Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 04-07-2017 Exécuté par Utilisateur (administrateur) sur UTILISATEUR-PC (05-07-2017 09:04:40) Exécuté depuis C:\Users\Utilisateur\Desktop Profils chargés: Utilisateur & UpdatusUser (Profils disponibles: Utilisateur & UpdatusUser & DefaultAppPool) Platform: Windows 10 Pro Version 1607 (X64) Langue: Français (France) Internet Explorer Version 11 (Navigateur par défaut: Chrome) Mode d'amorçage: Normal Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processus (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.) (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (Microsoft Corporation) C:\Windows\System32\rundll32.exe () C:\Windows\Temp\g7AF8.tmp.exe () C:\Windows\Temp\g3555.tmp.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Microsoft Corporation) C:\Windows\System32\rundll32.exe (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe (Microsoft Corporation) C:\Windows\SysWOW64\rundll32.exe (Microsoft Corporation) C:\Windows\System32\mqsvc.exe (Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe (Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe (Intel Corporation) C:\Windows\System32\igfxtray.exe (Intel Corporation) C:\Windows\System32\hkcmd.exe (Intel Corporation) C:\Windows\System32\igfxpers.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe (Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe (Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ==================== Registre (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.) HKLM\...\Run: [SmartFaceVWatcher] => C:\Program Files\Toshiba\SmartFaceV\SmartFaceVWatcher.exe [238080 2009-10-19] (TOSHIBA Corporation) HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [1803976 2016-12-09] (NVIDIA Corporation) HKLM-x32\...\Run: [TWebCamera] => C:\Program Files (x86)\TOSHIBA\TOSHIBA Web Camera Application\TWebCamera.exe [2454840 2010-05-01] (TOSHIBA CORPORATION.) HKLM-x32\...\Run: [BCSSync] => C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [89184 2012-11-05] (Microsoft Corporation) HKLM\...\RunOnce: [ucdrv_repair] => C:\Program Files (x86)\UCBrowser\Security\uclauncher.exe [749456 2017-07-01] (UC Web Inc.) Winlogon\Notify\igfxcui: C:\WINDOWS\system32\igfxdev.dll (Intel Corporation) Winlogon\Notify\SDWinLogon-x32: SDWinLogon.dll [X] HKLM\ DisallowedCertificates: 03D22C9C66915D58C88912B64C1F984B8344EF09 (Comodo Security Solutions) <==== ATTENTION HKLM\ DisallowedCertificates: 0F684EC1163281085C6AF20528878103ACEFCAAB (F-Secure Corporation) <==== ATTENTION HKLM\ DisallowedCertificates: 1667908C9E22EFBD0590E088715CC74BE4C60884 (FRISK Software International/F-Prot) <==== ATTENTION HKLM\ DisallowedCertificates: 18DEA4EFA93B06AE997D234411F3FD72A677EECE (Bitdefender SRL) <==== ATTENTION HKLM\ DisallowedCertificates: 2026D13756EB0DB753DF26CB3B7EEBE3E70BB2CF (G DATA Software AG) <==== ATTENTION HKLM\ DisallowedCertificates: 249BDA38A611CD746A132FA2AF995A2D3C941264 (Malwarebytes Corporation) <==== ATTENTION HKLM\ DisallowedCertificates: 31AC96A6C17C425222C46D55C3CCA6BA12E54DAF (Symantec Corporation) <==== ATTENTION HKLM\ DisallowedCertificates: 331E2046A1CCA7BFEF766724394BE6112B4CA3F7 (Trend Micro) <==== ATTENTION HKLM\ DisallowedCertificates: 3353EA609334A9F23A701B9159E30CB6C22D4C59 (Webroot Inc.) <==== ATTENTION HKLM\ DisallowedCertificates: 373C33726722D3A5D1EDD1F1585D5D25B39BEA1A (SUPERAntiSpyware.com) <==== ATTENTION HKLM\ DisallowedCertificates: 3850EDD77CC74EC9F4829AE406BBF9C21E0DA87F (Kaspersky Lab) <==== ATTENTION HKLM\ DisallowedCertificates: 3D496FA682E65FC122351EC29B55AB94F3BB03FC (AVG Technologies CZ) <==== ATTENTION HKLM\ DisallowedCertificates: 4243A03DB4C3C15149CEA8B38EEA1DA4F26BD159 (PC Tools) <==== ATTENTION HKLM\ DisallowedCertificates: 42727E052C0C2E1B35AB53E1005FD9EDC9DE8F01 (K7 Computing Pvt Ltd) <==== ATTENTION HKLM\ DisallowedCertificates: 4420C99742DF11DD0795BC15B7B0ABF090DC84DF (Doctor Web Ltd.) <==== ATTENTION HKLM\ DisallowedCertificates: 4C0AF5719009B7C9D85C5EAEDFA3B7F090FE5FFF (Emsisoft Ltd) <==== ATTENTION HKLM\ DisallowedCertificates: 5240AB5B05D11B37900AC7712A3C6AE42F377C8C (Check Point Software Technologies Ltd.) <==== ATTENTION HKLM\ DisallowedCertificates: 5DD3D41810F28B2A13E9A004E6412061E28FA48D (Emsisoft Ltd) <==== ATTENTION HKLM\ DisallowedCertificates: 7457A3793086DBB58B3858D6476889E3311E550E (K7 Computing Pvt Ltd) <==== ATTENTION HKLM\ DisallowedCertificates: 76A9295EF4343E12DFC5FE05DC57227C1AB00D29 (BullGuard Ltd) <==== ATTENTION HKLM\ DisallowedCertificates: 775B373B33B9D15B58BC02B184704332B97C3CAF (McAfee) <==== ATTENTION HKLM\ DisallowedCertificates: 872CD334B7E7B3C3D1C6114CD6B221026D505EAB (Comodo Security Solutions) <==== ATTENTION HKLM\ DisallowedCertificates: 88AD5DFE24126872B33175D1778687B642323ACF (McAfee) <==== ATTENTION HKLM\ DisallowedCertificates: 9132E8B079D080E01D52631690BE18EBC2347C1E (Adaware Software) <==== ATTENTION HKLM\ DisallowedCertificates: 982D98951CF3C0CA2A02814D474A976CBFF6BDB1 (Safer Networking Ltd.) <==== ATTENTION HKLM\ DisallowedCertificates: 9A08641F7C5F2CCA0888388BE3E5DBDDAAA3B361 (Webroot Inc.) <==== ATTENTION HKLM\ DisallowedCertificates: 9C43F665E690AB4D486D4717B456C5554D4BCEB5 (ThreatTrack Security) <==== ATTENTION HKLM\ DisallowedCertificates: 9E3F95577B37C74CA2F70C1E1859E798B7FC6B13 (CURIOLAB S.M.B.A.) <==== ATTENTION HKLM\ DisallowedCertificates: A1F8DCB086E461E2ABB4B46ADCFA0B48C58B6E99 (Avira Operations GmbH & Co. KG) <==== ATTENTION HKLM\ DisallowedCertificates: A5341949ABE1407DD7BF7DFE75460D9608FBC309 (BullGuard Ltd) <==== ATTENTION HKLM\ DisallowedCertificates: A59CC32724DD07A6FC33F7806945481A2D13CA2F (ESET) <==== ATTENTION HKLM\ DisallowedCertificates: AB7E760DA2485EA9EF5A6EEE7647748D4BA6B947 (AVG Technologies CZ) <==== ATTENTION HKLM\ DisallowedCertificates: AD4C5429E10F4FF6C01840C20ABA344D7401209F (Avast Antivirus/Software) <==== ATTENTION HKLM\ DisallowedCertificates: AD96BB64BA36379D2E354660780C2067B81DA2E0 (Symantec Corporation) <==== ATTENTION HKLM\ DisallowedCertificates: B8EBF0E696AF77F51C96DB4D044586E2F4F8FD84 (Malwarebytes Corporation) <==== ATTENTION HKLM\ DisallowedCertificates: CDC37C22FE9272D8F2610206AD397A45040326B8 (Trend Micro) <==== ATTENTION HKLM\ DisallowedCertificates: D3F78D747E7C5D6D3AE8ABFDDA7522BFB4CBD598 (Kaspersky Lab) <==== ATTENTION HKLM\ DisallowedCertificates: DB303C9B61282DE525DC754A535CA2D6A9BD3D87 (ThreatTrack Security) <==== ATTENTION HKLM\ DisallowedCertificates: DB77E5CFEC34459146748B667C97B185619251BA (Avast Antivirus/Software) <==== ATTENTION HKLM\ DisallowedCertificates: E22240E837B52E691C71DF248F12D27F96441C00 (Total Defense, Inc.) <==== ATTENTION HKLM\ DisallowedCertificates: E513EAB8610CFFD7C87E00BCA15C23AAB407FCEF (AVG Technologies CZ) <==== ATTENTION HKLM\ DisallowedCertificates: ED841A61C0F76025598421BC1B00E24189E68D54 (Bitdefender SRL) <==== ATTENTION HKLM\ DisallowedCertificates: F83099622B4A9F72CB5081F742164AD1B8D048C9 (ESET) <==== ATTENTION HKLM\ DisallowedCertificates: FBB42F089AF2D570F2BF6F493D107A3255A9BB1A (Panda Security S.L) <==== ATTENTION HKLM\ DisallowedCertificates: FFFA650F2CB2ABC0D80527B524DD3F9FC172C138 (Doctor Web Ltd.) <==== ATTENTION HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION HKU\S-1-5-21-1855253156-2743403583-1120997896-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [9803992 2017-06-13] (Piriform Ltd) HKU\S-1-5-21-1855253156-2743403583-1120997896-1000\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [4468056 2015-06-18] (Disc Soft Ltd) HKU\S-1-5-21-1855253156-2743403583-1120997896-1000\...\MountPoints2: {3e030605-292e-11e5-a3e6-c474f5600c67} - "E:\setup.exe" HKU\S-1-5-21-1855253156-2743403583-1120997896-1000\...\MountPoints2: {89ef99ae-3c9a-11e7-b5a6-88ae1debdad6} - "E:\HiSuiteDownLoader.exe" HKU\S-1-5-21-1855253156-2743403583-1120997896-1000\...\MountPoints2: {9665d5a2-c6d7-11e6-b4f9-88ae1debdad6} - "E:\Setup.exe" HKU\S-1-5-21-1855253156-2743403583-1120997896-1000\...\MountPoints2: {b7439402-0a7e-11e7-b560-88ae1debdad6} - "E:\HiSuiteDownLoader.exe" HKU\S-1-5-21-1855253156-2743403583-1120997896-1001\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [516608 2016-07-16] (Microsoft Corporation) HKU\S-1-5-18\...\Run: [EPLTarget\P0000000000000000] => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YATIIXE.EXE /EPT "EPLTarget\P0000000000000000" /M "WF-2510 Series" AppInit_DLLs: C:\Windows\system32\nvinitx.dll => C:\Windows\system32\nvinitx.dll [178280 2016-12-09] (NVIDIA Corporation) AppInit_DLLs: , C:\WINDOWS\system32\nvinitx.dll => C:\WINDOWS\system32\nvinitx.dll [178280 2016-12-09] (NVIDIA Corporation) AppInit_DLLs-x32: C:\WINDOWS\SysWoW64\nvinit.dll => C:\WINDOWS\SysWoW64\nvinit.dll [158400 2016-12-09] (NVIDIA Corporation) AppInit_DLLs-x32: ,C:\WINDOWS\SysWOW64\nvinit.dll => C:\WINDOWS\SysWOW64\nvinit.dll [158400 2016-12-09] (NVIDIA Corporation) ShellExecuteHooks: Pas de nom - {5F51FFFE-7463-4220-B711-E5B9ACB8EDFE} - C:\Windows\C_02iu47.dat [2001408 2017-07-01] (Micrasaft Carparation) ==================== Internet (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.) Hosts: 127.0.0.1 localhost Tcpip\Parameters: [DhcpNameServer] 10.129.1.4 10.17.1.89 Tcpip\..\Interfaces\{1456cc0a-b13e-4c7d-98b7-57d454ba3c11}: [DhcpNameServer] 10.129.1.4 10.17.1.89 Tcpip\..\Interfaces\{1e5ff5fd-6090-4b57-9c1d-e7a50511b3a7}: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{e759fcc8-962e-46df-9701-5f60a786ed91}: [DhcpNameServer] 192.168.42.129 Internet Explorer: ================== HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.com HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page = HKU\S-1-5-21-1855253156-2743403583-1120997896-1000\Software\Microsoft\Internet Explorer\Main,Start Page = HKU\S-1-5-21-1855253156-2743403583-1120997896-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/fr-fr/?ocid=iehp SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation) BHO: Pas de nom -> {7C260B4B-F7A0-40B5-B403-BEFCDC6A4C3B} -> Pas de fichier BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation) BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation) BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\ssv.dll [2015-07-09] (Oracle Corporation) BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation) BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\jp2ssv.dll [2015-07-09] (Oracle Corporation) FireFox: ======== FF DefaultProfile: 5b4xqheh.default-1436882058459-1499191945366 FF ProfilePath: C:\Users\Utilisateur\AppData\Roaming\Mozilla\Firefox\Profiles\5b4xqheh.default-1436882058459-1499191945366 [2017-07-05] FF Homepage: Mozilla\Firefox\Profiles\5b4xqheh.default-1436882058459-1499191945366 -> www.google.fr/ FF HKLM-x32\...\Firefox\Extensions: [support@geticommerce.com] - C:\Program Files (x86)\Up Pro\up_pro-0.9.35.2-fx.xpi => non trouvé(e) FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_26_0_0_131.dll [2017-06-18] () FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] ( Microsoft Corporation) FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation) FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_26_0_0_131.dll [2017-06-18] () FF Plugin-x32: @java.com/DTPlugin,version=11.45.2 -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\dtplugin\npDeployJava1.dll [2015-07-09] (Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=11.45.2 -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\plugin2\npjp2.dll [2015-07-09] (Oracle Corporation) FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] ( Microsoft Corporation) FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~2\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-07-01] (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-07-01] (Google Inc.) FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2017-04-05] (Adobe Systems Inc.) FF ExtraCheck: C:\Program Files (x86)\mozilla firefox\browser\defaults\preferences\firefox.js [2017-07-01] Chrome: ======= CHR HomePage: Default -> hxxp://www.google.fr/ CHR Session Restore: Default -> est activé. CHR Profile: C:\Users\Utilisateur\AppData\Local\Google\Chrome\User Data\Default [2017-07-05] CHR Extension: (AdBlock) - C:\Users\Utilisateur\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2017-07-04] CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Utilisateur\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-07-04] CHR Extension: (Chrome Media Router) - C:\Users\Utilisateur\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-07-04] ==================== Services (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) S3 Apple Mobile Device; C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDevice.exe [55336 2015-07-13] () R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe [1268568 2015-06-18] (Disc Soft Ltd) R2 OtherSearch; C:\Program Files (x86)\0EEys2fsN4\kl.dll [1009152 2017-03-13] () [Fichier non signé] <==== ATTENTION S3 rpcapd; C:\Program Files (x86)\WinPcap\rpcapd.exe [117264 2010-06-25] (CACE Technologies, Inc.) S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [2889896 2016-10-02] (Microsoft Corporation) R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [278616 2017-05-04] (Synaptics Incorporated) S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [347320 2017-04-28] (Microsoft Corporation) S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103712 2017-04-28] (Microsoft Corporation) ===================== Pilotes (Avec liste blanche) ====================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) S2 atksgt; C:\WINDOWS\System32\DRIVERS\atksgt.sys [303616 2016-07-08] () [Fichier non signé] R1 cfidsk; C:\WINDOWS\System32\drivers\cfidsk.sys [196520 2017-06-20] () S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [131712 2016-09-05] (Samsung Electronics Co., Ltd.) R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [30264 2015-07-13] (Disc Soft Ltd) R3 DVB7700ALL; C:\WINDOWS\System32\Drivers\dvb7700all.sys [711168 2013-07-31] (DiBcom) S1 fontmzvfo.sys; C:\WINDOWS\system32\drivers\fontmzvfo.sys [15424 2017-07-05] () [Fichier non signé] R1 goesvrqbv.sys; C:\WINDOWS\system32\drivers\goesvrqbv.sys [121200 2017-07-04] () [Fichier non signé] R1 Lace514; C:\WINDOWS\System32\drivers\Lace_wpf_x64.sys [69400 2017-03-01] (Lace514) S2 lirsgt; C:\WINDOWS\System32\DRIVERS\lirsgt.sys [35328 2016-07-08] () [Fichier non signé] S1 lkysxwmzd.sys; C:\WINDOWS\system32\drivers\lkysxwmzd.sys [15424 2017-07-04] () [Fichier non signé] S3 MBAMSwissArmy; C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [192216 2017-07-01] (Malwarebytes) S1 MpKsl84aa31c7; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{9836A84B-D232-4A73-8566-B4831A125890}\MpKsl84aa31c7.sys [44928 2017-06-22] () [Fichier non signé] S3 NetAdapterCx; C:\WINDOWS\System32\drivers\NetAdapterCx.sys [90624 2016-07-16] () R2 NPF; C:\WINDOWS\System32\drivers\npf.sys [35344 2010-06-25] (CACE Technologies, Inc.) R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [589824 2016-07-16] (Realtek ) R3 rtwlane_13; C:\WINDOWS\System32\drivers\rtwlane_13.sys [3717120 2016-07-16] (Realtek Semiconductor Corporation ) S3 SmbDrvI; C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys [51392 2016-11-23] (Synaptics Incorporated) S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [165504 2016-09-05] (Samsung Electronics Co., Ltd.) S1 sygemyxal.sys; C:\WINDOWS\system32\drivers\sygemyxal.sys [15424 2017-07-01] () [Fichier non signé] R3 Thotkey; C:\WINDOWS\System32\drivers\Thotkey.sys [45720 2015-12-31] (Toshiba Corporation) S3 Trufos; C:\WINDOWS\System32\DRIVERS\Trufos.sys [452040 2016-02-22] (BitDefender S.R.L.) R1 ucdrv; C:\Program Files (x86)\UCBrowser\Security:ucdrv-x64.sys [25444 ] (UC Web Inc.) <==== ATTENTION S1 ujqyykkkk.sys; C:\WINDOWS\system32\drivers\ujqyykkkk.sys [15424 2017-07-03] () [Fichier non signé] S1 wbmmfrcoc.sys; C:\WINDOWS\system32\drivers\wbmmfrcoc.sys [15424 2017-07-01] () [Fichier non signé] S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [44056 2016-07-16] (Microsoft Corporation) S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [290144 2016-07-16] (Microsoft Corporation) S3 wdm_usb; C:\WINDOWS\system32\DRIVERS\usb2ser.sys [151184 2016-07-15] (MBB) S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [123232 2016-07-16] (Microsoft Corporation) S1 ztxqvgcmi.sys; C:\WINDOWS\system32\drivers\ztxqvgcmi.sys [15424 2017-07-04] () [Fichier non signé] ==================== NetSvcs (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) ==================== Un mois - Créés - fichiers et dossiers ======== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2017-07-05 09:04 - 2017-07-05 09:06 - 00021139 _____ C:\Users\Utilisateur\Desktop\FRST.txt 2017-07-05 09:04 - 2017-07-05 09:04 - 00000000 ____D C:\FRST 2017-07-05 09:03 - 2017-07-05 09:03 - 02436608 _____ (Farbar) C:\Users\Utilisateur\Desktop\FRST64.exe 2017-07-05 08:42 - 2017-07-05 08:42 - 00015424 _____ C:\WINDOWS\system32\Drivers\fontmzvfo.sys 2017-07-04 22:03 - 2017-07-04 22:03 - 00000837 _____ C:\Users\Public\Desktop\Speccy.lnk 2017-07-04 22:03 - 2017-07-04 22:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Speccy 2017-07-04 22:03 - 2017-07-04 22:03 - 00000000 ____D C:\Program Files\Speccy 2017-07-04 22:02 - 2017-07-04 22:02 - 06299336 _____ (Piriform Ltd) C:\Users\Utilisateur\Downloads\spsetup131.exe 2017-07-04 21:36 - 2017-07-04 21:36 - 00015424 _____ C:\WINDOWS\system32\Drivers\ztxqvgcmi.sys 2017-07-04 18:56 - 2017-07-04 18:56 - 00002052 _____ C:\WINDOWS\System32\Tasks\xpUMtZZUYi 2017-07-04 18:54 - 2017-07-05 08:46 - 00000000 ____D C:\Program Files (x86)\nJaWQZP2It 2017-07-04 18:54 - 2017-07-05 08:46 - 00000000 ____D C:\Program Files (x86)\EVyVfzdts1 2017-07-04 18:54 - 2017-07-05 08:46 - 00000000 ____D C:\Program Files (x86)\4fUWgxRZPF 2017-07-04 18:54 - 2017-07-05 08:46 - 00000000 ____D C:\Program Files (x86)\0EEys2fsN4 2017-07-04 18:54 - 2017-07-04 18:56 - 00000002 _____ C:\END 2017-07-04 18:54 - 2017-07-04 18:54 - 00002052 _____ C:\WINDOWS\System32\Tasks\WAPW2385O0 2017-07-04 18:54 - 2017-07-04 18:54 - 00002052 _____ C:\WINDOWS\System32\Tasks\bWvVFuCON4 2017-07-04 18:54 - 2017-07-04 18:54 - 00002052 _____ C:\WINDOWS\System32\Tasks\7phpx7ifj2 2017-07-04 18:49 - 2017-07-04 21:35 - 00121200 _____ C:\WINDOWS\system32\Drivers\goesvrqbv.sys 2017-07-04 18:43 - 2017-07-04 18:43 - 00000000 ____D C:\Users\Utilisateur\AppData\Local\AdvinstAnalytics 2017-07-04 18:38 - 2017-07-04 18:38 - 03067264 _____ (Nicolas Coolman) C:\Users\Utilisateur\Downloads\zhpfix_2017-6-13-1.exe 2017-07-04 18:38 - 2017-07-04 18:38 - 00000000 ____D C:\Users\Utilisateur\Downloads\Quarantine 2017-07-04 17:00 - 2017-07-04 17:00 - 00002052 _____ C:\WINDOWS\System32\Tasks\RSmILknrdh 2017-07-04 16:59 - 2017-07-04 16:59 - 00002052 _____ C:\WINDOWS\System32\Tasks\IDTPrdnf1m 2017-07-04 16:58 - 2017-07-05 08:46 - 00000000 ____D C:\Program Files (x86)\WhORfUhdsu 2017-07-04 16:58 - 2017-07-05 08:46 - 00000000 ____D C:\Program Files (x86)\ajdLiuEfZ6 2017-07-04 16:50 - 2017-07-04 17:04 - 00000214 _____ C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job 2017-07-04 16:15 - 2017-07-04 17:07 - 01663672 _____ (Malwarebytes) C:\Users\Utilisateur\Desktop\JRT.exe 2017-07-04 15:45 - 2017-07-04 15:45 - 04110280 _____ C:\Users\Utilisateur\Desktop\adwcleaner_6.047.exe 2017-07-04 15:36 - 2017-07-05 08:46 - 00000000 ____D C:\Program Files (x86)\AJobHVAcLO 2017-07-04 15:16 - 2017-07-04 15:16 - 00000934 _____ C:\Users\Utilisateur\Desktop\ZHPCleaner.lnk 2017-07-04 15:13 - 2017-07-04 15:13 - 02799488 _____ C:\Users\Utilisateur\Downloads\zhpcleaner_2017.06.26.105.exe 2017-07-04 11:31 - 2017-07-04 11:31 - 00015424 _____ C:\WINDOWS\system32\Drivers\lkysxwmzd.sys 2017-07-03 23:10 - 2017-07-03 23:10 - 02605744 _____ (Kaspersky Lab) C:\Users\Utilisateur\Downloads\kav17.0.0.611abcdefr_12416.exe 2017-07-03 19:43 - 2017-07-03 19:43 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Defense Grid 2 2017-07-03 19:41 - 2017-07-03 19:52 - 00000000 ____D C:\Defense Grid 2 2017-07-03 19:19 - 2017-07-04 18:57 - 00000000 ____D C:\Users\Utilisateur\AppData\Roaming\ZHP 2017-07-03 19:19 - 2017-07-04 18:56 - 00000915 _____ C:\Users\Utilisateur\Desktop\ZHPDiag.lnk 2017-07-03 19:19 - 2017-07-04 15:16 - 00000000 ____D C:\Users\Utilisateur\AppData\Local\ZHP 2017-07-03 19:18 - 2017-07-03 19:18 - 02765696 _____ C:\Users\Utilisateur\Downloads\ZHPDiag3.exe 2017-07-03 19:00 - 2017-07-04 16:18 - 00000000 ____D C:\Program Files (x86)\jetstrmedia 2017-07-03 18:59 - 2017-07-03 18:59 - 00003796 _____ C:\WINDOWS\System32\Tasks\AdapterUpdater 2017-07-03 18:59 - 2017-07-03 18:59 - 00003764 _____ C:\WINDOWS\System32\Tasks\updater 2017-07-03 18:58 - 2017-07-03 19:00 - 00000000 ____D C:\Users\Default\AppData\Local\AdvinstAnalytics 2017-07-03 18:58 - 2017-07-03 19:00 - 00000000 ____D C:\Users\Default User\AppData\Local\AdvinstAnalytics 2017-07-03 18:51 - 2017-07-03 18:51 - 00015424 _____ C:\WINDOWS\system32\Drivers\ujqyykkkk.sys 2017-07-01 22:30 - 2017-07-05 08:43 - 00000000 ____D C:\Windows.old 2017-07-01 22:29 - 2017-07-01 22:29 - 00015424 _____ C:\WINDOWS\system32\Drivers\wbmmfrcoc.sys 2017-07-01 22:20 - 2017-07-01 22:20 - 00000000 ____D C:\$WINDOWS.~BT 2017-07-01 22:16 - 2017-07-01 23:14 - 00000000 ___HD C:\$SysReset 2017-07-01 18:30 - 2017-07-05 08:46 - 00000000 ____D C:\Program Files (x86)\vu2EXEnNaK 2017-07-01 18:26 - 2017-07-01 18:26 - 00015424 _____ C:\WINDOWS\system32\Drivers\sygemyxal.sys 2017-07-01 18:05 - 2017-07-04 18:45 - 00000000 ____D C:\Users\Utilisateur\AppData\Roaming\oec4niw0lq0 2017-07-01 18:05 - 2017-07-04 18:45 - 00000000 ____D C:\Users\Utilisateur\AppData\Roaming\fir3ux2crfs 2017-07-01 17:35 - 2017-07-01 17:35 - 00000000 ____D C:\Program Files\b680eedf1f51fd416481ee5d86de21db 2017-07-01 17:34 - 2017-07-01 17:34 - 00000000 ____D C:\Program Files\EIGTW7PLFK 2017-07-01 17:33 - 2017-07-04 18:45 - 00000000 ____D C:\Users\Utilisateur\AppData\Roaming\gygb2kk0bil 2017-07-01 17:33 - 2017-07-04 18:45 - 00000000 ____D C:\Users\Utilisateur\AppData\Roaming\2xccw1pgtbk 2017-07-01 17:33 - 2017-07-01 17:34 - 00000000 ____D C:\Program Files\MW9W5G4DQP 2017-07-01 17:02 - 2017-07-04 18:45 - 00000000 ____D C:\Users\Utilisateur\AppData\Roaming\yxfvydkvwsi 2017-07-01 17:02 - 2017-07-04 18:45 - 00000000 ____D C:\Users\Utilisateur\AppData\Roaming\g4svjya33d0 2017-07-01 17:02 - 2017-07-01 17:02 - 00000000 ____D C:\Program Files\IB33TB16RS 2017-07-01 16:55 - 2017-07-01 17:45 - 00002382 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2017-07-01 16:55 - 2017-07-01 17:45 - 00002364 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2017-07-01 16:55 - 2017-07-01 16:55 - 00002880 _____ C:\WINDOWS\System32\Tasks\CCleanerSkipUAC 2017-07-01 16:55 - 2017-07-01 16:55 - 00000863 _____ C:\Users\Public\Desktop\CCleaner.lnk 2017-07-01 16:55 - 2017-07-01 16:55 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner 2017-07-01 16:55 - 2017-07-01 16:55 - 00000000 ____D C:\Program Files\CCleaner 2017-07-01 16:54 - 2017-07-03 19:01 - 00000000 ____D C:\Users\Utilisateur\AppData\Local\Google 2017-07-01 16:54 - 2017-07-01 17:03 - 00003586 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA 2017-07-01 16:54 - 2017-07-01 17:03 - 00003462 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore 2017-07-01 16:54 - 2017-07-01 16:55 - 00000000 ____D C:\Program Files (x86)\Google 2017-07-01 16:53 - 2017-07-01 16:53 - 09598376 _____ (Piriform Ltd) C:\Users\Utilisateur\Downloads\ccsetup531.exe 2017-07-01 16:43 - 2017-07-01 16:43 - 00000000 ____D C:\Program Files (x86)\UCBrowser 2017-07-01 16:41 - 2017-07-01 21:25 - 02001408 ___SH (Micrasaft Carparation) C:\WINDOWS\C_02iu47.dat 2017-07-01 16:41 - 2017-07-01 16:41 - 00016842 _____ C:\WINDOWS\System32\Tasks\Video Suite Agent 2017-07-01 16:36 - 2017-07-04 21:41 - 00000075 _____ C:\WINDOWS\system32\r6lstmp4.dat 2017-07-01 16:36 - 2017-07-01 16:36 - 00000000 ____D C:\Users\Public\Documents\XMUpdate 2017-07-01 16:36 - 2017-07-01 16:36 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\mgdisk 2017-07-01 16:36 - 2017-07-01 16:36 - 00000000 ____D C:\Program Files (x86)\mgdisk 2017-07-01 16:35 - 2017-07-04 21:35 - 00020384 _____ C:\pagefile_bak.$$$ 2017-07-01 16:35 - 2017-07-04 21:35 - 00000584 _____ C:\pagefile_bak3.$$$ 2017-07-01 16:35 - 2017-07-04 21:35 - 00000048 _____ C:\pagefile_bak2.$$$ 2017-07-01 16:35 - 2017-07-01 17:06 - 00000032 _____ C:\pagefile.$$$ 2017-07-01 16:34 - 2017-07-01 18:27 - 00003298 _____ C:\WINDOWS\System32\Tasks\b680eedf1f51fd416481ee5d86de21db 2017-07-01 16:32 - 2017-07-01 16:32 - 00000000 ____D C:\Program Files\FL5G2BIXHF 2017-07-01 16:31 - 2017-07-04 18:45 - 00000000 ____D C:\Users\Utilisateur\AppData\Roaming\ykza0xliduq 2017-07-01 16:31 - 2017-07-04 18:45 - 00000000 ____D C:\Users\Utilisateur\AppData\Roaming\e0xut0tsn12 2017-07-01 16:31 - 2017-07-04 18:45 - 00000000 ____D C:\Users\Utilisateur\AppData\Roaming\cgd13crxpq5 2017-07-01 16:31 - 2017-07-04 18:45 - 00000000 ____D C:\Users\Utilisateur\AppData\Roaming\1lcg4dyt2g2 2017-07-01 16:31 - 2017-07-01 18:05 - 01705984 _____ C:\Users\Utilisateur\AppData\Local\po.db 2017-07-01 16:31 - 2017-07-01 17:18 - 00000000 ____D C:\Program Files (x86)\SDownloader 2017-07-01 16:31 - 2017-07-01 16:31 - 00140800 _____ C:\Users\Utilisateur\AppData\Local\installer.dat 2017-07-01 16:31 - 2017-07-01 16:31 - 00011568 _____ C:\Users\Utilisateur\AppData\Local\InstallationConfiguration.xml 2017-07-01 16:31 - 2017-07-01 16:31 - 00000000 ____D C:\Program Files\WIIVCFJSWT 2017-07-01 16:31 - 2017-07-01 16:31 - 00000000 ____D C:\Program Files (x86)\wg0k5dj1n4m 2017-07-01 16:27 - 2017-07-01 16:27 - 00019968 _____ C:\Users\Utilisateur\AppData\Local\flepdd.dll 2017-07-01 16:27 - 2017-07-01 16:27 - 00003072 _____ C:\Users\Utilisateur\AppData\Local\uninstallce.exe 2017-07-01 16:26 - 2017-07-01 16:26 - 00859648 _____ (TODO: ) C:\Users\Utilisateur\Defense_Grid_2_Pc.exe 2017-06-28 14:38 - 2017-06-28 14:38 - 00446976 _____ C:\WINDOWS\228feebf59dccca13f530c77a43ea6cb.exe 2017-06-28 14:38 - 2017-06-28 14:38 - 00051629 _____ C:\WINDOWS\uninstaller.dat 2017-06-20 08:42 - 2017-06-20 08:42 - 00196520 _____ C:\WINDOWS\system32\Drivers\cfidsk.sys 2017-06-14 21:25 - 2017-06-14 21:25 - 00000000 ___SD C:\WINDOWS\UpdateAssistantV2 2017-06-13 23:06 - 2017-06-03 11:55 - 00780640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe 2017-06-13 23:06 - 2017-06-03 11:39 - 05686272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll 2017-06-13 23:06 - 2017-06-03 11:33 - 00095232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataTimeUtil.dll 2017-06-13 23:06 - 2017-06-03 11:31 - 00224256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExSMime.dll 2017-06-13 23:06 - 2017-06-03 11:28 - 00285184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.BlockedShutdown.dll 2017-06-13 23:06 - 2017-06-03 11:23 - 00306688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll 2017-06-13 23:06 - 2017-06-03 11:22 - 00327168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netcorehc.dll 2017-06-13 23:06 - 2017-06-03 11:22 - 00181760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tcpipcfg.dll 2017-06-13 23:06 - 2017-06-03 11:19 - 01164288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certutil.exe 2017-06-13 23:06 - 2017-06-03 11:16 - 00709120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CPFilters.dll 2017-06-13 23:06 - 2017-06-03 11:12 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fdProxy.dll 2017-06-13 23:06 - 2017-06-03 11:08 - 02643968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll 2017-06-13 23:06 - 2017-06-03 11:05 - 01883648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Logon.dll 2017-06-13 23:06 - 2017-06-03 11:04 - 00773120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe 2017-06-13 23:06 - 2017-06-03 11:03 - 01988096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll 2017-06-13 23:06 - 2017-06-03 11:02 - 02997760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys 2017-06-13 23:06 - 2016-09-07 06:53 - 00118272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppointmentActivation.dll 2017-06-13 23:05 - 2017-06-03 12:50 - 00315744 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll 2017-06-13 23:05 - 2017-06-03 12:50 - 00192856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aepic.dll 2017-06-13 23:05 - 2017-06-03 12:11 - 01706488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll 2017-06-13 23:05 - 2017-06-03 12:06 - 02048496 _____ C:\WINDOWS\SysWOW64\CoreUIComponents.dll 2017-06-13 23:05 - 2017-06-03 11:58 - 00340832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll 2017-06-13 23:05 - 2017-06-03 11:52 - 01021784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxPackaging.dll 2017-06-13 23:05 - 2017-06-03 11:52 - 00607072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupEngine.dll 2017-06-13 23:05 - 2017-06-03 11:52 - 00111968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupApi.dll 2017-06-13 23:05 - 2017-06-03 11:49 - 20967840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll 2017-06-13 23:05 - 2017-06-03 11:44 - 01412640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll 2017-06-13 23:05 - 2017-06-03 11:44 - 00545944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe 2017-06-13 23:05 - 2017-06-03 11:32 - 00002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tzres.dll 2017-06-13 23:05 - 2017-06-03 11:31 - 00037376 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll 2017-06-13 23:05 - 2017-06-03 11:28 - 00232448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edputil.dll 2017-06-13 23:05 - 2017-06-03 11:26 - 00231936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.LockScreen.dll 2017-06-13 23:05 - 2017-06-03 11:26 - 00100352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AuthBrokerUI.dll 2017-06-13 23:05 - 2017-06-03 11:22 - 00364544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupShim.dll 2017-06-13 23:05 - 2017-06-03 11:20 - 00755712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll 2017-06-13 23:05 - 2017-06-03 11:15 - 19414016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll 2017-06-13 23:05 - 2017-06-03 11:15 - 18364928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll 2017-06-13 23:05 - 2017-06-03 11:15 - 00886272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aadtb.dll 2017-06-13 23:05 - 2017-06-03 11:08 - 12187648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll 2017-06-13 23:05 - 2017-06-03 11:08 - 01221120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Audio.dll 2017-06-13 23:05 - 2017-06-03 11:06 - 03664384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll 2017-06-13 23:05 - 2017-06-03 11:05 - 00295424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hnetcfg.dll 2017-06-13 23:05 - 2017-06-03 11:04 - 06042624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll 2017-06-13 23:05 - 2017-06-03 11:04 - 02006528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll 2017-06-13 23:05 - 2017-06-03 10:40 - 00483840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll 2017-06-13 23:05 - 2017-03-04 08:22 - 00822784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakradiag.dll 2017-06-13 23:05 - 2017-03-04 08:19 - 00635904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll 2017-06-13 23:05 - 2017-03-04 08:16 - 00368128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\puiobj.dll 2017-06-13 22:55 - 2017-06-03 11:14 - 00124416 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll 2017-06-13 22:55 - 2017-06-03 10:52 - 03403264 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll 2017-06-13 22:55 - 2017-06-03 10:50 - 02538496 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll 2017-06-13 22:55 - 2017-06-03 10:49 - 00903680 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe 2017-06-13 22:54 - 2017-06-03 12:11 - 00128864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tm.sys 2017-06-13 22:54 - 2017-06-03 11:59 - 00118112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tdx.sys 2017-06-13 22:54 - 2017-06-03 11:50 - 00857440 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe 2017-06-13 22:54 - 2017-06-03 11:49 - 00509280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys 2017-06-13 22:54 - 2017-06-03 11:39 - 02532192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys 2017-06-13 22:54 - 2017-06-03 11:16 - 00119808 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataTimeUtil.dll 2017-06-13 22:54 - 2017-06-03 11:15 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\system32\musdialoghandlers.dll 2017-06-13 22:54 - 2017-06-03 11:14 - 00238592 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe 2017-06-13 22:54 - 2017-06-03 11:14 - 00098304 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe 2017-06-13 22:54 - 2017-06-03 11:10 - 00418304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BlockedShutdown.dll 2017-06-13 22:54 - 2017-06-03 11:08 - 00147456 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsrv.dll 2017-06-13 22:54 - 2017-06-03 11:07 - 00552960 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll 2017-06-13 22:54 - 2017-06-03 10:49 - 03615744 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys 2017-06-13 22:54 - 2017-06-03 10:49 - 02691072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll 2017-06-13 22:54 - 2017-06-03 10:49 - 02318848 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll 2017-06-13 22:54 - 2017-06-03 10:49 - 01513472 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys 2017-06-13 22:54 - 2017-06-03 10:48 - 00391168 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll 2017-06-13 22:53 - 2017-06-03 12:14 - 00136024 _____ (Microsoft Corporation) C:\WINDOWS\system32\ImplatSetup.dll 2017-06-13 22:53 - 2017-06-03 12:08 - 07783256 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe 2017-06-13 22:53 - 2017-06-03 11:59 - 01181024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys 2017-06-13 22:53 - 2017-06-03 11:53 - 00404824 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll 2017-06-13 22:53 - 2017-06-03 11:48 - 00857952 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupEngine.dll 2017-06-13 22:53 - 2017-06-03 11:48 - 00148832 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupApi.dll 2017-06-13 22:53 - 2017-06-03 11:45 - 22220864 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll 2017-06-13 22:53 - 2017-06-03 11:44 - 01600624 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll 2017-06-13 22:53 - 2017-06-03 11:11 - 00353792 _____ (Microsoft Corporation) C:\WINDOWS\system32\cloudAP.dll 2017-06-13 22:53 - 2017-06-03 11:10 - 00117760 _____ (Microsoft Corporation) C:\WINDOWS\system32\AuthBrokerUI.dll 2017-06-13 22:53 - 2017-06-03 11:09 - 00489472 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupShim.dll 2017-06-13 22:53 - 2017-06-03 11:09 - 00441344 _____ (Microsoft Corporation) C:\WINDOWS\system32\netcorehc.dll 2017-06-13 22:53 - 2017-06-03 11:09 - 00337408 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkBindingEngineMigPlugin.dll 2017-06-13 22:53 - 2017-06-03 11:07 - 00456192 _____ (Microsoft Corporation) C:\WINDOWS\system32\puiobj.dll 2017-06-13 22:53 - 2017-06-03 11:03 - 00932864 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll 2017-06-13 22:53 - 2017-06-03 10:54 - 01217024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Audio.dll 2017-06-13 22:53 - 2017-06-03 10:53 - 08125440 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll 2017-06-13 22:53 - 2017-06-03 10:52 - 02510848 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll 2017-06-13 22:53 - 2017-06-03 10:51 - 00266752 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupSvc.dll 2017-06-13 22:53 - 2017-06-03 10:50 - 04744704 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll 2017-06-13 22:53 - 2017-06-03 10:48 - 01131008 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll 2017-06-13 22:53 - 2017-06-03 10:48 - 00834048 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32spl.dll 2017-06-13 22:53 - 2017-06-03 10:46 - 01121280 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll 2017-06-13 22:53 - 2017-05-25 07:56 - 00038752 _____ (Microsoft Corporation) C:\WINDOWS\system32\OOBEUpdater.exe 2017-06-13 22:53 - 2017-03-04 08:16 - 00100864 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpninprc.dll 2017-06-13 22:52 - 2017-06-03 12:14 - 00379232 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll 2017-06-13 22:52 - 2017-06-03 12:09 - 02213760 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll 2017-06-13 22:52 - 2017-06-03 11:51 - 02187104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys 2017-06-13 22:52 - 2017-06-03 11:51 - 00402272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys 2017-06-13 22:52 - 2017-06-03 11:49 - 00624048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys 2017-06-13 22:52 - 2017-06-03 11:40 - 01566552 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll 2017-06-13 22:52 - 2017-06-03 11:40 - 00628552 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe 2017-06-13 22:52 - 2017-06-03 11:18 - 22569984 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll 2017-06-13 22:52 - 2017-06-03 11:16 - 00002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzres.dll 2017-06-13 22:52 - 2017-06-03 11:14 - 00045056 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll 2017-06-13 22:52 - 2017-06-03 11:10 - 00252928 _____ (Microsoft Corporation) C:\WINDOWS\system32\edputil.dll 2017-06-13 22:52 - 2017-06-03 11:08 - 00691200 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll 2017-06-13 22:52 - 2017-06-03 11:07 - 00255488 _____ (Microsoft Corporation) C:\WINDOWS\system32\HNetCfgClient.dll 2017-06-13 22:52 - 2017-06-03 11:01 - 00856064 _____ (Microsoft Corporation) C:\WINDOWS\system32\efscore.dll 2017-06-13 22:52 - 2017-06-03 11:00 - 23677440 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll 2017-06-13 22:52 - 2017-06-03 10:56 - 13091840 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll 2017-06-13 22:52 - 2017-06-03 10:52 - 00975872 _____ (Microsoft Corporation) C:\WINDOWS\HelpPane.exe 2017-06-13 22:52 - 2017-06-03 10:49 - 00351744 _____ (Microsoft Corporation) C:\WINDOWS\system32\hnetcfg.dll 2017-06-13 22:52 - 2017-06-03 10:48 - 01490432 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll 2017-06-13 22:52 - 2017-06-03 08:08 - 00080078 _____ C:\WINDOWS\system32\normidna.nls 2017-06-13 22:51 - 2017-06-03 12:14 - 01564512 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll 2017-06-13 22:51 - 2017-06-03 12:14 - 01214816 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll 2017-06-13 22:51 - 2017-06-03 12:14 - 00629088 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll 2017-06-13 22:51 - 2017-06-03 12:14 - 00544096 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll 2017-06-13 22:51 - 2017-06-03 12:14 - 00335712 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcntel.dll 2017-06-13 22:51 - 2017-06-03 12:14 - 00334176 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll 2017-06-13 22:51 - 2017-06-03 12:14 - 00233824 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll 2017-06-13 22:51 - 2017-06-03 12:14 - 00136032 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll 2017-06-13 22:51 - 2017-06-03 12:14 - 00096608 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe 2017-06-13 22:51 - 2017-06-03 12:14 - 00034648 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe 2017-06-13 22:51 - 2017-06-03 12:01 - 02681200 _____ C:\WINDOWS\system32\CoreUIComponents.dll 2017-06-13 22:51 - 2017-06-03 11:59 - 00764392 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll 2017-06-13 22:51 - 2017-06-03 11:48 - 01112416 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxPackaging.dll 2017-06-13 22:51 - 2017-06-03 11:39 - 00455520 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe 2017-06-13 22:51 - 2017-06-03 11:22 - 07217152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll 2017-06-13 22:51 - 2017-06-03 11:08 - 00324608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll 2017-06-13 22:51 - 2017-06-03 11:06 - 00198144 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpapisrv.dll 2017-06-13 22:51 - 2017-06-03 10:52 - 00886784 _____ (Microsoft Corporation) C:\WINDOWS\system32\CPFilters.dll 2017-06-13 22:51 - 2017-06-03 10:51 - 01418240 _____ (Microsoft Corporation) C:\WINDOWS\system32\certutil.exe 2017-06-13 22:51 - 2017-06-03 10:49 - 02475520 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll 2017-06-13 22:51 - 2017-06-03 10:49 - 01845248 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll 2017-06-13 22:50 - 2017-06-03 12:16 - 00279904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys 2017-06-13 22:50 - 2017-06-03 11:54 - 00187232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpsd.sys 2017-06-13 22:50 - 2017-06-03 11:50 - 00381792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS 2017-06-13 22:50 - 2017-06-03 11:48 - 01100128 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe 2017-06-13 22:50 - 2017-06-03 11:48 - 00989024 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe 2017-06-13 22:50 - 2017-06-03 11:15 - 00041472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BasicRender.sys 2017-06-13 22:50 - 2017-06-03 10:58 - 00064512 _____ (Microsoft Corporation) C:\WINDOWS\system32\fdProxy.dll ==================== Un mois - Modifiés - fichiers et dossiers ======== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2017-07-05 08:49 - 2016-10-02 09:45 - 00000000 ____D C:\WINDOWS\system32\SleepStudy 2017-07-05 08:45 - 2016-10-02 09:53 - 00000000 ____D C:\Users\UpdatusUser 2017-07-05 08:43 - 2016-07-09 23:41 - 00073232 _____ (Absolute Software Corp.) C:\WINDOWS\SysWOW64\rpcnet.dll 2017-07-05 08:43 - 2016-07-09 15:12 - 00017920 _____ C:\WINDOWS\system32\rpcnetp.exe 2017-07-05 08:42 - 2016-10-02 10:17 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT 2017-07-05 00:31 - 2017-05-04 01:34 - 00001761 _____ C:\Users\Public\Desktop\League of Legends.lnk 2017-07-04 21:50 - 2015-07-08 14:25 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information 2017-07-04 21:43 - 2016-10-02 09:53 - 00000000 ____D C:\Users\Utilisateur 2017-07-04 21:40 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\AppReadiness 2017-07-04 21:35 - 2016-07-16 08:04 - 00786432 _____ C:\WINDOWS\system32\config\BBI 2017-07-04 20:39 - 2016-11-20 03:05 - 00000000 ____D C:\Users\Utilisateur\AppData\LocalLow\Mozilla 2017-07-04 20:08 - 2016-11-18 08:38 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox 2017-07-04 17:14 - 2016-07-09 15:14 - 00017920 _____ C:\WINDOWS\SysWOW64\rpcnetp.dll 2017-07-04 17:11 - 2016-07-09 15:12 - 00017920 _____ C:\WINDOWS\SysWOW64\rpcnetp.exe 2017-07-04 16:54 - 2015-07-14 09:15 - 00000000 ____D C:\AdwCleaner 2017-07-03 23:38 - 2016-07-16 13:45 - 00000000 ____D C:\WINDOWS\INF 2017-07-03 19:40 - 2015-07-13 10:51 - 00000000 ____D C:\Users\Utilisateur\AppData\Roaming\DAEMON Tools Lite 2017-07-03 19:13 - 2016-02-11 21:18 - 00000000 ____D C:\Users\Utilisateur\Documents\My Games 2017-07-03 19:05 - 2016-07-16 13:47 - 00000000 ___HD C:\Program Files\WindowsApps 2017-07-01 23:21 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\System 2017-07-01 20:52 - 2016-07-16 13:36 - 00000000 ____D C:\WINDOWS\CbsTemp 2017-07-01 18:26 - 2016-10-02 09:45 - 00338864 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2017-07-01 17:34 - 2015-07-10 07:38 - 00192216 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys 2017-07-01 17:32 - 2016-07-01 00:44 - 00001106 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk 2017-07-01 17:29 - 2016-07-09 15:45 - 00000000 ____D C:\Users\Utilisateur\AppData\Local\Packages 2017-07-01 17:08 - 2015-07-13 17:05 - 00000000 ____D C:\Program Files\Common Files\Apple 2017-07-01 16:59 - 2016-10-02 10:43 - 00000000 ___DC C:\WINDOWS\Panther 2017-07-01 16:59 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\LiveKernelReports 2017-07-01 16:59 - 2015-07-14 11:10 - 00000000 ____D C:\Users\Utilisateur\AppData\Local\CrashDumps 2017-07-01 16:40 - 2015-07-08 11:20 - 00000000 ____D C:\Users\Utilisateur\AppData\Local\VirtualStore 2017-07-01 12:19 - 2015-08-06 02:04 - 00000000 ____D C:\Users\Utilisateur\AppData\Local\ElevatedDiagnostics 2017-06-30 22:14 - 2016-10-02 09:52 - 12818622 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2017-06-30 22:14 - 2016-07-17 00:40 - 06567194 _____ C:\WINDOWS\system32\perfh00C.dat 2017-06-30 22:14 - 2016-07-17 00:40 - 01859352 _____ C:\WINDOWS\system32\perfc00C.dat 2017-06-22 21:32 - 2017-01-27 02:13 - 00003300 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task v2 2017-06-22 21:32 - 2016-07-09 15:52 - 00002473 _____ C:\Users\Utilisateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2017-06-22 21:32 - 2016-07-09 15:52 - 00000000 ___RD C:\Users\Utilisateur\OneDrive 2017-06-22 00:05 - 2015-07-13 13:59 - 00000000 ____D C:\Users\Utilisateur\AppData\Roaming\Skype 2017-06-21 22:51 - 2017-05-14 15:25 - 00000000 ___RD C:\Program Files (x86)\Skype 2017-06-21 22:51 - 2015-07-13 13:59 - 00000000 ____D C:\ProgramData\Skype 2017-06-21 22:50 - 2016-07-09 16:05 - 00000000 ____D C:\Users\Utilisateur\AppData\Local\Comms 2017-06-18 01:00 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\SysWOW64\Macromed 2017-06-18 01:00 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\Macromed 2017-06-17 12:35 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\rescache 2017-06-14 21:32 - 2016-04-27 07:53 - 00000000 __RHD C:\Users\Public\AccountPictures 2017-06-14 21:26 - 2015-07-13 11:19 - 00000000 ____D C:\Program Files\Microsoft Silverlight 2017-06-14 21:26 - 2015-07-13 11:19 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight 2017-06-14 21:25 - 2016-07-16 13:47 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel 2017-06-14 21:25 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\appraiser 2017-06-14 21:25 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\ShellExperiences 2017-06-14 20:16 - 2015-07-13 11:20 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight 2017-06-14 20:12 - 2015-07-08 15:55 - 00000000 ____D C:\WINDOWS\system32\MRT 2017-06-14 20:08 - 2015-07-08 15:55 - 133627792 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe ==================== Fichiers à la racine de certains dossiers ======= 2016-07-12 17:17 - 2016-07-21 04:43 - 0000115 _____ () C:\Users\Utilisateur\AppData\Roaming\LogFile.txt 2016-09-17 17:55 - 2017-05-06 12:51 - 0001170 _____ () C:\Users\Utilisateur\AppData\Roaming\_encryptiondb.grf 2017-07-01 16:27 - 2017-07-01 16:27 - 0019968 _____ () C:\Users\Utilisateur\AppData\Local\flepdd.dll 2017-07-01 16:31 - 2017-07-01 16:31 - 0011568 _____ () C:\Users\Utilisateur\AppData\Local\InstallationConfiguration.xml 2017-07-01 16:31 - 2017-07-01 16:31 - 0140800 _____ () C:\Users\Utilisateur\AppData\Local\installer.dat 2017-07-01 16:31 - 2017-07-01 18:05 - 1705984 _____ () C:\Users\Utilisateur\AppData\Local\po.db 2017-07-01 16:27 - 2017-07-01 16:27 - 0003072 _____ () C:\Users\Utilisateur\AppData\Local\uninstallce.exe Fichiers à déplacer ou supprimer: ==================== C:\Users\Utilisateur\Defense_Grid_2_Pc.exe ==================== Bamital & volsnap ====================== (Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.) C:\WINDOWS\system32\winlogon.exe => Le fichier est signé numériquement C:\WINDOWS\system32\wininit.exe => Le fichier est signé numériquement C:\WINDOWS\explorer.exe => Le fichier est signé numériquement C:\WINDOWS\SysWOW64\explorer.exe => Le fichier est signé numériquement C:\WINDOWS\system32\svchost.exe => Le fichier est signé numériquement C:\WINDOWS\SysWOW64\svchost.exe => Le fichier est signé numériquement C:\WINDOWS\system32\services.exe => Le fichier est signé numériquement C:\WINDOWS\system32\User32.dll => Le fichier est signé numériquement C:\WINDOWS\SysWOW64\User32.dll => Le fichier est signé numériquement C:\WINDOWS\system32\userinit.exe => Le fichier est signé numériquement C:\WINDOWS\SysWOW64\userinit.exe => Le fichier est signé numériquement C:\WINDOWS\system32\rpcss.dll => Le fichier est signé numériquement C:\WINDOWS\system32\dnsapi.dll => Le fichier est signé numériquement C:\WINDOWS\SysWOW64\dnsapi.dll => Le fichier est signé numériquement C:\WINDOWS\system32\Drivers\volsnap.sys => Le fichier est signé numériquement LastRegBack: 2017-06-28 18:27 ==================== Fin de FRST.txt ============================