Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 26-12-2017
Exécuté par Sebastien (administrateur) sur SEBASTIEN-PC (28-12-2017 11:55:22)
Exécuté depuis C:\Users\Sebastien\Desktop
Profils chargés: Sebastien (Profils disponibles: Sebastien)
Platform: Windows 7 Home Premium Service Pack 1 (X64) Langue: Français (France)
Internet Explorer Version 11 (Navigateur par défaut: Chrome)
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 18.0.0\avp.exe
() C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe
() C:\Program Files (x86)\Canon\IJPLM\ijplmsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.7\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.7\GoogleCrashHandler64.exe
(AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 18.0.0\avpui.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Logitech, Inc.) C:\Program Files\Logitech\SetPointP\SetPoint.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
(CANON INC.) C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE
(Logitech, Inc.) C:\Program Files\Common Files\LogiShrd\KHAL3\KHALMNPR.exe
(Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe
(Microsoft Corporation) C:\Windows\splwow64.exe
(CANON INC.) C:\Program Files (x86)\Canon\Quick Menu\CNQMUPDT.EXE
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Secure Connection 2.0\ksde.exe
(AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Secure Connection 2.0\ksdeui.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Trimble, Inc.) D:\SketchUp\SketchUp 2017\SketchUp.exe
() D:\SketchUp\SketchUp 2017\sketchup_webhelper.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
==================== Registre (Avec liste blanche) ===========================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2398776 2016-06-15] (NVIDIA Corporation)
HKLM\...\Run: [EvtMgr6] => C:\Program Files\Logitech\SetPointP\SetPoint.exe [3113592 2015-08-26] (Logitech, Inc.)
HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [292848 2014-02-21] (Intel Corporation)
HKLM-x32\...\Run: [CanonQuickMenu] => C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE [1314432 2016-03-11] (CANON INC.)
Winlogon\Notify\LBTWlgn: c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll (Logitech, Inc.)
HKU\S-1-5-21-1325430916-4067957340-357528847-1000\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [4289728 2016-04-04] (Disc Soft Ltd)
HKU\S-1-5-21-1325430916-4067957340-357528847-1000\...\Policies\Explorer: []
HKU\S-1-5-21-1325430916-4067957340-357528847-1000\...\MountPoints2: G - G:\Setup.exe
HKU\S-1-5-21-1325430916-4067957340-357528847-1000\...\MountPoints2: H - H:\autorun.exe
HKU\S-1-5-21-1325430916-4067957340-357528847-1000\...\MountPoints2: I - I:\setup.exe
HKU\S-1-5-21-1325430916-4067957340-357528847-1000\...\MountPoints2: {268c7058-eb48-11e7-9757-f3bcfdcd572c} - F:\HiSuiteDownLoader.exe
HKU\S-1-5-21-1325430916-4067957340-357528847-1000\...\MountPoints2: {26b7a0d0-4992-11e6-a800-408d5c921aa0} - H:\autorun.exe
HKU\S-1-5-21-1325430916-4067957340-357528847-1000\...\MountPoints2: {2c50cec7-9e3f-11e6-8b57-408d5c921aa0} - F:\HiSuiteDownLoader.exe
HKU\S-1-5-21-1325430916-4067957340-357528847-1000\...\MountPoints2: {5b5e3b3c-13a0-11e6-97e2-408d5c921aa0} - H:\Setup.exe
HKU\S-1-5-21-1325430916-4067957340-357528847-1000\...\MountPoints2: {6ee1ac45-bb21-11e6-9f1b-408d5c921aa0} - E:\HiSuiteDownLoader.exe
HKU\S-1-5-21-1325430916-4067957340-357528847-1000\...\MountPoints2: {711ca50e-58e0-11e6-b529-408d5c921aa0} - F:\autorun.exe
HKU\S-1-5-21-1325430916-4067957340-357528847-1000\...\MountPoints2: {aebacfa4-aa8c-11e6-984c-408d5c921aa0} - F:\autorun.exe
HKU\S-1-5-21-1325430916-4067957340-357528847-1000\...\MountPoints2: {ca732ffb-67a2-11e6-a9fe-408d5c921aa0} - G:\autorun.exe
GroupPolicy: Restriction - Chrome <==== ATTENTION
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{1EA05E2B-88D2-412D-8AE6-D22159F35041}: [DhcpNameServer] 192.168.42.129
Tcpip\..\Interfaces\{7E4A8036-BF86-4209-A1BB-CE762E6C9329}: [DhcpNameServer] 192.168.1.1
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
SearchScopes: HKU\S-1-5-21-1325430916-4067957340-357528847-1000 -> {1C2407B0-8D08-4009-84DA-8E672B9EFA37} URL = hxxps://fr.search.yahoo.com/search?p={searchTerms}&intl=fr&fr=yset_ie_syc_oracle&type=orcl_default
BHO: Kaspersky Protection -> {0E2877D3-2641-4970-B794-A553E295428D} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 18.0.0\x64\IEExt\ie_plugin.dll [2017-12-27] (AO Kaspersky Lab)
BHO: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll [2016-02-23] (CANON INC.)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-08-18] (Microsoft Corporation)
BHO: Logitech SetPoint -> {AF949550-9094-4807-95EC-D1C317803333} -> C:\Program Files\Logitech\SetPointP\SetPointSmooth.dll [2015-08-26] (Logitech, Inc.)
BHO-x32: Kaspersky Protection -> {0E2877D3-2641-4970-B794-A553E295428D} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 18.0.0\IEExt\ie_plugin.dll [2017-12-27] (AO Kaspersky Lab)
BHO-x32: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll [2016-02-23] (CANON INC.)
BHO-x32: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-08-18] (Microsoft Corporation)
BHO-x32: Logitech SetPoint -> {AF949550-9094-4807-95EC-D1C317803333} -> C:\Program Files\Logitech\SetPointP\32-bit\SetPointSmooth.dll [2015-08-26] (Logitech, Inc.)
Toolbar: HKLM - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll [2016-02-23] (CANON INC.)
Toolbar: HKLM - Kaspersky Protection Toolbar - {4853DF44-7D6B-48E9-9258-D800EEE54AF6} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 18.0.0\x64\IEExt\ie_plugin.dll [2017-12-27] (AO Kaspersky Lab)
Toolbar: HKLM-x32 - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll [2016-02-23] (CANON INC.)
Toolbar: HKLM-x32 - Kaspersky Protection Toolbar - {4853DF44-7D6B-48E9-9258-D800EEE54AF6} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 18.0.0\IEExt\ie_plugin.dll [2017-12-27] (AO Kaspersky Lab)
Toolbar: HKU\S-1-5-21-1325430916-4067957340-357528847-1000 -> Pas de nom - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - Pas de fichier
FireFox:
========
FF HKLM\...\Firefox\Extensions: [light_plugin_448EC0843447455C9DA355B3C2811D6A@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 18.0.0\FFExt\light_plugin_firefox\addon.xpi
FF Extension: (Kaspersky Protection) - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 18.0.0\FFExt\light_plugin_firefox\addon.xpi [2017-12-27]
FF HKLM-x32\...\Firefox\Extensions: [{F003DA68-8256-4b37-A6C4-350FA04494DF}] - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt
FF Extension: (Logitech SetPoint) - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt [2016-08-07] [Legacy] [non signé]
FF HKLM-x32\...\Firefox\Extensions: [light_plugin_448EC0843447455C9DA355B3C2811D6A@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 18.0.0\FFExt\light_plugin_firefox\addon.xpi
FF HKU\S-1-5-21-1325430916-4067957340-357528847-1000\...\Firefox\Extensions: [acewebextension_unlisted@acestream.org] - C:\Users\Sebastien\AppData\Roaming\ACEStream\extensions\awe\firefox\acewebextension_unlisted.xpi => non trouvé(e)
FF Plugin: @microsoft.com/GENUINE -> disabled [Pas de fichier]
FF Plugin-x32: @canon.com/EPPEX -> C:\Program Files (x86)\Canon\My Image Garden\AddOn\CIG\npmigfpi.dll [2015-10-29] (CANON INC.)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [Pas de fichier]
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2015-07-23] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2015-07-23] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-12-27] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-12-27] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.2.2 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2017-11-29] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2017-11-29] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2017-11-29] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2017-11-04] (Adobe Systems Inc.)
Chrome:
=======
CHR Profile: C:\Users\Sebastien\AppData\Local\Google\Chrome\User Data\Default [2017-12-28]
CHR Extension: (Google Drive) - C:\Users\Sebastien\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-12-27]
CHR Extension: (YouTube) - C:\Users\Sebastien\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-12-27]
CHR Extension: (Google Docs hors connexion) - C:\Users\Sebastien\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-12-28]
CHR Extension: (Kaspersky Protection) - C:\Users\Sebastien\AppData\Local\Google\Chrome\User Data\Default\Extensions\mchjnmdbdlkdbfliogedbnpnanfjnolk [2017-12-27]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Sebastien\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-12-27]
CHR Extension: (Gmail) - C:\Users\Sebastien\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-12-27]
CHR Extension: (Chrome Media Router) - C:\Users\Sebastien\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-12-27]
CHR HKLM\...\Chrome\Extension: [looohgelibjoplmkhecmalapkgadkfcc] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [mchjnmdbdlkdbfliogedbnpnanfjnolk] - hxxps://chrome.google.com/webstore/detail/mchjnmdbdlkdbfliogedbnpnanfjnolk
CHR HKU\S-1-5-21-1325430916-4067957340-357528847-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-1325430916-4067957340-357528847-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [mjbepbhonbojpoaenhckjocchgfiaofo] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [ccjleegmemocfpghkhpjmiccjcacackp] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [fabhkdeopjkcpkmofliimbjckmocfiom] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [ibbfklbaljofpaanmpaeadejijfdddco] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [kpdmjodecdegfglgaapafjleomjjlpnh] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [looohgelibjoplmkhecmalapkgadkfcc] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [mchjnmdbdlkdbfliogedbnpnanfjnolk] - hxxps://chrome.google.com/webstore/detail/mchjnmdbdlkdbfliogedbnpnanfjnolk
==================== Services (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 AVP18.0.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 18.0.0\avp.exe [354672 2017-01-24] (AO Kaspersky Lab)
R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe [1443520 2016-04-04] (Disc Soft Ltd)
R2 HuaweiHiSuiteService64.exe; C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe [192200 2017-07-26] () [Fichier non signé]
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe [69632 2005-11-14] (Macrovision Corporation) [Fichier non signé]
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [355232 2015-08-09] (Intel Corporation)
R2 IJPLMSVC; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [387144 2016-02-05] ()
S3 klvssbridge64_18.0.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 18.0.0\x64\vssbridge64.exe [426416 2017-12-27] (AO Kaspersky Lab)
R2 KSDE2.0.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Secure Connection 2.0\ksde.exe [354672 2017-01-24] (AO Kaspersky Lab)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1881144 2016-06-15] (NVIDIA Corporation)
R3 NvStreamNetworkSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe [3634232 2016-06-15] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [2522680 2016-06-15] (NVIDIA Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
S2 shakophNdfsrv; "C:\Program Files (x86)\Shakoph\shakophNdfsrv.exe" {79740E79-A383-47A7-B513-3DF6563D007F} {A16B1AF7-982D-40C3-B5C1-633E1A6A6678} [X]
===================== Pilotes (Avec liste blanche) ======================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R0 cm_km; C:\Windows\System32\DRIVERS\cm_km.sys [247008 2016-12-26] (AO Kaspersky Lab)
R3 dtlitescsibus; C:\Windows\System32\DRIVERS\dtlitescsibus.sys [30264 2016-04-14] (Disc Soft Ltd)
S3 dtliteusbbus; C:\Windows\System32\DRIVERS\dtliteusbbus.sys [47672 2016-04-14] (Disc Soft Ltd)
S3 GPCIDrv; C:\Program Files (x86)\GIGABYTE\GIGABYTE OC_GURU II\GPCIDrv64.sys [14376 2014-08-28] ()
S3 HWHandSet; C:\Windows\System32\DRIVERS\hw_quusbmdm.sys [226560 2017-07-26] (Huawei Technologies Co., Ltd.)
U5 hw_usbdev; C:\Windows\System32\Drivers\hw_usbdev.sys [116864 2017-07-26] (Huawei Technologies Co., Ltd.)
R0 kl1; C:\Windows\System32\DRIVERS\kl1.sys [554408 2016-10-01] (AO Kaspersky Lab)
R0 klbackupdisk; C:\Windows\System32\DRIVERS\klbackupdisk.sys [70880 2017-12-27] (AO Kaspersky Lab)
R1 klbackupflt; C:\Windows\System32\DRIVERS\klbackupflt.sys [117984 2017-12-27] (AO Kaspersky Lab)
R2 kldisk; C:\Windows\System32\DRIVERS\kldisk.sys [78216 2016-05-31] (AO Kaspersky Lab)
R3 klflt; C:\Windows\System32\DRIVERS\klflt.sys [206040 2017-12-27] (AO Kaspersky Lab)
R1 klhk; C:\Windows\System32\DRIVERS\klhk.sys [350944 2017-12-27] (AO Kaspersky Lab)
R1 KLIF; C:\Windows\System32\DRIVERS\klif.sys [1071808 2017-12-27] (AO Kaspersky Lab)
R1 KLIM6; C:\Windows\System32\DRIVERS\klim6.sys [57936 2016-10-11] (AO Kaspersky Lab)
R3 klkbdflt; C:\Windows\System32\DRIVERS\klkbdflt.sys [57568 2016-12-23] (AO Kaspersky Lab)
R3 klmouflt; C:\Windows\System32\DRIVERS\klmouflt.sys [58592 2016-12-07] (AO Kaspersky Lab)
R1 klpd; C:\Windows\System32\DRIVERS\klpd.sys [50672 2017-10-15] (AO Kaspersky Lab)
R3 kltap; C:\Windows\System32\DRIVERS\kltap.sys [52152 2016-06-07] (The OpenVPN Project)
R1 kltdi; C:\Windows\System32\DRIVERS\kltdi.sys [81904 2017-10-15] (AO Kaspersky Lab)
R1 Klwtp; C:\Windows\System32\DRIVERS\klwtp.sys [140000 2017-12-27] (AO Kaspersky Lab)
R1 kneps; C:\Windows\System32\DRIVERS\kneps.sys [199392 2017-12-27] (AO Kaspersky Lab)
R3 MEIx64; C:\Windows\System32\DRIVERS\TeeDriverx64.sys [178976 2015-07-07] (Intel Corporation)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [28216 2016-06-15] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [56384 2016-04-14] (NVIDIA Corporation)
S3 EsgScanner; system32\DRIVERS\EsgScanner.sys [X]
S3 IntcAzAudAddService; system32\drivers\RTKVHD64.sys [X]
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois - Créés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2017-12-28 11:55 - 2017-12-28 11:55 - 000019682 _____ C:\Users\Sebastien\Desktop\FRST.txt
2017-12-28 10:53 - 2017-12-28 10:53 - 002956160 _____ C:\Users\Sebastien\ZHPDiag3.exe
2017-12-28 10:49 - 2017-12-28 10:50 - 008198432 _____ (Malwarebytes) C:\Users\Sebastien\Desktop\adwcleaner_7.0.6.0.exe
2017-12-28 10:42 - 2017-12-28 10:42 - 002999168 _____ C:\Users\Sebastien\Desktop\ZHPCleaner.exe
2017-12-28 10:42 - 2017-12-28 10:42 - 000000850 _____ C:\Users\Sebastien\Desktop\ZHPCleaner.lnk
2017-12-28 10:20 - 2017-12-28 10:20 - 000311328 _____ (Mozilla) C:\Users\Sebastien\Desktop\Firefox Installer.exe
2017-12-28 09:33 - 2017-12-28 11:55 - 000000000 ____D C:\FRST
2017-12-28 09:33 - 2017-12-28 09:33 - 002391552 _____ (Farbar) C:\Users\Sebastien\Desktop\FRST64.exe
2017-12-28 09:29 - 2017-12-28 10:53 - 000000683 _____ C:\Users\Sebastien\Desktop\ZHPDiag.lnk
2017-12-28 09:29 - 2017-12-28 10:53 - 000000000 ____D C:\Users\Sebastien\AppData\Roaming\ZHP
2017-12-28 09:29 - 2017-12-28 09:29 - 002955136 _____ C:\Users\Sebastien\Desktop\ZHPDiag3.exe
2017-12-27 23:26 - 2017-12-28 10:42 - 000000000 ____D C:\Users\Sebastien\AppData\Local\ZHP
2017-12-27 23:26 - 2017-12-27 23:26 - 002955136 _____ C:\Users\Sebastien\Downloads\ZHPDiag3.exe
2017-12-27 23:22 - 2017-12-27 23:22 - 003927160 _____ (Google) C:\Users\Sebastien\Downloads\chrome_cleanup_tool.exe
2017-12-27 23:17 - 2017-12-27 23:17 - 000002286 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2017-12-27 23:17 - 2017-12-27 23:17 - 000002274 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2017-12-27 23:11 - 2017-12-27 23:11 - 000003500 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2017-12-27 23:11 - 2017-12-27 23:11 - 000003372 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2017-12-27 23:11 - 2017-12-27 23:11 - 000000000 ____D C:\Users\Sebastien\AppData\Local\Deployment
2017-12-27 23:11 - 2017-12-27 23:11 - 000000000 ____D C:\Users\Sebastien\AppData\Local\Apps\2.0
2017-12-27 23:08 - 2014-03-18 03:44 - 000906968 _____ (Realtek ) C:\Windows\system32\Drivers\Rt64win7.sys
2017-12-27 23:08 - 2014-03-18 03:44 - 000107552 _____ (Realtek Semiconductor Corporation) C:\Windows\system32\RTNUninst64.dll
2017-12-27 23:08 - 2014-03-18 03:44 - 000073800 _____ (Realtek Semiconductor Corporation) C:\Windows\system32\RtNicProp64.dll
2017-12-27 22:55 - 2017-12-27 22:55 - 000000000 ____D C:\Users\Sebastien\Documents\temp
2017-12-27 22:52 - 2014-05-13 08:36 - 000000000 ____D C:\Users\Sebastien\Downloads\W7
2017-12-27 22:46 - 2014-05-13 08:23 - 000000000 ____D C:\Users\Sebastien\Downloads\IntelUSB30
2017-12-27 19:35 - 2017-12-28 10:51 - 000000000 ____D C:\AdwCleaner
2017-12-27 18:58 - 2017-12-28 10:53 - 000001631 _____ C:\Users\Public\Desktop\Kaspersky Secure Connection.lnk
2017-12-27 18:58 - 2017-12-28 10:51 - 000002442 _____ C:\Users\Public\Desktop\Kaspersky Total Security.lnk
2017-12-27 18:58 - 2017-12-27 18:58 - 000002210 _____ C:\Users\Public\Desktop\Protection bancaire.lnk
2017-12-27 18:58 - 2017-12-27 18:58 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Total Security
2017-12-27 18:58 - 2017-12-27 18:58 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Secure Connection
2017-12-27 18:58 - 2013-05-06 08:13 - 000110176 _____ (Kaspersky Lab ZAO) C:\Windows\system32\klfphc.dll
2017-12-27 18:57 - 2017-12-27 19:05 - 001071808 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\klif.sys
2017-12-27 18:57 - 2017-12-27 18:58 - 000000000 ____D C:\Program Files (x86)\Kaspersky Lab
2017-12-27 18:57 - 2017-12-27 18:57 - 000350944 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\klhk.sys
2017-12-27 18:57 - 2017-12-27 18:57 - 000206040 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\klflt.sys
2017-12-27 18:57 - 2017-12-27 18:57 - 000149304 _____ (AO Kaspersky Lab) C:\Windows\system32\klhkum.dll
2017-12-27 18:57 - 2017-12-27 18:57 - 000000000 ____D C:\Users\Public\Documents\Logishrd
2017-12-27 18:57 - 2017-12-27 18:57 - 000000000 ____D C:\ProgramData\Kaspersky Lab Setup Files
2017-12-27 18:56 - 2017-12-27 18:56 - 002413136 _____ (Kaspersky Lab) C:\Users\Sebastien\Downloads\startup.exe
2017-12-27 18:43 - 2017-12-27 18:43 - 000000000 ____D C:\Users\Sebastien\AppData\Local\VS Revo Group
2017-12-27 18:43 - 2017-12-27 18:43 - 000000000 ____D C:\ProgramData\VS Revo Group
2017-12-27 18:24 - 2017-12-27 18:24 - 000000000 _____ C:\autoexec.bat
2017-12-27 18:04 - 2017-12-27 19:42 - 000000000 ____D C:\Program Files (x86)\NirSoft
2017-12-27 18:04 - 2017-12-27 18:04 - 000139632 _____ C:\Users\Sebastien\Downloads\produkey_1-91_en_72112.exe
2017-12-27 17:45 - 2017-12-27 17:45 - 000000000 ___HD C:\$GetCurrent
2017-12-27 17:33 - 2017-12-27 19:39 - 000000000 ____D C:\Users\Sebastien\AppData\LocalLow\uTorrent
2017-12-26 09:05 - 2017-12-26 09:05 - 000005359 _____ C:\Users\Sebastien\Downloads\su_bezier_110.rbz
2017-12-23 19:33 - 2017-12-23 19:33 - 000034501 _____ C:\Users\Sebastien\Downloads\mess-pak.zip
2017-12-23 19:06 - 2017-12-23 19:07 - 000000000 ____D C:\Users\Sebastien\Desktop\files
2017-12-23 18:54 - 2017-12-23 18:54 - 000000000 ____D C:\Users\Sebastien\AppData\Roaming\cura
2017-12-23 18:54 - 2017-12-23 18:54 - 000000000 ____D C:\Users\Sebastien\AppData\Local\cura
2017-12-23 18:54 - 2017-12-23 18:54 - 000000000 ____D C:\Program Files\DIFX
2017-12-23 14:35 - 2017-12-23 14:35 - 002318767 _____ C:\Users\Public\Documents\maison lolo.skp
2017-12-13 09:35 - 2017-11-17 05:23 - 003222528 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2017-12-13 09:35 - 2017-11-15 02:27 - 000395968 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2017-12-13 09:35 - 2017-11-15 01:36 - 000347336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2017-12-13 09:35 - 2017-11-14 04:57 - 025731072 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2017-12-13 09:35 - 2017-11-14 04:43 - 002724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2017-12-13 09:35 - 2017-11-14 04:43 - 000004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2017-12-13 09:35 - 2017-11-14 04:32 - 002903552 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2017-12-13 09:35 - 2017-11-14 04:31 - 000066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2017-12-13 09:35 - 2017-11-14 04:31 - 000048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2017-12-13 09:35 - 2017-11-14 04:30 - 000577024 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2017-12-13 09:35 - 2017-11-14 04:30 - 000417792 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2017-12-13 09:35 - 2017-11-14 04:30 - 000088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2017-12-13 09:35 - 2017-11-14 04:25 - 005925888 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2017-12-13 09:35 - 2017-11-14 04:24 - 000054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2017-12-13 09:35 - 2017-11-14 04:24 - 000034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2017-12-13 09:35 - 2017-11-14 04:21 - 000615936 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2017-12-13 09:35 - 2017-11-14 04:20 - 000817152 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2017-12-13 09:35 - 2017-11-14 04:20 - 000814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2017-12-13 09:35 - 2017-11-14 04:20 - 000144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2017-12-13 09:35 - 2017-11-14 04:20 - 000116224 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2017-12-13 09:35 - 2017-11-14 04:15 - 000968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2017-12-13 09:35 - 2017-11-14 04:12 - 000489984 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2017-12-13 09:35 - 2017-11-14 04:06 - 000087552 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2017-12-13 09:35 - 2017-11-14 04:06 - 000077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2017-12-13 09:35 - 2017-11-14 04:05 - 000107520 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2017-12-13 09:35 - 2017-11-14 04:03 - 000199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2017-12-13 09:35 - 2017-11-14 04:02 - 000092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2017-12-13 09:35 - 2017-11-14 04:00 - 000315392 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2017-12-13 09:35 - 2017-11-14 03:59 - 000152064 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2017-12-13 09:35 - 2017-11-14 03:51 - 000262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2017-12-13 09:35 - 2017-11-14 03:48 - 015267328 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2017-12-13 09:35 - 2017-11-14 03:48 - 000807936 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2017-12-13 09:35 - 2017-11-14 03:48 - 000726528 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2017-12-13 09:35 - 2017-11-14 03:47 - 001359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2017-12-13 09:35 - 2017-11-14 03:46 - 002134528 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2017-12-13 09:35 - 2017-11-14 03:39 - 003241472 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2017-12-13 09:35 - 2017-11-14 03:27 - 001544192 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2017-12-13 09:35 - 2017-11-14 03:16 - 000800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2017-12-13 09:35 - 2017-11-14 02:37 - 013679616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2017-12-13 09:35 - 2017-11-14 02:15 - 000416256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2017-12-13 09:35 - 2017-11-14 02:15 - 000279040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2017-12-13 09:35 - 2017-11-14 02:15 - 000076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2017-12-13 09:35 - 2017-11-14 02:10 - 020269056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2017-12-13 09:35 - 2017-11-14 01:32 - 000499200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2017-12-13 09:35 - 2017-11-14 01:31 - 000064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2017-12-13 09:35 - 2017-11-07 21:56 - 002724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2017-12-13 09:35 - 2017-11-07 21:46 - 000341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2017-12-13 09:35 - 2017-11-07 21:46 - 000062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2017-12-13 09:35 - 2017-11-07 21:46 - 000047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2017-12-13 09:35 - 2017-11-07 21:44 - 002293760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2017-12-13 09:35 - 2017-11-07 21:41 - 000047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2017-12-13 09:35 - 2017-11-07 21:41 - 000030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2017-12-13 09:35 - 2017-11-07 21:40 - 000476160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2017-12-13 09:35 - 2017-11-07 21:39 - 000662016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2017-12-13 09:35 - 2017-11-07 21:38 - 000620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2017-12-13 09:35 - 2017-11-07 21:38 - 000115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2017-12-13 09:35 - 2017-11-07 21:29 - 000060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2017-12-13 09:35 - 2017-11-07 21:28 - 000091136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2017-12-13 09:35 - 2017-11-07 21:28 - 000073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2017-12-13 09:35 - 2017-11-07 21:27 - 004509696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2017-12-13 09:35 - 2017-11-07 21:26 - 000168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2017-12-13 09:35 - 2017-11-07 21:24 - 000130048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2017-12-13 09:35 - 2017-11-07 21:19 - 000230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2017-12-13 09:35 - 2017-11-07 21:18 - 000694272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2017-12-13 09:35 - 2017-11-07 21:17 - 002058752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2017-12-13 09:35 - 2017-11-07 21:17 - 001155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2017-12-13 09:35 - 2017-11-07 21:04 - 002767872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2017-12-13 09:35 - 2017-11-07 21:01 - 001313280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2017-12-13 09:35 - 2017-11-07 20:58 - 000710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2017-12-13 09:35 - 2017-11-07 17:31 - 000002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2017-12-13 09:35 - 2017-11-07 17:13 - 000002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2017-12-13 09:35 - 2017-11-04 16:31 - 000194048 _____ (Microsoft Corporation) C:\Windows\system32\itircl.dll
2017-12-13 09:35 - 2017-11-04 16:31 - 000170496 _____ (Microsoft Corporation) C:\Windows\system32\itss.dll
2017-12-13 09:35 - 2017-11-04 16:10 - 000158720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\itircl.dll
2017-12-13 09:35 - 2017-11-04 16:10 - 000142336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\itss.dll
2017-12-13 09:35 - 2017-11-02 17:55 - 000281600 _____ (Microsoft Corporation) C:\Windows\system32\iprtrmgr.dll
2017-12-13 09:35 - 2017-11-02 17:55 - 000138240 _____ (Microsoft Corporation) C:\Windows\system32\rtm.dll
2017-12-13 09:35 - 2017-11-02 17:55 - 000097792 _____ (Microsoft Corporation) C:\Windows\system32\mprdim.dll
2017-12-13 09:35 - 2017-11-02 17:55 - 000009728 _____ (Microsoft Corporation) C:\Windows\system32\iprtprio.dll
2017-12-13 09:35 - 2017-11-02 16:11 - 000271360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iprtrmgr.dll
2017-12-13 09:35 - 2017-11-02 16:11 - 000115200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rtm.dll
2017-12-13 09:35 - 2017-11-02 16:11 - 000075264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mprdim.dll
2017-12-13 09:35 - 2017-11-02 15:56 - 000008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iprtprio.dll
2017-12-13 09:35 - 2017-10-17 00:04 - 001001984 _____ (Microsoft Corporation) C:\Windows\system32\gpedit.dll
2017-12-13 09:35 - 2017-10-16 23:46 - 000953344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gpedit.dll
2017-12-13 09:35 - 2017-10-12 01:20 - 000317440 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdbss.sys
2017-12-12 18:04 - 2017-12-12 18:04 - 005886076 _____ C:\Users\Sebastien\Downloads\6188747.pdf
2017-12-10 19:21 - 2017-12-10 19:21 - 000125235 _____ C:\Users\Sebastien\Downloads\84168 User Manual (New).pdf
2017-12-10 19:20 - 2017-12-10 19:20 - 007930245 _____ C:\Users\Sebastien\Downloads\34865 User Manual FR (160513).pdf
2017-12-07 20:19 - 2017-12-19 22:23 - 000000000 ____D C:\Users\Sebastien\Downloads\Sandie
2017-11-30 17:59 - 2017-12-19 19:44 - 000000000 ____D C:\Users\Sebastien\Documents\OpenTTD
2017-11-30 17:59 - 2017-11-30 17:59 - 000000543 _____ C:\Users\Public\Desktop\OpenTTD.lnk
2017-11-30 17:59 - 2017-11-30 17:59 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenTTD
2017-11-30 17:58 - 2017-11-30 17:58 - 007883056 _____ (OpenTTD Developers) C:\Users\Sebastien\Downloads\openttd-1.7.1-windows-win64.exe
==================== Un mois - Modifiés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2017-12-28 11:51 - 2009-07-14 05:45 - 000034128 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2017-12-28 11:51 - 2009-07-14 05:45 - 000034128 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2017-12-28 11:33 - 2016-04-13 16:03 - 000000000 ____D C:\ProgramData\Kaspersky Lab
2017-12-28 10:57 - 2011-04-12 10:16 - 000747320 _____ C:\Windows\system32\perfh00C.dat
2017-12-28 10:57 - 2011-04-12 10:16 - 000149844 _____ C:\Windows\system32\perfc00C.dat
2017-12-28 10:57 - 2009-07-14 06:13 - 001668256 _____ C:\Windows\system32\PerfStringBackup.INI
2017-12-28 10:57 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\inf
2017-12-28 10:53 - 2016-04-13 15:34 - 000000000 ____D C:\Users\Sebastien
2017-12-28 10:51 - 2016-04-13 16:17 - 000000000 ____D C:\ProgramData\NVIDIA
2017-12-28 10:51 - 2009-07-14 06:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2017-12-28 09:16 - 2016-04-13 17:28 - 000000000 ____D C:\Users\Sebastien\AppData\Local\NVIDIA Corporation
2017-12-27 23:22 - 2016-04-16 09:51 - 000000000 ____D C:\Users\Sebastien\AppData\Local\CrashDumps
2017-12-27 23:17 - 2016-04-13 15:36 - 000000000 ____D C:\Program Files (x86)\Google
2017-12-27 23:09 - 2016-04-13 16:18 - 000000000 ____D C:\Users\Sebastien\AppData\Local\NVIDIA
2017-12-27 23:09 - 2016-04-13 16:17 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2017-12-27 23:09 - 2016-04-13 16:16 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2017-12-27 23:09 - 2016-04-13 16:16 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2017-12-27 23:09 - 2016-04-13 16:13 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2017-12-27 23:08 - 2016-04-13 15:50 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2017-12-27 23:08 - 2016-04-13 15:50 - 000000000 ____D C:\Program Files (x86)\Realtek
2017-12-27 22:53 - 2016-04-14 08:02 - 000000000 __SHD C:\Users\Sebastien\IntelGraphicsProfiles
2017-12-27 22:21 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\system32\NDF
2017-12-27 22:09 - 2016-04-13 20:27 - 000000000 ____D C:\Users\Sebastien\AppData\Local\ElevatedDiagnostics
2017-12-27 21:48 - 2016-04-13 15:49 - 000000000 ___HD C:\Program Files (x86)\Temp
2017-12-27 21:46 - 2016-04-13 15:36 - 000000000 ____D C:\Users\Sebastien\AppData\Local\Google
2017-12-27 21:45 - 2016-07-07 18:13 - 000000000 ____D C:\Program Files (x86)\Canon
2017-12-27 20:30 - 2017-01-13 19:07 - 000000000 ____D C:\Users\Sebastien\AppData\Roaming\uTorrent
2017-12-27 20:08 - 2016-04-15 16:23 - 000001087 _____ C:\Users\Public\Desktop\VLC media player.lnk
2017-12-27 19:58 - 2016-04-14 13:15 - 000000000 ____D C:\Users\Sebastien\AppData\Roaming\DAEMON Tools Lite
2017-12-27 19:58 - 2016-04-13 22:32 - 000000000 ____D C:\Windows\Panther
2017-12-27 19:37 - 2009-07-14 06:08 - 000002188 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2017-12-27 19:07 - 2016-04-13 16:11 - 000000000 ____D C:\Windows\Minidump
2017-12-27 19:06 - 2017-10-15 05:15 - 000140000 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\klwtp.sys
2017-12-27 19:05 - 2017-10-15 05:15 - 000199392 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\kneps.sys
2017-12-27 19:05 - 2017-10-15 05:15 - 000117984 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\klbackupflt.sys
2017-12-27 19:05 - 2017-10-15 05:15 - 000070880 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\klbackupdisk.sys
2017-12-27 18:58 - 2016-10-29 09:06 - 000000000 ____D C:\Program Files\Common Files\AV
2017-12-27 18:12 - 2017-05-14 09:18 - 000000290 __RSH C:\ProgramData\ntuser.pol
2017-12-27 17:38 - 2009-07-14 06:32 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2017-12-24 08:51 - 2016-07-07 18:13 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon Utilities
2017-12-24 08:51 - 2016-06-11 16:36 - 000000000 ____D C:\Users\Sebastien\AppData\Roaming\Canon
2017-12-14 03:43 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\rescache
2017-12-14 03:18 - 2009-07-14 05:45 - 000344368 _____ C:\Windows\system32\FNTCACHE.DAT
2017-12-14 03:17 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\SysWOW64\Setup
2017-12-14 03:17 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\system32\Setup
2017-12-14 03:02 - 2016-04-14 08:13 - 000000000 ____D C:\Windows\system32\MRT
2017-12-14 03:00 - 2017-10-11 02:00 - 133326408 ____C (Microsoft Corporation) C:\Windows\system32\MRT-KB890830.exe
2017-12-14 03:00 - 2016-04-14 08:13 - 133326408 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2017-12-06 12:13 - 2016-07-11 21:48 - 000000000 ____D C:\ProgramData\CanonIJPLM
2017-12-01 18:38 - 2017-05-06 16:10 - 000002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2017-11-30 17:55 - 2017-09-15 18:45 - 000225584 _____ C:\Users\Public\Documents\escalier lo.skp
2017-11-29 21:23 - 2017-09-15 22:57 - 000212340 _____ C:\Users\Public\Documents\escalier lo.skb
==================== Fichiers à la racine de certains dossiers =======
2017-12-28 10:53 - 2017-12-28 10:53 - 002956160 _____ () C:\Users\Sebastien\ZHPDiag3.exe
2017-05-14 09:49 - 2017-05-14 09:49 - 000000017 _____ () C:\Users\Sebastien\AppData\Local\resmon.resmoncfg
==================== Bamital & volsnap ======================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
C:\Windows\system32\winlogon.exe => Le fichier est signé numériquement
C:\Windows\system32\wininit.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\wininit.exe => Le fichier est signé numériquement
C:\Windows\explorer.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\explorer.exe => Le fichier est signé numériquement
C:\Windows\system32\svchost.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\svchost.exe => Le fichier est signé numériquement
C:\Windows\system32\services.exe => Le fichier est signé numériquement
C:\Windows\system32\User32.dll => Le fichier est signé numériquement
C:\Windows\SysWOW64\User32.dll => Le fichier est signé numériquement
C:\Windows\system32\userinit.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\userinit.exe => Le fichier est signé numériquement
C:\Windows\system32\rpcss.dll => Le fichier est signé numériquement
C:\Windows\system32\dnsapi.dll => Le fichier est signé numériquement
C:\Windows\SysWOW64\dnsapi.dll => Le fichier est signé numériquement
C:\Windows\system32\Drivers\volsnap.sys => Le fichier est signé numériquement
LastRegBack: 2017-12-19 00:58
==================== Fin de FRST.txt ============================
Exécuté par Sebastien (administrateur) sur SEBASTIEN-PC (28-12-2017 11:55:22)
Exécuté depuis C:\Users\Sebastien\Desktop
Profils chargés: Sebastien (Profils disponibles: Sebastien)
Platform: Windows 7 Home Premium Service Pack 1 (X64) Langue: Français (France)
Internet Explorer Version 11 (Navigateur par défaut: Chrome)
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 18.0.0\avp.exe
() C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe
() C:\Program Files (x86)\Canon\IJPLM\ijplmsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.7\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.7\GoogleCrashHandler64.exe
(AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 18.0.0\avpui.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Logitech, Inc.) C:\Program Files\Logitech\SetPointP\SetPoint.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
(CANON INC.) C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE
(Logitech, Inc.) C:\Program Files\Common Files\LogiShrd\KHAL3\KHALMNPR.exe
(Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe
(Microsoft Corporation) C:\Windows\splwow64.exe
(CANON INC.) C:\Program Files (x86)\Canon\Quick Menu\CNQMUPDT.EXE
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Secure Connection 2.0\ksde.exe
(AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Secure Connection 2.0\ksdeui.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Trimble, Inc.) D:\SketchUp\SketchUp 2017\SketchUp.exe
() D:\SketchUp\SketchUp 2017\sketchup_webhelper.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
==================== Registre (Avec liste blanche) ===========================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2398776 2016-06-15] (NVIDIA Corporation)
HKLM\...\Run: [EvtMgr6] => C:\Program Files\Logitech\SetPointP\SetPoint.exe [3113592 2015-08-26] (Logitech, Inc.)
HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [292848 2014-02-21] (Intel Corporation)
HKLM-x32\...\Run: [CanonQuickMenu] => C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE [1314432 2016-03-11] (CANON INC.)
Winlogon\Notify\LBTWlgn: c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll (Logitech, Inc.)
HKU\S-1-5-21-1325430916-4067957340-357528847-1000\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [4289728 2016-04-04] (Disc Soft Ltd)
HKU\S-1-5-21-1325430916-4067957340-357528847-1000\...\Policies\Explorer: []
HKU\S-1-5-21-1325430916-4067957340-357528847-1000\...\MountPoints2: G - G:\Setup.exe
HKU\S-1-5-21-1325430916-4067957340-357528847-1000\...\MountPoints2: H - H:\autorun.exe
HKU\S-1-5-21-1325430916-4067957340-357528847-1000\...\MountPoints2: I - I:\setup.exe
HKU\S-1-5-21-1325430916-4067957340-357528847-1000\...\MountPoints2: {268c7058-eb48-11e7-9757-f3bcfdcd572c} - F:\HiSuiteDownLoader.exe
HKU\S-1-5-21-1325430916-4067957340-357528847-1000\...\MountPoints2: {26b7a0d0-4992-11e6-a800-408d5c921aa0} - H:\autorun.exe
HKU\S-1-5-21-1325430916-4067957340-357528847-1000\...\MountPoints2: {2c50cec7-9e3f-11e6-8b57-408d5c921aa0} - F:\HiSuiteDownLoader.exe
HKU\S-1-5-21-1325430916-4067957340-357528847-1000\...\MountPoints2: {5b5e3b3c-13a0-11e6-97e2-408d5c921aa0} - H:\Setup.exe
HKU\S-1-5-21-1325430916-4067957340-357528847-1000\...\MountPoints2: {6ee1ac45-bb21-11e6-9f1b-408d5c921aa0} - E:\HiSuiteDownLoader.exe
HKU\S-1-5-21-1325430916-4067957340-357528847-1000\...\MountPoints2: {711ca50e-58e0-11e6-b529-408d5c921aa0} - F:\autorun.exe
HKU\S-1-5-21-1325430916-4067957340-357528847-1000\...\MountPoints2: {aebacfa4-aa8c-11e6-984c-408d5c921aa0} - F:\autorun.exe
HKU\S-1-5-21-1325430916-4067957340-357528847-1000\...\MountPoints2: {ca732ffb-67a2-11e6-a9fe-408d5c921aa0} - G:\autorun.exe
GroupPolicy: Restriction - Chrome <==== ATTENTION
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{1EA05E2B-88D2-412D-8AE6-D22159F35041}: [DhcpNameServer] 192.168.42.129
Tcpip\..\Interfaces\{7E4A8036-BF86-4209-A1BB-CE762E6C9329}: [DhcpNameServer] 192.168.1.1
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
SearchScopes: HKU\S-1-5-21-1325430916-4067957340-357528847-1000 -> {1C2407B0-8D08-4009-84DA-8E672B9EFA37} URL = hxxps://fr.search.yahoo.com/search?p={searchTerms}&intl=fr&fr=yset_ie_syc_oracle&type=orcl_default
BHO: Kaspersky Protection -> {0E2877D3-2641-4970-B794-A553E295428D} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 18.0.0\x64\IEExt\ie_plugin.dll [2017-12-27] (AO Kaspersky Lab)
BHO: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll [2016-02-23] (CANON INC.)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-08-18] (Microsoft Corporation)
BHO: Logitech SetPoint -> {AF949550-9094-4807-95EC-D1C317803333} -> C:\Program Files\Logitech\SetPointP\SetPointSmooth.dll [2015-08-26] (Logitech, Inc.)
BHO-x32: Kaspersky Protection -> {0E2877D3-2641-4970-B794-A553E295428D} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 18.0.0\IEExt\ie_plugin.dll [2017-12-27] (AO Kaspersky Lab)
BHO-x32: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll [2016-02-23] (CANON INC.)
BHO-x32: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-08-18] (Microsoft Corporation)
BHO-x32: Logitech SetPoint -> {AF949550-9094-4807-95EC-D1C317803333} -> C:\Program Files\Logitech\SetPointP\32-bit\SetPointSmooth.dll [2015-08-26] (Logitech, Inc.)
Toolbar: HKLM - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll [2016-02-23] (CANON INC.)
Toolbar: HKLM - Kaspersky Protection Toolbar - {4853DF44-7D6B-48E9-9258-D800EEE54AF6} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 18.0.0\x64\IEExt\ie_plugin.dll [2017-12-27] (AO Kaspersky Lab)
Toolbar: HKLM-x32 - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll [2016-02-23] (CANON INC.)
Toolbar: HKLM-x32 - Kaspersky Protection Toolbar - {4853DF44-7D6B-48E9-9258-D800EEE54AF6} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 18.0.0\IEExt\ie_plugin.dll [2017-12-27] (AO Kaspersky Lab)
Toolbar: HKU\S-1-5-21-1325430916-4067957340-357528847-1000 -> Pas de nom - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - Pas de fichier
FireFox:
========
FF HKLM\...\Firefox\Extensions: [light_plugin_448EC0843447455C9DA355B3C2811D6A@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 18.0.0\FFExt\light_plugin_firefox\addon.xpi
FF Extension: (Kaspersky Protection) - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 18.0.0\FFExt\light_plugin_firefox\addon.xpi [2017-12-27]
FF HKLM-x32\...\Firefox\Extensions: [{F003DA68-8256-4b37-A6C4-350FA04494DF}] - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt
FF Extension: (Logitech SetPoint) - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt [2016-08-07] [Legacy] [non signé]
FF HKLM-x32\...\Firefox\Extensions: [light_plugin_448EC0843447455C9DA355B3C2811D6A@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 18.0.0\FFExt\light_plugin_firefox\addon.xpi
FF HKU\S-1-5-21-1325430916-4067957340-357528847-1000\...\Firefox\Extensions: [acewebextension_unlisted@acestream.org] - C:\Users\Sebastien\AppData\Roaming\ACEStream\extensions\awe\firefox\acewebextension_unlisted.xpi => non trouvé(e)
FF Plugin: @microsoft.com/GENUINE -> disabled [Pas de fichier]
FF Plugin-x32: @canon.com/EPPEX -> C:\Program Files (x86)\Canon\My Image Garden\AddOn\CIG\npmigfpi.dll [2015-10-29] (CANON INC.)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [Pas de fichier]
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2015-07-23] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2015-07-23] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-12-27] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-12-27] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.2.2 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2017-11-29] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2017-11-29] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2017-11-29] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2017-11-04] (Adobe Systems Inc.)
Chrome:
=======
CHR Profile: C:\Users\Sebastien\AppData\Local\Google\Chrome\User Data\Default [2017-12-28]
CHR Extension: (Google Drive) - C:\Users\Sebastien\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-12-27]
CHR Extension: (YouTube) - C:\Users\Sebastien\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-12-27]
CHR Extension: (Google Docs hors connexion) - C:\Users\Sebastien\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-12-28]
CHR Extension: (Kaspersky Protection) - C:\Users\Sebastien\AppData\Local\Google\Chrome\User Data\Default\Extensions\mchjnmdbdlkdbfliogedbnpnanfjnolk [2017-12-27]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Sebastien\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-12-27]
CHR Extension: (Gmail) - C:\Users\Sebastien\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-12-27]
CHR Extension: (Chrome Media Router) - C:\Users\Sebastien\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-12-27]
CHR HKLM\...\Chrome\Extension: [looohgelibjoplmkhecmalapkgadkfcc] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [mchjnmdbdlkdbfliogedbnpnanfjnolk] - hxxps://chrome.google.com/webstore/detail/mchjnmdbdlkdbfliogedbnpnanfjnolk
CHR HKU\S-1-5-21-1325430916-4067957340-357528847-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-1325430916-4067957340-357528847-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [mjbepbhonbojpoaenhckjocchgfiaofo] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [ccjleegmemocfpghkhpjmiccjcacackp] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [fabhkdeopjkcpkmofliimbjckmocfiom] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [ibbfklbaljofpaanmpaeadejijfdddco] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [kpdmjodecdegfglgaapafjleomjjlpnh] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [looohgelibjoplmkhecmalapkgadkfcc] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [mchjnmdbdlkdbfliogedbnpnanfjnolk] - hxxps://chrome.google.com/webstore/detail/mchjnmdbdlkdbfliogedbnpnanfjnolk
==================== Services (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 AVP18.0.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 18.0.0\avp.exe [354672 2017-01-24] (AO Kaspersky Lab)
R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe [1443520 2016-04-04] (Disc Soft Ltd)
R2 HuaweiHiSuiteService64.exe; C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe [192200 2017-07-26] () [Fichier non signé]
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe [69632 2005-11-14] (Macrovision Corporation) [Fichier non signé]
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [355232 2015-08-09] (Intel Corporation)
R2 IJPLMSVC; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [387144 2016-02-05] ()
S3 klvssbridge64_18.0.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 18.0.0\x64\vssbridge64.exe [426416 2017-12-27] (AO Kaspersky Lab)
R2 KSDE2.0.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Secure Connection 2.0\ksde.exe [354672 2017-01-24] (AO Kaspersky Lab)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1881144 2016-06-15] (NVIDIA Corporation)
R3 NvStreamNetworkSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe [3634232 2016-06-15] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [2522680 2016-06-15] (NVIDIA Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
S2 shakophNdfsrv; "C:\Program Files (x86)\Shakoph\shakophNdfsrv.exe" {79740E79-A383-47A7-B513-3DF6563D007F} {A16B1AF7-982D-40C3-B5C1-633E1A6A6678} [X]
===================== Pilotes (Avec liste blanche) ======================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R0 cm_km; C:\Windows\System32\DRIVERS\cm_km.sys [247008 2016-12-26] (AO Kaspersky Lab)
R3 dtlitescsibus; C:\Windows\System32\DRIVERS\dtlitescsibus.sys [30264 2016-04-14] (Disc Soft Ltd)
S3 dtliteusbbus; C:\Windows\System32\DRIVERS\dtliteusbbus.sys [47672 2016-04-14] (Disc Soft Ltd)
S3 GPCIDrv; C:\Program Files (x86)\GIGABYTE\GIGABYTE OC_GURU II\GPCIDrv64.sys [14376 2014-08-28] ()
S3 HWHandSet; C:\Windows\System32\DRIVERS\hw_quusbmdm.sys [226560 2017-07-26] (Huawei Technologies Co., Ltd.)
U5 hw_usbdev; C:\Windows\System32\Drivers\hw_usbdev.sys [116864 2017-07-26] (Huawei Technologies Co., Ltd.)
R0 kl1; C:\Windows\System32\DRIVERS\kl1.sys [554408 2016-10-01] (AO Kaspersky Lab)
R0 klbackupdisk; C:\Windows\System32\DRIVERS\klbackupdisk.sys [70880 2017-12-27] (AO Kaspersky Lab)
R1 klbackupflt; C:\Windows\System32\DRIVERS\klbackupflt.sys [117984 2017-12-27] (AO Kaspersky Lab)
R2 kldisk; C:\Windows\System32\DRIVERS\kldisk.sys [78216 2016-05-31] (AO Kaspersky Lab)
R3 klflt; C:\Windows\System32\DRIVERS\klflt.sys [206040 2017-12-27] (AO Kaspersky Lab)
R1 klhk; C:\Windows\System32\DRIVERS\klhk.sys [350944 2017-12-27] (AO Kaspersky Lab)
R1 KLIF; C:\Windows\System32\DRIVERS\klif.sys [1071808 2017-12-27] (AO Kaspersky Lab)
R1 KLIM6; C:\Windows\System32\DRIVERS\klim6.sys [57936 2016-10-11] (AO Kaspersky Lab)
R3 klkbdflt; C:\Windows\System32\DRIVERS\klkbdflt.sys [57568 2016-12-23] (AO Kaspersky Lab)
R3 klmouflt; C:\Windows\System32\DRIVERS\klmouflt.sys [58592 2016-12-07] (AO Kaspersky Lab)
R1 klpd; C:\Windows\System32\DRIVERS\klpd.sys [50672 2017-10-15] (AO Kaspersky Lab)
R3 kltap; C:\Windows\System32\DRIVERS\kltap.sys [52152 2016-06-07] (The OpenVPN Project)
R1 kltdi; C:\Windows\System32\DRIVERS\kltdi.sys [81904 2017-10-15] (AO Kaspersky Lab)
R1 Klwtp; C:\Windows\System32\DRIVERS\klwtp.sys [140000 2017-12-27] (AO Kaspersky Lab)
R1 kneps; C:\Windows\System32\DRIVERS\kneps.sys [199392 2017-12-27] (AO Kaspersky Lab)
R3 MEIx64; C:\Windows\System32\DRIVERS\TeeDriverx64.sys [178976 2015-07-07] (Intel Corporation)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [28216 2016-06-15] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [56384 2016-04-14] (NVIDIA Corporation)
S3 EsgScanner; system32\DRIVERS\EsgScanner.sys [X]
S3 IntcAzAudAddService; system32\drivers\RTKVHD64.sys [X]
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois - Créés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2017-12-28 11:55 - 2017-12-28 11:55 - 000019682 _____ C:\Users\Sebastien\Desktop\FRST.txt
2017-12-28 10:53 - 2017-12-28 10:53 - 002956160 _____ C:\Users\Sebastien\ZHPDiag3.exe
2017-12-28 10:49 - 2017-12-28 10:50 - 008198432 _____ (Malwarebytes) C:\Users\Sebastien\Desktop\adwcleaner_7.0.6.0.exe
2017-12-28 10:42 - 2017-12-28 10:42 - 002999168 _____ C:\Users\Sebastien\Desktop\ZHPCleaner.exe
2017-12-28 10:42 - 2017-12-28 10:42 - 000000850 _____ C:\Users\Sebastien\Desktop\ZHPCleaner.lnk
2017-12-28 10:20 - 2017-12-28 10:20 - 000311328 _____ (Mozilla) C:\Users\Sebastien\Desktop\Firefox Installer.exe
2017-12-28 09:33 - 2017-12-28 11:55 - 000000000 ____D C:\FRST
2017-12-28 09:33 - 2017-12-28 09:33 - 002391552 _____ (Farbar) C:\Users\Sebastien\Desktop\FRST64.exe
2017-12-28 09:29 - 2017-12-28 10:53 - 000000683 _____ C:\Users\Sebastien\Desktop\ZHPDiag.lnk
2017-12-28 09:29 - 2017-12-28 10:53 - 000000000 ____D C:\Users\Sebastien\AppData\Roaming\ZHP
2017-12-28 09:29 - 2017-12-28 09:29 - 002955136 _____ C:\Users\Sebastien\Desktop\ZHPDiag3.exe
2017-12-27 23:26 - 2017-12-28 10:42 - 000000000 ____D C:\Users\Sebastien\AppData\Local\ZHP
2017-12-27 23:26 - 2017-12-27 23:26 - 002955136 _____ C:\Users\Sebastien\Downloads\ZHPDiag3.exe
2017-12-27 23:22 - 2017-12-27 23:22 - 003927160 _____ (Google) C:\Users\Sebastien\Downloads\chrome_cleanup_tool.exe
2017-12-27 23:17 - 2017-12-27 23:17 - 000002286 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2017-12-27 23:17 - 2017-12-27 23:17 - 000002274 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2017-12-27 23:11 - 2017-12-27 23:11 - 000003500 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2017-12-27 23:11 - 2017-12-27 23:11 - 000003372 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2017-12-27 23:11 - 2017-12-27 23:11 - 000000000 ____D C:\Users\Sebastien\AppData\Local\Deployment
2017-12-27 23:11 - 2017-12-27 23:11 - 000000000 ____D C:\Users\Sebastien\AppData\Local\Apps\2.0
2017-12-27 23:08 - 2014-03-18 03:44 - 000906968 _____ (Realtek ) C:\Windows\system32\Drivers\Rt64win7.sys
2017-12-27 23:08 - 2014-03-18 03:44 - 000107552 _____ (Realtek Semiconductor Corporation) C:\Windows\system32\RTNUninst64.dll
2017-12-27 23:08 - 2014-03-18 03:44 - 000073800 _____ (Realtek Semiconductor Corporation) C:\Windows\system32\RtNicProp64.dll
2017-12-27 22:55 - 2017-12-27 22:55 - 000000000 ____D C:\Users\Sebastien\Documents\temp
2017-12-27 22:52 - 2014-05-13 08:36 - 000000000 ____D C:\Users\Sebastien\Downloads\W7
2017-12-27 22:46 - 2014-05-13 08:23 - 000000000 ____D C:\Users\Sebastien\Downloads\IntelUSB30
2017-12-27 19:35 - 2017-12-28 10:51 - 000000000 ____D C:\AdwCleaner
2017-12-27 18:58 - 2017-12-28 10:53 - 000001631 _____ C:\Users\Public\Desktop\Kaspersky Secure Connection.lnk
2017-12-27 18:58 - 2017-12-28 10:51 - 000002442 _____ C:\Users\Public\Desktop\Kaspersky Total Security.lnk
2017-12-27 18:58 - 2017-12-27 18:58 - 000002210 _____ C:\Users\Public\Desktop\Protection bancaire.lnk
2017-12-27 18:58 - 2017-12-27 18:58 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Total Security
2017-12-27 18:58 - 2017-12-27 18:58 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Secure Connection
2017-12-27 18:58 - 2013-05-06 08:13 - 000110176 _____ (Kaspersky Lab ZAO) C:\Windows\system32\klfphc.dll
2017-12-27 18:57 - 2017-12-27 19:05 - 001071808 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\klif.sys
2017-12-27 18:57 - 2017-12-27 18:58 - 000000000 ____D C:\Program Files (x86)\Kaspersky Lab
2017-12-27 18:57 - 2017-12-27 18:57 - 000350944 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\klhk.sys
2017-12-27 18:57 - 2017-12-27 18:57 - 000206040 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\klflt.sys
2017-12-27 18:57 - 2017-12-27 18:57 - 000149304 _____ (AO Kaspersky Lab) C:\Windows\system32\klhkum.dll
2017-12-27 18:57 - 2017-12-27 18:57 - 000000000 ____D C:\Users\Public\Documents\Logishrd
2017-12-27 18:57 - 2017-12-27 18:57 - 000000000 ____D C:\ProgramData\Kaspersky Lab Setup Files
2017-12-27 18:56 - 2017-12-27 18:56 - 002413136 _____ (Kaspersky Lab) C:\Users\Sebastien\Downloads\startup.exe
2017-12-27 18:43 - 2017-12-27 18:43 - 000000000 ____D C:\Users\Sebastien\AppData\Local\VS Revo Group
2017-12-27 18:43 - 2017-12-27 18:43 - 000000000 ____D C:\ProgramData\VS Revo Group
2017-12-27 18:24 - 2017-12-27 18:24 - 000000000 _____ C:\autoexec.bat
2017-12-27 18:04 - 2017-12-27 19:42 - 000000000 ____D C:\Program Files (x86)\NirSoft
2017-12-27 18:04 - 2017-12-27 18:04 - 000139632 _____ C:\Users\Sebastien\Downloads\produkey_1-91_en_72112.exe
2017-12-27 17:45 - 2017-12-27 17:45 - 000000000 ___HD C:\$GetCurrent
2017-12-27 17:33 - 2017-12-27 19:39 - 000000000 ____D C:\Users\Sebastien\AppData\LocalLow\uTorrent
2017-12-26 09:05 - 2017-12-26 09:05 - 000005359 _____ C:\Users\Sebastien\Downloads\su_bezier_110.rbz
2017-12-23 19:33 - 2017-12-23 19:33 - 000034501 _____ C:\Users\Sebastien\Downloads\mess-pak.zip
2017-12-23 19:06 - 2017-12-23 19:07 - 000000000 ____D C:\Users\Sebastien\Desktop\files
2017-12-23 18:54 - 2017-12-23 18:54 - 000000000 ____D C:\Users\Sebastien\AppData\Roaming\cura
2017-12-23 18:54 - 2017-12-23 18:54 - 000000000 ____D C:\Users\Sebastien\AppData\Local\cura
2017-12-23 18:54 - 2017-12-23 18:54 - 000000000 ____D C:\Program Files\DIFX
2017-12-23 14:35 - 2017-12-23 14:35 - 002318767 _____ C:\Users\Public\Documents\maison lolo.skp
2017-12-13 09:35 - 2017-11-17 05:23 - 003222528 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2017-12-13 09:35 - 2017-11-15 02:27 - 000395968 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2017-12-13 09:35 - 2017-11-15 01:36 - 000347336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2017-12-13 09:35 - 2017-11-14 04:57 - 025731072 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2017-12-13 09:35 - 2017-11-14 04:43 - 002724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2017-12-13 09:35 - 2017-11-14 04:43 - 000004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2017-12-13 09:35 - 2017-11-14 04:32 - 002903552 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2017-12-13 09:35 - 2017-11-14 04:31 - 000066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2017-12-13 09:35 - 2017-11-14 04:31 - 000048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2017-12-13 09:35 - 2017-11-14 04:30 - 000577024 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2017-12-13 09:35 - 2017-11-14 04:30 - 000417792 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2017-12-13 09:35 - 2017-11-14 04:30 - 000088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2017-12-13 09:35 - 2017-11-14 04:25 - 005925888 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2017-12-13 09:35 - 2017-11-14 04:24 - 000054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2017-12-13 09:35 - 2017-11-14 04:24 - 000034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2017-12-13 09:35 - 2017-11-14 04:21 - 000615936 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2017-12-13 09:35 - 2017-11-14 04:20 - 000817152 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2017-12-13 09:35 - 2017-11-14 04:20 - 000814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2017-12-13 09:35 - 2017-11-14 04:20 - 000144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2017-12-13 09:35 - 2017-11-14 04:20 - 000116224 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2017-12-13 09:35 - 2017-11-14 04:15 - 000968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2017-12-13 09:35 - 2017-11-14 04:12 - 000489984 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2017-12-13 09:35 - 2017-11-14 04:06 - 000087552 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2017-12-13 09:35 - 2017-11-14 04:06 - 000077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2017-12-13 09:35 - 2017-11-14 04:05 - 000107520 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2017-12-13 09:35 - 2017-11-14 04:03 - 000199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2017-12-13 09:35 - 2017-11-14 04:02 - 000092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2017-12-13 09:35 - 2017-11-14 04:00 - 000315392 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2017-12-13 09:35 - 2017-11-14 03:59 - 000152064 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2017-12-13 09:35 - 2017-11-14 03:51 - 000262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2017-12-13 09:35 - 2017-11-14 03:48 - 015267328 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2017-12-13 09:35 - 2017-11-14 03:48 - 000807936 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2017-12-13 09:35 - 2017-11-14 03:48 - 000726528 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2017-12-13 09:35 - 2017-11-14 03:47 - 001359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2017-12-13 09:35 - 2017-11-14 03:46 - 002134528 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2017-12-13 09:35 - 2017-11-14 03:39 - 003241472 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2017-12-13 09:35 - 2017-11-14 03:27 - 001544192 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2017-12-13 09:35 - 2017-11-14 03:16 - 000800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2017-12-13 09:35 - 2017-11-14 02:37 - 013679616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2017-12-13 09:35 - 2017-11-14 02:15 - 000416256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2017-12-13 09:35 - 2017-11-14 02:15 - 000279040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2017-12-13 09:35 - 2017-11-14 02:15 - 000076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2017-12-13 09:35 - 2017-11-14 02:10 - 020269056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2017-12-13 09:35 - 2017-11-14 01:32 - 000499200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2017-12-13 09:35 - 2017-11-14 01:31 - 000064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2017-12-13 09:35 - 2017-11-07 21:56 - 002724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2017-12-13 09:35 - 2017-11-07 21:46 - 000341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2017-12-13 09:35 - 2017-11-07 21:46 - 000062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2017-12-13 09:35 - 2017-11-07 21:46 - 000047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2017-12-13 09:35 - 2017-11-07 21:44 - 002293760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2017-12-13 09:35 - 2017-11-07 21:41 - 000047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2017-12-13 09:35 - 2017-11-07 21:41 - 000030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2017-12-13 09:35 - 2017-11-07 21:40 - 000476160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2017-12-13 09:35 - 2017-11-07 21:39 - 000662016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2017-12-13 09:35 - 2017-11-07 21:38 - 000620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2017-12-13 09:35 - 2017-11-07 21:38 - 000115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2017-12-13 09:35 - 2017-11-07 21:29 - 000060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2017-12-13 09:35 - 2017-11-07 21:28 - 000091136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2017-12-13 09:35 - 2017-11-07 21:28 - 000073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2017-12-13 09:35 - 2017-11-07 21:27 - 004509696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2017-12-13 09:35 - 2017-11-07 21:26 - 000168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2017-12-13 09:35 - 2017-11-07 21:24 - 000130048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2017-12-13 09:35 - 2017-11-07 21:19 - 000230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2017-12-13 09:35 - 2017-11-07 21:18 - 000694272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2017-12-13 09:35 - 2017-11-07 21:17 - 002058752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2017-12-13 09:35 - 2017-11-07 21:17 - 001155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2017-12-13 09:35 - 2017-11-07 21:04 - 002767872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2017-12-13 09:35 - 2017-11-07 21:01 - 001313280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2017-12-13 09:35 - 2017-11-07 20:58 - 000710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2017-12-13 09:35 - 2017-11-07 17:31 - 000002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2017-12-13 09:35 - 2017-11-07 17:13 - 000002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2017-12-13 09:35 - 2017-11-04 16:31 - 000194048 _____ (Microsoft Corporation) C:\Windows\system32\itircl.dll
2017-12-13 09:35 - 2017-11-04 16:31 - 000170496 _____ (Microsoft Corporation) C:\Windows\system32\itss.dll
2017-12-13 09:35 - 2017-11-04 16:10 - 000158720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\itircl.dll
2017-12-13 09:35 - 2017-11-04 16:10 - 000142336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\itss.dll
2017-12-13 09:35 - 2017-11-02 17:55 - 000281600 _____ (Microsoft Corporation) C:\Windows\system32\iprtrmgr.dll
2017-12-13 09:35 - 2017-11-02 17:55 - 000138240 _____ (Microsoft Corporation) C:\Windows\system32\rtm.dll
2017-12-13 09:35 - 2017-11-02 17:55 - 000097792 _____ (Microsoft Corporation) C:\Windows\system32\mprdim.dll
2017-12-13 09:35 - 2017-11-02 17:55 - 000009728 _____ (Microsoft Corporation) C:\Windows\system32\iprtprio.dll
2017-12-13 09:35 - 2017-11-02 16:11 - 000271360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iprtrmgr.dll
2017-12-13 09:35 - 2017-11-02 16:11 - 000115200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rtm.dll
2017-12-13 09:35 - 2017-11-02 16:11 - 000075264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mprdim.dll
2017-12-13 09:35 - 2017-11-02 15:56 - 000008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iprtprio.dll
2017-12-13 09:35 - 2017-10-17 00:04 - 001001984 _____ (Microsoft Corporation) C:\Windows\system32\gpedit.dll
2017-12-13 09:35 - 2017-10-16 23:46 - 000953344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gpedit.dll
2017-12-13 09:35 - 2017-10-12 01:20 - 000317440 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdbss.sys
2017-12-12 18:04 - 2017-12-12 18:04 - 005886076 _____ C:\Users\Sebastien\Downloads\6188747.pdf
2017-12-10 19:21 - 2017-12-10 19:21 - 000125235 _____ C:\Users\Sebastien\Downloads\84168 User Manual (New).pdf
2017-12-10 19:20 - 2017-12-10 19:20 - 007930245 _____ C:\Users\Sebastien\Downloads\34865 User Manual FR (160513).pdf
2017-12-07 20:19 - 2017-12-19 22:23 - 000000000 ____D C:\Users\Sebastien\Downloads\Sandie
2017-11-30 17:59 - 2017-12-19 19:44 - 000000000 ____D C:\Users\Sebastien\Documents\OpenTTD
2017-11-30 17:59 - 2017-11-30 17:59 - 000000543 _____ C:\Users\Public\Desktop\OpenTTD.lnk
2017-11-30 17:59 - 2017-11-30 17:59 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenTTD
2017-11-30 17:58 - 2017-11-30 17:58 - 007883056 _____ (OpenTTD Developers) C:\Users\Sebastien\Downloads\openttd-1.7.1-windows-win64.exe
==================== Un mois - Modifiés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2017-12-28 11:51 - 2009-07-14 05:45 - 000034128 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2017-12-28 11:51 - 2009-07-14 05:45 - 000034128 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2017-12-28 11:33 - 2016-04-13 16:03 - 000000000 ____D C:\ProgramData\Kaspersky Lab
2017-12-28 10:57 - 2011-04-12 10:16 - 000747320 _____ C:\Windows\system32\perfh00C.dat
2017-12-28 10:57 - 2011-04-12 10:16 - 000149844 _____ C:\Windows\system32\perfc00C.dat
2017-12-28 10:57 - 2009-07-14 06:13 - 001668256 _____ C:\Windows\system32\PerfStringBackup.INI
2017-12-28 10:57 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\inf
2017-12-28 10:53 - 2016-04-13 15:34 - 000000000 ____D C:\Users\Sebastien
2017-12-28 10:51 - 2016-04-13 16:17 - 000000000 ____D C:\ProgramData\NVIDIA
2017-12-28 10:51 - 2009-07-14 06:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2017-12-28 09:16 - 2016-04-13 17:28 - 000000000 ____D C:\Users\Sebastien\AppData\Local\NVIDIA Corporation
2017-12-27 23:22 - 2016-04-16 09:51 - 000000000 ____D C:\Users\Sebastien\AppData\Local\CrashDumps
2017-12-27 23:17 - 2016-04-13 15:36 - 000000000 ____D C:\Program Files (x86)\Google
2017-12-27 23:09 - 2016-04-13 16:18 - 000000000 ____D C:\Users\Sebastien\AppData\Local\NVIDIA
2017-12-27 23:09 - 2016-04-13 16:17 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2017-12-27 23:09 - 2016-04-13 16:16 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2017-12-27 23:09 - 2016-04-13 16:16 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2017-12-27 23:09 - 2016-04-13 16:13 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2017-12-27 23:08 - 2016-04-13 15:50 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2017-12-27 23:08 - 2016-04-13 15:50 - 000000000 ____D C:\Program Files (x86)\Realtek
2017-12-27 22:53 - 2016-04-14 08:02 - 000000000 __SHD C:\Users\Sebastien\IntelGraphicsProfiles
2017-12-27 22:21 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\system32\NDF
2017-12-27 22:09 - 2016-04-13 20:27 - 000000000 ____D C:\Users\Sebastien\AppData\Local\ElevatedDiagnostics
2017-12-27 21:48 - 2016-04-13 15:49 - 000000000 ___HD C:\Program Files (x86)\Temp
2017-12-27 21:46 - 2016-04-13 15:36 - 000000000 ____D C:\Users\Sebastien\AppData\Local\Google
2017-12-27 21:45 - 2016-07-07 18:13 - 000000000 ____D C:\Program Files (x86)\Canon
2017-12-27 20:30 - 2017-01-13 19:07 - 000000000 ____D C:\Users\Sebastien\AppData\Roaming\uTorrent
2017-12-27 20:08 - 2016-04-15 16:23 - 000001087 _____ C:\Users\Public\Desktop\VLC media player.lnk
2017-12-27 19:58 - 2016-04-14 13:15 - 000000000 ____D C:\Users\Sebastien\AppData\Roaming\DAEMON Tools Lite
2017-12-27 19:58 - 2016-04-13 22:32 - 000000000 ____D C:\Windows\Panther
2017-12-27 19:37 - 2009-07-14 06:08 - 000002188 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2017-12-27 19:07 - 2016-04-13 16:11 - 000000000 ____D C:\Windows\Minidump
2017-12-27 19:06 - 2017-10-15 05:15 - 000140000 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\klwtp.sys
2017-12-27 19:05 - 2017-10-15 05:15 - 000199392 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\kneps.sys
2017-12-27 19:05 - 2017-10-15 05:15 - 000117984 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\klbackupflt.sys
2017-12-27 19:05 - 2017-10-15 05:15 - 000070880 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\klbackupdisk.sys
2017-12-27 18:58 - 2016-10-29 09:06 - 000000000 ____D C:\Program Files\Common Files\AV
2017-12-27 18:12 - 2017-05-14 09:18 - 000000290 __RSH C:\ProgramData\ntuser.pol
2017-12-27 17:38 - 2009-07-14 06:32 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2017-12-24 08:51 - 2016-07-07 18:13 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon Utilities
2017-12-24 08:51 - 2016-06-11 16:36 - 000000000 ____D C:\Users\Sebastien\AppData\Roaming\Canon
2017-12-14 03:43 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\rescache
2017-12-14 03:18 - 2009-07-14 05:45 - 000344368 _____ C:\Windows\system32\FNTCACHE.DAT
2017-12-14 03:17 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\SysWOW64\Setup
2017-12-14 03:17 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\system32\Setup
2017-12-14 03:02 - 2016-04-14 08:13 - 000000000 ____D C:\Windows\system32\MRT
2017-12-14 03:00 - 2017-10-11 02:00 - 133326408 ____C (Microsoft Corporation) C:\Windows\system32\MRT-KB890830.exe
2017-12-14 03:00 - 2016-04-14 08:13 - 133326408 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2017-12-06 12:13 - 2016-07-11 21:48 - 000000000 ____D C:\ProgramData\CanonIJPLM
2017-12-01 18:38 - 2017-05-06 16:10 - 000002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2017-11-30 17:55 - 2017-09-15 18:45 - 000225584 _____ C:\Users\Public\Documents\escalier lo.skp
2017-11-29 21:23 - 2017-09-15 22:57 - 000212340 _____ C:\Users\Public\Documents\escalier lo.skb
==================== Fichiers à la racine de certains dossiers =======
2017-12-28 10:53 - 2017-12-28 10:53 - 002956160 _____ () C:\Users\Sebastien\ZHPDiag3.exe
2017-05-14 09:49 - 2017-05-14 09:49 - 000000017 _____ () C:\Users\Sebastien\AppData\Local\resmon.resmoncfg
==================== Bamital & volsnap ======================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
C:\Windows\system32\winlogon.exe => Le fichier est signé numériquement
C:\Windows\system32\wininit.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\wininit.exe => Le fichier est signé numériquement
C:\Windows\explorer.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\explorer.exe => Le fichier est signé numériquement
C:\Windows\system32\svchost.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\svchost.exe => Le fichier est signé numériquement
C:\Windows\system32\services.exe => Le fichier est signé numériquement
C:\Windows\system32\User32.dll => Le fichier est signé numériquement
C:\Windows\SysWOW64\User32.dll => Le fichier est signé numériquement
C:\Windows\system32\userinit.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\userinit.exe => Le fichier est signé numériquement
C:\Windows\system32\rpcss.dll => Le fichier est signé numériquement
C:\Windows\system32\dnsapi.dll => Le fichier est signé numériquement
C:\Windows\SysWOW64\dnsapi.dll => Le fichier est signé numériquement
C:\Windows\system32\Drivers\volsnap.sys => Le fichier est signé numériquement
LastRegBack: 2017-12-19 00:58
==================== Fin de FRST.txt ============================