Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x86) Version:27-09-2015 01 Exécuté par NKOGHE REGIS (administrateur) sur NKRP (01-10-2015 01:12:12) Exécuté depuis G:\ Profils chargés: NKOGHE REGIS (Profils disponibles: NKOGHE REGIS & DefaultAppPool) Platform: Microsoft Windows 8 Professionnel N (X86) Langue: Français (France) Internet Explorer Version 10 (Navigateur par défaut: Chrome) Mode d'amorçage: Normal Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processus (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.) (AMD) C:\Windows\System32\atiesrxx.exe (AMD) C:\Windows\System32\atieclxx.exe (ALWIL Software) C:\Program Files\Alwil Software\Avast5\AvastSvc.exe (Microsoft Corporation) C:\Windows\System32\wlanext.exe (Autodesk, Inc.) C:\Program Files\Autodesk\Content Service\Connect.Service.ContentService.exe (Solid Documents, LLC) C:\Program Files\SolidDocuments\SolidPDFCreator\SPC\SolidPdfService.exe (DEVGURU Co., LTD.) C:\Program Files\SAMSUNG\USB Drivers\25_escape\conn\ss_conn_service.exe (VMware, Inc.) C:\Windows\System32\vmnat.exe (VMware, Inc.) C:\Windows\System32\vmnetdhcp.exe (VMware, Inc.) C:\Program Files\Common Files\VMware\USB\vmware-usbarbitrator.exe (Connectify) C:\Program Files\Connectify\ConnectifyService.exe (Connectify) C:\Program Files\Connectify\Connectifyd.exe () C:\Program Files\VMware\VMware Workstation\vmware-hostd.exe (Smadsoft) C:\Program Files\SMADAV\SMΔRTP.exe (Google Inc.) C:\Program Files\Google\Update\1.3.27.5\GoogleCrashHandler.exe (VMware, Inc.) C:\Program Files\VMware\VMware Workstation\vmware-tray.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe (Connectify) C:\Program Files\Connectify\DispatchUI.exe (Connectify) C:\Program Files\Connectify\Connectify.exe (Adobe Systems Incorporated) C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe (ALWIL Software) C:\Program Files\Alwil Software\Avast5\AvastUI.exe (Dictionnaire Le Robert) C:\Program Files\Le Robert\Le Petit Robert 2014\PetitRobertHA.exe (FreeDownloadManager.ORG) C:\Program Files\Free Download Manager\fdm.exe ==================== Registre (Avec liste blanche) =========================== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.) HKLM\...\Run: [vmware-tray.exe] => C:\Program Files\VMware\VMware Workstation\vmware-tray.exe [104088 2012-08-15] (VMware, Inc.) HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [11951176 2013-05-30] (Realtek Semiconductor) HKLM\...\Run: [fspuip] => C:\Program Files\FSP\fspuip.exe [4958720 2012-09-07] (Sentelic Corporation) HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2428656 2013-05-22] (Synaptics Incorporated) HKLM\...\Run: [Autodesk Sync] => C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe [383424 2012-02-05] (Autodesk, Inc.) HKLM\...\Run: [Connectify Dispatch] => C:\Program Files\Connectify\DispatchUI.exe [2383608 2014-09-10] (Connectify) HKLM\...\Run: [Connectify Hotspot] => C:\Program Files\Connectify\Connectify.exe [4314360 2014-09-10] (Connectify) HKLM\...\Run: [Adobe ARM] => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1022152 2014-12-19] (Adobe Systems Incorporated) HKLM\...\Run: [avast5] => C:\Program Files\Alwil Software\Avast5\avastUI.exe [2756488 2010-02-11] (ALWIL Software) HKU\S-1-5-21-3463741277-1932354388-1444126525-1001\...\Run: [DAEMON Tools Lite] => C:\Program Files\DAEMON Tools Lite\DTLite.exe [3672640 2013-03-14] (Disc Soft Ltd) HKU\S-1-5-21-3463741277-1932354388-1444126525-1001\...\Run: [DrvUpdater] => C:\Users\NKOGHE REGIS\AppData\Roaming\DRPSu\DrvUpdater.exe [195256 2013-04-16] () HKU\S-1-5-21-3463741277-1932354388-1444126525-1001\...\Run: [Le Petit Robert V4 Hyperappel] => C:\Program Files\Le Robert\Le Petit Robert 2014\PetitRobertHA.exe [729088 2013-06-11] (Dictionnaire Le Robert) HKU\S-1-5-21-3463741277-1932354388-1444126525-1001\...\Run: [Free Download Manager] => C:\Program Files\Free Download Manager\fdm.exe [6983168 2014-05-09] (FreeDownloadManager.ORG) HKU\S-1-5-21-3463741277-1932354388-1444126525-1001\...\Policies\Explorer: [] HKU\S-1-5-21-3463741277-1932354388-1444126525-1001\...\MountPoints2: {5ababcac-0a9a-11e5-a2f3-005056c00008} - "F:\iLinker.exe" HKU\S-1-5-21-3463741277-1932354388-1444126525-1001\...\MountPoints2: {93e31174-12cc-11e5-a2f5-005056c00008} - "F:\Grid_elearning_demo.exe" HKU\S-1-5-21-3463741277-1932354388-1444126525-1001\...\MountPoints2: {ae7cb487-0e62-11e4-a2c1-2016d88c56f0} - "I:\Installation.exe" HKU\S-1-5-21-3463741277-1932354388-1444126525-1001\...\MountPoints2: {e587ae63-198c-11e4-a2c1-005056c00008} - "F:\Startme.exe" ShellIconOverlayIdentifiers: [AutoCAD Digital Signatures Icon Overlay Handler] -> {36A21736-36C2-4C11-8ACB-D4136F2B57BD} => C:\Windows\system32\AcSignIcon.dll [2012-02-06] (Autodesk, Inc.) ==================== Internet (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.) ProxyEnable: [S-1-5-21-3463741277-1932354388-1444126525-1001] => Proxy est activé. ProxyServer: [S-1-5-21-3463741277-1932354388-1444126525-1001] => di-isa:8080 Internet Explorer: ================== HKU\S-1-5-21-3463741277-1932354388-1444126525-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.fr/ HKU\S-1-5-21-3463741277-1932354388-1444126525-1001\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/fr-fr/?ocid=iehp BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office15\OCHelper.dll [2015-05-19] (Microsoft Corporation) BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation) BHO: Free Download Manager -> {CC59E0F9-7E43-44FA-9FAA-8377850BF205} -> C:\Program Files\Free Download Manager\iefdm2.dll [2014-04-29] (FreeDownloadManager.ORG) BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL [2015-05-13] (Microsoft Corporation) Handler: ms-itss - {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Program Files\Common Files\Microsoft Shared\Information Retrieval\MSITSS.DLL [2000-04-19] (Microsoft Corporation) Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL [2015-04-14] (Microsoft Corporation) FireFox: ======== FF Plugin: @adobe.com/AuthorwarePlayer -> C:\Windows\system32\Macromed\AUTHORWA\np32asw.dll [2004-07-02] (Macromedia, Inc.) FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_11_7_700_224.dll [2013-06-12] () FF Plugin: @adobe.com/ShockwavePlayer -> C:\Windows\system32\Adobe\Director\np32dsw_1200112.dll [2013-01-30] (Adobe Systems, Inc.) FF Plugin: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> C:\Program Files\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2013-04-02] (Foxit Corporation) FF Plugin: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> C:\Program Files\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2013-04-02] (Foxit Corporation) FF Plugin: @Google.com/GoogleEarthPlugin -> C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll [2015-05-21] (Google) FF Plugin: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2015-04-22] (Microsoft Corporation) FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation) FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation) FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-05-26] (Google Inc.) FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-05-26] (Google Inc.) FF Plugin: @videolan.org/vlc,version=2.0.3 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2012-07-19] (VideoLAN) FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2015-05-01] (Adobe Systems Inc.) FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npMeetingJoinPluginOC.dll [2015-04-22] (Microsoft Corporation) Chrome: ======= CHR Profile: C:\Users\NKOGHE REGIS\AppData\Local\Google\Chrome\User Data\Default CHR Extension: (Google Slides) - C:\Users\NKOGHE REGIS\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-04-14] CHR Extension: (Google Docs) - C:\Users\NKOGHE REGIS\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-04-14] CHR Extension: (Google Drive) - C:\Users\NKOGHE REGIS\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-04-14] CHR Extension: (YouTube) - C:\Users\NKOGHE REGIS\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-04-14] CHR Extension: (Recherche Google) - C:\Users\NKOGHE REGIS\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-04-14] CHR Extension: (Google Sheets) - C:\Users\NKOGHE REGIS\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-04-14] CHR Extension: (Chrome Hotword Shared Module) - C:\Users\NKOGHE REGIS\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-04-14] CHR Extension: (Google Wallet) - C:\Users\NKOGHE REGIS\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-04-14] CHR Extension: (Gmail) - C:\Users\NKOGHE REGIS\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-04-14] ==================== Services (Avec liste blanche) ======================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R2 Autodesk Content Service; C:\Program Files\Autodesk\Content Service\Connect.Service.ContentService.exe [19232 2012-01-31] (Autodesk, Inc.) R2 avast! Antivirus; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [40384 2010-02-11] (ALWIL Software) R3 avast! Mail Scanner; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [40384 2010-02-11] (ALWIL Software) R3 avast! Web Scanner; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [40384 2010-02-11] (ALWIL Software) R2 Connectify; C:\Program Files\Connectify\ConnectifyService.exe [487936 2014-09-10] (Connectify) [Fichier non signé] S3 FLEXnet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [1044816 2014-08-20] (Flexera Software, Inc.) S3 MBAMService; C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe [1133880 2015-06-18] (Malwarebytes Corporation) R2 SPDFCreatorReadSpool; C:\Program Files\SolidDocuments\SolidPDFCreator\SPC\SolidPdfService.exe [164136 2013-03-25] (Solid Documents, LLC) R2 ss_conn_service; C:\Program Files\SAMSUNG\USB Drivers\25_escape\conn\ss_conn_service.exe [743688 2014-12-03] (DEVGURU Co., LTD.) R2 VMAuthdService; C:\Program Files\VMware\VMware Workstation\vmware-authd.exe [79872 2012-08-15] (VMware, Inc.) [Fichier non signé] R2 VMnetDHCP; C:\Windows\system32\vmnetdhcp.exe [357016 2012-08-15] (VMware, Inc.) R2 VMUSBArbService; C:\Program Files\Common Files\VMware\USB\vmware-usbarbitrator.exe [719512 2012-08-01] (VMware, Inc.) R2 VMware NAT Service; C:\Windows\system32\vmnat.exe [435864 2012-08-15] (VMware, Inc.) R2 VMwareHostd; C:\Program Files\VMware\VMware Workstation\vmware-hostd.exe [15680000 2012-08-15] () [Fichier non signé] S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [14456 2015-01-31] (Microsoft Corporation) ===================== Pilotes (Avec liste blanche) ========================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R0 amd_sata; C:\Windows\System32\drivers\amd_sata.sys [70312 2012-11-30] (Advanced Micro Devices) R0 amd_xata; C:\Windows\System32\drivers\amd_xata.sys [22184 2012-11-30] (Advanced Micro Devices) S2 aswFsBlk; C:\Windows\system32\Drivers\aswFsBlk.sys [19024 2010-02-11] (ALWIL Software) R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [51792 2010-02-11] (ALWIL Software) R1 aswRdr; C:\Windows\system32\Drivers\aswRdr.sys [23376 2010-02-11] (ALWIL Software) S1 aswSP; C:\Windows\system32\Drivers\aswSP.sys [162512 2010-02-11] (ALWIL Software) R1 aswTdi; C:\Windows\system32\Drivers\aswTdi.sys [46672 2010-02-11] (ALWIL Software) R1 cnnctfy3; C:\Windows\system32\DRIVERS\cnnctfy3.sys [36008 2014-09-26] (Connectify) R1 dtsoftbus01; C:\Windows\System32\drivers\dtsoftbus01.sys [242240 2014-08-01] (DT Soft Ltd) S3 fspad_win732; C:\Windows\system32\DRIVERS\fspad_win732.sys [55808 2012-09-07] (Sentelic Corporation) R2 hcmon; C:\Windows\system32\drivers\hcmon.sys [41496 2012-08-01] (VMware, Inc.) S3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [23256 2015-06-18] (Malwarebytes Corporation) S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [51928 2015-06-18] (Malwarebytes Corporation) R2 npf; C:\Windows\System32\drivers\npf.sys [35088 2011-02-11] (CACE Technologies, Inc.) R3 RSUSBVSTOR; C:\Windows\System32\Drivers\RtsUVStor.sys [242760 2013-01-15] (Realtek Semiconductor Corp.) S3 RTL8192Ce; C:\Windows\system32\DRIVERS\rtwlane.sys [1351168 2013-03-12] (Realtek Semiconductor Corporation ) R3 RTWlanE; C:\Windows\system32\DRIVERS\rtwlane.sys [1351168 2013-03-12] (Realtek Semiconductor Corporation ) S3 ssudserd; C:\Windows\system32\DRIVERS\ssudserd.sys [184216 2014-12-03] (DEVGURU Co., LTD.(www.devguru.co.kr)) R3 Thotkey; C:\Windows\System32\drivers\Thotkey.sys [27024 2013-11-01] (Windows (R) Win 7 DDK provider) R3 VMnetAdapter; C:\Windows\system32\DRIVERS\vmnetadapter.sys [16664 2012-08-15] (VMware, Inc.) R2 VMnetBridge; C:\Windows\system32\DRIVERS\vmnetbridge.sys [37016 2012-08-15] (VMware, Inc.) R2 VMnetuserif; C:\Windows\system32\drivers\vmnetuserif.sys [25752 2012-08-15] (VMware, Inc.) S3 vmusb; C:\Windows\System32\Drivers\vmusb.sys [31280 2012-08-01] (VMware, Inc.) R2 vmx86; C:\Windows\system32\Drivers\vmx86.sys [61848 2012-08-15] (VMware, Inc.) R0 vsock; C:\Windows\System32\drivers\vsock.sys [61296 2012-07-06] (VMware, Inc.) R2 vstor2-mntapi10-shared; C:\Windows\System32\drivers\vstor2-mntapi10-shared.sys [22768 2011-07-12] (VMware, Inc.) S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [38392 2015-01-31] (Microsoft Corporation) S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [238304 2015-01-31] (Microsoft Corporation) ========================== MD5 Pilotes ======================= C:\Windows\System32\drivers\1394ohci.sys E7B9E170EFF01486D3118E372BA0AF21 C:\Windows\System32\drivers\3ware.sys 96191579DDB1A201A2FB79C1D05680B4 C:\Windows\System32\drivers\ACPI.sys B69DD3D0C195558ED5A4CF69A9D241A4 C:\Windows\System32\Drivers\acpiex.sys 3A5DA97644B9E2662CFF186A8798519C C:\Windows\System32\drivers\acpipagr.sys 87C4AE693CA8AB6E2A13B7C7453466DB C:\Windows\System32\drivers\acpipmi.sys C7D2BA04BA3C6CA702C2615A0C50469C C:\Windows\System32\drivers\acpitime.sys 38E110C96B2ACAB4D9A701777C9BCD98 C:\Windows\System32\drivers\adp94xx.sys 2FE756FD6E0336990D0B3652A07EBB9B C:\Windows\System32\drivers\adpahci.sys CC579EC50EE5435A4070306C0E4EF9E6 C:\Windows\System32\drivers\adpu320.sys 82743090D0259BF9F1373AD48372CBAC C:\Windows\system32\drivers\afd.sys B92C9A8C3CAE22129CC5B4A920B00608 C:\Windows\System32\drivers\agp440.sys 73BB2C687305C4195ED7511587B041AA C:\Windows\System32\drivers\amdagp.sys E44885EA3E89A54BF14C78892CE85EA0 C:\Windows\System32\drivers\amdk8.sys FFDBB0DC75CDF6A3CC63B3DF790313EB C:\Windows\system32\DRIVERS\atikmdag.sys F5ED4424DF35E84D9137289FC0180979 C:\Windows\system32\DRIVERS\atikmpag.sys F6758276129B6E0FC80BAB524D0E0005 C:\Windows\System32\drivers\amdppm.sys DF7FE35014C17CC4659C2531F9EA5A36 C:\Windows\System32\drivers\amdsata.sys 8D5D89177552EDFD5C9730CCE79F7FCC C:\Windows\System32\drivers\amdsbs.sys 5725597CF5E002FB665C6C69787DAA8A C:\Windows\System32\drivers\amdxata.sys FB336B5F110770CF22F6BFEB1906E773 C:\Windows\System32\drivers\amd_sata.sys EEFCCEED22BF966FC1CC00EA98503B97 C:\Windows\System32\drivers\amd_xata.sys 495CA231EBEB03290C88CE3B645DD433 C:\Windows\system32\drivers\appid.sys CB3613E82A5B058AB6A69846B0DDC6C5 C:\Windows\System32\drivers\arc.sys A0982052EE6B01DC9B0CB7FEFD13040F C:\Windows\System32\drivers\arcsas.sys 7E17A734B0D33B8F9287F28F1C583DD7 C:\Windows\system32\Drivers\aswFsBlk.sys A289930E70F3FA3B07DF80D2B052794E C:\Windows\system32\drivers\aswMonFlt.sys 1BA678226FCF8EA47793C99992E8EE31 C:\Windows\system32\Drivers\aswRdr.sys CC40B9C301AF5D145713B2764EEC3907 C:\Windows\system32\Drivers\aswSP.sys 67DB88B01FC1D815968230458814EB8D C:\Windows\system32\Drivers\aswTdi.sys EC8EF1CE2D6CA1071BE8B7888FFA48C0 C:\Windows\system32\DRIVERS\asyncmac.sys E12BC771325E70C2A875136B0BAF491E C:\Windows\System32\drivers\atapi.sys 48D8C3F2006698691F5AE0BB595FDCC8 C:\Windows\System32\drivers\BasicDisplay.sys A96A499B6C931B7242D964D5D695A506 C:\Windows\System32\drivers\BasicRender.sys D313E4D7DF0187CEDA121793F937EA89 C:\Windows\system32\Drivers\Beep.sys E53DDF8C101E3CB6A0483D592A8CC476 C:\Windows\System32\DRIVERS\bowser.sys D7148E90581185DB2CC6A2EED9C8281C C:\Windows\System32\drivers\BthAvrcpTg.sys 9053BEDE5844021CBF53273A5FE37333 C:\Windows\System32\drivers\bthhfenum.sys 3EEEA1B69C16A8D159B53896EC78420C C:\Windows\System32\drivers\BthHFHid.sys 403C9BA247F4D4C0E4FF6FFA5F096EF6 C:\Windows\System32\drivers\bthmodem.sys 0C706A8B022A44413F6C36ECEAAA2838 C:\Windows\System32\DRIVERS\cdfs.sys 00B4FA77732C7823D292ECD672660882 C:\Windows\System32\drivers\cdrom.sys 4E707EC5071DD8F5C29A7410780BD4C3 C:\Windows\System32\drivers\circlass.sys 17BE1CB162768E886B2BBA63F8B89371 C:\Windows\System32\drivers\CLFS.sys CCCC2EF80C77C4454CA28913844EB4DB C:\Windows\System32\drivers\CmBatt.sys 16744C84320D33880E38DF7409585EBF C:\Windows\System32\Drivers\cng.sys 00FDE3F17173066CA4C19ABF2EE4EA30 C:\Windows\System32\DRIVERS\cnghwassist.sys 765969F18ABD50298AA880E803D2096F C:\Windows\system32\DRIVERS\cnnctfy3.sys 410B297E99F07DDAF88C0EEE5D4A494C C:\Windows\System32\drivers\CompositeBus.sys 357444DE560252A907F8B687005B3DCA C:\Windows\System32\drivers\condrv.sys F1B79B7B595B0D7990756C12FA64F00E C:\Windows\System32\drivers\csc.sys 5531D4CFCBB6CBBD5BFB9E5FD089FADF C:\Windows\System32\drivers\dam.sys EE5C5712BBA245CD0C394EF54410CBEB C:\Windows\System32\Drivers\dfsc.sys E608E26B536A42B5ACC145D25CB9F2AC C:\Windows\system32\DRIVERS\ssudbus.sys E621041B535B4A80FC60731B69475CB6 C:\Windows\System32\drivers\discache.sys C0C87CCE88C4532B575AD60A95E7FD57 C:\Windows\System32\drivers\disk.sys 4E3237D8266580412CCA774321056111 C:\Windows\System32\drivers\dmvsc.sys 9B20A9DB154249E0E40036BC8BDC3E38 C:\Windows\system32\drivers\drmkaud.sys 50B8D915F3514EC8BE7DF0D2EDEC44BA C:\Windows\System32\drivers\dtsoftbus01.sys 687AF6BB383885FF6A64071B189A7F3E C:\Windows\System32\drivers\dxgkrnl.sys 04AE01AD604EAE0909283B90A9BD0BCB C:\Windows\System32\drivers\EhStorClass.sys BC7119CF5B5BC9F54C8FAE221C3227F2 C:\Windows\System32\drivers\EhStorTcgDrv.sys 1A5945FA87A05A97A1175657B7BA4EDB C:\Windows\System32\drivers\errdev.sys 8B22B788A329645F08AB4F86B9580AF3 C:\Windows\system32\Drivers\exfat.sys B60B2A0E110D640440263268FC02C726 C:\Windows\system32\Drivers\fastfat.sys C8B18803E1521225BDBA86B5F7D2E9FC C:\Windows\System32\drivers\fdc.sys 9709867A1354A4D10046ADE31DA67511 C:\Windows\System32\drivers\fileinfo.sys 1018AE04A4D36BA60247C2C22D7BA7D1 C:\Windows\System32\drivers\filetrace.sys 3A2F87EF4400B5E542E2C2BA8FAB4222 C:\Windows\System32\drivers\flpydisk.sys F37314C92AB8C876DB478A36A6D9FF0E C:\Windows\System32\drivers\fltmgr.sys 13C0B6F6EFD0D5C6871C07B56CB5403D C:\Windows\System32\drivers\FsDepends.sys 16D4CC9AE485BC60B6AE026FF2497DE8 C:\Windows\system32\DRIVERS\fspad_win732.sys 82BD90FE854B58D50581E53B0CADD6DB C:\Windows\system32\Drivers\Fs_Rec.sys 28E64CAC27FE3A7CA34E2F93E9A8092A C:\Windows\System32\DRIVERS\fvevol.sys EB45DB29D3B3BCD557F4A57DADA7B2BE C:\Windows\System32\drivers\fxppm.sys 05F58A34B5E1EB3274AE7B0875A143EF C:\Windows\System32\drivers\gagp30kx.sys B5AD0B13AD7FD1C749FC45D81392B9DF C:\Windows\System32\drivers\vmgencounter.sys A9608FF3B1B577BFC969A7B6797B1FC1 C:\Windows\System32\Drivers\msgpioclx.sys 1F4CF4223F27C515A9F6F5FE4D268E67 C:\Windows\system32\drivers\hcmon.sys 7898E20A298105CC3EA1A7BAA695ACFC C:\Windows\system32\drivers\HdAudio.sys 89D57B5741BAB84D7B846FEE23D576BE C:\Windows\System32\drivers\HDAudBus.sys 6BFEBBA25AD34E5922E60349C721B1DD C:\Windows\System32\drivers\HidBatt.sys 8CBCFA78D2B43CCC23BF5A4C09A700CA C:\Windows\System32\drivers\hidbth.sys 9133AFFBA020B97100703DB8E598C73F C:\Windows\System32\drivers\hidi2c.sys 804019176228EBE260A821C5688CAFD2 C:\Windows\System32\drivers\hidir.sys 11A4D12F4CADD18CDA334C2756FE450A C:\Windows\System32\drivers\hidusb.sys 48ADFEFD445291AE7D619B3F4638B092 C:\Windows\System32\drivers\HpSAMD.sys D7544353157E11864C00A48BC90EF183 C:\Windows\System32\drivers\HTTP.sys 14262F0CCE9D787035C80A53190E19ED C:\Windows\System32\drivers\hwpolicy.sys 4A3E6732E5BEF6DF531A217B5EBB5C54 C:\Windows\System32\drivers\hyperkbd.sys 0F819743721DFB5906734243ED0CE935 C:\Windows\system32\DRIVERS\HyperVideo.sys A14A2EBA22929901F64B496C1D555982 C:\Windows\System32\drivers\i8042prt.sys 11EDC37780E8A2F8E311D73F7658A4D7 C:\Windows\System32\drivers\iaStorV.sys C444F83C318BE18719DC1FDAEFF10898 C:\Windows\System32\drivers\iirsp.sys 7BB542C7156FA72CC83C1177BB190F94 C:\Windows\system32\drivers\RTKVHDA.sys 5F5F51FC38819A5A4E4F6283771F2711 C:\Windows\System32\drivers\intelide.sys A43BC9416741ABEA2B8DF60D2C0EA6A2 C:\Windows\System32\drivers\intelppm.sys BE23B0DF1401DC890B5CEFA369B1BD8E C:\Windows\System32\DRIVERS\ipfltdrv.sys AB308167857138B84E4DECDF2000DD27 C:\Windows\System32\drivers\IPMIDrv.sys DB125C2902A6455518C5F8F8A147483D C:\Windows\System32\drivers\ipnat.sys 57B0C0D982013C72911A3F5CBA795034 C:\Windows\System32\drivers\irenum.sys 9D6DB34476AC6448B3CA59D8676F7CE6 C:\Windows\System32\drivers\isapnp.sys 2E1347C9CC7DDB43183AF725135ACF0D C:\Windows\System32\drivers\msiscsi.sys EDC90A617A17AFD204D041638EAD320B C:\Windows\System32\drivers\kbdclass.sys 4533BE9F8D67BDCF5FECA87DCC345448 C:\Windows\System32\drivers\kbdhid.sys 8F73A6DAEF7F7D102FBBA6F3EBC47F97 C:\Windows\system32\DRIVERS\kdnic.sys F7E302012680B0617C904B58594E0376 C:\Windows\System32\Drivers\ksecdd.sys E43DCA8FE54AB5637F8F3DD8DDEB5CF6 C:\Windows\System32\Drivers\ksecpkg.sys C9EAB99A77F1FD6ACA9366CF78628D84 C:\Windows\system32\DRIVERS\lltdio.sys AD581D8BA8C2CE46933D44392BA35C24 C:\Windows\System32\drivers\lsi_sas.sys 6B01CB678E1E390CEA9514D4774EFB51 C:\Windows\System32\drivers\lsi_sas2.sys 4C3AFBA9ED36535313054AC26532E9DE C:\Windows\System32\drivers\lsi_scsi.sys 0715DC27611C202D04BC0365D666DD27 C:\Windows\System32\drivers\lsi_sss.sys DB6B9554AA4F83212E80D5107D8C53EE C:\Windows\system32\drivers\luafv.sys F731770C339FEB6563397D410793A756 C:\Windows\system32\drivers\mbam.sys B4CD87E78A01562E3DA67FE1C2779204 C:\Windows\system32\drivers\mwac.sys 3EC04B261C2834555D3C52A32D2FD1EC C:\Windows\System32\drivers\megasas.sys 125C3C5A315500A1AD54F0B4766AF815 C:\Windows\System32\drivers\MegaSR.sys 05457CC7F5586C6E8D02FFA7F23FCEDF C:\Windows\System32\drivers\modem.sys 049E433162AFE9B08C05D81D2C62CD61 C:\Windows\System32\drivers\monitor.sys 81F2FEE55660E51820C93A388AE8FEB9 C:\Windows\System32\drivers\mouclass.sys 9D3F069A705325E7B7CEA36BFB65E616 C:\Windows\System32\drivers\mouhid.sys 3C3C50AA12E2E48A9FEAA4BF5AA789A0 C:\Windows\System32\drivers\mountmgr.sys 96AD36823AAFB32694F6FB9BF1237CA6 C:\Windows\System32\drivers\mpsdrv.sys E8AA1C862C926126FBAD748565205586 C:\Windows\system32\drivers\mrxdav.sys EE25AE660465CA935F5DD3AA00CCF3EB C:\Windows\System32\DRIVERS\mrxsmb.sys 1A04B8E0C9156FB742BA41DD71C40F28 C:\Windows\System32\DRIVERS\mrxsmb10.sys B9F3DA35CDE171B5CBA70319AD7D5E59 C:\Windows\System32\DRIVERS\mrxsmb20.sys 5F5878D3D0A4E86D5D43991AFCEA908B C:\Windows\system32\DRIVERS\bridge.sys 61E23CF0A54EDBAE5CFE3322E960ECC9 C:\Windows\system32\Drivers\Msfs.sys 651DEF4337DD77E6A607CEE49D3C4B30 C:\Windows\System32\drivers\msgpiowin32.sys 8F47F5F31F001C4F97840DB723618DD0 C:\Windows\System32\drivers\mshidkmdf.sys 26BBD77D23FFABB14C3291A1B8555EA5 C:\Windows\System32\drivers\mshidumdf.sys 51808FEF911B77758A6CF7CEB469AF9E C:\Windows\System32\drivers\msisadrv.sys F103DF830D370B7535FDA3D477C8D8A0 C:\Windows\system32\drivers\MSKSSRV.sys 3FCF6AA904516872CF70ED248F86889B C:\Windows\system32\DRIVERS\mslldp.sys 10C229EAC28FDB8550EE93D955932F83 C:\Windows\system32\drivers\MSPCLOCK.sys BA786F089895196E18120F66F996A3D2 C:\Windows\system32\drivers\MSPQM.sys 362950A5F7B1794DA9CB985AF7BBCC4B C:\Windows\system32\Drivers\MsRPC.sys 79A14AB6C6A5B01E9CE99937D1304D13 C:\Windows\System32\drivers\mssmbios.sys A819A3006C27870AF05E408AD06FACFF C:\Windows\system32\drivers\MSTEE.sys FB1D61A2998A5C4456C6B73DD41D5352 C:\Windows\System32\drivers\MTConfig.sys 3CC687876469F0FD3B2D936FA7A6EC59 C:\Windows\System32\Drivers\mup.sys 6779B2A319A563C68B56DE8491E9EA76 C:\Windows\System32\drivers\mvumis.sys 1DEF95DC467131BF4AB52A8F72C42D89 C:\Windows\system32\DRIVERS\nwifi.sys D48E3B33BD911BA28413A4337456724F C:\Windows\System32\drivers\ndis.sys 46D2FC2CB94830C57EA760CE6FD32F37 C:\Windows\system32\DRIVERS\ndiscap.sys 9B8BC481DEEAA07C51DA214D2CEF2FC9 C:\Windows\system32\DRIVERS\NdisImPlatform.sys 1EA68DB9E05248EF9B940D6D0A0725B3 C:\Windows\system32\DRIVERS\ndistapi.sys 71F6E2AF63B0E52B36CEE7F0AE076A18 C:\Windows\system32\DRIVERS\ndisuio.sys DDC67239BFE82DC5A878039B464B1968 C:\Windows\system32\DRIVERS\ndiswan.sys 556DB924D61BC4A5E0F95D383E9B1009 C:\Windows\system32\DRIVERS\ndiswan.sys 556DB924D61BC4A5E0F95D383E9B1009 C:\Windows\system32\Drivers\NDProxy.sys B8C10B9DE50120E8CA3E995F94CA80D7 C:\Windows\System32\drivers\Ndu.sys 583F95CEFCD5D896B5531BD338030401 C:\Windows\System32\DRIVERS\netbios.sys 4CA677A214248DB8227F8035B546F7D0 C:\Windows\System32\DRIVERS\netbt.sys 303A053C25E468B9925C22288BEF8484 C:\Windows\System32\drivers\nfrd960.sys 4B539272E9F5C3B8D9714D137FD340A6 C:\Windows\System32\drivers\npf.sys B48DC6ABCD3AEFF8618350CCBDC6B09A C:\Windows\system32\Drivers\Npfs.sys EAC569A77BE92B247FCA51E498B17DF1 C:\Windows\System32\drivers\npsvctrig.sys 6E994702ED294CDBED7621590EC75735 C:\Windows\System32\drivers\nsiproxy.sys 9588CCD14571FA22F8F2ECCF198AB448 C:\Windows\system32\Drivers\Ntfs.sys 6C816842AC5E2B0E033ED0BD1058E077 C:\Windows\system32\Drivers\Null.sys 0F965AF67042AF539274738FFD0C8C71 C:\Windows\System32\drivers\nvraid.sys BD23FF50A9A59AAF48052F5E7D0682B0 C:\Windows\System32\drivers\nvstor.sys 108DD54A5B1E73F583AF7DC94CCE52B8 C:\Windows\System32\drivers\nv_agp.sys 5ED87C9C51CFE59B1DDFF8290719E0E4 C:\Windows\System32\drivers\parport.sys 8BCE63AF5B52642E832630F862DE96EF C:\Windows\System32\drivers\partmgr.sys 7289BE4566F0E5126868EB6E4292CC3C C:\Windows\System32\drivers\parvdm.sys 49A439FEAB060F74B8EC7DBF44D4A7BA C:\Windows\System32\drivers\pci.sys EA828C84C8948D0E4994C1E0A45EB05F C:\Windows\System32\drivers\pciide.sys B4444133ED61F87FD49A2ADD28285115 C:\Windows\System32\drivers\pcmcia.sys 6E11FDE71F2015007CDD4AE9D2D700C9 C:\Windows\System32\drivers\pcw.sys 8A56B080B12950D448D556FE4BA6C68C C:\Windows\System32\drivers\pdc.sys 58F99F74C33B7615ABEECF70BAD5FE1E C:\Windows\System32\drivers\peauth.sys 8C7EE53A9F6A5F01E77DBB81654E5B66 C:\Windows\system32\DRIVERS\raspptp.sys 03D522782A0BB5108C8A43A10EE51CB0 C:\Windows\System32\drivers\processr.sys BD23C45A654066374E3EC7F4EF8FC9B6 C:\Windows\system32\DRIVERS\pacer.sys 42E46DC7767F5AB664E3F6B36D9764AD C:\Windows\system32\drivers\qwavedrv.sys 29E548E1C511BFBE56FA6438488DE0E0 C:\Windows\System32\DRIVERS\rasacd.sys C07E9331431C78D41F30E62A15E1D324 C:\Windows\system32\DRIVERS\AgileVpn.sys F63755B2DCE1BE7927F5CEAB7991EFED C:\Windows\system32\DRIVERS\rasl2tp.sys 6E0649D7325D85C47C844EB3267E4625 C:\Windows\system32\DRIVERS\raspppoe.sys 5BA6DB7AD04A8EADE0A41E6C8427582B C:\Windows\system32\DRIVERS\rassstp.sys 3A421DDA09E3BF96E9D698D13FDC139E C:\Windows\System32\DRIVERS\rdbss.sys ED1CBB55D5946520994FCD8CA9596D9D C:\Windows\System32\drivers\rdpbus.sys 4FB0345ADE5C2E15EA1A22F173E71D37 C:\Windows\System32\drivers\rdpdr.sys 2CAD2A13569741C67CD9C52F97E0F992 C:\Windows\System32\drivers\rdpvideominiport.sys 40083918DB637FCB8A2C2453A2284603 C:\Windows\system32\Drivers\RDPWD.sys EA0E833A1418C28E6085DFFA68731EA5 C:\Windows\System32\drivers\rdyboost.sys 38A8012D03150D6852B9CDDB24280F1A C:\Windows\system32\DRIVERS\rspndr.sys C7BD738B9BF45E797A6089AF946BAC47 C:\Windows\System32\Drivers\RtsUVStor.sys C140B878479F2C44D19B76F65DCE021D C:\Windows\system32\DRIVERS\rtwlane.sys 2A9244CC925953B74C3EB895D2F9E220 C:\Windows\system32\DRIVERS\rtwlane.sys 2A9244CC925953B74C3EB895D2F9E220 C:\Windows\System32\drivers\vms3cap.sys E21867D4A8FF3824150E56979E333610 C:\Windows\System32\drivers\sbp2port.sys 434F805B0B3840A52C19C96A7BB64AA3 C:\Windows\System32\DRIVERS\scfilter.sys 3F21FBE0550B41240B6A864F6C8C15E4 C:\Windows\System32\drivers\sdbus.sys 6F685ED83090697ED608372722D32B9E C:\Windows\System32\drivers\sdstor.sys 29A975CB4DDA873C80B0AAA91FFA74B8 C:\Windows\system32\Drivers\secdrv.sys A8CC993CED4DF9710ADAABC9DA66B660 C:\Windows\System32\drivers\SerCx.sys 3DE395F302C4DCD3D4792EB786A7B402 C:\Windows\System32\drivers\serenum.sys C706C88BAEE6B23C86C791EF47D901D4 C:\Windows\System32\drivers\serial.sys F492965E2EDDB1BCA2E000A1085BE082 C:\Windows\System32\drivers\sermouse.sys 409C91880A6A70FDD33CFEDC43D0F808 C:\Windows\System32\drivers\sfloppy.sys BDF7F7AC3700DAF0A19D19C008D408C0 C:\Windows\System32\drivers\sisagp.sys A5A3C56B5E46F77E6992A3772F8E4C8D C:\Windows\System32\drivers\SiSRaid2.sys 39763193254A265FDA6F08EF375549DF C:\Windows\System32\drivers\sisraid4.sys 2A95CC135283B3C56B783171532B62D0 C:\Windows\System32\drivers\spaceport.sys D9F46CF618066EB615B26AF03B8BEF7F C:\Windows\System32\drivers\SpbCx.sys C8E9372645392E23CF36B4C1686B1509 C:\Windows\System32\DRIVERS\srv.sys 8B20E19AF56E21E9549D4CA496BB78D6 C:\Windows\System32\DRIVERS\srv2.sys 946F132B243780B8903116CCCE6EF466 C:\Windows\System32\DRIVERS\srvnet.sys E4DE9C94F2A49BA9E8D31C7D408AEF1F C:\Windows\system32\DRIVERS\ssudmdm.sys D9653BA3E87427500FA9A9F7B04A61DE C:\Windows\system32\DRIVERS\ssudserd.sys 0F786C0AEE98053ACB8EC91F6BEEA847 C:\Windows\System32\drivers\stexstor.sys CC17B7A7C4DD72BE2B10DAF254147A2B C:\Windows\System32\drivers\storahci.sys EC9B71B41184284E65F496B39C572F30 C:\Windows\System32\DRIVERS\vmstorfl.sys B00DA575ADF228C1D33269CDE92A68EC C:\Windows\System32\drivers\storvsc.sys 5C538C4975B53C31500BC535FF436CDC C:\Windows\System32\drivers\swenum.sys 8DCA45AD5E2D83E00A1952BE2B541A27 C:\Windows\system32\DRIVERS\SynTP.sys 8FDE84333552B67902F51FAAFF153BD9 C:\Windows\System32\drivers\tcpip.sys DDE2F09A73C3F929E8AC8DB267BD4F9C C:\Windows\system32\DRIVERS\tcpip.sys DDE2F09A73C3F929E8AC8DB267BD4F9C C:\Windows\System32\drivers\tcpipreg.sys D40FB114D559FDDE599293E1B5107644 C:\Windows\system32\DRIVERS\tdx.sys 0886D9F1B5A5334FBB143A260E4BFB5C C:\Windows\System32\drivers\terminpt.sys 0E099CC6D72DD47CAB9CC3D5DDF0A93E C:\Windows\System32\drivers\Thotkey.sys FE82E28BA8C18734349182DA7729FF46 C:\Windows\system32\drivers\tpm.sys A7A43D0865B8E5D2E46CAF6BA423D0AC C:\Windows\System32\drivers\tsusbflt.sys B9E622309DE8C780E6818531586F2221 C:\Windows\System32\drivers\TsUsbGD.sys 074440A1C04913F7DF81839565A47917 C:\Windows\system32\DRIVERS\tunnel.sys 62EE13D4EE7DB793C13F33F51A21170E C:\Windows\System32\drivers\TVALZ_O.SYS 619D787FD6E27272578E51C9881CC7F2 C:\Windows\System32\drivers\uagp35.sys E0750A399E378C8433165C843FD7F732 C:\Windows\System32\drivers\uaspstor.sys B3B9DDEEFC3B823B3067DCADCD80014D C:\Windows\System32\drivers\ucx01000.sys 14AF2FDF422E64F5D287B94E7CDEB13E C:\Windows\System32\DRIVERS\udfs.sys F7C3F24307957862CA4E0E11DDC88B2F C:\Windows\System32\drivers\uliagpkx.sys C4FE9CC8AA769B1D140C07308574969D C:\Windows\System32\drivers\umbus.sys D54E16CE5FF8493E611CFF34F96F5A00 C:\Windows\System32\drivers\umpass.sys 4F92FB5D2353C1B75F0C3138C1822FC3 C:\Windows\System32\drivers\usbccgp.sys D982889116DBD5B36DA276B3C52BC751 C:\Windows\System32\drivers\usbcir.sys 157FA08A7E30735A032C08F39F6F7C55 C:\Windows\System32\drivers\usbehci.sys 09C8E68669444AFE92B71480110952B1 C:\Windows\System32\drivers\usbhub.sys 03E855AD3F47B802542B0812F47FB9BD C:\Windows\System32\drivers\UsbHub3.sys B149D5CC6079190824918FCC12C15507 C:\Windows\System32\drivers\usbohci.sys D3641BCE4BE9858423CF0FA843A77AC1 C:\Windows\System32\drivers\usbprint.sys 3B68E41FDF2B053F148E4AA0B456A435 C:\Windows\System32\drivers\USBSTOR.SYS 6EE1CB13D89DFC95B6D7A90B38113F34 C:\Windows\System32\drivers\usbuhci.sys 043BC3831B94A57122BE351658B61DC2 C:\Windows\System32\drivers\USBXHCI.SYS BAF8495C4D3301C3C75A88454C53517F C:\Windows\System32\drivers\vdrvroot.sys 0AA85E1C967652071D283147AC4B17CD C:\Windows\System32\drivers\VerifierExt.sys F70882757673FA7D4E466D811E1AC029 C:\Windows\System32\drivers\vhdmp.sys CE52E627A0F86FFF0119EF18A6CD6D39 C:\Windows\System32\drivers\viaagp.sys 91A67D2DDDD75D173A6590B75E305E3C C:\Windows\System32\drivers\viac7.sys 05DD6EA970A2493D8BFCE2CFCF2F445C C:\Windows\System32\drivers\viaide.sys 11283532CE62BA51557D00E09262ED78 C:\Windows\System32\drivers\vmbus.sys 2E4777120FC246CCF76A69C7BB4AEF57 C:\Windows\System32\drivers\VMBusHID.sys FA7B57977E55B60409FD9E36FC57395C C:\Windows\System32\drivers\vmci.sys 753BD0240B6586ABA0D67A70B3EF44A0 C:\Windows\system32\DRIVERS\vmnetadapter.sys A267D2321ED281359D301BFEB8202652 C:\Windows\system32\DRIVERS\vmnetbridge.sys 7A4BB278D7860551A716D46349492692 C:\Windows\system32\drivers\vmnetuserif.sys F804B83C419F4D60458C19F9FA7C4253 C:\Windows\System32\Drivers\vmusb.sys AFB10AD9AA91D2F70C9F0E6BDA0D119B C:\Windows\system32\Drivers\vmx86.sys 168CEE789DB3B6C2432059AAC8C8D933 C:\Windows\System32\drivers\volmgr.sys 7E8BCEEA56197925D944CA7D230596F7 C:\Windows\System32\drivers\volmgrx.sys 9C21037D3983D9B93190D2AA16570395 C:\Windows\System32\drivers\volsnap.sys BF079843E272759BAE587FB980163293 C:\Windows\System32\drivers\vsmraid.sys C5B79DA9C82C01EEFAABA713A858649E C:\Windows\System32\drivers\vsock.sys C78C6BC9C3A65256B7A96B478C16278F C:\Windows\System32\drivers\vstor2-mntapi10-shared.sys 0DC78E40A4D1303488670B2F289ADD80 C:\Windows\System32\drivers\vstxraid.sys AB5F5CC034E31E496606E666657F3CC2 C:\Windows\System32\drivers\vwifibus.sys 23044877230094EE20D057BC63ED19F0 C:\Windows\system32\DRIVERS\vwififlt.sys 7139B7012EF75A82CA11177D4BF1CD37 C:\Windows\system32\DRIVERS\vwifimp.sys 3C93AA2C5AC6030706757DCEAF57CD64 C:\Windows\System32\drivers\wacompen.sys B4254668F5806AAA051A320FE88146F6 C:\Windows\system32\DRIVERS\wanarp.sys 44D1EF3CDB0B286FD73A7C0144CC6B1E C:\Windows\system32\DRIVERS\wanarp.sys 44D1EF3CDB0B286FD73A7C0144CC6B1E C:\Windows\System32\drivers\wd.sys 9BF0CE1E215789664EB563A52EC0B83B C:\Windows\system32\drivers\WdBoot.sys D5FB4168E390A2178C2727A05FA02F40 C:\Windows\System32\drivers\Wdf01000.sys 25944D2CC49E0A6C581D02A74B7D6645 C:\Windows\system32\drivers\WdFilter.sys DBF1C72C4156C5E7D93C1287E53C7551 C:\Windows\System32\DRIVERS\wfplwfs.sys CE1FD9BFE0EBFF5B57FCEB1CC620ACA8 C:\Windows\System32\drivers\wimmount.sys 8B7BBA41B67E92B73BAFEBDF570B3703 C:\Windows\System32\drivers\WinUSB.SYS 30122927052480564DB0695B0CEADE62 C:\Windows\System32\drivers\wmiacpi.sys F8A31500A1B7EFDB95E5103A7C7275C1 C:\Windows\System32\DRIVERS\wpcfltr.sys 9C3F5C7B716247756575235A3218FD38 C:\Windows\system32\drivers\ws2ifsl.sys 7CB94AFFC7F56C8E645381DB9C23F845 C:\Windows\System32\drivers\WudfPf.sys 06E6F32C8D0A3F66D956F57B43A2E070 C:\Windows\System32\drivers\WUDFRd.sys 867C301E8B790040AE9CF6486E8041DF ==================== NetSvcs (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) ==================== Un mois - Créés - fichiers et dossiers ======== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2015-10-01 01:10 - 2015-10-01 01:12 - 00000000 ____D C:\FRST 2015-10-01 01:03 - 2015-10-01 01:03 - 00002514 _____ C:\Users\NKOGHE REGIS\Desktop\ZHPFix[R1].txt 2015-10-01 01:02 - 2015-10-01 01:02 - 00002514 _____ C:\Users\NKOGHE REGIS\Desktop\ZHPFixReport.txt 2015-10-01 00:57 - 2015-10-01 00:58 - 00000000 ____D C:\Program Files\ZHPFix 2015-10-01 00:57 - 2015-10-01 00:57 - 00001799 _____ C:\Users\Public\Desktop\ZHPFix.lnk 2015-10-01 00:57 - 2015-10-01 00:57 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ZHP 2015-09-30 18:45 - 2015-09-30 18:45 - 00000000 ____D C:\Windows\system32\appmgmt 2015-09-30 12:57 - 2015-09-30 12:57 - 00088957 _____ C:\Users\NKOGHE REGIS\Desktop\ZHPDiag.txt 2015-09-30 08:54 - 2015-09-30 18:54 - 00098520 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys 2015-09-30 08:52 - 2015-09-30 08:52 - 00001064 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk 2015-09-30 08:52 - 2015-09-30 08:52 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware 2015-09-30 08:51 - 2015-09-30 08:52 - 00000000 ____D C:\Program Files\Malwarebytes Anti-Malware 2015-09-30 08:51 - 2015-09-30 08:51 - 00000000 ____D C:\ProgramData\Malwarebytes 2015-09-30 08:51 - 2015-06-18 08:41 - 00094936 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys 2015-09-30 08:51 - 2015-06-18 08:41 - 00051928 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys 2015-09-30 08:51 - 2015-06-18 08:41 - 00023256 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys 2015-09-29 11:54 - 2015-09-30 12:56 - 00000220 _____ C:\Users\NKOGHE 2015-09-28 23:03 - 2015-10-01 01:02 - 00000000 ____D C:\Users\NKOGHE REGIS\AppData\Roaming\ZHP 2015-09-28 23:03 - 2015-09-30 12:46 - 00000789 _____ C:\Users\NKOGHE REGIS\Desktop\ZHPDiag.lnk 2015-09-28 22:53 - 2015-09-28 22:53 - 00001448 _____ C:\Users\NKOGHE REGIS\Desktop\UsbFix.lnk 2015-09-28 22:52 - 2015-09-30 11:22 - 00000000 ____D C:\UsbFix 2015-09-23 18:18 - 2015-09-23 18:20 - 00000000 ____D C:\Program Files\Realtek WLAN Driver 2015-09-23 18:18 - 2012-05-31 17:49 - 00388240 _____ (Realtek Semiconductor Corporation ) C:\Windows\system32\Drivers\rtl8187B.sys 2015-09-23 18:18 - 2012-05-02 16:48 - 00383592 _____ (Realtek Semiconductor Corporation ) C:\Windows\system32\Drivers\rtl8187Se.sys 2015-09-23 18:18 - 2012-02-14 19:37 - 00535040 _____ (Realtek Semiconductor Corp. ) C:\Windows\system32\Rtlihvs.dll 2015-09-23 18:18 - 2011-06-20 17:07 - 01117800 _____ (Realtek Semiconductor Corporation ) C:\Windows\system32\Drivers\rtl8192se.sys 2015-09-23 18:18 - 2010-12-22 16:24 - 00559208 _____ (Realtek Semiconductor Corporation ) C:\Windows\system32\Drivers\rtl819xp.sys 2015-09-23 18:18 - 2010-12-01 09:31 - 00451072 _____ C:\Windows\system32\ISSRemoveSP.exe 2015-09-23 15:54 - 2015-09-23 15:54 - 00148456 _____ C:\Windows\Minidump\092315-23946-01.dmp 2015-09-23 15:35 - 2015-09-23 15:44 - 00001762 _____ C:\Users\NKOGHE REGIS\Desktop\Windows 8 Activator 380 day.lnk 2015-09-23 15:35 - 2015-09-23 15:35 - 00000000 ____D C:\Windows_Loader_v2.1.7_ 2015-09-23 15:20 - 2015-09-29 07:35 - 00000000 ____D C:\[Smad-Cage] 2015-09-23 15:20 - 2015-09-24 17:45 - 00000000 ____D C:\Program Files\SMADAV 2015-09-23 15:20 - 2015-09-23 15:20 - 00001022 _____ C:\Users\Public\Desktop\SMADΔV.lnk 2015-09-23 15:20 - 2015-09-23 15:20 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SMADAV Antivirus 2015-09-23 15:19 - 2015-09-23 15:19 - 00002009 _____ C:\Users\Public\Desktop\avast! Free Antivirus.lnk 2015-09-23 15:19 - 2015-09-23 15:19 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\avast! Free Antivirus 2015-09-23 15:19 - 2010-02-11 19:53 - 00153184 _____ (ALWIL Software) C:\Windows\system32\aswBoot.exe 2015-09-23 15:19 - 2010-02-11 19:53 - 00038848 _____ (ALWIL Software) C:\Windows\system32\avastSS.scr 2015-09-23 15:19 - 2010-02-11 19:42 - 00162512 _____ (ALWIL Software) C:\Windows\system32\Drivers\aswSP.sys 2015-09-23 15:19 - 2010-02-11 19:42 - 00046672 _____ (ALWIL Software) C:\Windows\system32\Drivers\aswTdi.sys 2015-09-23 15:19 - 2010-02-11 19:39 - 00023376 _____ (ALWIL Software) C:\Windows\system32\Drivers\aswRdr.sys 2015-09-23 15:19 - 2010-02-11 19:38 - 00051792 _____ (ALWIL Software) C:\Windows\system32\Drivers\aswMonFlt.sys 2015-09-23 15:19 - 2010-02-11 19:38 - 00019024 _____ (ALWIL Software) C:\Windows\system32\Drivers\aswFsBlk.sys 2015-09-23 15:18 - 2015-09-23 15:18 - 00000000 ____D C:\ProgramData\Alwil Software 2015-09-23 15:18 - 2015-09-23 15:18 - 00000000 ____D C:\Program Files\Alwil Software 2015-09-15 20:10 - 2015-09-15 20:12 - 00000000 ____D C:\ProgramData\MFAData 2015-09-15 20:10 - 2015-09-15 20:10 - 00000000 ____D C:\Users\NKOGHE REGIS\AppData\Local\MFAData 2015-09-15 18:08 - 2015-09-15 18:08 - 00000000 ____D C:\Users\NKOGHE REGIS\AppData\Roaming\WinBatch 2015-09-11 16:47 - 2015-09-11 16:48 - 00002259 _____ C:\Windows\epplauncher.mif ==================== Un mois - Modifiés - fichiers et dossiers ======== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2015-10-01 01:07 - 2015-04-14 19:28 - 00001070 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2015-10-01 01:06 - 2014-08-01 12:34 - 00000000 ____D C:\ProgramData\VMware 2015-10-01 01:06 - 2012-07-26 08:03 - 00000006 ____H C:\Windows\Tasks\SA.DAT 2015-10-01 01:04 - 2014-08-01 12:02 - 01681146 _____ C:\Windows\WindowsUpdate.log 2015-10-01 01:00 - 2012-07-26 08:53 - 00000000 ____D C:\Windows\system32\sru 2015-09-30 18:43 - 2015-04-14 19:28 - 00001074 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2015-09-30 12:52 - 2012-07-26 08:53 - 00000000 ____D C:\Windows\Microsoft.NET 2015-09-30 12:35 - 2014-08-01 11:18 - 00040998 _____ C:\Windows\PFRO.log 2015-09-30 11:25 - 2014-08-01 11:28 - 02035674 _____ C:\Windows\system32\PerfStringBackup.INI 2015-09-27 08:22 - 2014-08-04 08:23 - 00000000 ____D C:\Users\NKOGHE REGIS\AppData\Roaming\vlc 2015-09-26 09:59 - 2012-07-26 08:53 - 00000000 ____D C:\Windows\system32\NDF 2015-09-23 18:18 - 2014-11-24 13:00 - 00000000 ___HD C:\Program Files\InstallShield Installation Information 2015-09-23 15:54 - 2014-11-05 14:43 - 00000000 ____D C:\Windows\Minidump 2015-09-23 15:19 - 2012-07-26 08:53 - 00002577 _____ C:\Windows\system32\config.nt 2015-09-15 18:31 - 2014-08-01 16:43 - 00000000 ____D C:\Program Files\Realtek 2015-09-08 22:05 - 2012-07-26 08:53 - 00000000 ____D C:\Windows\AUInstallAgent ==================== Fichiers à la racine de certains dossiers ======= 2013-02-07 14:22 - 2013-02-07 14:22 - 0050330 _____ () C:\Program Files\AntiDust.exe 2014-08-20 19:05 - 2014-08-20 19:05 - 0000147 _____ () C:\ProgramData\Microsoft.SqlServer.Compact.351.32.bc ==================== Bamital & volsnap ================= (Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.) C:\Windows\explorer.exe => Le fichier est signé numériquement C:\Windows\system32\winlogon.exe => Le fichier est signé numériquement C:\Windows\system32\wininit.exe => Le fichier est signé numériquement C:\Windows\system32\svchost.exe => Le fichier est signé numériquement C:\Windows\system32\services.exe => Le fichier est signé numériquement C:\Windows\system32\User32.dll => Le fichier est signé numériquement C:\Windows\system32\userinit.exe => Le fichier est signé numériquement C:\Windows\system32\rpcss.dll => Le fichier est signé numériquement C:\Windows\system32\dnsapi.dll => Le fichier est signé numériquement C:\Windows\system32\Drivers\volsnap.sys => Le fichier est signé numériquement ==================== BCD ================================ Gestionnaire de d‚marrage Windows --------------------------------- identificateur {bootmgr} device partition=C: description Windows Boot Manager locale fr-FR inherit {globalsettings} integrityservices Enable default {current} resumeobject {12fb5a5e-1965-11e4-9dcf-d2763bdc1197} displayorder {current} toolsdisplayorder {memdiag} timeout 30 Chargeur de d‚marrage Windows ----------------------------- identificateur {current} device partition=C: path \Windows\system32\winload.exe description Windows 8 locale fr-FR inherit {bootloadersettings} recoverysequence {4d2e43ee-be27-11e2-b42b-d43c380147ad} integrityservices Enable recoveryenabled Yes allowedinmemorysettings 0x15000075 osdevice partition=C: systemroot \Windows resumeobject {12fb5a5e-1965-11e4-9dcf-d2763bdc1197} nx OptIn bootmenupolicy Standard Chargeur de d‚marrage Windows ----------------------------- identificateur {4d2e43dc-be27-11e2-b42b-d43c380147ad} device ramdisk=[C:]\Recovery\4d2e43dc-be27-11e2-b42b-d43c380147ad\Winre.wim,{4d2e43dd-be27-11e2-b42b-d43c380147ad} path \windows\system32\winload.exe description Windows Recovery Environment inherit {bootloadersettings} osdevice ramdisk=[C:]\Recovery\4d2e43dc-be27-11e2-b42b-d43c380147ad\Winre.wim,{4d2e43dd-be27-11e2-b42b-d43c380147ad} systemroot \windows nx OptIn winpe Yes Chargeur de d‚marrage Windows ----------------------------- identificateur {4d2e43e0-be27-11e2-b42b-d43c380147ad} device ramdisk=[C:]\Recovery\4d2e43e0-be27-11e2-b42b-d43c380147ad\Winre.wim,{4d2e43e1-be27-11e2-b42b-d43c380147ad} path \windows\system32\winload.exe description Windows Recovery Environment inherit {bootloadersettings} osdevice ramdisk=[C:]\Recovery\4d2e43e0-be27-11e2-b42b-d43c380147ad\Winre.wim,{4d2e43e1-be27-11e2-b42b-d43c380147ad} systemroot \windows nx OptIn winpe Yes Chargeur de d‚marrage Windows ----------------------------- identificateur {4d2e43e4-be27-11e2-b42b-d43c380147ad} device ramdisk=[C:]\Recovery\4d2e43e4-be27-11e2-b42b-d43c380147ad\Winre.wim,{4d2e43e5-be27-11e2-b42b-d43c380147ad} path \windows\system32\winload.exe description Windows Recovery Environment inherit {bootloadersettings} osdevice ramdisk=[C:]\Recovery\4d2e43e4-be27-11e2-b42b-d43c380147ad\Winre.wim,{4d2e43e5-be27-11e2-b42b-d43c380147ad} systemroot \windows nx OptIn winpe Yes Chargeur de d‚marrage Windows ----------------------------- identificateur {4d2e43ea-be27-11e2-b42b-d43c380147ad} device ramdisk=[C:]\Recovery\4d2e43ea-be27-11e2-b42b-d43c380147ad\Winre.wim,{4d2e43eb-be27-11e2-b42b-d43c380147ad} path \windows\system32\winload.exe description Windows Recovery Environment locale fr-FR inherit {bootloadersettings} displaymessage Recovery displaymessageoverride Recovery osdevice ramdisk=[C:]\Recovery\4d2e43ea-be27-11e2-b42b-d43c380147ad\Winre.wim,{4d2e43eb-be27-11e2-b42b-d43c380147ad} systemroot \windows nx OptIn bootmenupolicy Standard winpe Yes Chargeur de d‚marrage Windows ----------------------------- identificateur {4d2e43ee-be27-11e2-b42b-d43c380147ad} device ramdisk=[C:]\Recovery\4d2e43ee-be27-11e2-b42b-d43c380147ad\Winre.wim,{4d2e43ef-be27-11e2-b42b-d43c380147ad} path \windows\system32\winload.exe description Windows Recovery Environment locale fr-FR inherit {bootloadersettings} displaymessage Recovery displaymessageoverride Recovery osdevice ramdisk=[C:]\Recovery\4d2e43ee-be27-11e2-b42b-d43c380147ad\Winre.wim,{4d2e43ef-be27-11e2-b42b-d43c380147ad} systemroot \windows nx OptIn bootmenupolicy Standard winpe Yes Reprendre … partir de la mise en veille prolong‚e ------------------------------------------------- identificateur {12fb5a5e-1965-11e4-9dcf-d2763bdc1197} device partition=C: path \Windows\system32\winresume.exe description Windows Resume Application locale fr-FR inherit {resumeloadersettings} recoverysequence {4d2e43ee-be27-11e2-b42b-d43c380147ad} recoveryenabled Yes allowedinmemorysettings 0x15000075 filedevice partition=C: filepath \hiberfil.sys bootmenupolicy Standard pae Yes debugoptionenabled No Reprendre … partir de la mise en veille prolong‚e ------------------------------------------------- identificateur {4d2e43ec-be27-11e2-b42b-d43c380147ad} device partition=C: path \Windows\system32\winresume.exe description Windows Resume Application locale fr-FR inherit {resumeloadersettings} recoverysequence {4d2e43ee-be27-11e2-b42b-d43c380147ad} recoveryenabled Yes allowedinmemorysettings 0x15000075 filedevice partition=C: filepath \hiberfil.sys bootmenupolicy Standard pae Yes debugoptionenabled No Testeur de m‚moire Windows -------------------------- identificateur {memdiag} device partition=C: path \boot\memtest.exe description Diagnostics m‚moire Windows locale fr-FR inherit {globalsettings} badmemoryaccess Yes ParamŠtres EMS -------------- identificateur {emssettings} bootems No ParamŠtres du d‚bogueur ----------------------- identificateur {dbgsettings} debugtype Serial debugport 1 baudrate 115200 Erreurs de m‚moire RAM ---------------------- identificateur {badmemory} ParamŠtres globaux ------------------ identificateur {globalsettings} inherit {dbgsettings} {emssettings} {badmemory} ParamŠtres du chargeur de d‚marrage ----------------------------------- identificateur {bootloadersettings} inherit {globalsettings} {hypervisorsettings} ParamŠtres de l'hyperviseur ------------------- identificateur {hypervisorsettings} hypervisordebugtype Serial hypervisordebugport 1 hypervisorbaudrate 115200 ParamŠtres du chargeur de reprise --------------------------------- identificateur {resumeloadersettings} inherit {globalsettings} Options de p‚riph‚rique ----------------------- identificateur {4d2e43dd-be27-11e2-b42b-d43c380147ad} description Ramdisk Options ramdisksdidevice partition=C: ramdisksdipath \Recovery\4d2e43dc-be27-11e2-b42b-d43c380147ad\boot.sdi Options de p‚riph‚rique ----------------------- identificateur {4d2e43e1-be27-11e2-b42b-d43c380147ad} description Ramdisk Options ramdisksdidevice partition=C: ramdisksdipath \Recovery\4d2e43e0-be27-11e2-b42b-d43c380147ad\boot.sdi Options de p‚riph‚rique ----------------------- identificateur {4d2e43e5-be27-11e2-b42b-d43c380147ad} description Ramdisk Options ramdisksdidevice partition=C: ramdisksdipath \Recovery\4d2e43e4-be27-11e2-b42b-d43c380147ad\boot.sdi Options de p‚riph‚rique ----------------------- identificateur {4d2e43eb-be27-11e2-b42b-d43c380147ad} description Windows Recovery ramdisksdidevice partition=C: ramdisksdipath \Recovery\4d2e43ea-be27-11e2-b42b-d43c380147ad\boot.sdi Options de p‚riph‚rique ----------------------- identificateur {4d2e43ef-be27-11e2-b42b-d43c380147ad} description Windows Recovery ramdisksdidevice partition=C: ramdisksdipath \Recovery\4d2e43ee-be27-11e2-b42b-d43c380147ad\boot.sdi LastRegBack: 2015-09-23 15:28 ==================== Fin de FRST.txt ============================