Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x86) Version: 03-05-2017 01 Exécuté par kapro (administrateur) sur KAPRO-PC (05-05-2017 01:03:08) Exécuté depuis C:\Users\kapro\Desktop Profils chargés: kapro (Profils disponibles: kapro) Platform: Microsoft Windows 7 Édition Intégrale (X86) Langue: Français (France) Internet Explorer Version 8 (Navigateur par défaut: Chrome) Mode d'amorçage: Normal Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processus (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.) (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtHDVBg.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe (Microsoft Corporation) C:\Windows\System32\wlanext.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI.exe (Intel Corporation) C:\Windows\System32\igfxtray.exe (Intel Corporation) C:\Windows\System32\hkcmd.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtHDVBg.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\afwServ.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe (Tonec Inc.) C:\Program Files\Internet Download Manager\IDMan.exe (Smadsoft) C:\Program Files\SMADAV\SMΔRTP.exe (Andrea Electronics Corporation) C:\Program Files\Realtek\Audio\HDA\AERTSrv.exe (Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe (Tonec Inc.) C:\Program Files\Internet Download Manager\IEMonitor.exe (Smadav Software) C:\Program Files\SMADAV\SmadavProtect32.exe (Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE (IObit) C:\Program Files\IObit\IObit Uninstaller\UninstallMonitor.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Microsoft Corporation) C:\Windows\System32\wbem\WMIC.exe ==================== Registre (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.) HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI.exe [8156672 2017-04-27] (Realtek Semiconductor) HKLM\...\Run: [RtHDVBg] => C:\Program Files\Realtek\Audio\HDA\RtHDVBg.exe [1070592 2017-04-27] (Realtek Semiconductor) HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [213824 2017-05-03] (AVAST Software) HKLM\...\Run: [Malwarebytes TrayApp] => C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\mbamtray.exe [2780112 2017-01-20] (Malwarebytes) HKLM\...\Run: [SMΔRT-Protection] => C:\Program Files\Smadav\SMΔRTP.exe [1781760 2017-04-13] (Smadsoft) HKU\S-1-5-21-365999879-2110489254-2640571219-1000\...\Run: [IDMan] => C:\Program Files\Internet Download Manager\IDMan.exe [4014136 2017-04-26] (Tonec Inc.) HKU\S-1-5-21-365999879-2110489254-2640571219-1000\...\Policies\Explorer: [DisallowRun] 1 HKU\S-1-5-21-365999879-2110489254-2640571219-1000\...\Policies\Explorer\DisallowRun: [1] Mshta.exe HKU\S-1-5-21-365999879-2110489254-2640571219-1000\...\Policies\Explorer\DisallowRun: [2] powershell.exe HKU\S-1-5-21-365999879-2110489254-2640571219-1000\...\Policies\Explorer\DisallowRun: [3] bitsadmin.exe ShellIconOverlayIdentifiers: [ IDM Shell Extension] -> {CDC95B92-E27C-4745-A8C5-64A52A78855D} => C:\Program Files\Internet Download Manager\IDMShellExt.dll [2015-08-14] (Tonec Inc.) ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2017-05-03] (AVAST Software) GroupPolicy: Restriction - Chrome <======= ATTENTION ==================== Internet (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.) Hosts: Il y a plus d'un élément dans hosts. Voir la section Hosts de Addition.txt Tcpip\Parameters: [DhcpNameServer] 192.168.4.1 Tcpip\..\Interfaces\{B80980AD-55B3-4613-815A-A3213A459859}: [DhcpNameServer] 192.168.4.1 Internet Explorer: ================== HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION HKU\S-1-5-21-365999879-2110489254-2640571219-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/ar-eg/?ocid=iehp URLSearchHook: [S-1-5-21-365999879-2110489254-2640571219-1000] ATTENTION => URLSearchHook par défaut est absent SearchScopes: HKLM -> DefaultScope la valeur est absente BHO: IDM integration (IDMIEHlprObj Class) -> {0055C089-8582-441B-A0BF-17B458C2A3A8} -> C:\Program Files\Internet Download Manager\IDMIECC.dll [2016-12-10] (Internet Download Manager, Tonec Inc.) BHO: ExplorerWnd Helper -> {10921475-03CE-4E04-90CE-E2E7EF20C814} -> C:\Program Files\IObit\IObit Uninstaller\UninstallExplorer.dll [2015-12-23] (IObit) BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office15\OCHelper.dll [2015-02-10] (Microsoft Corporation) BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2017-04-27] (AVAST Software) BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office15\URLREDIR.DLL [2014-01-23] (Microsoft Corporation) BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL [2015-01-21] (Microsoft Corporation) Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL [2015-02-17] (Microsoft Corporation) FireFox: ======== FF HKU\S-1-5-21-365999879-2110489254-2640571219-1000\...\SeaMonkey\Extensions: [mozilla_cc@internetdownloadmanager.com] - C:\Users\kapro\AppData\Roaming\IDM\idmmzcc5 FF Extension: (IDM CC) - C:\Users\kapro\AppData\Roaming\IDM\idmmzcc5 [2017-04-27] [non signé] FF HKU\S-1-5-21-365999879-2110489254-2640571219-1000\...\SeaMonkey\Extensions: [mozilla_cc2@internetdownloadmanager.com] - C:\Program Files\Internet Download Manager\idmmzcc2.xpi FF Extension: (IDM integration) - C:\Program Files\Internet Download Manager\idmmzcc2.xpi [2017-01-26] FF Plugin: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll [2017-03-06] (Tracker Software Products (Canada) Ltd.) FF Plugin: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2015-02-10] (Microsoft Corporation) FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50906.0\npctrl.dll [2017-03-09] ( Microsoft Corporation) FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\MICROS~1\Office15\NPSPWRAP.DLL [2014-01-23] (Microsoft Corporation) FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-27] (Google Inc.) FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-27] (Google Inc.) FF Plugin: @tracker-software.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll [2017-03-06] (Tracker Software Products (Canada) Ltd.) FF Plugin: @videolan.org/vlc,version=2.2.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN) FF Plugin HKU\S-1-5-21-365999879-2110489254-2640571219-1000: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll [2017-03-06] (Tracker Software Products (Canada) Ltd.) FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npMeetingJoinPluginOC.dll [2015-02-10] (Microsoft Corporation) Chrome: ======= CHR DefaultProfile: ChromeDefaultData CHR StartupUrls: ChromeDefaultData -> "hxxp://www.mystartsearch.com/?type=hp&ts=1438715914&z=21e223b3f0c97db3c281da1g7zccaefozzjcktmlma&from=cmi&uid=TOSHIBAXMQ01ABF050_Z31KCQB2TXXZ31KCQB2T","hxxp://www.oursurfing.com/?type=hp&ts=1443048084&z=8ad267e782ddbb792e04c84gbz8zbc1edz2bbe4b2z&from=smt&uid=toshibaxmq01abf050_z31kcqb2txxz31kcqb2t","hxxp://www.initialsite123.com/?z=215701f39acf70f58f7d47cg1zctfc8o7b9z8mbmam&from=icb&uid=WDCXWD3200BEKT-60V5T1_WD-WXD1A400627406274&type=hp" CHR Profile: C:\Users\kapro\AppData\Local\Google\Chrome\User Data\ChromeDefaultData [2017-05-05] <==== ATTENTION CHR Extension: (Google Slides) - C:\Users\kapro\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-04-27] CHR Extension: (Google Docs) - C:\Users\kapro\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\aohghmighlieiainnegkcijnfilokake [2017-04-27] CHR Extension: (Google Drive) - C:\Users\kapro\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-04-27] CHR Extension: (YouTube) - C:\Users\kapro\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-04-27] CHR Extension: (Avast SafePrice) - C:\Users\kapro\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2017-04-28] CHR Extension: (Google Sheets) - C:\Users\kapro\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-04-27] CHR Extension: (Trigger Warnings on Campus) - C:\Users\kapro\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\gcopknacnjblbkpnjmnmahlgkeinadak [2017-04-27] CHR Extension: (Google Docs hors connexion) - C:\Users\kapro\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-04-27] CHR Extension: (AdBlock) - C:\Users\kapro\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2017-04-27] CHR Extension: (IDM Integration Module) - C:\Users\kapro\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\ngpampappnmepgilojfohadhhmbhlaek [2017-04-27] CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\kapro\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-04-27] CHR Extension: (Gmail) - C:\Users\kapro\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-04-27] CHR Extension: (Chrome Media Router) - C:\Users\kapro\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-04-27] CHR HKLM\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - hxxps://clients2.google.com/service/update2/crx CHR HKLM\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files\Internet Download Manager\IDMGCExt.crx [2017-04-26] ==================== Services (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) S3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [5732136 2017-05-03] (AVAST Software s.r.o.) R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [263304 2017-05-03] (AVAST Software) R2 avast! Firewall; C:\Program Files\AVAST Software\Avast\afwServ.exe [310496 2017-05-03] (AVAST Software) S3 BITCOMET_HELPER_SERVICE; C:\Program Files\BitComet\tools\BitCometService.exe [1296728 2013-11-29] (www.BitComet.com) S2 LiveUpdateSvc; C:\Program Files\IObit\LiveUpdate\LiveUpdate.exe [2960672 2016-05-27] (IObit) R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [3303888 2017-01-20] (Malwarebytes) R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService.exe [276992 2017-04-27] (Realtek Semiconductor) S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2009-07-14] (Microsoft Corporation) ===================== Pilotes (Avec liste blanche) ====================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R1 aswbidsdriver; C:\Windows\system32\drivers\aswbidsdriverx.sys [258288 2017-05-03] (AVAST Software s.r.o.) R0 aswbidsh; C:\Windows\system32\drivers\aswbidshx.sys [148696 2017-05-03] (AVAST Software s.r.o.) R0 aswblog; C:\Windows\system32\drivers\aswblogx.sys [268016 2017-05-03] (AVAST Software s.r.o.) R0 aswbuniv; C:\Windows\system32\drivers\aswbunivx.sys [41664 2017-05-03] (AVAST Software s.r.o.) S3 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [34136 2017-05-03] (AVAST Software) R1 aswKbd; C:\Windows\system32\drivers\aswKbd.sys [31064 2017-05-03] (AVAST Software) R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [107928 2017-05-03] (AVAST Software) R3 aswNetNd6; C:\Windows\System32\DRIVERS\aswNetNd6.sys [27896 2017-04-28] (AVAST Software) R1 aswNetSec; C:\Windows\system32\drivers\aswNetSec.sys [391048 2017-05-03] (AVAST Software) R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [90336 2017-05-03] (AVAST Software) R0 aswRvrt; C:\Windows\system32\drivers\aswRvrt.sys [62152 2017-05-03] (AVAST Software) R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [764576 2017-05-03] (AVAST Software) R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [482608 2017-05-03] (AVAST Software) S2 aswStm; C:\Windows\system32\drivers\aswStm.sys [114640 2017-05-03] (AVAST Software) R0 aswVmm; C:\Windows\system32\drivers\aswVmm.sys [279800 2017-05-03] (AVAST Software) R3 Btcsrusb; C:\Windows\System32\Drivers\btcusb.sys [47504 2017-04-27] (IVT Corporation.) R1 ESProtectionDriver; C:\Windows\system32\drivers\mbae.sys [59904 2017-03-22] () R1 HWiNFO32; C:\Windows\system32\drivers\HWiNFO32.SYS [23840 2017-04-27] (REALiX(tm)) R0 iaStorA; C:\Windows\System32\DRIVERS\iaStorA.sys [527344 2013-02-04] (Intel Corporation) R0 iaStorF; C:\Windows\System32\DRIVERS\iaStorF.sys [26096 2013-02-04] (Intel Corporation) R3 IntcDAud; C:\Windows\System32\DRIVERS\IntcDAud.sys [270336 2011-08-23] (Intel(R) Corporation) [Fichier non signé] R0 iusb3hcs; C:\Windows\System32\DRIVERS\iusb3hcs.sys [16440 2012-12-04] (Intel Corporation) R2 MBAMChameleon; C:\Windows\system32\drivers\MBAMChameleon.sys [161216 2017-05-02] (Malwarebytes) R3 MBAMFarflt; C:\Windows\system32\drivers\farflt.sys [96704 2017-05-05] (Malwarebytes) R3 MBAMProtection; C:\Windows\system32\drivers\mbam.sys [39360 2017-05-05] (Malwarebytes) R0 MBAMSwissArmy; C:\Windows\System32\drivers\MBAMSwissArmy.sys [220088 2017-05-05] (Malwarebytes) R3 MBAMWebProtection; C:\Windows\system32\drivers\mwac.sys [64288 2017-05-05] (Malwarebytes) R1 ndisrd; C:\Windows\System32\DRIVERS\ndisrd.sys [37408 2014-08-14] (NT Kernel Resources) R3 SmbDrvI; C:\Windows\System32\DRIVERS\Smb_driver_Intel.sys [26792 2017-04-27] (Synaptics Incorporated) R3 vpcbus; C:\Windows\System32\DRIVERS\vpchbus.sys [165376 2009-08-16] (Microsoft Corporation) R1 vpcnfltr; C:\Windows\System32\DRIVERS\vpcnfltr.sys [55040 2009-08-16] (Microsoft Corporation) R3 vpcusb; C:\Windows\System32\DRIVERS\vpcusb.sys [78336 2009-08-16] (Microsoft Corporation) R1 vpcvmm; C:\Windows\System32\drivers\vpcvmm.sys [293904 2009-08-16] (Microsoft Corporation) U2 ERSvc; pas de ImagePath U2 IAStorDataMgrsvc; pas de ImagePath U2 NIHardwareService; pas de ImagePath U2 NVSvc; pas de ImagePath U2 srService; pas de ImagePath ==================== NetSvcs (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) ==================== Un mois - Créés - fichiers et dossiers ======== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2017-05-05 01:03 - 2017-05-05 01:03 - 00016886 _____ C:\Users\kapro\Desktop\FRST.txt 2017-05-05 01:02 - 2017-05-05 01:03 - 00000000 ____D C:\FRST 2017-05-05 00:59 - 2017-05-05 00:59 - 01769472 _____ (Farbar) C:\Users\kapro\Desktop\FRST.exe 2017-05-05 00:57 - 2017-05-05 00:57 - 00000000 ____D C:\ProgramData\SWCUTemp 2017-05-04 23:57 - 2017-05-05 00:58 - 00000000 ____D C:\Program Files\Baidu WiFiHotspot 2017-05-04 23:57 - 2017-05-04 23:57 - 00001105 _____ C:\Users\kapro\Desktop\Baidu WiFi Hotspot.lnk 2017-05-04 23:57 - 2017-05-04 23:57 - 00000000 ____D C:\Users\Public\Documents\PC Faster 2017-05-04 23:57 - 2017-05-04 23:57 - 00000000 ____D C:\Users\kapro\AppData\Roaming\Baidu 2017-05-04 23:57 - 2017-05-04 23:57 - 00000000 ____D C:\ProgramData\PC Faster 2017-05-04 23:57 - 2017-05-04 23:57 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Baidu WiFi Hotspot 2017-05-04 23:05 - 2017-05-04 23:05 - 00001312 _____ C:\Users\kapro\Desktop\ZHPFix[R2].txt 2017-05-04 18:59 - 2017-05-04 18:59 - 02722304 _____ C:\Users\kapro\ZHPDiag3.exe 2017-05-04 16:48 - 2017-05-04 16:48 - 00010013 ____R C:\Users\kapro\Desktop\Pre_Scan_04_05_2017_16_48_50.txt 2017-05-04 16:48 - 2017-05-04 16:48 - 00010013 ____R C:\Pre_Scan_04_05_2017_16_48_50.txt 2017-05-04 16:48 - 2017-05-04 16:48 - 00000970 _____ C:\Users\kapro\Desktop\Internet Explorer.lnk 2017-05-04 16:28 - 2017-05-04 16:52 - 00000000 ____D C:\Pre_Scan 2017-05-04 16:28 - 2017-05-04 16:28 - 00001526 _____ C:\Users\kapro\Desktop\Pre_Scan_Restore.lnk 2017-05-04 16:28 - 2017-05-04 16:28 - 00001136 _____ C:\Users\kapro\Desktop\Pre_Scan_Donate.lnk 2017-05-04 16:25 - 2017-05-04 16:25 - 03513768 _____ (SosVirus) C:\Users\kapro\Desktop\Pre_Scan.exe 2017-05-04 15:48 - 2017-05-04 15:51 - 00000000 ____D C:\Program Files\SMADAV 2017-05-04 15:48 - 2017-05-04 15:49 - 00000000 ___SD C:\[Smad-Cage] 2017-05-04 15:48 - 2017-05-04 15:48 - 00001022 _____ C:\Users\Public\Desktop\SMADΔV.lnk 2017-05-04 15:48 - 2017-05-04 15:48 - 00000000 ____D C:\Users\kapro\AppData\Roaming\Smadav 2017-05-04 15:48 - 2017-05-04 15:48 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SMADAV Antivirus 2017-05-04 14:49 - 2017-05-04 23:04 - 00001312 _____ C:\Users\kapro\Desktop\ZHPFixReport.txt 2017-05-04 14:47 - 2017-05-04 14:48 - 00000000 ____D C:\Program Files\ZHPFix 2017-05-04 14:47 - 2017-05-04 14:47 - 00001799 _____ C:\Users\Public\Desktop\ZHPFix.lnk 2017-05-04 14:47 - 2017-05-04 14:47 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ZHP 2017-05-04 14:43 - 2017-05-04 14:43 - 03521617 _____ (Nicolas Coolman ) C:\Users\kapro\Desktop\ZHPFix.exe 2017-05-03 20:08 - 2017-05-03 20:08 - 00000000 ___SD C:\Users\kapro\AppData\LocalLow\Temp 2017-05-03 18:03 - 2017-05-03 18:03 - 00330768 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe 2017-05-03 01:06 - 2017-05-03 01:06 - 00000000 ____D C:\Users\Default\AppData\Local\Microsoft Help 2017-05-03 01:06 - 2017-05-03 01:06 - 00000000 ____D C:\Users\Default User\AppData\Local\Microsoft Help 2017-05-03 01:01 - 2017-05-03 01:01 - 00000000 ____D C:\Program Files\Mozilla Firefox 2017-05-02 23:34 - 2017-04-30 05:45 - 271219744 _____ C:\Users\kapro\Desktop\One Piece - 786 [720P].mp4 2017-05-02 23:33 - 2017-05-01 21:06 - 295951505 _____ C:\Users\kapro\Desktop\DBS - 88 [720p]v2.MP4 2017-05-02 19:01 - 2017-05-02 19:01 - 00767024 _____ C:\Users\kapro\Desktop\rapp scan.txt 2017-05-02 18:37 - 2017-05-05 00:44 - 00096704 _____ (Malwarebytes) C:\Windows\system32\Drivers\farflt.sys 2017-05-02 18:37 - 2017-05-05 00:44 - 00064288 _____ (Malwarebytes) C:\Windows\system32\Drivers\mwac.sys 2017-05-02 18:37 - 2017-05-05 00:44 - 00039360 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys 2017-05-02 18:37 - 2017-05-02 18:37 - 00161216 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMChameleon.sys 2017-05-02 18:36 - 2017-05-05 00:44 - 00220088 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys 2017-05-02 18:36 - 2017-05-02 18:36 - 00002024 _____ C:\Users\Public\Desktop\Malwarebytes.lnk 2017-05-02 18:36 - 2017-05-02 18:36 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes 2017-05-02 18:36 - 2017-05-02 18:36 - 00000000 ____D C:\ProgramData\Malwarebytes 2017-05-02 18:36 - 2017-05-02 18:36 - 00000000 ____D C:\Program Files\Malwarebytes 2017-05-02 18:36 - 2017-03-22 11:02 - 00059904 _____ C:\Windows\system32\Drivers\mbae.sys 2017-05-02 18:35 - 2017-05-02 18:35 - 60107896 _____ (Malwarebytes ) C:\Users\kapro\Desktop\mb3-setup-consumer-3.0.6.1469-10103.exe 2017-05-02 18:22 - 2017-05-04 23:45 - 00000000 ____D C:\AdwCleaner 2017-05-02 18:21 - 2017-05-02 18:22 - 04102600 _____ C:\Users\kapro\Desktop\adwcleaner_6.046.exe 2017-05-02 18:18 - 2017-05-02 18:19 - 00003966 _____ C:\Users\kapro\Desktop\Rkill.txt 2017-05-02 18:15 - 2017-05-02 18:15 - 02030536 _____ (Bleeping Computer, LLC) C:\Users\kapro\Desktop\rkill.com 2017-05-02 16:36 - 2017-05-04 23:56 - 00095572 _____ C:\Users\kapro\Desktop\ZHPDiag.txt 2017-05-02 16:32 - 2017-05-04 23:55 - 00000000 ____D C:\Users\kapro\AppData\Roaming\ZHP 2017-05-02 16:32 - 2017-05-04 23:55 - 00000000 ____D C:\Users\kapro\AppData\Local\ZHP 2017-05-02 16:32 - 2017-05-04 18:59 - 00000625 _____ C:\Users\kapro\Desktop\ZHPDiag.lnk 2017-05-02 16:09 - 2017-05-02 16:31 - 02721280 _____ C:\Users\kapro\Desktop\ZHPDiag3.exe 2017-04-30 02:26 - 2017-04-30 02:34 - 00884413 _____ C:\Users\kapro\Downloads\Non confirmé 241778.crdownload 2017-04-30 01:49 - 2017-04-30 01:49 - 00000000 ____D C:\Users\kapro\Documents\KONAMI 2017-04-30 01:40 - 2017-04-30 01:40 - 00000000 ____D C:\ProgramData\KONAMI 2017-04-30 01:40 - 2017-04-30 01:40 - 00000000 ____D C:\Program Files\KONAMI 2017-04-30 01:26 - 2017-04-30 01:37 - 00000000 ____D C:\Users\kapro\Desktop\pes 2010 .mohdz 2017-04-30 00:56 - 2017-04-30 00:58 - 28119144 _____ C:\Users\kapro\Downloads\pes2017100mod-momen elwerdany.apk 2017-04-30 00:02 - 2017-04-30 00:02 - 00011149 _____ C:\Users\kapro\Downloads\Connectify_Hotspot_PRO_2017_With_Crack.exe.htm 2017-04-29 23:24 - 2017-04-29 23:28 - 00000000 ____D C:\Users\kapro\Desktop\Connectify Hotspot Pro & Dispatch Pro 8.0.0.30686 Incl. Crack [ATOM] 2017-04-29 23:03 - 2017-04-20 21:33 - 05158352 _____ (Baidu, Inc.) C:\Users\kapro\Desktop\WiFiHotspot_Setup_GL.exe 2017-04-29 22:56 - 2017-04-29 22:56 - 00172032 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll 2017-04-29 22:55 - 2017-04-29 22:55 - 00716800 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll 2017-04-29 22:55 - 2017-04-29 22:55 - 00571904 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll 2017-04-29 22:55 - 2017-04-29 22:55 - 00427520 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll 2017-04-29 22:55 - 2017-04-29 22:55 - 00310784 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys 2017-04-29 22:55 - 2017-04-29 22:55 - 00307200 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys 2017-04-29 22:55 - 2017-04-29 22:55 - 00194488 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fvevol.sys 2017-04-29 22:55 - 2017-04-29 22:55 - 00113664 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys 2017-04-29 22:54 - 2017-04-29 22:54 - 00314368 _____ (Microsoft Corporation) C:\Windows\system32\webio.dll 2017-04-29 22:54 - 2017-04-29 22:54 - 00221696 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys 2017-04-29 22:54 - 2017-04-29 22:54 - 00132608 _____ (Microsoft Corporation) C:\Windows\system32\cabview.dll 2017-04-29 22:54 - 2017-04-29 22:54 - 00123392 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys 2017-04-29 22:54 - 2017-04-29 22:54 - 00095744 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys 2017-04-29 22:53 - 2017-04-29 22:53 - 00224256 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll 2017-04-29 22:53 - 2017-04-29 22:53 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\sffp_sd.sys 2017-04-29 19:11 - 2009-08-16 17:30 - 01285208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys.backup 2017-04-29 18:47 - 2017-04-29 18:47 - 00095108 _____ C:\Windows\Uninstal.exe 2017-04-29 18:47 - 2017-04-29 18:47 - 00001985 _____ C:\Users\Public\Desktop\My 7 Optimizer.lnk 2017-04-29 18:47 - 2017-04-29 18:47 - 00000000 ____D C:\Windows\My 7 Add-On 2017-04-29 18:47 - 2017-04-29 18:47 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\My 7 Optimizer 2017-04-29 16:25 - 2017-04-29 16:25 - 00000000 ____D C:\ProgramData\Package Cache 2017-04-29 16:17 - 2017-04-29 16:17 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight 2017-04-29 16:17 - 2017-04-29 16:17 - 00000000 ____D C:\Program Files\Microsoft Silverlight 2017-04-29 16:13 - 2017-04-29 16:13 - 00000000 ____D C:\Users\kapro\AppData\Local\ElevatedDiagnostics 2017-04-29 00:16 - 2017-04-29 00:16 - 00000000 _____ C:\Windows\system32\Drivers\Msft_User_WpdFs_01_09_00.Wdf 2017-04-28 23:56 - 2017-04-28 23:56 - 00002007 _____ C:\Users\Public\Desktop\Avast Premium.lnk 2017-04-28 23:56 - 2017-04-28 23:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software 2017-04-28 23:49 - 2017-05-03 18:02 - 00391048 _____ (AVAST Software) C:\Windows\system32\Drivers\aswNetSec.sys 2017-04-28 23:48 - 2017-04-28 23:48 - 00027896 _____ (AVAST Software) C:\Windows\system32\Drivers\aswNetNd6.sys 2017-04-28 02:02 - 2017-04-29 23:00 - 00000000 ____D C:\Users\kapro\AppData\LocalLow\Mozilla 2017-04-28 02:02 - 2017-04-28 02:02 - 00000000 ____D C:\ProgramData\Apple 2017-04-28 02:01 - 2017-04-28 02:01 - 00001962 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk 2017-04-28 02:01 - 2017-04-28 02:01 - 00001892 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk 2017-04-28 02:00 - 2017-04-29 00:04 - 00000000 ____D C:\Windows\psgo 2017-04-28 02:00 - 2017-04-28 02:00 - 00000000 ____D C:\Program Files\MIO 2017-04-28 02:00 - 2017-04-28 02:00 - 00000000 _____ C:\Windows\system32\44 2017-04-28 02:00 - 2017-04-28 02:00 - 00000000 _____ C:\Windows\system32\11 2017-04-28 01:59 - 2017-04-29 01:46 - 00000000 ____D C:\Program Files\MK 2017-04-28 01:59 - 2017-04-28 01:59 - 00000000 ____D C:\Program Files\Codwardgruqse 2017-04-27 22:58 - 2017-05-02 23:35 - 00000000 ____D C:\Users\kapro\AppData\Roaming\MPC-HC 2017-04-27 22:38 - 2017-04-27 22:38 - 00294115 _____ C:\Users\kapro\Downloads\ALL CHANNELS 28-04-2017.m3u 2017-04-27 22:31 - 2017-04-27 22:31 - 00059577 _____ C:\Users\kapro\Downloads\iptv الروعة مجانا .m3u 2017-04-27 22:09 - 2017-04-27 22:09 - 00000000 _____ C:\Windows\system32\Drivers\Msft_User_WpdMtpDr_01_09_00.Wdf 2017-04-27 18:02 - 2017-04-27 18:02 - 00000000 ____D C:\Windows\system32\EventProviders 2017-04-27 16:48 - 2017-04-27 16:56 - 00000000 ____D C:\Users\kapro\Desktop\EmbratoriaG6.5.2 2017-04-27 15:57 - 2017-04-27 15:57 - 00001175 _____ C:\Users\Public\Desktop\PDF-Viewer.lnk 2017-04-27 15:57 - 2017-04-27 15:57 - 00000000 ____D C:\ProgramData\Tracker Software 2017-04-27 15:57 - 2017-04-27 15:57 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDF-XChange PDF Viewer 2017-04-27 15:57 - 2017-04-27 15:57 - 00000000 ____D C:\Program Files\Tracker Software 2017-04-27 14:40 - 2017-04-27 14:55 - 00000000 ____D C:\Users\kapro\AppData\Local\Adobe 2017-04-27 14:25 - 2017-04-27 14:31 - 00003612 _____ C:\Users\Public\Desktop\R@1n.txt 2017-04-27 14:25 - 2017-04-27 14:25 - 00003584 _____ C:\Windows\KMS-R@1nHook.dll 2017-04-27 14:20 - 2017-05-03 01:31 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013 2017-04-27 14:19 - 2017-04-27 14:19 - 00000000 ____D C:\Windows\PCHEALTH 2017-04-27 14:19 - 2017-04-27 14:19 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2017-04-27 14:19 - 2017-04-27 14:19 - 00000000 ____D C:\Program Files\Microsoft SQL Server 2017-04-27 14:19 - 2017-04-27 14:19 - 00000000 ____D C:\Program Files\Common Files\DESIGNER 2017-04-27 14:17 - 2017-04-27 14:19 - 00000000 ____D C:\Program Files\Microsoft Office 2017-04-27 14:17 - 2017-04-27 14:17 - 00000000 ____D C:\Users\kapro\AppData\Local\Microsoft Help 2017-04-27 14:17 - 2017-04-27 14:17 - 00000000 ____D C:\Program Files\Microsoft Analysis Services 2017-04-27 14:16 - 2017-04-27 14:16 - 00000000 __RHD C:\MSOCache 2017-04-27 14:07 - 2009-11-25 11:47 - 01130824 _____ (Microsoft Corporation) C:\Windows\system32\dfshim.dll 2017-04-27 14:07 - 2009-11-25 11:47 - 00297808 _____ (Microsoft Corporation) C:\Windows\system32\mscoree.dll 2017-04-27 14:07 - 2009-11-25 11:47 - 00295264 _____ (Microsoft Corporation) C:\Windows\system32\PresentationHost.exe 2017-04-27 14:07 - 2009-11-25 11:47 - 00099176 _____ (Microsoft Corporation) C:\Windows\system32\PresentationHostProxy.dll 2017-04-27 14:07 - 2009-11-25 11:47 - 00049472 _____ (Microsoft Corporation) C:\Windows\system32\netfxperf.dll 2017-04-27 13:23 - 2017-04-27 13:23 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack 2017-04-27 13:23 - 2017-04-27 13:23 - 00000000 ____D C:\Program Files\K-Lite Codec Pack 2017-04-27 13:23 - 2016-05-08 11:27 - 03613696 _____ (x264vfw project) C:\Windows\system32\x264vfw.dll 2017-04-27 13:23 - 2015-12-18 11:00 - 00674816 _____ C:\Windows\system32\xvidcore.dll 2017-04-27 13:23 - 2015-12-18 11:00 - 00282112 _____ C:\Windows\system32\xvidvfw.dll 2017-04-27 13:23 - 2015-10-24 18:00 - 00112128 _____ C:\Windows\system32\ff_vfw.dll 2017-04-27 13:23 - 2012-07-21 12:54 - 00122880 _____ (fccHandler) C:\Windows\system32\ac3acm.acm 2017-04-27 13:23 - 2011-12-07 19:32 - 00216064 _____ ( ) C:\Windows\system32\lagarith.dll 2017-04-27 13:22 - 2017-04-28 02:07 - 00000000 ____D C:\Users\kapro\AppData\Roaming\vlc 2017-04-27 13:22 - 2017-04-27 13:22 - 00001028 _____ C:\Users\Public\Desktop\VLC media player.lnk 2017-04-27 13:22 - 2017-04-27 13:22 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN 2017-04-27 13:22 - 2017-04-27 13:22 - 00000000 ____D C:\Program Files\VideoLAN 2017-04-27 13:22 - 2017-04-14 10:17 - 44819912 _____ (KLCP ) C:\Users\kapro\Desktop\K-Lite_Codec_Pack_1310_Mega.exe 2017-04-27 13:06 - 2017-04-27 13:06 - 00000000 ____D C:\Users\kapro\Desktop\BaiduWifi 2017-04-27 13:05 - 2017-04-29 17:14 - 00000438 _____ C:\Windows\system32\Drivers\etc\hosts.ics 2017-04-27 13:04 - 2017-04-27 13:04 - 00000000 ____D C:\Users\Public\Documents\Baidu 2017-04-27 13:04 - 2014-08-14 11:18 - 00037408 _____ (NT Kernel Resources) C:\Windows\system32\Drivers\ndisrd.sys 2017-04-27 12:59 - 2017-05-05 00:59 - 00000000 ____D C:\Users\kapro\AppData\Roaming\IDM 2017-04-27 12:59 - 2017-05-05 00:42 - 00000000 ____D C:\Users\kapro\AppData\Roaming\DMCache 2017-04-27 12:59 - 2017-05-04 16:07 - 00000000 ____D C:\Users\kapro\Downloads\Video 2017-04-27 12:59 - 2017-04-30 01:25 - 00000000 ____D C:\Users\kapro\Downloads\Compressed 2017-04-27 12:59 - 2017-04-27 13:00 - 00000000 ____D C:\Program Files\Internet Download Manager 2017-04-27 12:59 - 2017-04-27 12:59 - 00000983 _____ C:\Users\kapro\Desktop\Internet Download Manager.lnk 2017-04-27 12:59 - 2017-04-27 12:59 - 00000000 ____D C:\Users\kapro\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Download Manager 2017-04-27 12:59 - 2017-04-27 12:59 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Internet Download Manager 2017-04-27 12:59 - 2017-04-27 12:59 - 00000000 ____D C:\ProgramData\IDM 2017-04-27 12:50 - 2017-04-27 12:50 - 00000000 ____D C:\$AV_ASW 2017-04-27 12:49 - 2017-04-27 12:49 - 00001200 _____ C:\Users\Public\Desktop\Avast SafeZone Browser.lnk 2017-04-27 12:49 - 2017-04-27 12:49 - 00001200 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast SafeZone Browser.lnk 2017-04-27 12:49 - 2017-04-27 12:49 - 00000000 ____D C:\Users\kapro\AppData\Roaming\AVAST Software 2017-04-27 12:49 - 2017-04-27 12:49 - 00000000 ____D C:\Users\kapro\AppData\Local\CEF 2017-04-27 12:48 - 2017-05-03 18:03 - 00764576 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys 2017-04-27 12:48 - 2017-05-03 18:03 - 00482608 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys 2017-04-27 12:48 - 2017-05-03 18:03 - 00279800 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys 2017-04-27 12:48 - 2017-05-03 18:03 - 00114640 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys 2017-04-27 12:48 - 2017-05-03 18:03 - 00107928 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys 2017-04-27 12:48 - 2017-05-03 18:03 - 00090336 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys 2017-04-27 12:48 - 2017-05-03 18:03 - 00062152 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys 2017-04-27 12:48 - 2017-05-03 18:03 - 00034136 _____ (AVAST Software) C:\Windows\system32\Drivers\aswHwid.sys 2017-04-27 12:48 - 2017-05-03 18:03 - 00031064 _____ (AVAST Software) C:\Windows\system32\Drivers\aswKbd.sys 2017-04-27 12:48 - 2017-05-03 18:02 - 00268016 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswblogx.sys 2017-04-27 12:48 - 2017-05-03 18:02 - 00258288 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswbidsdriverx.sys 2017-04-27 12:48 - 2017-05-03 18:02 - 00148696 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswbidshx.sys 2017-04-27 12:48 - 2017-05-03 18:02 - 00041664 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswbunivx.sys 2017-04-27 12:48 - 2017-04-27 12:48 - 00000000 ____D C:\Program Files\Common Files\AV 2017-04-27 12:48 - 2017-04-27 12:47 - 00764064 _____ (AVAST Software) C:\Windows\system32\Drivers\aswF874.tmp 2017-04-27 12:48 - 2017-04-27 12:47 - 00472760 _____ (AVAST Software) C:\Windows\system32\Drivers\aswFDD6.tmp 2017-04-27 12:48 - 2017-04-27 12:47 - 00279800 _____ (AVAST Software) C:\Windows\system32\Drivers\aswFEB1.tmp 2017-04-27 12:48 - 2017-04-27 12:47 - 00267528 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswF42D.tmp 2017-04-27 12:48 - 2017-04-27 12:47 - 00255184 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswF276.tmp 2017-04-27 12:48 - 2017-04-27 12:47 - 00148208 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswF352.tmp 2017-04-27 12:48 - 2017-04-27 12:47 - 00118800 _____ (AVAST Software) C:\Windows\system32\Drivers\asw67.tmp 2017-04-27 12:48 - 2017-04-27 12:47 - 00106904 _____ (AVAST Software) C:\Windows\system32\Drivers\aswFBB2.tmp 2017-04-27 12:48 - 2017-04-27 12:47 - 00090336 _____ (AVAST Software) C:\Windows\system32\Drivers\aswF98E.tmp 2017-04-27 12:48 - 2017-04-27 12:47 - 00062152 _____ (AVAST Software) C:\Windows\system32\Drivers\aswFC9D.tmp 2017-04-27 12:48 - 2017-04-27 12:47 - 00041176 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswF566.tmp 2017-04-27 12:48 - 2017-04-27 12:47 - 00034136 _____ (AVAST Software) C:\Windows\system32\Drivers\aswFAB7.tmp 2017-04-27 12:48 - 2017-04-27 12:47 - 00031064 _____ (AVAST Software) C:\Windows\system32\Drivers\aswF6DD.tmp 2017-04-27 12:47 - 2017-04-27 12:47 - 00921280 _____ (Microsoft Corporation) C:\Windows\ucrtbase.dll 2017-04-27 12:47 - 2017-04-27 12:47 - 00000000 ____D C:\Program Files\AVAST Software 2017-04-27 12:46 - 2017-04-27 12:52 - 00000000 ____D C:\ProgramData\AVAST Software 2017-04-27 12:41 - 2017-05-03 19:25 - 00000000 ____D C:\Users\kapro\Desktop\EmbratoriaG7 2017-04-27 12:40 - 2017-04-27 12:44 - 00000000 ____D C:\Users\kapro\AppData\Roaming\WinRAR 2017-04-27 12:39 - 2017-04-29 23:31 - 00000000 ____D C:\Users\kapro\AppData\Roaming\BitComet 2017-04-27 12:39 - 2017-04-27 12:39 - 00000969 _____ C:\Users\Public\Desktop\BitComet.lnk 2017-04-27 12:39 - 2017-04-27 12:39 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BitComet 2017-04-27 12:39 - 2017-04-27 12:39 - 00000000 ____D C:\Program Files\BitComet 2017-04-27 12:37 - 2017-04-27 12:37 - 00000000 ____D C:\Users\kapro\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR 2017-04-27 12:37 - 2017-04-27 12:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR 2017-04-27 12:37 - 2017-04-27 12:37 - 00000000 ____D C:\Program Files\WinRAR 2017-04-27 12:36 - 2017-04-27 12:36 - 01975544 _____ C:\Users\kapro\Downloads\wrar55b1.exe 2017-04-27 12:32 - 2017-04-27 12:32 - 00009300 _____ C:\Users\kapro\Downloads\Keys.rar 2017-04-27 12:29 - 2017-04-27 12:31 - 288918364 _____ C:\Users\kapro\Downloads\Avast.AV.17.3.2291.0.rar 2017-04-27 12:18 - 2017-04-27 12:18 - 00000000 ____D C:\Users\kapro\AppData\Roaming\Google 2017-04-27 12:12 - 2017-04-27 12:13 - 00000132 _____ C:\ProgramData\log.binb 2017-04-27 12:08 - 2017-04-27 12:08 - 00785920 _____ (Realtek ) C:\Windows\system32\Drivers\Rt86win7.sys 2017-04-27 12:08 - 2017-04-27 12:08 - 00085608 _____ (Realtek Semiconductor Corporation) C:\Windows\system32\RtNicProp32.dll 2017-04-27 12:07 - 2017-04-27 12:07 - 72520712 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoRes.dat 2017-04-27 12:07 - 2017-04-27 12:07 - 09124224 _____ C:\Windows\system32\Drivers\RTAIODAT.DAT 2017-04-27 12:07 - 2017-04-27 12:07 - 04298752 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHDA.sys 2017-04-27 12:07 - 2017-04-27 12:07 - 03173736 _____ (DTS, Inc.) C:\Windows\system32\slcnt32.dll 2017-04-27 12:07 - 2017-04-27 12:07 - 02946560 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTSndMgr.cpl 2017-04-27 12:07 - 2017-04-27 12:07 - 02904576 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkPgExt.dll 2017-04-27 12:07 - 2017-04-27 12:07 - 02830480 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RltkAPO.dll 2017-04-27 12:07 - 2017-04-27 12:07 - 02800320 _____ (DTS, Inc.) C:\Windows\system32\sltech32.dll 2017-04-27 12:07 - 2017-04-27 12:07 - 02558352 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApoApi.dll 2017-04-27 12:07 - 2017-04-27 12:07 - 02149376 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCoInstII.dll 2017-04-27 12:07 - 2017-04-27 12:07 - 01527752 _____ (Conexant Systems Inc.) C:\Windows\system32\CX32APO.dll 2017-04-27 12:07 - 2017-04-27 12:07 - 01451616 _____ (Conexant Systems Inc.) C:\Windows\system32\CX32Proxy.dll 2017-04-27 12:07 - 2017-04-27 12:07 - 01074048 _____ (Synopsys, Inc.) C:\Windows\system32\SRRPTR.dll 2017-04-27 12:07 - 2017-04-27 12:07 - 00911080 _____ (DTS, Inc.) C:\Windows\system32\sl3apo32.dll 2017-04-27 12:07 - 2017-04-27 12:07 - 00532888 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTACap.dll 2017-04-27 12:07 - 2017-04-27 12:07 - 00401040 _____ (Synopsys, Inc.) C:\Windows\system32\SRAPO.dll 2017-04-27 12:07 - 2017-04-27 12:07 - 00371808 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEP32A.dll 2017-04-27 12:07 - 2017-04-27 12:07 - 00370024 _____ (Conexant Systems, Inc.) C:\Windows\system32\Caf32APO2.dll 2017-04-27 12:07 - 2017-04-27 12:07 - 00357152 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSXT.dll 2017-04-27 12:07 - 2017-04-27 12:07 - 00341144 _____ (Synopsys, Inc.) C:\Windows\system32\SRCOM.dll 2017-04-27 12:07 - 2017-04-27 12:07 - 00307232 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DHT32.dll 2017-04-27 12:07 - 2017-04-27 12:07 - 00307232 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DAA32.dll 2017-04-27 12:07 - 2017-04-27 12:07 - 00232752 _____ (TODO: ) C:\Windows\system32\slprp32.dll 2017-04-27 12:07 - 2017-04-27 12:07 - 00181224 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEED32A.dll 2017-04-27 12:07 - 2017-04-27 12:07 - 00150552 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSWOW.dll 2017-04-27 12:07 - 2017-04-27 12:07 - 00105648 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTARen.dll 2017-04-27 12:07 - 2017-04-27 12:07 - 00101328 _____ (Real Sound Lab SIA) C:\Windows\system32\CONEQMSAPOGUILibrary.dll 2017-04-27 12:07 - 2017-04-27 12:07 - 00098008 _____ (Conexant Systems, Inc.) C:\Windows\system32\Caf32api.dll 2017-04-27 12:07 - 2017-04-27 12:07 - 00088272 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEL32A.dll 2017-04-27 12:07 - 2017-04-27 12:07 - 00074376 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEG32A.dll 2017-04-27 12:07 - 2017-04-27 12:07 - 00022152 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCoLDR.dll 2017-04-27 12:07 - 2017-04-27 12:07 - 00005604 _____ C:\Windows\system32\cxapo.lncs 2017-04-27 12:07 - 2017-04-27 12:07 - 00000736 _____ C:\Windows\system32\cxapo.prop 2017-04-27 12:05 - 2017-04-27 12:05 - 01629040 _____ (Microsoft Corporation) C:\Windows\system32\WdfCoInstaller01011.dll 2017-04-27 12:05 - 2017-04-27 12:05 - 00132480 _____ (Intel Corporation) C:\Windows\system32\Drivers\Impcd.sys 2017-04-27 12:05 - 2017-04-27 12:05 - 00026792 _____ (Synaptics Incorporated) C:\Windows\system32\Drivers\Smb_driver_Intel.sys 2017-04-27 12:05 - 2017-04-27 12:05 - 00000000 ____H C:\Windows\system32\Drivers\MsftWdf_Kernel_01011_Coinstaller_Critical.Wdf 2017-04-27 12:05 - 2017-04-27 12:05 - 00000000 ____D C:\Program Files\Synaptics 2017-04-27 12:05 - 2017-04-27 12:05 - 00000000 _____ C:\Windows\system32\Drivers\Msft_Kernel_Smb_driver_Intel_01011.Wdf 2017-04-27 12:05 - 2012-07-26 05:39 - 00526952 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys 2017-04-27 12:05 - 2012-07-26 05:39 - 00047720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdfLdr.sys 2017-04-27 12:05 - 2012-07-26 04:46 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\Wdfres.dll 2017-04-27 12:05 - 2012-06-02 16:34 - 00000003 _____ C:\Windows\system32\Drivers\MsftWdf_Kernel_01011_Inbox_Critical.Wdf 2017-04-27 11:57 - 2017-04-27 11:57 - 07153400 _____ (Broadcom Corporation) C:\Windows\system32\Drivers\BCMWL6.SYS 2017-04-27 11:57 - 2017-04-27 11:57 - 03657728 _____ (Broadcom Corporation) C:\Windows\system32\bcmihvui.dll 2017-04-27 11:57 - 2017-04-27 11:57 - 00092504 _____ (Broadcom Corporation) C:\Windows\system32\bcmwlcoi.dll 2017-04-27 11:56 - 2017-04-27 11:57 - 04268032 _____ (Broadcom Corporation) C:\Windows\system32\bcmihvsrv.dll 2017-04-27 11:55 - 2017-04-27 11:55 - 00047504 _____ (IVT Corporation.) C:\Windows\system32\Drivers\btcusb.sys 2017-04-27 11:52 - 2017-04-29 22:49 - 36814848 _____ C:\Windows\system32\config\SOFTWARE.iobit 2017-04-27 11:52 - 2017-04-29 22:49 - 00241664 _____ C:\Windows\system32\config\DEFAULT.iobit 2017-04-27 11:52 - 2017-04-29 22:49 - 00028672 _____ C:\Windows\system32\config\SAM.iobit 2017-04-27 11:52 - 2017-04-29 22:49 - 00024576 _____ C:\Windows\system32\config\SECURITY.iobit 2017-04-27 11:52 - 2017-04-27 11:52 - 19210240 _____ C:\Windows\system32\config\COMPONENTS.iobit 2017-04-27 11:37 - 2017-05-02 18:28 - 00000000 ____D C:\Program Files\Common Files\IObit 2017-04-27 11:37 - 2017-04-27 11:37 - 00000000 ____D C:\Windows\Tasks\ImCleanDisabled 2017-04-27 11:36 - 2017-04-27 11:36 - 00002110 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit Uninstaller.lnk 2017-04-27 11:36 - 2017-04-27 11:36 - 00002098 _____ C:\Users\Public\Desktop\IObit Uninstaller.lnk 2017-04-27 11:36 - 2017-04-27 11:36 - 00000000 ____D C:\Users\kapro\AppData\Roaming\ProductData 2017-04-27 11:36 - 2017-04-27 11:36 - 00000000 ____D C:\Users\kapro\AppData\IObit 2017-04-27 11:36 - 2017-04-27 11:36 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit Uninstaller 2017-04-27 11:26 - 2017-04-27 11:31 - 00000290 __RSH C:\Users\kapro\ntuser.pol 2017-04-27 11:23 - 2017-04-28 02:02 - 00000000 ____D C:\Users\kapro\AppData\Roaming\Mozilla 2017-04-27 11:23 - 2017-04-27 12:54 - 00000000 ____D C:\Program Files\BitTorrent 2017-04-27 11:22 - 2017-04-27 11:22 - 01894851 _____ C:\Users\kapro\AppData\Local\Templax.tst 2017-04-27 11:22 - 2017-04-27 11:22 - 00070800 _____ C:\Users\kapro\AppData\Local\Config.xml 2017-04-27 11:22 - 2017-04-27 11:22 - 00019008 _____ C:\Users\kapro\AppData\Local\InstallationConfiguration.xml 2017-04-27 11:22 - 2017-04-27 11:22 - 00005568 _____ C:\Users\kapro\AppData\Local\md.xml 2017-04-27 11:19 - 2017-04-27 12:12 - 00011781 _____ C:\ProgramData\log.ewbt 2017-04-27 11:19 - 2017-04-27 12:12 - 00000128 _____ C:\ProgramData\log.ewbb 2017-04-27 11:19 - 2017-04-27 11:46 - 00000000 ____D C:\Users\kapro\AppData\Roaming\Rcechhozerdom 2017-04-27 11:19 - 2017-04-27 11:22 - 00000000 ____D C:\Users\kapro\AppData\Local\Plawather 2017-04-27 11:18 - 2017-04-29 23:42 - 00004018 __RSH C:\ProgramData\ntuser.pol 2017-04-27 11:12 - 2017-05-04 00:45 - 00000000 ____D C:\ProgramData\ProductData 2017-04-27 11:12 - 2017-04-27 11:12 - 00000000 ____D C:\Windows\IObit 2017-04-27 11:11 - 2017-05-04 23:45 - 00000000 ____D C:\Users\kapro\AppData\Roaming\IObit 2017-04-27 11:11 - 2017-05-03 20:39 - 00000000 ____D C:\Program Files\IObit 2017-04-27 11:11 - 2017-05-03 18:00 - 00111520 _____ C:\Users\kapro\AppData\Local\GDIPFONTCACHEV1.DAT 2017-04-27 11:11 - 2017-05-02 18:27 - 00000000 ____D C:\Users\kapro\AppData\LocalLow\IObit 2017-04-27 11:11 - 2017-05-02 18:27 - 00000000 ____D C:\ProgramData\IObit 2017-04-27 11:11 - 2017-04-29 22:58 - 00002238 _____ C:\Users\Public\Desktop\Driver Booster 4.lnk 2017-04-27 11:11 - 2017-04-27 11:11 - 00023840 _____ (REALiX(tm)) C:\Windows\system32\Drivers\HWiNFO32.SYS 2017-04-27 11:11 - 2017-04-27 11:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Booster 4 2017-04-27 11:10 - 2017-04-27 11:10 - 17866872 _____ (IObit ) C:\Users\kapro\Downloads\driver_booster_setup.exe 2017-04-27 11:01 - 2017-05-02 21:21 - 00002131 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2017-04-27 11:01 - 2017-04-27 13:58 - 00000000 ____D C:\Users\kapro\AppData\Local\Google 2017-04-27 11:00 - 2017-04-27 14:10 - 00000000 ____D C:\Program Files\Google 2017-04-27 11:00 - 2017-04-27 11:00 - 45744304 _____ C:\Users\kapro\Desktop\googlechromestandaloneenterprise.msi 2017-04-27 10:53 - 2017-04-27 10:54 - 00000000 ____D C:\Windows\system32\MRT 2017-04-27 10:53 - 2017-04-27 10:53 - 145733648 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe 2017-04-27 10:52 - 2016-06-25 17:43 - 00301056 _____ (Microsoft Corporation) C:\Windows\system32\EOSNotify.exe 2017-04-27 10:52 - 2014-09-15 02:42 - 02377216 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys 2017-04-27 10:52 - 2011-04-09 07:56 - 00123904 _____ (Microsoft Corporation) C:\Windows\system32\poqexec.exe 2017-04-27 10:52 - 2010-12-18 07:29 - 00541184 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll 2017-04-27 10:51 - 2015-03-19 04:57 - 03963320 _____ (Microsoft Corporation) C:\Windows\system32\ntkrnlpa.exe 2017-04-27 10:51 - 2015-03-19 04:57 - 03908024 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe 2017-04-27 10:51 - 2013-03-19 06:54 - 00038912 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll 2017-04-27 10:51 - 2013-03-19 04:50 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe 2017-04-27 10:47 - 2017-04-27 10:47 - 00000000 ____D C:\Program Files\Intel 2017-04-27 10:47 - 2017-04-27 10:47 - 00000000 ____D C:\Intel 2017-04-27 08:44 - 2012-06-03 00:19 - 01933848 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll 2017-04-27 08:44 - 2012-06-03 00:19 - 00577048 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll 2017-04-27 08:44 - 2012-06-03 00:19 - 00053784 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe 2017-04-27 08:44 - 2012-06-03 00:19 - 00045080 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll 2017-04-27 08:44 - 2012-06-03 00:19 - 00035864 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll 2017-04-27 08:44 - 2012-06-03 00:12 - 02422272 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll 2017-04-27 08:44 - 2012-06-03 00:12 - 00088576 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll 2017-04-27 08:44 - 2012-06-02 15:19 - 00171904 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll 2017-04-27 08:44 - 2012-06-02 15:12 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe 2017-04-27 08:15 - 2017-04-27 11:53 - 00000000 ____D C:\Windows\Panther 2017-04-27 08:14 - 2009-08-15 20:31 - 19432224 ____R () C:\Users\Public\Desktop\MY 7 OPTIMIZER V1.2.1.EXE 2017-04-27 08:14 - 2009-08-03 22:48 - 00000113 ____R C:\Users\Public\Desktop\MY7VISION.FR.URL 2017-04-27 07:43 - 2017-04-27 07:43 - 00000000 _____ C:\Windows\system32\Drivers\Msft_Kernel_iusb3hcs_01009.Wdf 2017-04-27 07:43 - 2012-12-04 03:21 - 00016440 _____ (Intel Corporation) C:\Windows\system32\Drivers\iusb3hcs.sys 2017-04-27 07:43 - 2009-07-14 09:27 - 01461992 _____ (Microsoft Corporation) C:\Windows\system32\WdfCoInstaller01009.dll 2017-04-27 07:42 - 2009-06-11 12:22 - 00188416 _____ (Bison Inc.) C:\Windows\system32\BisonR07.dll 2017-04-27 07:41 - 2017-04-27 12:10 - 00000000 ____D C:\Windows\system32\RTCOM 2017-04-27 07:41 - 2017-04-27 07:41 - 00000000 ____D C:\Program Files\Realtek 2017-04-27 07:41 - 2013-02-19 08:29 - 03229256 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkAPO.dll 2017-04-27 07:40 - 2013-02-04 10:59 - 00527344 _____ (Intel Corporation) C:\Windows\system32\Drivers\iaStorA.sys 2017-04-27 07:40 - 2013-02-04 10:59 - 00026096 _____ (Intel Corporation) C:\Windows\system32\Drivers\iaStorF.sys 2017-04-27 07:40 - 2011-08-23 04:11 - 00270336 _____ (Intel(R) Corporation) C:\Windows\system32\Drivers\IntcDAud.sys 2017-04-27 07:40 - 2011-08-23 04:11 - 00012288 _____ (Intel(R) Corporation) C:\Windows\system32\IntcDAuC.dll 2017-04-27 07:39 - 2017-04-27 12:08 - 00109632 _____ (Realtek Semiconductor Corporation) C:\Windows\system32\RTNUninst32.dll 2017-04-27 07:38 - 2012-11-05 08:54 - 00012800 _____ (IVT Corporation.) C:\Windows\system32\btinstall.dll 2017-04-27 07:38 - 2009-09-18 04:54 - 00041088 _____ (Intel Corporation) C:\Windows\system32\Drivers\HECI.sys 2017-04-27 07:37 - 2017-05-05 00:51 - 01667292 _____ C:\Windows\system32\PerfStringBackup.INI 2017-04-27 07:32 - 2017-05-02 18:29 - 00001168 _____ C:\Users\kapro\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk 2017-04-27 07:32 - 2017-04-27 07:32 - 00000000 ___RD C:\Users\kapro\Virtual Machines 2017-04-27 07:31 - 2017-05-04 18:59 - 00000000 ____D C:\Users\kapro 2017-04-27 07:31 - 2017-04-27 07:31 - 00000020 ___SH C:\Users\kapro\ntuser.ini 2017-04-27 07:31 - 2017-04-27 07:31 - 00000000 _SHDL C:\Users\Public\Documents\Mes vidéos 2017-04-27 07:31 - 2017-04-27 07:31 - 00000000 _SHDL C:\Users\Public\Documents\Mes images 2017-04-27 07:31 - 2017-04-27 07:31 - 00000000 _SHDL C:\Users\Public\Documents\Ma musique 2017-04-27 07:31 - 2017-04-27 07:31 - 00000000 _SHDL C:\Users\kapro\Voisinage réseau 2017-04-27 07:31 - 2017-04-27 07:31 - 00000000 _SHDL C:\Users\kapro\Voisinage d'impression 2017-04-27 07:31 - 2017-04-27 07:31 - 00000000 _SHDL C:\Users\kapro\Modèles 2017-04-27 07:31 - 2017-04-27 07:31 - 00000000 _SHDL C:\Users\kapro\Mes documents 2017-04-27 07:31 - 2017-04-27 07:31 - 00000000 _SHDL C:\Users\kapro\Menu Démarrer 2017-04-27 07:31 - 2017-04-27 07:31 - 00000000 _SHDL C:\Users\kapro\AppData\Local\Historique 2017-04-27 07:31 - 2017-04-27 07:31 - 00000000 _SHDL C:\Users\Default\Voisinage réseau 2017-04-27 07:31 - 2017-04-27 07:31 - 00000000 _SHDL C:\Users\Default\Voisinage d'impression 2017-04-27 07:31 - 2017-04-27 07:31 - 00000000 _SHDL C:\Users\Default\Modèles 2017-04-27 07:31 - 2017-04-27 07:31 - 00000000 _SHDL C:\Users\Default\Mes documents 2017-04-27 07:31 - 2017-04-27 07:31 - 00000000 _SHDL C:\Users\Default\Menu Démarrer 2017-04-27 07:31 - 2017-04-27 07:31 - 00000000 _SHDL C:\Users\Default\Documents\Mes vidéos 2017-04-27 07:31 - 2017-04-27 07:31 - 00000000 _SHDL C:\Users\Default\Documents\Mes images 2017-04-27 07:31 - 2017-04-27 07:31 - 00000000 _SHDL C:\Users\Default\Documents\Ma musique 2017-04-27 07:31 - 2017-04-27 07:31 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programmes 2017-04-27 07:31 - 2017-04-27 07:31 - 00000000 _SHDL C:\Users\Default\AppData\Local\Historique 2017-04-27 07:31 - 2017-04-27 07:31 - 00000000 _SHDL C:\Users\Default User\Documents\Mes vidéos 2017-04-27 07:31 - 2017-04-27 07:31 - 00000000 _SHDL C:\Users\Default User\Documents\Mes images 2017-04-27 07:31 - 2017-04-27 07:31 - 00000000 _SHDL C:\Users\Default User\Documents\Ma musique 2017-04-27 07:31 - 2017-04-27 07:31 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programmes 2017-04-27 07:31 - 2017-04-27 07:31 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Historique 2017-04-27 07:31 - 2017-04-27 07:31 - 00000000 _SHDL C:\ProgramData\Modèles 2017-04-27 07:31 - 2017-04-27 07:31 - 00000000 _SHDL C:\ProgramData\Microsoft\Windows\Start Menu\Programmes 2017-04-27 07:31 - 2017-04-27 07:31 - 00000000 _SHDL C:\ProgramData\Menu Démarrer 2017-04-27 07:31 - 2017-04-27 07:31 - 00000000 _SHDL C:\ProgramData\Favoris 2017-04-27 07:31 - 2017-04-27 07:31 - 00000000 _SHDL C:\ProgramData\Bureau 2017-04-27 07:31 - 2017-04-27 07:31 - 00000000 _SHDL C:\Program Files\Fichiers communs 2017-04-27 07:31 - 2017-04-27 07:31 - 00000000 __SDL C:\Users\kapro\Documents\Mes vidéos 2017-04-27 07:31 - 2017-04-27 07:31 - 00000000 __SDL C:\Users\kapro\Documents\Mes images 2017-04-27 07:31 - 2017-04-27 07:31 - 00000000 __SDL C:\Users\kapro\Documents\Ma musique 2017-04-27 07:31 - 2017-04-27 07:31 - 00000000 __SDL C:\Users\kapro\AppData\Roaming\Microsoft\Windows\Start Menu\Programmes 2017-04-27 07:31 - 2017-04-27 07:31 - 00000000 ____D C:\Users\kapro\AppData\Local\VirtualStore 2017-04-27 07:31 - 2009-07-14 11:00 - 00000000 ____D C:\Users\kapro\AppData\Roaming\Media Center Programs 2017-04-27 07:18 - 2017-04-27 07:18 - 00001345 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Center.lnk 2017-04-27 07:18 - 2017-04-27 07:18 - 00001326 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows DVD Maker.lnk 2017-04-26 18:59 - 2016-10-17 17:35 - 00147120 _____ (Tonec Inc.) C:\Windows\system32\Drivers\idmwfp.sys ==================== Un mois - Modifiés - fichiers et dossiers ======== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2017-05-05 00:51 - 2009-07-14 10:39 - 00749000 _____ C:\Windows\system32\perfh00C.dat 2017-05-05 00:51 - 2009-07-14 10:39 - 00150280 _____ C:\Windows\system32\perfc00C.dat 2017-05-05 00:51 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\inf 2017-05-05 00:49 - 2009-07-14 06:34 - 00019568 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2017-05-05 00:49 - 2009-07-14 06:34 - 00019568 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2017-05-05 00:43 - 2009-07-14 06:53 - 00000006 ____H C:\Windows\Tasks\SA.DAT 2017-05-03 17:58 - 2009-07-14 06:33 - 00433072 _____ C:\Windows\system32\FNTCACHE.DAT 2017-05-03 01:22 - 2009-07-14 04:37 - 00000000 ____D C:\Program Files\Common Files\microsoft shared 2017-05-03 01:16 - 2009-07-14 04:37 - 00000000 ____D C:\Program Files\Common Files\System 2017-05-03 01:16 - 2009-07-14 04:04 - 00000478 _____ C:\Windows\win.ini 2017-04-30 01:43 - 2009-07-14 06:52 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games 2017-04-29 19:11 - 2009-08-16 17:30 - 01279032 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys 2017-04-29 16:15 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\system32\NDF 2017-04-27 18:01 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\rescache 2017-04-27 14:19 - 2009-07-14 11:01 - 00000000 ____D C:\Windows\ShellNew 2017-04-27 11:48 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\system 2017-04-27 11:19 - 2009-07-14 06:52 - 00000000 ____D C:\Program Files\MSBuild 2017-04-27 11:18 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\system32\GroupPolicy 2017-04-27 08:15 - 2009-07-14 06:52 - 00028672 _____ C:\Windows\system32\config\BCD-Template 2017-04-27 07:31 - 2009-07-14 04:37 - 00000000 ____D C:\Program Files\Windows NT 2017-04-27 07:18 - 2009-08-16 17:31 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Virtual PC 2017-04-27 07:18 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\system32\sysprep 2017-04-27 07:16 - 2009-07-14 11:01 - 00000000 ____D C:\Windows\CSC ==================== Fichiers à la racine de certains dossiers ======= 2017-04-27 11:22 - 2017-04-27 11:22 - 0070800 _____ () C:\Users\kapro\AppData\Local\Config.xml 2017-04-27 11:22 - 2017-04-27 11:22 - 0019008 _____ () C:\Users\kapro\AppData\Local\InstallationConfiguration.xml 2017-04-27 11:22 - 2017-04-27 11:22 - 0005568 _____ () C:\Users\kapro\AppData\Local\md.xml 2017-04-27 11:22 - 2017-04-27 11:22 - 1894851 _____ () C:\Users\kapro\AppData\Local\Templax.tst 2017-04-27 11:23 - 2017-04-27 11:23 - 0001150 _____ () C:\Users\kapro\AppData\Local\uninstall_temp.ico 2017-04-27 12:12 - 2017-04-27 12:13 - 0000132 _____ () C:\ProgramData\log.binb 2017-04-27 11:19 - 2017-04-27 12:12 - 0000128 _____ () C:\ProgramData\log.ewbb 2017-04-27 11:19 - 2017-04-27 12:12 - 0011781 _____ () C:\ProgramData\log.ewbt Fichiers à déplacer ou supprimer: ==================== C:\Users\kapro\ZHPDiag3.exe ==================== Bamital & volsnap ====================== (Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.) C:\Windows\explorer.exe => Le fichier est signé numériquement C:\Windows\system32\winlogon.exe => Le fichier est signé numériquement C:\Windows\system32\wininit.exe => Le fichier est signé numériquement C:\Windows\system32\svchost.exe => Le fichier est signé numériquement C:\Windows\system32\services.exe => Le fichier est signé numériquement C:\Windows\system32\User32.dll => Le fichier est signé numériquement C:\Windows\system32\userinit.exe => Le fichier est signé numériquement C:\Windows\system32\rpcss.dll => Le fichier est signé numériquement C:\Windows\system32\dnsapi.dll => Le fichier est signé numériquement C:\Windows\system32\Drivers\volsnap.sys => Le fichier est signé numériquement testsigning: ==> 'testsigning' est activé. Rechercher un éventuel pilote non signé <===== ATTENTION LastRegBack: 2017-04-27 13:53 ==================== Fin de FRST.txt ============================