Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 29-01-2017 Exécuté par C'est Bi (administrateur) sur DESKTOP-HERM955 (02-02-2017 22:04:18) Exécuté depuis C:\Users\C'est Bi\Desktop Profils chargés: C'est Bi (Profils disponibles: C'est Bi) Platform: Windows 10 Home Version 1607 (X64) Langue: Français (France) Internet Explorer Version 11 (Navigateur par défaut: Chrome) Mode d'amorçage: Normal Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processus (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.) (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (Intel Corporation) C:\Windows\System32\igfxCUIService.exe (Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\WTabletServicePro.exe (ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe (ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe (ASUS Cloud Corporation) C:\Program Files (x86)\ASUS\WebStorage\2.2.2.524\AsusWSWinService.exe (Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe (ASUS) C:\Program Files (x86)\ASUS\ASUS GIFTBOX Desktop\ASUSGiftBoxDesktop.exe (Windows (R) Win 7 DDK provider) C:\Program Files (x86)\Bluetooth Suite\AdminService.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe (Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe (Intel Corporation) C:\Windows\SysWOW64\esif_uf.exe (McAfee, Inc.) C:\Windows\System32\mfevtps.exe (Intel Corporation) C:\Windows\SysWOW64\IntelCpHeciSvc.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe () C:\Program Files\CyberLink\Shared files\RichVideo64.exe (Intel Security, Inc.) C:\Program Files\Common Files\Intel Security\PEF\CORE\PEFService.exe (McAfee, Inc.) C:\Program Files\Common Files\McAfee\SystemCore\mfemms.exe (McAfee, Inc.) C:\Windows\System32\mfevtps.exe (McAfee, Inc.) C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe (McAfee, Inc.) C:\Program Files\Common Files\McAfee\platform\McSvcHost\McSvHost.exe (McAfee, Inc.) C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe (McAfee, Inc.) C:\Program Files (x86)\McAfee\SiteAdvisor\mcsacore.exe (McAfee, Inc.) C:\Program Files\mcafee\msc\McAPExe.exe (McAfee, Inc.) C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe (Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe (Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe (Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe (Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe (McAfee, Inc.) C:\Program Files\Common Files\McAfee\CSP\1.9.829.0\McCSPServiceHost.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (McAfee, Inc.) C:\Program Files\Common Files\McAfee\ModuleCore\ModuleCoreService.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe (Intel Corporation) C:\Windows\Temp\DPTF\esif_assist_64.exe (ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe (ASUS) C:\Program Files (x86)\ASUS\Splendid\ACMON.exe (Intel Corporation) C:\Windows\System32\igfxEM.exe (Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\Wacom_TabletUser.exe (Wacom Technology) C:\Program Files\Tablet\Wacom\WacomHost.exe (Intel Corporation) C:\Windows\System32\igfxHK.exe () C:\Windows\System32\igfxTray.exe (Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\Wacom_Tablet.exe (Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\Wacom_TouchUser.exe (ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe (ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLoader.exe (AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPCenter.exe (AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPHelper.exe (Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe (Hotger) C:\Users\C'est Bi\AppData\Local\Flvto Youtube Downloader\FlvtoYoutubeDownloader.exe (Nota Inc.) C:\Program Files (x86)\Gyazo\GyStation.exe (Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe (AVAST Software) C:\Program Files\AVAST Software\SecureLine\secureline.exe (Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.10.152.0_x64__kzf8qxf38zg5c\SkypeHost.exe (ASUS Cloud Corporation) C:\Program Files (x86)\ASUS\WebStorage\2.2.2.524\AsusWSPanel.exe (Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe (Microsoft Corporation) C:\Windows\System32\WWAHost.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe (ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.1118.10000.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (McAfee, Inc.) C:\Program Files\Common Files\McAfee\platform\McUICnt.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe (Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe (Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Microsoft Corporation) C:\Windows\System32\smartscreen.exe ==================== Registre (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.) HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2634896 2015-07-24] (NVIDIA Corporation) HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [170256 2015-12-17] (Apple Inc.) HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [500208 2010-03-06] (Adobe Systems Incorporated) HKLM-x32\...\Run: [WebStorage] => C:\Program Files (x86)\ASUS\WebStorage\2.2.2.524\ASUSWSLoader.exe [63272 2015-05-31] () HKLM-x32\...\Run: [SwitchBoard] => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) HKLM-x32\...\Run: [AdobeCS5ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe [406992 2010-02-22] (Adobe Systems Incorporated) HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2016-09-22] (Oracle Corporation) HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [26219896 2017-01-30] (Dropbox, Inc.) HKU\S-1-5-21-1793514600-1943438493-1467282846-1001\...\Run: [Flvto Youtube Downloader] => C:\Users\C'est Bi\AppData\Local\Flvto Youtube Downloader\FlvtoYoutubeDownloader.exe [524800 2015-12-14] (Hotger) HKU\S-1-5-21-1793514600-1943438493-1467282846-1001\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [4177784 2016-01-15] (Disc Soft Ltd) HKU\S-1-5-21-1793514600-1943438493-1467282846-1001\...\Run: [Gyazo] => C:\Program Files (x86)\Gyazo\GyStation.exe [5077792 2017-01-10] (Nota Inc.) HKU\S-1-5-21-1793514600-1943438493-1467282846-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8590760 2015-12-08] (Piriform Ltd) HKU\S-1-5-21-1793514600-1943438493-1467282846-1001\...\Run: [RESTART_STICKY_NOTES] => C:\Windows\System32\StikyNot.exe HKU\S-1-5-21-1793514600-1943438493-1467282846-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [27250144 2016-12-20] (Skype Technologies S.A.) HKU\S-1-5-21-1793514600-1943438493-1467282846-1001\...\RunOnce: [Uninstall C:\Users\C'est Bi\AppData\Local\Microsoft\OneDrive\17.3.6281.1202_1\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\C'est Bi\AppData\Local\Microsoft\OneDrive\17.3.6281.1202_1\amd64" HKU\S-1-5-18\...\RunOnce: [Application Restart #1] => C:\Program Files\Common Files\microsoft shared\ink\TabTip.exe [371928 2016-07-16] (Microsoft Corporation) ShellIconOverlayIdentifiers: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.14.0.dll [2017-01-30] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.14.0.dll [2017-01-30] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.14.0.dll [2017-01-30] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.14.0.dll [2017-01-30] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.14.0.dll [2017-01-30] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.14.0.dll [2017-01-30] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.14.0.dll [2017-01-30] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.14.0.dll [2017-01-30] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.14.0.dll [2017-01-30] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.14.0.dll [2017-01-30] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [!AsusWSShellExt_B] -> {6D4133E5-0742-4ADC-8A8C-9303440F7191} => C:\Program Files (x86)\Common Files\AWS\2.2.2.524\ASUSWSShellExt64.dll [2015-04-22] (ASUS Cloud Corporation.) ShellIconOverlayIdentifiers: [!AsusWSShellExt_O] -> {64174815-8D98-4CE6-8646-4C039977D809} => C:\Program Files (x86)\Common Files\AWS\2.2.2.524\ASUSWSShellExt64.dll [2015-04-22] (ASUS Cloud Corporation.) ShellIconOverlayIdentifiers: [!AsusWSShellExt_U] -> {1C5AB7B1-0B38-4EC4-9093-7FD277E2AF4E} => C:\Program Files (x86)\Common Files\AWS\2.2.2.524\ASUSWSShellExt64.dll [2015-04-22] (ASUS Cloud Corporation.) ShellIconOverlayIdentifiers-x32: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.14.0.dll [2017-01-30] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.14.0.dll [2017-01-30] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.14.0.dll [2017-01-30] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.14.0.dll [2017-01-30] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.14.0.dll [2017-01-30] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.14.0.dll [2017-01-30] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.14.0.dll [2017-01-30] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.14.0.dll [2017-01-30] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.14.0.dll [2017-01-30] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.14.0.dll [2017-01-30] (Dropbox, Inc.) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\avast! SecureLine.lnk [2015-10-20] ShortcutTarget: avast! SecureLine.lnk -> C:\Program Files\AVAST Software\SecureLine\SecureLine.exe (AVAST Software) ==================== Internet (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.) Tcpip\Parameters: [DhcpNameServer] 212.27.40.241 212.27.40.240 Tcpip\..\Interfaces\{8016add1-f9e3-4de2-89ab-f25f522027a7}: [DhcpNameServer] 192.13.128.24 Tcpip\..\Interfaces\{d79be9ab-7828-4987-a812-599dded08609}: [DhcpNameServer] 212.27.40.241 212.27.40.240 Internet Explorer: ================== HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.fr/?q={searchTerms} HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.fr/ HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.fr/ HKU\S-1-5-21-1793514600-1943438493-1467282846-1001\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank HKU\S-1-5-21-1793514600-1943438493-1467282846-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://asus15.msn.com/?pc=ASTE BHO: McAfee WebAdvisor BHO -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll [2017-01-09] (McAfee, Inc.) BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_111\bin\ssv.dll [2016-11-27] (Oracle Corporation) BHO-x32: McAfee WebAdvisor BHO -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll [2017-01-09] (McAfee, Inc.) BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_111\bin\jp2ssv.dll [2016-11-27] (Oracle Corporation) Handler: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll [2017-01-09] (McAfee, Inc.) Handler-x32: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll [2017-01-09] (McAfee, Inc.) Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll [2017-01-09] (McAfee, Inc.) Handler-x32: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll [2017-01-09] (McAfee, Inc.) Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files\mcafee\msc\McSnIePl64.dll [2016-06-29] (McAfee, Inc.) Filter-x32: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\Program Files (x86)\McAfee\msc\McSnIePl.dll [2016-06-29] (McAfee, Inc.) FireFox: ======== FF HKLM\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files (x86)\McAfee\SiteAdvisor\saffplg.xpi FF Extension: (McAfee WebAdvisor) - C:\Program Files (x86)\McAfee\SiteAdvisor\saffplg.xpi [2017-01-31] FF HKLM-x32\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files (x86)\McAfee\SiteAdvisor\saffplg.xpi FF HKLM-x32\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK FF Extension: (McAfee Anti-Spam Thunderbird Extension) - C:\Program Files\McAfee\MSK [2016-08-19] [non signé] FF Plugin: @mcafee.com/MSC,version=10 -> c:\PROGRA~1\mcafee\msc\NPMCSN~1.DLL [2016-06-29] () FF Plugin: @wacom.com/wtPlugin,version=2.1.0.7 -> C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom) FF Plugin: wacom.com/WacomTabletPlugin -> C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom) FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2015-10-14] () FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.68 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2015-04-21] (Intel Corporation) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2015-04-21] (Intel Corporation) FF Plugin-x32: @java.com/DTPlugin,version=11.111.2 -> C:\Program Files (x86)\Java\jre1.8.0_111\bin\dtplugin\npDeployJava1.dll [2016-11-27] (Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=11.111.2 -> C:\Program Files (x86)\Java\jre1.8.0_111\bin\plugin2\npjp2.dll [2016-11-27] (Oracle Corporation) FF Plugin-x32: @mcafee.com/MSC,version=10 -> c:\PROGRA~2\mcafee\msc\NPMCSN~1.DLL [2016-06-29] () FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-16] (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-16] (Google Inc.) FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN) FF Plugin-x32: @wacom.com/wtPlugin,version=2.1.0.7 -> C:\Program Files (x86)\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom) FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll [2014-11-15] () FF Plugin-x32: wacom.com/WacomTabletPlugin -> C:\Program Files (x86)\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom) Chrome: ======= CHR Profile: C:\Users\C'est Bi\AppData\Local\Google\Chrome\User Data\Default [2017-02-02] CHR Extension: (Google Slides) - C:\Users\C'est Bi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-12-01] CHR Extension: (Duolingo sur le Web) - C:\Users\C'est Bi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aiahmijlpehemcpleichkcokhegllfjl [2016-08-28] CHR Extension: (Google Docs) - C:\Users\C'est Bi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-01-25] CHR Extension: (Google Drive) - C:\Users\C'est Bi\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-12-01] CHR Extension: (Google Voice Search Hotword (Beta)) - C:\Users\C'est Bi\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2016-02-23] CHR Extension: (YouTube) - C:\Users\C'est Bi\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-12-01] CHR Extension: (Adblock Plus) - C:\Users\C'est Bi\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2016-10-26] CHR Extension: (Ecosia - Le moteur de recherche qui plante des arbres) - C:\Users\C'est Bi\AppData\Local\Google\Chrome\User Data\Default\Extensions\clellnciejhoedgepbdilbkdkaoecgpc [2017-01-16] CHR Extension: (Adblock pour Youtube™) - C:\Users\C'est Bi\AppData\Local\Google\Chrome\User Data\Default\Extensions\cmedhionkhpnakcndndgjdbohmhepckk [2016-03-05] CHR Extension: (Video Downloader professional) - C:\Users\C'est Bi\AppData\Local\Google\Chrome\User Data\Default\Extensions\elicpjhcidhpjomhibiffojpinpmmpil [2016-07-19] CHR Extension: (Google Sheets) - C:\Users\C'est Bi\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-12-01] CHR Extension: (Google Docs hors connexion) - C:\Users\C'est Bi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-12-01] CHR Extension: (AdBlock) - C:\Users\C'est Bi\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2017-01-30] CHR Extension: (F___book Post Manager) - C:\Users\C'est Bi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ljfidlkcmdmmibngdfikhffffdmphjae [2017-01-14] CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\C'est Bi\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-01-19] CHR Extension: (Adblock Pro) - C:\Users\C'est Bi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ocifcklkibdehekfnmflempfgjhbedch [2016-05-13] CHR Extension: (Tumblr Savior) - C:\Users\C'est Bi\AppData\Local\Google\Chrome\User Data\Default\Extensions\oefddkjnflmjbclpnnoegglmmdfkidip [2016-08-29] CHR Extension: (DebrideurStreaming - Add-On) - C:\Users\C'est Bi\AppData\Local\Google\Chrome\User Data\Default\Extensions\pipaffcpmobohfilpejhaciheebhaaej [2016-02-23] CHR Extension: (Gmail) - C:\Users\C'est Bi\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-12-01] CHR Extension: (Chrome Media Router) - C:\Users\C'est Bi\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-12-02] CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - C:\Program Files (x86)\McAfee\SiteAdvisor\McChPlg.crx [2016-06-10] CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - C:\Program Files (x86)\McAfee\SiteAdvisor\McChPlg.crx [2016-06-10] ==================== Services (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [77104 2015-10-07] (Apple Inc.) R2 Asus WebStorage Windows Service; C:\Program Files (x86)\ASUS\WebStorage\2.2.2.524\AsusWSWinService.exe [71168 2015-05-31] (ASUS Cloud Corporation) [Fichier non signé] R2 ASUSGiftBoxDekstop; C:\Program Files (x86)\ASUS\ASUS GIFTBOX Desktop\ASUSGIFTBOXDesktop.exe [315704 2015-07-20] (ASUS) R2 AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [323152 2015-07-29] (Windows (R) Win 7 DDK provider) S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2017-01-12] (Dropbox, Inc.) S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2017-01-12] (Dropbox, Inc.) R2 DbxSvc; C:\WINDOWS\system32\DbxSvc.exe [46400 2017-01-30] (Dropbox, Inc.) R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe [1369464 2016-01-15] (Disc Soft Ltd) R2 esifsvc; C:\WINDOWS\SysWoW64\esif_uf.exe [1385640 2015-08-04] (Intel Corporation) R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1155216 2015-07-24] (NVIDIA Corporation) R2 HomeNetSvc; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [596768 2016-06-29] (McAfee, Inc.) R2 igfxCUIService2.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [373728 2016-11-30] (Intel Corporation) S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [881152 2015-05-22] (Intel(R) Corporation) R3 Intel(R) Security Assist; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe [335872 2015-05-19] (Intel Corporation) [Fichier non signé] S2 isaHelperSvc; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe [7680 2015-05-19] () [Fichier non signé] R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [207648 2015-08-07] (Intel Corporation) R2 McAfee SiteAdvisor Service; C:\Program Files (x86)\McAfee\SiteAdvisor\McSACore.exe [188352 2017-01-09] (McAfee, Inc.) R2 McAPExe; C:\Program Files\McAfee\MSC\McAPExe.exe [993824 2016-06-29] (McAfee, Inc.) S3 McAWFwk; C:\Program Files\Common Files\McAfee\ActWiz\McAWFwk.exe [338208 2015-03-19] (McAfee, Inc.) R2 McBootDelayStartSvc; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [596768 2016-06-29] (McAfee, Inc.) R2 mccspsvc; C:\Program Files\Common Files\McAfee\CSP\1.9.829.0\\McCSPServiceHost.exe [1910000 2016-05-31] (McAfee, Inc.) R2 McMPFSvc; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [596768 2016-06-29] (McAfee, Inc.) R2 McNaiAnn; C:\Program Files\Common Files\McAfee\platform\McSvcHost\McSvHost.exe [596768 2016-06-29] (McAfee, Inc.) S3 McODS; C:\Program Files\mcafee\VirusScan\mcods.exe [816128 2016-06-21] (McAfee, Inc.) S4 McOobeSv2; C:\Program Files\Common Files\McAfee\platform\McSvcHost\McSvHost.exe [596768 2016-06-29] (McAfee, Inc.) R2 mcpltsvc; C:\Program Files\Common Files\McAfee\platform\McSvcHost\McSvHost.exe [596768 2016-06-29] (McAfee, Inc.) R2 McProxy; C:\Program Files\Common Files\McAfee\platform\McSvcHost\McSvHost.exe [596768 2016-06-29] (McAfee, Inc.) R3 mfefire; C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe [232688 2016-04-26] (McAfee, Inc.) R2 mfemms; C:\Program Files\Common Files\McAfee\SystemCore\\mfemms.exe [382456 2016-06-23] (McAfee, Inc.) R2 mfevtp; C:\Windows\system32\mfevtps.exe [277744 2016-04-26] (McAfee, Inc.) R2 ModuleCoreService; C:\Program Files\Common Files\McAfee\ModuleCore\ModuleCoreService.exe [1454216 2016-06-17] (McAfee, Inc.) S3 MSK80Service; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [596768 2016-06-29] (McAfee, Inc.) R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1871504 2015-07-24] (NVIDIA Corporation) R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [5544592 2015-07-24] (NVIDIA Corporation) R2 PEFService; C:\Program Files\Common Files\Intel Security\PEF\CORE\PEFService.exe [1045336 2016-05-25] (Intel Security, Inc.) R2 RichVideo64; C:\Program Files\CyberLink\Shared files\RichVideo64.exe [389896 2014-04-14] () S3 SecureLine; C:\Program Files\AVAST Software\SecureLine\VpnSvc.exe [592392 2016-05-24] () S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [Fichier non signé] S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [347328 2016-07-16] (Microsoft Corporation) S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103720 2016-07-16] (Microsoft Corporation) R2 WTabletServicePro; C:\Program Files\Tablet\Wacom\WTabletServicePro.exe [730304 2015-10-02] (Wacom Technology, Corp.) ===================== Pilotes (Avec liste blanche) ====================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R3 ATP; C:\WINDOWS\System32\drivers\AsusTP.sys [101368 2015-12-14] (ASUS Corporation) R3 cfwids; C:\WINDOWS\System32\drivers\cfwids.sys [78632 2016-04-27] (McAfee, Inc.) R3 dptf_cpu; C:\WINDOWS\System32\drivers\dptf_cpu.sys [43512 2015-08-04] (Intel Corporation) R3 dptf_pch; C:\WINDOWS\System32\drivers\dptf_pch.sys [41976 2015-08-04] (Intel Corporation) R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [30264 2016-02-21] (Disc Soft Ltd) R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [47672 2016-02-21] (Disc Soft Ltd) R3 esif_lf; C:\WINDOWS\system32\DRIVERS\esif_lf.sys [251384 2015-08-04] (Intel Corporation) S3 HipShieldK; C:\WINDOWS\System32\drivers\HipShieldK.sys [207968 2016-02-24] (McAfee, Inc.) R0 IntelHSWPcc; C:\WINDOWS\System32\drivers\IntelPcc.sys [88256 2015-06-26] (Intel Corporation) R2 mfeaack; C:\WINDOWS\System32\drivers\mfeaack.sys [419616 2016-04-27] (McAfee, Inc.) R3 mfeavfk; C:\WINDOWS\System32\drivers\mfeavfk.sys [349480 2016-04-27] (McAfee, Inc.) S0 mfeelamk; C:\WINDOWS\System32\drivers\mfeelamk.sys [83608 2016-04-27] (McAfee, Inc.) R3 mfefirek; C:\WINDOWS\System32\drivers\mfefirek.sys [493352 2016-04-27] (McAfee, Inc.) R0 mfehidk; C:\WINDOWS\System32\drivers\mfehidk.sys [843048 2016-04-27] (McAfee, Inc.) R3 mfencbdc; C:\WINDOWS\System32\DRIVERS\mfencbdc.sys [519976 2016-04-27] (McAfee, Inc.) S3 mfencrk; C:\WINDOWS\System32\DRIVERS\mfencrk.sys [100136 2016-04-27] (McAfee, Inc.) R3 mfesapsn; C:\Program Files (x86)\McAfee\SiteAdvisor\x64\mfesapsn.sys [46240 2016-06-06] (McAfee, Inc.) R0 mfewfpk; C:\WINDOWS\System32\drivers\mfewfpk.sys [243488 2016-04-27] (McAfee, Inc.) S3 NetAdapterCx; C:\WINDOWS\System32\drivers\NetAdapterCx.sys [90624 2016-07-16] () R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19600 2015-07-24] (NVIDIA Corporation) R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [47976 2015-07-03] (NVIDIA Corporation) R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [887552 2015-07-15] (Realtek ) R3 RTSPER; C:\WINDOWS\system32\DRIVERS\RtsPer.sys [753368 2015-06-15] (Realsil Semiconductor Corporation) S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [44056 2016-07-16] (Microsoft Corporation) S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [290144 2016-07-16] (Microsoft Corporation) S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [123232 2016-07-16] (Microsoft Corporation) S3 dbx; system32\DRIVERS\dbx.sys [X] ==================== NetSvcs (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) ==================== Un mois - Créés - fichiers et dossiers ======== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2017-02-02 22:04 - 2017-02-02 22:05 - 00032553 _____ C:\Users\C'est Bi\Desktop\FRST.txt 2017-02-02 22:04 - 2017-02-02 22:04 - 00000000 ____D C:\FRST 2017-02-02 22:03 - 2017-02-02 22:03 - 02420736 _____ (Farbar) C:\Users\C'est Bi\Desktop\FRST64.exe 2017-02-02 21:46 - 2017-02-02 21:46 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox 2017-02-02 20:02 - 2017-02-02 20:02 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee 2017-02-02 02:21 - 2017-02-02 02:21 - 00001924 _____ C:\Users\Public\Desktop\ZHPFix.lnk 2017-02-02 02:21 - 2017-02-02 02:21 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ZHP 2017-02-02 02:20 - 2017-02-02 02:22 - 02658304 _____ C:\Users\C'est Bi\Desktop\zhpcleaner_2016.12.24.222.exe 2017-02-02 02:20 - 2017-02-02 02:20 - 03521617 _____ (Nicolas Coolman ) C:\Users\C'est Bi\Desktop\zhpfix_2015.10.19.9.exe 2017-01-30 23:06 - 2017-02-02 02:40 - 00000870 _____ C:\Users\C'est Bi\Desktop\ZHPDiag.lnk 2017-01-30 23:06 - 2017-01-30 23:06 - 02657792 _____ C:\Users\C'est Bi\Desktop\ZHPDiag3.exe 2017-01-30 15:02 - 2017-01-30 15:02 - 00046400 _____ (Dropbox, Inc.) C:\WINDOWS\system32\DbxSvc.exe 2017-01-30 15:02 - 2017-01-30 15:02 - 00046192 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-stable.sys 2017-01-30 15:02 - 2017-01-30 15:02 - 00046192 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-dev.sys 2017-01-30 15:02 - 2017-01-30 15:02 - 00046192 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-canary.sys 2017-01-28 18:51 - 2017-01-28 19:21 - 03210794 _____ C:\Users\C'est Bi\Desktop\IMG_5771.psd 2017-01-26 19:35 - 2017-01-26 19:35 - 00000000 _____ C:\WINDOWS\system32\GfxValDisplayLog.bin 2017-01-26 11:43 - 2017-01-26 11:44 - 00000000 ____D C:\AdwCleaner 2017-01-25 17:23 - 2016-12-21 08:08 - 00142848 _____ (Microsoft Corporation) C:\WINDOWS\system32\poqexec.exe 2017-01-25 17:23 - 2016-12-21 05:44 - 00120320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\poqexec.exe 2017-01-15 18:39 - 2017-01-29 13:34 - 00000000 ____D C:\Users\C'est Bi\Desktop\Nouveau dossier 2017-01-12 13:02 - 2017-01-12 13:09 - 129833889 _____ C:\Users\C'est Bi\Downloads\(764) SAKIMICHAN.zip 2017-01-12 12:54 - 2017-02-02 21:47 - 00000000 ___RD C:\Users\C'est Bi\Dropbox 2017-01-12 12:51 - 2017-01-12 12:51 - 00000000 ____D C:\Users\C'est Bi\AppData\Roaming\Dropbox 2017-01-12 12:48 - 2017-01-17 18:24 - 00001222 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job 2017-01-12 12:48 - 2017-01-17 18:24 - 00001218 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job 2017-01-12 12:48 - 2017-01-12 12:54 - 00000000 ____D C:\Users\C'est Bi\AppData\Local\Dropbox 2017-01-12 12:48 - 2017-01-12 12:48 - 00689048 _____ (Dropbox, Inc.) C:\Users\C'est Bi\Downloads\DropboxInstaller.exe 2017-01-12 12:48 - 2017-01-12 12:48 - 00004282 _____ C:\WINDOWS\System32\Tasks\DropboxUpdateTaskMachineUA 2017-01-12 12:48 - 2017-01-12 12:48 - 00004050 _____ C:\WINDOWS\System32\Tasks\DropboxUpdateTaskMachineCore 2017-01-12 12:48 - 2017-01-12 12:48 - 00000000 ____D C:\ProgramData\Dropbox 2017-01-09 03:41 - 2017-01-09 03:41 - 00115059 _____ C:\Users\C'est Bi\Desktop\^D2B82906D9985036428B18D46465841779ADD46CEE9391C34D^pimgpsh_fullsize_distr.jpg 2017-01-04 01:33 - 2017-01-09 02:23 - 00039033 _____ C:\Users\C'est Bi\Documents\DRAGON.odt ==================== Un mois - Modifiés - fichiers et dossiers ======== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2017-02-02 21:46 - 2015-08-18 06:29 - 00000000 ____D C:\Program Files (x86)\Dropbox 2017-02-02 21:40 - 2016-12-03 18:51 - 00000000 ____D C:\Users\C'est Bi\AppData\Roaming\Skype 2017-02-02 19:52 - 2016-08-04 11:33 - 00000000 ____D C:\WINDOWS\system32\SleepStudy 2017-02-02 19:23 - 2016-07-16 12:47 - 00000000 ___HD C:\Program Files\WindowsApps 2017-02-02 19:23 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\AppReadiness 2017-02-02 12:00 - 2016-08-04 11:56 - 00003550 _____ C:\WINDOWS\System32\Tasks\ASUS Live Update1 2017-02-02 12:00 - 2016-08-04 11:56 - 00003540 _____ C:\WINDOWS\System32\Tasks\ASUS Live Update2 2017-02-02 11:50 - 2015-12-23 22:30 - 00000000 ____D C:\PaintToolSAI 2017-02-02 11:18 - 2016-08-04 11:35 - 00000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat 2017-02-02 11:18 - 2016-02-21 11:40 - 00000000 ____D C:\ProgramData\ASUS Smart Gesture 2017-02-02 11:18 - 2015-12-22 16:28 - 00000165 _____ C:\Users\C'est Bi\AppData\Roaming\sp_data.sys 2017-02-02 11:18 - 2015-12-22 16:28 - 00000000 __SHD C:\Users\C'est Bi\IntelGraphicsProfiles 2017-02-02 02:51 - 2016-07-16 12:36 - 00000000 ____D C:\WINDOWS\CbsTemp 2017-02-02 02:44 - 2016-08-04 11:41 - 00000000 ____D C:\Users\C'est Bi 2017-02-02 02:42 - 2016-01-02 20:39 - 00000000 ____D C:\Users\C'est Bi\AppData\Roaming\ZHP 2017-02-02 02:41 - 2016-01-17 11:14 - 00000212 _____ C:\Users\C'est 2017-02-02 02:38 - 2016-07-16 07:04 - 00008192 _____ C:\WINDOWS\system32\config\ELAM 2017-02-02 02:37 - 2016-08-04 11:56 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT 2017-02-02 02:37 - 2016-08-04 11:33 - 04834096 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2017-02-02 02:36 - 2016-07-16 07:04 - 00786432 _____ C:\WINDOWS\system32\config\BBI 2017-02-02 02:21 - 2016-01-18 11:09 - 00000000 ____D C:\Program Files (x86)\ZHPFix 2017-01-30 21:53 - 2016-09-16 23:27 - 00000000 ____D C:\Users\C'est Bi\Desktop\Sai et PSD 2017-01-30 11:42 - 2016-09-16 23:26 - 00000000 ____D C:\Users\C'est Bi\Desktop\A faire 2017-01-29 02:58 - 2016-01-02 19:27 - 00000000 ____D C:\Users\C'est Bi\Documents\HETALIA FIC 2017-01-27 20:09 - 2016-07-16 12:45 - 00000000 ____D C:\WINDOWS\INF 2017-01-27 01:15 - 2015-12-23 16:52 - 00000000 ____D C:\Users\C'est Bi\AppData\Roaming\vlc 2017-01-26 22:09 - 2016-11-14 15:21 - 00000000 ____D C:\Users\C'est Bi\AppData\Roaming\dvdcss 2017-01-26 19:35 - 2016-08-04 11:35 - 00000200 _____ C:\WINDOWS\system32\{EC94D02F-D200-4428-9531-05AF7F9799CB}.bat 2017-01-24 14:21 - 2016-08-04 11:56 - 00003556 _____ C:\WINDOWS\System32\Tasks\GyazoUpdateTaskMachineDaily 2017-01-24 14:21 - 2016-08-04 11:56 - 00003420 _____ C:\WINDOWS\System32\Tasks\GyazoUpdateTaskMachine 2017-01-24 14:21 - 2016-05-31 10:46 - 00000000 ____D C:\Program Files (x86)\Gyazo 2017-01-22 11:02 - 2015-12-22 16:29 - 00000000 ____D C:\Users\C'est Bi\AppData\Roaming\DropboxOEM 2017-01-17 20:31 - 2016-12-03 18:51 - 00000000 ____D C:\ProgramData\Skype 2017-01-17 18:31 - 2016-09-08 23:47 - 00192216 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys 2017-01-17 17:41 - 2016-01-02 19:27 - 00000000 ____D C:\Users\C'est Bi\Documents\RPS 2017-01-17 12:29 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\system32\NDF 2017-01-14 00:30 - 2016-01-02 19:27 - 00000000 ____D C:\Users\C'est Bi\Documents\HISTOIRES 2017-01-12 16:07 - 2015-10-20 13:36 - 00000000 ____D C:\ProgramData\McAfee 2017-01-11 22:11 - 2015-12-23 22:14 - 00000000 ____D C:\WINDOWS\system32\MRT 2017-01-11 22:10 - 2015-12-23 22:14 - 135657872 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2017-01-06 21:38 - 2016-01-02 19:27 - 00000000 ____D C:\Users\C'est Bi\Documents\AUS 2017-01-03 23:42 - 2016-10-26 23:45 - 00000000 ____D C:\Users\C'est Bi\Desktop\vrac 2017-01-03 23:42 - 2015-12-28 13:36 - 00000000 ____D C:\Users\C'est Bi\Desktop\transfert ==================== Fichiers à la racine de certains dossiers ======= 2005-03-09 04:07 - 2005-03-09 04:07 - 0630784 _____ (Adobe Systems Incorporated) C:\Program Files (x86)\ACE.dll 2005-03-03 15:39 - 2005-03-03 15:39 - 0425984 _____ (Adobe Systems Incorporated) C:\Program Files (x86)\AdobeUpdater.dll 2005-03-09 04:17 - 2005-03-09 04:17 - 0475136 _____ (Adobe Systems Incorporated) C:\Program Files (x86)\AdobeXMP.dll 2005-02-07 08:45 - 2005-02-07 08:45 - 0005632 _____ (IBM Corporation and others) C:\Program Files (x86)\agldt28l.dll 2005-03-13 12:01 - 2005-03-13 12:01 - 1805824 _____ (Adobe Systems Incorporated) C:\Program Files (x86)\AGM.dll 2005-03-09 04:07 - 2005-03-09 04:07 - 0266240 _____ (Adobe Systems Incorporated) C:\Program Files (x86)\ARE.dll 2004-08-24 15:55 - 2004-08-24 15:55 - 0126976 _____ (Adobe Systems Inc.) C:\Program Files (x86)\asneu.dll 2005-03-09 04:32 - 2005-03-09 04:32 - 0151552 _____ (Adobe Systems Incorporated) C:\Program Files (x86)\AXE16SharedExpat.dll 2005-03-09 04:32 - 2005-03-09 04:32 - 0151552 _____ (Adobe Systems Incorporated) C:\Program Files (x86)\AXE8SharedExpat.dll 2005-03-09 04:07 - 2005-03-09 04:07 - 0180224 _____ (Adobe Systems Incorporated) C:\Program Files (x86)\Bib.dll 2005-03-09 04:07 - 2005-03-09 04:07 - 0217088 _____ (Adobe Systems Incorporated) C:\Program Files (x86)\BIBUtils.dll 2005-03-09 04:07 - 2005-03-09 04:07 - 2162688 _____ (Adobe Systems Incorporated) C:\Program Files (x86)\CoolType.dll 2005-02-10 13:36 - 2005-02-10 13:36 - 0143360 _____ (Adobe Systems Incorporated) C:\Program Files (x86)\epic_eula.dll 2005-01-18 12:31 - 2005-01-18 12:31 - 0114688 _____ (Adobe Systems Incorporated) C:\Program Files (x86)\epic_pers.dll 2005-01-19 14:31 - 2005-01-19 14:31 - 0155648 _____ (Adobe Systems Incorporated) C:\Program Files (x86)\epic_regs.dll 2005-02-08 13:43 - 2005-02-08 13:43 - 0045056 _____ (Adobe Systems Incorporated) C:\Program Files (x86)\eularesen_US.dll 2005-04-06 07:15 - 2005-04-06 07:15 - 0045056 _____ (Adobe Systems Incorporated) C:\Program Files (x86)\eularesfr_FR.dll 2005-02-17 11:28 - 2005-02-17 11:28 - 0663552 _____ (Adobe Systems, Incorporated) C:\Program Files (x86)\FileInfo.dll 2005-04-06 03:38 - 2005-04-06 03:38 - 19980288 _____ (Adobe Systems Incorporated) C:\Program Files (x86)\ImageReady.exe 2005-04-06 07:15 - 2005-04-06 07:15 - 0692224 _____ (Adobe Systems Incorporated) C:\Program Files (x86)\ImageReadyRes.dll 2005-02-25 13:50 - 2005-02-25 13:50 - 0157035 _____ () C:\Program Files (x86)\Informations juridiques.pdf 2016-01-09 13:36 - 2016-01-09 13:36 - 0000782 _____ () C:\Program Files (x86)\install.adb 2005-02-15 02:03 - 2005-02-15 02:03 - 0561152 _____ (Adobe system Incorporated) C:\Program Files (x86)\JP2KLib.dll 2004-06-22 12:57 - 2004-06-22 12:57 - 0589824 _____ (IBM Corporation and others) C:\Program Files (x86)\libagluc28.dll 2005-03-10 20:31 - 2005-03-10 20:31 - 3715072 _____ (Adobe Systems Incorporated) C:\Program Files (x86)\MPS.dll 2000-08-29 00:19 - 2000-08-29 00:19 - 0401462 _____ (Microsoft Corporation) C:\Program Files (x86)\MSVCP60.DLL 2003-05-08 18:34 - 2003-05-08 18:34 - 0499712 _____ (Microsoft Corporation) C:\Program Files (x86)\msvcp71.dll 2003-05-08 18:32 - 2003-05-08 18:32 - 0348160 _____ (Microsoft Corporation) C:\Program Files (x86)\msvcr71.dll 1999-02-02 00:00 - 1999-02-02 00:00 - 0266293 _____ (Microsoft Corporation) C:\Program Files (x86)\Msvcrt.dll 2005-03-13 13:10 - 2005-03-13 13:10 - 4096000 _____ (Adobe Systems Incorporated) C:\Program Files (x86)\PDFL70.dll 2005-01-12 14:23 - 2005-01-12 14:23 - 0180224 _____ (Adobe Systems Incorporated) C:\Program Files (x86)\pdfsettings.dll 2005-02-08 13:43 - 2005-02-08 13:43 - 0049152 _____ (Adobe Systems Incorporated) C:\Program Files (x86)\persresen_US.dll 2005-04-06 07:15 - 2005-04-06 07:15 - 0049152 _____ (Adobe Systems Incorporated) C:\Program Files (x86)\persresfr_FR.dll 2005-04-06 07:14 - 2005-04-06 07:14 - 0023981 _____ () C:\Program Files (x86)\Photoshop Lisez-moi.wri 2005-04-06 07:15 - 2005-04-06 07:15 - 1327104 _____ () C:\Program Files (x86)\Photoshop.dll 2005-04-06 04:31 - 2005-04-06 04:31 - 19533824 _____ (Adobe Systems, Incorporated) C:\Program Files (x86)\Photoshop.exe 2005-03-22 16:28 - 2005-03-22 16:28 - 22843959 _____ () C:\Program Files (x86)\Photoshop_9.0_fr-fr.zip 2005-04-06 07:15 - 2005-04-06 07:15 - 0041984 _____ (Adobe Systems, Incorporated) C:\Program Files (x86)\Plugin.dll 2005-04-06 03:50 - 2005-04-06 03:50 - 2142208 _____ (Adobe Systems, Incorporated) C:\Program Files (x86)\PSArt.dll 2005-04-06 03:50 - 2005-04-06 03:50 - 1748992 _____ (Adobe Systems, Incorporated) C:\Program Files (x86)\PSViews.dll 2005-03-16 18:57 - 2005-03-16 18:57 - 0061440 _____ (Adobe Systems Incorporated) C:\Program Files (x86)\regsresen_US.dll 2005-04-06 07:15 - 2005-04-06 07:15 - 0061440 _____ (Adobe Systems Incorporated) C:\Program Files (x86)\regsresfr_FR.dll 1999-12-03 06:01 - 1999-12-03 06:01 - 0022800 _____ (Microsoft Corporation) C:\Program Files (x86)\Shfolder.dll 2005-04-06 03:46 - 2005-04-06 03:46 - 0011776 _____ (Adobe Systems, Incorporated) C:\Program Files (x86)\Tw10122.dat 2005-04-06 03:50 - 2005-04-06 03:50 - 0150644 _____ () C:\Program Files (x86)\TypeLibrary.tlb 2005-03-23 06:35 - 2005-03-23 06:35 - 4153344 _____ (Adobe Systems, Incorporated) C:\Program Files (x86)\VersionCue.dll 2005-03-23 06:35 - 2005-03-23 06:35 - 3170304 _____ (Adobe Systems, Incorporated) C:\Program Files (x86)\VersionCueUI.dll 2015-12-22 16:28 - 2017-02-02 11:18 - 0000165 _____ () C:\Users\C'est Bi\AppData\Roaming\sp_data.sys 2016-08-04 11:36 - 2016-08-04 11:36 - 0000000 ____H () C:\ProgramData\DP45977C.lfl Fichiers à déplacer ou supprimer: ==================== C:\Users\C'est Bi\ZHPCleaner.exe C:\Users\C'est Bi\ZHPDiag3.exe ==================== Bamital & volsnap ====================== (Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.) C:\WINDOWS\system32\winlogon.exe => Le fichier est signé numériquement C:\WINDOWS\system32\wininit.exe => Le fichier est signé numériquement C:\WINDOWS\explorer.exe => Le fichier est signé numériquement C:\WINDOWS\SysWOW64\explorer.exe => Le fichier est signé numériquement C:\WINDOWS\system32\svchost.exe => Le fichier est signé numériquement C:\WINDOWS\SysWOW64\svchost.exe => Le fichier est signé numériquement C:\WINDOWS\system32\services.exe => Le fichier est signé numériquement C:\WINDOWS\system32\User32.dll => Le fichier est signé numériquement C:\WINDOWS\SysWOW64\User32.dll => Le fichier est signé numériquement C:\WINDOWS\system32\userinit.exe => Le fichier est signé numériquement C:\WINDOWS\SysWOW64\userinit.exe => Le fichier est signé numériquement C:\WINDOWS\system32\rpcss.dll => Le fichier est signé numériquement C:\WINDOWS\system32\dnsapi.dll => Le fichier est signé numériquement C:\WINDOWS\SysWOW64\dnsapi.dll => Le fichier est signé numériquement C:\WINDOWS\system32\Drivers\volsnap.sys => Le fichier est signé numériquement LastRegBack: 2017-02-02 12:56 ==================== Fin de FRST.txt ============================