Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 15-03-2017
Exécuté par Eloïse (administrateur) sur PC-DE-ELOÏSE (27-03-2017 21:43:46)
Exécuté depuis C:\Users\Eloïse\Desktop
Profils chargés: Eloïse (Profils disponibles: Eloïse & julien & Invité)
Platform: Windows Vista (TM) Home Basic Service Pack 2 (X64) Langue: Français (France)
Internet Explorer Version 9 (Navigateur par défaut: FF)
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Microsoft Corporation) C:\Windows\System32\SLsvc.exe
(QIHU 360 SOFTWARE CO. LIMITED) C:\Program Files (x86)\360\Total Security\safemon\QHActiveDefense.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(QIHU 360 SOFTWARE CO. LIMITED) C:\Program Files (x86)\360\Total Security\safemon\QHWatchdog.exe
() C:\Program Files (x86)\Adobe\Photoshop Elements 6.0\PhotoshopElementsFileAgent.exe
(Packard Bell Services) C:\Windows\System32\HidService.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(WIBU-SYSTEMS AG) C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Acer Incorporated) C:\Program Files (x86)\Packard Bell\SetUpMyPC\SmpSys.exe
(Labtec Inc,) C:\Program Files (x86)\Common Files\LogiShrd\LComMgr\Communications_Helper.exe
(QIHU 360 SOFTWARE CO. LIMITED) C:\Program Files (x86)\360\Total Security\safemon\QHSafeTray.exe
(Microsoft Corporation) C:\Program Files\Windows Media Player\wmpnscfg.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Microsoft Corporation) C:\Windows\System32\sdclt.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_25_0_0_127.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_25_0_0_127.exe
(Microsoft Corporation) C:\Windows\System32\mobsync.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbam.exe
(Microsoft Corporation) C:\Windows\System32\conime.exe
==================== Registre (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [7574048 2009-03-30] (Realtek Semiconductor)
HKLM\...\Run: [Skytel] => C:\Program Files\Realtek\Audio\HDA\Skytel.exe [1833504 2009-03-30] (Realtek Semiconductor Corp.)
HKLM\...\Run: [Malwarebytes TrayApp] => C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\mbamtray.exe [2780112 2017-01-20] (Malwarebytes)
HKLM-x32\...\Run: [LogitechCommunicationsManager] => C:\Program Files (x86)\Common Files\LogiShrd\LComMgr\Communications_Helper.exe [488984 2007-03-06] (Labtec Inc,)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [Adobe Reader Speed Launcher] => C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe [41056 2013-05-08] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [QHSafeTray] => C:\Program Files (x86)\360\Total Security\safemon\QHSafeTray.exe [1940904 2017-03-03] (QIHU 360 SOFTWARE CO. LIMITED)
HKLM-x32\...\Run: [Bron-Spizaetus] => "C:\Windows\ShellNew\RakyatKelaparan.exe"
HKLM-x32\...\Winlogon: [Shell] Explorer.exe "C:\Windows\KesenjanganSosial.exe" [ ] () <=== ATTENTION
HKU\S-1-5-21-2203072718-355570073-3531216237-1000\...\Run: [SmpcSys] => C:\Program Files (x86)\Packard Bell\SetUpMyPC\SmpSys.exe [1160736 2009-03-18] (Acer Incorporated)
HKU\S-1-5-21-2203072718-355570073-3531216237-1000\...\Run: [GUDelayStartup] => C:\Program Files (x86)\Glary Utilities 5\StartupManager.exe [43984 2016-06-23] (Glarysoft Ltd)
HKU\S-1-5-21-2203072718-355570073-3531216237-1000\...\Run: [Tok-Cirrhatus-2124] => "C:\Users\Eloïse\AppData\Local\br5271on.exe"
HKU\S-1-5-21-2203072718-355570073-3531216237-1000\...\Run: [Tok-Cirrhatus] => [X]
HKU\S-1-5-21-2203072718-355570073-3531216237-1000\...\Policies\system: [DisableRegistryTools] 1
HKU\S-1-5-21-2203072718-355570073-3531216237-1000\...\Policies\system: [DisableCMD] 0
HKU\S-1-5-21-2203072718-355570073-3531216237-1000\...\Policies\Explorer: [NoFolderOptions] 1
HKU\S-1-5-21-2203072718-355570073-3531216237-1000\...\MountPoints2: {d5048bf9-fc2c-11e6-8131-f69b7b8202a9} - I:\Startme.exe
HKU\S-1-5-21-2203072718-355570073-3531216237-1000\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\system32\PACKAR~1.SCR [430080 2009-04-22] ()
BootExecute: autocheck autochk *
AlternateShell: cmd-brontok.exe
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{8081314B-425F-4271-B5E4-1943769918FE}: [DhcpNameServer] 192.168.42.129
Tcpip\..\Interfaces\{87F52A75-128C-45EC-BFA3-9EC098ED25D1}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{AD975D88-8861-4B1D-9EAB-9F01824AAAEC}: [DhcpNameServer] 192.168.42.129
Internet Explorer:
==================
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\.DEFAULT\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\S-1-5-21-2203072718-355570073-3531216237-1000\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://homepage.packardbell.com/rdr.aspx?b=ACPW&l=040c&s=1&o=vb64&d=0609&m=imedia_s1710
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://fr.msn.com/
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://homepage.packardbell.com/rdr.aspx?b=ACPW&l=040c&s=1&o=vb64&d=0609&m=imedia_s1710
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\S-1-5-21-2203072718-355570073-3531216237-1000\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://homepage.packardbell.com/rdr.aspx?b=ACPW&l=040c&s=1&o=vb64&d=0609&m=imedia_s1710
SearchScopes: HKLM-x32 -> DefaultScope {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = hxxp://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7ACPW
SearchScopes: HKLM-x32 -> {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = hxxp://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7ACPW
SearchScopes: HKU\S-1-5-21-2203072718-355570073-3531216237-1000 -> DefaultScope {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL =
SearchScopes: HKU\S-1-5-21-2203072718-355570073-3531216237-1000 -> {9D5BD211-422C-4164-9298-BB4186A30F31} URL = hxxp://www.bing.com/search?q={searchTerms}&mkt=fr-FR&form=MOAWA1
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28] (Microsoft Corp.)
BHO: SafeMon Class -> {B69F34DD-F0F9-42DC-9EDD-957187DA688D} -> C:\Program Files (x86)\360\Total Security\safemon\safemon64.dll [2017-03-03] (Qihu 360 Software Co., Ltd.)
BHO-x32: Programme d'aide de l'Assistant de connexion Windows Live ID -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28] (Microsoft Corp.)
BHO-x32: SafeMon Class -> {B69F34DD-F0F9-42DC-9EDD-957187DA688D} -> C:\Program Files (x86)\360\Total Security\safemon\safemon.dll [2017-03-03] (Qihu 360 Software Co., Ltd.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll [2011-04-12] (Sun Microsystems, Inc.)
Toolbar: HKU\S-1-5-21-2203072718-355570073-3531216237-1000 -> Pas de nom - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - Pas de fichier
Toolbar: HKU\S-1-5-21-2203072718-355570073-3531216237-1000 -> Pas de nom - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - Pas de fichier
Toolbar: HKU\S-1-5-21-2203072718-355570073-3531216237-1000 -> &Links - {F2CF5485-4E02-4F68-819C-B92DE9277049} - C:\Windows\system32\ieframe.dll [2016-11-09] (Microsoft Corporation)
Toolbar: HKU\S-1-5-21-2203072718-355570073-3531216237-1000 -> Pas de nom - {1392B8D2-5C05-419F-A8F6-B9F15A596612} - Pas de fichier
DPF: HKLM-x32 {2357B3CF-7F8D-4451-8D81-FD6097610AEE} hxxp://www.visiogood.com/jalss/cfweb_activex.camfrogweb.com-advanced-2.0.2.20_instmodule.exe
DPF: HKLM-x32 {32C3FEAE-0877-4767-8C20-62A5829A0945} hxxp://www.facebook.com/fbplugin/win32/axfbootloader.cab?1265449976041
DPF: HKLM-x32 {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} hxxp://www.bitdefender.fr/scan_fr/scan8/oscan8.cab
DPF: HKLM-x32 {67DABFBF-D0AB-41FA-9C46-CC0F21721616} hxxp://download.divx.com/player/DivXBrowserPlugin.cab
DPF: HKLM-x32 {C3F79A2B-B9B4-4A66-B012-3EE46475B072} hxxp://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
DPF: HKLM-x32 {DFB5BCF1-06AE-4ABB-BFA8-1E228F41C50A} hxxp://bobtv.fr/download/cfweb_www.bobtv.fr-download_instmodule.exe
DPF: HKLM-x32 {E2883E8F-472F-4FB0-9522-AC9BF37916A7} hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
FireFox:
========
FF ProfilePath: C:\Users\Eloïse\AppData\Roaming\TomTom\HOME\Profiles\hm2a4zr2.default [2016-06-14]
FF Extension: (Pas de nom) - C:\Program Files (x86)\TomTom HOME 2\xul\extensions\MapShare-status@tomtom.com [non trouvé(e)]
FF ProfilePath: C:\Users\Eloïse\AppData\Roaming\Mozilla\Firefox\Profiles\tkvj3m12.default [2017-03-27]
FF SelectedSearchEngine: Mozilla\Firefox\Profiles\tkvj3m12.default -> Yahoo®
FF Homepage: Mozilla\Firefox\Profiles\tkvj3m12.default -> hxxps://search.lilo.org
FF Session Restore: Mozilla\Firefox\Profiles\tkvj3m12.default -> est activé.
FF Extension: (lilo) - C:\Users\Eloïse\AppData\Roaming\Mozilla\Firefox\Profiles\tkvj3m12.default\Extensions\jid1-zmgYgiQPXJtjNA@jetpack.xpi [2016-06-21]
FF Extension: (LastPass) - C:\Users\Eloïse\AppData\Roaming\Mozilla\Firefox\Profiles\tkvj3m12.default\Extensions\support@lastpass.com [2017-03-22]
FF Extension: (FxIF) - C:\Users\Eloïse\AppData\Roaming\Mozilla\Firefox\Profiles\tkvj3m12.default\Extensions\{11483926-db67-4190-91b1-ef20fcec5f33}.xpi [2016-05-14]
FF HKLM-x32\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF Extension: (Microsoft .NET Framework Assistant) - C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2009-09-16] [non signé]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_25_0_0_127.dll [2017-03-14] ()
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_25_0_0_127.dll [2017-03-14] ()
FF Plugin-x32: @divx.com/DivX Browser Plugin,version=1.0.0 -> C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll [2010-08-25] (DivX,Inc.)
FF Plugin-x32: @divx.com/DivX VOD Helper,version=1.0.0 -> C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll [2011-01-24] (DivX, LLC.)
FF Plugin-x32: @java.com/JavaPlugin -> C:\Program Files (x86)\Java\jre6\bin\new_plugin\npjp2.dll [2011-04-12] (Sun Microsystems, Inc.)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50428.0\npctrl.dll [2016-04-27] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3538.0513 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3555.0308 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WPF,version=3.5 -> C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll [2008-07-29] (Microsoft Corporation)
FF Plugin-x32: @pandasecurity.com/activescan -> C:\Program Files (x86)\Panda Security\ActiveScan 2.0\npwrapper.dll [Pas de fichier]
FF Plugin-x32: @t-immersion.com/DFusionHomeWebPlugIn -> C:\Program Files (x86)\Total Immersion\DFusionHomeWebPlugIn\NPDFusionWebFirefox.dll [2011-05-11] (Total Immersion)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-17] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-17] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll [2013-05-08] (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\np-mswmp.dll [2007-04-10] (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npdeployJava1.dll [2011-04-12] (Sun Microsystems, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\NPOFFICE.DLL [2007-03-22] (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll [2013-05-08] (Adobe Systems Inc.)
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Eloïse\AppData\Local\Google\Chrome\User Data\Default [2017-03-14]
CHR Extension: (360 Internet Protection) - C:\Users\Eloïse\AppData\Local\Google\Chrome\User Data\Default\Extensions\glcimepnljoholdmjchkloafkggfoijh [2017-03-08]
CHR HKLM-x32\...\Chrome\Extension: [glcimepnljoholdmjchkloafkggfoijh] - hxxps://clients2.google.com/service/update2/crx
==================== Services (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 AdobeActiveFileMonitor6.0; C:\Program Files (x86)\Adobe\Photoshop Elements 6.0\PhotoshopElementsFileAgent.exe [124832 2007-09-11] ()
S3 cfbackd; C:\Program Files (x86)\CleverFiles\Disk Drill\cfbackd.w32.exe [211520 2016-09-29] (CleverFiles)
S3 Crypkey License; C:\Windows\system32\crypserv.exe [122880 2008-05-08] (CrypKey (Canada) Ltd.) [Fichier non signé]
S3 DigitalWave.Update.Service; C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe [388968 2016-03-28] (Digital Wave Ltd.)
R2 GenericHidService; C:\Windows\system32\HidService.exe [83264 2008-05-29] (Packard Bell Services)
S2 LVSrvLauncher; C:\Program Files\Common Files\LogiShrd\SrvLnch\SrvLnch.exe [173344 2007-03-06] (Labtec Inc.)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [4355024 2017-01-20] (Malwarebytes)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1879488 2016-11-14] (NVIDIA Corporation)
R2 QHActiveDefense; C:\Program Files (x86)\360\Total Security\safemon\QHActiveDefense.exe [928168 2017-03-03] (QIHU 360 SOFTWARE CO. LIMITED)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [383544 2008-01-21] (Microsoft Corporation)
S3 ezSharedSvc; C:\Windows\System32\ezsvc7.dll [X]
===================== Pilotes (Avec liste blanche) ======================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R3 360AvFlt; C:\Windows\System32\DRIVERS\360AvFlt.sys [86248 2017-03-03] (360.cn)
R3 360AvFlt; C:\Windows\SysWOW64\DRIVERS\360AvFlt.sys [86248 2017-03-03] (360.cn)
S1 360FsFlt; C:\Windows\System32\DRIVERS\360FsFlt.sys [391392 2017-03-03] (360.cn)
S1 BAPIDRV; C:\Windows\System32\DRIVERS\BAPIDRV64.sys [188864 2017-03-03] (360.cn)
S3 ezplay; C:\Windows\System32\Drivers\ezplay.sys [118400 2010-09-15] (VSO Software)
S3 LVcKap64; C:\Windows\System32\DRIVERS\LVcKap64.sys [1029024 2007-03-06] (Labtec Inc.)
S3 LVMVDrv; C:\Windows\System32\DRIVERS\LVMVDrv.sys [2496928 2007-03-06] (Labtec Inc.)
S3 lvpepf64; C:\Windows\System32\DRIVERS\lv302a64.sys [16160 2007-03-06] (Labtec Inc.)
S3 LVUSBS64; C:\Windows\System32\drivers\LVUSBS64.sys [58400 2007-03-06] (Labtec Inc.)
R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [251840 2017-03-27] (Malwarebytes)
R1 NetworkX; C:\Windows\system32\ckldrv.sys [28664 2008-03-17] ()
S3 NVENETFD; C:\Windows\System32\DRIVERS\nvm60x64.sys [742696 2006-10-10] (NVIDIA Corporation)
R0 pavboot; C:\Windows\System32\drivers\pavboot64.sys [33800 2009-06-30] (Panda Security, S.L.)
S3 PID_PEPI; C:\Windows\System32\DRIVERS\LV302V64.SYS [1160864 2007-03-06] (Labtec Inc.)
R0 pwdrvio; C:\Windows\System32\pwdrvio.sys [19152 2013-09-30] ()
S3 pwdspio; C:\Windows\system32\pwdspio.sys [12504 2013-09-30] ()
S3 Spyder2; C:\Windows\System32\DRIVERS\Spyder2.sys [15360 2007-01-17] ()
S3 StarOpen; pas de ImagePath
S3 StkTMini; C:\Windows\System32\Drivers\StkTMini.sys [528256 2007-11-15] (Syntek)
S3 BTCFilterService; system32\DRIVERS\motfilt.sys [X]
S3 catchme; \??\C:\Users\ELOSE~1\AppData\Local\Temp\catchmerkdv.sys [X] <==== ATTENTION
S3 IpInIp; system32\DRIVERS\ipinip.sys [X]
S3 motandroidusb; System32\Drivers\motoandroid.sys [X]
S3 motccgp; system32\DRIVERS\motccgp.sys [X]
S3 motccgpfl; system32\DRIVERS\motccgpfl.sys [X]
S3 MotDev; system32\DRIVERS\motodrv.sys [X]
S3 motmodem; system32\DRIVERS\motmodem.sys [X]
S3 MotoSwitchService; system32\DRIVERS\motswch.sys [X]
S3 Motousbnet; system32\DRIVERS\Motousbnet.sys [X]
S3 motusbdevice; system32\DRIVERS\motusbdevice.sys [X]
S3 nmwcdcx64; system32\drivers\ccdcmbox64.sys [X]
S3 nmwcdnsucx64; system32\drivers\nmwcdnsucx64.sys [X]
S3 nmwcdnsux64; system32\drivers\nmwcdnsux64.sys [X]
S3 nmwcdx64; system32\drivers\ccdcmbx64.sys [X]
S3 NwlnkFlt; system32\DRIVERS\nwlnkflt.sys [X]
S3 NwlnkFwd; system32\DRIVERS\nwlnkfwd.sys [X]
S3 pccsmcfd; system32\DRIVERS\pccsmcfdx64.sys [X]
S3 SliceDisk5; \??\C:\Program Files\A-FF Find and Mount\slicedisk-x64.sys [X]
S3 upperdev; system32\DRIVERS\usbser_lowerfltx64.sys [X]
S3 UsbserFilt; system32\DRIVERS\usbser_lowerfltx64j.sys [X]
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois - Créés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2017-03-27 21:43 - 2017-03-27 21:45 - 00019907 _____ C:\Users\Eloïse\Desktop\FRST.txt
2017-03-27 21:42 - 2017-03-27 21:42 - 02424832 _____ (Farbar) C:\Users\Eloïse\Desktop\FRST64.exe
2017-03-27 21:04 - 2017-03-27 21:04 - 03028643 _____ C:\Users\Eloïse\Desktop\Observatoire_Synthe__se_observatoire_des_3_FP_-_pour_pre__sentation_COMEP_1.pdf
2017-03-27 21:04 - 2017-03-27 21:04 - 01352494 _____ C:\Users\Eloïse\Desktop\presentation_enquete_print_V3.pdf
2017-03-27 15:32 - 2017-03-27 15:32 - 00000000 ____H C:\ProgramData\cm-lock
2017-03-27 10:42 - 2017-03-27 10:42 - 00000051 _____ C:\Users\Eloïse\AppData\Local\Kosong.Bron.Tok.txt
2017-03-27 10:42 - 2017-03-27 10:42 - 00000000 ____D C:\Users\Eloïse\AppData\Local\Loc.Mail.Bron.Tok
2017-03-27 10:37 - 2017-03-27 10:37 - 00000000 ____D C:\Users\Eloïse\AppData\Local\Bron.tok-17-27
2017-03-26 00:24 - 2017-03-26 00:24 - 00787740 _____ C:\Users\Eloïse\Desktop\Documents\Passeport ES.pdf
2017-03-25 21:15 - 2017-03-25 21:16 - 00000000 ____D C:\Users\Eloïse\Desktop\pole emploi à imprimer en agence 2017
2017-03-25 01:58 - 2017-03-25 01:58 - 02857848 _____ C:\Users\Eloïse\Downloads\clients_live.php
2017-03-17 18:10 - 2017-03-17 18:14 - 24611915 _____ C:\Users\Eloïse\Downloads\ODGP162_Dubamix_Maxi_2_Titres.zip
2017-03-17 18:04 - 2017-03-17 18:18 - 102638764 _____ C:\Users\Eloïse\Downloads\ODGP159_Panda_Dub_Shapes_and_Shadows.zip
2017-03-17 18:01 - 2017-03-17 18:14 - 76738884 _____ C:\Users\Eloïse\Downloads\01 NEW RELEASES 2017 PART 1.m4a
2017-03-14 15:19 - 2017-03-14 15:19 - 00143136 _____ C:\Users\Eloïse\AppData\Local\GDIPFONTCACHEV1.DAT
2017-03-14 15:10 - 2017-03-14 15:10 - 03071680 _____ C:\Windows\system32\FNTCACHE.DAT
2017-03-14 10:46 - 2017-03-14 10:46 - 00001868 _____ C:\Users\Eloïse\Desktop\Cleanup.lnk
2017-03-11 07:20 - 2017-03-11 07:48 - 00000045 _____ C:\Windows\ddconfig.ini
2017-03-11 06:35 - 2017-03-11 06:35 - 00000000 ____D C:\Users\Eloïse\AppData\Local\CrashRpt
2017-03-11 06:34 - 2017-03-11 06:34 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cleverfiles Disk Drill
2017-03-10 15:39 - 2016-08-10 18:12 - 00258048 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2017-03-10 15:39 - 2016-08-10 17:43 - 00206336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2017-03-10 15:38 - 2017-01-05 19:18 - 01689600 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2017-03-10 15:38 - 2017-01-05 18:59 - 00077312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2017-03-10 15:38 - 2016-11-20 16:16 - 00277504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcrypt.dll
2017-03-10 15:38 - 2016-11-20 16:13 - 00521448 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2017-03-10 15:38 - 2016-11-20 16:13 - 00307200 _____ (Microsoft Corporation) C:\Windows\system32\bcrypt.dll
2017-03-10 15:38 - 2016-10-08 18:08 - 00270336 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2017-03-10 15:38 - 2016-10-08 17:51 - 00219136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2017-03-10 15:38 - 2016-08-10 18:12 - 00353280 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2017-03-10 15:38 - 2016-08-10 17:44 - 00284160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2017-03-10 14:59 - 2016-11-20 19:12 - 00110080 _____ (Microsoft Corporation) C:\Windows\system32\hlink.dll
2017-03-10 14:59 - 2016-11-20 18:55 - 00083968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\hlink.dll
2017-03-10 10:37 - 2016-11-11 19:14 - 00820736 _____ (Microsoft Corporation) C:\Windows\system32\user32.dll
2017-03-10 10:37 - 2016-11-11 18:59 - 00648704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user32.dll
2017-03-10 10:35 - 2016-11-08 19:09 - 00391168 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2017-03-10 10:35 - 2016-11-08 19:02 - 00305152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2017-03-10 10:33 - 2016-11-08 17:49 - 02804736 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2017-03-10 10:31 - 2016-11-16 19:20 - 00364776 _____ (Microsoft Corporation) C:\Windows\system32\clfs.sys
2017-03-10 10:27 - 2016-11-09 02:44 - 18807296 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2017-03-10 10:27 - 2016-11-09 02:41 - 02351104 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2017-03-10 10:27 - 2016-11-09 02:35 - 01392640 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2017-03-10 10:27 - 2016-11-09 02:35 - 01390080 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2017-03-10 10:27 - 2016-11-09 02:35 - 00448512 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2017-03-10 10:27 - 2016-11-09 02:34 - 02158592 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2017-03-10 10:27 - 2016-11-09 02:34 - 01494528 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2017-03-10 10:27 - 2016-11-09 02:34 - 00816640 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2017-03-10 10:27 - 2016-11-09 02:34 - 00581120 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2017-03-10 10:27 - 2016-11-09 02:34 - 00237056 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2017-03-10 10:27 - 2016-11-09 02:34 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2017-03-10 10:27 - 2016-11-09 02:33 - 02382848 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2017-03-10 10:27 - 2016-11-09 02:33 - 00729088 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2017-03-10 10:27 - 2016-11-09 02:33 - 00452608 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2017-03-10 10:27 - 2016-11-09 02:33 - 00281600 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2017-03-10 10:27 - 2016-11-09 02:33 - 00248320 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2017-03-10 10:27 - 2016-11-09 02:33 - 00173568 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2017-03-10 10:27 - 2016-11-09 02:33 - 00096256 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2017-03-10 10:27 - 2016-11-09 02:33 - 00055296 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2017-03-10 10:27 - 2016-11-09 02:33 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2017-03-10 10:27 - 2016-11-09 02:33 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2017-03-10 10:27 - 2016-11-09 02:06 - 01815552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2017-03-10 10:27 - 2016-11-09 02:05 - 12841472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2017-03-10 10:27 - 2016-11-09 02:03 - 00367616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2017-03-10 10:27 - 2016-11-09 02:01 - 01140736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2017-03-10 10:27 - 2016-11-09 02:01 - 01129984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2017-03-10 10:27 - 2016-11-09 02:00 - 01805312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2017-03-10 10:27 - 2016-11-09 02:00 - 01427968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2017-03-10 10:27 - 2016-11-09 02:00 - 00429056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2017-03-10 10:27 - 2016-11-09 02:00 - 00231936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2017-03-10 10:27 - 2016-11-09 02:00 - 00142848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2017-03-10 10:27 - 2016-11-09 02:00 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2017-03-10 10:27 - 2016-11-09 01:59 - 02382848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2017-03-10 10:27 - 2016-11-09 01:59 - 00719360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2017-03-10 10:27 - 2016-11-09 01:59 - 00607744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2017-03-10 10:27 - 2016-11-09 01:59 - 00354304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2017-03-10 10:27 - 2016-11-09 01:59 - 00223744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2017-03-10 10:27 - 2016-11-09 01:59 - 00176640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2017-03-10 10:27 - 2016-11-09 01:59 - 00072704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2017-03-10 10:27 - 2016-11-09 01:59 - 00041472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2017-03-10 10:27 - 2016-11-09 01:59 - 00011776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2017-03-10 10:27 - 2016-11-09 01:59 - 00010752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2017-03-10 10:26 - 2016-11-09 02:36 - 10941952 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2017-03-10 10:26 - 2016-11-09 02:02 - 09756160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2017-03-10 10:23 - 2016-11-08 19:10 - 03137536 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2017-03-10 10:23 - 2016-11-08 19:01 - 02264576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2017-03-10 10:21 - 2016-10-27 18:16 - 00622592 _____ (Microsoft Corporation) C:\Windows\system32\usp10.dll
2017-03-10 10:21 - 2016-10-27 18:03 - 00502784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usp10.dll
2017-03-10 10:17 - 2016-10-07 18:19 - 04692712 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2017-03-10 10:17 - 2016-08-12 21:07 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2017-03-10 10:16 - 2016-10-07 18:12 - 02528768 _____ (Microsoft Corporation) C:\Windows\system32\MSVidCtl.dll
2017-03-10 10:16 - 2016-10-07 17:52 - 01544704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSVidCtl.dll
2017-03-10 10:10 - 2016-10-07 18:13 - 00862208 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2017-03-10 10:10 - 2016-10-07 18:11 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\asycfilt.dll
2017-03-10 10:10 - 2016-10-07 17:52 - 00573952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2017-03-10 10:10 - 2016-10-07 17:51 - 00067072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\asycfilt.dll
2017-03-10 10:08 - 2016-10-18 00:20 - 01040896 _____ (Microsoft Corporation) C:\Windows\system32\msctf.dll
2017-03-10 10:08 - 2016-10-18 00:20 - 00178688 _____ (Microsoft Corporation) C:\Windows\system32\tintlgnt.ime
2017-03-10 10:08 - 2016-10-18 00:19 - 01019904 _____ (Microsoft Corporation) C:\Windows\system32\IMJP10.IME
2017-03-10 10:08 - 2016-10-18 00:19 - 00923136 _____ (Microsoft Corporation) C:\Windows\system32\IMJP10K.DLL
2017-03-10 10:08 - 2016-10-18 00:19 - 00437760 _____ (Microsoft Corporation) C:\Windows\system32\imkr80.ime
2017-03-10 10:08 - 2016-10-18 00:19 - 00257024 _____ (Microsoft Corporation) C:\Windows\system32\input.dll
2017-03-10 10:08 - 2016-10-18 00:19 - 00177664 _____ (Microsoft Corporation) C:\Windows\system32\quick.ime
2017-03-10 10:08 - 2016-10-18 00:19 - 00177664 _____ (Microsoft Corporation) C:\Windows\system32\qintlgnt.ime
2017-03-10 10:08 - 2016-10-18 00:19 - 00177664 _____ (Microsoft Corporation) C:\Windows\system32\phon.ime
2017-03-10 10:08 - 2016-10-18 00:19 - 00177664 _____ (Microsoft Corporation) C:\Windows\system32\cintlgnt.ime
2017-03-10 10:08 - 2016-10-18 00:19 - 00177664 _____ (Microsoft Corporation) C:\Windows\system32\chajei.ime
2017-03-10 10:08 - 2016-10-18 00:19 - 00133632 _____ (Microsoft Corporation) C:\Windows\system32\pintlgnt.ime
2017-03-10 10:08 - 2016-10-18 00:05 - 00807936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msctf.dll
2017-03-10 10:08 - 2016-10-18 00:04 - 00884224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IMJP10.IME
2017-03-10 10:08 - 2016-10-18 00:04 - 00729600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IMJP10K.DLL
2017-03-10 10:08 - 2016-10-18 00:04 - 00413696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imkr80.ime
2017-03-10 10:08 - 2016-10-18 00:04 - 00200704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\input.dll
2017-03-10 10:08 - 2016-10-18 00:04 - 00125952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tintlgnt.ime
2017-03-10 10:08 - 2016-10-18 00:04 - 00125440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\quick.ime
2017-03-10 10:08 - 2016-10-18 00:04 - 00125440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qintlgnt.ime
2017-03-10 10:08 - 2016-10-18 00:04 - 00125440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\phon.ime
2017-03-10 10:08 - 2016-10-18 00:04 - 00125440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cintlgnt.ime
2017-03-10 10:08 - 2016-10-18 00:04 - 00125440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\chajei.ime
2017-03-10 10:08 - 2016-10-18 00:04 - 00089088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pintlgnt.ime
2017-03-10 10:07 - 2016-09-15 03:41 - 00975872 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
2017-03-10 10:07 - 2016-09-15 03:29 - 00739328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll
2017-03-10 10:07 - 2016-09-15 02:23 - 00084480 _____ (Microsoft Corporation) C:\Windows\system32\INETRES.dll
2017-03-10 10:07 - 2016-09-15 02:01 - 00084480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\INETRES.dll
2017-03-10 10:06 - 2016-09-09 17:34 - 01268224 _____ (Microsoft Corporation) C:\Windows\system32\d3d10.dll
2017-03-10 10:06 - 2016-09-09 17:34 - 00327680 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1core.dll
2017-03-10 10:06 - 2016-09-09 17:34 - 00287232 _____ (Microsoft Corporation) C:\Windows\system32\d3d10core.dll
2017-03-10 10:06 - 2016-09-09 17:34 - 00196096 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1.dll
2017-03-10 10:06 - 2016-09-09 17:15 - 01029120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10.dll
2017-03-10 10:06 - 2016-09-09 17:15 - 00219648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1core.dll
2017-03-10 10:06 - 2016-09-09 17:15 - 00189952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10core.dll
2017-03-10 10:06 - 2016-09-09 17:15 - 00160768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1.dll
2017-03-10 10:06 - 2016-09-09 16:57 - 02002944 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2017-03-10 10:06 - 2016-09-09 16:56 - 00566272 _____ (Microsoft Corporation) C:\Windows\system32\d3d10level9.dll
2017-03-10 10:06 - 2016-09-09 16:44 - 00834048 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2017-03-10 10:06 - 2016-09-09 16:43 - 01561600 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2017-03-10 10:06 - 2016-09-09 16:42 - 01154560 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2017-03-10 10:06 - 2016-09-09 16:34 - 01172480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll
2017-03-10 10:06 - 2016-09-09 16:32 - 00486912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10level9.dll
2017-03-10 10:06 - 2016-09-09 16:23 - 00682496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll
2017-03-10 10:06 - 2016-09-09 16:21 - 01073152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2017-03-10 09:56 - 2016-09-08 16:39 - 00139776 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
2017-03-10 09:56 - 2016-09-08 16:39 - 00102400 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dfsc.sys
2017-03-10 09:54 - 2016-08-03 18:23 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\netevent.dll
2017-03-10 09:54 - 2016-08-03 17:45 - 00017920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netevent.dll
2017-03-10 09:54 - 2016-08-03 16:41 - 00451072 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys
2017-03-10 09:54 - 2016-08-03 16:40 - 00176128 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2017-03-10 09:54 - 2016-08-03 16:40 - 00147456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2017-03-10 09:52 - 2010-04-21 19:56 - 00318976 _____ (Microsoft Corporation) C:\Windows\system32\tapisrv.dll
2017-03-10 09:52 - 2010-04-21 19:47 - 00243200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tapisrv.dll
2017-03-09 20:07 - 2017-03-25 21:13 - 00000000 ____D C:\Users\Eloïse\Desktop\mutuelle et devis dents 2016 2017
2017-03-08 21:21 - 2017-03-08 21:21 - 00000000 ____D C:\Users\Eloïse\Desktop\Documents\PPS et autres conneries
2017-03-08 20:45 - 2017-03-08 20:45 - 00000000 ____D C:\ffc957210baadaaa8d90c9ef560963ee
2017-03-08 18:11 - 2017-03-27 10:37 - 00000000 __SHD C:\$360Section
2017-03-08 17:48 - 2017-03-03 13:30 - 00391392 _____ (360.cn) C:\Windows\system32\Drivers\360fsflt.sys
2017-03-08 17:43 - 2017-03-27 17:02 - 00000290 __RSH C:\ProgramData\ntuser.pol
2017-03-08 17:43 - 2017-03-27 15:45 - 00000000 ____D C:\Users\Eloïse\AppData\LocalLow\360WD
2017-03-08 17:43 - 2017-03-27 10:37 - 00000000 ____D C:\ProgramData\360Quarant
2017-03-08 17:43 - 2017-03-27 10:10 - 00000000 ____D C:\ProgramData\360safe
2017-03-08 17:43 - 2017-03-08 17:43 - 00000000 ____D C:\Windows\Tasks\360Disabled
2017-03-08 17:43 - 2017-03-08 17:43 - 00000000 ____D C:\Users\Eloïse\AppData\Roaming\360TotalSecurity
2017-03-08 17:43 - 2017-03-08 17:43 - 00000000 ____D C:\ProgramData\360TotalSecurity
2017-03-08 17:43 - 2017-03-03 13:30 - 00086248 _____ (360.cn) C:\Windows\SysWOW64\Drivers\360AvFlt.sys
2017-03-08 17:43 - 2017-03-03 13:30 - 00086248 _____ (360.cn) C:\Windows\system32\Drivers\360AvFlt.sys
2017-03-08 17:42 - 2017-03-08 20:45 - 00000000 ____D C:\Users\Eloïse\AppData\Roaming\360safe
2017-03-08 17:42 - 2017-03-08 17:42 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\360 Security Center
2017-03-08 17:42 - 2017-03-08 17:42 - 00000000 ____D C:\Program Files (x86)\360
2017-03-08 17:42 - 2017-03-03 13:30 - 00188864 _____ (360.cn) C:\Windows\system32\Drivers\BAPIDRV64.SYS
2017-03-08 15:24 - 2017-03-08 15:24 - 00002344 _____ C:\DelFix.txt
2017-03-08 09:56 - 2017-03-08 17:09 - 00000000 ____D C:\Program Files (x86)\ZHPFix
2017-03-07 17:43 - 2017-03-07 17:43 - 02708480 _____ C:\Users\Eloïse\ZHPDiag3.exe
2017-03-07 16:39 - 2017-03-07 20:43 - 00000000 ____D C:\AdwCleaner
2017-03-07 15:42 - 2017-03-27 21:22 - 00251840 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2017-03-04 17:51 - 2017-03-04 17:51 - 22568112 _____ (MiniTool Solution Ltd. ) C:\Users\Eloïse\Downloads\pdr7free.exe
2017-03-04 17:47 - 2017-03-04 17:49 - 00000001 _____ C:\Users\Eloïse\AppData\Local\RawCopy.sourcedisk.index
2017-03-04 17:47 - 2017-03-04 17:47 - 02076160 _____ C:\Users\Eloïse\Downloads\HDDRawCopy1.10Portable.exe
2017-03-04 17:47 - 2017-03-04 17:47 - 00000001 _____ C:\Users\Eloïse\AppData\Local\RawCopy.1.10.agreement
2017-03-02 19:58 - 2017-03-02 19:58 - 00945579 _____ C:\Users\Eloïse\Desktop\BS 02 2017 HP.pdf
2017-03-01 17:02 - 2017-03-01 17:03 - 00000000 ____D C:\Users\Eloïse\Desktop\Documents\Garanties
2017-03-01 15:28 - 2017-03-01 15:28 - 00178083 _____ C:\Users\Eloïse\Downloads\ptedit32.zip
2017-02-28 11:24 - 2017-02-28 11:24 - 00000000 ____D C:\Users\Eloïse\Downloads\testdisk-7.0.win64
2017-02-28 10:19 - 2017-02-28 10:19 - 10105868 _____ C:\Users\Eloïse\Downloads\testdisk-7.0.win64.zip
2017-02-28 10:10 - 2017-02-28 10:11 - 04874935 _____ C:\Users\Eloïse\Downloads\CrystalDiskInfo7_0_5.zip
2017-02-28 09:47 - 2017-03-08 17:10 - 00000000 ____D C:\Program Files (x86)\SpeedFan
2017-02-28 09:47 - 2017-02-28 09:47 - 00000045 _____ C:\Windows\SysWOW64\initdebug.nfo
2017-02-27 21:14 - 2017-02-27 21:14 - 02371652 _____ C:\Users\Eloïse\Desktop\bordereau box.pdf
2017-02-27 12:01 - 2017-03-27 21:22 - 00077408 _____ C:\Windows\system32\Drivers\mbae64.sys
2017-02-27 12:01 - 2017-03-07 15:42 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2017-02-27 12:01 - 2017-02-27 12:01 - 00000000 ____D C:\ProgramData\Malwarebytes
2017-02-27 12:01 - 2017-02-27 12:01 - 00000000 ____D C:\Program Files\Malwarebytes
2017-02-26 16:31 - 2017-02-26 16:31 - 00000000 ____D C:\Users\Eloïse\Downloads\314da8b149260c7d28949313c3f173ad
2017-02-26 16:31 - 2010-08-12 14:07 - 00344680 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvmfdx64.sys
2017-02-26 16:31 - 2010-08-12 13:46 - 00953344 _____ (NVIDIA Corporation) C:\Windows\system32\fdco9.dll
2017-02-26 16:31 - 2010-08-12 12:14 - 00263784 _____ (NVIDIA Corporation) C:\Windows\system32\nvconrm.dll
2017-02-26 15:25 - 2017-02-26 15:25 - 00000000 ____D C:\Program Files (x86)\AGEIA Technologies
2017-02-26 15:24 - 2016-11-14 13:15 - 06789056 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2017-02-26 15:24 - 2016-11-14 13:15 - 03528128 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll
2017-02-26 15:24 - 2016-11-14 13:15 - 02558512 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll
2017-02-26 15:24 - 2016-11-14 13:15 - 00932728 _____ (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
2017-02-26 15:24 - 2016-11-14 13:15 - 00384888 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
2017-02-26 15:24 - 2016-11-14 13:15 - 00062328 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
2017-02-26 15:24 - 2016-11-14 11:09 - 07513855 _____ C:\Windows\system32\nvcoproc.bin
2017-02-26 15:23 - 2016-11-14 14:30 - 00082488 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2017-02-26 15:23 - 2016-11-14 14:30 - 00067520 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2017-02-26 15:13 - 2016-11-14 14:30 - 31523384 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2017-02-26 15:13 - 2016-11-14 14:30 - 24208440 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2017-02-26 15:13 - 2016-11-14 14:30 - 23000000 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll
2017-02-26 15:13 - 2016-11-14 14:30 - 18634216 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll
2017-02-26 15:13 - 2016-11-14 14:30 - 17559384 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2017-02-26 15:13 - 2016-11-14 14:30 - 16128720 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2017-02-26 15:13 - 2016-11-14 14:30 - 15301056 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll
2017-02-26 15:13 - 2016-11-14 14:30 - 14497712 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll
2017-02-26 15:13 - 2016-11-14 14:30 - 13915720 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2017-02-26 15:13 - 2016-11-14 14:30 - 13826968 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2017-02-26 15:13 - 2016-11-14 14:30 - 12905016 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2017-02-26 15:13 - 2016-11-14 14:30 - 11270656 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2017-02-26 15:13 - 2016-11-14 14:30 - 11208312 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2017-02-26 15:13 - 2016-11-14 14:30 - 04253240 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2017-02-26 15:13 - 2016-11-14 14:30 - 03995192 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2017-02-26 15:13 - 2016-11-14 14:30 - 03207824 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2017-02-26 15:13 - 2016-11-14 14:30 - 02822568 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2017-02-26 15:13 - 2016-11-14 14:30 - 01908272 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6434201.dll
2017-02-26 15:13 - 2016-11-14 14:30 - 01557552 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6434201.dll
2017-02-26 15:13 - 2016-11-14 14:30 - 01515296 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdagenco6420103.dll
2017-02-26 15:13 - 2016-11-14 14:30 - 00197408 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda64v.sys
2017-02-26 15:13 - 2016-11-14 14:30 - 00031520 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdap64.dll
2017-02-26 14:52 - 2017-02-26 15:26 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2017-02-26 13:42 - 2017-03-08 17:34 - 00000000 ____D C:\ProgramData\Package Cache
2017-02-26 11:46 - 2017-02-26 15:21 - 00000732 _____ C:\Users\Eloïse\AppData\Local\d3d9caps64.dat
2017-02-26 11:42 - 2017-03-07 17:10 - 00206492 _____ C:\Windows\ntbtlog.txt
==================== Un mois - Modifiés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2017-03-27 21:43 - 2016-04-04 09:30 - 00000000 ____D C:\FRST
2017-03-27 21:32 - 2006-11-02 17:17 - 00003216 _____ C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
2017-03-27 21:32 - 2006-11-02 17:17 - 00003216 _____ C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
2017-03-27 21:04 - 2015-11-30 13:23 - 00000000 ____D C:\Users\Eloïse\Desktop\Candidatures 974
2017-03-27 17:17 - 2016-07-10 07:31 - 00000000 ____D C:\Users\Eloïse\AppData\Local\DiskDrill
2017-03-27 17:09 - 2008-01-21 12:35 - 01530274 _____ C:\Windows\system32\PerfStringBackup.INI
2017-03-27 17:09 - 2008-01-21 12:34 - 00677008 _____ C:\Windows\system32\perfh00C.dat
2017-03-27 17:09 - 2008-01-21 12:34 - 00129416 _____ C:\Windows\system32\perfc00C.dat
2017-03-27 17:09 - 2006-11-02 15:33 - 00000000 ____D C:\Windows\inf
2017-03-27 17:02 - 2013-03-22 00:07 - 00004484 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2017-03-27 17:02 - 2011-07-22 16:28 - 00003502 _____ C:\Windows\System32\Tasks\Run RoboForm TaskBar Icon
2017-03-27 17:02 - 2010-12-27 19:13 - 00003500 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2017-03-27 17:02 - 2010-12-27 19:13 - 00003372 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2017-03-27 15:37 - 2017-01-16 17:22 - 00000000 ____D C:\Users\Eloïse\AppData\LocalLow\Mozilla
2017-03-27 15:32 - 2006-11-02 17:35 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2017-03-27 10:58 - 2006-11-02 17:35 - 00032564 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2017-03-27 10:49 - 2010-01-28 01:38 - 00151040 _____ C:\Users\Eloïse\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2017-03-27 10:37 - 2009-05-05 14:58 - 00000000 ____D C:\Windows\SHELLNEW
2017-03-26 20:30 - 2016-08-27 17:21 - 00000000 ____D C:\Users\Eloïse\Desktop\veg
2017-03-26 03:41 - 2017-02-23 02:48 - 00000000 ____D C:\Users\Eloïse\Desktop\Dons
2017-03-25 22:10 - 2016-07-11 13:02 - 00000000 ____D C:\Users\Eloïse\Desktop\Ju
2017-03-25 21:09 - 2016-08-26 19:23 - 00000000 ____D C:\Users\Eloïse\Desktop\Chomage 2016
2017-03-24 21:34 - 2011-03-15 20:51 - 00000000 ____D C:\Users\Eloïse\AppData\Roaming\Skype
2017-03-24 16:26 - 2017-01-16 15:37 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2017-03-14 16:14 - 2013-03-22 00:07 - 00802904 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2017-03-14 16:14 - 2011-12-07 01:17 - 00000000 ____D C:\Windows\system32\Macromed
2017-03-14 16:14 - 2011-06-24 21:09 - 00144472 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2017-03-14 16:14 - 2009-05-05 15:06 - 00000000 ____D C:\Windows\SysWOW64\Macromed
2017-03-11 07:23 - 2010-10-04 21:21 - 00000000 ____D C:\Users\Eloïse\AppData\Roaming\vlc
2017-03-11 06:35 - 2009-09-11 20:08 - 00000000 ____D C:\Users\Eloïse
2017-03-10 15:28 - 2014-03-05 04:06 - 01475354 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2017-03-10 14:49 - 2006-11-02 15:33 - 00000000 ____D C:\Windows\rescache
2017-03-10 10:38 - 2006-11-02 17:03 - 00000000 ____D C:\Windows\SysWOW64\XPSViewer
2017-03-10 09:53 - 2009-09-14 16:18 - 00000000 ____D C:\Program Files (x86)\MSXML 4.0
2017-03-09 19:59 - 2017-01-18 17:46 - 00000000 ____D C:\Users\Eloïse\Desktop\Petit Quotidien Rose
2017-03-08 20:47 - 2010-06-06 23:38 - 00000000 ____D C:\Users\Invité
2017-03-08 20:47 - 2009-10-15 12:24 - 00000000 ____D C:\Users\julien
2017-03-08 20:43 - 2012-12-30 00:21 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TomTom
2017-03-08 18:18 - 2006-11-02 15:33 - 00000000 ___SD C:\Windows\Downloaded Program Files
2017-03-08 18:16 - 2007-07-12 03:49 - 00000000 ____D C:\Windows\Panther
2017-03-08 18:11 - 2016-08-12 19:08 - 00000000 ____D C:\Users\Eloïse\AppData\Roaming\TeamViewer
2017-03-08 18:11 - 2016-04-18 08:37 - 00003056 _____ C:\Windows\System32\Tasks\{0C8DC04A-1FEF-4053-A39A-24AB59085ECF}
2017-03-08 18:11 - 2016-04-04 14:16 - 00000000 ____D C:\Users\Eloïse\AppData\Roaming\Vso
2017-03-08 18:11 - 2012-12-03 17:53 - 00000000 ____D C:\Program Files (x86)\PDFCreator
2017-03-08 18:11 - 2011-03-14 21:43 - 00002794 _____ C:\Windows\System32\Tasks\{3D75A946-7D9E-463B-AF78-FBD35215377A}
2017-03-08 18:11 - 2010-09-15 16:03 - 00000000 ____D C:\Users\Eloïse\AppData\Roaming\uTorrent
2017-03-08 10:03 - 2017-02-21 23:41 - 00000000 ____D C:\Users\Eloïse\AppData\Roaming\ZHP
2017-03-07 16:28 - 2016-03-11 20:21 - 00000000 ____D C:\Users\Eloïse\AppData\Roaming\Lavasoft
2017-03-01 09:55 - 2010-10-04 21:21 - 00000000 ____D C:\Users\Eloïse\AppData\Roaming\dvdcss
2017-02-26 22:40 - 2017-02-22 13:49 - 00000000 ____D C:\AdsFix
2017-02-26 17:47 - 2009-05-05 14:55 - 00000000 ____D C:\ProgramData\NVIDIA
2017-02-26 17:45 - 2010-10-13 14:55 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2017-02-26 15:24 - 2006-11-02 15:33 - 00000000 ____D C:\Windows\Help
2017-02-26 15:23 - 2010-10-13 14:55 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2017-02-26 15:21 - 2009-10-15 12:13 - 00001356 _____ C:\Users\Eloïse\AppData\Local\d3d9caps.dat
2017-02-26 06:29 - 2016-03-11 20:19 - 00000000 ____D C:\Users\Eloïse\AppData\Roaming\DVDVideoSoft
2017-02-26 00:01 - 2016-07-10 07:11 - 00000000 ____D C:\Program Files (x86)\Glary Utilities 5
==================== Fichiers à la racine de certains dossiers =======
2016-07-03 05:40 - 2016-07-03 05:42 - 0000003 _____ () C:\Users\Eloïse\AppData\Roaming\.ptbt0
2016-04-04 14:16 - 2016-04-04 14:16 - 0007833 _____ () C:\Users\Eloïse\AppData\Roaming\ezplay.cat
2016-04-04 14:16 - 2016-04-04 14:16 - 0118400 _____ (VSO Software) C:\Users\Eloïse\AppData\Roaming\ezplay.sys
2016-04-04 14:16 - 2016-04-04 14:16 - 0001127 _____ () C:\Users\Eloïse\AppData\Roaming\ZUVFMMWI.inf
2016-04-04 14:16 - 2016-04-04 14:16 - 0000125 _____ () C:\Users\Eloïse\AppData\Roaming\ZUVFMMWI.ini
2016-04-04 14:16 - 2016-04-04 14:16 - 0000033 _____ () C:\Users\Eloïse\AppData\Roaming\ZUVFMMWI.log
2009-10-15 12:13 - 2017-02-26 15:21 - 0001356 _____ () C:\Users\Eloïse\AppData\Local\d3d9caps.dat
2017-02-26 11:46 - 2017-02-26 15:21 - 0000732 _____ () C:\Users\Eloïse\AppData\Local\d3d9caps64.dat
2010-01-28 01:38 - 2017-03-27 10:49 - 0151040 _____ () C:\Users\Eloïse\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2017-03-27 10:42 - 2017-03-27 10:42 - 0000051 _____ () C:\Users\Eloïse\AppData\Local\Kosong.Bron.Tok.txt
2017-03-04 17:47 - 2017-03-04 17:47 - 0000001 _____ () C:\Users\Eloïse\AppData\Local\RawCopy.1.10.agreement
2017-03-04 17:47 - 2017-03-04 17:49 - 0000001 _____ () C:\Users\Eloïse\AppData\Local\RawCopy.sourcedisk.index
2011-10-25 17:33 - 2011-10-25 17:33 - 0000011 _____ () C:\ProgramData\.tv5
2011-01-25 01:10 - 2011-01-25 01:27 - 0000088 __RSH () C:\ProgramData\3A427D2554.sys
2011-12-31 14:49 - 2011-12-31 14:56 - 0000440 _____ () C:\ProgramData\9lLsqigFz9edg3
2017-03-27 15:32 - 2017-03-27 15:32 - 0000000 ____H () C:\ProgramData\cm-lock
2011-01-25 01:10 - 2011-05-03 23:02 - 0005018 ___SH () C:\ProgramData\KGyGaAvL.sys
2011-12-31 14:49 - 2011-12-31 14:54 - 0000296 _____ () C:\ProgramData\~9lLsqigFz9edg3
2011-12-31 14:49 - 2011-12-31 14:54 - 0000200 _____ () C:\ProgramData\~9lLsqigFz9edg3r
Fichiers à déplacer ou supprimer:
====================
C:\Users\Eloïse\ZHPDiag3.exe
==================== Bamital & volsnap ======================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
C:\Windows\system32\winlogon.exe => Le fichier est signé numériquement
C:\Windows\system32\wininit.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\wininit.exe => Le fichier est signé numériquement
C:\Windows\explorer.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\explorer.exe => Le fichier est signé numériquement
C:\Windows\system32\svchost.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\svchost.exe => Le fichier est signé numériquement
C:\Windows\system32\services.exe => Le fichier est signé numériquement
C:\Windows\system32\User32.dll => Le fichier est signé numériquement
C:\Windows\SysWOW64\User32.dll => Le fichier est signé numériquement
C:\Windows\system32\userinit.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\userinit.exe => Le fichier est signé numériquement
C:\Windows\system32\rpcss.dll => Le fichier est signé numériquement
C:\Windows\system32\dnsapi.dll => Le fichier est signé numériquement
C:\Windows\SysWOW64\dnsapi.dll => Le fichier est signé numériquement
C:\Windows\system32\Drivers\volsnap.sys => Le fichier est signé numériquement
LastRegBack: 2017-03-27 15:39
==================== Fin de FRST.txt ============================
Exécuté par Eloïse (administrateur) sur PC-DE-ELOÏSE (27-03-2017 21:43:46)
Exécuté depuis C:\Users\Eloïse\Desktop
Profils chargés: Eloïse (Profils disponibles: Eloïse & julien & Invité)
Platform: Windows Vista (TM) Home Basic Service Pack 2 (X64) Langue: Français (France)
Internet Explorer Version 9 (Navigateur par défaut: FF)
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Microsoft Corporation) C:\Windows\System32\SLsvc.exe
(QIHU 360 SOFTWARE CO. LIMITED) C:\Program Files (x86)\360\Total Security\safemon\QHActiveDefense.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(QIHU 360 SOFTWARE CO. LIMITED) C:\Program Files (x86)\360\Total Security\safemon\QHWatchdog.exe
() C:\Program Files (x86)\Adobe\Photoshop Elements 6.0\PhotoshopElementsFileAgent.exe
(Packard Bell Services) C:\Windows\System32\HidService.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(WIBU-SYSTEMS AG) C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Acer Incorporated) C:\Program Files (x86)\Packard Bell\SetUpMyPC\SmpSys.exe
(Labtec Inc,) C:\Program Files (x86)\Common Files\LogiShrd\LComMgr\Communications_Helper.exe
(QIHU 360 SOFTWARE CO. LIMITED) C:\Program Files (x86)\360\Total Security\safemon\QHSafeTray.exe
(Microsoft Corporation) C:\Program Files\Windows Media Player\wmpnscfg.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Microsoft Corporation) C:\Windows\System32\sdclt.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_25_0_0_127.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_25_0_0_127.exe
(Microsoft Corporation) C:\Windows\System32\mobsync.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbam.exe
(Microsoft Corporation) C:\Windows\System32\conime.exe
==================== Registre (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [7574048 2009-03-30] (Realtek Semiconductor)
HKLM\...\Run: [Skytel] => C:\Program Files\Realtek\Audio\HDA\Skytel.exe [1833504 2009-03-30] (Realtek Semiconductor Corp.)
HKLM\...\Run: [Malwarebytes TrayApp] => C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\mbamtray.exe [2780112 2017-01-20] (Malwarebytes)
HKLM-x32\...\Run: [LogitechCommunicationsManager] => C:\Program Files (x86)\Common Files\LogiShrd\LComMgr\Communications_Helper.exe [488984 2007-03-06] (Labtec Inc,)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [Adobe Reader Speed Launcher] => C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe [41056 2013-05-08] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [QHSafeTray] => C:\Program Files (x86)\360\Total Security\safemon\QHSafeTray.exe [1940904 2017-03-03] (QIHU 360 SOFTWARE CO. LIMITED)
HKLM-x32\...\Run: [Bron-Spizaetus] => "C:\Windows\ShellNew\RakyatKelaparan.exe"
HKLM-x32\...\Winlogon: [Shell] Explorer.exe "C:\Windows\KesenjanganSosial.exe" [ ] () <=== ATTENTION
HKU\S-1-5-21-2203072718-355570073-3531216237-1000\...\Run: [SmpcSys] => C:\Program Files (x86)\Packard Bell\SetUpMyPC\SmpSys.exe [1160736 2009-03-18] (Acer Incorporated)
HKU\S-1-5-21-2203072718-355570073-3531216237-1000\...\Run: [GUDelayStartup] => C:\Program Files (x86)\Glary Utilities 5\StartupManager.exe [43984 2016-06-23] (Glarysoft Ltd)
HKU\S-1-5-21-2203072718-355570073-3531216237-1000\...\Run: [Tok-Cirrhatus-2124] => "C:\Users\Eloïse\AppData\Local\br5271on.exe"
HKU\S-1-5-21-2203072718-355570073-3531216237-1000\...\Run: [Tok-Cirrhatus] => [X]
HKU\S-1-5-21-2203072718-355570073-3531216237-1000\...\Policies\system: [DisableRegistryTools] 1
HKU\S-1-5-21-2203072718-355570073-3531216237-1000\...\Policies\system: [DisableCMD] 0
HKU\S-1-5-21-2203072718-355570073-3531216237-1000\...\Policies\Explorer: [NoFolderOptions] 1
HKU\S-1-5-21-2203072718-355570073-3531216237-1000\...\MountPoints2: {d5048bf9-fc2c-11e6-8131-f69b7b8202a9} - I:\Startme.exe
HKU\S-1-5-21-2203072718-355570073-3531216237-1000\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\system32\PACKAR~1.SCR [430080 2009-04-22] ()
BootExecute: autocheck autochk *
AlternateShell: cmd-brontok.exe
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{8081314B-425F-4271-B5E4-1943769918FE}: [DhcpNameServer] 192.168.42.129
Tcpip\..\Interfaces\{87F52A75-128C-45EC-BFA3-9EC098ED25D1}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{AD975D88-8861-4B1D-9EAB-9F01824AAAEC}: [DhcpNameServer] 192.168.42.129
Internet Explorer:
==================
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\.DEFAULT\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\S-1-5-21-2203072718-355570073-3531216237-1000\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://homepage.packardbell.com/rdr.aspx?b=ACPW&l=040c&s=1&o=vb64&d=0609&m=imedia_s1710
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://fr.msn.com/
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://homepage.packardbell.com/rdr.aspx?b=ACPW&l=040c&s=1&o=vb64&d=0609&m=imedia_s1710
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\S-1-5-21-2203072718-355570073-3531216237-1000\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://homepage.packardbell.com/rdr.aspx?b=ACPW&l=040c&s=1&o=vb64&d=0609&m=imedia_s1710
SearchScopes: HKLM-x32 -> DefaultScope {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = hxxp://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7ACPW
SearchScopes: HKLM-x32 -> {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = hxxp://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7ACPW
SearchScopes: HKU\S-1-5-21-2203072718-355570073-3531216237-1000 -> DefaultScope {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL =
SearchScopes: HKU\S-1-5-21-2203072718-355570073-3531216237-1000 -> {9D5BD211-422C-4164-9298-BB4186A30F31} URL = hxxp://www.bing.com/search?q={searchTerms}&mkt=fr-FR&form=MOAWA1
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28] (Microsoft Corp.)
BHO: SafeMon Class -> {B69F34DD-F0F9-42DC-9EDD-957187DA688D} -> C:\Program Files (x86)\360\Total Security\safemon\safemon64.dll [2017-03-03] (Qihu 360 Software Co., Ltd.)
BHO-x32: Programme d'aide de l'Assistant de connexion Windows Live ID -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28] (Microsoft Corp.)
BHO-x32: SafeMon Class -> {B69F34DD-F0F9-42DC-9EDD-957187DA688D} -> C:\Program Files (x86)\360\Total Security\safemon\safemon.dll [2017-03-03] (Qihu 360 Software Co., Ltd.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll [2011-04-12] (Sun Microsystems, Inc.)
Toolbar: HKU\S-1-5-21-2203072718-355570073-3531216237-1000 -> Pas de nom - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - Pas de fichier
Toolbar: HKU\S-1-5-21-2203072718-355570073-3531216237-1000 -> Pas de nom - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - Pas de fichier
Toolbar: HKU\S-1-5-21-2203072718-355570073-3531216237-1000 -> &Links - {F2CF5485-4E02-4F68-819C-B92DE9277049} - C:\Windows\system32\ieframe.dll [2016-11-09] (Microsoft Corporation)
Toolbar: HKU\S-1-5-21-2203072718-355570073-3531216237-1000 -> Pas de nom - {1392B8D2-5C05-419F-A8F6-B9F15A596612} - Pas de fichier
DPF: HKLM-x32 {2357B3CF-7F8D-4451-8D81-FD6097610AEE} hxxp://www.visiogood.com/jalss/cfweb_activex.camfrogweb.com-advanced-2.0.2.20_instmodule.exe
DPF: HKLM-x32 {32C3FEAE-0877-4767-8C20-62A5829A0945} hxxp://www.facebook.com/fbplugin/win32/axfbootloader.cab?1265449976041
DPF: HKLM-x32 {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} hxxp://www.bitdefender.fr/scan_fr/scan8/oscan8.cab
DPF: HKLM-x32 {67DABFBF-D0AB-41FA-9C46-CC0F21721616} hxxp://download.divx.com/player/DivXBrowserPlugin.cab
DPF: HKLM-x32 {C3F79A2B-B9B4-4A66-B012-3EE46475B072} hxxp://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
DPF: HKLM-x32 {DFB5BCF1-06AE-4ABB-BFA8-1E228F41C50A} hxxp://bobtv.fr/download/cfweb_www.bobtv.fr-download_instmodule.exe
DPF: HKLM-x32 {E2883E8F-472F-4FB0-9522-AC9BF37916A7} hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
FireFox:
========
FF ProfilePath: C:\Users\Eloïse\AppData\Roaming\TomTom\HOME\Profiles\hm2a4zr2.default [2016-06-14]
FF Extension: (Pas de nom) - C:\Program Files (x86)\TomTom HOME 2\xul\extensions\MapShare-status@tomtom.com [non trouvé(e)]
FF ProfilePath: C:\Users\Eloïse\AppData\Roaming\Mozilla\Firefox\Profiles\tkvj3m12.default [2017-03-27]
FF SelectedSearchEngine: Mozilla\Firefox\Profiles\tkvj3m12.default -> Yahoo®
FF Homepage: Mozilla\Firefox\Profiles\tkvj3m12.default -> hxxps://search.lilo.org
FF Session Restore: Mozilla\Firefox\Profiles\tkvj3m12.default -> est activé.
FF Extension: (lilo) - C:\Users\Eloïse\AppData\Roaming\Mozilla\Firefox\Profiles\tkvj3m12.default\Extensions\jid1-zmgYgiQPXJtjNA@jetpack.xpi [2016-06-21]
FF Extension: (LastPass) - C:\Users\Eloïse\AppData\Roaming\Mozilla\Firefox\Profiles\tkvj3m12.default\Extensions\support@lastpass.com [2017-03-22]
FF Extension: (FxIF) - C:\Users\Eloïse\AppData\Roaming\Mozilla\Firefox\Profiles\tkvj3m12.default\Extensions\{11483926-db67-4190-91b1-ef20fcec5f33}.xpi [2016-05-14]
FF HKLM-x32\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF Extension: (Microsoft .NET Framework Assistant) - C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2009-09-16] [non signé]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_25_0_0_127.dll [2017-03-14] ()
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_25_0_0_127.dll [2017-03-14] ()
FF Plugin-x32: @divx.com/DivX Browser Plugin,version=1.0.0 -> C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll [2010-08-25] (DivX,Inc.)
FF Plugin-x32: @divx.com/DivX VOD Helper,version=1.0.0 -> C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll [2011-01-24] (DivX, LLC.)
FF Plugin-x32: @java.com/JavaPlugin -> C:\Program Files (x86)\Java\jre6\bin\new_plugin\npjp2.dll [2011-04-12] (Sun Microsystems, Inc.)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50428.0\npctrl.dll [2016-04-27] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3538.0513 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3555.0308 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WPF,version=3.5 -> C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll [2008-07-29] (Microsoft Corporation)
FF Plugin-x32: @pandasecurity.com/activescan -> C:\Program Files (x86)\Panda Security\ActiveScan 2.0\npwrapper.dll [Pas de fichier]
FF Plugin-x32: @t-immersion.com/DFusionHomeWebPlugIn -> C:\Program Files (x86)\Total Immersion\DFusionHomeWebPlugIn\NPDFusionWebFirefox.dll [2011-05-11] (Total Immersion)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-17] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-17] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll [2013-05-08] (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\np-mswmp.dll [2007-04-10] (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npdeployJava1.dll [2011-04-12] (Sun Microsystems, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\NPOFFICE.DLL [2007-03-22] (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll [2013-05-08] (Adobe Systems Inc.)
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Eloïse\AppData\Local\Google\Chrome\User Data\Default [2017-03-14]
CHR Extension: (360 Internet Protection) - C:\Users\Eloïse\AppData\Local\Google\Chrome\User Data\Default\Extensions\glcimepnljoholdmjchkloafkggfoijh [2017-03-08]
CHR HKLM-x32\...\Chrome\Extension: [glcimepnljoholdmjchkloafkggfoijh] - hxxps://clients2.google.com/service/update2/crx
==================== Services (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 AdobeActiveFileMonitor6.0; C:\Program Files (x86)\Adobe\Photoshop Elements 6.0\PhotoshopElementsFileAgent.exe [124832 2007-09-11] ()
S3 cfbackd; C:\Program Files (x86)\CleverFiles\Disk Drill\cfbackd.w32.exe [211520 2016-09-29] (CleverFiles)
S3 Crypkey License; C:\Windows\system32\crypserv.exe [122880 2008-05-08] (CrypKey (Canada) Ltd.) [Fichier non signé]
S3 DigitalWave.Update.Service; C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe [388968 2016-03-28] (Digital Wave Ltd.)
R2 GenericHidService; C:\Windows\system32\HidService.exe [83264 2008-05-29] (Packard Bell Services)
S2 LVSrvLauncher; C:\Program Files\Common Files\LogiShrd\SrvLnch\SrvLnch.exe [173344 2007-03-06] (Labtec Inc.)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [4355024 2017-01-20] (Malwarebytes)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1879488 2016-11-14] (NVIDIA Corporation)
R2 QHActiveDefense; C:\Program Files (x86)\360\Total Security\safemon\QHActiveDefense.exe [928168 2017-03-03] (QIHU 360 SOFTWARE CO. LIMITED)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [383544 2008-01-21] (Microsoft Corporation)
S3 ezSharedSvc; C:\Windows\System32\ezsvc7.dll [X]
===================== Pilotes (Avec liste blanche) ======================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R3 360AvFlt; C:\Windows\System32\DRIVERS\360AvFlt.sys [86248 2017-03-03] (360.cn)
R3 360AvFlt; C:\Windows\SysWOW64\DRIVERS\360AvFlt.sys [86248 2017-03-03] (360.cn)
S1 360FsFlt; C:\Windows\System32\DRIVERS\360FsFlt.sys [391392 2017-03-03] (360.cn)
S1 BAPIDRV; C:\Windows\System32\DRIVERS\BAPIDRV64.sys [188864 2017-03-03] (360.cn)
S3 ezplay; C:\Windows\System32\Drivers\ezplay.sys [118400 2010-09-15] (VSO Software)
S3 LVcKap64; C:\Windows\System32\DRIVERS\LVcKap64.sys [1029024 2007-03-06] (Labtec Inc.)
S3 LVMVDrv; C:\Windows\System32\DRIVERS\LVMVDrv.sys [2496928 2007-03-06] (Labtec Inc.)
S3 lvpepf64; C:\Windows\System32\DRIVERS\lv302a64.sys [16160 2007-03-06] (Labtec Inc.)
S3 LVUSBS64; C:\Windows\System32\drivers\LVUSBS64.sys [58400 2007-03-06] (Labtec Inc.)
R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [251840 2017-03-27] (Malwarebytes)
R1 NetworkX; C:\Windows\system32\ckldrv.sys [28664 2008-03-17] ()
S3 NVENETFD; C:\Windows\System32\DRIVERS\nvm60x64.sys [742696 2006-10-10] (NVIDIA Corporation)
R0 pavboot; C:\Windows\System32\drivers\pavboot64.sys [33800 2009-06-30] (Panda Security, S.L.)
S3 PID_PEPI; C:\Windows\System32\DRIVERS\LV302V64.SYS [1160864 2007-03-06] (Labtec Inc.)
R0 pwdrvio; C:\Windows\System32\pwdrvio.sys [19152 2013-09-30] ()
S3 pwdspio; C:\Windows\system32\pwdspio.sys [12504 2013-09-30] ()
S3 Spyder2; C:\Windows\System32\DRIVERS\Spyder2.sys [15360 2007-01-17] ()
S3 StarOpen; pas de ImagePath
S3 StkTMini; C:\Windows\System32\Drivers\StkTMini.sys [528256 2007-11-15] (Syntek)
S3 BTCFilterService; system32\DRIVERS\motfilt.sys [X]
S3 catchme; \??\C:\Users\ELOSE~1\AppData\Local\Temp\catchmerkdv.sys [X] <==== ATTENTION
S3 IpInIp; system32\DRIVERS\ipinip.sys [X]
S3 motandroidusb; System32\Drivers\motoandroid.sys [X]
S3 motccgp; system32\DRIVERS\motccgp.sys [X]
S3 motccgpfl; system32\DRIVERS\motccgpfl.sys [X]
S3 MotDev; system32\DRIVERS\motodrv.sys [X]
S3 motmodem; system32\DRIVERS\motmodem.sys [X]
S3 MotoSwitchService; system32\DRIVERS\motswch.sys [X]
S3 Motousbnet; system32\DRIVERS\Motousbnet.sys [X]
S3 motusbdevice; system32\DRIVERS\motusbdevice.sys [X]
S3 nmwcdcx64; system32\drivers\ccdcmbox64.sys [X]
S3 nmwcdnsucx64; system32\drivers\nmwcdnsucx64.sys [X]
S3 nmwcdnsux64; system32\drivers\nmwcdnsux64.sys [X]
S3 nmwcdx64; system32\drivers\ccdcmbx64.sys [X]
S3 NwlnkFlt; system32\DRIVERS\nwlnkflt.sys [X]
S3 NwlnkFwd; system32\DRIVERS\nwlnkfwd.sys [X]
S3 pccsmcfd; system32\DRIVERS\pccsmcfdx64.sys [X]
S3 SliceDisk5; \??\C:\Program Files\A-FF Find and Mount\slicedisk-x64.sys [X]
S3 upperdev; system32\DRIVERS\usbser_lowerfltx64.sys [X]
S3 UsbserFilt; system32\DRIVERS\usbser_lowerfltx64j.sys [X]
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois - Créés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2017-03-27 21:43 - 2017-03-27 21:45 - 00019907 _____ C:\Users\Eloïse\Desktop\FRST.txt
2017-03-27 21:42 - 2017-03-27 21:42 - 02424832 _____ (Farbar) C:\Users\Eloïse\Desktop\FRST64.exe
2017-03-27 21:04 - 2017-03-27 21:04 - 03028643 _____ C:\Users\Eloïse\Desktop\Observatoire_Synthe__se_observatoire_des_3_FP_-_pour_pre__sentation_COMEP_1.pdf
2017-03-27 21:04 - 2017-03-27 21:04 - 01352494 _____ C:\Users\Eloïse\Desktop\presentation_enquete_print_V3.pdf
2017-03-27 15:32 - 2017-03-27 15:32 - 00000000 ____H C:\ProgramData\cm-lock
2017-03-27 10:42 - 2017-03-27 10:42 - 00000051 _____ C:\Users\Eloïse\AppData\Local\Kosong.Bron.Tok.txt
2017-03-27 10:42 - 2017-03-27 10:42 - 00000000 ____D C:\Users\Eloïse\AppData\Local\Loc.Mail.Bron.Tok
2017-03-27 10:37 - 2017-03-27 10:37 - 00000000 ____D C:\Users\Eloïse\AppData\Local\Bron.tok-17-27
2017-03-26 00:24 - 2017-03-26 00:24 - 00787740 _____ C:\Users\Eloïse\Desktop\Documents\Passeport ES.pdf
2017-03-25 21:15 - 2017-03-25 21:16 - 00000000 ____D C:\Users\Eloïse\Desktop\pole emploi à imprimer en agence 2017
2017-03-25 01:58 - 2017-03-25 01:58 - 02857848 _____ C:\Users\Eloïse\Downloads\clients_live.php
2017-03-17 18:10 - 2017-03-17 18:14 - 24611915 _____ C:\Users\Eloïse\Downloads\ODGP162_Dubamix_Maxi_2_Titres.zip
2017-03-17 18:04 - 2017-03-17 18:18 - 102638764 _____ C:\Users\Eloïse\Downloads\ODGP159_Panda_Dub_Shapes_and_Shadows.zip
2017-03-17 18:01 - 2017-03-17 18:14 - 76738884 _____ C:\Users\Eloïse\Downloads\01 NEW RELEASES 2017 PART 1.m4a
2017-03-14 15:19 - 2017-03-14 15:19 - 00143136 _____ C:\Users\Eloïse\AppData\Local\GDIPFONTCACHEV1.DAT
2017-03-14 15:10 - 2017-03-14 15:10 - 03071680 _____ C:\Windows\system32\FNTCACHE.DAT
2017-03-14 10:46 - 2017-03-14 10:46 - 00001868 _____ C:\Users\Eloïse\Desktop\Cleanup.lnk
2017-03-11 07:20 - 2017-03-11 07:48 - 00000045 _____ C:\Windows\ddconfig.ini
2017-03-11 06:35 - 2017-03-11 06:35 - 00000000 ____D C:\Users\Eloïse\AppData\Local\CrashRpt
2017-03-11 06:34 - 2017-03-11 06:34 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cleverfiles Disk Drill
2017-03-10 15:39 - 2016-08-10 18:12 - 00258048 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2017-03-10 15:39 - 2016-08-10 17:43 - 00206336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2017-03-10 15:38 - 2017-01-05 19:18 - 01689600 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2017-03-10 15:38 - 2017-01-05 18:59 - 00077312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2017-03-10 15:38 - 2016-11-20 16:16 - 00277504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcrypt.dll
2017-03-10 15:38 - 2016-11-20 16:13 - 00521448 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2017-03-10 15:38 - 2016-11-20 16:13 - 00307200 _____ (Microsoft Corporation) C:\Windows\system32\bcrypt.dll
2017-03-10 15:38 - 2016-10-08 18:08 - 00270336 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2017-03-10 15:38 - 2016-10-08 17:51 - 00219136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2017-03-10 15:38 - 2016-08-10 18:12 - 00353280 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2017-03-10 15:38 - 2016-08-10 17:44 - 00284160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2017-03-10 14:59 - 2016-11-20 19:12 - 00110080 _____ (Microsoft Corporation) C:\Windows\system32\hlink.dll
2017-03-10 14:59 - 2016-11-20 18:55 - 00083968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\hlink.dll
2017-03-10 10:37 - 2016-11-11 19:14 - 00820736 _____ (Microsoft Corporation) C:\Windows\system32\user32.dll
2017-03-10 10:37 - 2016-11-11 18:59 - 00648704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user32.dll
2017-03-10 10:35 - 2016-11-08 19:09 - 00391168 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2017-03-10 10:35 - 2016-11-08 19:02 - 00305152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2017-03-10 10:33 - 2016-11-08 17:49 - 02804736 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2017-03-10 10:31 - 2016-11-16 19:20 - 00364776 _____ (Microsoft Corporation) C:\Windows\system32\clfs.sys
2017-03-10 10:27 - 2016-11-09 02:44 - 18807296 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2017-03-10 10:27 - 2016-11-09 02:41 - 02351104 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2017-03-10 10:27 - 2016-11-09 02:35 - 01392640 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2017-03-10 10:27 - 2016-11-09 02:35 - 01390080 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2017-03-10 10:27 - 2016-11-09 02:35 - 00448512 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2017-03-10 10:27 - 2016-11-09 02:34 - 02158592 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2017-03-10 10:27 - 2016-11-09 02:34 - 01494528 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2017-03-10 10:27 - 2016-11-09 02:34 - 00816640 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2017-03-10 10:27 - 2016-11-09 02:34 - 00581120 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2017-03-10 10:27 - 2016-11-09 02:34 - 00237056 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2017-03-10 10:27 - 2016-11-09 02:34 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2017-03-10 10:27 - 2016-11-09 02:33 - 02382848 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2017-03-10 10:27 - 2016-11-09 02:33 - 00729088 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2017-03-10 10:27 - 2016-11-09 02:33 - 00452608 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2017-03-10 10:27 - 2016-11-09 02:33 - 00281600 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2017-03-10 10:27 - 2016-11-09 02:33 - 00248320 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2017-03-10 10:27 - 2016-11-09 02:33 - 00173568 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2017-03-10 10:27 - 2016-11-09 02:33 - 00096256 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2017-03-10 10:27 - 2016-11-09 02:33 - 00055296 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2017-03-10 10:27 - 2016-11-09 02:33 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2017-03-10 10:27 - 2016-11-09 02:33 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2017-03-10 10:27 - 2016-11-09 02:06 - 01815552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2017-03-10 10:27 - 2016-11-09 02:05 - 12841472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2017-03-10 10:27 - 2016-11-09 02:03 - 00367616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2017-03-10 10:27 - 2016-11-09 02:01 - 01140736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2017-03-10 10:27 - 2016-11-09 02:01 - 01129984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2017-03-10 10:27 - 2016-11-09 02:00 - 01805312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2017-03-10 10:27 - 2016-11-09 02:00 - 01427968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2017-03-10 10:27 - 2016-11-09 02:00 - 00429056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2017-03-10 10:27 - 2016-11-09 02:00 - 00231936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2017-03-10 10:27 - 2016-11-09 02:00 - 00142848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2017-03-10 10:27 - 2016-11-09 02:00 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2017-03-10 10:27 - 2016-11-09 01:59 - 02382848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2017-03-10 10:27 - 2016-11-09 01:59 - 00719360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2017-03-10 10:27 - 2016-11-09 01:59 - 00607744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2017-03-10 10:27 - 2016-11-09 01:59 - 00354304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2017-03-10 10:27 - 2016-11-09 01:59 - 00223744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2017-03-10 10:27 - 2016-11-09 01:59 - 00176640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2017-03-10 10:27 - 2016-11-09 01:59 - 00072704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2017-03-10 10:27 - 2016-11-09 01:59 - 00041472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2017-03-10 10:27 - 2016-11-09 01:59 - 00011776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2017-03-10 10:27 - 2016-11-09 01:59 - 00010752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2017-03-10 10:26 - 2016-11-09 02:36 - 10941952 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2017-03-10 10:26 - 2016-11-09 02:02 - 09756160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2017-03-10 10:23 - 2016-11-08 19:10 - 03137536 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2017-03-10 10:23 - 2016-11-08 19:01 - 02264576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2017-03-10 10:21 - 2016-10-27 18:16 - 00622592 _____ (Microsoft Corporation) C:\Windows\system32\usp10.dll
2017-03-10 10:21 - 2016-10-27 18:03 - 00502784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usp10.dll
2017-03-10 10:17 - 2016-10-07 18:19 - 04692712 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2017-03-10 10:17 - 2016-08-12 21:07 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2017-03-10 10:16 - 2016-10-07 18:12 - 02528768 _____ (Microsoft Corporation) C:\Windows\system32\MSVidCtl.dll
2017-03-10 10:16 - 2016-10-07 17:52 - 01544704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSVidCtl.dll
2017-03-10 10:10 - 2016-10-07 18:13 - 00862208 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2017-03-10 10:10 - 2016-10-07 18:11 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\asycfilt.dll
2017-03-10 10:10 - 2016-10-07 17:52 - 00573952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2017-03-10 10:10 - 2016-10-07 17:51 - 00067072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\asycfilt.dll
2017-03-10 10:08 - 2016-10-18 00:20 - 01040896 _____ (Microsoft Corporation) C:\Windows\system32\msctf.dll
2017-03-10 10:08 - 2016-10-18 00:20 - 00178688 _____ (Microsoft Corporation) C:\Windows\system32\tintlgnt.ime
2017-03-10 10:08 - 2016-10-18 00:19 - 01019904 _____ (Microsoft Corporation) C:\Windows\system32\IMJP10.IME
2017-03-10 10:08 - 2016-10-18 00:19 - 00923136 _____ (Microsoft Corporation) C:\Windows\system32\IMJP10K.DLL
2017-03-10 10:08 - 2016-10-18 00:19 - 00437760 _____ (Microsoft Corporation) C:\Windows\system32\imkr80.ime
2017-03-10 10:08 - 2016-10-18 00:19 - 00257024 _____ (Microsoft Corporation) C:\Windows\system32\input.dll
2017-03-10 10:08 - 2016-10-18 00:19 - 00177664 _____ (Microsoft Corporation) C:\Windows\system32\quick.ime
2017-03-10 10:08 - 2016-10-18 00:19 - 00177664 _____ (Microsoft Corporation) C:\Windows\system32\qintlgnt.ime
2017-03-10 10:08 - 2016-10-18 00:19 - 00177664 _____ (Microsoft Corporation) C:\Windows\system32\phon.ime
2017-03-10 10:08 - 2016-10-18 00:19 - 00177664 _____ (Microsoft Corporation) C:\Windows\system32\cintlgnt.ime
2017-03-10 10:08 - 2016-10-18 00:19 - 00177664 _____ (Microsoft Corporation) C:\Windows\system32\chajei.ime
2017-03-10 10:08 - 2016-10-18 00:19 - 00133632 _____ (Microsoft Corporation) C:\Windows\system32\pintlgnt.ime
2017-03-10 10:08 - 2016-10-18 00:05 - 00807936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msctf.dll
2017-03-10 10:08 - 2016-10-18 00:04 - 00884224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IMJP10.IME
2017-03-10 10:08 - 2016-10-18 00:04 - 00729600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IMJP10K.DLL
2017-03-10 10:08 - 2016-10-18 00:04 - 00413696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imkr80.ime
2017-03-10 10:08 - 2016-10-18 00:04 - 00200704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\input.dll
2017-03-10 10:08 - 2016-10-18 00:04 - 00125952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tintlgnt.ime
2017-03-10 10:08 - 2016-10-18 00:04 - 00125440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\quick.ime
2017-03-10 10:08 - 2016-10-18 00:04 - 00125440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qintlgnt.ime
2017-03-10 10:08 - 2016-10-18 00:04 - 00125440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\phon.ime
2017-03-10 10:08 - 2016-10-18 00:04 - 00125440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cintlgnt.ime
2017-03-10 10:08 - 2016-10-18 00:04 - 00125440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\chajei.ime
2017-03-10 10:08 - 2016-10-18 00:04 - 00089088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pintlgnt.ime
2017-03-10 10:07 - 2016-09-15 03:41 - 00975872 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
2017-03-10 10:07 - 2016-09-15 03:29 - 00739328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll
2017-03-10 10:07 - 2016-09-15 02:23 - 00084480 _____ (Microsoft Corporation) C:\Windows\system32\INETRES.dll
2017-03-10 10:07 - 2016-09-15 02:01 - 00084480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\INETRES.dll
2017-03-10 10:06 - 2016-09-09 17:34 - 01268224 _____ (Microsoft Corporation) C:\Windows\system32\d3d10.dll
2017-03-10 10:06 - 2016-09-09 17:34 - 00327680 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1core.dll
2017-03-10 10:06 - 2016-09-09 17:34 - 00287232 _____ (Microsoft Corporation) C:\Windows\system32\d3d10core.dll
2017-03-10 10:06 - 2016-09-09 17:34 - 00196096 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1.dll
2017-03-10 10:06 - 2016-09-09 17:15 - 01029120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10.dll
2017-03-10 10:06 - 2016-09-09 17:15 - 00219648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1core.dll
2017-03-10 10:06 - 2016-09-09 17:15 - 00189952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10core.dll
2017-03-10 10:06 - 2016-09-09 17:15 - 00160768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1.dll
2017-03-10 10:06 - 2016-09-09 16:57 - 02002944 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2017-03-10 10:06 - 2016-09-09 16:56 - 00566272 _____ (Microsoft Corporation) C:\Windows\system32\d3d10level9.dll
2017-03-10 10:06 - 2016-09-09 16:44 - 00834048 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2017-03-10 10:06 - 2016-09-09 16:43 - 01561600 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2017-03-10 10:06 - 2016-09-09 16:42 - 01154560 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2017-03-10 10:06 - 2016-09-09 16:34 - 01172480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll
2017-03-10 10:06 - 2016-09-09 16:32 - 00486912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10level9.dll
2017-03-10 10:06 - 2016-09-09 16:23 - 00682496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll
2017-03-10 10:06 - 2016-09-09 16:21 - 01073152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2017-03-10 09:56 - 2016-09-08 16:39 - 00139776 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
2017-03-10 09:56 - 2016-09-08 16:39 - 00102400 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dfsc.sys
2017-03-10 09:54 - 2016-08-03 18:23 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\netevent.dll
2017-03-10 09:54 - 2016-08-03 17:45 - 00017920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netevent.dll
2017-03-10 09:54 - 2016-08-03 16:41 - 00451072 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys
2017-03-10 09:54 - 2016-08-03 16:40 - 00176128 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2017-03-10 09:54 - 2016-08-03 16:40 - 00147456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2017-03-10 09:52 - 2010-04-21 19:56 - 00318976 _____ (Microsoft Corporation) C:\Windows\system32\tapisrv.dll
2017-03-10 09:52 - 2010-04-21 19:47 - 00243200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tapisrv.dll
2017-03-09 20:07 - 2017-03-25 21:13 - 00000000 ____D C:\Users\Eloïse\Desktop\mutuelle et devis dents 2016 2017
2017-03-08 21:21 - 2017-03-08 21:21 - 00000000 ____D C:\Users\Eloïse\Desktop\Documents\PPS et autres conneries
2017-03-08 20:45 - 2017-03-08 20:45 - 00000000 ____D C:\ffc957210baadaaa8d90c9ef560963ee
2017-03-08 18:11 - 2017-03-27 10:37 - 00000000 __SHD C:\$360Section
2017-03-08 17:48 - 2017-03-03 13:30 - 00391392 _____ (360.cn) C:\Windows\system32\Drivers\360fsflt.sys
2017-03-08 17:43 - 2017-03-27 17:02 - 00000290 __RSH C:\ProgramData\ntuser.pol
2017-03-08 17:43 - 2017-03-27 15:45 - 00000000 ____D C:\Users\Eloïse\AppData\LocalLow\360WD
2017-03-08 17:43 - 2017-03-27 10:37 - 00000000 ____D C:\ProgramData\360Quarant
2017-03-08 17:43 - 2017-03-27 10:10 - 00000000 ____D C:\ProgramData\360safe
2017-03-08 17:43 - 2017-03-08 17:43 - 00000000 ____D C:\Windows\Tasks\360Disabled
2017-03-08 17:43 - 2017-03-08 17:43 - 00000000 ____D C:\Users\Eloïse\AppData\Roaming\360TotalSecurity
2017-03-08 17:43 - 2017-03-08 17:43 - 00000000 ____D C:\ProgramData\360TotalSecurity
2017-03-08 17:43 - 2017-03-03 13:30 - 00086248 _____ (360.cn) C:\Windows\SysWOW64\Drivers\360AvFlt.sys
2017-03-08 17:43 - 2017-03-03 13:30 - 00086248 _____ (360.cn) C:\Windows\system32\Drivers\360AvFlt.sys
2017-03-08 17:42 - 2017-03-08 20:45 - 00000000 ____D C:\Users\Eloïse\AppData\Roaming\360safe
2017-03-08 17:42 - 2017-03-08 17:42 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\360 Security Center
2017-03-08 17:42 - 2017-03-08 17:42 - 00000000 ____D C:\Program Files (x86)\360
2017-03-08 17:42 - 2017-03-03 13:30 - 00188864 _____ (360.cn) C:\Windows\system32\Drivers\BAPIDRV64.SYS
2017-03-08 15:24 - 2017-03-08 15:24 - 00002344 _____ C:\DelFix.txt
2017-03-08 09:56 - 2017-03-08 17:09 - 00000000 ____D C:\Program Files (x86)\ZHPFix
2017-03-07 17:43 - 2017-03-07 17:43 - 02708480 _____ C:\Users\Eloïse\ZHPDiag3.exe
2017-03-07 16:39 - 2017-03-07 20:43 - 00000000 ____D C:\AdwCleaner
2017-03-07 15:42 - 2017-03-27 21:22 - 00251840 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2017-03-04 17:51 - 2017-03-04 17:51 - 22568112 _____ (MiniTool Solution Ltd. ) C:\Users\Eloïse\Downloads\pdr7free.exe
2017-03-04 17:47 - 2017-03-04 17:49 - 00000001 _____ C:\Users\Eloïse\AppData\Local\RawCopy.sourcedisk.index
2017-03-04 17:47 - 2017-03-04 17:47 - 02076160 _____ C:\Users\Eloïse\Downloads\HDDRawCopy1.10Portable.exe
2017-03-04 17:47 - 2017-03-04 17:47 - 00000001 _____ C:\Users\Eloïse\AppData\Local\RawCopy.1.10.agreement
2017-03-02 19:58 - 2017-03-02 19:58 - 00945579 _____ C:\Users\Eloïse\Desktop\BS 02 2017 HP.pdf
2017-03-01 17:02 - 2017-03-01 17:03 - 00000000 ____D C:\Users\Eloïse\Desktop\Documents\Garanties
2017-03-01 15:28 - 2017-03-01 15:28 - 00178083 _____ C:\Users\Eloïse\Downloads\ptedit32.zip
2017-02-28 11:24 - 2017-02-28 11:24 - 00000000 ____D C:\Users\Eloïse\Downloads\testdisk-7.0.win64
2017-02-28 10:19 - 2017-02-28 10:19 - 10105868 _____ C:\Users\Eloïse\Downloads\testdisk-7.0.win64.zip
2017-02-28 10:10 - 2017-02-28 10:11 - 04874935 _____ C:\Users\Eloïse\Downloads\CrystalDiskInfo7_0_5.zip
2017-02-28 09:47 - 2017-03-08 17:10 - 00000000 ____D C:\Program Files (x86)\SpeedFan
2017-02-28 09:47 - 2017-02-28 09:47 - 00000045 _____ C:\Windows\SysWOW64\initdebug.nfo
2017-02-27 21:14 - 2017-02-27 21:14 - 02371652 _____ C:\Users\Eloïse\Desktop\bordereau box.pdf
2017-02-27 12:01 - 2017-03-27 21:22 - 00077408 _____ C:\Windows\system32\Drivers\mbae64.sys
2017-02-27 12:01 - 2017-03-07 15:42 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2017-02-27 12:01 - 2017-02-27 12:01 - 00000000 ____D C:\ProgramData\Malwarebytes
2017-02-27 12:01 - 2017-02-27 12:01 - 00000000 ____D C:\Program Files\Malwarebytes
2017-02-26 16:31 - 2017-02-26 16:31 - 00000000 ____D C:\Users\Eloïse\Downloads\314da8b149260c7d28949313c3f173ad
2017-02-26 16:31 - 2010-08-12 14:07 - 00344680 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvmfdx64.sys
2017-02-26 16:31 - 2010-08-12 13:46 - 00953344 _____ (NVIDIA Corporation) C:\Windows\system32\fdco9.dll
2017-02-26 16:31 - 2010-08-12 12:14 - 00263784 _____ (NVIDIA Corporation) C:\Windows\system32\nvconrm.dll
2017-02-26 15:25 - 2017-02-26 15:25 - 00000000 ____D C:\Program Files (x86)\AGEIA Technologies
2017-02-26 15:24 - 2016-11-14 13:15 - 06789056 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2017-02-26 15:24 - 2016-11-14 13:15 - 03528128 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll
2017-02-26 15:24 - 2016-11-14 13:15 - 02558512 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll
2017-02-26 15:24 - 2016-11-14 13:15 - 00932728 _____ (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
2017-02-26 15:24 - 2016-11-14 13:15 - 00384888 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
2017-02-26 15:24 - 2016-11-14 13:15 - 00062328 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
2017-02-26 15:24 - 2016-11-14 11:09 - 07513855 _____ C:\Windows\system32\nvcoproc.bin
2017-02-26 15:23 - 2016-11-14 14:30 - 00082488 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2017-02-26 15:23 - 2016-11-14 14:30 - 00067520 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2017-02-26 15:13 - 2016-11-14 14:30 - 31523384 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2017-02-26 15:13 - 2016-11-14 14:30 - 24208440 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2017-02-26 15:13 - 2016-11-14 14:30 - 23000000 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll
2017-02-26 15:13 - 2016-11-14 14:30 - 18634216 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll
2017-02-26 15:13 - 2016-11-14 14:30 - 17559384 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2017-02-26 15:13 - 2016-11-14 14:30 - 16128720 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2017-02-26 15:13 - 2016-11-14 14:30 - 15301056 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll
2017-02-26 15:13 - 2016-11-14 14:30 - 14497712 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll
2017-02-26 15:13 - 2016-11-14 14:30 - 13915720 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2017-02-26 15:13 - 2016-11-14 14:30 - 13826968 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2017-02-26 15:13 - 2016-11-14 14:30 - 12905016 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2017-02-26 15:13 - 2016-11-14 14:30 - 11270656 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2017-02-26 15:13 - 2016-11-14 14:30 - 11208312 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2017-02-26 15:13 - 2016-11-14 14:30 - 04253240 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2017-02-26 15:13 - 2016-11-14 14:30 - 03995192 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2017-02-26 15:13 - 2016-11-14 14:30 - 03207824 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2017-02-26 15:13 - 2016-11-14 14:30 - 02822568 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2017-02-26 15:13 - 2016-11-14 14:30 - 01908272 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6434201.dll
2017-02-26 15:13 - 2016-11-14 14:30 - 01557552 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6434201.dll
2017-02-26 15:13 - 2016-11-14 14:30 - 01515296 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdagenco6420103.dll
2017-02-26 15:13 - 2016-11-14 14:30 - 00197408 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda64v.sys
2017-02-26 15:13 - 2016-11-14 14:30 - 00031520 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdap64.dll
2017-02-26 14:52 - 2017-02-26 15:26 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2017-02-26 13:42 - 2017-03-08 17:34 - 00000000 ____D C:\ProgramData\Package Cache
2017-02-26 11:46 - 2017-02-26 15:21 - 00000732 _____ C:\Users\Eloïse\AppData\Local\d3d9caps64.dat
2017-02-26 11:42 - 2017-03-07 17:10 - 00206492 _____ C:\Windows\ntbtlog.txt
==================== Un mois - Modifiés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2017-03-27 21:43 - 2016-04-04 09:30 - 00000000 ____D C:\FRST
2017-03-27 21:32 - 2006-11-02 17:17 - 00003216 _____ C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
2017-03-27 21:32 - 2006-11-02 17:17 - 00003216 _____ C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
2017-03-27 21:04 - 2015-11-30 13:23 - 00000000 ____D C:\Users\Eloïse\Desktop\Candidatures 974
2017-03-27 17:17 - 2016-07-10 07:31 - 00000000 ____D C:\Users\Eloïse\AppData\Local\DiskDrill
2017-03-27 17:09 - 2008-01-21 12:35 - 01530274 _____ C:\Windows\system32\PerfStringBackup.INI
2017-03-27 17:09 - 2008-01-21 12:34 - 00677008 _____ C:\Windows\system32\perfh00C.dat
2017-03-27 17:09 - 2008-01-21 12:34 - 00129416 _____ C:\Windows\system32\perfc00C.dat
2017-03-27 17:09 - 2006-11-02 15:33 - 00000000 ____D C:\Windows\inf
2017-03-27 17:02 - 2013-03-22 00:07 - 00004484 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2017-03-27 17:02 - 2011-07-22 16:28 - 00003502 _____ C:\Windows\System32\Tasks\Run RoboForm TaskBar Icon
2017-03-27 17:02 - 2010-12-27 19:13 - 00003500 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2017-03-27 17:02 - 2010-12-27 19:13 - 00003372 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2017-03-27 15:37 - 2017-01-16 17:22 - 00000000 ____D C:\Users\Eloïse\AppData\LocalLow\Mozilla
2017-03-27 15:32 - 2006-11-02 17:35 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2017-03-27 10:58 - 2006-11-02 17:35 - 00032564 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2017-03-27 10:49 - 2010-01-28 01:38 - 00151040 _____ C:\Users\Eloïse\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2017-03-27 10:37 - 2009-05-05 14:58 - 00000000 ____D C:\Windows\SHELLNEW
2017-03-26 20:30 - 2016-08-27 17:21 - 00000000 ____D C:\Users\Eloïse\Desktop\veg
2017-03-26 03:41 - 2017-02-23 02:48 - 00000000 ____D C:\Users\Eloïse\Desktop\Dons
2017-03-25 22:10 - 2016-07-11 13:02 - 00000000 ____D C:\Users\Eloïse\Desktop\Ju
2017-03-25 21:09 - 2016-08-26 19:23 - 00000000 ____D C:\Users\Eloïse\Desktop\Chomage 2016
2017-03-24 21:34 - 2011-03-15 20:51 - 00000000 ____D C:\Users\Eloïse\AppData\Roaming\Skype
2017-03-24 16:26 - 2017-01-16 15:37 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2017-03-14 16:14 - 2013-03-22 00:07 - 00802904 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2017-03-14 16:14 - 2011-12-07 01:17 - 00000000 ____D C:\Windows\system32\Macromed
2017-03-14 16:14 - 2011-06-24 21:09 - 00144472 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2017-03-14 16:14 - 2009-05-05 15:06 - 00000000 ____D C:\Windows\SysWOW64\Macromed
2017-03-11 07:23 - 2010-10-04 21:21 - 00000000 ____D C:\Users\Eloïse\AppData\Roaming\vlc
2017-03-11 06:35 - 2009-09-11 20:08 - 00000000 ____D C:\Users\Eloïse
2017-03-10 15:28 - 2014-03-05 04:06 - 01475354 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2017-03-10 14:49 - 2006-11-02 15:33 - 00000000 ____D C:\Windows\rescache
2017-03-10 10:38 - 2006-11-02 17:03 - 00000000 ____D C:\Windows\SysWOW64\XPSViewer
2017-03-10 09:53 - 2009-09-14 16:18 - 00000000 ____D C:\Program Files (x86)\MSXML 4.0
2017-03-09 19:59 - 2017-01-18 17:46 - 00000000 ____D C:\Users\Eloïse\Desktop\Petit Quotidien Rose
2017-03-08 20:47 - 2010-06-06 23:38 - 00000000 ____D C:\Users\Invité
2017-03-08 20:47 - 2009-10-15 12:24 - 00000000 ____D C:\Users\julien
2017-03-08 20:43 - 2012-12-30 00:21 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TomTom
2017-03-08 18:18 - 2006-11-02 15:33 - 00000000 ___SD C:\Windows\Downloaded Program Files
2017-03-08 18:16 - 2007-07-12 03:49 - 00000000 ____D C:\Windows\Panther
2017-03-08 18:11 - 2016-08-12 19:08 - 00000000 ____D C:\Users\Eloïse\AppData\Roaming\TeamViewer
2017-03-08 18:11 - 2016-04-18 08:37 - 00003056 _____ C:\Windows\System32\Tasks\{0C8DC04A-1FEF-4053-A39A-24AB59085ECF}
2017-03-08 18:11 - 2016-04-04 14:16 - 00000000 ____D C:\Users\Eloïse\AppData\Roaming\Vso
2017-03-08 18:11 - 2012-12-03 17:53 - 00000000 ____D C:\Program Files (x86)\PDFCreator
2017-03-08 18:11 - 2011-03-14 21:43 - 00002794 _____ C:\Windows\System32\Tasks\{3D75A946-7D9E-463B-AF78-FBD35215377A}
2017-03-08 18:11 - 2010-09-15 16:03 - 00000000 ____D C:\Users\Eloïse\AppData\Roaming\uTorrent
2017-03-08 10:03 - 2017-02-21 23:41 - 00000000 ____D C:\Users\Eloïse\AppData\Roaming\ZHP
2017-03-07 16:28 - 2016-03-11 20:21 - 00000000 ____D C:\Users\Eloïse\AppData\Roaming\Lavasoft
2017-03-01 09:55 - 2010-10-04 21:21 - 00000000 ____D C:\Users\Eloïse\AppData\Roaming\dvdcss
2017-02-26 22:40 - 2017-02-22 13:49 - 00000000 ____D C:\AdsFix
2017-02-26 17:47 - 2009-05-05 14:55 - 00000000 ____D C:\ProgramData\NVIDIA
2017-02-26 17:45 - 2010-10-13 14:55 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2017-02-26 15:24 - 2006-11-02 15:33 - 00000000 ____D C:\Windows\Help
2017-02-26 15:23 - 2010-10-13 14:55 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2017-02-26 15:21 - 2009-10-15 12:13 - 00001356 _____ C:\Users\Eloïse\AppData\Local\d3d9caps.dat
2017-02-26 06:29 - 2016-03-11 20:19 - 00000000 ____D C:\Users\Eloïse\AppData\Roaming\DVDVideoSoft
2017-02-26 00:01 - 2016-07-10 07:11 - 00000000 ____D C:\Program Files (x86)\Glary Utilities 5
==================== Fichiers à la racine de certains dossiers =======
2016-07-03 05:40 - 2016-07-03 05:42 - 0000003 _____ () C:\Users\Eloïse\AppData\Roaming\.ptbt0
2016-04-04 14:16 - 2016-04-04 14:16 - 0007833 _____ () C:\Users\Eloïse\AppData\Roaming\ezplay.cat
2016-04-04 14:16 - 2016-04-04 14:16 - 0118400 _____ (VSO Software) C:\Users\Eloïse\AppData\Roaming\ezplay.sys
2016-04-04 14:16 - 2016-04-04 14:16 - 0001127 _____ () C:\Users\Eloïse\AppData\Roaming\ZUVFMMWI.inf
2016-04-04 14:16 - 2016-04-04 14:16 - 0000125 _____ () C:\Users\Eloïse\AppData\Roaming\ZUVFMMWI.ini
2016-04-04 14:16 - 2016-04-04 14:16 - 0000033 _____ () C:\Users\Eloïse\AppData\Roaming\ZUVFMMWI.log
2009-10-15 12:13 - 2017-02-26 15:21 - 0001356 _____ () C:\Users\Eloïse\AppData\Local\d3d9caps.dat
2017-02-26 11:46 - 2017-02-26 15:21 - 0000732 _____ () C:\Users\Eloïse\AppData\Local\d3d9caps64.dat
2010-01-28 01:38 - 2017-03-27 10:49 - 0151040 _____ () C:\Users\Eloïse\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2017-03-27 10:42 - 2017-03-27 10:42 - 0000051 _____ () C:\Users\Eloïse\AppData\Local\Kosong.Bron.Tok.txt
2017-03-04 17:47 - 2017-03-04 17:47 - 0000001 _____ () C:\Users\Eloïse\AppData\Local\RawCopy.1.10.agreement
2017-03-04 17:47 - 2017-03-04 17:49 - 0000001 _____ () C:\Users\Eloïse\AppData\Local\RawCopy.sourcedisk.index
2011-10-25 17:33 - 2011-10-25 17:33 - 0000011 _____ () C:\ProgramData\.tv5
2011-01-25 01:10 - 2011-01-25 01:27 - 0000088 __RSH () C:\ProgramData\3A427D2554.sys
2011-12-31 14:49 - 2011-12-31 14:56 - 0000440 _____ () C:\ProgramData\9lLsqigFz9edg3
2017-03-27 15:32 - 2017-03-27 15:32 - 0000000 ____H () C:\ProgramData\cm-lock
2011-01-25 01:10 - 2011-05-03 23:02 - 0005018 ___SH () C:\ProgramData\KGyGaAvL.sys
2011-12-31 14:49 - 2011-12-31 14:54 - 0000296 _____ () C:\ProgramData\~9lLsqigFz9edg3
2011-12-31 14:49 - 2011-12-31 14:54 - 0000200 _____ () C:\ProgramData\~9lLsqigFz9edg3r
Fichiers à déplacer ou supprimer:
====================
C:\Users\Eloïse\ZHPDiag3.exe
==================== Bamital & volsnap ======================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
C:\Windows\system32\winlogon.exe => Le fichier est signé numériquement
C:\Windows\system32\wininit.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\wininit.exe => Le fichier est signé numériquement
C:\Windows\explorer.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\explorer.exe => Le fichier est signé numériquement
C:\Windows\system32\svchost.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\svchost.exe => Le fichier est signé numériquement
C:\Windows\system32\services.exe => Le fichier est signé numériquement
C:\Windows\system32\User32.dll => Le fichier est signé numériquement
C:\Windows\SysWOW64\User32.dll => Le fichier est signé numériquement
C:\Windows\system32\userinit.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\userinit.exe => Le fichier est signé numériquement
C:\Windows\system32\rpcss.dll => Le fichier est signé numériquement
C:\Windows\system32\dnsapi.dll => Le fichier est signé numériquement
C:\Windows\SysWOW64\dnsapi.dll => Le fichier est signé numériquement
C:\Windows\system32\Drivers\volsnap.sys => Le fichier est signé numériquement
LastRegBack: 2017-03-27 15:39
==================== Fin de FRST.txt ============================