Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 11-01-2017 Exécuté par scorebut (administrateur) sur DESKTOP-EDU0LHV (11-01-2017 20:16:19) Exécuté depuis C:\Users\hiba\Desktop Profils chargés: scorebut & hiba & (Profils disponibles: scorebut & hiba & Admin123) Platform: Windows 10 Pro Version 1607 (X64) Langue: Français (France) Internet Explorer Version 11 (Navigateur par défaut: FF) Mode d'amorçage: Normal Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processus (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.) (Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_f54a4c96d3261a9e\igfxCUIService.exe (G DATA Software AG) C:\Program Files (x86)\Common Files\G Data\GDScan\GDScan.exe (G Data Software AG) C:\Program Files (x86)\G DATA\InternetSecurity\AVK\AVKWCtlx64.exe (Creative Technology Ltd) C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe (G DATA Software AG) C:\Program Files (x86)\G DATA\InternetSecurity\AVK\AVKService.exe (G DATA Software AG) C:\Program Files (x86)\Common Files\G Data\AVKProxy\AVKProxy.exe (G DATA Software AG) C:\Program Files (x86)\G DATA\InternetSecurity\AVKBackup\AVKBackupService.exe (Microsoft) C:\Program Files (x86)\GIGABYTE\CloudStation_Server\HomeCloud\GCloud.exe () C:\Program Files (x86)\GIGABYTE\AppCenter\AdjustService.exe (Rivet Networks) C:\Program Files\Killer Networking\Network Manager\KillerService.exe (Gigabyte Technology CO., LTD.) C:\Program Files (x86)\GIGABYTE\Smart TimeLock\TimeMgmtDaemon.exe (Raxco Software, Inc.) C:\Program Files\Common Files\Raxco\Shared\PDEngine.exe (Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe (G Data Software AG) C:\Program Files (x86)\G DATA\InternetSecurity\Firewall\GDFwSvcx64.exe (Raxco Software, Inc.) C:\Program Files\Raxco\PerfectDisk\PDAgent.exe (G Data Software AG) C:\Program Files (x86)\Common Files\G Data\AVKProxy\AVKBap64.exe (Microsoft) C:\Program Files (x86)\GIGABYTE\CloudStation_Server\HomeCloud\HCLOUD.exe () C:\Program Files (x86)\GIGABYTE\CloudStation_Server\RemoteControl\grckm.exe (Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe (Raxco Software, Inc.) C:\Program Files\Raxco\PerfectDisk\PDAgentS1.exe (Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_f54a4c96d3261a9e\igfxEM.exe (G DATA Software AG) C:\Program Files (x86)\G DATA\InternetSecurity\Firewall\GDFirewallTray.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe (Microsoft Corporation) C:\Windows\System32\rundll32.exe (Microsoft Corporation) C:\Windows\System32\rundll32.exe (Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe (VMware, Inc.) C:\Program Files (x86)\VMware\VMware Workstation\vmware-tray.exe (Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe () C:\Program Files (x86)\Logitech\LWS\Webcam Software\CameraHelperShell.exe (G DATA Software AG) C:\Program Files (x86)\G DATA\InternetSecurity\AVKTray\AVKTray.exe (G DATA Software AG) C:\Program Files (x86)\Common Files\G Data\AVKProxy\GDKBFltExe32.exe (Gigabyte Technology CO., LTD.) C:\Program Files (x86)\GIGABYTE\Smart TimeLock\AlarmClock.exe (HP Inc.) C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe (Intel(R) Corporation) C:\Program Files (x86)\Intel\Intel(R) Extreme Tuning Utility\XtuService.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe (G DATA Software AG) C:\Program Files (x86)\G DATA\InternetSecurity\AVK\AVK.exe (Microsoft Corporation) C:\Windows\System32\smartscreen.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe ==================== Registre (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.) HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9181696 2017-01-07] (Realtek Semiconductor) HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [1794888 2015-06-29] (NVIDIA Corporation) HKLM\...\Run: [MBCfg64] => C:\WINDOWS\system32\RunDLL32.exe C:\WINDOWS\system32\MBCfg64.dll,RunDLLEntry MBCfg64 HKLM\...\Run: [Malwarebytes TrayApp] => C:\PROGRAM FILES/MALWAREBYTES/ANTI-MALWARE\mbamtray.exe [2776528 2016-12-14] (Malwarebytes) HKLM-x32\...\Run: [cmsc] => c:\program files (x86)\cmcm\Clean Master\cmtray.exe [771912 2016-09-03] (Kingsoft Corporation) HKLM-x32\...\Run: [Start_OrangeWifi_{9d78a505-6248-4d1b-81b6-df69655beccf}] => C:\Program Files (x86)\Orange\wifi d'Orange\{9d78a505-6248-4d1b-81b6-df69655beccf}\OrangeWifi.exe [1944064 2014-03-26] () HKLM-x32\...\Run: [Start_Update_{9d78a505-6248-4d1b-81b6-df69655beccf}] => C:\Program Files (x86)\Orange\wifi d'Orange\{9d78a505-6248-4d1b-81b6-df69655beccf}\UpdteApp.exe [1013760 2014-03-26] () HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard) HKLM-x32\...\Run: [iTunesHelper] => C:\Program Files (x86)\iTunes\iTunesHelper.exe [157456 2015-10-16] (Apple Inc.) HKLM-x32\...\Run: [vmware-tray.exe] => C:\Program Files (x86)\VMware\VMware Workstation\vmware-tray.exe [112200 2016-11-11] (VMware, Inc.) HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2016-09-22] (Oracle Corporation) HKLM-x32\...\Run: [LWS] => C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe [204136 2012-09-13] (Logitech Inc.) HKLM-x32\...\Run: [Sound Blaster X-Fi MB 3] => C:\Program Files (x86)\Creative\Sound Blaster X-Fi MB3\Sound Blaster X-Fi MB3\SBXFIMB3.exe [2112512 2015-06-12] (Creative Technology Ltd) HKLM-x32\...\Run: [UpdReg] => C:\WINDOWS\UpdReg.EXE [90112 2000-05-11] (Creative Technology Ltd.) HKLM\...\RunOnce: [RPMKickstart] => C:\Program Files\Gigabyte\Smart Backup\RPMKickstartEx.exe [2320384 2014-04-01] (TODO: ) HKLM-x32\...\RunOnce: [SIV] => C:\Program Files (x86)\GIGABYTE\SIV\sivro.exe [12096 2015-10-12] (GIGA-BYTE TECHNOLOGY CO., LTD.) HKLM-x32\...\RunOnce: [DualBiosRescue] => C:\Program Files (x86)\GIGABYTE\GigabyteFirmwareUpdateUtility\dbrro.exe [12096 2015-08-19] () HKLM-x32\...\RunOnce: [PreRun] => C:\Program Files (x86)\GIGABYTE\AppCenter\PreRun.exe [8192 2013-04-29] () HKLM-x32\...\RunOnce: [EasyTune] => C:\Program Files (x86)\GIGABYTE\EasyTune\etro.exe [5632 2015-09-24] (GIGA-BYTE TECHNOLOGY CO., LTD.) HKLM\...\Winlogon: [Userinit] C:\WINDOWS\system32\userinit.exe,c:\program files (x86)\g data\internetsecurity\avkkid\avkcks.exe, HKU\S-1-5-21-929253815-3447027436-2019464479-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [27017856 2016-10-17] (Skype Technologies S.A.) HKU\S-1-5-21-929253815-3447027436-2019464479-1001\...\Run: [IDMan] => C:\Program Files (x86)\Internet Download Manager\IDMan.exe [4001848 2016-12-15] (Tonec Inc.) HKU\S-1-5-21-929253815-3447027436-2019464479-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [2876704 2016-12-20] (Valve Corporation) HKU\S-1-5-21-929253815-3447027436-2019464479-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01112017200540295\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [27017856 2016-10-17] (Skype Technologies S.A.) HKU\S-1-5-21-929253815-3447027436-2019464479-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01112017200540295\...\Run: [IDMan] => C:\Program Files (x86)\Internet Download Manager\IDMan.exe [4001848 2016-12-15] (Tonec Inc.) HKU\S-1-5-21-929253815-3447027436-2019464479-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01112017200540295\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [2876704 2016-12-20] (Valve Corporation) HKU\S-1-5-21-929253815-3447027436-2019464479-1002\...\Run: [IDMan] => C:\Program Files (x86)\Internet Download Manager\IDMan.exe [4001848 2016-12-15] (Tonec Inc.) HKU\S-1-5-21-929253815-3447027436-2019464479-1002\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [9288408 2016-12-06] (Piriform Ltd) HKU\S-1-5-21-929253815-3447027436-2019464479-1002\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [27017856 2016-10-17] (Skype Technologies S.A.) HKU\S-1-5-21-929253815-3447027436-2019464479-1002\...\MountPoints2: {0a465f61-7022-11e6-a707-408d5c7629fa} - "I:\setup.exe" HKU\S-1-5-21-929253815-3447027436-2019464479-1002\...\MountPoints2: {43177c33-2b3e-11e6-a625-806e6f6e6963} - "D:\BlacklistAutoRun.exe" HKU\S-1-5-21-929253815-3447027436-2019464479-1002\...\MountPoints2: {c626a040-d087-11e6-a7be-806e6f6e6963} - "D:\Run.exe" HKU\S-1-5-21-929253815-3447027436-2019464479-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01112017200542238\...\Run: [IDMan] => C:\Program Files (x86)\Internet Download Manager\IDMan.exe [4001848 2016-12-15] (Tonec Inc.) HKU\S-1-5-21-929253815-3447027436-2019464479-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01112017200542238\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [9288408 2016-12-06] (Piriform Ltd) HKU\S-1-5-21-929253815-3447027436-2019464479-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01112017200542238\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [27017856 2016-10-17] (Skype Technologies S.A.) HKU\S-1-5-21-929253815-3447027436-2019464479-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01112017200542238\...\MountPoints2: {0a465f61-7022-11e6-a707-408d5c7629fa} - "I:\setup.exe" HKU\S-1-5-21-929253815-3447027436-2019464479-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01112017200542238\...\MountPoints2: {43177c33-2b3e-11e6-a625-806e6f6e6963} - "D:\BlacklistAutoRun.exe" HKU\S-1-5-21-929253815-3447027436-2019464479-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01112017200542238\...\MountPoints2: {c626a040-d087-11e6-a7be-806e6f6e6963} - "D:\Run.exe" HKU\S-1-5-21-929253815-3447027436-2019464479-1004-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01112017200542944\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [27017856 2016-10-17] (Skype Technologies S.A.) HKU\S-1-5-21-929253815-3447027436-2019464479-1004-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01112017200542944\...\Run: [IDMan] => C:\Program Files (x86)\Internet Download Manager\IDMan.exe [4001848 2016-12-15] (Tonec Inc.) ShellIconOverlayIdentifiers: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\hiba\AppData\Local\MEGAsync\ShellExtX64.dll [2016-10-31] () ShellIconOverlayIdentifiers: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\hiba\AppData\Local\MEGAsync\ShellExtX64.dll [2016-10-31] () ShellIconOverlayIdentifiers: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\hiba\AppData\Local\MEGAsync\ShellExtX64.dll [2016-10-31] () ShellIconOverlayIdentifiers: [ IDM Shell Extension] -> {CDC95B92-E27C-4745-A8C5-64A52A78855D} => C:\Program Files (x86)\Internet Download Manager\IDMShellExt64.dll [2015-08-14] (Tonec Inc.) ShellIconOverlayIdentifiers-x32: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\hiba\AppData\Local\MEGAsync\ShellExtX32.dll [2016-10-31] () ShellIconOverlayIdentifiers-x32: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\hiba\AppData\Local\MEGAsync\ShellExtX32.dll [2016-10-31] () ShellIconOverlayIdentifiers-x32: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\hiba\AppData\Local\MEGAsync\ShellExtX32.dll [2016-10-31] () Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Killer Network Manager.lnk [2017-01-03] ShortcutTarget: Killer Network Manager.lnk -> C:\Program Files\Killer Networking\Network Manager\NetworkManager.exe (Rivet Networks) Startup: C:\Users\hiba\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Alertes de surveillance de l'encre - HP ENVY 5530 series.lnk [2017-01-11] ShortcutTarget: Alertes de surveillance de l'encre - HP ENVY 5530 series.lnk -> C:\Program Files\HP\HP ENVY 5530 series\Bin\HPStatusBL.dll (Hewlett-Packard Development Company, LP) BootExecute: PDBoot.exeautocheck autochk * GroupPolicy: Restriction <======= ATTENTION ==================== Internet (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.) Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{09e65c46-003b-452f-90e1-fc978ca697ce}: [NameServer] 193.183.98.154,87.98.175.85 Tcpip\..\Interfaces\{09e65c46-003b-452f-90e1-fc978ca697ce}: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{2e1e375f-b54e-4a74-acc8-4fea128374a2}: [NameServer] 193.183.98.154,87.98.175.85 Tcpip\..\Interfaces\{2e1e375f-b54e-4a74-acc8-4fea128374a2}: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{c0d98ef8-af57-4c9b-ba98-bf2c3fcee326}: [DhcpNameServer] 192.168.1.1 Internet Explorer: ================== HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = HKU\S-1-5-21-929253815-3447027436-2019464479-1001\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank HKU\S-1-5-21-929253815-3447027436-2019464479-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01112017200540295\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank HKU\S-1-5-21-929253815-3447027436-2019464479-1002\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank HKU\S-1-5-21-929253815-3447027436-2019464479-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01112017200542238\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank HKU\S-1-5-21-929253815-3447027436-2019464479-1004-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01112017200542944\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-21-929253815-3447027436-2019464479-1002 -> {2C4C3790-216A-498E-8144-A2C53784BD7B} URL = hxxps://fr.search.yahoo.com/search?p={searchTerms}&fr=yset_ie_syc_oracle&type=orcl_default SearchScopes: HKU\S-1-5-21-929253815-3447027436-2019464479-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01112017200542238 -> {2C4C3790-216A-498E-8144-A2C53784BD7B} URL = hxxps://fr.search.yahoo.com/search?p={searchTerms}&fr=yset_ie_syc_oracle&type=orcl_default BHO: IDM integration (IDMIEHlprObj Class) -> {0055C089-8582-441B-A0BF-17B458C2A3A8} -> C:\Program Files (x86)\Internet Download Manager\IDMIECC64.dll [2016-12-10] (Internet Download Manager, Tonec Inc.) BHO-x32: IDM integration (IDMIEHlprObj Class) -> {0055C089-8582-441B-A0BF-17B458C2A3A8} -> C:\Program Files (x86)\Internet Download Manager\IDMIECC.dll [2016-12-10] (Internet Download Manager, Tonec Inc.) BHO-x32: EGet Class -> {1E871FF8-029C-4732-8AA7-39E3D3872057} -> C:\Program Files (x86)\EagleGet\eagleSniffer.dll [2016-12-22] (EagleGet.com) BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_112\bin\ssv.dll [2016-12-17] (Oracle Corporation) BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_112\bin\jp2ssv.dll [2016-12-17] (Oracle Corporation) FireFox: ======== FF DefaultProfile: t1q83fus.default FF ProfilePath: C:\Users\scorebut\AppData\Roaming\Mozilla\Firefox\Profiles\t1q83fus.default [2017-01-10] FF Extension: (Ghostery) - C:\Users\scorebut\AppData\Roaming\Mozilla\Firefox\Profiles\t1q83fus.default\Extensions\firefox@ghostery.com.xpi [2016-12-17] FF Extension: (Adblock Plus) - C:\Users\scorebut\AppData\Roaming\Mozilla\Firefox\Profiles\t1q83fus.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2016-11-25] FF HKU\S-1-5-21-929253815-3447027436-2019464479-1001\...\Firefox\Extensions: [mozilla_cc2@internetdownloadmanager.com] - C:\Program Files (x86)\Internet Download Manager\idmmzcc2.xpi FF Extension: (IDM integration) - C:\Program Files (x86)\Internet Download Manager\idmmzcc2.xpi [2016-11-16] FF HKU\S-1-5-21-929253815-3447027436-2019464479-1001\...\SeaMonkey\Extensions: [mozilla_cc@internetdownloadmanager.com] - C:\Users\scorebut\AppData\Roaming\IDM\idmmzcc5 FF Extension: (IDM CC) - C:\Users\scorebut\AppData\Roaming\IDM\idmmzcc5 [2017-01-09] [non signé] FF HKU\S-1-5-21-929253815-3447027436-2019464479-1001\...\SeaMonkey\Extensions: [mozilla_cc2@internetdownloadmanager.com] - C:\Program Files (x86)\Internet Download Manager\idmmzcc2.xpi FF HKU\S-1-5-21-929253815-3447027436-2019464479-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01112017200540295\...\Firefox\Extensions: [mozilla_cc2@internetdownloadmanager.com] - C:\Program Files (x86)\Internet Download Manager\idmmzcc2.xpi FF HKU\S-1-5-21-929253815-3447027436-2019464479-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01112017200540295\...\SeaMonkey\Extensions: [mozilla_cc@internetdownloadmanager.com] - C:\Users\scorebut\AppData\Roaming\IDM\idmmzcc5 FF HKU\S-1-5-21-929253815-3447027436-2019464479-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01112017200540295\...\SeaMonkey\Extensions: [mozilla_cc2@internetdownloadmanager.com] - C:\Program Files (x86)\Internet Download Manager\idmmzcc2.xpi FF HKU\S-1-5-21-929253815-3447027436-2019464479-1002\...\Firefox\Extensions: [mozilla_cc2@internetdownloadmanager.com] - C:\Program Files (x86)\Internet Download Manager\idmmzcc2.xpi FF HKU\S-1-5-21-929253815-3447027436-2019464479-1002\...\SeaMonkey\Extensions: [mozilla_cc@internetdownloadmanager.com] - C:\Users\hiba\AppData\Roaming\IDM\idmmzcc5 FF Extension: (IDM CC) - C:\Users\hiba\AppData\Roaming\IDM\idmmzcc5 [2017-01-11] [non signé] FF HKU\S-1-5-21-929253815-3447027436-2019464479-1002\...\SeaMonkey\Extensions: [mozilla_cc2@internetdownloadmanager.com] - C:\Program Files (x86)\Internet Download Manager\idmmzcc2.xpi FF HKU\S-1-5-21-929253815-3447027436-2019464479-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01112017200542238\...\Firefox\Extensions: [mozilla_cc2@internetdownloadmanager.com] - C:\Program Files (x86)\Internet Download Manager\idmmzcc2.xpi FF HKU\S-1-5-21-929253815-3447027436-2019464479-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01112017200542238\...\SeaMonkey\Extensions: [mozilla_cc@internetdownloadmanager.com] - C:\Users\hiba\AppData\Roaming\IDM\idmmzcc5 FF HKU\S-1-5-21-929253815-3447027436-2019464479-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01112017200542238\...\SeaMonkey\Extensions: [mozilla_cc2@internetdownloadmanager.com] - C:\Program Files (x86)\Internet Download Manager\idmmzcc2.xpi FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2015-10-08] () FF Plugin-x32: @java.com/DTPlugin,version=11.112.2 -> C:\Program Files (x86)\Java\jre1.8.0_112\bin\dtplugin\npDeployJava1.dll [2016-12-17] (Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=11.112.2 -> C:\Program Files (x86)\Java\jre1.8.0_112\bin\plugin2\npjp2.dll [2016-12-17] (Oracle Corporation) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-16] (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-16] (Google Inc.) FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2016-12-23] (Adobe Systems Inc.) FF Plugin HKU\S-1-5-21-929253815-3447027436-2019464479-1001: eagleget.com/EagleGet32 -> C:\Program Files (x86)\EagleGet\npEagleget.dll [2016-08-01] (EagleGet) FF Plugin HKU\S-1-5-21-929253815-3447027436-2019464479-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01112017200540295: eagleget.com/EagleGet32 -> C:\Program Files (x86)\EagleGet\npEagleget.dll [2016-08-01] (EagleGet) Chrome: ======= CHR DefaultSearchURL: Default -> hxxps://fr.search.yahoo.com/search?p={searchTerms}&fr=yset_chr_syc_oracle&type=default CHR DefaultSearchKeyword: Default -> Yahoo CHR DefaultSuggestURL: Default -> hxxps://fr.search.yahoo.com/sugg/ie?output=fxjson&command={searchTerms}&nResults=10 CHR Profile: C:\Users\scorebut\AppData\Local\Google\Chrome\User Data\Default [2016-12-26] CHR Extension: (Adblock Plus) - C:\Users\scorebut\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2016-11-26] CHR Extension: (EagleGet Free Downloader) - C:\Users\scorebut\AppData\Local\Google\Chrome\User Data\Default\Extensions\kaebhgioafceeldhgjmendlfhbfjefmo [2016-12-24] CHR Extension: (Ghostery) - C:\Users\scorebut\AppData\Local\Google\Chrome\User Data\Default\Extensions\mlomiejdfkolichcflejclcbmpeaniij [2016-11-26] CHR Extension: (IDM Integration Module) - C:\Users\scorebut\AppData\Local\Google\Chrome\User Data\Default\Extensions\ngpampappnmepgilojfohadhhmbhlaek [2016-12-26] CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\scorebut\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-11-26] CHR Extension: (Chrome Media Router) - C:\Users\scorebut\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-12-24] CHR HKLM\...\Chrome\Extension: [kaebhgioafceeldhgjmendlfhbfjefmo] - C:\Program Files (x86)\EagleGet\addon\eagleget_cext@eagleget.com.crx [2016-12-26] CHR HKLM\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files (x86)\Internet Download Manager\IDMGCExt.crx [2016-12-15] CHR HKU\S-1-5-21-929253815-3447027436-2019464479-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [kaebhgioafceeldhgjmendlfhbfjefmo] - C:\Program Files (x86)\EagleGet\addon\eagleget_cext@eagleget.com.crx [2016-12-26] CHR HKU\S-1-5-21-929253815-3447027436-2019464479-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-01112017200540295\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [kaebhgioafceeldhgjmendlfhbfjefmo] - C:\Program Files (x86)\EagleGet\addon\eagleget_cext@eagleget.com.crx [2016-12-26] CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx CHR HKLM-x32\...\Chrome\Extension: [fabhkdeopjkcpkmofliimbjckmocfiom] - hxxps://clients2.google.com/service/update2/crx CHR HKLM-x32\...\Chrome\Extension: [kaebhgioafceeldhgjmendlfhbfjefmo] - C:\Program Files (x86)\EagleGet\addon\eagleget_cext@eagleget.com.crx [2016-12-26] CHR HKLM-x32\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files (x86)\Internet Download Manager\IDMGCExt.crx [2016-12-15] ==================== Services (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) S4 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2016-08-05] (Apple Inc.) S3 AppleChargerSrv; C:\WINDOWS\System32\AppleChargerSrv.exe [31272 2010-04-06] () R2 AVKProxy; C:\Program Files (x86)\Common Files\G Data\AVKProxy\AVKProxy.exe [4950632 2016-10-06] (G DATA Software AG) R2 AVKService; C:\Program Files (x86)\G DATA\InternetSecurity\AVK\AVKService.exe [984904 2016-09-15] (G DATA Software AG) R2 AVKWCtl; C:\Program Files (x86)\G DATA\InternetSecurity\AVK\AVKWCtlx64.exe [3044496 2016-09-27] (G Data Software AG) S4 Backupper Service; C:\Program Files (x86)\AOMEI Backupper\ABService.exe [29912 2015-07-16] (AOMEI Tech Co., Ltd.) [Fichier non signé] S4 cmcore; c:\program files (x86)\cmcm\Clean Master\cmcore.exe [315208 2016-09-03] (Kingsoft Corporation) S3 cphs; C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_f54a4c96d3261a9e\IntelCpHeciSvc.exe [284144 2016-12-17] (Intel Corporation) S3 cplspcon; C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_f54a4c96d3261a9e\IntelCpHDCPSvc.exe [462832 2016-12-17] (Intel Corporation) S3 Creative ALchemy AL6 Licensing Service; C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\AL6Licensing.exe [79360 2017-01-03] (Creative Labs) [Fichier non signé] S3 Creative Audio Engine Licensing Service; C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe [79360 2017-01-03] (Creative Labs) [Fichier non signé] R2 CTAudSvcService; C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe [406016 2011-09-14] (Creative Technology Ltd) [Fichier non signé] S4 DirMngr; C:\Program Files (x86)\GNU\GnuPG\dirmngr.exe [216576 2016-08-18] () [Fichier non signé] S4 EaseUS Agent; C:\Program Files (x86)\EaseUS\Todo Backup\bin\Agent.exe [39616 2016-06-03] (CHENGDU YIWO Tech Development Co., Ltd) S2 egGetSvc; C:\Program Files (x86)\EagleGet\EGMonitor.exe [247464 2016-12-22] () R2 gadjservice; C:\Program Files (x86)\GIGABYTE\AppCenter\AdjustService.exe [17920 2015-06-25] () [Fichier non signé] R2 GCloud; C:\Program Files (x86)\GIGABYTE\CloudStation_Server\HomeCloud\GCloud.exe [19776 2015-03-23] (Microsoft) R2 GDBackupSvc; C:\Program Files (x86)\G DATA\InternetSecurity\AVKBackup\AVKBackupService.exe [4072264 2016-09-30] (G DATA Software AG) R3 GDFwSvc; C:\Program Files (x86)\G DATA\InternetSecurity\Firewall\GDFwSvcx64.exe [3286120 2016-09-15] (G Data Software AG) R3 GDScan; C:\Program Files (x86)\Common Files\G Data\GDScan\GDScan.exe [822600 2016-09-27] (G DATA Software AG) R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [29728 2016-08-15] (HP Inc.) S3 HwmRecordService; C:\Program Files (x86)\GIGABYTE\SIV\HwmRecordService.exe [62784 2015-10-12] (GIGA-BYTE TECHNOLOGY CO., LTD.) R2 igfxCUIService2.0.0.0; C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_f54a4c96d3261a9e\igfxCUIService.exe [324592 2016-12-17] (Intel Corporation) R2 Killer Service V2; C:\Program Files\Killer Networking\Network Manager\KillerService.exe [451072 2015-10-06] (Rivet Networks) [Fichier non signé] R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [4317648 2016-12-14] (Malwarebytes) S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [2889896 2016-09-15] (Microsoft Corporation) R2 Smart TimeLock; C:\Program Files (x86)\GIGABYTE\Smart TimeLock\TimeMgmtDaemon.exe [102400 2013-02-22] (Gigabyte Technology CO., LTD.) [Fichier non signé] S4 ss_conn_service; C:\Program Files\SAMSUNG\USB Drivers\25_escape\conn\ss_conn_service.exe [743688 2014-12-03] (DEVGURU Co., LTD.) S4 VMwareHostd; C:\Program Files (x86)\VMware\VMware Workstation\vmware-hostd.exe [12472904 2016-11-11] () S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [347328 2016-07-16] (Microsoft Corporation) S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103720 2016-07-16] (Microsoft Corporation) S4 WsAppService; C:\Program Files (x86)\Wondershare\WAF\2.3.1.1\WsAppService.exe [437392 2016-10-10] (Wondershare) R2 XTU3SERVICE; C:\Program Files (x86)\Intel\Intel(R) Extreme Tuning Utility\XtuService.exe [19192 2015-06-30] (Intel(R) Corporation) ===================== Pilotes (Avec liste blanche) ====================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R0 3F0C52D8; C:\WINDOWS\System32\drivers\3F0C52D8.sys [478392 2016-12-24] (Kaspersky Lab ZAO) R0 ambakdrv; C:\WINDOWS\System32\ambakdrv.sys [30648 2015-02-26] () [Fichier non signé] R2 ammntdrv; C:\WINDOWS\system32\ammntdrv.sys [151480 2015-02-26] () [Fichier non signé] R2 amwrtdrv; C:\WINDOWS\system32\amwrtdrv.sys [17848 2015-02-26] () [Fichier non signé] S3 androidusb; C:\WINDOWS\System32\Drivers\wsadb.sys [40720 2016-11-05] (Google Inc) R1 AppleCharger; C:\WINDOWS\System32\DRIVERS\AppleCharger.sys [22240 2013-10-28] () R1 Avgfwfd; C:\WINDOWS\system32\DRIVERS\avgfwd6a.sys [97208 2015-08-29] (AVG Technologies CZ, s.r.o.) S3 AX88179; C:\WINDOWS\System32\drivers\ax88179_178a.sys [74240 2016-07-16] (ASIX Electronics Corp.) R1 BfLwf; C:\WINDOWS\system32\DRIVERS\bwcW10x64.sys [141896 2015-09-30] (Rivet Networks, LLC.) S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [129152 2016-12-17] (Samsung Electronics Co., Ltd.) S3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [30264 2016-07-25] (Disc Soft Ltd) S3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [47672 2016-07-25] (Disc Soft Ltd) S3 e1dexpress; C:\WINDOWS\system32\DRIVERS\e1d65x64.sys [543184 2016-12-17] (Intel Corporation) R3 eagleGet; C:\WINDOWS\System32\Drivers\eagleGet.sys [87192 2016-07-03] (eagleGet) S3 epmntdrv; C:\WINDOWS\system32\epmntdrv.sys [24056 2016-01-14] () S3 epmntdrv; C:\WINDOWS\SysWOW64\epmntdrv.sys [21496 2016-01-14] () R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae64.sys [77416 2016-12-14] () S3 ETDSMBus; C:\WINDOWS\System32\drivers\ETDSMBus.sys [31832 2016-07-20] (ELAN Microelectronic Corp.) R0 EUBKMON; C:\WINDOWS\System32\drivers\EUBKMON.sys [48168 2015-12-10] () S3 EuGdiDrv; C:\WINDOWS\system32\EuGdiDrv.sys [10848 2016-07-11] () S3 EuGdiDrv; C:\WINDOWS\SysWOW64\EuGdiDrv.sys [10208 2016-07-11] () R0 GDBehave; C:\WINDOWS\System32\drivers\GDBehave.sys [180808 2016-10-27] (G Data Software AG) S0 GDElam; C:\WINDOWS\System32\DRIVERS\GDElam.sys [117904 2016-04-21] (G Data Software AG) R3 GDKBB; C:\WINDOWS\system32\drivers\GDKBB64.sys [37400 2016-10-27] (G Data Software AG) R3 GDKBFlt; C:\WINDOWS\system32\drivers\GDKBFlt64.sys [30280 2016-10-27] (G DATA Software AG) R1 GDMnIcpt; C:\WINDOWS\system32\drivers\MiniIcpt.sys [274400 2016-10-27] (G Data Software AG) R3 GDPkIcpt; C:\WINDOWS\system32\drivers\PktIcpt.sys [105544 2016-10-27] (G Data Software AG) R1 gdwfpcd; C:\WINDOWS\System32\drivers\gdwfpcd64.sys [77384 2016-10-27] (G DATA Software AG) R1 GRD; C:\WINDOWS\system32\drivers\GRD.sys [116296 2016-10-27] (G Data Software) R1 HookCentre; C:\WINDOWS\system32\drivers\HookCentre.sys [153160 2016-10-27] (G Data Software AG) R3 igfx; C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_f54a4c96d3261a9e\igdkmd64.sys [11027944 2016-12-17] (Intel Corporation) R2 iocbios2; C:\Program Files (x86)\Intel\Intel(R) Extreme Tuning Utility\Drivers\IocDriver\64bit\iocbios2.sys [30224 2015-05-28] (Intel Corporation) R3 KillerEth; C:\WINDOWS\System32\drivers\e2xw10x64.sys [162456 2017-01-07] (Qualcomm Atheros, Inc.) S3 ksapi64; C:\WINDOWS\system32\drivers\ksapi64.sys [56680 2016-09-03] (Kingsoft Corporation) R2 MBAMChameleon; C:\WINDOWS\system32\drivers\MBAMChameleon.sys [176064 2017-01-07] (Malwarebytes) S3 MBAMFarflt; C:\WINDOWS\system32\drivers\farflt.sys [102856 2017-01-09] (Malwarebytes) S3 MBAMProtection; C:\WINDOWS\system32\drivers\mbam.sys [43968 2017-01-09] (Malwarebytes) R3 MBAMSwissArmy; C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [250816 2017-01-11] (Malwarebytes) S3 MBAMWebProtection; C:\WINDOWS\system32\drivers\mwac.sys [91584 2017-01-09] (Malwarebytes) S3 MTsensor; C:\WINDOWS\System32\drivers\ASACPI.sys [17280 2013-05-17] () S3 NetAdapterCx; C:\WINDOWS\System32\drivers\NetAdapterCx.sys [90624 2016-07-16] () S3 netr28ux; C:\WINDOWS\System32\drivers\netr28ux.sys [2224128 2016-07-16] (MediaTek Inc.) R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_3f929cc119e3b994\nvlddmkm.sys [14200880 2017-01-07] (NVIDIA Corporation) S3 RTSUER; C:\WINDOWS\system32\Drivers\RtsUer.sys [418784 2016-12-17] (Realsil Semiconductor Corporation) S3 ssudcdf; C:\WINDOWS\System32\drivers\ssudcdf.sys [36608 2014-01-22] (DEVGURU Co., LTD.(www.devguru.co.kr)) S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [221824 2016-12-17] (Samsung Electronics Co., Ltd.) S3 ssudrmnet; C:\WINDOWS\System32\drivers\ssudrmnet.sys [70400 2014-04-11] (DEVGURU Co., LTD.) S3 taphss6; C:\WINDOWS\System32\drivers\taphss6.sys [42088 2015-12-19] (Anchorfree Inc.) U5 UnlockerDriver5; C:\Program Files\Unlocker\UnlockerDriver5.sys [12352 2010-07-01] () S1 UsbCharger; C:\WINDOWS\System32\DRIVERS\UsbCharger.sys [22240 2013-10-24] () S3 VBoxUSB; C:\WINDOWS\System32\Drivers\VBoxUSB.sys [135768 2016-06-16] (Oracle Corporation) R1 veracrypt; C:\WINDOWS\System32\drivers\veracrypt.sys [467368 2016-10-28] (IDRIX) R1 vmkbd3; C:\WINDOWS\system32\DRIVERS\vmkbd.sys [52288 2016-11-11] (VMware, Inc.) R0 vsock; C:\WINDOWS\system32\DRIVERS\vsock.sys [91712 2016-09-30] (VMware, Inc.) R2 vstor2-mntapi20-shared; C:\Windows\SysWow64\drivers\vstor2-mntapi20-shared.sys [34520 2015-07-09] (VMware, Inc.) S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [44056 2016-07-16] (Microsoft Corporation) S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [290144 2016-07-16] (Microsoft Corporation) S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [123232 2016-07-16] (Microsoft Corporation) R1 ZAM_Guard; C:\WINDOWS\System32\drivers\zamguard64.sys [203680 2016-12-24] (Zemana Ltd.) S1 ZAM; \??\C:\WINDOWS\System32\drivers\zam64.sys [X] ========================== MD5 Pilotes ======================= C:\WINDOWS\System32\drivers\1394ohci.sys A7901875F89D011C38CF52C98ACF5B29 C:\WINDOWS\System32\drivers\3F0C52D8.sys BEE1682DA217A4AD46C36896769AA580 C:\WINDOWS\System32\drivers\3ware.sys EE1CCC54F75C24727A218F98FC5349DA C:\WINDOWS\System32\drivers\ACPI.sys 73C73E1AA0D4D727A04AAAB120B7F56A C:\WINDOWS\System32\drivers\AcpiDev.sys 0935496EF9624B46B935CB35ECE1F205 C:\WINDOWS\System32\Drivers\acpiex.sys D6794C31F4077B71433988787BAA926E C:\WINDOWS\System32\drivers\acpipagr.sys FE5F656D6B35089DA39112E74EC6A85A C:\WINDOWS\System32\drivers\acpipmi.sys 2F242941E4DFF69B883D77A16F039557 C:\WINDOWS\System32\drivers\acpitime.sys C247E35A21682DA8D0DC3AF9F025FCC5 C:\WINDOWS\System32\drivers\ADP80XX.SYS 49B9DB97AFC85DCCBDACDAB2E90085B7 C:\WINDOWS\system32\drivers\afd.sys 323AA1953ED9C01E23F740FA891FE064 C:\WINDOWS\System32\DRIVERS\ahcache.sys 23522E5D581F7722B1B5B86737CAE39C C:\WINDOWS\System32\ambakdrv.sys E019017558B28A707119F8545AD1A1C0 C:\WINDOWS\System32\drivers\amdk8.sys DF21E05E41E5AC3F13F304D91457649A C:\WINDOWS\System32\drivers\amdppm.sys 45D0AA4BB90B821DF92E8F19ABED0C5E C:\WINDOWS\System32\drivers\amdsata.sys 74FFBC43B4B899C9A8CA06A892F2CE73 C:\WINDOWS\System32\drivers\amdsbs.sys AAB0F1D8D7E54761ABAB13AF161F1680 C:\WINDOWS\System32\drivers\amdxata.sys F91BAAC4237C40352A807000F3B716F9 C:\WINDOWS\system32\ammntdrv.sys 46014EDFDC8AF8733E14947448D122C5 C:\WINDOWS\system32\amwrtdrv.sys 7CD08E63219E00BB206077F5BA708677 C:\WINDOWS\System32\Drivers\wsadb.sys 663DC57CDF45FBF523087612856EBE55 C:\WINDOWS\System32\drivers\appid.sys BC121C099C6C659126AD2102AFDFF8CF C:\WINDOWS\System32\DRIVERS\AppleCharger.sys E4D0F0D5EB374D8BACF40E30E9771D60 C:\WINDOWS\System32\drivers\applockerfltr.sys 68190E2BADF23BD782344970E5B5DE9E C:\WINDOWS\system32\drivers\AppvStrm.sys B66ED2CB37F7E4696A51612AFBA08834 C:\WINDOWS\system32\drivers\AppvVemgr.sys 8DC924848E20F890BEFC6B31136D46BE C:\WINDOWS\system32\drivers\AppvVfs.sys 9ADC5A8BEE10E174F95349E9232D8E76 C:\WINDOWS\System32\drivers\arcsas.sys E6AB1F0B4C3D4E0D2A88332D76FECD03 C:\WINDOWS\System32\drivers\asyncmac.sys 61C5A480C43E7E8E49C42869F49D0D3E C:\WINDOWS\System32\drivers\atapi.sys A10F989A812B57B9695F6C305907C9C6 C:\WINDOWS\system32\DRIVERS\avgfwd6a.sys 7D869864BDA9C5B3D97B77F3FACC24BC C:\WINDOWS\System32\drivers\ax88179_178a.sys F0BAD33206C9913ED1AD00901A086BA5 C:\WINDOWS\System32\drivers\bxvbda.sys 61BAC67048CA5C1D08C48FCC8012B613 C:\WINDOWS\System32\drivers\BasicDisplay.sys 68F72B05EBC6D1779C0D60A147C7CA0B C:\WINDOWS\System32\drivers\BasicRender.sys 23156E7EDAF613D839E2839746B168D3 C:\WINDOWS\System32\drivers\bcmfn.sys 3F5523DCEFE42B385659C5CB46A6B810 C:\WINDOWS\System32\drivers\bcmfn2.sys 0B750A6A6D847E73CA48ADD7A0F5A393 C:\Windows\System32\Drivers\Beep.sys 0A508274355745EEF01C6BE3198D02C4 C:\WINDOWS\system32\DRIVERS\bwcW10x64.sys 4C2A8A475355B067224C0B7550BB546F C:\WINDOWS\System32\DRIVERS\bowser.sys 9CD2A4821DE379305CACB2E99AD8953A C:\WINDOWS\System32\drivers\BthAvrcpTg.sys 722036C26D2C4E50EC2A2EC5FD678846 C:\WINDOWS\System32\drivers\bthhfenum.sys C2E31BE025D46D189E38DD1EDF07837A C:\WINDOWS\System32\drivers\BthHFHid.sys F7CD605FC0B0B22F3F6F247595E3A655 C:\WINDOWS\System32\drivers\bthmodem.sys 535DC41A33630AE4C262406F9E981C03 C:\WINDOWS\System32\drivers\buttonconverter.sys 23F9EF739F685E07482116425E7879AA C:\WINDOWS\System32\drivers\capimg.sys 60EB6A4CE3E21887D302350631C16F26 C:\WINDOWS\System32\DRIVERS\cdfs.sys F8FB51B9EF6372610E9B31A1D86B62FC C:\WINDOWS\System32\drivers\cdrom.sys 613D0137C269187FA298A157E3D14A18 C:\WINDOWS\System32\drivers\cht4sx64.sys 0AED948DA8D5F08B3D6F12E4E2089736 C:\WINDOWS\System32\drivers\cht4vx64.sys 0002A0FDE087C1657AB31CE73077539C C:\WINDOWS\System32\drivers\circlass.sys 6B4F90A287D75CCD78694F6790C911B2 C:\WINDOWS\System32\drivers\CLFS.sys B72D26074E72A757D788FB1BEF8B2F2E C:\WINDOWS\System32\drivers\registry.sys EEC3A4A98AE1A337E3CD1483AD6F2E15 C:\WINDOWS\System32\drivers\CmBatt.sys 429623E266EF067A44E8CF148E9DFB9B C:\WINDOWS\System32\Drivers\cng.sys B0D9B87B795B7833C9152441CBD55CC4 C:\WINDOWS\System32\DRIVERS\cnghwassist.sys 3DB10C59405931E2C72EFB82C1AF97D1 C:\WINDOWS\System32\drivers\lvbflt64.sys 81F2B52C47B8AD32CC4FF967FC8D73DA C:\WINDOWS\System32\DriverStore\FileRepository\compositebus.inf_amd64_a140581a8f8b58b7\CompositeBus.sys 34C935AF2A414572B412B3556586D783 C:\WINDOWS\System32\drivers\condrv.sys 44EEEB2382F566999287E13F2067693C C:\WINDOWS\System32\drivers\csc.sys 03214883D52FAD46573233852344C72C C:\WINDOWS\System32\drivers\dam.sys 039B5A8CBD5C75D1C46DF15F7C74D136 C:\Windows\System32\Drivers\DefragFS.sys 38454C2221DFA19B4B7AA30F29E560D4 C:\WINDOWS\System32\Drivers\dfsc.sys 0D1D392ED2597F295956D058D33BD7C3 C:\WINDOWS\system32\DRIVERS\ssudbus.sys D722BC26F7431A4DA9A183E56CA9FEE3 C:\WINDOWS\System32\drivers\disk.sys 35B9D46560339A5A7F0CAC6ED702C817 C:\WINDOWS\System32\drivers\dmvsc.sys 815F45161A4571C2C44491564F3D5968 C:\WINDOWS\system32\DRIVERS\drmkaud.sys AE6BD4C879A8C849E53947C92DF3B3A0 C:\WINDOWS\System32\drivers\dtlitescsibus.sys 679FF716052109392D870F6A6C4A3535 C:\WINDOWS\System32\drivers\dtliteusbbus.sys E23FDD696839A4790682CA66C48D3F2F C:\WINDOWS\System32\drivers\dxgkrnl.sys 19F2B54EE8861D90579BD0E3AE5182F9 C:\WINDOWS\system32\DRIVERS\e1d65x64.sys 7FB6913DBAE787A946790FF0835714B8 C:\WINDOWS\System32\drivers\e1i63x64.sys 83E4A14F851341C933C3235BFB882ECA C:\WINDOWS\System32\Drivers\eagleGet.sys 5E5BA8DCEBAD3F107F4174ABBB4F5891 C:\WINDOWS\System32\drivers\evbda.sys 7EC6FC0266D74BD47ABB130A328B70EC C:\WINDOWS\System32\drivers\EhStorClass.sys 8D74B8B5D6F7C5BC4C525BAF2B083FF1 C:\WINDOWS\System32\drivers\EhStorTcgDrv.sys 2A9817B5A9260D8F60D52E36BEF10443 C:\WINDOWS\System32\Drivers\ElbyCDIO.sys BDD265EEB37DF5953A547FE412E2472F C:\WINDOWS\system32\epmntdrv.sys DB6C3DBF15DCFE149E247B44FEA6AD46 C:\WINDOWS\SysWOW64\epmntdrv.sys 5F2D1F871FF277EDE5FAEB971D8335ED C:\WINDOWS\System32\drivers\errdev.sys 77B60DEC7DCB4233E4A69D3F52E5DB24 C:\WINDOWS\system32\drivers\mbae64.sys 4D7F3114147C31390262F19F74E5BF07 C:\WINDOWS\System32\drivers\ETDSMBus.sys B5BB7C38E9EEC3FB462861E8E9ED1912 C:\WINDOWS\System32\drivers\eubakup.sys 83EF0C33B56360761AE2DDB86E47B2E8 C:\WINDOWS\System32\drivers\EUBKMON.sys CCF2072C27B5F84447A0829014C43760 C:\WINDOWS\system32\drivers\eudskacs.sys 44A0838432C8A31A5D6CBE0BF348CED6 C:\WINDOWS\system32\drivers\EuFdDisk.sys D05585505CB20235E7C665158464551D C:\WINDOWS\system32\EuGdiDrv.sys 08C997734B2CECE882656BB2855E6E76 C:\WINDOWS\SysWOW64\EuGdiDrv.sys 886CDC85E0B6C9AC2547F919E5B224A3 C:\Windows\System32\Drivers\exfat.sys FCD2C63754C2E739A8EEAD9BC63F9DDC C:\Windows\System32\Drivers\fastfat.sys FA918EC296EB410FF02867D008D02421 C:\WINDOWS\System32\drivers\fdc.sys 99598ECA5E41996E005D5B9D9FF1EFA2 C:\WINDOWS\System32\drivers\filecrypt.sys F44F666B0EACC3181544FFCF8CA0FFC7 C:\WINDOWS\System32\drivers\fileinfo.sys 78A210DDFDF2C9EC884631D2DAA573F0 C:\WINDOWS\System32\drivers\filetrace.sys 1A97DB5E701A186989F3795223C3BE39 C:\WINDOWS\System32\drivers\flpydisk.sys 46626665F0E5906E45619B4EFD6186B8 C:\WINDOWS\System32\drivers\fltmgr.sys FDA72ACA14D516D18C33AFCD0FD9260F C:\WINDOWS\System32\drivers\FsDepends.sys D152CCBFC8251670BF0AAFE00D6BC782 C:\Windows\System32\Drivers\Fs_Rec.sys 6D6BB5C7363CD35FA715E826F3D029EE C:\WINDOWS\System32\DRIVERS\fvevol.sys 8EEC4925C03E375C4EC496E45C44139A C:\WINDOWS\System32\drivers\GDBehave.sys 3F24DCB0037A0121C220CB8EAF9A340D C:\WINDOWS\System32\DRIVERS\GDElam.sys 1314062567B9ED86BFFDE5D8C48C52AE C:\WINDOWS\system32\drivers\GDKBB64.sys DD7D5196EB9C4321EA57B668AF873840 C:\WINDOWS\system32\drivers\GDKBFlt64.sys 4A9000A1B02C394CD2C5E6450A04002D C:\WINDOWS\system32\drivers\MiniIcpt.sys EE1927F18C9298D96A47017272D591E8 C:\WINDOWS\system32\drivers\PktIcpt.sys DC5200C3055D6EB5355F8975FB38E9EE C:\WINDOWS\gdrv.sys 9AB9F3B75A2EB87FAFB1B7361BE9DFB3 C:\WINDOWS\System32\drivers\gdwfpcd64.sys 4E294DB229885177DA056A3471476A19 C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys ==> Le MD5 est légitime C:\WINDOWS\System32\drivers\vmgencounter.sys EF78034773CE506323655A868C949144 C:\WINDOWS\System32\drivers\genericusbfn.sys B55FEBC6A00DAA1FE074F020B6907516 C:\WINDOWS\System32\Drivers\msgpioclx.sys DDD8A8CDDC7F13EF57D1DAAE71865936 C:\WINDOWS\System32\drivers\gpuenergydrv.sys 7ACD8F69B5D6EC97E6D2C006E19BED88 C:\WINDOWS\system32\drivers\GRD.sys 6809BA27F97EAFC5C30F743E30DE1DB6 C:\WINDOWS\system32\DRIVERS\hcmon.sys B23BDC42F7F8EB7A37587FA029B81ADE C:\WINDOWS\system32\DRIVERS\HdAudio.sys 217230B984AB2954E2FA5E36578D7B08 C:\WINDOWS\System32\drivers\HDAudBus.sys 10E3515FE5DBA6656FA62C29342EC4A1 C:\WINDOWS\System32\drivers\HidBatt.sys B90D284B97CD4CA9DE7430AAAD887A56 C:\WINDOWS\System32\drivers\hidbth.sys B2FE11643CC6ACDEE6C247DD36018FDB C:\WINDOWS\System32\drivers\hidi2c.sys D24355488A2D4D2323518EC1AC7A6D9E C:\WINDOWS\System32\drivers\hidinterrupt.sys 0AF9ABBA4F3F55C6C803890D64BC3C29 C:\WINDOWS\System32\drivers\hidir.sys CDBCF8E9AB06D88A1E1191D32F320C5D C:\WINDOWS\System32\drivers\hidusb.sys D8536CB438CC4CCDAE047B768EED22B2 C:\WINDOWS\system32\drivers\HookCentre.sys FEDBFAFC5BAD0AE52ADE4DF75DBFF69F C:\WINDOWS\System32\drivers\HpSAMD.sys F5CA18197B4646E04DB9EB2D6642CC4D C:\WINDOWS\System32\drivers\HTTP.sys A10C7C1E69FC90620C7BF2E51302A01F C:\WINDOWS\System32\drivers\hvservice.sys 74FC79C52395B10FFD0B55CF22CF88FC C:\WINDOWS\System32\drivers\hwpolicy.sys 771EDDA9830A3079F996F34D681FB6E5 C:\WINDOWS\System32\drivers\hyperkbd.sys 3B9F315E7FA72CC25228EB097DD9C694 C:\WINDOWS\System32\drivers\i8042prt.sys B54B30992620C97230013A74461C8517 C:\WINDOWS\System32\drivers\iagpio.sys C6B8743B213F06AA60943D8366FE968F C:\WINDOWS\System32\drivers\iai2c.sys 9A2A2F3C69B9A30B6E78536F6D258BAD C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2.sys 5A0E850F8CD17791A3E6A3CF81D0CA28 C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys 7508F1096803385D6376BFD0BD473AC4 C:\WINDOWS\System32\drivers\iaLPSSi_GPIO.sys 16A10CCEDCF5AC4CAAE43DC9FC40392F C:\WINDOWS\System32\drivers\iaLPSSi_I2C.sys EB82A11613326691508D9ED9A4FE29E7 C:\WINDOWS\System32\drivers\iaStorA.sys 7675D8E247732F45F60AA450BA2C207D C:\WINDOWS\System32\drivers\iaStorAV.sys 97E553D03219D3D51705C7235D9EAEBD C:\WINDOWS\System32\drivers\iaStorV.sys 8350FE3BCDE3428BC040877BB7E9EAEB C:\WINDOWS\System32\drivers\ibbus.sys 3BA03F7C7700DDF4C383DDE9252F5817 C:\WINDOWS\System32\drivers\ICCWDT.sys 3B529CA6E6537E89547B4815FCE95A76 C:\WINDOWS\system32\DRIVERS\idmwfp.sys 0EF1E8299F58E1369B067F7B65D9F773 C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_f54a4c96d3261a9e\igdkmd64.sys EA9EC7FC5A11EE19AF785580C8160C37 C:\WINDOWS\System32\drivers\IndirectKmd.sys 2A01C96DF5802D3434634E55C91232D8 C:\WINDOWS\system32\drivers\intelaud.sys AFA7F1696B431C07729E9BF2565D6045 C:\WINDOWS\system32\drivers\RTKVHD64.sys 69FE611FEFE57AD7DAA9627D1F47AAE2 C:\WINDOWS\system32\DRIVERS\IntcDAud.sys A6087A824507CAB1ED568895F8081950 C:\WINDOWS\System32\drivers\intelide.sys 9F7E87F6595D065A8A200A291043045E C:\WINDOWS\System32\drivers\intelpep.sys A6BD2E20AE1BC5CB2776C87C28E4F4CA C:\WINDOWS\System32\drivers\intelppm.sys 2A48DA39542636DB0FA3BA915385D1B3 C:\Program Files (x86)\Intel\Intel(R) Extreme Tuning Utility\Drivers\IocDriver\64bit\iocbios2.sys D9B56324C4A13F51A5B22238136C85D0 C:\WINDOWS\System32\drivers\iorate.sys DB32758F3A7F6CCE81A5430080A2EA65 C:\WINDOWS\System32\DRIVERS\ipfltdrv.sys FE85D0A86CA7A5A99CF8CD04DE7F80AE C:\WINDOWS\System32\drivers\IPMIDrv.sys 450DBDD716C7911F83E05F78EE18BFA2 C:\WINDOWS\System32\drivers\ipnat.sys F1DAECC3B3D6399875D4F10529D6A77C C:\WINDOWS\system32\drivers\irda.sys 7475A2903BB704B446AA6309E34D3362 C:\WINDOWS\System32\drivers\irenum.sys 9725E7F0C64CE9916A5CDABE8D6E13C3 C:\WINDOWS\System32\drivers\isapnp.sys 58040898883A96160D41739C80328BBF C:\WINDOWS\System32\drivers\msiscsi.sys C9FD02D62E09337B67B0C61EC8CA38CC C:\WINDOWS\System32\drivers\iwdbus.sys DA0A946E6C4228B659FA798EF0B075C1 C:\WINDOWS\System32\drivers\kbdclass.sys 210808437570BDDEE71A43535E3A2D30 C:\WINDOWS\System32\drivers\kbdhid.sys 0B779E9FC426CA2268D28181FA6C222F C:\WINDOWS\System32\drivers\kdnic.sys 813BA3EB2CE038F2A5382DDD75CAD60B C:\WINDOWS\System32\drivers\e2xw10x64.sys F4B2D598BBDA47CA29024AC52F1804CC C:\WINDOWS\system32\drivers\ksapi64.sys 6968FC608A61791C13CEFE6C8496CBD2 C:\WINDOWS\System32\Drivers\ksecdd.sys 705C0F8BCCEF6E7CB704CCB454192D7E C:\WINDOWS\System32\Drivers\ksecpkg.sys 55AD13E2BAFC5AB53A10F8C271F5D242 C:\WINDOWS\system32\drivers\ksthunk.sys 4ED115CD1A1099705F56B5E0FFF97CC6 C:\WINDOWS\System32\drivers\LEqdUsb.Sys EAB70270BDDCFEF56FCC7425C2D9883D C:\WINDOWS\System32\drivers\LHidEqd.Sys 5EBB7C1FC685D45A1D3D8B2B9A656E48 C:\WINDOWS\System32\drivers\LHidFilt.Sys AFDFA4A6B0F7B15AA38E494FD4595741 C:\WINDOWS\System32\drivers\lltdio.sys 5933A6673F00D8255C52957E40C2D601 C:\WINDOWS\System32\drivers\LMouFilt.Sys C3E82B320F34C97F32B8026F4C249BEF C:\WINDOWS\System32\drivers\lsi_sas.sys 8E1B0946948CCC0BC1FA3CB70374A795 C:\WINDOWS\System32\drivers\lsi_sas2i.sys 4F68163FC04C973500DC4DA0946917B0 C:\WINDOWS\System32\drivers\lsi_sas3i.sys E5AC5F2815938651CDCC27F425474673 C:\WINDOWS\System32\drivers\lsi_sss.sys CCF6EC9FB9B8F18E05B4253E81013E48 C:\WINDOWS\system32\drivers\luafv.sys C9579D32219E5B936AC3A48D470117EC C:\WINDOWS\System32\Drivers\LUsbFilt.Sys C71AD919F64815B8E7C027AB167A1859 C:\WINDOWS\system32\DRIVERS\lvrs64.sys A0A527569856B9814E8920F52EBB67F5 C:\WINDOWS\system32\DRIVERS\lvuvc64.sys 415E344294D1C0D04627B29146F68481 C:\WINDOWS\system32\drivers\MBAMChameleon.sys 3BEC6134F1E45AEF5E971F69F0D38510 C:\WINDOWS\system32\drivers\farflt.sys F3960CA85778E5D7611EE0F501972340 C:\WINDOWS\system32\drivers\mbam.sys 88BD122C3A35DE63D75D382DF75554CE C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys ABB371D9AEF728B0489B0E6872B4A1C0 C:\WINDOWS\system32\drivers\mwac.sys 205C2D377E1CA85A4465491DB8064DA9 C:\WINDOWS\system32\drivers\MBfilt64.sys 89A17135A3024FC8D6E7CC2EEB7295F1 C:\WINDOWS\System32\drivers\megasas.sys C3CDCCF07486BD2616A7B82946E07AC0 C:\WINDOWS\System32\drivers\MegaSas2i.sys 2CF0CB2A0ED68C5455371E84C16F9627 C:\WINDOWS\System32\drivers\megasr.sys FADB2FE017E69EECE0E1BA78661C2E8C C:\WINDOWS\System32\drivers\TeeDriverW8x64.sys C4A4BE9C6EDA9640F272B48FC0AB4F06 C:\WINDOWS\System32\drivers\mlx4_bus.sys FD60818B66B2E8A5415EA840E99A9D8F C:\WINDOWS\system32\drivers\mmcss.sys 68F6977F1CFBAAC770D940A8C0326FA1 C:\WINDOWS\System32\drivers\modem.sys 0D50B3F3AB32D416786B58D4553859CE C:\WINDOWS\System32\drivers\monitor.sys 9CCCB7FC3EDADEBA461D78615A6011A6 C:\WINDOWS\System32\drivers\mouclass.sys 27A07B2FB2E3057DA8DAEA4F25D843C7 C:\WINDOWS\System32\drivers\mouhid.sys 7BD6E7F7C9001AB21B8362CFFEE80B25 C:\WINDOWS\System32\drivers\mountmgr.sys F5BDAEE4B7D369D4C74668DCFBA3FF10 C:\WINDOWS\System32\drivers\mpsdrv.sys 30844BD376F9D01E62C820BEF446F1F8 C:\WINDOWS\system32\drivers\mrxdav.sys 25D32BE04FE0A23FDF57FD5382757672 C:\WINDOWS\System32\DRIVERS\mrxsmb.sys E671EDAB0726E05ECEF4058B4CD73C4D C:\WINDOWS\System32\DRIVERS\mrxsmb10.sys D4D12BC29DE0F09280868FDCA65B3474 C:\WINDOWS\System32\DRIVERS\mrxsmb20.sys 93A77008A8932FC84A173C4E97E52874 C:\WINDOWS\System32\drivers\bridge.sys 74C9D21523DAE0C18F413C196DF0058A C:\Windows\System32\Drivers\Msfs.sys F01B849D9D4A8CEAF32D4FDBD0B83C92 C:\WINDOWS\System32\drivers\msgpiowin32.sys 22ECD8F5D1DFADF2011BBB1700CB871D C:\WINDOWS\System32\drivers\mshidkmdf.sys FD870F6968A145E4D2BA8A8842686B03 C:\WINDOWS\System32\drivers\mshidumdf.sys 30364757963A028CE5DF0FBAAC270173 C:\WINDOWS\System32\drivers\msisadrv.sys 6BB0FEDDAE7135FA37FFAFF4D9E0E876 C:\WINDOWS\system32\DRIVERS\MSKSSRV.sys 13D614E6B51ECF36746C48CE829FA7F6 C:\WINDOWS\System32\drivers\mslldp.sys 642CDE46351D5D2D90311E77072AB46D C:\WINDOWS\system32\DRIVERS\MSPCLOCK.sys F2302A5CE63CA7673200FAFCEEEDB6AF C:\WINDOWS\system32\DRIVERS\MSPQM.sys 6114512EA26E835BA522C63635429DB5 C:\Windows\System32\Drivers\MsRPC.sys AA538E16E644D00E3BA5349BBA9598EC C:\WINDOWS\System32\drivers\mssecflt.sys 7ACFE7435317E791FF9EED2F49B402F2 C:\WINDOWS\System32\drivers\mssmbios.sys 0543BEFD41EC4D25C7F7CF36409CEC7D C:\WINDOWS\system32\DRIVERS\MSTEE.sys C1569E4DB8EFE3617847BF041A3C842F C:\WINDOWS\System32\drivers\MTConfig.sys 130B16970154BA9876B09E5C4BAC63BE C:\WINDOWS\System32\drivers\ASACPI.sys 640617B6E682A150C36BE39D78547F6C C:\WINDOWS\System32\Drivers\mup.sys 15D987C8F6CCD4AC94E070C5986762CB C:\WINDOWS\System32\drivers\mvumis.sys 3D2C5B4995CA0751D32DEA0DE9FDFE44 C:\WINDOWS\System32\DRIVERS\nwifi.sys DB31EBB04C871F422C36A0962DA7D38B C:\WINDOWS\System32\drivers\ndfltr.sys 629CB21AC49C8867E0F29DF1C16DB7B4 C:\WINDOWS\System32\drivers\ndis.sys D5564FC81350458ED570528C4E3B1CCF C:\WINDOWS\System32\drivers\ndiscap.sys 6DD605338FAAF6BA17662AA874E0D162 C:\WINDOWS\System32\drivers\NdisImPlatform.sys E34196F285F8B8879E1FF36C31F7179E C:\WINDOWS\System32\DRIVERS\ndistapi.sys 1FAD2398673F30CEC616B89C46B7DCBA C:\WINDOWS\System32\drivers\ndisuio.sys AEB8ECBE66CC46854066CB1F5623E179 C:\WINDOWS\System32\drivers\NdisVirtualBus.sys 7340104C2BF2F126714F7CDE85E63610 C:\WINDOWS\System32\drivers\ndiswan.sys 07ADC1F8DCBEB8104D75129B11584B8C C:\WINDOWS\System32\DRIVERS\ndiswan.sys 07ADC1F8DCBEB8104D75129B11584B8C C:\WINDOWS\System32\DRIVERS\NDProxy.sys 78A12E3DF035B5D054986949B19BE43C C:\WINDOWS\System32\drivers\Ndu.sys 04C8859355C1DC9C0FA198D1894D71C2 C:\WINDOWS\System32\drivers\NetAdapterCx.sys 6C76780A01FC2B885BD6E957B5C36B02 C:\WINDOWS\System32\drivers\netbios.sys 5D1513BD6430307C9DB86C6E351372ED C:\WINDOWS\System32\DRIVERS\netbt.sys 6FEBB0A847FFD5F057B9AC8889F1B9A7 C:\WINDOWS\System32\drivers\netr28ux.sys BA0C8F0B8B10968B63D85D665A6C280E C:\Windows\System32\Drivers\Npfs.sys 001CBD7A2CD45C4EB39C01C3C677EF73 C:\WINDOWS\System32\drivers\npsvctrig.sys 90F5DC9802AAA00CD0B6E2AD9E7FFADC C:\WINDOWS\System32\drivers\nsiproxy.sys 0C6218321A09A7B51BA7FFAFBA4CCB21 C:\Windows\System32\Drivers\NTFS.sys DB69C6DA8B3DDFDC547D455CA23A8250 C:\Windows\System32\Drivers\Null.sys 6E6DD6F9DD2A034CF85E94047DBDB992 C:\WINDOWS\system32\drivers\nvhda64v.sys 51739000A933C9381130837270466562 C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_3f929cc119e3b994\nvlddmkm.sys 557A0393BDFED327968A9E695FB4CEBA C:\WINDOWS\System32\drivers\nvraid.sys D261DF41F0840F734856A2B4F5E072C7 C:\WINDOWS\System32\drivers\nvstor.sys 23B702B555EB0436B9DAA0BC63DA65CE C:\WINDOWS\System32\drivers\nvstusb.sys 747117A5250965B9980992A046250ABB C:\WINDOWS\System32\drivers\parport.sys 6B81BF7853D161DB8AC62CD8B9C2DE6B C:\WINDOWS\System32\drivers\partmgr.sys CDBD029BAEC8D09F6FBD404632D9AF28 C:\WINDOWS\System32\drivers\pci.sys E2DD2E5BDCCD225670831B439826065B C:\WINDOWS\System32\drivers\pciide.sys 214DCC87E3898F738075D1341252A552 C:\WINDOWS\System32\drivers\pcmcia.sys AED76A3333B3A31536E430020E0226FC C:\WINDOWS\System32\drivers\pcw.sys E63FB38B6E75B39467492FBAD2CD512A C:\WINDOWS\System32\drivers\pdc.sys 9EA203A07EFA6D74F07F32EF0DAB5CA6 C:\WINDOWS\System32\DRIVERS\PDFsFilter.sys 9F5E27C8B88A8DA1DC93E93A5C27BB9B C:\WINDOWS\System32\drivers\peauth.sys 1509A77F840AA9E72CF8247D0CF2FBDE C:\WINDOWS\System32\drivers\percsas2i.sys 540116170E2135FCD5DDE77702166B67 C:\WINDOWS\System32\drivers\percsas3i.sys 8356F87553BF49C703CF382033815898 C:\WINDOWS\System32\drivers\raspptp.sys 5645B9D9788CCA2C88B9534996ED2D6D C:\WINDOWS\System32\drivers\processr.sys 372913E12677A8CBBBABDD8311894F9D C:\WINDOWS\System32\drivers\pacer.sys FC98407B85A31161851FDE245517574F C:\WINDOWS\system32\drivers\qwavedrv.sys 819602BBBFDB0BD46DEA3715BF0DD452 C:\WINDOWS\System32\DRIVERS\rasacd.sys CDF47037A0939F56D11F699629C276AD C:\WINDOWS\System32\drivers\AgileVpn.sys 28C2EA278070EE12701D0EDF8CB0EC36 C:\WINDOWS\System32\drivers\rasl2tp.sys 17E565710172ED71B8531D8822E1C5D1 C:\WINDOWS\System32\DRIVERS\raspppoe.sys 9387DF155233D45D4E010F4F2FB52A57 C:\WINDOWS\System32\drivers\rassstp.sys F0F4EEDEEBEE7A4244FAFB96A16B5712 C:\WINDOWS\System32\DRIVERS\rdbss.sys AF6963414B820B7C45578ED3300438A7 C:\WINDOWS\System32\drivers\rdpbus.sys 79A415E6FA915EFC00297DAB16EC2635 C:\WINDOWS\System32\drivers\rdpdr.sys 7135785C21CA79D270D11037C43D3F19 C:\WINDOWS\System32\drivers\rdpvideominiport.sys 97A61A3CB2B5CB4FC32B3224EF333448 C:\WINDOWS\System32\drivers\rdyboost.sys 69BB204AE07EE84ECFAB1BF13C4BD04B C:\Windows\System32\Drivers\ReFSv1.sys 940D6F5A2B0A61EE4170DF84F6C95C20 C:\WINDOWS\System32\drivers\rspndr.sys 5FF28F097C9699097B473F8FC7C1AA7D C:\WINDOWS\system32\Drivers\RtsUer.sys 15F7B5181274ED437DFDEF21B44679A4 C:\WINDOWS\System32\drivers\vms3cap.sys B5DAEE69BACA64D2BB004568E22D8756 C:\WINDOWS\System32\drivers\sbp2port.sys 5E73FB63E2DBC75FE0C17DEB0010CE0E C:\WINDOWS\System32\DRIVERS\scfilter.sys 3D9A82B03C92D1FEC42CB171D6F57778 C:\WINDOWS\System32\drivers\scmbus.sys 9055ADDFBA4C8B914C914CE693B55C0A C:\WINDOWS\System32\drivers\scmdisk0101.sys B6F2363584E62960846F7C3F00124A4F C:\WINDOWS\System32\drivers\sdbus.sys 7C3D10BEC8B0DBA00A78C78EB10B3AE2 C:\WINDOWS\System32\drivers\sdstor.sys 120DFCB71D6C502613A9E2D50E16850C C:\WINDOWS\System32\drivers\SerCx.sys 401D706DDC0A7AF18C3DD228ADF74551 C:\WINDOWS\System32\drivers\SerCx2.sys 7084D11083F0CDCA8B5C76F9846ABF5D C:\WINDOWS\System32\drivers\serenum.sys 3FF478A8ED32A83C36581425F6282B6C C:\WINDOWS\System32\drivers\serial.sys 92509187AA171A80521528B36F753E1D C:\WINDOWS\System32\drivers\sermouse.sys 433D38FF6D08B993847EA2A10EB8CB52 C:\WINDOWS\System32\drivers\sfloppy.sys 697D3EE0740AEAB62B66ABCA1C83D13B C:\WINDOWS\System32\drivers\SiSRaid2.sys A34CE1830E45DA98932295FDE4B7908A C:\WINDOWS\System32\drivers\sisraid4.sys A7B5C670770E908DA5FEF5BF1136E933 C:\WINDOWS\System32\drivers\spaceport.sys C994DF90427103CCB80F893FFD2B1CE8 C:\WINDOWS\System32\drivers\SpbCx.sys E03264C4C25B568F92ED1656AD541E64 C:\WINDOWS\System32\DRIVERS\srv.sys E83830BB74AE8CBECEA0ECD94DE436F9 C:\WINDOWS\System32\DRIVERS\srv2.sys 55CA5329D1ADEB8F8034045930147AE4 C:\WINDOWS\System32\DRIVERS\srvnet.sys F13EE0DB1FB1D6946AC3228D7EFCFC8F C:\WINDOWS\System32\drivers\ssudcdf.sys 32C73F69519D51B8775874E0F2808AA1 C:\WINDOWS\system32\DRIVERS\ssudmdm.sys 36C3697CA09B23C77BDF95A6B0B57310 C:\WINDOWS\System32\drivers\ssudrmnet.sys 3B0D5479CFA2FF8302E2D192FD61E800 C:\WINDOWS\System32\drivers\stexstor.sys 29D26E1347AE1BBD4201014E19880B2C C:\WINDOWS\System32\drivers\storahci.sys 53EB8CE34B55A1EE63424C8DB7388BFC C:\WINDOWS\System32\drivers\vmstorfl.sys C5E0ACE4771F5575D9D5B457ABF3AD03 C:\WINDOWS\System32\drivers\stornvme.sys B66D8C75C9BC59D637177AB3B1C569A6 C:\WINDOWS\System32\drivers\storqosflt.sys BEBF85EB4D90E6996047DA027D0ED26E C:\WINDOWS\System32\drivers\storufs.sys 8E73037A6F8938475692FFCC26EBF385 C:\WINDOWS\System32\drivers\storvsc.sys 9D9DED47DA10E845EFF2DD57C94C809B C:\WINDOWS\System32\drivers\swenum.sys 505E0C40B5D0ADDCBB414640F59BD2E0 C:\WINDOWS\System32\drivers\Synth3dVsc.sys 32F46FB0F290D16DAA452B289C985795 C:\WINDOWS\System32\drivers\tap0901.sys 3C32FF010F869BC184DF71290477384E C:\WINDOWS\System32\drivers\taphss6.sys 89D608E7C0E557A9CA52B777E68FFBA5 C:\WINDOWS\System32\drivers\tcpip.sys 4F25E481124059CC593B4C68BC485640 C:\WINDOWS\System32\drivers\tcpip.sys 4F25E481124059CC593B4C68BC485640 C:\WINDOWS\System32\drivers\tcpipreg.sys 8DBB1BE20C36E6D19BCC89EEA00B953C C:\WINDOWS\system32\DRIVERS\tdx.sys 9D2DD64A0B51C56285512DC9454340F6 C:\WINDOWS\System32\drivers\terminpt.sys 06130AFFECEB94525FC2352936576B70 C:\WINDOWS\System32\drivers\tpm.sys 46171262D0E806779DEEDFCAB2F830CC C:\WINDOWS\System32\drivers\TsUsbFlt.sys A6F4025664C9D4BC2A9EDAB4092706D7 C:\WINDOWS\System32\drivers\TsUsbGD.sys 37A96AD493E110C0BF1EE0AC0F9E7DBD C:\WINDOWS\System32\drivers\tsusbhub.sys 5A91FDBA4D3FCB56DAEB8C091B3EB8E1 C:\WINDOWS\System32\drivers\tunnel.sys 79E264287F17D56D768440B0270466DE C:\WINDOWS\System32\drivers\uaspstor.sys AA65954F512BA097DD190790876DD991 C:\WINDOWS\System32\Drivers\UcmCx.sys AB6268022C3A5B529075A39C33904DA6 C:\WINDOWS\System32\Drivers\UcmTcpciCx.sys 7ED2EDA43D21C7A5F589A7960E265C52 C:\WINDOWS\System32\drivers\UcmUcsi.sys 169351463039B45F5CDED9768879F712 C:\WINDOWS\System32\drivers\ucx01000.sys 08A9E3AD29B215484FBB68CDC175DF3A C:\WINDOWS\System32\drivers\udecx.sys DA70AEE267491AA56BC63AA0C0C96CA2 C:\WINDOWS\System32\DRIVERS\udfs.sys FBC5ECF6D5A868D0B116C2DBB02B8168 C:\WINDOWS\System32\drivers\UEFI.sys B918E40FAA9CD118CCA4AD388B748C98 C:\WINDOWS\system32\drivers\UevAgentDriver.sys 166B17AE1DD24D8BA8CA474C7C31148F C:\WINDOWS\System32\drivers\ufx01000.sys 0FD75222C1AD2687AB365BEBEA400DD4 C:\WINDOWS\System32\drivers\UfxChipidea.sys C1A78C53E01C641AE41BFA65797819F5 C:\WINDOWS\System32\drivers\ufxsynopsys.sys 767307212110EBEFB93EC9A5BE9E85B9 C:\WINDOWS\System32\drivers\umbus.sys DC460AAA18CA2342FBBFB2DF9B044472 C:\WINDOWS\System32\drivers\umpass.sys C3CF0377917ECE6D65D7623E1E61568F C:\WINDOWS\System32\drivers\urschipidea.sys 6B46FC140C9AF68E6E7697D66D59CB4D C:\WINDOWS\System32\drivers\urscx01000.sys B4402E7F0923F660270442CE76877ABE C:\WINDOWS\System32\drivers\urssynopsys.sys 9DD431F1B94789CFB527E5D19261F124 C:\WINDOWS\System32\Drivers\usbaapl64.sys F957092C63CD71D85903CA0D8370F473 C:\WINDOWS\system32\drivers\usbaudio.sys 93F169DE94DBAC5DAF4755AFF10193DD C:\WINDOWS\System32\drivers\usbccgp.sys C87E32B90F085970D9637FBAD45EF6FE C:\WINDOWS\System32\DRIVERS\UsbCharger.sys 84A8E67E6CB15B070A2A7A0B3A9F1609 C:\WINDOWS\System32\drivers\usbcir.sys 0B663856474AC41924D9E9112203858F C:\WINDOWS\System32\drivers\usbehci.sys F83D2250256203AC5DA5E8601C1AFDD7 C:\WINDOWS\System32\drivers\usbhub.sys 7FFD26742321919590ED77FCA556D65F C:\WINDOWS\System32\drivers\UsbHub3.sys 7A749B2863B5561BE34B39E8E249AD8F C:\WINDOWS\System32\drivers\usbohci.sys D2109F1F4FEBF1DAC415CDC5DE876479 C:\WINDOWS\System32\drivers\usbprint.sys 29C9572F2D061CFC3C0BD48A3163E343 C:\WINDOWS\system32\DRIVERS\usbscan.sys 2EC7B2C8123236B1233A77281D378DF7 C:\WINDOWS\System32\drivers\usbser.sys 429477D6DEF3321FF7D3EF23CAAADA00 C:\WINDOWS\System32\drivers\USBSTOR.SYS 0CC16F7B91C57AE9A4E44425A295FDAA C:\WINDOWS\System32\drivers\usbuhci.sys C917D09064CDBD18F75ADC9B2C48F847 C:\WINDOWS\System32\drivers\USBXHCI.SYS 95BCCEFBC40D06484CF16144FE79B8A5 C:\WINDOWS\System32\Drivers\VBoxUSB.sys E9962C7B33140D9EB394D8A452F053A9 C:\WINDOWS\System32\drivers\VClone.sys F257A2737280F0076EAE3AB489C06474 C:\WINDOWS\System32\drivers\vdrvroot.sys 0CBDE344FB48E42D78E29469F202ADBC C:\WINDOWS\System32\drivers\veracrypt.sys 2CDD603895DA0914F26EE9F2DDCE24D2 C:\WINDOWS\System32\drivers\VerifierExt.sys 723195568C8755CAD57F7933C5F2C5C2 C:\WINDOWS\System32\drivers\vhdmp.sys 46ADD0CD4473AAEF1C68266A803F704D C:\WINDOWS\System32\drivers\vhf.sys 7929228F0E8B0C2FA0495A17A4FC27F6 C:\WINDOWS\System32\drivers\vmbus.sys AEE432ED868831B1F068E373598F6D93 C:\WINDOWS\System32\drivers\VMBusHID.sys 9444B23FC694B5F90F21B0FC7F10D8DD C:\WINDOWS\System32\drivers\vmci.sys 9C3FD3B0B9376537181067A28F2A5290 C:\WINDOWS\System32\drivers\vmgid.sys 4D0287F566B36536DD812A54C015FC4A C:\WINDOWS\system32\DRIVERS\vmkbd.sys 57F53D802486F346BF0110F56B4B07D1 C:\WINDOWS\system32\DRIVERS\vmnetadapter.sys 1CA7A1295E0DF2DB74EA2005FF1B47D1 C:\WINDOWS\system32\DRIVERS\vmnetbridge.sys 069261D445C6B037DE3FD0773547E91E C:\WINDOWS\system32\DRIVERS\vmnetuserif.sys C4A2FC7244D181C2DB9D26EDF029D5DC C:\WINDOWS\system32\DRIVERS\vmx86.sys 145C7940CE014E0D77911652CC4984CC C:\WINDOWS\System32\drivers\volmgr.sys 29075915F9BDC3437F8BED71C067D399 C:\WINDOWS\System32\drivers\volmgrx.sys 6BDB6CE6D2D9E3D3F28F1C97E12B62E2 C:\WINDOWS\System32\drivers\volsnap.sys BF2546583BB75F01DDA60A7921DFB230 C:\WINDOWS\System32\drivers\volume.sys AC2E20A74D09D24485BE8396CE04F07B C:\WINDOWS\System32\drivers\vpci.sys 92F6E3E6D3F1795263EB34B37F74AEF7 C:\WINDOWS\System32\drivers\vsmraid.sys FD9BCB8920973CEAD4D49DC7A6D8A618 C:\WINDOWS\system32\DRIVERS\vsock.sys F067FA5D1BEC4B5CE70DA61237A9B2AB C:\Windows\SysWow64\drivers\vstor2-mntapi20-shared.sys 6D46D403FAAD2B493BD06A6800E67041 C:\WINDOWS\System32\drivers\vstxraid.sys 0C111F220798CCE80484026E06822379 C:\WINDOWS\System32\drivers\vwifibus.sys 607639716E9DB1CEF4E18B5B229293B4 C:\WINDOWS\System32\drivers\vwififlt.sys B1ED64E628763148BF84FBE23F2AD711 C:\WINDOWS\System32\drivers\wacompen.sys 55D00B785A7587F4263D125817871283 C:\WINDOWS\System32\DRIVERS\wanarp.sys CEF3D306C09BEC1A800E9B4A06F859F6 C:\WINDOWS\System32\DRIVERS\wanarp.sys CEF3D306C09BEC1A800E9B4A06F859F6 C:\WINDOWS\system32\drivers\wcifs.sys E330144B97D493AA886000DCAAA8DAF5 C:\WINDOWS\system32\drivers\wcnfs.sys AEA1093B751339267D8C8C1EF3D669CF C:\WINDOWS\system32\drivers\WdBoot.sys D520B1B849B6D4D707AB31722B952C2D C:\WINDOWS\System32\drivers\wdcsam64.sys A556768CC1FA4F36022BEE2F0EDE2566 C:\WINDOWS\System32\drivers\Wdf01000.sys 5030C76047D756263093A47B82970868 C:\WINDOWS\system32\drivers\WdFilter.sys 29FF9199EDEB4F5470BB134D1A2563D2 C:\WINDOWS\System32\DRIVERS\wdiwifi.sys 8CB606A3057355FD5A9DBDD1A0AC94EF C:\WINDOWS\System32\Drivers\WdNisDrv.sys 17CF416CFF408190F5A4CBD79AB12E55 C:\WINDOWS\System32\drivers\wfplwfs.sys E1785942AC51FEE6826CDF02075C5AA9 C:\WINDOWS\System32\drivers\wimmount.sys 0CF79A0EACFFBB75A50A469A27696D02 C:\WINDOWS\System32\drivers\WindowsTrustedRT.sys 0DE131733317EB4BE67028366B0CAAC6 C:\WINDOWS\System32\drivers\WindowsTrustedRTProxy.sys 92EB5D38BDF10C790450F3E46BF93A0E C:\WINDOWS\System32\drivers\winmad.sys F95DE20312ACCA7761446DE152BD1F7C C:\WINDOWS\System32\drivers\WinUSB.sys 4EFB346BFDAEEB29316AA52BBB9852B1 C:\WINDOWS\System32\drivers\winverbs.sys 8B9AFF5F08E66A6F1F1063DEC9457FB6 C:\WINDOWS\System32\drivers\wmiacpi.sys 6F4F4F5A007D1710BD76FB311DA97C07 C:\Windows\System32\Drivers\Wof.sys 43C8D087B31C592163B33A4BDA540E40 C:\WINDOWS\System32\drivers\WpdUpFltr.sys 75A9284F01FE7CB1A7D5EAE5C1EB4F33 C:\WINDOWS\system32\drivers\ws2ifsl.sys 36D7B73ADC3E10607ED6EC874AFB5D1E C:\WINDOWS\System32\drivers\WSDPrint.sys 696EC2EAA2A42A137CCBB9A84D6917C0 C:\WINDOWS\system32\DRIVERS\WSDScan.sys 46E4A69825A7554A5DB784A55F8AD203 C:\WINDOWS\System32\drivers\WudfPf.sys AED7FE551E8672B824A56324076183EB C:\WINDOWS\System32\drivers\WudfRd.sys CEFAB17FD7DFCFA515626C306262E89D C:\WINDOWS\system32\DRIVERS\WUDFRd.sys CEFAB17FD7DFCFA515626C306262E89D C:\WINDOWS\system32\DRIVERS\WUDFRd.sys CEFAB17FD7DFCFA515626C306262E89D C:\WINDOWS\System32\drivers\xboxgip.sys 9627BBAA50878F6833A6A7843EE3B1D9 C:\WINDOWS\System32\drivers\xinputhid.sys 63088A3361D9A308F328F11E9099DD87 C:\WINDOWS\System32\drivers\zamguard64.sys 21E13F2CB269DEFEAE5E1D09887D47BB ==================== NetSvcs (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) ==================== Un mois - Créés - fichiers et dossiers ======== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2017-01-11 20:15 - 2017-01-11 20:16 - 00000000 ____D C:\FRST 2017-01-11 20:12 - 2017-01-11 20:12 - 02419200 _____ (Farbar) C:\Users\hiba\Desktop\FRST64.exe 2017-01-11 20:02 - 2017-01-11 20:16 - 00029942 _____ C:\WINDOWS\ZAM_Guard.krnl.trace 2017-01-10 21:44 - 2017-01-10 21:44 - 00004702 _____ C:\Users\scorebut\Documents\rap killer.txt 2017-01-10 21:09 - 2017-01-10 21:09 - 00028272 _____ C:\WINDOWS\system32\Drivers\TrueSight.sys 2017-01-10 21:03 - 2017-01-10 21:03 - 25924168 _____ C:\Users\hiba\Desktop\RogueKillerX64.exe 2017-01-10 20:46 - 2017-01-10 20:46 - 06771840 _____ (ESET spol. s r.o.) C:\Users\hiba\Desktop\esetonlinescanner_enu.exe 2017-01-10 20:42 - 2017-01-10 20:42 - 01663040 _____ (Malwarebytes) C:\Users\hiba\Desktop\JRT.exe 2017-01-10 20:41 - 2017-01-10 20:41 - 03988944 _____ C:\Users\hiba\Desktop\adwcleaner_6.042.exe 2017-01-10 20:41 - 2017-01-10 20:41 - 02679296 _____ C:\Users\hiba\Desktop\ZHPCleaner.exe 2017-01-10 20:06 - 2017-01-10 20:13 - 00000000 ____D C:\Users\hiba\Desktop\ROOTE S7 EDGE 2017-01-10 20:06 - 2017-01-10 20:06 - 37282214 _____ C:\Users\hiba\Desktop\CF-Auto-Root-hero2lte-hero2ltexx-smg935f.zip 2017-01-10 18:25 - 2017-01-10 18:25 - 00002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk 2017-01-10 18:24 - 2017-01-10 18:24 - 00004562 _____ C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task 2017-01-09 22:32 - 2017-01-09 22:32 - 00257220 _____ C:\Users\hiba\Documents\avis impot 2016 1.pdf 2017-01-09 22:31 - 2017-01-09 22:31 - 00437696 _____ C:\Users\hiba\Documents\avis impot 2016.pdf 2017-01-09 22:28 - 2017-01-09 22:28 - 00156599 _____ C:\Users\hiba\Documents\identite e.pdf 2017-01-09 22:27 - 2017-01-09 22:27 - 00219402 _____ C:\Users\hiba\Documents\identite o.pdf 2017-01-09 21:28 - 2017-01-09 21:28 - 00236341 _____ C:\Users\scorebut\Documents\quittance janvier 17.pdf 2017-01-09 21:25 - 2017-01-09 21:25 - 00003050 _____ C:\WINDOWS\System32\Tasks\Driver Booster SkipUAC (scorebut) 2017-01-09 21:12 - 2017-01-09 21:23 - 00000000 ____D C:\Users\scorebut\Downloads\HP Downloads 2017-01-09 21:12 - 2017-01-09 21:12 - 00000000 ____D C:\Users\scorebut\AppData\Local\Hewlett-Packard 2017-01-09 21:03 - 2017-01-09 21:03 - 00000000 ____D C:\ProgramData\Creative 2017-01-09 14:04 - 2017-01-09 14:04 - 00250816 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\3ACE46CA.sys 2017-01-08 20:09 - 2017-01-08 20:09 - 94661846 _____ C:\Users\scorebut\Documents\dr webcureit.txt 2017-01-08 16:37 - 2017-01-08 16:37 - 00004232 _____ C:\Users\scorebut\Desktop\roguekiller.txt 2017-01-08 16:36 - 2017-01-08 16:36 - 00398530 _____ C:\Users\scorebut\Desktop\RogueKiller V12.9.1.0 (x64) [Jan 2 2017] (Gratuit) par Adlice Software.htm 2017-01-08 15:52 - 2017-01-08 15:53 - 147484584 _____ C:\Users\hiba\Desktop\0tgz93gs.exe 2017-01-08 15:52 - 2017-01-08 15:52 - 00000000 ____D C:\Users\hiba\AppData\Roaming\Hewlett-Packard 2017-01-08 15:24 - 2017-01-08 15:25 - 281693600 _____ (G DATA Software AG) C:\Users\hiba\Desktop\GDATA_INTERNETSECURITY_BASE_WEU_25.3.0.1.exe 2017-01-08 15:12 - 2017-01-08 15:12 - 00899584 _____ (Farbar) C:\Users\hiba\Desktop\FSS.exe 2017-01-08 14:38 - 2017-01-08 14:38 - 00162251 _____ C:\Users\scorebut\Desktop\ZHPDiag.txt 2.txt 2017-01-08 14:38 - 2017-01-08 14:38 - 00162248 _____ C:\Users\scorebut\Desktop\ZHPDiag.txt 2017-01-08 14:28 - 2017-01-08 14:28 - 02633216 _____ C:\Users\hiba\Desktop\ZHPDiag3.exe 2017-01-08 13:50 - 2017-01-08 13:50 - 00000143 _____ C:\Users\hiba\Documents\gdata.txt 2017-01-08 13:49 - 2017-01-08 13:52 - 1918738432 _____ C:\Users\hiba\Downloads\DiagBox_V7_62.iso 2017-01-07 23:15 - 2017-01-07 23:15 - 00000000 ____D C:\Users\scorebut\Desktop\TechPowerUp GPU-Z 1.14.0.0 x86 x64[walibi2016] 2017-01-07 23:14 - 2017-01-07 23:14 - 00000000 ____D C:\Users\scorebut\Desktop\Revo Uninstaller Pro 3.1.8+Portable 2017-01-07 23:13 - 2017-01-07 23:13 - 00000000 ____D C:\Users\scorebut\Desktop\Glary.Utilities.PRO.v5.67.0.88+V Portable.Multilang.Incl-Keygen--- 2017-01-07 23:13 - 2017-01-07 23:13 - 00000000 ____D C:\Users\scorebut\Desktop\Eset.Smart.Security.v10.0.386.4.FR 2017-01-07 23:13 - 2017-01-07 23:13 - 00000000 ____D C:\Users\scorebut\Desktop\Eset.Internet.Security.v10.0.386.4.FR 2017-01-07 23:11 - 2017-01-07 23:11 - 16455731 _____ C:\Users\scorebut\Desktop\scp server à jour.rar 2017-01-07 23:04 - 2016-12-11 19:47 - 00548408 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshext.dll 2017-01-07 23:04 - 2016-12-11 19:47 - 00081856 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshextr.dll 2017-01-07 23:02 - 2017-01-07 23:02 - 00000000 ____D C:\temp 2017-01-07 23:00 - 2017-01-07 23:00 - 01953336 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6437633.dll 2017-01-07 23:00 - 2017-01-07 23:00 - 01586744 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6437633.dll 2017-01-07 22:59 - 2017-01-07 22:59 - 40125496 _____ C:\WINDOWS\system32\nvcompiler.dll 2017-01-07 22:59 - 2017-01-07 22:59 - 35222976 _____ C:\WINDOWS\SysWOW64\nvcompiler.dll 2017-01-07 22:59 - 2017-01-07 22:59 - 34710584 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglv64.dll 2017-01-07 22:59 - 2017-01-07 22:59 - 28201408 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglv32.dll 2017-01-07 22:59 - 2017-01-07 22:59 - 10912744 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvptxJitCompiler.dll 2017-01-07 22:59 - 2017-01-07 22:59 - 10803880 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvopencl.dll 2017-01-07 22:59 - 2017-01-07 22:59 - 10353960 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll 2017-01-07 22:59 - 2017-01-07 22:59 - 09158616 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvopencl.dll 2017-01-07 22:59 - 2017-01-07 22:59 - 08913328 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvptxJitCompiler.dll 2017-01-07 22:59 - 2017-01-07 22:59 - 08761560 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll 2017-01-07 22:59 - 2017-01-07 22:59 - 03934504 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll 2017-01-07 22:59 - 2017-01-07 22:59 - 03474392 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll 2017-01-07 22:59 - 2017-01-07 22:59 - 02950200 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll 2017-01-07 22:59 - 2017-01-07 22:59 - 02587704 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll 2017-01-07 22:59 - 2017-01-07 22:59 - 01038392 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll 2017-01-07 22:59 - 2017-01-07 22:59 - 00974784 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll 2017-01-07 22:59 - 2017-01-07 22:59 - 00942528 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll 2017-01-07 22:59 - 2017-01-07 22:59 - 00894400 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll 2017-01-07 22:59 - 2017-01-07 22:59 - 00802768 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncMFTH264.dll 2017-01-07 22:59 - 2017-01-07 22:59 - 00801560 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncMFThevc.dll 2017-01-07 22:59 - 2017-01-07 22:59 - 00683640 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvfatbinaryLoader.dll 2017-01-07 22:59 - 2017-01-07 22:59 - 00643928 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncMFTH264.dll 2017-01-07 22:59 - 2017-01-07 22:59 - 00642392 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncMFThevc.dll 2017-01-07 22:59 - 2017-01-07 22:59 - 00617696 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmcumd.dll 2017-01-07 22:59 - 2017-01-07 22:59 - 00572888 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvfatbinaryLoader.dll 2017-01-07 22:59 - 2017-01-07 22:59 - 00438208 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll 2017-01-07 22:59 - 2017-01-07 22:59 - 00394888 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll 2017-01-07 22:59 - 2017-01-07 22:59 - 00388544 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll 2017-01-07 22:59 - 2017-01-07 22:59 - 00386104 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvDecMFTMjpeg.dll 2017-01-07 22:59 - 2017-01-07 22:59 - 00347072 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvDecMFTMjpeg.dll 2017-01-07 22:59 - 2017-01-07 22:59 - 00327408 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll 2017-01-07 22:59 - 2017-01-07 22:59 - 00042286 _____ C:\WINDOWS\system32\nvinfo.pb 2017-01-07 22:58 - 2017-01-07 22:58 - 05523456 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\Drivers\RTKVHD64.sys 2017-01-07 22:58 - 2017-01-07 22:58 - 03503048 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkApi64.dll 2017-01-07 22:58 - 2017-01-07 22:58 - 03295064 _____ (Fortemedia Corporation) C:\WINDOWS\system32\FMAPO64.dll 2017-01-07 22:58 - 2017-01-07 22:58 - 03204096 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtPgEx64.dll 2017-01-07 22:58 - 2017-01-07 22:58 - 03201376 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RltkAPO64.dll 2017-01-07 22:58 - 2017-01-07 22:58 - 02201088 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoInstII64.dll 2017-01-07 22:58 - 2017-01-07 22:58 - 02050168 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioEQ64.dll 2017-01-07 22:58 - 2017-01-07 22:58 - 01976816 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\MBAPO264.dll 2017-01-07 22:58 - 2017-01-07 22:58 - 01743336 _____ (Creative Technology Ltd.) C:\WINDOWS\SysWOW64\MBAPO232.dll 2017-01-07 22:58 - 2017-01-07 22:58 - 01360512 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTCOM64.dll 2017-01-07 22:58 - 2017-01-07 22:58 - 00532376 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSTSX64.dll 2017-01-07 22:58 - 2017-01-07 22:58 - 00410032 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\MBWrp64.dll 2017-01-07 22:58 - 2017-01-07 22:58 - 00387312 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEP64A.dll 2017-01-07 22:58 - 2017-01-07 22:58 - 00343704 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtlCPAPI64.dll 2017-01-07 22:58 - 2017-01-07 22:58 - 00330560 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO20.dll 2017-01-07 22:58 - 2017-01-07 22:58 - 00321712 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RP3DHT64.dll 2017-01-07 22:58 - 2017-01-07 22:58 - 00321712 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RP3DAA64.dll 2017-01-07 22:58 - 2017-01-07 22:58 - 00221960 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSTSH64.dll 2017-01-07 22:58 - 2017-01-07 22:58 - 00214832 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEED64A.dll 2017-01-07 22:58 - 2017-01-07 22:58 - 00209536 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSHP64.dll 2017-01-07 22:58 - 2017-01-07 22:58 - 00192976 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCfg64.dll 2017-01-07 22:58 - 2017-01-07 22:58 - 00166200 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSWOW64.dll 2017-01-07 22:58 - 2017-01-07 22:58 - 00122320 _____ (Real Sound Lab SIA) C:\WINDOWS\system32\CONEQMSAPOGUILibrary.dll 2017-01-07 22:58 - 2017-01-07 22:58 - 00110984 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEL64A.dll 2017-01-07 22:58 - 2017-01-07 22:58 - 00088344 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEG64A.dll 2017-01-07 22:58 - 2017-01-07 22:58 - 00041088 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\Drivers\MBfilt64.sys 2017-01-07 22:58 - 2017-01-07 22:58 - 00023688 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCoLDR64.dll 2017-01-07 22:57 - 2017-01-07 22:57 - 07704619 _____ C:\WINDOWS\system32\Drivers\RTAIODAT.DAT 2017-01-07 22:57 - 2017-01-07 22:57 - 03014144 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTSnMg64.cpl 2017-01-07 22:57 - 2017-01-07 22:57 - 00574752 _____ (Andrea Electronics Corporation) C:\WINDOWS\system32\AERTAC64.dll 2017-01-07 22:57 - 2017-01-07 22:57 - 00204896 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\TeeDriverW8x64.sys 2017-01-07 22:57 - 2017-01-07 22:57 - 00162456 _____ (Qualcomm Atheros, Inc.) C:\WINDOWS\system32\Drivers\e2xw10x64.sys 2017-01-07 22:57 - 2017-01-07 22:57 - 00118592 _____ (Andrea Electronics Corporation) C:\WINDOWS\system32\AERTAR64.dll 2017-01-07 22:56 - 2017-01-07 22:56 - 00003400 _____ C:\WINDOWS\System32\Tasks\Driver Booster Scheduler 2017-01-07 22:56 - 2017-01-07 22:56 - 00000000 ____D C:\ProgramData\ProductData 2017-01-07 22:51 - 2017-01-08 00:34 - 00000000 ____D C:\Users\scorebut\AppData\Roaming\vlc 2017-01-07 22:44 - 2017-01-07 22:44 - 00000000 ____D C:\Users\scorebut\AppData\Local\Creative 2017-01-07 22:18 - 2017-01-07 22:18 - 00000000 ____D C:\Users\hiba\AppData\Local\Creative 2017-01-07 18:08 - 2017-01-07 18:08 - 00438019 _____ C:\Users\hiba\Documents\bulletin.pdf 2017-01-07 18:04 - 2017-01-07 18:04 - 00116737 _____ C:\Users\hiba\Documents\recto id.pdf 2017-01-07 12:34 - 2017-01-09 21:52 - 00091584 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys 2017-01-07 12:34 - 2017-01-09 19:51 - 00102856 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\farflt.sys 2017-01-07 12:34 - 2017-01-09 19:51 - 00043968 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys 2017-01-07 12:34 - 2017-01-07 22:09 - 00176064 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMChameleon.sys 2017-01-07 12:34 - 2017-01-07 12:34 - 00001925 _____ C:\Users\Public\Desktop\Malwarebytes.lnk 2017-01-07 12:34 - 2017-01-07 12:34 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes 2017-01-07 12:34 - 2017-01-07 12:34 - 00000000 ____D C:\Program Files\Malwarebytes 2017-01-07 12:34 - 2016-12-14 12:55 - 00077416 _____ C:\WINDOWS\system32\Drivers\mbae64.sys 2017-01-07 00:05 - 2017-01-07 00:05 - 00004522 _____ C:\Users\scorebut\Desktop\ZHPCleaner.txt 2017-01-06 23:59 - 2017-01-06 23:59 - 00000000 ____D C:\Users\scorebut\AppData\Roaming\keit.co 2017-01-06 23:59 - 2017-01-06 23:59 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\keit.co 2017-01-06 23:57 - 2017-01-06 23:57 - 03149784 _____ ( ) C:\Users\hiba\Desktop\recall.exe 2017-01-06 20:27 - 2017-01-06 20:27 - 01622528 _____ C:\Users\hiba\Desktop\ResetBrowser.exe 2017-01-05 22:57 - 2017-01-05 22:57 - 00002421 _____ C:\Users\scorebut\Desktop\AdwCleaner[S0].txt 2017-01-05 22:48 - 2017-01-08 14:25 - 00000000 ____D C:\AdwCleaner 2017-01-05 22:48 - 2017-01-05 22:48 - 03977168 _____ C:\Users\hiba\Desktop\adwcleaner_6.041.exe 2017-01-05 22:46 - 2017-01-05 22:46 - 54199488 _____ (Malwarebytes ) C:\Users\hiba\Desktop\mb3-setup-consumer-3.0.5.1299.exe 2017-01-05 15:45 - 2017-01-05 15:45 - 00451351 _____ C:\Users\hiba\Documents\Scan.pdf 2017-01-04 20:09 - 2017-01-04 20:09 - 00249006 _____ C:\Users\hiba\Documents\avis d'nposition deuxième volet.pdf 2017-01-04 20:07 - 2017-01-04 20:07 - 00400995 _____ C:\Users\hiba\Documents\AVIS D'INPOSITION 2015 SUR 2014.pdf 2017-01-04 19:52 - 2017-01-04 19:52 - 00364781 _____ C:\Users\hiba\Documents\BULLETIN DE PAYE 4.pdf 2017-01-04 19:50 - 2017-01-04 19:50 - 00402616 _____ C:\Users\hiba\Documents\Scan.pdfBULLETIN DE PAYE 3.pdf 2017-01-04 19:49 - 2017-01-04 19:49 - 00373028 _____ C:\Users\hiba\Documents\BULLETIN DE PAYE 2.pdf 2017-01-04 19:45 - 2017-01-04 19:45 - 00402034 _____ C:\Users\hiba\Documents\BULLETIN DE PAYE.pdf 2017-01-03 22:16 - 2017-01-03 22:16 - 00000222 _____ C:\Users\scorebut\Desktop\Raw Data.url 2017-01-03 22:16 - 2017-01-03 22:16 - 00000000 ____D C:\Users\scorebut\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam 2017-01-03 22:03 - 2017-01-03 22:04 - 00000000 ____D C:\Users\scorebut\AppData\Local\Steam 2017-01-03 22:03 - 2017-01-03 22:03 - 00000000 ____D C:\Users\scorebut\AppData\Local\Chromium 2017-01-03 22:01 - 2017-01-09 21:03 - 00000000 ____D C:\Program Files (x86)\Steam 2017-01-03 22:01 - 2017-01-03 22:01 - 01446792 _____ C:\Users\scorebut\Desktop\SteamSetup.exe 2017-01-03 22:01 - 2017-01-03 22:01 - 00001037 _____ C:\Users\Public\Desktop\Steam.lnk 2017-01-03 22:01 - 2017-01-03 22:01 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam 2017-01-03 20:02 - 2017-01-03 20:02 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GIGABYTE 2017-01-03 19:57 - 2017-01-03 20:02 - 00000000 ____D C:\ProgramData\Killer 2017-01-03 19:57 - 2017-01-03 19:57 - 00002873 _____ C:\Users\Public\Desktop\Killer Network Manager.lnk 2017-01-03 19:57 - 2017-01-03 19:57 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Killer Networking 2017-01-03 19:57 - 2017-01-03 19:57 - 00000000 ____D C:\Program Files\Killer Networking 2017-01-03 19:56 - 2017-01-03 19:56 - 00000000 ____D C:\ProgramData\Downloaded Installations 2017-01-03 19:55 - 2017-01-03 19:55 - 00466520 _____ (Creative Labs) C:\WINDOWS\system32\wrap_oal.dll 2017-01-03 19:55 - 2017-01-03 19:55 - 00445016 _____ (Creative Labs) C:\WINDOWS\SysWOW64\wrap_oal.dll 2017-01-03 19:55 - 2017-01-03 19:55 - 00123480 _____ (Portions (C) Creative Labs Inc. and NVIDIA Corp.) C:\WINDOWS\system32\OpenAL32.dll 2017-01-03 19:55 - 2017-01-03 19:55 - 00109144 _____ (Portions (C) Creative Labs Inc. and NVIDIA Corp.) C:\WINDOWS\SysWOW64\OpenAL32.dll 2017-01-03 19:55 - 2017-01-03 19:55 - 00000159 ___RH C:\WINDOWS\ctfile.rfc 2017-01-03 19:55 - 2017-01-03 19:55 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Creative 2017-01-03 19:55 - 2017-01-03 19:55 - 00000000 ____D C:\Program Files\Creative 2017-01-03 19:55 - 2017-01-03 19:55 - 00000000 ____D C:\Program Files (x86)\Creative 2017-01-03 19:55 - 2015-05-29 17:57 - 00089600 _____ C:\WINDOWS\system32\CmdRtr64.DLL 2017-01-03 19:55 - 2015-05-29 17:56 - 00366080 _____ C:\WINDOWS\system32\APOMgr64.DLL 2017-01-03 19:55 - 2015-05-29 17:56 - 00074240 _____ C:\WINDOWS\SysWOW64\CmdRtr.DLL 2017-01-03 19:55 - 2015-05-29 17:54 - 00274944 _____ C:\WINDOWS\SysWOW64\APOMngr.DLL 2017-01-03 19:55 - 2013-07-03 14:11 - 00038528 ____N (Creative Technology Ltd.) C:\WINDOWS\system32\MBCfg64.dll 2017-01-03 19:55 - 2013-07-03 14:11 - 00035456 ____N (Creative Technology Ltd.) C:\WINDOWS\SysWOW64\MBCfg32.dll 2017-01-03 19:55 - 2013-04-23 10:54 - 00332928 ____N (Creative Technology Ltd.) C:\WINDOWS\system32\ChezSC64.DLL 2017-01-03 19:55 - 2013-04-23 10:54 - 00288896 ____N (Creative Technology Ltd.) C:\WINDOWS\SysWOW64\ChezSC32.DLL 2017-01-03 19:55 - 2013-04-23 10:54 - 00148096 ____N (Creative Technology Ltd.) C:\WINDOWS\system32\MBCfg64.exe 2017-01-03 19:55 - 2013-04-23 10:53 - 00138880 ____N (Creative Technology Ltd.) C:\WINDOWS\SysWOW64\MBCfg32.exe 2017-01-03 19:55 - 2013-04-23 10:53 - 00015488 ____N (Creative Technology Ltd.) C:\WINDOWS\SysWOW64\ResDefA.exe 2017-01-03 19:55 - 2013-03-27 11:59 - 01903104 ____N (Creative) C:\WINDOWS\system32\Sens_oal.dll 2017-01-03 19:55 - 2013-03-27 11:56 - 02906589 ____N (Creative) C:\WINDOWS\SysWOW64\Sens_oal.dll 2017-01-03 19:55 - 2013-03-26 10:43 - 00004914 ____N C:\WINDOWS\MBCfg_SP_APOIM.ini 2017-01-03 19:55 - 2013-03-26 10:43 - 00004862 ____N C:\WINDOWS\MBCfg_APOIM.ini 2017-01-03 19:55 - 2013-03-26 10:43 - 00004821 ____N C:\WINDOWS\MBCfg_HP_APOIM.ini 2017-01-03 19:55 - 2013-03-26 10:43 - 00001165 ____N C:\WINDOWS\MBCfg_Capture_APOIM.ini 2017-01-03 19:55 - 2013-03-26 10:42 - 00013194 ____N C:\WINDOWS\SysWOW64\MBCfg32.ini 2017-01-03 19:55 - 2013-03-26 10:42 - 00013194 ____N C:\WINDOWS\system32\MBCfg64.ini 2017-01-03 19:55 - 2013-01-08 10:13 - 00006968 ____N C:\WINDOWS\system32\MBCfgUninstall64.ini 2017-01-03 19:55 - 2013-01-08 10:12 - 00006968 ____N C:\WINDOWS\SysWOW64\MBCfgUninstall32.ini 2017-01-03 19:55 - 2009-12-24 03:49 - 00809560 ____R (Creative Labs Inc.) C:\WINDOWS\SysWOW64\tmpAABA.tmp 2017-01-03 19:55 - 2009-12-24 03:49 - 00809560 ____R (Creative Labs Inc.) C:\WINDOWS\SysWOW64\tmpAAB9.tmp 2017-01-03 19:55 - 2000-05-11 01:00 - 00090112 ____N (Creative Technology Ltd.) C:\WINDOWS\Updreg.EXE 2017-01-03 19:54 - 2017-01-03 19:54 - 00000010 _____ C:\WINDOWS\GSetup.ini 2017-01-03 19:54 - 2017-01-03 19:54 - 00000000 ____D C:\Users\scorebut\Documents\EasyTune 2017-01-02 02:24 - 2017-01-02 02:25 - 00000000 ___HD C:\Program Files (x86)\Temp 2017-01-02 02:24 - 2017-01-02 02:24 - 00000000 ____D C:\Program Files (x86)\Realtek 2017-01-02 02:24 - 2015-06-08 09:13 - 02825944 ____R (Realtek Semiconductor Corp.) C:\WINDOWS\RtlExUpd.dll 2017-01-02 02:22 - 2017-01-02 02:22 - 00002755 _____ C:\Users\Public\Desktop\Intel(R) Extreme Tuning Utility.lnk 2017-01-02 02:22 - 2017-01-02 02:22 - 00000000 ____D C:\WINDOWS\System32\Tasks\Intel 2017-01-02 02:22 - 2017-01-02 02:22 - 00000000 ____D C:\uninstall 2017-01-02 02:22 - 2017-01-02 02:22 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel Extreme Tuning Utility 2017-01-02 02:22 - 2017-01-02 02:22 - 00000000 ____D C:\ProgramData\Intel 2017-01-02 02:22 - 2017-01-02 02:22 - 00000000 ____D C:\Program Files\Microsoft Synchronization Services 2017-01-02 02:22 - 2017-01-02 02:22 - 00000000 ____D C:\Program Files\Microsoft SQL Server Compact Edition 2017-01-02 02:22 - 2017-01-02 02:22 - 00000000 ____D C:\Program Files (x86)\Microsoft Synchronization Services 2017-01-02 02:22 - 2017-01-02 02:22 - 00000000 ____D C:\Program Files (x86)\Microsoft SQL Server Compact Edition 2017-01-02 02:21 - 2013-10-28 10:02 - 00022240 _____ C:\WINDOWS\system32\Drivers\AppleCharger.sys 2017-01-02 02:21 - 2013-10-24 17:29 - 00022240 _____ C:\WINDOWS\system32\Drivers\UsbCharger.sys 2017-01-02 02:21 - 2010-04-06 16:30 - 00031272 _____ C:\WINDOWS\system32\AppleChargerSrv.exe 2017-01-02 02:19 - 2017-01-02 02:19 - 10047488 _____ () C:\WINDOWS\system32\BT_Socket.dll 2017-01-02 02:19 - 2017-01-02 02:19 - 00389632 _____ C:\WINDOWS\system32\AutoGreenCP.dll 2017-01-02 02:17 - 2017-01-02 02:21 - 00000000 ____D C:\Program Files\Gigabyte 2017-01-02 02:16 - 2017-01-02 02:16 - 00000000 ____D C:\Users\scorebut\AppData\Local\Downloaded Installations 2017-01-02 02:15 - 2017-01-03 20:02 - 00000000 ____D C:\Program Files (x86)\GIGABYTE 2017-01-02 02:15 - 2015-06-02 10:50 - 00005120 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\system32\acpimof_ocpanel.dll 2017-01-02 02:12 - 2017-01-09 21:00 - 00026192 ____N (Windows (R) Server 2003 DDK provider) C:\WINDOWS\gdrv.sys 2017-01-02 02:12 - 2009-08-27 08:04 - 00207400 ____R () C:\WINDOWS\GSetup.exe 2017-01-02 02:07 - 2017-01-02 02:07 - 00000000 ____D C:\WINDOWS\system32\DAX2 2016-12-28 18:47 - 2016-12-28 18:47 - 00000000 ____D C:\Users\hiba\Desktop\SpybotPortable_1.6.2 - 2.5.42.0 32-64 bit DC 2016.12.21 2016-12-28 18:47 - 2016-12-28 18:47 - 00000000 ____D C:\Users\hiba\Desktop\Auslogics File Recovery v7.1.1.0 2016-12-27 10:55 - 2016-12-28 15:24 - 00000000 ____D C:\Users\hiba\AppData\Roaming\dvdcss 2016-12-27 10:52 - 2016-12-27 10:53 - 00000000 ___HD C:\Users\TEMP\AppData 2016-12-27 10:52 - 2016-12-27 10:53 - 00000000 ____D C:\Users\TEMP\AppData\Local\Microsoft 2016-12-27 10:52 - 2016-12-27 10:53 - 00000000 ____D C:\Users\TEMP\AppData\Local 2016-12-27 10:52 - 2016-12-27 10:53 - 00000000 ____D C:\Users\TEMP 2016-12-26 12:56 - 2016-12-26 12:57 - 00000000 ____D C:\Users\scorebut\AppData\Local\Setup1244625 2016-12-26 12:56 - 2016-12-26 12:57 - 00000000 ____D C:\Users\scorebut\AppData\Local\Setup1241296 2016-12-26 12:56 - 2016-12-26 12:56 - 00000000 ____D C:\Users\scorebut\AppData\Local\siri 2016-12-26 12:55 - 2016-12-26 12:55 - 00001081 _____ C:\Users\Public\Desktop\EagleGet.lnk 2016-12-26 12:55 - 2016-12-26 12:55 - 00000000 ____D C:\Users\scorebut\AppData\Roaming\EagleGet 2016-12-26 12:55 - 2016-12-26 12:55 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EagleGet 2016-12-26 12:55 - 2016-12-26 12:55 - 00000000 ____D C:\ProgramData\EagleGet 2016-12-26 12:55 - 2016-12-26 12:55 - 00000000 ____D C:\Program Files (x86)\EagleGet 2016-12-25 22:32 - 2016-12-25 22:32 - 00002876 _____ C:\WINDOWS\System32\Tasks\CCleanerSkipUAC 2016-12-25 22:32 - 2016-12-25 22:32 - 00000870 _____ C:\Users\Public\Desktop\CCleaner.lnk 2016-12-25 22:32 - 2016-12-25 22:32 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner 2016-12-25 22:31 - 2016-12-25 22:33 - 00000000 ____D C:\Program Files\CCleaner 2016-12-25 22:30 - 2016-12-25 22:30 - 00000000 ____D C:\Users\hiba\Desktop\CCleaner.Professional+Business+Technician.v5.25+Portable 2016-12-25 22:12 - 2016-12-25 22:12 - 00002103 _____ C:\Users\Public\Desktop\PerfectDisk.lnk 2016-12-25 22:12 - 2016-12-25 22:12 - 00002095 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PerfectDisk.lnk 2016-12-25 22:12 - 2016-12-25 22:12 - 00000000 ____D C:\ProgramData\Raxco 2016-12-25 22:12 - 2016-12-25 22:12 - 00000000 ____D C:\Program Files\Raxco 2016-12-25 22:12 - 2016-12-25 22:12 - 00000000 ____D C:\Program Files\Common Files\Raxco 2016-12-25 22:12 - 2015-06-09 12:24 - 00120960 _____ (Raxco Software, Inc.) C:\WINDOWS\system32\Drivers\DefragFS.sys 2016-12-25 22:09 - 2016-12-25 22:09 - 00000000 ____D C:\Users\hiba\Desktop\Glary Utilities Pro 5.66.0.87 Portable et installation x86 x64[walibi2016] 2016-12-25 21:58 - 2016-12-25 21:58 - 00000843 _____ C:\Users\scorebut\Desktop\BurnInTest.lnk 2016-12-25 21:58 - 2016-12-25 21:58 - 00000000 ____D C:\WINDOWS\system32\temp 2016-12-25 21:58 - 2016-12-25 21:58 - 00000000 ____D C:\Users\scorebut\Documents\PassMark 2016-12-25 21:58 - 2016-12-25 21:58 - 00000000 ____D C:\ProgramData\PassMark 2016-12-25 21:58 - 2016-12-25 21:58 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BurnInTest 2016-12-25 21:58 - 2016-12-25 21:58 - 00000000 ____D C:\Program Files\BurnInTest 2016-12-25 21:21 - 2016-12-25 21:21 - 00000000 ____D C:\Users\hiba\Desktop\Revo Uninstaller Pro 3.1.8+Portable 2016-12-25 13:49 - 2016-12-25 14:37 - 00147242 _____ C:\WINDOWS\ZAM.krnl.trace 2016-12-25 11:09 - 2016-12-25 11:09 - 00000000 ____D C:\Users\hiba\AppData\Local\Zemana 2016-12-24 16:49 - 2016-12-24 16:51 - 04381376 _____ C:\Users\hiba\Desktop\webMAN_MOD_1.45.05_Updater.pkg 2016-12-24 14:21 - 2016-12-24 14:21 - 00203680 _____ (Zemana Ltd.) C:\WINDOWS\system32\Drivers\zamguard64.sys 2016-12-24 14:20 - 2016-12-25 14:37 - 00000000 ____D C:\Users\scorebut\AppData\Local\Zemana 2016-12-24 14:13 - 2017-01-11 20:14 - 00000000 ____D C:\Users\hiba\AppData\Roaming\DMCache 2016-12-24 14:13 - 2017-01-09 22:11 - 00000000 ____D C:\Users\scorebut\AppData\Roaming\DMCache 2016-12-24 14:13 - 2017-01-07 23:10 - 00000000 ____D C:\Users\scorebut\AppData\Roaming\IDM 2016-12-24 14:13 - 2016-12-29 11:56 - 00000000 ____D C:\Users\hiba\AppData\Roaming\IDM 2016-12-24 14:13 - 2016-12-24 14:13 - 00000000 ____D C:\Users\scorebut\Downloads\Video 2016-12-24 14:13 - 2016-12-24 14:13 - 00000000 ____D C:\Users\scorebut\Downloads\Music 2016-12-24 14:13 - 2016-12-24 14:13 - 00000000 ____D C:\Users\hiba\Downloads\Video 2016-12-24 14:13 - 2016-12-24 14:13 - 00000000 ____D C:\Users\hiba\Downloads\Music 2016-12-24 14:13 - 2016-12-24 14:13 - 00000000 ____D C:\ProgramData\IDM 2016-12-24 14:12 - 2016-12-24 14:15 - 00000000 ____D C:\Program Files (x86)\Internet Download Manager 2016-12-24 14:12 - 2016-12-24 14:12 - 00001099 _____ C:\Users\scorebut\Desktop\Internet Download Manager.lnk 2016-12-24 14:12 - 2016-12-24 14:12 - 00000000 ____D C:\Users\scorebut\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Download Manager 2016-12-24 14:12 - 2016-12-24 14:12 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Internet Download Manager 2016-12-24 13:52 - 2016-12-24 13:52 - 00000000 ____D C:\Users\hiba\AppData\Roaming\EagleGet 2016-12-24 13:44 - 2016-07-03 22:24 - 00087192 _____ (eagleGet) C:\WINDOWS\system32\Drivers\eagleGet.sys 2016-12-24 10:41 - 2016-12-24 10:42 - 00000000 ____D C:\KVRT_Data 2016-12-24 10:41 - 2016-12-24 10:41 - 00478392 _____ (Kaspersky Lab ZAO) C:\WINDOWS\system32\Drivers\3F0C52D8.sys 2016-12-23 19:24 - 2016-12-23 19:24 - 00000000 ____D C:\Users\hiba\AppData\Roaming\IsolatedStorage 2016-12-23 19:24 - 2016-12-23 19:24 - 00000000 ____D C:\ProgramData\IsolatedStorage 2016-12-23 19:23 - 2016-12-23 19:23 - 00000000 ____D C:\Users\hiba\AppData\Roaming\DigitalVolcano 2016-12-23 19:17 - 2016-12-23 19:20 - 00000000 ____D C:\Program Files (x86)\Duplicate Cleaner Pro 2016-12-23 19:17 - 2016-12-23 19:17 - 00001238 _____ C:\Users\Public\Desktop\Duplicate Cleaner Pro.lnk 2016-12-23 19:17 - 2016-12-23 19:17 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Duplicate Cleaner Pro 2016-12-22 17:42 - 2016-12-22 17:42 - 00292184 _____ (Microsoft Corporation) C:\Users\hiba\Desktop\dxwebsetup.exe 2016-12-22 16:33 - 2016-12-22 16:33 - 00000919 _____ C:\Users\Public\Desktop\CPUID CPU-Z.lnk 2016-12-22 16:33 - 2016-12-22 16:33 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CPUID 2016-12-22 16:33 - 2016-12-22 16:33 - 00000000 ____D C:\Program Files\CPUID 2016-12-22 16:32 - 2016-12-22 16:32 - 01673544 _____ ( ) C:\Users\hiba\Desktop\cpu-z_1.78-en.exe 2016-12-22 10:43 - 2016-12-22 10:43 - 00000000 ____D C:\Users\hiba\AppData\Local\Logitech® Webcam Software 2016-12-21 13:18 - 2017-01-09 21:24 - 00002088 _____ C:\Users\Public\Desktop\HP Print and Scan Doctor.lnk 2016-12-21 12:36 - 2016-12-21 12:36 - 00000000 ____D C:\Users\scorebut\AppData\Local\Logitech® Webcam Software 2016-12-21 12:34 - 2016-12-21 12:34 - 00004307 _____ C:\WINDOWS\LDPINST.LOG 2016-12-21 12:34 - 2016-12-21 12:34 - 00001728 _____ C:\Users\Public\Desktop\Logitech Webcam Software .lnk 2016-12-21 12:34 - 2016-12-21 12:34 - 00000000 ____D C:\Users\scorebut\AppData\Roaming\Leadertech 2016-12-21 12:34 - 2016-12-21 12:34 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logitech 2016-12-21 12:34 - 2016-12-21 12:34 - 00000000 ____D C:\ProgramData\LogiShrd 2016-12-21 12:34 - 2016-12-21 12:34 - 00000000 ____D C:\Program Files (x86)\Logitech 2016-12-21 12:32 - 2016-12-21 12:32 - 74520472 _____ (Logitech, Inc.) C:\Users\hiba\Desktop\lws280.exe 2016-12-21 12:16 - 2016-12-21 12:16 - 00034547 _____ C:\Users\hiba\Documents\Scan0004.jpg 2016-12-21 11:35 - 2017-01-07 22:22 - 00000000 ____D C:\Users\hiba\AppData\Local\CrashDumps 2016-12-19 20:57 - 2016-12-19 20:58 - 00000000 ____D C:\Users\hiba\AppData\Roaming\WhatsApp 2016-12-19 20:57 - 2016-12-19 20:57 - 00002238 _____ C:\Users\hiba\Desktop\WhatsApp.lnk 2016-12-19 20:57 - 2016-12-19 20:57 - 00000000 ____D C:\Users\hiba\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WhatsApp 2016-12-19 20:57 - 2016-12-19 20:57 - 00000000 ____D C:\Users\hiba\AppData\Local\WhatsApp 2016-12-19 20:57 - 2016-12-19 20:57 - 00000000 ____D C:\Users\hiba\AppData\Local\SquirrelTemp 2016-12-19 20:55 - 2016-12-19 20:56 - 101616400 _____ (WhatsApp) C:\Users\hiba\Desktop\WhatsAppSetup.exe 2016-12-19 20:16 - 2016-12-19 20:16 - 16563352 _____ (Malwarebytes Corp.) C:\Users\hiba\Desktop\mbar-1.09.3.1001.exe 2016-12-19 20:12 - 2016-12-19 20:12 - 06705178 _____ C:\Users\hiba\Desktop\mbam-chameleon-3.1.33.0.zip 2016-12-19 20:03 - 2016-12-19 20:03 - 00448512 _____ (OldTimer Tools) C:\Users\hiba\Desktop\TFC.exe 2016-12-19 19:58 - 2016-12-19 19:59 - 00000000 ____D C:\Users\hiba\Desktop\bitdefender tool 2016-12-19 19:56 - 2016-12-19 19:57 - 00000000 ____D C:\Users\hiba\Desktop\STINGER 2016-12-19 16:56 - 2016-12-19 16:56 - 00044342 _____ C:\Users\hiba\Desktop\Bilan fin de prestation Activ'Emploi-1.docx 2016-12-19 16:12 - 2016-12-19 16:13 - 158451816 _____ (Sophos Limited) C:\Users\scorebut\Desktop\Sophos Virus Removal Tool.exe 2016-12-19 14:53 - 2016-12-19 14:53 - 00003874 _____ C:\Users\scorebut\Documents\rap roguekiller.txt 2016-12-19 13:42 - 2016-12-19 13:43 - 01208614 _____ C:\Users\hiba\Desktop\Adware Removal Tool.zip 2016-12-19 11:43 - 2016-12-19 11:43 - 03952176 _____ (New Softwares.net) C:\Users\hiba\Desktop\usb-secure-en.exe 2016-12-19 11:38 - 2016-12-19 11:38 - 49358520 _____ (Wireshark development team) C:\Users\hiba\Desktop\Wireshark-win64-2.2.3.exe 2016-12-19 11:29 - 2016-12-19 11:29 - 17023120 _____ (McAfee Inc) C:\Users\hiba\Desktop\stinger32.exe 2016-12-19 11:29 - 2016-12-19 11:29 - 16414813 _____ C:\Users\hiba\Desktop\stinger64-epo.zip 2016-12-19 11:23 - 2016-12-19 11:25 - 104830296 _____ (Kaspersky Lab ZAO) C:\Users\hiba\Desktop\KVRT.exe 2016-12-18 13:05 - 2016-12-18 13:05 - 23337872 _____ (AVAST Software ) C:\Users\hiba\Desktop\avast_secureline_setup.exe 2016-12-18 12:56 - 2016-12-18 12:56 - 00000000 ____D C:\Users\hiba\Desktop\ADS 2016-12-18 12:55 - 2016-12-18 12:55 - 02540007 _____ C:\Users\hiba\Desktop\ADSRevealer1-0.zip 2016-12-18 12:32 - 2016-12-18 12:32 - 00003306 _____ C:\WINDOWS\System32\Tasks\WhoStalksMe 2016-12-18 12:25 - 2016-12-18 12:26 - 06443256 _____ (Phrozen SAS) C:\Users\hiba\Desktop\Who Stalks My Cam.exe 2016-12-18 10:46 - 2017-01-11 20:03 - 00250816 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys 2016-12-18 10:45 - 2016-12-18 10:46 - 51969976 _____ (Malwarebytes ) C:\Users\hiba\Desktop\mb3-setup-consumer-3.0.4.1269.exe 2016-12-17 22:13 - 2016-12-17 22:13 - 299289569 _____ C:\Users\hiba\Desktop\redsn0w_win_0.9.15b3.zip 2016-12-17 21:17 - 2016-12-17 21:17 - 00000000 ____D C:\Users\hiba\Desktop\O&O ShutUp10 1.4.1386.1 x86 x64[walibi2016] 2016-12-17 21:16 - 2016-12-17 21:16 - 00000000 ____D C:\Users\hiba\Desktop\Raxco PerfectDisk Serveur 14.0 build 890 x86 x64 2016-12-17 21:16 - 2016-12-17 21:16 - 00000000 ____D C:\Users\hiba\Desktop\BurnAware.Pro.v9.7 2016-12-17 16:00 - 2016-12-17 16:00 - 00002409 _____ C:\Users\hiba\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2016-12-17 10:11 - 2016-12-17 10:11 - 00097856 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll 2016-12-17 10:08 - 2017-01-02 02:23 - 00000000 ____D C:\ProgramData\Package Cache 2016-12-17 10:05 - 2016-12-17 10:05 - 00560260 _____ C:\WINDOWS\system32\cp_resources.bin 2016-12-17 10:05 - 2016-12-17 10:05 - 00271376 _____ C:\WINDOWS\system32\igfxCPL.cpl 2016-12-17 10:05 - 2016-12-17 10:05 - 00141328 _____ C:\WINDOWS\SysWOW64\libEGL.dll 2016-12-17 10:05 - 2016-12-17 10:05 - 00113688 _____ (Khronos Group) C:\WINDOWS\system32\Intel_OpenCL_ICD64.dll 2016-12-17 10:05 - 2016-12-17 10:05 - 00112144 _____ C:\WINDOWS\SysWOW64\libGLESv2.dll 2016-12-17 10:05 - 2016-12-17 10:05 - 00104472 _____ (Khronos Group) C:\WINDOWS\SysWOW64\Intel_OpenCL_ICD32.dll 2016-12-17 10:05 - 2016-12-17 10:05 - 00101400 _____ C:\WINDOWS\SysWOW64\libGLESv1_CM.dll 2016-12-17 10:04 - 2016-12-17 10:04 - 09891328 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\SysWOW64\RsCRIcon.dll 2016-12-17 10:04 - 2016-12-17 10:04 - 04332032 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\RtCRU64.exe 2016-12-17 10:04 - 2016-12-17 10:04 - 00822248 _____ (Intel(R) Corporation) C:\WINDOWS\system32\Drivers\IntcDAud.sys 2016-12-17 10:04 - 2016-12-17 10:04 - 00795640 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\iaStorA.sys 2016-12-17 10:04 - 2016-12-17 10:04 - 00543184 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\e1d65x64.sys 2016-12-17 10:04 - 2016-12-17 10:04 - 00418784 _____ (Realsil Semiconductor Corporation) C:\WINDOWS\system32\Drivers\RtsUer.sys 2016-12-17 10:04 - 2016-12-17 10:04 - 00221824 _____ (Samsung Electronics Co., Ltd.) C:\WINDOWS\system32\Drivers\ssudmdm.sys 2016-12-17 10:04 - 2016-12-17 10:04 - 00129152 _____ (Samsung Electronics Co., Ltd.) C:\WINDOWS\system32\Drivers\ssudbus.sys 2016-12-17 10:04 - 2016-12-17 10:04 - 00091088 _____ (Intel Corporation) C:\WINDOWS\system32\NicInstD.dll 2016-12-17 10:04 - 2016-12-17 10:04 - 00084480 _____ (Realtek Semiconductor.) C:\WINDOWS\system32\RtCRX64.dll 2016-12-17 10:04 - 2016-12-17 10:04 - 00080848 _____ (Intel Corporation) C:\WINDOWS\system32\e1dmsg.dll 2016-12-17 10:03 - 2016-12-17 10:03 - 01499408 _____ (Microsoft Corporation) C:\WINDOWS\system32\WdfCoInstaller01007.dll 2016-12-17 10:03 - 2016-12-17 10:03 - 00716928 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinUSBCoInstaller.dll 2016-12-17 09:49 - 2017-01-07 23:06 - 00002374 _____ C:\Users\Public\Desktop\Driver Booster 4.lnk 2016-12-17 09:49 - 2016-12-17 10:27 - 00000000 ____D C:\Users\scorebut\AppData\Roaming\IObit 2016-12-17 09:49 - 2016-12-17 09:49 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Booster 4 2016-12-17 09:49 - 2016-12-17 09:49 - 00000000 ____D C:\ProgramData\IObit 2016-12-17 09:49 - 2016-12-17 09:49 - 00000000 ____D C:\Program Files (x86)\IObit 2016-12-17 09:48 - 2016-12-17 09:48 - 00000000 ____D C:\Users\scorebut\Desktop\Driver Booster 4.1.0.389 2016-12-17 09:47 - 2017-01-07 15:24 - 00000000 ____D C:\Users\scorebut\Desktop\Auslogics.BoostSpeed.v9.1.0.0 2016-12-17 09:47 - 2016-12-17 09:47 - 00000000 ____D C:\Users\scorebut\Desktop\RedFox CloneBD v1.1.0.0 - Copie 2016-12-17 09:47 - 2016-12-17 09:47 - 00000000 ____D C:\Users\scorebut\Desktop\Jam.Software.Treesize.Pro.v6.3.5.1200 2016-12-17 09:46 - 2016-12-30 14:36 - 00000000 ____D C:\Users\scorebut\Desktop\MAJ Diagbox 7.62 2016-12-17 09:46 - 2016-12-18 12:19 - 00000000 ____D C:\Users\scorebut\Desktop\Malwarebytes Anti-Exploit Premium 1.09.1.1291 x86 x64 inclus keygen FFF[walibi2016] 2016-12-17 09:46 - 2016-12-17 09:46 - 00000000 ____D C:\Users\scorebut\Desktop\CCleaner.Professional+Business+Technician.v5.25+Portable 2016-12-17 09:46 - 2016-12-17 09:46 - 00000000 ____D C:\Users\scorebut\Desktop\BurnAware.Pro.v9.6 2016-12-17 09:31 - 2016-12-17 09:31 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games 2016-12-17 09:24 - 2016-12-17 09:24 - 00000000 ____D C:\Users\scorebut\Desktop\Malwarebytes.Premium.v3.0.4.1269 2016-12-17 09:11 - 2017-01-11 20:03 - 469762048 ___SH C:\pagefile.sys 2016-12-17 09:11 - 2016-12-17 09:12 - 00695692 _____ C:\WINDOWS\Minidump\121716-36359-01.dmp 2016-12-17 09:06 - 2017-01-06 22:33 - 00000780 _____ C:\Users\scorebut\Desktop\JRT.txt 2016-12-17 09:04 - 2016-12-17 09:04 - 00000000 ____D C:\Users\hiba\Desktop\TMRBLog 2016-12-17 07:50 - 2016-12-17 09:04 - 10095064 _____ (Trend Micro Inc.) C:\Users\hiba\Desktop\RootkitBusterV5.0-1203.exe 2016-12-17 07:45 - 2016-12-17 09:06 - 00380928 _____ C:\Users\hiba\Desktop\ikv7elm8.exe 2016-12-17 07:43 - 2016-12-17 08:59 - 16426128 _____ (McAfee Inc) C:\Users\hiba\Desktop\stinger64.exe 2016-12-17 00:06 - 2016-12-17 00:06 - 00000000 ____D C:\Users\hiba\Desktop\01NET HORS-SÉRiES 2016 2016-12-17 00:01 - 2016-12-17 00:01 - 02632192 _____ C:\Users\scorebut\Desktop\ZHPCleaner.exe 2016-12-16 23:34 - 2016-12-19 20:00 - 48750920 _____ C:\Users\hiba\Desktop\BDPUARLauncher_FR.exe 2016-12-16 23:14 - 2016-12-16 23:14 - 02627276 _____ C:\Users\hiba\Desktop\RunPEDetector1-0-3.zip 2016-12-16 23:10 - 2016-12-16 23:10 - 00966580 _____ C:\Users\hiba\Desktop\ComputraceDetector1.zip 2016-12-15 18:48 - 2016-12-15 18:48 - 00000000 ____D C:\Users\hiba\Documents\DOC OUAHIBA 2016-12-15 15:51 - 2016-12-09 15:52 - 00389408 __RSH C:\bootmgr 2016-12-15 15:51 - 2016-07-16 12:43 - 00000001 ___SH C:\BOOTNXT 2016-12-15 12:51 - 2016-10-17 16:35 - 00223464 _____ (Tonec Inc.) C:\WINDOWS\system32\Drivers\idmwfp.sys 2016-12-14 20:54 - 2016-12-14 20:54 - 00000666 ___SH C:\ProgramData\Microsoft\Windows\Start Menu\Programs\desktop.ini 2016-12-14 19:52 - 2016-12-12 00:56 - 00835576 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe 2016-12-14 19:52 - 2016-12-12 00:56 - 00177656 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl 2016-12-14 13:20 - 2016-12-09 11:18 - 01100128 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe 2016-12-14 13:20 - 2016-12-09 11:18 - 00989024 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe 2016-12-14 13:20 - 2016-12-09 11:18 - 00947552 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.efi 2016-12-14 13:20 - 2016-12-09 11:18 - 00811872 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.exe 2016-12-14 13:20 - 2016-12-09 11:15 - 08168000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll 2016-12-14 13:20 - 2016-12-09 11:14 - 01274712 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll 2016-12-14 13:20 - 2016-12-09 11:01 - 02323728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10warp.dll 2016-12-14 13:20 - 2016-12-09 10:57 - 01852720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll 2016-12-14 13:20 - 2016-12-09 10:38 - 00324608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll 2016-12-14 13:20 - 2016-12-09 10:36 - 03059200 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll 2016-12-14 13:20 - 2016-12-09 10:36 - 00410112 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll 2016-12-14 13:20 - 2016-12-09 10:33 - 01589760 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdtctm.dll 2016-12-14 13:20 - 2016-12-09 10:31 - 00313856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll 2016-12-14 13:20 - 2016-12-09 10:30 - 04612608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll 2016-12-14 13:20 - 2016-12-09 10:28 - 03306496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll 2016-12-14 13:20 - 2016-12-09 10:18 - 02138112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputService.dll 2016-12-14 13:20 - 2016-12-09 10:16 - 00353280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TextInputFramework.dll 2016-12-14 13:19 - 2016-12-09 11:42 - 01637728 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll 2016-12-14 13:19 - 2016-12-09 11:42 - 00137568 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll 2016-12-14 13:19 - 2016-12-09 11:34 - 01051112 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi 2016-12-14 13:19 - 2016-12-09 11:34 - 00894096 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe 2016-12-14 13:19 - 2016-12-09 11:33 - 01354320 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi 2016-12-14 13:19 - 2016-12-09 11:33 - 01173496 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe 2016-12-14 13:19 - 2016-12-09 11:32 - 07816032 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe 2016-12-14 13:19 - 2016-12-09 11:30 - 00377184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys 2016-12-14 13:19 - 2016-12-09 11:29 - 02681200 _____ C:\WINDOWS\system32\CoreUIComponents.dll 2016-12-14 13:19 - 2016-12-09 11:28 - 00764392 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll 2016-12-14 13:19 - 2016-12-09 11:27 - 00172528 _____ (Microsoft Corporation) C:\WINDOWS\system32\sspicli.dll 2016-12-14 13:19 - 2016-12-09 11:20 - 02677544 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10warp.dll 2016-12-14 13:19 - 2016-12-09 11:20 - 02189664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys 2016-12-14 13:19 - 2016-12-09 11:20 - 01738560 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll 2016-12-14 13:19 - 2016-12-09 11:20 - 00658784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys 2016-12-14 13:19 - 2016-12-09 11:20 - 00402272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys 2016-12-14 13:19 - 2016-12-09 11:19 - 01293152 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll 2016-12-14 13:19 - 2016-12-09 11:19 - 00168424 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcrypt.dll 2016-12-14 13:19 - 2016-12-09 11:18 - 02913144 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll 2016-12-14 13:19 - 2016-12-09 11:18 - 01267512 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinTypes.dll 2016-12-14 13:19 - 2016-12-09 11:18 - 00624048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys 2016-12-14 13:19 - 2016-12-09 11:15 - 01988560 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll 2016-12-14 13:19 - 2016-12-09 11:14 - 00241504 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHost.dll 2016-12-14 13:19 - 2016-12-09 11:11 - 02048496 _____ C:\WINDOWS\SysWOW64\CoreUIComponents.dll 2016-12-14 13:19 - 2016-12-09 11:10 - 01572768 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll 2016-12-14 13:19 - 2016-12-09 11:10 - 01461200 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll 2016-12-14 13:19 - 2016-12-09 11:09 - 00455520 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe 2016-12-14 13:19 - 2016-12-09 11:01 - 01503544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecs.dll 2016-12-14 13:19 - 2016-12-09 11:01 - 00861024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll 2016-12-14 13:19 - 2016-12-09 11:00 - 00106896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcrypt.dll 2016-12-14 13:19 - 2016-12-09 10:59 - 02166752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll 2016-12-14 13:19 - 2016-12-09 10:59 - 00846560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinTypes.dll 2016-12-14 13:19 - 2016-12-09 10:57 - 06668040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll 2016-12-14 13:19 - 2016-12-09 10:56 - 00959112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll 2016-12-14 13:19 - 2016-12-09 10:52 - 01435896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll 2016-12-14 13:19 - 2016-12-09 10:52 - 01415752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll 2016-12-14 13:19 - 2016-12-09 10:51 - 00117240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sspicli.dll 2016-12-14 13:19 - 2016-12-09 10:47 - 22563328 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll 2016-12-14 13:19 - 2016-12-09 10:45 - 00206848 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys 2016-12-14 13:19 - 2016-12-09 10:45 - 00040448 _____ (Microsoft Corporation) C:\WINDOWS\system32\WordBreakers.dll 2016-12-14 13:19 - 2016-12-09 10:42 - 00227328 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdd.dll 2016-12-14 13:19 - 2016-12-09 10:41 - 00380928 _____ (Microsoft Corporation) C:\WINDOWS\system32\wincorlib.dll 2016-12-14 13:19 - 2016-12-09 10:41 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WordBreakers.dll 2016-12-14 13:19 - 2016-12-09 10:40 - 00147968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32k.sys 2016-12-14 13:19 - 2016-12-09 10:37 - 00411136 _____ (Microsoft Corporation) C:\WINDOWS\system32\facecredentialprovider.dll 2016-12-14 13:19 - 2016-12-09 10:37 - 00261632 _____ (Microsoft Corporation) C:\WINDOWS\system32\indexeddbserver.dll 2016-12-14 13:19 - 2016-12-09 10:37 - 00049152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Shell.dll 2016-12-14 13:19 - 2016-12-09 10:36 - 06285312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll 2016-12-14 13:19 - 2016-12-09 10:36 - 00425984 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadcloudap.dll 2016-12-14 13:19 - 2016-12-09 10:36 - 00231936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.LockScreen.dll 2016-12-14 13:19 - 2016-12-09 10:34 - 00822784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll 2016-12-14 13:19 - 2016-12-09 10:34 - 00288768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wincorlib.dll 2016-12-14 13:19 - 2016-12-09 10:33 - 03777536 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll 2016-12-14 13:19 - 2016-12-09 10:32 - 00635904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll 2016-12-14 13:19 - 2016-12-09 10:31 - 03689984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll 2016-12-14 13:19 - 2016-12-09 10:31 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\indexeddbserver.dll 2016-12-14 13:19 - 2016-12-09 10:30 - 23677952 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll 2016-12-14 13:19 - 2016-12-09 10:30 - 19413504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll 2016-12-14 13:19 - 2016-12-09 10:29 - 04749312 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll 2016-12-14 13:19 - 2016-12-09 10:28 - 01004544 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll 2016-12-14 13:19 - 2016-12-09 10:27 - 19417088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll 2016-12-14 13:19 - 2016-12-09 10:27 - 13084160 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll 2016-12-14 13:19 - 2016-12-09 10:27 - 05114368 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdp.dll 2016-12-14 13:19 - 2016-12-09 10:27 - 00981504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.OnlineId.dll 2016-12-14 13:19 - 2016-12-09 10:26 - 08129536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll 2016-12-14 13:19 - 2016-12-09 10:26 - 01692672 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll 2016-12-14 13:19 - 2016-12-09 10:25 - 00376832 _____ (Microsoft Corporation) C:\WINDOWS\system32\CryptoWinRT.dll 2016-12-14 13:19 - 2016-12-09 10:24 - 02275840 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll 2016-12-14 13:19 - 2016-12-09 10:23 - 12177920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll 2016-12-14 13:19 - 2016-12-09 10:22 - 02820096 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputService.dll 2016-12-14 13:19 - 2016-12-09 10:22 - 02688512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll 2016-12-14 13:19 - 2016-12-09 10:22 - 01490944 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll 2016-12-14 13:19 - 2016-12-09 10:21 - 04746752 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll 2016-12-14 13:19 - 2016-12-09 10:21 - 03616768 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys 2016-12-14 13:19 - 2016-12-09 10:21 - 01512960 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys 2016-12-14 13:19 - 2016-12-09 10:21 - 00716800 _____ (Microsoft Corporation) C:\WINDOWS\system32\ShareHost.dll 2016-12-14 13:19 - 2016-12-09 10:20 - 06044160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll 2016-12-14 13:19 - 2016-12-09 10:20 - 03198464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdp.dll 2016-12-14 13:19 - 2016-12-09 10:20 - 00730624 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll 2016-12-14 13:19 - 2016-12-09 10:20 - 00187392 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmregistration.dll 2016-12-14 13:19 - 2016-12-09 10:20 - 00172544 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceEnroller.exe 2016-12-14 13:19 - 2016-12-09 10:19 - 01121280 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll 2016-12-14 13:19 - 2016-12-09 10:19 - 00433664 _____ (Microsoft Corporation) C:\WINDOWS\system32\TextInputFramework.dll 2016-12-14 13:19 - 2016-12-09 10:19 - 00261120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll 2016-12-14 13:19 - 2016-12-09 10:19 - 00119296 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputLocaleManager.dll 2016-12-14 13:19 - 2016-12-09 10:19 - 00085504 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditBufferTestHook.dll 2016-12-14 13:19 - 2016-12-09 10:18 - 03666432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll 2016-12-14 13:19 - 2016-12-09 10:18 - 00165376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mdmregistration.dll 2016-12-14 13:19 - 2016-12-09 10:17 - 00886272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aadtb.dll 2016-12-14 13:19 - 2016-12-09 10:17 - 00566784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ShareHost.dll 2016-12-14 13:19 - 2016-12-09 10:16 - 02998272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys 2016-12-14 13:19 - 2016-12-09 10:16 - 01880576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Logon.dll 2016-12-14 13:19 - 2016-12-09 10:15 - 00206848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Core.TextInput.dll 2016-12-14 13:19 - 2016-12-09 10:15 - 00092672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputLocaleManager.dll 2016-12-14 13:19 - 2016-12-09 10:15 - 00068096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EditBufferTestHook.dll 2016-12-14 13:19 - 2016-12-09 09:54 - 00483840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll 2016-12-13 18:48 - 2016-12-13 18:48 - 00000000 ____D C:\Users\hiba\Documents\caf ==================== Un mois - Modifiés - fichiers et dossiers ======== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2017-01-11 20:16 - 2016-08-14 11:47 - 00064713 _____ C:\Users\hiba\Desktop\FRST.txt 2017-01-11 20:14 - 2016-08-30 16:40 - 00000000 ____D C:\Users\hiba\AppData\Roaming\Skype 2017-01-11 20:14 - 2016-08-27 10:52 - 00000000 ____D C:\Users\hiba 2017-01-11 20:05 - 2016-11-23 15:47 - 00000000 ____D C:\Users\hiba\AppData\LocalLow\Mozilla 2017-01-11 20:04 - 2016-06-05 18:17 - 00000000 __SHD C:\Users\hiba\IntelGraphicsProfiles 2017-01-11 20:03 - 2016-08-27 10:42 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT 2017-01-11 20:00 - 2016-08-27 11:23 - 00786432 _____ C:\WINDOWS\system32\config\BBI 2017-01-11 14:53 - 2016-08-27 11:23 - 00032768 _____ C:\WINDOWS\system32\config\ELAM 2017-01-11 12:07 - 2016-08-27 11:26 - 00000000 ____D C:\WINDOWS\CbsTemp 2017-01-11 11:50 - 2016-08-27 11:32 - 00000000 ____D C:\WINDOWS\AppReadiness 2017-01-10 22:41 - 2016-08-30 20:21 - 00000000 ____D C:\Users\hiba\AppData\Roaming\BitTorrent 2017-01-10 22:29 - 2016-12-03 19:36 - 00000000 ____D C:\Users\hiba\AppData\Roaming\vlc 2017-01-10 22:24 - 2016-08-27 10:42 - 00000000 ____D C:\WINDOWS\system32\SleepStudy 2017-01-10 21:44 - 2016-11-25 11:27 - 00000000 ____D C:\Users\scorebut\AppData\LocalLow\Mozilla 2017-01-10 18:26 - 2016-08-27 11:32 - 00000000 ___HD C:\Program Files\WindowsApps 2017-01-09 21:26 - 2016-08-28 12:13 - 00000000 ____D C:\Users\scorebut\AppData\Roaming\Skype 2017-01-09 21:00 - 2016-06-05 18:55 - 00000000 __SHD C:\Users\scorebut\IntelGraphicsProfiles 2017-01-09 20:58 - 2016-10-15 23:33 - 00000000 ____D C:\Users\hiba\AppData\Roaming\HpUpdate 2017-01-09 20:55 - 2016-08-27 11:31 - 00000000 ____D C:\WINDOWS\INF 2017-01-09 14:03 - 2016-08-27 10:52 - 00000000 ____D C:\Users\scorebut 2017-01-08 20:08 - 2016-12-04 12:48 - 00000000 ____D C:\Users\hiba\Downloads\cfw darknet 4 81 2017-01-08 15:35 - 2016-03-29 20:24 - 00000000 ____D C:\Users\hiba\Downloads\Compressed 2017-01-08 14:30 - 2016-09-05 17:09 - 00000000 ____D C:\Users\scorebut\AppData\Roaming\ZHP 2017-01-07 23:39 - 2016-08-27 11:36 - 01104430 _____ C:\WINDOWS\system32\perfh00C.dat 2017-01-07 23:39 - 2016-08-27 11:36 - 00240360 _____ C:\WINDOWS\system32\perfc00C.dat 2017-01-07 23:39 - 2016-08-27 11:00 - 02380170 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2017-01-07 23:15 - 2016-11-04 21:34 - 00000000 ____D C:\Users\scorebut\AppData\Local\CrashDumps 2017-01-07 23:09 - 2016-01-29 20:52 - 00000000 ____D C:\Users\scorebut\Downloads\Compressed 2017-01-07 23:04 - 2016-11-24 23:06 - 00000000 ____D C:\ProgramData\NVIDIA 2017-01-07 23:04 - 2016-11-24 23:05 - 00000000 ____D C:\Program Files\NVIDIA Corporation 2017-01-07 22:58 - 2016-08-27 10:48 - 00000000 ____D C:\WINDOWS\SysWOW64\RTCOM 2017-01-07 22:17 - 2016-11-05 17:43 - 00000000 ____D C:\Users\scorebut\AppData\Local\ElevatedDiagnostics 2017-01-07 15:26 - 2016-08-27 11:32 - 00000000 ____D C:\WINDOWS\LiveKernelReports 2017-01-07 15:24 - 2016-08-22 17:59 - 00000000 __RHD C:\Users\Public\AccountPictures 2017-01-07 12:34 - 2016-10-16 19:25 - 00000000 ____D C:\ProgramData\Malwarebytes 2017-01-05 20:24 - 2016-11-24 23:06 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation 2017-01-03 19:57 - 2016-10-08 12:52 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information 2017-01-03 19:51 - 2016-08-27 11:32 - 00000000 ____D C:\WINDOWS\system32\NDF 2017-01-02 02:24 - 2016-08-27 10:47 - 00000000 ____D C:\Program Files\Intel 2017-01-02 02:22 - 2016-10-30 10:52 - 00000000 ____D C:\Program Files (x86)\Intel 2017-01-02 02:09 - 2016-08-27 10:48 - 00018960 _____ (Logitech, Inc.) C:\WINDOWS\system32\Drivers\LNonPnP.sys 2017-01-02 02:07 - 2016-11-01 15:18 - 00000000 ____D C:\WINDOWS\Panther 2016-12-30 14:36 - 2016-11-05 14:27 - 00000000 ____D C:\Users\scorebut\Desktop\EaseUS Data Recovery Wizard Technician Edition 10.2 2016-12-28 12:41 - 2016-11-20 18:50 - 00215928 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2016-12-26 12:57 - 2016-11-01 21:29 - 00000000 ____D C:\Program Files (x86)\AOMEI Backupper 2016-12-26 12:57 - 2016-10-31 08:52 - 00000000 ____D C:\Users\scorebut\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ClockworkMod 2016-12-26 12:57 - 2016-08-27 11:06 - 00000000 ___RD C:\Users\scorebut\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup 2016-12-26 12:57 - 2016-08-27 10:52 - 00000000 ___RD C:\Users\scorebut\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools 2016-12-25 22:12 - 2016-08-27 11:23 - 00000000 ____D C:\Program Files\Common Files 2016-12-25 22:06 - 2016-11-11 22:13 - 00000000 ____D C:\Program Files (x86)\Raxco 2016-12-25 15:15 - 2016-10-23 10:40 - 00000000 ____D C:\Users\hiba\Desktop\Auslogics Disk Defrag Pro 4.8.0.0 2016-12-25 15:15 - 2016-08-06 15:05 - 00000000 ____D C:\Users\hiba\Desktop\Auslogics Disk Defrag Pro 4.7.0.0 x86 x64 2016-12-24 13:08 - 2016-07-24 17:53 - 00372246 _____ C:\Users\hiba\Documents\Duplicate Cleaner log.txt 2016-12-21 13:18 - 2016-10-08 22:04 - 00000000 ____D C:\Program Files (x86)\HP 2016-12-21 13:18 - 2016-10-08 21:37 - 00000000 ____D C:\ProgramData\HP 2016-12-21 13:12 - 2016-08-16 14:27 - 00000000 ____D C:\Users\hiba\Downloads\HP Downloads 2016-12-21 12:35 - 2016-08-22 17:59 - 00000000 ___RD C:\Users\scorebut\Videos 2016-12-21 12:34 - 2016-09-30 20:32 - 00000000 ____D C:\Program Files\Common Files\logishrd 2016-12-19 21:01 - 2016-08-29 14:19 - 00000000 ____D C:\Users\hiba\AppData\Local\Packages 2016-12-19 20:57 - 2016-08-27 10:52 - 00000000 ___RD C:\Users\hiba\AppData\Roaming\Microsoft\Windows\Start Menu\Programs 2016-12-17 21:59 - 2016-08-27 11:38 - 00000000 ____D C:\WINDOWS\SysWOW64\sda 2016-12-17 16:01 - 2016-08-29 14:22 - 00000000 ___RD C:\Users\hiba\OneDrive 2016-12-17 10:11 - 2016-11-11 17:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java 2016-12-17 10:11 - 2016-01-14 22:32 - 00000000 ____D C:\Users\scorebut\AppData\LocalLow 2016-12-17 10:10 - 2016-11-11 17:25 - 00000000 ____D C:\Program Files (x86)\Java 2016-12-17 10:05 - 2016-08-27 11:32 - 00104472 _____ (Khronos Group) C:\WINDOWS\SysWOW64\opencl.dll 2016-12-17 10:05 - 2016-08-27 10:47 - 00113688 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.DLL 2016-12-17 09:30 - 2016-11-21 22:34 - 00000000 ____D C:\Users\hiba\AppData\Local\Ubisoft Game Launcher 2016-12-17 09:11 - 2016-11-01 17:57 - 682571585 _____ C:\WINDOWS\MEMORY.DMP 2016-12-17 09:11 - 2016-11-01 17:57 - 00000000 ____D C:\WINDOWS\Minidump 2016-12-17 08:57 - 2016-08-27 11:06 - 00000174 ___SH C:\Users\scorebut\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\desktop.ini 2016-12-17 08:57 - 2016-08-27 11:06 - 00000174 ___SH C:\Users\scorebut\AppData\Roaming\Microsoft\Windows\Start Menu\desktop.ini 2016-12-17 08:57 - 2016-08-27 11:06 - 00000000 ___RD C:\Users\scorebut\Searches 2016-12-17 08:57 - 2016-08-27 11:06 - 00000000 ___RD C:\Users\scorebut\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools 2016-12-17 08:57 - 2016-08-27 11:06 - 00000000 ____D C:\Users\scorebut\AppData\Local\Packages 2016-12-17 08:57 - 2016-08-22 17:59 - 00000000 ___RD C:\Users\scorebut\Saved Games 2016-12-17 08:57 - 2016-08-22 17:59 - 00000000 ___RD C:\Users\scorebut\Contacts 2016-12-17 08:57 - 2016-01-14 22:32 - 00000402 ___SH C:\Users\scorebut\Documents\desktop.ini 2016-12-17 08:57 - 2016-01-14 22:32 - 00000282 ___SH C:\Users\scorebut\Downloads\desktop.ini 2016-12-17 08:57 - 2016-01-14 22:32 - 00000282 ___SH C:\Users\scorebut\Desktop\desktop.ini 2016-12-17 08:57 - 2016-01-14 22:32 - 00000000 ___RD C:\Users\scorebut\Music 2016-12-17 08:57 - 2016-01-14 22:32 - 00000000 ___RD C:\Users\scorebut\Links 2016-12-17 08:57 - 2016-01-14 22:32 - 00000000 ___RD C:\Users\scorebut\Favorites 2016-12-17 08:09 - 2016-12-04 20:53 - 00000885 _____ C:\Users\scorebut\Desktop\ZHPCleaner.lnk 2016-12-17 00:47 - 2016-10-27 04:30 - 00000000 ___HD C:\Program Files (x86)\DrFoneAndroid_Temp 2016-12-17 00:04 - 2016-10-31 09:43 - 00000000 ____D C:\Users\scorebut\AppData\Local\Android 2016-12-16 23:57 - 2016-10-27 04:30 - 00000000 ____D C:\Program Files (x86)\Wondershare 2016-12-16 23:56 - 2016-10-27 04:30 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wondershare 2016-12-16 23:39 - 2016-10-31 09:37 - 00000000 ____D C:\Program Files\Android 2016-12-16 20:22 - 2016-09-05 17:16 - 00003586 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA 2016-12-16 20:22 - 2016-09-05 17:16 - 00003462 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore 2016-12-16 20:22 - 2016-08-27 11:32 - 00000000 ____D C:\WINDOWS\Tasks 2016-12-16 15:21 - 2016-08-27 18:18 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2016-12-15 21:12 - 2016-08-27 10:51 - 00524288 ___SH C:\WINDOWS\system32\config\COMPONENTS{713aca98-6c3a-11e6-a6fe-408d5c7629fa}.TMContainer00000000000000000001.regtrans-ms 2016-12-15 21:11 - 2016-08-27 11:32 - 00000000 ____D C:\WINDOWS\rescache 2016-12-15 20:23 - 2016-08-27 18:18 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox 2016-12-15 15:51 - 2016-01-14 22:13 - 00000000 __SHD C:\Boot 2016-12-14 20:55 - 2016-10-20 20:11 - 00524288 ___SH C:\WINDOWS\system32\config\drivers{a292b620-96f8-11e6-a721-408d5c7629fa}.TMContainer00000000000000000001.regtrans-ms 2016-12-14 20:55 - 2016-10-20 20:11 - 00065536 ___SH C:\WINDOWS\system32\config\drivers{a292b620-96f8-11e6-a721-408d5c7629fa}.TM.blf 2016-12-14 20:55 - 2016-08-27 11:32 - 00000000 ____D C:\WINDOWS\SysWOW64\fr-FR 2016-12-14 20:55 - 2016-08-27 11:32 - 00000000 ____D C:\WINDOWS\system32\fr-FR 2016-12-14 20:55 - 2016-08-27 11:32 - 00000000 ____D C:\WINDOWS\system32\Boot 2016-12-14 20:55 - 2016-08-27 11:32 - 00000000 ____D C:\WINDOWS\ShellExperiences 2016-12-14 20:55 - 2016-08-27 11:32 - 00000000 ____D C:\WINDOWS\AppPatch 2016-12-14 19:48 - 2016-08-27 18:20 - 135632432 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2016-12-14 11:07 - 2016-09-05 17:16 - 00002275 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk ==================== Fichiers à la racine de certains dossiers ======= 2016-11-06 21:56 - 2016-11-26 19:34 - 0000332 _____ () C:\Users\scorebut\AppData\Roaming\burnaware.ini 2016-08-27 19:38 - 2016-08-27 19:38 - 0000000 _____ () C:\Users\scorebut\AppData\Roaming\gdfw.log 2016-08-27 19:38 - 2016-08-27 19:38 - 0000779 _____ () C:\Users\scorebut\AppData\Roaming\gdscan.log 2016-10-29 13:17 - 2016-10-29 13:17 - 9276713 _____ () C:\Users\scorebut\AppData\Local\SelfExtractible.zip 2016-08-27 10:48 - 2016-08-27 10:48 - 0000000 ____H () C:\ProgramData\DP45977C.lfl Certains fichiers dans TEMP: ==================== C:\Users\scorebut\AppData\Local\Temp\dllnt_dump.dll ==================== Bamital & volsnap ====================== (Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.) C:\WINDOWS\system32\winlogon.exe => Le fichier est signé numériquement C:\WINDOWS\system32\wininit.exe => Le fichier est signé numériquement C:\WINDOWS\explorer.exe => Le fichier est signé numériquement C:\WINDOWS\SysWOW64\explorer.exe => Le fichier est signé numériquement C:\WINDOWS\system32\svchost.exe => Le fichier est signé numériquement C:\WINDOWS\SysWOW64\svchost.exe => Le fichier est signé numériquement C:\WINDOWS\system32\services.exe => Le fichier est signé numériquement C:\WINDOWS\system32\User32.dll => Le fichier est signé numériquement C:\WINDOWS\SysWOW64\User32.dll => Le fichier est signé numériquement C:\WINDOWS\system32\userinit.exe => Le fichier est signé numériquement C:\WINDOWS\SysWOW64\userinit.exe => Le fichier est signé numériquement C:\WINDOWS\system32\rpcss.dll => Le fichier est signé numériquement C:\WINDOWS\system32\dnsapi.dll => Le fichier est signé numériquement C:\WINDOWS\SysWOW64\dnsapi.dll => Le fichier est signé numériquement C:\WINDOWS\system32\Drivers\volsnap.sys => Le fichier est signé numériquement ==================== BCD ================================ Gestionnaire de d‚marrage Windows --------------------------------- identificateur {bootmgr} device partition=C: path \bootmgr description Windows Boot Manager locale fr-FR inherit {globalsettings} default {current} resumeobject {9f6b6755-6c42-11e6-a6ef-b3e0e1b4a244} displayorder {current} toolsdisplayorder {memdiag} timeout 30 displaybootmenu Yes Chargeur de d‚marrage Windows ----------------------------- identificateur {042a39cb-0e60-11e6-97df-8af74f6ad4b6} device ramdisk=[unknown]\Recovery\042a39cb-0e60-11e6-97df-8af74f6ad4b6\Winre.wim,{042a39cc-0e60-11e6-97df-8af74f6ad4b6} path \windows\system32\winload.exe description Windows Recovery Environment inherit {bootloadersettings} osdevice ramdisk=[unknown]\Recovery\042a39cb-0e60-11e6-97df-8af74f6ad4b6\Winre.wim,{042a39cc-0e60-11e6-97df-8af74f6ad4b6} systemroot \windows nx OptIn winpe Yes Chargeur de d‚marrage Windows ----------------------------- identificateur {042a39ce-0e60-11e6-97df-8af74f6ad4b6} device partition=F: path \Windows\system32\winload.exe description Windows 7 locale fr-FR inherit {bootloadersettings} recoverysequence {042a39cf-0e60-11e6-97df-8af74f6ad4b6} recoveryenabled Yes osdevice partition=F: systemroot \Windows resumeobject {042a39cd-0e60-11e6-97df-8af74f6ad4b6} nx OptIn Chargeur de d‚marrage Windows ----------------------------- identificateur {042a39cf-0e60-11e6-97df-8af74f6ad4b6} device ramdisk=[F:]\Recovery\042a39cf-0e60-11e6-97df-8af74f6ad4b6\Winre.wim,{042a39d0-0e60-11e6-97df-8af74f6ad4b6} path \windows\system32\winload.exe description Windows Recovery Environment inherit {bootloadersettings} osdevice ramdisk=[F:]\Recovery\042a39cf-0e60-11e6-97df-8af74f6ad4b6\Winre.wim,{042a39d0-0e60-11e6-97df-8af74f6ad4b6} systemroot \windows nx OptIn winpe Yes Chargeur de d‚marrage Windows ----------------------------- identificateur {59d03b7a-6705-11e6-8206-90fc56407877} device ramdisk=[C:]\Recovery\WindowsRE\Winre.wim,{59d03b7b-6705-11e6-8206-90fc56407877} path \windows\system32\winload.exe description Windows Recovery Environment locale fr-FR inherit {bootloadersettings} displaymessage Recovery displaymessageoverride Recovery osdevice ramdisk=[C:]\Recovery\WindowsRE\Winre.wim,{59d03b7b-6705-11e6-8206-90fc56407877} systemroot \windows nx OptIn bootmenupolicy Standard winpe Yes Chargeur de d‚marrage Windows ----------------------------- identificateur {current} device partition=C: path \WINDOWS\system32\winload.exe description Windows 10 locale fr-FR inherit {bootloadersettings} recoverysequence {59d03b7a-6705-11e6-8206-90fc56407877} truncatememory 0x200000000 displaymessageoverride Recovery recoveryenabled Yes allowedinmemorysettings 0x15000075 osdevice partition=C: systemroot \WINDOWS resumeobject {9f6b6755-6c42-11e6-a6ef-b3e0e1b4a244} nx OptIn numproc 2 bootmenupolicy Standard usefirmwarepcisettings No Reprendre … partir de la mise en veille prolong‚e ------------------------------------------------- identificateur {042a39cd-0e60-11e6-97df-8af74f6ad4b6} device partition=F: path \Windows\system32\winresume.exe description Windows Resume Application locale fr-FR inherit {resumeloadersettings} filedevice partition=F: filepath \hiberfil.sys pae Yes debugoptionenabled No Reprendre … partir de la mise en veille prolong‚e ------------------------------------------------- identificateur {9f6b6755-6c42-11e6-a6ef-b3e0e1b4a244} device partition=C: path \WINDOWS\system32\winresume.exe description Windows Resume Application locale fr-FR inherit {resumeloadersettings} recoverysequence {59d03b7a-6705-11e6-8206-90fc56407877} recoveryenabled Yes allowedinmemorysettings 0x15000075 filedevice partition=C: filepath \hiberfil.sys bootmenupolicy Standard debugoptionenabled No Reprendre … partir de la mise en veille prolong‚e ------------------------------------------------- identificateur {ad4136b2-fd63-11e5-a60c-806e6f6e6963} device partition=C: path \Windows\system32\winresume.exe description Microsoft Windows 10 locale fr-FR inherit {resumeloadersettings} filedevice partition=C: filepath \hiberfil.sys debugoptionenabled No Testeur de m‚moire Windows -------------------------- identificateur {memdiag} device partition=C: path \boot\memtest.exe description Diagnostics m‚moire Windows locale fr-FR inherit {globalsettings} badmemoryaccess Yes ParamŠtres EMS -------------- identificateur {emssettings} bootems No ParamŠtres du d‚bogueur ----------------------- identificateur {dbgsettings} debugtype Serial debugport 1 baudrate 115200 Erreurs de m‚moire RAM ---------------------- identificateur {badmemory} ParamŠtres globaux ------------------ identificateur {globalsettings} inherit {dbgsettings} {emssettings} {badmemory} ParamŠtres du chargeur de d‚marrage ----------------------------------- identificateur {bootloadersettings} inherit {globalsettings} {hypervisorsettings} ParamŠtres de l'hyperviseur ------------------- identificateur {hypervisorsettings} hypervisordebugtype Serial hypervisordebugport 1 hypervisorbaudrate 115200 ParamŠtres du chargeur de reprise --------------------------------- identificateur {resumeloadersettings} inherit {globalsettings} Options de p‚riph‚rique ----------------------- identificateur {042a39d0-0e60-11e6-97df-8af74f6ad4b6} description Ramdisk Options ramdisksdidevice partition=F: ramdisksdipath \Recovery\042a39cf-0e60-11e6-97df-8af74f6ad4b6\boot.sdi Options de p‚riph‚rique ----------------------- identificateur {1f8184a5-14de-11df-9734-f08c6d8c50b0} description Ramdisk Options ramdisksdidevice unknown ramdisksdipath \Recovery\1f8184a4-14de-11df-9734-f08c6d8c50b0\boot.sdi Options de p‚riph‚rique ----------------------- identificateur {5206d816-66f7-11e6-a670-408d5c7629fa} description Windows Setup ramdisksdidevice partition=C: ramdisksdipath \$WINDOWS.~BT\Sources\SafeOS\boot.sdi Options de p‚riph‚rique ----------------------- identificateur {59d03b7b-6705-11e6-8206-90fc56407877} description Windows Recovery ramdisksdidevice partition=C: ramdisksdipath \Recovery\WindowsRE\boot.sdi LastRegBack: 2017-01-08 16:23 ==================== Fin de FRST.txt ============================