Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x86) Version: 23-10-2017
Exécuté par Diaby (administrateur) sur DIABY-PC (23-10-2017 18:47:25)
Exécuté depuis C:\Users\Diaby\Desktop
Profils chargés: Diaby (Profils disponibles: Diaby & 123 & Administrateur)
Platform: Microsoft Windows 7 Professionnel Service Pack 1 (X86) Langue: Français (France)
Internet Explorer Version 11 (Navigateur par défaut: FF)
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtHDVBg.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\afwServ.exe
(Intel) C:\Program Files\Intel Driver and Support Assistant\DSAService.exe
(Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE
(Dashlane, Inc.) C:\Users\Diaby\AppData\Roaming\Dashlane\Dashlane.exe
(Dashlane, Inc.) C:\Users\Diaby\AppData\Roaming\Dashlane\DashlanePlugin.exe
(AVAST Software s.r.o.) C:\Program Files\AVAST Software\Avast\aswidsagent.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(Smilegate Games Inc.) C:\Program Files\Smilegate\Crossfire Europe EU\HGWC.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
==================== Registre (Avec liste blanche) ===========================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [16553472 2017-10-07] (Realtek Semiconductor)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [253344 2017-10-23] (AVAST Software)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-377985148-792701347-3327087119-1001\...\Run: [Dashlane] => C:\Users\Diaby\AppData\Roaming\Dashlane\Dashlane.exe [508880 2017-10-16] (Dashlane, Inc.)
HKU\S-1-5-21-377985148-792701347-3327087119-1001\...\Run: [DashlanePlugin] => C:\Users\Diaby\AppData\Roaming\Dashlane\DashlanePlugin.exe [552912 2017-10-16] (Dashlane, Inc.)
HKU\S-1-5-21-377985148-792701347-3327087119-1001\...\Policies\system: [EnableLUA] 0
HKU\S-1-5-21-377985148-792701347-3327087119-1001\...\Policies\Explorer: [NolowDiskSpaceChecks] 1
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.254
Tcpip\..\Interfaces\{46A5EE55-2C19-45A4-B4B2-E42D0374E136}: [NameServer] 8.8.8.8
Tcpip\..\Interfaces\{89A269BD-3347-419E-8F91-D323DB09F111}: [NameServer] 77.234.40.79
Tcpip\..\Interfaces\{C9FA069C-0B47-4BBA-825B-47D487D5A075}: [NameServer] 8.8.8.8
Tcpip\..\Interfaces\{C9FA069C-0B47-4BBA-825B-47D487D5A075}: [DhcpNameServer] 192.168.0.254
Tcpip\..\Interfaces\{CF0EADD1-4233-4C77-BE3C-B3722AFDBAA7}: [NameServer] 8.8.8.8
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=msnhome
HKU\S-1-5-21-377985148-792701347-3327087119-1001\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\S-1-5-21-377985148-792701347-3327087119-1001\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2017-10-23] (AVAST Software)
Handler: livecall - Pas de valeur CLSID -
FireFox:
========
FF DefaultProfile: d5euczvv.default
FF DefaultProfile: mamou851@hotmail.com
FF ProfilePath: C:\Users\Diaby\AppData\Roaming\Mozilla\Firefox\Profiles\d5euczvv.default [2017-10-23]
FF Homepage: Mozilla\Firefox\Profiles\d5euczvv.default -> hxxps://www.qwant.com/?client=qwant-firefox
FF Extension: (Dashlane) - C:\Users\Diaby\AppData\Roaming\Mozilla\Firefox\Profiles\d5euczvv.default\Extensions\jetpack-extension@dashlane.com.xpi [2017-10-19]
FF Extension: (Qwant for Firefox) - C:\Users\Diaby\AppData\Roaming\Mozilla\Firefox\Profiles\d5euczvv.default\Extensions\qwantcomforfirefox@jetpack.xpi [2017-10-18]
FF Extension: (uBlock Origin) - C:\Users\Diaby\AppData\Roaming\Mozilla\Firefox\Profiles\d5euczvv.default\Extensions\uBlock0@raymondhill.net.xpi [2017-10-22]
FF Extension: (Avast Online Security) - C:\Users\Diaby\AppData\Roaming\Mozilla\Firefox\Profiles\d5euczvv.default\Extensions\wrc@avast.com.xpi [2017-10-23]
FF HKU\S-1-5-21-377985148-792701347-3327087119-1001\...\Firefox\Extensions: [{F17C1572-C9EC-4e5c-A542-D05CBB5C5A08}] - C:\Program Files\DAP\DAPFireFox => non trouvé(e)
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_27_0_0_159.dll [2017-10-14] ()
FF Plugin: @adobe.com/ShockwavePlayer -> C:\Windows\system32\Adobe\Director\np32dsw_1229199.dll [2017-03-31] (Adobe Systems, Inc.)
FF Plugin: @microsoft.com/GENUINE -> C:\Windows\system32\Wat\npWatWeb.dll [2017-04-04] (Microsoft Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\3.0.40818.0\npctrl.dll [2009-08-17] ( Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-10-06] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-10-06] (Google Inc.)
FF Plugin HKU\S-1-5-21-377985148-792701347-3327087119-1001: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Diaby\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2017-05-18] (Unity Technologies ApS)
Chrome:
=======
CHR DefaultProfile: ChromeDefaultData
CHR DefaultSearchURL: ChromeDefaultData -> hxxp://srch.bar/{searchTerms}
CHR DefaultSuggestURL: ChromeDefaultData -> hxxp://srch.bar/?s={searchTerms}
CHR Profile: C:\Users\Diaby\AppData\Local\Google\Chrome\User Data\ChromeDefaultData [2017-10-23] <==== ATTENTION
CHR Extension: (Avira Safe Shopping) - C:\Users\Diaby\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\ccbpbkebodcjkknkfkpmfeciinhidaeh [2017-10-22]
CHR Extension: (Télécommande Virtuelle Freebox Révolution/HD) - C:\Users\Diaby\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\fdhpkpfbolhjcbejckjbiciinkcjlijj [2017-08-12]
CHR Extension: (Dashlane - Gestionnaire de mots de passe sécurisé) - C:\Users\Diaby\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\fdjamakpfbbddfjaooikfcpapjohcfmg [2017-10-22]
CHR Extension: (Protection Web Avira) - C:\Users\Diaby\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\flliilndjeohchalpbbcdekjklbdgfkk [2017-08-05]
CHR Extension: (twerk) - C:\Users\Diaby\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\jhdnjmjhmfihbfjdgmnappnoaehnhiaf [2017-10-07]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Diaby\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-08-23]
CHR Extension: (Chrome Media Router) - C:\Users\Diaby\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-10-06]
CHR Profile: C:\Users\Diaby\AppData\Local\Google\Chrome\User Data\Default [2017-10-23]
CHR Extension: (Docs) - C:\Users\Diaby\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-05-01]
CHR Extension: (Google Drive) - C:\Users\Diaby\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-05-01]
CHR Extension: (YouTube) - C:\Users\Diaby\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-05-01]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Diaby\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-05-01]
CHR Extension: (Gmail) - C:\Users\Diaby\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-05-01]
CHR HKLM\...\Chrome\Extension: [bpmmandcadflhnnaiclipadomfmdbjbp] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [ccbpbkebodcjkknkfkpmfeciinhidaeh] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [elmkjjfkkchohaaoljobaffjeedcoocj] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [ffdcfjdljhbehggjdkdioajnknjcpbjb] - C:\Program Files\DAP\DAPChrome\DAPChrome6.crx
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [hkhkiakolggnnicallabhkobalpeplpi] -
CHR HKLM\...\Chrome\Extension: [nahhmpbckpgdidfnmfkfgiflpjijilce] - hxxps://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-377985148-792701347-3327087119-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [bpmmandcadflhnnaiclipadomfmdbjbp] - hxxps://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-377985148-792701347-3327087119-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [elmkjjfkkchohaaoljobaffjeedcoocj] - hxxps://clients2.google.com/service/update2/crx
==================== Services (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [5828816 2017-10-23] (AVAST Software s.r.o.)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [281416 2017-10-23] (AVAST Software)
R2 avast! Firewall; C:\Program Files\AVAST Software\Avast\afwServ.exe [330832 2017-10-23] (AVAST Software)
S3 BEService; C:\Program Files\Common Files\BattlEye\BEService.exe [1291784 2017-10-20] ()
R2 DSAService; C:\Program Files\Intel Driver and Support Assistant\DSAService.exe [22816 2017-09-18] (Intel)
S3 EasyAntiCheat; C:\Windows\system32\EasyAntiCheat.exe [383016 2017-06-09] (EasyAntiCheat Ltd)
S3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [4430792 2017-08-21] (Malwarebytes)
S3 npggsvc; C:\Windows\system32\GameMon.des [5691912 2016-05-18] (INCA Internet Co., Ltd.)
S4 Ntp2NetSvc; C:\Program Files\notepad2\notepad2.exe [2340864 2017-02-16] (Don HO don.h@free.fr) [Fichier non signé]
S4 Ntp2UpSvc; C:\Program Files\Common Files\ntp2UpSvc\notepad2.exe [2340864 2017-07-13] (Don HO don.h@free.fr) [Fichier non signé]
S3 PSEXESVC; C:\Windows\PSEXESVC.exe [189792 2017-10-09] (Sysinternals)
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService.exe [279552 2017-10-07] (Realtek Semiconductor)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2013-05-27] (Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ======================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R1 aswbidsdriver; C:\Windows\system32\drivers\aswbidsdriverx.sys [255624 2017-10-23] (AVAST Software s.r.o.)
R0 aswbidsh; C:\Windows\system32\drivers\aswbidshx.sys [157416 2017-10-23] (AVAST Software s.r.o.)
R0 aswblog; C:\Windows\system32\drivers\aswblogx.sys [276736 2017-10-23] (AVAST Software s.r.o.)
R0 aswbuniv; C:\Windows\system32\drivers\aswbunivx.sys [50384 2017-10-23] (AVAST Software s.r.o.)
S3 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [42856 2017-10-23] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [124952 2017-10-23] (AVAST Software)
R3 aswNetNd6; C:\Windows\System32\DRIVERS\aswNetNd6.sys [36104 2017-10-23] (AVAST Software)
R1 aswNetSec; C:\Windows\system32\drivers\aswNetSec.sys [409096 2017-10-23] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [99560 2017-10-23] (AVAST Software)
R0 aswRvrt; C:\Windows\system32\drivers\aswRvrt.sys [70864 2017-10-23] (AVAST Software)
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [777952 2017-10-23] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [499560 2017-10-23] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [149824 2017-10-23] (AVAST Software)
S3 aswTap; C:\Windows\System32\DRIVERS\aswTap.sys [48152 2017-08-17] (The OpenVPN Project)
R0 aswVmm; C:\Windows\system32\drivers\aswVmm.sys [297840 2017-10-23] (AVAST Software)
R0 Bhbase; C:\Windows\System32\drivers\Bhbase.sys [47456 2014-03-11] (Baidu, Inc.)
S3 hamachi; C:\Windows\System32\DRIVERS\hamachi.sys [27968 2017-05-22] (LogMeIn, Inc.)
R1 HWiNFO32; C:\Windows\system32\drivers\HWiNFO32.SYS [23840 2016-05-26] (REALiX(tm))
S3 ksapi; C:\Windows\system32\drivers\ksapi.sys [81768 2017-07-07] (Kingsoft Corporation)
S3 MBAMSwissArmy; C:\Windows\System32\DRIVERS\mbamswissarmy.sys [221112 2017-10-22] (Malwarebytes)
S3 NPPTNT2; C:\Windows\system32\npptNT2.sys [4682 2004-12-30] (INCA Internet Co., Ltd.) [Fichier non signé]
S3 tap0901; C:\Windows\System32\DRIVERS\tap0901.sys [30696 2017-01-18] (The OpenVPN Project)
R3 taphss6; C:\Windows\System32\DRIVERS\taphss6.sys [36944 2017-06-15] (Anchorfree Inc.)
R1 VBoxNetAdp; C:\Windows\System32\DRIVERS\VBoxNetAdp6.sys [113432 2017-04-18] (Oracle Corporation)
R1 VBoxNetLwf; C:\Windows\System32\DRIVERS\VBoxNetLwf.sys [177368 2017-04-18] (Oracle Corporation)
S3 vncmirror; C:\Windows\System32\DRIVERS\vncmirror.sys [4608 2009-07-25] (RealVNC Ltd.) [Fichier non signé]
U1 aswbdisk; pas de ImagePath
S3 EasyAntiCheatSys; \??\C:\Windows\system32\drivers\EasyAntiCheat.sys [X]
S1 fqzqebrb; \??\C:\Windows\system32\drivers\fqzqebrb.sys [X]
S1 vgwluipk; \??\C:\Windows\system32\drivers\vgwluipk.sys [X]
R3 XDva536; \??\C:\Windows\system32\XDva536.sys [X]
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois - Créés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2017-10-23 18:47 - 2017-10-23 18:48 - 000015209 _____ C:\Users\Diaby\Desktop\FRST.txt
2017-10-23 18:46 - 2017-10-23 18:47 - 000000000 ____D C:\FRST
2017-10-23 18:44 - 2017-10-23 18:44 - 001799680 _____ (Farbar) C:\Users\Diaby\Desktop\FRST.exe
2017-10-23 17:59 - 2017-10-23 18:13 - 485401816 _____ (VMware, Inc.) C:\Users\Diaby\Downloads\VMware-workstation-full-14.0.0-6661328.exe
2017-10-23 14:44 - 2017-10-23 14:44 - 000129980 _____ C:\Users\Diaby\Desktop\ZHPDiag.txt
2017-10-23 14:28 - 2017-10-23 14:28 - 000001531 _____ C:\Users\Diaby\Desktop\ZHPFixReport.txt
2017-10-23 14:22 - 2017-10-23 14:22 - 000000000 ____D C:\Users\Diaby\Desktop\Quarantine
2017-10-23 14:19 - 2017-10-23 14:19 - 003067264 _____ (Nicolas Coolman) C:\Users\Diaby\Desktop\zhpfix_2017-6-13-1.exe
2017-10-23 11:49 - 2017-10-23 11:49 - 000000000 ____D C:\ProgramData\SWCUTemp
2017-10-23 11:37 - 2017-10-23 11:44 - 000000000 ____D C:\AdwCleaner
2017-10-23 11:34 - 2017-10-23 11:37 - 000006025 _____ C:\Users\Diaby\Desktop\ZHPCleaner.txt
2017-10-23 11:18 - 2017-10-23 11:18 - 000000794 _____ C:\Users\Diaby\Desktop\ZHPCleaner.lnk
2017-10-23 08:54 - 2017-10-23 08:54 - 000000000 ____D C:\Users\Diaby\AppData\Roaming\AVAST Software
2017-10-23 08:52 - 2017-10-23 08:52 - 000002075 _____ C:\Users\Public\Desktop\Avast Internet Security.lnk
2017-10-23 08:52 - 2017-10-23 08:52 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software
2017-10-23 08:52 - 2017-10-23 08:51 - 000499560 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2017-10-23 08:52 - 2017-10-23 08:51 - 000297840 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys
2017-10-23 08:52 - 2017-10-23 08:51 - 000149824 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2017-10-23 08:52 - 2017-10-23 08:51 - 000070864 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys
2017-10-23 08:51 - 2017-10-23 08:51 - 000304816 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2017-10-23 08:51 - 2017-10-23 08:51 - 000124952 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2017-10-23 08:51 - 2017-10-23 08:51 - 000099560 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2017-10-23 08:51 - 2017-10-23 08:51 - 000042856 _____ (AVAST Software) C:\Windows\system32\Drivers\aswHwid.sys
2017-10-23 08:51 - 2017-10-23 08:50 - 000777952 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2017-10-23 08:51 - 2017-10-23 08:50 - 000409096 _____ (AVAST Software) C:\Windows\system32\Drivers\aswNetSec.sys
2017-10-23 08:51 - 2017-10-23 08:50 - 000276736 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswblogx.sys
2017-10-23 08:51 - 2017-10-23 08:50 - 000255624 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswbidsdriverx.sys
2017-10-23 08:51 - 2017-10-23 08:50 - 000157416 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswbidshx.sys
2017-10-23 08:51 - 2017-10-23 08:50 - 000050384 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswbunivx.sys
2017-10-23 08:50 - 2017-10-23 08:50 - 000036104 _____ (AVAST Software) C:\Windows\system32\Drivers\aswNetNd6.sys
2017-10-23 08:48 - 2017-10-23 08:48 - 000000000 ____D C:\ProgramData\Avast
2017-10-23 08:39 - 2017-10-23 08:39 - 000003208 ____N C:\bootsqm.dat
2017-10-23 08:14 - 2017-10-23 08:14 - 007161304 _____ (AVAST Software) C:\Users\Public\Desktop\avast_internet_security_setup_online.exe
2017-10-23 08:14 - 2017-10-23 08:14 - 007161304 _____ (AVAST Software) C:\Users\Diaby\Downloads\avast_internet_security_setup_online.exe
2017-10-22 21:23 - 2017-10-23 17:11 - 000000000 ____D C:\Users\Diaby\.VirtualBox
2017-10-22 21:21 - 2017-10-22 21:21 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Oracle VM VirtualBox
2017-10-22 21:21 - 2017-04-18 11:24 - 000803328 _____ (Oracle Corporation) C:\Windows\system32\Drivers\VBoxDrv.sys
2017-10-22 21:21 - 2017-04-18 11:24 - 000123856 _____ (Oracle Corporation) C:\Windows\system32\Drivers\VBoxUSBMon.sys
2017-10-22 15:17 - 2017-10-22 15:17 - 000221112 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys
2017-10-22 13:49 - 2017-10-22 13:49 - 000001634 _____ C:\Users\Diaby\Desktop\S4 League.lnk
2017-10-22 13:49 - 2017-10-22 13:49 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\S4 League
2017-10-22 13:22 - 2017-10-22 13:22 - 000000782 _____ C:\Users\Diaby\Desktop\ZHPDiag.lnk
2017-10-22 13:19 - 2017-10-22 13:19 - 008250832 _____ (Malwarebytes) C:\Users\Diaby\Desktop\adwcleaner_7.0.3.1.exe
2017-10-22 13:15 - 2017-10-22 13:15 - 002958208 _____ C:\Users\Diaby\Downloads\ZHPCleaner.exe
2017-10-22 13:14 - 2017-10-22 13:15 - 002917248 _____ C:\Users\Diaby\Downloads\ZHPDiag3.exe
2017-10-22 11:48 - 2017-10-22 21:05 - 000000000 ____D C:\teste
2017-10-22 09:51 - 2017-10-22 11:50 - 000000000 ____D C:\Program Files\hack
2017-10-22 08:57 - 2017-10-22 09:00 - 002620953 _____ C:\Users\Diaby\Downloads\CheatBrazil.rar.crdownload
2017-10-21 22:22 - 2017-10-21 23:46 - 2332829093 _____ C:\Users\Diaby\Downloads\kali-linux-2017.2-vm-i386.7z
2017-10-21 14:10 - 2016-03-04 09:27 - 177632515 _____ C:\Users\Diaby\Desktop\RF016.REZ
2017-10-21 14:09 - 2017-10-21 14:09 - 000000000 ____D C:\Program Files\rf016 officiel (à ne pas supprimer)
2017-10-21 11:47 - 2017-10-21 11:47 - 000002101 _____ C:\Users\Diaby\Desktop\Crossfire Europe EU.lnk
2017-10-21 11:46 - 2017-10-21 11:47 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Smilegate Europe
2017-10-21 11:24 - 2017-10-21 11:24 - 000000000 ____D C:\Program Files\Smilegate
2017-10-20 16:50 - 2017-10-22 13:06 - 000000000 ____D C:\Program Files\Common Files\BattlEye
2017-10-17 19:18 - 2017-10-17 19:19 - 000000239 _____ C:\Users\Diaby\Downloads\dddada.txt
2017-10-15 18:12 - 2017-10-15 18:16 - 005562976 _____ (Piriform Ltd) C:\Users\Diaby\Downloads\rcsetup153.exe
2017-10-15 18:03 - 2017-10-22 18:50 - 000000000 ____D C:\Users\Diaby\Desktop\REST2514
2017-10-15 14:30 - 2017-10-15 14:31 - 000000000 ____D C:\Users\Diaby\AppData\Local\ElevatedDiagnostics
2017-10-15 12:35 - 2017-10-15 12:35 - 001105961 _____ C:\Users\Diaby\Downloads\Non confirmé 436886.crdownload
2017-10-15 09:07 - 2017-10-15 09:07 - 000000000 ____D C:\Users\Diaby\AppData\Roaming\gtk-2.0
2017-10-15 08:48 - 2017-10-15 08:53 - 000000007 _____ C:\Users\Public\youwave_size
2017-10-15 08:48 - 2017-10-15 08:48 - 000000000 ____D C:\Users\Diaby\Documents\webkit
2017-10-14 23:19 - 2017-10-15 08:48 - 000000000 ____D C:\Users\Diaby\youwave
2017-10-14 09:46 - 2017-10-14 09:46 - 124059592 ____C (Microsoft Corporation) C:\Windows\system32\MRT-KB890830.exe
2017-10-14 09:37 - 2017-09-13 17:13 - 004001512 _____ (Microsoft Corporation) C:\Windows\system32\ntkrnlpa.exe
2017-10-14 09:37 - 2017-09-13 17:13 - 003945704 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2017-10-14 09:37 - 2017-09-13 17:13 - 000137960 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2017-10-14 09:37 - 2017-09-13 17:13 - 000067304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2017-10-14 09:37 - 2017-09-13 17:10 - 001310528 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2017-10-14 09:37 - 2017-09-13 17:09 - 000830464 _____ (Microsoft Corporation) C:\Windows\system32\msctf.dll
2017-10-14 09:37 - 2017-09-13 17:09 - 000828928 _____ (Microsoft Corporation) C:\Windows\system32\wlansvc.dll
2017-10-14 09:37 - 2017-09-13 17:09 - 000428032 _____ (Microsoft Corporation) C:\Windows\system32\wlanmsm.dll
2017-10-14 09:37 - 2017-09-13 17:09 - 000392704 _____ (Microsoft Corporation) C:\Windows\system32\wlansec.dll
2017-10-14 09:37 - 2017-09-13 17:09 - 000083968 _____ (Microsoft Corporation) C:\Windows\system32\wlanhlp.dll
2017-10-14 09:37 - 2017-09-13 17:09 - 000080896 _____ (Microsoft Corporation) C:\Windows\system32\wlanapi.dll
2017-10-14 09:37 - 2017-09-13 16:53 - 000271360 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\nwifi.sys
2017-10-14 09:37 - 2017-09-13 16:46 - 000226304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2017-10-14 09:37 - 2017-09-13 16:46 - 000124416 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2017-10-14 09:37 - 2017-09-09 01:47 - 000347344 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2017-10-14 09:37 - 2017-09-08 17:14 - 001213672 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2017-10-14 09:37 - 2017-09-08 17:10 - 001549824 _____ (Microsoft Corporation) C:\Windows\system32\tquery.dll
2017-10-14 09:37 - 2017-09-08 17:10 - 001363968 _____ (Microsoft Corporation) C:\Windows\system32\Query.dll
2017-10-14 09:37 - 2017-09-08 17:10 - 000109568 _____ (Microsoft Corporation) C:\Windows\system32\t2embed.dll
2017-10-14 09:37 - 2017-09-08 17:09 - 000306688 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2017-10-14 09:37 - 2017-09-08 16:50 - 002402304 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2017-10-14 09:37 - 2017-09-08 16:20 - 000640512 _____ (Microsoft Corporation) C:\Windows\system32\mswstr10.dll
2017-10-14 09:37 - 2017-09-08 16:20 - 000345088 _____ (Microsoft Corporation) C:\Windows\system32\msexcl40.dll
2017-10-14 09:37 - 2017-09-08 16:20 - 000008704 _____ (Microsoft Corporation) C:\Windows\system32\msjint40.dll
2017-10-14 09:37 - 2017-09-07 21:10 - 000499200 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2017-10-14 09:37 - 2017-09-07 21:10 - 000341504 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2017-10-14 09:37 - 2017-09-07 21:04 - 020267008 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2017-10-14 09:37 - 2017-09-07 21:03 - 002292736 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2017-10-14 09:37 - 2017-09-07 20:58 - 000663040 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2017-10-14 09:37 - 2017-09-07 20:52 - 000667648 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2017-10-14 09:37 - 2017-09-07 20:39 - 000076288 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2017-10-14 09:37 - 2017-09-07 20:37 - 000279040 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2017-10-14 09:37 - 2017-09-07 20:29 - 004547072 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2017-10-14 09:37 - 2017-09-07 20:29 - 000230400 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2017-10-14 09:37 - 2017-09-07 20:26 - 000694784 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2017-10-14 09:37 - 2017-09-07 20:26 - 000690688 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2017-10-14 09:37 - 2017-09-07 20:25 - 002058752 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2017-10-14 09:37 - 2017-09-07 20:25 - 001155072 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2017-10-14 09:37 - 2017-09-07 20:17 - 013677568 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2017-10-14 09:37 - 2017-09-07 20:01 - 002767872 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2017-10-14 09:37 - 2017-09-07 19:57 - 001316864 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2017-10-14 09:37 - 2017-09-07 19:57 - 000710144 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2017-10-14 09:37 - 2017-09-07 17:12 - 002755072 _____ (Microsoft Corporation) C:\Windows\system32\themeui.dll
2017-10-14 09:37 - 2017-09-07 16:48 - 000313856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2017-10-14 09:37 - 2017-09-07 16:48 - 000312320 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys
2017-10-14 09:37 - 2017-09-07 16:48 - 000115712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2017-10-14 09:37 - 2017-08-19 17:10 - 003209216 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll
2017-10-14 09:37 - 2017-08-19 17:10 - 000103424 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll
2017-10-14 09:37 - 2017-08-19 16:57 - 000050176 _____ (Microsoft Corporation) C:\Windows\system32\rrinstaller.exe
2017-10-14 09:37 - 2017-08-19 16:57 - 000023040 _____ (Microsoft Corporation) C:\Windows\system32\mfpmp.exe
2017-10-14 09:37 - 2017-08-14 19:35 - 000827904 _____ (Microsoft Corporation) C:\Windows\system32\rdpcore.dll
2017-10-14 09:37 - 2017-08-14 19:35 - 000015872 _____ (Microsoft Corporation) C:\Windows\system32\icaapi.dll
2017-10-14 09:37 - 2017-08-13 23:35 - 000031744 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys
2017-10-14 09:36 - 2017-10-14 09:36 - 000000006 _____ C:\Users\Diaby\Downloads\motdepasse.txt
2017-10-14 09:36 - 2017-09-13 17:09 - 000655360 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2017-10-14 09:36 - 2017-09-13 17:09 - 000400896 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2017-10-14 09:36 - 2017-09-13 17:09 - 000261120 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2017-10-14 09:36 - 2017-09-13 17:09 - 000254464 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2017-10-14 09:36 - 2017-09-13 17:09 - 000223232 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2017-10-14 09:36 - 2017-09-13 17:09 - 000172032 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2017-10-14 09:36 - 2017-09-13 17:09 - 000146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2017-10-14 09:36 - 2017-09-13 17:09 - 000141312 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll
2017-10-14 09:36 - 2017-09-13 17:09 - 000099840 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2017-10-14 09:36 - 2017-09-13 17:09 - 000065536 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2017-10-14 09:36 - 2017-09-13 17:09 - 000060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2017-10-14 09:36 - 2017-09-13 17:09 - 000050176 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll
2017-10-14 09:36 - 2017-09-13 17:09 - 000043008 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2017-10-14 09:36 - 2017-09-13 17:09 - 000022016 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2017-10-14 09:36 - 2017-09-13 17:08 - 001062912 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2017-10-14 09:36 - 2017-09-13 17:08 - 000690688 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2017-10-14 09:36 - 2017-09-13 17:08 - 000644096 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2017-10-14 09:36 - 2017-09-13 17:08 - 000554496 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2017-10-14 09:36 - 2017-09-13 17:08 - 000082432 _____ (Microsoft Corporation) C:\Windows\system32\bcrypt.dll
2017-10-14 09:36 - 2017-09-13 17:08 - 000050688 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll
2017-10-14 09:36 - 2017-09-13 17:08 - 000038912 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2017-10-14 09:36 - 2017-09-13 17:08 - 000017408 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2017-10-14 09:36 - 2017-09-13 17:08 - 000006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2017-10-14 09:36 - 2017-09-13 16:50 - 000097792 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe
2017-10-14 09:36 - 2017-09-13 16:50 - 000050688 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys
2017-10-14 09:36 - 2017-09-13 16:50 - 000050176 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2017-10-14 09:36 - 2017-09-13 16:50 - 000029696 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll
2017-10-14 09:36 - 2017-09-13 16:50 - 000016896 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe
2017-10-14 09:36 - 2017-09-13 16:48 - 000262656 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2017-10-14 09:36 - 2017-09-13 16:46 - 000098304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2017-10-14 09:36 - 2017-09-13 16:46 - 000069632 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2017-10-14 09:36 - 2017-09-13 16:46 - 000036352 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
2017-10-14 09:36 - 2017-09-13 16:46 - 000022016 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2017-10-14 09:36 - 2017-09-13 16:46 - 000015872 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2017-10-14 09:36 - 2017-09-08 17:09 - 001400320 _____ (Microsoft Corporation) C:\Windows\system32\mssrch.dll
2017-10-14 09:36 - 2017-09-08 17:09 - 000666624 _____ (Microsoft Corporation) C:\Windows\system32\mssvp.dll
2017-10-14 09:36 - 2017-09-08 17:09 - 000337408 _____ (Microsoft Corporation) C:\Windows\system32\mssph.dll
2017-10-14 09:36 - 2017-09-08 17:09 - 000197120 _____ (Microsoft Corporation) C:\Windows\system32\mssphtb.dll
2017-10-14 09:36 - 2017-09-08 17:09 - 000104448 _____ (Microsoft Corporation) C:\Windows\system32\mssitlb.dll
2017-10-14 09:36 - 2017-09-08 17:09 - 000059392 _____ (Microsoft Corporation) C:\Windows\system32\msscntrs.dll
2017-10-14 09:36 - 2017-09-08 17:09 - 000034816 _____ (Microsoft Corporation) C:\Windows\system32\mssprxy.dll
2017-10-14 09:36 - 2017-09-08 17:00 - 000427520 _____ (Microsoft Corporation) C:\Windows\system32\SearchIndexer.exe
2017-10-14 09:36 - 2017-09-08 17:00 - 000164352 _____ (Microsoft Corporation) C:\Windows\system32\SearchProtocolHost.exe
2017-10-14 09:36 - 2017-09-08 16:59 - 000086528 _____ (Microsoft Corporation) C:\Windows\system32\SearchFilterHost.exe
2017-10-14 09:36 - 2017-09-08 16:59 - 000009728 _____ (Microsoft Corporation) C:\Windows\system32\msshooks.dll
2017-10-14 09:36 - 2017-09-07 21:27 - 002724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2017-10-14 09:36 - 2017-09-07 21:26 - 000004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2017-10-14 09:36 - 2017-09-07 21:11 - 000062464 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2017-10-14 09:36 - 2017-09-07 21:10 - 000047616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2017-10-14 09:36 - 2017-09-07 21:09 - 000064000 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2017-10-14 09:36 - 2017-09-07 21:03 - 000047104 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2017-10-14 09:36 - 2017-09-07 21:02 - 000030720 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2017-10-14 09:36 - 2017-09-07 20:59 - 000476160 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2017-10-14 09:36 - 2017-09-07 20:58 - 000620032 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2017-10-14 09:36 - 2017-09-07 20:58 - 000115712 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2017-10-14 09:36 - 2017-09-07 20:58 - 000104960 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2017-10-14 09:36 - 2017-09-07 20:49 - 000416256 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2017-10-14 09:36 - 2017-09-07 20:44 - 000073216 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2017-10-14 09:36 - 2017-09-07 20:44 - 000060416 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2017-10-14 09:36 - 2017-09-07 20:43 - 000091136 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2017-10-14 09:36 - 2017-09-07 20:40 - 000168960 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2017-10-14 09:36 - 2017-09-07 20:36 - 000130048 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2017-10-14 09:36 - 2017-08-19 17:10 - 000002048 _____ (Microsoft Corporation) C:\Windows\system32\mferror.dll
2017-10-10 19:38 - 2017-10-10 19:39 - 012829235 _____ C:\Users\Diaby\Downloads\RB001.REZ
2017-10-10 18:34 - 2017-10-10 18:38 - 000000000 ____D C:\ProgramData\Intel
2017-10-10 18:33 - 2017-10-18 20:01 - 000000000 ____D C:\Program Files\Intel Driver and Support Assistant
2017-10-10 18:33 - 2017-10-15 08:47 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel Driver and Support Assistant
2017-10-10 18:25 - 2017-10-10 18:27 - 008986120 _____ (Intel) C:\Users\Diaby\Downloads\Intel Driver and Support Assistant Installer.exe
2017-10-10 14:02 - 2017-10-10 14:02 - 000001117 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2017-10-10 14:02 - 2017-10-10 14:02 - 000001105 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2017-10-10 13:57 - 2017-10-10 13:57 - 000245856 _____ (Mozilla) C:\Users\Diaby\Downloads\Firefox Installer.exe
2017-10-09 19:24 - 2017-10-09 19:24 - 000000000 ____D C:\Users\Public\Thunder Network
2017-10-09 19:24 - 2017-10-09 19:24 - 000000000 ____D C:\ProgramData\Thunder Network
2017-10-09 19:23 - 2017-10-09 19:24 - 000000000 ____D C:\Users\Diaby\AppData\Roaming\HaiYuInst
2017-10-08 16:05 - 2017-10-09 20:04 - 000000000 ____D C:\Users\Diaby\AppData\Roaming\Leapdroid
2017-10-08 15:54 - 2017-10-08 16:00 - 262535736 _____ (Leapdroid) C:\Users\Diaby\Downloads\leapdroid-11-0-0.exe
2017-10-08 13:18 - 2017-10-08 13:18 - 000000000 ____D C:\Users\Diaby\AppData\Local\realtech_VR
2017-10-08 13:06 - 2017-10-08 13:06 - 000000000 ____D C:\ProgramData\realtech VR
2017-10-08 13:05 - 2017-10-08 13:28 - 000000000 ____D C:\Program Files\realtech VR
2017-10-07 16:39 - 2017-10-07 16:39 - 000000000 ____D C:\Windows\system32\SRSLabs
2017-10-07 16:37 - 2017-10-07 16:37 - 072520712 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoRes.dat
2017-10-07 16:37 - 2017-10-07 16:37 - 012334923 _____ C:\Windows\system32\Drivers\RTAIODAT.DAT
2017-10-07 16:37 - 2017-10-07 16:37 - 004482048 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHDA.sys
2017-10-07 16:37 - 2017-10-07 16:37 - 003661720 _____ (Fortemedia Corporation) C:\Windows\system32\FMAPO.dll
2017-10-07 16:37 - 2017-10-07 16:37 - 003610088 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTSndMgr.cpl
2017-10-07 16:37 - 2017-10-07 16:37 - 003092336 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RltkAPO.dll
2017-10-07 16:37 - 2017-10-07 16:37 - 002906624 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkPgExt.dll
2017-10-07 16:37 - 2017-10-07 16:37 - 002561968 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApoApi.dll
2017-10-07 16:37 - 2017-10-07 16:37 - 002156544 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCoInstII.dll
2017-10-07 16:37 - 2017-10-07 16:37 - 001529288 _____ (Conexant Systems Inc.) C:\Windows\system32\CX32APO.dll
2017-10-07 16:37 - 2017-10-07 16:37 - 001451616 _____ (Conexant Systems Inc.) C:\Windows\system32\CX32Proxy.dll
2017-10-07 16:37 - 2017-10-07 16:37 - 001074048 _____ (Synopsys, Inc.) C:\Windows\system32\SRRPTR.dll
2017-10-07 16:37 - 2017-10-07 16:37 - 000532888 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTACap.dll
2017-10-07 16:37 - 2017-10-07 16:37 - 000401040 _____ (Synopsys, Inc.) C:\Windows\system32\SRAPO.dll
2017-10-07 16:37 - 2017-10-07 16:37 - 000371808 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEP32A.dll
2017-10-07 16:37 - 2017-10-07 16:37 - 000341144 _____ (Synopsys, Inc.) C:\Windows\system32\SRCOM.dll
2017-10-07 16:37 - 2017-10-07 16:37 - 000307232 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DHT32.dll
2017-10-07 16:37 - 2017-10-07 16:37 - 000307232 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DAA32.dll
2017-10-07 16:37 - 2017-10-07 16:37 - 000225040 _____ (Synopsys, Inc.) C:\Windows\system32\SFNHK.dll
2017-10-07 16:37 - 2017-10-07 16:37 - 000225024 _____ (Sonic Focus, Inc.) C:\Windows\system32\SFFXProc.dll
2017-10-07 16:37 - 2017-10-07 16:37 - 000181224 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEED32A.dll
2017-10-07 16:37 - 2017-10-07 16:37 - 000105648 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTARen.dll
2017-10-07 16:37 - 2017-10-07 16:37 - 000101328 _____ (Real Sound Lab SIA) C:\Windows\system32\CONEQMSAPOGUILibrary.dll
2017-10-07 16:37 - 2017-10-07 16:37 - 000088272 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEL32A.dll
2017-10-07 16:37 - 2017-10-07 16:37 - 000088264 _____ (Sonic Focus, Inc.) C:\Windows\system32\SFFXComm.dll
2017-10-07 16:37 - 2017-10-07 16:37 - 000083640 _____ (Synopsys, Inc.) C:\Windows\system32\SFCOM.dll
2017-10-07 16:37 - 2017-10-07 16:37 - 000083624 _____ (Sonic Focus, Inc.) C:\Windows\system32\SFFXSAPO.dll
2017-10-07 16:37 - 2017-10-07 16:37 - 000083624 _____ (Sonic Focus, Inc.) C:\Windows\system32\SFFXHAPO.dll
2017-10-07 16:37 - 2017-10-07 16:37 - 000083624 _____ (Sonic Focus, Inc.) C:\Windows\system32\SFFXDAPO.dll
2017-10-07 16:37 - 2017-10-07 16:37 - 000078480 _____ (Synopsys, Inc.) C:\Windows\system32\SFAPO.dll
2017-10-07 16:37 - 2017-10-07 16:37 - 000074376 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEG32A.dll
2017-10-07 16:37 - 2017-10-07 16:37 - 000022152 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCoLDR.dll
2017-10-07 16:31 - 2017-10-07 16:51 - 000000000 ____D C:\ProgramData\ProductData
2017-10-07 16:28 - 2017-10-07 16:28 - 017901184 _____ (IObit ) C:\Users\Diaby\Downloads\driver_booster_setup.exe
2017-10-07 14:34 - 2017-10-07 14:34 - 000000000 ____D C:\Users\Diaby\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Applications Chrome
2017-10-07 12:04 - 2017-10-07 12:07 - 065938531 _____ C:\Users\Diaby\Downloads\com.snapchat.android_10.18.6.0_[apk-downloaders.com] (1).apk
2017-10-07 12:01 - 2017-10-08 13:54 - 000000228 _____ C:\Users\Diaby\.node_repl_history
2017-10-06 21:04 - 2017-10-06 21:06 - 048132904 _____ (Genymobile ) C:\Users\Diaby\Downloads\genymotion-2.10.0.exe
2017-10-06 18:08 - 2017-10-06 18:08 - 000002213 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2017-10-06 18:08 - 2017-10-06 18:08 - 000002201 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2017-10-06 17:58 - 2017-10-06 17:59 - 001130328 _____ (Google Inc.) C:\Users\Diaby\Downloads\ChromeSetup.exe
2017-10-06 16:08 - 2017-10-06 16:10 - 065938531 _____ C:\Users\Diaby\Downloads\snapchat-10-18-6-0.apk
2017-10-05 19:18 - 2017-10-05 19:22 - 344913872 _____ (Microvirt Software Technology Co. Ltd.) C:\Users\Diaby\Downloads\Memu-Setup-3.5.0.2.exe
2017-10-04 19:09 - 2017-10-04 19:09 - 000002519 _____ C:\Users\Public\Desktop\Avast Driver Updater.lnk
2017-10-04 19:09 - 2017-10-04 19:09 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Driver Updater
2017-10-04 19:09 - 2017-10-04 19:09 - 000000000 ____D C:\Program Files\Avast Driver Updater
2017-10-04 17:21 - 2017-10-04 17:21 - 000000000 ____D C:\Users\Diaby\AppData\Roaming\Mael
2017-09-28 12:52 - 2017-09-28 12:52 - 003187875 _____ C:\Users\Administrateur.Diaby-PC.000\Downloads\MOTION MOD.rar
2017-09-28 12:48 - 2017-09-28 12:48 - 000000000 ____D C:\Users\Administrateur.Diaby-PC.000\AppData\Roaming\Macromedia
2017-09-28 12:48 - 2017-09-28 12:48 - 000000000 ____D C:\Users\Administrateur.Diaby-PC.000\AppData\Local\Macromedia
2017-09-28 12:25 - 2017-09-28 12:25 - 000000081 _____ C:\Users\Administrateur.Diaby-PC.000\Desktop\no-trojan.txt
2017-09-25 20:29 - 2017-09-25 20:29 - 003151488 _____ (ESET) C:\Users\Diaby\Downloads\eset_smart_security_premium_live_installer.exe
2017-09-24 14:00 - 2017-10-11 17:41 - 000000000 ____D C:\Users\Diaby\AppData\Roaming\Opera Software
2017-09-24 14:00 - 2017-10-11 17:41 - 000000000 ____D C:\Users\Diaby\AppData\Local\Opera Software
2017-09-24 13:55 - 2017-09-24 13:56 - 001163520 _____ (Opera Software) C:\Users\Diaby\Downloads\OperaSetup.exe
2017-09-23 11:46 - 2017-09-23 13:01 - 000000000 ____D C:\Program Files\Common Files\Steam
2017-09-23 11:38 - 2017-09-23 11:39 - 000000043 _____ C:\Users\Diaby\Downloads\virus trojan sypwar ronsware
==================== Un mois - Modifiés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2017-10-23 18:35 - 2009-07-14 06:34 - 000041248 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2017-10-23 18:35 - 2009-07-14 06:34 - 000041248 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2017-10-23 17:03 - 2017-07-06 19:54 - 000000000 ____D C:\Users\Diaby\VirtualBox VMs
2017-10-23 15:05 - 2017-09-21 18:13 - 000000376 _____ C:\Windows\Tasks\update-sys.job
2017-10-23 14:36 - 2017-07-30 17:37 - 000000000 ____D C:\Users\Diaby\AppData\Roaming\ZHP
2017-10-23 14:35 - 2017-07-30 17:37 - 000000000 ____D C:\Users\Diaby\AppData\Local\ZHP
2017-10-23 14:30 - 2009-07-14 06:53 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2017-10-23 12:52 - 2017-02-05 21:16 - 000000000 ____D C:\Users\Diaby\AppData\Local\CrashDumps
2017-10-23 08:52 - 2009-07-14 04:37 - 000000000 ____D C:\Windows\inf
2017-10-23 08:47 - 2017-08-17 10:56 - 000000000 ____D C:\ProgramData\AVAST Software
2017-10-22 21:23 - 2016-05-25 18:26 - 000000000 ____D C:\Users\Diaby
2017-10-22 13:22 - 2017-09-19 18:04 - 000000000 ____D C:\AeriaGames
2017-10-22 00:14 - 2009-07-14 04:37 - 000000000 ____D C:\Windows\rescache
2017-10-18 17:21 - 2016-11-23 14:25 - 000000000 ____D C:\Users\Diaby\AppData\LocalLow\Mozilla
2017-10-18 13:09 - 2016-07-23 10:37 - 000000000 ____D C:\Users\Diaby\AppData\Roaming\Dashlane
2017-10-18 13:08 - 2017-08-25 10:47 - 000001873 _____ C:\Users\Diaby\Desktop\Dashlane.lnk
2017-10-18 13:08 - 2017-08-25 10:43 - 000000000 ____D C:\Users\Diaby\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dashlane
2017-10-15 15:27 - 2017-07-07 14:34 - 000000000 ____D C:\CFLog
2017-10-15 14:30 - 2009-07-14 04:37 - 000000000 ____D C:\Windows\system32\NDF
2017-10-15 13:01 - 2017-04-06 16:13 - 000000000 ____D C:\OamfbjHB2VOamfbjHB2V
2017-10-14 10:21 - 2011-04-12 03:35 - 000749022 _____ C:\Windows\system32\perfh00C.dat
2017-10-14 10:21 - 2011-04-12 03:35 - 000150586 _____ C:\Windows\system32\perfc00C.dat
2017-10-14 10:21 - 2010-11-20 23:01 - 001668256 _____ C:\Windows\system32\PerfStringBackup.INI
2017-10-14 10:12 - 2017-09-16 18:38 - 000316328 _____ C:\Windows\system32\FNTCACHE.DAT
2017-10-14 09:54 - 2017-07-07 08:21 - 000001042 _____ C:\Users\Administrateur.Diaby-PC.000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2017-10-14 09:54 - 2016-12-22 19:33 - 000001042 _____ C:\Users\123\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2017-10-14 09:54 - 2016-05-25 18:26 - 000001042 _____ C:\Users\Diaby\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2017-10-14 09:47 - 2017-05-25 07:39 - 000000000 ____D C:\Windows\system32\MRT
2017-10-14 09:41 - 2017-04-10 19:49 - 124059592 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2017-10-14 08:51 - 2016-07-04 20:43 - 000803328 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2017-10-14 08:51 - 2016-07-04 20:43 - 000144896 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2017-10-14 08:51 - 2016-07-04 20:43 - 000000000 ____D C:\Windows\system32\Macromed
2017-10-13 17:15 - 2016-06-05 19:26 - 000000000 ____D C:\ProgramData\Package Cache
2017-10-11 18:35 - 2016-07-04 20:45 - 000000000 ____D C:\Users\Diaby\AppData\Local\Unity
2017-10-10 18:06 - 2016-11-25 21:34 - 000000000 ____D C:\Users\Diaby\AppData\Local\Bluestacks
2017-10-10 14:02 - 2017-07-13 10:40 - 000000000 ____D C:\Program Files\Mozilla Firefox
2017-10-10 14:02 - 2016-11-23 14:25 - 000000000 ____D C:\Program Files\Mozilla Maintenance Service
2017-10-10 14:02 - 2016-06-15 13:21 - 000000000 ____D C:\Users\Diaby\AppData\Roaming\Mozilla
2017-10-10 14:02 - 2016-06-15 13:21 - 000000000 ____D C:\Users\Diaby\AppData\Local\Mozilla
2017-10-09 20:03 - 2017-06-29 08:18 - 000189792 _____ (Sysinternals) C:\Windows\PSEXESVC.exe
2017-10-08 11:12 - 2017-09-03 13:35 - 000059904 _____ C:\Windows\system32\Drivers\mbae.sys
2017-10-07 16:57 - 2016-05-25 18:31 - 000000000 ____D C:\Users\Diaby\AppData\Roaming\IObit
2017-10-07 16:39 - 2016-05-26 18:41 - 000000000 ____D C:\Windows\system32\RTCOM
2017-10-06 18:07 - 2016-05-25 19:28 - 000000000 ____D C:\Program Files\Google
2017-10-05 19:35 - 2017-05-31 15:17 - 000000000 ____D C:\Users\Diaby\.android
2017-10-05 17:15 - 2017-08-22 20:21 - 000000000 ____D C:\Users\Diaby\AppData\Local\AVAST Software
2017-09-28 12:58 - 2017-08-02 13:03 - 000000000 ____D C:\Users\Administrateur.Diaby-PC.000\AppData\LocalLow\Mozilla
==================== Fichiers à la racine de certains dossiers =======
2017-02-24 18:23 - 2017-07-31 17:48 - 000192716 _____ () C:\Program Files\metadata
2015-02-15 01:58 - 2015-03-12 01:20 - 000000165 _____ () C:\Program Files\Mods-ITST.ini
2015-02-15 01:58 - 2015-03-12 01:19 - 000000165 _____ () C:\Program Files\Mods.ini
2016-12-20 15:05 - 2016-12-20 15:05 - 002314121 _____ () C:\Program Files\nPwImRe.psd
2015-02-15 01:58 - 2014-06-04 04:36 - 000000038 _____ () C:\Program Files\Run_ITST_Mod.bat
2015-02-15 01:58 - 2015-01-31 10:02 - 000000031 _____ () C:\Program Files\Run_TE_Vanilla.bat
2015-02-15 01:58 - 2015-03-12 02:02 - 000000379 _____ () C:\Program Files\UnpackSound.bat
2016-05-29 08:04 - 2016-05-29 08:04 - 000000000 _____ () C:\Users\Diaby\AppData\Roaming\1.bin
2017-02-11 16:28 - 2017-10-09 19:51 - 000001157 _____ () C:\Users\Diaby\AppData\Roaming\droid4xinstaller.log
2016-08-03 09:44 - 2017-02-07 21:05 - 000000003 _____ () C:\Users\Diaby\AppData\Roaming\Maintenance.log
2017-03-11 21:43 - 2017-04-14 13:05 - 000000002 _____ () C:\Users\Diaby\AppData\Roaming\Maintenance3.log
2017-02-19 12:26 - 2017-03-03 19:08 - 000532842 _____ () C:\Users\Diaby\AppData\Roaming\spritesa
2017-04-07 18:06 - 2017-04-07 18:07 - 013192536 ____N (TeamViewer GmbH) C:\Users\Diaby\AppData\Roaming\Team-Viewer_Setup_fr.exe
2017-02-10 10:43 - 2017-02-10 10:45 - 000033193 _____ () C:\Users\Diaby\AppData\Roaming\UserTile.png
2016-09-28 12:09 - 2017-05-13 08:52 - 000000301 _____ () C:\Users\Diaby\AppData\Roaming\WB.CFG
2016-05-28 20:05 - 2017-05-08 16:02 - 000005632 _____ () C:\Users\Diaby\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2017-07-08 18:21 - 2017-07-09 08:51 - 000000600 _____ () C:\Users\Diaby\AppData\Local\PUTTY.RND
2016-06-22 10:46 - 2017-09-12 20:38 - 000007620 _____ () C:\Users\Diaby\AppData\Local\Resmon.ResmonCfg
2016-09-02 16:25 - 2014-10-14 01:55 - 000061786 _____ () C:\Users\Diaby\AppData\Local\Tempcapturada5.png
2016-09-02 16:25 - 2007-06-13 21:37 - 000000111 _____ () C:\Users\Diaby\AppData\Local\Tempgrey.png
2016-09-02 16:25 - 2011-12-06 22:01 - 000012869 _____ () C:\Users\Diaby\AppData\Local\TempMBoxSkin.png
2016-09-02 16:25 - 2014-09-29 14:52 - 000161372 _____ () C:\Users\Diaby\AppData\Local\Tempv2.png
2016-09-14 19:15 - 2016-09-14 19:15 - 000000003 _____ () C:\Users\Diaby\AppData\Local\updater.log
2016-09-14 19:15 - 2017-09-21 18:13 - 000000413 _____ () C:\Users\Diaby\AppData\Local\UserProducts.xml
2017-07-30 20:51 - 2017-07-30 20:51 - 000044696 _____ () C:\ProgramData\agent.1501440658.bdinstall.bin
2017-07-30 20:52 - 2017-07-30 20:52 - 000026369 _____ () C:\ProgramData\agent.1501440730.bdinstall.bin
2017-07-30 20:53 - 2017-07-30 20:53 - 000026370 _____ () C:\ProgramData\agent.1501440783.bdinstall.bin
2017-07-30 20:53 - 2017-07-30 20:53 - 000026370 _____ () C:\ProgramData\agent.1501440797.bdinstall.bin
2017-07-30 20:53 - 2017-07-30 20:53 - 000026371 _____ () C:\ProgramData\agent.1501440812.bdinstall.bin
2017-07-30 20:54 - 2017-07-30 20:54 - 000026031 _____ () C:\ProgramData\agent.1501440881.bdinstall.bin
2017-07-31 08:46 - 2017-07-31 08:46 - 000028349 _____ () C:\ProgramData\agent.1501483605.bdinstall.bin
2016-05-26 18:41 - 2016-05-26 18:41 - 000000000 ____H () C:\ProgramData\DP45977C.lfl
2016-09-24 16:26 - 2016-10-08 08:24 - 000000002 ____H () C:\ProgramData\Entries.txt
2016-09-24 16:26 - 2016-10-08 08:23 - 000000433 _____ () C:\ProgramData\update.bin
Certains de taille zéro octet fichiers/dossiers:
==========================
C:\Windows\System32\Drivers\753C1B25.sys
==================== Bamital & volsnap ======================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
C:\Windows\explorer.exe => Le fichier est signé numériquement
C:\Windows\system32\winlogon.exe => Le fichier est signé numériquement
C:\Windows\system32\wininit.exe => Le fichier est signé numériquement
C:\Windows\system32\svchost.exe => Le fichier est signé numériquement
C:\Windows\system32\services.exe => Le fichier est signé numériquement
C:\Windows\system32\User32.dll => Le fichier est signé numériquement
C:\Windows\system32\userinit.exe => Le fichier est signé numériquement
C:\Windows\system32\rpcss.dll => Le fichier est signé numériquement
C:\Windows\system32\dnsapi.dll => Le fichier est signé numériquement
C:\Windows\system32\Drivers\volsnap.sys => Le fichier est signé numériquement
C:\Windows\system32\drivers\753C1B25.sys -> MD5 = D41D8CD98F00B204E9800998ECF8427E (0-byte MD5) <======= ATTENTION
LastRegBack: 2017-10-22 00:06
==================== Fin de FRST.txt ============================
Exécuté par Diaby (administrateur) sur DIABY-PC (23-10-2017 18:47:25)
Exécuté depuis C:\Users\Diaby\Desktop
Profils chargés: Diaby (Profils disponibles: Diaby & 123 & Administrateur)
Platform: Microsoft Windows 7 Professionnel Service Pack 1 (X86) Langue: Français (France)
Internet Explorer Version 11 (Navigateur par défaut: FF)
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtHDVBg.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\afwServ.exe
(Intel) C:\Program Files\Intel Driver and Support Assistant\DSAService.exe
(Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE
(Dashlane, Inc.) C:\Users\Diaby\AppData\Roaming\Dashlane\Dashlane.exe
(Dashlane, Inc.) C:\Users\Diaby\AppData\Roaming\Dashlane\DashlanePlugin.exe
(AVAST Software s.r.o.) C:\Program Files\AVAST Software\Avast\aswidsagent.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(Smilegate Games Inc.) C:\Program Files\Smilegate\Crossfire Europe EU\HGWC.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
==================== Registre (Avec liste blanche) ===========================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [16553472 2017-10-07] (Realtek Semiconductor)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [253344 2017-10-23] (AVAST Software)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-377985148-792701347-3327087119-1001\...\Run: [Dashlane] => C:\Users\Diaby\AppData\Roaming\Dashlane\Dashlane.exe [508880 2017-10-16] (Dashlane, Inc.)
HKU\S-1-5-21-377985148-792701347-3327087119-1001\...\Run: [DashlanePlugin] => C:\Users\Diaby\AppData\Roaming\Dashlane\DashlanePlugin.exe [552912 2017-10-16] (Dashlane, Inc.)
HKU\S-1-5-21-377985148-792701347-3327087119-1001\...\Policies\system: [EnableLUA] 0
HKU\S-1-5-21-377985148-792701347-3327087119-1001\...\Policies\Explorer: [NolowDiskSpaceChecks] 1
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.254
Tcpip\..\Interfaces\{46A5EE55-2C19-45A4-B4B2-E42D0374E136}: [NameServer] 8.8.8.8
Tcpip\..\Interfaces\{89A269BD-3347-419E-8F91-D323DB09F111}: [NameServer] 77.234.40.79
Tcpip\..\Interfaces\{C9FA069C-0B47-4BBA-825B-47D487D5A075}: [NameServer] 8.8.8.8
Tcpip\..\Interfaces\{C9FA069C-0B47-4BBA-825B-47D487D5A075}: [DhcpNameServer] 192.168.0.254
Tcpip\..\Interfaces\{CF0EADD1-4233-4C77-BE3C-B3722AFDBAA7}: [NameServer] 8.8.8.8
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=msnhome
HKU\S-1-5-21-377985148-792701347-3327087119-1001\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\S-1-5-21-377985148-792701347-3327087119-1001\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2017-10-23] (AVAST Software)
Handler: livecall - Pas de valeur CLSID -
FireFox:
========
FF DefaultProfile: d5euczvv.default
FF DefaultProfile: mamou851@hotmail.com
FF ProfilePath: C:\Users\Diaby\AppData\Roaming\Mozilla\Firefox\Profiles\d5euczvv.default [2017-10-23]
FF Homepage: Mozilla\Firefox\Profiles\d5euczvv.default -> hxxps://www.qwant.com/?client=qwant-firefox
FF Extension: (Dashlane) - C:\Users\Diaby\AppData\Roaming\Mozilla\Firefox\Profiles\d5euczvv.default\Extensions\jetpack-extension@dashlane.com.xpi [2017-10-19]
FF Extension: (Qwant for Firefox) - C:\Users\Diaby\AppData\Roaming\Mozilla\Firefox\Profiles\d5euczvv.default\Extensions\qwantcomforfirefox@jetpack.xpi [2017-10-18]
FF Extension: (uBlock Origin) - C:\Users\Diaby\AppData\Roaming\Mozilla\Firefox\Profiles\d5euczvv.default\Extensions\uBlock0@raymondhill.net.xpi [2017-10-22]
FF Extension: (Avast Online Security) - C:\Users\Diaby\AppData\Roaming\Mozilla\Firefox\Profiles\d5euczvv.default\Extensions\wrc@avast.com.xpi [2017-10-23]
FF HKU\S-1-5-21-377985148-792701347-3327087119-1001\...\Firefox\Extensions: [{F17C1572-C9EC-4e5c-A542-D05CBB5C5A08}] - C:\Program Files\DAP\DAPFireFox => non trouvé(e)
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_27_0_0_159.dll [2017-10-14] ()
FF Plugin: @adobe.com/ShockwavePlayer -> C:\Windows\system32\Adobe\Director\np32dsw_1229199.dll [2017-03-31] (Adobe Systems, Inc.)
FF Plugin: @microsoft.com/GENUINE -> C:\Windows\system32\Wat\npWatWeb.dll [2017-04-04] (Microsoft Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\3.0.40818.0\npctrl.dll [2009-08-17] ( Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-10-06] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-10-06] (Google Inc.)
FF Plugin HKU\S-1-5-21-377985148-792701347-3327087119-1001: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Diaby\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2017-05-18] (Unity Technologies ApS)
Chrome:
=======
CHR DefaultProfile: ChromeDefaultData
CHR DefaultSearchURL: ChromeDefaultData -> hxxp://srch.bar/{searchTerms}
CHR DefaultSuggestURL: ChromeDefaultData -> hxxp://srch.bar/?s={searchTerms}
CHR Profile: C:\Users\Diaby\AppData\Local\Google\Chrome\User Data\ChromeDefaultData [2017-10-23] <==== ATTENTION
CHR Extension: (Avira Safe Shopping) - C:\Users\Diaby\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\ccbpbkebodcjkknkfkpmfeciinhidaeh [2017-10-22]
CHR Extension: (Télécommande Virtuelle Freebox Révolution/HD) - C:\Users\Diaby\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\fdhpkpfbolhjcbejckjbiciinkcjlijj [2017-08-12]
CHR Extension: (Dashlane - Gestionnaire de mots de passe sécurisé) - C:\Users\Diaby\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\fdjamakpfbbddfjaooikfcpapjohcfmg [2017-10-22]
CHR Extension: (Protection Web Avira) - C:\Users\Diaby\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\flliilndjeohchalpbbcdekjklbdgfkk [2017-08-05]
CHR Extension: (twerk) - C:\Users\Diaby\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\jhdnjmjhmfihbfjdgmnappnoaehnhiaf [2017-10-07]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Diaby\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-08-23]
CHR Extension: (Chrome Media Router) - C:\Users\Diaby\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-10-06]
CHR Profile: C:\Users\Diaby\AppData\Local\Google\Chrome\User Data\Default [2017-10-23]
CHR Extension: (Docs) - C:\Users\Diaby\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-05-01]
CHR Extension: (Google Drive) - C:\Users\Diaby\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-05-01]
CHR Extension: (YouTube) - C:\Users\Diaby\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-05-01]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Diaby\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-05-01]
CHR Extension: (Gmail) - C:\Users\Diaby\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-05-01]
CHR HKLM\...\Chrome\Extension: [bpmmandcadflhnnaiclipadomfmdbjbp] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [ccbpbkebodcjkknkfkpmfeciinhidaeh] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [elmkjjfkkchohaaoljobaffjeedcoocj] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [ffdcfjdljhbehggjdkdioajnknjcpbjb] - C:\Program Files\DAP\DAPChrome\DAPChrome6.crx
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [hkhkiakolggnnicallabhkobalpeplpi] -
CHR HKLM\...\Chrome\Extension: [nahhmpbckpgdidfnmfkfgiflpjijilce] - hxxps://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-377985148-792701347-3327087119-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [bpmmandcadflhnnaiclipadomfmdbjbp] - hxxps://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-377985148-792701347-3327087119-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [elmkjjfkkchohaaoljobaffjeedcoocj] - hxxps://clients2.google.com/service/update2/crx
==================== Services (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [5828816 2017-10-23] (AVAST Software s.r.o.)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [281416 2017-10-23] (AVAST Software)
R2 avast! Firewall; C:\Program Files\AVAST Software\Avast\afwServ.exe [330832 2017-10-23] (AVAST Software)
S3 BEService; C:\Program Files\Common Files\BattlEye\BEService.exe [1291784 2017-10-20] ()
R2 DSAService; C:\Program Files\Intel Driver and Support Assistant\DSAService.exe [22816 2017-09-18] (Intel)
S3 EasyAntiCheat; C:\Windows\system32\EasyAntiCheat.exe [383016 2017-06-09] (EasyAntiCheat Ltd)
S3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [4430792 2017-08-21] (Malwarebytes)
S3 npggsvc; C:\Windows\system32\GameMon.des [5691912 2016-05-18] (INCA Internet Co., Ltd.)
S4 Ntp2NetSvc; C:\Program Files\notepad2\notepad2.exe [2340864 2017-02-16] (Don HO don.h@free.fr) [Fichier non signé]
S4 Ntp2UpSvc; C:\Program Files\Common Files\ntp2UpSvc\notepad2.exe [2340864 2017-07-13] (Don HO don.h@free.fr) [Fichier non signé]
S3 PSEXESVC; C:\Windows\PSEXESVC.exe [189792 2017-10-09] (Sysinternals)
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService.exe [279552 2017-10-07] (Realtek Semiconductor)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2013-05-27] (Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ======================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R1 aswbidsdriver; C:\Windows\system32\drivers\aswbidsdriverx.sys [255624 2017-10-23] (AVAST Software s.r.o.)
R0 aswbidsh; C:\Windows\system32\drivers\aswbidshx.sys [157416 2017-10-23] (AVAST Software s.r.o.)
R0 aswblog; C:\Windows\system32\drivers\aswblogx.sys [276736 2017-10-23] (AVAST Software s.r.o.)
R0 aswbuniv; C:\Windows\system32\drivers\aswbunivx.sys [50384 2017-10-23] (AVAST Software s.r.o.)
S3 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [42856 2017-10-23] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [124952 2017-10-23] (AVAST Software)
R3 aswNetNd6; C:\Windows\System32\DRIVERS\aswNetNd6.sys [36104 2017-10-23] (AVAST Software)
R1 aswNetSec; C:\Windows\system32\drivers\aswNetSec.sys [409096 2017-10-23] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [99560 2017-10-23] (AVAST Software)
R0 aswRvrt; C:\Windows\system32\drivers\aswRvrt.sys [70864 2017-10-23] (AVAST Software)
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [777952 2017-10-23] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [499560 2017-10-23] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [149824 2017-10-23] (AVAST Software)
S3 aswTap; C:\Windows\System32\DRIVERS\aswTap.sys [48152 2017-08-17] (The OpenVPN Project)
R0 aswVmm; C:\Windows\system32\drivers\aswVmm.sys [297840 2017-10-23] (AVAST Software)
R0 Bhbase; C:\Windows\System32\drivers\Bhbase.sys [47456 2014-03-11] (Baidu, Inc.)
S3 hamachi; C:\Windows\System32\DRIVERS\hamachi.sys [27968 2017-05-22] (LogMeIn, Inc.)
R1 HWiNFO32; C:\Windows\system32\drivers\HWiNFO32.SYS [23840 2016-05-26] (REALiX(tm))
S3 ksapi; C:\Windows\system32\drivers\ksapi.sys [81768 2017-07-07] (Kingsoft Corporation)
S3 MBAMSwissArmy; C:\Windows\System32\DRIVERS\mbamswissarmy.sys [221112 2017-10-22] (Malwarebytes)
S3 NPPTNT2; C:\Windows\system32\npptNT2.sys [4682 2004-12-30] (INCA Internet Co., Ltd.) [Fichier non signé]
S3 tap0901; C:\Windows\System32\DRIVERS\tap0901.sys [30696 2017-01-18] (The OpenVPN Project)
R3 taphss6; C:\Windows\System32\DRIVERS\taphss6.sys [36944 2017-06-15] (Anchorfree Inc.)
R1 VBoxNetAdp; C:\Windows\System32\DRIVERS\VBoxNetAdp6.sys [113432 2017-04-18] (Oracle Corporation)
R1 VBoxNetLwf; C:\Windows\System32\DRIVERS\VBoxNetLwf.sys [177368 2017-04-18] (Oracle Corporation)
S3 vncmirror; C:\Windows\System32\DRIVERS\vncmirror.sys [4608 2009-07-25] (RealVNC Ltd.) [Fichier non signé]
U1 aswbdisk; pas de ImagePath
S3 EasyAntiCheatSys; \??\C:\Windows\system32\drivers\EasyAntiCheat.sys [X]
S1 fqzqebrb; \??\C:\Windows\system32\drivers\fqzqebrb.sys [X]
S1 vgwluipk; \??\C:\Windows\system32\drivers\vgwluipk.sys [X]
R3 XDva536; \??\C:\Windows\system32\XDva536.sys [X]
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois - Créés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2017-10-23 18:47 - 2017-10-23 18:48 - 000015209 _____ C:\Users\Diaby\Desktop\FRST.txt
2017-10-23 18:46 - 2017-10-23 18:47 - 000000000 ____D C:\FRST
2017-10-23 18:44 - 2017-10-23 18:44 - 001799680 _____ (Farbar) C:\Users\Diaby\Desktop\FRST.exe
2017-10-23 17:59 - 2017-10-23 18:13 - 485401816 _____ (VMware, Inc.) C:\Users\Diaby\Downloads\VMware-workstation-full-14.0.0-6661328.exe
2017-10-23 14:44 - 2017-10-23 14:44 - 000129980 _____ C:\Users\Diaby\Desktop\ZHPDiag.txt
2017-10-23 14:28 - 2017-10-23 14:28 - 000001531 _____ C:\Users\Diaby\Desktop\ZHPFixReport.txt
2017-10-23 14:22 - 2017-10-23 14:22 - 000000000 ____D C:\Users\Diaby\Desktop\Quarantine
2017-10-23 14:19 - 2017-10-23 14:19 - 003067264 _____ (Nicolas Coolman) C:\Users\Diaby\Desktop\zhpfix_2017-6-13-1.exe
2017-10-23 11:49 - 2017-10-23 11:49 - 000000000 ____D C:\ProgramData\SWCUTemp
2017-10-23 11:37 - 2017-10-23 11:44 - 000000000 ____D C:\AdwCleaner
2017-10-23 11:34 - 2017-10-23 11:37 - 000006025 _____ C:\Users\Diaby\Desktop\ZHPCleaner.txt
2017-10-23 11:18 - 2017-10-23 11:18 - 000000794 _____ C:\Users\Diaby\Desktop\ZHPCleaner.lnk
2017-10-23 08:54 - 2017-10-23 08:54 - 000000000 ____D C:\Users\Diaby\AppData\Roaming\AVAST Software
2017-10-23 08:52 - 2017-10-23 08:52 - 000002075 _____ C:\Users\Public\Desktop\Avast Internet Security.lnk
2017-10-23 08:52 - 2017-10-23 08:52 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software
2017-10-23 08:52 - 2017-10-23 08:51 - 000499560 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2017-10-23 08:52 - 2017-10-23 08:51 - 000297840 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys
2017-10-23 08:52 - 2017-10-23 08:51 - 000149824 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2017-10-23 08:52 - 2017-10-23 08:51 - 000070864 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys
2017-10-23 08:51 - 2017-10-23 08:51 - 000304816 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2017-10-23 08:51 - 2017-10-23 08:51 - 000124952 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2017-10-23 08:51 - 2017-10-23 08:51 - 000099560 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2017-10-23 08:51 - 2017-10-23 08:51 - 000042856 _____ (AVAST Software) C:\Windows\system32\Drivers\aswHwid.sys
2017-10-23 08:51 - 2017-10-23 08:50 - 000777952 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2017-10-23 08:51 - 2017-10-23 08:50 - 000409096 _____ (AVAST Software) C:\Windows\system32\Drivers\aswNetSec.sys
2017-10-23 08:51 - 2017-10-23 08:50 - 000276736 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswblogx.sys
2017-10-23 08:51 - 2017-10-23 08:50 - 000255624 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswbidsdriverx.sys
2017-10-23 08:51 - 2017-10-23 08:50 - 000157416 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswbidshx.sys
2017-10-23 08:51 - 2017-10-23 08:50 - 000050384 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswbunivx.sys
2017-10-23 08:50 - 2017-10-23 08:50 - 000036104 _____ (AVAST Software) C:\Windows\system32\Drivers\aswNetNd6.sys
2017-10-23 08:48 - 2017-10-23 08:48 - 000000000 ____D C:\ProgramData\Avast
2017-10-23 08:39 - 2017-10-23 08:39 - 000003208 ____N C:\bootsqm.dat
2017-10-23 08:14 - 2017-10-23 08:14 - 007161304 _____ (AVAST Software) C:\Users\Public\Desktop\avast_internet_security_setup_online.exe
2017-10-23 08:14 - 2017-10-23 08:14 - 007161304 _____ (AVAST Software) C:\Users\Diaby\Downloads\avast_internet_security_setup_online.exe
2017-10-22 21:23 - 2017-10-23 17:11 - 000000000 ____D C:\Users\Diaby\.VirtualBox
2017-10-22 21:21 - 2017-10-22 21:21 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Oracle VM VirtualBox
2017-10-22 21:21 - 2017-04-18 11:24 - 000803328 _____ (Oracle Corporation) C:\Windows\system32\Drivers\VBoxDrv.sys
2017-10-22 21:21 - 2017-04-18 11:24 - 000123856 _____ (Oracle Corporation) C:\Windows\system32\Drivers\VBoxUSBMon.sys
2017-10-22 15:17 - 2017-10-22 15:17 - 000221112 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys
2017-10-22 13:49 - 2017-10-22 13:49 - 000001634 _____ C:\Users\Diaby\Desktop\S4 League.lnk
2017-10-22 13:49 - 2017-10-22 13:49 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\S4 League
2017-10-22 13:22 - 2017-10-22 13:22 - 000000782 _____ C:\Users\Diaby\Desktop\ZHPDiag.lnk
2017-10-22 13:19 - 2017-10-22 13:19 - 008250832 _____ (Malwarebytes) C:\Users\Diaby\Desktop\adwcleaner_7.0.3.1.exe
2017-10-22 13:15 - 2017-10-22 13:15 - 002958208 _____ C:\Users\Diaby\Downloads\ZHPCleaner.exe
2017-10-22 13:14 - 2017-10-22 13:15 - 002917248 _____ C:\Users\Diaby\Downloads\ZHPDiag3.exe
2017-10-22 11:48 - 2017-10-22 21:05 - 000000000 ____D C:\teste
2017-10-22 09:51 - 2017-10-22 11:50 - 000000000 ____D C:\Program Files\hack
2017-10-22 08:57 - 2017-10-22 09:00 - 002620953 _____ C:\Users\Diaby\Downloads\CheatBrazil.rar.crdownload
2017-10-21 22:22 - 2017-10-21 23:46 - 2332829093 _____ C:\Users\Diaby\Downloads\kali-linux-2017.2-vm-i386.7z
2017-10-21 14:10 - 2016-03-04 09:27 - 177632515 _____ C:\Users\Diaby\Desktop\RF016.REZ
2017-10-21 14:09 - 2017-10-21 14:09 - 000000000 ____D C:\Program Files\rf016 officiel (à ne pas supprimer)
2017-10-21 11:47 - 2017-10-21 11:47 - 000002101 _____ C:\Users\Diaby\Desktop\Crossfire Europe EU.lnk
2017-10-21 11:46 - 2017-10-21 11:47 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Smilegate Europe
2017-10-21 11:24 - 2017-10-21 11:24 - 000000000 ____D C:\Program Files\Smilegate
2017-10-20 16:50 - 2017-10-22 13:06 - 000000000 ____D C:\Program Files\Common Files\BattlEye
2017-10-17 19:18 - 2017-10-17 19:19 - 000000239 _____ C:\Users\Diaby\Downloads\dddada.txt
2017-10-15 18:12 - 2017-10-15 18:16 - 005562976 _____ (Piriform Ltd) C:\Users\Diaby\Downloads\rcsetup153.exe
2017-10-15 18:03 - 2017-10-22 18:50 - 000000000 ____D C:\Users\Diaby\Desktop\REST2514
2017-10-15 14:30 - 2017-10-15 14:31 - 000000000 ____D C:\Users\Diaby\AppData\Local\ElevatedDiagnostics
2017-10-15 12:35 - 2017-10-15 12:35 - 001105961 _____ C:\Users\Diaby\Downloads\Non confirmé 436886.crdownload
2017-10-15 09:07 - 2017-10-15 09:07 - 000000000 ____D C:\Users\Diaby\AppData\Roaming\gtk-2.0
2017-10-15 08:48 - 2017-10-15 08:53 - 000000007 _____ C:\Users\Public\youwave_size
2017-10-15 08:48 - 2017-10-15 08:48 - 000000000 ____D C:\Users\Diaby\Documents\webkit
2017-10-14 23:19 - 2017-10-15 08:48 - 000000000 ____D C:\Users\Diaby\youwave
2017-10-14 09:46 - 2017-10-14 09:46 - 124059592 ____C (Microsoft Corporation) C:\Windows\system32\MRT-KB890830.exe
2017-10-14 09:37 - 2017-09-13 17:13 - 004001512 _____ (Microsoft Corporation) C:\Windows\system32\ntkrnlpa.exe
2017-10-14 09:37 - 2017-09-13 17:13 - 003945704 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2017-10-14 09:37 - 2017-09-13 17:13 - 000137960 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2017-10-14 09:37 - 2017-09-13 17:13 - 000067304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2017-10-14 09:37 - 2017-09-13 17:10 - 001310528 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2017-10-14 09:37 - 2017-09-13 17:09 - 000830464 _____ (Microsoft Corporation) C:\Windows\system32\msctf.dll
2017-10-14 09:37 - 2017-09-13 17:09 - 000828928 _____ (Microsoft Corporation) C:\Windows\system32\wlansvc.dll
2017-10-14 09:37 - 2017-09-13 17:09 - 000428032 _____ (Microsoft Corporation) C:\Windows\system32\wlanmsm.dll
2017-10-14 09:37 - 2017-09-13 17:09 - 000392704 _____ (Microsoft Corporation) C:\Windows\system32\wlansec.dll
2017-10-14 09:37 - 2017-09-13 17:09 - 000083968 _____ (Microsoft Corporation) C:\Windows\system32\wlanhlp.dll
2017-10-14 09:37 - 2017-09-13 17:09 - 000080896 _____ (Microsoft Corporation) C:\Windows\system32\wlanapi.dll
2017-10-14 09:37 - 2017-09-13 16:53 - 000271360 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\nwifi.sys
2017-10-14 09:37 - 2017-09-13 16:46 - 000226304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2017-10-14 09:37 - 2017-09-13 16:46 - 000124416 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2017-10-14 09:37 - 2017-09-09 01:47 - 000347344 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2017-10-14 09:37 - 2017-09-08 17:14 - 001213672 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2017-10-14 09:37 - 2017-09-08 17:10 - 001549824 _____ (Microsoft Corporation) C:\Windows\system32\tquery.dll
2017-10-14 09:37 - 2017-09-08 17:10 - 001363968 _____ (Microsoft Corporation) C:\Windows\system32\Query.dll
2017-10-14 09:37 - 2017-09-08 17:10 - 000109568 _____ (Microsoft Corporation) C:\Windows\system32\t2embed.dll
2017-10-14 09:37 - 2017-09-08 17:09 - 000306688 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2017-10-14 09:37 - 2017-09-08 16:50 - 002402304 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2017-10-14 09:37 - 2017-09-08 16:20 - 000640512 _____ (Microsoft Corporation) C:\Windows\system32\mswstr10.dll
2017-10-14 09:37 - 2017-09-08 16:20 - 000345088 _____ (Microsoft Corporation) C:\Windows\system32\msexcl40.dll
2017-10-14 09:37 - 2017-09-08 16:20 - 000008704 _____ (Microsoft Corporation) C:\Windows\system32\msjint40.dll
2017-10-14 09:37 - 2017-09-07 21:10 - 000499200 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2017-10-14 09:37 - 2017-09-07 21:10 - 000341504 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2017-10-14 09:37 - 2017-09-07 21:04 - 020267008 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2017-10-14 09:37 - 2017-09-07 21:03 - 002292736 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2017-10-14 09:37 - 2017-09-07 20:58 - 000663040 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2017-10-14 09:37 - 2017-09-07 20:52 - 000667648 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2017-10-14 09:37 - 2017-09-07 20:39 - 000076288 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2017-10-14 09:37 - 2017-09-07 20:37 - 000279040 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2017-10-14 09:37 - 2017-09-07 20:29 - 004547072 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2017-10-14 09:37 - 2017-09-07 20:29 - 000230400 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2017-10-14 09:37 - 2017-09-07 20:26 - 000694784 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2017-10-14 09:37 - 2017-09-07 20:26 - 000690688 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2017-10-14 09:37 - 2017-09-07 20:25 - 002058752 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2017-10-14 09:37 - 2017-09-07 20:25 - 001155072 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2017-10-14 09:37 - 2017-09-07 20:17 - 013677568 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2017-10-14 09:37 - 2017-09-07 20:01 - 002767872 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2017-10-14 09:37 - 2017-09-07 19:57 - 001316864 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2017-10-14 09:37 - 2017-09-07 19:57 - 000710144 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2017-10-14 09:37 - 2017-09-07 17:12 - 002755072 _____ (Microsoft Corporation) C:\Windows\system32\themeui.dll
2017-10-14 09:37 - 2017-09-07 16:48 - 000313856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2017-10-14 09:37 - 2017-09-07 16:48 - 000312320 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys
2017-10-14 09:37 - 2017-09-07 16:48 - 000115712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2017-10-14 09:37 - 2017-08-19 17:10 - 003209216 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll
2017-10-14 09:37 - 2017-08-19 17:10 - 000103424 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll
2017-10-14 09:37 - 2017-08-19 16:57 - 000050176 _____ (Microsoft Corporation) C:\Windows\system32\rrinstaller.exe
2017-10-14 09:37 - 2017-08-19 16:57 - 000023040 _____ (Microsoft Corporation) C:\Windows\system32\mfpmp.exe
2017-10-14 09:37 - 2017-08-14 19:35 - 000827904 _____ (Microsoft Corporation) C:\Windows\system32\rdpcore.dll
2017-10-14 09:37 - 2017-08-14 19:35 - 000015872 _____ (Microsoft Corporation) C:\Windows\system32\icaapi.dll
2017-10-14 09:37 - 2017-08-13 23:35 - 000031744 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys
2017-10-14 09:36 - 2017-10-14 09:36 - 000000006 _____ C:\Users\Diaby\Downloads\motdepasse.txt
2017-10-14 09:36 - 2017-09-13 17:09 - 000655360 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2017-10-14 09:36 - 2017-09-13 17:09 - 000400896 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2017-10-14 09:36 - 2017-09-13 17:09 - 000261120 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2017-10-14 09:36 - 2017-09-13 17:09 - 000254464 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2017-10-14 09:36 - 2017-09-13 17:09 - 000223232 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2017-10-14 09:36 - 2017-09-13 17:09 - 000172032 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2017-10-14 09:36 - 2017-09-13 17:09 - 000146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2017-10-14 09:36 - 2017-09-13 17:09 - 000141312 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll
2017-10-14 09:36 - 2017-09-13 17:09 - 000099840 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2017-10-14 09:36 - 2017-09-13 17:09 - 000065536 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2017-10-14 09:36 - 2017-09-13 17:09 - 000060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2017-10-14 09:36 - 2017-09-13 17:09 - 000050176 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll
2017-10-14 09:36 - 2017-09-13 17:09 - 000043008 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2017-10-14 09:36 - 2017-09-13 17:09 - 000022016 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2017-10-14 09:36 - 2017-09-13 17:08 - 001062912 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2017-10-14 09:36 - 2017-09-13 17:08 - 000690688 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2017-10-14 09:36 - 2017-09-13 17:08 - 000644096 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2017-10-14 09:36 - 2017-09-13 17:08 - 000554496 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2017-10-14 09:36 - 2017-09-13 17:08 - 000082432 _____ (Microsoft Corporation) C:\Windows\system32\bcrypt.dll
2017-10-14 09:36 - 2017-09-13 17:08 - 000050688 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll
2017-10-14 09:36 - 2017-09-13 17:08 - 000038912 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2017-10-14 09:36 - 2017-09-13 17:08 - 000017408 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2017-10-14 09:36 - 2017-09-13 17:08 - 000006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2017-10-14 09:36 - 2017-09-13 16:50 - 000097792 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe
2017-10-14 09:36 - 2017-09-13 16:50 - 000050688 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys
2017-10-14 09:36 - 2017-09-13 16:50 - 000050176 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2017-10-14 09:36 - 2017-09-13 16:50 - 000029696 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll
2017-10-14 09:36 - 2017-09-13 16:50 - 000016896 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe
2017-10-14 09:36 - 2017-09-13 16:48 - 000262656 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2017-10-14 09:36 - 2017-09-13 16:46 - 000098304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2017-10-14 09:36 - 2017-09-13 16:46 - 000069632 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2017-10-14 09:36 - 2017-09-13 16:46 - 000036352 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
2017-10-14 09:36 - 2017-09-13 16:46 - 000022016 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2017-10-14 09:36 - 2017-09-13 16:46 - 000015872 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2017-10-14 09:36 - 2017-09-08 17:09 - 001400320 _____ (Microsoft Corporation) C:\Windows\system32\mssrch.dll
2017-10-14 09:36 - 2017-09-08 17:09 - 000666624 _____ (Microsoft Corporation) C:\Windows\system32\mssvp.dll
2017-10-14 09:36 - 2017-09-08 17:09 - 000337408 _____ (Microsoft Corporation) C:\Windows\system32\mssph.dll
2017-10-14 09:36 - 2017-09-08 17:09 - 000197120 _____ (Microsoft Corporation) C:\Windows\system32\mssphtb.dll
2017-10-14 09:36 - 2017-09-08 17:09 - 000104448 _____ (Microsoft Corporation) C:\Windows\system32\mssitlb.dll
2017-10-14 09:36 - 2017-09-08 17:09 - 000059392 _____ (Microsoft Corporation) C:\Windows\system32\msscntrs.dll
2017-10-14 09:36 - 2017-09-08 17:09 - 000034816 _____ (Microsoft Corporation) C:\Windows\system32\mssprxy.dll
2017-10-14 09:36 - 2017-09-08 17:00 - 000427520 _____ (Microsoft Corporation) C:\Windows\system32\SearchIndexer.exe
2017-10-14 09:36 - 2017-09-08 17:00 - 000164352 _____ (Microsoft Corporation) C:\Windows\system32\SearchProtocolHost.exe
2017-10-14 09:36 - 2017-09-08 16:59 - 000086528 _____ (Microsoft Corporation) C:\Windows\system32\SearchFilterHost.exe
2017-10-14 09:36 - 2017-09-08 16:59 - 000009728 _____ (Microsoft Corporation) C:\Windows\system32\msshooks.dll
2017-10-14 09:36 - 2017-09-07 21:27 - 002724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2017-10-14 09:36 - 2017-09-07 21:26 - 000004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2017-10-14 09:36 - 2017-09-07 21:11 - 000062464 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2017-10-14 09:36 - 2017-09-07 21:10 - 000047616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2017-10-14 09:36 - 2017-09-07 21:09 - 000064000 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2017-10-14 09:36 - 2017-09-07 21:03 - 000047104 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2017-10-14 09:36 - 2017-09-07 21:02 - 000030720 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2017-10-14 09:36 - 2017-09-07 20:59 - 000476160 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2017-10-14 09:36 - 2017-09-07 20:58 - 000620032 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2017-10-14 09:36 - 2017-09-07 20:58 - 000115712 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2017-10-14 09:36 - 2017-09-07 20:58 - 000104960 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2017-10-14 09:36 - 2017-09-07 20:49 - 000416256 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2017-10-14 09:36 - 2017-09-07 20:44 - 000073216 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2017-10-14 09:36 - 2017-09-07 20:44 - 000060416 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2017-10-14 09:36 - 2017-09-07 20:43 - 000091136 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2017-10-14 09:36 - 2017-09-07 20:40 - 000168960 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2017-10-14 09:36 - 2017-09-07 20:36 - 000130048 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2017-10-14 09:36 - 2017-08-19 17:10 - 000002048 _____ (Microsoft Corporation) C:\Windows\system32\mferror.dll
2017-10-10 19:38 - 2017-10-10 19:39 - 012829235 _____ C:\Users\Diaby\Downloads\RB001.REZ
2017-10-10 18:34 - 2017-10-10 18:38 - 000000000 ____D C:\ProgramData\Intel
2017-10-10 18:33 - 2017-10-18 20:01 - 000000000 ____D C:\Program Files\Intel Driver and Support Assistant
2017-10-10 18:33 - 2017-10-15 08:47 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel Driver and Support Assistant
2017-10-10 18:25 - 2017-10-10 18:27 - 008986120 _____ (Intel) C:\Users\Diaby\Downloads\Intel Driver and Support Assistant Installer.exe
2017-10-10 14:02 - 2017-10-10 14:02 - 000001117 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2017-10-10 14:02 - 2017-10-10 14:02 - 000001105 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2017-10-10 13:57 - 2017-10-10 13:57 - 000245856 _____ (Mozilla) C:\Users\Diaby\Downloads\Firefox Installer.exe
2017-10-09 19:24 - 2017-10-09 19:24 - 000000000 ____D C:\Users\Public\Thunder Network
2017-10-09 19:24 - 2017-10-09 19:24 - 000000000 ____D C:\ProgramData\Thunder Network
2017-10-09 19:23 - 2017-10-09 19:24 - 000000000 ____D C:\Users\Diaby\AppData\Roaming\HaiYuInst
2017-10-08 16:05 - 2017-10-09 20:04 - 000000000 ____D C:\Users\Diaby\AppData\Roaming\Leapdroid
2017-10-08 15:54 - 2017-10-08 16:00 - 262535736 _____ (Leapdroid) C:\Users\Diaby\Downloads\leapdroid-11-0-0.exe
2017-10-08 13:18 - 2017-10-08 13:18 - 000000000 ____D C:\Users\Diaby\AppData\Local\realtech_VR
2017-10-08 13:06 - 2017-10-08 13:06 - 000000000 ____D C:\ProgramData\realtech VR
2017-10-08 13:05 - 2017-10-08 13:28 - 000000000 ____D C:\Program Files\realtech VR
2017-10-07 16:39 - 2017-10-07 16:39 - 000000000 ____D C:\Windows\system32\SRSLabs
2017-10-07 16:37 - 2017-10-07 16:37 - 072520712 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoRes.dat
2017-10-07 16:37 - 2017-10-07 16:37 - 012334923 _____ C:\Windows\system32\Drivers\RTAIODAT.DAT
2017-10-07 16:37 - 2017-10-07 16:37 - 004482048 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHDA.sys
2017-10-07 16:37 - 2017-10-07 16:37 - 003661720 _____ (Fortemedia Corporation) C:\Windows\system32\FMAPO.dll
2017-10-07 16:37 - 2017-10-07 16:37 - 003610088 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTSndMgr.cpl
2017-10-07 16:37 - 2017-10-07 16:37 - 003092336 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RltkAPO.dll
2017-10-07 16:37 - 2017-10-07 16:37 - 002906624 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkPgExt.dll
2017-10-07 16:37 - 2017-10-07 16:37 - 002561968 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApoApi.dll
2017-10-07 16:37 - 2017-10-07 16:37 - 002156544 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCoInstII.dll
2017-10-07 16:37 - 2017-10-07 16:37 - 001529288 _____ (Conexant Systems Inc.) C:\Windows\system32\CX32APO.dll
2017-10-07 16:37 - 2017-10-07 16:37 - 001451616 _____ (Conexant Systems Inc.) C:\Windows\system32\CX32Proxy.dll
2017-10-07 16:37 - 2017-10-07 16:37 - 001074048 _____ (Synopsys, Inc.) C:\Windows\system32\SRRPTR.dll
2017-10-07 16:37 - 2017-10-07 16:37 - 000532888 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTACap.dll
2017-10-07 16:37 - 2017-10-07 16:37 - 000401040 _____ (Synopsys, Inc.) C:\Windows\system32\SRAPO.dll
2017-10-07 16:37 - 2017-10-07 16:37 - 000371808 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEP32A.dll
2017-10-07 16:37 - 2017-10-07 16:37 - 000341144 _____ (Synopsys, Inc.) C:\Windows\system32\SRCOM.dll
2017-10-07 16:37 - 2017-10-07 16:37 - 000307232 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DHT32.dll
2017-10-07 16:37 - 2017-10-07 16:37 - 000307232 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DAA32.dll
2017-10-07 16:37 - 2017-10-07 16:37 - 000225040 _____ (Synopsys, Inc.) C:\Windows\system32\SFNHK.dll
2017-10-07 16:37 - 2017-10-07 16:37 - 000225024 _____ (Sonic Focus, Inc.) C:\Windows\system32\SFFXProc.dll
2017-10-07 16:37 - 2017-10-07 16:37 - 000181224 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEED32A.dll
2017-10-07 16:37 - 2017-10-07 16:37 - 000105648 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTARen.dll
2017-10-07 16:37 - 2017-10-07 16:37 - 000101328 _____ (Real Sound Lab SIA) C:\Windows\system32\CONEQMSAPOGUILibrary.dll
2017-10-07 16:37 - 2017-10-07 16:37 - 000088272 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEL32A.dll
2017-10-07 16:37 - 2017-10-07 16:37 - 000088264 _____ (Sonic Focus, Inc.) C:\Windows\system32\SFFXComm.dll
2017-10-07 16:37 - 2017-10-07 16:37 - 000083640 _____ (Synopsys, Inc.) C:\Windows\system32\SFCOM.dll
2017-10-07 16:37 - 2017-10-07 16:37 - 000083624 _____ (Sonic Focus, Inc.) C:\Windows\system32\SFFXSAPO.dll
2017-10-07 16:37 - 2017-10-07 16:37 - 000083624 _____ (Sonic Focus, Inc.) C:\Windows\system32\SFFXHAPO.dll
2017-10-07 16:37 - 2017-10-07 16:37 - 000083624 _____ (Sonic Focus, Inc.) C:\Windows\system32\SFFXDAPO.dll
2017-10-07 16:37 - 2017-10-07 16:37 - 000078480 _____ (Synopsys, Inc.) C:\Windows\system32\SFAPO.dll
2017-10-07 16:37 - 2017-10-07 16:37 - 000074376 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEG32A.dll
2017-10-07 16:37 - 2017-10-07 16:37 - 000022152 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCoLDR.dll
2017-10-07 16:31 - 2017-10-07 16:51 - 000000000 ____D C:\ProgramData\ProductData
2017-10-07 16:28 - 2017-10-07 16:28 - 017901184 _____ (IObit ) C:\Users\Diaby\Downloads\driver_booster_setup.exe
2017-10-07 14:34 - 2017-10-07 14:34 - 000000000 ____D C:\Users\Diaby\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Applications Chrome
2017-10-07 12:04 - 2017-10-07 12:07 - 065938531 _____ C:\Users\Diaby\Downloads\com.snapchat.android_10.18.6.0_[apk-downloaders.com] (1).apk
2017-10-07 12:01 - 2017-10-08 13:54 - 000000228 _____ C:\Users\Diaby\.node_repl_history
2017-10-06 21:04 - 2017-10-06 21:06 - 048132904 _____ (Genymobile ) C:\Users\Diaby\Downloads\genymotion-2.10.0.exe
2017-10-06 18:08 - 2017-10-06 18:08 - 000002213 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2017-10-06 18:08 - 2017-10-06 18:08 - 000002201 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2017-10-06 17:58 - 2017-10-06 17:59 - 001130328 _____ (Google Inc.) C:\Users\Diaby\Downloads\ChromeSetup.exe
2017-10-06 16:08 - 2017-10-06 16:10 - 065938531 _____ C:\Users\Diaby\Downloads\snapchat-10-18-6-0.apk
2017-10-05 19:18 - 2017-10-05 19:22 - 344913872 _____ (Microvirt Software Technology Co. Ltd.) C:\Users\Diaby\Downloads\Memu-Setup-3.5.0.2.exe
2017-10-04 19:09 - 2017-10-04 19:09 - 000002519 _____ C:\Users\Public\Desktop\Avast Driver Updater.lnk
2017-10-04 19:09 - 2017-10-04 19:09 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Driver Updater
2017-10-04 19:09 - 2017-10-04 19:09 - 000000000 ____D C:\Program Files\Avast Driver Updater
2017-10-04 17:21 - 2017-10-04 17:21 - 000000000 ____D C:\Users\Diaby\AppData\Roaming\Mael
2017-09-28 12:52 - 2017-09-28 12:52 - 003187875 _____ C:\Users\Administrateur.Diaby-PC.000\Downloads\MOTION MOD.rar
2017-09-28 12:48 - 2017-09-28 12:48 - 000000000 ____D C:\Users\Administrateur.Diaby-PC.000\AppData\Roaming\Macromedia
2017-09-28 12:48 - 2017-09-28 12:48 - 000000000 ____D C:\Users\Administrateur.Diaby-PC.000\AppData\Local\Macromedia
2017-09-28 12:25 - 2017-09-28 12:25 - 000000081 _____ C:\Users\Administrateur.Diaby-PC.000\Desktop\no-trojan.txt
2017-09-25 20:29 - 2017-09-25 20:29 - 003151488 _____ (ESET) C:\Users\Diaby\Downloads\eset_smart_security_premium_live_installer.exe
2017-09-24 14:00 - 2017-10-11 17:41 - 000000000 ____D C:\Users\Diaby\AppData\Roaming\Opera Software
2017-09-24 14:00 - 2017-10-11 17:41 - 000000000 ____D C:\Users\Diaby\AppData\Local\Opera Software
2017-09-24 13:55 - 2017-09-24 13:56 - 001163520 _____ (Opera Software) C:\Users\Diaby\Downloads\OperaSetup.exe
2017-09-23 11:46 - 2017-09-23 13:01 - 000000000 ____D C:\Program Files\Common Files\Steam
2017-09-23 11:38 - 2017-09-23 11:39 - 000000043 _____ C:\Users\Diaby\Downloads\virus trojan sypwar ronsware
==================== Un mois - Modifiés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2017-10-23 18:35 - 2009-07-14 06:34 - 000041248 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2017-10-23 18:35 - 2009-07-14 06:34 - 000041248 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2017-10-23 17:03 - 2017-07-06 19:54 - 000000000 ____D C:\Users\Diaby\VirtualBox VMs
2017-10-23 15:05 - 2017-09-21 18:13 - 000000376 _____ C:\Windows\Tasks\update-sys.job
2017-10-23 14:36 - 2017-07-30 17:37 - 000000000 ____D C:\Users\Diaby\AppData\Roaming\ZHP
2017-10-23 14:35 - 2017-07-30 17:37 - 000000000 ____D C:\Users\Diaby\AppData\Local\ZHP
2017-10-23 14:30 - 2009-07-14 06:53 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2017-10-23 12:52 - 2017-02-05 21:16 - 000000000 ____D C:\Users\Diaby\AppData\Local\CrashDumps
2017-10-23 08:52 - 2009-07-14 04:37 - 000000000 ____D C:\Windows\inf
2017-10-23 08:47 - 2017-08-17 10:56 - 000000000 ____D C:\ProgramData\AVAST Software
2017-10-22 21:23 - 2016-05-25 18:26 - 000000000 ____D C:\Users\Diaby
2017-10-22 13:22 - 2017-09-19 18:04 - 000000000 ____D C:\AeriaGames
2017-10-22 00:14 - 2009-07-14 04:37 - 000000000 ____D C:\Windows\rescache
2017-10-18 17:21 - 2016-11-23 14:25 - 000000000 ____D C:\Users\Diaby\AppData\LocalLow\Mozilla
2017-10-18 13:09 - 2016-07-23 10:37 - 000000000 ____D C:\Users\Diaby\AppData\Roaming\Dashlane
2017-10-18 13:08 - 2017-08-25 10:47 - 000001873 _____ C:\Users\Diaby\Desktop\Dashlane.lnk
2017-10-18 13:08 - 2017-08-25 10:43 - 000000000 ____D C:\Users\Diaby\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dashlane
2017-10-15 15:27 - 2017-07-07 14:34 - 000000000 ____D C:\CFLog
2017-10-15 14:30 - 2009-07-14 04:37 - 000000000 ____D C:\Windows\system32\NDF
2017-10-15 13:01 - 2017-04-06 16:13 - 000000000 ____D C:\OamfbjHB2VOamfbjHB2V
2017-10-14 10:21 - 2011-04-12 03:35 - 000749022 _____ C:\Windows\system32\perfh00C.dat
2017-10-14 10:21 - 2011-04-12 03:35 - 000150586 _____ C:\Windows\system32\perfc00C.dat
2017-10-14 10:21 - 2010-11-20 23:01 - 001668256 _____ C:\Windows\system32\PerfStringBackup.INI
2017-10-14 10:12 - 2017-09-16 18:38 - 000316328 _____ C:\Windows\system32\FNTCACHE.DAT
2017-10-14 09:54 - 2017-07-07 08:21 - 000001042 _____ C:\Users\Administrateur.Diaby-PC.000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2017-10-14 09:54 - 2016-12-22 19:33 - 000001042 _____ C:\Users\123\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2017-10-14 09:54 - 2016-05-25 18:26 - 000001042 _____ C:\Users\Diaby\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2017-10-14 09:47 - 2017-05-25 07:39 - 000000000 ____D C:\Windows\system32\MRT
2017-10-14 09:41 - 2017-04-10 19:49 - 124059592 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2017-10-14 08:51 - 2016-07-04 20:43 - 000803328 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2017-10-14 08:51 - 2016-07-04 20:43 - 000144896 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2017-10-14 08:51 - 2016-07-04 20:43 - 000000000 ____D C:\Windows\system32\Macromed
2017-10-13 17:15 - 2016-06-05 19:26 - 000000000 ____D C:\ProgramData\Package Cache
2017-10-11 18:35 - 2016-07-04 20:45 - 000000000 ____D C:\Users\Diaby\AppData\Local\Unity
2017-10-10 18:06 - 2016-11-25 21:34 - 000000000 ____D C:\Users\Diaby\AppData\Local\Bluestacks
2017-10-10 14:02 - 2017-07-13 10:40 - 000000000 ____D C:\Program Files\Mozilla Firefox
2017-10-10 14:02 - 2016-11-23 14:25 - 000000000 ____D C:\Program Files\Mozilla Maintenance Service
2017-10-10 14:02 - 2016-06-15 13:21 - 000000000 ____D C:\Users\Diaby\AppData\Roaming\Mozilla
2017-10-10 14:02 - 2016-06-15 13:21 - 000000000 ____D C:\Users\Diaby\AppData\Local\Mozilla
2017-10-09 20:03 - 2017-06-29 08:18 - 000189792 _____ (Sysinternals) C:\Windows\PSEXESVC.exe
2017-10-08 11:12 - 2017-09-03 13:35 - 000059904 _____ C:\Windows\system32\Drivers\mbae.sys
2017-10-07 16:57 - 2016-05-25 18:31 - 000000000 ____D C:\Users\Diaby\AppData\Roaming\IObit
2017-10-07 16:39 - 2016-05-26 18:41 - 000000000 ____D C:\Windows\system32\RTCOM
2017-10-06 18:07 - 2016-05-25 19:28 - 000000000 ____D C:\Program Files\Google
2017-10-05 19:35 - 2017-05-31 15:17 - 000000000 ____D C:\Users\Diaby\.android
2017-10-05 17:15 - 2017-08-22 20:21 - 000000000 ____D C:\Users\Diaby\AppData\Local\AVAST Software
2017-09-28 12:58 - 2017-08-02 13:03 - 000000000 ____D C:\Users\Administrateur.Diaby-PC.000\AppData\LocalLow\Mozilla
==================== Fichiers à la racine de certains dossiers =======
2017-02-24 18:23 - 2017-07-31 17:48 - 000192716 _____ () C:\Program Files\metadata
2015-02-15 01:58 - 2015-03-12 01:20 - 000000165 _____ () C:\Program Files\Mods-ITST.ini
2015-02-15 01:58 - 2015-03-12 01:19 - 000000165 _____ () C:\Program Files\Mods.ini
2016-12-20 15:05 - 2016-12-20 15:05 - 002314121 _____ () C:\Program Files\nPwImRe.psd
2015-02-15 01:58 - 2014-06-04 04:36 - 000000038 _____ () C:\Program Files\Run_ITST_Mod.bat
2015-02-15 01:58 - 2015-01-31 10:02 - 000000031 _____ () C:\Program Files\Run_TE_Vanilla.bat
2015-02-15 01:58 - 2015-03-12 02:02 - 000000379 _____ () C:\Program Files\UnpackSound.bat
2016-05-29 08:04 - 2016-05-29 08:04 - 000000000 _____ () C:\Users\Diaby\AppData\Roaming\1.bin
2017-02-11 16:28 - 2017-10-09 19:51 - 000001157 _____ () C:\Users\Diaby\AppData\Roaming\droid4xinstaller.log
2016-08-03 09:44 - 2017-02-07 21:05 - 000000003 _____ () C:\Users\Diaby\AppData\Roaming\Maintenance.log
2017-03-11 21:43 - 2017-04-14 13:05 - 000000002 _____ () C:\Users\Diaby\AppData\Roaming\Maintenance3.log
2017-02-19 12:26 - 2017-03-03 19:08 - 000532842 _____ () C:\Users\Diaby\AppData\Roaming\spritesa
2017-04-07 18:06 - 2017-04-07 18:07 - 013192536 ____N (TeamViewer GmbH) C:\Users\Diaby\AppData\Roaming\Team-Viewer_Setup_fr.exe
2017-02-10 10:43 - 2017-02-10 10:45 - 000033193 _____ () C:\Users\Diaby\AppData\Roaming\UserTile.png
2016-09-28 12:09 - 2017-05-13 08:52 - 000000301 _____ () C:\Users\Diaby\AppData\Roaming\WB.CFG
2016-05-28 20:05 - 2017-05-08 16:02 - 000005632 _____ () C:\Users\Diaby\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2017-07-08 18:21 - 2017-07-09 08:51 - 000000600 _____ () C:\Users\Diaby\AppData\Local\PUTTY.RND
2016-06-22 10:46 - 2017-09-12 20:38 - 000007620 _____ () C:\Users\Diaby\AppData\Local\Resmon.ResmonCfg
2016-09-02 16:25 - 2014-10-14 01:55 - 000061786 _____ () C:\Users\Diaby\AppData\Local\Tempcapturada5.png
2016-09-02 16:25 - 2007-06-13 21:37 - 000000111 _____ () C:\Users\Diaby\AppData\Local\Tempgrey.png
2016-09-02 16:25 - 2011-12-06 22:01 - 000012869 _____ () C:\Users\Diaby\AppData\Local\TempMBoxSkin.png
2016-09-02 16:25 - 2014-09-29 14:52 - 000161372 _____ () C:\Users\Diaby\AppData\Local\Tempv2.png
2016-09-14 19:15 - 2016-09-14 19:15 - 000000003 _____ () C:\Users\Diaby\AppData\Local\updater.log
2016-09-14 19:15 - 2017-09-21 18:13 - 000000413 _____ () C:\Users\Diaby\AppData\Local\UserProducts.xml
2017-07-30 20:51 - 2017-07-30 20:51 - 000044696 _____ () C:\ProgramData\agent.1501440658.bdinstall.bin
2017-07-30 20:52 - 2017-07-30 20:52 - 000026369 _____ () C:\ProgramData\agent.1501440730.bdinstall.bin
2017-07-30 20:53 - 2017-07-30 20:53 - 000026370 _____ () C:\ProgramData\agent.1501440783.bdinstall.bin
2017-07-30 20:53 - 2017-07-30 20:53 - 000026370 _____ () C:\ProgramData\agent.1501440797.bdinstall.bin
2017-07-30 20:53 - 2017-07-30 20:53 - 000026371 _____ () C:\ProgramData\agent.1501440812.bdinstall.bin
2017-07-30 20:54 - 2017-07-30 20:54 - 000026031 _____ () C:\ProgramData\agent.1501440881.bdinstall.bin
2017-07-31 08:46 - 2017-07-31 08:46 - 000028349 _____ () C:\ProgramData\agent.1501483605.bdinstall.bin
2016-05-26 18:41 - 2016-05-26 18:41 - 000000000 ____H () C:\ProgramData\DP45977C.lfl
2016-09-24 16:26 - 2016-10-08 08:24 - 000000002 ____H () C:\ProgramData\Entries.txt
2016-09-24 16:26 - 2016-10-08 08:23 - 000000433 _____ () C:\ProgramData\update.bin
Certains de taille zéro octet fichiers/dossiers:
==========================
C:\Windows\System32\Drivers\753C1B25.sys
==================== Bamital & volsnap ======================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
C:\Windows\explorer.exe => Le fichier est signé numériquement
C:\Windows\system32\winlogon.exe => Le fichier est signé numériquement
C:\Windows\system32\wininit.exe => Le fichier est signé numériquement
C:\Windows\system32\svchost.exe => Le fichier est signé numériquement
C:\Windows\system32\services.exe => Le fichier est signé numériquement
C:\Windows\system32\User32.dll => Le fichier est signé numériquement
C:\Windows\system32\userinit.exe => Le fichier est signé numériquement
C:\Windows\system32\rpcss.dll => Le fichier est signé numériquement
C:\Windows\system32\dnsapi.dll => Le fichier est signé numériquement
C:\Windows\system32\Drivers\volsnap.sys => Le fichier est signé numériquement
C:\Windows\system32\drivers\753C1B25.sys -> MD5 = D41D8CD98F00B204E9800998ECF8427E (0-byte MD5) <======= ATTENTION
LastRegBack: 2017-10-22 00:06
==================== Fin de FRST.txt ============================