Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 18-02-2017 01
Exécuté par linji (administrateur) sur SROYALJL (19-02-2017 21:45:57)
Exécuté depuis C:\Users\linji\Downloads
Profils chargés: linji (Profils disponibles: linji)
Platform: Windows 10 Home Version 1607 (X64) Langue: Français (France)
Internet Explorer Version 11 (Navigateur par défaut: Edge)
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(Tencent) D:\Program Files (x86)\Tencent\QQPCMgr\12.1.18196.221\QQPCRTP.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Hewlett-Packard Company) C:\Windows\System32\hpservice.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\afwServ.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(Intel Corporation) C:\Windows\System32\ibtsiva.exe
(Intel Corporation) C:\Windows\System32\Intel\DPTF\esif_uf.exe
(Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
() C:\Program Files (x86)\Canon\IJPLM\ijplmsvc.exe
(LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(Tencent) C:\Program Files (x86)\Common Files\Tencent\QQProtect\Bin\QQProtect.exe
() C:\Program Files (x86)\Intel Driver Update Utility\SUR\SurSvc.exe
(Intel Corporation) C:\Windows\Temp\DPTF\esif_assist_64.exe
(Microsoft Corporation) C:\Windows\System32\InputMethod\CHS\ChsIME.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Tencent) D:\Program Files (x86)\Tencent\QQPCMgr\12.1.18196.221\QQPCTray.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP 3D DriveGuard\AccelerometerSt.exe
(HP Inc.) C:\Program Files (x86)\HP\HP System Event\HPMSGSVC.exe
(HP) C:\Program Files (x86)\HP\HP Wireless Button Driver\HPRadioMgr64.exe
(Tencent) D:\Program Files (x86)\Tencent\QQPCMgr\12.1.18196.221\plugins\QMNetMon\QQPCNetFlow.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(CANON INC.) C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe
(Tencent) D:\Program Files (x86)\Tencent\QQPCMgr\12.1.18196.221\QQPCRealTimeSpeedup.exe
(AVAST Software s.r.o.) C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
() C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\esrv.exe
() C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\esrv_svc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(Intel Corporation) C:\Windows\SysWOW64\IntelCpHeciSvc.exe
(Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(WildTangent) C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe
() D:\DATA\ludashi\ComputerZService.exe
() D:\DATA\ludashi\ComputerZTray.exe
() D:\DATA\ludashi\Utils\MobileDeviceSrv.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvspcaps64.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Microleaves LTD) C:\Program Files (x86)\Microleaves\Traffic Exchange\Online-Guardian.exe
(Microleaves LTD) C:\Program Files (x86)\Microleaves\Traffic Exchange\Online-Guardian.exe
(Microleaves LTD) C:\Program Files (x86)\Microleaves\Traffic Exchange\Online-Guardian.exe
() C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.11.109.0_x64__kzf8qxf38zg5c\SkypeHost.exe
(HP Inc.) C:\Program Files (x86)\HP\HP System Event\HPWMISVC.exe
(鲁大师) D:\DATA\ludashi\ComputerZ_CN.exe
(HP Inc.) C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
(Spotify Ltd) C:\Users\linji\AppData\Roaming\Spotify\Spotify.exe
(Spotify Ltd) C:\Users\linji\AppData\Roaming\Spotify\SpotifyCrashService.exe
(Spotify Ltd) C:\Users\linji\AppData\Roaming\Spotify\Spotify.exe
(Spotify Ltd) C:\Users\linji\AppData\Roaming\Spotify\SpotifyWebHelper.exe
(Spotify Ltd) C:\Users\linji\AppData\Roaming\Spotify\Spotify.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
(Microsoft Corporation) C:\Windows\System32\browser_broker.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
==================== Registre (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [ShadowPlay] => "C:\WINDOWS\system32\rundll32.exe" C:\WINDOWS\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9181696 2016-12-02] (Realtek Semiconductor)
HKLM-x32\...\Run: [AccelerometerSysTrayApplet] => C:\Program Files (x86)\Hewlett-Packard\HP 3D DriveGuard\AccelerometerST.exe [127528 2015-07-08] (Hewlett-Packard Company)
HKLM-x32\...\Run: [HPMessageService] => C:\Program Files (x86)\HP\HP System Event\HPMSGSVC.exe [657424 2016-01-11] (HP Inc.)
HKLM-x32\...\Run: [HPRadioMgr] => C:\Program Files (x86)\HP\HP Wireless Button Driver\HPRadioMgr64.exe [258600 2016-01-05] (HP)
HKLM-x32\...\Run: [ QQPCTray] => D:\Program Files (x86)\Tencent\QQPCMgr\12.1.18196.221\QQPCTRAY.EXE [362304 2016-12-05] (Tencent)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [205512 2017-02-17] (AVAST Software)
HKLM-x32\...\Run: [IJNetworkScannerSelectorEX] => C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe [235624 2015-01-09] (CANON INC.)
HKLM-x32\...\Run: [CanonQuickMenu] => C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE [1314432 2016-06-09] (CANON INC.)
HKLM-x32\...\RunOnce: [ldsgamecenter_uninst] => C:\Users\linji\AppData\Local\Temp\removelds_gcenter.bat [378 2017-02-19] () <===== ATTENTION
HKLM\...\Policies\Explorer: [EnableShellExecuteHooks] 1
HKU\S-1-5-21-3245419771-2977825503-3689396286-1001\...\Run: [Spotify Web Helper] => C:\Users\linji\AppData\Roaming\Spotify\SpotifyWebHelper.exe [1446000 2017-02-19] (Spotify Ltd)
HKU\S-1-5-21-3245419771-2977825503-3689396286-1001\...\Run: [Spotify] => C:\Users\linji\AppData\Roaming\Spotify\Spotify.exe [7133808 2017-02-19] (Spotify Ltd)
HKU\S-1-5-21-3245419771-2977825503-3689396286-1001\...\Run: [Discord] => C:\Users\linji\AppData\Local\Discord\app-0.0.297\Discord.exe [64290304 2017-01-04] (Hammer & Chisel, Inc.)
HKU\S-1-5-21-3245419771-2977825503-3689396286-1001\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
HKU\S-1-5-18\...\Run: [] => [X]
ShellIconOverlayIdentifiers: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.14.0.dll [2017-02-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.14.0.dll [2017-02-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.14.0.dll [2017-02-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.14.0.dll [2017-02-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.14.0.dll [2017-02-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.14.0.dll [2017-02-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.14.0.dll [2017-02-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.14.0.dll [2017-02-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.14.0.dll [2017-02-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.14.0.dll [2017-02-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2016-11-30] (Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2016-11-30] (Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2016-11-30] (Google)
ShellIconOverlayIdentifiers: [###MegaShellExtPending] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\linji\AppData\Local\MEGAsync\ShellExtX64.dll [2014-05-01] ()
ShellIconOverlayIdentifiers: [###MegaShellExtSynced] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\linji\AppData\Local\MEGAsync\ShellExtX64.dll [2014-05-01] ()
ShellIconOverlayIdentifiers: [###MegaShellExtSyncing] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\linji\AppData\Local\MEGAsync\ShellExtX64.dll [2014-05-01] ()
ShellIconOverlayIdentifiers: [.QMDeskTopGCIcon] -> {B7667919-3765-4815-A66D-98A09BE662D6} => D:\Program Files (x86)\Tencent\QQPCMgr\12.1.18196.221\QMGCShellExt64.dll [2016-12-05] (Tencent)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-02-17] (AVAST Software)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-02-17] (AVAST Software)
ShellIconOverlayIdentifiers-x32: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.14.0.dll [2017-02-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.14.0.dll [2017-02-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.14.0.dll [2017-02-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.14.0.dll [2017-02-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.14.0.dll [2017-02-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.14.0.dll [2017-02-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.14.0.dll [2017-02-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.14.0.dll [2017-02-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.14.0.dll [2017-02-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.14.0.dll [2017-02-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [###MegaShellExtPending] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\linji\AppData\Local\MEGAsync\ShellExtX32.dll [2014-05-01] ()
ShellIconOverlayIdentifiers-x32: [###MegaShellExtSynced] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\linji\AppData\Local\MEGAsync\ShellExtX32.dll [2014-05-01] ()
ShellIconOverlayIdentifiers-x32: [###MegaShellExtSyncing] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\linji\AppData\Local\MEGAsync\ShellExtX32.dll [2014-05-01] ()
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SteelSeries Engine 3.lnk [2017-02-18]
ShortcutTarget: SteelSeries Engine 3.lnk -> C:\Program Files\SteelSeries\SteelSeries Engine 3\SteelSeriesEngine3.exe (SteelSeries ApS)
GroupPolicy: Restriction - Chrome <======= ATTENTION
GroupPolicy\User: Restriction <======= ATTENTION
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Hosts: Il y a plus d'un élément dans hosts. Voir la section Hosts de Addition.txt
Tcpip\Parameters: [DhcpNameServer] 109.88.203.3 62.197.111.140
Tcpip\..\Interfaces\{17ba6fc5-1a40-48e5-8ab1-8a2202243931}: [DhcpNameServer] 109.88.203.3 62.197.111.140
Tcpip\..\Interfaces\{5b538753-9434-445f-800a-b98693e59cf1}: [NameServer] 192.168.1.1
Tcpip\..\Interfaces\{5b538753-9434-445f-800a-b98693e59cf1}: [DhcpNameServer] 109.88.203.3 62.197.111.140
Internet Explorer:
==================
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\S-1-5-21-3245419771-2977825503-3689396286-1001\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://hao.360.cn/?a1004
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/?LinkID=617910&ResetID=131127203805158799&GUID=1D0F7D49-74F9-46B1-8533-69B17F0883F3
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://hp15-comm.msn.com/?pc=HRTE
HKU\S-1-5-21-3245419771-2977825503-3689396286-1001\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-3245419771-2977825503-3689396286-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://hp15-comm.msn.com/?pc=HRTE
SearchScopes: HKLM-x32 -> {008CC757-E25B-48CA-8F4B-783333AD9749} URL = hxxp://www.amazon.co.uk/s/ref=azs_osd_ieauk?ie=UTF-8&tag=hp-uk1-vsb-21&link%5Fcode=qs&index=aps&field-keywords={searchTerms}
SearchScopes: HKU\S-1-5-21-3245419771-2977825503-3689396286-1001 -> DefaultScope {3D8B4390-0AF1-440A-9B59-8F69A66B8CCB} URL = hxxp://www.google.com.hk/search?hl=zh-CN&q={searchTerms}
SearchScopes: HKU\S-1-5-21-3245419771-2977825503-3689396286-1001 -> {008CC757-E25B-48CA-8F4B-783333AD9749} URL = hxxp://www.amazon.co.uk/s/ref=azs_osd_ieauk?ie=UTF-8&tag=hp-uk1-vsb-21&link%5Fcode=qs&index=aps&field-keywords={searchTerms}
SearchScopes: HKU\S-1-5-21-3245419771-2977825503-3689396286-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?FORM=U453DF&PC=U453&q={searchTerms}&src=IE-SearchBox
SearchScopes: HKU\S-1-5-21-3245419771-2977825503-3689396286-1001 -> {3D8B4390-0AF1-440A-9B59-8F69A66B8CCB} URL = hxxp://www.google.com.hk/search?hl=zh-CN&q={searchTerms}
SearchScopes: HKU\S-1-5-21-3245419771-2977825503-3689396286-1001 -> {44177982-996D-4b79-B29F-5B60E13A5169} URL = hxxp://www.baidu.com/s?wd={searchTerms}&tn=98012088_2_dg&ch=1&ie=utf-8
SearchScopes: HKU\S-1-5-21-3245419771-2977825503-3689396286-1001 -> {A2B95EDB-B3B1-4E29-B10B-660928417E08} URL = hxxps://www.baidu.com/s?wd={searchTerms}&tn=92367411_hao_pg
SearchScopes: HKU\S-1-5-21-3245419771-2977825503-3689396286-1001 -> {B268CAB7-805A-4F09-909C-F46C47C6FE3C} URL =
SearchScopes: HKU\S-1-5-21-3245419771-2977825503-3689396286-1001 -> {BF9D931B-6F4F-40B0-5ED3-7DD8CCC0FB92} URL =
SearchScopes: HKU\S-1-5-21-3245419771-2977825503-3689396286-1001 -> {FFEBBF0A-C22C-4172-89FF-45215A135AC7} URL = hxxp://go.mail.ru/distib/ep/?q={SearchTerms}&product_id=%7B38C5D3A1-BF01-4834-AAF0-40325E8E9A0C%7D&gp=811041
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\Office16\OCHelper.dll [2016-12-28] (Microsoft Corporation)
BHO: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll [2016-02-23] (CANON INC.)
BHO: Pas de nom -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> Pas de fichier
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_121\bin\ssv.dll [2017-01-22] (Oracle Corporation)
BHO: 电脑管家网页防火墙 -> {7C260B4B-F7A0-40B5-B403-BEFCDC6A4C3B} -> D:\Program Files (x86)\Tencent\QQPCMgr\12.1.18196.221\TSWebMon64.dat [2016-12-05] (Tencent)
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2017-02-09] (Google Inc.)
BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2016-05-25] (Microsoft Corporation)
BHO: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\root\Office16\GROOVEEX.DLL [2016-12-28] (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_121\bin\jp2ssv.dll [2017-01-22] (Oracle Corporation)
BHO-x32: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2016-12-28] (Microsoft Corporation)
BHO-x32: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll [2016-02-23] (CANON INC.)
BHO-x32: Pas de nom -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> Pas de fichier
BHO-x32: Evernote extension -> {92EF2EAD-A7CE-4424-B0DB-499CF856608E} -> C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll [2016-10-31] (Evernote Corp., 305 Walnut Street, Redwood City, CA 94063)
BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2017-02-09] (Google Inc.)
BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2016-05-25] (Microsoft Corporation)
BHO-x32: QQMiniDL Helper Class -> {C9C7334B-5657-41e1-8F79-F6AACECA05F4} -> C:\Program Files (x86)\Common Files\Tencent\QQMiniDL\60\Browser\QQIEHelper01.dll [2014-07-15] (Tencent Technology (Shenzhen) Company Limited)
BHO-x32: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\GROOVEEX.DLL [2016-12-28] (Microsoft Corporation)
BHO-x32: AccountProtectBHO Class -> {DDD362CF-523B-4BC9-8FDC-58F93B6BC945} -> C:\Users\linji\AppData\Roaming\Tencent\QQ\QQAntiPhishing\AccountProtect.dll [2016-06-27] (Tencent)
BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2016-07-21] (HP Inc.)
BHO-x32: ͬ²½Ò»¼ü°²×°Ö§³Ö -> {F72C8153-7140-4FEE-8F69-CA4579D71195} -> C:\Program Files\Tongbu\Addin\tbIEAddin.dll [2016-08-22] (同步网络平台)
Toolbar: HKLM - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll [2016-02-23] (CANON INC.)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2017-02-09] (Google Inc.)
Toolbar: HKLM-x32 - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll [2016-02-23] (CANON INC.)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2017-02-09] (Google Inc.)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2016-12-28] (Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2016-12-28] (Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2016-12-28] (Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2016-12-28] (Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2016-12-28] (Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2016-12-28] (Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2016-12-28] (Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2016-12-28] (Microsoft Corporation)
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2016-05-25] (Microsoft Corporation)
Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2016-05-25] (Microsoft Corporation)
Edge:
======
Edge Extension: (Adblock Plus) -> 10_EyeoGmbHAdblockPlus_d55gg7py3s0m0 => C:\Program Files\WindowsApps\EyeoGmbH.AdblockPlus_0.9.9.0_neutral__d55gg7py3s0m0 [2016-12-08]
Edge Extension: (Please enter your password) -> EdgeExtension_28944StefanvdTurnOfftheLightsextension_pe3vc7q6mjj3e => C:\Program Files\WindowsApps\28944Stefanvd.TurnOfftheLightsextension_3.3.21.0_neutral__pe3vc7q6mjj3e [2017-01-23]
Edge Extension: (AdBlock) -> EdgeExtension_BetaFishAdBlock_c1wakc4j0nefm => C:\Program Files\WindowsApps\BetaFish.AdBlock_1.11.0.0_neutral__c1wakc4j0nefm [2017-02-17]
FireFox:
========
FF DefaultProfile: j3oumhm3.default
FF ProfilePath: C:\Users\linji\AppData\Roaming\Mozilla\Firefox\Profiles\j3oumhm3.default [2017-02-19]
FF NewTab: Mozilla\Firefox\Profiles\j3oumhm3.default -> about:newtab
FF DefaultSearchEngine: Mozilla\Firefox\Profiles\j3oumhm3.default -> Поиск@Mail.Ru
FF SearchEngineOrder.1: Mozilla\Firefox\Profiles\j3oumhm3.default -> Avast Search
FF SelectedSearchEngine: Mozilla\Firefox\Profiles\j3oumhm3.default -> Поиск@Mail.Ru
FF Homepage: Mozilla\Firefox\Profiles\j3oumhm3.default -> about:home
FF Keyword.URL: Mozilla\Firefox\Profiles\j3oumhm3.default -> hxxp://go.mail.ru/distib/ep/?product_id=%7BADCF60F9-00B0-493A-A573-65081B94035C%7D&gp=811037
FF Extension: (MEGA) - C:\Users\linji\AppData\Roaming\Mozilla\Firefox\Profiles\j3oumhm3.default\Extensions\firefox@mega.co.nz.xpi [2017-02-17]
FF Extension: (uBlock Origin) - C:\Users\linji\AppData\Roaming\Mozilla\Firefox\Profiles\j3oumhm3.default\Extensions\uBlock0@raymondhill.net.xpi [2017-02-05]
FF Extension: (YouTube High Definition) - C:\Users\linji\AppData\Roaming\Mozilla\Firefox\Profiles\j3oumhm3.default\Extensions\{7b1bf0b6-a1b9-42b0-b75d-252036438bdc}.xpi [2017-02-04]
FF Extension: (ReminderFox) - C:\Users\linji\AppData\Roaming\Mozilla\Firefox\Profiles\j3oumhm3.default\Extensions\{ada4b710-8346-4b82-8199-5de2b400a6ae}.xpi [2016-09-20]
FF Extension: (Video DownloadHelper) - C:\Users\linji\AppData\Roaming\Mozilla\Firefox\Profiles\j3oumhm3.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2017-01-03]
FF Extension: (Adblock Plus) - C:\Users\linji\AppData\Roaming\Mozilla\Firefox\Profiles\j3oumhm3.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2016-11-24]
FF SearchPlugin: C:\Users\linji\AppData\Roaming\Mozilla\Firefox\Profiles\j3oumhm3.default\searchplugins\avast-search.xml [2017-01-22]
FF SearchPlugin: C:\Users\linji\AppData\Roaming\Mozilla\Firefox\Profiles\j3oumhm3.default\searchplugins\google-avast.xml [2017-01-22]
FF SearchPlugin: C:\Users\linji\AppData\Roaming\Mozilla\Firefox\Profiles\j3oumhm3.default\searchplugins\mailru.xml [2017-02-04]
FF HKLM\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF48
FF Extension: (Avast SafePrice) - C:\Program Files\AVAST Software\Avast\SafePrice\FF48 [2017-02-17]
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF48
FF Extension: (Avast Online Security) - C:\Program Files\AVAST Software\Avast\WebRep\FF48 [2017-02-17]
FF HKLM-x32\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF48
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF48
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_24_0_0_194.dll [2017-01-22] ()
FF Plugin: @java.com/DTPlugin,version=11.121.2 -> C:\Program Files\Java\jre1.8.0_121\bin\dtplugin\npDeployJava1.dll [2017-01-22] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.121.2 -> C:\Program Files\Java\jre1.8.0_121\bin\plugin2\npjp2.dll [2017-01-22] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50901.0\npctrl.dll [2016-08-31] ( Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2016-12-28] (Microsoft Corporation)
FF Plugin: @tongbu.com/tongbu,version=0.1 -> C:\Program Files\Tongbu\Addin\npTongbuAddin.dll [2016-08-22] (同步网络平台)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWoW64\Macromed\Flash\NPSWF32_24_0_0_194.dll [2017-01-22] ()
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\WINDOWS\SysWOW64\Adobe\Director\np32dsw_1225195.dll [2016-09-20] (Adobe Systems, Inc.)
FF Plugin-x32: @baidu.com/YunWebDetectPlugin -> C:\Users\linji\AppData\Roaming\baidu\BaiduYunGuanjia\npYunWebDetect.dll [2016-12-29] (Baidu.com, Inc.)
FF Plugin-x32: @canon.com/EPPEX -> C:\Program Files (x86)\Canon\My Image Garden\AddOn\CIG\npmigfpi.dll [2015-10-29] (CANON INC.)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.68 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2015-04-21] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2015-04-21] (Intel Corporation)
FF Plugin-x32: @kingsfot.com/npkws -> d:\kinggsoft\kduu_ba\sp7\npkws.dll [Pas de fichier]
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2016-12-28] (Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50901.0\npctrl.dll [2016-08-31] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2016-12-28] (Microsoft Corporation)
FF Plugin-x32: @qq.com/npAndroidAssistant -> C:\Program Files (x86)\Common Files\Tencent\QQPhoneManager\2.0.201.3192\npQQPhoneManagerExt.dll [2014-05-30] (腾讯公司)
FF Plugin-x32: @qq.com/npqscall -> C:\Program Files (x86)\Common Files\Tencent\Npchrome\npactivex.dll [2016-02-17] (Tencent)
FF Plugin-x32: @qq.com/QQlive -> D:\QQLive\9.12.1291.0\npQQLive.dll [Pas de fichier]
FF Plugin-x32: @qq.com/QQMiniDLPlugin -> C:\Program Files (x86)\Common Files\Tencent\QQMiniDL\60\Browser\npXFMiniDLPlugin.dll [2014-04-25] (Tencent Technology (Shenzhen) Company Limited)
FF Plugin-x32: @qq.com/QQMusicHelper -> C:\Program Files (x86)\Tencent\QQMusicHelper\QQMusicHelper1224.19.47.41\npQQMusicHelper.dll [2015-12-18] (Tencent)
FF Plugin-x32: @qq.com/QQPCMgr -> D:\Program Files (x86)\Tencent\QQPCMgr\12.1.18196.221\npQMExtensionsMozilla.dll [2016-12-05] (Tencent Technology (Shenzhen) Company Limited)
FF Plugin-x32: @qq.com/QQPhotoDrawEx -> C:\Program Files (x86)\Tencent\Qzone\npQQPhotoDrawEx.dll [2013-08-13] ()
FF Plugin-x32: @qq.com/QzoneMusic -> C:\Program Files (x86)\Tencent\QQMusic\QzoneMusic\npQzoneMusic.dll [2016-02-26] (Tencent)
FF Plugin-x32: @qq.com/TXSSO -> C:\Program Files (x86)\Common Files\Tencent\TXSSO\1.2.5.14\Bin\npSSOAxCtrlForPTLogin.dll [2016-10-31] (Tencent)
FF Plugin-x32: @tencent.com/npQQMailWebKit,version=1.0.0.1 -> C:\Program Files (x86)\QQMailPlugin\npQQMailWebKit.dll [2013-04-25] (Tencent)
FF Plugin-x32: @tencent.com/nptxftnWebKit,version=1.0.0.1 -> C:\Program Files (x86)\QQMailPlugin\nptxftnWebKit.dll [2013-04-08] (Tencent Technology (Shenzhen) Company Limited)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2017-02-08] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2017-02-08] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.2.2 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll [2015-06-25] ()
FF Plugin-x32: @xunlei.com/DapCtrl -> C:\Users\Public\Thunder Network\XMP5\Addins\npDapCtrl.dll [2016-11-15] (ShenZhen Thunder Networking Technologies Ltd.)
FF Plugin-x32: @xunlei.com/npaplayer -> C:\Users\Public\Thunder Network\APlayer\codecs\npaplayer.dll [Pas de fichier]
FF Plugin-x32: @xunlei.com/npxluser -> C:\Program Files (x86)\Common Files\Thunder Network\UserAgent\npxluser2.0.2.3.dll [2016-12-05] (Thunder Networking Technologies,LTD)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2016-12-23] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-3245419771-2977825503-3689396286-1001: @1.qq.com/npqqwebgame -> C:\Users\linji\AppData\Roaming\Tencent\WebGamePlugin\1.0.4.3\npqqwebgame.dll [2015-10-20] ( )
FF Plugin HKU\S-1-5-21-3245419771-2977825503-3689396286-1001: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\linji\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2016-05-08] (Unity Technologies ApS)
FF Plugin HKU\S-1-5-21-3245419771-2977825503-3689396286-1001: @xunlei.com/npxluser -> C:\Program Files (x86)\Common Files\Thunder Network\UserAgent\npxluser2.0.2.3.dll [2016-12-05] (Thunder Networking Technologies,LTD)
Chrome:
=======
CHR HKU\S-1-5-21-3245419771-2977825503-3689396286-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [apdfllckaahabafndbhieahigkjlhalf] - C:\Users\linji\AppData\Local\Google\Drive\user_default\apdfllckaahabafndbhieahigkjlhalf_live.crx [2016-12-02]
CHR HKU\S-1-5-21-3245419771-2977825503-3689396286-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [bmkckgpgekmanipelfidlhmkfcjicion] - hxxps://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-3245419771-2977825503-3689396286-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [fkkcgfbgohboipdhliafmacjnhjbhmim] - hxxps://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-3245419771-2977825503-3689396286-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [ccfifbojenkenpkmnbnndeadpfdiffof] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [jkfpchpiljkaemlpmpebnglgkomamfeo] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [oelpkepjlgmehajehfeicfbjdiobdkfj] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [ojlcebdkbpjdpiligkdbbkdkfjmchbfd] - hxxps://clients2.google.com/service/update2/crx
==================== Services (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2016-09-22] (Apple Inc.)
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe [7142136 2017-02-17] (AVAST Software s.r.o.)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [262736 2017-02-17] (AVAST Software)
R2 avast! Firewall; C:\Program Files\AVAST Software\Avast\afwServ.exe [278784 2017-02-17] (AVAST Software)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [1465352 2017-01-13] ()
S3 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1364096 2016-05-25] (Microsoft Corporation)
S3 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1687680 2016-05-25] (Microsoft Corporation)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [3699904 2016-12-28] (Microsoft Corporation)
S3 cplspcon; C:\WINDOWS\system32\IntelCpHDCPSvc.exe [623072 2016-03-18] (Intel Corporation)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-02-17] (Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-02-17] (Dropbox, Inc.)
R2 DbxSvc; C:\WINDOWS\system32\DbxSvc.exe [46400 2017-02-07] (Dropbox, Inc.)
S2 dg597; C:\WINDOWS\SysWOW64\dg597\dg597.dll [125296 2016-12-05] ()
S2 DGPNPSEV; C:\Program Files (x86)\MyDrivers\DriverGenius\DgService.exe [392776 2016-12-05] (MyDrivers.com)
S3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [1467072 2016-08-29] (Disc Soft Ltd)
S3 EasyAntiCheat; C:\WINDOWS\SysWOW64\EasyAntiCheat.exe [389392 2016-11-30] (EasyAntiCheat Ltd)
U2 emexkl; C:\ProgramData\emexkl.dll [123704 2016-06-02] ()
R2 esifsvc; C:\WINDOWS\system32\Intel\DPTF\esif_uf.exe [2215168 2016-08-22] (Intel Corporation)
R2 ESRV_SVC_WILLAMETTE; C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\esrv_svc.exe [416408 2016-06-08] ()
R2 GamesAppIntegrationService; C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe [349728 2015-06-25] (WildTangent)
S4 Hamachi2Svc; C:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe [2621448 2016-09-13] (LogMeIn Inc.)
S2 HiPatchService; C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe [9728 2016-10-10] (Hi-Rez Studios) [Fichier non signé]
R3 HPSupportSolutionsFrameworkService; c:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [31776 2016-12-07] (HP Inc.)
R2 HpSvc; D:\DATA\ludashi\lpi\HpSvc.dll [252840 2017-01-13] ()
R2 HPWMISVC; C:\Program Files (x86)\HP\HP System Event\HPWMISVC.exe [606224 2016-01-11] (HP Inc.)
S2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [18856 2015-07-22] (Intel Corporation)
R2 igfxCUIService2.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [373728 2016-03-18] (Intel Corporation)
S3 ihelpermsgpushsvr; C:\Program Files (x86)\PP苹果助手3.0\ihelpermsgpushsvr.exe [261832 2016-02-16] (广州爱禾网络技术有限公司) [Fichier non signé]
R2 IJPLMSVC; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [387144 2016-02-04] ()
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [881152 2015-05-22] (Intel(R) Corporation)
S3 Intel(R) WiDi SAM; C:\Program Files (x86)\Intel Corporation\Intel WiDi\Intel(R) Software Asset Manager\bin\IntelSoftwareAssetManagerService.exe [19088 2015-06-23] (Intel Corporation)
S3 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [207648 2015-08-14] (Intel Corporation)
R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe [419248 2016-08-31] (LogMeIn, Inc.)
S3 npggsvc; C:\WINDOWS\SysWOW64\GameMon.des [4362656 2016-02-24] (INCA Internet Co., Ltd.) [Fichier non signé]
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [462784 2017-01-20] (NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [462784 2017-01-20] (NVIDIA Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [462784 2017-02-10] (NVIDIA Corporation)
R2 NvTelemetryContainer; C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe [425408 2017-01-20] (NVIDIA Corporation)
R2 QPCore; C:\Program Files (x86)\Common Files\Tencent\QQProtect\Bin\QQProtect.exe [115520 2017-02-17] (Tencent)
R2 QQPCRTP; D:\Program Files (x86)\Tencent\QQPCMgr\12.1.18196.221\QQPCRTP.exe [315920 2016-12-05] (Tencent)
S2 QQRepairFixSVC; C:\Program Files (x86)\Tencent\QQPCMGR\QQRepairFixSVC [155368 2017-02-17] ()
S3 RichVideo64; C:\Program Files\CyberLink\Shared files\RichVideo64.exe [389896 2014-04-14] ()
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [322560 2016-12-02] (Realtek Semiconductor)
S2 SecureLine; C:\Program Files\AVAST Software\SecureLine\VpnSvc.exe [592392 2016-05-23] ()
S2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [266872 2016-08-19] (Synaptics Incorporated)
R2 SystemUsageReportSvc_WILLAMETTE; C:\Program Files (x86)\Intel Driver Update Utility\SUR\SurSvc.exe [117400 2016-06-08] ()
S3 USER_ESRV_SVC_WILLAMETTE; C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\esrv_svc.exe [416408 2016-06-08] ()
S3 VSStandardCollectorService140; C:\Program Files (x86)\Microsoft Visual Studio 14.0\Team Tools\DiagnosticsHub\Collector\StandardCollector.Service.exe [108776 2016-07-26] (Microsoft Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [347328 2016-07-16] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103720 2016-07-16] (Microsoft Corporation)
R2 ibtsiva; %SystemRoot%\system32\ibtsiva [X]
===================== Pilotes (Avec liste blanche) ======================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R1 aswbidsdriver; C:\WINDOWS\system32\drivers\aswbidsdrivera.sys [309784 2017-02-17] (AVAST Software s.r.o.)
R0 aswbidsh; C:\WINDOWS\system32\drivers\aswbidsha.sys [189768 2017-02-17] (AVAST Software s.r.o.)
R0 aswblog; C:\WINDOWS\system32\drivers\aswbloga.sys [334600 2017-02-17] (AVAST Software s.r.o.)
R0 aswbuniv; C:\WINDOWS\system32\drivers\aswbuniva.sys [48528 2017-02-17] (AVAST Software s.r.o.)
S3 aswHwid; C:\WINDOWS\system32\drivers\aswHwid.sys [38296 2017-02-17] (AVAST Software)
R1 aswKbd; C:\WINDOWS\system32\drivers\aswKbd.sys [32088 2017-02-17] (AVAST Software)
R2 aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [126088 2017-02-17] (AVAST Software)
R1 aswNetSec; C:\WINDOWS\system32\drivers\aswNetSec.sys [456456 2017-02-17] (AVAST Software)
R1 aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [100640 2017-02-17] (AVAST Software)
R0 aswRvrt; C:\WINDOWS\system32\drivers\aswRvrt.sys [74680 2017-02-17] (AVAST Software)
R1 aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [991496 2017-02-17] (AVAST Software)
R1 aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [547904 2017-02-17] (AVAST Software)
R2 aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [162528 2017-02-17] (AVAST Software)
S3 aswTap; C:\WINDOWS\System32\drivers\aswTap.sys [44640 2014-09-05] (The OpenVPN Project)
R0 aswVmm; C:\WINDOWS\system32\drivers\aswVmm.sys [337080 2017-02-17] (AVAST Software)
R0 bootsafe; C:\WINDOWS\System32\Drivers\bootsafe64_ev.sys [58096 2017-01-22] (Kingsoft Corporation)
R3 clwvd6; C:\WINDOWS\system32\DRIVERS\clwvd6.sys [41704 2013-10-29] (CyberLink Corporation)
R2 ComputerZLock; D:\DATA\ludashi\ComputerZLock_x64.sys [45504 2017-01-13] (www.ludashi.com)
R3 ComputerZ_x64; D:\DATA\ludashi\ComputerZ_x64.sys [49152 2016-06-27] (ludashi.com)
R2 DgSafe; C:\WINDOWS\system32\drivers\DgSafe.sys [419592 2017-01-22] (MyDrivers.com)
R2 DgSafe; C:\WINDOWS\SysWOW64\drivers\DgSafe.sys [508656 2016-03-06] (MyDrivers.com)
R3 dptf_acpi; C:\WINDOWS\System32\drivers\dptf_acpi.sys [71232 2016-08-22] (Intel Corporation)
R3 dptf_cpu; C:\WINDOWS\System32\drivers\dptf_cpu.sys [66624 2016-08-22] (Intel Corporation)
R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [30264 2016-09-17] (Disc Soft Ltd)
R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [47672 2016-09-17] (Disc Soft Ltd)
R3 esif_lf; C:\WINDOWS\system32\DRIVERS\esif_lf.sys [350272 2016-08-22] (Intel Corporation)
R3 Hamachi; C:\WINDOWS\System32\drivers\Hamdrv.sys [45680 2016-05-04] (LogMeIn Inc.)
R3 ibtusb; C:\WINDOWS\system32\DRIVERS\ibtusb.sys [249616 2016-10-19] (Intel Corporation)
R0 kavbootc; C:\WINDOWS\System32\drivers\kavbootc64.sys [55384 2017-01-22] (Kingsoft Corporation)
R3 ksapi64; C:\WINDOWS\system32\drivers\ksapi64.sys [79000 2017-01-22] (Kingsoft Corporation)
S3 LDSBoxDrv; D:\LDSGameMaster\LDSGamePlayerPK\vbox\LDSBoxDrv.sys [263400 2017-01-16] (Ludashi Corporation)
R3 mt7612US; C:\WINDOWS\System32\drivers\mt7612US.sys [377864 2015-12-09] (MediaTek Inc.)
S3 MyDrivers0_0_1; C:\Program Files (x86)\MyDrivers\DriverGenius\MyDrivers64.sys [33024 2017-01-22] (MyDrivers.com)
S3 NetAdapterCx; C:\WINDOWS\System32\drivers\NetAdapterCx.sys [90624 2016-07-16] ()
U5 Netwtw02; C:\Windows\System32\Drivers\Netwtw02.sys [6731520 2016-02-17] (Intel Corporation)
R3 Netwtw04; C:\WINDOWS\System32\drivers\Netwtw04.sys [7308560 2016-09-13] (Intel Corporation)
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nvhmi.inf_amd64_5603cb253b01e5cd\nvlddmkm.sys [14516664 2017-02-10] (NVIDIA Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [27584 2017-01-20] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [47672 2017-01-06] (NVIDIA Corporation)
R3 nvvhci; C:\WINDOWS\System32\drivers\nvvhci.sys [57792 2017-01-20] (NVIDIA Corporation)
R1 QMUdisk; D:\Program Files (x86)\Tencent\QQPCMgr\12.1.18196.221\QMUdisk64_ev.sys [192248 2017-01-11] (Tencent)
R2 QQSysMonX64; D:\Program Files (x86)\Tencent\QQPCMgr\12.1.18196.221\QQSysMonX64_EV.sys [154352 2016-12-05] (电脑管家)
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [946696 2016-11-21] (Realtek )
S3 RTSPER; C:\WINDOWS\system32\DRIVERS\RtsPer.sys [761560 2015-09-18] (Realsil Semiconductor Corporation)
R3 semav6msr64; C:\WINDOWS\system32\drivers\semav6msr64.sys [21984 2015-06-04] ()
R3 SensorsSimulatorDriver; C:\WINDOWS\System32\drivers\WUDFRd.sys [216064 2016-07-16] (Microsoft Corporation)
S3 SGXEPC; C:\WINDOWS\System32\drivers\sgx_driver.sys [54768 2015-06-19] (Windows (R) Win 7 DDK provider)
S3 SmbDrv; C:\WINDOWS\System32\drivers\Smb_driver_AMDASF.sys [33448 2015-07-28] (Synaptics Incorporated)
R3 SmbDrvI; C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys [72824 2016-08-19] (Synaptics Incorporated)
R3 softaal; D:\Program Files (x86)\Tencent\QQPCMgr\12.1.18196.221\softaal64_ev.sys [44272 2016-12-05] (Tencent)
R3 ssdevfactory; C:\WINDOWS\System32\drivers\ssdevfactory.sys [41824 2016-11-03] (SteelSeries ApS)
R3 TAOAccelerator; C:\WINDOWS\system32\Drivers\TAOAccelerator64_ev.sys [99664 2016-12-05] (Tencent)
R2 TAOKernelDriver; C:\WINDOWS\system32\Drivers\TAOKernelEx64_ev.sys [143600 2016-12-05] (Tencent Technology(Shenzhen) Company Limited)
R3 TcHardWare; D:\Program Files (x86)\Tencent\QQPCMgr\12.1.18196.221\QQPCHW-x64_ev.sys [27888 2016-12-05] (Tencent)
S3 TesSafe; C:\WINDOWS\system32\TesSafe.sys [1101024 2016-10-01] (TENCENT)
R1 TFsFlt; C:\WINDOWS\System32\Drivers\TFsFltX64_ev.sys [97008 2016-12-05] (电脑管家)
S1 TSDefenseBt; D:\Program Files (x86)\Tencent\QQPCMgr\12.1.18196.221\TSDefenseBT64.sys [28984 2016-12-05] (Tencent)
R2 tsnethlpx64; D:\Program Files (x86)\Tencent\QQPCMgr\12.1.18196.221\TsNetHlpX64_ev.sys [57584 2016-12-05] ()
R1 TSSysKit; D:\Program Files (x86)\Tencent\QQPCMgr\12.1.18196.221\TSSysKit64_EV.sys [96504 2016-12-05] (电脑管家)
S3 VBoxUSBMon; D:\LDSGameMaster\LDSGamePlayerPK\vbox\VBoxUSBMon.sys [136936 2017-01-16] (Ludashi Corporation)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [44056 2016-07-16] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [290144 2016-07-16] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [123232 2016-07-16] (Microsoft Corporation)
R3 WirelessButtonDriver64; C:\WINDOWS\System32\drivers\WirelessButtonDriver64.sys [30544 2015-08-12] (HP)
S3 dbx; system32\DRIVERS\dbx.sys [X]
U4 TimeBroker; pas de ImagePath
S1 XLGuard; system32\drivers\XLGuard.sys [X]
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
NETSVCx32: HpSvc -> C:\DATA\ludashi\lpi\HpSvc.dll ==> Pas de fichier
NETSVCx32: dg597 -> C:\WINDOWS\SysWOW64\dg597\dg597.dll ()
==================== Un mois - Créés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2017-02-19 21:45 - 2017-02-19 21:46 - 00048685 _____ C:\Users\linji\Downloads\FRST.txt
2017-02-19 21:45 - 2017-02-19 21:45 - 00000000 ____D C:\FRST
2017-02-19 21:44 - 2017-02-19 21:44 - 02422784 _____ (Farbar) C:\Users\linji\Downloads\FRST64.exe
2017-02-19 19:20 - 2017-02-19 19:20 - 16777216 _____ (The qBittorrent project) C:\Users\linji\Downloads\qbittorrent_3.3.10_setup.exe
2017-02-19 19:20 - 2017-02-19 19:20 - 00029977 _____ C:\Users\linji\Downloads\grimm-s05e02-french-hdtv.torrent
2017-02-19 19:20 - 2017-02-19 19:20 - 00029977 _____ C:\Users\linji\Downloads\grimm-s05e02-french-hdtv (1).torrent
2017-02-19 14:39 - 2017-02-19 15:24 - 00000000 ____D C:\Users\linji\AppData\Local\PianoFacile - Le clavier
2017-02-19 14:39 - 2017-02-19 14:39 - 05973844 _____ C:\Users\linji\Downloads\PFLC - Installeur.zip
2017-02-19 14:37 - 2017-02-19 14:37 - 01189943 _____ C:\Users\linji\Downloads\freepiano (1).rar.g93m1hf.partial
2017-02-19 14:37 - 2017-02-19 14:37 - 01185832 _____ C:\Users\linji\Downloads\freepiano.rar.sdsfwc1.partial
2017-02-19 14:32 - 2017-02-19 17:32 - 00000000 ____D C:\Users\linji\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pvm
2017-02-19 14:31 - 2017-02-19 14:31 - 02260619 _____ C:\Users\linji\Downloads\Piano-Virtuel-Midi-setup-6.1.exe
2017-02-18 19:40 - 2017-02-19 19:21 - 00000000 ____D C:\Users\linji\AppData\Roaming\steelseries-engine-3-client
2017-02-18 19:40 - 2017-02-18 19:41 - 00000000 ____D C:\ProgramData\SteelSeries
2017-02-18 19:40 - 2017-02-18 19:41 - 00000000 ____D C:\Program Files\SteelSeries
2017-02-18 19:40 - 2017-02-18 19:40 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SteelSeries
2017-02-18 19:39 - 2017-02-18 19:39 - 81582144 _____ C:\Users\linji\Downloads\SteelSeriesEngine3.9.10Setup.exe
2017-02-18 18:25 - 2017-02-18 18:25 - 00000044 _____ C:\Users\linji\Desktop\teamspeak.txt
2017-02-18 18:21 - 2017-02-18 18:21 - 00000000 ____D C:\Users\linji\AppData\Local\TeamSpeak 3
2017-02-18 18:21 - 2017-02-18 18:21 - 00000000 ____D C:\Users\linji\.TeamSpeak 3
2017-02-18 18:21 - 2017-02-18 18:21 - 00000000 ____D C:\Users\linji\.QtWebEngineProcess
2017-02-18 18:20 - 2017-02-19 01:51 - 01388448 _____ C:\Users\Public\ASR.dat
2017-02-17 23:38 - 2017-02-17 23:38 - 00220176 _____ C:\WINDOWS\QEK4aF56EpsWy.Lbs3r
2017-02-17 23:32 - 2017-02-17 23:32 - 00000000 ____D C:\WINDOWS\LastGood
2017-02-17 23:31 - 2017-02-10 03:33 - 40192056 _____ C:\WINDOWS\system32\nvcompiler.dll
2017-02-17 23:31 - 2017-02-10 03:33 - 35272760 _____ C:\WINDOWS\SysWOW64\nvcompiler.dll
2017-02-17 23:31 - 2017-02-10 03:33 - 34979384 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglv64.dll
2017-02-17 23:31 - 2017-02-10 03:33 - 28242488 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglv32.dll
2017-02-17 23:31 - 2017-02-10 03:33 - 19007016 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvopencl.dll
2017-02-17 23:31 - 2017-02-10 03:33 - 14674896 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvopencl.dll
2017-02-17 23:31 - 2017-02-10 03:33 - 11122728 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2017-02-17 23:31 - 2017-02-10 03:33 - 11019704 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvptxJitCompiler.dll
2017-02-17 23:31 - 2017-02-10 03:33 - 08990072 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvptxJitCompiler.dll
2017-02-17 23:31 - 2017-02-10 03:33 - 03168192 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2017-02-17 23:31 - 2017-02-10 03:33 - 01983424 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6437866.dll
2017-02-17 23:31 - 2017-02-10 03:33 - 01589696 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6437866.dll
2017-02-17 23:31 - 2017-02-10 03:33 - 01052096 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2017-02-17 23:31 - 2017-02-10 03:33 - 00991288 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2017-02-17 23:31 - 2017-02-10 03:33 - 00959424 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2017-02-17 23:31 - 2017-02-10 03:33 - 00946456 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncMFTH264.dll
2017-02-17 23:31 - 2017-02-10 03:33 - 00910784 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2017-02-17 23:31 - 2017-02-10 03:33 - 00721952 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncMFTH264.dll
2017-02-17 23:31 - 2017-02-10 03:33 - 00687224 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvfatbinaryLoader.dll
2017-02-17 23:31 - 2017-02-10 03:33 - 00609728 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll
2017-02-17 23:31 - 2017-02-10 03:33 - 00573448 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2017-02-17 23:31 - 2017-02-10 03:33 - 00499136 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll
2017-02-17 23:25 - 2017-02-17 23:25 - 00000000 ____D C:\ProgramData\SWCUTemp
2017-02-17 23:24 - 2017-02-17 23:24 - 00000000 ____D C:\WINDOWS\Panther
2017-02-17 23:15 - 2017-02-17 23:15 - 00003994 _____ C:\WINDOWS\System32\Tasks\Avast Emergency Update
2017-02-17 23:14 - 2017-02-17 23:14 - 00398408 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2017-02-17 23:14 - 2017-02-17 23:14 - 00334600 _____ (AVAST Software s.r.o.) C:\WINDOWS\system32\Drivers\aswbloga.sys
2017-02-17 23:14 - 2017-02-17 23:14 - 00309784 _____ (AVAST Software s.r.o.) C:\WINDOWS\system32\Drivers\aswbidsdrivera.sys
2017-02-17 23:14 - 2017-02-17 23:14 - 00189768 _____ (AVAST Software s.r.o.) C:\WINDOWS\system32\Drivers\aswbidsha.sys
2017-02-17 23:14 - 2017-02-17 23:14 - 00048528 _____ (AVAST Software s.r.o.) C:\WINDOWS\system32\Drivers\aswbuniva.sys
2017-02-17 16:55 - 2017-02-17 23:12 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2017-02-17 16:55 - 2017-02-17 16:55 - 00001239 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2017-02-17 16:55 - 2017-02-17 16:55 - 00001227 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2017-02-17 16:55 - 2017-02-17 16:55 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2017-02-17 16:50 - 2017-02-17 16:50 - 00245616 _____ C:\Users\linji\Downloads\Firefox Setup Stub 51.0.1.exe
2017-02-17 16:21 - 2017-02-19 17:09 - 00000000 ____D C:\Users\linji\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ÌÚѶÈí¼þ
2017-02-16 22:09 - 2017-02-16 22:14 - 00000000 ____D C:\Users\linji\AppData\Roaming\discord
2017-02-16 22:09 - 2017-02-16 22:09 - 52553728 _____ (Hammer & Chisel, Inc.) C:\Users\linji\Downloads\DiscordSetup.exe
2017-02-16 22:09 - 2017-02-16 22:09 - 00002244 _____ C:\Users\linji\Desktop\Discord.lnk
2017-02-16 22:09 - 2017-02-16 22:09 - 00000000 ____D C:\Users\linji\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Hammer & Chisel, Inc
2017-02-16 22:09 - 2017-02-16 22:09 - 00000000 ____D C:\Users\linji\AppData\Local\SquirrelTemp
2017-02-16 22:09 - 2017-02-16 22:09 - 00000000 ____D C:\Users\linji\AppData\Local\Discord
2017-02-09 22:43 - 2017-02-09 22:43 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2017-02-09 22:42 - 2017-02-09 22:42 - 00000000 ____D C:\Users\Default\AppData\Local\Google
2017-02-09 22:42 - 2017-02-09 22:42 - 00000000 ____D C:\Users\Default User\AppData\Local\Google
2017-02-07 22:05 - 2017-02-08 13:06 - 00000000 ___HD C:\ProgramData\CanonIJMIG
2017-02-07 22:04 - 2017-02-07 22:04 - 00000000 ___HD C:\ProgramData\CanonIJEGV
2017-02-07 22:04 - 2017-02-07 22:04 - 00000000 ____D C:\Users\linji\Desktop\Print
2017-02-07 22:03 - 2017-02-07 22:03 - 00000000 ___HD C:\ProgramData\CanonIJMyPrinter
2017-02-07 22:01 - 2017-02-15 15:59 - 00000000 ____D C:\Users\linji\AppData\Roaming\Canon
2017-02-07 22:01 - 2017-02-07 22:01 - 00000000 ___HD C:\ProgramData\CanonIJQuickMenu
2017-02-07 21:59 - 2017-02-07 21:59 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Enregistrement utilisateur de Canon MG5700 series
2017-02-07 21:58 - 2017-02-07 21:58 - 00000000 ____D C:\Users\linji\AppData\LocalLow\Canon Easy-WebPrint EX2
2017-02-07 21:58 - 2017-02-07 21:58 - 00000000 ____D C:\Users\linji\AppData\LocalLow\Canon Easy-WebPrint EX
2017-02-07 21:56 - 2017-02-07 21:58 - 00000000 ____D C:\Program Files\Canon
2017-02-07 21:56 - 2017-02-07 21:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon MG5700 series Manual
2017-02-07 21:53 - 2017-02-07 21:58 - 00000000 ____D C:\ProgramData\CanonIJWSpt
2017-02-07 21:52 - 2017-02-07 21:58 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon Utilities
2017-02-07 21:52 - 2017-02-07 21:52 - 00000000 ____D C:\ProgramData\Canon IJ Network Tool
2017-02-07 21:52 - 2015-01-29 11:22 - 00353792 _____ (CANON INC.) C:\WINDOWS\SysWOW64\CNC_CSL.dll
2017-02-07 21:52 - 2014-12-02 16:01 - 00096256 _____ C:\WINDOWS\SysWOW64\CNC178ED.TBL
2017-02-07 21:52 - 2008-08-25 18:02 - 00015872 _____ (CANON INC.) C:\WINDOWS\SysWOW64\CNHMCA.dll
2017-02-07 21:51 - 2017-02-07 21:51 - 00000000 ___HD C:\ProgramData\CanonBJ
2017-02-07 21:51 - 2017-02-07 21:51 - 00000000 ____D C:\WINDOWS\system32\STRING
2017-02-07 21:51 - 2015-03-17 08:51 - 00375296 _____ (CANON INC.) C:\WINDOWS\system32\CNMN6PPM.DLL
2017-02-07 21:51 - 2015-03-17 08:51 - 00039424 _____ (CANON INC.) C:\WINDOWS\system32\CNMN6UI.DLL
2017-02-07 21:51 - 2015-03-17 08:50 - 00380928 _____ (CANON INC.) C:\WINDOWS\SysWOW64\CNMNPPM.DLL
2017-02-07 21:48 - 2015-03-15 05:00 - 00406528 _____ (CANON INC.) C:\WINDOWS\system32\CNMLMCS.DLL
2017-02-07 21:47 - 2017-02-07 21:48 - 00000000 ___HD C:\Program Files\CanonBJ
2017-02-07 21:46 - 2017-02-07 21:46 - 00010256 _____ C:\WINDOWS\994.HCj4Y
2017-02-07 21:25 - 2017-02-07 21:25 - 00000000 ___HD C:\ProgramData\CanonIJETV
2017-02-07 21:07 - 2017-02-07 22:23 - 00000000 ____D C:\ProgramData\CanonIJPLM
2017-02-07 21:07 - 2017-02-07 21:07 - 00000000 ____D C:\ProgramData\Canon
2017-02-07 21:05 - 2017-02-07 22:01 - 00000000 ____D C:\Program Files (x86)\Canon
2017-02-07 05:38 - 2017-02-07 05:38 - 00046400 _____ (Dropbox, Inc.) C:\WINDOWS\system32\DbxSvc.exe
2017-02-07 05:38 - 2017-02-07 05:38 - 00046192 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-stable.sys
2017-02-07 05:38 - 2017-02-07 05:38 - 00046192 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-dev.sys
2017-02-07 05:38 - 2017-02-07 05:38 - 00046192 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-canary.sys
2017-02-05 05:36 - 2017-02-05 05:36 - 00000000 ____D C:\WINDOWS\System32\Tasks\AVAST Software
2017-02-05 01:26 - 2017-02-05 01:26 - 00000000 ____D C:\Users\linji\AppData\Roaming\Malwarebytes
2017-02-05 01:26 - 2017-02-05 01:26 - 00000000 ____D C:\ProgramData\Malwarebytes
2017-02-05 01:19 - 2017-02-05 01:19 - 00000000 ____D C:\Users\linji\AppData\Roaming\Mirillis
2017-02-05 01:19 - 2017-02-05 01:19 - 00000000 ____D C:\Users\linji\AppData\Local\Mirillis
2017-02-05 01:19 - 2017-02-05 01:19 - 00000000 ____D C:\ProgramData\Mirillis
2017-02-05 01:19 - 2017-02-05 01:19 - 00000000 ____D C:\Action!
2017-02-05 01:18 - 2017-02-05 01:18 - 00002119 _____ C:\Users\Public\Desktop\Action!.lnk
2017-02-05 01:18 - 2017-02-05 01:18 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mirillis
2017-02-05 01:18 - 2017-02-05 01:18 - 00000000 ____D C:\Program Files (x86)\Mirillis
2017-02-05 01:05 - 2017-02-05 01:05 - 00000000 ____D C:\Users\linji\AppData\Local\ScreenCapture
2017-02-05 01:05 - 2017-02-05 01:05 - 00000000 ____D C:\ProgramData\Movavi
2017-02-05 01:04 - 2017-02-05 01:04 - 00004096 _____ C:\ProgramData\nakuvtjg.ewu
2017-02-05 01:04 - 2017-02-05 01:04 - 00000000 ____D C:\ProgramData\Movavi Screen Capture 8
2017-02-04 10:53 - 2017-02-04 10:53 - 00000000 ____D C:\Users\linji\AppData\LocalLow\Unity
2017-02-04 10:53 - 2017-02-04 10:53 - 00000000 ____D C:\Users\linji\AppData\Local\Unity
2017-02-04 10:52 - 2017-02-04 12:33 - 00000000 ____D C:\Users\linji\AppData\Local\Mail.Ru
2017-02-04 10:52 - 2017-02-04 11:53 - 00000000 ____D C:\ProgramData\Mail.Ru
2017-01-28 10:53 - 2017-01-28 10:53 - 00003486 _____ C:\WINDOWS\System32\Tasks\{0B2F2E8D-1F85-4B81-BC20-8C4DECED17BB}
2017-01-28 09:53 - 2017-01-28 09:54 - 00000000 ____D C:\Users\linji\AppData\Local\midori
2017-01-28 09:53 - 2017-01-28 09:53 - 00000000 ____D C:\Users\linji\AppData\Local\webkit
2017-01-28 09:53 - 2017-01-28 09:53 - 00000000 ____D C:\Users\linji\AppData\Local\fontconfig
2017-01-28 09:53 - 2017-01-28 09:53 - 00000000 ____D C:\Users\linji\.dbus-keyrings
2017-01-28 09:36 - 2017-01-28 09:36 - 00000000 ____D C:\Users\linji\AppData\LocalLow\MangaGamer
2017-01-26 19:24 - 2017-01-26 19:24 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2017-01-26 19:24 - 2017-01-26 19:24 - 00000000 ____D C:\Program Files\iTunes
2017-01-26 19:24 - 2017-01-26 19:24 - 00000000 ____D C:\Program Files\iPod
2017-01-26 19:22 - 2016-12-21 08:08 - 00142848 _____ (Microsoft Corporation) C:\WINDOWS\system32\poqexec.exe
2017-01-26 19:22 - 2016-12-21 05:44 - 00120320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\poqexec.exe
2017-01-26 01:13 - 2017-01-26 01:13 - 00103936 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-1-0-39-1.exe
2017-01-26 01:12 - 2017-01-26 01:12 - 00326656 _____ C:\WINDOWS\SysWOW64\vulkan-1-1-0-39-1.dll
2017-01-26 01:09 - 2017-01-26 01:09 - 00322560 _____ C:\WINDOWS\system32\vulkan-1-1-0-39-1.dll
2017-01-26 01:09 - 2017-01-26 01:09 - 00118272 _____ C:\WINDOWS\system32\vulkaninfo-1-1-0-39-1.exe
2017-01-24 16:51 - 2017-02-10 03:33 - 09305984 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2017-01-24 16:51 - 2017-02-10 03:33 - 02717752 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2017-01-24 16:51 - 2017-02-10 03:33 - 00447984 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2017-01-24 16:51 - 2017-01-20 17:38 - 09308896 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\SET40EE.tmp
2017-01-24 16:51 - 2017-01-20 17:38 - 02715072 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\SET4267.tmp
2017-01-24 16:51 - 2017-01-20 17:38 - 01985080 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6437849.dll
2017-01-24 16:51 - 2017-01-20 17:38 - 01591352 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6437849.dll
2017-01-24 16:51 - 2017-01-20 17:38 - 00447800 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\SET35FC.tmp
2017-01-24 16:51 - 2017-01-20 17:38 - 00000669 _____ C:\WINDOWS\SysWOW64\nv-vk32.json
2017-01-24 16:51 - 2017-01-20 17:38 - 00000669 _____ C:\WINDOWS\system32\nv-vk64.json
2017-01-22 21:50 - 2017-01-22 21:39 - 00114776 _____ (Kingsoft Corporation) C:\WINDOWS\system32\Drivers\ksapi.sys
2017-01-22 21:50 - 2017-01-22 21:39 - 00033024 _____ (MyDrivers.com) C:\WINDOWS\system32\Drivers\mydrivers64.sys
2017-01-22 21:50 - 2017-01-22 21:39 - 00033024 _____ (MyDrivers.com) C:\WINDOWS\system32\Drivers\mydrivers.sys
2017-01-22 21:50 - 2017-01-22 21:38 - 00063136 _____ (Kingsoft Corporation) C:\WINDOWS\system32\Drivers\kavbootc64_ev.sys
2017-01-22 21:50 - 2017-01-22 21:38 - 00053912 _____ (Kingsoft Corporation) C:\WINDOWS\system32\Drivers\kavbootc_ev.sys
2017-01-22 21:50 - 2017-01-22 21:38 - 00046168 _____ (Kingsoft Corporation) C:\WINDOWS\system32\Drivers\kavbootc.sys
2017-01-22 21:50 - 2017-01-22 21:36 - 00058096 _____ (Kingsoft Corporation) C:\WINDOWS\system32\Drivers\bootsafe64_ev.sys
2017-01-22 21:50 - 2017-01-22 21:36 - 00057072 _____ (Kingsoft Corporation) C:\WINDOWS\system32\Drivers\bootsafe_ev.sys
2017-01-22 21:50 - 2017-01-22 21:36 - 00051800 _____ (Kingsoft Corporation) C:\WINDOWS\system32\Drivers\bootsafe.sys
2017-01-22 17:38 - 2017-02-18 23:25 - 00004034 _____ C:\WINDOWS\System32\Tasks\SafeZone scheduled Autoupdate 1485103094
2017-01-22 17:38 - 2017-02-18 23:25 - 00001095 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast SafeZone Browser.lnk
2017-01-22 17:38 - 2017-02-17 23:14 - 00032088 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
2017-01-22 17:38 - 2017-01-22 17:38 - 00001095 _____ C:\Users\Public\Desktop\Avast SafeZone Browser.lnk
2017-01-22 17:37 - 2017-01-22 17:37 - 00001986 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Premium.lnk
2017-01-22 17:36 - 2017-02-17 23:15 - 00337080 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswvmm.sys
2017-01-22 17:36 - 2017-02-17 23:14 - 00991496 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2017-01-22 17:36 - 2017-02-17 23:14 - 00547904 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2017-01-22 17:36 - 2017-02-17 23:14 - 00456456 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswNetSec.sys
2017-01-22 17:36 - 2017-02-17 23:14 - 00337080 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswvmm.sys.148736971595304
2017-01-22 17:36 - 2017-02-17 23:14 - 00162528 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
2017-01-22 17:36 - 2017-02-17 23:14 - 00126088 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2017-01-22 17:36 - 2017-02-17 23:14 - 00100640 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2017-01-22 17:36 - 2017-02-17 23:14 - 00074680 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2017-01-22 17:36 - 2017-02-17 23:14 - 00038296 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswHwid.sys
2017-01-22 17:36 - 2017-01-22 17:36 - 00053208 _____ (AVAST Software) C:\WINDOWS\avastSS.scr
2017-01-22 17:36 - 2017-01-22 17:36 - 00044952 _____ () C:\WINDOWS\system32\Drivers\staport.sys
2017-01-21 14:40 - 2017-01-22 17:37 - 00000000 ____D C:\Users\linji\.LDSBoxHypervisorGlobal
2017-01-21 14:39 - 2017-01-21 14:39 - 00000000 ____D C:\Users\linji\AppData\Roaming\LDSGameMaster
2017-01-21 14:39 - 2017-01-21 14:39 - 00000000 ____D C:\Users\linji\AppData\Local\LDSGameMaster
2017-01-21 14:39 - 2017-01-21 14:39 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\抢红包助手
==================== Un mois - Modifiés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2017-02-19 21:27 - 2016-11-22 07:56 - 00000000 ____D C:\WINDOWS\system32\SleepStudy
2017-02-19 21:17 - 2016-10-21 13:58 - 00000052 _____ C:\Users\linji\AppData\Roaming\localcache.dat
2017-02-19 21:17 - 2016-10-21 13:58 - 00000052 _____ C:\Users\linji\AppData\Local\masm71.dat
2017-02-19 19:25 - 2017-01-03 02:05 - 00000000 ____D C:\Users\linji\AppData\Roaming\Spotify
2017-02-19 19:25 - 2017-01-03 02:05 - 00000000 ____D C:\Users\linji\AppData\Local\Spotify
2017-02-19 19:24 - 2016-02-28 10:01 - 00000000 ____D C:\Users\linji\AppData\Roaming\vlc
2017-02-19 19:23 - 2016-07-15 23:29 - 00000000 ____D C:\Users\linji\AppData\Roaming\qBittorrent
2017-02-19 19:23 - 2016-02-17 17:02 - 00000000 ____D C:\Program Files (x86)\Steam
2017-02-19 19:17 - 2016-07-16 12:45 - 00000000 ____D C:\WINDOWS\INF
2017-02-19 17:37 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\AppReadiness
2017-02-19 17:12 - 2016-07-12 15:27 - 00000000 ____D C:\Program Files (x86)\LDSGameCenter
2017-02-19 14:11 - 2016-02-18 03:42 - 00000000 ____D C:\ProgramData\NVIDIA
2017-02-18 20:57 - 2016-10-04 15:23 - 00000000 ____D C:\Users\linji\AppData\Local\Battle.net
2017-02-18 20:52 - 2016-10-04 15:20 - 00000000 ____D C:\Program Files (x86)\Battle.net
2017-02-18 18:30 - 2016-05-06 12:40 - 00000000 ____D C:\Users\linji\AppData\Roaming\TS3Client
2017-02-18 18:30 - 2016-02-18 17:16 - 00000000 ____D C:\Users\linji\AppData\Local\ElevatedDiagnostics
2017-02-18 18:21 - 2016-11-22 07:59 - 00000000 ____D C:\Users\linji
2017-02-18 18:21 - 2016-05-06 12:40 - 00000000 ____D C:\Users\linji\AppData\Local\TeamSpeak 3 Client
2017-02-18 17:22 - 2016-11-22 07:59 - 03120248 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2017-02-18 17:22 - 2016-07-16 23:40 - 01344042 _____ C:\WINDOWS\system32\perfh00C.dat
2017-02-18 17:22 - 2016-07-16 23:40 - 00335234 _____ C:\WINDOWS\system32\perfc00C.dat
2017-02-18 17:20 - 2016-07-16 12:47 - 00000000 ___HD C:\Program Files\WindowsApps
2017-02-17 23:34 - 2016-08-12 12:23 - 00000000 ___HD C:\Temp
2017-02-17 23:34 - 2016-03-28 08:58 - 00000000 ____D C:\Program Files (x86)\VulkanRT
2017-02-17 23:33 - 2016-07-12 15:28 - 00000000 ____D C:\Users\linji\AppData\Roaming\Ludashi
2017-02-17 23:27 - 2016-11-22 07:57 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2017-02-17 23:26 - 2016-12-18 18:30 - 00004308 _____ C:\WINDOWS\System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-02-17 23:26 - 2016-11-22 08:12 - 00003894 _____ C:\WINDOWS\System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-02-17 23:26 - 2016-11-22 08:12 - 00003884 _____ C:\WINDOWS\System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-02-17 23:26 - 2016-11-22 08:12 - 00003866 _____ C:\WINDOWS\System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-02-17 23:26 - 2016-11-22 08:12 - 00003858 _____ C:\WINDOWS\System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-02-17 23:26 - 2016-11-22 08:12 - 00003696 _____ C:\WINDOWS\System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-02-17 23:26 - 2016-11-22 07:57 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2017-02-17 23:26 - 2016-01-29 06:11 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2017-02-17 23:24 - 2016-11-22 08:12 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2017-02-17 23:24 - 2016-11-22 07:57 - 00000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2017-02-17 23:24 - 2016-09-24 15:38 - 00000000 ____D C:\Program Files (x86)\Hi-Rez Studios
2017-02-17 23:24 - 2016-08-11 04:19 - 00000350 _____ C:\WINDOWS\Tasks\HPCeeScheduleForlinji.job
2017-02-17 23:24 - 2016-02-18 18:45 - 00000000 ____D C:\ProgramData\TXQMPC
2017-02-17 23:24 - 2016-02-17 14:11 - 00000000 __SHD C:\Users\linji\IntelGraphicsProfiles
2017-02-17 23:23 - 2016-07-16 07:04 - 00524288 _____ C:\WINDOWS\system32\config\BBI
2017-02-17 23:23 - 2016-02-17 17:17 - 00000000 ____D C:\Users\linji\AppData\Roaming\Skype
2017-02-17 23:14 - 2016-01-29 06:20 - 00000000 ____D C:\ProgramData\AVAST Software
2017-02-17 17:10 - 2016-11-19 11:49 - 00000000 ____D C:\Users\linji\AppData\LocalLow\Mozilla
2017-02-17 17:08 - 2016-11-27 20:38 - 00000000 ____D C:\Users\linji\Desktop\fourberie de CS
2017-02-17 17:02 - 2016-03-06 19:08 - 00000021 _____ C:\Users\linji\AppData\Roaming\fixcfg.ini
2017-02-17 17:02 - 2016-03-06 19:08 - 00000000 ____D C:\WINDOWS\SysWOW64\dg597
2017-02-17 16:55 - 2016-12-08 16:44 - 00000000 ____D C:\Users\linji\AppData\Local\CrashDumps
2017-02-17 16:50 - 2016-07-16 07:04 - 00032768 _____ C:\WINDOWS\system32\config\ELAM
2017-02-17 16:22 - 2016-03-02 15:53 - 00000000 ____D C:\Users\linji\AppData\Roaming\BaiduYunGuanjia
2017-02-17 16:21 - 2016-08-12 12:21 - 00000000 ____D C:\Program Files\Tongbu
2017-02-17 16:21 - 2016-08-12 12:20 - 00000000 ____D C:\Users\linji\Documents\Tongbu
2017-02-17 16:20 - 2016-11-05 15:40 - 00000808 _____ C:\Users\Public\Desktop\腾讯QQ.lnk
2017-02-17 16:20 - 2016-03-26 10:37 - 00000000 ____D C:\Users\linji\Documents\Tencent Files
2017-02-17 16:20 - 2016-03-02 16:09 - 00000000 ____D C:\Users\linji\AppData\Roaming\BaiduYunKongMing
2017-02-17 16:20 - 2016-02-17 14:40 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\腾讯软件
2017-02-16 23:21 - 2016-05-15 20:53 - 00000000 ____D C:\Users\linji\BrawlhallaReplays
2017-02-16 22:26 - 2016-02-17 14:39 - 00000000 ____D C:\ProgramData\Tencent
2017-02-16 17:06 - 2016-11-22 08:12 - 00003242 _____ C:\WINDOWS\System32\Tasks\HPCeeScheduleForlinji
2017-02-11 11:22 - 2016-12-02 18:32 - 00000000 ____D C:\WINDOWS\Minidump
2017-02-11 02:29 - 2016-09-26 01:23 - 00000000 ____D C:\Users\linji\AppData\Roaming\Frontwing
2017-02-11 02:29 - 2016-05-27 06:06 - 00000000 ____D C:\Users\linji\AppData\Roaming\SmartSteamEmu
2017-02-10 20:29 - 2016-10-28 19:22 - 14516664 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvlddmkm.sys
2017-02-10 17:13 - 2016-02-17 17:08 - 00000000 ____D C:\Users\linji\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2017-02-10 07:20 - 2016-03-06 19:03 - 00000000 ____D C:\Users\linji\AppData\Roaming\dg
2017-02-10 03:33 - 2016-12-05 17:07 - 00576192 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvfatbinaryLoader.dll
2017-02-10 03:33 - 2016-10-28 19:22 - 04078008 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2017-02-10 03:33 - 2016-10-28 19:22 - 03597128 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2017-02-10 03:33 - 2016-10-28 19:22 - 00043556 _____ C:\WINDOWS\system32\nvinfo.pb
2017-02-10 00:13 - 2016-10-08 21:57 - 00001951 _____ C:\WINDOWS\NvContainerRecovery.bat
2017-02-09 23:57 - 2016-11-22 07:57 - 07791217 _____ C:\WINDOWS\system32\nvcoproc.bin
2017-02-09 23:57 - 2016-11-22 07:57 - 06403640 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2017-02-09 23:57 - 2016-11-22 07:57 - 02477504 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll
2017-02-09 23:57 - 2016-11-22 07:57 - 01764408 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll
2017-02-09 23:57 - 2016-11-22 07:57 - 00548288 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshext.dll
2017-02-09 23:57 - 2016-11-22 07:57 - 00393784 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll
2017-02-09 23:57 - 2016-11-22 07:57 - 00083512 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshextr.dll
2017-02-09 23:57 - 2016-11-22 07:57 - 00071224 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll
2017-02-09 22:43 - 2016-01-29 06:22 - 00000000 ____D C:\Program Files (x86)\Dropbox
2017-02-09 22:42 - 2016-03-13 22:47 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive
2017-02-09 22:39 - 2016-07-03 09:59 - 00000000 ____D C:\Program Files (x86)\MPC Cleaner
2017-02-08 19:17 - 2016-03-13 22:48 - 00000000 ___RD C:\Users\linji\Google Drive
2017-02-08 16:03 - 2016-02-18 20:37 - 00000000 ____D C:\Users\linji\AppData\Local\Google
2017-02-08 16:03 - 2016-02-18 20:37 - 00000000 ____D C:\Program Files (x86)\Google
2017-02-08 14:35 - 2016-02-17 14:11 - 00000000 ____D C:\Users\linji\AppData\Local\Packages
2017-02-08 14:18 - 2016-03-13 07:59 - 00000000 ____D C:\Users\linji\AppData\Roaming\RenPy
2017-02-08 13:51 - 2016-11-22 08:12 - 00003574 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2017-02-08 13:51 - 2016-11-22 08:12 - 00003350 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2017-02-08 13:02 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\LiveKernelReports
2017-02-07 22:03 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\system32\FxsTmp
2017-02-07 21:52 - 2016-07-16 12:47 - 00000000 __RSD C:\WINDOWS\Media
2017-02-07 21:32 - 2016-09-17 15:41 - 00000000 ____D C:\Program Files (x86)\epson
2017-02-07 21:31 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\system32\NDF
2017-02-07 21:03 - 2016-09-17 15:39 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EPSON
2017-02-07 21:03 - 2016-01-29 06:08 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2017-02-06 16:35 - 2016-02-17 15:02 - 00000000 ___RD C:\Users\linji\Dropbox
2017-02-05 05:36 - 2016-03-27 01:03 - 00000000 ____D C:\Program Files\Common Files\AV
2017-02-05 01:05 - 2016-06-11 16:50 - 00000000 ____D C:\Users\linji\AppData\Local\Movavi
2017-02-04 11:56 - 2016-12-02 18:32 - 00000290 __RSH C:\Users\linji\ntuser.pol
2017-02-04 11:56 - 2016-12-02 16:09 - 00000290 __RSH C:\ProgramData\ntuser.pol
2017-02-04 01:00 - 2016-02-20 00:11 - 00000000 ____D C:\Users\linji\AppData\Local\Warframe
2017-02-03 16:14 - 2016-02-17 17:16 - 00000000 ____D C:\ProgramData\Skype
2017-02-03 16:13 - 2016-02-17 17:17 - 00000000 ___RD C:\Program Files (x86)\Skype
2017-01-28 09:36 - 2016-12-10 11:50 - 00000000 ____D C:\Users\linji\AppData\Roaming\MangaGamer
2017-01-27 17:14 - 2016-03-07 19:08 - 00000936 _____ C:\Users\linji\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\lol.lnk
2017-01-26 20:42 - 2016-07-16 12:36 - 00000000 ____D C:\WINDOWS\CbsTemp
2017-01-26 19:24 - 2016-02-17 21:57 - 00000000 ____D C:\Program Files\Common Files\Apple
2017-01-26 01:13 - 2016-09-02 17:49 - 00103936 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2017-01-26 01:12 - 2016-09-02 17:49 - 00326656 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2017-01-26 01:09 - 2016-09-02 17:49 - 00322560 _____ C:\WINDOWS\system32\vulkan-1.dll
2017-01-26 01:09 - 2016-09-02 17:49 - 00118272 _____ C:\WINDOWS\system32\vulkaninfo.exe
2017-01-22 21:54 - 2016-10-30 17:14 - 00110144 _____ (Oracle Corporation) C:\WINDOWS\system32\WindowsAccessBridge-64.dll
2017-01-22 21:54 - 2016-06-10 23:32 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2017-01-22 21:53 - 2016-10-30 17:14 - 00000000 ____D C:\Program Files\Java
2017-01-22 21:40 - 2016-08-24 00:41 - 00001002 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2017-01-22 21:39 - 2017-01-05 22:23 - 00079000 _____ (Kingsoft Corporation) C:\WINDOWS\system32\Drivers\ksapi64.sys
2017-01-22 21:38 - 2017-01-05 22:23 - 00055384 _____ (Kingsoft Corporation) C:\WINDOWS\system32\Drivers\kavbootc64.sys
2017-01-22 21:38 - 2016-10-17 16:43 - 00419592 _____ (MyDrivers.com) C:\WINDOWS\system32\Drivers\dgsafe_del.sys
2017-01-22 21:38 - 2016-10-17 16:43 - 00419592 _____ (MyDrivers.com) C:\WINDOWS\system32\Drivers\DgSafe.sys
2017-01-22 21:36 - 2017-01-05 22:27 - 00052824 _____ (Kingsoft Corporation) C:\WINDOWS\system32\Drivers\bootsafe64.sys
2017-01-22 21:35 - 2016-02-17 14:59 - 00000000 ____D C:\Users\linji\AppData\Local\Tencent
2017-01-22 18:20 - 2016-11-22 08:12 - 00003542 _____ C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task
2017-01-22 18:19 - 2016-03-26 10:39 - 00002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2017-01-22 18:16 - 2016-12-02 16:09 - 00000000 ____D C:\Users\linji\AppData\Roaming\ASPackage
2017-01-22 18:16 - 2016-12-02 16:09 - 00000000 ____D C:\Program Files (x86)\Youtube AdBlock
2017-01-22 18:16 - 2016-12-02 16:09 - 00000000 ____D C:\Program Files (x86)\36444335-1480691363-3933-3656-DC4A3EF4324B
2017-01-22 18:16 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\SysWOW64\Macromed
2017-01-22 18:16 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\system32\Macromed
2017-01-22 17:37 - 2016-01-29 06:20 - 00000000 ____D C:\Program Files\AVAST Software
2017-01-22 10:38 - 2016-02-19 19:25 - 00000000 ____D C:\Users\linji\AppData\Local\Arma 3 Launcher
2017-01-21 14:39 - 2016-07-12 15:27 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\鲁大师
2017-01-20 21:21 - 2016-07-12 21:06 - 00000000 ____D C:\Users\linji\AppData\Roaming\DrvMgr
2017-01-20 19:39 - 2017-01-17 17:36 - 00057792 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvhci.sys
2017-01-20 19:39 - 2016-10-08 21:57 - 01872320 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspcap64.dll
2017-01-20 19:39 - 2016-10-08 21:57 - 01755072 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspbridge64.dll
2017-01-20 19:39 - 2016-10-08 21:57 - 01464768 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspcap.dll
2017-01-20 19:39 - 2016-10-08 21:57 - 01317312 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspbridge.dll
2017-01-20 19:39 - 2016-10-08 21:57 - 00120256 _____ C:\WINDOWS\system32\NvRtmpStreamer64.dll
2017-01-20 17:38 - 2016-12-05 17:07 - 00576192 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\SET4288.tmp
2017-01-20 17:38 - 2016-11-22 07:57 - 00514616 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.DLL
2017-01-20 17:38 - 2016-11-22 07:57 - 00420408 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2017-01-20 17:38 - 2016-10-28 19:22 - 04079032 _____ (NVIDIA Corporation) C:\WINDOWS\system32\SETFFF9.tmp
2017-01-20 17:38 - 2016-10-28 19:22 - 03597640 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\SET366B.tmp
2017-01-20 14:36 - 2016-12-18 18:30 - 00001951 _____ C:\WINDOWS\NvTelemetryContainerRecovery.bat
==================== Fichiers à la racine de certains dossiers =======
2016-05-07 17:22 - 2016-05-07 17:22 - 0000042 _____ () C:\Users\linji\AppData\Roaming\altisrpfr.txt
2016-05-07 17:22 - 2016-05-07 17:33 - 0000001 _____ () C:\Users\linji\AppData\Roaming\altisrpfrJSRS.txt
2016-05-07 17:22 - 2016-05-07 17:22 - 0000047 _____ () C:\Users\linji\AppData\Roaming\altisrpfrts.txt
2016-09-02 09:29 - 2016-09-01 18:03 - 2710480 _____ (淘宝) C:\Users\linji\AppData\Roaming\DandelionSetup.exe
2016-03-06 19:08 - 2017-02-17 17:02 - 0000021 _____ () C:\Users\linji\AppData\Roaming\fixcfg.ini
2016-02-18 18:45 - 2016-02-18 18:45 - 0005120 _____ () C:\Users\linji\AppData\Roaming\GiftBag.db
2016-10-21 13:58 - 2017-02-19 21:17 - 0000052 _____ () C:\Users\linji\AppData\Roaming\localcache.dat
2016-02-21 10:56 - 2016-03-13 23:13 - 0002404 _____ () C:\Users\linji\AppData\Roaming\net.telestream.gameshow.xml
2016-07-10 19:28 - 2016-07-10 19:28 - 0704320 _____ () C:\Users\linji\AppData\Roaming\TXQBINSTX.DLL
2016-09-20 19:38 - 2016-09-20 19:39 - 48185856 _____ (Tencent Inc.) C:\Users\linji\AppData\Roaming\TXQBINSTX2.EXE
2016-02-28 15:58 - 2016-02-28 16:03 - 0000045 _____ () C:\Users\linji\AppData\Roaming\xlaccolsetupstatus.ini
2016-02-28 11:44 - 2016-03-07 17:22 - 0000092 _____ () C:\Users\linji\AppData\Roaming\xlgdlapp.ini
2016-07-18 20:59 - 2016-07-03 04:28 - 0719714 ___SH () C:\Users\linji\AppData\Local\CSIDL_
2016-07-18 21:01 - 2016-07-03 04:28 - 0719714 ___SH () C:\Users\linji\AppData\Local\CSIDL_X
2016-02-17 14:24 - 2016-02-17 20:31 - 2128896 _____ () C:\Users\linji\AppData\Local\file__0.localstorage
2016-10-21 13:58 - 2017-02-19 21:17 - 0000052 _____ () C:\Users\linji\AppData\Local\masm71.dat
2016-02-21 10:56 - 2016-03-13 23:13 - 0000601 _____ () C:\ProgramData\ContentToHashDecode.bin
2016-06-17 05:52 - 2016-06-06 14:52 - 0126640 _____ (Kingsoft Corporation) C:\ProgramData\dbsf.dll
2016-03-02 18:58 - 2016-03-04 20:42 - 0000223 _____ () C:\ProgramData\DP0004.dat
2016-06-02 21:25 - 2016-06-02 21:25 - 0123704 _____ () C:\ProgramData\emexkl.dll
2016-02-21 10:56 - 2016-03-13 23:13 - 0000003 _____ () C:\ProgramData\ExponentBeforeReversal.bin
2016-02-21 10:56 - 2016-03-13 23:13 - 0000004 _____ () C:\ProgramData\KeyInBlob.bin
2016-09-21 15:09 - 2016-09-21 15:09 - 0000016 _____ () C:\ProgramData\mntemp
2016-02-21 10:56 - 2016-03-13 23:13 - 0000128 _____ () C:\ProgramData\ModulusBeforeReversal.bin
2016-02-21 10:56 - 2016-03-13 23:13 - 0000128 _____ () C:\ProgramData\ModulusInBlob.bin
2017-02-05 01:04 - 2017-02-05 01:04 - 0004096 _____ () C:\ProgramData\nakuvtjg.ewu
2016-06-02 21:25 - 2016-12-23 19:23 - 0007280 _____ () C:\ProgramData\nmlist.ini
2016-06-11 16:50 - 2016-06-11 16:50 - 0004887 _____ () C:\ProgramData\nolecicr.ofg
2016-12-18 18:30 - 2017-01-17 17:36 - 0005110 _____ () C:\ProgramData\NvTelemetryContainer.log
2016-12-18 18:30 - 2017-01-16 22:16 - 0006687 _____ () C:\ProgramData\NvTelemetryContainer.log_backup1
2016-02-21 10:56 - 2016-03-13 23:13 - 0000140 _____ () C:\ProgramData\PublicKeyDecode.bin
2016-02-21 10:56 - 2016-03-13 23:13 - 0000128 _____ () C:\ProgramData\SignatureDecode.bin
2016-07-18 20:42 - 2016-07-18 20:43 - 0512000 _____ () C:\ProgramData\smp2.exe
2016-07-16 03:27 - 2016-07-16 03:27 - 0000000 _____ () C:\ProgramData\UserDefault.log
Fichiers à déplacer ou supprimer:
====================
C:\Users\linji\AppData\Local\Temp\removelds_gcenter.bat
C:\ProgramData\dbsf.dll
C:\ProgramData\DP0004.dat
C:\ProgramData\emexkl.dll
C:\ProgramData\smp2.exe
C:\Users\Public\ASR.dat
==================== Bamital & volsnap ======================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
C:\WINDOWS\system32\winlogon.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\wininit.exe => Le fichier est signé numériquement
C:\WINDOWS\explorer.exe => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\explorer.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\svchost.exe => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\svchost.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\services.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\User32.dll => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\User32.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\userinit.exe => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\userinit.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\rpcss.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\dnsapi.dll => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\dnsapi.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\Drivers\volsnap.sys => Le fichier est signé numériquement
LastRegBack: 2017-02-12 17:37
==================== Fin de FRST.txt ============================
Exécuté par linji (administrateur) sur SROYALJL (19-02-2017 21:45:57)
Exécuté depuis C:\Users\linji\Downloads
Profils chargés: linji (Profils disponibles: linji)
Platform: Windows 10 Home Version 1607 (X64) Langue: Français (France)
Internet Explorer Version 11 (Navigateur par défaut: Edge)
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(Tencent) D:\Program Files (x86)\Tencent\QQPCMgr\12.1.18196.221\QQPCRTP.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Hewlett-Packard Company) C:\Windows\System32\hpservice.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\afwServ.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(Intel Corporation) C:\Windows\System32\ibtsiva.exe
(Intel Corporation) C:\Windows\System32\Intel\DPTF\esif_uf.exe
(Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
() C:\Program Files (x86)\Canon\IJPLM\ijplmsvc.exe
(LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(Tencent) C:\Program Files (x86)\Common Files\Tencent\QQProtect\Bin\QQProtect.exe
() C:\Program Files (x86)\Intel Driver Update Utility\SUR\SurSvc.exe
(Intel Corporation) C:\Windows\Temp\DPTF\esif_assist_64.exe
(Microsoft Corporation) C:\Windows\System32\InputMethod\CHS\ChsIME.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Tencent) D:\Program Files (x86)\Tencent\QQPCMgr\12.1.18196.221\QQPCTray.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP 3D DriveGuard\AccelerometerSt.exe
(HP Inc.) C:\Program Files (x86)\HP\HP System Event\HPMSGSVC.exe
(HP) C:\Program Files (x86)\HP\HP Wireless Button Driver\HPRadioMgr64.exe
(Tencent) D:\Program Files (x86)\Tencent\QQPCMgr\12.1.18196.221\plugins\QMNetMon\QQPCNetFlow.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(CANON INC.) C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe
(Tencent) D:\Program Files (x86)\Tencent\QQPCMgr\12.1.18196.221\QQPCRealTimeSpeedup.exe
(AVAST Software s.r.o.) C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
() C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\esrv.exe
() C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\esrv_svc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(Intel Corporation) C:\Windows\SysWOW64\IntelCpHeciSvc.exe
(Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(WildTangent) C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe
() D:\DATA\ludashi\ComputerZService.exe
() D:\DATA\ludashi\ComputerZTray.exe
() D:\DATA\ludashi\Utils\MobileDeviceSrv.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvspcaps64.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Microleaves LTD) C:\Program Files (x86)\Microleaves\Traffic Exchange\Online-Guardian.exe
(Microleaves LTD) C:\Program Files (x86)\Microleaves\Traffic Exchange\Online-Guardian.exe
(Microleaves LTD) C:\Program Files (x86)\Microleaves\Traffic Exchange\Online-Guardian.exe
() C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.11.109.0_x64__kzf8qxf38zg5c\SkypeHost.exe
(HP Inc.) C:\Program Files (x86)\HP\HP System Event\HPWMISVC.exe
(鲁大师) D:\DATA\ludashi\ComputerZ_CN.exe
(HP Inc.) C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
(Spotify Ltd) C:\Users\linji\AppData\Roaming\Spotify\Spotify.exe
(Spotify Ltd) C:\Users\linji\AppData\Roaming\Spotify\SpotifyCrashService.exe
(Spotify Ltd) C:\Users\linji\AppData\Roaming\Spotify\Spotify.exe
(Spotify Ltd) C:\Users\linji\AppData\Roaming\Spotify\SpotifyWebHelper.exe
(Spotify Ltd) C:\Users\linji\AppData\Roaming\Spotify\Spotify.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
(Microsoft Corporation) C:\Windows\System32\browser_broker.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
==================== Registre (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [ShadowPlay] => "C:\WINDOWS\system32\rundll32.exe" C:\WINDOWS\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9181696 2016-12-02] (Realtek Semiconductor)
HKLM-x32\...\Run: [AccelerometerSysTrayApplet] => C:\Program Files (x86)\Hewlett-Packard\HP 3D DriveGuard\AccelerometerST.exe [127528 2015-07-08] (Hewlett-Packard Company)
HKLM-x32\...\Run: [HPMessageService] => C:\Program Files (x86)\HP\HP System Event\HPMSGSVC.exe [657424 2016-01-11] (HP Inc.)
HKLM-x32\...\Run: [HPRadioMgr] => C:\Program Files (x86)\HP\HP Wireless Button Driver\HPRadioMgr64.exe [258600 2016-01-05] (HP)
HKLM-x32\...\Run: [ QQPCTray] => D:\Program Files (x86)\Tencent\QQPCMgr\12.1.18196.221\QQPCTRAY.EXE [362304 2016-12-05] (Tencent)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [205512 2017-02-17] (AVAST Software)
HKLM-x32\...\Run: [IJNetworkScannerSelectorEX] => C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe [235624 2015-01-09] (CANON INC.)
HKLM-x32\...\Run: [CanonQuickMenu] => C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE [1314432 2016-06-09] (CANON INC.)
HKLM-x32\...\RunOnce: [ldsgamecenter_uninst] => C:\Users\linji\AppData\Local\Temp\removelds_gcenter.bat [378 2017-02-19] () <===== ATTENTION
HKLM\...\Policies\Explorer: [EnableShellExecuteHooks] 1
HKU\S-1-5-21-3245419771-2977825503-3689396286-1001\...\Run: [Spotify Web Helper] => C:\Users\linji\AppData\Roaming\Spotify\SpotifyWebHelper.exe [1446000 2017-02-19] (Spotify Ltd)
HKU\S-1-5-21-3245419771-2977825503-3689396286-1001\...\Run: [Spotify] => C:\Users\linji\AppData\Roaming\Spotify\Spotify.exe [7133808 2017-02-19] (Spotify Ltd)
HKU\S-1-5-21-3245419771-2977825503-3689396286-1001\...\Run: [Discord] => C:\Users\linji\AppData\Local\Discord\app-0.0.297\Discord.exe [64290304 2017-01-04] (Hammer & Chisel, Inc.)
HKU\S-1-5-21-3245419771-2977825503-3689396286-1001\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
HKU\S-1-5-18\...\Run: [] => [X]
ShellIconOverlayIdentifiers: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.14.0.dll [2017-02-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.14.0.dll [2017-02-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.14.0.dll [2017-02-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.14.0.dll [2017-02-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.14.0.dll [2017-02-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.14.0.dll [2017-02-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.14.0.dll [2017-02-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.14.0.dll [2017-02-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.14.0.dll [2017-02-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.14.0.dll [2017-02-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2016-11-30] (Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2016-11-30] (Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2016-11-30] (Google)
ShellIconOverlayIdentifiers: [###MegaShellExtPending] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\linji\AppData\Local\MEGAsync\ShellExtX64.dll [2014-05-01] ()
ShellIconOverlayIdentifiers: [###MegaShellExtSynced] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\linji\AppData\Local\MEGAsync\ShellExtX64.dll [2014-05-01] ()
ShellIconOverlayIdentifiers: [###MegaShellExtSyncing] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\linji\AppData\Local\MEGAsync\ShellExtX64.dll [2014-05-01] ()
ShellIconOverlayIdentifiers: [.QMDeskTopGCIcon] -> {B7667919-3765-4815-A66D-98A09BE662D6} => D:\Program Files (x86)\Tencent\QQPCMgr\12.1.18196.221\QMGCShellExt64.dll [2016-12-05] (Tencent)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-02-17] (AVAST Software)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-02-17] (AVAST Software)
ShellIconOverlayIdentifiers-x32: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.14.0.dll [2017-02-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.14.0.dll [2017-02-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.14.0.dll [2017-02-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.14.0.dll [2017-02-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.14.0.dll [2017-02-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.14.0.dll [2017-02-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.14.0.dll [2017-02-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.14.0.dll [2017-02-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.14.0.dll [2017-02-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.14.0.dll [2017-02-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [###MegaShellExtPending] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\linji\AppData\Local\MEGAsync\ShellExtX32.dll [2014-05-01] ()
ShellIconOverlayIdentifiers-x32: [###MegaShellExtSynced] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\linji\AppData\Local\MEGAsync\ShellExtX32.dll [2014-05-01] ()
ShellIconOverlayIdentifiers-x32: [###MegaShellExtSyncing] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\linji\AppData\Local\MEGAsync\ShellExtX32.dll [2014-05-01] ()
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SteelSeries Engine 3.lnk [2017-02-18]
ShortcutTarget: SteelSeries Engine 3.lnk -> C:\Program Files\SteelSeries\SteelSeries Engine 3\SteelSeriesEngine3.exe (SteelSeries ApS)
GroupPolicy: Restriction - Chrome <======= ATTENTION
GroupPolicy\User: Restriction <======= ATTENTION
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Hosts: Il y a plus d'un élément dans hosts. Voir la section Hosts de Addition.txt
Tcpip\Parameters: [DhcpNameServer] 109.88.203.3 62.197.111.140
Tcpip\..\Interfaces\{17ba6fc5-1a40-48e5-8ab1-8a2202243931}: [DhcpNameServer] 109.88.203.3 62.197.111.140
Tcpip\..\Interfaces\{5b538753-9434-445f-800a-b98693e59cf1}: [NameServer] 192.168.1.1
Tcpip\..\Interfaces\{5b538753-9434-445f-800a-b98693e59cf1}: [DhcpNameServer] 109.88.203.3 62.197.111.140
Internet Explorer:
==================
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\S-1-5-21-3245419771-2977825503-3689396286-1001\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://hao.360.cn/?a1004
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/?LinkID=617910&ResetID=131127203805158799&GUID=1D0F7D49-74F9-46B1-8533-69B17F0883F3
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://hp15-comm.msn.com/?pc=HRTE
HKU\S-1-5-21-3245419771-2977825503-3689396286-1001\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-3245419771-2977825503-3689396286-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://hp15-comm.msn.com/?pc=HRTE
SearchScopes: HKLM-x32 -> {008CC757-E25B-48CA-8F4B-783333AD9749} URL = hxxp://www.amazon.co.uk/s/ref=azs_osd_ieauk?ie=UTF-8&tag=hp-uk1-vsb-21&link%5Fcode=qs&index=aps&field-keywords={searchTerms}
SearchScopes: HKU\S-1-5-21-3245419771-2977825503-3689396286-1001 -> DefaultScope {3D8B4390-0AF1-440A-9B59-8F69A66B8CCB} URL = hxxp://www.google.com.hk/search?hl=zh-CN&q={searchTerms}
SearchScopes: HKU\S-1-5-21-3245419771-2977825503-3689396286-1001 -> {008CC757-E25B-48CA-8F4B-783333AD9749} URL = hxxp://www.amazon.co.uk/s/ref=azs_osd_ieauk?ie=UTF-8&tag=hp-uk1-vsb-21&link%5Fcode=qs&index=aps&field-keywords={searchTerms}
SearchScopes: HKU\S-1-5-21-3245419771-2977825503-3689396286-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?FORM=U453DF&PC=U453&q={searchTerms}&src=IE-SearchBox
SearchScopes: HKU\S-1-5-21-3245419771-2977825503-3689396286-1001 -> {3D8B4390-0AF1-440A-9B59-8F69A66B8CCB} URL = hxxp://www.google.com.hk/search?hl=zh-CN&q={searchTerms}
SearchScopes: HKU\S-1-5-21-3245419771-2977825503-3689396286-1001 -> {44177982-996D-4b79-B29F-5B60E13A5169} URL = hxxp://www.baidu.com/s?wd={searchTerms}&tn=98012088_2_dg&ch=1&ie=utf-8
SearchScopes: HKU\S-1-5-21-3245419771-2977825503-3689396286-1001 -> {A2B95EDB-B3B1-4E29-B10B-660928417E08} URL = hxxps://www.baidu.com/s?wd={searchTerms}&tn=92367411_hao_pg
SearchScopes: HKU\S-1-5-21-3245419771-2977825503-3689396286-1001 -> {B268CAB7-805A-4F09-909C-F46C47C6FE3C} URL =
SearchScopes: HKU\S-1-5-21-3245419771-2977825503-3689396286-1001 -> {BF9D931B-6F4F-40B0-5ED3-7DD8CCC0FB92} URL =
SearchScopes: HKU\S-1-5-21-3245419771-2977825503-3689396286-1001 -> {FFEBBF0A-C22C-4172-89FF-45215A135AC7} URL = hxxp://go.mail.ru/distib/ep/?q={SearchTerms}&product_id=%7B38C5D3A1-BF01-4834-AAF0-40325E8E9A0C%7D&gp=811041
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\Office16\OCHelper.dll [2016-12-28] (Microsoft Corporation)
BHO: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll [2016-02-23] (CANON INC.)
BHO: Pas de nom -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> Pas de fichier
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_121\bin\ssv.dll [2017-01-22] (Oracle Corporation)
BHO: 电脑管家网页防火墙 -> {7C260B4B-F7A0-40B5-B403-BEFCDC6A4C3B} -> D:\Program Files (x86)\Tencent\QQPCMgr\12.1.18196.221\TSWebMon64.dat [2016-12-05] (Tencent)
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2017-02-09] (Google Inc.)
BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2016-05-25] (Microsoft Corporation)
BHO: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\root\Office16\GROOVEEX.DLL [2016-12-28] (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_121\bin\jp2ssv.dll [2017-01-22] (Oracle Corporation)
BHO-x32: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2016-12-28] (Microsoft Corporation)
BHO-x32: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll [2016-02-23] (CANON INC.)
BHO-x32: Pas de nom -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> Pas de fichier
BHO-x32: Evernote extension -> {92EF2EAD-A7CE-4424-B0DB-499CF856608E} -> C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll [2016-10-31] (Evernote Corp., 305 Walnut Street, Redwood City, CA 94063)
BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2017-02-09] (Google Inc.)
BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2016-05-25] (Microsoft Corporation)
BHO-x32: QQMiniDL Helper Class -> {C9C7334B-5657-41e1-8F79-F6AACECA05F4} -> C:\Program Files (x86)\Common Files\Tencent\QQMiniDL\60\Browser\QQIEHelper01.dll [2014-07-15] (Tencent Technology (Shenzhen) Company Limited)
BHO-x32: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\GROOVEEX.DLL [2016-12-28] (Microsoft Corporation)
BHO-x32: AccountProtectBHO Class -> {DDD362CF-523B-4BC9-8FDC-58F93B6BC945} -> C:\Users\linji\AppData\Roaming\Tencent\QQ\QQAntiPhishing\AccountProtect.dll [2016-06-27] (Tencent)
BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2016-07-21] (HP Inc.)
BHO-x32: ͬ²½Ò»¼ü°²×°Ö§³Ö -> {F72C8153-7140-4FEE-8F69-CA4579D71195} -> C:\Program Files\Tongbu\Addin\tbIEAddin.dll [2016-08-22] (同步网络平台)
Toolbar: HKLM - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll [2016-02-23] (CANON INC.)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2017-02-09] (Google Inc.)
Toolbar: HKLM-x32 - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll [2016-02-23] (CANON INC.)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2017-02-09] (Google Inc.)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2016-12-28] (Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2016-12-28] (Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2016-12-28] (Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2016-12-28] (Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2016-12-28] (Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2016-12-28] (Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2016-12-28] (Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2016-12-28] (Microsoft Corporation)
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2016-05-25] (Microsoft Corporation)
Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2016-05-25] (Microsoft Corporation)
Edge:
======
Edge Extension: (Adblock Plus) -> 10_EyeoGmbHAdblockPlus_d55gg7py3s0m0 => C:\Program Files\WindowsApps\EyeoGmbH.AdblockPlus_0.9.9.0_neutral__d55gg7py3s0m0 [2016-12-08]
Edge Extension: (Please enter your password) -> EdgeExtension_28944StefanvdTurnOfftheLightsextension_pe3vc7q6mjj3e => C:\Program Files\WindowsApps\28944Stefanvd.TurnOfftheLightsextension_3.3.21.0_neutral__pe3vc7q6mjj3e [2017-01-23]
Edge Extension: (AdBlock) -> EdgeExtension_BetaFishAdBlock_c1wakc4j0nefm => C:\Program Files\WindowsApps\BetaFish.AdBlock_1.11.0.0_neutral__c1wakc4j0nefm [2017-02-17]
FireFox:
========
FF DefaultProfile: j3oumhm3.default
FF ProfilePath: C:\Users\linji\AppData\Roaming\Mozilla\Firefox\Profiles\j3oumhm3.default [2017-02-19]
FF NewTab: Mozilla\Firefox\Profiles\j3oumhm3.default -> about:newtab
FF DefaultSearchEngine: Mozilla\Firefox\Profiles\j3oumhm3.default -> Поиск@Mail.Ru
FF SearchEngineOrder.1: Mozilla\Firefox\Profiles\j3oumhm3.default -> Avast Search
FF SelectedSearchEngine: Mozilla\Firefox\Profiles\j3oumhm3.default -> Поиск@Mail.Ru
FF Homepage: Mozilla\Firefox\Profiles\j3oumhm3.default -> about:home
FF Keyword.URL: Mozilla\Firefox\Profiles\j3oumhm3.default -> hxxp://go.mail.ru/distib/ep/?product_id=%7BADCF60F9-00B0-493A-A573-65081B94035C%7D&gp=811037
FF Extension: (MEGA) - C:\Users\linji\AppData\Roaming\Mozilla\Firefox\Profiles\j3oumhm3.default\Extensions\firefox@mega.co.nz.xpi [2017-02-17]
FF Extension: (uBlock Origin) - C:\Users\linji\AppData\Roaming\Mozilla\Firefox\Profiles\j3oumhm3.default\Extensions\uBlock0@raymondhill.net.xpi [2017-02-05]
FF Extension: (YouTube High Definition) - C:\Users\linji\AppData\Roaming\Mozilla\Firefox\Profiles\j3oumhm3.default\Extensions\{7b1bf0b6-a1b9-42b0-b75d-252036438bdc}.xpi [2017-02-04]
FF Extension: (ReminderFox) - C:\Users\linji\AppData\Roaming\Mozilla\Firefox\Profiles\j3oumhm3.default\Extensions\{ada4b710-8346-4b82-8199-5de2b400a6ae}.xpi [2016-09-20]
FF Extension: (Video DownloadHelper) - C:\Users\linji\AppData\Roaming\Mozilla\Firefox\Profiles\j3oumhm3.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2017-01-03]
FF Extension: (Adblock Plus) - C:\Users\linji\AppData\Roaming\Mozilla\Firefox\Profiles\j3oumhm3.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2016-11-24]
FF SearchPlugin: C:\Users\linji\AppData\Roaming\Mozilla\Firefox\Profiles\j3oumhm3.default\searchplugins\avast-search.xml [2017-01-22]
FF SearchPlugin: C:\Users\linji\AppData\Roaming\Mozilla\Firefox\Profiles\j3oumhm3.default\searchplugins\google-avast.xml [2017-01-22]
FF SearchPlugin: C:\Users\linji\AppData\Roaming\Mozilla\Firefox\Profiles\j3oumhm3.default\searchplugins\mailru.xml [2017-02-04]
FF HKLM\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF48
FF Extension: (Avast SafePrice) - C:\Program Files\AVAST Software\Avast\SafePrice\FF48 [2017-02-17]
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF48
FF Extension: (Avast Online Security) - C:\Program Files\AVAST Software\Avast\WebRep\FF48 [2017-02-17]
FF HKLM-x32\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF48
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF48
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_24_0_0_194.dll [2017-01-22] ()
FF Plugin: @java.com/DTPlugin,version=11.121.2 -> C:\Program Files\Java\jre1.8.0_121\bin\dtplugin\npDeployJava1.dll [2017-01-22] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.121.2 -> C:\Program Files\Java\jre1.8.0_121\bin\plugin2\npjp2.dll [2017-01-22] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50901.0\npctrl.dll [2016-08-31] ( Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2016-12-28] (Microsoft Corporation)
FF Plugin: @tongbu.com/tongbu,version=0.1 -> C:\Program Files\Tongbu\Addin\npTongbuAddin.dll [2016-08-22] (同步网络平台)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWoW64\Macromed\Flash\NPSWF32_24_0_0_194.dll [2017-01-22] ()
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\WINDOWS\SysWOW64\Adobe\Director\np32dsw_1225195.dll [2016-09-20] (Adobe Systems, Inc.)
FF Plugin-x32: @baidu.com/YunWebDetectPlugin -> C:\Users\linji\AppData\Roaming\baidu\BaiduYunGuanjia\npYunWebDetect.dll [2016-12-29] (Baidu.com, Inc.)
FF Plugin-x32: @canon.com/EPPEX -> C:\Program Files (x86)\Canon\My Image Garden\AddOn\CIG\npmigfpi.dll [2015-10-29] (CANON INC.)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.68 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2015-04-21] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2015-04-21] (Intel Corporation)
FF Plugin-x32: @kingsfot.com/npkws -> d:\kinggsoft\kduu_ba\sp7\npkws.dll [Pas de fichier]
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2016-12-28] (Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50901.0\npctrl.dll [2016-08-31] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2016-12-28] (Microsoft Corporation)
FF Plugin-x32: @qq.com/npAndroidAssistant -> C:\Program Files (x86)\Common Files\Tencent\QQPhoneManager\2.0.201.3192\npQQPhoneManagerExt.dll [2014-05-30] (腾讯公司)
FF Plugin-x32: @qq.com/npqscall -> C:\Program Files (x86)\Common Files\Tencent\Npchrome\npactivex.dll [2016-02-17] (Tencent)
FF Plugin-x32: @qq.com/QQlive -> D:\QQLive\9.12.1291.0\npQQLive.dll [Pas de fichier]
FF Plugin-x32: @qq.com/QQMiniDLPlugin -> C:\Program Files (x86)\Common Files\Tencent\QQMiniDL\60\Browser\npXFMiniDLPlugin.dll [2014-04-25] (Tencent Technology (Shenzhen) Company Limited)
FF Plugin-x32: @qq.com/QQMusicHelper -> C:\Program Files (x86)\Tencent\QQMusicHelper\QQMusicHelper1224.19.47.41\npQQMusicHelper.dll [2015-12-18] (Tencent)
FF Plugin-x32: @qq.com/QQPCMgr -> D:\Program Files (x86)\Tencent\QQPCMgr\12.1.18196.221\npQMExtensionsMozilla.dll [2016-12-05] (Tencent Technology (Shenzhen) Company Limited)
FF Plugin-x32: @qq.com/QQPhotoDrawEx -> C:\Program Files (x86)\Tencent\Qzone\npQQPhotoDrawEx.dll [2013-08-13] ()
FF Plugin-x32: @qq.com/QzoneMusic -> C:\Program Files (x86)\Tencent\QQMusic\QzoneMusic\npQzoneMusic.dll [2016-02-26] (Tencent)
FF Plugin-x32: @qq.com/TXSSO -> C:\Program Files (x86)\Common Files\Tencent\TXSSO\1.2.5.14\Bin\npSSOAxCtrlForPTLogin.dll [2016-10-31] (Tencent)
FF Plugin-x32: @tencent.com/npQQMailWebKit,version=1.0.0.1 -> C:\Program Files (x86)\QQMailPlugin\npQQMailWebKit.dll [2013-04-25] (Tencent)
FF Plugin-x32: @tencent.com/nptxftnWebKit,version=1.0.0.1 -> C:\Program Files (x86)\QQMailPlugin\nptxftnWebKit.dll [2013-04-08] (Tencent Technology (Shenzhen) Company Limited)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2017-02-08] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2017-02-08] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.2.2 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll [2015-06-25] ()
FF Plugin-x32: @xunlei.com/DapCtrl -> C:\Users\Public\Thunder Network\XMP5\Addins\npDapCtrl.dll [2016-11-15] (ShenZhen Thunder Networking Technologies Ltd.)
FF Plugin-x32: @xunlei.com/npaplayer -> C:\Users\Public\Thunder Network\APlayer\codecs\npaplayer.dll [Pas de fichier]
FF Plugin-x32: @xunlei.com/npxluser -> C:\Program Files (x86)\Common Files\Thunder Network\UserAgent\npxluser2.0.2.3.dll [2016-12-05] (Thunder Networking Technologies,LTD)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2016-12-23] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-3245419771-2977825503-3689396286-1001: @1.qq.com/npqqwebgame -> C:\Users\linji\AppData\Roaming\Tencent\WebGamePlugin\1.0.4.3\npqqwebgame.dll [2015-10-20] ( )
FF Plugin HKU\S-1-5-21-3245419771-2977825503-3689396286-1001: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\linji\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2016-05-08] (Unity Technologies ApS)
FF Plugin HKU\S-1-5-21-3245419771-2977825503-3689396286-1001: @xunlei.com/npxluser -> C:\Program Files (x86)\Common Files\Thunder Network\UserAgent\npxluser2.0.2.3.dll [2016-12-05] (Thunder Networking Technologies,LTD)
Chrome:
=======
CHR HKU\S-1-5-21-3245419771-2977825503-3689396286-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [apdfllckaahabafndbhieahigkjlhalf] - C:\Users\linji\AppData\Local\Google\Drive\user_default\apdfllckaahabafndbhieahigkjlhalf_live.crx [2016-12-02]
CHR HKU\S-1-5-21-3245419771-2977825503-3689396286-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [bmkckgpgekmanipelfidlhmkfcjicion] - hxxps://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-3245419771-2977825503-3689396286-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [fkkcgfbgohboipdhliafmacjnhjbhmim] - hxxps://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-3245419771-2977825503-3689396286-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [ccfifbojenkenpkmnbnndeadpfdiffof] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [jkfpchpiljkaemlpmpebnglgkomamfeo] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [oelpkepjlgmehajehfeicfbjdiobdkfj] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [ojlcebdkbpjdpiligkdbbkdkfjmchbfd] - hxxps://clients2.google.com/service/update2/crx
==================== Services (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2016-09-22] (Apple Inc.)
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe [7142136 2017-02-17] (AVAST Software s.r.o.)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [262736 2017-02-17] (AVAST Software)
R2 avast! Firewall; C:\Program Files\AVAST Software\Avast\afwServ.exe [278784 2017-02-17] (AVAST Software)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [1465352 2017-01-13] ()
S3 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1364096 2016-05-25] (Microsoft Corporation)
S3 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1687680 2016-05-25] (Microsoft Corporation)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [3699904 2016-12-28] (Microsoft Corporation)
S3 cplspcon; C:\WINDOWS\system32\IntelCpHDCPSvc.exe [623072 2016-03-18] (Intel Corporation)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-02-17] (Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-02-17] (Dropbox, Inc.)
R2 DbxSvc; C:\WINDOWS\system32\DbxSvc.exe [46400 2017-02-07] (Dropbox, Inc.)
S2 dg597; C:\WINDOWS\SysWOW64\dg597\dg597.dll [125296 2016-12-05] ()
S2 DGPNPSEV; C:\Program Files (x86)\MyDrivers\DriverGenius\DgService.exe [392776 2016-12-05] (MyDrivers.com)
S3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [1467072 2016-08-29] (Disc Soft Ltd)
S3 EasyAntiCheat; C:\WINDOWS\SysWOW64\EasyAntiCheat.exe [389392 2016-11-30] (EasyAntiCheat Ltd)
U2 emexkl; C:\ProgramData\emexkl.dll [123704 2016-06-02] ()
R2 esifsvc; C:\WINDOWS\system32\Intel\DPTF\esif_uf.exe [2215168 2016-08-22] (Intel Corporation)
R2 ESRV_SVC_WILLAMETTE; C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\esrv_svc.exe [416408 2016-06-08] ()
R2 GamesAppIntegrationService; C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe [349728 2015-06-25] (WildTangent)
S4 Hamachi2Svc; C:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe [2621448 2016-09-13] (LogMeIn Inc.)
S2 HiPatchService; C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe [9728 2016-10-10] (Hi-Rez Studios) [Fichier non signé]
R3 HPSupportSolutionsFrameworkService; c:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [31776 2016-12-07] (HP Inc.)
R2 HpSvc; D:\DATA\ludashi\lpi\HpSvc.dll [252840 2017-01-13] ()
R2 HPWMISVC; C:\Program Files (x86)\HP\HP System Event\HPWMISVC.exe [606224 2016-01-11] (HP Inc.)
S2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [18856 2015-07-22] (Intel Corporation)
R2 igfxCUIService2.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [373728 2016-03-18] (Intel Corporation)
S3 ihelpermsgpushsvr; C:\Program Files (x86)\PP苹果助手3.0\ihelpermsgpushsvr.exe [261832 2016-02-16] (广州爱禾网络技术有限公司) [Fichier non signé]
R2 IJPLMSVC; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [387144 2016-02-04] ()
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [881152 2015-05-22] (Intel(R) Corporation)
S3 Intel(R) WiDi SAM; C:\Program Files (x86)\Intel Corporation\Intel WiDi\Intel(R) Software Asset Manager\bin\IntelSoftwareAssetManagerService.exe [19088 2015-06-23] (Intel Corporation)
S3 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [207648 2015-08-14] (Intel Corporation)
R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe [419248 2016-08-31] (LogMeIn, Inc.)
S3 npggsvc; C:\WINDOWS\SysWOW64\GameMon.des [4362656 2016-02-24] (INCA Internet Co., Ltd.) [Fichier non signé]
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [462784 2017-01-20] (NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [462784 2017-01-20] (NVIDIA Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [462784 2017-02-10] (NVIDIA Corporation)
R2 NvTelemetryContainer; C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe [425408 2017-01-20] (NVIDIA Corporation)
R2 QPCore; C:\Program Files (x86)\Common Files\Tencent\QQProtect\Bin\QQProtect.exe [115520 2017-02-17] (Tencent)
R2 QQPCRTP; D:\Program Files (x86)\Tencent\QQPCMgr\12.1.18196.221\QQPCRTP.exe [315920 2016-12-05] (Tencent)
S2 QQRepairFixSVC; C:\Program Files (x86)\Tencent\QQPCMGR\QQRepairFixSVC [155368 2017-02-17] ()
S3 RichVideo64; C:\Program Files\CyberLink\Shared files\RichVideo64.exe [389896 2014-04-14] ()
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [322560 2016-12-02] (Realtek Semiconductor)
S2 SecureLine; C:\Program Files\AVAST Software\SecureLine\VpnSvc.exe [592392 2016-05-23] ()
S2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [266872 2016-08-19] (Synaptics Incorporated)
R2 SystemUsageReportSvc_WILLAMETTE; C:\Program Files (x86)\Intel Driver Update Utility\SUR\SurSvc.exe [117400 2016-06-08] ()
S3 USER_ESRV_SVC_WILLAMETTE; C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\esrv_svc.exe [416408 2016-06-08] ()
S3 VSStandardCollectorService140; C:\Program Files (x86)\Microsoft Visual Studio 14.0\Team Tools\DiagnosticsHub\Collector\StandardCollector.Service.exe [108776 2016-07-26] (Microsoft Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [347328 2016-07-16] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103720 2016-07-16] (Microsoft Corporation)
R2 ibtsiva; %SystemRoot%\system32\ibtsiva [X]
===================== Pilotes (Avec liste blanche) ======================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R1 aswbidsdriver; C:\WINDOWS\system32\drivers\aswbidsdrivera.sys [309784 2017-02-17] (AVAST Software s.r.o.)
R0 aswbidsh; C:\WINDOWS\system32\drivers\aswbidsha.sys [189768 2017-02-17] (AVAST Software s.r.o.)
R0 aswblog; C:\WINDOWS\system32\drivers\aswbloga.sys [334600 2017-02-17] (AVAST Software s.r.o.)
R0 aswbuniv; C:\WINDOWS\system32\drivers\aswbuniva.sys [48528 2017-02-17] (AVAST Software s.r.o.)
S3 aswHwid; C:\WINDOWS\system32\drivers\aswHwid.sys [38296 2017-02-17] (AVAST Software)
R1 aswKbd; C:\WINDOWS\system32\drivers\aswKbd.sys [32088 2017-02-17] (AVAST Software)
R2 aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [126088 2017-02-17] (AVAST Software)
R1 aswNetSec; C:\WINDOWS\system32\drivers\aswNetSec.sys [456456 2017-02-17] (AVAST Software)
R1 aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [100640 2017-02-17] (AVAST Software)
R0 aswRvrt; C:\WINDOWS\system32\drivers\aswRvrt.sys [74680 2017-02-17] (AVAST Software)
R1 aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [991496 2017-02-17] (AVAST Software)
R1 aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [547904 2017-02-17] (AVAST Software)
R2 aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [162528 2017-02-17] (AVAST Software)
S3 aswTap; C:\WINDOWS\System32\drivers\aswTap.sys [44640 2014-09-05] (The OpenVPN Project)
R0 aswVmm; C:\WINDOWS\system32\drivers\aswVmm.sys [337080 2017-02-17] (AVAST Software)
R0 bootsafe; C:\WINDOWS\System32\Drivers\bootsafe64_ev.sys [58096 2017-01-22] (Kingsoft Corporation)
R3 clwvd6; C:\WINDOWS\system32\DRIVERS\clwvd6.sys [41704 2013-10-29] (CyberLink Corporation)
R2 ComputerZLock; D:\DATA\ludashi\ComputerZLock_x64.sys [45504 2017-01-13] (www.ludashi.com)
R3 ComputerZ_x64; D:\DATA\ludashi\ComputerZ_x64.sys [49152 2016-06-27] (ludashi.com)
R2 DgSafe; C:\WINDOWS\system32\drivers\DgSafe.sys [419592 2017-01-22] (MyDrivers.com)
R2 DgSafe; C:\WINDOWS\SysWOW64\drivers\DgSafe.sys [508656 2016-03-06] (MyDrivers.com)
R3 dptf_acpi; C:\WINDOWS\System32\drivers\dptf_acpi.sys [71232 2016-08-22] (Intel Corporation)
R3 dptf_cpu; C:\WINDOWS\System32\drivers\dptf_cpu.sys [66624 2016-08-22] (Intel Corporation)
R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [30264 2016-09-17] (Disc Soft Ltd)
R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [47672 2016-09-17] (Disc Soft Ltd)
R3 esif_lf; C:\WINDOWS\system32\DRIVERS\esif_lf.sys [350272 2016-08-22] (Intel Corporation)
R3 Hamachi; C:\WINDOWS\System32\drivers\Hamdrv.sys [45680 2016-05-04] (LogMeIn Inc.)
R3 ibtusb; C:\WINDOWS\system32\DRIVERS\ibtusb.sys [249616 2016-10-19] (Intel Corporation)
R0 kavbootc; C:\WINDOWS\System32\drivers\kavbootc64.sys [55384 2017-01-22] (Kingsoft Corporation)
R3 ksapi64; C:\WINDOWS\system32\drivers\ksapi64.sys [79000 2017-01-22] (Kingsoft Corporation)
S3 LDSBoxDrv; D:\LDSGameMaster\LDSGamePlayerPK\vbox\LDSBoxDrv.sys [263400 2017-01-16] (Ludashi Corporation)
R3 mt7612US; C:\WINDOWS\System32\drivers\mt7612US.sys [377864 2015-12-09] (MediaTek Inc.)
S3 MyDrivers0_0_1; C:\Program Files (x86)\MyDrivers\DriverGenius\MyDrivers64.sys [33024 2017-01-22] (MyDrivers.com)
S3 NetAdapterCx; C:\WINDOWS\System32\drivers\NetAdapterCx.sys [90624 2016-07-16] ()
U5 Netwtw02; C:\Windows\System32\Drivers\Netwtw02.sys [6731520 2016-02-17] (Intel Corporation)
R3 Netwtw04; C:\WINDOWS\System32\drivers\Netwtw04.sys [7308560 2016-09-13] (Intel Corporation)
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nvhmi.inf_amd64_5603cb253b01e5cd\nvlddmkm.sys [14516664 2017-02-10] (NVIDIA Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [27584 2017-01-20] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [47672 2017-01-06] (NVIDIA Corporation)
R3 nvvhci; C:\WINDOWS\System32\drivers\nvvhci.sys [57792 2017-01-20] (NVIDIA Corporation)
R1 QMUdisk; D:\Program Files (x86)\Tencent\QQPCMgr\12.1.18196.221\QMUdisk64_ev.sys [192248 2017-01-11] (Tencent)
R2 QQSysMonX64; D:\Program Files (x86)\Tencent\QQPCMgr\12.1.18196.221\QQSysMonX64_EV.sys [154352 2016-12-05] (电脑管家)
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [946696 2016-11-21] (Realtek )
S3 RTSPER; C:\WINDOWS\system32\DRIVERS\RtsPer.sys [761560 2015-09-18] (Realsil Semiconductor Corporation)
R3 semav6msr64; C:\WINDOWS\system32\drivers\semav6msr64.sys [21984 2015-06-04] ()
R3 SensorsSimulatorDriver; C:\WINDOWS\System32\drivers\WUDFRd.sys [216064 2016-07-16] (Microsoft Corporation)
S3 SGXEPC; C:\WINDOWS\System32\drivers\sgx_driver.sys [54768 2015-06-19] (Windows (R) Win 7 DDK provider)
S3 SmbDrv; C:\WINDOWS\System32\drivers\Smb_driver_AMDASF.sys [33448 2015-07-28] (Synaptics Incorporated)
R3 SmbDrvI; C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys [72824 2016-08-19] (Synaptics Incorporated)
R3 softaal; D:\Program Files (x86)\Tencent\QQPCMgr\12.1.18196.221\softaal64_ev.sys [44272 2016-12-05] (Tencent)
R3 ssdevfactory; C:\WINDOWS\System32\drivers\ssdevfactory.sys [41824 2016-11-03] (SteelSeries ApS)
R3 TAOAccelerator; C:\WINDOWS\system32\Drivers\TAOAccelerator64_ev.sys [99664 2016-12-05] (Tencent)
R2 TAOKernelDriver; C:\WINDOWS\system32\Drivers\TAOKernelEx64_ev.sys [143600 2016-12-05] (Tencent Technology(Shenzhen) Company Limited)
R3 TcHardWare; D:\Program Files (x86)\Tencent\QQPCMgr\12.1.18196.221\QQPCHW-x64_ev.sys [27888 2016-12-05] (Tencent)
S3 TesSafe; C:\WINDOWS\system32\TesSafe.sys [1101024 2016-10-01] (TENCENT)
R1 TFsFlt; C:\WINDOWS\System32\Drivers\TFsFltX64_ev.sys [97008 2016-12-05] (电脑管家)
S1 TSDefenseBt; D:\Program Files (x86)\Tencent\QQPCMgr\12.1.18196.221\TSDefenseBT64.sys [28984 2016-12-05] (Tencent)
R2 tsnethlpx64; D:\Program Files (x86)\Tencent\QQPCMgr\12.1.18196.221\TsNetHlpX64_ev.sys [57584 2016-12-05] ()
R1 TSSysKit; D:\Program Files (x86)\Tencent\QQPCMgr\12.1.18196.221\TSSysKit64_EV.sys [96504 2016-12-05] (电脑管家)
S3 VBoxUSBMon; D:\LDSGameMaster\LDSGamePlayerPK\vbox\VBoxUSBMon.sys [136936 2017-01-16] (Ludashi Corporation)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [44056 2016-07-16] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [290144 2016-07-16] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [123232 2016-07-16] (Microsoft Corporation)
R3 WirelessButtonDriver64; C:\WINDOWS\System32\drivers\WirelessButtonDriver64.sys [30544 2015-08-12] (HP)
S3 dbx; system32\DRIVERS\dbx.sys [X]
U4 TimeBroker; pas de ImagePath
S1 XLGuard; system32\drivers\XLGuard.sys [X]
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
NETSVCx32: HpSvc -> C:\DATA\ludashi\lpi\HpSvc.dll ==> Pas de fichier
NETSVCx32: dg597 -> C:\WINDOWS\SysWOW64\dg597\dg597.dll ()
==================== Un mois - Créés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2017-02-19 21:45 - 2017-02-19 21:46 - 00048685 _____ C:\Users\linji\Downloads\FRST.txt
2017-02-19 21:45 - 2017-02-19 21:45 - 00000000 ____D C:\FRST
2017-02-19 21:44 - 2017-02-19 21:44 - 02422784 _____ (Farbar) C:\Users\linji\Downloads\FRST64.exe
2017-02-19 19:20 - 2017-02-19 19:20 - 16777216 _____ (The qBittorrent project) C:\Users\linji\Downloads\qbittorrent_3.3.10_setup.exe
2017-02-19 19:20 - 2017-02-19 19:20 - 00029977 _____ C:\Users\linji\Downloads\grimm-s05e02-french-hdtv.torrent
2017-02-19 19:20 - 2017-02-19 19:20 - 00029977 _____ C:\Users\linji\Downloads\grimm-s05e02-french-hdtv (1).torrent
2017-02-19 14:39 - 2017-02-19 15:24 - 00000000 ____D C:\Users\linji\AppData\Local\PianoFacile - Le clavier
2017-02-19 14:39 - 2017-02-19 14:39 - 05973844 _____ C:\Users\linji\Downloads\PFLC - Installeur.zip
2017-02-19 14:37 - 2017-02-19 14:37 - 01189943 _____ C:\Users\linji\Downloads\freepiano (1).rar.g93m1hf.partial
2017-02-19 14:37 - 2017-02-19 14:37 - 01185832 _____ C:\Users\linji\Downloads\freepiano.rar.sdsfwc1.partial
2017-02-19 14:32 - 2017-02-19 17:32 - 00000000 ____D C:\Users\linji\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pvm
2017-02-19 14:31 - 2017-02-19 14:31 - 02260619 _____ C:\Users\linji\Downloads\Piano-Virtuel-Midi-setup-6.1.exe
2017-02-18 19:40 - 2017-02-19 19:21 - 00000000 ____D C:\Users\linji\AppData\Roaming\steelseries-engine-3-client
2017-02-18 19:40 - 2017-02-18 19:41 - 00000000 ____D C:\ProgramData\SteelSeries
2017-02-18 19:40 - 2017-02-18 19:41 - 00000000 ____D C:\Program Files\SteelSeries
2017-02-18 19:40 - 2017-02-18 19:40 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SteelSeries
2017-02-18 19:39 - 2017-02-18 19:39 - 81582144 _____ C:\Users\linji\Downloads\SteelSeriesEngine3.9.10Setup.exe
2017-02-18 18:25 - 2017-02-18 18:25 - 00000044 _____ C:\Users\linji\Desktop\teamspeak.txt
2017-02-18 18:21 - 2017-02-18 18:21 - 00000000 ____D C:\Users\linji\AppData\Local\TeamSpeak 3
2017-02-18 18:21 - 2017-02-18 18:21 - 00000000 ____D C:\Users\linji\.TeamSpeak 3
2017-02-18 18:21 - 2017-02-18 18:21 - 00000000 ____D C:\Users\linji\.QtWebEngineProcess
2017-02-18 18:20 - 2017-02-19 01:51 - 01388448 _____ C:\Users\Public\ASR.dat
2017-02-17 23:38 - 2017-02-17 23:38 - 00220176 _____ C:\WINDOWS\QEK4aF56EpsWy.Lbs3r
2017-02-17 23:32 - 2017-02-17 23:32 - 00000000 ____D C:\WINDOWS\LastGood
2017-02-17 23:31 - 2017-02-10 03:33 - 40192056 _____ C:\WINDOWS\system32\nvcompiler.dll
2017-02-17 23:31 - 2017-02-10 03:33 - 35272760 _____ C:\WINDOWS\SysWOW64\nvcompiler.dll
2017-02-17 23:31 - 2017-02-10 03:33 - 34979384 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglv64.dll
2017-02-17 23:31 - 2017-02-10 03:33 - 28242488 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglv32.dll
2017-02-17 23:31 - 2017-02-10 03:33 - 19007016 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvopencl.dll
2017-02-17 23:31 - 2017-02-10 03:33 - 14674896 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvopencl.dll
2017-02-17 23:31 - 2017-02-10 03:33 - 11122728 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2017-02-17 23:31 - 2017-02-10 03:33 - 11019704 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvptxJitCompiler.dll
2017-02-17 23:31 - 2017-02-10 03:33 - 08990072 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvptxJitCompiler.dll
2017-02-17 23:31 - 2017-02-10 03:33 - 03168192 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2017-02-17 23:31 - 2017-02-10 03:33 - 01983424 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6437866.dll
2017-02-17 23:31 - 2017-02-10 03:33 - 01589696 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6437866.dll
2017-02-17 23:31 - 2017-02-10 03:33 - 01052096 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2017-02-17 23:31 - 2017-02-10 03:33 - 00991288 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2017-02-17 23:31 - 2017-02-10 03:33 - 00959424 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2017-02-17 23:31 - 2017-02-10 03:33 - 00946456 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncMFTH264.dll
2017-02-17 23:31 - 2017-02-10 03:33 - 00910784 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2017-02-17 23:31 - 2017-02-10 03:33 - 00721952 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncMFTH264.dll
2017-02-17 23:31 - 2017-02-10 03:33 - 00687224 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvfatbinaryLoader.dll
2017-02-17 23:31 - 2017-02-10 03:33 - 00609728 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll
2017-02-17 23:31 - 2017-02-10 03:33 - 00573448 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2017-02-17 23:31 - 2017-02-10 03:33 - 00499136 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll
2017-02-17 23:25 - 2017-02-17 23:25 - 00000000 ____D C:\ProgramData\SWCUTemp
2017-02-17 23:24 - 2017-02-17 23:24 - 00000000 ____D C:\WINDOWS\Panther
2017-02-17 23:15 - 2017-02-17 23:15 - 00003994 _____ C:\WINDOWS\System32\Tasks\Avast Emergency Update
2017-02-17 23:14 - 2017-02-17 23:14 - 00398408 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2017-02-17 23:14 - 2017-02-17 23:14 - 00334600 _____ (AVAST Software s.r.o.) C:\WINDOWS\system32\Drivers\aswbloga.sys
2017-02-17 23:14 - 2017-02-17 23:14 - 00309784 _____ (AVAST Software s.r.o.) C:\WINDOWS\system32\Drivers\aswbidsdrivera.sys
2017-02-17 23:14 - 2017-02-17 23:14 - 00189768 _____ (AVAST Software s.r.o.) C:\WINDOWS\system32\Drivers\aswbidsha.sys
2017-02-17 23:14 - 2017-02-17 23:14 - 00048528 _____ (AVAST Software s.r.o.) C:\WINDOWS\system32\Drivers\aswbuniva.sys
2017-02-17 16:55 - 2017-02-17 23:12 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2017-02-17 16:55 - 2017-02-17 16:55 - 00001239 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2017-02-17 16:55 - 2017-02-17 16:55 - 00001227 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2017-02-17 16:55 - 2017-02-17 16:55 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2017-02-17 16:50 - 2017-02-17 16:50 - 00245616 _____ C:\Users\linji\Downloads\Firefox Setup Stub 51.0.1.exe
2017-02-17 16:21 - 2017-02-19 17:09 - 00000000 ____D C:\Users\linji\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ÌÚѶÈí¼þ
2017-02-16 22:09 - 2017-02-16 22:14 - 00000000 ____D C:\Users\linji\AppData\Roaming\discord
2017-02-16 22:09 - 2017-02-16 22:09 - 52553728 _____ (Hammer & Chisel, Inc.) C:\Users\linji\Downloads\DiscordSetup.exe
2017-02-16 22:09 - 2017-02-16 22:09 - 00002244 _____ C:\Users\linji\Desktop\Discord.lnk
2017-02-16 22:09 - 2017-02-16 22:09 - 00000000 ____D C:\Users\linji\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Hammer & Chisel, Inc
2017-02-16 22:09 - 2017-02-16 22:09 - 00000000 ____D C:\Users\linji\AppData\Local\SquirrelTemp
2017-02-16 22:09 - 2017-02-16 22:09 - 00000000 ____D C:\Users\linji\AppData\Local\Discord
2017-02-09 22:43 - 2017-02-09 22:43 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2017-02-09 22:42 - 2017-02-09 22:42 - 00000000 ____D C:\Users\Default\AppData\Local\Google
2017-02-09 22:42 - 2017-02-09 22:42 - 00000000 ____D C:\Users\Default User\AppData\Local\Google
2017-02-07 22:05 - 2017-02-08 13:06 - 00000000 ___HD C:\ProgramData\CanonIJMIG
2017-02-07 22:04 - 2017-02-07 22:04 - 00000000 ___HD C:\ProgramData\CanonIJEGV
2017-02-07 22:04 - 2017-02-07 22:04 - 00000000 ____D C:\Users\linji\Desktop\Print
2017-02-07 22:03 - 2017-02-07 22:03 - 00000000 ___HD C:\ProgramData\CanonIJMyPrinter
2017-02-07 22:01 - 2017-02-15 15:59 - 00000000 ____D C:\Users\linji\AppData\Roaming\Canon
2017-02-07 22:01 - 2017-02-07 22:01 - 00000000 ___HD C:\ProgramData\CanonIJQuickMenu
2017-02-07 21:59 - 2017-02-07 21:59 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Enregistrement utilisateur de Canon MG5700 series
2017-02-07 21:58 - 2017-02-07 21:58 - 00000000 ____D C:\Users\linji\AppData\LocalLow\Canon Easy-WebPrint EX2
2017-02-07 21:58 - 2017-02-07 21:58 - 00000000 ____D C:\Users\linji\AppData\LocalLow\Canon Easy-WebPrint EX
2017-02-07 21:56 - 2017-02-07 21:58 - 00000000 ____D C:\Program Files\Canon
2017-02-07 21:56 - 2017-02-07 21:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon MG5700 series Manual
2017-02-07 21:53 - 2017-02-07 21:58 - 00000000 ____D C:\ProgramData\CanonIJWSpt
2017-02-07 21:52 - 2017-02-07 21:58 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon Utilities
2017-02-07 21:52 - 2017-02-07 21:52 - 00000000 ____D C:\ProgramData\Canon IJ Network Tool
2017-02-07 21:52 - 2015-01-29 11:22 - 00353792 _____ (CANON INC.) C:\WINDOWS\SysWOW64\CNC_CSL.dll
2017-02-07 21:52 - 2014-12-02 16:01 - 00096256 _____ C:\WINDOWS\SysWOW64\CNC178ED.TBL
2017-02-07 21:52 - 2008-08-25 18:02 - 00015872 _____ (CANON INC.) C:\WINDOWS\SysWOW64\CNHMCA.dll
2017-02-07 21:51 - 2017-02-07 21:51 - 00000000 ___HD C:\ProgramData\CanonBJ
2017-02-07 21:51 - 2017-02-07 21:51 - 00000000 ____D C:\WINDOWS\system32\STRING
2017-02-07 21:51 - 2015-03-17 08:51 - 00375296 _____ (CANON INC.) C:\WINDOWS\system32\CNMN6PPM.DLL
2017-02-07 21:51 - 2015-03-17 08:51 - 00039424 _____ (CANON INC.) C:\WINDOWS\system32\CNMN6UI.DLL
2017-02-07 21:51 - 2015-03-17 08:50 - 00380928 _____ (CANON INC.) C:\WINDOWS\SysWOW64\CNMNPPM.DLL
2017-02-07 21:48 - 2015-03-15 05:00 - 00406528 _____ (CANON INC.) C:\WINDOWS\system32\CNMLMCS.DLL
2017-02-07 21:47 - 2017-02-07 21:48 - 00000000 ___HD C:\Program Files\CanonBJ
2017-02-07 21:46 - 2017-02-07 21:46 - 00010256 _____ C:\WINDOWS\994.HCj4Y
2017-02-07 21:25 - 2017-02-07 21:25 - 00000000 ___HD C:\ProgramData\CanonIJETV
2017-02-07 21:07 - 2017-02-07 22:23 - 00000000 ____D C:\ProgramData\CanonIJPLM
2017-02-07 21:07 - 2017-02-07 21:07 - 00000000 ____D C:\ProgramData\Canon
2017-02-07 21:05 - 2017-02-07 22:01 - 00000000 ____D C:\Program Files (x86)\Canon
2017-02-07 05:38 - 2017-02-07 05:38 - 00046400 _____ (Dropbox, Inc.) C:\WINDOWS\system32\DbxSvc.exe
2017-02-07 05:38 - 2017-02-07 05:38 - 00046192 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-stable.sys
2017-02-07 05:38 - 2017-02-07 05:38 - 00046192 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-dev.sys
2017-02-07 05:38 - 2017-02-07 05:38 - 00046192 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-canary.sys
2017-02-05 05:36 - 2017-02-05 05:36 - 00000000 ____D C:\WINDOWS\System32\Tasks\AVAST Software
2017-02-05 01:26 - 2017-02-05 01:26 - 00000000 ____D C:\Users\linji\AppData\Roaming\Malwarebytes
2017-02-05 01:26 - 2017-02-05 01:26 - 00000000 ____D C:\ProgramData\Malwarebytes
2017-02-05 01:19 - 2017-02-05 01:19 - 00000000 ____D C:\Users\linji\AppData\Roaming\Mirillis
2017-02-05 01:19 - 2017-02-05 01:19 - 00000000 ____D C:\Users\linji\AppData\Local\Mirillis
2017-02-05 01:19 - 2017-02-05 01:19 - 00000000 ____D C:\ProgramData\Mirillis
2017-02-05 01:19 - 2017-02-05 01:19 - 00000000 ____D C:\Action!
2017-02-05 01:18 - 2017-02-05 01:18 - 00002119 _____ C:\Users\Public\Desktop\Action!.lnk
2017-02-05 01:18 - 2017-02-05 01:18 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mirillis
2017-02-05 01:18 - 2017-02-05 01:18 - 00000000 ____D C:\Program Files (x86)\Mirillis
2017-02-05 01:05 - 2017-02-05 01:05 - 00000000 ____D C:\Users\linji\AppData\Local\ScreenCapture
2017-02-05 01:05 - 2017-02-05 01:05 - 00000000 ____D C:\ProgramData\Movavi
2017-02-05 01:04 - 2017-02-05 01:04 - 00004096 _____ C:\ProgramData\nakuvtjg.ewu
2017-02-05 01:04 - 2017-02-05 01:04 - 00000000 ____D C:\ProgramData\Movavi Screen Capture 8
2017-02-04 10:53 - 2017-02-04 10:53 - 00000000 ____D C:\Users\linji\AppData\LocalLow\Unity
2017-02-04 10:53 - 2017-02-04 10:53 - 00000000 ____D C:\Users\linji\AppData\Local\Unity
2017-02-04 10:52 - 2017-02-04 12:33 - 00000000 ____D C:\Users\linji\AppData\Local\Mail.Ru
2017-02-04 10:52 - 2017-02-04 11:53 - 00000000 ____D C:\ProgramData\Mail.Ru
2017-01-28 10:53 - 2017-01-28 10:53 - 00003486 _____ C:\WINDOWS\System32\Tasks\{0B2F2E8D-1F85-4B81-BC20-8C4DECED17BB}
2017-01-28 09:53 - 2017-01-28 09:54 - 00000000 ____D C:\Users\linji\AppData\Local\midori
2017-01-28 09:53 - 2017-01-28 09:53 - 00000000 ____D C:\Users\linji\AppData\Local\webkit
2017-01-28 09:53 - 2017-01-28 09:53 - 00000000 ____D C:\Users\linji\AppData\Local\fontconfig
2017-01-28 09:53 - 2017-01-28 09:53 - 00000000 ____D C:\Users\linji\.dbus-keyrings
2017-01-28 09:36 - 2017-01-28 09:36 - 00000000 ____D C:\Users\linji\AppData\LocalLow\MangaGamer
2017-01-26 19:24 - 2017-01-26 19:24 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2017-01-26 19:24 - 2017-01-26 19:24 - 00000000 ____D C:\Program Files\iTunes
2017-01-26 19:24 - 2017-01-26 19:24 - 00000000 ____D C:\Program Files\iPod
2017-01-26 19:22 - 2016-12-21 08:08 - 00142848 _____ (Microsoft Corporation) C:\WINDOWS\system32\poqexec.exe
2017-01-26 19:22 - 2016-12-21 05:44 - 00120320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\poqexec.exe
2017-01-26 01:13 - 2017-01-26 01:13 - 00103936 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-1-0-39-1.exe
2017-01-26 01:12 - 2017-01-26 01:12 - 00326656 _____ C:\WINDOWS\SysWOW64\vulkan-1-1-0-39-1.dll
2017-01-26 01:09 - 2017-01-26 01:09 - 00322560 _____ C:\WINDOWS\system32\vulkan-1-1-0-39-1.dll
2017-01-26 01:09 - 2017-01-26 01:09 - 00118272 _____ C:\WINDOWS\system32\vulkaninfo-1-1-0-39-1.exe
2017-01-24 16:51 - 2017-02-10 03:33 - 09305984 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2017-01-24 16:51 - 2017-02-10 03:33 - 02717752 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2017-01-24 16:51 - 2017-02-10 03:33 - 00447984 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2017-01-24 16:51 - 2017-01-20 17:38 - 09308896 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\SET40EE.tmp
2017-01-24 16:51 - 2017-01-20 17:38 - 02715072 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\SET4267.tmp
2017-01-24 16:51 - 2017-01-20 17:38 - 01985080 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6437849.dll
2017-01-24 16:51 - 2017-01-20 17:38 - 01591352 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6437849.dll
2017-01-24 16:51 - 2017-01-20 17:38 - 00447800 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\SET35FC.tmp
2017-01-24 16:51 - 2017-01-20 17:38 - 00000669 _____ C:\WINDOWS\SysWOW64\nv-vk32.json
2017-01-24 16:51 - 2017-01-20 17:38 - 00000669 _____ C:\WINDOWS\system32\nv-vk64.json
2017-01-22 21:50 - 2017-01-22 21:39 - 00114776 _____ (Kingsoft Corporation) C:\WINDOWS\system32\Drivers\ksapi.sys
2017-01-22 21:50 - 2017-01-22 21:39 - 00033024 _____ (MyDrivers.com) C:\WINDOWS\system32\Drivers\mydrivers64.sys
2017-01-22 21:50 - 2017-01-22 21:39 - 00033024 _____ (MyDrivers.com) C:\WINDOWS\system32\Drivers\mydrivers.sys
2017-01-22 21:50 - 2017-01-22 21:38 - 00063136 _____ (Kingsoft Corporation) C:\WINDOWS\system32\Drivers\kavbootc64_ev.sys
2017-01-22 21:50 - 2017-01-22 21:38 - 00053912 _____ (Kingsoft Corporation) C:\WINDOWS\system32\Drivers\kavbootc_ev.sys
2017-01-22 21:50 - 2017-01-22 21:38 - 00046168 _____ (Kingsoft Corporation) C:\WINDOWS\system32\Drivers\kavbootc.sys
2017-01-22 21:50 - 2017-01-22 21:36 - 00058096 _____ (Kingsoft Corporation) C:\WINDOWS\system32\Drivers\bootsafe64_ev.sys
2017-01-22 21:50 - 2017-01-22 21:36 - 00057072 _____ (Kingsoft Corporation) C:\WINDOWS\system32\Drivers\bootsafe_ev.sys
2017-01-22 21:50 - 2017-01-22 21:36 - 00051800 _____ (Kingsoft Corporation) C:\WINDOWS\system32\Drivers\bootsafe.sys
2017-01-22 17:38 - 2017-02-18 23:25 - 00004034 _____ C:\WINDOWS\System32\Tasks\SafeZone scheduled Autoupdate 1485103094
2017-01-22 17:38 - 2017-02-18 23:25 - 00001095 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast SafeZone Browser.lnk
2017-01-22 17:38 - 2017-02-17 23:14 - 00032088 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
2017-01-22 17:38 - 2017-01-22 17:38 - 00001095 _____ C:\Users\Public\Desktop\Avast SafeZone Browser.lnk
2017-01-22 17:37 - 2017-01-22 17:37 - 00001986 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Premium.lnk
2017-01-22 17:36 - 2017-02-17 23:15 - 00337080 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswvmm.sys
2017-01-22 17:36 - 2017-02-17 23:14 - 00991496 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2017-01-22 17:36 - 2017-02-17 23:14 - 00547904 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2017-01-22 17:36 - 2017-02-17 23:14 - 00456456 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswNetSec.sys
2017-01-22 17:36 - 2017-02-17 23:14 - 00337080 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswvmm.sys.148736971595304
2017-01-22 17:36 - 2017-02-17 23:14 - 00162528 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
2017-01-22 17:36 - 2017-02-17 23:14 - 00126088 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2017-01-22 17:36 - 2017-02-17 23:14 - 00100640 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2017-01-22 17:36 - 2017-02-17 23:14 - 00074680 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2017-01-22 17:36 - 2017-02-17 23:14 - 00038296 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswHwid.sys
2017-01-22 17:36 - 2017-01-22 17:36 - 00053208 _____ (AVAST Software) C:\WINDOWS\avastSS.scr
2017-01-22 17:36 - 2017-01-22 17:36 - 00044952 _____ () C:\WINDOWS\system32\Drivers\staport.sys
2017-01-21 14:40 - 2017-01-22 17:37 - 00000000 ____D C:\Users\linji\.LDSBoxHypervisorGlobal
2017-01-21 14:39 - 2017-01-21 14:39 - 00000000 ____D C:\Users\linji\AppData\Roaming\LDSGameMaster
2017-01-21 14:39 - 2017-01-21 14:39 - 00000000 ____D C:\Users\linji\AppData\Local\LDSGameMaster
2017-01-21 14:39 - 2017-01-21 14:39 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\抢红包助手
==================== Un mois - Modifiés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2017-02-19 21:27 - 2016-11-22 07:56 - 00000000 ____D C:\WINDOWS\system32\SleepStudy
2017-02-19 21:17 - 2016-10-21 13:58 - 00000052 _____ C:\Users\linji\AppData\Roaming\localcache.dat
2017-02-19 21:17 - 2016-10-21 13:58 - 00000052 _____ C:\Users\linji\AppData\Local\masm71.dat
2017-02-19 19:25 - 2017-01-03 02:05 - 00000000 ____D C:\Users\linji\AppData\Roaming\Spotify
2017-02-19 19:25 - 2017-01-03 02:05 - 00000000 ____D C:\Users\linji\AppData\Local\Spotify
2017-02-19 19:24 - 2016-02-28 10:01 - 00000000 ____D C:\Users\linji\AppData\Roaming\vlc
2017-02-19 19:23 - 2016-07-15 23:29 - 00000000 ____D C:\Users\linji\AppData\Roaming\qBittorrent
2017-02-19 19:23 - 2016-02-17 17:02 - 00000000 ____D C:\Program Files (x86)\Steam
2017-02-19 19:17 - 2016-07-16 12:45 - 00000000 ____D C:\WINDOWS\INF
2017-02-19 17:37 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\AppReadiness
2017-02-19 17:12 - 2016-07-12 15:27 - 00000000 ____D C:\Program Files (x86)\LDSGameCenter
2017-02-19 14:11 - 2016-02-18 03:42 - 00000000 ____D C:\ProgramData\NVIDIA
2017-02-18 20:57 - 2016-10-04 15:23 - 00000000 ____D C:\Users\linji\AppData\Local\Battle.net
2017-02-18 20:52 - 2016-10-04 15:20 - 00000000 ____D C:\Program Files (x86)\Battle.net
2017-02-18 18:30 - 2016-05-06 12:40 - 00000000 ____D C:\Users\linji\AppData\Roaming\TS3Client
2017-02-18 18:30 - 2016-02-18 17:16 - 00000000 ____D C:\Users\linji\AppData\Local\ElevatedDiagnostics
2017-02-18 18:21 - 2016-11-22 07:59 - 00000000 ____D C:\Users\linji
2017-02-18 18:21 - 2016-05-06 12:40 - 00000000 ____D C:\Users\linji\AppData\Local\TeamSpeak 3 Client
2017-02-18 17:22 - 2016-11-22 07:59 - 03120248 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2017-02-18 17:22 - 2016-07-16 23:40 - 01344042 _____ C:\WINDOWS\system32\perfh00C.dat
2017-02-18 17:22 - 2016-07-16 23:40 - 00335234 _____ C:\WINDOWS\system32\perfc00C.dat
2017-02-18 17:20 - 2016-07-16 12:47 - 00000000 ___HD C:\Program Files\WindowsApps
2017-02-17 23:34 - 2016-08-12 12:23 - 00000000 ___HD C:\Temp
2017-02-17 23:34 - 2016-03-28 08:58 - 00000000 ____D C:\Program Files (x86)\VulkanRT
2017-02-17 23:33 - 2016-07-12 15:28 - 00000000 ____D C:\Users\linji\AppData\Roaming\Ludashi
2017-02-17 23:27 - 2016-11-22 07:57 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2017-02-17 23:26 - 2016-12-18 18:30 - 00004308 _____ C:\WINDOWS\System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-02-17 23:26 - 2016-11-22 08:12 - 00003894 _____ C:\WINDOWS\System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-02-17 23:26 - 2016-11-22 08:12 - 00003884 _____ C:\WINDOWS\System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-02-17 23:26 - 2016-11-22 08:12 - 00003866 _____ C:\WINDOWS\System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-02-17 23:26 - 2016-11-22 08:12 - 00003858 _____ C:\WINDOWS\System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-02-17 23:26 - 2016-11-22 08:12 - 00003696 _____ C:\WINDOWS\System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2017-02-17 23:26 - 2016-11-22 07:57 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2017-02-17 23:26 - 2016-01-29 06:11 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2017-02-17 23:24 - 2016-11-22 08:12 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2017-02-17 23:24 - 2016-11-22 07:57 - 00000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2017-02-17 23:24 - 2016-09-24 15:38 - 00000000 ____D C:\Program Files (x86)\Hi-Rez Studios
2017-02-17 23:24 - 2016-08-11 04:19 - 00000350 _____ C:\WINDOWS\Tasks\HPCeeScheduleForlinji.job
2017-02-17 23:24 - 2016-02-18 18:45 - 00000000 ____D C:\ProgramData\TXQMPC
2017-02-17 23:24 - 2016-02-17 14:11 - 00000000 __SHD C:\Users\linji\IntelGraphicsProfiles
2017-02-17 23:23 - 2016-07-16 07:04 - 00524288 _____ C:\WINDOWS\system32\config\BBI
2017-02-17 23:23 - 2016-02-17 17:17 - 00000000 ____D C:\Users\linji\AppData\Roaming\Skype
2017-02-17 23:14 - 2016-01-29 06:20 - 00000000 ____D C:\ProgramData\AVAST Software
2017-02-17 17:10 - 2016-11-19 11:49 - 00000000 ____D C:\Users\linji\AppData\LocalLow\Mozilla
2017-02-17 17:08 - 2016-11-27 20:38 - 00000000 ____D C:\Users\linji\Desktop\fourberie de CS
2017-02-17 17:02 - 2016-03-06 19:08 - 00000021 _____ C:\Users\linji\AppData\Roaming\fixcfg.ini
2017-02-17 17:02 - 2016-03-06 19:08 - 00000000 ____D C:\WINDOWS\SysWOW64\dg597
2017-02-17 16:55 - 2016-12-08 16:44 - 00000000 ____D C:\Users\linji\AppData\Local\CrashDumps
2017-02-17 16:50 - 2016-07-16 07:04 - 00032768 _____ C:\WINDOWS\system32\config\ELAM
2017-02-17 16:22 - 2016-03-02 15:53 - 00000000 ____D C:\Users\linji\AppData\Roaming\BaiduYunGuanjia
2017-02-17 16:21 - 2016-08-12 12:21 - 00000000 ____D C:\Program Files\Tongbu
2017-02-17 16:21 - 2016-08-12 12:20 - 00000000 ____D C:\Users\linji\Documents\Tongbu
2017-02-17 16:20 - 2016-11-05 15:40 - 00000808 _____ C:\Users\Public\Desktop\腾讯QQ.lnk
2017-02-17 16:20 - 2016-03-26 10:37 - 00000000 ____D C:\Users\linji\Documents\Tencent Files
2017-02-17 16:20 - 2016-03-02 16:09 - 00000000 ____D C:\Users\linji\AppData\Roaming\BaiduYunKongMing
2017-02-17 16:20 - 2016-02-17 14:40 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\腾讯软件
2017-02-16 23:21 - 2016-05-15 20:53 - 00000000 ____D C:\Users\linji\BrawlhallaReplays
2017-02-16 22:26 - 2016-02-17 14:39 - 00000000 ____D C:\ProgramData\Tencent
2017-02-16 17:06 - 2016-11-22 08:12 - 00003242 _____ C:\WINDOWS\System32\Tasks\HPCeeScheduleForlinji
2017-02-11 11:22 - 2016-12-02 18:32 - 00000000 ____D C:\WINDOWS\Minidump
2017-02-11 02:29 - 2016-09-26 01:23 - 00000000 ____D C:\Users\linji\AppData\Roaming\Frontwing
2017-02-11 02:29 - 2016-05-27 06:06 - 00000000 ____D C:\Users\linji\AppData\Roaming\SmartSteamEmu
2017-02-10 20:29 - 2016-10-28 19:22 - 14516664 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvlddmkm.sys
2017-02-10 17:13 - 2016-02-17 17:08 - 00000000 ____D C:\Users\linji\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2017-02-10 07:20 - 2016-03-06 19:03 - 00000000 ____D C:\Users\linji\AppData\Roaming\dg
2017-02-10 03:33 - 2016-12-05 17:07 - 00576192 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvfatbinaryLoader.dll
2017-02-10 03:33 - 2016-10-28 19:22 - 04078008 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2017-02-10 03:33 - 2016-10-28 19:22 - 03597128 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2017-02-10 03:33 - 2016-10-28 19:22 - 00043556 _____ C:\WINDOWS\system32\nvinfo.pb
2017-02-10 00:13 - 2016-10-08 21:57 - 00001951 _____ C:\WINDOWS\NvContainerRecovery.bat
2017-02-09 23:57 - 2016-11-22 07:57 - 07791217 _____ C:\WINDOWS\system32\nvcoproc.bin
2017-02-09 23:57 - 2016-11-22 07:57 - 06403640 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2017-02-09 23:57 - 2016-11-22 07:57 - 02477504 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll
2017-02-09 23:57 - 2016-11-22 07:57 - 01764408 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll
2017-02-09 23:57 - 2016-11-22 07:57 - 00548288 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshext.dll
2017-02-09 23:57 - 2016-11-22 07:57 - 00393784 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll
2017-02-09 23:57 - 2016-11-22 07:57 - 00083512 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshextr.dll
2017-02-09 23:57 - 2016-11-22 07:57 - 00071224 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll
2017-02-09 22:43 - 2016-01-29 06:22 - 00000000 ____D C:\Program Files (x86)\Dropbox
2017-02-09 22:42 - 2016-03-13 22:47 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive
2017-02-09 22:39 - 2016-07-03 09:59 - 00000000 ____D C:\Program Files (x86)\MPC Cleaner
2017-02-08 19:17 - 2016-03-13 22:48 - 00000000 ___RD C:\Users\linji\Google Drive
2017-02-08 16:03 - 2016-02-18 20:37 - 00000000 ____D C:\Users\linji\AppData\Local\Google
2017-02-08 16:03 - 2016-02-18 20:37 - 00000000 ____D C:\Program Files (x86)\Google
2017-02-08 14:35 - 2016-02-17 14:11 - 00000000 ____D C:\Users\linji\AppData\Local\Packages
2017-02-08 14:18 - 2016-03-13 07:59 - 00000000 ____D C:\Users\linji\AppData\Roaming\RenPy
2017-02-08 13:51 - 2016-11-22 08:12 - 00003574 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2017-02-08 13:51 - 2016-11-22 08:12 - 00003350 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2017-02-08 13:02 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\LiveKernelReports
2017-02-07 22:03 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\system32\FxsTmp
2017-02-07 21:52 - 2016-07-16 12:47 - 00000000 __RSD C:\WINDOWS\Media
2017-02-07 21:32 - 2016-09-17 15:41 - 00000000 ____D C:\Program Files (x86)\epson
2017-02-07 21:31 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\system32\NDF
2017-02-07 21:03 - 2016-09-17 15:39 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EPSON
2017-02-07 21:03 - 2016-01-29 06:08 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2017-02-06 16:35 - 2016-02-17 15:02 - 00000000 ___RD C:\Users\linji\Dropbox
2017-02-05 05:36 - 2016-03-27 01:03 - 00000000 ____D C:\Program Files\Common Files\AV
2017-02-05 01:05 - 2016-06-11 16:50 - 00000000 ____D C:\Users\linji\AppData\Local\Movavi
2017-02-04 11:56 - 2016-12-02 18:32 - 00000290 __RSH C:\Users\linji\ntuser.pol
2017-02-04 11:56 - 2016-12-02 16:09 - 00000290 __RSH C:\ProgramData\ntuser.pol
2017-02-04 01:00 - 2016-02-20 00:11 - 00000000 ____D C:\Users\linji\AppData\Local\Warframe
2017-02-03 16:14 - 2016-02-17 17:16 - 00000000 ____D C:\ProgramData\Skype
2017-02-03 16:13 - 2016-02-17 17:17 - 00000000 ___RD C:\Program Files (x86)\Skype
2017-01-28 09:36 - 2016-12-10 11:50 - 00000000 ____D C:\Users\linji\AppData\Roaming\MangaGamer
2017-01-27 17:14 - 2016-03-07 19:08 - 00000936 _____ C:\Users\linji\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\lol.lnk
2017-01-26 20:42 - 2016-07-16 12:36 - 00000000 ____D C:\WINDOWS\CbsTemp
2017-01-26 19:24 - 2016-02-17 21:57 - 00000000 ____D C:\Program Files\Common Files\Apple
2017-01-26 01:13 - 2016-09-02 17:49 - 00103936 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2017-01-26 01:12 - 2016-09-02 17:49 - 00326656 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2017-01-26 01:09 - 2016-09-02 17:49 - 00322560 _____ C:\WINDOWS\system32\vulkan-1.dll
2017-01-26 01:09 - 2016-09-02 17:49 - 00118272 _____ C:\WINDOWS\system32\vulkaninfo.exe
2017-01-22 21:54 - 2016-10-30 17:14 - 00110144 _____ (Oracle Corporation) C:\WINDOWS\system32\WindowsAccessBridge-64.dll
2017-01-22 21:54 - 2016-06-10 23:32 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2017-01-22 21:53 - 2016-10-30 17:14 - 00000000 ____D C:\Program Files\Java
2017-01-22 21:40 - 2016-08-24 00:41 - 00001002 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2017-01-22 21:39 - 2017-01-05 22:23 - 00079000 _____ (Kingsoft Corporation) C:\WINDOWS\system32\Drivers\ksapi64.sys
2017-01-22 21:38 - 2017-01-05 22:23 - 00055384 _____ (Kingsoft Corporation) C:\WINDOWS\system32\Drivers\kavbootc64.sys
2017-01-22 21:38 - 2016-10-17 16:43 - 00419592 _____ (MyDrivers.com) C:\WINDOWS\system32\Drivers\dgsafe_del.sys
2017-01-22 21:38 - 2016-10-17 16:43 - 00419592 _____ (MyDrivers.com) C:\WINDOWS\system32\Drivers\DgSafe.sys
2017-01-22 21:36 - 2017-01-05 22:27 - 00052824 _____ (Kingsoft Corporation) C:\WINDOWS\system32\Drivers\bootsafe64.sys
2017-01-22 21:35 - 2016-02-17 14:59 - 00000000 ____D C:\Users\linji\AppData\Local\Tencent
2017-01-22 18:20 - 2016-11-22 08:12 - 00003542 _____ C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task
2017-01-22 18:19 - 2016-03-26 10:39 - 00002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2017-01-22 18:16 - 2016-12-02 16:09 - 00000000 ____D C:\Users\linji\AppData\Roaming\ASPackage
2017-01-22 18:16 - 2016-12-02 16:09 - 00000000 ____D C:\Program Files (x86)\Youtube AdBlock
2017-01-22 18:16 - 2016-12-02 16:09 - 00000000 ____D C:\Program Files (x86)\36444335-1480691363-3933-3656-DC4A3EF4324B
2017-01-22 18:16 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\SysWOW64\Macromed
2017-01-22 18:16 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\system32\Macromed
2017-01-22 17:37 - 2016-01-29 06:20 - 00000000 ____D C:\Program Files\AVAST Software
2017-01-22 10:38 - 2016-02-19 19:25 - 00000000 ____D C:\Users\linji\AppData\Local\Arma 3 Launcher
2017-01-21 14:39 - 2016-07-12 15:27 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\鲁大师
2017-01-20 21:21 - 2016-07-12 21:06 - 00000000 ____D C:\Users\linji\AppData\Roaming\DrvMgr
2017-01-20 19:39 - 2017-01-17 17:36 - 00057792 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvhci.sys
2017-01-20 19:39 - 2016-10-08 21:57 - 01872320 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspcap64.dll
2017-01-20 19:39 - 2016-10-08 21:57 - 01755072 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspbridge64.dll
2017-01-20 19:39 - 2016-10-08 21:57 - 01464768 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspcap.dll
2017-01-20 19:39 - 2016-10-08 21:57 - 01317312 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspbridge.dll
2017-01-20 19:39 - 2016-10-08 21:57 - 00120256 _____ C:\WINDOWS\system32\NvRtmpStreamer64.dll
2017-01-20 17:38 - 2016-12-05 17:07 - 00576192 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\SET4288.tmp
2017-01-20 17:38 - 2016-11-22 07:57 - 00514616 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.DLL
2017-01-20 17:38 - 2016-11-22 07:57 - 00420408 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2017-01-20 17:38 - 2016-10-28 19:22 - 04079032 _____ (NVIDIA Corporation) C:\WINDOWS\system32\SETFFF9.tmp
2017-01-20 17:38 - 2016-10-28 19:22 - 03597640 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\SET366B.tmp
2017-01-20 14:36 - 2016-12-18 18:30 - 00001951 _____ C:\WINDOWS\NvTelemetryContainerRecovery.bat
==================== Fichiers à la racine de certains dossiers =======
2016-05-07 17:22 - 2016-05-07 17:22 - 0000042 _____ () C:\Users\linji\AppData\Roaming\altisrpfr.txt
2016-05-07 17:22 - 2016-05-07 17:33 - 0000001 _____ () C:\Users\linji\AppData\Roaming\altisrpfrJSRS.txt
2016-05-07 17:22 - 2016-05-07 17:22 - 0000047 _____ () C:\Users\linji\AppData\Roaming\altisrpfrts.txt
2016-09-02 09:29 - 2016-09-01 18:03 - 2710480 _____ (淘宝) C:\Users\linji\AppData\Roaming\DandelionSetup.exe
2016-03-06 19:08 - 2017-02-17 17:02 - 0000021 _____ () C:\Users\linji\AppData\Roaming\fixcfg.ini
2016-02-18 18:45 - 2016-02-18 18:45 - 0005120 _____ () C:\Users\linji\AppData\Roaming\GiftBag.db
2016-10-21 13:58 - 2017-02-19 21:17 - 0000052 _____ () C:\Users\linji\AppData\Roaming\localcache.dat
2016-02-21 10:56 - 2016-03-13 23:13 - 0002404 _____ () C:\Users\linji\AppData\Roaming\net.telestream.gameshow.xml
2016-07-10 19:28 - 2016-07-10 19:28 - 0704320 _____ () C:\Users\linji\AppData\Roaming\TXQBINSTX.DLL
2016-09-20 19:38 - 2016-09-20 19:39 - 48185856 _____ (Tencent Inc.) C:\Users\linji\AppData\Roaming\TXQBINSTX2.EXE
2016-02-28 15:58 - 2016-02-28 16:03 - 0000045 _____ () C:\Users\linji\AppData\Roaming\xlaccolsetupstatus.ini
2016-02-28 11:44 - 2016-03-07 17:22 - 0000092 _____ () C:\Users\linji\AppData\Roaming\xlgdlapp.ini
2016-07-18 20:59 - 2016-07-03 04:28 - 0719714 ___SH () C:\Users\linji\AppData\Local\CSIDL_
2016-07-18 21:01 - 2016-07-03 04:28 - 0719714 ___SH () C:\Users\linji\AppData\Local\CSIDL_X
2016-02-17 14:24 - 2016-02-17 20:31 - 2128896 _____ () C:\Users\linji\AppData\Local\file__0.localstorage
2016-10-21 13:58 - 2017-02-19 21:17 - 0000052 _____ () C:\Users\linji\AppData\Local\masm71.dat
2016-02-21 10:56 - 2016-03-13 23:13 - 0000601 _____ () C:\ProgramData\ContentToHashDecode.bin
2016-06-17 05:52 - 2016-06-06 14:52 - 0126640 _____ (Kingsoft Corporation) C:\ProgramData\dbsf.dll
2016-03-02 18:58 - 2016-03-04 20:42 - 0000223 _____ () C:\ProgramData\DP0004.dat
2016-06-02 21:25 - 2016-06-02 21:25 - 0123704 _____ () C:\ProgramData\emexkl.dll
2016-02-21 10:56 - 2016-03-13 23:13 - 0000003 _____ () C:\ProgramData\ExponentBeforeReversal.bin
2016-02-21 10:56 - 2016-03-13 23:13 - 0000004 _____ () C:\ProgramData\KeyInBlob.bin
2016-09-21 15:09 - 2016-09-21 15:09 - 0000016 _____ () C:\ProgramData\mntemp
2016-02-21 10:56 - 2016-03-13 23:13 - 0000128 _____ () C:\ProgramData\ModulusBeforeReversal.bin
2016-02-21 10:56 - 2016-03-13 23:13 - 0000128 _____ () C:\ProgramData\ModulusInBlob.bin
2017-02-05 01:04 - 2017-02-05 01:04 - 0004096 _____ () C:\ProgramData\nakuvtjg.ewu
2016-06-02 21:25 - 2016-12-23 19:23 - 0007280 _____ () C:\ProgramData\nmlist.ini
2016-06-11 16:50 - 2016-06-11 16:50 - 0004887 _____ () C:\ProgramData\nolecicr.ofg
2016-12-18 18:30 - 2017-01-17 17:36 - 0005110 _____ () C:\ProgramData\NvTelemetryContainer.log
2016-12-18 18:30 - 2017-01-16 22:16 - 0006687 _____ () C:\ProgramData\NvTelemetryContainer.log_backup1
2016-02-21 10:56 - 2016-03-13 23:13 - 0000140 _____ () C:\ProgramData\PublicKeyDecode.bin
2016-02-21 10:56 - 2016-03-13 23:13 - 0000128 _____ () C:\ProgramData\SignatureDecode.bin
2016-07-18 20:42 - 2016-07-18 20:43 - 0512000 _____ () C:\ProgramData\smp2.exe
2016-07-16 03:27 - 2016-07-16 03:27 - 0000000 _____ () C:\ProgramData\UserDefault.log
Fichiers à déplacer ou supprimer:
====================
C:\Users\linji\AppData\Local\Temp\removelds_gcenter.bat
C:\ProgramData\dbsf.dll
C:\ProgramData\DP0004.dat
C:\ProgramData\emexkl.dll
C:\ProgramData\smp2.exe
C:\Users\Public\ASR.dat
==================== Bamital & volsnap ======================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
C:\WINDOWS\system32\winlogon.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\wininit.exe => Le fichier est signé numériquement
C:\WINDOWS\explorer.exe => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\explorer.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\svchost.exe => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\svchost.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\services.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\User32.dll => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\User32.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\userinit.exe => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\userinit.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\rpcss.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\dnsapi.dll => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\dnsapi.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\Drivers\volsnap.sys => Le fichier est signé numériquement
LastRegBack: 2017-02-12 17:37
==================== Fin de FRST.txt ============================