cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 21-08-2016 01
Exécuté par mathi (administrateur) sur DESKTOP-8TAC1T2 (26-08-2016 12:20:56)
Exécuté depuis C:\Users\mathi\Downloads
Profils chargés: mathi (Profils disponibles: mathi)
Platform: Windows 10 Home Version 1511 (X64) Langue: Français (France)
Internet Explorer Version 11 (Navigateur par défaut: Chrome)
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processus (Avec liste blanche) =================

(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Intel Corporation) C:\Windows\SysWOW64\IntelCpHeciSvc.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Intel Corporation) C:\Windows\SysWOW64\esif_uf.exe
(Seiko Epson Corporation) C:\Windows\System32\escsvc64.exe
(Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\utilities\ibtsiva.exe
(Conexant Systems Inc.) C:\Windows\System32\CxAudMsg64.exe
(LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(SEIKO EPSON CORPORATION) C:\Program Files (x86)\epson\MyEpson Portal\mepService.exe
(Conexant Systems, Inc.) C:\Windows\SysWOW64\SASrv.exe
(Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(Microsoft Corporation) C:\Windows\System32\alg.exe
(Microsoft Corporation) C:\Windows\splwow64.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel(R) Corporation) C:\Program Files (x86)\Intel\Intel(R) Extreme Tuning Utility\XtuService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
(Intel Corporation) C:\Windows\Temp\DPTF\esif_assist_64.exe
(SEIKO EPSON CORPORATION) C:\Program Files (x86)\epson\MyEpson Portal\mep.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ROG Gaming Center\ROGGamingKey.exe
(ASUS) C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
() C:\Windows\System32\igfxTray.exe
(Microsoft Corporation) C:\Windows\splwow64.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLoader.exe
(Conexant Systems, Inc.) C:\Program Files\CONEXANT\cAudioFilterAgent\CAudioFilterAgent64.exe
(Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe
(SEIKO EPSON CORPORATION) C:\Program Files (x86)\Epson Software\FAX Utility\FUFAXRCV.exe
(SEIKO EPSON CORPORATION) C:\Program Files (x86)\Epson Software\FAX Utility\FUFAXSTM.exe
(SEIKO EPSON CORPORATION) C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
(Conexant Systems, Inc) C:\Program Files\CONEXANT\SAII\SmartAudio.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPCenter.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office15\FIRSTRUN.EXE
(Microsoft Corporation) C:\Windows\System32\InstallAgent.exe
() C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeHost.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPHelper.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.ZuneMusic_3.6.23041.0_x64__8wekyb3d8bbwe\Music.UI.exe
(Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.10586.486_none_7640e086266ea227\TiWorker.exe


==================== Registre (Avec liste blanche) ===========================

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)

HKLM\...\Run: [cAudioFilterAgent] => C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe [599896 2015-06-10] (Conexant Systems, Inc.)
HKLM\...\Run: [SmartAudio] => C:\Program Files\CONEXANT\SAII\SACpl.exe [1830616 2014-04-10] (Conexant Systems, Inc.)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2396096 2016-03-30] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => C:\WINDOWS\system32\nvspcap64.dll [1767248 2016-03-30] (NVIDIA Corporation)
HKLM-x32\...\Run: [FUFAXRCV] => C:\Program Files (x86)\Epson Software\FAX Utility\FUFAXRCV.exe [650784 2015-12-22] (SEIKO EPSON CORPORATION)
HKLM-x32\...\Run: [FUFAXSTM] => C:\Program Files (x86)\Epson Software\FAX Utility\FUFAXSTM.exe [863776 2015-12-22] (SEIKO EPSON CORPORATION)
HKLM-x32\...\Run: [EEventManager] => C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [1065968 2015-07-23] (SEIKO EPSON CORPORATION)
HKLM-x32\...\Run: [LogMeIn Hamachi Ui] => C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [5565960 2016-07-20] (LogMeIn Inc.)
HKLM\...\Winlogon: [Userinit] wscript C:\WINDOWS\run.vbs,
HKU\S-1-5-21-1313339155-514152124-3403656749-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [2857248 2016-08-16] (Valve Corporation)
HKU\S-1-5-21-1313339155-514152124-3403656749-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [53123712 2016-05-17] (Skype Technologies S.A.)
HKU\S-1-5-21-1313339155-514152124-3403656749-1001\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [4177784 2016-01-15] (Disc Soft Ltd)
HKU\S-1-5-21-1313339155-514152124-3403656749-1001\...\Run: [4Z29Z575RH] => "C:\Program Files (x86)\DPower\YINGNK9IRZ.exe"
HKU\S-1-5-21-1313339155-514152124-3403656749-1001\...\Run: [ComputerZ-Tray] => "C:\Program Files (x86)\LuDaShi\ComputerZTray.exe" /autorun
HKU\S-1-5-21-1313339155-514152124-3403656749-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8894680 2016-08-05] (Piriform Ltd)
HKU\S-1-5-21-1313339155-514152124-3403656749-1001\...\RunOnce: [Uninstall C:\Users\mathi\AppData\Local\Microsoft\OneDrive\17.3.6301.0127_1\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\mathi\AppData\Local\Microsoft\OneDrive\17.3.6301.0127_1\amd64"
HKU\S-1-5-21-1313339155-514152124-3403656749-1001\...\RunOnce: [Uninstall C:\Users\mathi\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\mathi\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\amd64"
HKU\S-1-5-21-1313339155-514152124-3403656749-1001\...\RunOnce: [Uninstall C:\Users\mathi\AppData\Local\Microsoft\OneDrive\17.3.6390.0509] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\mathi\AppData\Local\Microsoft\OneDrive\17.3.6390.0509"
HKU\S-1-5-21-1313339155-514152124-3403656749-1001\...\MountPoints2: I - "I:\setup.exe"
HKU\S-1-5-21-1313339155-514152124-3403656749-1001\...\MountPoints2: {049824a9-da8d-11e5-9be1-185e0f89e82d} - "I:\setup.exe"
HKU\S-1-5-21-1313339155-514152124-3403656749-1001\...\MountPoints2: {30a86653-d88c-11e5-9be1-185e0f89e82d} - "G:\setup.exe"
HKU\S-1-5-21-1313339155-514152124-3403656749-1001\...\MountPoints2: {a4638cc7-db0a-11e5-9be1-185e0f89e82d} - "J:\setup.exe"
HKU\S-1-5-21-1313339155-514152124-3403656749-1001\...\MountPoints2: {c71b3626-e092-11e5-9be5-185e0f89e82d} - "F:\setup.exe"
GroupPolicy: Restriction - Chrome <======= ATTENTION

==================== Internet (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)

Hosts: Il y a plus d'un élément dans hosts. Voir la section Hosts de Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.0.254
Tcpip\Parameters: [NameServer] 82.163.143.157 82.163.142.159
Tcpip\..\Interfaces\{281203f7-c53e-401a-839f-6b4aacdbbb90}: [NameServer] 82.163.143.157 82.163.142.159
Tcpip\..\Interfaces\{281203f7-c53e-401a-839f-6b4aacdbbb90}: [DhcpNameServer] 82.163.143.157
Tcpip\..\Interfaces\{362270c1-de80-4797-ba1b-baf40c08a373}: [NameServer] 82.163.143.157,82.163.142.159
Tcpip\..\Interfaces\{5c9bbe15-f79a-442f-88b4-bdeb11ce9c00}: [NameServer] 82.163.143.157,82.163.142.159
Tcpip\..\Interfaces\{5c9bbe15-f79a-442f-88b4-bdeb11ce9c00}: [DhcpNameServer] 7.254.254.254
Tcpip\..\Interfaces\{9d405ae0-2f6e-4efe-bd79-4c6d1edaec9a}: [NameServer] 82.163.143.157,82.163.142.159
Tcpip\..\Interfaces\{9d405ae0-2f6e-4efe-bd79-4c6d1edaec9a}: [DhcpNameServer] 192.168.0.254
Tcpip\..\Interfaces\{a3cb64ac-d789-4c11-9c3c-e75b3aead974}: [NameServer] 82.163.143.157 82.163.142.159
Tcpip\..\Interfaces\{a3cb64ac-d789-4c11-9c3c-e75b3aead974}: [DhcpNameServer] 82.163.143.157
Tcpip\..\Interfaces\{a7ce81b8-6a99-49f1-b783-3a6dcdea1da0}: [NameServer] 82.163.143.157 82.163.142.159
Tcpip\..\Interfaces\{a7ce81b8-6a99-49f1-b783-3a6dcdea1da0}: [DhcpNameServer] 82.163.143.157
Tcpip\..\Interfaces\{b4d4112e-c8a8-48ea-b3fc-57e1dc815abd}: [NameServer] 82.163.143.157,82.163.142.159
Tcpip\..\Interfaces\{b4d4112e-c8a8-48ea-b3fc-57e1dc815abd}: [DhcpNameServer] 7.254.254.254

Internet Explorer:
==================
HKU\S-1-5-21-1313339155-514152124-3403656749-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/?LinkID=617910&ResetID=131042687009669693&GUID=1FC2C8B9-2136-4FCF-9025-8FA1E2A114B6
HKU\S-1-5-21-1313339155-514152124-3403656749-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://asus15.msn.com/?pc=ASTE
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2010-02-28] (Microsoft Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2010-02-28] (Microsoft Corporation)

FireFox:
========
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.68 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2015-04-21] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2015-04-21] (Intel Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-08-22] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-08-22] (Google Inc.)

Chrome:
=======
CHR Profile: C:\Users\mathi\AppData\Local\Google\Chrome\User Data\Default
CHR Profile: C:\Users\mathi\AppData\Local\Google\Chrome\User Data\Profile 1
CHR Extension: (Google Slides) - C:\Users\mathi\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-08-21]
CHR Extension: (Google Docs) - C:\Users\mathi\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake [2016-08-21]
CHR Extension: (Google Drive) - C:\Users\mathi\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-08-21]
CHR Extension: (YouTube) - C:\Users\mathi\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-08-21]
CHR Extension: (Google Sheets) - C:\Users\mathi\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-08-21]
CHR Extension: (Google Docs hors connexion) - C:\Users\mathi\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-08-21]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\mathi\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-08-21]
CHR Extension: (Gmail) - C:\Users\mathi\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-08-21]
CHR Extension: (Chrome Media Router) - C:\Users\mathi\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-08-21]
CHR Profile: C:\Users\mathi\AppData\Local\Google\Chrome\User Data\Profile 2
CHR Extension: (Google Docs) - C:\Users\mathi\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\aohghmighlieiainnegkcijnfilokake [2016-08-22]
CHR Extension: (Google Drive) - C:\Users\mathi\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-08-22]
CHR Extension: (YouTube) - C:\Users\mathi\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-08-22]
CHR Extension: (Adblock Plus) - C:\Users\mathi\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2016-08-22]
CHR Extension: (Google Docs hors connexion) - C:\Users\mathi\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-08-22]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\mathi\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-08-22]
CHR Extension: (Gmail) - C:\Users\mathi\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-08-22]
CHR Extension: (Chrome Media Router) - C:\Users\mathi\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-08-22]

==================== Services (Avec liste blanche) ========================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [1314848 2016-01-19] ()
S3 cplspcon; C:\Windows\system32\IntelCpHDCPSvc.exe [621472 2016-02-11] (Intel Corporation)
R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe [1369464 2016-01-15] (Disc Soft Ltd)
S3 EasyAntiCheat; C:\WINDOWS\SysWOW64\EasyAntiCheat.exe [232208 2016-06-16] (EasyAntiCheat Ltd)
R2 EpsonScanSvc; C:\WINDOWS\system32\EscSvc64.exe [144560 2012-05-17] (Seiko Epson Corporation)
R2 esifsvc; C:\Windows\SysWOW64\esif_uf.exe [1385640 2015-07-13] (Intel Corporation)
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1163200 2016-03-30] (NVIDIA Corporation)
R2 Hamachi2Svc; C:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe [2554376 2016-07-20] (LogMeIn Inc.)
R2 ibtsiva; C:\Program Files (x86)\Intel\Bluetooth\utilities\ibtsiva.exe [165104 2015-07-13] (Intel Corporation)
R2 igfxCUIService2.0.0.0; C:\Windows\system32\igfxCUIService.exe [373160 2016-02-11] (Intel Corporation)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [881152 2015-05-22] (Intel(R) Corporation)
R3 Intel(R) Security Assist; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe [335872 2015-05-19] (Intel Corporation) [Fichier non signé]
S3 Intel(R) WiDi SAM; C:\Program Files (x86)\Intel Corporation\Intel WiDi\Intel(R) Software Asset Manager\bin\IntelSoftwareAssetManagerService.exe [19088 2015-06-24] (Intel Corporation)
S2 isaHelperSvc; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe [7680 2015-05-19] () [Fichier non signé]
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [223520 2015-07-22] (Intel Corporation)
S2 Kingsoft_WPS_UpdateService; C:\Program Files (x86)\Kingsoft\WPS Office\9.1.0.4947\wtoolex\wpsupdatesvr.exe [133480 2015-08-18] (Zhuhai Kingsoft Office Software Co.,Ltd)
R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe [419248 2016-07-20] (LogMeIn, Inc.)
R2 MyEpson Portal Service; C:\Program Files (x86)\EPSON\MyEpson Portal\mepService.exe [703696 2016-08-08] (SEIKO EPSON CORPORATION)
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [268192 2015-08-13] ()
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1879488 2016-03-30] (NVIDIA Corporation)
R3 NvStreamNetworkSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe [3632576 2016-03-30] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [2521024 2016-03-30] (NVIDIA Corporation)
S3 ROGGamingCenterService; C:\Program Files (x86)\ASUS\ROG Gaming Center\ROGGamingCenterService.exe [76032 2015-08-13] (ASUSTeK COMPUTER INC.)
S3 TunngleService; C:\Program Files (x86)\Tunngle\TnglCtrl.exe [814064 2015-12-22] (Tunngle.net GmbH)
S3 vmicvss; C:\Windows\System32\ICSvc.dll [511488 2015-10-30] (Microsoft Corporation)
S3 VsEtwService120; C:\Program Files (x86)\Microsoft Visual Studio 12.0\Common7\Packages\Debugger\Services\VsEtwService.exe [89232 2014-07-22] (Microsoft Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [364464 2015-10-30] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2016-07-01] (Microsoft Corporation)
R2 XTU3SERVICE; C:\Program Files (x86)\Intel\Intel(R) Extreme Tuning Utility\XtuService.exe [19192 2015-08-13] (Intel(R) Corporation)
R2 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [3831712 2015-08-13] (Intel® Corporation)
S2 cQwlxnau; C:\Program Files (x86)\WebShield\WebShield.exe [X]

===================== Pilotes (Avec liste blanche) ==========================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R3 AsusSGDrv; C:\Windows\system32\DRIVERS\AsusSGDrv.sys [138744 2015-08-17] (ASUS Corporation)
R3 dptf_acpi; C:\Windows\System32\drivers\dptf_acpi.sys [47096 2015-07-13] (Intel Corporation)
R3 dptf_cpu; C:\Windows\System32\drivers\dptf_cpu.sys [43512 2015-07-13] (Intel Corporation)
R3 dtlitescsibus; C:\Windows\System32\drivers\dtlitescsibus.sys [30264 2016-01-30] (Disc Soft Ltd)
R3 dtliteusbbus; C:\Windows\System32\drivers\dtliteusbbus.sys [47672 2016-01-30] (Disc Soft Ltd)
R3 esif_lf; C:\Windows\system32\DRIVERS\esif_lf.sys [251384 2015-07-13] (Intel Corporation)
R3 Hamachi; C:\Windows\system32\DRIVERS\Hamdrv.sys [45680 2016-05-04] (LogMeIn Inc.)
R3 ibtusb; C:\Windows\system32\DRIVERS\ibtusb.sys [257776 2015-07-13] (Intel Corporation)
R2 iocbios2; C:\Program Files (x86)\Intel\Intel(R) Extreme Tuning Utility\Drivers\IocDriver\64bit\iocbios2.sys [30224 2015-08-13] (Intel Corporation)
R3 Netwtw02; C:\Windows\System32\drivers\Netwtw02.sys [7081200 2015-09-25] (Intel Corporation)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [26560 2016-03-30] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [56384 2016-03-21] (NVIDIA Corporation)
R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [887552 2015-07-15] (Realtek )
R3 RTSPER; C:\Windows\system32\DRIVERS\RtsPer.sys [753368 2015-06-15] (Realsil Semiconductor Corporation)
R3 SensorsSimulatorDriver; C:\Windows\system32\DRIVERS\WUDFRd.sys [216064 2015-10-30] (Microsoft Corporation)
R3 tap0901t; C:\Windows\System32\drivers\tap0901t.sys [40568 2015-12-04] (Tunngle.net)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44568 2015-10-30] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [293216 2015-10-30] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [118112 2015-10-30] (Microsoft Corporation)
S3 ComputerZ_x64; \??\C:\Program Files (x86)\LuDaShi\ComputerZ_x64.sys [X] <==== ATTENTION
S3 MBAMSwissArmy; \??\C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [X]
S1 UCGuard; system32\DRIVERS\ucguard.sys [X] <==== ATTENTION

==================== NetSvcs (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

NETSVCx32: HpSvc -> pas de chemin du fichier.

==================== Un mois - Créés - fichiers et dossiers ========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2016-08-26 12:20 - 2016-08-26 12:20 - 00023184 _____ C:\Users\mathi\Downloads\FRST.txt
2016-08-26 12:18 - 2016-08-26 12:20 - 00000000 ____D C:\FRST
2016-08-26 12:18 - 2016-08-26 12:18 - 02396160 _____ (Farbar) C:\Users\mathi\Downloads\FRST64.exe
2016-08-26 12:18 - 2016-08-26 12:18 - 02396160 _____ (Farbar) C:\Users\mathi\Downloads\FRST64 (1).exe
2016-08-26 12:14 - 2016-08-26 12:14 - 00003342 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task
2016-08-26 12:12 - 2016-08-26 12:12 - 00000000 ___HD C:\OneDriveTemp
2016-08-22 22:21 - 2016-08-22 22:21 - 00002819 _____ C:\Users\mathi\Desktop\AdwCleaner[S12].txt
2016-08-22 21:37 - 2016-08-22 22:27 - 00000000 ____D C:\Program Files\Reason
2016-08-22 21:37 - 2016-08-22 21:37 - 04151280 _____ (Reason Software Company Inc.) C:\Users\mathi\Downloads\reason-core-security-setup.exe
2016-08-22 20:44 - 2016-08-22 20:44 - 00000037 _____ C:\Users\mathi\Downloads\file-not-found (3).txt
2016-08-22 20:44 - 2016-08-22 20:44 - 00000037 _____ C:\Users\mathi\Downloads\file-not-found (2).txt
2016-08-22 20:24 - 2016-08-22 20:24 - 03784256 _____ C:\Users\mathi\Downloads\adwcleaner_6.000 (1).exe
2016-08-22 20:22 - 2016-08-22 20:22 - 00000037 _____ C:\Users\mathi\Downloads\file-not-found.txt
2016-08-22 20:22 - 2016-08-22 20:22 - 00000037 _____ C:\Users\mathi\Downloads\file-not-found (1).txt
2016-08-22 20:18 - 2016-08-22 20:21 - 00000672 _____ C:\Users\mathi\Desktop\JRT.txt
2016-08-22 20:15 - 2016-08-22 20:15 - 01610560 _____ (Malwarebytes) C:\Users\mathi\Downloads\JRT.exe
2016-08-22 19:36 - 2016-08-22 19:36 - 00002870 _____ C:\WINDOWS\System32\Tasks\CCleanerSkipUAC
2016-08-22 19:36 - 2016-08-22 19:36 - 00000865 _____ C:\Users\Public\Desktop\CCleaner.lnk
2016-08-22 19:36 - 2016-08-22 19:36 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2016-08-22 19:36 - 2016-08-22 19:36 - 00000000 ____D C:\Program Files\CCleaner
2016-08-22 19:35 - 2016-08-22 19:35 - 08227032 _____ (Piriform Ltd) C:\Users\mathi\Downloads\ccsetup521.exe
2016-08-22 19:06 - 2016-08-22 19:06 - 00000000 ____D C:\Users\mathi\AppData\Local\VS Revo Group
2016-08-22 19:06 - 2016-08-22 19:06 - 00000000 ____D C:\ProgramData\VS Revo Group
2016-08-22 19:05 - 2016-08-22 19:06 - 11374528 _____ (VS Revo Group ) C:\Users\mathi\Downloads\RevoUninProSetup.exe
2016-08-22 19:02 - 2016-08-22 19:42 - 00000000 __SHD C:\WINDOWS\SysWOW64\AI_RecycleBin
2016-08-22 19:01 - 2016-08-22 19:02 - 02178872 _____ (Reason Software Company Inc.) C:\Users\mathi\Downloads\ShouldIRemoveIt_Setup.exe
2016-08-22 18:57 - 2016-08-22 18:57 - 03784256 _____ C:\Users\mathi\Downloads\AdwCleaner (1).exe
2016-08-22 17:04 - 2016-08-22 17:05 - 03784256 _____ C:\Users\mathi\Downloads\AdwCleaner.exe
2016-08-22 15:20 - 2016-08-22 19:42 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2016-08-22 15:20 - 2016-08-22 15:26 - 00000000 ____D C:\Users\mathi\AppData\Roaming\Malwarebytes
2016-08-22 15:20 - 2016-08-22 15:22 - 00000000 ____D C:\ProgramData\Malwarebytes
2016-08-22 15:18 - 2016-08-22 15:18 - 10319006 _____ C:\Users\mathi\Downloads\crack-malwarbytes-by-fuzz.rar
2016-08-22 15:11 - 2016-08-26 12:12 - 00002546 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-08-22 15:11 - 2016-08-26 12:12 - 00002534 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2016-08-22 15:10 - 2016-08-26 12:20 - 00001108 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2016-08-22 15:10 - 2016-08-22 15:15 - 00004166 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2016-08-22 15:10 - 2016-08-22 15:15 - 00003934 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2016-08-22 15:09 - 2016-08-26 12:12 - 00001104 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2016-08-22 15:09 - 2016-08-22 15:09 - 00987728 _____ (Google Inc.) C:\Users\mathi\Downloads\ChromeSetup (2).exe
2016-08-21 18:35 - 2016-08-21 18:35 - 00015973 _____ C:\Users\mathi\Desktop\AdwCleaner[C0].txt
2016-08-21 18:26 - 2016-08-22 22:23 - 00000000 ____D C:\AdwCleaner
2016-08-21 18:25 - 2016-08-22 22:52 - 00000488 _____ C:\WINDOWS\Tasks\UCBrowserUpdater.job
2016-08-21 18:25 - 2016-08-21 18:26 - 03784256 _____ C:\Users\mathi\Downloads\adwcleaner_6.000.exe
2016-08-21 18:25 - 2016-08-21 18:25 - 00003506 _____ C:\WINDOWS\System32\Tasks\UCBrowserUpdater
2016-08-21 18:23 - 2016-02-18 10:10 - 05267952 _____ () C:\Users\mathi\AppData\Roaming\ziptool_wc-9015_setup.exe
2016-08-21 18:21 - 2016-08-21 18:21 - 00000000 ____D C:\WINDOWS\Panther
2016-08-21 18:20 - 2016-08-21 18:20 - 00000000 ___HD C:\$WINDOWS.~BT
2016-08-21 18:04 - 2016-08-21 18:04 - 00022250 _____ C:\WINDOWS\System32\Tasks\GTFKUNKLETOWN
2016-08-21 17:59 - 2016-08-21 17:59 - 00000290 __RSH C:\Users\mathi\ntuser.pol
2016-08-21 17:57 - 2016-08-21 17:57 - 00004424 _____ C:\WINDOWS\System32\Tasks\SPBIW_UpdateTask_Time_333737343430373038302d234a784132345b2a346c2d5a
2016-08-21 17:57 - 2016-08-21 17:57 - 00000000 ____D C:\Users\mathi\AppData\Local\Tempfolder
2016-08-21 17:56 - 2016-08-21 17:56 - 00003882 _____ C:\WINDOWS\System32\Tasks\{F83CA64C-D09F-5006-DF1C-822B9A9EB03A}
2016-08-21 17:54 - 2016-08-21 18:32 - 00000000 ____D C:\Users\mathi\AppData\Local\Apps\2.0
2016-08-21 17:54 - 2016-08-21 17:54 - 00003250 _____ C:\WINDOWS\System32\Tasks\{413261A1-4306-4779-A391-133FEE2F5854}
2016-08-21 17:52 - 2016-08-21 17:51 - 00001006 _____ C:\WINDOWS\system32\Drivers\etc\hp.bak
2016-08-21 17:49 - 2016-08-21 18:02 - 00000000 ____D C:\Users\mathi\AppData\Roaming\GameLauncher
2016-08-18 15:33 - 2016-08-18 15:34 - 00000000 ____D C:\Users\mathi\Desktop\BACKUP FILES
2016-08-18 15:18 - 2016-08-18 15:18 - 00195154 _____ C:\Users\mathi\Downloads\PSARC-Decompile-tool.zip
2016-08-18 15:13 - 2016-08-18 15:13 - 00000442 _____ C:\Users\mathi\Desktop\No-Mans-Sky-for-low-PC-config.rar
2016-08-14 14:41 - 2016-08-03 12:22 - 00808288 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2016-08-14 14:41 - 2016-08-03 12:21 - 00566112 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
2016-08-14 14:41 - 2016-08-03 12:19 - 00604928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2016-08-14 14:41 - 2016-08-03 12:19 - 00161632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2016-08-14 14:41 - 2016-08-03 11:51 - 00084480 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
2016-08-14 14:41 - 2016-08-03 11:44 - 00189952 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2016-08-14 14:41 - 2016-08-03 11:40 - 00058880 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe
2016-08-14 14:41 - 2016-08-03 11:31 - 00247296 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtutil.exe
2016-08-14 14:41 - 2016-08-03 11:30 - 00515072 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll
2016-08-14 14:41 - 2016-08-03 11:29 - 14252544 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2016-08-14 14:41 - 2016-08-03 11:29 - 00954368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys
2016-08-14 14:41 - 2016-08-03 11:18 - 06974464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2016-08-14 14:41 - 2016-08-03 11:18 - 01388032 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2016-08-14 14:41 - 2016-08-03 11:16 - 05123072 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbgeng.dll
2016-08-14 14:41 - 2016-08-03 11:11 - 04171264 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll
2016-08-14 14:41 - 2016-08-03 07:52 - 00034088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wldp.dll
2016-08-14 14:41 - 2016-08-03 07:34 - 00501592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupEngine.dll
2016-08-14 14:41 - 2016-08-03 07:34 - 00084832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupApi.dll
2016-08-14 14:41 - 2016-08-03 06:44 - 00048640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryClient.dll
2016-08-14 14:41 - 2016-08-03 06:44 - 00048128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepositoryBroker.dll
2016-08-14 14:41 - 2016-08-03 06:32 - 12585984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll
2016-08-14 14:41 - 2016-08-03 06:25 - 04078080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbgeng.dll
2016-08-14 14:41 - 2016-08-03 06:19 - 02180096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.StateRepository.dll
2016-08-14 14:40 - 2016-08-03 13:14 - 01505984 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2016-08-14 14:40 - 2016-08-03 13:14 - 00092352 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2016-08-14 14:40 - 2016-08-03 13:14 - 00050368 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2016-08-14 14:40 - 2016-08-03 12:36 - 07469408 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2016-08-14 14:40 - 2016-08-03 12:36 - 00099680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys
2016-08-14 14:40 - 2016-08-03 12:36 - 00037744 _____ (Microsoft Corporation) C:\WINDOWS\system32\wldp.dll
2016-08-14 14:40 - 2016-08-03 12:30 - 00026408 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2016-08-14 14:40 - 2016-08-03 12:23 - 00693600 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupEngine.dll
2016-08-14 14:40 - 2016-08-03 12:23 - 00115040 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupApi.dll
2016-08-14 14:40 - 2016-08-03 12:22 - 01322760 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2016-08-14 14:40 - 2016-08-03 12:22 - 00465248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys
2016-08-14 14:40 - 2016-08-03 12:22 - 00331616 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2016-08-14 14:40 - 2016-08-03 12:22 - 00058408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsNativeApi.dll
2016-08-14 14:40 - 2016-08-03 12:21 - 22561256 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2016-08-14 14:40 - 2016-08-03 12:21 - 03675512 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2016-08-14 14:40 - 2016-08-03 12:21 - 00303216 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppHost.exe
2016-08-14 14:40 - 2016-08-03 12:20 - 01540224 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2016-08-14 14:40 - 2016-08-03 12:20 - 00692136 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppwinob.dll
2016-08-14 14:40 - 2016-08-03 12:13 - 01988448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2016-08-14 14:40 - 2016-08-03 12:13 - 00576864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2016-08-14 14:40 - 2016-08-03 12:13 - 00393056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2016-08-14 14:40 - 2016-08-03 12:11 - 00422744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2016-08-14 14:40 - 2016-08-03 11:51 - 00123392 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdlrecover.exe
2016-08-14 14:40 - 2016-08-03 11:46 - 22384128 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2016-08-14 14:40 - 2016-08-03 11:44 - 00063488 _____ (Microsoft Corporation) C:\WINDOWS\system32\wshbth.dll
2016-08-14 14:40 - 2016-08-03 11:44 - 00044544 _____ (Microsoft Corporation) C:\WINDOWS\system32\musdialoghandlers.dll
2016-08-14 14:40 - 2016-08-03 11:43 - 16985088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2016-08-14 14:40 - 2016-08-03 11:41 - 00128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthpan.sys
2016-08-14 14:40 - 2016-08-03 11:41 - 00112640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthenum.sys
2016-08-14 14:40 - 2016-08-03 11:41 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryClient.dll
2016-08-14 14:40 - 2016-08-03 11:41 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryBroker.dll
2016-08-14 14:40 - 2016-08-03 11:40 - 00181248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rfcomm.sys
2016-08-14 14:40 - 2016-08-03 11:40 - 00127488 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEDataLayerHelpers.dll
2016-08-14 14:40 - 2016-08-03 11:40 - 00091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\bthserv.dll
2016-08-14 14:40 - 2016-08-03 11:40 - 00047616 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmTasks.dll
2016-08-14 14:40 - 2016-08-03 11:39 - 00218624 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdd.dll
2016-08-14 14:40 - 2016-08-03 11:39 - 00104448 _____ (Microsoft Corporation) C:\WINDOWS\system32\BluetoothApis.dll
2016-08-14 14:40 - 2016-08-03 11:38 - 00412160 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2016-08-14 14:40 - 2016-08-03 11:38 - 00379392 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
2016-08-14 14:40 - 2016-08-03 11:37 - 00110080 _____ (Microsoft Corporation) C:\WINDOWS\system32\IdCtrls.dll
2016-08-14 14:40 - 2016-08-03 11:36 - 00221696 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2016-08-14 14:40 - 2016-08-03 11:36 - 00211456 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupSvc.dll
2016-08-14 14:40 - 2016-08-03 11:36 - 00198144 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsrv.dll
2016-08-14 14:40 - 2016-08-03 11:35 - 00764928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2016-08-14 14:40 - 2016-08-03 11:35 - 00200192 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUDFPlatform.dll
2016-08-14 14:40 - 2016-08-03 11:34 - 00383488 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2016-08-14 14:40 - 2016-08-03 11:33 - 00339968 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorService.dll
2016-08-14 14:40 - 2016-08-03 11:33 - 00285184 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEEventDispatcher.dll
2016-08-14 14:40 - 2016-08-03 11:31 - 00506880 _____ (Microsoft Corporation) C:\WINDOWS\system32\tileobjserver.dll
2016-08-14 14:40 - 2016-08-03 11:31 - 00359936 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsApi.dll
2016-08-14 14:40 - 2016-08-03 11:30 - 24613888 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2016-08-14 14:40 - 2016-08-03 11:30 - 00970752 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2016-08-14 14:40 - 2016-08-03 11:29 - 02127360 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2016-08-14 14:40 - 2016-08-03 11:29 - 01500160 _____ (Microsoft Corporation) C:\WINDOWS\system32\RecoveryDrive.exe
2016-08-14 14:40 - 2016-08-03 11:29 - 01387520 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2016-08-14 14:40 - 2016-08-03 11:29 - 00784384 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2016-08-14 14:40 - 2016-08-03 11:29 - 00084992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BTHUSB.SYS
2016-08-14 14:40 - 2016-08-03 11:28 - 01213440 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2016-08-14 14:40 - 2016-08-03 11:28 - 00848896 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2016-08-14 14:40 - 2016-08-03 11:28 - 00529920 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2016-08-14 14:40 - 2016-08-03 11:27 - 07536640 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2016-08-14 14:40 - 2016-08-03 11:27 - 01752576 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2016-08-14 14:40 - 2016-08-03 11:27 - 01717760 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2016-08-14 14:40 - 2016-08-03 11:27 - 00381952 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2016-08-14 14:40 - 2016-08-03 11:20 - 13390336 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2016-08-14 14:40 - 2016-08-03 11:18 - 02067968 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2016-08-14 14:40 - 2016-08-03 11:17 - 02175488 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2016-08-14 14:40 - 2016-08-03 11:16 - 03589120 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2016-08-14 14:40 - 2016-08-03 11:16 - 02635776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
2016-08-14 14:40 - 2016-08-03 11:16 - 01732096 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2016-08-14 14:40 - 2016-08-03 11:15 - 07833088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2016-08-14 14:40 - 2016-08-03 11:14 - 04895232 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2016-08-14 14:40 - 2016-08-03 11:14 - 01997824 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActiveSyncProvider.dll
2016-08-14 14:40 - 2016-08-03 11:13 - 03025920 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2016-08-14 14:40 - 2016-08-03 11:13 - 02280960 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2016-08-14 14:40 - 2016-08-03 11:12 - 02746368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepository.dll
2016-08-14 14:40 - 2016-08-03 07:33 - 00051128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SensorsNativeApi.dll
2016-08-14 14:40 - 2016-08-03 07:31 - 02921368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2016-08-14 14:40 - 2016-08-03 07:31 - 00957608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2016-08-14 14:40 - 2016-08-03 07:31 - 00703840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
2016-08-14 14:40 - 2016-08-03 07:30 - 21123320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2016-08-14 14:40 - 2016-08-03 07:30 - 00465760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncHost.exe
2016-08-14 14:40 - 2016-08-03 07:30 - 00255168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppHost.exe
2016-08-14 14:40 - 2016-08-03 06:57 - 00091648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdlrecover.exe
2016-08-14 14:40 - 2016-08-03 06:48 - 00051712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wshbth.dll
2016-08-14 14:40 - 2016-08-03 06:47 - 13018112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2016-08-14 14:40 - 2016-08-03 06:42 - 00080896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BluetoothApis.dll
2016-08-14 14:40 - 2016-08-03 06:40 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\IdCtrls.dll
2016-08-14 14:40 - 2016-08-03 06:39 - 19351040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2016-08-14 14:40 - 2016-08-03 06:37 - 00335872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2016-08-14 14:40 - 2016-08-03 06:37 - 00219136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VEEventDispatcher.dll
2016-08-14 14:40 - 2016-08-03 06:35 - 00286208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SensorsApi.dll
2016-08-14 14:40 - 2016-08-03 06:35 - 00178688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wevtutil.exe
2016-08-14 14:40 - 2016-08-03 06:34 - 00792064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2016-08-14 14:40 - 2016-08-03 06:34 - 00400896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneDriveSettingSyncProvider.dll
2016-08-14 14:40 - 2016-08-03 06:33 - 18677760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2016-08-14 14:40 - 2016-08-03 06:33 - 02050048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2016-08-14 14:40 - 2016-08-03 06:33 - 00687616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2016-08-14 14:40 - 2016-08-03 06:32 - 01526272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2016-08-14 14:40 - 2016-08-03 06:32 - 01467392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2016-08-14 14:40 - 2016-08-03 06:32 - 00434688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LogonController.dll
2016-08-14 14:40 - 2016-08-03 06:31 - 06743040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2016-08-14 14:40 - 2016-08-03 06:31 - 00705536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2016-08-14 14:40 - 2016-08-03 06:29 - 12133376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2016-08-14 14:40 - 2016-08-03 06:28 - 03663360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2016-08-14 14:40 - 2016-08-03 06:25 - 05323776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2016-08-14 14:40 - 2016-08-03 06:23 - 05660672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2016-08-14 14:40 - 2016-08-03 06:23 - 01799680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Logon.dll
2016-08-14 14:40 - 2016-08-03 06:22 - 02501120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2016-08-14 14:40 - 2016-08-03 06:22 - 01502208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2016-08-14 14:40 - 2016-08-03 06:21 - 01708032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActiveSyncProvider.dll
2016-08-14 13:59 - 2016-08-14 13:59 - 00000000 ____D C:\Users\mathi\AppData\Roaming\HelloGames
2016-08-14 13:08 - 2016-08-14 13:10 - 04117216 _____ (Husdawg, LLC) C:\Users\mathi\Downloads\Detection (2).exe
2016-08-14 12:52 - 2016-08-14 12:52 - 00000222 _____ C:\Users\mathi\Desktop\No Man's Sky.url

==================== Un mois - Modifiés - fichiers et dossiers ========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2016-08-26 12:19 - 2015-12-10 05:02 - 00003550 _____ C:\WINDOWS\System32\Tasks\ASUS Live Update1
2016-08-26 12:19 - 2015-12-10 05:02 - 00003540 _____ C:\WINDOWS\System32\Tasks\ASUS Live Update2
2016-08-26 12:18 - 2016-02-05 21:37 - 00004176 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{5B0A98FD-D413-4BC4-8F82-3BB31A0CE324}
2016-08-26 12:17 - 2016-01-28 17:46 - 00000165 _____ C:\Users\mathi\AppData\Roaming\sp_data.sys
2016-08-26 12:15 - 2016-01-29 20:12 - 00000000 ____D C:\Users\mathi\AppData\Roaming\Skype
2016-08-26 12:14 - 2016-01-28 17:50 - 00000000 ___RD C:\Users\mathi\OneDrive
2016-08-26 12:13 - 2016-01-28 17:50 - 00002409 _____ C:\Users\mathi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2016-08-26 12:12 - 2016-05-12 21:54 - 00000000 ____D C:\Users\mathi\AppData\Local\LogMeIn Hamachi
2016-08-26 12:12 - 2016-02-16 14:43 - 00000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2016-08-26 12:12 - 2016-01-28 17:56 - 00000000 ____D C:\Program Files (x86)\Steam
2016-08-26 12:12 - 2016-01-28 17:46 - 00000000 __SHD C:\Users\mathi\IntelGraphicsProfiles
2016-08-22 23:09 - 2015-10-30 09:21 - 00000000 ____D C:\WINDOWS\INF
2016-08-22 23:07 - 2016-04-03 20:07 - 00000951 _____ C:\WINDOWS\Tasks\EPSON WF-2660 Series Update {3C843F5C-DBF2-4AC3-8E74-8F046D3986EE}.job
2016-08-22 23:00 - 2015-08-18 07:29 - 00000424 _____ C:\WINDOWS\Tasks\WpsNotifyTask_Administrator.job
2016-08-22 22:57 - 2015-08-18 07:29 - 00000424 _____ C:\WINDOWS\Tasks\WpsUpdateTask_Administrator.job
2016-08-22 22:24 - 2016-02-10 14:08 - 00000374 _____ C:\WINDOWS\system32\Drivers\etc\hosts.ics
2016-08-22 22:23 - 2016-02-16 14:55 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-08-22 22:23 - 2015-10-30 08:28 - 00524288 ___SH C:\WINDOWS\system32\config\BBI
2016-08-22 21:41 - 2016-02-03 14:06 - 00000000 ____D C:\Users\mathi\AppData\Local\CrashDumps
2016-08-22 21:25 - 2016-02-16 14:47 - 00000000 ____D C:\Users\mathi
2016-08-22 19:41 - 2015-08-18 07:28 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS
2016-08-22 19:41 - 2015-08-18 07:27 - 00000000 ____D C:\Program Files (x86)\ASUS
2016-08-22 19:40 - 2016-01-28 17:46 - 00000000 ____D C:\Users\mathi\AppData\Local\Packages
2016-08-22 19:40 - 2015-10-30 09:24 - 00000000 ___HD C:\Program Files\WindowsApps
2016-08-22 19:40 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\AppReadiness
2016-08-22 19:39 - 2016-01-30 00:07 - 00000000 ____D C:\Users\mathi\AppData\Roaming\DAEMON Tools Lite
2016-08-22 15:14 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\system32\NDF
2016-08-22 15:11 - 2016-01-28 18:21 - 00000000 ____D C:\Program Files (x86)\Google
2016-08-22 15:06 - 2016-07-05 21:58 - 00000000 ____D C:\ProgramData\Media Center Programs
2016-08-22 15:06 - 2015-12-10 04:49 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2016-08-21 17:50 - 2016-01-30 00:08 - 00000290 __RSH C:\ProgramData\ntuser.pol
2016-08-21 17:50 - 2015-07-10 13:04 - 00000000 ___HD C:\WINDOWS\system32\GroupPolicy
2016-08-17 23:19 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\rescache
2016-08-15 16:44 - 2015-10-30 21:00 - 00826936 _____ C:\WINDOWS\system32\perfh00C.dat
2016-08-15 16:44 - 2015-10-30 21:00 - 00156184 _____ C:\WINDOWS\system32\perfc00C.dat
2016-08-15 16:44 - 2015-08-18 07:20 - 01848398 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2016-08-15 16:39 - 2015-12-10 04:27 - 00000000 __RHD C:\Users\Public\AccountPictures
2016-08-15 00:20 - 2015-10-30 21:03 - 00000000 ____D C:\Program Files\Windows Journal
2016-08-15 00:20 - 2015-10-30 09:24 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2016-08-15 00:20 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\system32\appraiser
2016-08-14 16:50 - 2016-01-28 21:01 - 00000000 ____D C:\WINDOWS\system32\MRT
2016-08-14 16:50 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2016-08-14 16:50 - 2015-10-30 09:11 - 00000000 ____D C:\WINDOWS\CbsTemp
2016-08-14 16:47 - 2016-01-28 21:01 - 147640136 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2016-08-14 13:12 - 2016-02-16 00:16 - 05271264 _____ (Husdawg, LLC) C:\Users\mathi\Downloads\Detection (1).exe
2016-08-12 20:00 - 2016-07-26 12:41 - 00000000 ____D C:\Users\Default\AppData\Local\LogMeIn Hamachi
2016-08-12 20:00 - 2016-07-26 12:41 - 00000000 ____D C:\Users\Default User\AppData\Local\LogMeIn Hamachi
2016-07-27 21:25 - 2016-01-30 04:46 - 00504488 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe

==================== Fichiers à la racine de certains dossiers =======

2016-01-28 17:46 - 2016-08-26 12:17 - 0000165 _____ () C:\Users\mathi\AppData\Roaming\sp_data.sys
2016-08-21 18:23 - 2016-02-18 10:10 - 5267952 _____ () C:\Users\mathi\AppData\Roaming\ziptool_wc-9015_setup.exe
2016-03-06 16:37 - 2016-03-06 16:37 - 0008899 _____ () C:\Users\mathi\AppData\Local\recently-used.xbel

Certains fichiers dans TEMP:
====================
C:\Users\mathi\AppData\Local\Temp\libeay32.dll
C:\Users\mathi\AppData\Local\Temp\msvcr120.dll
C:\Users\mathi\AppData\Local\Temp\SkypeSetup.exe
C:\Users\mathi\AppData\Local\Temp\sqlite3.dll
C:\Users\mathi\AppData\Local\Temp\_isE2C0.exe


==================== Bamital & volsnap =================

(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)

C:\WINDOWS\system32\winlogon.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\wininit.exe => Le fichier est signé numériquement
C:\WINDOWS\explorer.exe => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\explorer.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\svchost.exe => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\svchost.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\services.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\User32.dll => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\User32.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\userinit.exe => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\userinit.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\rpcss.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\dnsapi.dll => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\dnsapi.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\Drivers\volsnap.sys => Le fichier est signé numériquement


LastRegBack: 2016-08-14 13:20

==================== Fin de FRST.txt ============================

Publicité


Signaler le contenu de ce document

Publicité