FRST.txt

Cliquez pour partager vos propres fichiers

Format du document : text/plain

Prévisualisation

Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x86) Version: 11-07-2017
Exécuté par Shira (administrateur) sur KALALE (13-07-2017 00:53:35)
Exécuté depuis C:\Users\Shira\Desktop\fixlist.txt
Profils chargés: Shira & (Profils disponibles: Shira)
Platform: Microsoft Windows 8.1 (Update) (X86) Langue: Français (France)
Internet Explorer Version 11 (Navigateur par défaut: Chrome)
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processus (Avec liste blanche) =================

(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)

(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\stacsv.exe
(Hewlett-Packard Company) C:\Windows\System32\hpservice.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\Antivirus\sched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\Antivirus\avguard.exe
() C:\Program Files\ExpressVPN\bootstrap\x86\nssm.exe
() C:\Program Files\ExpressVPN\xvpnd\xvpnd.exe
() C:\ProgramData\DataCardService\HWDeviceService.exe
() C:\ProgramData\MobileBrServ\mbbService.exe
() C:\ProgramData\MTN Online\OnlineUpdate\ouc.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(AVAST Software) C:\Program Files\AVAST Software\SecureLine\VpnSvc.exe
(Windscribe Limited) C:\Program Files\Windscribe\WindscribeService.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\Launcher\Avira.ServiceHost.exe
(CyberGhost S.R.L) C:\Program Files\CyberGhost 6\CyberGhost.Service.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
() C:\Program Files\ibVPN\ibVPN.service.exe
(Huawei Technologies Co., Ltd.) C:\ProgramData\DataCardService\DCSHelper.exe
(Google Inc.) C:\Program Files\Google\Update\1.3.33.5\GoogleCrashHandler.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\Antivirus\avshadow.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\Antivirus\avgnt.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(CyberLink Corp.) C:\Program Files\CyberLink\YouCam\YouCamTray.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\sttray.exe
(Picosmos) C:\Program Files\PicosmosTools\PicosmosTools.exe
(© 2015 Microsoft Corporation) C:\Users\Shira\AppData\Local\Microsoft\BingSvc\BingSvc.exe
(CyberGhost S.R.L.) C:\Program Files\CyberGhost 6\CyberGhost.exe
(Tonec Inc.) C:\Program Files\Internet Download Manager\IDMan.exe
(AVAST Software) C:\Program Files\AVAST Software\SecureLine\SecureLine.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Tonec Inc.) C:\Program Files\Internet Download Manager\IEMonitor.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\Launcher\Avira.Systray.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\WinSxS\x86_microsoft-windows-servicingstack_31bf3856ad364e35_6.3.9600.18384_none_9dfef83fe2e442e4\TiWorker.exe
(Microsoft Corporation) C:\Windows\System32\msfeedssync.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\ielowutil.exe

==================== Registre (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)

HKLM\...\Run: [avgnt] => C:\Program Files\Avira\Antivirus\avgnt.exe [918008 2017-06-18] (Avira Operations GmbH & Co. KG)
HKLM\...\Run: [Avira SystrayStartTrigger] => C:\Program Files\Avira\Launcher\Avira.SystrayStartTrigger.exe [97512 2017-06-13] (Avira Operations GmbH & Co. KG)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2350392 2012-08-28] (Synaptics Incorporated)
HKLM\...\Run: [UCam_Menu] => C:\Program Files\CyberLink\YouCam\MUITransfer\MUIStartMenu.exe [222504 2009-05-19] (CyberLink Corp.)
HKLM\...\Run: [YouCam Mirror Tray icon] => C:\Program Files\CyberLink\YouCam\YouCamTray.exe [162912 2009-06-11] (CyberLink Corp.)
HKLM\...\Run: [SysTrayApp] => C:\Program Files\IDT\WDM\sttray.exe [1704028 2013-12-04] (IDT, Inc.)
HKLM\...\Run: [Malwarebytes TrayApp] => C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\mbamtray.exe [3146704 2017-05-09] (Malwarebytes)
HKU\S-1-5-21-1371547767-2442488809-1396653410-1001\...\Run: [Picosmos] => C:\Program Files\PicosmosTools\PicosmosTools.exe [5657072 2016-03-19] (Picosmos)
HKU\S-1-5-21-1371547767-2442488809-1396653410-1001\...\Run: [BingSvc] => C:\Users\Shira\AppData\Local\Microsoft\BingSvc\BingSvc.exe [144008 2015-11-05] (© 2015 Microsoft Corporation)
HKU\S-1-5-21-1371547767-2442488809-1396653410-1001\...\Run: [CyberGhost] => C:\Program Files\CyberGhost 6\CyberGhost.exe [1191472 2017-03-08] (CyberGhost S.R.L.)
HKU\S-1-5-21-1371547767-2442488809-1396653410-1001\...\Run: [Mobile Partner] => C:\Program Files\MobileWiFi\MobileWiFi
HKU\S-1-5-21-1371547767-2442488809-1396653410-1001\...\Run: [Windscribe] => C:\Program Files\Windscribe\Windscribe.exe [10601064 2017-05-09] (Windscribe Limited)
HKU\S-1-5-21-1371547767-2442488809-1396653410-1001\...\Run: [IDMan] => C:\Program Files\Internet Download Manager\IDMan.exe [4019312 2017-06-28] (Tonec Inc.)
HKU\S-1-5-21-1371547767-2442488809-1396653410-1001\...\MountPoints2: {0e331dfa-e417-11e6-b045-28924a42a9e2} - "I:\AutoRun.exe"
HKU\S-1-5-21-1371547767-2442488809-1396653410-1001\...\MountPoints2: {0e331e26-e417-11e6-b045-28924a42a9e2} - "D:\AutoRun.exe"
HKU\S-1-5-21-1371547767-2442488809-1396653410-1001\...\MountPoints2: {0e332474-e417-11e6-b045-28924a42a9e2} - "I:\AutoRun.exe"
HKU\S-1-5-21-1371547767-2442488809-1396653410-1001\...\MountPoints2: {0e3324f2-e417-11e6-b045-28924a42a9e2} - "D:\AutoRun.exe"
HKU\S-1-5-21-1371547767-2442488809-1396653410-1001\...\MountPoints2: {152c6d0b-3dc9-11e6-afba-28924a42a9e2} - "D:\AutoRun.exe"
HKU\S-1-5-21-1371547767-2442488809-1396653410-1001\...\MountPoints2: {152c6d6c-3dc9-11e6-afba-28924a42a9e2} - "D:\AutoRun.exe"
HKU\S-1-5-21-1371547767-2442488809-1396653410-1001\...\MountPoints2: {152c6d91-3dc9-11e6-afba-28924a42a9e2} - "D:\AutoRun.exe"
HKU\S-1-5-21-1371547767-2442488809-1396653410-1001\...\MountPoints2: {1ac282b6-0a1a-11e6-afb4-28924a42a9e2} - "D:\AutoRun.exe"
HKU\S-1-5-21-1371547767-2442488809-1396653410-1001\...\MountPoints2: {1ac282fe-0a1a-11e6-afb4-28924a42a9e2} - "D:\AutoRun.exe"
HKU\S-1-5-21-1371547767-2442488809-1396653410-1001\...\MountPoints2: {1ac2846a-0a1a-11e6-afb4-28924a42a9e2} - "D:\AutoRun.exe"
HKU\S-1-5-21-1371547767-2442488809-1396653410-1001\...\MountPoints2: {2751c40b-196e-11e7-b083-28924a42a9e2} - "F:\autorun.exe"
HKU\S-1-5-21-1371547767-2442488809-1396653410-1001\...\MountPoints2: {27d40a6a-6647-11e7-b0ed-28924a42a9e2} - "F:\AutoRun.exe"
HKU\S-1-5-21-1371547767-2442488809-1396653410-1001\...\MountPoints2: {55ee82d8-aec1-11e6-b009-28924a42a9e2} - "D:\AutoRun.exe"
HKU\S-1-5-21-1371547767-2442488809-1396653410-1001\...\MountPoints2: {6f82f9bd-63bf-11e6-afc3-28924a42a9e2} - "D:\AutoRun.exe"
HKU\S-1-5-21-1371547767-2442488809-1396653410-1001\...\MountPoints2: {6f82f9e2-63bf-11e6-afc3-28924a42a9e2} - "D:\AutoRun.exe"
HKU\S-1-5-21-1371547767-2442488809-1396653410-1001\...\MountPoints2: {6f82fa85-63bf-11e6-afc3-28924a42a9e2} - "D:\AutoRun.exe"
HKU\S-1-5-21-1371547767-2442488809-1396653410-1001\...\MountPoints2: {91003645-36d6-11e6-afba-28924a42a9e2} - "D:\autorun.exe"
HKU\S-1-5-21-1371547767-2442488809-1396653410-1001\...\MountPoints2: {9c2b764c-def0-11e6-b03a-28924a42a9e2} - "I:\AutoRun.exe"
HKU\S-1-5-21-1371547767-2442488809-1396653410-1001\...\MountPoints2: {9c2b7663-def0-11e6-b03a-28924a42a9e2} - "D:\AutoRun.exe"
HKU\S-1-5-21-1371547767-2442488809-1396653410-1001\...\MountPoints2: {bbb05b1d-64e7-11e7-b0e7-28924a42a9e2} - "H:\AutoRun.exe"
HKU\S-1-5-21-1371547767-2442488809-1396653410-1001\...\MountPoints2: {d9cfdff5-5d73-11e7-b0e0-28924a42a9e2} - "H:\AutoRun.exe"
HKU\S-1-5-21-1371547767-2442488809-1396653410-1001\...\MountPoints2: {e873f04e-8259-11e6-afd5-28924a42a9e2} - "H:\VZW_Software_upgrade_assistant.exe"
HKU\S-1-5-21-1371547767-2442488809-1396653410-1001\...\MountPoints2: {ef5c38e7-f53f-11e6-b04d-28924a42a9e2} - "H:\AutoRun.exe"
HKU\S-1-5-21-1371547767-2442488809-1396653410-1001\...\MountPoints2: {f3379297-1724-11e7-b07c-28924a42a9e2} - "H:\AutoRun.exe"
HKU\S-1-5-21-1371547767-2442488809-1396653410-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-07122017154835500\...\Run: [Picosmos] => C:\Program Files\PicosmosTools\PicosmosTools.exe [5657072 2016-03-19] (Picosmos)
HKU\S-1-5-21-1371547767-2442488809-1396653410-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-07122017154835500\...\Run: [BingSvc] => C:\Users\Shira\AppData\Local\Microsoft\BingSvc\BingSvc.exe [144008 2015-11-05] (© 2015 Microsoft Corporation)
HKU\S-1-5-21-1371547767-2442488809-1396653410-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-07122017154835500\...\Run: [CyberGhost] => C:\Program Files\CyberGhost 6\CyberGhost.exe [1191472 2017-03-08] (CyberGhost S.R.L.)
HKU\S-1-5-21-1371547767-2442488809-1396653410-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-07122017154835500\...\Run: [Mobile Partner] => C:\Program Files\MobileWiFi\MobileWiFi
HKU\S-1-5-21-1371547767-2442488809-1396653410-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-07122017154835500\...\Run: [Windscribe] => C:\Program Files\Windscribe\Windscribe.exe [10601064 2017-05-09] (Windscribe Limited)
HKU\S-1-5-21-1371547767-2442488809-1396653410-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-07122017154835500\...\Run: [IDMan] => C:\Program Files\Internet Download Manager\IDMan.exe [4019312 2017-06-28] (Tonec Inc.)
HKU\S-1-5-21-1371547767-2442488809-1396653410-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-07122017154835500\...\MountPoints2: {0e331dfa-e417-11e6-b045-28924a42a9e2} - "I:\AutoRun.exe"
HKU\S-1-5-21-1371547767-2442488809-1396653410-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-07122017154835500\...\MountPoints2: {0e331e26-e417-11e6-b045-28924a42a9e2} - "D:\AutoRun.exe"
HKU\S-1-5-21-1371547767-2442488809-1396653410-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-07122017154835500\...\MountPoints2: {0e332474-e417-11e6-b045-28924a42a9e2} - "I:\AutoRun.exe"
HKU\S-1-5-21-1371547767-2442488809-1396653410-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-07122017154835500\...\MountPoints2: {0e3324f2-e417-11e6-b045-28924a42a9e2} - "D:\AutoRun.exe"
HKU\S-1-5-21-1371547767-2442488809-1396653410-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-07122017154835500\...\MountPoints2: {152c6d0b-3dc9-11e6-afba-28924a42a9e2} - "D:\AutoRun.exe"
HKU\S-1-5-21-1371547767-2442488809-1396653410-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-07122017154835500\...\MountPoints2: {152c6d6c-3dc9-11e6-afba-28924a42a9e2} - "D:\AutoRun.exe"
HKU\S-1-5-21-1371547767-2442488809-1396653410-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-07122017154835500\...\MountPoints2: {152c6d91-3dc9-11e6-afba-28924a42a9e2} - "D:\AutoRun.exe"
HKU\S-1-5-21-1371547767-2442488809-1396653410-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-07122017154835500\...\MountPoints2: {1ac282b6-0a1a-11e6-afb4-28924a42a9e2} - "D:\AutoRun.exe"
HKU\S-1-5-21-1371547767-2442488809-1396653410-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-07122017154835500\...\MountPoints2: {1ac282fe-0a1a-11e6-afb4-28924a42a9e2} - "D:\AutoRun.exe"
HKU\S-1-5-21-1371547767-2442488809-1396653410-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-07122017154835500\...\MountPoints2: {1ac2846a-0a1a-11e6-afb4-28924a42a9e2} - "D:\AutoRun.exe"
HKU\S-1-5-21-1371547767-2442488809-1396653410-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-07122017154835500\...\MountPoints2: {2751c40b-196e-11e7-b083-28924a42a9e2} - "F:\autorun.exe"
HKU\S-1-5-21-1371547767-2442488809-1396653410-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-07122017154835500\...\MountPoints2: {27d40a6a-6647-11e7-b0ed-28924a42a9e2} - "F:\AutoRun.exe"
HKU\S-1-5-21-1371547767-2442488809-1396653410-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-07122017154835500\...\MountPoints2: {55ee82d8-aec1-11e6-b009-28924a42a9e2} - "D:\AutoRun.exe"
HKU\S-1-5-21-1371547767-2442488809-1396653410-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-07122017154835500\...\MountPoints2: {6f82f9bd-63bf-11e6-afc3-28924a42a9e2} - "D:\AutoRun.exe"
HKU\S-1-5-21-1371547767-2442488809-1396653410-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-07122017154835500\...\MountPoints2: {6f82f9e2-63bf-11e6-afc3-28924a42a9e2} - "D:\AutoRun.exe"
HKU\S-1-5-21-1371547767-2442488809-1396653410-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-07122017154835500\...\MountPoints2: {6f82fa85-63bf-11e6-afc3-28924a42a9e2} - "D:\AutoRun.exe"
HKU\S-1-5-21-1371547767-2442488809-1396653410-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-07122017154835500\...\MountPoints2: {91003645-36d6-11e6-afba-28924a42a9e2} - "D:\autorun.exe"
HKU\S-1-5-21-1371547767-2442488809-1396653410-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-07122017154835500\...\MountPoints2: {9c2b764c-def0-11e6-b03a-28924a42a9e2} - "I:\AutoRun.exe"
HKU\S-1-5-21-1371547767-2442488809-1396653410-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-07122017154835500\...\MountPoints2: {9c2b7663-def0-11e6-b03a-28924a42a9e2} - "D:\AutoRun.exe"
HKU\S-1-5-21-1371547767-2442488809-1396653410-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-07122017154835500\...\MountPoints2: {bbb05b1d-64e7-11e7-b0e7-28924a42a9e2} - "H:\AutoRun.exe"
HKU\S-1-5-21-1371547767-2442488809-1396653410-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-07122017154835500\...\MountPoints2: {d9cfdff5-5d73-11e7-b0e0-28924a42a9e2} - "H:\AutoRun.exe"
HKU\S-1-5-21-1371547767-2442488809-1396653410-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-07122017154835500\...\MountPoints2: {e873f04e-8259-11e6-afd5-28924a42a9e2} - "H:\VZW_Software_upgrade_assistant.exe"
HKU\S-1-5-21-1371547767-2442488809-1396653410-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-07122017154835500\...\MountPoints2: {ef5c38e7-f53f-11e6-b04d-28924a42a9e2} - "H:\AutoRun.exe"
HKU\S-1-5-21-1371547767-2442488809-1396653410-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-07122017154835500\...\MountPoints2: {f3379297-1724-11e7-b07c-28924a42a9e2} - "H:\AutoRun.exe"
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\avast! SecureLine.lnk [2017-02-01]
ShortcutTarget: avast! SecureLine.lnk -> C:\Program Files\AVAST Software\SecureLine\SecureLine.exe (AVAST Software)
BootExecute: autocheck autochk /m /P \Device\HarddiskVolume28autocheck autochk *

==================== Internet (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 192.168.1.1
Tcpip\..\Interfaces\{020EC4E9-3F68-42CC-B179-08D185CF3DBB}: [DhcpNameServer] 192.168.1.1 192.168.1.1
Tcpip\..\Interfaces\{5B6A7FF9-CB15-44FD-8931-47F482CC5E24}: [DhcpNameServer] 192.168.1.1 192.168.1.1
Tcpip\..\Interfaces\{9884864C-3AF7-4B20-960E-E16F9C0A9E9D}: [NameServer] 77.234.40.79
Tcpip\..\Interfaces\{AE9BB001-28E7-4155-8847-67B70E722463}: [DhcpNameServer] 192.168.1.1 192.168.1.1
Tcpip\..\Interfaces\{BDF47A74-1A10-45F4-B7C1-0A51D685FBDD}: [DhcpNameServer] 10.34.0.1
Tcpip\..\Interfaces\{C49BE91D-9498-4B72-BB14-1F838A4EF907}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{EDCC0555-288E-4DC1-BE16-AE596D6145BE}: [DhcpNameServer] 10.111.166.1
Tcpip\..\Interfaces\{EE2CAE3A-9F27-4586-8DF5-A0E667A84BDF}: [DhcpNameServer] 192.168.1.1 192.168.1.1

Internet Explorer:
==================
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: IDM integration (IDMIEHlprObj Class) -> {0055C089-8582-441B-A0BF-17B458C2A3A8} -> C:\Program Files\Internet Download Manager\IDMIECC.dll [2017-06-23] (Internet Download Manager, Tonec Inc.)
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2010-03-25] (Microsoft Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2010-02-28] (Microsoft Corporation)

FireFox:
========
FF DefaultProfile: oy9ijw7f.default-1498163761264
FF ProfilePath: C:\Users\Shira\AppData\Roaming\Mozilla\Firefox\Profiles\oy9ijw7f.default-1498163761264 [2017-07-12]
FF NetworkProxy: Mozilla\Firefox\Profiles\oy9ijw7f.default-1498163761264 -> socks", "127.0.0.1"
FF NetworkProxy: Mozilla\Firefox\Profiles\oy9ijw7f.default-1498163761264 -> socks_port", 9951
FF NetworkProxy: Mozilla\Firefox\Profiles\oy9ijw7f.default-1498163761264 -> type", 0
FF HKU\S-1-5-21-1371547767-2442488809-1396653410-1001\...\Firefox\Extensions: [mozilla_cc3@internetdownloadmanager.com] - C:\Program Files\Internet Download Manager\idmmzcc3.xpi
FF Extension: (Pas de nom) - C:\Program Files\Internet Download Manager\idmmzcc3.xpi [2017-06-28]
FF HKU\S-1-5-21-1371547767-2442488809-1396653410-1001\...\SeaMonkey\Extensions: [mozilla_cc@internetdownloadmanager.com] - C:\Users\Shira\AppData\Roaming\IDM\idmmzcc5
FF Extension: (IDM CC) - C:\Users\Shira\AppData\Roaming\IDM\idmmzcc5 [2017-07-04] [non signé]
FF HKU\S-1-5-21-1371547767-2442488809-1396653410-1001\...\SeaMonkey\Extensions: [mozilla_cc2@internetdownloadmanager.com] - C:\Program Files\Internet Download Manager\idmmzcc2.xpi
FF Extension: (IDM integration) - C:\Program Files\Internet Download Manager\idmmzcc2.xpi [2017-01-26]
FF HKU\S-1-5-21-1371547767-2442488809-1396653410-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-07122017154835500\...\Firefox\Extensions: [mozilla_cc3@internetdownloadmanager.com] - C:\Program Files\Internet Download Manager\idmmzcc3.xpi
FF HKU\S-1-5-21-1371547767-2442488809-1396653410-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-07122017154835500\...\SeaMonkey\Extensions: [mozilla_cc@internetdownloadmanager.com] - C:\Users\Shira\AppData\Roaming\IDM\idmmzcc5
FF HKU\S-1-5-21-1371547767-2442488809-1396653410-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-07122017154835500\...\SeaMonkey\Extensions: [mozilla_cc2@internetdownloadmanager.com] - C:\Program Files\Internet Download Manager\idmmzcc2.xpi
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-07-11] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-07-11] (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.2.2 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-01-21] (VideoLAN)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2017-03-28] (Adobe Systems Inc.)

Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Shira\AppData\Local\Google\Chrome\User Data\Default [2017-07-13]
CHR Extension: (Google Slides) - C:\Users\Shira\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-07-11]
CHR Extension: (Google Docs) - C:\Users\Shira\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-07-11]
CHR Extension: (Google Drive) - C:\Users\Shira\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-07-11]
CHR Extension: (YouTube) - C:\Users\Shira\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-07-11]
CHR Extension: (Google Sheets) - C:\Users\Shira\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-07-11]
CHR Extension: (Google Docs hors connexion) - C:\Users\Shira\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-07-12]
CHR Extension: (Unlimited Free VPN - Hola) - C:\Users\Shira\AppData\Local\Google\Chrome\User Data\Default\Extensions\gkojfkhlekighikafcpjkiklfbnlmeio [2017-07-12]
CHR Extension: (Messenger (Unofficial)) - C:\Users\Shira\AppData\Local\Google\Chrome\User Data\Default\Extensions\mdapmeleikeppmfgadilffngabfpibok [2017-07-12]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Shira\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-07-11]
CHR Extension: (Gmail) - C:\Users\Shira\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-07-11]
CHR Extension: (Chrome Media Router) - C:\Users\Shira\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-07-11]
CHR Profile: C:\Users\Shira\AppData\Local\Google\Chrome\User Data\Profile 1 [2017-07-13]
CHR Extension: (Google Slides) - C:\Users\Shira\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-07-11]
CHR Extension: (Google Docs) - C:\Users\Shira\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake [2017-07-11]
CHR Extension: (Google Sheets) - C:\Users\Shira\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-07-11]
CHR Extension: (Google Docs hors connexion) - C:\Users\Shira\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-07-11]
CHR Extension: (Chrome Media Router) - C:\Users\Shira\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-07-11]
CHR Profile: C:\Users\Shira\AppData\Local\Google\Chrome\User Data\Profile 10 [2017-01-16]
CHR Extension: (Google Slides) - C:\Users\Shira\AppData\Local\Google\Chrome\User Data\Profile 10\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-11-03]
CHR Extension: (Google Docs) - C:\Users\Shira\AppData\Local\Google\Chrome\User Data\Profile 10\Extensions\aohghmighlieiainnegkcijnfilokake [2016-11-05]
CHR Extension: (Google Drive) - C:\Users\Shira\AppData\Local\Google\Chrome\User Data\Profile 10\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-11-05]
CHR Extension: (YouTube) - C:\Users\Shira\AppData\Local\Google\Chrome\User Data\Profile 10\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-11-05]
CHR Extension: (Google Sheets) - C:\Users\Shira\AppData\Local\Google\Chrome\User Data\Profile 10\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-11-03]
CHR Extension: (Google Docs hors connexion) - C:\Users\Shira\AppData\Local\Google\Chrome\User Data\Profile 10\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-11-05]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Shira\AppData\Local\Google\Chrome\User Data\Profile 10\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-11-03]
CHR Extension: (Gmail) - C:\Users\Shira\AppData\Local\Google\Chrome\User Data\Profile 10\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-11-05]
CHR Extension: (Chrome Media Router) - C:\Users\Shira\AppData\Local\Google\Chrome\User Data\Profile 10\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-12-18]
CHR Profile: C:\Users\Shira\AppData\Local\Google\Chrome\User Data\Profile 11 [2016-11-25]
CHR Extension: (Google Slides) - C:\Users\Shira\AppData\Local\Google\Chrome\User Data\Profile 11\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-11-25]
CHR Extension: (Docs) - C:\Users\Shira\AppData\Local\Google\Chrome\User Data\Profile 11\Extensions\aohghmighlieiainnegkcijnfilokake [2016-11-25]
CHR Extension: (Google Drive) - C:\Users\Shira\AppData\Local\Google\Chrome\User Data\Profile 11\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-11-25]
CHR Extension: (YouTube) - C:\Users\Shira\AppData\Local\Google\Chrome\User Data\Profile 11\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-11-25]
CHR Extension: (Bing) - C:\Users\Shira\AppData\Local\Google\Chrome\User Data\Profile 11\Extensions\fcfenmboojpjinhpgggodefccipikbpd [2016-11-25]
CHR Extension: (Google Sheets) - C:\Users\Shira\AppData\Local\Google\Chrome\User Data\Profile 11\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-11-25]
CHR Extension: (Google Docs hors connexion) - C:\Users\Shira\AppData\Local\Google\Chrome\User Data\Profile 11\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-11-25]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Shira\AppData\Local\Google\Chrome\User Data\Profile 11\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-11-25]
CHR Extension: (Gmail) - C:\Users\Shira\AppData\Local\Google\Chrome\User Data\Profile 11\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-11-25]
CHR Extension: (Chrome Media Router) - C:\Users\Shira\AppData\Local\Google\Chrome\User Data\Profile 11\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-11-25]
CHR Profile: C:\Users\Shira\AppData\Local\Google\Chrome\User Data\Profile 12 [2017-04-19]
CHR Extension: (Google Slides) - C:\Users\Shira\AppData\Local\Google\Chrome\User Data\Profile 12\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-11-25]
CHR Extension: (Google Docs) - C:\Users\Shira\AppData\Local\Google\Chrome\User Data\Profile 12\Extensions\aohghmighlieiainnegkcijnfilokake [2016-11-25]
CHR Extension: (Google Drive) - C:\Users\Shira\AppData\Local\Google\Chrome\User Data\Profile 12\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-11-25]
CHR Extension: (YouTube) - C:\Users\Shira\AppData\Local\Google\Chrome\User Data\Profile 12\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-11-25]
CHR Extension: (Google Sheets) - C:\Users\Shira\AppData\Local\Google\Chrome\User Data\Profile 12\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-11-25]
CHR Extension: (Google Docs hors connexion) - C:\Users\Shira\AppData\Local\Google\Chrome\User Data\Profile 12\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-11-25]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Shira\AppData\Local\Google\Chrome\User Data\Profile 12\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-03-09]
CHR Extension: (Gmail) - C:\Users\Shira\AppData\Local\Google\Chrome\User Data\Profile 12\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-11-25]
CHR Extension: (Chrome Media Router) - C:\Users\Shira\AppData\Local\Google\Chrome\User Data\Profile 12\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-02-25]
CHR Profile: C:\Users\Shira\AppData\Local\Google\Chrome\User Data\Profile 2 [2017-07-11]
CHR Extension: (Google Slides) - C:\Users\Shira\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-04-10]
CHR Extension: (Google Docs) - C:\Users\Shira\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\aohghmighlieiainnegkcijnfilokake [2016-04-11]
CHR Extension: (Google Drive) - C:\Users\Shira\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-04-11]
CHR Extension: (YouTube) - C:\Users\Shira\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-04-11]
CHR Extension: (Google Sheets) - C:\Users\Shira\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-04-10]
CHR Extension: (Google Docs hors connexion) - C:\Users\Shira\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-04-11]
CHR Extension: (Save to Facebook) - C:\Users\Shira\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\jmfikkaogpplgnfjmbjdpalkhclendgd [2017-02-25]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Shira\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-03-09]
CHR Extension: (Gmail) - C:\Users\Shira\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-04-11]
CHR Extension: (Chrome Media Router) - C:\Users\Shira\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-07-06]
CHR Profile: C:\Users\Shira\AppData\Local\Google\Chrome\User Data\Profile 3 [2017-05-22]
CHR Extension: (Google Slides) - C:\Users\Shira\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-04-11]
CHR Extension: (Google Docs) - C:\Users\Shira\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\aohghmighlieiainnegkcijnfilokake [2016-04-12]
CHR Extension: (Google Drive) - C:\Users\Shira\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-04-12]
CHR Extension: (YouTube) - C:\Users\Shira\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-04-12]
CHR Extension: (ZenMate VPN - Sécurité internet & Unblock) - C:\Users\Shira\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\fdcgdnkidjaadafnichfpabhfomcebme [2017-05-10]
CHR Extension: (Google Sheets) - C:\Users\Shira\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-04-11]
CHR Extension: (Google Docs hors connexion) - C:\Users\Shira\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-04-12]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Shira\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-03-14]
CHR Extension: (Gmail) - C:\Users\Shira\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-04-12]
CHR Extension: (Chrome Media Router) - C:\Users\Shira\AppData\Local\Google\Chrome\User Data\Profile 3\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-05-17]
CHR Profile: C:\Users\Shira\AppData\Local\Google\Chrome\User Data\Profile 4 [2017-06-01]
CHR Extension: (Google Slides) - C:\Users\Shira\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-04-11]
CHR Extension: (Google Docs) - C:\Users\Shira\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\aohghmighlieiainnegkcijnfilokake [2016-04-12]
CHR Extension: (Google Drive) - C:\Users\Shira\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-04-12]
CHR Extension: (YouTube) - C:\Users\Shira\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-04-12]
CHR Extension: (Google Sheets) - C:\Users\Shira\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-04-11]
CHR Extension: (Google Docs hors connexion) - C:\Users\Shira\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-04-12]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Shira\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-03-12]
CHR Extension: (Gmail) - C:\Users\Shira\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-04-12]
CHR Extension: (Chrome Media Router) - C:\Users\Shira\AppData\Local\Google\Chrome\User Data\Profile 4\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-05-29]
CHR Profile: C:\Users\Shira\AppData\Local\Google\Chrome\User Data\Profile 5 [2017-07-11]
CHR Extension: (Google Slides) - C:\Users\Shira\AppData\Local\Google\Chrome\User Data\Profile 5\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-04-20]
CHR Extension: (Google Docs) - C:\Users\Shira\AppData\Local\Google\Chrome\User Data\Profile 5\Extensions\aohghmighlieiainnegkcijnfilokake [2016-04-21]
CHR Extension: (Google Drive) - C:\Users\Shira\AppData\Local\Google\Chrome\User Data\Profile 5\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-04-20]
CHR Extension: (YouTube) - C:\Users\Shira\AppData\Local\Google\Chrome\User Data\Profile 5\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-04-21]
CHR Extension: (Google Sheets) - C:\Users\Shira\AppData\Local\Google\Chrome\User Data\Profile 5\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-04-20]
CHR Extension: (Google Docs hors connexion) - C:\Users\Shira\AppData\Local\Google\Chrome\User Data\Profile 5\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-04-21]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Shira\AppData\Local\Google\Chrome\User Data\Profile 5\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-03-09]
CHR Extension: (Gmail) - C:\Users\Shira\AppData\Local\Google\Chrome\User Data\Profile 5\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-04-20]
CHR Extension: (Chrome Media Router) - C:\Users\Shira\AppData\Local\Google\Chrome\User Data\Profile 5\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-06-29]
CHR Profile: C:\Users\Shira\AppData\Local\Google\Chrome\User Data\Profile 6 [2017-05-03]
CHR Extension: (Google Slides) - C:\Users\Shira\AppData\Local\Google\Chrome\User Data\Profile 6\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-04-23]
CHR Extension: (Google Docs) - C:\Users\Shira\AppData\Local\Google\Chrome\User Data\Profile 6\Extensions\aohghmighlieiainnegkcijnfilokake [2016-04-23]
CHR Extension: (Google Drive) - C:\Users\Shira\AppData\Local\Google\Chrome\User Data\Profile 6\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-04-23]
CHR Extension: (YouTube) - C:\Users\Shira\AppData\Local\Google\Chrome\User Data\Profile 6\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-04-23]
CHR Extension: (ZenMate VPN - Sécurité internet & Unblock) - C:\Users\Shira\AppData\Local\Google\Chrome\User Data\Profile 6\Extensions\fdcgdnkidjaadafnichfpabhfomcebme [2017-03-24]
CHR Extension: (Google Sheets) - C:\Users\Shira\AppData\Local\Google\Chrome\User Data\Profile 6\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-04-23]
CHR Extension: (Google Docs hors connexion) - C:\Users\Shira\AppData\Local\Google\Chrome\User Data\Profile 6\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-04-27]
CHR Extension: (Unlimited Free VPN - Hola) - C:\Users\Shira\AppData\Local\Google\Chrome\User Data\Profile 6\Extensions\gkojfkhlekighikafcpjkiklfbnlmeio [2017-05-03]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Shira\AppData\Local\Google\Chrome\User Data\Profile 6\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-03-24]
CHR Extension: (Gmail) - C:\Users\Shira\AppData\Local\Google\Chrome\User Data\Profile 6\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-04-23]
CHR Extension: (Chrome Media Router) - C:\Users\Shira\AppData\Local\Google\Chrome\User Data\Profile 6\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-04-10]
CHR Profile: C:\Users\Shira\AppData\Local\Google\Chrome\User Data\Profile 7 [2017-07-11]
CHR Extension: (Google Slides) - C:\Users\Shira\AppData\Local\Google\Chrome\User Data\Profile 7\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-05-31]
CHR Extension: (Google Docs) - C:\Users\Shira\AppData\Local\Google\Chrome\User Data\Profile 7\Extensions\aohghmighlieiainnegkcijnfilokake [2016-06-10]
CHR Extension: (Google Drive) - C:\Users\Shira\AppData\Local\Google\Chrome\User Data\Profile 7\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-06-10]
CHR Extension: (YouTube) - C:\Users\Shira\AppData\Local\Google\Chrome\User Data\Profile 7\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-06-10]
CHR Extension: (Google Sheets) - C:\Users\Shira\AppData\Local\Google\Chrome\User Data\Profile 7\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-05-31]
CHR Extension: (Google Docs hors connexion) - C:\Users\Shira\AppData\Local\Google\Chrome\User Data\Profile 7\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-08-03]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Shira\AppData\Local\Google\Chrome\User Data\Profile 7\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-03-19]
CHR Extension: (Gmail) - C:\Users\Shira\AppData\Local\Google\Chrome\User Data\Profile 7\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-06-10]
CHR Extension: (Chrome Media Router) - C:\Users\Shira\AppData\Local\Google\Chrome\User Data\Profile 7\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-06-29]
CHR Profile: C:\Users\Shira\AppData\Local\Google\Chrome\User Data\Profile 8 [2017-07-11]
CHR Extension: (Google Slides) - C:\Users\Shira\AppData\Local\Google\Chrome\User Data\Profile 8\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-08-25]
CHR Extension: (Google Docs) - C:\Users\Shira\AppData\Local\Google\Chrome\User Data\Profile 8\Extensions\aohghmighlieiainnegkcijnfilokake [2016-08-25]
CHR Extension: (Google Drive) - C:\Users\Shira\AppData\Local\Google\Chrome\User Data\Profile 8\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-08-25]
CHR Extension: (YouTube) - C:\Users\Shira\AppData\Local\Google\Chrome\User Data\Profile 8\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-08-25]
CHR Extension: (ZenMate VPN - Sécurité internet & Unblock) - C:\Users\Shira\AppData\Local\Google\Chrome\User Data\Profile 8\Extensions\fdcgdnkidjaadafnichfpabhfomcebme [2017-05-23]
CHR Extension: (Google Sheets) - C:\Users\Shira\AppData\Local\Google\Chrome\User Data\Profile 8\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-08-25]
CHR Extension: (Google Docs hors connexion) - C:\Users\Shira\AppData\Local\Google\Chrome\User Data\Profile 8\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-09-01]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Shira\AppData\Local\Google\Chrome\User Data\Profile 8\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-03-27]
CHR Extension: (Gmail) - C:\Users\Shira\AppData\Local\Google\Chrome\User Data\Profile 8\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-08-25]
CHR Extension: (Chrome Media Router) - C:\Users\Shira\AppData\Local\Google\Chrome\User Data\Profile 8\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-07-11]
CHR Profile: C:\Users\Shira\AppData\Local\Google\Chrome\User Data\Profile 9 [2017-01-16]
CHR Extension: (Google Slides) - C:\Users\Shira\AppData\Local\Google\Chrome\User Data\Profile 9\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-11-03]
CHR Extension: (Google Docs) - C:\Users\Shira\AppData\Local\Google\Chrome\User Data\Profile 9\Extensions\aohghmighlieiainnegkcijnfilokake [2016-11-05]
CHR Extension: (Google Drive) - C:\Users\Shira\AppData\Local\Google\Chrome\User Data\Profile 9\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-11-05]
CHR Extension: (YouTube) - C:\Users\Shira\AppData\Local\Google\Chrome\User Data\Profile 9\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-11-05]
CHR Extension: (Google Sheets) - C:\Users\Shira\AppData\Local\Google\Chrome\User Data\Profile 9\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-11-03]
CHR Extension: (Google Docs hors connexion) - C:\Users\Shira\AppData\Local\Google\Chrome\User Data\Profile 9\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-11-05]
CHR Extension: (PackageTracer) - C:\Users\Shira\AppData\Local\Google\Chrome\User Data\Profile 9\Extensions\mkaigenmiakpbjdbiolafeogemcdkbji [2016-11-28]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Shira\AppData\Local\Google\Chrome\User Data\Profile 9\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-11-03]
CHR Extension: (Gmail) - C:\Users\Shira\AppData\Local\Google\Chrome\User Data\Profile 9\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-11-05]
CHR Extension: (Chrome Media Router) - C:\Users\Shira\AppData\Local\Google\Chrome\User Data\Profile 9\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-12-18]
CHR Profile: C:\Users\Shira\AppData\Local\Google\Chrome\User Data\System Profile [2017-07-12]
CHR HKLM\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files\Internet Download Manager\IDMGCExt.crx [2017-06-28]

==================== Services (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

S4 AntiVirMailService; C:\Program Files\Avira\Antivirus\avmailc7.exe [1128432 2017-06-18] (Avira Operations GmbH & Co. KG)
R2 AntiVirSchedulerService; C:\Program Files\Avira\Antivirus\sched.exe [490968 2017-06-18] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files\Avira\Antivirus\avguard.exe [490968 2017-06-18] (Avira Operations GmbH & Co. KG)
S4 AntiVirWebService; C:\Program Files\Avira\Antivirus\avwebg7.exe [1524216 2017-06-18] (Avira Operations GmbH & Co. KG)
R2 Avira.ServiceHost; C:\Program Files\Avira\Launcher\Avira.ServiceHost.exe [377976 2017-06-13] (Avira Operations GmbH & Co. KG)
R2 CG6Service; C:\Program Files\CyberGhost 6\CyberGhost.Service.exe [77872 2017-03-08] (CyberGhost S.R.L)
S3 cphs; C:\WINDOWS\system32\IntelCpHeciSvc.exe [290224 2015-06-01] (Intel Corporation)
R2 ExpressVpnService; C:\Program Files\ExpressVPN\bootstrap\x86\nssm.exe [294912 2017-06-05] () [Fichier non signé]
S3 HmaOpenVpnService; C:\Program Files\HMA! Pro VPN\bin\openvpnserv.exe [32768 2017-02-02] (The OpenVPN Project)
S4 hshld; C:\Program Files\Hotspot Shield\bin\cmw_srv.exe [2610808 2017-06-15] (AnchorFree Inc.)
R2 HWDeviceService.exe; C:\ProgramData\DatacardService\HWDeviceService.exe [276048 2013-10-28] ()
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [3398608 2017-05-09] (Malwarebytes)
R2 Mobile Broadband HL Service; C:\ProgramData\MobileBrServ\mbbservice.exe [232288 2012-03-12] ()
S2 MTN Online. RunOuc; C:\Program Files\MTN Online\UpdateDog\ouc.exe [655712 2011-12-23] ()
R2 SecureLine; C:\Program Files\AVAST Software\SecureLine\VpnSvc.exe [701032 2016-10-31] (AVAST Software)
R2 STacSV; C:\Program Files\IDT\WDM\STacSV.exe [319570 2013-12-04] (IDT, Inc.) [Fichier non signé]
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [280872 2017-01-12] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103696 2017-01-12] (Microsoft Corporation)
R2 WindscribeService; C:\Program Files\Windscribe\WindscribeService.exe [71272 2017-05-09] (Windscribe Limited)

===================== Pilotes (Avec liste blanche) ======================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

S3 AFTrafMgr1.2; C:\Program Files\Hotspot Shield\bin\TrafMgr_1_2_32.sys [49080 2017-05-08] (AnchorFree Inc.)
R0 amdkmpfd; C:\WINDOWS\System32\drivers\amdkmpfd.sys [25344 2013-12-12] (Advanced Micro Devices, Inc.)
S3 aswTap; C:\WINDOWS\system32\DRIVERS\aswTap.sys [38984 2016-10-11] (The OpenVPN Project)
R0 avdevprot; C:\WINDOWS\System32\DRIVERS\avdevprot.sys [54088 2017-06-18] (Avira Operations GmbH & Co. KG)
R2 avgntflt; C:\WINDOWS\System32\DRIVERS\avgntflt.sys [140296 2017-06-18] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\WINDOWS\system32\DRIVERS\avipbb.sys [162080 2017-06-18] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\WINDOWS\system32\DRIVERS\avkmgr.sys [53256 2017-02-26] (Avira Operations GmbH & Co. KG)
R3 BCM43XX; C:\WINDOWS\system32\DRIVERS\bcmwl63.sys [6859480 2015-05-01] (Broadcom Corporation)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [109184 2016-09-05] (Samsung Electronics Co., Ltd.)
R3 hmatap; C:\WINDOWS\system32\DRIVERS\hmatap.sys [41208 2017-02-02] (The OpenVPN Project)
S3 huawei_cdcacm; C:\WINDOWS\system32\DRIVERS\ew_jucdcacm.sys [101248 2013-03-04] (Huawei Technologies Co., Ltd.)
S3 huawei_cdcecm; C:\WINDOWS\system32\DRIVERS\ew_jucdcecm.sys [70528 2013-03-04] (Huawei Technologies Co., Ltd.)
S3 huawei_ext_ctrl; C:\WINDOWS\System32\drivers\ew_juextctrl.sys [27776 2013-03-04] (Huawei Technologies Co., Ltd.)
S3 huawei_wwanecm; C:\WINDOWS\system32\DRIVERS\ew_juwwanecm.sys [208384 2013-06-29] (Huawei Technologies Co., Ltd.)
R0 iaStorA; C:\WINDOWS\System32\drivers\iaStorA.sys [503048 2015-05-29] (Intel Corporation)
R3 int0800; C:\WINDOWS\System32\drivers\flashud.sys [42496 2009-09-09] (Intel Corporation)
R1 ISODrive; C:\Program Files\UltraISO\drivers\ISODrive.sys [82168 2013-11-21] (EZB Systems, Inc.)
R0 MBAMSwissArmy; C:\WINDOWS\System32\drivers\MBAMSwissArmy.sys [221600 2017-07-12] (Malwarebytes)
R3 MEI; C:\WINDOWS\System32\drivers\TeeDriverW8.sys [162080 2015-07-07] (Intel Corporation)
S3 RSP2STOR; C:\WINDOWS\system32\DRIVERS\RtsP2Stor.sys [230104 2015-01-21] (Realtek Semiconductor Corp.)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [147072 2016-09-05] (Samsung Electronics Co., Ltd.)
S3 tap0901; C:\WINDOWS\system32\DRIVERS\tap0901.sys [35288 2014-07-30] (The OpenVPN Project)
S3 tapexpressvpn; C:\WINDOWS\system32\DRIVERS\tapexpressvpn.sys [32112 2017-06-05] (The OpenVPN Project)
R3 taphss6; C:\WINDOWS\system32\DRIVERS\taphss6.sys [36944 2017-04-26] (Anchorfree Inc.)
R3 tapwindscribe0901; C:\WINDOWS\system32\DRIVERS\tapwindscribe0901.sys [41976 2017-04-21] (The OpenVPN Project)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [38920 2017-02-10] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [231256 2017-01-12] (Microsoft Corporation)
S3 wdm_usb; C:\WINDOWS\system32\DRIVERS\usb2ser.sys [128704 2016-08-16] (MBB)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [85336 2017-01-12] (Microsoft Corporation)
R3 WUDFWpdMtp; C:\WINDOWS\System32\drivers\WUDFRd.sys [190976 2014-11-22] (Microsoft Corporation)

========================== MD5 Pilotes =======================

C:\WINDOWS\System32\drivers\1394ohci.sys F7B9F821CF1C31B266F60A5733F8119A
C:\WINDOWS\System32\drivers\3ware.sys 57F7923ACC5009218F6591B3C0F62E07
C:\WINDOWS\system32\DRIVERS\Accelerometer.sys 943297AA998EA2B4A4E9E9DAA9954729
C:\WINDOWS\System32\drivers\ACPI.sys EB7850E3A46F6FF48AECD77A016DAB0B
C:\WINDOWS\System32\Drivers\acpiex.sys DCA3C5F55150B3AEB8B75A5E8D1156DC
C:\WINDOWS\System32\drivers\acpipagr.sys EE103776F838AE570EDBB2C1FB1356AF
C:\WINDOWS\System32\drivers\acpipmi.sys AC1BAD06E47D090C553FDEEAD1A7C463
C:\WINDOWS\System32\drivers\acpitime.sys 519FA16CFE54F107861501D852322AEF
C:\WINDOWS\System32\drivers\ADP80XX.SYS D614199DF507F1047D2C9ADB89BDD49E
C:\WINDOWS\system32\drivers\afd.sys 2B204EEC6A78BB9730927A28435DFEB4
C:\Program Files\Hotspot Shield\bin\TrafMgr_1_2_32.sys 80B02D84D61A735C7AF37A1F7B7E100C
C:\WINDOWS\System32\drivers\agp440.sys 7A706DCF874214097A30694D3B686866
C:\WINDOWS\System32\DRIVERS\ahcache.sys 8F36AA9EDF2A4118992F94E5E0DBB2B3
C:\WINDOWS\System32\drivers\amdagp.sys E7E154969EEDB8E8FC2C80DF690A175A
C:\WINDOWS\System32\drivers\amdk8.sys D9707ECC59834964EBA0D9D6C87305F6
C:\WINDOWS\system32\DRIVERS\atikmdag.sys 933F07FB581E50611C0A6D3FE87C3E48
C:\WINDOWS\system32\DRIVERS\atikmpag.sys 6275133893F38C2DD44B9F4A4081DE9A
C:\WINDOWS\System32\drivers\amdkmpfd.sys 895EF4232FB2807803ADED78FE498D9F
C:\WINDOWS\System32\drivers\amdppm.sys 7E4E0841365A02F77BD8497CCE347179
C:\WINDOWS\System32\drivers\amdsata.sys 5558A0EB3082EAC88C0578ABCE0C707D
C:\WINDOWS\System32\drivers\amdsbs.sys FB1A73A850C812F63BA9D174AB97BFB6
C:\WINDOWS\System32\drivers\amdxata.sys 43352B9C7917984404F893AD10468F63
C:\WINDOWS\system32\drivers\appid.sys 07501A1B68BD333B3C61D4A5CFBB021F
C:\WINDOWS\System32\drivers\arcsas.sys 0554DE27A3B4527C000073CEA0E84D1B
C:\WINDOWS\system32\DRIVERS\aswTap.sys 7309064469C60764538741474F324D7C
C:\WINDOWS\system32\DRIVERS\asyncmac.sys 437EAC134721F0BA2D856FA3B2622F7B
C:\WINDOWS\System32\drivers\atapi.sys 72FCAE2CE6DFEAB2AB072435017F3417
C:\WINDOWS\System32\DRIVERS\avdevprot.sys 2EB39FD08F381DE760FC893184E282F4
C:\WINDOWS\System32\DRIVERS\avgntflt.sys 061E8A4FEFF9B6DBB6C6CACD25253065
C:\WINDOWS\system32\DRIVERS\avipbb.sys 83887B2F419D3ECEF67EF5D18AAFA6CC
C:\WINDOWS\system32\DRIVERS\avkmgr.sys BD5BBB8CE66A0E44983AC53D30F840B1
C:\WINDOWS\System32\drivers\BasicDisplay.sys 235EAE5E6E5F3F0DD49DA9204F86976E
C:\WINDOWS\System32\drivers\BasicRender.sys 86F8D9BB1DF346603EA6A0FDE06D4C38
C:\WINDOWS\system32\DRIVERS\bcmwl63.sys 11213B865A12DBE949E202458A0D2577
C:\WINDOWS\System32\drivers\bcmfn2.sys 596DB7E4D0DB6AC32DF142C861001979
C:\WINDOWS\system32\Drivers\Beep.sys 38058AF65F15D0E9E1A5A9B8E75B0757
C:\WINDOWS\System32\DRIVERS\bowser.sys 4E3071E55F83A28E0B6B4F8CDDF7B3F4
C:\WINDOWS\System32\drivers\BthAvrcpTg.sys 48590B2DBCE55AC0DF0F7A3F23204CBF
C:\WINDOWS\System32\drivers\bthhfenum.sys 7875CF65A8A7C886CCC2CA5B66ADAACC
C:\WINDOWS\System32\drivers\BthHFHid.sys 1C0791BC4DC2AE0B41F8E84CD3154929
C:\WINDOWS\System32\drivers\bthmodem.sys 9B32997052780FF5343949BF7B85E2EA
C:\WINDOWS\System32\DRIVERS\cdfs.sys CE232BB0965C0C0B786C3F976CCBFB7D
C:\WINDOWS\System32\drivers\cdrom.sys E2FC132D48EA4E8B04432C33EFB77801
C:\WINDOWS\System32\drivers\circlass.sys 98294CE233DE8687CEEC29BD632107D0
C:\WINDOWS\System32\drivers\CLFS.sys DFBA9F6BF72F787E1C71046BB81618D1
C:\WINDOWS\System32\drivers\CmBatt.sys 6D46D1CCDA47E9B76F2D7FF4417D31AD
C:\WINDOWS\System32\Drivers\cng.sys 7D9269AE019E57516BB470EFFDB8C7E4
C:\WINDOWS\System32\DRIVERS\cnghwassist.sys EC086CEEC479CEDAD294D64D819CAABE
C:\WINDOWS\System32\drivers\CompositeBus.sys F89853991E6A03526E17E4AE5239FD98
C:\WINDOWS\System32\drivers\condrv.sys C8A7949EBAC42923D59B2C2630D2AD84
C:\WINDOWS\System32\drivers\dam.sys 2ECC9D6E0104409B441EA7095233F323
C:\WINDOWS\System32\Drivers\dfsc.sys ED6EE96632AC8DF092E484D9BB4EF3CD
C:\WINDOWS\system32\DRIVERS\ssudbus.sys 9B14E0CDCBA20819B650A0D167BC5C32
C:\WINDOWS\System32\drivers\disk.sys F00C2CE2F5BB0FFCC726EB75A6047294
C:\WINDOWS\System32\drivers\dmvsc.sys 0357F5F7C542249D8EAA4E6FCC69EE91
C:\WINDOWS\system32\drivers\drmkaud.sys 3AF1DB24CE340245436F1E90E04F6392
C:\WINDOWS\System32\drivers\dxgkrnl.sys 9BE407DE8852C8FDBD56F428986869D0
C:\WINDOWS\System32\drivers\EhStorClass.sys AECFDE05D120822452BA8F606841B3FE
C:\WINDOWS\System32\drivers\EhStorTcgDrv.sys BFDF5BA2B770B358CA607109240A739D
C:\WINDOWS\System32\drivers\errdev.sys 6E7FD164E20C50F5A2D49AD0218FF4AE
C:\WINDOWS\system32\DRIVERS\ew_hwusbdev.sys A744D66BCD4CABDD4B111D9E220B4D57
C:\WINDOWS\System32\drivers\ew_usbenumfilter.sys 6B4AC26C62F55AF324E3809EE2AD9F0C
C:\WINDOWS\system32\Drivers\exfat.sys 630E4FAFAE692F2D2D3835A4F37A583C
C:\WINDOWS\system32\Drivers\fastfat.sys 2B731E0CF73B392B1923078F464D96DB
C:\WINDOWS\System32\drivers\fdc.sys F2D60D87B15FF8ABBDA27371EBBEFE0B
C:\WINDOWS\System32\drivers\fileinfo.sys 878BE2CD1B68000D4BEEE293267B19CB
C:\WINDOWS\System32\drivers\filetrace.sys 5C427FD4AFAEAC08882A70EDA5013AF8
C:\WINDOWS\System32\drivers\flpydisk.sys BB2091E613F6F06F24FF9507E0FAA20B
C:\WINDOWS\System32\drivers\fltmgr.sys B6646D41BC0F4C322F5230A3ABA05468
C:\WINDOWS\System32\drivers\FsDepends.sys 59FDE08C1AF95BA6EAFB3E34B5FB451D
C:\WINDOWS\system32\Drivers\Fs_Rec.sys 6496F5E84CBC8C6D697939D6518D9B7A
C:\WINDOWS\System32\DRIVERS\fvevol.sys 4BB595A2D7CE57E5A3476AFDBB64DFEA
C:\WINDOWS\System32\drivers\fxppm.sys B3CDDF19F6201210B8785FFD642A1632
C:\WINDOWS\System32\drivers\gagp30kx.sys 2DC88A077B783AFD416CDEE7BDE63868
C:\WINDOWS\System32\drivers\vmgencounter.sys 2156802A56276A97FB6892412A0B899D
C:\WINDOWS\System32\drivers\iaiogpio.sys 73EFE8A2747BB87F66B5646AA2262AE4
C:\WINDOWS\System32\Drivers\msgpioclx.sys FB1DB2A2663D59FEB04F4311861C7022
C:\WINDOWS\system32\drivers\HdAudio.sys 449688B15D29787C8A440D6ECA9925B5
C:\WINDOWS\System32\drivers\HDAudBus.sys 7E0EDA9EE53E344D1604EB2A7E8DED47
C:\WINDOWS\System32\drivers\HidBatt.sys 5C5BF3E47BB6B07FAD8EA4565159659E
C:\WINDOWS\System32\drivers\hidbth.sys 1F6FF782DCFAF4CBBD3D9DB3CAB63B6A
C:\WINDOWS\System32\drivers\hidi2c.sys 4AC33C5E591F9845E34DA8681E558A58
C:\WINDOWS\System32\drivers\hidir.sys 2E6CA4DE2AEDF7ABDFEA906F11EDC8B1
C:\WINDOWS\System32\drivers\hidusb.sys EB86ED5F0A85574B48491B998C6BEA2D
C:\WINDOWS\system32\DRIVERS\hmatap.sys 57FCC87809F5116C5370C8E6D9F54F1D
C:\WINDOWS\System32\DRIVERS\hpdskflt.sys 91AB80156F5DF5B1495A687E5047961B
C:\WINDOWS\System32\drivers\HpSAMD.sys BA073FD7F6C94FF18F97DF8F0297ED62
C:\WINDOWS\System32\drivers\HTTP.sys B6F4C2442DE7DB74EA5383E2FFF4DDD2
C:\WINDOWS\system32\DRIVERS\ew_jucdcacm.sys 616A53FCE073763DDB010A6CEC75FD56
C:\WINDOWS\system32\DRIVERS\ew_jucdcecm.sys 2148D4F231408223DC33BD2F0B6A785C
C:\WINDOWS\System32\drivers\ew_jubusenum.sys DC63053744A3086BE6E473A93D48EE39
C:\WINDOWS\System32\drivers\ew_juextctrl.sys 61BE99E6D1EA098CA00144D624EEF871
C:\WINDOWS\system32\DRIVERS\ew_juwwanecm.sys E5950BF1A7156DB9599B4D3CC59005BD
C:\WINDOWS\system32\DRIVERS\ewusbmdm.sys 31309017CA0EB3DF78AA8BD01DA12241
C:\WINDOWS\System32\drivers\hwpolicy.sys FAEB94F3ACCDFDA16E5FA585369FDEC4
C:\WINDOWS\System32\drivers\hyperkbd.sys 2DDC60AD29D845A745C9ECAAE35FC477
C:\WINDOWS\system32\DRIVERS\HyperVideo.sys D360FFBA289307976BE1BBE7BE792F58
C:\WINDOWS\System32\drivers\i8042prt.sys 7A708934CC652100A94944EC808C3916
C:\WINDOWS\System32\drivers\iaioi2c.sys 646D3B416BC970C3CD2F53844FD156A5
C:\WINDOWS\System32\drivers\iaStorA.sys D777C292F5F69D9729C35AC8F0CE79E2
C:\WINDOWS\System32\drivers\iaStorAV.sys 387637FC01BA30E95A2330DA3FFD0919
C:\WINDOWS\System32\drivers\iaStorV.sys D2E7F3611BB8F1C2661B8F7858D33A35
C:\WINDOWS\system32\DRIVERS\idmwfp.sys A77695A8DA81C6ACBBC091295B4D3478
C:\WINDOWS\system32\DRIVERS\igdkmd32.sys 90CB68516429CFBDD7956C146997AB36
C:\WINDOWS\System32\drivers\flashud.sys B0F7FF5DF8253161DF4C567A2E6D18B7
C:\WINDOWS\system32\DRIVERS\IntcDAud.sys 897E938F907057E6FA12FEAA53FCCEFA
C:\WINDOWS\System32\drivers\intelide.sys B0F92A795C7E48E2C5F908265C655458
C:\WINDOWS\System32\drivers\intelpep.sys 95BD617B467F746553AD1FC523F5D2B6
C:\WINDOWS\System32\drivers\intelppm.sys 6DD61D8AFB56C9F853210C49FD4D8C16
C:\WINDOWS\System32\DRIVERS\ipfltdrv.sys 23B5C10891B64FB4261F9FCADF24FE28
C:\WINDOWS\System32\drivers\IPMIDrv.sys 8731B3A4E12C3DA06156E535AA4511D8
C:\WINDOWS\System32\drivers\ipnat.sys FA6C94C754A566EA8A61D658932F32DE
C:\WINDOWS\System32\drivers\irenum.sys ADF675CF9EB57229E9D13BC2F5D4719D
C:\WINDOWS\System32\drivers\isapnp.sys 2A0D17D431F13E87ADCB28DEEC84F252
C:\WINDOWS\System32\drivers\msiscsi.sys 7625847D91D8F0FAA5728B397D04D851
C:\Program Files\UltraISO\drivers\ISODrive.sys 5645290B24D23612D8AE10BBE8BF03CE
C:\WINDOWS\System32\drivers\kbdclass.sys 616877586D4E3351D135C9ABBCD2DB9A
C:\WINDOWS\System32\drivers\kbdhid.sys 8EB53567EB006D50146C2748AEBB01F6
C:\WINDOWS\system32\DRIVERS\kdnic.sys 7F896C99637CB0E48262F307FC0F3557
C:\WINDOWS\System32\Drivers\ksecdd.sys AE42F929AF51FADDF28B31A9B5449A0F
C:\WINDOWS\System32\Drivers\ksecpkg.sys ED85B5DD11C9624DA19A33CE3751E74F
C:\WINDOWS\system32\DRIVERS\lltdio.sys 369ED2626209D245BA1CEBB626F9A376
C:\WINDOWS\System32\drivers\lsi_sas.sys 876BA8550E9F1F4EF8A7D056E66678F6
C:\WINDOWS\System32\drivers\lsi_sas2.sys 6FB4E344E66F7243D23F0F52A9610790
C:\WINDOWS\System32\drivers\lsi_sas3.sys 2E61D97CA19BBECCCF7CDE9C0C7392B5
C:\WINDOWS\System32\drivers\lsi_sss.sys 3986C8FAA6E397725024E7189BAC69CE
C:\WINDOWS\system32\drivers\luafv.sys A1E31C77F407F629F430A070B8747A44
C:\WINDOWS\System32\drivers\MBAMSwissArmy.sys B72EBB5C4727E67BAFDBC7FEA5A8D49F
C:\WINDOWS\System32\drivers\megasas.sys EE038F0B57FD34B872AE2ADD7679C1E2
C:\WINDOWS\System32\drivers\megasr.sys 2E3BE5DA8078B170DA14CE3181C5D3AC
C:\WINDOWS\System32\drivers\TeeDriverW8.sys 2AC753D9E59F77BE6459ED1BF549D24A
C:\WINDOWS\System32\drivers\modem.sys FFE175CCDA4BC0278E88149F183B6C5E
C:\WINDOWS\System32\drivers\monitor.sys 523C526BBB796FC2087C0C8AC2B669BD
C:\WINDOWS\System32\drivers\mouclass.sys 0F5D7D7ED440859CABE967027F74B769
C:\WINDOWS\System32\drivers\mouhid.sys FC95786AA45FEB81F4330A384E85EA96
C:\WINDOWS\System32\drivers\mountmgr.sys 531616189685907D8F2EF165F1C2A185
C:\WINDOWS\System32\drivers\mpsdrv.sys 9274A2503AAC12367BD74B13C8323A86
C:\WINDOWS\system32\drivers\mrxdav.sys 241E2BF9F8A771CDB8BA5CB3EBF3E19D
C:\WINDOWS\System32\DRIVERS\mrxsmb.sys 4B9F77B2AC8F364549D68FB75D4F1B84
C:\WINDOWS\System32\DRIVERS\mrxsmb10.sys 96EBBDD4D0FFC4DA56273EE7A57065F0
C:\WINDOWS\System32\DRIVERS\mrxsmb20.sys B6DE3E066F1F62AD4EE1222EB167E83A
C:\WINDOWS\system32\DRIVERS\bridge.sys 4F3470F55CADC505EE383EE28C03BBDD
C:\WINDOWS\system32\Drivers\Msfs.sys D99C98D630C34A448A93DE552DC7DD68
C:\WINDOWS\System32\drivers\msgpiowin32.sys 22FFBD5F9BCE2E970C617B95103079DC
C:\WINDOWS\System32\drivers\mshidkmdf.sys 30DA16E72C4CB4D5F06D35D0DFA16E2C
C:\WINDOWS\System32\drivers\mshidumdf.sys 26B1961255650B59107FC4990B2CEF34
C:\WINDOWS\System32\drivers\msisadrv.sys BF7ABD4461576528028FB86633A7EA24
C:\WINDOWS\system32\drivers\MSKSSRV.sys 0B2A5AB2591D7F6E8E64A0516325F2AD
C:\WINDOWS\system32\DRIVERS\mslldp.sys BC54F6E1F48A53C85C4FA20638BC7F05
C:\WINDOWS\system32\drivers\MSPCLOCK.sys 86729EC40EB28DBBAB6A672B138B4DC5
C:\WINDOWS\system32\drivers\MSPQM.sys 4E5FB5BD76165A81EE181A82EB665C8A
C:\WINDOWS\system32\Drivers\MsRPC.sys C90BB8C3DC3F50FBA1A668B844C84315
C:\WINDOWS\System32\drivers\mssmbios.sys CF61A813430B7F12452BCED287135676
C:\WINDOWS\system32\drivers\MSTEE.sys C323F63D61AD8CEC79B3CF4B8463B208
C:\WINDOWS\System32\drivers\MTConfig.sys 06442D8CA4425EFF66F47D8F82493450
C:\WINDOWS\System32\Drivers\mup.sys 58DCB1EB91EB9D708862417157DE71B2
C:\WINDOWS\System32\drivers\mvumis.sys 8122A46E9A5EBD2E001FF5FB34A12A47
C:\WINDOWS\system32\DRIVERS\nwifi.sys 1AE3667D33AF9D403858D81D1DA76F21
C:\WINDOWS\System32\drivers\ndis.sys A424C178E62FE65C4C7A2EC4BCE1EA3E
C:\WINDOWS\system32\DRIVERS\ndiscap.sys BD7A072CDEF23D6F97C99536A60A4CD4
C:\WINDOWS\system32\DRIVERS\NdisImPlatform.sys 9454CF55D5997AAC973D98CE951E96C6
C:\WINDOWS\system32\DRIVERS\ndistapi.sys AFB01B51D9EEE21970BE1162CC7C56F7
C:\WINDOWS\system32\DRIVERS\ndisuio.sys 1D34650E97E74DF51BD86E0A102DB241
C:\WINDOWS\System32\drivers\NdisVirtualBus.sys 53D21FFC20728406A20BCCF145DC2AD4
C:\WINDOWS\system32\DRIVERS\ndiswan.sys 68A4285517BAD3EB4B35311553BACA3E
C:\WINDOWS\system32\DRIVERS\ndiswan.sys 68A4285517BAD3EB4B35311553BACA3E
C:\WINDOWS\system32\Drivers\NDProxy.sys 9F76B41778F62A7E582ADA902E8D149E
C:\WINDOWS\System32\drivers\Ndu.sys 2AA8347BC82BE40F80E69DBA45AE97CE
C:\WINDOWS\System32\DRIVERS\netbios.sys FE7A0CD973DD4A53E4C0EFD4D2508362
C:\WINDOWS\System32\DRIVERS\netbt.sys 5E99DA212CF3F3C106E314792586F6C5
C:\WINDOWS\System32\drivers\netvsc63.sys 7ADE9FC27836CC0A4A28517688145F94
C:\WINDOWS\system32\Drivers\Npfs.sys 6CB2336E1C247A8164ADFF8A0D2FBCA4
C:\WINDOWS\System32\drivers\npsvctrig.sys 1B134DECC25E59D0C8AD95B64D475297
C:\WINDOWS\System32\drivers\nsiproxy.sys 06759AEC5F7E6197C0532D8BB839B5CB
C:\WINDOWS\system32\Drivers\Ntfs.sys AC3381BD4DA20081B113E61C22C9117D
C:\WINDOWS\system32\Drivers\Null.sys C68CBBB69A8C611EFA668FA36DE542D9
C:\WINDOWS\System32\drivers\nvraid.sys CE9BC6B9B2D5A9782B20B8EF1D48FC6E
C:\WINDOWS\System32\drivers\nvstor.sys 8BC42FC48C9DB301025D7A5C6B20ECD9
C:\WINDOWS\System32\drivers\nv_agp.sys 5FC39F8B065128F2A59F92EE9AE3F286
C:\WINDOWS\System32\drivers\parport.sys 86B928F774B48AC71E16BD5527B0DA21
C:\WINDOWS\System32\drivers\partmgr.sys C438E9C1590E6CB146EB226A46B459EC
C:\WINDOWS\System32\drivers\parvdm.sys B6ED9C3699F7A32142B68AECDF295223
C:\WINDOWS\System32\drivers\pci.sys 0A2BBE5E87374A32E4B1A5EEE582AE6C
C:\WINDOWS\System32\drivers\pciide.sys 05C7426981598F0E45824BC912D5177B
C:\WINDOWS\System32\drivers\pcmcia.sys F404AA7E499C83117C7442C2C2801C03
C:\WINDOWS\System32\drivers\pcw.sys E0F759702BBA5095CB0AE570333B194B
C:\WINDOWS\System32\drivers\pdc.sys 1191B90B5B86748A0C14E56C4DFBBB94
C:\WINDOWS\System32\drivers\peauth.sys 1A9DFE5854BD66E28178431E9C96E77D
C:\WINDOWS\system32\DRIVERS\raspptp.sys AB94C4DC37785915FF3F18DB9C55638F
C:\WINDOWS\System32\drivers\processr.sys 0BE3706EE01AA76D1583E82AE2E680D6
C:\WINDOWS\system32\DRIVERS\pacer.sys 96ACAD85693456B11D1A4E4F70EC3D4D
C:\WINDOWS\system32\drivers\qwavedrv.sys F4BEFEF54FAB42177B489D127558F1E1
C:\WINDOWS\System32\DRIVERS\rasacd.sys D94D03BA0A61AAF5A5E008BF33BD2519
C:\WINDOWS\system32\DRIVERS\AgileVpn.sys C543731C1A5AE31E202A082E2F4C4DDE
C:\WINDOWS\system32\DRIVERS\rasl2tp.sys 51BDF9875BCBD06B7DB7DC1C05974520
C:\WINDOWS\system32\DRIVERS\raspppoe.sys 1B6351227867FBD8917769479F7D84A3
C:\WINDOWS\system32\DRIVERS\rassstp.sys 7CFC41D53965EE6CF9DAE016C6100E3B
C:\WINDOWS\System32\DRIVERS\rdbss.sys 72F7228023FE0C3C413FF95BE19481F6
C:\WINDOWS\System32\drivers\rdpbus.sys 4E3C895DB9831A925CAFAF9F04FE89CC
C:\WINDOWS\System32\drivers\rdpdr.sys 67E91843B0344411820A012063E876B2
C:\WINDOWS\System32\drivers\rdpvideominiport.sys 3EE4808DA6AFB088E1111A2CA620E521
C:\WINDOWS\System32\drivers\rdyboost.sys ED5DA057B5C00042CDF0E705C59B3CB1
C:\WINDOWS\system32\DRIVERS\RtsP2Stor.sys 1FD94E742578E43922E4DEFCCD3B4122
C:\WINDOWS\system32\DRIVERS\rspndr.sys A7B0D780D365635525B8A2B10CE493C4
C:\WINDOWS\system32\DRIVERS\Rt630x86.sys 4381D74634CC958902A304D49522792A
C:\WINDOWS\System32\drivers\vms3cap.sys 14FC57F255EB705ECA023FB85D70BF7B
C:\WINDOWS\System32\drivers\sbp2port.sys 98A297A744DDF9B2E14B05E511439ABC
C:\WINDOWS\System32\DRIVERS\scfilter.sys D35A984D81C47A8AFC5FA6CE2B4EF9DA
C:\WINDOWS\System32\drivers\sdbus.sys 777A2903082CA816CF57878A81DE1B61
C:\WINDOWS\System32\drivers\sdstor.sys 6A90C0C56CABEAA19779434BA6A9875B
C:\WINDOWS\system32\Drivers\secdrv.sys A8CC993CED4DF9710ADAABC9DA66B660
C:\WINDOWS\System32\drivers\SerCx.sys B9B7306D989D3B205EE9637ABB937978
C:\WINDOWS\System32\drivers\SerCx2.sys 617029159ED22EF9CB3F83FE5AF968CB
C:\WINDOWS\System32\drivers\serenum.sys A652B755F4BBD800FF5024E858FCD306
C:\WINDOWS\System32\drivers\serial.sys F5B043FE7A4A714DB1B231F5F847C13E
C:\WINDOWS\System32\drivers\sermouse.sys 4961FAE2D65C25098DB9B6CDD950A2B0
C:\WINDOWS\System32\drivers\sfloppy.sys 4FC275DBBE9F48EB07418E066843058D
C:\WINDOWS\System32\drivers\sisagp.sys 0EFBAF5C195B78D7897701EA3084AFA8
C:\WINDOWS\System32\drivers\SiSRaid2.sys 447DAF85E9F4D53710636468AD9911EA
C:\WINDOWS\System32\drivers\sisraid4.sys 5C08041AA0DB4FE983D496D820AFACB7
C:\WINDOWS\System32\drivers\spaceport.sys 834A5578B7E264BB5A00DA849055B00F
C:\WINDOWS\System32\drivers\SpbCx.sys E0A6F5DA31A1B0F3C8D8A4802F97667D
C:\WINDOWS\System32\DRIVERS\srv.sys 94BC34635CF5CA95C07FD9642B99D17A
C:\WINDOWS\System32\DRIVERS\srv2.sys 8FFCE7D69A7D60612F385A2997F9C1E6
C:\WINDOWS\System32\DRIVERS\srvnet.sys FEB44688682B7E155943616E555CDC1C
C:\WINDOWS\system32\DRIVERS\ssudmdm.sys 316B2240ED52450C453DB8876B945882
C:\WINDOWS\System32\drivers\stexstor.sys B4489EA5810BF73778CD8BDC305109CE
C:\WINDOWS\system32\DRIVERS\stwrt.sys C1DEA046CD71EBE3D2CB0F89EE07D0EF
C:\WINDOWS\System32\drivers\storahci.sys BA47EC0DC91660274059C437DC53D82B
C:\WINDOWS\System32\drivers\vmstorfl.sys 289FE2B84ED62814C5AF85DBD5A67F9E
C:\WINDOWS\System32\drivers\stornvme.sys BD6608D55780F0EF6DF665F0F2C14511
C:\WINDOWS\System32\drivers\storvsc.sys 19AC4D3BB088AA4561036B220FEB99DE
C:\WINDOWS\System32\drivers\swenum.sys 2A2F7FFF041A70E030DE63F9F114D046
C:\WINDOWS\system32\DRIVERS\SynTP.sys 42FE2ED34CC45F1905FF1B6214BC5795
C:\WINDOWS\system32\DRIVERS\tap0901.sys 432D9D823C4C26B6070C41BAD4404CE4
C:\WINDOWS\system32\DRIVERS\tapexpressvpn.sys 08DDDCBAF44E4C60729C6EBC9D84F6BB
C:\WINDOWS\system32\DRIVERS\taphss6.sys 659A8DF65E8C7441C25AE0045EB8651F
C:\WINDOWS\system32\DRIVERS\tapwindscribe0901.sys 00C376FEC73507FC60D670A3EBD45F6B
C:\WINDOWS\System32\drivers\tcpip.sys 59CA68DCA49D191B0316493B8E04F95E
C:\WINDOWS\system32\DRIVERS\tcpip.sys 59CA68DCA49D191B0316493B8E04F95E
C:\WINDOWS\System32\drivers\tcpipreg.sys 31D0E1BF76AA85F5A72F4FD488C3B508
C:\WINDOWS\system32\DRIVERS\tdx.sys 58611C5D53DD89EA5B37D20806592893
C:\WINDOWS\System32\drivers\terminpt.sys 87F4612CBEF6CD97043911BA43ABB53B
C:\WINDOWS\system32\drivers\tpm.sys 4F9802B5E8C9CF80795C18D208E1BC36
C:\WINDOWS\System32\drivers\tsusbflt.sys 3E87B8167BA1CA5274DFACC4856B3FD9
C:\WINDOWS\System32\drivers\TsUsbGD.sys B672B744D64CDDAC31B4CD3C3811BE92
C:\WINDOWS\system32\DRIVERS\tunnel.sys 624479031FF9BF7477EC2A72ABF5225B
C:\WINDOWS\System32\drivers\uagp35.sys 61FC1405334298EFE7D49970C5346551
C:\WINDOWS\System32\drivers\uaspstor.sys 0E919230A74FA541CC5C2D3F917340B7
C:\WINDOWS\System32\drivers\ucx01000.sys FCC770722AFBDED6EBF901861308C145
C:\WINDOWS\System32\DRIVERS\udfs.sys FBB116D627CBE7D8DD73A6AF7DE187F3
C:\WINDOWS\System32\drivers\UEFI.sys 31C53FFBFD9977D3F2061627A69274D2
C:\WINDOWS\System32\drivers\uliagpkx.sys 202F1C6EBA7D84F59C03E708F45A28C3
C:\WINDOWS\System32\drivers\umbus.sys 8CB5D86BDB3890CFC4D94593935C2F4B
C:\WINDOWS\System32\drivers\umpass.sys C4115675F53E9E853294C15131D5EBBC
C:\WINDOWS\System32\drivers\usbccgp.sys 8A93F68EBAFE14D62895A09568BED30A
C:\WINDOWS\System32\drivers\usbcir.sys AB4573B76A1FCBB029D0A328ACE783BC
C:\WINDOWS\System32\drivers\usbehci.sys BC1961D7D967E02AA706E185F1AECC5F
C:\WINDOWS\System32\drivers\usbhub.sys DE5599DA6F39FB1195E650B4B5954B13
C:\WINDOWS\System32\drivers\UsbHub3.sys CC51D8A51CD196A9DF783E3348A81BF0
C:\WINDOWS\System32\drivers\usbohci.sys 2489E643ED4A277F89535AA952ACBCE7
C:\WINDOWS\System32\drivers\usbprint.sys F4FA8FC5577F5F603FD79663BD8F3005
C:\WINDOWS\System32\drivers\USBSTOR.SYS CBDB5082EB3E55E29D3F842DFF7EBC44
C:\WINDOWS\System32\drivers\usbuhci.sys 1BBDAFBF70A2D3356059D49FC0465377
C:\WINDOWS\System32\drivers\USBXHCI.SYS 59A896242FCD7525F0EBBAC13FDBCC0E
C:\WINDOWS\system32\DRIVERS\usb8023x.sys 2D880075620568B7F7AA1BEAA6395049
C:\WINDOWS\System32\drivers\vdrvroot.sys 3D06B8D4A1ED1B91C8566DF7AC510AF2
C:\WINDOWS\System32\drivers\VerifierExt.sys E0915FFD3BDFB98B723C46FEB8070B8A
C:\WINDOWS\System32\drivers\vhdmp.sys 55C2A68BC2BC68AFE3C0401495BD860E
C:\WINDOWS\System32\drivers\viaagp.sys 33CA244E0808BBD784EA6938605FED28
C:\WINDOWS\System32\drivers\viac7.sys EBBBCBC27D7F391188CDF4196ED80D63
C:\WINDOWS\System32\drivers\viaide.sys 75B08537DCF231A7B536ACE2ED8E8A35
C:\WINDOWS\System32\drivers\vmbus.sys 4B0F9788514F5CD6E19392B2AA71FE53
C:\WINDOWS\System32\drivers\VMBusHID.sys 1F02B273254268F975612210D8CB6859
C:\WINDOWS\System32\drivers\volmgr.sys B78808F8D73F3FB54DFC4600BEAD3E84
C:\WINDOWS\System32\drivers\volmgrx.sys 57566A1F8D39071BB56AA0B083A75544
C:\WINDOWS\System32\drivers\volsnap.sys 577A6128809F7014CE409C0252945CF4
C:\WINDOWS\System32\drivers\vsmraid.sys 10B78A2D45B1330C162FDE8FEE78F315
C:\WINDOWS\System32\drivers\vstxraid.sys 761B3F51660CD3D9F815E5C916235D0B
C:\WINDOWS\System32\drivers\vwifibus.sys A74C7E7977CD39708AA1E1A374D12877
C:\WINDOWS\system32\DRIVERS\vwififlt.sys 548D38A40EC4DFE578A88081F7F60926
C:\WINDOWS\system32\DRIVERS\vwifimp.sys DAFCED9CBD13A790AF5DF4263DEF9169
C:\WINDOWS\System32\drivers\wacompen.sys 67B211F7AB2D49C6403E7FD970421806
C:\WINDOWS\system32\DRIVERS\wanarp.sys E9901D23ACD4C7492B4C100212952929
C:\WINDOWS\system32\DRIVERS\wanarp.sys E9901D23ACD4C7492B4C100212952929
C:\WINDOWS\system32\drivers\WdBoot.sys 2986A8079E201F95CBB86DE1A1DB6AEB
C:\WINDOWS\System32\drivers\Wdf01000.sys C49F1B047C2080FC5AA662A769887631
C:\WINDOWS\system32\drivers\WdFilter.sys 9868BD10886F8031CB25F2A57B3A3715
C:\WINDOWS\system32\DRIVERS\usb2ser.sys D989D5CF14B91E7C88CBDF3C9341F0EF
C:\WINDOWS\System32\Drivers\WdNisDrv.sys 5CB73B803803FA48542E4E5AE380B01F
C:\WINDOWS\System32\DRIVERS\wfplwfs.sys FB8E85DC666E4D484A4C0ABAA4DD73B5
C:\WINDOWS\System32\drivers\wimmount.sys 8D7EDCC75EAC0382302D9D3B2081153C
C:\WINDOWS\System32\drivers\WinUsb.sys 3503B3EC1EE0FDC06E46F06A56ADCA62
C:\WINDOWS\System32\drivers\wmiacpi.sys AF01C55490366930DFAF1D3655C763BD
C:\WINDOWS\system32\Drivers\Wof.sys DB3F0877E5C225693A131AE82C262957
C:\WINDOWS\System32\DRIVERS\wpcfltr.sys 6BDFEAAD0BEAA861C259B1275ACB8FEC
C:\WINDOWS\System32\drivers\WpdUpFltr.sys 6D8FA63A8C9765A853264D3977EECC19
C:\WINDOWS\system32\drivers\ws2ifsl.sys 12BCBE7CA69586AF483C86255739793F
C:\WINDOWS\System32\drivers\WudfPf.sys 85C244B02FDD704EEB383E5500E1FD38
C:\WINDOWS\System32\drivers\WUDFRd.sys 1CBE87AE76B3F450BCD5BB1DBDE3BAA6
C:\WINDOWS\system32\DRIVERS\WUDFRd.sys 1CBE87AE76B3F450BCD5BB1DBDE3BAA6
C:\WINDOWS\system32\DRIVERS\WUDFRd.sys 1CBE87AE76B3F450BCD5BB1DBDE3BAA6
C:\WINDOWS\System32\drivers\WUDFRd.sys 1CBE87AE76B3F450BCD5BB1DBDE3BAA6

==================== NetSvcs (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

==================== Trois mois - Créés - fichiers et dossiers ========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2017-07-12 16:00 - 2017-07-12 16:00 - 00001502 _____ C:\Users\Shira\Desktop\new rapport.txt
2017-07-12 14:20 - 2017-07-12 14:20 - 00138865 _____ C:\Users\Shira\Desktop\ZHPDiag.txt
2017-07-12 14:13 - 2017-07-12 14:13 - 00001844 _____ C:\Users\Shira\Desktop\rapport.txt
2017-07-12 13:26 - 2017-07-12 13:26 - 00001389 _____ C:\Users\Shira\Desktop\adwcleaner_6.047 - Raccourci.lnk
2017-07-12 13:16 - 2017-07-12 13:17 - 00001980 _____ C:\Users\Shira\Desktop\ZHPCleaner.txt
2017-07-12 12:55 - 2017-07-12 12:55 - 00000000 ____D C:\Users\Shira\AppData\Roaming\Google
2017-07-12 07:01 - 2017-07-12 14:03 - 00221600 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2017-07-12 07:01 - 2017-07-12 12:52 - 00074656 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys
2017-07-12 07:01 - 2017-07-12 12:48 - 00085400 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\farflt.sys
2017-07-12 07:01 - 2017-07-12 12:48 - 00040352 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2017-07-12 07:01 - 2017-07-12 08:25 - 00162240 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMChameleon.sys
2017-07-12 07:01 - 2017-07-12 08:24 - 00059936 _____ C:\WINDOWS\system32\Drivers\mbae.sys
2017-07-12 07:01 - 2017-07-12 07:01 - 00002000 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2017-07-12 07:01 - 2017-07-12 07:01 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2017-07-12 07:01 - 2017-07-12 07:01 - 00000000 ____D C:\ProgramData\Malwarebytes
2017-07-12 07:01 - 2017-07-12 07:01 - 00000000 ____D C:\Program Files\Malwarebytes
2017-07-12 05:59 - 2017-07-12 05:59 - 00001021 _____ C:\Users\Shira\Desktop\FRST - Raccourci.lnk
2017-07-12 05:58 - 2017-07-12 05:58 - 00000784 _____ C:\Users\Shira\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FRST.lnk
2017-07-12 05:06 - 2017-07-12 13:31 - 00000000 ____D C:\AdwCleaner
2017-07-12 04:59 - 2017-07-12 04:59 - 00000838 _____ C:\Users\Shira\Desktop\ZHPCleaner.lnk
2017-07-12 04:30 - 2017-07-12 14:18 - 00000000 ____D C:\Users\Shira\AppData\Roaming\ZHP
2017-07-12 04:30 - 2017-07-12 04:30 - 00000828 _____ C:\Users\Shira\Desktop\ZHPDiag.lnk
2017-07-12 04:29 - 2017-07-12 04:59 - 00000000 ____D C:\Users\Shira\AppData\Local\ZHP
2017-07-12 04:26 - 2017-07-12 04:28 - 02781056 _____ C:\Users\Shira\Downloads\ZHPDiag3.exe
2017-07-12 04:24 - 2017-07-12 04:24 - 00001066 _____ C:\Users\Public\Desktop\Avira Connect.lnk
2017-07-12 03:44 - 2017-06-29 07:23 - 20270592 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2017-07-12 03:44 - 2017-06-29 06:52 - 04549632 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2017-07-12 03:44 - 2017-06-29 06:43 - 13663744 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2017-07-12 03:44 - 2017-06-29 06:24 - 01314816 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2017-07-12 03:44 - 2017-06-22 16:20 - 03467776 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2017-07-12 03:44 - 2017-06-17 18:34 - 02749952 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2017-07-12 03:44 - 2017-06-17 18:05 - 01920000 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2017-07-12 03:44 - 2017-06-15 15:41 - 05763928 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2017-07-12 03:44 - 2017-06-15 15:39 - 01294928 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2017-07-12 03:44 - 2017-06-15 15:39 - 01280440 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2017-07-12 03:44 - 2017-06-15 15:39 - 01181272 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2017-07-12 03:44 - 2017-06-11 22:31 - 00781312 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2017-07-12 03:44 - 2017-06-11 17:11 - 01681240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2017-07-12 03:44 - 2017-06-03 18:03 - 01549312 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll
2017-07-12 03:43 - 2017-06-29 07:23 - 00499200 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2017-07-12 03:43 - 2017-06-29 07:13 - 00663552 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2017-07-12 03:43 - 2017-06-29 06:51 - 00880640 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcomm.dll
2017-07-12 03:43 - 2017-06-29 06:47 - 00693248 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2017-07-12 03:43 - 2017-06-29 06:28 - 02767872 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2017-07-12 03:43 - 2017-06-29 06:23 - 00710144 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2017-07-12 03:43 - 2017-06-27 16:26 - 05274112 _____ (Microsoft Corporation) C:\WINDOWS\system32\glcndFilter.dll
2017-07-12 03:43 - 2017-06-27 16:26 - 05268992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2017-07-12 03:43 - 2017-06-15 23:58 - 00738648 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\http.sys
2017-07-12 03:43 - 2017-06-15 15:41 - 00076120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys
2017-07-12 03:43 - 2017-06-15 15:39 - 01404952 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2017-07-12 03:43 - 2017-06-12 00:46 - 00278872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys
2017-07-12 03:43 - 2017-06-11 23:25 - 00478720 _____ (Microsoft Corporation) C:\WINDOWS\system32\wvc.dll
2017-07-12 03:43 - 2017-06-11 23:07 - 00416256 _____ (Microsoft Corporation) C:\WINDOWS\system32\sysmon.ocx
2017-07-12 03:43 - 2017-06-11 22:58 - 00334336 _____ (Microsoft Corporation) C:\WINDOWS\system32\msinfo32.exe
2017-07-12 03:43 - 2017-06-11 22:40 - 01323008 _____ (Microsoft Corporation) C:\WINDOWS\system32\wdc.dll
2017-07-12 03:43 - 2017-06-11 22:35 - 00325120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wldap32.dll
2017-07-12 03:43 - 2017-06-06 21:08 - 02712576 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
2017-07-12 03:43 - 2017-06-06 21:03 - 00837632 _____ (Microsoft Corporation) C:\WINDOWS\system32\autoconv.exe
2017-07-12 03:43 - 2017-06-06 20:59 - 00034816 _____ (Microsoft Corporation) C:\WINDOWS\system32\cnvfat.dll
2017-07-12 03:43 - 2017-06-06 20:57 - 00141824 _____ (Microsoft Corporation) C:\WINDOWS\system32\uudf.dll
2017-07-12 03:43 - 2017-06-06 20:03 - 00143360 _____ (Microsoft Corporation) C:\WINDOWS\system32\ulib.dll
2017-07-12 03:43 - 2017-06-06 20:02 - 00513536 _____ (Microsoft Corporation) C:\WINDOWS\system32\untfs.dll
2017-07-12 03:43 - 2017-06-06 20:02 - 00197120 _____ (Microsoft Corporation) C:\WINDOWS\system32\ifsutil.dll
2017-07-12 03:43 - 2017-06-06 20:02 - 00106496 _____ (Microsoft Corporation) C:\WINDOWS\system32\ufat.dll
2017-07-12 03:43 - 2017-06-06 20:02 - 00074240 _____ (Microsoft Corporation) C:\WINDOWS\system32\uexfat.dll
2017-07-12 03:43 - 2017-05-31 23:17 - 00332632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netio.sys
2017-07-12 03:43 - 2017-05-16 00:06 - 00048472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\stornvme.sys
2017-07-12 03:43 - 2017-05-15 20:44 - 00318816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys
2017-07-12 03:43 - 2017-05-09 16:35 - 00555520 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSDApi.dll
2017-07-12 03:43 - 2017-05-09 16:29 - 00162816 _____ (Microsoft Corporation) C:\WINDOWS\system32\DAFWSD.dll
2017-07-12 03:43 - 2017-05-09 16:29 - 00025600 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsdchngr.dll
2017-07-12 03:43 - 2017-05-09 16:29 - 00013312 _____ (Microsoft Corporation) C:\WINDOWS\system32\snmptrap.exe
2017-07-12 03:43 - 2017-05-09 16:12 - 00448576 _____ C:\WINDOWS\system32\ApnDatabase.xml
2017-07-12 03:43 - 2017-05-06 18:19 - 00042496 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdsdwmdr.dll
2017-07-12 03:43 - 2017-05-06 17:57 - 00945664 _____ (Microsoft Corporation) C:\WINDOWS\system32\termsrv.dll
2017-07-12 03:43 - 2017-05-02 20:33 - 00574464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
2017-07-12 03:43 - 2017-05-02 20:33 - 00336384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv.sys
2017-07-12 03:43 - 2017-05-02 20:32 - 00187392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srvnet.sys
2017-07-12 03:43 - 2017-05-02 19:35 - 00031744 _____ (Microsoft Corporation) C:\WINDOWS\system32\sscore.dll
2017-07-12 03:43 - 2017-05-02 19:30 - 00167424 _____ (Microsoft Corporation) C:\WINDOWS\system32\smbwmiv2.dll
2017-07-12 03:43 - 2017-05-02 19:29 - 00249856 _____ (Microsoft Corporation) C:\WINDOWS\system32\srvsvc.dll
2017-07-12 03:43 - 2017-04-28 03:11 - 01060352 _____ (Microsoft Corporation) C:\WINDOWS\system32\certutil.exe
2017-07-12 03:43 - 2017-04-28 02:49 - 00080078 _____ C:\WINDOWS\system32\normidna.nls
2017-07-12 03:39 - 2017-05-04 01:07 - 00090288 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2017-07-12 03:39 - 2017-05-03 15:40 - 01327616 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2017-07-12 03:39 - 2017-05-03 15:40 - 00987648 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2017-07-12 03:39 - 2017-05-03 15:40 - 00505856 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2017-07-12 03:39 - 2017-05-03 15:40 - 00446464 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2017-07-12 03:39 - 2017-05-03 15:40 - 00275456 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2017-07-12 03:39 - 2017-05-03 15:40 - 00236032 _____ (Microsoft Corporation) C:\WINDOWS\system32\centel.dll
2017-07-12 03:39 - 2017-05-03 15:40 - 00182784 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
2017-07-12 03:39 - 2017-05-03 15:40 - 00104960 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2017-07-12 03:18 - 2017-07-12 03:18 - 00000231 _____ C:\Users\Shira\Documents\lien analise.txt
2017-07-12 02:16 - 2017-07-12 16:45 - 00000000 ____D C:\Users\Shira\Desktop\fixlist.txt
2017-07-12 02:02 - 2017-07-12 02:03 - 00333056 _____ C:\Users\Shira\Downloads\pjjoint_uploader.exe
2017-07-12 01:37 - 2017-07-13 00:53 - 00000000 ____D C:\FRST
2017-07-12 01:13 - 2017-07-12 01:13 - 00000000 ____D C:\Users\Shira\Desktop\Autoruns
2017-07-12 00:56 - 2017-07-12 00:56 - 00000000 ____D C:\Users\Shira\Desktop\process-explorer_16-04_fr_14566
2017-07-12 00:54 - 2017-07-12 00:55 - 01188194 _____ C:\Users\Shira\Downloads\process-explorer_16-04_fr_14566.zip
2017-07-11 23:45 - 2017-07-12 12:55 - 00002295 _____ C:\Users\Shira\Desktop\shira - Chrome.lnk
2017-07-11 23:45 - 2017-07-11 23:45 - 00002339 _____ C:\Users\Shira\Desktop\Personne 2 - Chrome.lnk
2017-07-11 23:22 - 2017-07-11 23:22 - 00002195 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2017-07-11 23:22 - 2017-07-11 23:22 - 00002183 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2017-07-11 22:46 - 2017-07-11 22:48 - 00000000 ____D C:\Users\Shira\AppData\Local\Deployment
2017-07-11 22:46 - 2017-07-11 22:46 - 00000000 ____D C:\Users\Shira\AppData\Local\Apps\2.0
2017-07-11 17:23 - 2017-07-12 06:23 - 00000008 __RSH C:\ProgramData\ntuser.pol
2017-07-11 16:42 - 2017-07-11 16:42 - 00153064 _____ C:\WINDOWS\Minidump\071117-20656-01.dmp
2017-07-10 21:19 - 2017-07-10 21:19 - 00000000 ____D C:\ProgramData\MobileBrServ
2017-07-10 02:40 - 2017-07-10 02:44 - 01607825 _____ C:\Users\Shira\Downloads\Kickdrum.dll
2017-07-10 01:52 - 2017-07-10 01:52 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\reFX
2017-07-10 01:52 - 2017-07-10 01:52 - 00000000 ____D C:\Program Files\Manual
2017-07-10 01:52 - 2017-07-10 01:52 - 00000000 ____D C:\Program Files\Common Files\Digidesign
2017-07-10 01:52 - 2009-10-24 21:15 - 01332224 _____ (AD © 2009) C:\WINDOWS\system32\SYNSOEMU.DLL
2017-07-10 01:52 - 2009-10-23 23:00 - 05811712 _____ (reFX) C:\Program Files\Nexus.dll
2017-07-08 12:59 - 2017-07-10 01:36 - 3442802688 _____ C:\Users\Shira\Downloads\_Getintopc.com_air-nexus2.iso
2017-07-08 01:04 - 2017-07-08 01:04 - 00000000 ____D C:\Users\Shira\AppData\Roaming\globalip
2017-07-08 00:58 - 2017-07-08 00:58 - 00002613 _____ C:\Users\Public\Desktop\VPN Autoconnect.lnk
2017-07-08 00:58 - 2017-07-08 00:58 - 00000000 ____D C:\Program Files\globalip
2017-07-08 00:54 - 2017-07-08 00:55 - 01096704 _____ C:\Users\Shira\Downloads\vpnautoconnect8.msi
2017-07-02 19:55 - 2017-07-02 19:55 - 00000000 ____D C:\Users\Shira\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Go-Liberty 1.2
2017-07-02 19:55 - 2017-07-02 19:55 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Go-Liberty 1.2
2017-07-02 19:55 - 2017-07-02 19:55 - 00000000 ____D C:\Program Files\Go-Liberty 1.2
2017-06-30 22:37 - 2017-06-30 22:37 - 00153016 _____ C:\WINDOWS\Minidump\063017-18718-01.dmp
2017-06-30 00:32 - 2017-06-30 00:32 - 00002177 _____ C:\Users\Shira\Desktop\WhatsApp.lnk
2017-06-30 00:32 - 2017-06-30 00:32 - 00000000 ____D C:\Users\Shira\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WhatsApp
2017-06-30 00:31 - 2017-06-30 00:32 - 00000000 ____D C:\Users\Shira\AppData\Local\WhatsApp
2017-06-29 17:51 - 2017-06-29 17:51 - 00000000 ____D C:\Users\Shira\AppData\Local\ExpressVPN
2017-06-29 17:50 - 2017-06-29 17:50 - 00001929 _____ C:\Users\Public\Desktop\ExpressVPN.lnk
2017-06-29 17:50 - 2017-06-29 17:50 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ExpressVPN
2017-06-29 17:50 - 2017-06-29 17:50 - 00000000 ____D C:\ProgramData\ExpressVPN
2017-06-29 17:50 - 2017-06-29 17:50 - 00000000 ____D C:\Program Files\ExpressVPN
2017-06-29 17:49 - 2017-06-29 17:49 - 00000000 ____D C:\Program Files\ExpressVpn Tap Driver
2017-06-29 17:43 - 2017-06-29 17:47 - 18901064 _____ (ExpressVPN) C:\Users\Shira\Downloads\expressvpn_6.2.0.2405.exe
2017-06-29 15:24 - 2017-06-29 15:24 - 00000000 ____D C:\Program Files\Steinberg
2017-06-29 15:00 - 2017-07-11 14:18 - 00000981 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Navigateur Opera.lnk
2017-06-29 14:11 - 2013-05-20 05:38 - 00000000 ____D C:\WINDOWS\system32\A Window to Europe
2017-06-29 12:16 - 2017-06-29 12:20 - 02069613 _____ C:\Users\Shira\Downloads\Young Thug Drum Kit.rar
2017-06-29 12:15 - 2017-06-29 12:20 - 26680899 _____ C:\Users\Shira\Downloads\NSM DRUM KIT.zip
2017-06-29 12:04 - 2017-06-29 12:04 - 00122826 _____ C:\Users\Shira\Downloads\London On Da Track Nexus Expansion.zip
2017-06-28 17:23 - 2017-06-08 18:15 - 00148104 _____ (Tonec Inc.) C:\WINDOWS\system32\Drivers\idmwfp.sys
2017-06-27 11:28 - 2017-06-27 11:28 - 00001083 _____ C:\Users\Public\Desktop\HMA! Pro VPN.lnk
2017-06-27 11:28 - 2017-06-27 11:28 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HMA! Pro VPN
2017-06-27 11:28 - 2017-06-27 11:28 - 00000000 ____D C:\Program Files\HMA! Pro VPN
2017-06-26 17:53 - 2017-06-26 17:56 - 80900368 _____ (WhatsApp) C:\Users\Shira\Downloads\WhatsAppSetup.exe
2017-06-26 17:37 - 2017-06-30 04:05 - 00000000 ____D C:\Users\Shira\AppData\Roaming\WhatsApp
2017-06-26 17:27 - 2017-06-26 17:27 - 00002071 _____ C:\Users\Public\Desktop\Baidu Browser.lnk
2017-06-26 17:27 - 2017-06-26 17:27 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Baidu Browser
2017-06-26 17:27 - 2017-06-26 17:27 - 00000000 ____D C:\ProgramData\Baidu
2017-06-26 17:26 - 2017-06-26 17:34 - 00000000 ____D C:\Program Files\baidu
2017-06-26 17:26 - 2017-06-26 17:31 - 00000000 ____D C:\Users\Shira\AppData\Roaming\Baidu
2017-06-26 17:26 - 2017-06-26 17:26 - 00000000 ____D C:\Users\Public\Documents\Baidu
2017-06-26 17:20 - 2017-06-30 00:32 - 00000000 ____D C:\Users\Shira\AppData\Local\SquirrelTemp
2017-06-26 15:32 - 2017-06-26 15:32 - 00000000 ____D C:\Users\Shira\AppData\Local\TriSun_Software_Limited
2017-06-26 15:31 - 2017-06-26 15:31 - 00000000 ____D C:\Users\Shira\Downloads\pdf-to-doc
2017-06-26 15:29 - 2017-07-12 14:01 - 00000000 ____D C:\Users\Shira\AppData\Roaming\DMCache
2017-06-26 15:29 - 2017-07-12 01:14 - 00000000 ____D C:\Users\Shira\Downloads\Compressed
2017-06-26 15:29 - 2017-07-11 13:30 - 00000000 ____D C:\Program Files\Internet Download Manager
2017-06-26 15:29 - 2017-07-11 13:22 - 00000000 ____D C:\Users\Shira\AppData\Roaming\IDM
2017-06-26 15:29 - 2017-06-26 15:29 - 00000955 _____ C:\Users\Shira\Desktop\Internet Download Manager.lnk
2017-06-26 15:29 - 2017-06-26 15:29 - 00000000 ____D C:\Users\Shira\Downloads\Video
2017-06-26 15:29 - 2017-06-26 15:29 - 00000000 ____D C:\Users\Shira\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Download Manager
2017-06-26 15:29 - 2017-06-26 15:29 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Internet Download Manager
2017-06-26 15:29 - 2017-06-26 15:29 - 00000000 ____D C:\ProgramData\IDM
2017-06-26 15:14 - 2017-06-26 15:16 - 01823730 _____ C:\Users\Shira\Downloads\pdf-to-doc.zip
2017-06-26 15:11 - 2017-06-26 15:17 - 06928824 _____ (Tonec Inc.) C:\Users\Shira\Downloads\idman627build2.exe
2017-06-25 22:08 - 2017-06-25 22:08 - 00016217 _____ C:\Users\Shira\Downloads\1EF8.tmp
2017-06-23 22:01 - 2017-06-23 22:01 - 00001169 _____ C:\Users\Public\Desktop\PROXIFIER 3.31.lnk
2017-06-23 22:01 - 2017-06-23 22:01 - 00001057 _____ C:\Users\Public\Desktop\SocksClient - HIDEPASS.lnk
2017-06-23 22:01 - 2017-06-23 22:01 - 00001037 _____ C:\Users\Public\Desktop\SocksClient.lnk
2017-06-23 21:47 - 2017-06-23 21:55 - 03604816 _____ (VIP Technologies ) C:\Users\Shira\Downloads\vip72socks-installer.exe
2017-06-22 22:36 - 2017-06-22 22:36 - 00000000 ____D C:\Users\Shira\Desktop\Anciennes données de Firefox
2017-06-22 19:45 - 2017-06-29 14:35 - 00000000 ____D C:\Users\Shira\AppData\Roaming\Maize Sampler Player
2017-06-22 19:26 - 2017-06-22 22:03 - 180737751 _____ C:\Users\Shira\Downloads\LDK1609_Violin_-_32.zip
2017-06-22 16:41 - 2017-06-22 17:56 - 46814163 _____ C:\Users\Shira\Downloads\General.zip
2017-06-22 16:33 - 2017-06-22 18:09 - 75929047 _____ C:\Users\Shira\Downloads\EtherealwindsHarp_32Bit_v1.1.zip
2017-06-22 16:31 - 2017-06-22 16:33 - 01898204 _____ C:\Users\Shira\Downloads\Whitebox_Synthipop.zip
2017-06-22 15:40 - 2017-06-22 15:47 - 06602209 _____ C:\Users\Shira\Downloads\707_Beatbox_serie_Pianovintage.zip
2017-06-22 15:23 - 2017-06-22 15:37 - 03284465 _____ C:\Users\Shira\Downloads\DSK_AkoustiK_GuitarZ.zip
2017-06-22 14:35 - 2017-06-22 14:35 - 01907753 _____ C:\Users\Shira\Documents\guide solfège v2 final.pdf
2017-06-21 00:06 - 2017-06-21 00:07 - 00153016 _____ C:\WINDOWS\Minidump\062117-26328-01.dmp
2017-06-20 21:01 - 2017-04-21 04:16 - 00041976 _____ (The OpenVPN Project) C:\WINDOWS\system32\Drivers\tapwindscribe0901.sys
2017-06-20 20:49 - 2017-06-20 20:59 - 15139472 _____ (Windscribe ) C:\Users\Shira\Downloads\Windscribe (2).exe
2017-06-20 13:05 - 2017-06-20 13:08 - 06202792 _____ (Privax Ltd) C:\Users\Shira\Downloads\HMA-Pro-VPN-2.8.24.0-installer.exe
2017-06-20 12:32 - 2017-06-20 12:32 - 00000984 _____ C:\Users\Public\Desktop\Hotspot Shield.lnk
2017-06-20 12:31 - 2017-06-20 12:32 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hotspot Shield
2017-06-20 03:49 - 2017-06-20 03:49 - 00001954 _____ C:\Users\Shira\Desktop\FL Studio 12.lnk
2017-06-20 03:34 - 2017-06-20 03:49 - 00000000 ____D C:\Users\Shira\Downloads\FL Studio Producer Edition v12.4 _ Full - MIxdotPk
2017-06-19 15:14 - 2017-06-20 00:01 - 671166255 _____ C:\Users\Shira\Downloads\FL Studio Producer Edition v12.4 _ Full - MIxdotPk.rar
2017-06-18 14:47 - 2017-06-18 14:46 - 00054088 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avdevprot.sys
2017-06-14 14:57 - 2017-06-02 12:25 - 00272896 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2017-06-14 14:57 - 2017-06-02 12:24 - 00391680 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssph.dll
2017-06-14 14:57 - 2017-06-02 12:19 - 00900096 _____ (Microsoft Corporation) C:\WINDOWS\HelpPane.exe
2017-06-14 14:57 - 2017-06-02 12:17 - 00699392 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssvp.dll
2017-06-14 14:57 - 2017-06-02 11:43 - 00710144 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2017-06-14 14:57 - 2017-05-15 20:41 - 00098656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tm.sys
2017-06-14 14:57 - 2017-05-15 00:15 - 01119736 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32.dll
2017-06-14 14:57 - 2017-05-14 21:33 - 00085504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tdx.sys
2017-06-14 14:57 - 2017-05-14 21:04 - 00315224 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2017-06-14 14:57 - 2017-05-14 20:01 - 01472056 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2017-06-14 14:57 - 2017-05-14 20:00 - 00128568 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2017-06-14 14:57 - 2017-05-12 19:05 - 00035840 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2017-06-14 14:57 - 2017-05-12 18:13 - 01559552 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2017-06-14 14:57 - 2017-05-12 18:10 - 01088000 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2017-06-14 14:57 - 2017-05-12 17:51 - 00029696 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapp.exe
2017-06-14 14:57 - 2017-05-12 17:50 - 00124928 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuwebv.dll
2017-06-14 14:57 - 2017-05-12 17:49 - 03074560 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2017-06-14 14:57 - 2017-05-12 17:48 - 00334336 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUSettingsProvider.dll
2017-06-14 14:57 - 2017-05-12 17:48 - 00081920 _____ (Microsoft Corporation) C:\WINDOWS\system32\wudriver.dll
2017-06-14 14:57 - 2017-05-12 17:47 - 00726528 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2017-06-14 14:57 - 2017-05-12 17:43 - 02174464 _____ (Microsoft Corporation) C:\WINDOWS\system32\wucltux.dll
2017-06-14 14:57 - 2017-05-12 01:32 - 19788672 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2017-06-14 14:57 - 2017-05-10 20:16 - 00083288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mountmgr.sys
2017-06-14 14:57 - 2017-05-06 17:58 - 00878080 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2017-06-14 14:57 - 2017-05-06 17:58 - 00603136 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32spl.dll
2017-06-14 14:57 - 2017-04-06 18:32 - 00590336 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpd_ci.dll
2017-06-14 14:57 - 2017-04-06 18:16 - 01118208 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2017-06-14 14:57 - 2017-04-06 18:15 - 00358912 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2017-06-14 14:57 - 2017-04-06 18:08 - 01211904 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpsvc.dll
2017-06-14 14:57 - 2017-04-06 17:39 - 00068608 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpdbusenum.dll
2017-06-14 14:57 - 2017-04-02 16:21 - 00148480 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpapisrv.dll
2017-06-12 15:27 - 2017-06-12 15:27 - 00050069 _____ C:\Users\Shira\Documents\Tarifs_WU.pdf
2017-06-12 11:10 - 2017-06-12 11:11 - 00126406 _____ C:\Users\Shira\Downloads\F935CFEA-CCB5-4764-B3B9-17EE9617089B.jpeg
2017-06-11 12:52 - 2017-07-12 14:45 - 00000000 ____D C:\Users\Shira\AppData\Roaming\uTorrent
2017-06-11 12:26 - 2017-06-11 12:27 - 00016640 _____ C:\Users\Shira\Downloads\Serials.Founder.rar
2017-06-05 03:05 - 2017-06-05 03:05 - 00032112 _____ (The OpenVPN Project) C:\WINDOWS\system32\Drivers\tapexpressvpn.sys
2017-06-01 17:18 - 2017-06-01 18:29 - 97766744 _____ (Lenovo Group Limited ) C:\Users\Shira\Downloads\83d640ww.exe
2017-06-01 15:49 - 2017-06-01 15:49 - 00000000 ____D C:\Users\Shira\AppData\Roaming\Keolab
2017-06-01 15:48 - 2017-06-01 15:48 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Keolab
2017-06-01 15:42 - 2017-06-01 15:44 - 03046108 _____ (Keolab ) C:\Users\Shira\Downloads\spicyguitar_win_32.exe
2017-05-26 17:41 - 2017-05-26 17:41 - 00153016 _____ C:\WINDOWS\Minidump\052617-21656-01.dmp
2017-05-26 13:02 - 2017-05-26 13:02 - 00001838 _____ C:\Users\Shira\Downloads\License (1).avastvpn
2017-05-19 03:48 - 2017-05-19 03:50 - 07567088 _____ (Privax Ltd) C:\Users\Shira\Downloads\HMA-Pro-VPN-3.4.6.1-install (2).exe
2017-05-19 02:20 - 2017-05-19 02:22 - 07567088 _____ (Privax Ltd) C:\Users\Shira\Downloads\HMA-Pro-VPN-3.4.6.1-install (1).exe
2017-05-18 01:07 - 2017-05-18 01:08 - 00153064 _____ C:\WINDOWS\Minidump\051817-17500-01.dmp
2017-05-17 15:29 - 2017-06-20 12:31 - 00000000 ____D C:\Program Files\Hotspot Shield
2017-05-17 15:28 - 2017-06-20 12:32 - 00000000 ____D C:\ProgramData\Hotspot Shield
2017-05-17 15:26 - 2017-05-17 15:08 - 15314632 _____ (AnchorFree Inc.) C:\Users\Shira\Downloads\HSS-815.exe
2017-05-15 00:21 - 2017-05-15 00:21 - 00153016 _____ C:\WINDOWS\Minidump\051517-18500-01.dmp
2017-05-14 16:51 - 2017-05-14 16:52 - 00609408 _____ C:\WINDOWS\Minidump\051417-430281-01.dmp
2017-05-14 10:25 - 2017-04-16 11:07 - 01566032 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2017-05-14 10:25 - 2017-04-16 11:07 - 01213792 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2017-05-14 10:25 - 2017-04-16 11:07 - 00548032 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinTypes.dll
2017-05-14 10:25 - 2017-04-16 11:05 - 00888896 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2017-05-14 10:25 - 2017-04-16 11:05 - 00612096 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2017-05-14 10:25 - 2017-04-16 10:00 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\MshtmlDac.dll
2017-05-14 10:25 - 2017-04-16 09:53 - 02290176 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2017-05-14 10:25 - 2017-04-16 09:47 - 00104960 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieetwcollector.exe
2017-05-14 10:25 - 2017-04-16 09:29 - 00073216 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdc.ocx
2017-05-14 10:25 - 2017-04-16 09:24 - 00076288 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2017-05-14 10:25 - 2017-04-16 09:23 - 00128000 _____ (Microsoft Corporation) C:\WINDOWS\system32\iepeers.dll
2017-05-14 10:25 - 2017-04-16 09:22 - 00279040 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll
2017-05-14 10:25 - 2017-04-16 09:12 - 00230400 _____ (Microsoft Corporation) C:\WINDOWS\system32\webcheck.dll
2017-05-14 10:25 - 2017-04-16 09:10 - 00689664 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2017-05-14 10:25 - 2017-04-16 09:10 - 00330752 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2017-05-14 10:25 - 2017-04-16 09:08 - 02057216 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2017-05-14 10:25 - 2017-04-16 09:02 - 00267776 _____ (Microsoft Corporation) C:\WINDOWS\system32\wincorlib.dll
2017-05-14 10:25 - 2017-04-16 08:58 - 00644608 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcss.dll
2017-05-14 10:25 - 2017-04-09 22:35 - 01325408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2017-05-14 10:25 - 2017-04-09 22:35 - 00319328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2017-05-14 10:25 - 2017-03-31 23:59 - 01612504 _____ (Microsoft Corporation) C:\WINDOWS\system32\crypt32.dll
2017-05-14 10:25 - 2017-03-13 18:13 - 00159232 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmitomi.dll
2017-05-14 10:25 - 2017-03-13 18:07 - 02170880 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmSvc.dll
2017-05-14 10:25 - 2017-03-13 18:06 - 00236032 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmWmiPl.dll
2017-05-14 10:25 - 2017-03-11 02:02 - 00239960 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msiscsi.sys
2017-05-14 10:25 - 2017-03-09 21:17 - 00230400 _____ (Microsoft Corporation) C:\WINDOWS\system32\wisp.dll
2017-05-11 09:25 - 2017-05-11 09:30 - 03907975 _____ C:\Users\Shira\Downloads\davido_if_lyric_video_aac_26732.m4a
2017-05-09 19:57 - 2017-05-09 20:08 - 06224185 _____ (Windscribe ) C:\Users\Shira\Downloads\Non confirmé 703928.crdownload
2017-04-27 09:03 - 2017-04-27 09:04 - 00153016 _____ C:\WINDOWS\Minidump\042717-19531-01.dmp
2017-04-26 15:49 - 2017-04-26 15:49 - 00036944 _____ (Anchorfree Inc.) C:\WINDOWS\system32\Drivers\taphss6.sys
2017-04-19 21:41 - 2016-06-18 20:41 - 00063088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpfve.sys
2017-04-19 21:41 - 2016-06-18 20:40 - 00501600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fvevol.sys
2017-04-19 21:41 - 2016-06-11 18:20 - 00413184 _____ (Microsoft Corporation) C:\WINDOWS\system32\webio.dll
2017-04-19 21:41 - 2016-06-11 18:16 - 00626176 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll
2017-04-19 21:41 - 2016-06-10 20:15 - 05468136 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2017-04-19 21:41 - 2016-06-10 20:15 - 01192576 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2017-04-19 21:41 - 2016-06-10 20:15 - 00227736 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppwinob.dll
2017-04-19 21:41 - 2016-06-10 20:10 - 00099136 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptxml.dll
2017-04-19 21:41 - 2016-06-10 20:07 - 03273728 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcore.dll
2017-04-19 21:41 - 2016-05-18 22:16 - 02317824 _____ (Microsoft Corporation) C:\WINDOWS\system32\CertEnroll.dll
2017-04-19 21:41 - 2016-05-14 00:23 - 00093184 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidclass.sys
2017-04-19 21:41 - 2016-05-14 00:23 - 00021504 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidusb.sys
2017-04-19 21:41 - 2016-05-07 00:03 - 00288600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Classpnp.sys
2017-04-19 21:41 - 2016-04-09 23:59 - 00218112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Geolocation.dll
2017-04-19 21:41 - 2016-04-09 23:49 - 00665088 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPSSVC.dll
2017-04-19 21:41 - 2016-04-07 17:20 - 00824320 _____ (Microsoft Corporation) C:\WINDOWS\system32\iphlpsvc.dll
2017-04-19 21:41 - 2016-04-06 19:53 - 00094560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mup.sys
2017-04-19 21:41 - 2016-04-06 18:49 - 00309248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2017-04-19 21:41 - 2016-04-06 18:25 - 15158272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2017-04-19 21:41 - 2016-04-05 23:16 - 00167936 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndiswan.sys
2017-04-19 21:40 - 2016-06-11 19:14 - 00192512 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpresult.exe
2017-04-19 21:40 - 2016-06-11 18:21 - 00363520 _____ (Microsoft Corporation) C:\WINDOWS\system32\tpmvsc.dll
2017-04-19 21:40 - 2016-06-09 20:18 - 00199168 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebClnt.dll
2017-04-19 21:40 - 2016-06-07 19:13 - 00066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\hbaapi.dll
2017-04-19 21:40 - 2016-05-18 23:15 - 00044032 _____ (Microsoft Corporation) C:\WINDOWS\system32\certenc.dll
2017-04-19 21:40 - 2016-05-18 22:59 - 00324096 _____ (Microsoft Corporation) C:\WINDOWS\system32\certcli.dll
2017-04-19 21:40 - 2016-05-14 00:23 - 00026880 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidparse.sys
2017-04-19 21:40 - 2016-05-12 19:39 - 00030984 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserAccountBroker.exe
2017-04-19 21:40 - 2016-04-09 23:59 - 00020480 _____ (Microsoft Corporation) C:\WINDOWS\system32\wfapigp.dll
2017-04-19 21:40 - 2016-04-09 23:56 - 00543232 _____ (Microsoft Corporation) C:\WINDOWS\system32\FirewallAPI.dll
2017-04-19 21:40 - 2016-04-09 23:52 - 00281088 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationApi.dll
2017-04-19 21:40 - 2016-04-07 17:38 - 00015360 _____ (Microsoft Corporation) C:\WINDOWS\system32\httpprxp.dll
2017-04-19 21:40 - 2016-04-07 17:33 - 00104448 _____ (Microsoft Corporation) C:\WINDOWS\system32\httpprxm.dll
2017-04-19 21:40 - 2016-04-07 17:26 - 00063488 _____ (Microsoft Corporation) C:\WINDOWS\system32\adhsvc.dll
2017-04-19 21:40 - 2016-04-02 15:42 - 00088576 _____ (Microsoft Corporation) C:\WINDOWS\system32\BdeHdCfgLib.dll
2017-04-19 21:40 - 2016-04-01 19:04 - 00309248 _____ (Microsoft Corporation) C:\WINDOWS\system32\fvecpl.dll
2017-04-19 21:40 - 2016-04-01 18:36 - 00297984 _____ (Microsoft Corporation) C:\WINDOWS\system32\bdesvc.dll
2017-04-19 21:40 - 2016-04-01 18:35 - 00592896 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll
2017-04-19 21:10 - 2017-06-14 14:38 - 00229888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb10.sys
2017-04-19 21:10 - 2017-06-14 14:37 - 00328192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2017-04-19 21:10 - 2017-06-14 14:37 - 00153088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys
2017-04-19 21:10 - 2017-03-12 17:01 - 00025600 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BasicRender.sys
2017-04-19 21:10 - 2017-03-11 05:56 - 01489608 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll
2017-04-19 21:10 - 2017-03-04 20:15 - 00077824 _____ (Microsoft Corporation) C:\WINDOWS\system32\asycfilt.dll
2017-04-19 21:10 - 2017-03-04 18:35 - 02976256 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll
2017-04-19 21:10 - 2017-03-03 17:06 - 01501184 _____ (Microsoft Corporation) C:\WINDOWS\system32\quartz.dll
2017-04-19 21:10 - 2017-03-03 17:04 - 00092672 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmjpegdec.dll
2017-04-19 21:10 - 2017-02-11 18:42 - 00204288 _____ (Microsoft Corporation) C:\WINDOWS\system32\DafPrintProvider.dll
2017-04-19 21:10 - 2017-02-10 16:37 - 00038920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdBoot.sys
2017-04-19 21:10 - 2017-02-04 19:19 - 00065024 _____ (Microsoft Corporation) C:\WINDOWS\system32\samlib.dll
2017-04-19 21:10 - 2017-02-04 19:16 - 00616960 _____ (Microsoft Corporation) C:\WINDOWS\system32\samsrv.dll
2017-04-19 21:10 - 2017-01-19 04:21 - 00870224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2017-04-19 21:10 - 2017-01-18 16:34 - 00922432 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase.dll
2017-04-19 21:10 - 2017-01-14 21:18 - 00787688 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2017-04-19 21:10 - 2017-01-12 18:55 - 00231256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdFilter.sys
2017-04-19 21:10 - 2017-01-12 18:55 - 00085336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdNisDrv.sys
2017-04-19 21:10 - 2017-01-11 19:31 - 00369496 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2017-04-19 21:10 - 2017-01-11 17:09 - 00296960 _____ (Microsoft Corporation) C:\WINDOWS\system32\SessEnv.dll
2017-04-19 21:10 - 2017-01-10 22:21 - 00105472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dfsc.sys
2017-04-19 21:10 - 2017-01-10 21:20 - 00696832 _____ (Microsoft Corporation) C:\WINDOWS\system32\netlogon.dll
2017-04-19 21:10 - 2017-01-10 21:09 - 01108480 _____ (Microsoft Corporation) C:\WINDOWS\system32\mispace.dll
2017-04-19 21:10 - 2017-01-06 19:04 - 01495552 _____ (Microsoft Corporation) C:\WINDOWS\system32\storagewmi.dll
2017-04-19 21:10 - 2016-12-25 02:25 - 00035328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\scfilter.sys
2017-04-19 21:10 - 2016-12-25 02:19 - 00170496 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinSCard.dll
2017-04-19 21:10 - 2016-12-25 01:58 - 00130048 _____ (Microsoft Corporation) C:\WINDOWS\system32\certprop.dll
2017-04-19 21:10 - 2016-12-25 01:13 - 00105984 _____ (Microsoft Corporation) C:\WINDOWS\system32\ScDeviceEnum.dll
2017-04-19 20:52 - 2014-06-10 00:13 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe
2017-04-19 20:27 - 2017-04-08 00:06 - 00430248 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2017-04-18 18:40 - 2017-04-18 18:41 - 01175662 _____ C:\Users\Shira\Downloads\sexy daniella string rose.mp4

==================== Trois mois - Modifiés - fichiers et dossiers ========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2017-07-12 14:42 - 2016-06-11 21:07 - 00000000 ____D C:\Users\Shira\AppData\Roaming\Skype
2017-07-12 14:42 - 2016-06-11 21:06 - 00000000 ____D C:\ProgramData\Skype
2017-07-12 14:37 - 2017-04-05 20:44 - 00000000 ____D C:\ProgramData\F-Secure
2017-07-12 14:03 - 2013-08-22 09:23 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2017-07-12 14:01 - 2017-01-07 13:05 - 00000000 ____D C:\Program Files\Mozilla Firefox
2017-07-12 13:31 - 2016-04-15 11:29 - 00000000 ____D C:\Users\Shira
2017-07-12 07:31 - 2013-08-22 10:17 - 00000000 ____D C:\WINDOWS\rescache
2017-07-12 05:26 - 2016-04-14 12:32 - 00000000 ____D C:\ProgramData\Package Cache
2017-07-12 05:20 - 2016-04-15 11:44 - 00000994 _____ C:\Users\Shira\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2017-07-12 05:20 - 2016-04-11 15:21 - 00000995 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2017-07-12 05:20 - 2016-04-11 15:21 - 00000983 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2017-07-12 05:20 - 2016-04-10 04:27 - 00000916 _____ C:\Users\Public\Desktop\Navigateur Opera.lnk
2017-07-12 04:24 - 2016-04-10 22:34 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
2017-07-12 03:59 - 2013-08-22 09:22 - 00473080 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2017-07-12 03:59 - 2013-08-22 08:21 - 00000000 ____D C:\WINDOWS\inf
2017-07-12 03:55 - 2017-03-31 10:06 - 00000000 ____D C:\WINDOWS\system32\Appraiser
2017-07-12 03:54 - 2012-07-26 08:43 - 00000000 ____D C:\WINDOWS\CbsTemp
2017-07-12 03:31 - 2016-04-11 15:21 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service
2017-07-12 03:30 - 2016-04-12 09:21 - 00000000 ____D C:\WINDOWS\system32\MRT
2017-07-12 03:25 - 2016-04-12 09:21 - 132532600 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2017-07-12 03:21 - 2017-01-10 14:50 - 00000000 ____D C:\Users\Shira\AppData\LocalLow\Mozilla
2017-07-11 23:20 - 2016-04-10 05:42 - 00000000 ____D C:\Program Files\Google
2017-07-11 21:32 - 2014-11-22 03:22 - 01824010 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2017-07-11 21:32 - 2014-11-22 02:38 - 00812350 _____ C:\WINDOWS\system32\perfh00C.dat
2017-07-11 21:32 - 2014-11-22 02:38 - 00159412 _____ C:\WINDOWS\system32\perfc00C.dat
2017-07-11 18:46 - 2016-04-10 20:25 - 00000000 ____D C:\Users\Shira\AppData\Roaming\vlc
2017-07-11 16:42 - 2016-09-13 02:30 - 294053934 _____ C:\WINDOWS\MEMORY.DMP
2017-07-11 16:42 - 2016-09-13 02:30 - 00000000 ____D C:\WINDOWS\Minidump
2017-07-11 14:18 - 2016-04-10 04:27 - 00000000 ____D C:\Program Files\Opera
2017-07-11 14:09 - 2013-08-22 08:13 - 00262144 ___SH C:\WINDOWS\system32\config\BBI
2017-07-10 02:08 - 2017-02-27 15:26 - 00000000 ____D C:\Users\Shira\Downloads\dccrap
2017-07-08 01:34 - 2013-08-22 10:17 - 00000000 ____D C:\WINDOWS\system32\NDF
2017-06-30 02:27 - 2014-11-22 06:24 - 00835576 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2017-06-30 02:27 - 2014-11-22 06:24 - 00177656 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2017-06-29 11:48 - 2017-01-17 17:03 - 00000000 ____D C:\Users\Shira\AppData\Local\CyberGhost
2017-06-23 22:01 - 2016-04-10 22:23 - 00000000 ____D C:\Users\Shira\AppData\Roaming\VIP72 Socks Client
2017-06-23 22:01 - 2016-04-10 22:23 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VIP72 Socks Client
2017-06-21 01:35 - 2016-08-20 15:10 - 00000000 ____D C:\Users\Shira\AppData\Local\ElevatedDiagnostics
2017-06-21 00:07 - 2017-03-27 10:40 - 00000000 ____D C:\Program Files\Windscribe
2017-06-20 21:01 - 2017-03-27 10:40 - 00001005 _____ C:\Users\Public\Desktop\Windscribe.lnk
2017-06-20 21:01 - 2017-03-27 10:40 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windscribe
2017-06-20 20:07 - 2017-01-03 14:17 - 00000000 ____D C:\Program Files\ibVPN_2.x
2017-06-20 03:49 - 2017-03-30 22:39 - 00000000 ____D C:\Program Files\VstPlugins
2017-06-20 03:48 - 2017-03-30 22:36 - 00000000 ____D C:\Users\Shira\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Image-Line
2017-06-20 03:47 - 2017-03-30 22:15 - 00000000 ____D C:\Program Files\Image-Line
2017-06-19 15:26 - 2016-04-10 04:02 - 00000000 ____D C:\Users\Shira\AppData\Local\Packages
2017-06-19 15:26 - 2013-08-22 10:17 - 00000000 ___HD C:\Program Files\WindowsApps
2017-06-19 15:26 - 2013-08-22 10:17 - 00000000 ____D C:\WINDOWS\AppReadiness
2017-06-18 14:46 - 2016-10-06 11:53 - 00037472 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avusbflt.sys
2017-06-18 14:46 - 2016-04-10 04:13 - 00162080 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avipbb.sys
2017-06-18 14:46 - 2016-04-10 04:13 - 00140296 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avgntflt.sys
2017-06-15 19:50 - 2016-04-15 19:28 - 00000000 ____D C:\Users\Shira\Documents\Youcam
2017-06-14 23:26 - 2013-08-22 10:17 - 00000000 ___RD C:\WINDOWS\ToastData

==================== Fichiers à la racine de certains dossiers =======

2017-07-10 01:52 - 2009-10-23 23:00 - 5811712 _____ (reFX) C:\Program Files\Nexus.dll

Certains fichiers dans TEMP:
====================
2016-04-15 11:46 - 2016-04-15 11:46 - 0000000 ____D () C:\Users\Shira\AppData\Local\Temp\avgnt.exe

==================== Bamital & volsnap ======================

(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)

C:\WINDOWS\explorer.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\winlogon.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\wininit.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\svchost.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\services.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\User32.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\userinit.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\rpcss.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\dnsapi.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\Drivers\volsnap.sys => Le fichier est signé numériquement

==================== BCD ================================

Gestionnaire de d‚marrage Windows
---------------------------------
identificateur {bootmgr}
device partition=D:
description Windows Boot Manager
locale fr-FR
inherit {globalsettings}
integrityservices Enable
default {current}
resumeobject {ddf9126f-02f2-11e6-bec5-d8472495713f}
displayorder {current}
toolsdisplayorder {memdiag}
timeout 30

Chargeur de d‚marrage Windows
-----------------------------
identificateur {99636183-ff27-11e5-9506-fd7a829cefc7}
device ramdisk=[C:]\Recovery\99636183-ff27-11e5-9506-fd7a829cefc7\Winre.wim,{99636184-ff27-11e5-9506-fd7a829cefc7}
path \windows\system32\winload.exe
description Windows Recovery Environment
inherit {bootloadersettings}
osdevice ramdisk=[C:]\Recovery\99636183-ff27-11e5-9506-fd7a829cefc7\Winre.wim,{99636184-ff27-11e5-9506-fd7a829cefc7}
systemroot \windows
nx OptIn
winpe Yes

Chargeur de d‚marrage Windows
-----------------------------
identificateur {99636187-ff27-11e5-9506-fd7a829cefc7}
device ramdisk=[C:]\Recovery\99636187-ff27-11e5-9506-fd7a829cefc7\Winre.wim,{99636188-ff27-11e5-9506-fd7a829cefc7}
path \windows\system32\winload.exe
description Windows Recovery Environment
locale fr-FR
inherit {bootloadersettings}
displaymessage Recovery
displaymessageoverride Recovery
osdevice ramdisk=[C:]\Recovery\99636187-ff27-11e5-9506-fd7a829cefc7\Winre.wim,{99636188-ff27-11e5-9506-fd7a829cefc7}
systemroot \windows
nx OptIn
bootmenupolicy Standard
winpe Yes

Chargeur de d‚marrage Windows
-----------------------------
identificateur {current}
device partition=C:
path \WINDOWS\system32\winload.exe
description Windows 8.1
locale fr-FR
inherit {bootloadersettings}
integrityservices Enable
recoveryenabled Yes
allowedinmemorysettings 0x15000075
osdevice partition=C:
systemroot \WINDOWS
resumeobject {ddf9126f-02f2-11e6-bec5-d8472495713f}
nx OptIn
bootmenupolicy Standard

Reprendre … partir de la mise en veille prolong‚e
-------------------------------------------------
identificateur {99636185-ff27-11e5-9506-fd7a829cefc7}
device partition=C:
path \Windows\system32\winresume.exe
description Windows Resume Application
locale fr-FR
inherit {resumeloadersettings}
recoverysequence {99636187-ff27-11e5-9506-fd7a829cefc7}
recoveryenabled Yes
allowedinmemorysettings 0x15000075
filedevice partition=C:
filepath \hiberfil.sys
bootmenupolicy Standard
pae Yes
debugoptionenabled No

Reprendre … partir de la mise en veille prolong‚e
-------------------------------------------------
identificateur {ddf9126f-02f2-11e6-bec5-d8472495713f}
device partition=C:
path \WINDOWS\system32\winresume.exe
description Windows Resume Application
locale fr-FR
inherit {resumeloadersettings}
recoveryenabled Yes
allowedinmemorysettings 0x15000075
filedevice partition=C:
filepath \hiberfil.sys
bootmenupolicy Standard
pae Yes
debugoptionenabled No

Testeur de m‚moire Windows
--------------------------
identificateur {memdiag}
device partition=D:
path \boot\memtest.exe
description Diagnostics m‚moire Windows
locale fr-FR
inherit {globalsettings}
badmemoryaccess Yes

ParamŠtres EMS
--------------
identificateur {emssettings}
bootems No

ParamŠtres du d‚bogueur
-----------------------
identificateur {dbgsettings}
debugtype Serial
debugport 1
baudrate 115200

Erreurs de m‚moire RAM
----------------------
identificateur {badmemory}

ParamŠtres globaux
------------------
identificateur {globalsettings}
inherit {dbgsettings}
{emssettings}
{badmemory}

ParamŠtres du chargeur de d‚marrage
-----------------------------------
identificateur {bootloadersettings}
inherit {globalsettings}
{hypervisorsettings}

ParamŠtres de l'hyperviseur
-------------------
identificateur {hypervisorsettings}
hypervisordebugtype Serial
hypervisordebugport 1
hypervisorbaudrate 115200

ParamŠtres du chargeur de reprise
---------------------------------
identificateur {resumeloadersettings}
inherit {globalsettings}

Options de p‚riph‚rique
-----------------------
identificateur {4bfa4688-02e0-11e6-afa5-28924a42a9e2}
description Windows Setup
ramdisksdidevice partition=C:
ramdisksdipath \$WINDOWS.~BT\Sources\SafeOS\boot.sdi

Options de p‚riph‚rique
-----------------------
identificateur {99636184-ff27-11e5-9506-fd7a829cefc7}
description Ramdisk Options
ramdisksdidevice partition=C:
ramdisksdipath \Recovery\99636183-ff27-11e5-9506-fd7a829cefc7\boot.sdi

Options de p‚riph‚rique
-----------------------
identificateur {99636188-ff27-11e5-9506-fd7a829cefc7}
description Windows Recovery
ramdisksdidevice partition=C:
ramdisksdipath \Recovery\99636187-ff27-11e5-9506-fd7a829cefc7\boot.sdi

LastRegBack: 2017-07-10 09:12

==================== Fin de FRST.txt ============================

Signaler le contenu de ce document