Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x86) Version: 01-10-2017
Exécuté par Admin (administrateur) sur ADMIN-PC (01-10-2017 20:02:18)
Exécuté depuis C:\Users\Admin\Desktop
Profils chargés: Admin (Profils disponibles: Admin)
Platform: Microsoft Windows 7 Professionnel Service Pack 1 (X86) Langue: Français (France)
Internet Explorer Version 11 (Navigateur par défaut: Chrome)
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Andrea Electronics Corporation) C:\Windows\System32\AEADISRV.EXE
() C:\Program Files\Modem OT-X080C\DataCardService.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
() C:\Program Files\Modem OT-X080C\BGService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(ESET) C:\Program Files\ESET\ESET Smart Security\ekrn.exe
() C:\Program Files\inwi X602D\ApplicationController.exe
(Foxit Corporation) C:\Program Files\Foxit Software\Foxit Reader\Foxit Cloud\FCUpdateService.exe
(Guillemot Corporation ®) C:\Program Files\DJHERCULESMIX\Audio\DJ Console Series\drivers\x86\HerculesDJControlMP3.EXE
() C:\ProgramData\DatacardService\HWDeviceService.exe
(Huawei Technologies Co., Ltd.) C:\ProgramData\DatacardService\DCSHelper.exe
() C:\ProgramData\Internet Mobile\OnlineUpdate\ouc.exe
(Analog Devices, Inc.) C:\Program Files\Analog Devices\Core\smax4pnp.exe
(TeVii Technology Ltd.) C:\Windows\TeViiRC.exe
() C:\Program Files\DivX\DivX Update\DivXUpdate.exe
() C:\Program Files\Internet Haut Débit Mobile\AutoDect.exe
(Samsung Electronics Co., Ltd.) C:\Program Files\Samsung\Kies\KiesTrayAgent.exe
(Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(CybelSoft) C:\Program Files\ma-config.com\MaConfigAgent.exe
(Mediatek Inc.) C:\Program Files\MediatekWiFi\Common\RaRegistry.exe
() C:\Program Files\MeditelInternet\MeditelInternet_Service.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(DJHERCULESMIX®) C:\Program Files\Guillemot\HDJTray\HDJSeries2TrayBar.exe
(Cracked By Wh!5t
eR) C:\Program Files\ESET\ESET Smart Security\egui.exe
() C:\Users\Admin\Desktop\PES2017 NO LAG\D3DOverrider\D3DOverrider.exe
(Tonec Inc.) C:\Program Files\Internet Download Manager\IDMan.exe
(Valve Corporation) C:\Program Files\Steam\Steam.exe
(Octoshape ApS) C:\Users\Admin\AppData\Roaming\Octoshape\Octoshape Streaming Services\OctoshapeClient.exe
(Samsung) C:\Program Files\Samsung\Kies\Kies.exe
(Sony) C:\Program Files\Sony\Sony PC Companion\PCCompanion.exe
(DJHERCULESMIX®) C:\Program Files\DJHERCULESMIX\Audio\DJ Console Series\HDJSeriesCPL.exe
(DJHERCULESMIX®) C:\Program Files\DJHERCULESMIX\Audio\DJ Console Series\cpl2\HDJSeries2CPL.exe
() C:\Program Files\Sony\Sony PC Companion\PCCompanionInfo.exe
(Samsung) C:\Program Files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe
() C:\ProgramData\Modem HDM EC156\OnlineUpdate\ouc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe
(Nokia) C:\Program Files\Nokia\Nokia Suite\NokiaSuite.exe
(BitTorrent Inc.) C:\Users\Admin\AppData\Roaming\uTorrent\uTorrent.exe
() C:\ProgDVB Professional\ProgLauncher.exe
() C:\Program Files\MeditelInternet\MeditelInternet_Launcher.exe
(Mediatek Inc.) C:\Program Files\MediatekWiFi\Common\RaUI.exe
(Tonec Inc.) C:\Program Files\Internet Download Manager\IEMonitor.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Mega Limited) C:\Users\Admin\AppData\Local\MEGAsync\MEGAsync.exe
(Realtek) C:\Program Files\REALTEK\RTL8187 Wireless LAN Utility\RtlService.exe
(Realtek Semiconductor Corp.) C:\Program Files\REALTEK\RTL8187 Wireless LAN Utility\RtWLan.exe
(TechSmith Corporation) C:\Program Files\TechSmith\SnagIt 8\TscHelp.exe
(BitTorrent Inc.) C:\Users\Admin\AppData\Roaming\uTorrent\updates\3.5.0_44090\utorrentie.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(BitTorrent Inc.) C:\Users\Admin\AppData\Roaming\uTorrent\updates\3.5.0_44090\utorrentie.exe
(Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE
(WIBU-SYSTEMS AG) C:\Program Files\CodeMeter\Runtime\bin\CodeMeter.exe
(Nokia) C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Nokia) C:\Program Files\PC Connectivity Solution\Transports\NclUSBSrv.exe
(Nokia) C:\Program Files\PC Connectivity Solution\Transports\NclMSBTSrvEx.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
==================== Registre (Avec liste blanche) ===========================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [SoundMAXPnP] => C:\Program Files\Analog Devices\Core\smax4pnp.exe [1314816 2009-05-18] (Analog Devices, Inc.)
HKLM\...\Run: [TeViiRC] => C:\Windows\TeViiRC.exe [328328 2011-07-27] (TeVii Technology Ltd.)
HKLM\...\Run: [NeroFilterCheck] => C:\Windows\system32\NeroCheck.exe [155648 2006-01-12] (Nero AG)
HKLM\...\Run: [NvBackend] => C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe [2270720 2013-12-10] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [APSDaemon] => c:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [67384 2016-03-18] (Apple Inc.)
HKLM\...\Run: [DivXMediaServer] => C:\Program Files\DivX\DivX Media Server\DivXMediaServer.exe [450560 2014-04-03] (DivX, LLC)
HKLM\...\Run: [DivXUpdate] => C:\Program Files\DivX\DivX Update\DivXUpdate.exe [1861968 2014-01-10] ()
HKLM\...\Run: [autodetect] => C:\Program Files\Internet Haut Débit Mobile\AutoDect.exe [128864 2010-11-15] ()
HKLM\...\Run: [bintin] => C:\WINDOWS\system32\wscript.exe /e:VBScript.Encode D:\bin.doc <==== ATTENTION
HKLM\...\Run: [KiesTrayAgent] => C:\Program Files\Samsung\Kies\KiesTrayAgent.exe [318248 2016-01-08] (Samsung Electronics Co., Ltd.)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [164152 2016-03-19] (Apple Inc.)
HKLM\...\Run: [Hercules DJ Series TrayAgent] => C:\Program Files\Guillemot\HDJTray\HDJSeries2TrayBar.exe [1669792 2016-06-01] (DJHERCULESMIX®)
HKLM\...\Run: [D3DOverrider] => C:\Users\Admin\Desktop\PES2017 NO LAG\D3DOverrider\D3DOverriderWrapper.exe [40960 2009-08-22] ()
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Smart Security\egui.exe [2029640 2009-04-27] (Cracked By Wh!5t
eR)
HKU\S-1-5-21-1076428414-641238508-383798790-1000\...\Run: [IDMan] => C:\Program Files\Internet Download Manager\IDMan.exe [3829328 2014-05-15] (Tonec Inc.)
HKU\S-1-5-21-1076428414-641238508-383798790-1000\...\Run: [Steam] => C:\Program Files\Steam\steam.exe [3074336 2017-09-27] (Valve Corporation)
HKU\S-1-5-21-1076428414-641238508-383798790-1000\...\Run: [Octoshape Streaming Services] => C:\Users\Admin\AppData\Roaming\Octoshape\Octoshape Streaming Services\OctoshapeClient.exe [107800 2011-03-24] (Octoshape ApS)
HKU\S-1-5-21-1076428414-641238508-383798790-1000\...\Run: [KiesPreload] => C:\Program Files\Samsung\Kies\Kies.exe [1572648 2016-01-08] (Samsung)
HKU\S-1-5-21-1076428414-641238508-383798790-1000\...\Run: [Sony PC Companion] => C:\Program Files\Sony\Sony PC Companion\PCCompanion.exe [457088 2015-09-23] (Sony)
HKU\S-1-5-21-1076428414-641238508-383798790-1000\...\Run: [Skype] => C:\Program Files\Skype\Phone\Skype.exe [27250144 2016-12-20] (Skype Technologies S.A.)
HKU\S-1-5-21-1076428414-641238508-383798790-1000\...\Run: [KiesPDLR.exe] => C:\Program Files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe [1021736 2016-01-08] (Samsung)
HKU\S-1-5-21-1076428414-641238508-383798790-1000\...\Run: [NokiaSuite.exe] => C:\Program Files\Nokia\Nokia Suite\NokiaSuite.exe [1092448 2014-11-19] (Nokia)
HKU\S-1-5-21-1076428414-641238508-383798790-1000\...\Run: [uTorrent] => C:\Users\Admin\AppData\Roaming\uTorrent\uTorrent.exe [1982144 2017-09-28] (BitTorrent Inc.)
HKU\S-1-5-21-1076428414-641238508-383798790-1000\...\Run: [ProgLauncher] => C:\ProgDVB Professional\ProgLauncher.exe [401608 2017-01-19] ()
HKU\S-1-5-21-1076428414-641238508-383798790-1000\...\MountPoints2: {21f07676-9de5-11e7-8c73-0018bd5ada20} - K:\Système_Windows\Installer.exe
HKU\S-1-5-21-1076428414-641238508-383798790-1000\...\MountPoints2: {44225ddf-a31e-11e3-8638-002481143393} - K:\LGAutoRun.exe
HKU\S-1-5-21-1076428414-641238508-383798790-1000\...\MountPoints2: {472659da-a461-11e7-b0e2-0018bd5ada20} - K:\Système_Windows\Installer.exe
HKU\S-1-5-21-1076428414-641238508-383798790-1000\...\MountPoints2: {58e7c9bf-18e7-11e6-bf94-002481143393} - K:\AutoRun.exe
HKU\S-1-5-21-1076428414-641238508-383798790-1000\...\MountPoints2: {744b993f-9eb2-11e7-86d7-0018bd5ada20} - K:\Système_Windows\Installer.exe
HKU\S-1-5-21-1076428414-641238508-383798790-1000\...\MountPoints2: {744b9986-9eb2-11e7-86d7-0018bd5ada20} - K:\AutoRun.exe
HKU\S-1-5-21-1076428414-641238508-383798790-1000\...\MountPoints2: {77c221e7-9685-11e5-af18-0018bd5ada20} - K:\autorun.exe
HKU\S-1-5-21-1076428414-641238508-383798790-1000\...\MountPoints2: {a23fac86-7f37-11e7-9394-0018bd5ada20} - K:\AutoRun.exe
HKU\S-1-5-21-1076428414-641238508-383798790-1000\...\MountPoints2: {aeb60894-3d73-11e7-bd4a-0018bd5ada20} - K:\Setup.exe /s
HKU\S-1-5-21-1076428414-641238508-383798790-1000\...\MountPoints2: {b08f8804-7217-11e7-a80f-0018bd5ada20} - K:\AutoRun.exe
HKU\S-1-5-21-1076428414-641238508-383798790-1000\...\MountPoints2: {b5c97c1d-6715-11e7-9c41-0018bd5ada20} - K:\AutoRun.exe
HKU\S-1-5-21-1076428414-641238508-383798790-1000\...\MountPoints2: {ef1f054d-29cc-11e7-8e2f-0018bd5ada20} - K:\autorun.exe
HKU\S-1-5-21-1076428414-641238508-383798790-1000\...\MountPoints2: {f0a38572-2513-11e7-969f-0018bd5ada20} - K:\AutoRun.exe
HKU\S-1-5-18\...\RunOnce: [SPReview] => C:\Windows\System32\SPReview\SPReview.exe [280576 2013-12-18] (Microsoft Corporation)
Startup: C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MEGAsync.lnk [2016-01-20]
ShortcutTarget: MEGAsync.lnk -> C:\Users\Admin\AppData\Local\MEGAsync\MEGAsync.exe (Mega Limited)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Adobe Gamma Loader.lnk [2016-01-17]
ShortcutTarget: Adobe Gamma Loader.lnk -> C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe (Adobe Systems, Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Launcher.lnk [2016-01-17]
ShortcutTarget: Launcher.lnk -> C:\Program Files\MeditelInternet\MeditelInternet_Launcher.exe ()
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Mediatek Wireless Utility.lnk [2017-07-10]
ShortcutTarget: Mediatek Wireless Utility.lnk -> C:\Program Files\MediatekWiFi\Common\RaUI.exe (Mediatek Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Ralink Wireless Utility.lnk [2016-08-29]
ShortcutTarget: Ralink Wireless Utility.lnk -> C:\Program Files\Ralink\Common\RaUI.exe (Ralink Technology, Corp.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SnagIt 8.lnk [2016-01-17]
ShortcutTarget: SnagIt 8.lnk -> C:\Program Files\TechSmith\SnagIt 8\SnagIt32.exe (TechSmith Corporation)
GroupPolicy: Restriction ? <==== ATTENTION
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
ATTENTION: There are more than 99 Catalog9 entries. Turn off the whitelisting to see all the entries. You may check Device Manager for presence of unusual amount of "Microsoft 6to4 Adapter" devices.
Winsock: Catalog5 09 C:\Program Files\Bonjour\mdnsNSP.dll [122128 2015-08-12] (Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{00755C6C-3BCA-4562-B869-A8244E454258}: [DhcpNameServer] 192.168.8.1 192.168.8.1
Tcpip\..\Interfaces\{0DC1BE76-3BCB-4762-A000-5BFE49759E01}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{1DCC9566-3648-4817-ABF0-3044D3C54E16}: [NameServer] 62.251.231.241 212.217.1.1
Tcpip\..\Interfaces\{3421FB88-7358-418A-AB7A-F91531411C8A}: [NameServer] 192.168.50.58 192.168.60.55
Tcpip\..\Interfaces\{4A9406F1-9252-44C8-89AC-3D2BC5493598}: [DhcpNameServer] 192.168.8.1 192.168.8.1
Tcpip\..\Interfaces\{5B1883C5-B2D0-4D9A-AEDD-987C81DBEF08}: [NameServer] 192.168.60.58 192.168.50.55
Tcpip\..\Interfaces\{6309F24B-4A52-4B10-A458-A0F63681E56B}: [NameServer] 192.168.50.58 192.168.60.55
Tcpip\..\Interfaces\{74BA3C87-D990-4805-9B1A-26F74C3F68D4}: [DhcpNameServer] 192.168.8.1 192.168.8.1
Tcpip\..\Interfaces\{9733C8B9-B27D-409F-A351-DE1B61BF6900}: [NameServer] 192.168.60.58 192.168.50.55
Tcpip\..\Interfaces\{ABDC32AE-CDA7-4AFA-85D0-20BB8CB89C34}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{AD8030F3-53BD-4117-9964-DCF0967D02B1}: [DhcpNameServer] 192.168.1.1 192.168.1.1
Tcpip\..\Interfaces\{CE9187A9-BDD1-4BE4-91FB-2E1A65FFD9A5}: [NameServer] 62.251.231.241 212.217.1.1
Tcpip\..\Interfaces\{EFAF6A0A-1795-42C0-ACFE-091342D6DF29}: [NameServer] 62.251.230.241 212.217.1.1
Tcpip\..\Interfaces\{EFDC2B23-3365-453D-B29C-C10DE040A6EF}: [NameServer] 192.168.60.58 192.168.50.55
ManualProxies: 0hxxp://accesswebunlimited.com/wpad.dat?5179d7b6877695c8a7bbfd1afbcc570235930826
Internet Explorer:
==================
HKU\S-1-5-21-1076428414-641238508-383798790-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.inwi.ma
BHO: IDM integration (IDMIEHlprObj Class) -> {0055C089-8582-441B-A0BF-17B458C2A3A8} -> C:\Program Files\Internet Download Manager\IDMIECC.dll [2014-04-02] (Internet Download Manager, Tonec Inc.)
BHO: HelperObject Class -> {00C6482D-C502-44C8-8409-FCE54AD9C208} -> C:\Program Files\TechSmith\SnagIt 8\SnagItBHO.dll [2006-03-14] (TechSmith Corporation)
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26] (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_40\bin\ssv.dll [2015-03-04] (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corp.)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_40\bin\jp2ssv.dll [2015-03-04] (Oracle Corporation)
Toolbar: HKLM - SnagIt - {8FF5E183-ABDE-46EB-B09E-D2AAB95CABE3} - C:\Program Files\TechSmith\SnagIt 8\SnagItIEAddin.dll [2006-03-14] (TechSmith Corporation)
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll [2009-02-26] (Microsoft Corporation)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll [2016-09-23] (Skype Technologies)
FireFox:
========
FF DefaultProfile: i870huun.default
FF ProfilePath: C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\i870huun.default [2017-09-30]
FF HKLM\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird
FF Extension: (Eset Plugin) - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird [2017-09-30] [non signé]
FF HKU\S-1-5-21-1076428414-641238508-383798790-1000\...\Firefox\Extensions: [mozilla_cc@internetdownloadmanager.com] - C:\Users\Admin\AppData\Roaming\IDM\idmmzcc5
FF Extension: (IDM CC) - C:\Users\Admin\AppData\Roaming\IDM\idmmzcc5 [2015-04-30] [non signé]
FF HKU\S-1-5-21-1076428414-641238508-383798790-1000\...\SeaMonkey\Extensions: [mozilla_cc@internetdownloadmanager.com] - C:\Users\Admin\AppData\Roaming\IDM\idmmzcc5
FF Plugin: @Apple.com/iTunes,version=1.0 -> C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll [2016-03-08] ()
FF Plugin: @divx.com/DivX VOD Helper,version=1.0.0 -> C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll [2013-09-17] (DivX, LLC.)
FF Plugin: @divx.com/DivX Web Player Plug-In,version=1.0.0 -> C:\Program Files\DivX\DivX Web Player\npdivx32.dll [2014-04-18] (DivX, LLC)
FF Plugin: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/pdf -> C:\Program Files\Foxit Software\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2013-07-03] (Foxit Corporation)
FF Plugin: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.fdf -> C:\Program Files\Foxit Software\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2013-07-03] (Foxit Corporation)
FF Plugin: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> C:\Program Files\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2013-07-03] (Foxit Corporation)
FF Plugin: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> C:\Program Files\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2013-07-03] (Foxit Corporation)
FF Plugin: @java.com/DTPlugin,version=11.40.2 -> C:\Program Files\Java\jre1.8.0_40\bin\dtplugin\npDeployJava1.dll [2015-03-04] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.40.2 -> C:\Program Files\Java\jre1.8.0_40\bin\plugin2\npjp2.dll [2015-03-04] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50428.0\npctrl.dll [2016-04-27] ( Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin: @nokia.com/EnablerPlugin -> C:\Program Files\Nokia\Nokia Suite\npNokiaSuiteEnabler.dll [2014-11-19] ( )
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-28] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-28] (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.1.2 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2017-07-31] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-1076428414-641238508-383798790-1000: @octoshape.com/Octoshape Streaming Services,version=1.0 -> C:\Users\Admin\AppData\Roaming\Octoshape\Octoshape Streaming Services\sua-1702150-0-npoctoshape.dll [2017-02-15] (Octoshape ApS)
FF Plugin HKU\S-1-5-21-1076428414-641238508-383798790-1000: @tools.google.com/Google Update;version=3 -> C:\Users\Admin\AppData\Local\Google\Update\1.3.24.15\npGoogleUpdate3.dll [Pas de fichier]
FF Plugin ProgramFiles/Appdata: C:\Users\Admin\AppData\Roaming\mozilla\plugins\npoctoshape.dll [2015-08-18] (Octoshape ApS)
Chrome:
=======
CHR StartupUrls: Default -> "hxxps://www.google.co.ma/"
CHR DefaultSearchURL: Default -> hxxps://search.randomwalktab.com/?q={searchTerms}
CHR DefaultSearchKeyword: Default -> Random Walk Shapes
CHR DefaultSuggestURL: Default -> hxxps://randomwalktab.com/suggestions.php?q={searchTerms}
CHR Profile: C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default [2017-10-01]
CHR Extension: (Alexa Traffic Rank Checker) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\aopiomnkiggljhnhfmcbfjkacfiomcfe [2016-09-23]
CHR Extension: (Google Drive) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-12-17]
CHR Extension: (YouTube) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-12-17]
CHR Extension: (Recherche Google) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-12-17]
CHR Extension: (Adobe Acrobat) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2017-03-04]
CHR Extension: (AdBlock) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2017-09-21]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-08-22]
CHR Extension: (Gmail) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-12-17]
CHR Extension: (Chrome Media Router) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-09-26]
CHR Profile: C:\Users\Admin\AppData\Local\Google\Chrome\User Data\System Profile [2017-09-29]
CHR HKLM\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [fdjcngoneogjbkdakodemfopgkkncoll] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [jeaohhlajejodfjadcponpnjgkiikocn] - C:\Program Files\Internet Download Manager\IDMGCExt.crx [2014-05-15]
==================== Services (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 ALCATEL; C:\Program Files\Modem OT-X080C\DataCardService.exe [167936 2011-03-12] () [Fichier non signé]
S3 cfbackd; C:\Program Files\CleverFiles\Disk Drill\cfbackd.w32.exe [211520 2016-09-29] (CleverFiles)
R2 CodeMeter.exe; C:\Program Files\CodeMeter\Runtime\bin\CodeMeter.exe [2568120 2012-07-19] (WIBU-SYSTEMS AG)
S3 EhttpSrv; C:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe [20680 2009-04-27] (ESET)
R2 ekrn; C:\Program Files\ESET\ESET Smart Security\ekrn.exe [731840 2009-04-27] (ESET)
R2 FLAME II HSPA USB MODEM Service; C:\Program Files\inwi X602D\ApplicationController.exe [574976 2016-10-08] () [Fichier non signé]
R2 FoxitCloudUpdateService; C:\Program Files\Foxit Software\Foxit Reader\Foxit Cloud\FCUpdateService.exe [242216 2014-06-17] (Foxit Corporation)
S2 gupdate; C:\Program Files\Google\Update\GoogleUpdate.exe [137728 2015-11-20] (Google Inc.) [Fichier non signé]
S3 gupdatem; C:\Program Files\Google\Update\GoogleUpdate.exe [137728 2015-11-20] (Google Inc.) [Fichier non signé]
R2 HerculesDJControlMP3; C:\Program Files\DJHERCULESMIX\Audio\DJ Console Series\drivers\x86\HerculesDJControlMP3.EXE [94720 2016-04-18] (Guillemot Corporation ®) [Fichier non signé]
R2 HWDeviceService.exe; C:\ProgramData\DatacardService\HWDeviceService.exe [271712 2011-03-14] ()
S2 Internet Mobile. RunOuc; C:\Program Files\Internet Mobile\UpdateDog\ouc.exe [657504 2012-11-12] ()
R2 MaConfigAgent; C:\Program Files\ma-config.com\MaConfigAgent.exe [2117960 2015-04-10] (CybelSoft)
R2 MediatekRegistryWriter; C:\Program Files\MediatekWiFi\Common\RaRegistry.exe [405136 2014-12-04] (Mediatek Inc.)
R2 MeditelInternet_Service; C:\Program Files\MeditelInternet\MeditelInternet_Service.exe [347120 2012-11-09] ()
S3 Microsoft Office Groove Audit Service; C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe [58880 2009-02-26] (Microsoft Corporation) [Fichier non signé]
S2 Modem HDM EC156. RunOuc; C:\Program Files\Modem HDM EC156\UpdateDog\ouc.exe [650240 2015-10-22] () [Fichier non signé]
U2 NvNetworkService; C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe [1494304 2013-12-10] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [14658848 2013-12-10] (NVIDIA Corporation)
S3 odserv; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [434688 2011-07-20] (Microsoft Corporation) [Fichier non signé]
S3 ose; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [138240 2006-10-26] (Microsoft Corporation) [Fichier non signé]
S2 RalinkRegistryWriter; C:\Program Files\Ralink\Common\RaRegistry.exe [374112 2010-11-11] (Ralink Technology, Corp.)
R2 RtlService; C:\Program Files\REALTEK\RTL8187 Wireless LAN Utility\RtlService.exe [40960 2009-12-07] (Realtek) [Fichier non signé]
S3 Sony PC Companion; C:\Program Files\Sony\Sony PC Companion\PCCService.exe [155520 2015-06-10] (Avanquest Software)
S3 Steam Client Service; C:\Program Files\Common Files\Steam\SteamService.exe [564224 2014-02-08] (Valve Corporation) [Fichier non signé]
S2 TeamViewer; C:\Program Files\TeamViewer\TeamViewer_Service.exe [6882816 2015-12-14] (TeamViewer GmbH) [Fichier non signé]
S2 UI Assistant Service; C:\Program Files\Internet Mobile+\AssistantServices.exe [261456 2011-03-15] ()
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2013-05-27] (Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ======================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 ALCATELUSB; C:\Windows\System32\Drivers\AlcatelUsb.sys [19968 2015-11-29] (Windows (R) Codename Longhorn DDK provider)
S3 AndNetDiag; C:\Windows\System32\DRIVERS\lgandnetdiag.sys [25088 2015-05-12] (LG Electronics Inc.)
S3 ANDNetModem; C:\Windows\System32\DRIVERS\lgandnetmodem.sys [30208 2015-05-12] (LG Electronics Inc.)
S3 Bulk; C:\Windows\System32\Drivers\HDJBulk.sys [293024 2016-04-18] (© Guillemot R&D, 2015. All rights reserved.)
R3 dfmirage; C:\Windows\System32\DRIVERS\dfmirage.sys [34128 2008-03-05] (DemoForge, LLC)
R3 eamon; C:\Windows\System32\DRIVERS\eamon.sys [113960 2009-04-27] (ESET)
R1 ehdrv; C:\Windows\System32\DRIVERS\ehdrv.sys [107256 2009-04-27] (ESET)
R2 epfw; C:\Windows\System32\DRIVERS\epfw.sys [131976 2009-04-27] (ESET)
R3 Epfwndis; C:\Windows\System32\DRIVERS\Epfwndis.sys [33096 2009-04-27] (ESET)
R2 epfwwfp; C:\Windows\System32\DRIVERS\epfwwfp.sys [38240 2009-04-27] (ESET)
S3 evusbat; C:\Windows\System32\DRIVERS\evusbat.sys [206976 2010-12-27] (QUALCOMM Incorporated)
S3 evusbdiag; C:\Windows\System32\DRIVERS\evusbdiag.sys [206976 2010-12-27] (QUALCOMM Incorporated)
S3 evusbmdm; C:\Windows\System32\DRIVERS\evusbmdm.sys [206976 2010-12-27] (QUALCOMM Incorporated)
S3 evusbvoc; C:\Windows\System32\DRIVERS\evusbvoc.sys [206976 2010-12-27] (QUALCOMM Incorporated)
S3 FsUsbExDisk; C:\Windows\system32\FsUsbExDisk.SYS [36608 2010-06-14] () [Fichier non signé]
S3 ggsomc; C:\Windows\System32\DRIVERS\ggsomc.sys [26328 2016-01-31] (Sony Mobile Communications)
S3 HDJMidi; C:\Windows\System32\DRIVERS\HDJMidi.sys [250016 2016-04-18] (© Guillemot R&D, 2015. All rights reserved.)
S3 HTCAND32; C:\Windows\System32\Drivers\ANDROIDUSB.sys [25088 2009-10-26] (HTC, Corporation) [Fichier non signé]
S3 Huawei; C:\Windows\System32\DRIVERS\ewdcsc.sys [25856 2015-11-29] (Huawei Tech. Co., Ltd.)
S3 huawei_cdcacm; C:\Windows\System32\DRIVERS\ew_jucdcacm.sys [89856 2015-11-29] (Huawei Technologies Co., Ltd.)
S3 huawei_cdcecm; C:\Windows\System32\DRIVERS\ew_jucdcecm.sys [66688 2015-11-29] (Huawei Technologies Co., Ltd.)
S3 huawei_ext_ctrl; C:\Windows\System32\DRIVERS\ew_juextctrl.sys [26624 2015-11-29] (Huawei Technologies Co., Ltd.)
R1 ISODrive; C:\Program Files\UltraISO\drivers\ISODrive.sys [82168 2013-11-21] (EZB Systems, Inc.)
S3 jrdusbser; C:\Windows\System32\DRIVERS\jrdusbser.sys [105344 2015-11-29] (TCT International Mobile Ltd)
R3 MPEVirtual; C:\Windows\System32\DRIVERS\TeViiData.sys [17752 2010-06-07] (TeVii Technology, Ltd.)
S3 netr28u; C:\Windows\System32\DRIVERS\netr28u.sys [1174880 2010-12-28] (Ralink Technology Corp.)
R2 NPF; C:\Windows\System32\drivers\npf.sys [36600 2013-03-01] (Riverbed Technology, Inc.)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad32v.sys [34080 2013-12-05] (NVIDIA Corporation)
S3 RTL8187; C:\Windows\System32\DRIVERS\rtl8187.sys [375808 2010-01-07] (Realtek Semiconductor Corporation )
R3 SAllBDA; C:\Windows\System32\Drivers\TeViiS2.sys [130184 2011-07-27] (TeVii Technology Ltd.)
S3 SCDModem; C:\Windows\System32\DRIVERS\SCDModem.sys [22528 2015-12-15] (SCD-MBB Device)
S3 SCDSerials; C:\Windows\System32\DRIVERS\SCDSerials.sys [22528 2015-12-15] (SCD-MBB Device)
S3 SCDUsbHub; C:\Windows\System32\DRIVERS\SCDUsbHub.sys [15272 2015-12-15] (DriverCoding Incorporated.)
S3 SRS_PremiumSound_Service; C:\Windows\System32\drivers\srs_PremiumSound_i386.sys [246000 2009-11-10] ()
S3 ssudobex; C:\Windows\System32\DRIVERS\ssudobex.sys [181912 2013-05-02] (DEVGURU Co., LTD.(www.devguru.co.kr))
S3 ssudserd; C:\Windows\System32\DRIVERS\ssudserd.sys [181912 2013-05-02] (DEVGURU Co., LTD.(www.devguru.co.kr))
S3 usbbus; C:\Windows\System32\DRIVERS\lgusbbus.sys [13056 2014-11-17] (LG Electronics Inc.)
S3 UsbDiag; C:\Windows\System32\DRIVERS\lgusbdiag.sys [22016 2014-11-21] (LG Electronics Inc.)
S3 UsblgwmAtc; C:\Windows\System32\DRIVERS\lgwusbser02.sys [21248 2009-09-23] (LG Electronics Inc)
S3 usblgwmbus; C:\Windows\System32\DRIVERS\lgwusbbus.sys [13696 2009-09-23] (LG Electronics Inc)
S3 UsblgwmDiag; C:\Windows\System32\DRIVERS\lgwusbser01.sys [21248 2009-09-23] (LG Electronics Inc)
S3 USBlgwmModem; C:\Windows\System32\DRIVERS\lgwusbmodem.sys [25216 2009-09-23] (LG Electronics Inc)
S3 USBModem; C:\Windows\System32\DRIVERS\lgusbmodem.sys [25216 2014-11-17] (LG Electronics Inc.)
R3 USBPcap; C:\Windows\System32\DRIVERS\USBPcap.sys [50800 2016-08-02] (USBPcap)
S3 wdm_usb; C:\Windows\System32\DRIVERS\usb2ser.sys [119952 2016-07-15] (MBB)
S3 massfilter; system32\drivers\massfilter.sys [X]
S3 massfilter_hs; system32\drivers\massfilter_hs.sys [X]
S3 USBZTECCID; system32\DRIVERS\ZTEusbccid.sys [X]
S3 vmci; \SystemRoot\system32\DRIVERS\vmci.sys [X]
S3 VMnetAdapter; system32\DRIVERS\vmnetadapter.sys [X]
S3 ZTEusbMB; system32\DRIVERS\ZTEusbnmeaext2.sys [X]
S3 ZTEusbmdm6k; system32\DRIVERS\ZTEusbmdm6k.sys [X]
S3 ZTEusbnet; system32\DRIVERS\ZTEusbnet.sys [X]
S3 ZTEusbnmea; system32\DRIVERS\ZTEusbnmea.sys [X]
S3 ZTEusbser6k; system32\DRIVERS\ZTEusbser6k.sys [X]
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois - Créés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2017-10-01 20:02 - 2017-10-01 20:03 - 000031628 _____ C:\Users\Admin\Desktop\FRST.txt
2017-10-01 20:02 - 2017-10-01 20:02 - 000000000 ____D C:\FRST
2017-10-01 20:01 - 2017-10-01 20:00 - 001795584 _____ (Farbar) C:\Users\Admin\Desktop\FRST.exe
2017-10-01 20:00 - 2017-10-01 20:00 - 001795584 _____ (Farbar) C:\Users\Admin\Downloads\FRST.exe
2017-10-01 19:43 - 2017-10-01 19:43 - 003088357 _____ C:\Users\Admin\Desktop\andromeda_060717.zip
2017-10-01 19:31 - 2017-10-01 19:31 - 000000000 ____H C:\ProgramData\cm-lock
2017-10-01 19:19 - 2017-10-01 19:22 - 000005507 _____ C:\Users\Admin\Desktop\ZHPCleaner.txt
2017-10-01 19:05 - 2017-10-01 18:44 - 002939264 _____ C:\Users\Admin\Desktop\ZHPCleaner.exe
2017-10-01 18:44 - 2017-10-01 18:44 - 002939264 _____ C:\Users\Admin\Downloads\ZHPCleaner.exe
2017-10-01 18:41 - 2017-10-01 18:41 - 000344096 _____ C:\Users\Admin\Downloads\DB-v4 150917 (1).SERVICE
2017-10-01 17:34 - 2017-10-01 17:34 - 000005878 _____ C:\Users\Admin\Desktop\eset oline scann.txt
2017-10-01 12:08 - 2017-10-01 12:08 - 002870984 _____ (ESET) C:\Users\Admin\Desktop\esetsmartinstaller_fra.exe
2017-10-01 12:05 - 2017-10-01 12:05 - 000002421 _____ C:\Users\Admin\Desktop\JRT.txt
2017-10-01 12:01 - 2017-10-01 12:01 - 001790024 _____ (Malwarebytes) C:\Users\Admin\Desktop\JRT.exe
2017-10-01 11:47 - 2017-10-01 11:51 - 000002532 _____ C:\Users\Admin\Desktop\Rkill.txt
2017-10-01 11:46 - 2017-10-01 11:46 - 001780224 _____ (Bleeping Computer, LLC) C:\Users\Admin\Desktop\rkill-unsigned.exe
2017-09-30 18:22 - 2017-10-01 19:05 - 000000000 ____D C:\Users\Admin\AppData\Local\ZHP
2017-09-30 17:53 - 2017-09-30 17:53 - 002896256 _____ C:\Users\Admin\Desktop\ZHPDiag3.exe
2017-09-30 12:52 - 2017-10-01 19:29 - 000000000 ____D C:\Program Files\ESET
2017-09-30 12:52 - 2017-09-30 12:52 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ESET
2017-09-30 12:52 - 2017-09-30 12:52 - 000000000 ____D C:\ProgramData\ESET
2017-09-30 12:36 - 2017-09-30 12:36 - 000763520 _____ (ESET) C:\Users\Admin\Desktop\ESETUninstaller_2.exe
2017-09-30 12:35 - 2017-09-30 12:35 - 000763520 _____ (ESET) C:\Users\Admin\Desktop\ESETUninstaller.exe
2017-09-30 12:16 - 2017-09-30 12:17 - 008757888 _____ (ESET) C:\Users\Admin\Desktop\avremover_nt32_enu.exe
2017-09-30 11:20 - 2017-09-30 11:20 - 000003400 _____ C:\Users\Admin\Desktop\kk.txt
2017-09-30 10:43 - 2017-09-30 10:45 - 071089112 _____ (Malwarebytes ) C:\Users\Admin\Downloads\mb3-setup-consumer-3.2.2.2029-1.0.207-1.0.2899.exe
2017-09-29 20:47 - 2017-09-29 20:47 - 000063477 _____ C:\Users\Admin\Downloads\Pro.Evolution.Soccer.2018-CPY.torrent
2017-09-28 18:08 - 2017-09-28 18:08 - 000001004 _____ C:\Users\Admin\Desktop\Modem OT-X080C.lnk
2017-09-28 18:08 - 2017-09-28 18:08 - 000000000 ____D C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Modem OT-X080C
2017-09-28 18:08 - 2017-09-28 18:08 - 000000000 ____D C:\Users\Admin\AppData\Roaming\Dialer
2017-09-28 18:08 - 2017-09-28 18:08 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Modem OT-X080C
2017-09-28 18:07 - 2017-09-28 18:08 - 000000000 ____D C:\Program Files\Modem OT-X080C
2017-09-27 20:31 - 2017-09-27 20:32 - 000000000 ____D C:\Users\Admin\Desktop\Nouveau dossier (2)
2017-09-27 19:37 - 2017-09-27 19:37 - 000367318 _____ C:\Users\Admin\Downloads\tv_channels_hichamcccaqs656.m3u
2017-09-27 19:36 - 2017-09-27 19:36 - 000371022 _____ C:\Users\Admin\Downloads\tv_channels_hichamcccam78888 (1).m3u
2017-09-27 19:33 - 2017-09-27 19:33 - 000745045 _____ C:\Users\Admin\Downloads\tv_channels_Hichamcccccam_plus (1).m3u
2017-09-27 19:33 - 2017-09-27 19:33 - 000374726 _____ C:\Users\Admin\Downloads\tv_channels_hichamcccam222366 (1).m3u
2017-09-27 18:51 - 2017-09-27 18:51 - 000400654 _____ C:\Users\Admin\Downloads\tv_channels_rachidfrance454578.m3u
2017-09-26 21:00 - 2017-09-26 21:00 - 000180488 _____ (Sysinternals) C:\Windows\PSEXESVC.EXE
2017-09-26 18:42 - 2017-09-26 18:42 - 000371020 _____ C:\Users\Admin\Downloads\tv_channels_hichamcccam78888.m3u
2017-09-26 11:25 - 2017-09-26 11:25 - 000474299 _____ ( ) C:\Users\Admin\Downloads\Hd_Server_Setting_V1_2_Rar.exe
2017-09-21 13:12 - 2017-09-21 13:12 - 000096860 _____ C:\Users\Admin\Downloads\xbmc_7070_channel_list__gx_hd_databasev1.00_1.sdx
2017-09-20 11:36 - 2010-12-27 19:22 - 000206976 _____ (QUALCOMM Incorporated) C:\Windows\system32\Drivers\evusbvoc.sys
2017-09-20 11:36 - 2010-12-27 19:22 - 000206976 _____ (QUALCOMM Incorporated) C:\Windows\system32\Drivers\evusbmdm.sys
2017-09-20 11:36 - 2010-12-27 19:22 - 000206976 _____ (QUALCOMM Incorporated) C:\Windows\system32\Drivers\evusbdiag.sys
2017-09-20 11:36 - 2010-12-27 19:22 - 000206976 _____ (QUALCOMM Incorporated) C:\Windows\system32\Drivers\evusbat.sys
2017-09-19 11:16 - 2017-09-19 11:16 - 000032594 _____ C:\Users\Admin\Downloads\Non confirmé 784017.crdownload
2017-09-19 11:16 - 2017-09-19 11:16 - 000032594 _____ C:\Users\Admin\Downloads\Non confirmé 519538.crdownload
2017-09-19 11:16 - 2017-09-19 11:16 - 000032594 _____ C:\Users\Admin\Downloads\Non confirmé 238438.crdownload
2017-09-19 11:11 - 2017-09-19 11:11 - 000032594 _____ C:\Users\Admin\Downloads\Non confirmé 895107.crdownload
2017-09-19 11:10 - 2017-09-19 11:10 - 000032594 _____ C:\Users\Admin\Downloads\Non confirmé 488573.crdownload
2017-09-19 11:10 - 2017-09-19 11:10 - 000032594 _____ C:\Users\Admin\Downloads\Non confirmé 230820.crdownload
2017-09-19 11:09 - 2017-09-19 11:09 - 000032594 _____ C:\Users\Admin\Downloads\Non confirmé 40596.crdownload
2017-09-19 11:08 - 2017-09-19 11:08 - 000032594 _____ C:\Users\Admin\Downloads\Non confirmé 398312.crdownload
2017-09-18 17:59 - 2017-09-18 17:59 - 001498733 _____ C:\Users\Admin\Downloads\Windows Loader v2.1.5. by DAZ.rar
2017-09-18 13:55 - 2017-09-18 13:55 - 000488373 _____ ( ) C:\Users\Admin\Downloads\Windows_7_Loader_By_Daz_Full_Activator_v2.2.2_Download.exe
2017-09-16 18:27 - 2017-09-16 18:27 - 000032594 _____ C:\Users\Admin\Downloads\Non confirmé 766761.crdownload
2017-09-16 18:27 - 2017-09-16 18:27 - 000032594 _____ C:\Users\Admin\Downloads\Non confirmé 36844.crdownload
2017-09-16 18:27 - 2017-09-16 18:27 - 000032594 _____ C:\Users\Admin\Downloads\Non confirmé 158660.crdownload
2017-09-16 18:25 - 2017-09-16 18:25 - 000032594 _____ C:\Users\Admin\Downloads\Non confirmé 865224.crdownload
2017-09-16 18:25 - 2017-09-16 18:25 - 000032594 _____ C:\Users\Admin\Downloads\Non confirmé 731162.crdownload
2017-09-16 18:25 - 2017-09-16 18:25 - 000032594 _____ C:\Users\Admin\Downloads\Non confirmé 498989.crdownload
2017-09-16 18:25 - 2017-09-16 18:25 - 000032594 _____ C:\Users\Admin\Downloads\Non confirmé 35878.crdownload
2017-09-16 12:48 - 2017-09-16 12:48 - 000344096 _____ C:\Users\Admin\Downloads\DB-v4 150917.SERVICE
2017-09-13 21:07 - 2017-09-13 21:07 - 000437709 _____ C:\Users\Admin\Downloads\tv_channels_hichamcccam45413.m3u
2017-09-12 19:25 - 2017-10-01 18:52 - 000000697 _____ C:\Users\Admin\Desktop\Nouveau document texte.txt
2017-09-12 19:19 - 2017-09-12 19:19 - 000509711 _____ C:\Users\Admin\Downloads\tv_channels_hichamcccam222366.m3u
2017-09-12 18:03 - 2017-09-12 18:03 - 000474606 _____ C:\Users\Admin\Downloads\tv_channels_b7QVQKaUj5.m3u
2017-09-09 17:33 - 2017-09-09 17:33 - 000991821 _____ C:\Users\Admin\Downloads\tv_channels_Hichamcccccam_plus.m3u
2017-09-07 19:22 - 2017-09-07 19:22 - 000071334 _____ C:\Users\Admin\Downloads\DpFileListGeneratorv1.6byBarisDLC3.0.zip
2017-09-07 19:09 - 2017-09-07 19:12 - 005295839 _____ C:\Users\Admin\Downloads\EDIT00000000
2017-09-07 17:40 - 2017-09-07 17:40 - 000091544 _____ C:\Users\Admin\Downloads\liste-canaux-Femto-Grande-Pro26042017 (1).sdx
2017-09-07 16:49 - 2017-09-07 16:49 - 045389684 _____ C:\Users\Admin\Downloads\Updated Players Faces (1).rar
2017-09-07 12:32 - 2017-09-07 12:34 - 066390755 _____ C:\Users\Admin\Downloads\PES_Professionals_Patch_2017_V3.4.rar
2017-09-07 12:24 - 2017-09-07 12:24 - 000000384 _____ C:\Users\Admin\Downloads\tv_channels_cediide00sksokod2.m3u
2017-09-06 17:47 - 2017-09-06 17:47 - 006737488 _____ C:\Users\Admin\Downloads\2531.cpk
2017-09-06 17:37 - 2017-09-06 17:41 - 124537151 _____ C:\Users\Admin\Downloads\PES_Professionals_Patch_2017_V3.2.rar
2017-09-04 22:07 - 2017-09-04 22:07 - 000344096 _____ C:\Users\Admin\Downloads\liste-canaux-tornado-v4-mini-05072017.SERVICE
2017-09-04 20:35 - 2017-09-04 20:35 - 000022569 _____ C:\Users\Admin\Downloads\PESProfessionalsPatch2017V3.1.torrent
==================== Un mois - Modifiés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2017-10-01 20:02 - 2015-05-03 00:25 - 000000000 ____D C:\Users\Admin\AppData\Roaming\uTorrent
2017-10-01 19:58 - 2015-04-30 10:14 - 000000000 ____D C:\Users\Admin\AppData\Roaming\Skype
2017-10-01 19:57 - 2013-12-18 00:11 - 000000600 _____ C:\Users\Admin\AppData\Roaming\winscp.rnd
2017-10-01 19:43 - 2013-12-18 03:14 - 000001078 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1076428414-641238508-383798790-1000UA.job
2017-10-01 19:41 - 2009-07-14 05:34 - 000028240 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2017-10-01 19:41 - 2009-07-14 05:34 - 000028240 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2017-10-01 19:32 - 2017-02-13 18:04 - 000000000 ____D C:\Users\Admin\AppData\Local\CrashDumps
2017-10-01 19:31 - 2017-07-25 09:30 - 000000000 ____D C:\Users\Admin\AppData\LocalLow\uTorrent
2017-10-01 19:30 - 2015-05-08 17:03 - 000000000 ____D C:\Program Files\Steam
2017-10-01 19:30 - 2009-07-14 05:53 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2017-10-01 19:23 - 2017-02-06 21:29 - 000000000 ____D C:\Users\Admin\AppData\Roaming\DMCache
2017-10-01 19:22 - 2015-08-09 01:57 - 000000000 ____D C:\Users\Admin\AppData\Roaming\ZHP
2017-10-01 19:22 - 2013-06-10 17:02 - 000000000 ____D C:\Users\Admin\AppData\Local\Google
2017-10-01 19:22 - 2013-06-10 16:58 - 000001018 _____ C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2017-10-01 18:41 - 2013-06-11 00:50 - 007020312 _____ C:\Windows\system32\perfh00C.dat
2017-10-01 18:41 - 2013-06-11 00:50 - 006051916 _____ C:\Windows\system32\perfc00C.dat
2017-10-01 18:41 - 2013-06-10 17:02 - 000006412 _____ C:\Windows\system32\PerfStringBackup.INI
2017-10-01 15:37 - 2013-12-17 23:57 - 000000000 ____D C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TeVii
2017-10-01 15:37 - 2013-12-17 23:56 - 000000000 ____D C:\myTeVii
2017-10-01 15:24 - 2015-11-28 17:48 - 000000000 ____D C:\Users\Admin\AppData\Roaming\vlc
2017-09-30 20:44 - 2013-12-18 03:14 - 000001026 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1076428414-641238508-383798790-1000Core.job
2017-09-30 12:53 - 2009-07-14 03:37 - 000000000 ____D C:\Windows\inf
2017-09-30 11:34 - 2009-07-14 03:37 - 000000000 ____D C:\Windows\system32\NDF
2017-09-30 11:10 - 2015-03-25 00:09 - 000000000 ____D C:\Program Files\MyLanViewer
2017-09-29 19:36 - 2017-02-15 19:56 - 000106496 _____ C:\Users\Admin\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2017-09-27 18:47 - 2017-02-18 14:54 - 000232759 _____ C:\Users\Admin\Desktop\tv_channels_hichamcccam4s5.m3u
2017-09-27 16:45 - 2015-04-30 10:14 - 000000000 ____D C:\Users\Admin\AppData\Roaming\IDM
2017-09-27 11:46 - 2013-12-18 17:31 - 000000000 ____D C:\Windows\Minidump
2017-09-27 11:46 - 2009-07-14 03:37 - 000000000 ____D C:\Windows\ModemLogs
2017-09-27 11:38 - 2016-11-27 13:30 - 000000000 ____D C:\Users\Admin\AppData\Local\ElevatedDiagnostics
2017-09-26 13:23 - 2016-11-20 17:46 - 000000000 ____D C:\Users\Admin\AppData\LocalLow\Mozilla
2017-09-26 11:31 - 2017-04-11 19:31 - 000000000 ____D C:\Program Files\Mozilla Firefox
2017-09-26 10:02 - 2014-10-08 22:35 - 000002339 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2017-09-24 20:04 - 2015-10-22 12:03 - 000000000 ____D C:\ProgramData\DatacardService
2017-09-16 13:44 - 2016-09-17 13:35 - 000000000 ____D C:\Users\Admin\AppData\Roaming\AIMP
2017-09-12 10:10 - 2009-07-14 05:53 - 000032496 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2017-09-11 20:18 - 2013-12-18 14:47 - 000000000 ____D C:\Users\Admin\Downloads\Video
2017-09-07 19:12 - 2016-01-20 19:16 - 000000000 ____D C:\Users\Admin\Documents\MEGAsync Downloads
2017-09-07 18:14 - 2017-05-19 12:27 - 000000213 _____ C:\Users\Admin\Desktop\criiii.txt
2017-09-06 17:41 - 2013-12-20 16:09 - 000000000 ____D C:\Users\Admin\Documents\KONAMI
==================== Fichiers à la racine de certains dossiers =======
2016-09-26 10:27 - 2016-09-26 10:27 - 000007887 _____ () C:\Users\Admin\AppData\Roaming\pcouffin.cat
2016-09-26 10:27 - 2016-09-26 10:27 - 000001144 _____ () C:\Users\Admin\AppData\Roaming\pcouffin.inf
2016-09-26 10:27 - 2016-09-26 10:27 - 000000055 _____ () C:\Users\Admin\AppData\Roaming\pcouffin.log
2016-09-26 10:27 - 2016-09-26 10:27 - 000047360 _____ (VSO Software) C:\Users\Admin\AppData\Roaming\pcouffin.sys
2013-12-18 00:11 - 2017-10-01 19:57 - 000000600 _____ () C:\Users\Admin\AppData\Roaming\winscp.rnd
2017-02-15 19:56 - 2017-09-29 19:36 - 000106496 _____ () C:\Users\Admin\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2016-11-24 11:13 - 2017-08-18 10:01 - 000000600 _____ () C:\Users\Admin\AppData\Local\PUTTY.RND
2017-05-06 15:05 - 2017-05-06 15:19 - 000000187 _____ () C:\Users\Admin\AppData\Local\uts.ini
2017-10-01 19:31 - 2017-10-01 19:31 - 000000000 ____H () C:\ProgramData\cm-lock
Certains fichiers dans TEMP:
====================
2017-09-30 10:46 - 2017-09-30 10:45 - 071089112 _____ (Malwarebytes ) C:\Users\Admin\AppData\Local\Temp\mb3-setup-consumer-3.2.2.2029-1.0.207-1.0.2899.exe
2017-09-28 09:53 - 2017-09-28 09:53 - 000001536 _____ () C:\Users\Admin\AppData\Local\Temp\NEventMessages.dll
2017-09-28 09:53 - 2017-09-28 09:53 - 000001536 _____ () C:\Users\Admin\AppData\Local\Temp\NOSEventMessages.dll
==================== Bamital & volsnap ======================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
C:\Windows\explorer.exe => Le fichier est signé numériquement
C:\Windows\system32\winlogon.exe => Le fichier est signé numériquement
C:\Windows\system32\wininit.exe => Le fichier est signé numériquement
C:\Windows\system32\svchost.exe => Le fichier est signé numériquement
C:\Windows\system32\services.exe => Le fichier est signé numériquement
C:\Windows\system32\User32.dll => Le fichier est signé numériquement
C:\Windows\system32\userinit.exe => Le fichier est signé numériquement
C:\Windows\system32\rpcss.dll => Le fichier est signé numériquement
C:\Windows\system32\dnsapi.dll => Le fichier est signé numériquement
C:\Windows\system32\Drivers\volsnap.sys => Le fichier est signé numériquement
LastRegBack: 2017-09-21 11:21
==================== Fin de FRST.txt ============================
Exécuté par Admin (administrateur) sur ADMIN-PC (01-10-2017 20:02:18)
Exécuté depuis C:\Users\Admin\Desktop
Profils chargés: Admin (Profils disponibles: Admin)
Platform: Microsoft Windows 7 Professionnel Service Pack 1 (X86) Langue: Français (France)
Internet Explorer Version 11 (Navigateur par défaut: Chrome)
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Andrea Electronics Corporation) C:\Windows\System32\AEADISRV.EXE
() C:\Program Files\Modem OT-X080C\DataCardService.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
() C:\Program Files\Modem OT-X080C\BGService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(ESET) C:\Program Files\ESET\ESET Smart Security\ekrn.exe
() C:\Program Files\inwi X602D\ApplicationController.exe
(Foxit Corporation) C:\Program Files\Foxit Software\Foxit Reader\Foxit Cloud\FCUpdateService.exe
(Guillemot Corporation ®) C:\Program Files\DJHERCULESMIX\Audio\DJ Console Series\drivers\x86\HerculesDJControlMP3.EXE
() C:\ProgramData\DatacardService\HWDeviceService.exe
(Huawei Technologies Co., Ltd.) C:\ProgramData\DatacardService\DCSHelper.exe
() C:\ProgramData\Internet Mobile\OnlineUpdate\ouc.exe
(Analog Devices, Inc.) C:\Program Files\Analog Devices\Core\smax4pnp.exe
(TeVii Technology Ltd.) C:\Windows\TeViiRC.exe
() C:\Program Files\DivX\DivX Update\DivXUpdate.exe
() C:\Program Files\Internet Haut Débit Mobile\AutoDect.exe
(Samsung Electronics Co., Ltd.) C:\Program Files\Samsung\Kies\KiesTrayAgent.exe
(Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(CybelSoft) C:\Program Files\ma-config.com\MaConfigAgent.exe
(Mediatek Inc.) C:\Program Files\MediatekWiFi\Common\RaRegistry.exe
() C:\Program Files\MeditelInternet\MeditelInternet_Service.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(DJHERCULESMIX®) C:\Program Files\Guillemot\HDJTray\HDJSeries2TrayBar.exe
(Cracked By Wh!5t
eR) C:\Program Files\ESET\ESET Smart Security\egui.exe
() C:\Users\Admin\Desktop\PES2017 NO LAG\D3DOverrider\D3DOverrider.exe
(Tonec Inc.) C:\Program Files\Internet Download Manager\IDMan.exe
(Valve Corporation) C:\Program Files\Steam\Steam.exe
(Octoshape ApS) C:\Users\Admin\AppData\Roaming\Octoshape\Octoshape Streaming Services\OctoshapeClient.exe
(Samsung) C:\Program Files\Samsung\Kies\Kies.exe
(Sony) C:\Program Files\Sony\Sony PC Companion\PCCompanion.exe
(DJHERCULESMIX®) C:\Program Files\DJHERCULESMIX\Audio\DJ Console Series\HDJSeriesCPL.exe
(DJHERCULESMIX®) C:\Program Files\DJHERCULESMIX\Audio\DJ Console Series\cpl2\HDJSeries2CPL.exe
() C:\Program Files\Sony\Sony PC Companion\PCCompanionInfo.exe
(Samsung) C:\Program Files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe
() C:\ProgramData\Modem HDM EC156\OnlineUpdate\ouc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe
(Nokia) C:\Program Files\Nokia\Nokia Suite\NokiaSuite.exe
(BitTorrent Inc.) C:\Users\Admin\AppData\Roaming\uTorrent\uTorrent.exe
() C:\ProgDVB Professional\ProgLauncher.exe
() C:\Program Files\MeditelInternet\MeditelInternet_Launcher.exe
(Mediatek Inc.) C:\Program Files\MediatekWiFi\Common\RaUI.exe
(Tonec Inc.) C:\Program Files\Internet Download Manager\IEMonitor.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Mega Limited) C:\Users\Admin\AppData\Local\MEGAsync\MEGAsync.exe
(Realtek) C:\Program Files\REALTEK\RTL8187 Wireless LAN Utility\RtlService.exe
(Realtek Semiconductor Corp.) C:\Program Files\REALTEK\RTL8187 Wireless LAN Utility\RtWLan.exe
(TechSmith Corporation) C:\Program Files\TechSmith\SnagIt 8\TscHelp.exe
(BitTorrent Inc.) C:\Users\Admin\AppData\Roaming\uTorrent\updates\3.5.0_44090\utorrentie.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(BitTorrent Inc.) C:\Users\Admin\AppData\Roaming\uTorrent\updates\3.5.0_44090\utorrentie.exe
(Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE
(WIBU-SYSTEMS AG) C:\Program Files\CodeMeter\Runtime\bin\CodeMeter.exe
(Nokia) C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Nokia) C:\Program Files\PC Connectivity Solution\Transports\NclUSBSrv.exe
(Nokia) C:\Program Files\PC Connectivity Solution\Transports\NclMSBTSrvEx.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
==================== Registre (Avec liste blanche) ===========================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [SoundMAXPnP] => C:\Program Files\Analog Devices\Core\smax4pnp.exe [1314816 2009-05-18] (Analog Devices, Inc.)
HKLM\...\Run: [TeViiRC] => C:\Windows\TeViiRC.exe [328328 2011-07-27] (TeVii Technology Ltd.)
HKLM\...\Run: [NeroFilterCheck] => C:\Windows\system32\NeroCheck.exe [155648 2006-01-12] (Nero AG)
HKLM\...\Run: [NvBackend] => C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe [2270720 2013-12-10] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [APSDaemon] => c:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [67384 2016-03-18] (Apple Inc.)
HKLM\...\Run: [DivXMediaServer] => C:\Program Files\DivX\DivX Media Server\DivXMediaServer.exe [450560 2014-04-03] (DivX, LLC)
HKLM\...\Run: [DivXUpdate] => C:\Program Files\DivX\DivX Update\DivXUpdate.exe [1861968 2014-01-10] ()
HKLM\...\Run: [autodetect] => C:\Program Files\Internet Haut Débit Mobile\AutoDect.exe [128864 2010-11-15] ()
HKLM\...\Run: [bintin] => C:\WINDOWS\system32\wscript.exe /e:VBScript.Encode D:\bin.doc <==== ATTENTION
HKLM\...\Run: [KiesTrayAgent] => C:\Program Files\Samsung\Kies\KiesTrayAgent.exe [318248 2016-01-08] (Samsung Electronics Co., Ltd.)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [164152 2016-03-19] (Apple Inc.)
HKLM\...\Run: [Hercules DJ Series TrayAgent] => C:\Program Files\Guillemot\HDJTray\HDJSeries2TrayBar.exe [1669792 2016-06-01] (DJHERCULESMIX®)
HKLM\...\Run: [D3DOverrider] => C:\Users\Admin\Desktop\PES2017 NO LAG\D3DOverrider\D3DOverriderWrapper.exe [40960 2009-08-22] ()
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Smart Security\egui.exe [2029640 2009-04-27] (Cracked By Wh!5t
eR)
HKU\S-1-5-21-1076428414-641238508-383798790-1000\...\Run: [IDMan] => C:\Program Files\Internet Download Manager\IDMan.exe [3829328 2014-05-15] (Tonec Inc.)
HKU\S-1-5-21-1076428414-641238508-383798790-1000\...\Run: [Steam] => C:\Program Files\Steam\steam.exe [3074336 2017-09-27] (Valve Corporation)
HKU\S-1-5-21-1076428414-641238508-383798790-1000\...\Run: [Octoshape Streaming Services] => C:\Users\Admin\AppData\Roaming\Octoshape\Octoshape Streaming Services\OctoshapeClient.exe [107800 2011-03-24] (Octoshape ApS)
HKU\S-1-5-21-1076428414-641238508-383798790-1000\...\Run: [KiesPreload] => C:\Program Files\Samsung\Kies\Kies.exe [1572648 2016-01-08] (Samsung)
HKU\S-1-5-21-1076428414-641238508-383798790-1000\...\Run: [Sony PC Companion] => C:\Program Files\Sony\Sony PC Companion\PCCompanion.exe [457088 2015-09-23] (Sony)
HKU\S-1-5-21-1076428414-641238508-383798790-1000\...\Run: [Skype] => C:\Program Files\Skype\Phone\Skype.exe [27250144 2016-12-20] (Skype Technologies S.A.)
HKU\S-1-5-21-1076428414-641238508-383798790-1000\...\Run: [KiesPDLR.exe] => C:\Program Files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe [1021736 2016-01-08] (Samsung)
HKU\S-1-5-21-1076428414-641238508-383798790-1000\...\Run: [NokiaSuite.exe] => C:\Program Files\Nokia\Nokia Suite\NokiaSuite.exe [1092448 2014-11-19] (Nokia)
HKU\S-1-5-21-1076428414-641238508-383798790-1000\...\Run: [uTorrent] => C:\Users\Admin\AppData\Roaming\uTorrent\uTorrent.exe [1982144 2017-09-28] (BitTorrent Inc.)
HKU\S-1-5-21-1076428414-641238508-383798790-1000\...\Run: [ProgLauncher] => C:\ProgDVB Professional\ProgLauncher.exe [401608 2017-01-19] ()
HKU\S-1-5-21-1076428414-641238508-383798790-1000\...\MountPoints2: {21f07676-9de5-11e7-8c73-0018bd5ada20} - K:\Système_Windows\Installer.exe
HKU\S-1-5-21-1076428414-641238508-383798790-1000\...\MountPoints2: {44225ddf-a31e-11e3-8638-002481143393} - K:\LGAutoRun.exe
HKU\S-1-5-21-1076428414-641238508-383798790-1000\...\MountPoints2: {472659da-a461-11e7-b0e2-0018bd5ada20} - K:\Système_Windows\Installer.exe
HKU\S-1-5-21-1076428414-641238508-383798790-1000\...\MountPoints2: {58e7c9bf-18e7-11e6-bf94-002481143393} - K:\AutoRun.exe
HKU\S-1-5-21-1076428414-641238508-383798790-1000\...\MountPoints2: {744b993f-9eb2-11e7-86d7-0018bd5ada20} - K:\Système_Windows\Installer.exe
HKU\S-1-5-21-1076428414-641238508-383798790-1000\...\MountPoints2: {744b9986-9eb2-11e7-86d7-0018bd5ada20} - K:\AutoRun.exe
HKU\S-1-5-21-1076428414-641238508-383798790-1000\...\MountPoints2: {77c221e7-9685-11e5-af18-0018bd5ada20} - K:\autorun.exe
HKU\S-1-5-21-1076428414-641238508-383798790-1000\...\MountPoints2: {a23fac86-7f37-11e7-9394-0018bd5ada20} - K:\AutoRun.exe
HKU\S-1-5-21-1076428414-641238508-383798790-1000\...\MountPoints2: {aeb60894-3d73-11e7-bd4a-0018bd5ada20} - K:\Setup.exe /s
HKU\S-1-5-21-1076428414-641238508-383798790-1000\...\MountPoints2: {b08f8804-7217-11e7-a80f-0018bd5ada20} - K:\AutoRun.exe
HKU\S-1-5-21-1076428414-641238508-383798790-1000\...\MountPoints2: {b5c97c1d-6715-11e7-9c41-0018bd5ada20} - K:\AutoRun.exe
HKU\S-1-5-21-1076428414-641238508-383798790-1000\...\MountPoints2: {ef1f054d-29cc-11e7-8e2f-0018bd5ada20} - K:\autorun.exe
HKU\S-1-5-21-1076428414-641238508-383798790-1000\...\MountPoints2: {f0a38572-2513-11e7-969f-0018bd5ada20} - K:\AutoRun.exe
HKU\S-1-5-18\...\RunOnce: [SPReview] => C:\Windows\System32\SPReview\SPReview.exe [280576 2013-12-18] (Microsoft Corporation)
Startup: C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MEGAsync.lnk [2016-01-20]
ShortcutTarget: MEGAsync.lnk -> C:\Users\Admin\AppData\Local\MEGAsync\MEGAsync.exe (Mega Limited)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Adobe Gamma Loader.lnk [2016-01-17]
ShortcutTarget: Adobe Gamma Loader.lnk -> C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe (Adobe Systems, Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Launcher.lnk [2016-01-17]
ShortcutTarget: Launcher.lnk -> C:\Program Files\MeditelInternet\MeditelInternet_Launcher.exe ()
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Mediatek Wireless Utility.lnk [2017-07-10]
ShortcutTarget: Mediatek Wireless Utility.lnk -> C:\Program Files\MediatekWiFi\Common\RaUI.exe (Mediatek Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Ralink Wireless Utility.lnk [2016-08-29]
ShortcutTarget: Ralink Wireless Utility.lnk -> C:\Program Files\Ralink\Common\RaUI.exe (Ralink Technology, Corp.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SnagIt 8.lnk [2016-01-17]
ShortcutTarget: SnagIt 8.lnk -> C:\Program Files\TechSmith\SnagIt 8\SnagIt32.exe (TechSmith Corporation)
GroupPolicy: Restriction ? <==== ATTENTION
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
ATTENTION: There are more than 99 Catalog9 entries. Turn off the whitelisting to see all the entries. You may check Device Manager for presence of unusual amount of "Microsoft 6to4 Adapter" devices.
Winsock: Catalog5 09 C:\Program Files\Bonjour\mdnsNSP.dll [122128 2015-08-12] (Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{00755C6C-3BCA-4562-B869-A8244E454258}: [DhcpNameServer] 192.168.8.1 192.168.8.1
Tcpip\..\Interfaces\{0DC1BE76-3BCB-4762-A000-5BFE49759E01}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{1DCC9566-3648-4817-ABF0-3044D3C54E16}: [NameServer] 62.251.231.241 212.217.1.1
Tcpip\..\Interfaces\{3421FB88-7358-418A-AB7A-F91531411C8A}: [NameServer] 192.168.50.58 192.168.60.55
Tcpip\..\Interfaces\{4A9406F1-9252-44C8-89AC-3D2BC5493598}: [DhcpNameServer] 192.168.8.1 192.168.8.1
Tcpip\..\Interfaces\{5B1883C5-B2D0-4D9A-AEDD-987C81DBEF08}: [NameServer] 192.168.60.58 192.168.50.55
Tcpip\..\Interfaces\{6309F24B-4A52-4B10-A458-A0F63681E56B}: [NameServer] 192.168.50.58 192.168.60.55
Tcpip\..\Interfaces\{74BA3C87-D990-4805-9B1A-26F74C3F68D4}: [DhcpNameServer] 192.168.8.1 192.168.8.1
Tcpip\..\Interfaces\{9733C8B9-B27D-409F-A351-DE1B61BF6900}: [NameServer] 192.168.60.58 192.168.50.55
Tcpip\..\Interfaces\{ABDC32AE-CDA7-4AFA-85D0-20BB8CB89C34}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{AD8030F3-53BD-4117-9964-DCF0967D02B1}: [DhcpNameServer] 192.168.1.1 192.168.1.1
Tcpip\..\Interfaces\{CE9187A9-BDD1-4BE4-91FB-2E1A65FFD9A5}: [NameServer] 62.251.231.241 212.217.1.1
Tcpip\..\Interfaces\{EFAF6A0A-1795-42C0-ACFE-091342D6DF29}: [NameServer] 62.251.230.241 212.217.1.1
Tcpip\..\Interfaces\{EFDC2B23-3365-453D-B29C-C10DE040A6EF}: [NameServer] 192.168.60.58 192.168.50.55
ManualProxies: 0hxxp://accesswebunlimited.com/wpad.dat?5179d7b6877695c8a7bbfd1afbcc570235930826
Internet Explorer:
==================
HKU\S-1-5-21-1076428414-641238508-383798790-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.inwi.ma
BHO: IDM integration (IDMIEHlprObj Class) -> {0055C089-8582-441B-A0BF-17B458C2A3A8} -> C:\Program Files\Internet Download Manager\IDMIECC.dll [2014-04-02] (Internet Download Manager, Tonec Inc.)
BHO: HelperObject Class -> {00C6482D-C502-44C8-8409-FCE54AD9C208} -> C:\Program Files\TechSmith\SnagIt 8\SnagItBHO.dll [2006-03-14] (TechSmith Corporation)
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26] (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_40\bin\ssv.dll [2015-03-04] (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corp.)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_40\bin\jp2ssv.dll [2015-03-04] (Oracle Corporation)
Toolbar: HKLM - SnagIt - {8FF5E183-ABDE-46EB-B09E-D2AAB95CABE3} - C:\Program Files\TechSmith\SnagIt 8\SnagItIEAddin.dll [2006-03-14] (TechSmith Corporation)
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll [2009-02-26] (Microsoft Corporation)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll [2016-09-23] (Skype Technologies)
FireFox:
========
FF DefaultProfile: i870huun.default
FF ProfilePath: C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\i870huun.default [2017-09-30]
FF HKLM\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird
FF Extension: (Eset Plugin) - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird [2017-09-30] [non signé]
FF HKU\S-1-5-21-1076428414-641238508-383798790-1000\...\Firefox\Extensions: [mozilla_cc@internetdownloadmanager.com] - C:\Users\Admin\AppData\Roaming\IDM\idmmzcc5
FF Extension: (IDM CC) - C:\Users\Admin\AppData\Roaming\IDM\idmmzcc5 [2015-04-30] [non signé]
FF HKU\S-1-5-21-1076428414-641238508-383798790-1000\...\SeaMonkey\Extensions: [mozilla_cc@internetdownloadmanager.com] - C:\Users\Admin\AppData\Roaming\IDM\idmmzcc5
FF Plugin: @Apple.com/iTunes,version=1.0 -> C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll [2016-03-08] ()
FF Plugin: @divx.com/DivX VOD Helper,version=1.0.0 -> C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll [2013-09-17] (DivX, LLC.)
FF Plugin: @divx.com/DivX Web Player Plug-In,version=1.0.0 -> C:\Program Files\DivX\DivX Web Player\npdivx32.dll [2014-04-18] (DivX, LLC)
FF Plugin: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/pdf -> C:\Program Files\Foxit Software\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2013-07-03] (Foxit Corporation)
FF Plugin: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.fdf -> C:\Program Files\Foxit Software\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2013-07-03] (Foxit Corporation)
FF Plugin: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> C:\Program Files\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2013-07-03] (Foxit Corporation)
FF Plugin: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> C:\Program Files\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2013-07-03] (Foxit Corporation)
FF Plugin: @java.com/DTPlugin,version=11.40.2 -> C:\Program Files\Java\jre1.8.0_40\bin\dtplugin\npDeployJava1.dll [2015-03-04] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.40.2 -> C:\Program Files\Java\jre1.8.0_40\bin\plugin2\npjp2.dll [2015-03-04] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50428.0\npctrl.dll [2016-04-27] ( Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin: @nokia.com/EnablerPlugin -> C:\Program Files\Nokia\Nokia Suite\npNokiaSuiteEnabler.dll [2014-11-19] ( )
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-28] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-28] (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.1.2 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2017-07-31] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-1076428414-641238508-383798790-1000: @octoshape.com/Octoshape Streaming Services,version=1.0 -> C:\Users\Admin\AppData\Roaming\Octoshape\Octoshape Streaming Services\sua-1702150-0-npoctoshape.dll [2017-02-15] (Octoshape ApS)
FF Plugin HKU\S-1-5-21-1076428414-641238508-383798790-1000: @tools.google.com/Google Update;version=3 -> C:\Users\Admin\AppData\Local\Google\Update\1.3.24.15\npGoogleUpdate3.dll [Pas de fichier]
FF Plugin ProgramFiles/Appdata: C:\Users\Admin\AppData\Roaming\mozilla\plugins\npoctoshape.dll [2015-08-18] (Octoshape ApS)
Chrome:
=======
CHR StartupUrls: Default -> "hxxps://www.google.co.ma/"
CHR DefaultSearchURL: Default -> hxxps://search.randomwalktab.com/?q={searchTerms}
CHR DefaultSearchKeyword: Default -> Random Walk Shapes
CHR DefaultSuggestURL: Default -> hxxps://randomwalktab.com/suggestions.php?q={searchTerms}
CHR Profile: C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default [2017-10-01]
CHR Extension: (Alexa Traffic Rank Checker) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\aopiomnkiggljhnhfmcbfjkacfiomcfe [2016-09-23]
CHR Extension: (Google Drive) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-12-17]
CHR Extension: (YouTube) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-12-17]
CHR Extension: (Recherche Google) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-12-17]
CHR Extension: (Adobe Acrobat) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2017-03-04]
CHR Extension: (AdBlock) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2017-09-21]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-08-22]
CHR Extension: (Gmail) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-12-17]
CHR Extension: (Chrome Media Router) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-09-26]
CHR Profile: C:\Users\Admin\AppData\Local\Google\Chrome\User Data\System Profile [2017-09-29]
CHR HKLM\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [fdjcngoneogjbkdakodemfopgkkncoll] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [jeaohhlajejodfjadcponpnjgkiikocn] - C:\Program Files\Internet Download Manager\IDMGCExt.crx [2014-05-15]
==================== Services (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 ALCATEL; C:\Program Files\Modem OT-X080C\DataCardService.exe [167936 2011-03-12] () [Fichier non signé]
S3 cfbackd; C:\Program Files\CleverFiles\Disk Drill\cfbackd.w32.exe [211520 2016-09-29] (CleverFiles)
R2 CodeMeter.exe; C:\Program Files\CodeMeter\Runtime\bin\CodeMeter.exe [2568120 2012-07-19] (WIBU-SYSTEMS AG)
S3 EhttpSrv; C:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe [20680 2009-04-27] (ESET)
R2 ekrn; C:\Program Files\ESET\ESET Smart Security\ekrn.exe [731840 2009-04-27] (ESET)
R2 FLAME II HSPA USB MODEM Service; C:\Program Files\inwi X602D\ApplicationController.exe [574976 2016-10-08] () [Fichier non signé]
R2 FoxitCloudUpdateService; C:\Program Files\Foxit Software\Foxit Reader\Foxit Cloud\FCUpdateService.exe [242216 2014-06-17] (Foxit Corporation)
S2 gupdate; C:\Program Files\Google\Update\GoogleUpdate.exe [137728 2015-11-20] (Google Inc.) [Fichier non signé]
S3 gupdatem; C:\Program Files\Google\Update\GoogleUpdate.exe [137728 2015-11-20] (Google Inc.) [Fichier non signé]
R2 HerculesDJControlMP3; C:\Program Files\DJHERCULESMIX\Audio\DJ Console Series\drivers\x86\HerculesDJControlMP3.EXE [94720 2016-04-18] (Guillemot Corporation ®) [Fichier non signé]
R2 HWDeviceService.exe; C:\ProgramData\DatacardService\HWDeviceService.exe [271712 2011-03-14] ()
S2 Internet Mobile. RunOuc; C:\Program Files\Internet Mobile\UpdateDog\ouc.exe [657504 2012-11-12] ()
R2 MaConfigAgent; C:\Program Files\ma-config.com\MaConfigAgent.exe [2117960 2015-04-10] (CybelSoft)
R2 MediatekRegistryWriter; C:\Program Files\MediatekWiFi\Common\RaRegistry.exe [405136 2014-12-04] (Mediatek Inc.)
R2 MeditelInternet_Service; C:\Program Files\MeditelInternet\MeditelInternet_Service.exe [347120 2012-11-09] ()
S3 Microsoft Office Groove Audit Service; C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe [58880 2009-02-26] (Microsoft Corporation) [Fichier non signé]
S2 Modem HDM EC156. RunOuc; C:\Program Files\Modem HDM EC156\UpdateDog\ouc.exe [650240 2015-10-22] () [Fichier non signé]
U2 NvNetworkService; C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe [1494304 2013-12-10] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [14658848 2013-12-10] (NVIDIA Corporation)
S3 odserv; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [434688 2011-07-20] (Microsoft Corporation) [Fichier non signé]
S3 ose; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [138240 2006-10-26] (Microsoft Corporation) [Fichier non signé]
S2 RalinkRegistryWriter; C:\Program Files\Ralink\Common\RaRegistry.exe [374112 2010-11-11] (Ralink Technology, Corp.)
R2 RtlService; C:\Program Files\REALTEK\RTL8187 Wireless LAN Utility\RtlService.exe [40960 2009-12-07] (Realtek) [Fichier non signé]
S3 Sony PC Companion; C:\Program Files\Sony\Sony PC Companion\PCCService.exe [155520 2015-06-10] (Avanquest Software)
S3 Steam Client Service; C:\Program Files\Common Files\Steam\SteamService.exe [564224 2014-02-08] (Valve Corporation) [Fichier non signé]
S2 TeamViewer; C:\Program Files\TeamViewer\TeamViewer_Service.exe [6882816 2015-12-14] (TeamViewer GmbH) [Fichier non signé]
S2 UI Assistant Service; C:\Program Files\Internet Mobile+\AssistantServices.exe [261456 2011-03-15] ()
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2013-05-27] (Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ======================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 ALCATELUSB; C:\Windows\System32\Drivers\AlcatelUsb.sys [19968 2015-11-29] (Windows (R) Codename Longhorn DDK provider)
S3 AndNetDiag; C:\Windows\System32\DRIVERS\lgandnetdiag.sys [25088 2015-05-12] (LG Electronics Inc.)
S3 ANDNetModem; C:\Windows\System32\DRIVERS\lgandnetmodem.sys [30208 2015-05-12] (LG Electronics Inc.)
S3 Bulk; C:\Windows\System32\Drivers\HDJBulk.sys [293024 2016-04-18] (© Guillemot R&D, 2015. All rights reserved.)
R3 dfmirage; C:\Windows\System32\DRIVERS\dfmirage.sys [34128 2008-03-05] (DemoForge, LLC)
R3 eamon; C:\Windows\System32\DRIVERS\eamon.sys [113960 2009-04-27] (ESET)
R1 ehdrv; C:\Windows\System32\DRIVERS\ehdrv.sys [107256 2009-04-27] (ESET)
R2 epfw; C:\Windows\System32\DRIVERS\epfw.sys [131976 2009-04-27] (ESET)
R3 Epfwndis; C:\Windows\System32\DRIVERS\Epfwndis.sys [33096 2009-04-27] (ESET)
R2 epfwwfp; C:\Windows\System32\DRIVERS\epfwwfp.sys [38240 2009-04-27] (ESET)
S3 evusbat; C:\Windows\System32\DRIVERS\evusbat.sys [206976 2010-12-27] (QUALCOMM Incorporated)
S3 evusbdiag; C:\Windows\System32\DRIVERS\evusbdiag.sys [206976 2010-12-27] (QUALCOMM Incorporated)
S3 evusbmdm; C:\Windows\System32\DRIVERS\evusbmdm.sys [206976 2010-12-27] (QUALCOMM Incorporated)
S3 evusbvoc; C:\Windows\System32\DRIVERS\evusbvoc.sys [206976 2010-12-27] (QUALCOMM Incorporated)
S3 FsUsbExDisk; C:\Windows\system32\FsUsbExDisk.SYS [36608 2010-06-14] () [Fichier non signé]
S3 ggsomc; C:\Windows\System32\DRIVERS\ggsomc.sys [26328 2016-01-31] (Sony Mobile Communications)
S3 HDJMidi; C:\Windows\System32\DRIVERS\HDJMidi.sys [250016 2016-04-18] (© Guillemot R&D, 2015. All rights reserved.)
S3 HTCAND32; C:\Windows\System32\Drivers\ANDROIDUSB.sys [25088 2009-10-26] (HTC, Corporation) [Fichier non signé]
S3 Huawei; C:\Windows\System32\DRIVERS\ewdcsc.sys [25856 2015-11-29] (Huawei Tech. Co., Ltd.)
S3 huawei_cdcacm; C:\Windows\System32\DRIVERS\ew_jucdcacm.sys [89856 2015-11-29] (Huawei Technologies Co., Ltd.)
S3 huawei_cdcecm; C:\Windows\System32\DRIVERS\ew_jucdcecm.sys [66688 2015-11-29] (Huawei Technologies Co., Ltd.)
S3 huawei_ext_ctrl; C:\Windows\System32\DRIVERS\ew_juextctrl.sys [26624 2015-11-29] (Huawei Technologies Co., Ltd.)
R1 ISODrive; C:\Program Files\UltraISO\drivers\ISODrive.sys [82168 2013-11-21] (EZB Systems, Inc.)
S3 jrdusbser; C:\Windows\System32\DRIVERS\jrdusbser.sys [105344 2015-11-29] (TCT International Mobile Ltd)
R3 MPEVirtual; C:\Windows\System32\DRIVERS\TeViiData.sys [17752 2010-06-07] (TeVii Technology, Ltd.)
S3 netr28u; C:\Windows\System32\DRIVERS\netr28u.sys [1174880 2010-12-28] (Ralink Technology Corp.)
R2 NPF; C:\Windows\System32\drivers\npf.sys [36600 2013-03-01] (Riverbed Technology, Inc.)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad32v.sys [34080 2013-12-05] (NVIDIA Corporation)
S3 RTL8187; C:\Windows\System32\DRIVERS\rtl8187.sys [375808 2010-01-07] (Realtek Semiconductor Corporation )
R3 SAllBDA; C:\Windows\System32\Drivers\TeViiS2.sys [130184 2011-07-27] (TeVii Technology Ltd.)
S3 SCDModem; C:\Windows\System32\DRIVERS\SCDModem.sys [22528 2015-12-15] (SCD-MBB Device)
S3 SCDSerials; C:\Windows\System32\DRIVERS\SCDSerials.sys [22528 2015-12-15] (SCD-MBB Device)
S3 SCDUsbHub; C:\Windows\System32\DRIVERS\SCDUsbHub.sys [15272 2015-12-15] (DriverCoding Incorporated.)
S3 SRS_PremiumSound_Service; C:\Windows\System32\drivers\srs_PremiumSound_i386.sys [246000 2009-11-10] ()
S3 ssudobex; C:\Windows\System32\DRIVERS\ssudobex.sys [181912 2013-05-02] (DEVGURU Co., LTD.(www.devguru.co.kr))
S3 ssudserd; C:\Windows\System32\DRIVERS\ssudserd.sys [181912 2013-05-02] (DEVGURU Co., LTD.(www.devguru.co.kr))
S3 usbbus; C:\Windows\System32\DRIVERS\lgusbbus.sys [13056 2014-11-17] (LG Electronics Inc.)
S3 UsbDiag; C:\Windows\System32\DRIVERS\lgusbdiag.sys [22016 2014-11-21] (LG Electronics Inc.)
S3 UsblgwmAtc; C:\Windows\System32\DRIVERS\lgwusbser02.sys [21248 2009-09-23] (LG Electronics Inc)
S3 usblgwmbus; C:\Windows\System32\DRIVERS\lgwusbbus.sys [13696 2009-09-23] (LG Electronics Inc)
S3 UsblgwmDiag; C:\Windows\System32\DRIVERS\lgwusbser01.sys [21248 2009-09-23] (LG Electronics Inc)
S3 USBlgwmModem; C:\Windows\System32\DRIVERS\lgwusbmodem.sys [25216 2009-09-23] (LG Electronics Inc)
S3 USBModem; C:\Windows\System32\DRIVERS\lgusbmodem.sys [25216 2014-11-17] (LG Electronics Inc.)
R3 USBPcap; C:\Windows\System32\DRIVERS\USBPcap.sys [50800 2016-08-02] (USBPcap)
S3 wdm_usb; C:\Windows\System32\DRIVERS\usb2ser.sys [119952 2016-07-15] (MBB)
S3 massfilter; system32\drivers\massfilter.sys [X]
S3 massfilter_hs; system32\drivers\massfilter_hs.sys [X]
S3 USBZTECCID; system32\DRIVERS\ZTEusbccid.sys [X]
S3 vmci; \SystemRoot\system32\DRIVERS\vmci.sys [X]
S3 VMnetAdapter; system32\DRIVERS\vmnetadapter.sys [X]
S3 ZTEusbMB; system32\DRIVERS\ZTEusbnmeaext2.sys [X]
S3 ZTEusbmdm6k; system32\DRIVERS\ZTEusbmdm6k.sys [X]
S3 ZTEusbnet; system32\DRIVERS\ZTEusbnet.sys [X]
S3 ZTEusbnmea; system32\DRIVERS\ZTEusbnmea.sys [X]
S3 ZTEusbser6k; system32\DRIVERS\ZTEusbser6k.sys [X]
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois - Créés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2017-10-01 20:02 - 2017-10-01 20:03 - 000031628 _____ C:\Users\Admin\Desktop\FRST.txt
2017-10-01 20:02 - 2017-10-01 20:02 - 000000000 ____D C:\FRST
2017-10-01 20:01 - 2017-10-01 20:00 - 001795584 _____ (Farbar) C:\Users\Admin\Desktop\FRST.exe
2017-10-01 20:00 - 2017-10-01 20:00 - 001795584 _____ (Farbar) C:\Users\Admin\Downloads\FRST.exe
2017-10-01 19:43 - 2017-10-01 19:43 - 003088357 _____ C:\Users\Admin\Desktop\andromeda_060717.zip
2017-10-01 19:31 - 2017-10-01 19:31 - 000000000 ____H C:\ProgramData\cm-lock
2017-10-01 19:19 - 2017-10-01 19:22 - 000005507 _____ C:\Users\Admin\Desktop\ZHPCleaner.txt
2017-10-01 19:05 - 2017-10-01 18:44 - 002939264 _____ C:\Users\Admin\Desktop\ZHPCleaner.exe
2017-10-01 18:44 - 2017-10-01 18:44 - 002939264 _____ C:\Users\Admin\Downloads\ZHPCleaner.exe
2017-10-01 18:41 - 2017-10-01 18:41 - 000344096 _____ C:\Users\Admin\Downloads\DB-v4 150917 (1).SERVICE
2017-10-01 17:34 - 2017-10-01 17:34 - 000005878 _____ C:\Users\Admin\Desktop\eset oline scann.txt
2017-10-01 12:08 - 2017-10-01 12:08 - 002870984 _____ (ESET) C:\Users\Admin\Desktop\esetsmartinstaller_fra.exe
2017-10-01 12:05 - 2017-10-01 12:05 - 000002421 _____ C:\Users\Admin\Desktop\JRT.txt
2017-10-01 12:01 - 2017-10-01 12:01 - 001790024 _____ (Malwarebytes) C:\Users\Admin\Desktop\JRT.exe
2017-10-01 11:47 - 2017-10-01 11:51 - 000002532 _____ C:\Users\Admin\Desktop\Rkill.txt
2017-10-01 11:46 - 2017-10-01 11:46 - 001780224 _____ (Bleeping Computer, LLC) C:\Users\Admin\Desktop\rkill-unsigned.exe
2017-09-30 18:22 - 2017-10-01 19:05 - 000000000 ____D C:\Users\Admin\AppData\Local\ZHP
2017-09-30 17:53 - 2017-09-30 17:53 - 002896256 _____ C:\Users\Admin\Desktop\ZHPDiag3.exe
2017-09-30 12:52 - 2017-10-01 19:29 - 000000000 ____D C:\Program Files\ESET
2017-09-30 12:52 - 2017-09-30 12:52 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ESET
2017-09-30 12:52 - 2017-09-30 12:52 - 000000000 ____D C:\ProgramData\ESET
2017-09-30 12:36 - 2017-09-30 12:36 - 000763520 _____ (ESET) C:\Users\Admin\Desktop\ESETUninstaller_2.exe
2017-09-30 12:35 - 2017-09-30 12:35 - 000763520 _____ (ESET) C:\Users\Admin\Desktop\ESETUninstaller.exe
2017-09-30 12:16 - 2017-09-30 12:17 - 008757888 _____ (ESET) C:\Users\Admin\Desktop\avremover_nt32_enu.exe
2017-09-30 11:20 - 2017-09-30 11:20 - 000003400 _____ C:\Users\Admin\Desktop\kk.txt
2017-09-30 10:43 - 2017-09-30 10:45 - 071089112 _____ (Malwarebytes ) C:\Users\Admin\Downloads\mb3-setup-consumer-3.2.2.2029-1.0.207-1.0.2899.exe
2017-09-29 20:47 - 2017-09-29 20:47 - 000063477 _____ C:\Users\Admin\Downloads\Pro.Evolution.Soccer.2018-CPY.torrent
2017-09-28 18:08 - 2017-09-28 18:08 - 000001004 _____ C:\Users\Admin\Desktop\Modem OT-X080C.lnk
2017-09-28 18:08 - 2017-09-28 18:08 - 000000000 ____D C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Modem OT-X080C
2017-09-28 18:08 - 2017-09-28 18:08 - 000000000 ____D C:\Users\Admin\AppData\Roaming\Dialer
2017-09-28 18:08 - 2017-09-28 18:08 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Modem OT-X080C
2017-09-28 18:07 - 2017-09-28 18:08 - 000000000 ____D C:\Program Files\Modem OT-X080C
2017-09-27 20:31 - 2017-09-27 20:32 - 000000000 ____D C:\Users\Admin\Desktop\Nouveau dossier (2)
2017-09-27 19:37 - 2017-09-27 19:37 - 000367318 _____ C:\Users\Admin\Downloads\tv_channels_hichamcccaqs656.m3u
2017-09-27 19:36 - 2017-09-27 19:36 - 000371022 _____ C:\Users\Admin\Downloads\tv_channels_hichamcccam78888 (1).m3u
2017-09-27 19:33 - 2017-09-27 19:33 - 000745045 _____ C:\Users\Admin\Downloads\tv_channels_Hichamcccccam_plus (1).m3u
2017-09-27 19:33 - 2017-09-27 19:33 - 000374726 _____ C:\Users\Admin\Downloads\tv_channels_hichamcccam222366 (1).m3u
2017-09-27 18:51 - 2017-09-27 18:51 - 000400654 _____ C:\Users\Admin\Downloads\tv_channels_rachidfrance454578.m3u
2017-09-26 21:00 - 2017-09-26 21:00 - 000180488 _____ (Sysinternals) C:\Windows\PSEXESVC.EXE
2017-09-26 18:42 - 2017-09-26 18:42 - 000371020 _____ C:\Users\Admin\Downloads\tv_channels_hichamcccam78888.m3u
2017-09-26 11:25 - 2017-09-26 11:25 - 000474299 _____ ( ) C:\Users\Admin\Downloads\Hd_Server_Setting_V1_2_Rar.exe
2017-09-21 13:12 - 2017-09-21 13:12 - 000096860 _____ C:\Users\Admin\Downloads\xbmc_7070_channel_list__gx_hd_databasev1.00_1.sdx
2017-09-20 11:36 - 2010-12-27 19:22 - 000206976 _____ (QUALCOMM Incorporated) C:\Windows\system32\Drivers\evusbvoc.sys
2017-09-20 11:36 - 2010-12-27 19:22 - 000206976 _____ (QUALCOMM Incorporated) C:\Windows\system32\Drivers\evusbmdm.sys
2017-09-20 11:36 - 2010-12-27 19:22 - 000206976 _____ (QUALCOMM Incorporated) C:\Windows\system32\Drivers\evusbdiag.sys
2017-09-20 11:36 - 2010-12-27 19:22 - 000206976 _____ (QUALCOMM Incorporated) C:\Windows\system32\Drivers\evusbat.sys
2017-09-19 11:16 - 2017-09-19 11:16 - 000032594 _____ C:\Users\Admin\Downloads\Non confirmé 784017.crdownload
2017-09-19 11:16 - 2017-09-19 11:16 - 000032594 _____ C:\Users\Admin\Downloads\Non confirmé 519538.crdownload
2017-09-19 11:16 - 2017-09-19 11:16 - 000032594 _____ C:\Users\Admin\Downloads\Non confirmé 238438.crdownload
2017-09-19 11:11 - 2017-09-19 11:11 - 000032594 _____ C:\Users\Admin\Downloads\Non confirmé 895107.crdownload
2017-09-19 11:10 - 2017-09-19 11:10 - 000032594 _____ C:\Users\Admin\Downloads\Non confirmé 488573.crdownload
2017-09-19 11:10 - 2017-09-19 11:10 - 000032594 _____ C:\Users\Admin\Downloads\Non confirmé 230820.crdownload
2017-09-19 11:09 - 2017-09-19 11:09 - 000032594 _____ C:\Users\Admin\Downloads\Non confirmé 40596.crdownload
2017-09-19 11:08 - 2017-09-19 11:08 - 000032594 _____ C:\Users\Admin\Downloads\Non confirmé 398312.crdownload
2017-09-18 17:59 - 2017-09-18 17:59 - 001498733 _____ C:\Users\Admin\Downloads\Windows Loader v2.1.5. by DAZ.rar
2017-09-18 13:55 - 2017-09-18 13:55 - 000488373 _____ ( ) C:\Users\Admin\Downloads\Windows_7_Loader_By_Daz_Full_Activator_v2.2.2_Download.exe
2017-09-16 18:27 - 2017-09-16 18:27 - 000032594 _____ C:\Users\Admin\Downloads\Non confirmé 766761.crdownload
2017-09-16 18:27 - 2017-09-16 18:27 - 000032594 _____ C:\Users\Admin\Downloads\Non confirmé 36844.crdownload
2017-09-16 18:27 - 2017-09-16 18:27 - 000032594 _____ C:\Users\Admin\Downloads\Non confirmé 158660.crdownload
2017-09-16 18:25 - 2017-09-16 18:25 - 000032594 _____ C:\Users\Admin\Downloads\Non confirmé 865224.crdownload
2017-09-16 18:25 - 2017-09-16 18:25 - 000032594 _____ C:\Users\Admin\Downloads\Non confirmé 731162.crdownload
2017-09-16 18:25 - 2017-09-16 18:25 - 000032594 _____ C:\Users\Admin\Downloads\Non confirmé 498989.crdownload
2017-09-16 18:25 - 2017-09-16 18:25 - 000032594 _____ C:\Users\Admin\Downloads\Non confirmé 35878.crdownload
2017-09-16 12:48 - 2017-09-16 12:48 - 000344096 _____ C:\Users\Admin\Downloads\DB-v4 150917.SERVICE
2017-09-13 21:07 - 2017-09-13 21:07 - 000437709 _____ C:\Users\Admin\Downloads\tv_channels_hichamcccam45413.m3u
2017-09-12 19:25 - 2017-10-01 18:52 - 000000697 _____ C:\Users\Admin\Desktop\Nouveau document texte.txt
2017-09-12 19:19 - 2017-09-12 19:19 - 000509711 _____ C:\Users\Admin\Downloads\tv_channels_hichamcccam222366.m3u
2017-09-12 18:03 - 2017-09-12 18:03 - 000474606 _____ C:\Users\Admin\Downloads\tv_channels_b7QVQKaUj5.m3u
2017-09-09 17:33 - 2017-09-09 17:33 - 000991821 _____ C:\Users\Admin\Downloads\tv_channels_Hichamcccccam_plus.m3u
2017-09-07 19:22 - 2017-09-07 19:22 - 000071334 _____ C:\Users\Admin\Downloads\DpFileListGeneratorv1.6byBarisDLC3.0.zip
2017-09-07 19:09 - 2017-09-07 19:12 - 005295839 _____ C:\Users\Admin\Downloads\EDIT00000000
2017-09-07 17:40 - 2017-09-07 17:40 - 000091544 _____ C:\Users\Admin\Downloads\liste-canaux-Femto-Grande-Pro26042017 (1).sdx
2017-09-07 16:49 - 2017-09-07 16:49 - 045389684 _____ C:\Users\Admin\Downloads\Updated Players Faces (1).rar
2017-09-07 12:32 - 2017-09-07 12:34 - 066390755 _____ C:\Users\Admin\Downloads\PES_Professionals_Patch_2017_V3.4.rar
2017-09-07 12:24 - 2017-09-07 12:24 - 000000384 _____ C:\Users\Admin\Downloads\tv_channels_cediide00sksokod2.m3u
2017-09-06 17:47 - 2017-09-06 17:47 - 006737488 _____ C:\Users\Admin\Downloads\2531.cpk
2017-09-06 17:37 - 2017-09-06 17:41 - 124537151 _____ C:\Users\Admin\Downloads\PES_Professionals_Patch_2017_V3.2.rar
2017-09-04 22:07 - 2017-09-04 22:07 - 000344096 _____ C:\Users\Admin\Downloads\liste-canaux-tornado-v4-mini-05072017.SERVICE
2017-09-04 20:35 - 2017-09-04 20:35 - 000022569 _____ C:\Users\Admin\Downloads\PESProfessionalsPatch2017V3.1.torrent
==================== Un mois - Modifiés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2017-10-01 20:02 - 2015-05-03 00:25 - 000000000 ____D C:\Users\Admin\AppData\Roaming\uTorrent
2017-10-01 19:58 - 2015-04-30 10:14 - 000000000 ____D C:\Users\Admin\AppData\Roaming\Skype
2017-10-01 19:57 - 2013-12-18 00:11 - 000000600 _____ C:\Users\Admin\AppData\Roaming\winscp.rnd
2017-10-01 19:43 - 2013-12-18 03:14 - 000001078 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1076428414-641238508-383798790-1000UA.job
2017-10-01 19:41 - 2009-07-14 05:34 - 000028240 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2017-10-01 19:41 - 2009-07-14 05:34 - 000028240 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2017-10-01 19:32 - 2017-02-13 18:04 - 000000000 ____D C:\Users\Admin\AppData\Local\CrashDumps
2017-10-01 19:31 - 2017-07-25 09:30 - 000000000 ____D C:\Users\Admin\AppData\LocalLow\uTorrent
2017-10-01 19:30 - 2015-05-08 17:03 - 000000000 ____D C:\Program Files\Steam
2017-10-01 19:30 - 2009-07-14 05:53 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2017-10-01 19:23 - 2017-02-06 21:29 - 000000000 ____D C:\Users\Admin\AppData\Roaming\DMCache
2017-10-01 19:22 - 2015-08-09 01:57 - 000000000 ____D C:\Users\Admin\AppData\Roaming\ZHP
2017-10-01 19:22 - 2013-06-10 17:02 - 000000000 ____D C:\Users\Admin\AppData\Local\Google
2017-10-01 19:22 - 2013-06-10 16:58 - 000001018 _____ C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2017-10-01 18:41 - 2013-06-11 00:50 - 007020312 _____ C:\Windows\system32\perfh00C.dat
2017-10-01 18:41 - 2013-06-11 00:50 - 006051916 _____ C:\Windows\system32\perfc00C.dat
2017-10-01 18:41 - 2013-06-10 17:02 - 000006412 _____ C:\Windows\system32\PerfStringBackup.INI
2017-10-01 15:37 - 2013-12-17 23:57 - 000000000 ____D C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TeVii
2017-10-01 15:37 - 2013-12-17 23:56 - 000000000 ____D C:\myTeVii
2017-10-01 15:24 - 2015-11-28 17:48 - 000000000 ____D C:\Users\Admin\AppData\Roaming\vlc
2017-09-30 20:44 - 2013-12-18 03:14 - 000001026 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1076428414-641238508-383798790-1000Core.job
2017-09-30 12:53 - 2009-07-14 03:37 - 000000000 ____D C:\Windows\inf
2017-09-30 11:34 - 2009-07-14 03:37 - 000000000 ____D C:\Windows\system32\NDF
2017-09-30 11:10 - 2015-03-25 00:09 - 000000000 ____D C:\Program Files\MyLanViewer
2017-09-29 19:36 - 2017-02-15 19:56 - 000106496 _____ C:\Users\Admin\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2017-09-27 18:47 - 2017-02-18 14:54 - 000232759 _____ C:\Users\Admin\Desktop\tv_channels_hichamcccam4s5.m3u
2017-09-27 16:45 - 2015-04-30 10:14 - 000000000 ____D C:\Users\Admin\AppData\Roaming\IDM
2017-09-27 11:46 - 2013-12-18 17:31 - 000000000 ____D C:\Windows\Minidump
2017-09-27 11:46 - 2009-07-14 03:37 - 000000000 ____D C:\Windows\ModemLogs
2017-09-27 11:38 - 2016-11-27 13:30 - 000000000 ____D C:\Users\Admin\AppData\Local\ElevatedDiagnostics
2017-09-26 13:23 - 2016-11-20 17:46 - 000000000 ____D C:\Users\Admin\AppData\LocalLow\Mozilla
2017-09-26 11:31 - 2017-04-11 19:31 - 000000000 ____D C:\Program Files\Mozilla Firefox
2017-09-26 10:02 - 2014-10-08 22:35 - 000002339 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2017-09-24 20:04 - 2015-10-22 12:03 - 000000000 ____D C:\ProgramData\DatacardService
2017-09-16 13:44 - 2016-09-17 13:35 - 000000000 ____D C:\Users\Admin\AppData\Roaming\AIMP
2017-09-12 10:10 - 2009-07-14 05:53 - 000032496 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2017-09-11 20:18 - 2013-12-18 14:47 - 000000000 ____D C:\Users\Admin\Downloads\Video
2017-09-07 19:12 - 2016-01-20 19:16 - 000000000 ____D C:\Users\Admin\Documents\MEGAsync Downloads
2017-09-07 18:14 - 2017-05-19 12:27 - 000000213 _____ C:\Users\Admin\Desktop\criiii.txt
2017-09-06 17:41 - 2013-12-20 16:09 - 000000000 ____D C:\Users\Admin\Documents\KONAMI
==================== Fichiers à la racine de certains dossiers =======
2016-09-26 10:27 - 2016-09-26 10:27 - 000007887 _____ () C:\Users\Admin\AppData\Roaming\pcouffin.cat
2016-09-26 10:27 - 2016-09-26 10:27 - 000001144 _____ () C:\Users\Admin\AppData\Roaming\pcouffin.inf
2016-09-26 10:27 - 2016-09-26 10:27 - 000000055 _____ () C:\Users\Admin\AppData\Roaming\pcouffin.log
2016-09-26 10:27 - 2016-09-26 10:27 - 000047360 _____ (VSO Software) C:\Users\Admin\AppData\Roaming\pcouffin.sys
2013-12-18 00:11 - 2017-10-01 19:57 - 000000600 _____ () C:\Users\Admin\AppData\Roaming\winscp.rnd
2017-02-15 19:56 - 2017-09-29 19:36 - 000106496 _____ () C:\Users\Admin\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2016-11-24 11:13 - 2017-08-18 10:01 - 000000600 _____ () C:\Users\Admin\AppData\Local\PUTTY.RND
2017-05-06 15:05 - 2017-05-06 15:19 - 000000187 _____ () C:\Users\Admin\AppData\Local\uts.ini
2017-10-01 19:31 - 2017-10-01 19:31 - 000000000 ____H () C:\ProgramData\cm-lock
Certains fichiers dans TEMP:
====================
2017-09-30 10:46 - 2017-09-30 10:45 - 071089112 _____ (Malwarebytes ) C:\Users\Admin\AppData\Local\Temp\mb3-setup-consumer-3.2.2.2029-1.0.207-1.0.2899.exe
2017-09-28 09:53 - 2017-09-28 09:53 - 000001536 _____ () C:\Users\Admin\AppData\Local\Temp\NEventMessages.dll
2017-09-28 09:53 - 2017-09-28 09:53 - 000001536 _____ () C:\Users\Admin\AppData\Local\Temp\NOSEventMessages.dll
==================== Bamital & volsnap ======================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
C:\Windows\explorer.exe => Le fichier est signé numériquement
C:\Windows\system32\winlogon.exe => Le fichier est signé numériquement
C:\Windows\system32\wininit.exe => Le fichier est signé numériquement
C:\Windows\system32\svchost.exe => Le fichier est signé numériquement
C:\Windows\system32\services.exe => Le fichier est signé numériquement
C:\Windows\system32\User32.dll => Le fichier est signé numériquement
C:\Windows\system32\userinit.exe => Le fichier est signé numériquement
C:\Windows\system32\rpcss.dll => Le fichier est signé numériquement
C:\Windows\system32\dnsapi.dll => Le fichier est signé numériquement
C:\Windows\system32\Drivers\volsnap.sys => Le fichier est signé numériquement
LastRegBack: 2017-09-21 11:21
==================== Fin de FRST.txt ============================