Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 14-10-2017
Exécuté par didi (administrateur) sur DIDIJ (15-10-2017 00:31:12)
Exécuté depuis C:\Users\didi\Desktop
Profils chargés: didi (Profils disponibles: didi)
Platform: Windows 8.1 Pro (Update) (X64) Langue: Français (France)
Internet Explorer Version 11 (Navigateur par défaut: Chrome)
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(ESET) C:\Program Files\ESET\ESET Smart Security\ekrn.exe
(Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
() C:\Program Files\Gramblr\gramblr.exe
(TechSmith Corporation) C:\Program Files (x86)\Common Files\TechSmith Shared\Uploader\UploaderService.exe
(Malwarebytes) C:\Program Files(x86)\Malwarebytes\Anti-Malware\MBAMService.exe
(ESET) C:\Program Files\ESET\ESET Smart Security\egui.exe
(Malwarebytes) C:\Program Files(x86)\Malwarebytes\Anti-Malware\mbamtray.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20911_x64__8wekyb3d8bbwe\livecomm.exe
(Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
(Sonix) C:\Windows\vsnp2std.exe
(Tonec Inc.) C:\Program Files (x86)\Internet Download Manager\IDMan.exe
(TechSmith Corporation) C:\Program Files (x86)\TechSmith\Snagit 13\Snagit32.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(TechSmith Corporation) C:\Program Files (x86)\TechSmith\Snagit 13\SnagPriv.exe
(Tonec Inc.) C:\Program Files (x86)\Internet Download Manager\IEMonitor.exe
(TechSmith Corporation) C:\Program Files (x86)\TechSmith\Snagit 13\SnagitEditor.exe
(IObit) C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallMonitor.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe
(Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.3.9600.18384_none_fa1d93c39b41b41a\TiWorker.exe
==================== Registre (Avec liste blanche) ===========================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [Malwarebytes TrayApp] => C:\PROGRAM FILES(X86)\MALWAREBYTES\ANTI-MALWARE\mbamtray.exe [3146704 2017-05-09] (Malwarebytes)
HKLM\...\Run: [snp2std] => C:\Windows\vsnp2std.exe [675840 2007-08-07] (Sonix)
HKU\S-1-5-21-2029722829-1987248696-2546133353-1001\...\Run: [IDMan] => C:\Program Files (x86)\Internet Download Manager\IDMan.exe [3985464 2016-11-11] (Tonec Inc.)
HKU\S-1-5-21-2029722829-1987248696-2546133353-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [9105112 2016-11-15] (Piriform Ltd)
HKU\S-1-5-21-2029722829-1987248696-2546133353-1001\...\MountPoints2: {9bc42231-8a59-11e7-82b0-0025648f3f3f} - "E:\Setup.exe" /s
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Snagit 13.lnk [2016-12-01]
ShortcutTarget: Snagit 13.lnk -> C:\Program Files (x86)\TechSmith\Snagit 13\Snagit32.exe (TechSmith Corporation)
GroupPolicy: Restriction <==== ATTENTION
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Hosts: Il y a plus d'un élément dans hosts. Voir la section Hosts de Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{988D7496-1648-4A90-8BAF-E8A2B4C65EF5}: [DhcpNameServer] 192.168.1.1
Internet Explorer:
==================
HKU\S-1-5-21-2029722829-1987248696-2546133353-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://google.fr/
BHO: IDM integration (IDMIEHlprObj Class) -> {0055C089-8582-441B-A0BF-17B458C2A3A8} -> C:\Program Files (x86)\Internet Download Manager\IDMIECC64.dll [2016-11-09] (Internet Download Manager, Tonec Inc.)
BHO: ExplorerWnd Helper -> {10921475-03CE-4E04-90CE-E2E7EF20C814} -> C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallExplorer.dll [2017-05-22] (IObit)
BHO-x32: IDM integration (IDMIEHlprObj Class) -> {0055C089-8582-441B-A0BF-17B458C2A3A8} -> C:\Program Files (x86)\Internet Download Manager\IDMIECC.dll [2016-11-09] (Internet Download Manager, Tonec Inc.)
FireFox:
========
FF DefaultProfile: 70xjsxwp.default-1499110468677
FF ProfilePath: C:\Users\didi\AppData\Roaming\Mozilla\Firefox\Profiles\70xjsxwp.default-1499110468677 [2017-10-14]
FF Homepage: Mozilla\Firefox\Profiles\70xjsxwp.default-1499110468677 -> hxxps://www.google.fr/
FF ProfilePath: C:\Users\didi\AppData\Roaming\Mozilla\Firefox\Profiles\2c5to3zf.default-1499110468677-1499126325337 [2017-10-12]
FF HKU\S-1-5-21-2029722829-1987248696-2546133353-1001\...\Firefox\Extensions: [mozilla_cc2@internetdownloadmanager.com] - C:\Program Files (x86)\Internet Download Manager\idmmzcc2.xpi
FF Extension: (IDM integration) - C:\Program Files (x86)\Internet Download Manager\idmmzcc2.xpi [2016-11-16]
FF HKU\S-1-5-21-2029722829-1987248696-2546133353-1001\...\SeaMonkey\Extensions: [mozilla_cc@internetdownloadmanager.com] - C:\Users\didi\AppData\Roaming\IDM\idmmzcc5
FF Extension: (IDM CC) - C:\Users\didi\AppData\Roaming\IDM\idmmzcc5 [2017-10-15] [non signé]
FF HKU\S-1-5-21-2029722829-1987248696-2546133353-1001\...\SeaMonkey\Extensions: [mozilla_cc2@internetdownloadmanager.com] - C:\Program Files (x86)\Internet Download Manager\idmmzcc2.xpi
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_27_0_0_159.dll [2017-10-10] ()
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_27_0_0_159.dll [2017-10-10] ()
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-28] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-28] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN)
Chrome:
=======
CHR Profile: C:\Users\didi\AppData\Local\Google\Chrome\User Data\Default [2017-10-15]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\didi\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-10-15]
CHR Extension: (Chrome Media Router) - C:\Users\didi\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-10-15]
CHR HKLM\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files (x86)\Internet Download Manager\IDMGCExt.crx [2016-11-16]
Opera:
=======
StartMenuInternet: (HKLM) OperaStable - C:\Program Files\Opera\Launcher.exe
==================== Services (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2257016 2017-08-23] (Adobe Systems, Incorporated)
R2 ekrn; C:\Program Files\ESET\ESET Smart Security\ekrn.exe [2625368 2017-06-13] (ESET)
R2 gramblrclient; C:\Program Files\Gramblr\gramblr.exe [11751504 2017-10-12] () [Fichier non signé]
R2 MBAMService; C:\Program Files(x86)\Malwarebytes\Anti-Malware\mbamservice.exe [4470736 2017-05-09] (Malwarebytes)
R2 TechSmith Uploader Service; C:\Program Files (x86)\Common Files\TechSmith Shared\Uploader\UploaderService.exe [3661096 2015-09-14] (TechSmith Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [361824 2017-01-12] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [119872 2017-01-12] (Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ======================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 dg_ssudbus; C:\Windows\system32\DRIVERS\ssudbus.sys [131984 2017-05-18] (Samsung Electronics Co., Ltd.)
R1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [132824 2017-06-22] (ESET)
R0 edevmon; C:\Windows\System32\DRIVERS\edevmon.sys [107344 2017-05-04] (ESET)
S0 eelam; C:\Windows\System32\DRIVERS\eelam.sys [14880 2017-05-04] (ESET)
R1 ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [178056 2017-05-04] (ESET)
R2 ekbdflt; C:\Windows\system32\DRIVERS\ekbdflt.sys [50752 2017-05-04] (ESET)
R1 epfw; C:\Windows\system32\DRIVERS\epfw.sys [78192 2017-05-04] (ESET)
R1 epfwwfp; C:\Windows\system32\DRIVERS\epfwwfp.sys [101648 2017-05-04] (ESET)
R3 IUFileFilter; C:\Program Files (x86)\IObit\IObit Uninstaller\drivers\win7_amd64\IUFileFilter.sys [21928 2017-06-06] (IObit.com)
R3 IURegProcessFilter; C:\Program Files (x86)\IObit\IObit Uninstaller\drivers\win7_amd64\IURegProcessFilter.sys [27048 2017-06-13] (IObit.com)
R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [253856 2017-10-15] (Malwarebytes)
S3 SNP2STD; C:\Windows\system32\DRIVERS\snp2sxp.sys [12379136 2008-02-13] ()
S3 ssudmdm; C:\Windows\system32\DRIVERS\ssudmdm.sys [166288 2017-05-18] (Samsung Electronics Co., Ltd.)
U5 VWiFiFlt; C:\Windows\System32\Drivers\VWiFiFlt.sys [71680 2016-08-13] (Microsoft Corporation)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [46600 2017-02-10] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [274776 2017-01-12] (Microsoft Corporation)
S3 wdm_usb; C:\Windows\system32\DRIVERS\usb2ser.sys [159936 2016-08-16] (MBB)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [117592 2017-01-12] (Microsoft Corporation)
S3 UsblgwmAtc; \SystemRoot\system32\DRIVERS\lgwusb64ser02.sys [X]
S3 UsblgwmDiag; \SystemRoot\system32\DRIVERS\lgwusb64ser01.sys [X]
S3 USBlgwmModem; \SystemRoot\system32\DRIVERS\lgwusb64modem.sys [X]
S3 usblgwubus; \SystemRoot\System32\drivers\lgwusb64bus.sys [X]
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois - Créés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2017-10-15 00:31 - 2017-10-15 00:32 - 000011227 _____ C:\Users\didi\Desktop\FRST.txt
2017-10-15 00:30 - 2017-10-15 00:31 - 000000000 ____D C:\FRST
2017-10-15 00:20 - 2017-10-15 00:20 - 002402304 _____ (Farbar) C:\Users\didi\Desktop\FRST64.exe
2017-10-15 00:12 - 2017-10-15 00:12 - 000005605 _____ C:\Users\didi\Desktop\ZHPCleaner.txt
2017-10-15 00:07 - 2017-10-15 00:07 - 000005533 _____ C:\Users\didi\Desktop\ZHPCleaner1.txt
2017-10-15 00:01 - 2017-10-15 00:27 - 000000000 ____D C:\Users\didi\AppData\Roaming\ZHP
2017-10-14 21:22 - 2017-10-14 21:22 - 000000000 ____D C:\Users\didi\AppData\Roaming\ESET
2017-10-14 20:45 - 2017-10-14 20:48 - 000000000 ____D C:\AdwCleaner
2017-10-14 12:02 - 2017-10-15 00:01 - 000000000 ____D C:\Users\didi\AppData\Local\ZHP
2017-10-14 09:54 - 2017-10-14 09:54 - 000000000 ____D C:\Users\didi\AppData\Roaming\MAGIX Computer Products Intl. Co
2017-10-14 09:51 - 2017-10-14 09:52 - 000000000 ____D C:\Users\didi\AppData\Roaming\MAGIX
2017-10-14 09:51 - 2017-10-14 09:51 - 000000000 ____D C:\Users\didi\AppData\Roaming\Publish Providers
2017-10-14 09:51 - 2017-10-14 09:51 - 000000000 ____D C:\ProgramData\VEGAS Pro
2017-10-14 09:51 - 2017-10-14 09:51 - 000000000 ____D C:\ProgramData\MAGIX
2017-10-12 23:59 - 2017-10-15 00:23 - 000000000 ____D C:\Users\didi\AppData\Roaming\DMCache
2017-10-12 11:15 - 2017-10-12 11:15 - 000000000 ____D C:\Users\didi\AppData\Roaming\Google
2017-10-12 11:00 - 2017-10-12 11:00 - 000404482 _____ (Jonas John ) C:\Users\didi\Documents\red-v2.2-setup.exe
2017-10-12 09:50 - 2017-10-12 10:56 - 000056926 _____ C:\Users\didi\Documents\Duplicate Cleaner log.txt
2017-10-12 06:45 - 2015-07-30 15:04 - 000124624 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2017-10-12 06:45 - 2015-07-30 14:48 - 000103120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2017-10-11 22:37 - 2014-06-09 23:13 - 000035480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TsWpfWrp.exe
2017-10-11 22:37 - 2014-06-09 23:13 - 000035480 _____ (Microsoft Corporation) C:\Windows\system32\TsWpfWrp.exe
2017-10-11 20:09 - 2017-10-12 09:15 - 000054376 _____ C:\Users\didi\Documents\kharja.veg
2017-10-11 20:09 - 2017-10-12 06:24 - 000052016 _____ C:\Users\didi\Documents\kharja.veg.bak
2017-10-11 12:34 - 2017-10-11 12:34 - 000001187 _____ C:\Users\didi\Desktop\Kastor Free Video Converter.lnk
2017-10-11 12:34 - 2017-10-11 12:34 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kastor Free Video Converter
2017-10-11 12:34 - 2017-10-11 12:34 - 000000000 ____D C:\Program Files (x86)\Kastor Free Video Converter
2017-10-11 12:13 - 2017-10-14 09:51 - 000000000 ____D C:\Users\didi\Documents\video
2017-10-11 12:12 - 2017-10-12 11:07 - 000000000 ____D C:\Users\didi\AppData\Roaming\KastorVideoConverter
2017-10-11 12:01 - 2017-10-12 11:07 - 000000000 ____D C:\Users\didi\AppData\Roaming\KastorAllVideoDownloader
2017-10-11 11:47 - 2017-10-11 11:47 - 126925120 ____C (Microsoft Corporation) C:\Windows\system32\MRT-KB890830.exe
2017-10-11 11:38 - 2017-10-11 11:38 - 000000000 ____D C:\Program Files (x86)\Reference Assemblies
2017-10-11 11:38 - 2017-10-11 11:38 - 000000000 ____D C:\Program Files (x86)\MSBuild
2017-10-11 11:37 - 2017-10-11 11:37 - 000000000 ____D C:\Windows\SysWOW64\XPSViewer
2017-10-11 11:37 - 2017-10-11 11:37 - 000000000 ____D C:\Program Files\Reference Assemblies
2017-10-11 11:37 - 2017-10-11 11:37 - 000000000 ____D C:\Program Files\MSBuild
2017-10-11 11:34 - 2013-08-03 05:48 - 001166520 _____ (Microsoft Corporation) C:\Windows\system32\PresentationNative_v0300.dll
2017-10-11 11:34 - 2013-08-03 05:41 - 000778936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationNative_v0300.dll
2017-10-11 11:32 - 2017-09-07 22:08 - 025729536 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2017-10-11 11:31 - 2017-09-14 20:30 - 007439704 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2017-10-11 11:31 - 2017-09-14 20:30 - 001737600 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2017-10-11 11:31 - 2017-09-14 20:29 - 001502000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2017-10-11 11:31 - 2017-09-14 02:18 - 001384216 _____ (Microsoft Corporation) C:\Windows\system32\msctf.dll
2017-10-11 11:31 - 2017-09-14 02:14 - 001124384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msctf.dll
2017-10-11 11:31 - 2017-09-13 14:32 - 000445952 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\nwifi.sys
2017-10-11 11:31 - 2017-09-13 14:31 - 000445952 _____ (Microsoft Corporation) C:\Windows\system32\wlansec.dll
2017-10-11 11:31 - 2017-09-13 14:27 - 000384000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlansec.dll
2017-10-11 11:31 - 2017-09-09 19:53 - 022361864 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2017-10-11 11:31 - 2017-09-09 18:55 - 019790760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2017-10-11 11:31 - 2017-09-09 18:38 - 000154112 _____ (Microsoft Corporation) C:\Windows\system32\TabSvc.dll
2017-10-11 11:31 - 2017-09-09 17:10 - 003631616 _____ (Microsoft Corporation) C:\Windows\system32\tquery.dll
2017-10-11 11:31 - 2017-09-09 16:49 - 002749952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tquery.dll
2017-10-11 11:31 - 2017-09-09 16:47 - 014466560 _____ (Microsoft Corporation) C:\Windows\system32\twinui.dll
2017-10-11 11:31 - 2017-09-09 16:21 - 012879360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.dll
2017-10-11 11:31 - 2017-09-09 14:13 - 000640512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mswstr10.dll
2017-10-11 11:31 - 2017-09-09 14:13 - 000345088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msexcl40.dll
2017-10-11 11:31 - 2017-09-09 14:13 - 000008704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msjint40.dll
2017-10-11 11:31 - 2017-09-09 04:50 - 002013016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2017-10-11 11:31 - 2017-09-09 04:50 - 001364552 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2017-10-11 11:31 - 2017-09-08 19:21 - 004168192 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2017-10-11 11:31 - 2017-09-08 19:15 - 000148480 _____ (Microsoft Corporation) C:\Windows\system32\t2embed.dll
2017-10-11 11:31 - 2017-09-08 18:39 - 000113152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\t2embed.dll
2017-10-11 11:31 - 2017-09-08 17:57 - 001084928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2017-10-11 11:31 - 2017-09-07 22:33 - 000686592 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2017-10-11 11:31 - 2017-09-07 22:32 - 000243200 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2017-10-11 11:31 - 2017-09-07 22:17 - 000576512 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2017-10-11 11:31 - 2017-09-07 22:17 - 000088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2017-10-11 11:31 - 2017-09-07 22:15 - 002902528 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2017-10-11 11:31 - 2017-09-07 22:00 - 000817664 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2017-10-11 11:31 - 2017-09-07 21:40 - 005982208 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2017-10-11 11:31 - 2017-09-07 21:32 - 000092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2017-10-11 11:31 - 2017-09-07 21:31 - 000145408 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2017-10-11 11:31 - 2017-09-07 21:29 - 000315392 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2017-10-11 11:31 - 2017-09-07 21:21 - 001033216 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
2017-10-11 11:31 - 2017-09-07 21:13 - 000262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2017-10-11 11:31 - 2017-09-07 21:11 - 000380416 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2017-10-11 11:31 - 2017-09-07 21:10 - 000807936 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2017-10-11 11:31 - 2017-09-07 21:10 - 000726528 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2017-10-11 11:31 - 2017-09-07 21:08 - 002134528 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2017-10-11 11:31 - 2017-09-07 21:08 - 000656896 _____ (Microsoft Corporation) C:\Windows\system32\dnsapi.dll
2017-10-11 11:31 - 2017-09-07 20:54 - 000329216 _____ (Microsoft Corporation) C:\Windows\system32\srvsvc.dll
2017-10-11 11:31 - 2017-09-07 20:44 - 015262720 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2017-10-11 11:31 - 2017-09-07 20:40 - 003240960 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2017-10-11 11:31 - 2017-09-07 20:27 - 001548288 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2017-10-11 11:31 - 2017-09-07 20:17 - 000800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2017-10-11 11:31 - 2017-09-07 20:10 - 000499200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2017-10-11 11:31 - 2017-09-07 20:09 - 000064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2017-10-11 11:31 - 2017-09-07 20:04 - 020267008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2017-10-11 11:31 - 2017-09-07 20:03 - 002292736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2017-10-11 11:31 - 2017-09-07 19:58 - 000663040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2017-10-11 11:31 - 2017-09-07 19:39 - 000076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2017-10-11 11:31 - 2017-09-07 19:38 - 000128000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2017-10-11 11:31 - 2017-09-07 19:37 - 000279040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2017-10-11 11:31 - 2017-09-07 19:33 - 000880640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll
2017-10-11 11:31 - 2017-09-07 19:29 - 004547072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2017-10-11 11:31 - 2017-09-07 19:29 - 000230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2017-10-11 11:31 - 2017-09-07 19:27 - 000331776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2017-10-11 11:31 - 2017-09-07 19:26 - 000694784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2017-10-11 11:31 - 2017-09-07 19:25 - 002058752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2017-10-11 11:31 - 2017-09-07 19:24 - 000499200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dnsapi.dll
2017-10-11 11:31 - 2017-09-07 19:17 - 013677568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2017-10-11 11:31 - 2017-09-07 19:01 - 002767872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2017-10-11 11:31 - 2017-09-07 18:57 - 001316864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2017-10-11 11:31 - 2017-09-07 18:57 - 000710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2017-10-11 11:31 - 2017-08-13 20:48 - 000202592 _____ (Microsoft Corporation) C:\Windows\system32\basecsp.dll
2017-10-11 11:31 - 2017-08-13 18:52 - 000174944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\basecsp.dll
2017-10-11 11:31 - 2017-08-13 18:10 - 000277504 _____ (Microsoft Corporation) C:\Windows\system32\scksp.dll
2017-10-11 11:31 - 2017-08-13 17:33 - 000252416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scksp.dll
2017-10-11 11:31 - 2017-08-11 22:19 - 000482304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scrptadm.dll
2017-10-11 11:31 - 2017-08-11 22:14 - 000566784 _____ (Microsoft Corporation) C:\Windows\system32\scrptadm.dll
2017-10-11 11:31 - 2017-08-11 03:54 - 000445440 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2017-10-11 11:31 - 2017-08-11 03:22 - 000324096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll
2017-10-11 11:31 - 2017-08-11 03:20 - 001436672 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2017-10-11 11:31 - 2017-08-11 03:16 - 000275968 _____ (Microsoft Corporation) C:\Windows\system32\authz.dll
2017-10-11 11:31 - 2017-08-11 02:57 - 000180224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authz.dll
2017-10-11 11:31 - 2017-08-06 22:50 - 001080320 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
2017-10-11 11:31 - 2017-08-06 22:20 - 000542720 _____ (Microsoft Corporation) C:\Windows\system32\rasmans.dll
2017-10-11 11:31 - 2017-08-06 22:13 - 000713216 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll
2017-10-11 11:31 - 2017-08-06 08:08 - 000561664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nshwfp.dll
2017-10-11 11:31 - 2017-08-02 03:19 - 000358912 _____ (Microsoft Corporation) C:\Windows\system32\Wldap32.dll
2017-10-11 11:31 - 2017-08-01 09:25 - 000324096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Wldap32.dll
2017-10-07 17:42 - 2017-10-15 00:22 - 000000192 _____ C:\Users\didi\Desktop\Nouveau document texte (3).txt
2017-10-06 11:10 - 2017-10-06 11:19 - 000000000 ____D C:\Program Files (x86)\Google Books Downloader
2017-10-06 11:10 - 2017-10-06 11:10 - 000001117 _____ C:\Users\Public\Desktop\Google Books Downloader.lnk
2017-10-06 11:10 - 2017-10-06 11:10 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Books Downloader
2017-09-27 23:39 - 2017-09-28 02:10 - 490391222 _____ C:\Users\didi\Documents\Sans titre.MP4
2017-09-27 22:24 - 2017-09-27 23:02 - 000000000 ____D C:\Users\didi\Desktop\koter
2017-09-24 21:06 - 2017-09-24 21:08 - 104184576 _____ C:\Users\didi\Downloads\السلام عليكم البنات.mp4
2017-09-23 07:26 - 2017-10-12 10:55 - 000000000 ____D C:\Users\didi\Desktop\telephon
2017-09-16 20:43 - 2017-09-16 20:43 - 000122161 _____ C:\Users\didi\Downloads\tv_channels_dealsat.m3u
2017-09-16 20:35 - 2017-09-17 22:49 - 000000274 _____ C:\Users\didi\Desktop\iptv.txt
2017-09-16 20:18 - 2017-09-16 20:18 - 000046668 _____ C:\Users\didi\Downloads\sports1409a.m3u
2017-09-16 15:56 - 2017-09-16 15:56 - 000002074 _____ C:\Users\didi\Downloads\france1709.m3u
==================== Un mois - Modifiés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2017-10-15 00:33 - 2017-05-24 23:04 - 000000000 ____D C:\ProgramData\Gramblr
2017-10-15 00:29 - 2017-01-01 15:28 - 000000288 _____ C:\Windows\Tasks\Uninstaller_SkipUac_didi.job
2017-10-15 00:27 - 2017-05-24 21:42 - 000000000 __RDO C:\Users\didi\OneDrive
2017-10-15 00:25 - 2017-01-15 01:31 - 000253856 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2017-10-15 00:24 - 2013-08-22 15:45 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2017-10-15 00:24 - 2013-08-22 14:25 - 000262144 ___SH C:\Windows\system32\config\BBI
2017-10-14 23:51 - 2017-07-03 16:51 - 000000000 ____D C:\Users\didi\AppData\Roaming\vlc
2017-10-14 23:09 - 2017-01-01 15:28 - 000000000 ____D C:\ProgramData\ProductData
2017-10-14 21:27 - 2016-11-20 00:42 - 000003600 _____ C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2029722829-1987248696-2546133353-1001
2017-10-14 20:49 - 2017-01-01 15:27 - 000000000 ____D C:\Users\didi\AppData\Roaming\IObit
2017-10-14 11:15 - 2016-11-20 00:36 - 000000000 ____D C:\Users\didi
2017-10-14 09:51 - 2016-11-20 13:23 - 000000000 ____D C:\Users\didi\AppData\Roaming\VEGAS
2017-10-14 09:51 - 2016-11-20 13:01 - 000000000 ____D C:\Users\didi\AppData\Roaming\Sony
2017-10-13 14:14 - 2016-11-20 13:31 - 000000000 ____D C:\Users\didi\AppData\Roaming\Mozilla
2017-10-13 12:22 - 2017-06-30 12:10 - 000001022 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Navigateur Opera.lnk
2017-10-13 12:22 - 2017-04-03 21:27 - 000003854 _____ C:\Windows\System32\Tasks\Opera scheduled Autoupdate 1491251223
2017-10-13 12:22 - 2017-04-03 20:08 - 000000000 ____D C:\Program Files\Opera
2017-10-13 12:11 - 2016-11-20 02:34 - 000000000 ____D C:\Users\didi\AppData\Roaming\IDM
2017-10-13 12:10 - 2016-11-20 01:26 - 000000000 ____D C:\Users\didi\AppData\Local\ESET
2017-10-12 21:50 - 2017-05-24 23:04 - 000000000 ____D C:\Program Files\Gramblr
2017-10-12 11:08 - 2017-07-17 13:05 - 000000000 ____D C:\Users\didi\AppData\Roaming\Skype
2017-10-12 11:07 - 2017-08-10 23:12 - 000000000 ____D C:\Users\didi\AppData\Roaming\dvdcss
2017-10-12 11:07 - 2016-12-11 17:09 - 000000000 ____D C:\Users\didi\AppData\Roaming\avidemux
2017-10-12 11:07 - 2016-11-20 00:37 - 000000000 ____D C:\Users\didi\AppData\Roaming\Adobe
2017-10-12 11:07 - 2016-11-20 00:36 - 000000000 ____D C:\Users\didi\AppData\Local\VirtualStore
2017-10-12 11:06 - 2016-11-24 22:46 - 000000000 ____D C:\Users\didi\AppData\Local\Adobe
2017-10-12 11:06 - 2016-11-20 15:28 - 000000000 ____D C:\ProgramData\Adobe
2017-10-12 11:06 - 2016-11-20 00:50 - 000000000 ____D C:\Users\didi\AppData\Local\Google
2017-10-12 10:55 - 2017-09-10 22:37 - 000000000 ____D C:\Users\didi\Desktop\تلف
2017-10-12 10:55 - 2016-12-01 00:32 - 000000000 ____D C:\Users\didi\Documents\Snagit
2017-10-12 10:55 - 2016-11-20 02:34 - 000000000 ____D C:\Users\didi\Downloads\Video
2017-10-12 09:29 - 2017-07-03 16:43 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OBS Studio
2017-10-12 07:50 - 2013-08-22 16:36 - 000000000 ____D C:\Windows\rescache
2017-10-12 06:46 - 2013-08-22 16:20 - 000000000 ____D C:\Windows\CbsTemp
2017-10-11 23:44 - 2017-05-13 18:33 - 000458752 ___SH C:\Users\didi\Documents\Thumbs.db
2017-10-11 23:40 - 2016-12-01 11:00 - 000464896 ___SH C:\Users\didi\Desktop\Thumbs.db
2017-10-11 21:39 - 2013-08-22 15:44 - 000365712 _____ C:\Windows\system32\FNTCACHE.DAT
2017-10-11 20:12 - 2013-08-22 16:36 - 000000000 ___RD C:\Windows\ToastData
2017-10-11 20:12 - 2013-08-22 14:36 - 000000000 ____D C:\Windows\Inf
2017-10-11 15:48 - 2016-12-01 12:07 - 001441792 ___SH C:\Users\didi\Downloads\Thumbs.db
2017-10-11 12:14 - 2017-06-20 16:50 - 000001375 _____ C:\Users\Public\Desktop\IObit Uninstaller.lnk
2017-10-11 12:14 - 2017-01-01 15:28 - 000001387 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit Uninstaller.lnk
2017-10-11 12:14 - 2017-01-01 15:28 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit Uninstaller
2017-10-11 12:14 - 2017-01-01 15:27 - 000000000 ____D C:\ProgramData\IObit
2017-10-11 11:51 - 2016-11-24 20:00 - 000000000 ____D C:\Windows\system32\MRT
2017-10-11 11:47 - 2016-11-24 19:59 - 126925120 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2017-10-11 11:40 - 2014-11-20 19:46 - 001036864 _____ C:\Windows\system32\perfh00C.dat
2017-10-11 11:40 - 2014-11-20 19:46 - 000231666 _____ C:\Windows\system32\perfc00C.dat
2017-10-11 11:37 - 2013-08-22 16:36 - 000000000 ____D C:\Windows\SysWOW64\MUI
2017-10-11 11:37 - 2013-08-22 16:36 - 000000000 ____D C:\Windows\system32\MUI
2017-10-10 21:47 - 2016-12-11 17:18 - 000000000 ____D C:\Users\didi\AppData\Local\CrashDumps
2017-10-10 20:28 - 2016-12-31 14:44 - 000004460 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2017-10-10 20:28 - 2013-08-22 16:36 - 000000000 ____D C:\Windows\SysWOW64\Macromed
2017-10-10 20:28 - 2013-08-22 16:36 - 000000000 ____D C:\Windows\system32\Macromed
2017-10-07 10:55 - 2014-11-20 20:28 - 000004330 _____ C:\Windows\system32\PerfStringBackup.INI
2017-10-04 11:21 - 2017-05-11 08:47 - 000000000 ____D C:\Users\didi\Desktop\photo
2017-10-02 13:31 - 2016-11-20 13:31 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2017-10-02 13:31 - 2016-11-20 13:31 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2017-09-27 23:39 - 2017-08-02 22:48 - 000000564 _____ C:\Users\didi\Documents\Sans titreM01.xml
2017-09-26 08:02 - 2017-06-04 16:37 - 000002214 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2017-09-26 08:02 - 2017-06-04 16:37 - 000002202 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2017-09-25 08:43 - 2017-09-04 23:07 - 000000000 ____D C:\Users\didi\Desktop\Nouveau dossier (2)
2017-09-21 21:46 - 2017-09-04 07:00 - 000000000 ____D C:\Users\didi\Desktop\الديسك دوغ
2017-09-21 08:33 - 2013-08-22 16:36 - 000000000 ___HD C:\Program Files\WindowsApps
2017-09-21 08:33 - 2013-08-22 16:36 - 000000000 ____D C:\Windows\AppReadiness
Certains fichiers dans TEMP:
====================
2017-07-03 16:48 - 2017-07-03 16:49 - 030950664 _____ () C:\Users\didi\AppData\Local\Temp\vlc-2.2.6-win32.exe
==================== Bamital & volsnap ======================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
C:\Windows\system32\winlogon.exe => Le fichier est signé numériquement
C:\Windows\system32\wininit.exe => Le fichier est signé numériquement
C:\Windows\explorer.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\explorer.exe => Le fichier est signé numériquement
C:\Windows\system32\svchost.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\svchost.exe => Le fichier est signé numériquement
C:\Windows\system32\services.exe => Le fichier est signé numériquement
C:\Windows\system32\User32.dll => Le fichier est signé numériquement
C:\Windows\SysWOW64\User32.dll => Le fichier est signé numériquement
C:\Windows\system32\userinit.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\userinit.exe => Le fichier est signé numériquement
C:\Windows\system32\rpcss.dll => Le fichier est signé numériquement
C:\Windows\system32\dnsapi.dll => Le fichier est signé numériquement
C:\Windows\SysWOW64\dnsapi.dll => Le fichier est signé numériquement
C:\Windows\system32\Drivers\volsnap.sys => Le fichier est signé numériquement
LastRegBack: 2017-10-09 10:43
==================== Fin de FRST.txt ============================
Exécuté par didi (administrateur) sur DIDIJ (15-10-2017 00:31:12)
Exécuté depuis C:\Users\didi\Desktop
Profils chargés: didi (Profils disponibles: didi)
Platform: Windows 8.1 Pro (Update) (X64) Langue: Français (France)
Internet Explorer Version 11 (Navigateur par défaut: Chrome)
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(ESET) C:\Program Files\ESET\ESET Smart Security\ekrn.exe
(Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
() C:\Program Files\Gramblr\gramblr.exe
(TechSmith Corporation) C:\Program Files (x86)\Common Files\TechSmith Shared\Uploader\UploaderService.exe
(Malwarebytes) C:\Program Files(x86)\Malwarebytes\Anti-Malware\MBAMService.exe
(ESET) C:\Program Files\ESET\ESET Smart Security\egui.exe
(Malwarebytes) C:\Program Files(x86)\Malwarebytes\Anti-Malware\mbamtray.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20911_x64__8wekyb3d8bbwe\livecomm.exe
(Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
(Sonix) C:\Windows\vsnp2std.exe
(Tonec Inc.) C:\Program Files (x86)\Internet Download Manager\IDMan.exe
(TechSmith Corporation) C:\Program Files (x86)\TechSmith\Snagit 13\Snagit32.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(TechSmith Corporation) C:\Program Files (x86)\TechSmith\Snagit 13\SnagPriv.exe
(Tonec Inc.) C:\Program Files (x86)\Internet Download Manager\IEMonitor.exe
(TechSmith Corporation) C:\Program Files (x86)\TechSmith\Snagit 13\SnagitEditor.exe
(IObit) C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallMonitor.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe
(Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.3.9600.18384_none_fa1d93c39b41b41a\TiWorker.exe
==================== Registre (Avec liste blanche) ===========================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [Malwarebytes TrayApp] => C:\PROGRAM FILES(X86)\MALWAREBYTES\ANTI-MALWARE\mbamtray.exe [3146704 2017-05-09] (Malwarebytes)
HKLM\...\Run: [snp2std] => C:\Windows\vsnp2std.exe [675840 2007-08-07] (Sonix)
HKU\S-1-5-21-2029722829-1987248696-2546133353-1001\...\Run: [IDMan] => C:\Program Files (x86)\Internet Download Manager\IDMan.exe [3985464 2016-11-11] (Tonec Inc.)
HKU\S-1-5-21-2029722829-1987248696-2546133353-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [9105112 2016-11-15] (Piriform Ltd)
HKU\S-1-5-21-2029722829-1987248696-2546133353-1001\...\MountPoints2: {9bc42231-8a59-11e7-82b0-0025648f3f3f} - "E:\Setup.exe" /s
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Snagit 13.lnk [2016-12-01]
ShortcutTarget: Snagit 13.lnk -> C:\Program Files (x86)\TechSmith\Snagit 13\Snagit32.exe (TechSmith Corporation)
GroupPolicy: Restriction <==== ATTENTION
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Hosts: Il y a plus d'un élément dans hosts. Voir la section Hosts de Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{988D7496-1648-4A90-8BAF-E8A2B4C65EF5}: [DhcpNameServer] 192.168.1.1
Internet Explorer:
==================
HKU\S-1-5-21-2029722829-1987248696-2546133353-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://google.fr/
BHO: IDM integration (IDMIEHlprObj Class) -> {0055C089-8582-441B-A0BF-17B458C2A3A8} -> C:\Program Files (x86)\Internet Download Manager\IDMIECC64.dll [2016-11-09] (Internet Download Manager, Tonec Inc.)
BHO: ExplorerWnd Helper -> {10921475-03CE-4E04-90CE-E2E7EF20C814} -> C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallExplorer.dll [2017-05-22] (IObit)
BHO-x32: IDM integration (IDMIEHlprObj Class) -> {0055C089-8582-441B-A0BF-17B458C2A3A8} -> C:\Program Files (x86)\Internet Download Manager\IDMIECC.dll [2016-11-09] (Internet Download Manager, Tonec Inc.)
FireFox:
========
FF DefaultProfile: 70xjsxwp.default-1499110468677
FF ProfilePath: C:\Users\didi\AppData\Roaming\Mozilla\Firefox\Profiles\70xjsxwp.default-1499110468677 [2017-10-14]
FF Homepage: Mozilla\Firefox\Profiles\70xjsxwp.default-1499110468677 -> hxxps://www.google.fr/
FF ProfilePath: C:\Users\didi\AppData\Roaming\Mozilla\Firefox\Profiles\2c5to3zf.default-1499110468677-1499126325337 [2017-10-12]
FF HKU\S-1-5-21-2029722829-1987248696-2546133353-1001\...\Firefox\Extensions: [mozilla_cc2@internetdownloadmanager.com] - C:\Program Files (x86)\Internet Download Manager\idmmzcc2.xpi
FF Extension: (IDM integration) - C:\Program Files (x86)\Internet Download Manager\idmmzcc2.xpi [2016-11-16]
FF HKU\S-1-5-21-2029722829-1987248696-2546133353-1001\...\SeaMonkey\Extensions: [mozilla_cc@internetdownloadmanager.com] - C:\Users\didi\AppData\Roaming\IDM\idmmzcc5
FF Extension: (IDM CC) - C:\Users\didi\AppData\Roaming\IDM\idmmzcc5 [2017-10-15] [non signé]
FF HKU\S-1-5-21-2029722829-1987248696-2546133353-1001\...\SeaMonkey\Extensions: [mozilla_cc2@internetdownloadmanager.com] - C:\Program Files (x86)\Internet Download Manager\idmmzcc2.xpi
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_27_0_0_159.dll [2017-10-10] ()
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_27_0_0_159.dll [2017-10-10] ()
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-28] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-28] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN)
Chrome:
=======
CHR Profile: C:\Users\didi\AppData\Local\Google\Chrome\User Data\Default [2017-10-15]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\didi\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-10-15]
CHR Extension: (Chrome Media Router) - C:\Users\didi\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-10-15]
CHR HKLM\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files (x86)\Internet Download Manager\IDMGCExt.crx [2016-11-16]
Opera:
=======
StartMenuInternet: (HKLM) OperaStable - C:\Program Files\Opera\Launcher.exe
==================== Services (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2257016 2017-08-23] (Adobe Systems, Incorporated)
R2 ekrn; C:\Program Files\ESET\ESET Smart Security\ekrn.exe [2625368 2017-06-13] (ESET)
R2 gramblrclient; C:\Program Files\Gramblr\gramblr.exe [11751504 2017-10-12] () [Fichier non signé]
R2 MBAMService; C:\Program Files(x86)\Malwarebytes\Anti-Malware\mbamservice.exe [4470736 2017-05-09] (Malwarebytes)
R2 TechSmith Uploader Service; C:\Program Files (x86)\Common Files\TechSmith Shared\Uploader\UploaderService.exe [3661096 2015-09-14] (TechSmith Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [361824 2017-01-12] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [119872 2017-01-12] (Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ======================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 dg_ssudbus; C:\Windows\system32\DRIVERS\ssudbus.sys [131984 2017-05-18] (Samsung Electronics Co., Ltd.)
R1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [132824 2017-06-22] (ESET)
R0 edevmon; C:\Windows\System32\DRIVERS\edevmon.sys [107344 2017-05-04] (ESET)
S0 eelam; C:\Windows\System32\DRIVERS\eelam.sys [14880 2017-05-04] (ESET)
R1 ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [178056 2017-05-04] (ESET)
R2 ekbdflt; C:\Windows\system32\DRIVERS\ekbdflt.sys [50752 2017-05-04] (ESET)
R1 epfw; C:\Windows\system32\DRIVERS\epfw.sys [78192 2017-05-04] (ESET)
R1 epfwwfp; C:\Windows\system32\DRIVERS\epfwwfp.sys [101648 2017-05-04] (ESET)
R3 IUFileFilter; C:\Program Files (x86)\IObit\IObit Uninstaller\drivers\win7_amd64\IUFileFilter.sys [21928 2017-06-06] (IObit.com)
R3 IURegProcessFilter; C:\Program Files (x86)\IObit\IObit Uninstaller\drivers\win7_amd64\IURegProcessFilter.sys [27048 2017-06-13] (IObit.com)
R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [253856 2017-10-15] (Malwarebytes)
S3 SNP2STD; C:\Windows\system32\DRIVERS\snp2sxp.sys [12379136 2008-02-13] ()
S3 ssudmdm; C:\Windows\system32\DRIVERS\ssudmdm.sys [166288 2017-05-18] (Samsung Electronics Co., Ltd.)
U5 VWiFiFlt; C:\Windows\System32\Drivers\VWiFiFlt.sys [71680 2016-08-13] (Microsoft Corporation)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [46600 2017-02-10] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [274776 2017-01-12] (Microsoft Corporation)
S3 wdm_usb; C:\Windows\system32\DRIVERS\usb2ser.sys [159936 2016-08-16] (MBB)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [117592 2017-01-12] (Microsoft Corporation)
S3 UsblgwmAtc; \SystemRoot\system32\DRIVERS\lgwusb64ser02.sys [X]
S3 UsblgwmDiag; \SystemRoot\system32\DRIVERS\lgwusb64ser01.sys [X]
S3 USBlgwmModem; \SystemRoot\system32\DRIVERS\lgwusb64modem.sys [X]
S3 usblgwubus; \SystemRoot\System32\drivers\lgwusb64bus.sys [X]
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois - Créés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2017-10-15 00:31 - 2017-10-15 00:32 - 000011227 _____ C:\Users\didi\Desktop\FRST.txt
2017-10-15 00:30 - 2017-10-15 00:31 - 000000000 ____D C:\FRST
2017-10-15 00:20 - 2017-10-15 00:20 - 002402304 _____ (Farbar) C:\Users\didi\Desktop\FRST64.exe
2017-10-15 00:12 - 2017-10-15 00:12 - 000005605 _____ C:\Users\didi\Desktop\ZHPCleaner.txt
2017-10-15 00:07 - 2017-10-15 00:07 - 000005533 _____ C:\Users\didi\Desktop\ZHPCleaner1.txt
2017-10-15 00:01 - 2017-10-15 00:27 - 000000000 ____D C:\Users\didi\AppData\Roaming\ZHP
2017-10-14 21:22 - 2017-10-14 21:22 - 000000000 ____D C:\Users\didi\AppData\Roaming\ESET
2017-10-14 20:45 - 2017-10-14 20:48 - 000000000 ____D C:\AdwCleaner
2017-10-14 12:02 - 2017-10-15 00:01 - 000000000 ____D C:\Users\didi\AppData\Local\ZHP
2017-10-14 09:54 - 2017-10-14 09:54 - 000000000 ____D C:\Users\didi\AppData\Roaming\MAGIX Computer Products Intl. Co
2017-10-14 09:51 - 2017-10-14 09:52 - 000000000 ____D C:\Users\didi\AppData\Roaming\MAGIX
2017-10-14 09:51 - 2017-10-14 09:51 - 000000000 ____D C:\Users\didi\AppData\Roaming\Publish Providers
2017-10-14 09:51 - 2017-10-14 09:51 - 000000000 ____D C:\ProgramData\VEGAS Pro
2017-10-14 09:51 - 2017-10-14 09:51 - 000000000 ____D C:\ProgramData\MAGIX
2017-10-12 23:59 - 2017-10-15 00:23 - 000000000 ____D C:\Users\didi\AppData\Roaming\DMCache
2017-10-12 11:15 - 2017-10-12 11:15 - 000000000 ____D C:\Users\didi\AppData\Roaming\Google
2017-10-12 11:00 - 2017-10-12 11:00 - 000404482 _____ (Jonas John ) C:\Users\didi\Documents\red-v2.2-setup.exe
2017-10-12 09:50 - 2017-10-12 10:56 - 000056926 _____ C:\Users\didi\Documents\Duplicate Cleaner log.txt
2017-10-12 06:45 - 2015-07-30 15:04 - 000124624 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2017-10-12 06:45 - 2015-07-30 14:48 - 000103120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2017-10-11 22:37 - 2014-06-09 23:13 - 000035480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TsWpfWrp.exe
2017-10-11 22:37 - 2014-06-09 23:13 - 000035480 _____ (Microsoft Corporation) C:\Windows\system32\TsWpfWrp.exe
2017-10-11 20:09 - 2017-10-12 09:15 - 000054376 _____ C:\Users\didi\Documents\kharja.veg
2017-10-11 20:09 - 2017-10-12 06:24 - 000052016 _____ C:\Users\didi\Documents\kharja.veg.bak
2017-10-11 12:34 - 2017-10-11 12:34 - 000001187 _____ C:\Users\didi\Desktop\Kastor Free Video Converter.lnk
2017-10-11 12:34 - 2017-10-11 12:34 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kastor Free Video Converter
2017-10-11 12:34 - 2017-10-11 12:34 - 000000000 ____D C:\Program Files (x86)\Kastor Free Video Converter
2017-10-11 12:13 - 2017-10-14 09:51 - 000000000 ____D C:\Users\didi\Documents\video
2017-10-11 12:12 - 2017-10-12 11:07 - 000000000 ____D C:\Users\didi\AppData\Roaming\KastorVideoConverter
2017-10-11 12:01 - 2017-10-12 11:07 - 000000000 ____D C:\Users\didi\AppData\Roaming\KastorAllVideoDownloader
2017-10-11 11:47 - 2017-10-11 11:47 - 126925120 ____C (Microsoft Corporation) C:\Windows\system32\MRT-KB890830.exe
2017-10-11 11:38 - 2017-10-11 11:38 - 000000000 ____D C:\Program Files (x86)\Reference Assemblies
2017-10-11 11:38 - 2017-10-11 11:38 - 000000000 ____D C:\Program Files (x86)\MSBuild
2017-10-11 11:37 - 2017-10-11 11:37 - 000000000 ____D C:\Windows\SysWOW64\XPSViewer
2017-10-11 11:37 - 2017-10-11 11:37 - 000000000 ____D C:\Program Files\Reference Assemblies
2017-10-11 11:37 - 2017-10-11 11:37 - 000000000 ____D C:\Program Files\MSBuild
2017-10-11 11:34 - 2013-08-03 05:48 - 001166520 _____ (Microsoft Corporation) C:\Windows\system32\PresentationNative_v0300.dll
2017-10-11 11:34 - 2013-08-03 05:41 - 000778936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationNative_v0300.dll
2017-10-11 11:32 - 2017-09-07 22:08 - 025729536 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2017-10-11 11:31 - 2017-09-14 20:30 - 007439704 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2017-10-11 11:31 - 2017-09-14 20:30 - 001737600 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2017-10-11 11:31 - 2017-09-14 20:29 - 001502000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2017-10-11 11:31 - 2017-09-14 02:18 - 001384216 _____ (Microsoft Corporation) C:\Windows\system32\msctf.dll
2017-10-11 11:31 - 2017-09-14 02:14 - 001124384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msctf.dll
2017-10-11 11:31 - 2017-09-13 14:32 - 000445952 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\nwifi.sys
2017-10-11 11:31 - 2017-09-13 14:31 - 000445952 _____ (Microsoft Corporation) C:\Windows\system32\wlansec.dll
2017-10-11 11:31 - 2017-09-13 14:27 - 000384000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlansec.dll
2017-10-11 11:31 - 2017-09-09 19:53 - 022361864 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2017-10-11 11:31 - 2017-09-09 18:55 - 019790760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2017-10-11 11:31 - 2017-09-09 18:38 - 000154112 _____ (Microsoft Corporation) C:\Windows\system32\TabSvc.dll
2017-10-11 11:31 - 2017-09-09 17:10 - 003631616 _____ (Microsoft Corporation) C:\Windows\system32\tquery.dll
2017-10-11 11:31 - 2017-09-09 16:49 - 002749952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tquery.dll
2017-10-11 11:31 - 2017-09-09 16:47 - 014466560 _____ (Microsoft Corporation) C:\Windows\system32\twinui.dll
2017-10-11 11:31 - 2017-09-09 16:21 - 012879360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.dll
2017-10-11 11:31 - 2017-09-09 14:13 - 000640512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mswstr10.dll
2017-10-11 11:31 - 2017-09-09 14:13 - 000345088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msexcl40.dll
2017-10-11 11:31 - 2017-09-09 14:13 - 000008704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msjint40.dll
2017-10-11 11:31 - 2017-09-09 04:50 - 002013016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2017-10-11 11:31 - 2017-09-09 04:50 - 001364552 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2017-10-11 11:31 - 2017-09-08 19:21 - 004168192 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2017-10-11 11:31 - 2017-09-08 19:15 - 000148480 _____ (Microsoft Corporation) C:\Windows\system32\t2embed.dll
2017-10-11 11:31 - 2017-09-08 18:39 - 000113152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\t2embed.dll
2017-10-11 11:31 - 2017-09-08 17:57 - 001084928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2017-10-11 11:31 - 2017-09-07 22:33 - 000686592 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2017-10-11 11:31 - 2017-09-07 22:32 - 000243200 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2017-10-11 11:31 - 2017-09-07 22:17 - 000576512 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2017-10-11 11:31 - 2017-09-07 22:17 - 000088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2017-10-11 11:31 - 2017-09-07 22:15 - 002902528 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2017-10-11 11:31 - 2017-09-07 22:00 - 000817664 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2017-10-11 11:31 - 2017-09-07 21:40 - 005982208 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2017-10-11 11:31 - 2017-09-07 21:32 - 000092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2017-10-11 11:31 - 2017-09-07 21:31 - 000145408 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2017-10-11 11:31 - 2017-09-07 21:29 - 000315392 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2017-10-11 11:31 - 2017-09-07 21:21 - 001033216 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
2017-10-11 11:31 - 2017-09-07 21:13 - 000262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2017-10-11 11:31 - 2017-09-07 21:11 - 000380416 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2017-10-11 11:31 - 2017-09-07 21:10 - 000807936 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2017-10-11 11:31 - 2017-09-07 21:10 - 000726528 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2017-10-11 11:31 - 2017-09-07 21:08 - 002134528 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2017-10-11 11:31 - 2017-09-07 21:08 - 000656896 _____ (Microsoft Corporation) C:\Windows\system32\dnsapi.dll
2017-10-11 11:31 - 2017-09-07 20:54 - 000329216 _____ (Microsoft Corporation) C:\Windows\system32\srvsvc.dll
2017-10-11 11:31 - 2017-09-07 20:44 - 015262720 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2017-10-11 11:31 - 2017-09-07 20:40 - 003240960 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2017-10-11 11:31 - 2017-09-07 20:27 - 001548288 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2017-10-11 11:31 - 2017-09-07 20:17 - 000800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2017-10-11 11:31 - 2017-09-07 20:10 - 000499200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2017-10-11 11:31 - 2017-09-07 20:09 - 000064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2017-10-11 11:31 - 2017-09-07 20:04 - 020267008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2017-10-11 11:31 - 2017-09-07 20:03 - 002292736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2017-10-11 11:31 - 2017-09-07 19:58 - 000663040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2017-10-11 11:31 - 2017-09-07 19:39 - 000076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2017-10-11 11:31 - 2017-09-07 19:38 - 000128000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2017-10-11 11:31 - 2017-09-07 19:37 - 000279040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2017-10-11 11:31 - 2017-09-07 19:33 - 000880640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll
2017-10-11 11:31 - 2017-09-07 19:29 - 004547072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2017-10-11 11:31 - 2017-09-07 19:29 - 000230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2017-10-11 11:31 - 2017-09-07 19:27 - 000331776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2017-10-11 11:31 - 2017-09-07 19:26 - 000694784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2017-10-11 11:31 - 2017-09-07 19:25 - 002058752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2017-10-11 11:31 - 2017-09-07 19:24 - 000499200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dnsapi.dll
2017-10-11 11:31 - 2017-09-07 19:17 - 013677568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2017-10-11 11:31 - 2017-09-07 19:01 - 002767872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2017-10-11 11:31 - 2017-09-07 18:57 - 001316864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2017-10-11 11:31 - 2017-09-07 18:57 - 000710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2017-10-11 11:31 - 2017-08-13 20:48 - 000202592 _____ (Microsoft Corporation) C:\Windows\system32\basecsp.dll
2017-10-11 11:31 - 2017-08-13 18:52 - 000174944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\basecsp.dll
2017-10-11 11:31 - 2017-08-13 18:10 - 000277504 _____ (Microsoft Corporation) C:\Windows\system32\scksp.dll
2017-10-11 11:31 - 2017-08-13 17:33 - 000252416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scksp.dll
2017-10-11 11:31 - 2017-08-11 22:19 - 000482304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scrptadm.dll
2017-10-11 11:31 - 2017-08-11 22:14 - 000566784 _____ (Microsoft Corporation) C:\Windows\system32\scrptadm.dll
2017-10-11 11:31 - 2017-08-11 03:54 - 000445440 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2017-10-11 11:31 - 2017-08-11 03:22 - 000324096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll
2017-10-11 11:31 - 2017-08-11 03:20 - 001436672 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2017-10-11 11:31 - 2017-08-11 03:16 - 000275968 _____ (Microsoft Corporation) C:\Windows\system32\authz.dll
2017-10-11 11:31 - 2017-08-11 02:57 - 000180224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authz.dll
2017-10-11 11:31 - 2017-08-06 22:50 - 001080320 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
2017-10-11 11:31 - 2017-08-06 22:20 - 000542720 _____ (Microsoft Corporation) C:\Windows\system32\rasmans.dll
2017-10-11 11:31 - 2017-08-06 22:13 - 000713216 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll
2017-10-11 11:31 - 2017-08-06 08:08 - 000561664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nshwfp.dll
2017-10-11 11:31 - 2017-08-02 03:19 - 000358912 _____ (Microsoft Corporation) C:\Windows\system32\Wldap32.dll
2017-10-11 11:31 - 2017-08-01 09:25 - 000324096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Wldap32.dll
2017-10-07 17:42 - 2017-10-15 00:22 - 000000192 _____ C:\Users\didi\Desktop\Nouveau document texte (3).txt
2017-10-06 11:10 - 2017-10-06 11:19 - 000000000 ____D C:\Program Files (x86)\Google Books Downloader
2017-10-06 11:10 - 2017-10-06 11:10 - 000001117 _____ C:\Users\Public\Desktop\Google Books Downloader.lnk
2017-10-06 11:10 - 2017-10-06 11:10 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Books Downloader
2017-09-27 23:39 - 2017-09-28 02:10 - 490391222 _____ C:\Users\didi\Documents\Sans titre.MP4
2017-09-27 22:24 - 2017-09-27 23:02 - 000000000 ____D C:\Users\didi\Desktop\koter
2017-09-24 21:06 - 2017-09-24 21:08 - 104184576 _____ C:\Users\didi\Downloads\السلام عليكم البنات.mp4
2017-09-23 07:26 - 2017-10-12 10:55 - 000000000 ____D C:\Users\didi\Desktop\telephon
2017-09-16 20:43 - 2017-09-16 20:43 - 000122161 _____ C:\Users\didi\Downloads\tv_channels_dealsat.m3u
2017-09-16 20:35 - 2017-09-17 22:49 - 000000274 _____ C:\Users\didi\Desktop\iptv.txt
2017-09-16 20:18 - 2017-09-16 20:18 - 000046668 _____ C:\Users\didi\Downloads\sports1409a.m3u
2017-09-16 15:56 - 2017-09-16 15:56 - 000002074 _____ C:\Users\didi\Downloads\france1709.m3u
==================== Un mois - Modifiés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2017-10-15 00:33 - 2017-05-24 23:04 - 000000000 ____D C:\ProgramData\Gramblr
2017-10-15 00:29 - 2017-01-01 15:28 - 000000288 _____ C:\Windows\Tasks\Uninstaller_SkipUac_didi.job
2017-10-15 00:27 - 2017-05-24 21:42 - 000000000 __RDO C:\Users\didi\OneDrive
2017-10-15 00:25 - 2017-01-15 01:31 - 000253856 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2017-10-15 00:24 - 2013-08-22 15:45 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2017-10-15 00:24 - 2013-08-22 14:25 - 000262144 ___SH C:\Windows\system32\config\BBI
2017-10-14 23:51 - 2017-07-03 16:51 - 000000000 ____D C:\Users\didi\AppData\Roaming\vlc
2017-10-14 23:09 - 2017-01-01 15:28 - 000000000 ____D C:\ProgramData\ProductData
2017-10-14 21:27 - 2016-11-20 00:42 - 000003600 _____ C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2029722829-1987248696-2546133353-1001
2017-10-14 20:49 - 2017-01-01 15:27 - 000000000 ____D C:\Users\didi\AppData\Roaming\IObit
2017-10-14 11:15 - 2016-11-20 00:36 - 000000000 ____D C:\Users\didi
2017-10-14 09:51 - 2016-11-20 13:23 - 000000000 ____D C:\Users\didi\AppData\Roaming\VEGAS
2017-10-14 09:51 - 2016-11-20 13:01 - 000000000 ____D C:\Users\didi\AppData\Roaming\Sony
2017-10-13 14:14 - 2016-11-20 13:31 - 000000000 ____D C:\Users\didi\AppData\Roaming\Mozilla
2017-10-13 12:22 - 2017-06-30 12:10 - 000001022 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Navigateur Opera.lnk
2017-10-13 12:22 - 2017-04-03 21:27 - 000003854 _____ C:\Windows\System32\Tasks\Opera scheduled Autoupdate 1491251223
2017-10-13 12:22 - 2017-04-03 20:08 - 000000000 ____D C:\Program Files\Opera
2017-10-13 12:11 - 2016-11-20 02:34 - 000000000 ____D C:\Users\didi\AppData\Roaming\IDM
2017-10-13 12:10 - 2016-11-20 01:26 - 000000000 ____D C:\Users\didi\AppData\Local\ESET
2017-10-12 21:50 - 2017-05-24 23:04 - 000000000 ____D C:\Program Files\Gramblr
2017-10-12 11:08 - 2017-07-17 13:05 - 000000000 ____D C:\Users\didi\AppData\Roaming\Skype
2017-10-12 11:07 - 2017-08-10 23:12 - 000000000 ____D C:\Users\didi\AppData\Roaming\dvdcss
2017-10-12 11:07 - 2016-12-11 17:09 - 000000000 ____D C:\Users\didi\AppData\Roaming\avidemux
2017-10-12 11:07 - 2016-11-20 00:37 - 000000000 ____D C:\Users\didi\AppData\Roaming\Adobe
2017-10-12 11:07 - 2016-11-20 00:36 - 000000000 ____D C:\Users\didi\AppData\Local\VirtualStore
2017-10-12 11:06 - 2016-11-24 22:46 - 000000000 ____D C:\Users\didi\AppData\Local\Adobe
2017-10-12 11:06 - 2016-11-20 15:28 - 000000000 ____D C:\ProgramData\Adobe
2017-10-12 11:06 - 2016-11-20 00:50 - 000000000 ____D C:\Users\didi\AppData\Local\Google
2017-10-12 10:55 - 2017-09-10 22:37 - 000000000 ____D C:\Users\didi\Desktop\تلف
2017-10-12 10:55 - 2016-12-01 00:32 - 000000000 ____D C:\Users\didi\Documents\Snagit
2017-10-12 10:55 - 2016-11-20 02:34 - 000000000 ____D C:\Users\didi\Downloads\Video
2017-10-12 09:29 - 2017-07-03 16:43 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OBS Studio
2017-10-12 07:50 - 2013-08-22 16:36 - 000000000 ____D C:\Windows\rescache
2017-10-12 06:46 - 2013-08-22 16:20 - 000000000 ____D C:\Windows\CbsTemp
2017-10-11 23:44 - 2017-05-13 18:33 - 000458752 ___SH C:\Users\didi\Documents\Thumbs.db
2017-10-11 23:40 - 2016-12-01 11:00 - 000464896 ___SH C:\Users\didi\Desktop\Thumbs.db
2017-10-11 21:39 - 2013-08-22 15:44 - 000365712 _____ C:\Windows\system32\FNTCACHE.DAT
2017-10-11 20:12 - 2013-08-22 16:36 - 000000000 ___RD C:\Windows\ToastData
2017-10-11 20:12 - 2013-08-22 14:36 - 000000000 ____D C:\Windows\Inf
2017-10-11 15:48 - 2016-12-01 12:07 - 001441792 ___SH C:\Users\didi\Downloads\Thumbs.db
2017-10-11 12:14 - 2017-06-20 16:50 - 000001375 _____ C:\Users\Public\Desktop\IObit Uninstaller.lnk
2017-10-11 12:14 - 2017-01-01 15:28 - 000001387 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit Uninstaller.lnk
2017-10-11 12:14 - 2017-01-01 15:28 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit Uninstaller
2017-10-11 12:14 - 2017-01-01 15:27 - 000000000 ____D C:\ProgramData\IObit
2017-10-11 11:51 - 2016-11-24 20:00 - 000000000 ____D C:\Windows\system32\MRT
2017-10-11 11:47 - 2016-11-24 19:59 - 126925120 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2017-10-11 11:40 - 2014-11-20 19:46 - 001036864 _____ C:\Windows\system32\perfh00C.dat
2017-10-11 11:40 - 2014-11-20 19:46 - 000231666 _____ C:\Windows\system32\perfc00C.dat
2017-10-11 11:37 - 2013-08-22 16:36 - 000000000 ____D C:\Windows\SysWOW64\MUI
2017-10-11 11:37 - 2013-08-22 16:36 - 000000000 ____D C:\Windows\system32\MUI
2017-10-10 21:47 - 2016-12-11 17:18 - 000000000 ____D C:\Users\didi\AppData\Local\CrashDumps
2017-10-10 20:28 - 2016-12-31 14:44 - 000004460 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2017-10-10 20:28 - 2013-08-22 16:36 - 000000000 ____D C:\Windows\SysWOW64\Macromed
2017-10-10 20:28 - 2013-08-22 16:36 - 000000000 ____D C:\Windows\system32\Macromed
2017-10-07 10:55 - 2014-11-20 20:28 - 000004330 _____ C:\Windows\system32\PerfStringBackup.INI
2017-10-04 11:21 - 2017-05-11 08:47 - 000000000 ____D C:\Users\didi\Desktop\photo
2017-10-02 13:31 - 2016-11-20 13:31 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2017-10-02 13:31 - 2016-11-20 13:31 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2017-09-27 23:39 - 2017-08-02 22:48 - 000000564 _____ C:\Users\didi\Documents\Sans titreM01.xml
2017-09-26 08:02 - 2017-06-04 16:37 - 000002214 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2017-09-26 08:02 - 2017-06-04 16:37 - 000002202 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2017-09-25 08:43 - 2017-09-04 23:07 - 000000000 ____D C:\Users\didi\Desktop\Nouveau dossier (2)
2017-09-21 21:46 - 2017-09-04 07:00 - 000000000 ____D C:\Users\didi\Desktop\الديسك دوغ
2017-09-21 08:33 - 2013-08-22 16:36 - 000000000 ___HD C:\Program Files\WindowsApps
2017-09-21 08:33 - 2013-08-22 16:36 - 000000000 ____D C:\Windows\AppReadiness
Certains fichiers dans TEMP:
====================
2017-07-03 16:48 - 2017-07-03 16:49 - 030950664 _____ () C:\Users\didi\AppData\Local\Temp\vlc-2.2.6-win32.exe
==================== Bamital & volsnap ======================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
C:\Windows\system32\winlogon.exe => Le fichier est signé numériquement
C:\Windows\system32\wininit.exe => Le fichier est signé numériquement
C:\Windows\explorer.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\explorer.exe => Le fichier est signé numériquement
C:\Windows\system32\svchost.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\svchost.exe => Le fichier est signé numériquement
C:\Windows\system32\services.exe => Le fichier est signé numériquement
C:\Windows\system32\User32.dll => Le fichier est signé numériquement
C:\Windows\SysWOW64\User32.dll => Le fichier est signé numériquement
C:\Windows\system32\userinit.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\userinit.exe => Le fichier est signé numériquement
C:\Windows\system32\rpcss.dll => Le fichier est signé numériquement
C:\Windows\system32\dnsapi.dll => Le fichier est signé numériquement
C:\Windows\SysWOW64\dnsapi.dll => Le fichier est signé numériquement
C:\Windows\system32\Drivers\volsnap.sys => Le fichier est signé numériquement
LastRegBack: 2017-10-09 10:43
==================== Fin de FRST.txt ============================