cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x86) Version: 31-07-2017
Exécuté par Toshiba (administrateur) sur TOSHIBA-PC (02-08-2017 14:22:24)
Exécuté depuis C:\Users\Toshiba\Desktop
Profils chargés: Toshiba (Profils disponibles: Toshiba)
Platform: Windows 7 Ultimate Service Pack 1 (X86) Langue: Français (France)
Internet Explorer Version 11 (Navigateur par défaut: IE)
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processus (Avec liste blanche) =================

(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)

(AO Kaspersky Lab) C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 17.0.0\avp.exe
(CANON INC.) C:\Windows\System32\CNAB4RPK.EXE
() C:\ProgramData\DatacardService\HWDeviceService.exe
(Huawei Technologies Co., Ltd.) C:\ProgramData\DatacardService\DCSHelper.exe
() C:\ProgramData\Internet Mobile\OnlineUpdate\ouc.exe
(AO Kaspersky Lab) C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 17.0.0\avpui.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
(zbshareware, Inc) C:\Program Files\USB Disk Security\USBGuard.exe
(CyberLink Corp.) C:\Program Files\CyberLink\PowerDVD10\PDVD10Serv.exe
(cyberlink) C:\Program Files\CyberLink\Shared files\brs.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Microsoft Corporation) C:\Windows\System32\StikyNot.exe
(TOSHIBA CORPORATION.) C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtMng.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
(AO Kaspersky Lab) C:\Program Files\Kaspersky Lab\Kaspersky Secure Connection 1.0\ksde.exe
(TOSHIBA CORPORATION) C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe
(TOSHIBA CORPORATION.) C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosA2dp.exe
(TOSHIBA CORPORATION.) C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtHid.exe
(TOSHIBA CORPORATION.) C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtHSP.exe
(TOSHIBA CORPORATION.) C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosAVRC.exe
(AO Kaspersky Lab) C:\Program Files\Kaspersky Lab\Kaspersky Secure Connection 1.0\ksdeui.exe
(RealNetworks, Inc.) C:\Program Files\Real\RealPlayer\RPDS\Bin\rpdsvc.exe
(RealNetworks, Inc.) C:\Program Files\Real\RealPlayer\RPDS\Bin\rpsystray.exe
() C:\Program Files\Real\RealPlayer\RealDownloader\downloader2.exe
(TOSHIBA CORPORATION.) C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosOBEX.exe
(TOSHIBA CORPORATION.) C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtProc.exe
(AO Kaspersky Lab) C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 17.0.0\avp.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe

==================== Registre (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)

HKLM\...\Run: [GrooveMonitor] => C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation)
HKLM\...\Run: [USB Antivirus] => C:\Program Files\USB Disk Security\USBGuard.exe [798720 2008-08-16] (zbshareware, Inc)
HKLM\...\Run: [RemoteControl10] => C:\Program Files\CyberLink\PowerDVD10\PDVD10Serv.exe [87336 2010-02-03] (CyberLink Corp.)
HKLM\...\Run: [BDRegion] => C:\Program Files\Cyberlink\Shared files\brs.exe [75048 2010-03-13] (cyberlink)
HKLM\...\Run: [ITSecMng] => C:\Program Files\TOSHIBA\Bluetooth Toshiba Stack\ItSecMng.exe [83336 2009-07-22] (TOSHIBA CORPORATION)
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [587288 2017-07-21] (Oracle Corporation)
HKLM\...\Run: [RealDownloader] => C:\program files\real\realplayer\RealDownloader\downloader2.exe [1297648 2017-06-02] ()
HKU\S-1-5-21-1194098335-531965534-4053786094-1000\...\Run: [msnmsgr] => "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
HKU\S-1-5-21-1194098335-531965534-4053786094-1000\...\Run: [RESTART_STICKY_NOTES] => C:\Windows\System32\StikyNot.exe [354304 2009-07-14] (Microsoft Corporation)
HKU\S-1-5-21-1194098335-531965534-4053786094-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner.exe [7658200 2017-06-30] (Piriform Ltd)
HKU\S-1-5-21-1194098335-531965534-4053786094-1000\...\MountPoints2: F - F:\AutoRun.exe
HKU\S-1-5-21-1194098335-531965534-4053786094-1000\...\MountPoints2: {2dba18b9-29a9-11e1-821d-705ab6b960cf} - F:\AutoRun.exe
HKU\S-1-5-21-1194098335-531965534-4053786094-1000\...\MountPoints2: {713285e0-2cd8-11e1-8d0d-705ab6b960cf} - F:\AutoRun.exe
HKU\S-1-5-21-1194098335-531965534-4053786094-1000\...\MountPoints2: {a0347f3c-274f-11e1-892e-705ab6b960cf} - F:\AutoRun.exe
HKU\S-1-5-21-1194098335-531965534-4053786094-1000\...\MountPoints2: {a0347f4a-274f-11e1-892e-705ab6b960cf} - F:\AutoRun.exe
HKU\S-1-5-21-1194098335-531965534-4053786094-1000\...\MountPoints2: {ad0b1cbd-a711-11e0-9080-8c79d2cda9b8} - F:\AutoRun.exe
HKU\S-1-5-21-1194098335-531965534-4053786094-1000\...\MountPoints2: {ad0b1cd2-a711-11e0-9080-8c79d2cda9b8} - F:\AutoRun.exe
HKU\S-1-5-18\...\RunOnce: [SPReview] => C:\Windows\System32\SPReview\SPReview.exe [280576 2013-05-28] (Microsoft Corporation)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth Manager.lnk [2010-09-04]
ShortcutTarget: Bluetooth Manager.lnk -> C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtMng.exe (TOSHIBA CORPORATION.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Canon LBP2900 Fenêtre d'état.lnk [2012-07-03]
ShortcutTarget: Canon LBP2900 Fenêtre d'état.lnk -> C:\Windows\System32\spool\drivers\w32x86\3\CNAB4LAK.EXE (CANON INC.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\RealTimes.lnk [2017-08-02]
ShortcutTarget: RealTimes.lnk -> C:\Program Files\Real\RealPlayer\RPDS\Bin\rpsystray.exe (RealNetworks, Inc.)
Startup: C:\Users\Toshiba\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneNote 2007 - Capture d'écran et lancement.lnk [2010-12-22]
ShortcutTarget: OneNote 2007 - Capture d'écran et lancement.lnk -> C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE (Microsoft Corporation)

==================== Internet (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{0E72F6CB-2296-4E69-BB32-FE7EDC28C8C4}: [NameServer] 212.217.0.1 212.217.1.1
Tcpip\..\Interfaces\{1EAB5091-7691-453C-B7C5-4681410F5500}: [NameServer] 212.217.0.1 212.217.1.1
Tcpip\..\Interfaces\{5922670A-F7E1-4DA7-A921-F6D449E4E7E8}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{70A7C95B-1AE5-4B34-A219-90400680BBB1}: [NameServer] 212.217.0.1 212.217.1.1

Internet Explorer:
==================
HKU\S-1-5-21-1194098335-531965534-4053786094-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.co.ma/
HKU\S-1-5-21-1194098335-531965534-4053786094-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://fr.msn.com/?ocid=iehp
SearchScopes: HKU\S-1-5-21-1194098335-531965534-4053786094-1000 -> DefaultScope {9D5BD211-422C-4164-9298-BB4186A30F31} URL = hxxp://www.bing.com/search?q={searchTerms}&mkt=fr-FR&form=MIAWB1
SearchScopes: HKU\S-1-5-21-1194098335-531965534-4053786094-1000 -> {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL = hxxp://search.babylon.com/?q={searchTerms}&AF=108988&babsrc=SP_ss&mntrId=d688d45c00000000000070f1a1756cba
SearchScopes: HKU\S-1-5-21-1194098335-531965534-4053786094-1000 -> {9D5BD211-422C-4164-9298-BB4186A30F31} URL = hxxp://www.bing.com/search?q={searchTerms}&mkt=fr-FR&form=MIAWB1
BHO: Kaspersky Protection -> {2E38825B-8815-42CF-9126-C58BC28D4591} -> C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 17.0.0\IEExt\ie_plugin.dll [2017-03-29] (AO Kaspersky Lab)
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26] (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_144\bin\ssv.dll [2017-08-01] (Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_144\bin\jp2ssv.dll [2017-08-01] (Oracle Corporation)
BHO: Yontoo -> {FD72061E-9FDE-484D-A58A-0BAB4151CAD8} -> C:\Program Files\Yontoo\YontooIEClient.dll => Pas de fichier
Toolbar: HKLM - Kaspersky Protection Toolbar - {093F479D-712E-46CD-9E06-62E734A05F68} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 17.0.0\IEExt\ie_plugin.dll [2017-03-29] (AO Kaspersky Lab)
Toolbar: HKU\S-1-5-21-1194098335-531965534-4053786094-1000 -> Pas de nom - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - Pas de fichier
Toolbar: HKU\S-1-5-21-1194098335-531965534-4053786094-1000 -> Pas de nom - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - Pas de fichier
DPF: {44C7F862-906C-11D3-A8ED-0008C75B3588} hxxp://www.groupeiscae.ma/cyberdocs/DMExtensions/papibrdg.cab
DPF: {B91AEDBE-93DF-4017-8BB3-F1C300C0EC51} hxxp://www.groupeiscae.ma/cyberdocs/DMExtensions/deployment/is/setup.exe
DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll [2009-02-26] (Microsoft Corporation)

FireFox:
========
FF ProfilePath: C:\Users\Toshiba\AppData\Roaming\Mozilla\Firefox\Profiles\ibfvrj8t.default [2017-08-02]
FF user.js: detected! => C:\Users\Toshiba\AppData\Roaming\Mozilla\Firefox\Profiles\ibfvrj8t.default\user.js [2017-08-01]
FF DefaultSearchEngine: Mozilla\Firefox\Profiles\ibfvrj8t.default -> Search the web (Babylon)
FF SearchEngineOrder.1: Mozilla\Firefox\Profiles\ibfvrj8t.default -> Search the web (Babylon)
FF SelectedSearchEngine: Mozilla\Firefox\Profiles\ibfvrj8t.default -> Bing
FF Homepage: Mozilla\Firefox\Profiles\ibfvrj8t.default -> hxxp://www.google.co.ma/
FF Keyword.URL: Mozilla\Firefox\Profiles\ibfvrj8t.default -> hxxp://www.bing.com/search?mkt=fr-FR&form=MIAWB1&q=
FF Extension: (Babylon) - C:\Users\Toshiba\AppData\Roaming\Mozilla\Firefox\Profiles\ibfvrj8t.default\Extensions\ffxtlbr@babylon.com [2012-02-21] [non signé]
FF Extension: (Pas de nom) - C:\Users\Toshiba\AppData\Roaming\Mozilla\Firefox\Profiles\ibfvrj8t.default\Extensions\{33e0daa6-3af3-d8b5-6752-10e949c61516} [2017-08-01] [non signé]
FF Extension: (Pas de nom) - C:\Users\Toshiba\AppData\Roaming\Mozilla\Firefox\Profiles\ibfvrj8t.default\extensions\plugin@yontoo.com [non trouvé(e)]
FF Extension: (Pas de nom) - C:\Program Files\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} [non trouvé(e)]
FF Extension: (Pas de nom) - C:\Program Files\Alwil Software\Avast5\WebRep\FF [non trouvé(e)]
FF HKLM\...\Firefox\Extensions: [ClickPotatoLite@ClickPotatoLite.com] - C:\Program Files\ClickPotatoLite\bin\10.0.659.0\firefox\extensions
FF Extension: (ClickPotatoLite Component) - C:\Program Files\ClickPotatoLite\bin\10.0.659.0\firefox\extensions [2011-02-01] [non signé]
FF HKLM\...\Firefox\Extensions: [{ABDE892B-13A8-4d1b-88E6-365A6E755758}] - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext => non trouvé(e)
FF HKLM\...\Firefox\Extensions: [light_plugin_F6F079488B53499DB99380A7E11A93F6@kaspersky.com] - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 17.0.0\FFExt\light_plugin_firefox\addon.xpi
FF Extension: (Kaspersky Protection) - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 17.0.0\FFExt\light_plugin_firefox\addon.xpi [2017-08-01]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_26_0_0_137.dll [2017-08-01] ()
FF Plugin: @java.com/DTPlugin,version=11.144.2 -> C:\Program Files\Java\jre1.8.0_144\bin\dtplugin\npDeployJava1.dll [2017-08-01] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.144.2 -> C:\Program Files\Java\jre1.8.0_144\bin\plugin2\npjp2.dll [2017-08-01] (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE -> disabled [Pas de fichier]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-11] ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeLive,version=1.5 -> C:\Program Files\Microsoft\Office Live\npOLW.dll [2010-04-26] (Microsoft Corp.)
FF Plugin: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll [Pas de fichier]
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-08-01] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-08-01] (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.2.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2017-04-05] (Adobe Systems Inc.)

Chrome:
=======
CHR DefaultProfile: Default
CHR HomePage: Default -> hxxp://www.google.co.ma/
CHR StartupUrls: Default -> "hxxp://www.google.co.ma/"
CHR DefaultSearchURL: Default -> hxxps://www.bing.com/search?q={searchTerms}&PC=U316&FORM=CHROMN
CHR DefaultSearchKeyword: Default -> bing.com
CHR DefaultNewTabURL: Default -> hxxps://www.bing.com/chrome/newtab
CHR DefaultSuggestURL: Default -> hxxps://www.bing.com/osjson.aspx?query={searchTerms}&language={language}&PC=U316
CHR Profile: C:\Users\Toshiba\AppData\Local\Google\Chrome\User Data\Default [2017-08-01]
CHR Extension: (Google Docs) - C:\Users\Toshiba\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-08-01]
CHR Extension: (Google Drive) - C:\Users\Toshiba\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-08-01]
CHR Extension: (YouTube) - C:\Users\Toshiba\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-08-01]
CHR Extension: (Complitly plugin for chrome) - C:\Users\Toshiba\AppData\Local\Google\Chrome\User Data\Default\Extensions\dlfienamagdnkekbbbocojppncdambda [2012-03-09] [UpdateUrl: hxxp://www.predictad.com/update/chrome/?si=31847&ver=1.1] <==== ATTENTION
CHR Extension: (Kaspersky Protection) - C:\Users\Toshiba\AppData\Local\Google\Chrome\User Data\Default\Extensions\fhoibnponjcgjgcnfacekaijdbbplhib [2017-08-01]
CHR Extension: (Google Docs hors connexion) - C:\Users\Toshiba\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-08-01]
CHR Extension: (Skype) - C:\Users\Toshiba\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2017-08-01]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Toshiba\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-08-01]
CHR Extension: (Gmail) - C:\Users\Toshiba\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-08-01]
CHR Extension: (Chrome Media Router) - C:\Users\Toshiba\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-08-01]
CHR HKLM\...\Chrome\Extension: [dlfienamagdnkekbbbocojppncdambda] - C:\Program Files\Complitly\chrome\ComplitlyChrome.crx [2012-02-21]
CHR HKLM\...\Chrome\Extension: [fhoibnponjcgjgcnfacekaijdbbplhib] - hxxps://chrome.google.com/webstore/detail/fhoibnponjcgjgcnfacekaijdbbplhib
CHR HKLM\...\Chrome\Extension: [jfmjfhklogoienhpfnppmbcbjfjnkonk] -
CHR HKLM\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - hxxps://clients2.google.com/service/update2/crx

==================== Services (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R2 AVP17.0.0; C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 17.0.0\avp.exe [241544 2016-06-28] (AO Kaspersky Lab)
R2 HWDeviceService.exe; C:\ProgramData\DatacardService\HWDeviceService.exe [271712 2011-03-14] ()
S2 Internet Mobile. RunOuc; C:\Program Files\Internet Mobile\UpdateDog\ouc.exe [246112 2011-12-15] ()
R2 KSDE1.0.0; C:\Program Files\Kaspersky Lab\Kaspersky Secure Connection 1.0\ksde.exe [241544 2016-06-28] (AO Kaspersky Lab)
R2 RealTimes Desktop Service; c:\program files\real\realplayer\RPDS\Bin\rpdsvc.exe [988944 2017-08-02] (RealNetworks, Inc.)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2013-05-27] (Microsoft Corporation)

===================== Pilotes (Avec liste blanche) ======================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R0 4F3902236; C:\Windows\System32\drivers\4F3902236.sys [153784 2017-08-02] (Kaspersky Lab ZAO)
R0 cm_km; C:\Windows\System32\DRIVERS\cm_km.sys [170840 2016-06-10] (AO Kaspersky Lab)
S2 E4LOADER; C:\Windows\System32\Drivers\e4ldr.sys [69656 2007-01-04] (Analog Deivces)
S3 e4usbaw; C:\Windows\System32\DRIVERS\e4usbaw.sys [104344 2007-01-04] (Analog Devices Inc.)
R0 kl1; C:\Windows\System32\DRIVERS\kl1.sys [165296 2016-06-02] (AO Kaspersky Lab)
R0 klbackupdisk; C:\Windows\System32\DRIVERS\klbackupdisk.sys [57264 2016-06-07] (AO Kaspersky Lab)
R1 klbackupflt; C:\Windows\System32\DRIVERS\klbackupflt.sys [71504 2016-06-15] (AO Kaspersky Lab)
R2 kldisk; C:\Windows\System32\DRIVERS\kldisk.sys [69000 2016-05-31] (AO Kaspersky Lab)
R3 klflt; C:\Windows\System32\DRIVERS\klflt.sys [155328 2017-08-01] (AO Kaspersky Lab)
R1 klhk; C:\Windows\System32\DRIVERS\klhk.sys [129496 2017-08-01] (AO Kaspersky Lab)
R1 KLIF; C:\Windows\System32\DRIVERS\klif.sys [807104 2017-08-01] (AO Kaspersky Lab)
R1 KLIM6; C:\Windows\System32\DRIVERS\klim6.sys [49744 2017-03-29] (AO Kaspersky Lab)
R3 klkbdflt; C:\Windows\System32\DRIVERS\klkbdflt.sys [46000 2016-05-19] (AO Kaspersky Lab)
R3 klmouflt; C:\Windows\System32\DRIVERS\klmouflt.sys [38072 2015-06-07] (Kaspersky Lab ZAO)
R1 klpd; C:\Windows\System32\DRIVERS\klpd.sys [41392 2016-05-31] (AO Kaspersky Lab)
R3 kltap; C:\Windows\System32\DRIVERS\kltap.sys [48056 2016-06-07] (The OpenVPN Project)
R1 kltdi; C:\Windows\System32\DRIVERS\kltdi.sys [71088 2016-05-17] (AO Kaspersky Lab)
R1 Klwtp; C:\Windows\System32\DRIVERS\klwtp.sys [116960 2017-03-29] (AO Kaspersky Lab)
R1 kneps; C:\Windows\System32\DRIVERS\kneps.sys [165336 2017-08-01] (AO Kaspersky Lab)
R2 {1BA31E5A-C098-42d8-8F88-3C9F78A2FDDC}; C:\Program Files\CyberLink\PowerDVD10\NavFilter\000.fcl [87536 2010-03-13] (CyberLink Corp.)

==================== NetSvcs (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)


==================== Un mois - Créés - fichiers et dossiers ========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2017-08-02 14:22 - 2017-08-02 14:23 - 000019876 _____ C:\Users\Toshiba\Desktop\FRST.txt
2017-08-02 14:22 - 2017-08-02 14:22 - 000000000 ____D C:\FRST
2017-08-02 14:21 - 2017-08-02 14:21 - 001777664 _____ (Farbar) C:\Users\Toshiba\Desktop\FRST.exe
2017-08-02 13:26 - 2017-08-02 13:26 - 000000968 _____ C:\Users\Public\Desktop\RealPlayer (RealTimes).lnk
2017-08-02 12:44 - 2017-08-02 12:45 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2017-08-02 12:44 - 2017-08-02 12:44 - 000002685 _____ C:\Users\Public\Desktop\Skype.lnk
2017-08-02 12:44 - 2017-08-02 12:44 - 000000000 ___RD C:\Program Files\Skype
2017-08-02 12:44 - 2017-08-02 12:44 - 000000000 ____D C:\Program Files\Common Files\Skype
2017-08-02 10:54 - 2017-08-02 10:54 - 000153784 _____ (Kaspersky Lab ZAO) C:\Windows\system32\Drivers\4F3902236.sys
2017-08-02 10:46 - 2017-08-02 11:52 - 000424250 _____ C:\Windows\ntbtlog.txt
2017-08-02 10:38 - 2017-08-02 10:42 - 000000000 ____D C:\Users\Toshiba\Desktop\cor
2017-08-01 18:18 - 2017-08-01 22:58 - 000000000 ____D C:\Users\Toshiba\Doctor Web
2017-08-01 18:18 - 2017-08-01 18:18 - 000000000 ____D C:\ProgramData\Doctor Web
2017-08-01 16:42 - 2017-08-02 12:55 - 000000000 ____D C:\Users\Toshiba\AppData\Roaming\ZHP
2017-08-01 16:42 - 2017-08-02 12:55 - 000000000 ____D C:\Users\Toshiba\AppData\Local\ZHP
2017-08-01 16:32 - 2017-08-01 16:32 - 000002171 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2017-08-01 16:32 - 2017-08-01 16:32 - 000002159 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2017-08-01 16:27 - 2017-08-01 16:29 - 000000000 ____D C:\Users\Toshiba\AppData\Local\Deployment
2017-08-01 16:27 - 2017-08-01 16:27 - 000000000 ____D C:\Users\Toshiba\AppData\Local\Apps\2.0
2017-08-01 15:27 - 2015-12-11 19:35 - 000951808 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2017-08-01 15:27 - 2015-11-16 21:12 - 000176128 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
2017-08-01 15:27 - 2015-11-11 19:39 - 001242624 _____ (Microsoft Corporation) C:\Windows\system32\comsvcs.dll
2017-08-01 15:27 - 2015-11-11 19:39 - 000487936 _____ (Microsoft Corporation) C:\Windows\system32\catsrvut.dll
2017-08-01 15:27 - 2015-11-10 19:39 - 001251328 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2017-08-01 15:27 - 2015-11-10 19:39 - 000909824 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2017-08-01 15:27 - 2015-11-10 19:39 - 000811520 _____ (Microsoft Corporation) C:\Windows\system32\user32.dll
2017-08-01 15:27 - 2015-11-10 18:40 - 002386944 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2017-08-01 15:27 - 2015-10-29 18:50 - 000005120 _____ (Microsoft Corporation) C:\Windows\system32\shimeng.dll
2017-08-01 15:27 - 2015-10-29 18:49 - 000295936 _____ (Microsoft Corporation) C:\Windows\system32\apphelp.dll
2017-08-01 15:27 - 2015-10-29 18:49 - 000062464 _____ (Microsoft Corporation) C:\Windows\system32\aelupsvc.dll
2017-08-01 15:27 - 2015-10-29 18:49 - 000020992 _____ (Microsoft Corporation) C:\Windows\system32\sdbinst.exe
2017-08-01 15:27 - 2015-10-13 17:31 - 000338944 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2017-08-01 15:27 - 2015-10-13 17:31 - 000074752 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdx.sys
2017-08-01 15:27 - 2015-10-13 05:50 - 000712640 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndis.sys
2017-08-01 15:25 - 2015-11-03 19:55 - 000179712 _____ (Microsoft Corporation) C:\Windows\system32\els.dll
2017-08-01 15:10 - 2017-08-01 15:10 - 000000020 _____ C:\Windows\˜öÈ
2017-08-01 15:09 - 2015-12-08 22:54 - 002285056 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
2017-08-01 15:09 - 2015-12-08 22:54 - 001620992 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL
2017-08-01 15:09 - 2015-12-08 22:54 - 001568768 _____ (Microsoft Corporation) C:\Windows\system32\WMVENCOD.DLL
2017-08-01 15:09 - 2015-12-08 22:54 - 001325056 _____ (Microsoft Corporation) C:\Windows\system32\WMSPDMOE.DLL
2017-08-01 15:09 - 2015-12-08 22:54 - 000902144 _____ (Microsoft Corporation) C:\Windows\system32\WMADMOD.DLL
2017-08-01 15:09 - 2015-12-08 22:54 - 000815616 _____ (Microsoft Corporation) C:\Windows\system32\WMADMOE.DLL
2017-08-01 15:09 - 2015-12-08 22:54 - 000740352 _____ (Microsoft Corporation) C:\Windows\system32\wmpmde.dll
2017-08-01 15:09 - 2015-12-08 22:54 - 000739328 _____ (Microsoft Corporation) C:\Windows\system32\WMSPDMOD.DLL
2017-08-01 15:09 - 2015-12-08 22:54 - 000665088 _____ (Microsoft Corporation) C:\Windows\system32\WMVXENCD.DLL
2017-08-01 15:09 - 2015-12-08 22:54 - 000541184 _____ (Microsoft Corporation) C:\Windows\system32\WMVSDECD.DLL
2017-08-01 15:09 - 2015-12-08 22:54 - 000358400 _____ (Microsoft Corporation) C:\Windows\system32\WMVSENCD.DLL
2017-08-01 15:09 - 2015-12-08 22:54 - 000154112 _____ (Microsoft Corporation) C:\Windows\system32\VIDRESZR.DLL
2017-08-01 15:09 - 2015-12-08 22:53 - 003209728 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll
2017-08-01 15:09 - 2015-12-08 22:53 - 001329664 _____ (Microsoft Corporation) C:\Windows\system32\quartz.dll
2017-08-01 15:09 - 2015-12-08 22:53 - 000970240 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2adec.dll
2017-08-01 15:09 - 2015-12-08 22:53 - 000829952 _____ (Microsoft Corporation) C:\Windows\system32\MSMPEG2ENC.DLL
2017-08-01 15:09 - 2015-12-08 22:53 - 000728576 _____ (Microsoft Corporation) C:\Windows\system32\mcmde.dll
2017-08-01 15:09 - 2015-12-08 22:53 - 000609280 _____ (Microsoft Corporation) C:\Windows\system32\MFWMAAEC.DLL
2017-08-01 15:09 - 2015-12-08 22:53 - 000519680 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll
2017-08-01 15:09 - 2015-12-08 22:53 - 000509952 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2017-08-01 15:09 - 2015-12-08 22:53 - 000489984 _____ (Microsoft Corporation) C:\Windows\system32\evr.dll
2017-08-01 15:09 - 2015-12-08 22:53 - 000415744 _____ (Microsoft Corporation) C:\Windows\system32\MP4SDECD.DLL
2017-08-01 15:09 - 2015-12-08 22:53 - 000354816 _____ (Microsoft Corporation) C:\Windows\system32\mfplat.dll
2017-08-01 15:09 - 2015-12-08 22:53 - 000338944 _____ (Microsoft Corporation) C:\Windows\system32\SysFxUI.dll
2017-08-01 15:09 - 2015-12-08 22:53 - 000241152 _____ (Microsoft Corporation) C:\Windows\system32\MPG4DECD.DLL
2017-08-01 15:09 - 2015-12-08 22:53 - 000241152 _____ (Microsoft Corporation) C:\Windows\system32\MP43DECD.DLL
2017-08-01 15:09 - 2015-12-08 22:53 - 000206848 _____ (Microsoft Corporation) C:\Windows\system32\RESAMPLEDMO.DLL
2017-08-01 15:09 - 2015-12-08 22:53 - 000206848 _____ (Microsoft Corporation) C:\Windows\system32\qasf.dll
2017-08-01 15:09 - 2015-12-08 22:53 - 000193536 _____ (Microsoft Corporation) C:\Windows\system32\ksproxy.ax
2017-08-01 15:09 - 2015-12-08 22:53 - 000153600 _____ (Microsoft Corporation) C:\Windows\system32\COLORCNV.DLL
2017-08-01 15:09 - 2015-12-08 22:53 - 000103424 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll
2017-08-01 15:09 - 2015-12-08 22:53 - 000079872 _____ (Microsoft Corporation) C:\Windows\system32\MP3DMOD.DLL
2017-08-01 15:09 - 2015-12-08 22:53 - 000067584 _____ (Microsoft Corporation) C:\Windows\system32\devenum.dll
2017-08-01 15:09 - 2015-12-08 22:53 - 000053248 _____ (Microsoft Corporation) C:\Windows\system32\mfvdsp.dll
2017-08-01 15:09 - 2015-12-08 22:53 - 000050176 _____ (Microsoft Corporation) C:\Windows\system32\rrinstaller.exe
2017-08-01 15:09 - 2015-12-08 22:53 - 000023040 _____ (Microsoft Corporation) C:\Windows\system32\mfpmp.exe
2017-08-01 15:09 - 2015-12-08 22:53 - 000004608 _____ (Microsoft Corporation) C:\Windows\system32\ksuser.dll
2017-08-01 15:09 - 2015-12-08 22:50 - 000002048 _____ (Microsoft Corporation) C:\Windows\system32\mferror.dll
2017-08-01 15:09 - 2015-12-08 22:43 - 000081408 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\drmk.sys
2017-08-01 15:09 - 2015-12-08 22:11 - 000177152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\portcls.sys
2017-08-01 15:09 - 2015-12-08 22:11 - 000005120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\drmkaud.sys
2017-08-01 15:09 - 2015-11-13 23:50 - 000076800 _____ (Microsoft Corporation) C:\Windows\system32\mapistub.dll
2017-08-01 15:09 - 2015-11-13 23:50 - 000076800 _____ (Microsoft Corporation) C:\Windows\system32\mapi32.dll
2017-08-01 15:09 - 2015-11-13 23:49 - 000014336 _____ (Microsoft Corporation) C:\Windows\system32\fixmapi.exe
2017-08-01 15:09 - 2015-11-05 20:02 - 000014848 _____ (Microsoft Corporation) C:\Windows\system32\wshrm.dll
2017-08-01 15:09 - 2015-11-05 10:48 - 000117760 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rmcast.sys
2017-08-01 15:09 - 2015-11-03 19:56 - 000627712 _____ (Microsoft Corporation) C:\Windows\system32\usp10.dll
2017-08-01 15:09 - 2015-10-01 18:50 - 000216064 _____ (Microsoft Corporation) C:\Windows\system32\InkEd.dll
2017-08-01 15:09 - 2015-10-01 18:50 - 000019968 _____ (Microsoft Corporation) C:\Windows\system32\jnwmon.dll
2017-08-01 14:02 - 2017-08-01 14:02 - 000000925 _____ C:\Users\Public\Desktop\CCleaner.lnk
2017-08-01 14:02 - 2017-08-01 14:02 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2017-08-01 14:02 - 2017-08-01 14:02 - 000000000 ____D C:\Program Files\CCleaner
2017-08-01 13:18 - 2017-08-01 13:18 - 000000000 ____D C:\Users\Toshiba\AppData\Roaming\Sun
2017-08-01 13:18 - 2017-08-01 13:18 - 000000000 ____D C:\Program Files\Common Files\Java
2017-08-01 13:08 - 2017-08-01 13:08 - 000002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2017-08-01 13:08 - 2017-08-01 13:08 - 000001977 _____ C:\Users\Public\Desktop\Acrobat Reader DC.lnk
2017-08-01 13:05 - 2017-08-01 13:07 - 000000000 ____D C:\Program Files\Common Files\Adobe
2017-08-01 12:40 - 2017-08-01 12:40 - 000262144 _____ C:\Windows\system32\config\elam
2017-08-01 12:30 - 2017-08-01 12:30 - 000001326 _____ C:\Users\Public\Desktop\Kaspersky Secure Connection.lnk
2017-08-01 12:30 - 2017-08-01 12:30 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Secure Connection
2017-08-01 12:30 - 2017-08-01 12:30 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Internet Security
2017-08-01 12:30 - 2017-08-01 12:29 - 000002134 _____ C:\Users\Public\Desktop\Protection bancaire.lnk
2017-08-01 12:30 - 2017-08-01 12:29 - 000002068 _____ C:\Users\Public\Desktop\Kaspersky Internet Security.lnk
2017-08-01 12:28 - 2017-08-02 14:20 - 000000000 ____D C:\ProgramData\Kaspersky Lab
2017-08-01 12:28 - 2017-08-01 12:35 - 000807104 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\klif.sys
2017-08-01 12:28 - 2017-08-01 12:35 - 000155328 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\klflt.sys
2017-08-01 12:28 - 2017-08-01 12:30 - 000000000 ____D C:\Program Files\Kaspersky Lab
2017-08-01 12:28 - 2017-08-01 12:28 - 000000000 ____D C:\Windows\ELAMBKUP
2017-08-01 12:16 - 2017-08-01 12:16 - 000000000 ____D C:\Windows\system32\appmgmt
2017-08-01 12:14 - 2017-08-01 12:15 - 000000000 ____D C:\ProgramData\Kaspersky Lab Setup Files
2017-08-01 12:06 - 2017-08-01 12:06 - 000000000 _____ C:\Windows\system32\last.dump
2017-07-28 17:47 - 2017-07-28 17:47 - 000000000 ____D C:\ProgramData\SWCUTemp

==================== Un mois - Modifiés - fichiers et dossiers ========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2017-08-02 14:19 - 2009-07-14 05:34 - 000020880 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2017-08-02 14:19 - 2009-07-14 05:34 - 000020880 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2017-08-02 14:17 - 2009-07-14 03:37 - 000000000 ____D C:\Windows\tracing
2017-08-02 13:30 - 2015-07-24 19:37 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RealNetworks
2017-08-02 13:30 - 2010-09-04 12:50 - 000000000 ____D C:\ProgramData\Real
2017-08-02 13:30 - 2010-09-04 12:15 - 000000000 ____D C:\Users\Toshiba\AppData\Roaming\Real
2017-08-02 13:30 - 2010-09-04 12:15 - 000000000 ____D C:\Program Files\Real
2017-08-02 13:26 - 2015-07-24 19:39 - 000000000 ____D C:\ProgramData\Package Cache
2017-08-02 13:24 - 2015-07-24 19:37 - 000285576 _____ (Progressive Networks) C:\Windows\system32\pncrt.dll
2017-08-02 13:24 - 2015-07-24 19:37 - 000207752 _____ (RealNetworks, Inc.) C:\Windows\system32\rmoc3260.dll
2017-08-02 13:23 - 2010-09-04 12:15 - 000512392 _____ (Microsoft Corporation) C:\Windows\system32\msvcp71.dll
2017-08-02 12:45 - 2010-09-23 20:07 - 000000000 ____D C:\Users\Toshiba\AppData\Roaming\Skype
2017-08-02 12:45 - 2010-09-23 20:06 - 000000000 ____D C:\ProgramData\Skype
2017-08-02 12:44 - 2015-05-19 23:52 - 000000000 ____D C:\Users\Toshiba\AppData\Local\Skype
2017-08-02 12:38 - 2010-09-04 12:06 - 000000000 ____D C:\Users\Toshiba\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2017-08-02 12:38 - 2010-09-04 12:06 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2017-08-02 12:38 - 2010-09-04 12:06 - 000000000 ____D C:\Program Files\WinRAR
2017-08-02 12:04 - 2010-09-03 18:25 - 001673542 _____ C:\Windows\system32\PerfStringBackup.INI
2017-08-02 12:04 - 2009-07-14 09:39 - 000735448 _____ C:\Windows\system32\perfh00C.dat
2017-08-02 12:04 - 2009-07-14 09:39 - 000146090 _____ C:\Windows\system32\perfc00C.dat
2017-08-02 12:04 - 2009-07-14 03:37 - 000000000 ____D C:\Windows\inf
2017-08-02 12:00 - 2015-02-26 14:29 - 000065536 _____ C:\Windows\system32\Ikeext.etl
2017-08-02 11:59 - 2009-07-14 05:53 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2017-08-02 10:50 - 2009-07-14 05:53 - 000032496 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2017-08-02 00:02 - 2010-09-03 18:20 - 000000000 ____D C:\Users\Toshiba
2017-08-01 23:59 - 2010-09-04 11:59 - 000000000 ____D C:\Users\Toshiba\Tracing
2017-08-01 22:58 - 2012-02-21 00:36 - 000000000 ____D C:\Users\Toshiba\AppData\Roaming\Complitly
2017-08-01 17:22 - 2009-07-14 05:33 - 000406232 _____ C:\Windows\system32\FNTCACHE.DAT
2017-08-01 17:19 - 2009-07-14 10:01 - 000000000 ____D C:\Program Files\Windows Journal
2017-08-01 17:18 - 2011-01-27 13:33 - 000000000 ____D C:\Program Files\Microsoft Silverlight
2017-08-01 17:14 - 2011-01-27 13:33 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2017-08-01 16:36 - 2010-09-04 11:57 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
2017-08-01 16:32 - 2010-09-07 13:06 - 000000000 ____D C:\Program Files\Google
2017-08-01 16:02 - 2011-02-01 00:15 - 000000000 ____D C:\Users\Toshiba\AppData\Roaming\vlc
2017-08-01 16:01 - 2011-02-01 00:14 - 000000984 _____ C:\Users\Public\Desktop\VLC media player.lnk
2017-08-01 15:32 - 2010-09-04 11:56 - 000000000 ____D C:\Program Files\Windows Live
2017-08-01 15:31 - 2012-08-08 16:33 - 000000000 ____D C:\ProgramData\Tarma Installer
2017-08-01 15:17 - 2010-09-04 12:25 - 000000000 ____D C:\ProgramData\Adobe
2017-08-01 15:13 - 2009-07-14 03:37 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2017-08-01 14:17 - 2010-09-14 12:21 - 000000000 ____D C:\Windows\Minidump
2017-08-01 14:17 - 2010-09-03 17:14 - 000000000 ____D C:\Windows\Panther
2017-08-01 14:17 - 2009-07-14 03:37 - 000000000 ____D C:\Windows\ModemLogs
2017-08-01 13:54 - 2011-09-22 22:45 - 000000000 ____D C:\Program Files\Mozilla Firefox
2017-08-01 13:27 - 2015-02-24 18:57 - 000000000 ____D C:\ProgramData\Oracle
2017-08-01 13:20 - 2013-01-19 21:10 - 000000000 ____D C:\Program Files\Java
2017-08-01 13:19 - 2015-02-24 18:58 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2017-08-01 13:17 - 2015-02-24 19:02 - 000095808 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge.dll
2017-08-01 13:12 - 2010-09-04 12:15 - 000000000 ____D C:\Users\Toshiba\AppData\Roaming\Adobe
2017-08-01 13:12 - 2010-09-04 12:15 - 000000000 ____D C:\Users\Toshiba\AppData\Local\Adobe
2017-08-01 13:05 - 2010-09-04 12:25 - 000000000 ____D C:\Program Files\Adobe
2017-08-01 12:47 - 2015-04-20 18:41 - 000803328 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2017-08-01 12:47 - 2011-07-26 15:21 - 000144896 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2017-08-01 12:47 - 2010-09-07 13:06 - 000000000 ____D C:\Windows\system32\Macromed
2017-08-01 12:42 - 2012-10-30 14:42 - 000000000 ____D C:\ProgramData\IBUpdaterService
2017-08-01 12:35 - 2017-03-29 12:11 - 000129496 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\klhk.sys
2017-08-01 12:35 - 2016-06-14 17:47 - 000165336 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\kneps.sys
2017-08-01 12:32 - 2016-02-06 18:52 - 000000000 ____D C:\Program Files\Common Files\AV
2017-08-01 12:19 - 2010-09-04 12:23 - 000000000 ___HD C:\Program Files\InstallShield Installation Information
2017-08-01 12:16 - 2010-09-07 13:06 - 000000000 ____D C:\Users\Toshiba\AppData\Local\Google
2017-08-01 12:16 - 2010-09-07 13:06 - 000000000 ____D C:\ProgramData\Google
2017-08-01 12:11 - 2014-03-31 17:33 - 000000000 ____D C:\ProgramData\AVAST Software

==================== Fichiers à la racine de certains dossiers =======

2012-02-21 00:36 - 2012-02-21 00:36 - 000000006 _____ () C:\Program Files\Common Files\WPVersion.txt
2012-02-21 12:01 - 2012-02-21 12:01 - 000000041 _____ () C:\Users\Toshiba\AppData\Roaming\Offre.ini
2010-10-10 22:06 - 2010-10-10 22:07 - 000020147 _____ () C:\Users\Toshiba\AppData\Roaming\UserTile.png
2011-01-24 13:56 - 2012-02-29 22:44 - 000009728 _____ () C:\Users\Toshiba\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2011-07-05 20:55 - 2011-07-05 20:55 - 000000000 _____ () C:\Users\Toshiba\AppData\Local\{344AD5CD-BB9E-4D6D-AD25-BDEAF2D79CCF}
2010-09-23 20:08 - 2010-09-23 20:08 - 000000056 ____H () C:\ProgramData\ezsidmv.dat

Fichiers à déplacer ou supprimer:
====================
C:\Users\Toshiba\AEB9MAT.DLL
C:\Users\Toshiba\AEBManag.exe


Certains fichiers dans TEMP:
====================
2017-08-02 13:20 - 2017-06-05 10:36 - 000186280 _____ (RealNetworks, Inc.) C:\Users\Toshiba\AppData\Local\Temp\lowproc.exe
2017-08-02 13:20 - 2017-06-05 10:37 - 000096496 _____ (RealNetworks, Inc.) C:\Users\Toshiba\AppData\Local\Temp\stubhelper.dll
2017-08-02 12:40 - 2017-08-02 12:41 - 014456872 _____ (Microsoft Corporation) C:\Users\Toshiba\AppData\Local\Temp\vc_redist.x86.exe
2017-08-01 15:59 - 2017-08-01 16:00 - 030950664 _____ () C:\Users\Toshiba\AppData\Local\Temp\vlc-2.2.6-win32.exe

==================== Bamital & volsnap ======================

(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)

C:\Windows\explorer.exe => Le fichier est signé numériquement
C:\Windows\system32\winlogon.exe => Le fichier est signé numériquement
C:\Windows\system32\wininit.exe => Le fichier est signé numériquement
C:\Windows\system32\svchost.exe => Le fichier est signé numériquement
C:\Windows\system32\services.exe => Le fichier est signé numériquement
C:\Windows\system32\User32.dll => Le fichier est signé numériquement
C:\Windows\system32\userinit.exe => Le fichier est signé numériquement
C:\Windows\system32\rpcss.dll => Le fichier est signé numériquement
C:\Windows\system32\dnsapi.dll => Le fichier est signé numériquement
C:\Windows\system32\Drivers\volsnap.sys => Le fichier est signé numériquement

LastRegBack: 2015-10-25 19:50

==================== Fin de FRST.txt ============================

Publicité


Signaler le contenu de ce document

Publicité