Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x86) Version: 02-07-2016
Exécuté par Walid SAH (administrateur) sur WALID (07-07-2016 10:33:27)
Exécuté depuis C:\Users\Walid SAH\Desktop
Profils chargés: Walid SAH (Profils disponibles: Walid SAH)
Platform: Microsoft Windows 10 Professionnel Version 1511 (X86) Langue: Français (France)
Internet Explorer Version 11 (Navigateur par défaut: Edge)
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(Baidu, Inc.) C:\Program Files\PC Faster\5.1.0.0\PCFasterSvc.exe
(Intel Corporation) C:\Windows\System32\IntelCpHeciSvc.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
(Baidu, Inc.) C:\Program Files\Baidu Security\MoboMarket\1.2.8.4379\bassvc.exe
() C:\Program Files\EagleGet\EGMonitor.exe
(Andrea Electronics Corporation) C:\Program Files\Realtek\Audio\HDA\AERTSrv.exe
() C:\Program Files\MeditelInternet\MeditelInternet_Service.exe
(Baidu Inc.) C:\Program Files\baidu\Baidu Browser\sparkservice.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtHDVBg.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Microsoft Corporation) C:\Windows\System32\wscript.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtHDVBg.exe
() C:\Program Files\MeditelInternet\MeditelInternet_Launcher.exe
(BitTorrent Inc.) C:\Users\Walid SAH\AppData\Roaming\uTorrent\uTorrent.exe
(© 2015 Microsoft Corporation) C:\Users\Walid SAH\AppData\Local\Microsoft\BingSvc\BingSvc.exe
(EagleGet.com) C:\Program Files\EagleGet\EagleGet.exe
() C:\Users\Walid SAH\AppData\Roaming\ACEStream\engine\ace_engine.exe
(Skype Technologies S.A.) C:\Program Files\Skype\Phone\Skype.exe
(BitTorrent Inc.) C:\Users\Walid SAH\AppData\Roaming\uTorrent\updates\3.4.7_42330\utorrentie.exe
(BitTorrent Inc.) C:\Users\Walid SAH\AppData\Roaming\uTorrent\updates\3.4.7_42330\utorrentie.exe
() C:\Program Files\baidu\Baidu Browser\spark.exe
() C:\Program Files\baidu\Baidu Browser\spark.exe
() C:\Program Files\baidu\Baidu Browser\spark.exe
() C:\Program Files\baidu\Baidu Browser\spark.exe
() C:\Program Files\baidu\Baidu Browser\spark.exe
() C:\Program Files\baidu\Baidu Browser\spark.exe
() C:\Program Files\baidu\Baidu Browser\spark.exe
() C:\Program Files\baidu\Baidu Browser\spark.exe
() C:\Users\Walid SAH\AppData\Roaming\ACEStream\updater\ace_update.exe
() C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeHost.exe
(Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe
(Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe
() C:\Program Files\baidu\Baidu Browser\spark.exe
==================== Registre (Avec liste blanche) ===========================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI.exe [7549184 2015-09-26] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg] => C:\Program Files\Realtek\Audio\HDA\RtHDVBg.exe [1024256 2015-09-26] (Realtek Semiconductor)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3527368 2015-09-26] (Synaptics Incorporated)
HKLM\...\Run: [MeditelInternet_MeditelInternet_Launcher.exe] => C:\Program Files\MeditelInternet\MeditelInternet_Launcher.exe [928312 2014-05-22] ()
HKLM\...\Run: [PCFIXTRAYATUCN] => c:\pcfiXtraymhvmp.lnk [1983 2016-06-16] ()
HKLM\...\Run: [PCFIXTRAYMRDWA] => c:\pcfiXtraywnyzf.lnk [1983 2016-06-16] ()
HKLM\...\Run: [PCFIXTRAYVMCJM] => c:\pcfiXtrayafqjp.lnk [1983 2016-06-16] ()
HKLM\...\Run: [PCFIXTRAYWURPA] => c:\pcfiXtraymvjzm.lnk [1983 2016-06-17] ()
HKLM\...\Run: [PCFIXTRAYJRMWV] => c:\pcfiXtraycisuq.lnk [1983 2016-06-18] ()
HKLM\...\Run: [PCFIXTRAYUQROF] => c:\pcfiXtraypwacv.lnk [1983 2016-06-18] ()
HKLM\...\Run: [PCFIXTRAYHNUML] => c:\pcfiXtrayjnrct.lnk [1983 2016-06-19] ()
HKLM\...\Run: [PCFIXTRAYFHWFJ] => c:\pcfiXtrayufgzy.lnk [1983 2016-06-19] ()
HKLM\...\Run: [PCFIXTRAYWOGHU] => c:\pcfiXtraysorht.lnk [1983 2016-06-19] ()
HKLM\...\Run: [PCFIXTRAYNRKHG] => c:\pcfiXtrayetici.lnk [1983 2016-06-20] ()
HKLM\...\Run: [PCFIXTRAYOOGDJ] => c:\pcfiXtraysmspu.lnk [1983 2016-06-20] ()
HKLM\...\Run: [PCFIXTRAYYPEKY] => c:\pcfiXtraybmefk.lnk [1983 2016-06-21] ()
HKLM\...\Run: [PCFIXTRAYXWLIK] => c:\pcfiXtrayrtfbo.lnk [1983 2016-06-22] ()
HKLM\...\Run: [PCFIXTRAYHREZF] => c:\pcfiXtraygzyto.lnk [1983 2016-06-23] ()
HKLM\...\Run: [PCFIXTRAYPKBFY] => c:\pcfiXtraywllfc.lnk [1983 2016-06-23] ()
HKLM\...\Run: [PCFIXTRAYKNRAW] => c:\pcfiXtrayujjmb.lnk [1983 2016-06-29] ()
HKLM\...\Run: [PCFIXTRAYCYMVW] => c:\pcfiXtraylcscw.lnk [1983 2016-06-29] ()
HKLM\...\Run: [PCFIXTRAYYZSIJ] => c:\pcfiXtraylzhpu.lnk [1983 2016-06-30] ()
HKLM\...\Run: [PCFIXTRAYELGPZ] => c:\pcfiXtrayxybzz.lnk [1983 2016-06-30] ()
HKLM\...\Run: [PCFIXTRAYIRLWT] => c:\pcfiXtraymhwza.lnk [1983 2016-07-01] ()
HKLM\...\Run: [PCFIXTRAYLDRUX] => c:\pcfiXtraykrguc.lnk [1983 2016-07-01] ()
HKLM\...\Run: [PCFIXTRAYRISEN] => c:\pcfiXtraynlkud.lnk [1983 2016-07-01] ()
HKLM\...\Run: [PCFIXTRAYPVZFV] => c:\pcfiXtrayuhvrp.lnk [1983 2016-07-02] ()
HKLM\...\Run: [PCFIXTRAYBSIRI] => c:\pcfiXtrayfoyef.lnk [1983 2016-07-02] ()
HKLM\...\Run: [PCFIXTRAYCUCNV] => c:\pcfiXtrayjntaz.lnk [1983 2016-07-02] ()
HKLM\...\Run: [PCFIXTRAYNVQCH] => c:\pcfiXtraywcavt.lnk [1983 2016-07-03] ()
HKLM\...\Run: [PCFIXTRAYMYGJG] => c:\pcfiXtraymkhed.lnk [1983 2016-07-03] ()
HKLM\...\Run: [PCFIXTRAYEXYIH] => c:\pcfiXtraygblns.lnk [1983 2016-07-03] ()
HKLM\...\Run: [PCFIXTRAYTMWUK] => c:\pcfiXtrayjataw.lnk [1983 2016-07-04] ()
HKLM\...\Run: [PCFIXTRAYMUTIT] => c:\pcfiXtraydvyqw.lnk [1983 2016-07-04] ()
HKLM\...\Winlogon: [Userinit] wscript C:\WINDOWS\run.vbs,
HKU\S-1-5-21-691611659-2595466276-322701303-1003\...\Run: [uTorrent] => C:\Users\Walid SAH\AppData\Roaming\uTorrent\uTorrent.exe [2133504 2016-05-16] (BitTorrent Inc.)
HKU\S-1-5-21-691611659-2595466276-322701303-1003\...\Run: [BingSvc] => C:\Users\Walid SAH\AppData\Local\Microsoft\BingSvc\BingSvc.exe [144008 2015-11-15] (© 2015 Microsoft Corporation)
HKU\S-1-5-21-691611659-2595466276-322701303-1003\...\Run: [EagleGet] => C:\Program Files\EagleGet\Eagleget.exe [1891328 2015-08-19] (EagleGet.com)
HKU\S-1-5-21-691611659-2595466276-322701303-1003\...\Run: [AceStream] => C:\Users\Walid SAH\AppData\Roaming\ACEStream\engine\ace_engine.exe [27000 2016-05-19] ()
HKU\S-1-5-21-691611659-2595466276-322701303-1003\...\Run: [Skype] => C:\Program Files\Skype\Phone\Skype.exe [53130368 2016-05-17] (Skype Technologies S.A.)
HKU\S-1-5-21-691611659-2595466276-322701303-1003\...\Run: [QGuan10in1] => C:\Users\Walid SAH\AppData\Roaming\UPUpdata\service72564.exe /autorun
HKU\S-1-5-21-691611659-2595466276-322701303-1003\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
HKU\S-1-5-21-691611659-2595466276-322701303-1003\...\Policies\Explorer: [LinkResolveIgnoreLinkInfo] 1
HKU\S-1-5-21-691611659-2595466276-322701303-1003\...\Policies\Explorer: [NoResolveSearch] 1
HKU\S-1-5-21-691611659-2595466276-322701303-1003\...\Policies\Explorer: [NoInternetOpenWith] 1
HKU\S-1-5-21-691611659-2595466276-322701303-1003\...\MountPoints2: {15b9d9f9-1468-11e6-a0c3-f8a9638e69f8} - "F:\.\Setup.exe" AUTORUN=1
IFEO\SppExtComObj.exe: [Debugger] SppExtComObjPatcher.exe
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => Pas de fichier
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{9899312d-57e4-46bf-951c-a97f450a5c33}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{c2f7991d-ec63-441d-bf57-71888d3d129e}: [NameServer] 41.214.140.4 41.214.140.5
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/?LinkID=617910&ResetID=131108796709024254&GUID=33BA2FD6-7E38-40BD-844C-8835DC6BA87F
HKU\S-1-5-21-691611659-2595466276-322701303-1003\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/?LinkID=617910&ResetID=131108796709050112&GUID=33BA2FD6-7E38-40BD-844C-8835DC6BA87F
SearchScopes: HKU\S-1-5-21-691611659-2595466276-322701303-1003 -> {C3BA2C37-52A7-4CC9-B212-1A0DEA3F3924} URL = hxxp://www.search.ask.com/web?tpid=SPC-C2-5&o=APN10951&pf=V7&p2=^B20^YYYYYY^CH^MA&gct=&itbv=12.35.0.2546&apn_uid=5DDE37A9-D7DA-485F-BB1C-EF8D41F262CD&apn_ptnrs=^B20&apn_dtid=^YYYYYY^CH^MA&apn_dbr=microsoftedge.exe_0_20.10240.16384.0&doi=2015-11-08&trgb=CR&q={searchTerms}&psv=&pt=tb
BHO: EGet Class -> {1E871FF8-029C-4732-8AA7-39E3D3872057} -> C:\Program Files\EagleGet\eagleSniffer.dll [2015-08-19] (EagleGet.com)
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office15\OCHelper.dll [2016-05-27] (Microsoft Corporation)
BHO: Ó¦Óñ¦Ò»¼ü°²×°²å¼þ -> {50F4150A-48B2-417A-BE4C-C83F580FB904} -> C:\Program Files\Common Files\Tencent\QQPhoneManager\2.0.201.3192\npQQPhoneManagerExt.dll [2014-05-30] (腾讯公司)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL [2016-05-17] (Microsoft Corporation)
Toolbar: HKLM - Pas de nom - {5350432D-4332-2D35-00A7-7A786E7484D7} - Pas de fichier
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL [2016-05-17] (Microsoft Corporation)
FireFox:
========
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF32_22_0_0_192.dll [2016-06-17] ()
FF Plugin: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files\Google\Picasa3\npPicasa3.dll [2015-08-26] (Google, Inc.)
FF Plugin: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2015-11-18] (Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~1\Office15\NPSPWRAP.DLL [2014-01-23] (Microsoft Corporation)
FF Plugin: @mozilla.zeniko.ch/SumatraPDF_Browser_Plugin -> C:\Program Files\SumatraPDF\npPdfViewer.dll [2014-05-14] (Simon Bünzli)
FF Plugin: @qq.com/npAndroidAssistant -> C:\Program Files\Common Files\Tencent\QQPhoneManager\2.0.201.3192\npQQPhoneManagerExt.dll [2014-05-30] (腾讯公司)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-05-11] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-05-11] (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.2.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2016-05-27] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-691611659-2595466276-322701303-1003: @acestream.net/acestreamplugin,version=3.1.0 -> C:\Users\Walid SAH\AppData\Roaming\ACEStream\player\npace_plugin.dll [2015-08-06] (Innovative Digital Technologies)
FF Plugin HKU\S-1-5-21-691611659-2595466276-322701303-1003: eagleget.com/EagleGet32 -> C:\Program Files\EagleGet\npEagleget.dll [2015-08-19] (EagleGet)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npMeetingJoinPluginOC.dll [2015-11-18] (Microsoft Corporation)
FF HKU\S-1-5-21-691611659-2595466276-322701303-1003\...\Firefox\Extensions: [acewebextension_unlisted@acestream.org] - C:\Users\Walid SAH\AppData\Roaming\ACEStream\extensions\awe\firefox\acewebextension_unlisted.xpi
FF Extension: Ace Stream Web Extension - C:\Users\Walid SAH\AppData\Roaming\ACEStream\extensions\awe\firefox\acewebextension_unlisted.xpi [2015-12-18]
Chrome:
=======
CHR HomePage: ChromeDefaultData -> search.ask.com/?gct=hp
CHR StartupUrls: ChromeDefaultData -> "hxxp://d2ucfwpxlh3zh3.cloudfront.net/?ts=AHEqBX0lAH4oAU..&v=20160615&uid=5BD2F4FF77537BA2DF0BC518DD6C1D1E&ptid=clc&mode=loadm"
CHR DefaultSearchURL: ChromeDefaultData -> hxxp://d2ucfwpxlh3zh3.cloudfront.net/chrome.php?q={searchTerms}&ts=AHEqBX0lAH4oAU..&v=20160615&uid=5BD2F4FF77537BA2DF0BC518DD6C1D1E&ptid=clc&mode=loadm
CHR DefaultSearchKeyword: ChromeDefaultData -> hohosearch
CHR Profile: C:\Users\Walid SAH\AppData\Local\Google\Chrome\User Data\ChromeDefaultData
CHR Extension: (Google Docs) - C:\Users\Walid SAH\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\aohghmighlieiainnegkcijnfilokake [2015-09-25]
CHR Extension: (Google Drive) - C:\Users\Walid SAH\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-11-07]
CHR Extension: (YouTube) - C:\Users\Walid SAH\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-25]
CHR Extension: (Recherche Google) - C:\Users\Walid SAH\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-11-07]
CHR Extension: (Bing) - C:\Users\Walid SAH\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\fcfenmboojpjinhpgggodefccipikbpd [2016-06-17]
CHR Extension: (Google Docs hors connexion) - C:\Users\Walid SAH\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-04-05]
CHR Extension: (EagleGet Free Downloader) - C:\Users\Walid SAH\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\kaebhgioafceeldhgjmendlfhbfjefmo [2016-06-10]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Walid SAH\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-20]
CHR Extension: (Gmail) - C:\Users\Walid SAH\AppData\Local\Google\Chrome\User Data\ChromeDefaultData\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-09-25]
CHR HKLM\...\Chrome\Extension: [aaaaapdcjfaomkafnbpoclmfakjianjd] - C:\ProgramData\AskPartnerNetwork\Toolbar\Shared\CRX\aaaaapdcjfaomkafnbpoclmfakjianjd.crx [2016-01-08]
CHR HKLM\...\Chrome\Extension: [kaebhgioafceeldhgjmendlfhbfjefmo] - C:\Program Files\EagleGet\addon\eagleget_cext@eagleget.com.crx [2015-07-10]
CHR HKU\S-1-5-21-691611659-2595466276-322701303-1003\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [fcfenmboojpjinhpgggodefccipikbpd] - hxxps://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-691611659-2595466276-322701303-1003\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [kaebhgioafceeldhgjmendlfhbfjefmo] - C:\Program Files\EagleGet\addon\eagleget_cext@eagleget.com.crx [2015-07-10]
CHR HKU\S-1-5-21-691611659-2595466276-322701303-1003\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [mjbepbhonbojpoaenhckjocchgfiaofo] - hxxps://clients2.google.com/service/update2/crx
==================== Services (Avec liste blanche) ========================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 BASSVC; C:\Program Files\Baidu Security\MoboMarket\1.2.8.4379\bassvc.exe [208928 2014-12-17] (Baidu, Inc.)
R3 cphs; C:\WINDOWS\system32\IntelCpHeciSvc.exe [290224 2015-11-24] (Intel Corporation)
S2 dowidoly; C:\Program Files\7CF1005F-1466010781-E311-B2A0-F8A9638E69F8\jnsu4C08.tmp [244224 2016-06-16] () [Fichier non signé]
R2 egGetSvc; C:\Program Files\EagleGet\EGMonitor.exe [235520 2015-08-19] () [Fichier non signé]
R2 igfxCUIService1.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [283568 2015-11-24] (Intel Corporation)
R2 MeditelInternet_Service; C:\Program Files\MeditelInternet\MeditelInternet_Service.exe [346680 2014-05-22] ()
R2 PCFasterSvc_{PCFaster_5.1.0.0}; C:\Program Files\PC Faster\5.1.0.0\PCFasterSvc.exe [1714448 2015-05-07] (Baidu, Inc.)
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService.exe [263936 2015-09-26] (Realtek Semiconductor)
R2 SparkSvc; C:\Program Files\baidu\Baidu Browser\sparkservice.exe [97080 2016-03-07] (Baidu Inc.)
S3 SparkUpdater; C:\Program Files\Baidu\SparkUpdate\Sparkupdate.exe [1371960 2015-08-06] (Baidu.com, Inc.)
R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [217288 2015-09-26] (Synaptics Incorporated)
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [280376 2015-10-30] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23256 2015-10-30] (Microsoft Corporation)
S2 rijufoze; C:\Program Files\7CF1005F-1466010781-E311-B2A0-F8A9638E69F8\hnsu64D2.tmp [X]
===================== Pilotes (Avec liste blanche) ==========================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 eagleGet; C:\WINDOWS\System32\Drivers\eagleGet.sys [94720 2015-07-29] (eagleGet) [Fichier non signé]
S3 hwusb_cdcacm; C:\WINDOWS\system32\DRIVERS\ew_cdcacm.sys [108032 2013-10-23] (Huawei Technologies Co., Ltd.)
S3 hwusb_wwanecm; C:\WINDOWS\System32\drivers\ew_wwanecm.sys [316544 2013-11-01] (Huawei Technologies Co., Ltd.)
S3 intaud_WaveExtensible; C:\WINDOWS\system32\drivers\intelaud.sys [44096 2015-07-20] (Intel Corporation)
R3 iwdbus; C:\WINDOWS\System32\drivers\iwdbus.sys [35392 2015-07-20] (Intel Corporation)
R3 MEI; C:\WINDOWS\System32\drivers\HECI.sys [55104 2012-07-17] (Intel Corporation)
R1 MpKsl8aab2167; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{63CBBE41-5A21-4CE9-B6DE-BAAF96EC1756}\MpKsl8aab2167.sys [39168 2016-07-02] (Microsoft Corporation)
R1 MpKslc2aa3c4a; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{A8FA2E03-E781-42DD-B5A1-1E28AF772898}\MpKslc2aa3c4a.sys [39168 2016-07-01] (Microsoft Corporation)
R1 MpKslf6b79154; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{8CDCEC82-274C-4E48-A487-8A5EB2743485}\MpKslf6b79154.sys [39168 2016-07-04] (Microsoft Corporation)
R3 netr28; C:\WINDOWS\system32\DRIVERS\netr28.sys [1527456 2015-06-12] (MediaTek Inc.)
R3 NPF; C:\Users\Walid SAH\Desktop\Selfishnet win 7\npf.sys [42000 2007-01-25] (CACE Technologies)
S3 RSP2STOR; C:\WINDOWS\system32\DRIVERS\RtsP2Stor.sys [239360 2015-06-05] (Realtek Semiconductor Corp.)
R3 rt640x86; C:\WINDOWS\System32\drivers\rt640x86.sys [494080 2015-10-30] (Realtek )
R3 rtbth; C:\WINDOWS\System32\drivers\rtbth.sys [944768 2015-06-02] (Ralink Technology, Corp.)
S3 SmbDrv; C:\WINDOWS\system32\DRIVERS\Smb_driver.sys [18864 2011-10-14] (Synaptics Incorporated)
R3 SmbDrvI; C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys [35528 2015-09-26] (Synaptics Incorporated)
R1 TsDefenseBt; C:\WINDOWS\System32\DRIVERS\TSDEFENSEBT.SYS [14008 2016-06-15] (Tencent)
S0 WdBoot; C:\WINDOWS\System32\drivers\WdBoot.sys [37400 2015-10-30] (Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\WdFilter.sys [246104 2015-10-30] (Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [98648 2015-10-30] (Microsoft Corporation)
S3 WUDFWpdMtp; C:\WINDOWS\system32\DRIVERS\WUDFRd.sys [163328 2015-10-30] (Microsoft Corporation)
S1 QMUdisk; \??\C:\Program Files\Tencent\QQPCMgr\11.5.17490.219\QMUdisk.sys [X]
S1 softaal; \??\C:\Program Files\Tencent\QQPCMgr\11.5.17490.219\softaal.sys [X]
S1 SRepairDrv; \??\C:\Program Files\Tencent\QQPCMGR\SRepairDrv [X]
S3 TcHardWare; \??\C:\Program Files\Tencent\QQPCMgr\11.5.17490.219\QQPCHW.sys [X]
S2 tsnethlp; \??\C:\Program Files\Tencent\QQPCMgr\11.5.17490.219\TsNetHlp.sys [X]
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
NETSVC: HpSvc -> pas de chemin du fichier.
==================== Un mois - Créés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2016-07-07 10:33 - 2016-07-07 10:34 - 00021073 _____ C:\Users\Walid SAH\Desktop\FRST.txt
2016-07-07 10:33 - 2016-07-07 10:33 - 00000000 ____D C:\FRST
2016-07-07 10:32 - 2016-07-07 10:32 - 01740288 _____ (Farbar) C:\Users\Walid SAH\Desktop\FRST.exe
2016-07-04 21:38 - 2016-07-04 21:38 - 00001983 _____ C:\pcfiXtraydvyqw.lnk
2016-07-04 15:50 - 2016-07-04 15:50 - 00001983 _____ C:\pcfiXtrayjataw.lnk
2016-07-03 18:39 - 2016-07-03 18:39 - 00001983 _____ C:\pcfiXtraygblns.lnk
2016-07-03 17:45 - 2016-07-03 17:45 - 00001983 _____ C:\pcfiXtraymkhed.lnk
2016-07-03 05:25 - 2016-07-03 05:25 - 00001983 _____ C:\pcfiXtraywcavt.lnk
2016-07-02 20:46 - 2016-07-02 20:46 - 00001983 _____ C:\pcfiXtrayjntaz.lnk
2016-07-02 18:54 - 2016-07-02 18:54 - 00001983 _____ C:\pcfiXtrayfoyef.lnk
2016-07-02 03:43 - 2016-07-02 03:43 - 00001983 _____ C:\pcfiXtrayuhvrp.lnk
2016-07-01 02:46 - 2016-07-01 02:46 - 00001983 _____ C:\pcfiXtraynlkud.lnk
2016-07-01 02:14 - 2016-07-01 02:14 - 00001983 _____ C:\pcfiXtraykrguc.lnk
2016-07-01 00:06 - 2016-07-01 00:06 - 00001983 _____ C:\pcfiXtraymhwza.lnk
2016-06-30 01:14 - 2016-06-30 01:14 - 00001585 _____ C:\Users\Public\Desktop\League of Legends.lnk
2016-06-30 01:14 - 2016-06-30 01:14 - 00000000 ____D C:\Riot Games
2016-06-30 01:14 - 2016-06-30 01:14 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\League of Legends
2016-06-30 00:54 - 2016-06-30 00:54 - 00001983 _____ C:\pcfiXtrayxybzz.lnk
2016-06-30 00:49 - 2016-06-30 01:13 - 00000000 __SHD C:\AI_RecycleBin
2016-06-30 00:41 - 2016-06-30 00:41 - 00001983 _____ C:\pcfiXtraylzhpu.lnk
2016-06-29 21:20 - 2016-06-29 21:20 - 00001983 _____ C:\pcfiXtraylcscw.lnk
2016-06-29 20:41 - 2016-06-29 20:41 - 00001983 _____ C:\pcfiXtrayujjmb.lnk
2016-06-23 05:42 - 2016-06-23 05:42 - 00001983 _____ C:\pcfiXtraywllfc.lnk
2016-06-23 05:29 - 2016-06-23 05:29 - 00001983 _____ C:\pcfiXtraygzyto.lnk
2016-06-22 04:44 - 2016-06-22 04:44 - 00001983 _____ C:\pcfiXtrayrtfbo.lnk
2016-06-21 00:33 - 2016-06-21 00:33 - 00001983 _____ C:\pcfiXtraybmefk.lnk
2016-06-20 16:46 - 2016-06-20 16:46 - 00001983 _____ C:\pcfiXtraysmspu.lnk
2016-06-20 06:51 - 2016-06-20 06:51 - 00538213 _____ C:\Users\Walid SAH\Desktop\programme-pour-maigrir.pdf
2016-06-20 06:45 - 2016-06-20 06:45 - 00001983 _____ C:\pcfiXtrayetici.lnk
2016-06-19 22:30 - 2016-06-19 22:30 - 00001983 _____ C:\pcfiXtraysorht.lnk
2016-06-19 22:07 - 2016-06-19 22:07 - 00001983 _____ C:\pcfiXtrayufgzy.lnk
2016-06-19 16:26 - 2016-06-19 16:26 - 00001983 _____ C:\pcfiXtrayjnrct.lnk
2016-06-18 21:01 - 2016-06-18 21:01 - 00001983 _____ C:\pcfiXtraypwacv.lnk
2016-06-18 13:04 - 2016-06-18 13:04 - 00001983 _____ C:\pcfiXtraycisuq.lnk
2016-06-17 00:20 - 2016-06-17 00:20 - 09717952 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerInstaller.exe
2016-06-17 00:02 - 2016-06-17 00:02 - 00001983 _____ C:\pcfiXtraymvjzm.lnk
2016-06-16 21:19 - 2016-06-16 21:19 - 00001983 _____ C:\pcfiXtrayafqjp.lnk
2016-06-16 20:59 - 2016-06-16 20:59 - 00001983 _____ C:\pcfiXtraywnyzf.lnk
2016-06-16 20:33 - 2016-06-16 20:19 - 00000000 ___HD C:\$SysReset
2016-06-16 20:26 - 2016-06-16 20:26 - 00001983 _____ C:\pcfiXtraymhvmp.lnk
2016-06-16 20:08 - 2016-06-16 20:09 - 00000000 ___HD C:\$Windows.~BT
2016-06-16 19:58 - 2016-06-16 20:19 - 00000000 _____ C:\Recovery.txt
2016-06-15 23:25 - 2016-06-15 23:25 - 00000000 ____D C:\Users\Walid SAH\AppData\Local\node-webkit
2016-06-15 22:21 - 2016-06-15 23:23 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\腾讯软件
2016-06-15 22:20 - 2016-06-15 23:23 - 00000000 ____D C:\Users\Walid SAH\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\腾讯软件
2016-06-15 18:01 - 2016-06-16 20:58 - 00000000 ____D C:\ProgramData\AVAST Software
2016-06-15 17:54 - 2016-02-18 09:10 - 05267952 _____ () C:\Users\Walid SAH\AppData\Roaming\ziptool_wc-9015_setup.exe
2016-06-15 17:53 - 2016-06-15 22:12 - 00039928 _____ (Tencent) C:\WINDOWS\system32\Drivers\TS888.sys
2016-06-15 17:47 - 2016-06-15 17:47 - 00000000 ____D C:\Users\Walid SAH\AppData\Roaming\yiwanzhushou
2016-06-15 17:47 - 2016-06-15 17:47 - 00000000 ____D C:\Program Files\yiwanplayer
2016-06-15 17:37 - 2016-06-15 22:24 - 00000000 ____D C:\ProgramData\TXQMPC
2016-06-15 17:37 - 2016-06-15 17:36 - 00102008 _____ (Tencent Technology(Shenzhen) Company Limited) C:\WINDOWS\system32\Drivers\TAOKernelEx.sys
2016-06-15 17:37 - 2016-06-15 17:36 - 00014008 _____ (Tencent) C:\WINDOWS\system32\Drivers\TSDefenseBt.sys
2016-06-15 17:37 - 2015-09-01 04:26 - 01099376 _____ C:\Users\Walid SAH\AppData\Roaming\inst_buychannel_01.exe
2016-06-15 17:36 - 2016-06-15 22:19 - 00000000 ____D C:\Program Files\Common Files\Tencent
2016-06-15 17:36 - 2016-06-15 17:36 - 00159608 _____ (电脑管家) C:\WINDOWS\system32\Drivers\TFsFlt.sys
2016-06-15 17:35 - 2016-06-15 23:23 - 00000000 ____D C:\ProgramData\Tencent
2016-06-15 17:35 - 2016-06-15 18:09 - 00000000 ____D C:\Users\Walid SAH\AppData\Roaming\Tencent
2016-06-15 17:35 - 2016-06-15 17:35 - 00000000 ____D C:\Program Files\Tencent
2016-06-15 17:21 - 2016-04-22 10:39 - 51987648 _____ C:\Users\Walid SAH\AppData\Roaming\qqpcmgr_v11.5.17490.219_72530_Silence.exe
2016-06-15 17:20 - 2016-06-15 17:48 - 00000000 ____D C:\Program Files\Lattionmesos
2016-06-15 17:20 - 2016-06-15 17:20 - 00000000 ____D C:\Users\Walid SAH\AppData\Local\3810282D-6C19-47B0-8283-5C6C29A7E108
2016-06-15 17:19 - 2016-06-20 16:20 - 00000000 ____D C:\Program Files\Chaekgrewege
2016-06-15 17:19 - 2016-06-15 22:13 - 00000000 ____D C:\Users\Walid SAH\AppData\Roaming\UPUpdata
2016-06-15 17:19 - 2016-06-15 17:20 - 00000000 ____D C:\Program Files\Clzghthupase
2016-06-15 17:13 - 2016-06-15 23:23 - 00000000 ____D C:\Program Files\7CF1005F-1466010781-E311-B2A0-F8A9638E69F8
2016-06-15 17:13 - 2016-06-15 17:10 - 00001045 _____ C:\WINDOWS\system32\Drivers\etc\hp.bak
2016-06-15 17:11 - 2016-06-15 22:13 - 00000000 ____D C:\Users\Walid SAH\AppData\Local\app
2016-06-15 17:09 - 2016-06-15 17:11 - 00000000 ____D C:\Program Files\ContentPush
2016-06-15 17:09 - 2016-06-15 17:09 - 00000000 ____D C:\Program Files\WeatherChickn
2016-06-14 20:50 - 2016-05-28 06:05 - 01232576 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2016-06-14 20:50 - 2016-05-28 06:05 - 00973504 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2016-06-14 20:50 - 2016-05-28 06:05 - 00440512 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2016-06-14 20:50 - 2016-05-28 06:05 - 00249536 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2016-06-14 20:50 - 2016-05-28 06:05 - 00081088 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2016-06-14 20:50 - 2016-05-28 06:05 - 00042688 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2016-06-14 20:50 - 2016-05-28 05:25 - 05797216 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2016-06-14 20:50 - 2016-05-28 05:25 - 04268880 _____ (Microsoft Corporation) C:\WINDOWS\system32\setupapi.dll
2016-06-14 20:50 - 2016-05-28 05:25 - 00354656 _____ (Microsoft Corporation) C:\WINDOWS\system32\halmacpi.dll
2016-06-14 20:50 - 2016-05-28 05:25 - 00354656 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2016-06-14 20:50 - 2016-05-28 05:25 - 00173920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tpm.sys
2016-06-14 20:50 - 2016-05-28 05:25 - 00096096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\partmgr.sys
2016-06-14 20:50 - 2016-05-28 05:23 - 00388384 _____ (Microsoft Corporation) C:\WINDOWS\system32\ws2_32.dll
2016-06-14 20:50 - 2016-05-28 05:22 - 00317280 _____ (Microsoft Corporation) C:\WINDOWS\system32\mswsock.dll
2016-06-14 20:50 - 2016-05-28 05:18 - 00023776 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2016-06-14 20:50 - 2016-05-28 05:10 - 00136032 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkUXBroker.exe
2016-06-14 20:50 - 2016-05-28 05:09 - 00501600 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupEngine.dll
2016-06-14 20:50 - 2016-05-28 05:09 - 00084832 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupApi.dll
2016-06-14 20:50 - 2016-05-28 05:08 - 00260960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2016-06-14 20:50 - 2016-05-28 05:08 - 00203104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ufx01000.sys
2016-06-14 20:50 - 2016-05-28 05:07 - 02921880 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2016-06-14 20:50 - 2016-05-28 05:07 - 00957608 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2016-06-14 20:50 - 2016-05-28 05:07 - 00703840 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2016-06-14 20:50 - 2016-05-28 05:06 - 04074160 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2016-06-14 20:50 - 2016-05-28 05:06 - 00613120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2016-06-14 20:50 - 2016-05-28 05:06 - 00254656 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppHost.exe
2016-06-14 20:50 - 2016-05-28 05:04 - 00505136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2016-06-14 20:50 - 2016-05-28 05:04 - 00360480 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcryptprimitives.dll
2016-06-14 20:50 - 2016-05-28 05:04 - 00139616 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2016-06-14 20:50 - 2016-05-28 05:04 - 00111608 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpapi.dll
2016-06-14 20:50 - 2016-05-28 05:04 - 00097096 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncryptsslp.dll
2016-06-14 20:50 - 2016-05-28 04:57 - 02195632 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10warp.dll
2016-06-14 20:50 - 2016-05-28 04:57 - 01714528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2016-06-14 20:50 - 2016-05-28 04:57 - 01396592 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32.dll
2016-06-14 20:50 - 2016-05-28 04:57 - 00546456 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2016-06-14 20:50 - 2016-05-28 04:57 - 00521664 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll
2016-06-14 20:50 - 2016-05-28 04:57 - 00484192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2016-06-14 20:50 - 2016-05-28 04:57 - 00316256 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2016-06-14 20:50 - 2016-05-28 04:31 - 00091648 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdlrecover.exe
2016-06-14 20:50 - 2016-05-28 04:31 - 00088576 _____ (Microsoft Corporation) C:\WINDOWS\system32\olepro32.dll
2016-06-14 20:50 - 2016-05-28 04:31 - 00074752 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsCSP.dll
2016-06-14 20:50 - 2016-05-28 04:31 - 00023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpsdport.sys
2016-06-14 20:50 - 2016-05-28 04:27 - 00050176 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosHostClient.dll
2016-06-14 20:50 - 2016-05-28 04:25 - 00065024 _____ (Microsoft Corporation) C:\WINDOWS\system32\adhsvc.dll
2016-06-14 20:50 - 2016-05-28 04:25 - 00037376 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2016-06-14 20:50 - 2016-05-28 04:25 - 00016896 _____ (Microsoft Corporation) C:\WINDOWS\system32\httpprxp.dll
2016-06-14 20:50 - 2016-05-28 04:24 - 00140800 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2016-06-14 20:50 - 2016-05-28 04:24 - 00093696 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll
2016-06-14 20:50 - 2016-05-28 04:24 - 00053760 _____ (Microsoft Corporation) C:\WINDOWS\system32\FwRemoteSvr.dll
2016-06-14 20:50 - 2016-05-28 04:23 - 00023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\mapsupdatetask.dll
2016-06-14 20:50 - 2016-05-28 04:22 - 00161280 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe
2016-06-14 20:50 - 2016-05-28 04:22 - 00122368 _____ (Microsoft Corporation) C:\WINDOWS\system32\omadmclient.exe
2016-06-14 20:50 - 2016-05-28 04:22 - 00116224 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcertinst.exe
2016-06-14 20:50 - 2016-05-28 04:22 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsBtSvc.dll
2016-06-14 20:50 - 2016-05-28 04:22 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosStorage.dll
2016-06-14 20:50 - 2016-05-28 04:21 - 00093184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthenum.sys
2016-06-14 20:50 - 2016-05-28 04:21 - 00042496 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpscript.dll
2016-06-14 20:50 - 2016-05-28 04:20 - 00180736 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdd.dll
2016-06-14 20:50 - 2016-05-28 04:20 - 00104960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Ndu.sys
2016-06-14 20:50 - 2016-05-28 04:20 - 00074240 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2016-06-14 20:50 - 2016-05-28 04:20 - 00070656 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppCapture.dll
2016-06-14 20:50 - 2016-05-28 04:20 - 00057344 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcsvc6.dll
2016-06-14 20:50 - 2016-05-28 04:20 - 00054784 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshost.dll
2016-06-14 20:50 - 2016-05-28 04:19 - 00258560 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
2016-06-14 20:50 - 2016-05-28 04:19 - 00114688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidclass.sys
2016-06-14 20:50 - 2016-05-28 04:19 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcsvc.dll
2016-06-14 20:50 - 2016-05-28 04:19 - 00063488 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptsvc.dll
2016-06-14 20:50 - 2016-05-28 04:18 - 00325120 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2016-06-14 20:50 - 2016-05-28 04:18 - 00211456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netbt.sys
2016-06-14 20:50 - 2016-05-28 04:18 - 00203264 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshostcore.dll
2016-06-14 20:50 - 2016-05-28 04:18 - 00161792 _____ (Microsoft Corporation) C:\WINDOWS\system32\BrokerLib.dll
2016-06-14 20:50 - 2016-05-28 04:18 - 00132096 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringservice.dll
2016-06-14 20:50 - 2016-05-28 04:17 - 09918976 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2016-06-14 20:50 - 2016-05-28 04:17 - 00485888 _____ (Microsoft Corporation) C:\WINDOWS\system32\newdev.dll
2016-06-14 20:50 - 2016-05-28 04:17 - 00415232 _____ (Microsoft Corporation) C:\WINDOWS\system32\StoreAgent.dll
2016-06-14 20:50 - 2016-05-28 04:17 - 00160768 _____ (Microsoft Corporation) C:\WINDOWS\system32\GnssAdapter.dll
2016-06-14 20:50 - 2016-05-28 04:17 - 00144384 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscsvc.dll
2016-06-14 20:50 - 2016-05-28 04:17 - 00142336 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupSvc.dll
2016-06-14 20:50 - 2016-05-28 04:17 - 00129024 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Privacy.dll
2016-06-14 20:50 - 2016-05-28 04:16 - 19344384 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2016-06-14 20:50 - 2016-05-28 04:16 - 00464896 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2016-06-14 20:50 - 2016-05-28 04:16 - 00442368 _____ (Microsoft Corporation) C:\WINDOWS\system32\MBMediaManager.dll
2016-06-14 20:50 - 2016-05-28 04:16 - 00291328 _____ (Microsoft Corporation) C:\WINDOWS\system32\polstore.dll
2016-06-14 20:50 - 2016-05-28 04:16 - 00230400 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcore6.dll
2016-06-14 20:50 - 2016-05-28 04:15 - 00579072 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpprefcl.dll
2016-06-14 20:50 - 2016-05-28 04:15 - 00535040 _____ (Microsoft Corporation) C:\WINDOWS\system32\rastls.dll
2016-06-14 20:50 - 2016-05-28 04:15 - 00527872 _____ (Microsoft Corporation) C:\WINDOWS\system32\vpnike.dll
2016-06-14 20:50 - 2016-05-28 04:15 - 00349696 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapConfiguration.dll
2016-06-14 20:50 - 2016-05-28 04:15 - 00334336 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvr.exe
2016-06-14 20:50 - 2016-05-28 04:15 - 00293888 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcore.dll
2016-06-14 20:50 - 2016-05-28 04:15 - 00274432 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemEventsBrokerServer.dll
2016-06-14 20:50 - 2016-05-28 04:14 - 18674176 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2016-06-14 20:50 - 2016-05-28 04:14 - 00846336 _____ (Microsoft Corporation) C:\WINDOWS\system32\iphlpsvc.dll
2016-06-14 20:50 - 2016-05-28 04:14 - 00499712 _____ (Microsoft Corporation) C:\WINDOWS\system32\MessagingDataModel2.dll
2016-06-14 20:50 - 2016-05-28 04:14 - 00309248 _____ (Microsoft Corporation) C:\WINDOWS\system32\IPSECSVC.DLL
2016-06-14 20:50 - 2016-05-28 04:14 - 00230400 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXTaskFactory.dll
2016-06-14 20:50 - 2016-05-28 04:14 - 00219136 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEEventDispatcher.dll
2016-06-14 20:50 - 2016-05-28 04:14 - 00200192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll
2016-06-14 20:50 - 2016-05-28 04:14 - 00133120 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmmigrator.dll
2016-06-14 20:50 - 2016-05-28 04:13 - 00604672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
2016-06-14 20:50 - 2016-05-28 04:13 - 00467456 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppContracts.dll
2016-06-14 20:50 - 2016-05-28 04:13 - 00393728 _____ (Microsoft Corporation) C:\WINDOWS\system32\tileobjserver.dll
2016-06-14 20:50 - 2016-05-28 04:13 - 00340480 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv.sys
2016-06-14 20:50 - 2016-05-28 04:12 - 00800768 _____ (Microsoft Corporation) C:\WINDOWS\system32\JpMapControl.dll
2016-06-14 20:50 - 2016-05-28 04:12 - 00614400 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll
2016-06-14 20:50 - 2016-05-28 04:12 - 00521728 _____ (Microsoft Corporation) C:\WINDOWS\system32\StructuredQuery.dll
2016-06-14 20:50 - 2016-05-28 04:12 - 00186880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srvnet.sys
2016-06-14 20:50 - 2016-05-28 04:11 - 01445888 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRHInproc.dll
2016-06-14 20:50 - 2016-05-28 04:11 - 01152000 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2016-06-14 20:50 - 2016-05-28 04:11 - 00890368 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxPackaging.dll
2016-06-14 20:50 - 2016-05-28 04:11 - 00799744 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRH.dll
2016-06-14 20:50 - 2016-05-28 04:11 - 00784896 _____ (Microsoft Corporation) C:\WINDOWS\system32\NMAA.dll
2016-06-14 20:50 - 2016-05-28 04:11 - 00744448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys
2016-06-14 20:50 - 2016-05-28 04:11 - 00740352 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedStartModel.dll
2016-06-14 20:50 - 2016-05-28 04:11 - 00711680 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlCore.dll
2016-06-14 20:50 - 2016-05-28 04:11 - 00687616 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2016-06-14 20:50 - 2016-05-28 04:11 - 00612352 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll
2016-06-14 20:50 - 2016-05-28 04:11 - 00504320 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2016-06-14 20:50 - 2016-05-28 04:11 - 00453632 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2016-06-14 20:50 - 2016-05-28 04:10 - 00061952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BTHUSB.SYS
2016-06-14 20:50 - 2016-05-28 04:09 - 00109056 _____ (Microsoft Corporation) C:\WINDOWS\system32\httpprxm.dll
2016-06-14 20:50 - 2016-05-28 04:08 - 06295552 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll
2016-06-14 20:50 - 2016-05-28 04:08 - 00783872 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXService.dll
2016-06-14 20:50 - 2016-05-28 04:06 - 12128256 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2016-06-14 20:50 - 2016-05-28 04:06 - 03196928 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2016-06-14 20:50 - 2016-05-28 04:05 - 03664896 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2016-06-14 20:50 - 2016-05-28 04:04 - 00450560 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncController.dll
2016-06-14 20:50 - 2016-05-28 04:04 - 00079360 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceEnroller.exe
2016-06-14 20:50 - 2016-05-28 04:03 - 05323776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2016-06-14 20:50 - 2016-05-28 04:03 - 05205504 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
2016-06-14 20:50 - 2016-05-28 04:03 - 02974208 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2016-06-14 20:50 - 2016-05-28 04:03 - 01800704 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll
2016-06-14 20:50 - 2016-05-28 04:03 - 01733632 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2016-06-14 20:50 - 2016-05-28 04:03 - 01185280 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationFramework.dll
2016-06-14 20:50 - 2016-05-28 04:03 - 00558080 _____ (Microsoft Corporation) C:\WINDOWS\system32\internetmail.dll
2016-06-14 20:50 - 2016-05-28 04:03 - 00359936 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenrollengine.dll
2016-06-14 20:50 - 2016-05-28 04:02 - 02061824 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2016-06-14 20:50 - 2016-05-28 04:02 - 01896960 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2016-06-14 20:50 - 2016-05-28 04:02 - 00103424 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatepolicy.dll
2016-06-14 20:50 - 2016-05-28 04:01 - 02880512 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsThresholdAdminFlowUI.dll
2016-06-14 20:50 - 2016-05-28 04:01 - 01799680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
2016-06-14 20:50 - 2016-05-28 04:01 - 01582080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2016-06-14 20:50 - 2016-05-28 04:01 - 01500160 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2016-06-14 20:50 - 2016-05-28 04:01 - 01193984 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpsvc.dll
2016-06-14 20:50 - 2016-05-28 04:01 - 00141824 _____ (Microsoft Corporation) C:\WINDOWS\system32\enrollmentapi.dll
2016-06-14 20:50 - 2016-05-28 04:00 - 05660160 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2016-06-14 20:50 - 2016-05-28 04:00 - 02230272 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2016-06-14 20:50 - 2016-05-28 04:00 - 01900032 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2016-06-14 20:50 - 2016-05-28 04:00 - 01707520 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActiveSyncProvider.dll
2016-06-14 20:50 - 2016-05-28 04:00 - 00151040 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmregistration.dll
2016-06-14 20:50 - 2016-05-28 03:56 - 01075200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Shell.dll
2016-06-14 20:50 - 2016-05-28 03:54 - 00063488 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcpopkeysrv.dll
2016-06-08 03:09 - 2016-07-07 10:21 - 00000000 ____D C:\Users\Walid SAH\AppData\LocalLow\uTorrent
2016-06-07 18:32 - 2016-06-07 18:32 - 00000000 ____D C:\Users\Walid SAH\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Kodi
==================== Un mois - Modifiés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2016-07-07 10:33 - 2015-09-25 06:20 - 00001076 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2016-07-07 10:31 - 2015-09-25 10:30 - 00000000 ____D C:\Users\Walid SAH\AppData\Roaming\uTorrent
2016-07-07 10:22 - 2015-09-25 05:45 - 00000000 ____D C:\Users\Walid SAH\AppData\Roaming\Skype
2016-07-07 10:21 - 2015-09-25 06:20 - 00001072 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2016-07-07 10:21 - 2015-09-25 05:31 - 00000000 __SHD C:\Users\Walid SAH\IntelGraphicsProfiles
2016-07-07 00:39 - 2014-06-22 13:33 - 00400552 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2016-07-05 01:20 - 2015-09-25 06:10 - 00001002 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2016-07-05 01:07 - 2015-09-25 10:51 - 00000000 ____D C:\Users\Walid SAH\AppData\Roaming\Kodi
2016-07-04 21:48 - 2015-09-25 20:22 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Baidu PC Faster
2016-07-04 21:44 - 2015-10-30 15:07 - 00155764 _____ C:\WINDOWS\system32\perfc00C.dat
2016-07-04 21:44 - 2015-10-30 15:07 - 00016150 _____ C:\WINDOWS\system32\perfh00C.dat
2016-07-04 21:44 - 2015-10-30 05:47 - 00000000 ____D C:\WINDOWS\INF
2016-07-04 21:44 - 2015-09-25 23:03 - 01034676 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2016-07-04 21:38 - 2016-03-02 04:13 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-07-03 05:27 - 2015-10-30 05:48 - 00000000 ____D C:\WINDOWS\AppReadiness
2016-07-02 03:49 - 2015-10-30 05:48 - 00000000 ___HD C:\Program Files\WindowsApps
2016-07-01 00:06 - 2016-03-02 04:01 - 00000000 ____D C:\Users\Walid SAH
2016-06-30 19:55 - 2015-09-25 06:22 - 00002254 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-06-30 19:55 - 2015-09-25 06:22 - 00002242 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2016-06-30 19:55 - 2014-12-01 18:15 - 00001940 _____ C:\Users\Walid SAH\Desktop\Internet Explorer.lnk
2016-06-30 19:47 - 2015-09-25 05:48 - 00000000 ____D C:\Users\Walid SAH\AppData\Roaming\.ACEStream
2016-06-30 19:38 - 2015-09-02 20:22 - 00000000 ___HD C:\_acestream_cache_
2016-06-30 01:31 - 2014-11-15 10:45 - 00000000 ____D C:\Users\Walid SAH\Desktop\ENSA
2016-06-30 01:20 - 2015-09-25 05:14 - 00000000 ____D C:\Users\Walid SAH\AppData\Local\Packages
2016-06-30 00:53 - 2015-10-30 05:13 - 00524288 ___SH C:\WINDOWS\system32\config\BBI
2016-06-30 00:51 - 2015-11-10 00:35 - 00000000 ____D C:\Users\Walid SAH\AppData\Roaming\Riot Games
2016-06-18 14:58 - 2015-10-30 05:48 - 00000000 ____D C:\WINDOWS\rescache
2016-06-17 00:04 - 2015-11-07 23:52 - 00002013 _____ C:\Users\Walid SAH\Desktop\Ace Player.lnk
2016-06-16 21:04 - 2016-03-02 02:54 - 00000000 ___DC C:\WINDOWS\Panther
2016-06-16 18:37 - 2015-10-30 05:39 - 00000000 ____D C:\WINDOWS\CbsTemp
2016-06-15 23:47 - 2015-09-25 05:33 - 00000000 ____D C:\Users\Walid SAH\AppData\Roaming\baidu
2016-06-15 23:46 - 2015-09-25 05:56 - 00000000 ____D C:\Program Files\baidu
2016-06-15 18:16 - 2015-11-08 00:05 - 00000000 ____D C:\Program Files\AskPartnerNetwork
2016-06-15 18:06 - 2015-09-25 05:33 - 00000000 ____D C:\ProgramData\Baidu
2016-06-15 17:58 - 2015-09-25 05:55 - 00000000 ____D C:\Users\Walid SAH\AppData\Local\MiniService
2016-06-15 17:51 - 2016-03-02 03:55 - 00342608 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2016-06-15 17:37 - 2015-09-25 18:35 - 00000000 ____D C:\Users\Walid SAH\AppData\Local\VirtualStore
2016-06-15 13:29 - 2015-09-10 04:28 - 00000000 __RHD C:\Users\Public\AccountPictures
2016-06-15 13:26 - 2015-10-30 05:48 - 00000000 ___SD C:\WINDOWS\system32\DiagSvcs
2016-06-15 13:26 - 2015-10-30 05:48 - 00000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2016-06-15 13:26 - 2015-10-30 05:48 - 00000000 ____D C:\WINDOWS\bcastdvr
2016-06-14 21:21 - 2015-09-25 10:45 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
2016-06-14 21:20 - 2014-06-22 13:30 - 00000000 ____D C:\WINDOWS\system32\MRT
2016-06-14 21:15 - 2014-06-22 13:30 - 139785240 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2016-06-14 18:33 - 2015-10-30 05:49 - 00828408 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2016-06-14 18:33 - 2015-10-30 05:49 - 00176632 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2016-06-13 21:24 - 2013-08-22 06:13 - 00000167 _____ C:\WINDOWS\win.ini
2016-06-11 02:12 - 2015-10-30 05:48 - 00000000 ____D C:\WINDOWS\system32\NDF
2016-06-09 03:15 - 2015-09-25 05:42 - 00000000 ____D C:\Users\Walid SAH\AppData\Local\Google
2016-06-08 23:17 - 2016-01-08 01:16 - 00000000 ___RD C:\Program Files\Skype
2016-06-08 23:17 - 2015-09-25 11:18 - 00000000 ____D C:\ProgramData\Skype
2016-06-07 18:34 - 2015-09-25 10:46 - 00000000 ____D C:\ProgramData\Package Cache
2016-06-07 18:32 - 2015-09-25 10:45 - 00000000 ____D C:\Program Files\Kodi
==================== Fichiers à la racine de certains dossiers =======
2016-06-15 17:37 - 2015-09-01 04:26 - 1099376 _____ () C:\Users\Walid SAH\AppData\Roaming\inst_buychannel_01.exe
2016-06-15 17:21 - 2016-04-22 10:39 - 51987648 _____ () C:\Users\Walid SAH\AppData\Roaming\qqpcmgr_v11.5.17490.219_72530_Silence.exe
2016-06-15 17:54 - 2016-02-18 09:10 - 5267952 _____ () C:\Users\Walid SAH\AppData\Roaming\ziptool_wc-9015_setup.exe
2015-09-25 05:47 - 2015-09-25 20:22 - 0014501 _____ () C:\ProgramData\Duplicaterecord.js
Fichiers à déplacer ou supprimer:
====================
C:\ProgramData\Duplicaterecord.js
Certains fichiers dans TEMP:
====================
C:\Users\Walid SAH\AppData\Local\Temp\3650.tmp.exe
C:\Users\Walid SAH\AppData\Local\Temp\4DAB.tmp.exe
C:\Users\Walid SAH\AppData\Local\Temp\avast_free_antivirus_setup_online.exe
C:\Users\Walid SAH\AppData\Local\Temp\BaiduBrowser_MiniDownloader.exe
C:\Users\Walid SAH\AppData\Local\Temp\condefclean.exe
C:\Users\Walid SAH\AppData\Local\Temp\FRST.exe
C:\Users\Walid SAH\AppData\Local\Temp\ICReinstall_4DAB.tmp.exe
C:\Users\Walid SAH\AppData\Local\Temp\LeagueofLegends_EUW_Installer_2016_05_13.exe
C:\Users\Walid SAH\AppData\Local\Temp\ludashisetup.exe
C:\Users\Walid SAH\AppData\Local\Temp\sony-vegas-pro-13-crack-32-bit-kickass.exe
C:\Users\Walid SAH\AppData\Local\Temp\sony-vegas-pro_13-build-290_fr_124204-13.0.exe
C:\Users\Walid SAH\AppData\Local\Temp\spark_install.exe
==================== Bamital & volsnap =================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
C:\WINDOWS\explorer.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\winlogon.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\wininit.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\svchost.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\services.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\User32.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\userinit.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\rpcss.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\dnsapi.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\Drivers\volsnap.sys => Le fichier est signé numériquement
LastRegBack: 2016-07-01 05:53
==================== Fin de FRST.txt ============================