Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version:05-03-2016 01 Exécuté par Estelle Courtois (administrateur) sur ESTELLECOURTOIS (09-04-2016 18:06:57) Exécuté depuis C:\Users\Estelle Courtois\Desktop Profils chargés: Estelle Courtois (Profils disponibles: Estelle Courtois) Platform: Windows 7 Home Premium Service Pack 1 (X64) Langue: Français (France) Internet Explorer Version 11 (Navigateur par défaut: FF) Mode d'amorçage: Normal Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processus (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.) (Autodesk Inc.) C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\AdAppMgrSvc.exe (TOSHIBA Corporation) C:\Program Files\TOSHIBA\BulletinBoard\TosNcCore.exe (TOSHIBA Corporation) C:\Program Files\TOSHIBA\ReelTime\TosReelTimeMonitor.exe (Intel Corporation) C:\Windows\System32\hkcmd.exe (Intel Corporation) C:\Windows\System32\igfxpers.exe (TOSHIBA Corporation) C:\Program Files\TOSHIBA\SmoothView\SmoothView.exe (TOSHIBA Corporation) C:\Program Files\TOSHIBA\Power Saver\TPwrMain.exe (Intel Corporation) C:\Windows\System32\igfxsrvc.exe (TOSHIBA Corporation) C:\Program Files\TOSHIBA\FlashCards\TCrdMain.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe (TOSHIBA Corporation) C:\Program Files\TOSHIBA\TECO\TEco.exe (Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe (Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe (Akamai Technologies, Inc.) C:\Users\Estelle Courtois\AppData\Local\Akamai\netsession_win.exe (TOSHIBA Corporation) C:\Windows\System32\TODDSrv.exe (TOSHIBA Corporation) C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe (TOSHIBA Corporation) C:\Program Files\TOSHIBA\TECO\TecoService.exe (Nemetschek SCIA) C:\Program Files (x86)\Common Files\Scia\LicenceServer\FlexnetServer\scia\SCIA.exe (Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe (TOSHIBA CORPORATION) C:\Program Files (x86)\TOSHIBA\ConfigFree\NDSTray.exe (Intel Corporation) C:\Windows\System32\igfxext.exe (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe (Akamai Technologies, Inc.) C:\Users\Estelle Courtois\AppData\Local\Akamai\netsession_win.exe (TOSHIBA CORPORATION) C:\Program Files (x86)\TOSHIBA\Utilities\KeNotify.exe (Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (Citrix Systems, Inc.) C:\Program Files (x86)\Citrix\ICA Client\concentr.exe (Citrix Systems, Inc.) C:\Program Files (x86)\Citrix\ICA Client\redirector.exe (Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe (Citrix Systems, Inc.) C:\Program Files (x86)\Citrix\Receiver\Receiver.exe (TOSHIBA CORPORATION) C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSwMgr.exe (Citrix Systems, Inc.) C:\Program Files (x86)\Citrix\SelfServicePlugin\SelfServicePlugin.exe (Citrix Systems, Inc.) C:\Program Files (x86)\Citrix\ICA Client\wfcrun32.exe (TOSHIBA Corporation) C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe (TOSHIBA Corporation) C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSENotify.exe (TOSHIBA Corporation) C:\Program Files\TOSHIBA\TPHM\TPCHSrv.exe (TOSHIBA Corporation) C:\Program Files\TOSHIBA\TPHM\TPCHWMsg.exe (TOSHIBA CORPORATION) C:\Program Files (x86)\TOSHIBA\ConfigFree\CFIWmxSvcs64.exe (TOSHIBA CORPORATION) C:\Program Files (x86)\TOSHIBA\ConfigFree\CFProcSRVC.exe (TOSHIBA CORPORATION) C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSvcs.exe (Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office12\OIS.EXE (Microsoft Corporation) C:\Windows\System32\dllhost.exe ==================== Registre (Avec liste blanche) =========================== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.) HKLM\...\Run: [TosSENotify] => C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosWaitSrv.exe [709976 2009-08-03] (TOSHIBA Corporation) HKLM\...\Run: [TosNC] => C:\Program Files\Toshiba\BulletinBoard\TosNcCore.exe [596328 2009-08-06] (TOSHIBA Corporation) HKLM\...\Run: [TosReelTimeMonitor] => C:\Program Files\TOSHIBA\ReelTime\TosReelTimeMonitor.exe [35160 2009-08-06] (TOSHIBA Corporation) HKLM\...\Run: [SmoothView] => C:\Program Files\Toshiba\SmoothView\SmoothView.exe [570680 2009-08-13] (TOSHIBA Corporation) HKLM\...\Run: [TPwrMain] => C:\Program Files\TOSHIBA\Power Saver\TPwrMain.EXE [497504 2009-08-05] (TOSHIBA Corporation) HKLM\...\Run: [00TCrdMain] => C:\Program Files\TOSHIBA\FlashCards\TCrdMain.exe [909624 2009-08-05] (TOSHIBA Corporation) HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [7982112 2009-07-28] (Realtek Semiconductor) HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1815848 2009-07-20] (Synaptics Incorporated) HKLM\...\Run: [Teco] => C:\Program Files\TOSHIBA\TECO\Teco.exe [1481568 2009-08-26] (TOSHIBA Corporation) HKLM\...\Run: [TosWaitSrv] => C:\Program Files\TOSHIBA\TPHM\TosWaitSrv.exe [711000 2009-08-04] (TOSHIBA Corporation) HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [558496 2014-02-27] (Adobe Systems Incorporated) HKLM-x32\...\Run: [SVPWUTIL] => C:\Program Files (x86)\TOSHIBA\Utilities\SVPWUTIL.exe [352256 2009-08-12] (TOSHIBA) HKLM-x32\...\Run: [HWSetup] => C:\Program Files\TOSHIBA\Utilities\HWSetup.exe [423936 2009-06-02] (TOSHIBA Electronics, Inc.) HKLM-x32\...\Run: [KeNotify] => C:\Program Files (x86)\TOSHIBA\Utilities\KeNotify.exe [34088 2009-01-13] (TOSHIBA CORPORATION) HKLM-x32\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [2072928 2014-10-31] (Wondershare) HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [335232 2015-03-07] (Oracle Corporation) HKLM-x32\...\Run: [ADSKAppManager] => "C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\AdAppMgr.exe" -showminimized -checkautorun HKLM-x32\...\Run: [CitrixReceiver] => "C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Citrix\Receiver Updater.lnk" HKLM-x32\...\Run: [ConnectionCenter] => C:\Program Files (x86)\Citrix\ICA Client\concentr.exe [407904 2015-04-08] (Citrix Systems, Inc.) HKLM-x32\...\Run: [Redirector] => C:\Program Files (x86)\Citrix\ICA Client\redirector.exe [153952 2015-04-08] (Citrix Systems, Inc.) HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1085656 2015-12-14] (Adobe Systems Incorporated) Winlogon\Notify\igfxcui: igfxdev.dll [X] HKU\S-1-5-21-412403155-3744995412-2101684747-1001\...\Run: [ctfmon.exe] => C:\WINDOWS\system32\ctfmon.exe [9728 2009-07-14] (Microsoft Corporation) HKU\S-1-5-21-412403155-3744995412-2101684747-1001\...\Run: [GoogleDriveSync] => C:\Program Files (x86)\Google\Drive\googledrivesync.exe [22012688 2015-06-20] (Google) HKU\S-1-5-21-412403155-3744995412-2101684747-1001\...\Run: [Google Update] => C:\Users\Estelle Courtois\AppData\Local\Google\Update\GoogleUpdate.exe [107848 2015-04-22] (Google Inc.) HKU\S-1-5-21-412403155-3744995412-2101684747-1001\...\Run: [Office Timeline Performance Helper] => C:\Program Files (x86)\Office Timeline\Current\OfficeTimelineStartup.exe [15424 2015-07-15] (OfficeTimeline LLC) HKU\S-1-5-21-412403155-3744995412-2101684747-1001\...\Run: [Akamai NetSession Interface] => C:\Users\Estelle Courtois\AppData\Local\Akamai\netsession_win.exe [4691384 2015-09-10] (Akamai Technologies, Inc.) HKU\S-1-5-21-412403155-3744995412-2101684747-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8322328 2015-05-08] (Piriform Ltd) HKU\S-1-5-21-412403155-3744995412-2101684747-1001\...\RunOnce: [Uninstall C:\Users\Estelle Courtois\AppData\Local\Microsoft\OneDrive\17.3.6301.0127\amd64] => C:\Windows\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Estelle Courtois\AppData\Local\Microsoft\OneDrive\17.3.6301.0127\amd64" HKU\S-1-5-21-412403155-3744995412-2101684747-1001\...\RunOnce: [Uninstall C:\Users\Estelle Courtois\AppData\Local\Microsoft\OneDrive\17.3.6301.0127] => C:\Windows\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Estelle Courtois\AppData\Local\Microsoft\OneDrive\17.3.6301.0127" HKU\S-1-5-21-412403155-3744995412-2101684747-1001\...\Policies\Explorer: [] HKU\S-1-5-18\...\Run: [TOSHIBA Online Product Information] => C:\Program Files (x86)\TOSHIBA\Toshiba Online Product Information\topi.exe [6203296 2009-08-12] (TOSHIBA) HKU\S-1-5-18\...\Run: [Copy] => C:\Users\Estelle Courtois\AppData\Roaming\Copy\CopyAgent.exe [15430800 2016-01-21] (Barracuda Networks, Inc.) ShellIconOverlayIdentifiers: [AutoCAD Digital Signatures Icon Overlay Handler] -> {36A21736-36C2-4C11-8ACB-D4136F2B57BD} => AcSignIcon.dll Pas de fichier ShellIconOverlayIdentifiers: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Estelle Courtois\AppData\Roaming\Dropbox\bin\DropboxExt64.34.dll [2016-03-12] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Estelle Courtois\AppData\Roaming\Dropbox\bin\DropboxExt64.34.dll [2016-03-12] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Estelle Courtois\AppData\Roaming\Dropbox\bin\DropboxExt64.34.dll [2016-03-12] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [DropboxExt4] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Estelle Courtois\AppData\Roaming\Dropbox\bin\DropboxExt64.34.dll [2016-03-12] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Estelle Courtois\AppData\Roaming\Dropbox\bin\DropboxExt.34.dll [2016-03-12] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Estelle Courtois\AppData\Roaming\Dropbox\bin\DropboxExt.34.dll [2016-03-12] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Estelle Courtois\AppData\Roaming\Dropbox\bin\DropboxExt.34.dll [2016-03-12] (Dropbox, Inc.) Startup: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\TRDCReminder.lnk [2009-09-04] ShortcutTarget: TRDCReminder.lnk -> C:\Program Files (x86)\TOSHIBA\TRDCReminder\TRDCReminder.exe (TOSHIBA Europe) Startup: C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\TRDCReminder.lnk [2009-09-04] ShortcutTarget: TRDCReminder.lnk -> C:\Program Files (x86)\TOSHIBA\TRDCReminder\TRDCReminder.exe (TOSHIBA Europe) CHR HKLM\SOFTWARE\Policies\Google: Restriction <======= ATTENTION CHR HKU\S-1-5-21-412403155-3744995412-2101684747-1001\SOFTWARE\Policies\Google: Restriction <======= ATTENTION ==================== Internet (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.) Winsock: -> Catalog5 - Accès internet rompu en raison d'un élément manquant. <===== ATTENTION Hosts: Il y a plus d'un élément dans hosts. Voir la section Hosts de Addition.txt Tcpip\Parameters: [DhcpNameServer] 130.104.1.2 130.104.1.1 130.104.254.1 Tcpip\..\Interfaces\{3AE87B54-9EA0-4C00-80EC-0B1E6350921B}: [DhcpNameServer] 130.104.1.2 130.104.1.1 130.104.254.1 Tcpip\..\Interfaces\{DCE8A7BD-604A-4A4A-910F-7818CE73012B}: [DhcpNameServer] 192.168.1.1 Internet Explorer: ================== HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = www.google.com HKU\S-1-5-21-412403155-3744995412-2101684747-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com/ig/redirectdomain?brand=TSEH&bmod=TSEH URLSearchHook: HKLM-x32 -> Par défaut = {CCC7B151-1D8C-11E3-B2AD-F3EF3D58318D} URLSearchHook: HKU\S-1-5-21-412403155-3744995412-2101684747-1001 - (Pas de nom) - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - Pas de fichier SearchScopes: HKU\S-1-5-21-412403155-3744995412-2101684747-1001 -> {2496A4EA-F934-4232-9208-902B6C04B21E} URL = hxxp://rover.ebay.com/rover/1/709-44555-9400-8/4?satitle={searchTerms} SearchScopes: HKU\S-1-5-21-412403155-3744995412-2101684747-1001 -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = Toolbar: HKU\S-1-5-21-412403155-3744995412-2101684747-1001 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2009-09-04] (Google Inc.) IE Session Restore: HKU\S-1-5-21-412403155-3744995412-2101684747-1001 -> est activé. DPF: HKLM-x32 {C345E174-3E87-4F41-A01C-B066A90A49B4} hxxp://trial.trymicrosoftoffice.com/trialoaa/buymsoffice_assets/framework/microsoft/wrc32.ocx Handler: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - Pas de fichier Handler-x32: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.14.0.8089.0726.dll [2009-07-26] (Microsoft Corporation) Handler-x32: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.14.0.8089.0726.dll [2009-07-26] (Microsoft Corporation) Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - Pas de fichier Handler: WSWSVCUchrome - Pas de valeur CLSID Filter: application/octet-stream - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - mscoree.dll Pas de fichier Filter: application/x-complus - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - mscoree.dll Pas de fichier Filter-x32: application/x-ica - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2015-04-08] (Citrix Systems, Inc.) Filter-x32: application/x-ica; charset=euc-jp - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2015-04-08] (Citrix Systems, Inc.) Filter-x32: application/x-ica; charset=ISO-8859-1 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2015-04-08] (Citrix Systems, Inc.) Filter-x32: application/x-ica; charset=MS936 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2015-04-08] (Citrix Systems, Inc.) Filter-x32: application/x-ica; charset=MS949 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2015-04-08] (Citrix Systems, Inc.) Filter-x32: application/x-ica; charset=MS950 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2015-04-08] (Citrix Systems, Inc.) Filter-x32: application/x-ica; charset=UTF-8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2015-04-08] (Citrix Systems, Inc.) Filter-x32: application/x-ica; charset=UTF8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2015-04-08] (Citrix Systems, Inc.) Filter-x32: application/x-ica;charset=euc-jp - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2015-04-08] (Citrix Systems, Inc.) Filter-x32: application/x-ica;charset=ISO-8859-1 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2015-04-08] (Citrix Systems, Inc.) Filter-x32: application/x-ica;charset=MS936 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2015-04-08] (Citrix Systems, Inc.) Filter-x32: application/x-ica;charset=MS949 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2015-04-08] (Citrix Systems, Inc.) Filter-x32: application/x-ica;charset=MS950 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2015-04-08] (Citrix Systems, Inc.) Filter-x32: application/x-ica;charset=UTF-8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2015-04-08] (Citrix Systems, Inc.) Filter-x32: application/x-ica;charset=UTF8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2015-04-08] (Citrix Systems, Inc.) Filter: application/x-msdownload - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - mscoree.dll Pas de fichier Filter-x32: ica - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll [2015-04-08] (Citrix Systems, Inc.) FireFox: ======== FF ProfilePath: C:\Users\Estelle Courtois\AppData\Roaming\Mozilla\Firefox\Profiles\fmt08b2d.default-1441103486107 FF Session Restore: -> est activé. FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_21_0_0_213.dll [2016-04-07] () FF Plugin: @microsoft.com/GENUINE -> disabled [Pas de fichier] FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-12] ( Microsoft Corporation) FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [2014-04-29] (Adobe Systems) FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_21_0_0_213.dll [2016-04-07] () FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2014-02-21] () FF Plugin-x32: @autodesk.com/Autodesk Player Plugin,version=1.1.0.1 -> C:\Program Files (x86)\Autodesk\Autodesk Player Plugin\npAdPlayerPlugin_FF.dll [2015-05-29] (Autodesk) FF Plugin-x32: @Citrix.com/npican -> C:\Program Files (x86)\Citrix\ICA Client\npicaN.dll [2015-04-08] (Citrix Systems, Inc.) FF Plugin-x32: @java.com/DTPlugin,version=11.40.2 -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\dtplugin\npDeployJava1.dll [2015-03-20] (Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=11.40.2 -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\plugin2\npjp2.dll [2015-03-20] (Oracle Corporation) FF Plugin-x32: @mcafee.com/SAFFPlugin -> C:\Program Files (x86)\McAfee\SiteAdvisor\npmcffplg32.dll [Pas de fichier] FF Plugin-x32: @microsoft.com/GENUINE -> disabled [Pas de fichier] FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-12] ( Microsoft Corporation) FF Plugin-x32: @microsoft.com/WLPG,version=14.0.8081.0709 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2009-07-10] (Microsoft Corporation) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.1\npGoogleUpdate3.dll [2015-07-22] (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.1\npGoogleUpdate3.dll [2015-07-22] (Google Inc.) FF Plugin-x32: @videolan.org/vlc,version=2.0.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2012-12-13] (VideoLAN) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2015-12-18] (Adobe Systems Inc.) FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll [2014-04-29] (Adobe Systems) FF Plugin HKU\S-1-5-21-412403155-3744995412-2101684747-1001: @talk.google.com/GoogleTalkPlugin -> C:\Users\Estelle Courtois\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll [2015-12-08] (Google) FF Plugin HKU\S-1-5-21-412403155-3744995412-2101684747-1001: @talk.google.com/O1DPlugin -> C:\Users\Estelle Courtois\AppData\Roaming\Mozilla\plugins\npo1d.dll [2015-12-08] (Google) FF Plugin HKU\S-1-5-21-412403155-3744995412-2101684747-1001: @tools.google.com/Google Update;version=3 -> C:\Users\Estelle Courtois\AppData\Local\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-01] (Google Inc.) FF Plugin HKU\S-1-5-21-412403155-3744995412-2101684747-1001: @tools.google.com/Google Update;version=9 -> C:\Users\Estelle Courtois\AppData\Local\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-01] (Google Inc.) FF Plugin HKU\S-1-5-21-412403155-3744995412-2101684747-1001: vasco.com/VascoCardReaderPlugin -> C:\Users\Estelle Courtois\AppData\Roaming\VASCO\VascoCardReaderPlugin\3.2.3.4\npVascoCardReaderPlugin.dll [2014-10-27] (VASCO Data Security) FF Plugin HKU\S-1-5-21-412403155-3744995412-2101684747-1001: vasco.com/VascoCardReaderPlugin64 -> C:\Users\Estelle Courtois\AppData\Roaming\VASCO\VascoCardReaderPlugin\3.2.3.4\npVascoCardReaderPlugin64.dll [2014-10-27] (VASCO Data Security) FF Plugin ProgramFiles/Appdata: C:\Users\Estelle Courtois\AppData\Roaming\mozilla\plugins\npgoogletalk.dll [2015-12-08] (Google) FF Plugin ProgramFiles/Appdata: C:\Users\Estelle Courtois\AppData\Roaming\mozilla\plugins\npo1d.dll [2015-12-08] (Google) FF Extension: Belgium eID - C:\Users\Estelle Courtois\AppData\Roaming\Mozilla\Firefox\Profiles\fmt08b2d.default-1441103486107\extensions\belgiumeid@eid.belgium.be.xpi [2015-09-27] FF Extension: Dictionnaires français - C:\Users\Estelle Courtois\AppData\Roaming\Mozilla\Firefox\Profiles\fmt08b2d.default-1441103486107\Extensions\fr-dicollecte@dictionaries.addons.mozilla.org [2016-03-14] FF Extension: Belgium eID - C:\Program Files (x86)\Mozilla Firefox\extensions\belgiumeid@eid.belgium.be [2016-03-19] [non signé] FF Extension: Default - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}.xpi [2016-03-19] [non signé] FF HKLM-x32\...\Firefox\Extensions: [belgiumeid@eid.belgium.be] - C:\Program Files\Mozilla Firefox\extensions\belgiumeid@eid.belgium.be => non trouvé(e) Chrome: ======= CHR dev: Chrome dev build détecté(e)! <======= ATTENTION CHR Profile: C:\Users\Estelle Courtois\AppData\Local\Google\Chrome\User Data\Default CHR HKU\S-1-5-21-412403155-3744995412-2101684747-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [apdfllckaahabafndbhieahigkjlhalf] - C:\Users\ESTELL~1\AppData\Local\Google\Drive\user_default\apdfllckaahabafndbhieahigkjlhalf_live.crx [2015-11-20] CHR HKU\S-1-5-21-412403155-3744995412-2101684747-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh] - hxxps://clients2.google.com/service/update2/crx CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - C:\Program Files (x86)\McAfee\SiteAdvisor\McChPlg.crx ==================== Services (Avec liste blanche) ======================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) "3a9f000994ffd761" => service n'a pas pu être déverrouillé. <===== ATTENTION R2 AdAppMgrSvc; C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\AdAppMgrSvc.exe [1145928 2016-02-24] (Autodesk Inc.) S2 Autodesk Content Service; C:\Program Files\Autodesk\Content Service\Connect.Service.ContentService.exe [31160 2015-02-05] (Autodesk, Inc.) S2 hasplms; C:\Windows\system32\hasplms.exe [4466120 2013-01-11] (SafeNet Inc.) S2 lmadmin; C:\Program Files (x86)\Common Files\Scia\LicenceServer\FlexnetServer\lmadmin.exe [6587728 2011-08-05] (Flexera Software, Inc.) S2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1135416 2015-10-05] (Malwarebytes) S4 SolidWorks Licensing Service; C:\Program Files (x86)\Common Files\SolidWorks Shared\Service\SolidWorksLicensing.exe [79360 2013-02-27] (SolidWorks) [Fichier non signé] S4 TemproMonitoringService; C:\Program Files (x86)\Toshiba TEMPRO\TemproSvc.exe [116104 2009-08-06] (Toshiba Europe GmbH) S3 WinHttpAutoProxySvc; winhttp.dll [X] ===================== Pilotes (Avec liste blanche) ========================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) S3 1394ohci; C:\Windows\system32\drivers\1394ohci.sys [229888 2010-11-20] () [Fichier non signé] U5 3a9f000994ffd761; C:\Windows\System32\Drivers\3a9f000994ffd761.sys [72640 2016-03-11] () <===== ATTENTION Necurs Rootkit? R0 ACPI; C:\Windows\System32\drivers\ACPI.sys [334208 2010-11-20] () [Fichier non signé] S3 AcpiPmi; C:\Windows\system32\drivers\acpipmi.sys [12800 2010-11-20] () [Fichier non signé] S3 adp94xx; C:\Windows\system32\DRIVERS\adp94xx.sys [491088 2009-07-14] () [Fichier non signé] S3 adpahci; C:\Windows\system32\DRIVERS\adpahci.sys [339536 2009-07-14] () [Fichier non signé] S3 adpu320; C:\Windows\system32\DRIVERS\adpu320.sys [182864 2009-07-14] () [Fichier non signé] R1 AFD; C:\Windows\system32\drivers\afd.sys [497664 2015-10-13] () [Fichier non signé] S3 agp440; C:\Windows\system32\drivers\agp440.sys [61008 2009-07-14] () [Fichier non signé] R2 aksdf; C:\Windows\system32\drivers\aksdf.sys [90056 2013-01-14] () [Fichier non signé] R2 aksfridge; C:\Windows\system32\drivers\aksfridge.sys [141064 2013-02-19] () [Fichier non signé] S3 aliide; C:\Windows\system32\drivers\aliide.sys [15440 2009-07-14] () [Fichier non signé] S3 amdide; C:\Windows\system32\drivers\amdide.sys [15440 2009-07-14] () [Fichier non signé] S3 AmdK8; C:\Windows\system32\DRIVERS\amdk8.sys [64512 2009-07-14] () [Fichier non signé] S3 AmdPPM; C:\Windows\system32\DRIVERS\amdppm.sys [60928 2009-07-14] () [Fichier non signé] S3 amdsata; C:\Windows\system32\drivers\amdsata.sys [107904 2011-03-11] () [Fichier non signé] S3 amdsbs; C:\Windows\system32\DRIVERS\amdsbs.sys [194128 2009-07-14] () [Fichier non signé] R0 amdxata; C:\Windows\System32\drivers\amdxata.sys [27008 2011-03-11] () [Fichier non signé] S3 AppID; C:\Windows\system32\drivers\appid.sys [61440 2015-10-01] () [Fichier non signé] S3 arc; C:\Windows\system32\DRIVERS\arc.sys [87632 2009-07-14] () [Fichier non signé] S3 arcsas; C:\Windows\system32\DRIVERS\arcsas.sys [97856 2009-07-14] () [Fichier non signé] R3 AsyncMac; C:\Windows\System32\DRIVERS\asyncmac.sys [23040 2009-07-14] () [Fichier non signé] R0 atapi; C:\Windows\System32\drivers\atapi.sys [24128 2009-07-14] () [Fichier non signé] S3 athr; C:\Windows\System32\DRIVERS\athrx.sys [1394688 2009-06-20] () [Fichier non signé] S3 atikmdag; C:\Windows\system32\drivers\atikmdag.sys [5020672 2009-07-13] () [Fichier non signé] S3 b06bdrv; C:\Windows\system32\DRIVERS\bxvbda.sys [468480 2009-06-10] () [Fichier non signé] S3 b57nd60a; C:\Windows\System32\DRIVERS\b57nd60a.sys [270848 2009-06-10] () [Fichier non signé] U5 BattC; C:\Windows\System32\Drivers\BattC.sys [28240 2009-07-14] () [Fichier non signé] R1 Beep; C:\Windows\System32\Drivers\Beep.sys [6656 2009-07-14] () R1 blbdrive; C:\Windows\system32\DRIVERS\blbdrive.sys [45056 2009-07-14] () [Fichier non signé] R3 bowser; C:\Windows\System32\DRIVERS\bowser.sys [90624 2011-02-23] () [Fichier non signé] S3 BrFiltLo; C:\Windows\system32\DRIVERS\BrFiltLo.sys [18432 2009-06-10] () [Fichier non signé] S3 BrFiltUp; C:\Windows\system32\DRIVERS\BrFiltUp.sys [8704 2009-06-10] () [Fichier non signé] S3 Brserid; C:\Windows\System32\Drivers\Brserid.sys [286720 2009-07-14] () [Fichier non signé] S3 BrSerWdm; C:\Windows\System32\Drivers\BrSerWdm.sys [47104 2009-06-10] () [Fichier non signé] S3 BrUsbMdm; C:\Windows\System32\Drivers\BrUsbMdm.sys [14976 2009-06-10] () [Fichier non signé] S3 BrUsbSer; C:\Windows\System32\Drivers\BrUsbSer.sys [14720 2009-06-10] () [Fichier non signé] S3 BTHMODEM; C:\Windows\system32\DRIVERS\bthmodem.sys [72192 2009-07-14] () [Fichier non signé] S4 cdfs; C:\Windows\System32\DRIVERS\cdfs.sys [92160 2009-07-14] () [Fichier non signé] R1 cdrom; C:\Windows\System32\DRIVERS\cdrom.sys [147456 2010-11-20] () [Fichier non signé] S3 circlass; C:\Windows\system32\DRIVERS\circlass.sys [45568 2009-07-14] () [Fichier non signé] R0 CLFS; C:\Windows\System32\CLFS.sys [367552 2015-03-04] () [Fichier non signé] R3 CmBatt; C:\Windows\system32\DRIVERS\CmBatt.sys [17664 2009-07-14] () [Fichier non signé] S3 cmdide; C:\Windows\system32\drivers\cmdide.sys [17488 2009-07-14] () [Fichier non signé] R0 CNG; C:\Windows\System32\Drivers\cng.sys [460776 2015-09-23] () [Fichier non signé] R0 Compbatt; C:\Windows\System32\DRIVERS\compbatt.sys [21584 2009-07-14] () [Fichier non signé] R3 CompositeBus; C:\Windows\system32\drivers\CompositeBus.sys [38912 2010-11-20] () [Fichier non signé] S4 crcdisk; C:\Windows\system32\DRIVERS\crcdisk.sys [24144 2009-07-14] () [Fichier non signé] R1 ctxusbm; C:\Windows\System32\DRIVERS\ctxusbm.sys [131384 2015-03-20] () [Fichier non signé] R1 DfsC; C:\Windows\System32\Drivers\dfsc.sys [102400 2010-11-20] () [Fichier non signé] R1 discache; C:\Windows\System32\drivers\discache.sys [40448 2009-07-14] () [Fichier non signé] R0 Disk; C:\Windows\System32\DRIVERS\disk.sys [73280 2009-07-14] () [Fichier non signé] S3 drmkaud; C:\Windows\system32\drivers\drmkaud.sys [5632 2015-12-08] () [Fichier non signé] R3 DXGKrnl; C:\Windows\System32\drivers\dxgkrnl.sys [985536 2014-06-16] () [Fichier non signé] S3 ebdrv; C:\Windows\system32\DRIVERS\evbda.sys [3286016 2009-06-10] () [Fichier non signé] S3 elxstor; C:\Windows\system32\DRIVERS\elxstor.sys [530496 2009-07-14] () [Fichier non signé] S3 ErrDev; C:\Windows\system32\drivers\errdev.sys [9728 2009-07-14] () [Fichier non signé] S3 exfat; C:\Windows\System32\Drivers\exfat.sys [195072 2009-07-14] () [Fichier non signé] R3 fastfat; C:\Windows\System32\Drivers\fastfat.sys [204800 2009-07-14] () [Fichier non signé] S3 fdc; C:\Windows\system32\DRIVERS\fdc.sys [29696 2009-07-14] () [Fichier non signé] R0 FileInfo; C:\Windows\System32\drivers\fileinfo.sys [70224 2009-07-14] () [Fichier non signé] S3 Filetrace; C:\Windows\System32\drivers\filetrace.sys [34304 2009-07-14] () [Fichier non signé] S3 flpydisk; C:\Windows\system32\DRIVERS\flpydisk.sys [24576 2009-07-14] () [Fichier non signé] R0 FltMgr; C:\Windows\System32\drivers\fltmgr.sys [289664 2010-11-20] () [Fichier non signé] S3 FsDepends; C:\Windows\System32\drivers\FsDepends.sys [55376 2009-07-14] () [Fichier non signé] U0 Fs_Rec; C:\Windows\System32\Drivers\Fs_Rec.sys [23408 2012-03-01] () R0 fvevol; C:\Windows\System32\DRIVERS\fvevol.sys [223752 2013-01-24] () [Fichier non signé] S3 gagp30kx; C:\Windows\system32\DRIVERS\gagp30kx.sys [65088 2009-07-14] () [Fichier non signé] R3 GEARAspiWDM; C:\Windows\System32\DRIVERS\GEARAspiWDM.sys [33240 2012-08-21] () [Fichier non signé] R2 hardlock; C:\Windows\system32\drivers\hardlock.sys [331144 2013-03-11] () [Fichier non signé] S3 hcw85cir; C:\Windows\system32\drivers\hcw85cir.sys [31232 2009-06-10] () [Fichier non signé] S3 HdAudAddService; C:\Windows\system32\drivers\HdAudio.sys [350208 2010-11-20] () [Fichier non signé] R3 HDAudBus; C:\Windows\system32\drivers\HDAudBus.sys [122368 2010-11-20] () [Fichier non signé] S3 HidBatt; C:\Windows\system32\DRIVERS\HidBatt.sys [26624 2009-07-14] () [Fichier non signé] S3 HidBth; C:\Windows\system32\DRIVERS\hidbth.sys [100864 2009-07-14] () [Fichier non signé] S3 HidIr; C:\Windows\system32\DRIVERS\hidir.sys [46592 2009-07-14] () [Fichier non signé] S3 HidUsb; C:\Windows\System32\DRIVERS\hidusb.sys [30208 2010-11-20] () [Fichier non signé] S3 HpSAMD; C:\Windows\system32\drivers\HpSAMD.sys [78720 2010-11-20] () [Fichier non signé] R3 HTTP; C:\Windows\System32\drivers\HTTP.sys [754688 2015-02-25] () [Fichier non signé] R0 hwpolicy; C:\Windows\System32\drivers\hwpolicy.sys [14720 2010-11-20] () [Fichier non signé] R3 i8042prt; C:\Windows\system32\drivers\i8042prt.sys [105472 2009-07-14] () [Fichier non signé] R0 iaStor; C:\Windows\System32\DRIVERS\iaStor.sys [408600 2009-06-04] () [Fichier non signé] S3 iaStorV; C:\Windows\system32\drivers\iaStorV.sys [410496 2011-03-11] () [Fichier non signé] R3 igfx; C:\Windows\System32\DRIVERS\igdkmd64.sys [7369600 2009-08-27] () [Fichier non signé] S3 iirsp; C:\Windows\system32\DRIVERS\iirsp.sys [44112 2009-07-14] () [Fichier non signé] R3 IntcAzAudAddService; C:\Windows\System32\drivers\RTKVHD64.sys [1966624 2009-07-28] () [Fichier non signé] R3 IntcHdmiAddService; C:\Windows\System32\drivers\IntcHdmi.sys [139264 2009-07-10] () [Fichier non signé] S3 intelide; C:\Windows\system32\drivers\intelide.sys [16960 2009-07-14] () [Fichier non signé] R3 intelppm; C:\Windows\System32\DRIVERS\intelppm.sys [62464 2009-07-14] () [Fichier non signé] R3 IpFilterDriver; C:\Windows\System32\DRIVERS\ipfltdrv.sys [82944 2010-11-20] () [Fichier non signé] S3 IPMIDRV; C:\Windows\system32\drivers\IPMIDrv.sys [78848 2010-11-20] () [Fichier non signé] S3 IPNAT; C:\Windows\System32\drivers\ipnat.sys [116224 2009-07-14] () [Fichier non signé] S3 IRENUM; C:\Windows\System32\drivers\irenum.sys [17920 2009-07-14] () [Fichier non signé] S3 isapnp; C:\Windows\system32\drivers\isapnp.sys [20544 2009-07-14] () [Fichier non signé] S3 iScsiPrt; C:\Windows\system32\drivers\msiscsi.sys [274880 2014-02-04] () [Fichier non signé] R3 kbdclass; C:\Windows\system32\drivers\kbdclass.sys [50768 2009-07-14] () [Fichier non signé] S3 kbdhid; C:\Windows\system32\drivers\kbdhid.sys [33280 2010-11-20] () [Fichier non signé] R0 KSecDD; C:\Windows\System32\Drivers\ksecdd.sys [95680 2016-02-11] () [Fichier non signé] R0 KSecPkg; C:\Windows\System32\Drivers\ksecpkg.sys [154560 2016-02-11] () [Fichier non signé] R3 ksthunk; C:\Windows\system32\drivers\ksthunk.sys [20992 2009-07-14] () [Fichier non signé] R2 lltdio; C:\Windows\System32\DRIVERS\lltdio.sys [60928 2009-07-14] () [Fichier non signé] R3 LPCFilter; C:\Windows\system32\DRIVERS\LPCFilter.sys [44912 2009-07-30] () [Fichier non signé] S3 LSI_FC; C:\Windows\system32\DRIVERS\lsi_fc.sys [114752 2009-07-14] () [Fichier non signé] S3 LSI_SAS; C:\Windows\system32\DRIVERS\lsi_sas.sys [106560 2009-07-14] () [Fichier non signé] S3 LSI_SAS2; C:\Windows\system32\DRIVERS\lsi_sas2.sys [65600 2009-07-14] () [Fichier non signé] S3 LSI_SCSI; C:\Windows\system32\DRIVERS\lsi_scsi.sys [115776 2009-07-14] () [Fichier non signé] R2 luafv; C:\Windows\system32\drivers\luafv.sys [113152 2009-07-14] () [Fichier non signé] S3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2015-10-05] (Malwarebytes) S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63704 2015-10-05] () [Fichier non signé] S3 megasas; C:\Windows\system32\DRIVERS\megasas.sys [35392 2009-07-14] () [Fichier non signé] S3 MegaSR; C:\Windows\system32\DRIVERS\MegaSR.sys [284736 2009-07-14] () [Fichier non signé] S3 Modem; C:\Windows\System32\drivers\modem.sys [40448 2009-07-14] () [Fichier non signé] R3 monitor; C:\Windows\System32\DRIVERS\monitor.sys [30208 2009-07-14] () [Fichier non signé] R3 mouclass; C:\Windows\System32\DRIVERS\mouclass.sys [49216 2009-07-14] () [Fichier non signé] S3 mouhid; C:\Windows\System32\DRIVERS\mouhid.sys [31232 2009-07-14] () [Fichier non signé] R0 mountmgr; C:\Windows\System32\drivers\mountmgr.sys [94656 2015-07-15] () [Fichier non signé] R1 MPFP; C:\Windows\System32\Drivers\Mpfp.sys [176144 2009-04-09] () [Fichier non signé] S3 mpio; C:\Windows\system32\drivers\mpio.sys [155008 2010-11-20] () [Fichier non signé] R3 mpsdrv; C:\Windows\System32\drivers\mpsdrv.sys [77312 2009-07-14] () [Fichier non signé] R3 MRxDAV; C:\Windows\system32\drivers\mrxdav.sys [141312 2016-01-07] () [Fichier non signé] R3 mrxsmb; C:\Windows\System32\DRIVERS\mrxsmb.sys [159232 2016-02-11] () [Fichier non signé] R3 mrxsmb10; C:\Windows\System32\DRIVERS\mrxsmb10.sys [290816 2016-02-11] () [Fichier non signé] R3 mrxsmb20; C:\Windows\System32\DRIVERS\mrxsmb20.sys [129024 2016-02-11] () [Fichier non signé] R0 msahci; C:\Windows\System32\drivers\msahci.sys [31104 2010-11-20] () [Fichier non signé] S3 msdsm; C:\Windows\system32\drivers\msdsm.sys [140672 2010-11-20] () [Fichier non signé] R1 Msfs; C:\Windows\System32\Drivers\Msfs.sys [26112 2009-07-14] () S3 mshidkmdf; C:\Windows\System32\drivers\mshidkmdf.sys [8192 2009-07-14] () [Fichier non signé] R0 msisadrv; C:\Windows\System32\drivers\msisadrv.sys [15424 2009-07-14] () [Fichier non signé] S3 MSKSSRV; C:\Windows\System32\drivers\MSKSSRV.sys [11136 2009-07-14] () [Fichier non signé] S3 MSPCLOCK; C:\Windows\System32\drivers\MSPCLOCK.sys [7168 2009-07-14] () [Fichier non signé] S3 MSPQM; C:\Windows\System32\drivers\MSPQM.sys [6784 2009-07-14] () [Fichier non signé] S3 MsRPC; C:\Windows\System32\Drivers\MsRPC.sys [366976 2010-11-20] () R1 mssmbios; C:\Windows\system32\drivers\mssmbios.sys [32320 2009-07-14] () [Fichier non signé] S3 MSTEE; C:\Windows\System32\drivers\MSTEE.sys [8064 2009-07-14] () [Fichier non signé] S3 MTConfig; C:\Windows\system32\DRIVERS\MTConfig.sys [15360 2009-07-14] () [Fichier non signé] R0 Mup; C:\Windows\System32\Drivers\mup.sys [60496 2009-07-14] () [Fichier non signé] R3 NativeWifiP; C:\Windows\System32\DRIVERS\nwifi.sys [318976 2009-07-14] () [Fichier non signé] R0 NDIS; C:\Windows\System32\drivers\ndis.sys [950720 2015-10-13] () [Fichier non signé] S3 NdisCap; C:\Windows\System32\DRIVERS\ndiscap.sys [35328 2009-07-14] () [Fichier non signé] R3 NdisTapi; C:\Windows\System32\DRIVERS\ndistapi.sys [24064 2009-07-14] () [Fichier non signé] R3 Ndisuio; C:\Windows\System32\DRIVERS\ndisuio.sys [56832 2010-11-20] () [Fichier non signé] R3 NdisWan; C:\Windows\System32\DRIVERS\ndiswan.sys [164352 2010-11-20] () [Fichier non signé] R3 NDProxy; C:\Windows\System32\Drivers\NDProxy.sys [57856 2010-11-20] () R1 NetBIOS; C:\Windows\System32\DRIVERS\netbios.sys [44544 2009-07-14] () [Fichier non signé] R1 NetBT; C:\Windows\System32\DRIVERS\netbt.sys [261632 2010-11-20] () [Fichier non signé] S3 nfrd960; C:\Windows\system32\DRIVERS\nfrd960.sys [51264 2009-07-14] () [Fichier non signé] R1 Npfs; C:\Windows\System32\Drivers\Npfs.sys [44032 2009-07-14] () R1 nsiproxy; C:\Windows\System32\drivers\nsiproxy.sys [24576 2009-07-14] () [Fichier non signé] R3 Ntfs; C:\Windows\System32\Drivers\Ntfs.sys [1684416 2016-01-11] () R1 Null; C:\Windows\System32\Drivers\Null.sys [6144 2009-07-14] () [Fichier non signé] S3 nvraid; C:\Windows\system32\drivers\nvraid.sys [148352 2011-03-11] () [Fichier non signé] S3 nvstor; C:\Windows\system32\drivers\nvstor.sys [166272 2011-03-11] () [Fichier non signé] S3 nv_agp; C:\Windows\system32\drivers\nv_agp.sys [122960 2009-07-14] () [Fichier non signé] S3 ohci1394; C:\Windows\system32\drivers\ohci1394.sys [72832 2009-07-14] () [Fichier non signé] S3 Parport; C:\Windows\system32\DRIVERS\parport.sys [97280 2009-07-14] () [Fichier non signé] R0 partmgr; C:\Windows\System32\drivers\partmgr.sys [75120 2012-03-17] () [Fichier non signé] R0 pci; C:\Windows\System32\drivers\pci.sys [184704 2010-11-20] () [Fichier non signé] R0 pciide; C:\Windows\System32\drivers\pciide.sys [12352 2009-07-14] () [Fichier non signé] S3 pcmcia; C:\Windows\system32\DRIVERS\pcmcia.sys [220752 2009-07-14] () [Fichier non signé] R0 pcw; C:\Windows\System32\drivers\pcw.sys [50768 2009-07-14] () [Fichier non signé] R2 PEAUTH; C:\Windows\System32\drivers\peauth.sys [663552 2015-02-03] () [Fichier non signé] R3 PGEffect; C:\Windows\System32\DRIVERS\pgeffect.sys [35008 2009-06-22] () [Fichier non signé] R3 PptpMiniport; C:\Windows\System32\DRIVERS\raspptp.sys [111104 2010-11-20] () [Fichier non signé] S3 Processor; C:\Windows\system32\DRIVERS\processr.sys [60416 2009-07-14] () [Fichier non signé] R1 Psched; C:\Windows\System32\DRIVERS\pacer.sys [131584 2010-11-20] () [Fichier non signé] S3 ql2300; C:\Windows\system32\DRIVERS\ql2300.sys [1524816 2009-07-14] () [Fichier non signé] S3 ql40xx; C:\Windows\system32\DRIVERS\ql40xx.sys [128592 2009-07-14] () [Fichier non signé] S3 QWAVEdrv; C:\Windows\system32\drivers\qwavedrv.sys [46592 2009-07-14] () [Fichier non signé] S3 RasAcd; C:\Windows\System32\DRIVERS\rasacd.sys [14848 2009-07-14] () [Fichier non signé] R3 RasAgileVpn; C:\Windows\System32\DRIVERS\AgileVpn.sys [60416 2009-07-14] () [Fichier non signé] R3 Rasl2tp; C:\Windows\System32\DRIVERS\rasl2tp.sys [129536 2010-11-20] () [Fichier non signé] R3 RasPppoe; C:\Windows\System32\DRIVERS\raspppoe.sys [92672 2009-07-14] () [Fichier non signé] R3 RasSstp; C:\Windows\System32\DRIVERS\rassstp.sys [83968 2009-07-14] () [Fichier non signé] R1 rdbss; C:\Windows\System32\DRIVERS\rdbss.sys [309248 2010-11-20] () [Fichier non signé] S3 rdpbus; C:\Windows\system32\DRIVERS\rdpbus.sys [24064 2009-07-14] () [Fichier non signé] R1 RDPCDD; C:\Windows\System32\DRIVERS\RDPCDD.sys [7680 2009-07-14] () [Fichier non signé] R1 RDPENCDD; C:\Windows\System32\drivers\rdpencdd.sys [7680 2009-07-14] () [Fichier non signé] R1 RDPREFMP; C:\Windows\System32\drivers\rdprefmp.sys [8192 2009-07-14] () [Fichier non signé] S3 RDPWD; C:\Windows\System32\Drivers\RDPWD.sys [212480 2014-07-17] () R0 rdyboost; C:\Windows\System32\drivers\rdyboost.sys [213888 2010-11-20] () [Fichier non signé] R2 rspndr; C:\Windows\System32\DRIVERS\rspndr.sys [76800 2009-07-14] () [Fichier non signé] S3 RSUSBSTOR; C:\Windows\System32\Drivers\RtsUStor.sys [222208 2009-07-30] () [Fichier non signé] R3 RTL8167; C:\Windows\System32\DRIVERS\Rt64win7.sys [215040 2009-05-22] () [Fichier non signé] R3 rtl8192se; C:\Windows\System32\DRIVERS\rtl8192se.sys [942080 2009-08-26] () [Fichier non signé] S3 sbp2port; C:\Windows\system32\drivers\sbp2port.sys [103808 2010-11-20] () [Fichier non signé] S3 scfilter; C:\Windows\System32\DRIVERS\scfilter.sys [29696 2010-11-20] () [Fichier non signé] S4 secdrv; C:\Windows\System32\Drivers\secdrv.sys [23040 2009-06-10] () S3 Serenum; C:\Windows\system32\DRIVERS\serenum.sys [23552 2009-07-14] () [Fichier non signé] S3 Serial; C:\Windows\system32\DRIVERS\serial.sys [94208 2009-07-14] () [Fichier non signé] S3 sermouse; C:\Windows\system32\DRIVERS\sermouse.sys [26624 2009-07-14] () [Fichier non signé] S3 sffdisk; C:\Windows\system32\drivers\sffdisk.sys [14336 2009-07-14] () [Fichier non signé] S3 sffp_mmc; C:\Windows\system32\drivers\sffp_mmc.sys [13824 2009-07-14] () [Fichier non signé] S3 sffp_sd; C:\Windows\system32\drivers\sffp_sd.sys [14336 2010-11-20] () [Fichier non signé] S3 sfloppy; C:\Windows\system32\DRIVERS\sfloppy.sys [16896 2009-07-14] () [Fichier non signé] S3 SiSRaid2; C:\Windows\system32\DRIVERS\SiSRaid2.sys [43584 2009-07-14] () [Fichier non signé] S3 SiSRaid4; C:\Windows\system32\DRIVERS\sisraid4.sys [80464 2009-07-14] () [Fichier non signé] S3 Smb; C:\Windows\System32\DRIVERS\smb.sys [93184 2009-07-14] () [Fichier non signé] R0 spldr; C:\Windows\System32\Drivers\spldr.sys [19008 2009-07-14] () [Fichier non signé] R3 srv; C:\Windows\System32\DRIVERS\srv.sys [467456 2011-04-29] () [Fichier non signé] R3 srv2; C:\Windows\System32\DRIVERS\srv2.sys [410112 2011-04-29] () [Fichier non signé] R3 srvnet; C:\Windows\System32\DRIVERS\srvnet.sys [168448 2011-04-29] () [Fichier non signé] S3 stexstor; C:\Windows\system32\DRIVERS\stexstor.sys [24656 2009-07-14] () [Fichier non signé] R3 swenum; C:\Windows\system32\drivers\swenum.sys [12496 2009-07-14] () [Fichier non signé] R3 SynTP; C:\Windows\System32\DRIVERS\SynTP.sys [274480 2009-07-20] () [Fichier non signé] R0 Tcpip; C:\Windows\System32\drivers\tcpip.sys [1903552 2014-04-05] () [Fichier non signé] S3 TCPIP6; C:\Windows\System32\DRIVERS\tcpip.sys [1903552 2014-04-05] () [Fichier non signé] R2 tcpipreg; C:\Windows\System32\drivers\tcpipreg.sys [45568 2012-10-03] () [Fichier non signé] R3 tdcmdpst; C:\Windows\System32\DRIVERS\tdcmdpst.sys [27784 2009-07-30] () [Fichier non signé] S3 TDPIPE; C:\Windows\System32\drivers\tdpipe.sys [15872 2009-07-14] () [Fichier non signé] S3 TDTCP; C:\Windows\System32\drivers\tdtcp.sys [23552 2012-02-17] () [Fichier non signé] R1 tdx; C:\Windows\System32\DRIVERS\tdx.sys [118272 2015-10-13] () [Fichier non signé] R1 TermDD; C:\Windows\system32\drivers\termdd.sys [63360 2010-11-20] () [Fichier non signé] R0 tos_sps64; C:\Windows\System32\DRIVERS\tos_sps64.sys [482384 2009-07-24] () [Fichier non signé] S3 tssecsrv; C:\Windows\System32\DRIVERS\tssecsrv.sys [39936 2014-07-17] () [Fichier non signé] S3 TsUsbFlt; C:\Windows\System32\drivers\tsusbflt.sys [59392 2010-11-20] () [Fichier non signé] S3 tunnel; C:\Windows\System32\DRIVERS\tunnel.sys [125440 2010-11-20] () [Fichier non signé] R0 TVALZ; C:\Windows\System32\DRIVERS\TVALZ_O.SYS [26840 2009-07-14] () [Fichier non signé] R2 TVALZFL; C:\Windows\System32\DRIVERS\TVALZFL.sys [14472 2009-06-19] () [Fichier non signé] S3 uagp35; C:\Windows\system32\DRIVERS\uagp35.sys [64080 2009-07-14] () [Fichier non signé] S4 udfs; C:\Windows\System32\DRIVERS\udfs.sys [328192 2010-11-20] () [Fichier non signé] S3 uliagpkx; C:\Windows\system32\drivers\uliagpkx.sys [64592 2009-07-14] () [Fichier non signé] R3 umbus; C:\Windows\System32\DRIVERS\umbus.sys [48640 2010-11-20] () [Fichier non signé] S3 UmPass; C:\Windows\System32\DRIVERS\umpass.sys [9728 2009-07-14] () [Fichier non signé] S3 USBAAPL64; C:\Windows\System32\Drivers\usbaapl64.sys [54784 2014-06-10] () [Fichier non signé] S3 usbaudio; C:\Windows\System32\drivers\usbaudio.sys [109824 2013-07-12] () [Fichier non signé] R3 usbccgp; C:\Windows\System32\DRIVERS\usbccgp.sys [99840 2013-11-27] () [Fichier non signé] S3 usbcir; C:\Windows\system32\drivers\usbcir.sys [100864 2013-07-12] () [Fichier non signé] R3 usbehci; C:\Windows\System32\DRIVERS\usbehci.sys [53248 2013-11-27] () [Fichier non signé] R3 usbhub; C:\Windows\System32\DRIVERS\usbhub.sys [343040 2013-11-27] () [Fichier non signé] S3 usbohci; C:\Windows\system32\drivers\usbohci.sys [25600 2013-11-27] () [Fichier non signé] S3 usbprint; C:\Windows\System32\DRIVERS\usbprint.sys [25088 2009-07-14] () [Fichier non signé] S3 usbscan; C:\Windows\System32\DRIVERS\usbscan.sys [42496 2013-07-03] () [Fichier non signé] R3 USBSTOR; C:\Windows\System32\DRIVERS\USBSTOR.SYS [91648 2016-02-03] () [Fichier non signé] R3 usbuhci; C:\Windows\System32\DRIVERS\usbuhci.sys [30720 2013-11-27] () [Fichier non signé] R3 usbvideo; C:\Windows\System32\Drivers\usbvideo.sys [185344 2013-07-12] () [Fichier non signé] R0 vdrvroot; C:\Windows\System32\drivers\vdrvroot.sys [36432 2009-07-14] () [Fichier non signé] S3 vga; C:\Windows\System32\DRIVERS\vgapnp.sys [29184 2009-07-14] () [Fichier non signé] R1 VgaSave; C:\Windows\System32\drivers\vga.sys [29184 2009-07-14] () [Fichier non signé] S3 vhdmp; C:\Windows\system32\drivers\vhdmp.sys [215936 2010-11-20] () [Fichier non signé] S3 viaide; C:\Windows\system32\drivers\viaide.sys [17488 2009-07-14] () [Fichier non signé] R0 volmgr; C:\Windows\System32\drivers\volmgr.sys [71552 2010-11-20] () [Fichier non signé] R0 volmgrx; C:\Windows\System32\drivers\volmgrx.sys [363392 2010-11-20] () [Fichier non signé] R0 volsnap; C:\Windows\System32\drivers\volsnap.sys [295808 2010-11-20] () [Fichier non signé] S3 vsmraid; C:\Windows\system32\DRIVERS\vsmraid.sys [161872 2009-07-14] () [Fichier non signé] R3 vwifibus; C:\Windows\System32\DRIVERS\vwifibus.sys [24576 2009-07-14] () [Fichier non signé] R1 vwififlt; C:\Windows\System32\DRIVERS\vwififlt.sys [59904 2009-07-14] () [Fichier non signé] R3 vwifimp; C:\Windows\System32\DRIVERS\vwifimp.sys [17920 2009-07-14] () [Fichier non signé] S3 WacomPen; C:\Windows\system32\DRIVERS\wacompen.sys [27776 2009-07-14] () [Fichier non signé] S3 WANARP; C:\Windows\System32\DRIVERS\wanarp.sys [88576 2010-11-20] () [Fichier non signé] R1 Wanarpv6; C:\Windows\System32\DRIVERS\wanarp.sys [88576 2010-11-20] () [Fichier non signé] S3 Wd; C:\Windows\system32\DRIVERS\wd.sys [21056 2009-07-14] () [Fichier non signé] R0 Wdf01000; C:\Windows\System32\drivers\Wdf01000.sys [785624 2013-06-26] () [Fichier non signé] R1 WfpLwf; C:\Windows\System32\DRIVERS\wfplwf.sys [12800 2009-07-14] () [Fichier non signé] S3 WIMMount; C:\Windows\System32\drivers\wimmount.sys [22096 2009-07-14] () [Fichier non signé] S3 WinUsb; C:\Windows\System32\DRIVERS\WinUsb.sys [41984 2010-11-20] () [Fichier non signé] S3 WmiAcpi; C:\Windows\system32\drivers\wmiacpi.sys [14336 2009-07-14] () [Fichier non signé] S4 ws2ifsl; C:\Windows\system32\drivers\ws2ifsl.sys [21504 2009-07-14] () [Fichier non signé] S3 WSDPrintDevice; C:\Windows\System32\DRIVERS\WSDPrint.sys [23040 2009-07-14] () [Fichier non signé] R3 WudfPf; C:\Windows\System32\drivers\WudfPf.sys [87040 2012-07-26] () [Fichier non signé] R3 WUDFRd; C:\Windows\System32\DRIVERS\WUDFRd.sys [198656 2012-07-26] () [Fichier non signé] U5 3a9f000994ffd761; <===== ATTENTION: Service verrouillé S1 dfkqqomg; \??\C:\Windows\system32\drivers\dfkqqomg.sys [X] S1 gseoqafu; \??\C:\Windows\system32\drivers\gseoqafu.sys [X] S3 RtsUIR; system32\DRIVERS\Rts516xIR.sys [X] S3 USBCCID; system32\DRIVERS\RtsUCcid.sys [X] ==================== NetSvcs (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) ==================== Un mois - Créés - fichiers et dossiers ======== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2016-04-09 18:06 - 2016-04-09 18:07 - 00049705 _____ C:\Users\Estelle Courtois\Desktop\FRST.txt 2016-04-09 18:06 - 2016-04-09 18:06 - 00000000 ____D C:\FRST 2016-04-09 18:05 - 2016-04-09 18:05 - 02374144 _____ (Farbar) C:\Users\Estelle Courtois\Desktop\FRST64.exe 2016-04-09 17:34 - 2016-04-09 17:40 - 00000000 ____D C:\Users\Estelle Courtois\AppData\Roaming\ZHP 2016-04-09 17:29 - 2016-04-09 17:40 - 00000846 _____ C:\Users\Estelle Courtois\Desktop\ZHPDiag.lnk 2016-04-09 17:28 - 2016-04-09 17:28 - 02179584 _____ C:\Users\Estelle Courtois\Desktop\ZHPDiag3.exe 2016-04-09 09:43 - 2016-04-09 09:43 - 00000000 ____D C:\ProgramData\7082923847426558564UL 2016-04-08 12:21 - 2016-04-08 12:21 - 00000024 _____ C:\Users\Estelle Courtois\AppData\Roaming\appdataFr25.bin 2016-04-08 12:04 - 2016-04-08 11:40 - 00003261 _____ C:\Users\Estelle Courtois\Desktop\AdwCleaner[C1].txt 2016-04-08 11:31 - 2016-04-09 09:43 - 00000000 ____D C:\AdwCleaner 2016-04-08 11:30 - 2016-04-08 11:30 - 03119168 _____ C:\Users\Estelle Courtois\Desktop\adwcleaner_5.109.exe 2016-04-08 11:27 - 2016-04-08 11:27 - 00009419 _____ C:\Users\Estelle Courtois\Desktop\ZHPCleaner.txt 2016-04-08 11:15 - 2016-04-08 11:15 - 00000856 _____ C:\Users\Estelle Courtois\Desktop\ZHPCleaner.lnk 2016-04-08 11:14 - 2016-04-08 11:15 - 02232832 _____ C:\Users\Estelle Courtois\Downloads\ZHPCleaner.exe 2016-04-08 09:44 - 2016-04-09 17:40 - 00000220 _____ C:\Users\Estelle 2016-04-08 09:37 - 2016-04-08 09:37 - 02179072 _____ C:\Users\Estelle Courtois\Downloads\ZHPDiag3.exe 2016-04-08 09:30 - 2016-04-08 09:30 - 00014000 _____ C:\Users\Estelle Courtois\Desktop\UsbFix_Report.txt 2016-04-08 01:11 - 2016-04-08 09:31 - 00000000 ____D C:\UsbFix 2016-04-08 01:11 - 2016-04-08 01:11 - 00001455 _____ C:\Users\Estelle Courtois\Desktop\UsbFix.lnk 2016-04-08 01:10 - 2016-04-08 01:10 - 03088956 _____ (El Desaparecido - SosVirus.net - UsbFix.net) C:\Users\Estelle Courtois\Downloads\UsbFix_2016_8.215.exe 2016-04-07 21:37 - 2016-04-07 21:37 - 00000000 ____D C:\OneDriveTemp 2016-04-03 22:39 - 2016-04-03 22:39 - 00192216 _____ (Malwarebytes) C:\Windows\system32\Drivers\4F165F6C.sys 2016-04-03 22:34 - 2015-10-05 09:50 - 00109272 _____ C:\Windows\system32\Drivers\mbamchameleon.sys 2016-04-03 22:34 - 2015-10-05 09:50 - 00063704 _____ C:\Windows\system32\Drivers\mwac.sys 2016-04-03 22:32 - 2016-04-03 22:38 - 00192216 _____ (Malwarebytes) C:\Windows\system32\Drivers\5EB05A55.sys 2016-03-19 17:29 - 2016-03-20 23:05 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox 2016-03-19 14:29 - 2016-03-19 14:29 - 00000000 ____D C:\Users\Estelle Courtois\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox 2016-03-16 13:14 - 2016-03-16 13:14 - 00326005 _____ C:\Users\Estelle Courtois\Documents\Convention_de_stage_EstelleCourtois.pdf 2016-03-11 15:33 - 2016-03-21 01:28 - 00000000 ____D C:\Users\Estelle Courtois\Desktop\Geotechnic Design 2016-03-11 12:29 - 2016-03-11 12:29 - 00072640 _____ C:\Windows\system32\Drivers\3a9f000994ffd761.sys 2016-03-10 18:27 - 2016-02-09 08:53 - 00387792 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll 2016-03-10 18:27 - 2016-02-09 08:10 - 00341200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll 2016-03-10 18:27 - 2016-02-08 23:05 - 20352512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll 2016-03-10 18:27 - 2016-02-08 22:51 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb 2016-03-10 18:27 - 2016-02-08 22:39 - 00496640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll 2016-03-10 18:27 - 2016-02-08 22:39 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll 2016-03-10 18:27 - 2016-02-08 22:38 - 00341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec 2016-03-10 18:27 - 2016-02-08 22:38 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll 2016-03-10 18:27 - 2016-02-08 22:37 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll 2016-03-10 18:27 - 2016-02-08 22:34 - 02280448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll 2016-03-10 18:27 - 2016-02-08 22:32 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll 2016-03-10 18:27 - 2016-02-08 22:31 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll 2016-03-10 18:27 - 2016-02-08 22:30 - 00476160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll 2016-03-10 18:27 - 2016-02-08 22:28 - 00663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll 2016-03-10 18:27 - 2016-02-08 22:28 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll 2016-03-10 18:27 - 2016-02-08 22:28 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe 2016-03-10 18:27 - 2016-02-08 22:20 - 00416256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll 2016-03-10 18:27 - 2016-02-08 22:16 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll 2016-03-10 18:27 - 2016-02-08 22:15 - 00091136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll 2016-03-10 18:27 - 2016-02-08 22:13 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll 2016-03-10 18:27 - 2016-02-08 22:12 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll 2016-03-10 18:27 - 2016-02-08 22:11 - 00279040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll 2016-03-10 18:27 - 2016-02-08 22:10 - 04611072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll 2016-03-10 18:27 - 2016-02-08 22:10 - 00130048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll 2016-03-10 18:27 - 2016-02-08 22:03 - 00230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll 2016-03-10 18:27 - 2016-02-08 22:02 - 13012480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll 2016-03-10 18:27 - 2016-02-08 22:02 - 00687104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll 2016-03-10 18:27 - 2016-02-08 22:01 - 02050560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl 2016-03-10 18:27 - 2016-02-08 22:01 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll 2016-03-10 18:27 - 2016-02-08 21:43 - 02121216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll 2016-03-10 18:27 - 2016-02-08 21:39 - 01311744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll 2016-03-10 18:27 - 2016-02-08 21:38 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll 2016-03-10 18:27 - 2016-02-08 20:41 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb 2016-03-10 18:27 - 2016-02-08 20:41 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll 2016-03-10 18:27 - 2016-02-08 20:27 - 02887680 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll 2016-03-10 18:27 - 2016-02-08 20:27 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll 2016-03-10 18:27 - 2016-02-08 20:26 - 00571904 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll 2016-03-10 18:27 - 2016-02-08 20:26 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll 2016-03-10 18:27 - 2016-02-08 20:19 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll 2016-03-10 18:27 - 2016-02-08 20:18 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll 2016-03-10 18:27 - 2016-02-08 20:16 - 06052352 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll 2016-03-10 18:27 - 2016-02-08 20:15 - 00615936 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll 2016-03-10 18:27 - 2016-02-08 20:14 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe 2016-03-10 18:27 - 2016-02-08 20:14 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe 2016-03-10 18:27 - 2016-02-08 20:13 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll 2016-03-10 18:27 - 2016-02-08 20:13 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll 2016-03-10 18:27 - 2016-02-08 20:06 - 00968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe 2016-03-10 18:27 - 2016-02-08 20:03 - 00489984 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll 2016-03-10 18:27 - 2016-02-08 19:55 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll 2016-03-10 18:27 - 2016-02-08 19:54 - 00107520 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll 2016-03-10 18:27 - 2016-02-08 19:51 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll 2016-03-10 18:27 - 2016-02-08 19:49 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll 2016-03-10 18:27 - 2016-02-08 19:47 - 00152064 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll 2016-03-10 18:27 - 2016-02-08 19:37 - 00262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll 2016-03-10 18:27 - 2016-02-08 19:35 - 00718336 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe 2016-03-10 18:27 - 2016-02-08 19:34 - 00798720 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll 2016-03-10 18:27 - 2016-02-08 19:33 - 14613504 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll 2016-03-10 18:27 - 2016-02-08 19:33 - 02123264 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl 2016-03-10 18:27 - 2016-02-08 19:33 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll 2016-03-10 18:27 - 2016-02-08 19:07 - 01546752 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll 2016-03-10 18:27 - 2016-02-08 18:55 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll 2016-03-10 18:26 - 2016-02-12 20:52 - 03169792 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll 2016-03-10 18:26 - 2016-02-12 20:52 - 00192512 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll 2016-03-10 18:26 - 2016-02-12 20:52 - 00098816 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll 2016-03-10 18:26 - 2016-02-12 20:44 - 00091136 _____ (Microsoft Corporation) C:\Windows\system32\WinSetupUI.dll 2016-03-10 18:26 - 2016-02-12 20:39 - 00174080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll 2016-03-10 18:26 - 2016-02-12 20:22 - 02610688 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll 2016-03-10 18:26 - 2016-02-12 20:19 - 00709120 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll 2016-03-10 18:26 - 2016-02-12 20:18 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe 2016-03-10 18:26 - 2016-02-12 20:18 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll 2016-03-10 18:26 - 2016-02-12 20:18 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe 2016-03-10 18:26 - 2016-02-12 20:18 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll 2016-03-10 18:26 - 2016-02-12 20:18 - 00012288 _____ (Microsoft Corporation) C:\Windows\system32\wu.upgrade.ps.dll 2016-03-10 18:26 - 2016-02-12 20:06 - 00573440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll 2016-03-10 18:26 - 2016-02-12 20:05 - 00093696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll 2016-03-10 18:26 - 2016-02-12 20:05 - 00035328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe 2016-03-10 18:26 - 2016-02-12 20:05 - 00030208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll 2016-03-10 18:26 - 2016-02-08 22:05 - 25816576 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll 2016-03-10 18:26 - 2016-02-08 20:26 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\html.iec 2016-03-10 18:26 - 2016-02-08 20:26 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll 2016-03-10 18:26 - 2016-02-08 19:52 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll 2016-03-10 18:26 - 2016-02-08 19:19 - 02597376 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll 2016-03-10 18:26 - 2016-02-04 19:52 - 03211264 _____ C:\Windows\system32\win32k.sys 2016-03-10 18:26 - 2016-02-03 20:58 - 00862208 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll 2016-03-10 18:26 - 2016-02-03 20:52 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\asycfilt.dll 2016-03-10 18:26 - 2016-02-03 20:49 - 00572416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll 2016-03-10 18:26 - 2016-02-03 20:43 - 00067584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\asycfilt.dll 2016-03-10 18:26 - 2016-02-03 20:07 - 00091648 _____ C:\Windows\system32\Drivers\USBSTOR.SYS 2016-03-10 18:26 - 2016-01-11 21:11 - 01684416 _____ C:\Windows\system32\Drivers\ntfs.sys 2016-03-10 18:26 - 2015-11-19 16:07 - 00994760 _____ (Microsoft Corporation) C:\Windows\system32\ucrtbase.dll 2016-03-10 18:26 - 2015-11-19 16:07 - 00063840 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-private-l1-1-0.dll 2016-03-10 18:26 - 2015-11-19 16:07 - 00020832 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-math-l1-1-0.dll 2016-03-10 18:26 - 2015-11-19 16:07 - 00019808 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-multibyte-l1-1-0.dll 2016-03-10 18:26 - 2015-11-19 16:07 - 00017760 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-string-l1-1-0.dll 2016-03-10 18:26 - 2015-11-19 16:07 - 00017760 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-stdio-l1-1-0.dll 2016-03-10 18:26 - 2015-11-19 16:07 - 00016224 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-runtime-l1-1-0.dll 2016-03-10 18:26 - 2015-11-19 16:07 - 00015712 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-convert-l1-1-0.dll 2016-03-10 18:26 - 2015-11-19 16:07 - 00014176 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-time-l1-1-0.dll 2016-03-10 18:26 - 2015-11-19 16:07 - 00014176 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-2-0.dll 2016-03-10 18:26 - 2015-11-19 16:07 - 00013664 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-filesystem-l1-1-0.dll 2016-03-10 18:26 - 2015-11-19 16:07 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-process-l1-1-0.dll 2016-03-10 18:26 - 2015-11-19 16:07 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-heap-l1-1-0.dll 2016-03-10 18:26 - 2015-11-19 16:07 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-conio-l1-1-0.dll 2016-03-10 18:26 - 2015-11-19 16:07 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-utility-l1-1-0.dll 2016-03-10 18:26 - 2015-11-19 16:07 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-locale-l1-1-0.dll 2016-03-10 18:26 - 2015-11-19 16:07 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-environment-l1-1-0.dll 2016-03-10 18:26 - 2015-11-19 16:07 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-2-0.dll 2016-03-10 18:26 - 2015-11-19 16:07 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-1.dll 2016-03-10 18:26 - 2015-11-19 16:07 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l2-1-0.dll 2016-03-10 18:26 - 2015-11-19 16:07 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-timezone-l1-1-0.dll 2016-03-10 18:26 - 2015-11-19 16:07 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l2-1-0.dll 2016-03-10 18:26 - 2015-11-19 16:07 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-2-0.dll 2016-03-10 18:26 - 2015-11-19 16:06 - 00922432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ucrtbase.dll 2016-03-10 18:26 - 2015-11-19 16:06 - 00066400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-private-l1-1-0.dll 2016-03-10 18:26 - 2015-11-19 16:06 - 00022368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-math-l1-1-0.dll 2016-03-10 18:26 - 2015-11-19 16:06 - 00019808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-multibyte-l1-1-0.dll 2016-03-10 18:26 - 2015-11-19 16:06 - 00017760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-string-l1-1-0.dll 2016-03-10 18:26 - 2015-11-19 16:06 - 00017760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-stdio-l1-1-0.dll 2016-03-10 18:26 - 2015-11-19 16:06 - 00016224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-runtime-l1-1-0.dll 2016-03-10 18:26 - 2015-11-19 16:06 - 00015712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-convert-l1-1-0.dll 2016-03-10 18:26 - 2015-11-19 16:06 - 00014176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-time-l1-1-0.dll 2016-03-10 18:26 - 2015-11-19 16:06 - 00014176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-2-0.dll 2016-03-10 18:26 - 2015-11-19 16:06 - 00013664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-filesystem-l1-1-0.dll 2016-03-10 18:26 - 2015-11-19 16:06 - 00012640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-process-l1-1-0.dll 2016-03-10 18:26 - 2015-11-19 16:06 - 00012640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-heap-l1-1-0.dll 2016-03-10 18:26 - 2015-11-19 16:06 - 00012640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-conio-l1-1-0.dll 2016-03-10 18:26 - 2015-11-19 16:06 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-utility-l1-1-0.dll 2016-03-10 18:26 - 2015-11-19 16:06 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-locale-l1-1-0.dll 2016-03-10 18:26 - 2015-11-19 16:06 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-environment-l1-1-0.dll 2016-03-10 18:26 - 2015-11-19 16:06 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-2-0.dll 2016-03-10 18:26 - 2015-11-19 16:06 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-1.dll 2016-03-10 18:26 - 2015-11-19 16:06 - 00011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l2-1-0.dll 2016-03-10 18:26 - 2015-11-19 16:06 - 00011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-timezone-l1-1-0.dll 2016-03-10 18:26 - 2015-11-19 16:06 - 00011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l2-1-0.dll 2016-03-10 18:26 - 2015-11-19 16:06 - 00011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-2-0.dll 2016-03-10 18:22 - 2016-02-11 20:56 - 05572032 _____ C:\Windows\system32\ntoskrnl.exe 2016-03-10 18:22 - 2016-02-11 20:52 - 01733592 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll 2016-03-10 18:22 - 2016-02-11 20:44 - 03994560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe 2016-03-10 18:22 - 2016-02-11 20:44 - 03938240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe 2016-03-10 18:22 - 2016-02-11 20:44 - 01163264 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll 2016-03-10 18:22 - 2016-02-11 20:44 - 00730112 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll 2016-03-10 18:22 - 2016-02-11 20:44 - 00422400 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll 2016-03-10 18:22 - 2016-02-11 20:41 - 01314328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll 2016-03-10 18:21 - 2016-02-11 20:56 - 00154560 _____ C:\Windows\system32\Drivers\ksecpkg.sys 2016-03-10 18:21 - 2016-02-11 20:56 - 00095680 _____ C:\Windows\system32\Drivers\ksecdd.sys 2016-03-10 18:21 - 2016-02-11 20:49 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll 2016-03-10 18:21 - 2016-02-11 20:49 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll 2016-03-10 18:21 - 2016-02-11 20:49 - 00215040 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll 2016-03-10 18:21 - 2016-02-11 20:49 - 00210432 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll 2016-03-10 18:21 - 2016-02-11 20:49 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll 2016-03-10 18:21 - 2016-02-11 20:49 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll 2016-03-10 18:21 - 2016-02-11 20:49 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll 2016-03-10 18:21 - 2016-02-11 20:49 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll 2016-03-10 18:21 - 2016-02-11 20:48 - 01214464 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll 2016-03-10 18:21 - 2016-02-11 20:48 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll 2016-03-10 18:21 - 2016-02-11 20:48 - 00344064 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll 2016-03-10 18:21 - 2016-02-11 20:48 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll 2016-03-10 18:21 - 2016-02-11 20:48 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll 2016-03-10 18:21 - 2016-02-11 20:47 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll 2016-03-10 18:21 - 2016-02-11 20:45 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll 2016-03-10 18:21 - 2016-02-11 20:45 - 00312320 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll 2016-03-10 18:21 - 2016-02-11 20:45 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll 2016-03-10 18:21 - 2016-02-11 20:45 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll 2016-03-10 18:21 - 2016-02-11 20:44 - 01461248 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll 2016-03-10 18:21 - 2016-02-11 20:42 - 00043520 _____ C:\Windows\system32\csrsrv.dll 2016-03-10 18:21 - 2016-02-11 20:42 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll 2016-03-10 18:21 - 2016-02-11 20:42 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll 2016-03-10 18:21 - 2016-02-11 20:41 - 00880128 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll 2016-03-10 18:21 - 2016-02-11 20:41 - 00686080 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll 2016-03-10 18:21 - 2016-02-11 20:41 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll 2016-03-10 18:21 - 2016-02-11 20:41 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll 2016-03-10 18:21 - 2016-02-11 20:41 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll 2016-03-10 18:21 - 2016-02-11 20:41 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll 2016-03-10 18:21 - 2016-02-11 20:41 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll 2016-03-10 18:21 - 2016-02-11 20:41 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll 2016-03-10 18:21 - 2016-02-11 20:41 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll 2016-03-10 18:21 - 2016-02-11 20:41 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll 2016-03-10 18:21 - 2016-02-11 20:41 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll 2016-03-10 18:21 - 2016-02-11 20:41 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll 2016-03-10 18:21 - 2016-02-11 20:41 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll 2016-03-10 18:21 - 2016-02-11 20:41 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll 2016-03-10 18:21 - 2016-02-11 20:41 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll 2016-03-10 18:21 - 2016-02-11 20:41 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll 2016-03-10 18:21 - 2016-02-11 20:41 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll 2016-03-10 18:21 - 2016-02-11 20:41 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll 2016-03-10 18:21 - 2016-02-11 20:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll 2016-03-10 18:21 - 2016-02-11 20:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll 2016-03-10 18:21 - 2016-02-11 20:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll 2016-03-10 18:21 - 2016-02-11 20:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll 2016-03-10 18:21 - 2016-02-11 20:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll 2016-03-10 18:21 - 2016-02-11 20:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll 2016-03-10 18:21 - 2016-02-11 20:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll 2016-03-10 18:21 - 2016-02-11 20:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll 2016-03-10 18:21 - 2016-02-11 20:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll 2016-03-10 18:21 - 2016-02-11 20:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll 2016-03-10 18:21 - 2016-02-11 20:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll 2016-03-10 18:21 - 2016-02-11 20:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll 2016-03-10 18:21 - 2016-02-11 20:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll 2016-03-10 18:21 - 2016-02-11 20:38 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll 2016-03-10 18:21 - 2016-02-11 20:38 - 00665088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll 2016-03-10 18:21 - 2016-02-11 20:38 - 00275456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll 2016-03-10 18:21 - 2016-02-11 20:38 - 00171520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll 2016-03-10 18:21 - 2016-02-11 20:38 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll 2016-03-10 18:21 - 2016-02-11 20:38 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll 2016-03-10 18:21 - 2016-02-11 20:38 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll 2016-03-10 18:21 - 2016-02-11 20:37 - 00251392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll 2016-03-10 18:21 - 2016-02-11 20:37 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll 2016-03-10 18:21 - 2016-02-11 20:37 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll 2016-03-10 18:21 - 2016-02-11 20:35 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll 2016-03-10 18:21 - 2016-02-11 20:35 - 00223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll 2016-03-10 18:21 - 2016-02-11 20:35 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll 2016-03-10 18:21 - 2016-02-11 20:34 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll 2016-03-10 18:21 - 2016-02-11 20:33 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll 2016-03-10 18:21 - 2016-02-11 20:31 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll 2016-03-10 18:21 - 2016-02-11 20:30 - 00686080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll 2016-03-10 18:21 - 2016-02-11 20:30 - 00642560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll 2016-03-10 18:21 - 2016-02-11 20:30 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll 2016-03-10 18:21 - 2016-02-11 20:30 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll 2016-03-10 18:21 - 2016-02-11 20:30 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll 2016-03-10 18:21 - 2016-02-11 20:30 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll 2016-03-10 18:21 - 2016-02-11 20:30 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll 2016-03-10 18:21 - 2016-02-11 20:30 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll 2016-03-10 18:21 - 2016-02-11 20:30 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll 2016-03-10 18:21 - 2016-02-11 20:30 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll 2016-03-10 18:21 - 2016-02-11 20:30 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll 2016-03-10 18:21 - 2016-02-11 20:30 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll 2016-03-10 18:21 - 2016-02-11 20:30 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll 2016-03-10 18:21 - 2016-02-11 20:30 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll 2016-03-10 18:21 - 2016-02-11 20:30 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll 2016-03-10 18:21 - 2016-02-11 20:30 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll 2016-03-10 18:21 - 2016-02-11 20:30 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll 2016-03-10 18:21 - 2016-02-11 20:30 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll 2016-03-10 18:21 - 2016-02-11 20:30 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll 2016-03-10 18:21 - 2016-02-11 20:30 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll 2016-03-10 18:21 - 2016-02-11 20:30 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll 2016-03-10 18:21 - 2016-02-11 20:30 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll 2016-03-10 18:21 - 2016-02-11 20:30 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll 2016-03-10 18:21 - 2016-02-11 20:30 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll 2016-03-10 18:21 - 2016-02-11 20:30 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll 2016-03-10 18:21 - 2016-02-11 20:30 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll 2016-03-10 18:21 - 2016-02-11 20:30 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll 2016-03-10 18:21 - 2016-02-11 19:48 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe 2016-03-10 18:21 - 2016-02-11 19:43 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe 2016-03-10 18:21 - 2016-02-11 19:41 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe 2016-03-10 18:21 - 2016-02-11 19:40 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe 2016-03-10 18:21 - 2016-02-11 19:34 - 00290816 _____ C:\Windows\system32\Drivers\mrxsmb10.sys 2016-03-10 18:21 - 2016-02-11 19:34 - 00159232 _____ C:\Windows\system32\Drivers\mrxsmb.sys 2016-03-10 18:21 - 2016-02-11 19:33 - 00129024 _____ C:\Windows\system32\Drivers\mrxsmb20.sys 2016-03-10 18:21 - 2016-02-11 19:32 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe 2016-03-10 18:21 - 2016-02-11 19:32 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe 2016-03-10 18:21 - 2016-02-11 19:32 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe 2016-03-10 18:21 - 2016-02-11 19:32 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll 2016-03-10 18:21 - 2016-02-11 19:32 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe 2016-03-10 18:21 - 2016-02-11 19:32 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe 2016-03-10 18:21 - 2016-02-11 19:31 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptbase.dll 2016-03-10 18:21 - 2016-02-11 19:30 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll 2016-03-10 18:21 - 2016-02-11 19:30 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll 2016-03-10 18:21 - 2016-02-11 19:30 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll 2016-03-10 18:21 - 2016-02-11 19:30 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll 2016-03-10 18:21 - 2016-02-09 11:57 - 14634496 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll 2016-03-10 18:21 - 2016-02-09 11:57 - 12625920 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL 2016-03-10 18:21 - 2016-02-09 11:56 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\msdxm.ocx 2016-03-10 18:21 - 2016-02-09 11:56 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\dxmasf.dll 2016-03-10 18:21 - 2016-02-09 11:55 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\seclogon.dll 2016-03-10 18:21 - 2016-02-09 11:54 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\spwmp.dll 2016-03-10 18:21 - 2016-02-09 11:51 - 12625408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmploc.DLL 2016-03-10 18:21 - 2016-02-09 11:51 - 11411456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll 2016-03-10 18:21 - 2016-02-09 11:13 - 00008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\spwmp.dll 2016-03-10 18:21 - 2016-02-09 11:13 - 00004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdxm.ocx 2016-03-10 18:21 - 2016-02-09 11:13 - 00004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxmasf.dll 2016-03-10 18:21 - 2016-02-05 20:54 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll 2016-03-10 18:21 - 2016-02-05 20:54 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll 2016-03-10 18:21 - 2016-02-05 20:53 - 00046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll 2016-03-10 18:21 - 2016-02-05 20:53 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll 2016-03-10 18:21 - 2016-02-05 20:50 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll 2016-03-10 18:21 - 2016-02-05 20:44 - 00070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll 2016-03-10 18:21 - 2016-02-05 20:42 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll 2016-03-10 18:21 - 2016-02-05 19:48 - 00372736 _____ C:\Windows\system32\atmfd.dll 2016-03-10 18:21 - 2016-02-05 19:43 - 00299520 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll 2016-03-10 18:21 - 2016-02-05 19:43 - 00034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll 2016-03-10 18:21 - 2016-02-05 03:19 - 00381440 _____ (Microsoft Corporation) C:\Windows\system32\mfds.dll 2016-03-10 18:21 - 2016-02-04 20:41 - 00296448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfds.dll 2016-03-10 18:20 - 2016-02-19 21:02 - 00038336 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe 2016-03-10 18:20 - 2016-02-19 20:54 - 01168896 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll 2016-03-10 18:20 - 2016-02-19 16:07 - 01373184 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll 2016-03-10 18:20 - 2016-02-11 16:07 - 00689152 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll 2016-03-10 18:20 - 2016-02-05 16:07 - 00696832 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll 2016-03-10 18:20 - 2016-02-05 16:07 - 00499200 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll 2016-03-10 18:20 - 2016-02-05 16:07 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll ==================== Un mois - Modifiés - fichiers et dossiers ======== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2016-04-09 18:02 - 2009-07-14 06:45 - 00019248 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2016-04-09 18:02 - 2009-07-14 06:45 - 00019248 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2016-04-09 17:57 - 2015-02-27 17:49 - 00001002 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job 2016-04-09 17:47 - 2015-04-22 22:52 - 00001122 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-412403155-3744995412-2101684747-1001UA.job 2016-04-09 17:43 - 2015-06-22 15:02 - 00001240 _____ C:\Windows\Tasks\DropboxUpdateTaskUserS-1-5-21-412403155-3744995412-2101684747-1001UA.job 2016-04-09 16:16 - 2014-07-08 20:23 - 00006188 _____ C:\Windows\system32\PerfStringBackup.TMP 2016-04-09 16:16 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\inf 2016-04-09 16:09 - 2012-10-07 13:03 - 00000624 _____ C:\Windows\Tasks\MATLAB R2012a Startup Accelerator.job 2016-04-09 16:08 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT 2016-04-09 10:43 - 2015-06-22 15:02 - 00001188 _____ C:\Windows\Tasks\DropboxUpdateTaskUserS-1-5-21-412403155-3744995412-2101684747-1001Core.job 2016-04-09 00:19 - 2010-05-09 12:22 - 00000000 ____D C:\Users\Estelle Courtois 2016-04-09 00:19 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\registration 2016-04-08 22:47 - 2015-04-22 22:52 - 00001070 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-412403155-3744995412-2101684747-1001Core.job 2016-04-08 19:42 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\NDF 2016-04-08 09:29 - 2016-02-14 00:59 - 00000000 ___RD C:\Users\Estelle Courtois\OneDrive 2016-04-08 09:26 - 2010-05-13 13:38 - 00000000 ____D C:\Users\Estelle Courtois\AppData\Local\Adobe 2016-04-08 01:11 - 2015-02-11 16:58 - 00000000 __SHD C:\Users\Estelle Courtois\AppData\Local\EmieUserList 2016-04-08 01:11 - 2015-02-11 16:58 - 00000000 __SHD C:\Users\Estelle Courtois\AppData\Local\EmieSiteList 2016-04-08 01:11 - 2015-02-11 16:58 - 00000000 __SHD C:\Users\Estelle Courtois\AppData\Local\EmieBrowserModeList 2016-04-07 22:57 - 2015-02-27 17:49 - 00797376 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe 2016-04-07 22:57 - 2015-02-27 17:49 - 00142528 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl 2016-04-07 22:57 - 2015-02-27 17:49 - 00003940 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater 2016-04-07 21:37 - 2014-07-27 18:03 - 00000000 ___RD C:\Users\Estelle Courtois\Google Drive 2016-04-03 22:34 - 2015-08-27 21:45 - 00001069 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk 2016-04-03 22:34 - 2015-08-27 21:45 - 00000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware 2016-04-03 22:33 - 2011-12-28 11:57 - 00000000 ____D C:\Users\Estelle Courtois\AppData\Local\ElevatedDiagnostics 2016-04-02 20:26 - 2009-09-04 15:43 - 00000348 _____ C:\Windows\Tasks\McQcTask.job 2016-03-29 22:19 - 2015-09-03 15:34 - 00000000 ____D C:\Users\Estelle Courtois\AppData\Local\Deployment 2016-03-20 23:05 - 2014-04-06 22:20 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2016-03-20 10:50 - 2016-02-25 15:23 - 00000027 _____ C:\Users\Estelle Courtois\AppData\Roaming\im2graph.ini 2016-03-19 14:29 - 2011-12-13 13:08 - 00000000 ____D C:\Users\Estelle Courtois\AppData\Roaming\Dropbox 2016-03-11 23:34 - 2016-02-14 00:59 - 00002248 _____ C:\Users\Estelle Courtois\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft OneDrive.lnk 2016-03-11 12:31 - 2014-02-13 14:57 - 00000290 __RSH C:\ProgramData\ntuser.pol 2016-03-11 12:23 - 2009-07-14 06:45 - 00450272 _____ C:\Windows\system32\FNTCACHE.DAT 2016-03-11 11:58 - 2014-12-11 00:10 - 00000000 ____D C:\Windows\system32\appraiser ==================== Fichiers à la racine de certains dossiers ======= 2015-07-22 16:39 - 2015-07-22 16:39 - 0000020 _____ () C:\Users\Estelle Courtois\AppData\Roaming\appdataFr2.bin 2016-04-08 12:21 - 2016-04-08 12:21 - 0000024 _____ () C:\Users\Estelle Courtois\AppData\Roaming\appdataFr25.bin 2016-02-25 15:23 - 2016-03-20 10:50 - 0000027 _____ () C:\Users\Estelle Courtois\AppData\Roaming\im2graph.ini 2011-10-21 00:07 - 2011-10-21 00:07 - 0000138 _____ () C:\Users\Estelle Courtois\AppData\Roaming\wklnhst.dat 2011-05-09 15:08 - 2011-05-15 21:36 - 0009044 ___SH () C:\Users\Estelle Courtois\AppData\Local\0w2gr6vjuve0423xd0v1rht8c58bq 2015-11-20 04:02 - 2015-11-20 04:05 - 229844370 _____ () C:\Users\Estelle Courtois\AppData\Local\ACCCx3_4_0_177.zip.aamdownload 2015-11-20 04:02 - 2015-11-20 04:05 - 0002657 _____ () C:\Users\Estelle Courtois\AppData\Local\ACCCx3_4_0_177.zip.aamdownload.aamd 2012-12-01 15:20 - 2015-11-13 01:24 - 0006144 _____ () C:\Users\Estelle Courtois\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini 2012-11-09 15:43 - 2012-11-09 15:43 - 0000337 _____ () C:\Users\Estelle Courtois\AppData\Local\Perfmon.PerfmonCfg 2015-06-04 00:18 - 2015-06-04 00:18 - 0000000 _____ () C:\Users\Estelle Courtois\AppData\Local\Temp.dat 2013-04-12 16:50 - 2013-05-24 21:27 - 0000000 _____ () C:\Users\Estelle Courtois\AppData\Local\Temptable.xml 2011-05-09 15:08 - 2011-05-09 16:08 - 0009130 ___SH () C:\ProgramData\0w2gr6vjuve0423xd0v1rht8c58bq 2015-10-13 23:24 - 2015-10-13 23:24 - 0000153 _____ () C:\ProgramData\Microsoft.SqlServer.Compact.351.32.bc 2015-10-15 10:47 - 2015-10-15 10:47 - 0000133 _____ () C:\ProgramData\Microsoft.SqlServer.Compact.351.64.bc ==================== Bamital & volsnap ================= (Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.) C:\Windows\system32\winlogon.exe => Le fichier est signé numériquement C:\Windows\system32\wininit.exe => Le fichier est signé numériquement C:\Windows\SysWOW64\wininit.exe => Le fichier est signé numériquement C:\Windows\explorer.exe => Le fichier est signé numériquement C:\Windows\SysWOW64\explorer.exe => Le fichier est signé numériquement C:\Windows\system32\svchost.exe => Le fichier est signé numériquement C:\Windows\SysWOW64\svchost.exe => Le fichier est signé numériquement C:\Windows\system32\services.exe => Le fichier est signé numériquement C:\Windows\system32\User32.dll => Le fichier est signé numériquement C:\Windows\SysWOW64\User32.dll => Le fichier est signé numériquement C:\Windows\system32\userinit.exe => Le fichier est signé numériquement C:\Windows\SysWOW64\userinit.exe => Le fichier est signé numériquement C:\Windows\system32\rpcss.dll => Le fichier est signé numériquement C:\Windows\system32\dnsapi.dll => Le fichier est signé numériquement C:\Windows\SysWOW64\dnsapi.dll => Le fichier est signé numériquement C:\Windows\system32\Drivers\volsnap.sys [2011-07-04 17:31] - [2010-11-20 15:34] - 0295808 ____A () D41D8CD98F00B204E9800998ECF8427E C:\Windows\system32\Drivers\volsnap.sys => pas de Nom Entreprise <===== ATTENTION ATTENTION: ==> Impossible d'accéder au BCD. LastRegBack: 2016-04-08 10:56 ==================== Fin de FRST.txt ============================