Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 05-07-2017 Exécuté par Lag (administrateur) sur JULIEN_PORTABLE (07-07-2017 18:46:02) Exécuté depuis C:\Users\Lag\Desktop Profils chargés: Lag (Profils disponibles: Lag) Platform: Windows 10 Home Version 1703 (X64) Langue: Français (France) Internet Explorer Version 11 (Navigateur par défaut: Chrome) Mode d'amorçage: Normal Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processus (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.) (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (Intel Corporation) C:\Windows\System32\igfxCUIService.exe (ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe (ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe (Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe (Conexant Systems Inc.) C:\Windows\System32\CxAudMsg64.exe (Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe (Intel Corporation) C:\Windows\System32\DptfParticipantProcessorService.exe (Intel Corporation) C:\Windows\System32\DptfPolicyCriticalService.exe (Intel Corporation) C:\Windows\System32\DptfPolicyConfigTDPService.exe (Intel Corporation) C:\Windows\System32\DptfPolicyLpmService.exe (Intel Corporation) C:\Windows\System32\ibtsiva.exe (Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe () C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe (Conexant Systems, Inc.) C:\Windows\SysWOW64\SASrv.exe (Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe (Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe (Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe (Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe (Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.5\GoogleCrashHandler.exe (Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.5\GoogleCrashHandler64.exe (WildTangent) C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe (ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe (ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe (ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe (ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe (ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe (ASUS) C:\Program Files (x86)\ASUS\Splendid\ACMON.exe (Intel Corporation) C:\Windows\System32\igfxEM.exe (Intel Corporation) C:\Windows\System32\igfxHK.exe () C:\Windows\System32\igfxTray.exe (Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersServer.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe (Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe (Intel Corporation) C:\Windows\System32\DptfPolicyLpmServiceHelper.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe () C:\Windows\SysWOW64\UMonit64.exe (Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe (Hammer & Chisel, Inc.) C:\Users\Lag\AppData\Local\Discord\app-0.0.297\Discord.exe (Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe (Adobe Systems Inc.) C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\acrotray.exe (AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLoader.exe (Hammer & Chisel, Inc.) C:\Users\Lag\AppData\Local\Discord\app-0.0.297\Discord.exe (Conexant Systems, Inc) C:\Program Files\CONEXANT\SAII\SmartAudio.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe (Hammer & Chisel, Inc.) C:\Users\Lag\AppData\Local\Discord\app-0.0.297\Discord.exe () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.18.614.0_x64__kzf8qxf38zg5c\SkypeHost.exe (AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPCenter.exe (AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPHelper.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ==================== Registre (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.) HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [629152 2017-03-18] (Microsoft Corporation) HKLM\...\Run: [DptfPolicyLpmServiceHelper] => C:\WINDOWS\system32\DptfPolicyLpmServiceHelper.exe [114048 2013-10-18] (Intel Corporation) HKLM\...\Run: [cAudioFilterAgent] => C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe [920280 2015-04-17] (Conexant Systems, Inc.) HKLM\...\Run: [SmartAudio] => C:\Program Files\CONEXANT\SAII\SACpl.exe [1830616 2014-04-10] (Conexant Systems, Inc.) HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2234144 2014-01-21] (NVIDIA Corporation) HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [508128 2016-07-01] (Adobe Systems Incorporated) HKLM\...\Run: [Malwarebytes TrayApp] => C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\mbamtray.exe [3146704 2017-05-09] (Malwarebytes) HKLM-x32\...\Run: [ASUSPRP] => C:\Program Files (x86)\ASUS\APRP\APRP.EXE [1080992 2014-05-15] (ASUSTek Computer Inc.) HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2404952 2017-03-27] (Adobe Systems Incorporated) HKLM-x32\...\Run: [Acrobat Assistant 8.0] => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Acrotray.exe [1870928 2017-04-05] (Adobe Systems Inc.) HKLM-x32\...\Run: [] => [X] HKU\S-1-5-21-2740461719-1265742687-2647890661-1001\...\Run: [Discord] => C:\Users\Lag\AppData\Local\Discord\app-0.0.297\Discord.exe [64290304 2017-01-04] (Hammer & Chisel, Inc.) HKU\S-1-5-21-2740461719-1265742687-2647890661-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [9532120 2017-04-11] (Piriform Ltd) HKU\S-1-5-21-2740461719-1265742687-2647890661-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [27716568 2017-05-04] (Skype Technologies S.A.) HKU\S-1-5-21-2740461719-1265742687-2647890661-1001\...\Run: [Adobe Acrobat Synchronizer] => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe [886352 2017-04-05] (Adobe Systems Incorporated) GroupPolicy: Restriction - Chrome <==== ATTENTION ==================== Internet (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.) Tcpip\Parameters: [DhcpNameServer] 192.168.1.254 Tcpip\..\Interfaces\{0d888404-725b-4b62-9e98-196b6df7b203}: [DhcpNameServer] 192.168.1.254 Tcpip\..\Interfaces\{88d71802-ec34-4e1e-ba3d-0188573c1502}: [DhcpNameServer] 192.168.42.129 Tcpip\..\Interfaces\{d9180f96-d24e-4c92-90d4-b3bb57b497c5}: [DhcpNameServer] 192.168.1.254 Internet Explorer: ================== HKU\S-1-5-21-2740461719-1265742687-2647890661-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://asus13.msn.com/?pc=ASJB HKU\S-1-5-21-2740461719-1265742687-2647890661-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://www.ldlc.com SearchScopes: HKU\S-1-5-21-2740461719-1265742687-2647890661-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-21-2740461719-1265742687-2647890661-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = BHO: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2017-04-05] (Adobe Systems Incorporated) BHO: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2017-04-05] (Adobe Systems Incorporated) BHO-x32: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2017-04-05] (Adobe Systems Incorporated) BHO-x32: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2017-04-05] (Adobe Systems Incorporated) Toolbar: HKLM - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2017-04-05] (Adobe Systems Incorporated) Toolbar: HKLM-x32 - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2017-04-05] (Adobe Systems Incorporated) Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL [2017-05-16] (Microsoft Corporation) FireFox: ======== FF ProfilePath: C:\Users\Lag\AppData\Roaming\Mozilla\Firefox\Profiles\dxqnt46p.default-1494258417503 [2017-07-06] FF Homepage: Mozilla\Firefox\Profiles\dxqnt46p.default-1494258417503 -> hxxp://www.google.com/ FF Extension: (ADB Helper) - C:\Users\Lag\AppData\Roaming\Mozilla\Firefox\Profiles\dxqnt46p.default-1494258417503\Extensions\adbhelper@mozilla.org [2017-05-14] FF Extension: (Ghostery) - C:\Users\Lag\AppData\Roaming\Mozilla\Firefox\Profiles\dxqnt46p.default-1494258417503\Extensions\firefox@ghostery.com.xpi [2017-06-15] FF Extension: (Valence) - C:\Users\Lag\AppData\Roaming\Mozilla\Firefox\Profiles\dxqnt46p.default-1494258417503\Extensions\fxdevtools-adapters@mozilla.org [2017-05-14] FF Extension: (RAMBack) - C:\Users\Lag\AppData\Roaming\Mozilla\Firefox\Profiles\dxqnt46p.default-1494258417503\Extensions\ramback@pavlov.net.xpi [2017-05-09] FF Extension: (uBlock Origin) - C:\Users\Lag\AppData\Roaming\Mozilla\Firefox\Profiles\dxqnt46p.default-1494258417503\Extensions\uBlock0@raymondhill.net.xpi [2017-07-06] FF Extension: (ZeratoR) - C:\Users\Lag\AppData\Roaming\Mozilla\Firefox\Profiles\dxqnt46p.default-1494258417503\Extensions\ztv@ulas.net.xpi [2017-05-09] FF Extension: (YouTube High Definition) - C:\Users\Lag\AppData\Roaming\Mozilla\Firefox\Profiles\dxqnt46p.default-1494258417503\Extensions\{7b1bf0b6-a1b9-42b0-b75d-252036438bdc}.xpi [2017-07-06] FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension.15@web2pdf.adobedotcom] - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn FF Extension: (Adobe Acrobat DC - Create PDF) - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn [2017-07-05] FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_26_0_0_131.dll [2017-06-16] () FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2017-03-27] (Adobe Systems) FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_26_0_0_131.dll [2017-06-16] () FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-12-09] (Intel Corporation) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-12-09] (Intel Corporation) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-05-11] (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-05-11] (Google Inc.) FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll [2013-08-06] () FF Plugin-x32: Adobe Acrobat -> C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2017-04-05] (Adobe Systems Inc.) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2017-04-05] (Adobe Systems Inc.) FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2017-03-27] (Adobe Systems) FF Plugin HKU\S-1-5-21-2740461719-1265742687-2647890661-1001: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Lag\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2015-06-08] (Unity Technologies ApS) FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npMeetingJoinPluginOC.dll [2014-01-22] (Microsoft Corporation) Chrome: ======= CHR HomePage: Default -> hxxp://www.google.com/ CHR Profile: C:\Users\Lag\AppData\Local\Google\Chrome\User Data\Default [2017-07-07] CHR Extension: (Google Slides) - C:\Users\Lag\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-05-11] CHR Extension: (Google Docs) - C:\Users\Lag\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-05-11] CHR Extension: (Google Drive) - C:\Users\Lag\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-05-11] CHR Extension: (Web Developer) - C:\Users\Lag\AppData\Local\Google\Chrome\User Data\Default\Extensions\bfbameneiokkgbdmiekhjnmfkcnldhhm [2017-06-14] CHR Extension: (ColorZilla) - C:\Users\Lag\AppData\Local\Google\Chrome\User Data\Default\Extensions\bhlhnicpbhignbdhedgjhgdocnmhomnp [2017-05-26] CHR Extension: (YouTube) - C:\Users\Lag\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-05-11] CHR Extension: (Facebook) - C:\Users\Lag\AppData\Local\Google\Chrome\User Data\Default\Extensions\boeajhmfdjldchidhphikilcgdacljfm [2017-05-11] CHR Extension: (Сookies Control) - C:\Users\Lag\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfkpefbllpconnkfpdgagkifmflckkdp [2017-07-06] CHR Extension: (ZeratoR) - C:\Users\Lag\AppData\Local\Google\Chrome\User Data\Default\Extensions\ddjkdjlmooeobhagmmadigadffijpoio [2017-06-13] CHR Extension: (Google Sheets) - C:\Users\Lag\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-05-11] CHR Extension: (Caret) - C:\Users\Lag\AppData\Local\Google\Chrome\User Data\Default\Extensions\fljalecfjciodhpcledpamjachpmelml [2017-06-29] CHR Extension: (Chuck Anderson) - C:\Users\Lag\AppData\Local\Google\Chrome\User Data\Default\Extensions\gegkoiakifeoejnjkbnnojkkdoegeofp [2017-05-11] CHR Extension: (Google Docs hors connexion) - C:\Users\Lag\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-05-12] CHR Extension: (AdBlock) - C:\Users\Lag\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2017-06-27] CHR Extension: (Unlimited Free VPN - Hola) - C:\Users\Lag\AppData\Local\Google\Chrome\User Data\Default\Extensions\gkojfkhlekighikafcpjkiklfbnlmeio [2017-06-04] CHR Extension: (Page Captures d'écran Web - Fireshot) - C:\Users\Lag\AppData\Local\Google\Chrome\User Data\Default\Extensions\mcbpblocgmgfnpjjppndjkmgjaogfceg [2017-06-06] CHR Extension: (Save to Pocket) - C:\Users\Lag\AppData\Local\Google\Chrome\User Data\Default\Extensions\niloccemoadcdkdjlinkgdfekeahmflj [2017-06-30] CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Lag\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-05-11] CHR Extension: (Gmail) - C:\Users\Lag\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-05-11] CHR Extension: (Chrome Media Router) - C:\Users\Lag\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-06-28] CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx ==================== Services (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [771672 2017-03-14] (Adobe Systems Incorporated) R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2246256 2017-05-18] (Adobe Systems, Incorporated) R2 DptfParticipantProcessorService; C:\WINDOWS\system32\DptfParticipantProcessorService.exe [117704 2013-10-18] (Intel Corporation) R2 DptfPolicyConfigTDPService; C:\WINDOWS\system32\DptfPolicyConfigTDPService.exe [116680 2013-10-18] (Intel Corporation) R2 DptfPolicyCriticalService; C:\WINDOWS\system32\DptfPolicyCriticalService.exe [148160 2013-10-18] (Intel Corporation) R2 DptfPolicyLpmService; C:\WINDOWS\system32\DptfPolicyLpmService.exe [126952 2013-10-18] (Intel Corporation) R2 GamesAppIntegrationService; C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe [227904 2014-01-28] (WildTangent) R2 igfxCUIService2.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [373728 2016-11-30] (Intel Corporation) R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [747520 2013-08-27] (Intel(R) Corporation) [Fichier non signé] S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [828376 2013-08-27] (Intel(R) Corporation) R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [131544 2013-12-09] (Intel Corporation) R2 ISCTAgent; C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe [200168 2013-12-04] () R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-12-09] (Intel Corporation) R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [4470736 2017-05-09] (Malwarebytes) R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1593632 2014-01-21] (NVIDIA Corporation) R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [342264 2017-03-18] (Microsoft Corporation) R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [102816 2017-03-18] (Microsoft Corporation) R2 ibtsiva; %SystemRoot%\system32\ibtsiva [X] ===================== Pilotes (Avec liste blanche) ====================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R3 ATP; C:\WINDOWS\System32\drivers\AsusTP.sys [98296 2015-12-14] (ASUS Corporation) R3 DptfDevDram; C:\WINDOWS\system32\DRIVERS\DptfDevDram.sys [145640 2013-10-18] (Intel Corporation) R3 DptfDevPch; C:\WINDOWS\system32\DRIVERS\DptfDevPch.sys [116752 2013-10-18] (Intel Corporation) R3 DptfDevProc; C:\WINDOWS\system32\DRIVERS\DptfDevProc.sys [289744 2013-10-18] (Intel Corporation) R3 DptfManager; C:\WINDOWS\system32\DRIVERS\DptfManager.sys [494296 2013-10-18] (Intel Corporation) U5 GeneStor; C:\Windows\System32\Drivers\GeneStor.sys [107208 2014-01-17] (GenesysLogic) R3 ibtusb; C:\WINDOWS\system32\DRIVERS\ibtusb.sys [230144 2016-11-11] (Intel Corporation) R3 ikbevent; C:\WINDOWS\system32\DRIVERS\ikbevent.sys [21408 2013-08-13] () R3 imsevent; C:\WINDOWS\system32\DRIVERS\imsevent.sys [21920 2013-08-13] () R3 INETMON; C:\Windows\System32\Drivers\INETMON.sys [29088 2013-08-13] () R3 ISCT; C:\WINDOWS\System32\drivers\ISCTD64.sys [46568 2013-08-13] () R3 kbfiltr; C:\WINDOWS\System32\drivers\kbfiltr.sys [17280 2012-08-06] ( ) R3 MBAMSwissArmy; C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [252832 2017-07-07] (Malwarebytes) R3 MEIx64; C:\WINDOWS\system32\DRIVERS\TeeDriverx64.sys [100312 2013-12-09] (Intel Corporation) R3 NETwNb64; C:\WINDOWS\System32\drivers\Netwbw02.sys [3485696 2017-03-18] (Intel Corporation) R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nvamwu.inf_amd64_d4715679184092a8\nvlddmkm.sys [13754936 2016-09-12] (NVIDIA Corporation) S3 SDFRd; C:\WINDOWS\System32\drivers\SDFRd.sys [31128 2017-03-18] () R3 SensorsAlsDriver; C:\WINDOWS\System32\drivers\WUDFRd.sys [220672 2017-03-18] (Microsoft Corporation) S0 WdBoot; C:\WINDOWS\System32\drivers\WdBoot.sys [44632 2017-03-18] (Microsoft Corporation) R0 WdFilter; C:\WINDOWS\System32\drivers\WdFilter.sys [294816 2017-03-18] (Microsoft Corporation) R3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [121248 2017-03-18] (Microsoft Corporation) ==================== NetSvcs (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) ==================== Un mois - Créés - fichiers et dossiers ======== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2017-07-07 18:46 - 2017-07-07 18:46 - 00023328 _____ C:\Users\Lag\Desktop\FRST.txt 2017-07-07 18:45 - 2017-07-07 18:46 - 00000000 ____D C:\FRST 2017-07-07 18:45 - 2017-07-07 18:45 - 02436608 _____ (Farbar) C:\Users\Lag\Desktop\FRST64.exe 2017-07-06 22:35 - 2017-07-06 22:36 - 95187527 _____ C:\Users\Lag\Desktop\Kitape.ro.zip 2017-07-06 22:29 - 2017-07-06 22:29 - 00000000 ____D C:\Users\Lag\AppData\Local\Tempzxpsignf48fb93833c92930 2017-07-06 22:29 - 2017-07-06 22:29 - 00000000 ____D C:\Users\Lag\AppData\Local\Tempzxpsigna3bc76d5c425bf01 2017-07-06 22:29 - 2017-07-06 22:29 - 00000000 ____D C:\Users\Lag\AppData\Local\Tempzxpsign8c69e67fe9d4301f 2017-07-06 22:24 - 2017-07-06 22:24 - 00129374 _____ C:\Users\Lag\Desktop\ZHPDiag.txt 2017-07-06 22:20 - 2017-07-06 22:20 - 00001508 _____ C:\Users\Lag\Desktop\Malwarebytes.txt 2017-07-06 21:55 - 2017-07-06 21:55 - 00002146 _____ C:\Users\Lag\Desktop\AdwCleaner[C4].txt 2017-07-06 21:51 - 2017-07-06 21:51 - 00252832 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\0C0551B3.sys 2017-07-06 21:32 - 2017-07-06 21:38 - 00001924 _____ C:\Users\Lag\Desktop\ZHPCleaner.txt 2017-07-06 21:26 - 2017-07-06 21:26 - 02799488 _____ C:\Users\Lag\Downloads\zhpcleaner_2017.06.26.105.exe 2017-07-06 21:23 - 2017-07-06 21:23 - 00252832 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\256C3C70.sys 2017-07-06 21:21 - 2017-07-06 21:22 - 00093600 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys 2017-07-06 21:21 - 2017-07-06 21:21 - 00188312 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMChameleon.sys 2017-07-06 21:21 - 2017-07-06 21:21 - 00113592 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\farflt.sys 2017-07-06 21:20 - 2017-07-07 00:29 - 00252832 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys 2017-07-06 21:20 - 2017-07-06 21:27 - 00077376 _____ C:\WINDOWS\system32\Drivers\mbae64.sys 2017-07-06 21:20 - 2017-07-06 21:20 - 00044960 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys 2017-07-06 21:20 - 2017-07-06 21:20 - 00001914 _____ C:\Users\Public\Desktop\Malwarebytes.lnk 2017-07-06 21:20 - 2017-07-06 21:20 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes 2017-07-06 21:20 - 2017-07-06 21:20 - 00000000 ____D C:\ProgramData\Malwarebytes 2017-07-06 21:20 - 2017-07-06 21:20 - 00000000 ____D C:\Program Files\Malwarebytes 2017-07-06 21:07 - 2017-07-06 21:33 - 00000910 _____ C:\Users\Lag\Desktop\ZHPCleaner.lnk 2017-07-06 21:06 - 2017-07-06 21:06 - 02799488 _____ C:\Users\Lag\Desktop\zhpcleaner_2017.06.26.105.exe 2017-07-06 20:23 - 2017-07-06 20:23 - 04110280 _____ C:\Users\Lag\Desktop\adwcleaner_6.047.exe 2017-07-06 18:29 - 2017-07-06 18:29 - 00000000 ____D C:\Users\Lag\AppData\Roaming\PDAppFlex 2017-07-06 18:23 - 2017-07-06 22:23 - 00000000 ____D C:\Users\Lag\AppData\Roaming\ZHP 2017-07-06 18:23 - 2017-07-06 22:22 - 00000865 _____ C:\Users\Lag\Desktop\ZHPDiag.lnk 2017-07-06 18:23 - 2017-07-06 21:07 - 00000000 ____D C:\Users\Lag\AppData\Local\ZHP 2017-07-05 22:29 - 2017-07-05 22:35 - 00002469 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat DC.lnk 2017-07-05 22:29 - 2017-07-05 22:35 - 00002116 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat Distiller DC.lnk 2017-07-05 20:38 - 2017-07-06 21:51 - 00000000 ____D C:\AdwCleaner 2017-07-05 20:33 - 2017-07-05 20:33 - 00000290 __RSH C:\ProgramData\ntuser.pol 2017-07-05 20:17 - 2017-07-05 20:17 - 00000000 ____D C:\ProgramData\regid.1986-12.com.adobe 2017-07-04 23:15 - 2017-07-04 23:15 - 00020480 _____ C:\Users\Lag\Desktop\PLANNING PREPA.xls 2017-07-03 19:29 - 2017-07-03 19:29 - 00000000 ____D C:\Users\Lag\AppData\Local\Tempzxpsign823e436003ee1f86 2017-07-03 19:20 - 2017-07-03 19:20 - 00081119 _____ C:\Users\Lag\Desktop\Lettre-de-motivation.pdf 2017-07-03 19:12 - 2017-07-05 22:46 - 00004562 _____ C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task 2017-07-03 19:11 - 2017-07-03 19:11 - 00002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk 2017-06-29 18:53 - 2017-06-29 18:53 - 00000000 ____D C:\Users\Lag\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Applications Chrome 2017-06-22 22:04 - 2017-07-03 19:57 - 05440969 _____ C:\Users\Lag\Desktop\Mon CV.pdf 2017-06-21 23:54 - 2017-06-24 00:46 - 03287665 _____ C:\Users\Lag\Desktop\Infographie clean.psd 2017-06-21 20:08 - 2017-06-21 23:54 - 05634898 _____ C:\Users\Lag\Desktop\Infographie.psd 2017-06-21 19:39 - 2017-06-21 19:39 - 00802763 _____ C:\Users\Lag\Desktop\thinker-28741_960_720.psd 2017-06-20 19:00 - 2017-07-06 22:31 - 119976988 _____ C:\Users\Lag\Desktop\Kitape.psd 2017-06-20 18:51 - 2017-06-20 18:55 - 00109454 _____ C:\Users\Lag\Desktop\Kitape.pdf 2017-06-18 00:32 - 2017-06-18 00:32 - 00000000 ____D C:\Users\Lag\AppData\Local\DBG 2017-06-17 02:41 - 2017-06-23 01:12 - 00000000 ____D C:\Users\Lag\Desktop\Ryomen Hisashi 2017-06-16 21:01 - 2017-06-16 21:01 - 02194613 _____ C:\Users\Lag\Desktop\08.5 - Accor afrique - Emeraude Lamiet -METIER-MAI-17-PARIS IMCI.pdf 2017-06-15 23:50 - 2017-06-16 22:43 - 02600141 _____ C:\Users\Lag\Desktop\Personas.psd 2017-06-13 21:16 - 2017-06-24 00:46 - 00001456 _____ C:\Users\Lag\AppData\Local\Adobe Enregistrer pour le Web 13.0 Prefs 2017-06-13 20:17 - 2017-06-03 12:15 - 01596600 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll 2017-06-13 20:17 - 2017-06-03 12:15 - 00750560 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe 2017-06-13 20:17 - 2017-06-03 12:15 - 00382368 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll 2017-06-13 20:17 - 2017-06-03 12:14 - 01147296 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe 2017-06-13 20:17 - 2017-06-03 12:14 - 01024928 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe 2017-06-13 20:17 - 2017-06-03 12:10 - 00130464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tm.sys 2017-06-13 20:17 - 2017-06-03 12:09 - 08318880 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe 2017-06-13 20:17 - 2017-06-03 12:09 - 01003624 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase.dll 2017-06-13 20:17 - 2017-06-03 12:08 - 02969880 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreUIComponents.dll 2017-06-13 20:17 - 2017-06-03 12:07 - 00923048 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll 2017-06-13 20:17 - 2017-06-03 12:07 - 00119712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tdx.sys 2017-06-13 20:17 - 2017-06-03 12:02 - 02444192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys 2017-06-13 20:17 - 2017-06-03 12:01 - 05477096 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneCoreUAPCommonProxyStub.dll 2017-06-13 20:17 - 2017-06-03 12:00 - 00872472 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipSVC.dll 2017-06-13 20:17 - 2017-06-03 12:00 - 00321376 _____ (Microsoft Corporation) C:\WINDOWS\system32\capauthz.dll 2017-06-13 20:17 - 2017-06-03 12:00 - 00219040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tpm.sys 2017-06-13 20:17 - 2017-06-03 11:59 - 01409048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll 2017-06-13 20:17 - 2017-06-03 11:59 - 00626528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe 2017-06-13 20:17 - 2017-06-03 11:59 - 00311200 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll 2017-06-13 20:17 - 2017-06-03 11:59 - 00259400 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotifyIcon.exe 2017-06-13 20:17 - 2017-06-03 11:58 - 21352696 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll 2017-06-13 20:17 - 2017-06-03 11:58 - 07904784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll 2017-06-13 20:17 - 2017-06-03 11:58 - 00660384 _____ (Microsoft Corporation) C:\WINDOWS\system32\comctl32.dll 2017-06-13 20:17 - 2017-06-03 11:58 - 00254176 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll 2017-06-13 20:17 - 2017-06-03 11:57 - 00371616 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHost.dll 2017-06-13 20:17 - 2017-06-03 11:55 - 02681760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys 2017-06-13 20:17 - 2017-06-03 11:36 - 01150784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ucrtbase.dll 2017-06-13 20:17 - 2017-06-03 11:35 - 02259768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreUIComponents.dll 2017-06-13 20:17 - 2017-06-03 11:28 - 23677440 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll 2017-06-13 20:17 - 2017-06-03 11:26 - 00266640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\capauthz.dll 2017-06-13 20:17 - 2017-06-03 11:23 - 20373920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll 2017-06-13 20:17 - 2017-06-03 11:23 - 06760024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll 2017-06-13 20:17 - 2017-06-03 11:23 - 00573856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comctl32.dll 2017-06-13 20:17 - 2017-06-03 11:20 - 00583160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CoreMessaging.dll 2017-06-13 20:17 - 2017-06-03 11:14 - 03673088 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys 2017-06-13 20:17 - 2017-06-03 11:14 - 00443392 _____ (Microsoft Corporation) C:\WINDOWS\system32\PerceptionSimulationExtensions.dll 2017-06-13 20:17 - 2017-06-03 11:14 - 00142848 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmredir.dll 2017-06-13 20:17 - 2017-06-03 11:14 - 00099328 _____ (Microsoft Corporation) C:\WINDOWS\system32\utcutil.dll 2017-06-13 20:17 - 2017-06-03 11:14 - 00047104 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll 2017-06-13 20:17 - 2017-06-03 11:12 - 00119296 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataTimeUtil.dll 2017-06-13 20:17 - 2017-06-03 11:11 - 02958848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys 2017-06-13 20:17 - 2017-06-03 11:11 - 00128000 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll 2017-06-13 20:17 - 2017-06-03 11:11 - 00052736 _____ (Microsoft Corporation) C:\WINDOWS\system32\musdialoghandlers.dll 2017-06-13 20:17 - 2017-06-03 11:11 - 00038912 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll 2017-06-13 20:17 - 2017-06-03 11:11 - 00035840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BasicRender.sys 2017-06-13 20:17 - 2017-06-03 11:11 - 00002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzres.dll 2017-06-13 20:17 - 2017-06-03 11:10 - 00293376 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe 2017-06-13 20:17 - 2017-06-03 11:10 - 00102400 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe 2017-06-13 20:17 - 2017-06-03 11:10 - 00076800 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCredentialDeployment.exe 2017-06-13 20:17 - 2017-06-03 11:09 - 00271872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Identity.Provider.dll 2017-06-13 20:17 - 2017-06-03 11:09 - 00221184 _____ (Microsoft Corporation) C:\WINDOWS\system32\devicengccredprov.dll 2017-06-13 20:17 - 2017-06-03 11:09 - 00094720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataTimeUtil.dll 2017-06-13 20:17 - 2017-06-03 11:09 - 00064512 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsrv.dll 2017-06-13 20:17 - 2017-06-03 11:07 - 23682048 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll 2017-06-13 20:17 - 2017-06-03 11:07 - 00778240 _____ C:\WINDOWS\system32\MBR2GPT.EXE 2017-06-13 20:17 - 2017-06-03 11:07 - 00721920 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll 2017-06-13 20:17 - 2017-06-03 11:07 - 00197120 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdboot.exe 2017-06-13 20:17 - 2017-06-03 11:07 - 00002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tzres.dll 2017-06-13 20:17 - 2017-06-03 11:06 - 00551936 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmCoreProvisioning.dll 2017-06-13 20:17 - 2017-06-03 11:05 - 20506624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll 2017-06-13 20:17 - 2017-06-03 11:05 - 07336448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll 2017-06-13 20:17 - 2017-06-03 11:05 - 01878016 _____ (Microsoft Corporation) C:\WINDOWS\system32\AzureSettingSyncProvider.dll 2017-06-13 20:17 - 2017-06-03 11:05 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Identity.Provider.dll 2017-06-13 20:17 - 2017-06-03 11:05 - 00169984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\devicengccredprov.dll 2017-06-13 20:17 - 2017-06-03 11:04 - 12787200 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll 2017-06-13 20:17 - 2017-06-03 11:04 - 00925696 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll 2017-06-13 20:17 - 2017-06-03 11:04 - 00805888 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll 2017-06-13 20:17 - 2017-06-03 11:03 - 19336192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll 2017-06-13 20:17 - 2017-06-03 11:03 - 01260544 _____ (Microsoft Corporation) C:\WINDOWS\system32\GamePanel.exe 2017-06-13 20:17 - 2017-06-03 11:03 - 00467456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TpmCoreProvisioning.dll 2017-06-13 20:17 - 2017-06-03 11:02 - 08245760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll 2017-06-13 20:17 - 2017-06-03 11:01 - 06726656 _____ (Microsoft Corporation) C:\WINDOWS\system32\mspaint.exe 2017-06-13 20:17 - 2017-06-03 11:01 - 02804736 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll 2017-06-13 20:17 - 2017-06-03 11:00 - 03379200 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll 2017-06-13 20:17 - 2017-06-03 11:00 - 00933376 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe 2017-06-13 20:17 - 2017-06-03 11:00 - 00358400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll 2017-06-13 20:17 - 2017-06-03 10:59 - 04730368 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll 2017-06-13 20:17 - 2017-06-03 10:59 - 02672128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll 2017-06-13 20:17 - 2017-06-03 10:59 - 02625024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll 2017-06-13 20:17 - 2017-06-03 10:59 - 02597376 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll 2017-06-13 20:17 - 2017-06-03 10:59 - 02056192 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys 2017-06-13 20:17 - 2017-06-03 10:59 - 01293824 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll 2017-06-13 20:17 - 2017-06-03 10:59 - 01142784 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll 2017-06-13 20:17 - 2017-06-03 10:59 - 00975360 _____ (Microsoft Corporation) C:\WINDOWS\HelpPane.exe 2017-06-13 20:17 - 2017-06-03 10:59 - 00636416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WpcWebFilter.dll 2017-06-13 20:17 - 2017-06-03 10:58 - 05961216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll 2017-06-13 20:17 - 2017-06-03 10:58 - 02650112 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll 2017-06-13 20:17 - 2017-06-03 10:58 - 02516480 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll 2017-06-13 20:17 - 2017-06-03 10:58 - 01888256 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll 2017-06-13 20:17 - 2017-06-03 10:58 - 01046016 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcsvc.dll 2017-06-13 20:17 - 2017-06-03 10:58 - 00827392 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32spl.dll 2017-06-13 20:17 - 2017-06-03 10:57 - 11870720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll 2017-06-13 20:17 - 2017-06-03 10:57 - 06535168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mspaint.exe 2017-06-13 20:17 - 2017-06-03 10:57 - 05557760 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbgeng.dll 2017-06-13 20:17 - 2017-06-03 10:57 - 02829824 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll 2017-06-13 20:17 - 2017-06-03 10:57 - 01675264 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll 2017-06-13 20:17 - 2017-06-03 10:57 - 01248768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AzureSettingSyncProvider.dll 2017-06-13 20:17 - 2017-06-03 10:57 - 00797184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe 2017-06-13 20:17 - 2017-06-03 10:56 - 06292992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll 2017-06-13 20:17 - 2017-06-03 10:55 - 03656192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll 2017-06-13 20:17 - 2017-06-03 10:55 - 02132480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll 2017-06-13 20:17 - 2017-06-03 10:55 - 01019904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aadtb.dll 2017-06-13 20:17 - 2017-06-03 10:54 - 02341376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll 2017-06-13 20:17 - 2017-06-03 10:54 - 02298368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll 2017-06-13 20:17 - 2017-06-03 10:53 - 04559360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbgeng.dll 2017-06-13 20:17 - 2017-06-03 10:51 - 00064512 _____ (Microsoft Corporation) C:\WINDOWS\bfsvc.exe 2017-06-12 19:30 - 2017-06-12 19:30 - 00000000 ____D C:\Users\Lag\Documents\FeedbackHub 2017-06-11 23:25 - 2017-06-11 23:25 - 00083721 _____ C:\Users\Lag\Desktop\f04391a9-de50-4a28-93b8-4a53d6616e90-original.jpeg 2017-06-07 18:48 - 2017-06-07 18:48 - 01881967 _____ C:\Users\Lag\Desktop\SUJET KITAPERO.pdf ==================== Un mois - Modifiés - fichiers et dossiers ======== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2017-07-07 18:25 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\AppReadiness 2017-07-07 18:21 - 2015-01-07 23:05 - 00000000 ____D C:\Users\Lag\AppData\Roaming\Skype 2017-07-07 18:21 - 2015-01-07 22:45 - 00000094 _____ C:\Users\Lag\AppData\Roaming\sp_data.sys 2017-07-07 18:20 - 2017-05-16 18:56 - 00000000 ____D C:\ProgramData\ASUS Smart Gesture 2017-07-07 18:19 - 2017-05-29 19:03 - 00000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat 2017-07-07 18:19 - 2015-01-07 22:43 - 00000000 __SHD C:\Users\Lag\IntelGraphicsProfiles 2017-07-07 01:04 - 2017-05-29 18:59 - 00000000 ____D C:\WINDOWS\system32\SleepStudy 2017-07-07 00:54 - 2017-05-29 19:20 - 00004174 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{7F2FAC83-2AE8-4318-99BF-8093DEA0EDCB} 2017-07-07 00:30 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\system32\NDF 2017-07-07 00:28 - 2017-05-29 19:20 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT 2017-07-07 00:28 - 2017-05-10 21:41 - 00000000 ____D C:\Program Files\Mozilla Firefox 2017-07-07 00:28 - 2017-03-18 13:40 - 01835008 _____ C:\WINDOWS\system32\config\BBI 2017-07-07 00:28 - 2015-01-07 16:21 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2017-07-07 00:23 - 2015-08-18 23:39 - 00000000 ____D C:\Users\Lag\AppData\Local\ElevatedDiagnostics 2017-07-06 22:26 - 2017-05-09 20:53 - 00000000 ____D C:\Users\Lag\AppData\LocalLow\Mozilla 2017-07-06 21:15 - 2017-05-29 19:05 - 00000000 ____D C:\Users\Lag 2017-07-06 20:28 - 2017-05-29 18:59 - 00517984 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2017-07-06 20:06 - 2017-03-18 23:01 - 00000000 ____D C:\WINDOWS\INF 2017-07-06 18:41 - 2017-03-18 23:03 - 00000000 ___HD C:\Program Files\WindowsApps 2017-07-06 18:40 - 2015-01-13 07:05 - 00000000 ____D C:\Users\Lag\AppData\Local\Adobe 2017-07-06 18:23 - 2017-05-29 19:20 - 00003544 _____ C:\WINDOWS\System32\Tasks\ASUS Live Update1 2017-07-06 18:23 - 2017-05-29 19:20 - 00003534 _____ C:\WINDOWS\System32\Tasks\ASUS Live Update2 2017-07-05 23:00 - 2017-05-28 19:20 - 00000000 ___DC C:\WINDOWS\Panther 2017-07-05 22:32 - 2017-05-14 16:55 - 00000000 ____D C:\ProgramData\Adobe 2017-07-05 21:14 - 2017-05-14 16:54 - 00000000 ____D C:\Program Files (x86)\Adobe 2017-07-05 20:33 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\SysWOW64\GroupPolicy 2017-07-05 20:33 - 2013-08-22 17:36 - 00000000 ___HD C:\WINDOWS\system32\GroupPolicy 2017-07-04 23:16 - 2015-01-07 19:25 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013 2017-07-03 19:56 - 2017-06-02 20:25 - 55505308 _____ C:\Users\Lag\Desktop\Mon CV.psd 2017-07-03 19:18 - 2017-05-14 17:21 - 00000000 ____D C:\Users\Lag\AppData\LocalLow\Adobe 2017-07-03 19:18 - 2015-01-07 22:43 - 00000000 ____D C:\Users\Lag\AppData\Roaming\Adobe 2017-07-01 18:19 - 2017-05-29 19:24 - 02235514 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2017-07-01 18:19 - 2017-03-20 07:10 - 01009552 _____ C:\WINDOWS\system32\perfh00C.dat 2017-07-01 18:19 - 2017-03-20 07:10 - 00215854 _____ C:\WINDOWS\system32\perfc00C.dat 2017-06-27 22:58 - 2017-05-11 21:13 - 00002272 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2017-06-27 22:58 - 2017-05-11 21:13 - 00002260 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2017-06-22 01:16 - 2017-05-29 19:20 - 00003286 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task v2 2017-06-22 01:16 - 2016-04-19 16:07 - 00002407 _____ C:\Users\Lag\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2017-06-22 01:16 - 2016-04-19 16:07 - 00000000 ___RD C:\Users\Lag\OneDrive 2017-06-16 19:23 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\SysWOW64\Macromed 2017-06-16 19:23 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\system32\Macromed 2017-06-15 21:16 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\rescache 2017-06-14 18:36 - 2016-11-21 08:40 - 00000000 __RHD C:\Users\Public\AccountPictures 2017-06-14 00:34 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\system32\oobe 2017-06-14 00:34 - 2017-03-18 23:03 - 00000000 ____D C:\WINDOWS\system32\appraiser 2017-06-13 20:27 - 2015-04-19 14:13 - 00000000 ____D C:\WINDOWS\system32\MRT 2017-06-13 20:24 - 2017-03-18 22:51 - 00000000 ____D C:\WINDOWS\CbsTemp 2017-06-13 20:24 - 2015-04-19 14:13 - 133627792 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2017-06-13 18:29 - 2017-05-29 19:20 - 00004594 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater 2017-06-12 19:13 - 2017-05-29 19:56 - 00000000 ____D C:\Windows.old 2017-06-11 18:09 - 2017-06-03 03:30 - 00000000 ____D C:\Users\Lag\Desktop\IMCI 2017-06-11 16:56 - 2016-11-21 08:30 - 00000000 ____D C:\Users\Administrateur ==================== Fichiers à la racine de certains dossiers ======= 2015-01-07 22:45 - 2017-07-07 18:21 - 0000094 _____ () C:\Users\Lag\AppData\Roaming\sp_data.sys 2017-06-13 21:16 - 2017-06-24 00:46 - 0001456 _____ () C:\Users\Lag\AppData\Local\Adobe Enregistrer pour le Web 13.0 Prefs 2014-05-15 17:58 - 2012-09-07 13:40 - 0000256 _____ () C:\ProgramData\SetStretch.cmd 2014-05-15 17:58 - 2009-07-22 12:04 - 0024576 _____ () C:\ProgramData\SetStretch.exe 2014-05-15 17:58 - 2012-09-07 13:37 - 0000103 _____ () C:\ProgramData\SetStretch.VBS ==================== Bamital & volsnap ====================== (Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.) C:\WINDOWS\system32\winlogon.exe => Le fichier est signé numériquement C:\WINDOWS\system32\wininit.exe => Le fichier est signé numériquement C:\WINDOWS\explorer.exe => Le fichier est signé numériquement C:\WINDOWS\SysWOW64\explorer.exe => Le fichier est signé numériquement C:\WINDOWS\system32\svchost.exe => Le fichier est signé numériquement C:\WINDOWS\SysWOW64\svchost.exe => Le fichier est signé numériquement C:\WINDOWS\system32\services.exe => Le fichier est signé numériquement C:\WINDOWS\system32\User32.dll => Le fichier est signé numériquement C:\WINDOWS\SysWOW64\User32.dll => Le fichier est signé numériquement C:\WINDOWS\system32\userinit.exe => Le fichier est signé numériquement C:\WINDOWS\SysWOW64\userinit.exe => Le fichier est signé numériquement C:\WINDOWS\system32\rpcss.dll => Le fichier est signé numériquement C:\WINDOWS\system32\dnsapi.dll => Le fichier est signé numériquement C:\WINDOWS\SysWOW64\dnsapi.dll => Le fichier est signé numériquement C:\WINDOWS\system32\Drivers\volsnap.sys => Le fichier est signé numériquement LastRegBack: 2017-07-05 21:07 ==================== Fin de FRST.txt ============================