Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x86) Version: 19-11-2017
Exécuté par Jeff (administrateur) sur ASUSJEFF (21-11-2017 09:43:22)
Exécuté depuis C:\Users\Jeff\Downloads
Profils chargés: Jeff (Profils disponibles: Jeff)
Platform: Microsoft Windows 10 Professionnel Version 1607 14393.1884 (X86) Langue: Français (France)
Internet Explorer Version 11 (Navigateur par défaut: Chrome)
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(AMD) C:\WINDOWS\System32\atiesrxx.exe
(AMD) C:\WINDOWS\System32\atieclxx.exe
(ASUSTek Computer Inc.) C:\Program Files\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
(ASUSTek Computer Inc.) C:\Program Files\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
(Acronis) C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe
(ArcSoft Inc.) C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
(Acronis) C:\Program Files\Common Files\Acronis\CDP\afcdpsrv.exe
() C:\WINDOWS\System32\FspService.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\VS7Debug\mdm.exe
(Panasonic System Networks Co., Ltd.) C:\Program Files\Panasonic\LocalCom\LMSRVNT.EXE
(DEVGURU Co., LTD.) C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(SanDisk) C:\Program Files\SanDisk\SSD Dashboard\SanDiskSSDDashboardService.exe
(TeamViewer GmbH) C:\Program Files\TeamViewer\TeamViewer_Service.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(ASUSTek Computer Inc.) C:\Program Files\ASUS\ATK Package\ATK Hotkey\HControl.exe
(ASUSTek Computer Inc.) C:\Program Files\ASUS\ATK Package\ATK Media\DMedia.exe
(ASUSTek Computer Inc.) C:\Program Files\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
(Microsoft Corporation) C:\WINDOWS\System32\vds.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtHDVBg.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
() C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.8.487.0_x86__kzf8qxf38zg5c\SkypeHost.exe
(Google Inc.) C:\Program Files\Google\Update\1.3.33.7\GoogleCrashHandler.exe
(Panasonic System Networks Co., Ltd. ) C:\Program Files\Panasonic\MFStation\PCCMFSDM.exe
(Panasonic System Networks Co., Ltd.) C:\Program Files\Panasonic\MFStation\PCMFSMLM.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(Panasonic System Networks Co., Ltd.) C:\WINDOWS\System32\PCCMFLPD.exe
(TODO:) C:\Program Files\FSP\FspCtrl.exe
(Wondershare) C:\Program Files\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe
() C:\Program Files\Wondershare\Video Converter Ultimate\WSVCUUpdateHelper.exe
(Spotify Ltd) C:\Users\Jeff\AppData\Roaming\Spotify\SpotifyWebHelper.exe
(Microsoft Corporation) C:\Program Files\Windows Live\Mail\wlmail.exe
(Microsoft Corporation) C:\Program Files\Windows Live\Contacts\wlcomm.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe
(Acronis) C:\Program Files\Common Files\Acronis\SyncAgent\syncagentsrv.exe
() C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1705.1301.0_x86__8wekyb3d8bbwe\Calculator.exe
() C:\Program Files\WindowsApps\Microsoft.WindowsMaps_5.1705.1391.0_x86__8wekyb3d8bbwe\Maps.exe
(Microsoft Corporation) C:\WINDOWS\System32\smartscreen.exe
==================== Registre (Avec liste blanche) ===========================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [SMSERIAL] => C:\Program Files\Motorola\SMSERIAL\sm56hlpr.exe [1458176 2009-10-26] (Motorola Inc.)
HKLM\...\Run: [ISUSScheduler] => C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe [81920 2004-06-14] (InstallShield Software Corporation)
HKLM\...\Run: [Panasonic Device Manager for Multi-Function Station software] => C:\Program Files\Panasonic\MFStation\PCCMFSDM.exe [139264 2012-06-25] (Panasonic System Networks Co., Ltd. )
HKLM\...\Run: [Panasonic PCFAX for Multi-Function Station software] => C:\Program Files\Panasonic\MFStation\KmPcFax.exe [819200 2012-05-18] (Panasonic System Networks Co., Ltd. )
HKLM\...\Run: [Panasonic IP Address Checker for Multi-Function Station software] => C:\Program Files\Panasonic\MFStation\PccChgIP.exe [139264 2011-01-21] (Panasonic System Networks Co., Ltd. )
HKLM\...\Run: [Panasonic LPD Manager] => C:\Program Files\Panasonic\MFStation\PCMFSMLM.exe [155648 2013-06-03] (Panasonic System Networks Co., Ltd.)
HKLM\...\Run: [BCD3000] => C:\WINDOWS\system32\bcd3kcpan.exe [548864 2015-08-22] (Behringer Spezielle Studiotechnik GmbH)
HKLM\...\Run: [AcronisTibMounterMonitor] => C:\Program Files\Common Files\Acronis\TibMounter\TibMounterMonitor.exe [691520 2015-09-08] (Acronis International GmbH)
HKLM\...\Run: [TrueImageMonitor.exe] => C:\Program Files\Acronis\TrueImageHome\TrueImageMonitor.exe [7492712 2015-09-14] ()
HKLM\...\Run: [Acronis Scheduler2 Service] => C:\Program Files\Common Files\Acronis\Schedule2\schedhlp.exe [497064 2015-09-14] (Acronis)
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [334896 2015-04-30] (Oracle Corporation)
HKLM\...\Run: [Eraser] => C:\Program Files\Eraser\Eraser.exe [1074600 2016-08-28] (The Eraser Project)
HKLM\...\Run: [WindowsDefender] => C:\Program Files\Windows Defender\MSASCuiL.exe [483840 2017-04-28] (Microsoft Corporation)
HKLM\...\Run: [fspuip] => C:\Program Files\FSP\fspuip.exe [5478192 2015-09-09] (Sentelic Corporation)
HKLM\...\Run: [fspctrl] => C:\Program Files\FSP\fspctrl.exe [1638704 2015-09-09] (TODO:)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3523240 2015-08-03] (Synaptics Incorporated)
HKLM\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [2133216 2017-03-23] (Wondershare)
HKLM\...\Run: [WSVCUUpdateHelper.exe] => C:\Program Files\Wondershare\Video Converter Ultimate\WSVCUUpdateHelper.exe [17408 2017-09-25] ()
HKU\S-1-5-21-2410229435-3982147707-860292190-1001\...\Run: [] => C:\Program Files\Samsung\Kies3\FirmwareUpdate\Kies3PDLR.exe [1023664 2016-03-25] (Samsung)
HKU\S-1-5-21-2410229435-3982147707-860292190-1001\...\Run: [GoogleDriveSync] => C:\Program Files\Google\Drive\googledrivesync.exe [25624208 2017-11-10] (Google)
HKU\S-1-5-21-2410229435-3982147707-860292190-1001\...\Run: [ISUSPM Startup] => C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe [221184 2004-06-14] (InstallShield Software Corporation)
HKU\S-1-5-21-2410229435-3982147707-860292190-1001\...\Run: [ShowBatteryBar] => C:\Program Files\BatteryBar\ShowBatteryBar.exe [90624 2014-09-19] ()
HKU\S-1-5-21-2410229435-3982147707-860292190-1001\...\Run: [Google Update] => C:\Users\Jeff\AppData\Local\Google\Update\1.3.33.7\GoogleUpdateCore.exe
HKU\S-1-5-21-2410229435-3982147707-860292190-1001\...\Run: [Google Photos Backup] => C:\Users\Jeff\AppData\Local\Programs\Google\Google Photos Backup\Google Photos Backup.exe [3790936 2016-04-08] (Google, Inc)
HKU\S-1-5-21-2410229435-3982147707-860292190-1001\...\Run: [BlueStacks Agent] => C:\Program Files\Bluestacks\HD-Agent.exe
HKU\S-1-5-21-2410229435-3982147707-860292190-1001\...\Run: [Spotify Web Helper] => C:\Users\Jeff\AppData\Roaming\Spotify\SpotifyWebHelper.exe [777840 2017-11-02] (Spotify Ltd)
HKU\S-1-5-21-2410229435-3982147707-860292190-1001\...\Policies\Explorer: [NoLowDiskSpaceChecks] False
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Windows Live Mail.lnk [2013-01-16]
ShortcutTarget: Windows Live Mail.lnk -> C:\Program Files\Windows Live\Mail\wlmail.exe (Microsoft Corporation)
Startup: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\SynRemoveUserSettings.bat [2015-08-03] ()
Startup: C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\SynRemoveUserSettings.bat [2015-08-03] ()
GroupPolicy: Restriction - Chrome <==== ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Hosts: Il y a plus d'un élément dans hosts. Voir la section Hosts de Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{54f1062c-a888-43f9-b12d-ce77dbaa3787}: [DhcpNameServer] 192.168.1.254
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com
HKU\S-1-5-21-2410229435-3982147707-860292190-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.google.fr/
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: Adblock Plus for IE Browser Helper Object -> {FFCB3198-32F3-4E8B-9539-4324694ED664} -> C:\Program Files\Adblock Plus for IE\AdblockPlus32.dll [2017-01-03] (Eyeo GmbH)
Toolbar: HKU\S-1-5-21-2410229435-3982147707-860292190-1001 -> Pas de nom - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - Pas de fichier
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_71-windows-i586.cab
Handler: cdo - {CD00020A-8B95-11D1-82DB-00C04FB1625D} - C:\Program Files\Common Files\Microsoft Shared\Web Folders\PKMCDO.DLL [2004-01-29] (Microsoft Corporation)
Handler: ms-itss - {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Program Files\Common Files\Microsoft Shared\Information Retrieval\MSITSS.DLL [2000-04-19] (Microsoft Corporation)
FireFox:
========
FF DefaultProfile: 6l85cll9.default
FF ProfilePath: C:\Users\Jeff\AppData\Roaming\Mozilla\Firefox\Profiles\6l85cll9.default [2017-10-14]
FF Homepage: Mozilla\Firefox\Profiles\6l85cll9.default -> www.google.fr
FF Extension: (Cookies Export/import) - C:\Users\Jeff\AppData\Roaming\Mozilla\Firefox\Profiles\6l85cll9.default\Extensions\CookiesIE@yahoo.com.xpi [2017-10-14] [Lagacy]
FF ProfilePath: C:\Users\Jeff\AppData\Roaming\Flickr\Flickr Uploadr\Profiles\ugm18xa1.default [2014-02-15]
FF HKU\S-1-5-21-2410229435-3982147707-860292190-1001\...\Firefox\Extensions: [{57319509-7821-41B0-9FDF-3B58F146AE33}] - c:\program files\copernic desktop search - home\firefoxconnector
FF Extension: (Copernic Desktop Search - Search Firefox content) - c:\program files\copernic desktop search - home\firefoxconnector [2013-03-06] [Lagacy] [non signé]
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF32_27_0_0_187.dll [2017-11-15] ()
FF Plugin: @Diginext.fr/VirtualGeoGP -> C:\Program Files\VirtualGeo3-GP\WebPlugin\Win32\npQtAPI3DPlugin.dll [2015-05-07] (DIGINEXT)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] ( Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-15] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-15] (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.0.7 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.2 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.3 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.5 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2017-11-04] (Adobe Systems Inc.)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll [Pas de fichier]
FF Plugin: JFGuide -> C:\Program Files\NetSurveillance\CMS\npGuide.dll [2014-10-30] ()
FF Plugin: JFWeb -> C:\Program Files\NetSurveillance\CMS\npWebPlugin.dll [2014-09-16] ()
FF Plugin HKU\S-1-5-21-2410229435-3982147707-860292190-1001: @tools.google.com/Google Update;version=3 -> C:\Users\Jeff\AppData\Local\Google\Update\1.3.33.7\npGoogleUpdate3.dll [Pas de fichier]
FF Plugin HKU\S-1-5-21-2410229435-3982147707-860292190-1001: @tools.google.com/Google Update;version=9 -> C:\Users\Jeff\AppData\Local\Google\Update\1.3.33.7\npGoogleUpdate3.dll [Pas de fichier]
Chrome:
=======
CHR DefaultProfile: Default
CHR HomePage: Default -> hxxp://www.google.fr/
CHR StartupUrls: Default -> "hxxp://www.google.fr/"
CHR DefaultSearchURL: Default -> hxxps://spiralstab.com/search?q={searchTerms}
CHR DefaultSearchKeyword: Default -> SpiralsTab
CHR DefaultSuggestURL: Default -> hxxps://spiralstab.com/suggestions.php?q={searchTerms}
CHR Profile: C:\Users\Jeff\AppData\Local\Google\Chrome\User Data\Default [2017-11-21]
CHR Extension: (Adblock Plus) - C:\Users\Jeff\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2017-09-27]
CHR Extension: (Barre d'Outils Priceless Specials) - C:\Users\Jeff\AppData\Local\Google\Chrome\User Data\Default\Extensions\ligadippipkigjepjkefpdagcfhgciee [2016-11-30]
CHR Extension: (Page Captures d'écran Web - Fireshot) - C:\Users\Jeff\AppData\Local\Google\Chrome\User Data\Default\Extensions\mcbpblocgmgfnpjjppndjkmgjaogfceg [2017-08-30]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Jeff\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-08-22]
CHR Extension: (Chrome Media Router) - C:\Users\Jeff\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-11-16]
CHR Profile: C:\Users\Jeff\AppData\Local\Google\Chrome\User Data\System Profile [2017-10-19]
CHR HKLM\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [ikaooahnheaoeceaipjcmnamnoleeblk] - hxxps://clients2.google.com/service/update2/crx
==================== Services (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 ACDaemon; C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [113152 2010-03-18] (ArcSoft Inc.)
R2 AcrSch2Svc; C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe [918872 2015-09-14] (Acronis)
R2 afcdpsrv; C:\Program Files\Common Files\Acronis\CDP\afcdpsrv.exe [4463960 2015-10-02] (Acronis)
R2 ASLDRService; C:\Program Files\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe [123704 2015-07-07] (ASUSTek Computer Inc.)
R2 ATKGFNEXSrv; C:\Program Files\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe [107320 2015-04-01] (ASUSTek Computer Inc.)
R2 FspSvc; C:\Windows\System32\FspService.exe [1593136 2015-09-09] ()
S3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [3303888 2017-01-20] (Malwarebytes)
S4 mmsminisrv; C:\Program Files\Common Files\Acronis\Infrastructure\mms_mini.exe [4884064 2015-08-11] (Acronis)
R2 Panasonic Local Printer Service; C:\Program Files\Panasonic\LocalCom\LMSRVNT.EXE [49152 2010-01-09] (Panasonic System Networks Co., Ltd.) [Fichier non signé]
R2 SanDisk SSD Dashboard Service; C:\Program Files\SanDisk\SSD Dashboard\SanDiskSSDDashboardService.exe [373760 2016-10-10] (SanDisk) [Fichier non signé]
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [1887272 2017-08-08] (Microsoft Corporation)
R2 ss_conn_service; C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [754784 2016-07-22] (DEVGURU Co., LTD.)
R2 syncagentsrv; C:\Program Files\Common Files\Acronis\SyncAgent\syncagentsrv.exe [7637744 2015-09-10] (Acronis)
R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [208552 2015-08-03] (Synaptics Incorporated)
R2 TeamViewer; C:\Program Files\TeamViewer\TeamViewer_Service.exe [10942704 2017-11-03] (TeamViewer GmbH)
S3 w7Svc; C:\Program Files\webcam 7\webcam7.Service.exe [3310192 2016-06-14] (Moonware Studios)
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [271488 2017-04-28] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [84912 2017-10-09] (Microsoft Corporation)
S3 WsDrvInst; C:\Program Files\Wondershare\Video Converter Ultimate\Transfer\DriverInstall.exe [89088 2017-09-25] (Wondershare) [Fichier non signé]
===================== Pilotes (Avec liste blanche) ======================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 Afc; C:\WINDOWS\System32\drivers\Afc.sys [18688 2006-11-10] (Arcsoft, Inc.)
R2 amwrtdrv; C:\WINDOWS\System32\amwrtdrv.sys [19768 2016-12-10] ()
R2 ASMMAP; C:\Program Files\ASUS\ATK Package\ATKGFNEX\ASMMAP.sys [16512 2015-05-08] (ASUS)
R3 AtiHDAudioService; C:\WINDOWS\system32\drivers\AtihdWB3.sys [82944 2015-07-15] (Advanced Micro Devices)
S0 Avgbootx; C:\WINDOWS\System32\DRIVERS\avgbootx.sys [19104 2015-03-27] (AVG Technologies CZ, s.r.o.)
R1 Avgdiskx; C:\WINDOWS\System32\DRIVERS\avgdiskx.sys [132576 2015-03-11] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSDriver; C:\WINDOWS\System32\DRIVERS\avgidsdriverx.sys [231856 2015-06-26] (AVG Technologies CZ, s.r.o.)
R0 AVGIDSHX; C:\WINDOWS\System32\DRIVERS\avgidshx.sys [190944 2015-05-12] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSShim; C:\WINDOWS\system32\DRIVERS\avgidsshimw8x.sys [29664 2015-05-14] (AVG Technologies CZ, s.r.o.)
R1 Avgldx86; C:\WINDOWS\System32\DRIVERS\avgldx86.sys [207328 2015-06-16] (AVG Technologies CZ, s.r.o.)
R0 Avglogx; C:\WINDOWS\System32\DRIVERS\avglogx.sys [290272 2015-05-07] (AVG Technologies CZ, s.r.o.)
R0 Avgmfx86; C:\WINDOWS\System32\DRIVERS\avgmfx86.sys [170464 2015-06-10] (AVG Technologies CZ, s.r.o.)
R0 Avgrkx86; C:\WINDOWS\System32\DRIVERS\avgrkx86.sys [35808 2015-03-20] (AVG Technologies CZ, s.r.o.)
R1 Avgwfpx; C:\WINDOWS\system32\DRIVERS\avgwfpx.sys [229352 2015-06-15] (AVG Technologies CZ, s.r.o.)
S3 BCD3000; C:\WINDOWS\system32\Drivers\BCD3000.SYS [42784 2015-08-22] (Behringer Spezielle Studiotechnik GmbH) [Fichier non signé]
S3 BCD3000WDM; C:\WINDOWS\system32\Drivers\BCD3000WDM.SYS [21856 2015-08-22] (Behringer Spezielle Studiotechnik GmbH) [Fichier non signé]
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [109456 2017-05-18] (Samsung Electronics Co., Ltd.)
R3 DVB7700ALL; C:\WINDOWS\System32\Drivers\dvb7700all.sys [678440 2015-08-02] (DiBcom)
R0 file_tracker; C:\WINDOWS\System32\DRIVERS\file_tracker.sys [234976 2015-10-02] (Acronis International GmbH)
S3 fspad_win732; C:\WINDOWS\system32\DRIVERS\fspad_win732.sys [168240 2015-09-09] (Sentelic Corporation)
R3 i8042HDR; C:\WINDOWS\system32\DRIVERS\i8042HDR.sys [13224 2006-10-20] (Chicony)
S3 MBAMSwissArmy; C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [220088 2017-11-20] (Malwarebytes)
S3 mcdevice; C:\WINDOWS\system32\DRIVERS\mcdevice.sys [331072 2011-05-19] (ShiningMorning Inc.)
R1 MpKsl49c426a4; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{DE10A1B2-2913-4626-8DB3-AFE2E50D03EA}\MpKsl49c426a4.sys [49504 2017-11-21] (Microsoft Corporation)
R3 MTsensor; C:\WINDOWS\System32\drivers\ATKACPI.sys [14392 2009-05-13] (ASUS)
S3 NetAdapterCx; C:\WINDOWS\System32\drivers\NetAdapterCx.sys [62976 2016-07-16] ()
R3 netwlv32; C:\WINDOWS\System32\drivers\netwlv32.sys [6637056 2016-07-16] (Intel Corporation)
S3 qcusbser; C:\WINDOWS\system32\DRIVERS\qcusbser.sys [205312 2013-01-16] (QUALCOMM Incorporated)
S3 RTL8187; C:\WINDOWS\System32\drivers\rtl8187.sys [375808 2010-01-07] (Realtek Semiconductor Corporation )
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [147344 2017-05-18] (Samsung Electronics Co., Ltd.)
R0 tib; C:\WINDOWS\System32\DRIVERS\tib.sys [690128 2015-10-02] (Acronis International GmbH)
R2 tib_mounter; C:\WINDOWS\system32\DRIVERS\tib_mounter.sys [150496 2015-10-02] (Acronis International GmbH)
S3 tnd; C:\WINDOWS\system32\DRIVERS\tnd.sys [371680 2015-10-02] (Acronis International GmbH)
R0 vidsflt53; C:\WINDOWS\System32\DRIVERS\vsflt53.sys [83392 2013-01-24] (Acronis)
S0 WdBoot; C:\WINDOWS\System32\drivers\WdBoot.sys [37912 2016-07-16] (Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\WdFilter.sys [244576 2016-07-16] (Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [100192 2016-07-16] (Microsoft Corporation)
S3 WUDFWpdMtp; C:\WINDOWS\system32\DRIVERS\WUDFRd.sys [161280 2016-07-16] (Microsoft Corporation)
R3 yukonw8; C:\WINDOWS\System32\drivers\yk63x86.sys [242688 2016-07-16] (Marvell)
S3 zghsdiag; C:\WINDOWS\system32\DRIVERS\zghsdiag.sys [113688 2011-07-15] (ZTE Incorporated)
S3 zghsmdm; C:\WINDOWS\system32\DRIVERS\zghsmdm.sys [113688 2011-07-15] (ZTE Incorporated)
S3 zghsnmea; C:\WINDOWS\system32\DRIVERS\zghsnmea.sys [113688 2011-07-15] (ZTE Incorporated)
S3 mr8980; \SystemRoot\system32\DRIVERS\mr8980.sys [X]
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois - Créés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2017-11-21 09:43 - 2017-11-21 09:44 - 000022881 _____ C:\Users\Jeff\Downloads\FRST.txt
2017-11-21 09:43 - 2017-11-21 09:43 - 000000000 ____D C:\FRST
2017-11-21 09:42 - 2017-11-21 09:43 - 001787904 _____ (Farbar) C:\Users\Jeff\Downloads\FRST.exe
2017-11-20 10:50 - 2017-11-20 11:53 - 000000000 ____D C:\Users\Jeff\Desktop\carte SD
2017-11-20 10:39 - 2017-11-20 10:39 - 000220088 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\4DE24D73.sys
2017-11-19 22:07 - 2017-11-19 22:07 - 000000000 ____D C:\Program Files\Adblock Plus for IE
2017-11-19 21:37 - 2017-11-19 21:37 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RogueKiller
2017-11-19 21:35 - 2017-11-19 21:37 - 036156920 _____ (Adlice Software ) C:\Users\Jeff\Downloads\setup.exe
2017-11-19 20:53 - 2017-11-19 21:14 - 000000000 ____D C:\Users\Jeff\AppData\Roaming\ZHP
2017-11-19 20:52 - 2017-11-19 20:52 - 000000000 ____D C:\Users\Jeff\AppData\Local\ZHP
2017-11-19 20:08 - 2017-11-19 20:08 - 000002288 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2017-11-19 11:56 - 2017-11-19 11:56 - 000000639 _____ C:\Users\Jeff\Downloads\pack seriales freemaker Beck Jungkook.rar
2017-11-19 10:53 - 2017-11-19 10:53 - 000000000 ____D C:\Users\Jeff\AppData\Local\FreemakeVideoConverter
2017-11-19 10:52 - 2017-11-19 19:55 - 000000000 ____D C:\ProgramData\Freemake
2017-11-19 10:52 - 2017-11-19 19:55 - 000000000 ____D C:\Program Files\Freemake
2017-11-19 10:50 - 2017-11-19 10:51 - 001013296 _____ (Ellora Assets Corporation ) C:\Users\Jeff\Downloads\FreemakeVideoConverterSetup.exe
2017-11-18 12:04 - 2017-11-18 12:04 - 000215384 _____ C:\Users\Jeff\Downloads\portables Conforama.pdf
2017-11-16 11:33 - 2017-11-16 11:33 - 000000000 ____D C:\ProgramData\ProductFeatures
2017-11-16 11:15 - 2017-11-16 11:32 - 000000000 ____D C:\Users\Jeff\AppData\Local\Wondershare
2017-11-16 11:15 - 2017-11-16 11:15 - 000000000 ____D C:\Program Files\Common Files\Wondershare
2017-11-16 11:14 - 2017-11-16 11:32 - 000000000 ____D C:\Users\Jeff\AppData\Roaming\Wondershare
2017-11-16 11:14 - 2017-11-16 11:32 - 000000000 ____D C:\ProgramData\Wondershare
2017-11-16 11:14 - 2017-11-16 11:14 - 000001250 _____ C:\Users\Public\Desktop\Wondershare Video Converter Ultimate.lnk
2017-11-16 11:14 - 2017-11-16 11:14 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wondershare
2017-11-16 11:14 - 2017-11-16 11:14 - 000000000 ____D C:\Program Files\Wondershare
2017-11-16 11:07 - 2017-11-19 20:59 - 000000000 ____D C:\Users\Jeff\Downloads\WS Video Converter Ultimate 10.1.0 (ask4pc)
2017-11-16 10:25 - 2017-11-16 10:25 - 001110564 _____ (Igor Pavlov) C:\Users\Jeff\Downloads\7z1604.exe
2017-11-16 10:25 - 2017-11-16 10:25 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
2017-11-16 10:25 - 2017-11-16 10:25 - 000000000 ____D C:\Program Files\7-Zip
2017-11-16 10:02 - 2017-11-16 10:24 - 115729994 _____ C:\Users\Jeff\Downloads\WS.Vid.C.Ult.10.1.0.(ask4pc).rar
2017-11-15 18:51 - 2017-11-15 18:51 - 003419055 _____ C:\Users\Jeff\Downloads\Religion de paix et d amour.mp4
2017-11-15 10:00 - 2017-11-02 00:06 - 000550240 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2017-11-15 10:00 - 2017-11-02 00:06 - 000116064 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2017-11-15 10:00 - 2017-11-01 23:50 - 001954144 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2017-11-15 10:00 - 2017-11-01 23:45 - 001896800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2017-11-15 10:00 - 2017-11-01 23:45 - 000550752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2017-11-15 10:00 - 2017-11-01 23:45 - 000342368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2017-11-15 10:00 - 2017-11-01 23:44 - 000557400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fvevol.sys
2017-11-15 10:00 - 2017-11-01 23:27 - 000051712 _____ (Microsoft Corporation) C:\WINDOWS\system32\usoapi.dll
2017-11-15 10:00 - 2017-11-01 23:26 - 000042496 _____ (Microsoft Corporation) C:\WINDOWS\system32\musdialoghandlers.dll
2017-11-15 10:00 - 2017-11-01 23:25 - 000206848 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2017-11-15 10:00 - 2017-11-01 23:24 - 000083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe
2017-11-15 10:00 - 2017-11-01 23:22 - 000822784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2017-11-15 10:00 - 2017-11-01 23:22 - 000427008 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2017-11-15 10:00 - 2017-11-01 23:21 - 012205056 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2017-11-15 10:00 - 2017-11-01 23:20 - 019415040 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2017-11-15 10:00 - 2017-11-01 23:20 - 018365952 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2017-11-15 10:00 - 2017-11-01 23:17 - 002641920 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2017-11-15 10:00 - 2017-11-01 23:16 - 012349440 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2017-11-15 10:00 - 2017-11-01 23:16 - 000635904 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2017-11-15 10:00 - 2017-11-01 23:16 - 000189440 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2017-11-15 10:00 - 2017-11-01 23:15 - 000341504 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2017-11-15 10:00 - 2017-11-01 23:14 - 006066176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2017-11-15 10:00 - 2017-11-01 23:14 - 003662848 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2017-11-15 10:00 - 2017-11-01 23:14 - 000506368 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2017-11-15 10:00 - 2017-11-01 23:14 - 000297472 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2017-11-15 10:00 - 2017-11-01 23:13 - 001988096 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2017-11-15 10:00 - 2017-11-01 23:13 - 001488384 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2017-11-15 10:00 - 2017-11-01 23:13 - 001239552 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2017-11-15 10:00 - 2017-11-01 23:12 - 002028032 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2017-11-15 10:00 - 2017-11-01 23:12 - 000773120 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2017-11-15 10:00 - 2017-11-01 23:12 - 000693248 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2017-11-15 10:00 - 2017-11-01 23:12 - 000656896 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2017-11-15 10:00 - 2017-11-01 23:11 - 002997760 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2017-11-15 10:00 - 2017-11-01 20:44 - 000339968 _____ (Microsoft Corporation) C:\WINDOWS\system32\msexcl40.dll
2017-11-15 10:00 - 2017-10-09 03:39 - 000067928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\stornvme.sys
2017-11-15 10:00 - 2017-10-09 03:35 - 005994840 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2017-11-15 10:00 - 2017-10-09 03:34 - 000082608 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcd.dll
2017-11-15 10:00 - 2017-10-09 03:32 - 000370520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbhub.sys
2017-11-15 10:00 - 2017-10-09 03:30 - 000950104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2017-11-15 10:00 - 2017-10-09 03:28 - 000482384 _____ (Microsoft Corporation) C:\WINDOWS\system32\advapi32.dll
2017-11-15 10:00 - 2017-10-09 03:26 - 000459096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2017-11-15 10:00 - 2017-10-09 03:26 - 000290648 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS
2017-11-15 10:00 - 2017-10-09 03:24 - 000126808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbccgp.sys
2017-11-15 10:00 - 2017-10-09 03:23 - 020967832 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2017-11-15 10:00 - 2017-10-09 03:20 - 001962328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2017-11-15 10:00 - 2017-10-09 03:20 - 000784728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\http.sys
2017-11-15 10:00 - 2017-10-09 03:19 - 000455000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys
2017-11-15 10:00 - 2017-10-09 03:19 - 000353112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\volsnap.sys
2017-11-15 10:00 - 2017-10-09 03:17 - 000198496 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHost.dll
2017-11-15 10:00 - 2017-10-09 03:05 - 000353792 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpshell.exe
2017-11-15 10:00 - 2017-10-09 03:05 - 000281088 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXTaskFactory.dll
2017-11-15 10:00 - 2017-10-09 03:05 - 000276992 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpinit.exe
2017-11-15 10:00 - 2017-10-09 03:02 - 000019456 _____ (Microsoft Corporation) C:\WINDOWS\system32\mgmtapi.dll
2017-11-15 10:00 - 2017-10-09 03:00 - 000044032 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCredential.dll
2017-11-15 10:00 - 2017-10-09 02:59 - 000451072 _____ (Microsoft Corporation) C:\WINDOWS\system32\rastls.dll
2017-11-15 10:00 - 2017-10-09 02:52 - 000713216 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnapps.dll
2017-11-15 10:00 - 2017-10-09 02:49 - 001139712 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2017-11-15 10:00 - 2017-10-09 02:48 - 000704512 _____ (Microsoft Corporation) C:\WINDOWS\system32\cscui.dll
2017-11-15 10:00 - 2017-10-09 02:44 - 001890304 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2017-11-15 10:00 - 2017-10-09 02:44 - 000711168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Search.dll
2017-11-15 10:00 - 2017-10-09 02:44 - 000295424 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2017-11-15 09:59 - 2017-11-02 00:06 - 000517984 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2017-11-15 09:59 - 2017-11-02 00:06 - 000496992 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2017-11-15 09:59 - 2017-11-02 00:06 - 000223584 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
2017-11-15 09:59 - 2017-11-02 00:06 - 000158560 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2017-11-15 09:59 - 2017-11-02 00:05 - 001927008 _____ (Microsoft Corporation) C:\WINDOWS\system32\aitstatic.exe
2017-11-15 09:59 - 2017-11-02 00:05 - 001330016 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2017-11-15 09:59 - 2017-11-02 00:05 - 000364384 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcntel.dll
2017-11-15 09:59 - 2017-11-02 00:05 - 000312152 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2017-11-15 09:59 - 2017-11-02 00:05 - 000060256 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32appinventorycsp.dll
2017-11-15 09:59 - 2017-11-02 00:05 - 000030552 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe
2017-11-15 09:59 - 2017-11-01 23:47 - 000581664 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2017-11-15 09:59 - 2017-11-01 23:47 - 000409440 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcasvc.dll
2017-11-15 09:59 - 2017-11-01 23:44 - 000581048 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2017-11-15 09:59 - 2017-11-01 23:44 - 000341976 _____ (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll
2017-11-15 09:59 - 2017-11-01 23:44 - 000269152 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFault.exe
2017-11-15 09:59 - 2017-11-01 23:44 - 000139096 _____ (Microsoft Corporation) C:\WINDOWS\system32\wermgr.exe
2017-11-15 09:59 - 2017-11-01 23:44 - 000120416 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFaultSecure.exe
2017-11-15 09:59 - 2017-11-01 23:43 - 000075040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpfve.sys
2017-11-15 09:59 - 2017-11-01 23:27 - 000026624 _____ (Microsoft Corporation) C:\WINDOWS\system32\UsoClient.exe
2017-11-15 09:59 - 2017-11-01 23:26 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzres.dll
2017-11-15 09:59 - 2017-11-01 23:22 - 000073728 _____ (Microsoft Corporation) C:\WINDOWS\system32\wercplsupport.dll
2017-11-15 09:59 - 2017-11-01 23:20 - 000099328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\luafv.sys
2017-11-15 09:59 - 2017-11-01 23:19 - 000145920 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWWIN.EXE
2017-11-15 09:59 - 2017-11-01 23:18 - 000073728 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsqmcons.exe
2017-11-15 09:59 - 2017-11-01 23:17 - 000538112 _____ (Microsoft Corporation) C:\WINDOWS\system32\PCPTpm12.dll
2017-11-15 09:59 - 2017-11-01 23:16 - 000216064 _____ (Microsoft Corporation) C:\WINDOWS\system32\ubpm.dll
2017-11-15 09:59 - 2017-11-01 23:16 - 000128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\wersvc.dll
2017-11-15 09:59 - 2017-11-01 23:15 - 000427008 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
2017-11-15 09:59 - 2017-11-01 23:15 - 000399360 _____ (Microsoft Corporation) C:\WINDOWS\system32\werui.dll
2017-11-15 09:59 - 2017-11-01 23:15 - 000262144 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll
2017-11-15 09:59 - 2017-11-01 23:11 - 001161728 _____ (Microsoft Corporation) C:\WINDOWS\system32\werconcpl.dll
2017-11-15 09:59 - 2017-10-09 03:42 - 000076120 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncAppvPublishingServer.exe
2017-11-15 09:59 - 2017-10-09 03:41 - 001136984 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVIntegration.dll
2017-11-15 09:59 - 2017-10-09 03:41 - 000918360 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntSubsystemController.dll
2017-11-15 09:59 - 2017-10-09 03:41 - 000812888 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVPolicy.dll
2017-11-15 09:59 - 2017-10-09 03:41 - 000541016 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVReporting.dll
2017-11-15 09:59 - 2017-10-09 03:41 - 000494432 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVPublishing.dll
2017-11-15 09:59 - 2017-10-09 03:41 - 000400224 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVCatalog.dll
2017-11-15 09:59 - 2017-10-09 03:40 - 000616792 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVClient.exe
2017-11-15 09:59 - 2017-10-09 03:40 - 000498008 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntVirtualization.dll
2017-11-15 09:59 - 2017-10-09 03:40 - 000372568 _____ (Microsoft Corporation) C:\WINDOWS\system32\TransportDSA.dll
2017-11-15 09:59 - 2017-10-09 03:40 - 000294232 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVScripting.dll
2017-11-15 09:59 - 2017-10-09 03:40 - 000154968 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVStreamingUX.dll
2017-11-15 09:59 - 2017-10-09 03:36 - 001470808 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntSubsystems32.dll
2017-11-15 09:59 - 2017-10-09 03:35 - 000559968 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVOrchestration.dll
2017-11-15 09:59 - 2017-10-09 03:35 - 000558424 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntStreamingManager.dll
2017-11-15 09:59 - 2017-10-09 03:34 - 000965464 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReAgent.dll
2017-11-15 09:59 - 2017-10-09 03:33 - 000173400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wof.sys
2017-11-15 09:59 - 2017-10-09 03:24 - 000205104 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininit.exe
2017-11-15 09:59 - 2017-10-09 03:16 - 001384696 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2017-11-15 09:59 - 2017-10-09 03:16 - 000178008 _____ (Microsoft Corporation) C:\WINDOWS\system32\basecsp.dll
2017-11-15 09:59 - 2017-10-09 03:02 - 000165376 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReInfo.dll
2017-11-15 09:59 - 2017-10-09 03:00 - 000146432 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdboot.exe
2017-11-15 09:59 - 2017-10-09 02:58 - 000231936 _____ (Microsoft Corporation) C:\WINDOWS\system32\scksp.dll
2017-11-15 09:59 - 2017-10-09 02:58 - 000117248 _____ (Microsoft Corporation) C:\WINDOWS\system32\regsvc.dll
2017-11-15 09:59 - 2017-10-09 02:55 - 000373760 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdedit.exe
2017-11-15 09:59 - 2017-10-09 02:55 - 000049664 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAgent.exe
2017-11-15 09:59 - 2017-10-09 02:54 - 000728064 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2017-11-15 09:59 - 2017-10-09 02:53 - 003774464 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2017-11-15 09:59 - 2017-10-09 02:53 - 000106496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Robocopy.exe
2017-11-15 09:59 - 2017-10-09 02:52 - 001220608 _____ (Microsoft Corporation) C:\WINDOWS\system32\RecoveryDrive.exe
2017-11-15 09:59 - 2017-10-09 02:52 - 000945664 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2017-11-15 09:59 - 2017-10-09 02:51 - 000494592 _____ (Microsoft Corporation) C:\WINDOWS\system32\BootMenuUX.dll
2017-11-15 09:59 - 2017-10-09 02:51 - 000069120 _____ (Microsoft Corporation) C:\WINDOWS\system32\spbcd.dll
2017-11-15 09:59 - 2017-10-09 02:49 - 000056832 _____ (Microsoft Corporation) C:\WINDOWS\system32\setbcdlocale.dll
2017-11-15 09:59 - 2017-10-09 02:45 - 000144896 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceEnroller.exe
2017-11-15 09:59 - 2017-10-09 02:44 - 004423680 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
2017-11-15 09:59 - 2017-10-09 02:44 - 000920064 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2017-11-15 09:59 - 2017-10-09 02:42 - 001438720 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngine.dll
2017-11-15 09:59 - 2017-10-09 01:29 - 000788624 _____ C:\WINDOWS\system32\locale.nls
2017-11-14 10:16 - 2017-11-14 10:42 - 000000000 ____D C:\Users\Jeff\AppData\Roaming\NCH Software
2017-11-14 10:16 - 2017-11-14 10:16 - 000001219 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoPad - Logiciel de montage vidéo.lnk
2017-11-14 10:16 - 2017-11-14 10:16 - 000001207 _____ C:\Users\Public\Desktop\VideoPad.lnk
2017-11-14 10:15 - 2017-11-14 10:16 - 005676712 _____ (NCH Software) C:\Users\Jeff\Downloads\vppsetup.exe
2017-11-12 21:31 - 2017-11-12 21:38 - 000000000 ____D C:\Users\Jeff\Downloads\passeport
2017-11-12 09:44 - 2017-11-12 09:44 - 373072693 _____ C:\WINDOWS\MEMORY.DMP
2017-11-12 09:44 - 2017-11-12 09:44 - 001443468 _____ C:\WINDOWS\Minidump\111217-12765-01.dmp
2017-11-11 17:01 - 2017-11-11 17:01 - 000001135 _____ C:\Users\Jeff\Desktop\Thailande 2018 22 janvier au 22 février - Raccourci.lnk
2017-11-10 18:24 - 2017-11-16 09:16 - 000076800 _____ C:\Users\Jeff\Downloads\carte du parcour.ppt
2017-11-10 17:46 - 2017-11-10 17:46 - 000141054 _____ C:\Users\Jeff\Downloads\tab 1.pdf
2017-11-10 17:44 - 2017-11-10 17:44 - 000126980 _____ C:\Users\Jeff\Downloads\tab 2.pdf
2017-11-09 15:31 - 2017-11-09 15:31 - 000000000 ____D C:\Users\Jeff\Downloads\activateur office 2010
2017-11-09 15:20 - 2017-11-09 15:20 - 000000998 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 13.lnk
2017-11-09 15:20 - 2017-11-09 15:20 - 000000986 _____ C:\Users\Public\Desktop\TeamViewer 13.lnk
2017-11-09 07:26 - 2017-11-09 07:26 - 000000000 ____D C:\WINDOWS\Panther
2017-11-05 12:47 - 2017-11-05 12:47 - 000670208 _____ C:\Users\Jeff\Downloads\Citations genantes.pps
2017-11-04 08:00 - 2017-11-04 08:00 - 000023821 _____ C:\Users\Jeff\Downloads\Mes endroits 03112017.kmz
2017-11-02 18:11 - 2017-11-03 09:08 - 000000000 ____D C:\Users\Jeff\AppData\Local\Spotify
2017-11-02 18:11 - 2017-11-02 18:11 - 000001869 _____ C:\Users\Jeff\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Spotify.lnk
2017-11-02 18:06 - 2017-11-03 09:08 - 000000000 ____D C:\Users\Jeff\AppData\Roaming\Spotify
2017-10-25 14:37 - 2017-10-25 15:47 - 000000000 ____D C:\Users\Jeff\Downloads\Win7_sp1_x86_(32bits)_all_versions
2017-10-25 14:14 - 2017-10-25 14:16 - 000000000 ____D C:\Users\Jeff\Downloads\Medion drivers W7
==================== Un mois - Modifiés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2017-11-21 09:15 - 2016-07-16 18:15 - 011211186 _____ C:\WINDOWS\system32\perfh00C.dat
2017-11-21 09:15 - 2016-07-16 18:15 - 003229118 _____ C:\WINDOWS\system32\perfc00C.dat
2017-11-21 09:15 - 2015-08-02 08:23 - 021498784 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2017-11-21 09:14 - 2016-09-29 18:58 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2017-11-21 09:09 - 2013-01-27 08:57 - 000450720 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2017-11-21 09:08 - 2016-09-29 19:39 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2017-11-20 22:15 - 2016-07-16 03:22 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2017-11-20 10:22 - 2016-07-16 09:28 - 000000000 ____D C:\WINDOWS\INF
2017-11-20 10:02 - 2013-01-21 14:15 - 000080888 _____ C:\Users\Jeff\AppData\Roaming\GDIPFONTCACHEV1.DAT
2017-11-20 09:51 - 2016-09-29 19:06 - 000000000 ____D C:\Users\Jeff
2017-11-20 09:13 - 2016-11-29 20:12 - 000000000 ____D C:\AdwCleaner
2017-11-20 08:38 - 2017-04-21 08:24 - 000220088 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2017-11-19 23:18 - 2014-01-11 11:59 - 000000000 ____D C:\Users\Jeff\AppData\Roaming\ObviousIdea
2017-11-19 23:18 - 2014-01-11 11:58 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ObviousIdea
2017-11-19 23:18 - 2014-01-11 11:58 - 000000000 ____D C:\Program Files\ObviousIdea
2017-11-19 23:03 - 2016-07-16 09:29 - 000000000 ____D C:\WINDOWS\registration
2017-11-19 22:28 - 2014-10-28 12:50 - 000000000 ____D C:\Users\Jeff\AppData\LocalLow\Adblock Plus for IE
2017-11-19 21:38 - 2015-03-24 09:18 - 000024688 _____ C:\WINDOWS\system32\Drivers\TrueSight.sys
2017-11-19 21:13 - 2013-01-16 16:27 - 000000000 ____D C:\Users\Jeff\AppData\Local\Google
2017-11-19 19:42 - 2017-05-17 20:07 - 000000000 ____D C:\Program Files\Kodi
2017-11-19 13:26 - 2015-08-02 11:12 - 000001890 __RSH C:\ProgramData\ntuser.pol
2017-11-19 09:52 - 2013-09-29 10:04 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive
2017-11-18 21:45 - 2017-09-28 07:51 - 000000000 ____D C:\Users\Jeff\Desktop\Egypte video 12 au 27 sept 2017
2017-11-18 20:15 - 2016-07-16 09:29 - 000000000 ____D C:\WINDOWS\rescache
2017-11-17 08:18 - 2017-09-29 07:04 - 000000000 ____D C:\Program Files\rempl
2017-11-17 08:17 - 2016-09-29 18:58 - 000312040 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2017-11-16 10:51 - 2016-07-16 09:29 - 000000000 ____D C:\WINDOWS\AppReadiness
2017-11-16 09:54 - 2014-06-07 13:28 - 000000000 ____D C:\Users\Jeff\AppData\Local\Adobe
2017-11-15 21:52 - 2015-08-02 08:30 - 000000000 __RHD C:\Users\Public\AccountPictures
2017-11-15 21:49 - 2016-07-16 09:30 - 000209408 _____ (Microsoft Corporation) C:\WINDOWS\system32\msclmd.dll
2017-11-15 21:49 - 2016-07-16 09:29 - 000000000 ___RD C:\Program Files\Windows Defender
2017-11-15 21:49 - 2016-07-16 09:29 - 000000000 ____D C:\WINDOWS\system32\oobe
2017-11-15 21:49 - 2016-07-16 09:29 - 000000000 ____D C:\WINDOWS\system32\appraiser
2017-11-15 21:49 - 2016-07-16 09:29 - 000000000 ____D C:\WINDOWS\ShellExperiences
2017-11-15 11:26 - 2016-12-19 15:29 - 000001963 _____ C:\Users\Jeff\Desktop\Hard Disk Low Level Format.lnk
2017-11-15 10:27 - 2016-07-16 09:19 - 000000000 ____D C:\WINDOWS\CbsTemp
2017-11-15 10:27 - 2013-07-21 14:16 - 000000000 ____D C:\WINDOWS\system32\MRT
2017-11-15 10:07 - 2017-10-11 08:01 - 124282896 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT-KB890830.exe
2017-11-15 10:07 - 2013-01-18 08:44 - 124282896 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2017-11-15 10:05 - 2016-07-16 09:29 - 000000000 ___HD C:\Program Files\WindowsApps
2017-11-15 09:46 - 2017-04-13 12:16 - 000002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2017-11-15 09:36 - 2016-07-16 09:29 - 000000000 ____D C:\WINDOWS\system32\Macromed
2017-11-14 16:34 - 2013-01-25 17:03 - 000000000 _RSHD C:\acroldr
2017-11-14 10:49 - 2015-03-21 20:31 - 000000000 ____D C:\Users\Jeff\AppData\Roaming\DVDVideoSoft
2017-11-14 10:16 - 2014-09-12 09:05 - 000000000 ____D C:\ProgramData\NCH Software
2017-11-14 10:16 - 2014-09-12 09:04 - 000000000 ____D C:\Program Files\NCH Software
2017-11-12 09:44 - 2016-10-05 18:08 - 000000000 ____D C:\WINDOWS\Minidump
2017-11-09 15:39 - 2014-04-13 09:53 - 000000000 ____D C:\Users\Jeff\AppData\Roaming\BitTorrent
2017-11-09 15:21 - 2013-02-02 12:24 - 000000000 ____D C:\Program Files\TeamViewer
2017-11-07 08:15 - 2015-08-02 08:37 - 000002442 _____ C:\Users\Jeff\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2017-11-07 08:15 - 2015-08-02 08:37 - 000000000 ___RD C:\Users\Jeff\OneDrive
2017-11-05 01:47 - 2016-07-16 09:31 - 000835568 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2017-11-05 01:47 - 2016-07-16 09:31 - 000177648 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2017-11-02 02:01 - 2011-12-05 18:34 - 000389332 __RSH C:\bootmgr
2017-10-28 11:59 - 2016-04-13 08:59 - 000000000 ____D C:\Users\Jeff\Desktop\016 Egypte video 30 mars au 12 avril 2016 Leclerc Tulip Ressort par FTI
2017-10-28 11:58 - 2016-09-21 19:45 - 000000000 ____D C:\Users\Jeff\Desktop\017 Egypte video 06 au 21 sept 2016 Magic Tulip Ressort
2017-10-28 07:47 - 2016-12-26 10:08 - 000001382 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IP Camera Viewer 4.lnk
2017-10-28 07:47 - 2016-12-26 10:08 - 000001370 _____ C:\Users\Public\Desktop\IP Camera Viewer 4.lnk
==================== Fichiers à la racine de certains dossiers =======
2015-01-07 17:35 - 2015-01-07 17:35 - 000041035 _____ () C:\Program Files\CMS Setup Log.txt
2015-02-17 20:21 - 2015-02-17 20:21 - 000017792 _____ () C:\Program Files\CMS Uninstall Log.txt
2015-01-07 18:06 - 2015-01-07 18:07 - 000010347 _____ () C:\Program Files\Player Setup Log.txt
2015-02-17 20:22 - 2015-02-17 20:22 - 000004453 _____ () C:\Program Files\Player Uninstall Log.txt
2013-12-23 16:12 - 2013-10-10 13:36 - 000003236 ____H () C:\Users\Jeff\AppData\Roaming\1.bat
2015-06-09 12:26 - 2015-06-09 12:26 - 000000132 _____ () C:\Users\Jeff\AppData\Roaming\Adobe GIF Format CS5 Prefs
2013-01-17 09:04 - 2013-01-16 23:30 - 000081920 _____ () C:\Users\Jeff\AppData\Roaming\chrtmp
2014-09-01 09:18 - 2014-09-01 09:18 - 000001248 _____ () C:\Users\Jeff\AppData\Roaming\LCEFUOWD
2013-12-23 16:12 - 2013-10-15 11:13 - 008182960 _____ (Hamrick Software) C:\Users\Jeff\AppData\Roaming\old.exe
2014-12-27 18:36 - 2014-12-27 18:37 - 000000334 _____ () C:\Users\Jeff\AppData\Roaming\WinInstallFlashLog.ini
2013-01-16 22:32 - 2013-01-16 22:32 - 000000092 _____ () C:\Users\Jeff\AppData\Local\fusioncache.dat
2014-07-17 08:28 - 2014-07-17 08:28 - 000000001 _____ () C:\Users\Jeff\AppData\Local\llftool.4.40.agreement
2014-11-17 20:52 - 2014-11-17 20:52 - 000000738 _____ () C:\Users\Jeff\AppData\Local\recently-used.xbel
2013-01-26 17:06 - 2013-01-26 17:06 - 000000017 _____ () C:\Users\Jeff\AppData\Local\resmon.resmoncfg
2016-12-13 12:10 - 2016-11-23 14:37 - 000000570 _____ () C:\Users\Jeff\AppData\Local\TroubleshooterConfig.json
Certains fichiers dans TEMP:
====================
2017-11-19 21:38 - 2017-09-07 07:32 - 001587248 _____ (Microsoft Corporation) C:\Users\Jeff\AppData\Local\Temp\dllnt_dump.dll
2017-11-19 10:51 - 2017-11-19 10:52 - 036354152 _____ (Ellora Assets Corporation ) C:\Users\Jeff\AppData\Local\Temp\FreemakeVideoConverterFull.exe
==================== Bamital & volsnap ======================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
C:\WINDOWS\explorer.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\winlogon.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\wininit.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\svchost.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\services.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\User32.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\userinit.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\rpcss.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\dnsapi.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\Drivers\volsnap.sys => Le fichier est signé numériquement
LastRegBack: 2017-11-19 20:31
==================== Fin de FRST.txt ============================
Exécuté par Jeff (administrateur) sur ASUSJEFF (21-11-2017 09:43:22)
Exécuté depuis C:\Users\Jeff\Downloads
Profils chargés: Jeff (Profils disponibles: Jeff)
Platform: Microsoft Windows 10 Professionnel Version 1607 14393.1884 (X86) Langue: Français (France)
Internet Explorer Version 11 (Navigateur par défaut: Chrome)
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(AMD) C:\WINDOWS\System32\atiesrxx.exe
(AMD) C:\WINDOWS\System32\atieclxx.exe
(ASUSTek Computer Inc.) C:\Program Files\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
(ASUSTek Computer Inc.) C:\Program Files\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
(Acronis) C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe
(ArcSoft Inc.) C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
(Acronis) C:\Program Files\Common Files\Acronis\CDP\afcdpsrv.exe
() C:\WINDOWS\System32\FspService.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\VS7Debug\mdm.exe
(Panasonic System Networks Co., Ltd.) C:\Program Files\Panasonic\LocalCom\LMSRVNT.EXE
(DEVGURU Co., LTD.) C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(SanDisk) C:\Program Files\SanDisk\SSD Dashboard\SanDiskSSDDashboardService.exe
(TeamViewer GmbH) C:\Program Files\TeamViewer\TeamViewer_Service.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(ASUSTek Computer Inc.) C:\Program Files\ASUS\ATK Package\ATK Hotkey\HControl.exe
(ASUSTek Computer Inc.) C:\Program Files\ASUS\ATK Package\ATK Media\DMedia.exe
(ASUSTek Computer Inc.) C:\Program Files\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
(Microsoft Corporation) C:\WINDOWS\System32\vds.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtHDVBg.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
() C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.8.487.0_x86__kzf8qxf38zg5c\SkypeHost.exe
(Google Inc.) C:\Program Files\Google\Update\1.3.33.7\GoogleCrashHandler.exe
(Panasonic System Networks Co., Ltd. ) C:\Program Files\Panasonic\MFStation\PCCMFSDM.exe
(Panasonic System Networks Co., Ltd.) C:\Program Files\Panasonic\MFStation\PCMFSMLM.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(Panasonic System Networks Co., Ltd.) C:\WINDOWS\System32\PCCMFLPD.exe
(TODO:
(Wondershare) C:\Program Files\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe
() C:\Program Files\Wondershare\Video Converter Ultimate\WSVCUUpdateHelper.exe
(Spotify Ltd) C:\Users\Jeff\AppData\Roaming\Spotify\SpotifyWebHelper.exe
(Microsoft Corporation) C:\Program Files\Windows Live\Mail\wlmail.exe
(Microsoft Corporation) C:\Program Files\Windows Live\Contacts\wlcomm.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe
(Acronis) C:\Program Files\Common Files\Acronis\SyncAgent\syncagentsrv.exe
() C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1705.1301.0_x86__8wekyb3d8bbwe\Calculator.exe
() C:\Program Files\WindowsApps\Microsoft.WindowsMaps_5.1705.1391.0_x86__8wekyb3d8bbwe\Maps.exe
(Microsoft Corporation) C:\WINDOWS\System32\smartscreen.exe
==================== Registre (Avec liste blanche) ===========================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [SMSERIAL] => C:\Program Files\Motorola\SMSERIAL\sm56hlpr.exe [1458176 2009-10-26] (Motorola Inc.)
HKLM\...\Run: [ISUSScheduler] => C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe [81920 2004-06-14] (InstallShield Software Corporation)
HKLM\...\Run: [Panasonic Device Manager for Multi-Function Station software] => C:\Program Files\Panasonic\MFStation\PCCMFSDM.exe [139264 2012-06-25] (Panasonic System Networks Co., Ltd. )
HKLM\...\Run: [Panasonic PCFAX for Multi-Function Station software] => C:\Program Files\Panasonic\MFStation\KmPcFax.exe [819200 2012-05-18] (Panasonic System Networks Co., Ltd. )
HKLM\...\Run: [Panasonic IP Address Checker for Multi-Function Station software] => C:\Program Files\Panasonic\MFStation\PccChgIP.exe [139264 2011-01-21] (Panasonic System Networks Co., Ltd. )
HKLM\...\Run: [Panasonic LPD Manager] => C:\Program Files\Panasonic\MFStation\PCMFSMLM.exe [155648 2013-06-03] (Panasonic System Networks Co., Ltd.)
HKLM\...\Run: [BCD3000] => C:\WINDOWS\system32\bcd3kcpan.exe [548864 2015-08-22] (Behringer Spezielle Studiotechnik GmbH)
HKLM\...\Run: [AcronisTibMounterMonitor] => C:\Program Files\Common Files\Acronis\TibMounter\TibMounterMonitor.exe [691520 2015-09-08] (Acronis International GmbH)
HKLM\...\Run: [TrueImageMonitor.exe] => C:\Program Files\Acronis\TrueImageHome\TrueImageMonitor.exe [7492712 2015-09-14] ()
HKLM\...\Run: [Acronis Scheduler2 Service] => C:\Program Files\Common Files\Acronis\Schedule2\schedhlp.exe [497064 2015-09-14] (Acronis)
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [334896 2015-04-30] (Oracle Corporation)
HKLM\...\Run: [Eraser] => C:\Program Files\Eraser\Eraser.exe [1074600 2016-08-28] (The Eraser Project)
HKLM\...\Run: [WindowsDefender] => C:\Program Files\Windows Defender\MSASCuiL.exe [483840 2017-04-28] (Microsoft Corporation)
HKLM\...\Run: [fspuip] => C:\Program Files\FSP\fspuip.exe [5478192 2015-09-09] (Sentelic Corporation)
HKLM\...\Run: [fspctrl] => C:\Program Files\FSP\fspctrl.exe [1638704 2015-09-09] (TODO:
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3523240 2015-08-03] (Synaptics Incorporated)
HKLM\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [2133216 2017-03-23] (Wondershare)
HKLM\...\Run: [WSVCUUpdateHelper.exe] => C:\Program Files\Wondershare\Video Converter Ultimate\WSVCUUpdateHelper.exe [17408 2017-09-25] ()
HKU\S-1-5-21-2410229435-3982147707-860292190-1001\...\Run: [] => C:\Program Files\Samsung\Kies3\FirmwareUpdate\Kies3PDLR.exe [1023664 2016-03-25] (Samsung)
HKU\S-1-5-21-2410229435-3982147707-860292190-1001\...\Run: [GoogleDriveSync] => C:\Program Files\Google\Drive\googledrivesync.exe [25624208 2017-11-10] (Google)
HKU\S-1-5-21-2410229435-3982147707-860292190-1001\...\Run: [ISUSPM Startup] => C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe [221184 2004-06-14] (InstallShield Software Corporation)
HKU\S-1-5-21-2410229435-3982147707-860292190-1001\...\Run: [ShowBatteryBar] => C:\Program Files\BatteryBar\ShowBatteryBar.exe [90624 2014-09-19] ()
HKU\S-1-5-21-2410229435-3982147707-860292190-1001\...\Run: [Google Update] => C:\Users\Jeff\AppData\Local\Google\Update\1.3.33.7\GoogleUpdateCore.exe
HKU\S-1-5-21-2410229435-3982147707-860292190-1001\...\Run: [Google Photos Backup] => C:\Users\Jeff\AppData\Local\Programs\Google\Google Photos Backup\Google Photos Backup.exe [3790936 2016-04-08] (Google, Inc)
HKU\S-1-5-21-2410229435-3982147707-860292190-1001\...\Run: [BlueStacks Agent] => C:\Program Files\Bluestacks\HD-Agent.exe
HKU\S-1-5-21-2410229435-3982147707-860292190-1001\...\Run: [Spotify Web Helper] => C:\Users\Jeff\AppData\Roaming\Spotify\SpotifyWebHelper.exe [777840 2017-11-02] (Spotify Ltd)
HKU\S-1-5-21-2410229435-3982147707-860292190-1001\...\Policies\Explorer: [NoLowDiskSpaceChecks] False
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Windows Live Mail.lnk [2013-01-16]
ShortcutTarget: Windows Live Mail.lnk -> C:\Program Files\Windows Live\Mail\wlmail.exe (Microsoft Corporation)
Startup: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\SynRemoveUserSettings.bat [2015-08-03] ()
Startup: C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\SynRemoveUserSettings.bat [2015-08-03] ()
GroupPolicy: Restriction - Chrome <==== ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Hosts: Il y a plus d'un élément dans hosts. Voir la section Hosts de Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{54f1062c-a888-43f9-b12d-ce77dbaa3787}: [DhcpNameServer] 192.168.1.254
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com
HKU\S-1-5-21-2410229435-3982147707-860292190-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.google.fr/
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: Adblock Plus for IE Browser Helper Object -> {FFCB3198-32F3-4E8B-9539-4324694ED664} -> C:\Program Files\Adblock Plus for IE\AdblockPlus32.dll [2017-01-03] (Eyeo GmbH)
Toolbar: HKU\S-1-5-21-2410229435-3982147707-860292190-1001 -> Pas de nom - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - Pas de fichier
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_71-windows-i586.cab
Handler: cdo - {CD00020A-8B95-11D1-82DB-00C04FB1625D} - C:\Program Files\Common Files\Microsoft Shared\Web Folders\PKMCDO.DLL [2004-01-29] (Microsoft Corporation)
Handler: ms-itss - {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Program Files\Common Files\Microsoft Shared\Information Retrieval\MSITSS.DLL [2000-04-19] (Microsoft Corporation)
FireFox:
========
FF DefaultProfile: 6l85cll9.default
FF ProfilePath: C:\Users\Jeff\AppData\Roaming\Mozilla\Firefox\Profiles\6l85cll9.default [2017-10-14]
FF Homepage: Mozilla\Firefox\Profiles\6l85cll9.default -> www.google.fr
FF Extension: (Cookies Export/import) - C:\Users\Jeff\AppData\Roaming\Mozilla\Firefox\Profiles\6l85cll9.default\Extensions\CookiesIE@yahoo.com.xpi [2017-10-14] [Lagacy]
FF ProfilePath: C:\Users\Jeff\AppData\Roaming\Flickr\Flickr Uploadr\Profiles\ugm18xa1.default [2014-02-15]
FF HKU\S-1-5-21-2410229435-3982147707-860292190-1001\...\Firefox\Extensions: [{57319509-7821-41B0-9FDF-3B58F146AE33}] - c:\program files\copernic desktop search - home\firefoxconnector
FF Extension: (Copernic Desktop Search - Search Firefox content) - c:\program files\copernic desktop search - home\firefoxconnector [2013-03-06] [Lagacy] [non signé]
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF32_27_0_0_187.dll [2017-11-15] ()
FF Plugin: @Diginext.fr/VirtualGeoGP -> C:\Program Files\VirtualGeo3-GP\WebPlugin\Win32\npQtAPI3DPlugin.dll [2015-05-07] (DIGINEXT)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] ( Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-15] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-15] (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.0.7 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.2 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.3 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.5 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2017-05-24] (VideoLAN)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2017-11-04] (Adobe Systems Inc.)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll [Pas de fichier]
FF Plugin: JFGuide -> C:\Program Files\NetSurveillance\CMS\npGuide.dll [2014-10-30] ()
FF Plugin: JFWeb -> C:\Program Files\NetSurveillance\CMS\npWebPlugin.dll [2014-09-16] ()
FF Plugin HKU\S-1-5-21-2410229435-3982147707-860292190-1001: @tools.google.com/Google Update;version=3 -> C:\Users\Jeff\AppData\Local\Google\Update\1.3.33.7\npGoogleUpdate3.dll [Pas de fichier]
FF Plugin HKU\S-1-5-21-2410229435-3982147707-860292190-1001: @tools.google.com/Google Update;version=9 -> C:\Users\Jeff\AppData\Local\Google\Update\1.3.33.7\npGoogleUpdate3.dll [Pas de fichier]
Chrome:
=======
CHR DefaultProfile: Default
CHR HomePage: Default -> hxxp://www.google.fr/
CHR StartupUrls: Default -> "hxxp://www.google.fr/"
CHR DefaultSearchURL: Default -> hxxps://spiralstab.com/search?q={searchTerms}
CHR DefaultSearchKeyword: Default -> SpiralsTab
CHR DefaultSuggestURL: Default -> hxxps://spiralstab.com/suggestions.php?q={searchTerms}
CHR Profile: C:\Users\Jeff\AppData\Local\Google\Chrome\User Data\Default [2017-11-21]
CHR Extension: (Adblock Plus) - C:\Users\Jeff\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2017-09-27]
CHR Extension: (Barre d'Outils Priceless Specials) - C:\Users\Jeff\AppData\Local\Google\Chrome\User Data\Default\Extensions\ligadippipkigjepjkefpdagcfhgciee [2016-11-30]
CHR Extension: (Page Captures d'écran Web - Fireshot) - C:\Users\Jeff\AppData\Local\Google\Chrome\User Data\Default\Extensions\mcbpblocgmgfnpjjppndjkmgjaogfceg [2017-08-30]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Jeff\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-08-22]
CHR Extension: (Chrome Media Router) - C:\Users\Jeff\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-11-16]
CHR Profile: C:\Users\Jeff\AppData\Local\Google\Chrome\User Data\System Profile [2017-10-19]
CHR HKLM\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [ikaooahnheaoeceaipjcmnamnoleeblk] - hxxps://clients2.google.com/service/update2/crx
==================== Services (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 ACDaemon; C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [113152 2010-03-18] (ArcSoft Inc.)
R2 AcrSch2Svc; C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe [918872 2015-09-14] (Acronis)
R2 afcdpsrv; C:\Program Files\Common Files\Acronis\CDP\afcdpsrv.exe [4463960 2015-10-02] (Acronis)
R2 ASLDRService; C:\Program Files\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe [123704 2015-07-07] (ASUSTek Computer Inc.)
R2 ATKGFNEXSrv; C:\Program Files\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe [107320 2015-04-01] (ASUSTek Computer Inc.)
R2 FspSvc; C:\Windows\System32\FspService.exe [1593136 2015-09-09] ()
S3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [3303888 2017-01-20] (Malwarebytes)
S4 mmsminisrv; C:\Program Files\Common Files\Acronis\Infrastructure\mms_mini.exe [4884064 2015-08-11] (Acronis)
R2 Panasonic Local Printer Service; C:\Program Files\Panasonic\LocalCom\LMSRVNT.EXE [49152 2010-01-09] (Panasonic System Networks Co., Ltd.) [Fichier non signé]
R2 SanDisk SSD Dashboard Service; C:\Program Files\SanDisk\SSD Dashboard\SanDiskSSDDashboardService.exe [373760 2016-10-10] (SanDisk) [Fichier non signé]
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [1887272 2017-08-08] (Microsoft Corporation)
R2 ss_conn_service; C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [754784 2016-07-22] (DEVGURU Co., LTD.)
R2 syncagentsrv; C:\Program Files\Common Files\Acronis\SyncAgent\syncagentsrv.exe [7637744 2015-09-10] (Acronis)
R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [208552 2015-08-03] (Synaptics Incorporated)
R2 TeamViewer; C:\Program Files\TeamViewer\TeamViewer_Service.exe [10942704 2017-11-03] (TeamViewer GmbH)
S3 w7Svc; C:\Program Files\webcam 7\webcam7.Service.exe [3310192 2016-06-14] (Moonware Studios)
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [271488 2017-04-28] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [84912 2017-10-09] (Microsoft Corporation)
S3 WsDrvInst; C:\Program Files\Wondershare\Video Converter Ultimate\Transfer\DriverInstall.exe [89088 2017-09-25] (Wondershare) [Fichier non signé]
===================== Pilotes (Avec liste blanche) ======================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 Afc; C:\WINDOWS\System32\drivers\Afc.sys [18688 2006-11-10] (Arcsoft, Inc.)
R2 amwrtdrv; C:\WINDOWS\System32\amwrtdrv.sys [19768 2016-12-10] ()
R2 ASMMAP; C:\Program Files\ASUS\ATK Package\ATKGFNEX\ASMMAP.sys [16512 2015-05-08] (ASUS)
R3 AtiHDAudioService; C:\WINDOWS\system32\drivers\AtihdWB3.sys [82944 2015-07-15] (Advanced Micro Devices)
S0 Avgbootx; C:\WINDOWS\System32\DRIVERS\avgbootx.sys [19104 2015-03-27] (AVG Technologies CZ, s.r.o.)
R1 Avgdiskx; C:\WINDOWS\System32\DRIVERS\avgdiskx.sys [132576 2015-03-11] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSDriver; C:\WINDOWS\System32\DRIVERS\avgidsdriverx.sys [231856 2015-06-26] (AVG Technologies CZ, s.r.o.)
R0 AVGIDSHX; C:\WINDOWS\System32\DRIVERS\avgidshx.sys [190944 2015-05-12] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSShim; C:\WINDOWS\system32\DRIVERS\avgidsshimw8x.sys [29664 2015-05-14] (AVG Technologies CZ, s.r.o.)
R1 Avgldx86; C:\WINDOWS\System32\DRIVERS\avgldx86.sys [207328 2015-06-16] (AVG Technologies CZ, s.r.o.)
R0 Avglogx; C:\WINDOWS\System32\DRIVERS\avglogx.sys [290272 2015-05-07] (AVG Technologies CZ, s.r.o.)
R0 Avgmfx86; C:\WINDOWS\System32\DRIVERS\avgmfx86.sys [170464 2015-06-10] (AVG Technologies CZ, s.r.o.)
R0 Avgrkx86; C:\WINDOWS\System32\DRIVERS\avgrkx86.sys [35808 2015-03-20] (AVG Technologies CZ, s.r.o.)
R1 Avgwfpx; C:\WINDOWS\system32\DRIVERS\avgwfpx.sys [229352 2015-06-15] (AVG Technologies CZ, s.r.o.)
S3 BCD3000; C:\WINDOWS\system32\Drivers\BCD3000.SYS [42784 2015-08-22] (Behringer Spezielle Studiotechnik GmbH) [Fichier non signé]
S3 BCD3000WDM; C:\WINDOWS\system32\Drivers\BCD3000WDM.SYS [21856 2015-08-22] (Behringer Spezielle Studiotechnik GmbH) [Fichier non signé]
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [109456 2017-05-18] (Samsung Electronics Co., Ltd.)
R3 DVB7700ALL; C:\WINDOWS\System32\Drivers\dvb7700all.sys [678440 2015-08-02] (DiBcom)
R0 file_tracker; C:\WINDOWS\System32\DRIVERS\file_tracker.sys [234976 2015-10-02] (Acronis International GmbH)
S3 fspad_win732; C:\WINDOWS\system32\DRIVERS\fspad_win732.sys [168240 2015-09-09] (Sentelic Corporation)
R3 i8042HDR; C:\WINDOWS\system32\DRIVERS\i8042HDR.sys [13224 2006-10-20] (Chicony)
S3 MBAMSwissArmy; C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [220088 2017-11-20] (Malwarebytes)
S3 mcdevice; C:\WINDOWS\system32\DRIVERS\mcdevice.sys [331072 2011-05-19] (ShiningMorning Inc.)
R1 MpKsl49c426a4; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{DE10A1B2-2913-4626-8DB3-AFE2E50D03EA}\MpKsl49c426a4.sys [49504 2017-11-21] (Microsoft Corporation)
R3 MTsensor; C:\WINDOWS\System32\drivers\ATKACPI.sys [14392 2009-05-13] (ASUS)
S3 NetAdapterCx; C:\WINDOWS\System32\drivers\NetAdapterCx.sys [62976 2016-07-16] ()
R3 netwlv32; C:\WINDOWS\System32\drivers\netwlv32.sys [6637056 2016-07-16] (Intel Corporation)
S3 qcusbser; C:\WINDOWS\system32\DRIVERS\qcusbser.sys [205312 2013-01-16] (QUALCOMM Incorporated)
S3 RTL8187; C:\WINDOWS\System32\drivers\rtl8187.sys [375808 2010-01-07] (Realtek Semiconductor Corporation )
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [147344 2017-05-18] (Samsung Electronics Co., Ltd.)
R0 tib; C:\WINDOWS\System32\DRIVERS\tib.sys [690128 2015-10-02] (Acronis International GmbH)
R2 tib_mounter; C:\WINDOWS\system32\DRIVERS\tib_mounter.sys [150496 2015-10-02] (Acronis International GmbH)
S3 tnd; C:\WINDOWS\system32\DRIVERS\tnd.sys [371680 2015-10-02] (Acronis International GmbH)
R0 vidsflt53; C:\WINDOWS\System32\DRIVERS\vsflt53.sys [83392 2013-01-24] (Acronis)
S0 WdBoot; C:\WINDOWS\System32\drivers\WdBoot.sys [37912 2016-07-16] (Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\WdFilter.sys [244576 2016-07-16] (Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [100192 2016-07-16] (Microsoft Corporation)
S3 WUDFWpdMtp; C:\WINDOWS\system32\DRIVERS\WUDFRd.sys [161280 2016-07-16] (Microsoft Corporation)
R3 yukonw8; C:\WINDOWS\System32\drivers\yk63x86.sys [242688 2016-07-16] (Marvell)
S3 zghsdiag; C:\WINDOWS\system32\DRIVERS\zghsdiag.sys [113688 2011-07-15] (ZTE Incorporated)
S3 zghsmdm; C:\WINDOWS\system32\DRIVERS\zghsmdm.sys [113688 2011-07-15] (ZTE Incorporated)
S3 zghsnmea; C:\WINDOWS\system32\DRIVERS\zghsnmea.sys [113688 2011-07-15] (ZTE Incorporated)
S3 mr8980; \SystemRoot\system32\DRIVERS\mr8980.sys [X]
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois - Créés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2017-11-21 09:43 - 2017-11-21 09:44 - 000022881 _____ C:\Users\Jeff\Downloads\FRST.txt
2017-11-21 09:43 - 2017-11-21 09:43 - 000000000 ____D C:\FRST
2017-11-21 09:42 - 2017-11-21 09:43 - 001787904 _____ (Farbar) C:\Users\Jeff\Downloads\FRST.exe
2017-11-20 10:50 - 2017-11-20 11:53 - 000000000 ____D C:\Users\Jeff\Desktop\carte SD
2017-11-20 10:39 - 2017-11-20 10:39 - 000220088 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\4DE24D73.sys
2017-11-19 22:07 - 2017-11-19 22:07 - 000000000 ____D C:\Program Files\Adblock Plus for IE
2017-11-19 21:37 - 2017-11-19 21:37 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RogueKiller
2017-11-19 21:35 - 2017-11-19 21:37 - 036156920 _____ (Adlice Software ) C:\Users\Jeff\Downloads\setup.exe
2017-11-19 20:53 - 2017-11-19 21:14 - 000000000 ____D C:\Users\Jeff\AppData\Roaming\ZHP
2017-11-19 20:52 - 2017-11-19 20:52 - 000000000 ____D C:\Users\Jeff\AppData\Local\ZHP
2017-11-19 20:08 - 2017-11-19 20:08 - 000002288 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2017-11-19 11:56 - 2017-11-19 11:56 - 000000639 _____ C:\Users\Jeff\Downloads\pack seriales freemaker Beck Jungkook.rar
2017-11-19 10:53 - 2017-11-19 10:53 - 000000000 ____D C:\Users\Jeff\AppData\Local\FreemakeVideoConverter
2017-11-19 10:52 - 2017-11-19 19:55 - 000000000 ____D C:\ProgramData\Freemake
2017-11-19 10:52 - 2017-11-19 19:55 - 000000000 ____D C:\Program Files\Freemake
2017-11-19 10:50 - 2017-11-19 10:51 - 001013296 _____ (Ellora Assets Corporation ) C:\Users\Jeff\Downloads\FreemakeVideoConverterSetup.exe
2017-11-18 12:04 - 2017-11-18 12:04 - 000215384 _____ C:\Users\Jeff\Downloads\portables Conforama.pdf
2017-11-16 11:33 - 2017-11-16 11:33 - 000000000 ____D C:\ProgramData\ProductFeatures
2017-11-16 11:15 - 2017-11-16 11:32 - 000000000 ____D C:\Users\Jeff\AppData\Local\Wondershare
2017-11-16 11:15 - 2017-11-16 11:15 - 000000000 ____D C:\Program Files\Common Files\Wondershare
2017-11-16 11:14 - 2017-11-16 11:32 - 000000000 ____D C:\Users\Jeff\AppData\Roaming\Wondershare
2017-11-16 11:14 - 2017-11-16 11:32 - 000000000 ____D C:\ProgramData\Wondershare
2017-11-16 11:14 - 2017-11-16 11:14 - 000001250 _____ C:\Users\Public\Desktop\Wondershare Video Converter Ultimate.lnk
2017-11-16 11:14 - 2017-11-16 11:14 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wondershare
2017-11-16 11:14 - 2017-11-16 11:14 - 000000000 ____D C:\Program Files\Wondershare
2017-11-16 11:07 - 2017-11-19 20:59 - 000000000 ____D C:\Users\Jeff\Downloads\WS Video Converter Ultimate 10.1.0 (ask4pc)
2017-11-16 10:25 - 2017-11-16 10:25 - 001110564 _____ (Igor Pavlov) C:\Users\Jeff\Downloads\7z1604.exe
2017-11-16 10:25 - 2017-11-16 10:25 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
2017-11-16 10:25 - 2017-11-16 10:25 - 000000000 ____D C:\Program Files\7-Zip
2017-11-16 10:02 - 2017-11-16 10:24 - 115729994 _____ C:\Users\Jeff\Downloads\WS.Vid.C.Ult.10.1.0.(ask4pc).rar
2017-11-15 18:51 - 2017-11-15 18:51 - 003419055 _____ C:\Users\Jeff\Downloads\Religion de paix et d amour.mp4
2017-11-15 10:00 - 2017-11-02 00:06 - 000550240 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2017-11-15 10:00 - 2017-11-02 00:06 - 000116064 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2017-11-15 10:00 - 2017-11-01 23:50 - 001954144 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2017-11-15 10:00 - 2017-11-01 23:45 - 001896800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2017-11-15 10:00 - 2017-11-01 23:45 - 000550752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2017-11-15 10:00 - 2017-11-01 23:45 - 000342368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2017-11-15 10:00 - 2017-11-01 23:44 - 000557400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fvevol.sys
2017-11-15 10:00 - 2017-11-01 23:27 - 000051712 _____ (Microsoft Corporation) C:\WINDOWS\system32\usoapi.dll
2017-11-15 10:00 - 2017-11-01 23:26 - 000042496 _____ (Microsoft Corporation) C:\WINDOWS\system32\musdialoghandlers.dll
2017-11-15 10:00 - 2017-11-01 23:25 - 000206848 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2017-11-15 10:00 - 2017-11-01 23:24 - 000083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotificationUx.exe
2017-11-15 10:00 - 2017-11-01 23:22 - 000822784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2017-11-15 10:00 - 2017-11-01 23:22 - 000427008 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2017-11-15 10:00 - 2017-11-01 23:21 - 012205056 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2017-11-15 10:00 - 2017-11-01 23:20 - 019415040 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2017-11-15 10:00 - 2017-11-01 23:20 - 018365952 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2017-11-15 10:00 - 2017-11-01 23:17 - 002641920 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2017-11-15 10:00 - 2017-11-01 23:16 - 012349440 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2017-11-15 10:00 - 2017-11-01 23:16 - 000635904 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2017-11-15 10:00 - 2017-11-01 23:16 - 000189440 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2017-11-15 10:00 - 2017-11-01 23:15 - 000341504 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2017-11-15 10:00 - 2017-11-01 23:14 - 006066176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2017-11-15 10:00 - 2017-11-01 23:14 - 003662848 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2017-11-15 10:00 - 2017-11-01 23:14 - 000506368 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2017-11-15 10:00 - 2017-11-01 23:14 - 000297472 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2017-11-15 10:00 - 2017-11-01 23:13 - 001988096 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2017-11-15 10:00 - 2017-11-01 23:13 - 001488384 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2017-11-15 10:00 - 2017-11-01 23:13 - 001239552 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2017-11-15 10:00 - 2017-11-01 23:12 - 002028032 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2017-11-15 10:00 - 2017-11-01 23:12 - 000773120 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2017-11-15 10:00 - 2017-11-01 23:12 - 000693248 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2017-11-15 10:00 - 2017-11-01 23:12 - 000656896 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2017-11-15 10:00 - 2017-11-01 23:11 - 002997760 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2017-11-15 10:00 - 2017-11-01 20:44 - 000339968 _____ (Microsoft Corporation) C:\WINDOWS\system32\msexcl40.dll
2017-11-15 10:00 - 2017-10-09 03:39 - 000067928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\stornvme.sys
2017-11-15 10:00 - 2017-10-09 03:35 - 005994840 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2017-11-15 10:00 - 2017-10-09 03:34 - 000082608 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcd.dll
2017-11-15 10:00 - 2017-10-09 03:32 - 000370520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbhub.sys
2017-11-15 10:00 - 2017-10-09 03:30 - 000950104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2017-11-15 10:00 - 2017-10-09 03:28 - 000482384 _____ (Microsoft Corporation) C:\WINDOWS\system32\advapi32.dll
2017-11-15 10:00 - 2017-10-09 03:26 - 000459096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2017-11-15 10:00 - 2017-10-09 03:26 - 000290648 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS
2017-11-15 10:00 - 2017-10-09 03:24 - 000126808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbccgp.sys
2017-11-15 10:00 - 2017-10-09 03:23 - 020967832 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2017-11-15 10:00 - 2017-10-09 03:20 - 001962328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2017-11-15 10:00 - 2017-10-09 03:20 - 000784728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\http.sys
2017-11-15 10:00 - 2017-10-09 03:19 - 000455000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys
2017-11-15 10:00 - 2017-10-09 03:19 - 000353112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\volsnap.sys
2017-11-15 10:00 - 2017-10-09 03:17 - 000198496 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHost.dll
2017-11-15 10:00 - 2017-10-09 03:05 - 000353792 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpshell.exe
2017-11-15 10:00 - 2017-10-09 03:05 - 000281088 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXTaskFactory.dll
2017-11-15 10:00 - 2017-10-09 03:05 - 000276992 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpinit.exe
2017-11-15 10:00 - 2017-10-09 03:02 - 000019456 _____ (Microsoft Corporation) C:\WINDOWS\system32\mgmtapi.dll
2017-11-15 10:00 - 2017-10-09 03:00 - 000044032 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCredential.dll
2017-11-15 10:00 - 2017-10-09 02:59 - 000451072 _____ (Microsoft Corporation) C:\WINDOWS\system32\rastls.dll
2017-11-15 10:00 - 2017-10-09 02:52 - 000713216 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnapps.dll
2017-11-15 10:00 - 2017-10-09 02:49 - 001139712 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2017-11-15 10:00 - 2017-10-09 02:48 - 000704512 _____ (Microsoft Corporation) C:\WINDOWS\system32\cscui.dll
2017-11-15 10:00 - 2017-10-09 02:44 - 001890304 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2017-11-15 10:00 - 2017-10-09 02:44 - 000711168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Search.dll
2017-11-15 10:00 - 2017-10-09 02:44 - 000295424 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2017-11-15 09:59 - 2017-11-02 00:06 - 000517984 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2017-11-15 09:59 - 2017-11-02 00:06 - 000496992 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2017-11-15 09:59 - 2017-11-02 00:06 - 000223584 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
2017-11-15 09:59 - 2017-11-02 00:06 - 000158560 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2017-11-15 09:59 - 2017-11-02 00:05 - 001927008 _____ (Microsoft Corporation) C:\WINDOWS\system32\aitstatic.exe
2017-11-15 09:59 - 2017-11-02 00:05 - 001330016 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2017-11-15 09:59 - 2017-11-02 00:05 - 000364384 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcntel.dll
2017-11-15 09:59 - 2017-11-02 00:05 - 000312152 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2017-11-15 09:59 - 2017-11-02 00:05 - 000060256 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32appinventorycsp.dll
2017-11-15 09:59 - 2017-11-02 00:05 - 000030552 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe
2017-11-15 09:59 - 2017-11-01 23:47 - 000581664 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2017-11-15 09:59 - 2017-11-01 23:47 - 000409440 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcasvc.dll
2017-11-15 09:59 - 2017-11-01 23:44 - 000581048 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2017-11-15 09:59 - 2017-11-01 23:44 - 000341976 _____ (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll
2017-11-15 09:59 - 2017-11-01 23:44 - 000269152 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFault.exe
2017-11-15 09:59 - 2017-11-01 23:44 - 000139096 _____ (Microsoft Corporation) C:\WINDOWS\system32\wermgr.exe
2017-11-15 09:59 - 2017-11-01 23:44 - 000120416 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFaultSecure.exe
2017-11-15 09:59 - 2017-11-01 23:43 - 000075040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpfve.sys
2017-11-15 09:59 - 2017-11-01 23:27 - 000026624 _____ (Microsoft Corporation) C:\WINDOWS\system32\UsoClient.exe
2017-11-15 09:59 - 2017-11-01 23:26 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzres.dll
2017-11-15 09:59 - 2017-11-01 23:22 - 000073728 _____ (Microsoft Corporation) C:\WINDOWS\system32\wercplsupport.dll
2017-11-15 09:59 - 2017-11-01 23:20 - 000099328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\luafv.sys
2017-11-15 09:59 - 2017-11-01 23:19 - 000145920 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWWIN.EXE
2017-11-15 09:59 - 2017-11-01 23:18 - 000073728 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsqmcons.exe
2017-11-15 09:59 - 2017-11-01 23:17 - 000538112 _____ (Microsoft Corporation) C:\WINDOWS\system32\PCPTpm12.dll
2017-11-15 09:59 - 2017-11-01 23:16 - 000216064 _____ (Microsoft Corporation) C:\WINDOWS\system32\ubpm.dll
2017-11-15 09:59 - 2017-11-01 23:16 - 000128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\wersvc.dll
2017-11-15 09:59 - 2017-11-01 23:15 - 000427008 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
2017-11-15 09:59 - 2017-11-01 23:15 - 000399360 _____ (Microsoft Corporation) C:\WINDOWS\system32\werui.dll
2017-11-15 09:59 - 2017-11-01 23:15 - 000262144 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll
2017-11-15 09:59 - 2017-11-01 23:11 - 001161728 _____ (Microsoft Corporation) C:\WINDOWS\system32\werconcpl.dll
2017-11-15 09:59 - 2017-10-09 03:42 - 000076120 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncAppvPublishingServer.exe
2017-11-15 09:59 - 2017-10-09 03:41 - 001136984 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVIntegration.dll
2017-11-15 09:59 - 2017-10-09 03:41 - 000918360 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntSubsystemController.dll
2017-11-15 09:59 - 2017-10-09 03:41 - 000812888 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVPolicy.dll
2017-11-15 09:59 - 2017-10-09 03:41 - 000541016 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVReporting.dll
2017-11-15 09:59 - 2017-10-09 03:41 - 000494432 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVPublishing.dll
2017-11-15 09:59 - 2017-10-09 03:41 - 000400224 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVCatalog.dll
2017-11-15 09:59 - 2017-10-09 03:40 - 000616792 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVClient.exe
2017-11-15 09:59 - 2017-10-09 03:40 - 000498008 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntVirtualization.dll
2017-11-15 09:59 - 2017-10-09 03:40 - 000372568 _____ (Microsoft Corporation) C:\WINDOWS\system32\TransportDSA.dll
2017-11-15 09:59 - 2017-10-09 03:40 - 000294232 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVScripting.dll
2017-11-15 09:59 - 2017-10-09 03:40 - 000154968 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVStreamingUX.dll
2017-11-15 09:59 - 2017-10-09 03:36 - 001470808 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntSubsystems32.dll
2017-11-15 09:59 - 2017-10-09 03:35 - 000559968 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVOrchestration.dll
2017-11-15 09:59 - 2017-10-09 03:35 - 000558424 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntStreamingManager.dll
2017-11-15 09:59 - 2017-10-09 03:34 - 000965464 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReAgent.dll
2017-11-15 09:59 - 2017-10-09 03:33 - 000173400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wof.sys
2017-11-15 09:59 - 2017-10-09 03:24 - 000205104 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininit.exe
2017-11-15 09:59 - 2017-10-09 03:16 - 001384696 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2017-11-15 09:59 - 2017-10-09 03:16 - 000178008 _____ (Microsoft Corporation) C:\WINDOWS\system32\basecsp.dll
2017-11-15 09:59 - 2017-10-09 03:02 - 000165376 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReInfo.dll
2017-11-15 09:59 - 2017-10-09 03:00 - 000146432 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdboot.exe
2017-11-15 09:59 - 2017-10-09 02:58 - 000231936 _____ (Microsoft Corporation) C:\WINDOWS\system32\scksp.dll
2017-11-15 09:59 - 2017-10-09 02:58 - 000117248 _____ (Microsoft Corporation) C:\WINDOWS\system32\regsvc.dll
2017-11-15 09:59 - 2017-10-09 02:55 - 000373760 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdedit.exe
2017-11-15 09:59 - 2017-10-09 02:55 - 000049664 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAgent.exe
2017-11-15 09:59 - 2017-10-09 02:54 - 000728064 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2017-11-15 09:59 - 2017-10-09 02:53 - 003774464 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2017-11-15 09:59 - 2017-10-09 02:53 - 000106496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Robocopy.exe
2017-11-15 09:59 - 2017-10-09 02:52 - 001220608 _____ (Microsoft Corporation) C:\WINDOWS\system32\RecoveryDrive.exe
2017-11-15 09:59 - 2017-10-09 02:52 - 000945664 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2017-11-15 09:59 - 2017-10-09 02:51 - 000494592 _____ (Microsoft Corporation) C:\WINDOWS\system32\BootMenuUX.dll
2017-11-15 09:59 - 2017-10-09 02:51 - 000069120 _____ (Microsoft Corporation) C:\WINDOWS\system32\spbcd.dll
2017-11-15 09:59 - 2017-10-09 02:49 - 000056832 _____ (Microsoft Corporation) C:\WINDOWS\system32\setbcdlocale.dll
2017-11-15 09:59 - 2017-10-09 02:45 - 000144896 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceEnroller.exe
2017-11-15 09:59 - 2017-10-09 02:44 - 004423680 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
2017-11-15 09:59 - 2017-10-09 02:44 - 000920064 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2017-11-15 09:59 - 2017-10-09 02:42 - 001438720 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngine.dll
2017-11-15 09:59 - 2017-10-09 01:29 - 000788624 _____ C:\WINDOWS\system32\locale.nls
2017-11-14 10:16 - 2017-11-14 10:42 - 000000000 ____D C:\Users\Jeff\AppData\Roaming\NCH Software
2017-11-14 10:16 - 2017-11-14 10:16 - 000001219 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoPad - Logiciel de montage vidéo.lnk
2017-11-14 10:16 - 2017-11-14 10:16 - 000001207 _____ C:\Users\Public\Desktop\VideoPad.lnk
2017-11-14 10:15 - 2017-11-14 10:16 - 005676712 _____ (NCH Software) C:\Users\Jeff\Downloads\vppsetup.exe
2017-11-12 21:31 - 2017-11-12 21:38 - 000000000 ____D C:\Users\Jeff\Downloads\passeport
2017-11-12 09:44 - 2017-11-12 09:44 - 373072693 _____ C:\WINDOWS\MEMORY.DMP
2017-11-12 09:44 - 2017-11-12 09:44 - 001443468 _____ C:\WINDOWS\Minidump\111217-12765-01.dmp
2017-11-11 17:01 - 2017-11-11 17:01 - 000001135 _____ C:\Users\Jeff\Desktop\Thailande 2018 22 janvier au 22 février - Raccourci.lnk
2017-11-10 18:24 - 2017-11-16 09:16 - 000076800 _____ C:\Users\Jeff\Downloads\carte du parcour.ppt
2017-11-10 17:46 - 2017-11-10 17:46 - 000141054 _____ C:\Users\Jeff\Downloads\tab 1.pdf
2017-11-10 17:44 - 2017-11-10 17:44 - 000126980 _____ C:\Users\Jeff\Downloads\tab 2.pdf
2017-11-09 15:31 - 2017-11-09 15:31 - 000000000 ____D C:\Users\Jeff\Downloads\activateur office 2010
2017-11-09 15:20 - 2017-11-09 15:20 - 000000998 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 13.lnk
2017-11-09 15:20 - 2017-11-09 15:20 - 000000986 _____ C:\Users\Public\Desktop\TeamViewer 13.lnk
2017-11-09 07:26 - 2017-11-09 07:26 - 000000000 ____D C:\WINDOWS\Panther
2017-11-05 12:47 - 2017-11-05 12:47 - 000670208 _____ C:\Users\Jeff\Downloads\Citations genantes.pps
2017-11-04 08:00 - 2017-11-04 08:00 - 000023821 _____ C:\Users\Jeff\Downloads\Mes endroits 03112017.kmz
2017-11-02 18:11 - 2017-11-03 09:08 - 000000000 ____D C:\Users\Jeff\AppData\Local\Spotify
2017-11-02 18:11 - 2017-11-02 18:11 - 000001869 _____ C:\Users\Jeff\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Spotify.lnk
2017-11-02 18:06 - 2017-11-03 09:08 - 000000000 ____D C:\Users\Jeff\AppData\Roaming\Spotify
2017-10-25 14:37 - 2017-10-25 15:47 - 000000000 ____D C:\Users\Jeff\Downloads\Win7_sp1_x86_(32bits)_all_versions
2017-10-25 14:14 - 2017-10-25 14:16 - 000000000 ____D C:\Users\Jeff\Downloads\Medion drivers W7
==================== Un mois - Modifiés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2017-11-21 09:15 - 2016-07-16 18:15 - 011211186 _____ C:\WINDOWS\system32\perfh00C.dat
2017-11-21 09:15 - 2016-07-16 18:15 - 003229118 _____ C:\WINDOWS\system32\perfc00C.dat
2017-11-21 09:15 - 2015-08-02 08:23 - 021498784 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2017-11-21 09:14 - 2016-09-29 18:58 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2017-11-21 09:09 - 2013-01-27 08:57 - 000450720 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2017-11-21 09:08 - 2016-09-29 19:39 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2017-11-20 22:15 - 2016-07-16 03:22 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2017-11-20 10:22 - 2016-07-16 09:28 - 000000000 ____D C:\WINDOWS\INF
2017-11-20 10:02 - 2013-01-21 14:15 - 000080888 _____ C:\Users\Jeff\AppData\Roaming\GDIPFONTCACHEV1.DAT
2017-11-20 09:51 - 2016-09-29 19:06 - 000000000 ____D C:\Users\Jeff
2017-11-20 09:13 - 2016-11-29 20:12 - 000000000 ____D C:\AdwCleaner
2017-11-20 08:38 - 2017-04-21 08:24 - 000220088 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2017-11-19 23:18 - 2014-01-11 11:59 - 000000000 ____D C:\Users\Jeff\AppData\Roaming\ObviousIdea
2017-11-19 23:18 - 2014-01-11 11:58 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ObviousIdea
2017-11-19 23:18 - 2014-01-11 11:58 - 000000000 ____D C:\Program Files\ObviousIdea
2017-11-19 23:03 - 2016-07-16 09:29 - 000000000 ____D C:\WINDOWS\registration
2017-11-19 22:28 - 2014-10-28 12:50 - 000000000 ____D C:\Users\Jeff\AppData\LocalLow\Adblock Plus for IE
2017-11-19 21:38 - 2015-03-24 09:18 - 000024688 _____ C:\WINDOWS\system32\Drivers\TrueSight.sys
2017-11-19 21:13 - 2013-01-16 16:27 - 000000000 ____D C:\Users\Jeff\AppData\Local\Google
2017-11-19 19:42 - 2017-05-17 20:07 - 000000000 ____D C:\Program Files\Kodi
2017-11-19 13:26 - 2015-08-02 11:12 - 000001890 __RSH C:\ProgramData\ntuser.pol
2017-11-19 09:52 - 2013-09-29 10:04 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive
2017-11-18 21:45 - 2017-09-28 07:51 - 000000000 ____D C:\Users\Jeff\Desktop\Egypte video 12 au 27 sept 2017
2017-11-18 20:15 - 2016-07-16 09:29 - 000000000 ____D C:\WINDOWS\rescache
2017-11-17 08:18 - 2017-09-29 07:04 - 000000000 ____D C:\Program Files\rempl
2017-11-17 08:17 - 2016-09-29 18:58 - 000312040 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2017-11-16 10:51 - 2016-07-16 09:29 - 000000000 ____D C:\WINDOWS\AppReadiness
2017-11-16 09:54 - 2014-06-07 13:28 - 000000000 ____D C:\Users\Jeff\AppData\Local\Adobe
2017-11-15 21:52 - 2015-08-02 08:30 - 000000000 __RHD C:\Users\Public\AccountPictures
2017-11-15 21:49 - 2016-07-16 09:30 - 000209408 _____ (Microsoft Corporation) C:\WINDOWS\system32\msclmd.dll
2017-11-15 21:49 - 2016-07-16 09:29 - 000000000 ___RD C:\Program Files\Windows Defender
2017-11-15 21:49 - 2016-07-16 09:29 - 000000000 ____D C:\WINDOWS\system32\oobe
2017-11-15 21:49 - 2016-07-16 09:29 - 000000000 ____D C:\WINDOWS\system32\appraiser
2017-11-15 21:49 - 2016-07-16 09:29 - 000000000 ____D C:\WINDOWS\ShellExperiences
2017-11-15 11:26 - 2016-12-19 15:29 - 000001963 _____ C:\Users\Jeff\Desktop\Hard Disk Low Level Format.lnk
2017-11-15 10:27 - 2016-07-16 09:19 - 000000000 ____D C:\WINDOWS\CbsTemp
2017-11-15 10:27 - 2013-07-21 14:16 - 000000000 ____D C:\WINDOWS\system32\MRT
2017-11-15 10:07 - 2017-10-11 08:01 - 124282896 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT-KB890830.exe
2017-11-15 10:07 - 2013-01-18 08:44 - 124282896 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2017-11-15 10:05 - 2016-07-16 09:29 - 000000000 ___HD C:\Program Files\WindowsApps
2017-11-15 09:46 - 2017-04-13 12:16 - 000002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2017-11-15 09:36 - 2016-07-16 09:29 - 000000000 ____D C:\WINDOWS\system32\Macromed
2017-11-14 16:34 - 2013-01-25 17:03 - 000000000 _RSHD C:\acroldr
2017-11-14 10:49 - 2015-03-21 20:31 - 000000000 ____D C:\Users\Jeff\AppData\Roaming\DVDVideoSoft
2017-11-14 10:16 - 2014-09-12 09:05 - 000000000 ____D C:\ProgramData\NCH Software
2017-11-14 10:16 - 2014-09-12 09:04 - 000000000 ____D C:\Program Files\NCH Software
2017-11-12 09:44 - 2016-10-05 18:08 - 000000000 ____D C:\WINDOWS\Minidump
2017-11-09 15:39 - 2014-04-13 09:53 - 000000000 ____D C:\Users\Jeff\AppData\Roaming\BitTorrent
2017-11-09 15:21 - 2013-02-02 12:24 - 000000000 ____D C:\Program Files\TeamViewer
2017-11-07 08:15 - 2015-08-02 08:37 - 000002442 _____ C:\Users\Jeff\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2017-11-07 08:15 - 2015-08-02 08:37 - 000000000 ___RD C:\Users\Jeff\OneDrive
2017-11-05 01:47 - 2016-07-16 09:31 - 000835568 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2017-11-05 01:47 - 2016-07-16 09:31 - 000177648 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2017-11-02 02:01 - 2011-12-05 18:34 - 000389332 __RSH C:\bootmgr
2017-10-28 11:59 - 2016-04-13 08:59 - 000000000 ____D C:\Users\Jeff\Desktop\016 Egypte video 30 mars au 12 avril 2016 Leclerc Tulip Ressort par FTI
2017-10-28 11:58 - 2016-09-21 19:45 - 000000000 ____D C:\Users\Jeff\Desktop\017 Egypte video 06 au 21 sept 2016 Magic Tulip Ressort
2017-10-28 07:47 - 2016-12-26 10:08 - 000001382 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IP Camera Viewer 4.lnk
2017-10-28 07:47 - 2016-12-26 10:08 - 000001370 _____ C:\Users\Public\Desktop\IP Camera Viewer 4.lnk
==================== Fichiers à la racine de certains dossiers =======
2015-01-07 17:35 - 2015-01-07 17:35 - 000041035 _____ () C:\Program Files\CMS Setup Log.txt
2015-02-17 20:21 - 2015-02-17 20:21 - 000017792 _____ () C:\Program Files\CMS Uninstall Log.txt
2015-01-07 18:06 - 2015-01-07 18:07 - 000010347 _____ () C:\Program Files\Player Setup Log.txt
2015-02-17 20:22 - 2015-02-17 20:22 - 000004453 _____ () C:\Program Files\Player Uninstall Log.txt
2013-12-23 16:12 - 2013-10-10 13:36 - 000003236 ____H () C:\Users\Jeff\AppData\Roaming\1.bat
2015-06-09 12:26 - 2015-06-09 12:26 - 000000132 _____ () C:\Users\Jeff\AppData\Roaming\Adobe GIF Format CS5 Prefs
2013-01-17 09:04 - 2013-01-16 23:30 - 000081920 _____ () C:\Users\Jeff\AppData\Roaming\chrtmp
2014-09-01 09:18 - 2014-09-01 09:18 - 000001248 _____ () C:\Users\Jeff\AppData\Roaming\LCEFUOWD
2013-12-23 16:12 - 2013-10-15 11:13 - 008182960 _____ (Hamrick Software) C:\Users\Jeff\AppData\Roaming\old.exe
2014-12-27 18:36 - 2014-12-27 18:37 - 000000334 _____ () C:\Users\Jeff\AppData\Roaming\WinInstallFlashLog.ini
2013-01-16 22:32 - 2013-01-16 22:32 - 000000092 _____ () C:\Users\Jeff\AppData\Local\fusioncache.dat
2014-07-17 08:28 - 2014-07-17 08:28 - 000000001 _____ () C:\Users\Jeff\AppData\Local\llftool.4.40.agreement
2014-11-17 20:52 - 2014-11-17 20:52 - 000000738 _____ () C:\Users\Jeff\AppData\Local\recently-used.xbel
2013-01-26 17:06 - 2013-01-26 17:06 - 000000017 _____ () C:\Users\Jeff\AppData\Local\resmon.resmoncfg
2016-12-13 12:10 - 2016-11-23 14:37 - 000000570 _____ () C:\Users\Jeff\AppData\Local\TroubleshooterConfig.json
Certains fichiers dans TEMP:
====================
2017-11-19 21:38 - 2017-09-07 07:32 - 001587248 _____ (Microsoft Corporation) C:\Users\Jeff\AppData\Local\Temp\dllnt_dump.dll
2017-11-19 10:51 - 2017-11-19 10:52 - 036354152 _____ (Ellora Assets Corporation ) C:\Users\Jeff\AppData\Local\Temp\FreemakeVideoConverterFull.exe
==================== Bamital & volsnap ======================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
C:\WINDOWS\explorer.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\winlogon.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\wininit.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\svchost.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\services.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\User32.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\userinit.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\rpcss.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\dnsapi.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\Drivers\volsnap.sys => Le fichier est signé numériquement
LastRegBack: 2017-11-19 20:31
==================== Fin de FRST.txt ============================