Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x86) Version: 27-02-2017 01
Exécuté par SAMSUNG (administrateur) sur SAMSUNG-PC (28-02-2017 19:42:36)
Exécuté depuis C:\Users\SAMSUNG\Desktop
Profils chargés: SAMSUNG (Profils disponibles: SAMSUNG & Guest & DefaultAppPool)
Platform: Microsoft Windows 10 Professionnel Version 1607 (X86) Langue: Français (France)
Internet Explorer Version 11 (Navigateur par défaut: Edge)
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDService.exe
(Hewlett-Packard Company) C:\Program Files\Common Files\LightScribe\LSSrvc.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDTouch.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
(Cyberlink Corp.) C:\Program Files\CyberLink\PowerDVD8\PDVD8Serv.exe
(cyberlink) C:\Program Files\CyberLink\Shared Files\brs.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(Hewlett-Packard Company) C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe
(L'Aventure Multimedia) C:\Program Files\Micro Application\38 Dictionnaires et Recueils de Correspondance\MediaDico38.exe
(Microsoft Corporation) C:\Program Files\Microsoft Encarta\Microsoft Encarta 2009 - Collection DVD\EDICT.EXE
(L'Aventure Multimedia) C:\Program Files\Micro Application\38 Dictionnaires et Recueils de Correspondance\RAC38.exe
() C:\Program Files\Larousse\Petit Larousse 2010\bin\Hyperappel.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.17012.10301.0_x86__8wekyb3d8bbwe\Video.UI.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.ZuneMusic_10.17012.10301.0_x86__8wekyb3d8bbwe\Music.UI.exe
() C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.1118.10000.0_x86__8wekyb3d8bbwe\Microsoft.Photos.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Adobe Systems Incorporated) C:\Windows\System32\Macromed\Flash\FlashUtil_ActiveX.exe
==================== Registre (Tous(tes)) ===========================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [IgfxTray] => C:\WINDOWS\system32\igfxtray.exe [157104 2015-06-01] (Intel Corporation)
HKLM\...\Run: [HotKeysCmds] => C:\WINDOWS\system32\hkcmd.exe [192432 2015-06-01] (Intel Corporation)
HKLM\...\Run: [Persistence] => C:\WINDOWS\system32\igfxpers.exe [201136 2015-06-01] (Intel Corporation)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [12355816 2015-08-28] (Realtek Semiconductor)
HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [2485464 2016-11-11] (ELAN Microelectronics Corp.)
HKLM\...\Run: [GrooveMonitor] => C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation)
HKLM\...\Run: [RemoteControl8] => C:\Program Files\CyberLink\PowerDVD8\PDVD8Serv.exe [83240 2008-03-20] (Cyberlink Corp.)
HKLM\...\Run: [PDVD8LanguageShortcut] => C:\Program Files\CyberLink\PowerDVD8\Language\Language.exe [50472 2007-12-14] ()
HKLM\...\Run: [BDRegion] => C:\Program Files\Cyberlink\Shared Files\brs.exe [91432 2008-05-19] (cyberlink)
HKLM\...\Run: [Malwarebytes TrayApp] => C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\mbamtray.exe [2780112 2017-01-20] (Malwarebytes)
HKLM\...\Run: [WindowsDefender] => C:\Program Files\Windows Defender\MSASCuiL.exe [483840 2016-07-16] (Microsoft Corporation)
HKLM\...\Winlogon: [Userinit] C:\Windows\system32\userinit.exe, [27648 2016-07-16] (Microsoft Corporation)
HKLM\...\Winlogon: [Shell] explorer.exe [4311736 2016-11-11] (Microsoft Corporation)
Winlogon\Notify\igfxcui: C:\WINDOWS\system32\igfxdev.dll [2015-06-01] (Intel Corporation)
HKLM\...\Policies\Explorer: [NoRecentDocsHistory] 0
HKU\S-1-5-21-3071512940-3844358355-3586163810-1000\...\Run: [MediaDICO38] => C:\Program Files\Micro Application\38 Dictionnaires et Recueils de Correspondance\LanceMediaDICO38.exe [252416 2006-05-08] (L'Aventure Multimedia)
HKU\S-1-5-21-3071512940-3844358355-3586163810-1000\...\Run: [LightScribe Control Panel] => C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe [2736128 2010-06-16] (Hewlett-Packard Company)
HKU\S-1-5-21-3071512940-3844358355-3586163810-1000\...\Run: [WebcamMaxAutoRun] => C:\Program Files\WebcamMax\WebcamMax.exe [6047472 2011-03-10] (CoolwareMax)
HKU\S-1-5-21-3071512940-3844358355-3586163810-1000\...\Run: [E09FXLRD_408504] => C:\Program Files\Microsoft Encarta\Microsoft Encarta 2009 - Collection DVD\EDICT.EXE [351000 2009-04-04] (Microsoft Corporation)
HKU\S-1-5-21-3071512940-3844358355-3586163810-1000\...\Run: [Google Update] => C:\Users\SAMSUNG\AppData\Local\Google\Update\1.3.32.7\GoogleUpdateCore.exe [601752 2016-12-17] (Google Inc.)
HKU\S-1-5-21-3071512940-3844358355-3586163810-1000\...\Policies\Explorer: [NoDriveTypeAutoRun] 145
HKU\S-1-5-21-3071512940-3844358355-3586163810-1000\...\MountPoints2: {e506d4ff-9025-11e2-b9de-50b7c391ce38} - "F:\iLinker.exe"
HKU\S-1-5-21-3071512940-3844358355-3586163810-1000\...\MountPoints2: {e62ded45-b2f6-11e6-aad2-50b7c391ce38} - "F:\HiSuiteDownLoader.exe"
HKLM\...\Providers\Internet Print Provider: C:\WINDOWS\system32\inetpp.dll [143872 2016-07-16] (Microsoft Corporation)
HKLM\...\Providers\LanMan Print Services: C:\WINDOWS\system32\win32spl.dll [608256 2016-10-05] (Microsoft Corporation)
Lsa: [Authentication Packages] msv1_0
Lsa: [Notification Packages] scecli
SecurityProviders: credssp.dll
SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - Pas de fichier
ShellExecuteHooks: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2217832 2009-02-26] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Pas de fichier
ShellIconOverlayIdentifiers: [EnhancedStorageShell] -> {D9144DCD-E998-4ECA-AB6A-DCD83CCBA16D} => C:\Windows\System32\EhStorShell.dll [2016-07-16] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [Groove Explorer Icon Overlay 1 (GFS Unread Stub)] -> {99FD978C-D287-4F50-827F-B2C658EDA8E7} => C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [Groove Explorer Icon Overlay 2 (GFS Stub)] -> {AB5C5600-7E6E-4B06-9197-9ECEF74D31CC} => C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [Groove Explorer Icon Overlay 2.5 (GFS Unread Folder)] -> {920E6DB1-9907-4370-B3A0-BAFC03D81399} => C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [Groove Explorer Icon Overlay 3 (GFS Folder)] -> {16F3DD56-1AF5-4347-846D-7C10C4192619} => C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [Groove Explorer Icon Overlay 4 (GFS Unread Mark)] -> {2916C86E-86A6-43FE-8112-43ABE6BF8DCC} => C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [Offline Files] -> {4E77131D-3629-431c-9818-C5679DC83E81} => C:\WINDOWS\System32\cscui.dll [2016-11-02] (Microsoft Corporation)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Hyperappel du Petit Larousse 2010.lnk [2013-04-06]
ShortcutTarget: Hyperappel du Petit Larousse 2010.lnk -> C:\Program Files\Larousse\Petit Larousse 2010\bin\Hyperappel.exe ()
Startup: C:\Users\SAMSUNG\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneNote 2007 Screen Clipper and Launcher.lnk [2013-03-23]
ShortcutTarget: OneNote 2007 Screen Clipper and Launcher.lnk -> C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE (Microsoft Corporation)
BootExecute: autocheck autochk *
AlternateShell: cmd.exe
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 8.8.8.8 8.8.4.4
Tcpip\..\Interfaces\{1e70b6a3-f0f8-4538-a6ce-52cf073a7205}: [DhcpNameServer] 192.168.42.129
Tcpip\..\Interfaces\{94ab6220-528f-4844-a057-800869a02a93}: [DhcpNameServer] 8.8.8.8 8.8.4.4
Tcpip\..\Interfaces\{a53d1b80-3482-47ce-877d-08167aa38e8d}: [DhcpNameServer] 192.168.42.129
Internet Explorer:
==================
HKU\S-1-5-21-3071512940-3844358355-3586163810-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://jw.org/fr
URLSearchHook: HKU\S-1-5-21-3071512940-3844358355-3586163810-1000 -> Par défaut = {CFBFAE00-17A6-11D0-99CB-00C04FD64497}
SearchScopes: HKU\.DEFAULT -> {483830EE-A4CD-4b71-B0A3-3D82E62A6909} URL =
SearchScopes: HKU\S-1-5-21-3071512940-3844358355-3586163810-1000 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll [2009-02-26] (Microsoft Corporation)
FireFox:
========
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF32_24_0_0_186.dll [2017-01-03] ()
FF Plugin: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files\Google\Picasa3\npPicasa3.dll [2008-12-12] (Google, Inc.)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-19] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-19] (Google Inc.)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2016-12-23] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-3071512940-3844358355-3586163810-1000: @talk.google.com/GoogleTalkPlugin -> C:\Users\SAMSUNG\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll [2015-12-08] (Google)
FF Plugin HKU\S-1-5-21-3071512940-3844358355-3586163810-1000: @talk.google.com/O1DPlugin -> C:\Users\SAMSUNG\AppData\Roaming\Mozilla\plugins\npo1d.dll [2015-12-08] (Google)
FF Plugin HKU\S-1-5-21-3071512940-3844358355-3586163810-1000: @tools.google.com/Google Update;version=3 -> C:\Users\SAMSUNG\AppData\Local\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-17] (Google Inc.)
FF Plugin HKU\S-1-5-21-3071512940-3844358355-3586163810-1000: @tools.google.com/Google Update;version=9 -> C:\Users\SAMSUNG\AppData\Local\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-17] (Google Inc.)
FF Plugin ProgramFiles/Appdata: C:\Users\SAMSUNG\AppData\Roaming\mozilla\plugins\npgoogletalk.dll [2015-12-08] (Google)
FF Plugin ProgramFiles/Appdata: C:\Users\SAMSUNG\AppData\Roaming\mozilla\plugins\npo1d.dll [2015-12-08] (Google)
==================== Services (Tous(tes)) ========================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 AdobeARMservice; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [82640 2016-12-19] (Adobe Systems Incorporated)
S3 AdobeFlashPlayerUpdateSvc; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [270936 2017-01-03] (Adobe Systems Incorporated)
S3 AJRouter; C:\WINDOWS\System32\AJRouter.dll [21504 2016-07-16] (Microsoft Corporation)
S3 ALG; C:\WINDOWS\System32\alg.exe [75776 2016-07-16] (Microsoft Corporation)
R2 AppHostSvc; C:\WINDOWS\system32\inetsrv\apphostsvc.dll [57856 2016-09-20] (Microsoft Corporation)
S3 AppIDSvc; C:\WINDOWS\System32\appidsvc.dll [98304 2016-07-16] (Microsoft Corporation)
R3 Appinfo; C:\WINDOWS\System32\appinfo.dll [102912 2016-09-15] (Microsoft Corporation)
S3 AppMgmt; C:\WINDOWS\System32\appmgmts.dll [165376 2016-07-16] (Microsoft Corporation)
S3 AppReadiness; C:\WINDOWS\system32\AppReadiness.dll [441856 2016-11-11] (Microsoft Corporation)
S4 AppVClient; C:\WINDOWS\system32\AppVClient.exe [615264 2016-12-14] (Microsoft Corporation)
S3 AppXSvc; C:\WINDOWS\system32\appxdeploymentserver.dll [1948160 2016-11-11] (Microsoft Corporation)
S4 aspnet_state; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [47280 2016-07-16] (Microsoft Corporation)
R2 AudioEndpointBuilder; C:\WINDOWS\System32\AudioEndpointBuilder.dll [300544 2016-09-07] (Microsoft Corporation)
R2 Audiosrv; C:\WINDOWS\System32\Audiosrv.dll [786432 2016-11-02] (Microsoft Corporation)
S3 AxInstSV; C:\WINDOWS\System32\AxInstSV.dll [92160 2016-07-16] (Microsoft Corporation)
S3 BDESVC; C:\WINDOWS\System32\bdesvc.dll [310272 2016-09-15] (Microsoft Corporation)
R2 BFE; C:\WINDOWS\System32\bfe.dll [553984 2016-07-16] (Microsoft Corporation)
R2 BITS; C:\WINDOWS\System32\qmgr.dll [797696 2016-10-15] (Microsoft Corporation)
R2 BrokerInfrastructure; C:\WINDOWS\System32\bisrv.dll [623616 2016-11-02] (Microsoft Corporation)
R3 Browser; C:\WINDOWS\System32\browser.dll [108032 2016-07-16] (Microsoft Corporation)
S3 BthHFSrv; C:\WINDOWS\System32\BthHFSrv.dll [252416 2016-07-16] (Microsoft Corporation)
S3 bthserv; C:\WINDOWS\system32\bthserv.dll [121344 2016-07-16] (Microsoft Corporation)
S2 CDPSvc; C:\WINDOWS\System32\CDPSvc.dll [294400 2016-11-11] (Microsoft Corporation)
S2 CDPUserSvc; C:\WINDOWS\System32\CDPUserSvc.dll [254976 2016-11-11] (Microsoft Corporation)
R2 CDPUserSvc_40eea; C:\WINDOWS\system32\svchost.exe [38792 2016-07-16] (Microsoft Corporation)
S3 CertPropSvc; C:\WINDOWS\System32\certprop.dll [161792 2016-12-14] (Microsoft Corporation)
S3 ClipSVC; C:\WINDOWS\System32\ClipSVC.dll [591400 2016-07-16] (Microsoft Corporation)
R2 CoreMessagingRegistrar; C:\WINDOWS\system32\coremessaging.dll [583136 2016-12-09] (Microsoft Corporation)
S3 cphs; C:\WINDOWS\system32\IntelCpHeciSvc.exe [290224 2015-06-01] (Intel Corporation)
R2 CryptSvc; C:\WINDOWS\system32\cryptsvc.dll [65536 2016-07-16] (Microsoft Corporation)
R2 CscService; C:\WINDOWS\System32\cscsvc.dll [617472 2016-07-16] (Microsoft Corporation)
R2 DcomLaunch; C:\WINDOWS\system32\rpcss.dll [712704 2016-07-16] (Microsoft Corporation)
S3 DcpSvc; C:\WINDOWS\system32\dcpsvc.dll [155648 2016-07-16] (Microsoft Corporation)
S3 defragsvc; C:\WINDOWS\System32\defragsvc.dll [396800 2016-07-16] (Microsoft Corporation)
R3 DeviceAssociationService; C:\WINDOWS\system32\das.dll [366592 2016-08-06] (Microsoft Corporation)
S3 DeviceInstall; C:\WINDOWS\system32\umpnpmgr.dll [96256 2016-07-16] (Microsoft Corporation)
S3 DevQueryBroker; C:\WINDOWS\system32\DevQueryBroker.dll [24064 2016-07-16] (Microsoft Corporation)
R2 Dhcp; C:\WINDOWS\system32\dhcpcore.dll [292864 2016-07-16] (Microsoft Corporation)
S3 diagnosticshub.standardcollector.service; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [69632 2016-07-16] (Microsoft Corporation)
R2 DiagTrack; C:\WINDOWS\system32\diagtrack.dll [1485312 2016-10-15] (Microsoft Corporation)
S3 DmEnrollmentSvc; C:\WINDOWS\system32\Windows.Internal.Management.dll [298496 2016-11-11] (Microsoft Corporation)
S3 dmwappushservice; C:\WINDOWS\system32\dmwappushsvc.dll [47104 2016-07-16] (Microsoft Corporation)
R2 Dnscache; C:\WINDOWS\System32\dnsrslvr.dll [202752 2016-07-16] (Microsoft Corporation)
R2 DoSvc; C:\WINDOWS\system32\dosvc.dll [920064 2016-12-14] (Microsoft Corporation)
S3 dot3svc; C:\WINDOWS\System32\dot3svc.dll [230400 2016-07-16] (Microsoft Corporation)
R2 DPS; C:\WINDOWS\system32\dps.dll [137728 2016-07-16] (Microsoft Corporation)
S3 DsmSvc; C:\WINDOWS\System32\DeviceSetupManager.dll [159232 2016-07-16] (Microsoft Corporation)
R3 DsSvc; C:\WINDOWS\System32\DsSvc.dll [121344 2016-07-16] (Microsoft Corporation)
S3 Eaphost; C:\WINDOWS\System32\eapsvc.dll [96768 2016-07-16] (Microsoft Corporation)
S3 EFS; C:\WINDOWS\system32\efssvc.dll [36864 2016-07-16] (Microsoft Corporation)
S3 embeddedmode; C:\WINDOWS\System32\embeddedmodesvc.dll [101888 2016-07-16] (Microsoft Corporation)
S3 EntAppSvc; C:\WINDOWS\system32\EnterpriseAppMgmtSvc.dll [242176 2016-11-11] (Microsoft Corporation)
R2 ETDService; C:\Program Files\Elantech\ETDService.exe [115416 2016-11-11] (ELAN Microelectronics Corp.)
R2 EventLog; C:\WINDOWS\System32\wevtsvc.dll [1344000 2016-09-15] (Microsoft Corporation)
R2 EventSystem; C:\WINDOWS\system32\es.dll [347136 2016-07-16] (Microsoft Corporation)
S3 Fax; C:\WINDOWS\system32\fxssvc.exe [527360 2016-07-16] (Microsoft Corporation)
S3 fdPHost; C:\WINDOWS\system32\fdPHost.dll [17408 2016-07-16] (Microsoft Corporation)
S3 FDResPub; C:\WINDOWS\system32\fdrespub.dll [30720 2016-07-16] (Microsoft Corporation)
S3 fhsvc; C:\WINDOWS\system32\fhsvc.dll [104448 2016-07-16] (Microsoft Corporation)
R2 FontCache; C:\WINDOWS\system32\FntCache.dll [1523712 2016-10-15] (Microsoft Corporation)
S3 FontCache3.0.0.0; C:\WINDOWS\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe [43696 2016-05-25] (Microsoft Corporation)
S3 FrameServer; C:\WINDOWS\system32\FrameServer.dll [503808 2016-11-02] (Microsoft Corporation)
S2 gpsvc; C:\WINDOWS\System32\gpsvc.dll [1098752 2016-09-15] (Microsoft Corporation)
S2 gupdate; C:\Program Files\Google\Update\GoogleUpdate.exe [144200 2015-08-31] (Google Inc.)
S3 gupdatem; C:\Program Files\Google\Update\GoogleUpdate.exe [144200 2015-08-31] (Google Inc.)
S3 gusvc; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [194032 2014-06-25] (Google)
S3 hidserv; C:\WINDOWS\system32\hidserv.dll [32256 2016-07-16] (Microsoft Corporation)
S3 HomeGroupListener; C:\WINDOWS\system32\ListSvc.dll [228352 2016-07-16] (Microsoft Corporation)
S3 HomeGroupProvider; C:\WINDOWS\system32\provsvc.dll [385536 2016-07-16] (Microsoft Corporation)
S3 icssvc; C:\WINDOWS\System32\tetheringservice.dll [167424 2016-07-16] (Microsoft Corporation)
S3 IKEEXT; C:\WINDOWS\System32\ikeext.dll [740864 2016-07-16] (Microsoft Corporation)
R2 iphlpsvc; C:\WINDOWS\System32\iphlpsvc.dll [827392 2016-10-15] (Microsoft Corporation)
S3 irmon; C:\WINDOWS\System32\irmon.dll [20992 2016-07-16] (Microsoft Corporation)
R3 KeyIso; C:\WINDOWS\system32\keyiso.dll [70656 2016-07-16] (Microsoft Corporation)
S3 KtmRm; C:\WINDOWS\system32\msdtckrm.dll [329728 2016-07-16] (Microsoft Corporation)
R2 LanmanServer; C:\WINDOWS\system32\srvsvc.dll [234496 2016-07-16] (Microsoft Corporation)
R2 LanmanWorkstation; C:\WINDOWS\System32\wkssvc.dll [241152 2016-11-11] (Microsoft Corporation)
R3 lfsvc; C:\WINDOWS\System32\lfsvc.dll [30208 2016-07-16] (Microsoft Corporation)
R3 LicenseManager; C:\WINDOWS\system32\LicenseManagerSvc.dll [20992 2016-08-20] (Microsoft Corporation)
R2 LightScribeService; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [73728 2010-06-16] (Hewlett-Packard Company) [Fichier non signé]
S3 lltdsvc; C:\WINDOWS\System32\lltdsvc.dll [212480 2016-07-16] (Microsoft Corporation)
R3 lmhosts; C:\WINDOWS\System32\lmhsvc.dll [21504 2016-07-16] (Microsoft Corporation)
R2 LSM; C:\WINDOWS\System32\lsm.dll [612352 2016-11-11] (Microsoft Corporation)
S2 MapsBroker; C:\WINDOWS\System32\moshost.dll [64000 2016-11-11] (Microsoft Corporation)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [3303888 2017-01-20] (Malwarebytes)
S3 MessagingService; C:\WINDOWS\System32\MessagingService.dll [46080 2016-07-16] (Microsoft Corporation)
S3 MessagingService_40eea; C:\WINDOWS\system32\svchost.exe [38792 2016-07-16] (Microsoft Corporation)
S3 Microsoft Office Groove Audit Service; C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe [64856 2009-02-26] (Microsoft Corporation)
R2 MpsSvc; C:\WINDOWS\system32\mpssvc.dll [693248 2016-07-16] (Microsoft Corporation)
S3 MSDTC; C:\WINDOWS\System32\msdtc.exe [139776 2016-07-16] (Microsoft Corporation)
S3 MSiSCSI; C:\WINDOWS\system32\iscsiexe.dll [117760 2016-07-16] (Microsoft Corporation)
S3 msiserver; C:\WINDOWS\System32\msiexec.exe [58368 2016-07-16] (Microsoft Corporation)
R2 MSMQ; C:\WINDOWS\system32\mqsvc.exe [24576 2016-09-20] (Microsoft Corporation)
S3 NcaSvc; C:\WINDOWS\System32\ncasvc.dll [144384 2016-07-16] (Microsoft Corporation)
R3 NcbService; C:\WINDOWS\System32\ncbservice.dll [294912 2016-07-16] (Microsoft Corporation)
S3 NcdAutoSetup; C:\WINDOWS\System32\NcdAutoSetup.dll [76800 2016-07-16] (Microsoft Corporation)
S3 Netlogon; C:\WINDOWS\system32\netlogon.dll [670720 2016-07-16] (Microsoft Corporation)
S3 Netman; C:\WINDOWS\System32\netman.dll [204288 2016-07-16] (Microsoft Corporation)
R2 NetMsmqActivator; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [136360 2016-07-16] (Microsoft Corporation)
R2 NetPipeActivator; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [136360 2016-07-16] (Microsoft Corporation)
R3 netprofm; C:\WINDOWS\System32\netprofmsvc.dll [432640 2016-07-16] (Microsoft Corporation)
S3 NetSetupSvc; C:\WINDOWS\System32\NetSetupSvc.dll [182784 2016-11-02] (Microsoft Corporation)
S2 NetTcpActivator; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [136360 2016-07-16] (Microsoft Corporation)
S4 NetTcpPortSharing; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [136360 2016-07-16] (Microsoft Corporation)
S3 NgcCtnrSvc; C:\WINDOWS\System32\NgcCtnrSvc.dll [239616 2016-07-16] (Microsoft Corporation)
S3 NgcSvc; C:\WINDOWS\system32\ngcsvc.dll [754688 2016-10-05] (Microsoft Corporation)
R2 NlaSvc; C:\WINDOWS\System32\nlasvc.dll [303104 2016-10-05] (Microsoft Corporation)
R2 nsi; C:\WINDOWS\system32\nsisvc.dll [23552 2016-07-16] (Microsoft Corporation)
S3 odserv; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [440696 2011-07-20] (Microsoft Corporation)
S2 OneSyncSvc; C:\WINDOWS\System32\APHostService.dll [330240 2016-07-16] (Microsoft Corporation)
R2 OneSyncSvc_40eea; C:\WINDOWS\system32\svchost.exe [38792 2016-07-16] (Microsoft Corporation)
S3 ose; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [145184 2006-10-26] (Microsoft Corporation)
S3 p2pimsvc; C:\WINDOWS\system32\pnrpsvc.dll [285696 2016-07-16] (Microsoft Corporation)
S3 p2psvc; C:\WINDOWS\system32\p2psvc.dll [353280 2016-07-16] (Microsoft Corporation)
R3 PcaSvc; C:\WINDOWS\System32\pcasvc.dll [421216 2016-10-15] (Microsoft Corporation)
S3 PeerDistSvc; C:\WINDOWS\system32\peerdistsvc.dll [1591296 2016-07-16] (Microsoft Corporation)
S3 PhoneSvc; C:\WINDOWS\System32\PhoneService.dll [636928 2016-09-07] (Microsoft Corporation)
S3 PimIndexMaintenanceSvc; C:\WINDOWS\System32\PimIndexMaintenance.dll [167936 2016-07-16] (Microsoft Corporation)
S3 PimIndexMaintenanceSvc_40eea; C:\WINDOWS\system32\svchost.exe [38792 2016-07-16] (Microsoft Corporation)
S3 pla; C:\WINDOWS\system32\pla.dll [1536512 2016-07-16] (Microsoft Corporation)
R3 PlugPlay; C:\WINDOWS\system32\umpnpmgr.dll [96256 2016-07-16] (Microsoft Corporation)
S3 PNRPAutoReg; C:\WINDOWS\system32\pnrpauto.dll [23040 2016-07-16] (Microsoft Corporation)
S3 PNRPsvc; C:\WINDOWS\system32\pnrpsvc.dll [285696 2016-07-16] (Microsoft Corporation)
S3 PolicyAgent; C:\WINDOWS\System32\ipsecsvc.dll [317952 2016-07-16] (Microsoft Corporation)
R2 Power; C:\WINDOWS\system32\umpo.dll [105472 2016-07-16] (Microsoft Corporation)
S3 PrintNotify; C:\WINDOWS\system32\spool\drivers\W32X86\3\PrintConfig.dll [2716672 2016-07-16] (Microsoft Corporation)
R2 ProfSvc; C:\WINDOWS\system32\profsvc.dll [268800 2016-09-15] (Microsoft Corporation)
S3 QWAVE; C:\WINDOWS\system32\qwave.dll [234496 2016-07-16] (Microsoft Corporation)
S3 RasAuto; C:\WINDOWS\System32\rasauto.dll [93184 2016-07-16] (Microsoft Corporation)
S3 RasMan; C:\WINDOWS\System32\rasmans.dll [561152 2016-11-11] (Microsoft Corporation)
S4 RemoteAccess; C:\WINDOWS\System32\mprdim.dll [431104 2016-09-15] (Microsoft Corporation)
S4 RemoteRegistry; C:\WINDOWS\system32\regsvc.dll [117248 2016-07-16] (Microsoft Corporation)
S3 RetailDemo; C:\WINDOWS\system32\RDXService.dll [473600 2016-11-11] (Microsoft Corporation)
S3 RmSvc; C:\WINDOWS\System32\RMapi.dll [114688 2016-09-15] (Microsoft Corporation)
R2 RpcEptMapper; C:\WINDOWS\System32\RpcEpMap.dll [59392 2016-07-16] (Microsoft Corporation)
S3 RpcLocator; C:\WINDOWS\system32\locator.exe [9216 2016-07-16] (Microsoft Corporation)
R2 RpcSs; C:\WINDOWS\system32\rpcss.dll [712704 2016-07-16] (Microsoft Corporation)
R2 SamSs; C:\WINDOWS\system32\lsass.exe [43944 2016-09-07] (Microsoft Corporation)
S4 SCardSvr; C:\WINDOWS\System32\SCardSvr.dll [183808 2016-07-16] (Microsoft Corporation)
S3 ScDeviceEnum; C:\WINDOWS\System32\ScDeviceEnum.dll [137728 2016-12-14] (Microsoft Corporation)
R2 Schedule; C:\WINDOWS\system32\schedsvc.dll [733184 2016-07-16] (Microsoft Corporation)
S3 SCPolicySvc; C:\WINDOWS\System32\certprop.dll [161792 2016-12-14] (Microsoft Corporation)
R3 SDRSVC; C:\WINDOWS\System32\SDRSVC.dll [124928 2016-07-16] (Microsoft Corporation)
S3 seclogon; C:\WINDOWS\system32\seclogon.dll [24576 2016-07-16] (Microsoft Corporation)
R2 SENS; C:\WINDOWS\System32\sens.dll [57856 2016-09-15] (Microsoft Corporation)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [1887272 2016-09-15] (Microsoft Corporation)
S3 SensorDataService; C:\WINDOWS\System32\SensorDataService.exe [894976 2016-09-07] (Microsoft Corporation)
S3 SensorService; C:\WINDOWS\system32\SensorService.dll [289792 2016-09-15] (Microsoft Corporation)
S3 SensrSvc; C:\WINDOWS\system32\sensrsvc.dll [154624 2016-07-16] (Microsoft Corporation)
S3 SessionEnv; C:\WINDOWS\system32\sessenv.dll [331776 2016-09-15] (Microsoft Corporation)
S4 SharedAccess; C:\WINDOWS\System32\ipnathlp.dll [482304 2016-11-02] (Microsoft Corporation)
R2 ShellHWDetection; C:\WINDOWS\System32\shsvcs.dll [566784 2016-07-16] (Microsoft Corporation)
S4 shpamsvc; C:\WINDOWS\system32\Windows.SharedPC.AccountManager.dll [120320 2016-07-16] (Microsoft Corporation)
S3 smphost; C:\WINDOWS\System32\smphost.dll [20992 2016-08-06] (Microsoft Corporation)
S3 SmsRouter; C:\WINDOWS\system32\SmsRouterSvc.dll [413184 2016-07-16] (Microsoft Corporation)
S3 SNMPTRAP; C:\WINDOWS\System32\snmptrap.exe [13824 2016-07-16] (Microsoft Corporation)
R2 Spooler; C:\WINDOWS\System32\spoolsv.exe [528384 2016-10-15] (Microsoft Corporation)
S2 sppsvc; C:\WINDOWS\system32\sppsvc.exe [4970224 2016-10-15] (Microsoft Corporation)
R3 SSDPSRV; C:\WINDOWS\System32\ssdpsrv.dll [188928 2016-07-16] (Microsoft Corporation)
S3 SstpSvc; C:\WINDOWS\system32\sstpsvc.dll [187904 2016-07-16] (Microsoft Corporation)
R3 StateRepository; C:\WINDOWS\system32\windows.staterepository.dll [3370496 2016-11-11] (Microsoft Corporation)
R2 StiSvc; C:\WINDOWS\System32\wiaservc.dll [518656 2016-07-16] (Microsoft Corporation)
R3 StorSvc; C:\WINDOWS\system32\storsvc.dll [309760 2016-11-11] (Microsoft Corporation)
S3 svsvc; C:\WINDOWS\system32\svsvc.dll [11264 2016-07-16] (Microsoft Corporation)
S3 swprv; C:\WINDOWS\System32\swprv.dll [328704 2016-07-16] (Microsoft Corporation)
R2 SysMain; C:\WINDOWS\system32\sysmain.dll [772608 2016-07-16] (Microsoft Corporation)
R2 SystemEventsBroker; C:\WINDOWS\System32\SystemEventsBrokerServer.dll [280576 2016-07-16] (Microsoft Corporation)
S3 TabletInputService; C:\WINDOWS\System32\TabSvc.dll [134656 2016-07-16] (Microsoft Corporation)
S3 TapiSrv; C:\WINDOWS\System32\tapisrv.dll [254976 2016-07-16] (Microsoft Corporation)
S3 TermService; C:\WINDOWS\System32\termsrv.dll [846848 2016-07-16] (Microsoft Corporation)
R2 Themes; C:\WINDOWS\system32\themeservice.dll [55296 2016-07-16] (Microsoft Corporation)
S3 TieringEngineService; C:\WINDOWS\system32\TieringEngineService.exe [253440 2016-07-16] (Microsoft Corporation)
R2 tiledatamodelsvc; C:\WINDOWS\system32\tileobjserver.dll [446976 2016-07-16] (Microsoft Corporation)
R3 TimeBrokerSvc; C:\WINDOWS\System32\TimeBrokerServer.dll [129536 2016-07-16] (Microsoft Corporation)
R2 TrkWks; C:\WINDOWS\System32\trkwks.dll [88576 2016-07-16] (Microsoft Corporation)
S3 TrustedInstaller; C:\WINDOWS\servicing\TrustedInstaller.exe [110080 2016-11-11] (Microsoft Corporation)
S4 tzautoupdate; C:\WINDOWS\system32\tzautoupdate.dll [73216 2016-09-07] (Microsoft Corporation)
S4 UevAgentService; C:\WINDOWS\system32\AgentService.exe [858624 2016-07-16] (Microsoft Corporation)
S3 UI0Detect; C:\WINDOWS\system32\UI0Detect.exe [37376 2016-07-16] (Microsoft Corporation)
S3 UmRdpService; C:\WINDOWS\System32\umrdp.dll [234496 2016-07-16] (Microsoft Corporation)
S3 UnistoreSvc; C:\WINDOWS\System32\unistore.dll [968704 2016-07-16] (Microsoft Corporation)
S3 UnistoreSvc_40eea; C:\WINDOWS\System32\svchost.exe [38792 2016-07-16] (Microsoft Corporation)
S3 upnphost; C:\WINDOWS\System32\upnphost.dll [328192 2016-07-16] (Microsoft Corporation)
S3 UserDataSvc; C:\WINDOWS\System32\userdataservice.dll [1252352 2016-07-16] (Microsoft Corporation)
S3 UserDataSvc_40eea; C:\WINDOWS\system32\svchost.exe [38792 2016-07-16] (Microsoft Corporation)
R2 UserManager; C:\WINDOWS\System32\usermgr.dll [822272 2016-09-15] (Microsoft Corporation)
S3 UsoSvc; C:\WINDOWS\system32\usocore.dll [416256 2016-12-14] (Microsoft Corporation)
R3 VaultSvc; C:\Windows\System32\vaultsvc.dll [259072 2016-07-16] (Microsoft Corporation)
S3 vds; C:\WINDOWS\System32\vds.exe [551424 2016-07-16] (Microsoft Corporation)
S3 vmicguestinterface; C:\WINDOWS\System32\icsvc.dll [228352 2016-09-15] (Microsoft Corporation)
S3 vmicheartbeat; C:\WINDOWS\System32\icsvc.dll [228352 2016-09-15] (Microsoft Corporation)
S3 vmickvpexchange; C:\WINDOWS\System32\icsvc.dll [228352 2016-09-15] (Microsoft Corporation)
S3 vmicrdv; C:\WINDOWS\System32\icsvcext.dll [277504 2016-09-15] (Microsoft Corporation)
S3 vmicshutdown; C:\WINDOWS\System32\icsvc.dll [228352 2016-09-15] (Microsoft Corporation)
S3 vmictimesync; C:\WINDOWS\System32\icsvc.dll [228352 2016-09-15] (Microsoft Corporation)
S3 vmicvmsession; C:\WINDOWS\System32\icsvc.dll [228352 2016-09-15] (Microsoft Corporation)
S3 vmicvss; C:\WINDOWS\System32\icsvcext.dll [277504 2016-09-15] (Microsoft Corporation)
S3 VSS; C:\WINDOWS\system32\vssvc.exe [1017856 2016-07-16] (Microsoft Corporation)
R2 W32Time; C:\WINDOWS\system32\w32time.dll [448512 2016-08-06] (Microsoft Corporation)
S3 w3logsvc; C:\WINDOWS\system32\inetsrv\w3logsvc.dll [73216 2016-09-20] (Microsoft Corporation)
R2 W3SVC; C:\WINDOWS\system32\inetsrv\iisw3adm.dll [507392 2016-09-20] (Microsoft Corporation)
S3 WalletService; C:\WINDOWS\system32\WalletService.dll [373248 2016-07-16] (Microsoft Corporation)
R3 WAS; C:\WINDOWS\system32\inetsrv\iisw3adm.dll [507392 2016-09-20] (Microsoft Corporation)
S3 wbengine; C:\WINDOWS\system32\wbengine.exe [1310720 2016-07-16] (Microsoft Corporation)
S2 WbioSrvc; C:\WINDOWS\System32\wbiosrvc.dll [497664 2016-12-14] (Microsoft Corporation)
R2 Wcmsvc; C:\WINDOWS\System32\wcmsvc.dll [567808 2016-07-16] (Microsoft Corporation)
S3 wcncsvc; C:\WINDOWS\System32\wcncsvc.dll [379392 2016-07-16] (Microsoft Corporation)
R3 WdiServiceHost; C:\WINDOWS\system32\wdi.dll [89088 2016-07-16] (Microsoft Corporation)
R3 WdiSystemHost; C:\WINDOWS\system32\wdi.dll [89088 2016-07-16] (Microsoft Corporation)
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [271496 2016-07-16] (Microsoft Corporation)
S3 WebClient; C:\WINDOWS\System32\webclnt.dll [198656 2016-07-16] (Microsoft Corporation)
S3 Wecsvc; C:\WINDOWS\system32\wecsvc.dll [149504 2016-07-16] (Microsoft Corporation)
S3 WEPHOSTSVC; C:\WINDOWS\system32\wephostsvc.dll [22528 2016-07-16] (Microsoft Corporation)
S3 wercplsupport; C:\WINDOWS\System32\wercplsupport.dll [68608 2016-07-16] (Microsoft Corporation)
S3 WerSvc; C:\WINDOWS\System32\WerSvc.dll [126464 2016-07-16] (Microsoft Corporation)
S3 WiaRpc; C:\WINDOWS\System32\wiarpc.dll [66048 2016-07-16] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [84928 2016-07-16] (Microsoft Corporation)
R3 WinHttpAutoProxySvc; C:\WINDOWS\system32\winhttp.dll [636928 2016-10-15] (Microsoft Corporation)
R2 winmgmt; C:\WINDOWS\system32\wbem\WMIsvc.dll [184832 2016-07-16] (Microsoft Corporation)
S3 WinRM; C:\WINDOWS\system32\WsmSvc.dll [2333184 2016-11-11] (Microsoft Corporation)
S3 wisvc; C:\WINDOWS\system32\flightsettings.dll [517632 2016-11-02] (Microsoft Corporation)
R2 Wlansvc; C:\WINDOWS\System32\wlansvc.dll [1997824 2016-08-06] (Microsoft Corporation)
S3 wlidsvc; C:\WINDOWS\system32\wlidsvc.dll [1584128 2016-11-11] (Microsoft Corporation)
S3 wmiApSrv; C:\WINDOWS\system32\wbem\WmiApSrv.exe [146432 2016-07-16] (Microsoft Corporation)
S3 WMPNetworkSvc; C:\Program Files\Windows Media Player\wmpnetwk.exe [960512 2016-09-07] (Microsoft Corporation)
S3 workfolderssvc; C:\WINDOWS\system32\workfolderssvc.dll [1381376 2016-07-16] (Microsoft Corporation)
S3 WPDBusEnum; C:\WINDOWS\system32\wpdbusenum.dll [71680 2016-07-16] (Microsoft Corporation)
R2 WpnService; C:\WINDOWS\system32\WpnService.dll [195584 2016-07-16] (Microsoft Corporation)
S3 WpnUserService; C:\WINDOWS\System32\WpnUserService.dll [58368 2016-07-16] (Microsoft Corporation)
S3 WpnUserService_40eea; C:\WINDOWS\system32\svchost.exe [38792 2016-07-16] (Microsoft Corporation)
R2 wscsvc; C:\WINDOWS\System32\wscsvc.dll [142848 2016-11-11] (Microsoft Corporation)
R2 WSearch; C:\WINDOWS\system32\SearchIndexer.exe [773120 2016-09-15] (Microsoft Corporation)
S3 wuauserv; C:\WINDOWS\system32\wuaueng.dll [1888256 2016-12-14] (Microsoft Corporation)
R3 wudfsvc; C:\WINDOWS\System32\WUDFSvc.dll [83456 2016-07-16] (Microsoft Corporation)
S3 WwanSvc; C:\WINDOWS\System32\wwansvc.dll [1013248 2016-11-02] (Microsoft Corporation)
S3 XblAuthManager; C:\WINDOWS\System32\XblAuthManager.dll [576512 2016-09-15] (Microsoft Corporation)
S3 XblGameSave; C:\WINDOWS\System32\XblGameSave.dll [704512 2016-07-16] (Microsoft Corporation)
S3 XboxNetApiSvc; C:\WINDOWS\system32\XboxNetApiSvc.dll [828928 2016-07-16] (Microsoft Corporation)
S3 COMSysApp; %SystemRoot%\system32\dllhost.exe /Processid:{02D4B3F1-FD88-11D1-960D-00805FC79235}
S3 NMIndexingService; "C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe" [X]
===================== Pilotes (Avec liste blanche) ======================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R3 athr; C:\WINDOWS\System32\drivers\athw8.sys [3228672 2016-07-16] (Qualcomm Atheros Communications, Inc.)
R3 BtFilter; C:\WINDOWS\system32\DRIVERS\btfilter.sys [509224 2015-03-09] (Qualcomm Atheros)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [109184 2016-09-05] (Samsung Electronics Co., Ltd.)
R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae.sys [59976 2017-01-20] ()
R3 ETD; C:\WINDOWS\system32\DRIVERS\ETD.sys [565832 2016-11-11] (ELAN Microelectronics Corp.)
R3 ETDSMBus; C:\WINDOWS\system32\DRIVERS\ETDSMBus.sys [36944 2015-09-23] (ELAN Microelectronic Corp.)
R2 MBAMChameleon; C:\WINDOWS\system32\drivers\MBAMChameleon.sys [152512 2017-02-26] (Malwarebytes)
R3 MBAMFarflt; C:\WINDOWS\system32\drivers\farflt.sys [94656 2017-02-28] (Malwarebytes)
R3 MBAMProtection; C:\WINDOWS\system32\drivers\mbam.sys [39360 2017-02-28] (Malwarebytes)
R0 MBAMSwissArmy; C:\WINDOWS\System32\drivers\MBAMSwissArmy.sys [219584 2017-02-28] (Malwarebytes)
R3 MBAMWebProtection; C:\WINDOWS\system32\drivers\mwac.sys [73672 2017-02-28] (Malwarebytes)
R3 MEI; C:\WINDOWS\System32\drivers\HECI.sys [55104 2012-07-17] (Intel Corporation)
R1 MpKslb56baee8; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{C9B645AD-793B-42A6-924B-312A45E858DB}\MpKslb56baee8.sys [39168 2017-02-28] (Microsoft Corporation)
R1 MpKslecbb8bca; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{9C60F036-3730-4C7E-99DD-930DEB49383B}\MpKslecbb8bca.sys [39168 2017-02-28] (Microsoft Corporation)
S3 NetAdapterCx; C:\WINDOWS\System32\drivers\NetAdapterCx.sys [62976 2016-07-16] ()
R3 RadioHIDMini; C:\WINDOWS\System32\drivers\RadioHIDMini.sys [30112 2015-07-16] (Windows (R) Win 7 DDK provider)
R3 rt640x86; C:\WINDOWS\System32\drivers\rt640x86.sys [494080 2016-07-16] (Realtek )
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [147072 2016-09-05] (Samsung Electronics Co., Ltd.)
S3 ssudserd; C:\WINDOWS\system32\DRIVERS\ssudserd.sys [147072 2016-09-05] (Samsung Electronics Co., Ltd.)
S3 TridVid; C:\WINDOWS\system32\DRIVERS\tridvid6010.sys [339712 2011-01-21] (10Moons Technologies Co.,Ltd)
S0 WdBoot; C:\WINDOWS\System32\drivers\WdBoot.sys [37912 2016-07-16] (Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\WdFilter.sys [244576 2016-07-16] (Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [100192 2016-07-16] (Microsoft Corporation)
S3 WUDFWpdMtp; C:\WINDOWS\system32\DRIVERS\WUDFRd.sys [161280 2016-07-16] (Microsoft Corporation)
R2 {FE4C91E7-22C2-4D0C-9F6B-82F1B7742054}; C:\Program Files\CyberLink\PowerDVD8\000.fcl [61424 2008-05-15] (Cyberlink Corp.)
S3 catchme; \??\C:\Users\SAMSUNG\AppData\Local\Temp\catchme.sys [X] <==== ATTENTION
U3 idsvc; pas de ImagePath
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois - Créés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2017-02-28 19:42 - 2017-02-28 19:44 - 00038843 _____ C:\Users\SAMSUNG\Desktop\FRST.txt
2017-02-28 19:33 - 2017-02-28 19:42 - 00000000 ____D C:\FRST
2017-02-28 17:08 - 2017-02-28 19:33 - 01765376 _____ (Farbar) C:\Users\SAMSUNG\Desktop\FRST.exe
2017-02-28 17:00 - 2017-02-28 17:00 - 00000000 ___RD C:\Users\SAMSUNG\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CyberLink PowerDVD 8
2017-02-28 13:08 - 2017-02-28 13:08 - 00001621 _____ C:\Users\SAMSUNG\Desktop\ZHPFixReport.txt
2017-02-27 20:54 - 2017-02-27 20:56 - 00000470 _____ C:\Users\SAMSUNG\Desktop\dossier.txt
2017-02-27 06:43 - 2017-02-27 06:44 - 00106816 _____ C:\Users\SAMSUNG\Desktop\FixWin10.zip
2017-02-26 22:11 - 2017-02-26 22:14 - 00000000 ____D C:\Users\TEMP
2017-02-26 21:28 - 2017-02-26 21:29 - 02703872 _____ C:\Users\SAMSUNG\Desktop\ZHPDiag3.exe
2017-02-26 20:59 - 2017-02-27 19:58 - 00001868 _____ C:\Users\Public\Desktop\ZHPFix.lnk
2017-02-26 20:59 - 2017-02-27 19:58 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ZHP
2017-02-26 20:59 - 2017-02-27 19:58 - 00000000 ____D C:\Program Files\ZHPFix
2017-02-26 20:54 - 2017-02-26 20:58 - 03521617 _____ (Nicolas Coolman ) C:\Users\SAMSUNG\Desktop\ZHPFix.exe
2017-02-26 17:52 - 2017-02-26 17:52 - 00013388 _____ C:\Users\SAMSUNG\Desktop\mbm_log.txt
2017-02-26 17:14 - 2017-02-26 17:14 - 00152512 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMChameleon.sys
2017-02-26 17:13 - 2017-02-28 19:05 - 00073672 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys
2017-02-26 17:13 - 2017-02-28 16:58 - 00219584 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2017-02-26 17:13 - 2017-02-28 16:58 - 00094656 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\farflt.sys
2017-02-26 17:13 - 2017-02-28 16:58 - 00039360 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2017-02-26 17:13 - 2017-02-26 17:13 - 00002097 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2017-02-26 17:13 - 2017-02-26 17:13 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2017-02-26 17:12 - 2017-02-26 17:12 - 00000000 ____D C:\ProgramData\Malwarebytes
2017-02-26 17:12 - 2017-02-26 17:12 - 00000000 ____D C:\Program Files\Malwarebytes
2017-02-26 17:12 - 2017-01-20 07:47 - 00059976 _____ C:\WINDOWS\system32\Drivers\mbae.sys
2017-02-26 15:54 - 2017-02-26 16:39 - 02744320 _____ C:\Users\SAMSUNG\Desktop\ZHPCleaner.exe
2017-02-26 15:48 - 2017-02-26 17:11 - 55566792 _____ (Malwarebytes ) C:\Users\SAMSUNG\Desktop\mb3-setup-consumer-3.0.6.1469.exe
2017-02-25 13:43 - 2017-02-28 13:08 - 00000000 ____D C:\Users\SAMSUNG\AppData\Roaming\ZHP
2017-02-18 09:30 - 2017-02-18 09:30 - 17790095 _____ C:\Users\SAMSUNG\Downloads\jwb_F_201702_08_r360P.mp4
2017-02-14 17:37 - 2017-02-14 17:40 - 00000000 ____D C:\Users\SAMSUNG\AppData\Local\Mindspark
2017-02-13 19:13 - 2017-02-13 19:18 - 23529314 _____ C:\Users\SAMSUNG\Downloads\502015255_KU_cnt_1_r480P.mp4
2017-02-12 15:56 - 2017-02-12 16:28 - 00000000 ____D C:\Users\SAMSUNG\AppData\Local\Deployment
2017-02-11 08:18 - 2017-02-11 08:32 - 101547836 _____ C:\Users\SAMSUNG\Downloads\jwbcov_F_201605_01_r720P.mp4
2017-02-07 06:18 - 2017-02-07 06:20 - 26023582 _____ C:\Users\SAMSUNG\Downloads\pk_F_026_r720P.mp4
2017-02-04 10:25 - 2017-02-04 10:58 - 337145516 _____ C:\Users\SAMSUNG\Downloads\La Vie Est Belle Papa Wemba.mp4
2017-02-04 10:17 - 2017-02-04 10:52 - 295643916 _____ C:\Users\SAMSUNG\Downloads\LA VIE EST BELLE..mp4
2017-02-04 09:21 - 2017-02-04 09:21 - 01446182 _____ C:\Users\SAMSUNG\Downloads\S-38_F.jwpub
2017-02-03 20:05 - 2017-02-03 20:05 - 01296043 _____ C:\Users\SAMSUNG\Downloads\wp_F_201705.pdf
2017-02-03 19:46 - 2017-02-03 19:53 - 34195330 _____ C:\Users\SAMSUNG\Downloads\ws_F_201701.mp3.zip
==================== Un mois - Modifiés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2017-02-28 17:10 - 2016-07-16 10:29 - 00000000 ___HD C:\Program Files\WindowsApps
2017-02-28 17:10 - 2016-07-16 10:29 - 00000000 ____D C:\WINDOWS\AppReadiness
2017-02-28 16:58 - 2016-09-20 22:41 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2017-02-28 13:18 - 2016-07-16 04:22 - 00786432 _____ C:\WINDOWS\system32\config\BBI
2017-02-28 06:47 - 2016-09-20 22:10 - 00000000 ____D C:\WINDOWS\system32\SleepStudy
2017-02-27 21:01 - 2016-09-20 22:18 - 00000000 ____D C:\Users\SAMSUNG
2017-02-27 18:59 - 2016-07-16 04:22 - 00032768 _____ C:\WINDOWS\system32\config\ELAM
2017-02-26 22:15 - 2016-02-13 14:20 - 00000000 __RHD C:\Users\Public\AccountPictures
2017-02-26 18:16 - 2013-08-21 09:01 - 00000000 ____D C:\WINDOWS\system32\MRT
2017-02-26 18:10 - 2013-04-04 12:50 - 135086848 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2017-02-26 18:09 - 2016-07-16 10:19 - 00000000 ____D C:\WINDOWS\CbsTemp
2017-02-25 21:25 - 2016-02-28 20:15 - 00002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2017-02-25 21:05 - 2016-04-13 20:21 - 00000000 ____D C:\Program Files\Yahoo!
2017-02-22 20:49 - 2016-07-16 10:28 - 00000000 ____D C:\WINDOWS\INF
2017-02-19 16:11 - 2014-05-22 19:57 - 00000000 ____D C:\Users\SAMSUNG\Documents\Congrégation Faraja
2017-02-19 15:52 - 2013-03-22 21:06 - 00000000 ____D C:\Users\SAMSUNG\AppData\Roaming\vlc
2017-02-19 15:39 - 2013-03-22 21:18 - 00000000 ____D C:\Users\SAMSUNG\AppData\Roaming\dvdcss
2017-02-19 14:33 - 2013-10-24 19:17 - 00000000 ____D C:\Users\SAMSUNG\Documents\VirtualDJ
2017-02-16 11:21 - 2014-08-21 19:52 - 00000000 ____D C:\Program Files\Common Files\Ahead
2017-02-14 21:42 - 2013-06-15 20:16 - 00000000 ____D C:\Users\SAMSUNG\AppData\Local\ElevatedDiagnostics
2017-02-14 21:41 - 2016-07-16 10:29 - 00000000 ____D C:\WINDOWS\system32\NDF
2017-02-14 20:13 - 2016-04-09 15:32 - 00000000 ___RD C:\Users\SAMSUNG\OneDrive
2017-02-13 19:02 - 2016-10-15 20:34 - 00000000 ____D C:\Users\SAMSUNG\Documents\FFOutput
2017-02-12 17:01 - 2014-06-25 18:15 - 00000000 ____D C:\Program Files\Google
2017-02-12 16:11 - 2014-06-25 18:15 - 00000000 ____D C:\Users\SAMSUNG\AppData\Local\Google
2017-02-06 21:48 - 2016-10-16 12:22 - 00835576 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2017-02-06 21:48 - 2016-10-16 12:22 - 00177656 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2017-02-04 14:29 - 2016-09-20 22:18 - 00000000 ____D C:\Users\Guest
2017-02-04 10:27 - 2017-01-02 21:33 - 2482713352 _____ C:\Users\SAMSUNG\Downloads\2gy22gYN05K6eBFP0PThKWWo7dQ7sF7534irCPST7ZlRGquIXEAQn1Q3blMIBafvye6101mpcloBMivmIVS1_1_fle.mp4
2017-02-01 19:59 - 2013-03-19 16:39 - 00000000 ____D C:\ProgramData\TEMP
2017-02-01 19:27 - 2013-03-19 13:40 - 00001926 _____ C:\Users\SAMSUNG\Desktop\Zuma's Revenge!.lnk
2017-02-01 19:26 - 2013-06-27 18:49 - 00000164 _____ C:\Users\SAMSUNG\Downloads\TutoreDattilo.ini
2017-01-31 19:06 - 2013-03-18 20:42 - 00000000 ____D C:\Users\SAMSUNG\Documents\documents personnel
==================== Fichiers à la racine de certains dossiers =======
2013-04-25 21:41 - 2016-01-20 07:09 - 0087552 _____ () C:\Users\SAMSUNG\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2013-03-15 01:40 - 2013-03-20 19:37 - 0001366 ____H () C:\ProgramData\csetup.tmp
2016-09-20 22:12 - 2016-09-20 22:12 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
==================== Bamital & volsnap ======================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
C:\WINDOWS\explorer.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\winlogon.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\wininit.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\svchost.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\services.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\User32.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\userinit.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\rpcss.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\dnsapi.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\Drivers\volsnap.sys => Le fichier est signé numériquement
LastRegBack: 2017-02-27 19:49
==================== Fin de FRST.txt ============================