - 00150552 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSWOW.dll
2017-04-27 12:07 - 2017-04-27 12:07 - 00105648 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTARen.dll
2017-04-27 12:07 - 2017-04-27 12:07 - 00101328 _____ (Real Sound Lab SIA) C:\Windows\system32\CONEQMSAPOGUILibrary.dll
2017-04-27 12:07 - 2017-04-27 12:07 - 00098008 _____ (Conexant Systems, Inc.) C:\Windows\system32\Caf32api.dll
2017-04-27 12:07 - 2017-04-27 12:07 - 00088272 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEL32A.dll
2017-04-27 12:07 - 2017-04-27 12:07 - 00074376 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEG32A.dll
2017-04-27 12:07 - 2017-04-27 12:07 - 00022152 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCoLDR.dll
2017-04-27 12:07 - 2017-04-27 12:07 - 00005604 _____ C:\Windows\system32\cxapo.lncs
2017-04-27 12:07 - 2017-04-27 12:07 - 00000736 _____ C:\Windows\system32\cxapo.prop
2017-04-27 12:05 - 2017-04-27 12:05 - 01629040 _____ (Microsoft Corporation) C:\Windows\system32\WdfCoInstaller01011.dll
2017-04-27 12:05 - 2017-04-27 12:05 - 00132480 _____ (Intel Corporation) C:\Windows\system32\Drivers\Impcd.sys
2017-04-27 12:05 - 2017-04-27 12:05 - 00026792 _____ (Synaptics Incorporated) C:\Windows\system32\Drivers\Smb_driver_Intel.sys
2017-04-27 12:05 - 2017-04-27 12:05 - 00000000 ____H C:\Windows\system32\Drivers\MsftWdf_Kernel_01011_Coinstaller_Critical.Wdf
2017-04-27 12:05 - 2017-04-27 12:05 - 00000000 ____D C:\Program Files\Synaptics
2017-04-27 12:05 - 2017-04-27 12:05 - 00000000 _____ C:\Windows\system32\Drivers\Msft_Kernel_Smb_driver_Intel_01011.Wdf
2017-04-27 12:05 - 2012-07-26 05:39 - 00526952 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys
2017-04-27 12:05 - 2012-07-26 05:39 - 00047720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdfLdr.sys
2017-04-27 12:05 - 2012-07-26 04:46 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\Wdfres.dll
2017-04-27 12:05 - 2012-06-02 16:34 - 00000003 _____ C:\Windows\system32\Drivers\MsftWdf_Kernel_01011_Inbox_Critical.Wdf
2017-04-27 11:57 - 2017-04-27 11:57 - 07153400 _____ (Broadcom Corporation) C:\Windows\system32\Drivers\BCMWL6.SYS
2017-04-27 11:57 - 2017-04-27 11:57 - 03657728 _____ (Broadcom Corporation) C:\Windows\system32\bcmihvui.dll
2017-04-27 11:57 - 2017-04-27 11:57 - 00092504 _____ (Broadcom Corporation) C:\Windows\system32\bcmwlcoi.dll
2017-04-27 11:56 - 2017-04-27 11:57 - 04268032 _____ (Broadcom Corporation) C:\Windows\system32\bcmihvsrv.dll
2017-04-27 11:55 - 2017-04-27 11:55 - 00047504 _____ (IVT Corporation.) C:\Windows\system32\Drivers\btcusb.sys
2017-04-27 11:52 - 2017-04-29 22:49 - 36814848 _____ C:\Windows\system32\config\SOFTWARE.iobit
2017-04-27 11:52 - 2017-04-29 22:49 - 00241664 _____ C:\Windows\system32\config\DEFAULT.iobit
2017-04-27 11:52 - 2017-04-29 22:49 - 00028672 _____ C:\Windows\system32\config\SAM.iobit
2017-04-27 11:52 - 2017-04-29 22:49 - 00024576 _____ C:\Windows\system32\config\SECURITY.iobit
2017-04-27 11:52 - 2017-04-27 11:52 - 19210240 _____ C:\Windows\system32\config\COMPONENTS.iobit
2017-04-27 11:37 - 2017-05-02 18:28 - 00000000 ____D C:\Program Files\Common Files\IObit
2017-04-27 11:37 - 2017-04-27 11:37 - 00000000 ____D C:\Windows\Tasks\ImCleanDisabled
2017-04-27 11:36 - 2017-04-27 11:36 - 00002110 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit Uninstaller.lnk
2017-04-27 11:36 - 2017-04-27 11:36 - 00002098 _____ C:\Users\Public\Desktop\IObit Uninstaller.lnk
2017-04-27 11:36 - 2017-04-27 11:36 - 00000000 ____D C:\Users\kapro\AppData\Roaming\ProductData
2017-04-27 11:36 - 2017-04-27 11:36 - 00000000 ____D C:\Users\kapro\AppData\IObit
2017-04-27 11:36 - 2017-04-27 11:36 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit Uninstaller
2017-04-27 11:26 - 2017-04-27 11:31 - 00000290 __RSH C:\Users\kapro\ntuser.pol
2017-04-27 11:23 - 2017-04-28 02:02 - 00000000 ____D C:\Users\kapro\AppData\Roaming\Mozilla
2017-04-27 11:23 - 2017-04-27 12:54 - 00000000 ____D C:\Program Files\BitTorrent
2017-04-27 11:22 - 2017-04-27 11:22 - 01894851 _____ C:\Users\kapro\AppData\Local\Templax.tst
2017-04-27 11:22 - 2017-04-27 11:22 - 00070800 _____ C:\Users\kapro\AppData\Local\Config.xml
2017-04-27 11:22 - 2017-04-27 11:22 - 00019008 _____ C:\Users\kapro\AppData\Local\InstallationConfiguration.xml
2017-04-27 11:22 - 2017-04-27 11:22 - 00005568 _____ C:\Users\kapro\AppData\Local\md.xml
2017-04-27 11:19 - 2017-04-27 12:12 - 00011781 _____ C:\ProgramData\log.ewbt
2017-04-27 11:19 - 2017-04-27 12:12 - 00000128 _____ C:\ProgramData\log.ewbb
2017-04-27 11:19 - 2017-04-27 11:46 - 00000000 ____D C:\Users\kapro\AppData\Roaming\Rcechhozerdom
2017-04-27 11:19 - 2017-04-27 11:22 - 00000000 ____D C:\Users\kapro\AppData\Local\Plawather
2017-04-27 11:18 - 2017-04-29 23:42 - 00004018 __RSH C:\ProgramData\ntuser.pol
2017-04-27 11:12 - 2017-05-04 00:45 - 00000000 ____D C:\ProgramData\ProductData
2017-04-27 11:12 - 2017-04-27 11:12 - 00000000 ____D C:\Windows\IObit
2017-04-27 11:11 - 2017-05-04 23:45 - 00000000 ____D C:\Users\kapro\AppData\Roaming\IObit
2017-04-27 11:11 - 2017-05-03 20:39 - 00000000 ____D C:\Program Files\IObit
2017-04-27 11:11 - 2017-05-03 18:00 - 00111520 _____ C:\Users\kapro\AppData\Local\GDIPFONTCACHEV1.DAT
2017-04-27 11:11 - 2017-05-02 18:27 - 00000000 ____D C:\Users\kapro\AppData\LocalLow\IObit
2017-04-27 11:11 - 2017-05-02 18:27 - 00000000 ____D C:\ProgramData\IObit
2017-04-27 11:11 - 2017-04-29 22:58 - 00002238 _____ C:\Users\Public\Desktop\Driver Booster 4.lnk
2017-04-27 11:11 - 2017-04-27 11:11 - 00023840 _____ (REALiX(tm)) C:\Windows\system32\Drivers\HWiNFO32.SYS
2017-04-27 11:11 - 2017-04-27 11:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Booster 4
2017-04-27 11:10 - 2017-04-27 11:10 - 17866872 _____ (IObit ) C:\Users\kapro\Downloads\driver_booster_setup.exe
2017-04-27 11:01 - 2017-05-02 21:21 - 00002131 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2017-04-27 11:01 - 2017-04-27 13:58 - 00000000 ____D C:\Users\kapro\AppData\Local\Google
2017-04-27 11:00 - 2017-04-27 14:10 - 00000000 ____D C:\Program Files\Google
2017-04-27 11:00 - 2017-04-27 11:00 - 45744304 _____ C:\Users\kapro\Desktop\googlechromestandaloneenterprise.msi
2017-04-27 10:53 - 2017-04-27 10:54 - 00000000 ____D C:\Windows\system32\MRT
2017-04-27 10:53 - 2017-04-27 10:53 - 145733648 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2017-04-27 10:52 - 2016-06-25 17:43 - 00301056 _____ (Microsoft Corporation) C:\Windows\system32\EOSNotify.exe
2017-04-27 10:52 - 2014-09-15 02:42 - 02377216 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2017-04-27 10:52 - 2011-04-09 07:56 - 00123904 _____ (Microsoft Corporation) C:\Windows\system32\poqexec.exe
2017-04-27 10:52 - 2010-12-18 07:29 - 00541184 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2017-04-27 10:51 - 2015-03-19 04:57 - 03963320 _____ (Microsoft Corporation) C:\Windows\system32\ntkrnlpa.exe
2017-04-27 10:51 - 2015-03-19 04:57 - 03908024 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2017-04-27 10:51 - 2013-03-19 06:54 - 00038912 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2017-04-27 10:51 - 2013-03-19 04:50 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2017-04-27 10:47 - 2017-04-27 10:47 - 00000000 ____D C:\Program Files\Intel
2017-04-27 10:47 - 2017-04-27 10:47 - 00000000 ____D C:\Intel
2017-04-27 08:44 - 2012-06-03 00:19 - 01933848 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2017-04-27 08:44 - 2012-06-03 00:19 - 00577048 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2017-04-27 08:44 - 2012-06-03 00:19 - 00053784 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2017-04-27 08:44 - 2012-06-03 00:19 - 00045080 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2017-04-27 08:44 - 2012-06-03 00:19 - 00035864 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2017-04-27 08:44 - 2012-06-03 00:12 - 02422272 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2017-04-27 08:44 - 2012-06-03 00:12 - 00088576 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2017-04-27 08:44 - 2012-06-02 15:19 - 00171904 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2017-04-27 08:44 - 2012-06-02 15:12 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2017-04-27 08:15 - 2017-04-27 11:53 - 00000000 ____D C:\Windows\Panther
2017-04-27 08:14 - 2009-08-15 20:31 - 19432224 ____R () C:\Users\Public\Desktop\MY 7 OPTIMIZER V1.2.1.EXE
2017-04-27 08:14 - 2009-08-03 22:48 - 00000113 ____R C:\Users\Public\Desktop\MY7VISION.FR.URL
2017-04-27 07:43 - 2017-04-27 07:43 - 00000000 _____ C:\Windows\system32\Drivers\Msft_Kernel_iusb3hcs_01009.Wdf
2017-04-27 07:43 - 2012-12-04 03:21 - 00016440 _____ (Intel Corporation) C:\Windows\system32\Drivers\iusb3hcs.sys
2017-04-27 07:43 - 2009-07-14 09:27 - 01461992 _____ (Microsoft Corporation) C:\Windows\system32\WdfCoInstaller01009.dll
2017-04-27 07:42 - 2009-06-11 12:22 - 00188416 _____ (Bison Inc.) C:\Windows\system32\BisonR07.dll
2017-04-27 07:41 - 2017-04-27 12:10 - 00000000 ____D C:\Windows\system32\RTCOM
2017-04-27 07:41 - 2017-04-27 07:41 - 00000000 ____D C:\Program Files\Realtek
2017-04-27 07:41 - 2013-02-19 08:29 - 03229256 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkAPO.dll
2017-04-27 07:40 - 2013-02-04 10:59 - 00527344 _____ (Intel Corporation) C:\Windows\system32\Drivers\iaStorA.sys
2017-04-27 07:40 - 2013-02-04 10:59 - 00026096 _____ (Intel Corporation) C:\Windows\system32\Drivers\iaStorF.sys
2017-04-27 07:40 - 2011-08-23 04:11 - 00270336 _____ (Intel(R) Corporation) C:\Windows\system32\Drivers\IntcDAud.sys
2017-04-27 07:40 - 2011-08-23 04:11 - 00012288 _____ (Intel(R) Corporation) C:\Windows\system32\IntcDAuC.dll
2017-04-27 07:39 - 2017-04-27 12:08 - 00109632 _____ (Realtek Semiconductor Corporation) C:\Windows\system32\RTNUninst32.dll
2017-04-27 07:38 - 2012-11-05 08:54 - 00012800 _____ (IVT Corporation.) C:\Windows\system32\btinstall.dll
2017-04-27 07:38 - 2009-09-18 04:54 - 00041088 _____ (Intel Corporation) C:\Windows\system32\Drivers\HECI.sys
2017-04-27 07:37 - 2017-05-05 00:51 - 01667292 _____ C:\Windows\system32\PerfStringBackup.INI
2017-04-27 07:32 - 2017-05-02 18:29 - 00001168 _____ C:\Users\kapro\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2017-04-27 07:32 - 2017-04-27 07:32 - 00000000 ___RD C:\Users\kapro\Virtual Machines
2017-04-27 07:31 - 2017-05-04 18:59 - 00000000 ____D C:\Users\kapro
2017-04-27 07:31 - 2017-04-27 07:31 - 00000020 ___SH C:\Users\kapro\ntuser.ini
2017-04-27 07:31 - 2017-04-27 07:31 - 00000000 _SHDL C:\Users\Public\Documents\Mes vidéos
2017-04-27 07:31 - 2017-04-27 07:31 - 00000000 _SHDL C:\Users\Public\Documents\Mes images
2017-04-27 07:31 - 2017-04-27 07:31 - 00000000 _SHDL C:\Users\Public\Documents\Ma musique
2017-04-27 07:31 - 2017-04-27 07:31 - 00000000 _SHDL C:\Users\kapro\Voisinage réseau
2017-04-27 07:31 - 2017-04-27 07:31 - 00000000 _SHDL C:\Users\kapro\Voisinage d'impression
2017-04-27 07:31 - 2017-04-27 07:31 - 00000000 _SHDL C:\Users\kapro\Modèles
2017-04-27 07:31 - 2017-04-27 07:31 - 00000000 _SHDL C:\Users\kapro\Mes documents
2017-04-27 07:31 - 2017-04-27 07:31 - 00000000 _SHDL C:\Users\kapro\Menu Démarrer
2017-04-27 07:31 - 2017-04-27 07:31 - 00000000 _SHDL C:\Users\kapro\AppData\Local\Historique
2017-04-27 07:31 - 2017-04-27 07:31 - 00000000 _SHDL C:\Users\Default\Voisinage réseau
2017-04-27 07:31 - 2017-04-27 07:31 - 00000000 _SHDL C:\Users\Default\Voisinage d'impression
2017-04-27 07:31 - 2017-04-27 07:31 - 00000000 _SHDL C:\Users\Default\Modèles
2017-04-27 07:31 - 2017-04-27 07:31 - 00000000 _SHDL C:\Users\Default\Mes documents
2017-04-27 07:31 - 2017-04-27 07:31 - 00000000 _SHDL C:\Users\Default\Menu Démarrer
2017-04-27 07:31 - 2017-04-27 07:31 - 00000000 _SHDL C:\Users\Default\Documents\Mes vidéos
2017-04-27 07:31 - 2017-04-27 07:31 - 00000000 _SHDL C:\Users\Default\Documents\Mes images
2017-04-27 07:31 - 2017-04-27 07:31 - 00000000 _SHDL C:\Users\Default\Documents\Ma musique
2017-04-27 07:31 - 2017-04-27 07:31 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programmes
2017-04-27 07:31 - 2017-04-27 07:31 - 00000000 _SHDL C:\Users\Default\AppData\Local\Historique
2017-04-27 07:31 - 2017-04-27 07:31 - 00000000 _SHDL C:\Users\Default User\Documents\Mes vidéos
2017-04-27 07:31 - 2017-04-27 07:31 - 00000000 _SHDL C:\Users\Default User\Documents\Mes images
2017-04-27 07:31 - 2017-04-27 07:31 - 00000000 _SHDL C:\Users\Default User\Documents\Ma musique
2017-04-27 07:31 - 2017-04-27 07:31 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programmes
2017-04-27 07:31 - 2017-04-27 07:31 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Historique
2017-04-27 07:31 - 2017-04-27 07:31 - 00000000 _SHDL C:\ProgramData\Modèles
2017-04-27 07:31 - 2017-04-27 07:31 - 00000000 _SHDL C:\ProgramData\Microsoft\Windows\Start Menu\Programmes
2017-04-27 07:31 - 2017-04-27 07:31 - 00000000 _SHDL C:\ProgramData\Menu Démarrer
2017-04-27 07:31 - 2017-04-27 07:31 - 00000000 _SHDL C:\ProgramData\Favoris
2017-04-27 07:31 - 2017-04-27 07:31 - 00000000 _SHDL C:\ProgramData\Bureau
2017-04-27 07:31 - 2017-04-27 07:31 - 00000000 _SHDL C:\Program Files\Fichiers communs
2017-04-27 07:31 - 2017-04-27 07:31 - 00000000 __SDL C:\Users\kapro\Documents\Mes vidéos
2017-04-27 07:31 - 2017-04-27 07:31 - 00000000 __SDL C:\Users\kapro\Documents\Mes images
2017-04-27 07:31 - 2017-04-27 07:31 - 00000000 __SDL C:\Users\kapro\Documents\Ma musique
2017-04-27 07:31 - 2017-04-27 07:31 - 00000000 __SDL C:\Users\kapro\AppData\Roaming\Microsoft\Windows\Start Menu\Programmes
2017-04-27 07:31 - 2017-04-27 07:31 - 00000000 ____D C:\Users\kapro\AppData\Local\VirtualStore
2017-04-27 07:31 - 2009-07-14 11:00 - 00000000 ____D C:\Users\kapro\AppData\Roaming\Media Center Programs
2017-04-27 07:18 - 2017-04-27 07:18 - 00001345 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Center.lnk
2017-04-27 07:18 - 2017-04-27 07:18 - 00001326 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows DVD Maker.lnk
2017-04-26 18:59 - 2016-10-17 17:35 - 00147120 _____ (Tonec Inc.) C:\Windows\system32\Drivers\idmwfp.sys
==================== Un mois - Modifiés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2017-05-05 00:51 - 2009-07-14 10:39 - 00749000 _____ C:\Windows\system32\perfh00C.dat
2017-05-05 00:51 - 2009-07-14 10:39 - 00150280 _____ C:\Windows\system32\perfc00C.dat
2017-05-05 00:51 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\inf
2017-05-05 00:49 - 2009-07-14 06:34 - 00019568 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2017-05-05 00:49 - 2009-07-14 06:34 - 00019568 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2017-05-05 00:43 - 2009-07-14 06:53 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2017-05-03 17:58 - 2009-07-14 06:33 - 00433072 _____ C:\Windows\system32\FNTCACHE.DAT
2017-05-03 01:22 - 2009-07-14 04:37 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2017-05-03 01:16 - 2009-07-14 04:37 - 00000000 ____D C:\Program Files\Common Files\System
2017-05-03 01:16 - 2009-07-14 04:04 - 00000478 _____ C:\Windows\win.ini
2017-04-30 01:43 - 2009-07-14 06:52 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2017-04-29 19:11 - 2009-08-16 17:30 - 01279032 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2017-04-29 16:15 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\system32\NDF
2017-04-27 18:01 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\rescache
2017-04-27 14:19 - 2009-07-14 11:01 - 00000000 ____D C:\Windows\ShellNew
2017-04-27 11:48 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\system
2017-04-27 11:19 - 2009-07-14 06:52 - 00000000 ____D C:\Program Files\MSBuild
2017-04-27 11:18 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\system32\GroupPolicy
2017-04-27 08:15 - 2009-07-14 06:52 - 00028672 _____ C:\Windows\system32\config\BCD-Template
2017-04-27 07:31 - 2009-07-14 04:37 - 00000000 ____D C:\Program Files\Windows NT
2017-04-27 07:18 - 2009-08-16 17:31 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Virtual PC
2017-04-27 07:18 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\system32\sysprep
2017-04-27 07:16 - 2009-07-14 11:01 - 00000000 ____D C:\Windows\CSC
==================== Fichiers à la racine de certains dossiers =======
2017-04-27 11:22 - 2017-04-27 11:22 - 0070800 _____ () C:\Users\kapro\AppData\Local\Config.xml
2017-04-27 11:22 - 2017-04-27 11:22 - 0019008 _____ () C:\Users\kapro\AppData\Local\InstallationConfiguration.xml
2017-04-27 11:22 - 2017-04-27 11:22 - 0005568 _____ () C:\Users\kapro\AppData\Local\md.xml
2017-04-27 11:22 - 2017-04-27 11:22 - 1894851 _____ () C:\Users\kapro\AppData\Local\Templax.tst
2017-04-27 11:23 - 2017-04-27 11:23 - 0001150 _____ () C:\Users\kapro\AppData\Local\uninstall_temp.ico
2017-04-27 12:12 - 2017-04-27 12:13 - 0000132 _____ () C:\ProgramData\log.binb
2017-04-27 11:19 - 2017-04-27 12:12 - 0000128 _____ () C:\ProgramData\log.ewbb
2017-04-27 11:19 - 2017-04-27 12:12 - 0011781 _____ () C:\ProgramData\log.ewbt
Fichiers à déplacer ou supprimer:
====================
C:\Users\kapro\ZHPDiag3.exe
==================== Bamital & volsnap ======================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
C:\Windows\explorer.exe => Le fichier est signé numériquement
C:\Windows\system32\winlogon.exe => Le fichier est signé numériquement
C:\Windows\system32\wininit.exe => Le fichier est signé numériquement
C:\Windows\system32\svchost.exe => Le fichier est signé numériquement
C:\Windows\system32\services.exe => Le fichier est signé numériquement
C:\Windows\system32\User32.dll => Le fichier est signé numériquement
C:\Windows\system32\userinit.exe => Le fichier est signé numériquement
C:\Windows\system32\rpcss.dll => Le fichier est signé numériquement
C:\Windows\system32\dnsapi.dll => Le fichier est signé numériquement
C:\Windows\system32\Drivers\volsnap.sys => Le fichier est signé numériquement
testsigning: ==> 'testsigning' est activé. Rechercher un éventuel pilote non signé <===== ATTENTION
LastRegBack: 2017-04-27 13:53
==================== Fin de FRST.txt ============================
Exécuté par kapro (administrateur) sur KAPRO-PC (05-05-2017 01:03:08)
Exécuté depuis C:\Users\kapro\Desktop
Profils chargés: kapro (Profils disponibles: kapro)
Platform: Microsoft Windows 7 Édition Intégrale (X86) Langue: Français (France)
Internet Explorer Version 8 (Navigateur par défaut: Chrome)
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtHDVBg.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtHDVBg.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\afwServ.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Tonec Inc.) C:\Program Files\Internet Download Manager\IDMan.exe
(Smadsoft) C:\Program Files\SMADAV\SMΔRTP.exe
(Andrea Electronics Corporation) C:\Program Files\Realtek\Audio\HDA\AERTSrv.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Tonec Inc.) C:\Program Files\Internet Download Manager\IEMonitor.exe
(Smadav Software) C:\Program Files\SMADAV\SmadavProtect32.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(IObit) C:\Program Files\IObit\IObit Uninstaller\UninstallMonitor.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\wbem\WMIC.exe
==================== Registre (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI.exe [8156672 2017-04-27] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg] => C:\Program Files\Realtek\Audio\HDA\RtHDVBg.exe [1070592 2017-04-27] (Realtek Semiconductor)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [213824 2017-05-03] (AVAST Software)
HKLM\...\Run: [Malwarebytes TrayApp] => C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\mbamtray.exe [2780112 2017-01-20] (Malwarebytes)
HKLM\...\Run: [SMΔRT-Protection] => C:\Program Files\Smadav\SMΔRTP.exe [1781760 2017-04-13] (Smadsoft)
HKU\S-1-5-21-365999879-2110489254-2640571219-1000\...\Run: [IDMan] => C:\Program Files\Internet Download Manager\IDMan.exe [4014136 2017-04-26] (Tonec Inc.)
HKU\S-1-5-21-365999879-2110489254-2640571219-1000\...\Policies\Explorer: [DisallowRun] 1
HKU\S-1-5-21-365999879-2110489254-2640571219-1000\...\Policies\Explorer\DisallowRun: [1] Mshta.exe
HKU\S-1-5-21-365999879-2110489254-2640571219-1000\...\Policies\Explorer\DisallowRun: [2] powershell.exe
HKU\S-1-5-21-365999879-2110489254-2640571219-1000\...\Policies\Explorer\DisallowRun: [3] bitsadmin.exe
ShellIconOverlayIdentifiers: [ IDM Shell Extension] -> {CDC95B92-E27C-4745-A8C5-64A52A78855D} => C:\Program Files\Internet Download Manager\IDMShellExt.dll [2015-08-14] (Tonec Inc.)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2017-05-03] (AVAST Software)
GroupPolicy: Restriction - Chrome <======= ATTENTION
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Hosts: Il y a plus d'un élément dans hosts. Voir la section Hosts de Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.4.1
Tcpip\..\Interfaces\{B80980AD-55B3-4613-815A-A3213A459859}: [DhcpNameServer] 192.168.4.1
Internet Explorer:
==================
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\S-1-5-21-365999879-2110489254-2640571219-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/ar-eg/?ocid=iehp
URLSearchHook: [S-1-5-21-365999879-2110489254-2640571219-1000] ATTENTION => URLSearchHook par défaut est absent
SearchScopes: HKLM -> DefaultScope la valeur est absente
BHO: IDM integration (IDMIEHlprObj Class) -> {0055C089-8582-441B-A0BF-17B458C2A3A8} -> C:\Program Files\Internet Download Manager\IDMIECC.dll [2016-12-10] (Internet Download Manager, Tonec Inc.)
BHO: ExplorerWnd Helper -> {10921475-03CE-4E04-90CE-E2E7EF20C814} -> C:\Program Files\IObit\IObit Uninstaller\UninstallExplorer.dll [2015-12-23] (IObit)
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office15\OCHelper.dll [2015-02-10] (Microsoft Corporation)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2017-04-27] (AVAST Software)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office15\URLREDIR.DLL [2014-01-23] (Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL [2015-01-21] (Microsoft Corporation)
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL [2015-02-17] (Microsoft Corporation)
FireFox:
========
FF HKU\S-1-5-21-365999879-2110489254-2640571219-1000\...\SeaMonkey\Extensions: [mozilla_cc@internetdownloadmanager.com] - C:\Users\kapro\AppData\Roaming\IDM\idmmzcc5
FF Extension: (IDM CC) - C:\Users\kapro\AppData\Roaming\IDM\idmmzcc5 [2017-04-27] [non signé]
FF HKU\S-1-5-21-365999879-2110489254-2640571219-1000\...\SeaMonkey\Extensions: [mozilla_cc2@internetdownloadmanager.com] - C:\Program Files\Internet Download Manager\idmmzcc2.xpi
FF Extension: (IDM integration) - C:\Program Files\Internet Download Manager\idmmzcc2.xpi [2017-01-26]
FF Plugin: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll [2017-03-06] (Tracker Software Products (Canada) Ltd.)
FF Plugin: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2015-02-10] (Microsoft Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50906.0\npctrl.dll [2017-03-09] ( Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\MICROS~1\Office15\NPSPWRAP.DLL [2014-01-23] (Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-27] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-27] (Google Inc.)
FF Plugin: @tracker-software.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll [2017-03-06] (Tracker Software Products (Canada) Ltd.)
FF Plugin: @videolan.org/vlc,version=2.2.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin HKU\S-1-5-21-365999879-2110489254-2640571219-1000: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll [2017-03-06] (Tracker Software Products (Canada) Ltd.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npMeetingJoinPluginOC.dll [2015-02-10] (Microsoft Corporation)
Chrome:
=======
CHR DefaultProfile: ChromeDefaultData
CHR StartupUrls: ChromeDefaultData -> "hxxp://www.mystartsearch.com/?type=hp&ts=1438715914&z=21e223b3f0c97db3c281da1g7zccaefozzjcktmlma&from=cmi&uid=TOSHIBAXMQ01ABF050_Z31KCQB2TXXZ31KCQB2T","hxxp://www.oursurfing.com/?type=hp&ts=1443048084&z=8ad267e782ddbb792e04c84gbz8zbc1edz2bbe4b2z&from=smt&uid=toshibaxmq01abf050_z31kcqb2txxz31kcqb2t","hxxp://www.initialsite123.com/?z=215701f39acf70f58f7d47cg1zctfc8o7b9z8mbmam&from=icb&uid=WDCXWD3200BEKT-60V5T1_WD-WXD1A400627406274&type=hp"
CHR Profile: C:\Users\kapro\AppData\Local\Google\Chrome\User Data\ChromeDefaultData [2017-05-05] <==== ATTENTION
CHR Extension: (Google Slides) - C:\Users\kapro\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-04-27]
CHR Extension: (Google Docs) - C:\Users\kapro\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\aohghmighlieiainnegkcijnfilokake [2017-04-27]
CHR Extension: (Google Drive) - C:\Users\kapro\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-04-27]
CHR Extension: (YouTube) - C:\Users\kapro\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-04-27]
CHR Extension: (Avast SafePrice) - C:\Users\kapro\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2017-04-28]
CHR Extension: (Google Sheets) - C:\Users\kapro\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-04-27]
CHR Extension: (Trigger Warnings on Campus) - C:\Users\kapro\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\gcopknacnjblbkpnjmnmahlgkeinadak [2017-04-27]
CHR Extension: (Google Docs hors connexion) - C:\Users\kapro\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-04-27]
CHR Extension: (AdBlock) - C:\Users\kapro\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2017-04-27]
CHR Extension: (IDM Integration Module) - C:\Users\kapro\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\ngpampappnmepgilojfohadhhmbhlaek [2017-04-27]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\kapro\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-04-27]
CHR Extension: (Gmail) - C:\Users\kapro\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-04-27]
CHR Extension: (Chrome Media Router) - C:\Users\kapro\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-04-27]
CHR HKLM\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files\Internet Download Manager\IDMGCExt.crx [2017-04-26]
==================== Services (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [5732136 2017-05-03] (AVAST Software s.r.o.)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [263304 2017-05-03] (AVAST Software)
R2 avast! Firewall; C:\Program Files\AVAST Software\Avast\afwServ.exe [310496 2017-05-03] (AVAST Software)
S3 BITCOMET_HELPER_SERVICE; C:\Program Files\BitComet\tools\BitCometService.exe [1296728 2013-11-29] (www.BitComet.com)
S2 LiveUpdateSvc; C:\Program Files\IObit\LiveUpdate\LiveUpdate.exe [2960672 2016-05-27] (IObit)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [3303888 2017-01-20] (Malwarebytes)
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService.exe [276992 2017-04-27] (Realtek Semiconductor)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2009-07-14] (Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ======================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R1 aswbidsdriver; C:\Windows\system32\drivers\aswbidsdriverx.sys [258288 2017-05-03] (AVAST Software s.r.o.)
R0 aswbidsh; C:\Windows\system32\drivers\aswbidshx.sys [148696 2017-05-03] (AVAST Software s.r.o.)
R0 aswblog; C:\Windows\system32\drivers\aswblogx.sys [268016 2017-05-03] (AVAST Software s.r.o.)
R0 aswbuniv; C:\Windows\system32\drivers\aswbunivx.sys [41664 2017-05-03] (AVAST Software s.r.o.)
S3 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [34136 2017-05-03] (AVAST Software)
R1 aswKbd; C:\Windows\system32\drivers\aswKbd.sys [31064 2017-05-03] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [107928 2017-05-03] (AVAST Software)
R3 aswNetNd6; C:\Windows\System32\DRIVERS\aswNetNd6.sys [27896 2017-04-28] (AVAST Software)
R1 aswNetSec; C:\Windows\system32\drivers\aswNetSec.sys [391048 2017-05-03] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [90336 2017-05-03] (AVAST Software)
R0 aswRvrt; C:\Windows\system32\drivers\aswRvrt.sys [62152 2017-05-03] (AVAST Software)
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [764576 2017-05-03] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [482608 2017-05-03] (AVAST Software)
S2 aswStm; C:\Windows\system32\drivers\aswStm.sys [114640 2017-05-03] (AVAST Software)
R0 aswVmm; C:\Windows\system32\drivers\aswVmm.sys [279800 2017-05-03] (AVAST Software)
R3 Btcsrusb; C:\Windows\System32\Drivers\btcusb.sys [47504 2017-04-27] (IVT Corporation.)
R1 ESProtectionDriver; C:\Windows\system32\drivers\mbae.sys [59904 2017-03-22] ()
R1 HWiNFO32; C:\Windows\system32\drivers\HWiNFO32.SYS [23840 2017-04-27] (REALiX(tm))
R0 iaStorA; C:\Windows\System32\DRIVERS\iaStorA.sys [527344 2013-02-04] (Intel Corporation)
R0 iaStorF; C:\Windows\System32\DRIVERS\iaStorF.sys [26096 2013-02-04] (Intel Corporation)
R3 IntcDAud; C:\Windows\System32\DRIVERS\IntcDAud.sys [270336 2011-08-23] (Intel(R) Corporation) [Fichier non signé]
R0 iusb3hcs; C:\Windows\System32\DRIVERS\iusb3hcs.sys [16440 2012-12-04] (Intel Corporation)
R2 MBAMChameleon; C:\Windows\system32\drivers\MBAMChameleon.sys [161216 2017-05-02] (Malwarebytes)
R3 MBAMFarflt; C:\Windows\system32\drivers\farflt.sys [96704 2017-05-05] (Malwarebytes)
R3 MBAMProtection; C:\Windows\system32\drivers\mbam.sys [39360 2017-05-05] (Malwarebytes)
R0 MBAMSwissArmy; C:\Windows\System32\drivers\MBAMSwissArmy.sys [220088 2017-05-05] (Malwarebytes)
R3 MBAMWebProtection; C:\Windows\system32\drivers\mwac.sys [64288 2017-05-05] (Malwarebytes)
R1 ndisrd; C:\Windows\System32\DRIVERS\ndisrd.sys [37408 2014-08-14] (NT Kernel Resources)
R3 SmbDrvI; C:\Windows\System32\DRIVERS\Smb_driver_Intel.sys [26792 2017-04-27] (Synaptics Incorporated)
R3 vpcbus; C:\Windows\System32\DRIVERS\vpchbus.sys [165376 2009-08-16] (Microsoft Corporation)
R1 vpcnfltr; C:\Windows\System32\DRIVERS\vpcnfltr.sys [55040 2009-08-16] (Microsoft Corporation)
R3 vpcusb; C:\Windows\System32\DRIVERS\vpcusb.sys [78336 2009-08-16] (Microsoft Corporation)
R1 vpcvmm; C:\Windows\System32\drivers\vpcvmm.sys [293904 2009-08-16] (Microsoft Corporation)
U2 ERSvc; pas de ImagePath
U2 IAStorDataMgrsvc; pas de ImagePath
U2 NIHardwareService; pas de ImagePath
U2 NVSvc; pas de ImagePath
U2 srService; pas de ImagePath
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois - Créés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2017-05-05 01:03 - 2017-05-05 01:03 - 00016886 _____ C:\Users\kapro\Desktop\FRST.txt
2017-05-05 01:02 - 2017-05-05 01:03 - 00000000 ____D C:\FRST
2017-05-05 00:59 - 2017-05-05 00:59 - 01769472 _____ (Farbar) C:\Users\kapro\Desktop\FRST.exe
2017-05-05 00:57 - 2017-05-05 00:57 - 00000000 ____D C:\ProgramData\SWCUTemp
2017-05-04 23:57 - 2017-05-05 00:58 - 00000000 ____D C:\Program Files\Baidu WiFiHotspot
2017-05-04 23:57 - 2017-05-04 23:57 - 00001105 _____ C:\Users\kapro\Desktop\Baidu WiFi Hotspot.lnk
2017-05-04 23:57 - 2017-05-04 23:57 - 00000000 ____D C:\Users\Public\Documents\PC Faster
2017-05-04 23:57 - 2017-05-04 23:57 - 00000000 ____D C:\Users\kapro\AppData\Roaming\Baidu
2017-05-04 23:57 - 2017-05-04 23:57 - 00000000 ____D C:\ProgramData\PC Faster
2017-05-04 23:57 - 2017-05-04 23:57 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Baidu WiFi Hotspot
2017-05-04 23:05 - 2017-05-04 23:05 - 00001312 _____ C:\Users\kapro\Desktop\ZHPFix[R2].txt
2017-05-04 18:59 - 2017-05-04 18:59 - 02722304 _____ C:\Users\kapro\ZHPDiag3.exe
2017-05-04 16:48 - 2017-05-04 16:48 - 00010013 ____R C:\Users\kapro\Desktop\Pre_Scan_04_05_2017_16_48_50.txt
2017-05-04 16:48 - 2017-05-04 16:48 - 00010013 ____R C:\Pre_Scan_04_05_2017_16_48_50.txt
2017-05-04 16:48 - 2017-05-04 16:48 - 00000970 _____ C:\Users\kapro\Desktop\Internet Explorer.lnk
2017-05-04 16:28 - 2017-05-04 16:52 - 00000000 ____D C:\Pre_Scan
2017-05-04 16:28 - 2017-05-04 16:28 - 00001526 _____ C:\Users\kapro\Desktop\Pre_Scan_Restore.lnk
2017-05-04 16:28 - 2017-05-04 16:28 - 00001136 _____ C:\Users\kapro\Desktop\Pre_Scan_Donate.lnk
2017-05-04 16:25 - 2017-05-04 16:25 - 03513768 _____ (SosVirus) C:\Users\kapro\Desktop\Pre_Scan.exe
2017-05-04 15:48 - 2017-05-04 15:51 - 00000000 ____D C:\Program Files\SMADAV
2017-05-04 15:48 - 2017-05-04 15:49 - 00000000 ___SD C:\[Smad-Cage]
2017-05-04 15:48 - 2017-05-04 15:48 - 00001022 _____ C:\Users\Public\Desktop\SMADΔV.lnk
2017-05-04 15:48 - 2017-05-04 15:48 - 00000000 ____D C:\Users\kapro\AppData\Roaming\Smadav
2017-05-04 15:48 - 2017-05-04 15:48 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SMADAV Antivirus
2017-05-04 14:49 - 2017-05-04 23:04 - 00001312 _____ C:\Users\kapro\Desktop\ZHPFixReport.txt
2017-05-04 14:47 - 2017-05-04 14:48 - 00000000 ____D C:\Program Files\ZHPFix
2017-05-04 14:47 - 2017-05-04 14:47 - 00001799 _____ C:\Users\Public\Desktop\ZHPFix.lnk
2017-05-04 14:47 - 2017-05-04 14:47 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ZHP
2017-05-04 14:43 - 2017-05-04 14:43 - 03521617 _____ (Nicolas Coolman ) C:\Users\kapro\Desktop\ZHPFix.exe
2017-05-03 20:08 - 2017-05-03 20:08 - 00000000 ___SD C:\Users\kapro\AppData\LocalLow\Temp
2017-05-03 18:03 - 2017-05-03 18:03 - 00330768 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2017-05-03 01:06 - 2017-05-03 01:06 - 00000000 ____D C:\Users\Default\AppData\Local\Microsoft Help
2017-05-03 01:06 - 2017-05-03 01:06 - 00000000 ____D C:\Users\Default User\AppData\Local\Microsoft Help
2017-05-03 01:01 - 2017-05-03 01:01 - 00000000 ____D C:\Program Files\Mozilla Firefox
2017-05-02 23:34 - 2017-04-30 05:45 - 271219744 _____ C:\Users\kapro\Desktop\One Piece - 786 [720P].mp4
2017-05-02 23:33 - 2017-05-01 21:06 - 295951505 _____ C:\Users\kapro\Desktop\DBS - 88 [720p]v2.MP4
2017-05-02 19:01 - 2017-05-02 19:01 - 00767024 _____ C:\Users\kapro\Desktop\rapp scan.txt
2017-05-02 18:37 - 2017-05-05 00:44 - 00096704 _____ (Malwarebytes) C:\Windows\system32\Drivers\farflt.sys
2017-05-02 18:37 - 2017-05-05 00:44 - 00064288 _____ (Malwarebytes) C:\Windows\system32\Drivers\mwac.sys
2017-05-02 18:37 - 2017-05-05 00:44 - 00039360 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys
2017-05-02 18:37 - 2017-05-02 18:37 - 00161216 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMChameleon.sys
2017-05-02 18:36 - 2017-05-05 00:44 - 00220088 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2017-05-02 18:36 - 2017-05-02 18:36 - 00002024 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2017-05-02 18:36 - 2017-05-02 18:36 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2017-05-02 18:36 - 2017-05-02 18:36 - 00000000 ____D C:\ProgramData\Malwarebytes
2017-05-02 18:36 - 2017-05-02 18:36 - 00000000 ____D C:\Program Files\Malwarebytes
2017-05-02 18:36 - 2017-03-22 11:02 - 00059904 _____ C:\Windows\system32\Drivers\mbae.sys
2017-05-02 18:35 - 2017-05-02 18:35 - 60107896 _____ (Malwarebytes ) C:\Users\kapro\Desktop\mb3-setup-consumer-3.0.6.1469-10103.exe
2017-05-02 18:22 - 2017-05-04 23:45 - 00000000 ____D C:\AdwCleaner
2017-05-02 18:21 - 2017-05-02 18:22 - 04102600 _____ C:\Users\kapro\Desktop\adwcleaner_6.046.exe
2017-05-02 18:18 - 2017-05-02 18:19 - 00003966 _____ C:\Users\kapro\Desktop\Rkill.txt
2017-05-02 18:15 - 2017-05-02 18:15 - 02030536 _____ (Bleeping Computer, LLC) C:\Users\kapro\Desktop\rkill.com
2017-05-02 16:36 - 2017-05-04 23:56 - 00095572 _____ C:\Users\kapro\Desktop\ZHPDiag.txt
2017-05-02 16:32 - 2017-05-04 23:55 - 00000000 ____D C:\Users\kapro\AppData\Roaming\ZHP
2017-05-02 16:32 - 2017-05-04 23:55 - 00000000 ____D C:\Users\kapro\AppData\Local\ZHP
2017-05-02 16:32 - 2017-05-04 18:59 - 00000625 _____ C:\Users\kapro\Desktop\ZHPDiag.lnk
2017-05-02 16:09 - 2017-05-02 16:31 - 02721280 _____ C:\Users\kapro\Desktop\ZHPDiag3.exe
2017-04-30 02:26 - 2017-04-30 02:34 - 00884413 _____ C:\Users\kapro\Downloads\Non confirmé 241778.crdownload
2017-04-30 01:49 - 2017-04-30 01:49 - 00000000 ____D C:\Users\kapro\Documents\KONAMI
2017-04-30 01:40 - 2017-04-30 01:40 - 00000000 ____D C:\ProgramData\KONAMI
2017-04-30 01:40 - 2017-04-30 01:40 - 00000000 ____D C:\Program Files\KONAMI
2017-04-30 01:26 - 2017-04-30 01:37 - 00000000 ____D C:\Users\kapro\Desktop\pes 2010 .mohdz
2017-04-30 00:56 - 2017-04-30 00:58 - 28119144 _____ C:\Users\kapro\Downloads\pes2017100mod-momen elwerdany.apk
2017-04-30 00:02 - 2017-04-30 00:02 - 00011149 _____ C:\Users\kapro\Downloads\Connectify_Hotspot_PRO_2017_With_Crack.exe.htm
2017-04-29 23:24 - 2017-04-29 23:28 - 00000000 ____D C:\Users\kapro\Desktop\Connectify Hotspot Pro & Dispatch Pro 8.0.0.30686 Incl. Crack [ATOM]
2017-04-29 23:03 - 2017-04-20 21:33 - 05158352 _____ (Baidu, Inc.) C:\Users\kapro\Desktop\WiFiHotspot_Setup_GL.exe
2017-04-29 22:56 - 2017-04-29 22:56 - 00172032 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2017-04-29 22:55 - 2017-04-29 22:55 - 00716800 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2017-04-29 22:55 - 2017-04-29 22:55 - 00571904 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2017-04-29 22:55 - 2017-04-29 22:55 - 00427520 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2017-04-29 22:55 - 2017-04-29 22:55 - 00310784 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys
2017-04-29 22:55 - 2017-04-29 22:55 - 00307200 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2017-04-29 22:55 - 2017-04-29 22:55 - 00194488 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fvevol.sys
2017-04-29 22:55 - 2017-04-29 22:55 - 00113664 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2017-04-29 22:54 - 2017-04-29 22:54 - 00314368 _____ (Microsoft Corporation) C:\Windows\system32\webio.dll
2017-04-29 22:54 - 2017-04-29 22:54 - 00221696 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2017-04-29 22:54 - 2017-04-29 22:54 - 00132608 _____ (Microsoft Corporation) C:\Windows\system32\cabview.dll
2017-04-29 22:54 - 2017-04-29 22:54 - 00123392 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2017-04-29 22:54 - 2017-04-29 22:54 - 00095744 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2017-04-29 22:53 - 2017-04-29 22:53 - 00224256 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2017-04-29 22:53 - 2017-04-29 22:53 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\sffp_sd.sys
2017-04-29 19:11 - 2009-08-16 17:30 - 01285208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys.backup
2017-04-29 18:47 - 2017-04-29 18:47 - 00095108 _____ C:\Windows\Uninstal.exe
2017-04-29 18:47 - 2017-04-29 18:47 - 00001985 _____ C:\Users\Public\Desktop\My 7 Optimizer.lnk
2017-04-29 18:47 - 2017-04-29 18:47 - 00000000 ____D C:\Windows\My 7 Add-On
2017-04-29 18:47 - 2017-04-29 18:47 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\My 7 Optimizer
2017-04-29 16:25 - 2017-04-29 16:25 - 00000000 ____D C:\ProgramData\Package Cache
2017-04-29 16:17 - 2017-04-29 16:17 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2017-04-29 16:17 - 2017-04-29 16:17 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2017-04-29 16:13 - 2017-04-29 16:13 - 00000000 ____D C:\Users\kapro\AppData\Local\ElevatedDiagnostics
2017-04-29 00:16 - 2017-04-29 00:16 - 00000000 _____ C:\Windows\system32\Drivers\Msft_User_WpdFs_01_09_00.Wdf
2017-04-28 23:56 - 2017-04-28 23:56 - 00002007 _____ C:\Users\Public\Desktop\Avast Premium.lnk
2017-04-28 23:56 - 2017-04-28 23:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software
2017-04-28 23:49 - 2017-05-03 18:02 - 00391048 _____ (AVAST Software) C:\Windows\system32\Drivers\aswNetSec.sys
2017-04-28 23:48 - 2017-04-28 23:48 - 00027896 _____ (AVAST Software) C:\Windows\system32\Drivers\aswNetNd6.sys
2017-04-28 02:02 - 2017-04-29 23:00 - 00000000 ____D C:\Users\kapro\AppData\LocalLow\Mozilla
2017-04-28 02:02 - 2017-04-28 02:02 - 00000000 ____D C:\ProgramData\Apple
2017-04-28 02:01 - 2017-04-28 02:01 - 00001962 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2017-04-28 02:01 - 2017-04-28 02:01 - 00001892 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2017-04-28 02:00 - 2017-04-29 00:04 - 00000000 ____D C:\Windows\psgo
2017-04-28 02:00 - 2017-04-28 02:00 - 00000000 ____D C:\Program Files\MIO
2017-04-28 02:00 - 2017-04-28 02:00 - 00000000 _____ C:\Windows\system32\44
2017-04-28 02:00 - 2017-04-28 02:00 - 00000000 _____ C:\Windows\system32\11
2017-04-28 01:59 - 2017-04-29 01:46 - 00000000 ____D C:\Program Files\MK
2017-04-28 01:59 - 2017-04-28 01:59 - 00000000 ____D C:\Program Files\Codwardgruqse
2017-04-27 22:58 - 2017-05-02 23:35 - 00000000 ____D C:\Users\kapro\AppData\Roaming\MPC-HC
2017-04-27 22:38 - 2017-04-27 22:38 - 00294115 _____ C:\Users\kapro\Downloads\ALL CHANNELS 28-04-2017.m3u
2017-04-27 22:31 - 2017-04-27 22:31 - 00059577 _____ C:\Users\kapro\Downloads\iptv الروعة مجانا .m3u
2017-04-27 22:09 - 2017-04-27 22:09 - 00000000 _____ C:\Windows\system32\Drivers\Msft_User_WpdMtpDr_01_09_00.Wdf
2017-04-27 18:02 - 2017-04-27 18:02 - 00000000 ____D C:\Windows\system32\EventProviders
2017-04-27 16:48 - 2017-04-27 16:56 - 00000000 ____D C:\Users\kapro\Desktop\EmbratoriaG6.5.2
2017-04-27 15:57 - 2017-04-27 15:57 - 00001175 _____ C:\Users\Public\Desktop\PDF-Viewer.lnk
2017-04-27 15:57 - 2017-04-27 15:57 - 00000000 ____D C:\ProgramData\Tracker Software
2017-04-27 15:57 - 2017-04-27 15:57 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDF-XChange PDF Viewer
2017-04-27 15:57 - 2017-04-27 15:57 - 00000000 ____D C:\Program Files\Tracker Software
2017-04-27 14:40 - 2017-04-27 14:55 - 00000000 ____D C:\Users\kapro\AppData\Local\Adobe
2017-04-27 14:25 - 2017-04-27 14:31 - 00003612 _____ C:\Users\Public\Desktop\R@1n.txt
2017-04-27 14:25 - 2017-04-27 14:25 - 00003584 _____ C:\Windows\KMS-R@1nHook.dll
2017-04-27 14:20 - 2017-05-03 01:31 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
2017-04-27 14:19 - 2017-04-27 14:19 - 00000000 ____D C:\Windows\PCHEALTH
2017-04-27 14:19 - 2017-04-27 14:19 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2017-04-27 14:19 - 2017-04-27 14:19 - 00000000 ____D C:\Program Files\Microsoft SQL Server
2017-04-27 14:19 - 2017-04-27 14:19 - 00000000 ____D C:\Program Files\Common Files\DESIGNER
2017-04-27 14:17 - 2017-04-27 14:19 - 00000000 ____D C:\Program Files\Microsoft Office
2017-04-27 14:17 - 2017-04-27 14:17 - 00000000 ____D C:\Users\kapro\AppData\Local\Microsoft Help
2017-04-27 14:17 - 2017-04-27 14:17 - 00000000 ____D C:\Program Files\Microsoft Analysis Services
2017-04-27 14:16 - 2017-04-27 14:16 - 00000000 __RHD C:\MSOCache
2017-04-27 14:07 - 2009-11-25 11:47 - 01130824 _____ (Microsoft Corporation) C:\Windows\system32\dfshim.dll
2017-04-27 14:07 - 2009-11-25 11:47 - 00297808 _____ (Microsoft Corporation) C:\Windows\system32\mscoree.dll
2017-04-27 14:07 - 2009-11-25 11:47 - 00295264 _____ (Microsoft Corporation) C:\Windows\system32\PresentationHost.exe
2017-04-27 14:07 - 2009-11-25 11:47 - 00099176 _____ (Microsoft Corporation) C:\Windows\system32\PresentationHostProxy.dll
2017-04-27 14:07 - 2009-11-25 11:47 - 00049472 _____ (Microsoft Corporation) C:\Windows\system32\netfxperf.dll
2017-04-27 13:23 - 2017-04-27 13:23 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack
2017-04-27 13:23 - 2017-04-27 13:23 - 00000000 ____D C:\Program Files\K-Lite Codec Pack
2017-04-27 13:23 - 2016-05-08 11:27 - 03613696 _____ (x264vfw project) C:\Windows\system32\x264vfw.dll
2017-04-27 13:23 - 2015-12-18 11:00 - 00674816 _____ C:\Windows\system32\xvidcore.dll
2017-04-27 13:23 - 2015-12-18 11:00 - 00282112 _____ C:\Windows\system32\xvidvfw.dll
2017-04-27 13:23 - 2015-10-24 18:00 - 00112128 _____ C:\Windows\system32\ff_vfw.dll
2017-04-27 13:23 - 2012-07-21 12:54 - 00122880 _____ (fccHandler) C:\Windows\system32\ac3acm.acm
2017-04-27 13:23 - 2011-12-07 19:32 - 00216064 _____ ( ) C:\Windows\system32\lagarith.dll
2017-04-27 13:22 - 2017-04-28 02:07 - 00000000 ____D C:\Users\kapro\AppData\Roaming\vlc
2017-04-27 13:22 - 2017-04-27 13:22 - 00001028 _____ C:\Users\Public\Desktop\VLC media player.lnk
2017-04-27 13:22 - 2017-04-27 13:22 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2017-04-27 13:22 - 2017-04-27 13:22 - 00000000 ____D C:\Program Files\VideoLAN
2017-04-27 13:22 - 2017-04-14 10:17 - 44819912 _____ (KLCP ) C:\Users\kapro\Desktop\K-Lite_Codec_Pack_1310_Mega.exe
2017-04-27 13:06 - 2017-04-27 13:06 - 00000000 ____D C:\Users\kapro\Desktop\BaiduWifi
2017-04-27 13:05 - 2017-04-29 17:14 - 00000438 _____ C:\Windows\system32\Drivers\etc\hosts.ics
2017-04-27 13:04 - 2017-04-27 13:04 - 00000000 ____D C:\Users\Public\Documents\Baidu
2017-04-27 13:04 - 2014-08-14 11:18 - 00037408 _____ (NT Kernel Resources) C:\Windows\system32\Drivers\ndisrd.sys
2017-04-27 12:59 - 2017-05-05 00:59 - 00000000 ____D C:\Users\kapro\AppData\Roaming\IDM
2017-04-27 12:59 - 2017-05-05 00:42 - 00000000 ____D C:\Users\kapro\AppData\Roaming\DMCache
2017-04-27 12:59 - 2017-05-04 16:07 - 00000000 ____D C:\Users\kapro\Downloads\Video
2017-04-27 12:59 - 2017-04-30 01:25 - 00000000 ____D C:\Users\kapro\Downloads\Compressed
2017-04-27 12:59 - 2017-04-27 13:00 - 00000000 ____D C:\Program Files\Internet Download Manager
2017-04-27 12:59 - 2017-04-27 12:59 - 00000983 _____ C:\Users\kapro\Desktop\Internet Download Manager.lnk
2017-04-27 12:59 - 2017-04-27 12:59 - 00000000 ____D C:\Users\kapro\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Download Manager
2017-04-27 12:59 - 2017-04-27 12:59 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Internet Download Manager
2017-04-27 12:59 - 2017-04-27 12:59 - 00000000 ____D C:\ProgramData\IDM
2017-04-27 12:50 - 2017-04-27 12:50 - 00000000 ____D C:\$AV_ASW
2017-04-27 12:49 - 2017-04-27 12:49 - 00001200 _____ C:\Users\Public\Desktop\Avast SafeZone Browser.lnk
2017-04-27 12:49 - 2017-04-27 12:49 - 00001200 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast SafeZone Browser.lnk
2017-04-27 12:49 - 2017-04-27 12:49 - 00000000 ____D C:\Users\kapro\AppData\Roaming\AVAST Software
2017-04-27 12:49 - 2017-04-27 12:49 - 00000000 ____D C:\Users\kapro\AppData\Local\CEF
2017-04-27 12:48 - 2017-05-03 18:03 - 00764576 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2017-04-27 12:48 - 2017-05-03 18:03 - 00482608 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2017-04-27 12:48 - 2017-05-03 18:03 - 00279800 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys
2017-04-27 12:48 - 2017-05-03 18:03 - 00114640 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2017-04-27 12:48 - 2017-05-03 18:03 - 00107928 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2017-04-27 12:48 - 2017-05-03 18:03 - 00090336 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2017-04-27 12:48 - 2017-05-03 18:03 - 00062152 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys
2017-04-27 12:48 - 2017-05-03 18:03 - 00034136 _____ (AVAST Software) C:\Windows\system32\Drivers\aswHwid.sys
2017-04-27 12:48 - 2017-05-03 18:03 - 00031064 _____ (AVAST Software) C:\Windows\system32\Drivers\aswKbd.sys
2017-04-27 12:48 - 2017-05-03 18:02 - 00268016 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswblogx.sys
2017-04-27 12:48 - 2017-05-03 18:02 - 00258288 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswbidsdriverx.sys
2017-04-27 12:48 - 2017-05-03 18:02 - 00148696 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswbidshx.sys
2017-04-27 12:48 - 2017-05-03 18:02 - 00041664 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswbunivx.sys
2017-04-27 12:48 - 2017-04-27 12:48 - 00000000 ____D C:\Program Files\Common Files\AV
2017-04-27 12:48 - 2017-04-27 12:47 - 00764064 _____ (AVAST Software) C:\Windows\system32\Drivers\aswF874.tmp
2017-04-27 12:48 - 2017-04-27 12:47 - 00472760 _____ (AVAST Software) C:\Windows\system32\Drivers\aswFDD6.tmp
2017-04-27 12:48 - 2017-04-27 12:47 - 00279800 _____ (AVAST Software) C:\Windows\system32\Drivers\aswFEB1.tmp
2017-04-27 12:48 - 2017-04-27 12:47 - 00267528 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswF42D.tmp
2017-04-27 12:48 - 2017-04-27 12:47 - 00255184 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswF276.tmp
2017-04-27 12:48 - 2017-04-27 12:47 - 00148208 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswF352.tmp
2017-04-27 12:48 - 2017-04-27 12:47 - 00118800 _____ (AVAST Software) C:\Windows\system32\Drivers\asw67.tmp
2017-04-27 12:48 - 2017-04-27 12:47 - 00106904 _____ (AVAST Software) C:\Windows\system32\Drivers\aswFBB2.tmp
2017-04-27 12:48 - 2017-04-27 12:47 - 00090336 _____ (AVAST Software) C:\Windows\system32\Drivers\aswF98E.tmp
2017-04-27 12:48 - 2017-04-27 12:47 - 00062152 _____ (AVAST Software) C:\Windows\system32\Drivers\aswFC9D.tmp
2017-04-27 12:48 - 2017-04-27 12:47 - 00041176 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswF566.tmp
2017-04-27 12:48 - 2017-04-27 12:47 - 00034136 _____ (AVAST Software) C:\Windows\system32\Drivers\aswFAB7.tmp
2017-04-27 12:48 - 2017-04-27 12:47 - 00031064 _____ (AVAST Software) C:\Windows\system32\Drivers\aswF6DD.tmp
2017-04-27 12:47 - 2017-04-27 12:47 - 00921280 _____ (Microsoft Corporation) C:\Windows\ucrtbase.dll
2017-04-27 12:47 - 2017-04-27 12:47 - 00000000 ____D C:\Program Files\AVAST Software
2017-04-27 12:46 - 2017-04-27 12:52 - 00000000 ____D C:\ProgramData\AVAST Software
2017-04-27 12:41 - 2017-05-03 19:25 - 00000000 ____D C:\Users\kapro\Desktop\EmbratoriaG7
2017-04-27 12:40 - 2017-04-27 12:44 - 00000000 ____D C:\Users\kapro\AppData\Roaming\WinRAR
2017-04-27 12:39 - 2017-04-29 23:31 - 00000000 ____D C:\Users\kapro\AppData\Roaming\BitComet
2017-04-27 12:39 - 2017-04-27 12:39 - 00000969 _____ C:\Users\Public\Desktop\BitComet.lnk
2017-04-27 12:39 - 2017-04-27 12:39 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BitComet
2017-04-27 12:39 - 2017-04-27 12:39 - 00000000 ____D C:\Program Files\BitComet
2017-04-27 12:37 - 2017-04-27 12:37 - 00000000 ____D C:\Users\kapro\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2017-04-27 12:37 - 2017-04-27 12:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2017-04-27 12:37 - 2017-04-27 12:37 - 00000000 ____D C:\Program Files\WinRAR
2017-04-27 12:36 - 2017-04-27 12:36 - 01975544 _____ C:\Users\kapro\Downloads\wrar55b1.exe
2017-04-27 12:32 - 2017-04-27 12:32 - 00009300 _____ C:\Users\kapro\Downloads\Keys.rar
2017-04-27 12:29 - 2017-04-27 12:31 - 288918364 _____ C:\Users\kapro\Downloads\Avast.AV.17.3.2291.0.rar
2017-04-27 12:18 - 2017-04-27 12:18 - 00000000 ____D C:\Users\kapro\AppData\Roaming\Google
2017-04-27 12:12 - 2017-04-27 12:13 - 00000132 _____ C:\ProgramData\log.binb
2017-04-27 12:08 - 2017-04-27 12:08 - 00785920 _____ (Realtek ) C:\Windows\system32\Drivers\Rt86win7.sys
2017-04-27 12:08 - 2017-04-27 12:08 - 00085608 _____ (Realtek Semiconductor Corporation) C:\Windows\system32\RtNicProp32.dll
2017-04-27 12:07 - 2017-04-27 12:07 - 72520712 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoRes.dat
2017-04-27 12:07 - 2017-04-27 12:07 - 09124224 _____ C:\Windows\system32\Drivers\RTAIODAT.DAT
2017-04-27 12:07 - 2017-04-27 12:07 - 04298752 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHDA.sys
2017-04-27 12:07 - 2017-04-27 12:07 - 03173736 _____ (DTS, Inc.) C:\Windows\system32\slcnt32.dll
2017-04-27 12:07 - 2017-04-27 12:07 - 02946560 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTSndMgr.cpl
2017-04-27 12:07 - 2017-04-27 12:07 - 02904576 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkPgExt.dll
2017-04-27 12:07 - 2017-04-27 12:07 - 02830480 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RltkAPO.dll
2017-04-27 12:07 - 2017-04-27 12:07 - 02800320 _____ (DTS, Inc.) C:\Windows\system32\sltech32.dll
2017-04-27 12:07 - 2017-04-27 12:07 - 02558352 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApoApi.dll
2017-04-27 12:07 - 2017-04-27 12:07 - 02149376 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCoInstII.dll
2017-04-27 12:07 - 2017-04-27 12:07 - 01527752 _____ (Conexant Systems Inc.) C:\Windows\system32\CX32APO.dll
2017-04-27 12:07 - 2017-04-27 12:07 - 01451616 _____ (Conexant Systems Inc.) C:\Windows\system32\CX32Proxy.dll
2017-04-27 12:07 - 2017-04-27 12:07 - 01074048 _____ (Synopsys, Inc.) C:\Windows\system32\SRRPTR.dll
2017-04-27 12:07 - 2017-04-27 12:07 - 00911080 _____ (DTS, Inc.) C:\Windows\system32\sl3apo32.dll
2017-04-27 12:07 - 2017-04-27 12:07 - 00532888 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTACap.dll
2017-04-27 12:07 - 2017-04-27 12:07 - 00401040 _____ (Synopsys, Inc.) C:\Windows\system32\SRAPO.dll
2017-04-27 12:07 - 2017-04-27 12:07 - 00371808 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEP32A.dll
2017-04-27 12:07 - 2017-04-27 12:07 - 00370024 _____ (Conexant Systems, Inc.) C:\Windows\system32\Caf32APO2.dll
2017-04-27 12:07 - 2017-04-27 12:07 - 00357152 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSXT.dll
2017-04-27 12:07 - 2017-04-27 12:07 - 00341144 _____ (Synopsys, Inc.) C:\Windows\system32\SRCOM.dll
2017-04-27 12:07 - 2017-04-27 12:07 - 00307232 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DHT32.dll
2017-04-27 12:07 - 2017-04-27 12:07 - 00307232 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DAA32.dll
2017-04-27 12:07 - 2017-04-27 12:07 - 00232752 _____ (TODO:
2017-04-27 12:07 - 2017-04-27 12:07 - 00181224 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEED32A.dll
2017-04-27 12:07 - 2017-04-27 12:07 - 00150552 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSWOW.dll
2017-04-27 12:07 - 2017-04-27 12:07 - 00105648 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTARen.dll
2017-04-27 12:07 - 2017-04-27 12:07 - 00101328 _____ (Real Sound Lab SIA) C:\Windows\system32\CONEQMSAPOGUILibrary.dll
2017-04-27 12:07 - 2017-04-27 12:07 - 00098008 _____ (Conexant Systems, Inc.) C:\Windows\system32\Caf32api.dll
2017-04-27 12:07 - 2017-04-27 12:07 - 00088272 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEL32A.dll
2017-04-27 12:07 - 2017-04-27 12:07 - 00074376 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEG32A.dll
2017-04-27 12:07 - 2017-04-27 12:07 - 00022152 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCoLDR.dll
2017-04-27 12:07 - 2017-04-27 12:07 - 00005604 _____ C:\Windows\system32\cxapo.lncs
2017-04-27 12:07 - 2017-04-27 12:07 - 00000736 _____ C:\Windows\system32\cxapo.prop
2017-04-27 12:05 - 2017-04-27 12:05 - 01629040 _____ (Microsoft Corporation) C:\Windows\system32\WdfCoInstaller01011.dll
2017-04-27 12:05 - 2017-04-27 12:05 - 00132480 _____ (Intel Corporation) C:\Windows\system32\Drivers\Impcd.sys
2017-04-27 12:05 - 2017-04-27 12:05 - 00026792 _____ (Synaptics Incorporated) C:\Windows\system32\Drivers\Smb_driver_Intel.sys
2017-04-27 12:05 - 2017-04-27 12:05 - 00000000 ____H C:\Windows\system32\Drivers\MsftWdf_Kernel_01011_Coinstaller_Critical.Wdf
2017-04-27 12:05 - 2017-04-27 12:05 - 00000000 ____D C:\Program Files\Synaptics
2017-04-27 12:05 - 2017-04-27 12:05 - 00000000 _____ C:\Windows\system32\Drivers\Msft_Kernel_Smb_driver_Intel_01011.Wdf
2017-04-27 12:05 - 2012-07-26 05:39 - 00526952 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys
2017-04-27 12:05 - 2012-07-26 05:39 - 00047720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdfLdr.sys
2017-04-27 12:05 - 2012-07-26 04:46 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\Wdfres.dll
2017-04-27 12:05 - 2012-06-02 16:34 - 00000003 _____ C:\Windows\system32\Drivers\MsftWdf_Kernel_01011_Inbox_Critical.Wdf
2017-04-27 11:57 - 2017-04-27 11:57 - 07153400 _____ (Broadcom Corporation) C:\Windows\system32\Drivers\BCMWL6.SYS
2017-04-27 11:57 - 2017-04-27 11:57 - 03657728 _____ (Broadcom Corporation) C:\Windows\system32\bcmihvui.dll
2017-04-27 11:57 - 2017-04-27 11:57 - 00092504 _____ (Broadcom Corporation) C:\Windows\system32\bcmwlcoi.dll
2017-04-27 11:56 - 2017-04-27 11:57 - 04268032 _____ (Broadcom Corporation) C:\Windows\system32\bcmihvsrv.dll
2017-04-27 11:55 - 2017-04-27 11:55 - 00047504 _____ (IVT Corporation.) C:\Windows\system32\Drivers\btcusb.sys
2017-04-27 11:52 - 2017-04-29 22:49 - 36814848 _____ C:\Windows\system32\config\SOFTWARE.iobit
2017-04-27 11:52 - 2017-04-29 22:49 - 00241664 _____ C:\Windows\system32\config\DEFAULT.iobit
2017-04-27 11:52 - 2017-04-29 22:49 - 00028672 _____ C:\Windows\system32\config\SAM.iobit
2017-04-27 11:52 - 2017-04-29 22:49 - 00024576 _____ C:\Windows\system32\config\SECURITY.iobit
2017-04-27 11:52 - 2017-04-27 11:52 - 19210240 _____ C:\Windows\system32\config\COMPONENTS.iobit
2017-04-27 11:37 - 2017-05-02 18:28 - 00000000 ____D C:\Program Files\Common Files\IObit
2017-04-27 11:37 - 2017-04-27 11:37 - 00000000 ____D C:\Windows\Tasks\ImCleanDisabled
2017-04-27 11:36 - 2017-04-27 11:36 - 00002110 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit Uninstaller.lnk
2017-04-27 11:36 - 2017-04-27 11:36 - 00002098 _____ C:\Users\Public\Desktop\IObit Uninstaller.lnk
2017-04-27 11:36 - 2017-04-27 11:36 - 00000000 ____D C:\Users\kapro\AppData\Roaming\ProductData
2017-04-27 11:36 - 2017-04-27 11:36 - 00000000 ____D C:\Users\kapro\AppData\IObit
2017-04-27 11:36 - 2017-04-27 11:36 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit Uninstaller
2017-04-27 11:26 - 2017-04-27 11:31 - 00000290 __RSH C:\Users\kapro\ntuser.pol
2017-04-27 11:23 - 2017-04-28 02:02 - 00000000 ____D C:\Users\kapro\AppData\Roaming\Mozilla
2017-04-27 11:23 - 2017-04-27 12:54 - 00000000 ____D C:\Program Files\BitTorrent
2017-04-27 11:22 - 2017-04-27 11:22 - 01894851 _____ C:\Users\kapro\AppData\Local\Templax.tst
2017-04-27 11:22 - 2017-04-27 11:22 - 00070800 _____ C:\Users\kapro\AppData\Local\Config.xml
2017-04-27 11:22 - 2017-04-27 11:22 - 00019008 _____ C:\Users\kapro\AppData\Local\InstallationConfiguration.xml
2017-04-27 11:22 - 2017-04-27 11:22 - 00005568 _____ C:\Users\kapro\AppData\Local\md.xml
2017-04-27 11:19 - 2017-04-27 12:12 - 00011781 _____ C:\ProgramData\log.ewbt
2017-04-27 11:19 - 2017-04-27 12:12 - 00000128 _____ C:\ProgramData\log.ewbb
2017-04-27 11:19 - 2017-04-27 11:46 - 00000000 ____D C:\Users\kapro\AppData\Roaming\Rcechhozerdom
2017-04-27 11:19 - 2017-04-27 11:22 - 00000000 ____D C:\Users\kapro\AppData\Local\Plawather
2017-04-27 11:18 - 2017-04-29 23:42 - 00004018 __RSH C:\ProgramData\ntuser.pol
2017-04-27 11:12 - 2017-05-04 00:45 - 00000000 ____D C:\ProgramData\ProductData
2017-04-27 11:12 - 2017-04-27 11:12 - 00000000 ____D C:\Windows\IObit
2017-04-27 11:11 - 2017-05-04 23:45 - 00000000 ____D C:\Users\kapro\AppData\Roaming\IObit
2017-04-27 11:11 - 2017-05-03 20:39 - 00000000 ____D C:\Program Files\IObit
2017-04-27 11:11 - 2017-05-03 18:00 - 00111520 _____ C:\Users\kapro\AppData\Local\GDIPFONTCACHEV1.DAT
2017-04-27 11:11 - 2017-05-02 18:27 - 00000000 ____D C:\Users\kapro\AppData\LocalLow\IObit
2017-04-27 11:11 - 2017-05-02 18:27 - 00000000 ____D C:\ProgramData\IObit
2017-04-27 11:11 - 2017-04-29 22:58 - 00002238 _____ C:\Users\Public\Desktop\Driver Booster 4.lnk
2017-04-27 11:11 - 2017-04-27 11:11 - 00023840 _____ (REALiX(tm)) C:\Windows\system32\Drivers\HWiNFO32.SYS
2017-04-27 11:11 - 2017-04-27 11:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Booster 4
2017-04-27 11:10 - 2017-04-27 11:10 - 17866872 _____ (IObit ) C:\Users\kapro\Downloads\driver_booster_setup.exe
2017-04-27 11:01 - 2017-05-02 21:21 - 00002131 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2017-04-27 11:01 - 2017-04-27 13:58 - 00000000 ____D C:\Users\kapro\AppData\Local\Google
2017-04-27 11:00 - 2017-04-27 14:10 - 00000000 ____D C:\Program Files\Google
2017-04-27 11:00 - 2017-04-27 11:00 - 45744304 _____ C:\Users\kapro\Desktop\googlechromestandaloneenterprise.msi
2017-04-27 10:53 - 2017-04-27 10:54 - 00000000 ____D C:\Windows\system32\MRT
2017-04-27 10:53 - 2017-04-27 10:53 - 145733648 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2017-04-27 10:52 - 2016-06-25 17:43 - 00301056 _____ (Microsoft Corporation) C:\Windows\system32\EOSNotify.exe
2017-04-27 10:52 - 2014-09-15 02:42 - 02377216 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2017-04-27 10:52 - 2011-04-09 07:56 - 00123904 _____ (Microsoft Corporation) C:\Windows\system32\poqexec.exe
2017-04-27 10:52 - 2010-12-18 07:29 - 00541184 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2017-04-27 10:51 - 2015-03-19 04:57 - 03963320 _____ (Microsoft Corporation) C:\Windows\system32\ntkrnlpa.exe
2017-04-27 10:51 - 2015-03-19 04:57 - 03908024 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2017-04-27 10:51 - 2013-03-19 06:54 - 00038912 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2017-04-27 10:51 - 2013-03-19 04:50 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2017-04-27 10:47 - 2017-04-27 10:47 - 00000000 ____D C:\Program Files\Intel
2017-04-27 10:47 - 2017-04-27 10:47 - 00000000 ____D C:\Intel
2017-04-27 08:44 - 2012-06-03 00:19 - 01933848 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2017-04-27 08:44 - 2012-06-03 00:19 - 00577048 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2017-04-27 08:44 - 2012-06-03 00:19 - 00053784 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2017-04-27 08:44 - 2012-06-03 00:19 - 00045080 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2017-04-27 08:44 - 2012-06-03 00:19 - 00035864 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2017-04-27 08:44 - 2012-06-03 00:12 - 02422272 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2017-04-27 08:44 - 2012-06-03 00:12 - 00088576 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2017-04-27 08:44 - 2012-06-02 15:19 - 00171904 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2017-04-27 08:44 - 2012-06-02 15:12 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2017-04-27 08:15 - 2017-04-27 11:53 - 00000000 ____D C:\Windows\Panther
2017-04-27 08:14 - 2009-08-15 20:31 - 19432224 ____R () C:\Users\Public\Desktop\MY 7 OPTIMIZER V1.2.1.EXE
2017-04-27 08:14 - 2009-08-03 22:48 - 00000113 ____R C:\Users\Public\Desktop\MY7VISION.FR.URL
2017-04-27 07:43 - 2017-04-27 07:43 - 00000000 _____ C:\Windows\system32\Drivers\Msft_Kernel_iusb3hcs_01009.Wdf
2017-04-27 07:43 - 2012-12-04 03:21 - 00016440 _____ (Intel Corporation) C:\Windows\system32\Drivers\iusb3hcs.sys
2017-04-27 07:43 - 2009-07-14 09:27 - 01461992 _____ (Microsoft Corporation) C:\Windows\system32\WdfCoInstaller01009.dll
2017-04-27 07:42 - 2009-06-11 12:22 - 00188416 _____ (Bison Inc.) C:\Windows\system32\BisonR07.dll
2017-04-27 07:41 - 2017-04-27 12:10 - 00000000 ____D C:\Windows\system32\RTCOM
2017-04-27 07:41 - 2017-04-27 07:41 - 00000000 ____D C:\Program Files\Realtek
2017-04-27 07:41 - 2013-02-19 08:29 - 03229256 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkAPO.dll
2017-04-27 07:40 - 2013-02-04 10:59 - 00527344 _____ (Intel Corporation) C:\Windows\system32\Drivers\iaStorA.sys
2017-04-27 07:40 - 2013-02-04 10:59 - 00026096 _____ (Intel Corporation) C:\Windows\system32\Drivers\iaStorF.sys
2017-04-27 07:40 - 2011-08-23 04:11 - 00270336 _____ (Intel(R) Corporation) C:\Windows\system32\Drivers\IntcDAud.sys
2017-04-27 07:40 - 2011-08-23 04:11 - 00012288 _____ (Intel(R) Corporation) C:\Windows\system32\IntcDAuC.dll
2017-04-27 07:39 - 2017-04-27 12:08 - 00109632 _____ (Realtek Semiconductor Corporation) C:\Windows\system32\RTNUninst32.dll
2017-04-27 07:38 - 2012-11-05 08:54 - 00012800 _____ (IVT Corporation.) C:\Windows\system32\btinstall.dll
2017-04-27 07:38 - 2009-09-18 04:54 - 00041088 _____ (Intel Corporation) C:\Windows\system32\Drivers\HECI.sys
2017-04-27 07:37 - 2017-05-05 00:51 - 01667292 _____ C:\Windows\system32\PerfStringBackup.INI
2017-04-27 07:32 - 2017-05-02 18:29 - 00001168 _____ C:\Users\kapro\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2017-04-27 07:32 - 2017-04-27 07:32 - 00000000 ___RD C:\Users\kapro\Virtual Machines
2017-04-27 07:31 - 2017-05-04 18:59 - 00000000 ____D C:\Users\kapro
2017-04-27 07:31 - 2017-04-27 07:31 - 00000020 ___SH C:\Users\kapro\ntuser.ini
2017-04-27 07:31 - 2017-04-27 07:31 - 00000000 _SHDL C:\Users\Public\Documents\Mes vidéos
2017-04-27 07:31 - 2017-04-27 07:31 - 00000000 _SHDL C:\Users\Public\Documents\Mes images
2017-04-27 07:31 - 2017-04-27 07:31 - 00000000 _SHDL C:\Users\Public\Documents\Ma musique
2017-04-27 07:31 - 2017-04-27 07:31 - 00000000 _SHDL C:\Users\kapro\Voisinage réseau
2017-04-27 07:31 - 2017-04-27 07:31 - 00000000 _SHDL C:\Users\kapro\Voisinage d'impression
2017-04-27 07:31 - 2017-04-27 07:31 - 00000000 _SHDL C:\Users\kapro\Modèles
2017-04-27 07:31 - 2017-04-27 07:31 - 00000000 _SHDL C:\Users\kapro\Mes documents
2017-04-27 07:31 - 2017-04-27 07:31 - 00000000 _SHDL C:\Users\kapro\Menu Démarrer
2017-04-27 07:31 - 2017-04-27 07:31 - 00000000 _SHDL C:\Users\kapro\AppData\Local\Historique
2017-04-27 07:31 - 2017-04-27 07:31 - 00000000 _SHDL C:\Users\Default\Voisinage réseau
2017-04-27 07:31 - 2017-04-27 07:31 - 00000000 _SHDL C:\Users\Default\Voisinage d'impression
2017-04-27 07:31 - 2017-04-27 07:31 - 00000000 _SHDL C:\Users\Default\Modèles
2017-04-27 07:31 - 2017-04-27 07:31 - 00000000 _SHDL C:\Users\Default\Mes documents
2017-04-27 07:31 - 2017-04-27 07:31 - 00000000 _SHDL C:\Users\Default\Menu Démarrer
2017-04-27 07:31 - 2017-04-27 07:31 - 00000000 _SHDL C:\Users\Default\Documents\Mes vidéos
2017-04-27 07:31 - 2017-04-27 07:31 - 00000000 _SHDL C:\Users\Default\Documents\Mes images
2017-04-27 07:31 - 2017-04-27 07:31 - 00000000 _SHDL C:\Users\Default\Documents\Ma musique
2017-04-27 07:31 - 2017-04-27 07:31 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programmes
2017-04-27 07:31 - 2017-04-27 07:31 - 00000000 _SHDL C:\Users\Default\AppData\Local\Historique
2017-04-27 07:31 - 2017-04-27 07:31 - 00000000 _SHDL C:\Users\Default User\Documents\Mes vidéos
2017-04-27 07:31 - 2017-04-27 07:31 - 00000000 _SHDL C:\Users\Default User\Documents\Mes images
2017-04-27 07:31 - 2017-04-27 07:31 - 00000000 _SHDL C:\Users\Default User\Documents\Ma musique
2017-04-27 07:31 - 2017-04-27 07:31 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programmes
2017-04-27 07:31 - 2017-04-27 07:31 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Historique
2017-04-27 07:31 - 2017-04-27 07:31 - 00000000 _SHDL C:\ProgramData\Modèles
2017-04-27 07:31 - 2017-04-27 07:31 - 00000000 _SHDL C:\ProgramData\Microsoft\Windows\Start Menu\Programmes
2017-04-27 07:31 - 2017-04-27 07:31 - 00000000 _SHDL C:\ProgramData\Menu Démarrer
2017-04-27 07:31 - 2017-04-27 07:31 - 00000000 _SHDL C:\ProgramData\Favoris
2017-04-27 07:31 - 2017-04-27 07:31 - 00000000 _SHDL C:\ProgramData\Bureau
2017-04-27 07:31 - 2017-04-27 07:31 - 00000000 _SHDL C:\Program Files\Fichiers communs
2017-04-27 07:31 - 2017-04-27 07:31 - 00000000 __SDL C:\Users\kapro\Documents\Mes vidéos
2017-04-27 07:31 - 2017-04-27 07:31 - 00000000 __SDL C:\Users\kapro\Documents\Mes images
2017-04-27 07:31 - 2017-04-27 07:31 - 00000000 __SDL C:\Users\kapro\Documents\Ma musique
2017-04-27 07:31 - 2017-04-27 07:31 - 00000000 __SDL C:\Users\kapro\AppData\Roaming\Microsoft\Windows\Start Menu\Programmes
2017-04-27 07:31 - 2017-04-27 07:31 - 00000000 ____D C:\Users\kapro\AppData\Local\VirtualStore
2017-04-27 07:31 - 2009-07-14 11:00 - 00000000 ____D C:\Users\kapro\AppData\Roaming\Media Center Programs
2017-04-27 07:18 - 2017-04-27 07:18 - 00001345 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Center.lnk
2017-04-27 07:18 - 2017-04-27 07:18 - 00001326 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows DVD Maker.lnk
2017-04-26 18:59 - 2016-10-17 17:35 - 00147120 _____ (Tonec Inc.) C:\Windows\system32\Drivers\idmwfp.sys
==================== Un mois - Modifiés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2017-05-05 00:51 - 2009-07-14 10:39 - 00749000 _____ C:\Windows\system32\perfh00C.dat
2017-05-05 00:51 - 2009-07-14 10:39 - 00150280 _____ C:\Windows\system32\perfc00C.dat
2017-05-05 00:51 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\inf
2017-05-05 00:49 - 2009-07-14 06:34 - 00019568 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2017-05-05 00:49 - 2009-07-14 06:34 - 00019568 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2017-05-05 00:43 - 2009-07-14 06:53 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2017-05-03 17:58 - 2009-07-14 06:33 - 00433072 _____ C:\Windows\system32\FNTCACHE.DAT
2017-05-03 01:22 - 2009-07-14 04:37 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2017-05-03 01:16 - 2009-07-14 04:37 - 00000000 ____D C:\Program Files\Common Files\System
2017-05-03 01:16 - 2009-07-14 04:04 - 00000478 _____ C:\Windows\win.ini
2017-04-30 01:43 - 2009-07-14 06:52 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2017-04-29 19:11 - 2009-08-16 17:30 - 01279032 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2017-04-29 16:15 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\system32\NDF
2017-04-27 18:01 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\rescache
2017-04-27 14:19 - 2009-07-14 11:01 - 00000000 ____D C:\Windows\ShellNew
2017-04-27 11:48 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\system
2017-04-27 11:19 - 2009-07-14 06:52 - 00000000 ____D C:\Program Files\MSBuild
2017-04-27 11:18 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\system32\GroupPolicy
2017-04-27 08:15 - 2009-07-14 06:52 - 00028672 _____ C:\Windows\system32\config\BCD-Template
2017-04-27 07:31 - 2009-07-14 04:37 - 00000000 ____D C:\Program Files\Windows NT
2017-04-27 07:18 - 2009-08-16 17:31 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Virtual PC
2017-04-27 07:18 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\system32\sysprep
2017-04-27 07:16 - 2009-07-14 11:01 - 00000000 ____D C:\Windows\CSC
==================== Fichiers à la racine de certains dossiers =======
2017-04-27 11:22 - 2017-04-27 11:22 - 0070800 _____ () C:\Users\kapro\AppData\Local\Config.xml
2017-04-27 11:22 - 2017-04-27 11:22 - 0019008 _____ () C:\Users\kapro\AppData\Local\InstallationConfiguration.xml
2017-04-27 11:22 - 2017-04-27 11:22 - 0005568 _____ () C:\Users\kapro\AppData\Local\md.xml
2017-04-27 11:22 - 2017-04-27 11:22 - 1894851 _____ () C:\Users\kapro\AppData\Local\Templax.tst
2017-04-27 11:23 - 2017-04-27 11:23 - 0001150 _____ () C:\Users\kapro\AppData\Local\uninstall_temp.ico
2017-04-27 12:12 - 2017-04-27 12:13 - 0000132 _____ () C:\ProgramData\log.binb
2017-04-27 11:19 - 2017-04-27 12:12 - 0000128 _____ () C:\ProgramData\log.ewbb
2017-04-27 11:19 - 2017-04-27 12:12 - 0011781 _____ () C:\ProgramData\log.ewbt
Fichiers à déplacer ou supprimer:
====================
C:\Users\kapro\ZHPDiag3.exe
==================== Bamital & volsnap ======================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
C:\Windows\explorer.exe => Le fichier est signé numériquement
C:\Windows\system32\winlogon.exe => Le fichier est signé numériquement
C:\Windows\system32\wininit.exe => Le fichier est signé numériquement
C:\Windows\system32\svchost.exe => Le fichier est signé numériquement
C:\Windows\system32\services.exe => Le fichier est signé numériquement
C:\Windows\system32\User32.dll => Le fichier est signé numériquement
C:\Windows\system32\userinit.exe => Le fichier est signé numériquement
C:\Windows\system32\rpcss.dll => Le fichier est signé numériquement
C:\Windows\system32\dnsapi.dll => Le fichier est signé numériquement
C:\Windows\system32\Drivers\volsnap.sys => Le fichier est signé numériquement
testsigning: ==> 'testsigning' est activé. Rechercher un éventuel pilote non signé <===== ATTENTION
LastRegBack: 2017-04-27 13:53
==================== Fin de FRST.txt ============================