Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version: 16.05.2018 01
Exécuté par Sabrina (administrateur) sur TAINA (17-05-2018 11:28:09)
Exécuté depuis C:\Users\Sabrina\Downloads
Profils chargés: Sabrina (Profils disponibles: Sabrina)
Platform: Windows 8.1 (Update) (X64) Langue: Français (France)
Internet Explorer Version 11 (Navigateur par défaut: IE)
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Windows (R) Win 7 DDK provider) C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\AdminService.exe
(Apple Inc.) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
(Acer Incorporated) C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe
(Acer Incorporate) C:\Program Files\Acer\Acer Launch Manager\LMSvc.exe
() C:\ProgramData\MobileBrServ\mbbService.exe
(Corel Corporation) C:\Program Files\ReviverSoft\Smart Monitor\ReviverSoft Smart Monitor Service.exe
() C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
(McAfee, Inc.) C:\Program Files\TrueKey\McAfee.TrueKey.Service.exe
(McAfee, Inc.) C:\Program Files\TrueKey\McTkSchedulerService.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Acer Incorporate) C:\Program Files\Acer\Acer Launch Manager\LMEvent.exe
(Acer Incorporate) C:\Program Files\Acer\Acer Quick Access\QASvc.exe
(Acer Incorporate) C:\Program Files\Acer\Acer Launch Manager\LMTray.exe
(Acer Incorporate) C:\Program Files\Acer\Acer Quick Access\QAEvent.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerTray.exe
(Corel Corporation) C:\Program Files\ReviverSoft\Driver Reviver\DriverReviver.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerEvent.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerWinMonitor.exe
(Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
(Corel Corporation) C:\Program Files\ReviverSoft\Smart Monitor\ReviverSoftSmartMonitor.exe
(Acer Incorporate) C:\Program Files\Acer\Acer Quick Access\RMSvc.exe
(Acer Incorporate) C:\Program Files\Acer\Acer Quick Access\QAMsg.exe
(Qualcomm®Atheros®) C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(McAfee, Inc.) C:\Program Files\McAfee Security Scan\3.11.717\SSScheduler.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
() C:\Program Files (x86)\Telepad\telepad.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
() C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\ActivateDesktop.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Microsoft Corporation) C:\Windows\System32\cmd.exe
(TODO:) C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe
(McAfee, Inc.) C:\Program Files (x86)\McAfee\SiteAdvisor\McChHost.exe
(Nero AG) C:\Program Files (x86)\Nero\Update\NASvc.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Acer Incorporated) C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exe
() C:\Program Files (x86)\Acer\abDocs\abDocsDllLoaderMonitor.exe
(Acer) C:\Program Files (x86)\Acer\Acer Portal\AcerPortal.exe
(Acer Cloud Technology) C:\Program Files (x86)\Acer\AOP Framework\acer\ccd.exe
(acer) C:\Program Files\Acer\User Experience Improvement Program\Framework\UBTService.exe
(TODO:) C:\Program Files\Acer\User Experience Improvement Program\Plugin\AppMonitor\AppMonitorPlugIn.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCui.exe
(Microsoft Corporation) C:\Windows\System32\prevhost.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20911_x64__8wekyb3d8bbwe\livecomm.exe
==================== Registre (Avec liste blanche) ===========================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13672304 2014-03-21] (Realtek Semiconductor)
HKLM\...\Run: [WindowsDefender] => "%ProgramFiles%\Windows Defender\MSASCuiL.exe"
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [766688 2014-03-23] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [253816 2013-03-12] (Oracle Corporation)
HKLM-x32\...\Run: [iSkysoft Helper Compact.exe] => C:\Program Files (x86)\Common Files\iSkysoft\iSkysoft Helper Compact\ISHelper.exe [2138272 2016-10-08] (iSkySoft)
HKLM\...\Policies\Explorer\Run: [BtvStack] => C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe [134784 2014-02-26] (Qualcomm®Atheros®)
HKU\S-1-5-21-1844747315-723255016-263140651-1001\...\Run: [uTorrent] => C:\Users\Sabrina\AppData\Roaming\uTorrent\uTorrent.exe [1980608 2017-06-14] (BitTorrent Inc.)
HKU\S-1-5-21-1844747315-723255016-263140651-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8894680 2016-08-06] (Piriform Ltd)
HKU\S-1-5-21-1844747315-723255016-263140651-1001\...\MountPoints2: {a2605077-ec4e-11e3-8257-806e6f6e6963} - "D:\AUTORUN.EXE"
HKU\S-1-5-21-1844747315-723255016-263140651-1001\...\MountPoints2: {e4367473-8e8c-11e5-825f-f8a9639c16ab} - "E:\AutoRun.exe"
HKU\S-1-5-21-1844747315-723255016-263140651-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\PROGRA~2\FREEGA~1\GARDEN~1\GARDEN~1.SCR
Lsa: [Notification Packages] scecli C:\Program Files\TrueKey\McAfeeTrueKeyPasswordFilter "C:\Program Files\TrueKey\McAfeeTrueKeyPasswordFilter"
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk [2018-03-28]
ShortcutTarget: McAfee Security Scan Plus.lnk -> C:\Program Files\McAfee Security Scan\3.11.717\SSScheduler.exe (McAfee, Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\telepad.lnk [2016-05-01]
ShortcutTarget: telepad.lnk -> C:\Program Files (x86)\Telepad\telepad.exe ()
GroupPolicy: Restriction ? <==== ATTENTION
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Hosts: 0.0.0.1 mssplus.mcafee.com
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 192.168.1.1
Tcpip\..\Interfaces\{5D36C524-6EC6-452B-ACFB-76677007E477}: [DhcpNameServer] 192.168.137.129
Tcpip\..\Interfaces\{73423C62-3C55-4A03-AAB4-1F5E433C1C63}: [NameServer] 8.8.8.8,8.8.4.4
Tcpip\..\Interfaces\{73423C62-3C55-4A03-AAB4-1F5E433C1C63}: [DhcpNameServer] 192.168.1.1 192.168.1.1
Tcpip\..\Interfaces\{A7937DEA-E24E-45AC-97B4-6B4605497480}: [DhcpNameServer] 192.168.1.1 192.168.1.1
Tcpip\..\Interfaces\{CD7442D2-3D91-4F20-A7EF-6CD0B2F96A86}: [DhcpNameServer] 192.168.1.1 192.168.1.1
Tcpip\..\Interfaces\{DC065D5D-82E0-4E21-BA21-83CAD87F0D0F}: [DhcpNameServer] 192.168.1.1
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://us.search.yahoo.com/yhs/web?hspart=iry&hsimp=yhs-fullyhosted_003&type=wncy_tchfld_16_14¶m1=1¶m2=f%3D1%26b%3DIE%26cc%3Dnc%26pa%3DWincy%26cd%3D2XzuyEtN2Y1L1Qzu0Fzz0AzyyCtAzy0CtCyC0A0B0A0E0DyEtN0D0Tzu0StCyDyDzytN1L2XzutAtFtBtDtFtDtFtDtN1L1Czu1ByEtN1L1G1B1V1N2Y1L1Qzu2StDzytCyDyByE0EzztGtCzytAyEtGtC0FtAyEtGyC0EtC0EtGtA0DtBzyyB0ByByDtC0B0DyE2QtN1M1F1B2Z1V1N2Y1L1Qzu2Szy0CzztC0DyEtByBtG0CtBzyyEtGyE0B0ByDtG0AyEyDyCtG0ByC0E0EyDtAtD0F0F0E0EtD2QtN0A0LzuyE%26cr%3D281262322%26a%3Dwncy_tchfld_16_14%26os_ver%3D6.3%26os%3DWindows%2B8.1
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxps://us.search.yahoo.com/yhs/web?hspart=iry&hsimp=yhs-fullyhosted_003&type=wncy_tchfld_16_14¶m1=1¶m2=f%3D1%26b%3DIE%26cc%3Dnc%26pa%3DWincy%26cd%3D2XzuyEtN2Y1L1Qzu0Fzz0AzyyCtAzy0CtCyC0A0B0A0E0DyEtN0D0Tzu0StCyDyDzytN1L2XzutAtFtBtDtFtDtFtDtN1L1Czu1ByEtN1L1G1B1V1N2Y1L1Qzu2StDzytCyDyByE0EzztGtCzytAyEtGtC0FtAyEtGyC0EtC0EtGtA0DtBzyyB0ByByDtC0B0DyE2QtN1M1F1B2Z1V1N2Y1L1Qzu2Szy0CzztC0DyEtByBtG0CtBzyyEtGyE0B0ByDtG0AyEyDyCtG0ByC0E0EyDtAtD0F0F0E0EtD2QtN0A0LzuyE%26cr%3D281262322%26a%3Dwncy_tchfld_16_14%26os_ver%3D6.3%26os%3DWindows%2B8.1
HKU\S-1-5-21-1844747315-723255016-263140651-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://acer13.msn.com/?pc=ACJB
SearchScopes: HKLM -> DefaultScope {41092C52-D975-43A1-B596-5BAFB624892E} URL = hxxps://us.search.yahoo.com/yhs/search?hspart=iry&hsimp=yhs-fullyhosted_003&type=wncy_tchfld_16_14¶m1=1¶m2=f%3D4%26b%3DIE%26cc%3Dnc%26pa%3DWincy%26cd%3D2XzuyEtN2Y1L1Qzu0Fzz0AzyyCtAzy0CtCyC0A0B0A0E0DyEtN0D0Tzu0StCyDyDzytN1L2XzutAtFtBtDtFtDtFtDtN1L1Czu1ByEtN1L1G1B1V1N2Y1L1Qzu2StDzytCyDyByE0EzztGtCzytAyEtGtC0FtAyEtGyC0EtC0EtGtA0DtBzyyB0ByByDtC0B0DyE2QtN1M1F1B2Z1V1N2Y1L1Qzu2Szy0CzztC0DyEtByBtG0CtBzyyEtGyE0B0ByDtG0AyEyDyCtG0ByC0E0EyDtAtD0F0F0E0EtD2QtN0A0LzuyE%26cr%3D281262322%26a%3Dwncy_tchfld_16_14%26os_ver%3D6.3%26os%3DWindows%2B8.1&p={searchTerms}
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM -> {41092C52-D975-43A1-B596-5BAFB624892E} URL = hxxps://us.search.yahoo.com/yhs/search?hspart=iry&hsimp=yhs-fullyhosted_003&type=wncy_tchfld_16_14¶m1=1¶m2=f%3D4%26b%3DIE%26cc%3Dnc%26pa%3DWincy%26cd%3D2XzuyEtN2Y1L1Qzu0Fzz0AzyyCtAzy0CtCyC0A0B0A0E0DyEtN0D0Tzu0StCyDyDzytN1L2XzutAtFtBtDtFtDtFtDtN1L1Czu1ByEtN1L1G1B1V1N2Y1L1Qzu2StDzytCyDyByE0EzztGtCzytAyEtGtC0FtAyEtGyC0EtC0EtGtA0DtBzyyB0ByByDtC0B0DyE2QtN1M1F1B2Z1V1N2Y1L1Qzu2Szy0CzztC0DyEtByBtG0CtBzyyEtGyE0B0ByDtG0AyEyDyCtG0ByC0E0EyDtAtD0F0F0E0EtD2QtN0A0LzuyE%26cr%3D281262322%26a%3Dwncy_tchfld_16_14%26os_ver%3D6.3%26os%3DWindows%2B8.1&p={searchTerms}
SearchScopes: HKLM -> {AA9A4890-4262-4441-8977-E2FFCBFB706C} URL = hxxp://fr.yhs4.search.yahoo.com/yhs/search?hspart=acer&hsimp=yhs-acer_001&p={searchTerms}
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> {AA9A4890-4262-4441-8977-E2FFCBFB706C} URL = hxxp://fr.yhs4.search.yahoo.com/yhs/search?hspart=acer&hsimp=yhs-acer_001&p={searchTerms}
SearchScopes: HKU\.DEFAULT -> DefaultScope {41092C52-D975-43A1-B596-5BAFB624892E} URL =
SearchScopes: HKU\S-1-5-21-1844747315-723255016-263140651-1001 -> {41092C52-D975-43A1-B596-5BAFB624892E} URL = hxxps://us.search.yahoo.com/yhs/search?hspart=iry&hsimp=yhs-fullyhosted_003&type=wncy_tchfld_16_14¶m1=1¶m2=f%3D4%26b%3DIE%26cc%3Dnc%26pa%3DWincy%26cd%3D2XzuyEtN2Y1L1Qzu0Fzz0AzyyCtAzy0CtCyC0A0B0A0E0DyEtN0D0Tzu0StCyDyDzytN1L2XzutAtFtBtDtFtDtFtDtN1L1Czu1ByEtN1L1G1B1V1N2Y1L1Qzu2StDzytCyDyByE0EzztGtCzytAyEtGtC0FtAyEtGyC0EtC0EtGtA0DtBzyyB0ByByDtC0B0DyE2QtN1M1F1B2Z1V1N2Y1L1Qzu2Szy0CzztC0DyEtByBtG0CtBzyyEtGyE0B0ByDtG0AyEyDyCtG0ByC0E0EyDtAtD0F0F0E0EtD2QtN0A0LzuyE%26cr%3D281262322%26a%3Dwncy_tchfld_16_14%26os_ver%3D6.3%26os%3DWindows%2B8.1&p={searchTerms}
SearchScopes: HKU\S-1-5-21-1844747315-723255016-263140651-1001 -> {AA9A4890-4262-4441-8977-E2FFCBFB706C} URL = hxxp://fr.yhs4.search.yahoo.com/yhs/search?hspart=acer&hsimp=yhs-acer_001&p={searchTerms}
BHO: True Key Helper -> {0F4B8786-5502-4803-8EBC-F652A1153BB6} -> C:\Program Files\Intel Security\True Key\MSIE\truekey_ie64.dll [2017-09-25] (Intel Security)
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-08-24] (Google Inc.)
BHO: McAfee WebAdvisor BHO -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> c:\Program Files (x86)\McAfee\siteadvisor\x64\McIEPlg.dll [2017-10-16] (McAfee, Inc.)
BHO-x32: True Key Helper -> {0F4B8786-5502-4803-8EBC-F652A1153BB6} -> C:\Program Files\Intel Security\True Key\MSIE\truekey_ie.dll [2017-09-25] (Intel Security)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2016-06-26] (Oracle Corporation)
BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2016-08-24] (Google Inc.)
BHO-x32: McAfee WebAdvisor BHO -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> c:\Program Files (x86)\McAfee\siteadvisor\McIEPlg.dll [2017-10-16] (McAfee, Inc.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2016-06-26] (Oracle Corporation)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-08-24] (Google Inc.)
Toolbar: HKLM - True Key - {4BAAC1B8-0800-42C9-8FA6-08B211F356B8} - C:\Program Files\Intel Security\True Key\MSIE\truekey_ie64.dll [2017-09-25] (Intel Security)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2016-08-24] (Google Inc.)
Toolbar: HKLM-x32 - True Key - {4BAAC1B8-0800-42C9-8FA6-08B211F356B8} - C:\Program Files\Intel Security\True Key\MSIE\truekey_ie.dll [2017-09-25] (Intel Security)
Handler: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\siteadvisor\x64\McIEPlg.dll [2017-10-16] (McAfee, Inc.)
Handler-x32: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\siteadvisor\McIEPlg.dll [2017-10-16] (McAfee, Inc.)
Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\siteadvisor\x64\McIEPlg.dll [2017-10-16] (McAfee, Inc.)
Handler-x32: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\siteadvisor\McIEPlg.dll [2017-10-16] (McAfee, Inc.)
Handler: WSISVCUchrome - Pas de valeur CLSID
StartMenuInternet: IEXPLORE.EXE - iexplore.exe
FireFox:
========
FF DefaultProfile: t478jih5.default
FF ProfilePath: C:\Users\Sabrina\AppData\Roaming\Mozilla\Firefox\Profiles\t478jih5.default [2018-05-17]
FF HKLM\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files (x86)\McAfee\SiteAdvisor\saffplg.xpi
FF Extension: (McAfee WebAdvisor) - C:\Program Files (x86)\McAfee\SiteAdvisor\saffplg.xpi [2017-07-20] [Legacy]
FF HKLM-x32\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files (x86)\McAfee\SiteAdvisor\e10ssaffplg.xpi
FF Extension: (McAfee WebAdvisor) - C:\Program Files (x86)\McAfee\SiteAdvisor\e10ssaffplg.xpi [2017-09-25]
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_29_0_0_171.dll [2018-05-10] ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_29_0_0_171.dll [2018-05-10] ()
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] ( Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-12-04] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-12-04] (Google Inc.)
Chrome:
=======
CHR DefaultSearchURL: Default -> hxxp://srchbar.com/?q={searchTerms}
CHR DefaultSuggestURL: Default -> hxxp://srchbar.com/?s={searchTerms}
CHR Profile: C:\Users\Sabrina\AppData\Local\Google\Chrome\User Data\Default [2018-05-17]
CHR Extension: (Slides) - C:\Users\Sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-22]
CHR Extension: (Docs) - C:\Users\Sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-22]
CHR Extension: (Google Drive) - C:\Users\Sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-11-19]
CHR Extension: (Search Manager) - C:\Users\Sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\bahkljhhdeciiaodlkppoonappfnheoi [2018-04-26]
CHR Extension: (YouTube) - C:\Users\Sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-11-19]
CHR Extension: (Recherche Google) - C:\Users\Sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-11-19]
CHR Extension: (Sheets) - C:\Users\Sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-22]
CHR Extension: (McAfee® WebAdvisor) - C:\Users\Sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2018-05-05]
CHR Extension: (Tampermonkey BETA) - C:\Users\Sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcalenpjmijncebpfijmoaglllgpjagf [2018-05-05]
CHR Extension: (Google Docs hors connexion) - C:\Users\Sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-15]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-04-04]
CHR Extension: (Gmail) - C:\Users\Sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-11-19]
CHR Extension: (Chrome Media Router) - C:\Users\Sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2018-04-26]
CHR HKLM\...\Chrome\Extension: [bahkljhhdeciiaodlkppoonappfnheoi] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - C:\Program Files (x86)\McAfee\SiteAdvisor\McChPlg.crx [2016-04-27]
CHR HKLM\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files (x86)\Internet Download Manager\IDMGCExt.crx
CHR HKU\S-1-5-21-1844747315-723255016-263140651-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [bahkljhhdeciiaodlkppoonappfnheoi] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [bahkljhhdeciiaodlkppoonappfnheoi] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - C:\Program Files (x86)\McAfee\SiteAdvisor\McChPlg.crx [2016-04-27]
==================== Services (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 AtherosSvc; C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\adminservice.exe [319104 2014-02-26] (Windows (R) Win 7 DDK provider) [Fichier non signé]
R2 CCDMonitorService; C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe [2278688 2017-09-26] (Acer Incorporated)
R3 ePowerSvc; C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe [2573544 2014-03-21] (Acer Incorporated)
R2 GamesAppIntegrationService; C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe [235008 2013-07-17] (TODO:) [Fichier non signé]
R2 LMSvc; C:\Program Files\Acer\Acer Launch Manager\LMSvc.exe [459496 2014-03-17] (Acer Incorporate)
S3 McAfee SiteAdvisor Service; C:\Program Files (x86)\McAfee\SiteAdvisor\McSACore.exe [604312 2017-10-16] (McAfee, Inc.)
S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.11.717\McCHSvc.exe [405392 2018-03-27] (McAfee, Inc.)
R2 Mobile Broadband HL Service; C:\ProgramData\MobileBrServ\mbbservice.exe [232288 2012-03-12] ()
R3 QASvc; C:\Program Files\Acer\Acer Quick Access\QASvc.exe [457960 2014-03-22] (Acer Incorporate)
R2 ReviverSoft Smart Monitor Service; C:\Program Files\ReviverSoft\Smart Monitor\ReviverSoft Smart Monitor Service.exe [817960 2018-01-29] (Corel Corporation)
R2 RichVideo; C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe [254512 2012-04-24] ()
R3 RMSvc; C:\Program Files\Acer\Acer Quick Access\RMSvc.exe [449768 2014-03-22] (Acer Incorporate)
R2 TrueKey; C:\Program Files\TrueKey\McAfee.TrueKey.Service.exe [1001920 2018-03-29] (McAfee, Inc.)
R2 TrueKeyScheduler; C:\Program Files\TrueKey\McTkSchedulerService.exe [16928 2018-03-29] (McAfee, Inc.)
S3 TrueKeyServiceHelper; C:\Program Files\TrueKey\McAfee.TrueKey.ServiceHelper.exe [87760 2018-03-29] (McAfee, Inc.)
R3 UEIPSvc; C:\Program Files\Acer\User Experience Improvement Program\Framework\UBTService.exe [222952 2014-01-25] (acer)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [361824 2017-01-13] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [119872 2017-01-13] (Microsoft Corporation)
S2 0000601522463392mcinstcleanup; C:\WINDOWS\TEMP\000060~1.EXE -cleanup -nolog [X]
===================== Pilotes (Avec liste blanche) ======================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 amdkmcsp; C:\WINDOWS\system32\DRIVERS\amdkmcsp.sys [95080 2017-06-12] (Advanced Micro Devices, Inc. )
R0 amdkmpfd; C:\WINDOWS\System32\drivers\amdkmpfd.sys [36608 2013-12-12] (Advanced Micro Devices, Inc.)
R1 amdpsp; C:\WINDOWS\system32\DRIVERS\amdpsp.sys [239976 2017-06-12] (Advanced Micro Devices, Inc. )
R3 athr; C:\WINDOWS\system32\DRIVERS\athwbx.sys [3888640 2014-02-14] (Qualcomm Atheros Communications, Inc.)
R3 AtiHDAudioService; C:\WINDOWS\system32\drivers\AtihdWB6.sys [222720 2013-12-20] (Advanced Micro Devices)
S3 BTATH_LWFLT; C:\WINDOWS\system32\DRIVERS\btath_lwflt.sys [77464 2014-02-26] (Qualcomm Atheros)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [131984 2017-05-18] (Samsung Electronics Co., Ltd.)
R3 LMDriver; C:\WINDOWS\System32\drivers\LMDriver.sys [21360 2013-07-17] (Acer Incorporated)
S0 mfeelamk; C:\WINDOWS\System32\drivers\mfeelamk.sys [82072 2015-09-23] (McAfee, Inc.)
S3 mfesapsn; C:\Program Files (x86)\McAfee\SiteAdvisor\x64\mfesapsn.sys [111608 2017-02-14] (McAfee, Inc.)
S3 ptun0901; C:\WINDOWS\system32\DRIVERS\ptun0901.sys [27136 2014-08-09] (The OpenVPN Project)
R3 RadioShim; C:\WINDOWS\System32\drivers\RadioShim.sys [14680 2013-07-17] (Acer Incorporated)
R3 RTSPER; C:\WINDOWS\system32\DRIVERS\RtsPer.sys [476888 2014-03-21] (Realsil Semiconductor Corporation)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [166288 2017-05-18] (Samsung Electronics Co., Ltd.)
S3 ssudserd; C:\WINDOWS\system32\DRIVERS\ssudserd.sys [203320 2012-02-16] (DEVGURU Co., LTD.(www.devguru.co.kr))
R3 SynRMIHID; C:\WINDOWS\system32\DRIVERS\SynRMIHID.sys [42224 2014-02-19] (Synaptics Incorporated)
S3 usbrndis6; C:\WINDOWS\system32\DRIVERS\usb80236.sys [20992 2015-04-25] (Microsoft Corporation)
S0 WdBoot; C:\WINDOWS\System32\drivers\WdBoot.sys [46600 2017-02-11] (Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\WdFilter.sys [274776 2017-01-13] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [117592 2017-01-13] (Microsoft Corporation)
S3 aswHdsKe; \??\C:\WINDOWS\system32\drivers\aswHdsKe.sys [X]
S3 cpuz136; \??\C:\Users\Sabrina\AppData\Local\Temp\cpuz136\cpuz136_x64.sys [X] <==== ATTENTION
S1 MpKsl0624ae30; \??\C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{F2D5F204-B952-49C4-83EB-A2ED0DD1EE63}\MpKsl0624ae30.sys [X]
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois - Créés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2018-05-17 11:12 - 2018-05-17 11:12 - 000350416 _____ C:\WINDOWS\Minidump\051718-21125-01.dmp
2018-05-16 21:16 - 2018-05-16 21:17 - 000387496 _____ C:\WINDOWS\Minidump\051618-22671-01.dmp
2018-05-16 20:51 - 2018-05-16 20:52 - 000350440 _____ C:\WINDOWS\Minidump\051618-23703-01.dmp
2018-05-16 19:39 - 2018-05-16 19:39 - 000350464 _____ C:\WINDOWS\Minidump\051618-29171-01.dmp
2018-05-16 19:32 - 2018-05-16 19:33 - 000350440 _____ C:\WINDOWS\Minidump\051618-29156-01.dmp
2018-05-16 13:20 - 2018-05-16 13:20 - 000350440 _____ C:\WINDOWS\Minidump\051618-25343-01.dmp
2018-05-16 12:38 - 2018-05-16 12:39 - 000350376 _____ C:\WINDOWS\Minidump\051618-33562-01.dmp
2018-05-15 21:24 - 2018-05-12 20:12 - 731957012 ____N C:\Users\Sabrina\Desktop\Burn.Out.2017.FRENCH.HDRip.XviD-PREUMS.avi
2018-05-13 20:10 - 2018-04-30 19:27 - 1468063004 ____N C:\Users\Sabrina\Desktop\[ Torrent9.red ] 12.Strong.2018.FRENCH.HDRip.XviD-ACOOL.avi
2018-05-13 20:08 - 2018-05-01 10:21 - 734418368 ____N C:\Users\Sabrina\Desktop\Holy.Goalie.2017.FRENCH.HDRip.XviD-FuN.avi
2018-05-13 20:06 - 2018-05-13 14:58 - 731852346 ____N C:\Users\Sabrina\Desktop\[ www.Torrent9.Red ] Gamba.Ganba.to.Nakamatachi.2015.FRENCH.HDRip.XviD-PREUMS.avi
2018-05-12 15:33 - 2018-05-12 15:01 - 809829970 ____N C:\Users\Sabrina\Desktop\[ www.Torrent9.Red ] Family.Blood.2018.FRENCH.HDRip.XviD-FuN.avi
2018-05-12 15:32 - 2018-05-12 13:39 - 732603668 ____N C:\Users\Sabrina\Desktop\[ www.Torrent9.Red ] L.Echange.Des.Princesses.2017.FRENCH.HDRip.XviD-PREUMS.avi
2018-05-12 13:03 - 2018-05-12 13:03 - 000003918 _____ C:\Users\Sabrina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FRST.lnk
2018-05-12 12:46 - 2018-05-17 11:28 - 000025057 _____ C:\Users\Sabrina\Downloads\FRST.txt
2018-05-12 12:46 - 2018-05-17 11:28 - 000000000 ____D C:\FRST
2018-05-12 12:46 - 2018-05-17 11:27 - 000000000 ____D C:\Users\Sabrina\Downloads\FRST-OlderVersion
2018-05-12 12:30 - 2018-05-12 12:30 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2018-05-12 12:27 - 2018-05-12 12:27 - 000000000 ____D C:\Program Files\Microsoft Silverlight
2018-05-12 12:27 - 2018-05-12 12:27 - 000000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2018-05-12 12:04 - 2018-05-12 09:30 - 732460288 ____N C:\Users\Sabrina\Desktop\[ www.Torrent9.Red ] Stephanie.2017.FRENCH.HDRip.XviD-ACOOL.avi
2018-05-12 12:03 - 2018-05-12 08:13 - 733802460 ____N C:\Users\Sabrina\Desktop\Garde.Alternee.2017.FRENCH.BDRip.XviD.ACOOL.avi
2018-05-09 14:28 - 2018-04-22 20:02 - 000803696 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2018-05-09 14:28 - 2018-04-22 19:06 - 000612600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2018-05-09 14:28 - 2018-04-22 19:04 - 025744896 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2018-05-09 14:28 - 2018-04-22 18:40 - 002902016 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2018-05-09 14:28 - 2018-04-22 18:38 - 000578048 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2018-05-09 14:28 - 2018-04-22 18:32 - 005779456 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2018-05-09 14:28 - 2018-04-22 18:26 - 000814080 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2018-05-09 14:28 - 2018-04-22 18:26 - 000794624 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2018-05-09 14:28 - 2018-04-22 18:24 - 020286464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2018-05-09 14:28 - 2018-04-22 18:04 - 000499712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2018-05-09 14:28 - 2018-04-22 18:00 - 002295296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2018-05-09 14:28 - 2018-04-22 17:57 - 001033216 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcomm.dll
2018-05-09 14:28 - 2018-04-22 17:54 - 000661504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2018-05-09 14:28 - 2018-04-22 17:53 - 000620032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2018-05-09 14:28 - 2018-04-22 17:51 - 000262144 _____ (Microsoft Corporation) C:\WINDOWS\system32\webcheck.dll
2018-05-09 14:28 - 2018-04-22 17:49 - 000809472 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2018-05-09 14:28 - 2018-04-22 17:48 - 015283200 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2018-05-09 14:28 - 2018-04-22 17:46 - 002135552 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2018-05-09 14:28 - 2018-04-22 17:33 - 003241472 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2018-05-09 14:28 - 2018-04-22 17:32 - 000880640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcomm.dll
2018-05-09 14:28 - 2018-04-22 17:31 - 004496896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2018-05-09 14:28 - 2018-04-22 17:29 - 000230400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webcheck.dll
2018-05-09 14:28 - 2018-04-22 17:27 - 000696320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2018-05-09 14:28 - 2018-04-22 17:27 - 000333312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2018-05-09 14:28 - 2018-04-22 17:26 - 013679616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2018-05-09 14:28 - 2018-04-22 17:26 - 002059776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2018-05-09 14:28 - 2018-04-22 17:22 - 001546240 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2018-05-09 14:28 - 2018-04-22 17:11 - 000800768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2018-05-09 14:28 - 2018-04-22 17:08 - 002767872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2018-05-09 14:28 - 2018-04-22 17:04 - 001314304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2018-05-09 14:28 - 2018-04-22 17:03 - 000710144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2018-05-09 14:28 - 2018-04-16 03:55 - 000669696 _____ (Microsoft Corporation) C:\WINDOWS\system32\hhctrl.ocx
2018-05-09 14:28 - 2018-04-16 03:16 - 000536576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hhctrl.ocx
2018-05-09 14:28 - 2018-04-11 12:03 - 007406936 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2018-05-09 14:28 - 2018-04-11 12:02 - 001676056 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2018-05-09 14:28 - 2018-04-11 12:02 - 001536112 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2018-05-09 14:28 - 2018-04-11 05:51 - 004169216 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2018-05-09 14:28 - 2018-04-11 05:27 - 000205312 _____ (Microsoft Corporation) C:\WINDOWS\system32\itircl.dll
2018-05-09 14:28 - 2018-04-11 05:13 - 000179712 _____ (Microsoft Corporation) C:\WINDOWS\system32\itss.dll
2018-05-09 14:28 - 2018-04-11 04:01 - 000165376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\itircl.dll
2018-05-09 14:28 - 2018-04-11 03:50 - 000151040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\itss.dll
2018-05-09 14:28 - 2018-04-08 03:17 - 000445440 _____ (Microsoft Corporation) C:\WINDOWS\system32\certcli.dll
2018-05-09 14:28 - 2018-04-08 02:49 - 000324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certcli.dll
2018-05-09 14:28 - 2018-04-08 02:41 - 000109056 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSpkg.dll
2018-05-09 14:28 - 2018-04-08 02:23 - 000084992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TSpkg.dll
2018-05-09 14:28 - 2018-04-08 02:20 - 001707008 _____ (Microsoft Corporation) C:\WINDOWS\system32\comsvcs.dll
2018-05-09 14:28 - 2018-04-08 02:10 - 001344512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comsvcs.dll
2018-05-09 14:28 - 2018-04-08 02:06 - 000522752 _____ (Microsoft Corporation) C:\WINDOWS\system32\catsrvut.dll
2018-05-09 14:28 - 2018-04-08 02:01 - 000414720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\catsrvut.dll
2018-05-09 14:28 - 2018-04-07 08:27 - 000376656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys
2018-05-09 14:28 - 2018-03-25 02:57 - 001101824 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdvidcrl.dll
2018-05-09 14:28 - 2018-03-25 02:40 - 001171456 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstsc.exe
2018-05-09 14:28 - 2018-03-25 02:34 - 000856064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdvidcrl.dll
2018-05-09 14:28 - 2018-03-25 02:22 - 001086976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstsc.exe
2018-05-09 14:28 - 2018-03-25 01:56 - 007033344 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2018-05-09 14:28 - 2018-03-25 01:54 - 006214144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2018-05-09 14:28 - 2018-03-16 09:29 - 000136904 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2018-05-09 14:28 - 2018-03-11 07:55 - 000137968 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncrypt.dll
2018-05-09 14:28 - 2018-03-11 06:04 - 000120376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncrypt.dll
2018-05-09 14:28 - 2018-03-11 04:51 - 000685568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
2018-05-09 14:28 - 2018-03-11 04:47 - 000066048 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups.dll
2018-05-09 14:28 - 2018-03-11 04:47 - 000052224 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups2.dll
2018-05-09 14:28 - 2018-03-11 04:43 - 000015360 _____ (Microsoft Corporation) C:\WINDOWS\system32\wu.upgrade.ps.dll
2018-05-09 14:28 - 2018-03-11 03:46 - 000840192 _____ (Microsoft Corporation) C:\WINDOWS\system32\netlogon.dll
2018-05-09 14:28 - 2018-03-11 03:44 - 000435200 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2018-05-09 14:28 - 2018-03-11 03:35 - 000696832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netlogon.dll
2018-05-09 14:28 - 2018-03-11 03:35 - 000359424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll
2018-05-09 14:28 - 2018-03-11 03:33 - 003717632 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2018-05-09 14:28 - 2018-03-11 03:22 - 000035840 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapp.exe
2018-05-09 14:28 - 2018-03-11 03:21 - 000140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuwebv.dll
2018-05-09 14:28 - 2018-03-11 03:21 - 000029696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapp.exe
2018-05-09 14:28 - 2018-03-11 03:20 - 000124928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuwebv.dll
2018-05-09 14:28 - 2018-03-11 03:18 - 000726528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2018-05-09 14:28 - 2018-03-11 03:18 - 000409088 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUSettingsProvider.dll
2018-05-09 14:28 - 2018-03-11 03:18 - 000095744 _____ (Microsoft Corporation) C:\WINDOWS\system32\wudriver.dll
2018-05-09 14:28 - 2018-03-11 03:18 - 000081920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wudriver.dll
2018-05-09 14:28 - 2018-03-11 03:17 - 002240512 _____ (Microsoft Corporation) C:\WINDOWS\system32\wucltux.dll
2018-05-09 14:28 - 2018-03-11 03:17 - 000897024 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2018-05-09 14:28 - 2018-03-10 05:57 - 000276816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msiscsi.sys
2018-05-09 14:28 - 2018-03-04 03:24 - 001725952 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdtctm.dll
2018-05-09 14:28 - 2018-03-04 03:18 - 000894976 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdtcprx.dll
2018-05-09 14:28 - 2018-03-04 03:18 - 000322048 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdtcuiu.dll
2018-05-09 14:28 - 2018-03-04 03:15 - 000050688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xolehlp.dll
2018-05-09 14:28 - 2018-03-04 03:04 - 000741888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msdtcprx.dll
2018-05-09 14:28 - 2018-03-04 03:04 - 000265728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msdtcuiu.dll
2018-05-09 14:28 - 2018-02-15 08:45 - 001308336 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll
2018-05-09 14:28 - 2018-02-15 01:47 - 000747520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll
2018-05-09 14:03 - 2018-05-09 14:04 - 001624440 _____ (Tous Les Drivers) C:\Users\Sabrina\Downloads\Mes_Drivers_3.0.4 (2).exe
2018-05-09 13:56 - 2018-05-09 13:56 - 000350416 _____ C:\WINDOWS\Minidump\050918-21109-01.dmp
2018-05-09 13:40 - 2018-05-17 11:27 - 002413056 _____ (Farbar) C:\Users\Sabrina\Downloads\FRST64.exe
2018-05-09 13:35 - 2018-05-09 13:35 - 000350360 _____ C:\WINDOWS\Minidump\050918-38656-01.dmp
2018-05-09 13:20 - 2018-05-17 11:13 - 000000358 _____ C:\WINDOWS\Tasks\Start Driver Reviver for TAINA@Sabrina(logon).job
2018-05-09 13:20 - 2018-05-09 13:20 - 000003452 _____ C:\WINDOWS\System32\Tasks\Start Driver Reviver Schedule
2018-05-09 13:20 - 2018-05-09 13:20 - 000003384 _____ C:\WINDOWS\System32\Tasks\Start Driver Reviver Update
2018-05-09 13:20 - 2018-05-09 13:20 - 000002628 _____ C:\WINDOWS\System32\Tasks\Start Driver Reviver for TAINA@Sabrina(logon)
2018-05-09 13:20 - 2018-05-09 13:20 - 000001011 _____ C:\Users\Public\Desktop\Driver Reviver.lnk
2018-05-09 13:20 - 2018-05-09 13:20 - 000000000 ____D C:\ProgramData\ReviverSoft
2018-05-09 13:20 - 2018-05-09 13:20 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ReviverSoft
2018-05-09 13:20 - 2018-05-09 13:20 - 000000000 ____D C:\Program Files\ReviverSoft
2018-05-09 13:15 - 2018-05-09 13:18 - 016718456 _____ (Corel Corporation) C:\Users\Sabrina\Downloads\DriverReviverSetup_ppc.exe
2018-05-09 13:15 - 2018-05-09 13:16 - 000000000 ____D C:\Users\Sabrina\Desktop\FILM 2018
2018-05-05 13:24 - 2018-05-17 11:12 - 506275665 _____ C:\WINDOWS\MEMORY.DMP
2018-05-05 13:24 - 2018-05-05 13:25 - 000350424 _____ C:\WINDOWS\Minidump\050518-19921-01.dmp
2018-05-03 19:13 - 2018-05-03 19:13 - 000000000 ____D C:\Users\Sabrina\Desktop\PHOTO MESSAGER
2018-05-02 13:10 - 2018-05-02 13:11 - 001624440 _____ (Tous Les Drivers) C:\Users\Sabrina\Downloads\Mes_Drivers_3.0.4.exe
2018-04-27 19:48 - 2018-04-27 19:50 - 016487464 _____ (Corel Corporation) C:\Users\Sabrina\Downloads\wzdu34.exe
==================== Un mois - Modifiés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2018-05-17 11:19 - 2015-11-19 18:22 - 000003594 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1844747315-723255016-263140651-1001
2018-05-17 11:15 - 2015-11-19 18:23 - 000000000 ___DO C:\Users\Sabrina\OneDrive
2018-05-17 11:13 - 2015-11-19 18:10 - 000000000 ____D C:\Users\Sabrina
2018-05-17 11:13 - 2013-08-23 01:45 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2018-05-17 11:12 - 2015-12-03 15:52 - 000000000 ____D C:\WINDOWS\Minidump
2018-05-17 10:43 - 2015-11-19 18:25 - 000003932 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{B0B25C4E-C9B5-4008-922C-E2FAC2241D0D}
2018-05-16 21:23 - 2014-06-05 21:59 - 000090046 _____ C:\WINDOWS\system32\perfh00C.dat
2018-05-16 21:23 - 2014-06-05 21:59 - 000018088 _____ C:\WINDOWS\system32\perfc00C.dat
2018-05-16 21:23 - 2014-03-18 21:03 - 000174262 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2018-05-16 21:23 - 2013-08-23 00:36 - 000000000 ____D C:\WINDOWS\Inf
2018-05-16 13:38 - 2015-11-20 14:04 - 025364992 ___SH C:\Users\Sabrina\Downloads\Thumbs.db
2018-05-15 21:25 - 2015-12-06 14:08 - 001165824 ___SH C:\Users\Sabrina\Desktop\Thumbs.db
2018-05-12 11:55 - 2013-08-23 01:44 - 000717944 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2018-05-12 11:46 - 2013-08-23 00:25 - 000262144 ___SH C:\WINDOWS\system32\config\BBI
2018-05-10 16:49 - 2017-10-22 18:53 - 141696960 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT-KB890830.exe
2018-05-10 16:49 - 2015-11-29 22:49 - 141696960 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2018-05-10 16:49 - 2015-11-29 22:49 - 000000000 ____D C:\WINDOWS\system32\MRT
2018-05-10 14:26 - 2013-08-23 02:20 - 000000000 ____D C:\WINDOWS\CbsTemp
2018-05-10 13:35 - 2018-03-15 13:35 - 000004632 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player NPAPI Notifier
2018-05-10 13:35 - 2016-12-21 11:35 - 000004460 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2018-05-10 13:34 - 2013-08-23 02:36 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed
2018-05-10 13:34 - 2013-08-23 02:36 - 000000000 ____D C:\WINDOWS\system32\Macromed
2018-05-09 13:19 - 2017-11-04 15:15 - 000000000 ____D C:\Users\Sabrina\Desktop\Dessin animer pour les gosses
2018-05-09 13:17 - 2017-05-27 12:07 - 000000000 ____D C:\Users\Sabrina\Desktop\Films Nico
2018-05-08 14:14 - 2018-03-28 13:44 - 000000000 ____D C:\ProgramData\McAfee Security Scan
2018-05-08 14:02 - 2013-08-23 02:36 - 000000000 ____D C:\WINDOWS\AppReadiness
2018-05-03 20:23 - 2015-11-19 20:30 - 000000000 ____D C:\Users\Sabrina\AppData\Roaming\vlc
2018-05-02 13:02 - 2014-05-16 16:47 - 000004402 _____ C:\WINDOWS\System32\Tasks\ALUAgent
2018-05-02 13:02 - 2014-05-16 16:47 - 000003628 _____ C:\WINDOWS\System32\Tasks\ALU
2018-05-02 13:02 - 2014-05-16 16:47 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acer
2018-05-01 09:39 - 2018-03-17 11:57 - 000835064 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2018-05-01 09:39 - 2018-03-17 11:57 - 000179704 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2018-04-27 18:56 - 2016-08-24 10:29 - 000002246 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2018-04-27 18:56 - 2016-08-24 10:29 - 000002205 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2018-04-26 10:15 - 2018-01-31 10:14 - 000000000 ____D C:\Users\Sabrina\Downloads\Annonces.nc -_files
2018-04-19 19:29 - 2013-08-23 02:36 - 000000000 ____D C:\WINDOWS\rescache
2018-04-17 22:34 - 2015-12-13 12:19 - 000000000 ____D C:\Users\Sabrina\Documents\Bluetooth Folder
2018-04-17 19:40 - 2017-06-02 12:41 - 000000000 ____D C:\Users\Sabrina\AppData\LocalLow\Mozilla
==================== Fichiers à la racine de certains dossiers =======
2016-05-01 12:49 - 2016-05-01 22:25 - 000009728 _____ () C:\Users\Sabrina\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2016-08-24 09:16 - 2016-08-24 09:16 - 000000017 _____ () C:\Users\Sabrina\AppData\Local\resmon.resmoncfg
==================== Bamital & volsnap ======================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
C:\WINDOWS\system32\winlogon.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\wininit.exe => Le fichier est signé numériquement
C:\WINDOWS\explorer.exe => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\explorer.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\svchost.exe => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\svchost.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\services.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\User32.dll => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\User32.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\userinit.exe => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\userinit.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\rpcss.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\dnsapi.dll => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\dnsapi.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\Drivers\volsnap.sys => Le fichier est signé numériquement
LastRegBack: 2018-05-02 13:32
==================== Fin de FRST.txt ============================
Exécuté par Sabrina (administrateur) sur TAINA (17-05-2018 11:28:09)
Exécuté depuis C:\Users\Sabrina\Downloads
Profils chargés: Sabrina (Profils disponibles: Sabrina)
Platform: Windows 8.1 (Update) (X64) Langue: Français (France)
Internet Explorer Version 11 (Navigateur par défaut: IE)
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processus (Avec liste blanche) =================
(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)
(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Windows (R) Win 7 DDK provider) C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\AdminService.exe
(Apple Inc.) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
(Acer Incorporated) C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe
(Acer Incorporate) C:\Program Files\Acer\Acer Launch Manager\LMSvc.exe
() C:\ProgramData\MobileBrServ\mbbService.exe
(Corel Corporation) C:\Program Files\ReviverSoft\Smart Monitor\ReviverSoft Smart Monitor Service.exe
() C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
(McAfee, Inc.) C:\Program Files\TrueKey\McAfee.TrueKey.Service.exe
(McAfee, Inc.) C:\Program Files\TrueKey\McTkSchedulerService.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Acer Incorporate) C:\Program Files\Acer\Acer Launch Manager\LMEvent.exe
(Acer Incorporate) C:\Program Files\Acer\Acer Quick Access\QASvc.exe
(Acer Incorporate) C:\Program Files\Acer\Acer Launch Manager\LMTray.exe
(Acer Incorporate) C:\Program Files\Acer\Acer Quick Access\QAEvent.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerTray.exe
(Corel Corporation) C:\Program Files\ReviverSoft\Driver Reviver\DriverReviver.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerEvent.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerWinMonitor.exe
(Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
(Corel Corporation) C:\Program Files\ReviverSoft\Smart Monitor\ReviverSoftSmartMonitor.exe
(Acer Incorporate) C:\Program Files\Acer\Acer Quick Access\RMSvc.exe
(Acer Incorporate) C:\Program Files\Acer\Acer Quick Access\QAMsg.exe
(Qualcomm®Atheros®) C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(McAfee, Inc.) C:\Program Files\McAfee Security Scan\3.11.717\SSScheduler.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
() C:\Program Files (x86)\Telepad\telepad.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
() C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\ActivateDesktop.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Microsoft Corporation) C:\Windows\System32\cmd.exe
(TODO:
(McAfee, Inc.) C:\Program Files (x86)\McAfee\SiteAdvisor\McChHost.exe
(Nero AG) C:\Program Files (x86)\Nero\Update\NASvc.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Acer Incorporated) C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exe
() C:\Program Files (x86)\Acer\abDocs\abDocsDllLoaderMonitor.exe
(Acer) C:\Program Files (x86)\Acer\Acer Portal\AcerPortal.exe
(Acer Cloud Technology) C:\Program Files (x86)\Acer\AOP Framework\acer\ccd.exe
(acer) C:\Program Files\Acer\User Experience Improvement Program\Framework\UBTService.exe
(TODO:
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCui.exe
(Microsoft Corporation) C:\Windows\System32\prevhost.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20911_x64__8wekyb3d8bbwe\livecomm.exe
==================== Registre (Avec liste blanche) ===========================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13672304 2014-03-21] (Realtek Semiconductor)
HKLM\...\Run: [WindowsDefender] => "%ProgramFiles%\Windows Defender\MSASCuiL.exe"
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [766688 2014-03-23] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [253816 2013-03-12] (Oracle Corporation)
HKLM-x32\...\Run: [iSkysoft Helper Compact.exe] => C:\Program Files (x86)\Common Files\iSkysoft\iSkysoft Helper Compact\ISHelper.exe [2138272 2016-10-08] (iSkySoft)
HKLM\...\Policies\Explorer\Run: [BtvStack] => C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe [134784 2014-02-26] (Qualcomm®Atheros®)
HKU\S-1-5-21-1844747315-723255016-263140651-1001\...\Run: [uTorrent] => C:\Users\Sabrina\AppData\Roaming\uTorrent\uTorrent.exe [1980608 2017-06-14] (BitTorrent Inc.)
HKU\S-1-5-21-1844747315-723255016-263140651-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8894680 2016-08-06] (Piriform Ltd)
HKU\S-1-5-21-1844747315-723255016-263140651-1001\...\MountPoints2: {a2605077-ec4e-11e3-8257-806e6f6e6963} - "D:\AUTORUN.EXE"
HKU\S-1-5-21-1844747315-723255016-263140651-1001\...\MountPoints2: {e4367473-8e8c-11e5-825f-f8a9639c16ab} - "E:\AutoRun.exe"
HKU\S-1-5-21-1844747315-723255016-263140651-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\PROGRA~2\FREEGA~1\GARDEN~1\GARDEN~1.SCR
Lsa: [Notification Packages] scecli C:\Program Files\TrueKey\McAfeeTrueKeyPasswordFilter "C:\Program Files\TrueKey\McAfeeTrueKeyPasswordFilter"
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk [2018-03-28]
ShortcutTarget: McAfee Security Scan Plus.lnk -> C:\Program Files\McAfee Security Scan\3.11.717\SSScheduler.exe (McAfee, Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\telepad.lnk [2016-05-01]
ShortcutTarget: telepad.lnk -> C:\Program Files (x86)\Telepad\telepad.exe ()
GroupPolicy: Restriction ? <==== ATTENTION
==================== Internet (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)
Hosts: 0.0.0.1 mssplus.mcafee.com
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 192.168.1.1
Tcpip\..\Interfaces\{5D36C524-6EC6-452B-ACFB-76677007E477}: [DhcpNameServer] 192.168.137.129
Tcpip\..\Interfaces\{73423C62-3C55-4A03-AAB4-1F5E433C1C63}: [NameServer] 8.8.8.8,8.8.4.4
Tcpip\..\Interfaces\{73423C62-3C55-4A03-AAB4-1F5E433C1C63}: [DhcpNameServer] 192.168.1.1 192.168.1.1
Tcpip\..\Interfaces\{A7937DEA-E24E-45AC-97B4-6B4605497480}: [DhcpNameServer] 192.168.1.1 192.168.1.1
Tcpip\..\Interfaces\{CD7442D2-3D91-4F20-A7EF-6CD0B2F96A86}: [DhcpNameServer] 192.168.1.1 192.168.1.1
Tcpip\..\Interfaces\{DC065D5D-82E0-4E21-BA21-83CAD87F0D0F}: [DhcpNameServer] 192.168.1.1
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://us.search.yahoo.com/yhs/web?hspart=iry&hsimp=yhs-fullyhosted_003&type=wncy_tchfld_16_14¶m1=1¶m2=f%3D1%26b%3DIE%26cc%3Dnc%26pa%3DWincy%26cd%3D2XzuyEtN2Y1L1Qzu0Fzz0AzyyCtAzy0CtCyC0A0B0A0E0DyEtN0D0Tzu0StCyDyDzytN1L2XzutAtFtBtDtFtDtFtDtN1L1Czu1ByEtN1L1G1B1V1N2Y1L1Qzu2StDzytCyDyByE0EzztGtCzytAyEtGtC0FtAyEtGyC0EtC0EtGtA0DtBzyyB0ByByDtC0B0DyE2QtN1M1F1B2Z1V1N2Y1L1Qzu2Szy0CzztC0DyEtByBtG0CtBzyyEtGyE0B0ByDtG0AyEyDyCtG0ByC0E0EyDtAtD0F0F0E0EtD2QtN0A0LzuyE%26cr%3D281262322%26a%3Dwncy_tchfld_16_14%26os_ver%3D6.3%26os%3DWindows%2B8.1
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxps://us.search.yahoo.com/yhs/web?hspart=iry&hsimp=yhs-fullyhosted_003&type=wncy_tchfld_16_14¶m1=1¶m2=f%3D1%26b%3DIE%26cc%3Dnc%26pa%3DWincy%26cd%3D2XzuyEtN2Y1L1Qzu0Fzz0AzyyCtAzy0CtCyC0A0B0A0E0DyEtN0D0Tzu0StCyDyDzytN1L2XzutAtFtBtDtFtDtFtDtN1L1Czu1ByEtN1L1G1B1V1N2Y1L1Qzu2StDzytCyDyByE0EzztGtCzytAyEtGtC0FtAyEtGyC0EtC0EtGtA0DtBzyyB0ByByDtC0B0DyE2QtN1M1F1B2Z1V1N2Y1L1Qzu2Szy0CzztC0DyEtByBtG0CtBzyyEtGyE0B0ByDtG0AyEyDyCtG0ByC0E0EyDtAtD0F0F0E0EtD2QtN0A0LzuyE%26cr%3D281262322%26a%3Dwncy_tchfld_16_14%26os_ver%3D6.3%26os%3DWindows%2B8.1
HKU\S-1-5-21-1844747315-723255016-263140651-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://acer13.msn.com/?pc=ACJB
SearchScopes: HKLM -> DefaultScope {41092C52-D975-43A1-B596-5BAFB624892E} URL = hxxps://us.search.yahoo.com/yhs/search?hspart=iry&hsimp=yhs-fullyhosted_003&type=wncy_tchfld_16_14¶m1=1¶m2=f%3D4%26b%3DIE%26cc%3Dnc%26pa%3DWincy%26cd%3D2XzuyEtN2Y1L1Qzu0Fzz0AzyyCtAzy0CtCyC0A0B0A0E0DyEtN0D0Tzu0StCyDyDzytN1L2XzutAtFtBtDtFtDtFtDtN1L1Czu1ByEtN1L1G1B1V1N2Y1L1Qzu2StDzytCyDyByE0EzztGtCzytAyEtGtC0FtAyEtGyC0EtC0EtGtA0DtBzyyB0ByByDtC0B0DyE2QtN1M1F1B2Z1V1N2Y1L1Qzu2Szy0CzztC0DyEtByBtG0CtBzyyEtGyE0B0ByDtG0AyEyDyCtG0ByC0E0EyDtAtD0F0F0E0EtD2QtN0A0LzuyE%26cr%3D281262322%26a%3Dwncy_tchfld_16_14%26os_ver%3D6.3%26os%3DWindows%2B8.1&p={searchTerms}
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM -> {41092C52-D975-43A1-B596-5BAFB624892E} URL = hxxps://us.search.yahoo.com/yhs/search?hspart=iry&hsimp=yhs-fullyhosted_003&type=wncy_tchfld_16_14¶m1=1¶m2=f%3D4%26b%3DIE%26cc%3Dnc%26pa%3DWincy%26cd%3D2XzuyEtN2Y1L1Qzu0Fzz0AzyyCtAzy0CtCyC0A0B0A0E0DyEtN0D0Tzu0StCyDyDzytN1L2XzutAtFtBtDtFtDtFtDtN1L1Czu1ByEtN1L1G1B1V1N2Y1L1Qzu2StDzytCyDyByE0EzztGtCzytAyEtGtC0FtAyEtGyC0EtC0EtGtA0DtBzyyB0ByByDtC0B0DyE2QtN1M1F1B2Z1V1N2Y1L1Qzu2Szy0CzztC0DyEtByBtG0CtBzyyEtGyE0B0ByDtG0AyEyDyCtG0ByC0E0EyDtAtD0F0F0E0EtD2QtN0A0LzuyE%26cr%3D281262322%26a%3Dwncy_tchfld_16_14%26os_ver%3D6.3%26os%3DWindows%2B8.1&p={searchTerms}
SearchScopes: HKLM -> {AA9A4890-4262-4441-8977-E2FFCBFB706C} URL = hxxp://fr.yhs4.search.yahoo.com/yhs/search?hspart=acer&hsimp=yhs-acer_001&p={searchTerms}
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> {AA9A4890-4262-4441-8977-E2FFCBFB706C} URL = hxxp://fr.yhs4.search.yahoo.com/yhs/search?hspart=acer&hsimp=yhs-acer_001&p={searchTerms}
SearchScopes: HKU\.DEFAULT -> DefaultScope {41092C52-D975-43A1-B596-5BAFB624892E} URL =
SearchScopes: HKU\S-1-5-21-1844747315-723255016-263140651-1001 -> {41092C52-D975-43A1-B596-5BAFB624892E} URL = hxxps://us.search.yahoo.com/yhs/search?hspart=iry&hsimp=yhs-fullyhosted_003&type=wncy_tchfld_16_14¶m1=1¶m2=f%3D4%26b%3DIE%26cc%3Dnc%26pa%3DWincy%26cd%3D2XzuyEtN2Y1L1Qzu0Fzz0AzyyCtAzy0CtCyC0A0B0A0E0DyEtN0D0Tzu0StCyDyDzytN1L2XzutAtFtBtDtFtDtFtDtN1L1Czu1ByEtN1L1G1B1V1N2Y1L1Qzu2StDzytCyDyByE0EzztGtCzytAyEtGtC0FtAyEtGyC0EtC0EtGtA0DtBzyyB0ByByDtC0B0DyE2QtN1M1F1B2Z1V1N2Y1L1Qzu2Szy0CzztC0DyEtByBtG0CtBzyyEtGyE0B0ByDtG0AyEyDyCtG0ByC0E0EyDtAtD0F0F0E0EtD2QtN0A0LzuyE%26cr%3D281262322%26a%3Dwncy_tchfld_16_14%26os_ver%3D6.3%26os%3DWindows%2B8.1&p={searchTerms}
SearchScopes: HKU\S-1-5-21-1844747315-723255016-263140651-1001 -> {AA9A4890-4262-4441-8977-E2FFCBFB706C} URL = hxxp://fr.yhs4.search.yahoo.com/yhs/search?hspart=acer&hsimp=yhs-acer_001&p={searchTerms}
BHO: True Key Helper -> {0F4B8786-5502-4803-8EBC-F652A1153BB6} -> C:\Program Files\Intel Security\True Key\MSIE\truekey_ie64.dll [2017-09-25] (Intel Security)
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-08-24] (Google Inc.)
BHO: McAfee WebAdvisor BHO -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> c:\Program Files (x86)\McAfee\siteadvisor\x64\McIEPlg.dll [2017-10-16] (McAfee, Inc.)
BHO-x32: True Key Helper -> {0F4B8786-5502-4803-8EBC-F652A1153BB6} -> C:\Program Files\Intel Security\True Key\MSIE\truekey_ie.dll [2017-09-25] (Intel Security)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2016-06-26] (Oracle Corporation)
BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2016-08-24] (Google Inc.)
BHO-x32: McAfee WebAdvisor BHO -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> c:\Program Files (x86)\McAfee\siteadvisor\McIEPlg.dll [2017-10-16] (McAfee, Inc.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2016-06-26] (Oracle Corporation)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-08-24] (Google Inc.)
Toolbar: HKLM - True Key - {4BAAC1B8-0800-42C9-8FA6-08B211F356B8} - C:\Program Files\Intel Security\True Key\MSIE\truekey_ie64.dll [2017-09-25] (Intel Security)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2016-08-24] (Google Inc.)
Toolbar: HKLM-x32 - True Key - {4BAAC1B8-0800-42C9-8FA6-08B211F356B8} - C:\Program Files\Intel Security\True Key\MSIE\truekey_ie.dll [2017-09-25] (Intel Security)
Handler: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\siteadvisor\x64\McIEPlg.dll [2017-10-16] (McAfee, Inc.)
Handler-x32: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\siteadvisor\McIEPlg.dll [2017-10-16] (McAfee, Inc.)
Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\siteadvisor\x64\McIEPlg.dll [2017-10-16] (McAfee, Inc.)
Handler-x32: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\siteadvisor\McIEPlg.dll [2017-10-16] (McAfee, Inc.)
Handler: WSISVCUchrome - Pas de valeur CLSID
StartMenuInternet: IEXPLORE.EXE - iexplore.exe
FireFox:
========
FF DefaultProfile: t478jih5.default
FF ProfilePath: C:\Users\Sabrina\AppData\Roaming\Mozilla\Firefox\Profiles\t478jih5.default [2018-05-17]
FF HKLM\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files (x86)\McAfee\SiteAdvisor\saffplg.xpi
FF Extension: (McAfee WebAdvisor) - C:\Program Files (x86)\McAfee\SiteAdvisor\saffplg.xpi [2017-07-20] [Legacy]
FF HKLM-x32\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files (x86)\McAfee\SiteAdvisor\e10ssaffplg.xpi
FF Extension: (McAfee WebAdvisor) - C:\Program Files (x86)\McAfee\SiteAdvisor\e10ssaffplg.xpi [2017-09-25]
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_29_0_0_171.dll [2018-05-10] ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_29_0_0_171.dll [2018-05-10] ()
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] ( Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-12-04] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-12-04] (Google Inc.)
Chrome:
=======
CHR DefaultSearchURL: Default -> hxxp://srchbar.com/?q={searchTerms}
CHR DefaultSuggestURL: Default -> hxxp://srchbar.com/?s={searchTerms}
CHR Profile: C:\Users\Sabrina\AppData\Local\Google\Chrome\User Data\Default [2018-05-17]
CHR Extension: (Slides) - C:\Users\Sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-22]
CHR Extension: (Docs) - C:\Users\Sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-22]
CHR Extension: (Google Drive) - C:\Users\Sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-11-19]
CHR Extension: (Search Manager) - C:\Users\Sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\bahkljhhdeciiaodlkppoonappfnheoi [2018-04-26]
CHR Extension: (YouTube) - C:\Users\Sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-11-19]
CHR Extension: (Recherche Google) - C:\Users\Sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-11-19]
CHR Extension: (Sheets) - C:\Users\Sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-22]
CHR Extension: (McAfee® WebAdvisor) - C:\Users\Sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2018-05-05]
CHR Extension: (Tampermonkey BETA) - C:\Users\Sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcalenpjmijncebpfijmoaglllgpjagf [2018-05-05]
CHR Extension: (Google Docs hors connexion) - C:\Users\Sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-15]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-04-04]
CHR Extension: (Gmail) - C:\Users\Sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-11-19]
CHR Extension: (Chrome Media Router) - C:\Users\Sabrina\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2018-04-26]
CHR HKLM\...\Chrome\Extension: [bahkljhhdeciiaodlkppoonappfnheoi] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - C:\Program Files (x86)\McAfee\SiteAdvisor\McChPlg.crx [2016-04-27]
CHR HKLM\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - C:\Program Files (x86)\Internet Download Manager\IDMGCExt.crx
CHR HKU\S-1-5-21-1844747315-723255016-263140651-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [bahkljhhdeciiaodlkppoonappfnheoi] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [bahkljhhdeciiaodlkppoonappfnheoi] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - C:\Program Files (x86)\McAfee\SiteAdvisor\McChPlg.crx [2016-04-27]
==================== Services (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
R2 AtherosSvc; C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\adminservice.exe [319104 2014-02-26] (Windows (R) Win 7 DDK provider) [Fichier non signé]
R2 CCDMonitorService; C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe [2278688 2017-09-26] (Acer Incorporated)
R3 ePowerSvc; C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe [2573544 2014-03-21] (Acer Incorporated)
R2 GamesAppIntegrationService; C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe [235008 2013-07-17] (TODO:
R2 LMSvc; C:\Program Files\Acer\Acer Launch Manager\LMSvc.exe [459496 2014-03-17] (Acer Incorporate)
S3 McAfee SiteAdvisor Service; C:\Program Files (x86)\McAfee\SiteAdvisor\McSACore.exe [604312 2017-10-16] (McAfee, Inc.)
S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.11.717\McCHSvc.exe [405392 2018-03-27] (McAfee, Inc.)
R2 Mobile Broadband HL Service; C:\ProgramData\MobileBrServ\mbbservice.exe [232288 2012-03-12] ()
R3 QASvc; C:\Program Files\Acer\Acer Quick Access\QASvc.exe [457960 2014-03-22] (Acer Incorporate)
R2 ReviverSoft Smart Monitor Service; C:\Program Files\ReviverSoft\Smart Monitor\ReviverSoft Smart Monitor Service.exe [817960 2018-01-29] (Corel Corporation)
R2 RichVideo; C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe [254512 2012-04-24] ()
R3 RMSvc; C:\Program Files\Acer\Acer Quick Access\RMSvc.exe [449768 2014-03-22] (Acer Incorporate)
R2 TrueKey; C:\Program Files\TrueKey\McAfee.TrueKey.Service.exe [1001920 2018-03-29] (McAfee, Inc.)
R2 TrueKeyScheduler; C:\Program Files\TrueKey\McTkSchedulerService.exe [16928 2018-03-29] (McAfee, Inc.)
S3 TrueKeyServiceHelper; C:\Program Files\TrueKey\McAfee.TrueKey.ServiceHelper.exe [87760 2018-03-29] (McAfee, Inc.)
R3 UEIPSvc; C:\Program Files\Acer\User Experience Improvement Program\Framework\UBTService.exe [222952 2014-01-25] (acer)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [361824 2017-01-13] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [119872 2017-01-13] (Microsoft Corporation)
S2 0000601522463392mcinstcleanup; C:\WINDOWS\TEMP\000060~1.EXE -cleanup -nolog [X]
===================== Pilotes (Avec liste blanche) ======================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
S3 amdkmcsp; C:\WINDOWS\system32\DRIVERS\amdkmcsp.sys [95080 2017-06-12] (Advanced Micro Devices, Inc. )
R0 amdkmpfd; C:\WINDOWS\System32\drivers\amdkmpfd.sys [36608 2013-12-12] (Advanced Micro Devices, Inc.)
R1 amdpsp; C:\WINDOWS\system32\DRIVERS\amdpsp.sys [239976 2017-06-12] (Advanced Micro Devices, Inc. )
R3 athr; C:\WINDOWS\system32\DRIVERS\athwbx.sys [3888640 2014-02-14] (Qualcomm Atheros Communications, Inc.)
R3 AtiHDAudioService; C:\WINDOWS\system32\drivers\AtihdWB6.sys [222720 2013-12-20] (Advanced Micro Devices)
S3 BTATH_LWFLT; C:\WINDOWS\system32\DRIVERS\btath_lwflt.sys [77464 2014-02-26] (Qualcomm Atheros)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [131984 2017-05-18] (Samsung Electronics Co., Ltd.)
R3 LMDriver; C:\WINDOWS\System32\drivers\LMDriver.sys [21360 2013-07-17] (Acer Incorporated)
S0 mfeelamk; C:\WINDOWS\System32\drivers\mfeelamk.sys [82072 2015-09-23] (McAfee, Inc.)
S3 mfesapsn; C:\Program Files (x86)\McAfee\SiteAdvisor\x64\mfesapsn.sys [111608 2017-02-14] (McAfee, Inc.)
S3 ptun0901; C:\WINDOWS\system32\DRIVERS\ptun0901.sys [27136 2014-08-09] (The OpenVPN Project)
R3 RadioShim; C:\WINDOWS\System32\drivers\RadioShim.sys [14680 2013-07-17] (Acer Incorporated)
R3 RTSPER; C:\WINDOWS\system32\DRIVERS\RtsPer.sys [476888 2014-03-21] (Realsil Semiconductor Corporation)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [166288 2017-05-18] (Samsung Electronics Co., Ltd.)
S3 ssudserd; C:\WINDOWS\system32\DRIVERS\ssudserd.sys [203320 2012-02-16] (DEVGURU Co., LTD.(www.devguru.co.kr))
R3 SynRMIHID; C:\WINDOWS\system32\DRIVERS\SynRMIHID.sys [42224 2014-02-19] (Synaptics Incorporated)
S3 usbrndis6; C:\WINDOWS\system32\DRIVERS\usb80236.sys [20992 2015-04-25] (Microsoft Corporation)
S0 WdBoot; C:\WINDOWS\System32\drivers\WdBoot.sys [46600 2017-02-11] (Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\WdFilter.sys [274776 2017-01-13] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [117592 2017-01-13] (Microsoft Corporation)
S3 aswHdsKe; \??\C:\WINDOWS\system32\drivers\aswHdsKe.sys [X]
S3 cpuz136; \??\C:\Users\Sabrina\AppData\Local\Temp\cpuz136\cpuz136_x64.sys [X] <==== ATTENTION
S1 MpKsl0624ae30; \??\C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{F2D5F204-B952-49C4-83EB-A2ED0DD1EE63}\MpKsl0624ae30.sys [X]
==================== NetSvcs (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Un mois - Créés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2018-05-17 11:12 - 2018-05-17 11:12 - 000350416 _____ C:\WINDOWS\Minidump\051718-21125-01.dmp
2018-05-16 21:16 - 2018-05-16 21:17 - 000387496 _____ C:\WINDOWS\Minidump\051618-22671-01.dmp
2018-05-16 20:51 - 2018-05-16 20:52 - 000350440 _____ C:\WINDOWS\Minidump\051618-23703-01.dmp
2018-05-16 19:39 - 2018-05-16 19:39 - 000350464 _____ C:\WINDOWS\Minidump\051618-29171-01.dmp
2018-05-16 19:32 - 2018-05-16 19:33 - 000350440 _____ C:\WINDOWS\Minidump\051618-29156-01.dmp
2018-05-16 13:20 - 2018-05-16 13:20 - 000350440 _____ C:\WINDOWS\Minidump\051618-25343-01.dmp
2018-05-16 12:38 - 2018-05-16 12:39 - 000350376 _____ C:\WINDOWS\Minidump\051618-33562-01.dmp
2018-05-15 21:24 - 2018-05-12 20:12 - 731957012 ____N C:\Users\Sabrina\Desktop\Burn.Out.2017.FRENCH.HDRip.XviD-PREUMS.avi
2018-05-13 20:10 - 2018-04-30 19:27 - 1468063004 ____N C:\Users\Sabrina\Desktop\[ Torrent9.red ] 12.Strong.2018.FRENCH.HDRip.XviD-ACOOL.avi
2018-05-13 20:08 - 2018-05-01 10:21 - 734418368 ____N C:\Users\Sabrina\Desktop\Holy.Goalie.2017.FRENCH.HDRip.XviD-FuN.avi
2018-05-13 20:06 - 2018-05-13 14:58 - 731852346 ____N C:\Users\Sabrina\Desktop\[ www.Torrent9.Red ] Gamba.Ganba.to.Nakamatachi.2015.FRENCH.HDRip.XviD-PREUMS.avi
2018-05-12 15:33 - 2018-05-12 15:01 - 809829970 ____N C:\Users\Sabrina\Desktop\[ www.Torrent9.Red ] Family.Blood.2018.FRENCH.HDRip.XviD-FuN.avi
2018-05-12 15:32 - 2018-05-12 13:39 - 732603668 ____N C:\Users\Sabrina\Desktop\[ www.Torrent9.Red ] L.Echange.Des.Princesses.2017.FRENCH.HDRip.XviD-PREUMS.avi
2018-05-12 13:03 - 2018-05-12 13:03 - 000003918 _____ C:\Users\Sabrina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FRST.lnk
2018-05-12 12:46 - 2018-05-17 11:28 - 000025057 _____ C:\Users\Sabrina\Downloads\FRST.txt
2018-05-12 12:46 - 2018-05-17 11:28 - 000000000 ____D C:\FRST
2018-05-12 12:46 - 2018-05-17 11:27 - 000000000 ____D C:\Users\Sabrina\Downloads\FRST-OlderVersion
2018-05-12 12:30 - 2018-05-12 12:30 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2018-05-12 12:27 - 2018-05-12 12:27 - 000000000 ____D C:\Program Files\Microsoft Silverlight
2018-05-12 12:27 - 2018-05-12 12:27 - 000000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2018-05-12 12:04 - 2018-05-12 09:30 - 732460288 ____N C:\Users\Sabrina\Desktop\[ www.Torrent9.Red ] Stephanie.2017.FRENCH.HDRip.XviD-ACOOL.avi
2018-05-12 12:03 - 2018-05-12 08:13 - 733802460 ____N C:\Users\Sabrina\Desktop\Garde.Alternee.2017.FRENCH.BDRip.XviD.ACOOL.avi
2018-05-09 14:28 - 2018-04-22 20:02 - 000803696 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2018-05-09 14:28 - 2018-04-22 19:06 - 000612600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2018-05-09 14:28 - 2018-04-22 19:04 - 025744896 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2018-05-09 14:28 - 2018-04-22 18:40 - 002902016 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2018-05-09 14:28 - 2018-04-22 18:38 - 000578048 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2018-05-09 14:28 - 2018-04-22 18:32 - 005779456 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2018-05-09 14:28 - 2018-04-22 18:26 - 000814080 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2018-05-09 14:28 - 2018-04-22 18:26 - 000794624 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2018-05-09 14:28 - 2018-04-22 18:24 - 020286464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2018-05-09 14:28 - 2018-04-22 18:04 - 000499712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2018-05-09 14:28 - 2018-04-22 18:00 - 002295296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2018-05-09 14:28 - 2018-04-22 17:57 - 001033216 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcomm.dll
2018-05-09 14:28 - 2018-04-22 17:54 - 000661504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2018-05-09 14:28 - 2018-04-22 17:53 - 000620032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2018-05-09 14:28 - 2018-04-22 17:51 - 000262144 _____ (Microsoft Corporation) C:\WINDOWS\system32\webcheck.dll
2018-05-09 14:28 - 2018-04-22 17:49 - 000809472 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2018-05-09 14:28 - 2018-04-22 17:48 - 015283200 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2018-05-09 14:28 - 2018-04-22 17:46 - 002135552 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2018-05-09 14:28 - 2018-04-22 17:33 - 003241472 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2018-05-09 14:28 - 2018-04-22 17:32 - 000880640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcomm.dll
2018-05-09 14:28 - 2018-04-22 17:31 - 004496896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2018-05-09 14:28 - 2018-04-22 17:29 - 000230400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webcheck.dll
2018-05-09 14:28 - 2018-04-22 17:27 - 000696320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2018-05-09 14:28 - 2018-04-22 17:27 - 000333312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2018-05-09 14:28 - 2018-04-22 17:26 - 013679616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2018-05-09 14:28 - 2018-04-22 17:26 - 002059776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2018-05-09 14:28 - 2018-04-22 17:22 - 001546240 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2018-05-09 14:28 - 2018-04-22 17:11 - 000800768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2018-05-09 14:28 - 2018-04-22 17:08 - 002767872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2018-05-09 14:28 - 2018-04-22 17:04 - 001314304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2018-05-09 14:28 - 2018-04-22 17:03 - 000710144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2018-05-09 14:28 - 2018-04-16 03:55 - 000669696 _____ (Microsoft Corporation) C:\WINDOWS\system32\hhctrl.ocx
2018-05-09 14:28 - 2018-04-16 03:16 - 000536576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hhctrl.ocx
2018-05-09 14:28 - 2018-04-11 12:03 - 007406936 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2018-05-09 14:28 - 2018-04-11 12:02 - 001676056 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2018-05-09 14:28 - 2018-04-11 12:02 - 001536112 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2018-05-09 14:28 - 2018-04-11 05:51 - 004169216 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2018-05-09 14:28 - 2018-04-11 05:27 - 000205312 _____ (Microsoft Corporation) C:\WINDOWS\system32\itircl.dll
2018-05-09 14:28 - 2018-04-11 05:13 - 000179712 _____ (Microsoft Corporation) C:\WINDOWS\system32\itss.dll
2018-05-09 14:28 - 2018-04-11 04:01 - 000165376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\itircl.dll
2018-05-09 14:28 - 2018-04-11 03:50 - 000151040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\itss.dll
2018-05-09 14:28 - 2018-04-08 03:17 - 000445440 _____ (Microsoft Corporation) C:\WINDOWS\system32\certcli.dll
2018-05-09 14:28 - 2018-04-08 02:49 - 000324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certcli.dll
2018-05-09 14:28 - 2018-04-08 02:41 - 000109056 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSpkg.dll
2018-05-09 14:28 - 2018-04-08 02:23 - 000084992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TSpkg.dll
2018-05-09 14:28 - 2018-04-08 02:20 - 001707008 _____ (Microsoft Corporation) C:\WINDOWS\system32\comsvcs.dll
2018-05-09 14:28 - 2018-04-08 02:10 - 001344512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comsvcs.dll
2018-05-09 14:28 - 2018-04-08 02:06 - 000522752 _____ (Microsoft Corporation) C:\WINDOWS\system32\catsrvut.dll
2018-05-09 14:28 - 2018-04-08 02:01 - 000414720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\catsrvut.dll
2018-05-09 14:28 - 2018-04-07 08:27 - 000376656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys
2018-05-09 14:28 - 2018-03-25 02:57 - 001101824 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdvidcrl.dll
2018-05-09 14:28 - 2018-03-25 02:40 - 001171456 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstsc.exe
2018-05-09 14:28 - 2018-03-25 02:34 - 000856064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdvidcrl.dll
2018-05-09 14:28 - 2018-03-25 02:22 - 001086976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstsc.exe
2018-05-09 14:28 - 2018-03-25 01:56 - 007033344 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2018-05-09 14:28 - 2018-03-25 01:54 - 006214144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2018-05-09 14:28 - 2018-03-16 09:29 - 000136904 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2018-05-09 14:28 - 2018-03-11 07:55 - 000137968 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncrypt.dll
2018-05-09 14:28 - 2018-03-11 06:04 - 000120376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncrypt.dll
2018-05-09 14:28 - 2018-03-11 04:51 - 000685568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
2018-05-09 14:28 - 2018-03-11 04:47 - 000066048 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups.dll
2018-05-09 14:28 - 2018-03-11 04:47 - 000052224 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups2.dll
2018-05-09 14:28 - 2018-03-11 04:43 - 000015360 _____ (Microsoft Corporation) C:\WINDOWS\system32\wu.upgrade.ps.dll
2018-05-09 14:28 - 2018-03-11 03:46 - 000840192 _____ (Microsoft Corporation) C:\WINDOWS\system32\netlogon.dll
2018-05-09 14:28 - 2018-03-11 03:44 - 000435200 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2018-05-09 14:28 - 2018-03-11 03:35 - 000696832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netlogon.dll
2018-05-09 14:28 - 2018-03-11 03:35 - 000359424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll
2018-05-09 14:28 - 2018-03-11 03:33 - 003717632 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2018-05-09 14:28 - 2018-03-11 03:22 - 000035840 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapp.exe
2018-05-09 14:28 - 2018-03-11 03:21 - 000140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuwebv.dll
2018-05-09 14:28 - 2018-03-11 03:21 - 000029696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapp.exe
2018-05-09 14:28 - 2018-03-11 03:20 - 000124928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuwebv.dll
2018-05-09 14:28 - 2018-03-11 03:18 - 000726528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2018-05-09 14:28 - 2018-03-11 03:18 - 000409088 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUSettingsProvider.dll
2018-05-09 14:28 - 2018-03-11 03:18 - 000095744 _____ (Microsoft Corporation) C:\WINDOWS\system32\wudriver.dll
2018-05-09 14:28 - 2018-03-11 03:18 - 000081920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wudriver.dll
2018-05-09 14:28 - 2018-03-11 03:17 - 002240512 _____ (Microsoft Corporation) C:\WINDOWS\system32\wucltux.dll
2018-05-09 14:28 - 2018-03-11 03:17 - 000897024 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2018-05-09 14:28 - 2018-03-10 05:57 - 000276816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msiscsi.sys
2018-05-09 14:28 - 2018-03-04 03:24 - 001725952 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdtctm.dll
2018-05-09 14:28 - 2018-03-04 03:18 - 000894976 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdtcprx.dll
2018-05-09 14:28 - 2018-03-04 03:18 - 000322048 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdtcuiu.dll
2018-05-09 14:28 - 2018-03-04 03:15 - 000050688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xolehlp.dll
2018-05-09 14:28 - 2018-03-04 03:04 - 000741888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msdtcprx.dll
2018-05-09 14:28 - 2018-03-04 03:04 - 000265728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msdtcuiu.dll
2018-05-09 14:28 - 2018-02-15 08:45 - 001308336 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll
2018-05-09 14:28 - 2018-02-15 01:47 - 000747520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll
2018-05-09 14:03 - 2018-05-09 14:04 - 001624440 _____ (Tous Les Drivers) C:\Users\Sabrina\Downloads\Mes_Drivers_3.0.4 (2).exe
2018-05-09 13:56 - 2018-05-09 13:56 - 000350416 _____ C:\WINDOWS\Minidump\050918-21109-01.dmp
2018-05-09 13:40 - 2018-05-17 11:27 - 002413056 _____ (Farbar) C:\Users\Sabrina\Downloads\FRST64.exe
2018-05-09 13:35 - 2018-05-09 13:35 - 000350360 _____ C:\WINDOWS\Minidump\050918-38656-01.dmp
2018-05-09 13:20 - 2018-05-17 11:13 - 000000358 _____ C:\WINDOWS\Tasks\Start Driver Reviver for TAINA@Sabrina(logon).job
2018-05-09 13:20 - 2018-05-09 13:20 - 000003452 _____ C:\WINDOWS\System32\Tasks\Start Driver Reviver Schedule
2018-05-09 13:20 - 2018-05-09 13:20 - 000003384 _____ C:\WINDOWS\System32\Tasks\Start Driver Reviver Update
2018-05-09 13:20 - 2018-05-09 13:20 - 000002628 _____ C:\WINDOWS\System32\Tasks\Start Driver Reviver for TAINA@Sabrina(logon)
2018-05-09 13:20 - 2018-05-09 13:20 - 000001011 _____ C:\Users\Public\Desktop\Driver Reviver.lnk
2018-05-09 13:20 - 2018-05-09 13:20 - 000000000 ____D C:\ProgramData\ReviverSoft
2018-05-09 13:20 - 2018-05-09 13:20 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ReviverSoft
2018-05-09 13:20 - 2018-05-09 13:20 - 000000000 ____D C:\Program Files\ReviverSoft
2018-05-09 13:15 - 2018-05-09 13:18 - 016718456 _____ (Corel Corporation) C:\Users\Sabrina\Downloads\DriverReviverSetup_ppc.exe
2018-05-09 13:15 - 2018-05-09 13:16 - 000000000 ____D C:\Users\Sabrina\Desktop\FILM 2018
2018-05-05 13:24 - 2018-05-17 11:12 - 506275665 _____ C:\WINDOWS\MEMORY.DMP
2018-05-05 13:24 - 2018-05-05 13:25 - 000350424 _____ C:\WINDOWS\Minidump\050518-19921-01.dmp
2018-05-03 19:13 - 2018-05-03 19:13 - 000000000 ____D C:\Users\Sabrina\Desktop\PHOTO MESSAGER
2018-05-02 13:10 - 2018-05-02 13:11 - 001624440 _____ (Tous Les Drivers) C:\Users\Sabrina\Downloads\Mes_Drivers_3.0.4.exe
2018-04-27 19:48 - 2018-04-27 19:50 - 016487464 _____ (Corel Corporation) C:\Users\Sabrina\Downloads\wzdu34.exe
==================== Un mois - Modifiés - fichiers et dossiers ========
(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)
2018-05-17 11:19 - 2015-11-19 18:22 - 000003594 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1844747315-723255016-263140651-1001
2018-05-17 11:15 - 2015-11-19 18:23 - 000000000 ___DO C:\Users\Sabrina\OneDrive
2018-05-17 11:13 - 2015-11-19 18:10 - 000000000 ____D C:\Users\Sabrina
2018-05-17 11:13 - 2013-08-23 01:45 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2018-05-17 11:12 - 2015-12-03 15:52 - 000000000 ____D C:\WINDOWS\Minidump
2018-05-17 10:43 - 2015-11-19 18:25 - 000003932 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{B0B25C4E-C9B5-4008-922C-E2FAC2241D0D}
2018-05-16 21:23 - 2014-06-05 21:59 - 000090046 _____ C:\WINDOWS\system32\perfh00C.dat
2018-05-16 21:23 - 2014-06-05 21:59 - 000018088 _____ C:\WINDOWS\system32\perfc00C.dat
2018-05-16 21:23 - 2014-03-18 21:03 - 000174262 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2018-05-16 21:23 - 2013-08-23 00:36 - 000000000 ____D C:\WINDOWS\Inf
2018-05-16 13:38 - 2015-11-20 14:04 - 025364992 ___SH C:\Users\Sabrina\Downloads\Thumbs.db
2018-05-15 21:25 - 2015-12-06 14:08 - 001165824 ___SH C:\Users\Sabrina\Desktop\Thumbs.db
2018-05-12 11:55 - 2013-08-23 01:44 - 000717944 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2018-05-12 11:46 - 2013-08-23 00:25 - 000262144 ___SH C:\WINDOWS\system32\config\BBI
2018-05-10 16:49 - 2017-10-22 18:53 - 141696960 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT-KB890830.exe
2018-05-10 16:49 - 2015-11-29 22:49 - 141696960 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2018-05-10 16:49 - 2015-11-29 22:49 - 000000000 ____D C:\WINDOWS\system32\MRT
2018-05-10 14:26 - 2013-08-23 02:20 - 000000000 ____D C:\WINDOWS\CbsTemp
2018-05-10 13:35 - 2018-03-15 13:35 - 000004632 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player NPAPI Notifier
2018-05-10 13:35 - 2016-12-21 11:35 - 000004460 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2018-05-10 13:34 - 2013-08-23 02:36 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed
2018-05-10 13:34 - 2013-08-23 02:36 - 000000000 ____D C:\WINDOWS\system32\Macromed
2018-05-09 13:19 - 2017-11-04 15:15 - 000000000 ____D C:\Users\Sabrina\Desktop\Dessin animer pour les gosses
2018-05-09 13:17 - 2017-05-27 12:07 - 000000000 ____D C:\Users\Sabrina\Desktop\Films Nico
2018-05-08 14:14 - 2018-03-28 13:44 - 000000000 ____D C:\ProgramData\McAfee Security Scan
2018-05-08 14:02 - 2013-08-23 02:36 - 000000000 ____D C:\WINDOWS\AppReadiness
2018-05-03 20:23 - 2015-11-19 20:30 - 000000000 ____D C:\Users\Sabrina\AppData\Roaming\vlc
2018-05-02 13:02 - 2014-05-16 16:47 - 000004402 _____ C:\WINDOWS\System32\Tasks\ALUAgent
2018-05-02 13:02 - 2014-05-16 16:47 - 000003628 _____ C:\WINDOWS\System32\Tasks\ALU
2018-05-02 13:02 - 2014-05-16 16:47 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acer
2018-05-01 09:39 - 2018-03-17 11:57 - 000835064 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2018-05-01 09:39 - 2018-03-17 11:57 - 000179704 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2018-04-27 18:56 - 2016-08-24 10:29 - 000002246 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2018-04-27 18:56 - 2016-08-24 10:29 - 000002205 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2018-04-26 10:15 - 2018-01-31 10:14 - 000000000 ____D C:\Users\Sabrina\Downloads\Annonces.nc -_files
2018-04-19 19:29 - 2013-08-23 02:36 - 000000000 ____D C:\WINDOWS\rescache
2018-04-17 22:34 - 2015-12-13 12:19 - 000000000 ____D C:\Users\Sabrina\Documents\Bluetooth Folder
2018-04-17 19:40 - 2017-06-02 12:41 - 000000000 ____D C:\Users\Sabrina\AppData\LocalLow\Mozilla
==================== Fichiers à la racine de certains dossiers =======
2016-05-01 12:49 - 2016-05-01 22:25 - 000009728 _____ () C:\Users\Sabrina\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2016-08-24 09:16 - 2016-08-24 09:16 - 000000017 _____ () C:\Users\Sabrina\AppData\Local\resmon.resmoncfg
==================== Bamital & volsnap ======================
(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)
C:\WINDOWS\system32\winlogon.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\wininit.exe => Le fichier est signé numériquement
C:\WINDOWS\explorer.exe => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\explorer.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\svchost.exe => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\svchost.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\services.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\User32.dll => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\User32.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\userinit.exe => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\userinit.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\rpcss.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\dnsapi.dll => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\dnsapi.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\Drivers\volsnap.sys => Le fichier est signé numériquement
LastRegBack: 2018-05-02 13:32
==================== Fin de FRST.txt ============================