Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 27.01.2018
Exécuté par Flo (administrateur) sur PC-FLO (29-01-2018 21:58:10)
Exécuté depuis C:\Users\Flo\Desktop
Profils chargés: Flo (Profils disponibles: Flo)
Platform: Windows 8.1 (Update) (X64) Langue: Français (France)
Internet Explorer Version 11 (Navigateur par défaut: Chrome)
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(ESET) C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
(ASUS Cloud Corporation) C:\Program Files (x86)\ASUS\WebStorage\2.1.2.301\AsusWSWinService.exe
(BlueStack Systems, Inc.) C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe
(BlueStack Systems, Inc.) C:\Program Files (x86)\BlueStacks\HD-UpdaterService.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
(ASUS) C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe
(Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe
(Broadcom Corporation.) C:\Program Files\ASUS\Bluetooth Software\btwdins.exe
(Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(Intel Corporation) C:\Windows\System32\DptfParticipantProcessorService.exe
(Intel Corporation) C:\Windows\System32\DptfPolicyConfigTDPService.exe
(Intel Corporation) C:\Windows\System32\DptfPolicyCriticalService.exe
(Intel Corporation) C:\Windows\System32\DptfPolicyLpmService.exe
() C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.7\GoogleCrashHandler.exe
() C:\Program Files (x86)\Photodex\ProShowGold\scsiaccess.exe
(SoftEther VPN Project at University of Tsukuba, Japan.) C:\Program Files\SoftEther VPN Client\vpnclient_x64.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.7\GoogleCrashHandler64.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel Corporation) C:\Windows\System32\igfxTray.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLoader.exe
(Intel Corporation) C:\Windows\System32\DptfPolicyLpmServiceHelper.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(SoftEther VPN Project at University of Tsukuba, Japan.) C:\Program Files\SoftEther VPN Client\vpnclient_x64.exe
(Flux Software LLC) C:\Users\Flo\AppData\Local\FluxSoftware\Flux\flux.exe
(ESET) C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
(Spotify Ltd) C:\Users\Flo\AppData\Roaming\Spotify\SpotifyWebHelper.exe
() C:\Users\Flo\AppData\Local\MP3 Skype recorder\MP3SkypeRecorder.exe
() C:\Program Files (x86)\Google\Drive\googledrivesync.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Broadcom Corporation.) C:\Program Files\ASUS\Bluetooth Software\BTTray.exe
(McAfee, Inc.) C:\Program Files\McAfee Security Scan\3.11.599\SSScheduler.exe
(BlueStack Systems, Inc.) C:\Program Files (x86)\BlueStacks\HD-Agent.exe
(SoftEther VPN Project at University of Tsukuba, Japan.) C:\Program Files\SoftEther VPN Client\vpncmgr_x64.exe
(Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(WildTangent) C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Microsoft Corporation) C:\Windows\SysWOW64\rundll32.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPHelper.exe
(Nero AG) C:\Program Files (x86)\Nero\Update\NASvc.exe
() C:\Program Files (x86)\Google\Drive\googledrivesync.exe
(ASUS Cloud Corporation) C:\Program Files (x86)\ASUS\WebStorage\2.1.2.301\AsusWSPanel.exe
() C:\Program Files (x86)\Google\Drive\googledrivesync.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPCenter.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
==================== Registre (Avec liste blanche) ===========================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [DptfPolicyLpmServiceHelper] => C:\Windows\system32\DptfPolicyLpmServiceHelper.exe [114048 2013-10-18] (Intel Corporation)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2234144 2014-01-21] (NVIDIA Corporation)
HKLM\...\Run: [SoftEther VPN Client UI Helper] => C:\Program Files\SoftEther VPN Client\vpnclient_x64.exe [5248456 2017-01-19] (SoftEther VPN Project at University of Tsukuba, Japan.)
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET NOD32 Antivirus\ecmds.exe [324216 2017-10-10] (ESET)
HKLM-x32\...\Run: [ASUSPRP] => C:\Program Files (x86)\ASUS\APRP\APRP.EXE [1080992 2014-05-15] (ASUSTek Computer Inc.)
HKLM-x32\...\Run: [WebStorage] => C:\Program Files (x86)\ASUS\WebStorage\2.1.2.301\ASUSWSLoader.exe [63296 2014-02-25] ()
HKLM-x32\...\Run: [BlueStacks Agent] => C:\Program Files (x86)\BlueStacks\HD-Agent.exe [896632 2015-07-22] (BlueStack Systems, Inc.)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [3567936 2018-01-22] (Dropbox, Inc.)
HKLM-x32\...\RunOnce: [network_smb_zetorrents] => "C:\Users\Flo\AppData\Local\Temp\\BI_RunOnce.exe" /initurl hxxp://sub.stepjump.info/init/N1UIWbXtX/:uid:? /affid "-" /id "0" /name " " /uniqid N1UIWbXtX /uuid E9A38430-38AE-81E4-3032-382C4A16AE0C /bio (l'élément de données a 68 caractères en plus). <==== ATTENTION
HKU\S-1-5-21-3886636556-3955906426-1051849303-1001\...\Run: [f.lux] => C:\Users\Flo\AppData\Local\FluxSoftware\Flux\flux.exe [1017224 2013-10-23] (Flux Software LLC)
HKU\S-1-5-21-3886636556-3955906426-1051849303-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [10257872 2018-01-09] (Piriform Ltd)
HKU\S-1-5-21-3886636556-3955906426-1051849303-1001\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3696912 2014-03-04] (Disc Soft Ltd)
HKU\S-1-5-21-3886636556-3955906426-1051849303-1001\...\Run: [Spotify Web Helper] => C:\Users\Flo\AppData\Roaming\Spotify\SpotifyWebHelper.exe [2018360 2015-08-07] (Spotify Ltd)
HKU\S-1-5-21-3886636556-3955906426-1051849303-1001\...\Run: [MP3 Skype recorder] => C:\Users\Flo\AppData\Local\MP3 Skype recorder\MP3SkypeRecorder.exe [1544704 2014-08-08] ()
HKU\S-1-5-21-3886636556-3955906426-1051849303-1001\...\Run: [GoogleDriveSync] => C:\Program Files (x86)\Google\Drive\googledrivesync.exe [41061856 2017-11-20] ()
HKU\S-1-5-21-3886636556-3955906426-1051849303-1001\...\Run: [Spotify] => C:\Users\Flo\AppData\Roaming\Spotify\Spotify.exe [7675448 2015-08-07] (Spotify Ltd)
HKU\S-1-5-21-3886636556-3955906426-1051849303-1001\...\MountPoints2: {02463ae6-97a1-11e6-8366-382c4a16ae0c} - "F:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-3886636556-3955906426-1051849303-1001\...\MountPoints2: {17065e0b-decb-11e7-83ca-382c4a16ae0c} - "F:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-3886636556-3955906426-1051849303-1001\...\MountPoints2: {17065e13-decb-11e7-83ca-382c4a16ae0c} - "F:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-3886636556-3955906426-1051849303-1001\...\MountPoints2: {2d4bec30-6aa8-11e4-8268-3010b31a253f} - "G:\START.EXE"
HKU\S-1-5-21-3886636556-3955906426-1051849303-1001\...\MountPoints2: {38224dc1-9d34-11e5-82fa-382c4a16ae0c} - "F:\autorun.exe"
HKU\S-1-5-21-3886636556-3955906426-1051849303-1001\...\MountPoints2: {3edfffc2-c8a5-11e6-8371-382c4a16ae0c} - "F:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-3886636556-3955906426-1051849303-1001\...\MountPoints2: {3ee000ab-c8a5-11e6-8371-382c4a16ae0c} - "F:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-3886636556-3955906426-1051849303-1001\...\MountPoints2: {3ee000b1-c8a5-11e6-8371-382c4a16ae0c} - "F:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-3886636556-3955906426-1051849303-1001\...\MountPoints2: {459fa250-a130-11e5-82fb-382c4a16ae0c} - "H:\autorun.exe"
HKU\S-1-5-21-3886636556-3955906426-1051849303-1001\...\MountPoints2: {6d3ca4bd-f8ba-11e5-8322-382c4a16ae0c} - "H:\autorun.exe"
HKU\S-1-5-21-3886636556-3955906426-1051849303-1001\...\MountPoints2: {8c1b661c-6a17-11e7-8388-382c4a16ae0c} - "F:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-3886636556-3955906426-1051849303-1001\...\MountPoints2: {922cee20-1555-11e6-832e-382c4a16ae0c} - "H:\autorun.exe"
HKU\S-1-5-21-3886636556-3955906426-1051849303-1001\...\MountPoints2: {9f7ea5b7-6f98-11e7-8391-382c4a16ae0c} - "F:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-3886636556-3955906426-1051849303-1001\...\MountPoints2: {b14a1a7f-70bf-11e7-8392-382c4a16ae0c} - "F:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-3886636556-3955906426-1051849303-1001\...\MountPoints2: {d9d6a64c-67c4-11e6-8350-382c4a16ae0c} - "F:\autorun.exe"
HKU\S-1-5-21-3886636556-3955906426-1051849303-1001\...\MountPoints2: {d9d6a807-67c4-11e6-8350-382c4a16ae0c} - "F:\autorun.exe"
HKU\S-1-5-21-3886636556-3955906426-1051849303-1001\...\MountPoints2: {e9eaf640-e656-11e7-83cc-382c4a16ae0c} - "F:\HiSuiteDownLoader.exe"
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth.lnk [2014-09-12]
ShortcutTarget: Bluetooth.lnk -> C:\Program Files\ASUS\Bluetooth Software\BTTray.exe (Broadcom Corporation.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk [2017-09-25]
ShortcutTarget: McAfee Security Scan Plus.lnk -> C:\Program Files\McAfee Security Scan\3.11.599\SSScheduler.exe (McAfee, Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SoftEther VPN Client Manager Startup.lnk [2017-01-19]
ShortcutTarget: SoftEther VPN Client Manager Startup.lnk -> C:\Program Files\SoftEther VPN Client\vpncmgr_x64.exe (SoftEther VPN Project at University of Tsukuba, Japan.)
CHR HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 89.2.0.1 89.2.0.2
Tcpip\..\Interfaces\{9B1F894F-DDA4-4F62-A22B-F77949F9442C}: [DhcpNameServer] 81.220.255.10
Tcpip\..\Interfaces\{C258BA4D-AB99-4ED7-B54E-7C71F8E6BB06}: [DhcpNameServer] 10.211.254.254 8.8.8.8
Tcpip\..\Interfaces\{CA0890E0-D0B1-42ED-8845-A4CB11BE52CE}: [DhcpNameServer] 89.2.0.1 89.2.0.2
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com
HKU\S-1-5-21-3886636556-3955906426-1051849303-1001\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
SearchScopes: HKU\S-1-5-21-3886636556-3955906426-1051849303-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-3886636556-3955906426-1051849303-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office15\OCHelper.dll [2017-12-12] (Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL [2017-02-23] (Microsoft Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll [2017-08-24] (Microsoft Corporation)
BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL [2017-02-23] (Microsoft Corporation)
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL [2017-08-15] (Microsoft Corporation)
StartMenuInternet: IEXPLORE.EXE - iexplore.exe
FireFox:
========
FF ProfilePath: C:\Users\Flo\AppData\Roaming\Mozilla\Firefox\Profiles\q7zhfa41.default [2018-01-29]
FF Homepage: Mozilla\Firefox\Profiles\q7zhfa41.default -> www.google.fr
FF Extension: (Video DownloadHelper) - C:\Users\Flo\AppData\Roaming\Mozilla\Firefox\Profiles\q7zhfa41.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2018-01-29]
FF Extension: (Adblock Plus) - C:\Users\Flo\AppData\Roaming\Mozilla\Firefox\Profiles\q7zhfa41.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2017-12-18]
FF Extension: (Disable Crash Auto Submit) - C:\Users\Flo\AppData\Roaming\Mozilla\Firefox\Profiles\q7zhfa41.default\features\{0f9a03d4-cd0c-4a15-ae1d-4e8b46c23095}\disable-crash-autosubmit@mozilla.org.xpi [2018-01-29] [Legacy]
FF Extension: (Skype) - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}.xpi [2016-05-25] [Legacy]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_28_0_0_137.dll [2018-01-09] ()
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~1\Office15\NPSPWRAP.DLL [2014-01-23] (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_28_0_0_137.dll [2018-01-09] ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-10-23] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-10-23] (Intel Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2016-07-19] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL [2014-01-21] (Microsoft Corporation)
FF Plugin-x32: @Nero.com/KM -> C:\PROGRA~2\COMMON~1\Nero\BROWSE~1\NPBROW~1.DLL [2015-08-28] (Nero AG)
FF Plugin-x32: @nullsoft.com/winampDetector;version=1 -> C:\Program Files (x86)\Winamp Detect\npwachk.dll [2013-11-20] (Nullsoft, Inc.)
FF Plugin-x32: @photodex.com/PhotodexPresenter -> C:\Program Files (x86)\Photodex Presenter\npPxPlay.dll [2015-12-01] ( )
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-14] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-14] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2014-07-23] (VideoLAN)
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll [2013-08-06] ()
FF Plugin-x32: PDF Architect 2 -> C:\Program Files (x86)\PDF Architect 2\np-previewer.dll [2014-10-10] (pdfforge GmbH)
Chrome:
=======
CHR NewTab: Default -> Not-active:"chrome-extension://clgckgfbhciacomhlchmgdnplmdiadbj/newtab.html"
CHR Session Restore: Default -> est activé.
CHR Profile: C:\Users\Flo\AppData\Local\Google\Chrome\User Data\Default [2018-01-29]
CHR Extension: (Slides) - C:\Users\Flo\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-15]
CHR Extension: (Docs) - C:\Users\Flo\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-15]
CHR Extension: (Google Drive) - C:\Users\Flo\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-29]
CHR Extension: (YouTube) - C:\Users\Flo\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-27]
CHR Extension: (Adblock Plus) - C:\Users\Flo\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2018-01-26]
CHR Extension: (Recherche Google) - C:\Users\Flo\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-29]
CHR Extension: (wanteeed) - C:\Users\Flo\AppData\Local\Google\Chrome\User Data\Default\Extensions\emnoomldgleagdjapdeckpmebokijail [2017-11-08]
CHR Extension: (Sheets) - C:\Users\Flo\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-15]
CHR Extension: (Google Docs hors connexion) - C:\Users\Flo\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-16]
CHR Extension: (AdBlock) - C:\Users\Flo\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2018-01-28]
CHR Extension: (Mustsee) - C:\Users\Flo\AppData\Local\Google\Chrome\User Data\Default\Extensions\gogbdmmlnloojdafblpkmkhgigcidnmn [2017-11-01]
CHR Extension: (Bouton Enregistrer Pinterest) - C:\Users\Flo\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpdjojdkbbmdfjfahjcgigfpmkopogic [2017-11-16]
CHR Extension: (Skype) - C:\Users\Flo\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2017-12-02]
CHR Extension: (Application Launcher for Drive (by Google)) - C:\Users\Flo\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2017-07-14]
CHR Extension: (Calculator Plus) - C:\Users\Flo\AppData\Local\Google\Chrome\User Data\Default\Extensions\nddnemlpojcbnidlchlpofdpfmhgknah [2018-01-26]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Flo\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-08-28]
CHR Extension: (Gmail) - C:\Users\Flo\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-03-28]
CHR Extension: (Chrome Media Router) - C:\Users\Flo\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-12-18]
CHR HKU\S-1-5-21-3886636556-3955906426-1051849303-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [ccjleegmemocfpghkhpjmiccjcacackp] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - hxxps://clients2.google.com/service/update2/crx
==================== Services (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 Asus WebStorage Windows Service; C:\Program Files (x86)\ASUS\WebStorage\2.1.2.301\AsusWSWinService.exe [71680 2014-02-25] (ASUS Cloud Corporation) [Fichier non signé]
S2 BcmBtRSupport; C:\Windows\system32\BtwRSupportService.exe [2251992 2013-11-14] (Broadcom Corporation.)
S3 BstHdAndroidSvc; C:\Program Files (x86)\BlueStacks\HD-Service.exe [433784 2015-06-16] (BlueStack Systems, Inc.)
R2 BstHdLogRotatorSvc; C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe [413304 2015-06-16] (BlueStack Systems, Inc.)
R2 BstHdUpdaterSvc; C:\Program Files (x86)\BlueStacks\HD-UpdaterService.exe [831096 2015-07-21] (BlueStack Systems, Inc.)
R2 btwdins; C:\Program Files\ASUS\Bluetooth Software\btwdins.exe [977664 2014-06-03] (Broadcom Corporation.)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-11-08] (Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-11-08] (Dropbox, Inc.)
R2 DbxSvc; C:\Windows\system32\DbxSvc.exe [51024 2018-01-22] (Dropbox, Inc.)
R2 DptfParticipantProcessorService; C:\Windows\system32\DptfParticipantProcessorService.exe [117704 2013-10-18] (Intel Corporation)
R2 DptfPolicyConfigTDPService; C:\Windows\system32\DptfPolicyConfigTDPService.exe [116680 2013-10-18] (Intel Corporation)
R2 DptfPolicyCriticalService; C:\Windows\system32\DptfPolicyCriticalService.exe [148160 2013-10-18] (Intel Corporation)
R2 DptfPolicyLpmService; C:\Windows\system32\DptfPolicyLpmService.exe [126952 2013-10-18] (Intel Corporation)
R2 ekrn; C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe [2648184 2017-10-10] (ESET)
R2 GamesAppIntegrationService; C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe [227904 2014-01-28] (WildTangent)
R2 HuaweiHiSuiteService64.exe; C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe [192200 2016-11-25] () [Fichier non signé]
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [282072 2014-03-18] (Intel Corporation)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [827392 2013-09-02] (Intel(R) Corporation) [Fichier non signé]
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [131544 2013-10-23] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-10-23] (Intel Corporation)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6058960 2017-08-07] (Malwarebytes)
S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.11.599\McCHSvc.exe [404376 2017-09-05] (McAfee, Inc.)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1593632 2014-01-21] (NVIDIA Corporation)
S3 PDF Architect 2; C:\Program Files (x86)\PDF Architect 2\ws.exe [1771560 2014-10-10] (pdfforge GmbH)
S3 pdfforge CrashHandler; C:\Program Files (x86)\PDF Architect 2\crash-handler-ws.exe [861736 2014-10-10] (pdfforge GmbH)
R2 ScsiAccess; C:\Program Files (x86)\Photodex\ProShowGold\ScsiAccess.exe [186760 2015-12-01] ()
R2 SEVPNCLIENT; C:\Program Files\SoftEther VPN Client\vpnclient_x64.exe [5248456 2017-01-19] (SoftEther VPN Project at University of Tsukuba, Japan.)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [361824 2017-01-12] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [119872 2017-01-12] (Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ======================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R3 ATP; C:\Windows\System32\drivers\AsusTP.sys [69904 2014-03-31] (ASUS Corporation)
R3 bcbtums; C:\Windows\system32\drivers\bcbtums.sys [170712 2013-11-14] (Broadcom Corporation.)
R3 BCM43XX; C:\Windows\system32\DRIVERS\bcmwl63a.sys [7546544 2014-09-12] (Broadcom Corporation)
R2 BstHdDrv; C:\Program Files (x86)\BlueStacks\HD-Hypervisor-amd64.sys [145528 2015-06-16] (BlueStack Systems)
R3 DptfDevDram; C:\Windows\system32\DRIVERS\DptfDevDram.sys [145640 2013-10-18] (Intel Corporation)
R3 DptfDevPch; C:\Windows\system32\DRIVERS\DptfDevPch.sys [116752 2013-10-18] (Intel Corporation)
R3 DptfDevProc; C:\Windows\system32\DRIVERS\DptfDevProc.sys [289744 2013-10-18] (Intel Corporation)
R3 DptfManager; C:\Windows\system32\DRIVERS\DptfManager.sys [494296 2013-10-18] (Intel Corporation)
R1 dtsoftbus01; C:\Windows\System32\drivers\dtsoftbus01.sys [283064 2014-11-12] (Disc Soft Ltd)
R1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [132848 2017-09-25] (ESET)
R0 edevmon; C:\Windows\System32\DRIVERS\edevmon.sys [241368 2014-09-22] (ESET)
S0 eelam; C:\Windows\System32\DRIVERS\eelam.sys [15392 2017-10-11] (ESET)
R1 ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [180088 2017-10-11] (ESET)
R1 epfwwfpr; C:\Windows\system32\DRIVERS\epfwwfpr.sys [77736 2017-09-25] (ESET)
R1 ESProtectionDriver; C:\Windows\system32\drivers\mbae64.sys [77440 2017-10-04] ()
U5 hw_usbdev; C:\Windows\System32\Drivers\hw_usbdev.sys [116864 2016-11-25] (Huawei Technologies Co., Ltd.)
R3 kbfiltr; C:\Windows\System32\drivers\kbfiltr.sys [17280 2012-08-06] ( )
R2 MBAMChameleon; C:\Windows\System32\Drivers\MbamChameleon.sys [192952 2018-01-28] (Malwarebytes)
R3 MBAMFarflt; C:\Windows\system32\DRIVERS\farflt.sys [110016 2018-01-29] (Malwarebytes)
R3 MBAMProtection; C:\Windows\system32\DRIVERS\mbam.sys [45504 2018-01-29] (Malwarebytes)
R3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [252232 2018-01-29] (Malwarebytes)
R3 MBAMWebProtection; C:\Windows\system32\DRIVERS\mwac.sys [94144 2018-01-29] (Malwarebytes)
R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [99288 2013-10-23] (Intel Corporation)
S3 mfencrk; C:\Windows\system32\DRIVERS\mfencrk.sys [96592 2014-03-18] (McAfee, Inc.)
R3 Neo_VPN; C:\Windows\system32\DRIVERS\Neo_VPN.sys [38432 2017-01-19] (SoftEther Corporation)
R1 SeLow; C:\Windows\system32\DRIVERS\SeLow_x64.sys [51232 2017-01-19] (SoftEther Corporation)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [46600 2017-02-10] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [274776 2017-01-12] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [117592 2017-01-12] (Microsoft Corporation)
S3 dbx; system32\DRIVERS\dbx.sys [X]
U0 msahci; system32\drivers\msahci.sys [X]
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois - Créés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2018-01-29 21:53 - 2018-01-29 21:58 - 000066438 _____ C:\Users\Flo\Desktop\Addition.txt
2018-01-29 21:53 - 2018-01-29 21:53 - 087106233 _____ C:\Users\Flo\Downloads\Survivor.S09E06.VOSTFR.XviD-Survivor-ST-Davhuit.avi.crdownload
2018-01-29 21:50 - 2018-01-29 21:58 - 000030049 _____ C:\Users\Flo\Desktop\FRST.txt
2018-01-29 21:49 - 2018-01-29 21:58 - 000000000 ____D C:\FRST
2018-01-29 21:48 - 2018-01-29 21:48 - 002393088 _____ (Farbar) C:\Users\Flo\Desktop\FRST64.exe
2018-01-29 18:22 - 2018-01-29 18:30 - 364046336 _____ C:\Users\Flo\Downloads\Survivor.S09E05.VOSTFR.XviD-Survivor-ST-Davhuit.avi
2018-01-29 18:09 - 2018-01-29 18:10 - 008206624 _____ (Malwarebytes) C:\Users\Flo\Downloads\adwcleaner_7.0.7.0.exe
2018-01-29 16:45 - 2018-01-29 16:45 - 002967936 _____ C:\Users\Flo\Desktop\ZHPDiag3.exe
2018-01-29 15:50 - 2018-01-29 15:52 - 008206624 _____ (Malwarebytes) C:\Users\Flo\Desktop\adwcleaner_7.0.7.0.exe
2018-01-29 15:26 - 2018-01-29 15:39 - 361908224 _____ C:\Users\Flo\Downloads\Survivor.S09E04.VOSTFR.XviD-Survivor-ST-Davhuit.avi
2018-01-29 00:00 - 2018-01-29 00:34 - 361457664 _____ C:\Users\Flo\Downloads\Survivor.S09E03.VOSTFR.XviD-Survivor-ST-Davhuit.avi
2018-01-28 23:44 - 2018-01-28 23:44 - 000000876 _____ C:\Users\Flo\Desktop\ZHPCleaner.lnk
2018-01-28 23:44 - 2018-01-28 23:44 - 000000000 ____D C:\Users\Flo\AppData\Local\ZHP
2018-01-28 23:43 - 2018-01-28 23:43 - 003050368 _____ C:\Users\Flo\Desktop\ZHPCleaner.exe
2018-01-28 23:39 - 2018-01-29 16:44 - 000362693 _____ C:\Users\Flo\ZHPDiag3.exe
2018-01-28 23:38 - 2018-01-29 17:08 - 000000000 ____D C:\Users\Flo\AppData\Roaming\ZHP
2018-01-28 22:39 - 2018-01-28 22:39 - 000098132 _____ C:\Users\Flo\Desktop\AfficheResultatsPrimoDemandeur.pdf
2018-01-28 21:53 - 2018-01-28 21:56 - 011205832 _____ (Piriform Ltd) C:\Users\Flo\Downloads\ccsetup539.exe
2018-01-28 20:10 - 2018-01-28 23:03 - 363446272 _____ C:\Users\Flo\Downloads\Survivor.S09E02.VOSTFR.XviD-Survivor-ST-Davhuit.avi
2018-01-28 00:31 - 2018-01-28 00:31 - 000192952 _____ (Malwarebytes) C:\Windows\system32\Drivers\MbamChameleon.sys
2018-01-28 00:30 - 2018-01-29 19:49 - 000094144 _____ (Malwarebytes) C:\Windows\system32\Drivers\mwac.sys
2018-01-28 00:30 - 2018-01-29 16:35 - 000252232 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys
2018-01-28 00:30 - 2018-01-29 16:35 - 000110016 _____ (Malwarebytes) C:\Windows\system32\Drivers\farflt.sys
2018-01-28 00:30 - 2018-01-29 16:35 - 000045504 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys
2018-01-28 00:29 - 2018-01-28 00:29 - 000001885 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2018-01-28 00:29 - 2018-01-28 00:29 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2018-01-28 00:28 - 2017-10-04 13:15 - 000077440 _____ C:\Windows\system32\Drivers\mbae64.sys
2018-01-28 00:26 - 2018-01-28 00:26 - 000000000 ____D C:\Program Files\Malwarebytes
2018-01-28 00:25 - 2018-01-28 00:25 - 000000000 ____D C:\ProgramData\MB2Migration
2018-01-27 23:43 - 2018-01-28 00:04 - 370788352 _____ C:\Users\Flo\Downloads\Survivor.S09E01.VOSTFR.XviD-Survivor-ST-Davhuit.avi
2018-01-26 22:55 - 2018-01-26 22:55 - 000000000 ____D C:\Users\Flo\AppData\Roaming\ESET
2018-01-26 17:36 - 2018-01-02 07:39 - 022374248 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2018-01-26 17:36 - 2018-01-02 07:39 - 007408984 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2018-01-26 17:36 - 2018-01-02 07:39 - 002013016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2018-01-26 17:36 - 2018-01-02 07:03 - 025739264 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2018-01-26 17:36 - 2018-01-02 07:00 - 019790760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2018-01-26 17:36 - 2018-01-02 06:59 - 001565520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\combase.dll
2018-01-26 17:36 - 2018-01-02 06:38 - 000559616 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2018-01-26 17:36 - 2018-01-02 06:30 - 002900480 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2018-01-26 17:36 - 2018-01-02 06:28 - 005796352 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2018-01-26 17:36 - 2018-01-02 06:20 - 020275200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2018-01-26 17:36 - 2018-01-02 05:49 - 002294272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2018-01-26 17:36 - 2018-01-02 05:44 - 015284224 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2018-01-26 17:36 - 2018-01-02 05:26 - 003241472 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2018-01-26 17:36 - 2018-01-02 05:23 - 004508160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2018-01-26 17:36 - 2018-01-02 04:55 - 003548160 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2018-01-26 17:36 - 2017-12-10 14:46 - 007079424 _____ (Microsoft Corporation) C:\Windows\system32\glcndFilter.dll
2018-01-26 17:36 - 2017-12-10 14:24 - 005275136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\glcndFilter.dll
2018-01-26 17:36 - 2017-12-10 14:06 - 007797760 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Data.Pdf.dll
2018-01-26 17:36 - 2017-12-10 13:59 - 005270528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Data.Pdf.dll
2018-01-26 17:36 - 2017-12-06 05:42 - 002452816 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2018-01-26 17:36 - 2017-12-05 17:58 - 004168192 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2018-01-26 17:35 - 2018-01-02 09:00 - 000590680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fvevol.sys
2018-01-26 17:35 - 2018-01-02 09:00 - 000242520 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdyboost.sys
2018-01-26 17:35 - 2018-01-02 08:56 - 002530400 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2018-01-26 17:35 - 2018-01-02 08:56 - 000567656 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2018-01-26 17:35 - 2018-01-02 08:56 - 000397224 _____ (Microsoft Corporation) C:\Windows\system32\bcryptprimitives.dll
2018-01-26 17:35 - 2018-01-02 08:56 - 000136536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wfplwfs.sys
2018-01-26 17:35 - 2018-01-02 07:39 - 000418648 _____ (Microsoft Corporation) C:\Windows\system32\hal.dll
2018-01-26 17:35 - 2018-01-02 07:39 - 000354648 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fltMgr.sys
2018-01-26 17:35 - 2018-01-02 07:38 - 002176064 _____ (Microsoft Corporation) C:\Windows\system32\combase.dll
2018-01-26 17:35 - 2018-01-02 07:38 - 001662096 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll
2018-01-26 17:35 - 2018-01-02 07:37 - 001737600 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2018-01-26 17:35 - 2018-01-02 07:37 - 001676056 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2018-01-26 17:35 - 2018-01-02 07:37 - 001536120 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2018-01-26 17:35 - 2018-01-02 07:37 - 001500432 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2018-01-26 17:35 - 2018-01-02 07:37 - 001371352 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe
2018-01-26 17:35 - 2018-01-02 07:37 - 001135280 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2018-01-26 17:35 - 2018-01-02 07:37 - 000685440 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2018-01-26 17:35 - 2018-01-02 07:35 - 001307840 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2018-01-26 17:35 - 2018-01-02 07:35 - 000989528 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\http.sys
2018-01-26 17:35 - 2018-01-02 07:03 - 000341384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcryptprimitives.dll
2018-01-26 17:35 - 2018-01-02 07:01 - 001902328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2018-01-26 17:35 - 2018-01-02 06:59 - 001213784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ole32.dll
2018-01-26 17:35 - 2018-01-02 06:58 - 001502000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2018-01-26 17:35 - 2018-01-02 06:48 - 000507176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2018-01-26 17:35 - 2018-01-02 06:40 - 000284672 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2018-01-26 17:35 - 2018-01-02 06:39 - 000686080 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2018-01-26 17:35 - 2018-01-02 06:38 - 000416256 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys
2018-01-26 17:35 - 2018-01-02 06:38 - 000401408 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2018-01-26 17:35 - 2018-01-02 06:34 - 000360448 _____ (Microsoft Corporation) C:\Windows\system32\ncsi.dll
2018-01-26 17:35 - 2018-01-02 06:28 - 000417280 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2018-01-26 17:35 - 2018-01-02 06:18 - 000615936 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2018-01-26 17:35 - 2018-01-02 06:17 - 000817152 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2018-01-26 17:35 - 2018-01-02 06:16 - 000814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2018-01-26 17:35 - 2018-01-02 06:09 - 000445440 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2018-01-26 17:35 - 2018-01-02 06:02 - 000862720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2018-01-26 17:35 - 2018-01-02 05:52 - 000499712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2018-01-26 17:35 - 2018-01-02 05:51 - 000341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2018-01-26 17:35 - 2018-01-02 05:48 - 001033216 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
2018-01-26 17:35 - 2018-01-02 05:44 - 000476160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2018-01-26 17:35 - 2018-01-02 05:41 - 000380416 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2018-01-26 17:35 - 2018-01-02 05:40 - 001436672 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2018-01-26 17:35 - 2018-01-02 05:40 - 000807936 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2018-01-26 17:35 - 2018-01-02 05:38 - 002134528 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2018-01-26 17:35 - 2018-01-02 05:37 - 000324096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll
2018-01-26 17:35 - 2018-01-02 05:34 - 001217536 _____ (Microsoft Corporation) C:\Windows\system32\sysmain.dll
2018-01-26 17:35 - 2018-01-02 05:33 - 000845312 _____ (Microsoft Corporation) C:\Windows\system32\BFE.DLL
2018-01-26 17:35 - 2018-01-02 05:32 - 000571392 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe
2018-01-26 17:35 - 2018-01-02 05:29 - 000817664 _____ (Microsoft Corporation) C:\Windows\system32\rpcss.dll
2018-01-26 17:35 - 2018-01-02 05:27 - 001696256 _____ (Microsoft Corporation) C:\Windows\system32\wevtsvc.dll
2018-01-26 17:35 - 2018-01-02 05:25 - 000795648 _____ (Microsoft Corporation) C:\Windows\system32\winhttp.dll
2018-01-26 17:35 - 2018-01-02 05:23 - 002882048 _____ (Microsoft Corporation) C:\Windows\system32\actxprxy.dll
2018-01-26 17:35 - 2018-01-02 05:20 - 013680128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2018-01-26 17:35 - 2018-01-02 05:17 - 000465920 _____ (Microsoft Corporation) C:\Windows\system32\wcncsvc.dll
2018-01-26 17:35 - 2018-01-02 05:17 - 000331776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2018-01-26 17:35 - 2018-01-02 05:16 - 002058752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2018-01-26 17:35 - 2018-01-02 05:16 - 000881152 _____ (Microsoft Corporation) C:\Windows\system32\MPSSVC.dll
2018-01-26 17:35 - 2018-01-02 05:16 - 000464384 _____ (Microsoft Corporation) C:\Windows\system32\pcasvc.dll
2018-01-26 17:35 - 2018-01-02 05:15 - 001545728 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2018-01-26 17:35 - 2018-01-02 05:11 - 000185856 _____ (Microsoft Corporation) C:\Windows\system32\rascfg.dll
2018-01-26 17:35 - 2018-01-02 05:09 - 000827392 _____ (Microsoft Corporation) C:\Windows\system32\spoolsv.exe
2018-01-26 17:35 - 2018-01-02 05:09 - 000713216 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll
2018-01-26 17:35 - 2018-01-02 05:07 - 001265664 _____ (Microsoft Corporation) C:\Windows\system32\schedsvc.dll
2018-01-26 17:35 - 2018-01-02 05:06 - 000626176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winhttp.dll
2018-01-26 17:35 - 2018-01-02 04:58 - 002767872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2018-01-26 17:35 - 2018-01-02 04:57 - 000164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rascfg.dll
2018-01-26 17:35 - 2018-01-02 04:56 - 000562176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nshwfp.dll
2018-01-26 17:35 - 2018-01-02 04:54 - 001313792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2018-01-26 17:35 - 2017-12-15 00:26 - 000374096 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2018-01-26 17:35 - 2017-12-14 22:39 - 000315736 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2018-01-26 17:34 - 2018-01-02 09:00 - 000214392 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Storage.ApplicationData.dll
2018-01-26 17:34 - 2018-01-02 07:38 - 001063464 _____ (Microsoft Corporation) C:\Windows\system32\WinTypes.dll
2018-01-26 17:34 - 2018-01-02 07:05 - 000164296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Storage.ApplicationData.dll
2018-01-26 17:34 - 2018-01-02 06:39 - 000402432 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdbss.sys
2018-01-26 17:34 - 2018-01-02 06:39 - 000072192 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndproxy.sys
2018-01-26 17:34 - 2018-01-02 06:39 - 000048128 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netbios.sys
2018-01-26 17:34 - 2018-01-02 06:38 - 000445952 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\nwifi.sys
2018-01-26 17:34 - 2018-01-02 06:38 - 000243200 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2018-01-26 17:34 - 2018-01-02 06:38 - 000151040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pacer.sys
2018-01-26 17:34 - 2018-01-02 06:38 - 000138752 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dfsc.sys
2018-01-26 17:34 - 2018-01-02 06:37 - 000080384 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wanarp.sys
2018-01-26 17:34 - 2018-01-02 06:31 - 000040448 _____ (Microsoft Corporation) C:\Windows\system32\rfxvmt.dll
2018-01-26 17:34 - 2018-01-02 06:28 - 000577024 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2018-01-26 17:34 - 2018-01-02 06:28 - 000013312 _____ (Microsoft Corporation) C:\Windows\system32\pcalua.exe
2018-01-26 17:34 - 2018-01-02 06:19 - 000108544 _____ (Microsoft Corporation) C:\Windows\system32\fdWCN.dll
2018-01-26 17:34 - 2018-01-02 06:17 - 000116224 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2018-01-26 17:34 - 2018-01-02 06:06 - 000489984 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2018-01-26 17:34 - 2018-01-02 05:57 - 000025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2018-01-26 17:34 - 2018-01-02 05:56 - 000199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2018-01-26 17:34 - 2018-01-02 05:45 - 000091136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fdWCN.dll
2018-01-26 17:34 - 2018-01-02 05:43 - 000662528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2018-01-26 17:34 - 2018-01-02 05:42 - 000262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2018-01-26 17:34 - 2018-01-02 05:34 - 000416256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2018-01-26 17:34 - 2018-01-02 05:33 - 001080320 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
2018-01-26 17:34 - 2018-01-02 05:33 - 000086016 _____ (Microsoft Corporation) C:\Windows\system32\nlaapi.dll
2018-01-26 17:34 - 2018-01-02 05:27 - 000168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2018-01-26 17:34 - 2018-01-02 05:25 - 000279040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2018-01-26 17:34 - 2018-01-02 05:22 - 000880640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll
2018-01-26 17:34 - 2018-01-02 05:22 - 000129536 _____ (Microsoft Corporation) C:\Windows\system32\WcnApi.dll
2018-01-26 17:34 - 2018-01-02 05:21 - 000391680 _____ (Microsoft Corporation) C:\Windows\system32\nlasvc.dll
2018-01-26 17:34 - 2018-01-02 05:18 - 000380416 _____ (Microsoft Corporation) C:\Windows\system32\pnrpsvc.dll
2018-01-26 17:34 - 2018-01-02 05:18 - 000230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2018-01-26 17:34 - 2018-01-02 05:17 - 001547264 _____ (Microsoft Corporation) C:\Windows\system32\wlansvc.dll
2018-01-26 17:34 - 2018-01-02 05:17 - 000694272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2018-01-26 17:34 - 2018-01-02 05:16 - 000747520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2018-01-26 17:34 - 2018-01-02 05:13 - 000216576 _____ (Microsoft Corporation) C:\Windows\system32\P2P.dll
2018-01-26 17:34 - 2018-01-02 05:11 - 000065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nlaapi.dll
2018-01-26 17:34 - 2018-01-02 05:09 - 000543232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FirewallAPI.dll
2018-01-26 17:34 - 2018-01-02 05:07 - 000440832 _____ (Microsoft Corporation) C:\Windows\system32\p2psvc.dll
2018-01-26 17:34 - 2018-01-02 05:04 - 000800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2018-01-26 17:34 - 2018-01-02 04:59 - 000177664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\P2P.dll
2018-01-26 17:34 - 2018-01-02 04:53 - 000710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2018-01-26 17:34 - 2017-12-14 11:19 - 000096256 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2018-01-26 17:34 - 2017-12-10 14:59 - 000077824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2018-01-26 17:33 - 2018-01-02 06:37 - 000110080 _____ (Microsoft Corporation) C:\Windows\system32\appinfo.dll
2018-01-26 17:33 - 2018-01-02 06:28 - 000048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2018-01-26 17:33 - 2018-01-02 05:59 - 000014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2018-01-26 17:33 - 2018-01-02 05:59 - 000005632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2018-01-26 17:33 - 2018-01-02 05:54 - 000145408 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2018-01-26 17:33 - 2018-01-02 05:53 - 000315392 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2018-01-26 17:33 - 2018-01-02 05:42 - 000620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2018-01-26 17:33 - 2018-01-02 05:40 - 000726528 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2018-01-26 17:33 - 2018-01-02 05:29 - 000754176 _____ (Microsoft Corporation) C:\Windows\system32\FirewallAPI.dll
2018-01-26 17:33 - 2018-01-02 05:25 - 000128000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2018-01-26 17:33 - 2018-01-02 05:08 - 000110080 _____ (Microsoft Corporation) C:\Windows\system32\icfupgd.dll
2018-01-26 17:33 - 2018-01-02 05:05 - 000097280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WcnApi.dll
2018-01-26 17:33 - 2017-12-29 09:21 - 000107520 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2018-01-26 17:33 - 2017-12-14 11:17 - 000044032 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2018-01-26 17:33 - 2017-12-10 14:58 - 000035840 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2018-01-26 17:33 - 2014-11-08 05:00 - 000024576 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndistapi.sys
2018-01-26 17:33 - 2014-11-08 04:56 - 000048128 _____ (Microsoft Corporation) C:\Windows\system32\kmddsp.tsp
2018-01-26 17:33 - 2014-11-08 04:56 - 000043008 _____ (Microsoft Corporation) C:\Windows\system32\rasmxs.dll
2018-01-26 17:33 - 2014-11-08 04:56 - 000030208 _____ (Microsoft Corporation) C:\Windows\system32\rasser.dll
2018-01-26 17:33 - 2014-11-08 04:24 - 000077824 _____ (Microsoft Corporation) C:\Windows\system32\rasdiag.dll
2018-01-26 17:33 - 2014-11-08 04:13 - 000039424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kmddsp.tsp
2018-01-26 17:33 - 2014-11-08 04:13 - 000033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rasmxs.dll
2018-01-26 17:33 - 2014-11-08 04:13 - 000022528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rasser.dll
2018-01-26 17:33 - 2014-11-08 03:48 - 000061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rasdiag.dll
2018-01-26 17:33 - 2014-11-04 07:27 - 000128512 _____ (Microsoft Corporation) C:\Windows\splwow64.exe
2018-01-26 16:39 - 2018-01-26 22:49 - 000000000 ____D C:\Users\Flo\Documents\ESET Nod32 Keys Finder V7.5
2018-01-26 16:34 - 2018-01-26 16:38 - 000000000 ____D C:\Users\Flo\Documents\ESET NOD32 Antivirus 11.0.149.0 (x86+x64).WwW.Torrent9.pe
2018-01-26 16:34 - 2018-01-26 16:34 - 000016866 _____ C:\Users\Flo\Downloads\eset-nod32-antivirus-11-fr-windows.torrent
2018-01-26 16:31 - 2018-01-26 16:31 - 000003641 _____ C:\Users\Flo\Downloads\eset-nod32-keys-finder-v7-5.torrent
2018-01-26 15:53 - 2018-01-26 15:53 - 000527697 _____ ( ) C:\Users\Flo\Downloads\ESET_NOD32_Antivirus_2017_Crack_x86-x64.exe
2018-01-26 15:09 - 2017-10-04 09:21 - 000029352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aspnet_counters.dll
2018-01-26 15:09 - 2017-10-04 09:21 - 000019088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcr100_clr0400.dll
2018-01-26 15:09 - 2017-10-04 04:45 - 000030888 _____ (Microsoft Corporation) C:\Windows\system32\aspnet_counters.dll
2018-01-26 15:09 - 2017-10-04 04:45 - 000019088 _____ (Microsoft Corporation) C:\Windows\system32\msvcr100_clr0400.dll
2018-01-24 23:53 - 2018-01-24 23:53 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2018-01-22 12:19 - 2018-01-22 12:19 - 000045672 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-dev.sys
2018-01-22 12:19 - 2018-01-22 12:19 - 000045640 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-stable.sys
2018-01-22 12:19 - 2018-01-22 12:19 - 000045640 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-canary.sys
2018-01-16 21:46 - 2018-01-16 21:46 - 000162663 _____ C:\Users\Flo\Downloads\PGP006376163000002.pdf
2018-01-16 21:29 - 2018-01-16 21:29 - 000085499 _____ C:\Users\Flo\Downloads\PGP006376163000003.pdf
2018-01-11 22:58 - 2018-01-11 22:59 - 015773349 _____ C:\Users\Flo\Downloads\LA ReunionCP.pptx
2018-01-11 14:29 - 2018-01-11 14:29 - 000120261 _____ C:\Users\Flo\Downloads\ID_Loped-ilovepdf-compressed.pdf
2018-01-11 14:28 - 2018-01-11 14:28 - 001222128 _____ C:\Users\Flo\Downloads\ID_Loped.pdf
2018-01-05 16:28 - 2018-01-05 16:28 - 000732802 _____ C:\Users\Flo\Downloads\Florian PEILLON Bilan PMSMP.pdf
==================== Un mois - Modifiés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2018-01-29 21:47 - 2014-09-12 05:08 - 000000093 _____ C:\Users\Flo\AppData\Roaming\sp_data.sys
2018-01-29 21:12 - 2014-11-09 10:01 - 000001090 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2018-01-29 20:45 - 2013-08-22 16:36 - 000000000 ____D C:\Windows\rescache
2018-01-29 18:48 - 2013-08-22 16:20 - 000000000 ____D C:\Windows\CbsTemp
2018-01-29 18:46 - 2014-09-12 05:11 - 000003600 _____ C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3886636556-3955906426-1051849303-1001
2018-01-29 17:24 - 2014-09-12 05:10 - 000001340 _____ C:\Windows\Tasks\XTFA.job
2018-01-29 17:04 - 2014-11-08 22:56 - 000000000 ____D C:\Users\Flo\AppData\Roaming\vlc
2018-01-29 16:44 - 2016-11-28 23:02 - 000000000 ____D C:\Users\Flo\AppData\LocalLow\Mozilla
2018-01-29 16:44 - 2014-09-12 05:05 - 000000000 ____D C:\Users\Flo
2018-01-29 16:42 - 2017-07-14 20:07 - 000000000 ___RD C:\Users\Flo\Google Drive
2018-01-29 16:42 - 2014-12-08 19:30 - 000000000 ____D C:\Users\Flo\AppData\Roaming\Spotify
2018-01-29 16:41 - 2016-11-20 13:30 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2018-01-29 16:41 - 2014-11-08 22:10 - 000001177 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2018-01-29 16:41 - 2014-11-08 22:10 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2018-01-29 16:37 - 2014-12-08 19:42 - 000000000 ____D C:\Users\Flo\AppData\Local\Spotify
2018-01-29 16:35 - 2017-01-19 23:21 - 000000000 ____D C:\Program Files\SoftEther VPN Client
2018-01-29 16:35 - 2014-11-09 10:01 - 000001072 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2018-01-29 16:34 - 2016-11-10 19:24 - 000001204 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineCore1d23b7faf6f1e72.job
2018-01-29 16:34 - 2013-08-22 15:45 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2018-01-29 16:32 - 2014-11-08 22:19 - 000000000 ____D C:\AdwCleaner
2018-01-29 14:42 - 2014-05-16 00:55 - 000820866 _____ C:\Windows\system32\perfh00C.dat
2018-01-29 14:42 - 2014-05-16 00:55 - 000162886 _____ C:\Windows\system32\perfc00C.dat
2018-01-29 14:42 - 2014-03-18 16:26 - 001826754 _____ C:\Windows\system32\PerfStringBackup.INI
2018-01-29 14:42 - 2013-08-22 14:36 - 000000000 ____D C:\Windows\Inf
2018-01-29 14:32 - 2013-08-22 15:44 - 000482064 _____ C:\Windows\system32\FNTCACHE.DAT
2018-01-29 01:18 - 2013-08-22 16:36 - 000000000 ___RD C:\Windows\ToastData
2018-01-28 23:25 - 2015-08-07 07:24 - 000000000 ____D C:\Windows\Minidump
2018-01-28 23:05 - 2014-11-09 21:36 - 000003752 _____ C:\Windows\System32\Tasks\AutoKMS
2018-01-28 22:26 - 2015-12-10 21:01 - 000000000 ____D C:\Users\Flo\Desktop\nero
2018-01-28 22:09 - 2017-11-19 13:24 - 000003872 _____ C:\Windows\System32\Tasks\CCleaner Update
2018-01-28 22:09 - 2017-11-19 13:24 - 000000836 _____ C:\Users\Public\Desktop\CCleaner.lnk
2018-01-28 21:05 - 2014-12-26 22:27 - 000726016 ___SH C:\Users\Flo\Documents\Thumbs.db
2018-01-28 21:02 - 2014-09-12 05:05 - 000000000 ____D C:\Users\Flo\AppData\Local\Packages
2018-01-28 21:00 - 2017-02-06 22:56 - 000512512 ___SH C:\Users\Flo\Downloads\Thumbs.db
2018-01-28 20:55 - 2017-10-03 20:37 - 000000000 ____D C:\Users\Flo\Downloads\boum
2018-01-28 00:26 - 2014-11-08 22:29 - 000000000 ____D C:\ProgramData\Malwarebytes
2018-01-28 00:26 - 2014-11-08 22:29 - 000000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware
2018-01-26 16:39 - 2014-11-09 14:19 - 000000000 ____D C:\Users\Flo\AppData\Local\ESET
2018-01-26 15:56 - 2013-08-22 16:36 - 000000000 ___HD C:\Windows\system32\GroupPolicy
2018-01-26 15:56 - 2013-08-22 16:36 - 000000000 ____D C:\Windows\SysWOW64\GroupPolicy
2018-01-24 23:53 - 2016-11-08 00:15 - 000000000 ____D C:\Program Files (x86)\Dropbox
2018-01-22 12:19 - 2017-11-01 12:58 - 000051024 _____ (Dropbox, Inc.) C:\Windows\system32\DbxSvc.exe
2018-01-22 11:01 - 2013-08-22 16:36 - 000000000 ___HD C:\Program Files\WindowsApps
2018-01-22 11:01 - 2013-08-22 16:36 - 000000000 ____D C:\Windows\AppReadiness
2018-01-16 21:09 - 2016-11-08 00:50 - 000000000 ___RD C:\Users\Flo\Dropbox
2018-01-15 23:52 - 2014-12-06 17:48 - 000000000 ____D C:\Users\Flo\AppData\Roaming\Skype
2018-01-15 21:00 - 2017-07-22 15:04 - 000000000 ____D C:\ProgramData\tmp
2018-01-10 23:50 - 2014-11-09 20:59 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
2018-01-10 23:46 - 2014-11-09 10:28 - 000000000 ____D C:\Windows\system32\MRT
2018-01-10 23:40 - 2017-10-15 11:49 - 129365736 ____C (Microsoft Corporation) C:\Windows\system32\MRT-KB890830.exe
2018-01-10 23:40 - 2014-11-09 10:28 - 129365736 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2018-01-10 23:38 - 2013-08-22 14:25 - 000000301 _____ C:\Windows\win.ini
2018-01-09 15:18 - 2014-11-09 10:02 - 000002215 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2018-01-09 15:18 - 2014-11-09 10:02 - 000002203 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2018-01-09 14:57 - 2015-07-19 05:50 - 000004460 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2018-01-09 14:57 - 2013-08-22 16:36 - 000000000 ____D C:\Windows\system32\Macromed
2018-01-09 14:56 - 2013-08-22 16:36 - 000000000 ____D C:\Windows\SysWOW64\Macromed
2018-01-07 23:25 - 2013-08-22 16:36 - 000000000 ____D C:\Windows\system32\NDF
==================== Fichiers à la racine de certains dossiers =======
2018-01-28 23:39 - 2018-01-29 16:44 - 000362693 _____ () C:\Users\Flo\ZHPDiag3.exe
2016-08-08 20:20 - 2016-10-14 19:59 - 000000000 _____ () C:\Users\Flo\AppData\Roaming\.NANotifyHere
2014-09-12 05:08 - 2018-01-29 21:47 - 000000093 _____ () C:\Users\Flo\AppData\Roaming\sp_data.sys
2014-11-08 15:13 - 2014-11-08 15:13 - 000000041 _____ () C:\Users\Flo\AppData\Roaming\WB.CFG
2017-10-10 12:08 - 2017-10-10 12:08 - 000000000 _____ () C:\Users\Flo\AppData\Local\{7083E007-A932-4154-AE69-4E687B0E0DC8}
==================== Bamital & volsnap ======================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
C:\Windows\system32\winlogon.exe => Le fichier est signé numériquement
C:\Windows\system32\wininit.exe => Le fichier est signé numériquement
C:\Windows\explorer.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\explorer.exe => Le fichier est signé numériquement
C:\Windows\system32\svchost.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\svchost.exe => Le fichier est signé numériquement
C:\Windows\system32\services.exe => Le fichier est signé numériquement
C:\Windows\system32\User32.dll => Le fichier est signé numériquement
C:\Windows\SysWOW64\User32.dll => Le fichier est signé numériquement
C:\Windows\system32\userinit.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\userinit.exe => Le fichier est signé numériquement
C:\Windows\system32\rpcss.dll => Le fichier est signé numériquement
C:\Windows\system32\dnsapi.dll => Le fichier est signé numériquement
C:\Windows\SysWOW64\dnsapi.dll => Le fichier est signé numériquement
C:\Windows\system32\Drivers\volsnap.sys => Le fichier est signé numériquement
LastRegBack: 2018-01-23 23:37
==================== Fin de FRST.txt ============================
Exécuté par Flo (administrateur) sur PC-FLO (29-01-2018 21:58:10)
Exécuté depuis C:\Users\Flo\Desktop
Profils chargés: Flo (Profils disponibles: Flo)
Platform: Windows 8.1 (Update) (X64) Langue: Français (France)
Internet Explorer Version 11 (Navigateur par défaut: Chrome)
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(ESET) C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
(ASUS Cloud Corporation) C:\Program Files (x86)\ASUS\WebStorage\2.1.2.301\AsusWSWinService.exe
(BlueStack Systems, Inc.) C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe
(BlueStack Systems, Inc.) C:\Program Files (x86)\BlueStacks\HD-UpdaterService.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
(ASUS) C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe
(Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe
(Broadcom Corporation.) C:\Program Files\ASUS\Bluetooth Software\btwdins.exe
(Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(Intel Corporation) C:\Windows\System32\DptfParticipantProcessorService.exe
(Intel Corporation) C:\Windows\System32\DptfPolicyConfigTDPService.exe
(Intel Corporation) C:\Windows\System32\DptfPolicyCriticalService.exe
(Intel Corporation) C:\Windows\System32\DptfPolicyLpmService.exe
() C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.7\GoogleCrashHandler.exe
() C:\Program Files (x86)\Photodex\ProShowGold\scsiaccess.exe
(SoftEther VPN Project at University of Tsukuba, Japan.) C:\Program Files\SoftEther VPN Client\vpnclient_x64.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.7\GoogleCrashHandler64.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel Corporation) C:\Windows\System32\igfxTray.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLoader.exe
(Intel Corporation) C:\Windows\System32\DptfPolicyLpmServiceHelper.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(SoftEther VPN Project at University of Tsukuba, Japan.) C:\Program Files\SoftEther VPN Client\vpnclient_x64.exe
(Flux Software LLC) C:\Users\Flo\AppData\Local\FluxSoftware\Flux\flux.exe
(ESET) C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
(Spotify Ltd) C:\Users\Flo\AppData\Roaming\Spotify\SpotifyWebHelper.exe
() C:\Users\Flo\AppData\Local\MP3 Skype recorder\MP3SkypeRecorder.exe
() C:\Program Files (x86)\Google\Drive\googledrivesync.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Broadcom Corporation.) C:\Program Files\ASUS\Bluetooth Software\BTTray.exe
(McAfee, Inc.) C:\Program Files\McAfee Security Scan\3.11.599\SSScheduler.exe
(BlueStack Systems, Inc.) C:\Program Files (x86)\BlueStacks\HD-Agent.exe
(SoftEther VPN Project at University of Tsukuba, Japan.) C:\Program Files\SoftEther VPN Client\vpncmgr_x64.exe
(Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(WildTangent) C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Microsoft Corporation) C:\Windows\SysWOW64\rundll32.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPHelper.exe
(Nero AG) C:\Program Files (x86)\Nero\Update\NASvc.exe
() C:\Program Files (x86)\Google\Drive\googledrivesync.exe
(ASUS Cloud Corporation) C:\Program Files (x86)\ASUS\WebStorage\2.1.2.301\AsusWSPanel.exe
() C:\Program Files (x86)\Google\Drive\googledrivesync.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPCenter.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
==================== Registre (Avec liste blanche) ===========================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [DptfPolicyLpmServiceHelper] => C:\Windows\system32\DptfPolicyLpmServiceHelper.exe [114048 2013-10-18] (Intel Corporation)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2234144 2014-01-21] (NVIDIA Corporation)
HKLM\...\Run: [SoftEther VPN Client UI Helper] => C:\Program Files\SoftEther VPN Client\vpnclient_x64.exe [5248456 2017-01-19] (SoftEther VPN Project at University of Tsukuba, Japan.)
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET NOD32 Antivirus\ecmds.exe [324216 2017-10-10] (ESET)
HKLM-x32\...\Run: [ASUSPRP] => C:\Program Files (x86)\ASUS\APRP\APRP.EXE [1080992 2014-05-15] (ASUSTek Computer Inc.)
HKLM-x32\...\Run: [WebStorage] => C:\Program Files (x86)\ASUS\WebStorage\2.1.2.301\ASUSWSLoader.exe [63296 2014-02-25] ()
HKLM-x32\...\Run: [BlueStacks Agent] => C:\Program Files (x86)\BlueStacks\HD-Agent.exe [896632 2015-07-22] (BlueStack Systems, Inc.)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [3567936 2018-01-22] (Dropbox, Inc.)
HKLM-x32\...\RunOnce: [network_smb_zetorrents] => "C:\Users\Flo\AppData\Local\Temp\\BI_RunOnce.exe" /initurl hxxp://sub.stepjump.info/init/N1UIWbXtX/:uid:? /affid "-" /id "0" /name " " /uniqid N1UIWbXtX /uuid E9A38430-38AE-81E4-3032-382C4A16AE0C /bio (l'élément de données a 68 caractères en plus). <==== ATTENTION
HKU\S-1-5-21-3886636556-3955906426-1051849303-1001\...\Run: [f.lux] => C:\Users\Flo\AppData\Local\FluxSoftware\Flux\flux.exe [1017224 2013-10-23] (Flux Software LLC)
HKU\S-1-5-21-3886636556-3955906426-1051849303-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [10257872 2018-01-09] (Piriform Ltd)
HKU\S-1-5-21-3886636556-3955906426-1051849303-1001\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3696912 2014-03-04] (Disc Soft Ltd)
HKU\S-1-5-21-3886636556-3955906426-1051849303-1001\...\Run: [Spotify Web Helper] => C:\Users\Flo\AppData\Roaming\Spotify\SpotifyWebHelper.exe [2018360 2015-08-07] (Spotify Ltd)
HKU\S-1-5-21-3886636556-3955906426-1051849303-1001\...\Run: [MP3 Skype recorder] => C:\Users\Flo\AppData\Local\MP3 Skype recorder\MP3SkypeRecorder.exe [1544704 2014-08-08] ()
HKU\S-1-5-21-3886636556-3955906426-1051849303-1001\...\Run: [GoogleDriveSync] => C:\Program Files (x86)\Google\Drive\googledrivesync.exe [41061856 2017-11-20] ()
HKU\S-1-5-21-3886636556-3955906426-1051849303-1001\...\Run: [Spotify] => C:\Users\Flo\AppData\Roaming\Spotify\Spotify.exe [7675448 2015-08-07] (Spotify Ltd)
HKU\S-1-5-21-3886636556-3955906426-1051849303-1001\...\MountPoints2: {02463ae6-97a1-11e6-8366-382c4a16ae0c} - "F:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-3886636556-3955906426-1051849303-1001\...\MountPoints2: {17065e0b-decb-11e7-83ca-382c4a16ae0c} - "F:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-3886636556-3955906426-1051849303-1001\...\MountPoints2: {17065e13-decb-11e7-83ca-382c4a16ae0c} - "F:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-3886636556-3955906426-1051849303-1001\...\MountPoints2: {2d4bec30-6aa8-11e4-8268-3010b31a253f} - "G:\START.EXE"
HKU\S-1-5-21-3886636556-3955906426-1051849303-1001\...\MountPoints2: {38224dc1-9d34-11e5-82fa-382c4a16ae0c} - "F:\autorun.exe"
HKU\S-1-5-21-3886636556-3955906426-1051849303-1001\...\MountPoints2: {3edfffc2-c8a5-11e6-8371-382c4a16ae0c} - "F:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-3886636556-3955906426-1051849303-1001\...\MountPoints2: {3ee000ab-c8a5-11e6-8371-382c4a16ae0c} - "F:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-3886636556-3955906426-1051849303-1001\...\MountPoints2: {3ee000b1-c8a5-11e6-8371-382c4a16ae0c} - "F:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-3886636556-3955906426-1051849303-1001\...\MountPoints2: {459fa250-a130-11e5-82fb-382c4a16ae0c} - "H:\autorun.exe"
HKU\S-1-5-21-3886636556-3955906426-1051849303-1001\...\MountPoints2: {6d3ca4bd-f8ba-11e5-8322-382c4a16ae0c} - "H:\autorun.exe"
HKU\S-1-5-21-3886636556-3955906426-1051849303-1001\...\MountPoints2: {8c1b661c-6a17-11e7-8388-382c4a16ae0c} - "F:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-3886636556-3955906426-1051849303-1001\...\MountPoints2: {922cee20-1555-11e6-832e-382c4a16ae0c} - "H:\autorun.exe"
HKU\S-1-5-21-3886636556-3955906426-1051849303-1001\...\MountPoints2: {9f7ea5b7-6f98-11e7-8391-382c4a16ae0c} - "F:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-3886636556-3955906426-1051849303-1001\...\MountPoints2: {b14a1a7f-70bf-11e7-8392-382c4a16ae0c} - "F:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-3886636556-3955906426-1051849303-1001\...\MountPoints2: {d9d6a64c-67c4-11e6-8350-382c4a16ae0c} - "F:\autorun.exe"
HKU\S-1-5-21-3886636556-3955906426-1051849303-1001\...\MountPoints2: {d9d6a807-67c4-11e6-8350-382c4a16ae0c} - "F:\autorun.exe"
HKU\S-1-5-21-3886636556-3955906426-1051849303-1001\...\MountPoints2: {e9eaf640-e656-11e7-83cc-382c4a16ae0c} - "F:\HiSuiteDownLoader.exe"
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth.lnk [2014-09-12]
ShortcutTarget: Bluetooth.lnk -> C:\Program Files\ASUS\Bluetooth Software\BTTray.exe (Broadcom Corporation.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk [2017-09-25]
ShortcutTarget: McAfee Security Scan Plus.lnk -> C:\Program Files\McAfee Security Scan\3.11.599\SSScheduler.exe (McAfee, Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SoftEther VPN Client Manager Startup.lnk [2017-01-19]
ShortcutTarget: SoftEther VPN Client Manager Startup.lnk -> C:\Program Files\SoftEther VPN Client\vpncmgr_x64.exe (SoftEther VPN Project at University of Tsukuba, Japan.)
CHR HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 89.2.0.1 89.2.0.2
Tcpip\..\Interfaces\{9B1F894F-DDA4-4F62-A22B-F77949F9442C}: [DhcpNameServer] 81.220.255.10
Tcpip\..\Interfaces\{C258BA4D-AB99-4ED7-B54E-7C71F8E6BB06}: [DhcpNameServer] 10.211.254.254 8.8.8.8
Tcpip\..\Interfaces\{CA0890E0-D0B1-42ED-8845-A4CB11BE52CE}: [DhcpNameServer] 89.2.0.1 89.2.0.2
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com
HKU\S-1-5-21-3886636556-3955906426-1051849303-1001\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
SearchScopes: HKU\S-1-5-21-3886636556-3955906426-1051849303-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-3886636556-3955906426-1051849303-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office15\OCHelper.dll [2017-12-12] (Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL [2017-02-23] (Microsoft Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll [2017-08-24] (Microsoft Corporation)
BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL [2017-02-23] (Microsoft Corporation)
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL [2017-08-15] (Microsoft Corporation)
StartMenuInternet: IEXPLORE.EXE - iexplore.exe
FireFox:
========
FF ProfilePath: C:\Users\Flo\AppData\Roaming\Mozilla\Firefox\Profiles\q7zhfa41.default [2018-01-29]
FF Homepage: Mozilla\Firefox\Profiles\q7zhfa41.default -> www.google.fr
FF Extension: (Video DownloadHelper) - C:\Users\Flo\AppData\Roaming\Mozilla\Firefox\Profiles\q7zhfa41.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2018-01-29]
FF Extension: (Adblock Plus) - C:\Users\Flo\AppData\Roaming\Mozilla\Firefox\Profiles\q7zhfa41.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2017-12-18]
FF Extension: (Disable Crash Auto Submit) - C:\Users\Flo\AppData\Roaming\Mozilla\Firefox\Profiles\q7zhfa41.default\features\{0f9a03d4-cd0c-4a15-ae1d-4e8b46c23095}\disable-crash-autosubmit@mozilla.org.xpi [2018-01-29] [Legacy]
FF Extension: (Skype) - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}.xpi [2016-05-25] [Legacy]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_28_0_0_137.dll [2018-01-09] ()
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~1\Office15\NPSPWRAP.DLL [2014-01-23] (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_28_0_0_137.dll [2018-01-09] ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-10-23] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-10-23] (Intel Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2016-07-19] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL [2014-01-21] (Microsoft Corporation)
FF Plugin-x32: @Nero.com/KM -> C:\PROGRA~2\COMMON~1\Nero\BROWSE~1\NPBROW~1.DLL [2015-08-28] (Nero AG)
FF Plugin-x32: @nullsoft.com/winampDetector;version=1 -> C:\Program Files (x86)\Winamp Detect\npwachk.dll [2013-11-20] (Nullsoft, Inc.)
FF Plugin-x32: @photodex.com/PhotodexPresenter -> C:\Program Files (x86)\Photodex Presenter\npPxPlay.dll [2015-12-01] ( )
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-14] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-14] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2014-07-23] (VideoLAN)
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll [2013-08-06] ()
FF Plugin-x32: PDF Architect 2 -> C:\Program Files (x86)\PDF Architect 2\np-previewer.dll [2014-10-10] (pdfforge GmbH)
Chrome:
=======
CHR NewTab: Default -> Not-active:"chrome-extension://clgckgfbhciacomhlchmgdnplmdiadbj/newtab.html"
CHR Session Restore: Default -> est activé.
CHR Profile: C:\Users\Flo\AppData\Local\Google\Chrome\User Data\Default [2018-01-29]
CHR Extension: (Slides) - C:\Users\Flo\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-15]
CHR Extension: (Docs) - C:\Users\Flo\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-15]
CHR Extension: (Google Drive) - C:\Users\Flo\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-29]
CHR Extension: (YouTube) - C:\Users\Flo\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-27]
CHR Extension: (Adblock Plus) - C:\Users\Flo\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2018-01-26]
CHR Extension: (Recherche Google) - C:\Users\Flo\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-29]
CHR Extension: (wanteeed) - C:\Users\Flo\AppData\Local\Google\Chrome\User Data\Default\Extensions\emnoomldgleagdjapdeckpmebokijail [2017-11-08]
CHR Extension: (Sheets) - C:\Users\Flo\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-15]
CHR Extension: (Google Docs hors connexion) - C:\Users\Flo\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-16]
CHR Extension: (AdBlock) - C:\Users\Flo\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2018-01-28]
CHR Extension: (Mustsee) - C:\Users\Flo\AppData\Local\Google\Chrome\User Data\Default\Extensions\gogbdmmlnloojdafblpkmkhgigcidnmn [2017-11-01]
CHR Extension: (Bouton Enregistrer Pinterest) - C:\Users\Flo\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpdjojdkbbmdfjfahjcgigfpmkopogic [2017-11-16]
CHR Extension: (Skype) - C:\Users\Flo\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2017-12-02]
CHR Extension: (Application Launcher for Drive (by Google)) - C:\Users\Flo\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2017-07-14]
CHR Extension: (Calculator Plus) - C:\Users\Flo\AppData\Local\Google\Chrome\User Data\Default\Extensions\nddnemlpojcbnidlchlpofdpfmhgknah [2018-01-26]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Flo\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-08-28]
CHR Extension: (Gmail) - C:\Users\Flo\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-03-28]
CHR Extension: (Chrome Media Router) - C:\Users\Flo\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-12-18]
CHR HKU\S-1-5-21-3886636556-3955906426-1051849303-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [ccjleegmemocfpghkhpjmiccjcacackp] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - hxxps://clients2.google.com/service/update2/crx
==================== Services (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 Asus WebStorage Windows Service; C:\Program Files (x86)\ASUS\WebStorage\2.1.2.301\AsusWSWinService.exe [71680 2014-02-25] (ASUS Cloud Corporation) [Fichier non signé]
S2 BcmBtRSupport; C:\Windows\system32\BtwRSupportService.exe [2251992 2013-11-14] (Broadcom Corporation.)
S3 BstHdAndroidSvc; C:\Program Files (x86)\BlueStacks\HD-Service.exe [433784 2015-06-16] (BlueStack Systems, Inc.)
R2 BstHdLogRotatorSvc; C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe [413304 2015-06-16] (BlueStack Systems, Inc.)
R2 BstHdUpdaterSvc; C:\Program Files (x86)\BlueStacks\HD-UpdaterService.exe [831096 2015-07-21] (BlueStack Systems, Inc.)
R2 btwdins; C:\Program Files\ASUS\Bluetooth Software\btwdins.exe [977664 2014-06-03] (Broadcom Corporation.)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-11-08] (Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-11-08] (Dropbox, Inc.)
R2 DbxSvc; C:\Windows\system32\DbxSvc.exe [51024 2018-01-22] (Dropbox, Inc.)
R2 DptfParticipantProcessorService; C:\Windows\system32\DptfParticipantProcessorService.exe [117704 2013-10-18] (Intel Corporation)
R2 DptfPolicyConfigTDPService; C:\Windows\system32\DptfPolicyConfigTDPService.exe [116680 2013-10-18] (Intel Corporation)
R2 DptfPolicyCriticalService; C:\Windows\system32\DptfPolicyCriticalService.exe [148160 2013-10-18] (Intel Corporation)
R2 DptfPolicyLpmService; C:\Windows\system32\DptfPolicyLpmService.exe [126952 2013-10-18] (Intel Corporation)
R2 ekrn; C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe [2648184 2017-10-10] (ESET)
R2 GamesAppIntegrationService; C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe [227904 2014-01-28] (WildTangent)
R2 HuaweiHiSuiteService64.exe; C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe [192200 2016-11-25] () [Fichier non signé]
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [282072 2014-03-18] (Intel Corporation)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [827392 2013-09-02] (Intel(R) Corporation) [Fichier non signé]
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [131544 2013-10-23] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-10-23] (Intel Corporation)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6058960 2017-08-07] (Malwarebytes)
S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.11.599\McCHSvc.exe [404376 2017-09-05] (McAfee, Inc.)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1593632 2014-01-21] (NVIDIA Corporation)
S3 PDF Architect 2; C:\Program Files (x86)\PDF Architect 2\ws.exe [1771560 2014-10-10] (pdfforge GmbH)
S3 pdfforge CrashHandler; C:\Program Files (x86)\PDF Architect 2\crash-handler-ws.exe [861736 2014-10-10] (pdfforge GmbH)
R2 ScsiAccess; C:\Program Files (x86)\Photodex\ProShowGold\ScsiAccess.exe [186760 2015-12-01] ()
R2 SEVPNCLIENT; C:\Program Files\SoftEther VPN Client\vpnclient_x64.exe [5248456 2017-01-19] (SoftEther VPN Project at University of Tsukuba, Japan.)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [361824 2017-01-12] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [119872 2017-01-12] (Microsoft Corporation)
===================== Pilotes (Avec liste blanche) ======================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R3 ATP; C:\Windows\System32\drivers\AsusTP.sys [69904 2014-03-31] (ASUS Corporation)
R3 bcbtums; C:\Windows\system32\drivers\bcbtums.sys [170712 2013-11-14] (Broadcom Corporation.)
R3 BCM43XX; C:\Windows\system32\DRIVERS\bcmwl63a.sys [7546544 2014-09-12] (Broadcom Corporation)
R2 BstHdDrv; C:\Program Files (x86)\BlueStacks\HD-Hypervisor-amd64.sys [145528 2015-06-16] (BlueStack Systems)
R3 DptfDevDram; C:\Windows\system32\DRIVERS\DptfDevDram.sys [145640 2013-10-18] (Intel Corporation)
R3 DptfDevPch; C:\Windows\system32\DRIVERS\DptfDevPch.sys [116752 2013-10-18] (Intel Corporation)
R3 DptfDevProc; C:\Windows\system32\DRIVERS\DptfDevProc.sys [289744 2013-10-18] (Intel Corporation)
R3 DptfManager; C:\Windows\system32\DRIVERS\DptfManager.sys [494296 2013-10-18] (Intel Corporation)
R1 dtsoftbus01; C:\Windows\System32\drivers\dtsoftbus01.sys [283064 2014-11-12] (Disc Soft Ltd)
R1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [132848 2017-09-25] (ESET)
R0 edevmon; C:\Windows\System32\DRIVERS\edevmon.sys [241368 2014-09-22] (ESET)
S0 eelam; C:\Windows\System32\DRIVERS\eelam.sys [15392 2017-10-11] (ESET)
R1 ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [180088 2017-10-11] (ESET)
R1 epfwwfpr; C:\Windows\system32\DRIVERS\epfwwfpr.sys [77736 2017-09-25] (ESET)
R1 ESProtectionDriver; C:\Windows\system32\drivers\mbae64.sys [77440 2017-10-04] ()
U5 hw_usbdev; C:\Windows\System32\Drivers\hw_usbdev.sys [116864 2016-11-25] (Huawei Technologies Co., Ltd.)
R3 kbfiltr; C:\Windows\System32\drivers\kbfiltr.sys [17280 2012-08-06] ( )
R2 MBAMChameleon; C:\Windows\System32\Drivers\MbamChameleon.sys [192952 2018-01-28] (Malwarebytes)
R3 MBAMFarflt; C:\Windows\system32\DRIVERS\farflt.sys [110016 2018-01-29] (Malwarebytes)
R3 MBAMProtection; C:\Windows\system32\DRIVERS\mbam.sys [45504 2018-01-29] (Malwarebytes)
R3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [252232 2018-01-29] (Malwarebytes)
R3 MBAMWebProtection; C:\Windows\system32\DRIVERS\mwac.sys [94144 2018-01-29] (Malwarebytes)
R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [99288 2013-10-23] (Intel Corporation)
S3 mfencrk; C:\Windows\system32\DRIVERS\mfencrk.sys [96592 2014-03-18] (McAfee, Inc.)
R3 Neo_VPN; C:\Windows\system32\DRIVERS\Neo_VPN.sys [38432 2017-01-19] (SoftEther Corporation)
R1 SeLow; C:\Windows\system32\DRIVERS\SeLow_x64.sys [51232 2017-01-19] (SoftEther Corporation)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [46600 2017-02-10] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [274776 2017-01-12] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [117592 2017-01-12] (Microsoft Corporation)
S3 dbx; system32\DRIVERS\dbx.sys [X]
U0 msahci; system32\drivers\msahci.sys [X]
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois - Créés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2018-01-29 21:53 - 2018-01-29 21:58 - 000066438 _____ C:\Users\Flo\Desktop\Addition.txt
2018-01-29 21:53 - 2018-01-29 21:53 - 087106233 _____ C:\Users\Flo\Downloads\Survivor.S09E06.VOSTFR.XviD-Survivor-ST-Davhuit.avi.crdownload
2018-01-29 21:50 - 2018-01-29 21:58 - 000030049 _____ C:\Users\Flo\Desktop\FRST.txt
2018-01-29 21:49 - 2018-01-29 21:58 - 000000000 ____D C:\FRST
2018-01-29 21:48 - 2018-01-29 21:48 - 002393088 _____ (Farbar) C:\Users\Flo\Desktop\FRST64.exe
2018-01-29 18:22 - 2018-01-29 18:30 - 364046336 _____ C:\Users\Flo\Downloads\Survivor.S09E05.VOSTFR.XviD-Survivor-ST-Davhuit.avi
2018-01-29 18:09 - 2018-01-29 18:10 - 008206624 _____ (Malwarebytes) C:\Users\Flo\Downloads\adwcleaner_7.0.7.0.exe
2018-01-29 16:45 - 2018-01-29 16:45 - 002967936 _____ C:\Users\Flo\Desktop\ZHPDiag3.exe
2018-01-29 15:50 - 2018-01-29 15:52 - 008206624 _____ (Malwarebytes) C:\Users\Flo\Desktop\adwcleaner_7.0.7.0.exe
2018-01-29 15:26 - 2018-01-29 15:39 - 361908224 _____ C:\Users\Flo\Downloads\Survivor.S09E04.VOSTFR.XviD-Survivor-ST-Davhuit.avi
2018-01-29 00:00 - 2018-01-29 00:34 - 361457664 _____ C:\Users\Flo\Downloads\Survivor.S09E03.VOSTFR.XviD-Survivor-ST-Davhuit.avi
2018-01-28 23:44 - 2018-01-28 23:44 - 000000876 _____ C:\Users\Flo\Desktop\ZHPCleaner.lnk
2018-01-28 23:44 - 2018-01-28 23:44 - 000000000 ____D C:\Users\Flo\AppData\Local\ZHP
2018-01-28 23:43 - 2018-01-28 23:43 - 003050368 _____ C:\Users\Flo\Desktop\ZHPCleaner.exe
2018-01-28 23:39 - 2018-01-29 16:44 - 000362693 _____ C:\Users\Flo\ZHPDiag3.exe
2018-01-28 23:38 - 2018-01-29 17:08 - 000000000 ____D C:\Users\Flo\AppData\Roaming\ZHP
2018-01-28 22:39 - 2018-01-28 22:39 - 000098132 _____ C:\Users\Flo\Desktop\AfficheResultatsPrimoDemandeur.pdf
2018-01-28 21:53 - 2018-01-28 21:56 - 011205832 _____ (Piriform Ltd) C:\Users\Flo\Downloads\ccsetup539.exe
2018-01-28 20:10 - 2018-01-28 23:03 - 363446272 _____ C:\Users\Flo\Downloads\Survivor.S09E02.VOSTFR.XviD-Survivor-ST-Davhuit.avi
2018-01-28 00:31 - 2018-01-28 00:31 - 000192952 _____ (Malwarebytes) C:\Windows\system32\Drivers\MbamChameleon.sys
2018-01-28 00:30 - 2018-01-29 19:49 - 000094144 _____ (Malwarebytes) C:\Windows\system32\Drivers\mwac.sys
2018-01-28 00:30 - 2018-01-29 16:35 - 000252232 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys
2018-01-28 00:30 - 2018-01-29 16:35 - 000110016 _____ (Malwarebytes) C:\Windows\system32\Drivers\farflt.sys
2018-01-28 00:30 - 2018-01-29 16:35 - 000045504 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys
2018-01-28 00:29 - 2018-01-28 00:29 - 000001885 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2018-01-28 00:29 - 2018-01-28 00:29 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2018-01-28 00:28 - 2017-10-04 13:15 - 000077440 _____ C:\Windows\system32\Drivers\mbae64.sys
2018-01-28 00:26 - 2018-01-28 00:26 - 000000000 ____D C:\Program Files\Malwarebytes
2018-01-28 00:25 - 2018-01-28 00:25 - 000000000 ____D C:\ProgramData\MB2Migration
2018-01-27 23:43 - 2018-01-28 00:04 - 370788352 _____ C:\Users\Flo\Downloads\Survivor.S09E01.VOSTFR.XviD-Survivor-ST-Davhuit.avi
2018-01-26 22:55 - 2018-01-26 22:55 - 000000000 ____D C:\Users\Flo\AppData\Roaming\ESET
2018-01-26 17:36 - 2018-01-02 07:39 - 022374248 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2018-01-26 17:36 - 2018-01-02 07:39 - 007408984 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2018-01-26 17:36 - 2018-01-02 07:39 - 002013016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2018-01-26 17:36 - 2018-01-02 07:03 - 025739264 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2018-01-26 17:36 - 2018-01-02 07:00 - 019790760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2018-01-26 17:36 - 2018-01-02 06:59 - 001565520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\combase.dll
2018-01-26 17:36 - 2018-01-02 06:38 - 000559616 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2018-01-26 17:36 - 2018-01-02 06:30 - 002900480 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2018-01-26 17:36 - 2018-01-02 06:28 - 005796352 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2018-01-26 17:36 - 2018-01-02 06:20 - 020275200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2018-01-26 17:36 - 2018-01-02 05:49 - 002294272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2018-01-26 17:36 - 2018-01-02 05:44 - 015284224 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2018-01-26 17:36 - 2018-01-02 05:26 - 003241472 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2018-01-26 17:36 - 2018-01-02 05:23 - 004508160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2018-01-26 17:36 - 2018-01-02 04:55 - 003548160 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2018-01-26 17:36 - 2017-12-10 14:46 - 007079424 _____ (Microsoft Corporation) C:\Windows\system32\glcndFilter.dll
2018-01-26 17:36 - 2017-12-10 14:24 - 005275136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\glcndFilter.dll
2018-01-26 17:36 - 2017-12-10 14:06 - 007797760 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Data.Pdf.dll
2018-01-26 17:36 - 2017-12-10 13:59 - 005270528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Data.Pdf.dll
2018-01-26 17:36 - 2017-12-06 05:42 - 002452816 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2018-01-26 17:36 - 2017-12-05 17:58 - 004168192 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2018-01-26 17:35 - 2018-01-02 09:00 - 000590680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fvevol.sys
2018-01-26 17:35 - 2018-01-02 09:00 - 000242520 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdyboost.sys
2018-01-26 17:35 - 2018-01-02 08:56 - 002530400 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2018-01-26 17:35 - 2018-01-02 08:56 - 000567656 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2018-01-26 17:35 - 2018-01-02 08:56 - 000397224 _____ (Microsoft Corporation) C:\Windows\system32\bcryptprimitives.dll
2018-01-26 17:35 - 2018-01-02 08:56 - 000136536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wfplwfs.sys
2018-01-26 17:35 - 2018-01-02 07:39 - 000418648 _____ (Microsoft Corporation) C:\Windows\system32\hal.dll
2018-01-26 17:35 - 2018-01-02 07:39 - 000354648 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fltMgr.sys
2018-01-26 17:35 - 2018-01-02 07:38 - 002176064 _____ (Microsoft Corporation) C:\Windows\system32\combase.dll
2018-01-26 17:35 - 2018-01-02 07:38 - 001662096 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll
2018-01-26 17:35 - 2018-01-02 07:37 - 001737600 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2018-01-26 17:35 - 2018-01-02 07:37 - 001676056 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2018-01-26 17:35 - 2018-01-02 07:37 - 001536120 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2018-01-26 17:35 - 2018-01-02 07:37 - 001500432 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2018-01-26 17:35 - 2018-01-02 07:37 - 001371352 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe
2018-01-26 17:35 - 2018-01-02 07:37 - 001135280 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2018-01-26 17:35 - 2018-01-02 07:37 - 000685440 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2018-01-26 17:35 - 2018-01-02 07:35 - 001307840 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2018-01-26 17:35 - 2018-01-02 07:35 - 000989528 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\http.sys
2018-01-26 17:35 - 2018-01-02 07:03 - 000341384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcryptprimitives.dll
2018-01-26 17:35 - 2018-01-02 07:01 - 001902328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2018-01-26 17:35 - 2018-01-02 06:59 - 001213784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ole32.dll
2018-01-26 17:35 - 2018-01-02 06:58 - 001502000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2018-01-26 17:35 - 2018-01-02 06:48 - 000507176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2018-01-26 17:35 - 2018-01-02 06:40 - 000284672 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2018-01-26 17:35 - 2018-01-02 06:39 - 000686080 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2018-01-26 17:35 - 2018-01-02 06:38 - 000416256 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys
2018-01-26 17:35 - 2018-01-02 06:38 - 000401408 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2018-01-26 17:35 - 2018-01-02 06:34 - 000360448 _____ (Microsoft Corporation) C:\Windows\system32\ncsi.dll
2018-01-26 17:35 - 2018-01-02 06:28 - 000417280 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2018-01-26 17:35 - 2018-01-02 06:18 - 000615936 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2018-01-26 17:35 - 2018-01-02 06:17 - 000817152 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2018-01-26 17:35 - 2018-01-02 06:16 - 000814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2018-01-26 17:35 - 2018-01-02 06:09 - 000445440 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2018-01-26 17:35 - 2018-01-02 06:02 - 000862720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2018-01-26 17:35 - 2018-01-02 05:52 - 000499712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2018-01-26 17:35 - 2018-01-02 05:51 - 000341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2018-01-26 17:35 - 2018-01-02 05:48 - 001033216 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
2018-01-26 17:35 - 2018-01-02 05:44 - 000476160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2018-01-26 17:35 - 2018-01-02 05:41 - 000380416 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2018-01-26 17:35 - 2018-01-02 05:40 - 001436672 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2018-01-26 17:35 - 2018-01-02 05:40 - 000807936 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2018-01-26 17:35 - 2018-01-02 05:38 - 002134528 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2018-01-26 17:35 - 2018-01-02 05:37 - 000324096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll
2018-01-26 17:35 - 2018-01-02 05:34 - 001217536 _____ (Microsoft Corporation) C:\Windows\system32\sysmain.dll
2018-01-26 17:35 - 2018-01-02 05:33 - 000845312 _____ (Microsoft Corporation) C:\Windows\system32\BFE.DLL
2018-01-26 17:35 - 2018-01-02 05:32 - 000571392 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe
2018-01-26 17:35 - 2018-01-02 05:29 - 000817664 _____ (Microsoft Corporation) C:\Windows\system32\rpcss.dll
2018-01-26 17:35 - 2018-01-02 05:27 - 001696256 _____ (Microsoft Corporation) C:\Windows\system32\wevtsvc.dll
2018-01-26 17:35 - 2018-01-02 05:25 - 000795648 _____ (Microsoft Corporation) C:\Windows\system32\winhttp.dll
2018-01-26 17:35 - 2018-01-02 05:23 - 002882048 _____ (Microsoft Corporation) C:\Windows\system32\actxprxy.dll
2018-01-26 17:35 - 2018-01-02 05:20 - 013680128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2018-01-26 17:35 - 2018-01-02 05:17 - 000465920 _____ (Microsoft Corporation) C:\Windows\system32\wcncsvc.dll
2018-01-26 17:35 - 2018-01-02 05:17 - 000331776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2018-01-26 17:35 - 2018-01-02 05:16 - 002058752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2018-01-26 17:35 - 2018-01-02 05:16 - 000881152 _____ (Microsoft Corporation) C:\Windows\system32\MPSSVC.dll
2018-01-26 17:35 - 2018-01-02 05:16 - 000464384 _____ (Microsoft Corporation) C:\Windows\system32\pcasvc.dll
2018-01-26 17:35 - 2018-01-02 05:15 - 001545728 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2018-01-26 17:35 - 2018-01-02 05:11 - 000185856 _____ (Microsoft Corporation) C:\Windows\system32\rascfg.dll
2018-01-26 17:35 - 2018-01-02 05:09 - 000827392 _____ (Microsoft Corporation) C:\Windows\system32\spoolsv.exe
2018-01-26 17:35 - 2018-01-02 05:09 - 000713216 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll
2018-01-26 17:35 - 2018-01-02 05:07 - 001265664 _____ (Microsoft Corporation) C:\Windows\system32\schedsvc.dll
2018-01-26 17:35 - 2018-01-02 05:06 - 000626176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winhttp.dll
2018-01-26 17:35 - 2018-01-02 04:58 - 002767872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2018-01-26 17:35 - 2018-01-02 04:57 - 000164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rascfg.dll
2018-01-26 17:35 - 2018-01-02 04:56 - 000562176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nshwfp.dll
2018-01-26 17:35 - 2018-01-02 04:54 - 001313792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2018-01-26 17:35 - 2017-12-15 00:26 - 000374096 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2018-01-26 17:35 - 2017-12-14 22:39 - 000315736 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2018-01-26 17:34 - 2018-01-02 09:00 - 000214392 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Storage.ApplicationData.dll
2018-01-26 17:34 - 2018-01-02 07:38 - 001063464 _____ (Microsoft Corporation) C:\Windows\system32\WinTypes.dll
2018-01-26 17:34 - 2018-01-02 07:05 - 000164296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Storage.ApplicationData.dll
2018-01-26 17:34 - 2018-01-02 06:39 - 000402432 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdbss.sys
2018-01-26 17:34 - 2018-01-02 06:39 - 000072192 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndproxy.sys
2018-01-26 17:34 - 2018-01-02 06:39 - 000048128 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netbios.sys
2018-01-26 17:34 - 2018-01-02 06:38 - 000445952 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\nwifi.sys
2018-01-26 17:34 - 2018-01-02 06:38 - 000243200 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2018-01-26 17:34 - 2018-01-02 06:38 - 000151040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pacer.sys
2018-01-26 17:34 - 2018-01-02 06:38 - 000138752 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dfsc.sys
2018-01-26 17:34 - 2018-01-02 06:37 - 000080384 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wanarp.sys
2018-01-26 17:34 - 2018-01-02 06:31 - 000040448 _____ (Microsoft Corporation) C:\Windows\system32\rfxvmt.dll
2018-01-26 17:34 - 2018-01-02 06:28 - 000577024 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2018-01-26 17:34 - 2018-01-02 06:28 - 000013312 _____ (Microsoft Corporation) C:\Windows\system32\pcalua.exe
2018-01-26 17:34 - 2018-01-02 06:19 - 000108544 _____ (Microsoft Corporation) C:\Windows\system32\fdWCN.dll
2018-01-26 17:34 - 2018-01-02 06:17 - 000116224 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2018-01-26 17:34 - 2018-01-02 06:06 - 000489984 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2018-01-26 17:34 - 2018-01-02 05:57 - 000025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2018-01-26 17:34 - 2018-01-02 05:56 - 000199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2018-01-26 17:34 - 2018-01-02 05:45 - 000091136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fdWCN.dll
2018-01-26 17:34 - 2018-01-02 05:43 - 000662528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2018-01-26 17:34 - 2018-01-02 05:42 - 000262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2018-01-26 17:34 - 2018-01-02 05:34 - 000416256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2018-01-26 17:34 - 2018-01-02 05:33 - 001080320 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
2018-01-26 17:34 - 2018-01-02 05:33 - 000086016 _____ (Microsoft Corporation) C:\Windows\system32\nlaapi.dll
2018-01-26 17:34 - 2018-01-02 05:27 - 000168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2018-01-26 17:34 - 2018-01-02 05:25 - 000279040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2018-01-26 17:34 - 2018-01-02 05:22 - 000880640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll
2018-01-26 17:34 - 2018-01-02 05:22 - 000129536 _____ (Microsoft Corporation) C:\Windows\system32\WcnApi.dll
2018-01-26 17:34 - 2018-01-02 05:21 - 000391680 _____ (Microsoft Corporation) C:\Windows\system32\nlasvc.dll
2018-01-26 17:34 - 2018-01-02 05:18 - 000380416 _____ (Microsoft Corporation) C:\Windows\system32\pnrpsvc.dll
2018-01-26 17:34 - 2018-01-02 05:18 - 000230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2018-01-26 17:34 - 2018-01-02 05:17 - 001547264 _____ (Microsoft Corporation) C:\Windows\system32\wlansvc.dll
2018-01-26 17:34 - 2018-01-02 05:17 - 000694272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2018-01-26 17:34 - 2018-01-02 05:16 - 000747520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2018-01-26 17:34 - 2018-01-02 05:13 - 000216576 _____ (Microsoft Corporation) C:\Windows\system32\P2P.dll
2018-01-26 17:34 - 2018-01-02 05:11 - 000065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nlaapi.dll
2018-01-26 17:34 - 2018-01-02 05:09 - 000543232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FirewallAPI.dll
2018-01-26 17:34 - 2018-01-02 05:07 - 000440832 _____ (Microsoft Corporation) C:\Windows\system32\p2psvc.dll
2018-01-26 17:34 - 2018-01-02 05:04 - 000800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2018-01-26 17:34 - 2018-01-02 04:59 - 000177664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\P2P.dll
2018-01-26 17:34 - 2018-01-02 04:53 - 000710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2018-01-26 17:34 - 2017-12-14 11:19 - 000096256 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2018-01-26 17:34 - 2017-12-10 14:59 - 000077824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2018-01-26 17:33 - 2018-01-02 06:37 - 000110080 _____ (Microsoft Corporation) C:\Windows\system32\appinfo.dll
2018-01-26 17:33 - 2018-01-02 06:28 - 000048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2018-01-26 17:33 - 2018-01-02 05:59 - 000014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2018-01-26 17:33 - 2018-01-02 05:59 - 000005632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2018-01-26 17:33 - 2018-01-02 05:54 - 000145408 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2018-01-26 17:33 - 2018-01-02 05:53 - 000315392 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2018-01-26 17:33 - 2018-01-02 05:42 - 000620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2018-01-26 17:33 - 2018-01-02 05:40 - 000726528 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2018-01-26 17:33 - 2018-01-02 05:29 - 000754176 _____ (Microsoft Corporation) C:\Windows\system32\FirewallAPI.dll
2018-01-26 17:33 - 2018-01-02 05:25 - 000128000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2018-01-26 17:33 - 2018-01-02 05:08 - 000110080 _____ (Microsoft Corporation) C:\Windows\system32\icfupgd.dll
2018-01-26 17:33 - 2018-01-02 05:05 - 000097280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WcnApi.dll
2018-01-26 17:33 - 2017-12-29 09:21 - 000107520 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2018-01-26 17:33 - 2017-12-14 11:17 - 000044032 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2018-01-26 17:33 - 2017-12-10 14:58 - 000035840 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2018-01-26 17:33 - 2014-11-08 05:00 - 000024576 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndistapi.sys
2018-01-26 17:33 - 2014-11-08 04:56 - 000048128 _____ (Microsoft Corporation) C:\Windows\system32\kmddsp.tsp
2018-01-26 17:33 - 2014-11-08 04:56 - 000043008 _____ (Microsoft Corporation) C:\Windows\system32\rasmxs.dll
2018-01-26 17:33 - 2014-11-08 04:56 - 000030208 _____ (Microsoft Corporation) C:\Windows\system32\rasser.dll
2018-01-26 17:33 - 2014-11-08 04:24 - 000077824 _____ (Microsoft Corporation) C:\Windows\system32\rasdiag.dll
2018-01-26 17:33 - 2014-11-08 04:13 - 000039424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kmddsp.tsp
2018-01-26 17:33 - 2014-11-08 04:13 - 000033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rasmxs.dll
2018-01-26 17:33 - 2014-11-08 04:13 - 000022528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rasser.dll
2018-01-26 17:33 - 2014-11-08 03:48 - 000061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rasdiag.dll
2018-01-26 17:33 - 2014-11-04 07:27 - 000128512 _____ (Microsoft Corporation) C:\Windows\splwow64.exe
2018-01-26 16:39 - 2018-01-26 22:49 - 000000000 ____D C:\Users\Flo\Documents\ESET Nod32 Keys Finder V7.5
2018-01-26 16:34 - 2018-01-26 16:38 - 000000000 ____D C:\Users\Flo\Documents\ESET NOD32 Antivirus 11.0.149.0 (x86+x64).WwW.Torrent9.pe
2018-01-26 16:34 - 2018-01-26 16:34 - 000016866 _____ C:\Users\Flo\Downloads\eset-nod32-antivirus-11-fr-windows.torrent
2018-01-26 16:31 - 2018-01-26 16:31 - 000003641 _____ C:\Users\Flo\Downloads\eset-nod32-keys-finder-v7-5.torrent
2018-01-26 15:53 - 2018-01-26 15:53 - 000527697 _____ ( ) C:\Users\Flo\Downloads\ESET_NOD32_Antivirus_2017_Crack_x86-x64.exe
2018-01-26 15:09 - 2017-10-04 09:21 - 000029352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aspnet_counters.dll
2018-01-26 15:09 - 2017-10-04 09:21 - 000019088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcr100_clr0400.dll
2018-01-26 15:09 - 2017-10-04 04:45 - 000030888 _____ (Microsoft Corporation) C:\Windows\system32\aspnet_counters.dll
2018-01-26 15:09 - 2017-10-04 04:45 - 000019088 _____ (Microsoft Corporation) C:\Windows\system32\msvcr100_clr0400.dll
2018-01-24 23:53 - 2018-01-24 23:53 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2018-01-22 12:19 - 2018-01-22 12:19 - 000045672 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-dev.sys
2018-01-22 12:19 - 2018-01-22 12:19 - 000045640 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-stable.sys
2018-01-22 12:19 - 2018-01-22 12:19 - 000045640 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-canary.sys
2018-01-16 21:46 - 2018-01-16 21:46 - 000162663 _____ C:\Users\Flo\Downloads\PGP006376163000002.pdf
2018-01-16 21:29 - 2018-01-16 21:29 - 000085499 _____ C:\Users\Flo\Downloads\PGP006376163000003.pdf
2018-01-11 22:58 - 2018-01-11 22:59 - 015773349 _____ C:\Users\Flo\Downloads\LA ReunionCP.pptx
2018-01-11 14:29 - 2018-01-11 14:29 - 000120261 _____ C:\Users\Flo\Downloads\ID_Loped-ilovepdf-compressed.pdf
2018-01-11 14:28 - 2018-01-11 14:28 - 001222128 _____ C:\Users\Flo\Downloads\ID_Loped.pdf
2018-01-05 16:28 - 2018-01-05 16:28 - 000732802 _____ C:\Users\Flo\Downloads\Florian PEILLON Bilan PMSMP.pdf
==================== Un mois - Modifiés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2018-01-29 21:47 - 2014-09-12 05:08 - 000000093 _____ C:\Users\Flo\AppData\Roaming\sp_data.sys
2018-01-29 21:12 - 2014-11-09 10:01 - 000001090 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2018-01-29 20:45 - 2013-08-22 16:36 - 000000000 ____D C:\Windows\rescache
2018-01-29 18:48 - 2013-08-22 16:20 - 000000000 ____D C:\Windows\CbsTemp
2018-01-29 18:46 - 2014-09-12 05:11 - 000003600 _____ C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3886636556-3955906426-1051849303-1001
2018-01-29 17:24 - 2014-09-12 05:10 - 000001340 _____ C:\Windows\Tasks\XTFA.job
2018-01-29 17:04 - 2014-11-08 22:56 - 000000000 ____D C:\Users\Flo\AppData\Roaming\vlc
2018-01-29 16:44 - 2016-11-28 23:02 - 000000000 ____D C:\Users\Flo\AppData\LocalLow\Mozilla
2018-01-29 16:44 - 2014-09-12 05:05 - 000000000 ____D C:\Users\Flo
2018-01-29 16:42 - 2017-07-14 20:07 - 000000000 ___RD C:\Users\Flo\Google Drive
2018-01-29 16:42 - 2014-12-08 19:30 - 000000000 ____D C:\Users\Flo\AppData\Roaming\Spotify
2018-01-29 16:41 - 2016-11-20 13:30 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2018-01-29 16:41 - 2014-11-08 22:10 - 000001177 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2018-01-29 16:41 - 2014-11-08 22:10 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2018-01-29 16:37 - 2014-12-08 19:42 - 000000000 ____D C:\Users\Flo\AppData\Local\Spotify
2018-01-29 16:35 - 2017-01-19 23:21 - 000000000 ____D C:\Program Files\SoftEther VPN Client
2018-01-29 16:35 - 2014-11-09 10:01 - 000001072 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2018-01-29 16:34 - 2016-11-10 19:24 - 000001204 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineCore1d23b7faf6f1e72.job
2018-01-29 16:34 - 2013-08-22 15:45 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2018-01-29 16:32 - 2014-11-08 22:19 - 000000000 ____D C:\AdwCleaner
2018-01-29 14:42 - 2014-05-16 00:55 - 000820866 _____ C:\Windows\system32\perfh00C.dat
2018-01-29 14:42 - 2014-05-16 00:55 - 000162886 _____ C:\Windows\system32\perfc00C.dat
2018-01-29 14:42 - 2014-03-18 16:26 - 001826754 _____ C:\Windows\system32\PerfStringBackup.INI
2018-01-29 14:42 - 2013-08-22 14:36 - 000000000 ____D C:\Windows\Inf
2018-01-29 14:32 - 2013-08-22 15:44 - 000482064 _____ C:\Windows\system32\FNTCACHE.DAT
2018-01-29 01:18 - 2013-08-22 16:36 - 000000000 ___RD C:\Windows\ToastData
2018-01-28 23:25 - 2015-08-07 07:24 - 000000000 ____D C:\Windows\Minidump
2018-01-28 23:05 - 2014-11-09 21:36 - 000003752 _____ C:\Windows\System32\Tasks\AutoKMS
2018-01-28 22:26 - 2015-12-10 21:01 - 000000000 ____D C:\Users\Flo\Desktop\nero
2018-01-28 22:09 - 2017-11-19 13:24 - 000003872 _____ C:\Windows\System32\Tasks\CCleaner Update
2018-01-28 22:09 - 2017-11-19 13:24 - 000000836 _____ C:\Users\Public\Desktop\CCleaner.lnk
2018-01-28 21:05 - 2014-12-26 22:27 - 000726016 ___SH C:\Users\Flo\Documents\Thumbs.db
2018-01-28 21:02 - 2014-09-12 05:05 - 000000000 ____D C:\Users\Flo\AppData\Local\Packages
2018-01-28 21:00 - 2017-02-06 22:56 - 000512512 ___SH C:\Users\Flo\Downloads\Thumbs.db
2018-01-28 20:55 - 2017-10-03 20:37 - 000000000 ____D C:\Users\Flo\Downloads\boum
2018-01-28 00:26 - 2014-11-08 22:29 - 000000000 ____D C:\ProgramData\Malwarebytes
2018-01-28 00:26 - 2014-11-08 22:29 - 000000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware
2018-01-26 16:39 - 2014-11-09 14:19 - 000000000 ____D C:\Users\Flo\AppData\Local\ESET
2018-01-26 15:56 - 2013-08-22 16:36 - 000000000 ___HD C:\Windows\system32\GroupPolicy
2018-01-26 15:56 - 2013-08-22 16:36 - 000000000 ____D C:\Windows\SysWOW64\GroupPolicy
2018-01-24 23:53 - 2016-11-08 00:15 - 000000000 ____D C:\Program Files (x86)\Dropbox
2018-01-22 12:19 - 2017-11-01 12:58 - 000051024 _____ (Dropbox, Inc.) C:\Windows\system32\DbxSvc.exe
2018-01-22 11:01 - 2013-08-22 16:36 - 000000000 ___HD C:\Program Files\WindowsApps
2018-01-22 11:01 - 2013-08-22 16:36 - 000000000 ____D C:\Windows\AppReadiness
2018-01-16 21:09 - 2016-11-08 00:50 - 000000000 ___RD C:\Users\Flo\Dropbox
2018-01-15 23:52 - 2014-12-06 17:48 - 000000000 ____D C:\Users\Flo\AppData\Roaming\Skype
2018-01-15 21:00 - 2017-07-22 15:04 - 000000000 ____D C:\ProgramData\tmp
2018-01-10 23:50 - 2014-11-09 20:59 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
2018-01-10 23:46 - 2014-11-09 10:28 - 000000000 ____D C:\Windows\system32\MRT
2018-01-10 23:40 - 2017-10-15 11:49 - 129365736 ____C (Microsoft Corporation) C:\Windows\system32\MRT-KB890830.exe
2018-01-10 23:40 - 2014-11-09 10:28 - 129365736 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2018-01-10 23:38 - 2013-08-22 14:25 - 000000301 _____ C:\Windows\win.ini
2018-01-09 15:18 - 2014-11-09 10:02 - 000002215 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2018-01-09 15:18 - 2014-11-09 10:02 - 000002203 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2018-01-09 14:57 - 2015-07-19 05:50 - 000004460 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2018-01-09 14:57 - 2013-08-22 16:36 - 000000000 ____D C:\Windows\system32\Macromed
2018-01-09 14:56 - 2013-08-22 16:36 - 000000000 ____D C:\Windows\SysWOW64\Macromed
2018-01-07 23:25 - 2013-08-22 16:36 - 000000000 ____D C:\Windows\system32\NDF
==================== Fichiers à la racine de certains dossiers =======
2018-01-28 23:39 - 2018-01-29 16:44 - 000362693 _____ () C:\Users\Flo\ZHPDiag3.exe
2016-08-08 20:20 - 2016-10-14 19:59 - 000000000 _____ () C:\Users\Flo\AppData\Roaming\.NANotifyHere
2014-09-12 05:08 - 2018-01-29 21:47 - 000000093 _____ () C:\Users\Flo\AppData\Roaming\sp_data.sys
2014-11-08 15:13 - 2014-11-08 15:13 - 000000041 _____ () C:\Users\Flo\AppData\Roaming\WB.CFG
2017-10-10 12:08 - 2017-10-10 12:08 - 000000000 _____ () C:\Users\Flo\AppData\Local\{7083E007-A932-4154-AE69-4E687B0E0DC8}
==================== Bamital & volsnap ======================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
C:\Windows\system32\winlogon.exe => Le fichier est signé numériquement
C:\Windows\system32\wininit.exe => Le fichier est signé numériquement
C:\Windows\explorer.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\explorer.exe => Le fichier est signé numériquement
C:\Windows\system32\svchost.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\svchost.exe => Le fichier est signé numériquement
C:\Windows\system32\services.exe => Le fichier est signé numériquement
C:\Windows\system32\User32.dll => Le fichier est signé numériquement
C:\Windows\SysWOW64\User32.dll => Le fichier est signé numériquement
C:\Windows\system32\userinit.exe => Le fichier est signé numériquement
C:\Windows\SysWOW64\userinit.exe => Le fichier est signé numériquement
C:\Windows\system32\rpcss.dll => Le fichier est signé numériquement
C:\Windows\system32\dnsapi.dll => Le fichier est signé numériquement
C:\Windows\SysWOW64\dnsapi.dll => Le fichier est signé numériquement
C:\Windows\system32\Drivers\volsnap.sys => Le fichier est signé numériquement
LastRegBack: 2018-01-23 23:37
==================== Fin de FRST.txt ============================