Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 20-08-2017
Exécuté par sarra_000 (administrateur) sur OSCAR (20-08-2017 14:08:12)
Exécuté depuis C:\Users\sarra_000\Downloads
Profils chargés: UpdatusUser & sarra_000 (Profils disponibles: UpdatusUser & sarra_000)
Platform: Windows 8.1 (Update) (X64) Langue: Français (France)
Internet Explorer Version 11 (Navigateur par défaut: FF)
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
(ASUS) C:\Program Files\ASUS\P4G\InsOnSrv.exe
() C:\Program Files (x86)\ASUS\WebStorage Sync Agent\1.1.18.159\AsusWSWinService.exe
(Windows (R) Win 7 DDK provider) C:\Program Files (x86)\Bluetooth Suite\AdminService.exe
(AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 17.0.0\avp.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(Atheros) C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
(ASUS) C:\Program Files\ASUS\P4G\InsOnWMI.exe
(ASUS) C:\Program Files\ASUS\P4G\BatteryLife.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\Splendid\ColorUService.exe
(ASUS) C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe
(ASUSTek Computer Inc.) C:\Program Files\ASUS\ASUS Console\ASUS Console Starter.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
(AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 17.0.0\avpui.exe
(IvoSoft) C:\Program Files\Classic Shell\ClassicStartMenu.exe
(Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Qualcomm Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe
() C:\Program Files (x86)\Bluetooth Suite\ActivateDesktop.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(CyberLink Corp.) C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLoader.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\QuickGesture\x64\QuickGesture64.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\QuickGesture\x86\QuickGesture.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Glarysoft Ltd) C:\Program Files (x86)\Glary Utilities 5\Integrator.exe
(Glarysoft Ltd) C:\Program Files (x86)\Glary Utilities 5\MemfilesService.exe
(Glarysoft Ltd) C:\Program Files (x86)\Glary Utilities 5\x64\Win64ShellLink.exe
(Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Microsoft Corporation) C:\Windows\System32\consent.exe
==================== Registre (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\system32\rundll32.exe C:\Windows\System32\LogiLDA.dll,LogiFetch
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s**RtHDVCpl****C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe -s**kernel32.dll*
HKLM\...\Run: [RtHDVBg] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1489920 2017-08-20] (Realtek Semiconductor)
HKLM\...\Run: [Malwarebytes TrayApp] => C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\mbamtray.exe [3146704 2017-05-09] (Malwarebytes)
HKLM\...\Run: [Classic Start Menu] => C:\Program Files\Classic Shell\ClassicStartMenu.exe [163800 2016-07-30] (IvoSoft)
HKLM-x32\...\Run: [ASUSWebStorage] => C:\Program Files (x86)\ASUS\WebStorage Sync Agent\1.1.18.159\AsusWSPanel.exe [3576784 2012-12-19] (ASUS Cloud Corporation)
HKLM-x32\...\Run: [ASUS InstantKey] => C:\Program Files (x86)\ASUS\ASUS Instant Key\Ikey_start.exe [13936 2013-08-27] (ASUS)
HKLM-x32\...\Run: [RemoteControl10] => C:\Program Files (x86)\Cyberlink\PowerDVD10\PDVD10Serv.exe [95192 2013-03-08] (CyberLink Corp.)
HKLM-x32\...\Run: [UpdatePSTShortCut] => C:\Program Files (x86)\Cyberlink\DVD Suite\MUITransfer\MUIStartMenu.exe [222504 2013-05-17] (CyberLink Corp.)
Winlogon\Notify\igfxcui: C:\WINDOWS\system32\igfxdev.dll (Intel Corporation)
HKLM\...\Policies\Explorer\Run: [BtvStack] => C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [132736 2013-04-24] (Qualcomm Atheros Commnucations)
HKU\S-1-5-21-2679751232-4024043428-2427409758-1001\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [516608 2014-11-21] (Microsoft Corporation)
HKU\S-1-5-21-2679751232-4024043428-2427409758-1002\...\Run: [GUDelayStartup] => C:\Program Files (x86)\Glary Utilities 5\StartupManager.exe [44024 2017-08-07] (Glarysoft Ltd)
HKU\S-1-5-21-2679751232-4024043428-2427409758-1002\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [9818328 2017-06-30] (Piriform Ltd)
AppInit_DLLs: C:\Windows\system32\nvinitx.dll => C:\Windows\system32\nvinitx.dll [181280 2017-01-25] (NVIDIA Corporation)
AppInit_DLLs: ,C:\WINDOWS\system32\nvinitx.dll => C:\WINDOWS\system32\nvinitx.dll [181280 2017-01-25] (NVIDIA Corporation)
AppInit_DLLs-x32: C:\WINDOWS\SysWOW64\nvinit.dll => C:\WINDOWS\SysWOW64\nvinit.dll [158392 2017-01-25] (NVIDIA Corporation)
BootExecute: autocheck autochk /p \??\C:autocheck autochk *
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{0E8687F1-1E09-4D2C-B85A-58092A086046}: [DhcpNameServer] 192.168.1.1
Internet Explorer:
==================
HKU\S-1-5-21-2679751232-4024043428-2427409758-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://asus13.msn.com
HKU\S-1-5-21-2679751232-4024043428-2427409758-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://asus13.msn.com
HKU\S-1-5-21-2679751232-4024043428-2427409758-1002\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://asus13.msn.com/
HKU\S-1-5-21-2679751232-4024043428-2427409758-1002\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://asus13.msn.com
SearchScopes: HKU\S-1-5-21-2679751232-4024043428-2427409758-1002 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-2679751232-4024043428-2427409758-1002 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: Kaspersky Protection -> {2E38825B-8815-42CF-9126-C58BC28D4591} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 17.0.0\x64\IEExt\ie_plugin.dll [2017-03-29] (AO Kaspersky Lab)
BHO: CIESpeechBHO Class -> {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} -> C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll [2013-04-24] (Qualcomm Atheros Commnucations)
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2017-06-25] (Google Inc.)
BHO-x32: Kaspersky Protection -> {2E38825B-8815-42CF-9126-C58BC28D4591} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 17.0.0\IEExt\ie_plugin.dll [2017-03-29] (AO Kaspersky Lab)
BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2017-06-25] (Google Inc.)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2017-06-25] (Google Inc.)
Toolbar: HKLM - Kaspersky Protection Toolbar - {093F479D-712E-46CD-9E06-62E734A05F68} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 17.0.0\x64\IEExt\ie_plugin.dll [2017-03-29] (AO Kaspersky Lab)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2017-06-25] (Google Inc.)
Toolbar: HKLM-x32 - Kaspersky Protection Toolbar - {093F479D-712E-46CD-9E06-62E734A05F68} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 17.0.0\IEExt\ie_plugin.dll [2017-03-29] (AO Kaspersky Lab)
Toolbar: HKU\S-1-5-21-2679751232-4024043428-2427409758-1002 -> Kaspersky Protection Toolbar - {093F479D-712E-46CD-9E06-62E734A05F68} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 17.0.0\x64\IEExt\ie_plugin.dll [2017-03-29] (AO Kaspersky Lab)
FireFox:
========
FF DefaultProfile: xh5m551e.default-1503227852745
FF ProfilePath: C:\Users\sarra_000\AppData\Roaming\Mozilla\Firefox\Profiles\xh5m551e.default-1503227852745 [2017-08-20]
FF Homepage: Mozilla\Firefox\Profiles\xh5m551e.default-1503227852745 -> hxxps://www.qwant.com/?client=qwant-firefox
FF Extension: (AdBlock) - C:\Users\sarra_000\AppData\Roaming\Mozilla\Firefox\Profiles\xh5m551e.default-1503227852745\Extensions\jid1-NIfFY2CA8fy1tg@jetpack.xpi [2017-08-20]
FF Extension: (Qwant for Firefox) - C:\Users\sarra_000\AppData\Roaming\Mozilla\Firefox\Profiles\xh5m551e.default-1503227852745\Extensions\qwantcomforfirefox@jetpack.xpi [2017-08-20]
FF Extension: (WOT) - C:\Users\sarra_000\AppData\Roaming\Mozilla\Firefox\Profiles\xh5m551e.default-1503227852745\Extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7} [2017-08-20]
FF HKLM\...\Firefox\Extensions: [light_plugin_F6F079488B53499DB99380A7E11A93F6@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 17.0.0\FFExt\light_plugin_firefox\addon.xpi
FF Extension: (Kaspersky Protection) - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 17.0.0\FFExt\light_plugin_firefox\addon.xpi [2017-08-15]
FF HKLM-x32\...\Firefox\Extensions: [light_plugin_F6F079488B53499DB99380A7E11A93F6@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 17.0.0\FFExt\light_plugin_firefox\addon.xpi
FF HKLM-x32\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK => non trouvé(e)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=3.5.20 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-03-20] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-03-20] (Intel Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3505.0912 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-09-12] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-06-25] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-06-25] (Google Inc.)
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll [2012-10-12] ()
Chrome:
=======
CHR DefaultProfile: Default
CHR HomePage: Default -> qwant.com
CHR StartupUrls: Default -> "hxxp://tv.sfr.fr/television-sur-ordinateur-par-internet/?ticket=ST-10684865-zXBgndD5xCwuXtqfHeee-authentification13#sfrclicid=EC_mire_Me-Connecter","hxxps://www.qwant.com/"
CHR Profile: C:\Users\sarra_000\AppData\Local\Google\Chrome\User Data\Default [2017-08-20]
CHR Extension: (Google Slides) - C:\Users\sarra_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-08-20]
CHR Extension: (Google Docs) - C:\Users\sarra_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-08-20]
CHR Extension: (Google Drive) - C:\Users\sarra_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-08-14]
CHR Extension: (WOT: Web of Trust, Évaluation de la réputation de sites Web) - C:\Users\sarra_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\bhmmomiinigofkjcapegjjndpbikblnp [2017-08-20]
CHR Extension: (YouTube) - C:\Users\sarra_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-08-14]
CHR Extension: (Google Sheets) - C:\Users\sarra_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-08-20]
CHR Extension: (Kaspersky Protection) - C:\Users\sarra_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\fhoibnponjcgjgcnfacekaijdbbplhib [2017-08-20]
CHR Extension: (Word Online) - C:\Users\sarra_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\fiombgjlkfpdpkbhfioofeeinbehmajg [2017-08-14]
CHR Extension: (Google Docs hors connexion) - C:\Users\sarra_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-08-20]
CHR Extension: (AdBlock) - C:\Users\sarra_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2017-08-20]
CHR Extension: (Qwant.com) - C:\Users\sarra_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\hnlkiofnhhoahaiimdicppgemmmomijo [2017-08-20]
CHR Extension: (Office Online - Copier et coller) - C:\Users\sarra_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\ifbmcpbgkhlpfcodhjhdbllhiaomkdej [2017-08-20]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\sarra_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-08-20]
CHR Extension: (Gmail) - C:\Users\sarra_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-08-14]
CHR Extension: (Chrome Media Router) - C:\Users\sarra_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-08-20]
CHR HKLM\...\Chrome\Extension: [fhoibnponjcgjgcnfacekaijdbbplhib] - hxxps://chrome.google.com/webstore/detail/fhoibnponjcgjgcnfacekaijdbbplhib
CHR HKLM-x32\...\Chrome\Extension: [fhoibnponjcgjgcnfacekaijdbbplhib] - hxxps://chrome.google.com/webstore/detail/fhoibnponjcgjgcnfacekaijdbbplhib
Opera:
=======
StartMenuInternet: (HKLM) OperaStable - C:\Program Files\Opera\Launcher.exe
==================== Services (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 ASUS InstantOn; C:\Program Files\ASUS\P4G\InsOnSrv.exe [277120 2013-08-29] (ASUS)
R2 Asus WebStorage Windows Service; C:\Program Files (x86)\ASUS\WebStorage Sync Agent\1.1.18.159\AsusWSWinService.exe [72192 2012-12-19] () [Fichier non signé]
R2 AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [310400 2013-04-24] (Windows (R) Win 7 DDK provider) [Fichier non signé]
R2 AVP17.0.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 17.0.0\avp.exe [241544 2016-06-28] (AO Kaspersky Lab)
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [731648 2013-02-13] (Intel(R) Corporation) [Fichier non signé]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [820184 2013-02-13] (Intel(R) Corporation)
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [131544 2013-03-20] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-03-20] (Intel Corporation)
S3 klvssbrigde64; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 17.0.0\x64\vssbridge64.exe [77328 2016-06-28] (AO Kaspersky Lab)
S2 KSDE1.0.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Secure Connection 1.0\ksde.exe [241544 2016-06-28] (AO Kaspersky Lab)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [4470736 2017-05-09] (Malwarebytes)
R2 NVDisplay.ContainerLocalSystem; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [458176 2016-12-29] (NVIDIA Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [361824 2017-06-30] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [119872 2017-06-30] (Microsoft Corporation)
R2 ZAtheros Bt and Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [323584 2013-04-24] (Atheros) [Fichier non signé]
===================== Pilotes (Avec liste blanche) ======================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R3 athr; C:\WINDOWS\system32\DRIVERS\athwbx.sys [4307192 2017-07-04] (Qualcomm Atheros Communications, Inc.)
R3 ATP; C:\WINDOWS\System32\drivers\AsusTP.sys [73512 2017-06-29] (ASUS Corporation)
S3 BTATH_LWFLT; C:\WINDOWS\system32\DRIVERS\btath_lwflt.sys [77464 2013-04-24] (Qualcomm Atheros)
R0 cm_km; C:\WINDOWS\System32\DRIVERS\cm_km.sys [238936 2016-06-10] (AO Kaspersky Lab)
R3 ETDSMBus; C:\WINDOWS\System32\drivers\ETDSMBus.sys [32840 2017-06-29] (ELAN Microelectronic Corp.)
R1 GUBootStartup; C:\WINDOWS\System32\drivers\GUBootStartup.sys [20160 2017-08-08] (Glarysoft Ltd)
R1 HWiNFO32; C:\WINDOWS\SysWOW64\drivers\HWiNFO64A.SYS [27552 2017-06-27] (REALiX(tm))
R3 kbfiltr; C:\WINDOWS\System32\drivers\kbfiltr.sys [14992 2012-08-02] ( )
R0 kl1; C:\WINDOWS\System32\DRIVERS\kl1.sys [554416 2016-06-02] (AO Kaspersky Lab)
R0 klbackupdisk; C:\WINDOWS\System32\DRIVERS\klbackupdisk.sys [63920 2016-06-07] (AO Kaspersky Lab)
R1 klbackupflt; C:\WINDOWS\System32\DRIVERS\klbackupflt.sys [86352 2016-06-15] (AO Kaspersky Lab)
R2 kldisk; C:\WINDOWS\system32\DRIVERS\kldisk.sys [78216 2016-05-31] (AO Kaspersky Lab)
S0 klelam; C:\WINDOWS\System32\DRIVERS\klelam.sys [28792 2016-03-31] (AO Kaspersky Lab)
R3 klflt; C:\WINDOWS\system32\DRIVERS\klflt.sys [197312 2017-07-20] (AO Kaspersky Lab)
R1 klhk; C:\WINDOWS\System32\drivers\klhk.sys [520152 2017-07-20] (AO Kaspersky Lab)
R1 KLIF; C:\WINDOWS\System32\DRIVERS\klif.sys [1021624 2017-07-20] (AO Kaspersky Lab)
R1 KLIM6; C:\WINDOWS\system32\DRIVERS\klim6.sys [57424 2017-03-29] (AO Kaspersky Lab)
R3 klkbdflt; C:\WINDOWS\system32\DRIVERS\klkbdflt.sys [52136 2016-05-19] (AO Kaspersky Lab)
R3 klmouflt; C:\WINDOWS\system32\DRIVERS\klmouflt.sys [41656 2015-06-07] (Kaspersky Lab ZAO)
R1 klpd; C:\WINDOWS\System32\DRIVERS\klpd.sys [45488 2016-05-31] (AO Kaspersky Lab)
R3 kltap; C:\WINDOWS\system32\DRIVERS\kltap.sys [52152 2016-06-07] (The OpenVPN Project)
S4 klwfp; C:\WINDOWS\system32\DRIVERS\klwfp.sys [85320 2016-06-18] (AO Kaspersky Lab)
R1 Klwtp; C:\WINDOWS\system32\DRIVERS\klwtp.sys [136416 2017-03-29] (AO Kaspersky Lab)
R1 kneps; C:\WINDOWS\system32\DRIVERS\kneps.sys [199640 2017-07-20] (AO Kaspersky Lab)
R3 MBAMSwissArmy; C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [253856 2017-08-20] (Malwarebytes)
R2 plctrl; C:\Program Files\ASUS\P4G\plctrl.sys [14136 2013-08-29] (Windows (R) Win 7 DDK provider)
R3 RTSPER; C:\WINDOWS\system32\DRIVERS\RtsPer.sys [779232 2017-06-29] (Realsil Semiconductor Corporation)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [46600 2017-06-30] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [274776 2017-06-30] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [117592 2017-06-30] (Microsoft Corporation)
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois - Créés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2017-08-20 14:08 - 2017-08-20 14:08 - 000022331 _____ C:\Users\sarra_000\Downloads\FRST.txt
2017-08-20 14:07 - 2017-08-20 14:08 - 000000000 ____D C:\FRST
2017-08-20 14:02 - 2017-08-20 14:06 - 002395648 _____ (Farbar) C:\Users\sarra_000\Downloads\FRST64.exe
2017-08-20 13:50 - 2017-08-20 13:50 - 000002888 _____ C:\WINDOWS\System32\Tasks\Driver Booster SkipUAC (sarra_000)
2017-08-20 13:21 - 2017-08-20 13:21 - 000001175 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2017-08-20 13:21 - 2017-08-20 13:21 - 000001163 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2017-08-20 13:21 - 2017-08-20 13:21 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2017-08-20 13:20 - 2017-08-20 13:20 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2017-08-20 13:19 - 2017-08-20 13:20 - 034311544 _____ (Mozilla) C:\Users\sarra_000\Downloads\Firefox Setup 55.0.2 (1).exe
2017-08-20 13:10 - 2017-08-20 13:11 - 034311544 _____ (Mozilla) C:\Users\sarra_000\Downloads\Firefox Setup 55.0.2.exe
2017-08-20 13:04 - 2017-08-20 13:04 - 000245912 _____ (Mozilla) C:\Users\sarra_000\Downloads\Firefox Installer.exe
2017-08-20 11:56 - 2017-08-20 11:56 - 000000872 _____ C:\Users\sarra_000\Desktop\WinChk.txt
2017-08-20 11:51 - 2017-08-20 12:56 - 000123986 _____ C:\Users\sarra_000\Desktop\ZHPDiag.txt
2017-08-20 11:42 - 2017-08-20 11:42 - 000315000 _____ C:\Users\sarra_000\Downloads\winchk_2.0.exe
2017-08-20 11:38 - 2017-08-20 11:54 - 000000194 _____ C:\Users\sarra_000\Downloads\ckfiles.txt
2017-08-20 11:37 - 2017-07-14 08:49 - 025733632 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2017-08-20 11:37 - 2017-07-14 04:54 - 020270080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2017-08-20 11:36 - 2017-08-02 05:17 - 000107520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tdx.sys
2017-08-20 11:36 - 2017-07-21 15:40 - 000518144 _____ C:\WINDOWS\SysWOW64\msjetoledb40.dll
2017-08-20 11:36 - 2017-07-21 15:40 - 000290816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjtes40.dll
2017-08-20 11:36 - 2017-07-15 12:10 - 000536688 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2017-08-20 11:36 - 2017-07-15 12:10 - 000140016 _____ (Microsoft Corporation) C:\WINDOWS\system32\wermgr.exe
2017-08-20 11:36 - 2017-07-15 12:06 - 000449840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2017-08-20 11:36 - 2017-07-15 12:06 - 000136832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wermgr.exe
2017-08-20 11:36 - 2017-07-14 22:08 - 000037888 _____ (Microsoft Corporation) C:\WINDOWS\system32\werdiagcontroller.dll
2017-08-20 11:36 - 2017-07-14 20:44 - 000033280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werdiagcontroller.dll
2017-08-20 11:36 - 2017-07-14 08:44 - 000576512 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2017-08-20 11:36 - 2017-07-14 08:19 - 000817664 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2017-08-20 11:36 - 2017-07-14 07:35 - 005981184 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2017-08-20 11:36 - 2017-07-14 07:26 - 001033216 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcomm.dll
2017-08-20 11:36 - 2017-07-14 07:10 - 000806912 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2017-08-20 11:36 - 2017-07-14 06:40 - 015254016 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2017-08-20 11:36 - 2017-07-14 06:23 - 003240960 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2017-08-20 11:36 - 2017-07-14 06:07 - 001545728 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2017-08-20 11:36 - 2017-07-14 05:58 - 000800768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2017-08-20 11:36 - 2017-07-14 04:48 - 000499200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2017-08-20 11:36 - 2017-07-14 04:38 - 000663552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2017-08-20 11:36 - 2017-07-14 04:17 - 004546048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2017-08-20 11:36 - 2017-07-14 04:17 - 000880640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcomm.dll
2017-08-20 11:36 - 2017-07-14 04:12 - 000693248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2017-08-20 11:36 - 2017-07-14 04:09 - 013663744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2017-08-20 11:36 - 2017-07-14 03:53 - 002767872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2017-08-20 11:36 - 2017-07-14 03:50 - 001314816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2017-08-20 11:36 - 2017-07-14 03:48 - 000710144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2017-08-20 11:36 - 2017-07-08 22:14 - 000376672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys
2017-08-20 11:36 - 2017-07-08 21:12 - 004169728 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2017-08-20 11:36 - 2017-07-08 19:45 - 007078912 _____ (Microsoft Corporation) C:\WINDOWS\system32\glcndFilter.dll
2017-08-20 11:36 - 2017-07-08 19:05 - 003631616 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2017-08-20 11:36 - 2017-07-08 18:39 - 005274624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\glcndFilter.dll
2017-08-20 11:36 - 2017-07-08 18:37 - 007797248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2017-08-20 11:36 - 2017-07-08 18:23 - 002749952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2017-08-20 11:36 - 2017-07-08 17:59 - 005270016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2017-08-20 11:36 - 2017-07-08 05:46 - 000377688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\volmgrx.sys
2017-08-20 11:36 - 2017-07-08 05:16 - 007440728 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2017-08-20 11:36 - 2017-07-08 05:16 - 001674520 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2017-08-20 11:36 - 2017-07-08 05:16 - 001534072 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2017-08-20 11:36 - 2017-07-08 05:16 - 001499920 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2017-08-20 11:36 - 2017-07-08 05:16 - 001370328 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2017-08-20 11:36 - 2017-07-08 05:16 - 000086360 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys
2017-08-20 11:36 - 2017-07-01 15:47 - 001311744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjet40.dll
2017-08-20 11:36 - 2017-07-01 15:47 - 000866816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mswdat10.dll
2017-08-20 11:36 - 2017-07-01 15:47 - 000641536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mswstr10.dll
2017-08-20 11:36 - 2017-07-01 15:47 - 000616448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrepl40.dll
2017-08-20 11:36 - 2017-07-01 15:47 - 000475648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxbde40.dll
2017-08-20 11:36 - 2017-07-01 15:47 - 000375808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mspbde40.dll
2017-08-20 11:36 - 2017-07-01 15:47 - 000343552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd3x40.dll
2017-08-20 11:36 - 2017-07-01 15:47 - 000339968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msexcl40.dll
2017-08-20 11:36 - 2017-07-01 15:47 - 000310272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd2x40.dll
2017-08-20 11:36 - 2017-07-01 15:47 - 000272896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstext40.dll
2017-08-20 11:36 - 2017-07-01 15:47 - 000240640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msltus40.dll
2017-08-20 11:36 - 2017-07-01 15:47 - 000144896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjint40.dll
2017-08-20 11:36 - 2017-07-01 15:47 - 000083968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjter40.dll
2017-08-20 11:36 - 2017-06-15 16:17 - 002551808 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2017-08-20 11:36 - 2017-06-15 16:16 - 001920000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2017-08-20 11:36 - 2017-06-08 19:01 - 001737600 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2017-08-20 11:36 - 2017-06-08 19:01 - 001502000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2017-08-20 11:34 - 2017-08-20 11:34 - 000002289 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2017-08-20 11:34 - 2017-08-20 11:34 - 000002277 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2017-08-20 11:25 - 2017-08-20 12:58 - 000000249 _____ C:\Users\sarra_000\Desktop\NICOLAS.txt
2017-08-20 11:14 - 2017-08-20 11:14 - 000468480 _____ () C:\Users\sarra_000\Downloads\CKScanner.exe
2017-08-20 11:07 - 2017-08-20 11:07 - 000959456 _____ (Realtek ) C:\WINDOWS\system32\Drivers\Rt630x64.sys
2017-08-20 11:07 - 2017-08-20 11:07 - 000122848 _____ (Realtek Semiconductor Corporation) C:\WINDOWS\system32\RtNicProp64.dll
2017-08-20 11:05 - 2017-08-20 11:05 - 072520712 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoRes64.dat
2017-08-20 11:05 - 2017-08-20 11:05 - 012334923 _____ C:\WINDOWS\system32\Drivers\RTAIODAT.DAT
2017-08-20 11:05 - 2017-08-20 11:05 - 007172912 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEP64A.dll
2017-08-20 11:05 - 2017-08-20 11:05 - 007096184 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPP64A.dll
2017-08-20 11:05 - 2017-08-20 11:05 - 005826560 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\Drivers\RTKVHD64.sys
2017-08-20 11:05 - 2017-08-20 11:05 - 004059960 _____ (Fortemedia Corporation) C:\WINDOWS\system32\FMAPO64.dll
2017-08-20 11:05 - 2017-08-20 11:05 - 003677160 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTSnMg64.cpl
2017-08-20 11:05 - 2017-08-20 11:05 - 003509256 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RltkAPO64.dll
2017-08-20 11:05 - 2017-08-20 11:05 - 003507688 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkApi64.dll
2017-08-20 11:05 - 2017-08-20 11:05 - 003205120 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtPgEx64.dll
2017-08-20 11:05 - 2017-08-20 11:05 - 002210304 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoInstII64.dll
2017-08-20 11:05 - 2017-08-20 11:05 - 002050176 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioEQ64.dll
2017-08-20 11:05 - 2017-08-20 11:05 - 001965808 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPD64A.dll
2017-08-20 11:05 - 2017-08-20 11:05 - 001780616 _____ (DTS) C:\WINDOWS\system32\DTSS2SpeakerDLL64.dll
2017-08-20 11:05 - 2017-08-20 11:05 - 001591056 _____ (DTS) C:\WINDOWS\system32\DTSS2HeadphoneDLL64.dll
2017-08-20 11:05 - 2017-08-20 11:05 - 001508928 _____ (DTS) C:\WINDOWS\system32\DTSBoostDLL64.dll
2017-08-20 11:05 - 2017-08-20 11:05 - 001382232 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\tosade.dll
2017-08-20 11:05 - 2017-08-20 11:05 - 001347136 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTCOM64.dll
2017-08-20 11:05 - 2017-08-20 11:05 - 001166152 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO4064.dll
2017-08-20 11:05 - 2017-08-20 11:05 - 000965024 _____ (Sony Corporation) C:\WINDOWS\system32\SFSS_APO.dll
2017-08-20 11:05 - 2017-08-20 11:05 - 000873456 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\tadefxapo264.dll
2017-08-20 11:05 - 2017-08-20 11:05 - 000743960 _____ (DTS) C:\WINDOWS\system32\DTSBassEnhancementDLL64.dll
2017-08-20 11:05 - 2017-08-20 11:05 - 000727432 _____ (DTS) C:\WINDOWS\system32\DTSSymmetryDLL64.dll
2017-08-20 11:05 - 2017-08-20 11:05 - 000708312 _____ (DTS) C:\WINDOWS\system32\DTSVoiceClarityDLL64.dll
2017-08-20 11:05 - 2017-08-20 11:05 - 000691680 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtDataProc64.dll
2017-08-20 11:05 - 2017-08-20 11:05 - 000678176 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO30.dll
2017-08-20 11:05 - 2017-08-20 11:05 - 000677664 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxVolumeSDAPO.dll
2017-08-20 11:05 - 2017-08-20 11:05 - 000618184 _____ (Knowles Acoustics ) C:\WINDOWS\system32\KAAPORT64.dll
2017-08-20 11:05 - 2017-08-20 11:05 - 000574752 _____ (Andrea Electronics Corporation) C:\WINDOWS\system32\AERTAC64.dll
2017-08-20 11:05 - 2017-08-20 11:05 - 000532376 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSTSX64.dll
2017-08-20 11:05 - 2017-08-20 11:05 - 000514520 _____ (DTS) C:\WINDOWS\system32\DTSU2PLFX64.dll
2017-08-20 11:05 - 2017-08-20 11:05 - 000504304 _____ (DTS) C:\WINDOWS\system32\DTSNeoPCDLL64.dll
2017-08-20 11:05 - 2017-08-20 11:05 - 000500552 _____ (DTS) C:\WINDOWS\system32\DTSU2PGFX64.dll
2017-08-20 11:05 - 2017-08-20 11:05 - 000447712 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EED64A.dll
2017-08-20 11:05 - 2017-08-20 11:05 - 000445392 _____ (DTS) C:\WINDOWS\system32\DTSLimiterDLL64.dll
2017-08-20 11:05 - 2017-08-20 11:05 - 000441264 _____ (DTS) C:\WINDOWS\system32\DTSGainCompensatorDLL64.dll
2017-08-20 11:05 - 2017-08-20 11:05 - 000428224 _____ (DTS) C:\WINDOWS\system32\DTSU2PREC64.dll
2017-08-20 11:05 - 2017-08-20 11:05 - 000387312 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEP64A.dll
2017-08-20 11:05 - 2017-08-20 11:05 - 000343704 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtlCPAPI64.dll
2017-08-20 11:05 - 2017-08-20 11:05 - 000330552 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO20.dll
2017-08-20 11:05 - 2017-08-20 11:05 - 000327448 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPO64A.dll
2017-08-20 11:05 - 2017-08-20 11:05 - 000321712 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RP3DHT64.dll
2017-08-20 11:05 - 2017-08-20 11:05 - 000321712 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RP3DAA64.dll
2017-08-20 11:05 - 2017-08-20 11:05 - 000272712 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPA64.dll
2017-08-20 11:05 - 2017-08-20 11:05 - 000253896 _____ (DTS) C:\WINDOWS\system32\DTSGFXAPO64.dll
2017-08-20 11:05 - 2017-08-20 11:05 - 000253864 _____ (DTS) C:\WINDOWS\system32\DTSLFXAPO64.dll
2017-08-20 11:05 - 2017-08-20 11:05 - 000252872 _____ (DTS) C:\WINDOWS\system32\DTSGFXAPONS64.dll
2017-08-20 11:05 - 2017-08-20 11:05 - 000231912 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SFNHK64.dll
2017-08-20 11:05 - 2017-08-20 11:05 - 000221960 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSTSH64.dll
2017-08-20 11:05 - 2017-08-20 11:05 - 000214832 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEED64A.dll
2017-08-20 11:05 - 2017-08-20 11:05 - 000209528 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSHP64.dll
2017-08-20 11:05 - 2017-08-20 11:05 - 000192976 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCfg64.dll
2017-08-20 11:05 - 2017-08-20 11:05 - 000166200 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSWOW64.dll
2017-08-20 11:05 - 2017-08-20 11:05 - 000158696 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\tadefxapo.dll
2017-08-20 11:05 - 2017-08-20 11:05 - 000151784 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEL64A.dll
2017-08-20 11:05 - 2017-08-20 11:05 - 000134200 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEA64A.dll
2017-08-20 11:05 - 2017-08-20 11:05 - 000122320 _____ (Real Sound Lab SIA) C:\WINDOWS\system32\CONEQMSAPOGUILibrary.dll
2017-08-20 11:05 - 2017-08-20 11:05 - 000118592 _____ (Andrea Electronics Corporation) C:\WINDOWS\system32\AERTAR64.dll
2017-08-20 11:05 - 2017-08-20 11:05 - 000110976 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEL64A.dll
2017-08-20 11:05 - 2017-08-20 11:05 - 000090912 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SFCOM64.dll
2017-08-20 11:05 - 2017-08-20 11:05 - 000088344 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEG64A.dll
2017-08-20 11:05 - 2017-08-20 11:05 - 000088312 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SFAPO64.dll
2017-08-20 11:05 - 2017-08-20 11:05 - 000084608 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEG64A.dll
2017-08-20 11:05 - 2017-08-20 11:05 - 000083624 _____ (Virage Logic Corporation / Sonic Focus) C:\WINDOWS\SysWOW64\SFCOM.dll
2017-08-20 11:05 - 2017-08-20 11:05 - 000075536 _____ (TOSHIBA CORPORATION.) C:\WINDOWS\system32\tepeqapo64.dll
2017-08-20 11:05 - 2017-08-20 11:05 - 000023688 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCoLDR64.dll
2017-08-20 02:23 - 2017-08-20 02:23 - 000000015 _____ C:\Users\sarra_000\Desktop\dom.txt
2017-08-20 02:06 - 2017-08-20 02:06 - 000001662 _____ C:\Users\sarra_000\Desktop\AdwCleaner[S2].txt problème.txt
2017-08-18 21:44 - 2017-08-20 02:11 - 000000000 ____D C:\Users\sarra_000\Desktop\ANNE AOUT 2017
2017-08-16 01:16 - 2017-08-16 01:16 - 000000000 ____D C:\ProgramData\Lavasoft
2017-08-16 01:16 - 2017-08-16 01:16 - 000000000 ____D C:\ProgramData\adaware
2017-08-16 00:38 - 2017-08-20 10:40 - 000000000 ____D C:\ProgramData\RogueKiller
2017-08-16 00:38 - 2017-08-20 10:40 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RogueKiller
2017-08-16 00:38 - 2017-08-20 10:40 - 000000000 ____D C:\Program Files\RogueKiller
2017-08-16 00:05 - 2017-08-16 00:05 - 000000000 ____D C:\Users\sarra_000\Downloads\Quarantine
2017-08-15 21:56 - 2017-08-15 21:56 - 000000000 ____D C:\ProgramData\{BE2ACE5C-32B7-4777-9BDF-ECF87CDAB705}
2017-08-15 21:41 - 2017-08-15 21:41 - 000000000 ____D C:\WINDOWS\Tasks\ImCleanDisabled
2017-08-15 21:41 - 2017-08-15 21:41 - 000000000 ____D C:\ProgramData\{74E9F814-C737-42CC-B721-DBBC4059367A}
2017-08-14 09:46 - 2017-08-14 09:51 - 000000000 ____D C:\Users\sarra_000\AppData\Local\Mozilla
2017-08-12 13:36 - 2017-08-12 13:36 - 000000072 _____ C:\Users\sarra_000\Desktop\Q.txt
2017-08-12 10:40 - 2017-08-20 13:17 - 000000000 ____D C:\Users\sarra_000\Desktop\Anciennes données de Firefox
2017-08-08 19:32 - 2017-08-08 19:46 - 000001156 _____ C:\Users\sarra_000\Desktop\claude.txt
2017-08-08 09:35 - 2017-08-08 09:35 - 000003256 _____ C:\WINDOWS\System32\Tasks\Driver Booster Scheduler
2017-08-08 09:32 - 2017-08-08 09:33 - 016932296 _____ C:\Users\sarra_000\Downloads\Glary_Utilities_v5.81.0.102.exe
2017-08-04 12:57 - 2017-08-04 12:57 - 000776905 _____ C:\Users\sarra_000\Downloads\video-1501841565.mp4
2017-08-02 23:11 - 2017-08-02 23:11 - 000000000 ____D C:\Users\sarra_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Applications Chrome
2017-08-01 20:46 - 2017-08-01 20:46 - 000600728 _____ (Qualcomm Atheros) C:\WINDOWS\system32\Drivers\btfilter.sys
2017-08-01 20:42 - 2017-08-01 20:42 - 015770512 _____ (IObit ) C:\Users\sarra_000\Downloads\Driver_Booster_v4.5.0.527.exe
2017-08-01 20:30 - 2017-08-01 20:30 - 008185288 _____ (Malwarebytes) C:\Users\sarra_000\Downloads\adwcleaner_7.0.1.0(1).exe
2017-07-29 18:49 - 2017-08-20 13:52 - 000000000 ____D C:\Users\sarra_000\Documents\Téléchargements
2017-07-28 21:53 - 2017-07-28 21:53 - 000001266 _____ C:\Users\sarra_000\Desktop\ZHPCleaner(1) - Raccourci.lnk
2017-07-28 21:53 - 2017-07-28 21:53 - 000001248 _____ C:\Users\sarra_000\Desktop\ZHPDiag3(1) - Raccourci.lnk
2017-07-28 11:51 - 2017-07-28 11:51 - 002835328 _____ C:\Users\sarra_000\Downloads\ZHPCleaner(1).exe
2017-07-28 11:49 - 2017-07-28 11:50 - 002793344 _____ C:\Users\sarra_000\Downloads\ZHPDiag3(1).exe
2017-07-27 19:48 - 2017-07-27 19:48 - 000000000 ____D C:\Program Files (x86)\MSECache
2017-07-26 00:41 - 2017-07-26 08:34 - 000000000 ____D C:\WINDOWS\Minidump
2017-07-25 14:24 - 2017-08-18 21:25 - 000228864 ___SH C:\Users\sarra_000\Downloads\Thumbs.db
2017-07-25 09:11 - 2017-07-25 09:11 - 009747512 _____ (Piriform Ltd) C:\Users\sarra_000\Downloads\CCleaner_v5.32.6129 (1).exe
2017-07-24 13:36 - 2017-08-02 09:59 - 000000008 _____ C:\Users\sarra_000\Desktop\MEMO.txt
2017-07-24 10:03 - 2017-07-25 12:38 - 000000000 ____D C:\Users\sarra_000\Desktop\lunes et autres
2017-07-21 11:01 - 2015-01-06 05:01 - 000072192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndproxy.sys
2017-07-21 11:01 - 2015-01-06 04:59 - 000080896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wanarp.sys
2017-07-21 11:01 - 2015-01-06 03:12 - 000185856 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascfg.dll
2017-07-21 11:01 - 2015-01-06 03:02 - 000164864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rascfg.dll
2017-07-21 11:00 - 2017-06-24 18:46 - 000424448 _____ (Microsoft Corporation) C:\WINDOWS\system32\mprapi.dll
2017-07-21 11:00 - 2017-06-24 18:16 - 000352768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mprapi.dll
2017-07-21 11:00 - 2017-06-13 19:51 - 000324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certcli.dll
2017-07-21 11:00 - 2017-06-13 19:23 - 000499200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnsapi.dll
2017-07-21 11:00 - 2017-06-13 19:19 - 000383488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlansec.dll
2017-07-21 11:00 - 2017-06-13 19:16 - 000024064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wfdprov.dll
2017-07-21 11:00 - 2017-06-13 19:11 - 000238080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlanapi.dll
2017-07-21 11:00 - 2017-06-13 19:07 - 000304128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlanmsm.dll
2017-07-21 11:00 - 2017-06-13 16:17 - 000656384 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll
2017-07-21 11:00 - 2017-06-13 16:16 - 000252416 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsrslvr.dll
2017-07-21 11:00 - 2017-06-13 11:47 - 000445440 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\nwifi.sys
2017-07-21 11:00 - 2017-06-13 11:09 - 000445440 _____ (Microsoft Corporation) C:\WINDOWS\system32\certcli.dll
2017-07-21 11:00 - 2017-06-13 10:22 - 001436160 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2017-07-21 11:00 - 2017-06-13 10:16 - 000445952 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansec.dll
2017-07-21 11:00 - 2017-06-13 10:10 - 000028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\wfdprov.dll
2017-07-21 11:00 - 2017-06-13 10:07 - 000301568 _____ (Microsoft Corporation) C:\WINDOWS\system32\ProximityService.dll
2017-07-21 11:00 - 2017-06-13 10:03 - 000302080 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanapi.dll
2017-07-21 11:00 - 2017-06-13 09:54 - 000374272 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanmsm.dll
2017-07-21 11:00 - 2017-06-13 09:50 - 001547264 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll
2017-07-21 11:00 - 2017-06-12 02:14 - 000276320 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msiscsi.sys
2017-07-21 11:00 - 2017-06-11 22:13 - 000301056 _____ (Microsoft Corporation) C:\WINDOWS\system32\umrdp.dll
2017-07-21 11:00 - 2017-06-11 22:11 - 000346112 _____ (Microsoft Corporation) C:\WINDOWS\system32\SessEnv.dll
2017-07-21 11:00 - 2017-06-11 22:02 - 002778112 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2017-07-21 11:00 - 2017-06-11 22:02 - 000299520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SessEnv.dll
2017-07-21 11:00 - 2017-06-11 21:52 - 002463744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2017-07-21 11:00 - 2017-06-09 15:47 - 000448629 _____ C:\WINDOWS\system32\ApnDatabase.xml
2017-07-21 11:00 - 2017-06-08 03:48 - 002457936 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2017-07-21 11:00 - 2017-06-07 06:25 - 000428888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS
2017-07-21 11:00 - 2017-06-06 20:38 - 000607232 _____ (Microsoft Corporation) C:\WINDOWS\system32\rastls.dll
2017-07-21 11:00 - 2017-06-06 19:44 - 000530432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rastls.dll
2017-07-21 11:00 - 2017-05-27 18:42 - 001115136 _____ (Microsoft Corporation) C:\WINDOWS\system32\termsrv.dll
2017-07-21 11:00 - 2017-05-27 18:38 - 000056832 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdsdwmdr.dll
2017-07-21 11:00 - 2015-10-22 19:43 - 000007168 _____ (Microsoft Corporation) C:\WINDOWS\system32\kbdgeoqw.dll
2017-07-21 11:00 - 2015-10-22 19:43 - 000007168 _____ (Microsoft Corporation) C:\WINDOWS\system32\KBDAZST.DLL
2017-07-21 11:00 - 2015-10-22 19:43 - 000007168 _____ (Microsoft Corporation) C:\WINDOWS\system32\KBDAZEL.DLL
2017-07-21 11:00 - 2015-10-22 19:43 - 000007168 _____ (Microsoft Corporation) C:\WINDOWS\system32\KBDAZE.DLL
2017-07-21 11:00 - 2015-10-22 18:59 - 000007168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kbdgeoqw.dll
2017-07-21 11:00 - 2015-10-22 18:59 - 000007168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KBDAZST.DLL
2017-07-21 11:00 - 2015-10-22 18:59 - 000007168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KBDAZEL.DLL
2017-07-21 11:00 - 2015-10-22 18:59 - 000007168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KBDAZE.DLL
2017-07-21 10:58 - 2015-06-10 00:39 - 000081920 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BTHUSB.SYS
2017-07-21 10:58 - 2015-06-10 00:39 - 000053248 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthenum.sys
2017-07-21 10:58 - 2015-06-10 00:38 - 001201664 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys
2017-07-21 10:41 - 2017-07-22 19:01 - 000000000 ____D C:\Users\sarra_000\AppData\Local\ElevatedDiagnostics
==================== Un mois - Modifiés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2017-08-20 13:58 - 2017-06-28 16:33 - 005309952 ___SH C:\Users\sarra_000\Desktop\Thumbs.db
2017-08-20 13:54 - 2017-06-30 14:46 - 000003940 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{EF496013-8B3B-48A0-B493-B3FDCDF9F8C7}
2017-08-20 13:50 - 2017-07-20 18:33 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Secure Connection
2017-08-20 13:50 - 2017-06-27 11:32 - 000003598 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2679751232-4024043428-2427409758-1002
2017-08-20 13:47 - 2017-06-27 11:28 - 000000000 ____D C:\Program Files (x86)\Glary Utilities 5
2017-08-20 13:47 - 2017-06-25 23:06 - 000000074 _____ C:\Users\sarra_000\AppData\Roaming\sp_data.sys
2017-08-20 13:46 - 2017-06-30 12:36 - 000000000 ____D C:\Users\sarra_000\OneDrive
2017-08-20 13:46 - 2017-06-27 11:31 - 000000000 ____D C:\ProgramData\Kaspersky Lab
2017-08-20 13:44 - 2017-06-25 22:03 - 000253856 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2017-08-20 13:44 - 2014-01-16 05:03 - 000000000 ____D C:\ProgramData\NVIDIA
2017-08-20 13:44 - 2013-08-22 16:45 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2017-08-20 13:44 - 2013-08-22 16:44 - 000337928 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2017-08-20 13:41 - 2013-08-22 15:25 - 000262144 ___SH C:\WINDOWS\system32\config\BBI
2017-08-20 13:39 - 2017-06-27 14:21 - 000000000 ____D C:\Users\sarra_000\AppData\Local\ClassicShell
2017-08-20 13:23 - 2017-06-28 16:12 - 000000000 ____D C:\Users\sarra_000\AppData\LocalLow\Mozilla
2017-08-20 12:56 - 2017-06-27 14:21 - 000000000 ____D C:\AdwCleaner
2017-08-20 12:55 - 2017-06-28 16:44 - 000000000 ____D C:\Users\sarra_000\AppData\Roaming\ZHP
2017-08-20 12:54 - 2013-08-22 17:36 - 000000000 ___HD C:\Program Files\WindowsApps
2017-08-20 12:54 - 2013-08-22 17:36 - 000000000 ____D C:\WINDOWS\AppReadiness
2017-08-20 12:53 - 2012-07-26 09:59 - 000000000 ____D C:\WINDOWS\CbsTemp
2017-08-20 12:52 - 2017-06-27 15:24 - 000000000 ____D C:\WINDOWS\system32\MRT
2017-08-20 12:50 - 2017-06-27 15:23 - 140394280 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2017-08-20 12:00 - 2017-07-20 17:19 - 000003474 _____ C:\WINDOWS\System32\Tasks\ASUS Live Update1
2017-08-20 12:00 - 2017-06-28 14:52 - 000003464 _____ C:\WINDOWS\System32\Tasks\ASUS Live Update2
2017-08-20 11:33 - 2017-06-25 23:23 - 000000000 ____D C:\Program Files (x86)\Google
2017-08-20 11:28 - 2017-06-28 15:57 - 000000000 ____D C:\Program Files\Opera
2017-08-20 11:08 - 2017-06-27 15:01 - 000002312 _____ C:\Users\Public\Desktop\Driver Booster 4.lnk
2017-08-20 11:08 - 2013-08-22 15:36 - 000000000 ____D C:\WINDOWS\Inf
2017-08-20 11:07 - 2017-06-30 12:07 - 000109544 _____ C:\WINDOWS\system32\Drivers\RTWAVES30.dat
2017-08-20 11:07 - 2017-06-28 20:42 - 000001148 _____ C:\Waves MAXXAudio.lnk
2017-08-20 11:06 - 2017-06-30 12:07 - 000000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2017-08-20 10:49 - 2017-06-30 12:14 - 000000000 ____D C:\Users\UpdatusUser
2017-08-20 10:49 - 2017-06-30 12:14 - 000000000 ____D C:\Users\sarra_000
2017-08-20 10:41 - 2017-06-28 16:40 - 000000000 ____D C:\Users\sarra_000\AppData\Roaming\PhotoFiltre
2017-08-20 10:41 - 2017-06-27 15:01 - 000000000 ____D C:\Users\sarra_000\AppData\LocalLow\IObit
2017-08-20 10:41 - 2014-01-16 05:17 - 000000000 ____D C:\ProgramData\P4G
2017-08-20 10:41 - 2013-08-22 17:36 - 000000000 __RSD C:\WINDOWS\Media
2017-08-20 10:41 - 2013-08-22 17:36 - 000000000 ___RD C:\WINDOWS\ToastData
2017-08-20 10:41 - 2013-08-22 17:36 - 000000000 ____D C:\WINDOWS\WinStore
2017-08-20 10:41 - 2013-08-22 17:36 - 000000000 ____D C:\WINDOWS\rescache
2017-08-20 10:41 - 2013-08-22 17:36 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2017-08-20 10:41 - 2012-07-26 10:12 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2017-08-20 10:40 - 2017-07-20 18:33 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Anti-Virus
2017-08-20 10:40 - 2017-06-27 15:02 - 000000000 ____D C:\ProgramData\ProductData
2017-08-20 10:40 - 2017-06-27 15:01 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Booster 4
2017-08-20 10:40 - 2017-06-27 15:00 - 000000000 ____D C:\ProgramData\IObit
2017-08-20 10:40 - 2017-06-25 23:06 - 000000000 ____D C:\Users\sarra_000\AppData\Local\VirtualStore
2017-08-20 10:40 - 2017-06-25 22:03 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2017-08-20 10:31 - 2013-08-22 17:36 - 000000000 ____D C:\WINDOWS\registration
2017-08-20 10:30 - 2013-08-22 15:36 - 000000000 ____D C:\WINDOWS\system32\Sysprep
2017-08-20 10:26 - 2017-06-28 16:12 - 000000000 ____D C:\Users\sarra_000\AppData\Roaming\Mozilla
2017-08-20 10:26 - 2017-06-28 16:00 - 000000000 ____D C:\Users\sarra_000\AppData\Roaming\Opera Software
2017-08-20 10:26 - 2017-06-27 15:00 - 000000000 ____D C:\Users\sarra_000\AppData\Roaming\IObit
2017-08-20 10:25 - 2017-06-25 23:25 - 000000000 ____D C:\Users\sarra_000\AppData\Local\Google
2017-08-20 10:25 - 2017-06-25 22:03 - 000000000 ____D C:\ProgramData\Malwarebytes
2017-08-20 10:24 - 2017-07-20 18:32 - 000000000 ____D C:\Program Files (x86)\Kaspersky Lab
2017-08-20 10:24 - 2017-06-27 11:32 - 000000000 ____D C:\Program Files\Common Files\AV
2017-08-20 10:24 - 2017-06-25 22:03 - 000000000 ____D C:\Program Files\Malwarebytes
2017-08-20 10:23 - 2017-06-27 15:01 - 000000000 ____D C:\Program Files (x86)\IObit
2017-08-17 23:23 - 2013-08-22 17:36 - 000000000 ____D C:\WINDOWS\system32\NDF
2017-08-17 14:02 - 2017-06-28 19:29 - 000000000 ____D C:\Users\sarra_000\AppData\Local\CrashDumps
2017-08-16 01:05 - 2013-08-22 17:36 - 000000000 ___HD C:\WINDOWS\system32\GroupPolicy
2017-08-15 22:46 - 2017-06-27 11:30 - 000000000 ____D C:\ProgramData\Kaspersky Lab Setup Files
2017-08-15 22:46 - 2013-08-22 15:25 - 000262144 ___SH C:\WINDOWS\system32\config\ELAM
2017-08-15 21:44 - 2017-06-30 13:03 - 000000000 ___DC C:\WINDOWS\Panther
2017-08-12 19:24 - 2017-06-28 16:00 - 000000000 ____D C:\Users\sarra_000\AppData\Local\Opera Software
2017-08-08 09:33 - 2017-06-27 11:29 - 000020160 _____ (Glarysoft Ltd) C:\WINDOWS\system32\Drivers\GUBootStartup.sys
2017-08-08 09:33 - 2017-06-27 11:29 - 000003314 _____ C:\WINDOWS\System32\Tasks\GlaryInitialize 5
2017-08-08 09:33 - 2017-06-27 11:29 - 000002974 _____ C:\WINDOWS\System32\Tasks\GU5SkipUAC
2017-08-08 09:33 - 2017-06-27 11:29 - 000001108 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Glary Utilities 5.lnk
2017-08-08 09:33 - 2017-06-27 11:29 - 000001096 _____ C:\Users\Public\Desktop\Glary Utilities 5.lnk
2017-08-07 10:17 - 2014-11-21 00:46 - 001817064 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2017-08-07 10:17 - 2014-11-21 00:03 - 000806842 _____ C:\WINDOWS\system32\perfh00C.dat
2017-08-07 10:17 - 2014-11-21 00:03 - 000156662 _____ C:\WINDOWS\system32\perfc00C.dat
2017-08-01 20:49 - 2017-07-15 10:46 - 000003852 _____ C:\WINDOWS\System32\Tasks\Opera scheduled Autoupdate 1500108402
2017-07-29 02:03 - 2014-11-21 08:02 - 000835576 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2017-07-29 02:03 - 2014-11-21 08:02 - 000177648 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2017-07-27 20:14 - 2013-04-26 01:13 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2017-07-25 09:12 - 2017-06-30 13:08 - 000000834 _____ C:\Users\Public\Desktop\CCleaner.lnk
2017-07-24 16:44 - 2017-06-29 21:12 - 000000000 ____D C:\Users\sarra_000\Desktop\bis et plein de jolies choses 2017
2017-07-24 10:04 - 2017-07-07 13:38 - 000000000 ____D C:\Users\sarra_000\Desktop\Nouveau dossier
==================== Fichiers à la racine de certains dossiers =======
2017-06-25 23:06 - 2017-08-20 13:47 - 000000074 _____ () C:\Users\sarra_000\AppData\Roaming\sp_data.sys
2017-06-30 12:07 - 2017-06-30 12:07 - 000000000 ____H () C:\ProgramData\DP45977C.lfl
2013-04-26 01:15 - 2012-09-07 13:40 - 000000256 _____ () C:\ProgramData\SetStretch.cmd
2013-04-26 01:15 - 2009-07-22 12:04 - 000024576 _____ () C:\ProgramData\SetStretch.exe
2013-04-26 01:15 - 2012-09-07 13:37 - 000000103 _____ () C:\ProgramData\SetStretch.VBS
==================== Bamital & volsnap ======================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
C:\WINDOWS\system32\winlogon.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\wininit.exe => Le fichier est signé numériquement
C:\WINDOWS\explorer.exe => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\explorer.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\svchost.exe => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\svchost.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\services.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\User32.dll => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\User32.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\userinit.exe => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\userinit.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\rpcss.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\dnsapi.dll => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\dnsapi.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\Drivers\volsnap.sys => Le fichier est signé numériquement
LastRegBack: 2017-08-20 12:49
==================== Fin de FRST.txt ============================
Exécuté par sarra_000 (administrateur) sur OSCAR (20-08-2017 14:08:12)
Exécuté depuis C:\Users\sarra_000\Downloads
Profils chargés: UpdatusUser & sarra_000 (Profils disponibles: UpdatusUser & sarra_000)
Platform: Windows 8.1 (Update) (X64) Langue: Français (France)
Internet Explorer Version 11 (Navigateur par défaut: FF)
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
(ASUS) C:\Program Files\ASUS\P4G\InsOnSrv.exe
() C:\Program Files (x86)\ASUS\WebStorage Sync Agent\1.1.18.159\AsusWSWinService.exe
(Windows (R) Win 7 DDK provider) C:\Program Files (x86)\Bluetooth Suite\AdminService.exe
(AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 17.0.0\avp.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(Atheros) C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
(ASUS) C:\Program Files\ASUS\P4G\InsOnWMI.exe
(ASUS) C:\Program Files\ASUS\P4G\BatteryLife.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\Splendid\ColorUService.exe
(ASUS) C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe
(ASUSTek Computer Inc.) C:\Program Files\ASUS\ASUS Console\ASUS Console Starter.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
(AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 17.0.0\avpui.exe
(IvoSoft) C:\Program Files\Classic Shell\ClassicStartMenu.exe
(Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Qualcomm Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe
() C:\Program Files (x86)\Bluetooth Suite\ActivateDesktop.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(CyberLink Corp.) C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLoader.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\QuickGesture\x64\QuickGesture64.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\QuickGesture\x86\QuickGesture.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Glarysoft Ltd) C:\Program Files (x86)\Glary Utilities 5\Integrator.exe
(Glarysoft Ltd) C:\Program Files (x86)\Glary Utilities 5\MemfilesService.exe
(Glarysoft Ltd) C:\Program Files (x86)\Glary Utilities 5\x64\Win64ShellLink.exe
(Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Microsoft Corporation) C:\Windows\System32\consent.exe
==================== Registre (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\system32\rundll32.exe C:\Windows\System32\LogiLDA.dll,LogiFetch
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s**RtHDVCpl****C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe -s**kernel32.dll*
HKLM\...\Run: [RtHDVBg] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1489920 2017-08-20] (Realtek Semiconductor)
HKLM\...\Run: [Malwarebytes TrayApp] => C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\mbamtray.exe [3146704 2017-05-09] (Malwarebytes)
HKLM\...\Run: [Classic Start Menu] => C:\Program Files\Classic Shell\ClassicStartMenu.exe [163800 2016-07-30] (IvoSoft)
HKLM-x32\...\Run: [ASUSWebStorage] => C:\Program Files (x86)\ASUS\WebStorage Sync Agent\1.1.18.159\AsusWSPanel.exe [3576784 2012-12-19] (ASUS Cloud Corporation)
HKLM-x32\...\Run: [ASUS InstantKey] => C:\Program Files (x86)\ASUS\ASUS Instant Key\Ikey_start.exe [13936 2013-08-27] (ASUS)
HKLM-x32\...\Run: [RemoteControl10] => C:\Program Files (x86)\Cyberlink\PowerDVD10\PDVD10Serv.exe [95192 2013-03-08] (CyberLink Corp.)
HKLM-x32\...\Run: [UpdatePSTShortCut] => C:\Program Files (x86)\Cyberlink\DVD Suite\MUITransfer\MUIStartMenu.exe [222504 2013-05-17] (CyberLink Corp.)
Winlogon\Notify\igfxcui: C:\WINDOWS\system32\igfxdev.dll (Intel Corporation)
HKLM\...\Policies\Explorer\Run: [BtvStack] => C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [132736 2013-04-24] (Qualcomm Atheros Commnucations)
HKU\S-1-5-21-2679751232-4024043428-2427409758-1001\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [516608 2014-11-21] (Microsoft Corporation)
HKU\S-1-5-21-2679751232-4024043428-2427409758-1002\...\Run: [GUDelayStartup] => C:\Program Files (x86)\Glary Utilities 5\StartupManager.exe [44024 2017-08-07] (Glarysoft Ltd)
HKU\S-1-5-21-2679751232-4024043428-2427409758-1002\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [9818328 2017-06-30] (Piriform Ltd)
AppInit_DLLs: C:\Windows\system32\nvinitx.dll => C:\Windows\system32\nvinitx.dll [181280 2017-01-25] (NVIDIA Corporation)
AppInit_DLLs: ,C:\WINDOWS\system32\nvinitx.dll => C:\WINDOWS\system32\nvinitx.dll [181280 2017-01-25] (NVIDIA Corporation)
AppInit_DLLs-x32: C:\WINDOWS\SysWOW64\nvinit.dll => C:\WINDOWS\SysWOW64\nvinit.dll [158392 2017-01-25] (NVIDIA Corporation)
BootExecute: autocheck autochk /p \??\C:autocheck autochk *
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{0E8687F1-1E09-4D2C-B85A-58092A086046}: [DhcpNameServer] 192.168.1.1
Internet Explorer:
==================
HKU\S-1-5-21-2679751232-4024043428-2427409758-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://asus13.msn.com
HKU\S-1-5-21-2679751232-4024043428-2427409758-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://asus13.msn.com
HKU\S-1-5-21-2679751232-4024043428-2427409758-1002\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://asus13.msn.com/
HKU\S-1-5-21-2679751232-4024043428-2427409758-1002\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://asus13.msn.com
SearchScopes: HKU\S-1-5-21-2679751232-4024043428-2427409758-1002 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-2679751232-4024043428-2427409758-1002 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: Kaspersky Protection -> {2E38825B-8815-42CF-9126-C58BC28D4591} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 17.0.0\x64\IEExt\ie_plugin.dll [2017-03-29] (AO Kaspersky Lab)
BHO: CIESpeechBHO Class -> {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} -> C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll [2013-04-24] (Qualcomm Atheros Commnucations)
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2017-06-25] (Google Inc.)
BHO-x32: Kaspersky Protection -> {2E38825B-8815-42CF-9126-C58BC28D4591} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 17.0.0\IEExt\ie_plugin.dll [2017-03-29] (AO Kaspersky Lab)
BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2017-06-25] (Google Inc.)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2017-06-25] (Google Inc.)
Toolbar: HKLM - Kaspersky Protection Toolbar - {093F479D-712E-46CD-9E06-62E734A05F68} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 17.0.0\x64\IEExt\ie_plugin.dll [2017-03-29] (AO Kaspersky Lab)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2017-06-25] (Google Inc.)
Toolbar: HKLM-x32 - Kaspersky Protection Toolbar - {093F479D-712E-46CD-9E06-62E734A05F68} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 17.0.0\IEExt\ie_plugin.dll [2017-03-29] (AO Kaspersky Lab)
Toolbar: HKU\S-1-5-21-2679751232-4024043428-2427409758-1002 -> Kaspersky Protection Toolbar - {093F479D-712E-46CD-9E06-62E734A05F68} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 17.0.0\x64\IEExt\ie_plugin.dll [2017-03-29] (AO Kaspersky Lab)
FireFox:
========
FF DefaultProfile: xh5m551e.default-1503227852745
FF ProfilePath: C:\Users\sarra_000\AppData\Roaming\Mozilla\Firefox\Profiles\xh5m551e.default-1503227852745 [2017-08-20]
FF Homepage: Mozilla\Firefox\Profiles\xh5m551e.default-1503227852745 -> hxxps://www.qwant.com/?client=qwant-firefox
FF Extension: (AdBlock) - C:\Users\sarra_000\AppData\Roaming\Mozilla\Firefox\Profiles\xh5m551e.default-1503227852745\Extensions\jid1-NIfFY2CA8fy1tg@jetpack.xpi [2017-08-20]
FF Extension: (Qwant for Firefox) - C:\Users\sarra_000\AppData\Roaming\Mozilla\Firefox\Profiles\xh5m551e.default-1503227852745\Extensions\qwantcomforfirefox@jetpack.xpi [2017-08-20]
FF Extension: (WOT) - C:\Users\sarra_000\AppData\Roaming\Mozilla\Firefox\Profiles\xh5m551e.default-1503227852745\Extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7} [2017-08-20]
FF HKLM\...\Firefox\Extensions: [light_plugin_F6F079488B53499DB99380A7E11A93F6@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 17.0.0\FFExt\light_plugin_firefox\addon.xpi
FF Extension: (Kaspersky Protection) - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 17.0.0\FFExt\light_plugin_firefox\addon.xpi [2017-08-15]
FF HKLM-x32\...\Firefox\Extensions: [light_plugin_F6F079488B53499DB99380A7E11A93F6@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 17.0.0\FFExt\light_plugin_firefox\addon.xpi
FF HKLM-x32\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK => non trouvé(e)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=3.5.20 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-03-20] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-03-20] (Intel Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3505.0912 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-09-12] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-06-25] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-06-25] (Google Inc.)
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll [2012-10-12] ()
Chrome:
=======
CHR DefaultProfile: Default
CHR HomePage: Default -> qwant.com
CHR StartupUrls: Default -> "hxxp://tv.sfr.fr/television-sur-ordinateur-par-internet/?ticket=ST-10684865-zXBgndD5xCwuXtqfHeee-authentification13#sfrclicid=EC_mire_Me-Connecter","hxxps://www.qwant.com/"
CHR Profile: C:\Users\sarra_000\AppData\Local\Google\Chrome\User Data\Default [2017-08-20]
CHR Extension: (Google Slides) - C:\Users\sarra_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-08-20]
CHR Extension: (Google Docs) - C:\Users\sarra_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-08-20]
CHR Extension: (Google Drive) - C:\Users\sarra_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-08-14]
CHR Extension: (WOT: Web of Trust, Évaluation de la réputation de sites Web) - C:\Users\sarra_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\bhmmomiinigofkjcapegjjndpbikblnp [2017-08-20]
CHR Extension: (YouTube) - C:\Users\sarra_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-08-14]
CHR Extension: (Google Sheets) - C:\Users\sarra_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-08-20]
CHR Extension: (Kaspersky Protection) - C:\Users\sarra_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\fhoibnponjcgjgcnfacekaijdbbplhib [2017-08-20]
CHR Extension: (Word Online) - C:\Users\sarra_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\fiombgjlkfpdpkbhfioofeeinbehmajg [2017-08-14]
CHR Extension: (Google Docs hors connexion) - C:\Users\sarra_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-08-20]
CHR Extension: (AdBlock) - C:\Users\sarra_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2017-08-20]
CHR Extension: (Qwant.com) - C:\Users\sarra_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\hnlkiofnhhoahaiimdicppgemmmomijo [2017-08-20]
CHR Extension: (Office Online - Copier et coller) - C:\Users\sarra_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\ifbmcpbgkhlpfcodhjhdbllhiaomkdej [2017-08-20]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\sarra_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-08-20]
CHR Extension: (Gmail) - C:\Users\sarra_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-08-14]
CHR Extension: (Chrome Media Router) - C:\Users\sarra_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-08-20]
CHR HKLM\...\Chrome\Extension: [fhoibnponjcgjgcnfacekaijdbbplhib] - hxxps://chrome.google.com/webstore/detail/fhoibnponjcgjgcnfacekaijdbbplhib
CHR HKLM-x32\...\Chrome\Extension: [fhoibnponjcgjgcnfacekaijdbbplhib] - hxxps://chrome.google.com/webstore/detail/fhoibnponjcgjgcnfacekaijdbbplhib
Opera:
=======
StartMenuInternet: (HKLM) OperaStable - C:\Program Files\Opera\Launcher.exe
==================== Services (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 ASUS InstantOn; C:\Program Files\ASUS\P4G\InsOnSrv.exe [277120 2013-08-29] (ASUS)
R2 Asus WebStorage Windows Service; C:\Program Files (x86)\ASUS\WebStorage Sync Agent\1.1.18.159\AsusWSWinService.exe [72192 2012-12-19] () [Fichier non signé]
R2 AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [310400 2013-04-24] (Windows (R) Win 7 DDK provider) [Fichier non signé]
R2 AVP17.0.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 17.0.0\avp.exe [241544 2016-06-28] (AO Kaspersky Lab)
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [731648 2013-02-13] (Intel(R) Corporation) [Fichier non signé]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [820184 2013-02-13] (Intel(R) Corporation)
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [131544 2013-03-20] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-03-20] (Intel Corporation)
S3 klvssbrigde64; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 17.0.0\x64\vssbridge64.exe [77328 2016-06-28] (AO Kaspersky Lab)
S2 KSDE1.0.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Secure Connection 1.0\ksde.exe [241544 2016-06-28] (AO Kaspersky Lab)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [4470736 2017-05-09] (Malwarebytes)
R2 NVDisplay.ContainerLocalSystem; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [458176 2016-12-29] (NVIDIA Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [361824 2017-06-30] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [119872 2017-06-30] (Microsoft Corporation)
R2 ZAtheros Bt and Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [323584 2013-04-24] (Atheros) [Fichier non signé]
===================== Pilotes (Avec liste blanche) ======================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R3 athr; C:\WINDOWS\system32\DRIVERS\athwbx.sys [4307192 2017-07-04] (Qualcomm Atheros Communications, Inc.)
R3 ATP; C:\WINDOWS\System32\drivers\AsusTP.sys [73512 2017-06-29] (ASUS Corporation)
S3 BTATH_LWFLT; C:\WINDOWS\system32\DRIVERS\btath_lwflt.sys [77464 2013-04-24] (Qualcomm Atheros)
R0 cm_km; C:\WINDOWS\System32\DRIVERS\cm_km.sys [238936 2016-06-10] (AO Kaspersky Lab)
R3 ETDSMBus; C:\WINDOWS\System32\drivers\ETDSMBus.sys [32840 2017-06-29] (ELAN Microelectronic Corp.)
R1 GUBootStartup; C:\WINDOWS\System32\drivers\GUBootStartup.sys [20160 2017-08-08] (Glarysoft Ltd)
R1 HWiNFO32; C:\WINDOWS\SysWOW64\drivers\HWiNFO64A.SYS [27552 2017-06-27] (REALiX(tm))
R3 kbfiltr; C:\WINDOWS\System32\drivers\kbfiltr.sys [14992 2012-08-02] ( )
R0 kl1; C:\WINDOWS\System32\DRIVERS\kl1.sys [554416 2016-06-02] (AO Kaspersky Lab)
R0 klbackupdisk; C:\WINDOWS\System32\DRIVERS\klbackupdisk.sys [63920 2016-06-07] (AO Kaspersky Lab)
R1 klbackupflt; C:\WINDOWS\System32\DRIVERS\klbackupflt.sys [86352 2016-06-15] (AO Kaspersky Lab)
R2 kldisk; C:\WINDOWS\system32\DRIVERS\kldisk.sys [78216 2016-05-31] (AO Kaspersky Lab)
S0 klelam; C:\WINDOWS\System32\DRIVERS\klelam.sys [28792 2016-03-31] (AO Kaspersky Lab)
R3 klflt; C:\WINDOWS\system32\DRIVERS\klflt.sys [197312 2017-07-20] (AO Kaspersky Lab)
R1 klhk; C:\WINDOWS\System32\drivers\klhk.sys [520152 2017-07-20] (AO Kaspersky Lab)
R1 KLIF; C:\WINDOWS\System32\DRIVERS\klif.sys [1021624 2017-07-20] (AO Kaspersky Lab)
R1 KLIM6; C:\WINDOWS\system32\DRIVERS\klim6.sys [57424 2017-03-29] (AO Kaspersky Lab)
R3 klkbdflt; C:\WINDOWS\system32\DRIVERS\klkbdflt.sys [52136 2016-05-19] (AO Kaspersky Lab)
R3 klmouflt; C:\WINDOWS\system32\DRIVERS\klmouflt.sys [41656 2015-06-07] (Kaspersky Lab ZAO)
R1 klpd; C:\WINDOWS\System32\DRIVERS\klpd.sys [45488 2016-05-31] (AO Kaspersky Lab)
R3 kltap; C:\WINDOWS\system32\DRIVERS\kltap.sys [52152 2016-06-07] (The OpenVPN Project)
S4 klwfp; C:\WINDOWS\system32\DRIVERS\klwfp.sys [85320 2016-06-18] (AO Kaspersky Lab)
R1 Klwtp; C:\WINDOWS\system32\DRIVERS\klwtp.sys [136416 2017-03-29] (AO Kaspersky Lab)
R1 kneps; C:\WINDOWS\system32\DRIVERS\kneps.sys [199640 2017-07-20] (AO Kaspersky Lab)
R3 MBAMSwissArmy; C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [253856 2017-08-20] (Malwarebytes)
R2 plctrl; C:\Program Files\ASUS\P4G\plctrl.sys [14136 2013-08-29] (Windows (R) Win 7 DDK provider)
R3 RTSPER; C:\WINDOWS\system32\DRIVERS\RtsPer.sys [779232 2017-06-29] (Realsil Semiconductor Corporation)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [46600 2017-06-30] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [274776 2017-06-30] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [117592 2017-06-30] (Microsoft Corporation)
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois - Créés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2017-08-20 14:08 - 2017-08-20 14:08 - 000022331 _____ C:\Users\sarra_000\Downloads\FRST.txt
2017-08-20 14:07 - 2017-08-20 14:08 - 000000000 ____D C:\FRST
2017-08-20 14:02 - 2017-08-20 14:06 - 002395648 _____ (Farbar) C:\Users\sarra_000\Downloads\FRST64.exe
2017-08-20 13:50 - 2017-08-20 13:50 - 000002888 _____ C:\WINDOWS\System32\Tasks\Driver Booster SkipUAC (sarra_000)
2017-08-20 13:21 - 2017-08-20 13:21 - 000001175 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2017-08-20 13:21 - 2017-08-20 13:21 - 000001163 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2017-08-20 13:21 - 2017-08-20 13:21 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2017-08-20 13:20 - 2017-08-20 13:20 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2017-08-20 13:19 - 2017-08-20 13:20 - 034311544 _____ (Mozilla) C:\Users\sarra_000\Downloads\Firefox Setup 55.0.2 (1).exe
2017-08-20 13:10 - 2017-08-20 13:11 - 034311544 _____ (Mozilla) C:\Users\sarra_000\Downloads\Firefox Setup 55.0.2.exe
2017-08-20 13:04 - 2017-08-20 13:04 - 000245912 _____ (Mozilla) C:\Users\sarra_000\Downloads\Firefox Installer.exe
2017-08-20 11:56 - 2017-08-20 11:56 - 000000872 _____ C:\Users\sarra_000\Desktop\WinChk.txt
2017-08-20 11:51 - 2017-08-20 12:56 - 000123986 _____ C:\Users\sarra_000\Desktop\ZHPDiag.txt
2017-08-20 11:42 - 2017-08-20 11:42 - 000315000 _____ C:\Users\sarra_000\Downloads\winchk_2.0.exe
2017-08-20 11:38 - 2017-08-20 11:54 - 000000194 _____ C:\Users\sarra_000\Downloads\ckfiles.txt
2017-08-20 11:37 - 2017-07-14 08:49 - 025733632 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2017-08-20 11:37 - 2017-07-14 04:54 - 020270080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2017-08-20 11:36 - 2017-08-02 05:17 - 000107520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tdx.sys
2017-08-20 11:36 - 2017-07-21 15:40 - 000518144 _____ C:\WINDOWS\SysWOW64\msjetoledb40.dll
2017-08-20 11:36 - 2017-07-21 15:40 - 000290816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjtes40.dll
2017-08-20 11:36 - 2017-07-15 12:10 - 000536688 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2017-08-20 11:36 - 2017-07-15 12:10 - 000140016 _____ (Microsoft Corporation) C:\WINDOWS\system32\wermgr.exe
2017-08-20 11:36 - 2017-07-15 12:06 - 000449840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2017-08-20 11:36 - 2017-07-15 12:06 - 000136832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wermgr.exe
2017-08-20 11:36 - 2017-07-14 22:08 - 000037888 _____ (Microsoft Corporation) C:\WINDOWS\system32\werdiagcontroller.dll
2017-08-20 11:36 - 2017-07-14 20:44 - 000033280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werdiagcontroller.dll
2017-08-20 11:36 - 2017-07-14 08:44 - 000576512 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2017-08-20 11:36 - 2017-07-14 08:19 - 000817664 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2017-08-20 11:36 - 2017-07-14 07:35 - 005981184 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2017-08-20 11:36 - 2017-07-14 07:26 - 001033216 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcomm.dll
2017-08-20 11:36 - 2017-07-14 07:10 - 000806912 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2017-08-20 11:36 - 2017-07-14 06:40 - 015254016 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2017-08-20 11:36 - 2017-07-14 06:23 - 003240960 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2017-08-20 11:36 - 2017-07-14 06:07 - 001545728 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2017-08-20 11:36 - 2017-07-14 05:58 - 000800768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2017-08-20 11:36 - 2017-07-14 04:48 - 000499200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2017-08-20 11:36 - 2017-07-14 04:38 - 000663552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2017-08-20 11:36 - 2017-07-14 04:17 - 004546048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2017-08-20 11:36 - 2017-07-14 04:17 - 000880640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcomm.dll
2017-08-20 11:36 - 2017-07-14 04:12 - 000693248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2017-08-20 11:36 - 2017-07-14 04:09 - 013663744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2017-08-20 11:36 - 2017-07-14 03:53 - 002767872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2017-08-20 11:36 - 2017-07-14 03:50 - 001314816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2017-08-20 11:36 - 2017-07-14 03:48 - 000710144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2017-08-20 11:36 - 2017-07-08 22:14 - 000376672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys
2017-08-20 11:36 - 2017-07-08 21:12 - 004169728 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2017-08-20 11:36 - 2017-07-08 19:45 - 007078912 _____ (Microsoft Corporation) C:\WINDOWS\system32\glcndFilter.dll
2017-08-20 11:36 - 2017-07-08 19:05 - 003631616 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2017-08-20 11:36 - 2017-07-08 18:39 - 005274624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\glcndFilter.dll
2017-08-20 11:36 - 2017-07-08 18:37 - 007797248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2017-08-20 11:36 - 2017-07-08 18:23 - 002749952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2017-08-20 11:36 - 2017-07-08 17:59 - 005270016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2017-08-20 11:36 - 2017-07-08 05:46 - 000377688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\volmgrx.sys
2017-08-20 11:36 - 2017-07-08 05:16 - 007440728 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2017-08-20 11:36 - 2017-07-08 05:16 - 001674520 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2017-08-20 11:36 - 2017-07-08 05:16 - 001534072 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2017-08-20 11:36 - 2017-07-08 05:16 - 001499920 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2017-08-20 11:36 - 2017-07-08 05:16 - 001370328 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2017-08-20 11:36 - 2017-07-08 05:16 - 000086360 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys
2017-08-20 11:36 - 2017-07-01 15:47 - 001311744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjet40.dll
2017-08-20 11:36 - 2017-07-01 15:47 - 000866816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mswdat10.dll
2017-08-20 11:36 - 2017-07-01 15:47 - 000641536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mswstr10.dll
2017-08-20 11:36 - 2017-07-01 15:47 - 000616448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrepl40.dll
2017-08-20 11:36 - 2017-07-01 15:47 - 000475648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxbde40.dll
2017-08-20 11:36 - 2017-07-01 15:47 - 000375808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mspbde40.dll
2017-08-20 11:36 - 2017-07-01 15:47 - 000343552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd3x40.dll
2017-08-20 11:36 - 2017-07-01 15:47 - 000339968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msexcl40.dll
2017-08-20 11:36 - 2017-07-01 15:47 - 000310272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd2x40.dll
2017-08-20 11:36 - 2017-07-01 15:47 - 000272896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstext40.dll
2017-08-20 11:36 - 2017-07-01 15:47 - 000240640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msltus40.dll
2017-08-20 11:36 - 2017-07-01 15:47 - 000144896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjint40.dll
2017-08-20 11:36 - 2017-07-01 15:47 - 000083968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjter40.dll
2017-08-20 11:36 - 2017-06-15 16:17 - 002551808 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2017-08-20 11:36 - 2017-06-15 16:16 - 001920000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2017-08-20 11:36 - 2017-06-08 19:01 - 001737600 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2017-08-20 11:36 - 2017-06-08 19:01 - 001502000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2017-08-20 11:34 - 2017-08-20 11:34 - 000002289 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2017-08-20 11:34 - 2017-08-20 11:34 - 000002277 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2017-08-20 11:25 - 2017-08-20 12:58 - 000000249 _____ C:\Users\sarra_000\Desktop\NICOLAS.txt
2017-08-20 11:14 - 2017-08-20 11:14 - 000468480 _____ () C:\Users\sarra_000\Downloads\CKScanner.exe
2017-08-20 11:07 - 2017-08-20 11:07 - 000959456 _____ (Realtek ) C:\WINDOWS\system32\Drivers\Rt630x64.sys
2017-08-20 11:07 - 2017-08-20 11:07 - 000122848 _____ (Realtek Semiconductor Corporation) C:\WINDOWS\system32\RtNicProp64.dll
2017-08-20 11:05 - 2017-08-20 11:05 - 072520712 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoRes64.dat
2017-08-20 11:05 - 2017-08-20 11:05 - 012334923 _____ C:\WINDOWS\system32\Drivers\RTAIODAT.DAT
2017-08-20 11:05 - 2017-08-20 11:05 - 007172912 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEP64A.dll
2017-08-20 11:05 - 2017-08-20 11:05 - 007096184 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPP64A.dll
2017-08-20 11:05 - 2017-08-20 11:05 - 005826560 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\Drivers\RTKVHD64.sys
2017-08-20 11:05 - 2017-08-20 11:05 - 004059960 _____ (Fortemedia Corporation) C:\WINDOWS\system32\FMAPO64.dll
2017-08-20 11:05 - 2017-08-20 11:05 - 003677160 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTSnMg64.cpl
2017-08-20 11:05 - 2017-08-20 11:05 - 003509256 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RltkAPO64.dll
2017-08-20 11:05 - 2017-08-20 11:05 - 003507688 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkApi64.dll
2017-08-20 11:05 - 2017-08-20 11:05 - 003205120 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtPgEx64.dll
2017-08-20 11:05 - 2017-08-20 11:05 - 002210304 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoInstII64.dll
2017-08-20 11:05 - 2017-08-20 11:05 - 002050176 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioEQ64.dll
2017-08-20 11:05 - 2017-08-20 11:05 - 001965808 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPD64A.dll
2017-08-20 11:05 - 2017-08-20 11:05 - 001780616 _____ (DTS) C:\WINDOWS\system32\DTSS2SpeakerDLL64.dll
2017-08-20 11:05 - 2017-08-20 11:05 - 001591056 _____ (DTS) C:\WINDOWS\system32\DTSS2HeadphoneDLL64.dll
2017-08-20 11:05 - 2017-08-20 11:05 - 001508928 _____ (DTS) C:\WINDOWS\system32\DTSBoostDLL64.dll
2017-08-20 11:05 - 2017-08-20 11:05 - 001382232 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\tosade.dll
2017-08-20 11:05 - 2017-08-20 11:05 - 001347136 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTCOM64.dll
2017-08-20 11:05 - 2017-08-20 11:05 - 001166152 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO4064.dll
2017-08-20 11:05 - 2017-08-20 11:05 - 000965024 _____ (Sony Corporation) C:\WINDOWS\system32\SFSS_APO.dll
2017-08-20 11:05 - 2017-08-20 11:05 - 000873456 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\tadefxapo264.dll
2017-08-20 11:05 - 2017-08-20 11:05 - 000743960 _____ (DTS) C:\WINDOWS\system32\DTSBassEnhancementDLL64.dll
2017-08-20 11:05 - 2017-08-20 11:05 - 000727432 _____ (DTS) C:\WINDOWS\system32\DTSSymmetryDLL64.dll
2017-08-20 11:05 - 2017-08-20 11:05 - 000708312 _____ (DTS) C:\WINDOWS\system32\DTSVoiceClarityDLL64.dll
2017-08-20 11:05 - 2017-08-20 11:05 - 000691680 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtDataProc64.dll
2017-08-20 11:05 - 2017-08-20 11:05 - 000678176 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO30.dll
2017-08-20 11:05 - 2017-08-20 11:05 - 000677664 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxVolumeSDAPO.dll
2017-08-20 11:05 - 2017-08-20 11:05 - 000618184 _____ (Knowles Acoustics ) C:\WINDOWS\system32\KAAPORT64.dll
2017-08-20 11:05 - 2017-08-20 11:05 - 000574752 _____ (Andrea Electronics Corporation) C:\WINDOWS\system32\AERTAC64.dll
2017-08-20 11:05 - 2017-08-20 11:05 - 000532376 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSTSX64.dll
2017-08-20 11:05 - 2017-08-20 11:05 - 000514520 _____ (DTS) C:\WINDOWS\system32\DTSU2PLFX64.dll
2017-08-20 11:05 - 2017-08-20 11:05 - 000504304 _____ (DTS) C:\WINDOWS\system32\DTSNeoPCDLL64.dll
2017-08-20 11:05 - 2017-08-20 11:05 - 000500552 _____ (DTS) C:\WINDOWS\system32\DTSU2PGFX64.dll
2017-08-20 11:05 - 2017-08-20 11:05 - 000447712 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EED64A.dll
2017-08-20 11:05 - 2017-08-20 11:05 - 000445392 _____ (DTS) C:\WINDOWS\system32\DTSLimiterDLL64.dll
2017-08-20 11:05 - 2017-08-20 11:05 - 000441264 _____ (DTS) C:\WINDOWS\system32\DTSGainCompensatorDLL64.dll
2017-08-20 11:05 - 2017-08-20 11:05 - 000428224 _____ (DTS) C:\WINDOWS\system32\DTSU2PREC64.dll
2017-08-20 11:05 - 2017-08-20 11:05 - 000387312 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEP64A.dll
2017-08-20 11:05 - 2017-08-20 11:05 - 000343704 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtlCPAPI64.dll
2017-08-20 11:05 - 2017-08-20 11:05 - 000330552 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO20.dll
2017-08-20 11:05 - 2017-08-20 11:05 - 000327448 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPO64A.dll
2017-08-20 11:05 - 2017-08-20 11:05 - 000321712 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RP3DHT64.dll
2017-08-20 11:05 - 2017-08-20 11:05 - 000321712 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RP3DAA64.dll
2017-08-20 11:05 - 2017-08-20 11:05 - 000272712 _____ (Dolby Laboratories) C:\WINDOWS\system32\DDPA64.dll
2017-08-20 11:05 - 2017-08-20 11:05 - 000253896 _____ (DTS) C:\WINDOWS\system32\DTSGFXAPO64.dll
2017-08-20 11:05 - 2017-08-20 11:05 - 000253864 _____ (DTS) C:\WINDOWS\system32\DTSLFXAPO64.dll
2017-08-20 11:05 - 2017-08-20 11:05 - 000252872 _____ (DTS) C:\WINDOWS\system32\DTSGFXAPONS64.dll
2017-08-20 11:05 - 2017-08-20 11:05 - 000231912 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SFNHK64.dll
2017-08-20 11:05 - 2017-08-20 11:05 - 000221960 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSTSH64.dll
2017-08-20 11:05 - 2017-08-20 11:05 - 000214832 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEED64A.dll
2017-08-20 11:05 - 2017-08-20 11:05 - 000209528 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSHP64.dll
2017-08-20 11:05 - 2017-08-20 11:05 - 000192976 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCfg64.dll
2017-08-20 11:05 - 2017-08-20 11:05 - 000166200 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSWOW64.dll
2017-08-20 11:05 - 2017-08-20 11:05 - 000158696 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\tadefxapo.dll
2017-08-20 11:05 - 2017-08-20 11:05 - 000151784 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEL64A.dll
2017-08-20 11:05 - 2017-08-20 11:05 - 000134200 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEA64A.dll
2017-08-20 11:05 - 2017-08-20 11:05 - 000122320 _____ (Real Sound Lab SIA) C:\WINDOWS\system32\CONEQMSAPOGUILibrary.dll
2017-08-20 11:05 - 2017-08-20 11:05 - 000118592 _____ (Andrea Electronics Corporation) C:\WINDOWS\system32\AERTAR64.dll
2017-08-20 11:05 - 2017-08-20 11:05 - 000110976 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEL64A.dll
2017-08-20 11:05 - 2017-08-20 11:05 - 000090912 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SFCOM64.dll
2017-08-20 11:05 - 2017-08-20 11:05 - 000088344 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEG64A.dll
2017-08-20 11:05 - 2017-08-20 11:05 - 000088312 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SFAPO64.dll
2017-08-20 11:05 - 2017-08-20 11:05 - 000084608 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEG64A.dll
2017-08-20 11:05 - 2017-08-20 11:05 - 000083624 _____ (Virage Logic Corporation / Sonic Focus) C:\WINDOWS\SysWOW64\SFCOM.dll
2017-08-20 11:05 - 2017-08-20 11:05 - 000075536 _____ (TOSHIBA CORPORATION.) C:\WINDOWS\system32\tepeqapo64.dll
2017-08-20 11:05 - 2017-08-20 11:05 - 000023688 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCoLDR64.dll
2017-08-20 02:23 - 2017-08-20 02:23 - 000000015 _____ C:\Users\sarra_000\Desktop\dom.txt
2017-08-20 02:06 - 2017-08-20 02:06 - 000001662 _____ C:\Users\sarra_000\Desktop\AdwCleaner[S2].txt problème.txt
2017-08-18 21:44 - 2017-08-20 02:11 - 000000000 ____D C:\Users\sarra_000\Desktop\ANNE AOUT 2017
2017-08-16 01:16 - 2017-08-16 01:16 - 000000000 ____D C:\ProgramData\Lavasoft
2017-08-16 01:16 - 2017-08-16 01:16 - 000000000 ____D C:\ProgramData\adaware
2017-08-16 00:38 - 2017-08-20 10:40 - 000000000 ____D C:\ProgramData\RogueKiller
2017-08-16 00:38 - 2017-08-20 10:40 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RogueKiller
2017-08-16 00:38 - 2017-08-20 10:40 - 000000000 ____D C:\Program Files\RogueKiller
2017-08-16 00:05 - 2017-08-16 00:05 - 000000000 ____D C:\Users\sarra_000\Downloads\Quarantine
2017-08-15 21:56 - 2017-08-15 21:56 - 000000000 ____D C:\ProgramData\{BE2ACE5C-32B7-4777-9BDF-ECF87CDAB705}
2017-08-15 21:41 - 2017-08-15 21:41 - 000000000 ____D C:\WINDOWS\Tasks\ImCleanDisabled
2017-08-15 21:41 - 2017-08-15 21:41 - 000000000 ____D C:\ProgramData\{74E9F814-C737-42CC-B721-DBBC4059367A}
2017-08-14 09:46 - 2017-08-14 09:51 - 000000000 ____D C:\Users\sarra_000\AppData\Local\Mozilla
2017-08-12 13:36 - 2017-08-12 13:36 - 000000072 _____ C:\Users\sarra_000\Desktop\Q.txt
2017-08-12 10:40 - 2017-08-20 13:17 - 000000000 ____D C:\Users\sarra_000\Desktop\Anciennes données de Firefox
2017-08-08 19:32 - 2017-08-08 19:46 - 000001156 _____ C:\Users\sarra_000\Desktop\claude.txt
2017-08-08 09:35 - 2017-08-08 09:35 - 000003256 _____ C:\WINDOWS\System32\Tasks\Driver Booster Scheduler
2017-08-08 09:32 - 2017-08-08 09:33 - 016932296 _____ C:\Users\sarra_000\Downloads\Glary_Utilities_v5.81.0.102.exe
2017-08-04 12:57 - 2017-08-04 12:57 - 000776905 _____ C:\Users\sarra_000\Downloads\video-1501841565.mp4
2017-08-02 23:11 - 2017-08-02 23:11 - 000000000 ____D C:\Users\sarra_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Applications Chrome
2017-08-01 20:46 - 2017-08-01 20:46 - 000600728 _____ (Qualcomm Atheros) C:\WINDOWS\system32\Drivers\btfilter.sys
2017-08-01 20:42 - 2017-08-01 20:42 - 015770512 _____ (IObit ) C:\Users\sarra_000\Downloads\Driver_Booster_v4.5.0.527.exe
2017-08-01 20:30 - 2017-08-01 20:30 - 008185288 _____ (Malwarebytes) C:\Users\sarra_000\Downloads\adwcleaner_7.0.1.0(1).exe
2017-07-29 18:49 - 2017-08-20 13:52 - 000000000 ____D C:\Users\sarra_000\Documents\Téléchargements
2017-07-28 21:53 - 2017-07-28 21:53 - 000001266 _____ C:\Users\sarra_000\Desktop\ZHPCleaner(1) - Raccourci.lnk
2017-07-28 21:53 - 2017-07-28 21:53 - 000001248 _____ C:\Users\sarra_000\Desktop\ZHPDiag3(1) - Raccourci.lnk
2017-07-28 11:51 - 2017-07-28 11:51 - 002835328 _____ C:\Users\sarra_000\Downloads\ZHPCleaner(1).exe
2017-07-28 11:49 - 2017-07-28 11:50 - 002793344 _____ C:\Users\sarra_000\Downloads\ZHPDiag3(1).exe
2017-07-27 19:48 - 2017-07-27 19:48 - 000000000 ____D C:\Program Files (x86)\MSECache
2017-07-26 00:41 - 2017-07-26 08:34 - 000000000 ____D C:\WINDOWS\Minidump
2017-07-25 14:24 - 2017-08-18 21:25 - 000228864 ___SH C:\Users\sarra_000\Downloads\Thumbs.db
2017-07-25 09:11 - 2017-07-25 09:11 - 009747512 _____ (Piriform Ltd) C:\Users\sarra_000\Downloads\CCleaner_v5.32.6129 (1).exe
2017-07-24 13:36 - 2017-08-02 09:59 - 000000008 _____ C:\Users\sarra_000\Desktop\MEMO.txt
2017-07-24 10:03 - 2017-07-25 12:38 - 000000000 ____D C:\Users\sarra_000\Desktop\lunes et autres
2017-07-21 11:01 - 2015-01-06 05:01 - 000072192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndproxy.sys
2017-07-21 11:01 - 2015-01-06 04:59 - 000080896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wanarp.sys
2017-07-21 11:01 - 2015-01-06 03:12 - 000185856 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascfg.dll
2017-07-21 11:01 - 2015-01-06 03:02 - 000164864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rascfg.dll
2017-07-21 11:00 - 2017-06-24 18:46 - 000424448 _____ (Microsoft Corporation) C:\WINDOWS\system32\mprapi.dll
2017-07-21 11:00 - 2017-06-24 18:16 - 000352768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mprapi.dll
2017-07-21 11:00 - 2017-06-13 19:51 - 000324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certcli.dll
2017-07-21 11:00 - 2017-06-13 19:23 - 000499200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnsapi.dll
2017-07-21 11:00 - 2017-06-13 19:19 - 000383488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlansec.dll
2017-07-21 11:00 - 2017-06-13 19:16 - 000024064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wfdprov.dll
2017-07-21 11:00 - 2017-06-13 19:11 - 000238080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlanapi.dll
2017-07-21 11:00 - 2017-06-13 19:07 - 000304128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlanmsm.dll
2017-07-21 11:00 - 2017-06-13 16:17 - 000656384 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll
2017-07-21 11:00 - 2017-06-13 16:16 - 000252416 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsrslvr.dll
2017-07-21 11:00 - 2017-06-13 11:47 - 000445440 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\nwifi.sys
2017-07-21 11:00 - 2017-06-13 11:09 - 000445440 _____ (Microsoft Corporation) C:\WINDOWS\system32\certcli.dll
2017-07-21 11:00 - 2017-06-13 10:22 - 001436160 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2017-07-21 11:00 - 2017-06-13 10:16 - 000445952 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansec.dll
2017-07-21 11:00 - 2017-06-13 10:10 - 000028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\wfdprov.dll
2017-07-21 11:00 - 2017-06-13 10:07 - 000301568 _____ (Microsoft Corporation) C:\WINDOWS\system32\ProximityService.dll
2017-07-21 11:00 - 2017-06-13 10:03 - 000302080 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanapi.dll
2017-07-21 11:00 - 2017-06-13 09:54 - 000374272 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanmsm.dll
2017-07-21 11:00 - 2017-06-13 09:50 - 001547264 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll
2017-07-21 11:00 - 2017-06-12 02:14 - 000276320 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msiscsi.sys
2017-07-21 11:00 - 2017-06-11 22:13 - 000301056 _____ (Microsoft Corporation) C:\WINDOWS\system32\umrdp.dll
2017-07-21 11:00 - 2017-06-11 22:11 - 000346112 _____ (Microsoft Corporation) C:\WINDOWS\system32\SessEnv.dll
2017-07-21 11:00 - 2017-06-11 22:02 - 002778112 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2017-07-21 11:00 - 2017-06-11 22:02 - 000299520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SessEnv.dll
2017-07-21 11:00 - 2017-06-11 21:52 - 002463744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2017-07-21 11:00 - 2017-06-09 15:47 - 000448629 _____ C:\WINDOWS\system32\ApnDatabase.xml
2017-07-21 11:00 - 2017-06-08 03:48 - 002457936 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2017-07-21 11:00 - 2017-06-07 06:25 - 000428888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS
2017-07-21 11:00 - 2017-06-06 20:38 - 000607232 _____ (Microsoft Corporation) C:\WINDOWS\system32\rastls.dll
2017-07-21 11:00 - 2017-06-06 19:44 - 000530432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rastls.dll
2017-07-21 11:00 - 2017-05-27 18:42 - 001115136 _____ (Microsoft Corporation) C:\WINDOWS\system32\termsrv.dll
2017-07-21 11:00 - 2017-05-27 18:38 - 000056832 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdsdwmdr.dll
2017-07-21 11:00 - 2015-10-22 19:43 - 000007168 _____ (Microsoft Corporation) C:\WINDOWS\system32\kbdgeoqw.dll
2017-07-21 11:00 - 2015-10-22 19:43 - 000007168 _____ (Microsoft Corporation) C:\WINDOWS\system32\KBDAZST.DLL
2017-07-21 11:00 - 2015-10-22 19:43 - 000007168 _____ (Microsoft Corporation) C:\WINDOWS\system32\KBDAZEL.DLL
2017-07-21 11:00 - 2015-10-22 19:43 - 000007168 _____ (Microsoft Corporation) C:\WINDOWS\system32\KBDAZE.DLL
2017-07-21 11:00 - 2015-10-22 18:59 - 000007168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kbdgeoqw.dll
2017-07-21 11:00 - 2015-10-22 18:59 - 000007168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KBDAZST.DLL
2017-07-21 11:00 - 2015-10-22 18:59 - 000007168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KBDAZEL.DLL
2017-07-21 11:00 - 2015-10-22 18:59 - 000007168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KBDAZE.DLL
2017-07-21 10:58 - 2015-06-10 00:39 - 000081920 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BTHUSB.SYS
2017-07-21 10:58 - 2015-06-10 00:39 - 000053248 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthenum.sys
2017-07-21 10:58 - 2015-06-10 00:38 - 001201664 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys
2017-07-21 10:41 - 2017-07-22 19:01 - 000000000 ____D C:\Users\sarra_000\AppData\Local\ElevatedDiagnostics
==================== Un mois - Modifiés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2017-08-20 13:58 - 2017-06-28 16:33 - 005309952 ___SH C:\Users\sarra_000\Desktop\Thumbs.db
2017-08-20 13:54 - 2017-06-30 14:46 - 000003940 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{EF496013-8B3B-48A0-B493-B3FDCDF9F8C7}
2017-08-20 13:50 - 2017-07-20 18:33 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Secure Connection
2017-08-20 13:50 - 2017-06-27 11:32 - 000003598 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2679751232-4024043428-2427409758-1002
2017-08-20 13:47 - 2017-06-27 11:28 - 000000000 ____D C:\Program Files (x86)\Glary Utilities 5
2017-08-20 13:47 - 2017-06-25 23:06 - 000000074 _____ C:\Users\sarra_000\AppData\Roaming\sp_data.sys
2017-08-20 13:46 - 2017-06-30 12:36 - 000000000 ____D C:\Users\sarra_000\OneDrive
2017-08-20 13:46 - 2017-06-27 11:31 - 000000000 ____D C:\ProgramData\Kaspersky Lab
2017-08-20 13:44 - 2017-06-25 22:03 - 000253856 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2017-08-20 13:44 - 2014-01-16 05:03 - 000000000 ____D C:\ProgramData\NVIDIA
2017-08-20 13:44 - 2013-08-22 16:45 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2017-08-20 13:44 - 2013-08-22 16:44 - 000337928 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2017-08-20 13:41 - 2013-08-22 15:25 - 000262144 ___SH C:\WINDOWS\system32\config\BBI
2017-08-20 13:39 - 2017-06-27 14:21 - 000000000 ____D C:\Users\sarra_000\AppData\Local\ClassicShell
2017-08-20 13:23 - 2017-06-28 16:12 - 000000000 ____D C:\Users\sarra_000\AppData\LocalLow\Mozilla
2017-08-20 12:56 - 2017-06-27 14:21 - 000000000 ____D C:\AdwCleaner
2017-08-20 12:55 - 2017-06-28 16:44 - 000000000 ____D C:\Users\sarra_000\AppData\Roaming\ZHP
2017-08-20 12:54 - 2013-08-22 17:36 - 000000000 ___HD C:\Program Files\WindowsApps
2017-08-20 12:54 - 2013-08-22 17:36 - 000000000 ____D C:\WINDOWS\AppReadiness
2017-08-20 12:53 - 2012-07-26 09:59 - 000000000 ____D C:\WINDOWS\CbsTemp
2017-08-20 12:52 - 2017-06-27 15:24 - 000000000 ____D C:\WINDOWS\system32\MRT
2017-08-20 12:50 - 2017-06-27 15:23 - 140394280 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2017-08-20 12:00 - 2017-07-20 17:19 - 000003474 _____ C:\WINDOWS\System32\Tasks\ASUS Live Update1
2017-08-20 12:00 - 2017-06-28 14:52 - 000003464 _____ C:\WINDOWS\System32\Tasks\ASUS Live Update2
2017-08-20 11:33 - 2017-06-25 23:23 - 000000000 ____D C:\Program Files (x86)\Google
2017-08-20 11:28 - 2017-06-28 15:57 - 000000000 ____D C:\Program Files\Opera
2017-08-20 11:08 - 2017-06-27 15:01 - 000002312 _____ C:\Users\Public\Desktop\Driver Booster 4.lnk
2017-08-20 11:08 - 2013-08-22 15:36 - 000000000 ____D C:\WINDOWS\Inf
2017-08-20 11:07 - 2017-06-30 12:07 - 000109544 _____ C:\WINDOWS\system32\Drivers\RTWAVES30.dat
2017-08-20 11:07 - 2017-06-28 20:42 - 000001148 _____ C:\Waves MAXXAudio.lnk
2017-08-20 11:06 - 2017-06-30 12:07 - 000000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2017-08-20 10:49 - 2017-06-30 12:14 - 000000000 ____D C:\Users\UpdatusUser
2017-08-20 10:49 - 2017-06-30 12:14 - 000000000 ____D C:\Users\sarra_000
2017-08-20 10:41 - 2017-06-28 16:40 - 000000000 ____D C:\Users\sarra_000\AppData\Roaming\PhotoFiltre
2017-08-20 10:41 - 2017-06-27 15:01 - 000000000 ____D C:\Users\sarra_000\AppData\LocalLow\IObit
2017-08-20 10:41 - 2014-01-16 05:17 - 000000000 ____D C:\ProgramData\P4G
2017-08-20 10:41 - 2013-08-22 17:36 - 000000000 __RSD C:\WINDOWS\Media
2017-08-20 10:41 - 2013-08-22 17:36 - 000000000 ___RD C:\WINDOWS\ToastData
2017-08-20 10:41 - 2013-08-22 17:36 - 000000000 ____D C:\WINDOWS\WinStore
2017-08-20 10:41 - 2013-08-22 17:36 - 000000000 ____D C:\WINDOWS\rescache
2017-08-20 10:41 - 2013-08-22 17:36 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2017-08-20 10:41 - 2012-07-26 10:12 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2017-08-20 10:40 - 2017-07-20 18:33 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Anti-Virus
2017-08-20 10:40 - 2017-06-27 15:02 - 000000000 ____D C:\ProgramData\ProductData
2017-08-20 10:40 - 2017-06-27 15:01 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Booster 4
2017-08-20 10:40 - 2017-06-27 15:00 - 000000000 ____D C:\ProgramData\IObit
2017-08-20 10:40 - 2017-06-25 23:06 - 000000000 ____D C:\Users\sarra_000\AppData\Local\VirtualStore
2017-08-20 10:40 - 2017-06-25 22:03 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2017-08-20 10:31 - 2013-08-22 17:36 - 000000000 ____D C:\WINDOWS\registration
2017-08-20 10:30 - 2013-08-22 15:36 - 000000000 ____D C:\WINDOWS\system32\Sysprep
2017-08-20 10:26 - 2017-06-28 16:12 - 000000000 ____D C:\Users\sarra_000\AppData\Roaming\Mozilla
2017-08-20 10:26 - 2017-06-28 16:00 - 000000000 ____D C:\Users\sarra_000\AppData\Roaming\Opera Software
2017-08-20 10:26 - 2017-06-27 15:00 - 000000000 ____D C:\Users\sarra_000\AppData\Roaming\IObit
2017-08-20 10:25 - 2017-06-25 23:25 - 000000000 ____D C:\Users\sarra_000\AppData\Local\Google
2017-08-20 10:25 - 2017-06-25 22:03 - 000000000 ____D C:\ProgramData\Malwarebytes
2017-08-20 10:24 - 2017-07-20 18:32 - 000000000 ____D C:\Program Files (x86)\Kaspersky Lab
2017-08-20 10:24 - 2017-06-27 11:32 - 000000000 ____D C:\Program Files\Common Files\AV
2017-08-20 10:24 - 2017-06-25 22:03 - 000000000 ____D C:\Program Files\Malwarebytes
2017-08-20 10:23 - 2017-06-27 15:01 - 000000000 ____D C:\Program Files (x86)\IObit
2017-08-17 23:23 - 2013-08-22 17:36 - 000000000 ____D C:\WINDOWS\system32\NDF
2017-08-17 14:02 - 2017-06-28 19:29 - 000000000 ____D C:\Users\sarra_000\AppData\Local\CrashDumps
2017-08-16 01:05 - 2013-08-22 17:36 - 000000000 ___HD C:\WINDOWS\system32\GroupPolicy
2017-08-15 22:46 - 2017-06-27 11:30 - 000000000 ____D C:\ProgramData\Kaspersky Lab Setup Files
2017-08-15 22:46 - 2013-08-22 15:25 - 000262144 ___SH C:\WINDOWS\system32\config\ELAM
2017-08-15 21:44 - 2017-06-30 13:03 - 000000000 ___DC C:\WINDOWS\Panther
2017-08-12 19:24 - 2017-06-28 16:00 - 000000000 ____D C:\Users\sarra_000\AppData\Local\Opera Software
2017-08-08 09:33 - 2017-06-27 11:29 - 000020160 _____ (Glarysoft Ltd) C:\WINDOWS\system32\Drivers\GUBootStartup.sys
2017-08-08 09:33 - 2017-06-27 11:29 - 000003314 _____ C:\WINDOWS\System32\Tasks\GlaryInitialize 5
2017-08-08 09:33 - 2017-06-27 11:29 - 000002974 _____ C:\WINDOWS\System32\Tasks\GU5SkipUAC
2017-08-08 09:33 - 2017-06-27 11:29 - 000001108 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Glary Utilities 5.lnk
2017-08-08 09:33 - 2017-06-27 11:29 - 000001096 _____ C:\Users\Public\Desktop\Glary Utilities 5.lnk
2017-08-07 10:17 - 2014-11-21 00:46 - 001817064 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2017-08-07 10:17 - 2014-11-21 00:03 - 000806842 _____ C:\WINDOWS\system32\perfh00C.dat
2017-08-07 10:17 - 2014-11-21 00:03 - 000156662 _____ C:\WINDOWS\system32\perfc00C.dat
2017-08-01 20:49 - 2017-07-15 10:46 - 000003852 _____ C:\WINDOWS\System32\Tasks\Opera scheduled Autoupdate 1500108402
2017-07-29 02:03 - 2014-11-21 08:02 - 000835576 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2017-07-29 02:03 - 2014-11-21 08:02 - 000177648 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2017-07-27 20:14 - 2013-04-26 01:13 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2017-07-25 09:12 - 2017-06-30 13:08 - 000000834 _____ C:\Users\Public\Desktop\CCleaner.lnk
2017-07-24 16:44 - 2017-06-29 21:12 - 000000000 ____D C:\Users\sarra_000\Desktop\bis et plein de jolies choses 2017
2017-07-24 10:04 - 2017-07-07 13:38 - 000000000 ____D C:\Users\sarra_000\Desktop\Nouveau dossier
==================== Fichiers à la racine de certains dossiers =======
2017-06-25 23:06 - 2017-08-20 13:47 - 000000074 _____ () C:\Users\sarra_000\AppData\Roaming\sp_data.sys
2017-06-30 12:07 - 2017-06-30 12:07 - 000000000 ____H () C:\ProgramData\DP45977C.lfl
2013-04-26 01:15 - 2012-09-07 13:40 - 000000256 _____ () C:\ProgramData\SetStretch.cmd
2013-04-26 01:15 - 2009-07-22 12:04 - 000024576 _____ () C:\ProgramData\SetStretch.exe
2013-04-26 01:15 - 2012-09-07 13:37 - 000000103 _____ () C:\ProgramData\SetStretch.VBS
==================== Bamital & volsnap ======================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
C:\WINDOWS\system32\winlogon.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\wininit.exe => Le fichier est signé numériquement
C:\WINDOWS\explorer.exe => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\explorer.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\svchost.exe => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\svchost.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\services.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\User32.dll => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\User32.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\userinit.exe => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\userinit.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\rpcss.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\dnsapi.dll => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\dnsapi.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\Drivers\volsnap.sys => Le fichier est signé numériquement
LastRegBack: 2017-08-20 12:49
==================== Fin de FRST.txt ============================