Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 14.01.2018
Exécuté par nad (administrateur) sur MONPC (15-01-2018 19:21:05)
Exécuté depuis C:\Users\nad\Downloads
Profils chargés: nad & Administrateur (Profils disponibles: nad & Administrateur)
Platform: Windows 8.1 (Update) (X64) Langue: Français (France)
Internet Explorer Version 11 (Navigateur par défaut: FF)
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.7\GoogleCrashHandler.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.7\GoogleCrashHandler64.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ink\InputPersonalization.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
==================== Registre (Avec liste blanche) ===========================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [WindowsDefender] => "%ProgramFiles%\Windows Defender\MSASCuiL.exe"
HKU\S-1-5-21-3533391725-3395593355-2823718628-1002\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [10249048 2017-12-13] (Piriform Ltd)
HKU\S-1-5-21-3533391725-3395593355-2823718628-1002\...\Run: [vidnotifier.exe] => C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\vidnotifier\vidnotifier.exe
HKU\S-1-5-21-3533391725-3395593355-2823718628-1002\...\Policies\Explorer: [NolowDiskSpaceChecks] 1
HKU\S-1-5-21-3533391725-3395593355-2823718628-500\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [516608 2014-11-21] (Microsoft Corporation)
HKU\S-1-5-18\...\Run: [KSS] => "C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan\kss.exe" autorun
AppInit_DLLs: C:\Windows\system32\nvinitx.dll => C:\Windows\system32\nvinitx.dll [170360 2017-05-01] (NVIDIA Corporation)
AppInit_DLLs: , C:\WINDOWS\system32\nvinitx.dll => C:\WINDOWS\system32\nvinitx.dll [170360 2017-05-01] (NVIDIA Corporation)
AppInit_DLLs-x32: C:\WINDOWS\SysWOW64\nvinit.dll => C:\WINDOWS\SysWOW64\nvinit.dll [148016 2017-05-01] (NVIDIA Corporation)
Startup: C:\Users\nad\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Facebook Gameroom.lnk [2018-01-12]
ShortcutTarget: Facebook Gameroom.lnk -> C:\Users\nad\AppData\Local\Facebook\Games\FacebookGameroom.exe (Facebook)
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.254
Tcpip\..\Interfaces\{4EDBD077-85F4-4267-ACD6-729A25B9DCE5}: [DhcpNameServer] 192.168.0.254
Tcpip\..\Interfaces\{AA2DCD3C-2998-4D4E-99A7-05DD847BAB31}: [DhcpNameServer] 192.168.0.254
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page =
HKU\S-1-5-21-3533391725-3395593355-2823718628-500\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://acer13.msn.com
HKU\S-1-5-21-3533391725-3395593355-2823718628-500\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://acer13.msn.com
SearchScopes: HKU\S-1-5-21-3533391725-3395593355-2823718628-1002 -> DefaultScope {DF6C0A63-1A58-46E8-8D8A-78A8EF350A62} URL =
SearchScopes: HKU\S-1-5-21-3533391725-3395593355-2823718628-1002 -> {DF6C0A63-1A58-46E8-8D8A-78A8EF350A62} URL =
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_151\bin\jp2ssv.dll [2017-11-13] (Oracle Corporation)
FireFox:
========
FF DefaultProfile: 7vw0i6yg.default-1492755750670-1515837473130
FF ProfilePath: C:\Users\nad\AppData\Roaming\Mozilla\Firefox\Profiles\7vw0i6yg.default-1492755750670-1515837473130 [2018-01-15]
FF Homepage: Mozilla\Firefox\Profiles\7vw0i6yg.default-1492755750670-1515837473130 -> hxxps://www.google.fr/
FF Extension: (Disable JavaScript Shared Memory) - C:\Users\nad\AppData\Roaming\Mozilla\Firefox\Profiles\7vw0i6yg.default-1492755750670-1515837473130\features\{cc447ea1-0fb7-46d0-abf0-48ee5df2f900}\disable-js-shared-memory@mozilla.org.xpi [2018-01-13] [Legacy]
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_28_0_0_137.dll [2018-01-09] ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_28_0_0_137.dll [2018-01-09] ()
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2017-12-01] (Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2017-12-01] (Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2017-12-01] (Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2017-12-01] (Foxit Corporation)
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll [2015-10-13] (Google, Inc.)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2012-06-07] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2012-06-07] (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.151.2 -> C:\Program Files (x86)\Java\jre1.8.0_151\bin\dtplugin\npDeployJava1.dll [2017-11-13] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.151.2 -> C:\Program Files (x86)\Java\jre1.8.0_151\bin\plugin2\npjp2.dll [2017-11-13] (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] ( Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2017-05-01] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2017-05-01] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-14] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-14] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2017-11-29] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.5.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2017-11-29] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2017-11-29] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2017-11-29] (VideoLAN)
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\1\NP_wtapp.dll [2016-06-09] ()
Chrome:
=======
CHR Profile: C:\Users\nad\AppData\Local\Google\Chrome\User Data\Default [2018-01-15]
CHR Extension: (Protection Web Avira) - C:\Users\nad\AppData\Local\Google\Chrome\User Data\Default\Extensions\flliilndjeohchalpbbcdekjklbdgfkk [2017-11-14]
CHR Extension: (Mountain River) - C:\Users\nad\AppData\Local\Google\Chrome\User Data\Default\Extensions\hldnnpdpbcplkacehcbafmncblojlead [2017-11-17]
CHR Extension: (Vérificateur de messages Google) - C:\Users\nad\AppData\Local\Google\Chrome\User Data\Default\Extensions\mihcahmgecmbnbcchbopgniflfhgnkff [2017-11-17]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\nad\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-11-17]
CHR Extension: (Chrome Media Router) - C:\Users\nad\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-12-23]
CHR HKLM\...\Chrome\Extension: [caljgklbbfbcjjanaijlacgncafpegll] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [caljgklbbfbcjjanaijlacgncafpegll] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
==================== Services (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
HKLM\SYSTEM\CurrentControlSet\Services\aswSP <==== ATTENTION (Rootkit!)
HKLM\SYSTEM\CurrentControlSet\Services\aswMonFlt <==== ATTENTION (Rootkit!)
HKLM\SYSTEM\CurrentControlSet\Services\aswSnx <==== ATTENTION (Rootkit!)
S3 AtherosSvc; C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\adminservice.exe [231040 2012-11-09] (Qualcomm Atheros Commnucations) [Fichier non signé]
S3 AVerRemote; C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerRemote.exe [364544 2012-08-08] (AVerMedia) [Fichier non signé]
S3 AVerScheduleService; C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerScheduleService.exe [403456 2011-04-01] () [Fichier non signé]
S3 CtrlPanel; C:\Windows\SysWOW64\CtrlPanel.exe [229376 2011-05-20] (Wistron) [Fichier non signé]
S4 GamesAppIntegrationService; C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe [350064 2016-06-09] (WildTangent)
S4 IconMan_R; C:\Program Files (x86)\Realtek\Realtek USB 2.0 Card Reader\RIconMan.exe [2451456 2012-07-13] (Realsil Microelectronics Inc.) [Fichier non signé]
R2 igfxCUIService1.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [319096 2017-05-18] (Intel Corporation)
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [128896 2012-07-18] (Intel Corporation)
S3 IRSrv; C:\Program Files\acerIR\IRSrv.exe [179712 2012-05-10] () [Fichier non signé]
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [165760 2012-07-18] (Intel Corporation)
S3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6234056 2017-11-01] (Malwarebytes)
S3 MyEpson Portal Service; C:\Program Files (x86)\EPSON\MyEpson Portal\mepService.exe [703696 2016-08-08] (SEIKO EPSON CORPORATION)
S4 PGService; C:\Program Files (x86)\PointGrab\Hand Gesture Control\PGService.exe [54064 2013-01-28] (PointGrab LTD)
S4 PG_Service_Launcher; C:\Program Files (x86)\PointGrab\Hand Gesture Control\PG_Service_Launcher.exe [170816 2013-01-28] (PointGrab LTD)
S3 ss_conn_service; C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [752224 2017-01-16] (DEVGURU Co., LTD.)
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [361824 2017-01-12] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [119872 2017-01-12] (Microsoft Corporation)
S3 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
S3 NvTelemetryContainer; "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\plugins" -r
===================== Pilotes (Avec liste blanche) ======================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R3 athr; C:\WINDOWS\system32\DRIVERS\athwbx.sys [4307192 2017-05-15] (Qualcomm Atheros Communications, Inc.)
R3 AVerIT13x; C:\WINDOWS\System32\Drivers\AVerIT13x_x64.sys [196096 2012-07-11] (AVerMedia TECHNOLOGIES, Inc.)
S3 BTATH_LWFLT; C:\WINDOWS\system32\DRIVERS\btath_lwflt.sys [76952 2012-11-09] (Qualcomm Atheros)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [131984 2017-05-18] (Samsung Electronics Co., Ltd.)
R1 HWiNFO32; C:\WINDOWS\SysWOW64\drivers\HWiNFO64A.SYS [27552 2017-05-15] (REALiX(tm))
R3 ITECIRfilter; C:\WINDOWS\system32\DRIVERS\ITECIRfilter.sys [36560 2016-03-08] (ITE Tech. Inc. )
R0 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [253880 2017-12-27] (Malwarebytes)
R1 MpKsl658acf7d; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{2616320D-0C2C-480A-8091-C0FA0A1C272F}\MpKsl658acf7d.sys [58120 2018-01-15] (Microsoft Corporation)
R2 npf; C:\WINDOWS\System32\drivers\npf.sys [47632 2010-01-27] (CACE Technologies, Inc.)
S3 PQAWRwa; C:\Windows\SysWOW64\PQAWDrv.sys [12384 2008-03-01] () [Fichier non signé]
R2 RtkIOAC60; C:\WINDOWS\system32\DRIVERS\RtkIOAC60.sys [38504 2012-04-16] (Windows (R) Codename Longhorn DDK provider)
S3 RTSUER; C:\WINDOWS\system32\Drivers\RtsUer.sys [420832 2017-08-09] (Realsil Semiconductor Corporation)
S3 semav6msr64; C:\WINDOWS\system32\drivers\semav6msr64.sys [21984 2016-10-18] ()
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [166288 2017-05-18] (Samsung Electronics Co., Ltd.)
S3 ssudserd; C:\WINDOWS\system32\DRIVERS\ssudserd.sys [166288 2017-05-18] (Samsung Electronics Co., Ltd.)
S3 Trufos; C:\WINDOWS\System32\DRIVERS\Trufos.sys [485512 2016-11-10] (BitDefender S.R.L.)
S3 usbrndis6; C:\WINDOWS\system32\DRIVERS\usb80236.sys [20992 2016-06-08] (Microsoft Corporation)
S0 WdBoot; C:\WINDOWS\System32\drivers\WdBoot.sys [46600 2017-02-10] (Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\WdFilter.sys [274776 2017-01-12] (Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [117592 2017-01-12] (Microsoft Corporation)
U1 aswbdisk; pas de ImagePath
U0 Compbatt; pas de ImagePath
S3 cpuz143; \??\C:\WINDOWS\temp\cpuz143\cpuz143_x64.sys [X]
U2 ERSvc; pas de ImagePath
U2 IAStorDataMgrsvc; pas de ImagePath
U2 NIHardwareService; pas de ImagePath
U2 NVSvc; pas de ImagePath
S4 nvvad_WaveExtensible; \SystemRoot\system32\drivers\nvvad64v.sys [X]
S4 nvvhci; \SystemRoot\System32\drivers\nvvhci.sys [X]
U2 Parvdm; pas de ImagePath
U2 srService; pas de ImagePath
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois - Créés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2018-01-15 19:21 - 2018-01-15 19:21 - 000017491 _____ C:\Users\nad\Downloads\FRST.txt
2018-01-15 19:21 - 2018-01-15 19:21 - 000000000 ____D C:\FRST
2018-01-15 19:19 - 2018-01-15 19:19 - 000001464 _____ C:\Users\nad\Desktop\FRST64.lnk
2018-01-15 19:18 - 2018-01-15 19:18 - 002393088 _____ (Farbar) C:\Users\nad\Downloads\FRST64.exe
2018-01-15 17:06 - 2018-01-15 17:06 - 000003872 _____ C:\WINDOWS\System32\Tasks\CCleaner Update
2018-01-15 16:38 - 2018-01-15 16:38 - 008344776 _____ (Piriform Ltd) C:\Users\nad\Downloads\ccsetup538_slim.exe
2018-01-15 13:54 - 2018-01-15 13:54 - 000144577 _____ C:\Users\nad\Desktop\ZHPDiag.txt
2018-01-15 13:51 - 2018-01-15 13:51 - 002964864 _____ C:\Users\nad\Downloads\ZHPDiag3.exe
2018-01-15 13:32 - 2018-01-15 13:52 - 000000000 ____D C:\Users\nad\AppData\Local\ZHP
2018-01-15 13:32 - 2018-01-15 13:32 - 000000877 _____ C:\Users\nad\Desktop\ZHPCleaner.lnk
2018-01-15 13:31 - 2018-01-15 13:32 - 003045248 _____ C:\Users\nad\Downloads\ZHPCleaner.exe
2018-01-13 10:58 - 2018-01-13 10:58 - 000000000 ____D C:\Users\nad\Desktop\Anciennes données de Firefox
2018-01-12 16:13 - 2018-01-12 16:13 - 000001223 _____ C:\Users\nad\Desktop\Facebook Gameroom.lnk
2018-01-12 15:32 - 2018-01-12 15:32 - 000001026 _____ C:\Users\Public\Desktop\Revo Uninstaller.lnk
2018-01-11 08:51 - 2018-01-11 08:51 - 000457896 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\asw6913a48e1b9f794b.tmp
2018-01-11 08:51 - 2018-01-11 08:51 - 000146648 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\asw2c95d4193b03cc29.tmp
2018-01-10 14:31 - 2017-12-21 00:56 - 000835576 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2018-01-10 14:31 - 2017-12-21 00:56 - 000177648 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2018-01-10 08:49 - 2018-01-10 08:49 - 000047160 _____ C:\Users\nad\Downloads\AttestationDroits.pdf
2018-01-10 08:40 - 2018-01-10 08:40 - 000002727 _____ C:\Users\Public\Desktop\Start PaperScan 3 Free Edition.lnk
2018-01-10 08:40 - 2018-01-10 08:40 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PaperScan 3 Free Edition
2018-01-10 08:40 - 2018-01-10 08:40 - 000000000 ____D C:\Program Files (x86)\ORPALIS
2018-01-09 15:32 - 2018-01-09 15:32 - 005845504 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerInstaller.exe
2018-01-09 13:54 - 2018-01-09 13:56 - 000000000 ____D C:\ProgramData\MusicMP3Downloader
2018-01-09 13:54 - 2018-01-09 13:54 - 000000000 ____D C:\Users\nad\AppData\Roaming\MusicMP3Downloader
2018-01-09 13:53 - 2018-01-09 13:53 - 006196044 _____ C:\Users\nad\Downloads\MusicMp3Downloader-5.7.5.6.Setup.exe
2018-01-09 12:54 - 2018-01-09 12:54 - 000000000 ____D C:\ProgramData\DigitalWave.ApplicationUpdater_files
2018-01-09 12:53 - 2018-01-09 12:53 - 000000000 ____D C:\Program Files (x86)\FreeCodecPack
2018-01-09 12:50 - 2018-01-09 12:52 - 040340296 _____ (Digital Wave Ltd ) C:\Users\nad\Downloads\FreeYouTubeToMP3Converter_4.1.66.1226_d.exe
2018-01-09 10:43 - 2018-01-09 10:42 - 000580480 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\asw9b8d3c18a7a8615f.tmp
2018-01-09 10:43 - 2017-12-22 18:40 - 000358672 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\asw20e5869e66fb3742.tmp
2018-01-09 10:43 - 2017-12-22 18:40 - 000204456 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswb1c91f69ac83329a.tmp
2018-01-09 10:43 - 2017-12-22 18:40 - 000185096 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswf34fbcf7432e9fa6.tmp
2018-01-09 10:43 - 2017-12-22 18:40 - 000110336 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswcf9bed37ba390097.tmp
2018-01-09 10:43 - 2017-12-22 18:40 - 000084384 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\asw7896767a3fd2a90c.tmp
2018-01-09 10:43 - 2017-12-22 18:40 - 000046976 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswf92513e720b6353f.tmp
2018-01-09 10:43 - 2017-12-22 18:39 - 001025176 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\asw5080728ecbed2dce.tmp
2018-01-09 10:43 - 2017-12-22 18:39 - 000343768 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswf3620143147bee11.tmp
2018-01-09 10:43 - 2017-12-22 18:39 - 000321512 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswd5c50c2842984c6d.tmp
2018-01-09 10:43 - 2017-12-22 18:39 - 000199448 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswed59a0a09baa71a9.tmp
2018-01-09 10:43 - 2017-12-22 18:39 - 000057696 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswb9df37219a1ee251.tmp
2018-01-09 09:29 - 2018-01-02 09:00 - 000590680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fvevol.sys
2018-01-09 09:29 - 2018-01-02 09:00 - 000242520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdyboost.sys
2018-01-09 09:29 - 2018-01-02 09:00 - 000214392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Storage.ApplicationData.dll
2018-01-09 09:29 - 2018-01-02 08:56 - 002530400 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2018-01-09 09:29 - 2018-01-02 08:56 - 000567656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2018-01-09 09:29 - 2018-01-02 08:56 - 000397224 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcryptprimitives.dll
2018-01-09 09:29 - 2018-01-02 08:56 - 000136536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wfplwfs.sys
2018-01-09 09:29 - 2018-01-02 07:39 - 022374248 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2018-01-09 09:29 - 2018-01-02 07:39 - 007408984 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2018-01-09 09:29 - 2018-01-02 07:39 - 002013016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2018-01-09 09:29 - 2018-01-02 07:39 - 000418648 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2018-01-09 09:29 - 2018-01-02 07:39 - 000354648 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fltMgr.sys
2018-01-09 09:29 - 2018-01-02 07:38 - 002176064 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2018-01-09 09:29 - 2018-01-02 07:38 - 001662096 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2018-01-09 09:29 - 2018-01-02 07:38 - 001063464 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinTypes.dll
2018-01-09 09:29 - 2018-01-02 07:37 - 001737600 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2018-01-09 09:29 - 2018-01-02 07:37 - 001676056 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2018-01-09 09:29 - 2018-01-02 07:37 - 001536120 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2018-01-09 09:29 - 2018-01-02 07:37 - 001500432 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2018-01-09 09:29 - 2018-01-02 07:37 - 001371352 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2018-01-09 09:29 - 2018-01-02 07:37 - 001135280 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2018-01-09 09:29 - 2018-01-02 07:37 - 000685440 _____ (Microsoft Corporation) C:\WINDOWS\system32\advapi32.dll
2018-01-09 09:29 - 2018-01-02 07:35 - 001307840 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll
2018-01-09 09:29 - 2018-01-02 07:35 - 000989528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\http.sys
2018-01-09 09:29 - 2018-01-02 07:05 - 000164296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Storage.ApplicationData.dll
2018-01-09 09:29 - 2018-01-02 07:03 - 025739264 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2018-01-09 09:29 - 2018-01-02 07:03 - 000341384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcryptprimitives.dll
2018-01-09 09:29 - 2018-01-02 07:01 - 001902328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll
2018-01-09 09:29 - 2018-01-02 07:00 - 019790760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2018-01-09 09:29 - 2018-01-02 06:59 - 001565520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2018-01-09 09:29 - 2018-01-02 06:59 - 001213784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2018-01-09 09:29 - 2018-01-02 06:58 - 001502000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2018-01-09 09:29 - 2018-01-02 06:48 - 000507176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\advapi32.dll
2018-01-09 09:29 - 2018-01-02 06:40 - 000284672 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64.dll
2018-01-09 09:29 - 2018-01-02 06:39 - 000686080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
2018-01-09 09:29 - 2018-01-02 06:39 - 000402432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2018-01-09 09:29 - 2018-01-02 06:39 - 000072192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndproxy.sys
2018-01-09 09:29 - 2018-01-02 06:39 - 000048128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netbios.sys
2018-01-09 09:29 - 2018-01-02 06:38 - 000559616 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afd.sys
2018-01-09 09:29 - 2018-01-02 06:38 - 000445952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\nwifi.sys
2018-01-09 09:29 - 2018-01-02 06:38 - 000416256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv.sys
2018-01-09 09:29 - 2018-01-02 06:38 - 000401408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2018-01-09 09:29 - 2018-01-02 06:38 - 000243200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srvnet.sys
2018-01-09 09:29 - 2018-01-02 06:38 - 000151040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pacer.sys
2018-01-09 09:29 - 2018-01-02 06:38 - 000138752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dfsc.sys
2018-01-09 09:29 - 2018-01-02 06:37 - 000110080 _____ (Microsoft Corporation) C:\WINDOWS\system32\appinfo.dll
2018-01-09 09:29 - 2018-01-02 06:37 - 000080384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wanarp.sys
2018-01-09 09:29 - 2018-01-02 06:34 - 000360448 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncsi.dll
2018-01-09 09:29 - 2018-01-02 06:31 - 000040448 _____ (Microsoft Corporation) C:\WINDOWS\system32\rfxvmt.dll
2018-01-09 09:29 - 2018-01-02 06:30 - 002900480 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2018-01-09 09:29 - 2018-01-02 06:28 - 005796352 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2018-01-09 09:29 - 2018-01-02 06:28 - 000577024 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2018-01-09 09:29 - 2018-01-02 06:28 - 000417280 _____ (Microsoft Corporation) C:\WINDOWS\system32\html.iec
2018-01-09 09:29 - 2018-01-02 06:28 - 000048640 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieetwproxystub.dll
2018-01-09 09:29 - 2018-01-02 06:28 - 000013312 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcalua.exe
2018-01-09 09:29 - 2018-01-02 06:20 - 020275200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2018-01-09 09:29 - 2018-01-02 06:19 - 000108544 _____ (Microsoft Corporation) C:\WINDOWS\system32\fdWCN.dll
2018-01-09 09:29 - 2018-01-02 06:18 - 000615936 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieui.dll
2018-01-09 09:29 - 2018-01-02 06:17 - 000817152 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2018-01-09 09:29 - 2018-01-02 06:17 - 000116224 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieetwcollector.exe
2018-01-09 09:29 - 2018-01-02 06:16 - 000814080 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2018-01-09 09:29 - 2018-01-02 06:09 - 000445440 _____ (Microsoft Corporation) C:\WINDOWS\system32\certcli.dll
2018-01-09 09:29 - 2018-01-02 06:06 - 000489984 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtmsft.dll
2018-01-09 09:29 - 2018-01-02 06:02 - 000862720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2018-01-09 09:29 - 2018-01-02 05:59 - 000014336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntvdm64.dll
2018-01-09 09:29 - 2018-01-02 05:59 - 000005632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wow32.dll
2018-01-09 09:29 - 2018-01-02 05:57 - 000025600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\setup16.exe
2018-01-09 09:29 - 2018-01-02 05:56 - 000199680 _____ (Microsoft Corporation) C:\WINDOWS\system32\msrating.dll
2018-01-09 09:29 - 2018-01-02 05:54 - 000145408 _____ (Microsoft Corporation) C:\WINDOWS\system32\iepeers.dll
2018-01-09 09:29 - 2018-01-02 05:53 - 000315392 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll
2018-01-09 09:29 - 2018-01-02 05:52 - 000499712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2018-01-09 09:29 - 2018-01-02 05:51 - 000341504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\html.iec
2018-01-09 09:29 - 2018-01-02 05:49 - 002294272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2018-01-09 09:29 - 2018-01-02 05:48 - 001033216 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcomm.dll
2018-01-09 09:29 - 2018-01-02 05:45 - 000091136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fdWCN.dll
2018-01-09 09:29 - 2018-01-02 05:44 - 015284224 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2018-01-09 09:29 - 2018-01-02 05:44 - 000476160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieui.dll
2018-01-09 09:29 - 2018-01-02 05:43 - 000662528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2018-01-09 09:29 - 2018-01-02 05:42 - 000620032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2018-01-09 09:29 - 2018-01-02 05:42 - 000262144 _____ (Microsoft Corporation) C:\WINDOWS\system32\webcheck.dll
2018-01-09 09:29 - 2018-01-02 05:41 - 000380416 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2018-01-09 09:29 - 2018-01-02 05:40 - 001436672 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2018-01-09 09:29 - 2018-01-02 05:40 - 000807936 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2018-01-09 09:29 - 2018-01-02 05:40 - 000726528 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2018-01-09 09:29 - 2018-01-02 05:38 - 002134528 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2018-01-09 09:29 - 2018-01-02 05:37 - 000324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certcli.dll
2018-01-09 09:29 - 2018-01-02 05:34 - 001217536 _____ (Microsoft Corporation) C:\WINDOWS\system32\sysmain.dll
2018-01-09 09:29 - 2018-01-02 05:34 - 000416256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtmsft.dll
2018-01-09 09:29 - 2018-01-02 05:33 - 001080320 _____ (Microsoft Corporation) C:\WINDOWS\system32\IKEEXT.DLL
2018-01-09 09:29 - 2018-01-02 05:33 - 000845312 _____ (Microsoft Corporation) C:\WINDOWS\system32\BFE.DLL
2018-01-09 09:29 - 2018-01-02 05:33 - 000086016 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlaapi.dll
2018-01-09 09:29 - 2018-01-02 05:32 - 000571392 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2018-01-09 09:29 - 2018-01-02 05:29 - 000817664 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcss.dll
2018-01-09 09:29 - 2018-01-02 05:29 - 000754176 _____ (Microsoft Corporation) C:\WINDOWS\system32\FirewallAPI.dll
2018-01-09 09:29 - 2018-01-02 05:27 - 001696256 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtsvc.dll
2018-01-09 09:29 - 2018-01-02 05:27 - 000168960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrating.dll
2018-01-09 09:29 - 2018-01-02 05:26 - 003241472 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2018-01-09 09:29 - 2018-01-02 05:25 - 000795648 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll
2018-01-09 09:29 - 2018-01-02 05:25 - 000279040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtrans.dll
2018-01-09 09:29 - 2018-01-02 05:25 - 000128000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iepeers.dll
2018-01-09 09:29 - 2018-01-02 05:23 - 004508160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2018-01-09 09:29 - 2018-01-02 05:23 - 002882048 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2018-01-09 09:29 - 2018-01-02 05:22 - 000880640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcomm.dll
2018-01-09 09:29 - 2018-01-02 05:22 - 000129536 _____ (Microsoft Corporation) C:\WINDOWS\system32\WcnApi.dll
2018-01-09 09:29 - 2018-01-02 05:21 - 000391680 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlasvc.dll
2018-01-09 09:29 - 2018-01-02 05:20 - 013680128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2018-01-09 09:29 - 2018-01-02 05:18 - 000380416 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnrpsvc.dll
2018-01-09 09:29 - 2018-01-02 05:18 - 000230400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webcheck.dll
2018-01-09 09:29 - 2018-01-02 05:17 - 001547264 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll
2018-01-09 09:29 - 2018-01-02 05:17 - 000694272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2018-01-09 09:29 - 2018-01-02 05:17 - 000465920 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcncsvc.dll
2018-01-09 09:29 - 2018-01-02 05:17 - 000331776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2018-01-09 09:29 - 2018-01-02 05:16 - 002058752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2018-01-09 09:29 - 2018-01-02 05:16 - 000881152 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPSSVC.dll
2018-01-09 09:29 - 2018-01-02 05:16 - 000747520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll
2018-01-09 09:29 - 2018-01-02 05:16 - 000464384 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcasvc.dll
2018-01-09 09:29 - 2018-01-02 05:15 - 001545728 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2018-01-09 09:29 - 2018-01-02 05:13 - 000216576 _____ (Microsoft Corporation) C:\WINDOWS\system32\P2P.dll
2018-01-09 09:29 - 2018-01-02 05:11 - 000185856 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascfg.dll
2018-01-09 09:29 - 2018-01-02 05:11 - 000065536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nlaapi.dll
2018-01-09 09:29 - 2018-01-02 05:09 - 000827392 _____ (Microsoft Corporation) C:\WINDOWS\system32\spoolsv.exe
2018-01-09 09:29 - 2018-01-02 05:09 - 000713216 _____ (Microsoft Corporation) C:\WINDOWS\system32\nshwfp.dll
2018-01-09 09:29 - 2018-01-02 05:09 - 000543232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FirewallAPI.dll
2018-01-09 09:29 - 2018-01-02 05:08 - 000110080 _____ (Microsoft Corporation) C:\WINDOWS\system32\icfupgd.dll
2018-01-09 09:29 - 2018-01-02 05:07 - 001265664 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2018-01-09 09:29 - 2018-01-02 05:07 - 000440832 _____ (Microsoft Corporation) C:\WINDOWS\system32\p2psvc.dll
2018-01-09 09:29 - 2018-01-02 05:06 - 000626176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttp.dll
2018-01-09 09:29 - 2018-01-02 05:05 - 000097280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WcnApi.dll
2018-01-09 09:29 - 2018-01-02 05:04 - 000800768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2018-01-09 09:29 - 2018-01-02 04:59 - 000177664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\P2P.dll
2018-01-09 09:29 - 2018-01-02 04:58 - 002767872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2018-01-09 09:29 - 2018-01-02 04:57 - 000164864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rascfg.dll
2018-01-09 09:29 - 2018-01-02 04:56 - 000562176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nshwfp.dll
2018-01-09 09:29 - 2018-01-02 04:55 - 003548160 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll
2018-01-09 09:29 - 2018-01-02 04:54 - 001313792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2018-01-09 09:29 - 2018-01-02 04:53 - 000710144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2018-01-09 09:29 - 2017-12-29 09:21 - 000107520 _____ (Microsoft Corporation) C:\WINDOWS\system32\inseng.dll
2018-01-09 09:29 - 2017-12-15 00:26 - 000374096 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2018-01-09 09:29 - 2017-12-14 22:39 - 000315736 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
2018-01-09 09:29 - 2017-12-14 11:19 - 000096256 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll
2018-01-09 09:29 - 2017-12-14 11:17 - 000044032 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2018-01-09 09:29 - 2017-12-10 14:59 - 000077824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontsub.dll
2018-01-09 09:29 - 2017-12-10 14:58 - 000035840 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2018-01-09 09:29 - 2017-12-10 14:46 - 007079424 _____ (Microsoft Corporation) C:\WINDOWS\system32\glcndFilter.dll
2018-01-09 09:29 - 2017-12-10 14:24 - 005275136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\glcndFilter.dll
2018-01-09 09:29 - 2017-12-10 14:06 - 007797760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2018-01-09 09:29 - 2017-12-10 13:59 - 005270528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2018-01-09 09:29 - 2017-12-06 05:42 - 002452816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2018-01-09 09:29 - 2017-12-05 17:58 - 004168192 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2018-01-09 08:43 - 2018-01-09 10:50 - 000493200 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2018-01-08 08:35 - 2018-01-08 09:38 - 000002878 _____ C:\WINDOWS\System32\Tasks\Driver Booster SkipUAC (nad)
2018-01-07 09:42 - 2018-01-07 09:42 - 000001715 _____ C:\Users\Public\Desktop\VDownloader.lnk
2018-01-06 12:56 - 2018-01-06 12:56 - 000000000 ____D C:\Users\nad\.fontconfig
2018-01-06 12:54 - 2018-01-06 12:58 - 000000000 ____D C:\Users\nad\AppData\Local\Movavi
2018-01-06 12:54 - 2018-01-06 12:54 - 000000000 ____D C:\Users\nad\AppData\Local\converter
2018-01-06 12:54 - 2018-01-06 12:54 - 000000000 ____D C:\ProgramData\Movavi
2018-01-06 12:53 - 2018-01-06 12:53 - 000004935 _____ C:\ProgramData\vfiakfjk.zeu
2018-01-06 12:53 - 2018-01-06 12:53 - 000000016 _____ C:\ProgramData\mntemp
2018-01-06 12:53 - 2018-01-06 12:53 - 000000000 ____D C:\ProgramData\Movavi Video Converter 18
2018-01-04 12:51 - 2018-01-04 12:51 - 000002192 _____ C:\Users\Public\Desktop\Adobe Digital Editions 4.5.lnk
2018-01-04 12:50 - 2018-01-04 19:20 - 000000000 ____D C:\Users\nad\Documents\My Digital Editions
2018-01-03 13:11 - 2018-01-03 13:11 - 000507436 _____ C:\Users\nad\Downloads\attestation_licence_03012018_131125.pdf
2018-01-02 15:07 - 2018-01-02 15:07 - 001624440 _____ (Tous Les Drivers) C:\Users\nad\Downloads\Mes_Drivers_3.0.4.exe
2018-01-01 16:14 - 2018-01-01 16:14 - 001644261 _____ C:\Users\nad\Downloads\calendrier mondial.htm
2017-12-30 09:15 - 2017-12-30 09:15 - 000000000 ____D C:\Users\nad\Downloads\Espace Mon compte_fichiers
2017-12-30 09:05 - 2017-12-30 09:06 - 002581725 _____ C:\Users\nad\Documents\PROBTP les Hyvans 2017.pdf
2017-12-27 10:44 - 2017-12-27 10:44 - 000253880 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2017-12-27 10:44 - 2017-12-27 10:44 - 000001895 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2017-12-27 10:44 - 2017-12-27 10:44 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2017-12-27 10:44 - 2017-12-27 10:44 - 000000000 ____D C:\ProgramData\Malwarebytes
2017-12-27 10:44 - 2017-12-27 10:44 - 000000000 ____D C:\Program Files\Malwarebytes
2017-12-27 10:44 - 2017-11-29 09:11 - 000077432 _____ C:\WINDOWS\system32\Drivers\mbae64.sys
2017-12-27 10:42 - 2017-12-27 10:42 - 083316440 _____ (Malwarebytes ) C:\Users\nad\Downloads\mb3-setup-35891.35891-3.3.1.2183-1.0.262-1.0.3374.exe
2017-12-27 10:42 - 2017-12-27 10:42 - 011201632 _____ (Piriform Ltd) C:\Users\nad\Downloads\ccsetup538 (1).exe
2017-12-24 07:38 - 2018-01-15 15:09 - 091750400 _____ C:\WINDOWS\system32\config\SOFTWARE
2017-12-24 07:38 - 2018-01-15 15:09 - 001921024 _____ C:\WINDOWS\system32\config\DEFAULT
2017-12-24 07:38 - 2018-01-15 15:09 - 000065536 _____ C:\WINDOWS\system32\config\SAM
2017-12-24 07:38 - 2018-01-15 15:09 - 000028672 _____ C:\WINDOWS\system32\config\SECURITY
2017-12-24 07:38 - 2017-12-24 07:38 - 000000000 ____H C:\asc_rdflag
2017-12-20 11:34 - 2017-12-20 11:34 - 000986080 _____ (Realtek ) C:\WINDOWS\system32\Drivers\Rt630x64.sys
2017-12-20 11:34 - 2017-12-20 11:34 - 000122848 _____ (Realtek Semiconductor Corporation) C:\WINDOWS\system32\RtNicProp64.dll
2017-12-20 11:31 - 2017-12-20 11:31 - 000001377 _____ C:\Users\Public\Desktop\Foxit Reader.lnk
2017-12-20 11:24 - 2017-12-20 11:23 - 000119702 _____ C:\Users\nad\Documents\BULLETIN_ADHESION_FFCT 2018 (2) (n adia).pdf
2017-12-20 11:17 - 2017-12-20 11:31 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Foxit Reader
2017-12-20 11:12 - 2017-12-20 11:12 - 077420808 _____ (Foxit Software Inc. ) C:\Users\nad\Downloads\FoxitReader901_L10N_Setup_Prom.exe
2017-12-19 08:56 - 2018-01-08 09:38 - 000003246 _____ C:\WINDOWS\System32\Tasks\Driver Booster Scheduler
2017-12-19 08:56 - 2017-12-20 11:36 - 000002320 _____ C:\Users\Public\Desktop\Driver Booster 5.lnk
2017-12-19 08:56 - 2017-12-19 08:56 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Booster 5
2017-12-19 08:54 - 2017-12-19 08:55 - 019204520 _____ (IObit ) C:\Users\nad\Downloads\driver_booster_setup(1).exe
2017-12-16 13:47 - 2017-11-06 10:06 - 000057753 _____ C:\Users\nad\Documents\modulation paiement impots pour 2018.pdf
==================== Un mois - Modifiés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2018-01-15 19:21 - 2016-11-19 07:49 - 000000000 ____D C:\Users\nad\AppData\LocalLow\Mozilla
2018-01-15 17:33 - 2016-06-07 12:47 - 000003600 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3533391725-3395593355-2823718628-1002
2018-01-15 17:06 - 2016-06-07 12:40 - 000000800 _____ C:\Users\Public\Desktop\CCleaner.lnk
2018-01-15 16:43 - 2017-10-29 08:31 - 000002780 _____ C:\WINDOWS\System32\Tasks\CCleanerSkipUAC
2018-01-15 15:13 - 2015-10-09 20:39 - 000000000 __SHD C:\Users\nad\IntelGraphicsProfiles
2018-01-15 15:13 - 2013-08-19 12:24 - 000000868 _____ C:\WINDOWS\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon.job
2018-01-15 15:10 - 2013-08-22 15:45 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2018-01-15 14:14 - 2016-06-09 14:19 - 000000000 ____D C:\Users\nad\AppData\Roaming\vlc
2018-01-15 13:53 - 2017-11-13 15:13 - 000000000 ____D C:\Users\nad\AppData\Roaming\ZHP
2018-01-15 13:43 - 2017-11-28 15:02 - 000000000 ____D C:\ProgramData\IObit
2018-01-15 13:43 - 2017-05-15 13:44 - 000000000 ____D C:\Users\nad\AppData\Roaming\IObit
2018-01-15 13:32 - 2013-08-22 14:36 - 000000000 ____D C:\WINDOWS\Inf
2018-01-15 12:42 - 2013-08-19 12:24 - 000000870 _____ C:\WINDOWS\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d.job
2018-01-15 08:49 - 2016-08-17 15:07 - 000003916 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{70E6ABD5-25EC-4BB2-8CB3-673BF8852578}
2018-01-13 09:41 - 2016-09-20 13:02 - 000000000 ____D C:\Users\nad\Desktop\EAUX
2018-01-13 09:41 - 2014-10-09 13:17 - 000000000 ____D C:\Users\nad\Desktop\DOC MEME
2018-01-13 09:41 - 2014-10-09 13:16 - 000000000 ____D C:\Users\nad\Desktop\EDF
2018-01-13 09:41 - 2014-10-09 13:16 - 000000000 ____D C:\Users\nad\Desktop\ASF
2018-01-13 09:41 - 2013-12-15 13:05 - 000000000 ____D C:\Users\nad\Desktop\divers
2018-01-12 16:13 - 2017-12-15 13:42 - 000000000 ____D C:\Users\nad\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Facebook
2018-01-12 16:12 - 2017-04-02 11:52 - 000000000 ____D C:\Users\nad\AppData\Local\Facebook
2018-01-12 16:03 - 2013-08-22 14:25 - 000262144 ___SH C:\WINDOWS\system32\config\BBI
2018-01-12 16:00 - 2016-09-29 09:00 - 000000000 ____D C:\Users\nad\Downloads\RevoUninstaller_Portable
2018-01-12 16:00 - 2016-06-07 12:46 - 000000000 ____D C:\Users\nad\AppData\Local\CrashDumps
2018-01-12 15:48 - 2017-05-15 13:18 - 000000000 ____D C:\Users\nad\AppData\Local\NVIDIA Corporation
2018-01-12 15:48 - 2017-05-15 13:18 - 000000000 ____D C:\Users\nad\AppData\Local\NVIDIA
2018-01-12 15:48 - 2016-06-08 19:21 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2018-01-12 15:48 - 2016-06-08 19:21 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2018-01-12 15:48 - 2016-06-08 19:21 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2018-01-12 15:48 - 2013-08-19 12:22 - 000000000 ____D C:\ProgramData\NVIDIA
2018-01-12 15:32 - 2017-11-05 16:01 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller
2018-01-12 15:31 - 2017-11-28 14:03 - 000000000 ____D C:\AdwCleaner
2018-01-10 14:31 - 2016-06-07 16:28 - 000000000 ____D C:\WINDOWS\system32\MRT
2018-01-10 14:31 - 2012-07-26 08:59 - 000000000 ____D C:\WINDOWS\CbsTemp
2018-01-10 14:28 - 2017-10-28 15:41 - 129365736 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT-KB890830.exe
2018-01-10 14:28 - 2016-06-07 16:28 - 129365736 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2018-01-10 08:43 - 2017-08-16 16:56 - 000000000 ____D C:\Users\nad\AppData\Roaming\PaperScan Free
2018-01-10 08:43 - 2014-11-20 23:46 - 001817064 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2018-01-10 08:43 - 2014-11-20 23:03 - 000805600 _____ C:\WINDOWS\system32\perfh00C.dat
2018-01-10 08:43 - 2014-11-20 23:03 - 000156456 _____ C:\WINDOWS\system32\perfc00C.dat
2018-01-10 08:40 - 2016-09-13 16:03 - 000000000 ____D C:\Users\nad\AppData\Local\Downloaded Installations
2018-01-09 15:33 - 2016-06-07 15:15 - 000004460 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2018-01-09 15:32 - 2013-08-22 16:36 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed
2018-01-09 15:32 - 2013-08-22 16:36 - 000000000 ____D C:\WINDOWS\system32\Macromed
2018-01-09 15:08 - 2016-11-26 15:42 - 000000000 ____D C:\Users\nad\AppData\Roaming\DVDVideoSoft
2018-01-09 14:01 - 2017-07-29 10:24 - 000000000 ____D C:\Users\nad\AppData\Local\VDownloader
2018-01-09 13:41 - 2017-07-29 10:24 - 000000000 ____D C:\Users\nad\AppData\Roaming\VDownloader
2018-01-09 13:39 - 2017-07-29 10:29 - 000000000 ____D C:\Users\nad\AppData\Roaming\Youtube Downloader HD
2018-01-09 13:23 - 2013-08-22 16:36 - 000000000 ____D C:\WINDOWS\rescache
2018-01-09 10:45 - 2013-08-22 16:36 - 000000000 ___RD C:\WINDOWS\ToastData
2018-01-07 18:51 - 2016-06-07 12:36 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2018-01-07 12:54 - 2017-12-12 15:29 - 000000000 ____D C:\WINDOWS\System32\Tasks\WiseCleaner
2018-01-07 12:53 - 2017-06-16 07:19 - 000000000 ____D C:\Users\nad\AppData\Roaming\Hornil
2018-01-07 12:53 - 2017-06-16 07:16 - 000000000 ____D C:\Program Files\Hornil
2018-01-07 12:52 - 2017-03-31 15:02 - 000000000 ____D C:\Users\nad\Documents\Déclaration année 2016
2018-01-07 12:52 - 2016-08-17 15:51 - 000000000 ____D C:\Users\nad\Documents\doc meme
2018-01-07 12:52 - 2016-08-17 15:49 - 000000000 ____D C:\Users\nad\Documents\doc divers 2016
2018-01-07 12:52 - 2016-08-17 15:49 - 000000000 ____D C:\Users\nad\Documents\doc 2014
2018-01-07 12:52 - 2015-11-17 10:58 - 000000000 ____D C:\Users\nad\Documents\Fax
2018-01-07 12:52 - 2015-05-31 10:35 - 000000000 ___RD C:\Users\nad\Dropbox
2018-01-07 12:49 - 2017-05-03 08:45 - 000000000 ____D C:\Users\nad\AppData\Local\Foxit Reader
2018-01-07 12:49 - 2016-06-08 19:34 - 000000000 ____D C:\Users\nad
2018-01-07 09:42 - 2017-07-29 10:24 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VDownloader
2018-01-07 09:42 - 2017-07-29 10:23 - 000000000 ____D C:\Program Files\VDownloader
2018-01-07 09:36 - 2017-05-15 13:45 - 000000000 ____D C:\ProgramData\ProductData
2018-01-07 09:14 - 2017-07-08 12:50 - 000000000 ____D C:\Program Files\Mozilla Firefox
2018-01-07 09:14 - 2016-06-07 12:36 - 000000958 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2018-01-07 09:12 - 2016-06-13 10:20 - 000000000 ____D C:\Program Files (x86)\Adobe
2018-01-07 09:10 - 2017-11-28 15:03 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Advanced SystemCare
2018-01-06 09:26 - 2017-11-17 13:39 - 000002207 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2018-01-06 09:26 - 2017-08-18 06:49 - 000002219 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2018-01-02 14:35 - 2017-11-06 16:41 - 000000000 ____D C:\WINDOWS\pss
2017-12-31 09:05 - 2013-08-22 16:36 - 000000000 ____D C:\WINDOWS\AppReadiness
2017-12-24 07:38 - 2017-12-04 08:15 - 005763072 _____ C:\WINDOWS\system32\config\drivers.iodefrag.bak
2017-12-24 07:38 - 2017-11-28 15:42 - 091537408 _____ C:\WINDOWS\system32\config\SOFTWARE.iodefrag.bak
2017-12-24 07:38 - 2017-11-28 15:42 - 001921024 _____ C:\WINDOWS\system32\config\DEFAULT.iodefrag.bak
2017-12-24 07:38 - 2017-11-28 15:42 - 000065536 _____ C:\WINDOWS\system32\config\SAM.iodefrag.bak
2017-12-24 07:38 - 2017-11-28 15:42 - 000028672 _____ C:\WINDOWS\system32\config\SECURITY.iodefrag.bak
2017-12-20 12:44 - 2016-06-09 17:49 - 000000000 ____D C:\Users\nad\AppData\Local\Deployment
2017-12-20 11:20 - 2016-08-17 15:49 - 000000000 ____D C:\Users\nad\Documents\livret de famille frecaut
2017-12-20 11:18 - 2017-02-09 08:33 - 000000000 ____D C:\ProgramData\Foxit Software
2017-12-19 08:56 - 2017-11-28 15:02 - 000000000 ____D C:\Program Files (x86)\IObit
==================== Fichiers à la racine de certains dossiers =======
2017-07-29 10:24 - 2015-08-27 14:48 - 000444283 _____ () C:\Program Files\Common Files\WinPcapNmap.exe
2016-07-03 09:35 - 2016-07-03 09:35 - 000003584 _____ () C:\Users\nad\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2016-08-17 15:26 - 2016-11-13 09:48 - 000013028 _____ () C:\Users\nad\AppData\Local\HWVendorDetection.log
2017-11-23 10:08 - 2017-11-23 10:09 - 000007618 _____ () C:\Users\nad\AppData\Local\Resmon.ResmonCfg
Certains fichiers dans TEMP:
====================
2018-01-12 15:32 - 2018-01-12 15:32 - 007189760 _____ (VS Revo Group ) C:\Users\nad\AppData\Local\Temp\VSUSetup.exe
==================== Bamital & volsnap ======================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
C:\WINDOWS\system32\winlogon.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\wininit.exe => Le fichier est signé numériquement
C:\WINDOWS\explorer.exe => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\explorer.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\svchost.exe => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\svchost.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\services.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\User32.dll => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\User32.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\userinit.exe => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\userinit.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\rpcss.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\dnsapi.dll => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\dnsapi.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\Drivers\volsnap.sys => Le fichier est signé numériquement
LastRegBack: 2018-01-15 10:19
==================== Fin de FRST.txt ============================
Exécuté par nad (administrateur) sur MONPC (15-01-2018 19:21:05)
Exécuté depuis C:\Users\nad\Downloads
Profils chargés: nad & Administrateur (Profils disponibles: nad & Administrateur)
Platform: Windows 8.1 (Update) (X64) Langue: Français (France)
Internet Explorer Version 11 (Navigateur par défaut: FF)
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.7\GoogleCrashHandler.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.7\GoogleCrashHandler64.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ink\InputPersonalization.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
==================== Registre (Avec liste blanche) ===========================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [WindowsDefender] => "%ProgramFiles%\Windows Defender\MSASCuiL.exe"
HKU\S-1-5-21-3533391725-3395593355-2823718628-1002\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [10249048 2017-12-13] (Piriform Ltd)
HKU\S-1-5-21-3533391725-3395593355-2823718628-1002\...\Run: [vidnotifier.exe] => C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\vidnotifier\vidnotifier.exe
HKU\S-1-5-21-3533391725-3395593355-2823718628-1002\...\Policies\Explorer: [NolowDiskSpaceChecks] 1
HKU\S-1-5-21-3533391725-3395593355-2823718628-500\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [516608 2014-11-21] (Microsoft Corporation)
HKU\S-1-5-18\...\Run: [KSS] => "C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Scan\kss.exe" autorun
AppInit_DLLs: C:\Windows\system32\nvinitx.dll => C:\Windows\system32\nvinitx.dll [170360 2017-05-01] (NVIDIA Corporation)
AppInit_DLLs: , C:\WINDOWS\system32\nvinitx.dll => C:\WINDOWS\system32\nvinitx.dll [170360 2017-05-01] (NVIDIA Corporation)
AppInit_DLLs-x32: C:\WINDOWS\SysWOW64\nvinit.dll => C:\WINDOWS\SysWOW64\nvinit.dll [148016 2017-05-01] (NVIDIA Corporation)
Startup: C:\Users\nad\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Facebook Gameroom.lnk [2018-01-12]
ShortcutTarget: Facebook Gameroom.lnk -> C:\Users\nad\AppData\Local\Facebook\Games\FacebookGameroom.exe (Facebook)
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.254
Tcpip\..\Interfaces\{4EDBD077-85F4-4267-ACD6-729A25B9DCE5}: [DhcpNameServer] 192.168.0.254
Tcpip\..\Interfaces\{AA2DCD3C-2998-4D4E-99A7-05DD847BAB31}: [DhcpNameServer] 192.168.0.254
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page =
HKU\S-1-5-21-3533391725-3395593355-2823718628-500\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://acer13.msn.com
HKU\S-1-5-21-3533391725-3395593355-2823718628-500\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://acer13.msn.com
SearchScopes: HKU\S-1-5-21-3533391725-3395593355-2823718628-1002 -> DefaultScope {DF6C0A63-1A58-46E8-8D8A-78A8EF350A62} URL =
SearchScopes: HKU\S-1-5-21-3533391725-3395593355-2823718628-1002 -> {DF6C0A63-1A58-46E8-8D8A-78A8EF350A62} URL =
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_151\bin\jp2ssv.dll [2017-11-13] (Oracle Corporation)
FireFox:
========
FF DefaultProfile: 7vw0i6yg.default-1492755750670-1515837473130
FF ProfilePath: C:\Users\nad\AppData\Roaming\Mozilla\Firefox\Profiles\7vw0i6yg.default-1492755750670-1515837473130 [2018-01-15]
FF Homepage: Mozilla\Firefox\Profiles\7vw0i6yg.default-1492755750670-1515837473130 -> hxxps://www.google.fr/
FF Extension: (Disable JavaScript Shared Memory) - C:\Users\nad\AppData\Roaming\Mozilla\Firefox\Profiles\7vw0i6yg.default-1492755750670-1515837473130\features\{cc447ea1-0fb7-46d0-abf0-48ee5df2f900}\disable-js-shared-memory@mozilla.org.xpi [2018-01-13] [Legacy]
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_28_0_0_137.dll [2018-01-09] ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_28_0_0_137.dll [2018-01-09] ()
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2017-12-01] (Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2017-12-01] (Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2017-12-01] (Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [2017-12-01] (Foxit Corporation)
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll [2015-10-13] (Google, Inc.)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2012-06-07] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2012-06-07] (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.151.2 -> C:\Program Files (x86)\Java\jre1.8.0_151\bin\dtplugin\npDeployJava1.dll [2017-11-13] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.151.2 -> C:\Program Files (x86)\Java\jre1.8.0_151\bin\plugin2\npjp2.dll [2017-11-13] (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] ( Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2017-05-01] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2017-05-01] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-14] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-14] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2017-11-29] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.5.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2017-11-29] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2017-11-29] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2017-11-29] (VideoLAN)
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\1\NP_wtapp.dll [2016-06-09] ()
Chrome:
=======
CHR Profile: C:\Users\nad\AppData\Local\Google\Chrome\User Data\Default [2018-01-15]
CHR Extension: (Protection Web Avira) - C:\Users\nad\AppData\Local\Google\Chrome\User Data\Default\Extensions\flliilndjeohchalpbbcdekjklbdgfkk [2017-11-14]
CHR Extension: (Mountain River) - C:\Users\nad\AppData\Local\Google\Chrome\User Data\Default\Extensions\hldnnpdpbcplkacehcbafmncblojlead [2017-11-17]
CHR Extension: (Vérificateur de messages Google) - C:\Users\nad\AppData\Local\Google\Chrome\User Data\Default\Extensions\mihcahmgecmbnbcchbopgniflfhgnkff [2017-11-17]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\nad\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-11-17]
CHR Extension: (Chrome Media Router) - C:\Users\nad\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-12-23]
CHR HKLM\...\Chrome\Extension: [caljgklbbfbcjjanaijlacgncafpegll] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [caljgklbbfbcjjanaijlacgncafpegll] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
==================== Services (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
HKLM\SYSTEM\CurrentControlSet\Services\aswSP <==== ATTENTION (Rootkit!)
HKLM\SYSTEM\CurrentControlSet\Services\aswMonFlt <==== ATTENTION (Rootkit!)
HKLM\SYSTEM\CurrentControlSet\Services\aswSnx <==== ATTENTION (Rootkit!)
S3 AtherosSvc; C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\adminservice.exe [231040 2012-11-09] (Qualcomm Atheros Commnucations) [Fichier non signé]
S3 AVerRemote; C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerRemote.exe [364544 2012-08-08] (AVerMedia) [Fichier non signé]
S3 AVerScheduleService; C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerScheduleService.exe [403456 2011-04-01] () [Fichier non signé]
S3 CtrlPanel; C:\Windows\SysWOW64\CtrlPanel.exe [229376 2011-05-20] (Wistron) [Fichier non signé]
S4 GamesAppIntegrationService; C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe [350064 2016-06-09] (WildTangent)
S4 IconMan_R; C:\Program Files (x86)\Realtek\Realtek USB 2.0 Card Reader\RIconMan.exe [2451456 2012-07-13] (Realsil Microelectronics Inc.) [Fichier non signé]
R2 igfxCUIService1.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [319096 2017-05-18] (Intel Corporation)
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [128896 2012-07-18] (Intel Corporation)
S3 IRSrv; C:\Program Files\acerIR\IRSrv.exe [179712 2012-05-10] () [Fichier non signé]
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [165760 2012-07-18] (Intel Corporation)
S3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6234056 2017-11-01] (Malwarebytes)
S3 MyEpson Portal Service; C:\Program Files (x86)\EPSON\MyEpson Portal\mepService.exe [703696 2016-08-08] (SEIKO EPSON CORPORATION)
S4 PGService; C:\Program Files (x86)\PointGrab\Hand Gesture Control\PGService.exe [54064 2013-01-28] (PointGrab LTD)
S4 PG_Service_Launcher; C:\Program Files (x86)\PointGrab\Hand Gesture Control\PG_Service_Launcher.exe [170816 2013-01-28] (PointGrab LTD)
S3 ss_conn_service; C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [752224 2017-01-16] (DEVGURU Co., LTD.)
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [361824 2017-01-12] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [119872 2017-01-12] (Microsoft Corporation)
S3 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
S3 NvTelemetryContainer; "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\plugins" -r
===================== Pilotes (Avec liste blanche) ======================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R3 athr; C:\WINDOWS\system32\DRIVERS\athwbx.sys [4307192 2017-05-15] (Qualcomm Atheros Communications, Inc.)
R3 AVerIT13x; C:\WINDOWS\System32\Drivers\AVerIT13x_x64.sys [196096 2012-07-11] (AVerMedia TECHNOLOGIES, Inc.)
S3 BTATH_LWFLT; C:\WINDOWS\system32\DRIVERS\btath_lwflt.sys [76952 2012-11-09] (Qualcomm Atheros)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [131984 2017-05-18] (Samsung Electronics Co., Ltd.)
R1 HWiNFO32; C:\WINDOWS\SysWOW64\drivers\HWiNFO64A.SYS [27552 2017-05-15] (REALiX(tm))
R3 ITECIRfilter; C:\WINDOWS\system32\DRIVERS\ITECIRfilter.sys [36560 2016-03-08] (ITE Tech. Inc. )
R0 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [253880 2017-12-27] (Malwarebytes)
R1 MpKsl658acf7d; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{2616320D-0C2C-480A-8091-C0FA0A1C272F}\MpKsl658acf7d.sys [58120 2018-01-15] (Microsoft Corporation)
R2 npf; C:\WINDOWS\System32\drivers\npf.sys [47632 2010-01-27] (CACE Technologies, Inc.)
S3 PQAWRwa; C:\Windows\SysWOW64\PQAWDrv.sys [12384 2008-03-01] () [Fichier non signé]
R2 RtkIOAC60; C:\WINDOWS\system32\DRIVERS\RtkIOAC60.sys [38504 2012-04-16] (Windows (R) Codename Longhorn DDK provider)
S3 RTSUER; C:\WINDOWS\system32\Drivers\RtsUer.sys [420832 2017-08-09] (Realsil Semiconductor Corporation)
S3 semav6msr64; C:\WINDOWS\system32\drivers\semav6msr64.sys [21984 2016-10-18] ()
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [166288 2017-05-18] (Samsung Electronics Co., Ltd.)
S3 ssudserd; C:\WINDOWS\system32\DRIVERS\ssudserd.sys [166288 2017-05-18] (Samsung Electronics Co., Ltd.)
S3 Trufos; C:\WINDOWS\System32\DRIVERS\Trufos.sys [485512 2016-11-10] (BitDefender S.R.L.)
S3 usbrndis6; C:\WINDOWS\system32\DRIVERS\usb80236.sys [20992 2016-06-08] (Microsoft Corporation)
S0 WdBoot; C:\WINDOWS\System32\drivers\WdBoot.sys [46600 2017-02-10] (Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\WdFilter.sys [274776 2017-01-12] (Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [117592 2017-01-12] (Microsoft Corporation)
U1 aswbdisk; pas de ImagePath
U0 Compbatt; pas de ImagePath
S3 cpuz143; \??\C:\WINDOWS\temp\cpuz143\cpuz143_x64.sys [X]
U2 ERSvc; pas de ImagePath
U2 IAStorDataMgrsvc; pas de ImagePath
U2 NIHardwareService; pas de ImagePath
U2 NVSvc; pas de ImagePath
S4 nvvad_WaveExtensible; \SystemRoot\system32\drivers\nvvad64v.sys [X]
S4 nvvhci; \SystemRoot\System32\drivers\nvvhci.sys [X]
U2 Parvdm; pas de ImagePath
U2 srService; pas de ImagePath
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois - Créés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2018-01-15 19:21 - 2018-01-15 19:21 - 000017491 _____ C:\Users\nad\Downloads\FRST.txt
2018-01-15 19:21 - 2018-01-15 19:21 - 000000000 ____D C:\FRST
2018-01-15 19:19 - 2018-01-15 19:19 - 000001464 _____ C:\Users\nad\Desktop\FRST64.lnk
2018-01-15 19:18 - 2018-01-15 19:18 - 002393088 _____ (Farbar) C:\Users\nad\Downloads\FRST64.exe
2018-01-15 17:06 - 2018-01-15 17:06 - 000003872 _____ C:\WINDOWS\System32\Tasks\CCleaner Update
2018-01-15 16:38 - 2018-01-15 16:38 - 008344776 _____ (Piriform Ltd) C:\Users\nad\Downloads\ccsetup538_slim.exe
2018-01-15 13:54 - 2018-01-15 13:54 - 000144577 _____ C:\Users\nad\Desktop\ZHPDiag.txt
2018-01-15 13:51 - 2018-01-15 13:51 - 002964864 _____ C:\Users\nad\Downloads\ZHPDiag3.exe
2018-01-15 13:32 - 2018-01-15 13:52 - 000000000 ____D C:\Users\nad\AppData\Local\ZHP
2018-01-15 13:32 - 2018-01-15 13:32 - 000000877 _____ C:\Users\nad\Desktop\ZHPCleaner.lnk
2018-01-15 13:31 - 2018-01-15 13:32 - 003045248 _____ C:\Users\nad\Downloads\ZHPCleaner.exe
2018-01-13 10:58 - 2018-01-13 10:58 - 000000000 ____D C:\Users\nad\Desktop\Anciennes données de Firefox
2018-01-12 16:13 - 2018-01-12 16:13 - 000001223 _____ C:\Users\nad\Desktop\Facebook Gameroom.lnk
2018-01-12 15:32 - 2018-01-12 15:32 - 000001026 _____ C:\Users\Public\Desktop\Revo Uninstaller.lnk
2018-01-11 08:51 - 2018-01-11 08:51 - 000457896 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\asw6913a48e1b9f794b.tmp
2018-01-11 08:51 - 2018-01-11 08:51 - 000146648 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\asw2c95d4193b03cc29.tmp
2018-01-10 14:31 - 2017-12-21 00:56 - 000835576 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2018-01-10 14:31 - 2017-12-21 00:56 - 000177648 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2018-01-10 08:49 - 2018-01-10 08:49 - 000047160 _____ C:\Users\nad\Downloads\AttestationDroits.pdf
2018-01-10 08:40 - 2018-01-10 08:40 - 000002727 _____ C:\Users\Public\Desktop\Start PaperScan 3 Free Edition.lnk
2018-01-10 08:40 - 2018-01-10 08:40 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PaperScan 3 Free Edition
2018-01-10 08:40 - 2018-01-10 08:40 - 000000000 ____D C:\Program Files (x86)\ORPALIS
2018-01-09 15:32 - 2018-01-09 15:32 - 005845504 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerInstaller.exe
2018-01-09 13:54 - 2018-01-09 13:56 - 000000000 ____D C:\ProgramData\MusicMP3Downloader
2018-01-09 13:54 - 2018-01-09 13:54 - 000000000 ____D C:\Users\nad\AppData\Roaming\MusicMP3Downloader
2018-01-09 13:53 - 2018-01-09 13:53 - 006196044 _____ C:\Users\nad\Downloads\MusicMp3Downloader-5.7.5.6.Setup.exe
2018-01-09 12:54 - 2018-01-09 12:54 - 000000000 ____D C:\ProgramData\DigitalWave.ApplicationUpdater_files
2018-01-09 12:53 - 2018-01-09 12:53 - 000000000 ____D C:\Program Files (x86)\FreeCodecPack
2018-01-09 12:50 - 2018-01-09 12:52 - 040340296 _____ (Digital Wave Ltd ) C:\Users\nad\Downloads\FreeYouTubeToMP3Converter_4.1.66.1226_d.exe
2018-01-09 10:43 - 2018-01-09 10:42 - 000580480 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\asw9b8d3c18a7a8615f.tmp
2018-01-09 10:43 - 2017-12-22 18:40 - 000358672 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\asw20e5869e66fb3742.tmp
2018-01-09 10:43 - 2017-12-22 18:40 - 000204456 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswb1c91f69ac83329a.tmp
2018-01-09 10:43 - 2017-12-22 18:40 - 000185096 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswf34fbcf7432e9fa6.tmp
2018-01-09 10:43 - 2017-12-22 18:40 - 000110336 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswcf9bed37ba390097.tmp
2018-01-09 10:43 - 2017-12-22 18:40 - 000084384 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\asw7896767a3fd2a90c.tmp
2018-01-09 10:43 - 2017-12-22 18:40 - 000046976 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswf92513e720b6353f.tmp
2018-01-09 10:43 - 2017-12-22 18:39 - 001025176 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\asw5080728ecbed2dce.tmp
2018-01-09 10:43 - 2017-12-22 18:39 - 000343768 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswf3620143147bee11.tmp
2018-01-09 10:43 - 2017-12-22 18:39 - 000321512 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswd5c50c2842984c6d.tmp
2018-01-09 10:43 - 2017-12-22 18:39 - 000199448 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswed59a0a09baa71a9.tmp
2018-01-09 10:43 - 2017-12-22 18:39 - 000057696 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswb9df37219a1ee251.tmp
2018-01-09 09:29 - 2018-01-02 09:00 - 000590680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fvevol.sys
2018-01-09 09:29 - 2018-01-02 09:00 - 000242520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdyboost.sys
2018-01-09 09:29 - 2018-01-02 09:00 - 000214392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Storage.ApplicationData.dll
2018-01-09 09:29 - 2018-01-02 08:56 - 002530400 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2018-01-09 09:29 - 2018-01-02 08:56 - 000567656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2018-01-09 09:29 - 2018-01-02 08:56 - 000397224 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcryptprimitives.dll
2018-01-09 09:29 - 2018-01-02 08:56 - 000136536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wfplwfs.sys
2018-01-09 09:29 - 2018-01-02 07:39 - 022374248 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2018-01-09 09:29 - 2018-01-02 07:39 - 007408984 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2018-01-09 09:29 - 2018-01-02 07:39 - 002013016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2018-01-09 09:29 - 2018-01-02 07:39 - 000418648 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2018-01-09 09:29 - 2018-01-02 07:39 - 000354648 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fltMgr.sys
2018-01-09 09:29 - 2018-01-02 07:38 - 002176064 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2018-01-09 09:29 - 2018-01-02 07:38 - 001662096 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2018-01-09 09:29 - 2018-01-02 07:38 - 001063464 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinTypes.dll
2018-01-09 09:29 - 2018-01-02 07:37 - 001737600 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2018-01-09 09:29 - 2018-01-02 07:37 - 001676056 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2018-01-09 09:29 - 2018-01-02 07:37 - 001536120 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2018-01-09 09:29 - 2018-01-02 07:37 - 001500432 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2018-01-09 09:29 - 2018-01-02 07:37 - 001371352 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2018-01-09 09:29 - 2018-01-02 07:37 - 001135280 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2018-01-09 09:29 - 2018-01-02 07:37 - 000685440 _____ (Microsoft Corporation) C:\WINDOWS\system32\advapi32.dll
2018-01-09 09:29 - 2018-01-02 07:35 - 001307840 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll
2018-01-09 09:29 - 2018-01-02 07:35 - 000989528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\http.sys
2018-01-09 09:29 - 2018-01-02 07:05 - 000164296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Storage.ApplicationData.dll
2018-01-09 09:29 - 2018-01-02 07:03 - 025739264 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2018-01-09 09:29 - 2018-01-02 07:03 - 000341384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcryptprimitives.dll
2018-01-09 09:29 - 2018-01-02 07:01 - 001902328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll
2018-01-09 09:29 - 2018-01-02 07:00 - 019790760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2018-01-09 09:29 - 2018-01-02 06:59 - 001565520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2018-01-09 09:29 - 2018-01-02 06:59 - 001213784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2018-01-09 09:29 - 2018-01-02 06:58 - 001502000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2018-01-09 09:29 - 2018-01-02 06:48 - 000507176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\advapi32.dll
2018-01-09 09:29 - 2018-01-02 06:40 - 000284672 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64.dll
2018-01-09 09:29 - 2018-01-02 06:39 - 000686080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
2018-01-09 09:29 - 2018-01-02 06:39 - 000402432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2018-01-09 09:29 - 2018-01-02 06:39 - 000072192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndproxy.sys
2018-01-09 09:29 - 2018-01-02 06:39 - 000048128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netbios.sys
2018-01-09 09:29 - 2018-01-02 06:38 - 000559616 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afd.sys
2018-01-09 09:29 - 2018-01-02 06:38 - 000445952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\nwifi.sys
2018-01-09 09:29 - 2018-01-02 06:38 - 000416256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv.sys
2018-01-09 09:29 - 2018-01-02 06:38 - 000401408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2018-01-09 09:29 - 2018-01-02 06:38 - 000243200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srvnet.sys
2018-01-09 09:29 - 2018-01-02 06:38 - 000151040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pacer.sys
2018-01-09 09:29 - 2018-01-02 06:38 - 000138752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dfsc.sys
2018-01-09 09:29 - 2018-01-02 06:37 - 000110080 _____ (Microsoft Corporation) C:\WINDOWS\system32\appinfo.dll
2018-01-09 09:29 - 2018-01-02 06:37 - 000080384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wanarp.sys
2018-01-09 09:29 - 2018-01-02 06:34 - 000360448 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncsi.dll
2018-01-09 09:29 - 2018-01-02 06:31 - 000040448 _____ (Microsoft Corporation) C:\WINDOWS\system32\rfxvmt.dll
2018-01-09 09:29 - 2018-01-02 06:30 - 002900480 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2018-01-09 09:29 - 2018-01-02 06:28 - 005796352 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2018-01-09 09:29 - 2018-01-02 06:28 - 000577024 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2018-01-09 09:29 - 2018-01-02 06:28 - 000417280 _____ (Microsoft Corporation) C:\WINDOWS\system32\html.iec
2018-01-09 09:29 - 2018-01-02 06:28 - 000048640 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieetwproxystub.dll
2018-01-09 09:29 - 2018-01-02 06:28 - 000013312 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcalua.exe
2018-01-09 09:29 - 2018-01-02 06:20 - 020275200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2018-01-09 09:29 - 2018-01-02 06:19 - 000108544 _____ (Microsoft Corporation) C:\WINDOWS\system32\fdWCN.dll
2018-01-09 09:29 - 2018-01-02 06:18 - 000615936 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieui.dll
2018-01-09 09:29 - 2018-01-02 06:17 - 000817152 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2018-01-09 09:29 - 2018-01-02 06:17 - 000116224 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieetwcollector.exe
2018-01-09 09:29 - 2018-01-02 06:16 - 000814080 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2018-01-09 09:29 - 2018-01-02 06:09 - 000445440 _____ (Microsoft Corporation) C:\WINDOWS\system32\certcli.dll
2018-01-09 09:29 - 2018-01-02 06:06 - 000489984 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtmsft.dll
2018-01-09 09:29 - 2018-01-02 06:02 - 000862720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2018-01-09 09:29 - 2018-01-02 05:59 - 000014336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntvdm64.dll
2018-01-09 09:29 - 2018-01-02 05:59 - 000005632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wow32.dll
2018-01-09 09:29 - 2018-01-02 05:57 - 000025600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\setup16.exe
2018-01-09 09:29 - 2018-01-02 05:56 - 000199680 _____ (Microsoft Corporation) C:\WINDOWS\system32\msrating.dll
2018-01-09 09:29 - 2018-01-02 05:54 - 000145408 _____ (Microsoft Corporation) C:\WINDOWS\system32\iepeers.dll
2018-01-09 09:29 - 2018-01-02 05:53 - 000315392 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll
2018-01-09 09:29 - 2018-01-02 05:52 - 000499712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2018-01-09 09:29 - 2018-01-02 05:51 - 000341504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\html.iec
2018-01-09 09:29 - 2018-01-02 05:49 - 002294272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2018-01-09 09:29 - 2018-01-02 05:48 - 001033216 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcomm.dll
2018-01-09 09:29 - 2018-01-02 05:45 - 000091136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fdWCN.dll
2018-01-09 09:29 - 2018-01-02 05:44 - 015284224 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2018-01-09 09:29 - 2018-01-02 05:44 - 000476160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieui.dll
2018-01-09 09:29 - 2018-01-02 05:43 - 000662528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2018-01-09 09:29 - 2018-01-02 05:42 - 000620032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2018-01-09 09:29 - 2018-01-02 05:42 - 000262144 _____ (Microsoft Corporation) C:\WINDOWS\system32\webcheck.dll
2018-01-09 09:29 - 2018-01-02 05:41 - 000380416 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2018-01-09 09:29 - 2018-01-02 05:40 - 001436672 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2018-01-09 09:29 - 2018-01-02 05:40 - 000807936 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2018-01-09 09:29 - 2018-01-02 05:40 - 000726528 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2018-01-09 09:29 - 2018-01-02 05:38 - 002134528 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2018-01-09 09:29 - 2018-01-02 05:37 - 000324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certcli.dll
2018-01-09 09:29 - 2018-01-02 05:34 - 001217536 _____ (Microsoft Corporation) C:\WINDOWS\system32\sysmain.dll
2018-01-09 09:29 - 2018-01-02 05:34 - 000416256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtmsft.dll
2018-01-09 09:29 - 2018-01-02 05:33 - 001080320 _____ (Microsoft Corporation) C:\WINDOWS\system32\IKEEXT.DLL
2018-01-09 09:29 - 2018-01-02 05:33 - 000845312 _____ (Microsoft Corporation) C:\WINDOWS\system32\BFE.DLL
2018-01-09 09:29 - 2018-01-02 05:33 - 000086016 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlaapi.dll
2018-01-09 09:29 - 2018-01-02 05:32 - 000571392 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2018-01-09 09:29 - 2018-01-02 05:29 - 000817664 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcss.dll
2018-01-09 09:29 - 2018-01-02 05:29 - 000754176 _____ (Microsoft Corporation) C:\WINDOWS\system32\FirewallAPI.dll
2018-01-09 09:29 - 2018-01-02 05:27 - 001696256 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtsvc.dll
2018-01-09 09:29 - 2018-01-02 05:27 - 000168960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrating.dll
2018-01-09 09:29 - 2018-01-02 05:26 - 003241472 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2018-01-09 09:29 - 2018-01-02 05:25 - 000795648 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll
2018-01-09 09:29 - 2018-01-02 05:25 - 000279040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtrans.dll
2018-01-09 09:29 - 2018-01-02 05:25 - 000128000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iepeers.dll
2018-01-09 09:29 - 2018-01-02 05:23 - 004508160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2018-01-09 09:29 - 2018-01-02 05:23 - 002882048 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2018-01-09 09:29 - 2018-01-02 05:22 - 000880640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcomm.dll
2018-01-09 09:29 - 2018-01-02 05:22 - 000129536 _____ (Microsoft Corporation) C:\WINDOWS\system32\WcnApi.dll
2018-01-09 09:29 - 2018-01-02 05:21 - 000391680 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlasvc.dll
2018-01-09 09:29 - 2018-01-02 05:20 - 013680128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2018-01-09 09:29 - 2018-01-02 05:18 - 000380416 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnrpsvc.dll
2018-01-09 09:29 - 2018-01-02 05:18 - 000230400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webcheck.dll
2018-01-09 09:29 - 2018-01-02 05:17 - 001547264 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll
2018-01-09 09:29 - 2018-01-02 05:17 - 000694272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2018-01-09 09:29 - 2018-01-02 05:17 - 000465920 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcncsvc.dll
2018-01-09 09:29 - 2018-01-02 05:17 - 000331776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2018-01-09 09:29 - 2018-01-02 05:16 - 002058752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2018-01-09 09:29 - 2018-01-02 05:16 - 000881152 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPSSVC.dll
2018-01-09 09:29 - 2018-01-02 05:16 - 000747520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll
2018-01-09 09:29 - 2018-01-02 05:16 - 000464384 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcasvc.dll
2018-01-09 09:29 - 2018-01-02 05:15 - 001545728 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2018-01-09 09:29 - 2018-01-02 05:13 - 000216576 _____ (Microsoft Corporation) C:\WINDOWS\system32\P2P.dll
2018-01-09 09:29 - 2018-01-02 05:11 - 000185856 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascfg.dll
2018-01-09 09:29 - 2018-01-02 05:11 - 000065536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nlaapi.dll
2018-01-09 09:29 - 2018-01-02 05:09 - 000827392 _____ (Microsoft Corporation) C:\WINDOWS\system32\spoolsv.exe
2018-01-09 09:29 - 2018-01-02 05:09 - 000713216 _____ (Microsoft Corporation) C:\WINDOWS\system32\nshwfp.dll
2018-01-09 09:29 - 2018-01-02 05:09 - 000543232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FirewallAPI.dll
2018-01-09 09:29 - 2018-01-02 05:08 - 000110080 _____ (Microsoft Corporation) C:\WINDOWS\system32\icfupgd.dll
2018-01-09 09:29 - 2018-01-02 05:07 - 001265664 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2018-01-09 09:29 - 2018-01-02 05:07 - 000440832 _____ (Microsoft Corporation) C:\WINDOWS\system32\p2psvc.dll
2018-01-09 09:29 - 2018-01-02 05:06 - 000626176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttp.dll
2018-01-09 09:29 - 2018-01-02 05:05 - 000097280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WcnApi.dll
2018-01-09 09:29 - 2018-01-02 05:04 - 000800768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2018-01-09 09:29 - 2018-01-02 04:59 - 000177664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\P2P.dll
2018-01-09 09:29 - 2018-01-02 04:58 - 002767872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2018-01-09 09:29 - 2018-01-02 04:57 - 000164864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rascfg.dll
2018-01-09 09:29 - 2018-01-02 04:56 - 000562176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nshwfp.dll
2018-01-09 09:29 - 2018-01-02 04:55 - 003548160 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll
2018-01-09 09:29 - 2018-01-02 04:54 - 001313792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2018-01-09 09:29 - 2018-01-02 04:53 - 000710144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2018-01-09 09:29 - 2017-12-29 09:21 - 000107520 _____ (Microsoft Corporation) C:\WINDOWS\system32\inseng.dll
2018-01-09 09:29 - 2017-12-15 00:26 - 000374096 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2018-01-09 09:29 - 2017-12-14 22:39 - 000315736 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
2018-01-09 09:29 - 2017-12-14 11:19 - 000096256 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll
2018-01-09 09:29 - 2017-12-14 11:17 - 000044032 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2018-01-09 09:29 - 2017-12-10 14:59 - 000077824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontsub.dll
2018-01-09 09:29 - 2017-12-10 14:58 - 000035840 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2018-01-09 09:29 - 2017-12-10 14:46 - 007079424 _____ (Microsoft Corporation) C:\WINDOWS\system32\glcndFilter.dll
2018-01-09 09:29 - 2017-12-10 14:24 - 005275136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\glcndFilter.dll
2018-01-09 09:29 - 2017-12-10 14:06 - 007797760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2018-01-09 09:29 - 2017-12-10 13:59 - 005270528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2018-01-09 09:29 - 2017-12-06 05:42 - 002452816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2018-01-09 09:29 - 2017-12-05 17:58 - 004168192 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2018-01-09 08:43 - 2018-01-09 10:50 - 000493200 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2018-01-08 08:35 - 2018-01-08 09:38 - 000002878 _____ C:\WINDOWS\System32\Tasks\Driver Booster SkipUAC (nad)
2018-01-07 09:42 - 2018-01-07 09:42 - 000001715 _____ C:\Users\Public\Desktop\VDownloader.lnk
2018-01-06 12:56 - 2018-01-06 12:56 - 000000000 ____D C:\Users\nad\.fontconfig
2018-01-06 12:54 - 2018-01-06 12:58 - 000000000 ____D C:\Users\nad\AppData\Local\Movavi
2018-01-06 12:54 - 2018-01-06 12:54 - 000000000 ____D C:\Users\nad\AppData\Local\converter
2018-01-06 12:54 - 2018-01-06 12:54 - 000000000 ____D C:\ProgramData\Movavi
2018-01-06 12:53 - 2018-01-06 12:53 - 000004935 _____ C:\ProgramData\vfiakfjk.zeu
2018-01-06 12:53 - 2018-01-06 12:53 - 000000016 _____ C:\ProgramData\mntemp
2018-01-06 12:53 - 2018-01-06 12:53 - 000000000 ____D C:\ProgramData\Movavi Video Converter 18
2018-01-04 12:51 - 2018-01-04 12:51 - 000002192 _____ C:\Users\Public\Desktop\Adobe Digital Editions 4.5.lnk
2018-01-04 12:50 - 2018-01-04 19:20 - 000000000 ____D C:\Users\nad\Documents\My Digital Editions
2018-01-03 13:11 - 2018-01-03 13:11 - 000507436 _____ C:\Users\nad\Downloads\attestation_licence_03012018_131125.pdf
2018-01-02 15:07 - 2018-01-02 15:07 - 001624440 _____ (Tous Les Drivers) C:\Users\nad\Downloads\Mes_Drivers_3.0.4.exe
2018-01-01 16:14 - 2018-01-01 16:14 - 001644261 _____ C:\Users\nad\Downloads\calendrier mondial.htm
2017-12-30 09:15 - 2017-12-30 09:15 - 000000000 ____D C:\Users\nad\Downloads\Espace Mon compte_fichiers
2017-12-30 09:05 - 2017-12-30 09:06 - 002581725 _____ C:\Users\nad\Documents\PROBTP les Hyvans 2017.pdf
2017-12-27 10:44 - 2017-12-27 10:44 - 000253880 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2017-12-27 10:44 - 2017-12-27 10:44 - 000001895 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2017-12-27 10:44 - 2017-12-27 10:44 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2017-12-27 10:44 - 2017-12-27 10:44 - 000000000 ____D C:\ProgramData\Malwarebytes
2017-12-27 10:44 - 2017-12-27 10:44 - 000000000 ____D C:\Program Files\Malwarebytes
2017-12-27 10:44 - 2017-11-29 09:11 - 000077432 _____ C:\WINDOWS\system32\Drivers\mbae64.sys
2017-12-27 10:42 - 2017-12-27 10:42 - 083316440 _____ (Malwarebytes ) C:\Users\nad\Downloads\mb3-setup-35891.35891-3.3.1.2183-1.0.262-1.0.3374.exe
2017-12-27 10:42 - 2017-12-27 10:42 - 011201632 _____ (Piriform Ltd) C:\Users\nad\Downloads\ccsetup538 (1).exe
2017-12-24 07:38 - 2018-01-15 15:09 - 091750400 _____ C:\WINDOWS\system32\config\SOFTWARE
2017-12-24 07:38 - 2018-01-15 15:09 - 001921024 _____ C:\WINDOWS\system32\config\DEFAULT
2017-12-24 07:38 - 2018-01-15 15:09 - 000065536 _____ C:\WINDOWS\system32\config\SAM
2017-12-24 07:38 - 2018-01-15 15:09 - 000028672 _____ C:\WINDOWS\system32\config\SECURITY
2017-12-24 07:38 - 2017-12-24 07:38 - 000000000 ____H C:\asc_rdflag
2017-12-20 11:34 - 2017-12-20 11:34 - 000986080 _____ (Realtek ) C:\WINDOWS\system32\Drivers\Rt630x64.sys
2017-12-20 11:34 - 2017-12-20 11:34 - 000122848 _____ (Realtek Semiconductor Corporation) C:\WINDOWS\system32\RtNicProp64.dll
2017-12-20 11:31 - 2017-12-20 11:31 - 000001377 _____ C:\Users\Public\Desktop\Foxit Reader.lnk
2017-12-20 11:24 - 2017-12-20 11:23 - 000119702 _____ C:\Users\nad\Documents\BULLETIN_ADHESION_FFCT 2018 (2) (n adia).pdf
2017-12-20 11:17 - 2017-12-20 11:31 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Foxit Reader
2017-12-20 11:12 - 2017-12-20 11:12 - 077420808 _____ (Foxit Software Inc. ) C:\Users\nad\Downloads\FoxitReader901_L10N_Setup_Prom.exe
2017-12-19 08:56 - 2018-01-08 09:38 - 000003246 _____ C:\WINDOWS\System32\Tasks\Driver Booster Scheduler
2017-12-19 08:56 - 2017-12-20 11:36 - 000002320 _____ C:\Users\Public\Desktop\Driver Booster 5.lnk
2017-12-19 08:56 - 2017-12-19 08:56 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Booster 5
2017-12-19 08:54 - 2017-12-19 08:55 - 019204520 _____ (IObit ) C:\Users\nad\Downloads\driver_booster_setup(1).exe
2017-12-16 13:47 - 2017-11-06 10:06 - 000057753 _____ C:\Users\nad\Documents\modulation paiement impots pour 2018.pdf
==================== Un mois - Modifiés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2018-01-15 19:21 - 2016-11-19 07:49 - 000000000 ____D C:\Users\nad\AppData\LocalLow\Mozilla
2018-01-15 17:33 - 2016-06-07 12:47 - 000003600 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3533391725-3395593355-2823718628-1002
2018-01-15 17:06 - 2016-06-07 12:40 - 000000800 _____ C:\Users\Public\Desktop\CCleaner.lnk
2018-01-15 16:43 - 2017-10-29 08:31 - 000002780 _____ C:\WINDOWS\System32\Tasks\CCleanerSkipUAC
2018-01-15 15:13 - 2015-10-09 20:39 - 000000000 __SHD C:\Users\nad\IntelGraphicsProfiles
2018-01-15 15:13 - 2013-08-19 12:24 - 000000868 _____ C:\WINDOWS\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon.job
2018-01-15 15:10 - 2013-08-22 15:45 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2018-01-15 14:14 - 2016-06-09 14:19 - 000000000 ____D C:\Users\nad\AppData\Roaming\vlc
2018-01-15 13:53 - 2017-11-13 15:13 - 000000000 ____D C:\Users\nad\AppData\Roaming\ZHP
2018-01-15 13:43 - 2017-11-28 15:02 - 000000000 ____D C:\ProgramData\IObit
2018-01-15 13:43 - 2017-05-15 13:44 - 000000000 ____D C:\Users\nad\AppData\Roaming\IObit
2018-01-15 13:32 - 2013-08-22 14:36 - 000000000 ____D C:\WINDOWS\Inf
2018-01-15 12:42 - 2013-08-19 12:24 - 000000870 _____ C:\WINDOWS\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d.job
2018-01-15 08:49 - 2016-08-17 15:07 - 000003916 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{70E6ABD5-25EC-4BB2-8CB3-673BF8852578}
2018-01-13 09:41 - 2016-09-20 13:02 - 000000000 ____D C:\Users\nad\Desktop\EAUX
2018-01-13 09:41 - 2014-10-09 13:17 - 000000000 ____D C:\Users\nad\Desktop\DOC MEME
2018-01-13 09:41 - 2014-10-09 13:16 - 000000000 ____D C:\Users\nad\Desktop\EDF
2018-01-13 09:41 - 2014-10-09 13:16 - 000000000 ____D C:\Users\nad\Desktop\ASF
2018-01-13 09:41 - 2013-12-15 13:05 - 000000000 ____D C:\Users\nad\Desktop\divers
2018-01-12 16:13 - 2017-12-15 13:42 - 000000000 ____D C:\Users\nad\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Facebook
2018-01-12 16:12 - 2017-04-02 11:52 - 000000000 ____D C:\Users\nad\AppData\Local\Facebook
2018-01-12 16:03 - 2013-08-22 14:25 - 000262144 ___SH C:\WINDOWS\system32\config\BBI
2018-01-12 16:00 - 2016-09-29 09:00 - 000000000 ____D C:\Users\nad\Downloads\RevoUninstaller_Portable
2018-01-12 16:00 - 2016-06-07 12:46 - 000000000 ____D C:\Users\nad\AppData\Local\CrashDumps
2018-01-12 15:48 - 2017-05-15 13:18 - 000000000 ____D C:\Users\nad\AppData\Local\NVIDIA Corporation
2018-01-12 15:48 - 2017-05-15 13:18 - 000000000 ____D C:\Users\nad\AppData\Local\NVIDIA
2018-01-12 15:48 - 2016-06-08 19:21 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2018-01-12 15:48 - 2016-06-08 19:21 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2018-01-12 15:48 - 2016-06-08 19:21 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2018-01-12 15:48 - 2013-08-19 12:22 - 000000000 ____D C:\ProgramData\NVIDIA
2018-01-12 15:32 - 2017-11-05 16:01 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller
2018-01-12 15:31 - 2017-11-28 14:03 - 000000000 ____D C:\AdwCleaner
2018-01-10 14:31 - 2016-06-07 16:28 - 000000000 ____D C:\WINDOWS\system32\MRT
2018-01-10 14:31 - 2012-07-26 08:59 - 000000000 ____D C:\WINDOWS\CbsTemp
2018-01-10 14:28 - 2017-10-28 15:41 - 129365736 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT-KB890830.exe
2018-01-10 14:28 - 2016-06-07 16:28 - 129365736 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2018-01-10 08:43 - 2017-08-16 16:56 - 000000000 ____D C:\Users\nad\AppData\Roaming\PaperScan Free
2018-01-10 08:43 - 2014-11-20 23:46 - 001817064 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2018-01-10 08:43 - 2014-11-20 23:03 - 000805600 _____ C:\WINDOWS\system32\perfh00C.dat
2018-01-10 08:43 - 2014-11-20 23:03 - 000156456 _____ C:\WINDOWS\system32\perfc00C.dat
2018-01-10 08:40 - 2016-09-13 16:03 - 000000000 ____D C:\Users\nad\AppData\Local\Downloaded Installations
2018-01-09 15:33 - 2016-06-07 15:15 - 000004460 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2018-01-09 15:32 - 2013-08-22 16:36 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed
2018-01-09 15:32 - 2013-08-22 16:36 - 000000000 ____D C:\WINDOWS\system32\Macromed
2018-01-09 15:08 - 2016-11-26 15:42 - 000000000 ____D C:\Users\nad\AppData\Roaming\DVDVideoSoft
2018-01-09 14:01 - 2017-07-29 10:24 - 000000000 ____D C:\Users\nad\AppData\Local\VDownloader
2018-01-09 13:41 - 2017-07-29 10:24 - 000000000 ____D C:\Users\nad\AppData\Roaming\VDownloader
2018-01-09 13:39 - 2017-07-29 10:29 - 000000000 ____D C:\Users\nad\AppData\Roaming\Youtube Downloader HD
2018-01-09 13:23 - 2013-08-22 16:36 - 000000000 ____D C:\WINDOWS\rescache
2018-01-09 10:45 - 2013-08-22 16:36 - 000000000 ___RD C:\WINDOWS\ToastData
2018-01-07 18:51 - 2016-06-07 12:36 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2018-01-07 12:54 - 2017-12-12 15:29 - 000000000 ____D C:\WINDOWS\System32\Tasks\WiseCleaner
2018-01-07 12:53 - 2017-06-16 07:19 - 000000000 ____D C:\Users\nad\AppData\Roaming\Hornil
2018-01-07 12:53 - 2017-06-16 07:16 - 000000000 ____D C:\Program Files\Hornil
2018-01-07 12:52 - 2017-03-31 15:02 - 000000000 ____D C:\Users\nad\Documents\Déclaration année 2016
2018-01-07 12:52 - 2016-08-17 15:51 - 000000000 ____D C:\Users\nad\Documents\doc meme
2018-01-07 12:52 - 2016-08-17 15:49 - 000000000 ____D C:\Users\nad\Documents\doc divers 2016
2018-01-07 12:52 - 2016-08-17 15:49 - 000000000 ____D C:\Users\nad\Documents\doc 2014
2018-01-07 12:52 - 2015-11-17 10:58 - 000000000 ____D C:\Users\nad\Documents\Fax
2018-01-07 12:52 - 2015-05-31 10:35 - 000000000 ___RD C:\Users\nad\Dropbox
2018-01-07 12:49 - 2017-05-03 08:45 - 000000000 ____D C:\Users\nad\AppData\Local\Foxit Reader
2018-01-07 12:49 - 2016-06-08 19:34 - 000000000 ____D C:\Users\nad
2018-01-07 09:42 - 2017-07-29 10:24 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VDownloader
2018-01-07 09:42 - 2017-07-29 10:23 - 000000000 ____D C:\Program Files\VDownloader
2018-01-07 09:36 - 2017-05-15 13:45 - 000000000 ____D C:\ProgramData\ProductData
2018-01-07 09:14 - 2017-07-08 12:50 - 000000000 ____D C:\Program Files\Mozilla Firefox
2018-01-07 09:14 - 2016-06-07 12:36 - 000000958 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2018-01-07 09:12 - 2016-06-13 10:20 - 000000000 ____D C:\Program Files (x86)\Adobe
2018-01-07 09:10 - 2017-11-28 15:03 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Advanced SystemCare
2018-01-06 09:26 - 2017-11-17 13:39 - 000002207 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2018-01-06 09:26 - 2017-08-18 06:49 - 000002219 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2018-01-02 14:35 - 2017-11-06 16:41 - 000000000 ____D C:\WINDOWS\pss
2017-12-31 09:05 - 2013-08-22 16:36 - 000000000 ____D C:\WINDOWS\AppReadiness
2017-12-24 07:38 - 2017-12-04 08:15 - 005763072 _____ C:\WINDOWS\system32\config\drivers.iodefrag.bak
2017-12-24 07:38 - 2017-11-28 15:42 - 091537408 _____ C:\WINDOWS\system32\config\SOFTWARE.iodefrag.bak
2017-12-24 07:38 - 2017-11-28 15:42 - 001921024 _____ C:\WINDOWS\system32\config\DEFAULT.iodefrag.bak
2017-12-24 07:38 - 2017-11-28 15:42 - 000065536 _____ C:\WINDOWS\system32\config\SAM.iodefrag.bak
2017-12-24 07:38 - 2017-11-28 15:42 - 000028672 _____ C:\WINDOWS\system32\config\SECURITY.iodefrag.bak
2017-12-20 12:44 - 2016-06-09 17:49 - 000000000 ____D C:\Users\nad\AppData\Local\Deployment
2017-12-20 11:20 - 2016-08-17 15:49 - 000000000 ____D C:\Users\nad\Documents\livret de famille frecaut
2017-12-20 11:18 - 2017-02-09 08:33 - 000000000 ____D C:\ProgramData\Foxit Software
2017-12-19 08:56 - 2017-11-28 15:02 - 000000000 ____D C:\Program Files (x86)\IObit
==================== Fichiers à la racine de certains dossiers =======
2017-07-29 10:24 - 2015-08-27 14:48 - 000444283 _____ () C:\Program Files\Common Files\WinPcapNmap.exe
2016-07-03 09:35 - 2016-07-03 09:35 - 000003584 _____ () C:\Users\nad\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2016-08-17 15:26 - 2016-11-13 09:48 - 000013028 _____ () C:\Users\nad\AppData\Local\HWVendorDetection.log
2017-11-23 10:08 - 2017-11-23 10:09 - 000007618 _____ () C:\Users\nad\AppData\Local\Resmon.ResmonCfg
Certains fichiers dans TEMP:
====================
2018-01-12 15:32 - 2018-01-12 15:32 - 007189760 _____ (VS Revo Group ) C:\Users\nad\AppData\Local\Temp\VSUSetup.exe
==================== Bamital & volsnap ======================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
C:\WINDOWS\system32\winlogon.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\wininit.exe => Le fichier est signé numériquement
C:\WINDOWS\explorer.exe => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\explorer.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\svchost.exe => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\svchost.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\services.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\User32.dll => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\User32.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\userinit.exe => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\userinit.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\rpcss.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\dnsapi.dll => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\dnsapi.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\Drivers\volsnap.sys => Le fichier est signé numériquement
LastRegBack: 2018-01-15 10:19
==================== Fin de FRST.txt ============================