Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 15-11-2017
Exécuté par Terry (administrateur) sur TERRY (15-11-2017 19:24:10)
Exécuté depuis C:\Users\Terry\Desktop
Profils chargés: Terry (Profils disponibles: Terry)
Platform: Windows 8.1 (Update) (X64) Langue: Français (France)
Internet Explorer Version 11 (Navigateur par défaut: Chrome)
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
(Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(ASUS Cloud Corporation) C:\Program Files (x86)\ASUS\WebStorage\2.0.3.226\AsusWSWinService.exe
(Windows (R) Win 7 DDK provider) C:\Program Files (x86)\Bluetooth Suite\AdminService.exe
(Intel) C:\Program Files (x86)\Intel Driver Update Utility\DSAService.exe
() C:\Program Files\Intel Driver Update Utility\SUR\SurSvc.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Atheros) C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(WildTangent) C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.5\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.5\GoogleCrashHandler64.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
(Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLoader.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\QuickGesture\x64\QuickGesture64.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\QuickGesture\x86\QuickGesture.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPCenter.exe
(Qualcomm®Atheros®) C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
() C:\Program Files (x86)\Bluetooth Suite\ActivateDesktop.exe
(Spotify Ltd) C:\Users\Terry\AppData\Roaming\Spotify\SpotifyWebHelper.exe
(Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe
(CyberLink Corp.) C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe
() C:\Program Files (x86)\ASUS Gaming Mouse\hid.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe
(Intel) C:\Program Files (x86)\Intel Driver Update Utility\DSATray.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\IPC\AdobeIPCBroker.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\HEX\Adobe CEF Helper.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ADS\Adobe Desktop Service.exe
() C:\Program Files (x86)\Adobe\Adobe Sync\CoreSync\CoreSync.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\CCXProcess.exe
(Node.js) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\libs\node.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCLibrary\CCLibrary.exe
(Node.js) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCLibrary\libs\node.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPHelper.exe
(ASUS Cloud Corporation) C:\Program Files (x86)\ASUS\WebStorage\2.0.3.226\AsusWSPanel.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
() C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\LeagueClient.exe
() C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\LeagueClientUx.exe
() C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\LeagueClientUxRender.exe
() C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\LeagueClientUxRender.exe
(Microsoft Corporation) C:\Windows\System32\PING.EXE
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20911_x64__8wekyb3d8bbwe\livecomm.exe
==================== Registre (Avec liste blanche) ===========================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [Persistence] => C:\Windows\system32\igfxpers.exe******************************* [770008 2013-11-25] ()
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [508128 2016-07-01] (Adobe Systems Incorporated)
HKLM\...\Run: [WindowsDefender] => "%ProgramFiles%\Windows Defender\MSASCuiL.exe"
HKLM-x32\...\Run: [ASUSPRP] => C:\Program Files (x86)\ASUS\APRP\APRP.EXE [3216032 2013-12-13] (ASUSTek Computer Inc.)
HKLM-x32\...\Run: [WebStorage] => C:\Program Files (x86)\ASUS\WebStorage\2.0.3.226\ASUSWSLoader.exe [63296 2013-08-16] ()
HKLM-x32\...\Run: [RemoteControl10] => C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe [95192 2013-03-08] (CyberLink Corp.)
HKLM-x32\...\Run: [ROGNB] => C:\Program Files (x86)\ASUS Gaming Mouse\hid.exe [463872 2013-05-15] ()
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2407008 2017-09-20] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [DSATray] => C:\Program Files (x86)\Intel Driver Update Utility\DsaTray.exe [137976 2017-08-10] (Intel)
Winlogon\Notify\igfxcui: C:\WINDOWS\system32\igfxdev.dll (Intel Corporation)
HKLM\...\Policies\Explorer\Run: [BtvStack] => C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [132736 2013-11-28] (Qualcomm®Atheros®)
HKU\S-1-5-21-4086042525-2686106614-532530828-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [9818328 2017-06-30] (Piriform Ltd)
HKU\S-1-5-21-4086042525-2686106614-532530828-1001\...\Run: [Spotify Web Helper] => C:\Users\Terry\AppData\Roaming\Spotify\SpotifyWebHelper.exe [1580144 2017-08-15] (Spotify Ltd)
HKU\S-1-5-21-4086042525-2686106614-532530828-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3102496 2017-10-31] (Valve Corporation)
GroupPolicy: Restriction - Chrome <==== ATTENTION
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{9A4A9232-F397-422B-9B0E-5C6AE44FAF81}: [DhcpNameServer] 192.168.1.1
Internet Explorer:
==================
HKU\S-1-5-21-4086042525-2686106614-532530828-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://asus13.msn.com/?pc=ASJB
HKU\S-1-5-21-4086042525-2686106614-532530828-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://asus13.msn.com/?pc=ASJB
SearchScopes: HKU\S-1-5-21-4086042525-2686106614-532530828-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-4086042525-2686106614-532530828-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO-x32: ArcPluginIEBHO Class -> {84BFE29A-8139-402a-B2A4-C23AE9E1A75F} -> C:\Program Files (x86)\Steam\steamapps\common\Gigantic\Arc\Plugins\ArcPluginIE.dll [2017-09-27] (Perfect World Entertainment Inc)
FireFox:
========
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2017-09-20] (Adobe Systems)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-10-23] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-10-23] (Intel Corporation)
FF Plugin-x32: @perfectworld.com/npArcPlayNowPlugin -> C:\Program Files (x86)\Steam\steamapps\common\Gigantic\Arc\Plugins\npArcPluginFF.dll [2017-09-27] (Perfect World Entertainment Inc)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-11-06] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-11-06] (Google Inc.)
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll [2013-08-06] ()
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2017-09-20] (Adobe Systems)
Chrome:
=======
CHR HomePage: Default -> hxxp://google.com/
CHR StartupUrls: Default -> "hxxps://tweetdeck.twitter.com/"
CHR NewTab: Default -> Active:"chrome-extension://eedlgdlajadkbbjoobobefphmfkcchfk/newtab.html"
CHR DefaultSearchURL: Default -> hxxps://www.ecosia.org/search?q={searchTerms}&addon=chrome&addonversion=2.0.3
CHR DefaultSearchKeyword: Default -> ecosia
CHR DefaultSuggestURL: Default -> hxxps://ac.ecosia.org/?q={searchTerms}&type=list&mkt=fr
CHR Profile: C:\Users\Terry\AppData\Local\Google\Chrome\User Data\Default [2017-11-15]
CHR Extension: (Google Drive) - C:\Users\Terry\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-08-09]
CHR Extension: (YouTube) - C:\Users\Terry\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-08-09]
CHR Extension: (Save Tabs) - C:\Users\Terry\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgjepfldodmdfmdidhhgamnklbdibndi [2017-10-22]
CHR Extension: (Ecosia) - C:\Users\Terry\AppData\Local\Google\Chrome\User Data\Default\Extensions\eedlgdlajadkbbjoobobefphmfkcchfk [2017-09-04]
CHR Extension: (wanteeed) - C:\Users\Terry\AppData\Local\Google\Chrome\User Data\Default\Extensions\emnoomldgleagdjapdeckpmebokijail [2017-11-06]
CHR Extension: (Google Docs hors connexion) - C:\Users\Terry\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-08-09]
CHR Extension: (AdBlock) - C:\Users\Terry\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2017-11-13]
CHR Extension: (ColorDeck for Tweetdeck) - C:\Users\Terry\AppData\Local\Google\Chrome\User Data\Default\Extensions\jgoilgghdiafcdpgaddhfnlnhjhiejjl [2017-08-24]
CHR Extension: (iGraal) - C:\Users\Terry\AppData\Local\Google\Chrome\User Data\Default\Extensions\kmhkepipobnjllejbafajoemahjejdcm [2017-11-14]
CHR Extension: (Easy Note) - C:\Users\Terry\AppData\Local\Google\Chrome\User Data\Default\Extensions\mfdpakabndfaaggapcljpikbjgbmebff [2017-08-09]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Terry\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-08-23]
CHR Extension: (Gmail) - C:\Users\Terry\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-08-09]
CHR Extension: (Chrome Media Router) - C:\Users\Terry\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-10-24]
CHR Profile: C:\Users\Terry\AppData\Local\Google\Chrome\User Data\System Profile [2017-11-06]
CHR HKLM-x32\...\Chrome\Extension: [clgckgfbhciacomhlchmgdnplmdiadbj] - hxxps://clients2.google.com/service/update2/crx
==================== Services (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [817760 2017-09-20] (Adobe Systems Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2257016 2017-08-23] (Adobe Systems, Incorporated)
S3 ArcService; C:\Program Files (x86)\Steam\steamapps\common\Gigantic\Arc\ArcService.exe [87064 2017-09-27] (Perfect World Entertainment Inc)
R2 Asus WebStorage Windows Service; C:\Program Files (x86)\ASUS\WebStorage\2.0.3.226\AsusWSWinService.exe [71680 2013-08-16] (ASUS Cloud Corporation) [Fichier non signé]
R2 AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [318592 2013-11-28] (Windows (R) Win 7 DDK provider) [Fichier non signé]
R2 DSAService; C:\Program Files (x86)\Intel Driver Update Utility\DSAService.exe [22264 2017-08-10] (Intel)
S3 EasyAntiCheat; C:\WINDOWS\SysWOW64\EasyAntiCheat.exe [383016 2017-08-16] (EasyAntiCheat Ltd)
S3 ESRV_SVC_QUEENCREEK; C:\Program Files\Intel\SUR\QUEENCREEK\esrv_svc.exe [824592 2017-03-07] ()
R2 GamesAppIntegrationService; C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe [227936 2013-11-09] (WildTangent)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [827392 2013-09-02] (Intel(R) Corporation) [Fichier non signé]
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [131544 2013-10-23] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-10-23] (Intel Corporation)
R2 SystemUsageReportSvc_QUEENCREEK; C:\Program Files\Intel Driver Update Utility\SUR\SurSvc.exe [157456 2017-03-07] ()
S3 USER_ESRV_SVC_QUEENCREEK; C:\Program Files\Intel\SUR\QUEENCREEK\esrv_svc.exe [824592 2017-03-07] ()
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [361824 2017-01-12] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [119872 2017-01-12] (Microsoft Corporation)
R2 ZAtheros Bt and Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [323584 2013-11-28] (Atheros) [Fichier non signé]
===================== Pilotes (Avec liste blanche) ======================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R3 athr; C:\WINDOWS\system32\DRIVERS\athwbx.sys [3880448 2013-11-13] (Qualcomm Atheros Communications, Inc.)
R3 ATP; C:\WINDOWS\System32\drivers\AsusTP.sys [70928 2013-12-12] (ASUS Corporation)
R3 BTATH_LWFLT; C:\WINDOWS\system32\DRIVERS\btath_lwflt.sys [77464 2013-11-28] (Qualcomm Atheros)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [131984 2017-05-18] (Samsung Electronics Co., Ltd.)
R0 IntelHSWPcc; C:\WINDOWS\System32\drivers\IntelPcc.sys [74344 2013-08-06] (Intel Corporation)
R3 kbfiltr; C:\WINDOWS\System32\drivers\kbfiltr.sys [17280 2012-08-06] ( )
R3 MEIx64; C:\WINDOWS\system32\DRIVERS\TeeDriverx64.sys [99288 2013-10-23] (Intel Corporation)
R1 MpKsl66cd3455; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{0E234C07-1238-43CC-AA44-C0F0F861A8BA}\MpKsl66cd3455.sys [58120 2017-11-15] (Microsoft Corporation)
R3 RTSPER; C:\WINDOWS\system32\DRIVERS\RtsPer.sys [444632 2013-10-18] (Realsil Semiconductor Corporation)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [166288 2017-05-18] (Samsung Electronics Co., Ltd.)
S0 WdBoot; C:\WINDOWS\System32\drivers\WdBoot.sys [46600 2017-02-10] (Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\WdFilter.sys [274776 2017-01-12] (Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [117592 2017-01-12] (Microsoft Corporation)
U0 msahci; system32\drivers\msahci.sys [X]
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois - Créés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2017-11-15 19:24 - 2017-11-15 19:24 - 000019136 _____ C:\Users\Terry\Desktop\FRST.txt
2017-11-15 19:24 - 2017-11-15 19:24 - 000000000 ____D C:\Users\Terry\Desktop\FRST-OlderVersion
2017-11-13 18:54 - 2017-11-13 18:54 - 000000000 _____ C:\autoexec.bat
2017-11-13 18:49 - 2017-11-13 18:49 - 005189808 _____ (Enigma Software Group USA, LLC.) C:\Users\Terry\Downloads\SpyHunter-Installer.exe
2017-11-09 18:56 - 2017-08-17 17:35 - 000544424 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2017-11-07 20:23 - 2017-11-07 20:23 - 000000000 ____D C:\Users\Terry\AppData\Local\Tempzxpsign2fa12bee92eb71d1
2017-11-07 17:59 - 2017-11-07 17:59 - 000000000 ____D C:\Users\Terry\AppData\Local\Tempzxpsignd8355cbbcdad279d
2017-11-07 17:46 - 2017-11-07 17:46 - 000000000 ____D C:\Users\Terry\AppData\Local\Tempzxpsignb2ffd1e3ae5eac25
2017-11-07 17:44 - 2017-11-07 17:44 - 000000000 ____D C:\Users\Terry\AppData\Local\Tempzxpsigneaefce73485b6af5
2017-11-07 17:43 - 2017-11-07 17:43 - 000000000 ____D C:\Users\Terry\AppData\Local\Tempzxpsignc294c5e9a4afe6f3
2017-11-07 17:43 - 2017-11-07 17:43 - 000000000 ____D C:\Users\Terry\AppData\Local\Tempzxpsign6b1c5a6d802eb874
2017-11-07 17:43 - 2017-11-07 17:43 - 000000000 ____D C:\Users\Terry\AppData\Local\Tempzxpsign6a16f3c42002e2fe
2017-11-07 16:53 - 2017-11-07 16:53 - 000122872 _____ C:\Users\Terry\AppData\Local\GDIPFONTCACHEV1.DAT
2017-11-06 20:16 - 2017-11-06 20:16 - 000000000 ____D C:\Users\Terry\AppData\Local\Tempzxpsigne660dde72e68f5fb
2017-11-06 20:15 - 2017-11-06 20:15 - 000000000 ____D C:\Users\Terry\AppData\Local\Tempzxpsign73531115768276c4
2017-11-06 20:15 - 2017-11-06 20:15 - 000000000 ____D C:\Users\Terry\AppData\Local\Tempzxpsign5034612f4bb6a69e
2017-11-06 20:15 - 2017-11-06 20:15 - 000000000 ____D C:\Users\Terry\AppData\Local\Tempzxpsign3e9af28df9776d45
2017-11-06 20:15 - 2017-11-06 20:15 - 000000000 ____D C:\Users\Terry\AppData\Local\Tempzxpsign23e933342795e21b
2017-11-06 20:11 - 2017-11-06 20:11 - 000000000 ____D C:\Users\Terry\AppData\Local\Tempzxpsign3d16e80a7679f33f
2017-11-06 20:11 - 2017-11-06 20:11 - 000000000 ____D C:\Users\Terry\AppData\Local\Tempzxpsign0102dd0cf2e616f8
2017-11-06 18:29 - 2017-11-06 18:29 - 000002287 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2017-11-06 18:29 - 2017-11-06 18:29 - 000002275 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2017-11-06 18:27 - 2017-11-06 18:27 - 000003500 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2017-11-06 18:27 - 2017-11-06 18:27 - 000003372 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2017-11-06 18:21 - 2017-11-06 18:21 - 000077796 _____ C:\Users\Terry\Downloads\favoris_09_08_2017.html
2017-11-06 18:15 - 2017-11-15 19:24 - 000000000 ____D C:\FRST
2017-11-06 18:02 - 2017-11-06 18:02 - 000000573 _____ C:\DelFix.txt
2017-11-06 18:01 - 2017-11-15 19:24 - 002392576 _____ (Farbar) C:\Users\Terry\Desktop\FRST64.exe
2017-11-06 17:23 - 2017-11-06 17:23 - 000000000 ____D C:\Users\Terry\AppData\Local\Tempzxpsign37b20bb4f58d462f
2017-11-06 17:20 - 2017-11-06 17:20 - 000000000 ____D C:\Users\Terry\AppData\Local\Tempzxpsigne11d4985396de39a
2017-11-06 17:20 - 2017-11-06 17:20 - 000000000 ____D C:\Users\Terry\AppData\Local\Tempzxpsigna3b4da5719081584
2017-11-06 17:20 - 2017-11-06 17:20 - 000000000 ____D C:\Users\Terry\AppData\Local\Tempzxpsign79dd79ff8c4e02e7
2017-11-04 02:01 - 2017-11-04 02:01 - 000000000 ____D C:\Users\Terry\AppData\LocalLow\uTorrent
2017-11-04 02:00 - 2017-11-04 02:01 - 069949107 _____ C:\Users\Terry\Downloads\free-mahjong-game-in-poculis.dmg
2017-10-26 13:49 - 2017-10-26 13:50 - 000485136 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2017-10-26 13:03 - 2017-10-26 13:04 - 006122506 _____ C:\Users\Terry\Downloads\puresims-kitchenclutter.rar
2017-10-26 13:03 - 2017-10-26 13:03 - 010990041 _____ C:\Users\Terry\Downloads\Kitchen Clutter 3 by viikiita .rar
2017-10-25 19:17 - 2017-10-25 19:18 - 026291247 _____ C:\Users\Terry\Downloads\Mincsims-MXIMS Collaboration Part 2.7z
2017-10-25 19:15 - 2017-10-25 19:18 - 062744891 _____ C:\Users\Terry\Downloads\PC-TS4-MCA-Separated.rar
2017-10-25 19:14 - 2017-10-25 19:18 - 077848913 _____ C:\Users\Terry\Downloads\PC-TS4-HamptonsHideaway-Separated.rar
2017-10-25 19:14 - 2017-10-25 19:16 - 039005617 _____ C:\Users\Terry\Downloads\PC-TS4-SerenityBathroom-Separated.rar
2017-10-25 12:26 - 2017-10-25 12:27 - 007002324 _____ C:\Users\Terry\Downloads\DaraS_LaundryDecorSet_20316.zip
2017-10-25 12:25 - 2017-10-25 12:29 - 066973616 _____ C:\Users\Terry\Downloads\PC-TS4-BaysideBedroomSet-Merged.rar
2017-10-25 12:25 - 2017-10-25 12:28 - 039584538 _____ C:\Users\Terry\Downloads\DaraS_KitchenDecorSet_070216.zip
2017-10-25 12:24 - 2017-10-25 12:27 - 087487454 _____ C:\Users\Terry\Downloads\PC-TS4-MyraLiving-Separated.rar
2017-10-25 12:24 - 2017-10-25 12:27 - 087456727 _____ C:\Users\Terry\Downloads\PC-TS4-MyraLiving-Merged.rar
2017-10-25 12:24 - 2017-10-25 12:25 - 012424923 _____ C:\Users\Terry\Downloads\Mio Livingroom Pillows.rar
2017-10-25 12:23 - 2017-10-25 12:26 - 025195056 _____ C:\Users\Terry\Downloads\Tropical Table Clothes by viikiita.rar
2017-10-25 12:23 - 2017-10-25 12:23 - 012575482 _____ C:\Users\Terry\Downloads\DaraS_TableclothSet_130116.zip
2017-10-24 19:33 - 2017-10-24 19:33 - 003491156 _____ C:\Users\Terry\Downloads\leo-decor-bomber-jacket.package
2017-10-24 19:28 - 2017-10-24 19:29 - 021223783 _____ C:\Users\Terry\Downloads\MXIMS April 3rd Set.7z
2017-10-24 19:28 - 2017-10-24 19:29 - 011568095 _____ C:\Users\Terry\Downloads\MXIMS KONIG Bedroom.7z
2017-10-24 19:28 - 2017-10-24 19:28 - 009226594 _____ C:\Users\Terry\Downloads\MXIMS Mono Workstation.7z
2017-10-24 19:27 - 2017-10-24 19:28 - 029123271 _____ C:\Users\Terry\Downloads\MXIMS SK8 or Cry.7z
2017-10-24 19:27 - 2017-10-24 19:28 - 012015376 _____ C:\Users\Terry\Downloads\MXIMS Apple iMac Pro 27 2017 Pack.7z
2017-10-24 19:27 - 2017-10-24 19:27 - 015440805 _____ C:\Users\Terry\Downloads\MXIMS MCM Office #6.7z
2017-10-24 19:27 - 2017-10-24 19:27 - 008093928 _____ C:\Users\Terry\Downloads\MXIMS 10-04.7z
2017-10-24 19:27 - 2017-10-24 19:27 - 004008627 _____ C:\Users\Terry\Downloads\MXIMS Larina Bedroom.7z
2017-10-24 19:26 - 2017-10-24 19:27 - 004861560 _____ C:\Users\Terry\Downloads\iyaS_TS4OfficeAccessories.zip
2017-10-24 19:25 - 2017-10-24 19:25 - 021940670 _____ C:\Users\Terry\Downloads\MXIMS 10-10.7z
2017-10-24 19:24 - 2017-10-24 19:26 - 046555320 _____ C:\Users\Terry\Downloads\False Creek Home Part 1.rar
2017-10-24 19:22 - 2017-10-24 19:22 - 000751208 _____ C:\Users\Terry\Downloads\javabeandreams_autumnbanner.package
2017-10-24 19:22 - 2017-10-24 19:22 - 000446162 _____ C:\Users\Terry\Downloads\javabeandreams_floralbanner.package
2017-10-24 19:21 - 2017-10-24 19:21 - 014632445 _____ C:\Users\Terry\Downloads\WINGS HAIR TS4 OS1023 F.package
2017-10-22 00:03 - 2017-11-06 18:25 - 000000140 _____ C:\WINDOWS\Reimage.ini
2017-10-21 17:52 - 2017-10-21 17:53 - 000002022 _____ C:\Users\Terry\Desktop\SIMS 4.txt
2017-10-17 17:01 - 2017-11-13 19:56 - 000000000 ____D C:\Users\Terry\Downloads\LAST
2017-10-17 16:10 - 2017-10-17 16:10 - 000001251 _____ C:\Users\Terry\Desktop\The Sims 4.lnk
2017-10-17 16:06 - 2017-10-17 16:06 - 000000000 ____D C:\ProgramData\Origin
2017-10-17 11:45 - 2017-10-17 11:45 - 126925120 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT-KB890830.exe
2017-10-17 11:44 - 2017-09-14 20:30 - 007439704 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2017-10-17 11:44 - 2017-09-14 20:30 - 001737600 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2017-10-17 11:44 - 2017-09-14 20:29 - 001502000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2017-10-17 11:44 - 2017-09-14 02:18 - 001384216 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2017-10-17 11:44 - 2017-09-14 02:14 - 001124384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2017-10-17 11:44 - 2017-09-13 14:32 - 000445952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\nwifi.sys
2017-10-17 11:44 - 2017-09-13 14:31 - 000445952 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansec.dll
2017-10-17 11:44 - 2017-09-13 14:27 - 000384000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlansec.dll
2017-10-17 11:44 - 2017-09-09 19:53 - 022361864 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2017-10-17 11:44 - 2017-09-09 18:55 - 019790760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2017-10-17 11:44 - 2017-09-09 18:38 - 000154112 _____ (Microsoft Corporation) C:\WINDOWS\system32\TabSvc.dll
2017-10-17 11:44 - 2017-09-09 17:10 - 003631616 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2017-10-17 11:44 - 2017-09-09 16:49 - 002749952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2017-10-17 11:44 - 2017-09-09 16:47 - 014466560 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2017-10-17 11:44 - 2017-09-09 16:21 - 012879360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2017-10-17 11:44 - 2017-09-09 14:13 - 000640512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mswstr10.dll
2017-10-17 11:44 - 2017-09-09 14:13 - 000345088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msexcl40.dll
2017-10-17 11:44 - 2017-09-09 04:50 - 002013016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2017-10-17 11:44 - 2017-09-09 04:50 - 001364552 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32.dll
2017-10-17 11:44 - 2017-09-08 19:21 - 004168192 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2017-10-17 11:44 - 2017-09-08 17:57 - 001084928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32.dll
2017-10-17 11:44 - 2017-09-07 22:33 - 000686592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
2017-10-17 11:44 - 2017-09-07 22:33 - 000415744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv.sys
2017-10-17 11:44 - 2017-09-07 22:32 - 000285184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb10.sys
2017-10-17 11:44 - 2017-09-07 22:17 - 000088064 _____ (Microsoft Corporation) C:\WINDOWS\system32\MshtmlDac.dll
2017-10-17 11:44 - 2017-09-07 22:15 - 002902528 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2017-10-17 11:44 - 2017-09-07 22:08 - 025729536 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2017-10-17 11:44 - 2017-09-07 22:00 - 000817664 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2017-10-17 11:44 - 2017-09-07 21:40 - 005982208 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2017-10-17 11:44 - 2017-09-07 21:10 - 000807936 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2017-10-17 11:44 - 2017-09-07 21:08 - 002134528 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2017-10-17 11:44 - 2017-09-07 21:08 - 000656896 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll
2017-10-17 11:44 - 2017-09-07 20:44 - 015262720 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2017-10-17 11:44 - 2017-09-07 20:40 - 003240960 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2017-10-17 11:44 - 2017-09-07 20:27 - 001548288 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2017-10-17 11:44 - 2017-09-07 20:10 - 000499200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2017-10-17 11:44 - 2017-09-07 20:04 - 020267008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2017-10-17 11:44 - 2017-09-07 20:03 - 002292736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2017-10-17 11:44 - 2017-09-07 19:58 - 000663040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2017-10-17 11:44 - 2017-09-07 19:29 - 004547072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2017-10-17 11:44 - 2017-09-07 19:26 - 000694784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2017-10-17 11:44 - 2017-09-07 19:25 - 002058752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2017-10-17 11:44 - 2017-09-07 19:24 - 000499200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnsapi.dll
2017-10-17 11:44 - 2017-09-07 19:17 - 013677568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2017-10-17 11:44 - 2017-09-07 19:01 - 002767872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2017-10-17 11:44 - 2017-09-07 18:57 - 001316864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2017-10-17 11:44 - 2017-08-13 20:48 - 000202592 _____ (Microsoft Corporation) C:\WINDOWS\system32\basecsp.dll
2017-10-17 11:44 - 2017-08-13 18:52 - 000174944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\basecsp.dll
2017-10-17 11:44 - 2017-08-13 18:10 - 000277504 _____ (Microsoft Corporation) C:\WINDOWS\system32\scksp.dll
2017-10-17 11:44 - 2017-08-13 17:33 - 000252416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scksp.dll
2017-10-17 11:44 - 2017-08-11 03:20 - 001436672 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2017-10-17 11:44 - 2017-08-11 02:57 - 000180224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authz.dll
2017-10-17 11:44 - 2017-08-06 22:20 - 000542720 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll
2017-10-17 11:44 - 2017-08-06 22:13 - 000713216 _____ (Microsoft Corporation) C:\WINDOWS\system32\nshwfp.dll
2017-10-17 11:44 - 2017-08-06 08:08 - 000561664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nshwfp.dll
2017-10-17 11:44 - 2017-08-02 03:19 - 000358912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wldap32.dll
2017-10-17 11:44 - 2017-08-01 09:25 - 000324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Wldap32.dll
2017-10-17 11:43 - 2017-09-09 14:13 - 000008704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjint40.dll
2017-10-17 11:43 - 2017-09-08 19:15 - 000148480 _____ (Microsoft Corporation) C:\WINDOWS\system32\t2embed.dll
2017-10-17 11:43 - 2017-09-08 18:39 - 000113152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\t2embed.dll
2017-10-17 11:43 - 2017-09-07 22:32 - 000243200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srvnet.sys
2017-10-17 11:43 - 2017-09-07 22:17 - 000576512 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2017-10-17 11:43 - 2017-09-07 21:32 - 000092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2017-10-17 11:43 - 2017-09-07 21:31 - 000145408 _____ (Microsoft Corporation) C:\WINDOWS\system32\iepeers.dll
2017-10-17 11:43 - 2017-09-07 21:29 - 000315392 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll
2017-10-17 11:43 - 2017-09-07 21:21 - 001033216 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcomm.dll
2017-10-17 11:43 - 2017-09-07 21:13 - 000262144 _____ (Microsoft Corporation) C:\WINDOWS\system32\webcheck.dll
2017-10-17 11:43 - 2017-09-07 21:11 - 000380416 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2017-10-17 11:43 - 2017-09-07 21:10 - 000726528 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2017-10-17 11:43 - 2017-09-07 20:54 - 000329216 _____ (Microsoft Corporation) C:\WINDOWS\system32\srvsvc.dll
2017-10-17 11:43 - 2017-09-07 20:17 - 000800768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2017-10-17 11:43 - 2017-09-07 20:09 - 000064000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MshtmlDac.dll
2017-10-17 11:43 - 2017-09-07 19:39 - 000076288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmled.dll
2017-10-17 11:43 - 2017-09-07 19:38 - 000128000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iepeers.dll
2017-10-17 11:43 - 2017-09-07 19:37 - 000279040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtrans.dll
2017-10-17 11:43 - 2017-09-07 19:33 - 000880640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcomm.dll
2017-10-17 11:43 - 2017-09-07 19:29 - 000230400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webcheck.dll
2017-10-17 11:43 - 2017-09-07 19:27 - 000331776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2017-10-17 11:43 - 2017-09-07 18:57 - 000710144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2017-10-17 11:43 - 2017-08-11 03:54 - 000445440 _____ (Microsoft Corporation) C:\WINDOWS\system32\certcli.dll
2017-10-17 11:43 - 2017-08-11 03:22 - 000324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certcli.dll
2017-10-17 11:43 - 2017-08-11 03:16 - 000275968 _____ (Microsoft Corporation) C:\WINDOWS\system32\authz.dll
2017-10-17 11:43 - 2017-08-06 22:50 - 001080320 _____ (Microsoft Corporation) C:\WINDOWS\system32\IKEEXT.DLL
2017-10-17 11:15 - 2017-10-17 11:33 - 000000000 ____D C:\Program Files (x86)\The Sims 4
2017-10-17 11:15 - 2017-10-17 11:18 - 000000000 ____D C:\Users\Terry\Documents\Electronic Arts
2017-10-17 11:13 - 2017-10-17 11:13 - 000000000 ____D C:\WINDOWS\SysWOW64\directx
2017-10-17 11:11 - 2017-10-17 11:11 - 000000000 ____D C:\Users\Terry\Desktop\Bureautique
2017-10-17 07:31 - 2017-10-17 07:31 - 000725157 _____ C:\WINDOWS\unins000.exe
2017-10-17 07:24 - 2017-10-17 07:31 - 000003550 _____ C:\WINDOWS\unins000.dat
==================== Un mois - Modifiés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2017-11-15 17:33 - 2013-08-22 16:20 - 000000000 ____D C:\WINDOWS\CbsTemp
2017-11-15 17:19 - 2017-08-09 01:39 - 000003924 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{61790557-44E5-4AB4-A4F1-89C534EDD646}
2017-11-15 17:18 - 2017-08-10 19:26 - 000000000 ____D C:\Users\Terry\AppData\Local\Adobe
2017-11-15 17:17 - 2017-08-10 19:49 - 000000000 ___RD C:\Users\Terry\Creative Cloud Files
2017-11-15 17:16 - 2017-08-15 18:50 - 000000000 ____D C:\Program Files (x86)\Steam
2017-11-15 17:15 - 2017-08-09 01:38 - 000000000 __RDO C:\Users\Terry\SkyDrive
2017-11-14 14:24 - 2013-12-13 12:11 - 000813248 _____ C:\WINDOWS\system32\perfh00C.dat
2017-11-14 14:24 - 2013-12-13 12:11 - 000159750 _____ C:\WINDOWS\system32\perfc00C.dat
2017-11-14 14:24 - 2013-12-13 05:09 - 001826754 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2017-11-14 14:24 - 2013-08-22 14:36 - 000000000 ____D C:\WINDOWS\Inf
2017-11-13 21:41 - 2013-08-22 15:45 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2017-11-13 21:40 - 2017-08-11 01:04 - 000000000 ____D C:\ProgramData\AVAST Software
2017-11-13 21:40 - 2013-08-22 14:25 - 000262144 ___SH C:\WINDOWS\system32\config\BBI
2017-11-13 18:53 - 2017-08-09 01:32 - 000000000 ____D C:\Users\Terry
2017-11-12 21:03 - 2017-08-10 21:22 - 000409088 ___SH C:\Users\Terry\Desktop\Thumbs.db
2017-11-12 19:46 - 2017-08-11 02:24 - 000000000 ____D C:\Program Files (x86)\Intel Driver Update Utility
2017-11-09 19:24 - 2017-08-09 01:43 - 000003598 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-4086042525-2686106614-532530828-1001
2017-11-09 18:57 - 2013-08-22 14:25 - 000262144 ___SH C:\WINDOWS\system32\config\ELAM
2017-11-08 22:18 - 2017-08-10 19:17 - 000000000 ____D C:\Users\Terry\Desktop\Terry
2017-11-08 19:23 - 2013-08-22 16:36 - 000000000 ____D C:\WINDOWS\system32\NDF
2017-11-07 17:58 - 2017-08-13 13:25 - 000147968 ___SH C:\Users\Terry\Downloads\Thumbs.db
2017-11-06 18:27 - 2017-08-09 01:40 - 000000000 ____D C:\Users\Terry\AppData\Local\Deployment
2017-11-06 18:27 - 2017-08-09 01:40 - 000000000 ____D C:\Program Files (x86)\Google
2017-11-04 03:31 - 2017-10-15 21:49 - 000000000 ____D C:\Users\Terry\AppData\Roaming\uTorrent
2017-11-04 01:41 - 2017-08-11 15:19 - 000835568 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2017-11-04 01:41 - 2017-08-11 15:19 - 000177648 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2017-11-04 01:08 - 2017-08-16 09:47 - 000000000 ____D C:\Users\Terry\AppData\Roaming\Arc
2017-11-04 01:08 - 2017-08-11 02:26 - 000003180 _____ C:\WINDOWS\System32\Tasks\RtHDVBg_ListenToDevice
2017-11-04 01:08 - 2017-08-10 20:16 - 000002784 _____ C:\WINDOWS\System32\Tasks\CCleanerSkipUAC
2017-11-04 01:08 - 2017-08-10 19:26 - 000003496 _____ C:\WINDOWS\System32\Tasks\AdobeAAMUpdater-1.0-MicrosoftAccount-terry.thor@live.fr
2017-11-04 01:08 - 2014-03-26 02:17 - 000003538 _____ C:\WINDOWS\System32\Tasks\ASUS Smart Gesture Launcher
2017-11-04 01:08 - 2014-03-26 02:17 - 000003266 _____ C:\WINDOWS\System32\Tasks\AsusVibeSchedule
2017-11-04 01:08 - 2014-03-26 02:08 - 000003594 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-4086042525-2686106614-532530828-500
2017-11-04 01:08 - 2014-03-26 02:01 - 000003168 _____ C:\WINDOWS\System32\Tasks\RTKCPL
2017-11-04 01:08 - 2014-03-26 02:01 - 000003152 _____ C:\WINDOWS\System32\Tasks\RtHDVBg
2017-10-26 13:47 - 2017-08-11 02:28 - 000000000 ____D C:\Users\Terry\AppData\Local\CrashDumps
2017-10-23 10:26 - 2017-08-16 23:48 - 000000000 ____D C:\Users\Terry\AppData\Local\Discord
2017-10-23 10:25 - 2017-08-16 23:48 - 000000000 ____D C:\Users\Terry\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Discord Inc
2017-10-20 20:55 - 2013-08-22 16:36 - 000000000 ____D C:\WINDOWS\rescache
2017-10-19 18:06 - 2013-08-22 16:36 - 000000000 ____D C:\WINDOWS\AppReadiness
2017-10-18 19:53 - 2013-08-22 16:36 - 000000000 ___RD C:\WINDOWS\ToastData
2017-10-17 11:47 - 2017-08-10 19:14 - 000000000 ____D C:\WINDOWS\system32\MRT
2017-10-17 11:45 - 2017-08-10 19:14 - 126925120 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
==================== Fichiers à la racine de certains dossiers =======
2014-03-26 02:00 - 2014-03-26 02:00 - 000000000 ____H () C:\ProgramData\DP45977C.lfl
2013-12-13 05:09 - 2012-09-07 12:40 - 000000256 _____ () C:\ProgramData\SetStretch.cmd
2013-12-13 05:09 - 2009-07-22 11:04 - 000024576 _____ () C:\ProgramData\SetStretch.exe
2013-12-13 05:09 - 2012-09-07 12:37 - 000000103 _____ () C:\ProgramData\SetStretch.VBS
Certains fichiers dans TEMP:
====================
2017-11-06 18:05 - 2017-11-06 18:05 - 013489912 _____ (Reimage) C:\Users\Terry\AppData\Local\Temp\ReimagePackage.exe
==================== Bamital & volsnap ======================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
C:\WINDOWS\system32\winlogon.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\wininit.exe => Le fichier est signé numériquement
C:\WINDOWS\explorer.exe => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\explorer.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\svchost.exe => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\svchost.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\services.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\User32.dll => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\User32.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\userinit.exe => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\userinit.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\rpcss.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\dnsapi.dll => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\dnsapi.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\Drivers\volsnap.sys => Le fichier est signé numériquement
LastRegBack: 2017-11-10 16:55
==================== Fin de FRST.txt ============================
Exécuté par Terry (administrateur) sur TERRY (15-11-2017 19:24:10)
Exécuté depuis C:\Users\Terry\Desktop
Profils chargés: Terry (Profils disponibles: Terry)
Platform: Windows 8.1 (Update) (X64) Langue: Français (France)
Internet Explorer Version 11 (Navigateur par défaut: Chrome)
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
(Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(ASUS Cloud Corporation) C:\Program Files (x86)\ASUS\WebStorage\2.0.3.226\AsusWSWinService.exe
(Windows (R) Win 7 DDK provider) C:\Program Files (x86)\Bluetooth Suite\AdminService.exe
(Intel) C:\Program Files (x86)\Intel Driver Update Utility\DSAService.exe
() C:\Program Files\Intel Driver Update Utility\SUR\SurSvc.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Atheros) C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(WildTangent) C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.5\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.5\GoogleCrashHandler64.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
(Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLoader.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\QuickGesture\x64\QuickGesture64.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\QuickGesture\x86\QuickGesture.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPCenter.exe
(Qualcomm®Atheros®) C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
() C:\Program Files (x86)\Bluetooth Suite\ActivateDesktop.exe
(Spotify Ltd) C:\Users\Terry\AppData\Roaming\Spotify\SpotifyWebHelper.exe
(Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe
(CyberLink Corp.) C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe
() C:\Program Files (x86)\ASUS Gaming Mouse\hid.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe
(Intel) C:\Program Files (x86)\Intel Driver Update Utility\DSATray.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\IPC\AdobeIPCBroker.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\HEX\Adobe CEF Helper.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ADS\Adobe Desktop Service.exe
() C:\Program Files (x86)\Adobe\Adobe Sync\CoreSync\CoreSync.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\CCXProcess.exe
(Node.js) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\libs\node.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCLibrary\CCLibrary.exe
(Node.js) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCLibrary\libs\node.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPHelper.exe
(ASUS Cloud Corporation) C:\Program Files (x86)\ASUS\WebStorage\2.0.3.226\AsusWSPanel.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
() C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\LeagueClient.exe
() C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\LeagueClientUx.exe
() C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\LeagueClientUxRender.exe
() C:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.107\deploy\LeagueClientUxRender.exe
(Microsoft Corporation) C:\Windows\System32\PING.EXE
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20911_x64__8wekyb3d8bbwe\livecomm.exe
==================== Registre (Avec liste blanche) ===========================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [Persistence] => C:\Windows\system32\igfxpers.exe******************************* [770008 2013-11-25] ()
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [508128 2016-07-01] (Adobe Systems Incorporated)
HKLM\...\Run: [WindowsDefender] => "%ProgramFiles%\Windows Defender\MSASCuiL.exe"
HKLM-x32\...\Run: [ASUSPRP] => C:\Program Files (x86)\ASUS\APRP\APRP.EXE [3216032 2013-12-13] (ASUSTek Computer Inc.)
HKLM-x32\...\Run: [WebStorage] => C:\Program Files (x86)\ASUS\WebStorage\2.0.3.226\ASUSWSLoader.exe [63296 2013-08-16] ()
HKLM-x32\...\Run: [RemoteControl10] => C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe [95192 2013-03-08] (CyberLink Corp.)
HKLM-x32\...\Run: [ROGNB] => C:\Program Files (x86)\ASUS Gaming Mouse\hid.exe [463872 2013-05-15] ()
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2407008 2017-09-20] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [DSATray] => C:\Program Files (x86)\Intel Driver Update Utility\DsaTray.exe [137976 2017-08-10] (Intel)
Winlogon\Notify\igfxcui: C:\WINDOWS\system32\igfxdev.dll (Intel Corporation)
HKLM\...\Policies\Explorer\Run: [BtvStack] => C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [132736 2013-11-28] (Qualcomm®Atheros®)
HKU\S-1-5-21-4086042525-2686106614-532530828-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [9818328 2017-06-30] (Piriform Ltd)
HKU\S-1-5-21-4086042525-2686106614-532530828-1001\...\Run: [Spotify Web Helper] => C:\Users\Terry\AppData\Roaming\Spotify\SpotifyWebHelper.exe [1580144 2017-08-15] (Spotify Ltd)
HKU\S-1-5-21-4086042525-2686106614-532530828-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3102496 2017-10-31] (Valve Corporation)
GroupPolicy: Restriction - Chrome <==== ATTENTION
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{9A4A9232-F397-422B-9B0E-5C6AE44FAF81}: [DhcpNameServer] 192.168.1.1
Internet Explorer:
==================
HKU\S-1-5-21-4086042525-2686106614-532530828-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://asus13.msn.com/?pc=ASJB
HKU\S-1-5-21-4086042525-2686106614-532530828-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://asus13.msn.com/?pc=ASJB
SearchScopes: HKU\S-1-5-21-4086042525-2686106614-532530828-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-4086042525-2686106614-532530828-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO-x32: ArcPluginIEBHO Class -> {84BFE29A-8139-402a-B2A4-C23AE9E1A75F} -> C:\Program Files (x86)\Steam\steamapps\common\Gigantic\Arc\Plugins\ArcPluginIE.dll [2017-09-27] (Perfect World Entertainment Inc)
FireFox:
========
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2017-09-20] (Adobe Systems)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-10-23] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-10-23] (Intel Corporation)
FF Plugin-x32: @perfectworld.com/npArcPlayNowPlugin -> C:\Program Files (x86)\Steam\steamapps\common\Gigantic\Arc\Plugins\npArcPluginFF.dll [2017-09-27] (Perfect World Entertainment Inc)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-11-06] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-11-06] (Google Inc.)
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll [2013-08-06] ()
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2017-09-20] (Adobe Systems)
Chrome:
=======
CHR HomePage: Default -> hxxp://google.com/
CHR StartupUrls: Default -> "hxxps://tweetdeck.twitter.com/"
CHR NewTab: Default -> Active:"chrome-extension://eedlgdlajadkbbjoobobefphmfkcchfk/newtab.html"
CHR DefaultSearchURL: Default -> hxxps://www.ecosia.org/search?q={searchTerms}&addon=chrome&addonversion=2.0.3
CHR DefaultSearchKeyword: Default -> ecosia
CHR DefaultSuggestURL: Default -> hxxps://ac.ecosia.org/?q={searchTerms}&type=list&mkt=fr
CHR Profile: C:\Users\Terry\AppData\Local\Google\Chrome\User Data\Default [2017-11-15]
CHR Extension: (Google Drive) - C:\Users\Terry\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-08-09]
CHR Extension: (YouTube) - C:\Users\Terry\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-08-09]
CHR Extension: (Save Tabs) - C:\Users\Terry\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgjepfldodmdfmdidhhgamnklbdibndi [2017-10-22]
CHR Extension: (Ecosia) - C:\Users\Terry\AppData\Local\Google\Chrome\User Data\Default\Extensions\eedlgdlajadkbbjoobobefphmfkcchfk [2017-09-04]
CHR Extension: (wanteeed) - C:\Users\Terry\AppData\Local\Google\Chrome\User Data\Default\Extensions\emnoomldgleagdjapdeckpmebokijail [2017-11-06]
CHR Extension: (Google Docs hors connexion) - C:\Users\Terry\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-08-09]
CHR Extension: (AdBlock) - C:\Users\Terry\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2017-11-13]
CHR Extension: (ColorDeck for Tweetdeck) - C:\Users\Terry\AppData\Local\Google\Chrome\User Data\Default\Extensions\jgoilgghdiafcdpgaddhfnlnhjhiejjl [2017-08-24]
CHR Extension: (iGraal) - C:\Users\Terry\AppData\Local\Google\Chrome\User Data\Default\Extensions\kmhkepipobnjllejbafajoemahjejdcm [2017-11-14]
CHR Extension: (Easy Note) - C:\Users\Terry\AppData\Local\Google\Chrome\User Data\Default\Extensions\mfdpakabndfaaggapcljpikbjgbmebff [2017-08-09]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Terry\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-08-23]
CHR Extension: (Gmail) - C:\Users\Terry\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-08-09]
CHR Extension: (Chrome Media Router) - C:\Users\Terry\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-10-24]
CHR Profile: C:\Users\Terry\AppData\Local\Google\Chrome\User Data\System Profile [2017-11-06]
CHR HKLM-x32\...\Chrome\Extension: [clgckgfbhciacomhlchmgdnplmdiadbj] - hxxps://clients2.google.com/service/update2/crx
==================== Services (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [817760 2017-09-20] (Adobe Systems Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2257016 2017-08-23] (Adobe Systems, Incorporated)
S3 ArcService; C:\Program Files (x86)\Steam\steamapps\common\Gigantic\Arc\ArcService.exe [87064 2017-09-27] (Perfect World Entertainment Inc)
R2 Asus WebStorage Windows Service; C:\Program Files (x86)\ASUS\WebStorage\2.0.3.226\AsusWSWinService.exe [71680 2013-08-16] (ASUS Cloud Corporation) [Fichier non signé]
R2 AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [318592 2013-11-28] (Windows (R) Win 7 DDK provider) [Fichier non signé]
R2 DSAService; C:\Program Files (x86)\Intel Driver Update Utility\DSAService.exe [22264 2017-08-10] (Intel)
S3 EasyAntiCheat; C:\WINDOWS\SysWOW64\EasyAntiCheat.exe [383016 2017-08-16] (EasyAntiCheat Ltd)
S3 ESRV_SVC_QUEENCREEK; C:\Program Files\Intel\SUR\QUEENCREEK\esrv_svc.exe [824592 2017-03-07] ()
R2 GamesAppIntegrationService; C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe [227936 2013-11-09] (WildTangent)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [827392 2013-09-02] (Intel(R) Corporation) [Fichier non signé]
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [131544 2013-10-23] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-10-23] (Intel Corporation)
R2 SystemUsageReportSvc_QUEENCREEK; C:\Program Files\Intel Driver Update Utility\SUR\SurSvc.exe [157456 2017-03-07] ()
S3 USER_ESRV_SVC_QUEENCREEK; C:\Program Files\Intel\SUR\QUEENCREEK\esrv_svc.exe [824592 2017-03-07] ()
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [361824 2017-01-12] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [119872 2017-01-12] (Microsoft Corporation)
R2 ZAtheros Bt and Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [323584 2013-11-28] (Atheros) [Fichier non signé]
===================== Pilotes (Avec liste blanche) ======================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R3 athr; C:\WINDOWS\system32\DRIVERS\athwbx.sys [3880448 2013-11-13] (Qualcomm Atheros Communications, Inc.)
R3 ATP; C:\WINDOWS\System32\drivers\AsusTP.sys [70928 2013-12-12] (ASUS Corporation)
R3 BTATH_LWFLT; C:\WINDOWS\system32\DRIVERS\btath_lwflt.sys [77464 2013-11-28] (Qualcomm Atheros)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [131984 2017-05-18] (Samsung Electronics Co., Ltd.)
R0 IntelHSWPcc; C:\WINDOWS\System32\drivers\IntelPcc.sys [74344 2013-08-06] (Intel Corporation)
R3 kbfiltr; C:\WINDOWS\System32\drivers\kbfiltr.sys [17280 2012-08-06] ( )
R3 MEIx64; C:\WINDOWS\system32\DRIVERS\TeeDriverx64.sys [99288 2013-10-23] (Intel Corporation)
R1 MpKsl66cd3455; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{0E234C07-1238-43CC-AA44-C0F0F861A8BA}\MpKsl66cd3455.sys [58120 2017-11-15] (Microsoft Corporation)
R3 RTSPER; C:\WINDOWS\system32\DRIVERS\RtsPer.sys [444632 2013-10-18] (Realsil Semiconductor Corporation)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [166288 2017-05-18] (Samsung Electronics Co., Ltd.)
S0 WdBoot; C:\WINDOWS\System32\drivers\WdBoot.sys [46600 2017-02-10] (Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\WdFilter.sys [274776 2017-01-12] (Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [117592 2017-01-12] (Microsoft Corporation)
U0 msahci; system32\drivers\msahci.sys [X]
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois - Créés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2017-11-15 19:24 - 2017-11-15 19:24 - 000019136 _____ C:\Users\Terry\Desktop\FRST.txt
2017-11-15 19:24 - 2017-11-15 19:24 - 000000000 ____D C:\Users\Terry\Desktop\FRST-OlderVersion
2017-11-13 18:54 - 2017-11-13 18:54 - 000000000 _____ C:\autoexec.bat
2017-11-13 18:49 - 2017-11-13 18:49 - 005189808 _____ (Enigma Software Group USA, LLC.) C:\Users\Terry\Downloads\SpyHunter-Installer.exe
2017-11-09 18:56 - 2017-08-17 17:35 - 000544424 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2017-11-07 20:23 - 2017-11-07 20:23 - 000000000 ____D C:\Users\Terry\AppData\Local\Tempzxpsign2fa12bee92eb71d1
2017-11-07 17:59 - 2017-11-07 17:59 - 000000000 ____D C:\Users\Terry\AppData\Local\Tempzxpsignd8355cbbcdad279d
2017-11-07 17:46 - 2017-11-07 17:46 - 000000000 ____D C:\Users\Terry\AppData\Local\Tempzxpsignb2ffd1e3ae5eac25
2017-11-07 17:44 - 2017-11-07 17:44 - 000000000 ____D C:\Users\Terry\AppData\Local\Tempzxpsigneaefce73485b6af5
2017-11-07 17:43 - 2017-11-07 17:43 - 000000000 ____D C:\Users\Terry\AppData\Local\Tempzxpsignc294c5e9a4afe6f3
2017-11-07 17:43 - 2017-11-07 17:43 - 000000000 ____D C:\Users\Terry\AppData\Local\Tempzxpsign6b1c5a6d802eb874
2017-11-07 17:43 - 2017-11-07 17:43 - 000000000 ____D C:\Users\Terry\AppData\Local\Tempzxpsign6a16f3c42002e2fe
2017-11-07 16:53 - 2017-11-07 16:53 - 000122872 _____ C:\Users\Terry\AppData\Local\GDIPFONTCACHEV1.DAT
2017-11-06 20:16 - 2017-11-06 20:16 - 000000000 ____D C:\Users\Terry\AppData\Local\Tempzxpsigne660dde72e68f5fb
2017-11-06 20:15 - 2017-11-06 20:15 - 000000000 ____D C:\Users\Terry\AppData\Local\Tempzxpsign73531115768276c4
2017-11-06 20:15 - 2017-11-06 20:15 - 000000000 ____D C:\Users\Terry\AppData\Local\Tempzxpsign5034612f4bb6a69e
2017-11-06 20:15 - 2017-11-06 20:15 - 000000000 ____D C:\Users\Terry\AppData\Local\Tempzxpsign3e9af28df9776d45
2017-11-06 20:15 - 2017-11-06 20:15 - 000000000 ____D C:\Users\Terry\AppData\Local\Tempzxpsign23e933342795e21b
2017-11-06 20:11 - 2017-11-06 20:11 - 000000000 ____D C:\Users\Terry\AppData\Local\Tempzxpsign3d16e80a7679f33f
2017-11-06 20:11 - 2017-11-06 20:11 - 000000000 ____D C:\Users\Terry\AppData\Local\Tempzxpsign0102dd0cf2e616f8
2017-11-06 18:29 - 2017-11-06 18:29 - 000002287 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2017-11-06 18:29 - 2017-11-06 18:29 - 000002275 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2017-11-06 18:27 - 2017-11-06 18:27 - 000003500 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2017-11-06 18:27 - 2017-11-06 18:27 - 000003372 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2017-11-06 18:21 - 2017-11-06 18:21 - 000077796 _____ C:\Users\Terry\Downloads\favoris_09_08_2017.html
2017-11-06 18:15 - 2017-11-15 19:24 - 000000000 ____D C:\FRST
2017-11-06 18:02 - 2017-11-06 18:02 - 000000573 _____ C:\DelFix.txt
2017-11-06 18:01 - 2017-11-15 19:24 - 002392576 _____ (Farbar) C:\Users\Terry\Desktop\FRST64.exe
2017-11-06 17:23 - 2017-11-06 17:23 - 000000000 ____D C:\Users\Terry\AppData\Local\Tempzxpsign37b20bb4f58d462f
2017-11-06 17:20 - 2017-11-06 17:20 - 000000000 ____D C:\Users\Terry\AppData\Local\Tempzxpsigne11d4985396de39a
2017-11-06 17:20 - 2017-11-06 17:20 - 000000000 ____D C:\Users\Terry\AppData\Local\Tempzxpsigna3b4da5719081584
2017-11-06 17:20 - 2017-11-06 17:20 - 000000000 ____D C:\Users\Terry\AppData\Local\Tempzxpsign79dd79ff8c4e02e7
2017-11-04 02:01 - 2017-11-04 02:01 - 000000000 ____D C:\Users\Terry\AppData\LocalLow\uTorrent
2017-11-04 02:00 - 2017-11-04 02:01 - 069949107 _____ C:\Users\Terry\Downloads\free-mahjong-game-in-poculis.dmg
2017-10-26 13:49 - 2017-10-26 13:50 - 000485136 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2017-10-26 13:03 - 2017-10-26 13:04 - 006122506 _____ C:\Users\Terry\Downloads\puresims-kitchenclutter.rar
2017-10-26 13:03 - 2017-10-26 13:03 - 010990041 _____ C:\Users\Terry\Downloads\Kitchen Clutter 3 by viikiita .rar
2017-10-25 19:17 - 2017-10-25 19:18 - 026291247 _____ C:\Users\Terry\Downloads\Mincsims-MXIMS Collaboration Part 2.7z
2017-10-25 19:15 - 2017-10-25 19:18 - 062744891 _____ C:\Users\Terry\Downloads\PC-TS4-MCA-Separated.rar
2017-10-25 19:14 - 2017-10-25 19:18 - 077848913 _____ C:\Users\Terry\Downloads\PC-TS4-HamptonsHideaway-Separated.rar
2017-10-25 19:14 - 2017-10-25 19:16 - 039005617 _____ C:\Users\Terry\Downloads\PC-TS4-SerenityBathroom-Separated.rar
2017-10-25 12:26 - 2017-10-25 12:27 - 007002324 _____ C:\Users\Terry\Downloads\DaraS_LaundryDecorSet_20316.zip
2017-10-25 12:25 - 2017-10-25 12:29 - 066973616 _____ C:\Users\Terry\Downloads\PC-TS4-BaysideBedroomSet-Merged.rar
2017-10-25 12:25 - 2017-10-25 12:28 - 039584538 _____ C:\Users\Terry\Downloads\DaraS_KitchenDecorSet_070216.zip
2017-10-25 12:24 - 2017-10-25 12:27 - 087487454 _____ C:\Users\Terry\Downloads\PC-TS4-MyraLiving-Separated.rar
2017-10-25 12:24 - 2017-10-25 12:27 - 087456727 _____ C:\Users\Terry\Downloads\PC-TS4-MyraLiving-Merged.rar
2017-10-25 12:24 - 2017-10-25 12:25 - 012424923 _____ C:\Users\Terry\Downloads\Mio Livingroom Pillows.rar
2017-10-25 12:23 - 2017-10-25 12:26 - 025195056 _____ C:\Users\Terry\Downloads\Tropical Table Clothes by viikiita.rar
2017-10-25 12:23 - 2017-10-25 12:23 - 012575482 _____ C:\Users\Terry\Downloads\DaraS_TableclothSet_130116.zip
2017-10-24 19:33 - 2017-10-24 19:33 - 003491156 _____ C:\Users\Terry\Downloads\leo-decor-bomber-jacket.package
2017-10-24 19:28 - 2017-10-24 19:29 - 021223783 _____ C:\Users\Terry\Downloads\MXIMS April 3rd Set.7z
2017-10-24 19:28 - 2017-10-24 19:29 - 011568095 _____ C:\Users\Terry\Downloads\MXIMS KONIG Bedroom.7z
2017-10-24 19:28 - 2017-10-24 19:28 - 009226594 _____ C:\Users\Terry\Downloads\MXIMS Mono Workstation.7z
2017-10-24 19:27 - 2017-10-24 19:28 - 029123271 _____ C:\Users\Terry\Downloads\MXIMS SK8 or Cry.7z
2017-10-24 19:27 - 2017-10-24 19:28 - 012015376 _____ C:\Users\Terry\Downloads\MXIMS Apple iMac Pro 27 2017 Pack.7z
2017-10-24 19:27 - 2017-10-24 19:27 - 015440805 _____ C:\Users\Terry\Downloads\MXIMS MCM Office #6.7z
2017-10-24 19:27 - 2017-10-24 19:27 - 008093928 _____ C:\Users\Terry\Downloads\MXIMS 10-04.7z
2017-10-24 19:27 - 2017-10-24 19:27 - 004008627 _____ C:\Users\Terry\Downloads\MXIMS Larina Bedroom.7z
2017-10-24 19:26 - 2017-10-24 19:27 - 004861560 _____ C:\Users\Terry\Downloads\iyaS_TS4OfficeAccessories.zip
2017-10-24 19:25 - 2017-10-24 19:25 - 021940670 _____ C:\Users\Terry\Downloads\MXIMS 10-10.7z
2017-10-24 19:24 - 2017-10-24 19:26 - 046555320 _____ C:\Users\Terry\Downloads\False Creek Home Part 1.rar
2017-10-24 19:22 - 2017-10-24 19:22 - 000751208 _____ C:\Users\Terry\Downloads\javabeandreams_autumnbanner.package
2017-10-24 19:22 - 2017-10-24 19:22 - 000446162 _____ C:\Users\Terry\Downloads\javabeandreams_floralbanner.package
2017-10-24 19:21 - 2017-10-24 19:21 - 014632445 _____ C:\Users\Terry\Downloads\WINGS HAIR TS4 OS1023 F.package
2017-10-22 00:03 - 2017-11-06 18:25 - 000000140 _____ C:\WINDOWS\Reimage.ini
2017-10-21 17:52 - 2017-10-21 17:53 - 000002022 _____ C:\Users\Terry\Desktop\SIMS 4.txt
2017-10-17 17:01 - 2017-11-13 19:56 - 000000000 ____D C:\Users\Terry\Downloads\LAST
2017-10-17 16:10 - 2017-10-17 16:10 - 000001251 _____ C:\Users\Terry\Desktop\The Sims 4.lnk
2017-10-17 16:06 - 2017-10-17 16:06 - 000000000 ____D C:\ProgramData\Origin
2017-10-17 11:45 - 2017-10-17 11:45 - 126925120 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT-KB890830.exe
2017-10-17 11:44 - 2017-09-14 20:30 - 007439704 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2017-10-17 11:44 - 2017-09-14 20:30 - 001737600 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2017-10-17 11:44 - 2017-09-14 20:29 - 001502000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2017-10-17 11:44 - 2017-09-14 02:18 - 001384216 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2017-10-17 11:44 - 2017-09-14 02:14 - 001124384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2017-10-17 11:44 - 2017-09-13 14:32 - 000445952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\nwifi.sys
2017-10-17 11:44 - 2017-09-13 14:31 - 000445952 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansec.dll
2017-10-17 11:44 - 2017-09-13 14:27 - 000384000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlansec.dll
2017-10-17 11:44 - 2017-09-09 19:53 - 022361864 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2017-10-17 11:44 - 2017-09-09 18:55 - 019790760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2017-10-17 11:44 - 2017-09-09 18:38 - 000154112 _____ (Microsoft Corporation) C:\WINDOWS\system32\TabSvc.dll
2017-10-17 11:44 - 2017-09-09 17:10 - 003631616 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2017-10-17 11:44 - 2017-09-09 16:49 - 002749952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2017-10-17 11:44 - 2017-09-09 16:47 - 014466560 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2017-10-17 11:44 - 2017-09-09 16:21 - 012879360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2017-10-17 11:44 - 2017-09-09 14:13 - 000640512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mswstr10.dll
2017-10-17 11:44 - 2017-09-09 14:13 - 000345088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msexcl40.dll
2017-10-17 11:44 - 2017-09-09 04:50 - 002013016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2017-10-17 11:44 - 2017-09-09 04:50 - 001364552 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32.dll
2017-10-17 11:44 - 2017-09-08 19:21 - 004168192 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2017-10-17 11:44 - 2017-09-08 17:57 - 001084928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32.dll
2017-10-17 11:44 - 2017-09-07 22:33 - 000686592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
2017-10-17 11:44 - 2017-09-07 22:33 - 000415744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv.sys
2017-10-17 11:44 - 2017-09-07 22:32 - 000285184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb10.sys
2017-10-17 11:44 - 2017-09-07 22:17 - 000088064 _____ (Microsoft Corporation) C:\WINDOWS\system32\MshtmlDac.dll
2017-10-17 11:44 - 2017-09-07 22:15 - 002902528 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2017-10-17 11:44 - 2017-09-07 22:08 - 025729536 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2017-10-17 11:44 - 2017-09-07 22:00 - 000817664 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2017-10-17 11:44 - 2017-09-07 21:40 - 005982208 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2017-10-17 11:44 - 2017-09-07 21:10 - 000807936 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2017-10-17 11:44 - 2017-09-07 21:08 - 002134528 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2017-10-17 11:44 - 2017-09-07 21:08 - 000656896 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll
2017-10-17 11:44 - 2017-09-07 20:44 - 015262720 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2017-10-17 11:44 - 2017-09-07 20:40 - 003240960 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2017-10-17 11:44 - 2017-09-07 20:27 - 001548288 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2017-10-17 11:44 - 2017-09-07 20:10 - 000499200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2017-10-17 11:44 - 2017-09-07 20:04 - 020267008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2017-10-17 11:44 - 2017-09-07 20:03 - 002292736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2017-10-17 11:44 - 2017-09-07 19:58 - 000663040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2017-10-17 11:44 - 2017-09-07 19:29 - 004547072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2017-10-17 11:44 - 2017-09-07 19:26 - 000694784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2017-10-17 11:44 - 2017-09-07 19:25 - 002058752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2017-10-17 11:44 - 2017-09-07 19:24 - 000499200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnsapi.dll
2017-10-17 11:44 - 2017-09-07 19:17 - 013677568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2017-10-17 11:44 - 2017-09-07 19:01 - 002767872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2017-10-17 11:44 - 2017-09-07 18:57 - 001316864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2017-10-17 11:44 - 2017-08-13 20:48 - 000202592 _____ (Microsoft Corporation) C:\WINDOWS\system32\basecsp.dll
2017-10-17 11:44 - 2017-08-13 18:52 - 000174944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\basecsp.dll
2017-10-17 11:44 - 2017-08-13 18:10 - 000277504 _____ (Microsoft Corporation) C:\WINDOWS\system32\scksp.dll
2017-10-17 11:44 - 2017-08-13 17:33 - 000252416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scksp.dll
2017-10-17 11:44 - 2017-08-11 03:20 - 001436672 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2017-10-17 11:44 - 2017-08-11 02:57 - 000180224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authz.dll
2017-10-17 11:44 - 2017-08-06 22:20 - 000542720 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll
2017-10-17 11:44 - 2017-08-06 22:13 - 000713216 _____ (Microsoft Corporation) C:\WINDOWS\system32\nshwfp.dll
2017-10-17 11:44 - 2017-08-06 08:08 - 000561664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nshwfp.dll
2017-10-17 11:44 - 2017-08-02 03:19 - 000358912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wldap32.dll
2017-10-17 11:44 - 2017-08-01 09:25 - 000324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Wldap32.dll
2017-10-17 11:43 - 2017-09-09 14:13 - 000008704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjint40.dll
2017-10-17 11:43 - 2017-09-08 19:15 - 000148480 _____ (Microsoft Corporation) C:\WINDOWS\system32\t2embed.dll
2017-10-17 11:43 - 2017-09-08 18:39 - 000113152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\t2embed.dll
2017-10-17 11:43 - 2017-09-07 22:32 - 000243200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srvnet.sys
2017-10-17 11:43 - 2017-09-07 22:17 - 000576512 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2017-10-17 11:43 - 2017-09-07 21:32 - 000092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2017-10-17 11:43 - 2017-09-07 21:31 - 000145408 _____ (Microsoft Corporation) C:\WINDOWS\system32\iepeers.dll
2017-10-17 11:43 - 2017-09-07 21:29 - 000315392 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll
2017-10-17 11:43 - 2017-09-07 21:21 - 001033216 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcomm.dll
2017-10-17 11:43 - 2017-09-07 21:13 - 000262144 _____ (Microsoft Corporation) C:\WINDOWS\system32\webcheck.dll
2017-10-17 11:43 - 2017-09-07 21:11 - 000380416 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2017-10-17 11:43 - 2017-09-07 21:10 - 000726528 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2017-10-17 11:43 - 2017-09-07 20:54 - 000329216 _____ (Microsoft Corporation) C:\WINDOWS\system32\srvsvc.dll
2017-10-17 11:43 - 2017-09-07 20:17 - 000800768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2017-10-17 11:43 - 2017-09-07 20:09 - 000064000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MshtmlDac.dll
2017-10-17 11:43 - 2017-09-07 19:39 - 000076288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmled.dll
2017-10-17 11:43 - 2017-09-07 19:38 - 000128000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iepeers.dll
2017-10-17 11:43 - 2017-09-07 19:37 - 000279040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtrans.dll
2017-10-17 11:43 - 2017-09-07 19:33 - 000880640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcomm.dll
2017-10-17 11:43 - 2017-09-07 19:29 - 000230400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webcheck.dll
2017-10-17 11:43 - 2017-09-07 19:27 - 000331776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2017-10-17 11:43 - 2017-09-07 18:57 - 000710144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2017-10-17 11:43 - 2017-08-11 03:54 - 000445440 _____ (Microsoft Corporation) C:\WINDOWS\system32\certcli.dll
2017-10-17 11:43 - 2017-08-11 03:22 - 000324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certcli.dll
2017-10-17 11:43 - 2017-08-11 03:16 - 000275968 _____ (Microsoft Corporation) C:\WINDOWS\system32\authz.dll
2017-10-17 11:43 - 2017-08-06 22:50 - 001080320 _____ (Microsoft Corporation) C:\WINDOWS\system32\IKEEXT.DLL
2017-10-17 11:15 - 2017-10-17 11:33 - 000000000 ____D C:\Program Files (x86)\The Sims 4
2017-10-17 11:15 - 2017-10-17 11:18 - 000000000 ____D C:\Users\Terry\Documents\Electronic Arts
2017-10-17 11:13 - 2017-10-17 11:13 - 000000000 ____D C:\WINDOWS\SysWOW64\directx
2017-10-17 11:11 - 2017-10-17 11:11 - 000000000 ____D C:\Users\Terry\Desktop\Bureautique
2017-10-17 07:31 - 2017-10-17 07:31 - 000725157 _____ C:\WINDOWS\unins000.exe
2017-10-17 07:24 - 2017-10-17 07:31 - 000003550 _____ C:\WINDOWS\unins000.dat
==================== Un mois - Modifiés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2017-11-15 17:33 - 2013-08-22 16:20 - 000000000 ____D C:\WINDOWS\CbsTemp
2017-11-15 17:19 - 2017-08-09 01:39 - 000003924 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{61790557-44E5-4AB4-A4F1-89C534EDD646}
2017-11-15 17:18 - 2017-08-10 19:26 - 000000000 ____D C:\Users\Terry\AppData\Local\Adobe
2017-11-15 17:17 - 2017-08-10 19:49 - 000000000 ___RD C:\Users\Terry\Creative Cloud Files
2017-11-15 17:16 - 2017-08-15 18:50 - 000000000 ____D C:\Program Files (x86)\Steam
2017-11-15 17:15 - 2017-08-09 01:38 - 000000000 __RDO C:\Users\Terry\SkyDrive
2017-11-14 14:24 - 2013-12-13 12:11 - 000813248 _____ C:\WINDOWS\system32\perfh00C.dat
2017-11-14 14:24 - 2013-12-13 12:11 - 000159750 _____ C:\WINDOWS\system32\perfc00C.dat
2017-11-14 14:24 - 2013-12-13 05:09 - 001826754 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2017-11-14 14:24 - 2013-08-22 14:36 - 000000000 ____D C:\WINDOWS\Inf
2017-11-13 21:41 - 2013-08-22 15:45 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2017-11-13 21:40 - 2017-08-11 01:04 - 000000000 ____D C:\ProgramData\AVAST Software
2017-11-13 21:40 - 2013-08-22 14:25 - 000262144 ___SH C:\WINDOWS\system32\config\BBI
2017-11-13 18:53 - 2017-08-09 01:32 - 000000000 ____D C:\Users\Terry
2017-11-12 21:03 - 2017-08-10 21:22 - 000409088 ___SH C:\Users\Terry\Desktop\Thumbs.db
2017-11-12 19:46 - 2017-08-11 02:24 - 000000000 ____D C:\Program Files (x86)\Intel Driver Update Utility
2017-11-09 19:24 - 2017-08-09 01:43 - 000003598 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-4086042525-2686106614-532530828-1001
2017-11-09 18:57 - 2013-08-22 14:25 - 000262144 ___SH C:\WINDOWS\system32\config\ELAM
2017-11-08 22:18 - 2017-08-10 19:17 - 000000000 ____D C:\Users\Terry\Desktop\Terry
2017-11-08 19:23 - 2013-08-22 16:36 - 000000000 ____D C:\WINDOWS\system32\NDF
2017-11-07 17:58 - 2017-08-13 13:25 - 000147968 ___SH C:\Users\Terry\Downloads\Thumbs.db
2017-11-06 18:27 - 2017-08-09 01:40 - 000000000 ____D C:\Users\Terry\AppData\Local\Deployment
2017-11-06 18:27 - 2017-08-09 01:40 - 000000000 ____D C:\Program Files (x86)\Google
2017-11-04 03:31 - 2017-10-15 21:49 - 000000000 ____D C:\Users\Terry\AppData\Roaming\uTorrent
2017-11-04 01:41 - 2017-08-11 15:19 - 000835568 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2017-11-04 01:41 - 2017-08-11 15:19 - 000177648 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2017-11-04 01:08 - 2017-08-16 09:47 - 000000000 ____D C:\Users\Terry\AppData\Roaming\Arc
2017-11-04 01:08 - 2017-08-11 02:26 - 000003180 _____ C:\WINDOWS\System32\Tasks\RtHDVBg_ListenToDevice
2017-11-04 01:08 - 2017-08-10 20:16 - 000002784 _____ C:\WINDOWS\System32\Tasks\CCleanerSkipUAC
2017-11-04 01:08 - 2017-08-10 19:26 - 000003496 _____ C:\WINDOWS\System32\Tasks\AdobeAAMUpdater-1.0-MicrosoftAccount-terry.thor@live.fr
2017-11-04 01:08 - 2014-03-26 02:17 - 000003538 _____ C:\WINDOWS\System32\Tasks\ASUS Smart Gesture Launcher
2017-11-04 01:08 - 2014-03-26 02:17 - 000003266 _____ C:\WINDOWS\System32\Tasks\AsusVibeSchedule
2017-11-04 01:08 - 2014-03-26 02:08 - 000003594 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-4086042525-2686106614-532530828-500
2017-11-04 01:08 - 2014-03-26 02:01 - 000003168 _____ C:\WINDOWS\System32\Tasks\RTKCPL
2017-11-04 01:08 - 2014-03-26 02:01 - 000003152 _____ C:\WINDOWS\System32\Tasks\RtHDVBg
2017-10-26 13:47 - 2017-08-11 02:28 - 000000000 ____D C:\Users\Terry\AppData\Local\CrashDumps
2017-10-23 10:26 - 2017-08-16 23:48 - 000000000 ____D C:\Users\Terry\AppData\Local\Discord
2017-10-23 10:25 - 2017-08-16 23:48 - 000000000 ____D C:\Users\Terry\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Discord Inc
2017-10-20 20:55 - 2013-08-22 16:36 - 000000000 ____D C:\WINDOWS\rescache
2017-10-19 18:06 - 2013-08-22 16:36 - 000000000 ____D C:\WINDOWS\AppReadiness
2017-10-18 19:53 - 2013-08-22 16:36 - 000000000 ___RD C:\WINDOWS\ToastData
2017-10-17 11:47 - 2017-08-10 19:14 - 000000000 ____D C:\WINDOWS\system32\MRT
2017-10-17 11:45 - 2017-08-10 19:14 - 126925120 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
==================== Fichiers à la racine de certains dossiers =======
2014-03-26 02:00 - 2014-03-26 02:00 - 000000000 ____H () C:\ProgramData\DP45977C.lfl
2013-12-13 05:09 - 2012-09-07 12:40 - 000000256 _____ () C:\ProgramData\SetStretch.cmd
2013-12-13 05:09 - 2009-07-22 11:04 - 000024576 _____ () C:\ProgramData\SetStretch.exe
2013-12-13 05:09 - 2012-09-07 12:37 - 000000103 _____ () C:\ProgramData\SetStretch.VBS
Certains fichiers dans TEMP:
====================
2017-11-06 18:05 - 2017-11-06 18:05 - 013489912 _____ (Reimage) C:\Users\Terry\AppData\Local\Temp\ReimagePackage.exe
==================== Bamital & volsnap ======================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
C:\WINDOWS\system32\winlogon.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\wininit.exe => Le fichier est signé numériquement
C:\WINDOWS\explorer.exe => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\explorer.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\svchost.exe => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\svchost.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\services.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\User32.dll => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\User32.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\userinit.exe => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\userinit.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\rpcss.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\dnsapi.dll => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\dnsapi.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\Drivers\volsnap.sys => Le fichier est signé numériquement
LastRegBack: 2017-11-10 16:55
==================== Fin de FRST.txt ============================