Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x86) Version:19-12-2015 Exécuté par TO (administrateur) sur PC-DE-TO (19-12-2015 12:37:20) Exécuté depuis C:\Users\TO\Desktop Profils chargés: TO (Profils disponibles: TO) Platform: Microsoft® Windows Vista™ Édition Familiale Basique Service Pack 2 (X86) Langue: Français (France) Internet Explorer Version 9 (Navigateur par défaut: Chrome) Mode d'amorçage: Normal Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processus (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.) (AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2015\avgrsx.exe (AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2015\avgcsrvx.exe (Microsoft Corporation) C:\Windows\System32\SLsvc.exe (Microsoft Corporation) C:\Windows\System32\wlanext.exe (Google Inc.) C:\Program Files\Google\Update\1.3.29.1\GoogleCrashHandler.exe (Intel Corporation) C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe (AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2015\avgui.exe (Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe (Google) C:\Program Files\Google\Drive\googledrivesync.exe (Dropbox, Inc.) C:\Users\TO\AppData\Roaming\Dropbox\bin\Dropbox.exe (Andrea Electronics Corporation) C:\Windows\System32\AEADISRV.EXE (Agere Systems) C:\Windows\System32\agrsmsvc.exe (AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2015\avgidsagent.exe (AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2015\avgwdsvc.exe (Intel Corporation) C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTmon.exe (InterVideo) C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe (Hewlett-Packard Company) C:\Program Files\Common Files\LightScribe\LSSrvc.exe (AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2015\avgnsx.exe (AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2015\avgemcx.exe (PDF Complete Inc) C:\Program Files\PDF Complete\pdfsvc.exe (TuneUp Software) C:\Windows\System32\TUProgSt.exe (Google) C:\Program Files\Google\Drive\googledrivesync.exe (Microsoft Corporation) C:\Windows\System32\wbem\unsecapp.exe (Mozilla Corporation) C:\Program Files\Mozilla Thunderbird\thunderbird.exe (Hewlett-Packard) C:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Service.exe () C:\Program Files\AVG Web TuneUp\WtuSystemSupport.exe (AVG Secure Search) C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\40.2.4\ToolbarUpdater.exe () C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\40.2.4\loggingserver.exe () C:\Program Files\AVG Web TuneUp\vprot.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Microsoft Corporation) C:\Windows\System32\conime.exe ==================== Registre (Avec liste blanche) =========================== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.) HKLM\...\Run: [IAAnotif] => C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe [178712 2008-04-18] (Intel Corporation) HKLM\...\Run: [AVG_UI] => C:\Program Files\AVG\AVG2015\avgui.exe [3780008 2015-10-30] (AVG Technologies CZ, s.r.o.) HKLM\...\Run: [] => [X] HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [256896 2014-07-25] (Oracle Corporation) HKLM\...\Run: [QuickTime Task] => C:\Program Files\QuickTime\QTTask.exe [421888 2014-01-17] (Apple Inc.) HKLM\...\Run: [vProt] => C:\Program Files\AVG Web TuneUp\vprot.exe [2814864 2015-12-19] () Winlogon\Notify\DeviceNP: C:\windows\system32\DeviceNP.dll [2007-06-08] (Hewlett-Packard Limited) HKU\S-1-5-21-1091579693-3492347612-461701170-1004\...\Run: [Dropbox Update] => C:\Users\TO\AppData\Local\Dropbox\Update\DropboxUpdate.exe [143144 2015-12-14] (Dropbox, Inc.) HKU\S-1-5-21-1091579693-3492347612-461701170-1004\...\Run: [GoogleDriveSync] => C:\Program Files\Google\Drive\googledrivesync.exe [22790776 2015-11-04] (Google) HKU\S-1-5-21-1091579693-3492347612-461701170-1004\...\Policies\Explorer: [NoWinKeys] 1 HKU\S-1-5-21-1091579693-3492347612-461701170-1004\...\MountPoints2: {0c06726a-1f9e-11e4-8730-00226484b638} - F:\HiSuiteDownLoader.exe HKU\S-1-5-21-1091579693-3492347612-461701170-1004\...\MountPoints2: {5fd82680-6189-11de-b196-002100a4863a} - K:\LaunchU3.exe -a HKU\S-1-5-21-1091579693-3492347612-461701170-1004\...\MountPoints2: {87fb2bc9-7d0a-11e3-a0ba-001e101f9843} - F:\AutoRun.exe HKU\S-1-5-21-1091579693-3492347612-461701170-1004\Control Panel\Desktop\\SCRNSAVE.EXE -> none ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files\Google\Drive\googledrivesync32.dll [2015-11-04] (Google) ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files\Google\Drive\googledrivesync32.dll [2015-11-04] (Google) ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files\Google\Drive\googledrivesync32.dll [2015-11-04] (Google) ShellIconOverlayIdentifiers: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\TO\AppData\Roaming\Dropbox\bin\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\TO\AppData\Roaming\Dropbox\bin\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\TO\AppData\Roaming\Dropbox\bin\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [DropboxExt4] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\TO\AppData\Roaming\Dropbox\bin\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.) Startup: C:\Users\TO\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk [2015-12-14] ShortcutTarget: Dropbox.lnk -> C:\Users\TO\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.) ==================== Internet (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.) Tcpip\Parameters: [DhcpNameServer] 212.27.40.240 212.27.40.241 Tcpip\..\Interfaces\{59421C86-6535-4C3E-AECD-5BBC619CB297}: [DhcpNameServer] 212.27.40.240 212.27.40.241 Tcpip\..\Interfaces\{DC2E157A-852A-4EE3-9150-4DCEDAFEB5D3}: [DhcpNameServer] 192.168.1.1 Internet Explorer: ================== HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.com HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com HKU\S-1-5-21-1091579693-3492347612-461701170-1004\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://mysearch.avg.com/?cid={064384DA-8DCF-4D82-9692-42DEB88B38C6}&mid=811bc8c512f847d39699d16b22605fcb-70287c5c0e557a6f5c90d94a5c94205cb086d5a9&lang=fr&ds=AVG&coid=avgtbavg&cmpid=1215av&pr=fr&d=2015-12-19 09:12:57&v=4.2.4.155&pid=wtu&sg=&sap=hp SearchScopes: HKU\S-1-5-21-1091579693-3492347612-461701170-1004 -> Google.fr URL = hxxp://www.google.com/search?hl=fr&q={searchTerms} SearchScopes: HKU\S-1-5-21-1091579693-3492347612-461701170-1004 -> {95B7759C-8C7F-4BF1-B163-73684A933233} URL = hxxps://mysearch.avg.com/search?cid={064384DA-8DCF-4D82-9692-42DEB88B38C6}&mid=811bc8c512f847d39699d16b22605fcb-70287c5c0e557a6f5c90d94a5c94205cb086d5a9&lang=fr&ds=AVG&coid=avgtbavg&cmpid=1215av&pr=fr&d=2015-12-19 09:12:57&v=4.2.4.155&pid=wtu&sg=&sap=dsp&q={searchTerms} BHO: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2013-05-08] (Adobe Systems Incorporated) BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll [2014-08-07] (Oracle Corporation) BHO: AVG Web TuneUp -> {95B7759C-8C7F-4BF1-B163-73684A933233} -> C:\Program Files\AVG Web TuneUp\4.2.4.155\AVG Web TuneUp.dll [2015-12-19] (AVG) BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2010-12-21] (Microsoft Corporation) BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll [2014-08-07] (Oracle Corporation) Toolbar: HKLM - Pas de nom - {0BF43445-2F28-4351-9252-17FE6E806AA0} - Pas de fichier Toolbar: HKU\S-1-5-21-1091579693-3492347612-461701170-1004 -> Pas de nom - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - Pas de fichier DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_51-windows-i586.cab DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} hxxp://fpdownload.macromedia.com/get/flashplayer/current/polarbear/ultrashim.cab DPF: {CAFEEFAC-0017-0000-0021-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_21-windows-i586.cab DPF: {CAFEEFAC-0017-0000-0051-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_51-windows-i586.cab DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_51-windows-i586.cab DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab Handler: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.14.0.8117.0416.dll [2010-04-16] (Microsoft Corporation) Handler: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.14.0.8117.0416.dll [2010-04-16] (Microsoft Corporation) Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll [2014-05-02] (Skype Technologies) FireFox: ======== FF ProfilePath: C:\Users\TO\AppData\Roaming\Mozilla\Firefox\Profiles\lhg69zmg.default-1409927147500 FF Plugin: @adobe.com/FlashPlayer -> C:\windows\system32\Macromed\Flash\NPSWF32_20_0_0_235.dll [2015-12-14] () FF Plugin: @avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin -> C:\Program Files\Common Files\AVG Secure Search\SiteSafetyInstaller\40.2.4\\npsitesafety.dll [Pas de fichier] FF Plugin: @divx.com/DivX Browser Plugin,version=1.0.0 -> C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll [2010-03-10] (DivX,Inc.) FF Plugin: @java.com/DTPlugin,version=10.67.2 -> C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll [2014-08-07] (Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=10.67.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll [2014-08-07] (Oracle Corporation) FF Plugin: @ma-config.com/HardwareDetection -> C:\Program Files\ma-config.com\nphardwaredetection.dll [2009-05-29] (Cybelsoft) FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~4\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation) FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~4\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation) FF Plugin: @microsoft.com/WLPG,version=14.0.8117.0416 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll [2010-04-16] (Microsoft Corporation) FF Plugin: @microsoft.com/WPF,version=3.5 -> c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll [2008-07-29] (Microsoft Corporation) FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-14] (Google Inc.) FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-14] (Google Inc.) FF Plugin: @videolan.org/vlc,version=2.0.5 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2014-02-05] (VideoLAN) FF Plugin: @videolan.org/vlc,version=2.1.2 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2014-02-05] (VideoLAN) FF Plugin: @videolan.org/vlc,version=2.1.3 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2014-02-05] (VideoLAN) FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll [2013-05-08] (Adobe Systems Inc.) FF Plugin: yaxmpb@yahoo.com/YahooActiveXPluginBridge;version=1.0.0.1 -> C:\Program Files\Mozilla Firefox\plugins\npyaxmpb.dll [2007-03-10] (Yahoo! Inc.) FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\np-mswmp.dll [2007-04-10] (Microsoft Corporation) FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nppdf32.dll [2013-05-08] (Adobe Systems Inc.) FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin.dll [2014-08-10] (Apple Inc.) FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin2.dll [2014-08-10] (Apple Inc.) FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin3.dll [2014-08-10] (Apple Inc.) FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin4.dll [2014-08-10] (Apple Inc.) FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin5.dll [2014-08-10] (Apple Inc.) FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npyaxmpb.dll [2007-03-10] (Yahoo! Inc.) FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\wtu-secure-search.xml [2015-12-19] FF Extension: Adblock Plus - C:\Users\TO\AppData\Roaming\Mozilla\Firefox\Profiles\lhg69zmg.default-1409927147500\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2015-12-18] FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension FF Extension: Microsoft .NET Framework Assistant - c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2009-07-29] [non signé] Chrome: ======= CHR HomePage: Default -> mysearch.avg.com/?rvt=1 CHR DefaultSearchURL: Default -> hxxps://mysearch.avg.com/search?rvt=1&sap=dsp&q={searchTerms} CHR DefaultSearchKeyword: Default -> https://mysearch.avg.com CHR DefaultSuggestURL: Default -> hxxps://toolbar.avg.com/acp?q={searchTerms}&o=1 CHR Profile: C:\Users\TO\AppData\Local\Google\Chrome\User Data\Default CHR Extension: (Google Drive) - C:\Users\TO\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-12-18] CHR Extension: (AVG Secure Search) - C:\Users\TO\AppData\Local\Google\Chrome\User Data\Default\Extensions\chfdnecihphmhljaaejmgoiahnihplgn [2015-12-19] CHR Extension: (Google Docs hors connexion) - C:\Users\TO\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-12-18] CHR Extension: (AdBlock) - C:\Users\TO\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2015-12-14] CHR Extension: (Application Launcher for Drive (by Google)) - C:\Users\TO\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2015-12-18] CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\TO\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-12-14] CHR HKU\S-1-5-21-1091579693-3492347612-461701170-1004\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [apdfllckaahabafndbhieahigkjlhalf] - C:\Users\TO\AppData\Local\Google\Drive\user_default\apdfllckaahabafndbhieahigkjlhalf_live.crx [2015-12-17] CHR HKU\S-1-5-21-1091579693-3492347612-461701170-1004\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [chfdnecihphmhljaaejmgoiahnihplgn] - hxxps://clients2.google.com/service/update2/crx CHR HKU\S-1-5-21-1091579693-3492347612-461701170-1004\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh] - hxxps://clients2.google.com/service/update2/crx ==================== Services (Avec liste blanche) ======================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R2 AVGIDSAgent; C:\Program Files\AVG\AVG2015\avgidsagent.exe [3642280 2015-10-30] (AVG Technologies CZ, s.r.o.) R2 avgwd; C:\Program Files\AVG\AVG2015\avgwdsvc.exe [335656 2015-10-30] (AVG Technologies CZ, s.r.o.) S3 FLCDLOCK; C:\Windows\system32\flcdlock.exe [172131 2007-06-08] (Hewlett-Packard Ltd) [Fichier non signé] R2 HP Health Check Service; c:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe [94208 2008-04-15] (Hewlett-Packard) [Fichier non signé] S3 IDriverT; C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe [73728 2004-10-22] (Macrovision Corporation) [Fichier non signé] R2 LightScribeService; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [73728 2008-03-18] (Hewlett-Packard Company) [Fichier non signé] S3 maconfservice; C:\Program Files\ma-config.com\maconfservice.exe [234864 2009-05-29] (CybelSoft) S2 MBAMService; C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe [1135416 2015-10-05] (Malwarebytes) R2 Net Driver HPZ12; C:\windows\system32\HPZinw12.dll [44032 2008-07-18] (Hewlett-Packard) [Fichier non signé] S3 npggsvc; C:\windows\system32\GameMon.des [4868640 2013-08-25] (INCA Internet Co., Ltd.) R2 pdfcDispatcher; C:\Program Files\PDF Complete\pdfsvc.exe [540448 2007-05-08] (PDF Complete Inc) R2 Pml Driver HPZ12; C:\windows\system32\HPZipm12.dll [53760 2008-07-18] (Hewlett-Packard) [Fichier non signé] S3 TuneUp.Defrag; C:\windows\System32\TuneUpDefragService.exe [360192 2009-03-02] (TuneUp Software) R2 TuneUp.ProgramStatisticsSvc; C:\windows\System32\TUProgSt.exe [603904 2009-03-02] (TuneUp Software) R2 vToolbarUpdater40.2.4; C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\40.2.4\ToolbarUpdater.exe [1923984 2015-12-19] (AVG Secure Search) S2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [272952 2008-01-21] (Microsoft Corporation) R2 WtuSystemSupport; C:\Program Files\AVG Web TuneUp\WtuSystemSupport.exe [1164688 2015-12-19] () ===================== Pilotes (Avec liste blanche) ========================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R1 Aspi32; C:\windows\system32\Drivers\Aspi32.sys [25244 1999-09-10] (Adaptec) R2 atksgt; C:\windows\System32\DRIVERS\atksgt.sys [281760 2010-02-25] () R1 Avgdiskx; C:\windows\System32\DRIVERS\avgdiskx.sys [132576 2015-03-11] (AVG Technologies CZ, s.r.o.) R1 AVGIDSDriver; C:\windows\System32\DRIVERS\avgidsdriverx.sys [252336 2015-10-19] (AVG Technologies CZ, s.r.o.) R0 AVGIDSHX; C:\windows\System32\DRIVERS\avgidshx.sys [222640 2015-08-19] (AVG Technologies CZ, s.r.o.) R1 AVGIDSShim; C:\windows\System32\DRIVERS\avgidsshimx.sys [31664 2015-07-23] (AVG Technologies CZ, s.r.o.) R1 Avgldx86; C:\windows\System32\DRIVERS\avgldx86.sys [207328 2015-06-16] (AVG Technologies CZ, s.r.o.) R0 Avglogx; C:\windows\System32\DRIVERS\avglogx.sys [290272 2015-05-07] (AVG Technologies CZ, s.r.o.) R0 Avgmfx86; C:\windows\System32\DRIVERS\avgmfx86.sys [189872 2015-08-04] (AVG Technologies CZ, s.r.o.) R0 Avgrkx86; C:\windows\System32\DRIVERS\avgrkx86.sys [35808 2015-03-20] (AVG Technologies CZ, s.r.o.) R1 Avgtdix; C:\windows\System32\DRIVERS\avgtdix.sys [230832 2015-08-04] (AVG Technologies CZ, s.r.o.) S3 DAMDrv; C:\windows\System32\DRIVERS\DAMDrv.sys [30008 2007-06-08] (Hewlett-Packard Development Company L.P.) [Fichier non signé] S3 Dot4Scan; C:\windows\System32\DRIVERS\Dot4Scan.sys [10752 2008-01-21] (Microsoft Corporation) S3 driverhardwarev2; C:\Program Files\ma-config.com\Drivers\driverhardwarev2.sys [14336 2009-05-29] (CybelSoft) S3 KMWDFILTER; C:\windows\System32\DRIVERS\KMWDFILTER.sys [17408 2008-10-09] (Windows (R) Codename Longhorn DDK provider) R2 lirsgt; C:\windows\System32\DRIVERS\lirsgt.sys [25888 2010-02-25] () S3 mamotou; C:\windows\System32\DRIVERS\mamotou.sys [49399 2005-11-07] (Mobile Action Technology Inc.) [Fichier non signé] R2 MaVctrl; C:\windows\System32\DRIVERS\MaVc2K.sys [11473 2005-08-18] (Mobile Action Technology Inc.) [Fichier non signé] R3 MBAMProtector; C:\windows\system32\drivers\mbam.sys [23256 2015-10-05] (Malwarebytes) S3 MBAMWebAccessControl; C:\windows\system32\drivers\mwac.sys [51928 2015-10-05] (Malwarebytes Corporation) R2 RVIEGVST; C:\Program Files\Roland\Virtual Sound Canvas VST\RVIEg01VST.sys [188276 2001-04-13] (Roland) [Fichier non signé] R0 sptd; C:\windows\System32\Drivers\sptd.sys [320120 2014-06-04] (Duplex Secure Ltd.) S3 synasusb; C:\windows\System32\Drivers\synasusb.sys [23696 2009-06-26] (Steinberg Media Technologies GmbH) S3 teamviewervpn; C:\windows\System32\DRIVERS\teamviewervpn.sys [25088 2010-03-11] (TeamViewer GmbH) S3 US122; C:\windows\System32\Drivers\US122.sys [131968 2007-08-29] (Frontier Design Group, LLC) S3 US122DL; C:\windows\System32\Drivers\US122DL.sys [18304 2007-08-29] (Frontier Design Group) S3 Us122WdmService; C:\windows\System32\Drivers\US122Wdm.sys [39168 2007-08-29] (Frontier Design Group, LLC) S3 btaudio; system32\drivers\btaudio.sys [X] S3 BTDriver; system32\DRIVERS\btport.sys [X] S3 BTKRNL; system32\DRIVERS\btkrnl.sys [X] S3 ewusbnet; system32\DRIVERS\ewusbnet.sys [X] S3 ew_hwusbdev; system32\DRIVERS\ew_hwusbdev.sys [X] S3 huawei_enumerator; system32\DRIVERS\ew_jubusenum.sys [X] S3 hwdatacard; system32\DRIVERS\ewusbmdm.sys [X] S3 hwusbdev; system32\DRIVERS\ewusbdev.sys [X] U5 hw_usbdev; C:\Windows\System32\Drivers\hw_usbdev.sys [102272 2011-10-24] (Huawei Technologies Co., Ltd.) S3 IpInIp; system32\DRIVERS\ipinip.sys [X] S3 mcdbus; system32\DRIVERS\mcdbus.sys [X] S3 NwlnkFlt; system32\DRIVERS\nwlnkflt.sys [X] S3 NwlnkFwd; system32\DRIVERS\nwlnkfwd.sys [X] U3 TrueSight; \??\ [X] S3 USBAAPL; System32\Drivers\usbaapl.sys [X] ==================== NetSvcs (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) ==================== Un mois - Créés - fichiers et dossiers ======== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2015-12-19 11:51 - 2015-12-19 11:54 - 00058531 _____ C:\Users\TO\Desktop\Addition.txt 2015-12-19 11:47 - 2015-12-19 12:37 - 00022880 _____ C:\Users\TO\Desktop\FRST.txt 2015-12-19 11:46 - 2015-12-19 12:37 - 00000000 ____D C:\FRST 2015-12-19 11:45 - 2015-12-19 11:46 - 01721344 _____ (Farbar) C:\Users\TO\Desktop\FRST.exe 2015-12-19 09:13 - 2015-12-19 09:13 - 00000000 ____D C:\Users\TO\AppData\Local\AVG Web TuneUp 2015-12-19 09:13 - 2015-12-19 09:13 - 00000000 ____D C:\ProgramData\AVG Security Toolbar 2015-12-19 09:12 - 2015-12-19 09:13 - 00000000 ____D C:\ProgramData\AVG Web TuneUp 2015-12-19 09:12 - 2015-12-19 09:12 - 00000000 ____D C:\ProgramData\AVG Secure Search 2015-12-19 09:12 - 2015-12-19 09:12 - 00000000 ____D C:\Program Files\Common Files\AVG Secure Search 2015-12-19 09:11 - 2015-12-19 09:12 - 00000000 ____D C:\Program Files\AVG Web TuneUp 2015-12-19 09:09 - 2015-12-19 09:09 - 00000000 ___HD C:\OneDriveTemp 2015-12-18 15:54 - 2015-08-13 15:15 - 00304640 _____ (Microsoft Corporation) C:\windows\system32\Drivers\srv.sys 2015-12-18 15:54 - 2015-08-13 15:15 - 00102912 _____ (Microsoft Corporation) C:\windows\system32\Drivers\srvnet.sys 2015-12-18 15:52 - 2015-07-21 17:07 - 00140224 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ecache.sys 2015-12-18 15:52 - 2015-07-21 17:07 - 00056256 _____ (Microsoft Corporation) C:\windows\system32\Drivers\mountmgr.sys 2015-12-18 15:52 - 2015-07-21 17:03 - 00564224 _____ (Microsoft Corporation) C:\windows\system32\emdmgmt.dll 2015-12-18 15:52 - 2015-07-21 17:03 - 00010752 _____ (Microsoft Corporation) C:\windows\system32\msmmsp.dll 2015-12-18 15:50 - 2015-07-03 17:04 - 01316864 _____ (Microsoft Corporation) C:\windows\system32\ole32.dll 2015-12-18 15:48 - 2015-07-31 20:27 - 00103120 _____ (Microsoft Corporation) C:\windows\system32\PresentationCFFRasterizerNative_v0300.dll 2015-12-18 15:46 - 2015-06-17 17:50 - 02264576 _____ (Microsoft Corporation) C:\windows\system32\msi.dll 2015-12-18 15:46 - 2015-06-17 16:09 - 00073216 _____ (Microsoft Corporation) C:\windows\system32\msiexec.exe 2015-12-18 15:45 - 2015-06-12 17:01 - 00298496 _____ (Microsoft Corporation) C:\windows\system32\gdi32.dll 2015-12-18 15:43 - 2015-04-24 16:54 - 00532480 _____ (Microsoft Corporation) C:\windows\system32\comctl32.dll 2015-12-18 15:41 - 2015-07-10 20:37 - 02067968 _____ (Microsoft Corporation) C:\windows\system32\mstscax.dll 2015-12-18 15:23 - 2015-03-05 03:32 - 00244152 _____ (Microsoft Corporation) C:\windows\system32\clfs.sys 2015-12-18 15:23 - 2015-03-05 03:23 - 00057344 _____ (Microsoft Corporation) C:\windows\system32\clfsw32.dll 2015-12-18 15:22 - 2015-11-06 18:05 - 00627712 _____ (Microsoft Corporation) C:\windows\system32\user32.dll 2015-12-18 15:22 - 2015-11-06 17:32 - 01029120 _____ (Microsoft Corporation) C:\windows\system32\d3d10.dll 2015-12-18 15:22 - 2015-11-06 17:32 - 00219648 _____ (Microsoft Corporation) C:\windows\system32\d3d10_1core.dll 2015-12-18 15:22 - 2015-11-06 17:32 - 00189952 _____ (Microsoft Corporation) C:\windows\system32\d3d10core.dll 2015-12-18 15:22 - 2015-11-06 17:32 - 00160768 _____ (Microsoft Corporation) C:\windows\system32\d3d10_1.dll 2015-12-18 15:22 - 2015-11-06 16:27 - 01172480 _____ (Microsoft Corporation) C:\windows\system32\d3d10warp.dll 2015-12-18 15:22 - 2015-11-06 16:26 - 00486400 _____ (Microsoft Corporation) C:\windows\system32\d3d10level9.dll 2015-12-18 15:22 - 2015-11-06 16:24 - 02068480 _____ (Microsoft Corporation) C:\windows\system32\win32k.sys 2015-12-18 15:22 - 2015-11-06 16:20 - 01073152 _____ (Microsoft Corporation) C:\windows\system32\DWrite.dll 2015-12-18 15:22 - 2015-11-06 16:20 - 00682496 _____ (Microsoft Corporation) C:\windows\system32\d2d1.dll 2015-12-18 15:22 - 2015-11-06 16:19 - 00802304 _____ (Microsoft Corporation) C:\windows\system32\FntCache.dll 2015-12-18 15:06 - 2015-10-13 15:31 - 00273408 _____ (Microsoft Corporation) C:\windows\system32\Drivers\afd.sys 2015-12-18 15:06 - 2015-10-13 15:31 - 00072192 _____ (Microsoft Corporation) C:\windows\system32\Drivers\tdx.sys 2015-12-18 15:05 - 2015-11-02 18:04 - 00179200 _____ (Microsoft Corporation) C:\windows\system32\els.dll 2015-12-18 15:01 - 2015-10-17 17:01 - 00501248 _____ (Microsoft Corporation) C:\windows\system32\kerberos.dll 2015-12-18 14:56 - 2015-07-18 17:03 - 00068608 _____ (Microsoft Corporation) C:\windows\system32\basesrv.dll 2015-12-18 14:49 - 2015-09-02 22:26 - 00034304 _____ (Adobe Systems) C:\windows\system32\atmlib.dll 2015-12-18 14:49 - 2015-09-02 20:54 - 00297472 _____ (Adobe Systems Incorporated) C:\windows\system32\atmfd.dll 2015-12-18 14:27 - 2015-08-05 16:59 - 00602112 _____ (Microsoft Corporation) C:\windows\system32\schedsvc.dll 2015-12-18 14:24 - 2015-10-14 21:22 - 01206192 _____ (Microsoft Corporation) C:\windows\system32\ntdll.dll 2015-12-18 14:24 - 2015-10-14 17:01 - 03606464 _____ (Microsoft Corporation) C:\windows\system32\ntkrnlpa.exe 2015-12-18 14:24 - 2015-10-14 17:01 - 03554752 _____ (Microsoft Corporation) C:\windows\system32\ntoskrnl.exe 2015-12-18 14:24 - 2015-07-21 17:03 - 00049664 _____ (Microsoft Corporation) C:\windows\system32\csrsrv.dll 2015-12-18 14:23 - 2015-07-29 01:46 - 11588096 _____ (Microsoft Corporation) C:\windows\system32\shell32.dll 2015-12-18 14:20 - 2015-12-18 14:20 - 00001300 _____ C:\Users\TO\Desktop\ZHPFixReport.txt 2015-12-18 14:15 - 2015-12-18 14:15 - 00001594 _____ C:\Users\Public\Desktop\ZHPFix.lnk 2015-12-18 14:15 - 2015-12-18 14:15 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ZHP 2015-12-18 13:44 - 2015-07-10 20:37 - 01402368 _____ (Microsoft Corporation) C:\windows\system32\msxml6.dll 2015-12-18 13:44 - 2015-07-10 20:37 - 01253376 _____ (Microsoft Corporation) C:\windows\system32\msxml3.dll 2015-12-18 13:43 - 2015-05-31 09:11 - 00225792 _____ (Microsoft Corporation) C:\windows\system32\cewmdm.dll 2015-12-18 13:23 - 2015-04-11 00:22 - 00279552 _____ (Microsoft Corporation) C:\windows\system32\services.exe 2015-12-18 13:11 - 2015-05-09 00:08 - 00894464 _____ (Microsoft Corporation) C:\windows\system32\kernel32.dll 2015-12-18 13:10 - 2014-09-05 00:27 - 00143360 _____ (Microsoft Corporation) C:\windows\system32\Drivers\fastfat.sys 2015-12-18 12:50 - 2015-10-10 17:02 - 00526272 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ndis.sys 2015-12-18 12:25 - 2015-07-01 16:57 - 00199680 _____ (Microsoft Corporation) C:\windows\system32\WebClnt.dll 2015-12-18 12:24 - 2015-11-10 18:03 - 01208832 _____ (Microsoft Corporation) C:\windows\system32\comsvcs.dll 2015-12-18 12:24 - 2015-11-10 18:03 - 00488448 _____ (Microsoft Corporation) C:\windows\system32\catsrvut.dll 2015-12-18 12:24 - 2015-07-09 15:25 - 00151040 _____ (Microsoft Corporation) C:\windows\system32\notepad.exe 2015-12-18 12:24 - 2015-07-09 15:25 - 00151040 _____ (Microsoft Corporation) C:\windows\notepad.exe 2015-12-18 12:23 - 2015-11-05 08:34 - 00113664 _____ (Microsoft Corporation) C:\windows\system32\Drivers\rmcast.sys 2015-12-18 12:22 - 2015-05-04 23:50 - 00007680 _____ (Microsoft Corporation) C:\windows\system32\spwmp.dll 2015-12-18 12:21 - 2015-05-04 23:51 - 10628608 _____ (Microsoft Corporation) C:\windows\system32\wmp.dll 2015-12-18 12:21 - 2015-05-04 23:50 - 00004096 _____ (Microsoft Corporation) C:\windows\system32\msdxm.ocx 2015-12-18 12:21 - 2015-05-04 23:50 - 00004096 _____ (Microsoft Corporation) C:\windows\system32\dxmasf.dll 2015-12-18 12:21 - 2015-05-04 22:21 - 08147456 _____ (Microsoft Corporation) C:\windows\system32\wmploc.DLL 2015-12-18 12:18 - 2015-09-26 17:05 - 00281600 _____ (Microsoft Corporation) C:\windows\system32\schannel.dll 2015-12-18 12:18 - 2015-09-26 17:04 - 00206336 _____ (Microsoft Corporation) C:\windows\system32\ncrypt.dll 2015-12-18 12:18 - 2015-09-26 14:21 - 00274432 _____ (Microsoft Corporation) C:\windows\system32\bcrypt.dll 2015-12-18 12:18 - 2015-09-22 14:11 - 00440768 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ksecdd.sys 2015-12-18 12:18 - 2015-06-27 17:03 - 00783872 _____ (Microsoft Corporation) C:\windows\system32\rpcrt4.dll 2015-12-18 12:18 - 2015-06-27 17:02 - 00218112 _____ (Microsoft Corporation) C:\windows\system32\msv1_0.dll 2015-12-18 12:18 - 2015-06-27 17:01 - 00801280 _____ (Microsoft Corporation) C:\windows\system32\advapi32.dll 2015-12-18 12:18 - 2015-06-27 15:21 - 00217088 _____ (Microsoft Corporation) C:\windows\system32\Drivers\mrxsmb10.sys 2015-12-18 12:18 - 2015-06-27 15:21 - 00081408 _____ (Microsoft Corporation) C:\windows\system32\Drivers\mrxsmb20.sys 2015-12-18 12:18 - 2015-01-09 01:17 - 00107008 _____ (Microsoft Corporation) C:\windows\system32\Drivers\mrxsmb.sys 2015-12-17 19:05 - 2015-12-18 17:01 - 00106984 _____ C:\Users\TO\Desktop\ZHPDiag.txt 2015-12-17 18:19 - 2015-12-19 10:27 - 00000000 ___RD C:\Users\TO\Google Drive 2015-12-17 18:16 - 2015-12-19 09:09 - 00000000 ___RD C:\Users\TO\OneDrive 2015-12-17 18:16 - 2015-12-17 18:16 - 00001984 _____ C:\Users\TO\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft OneDrive.lnk 2015-12-17 18:16 - 2015-12-17 18:16 - 00001901 _____ C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft OneDrive.lnk 2015-12-17 18:16 - 2015-12-17 18:16 - 00001901 _____ C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft OneDrive.lnk 2015-12-17 18:16 - 2015-12-17 18:16 - 00000000 ____D C:\Program Files\Microsoft OneDrive 2015-12-17 18:14 - 2015-12-17 18:14 - 00001867 _____ C:\Users\Public\Desktop\Google Slides.lnk 2015-12-17 18:14 - 2015-12-17 18:14 - 00001865 _____ C:\Users\Public\Desktop\Google Sheets.lnk 2015-12-17 18:14 - 2015-12-17 18:14 - 00001855 _____ C:\Users\Public\Desktop\Google Docs.lnk 2015-12-17 18:14 - 2015-12-17 18:14 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive 2015-12-17 18:14 - 2015-12-17 18:14 - 00000000 ____D C:\ProgramData\Microsoft OneDrive 2015-12-17 12:57 - 2015-12-18 16:44 - 02026496 _____ C:\Users\TO\ZHPDiag3.exe 2015-12-17 09:50 - 2015-12-17 10:12 - 00013465 _____ C:\Users\TO\Desktop\Nouveau Texte OpenDocument.odt 2015-12-15 22:34 - 2015-12-18 16:44 - 00000723 _____ C:\Users\TO\Desktop\ZHPDiag.lnk 2015-12-15 21:18 - 2015-12-18 14:15 - 00000000 ____D C:\Program Files\ZHPFix 2015-12-15 21:15 - 2015-12-15 21:15 - 03521617 _____ (Nicolas Coolman ) C:\Users\TO\Desktop\ZHPFix.exe 2015-12-15 21:01 - 2015-12-15 21:01 - 00003479 _____ C:\Users\TO\Desktop\ZHPCleaner.txt 2015-12-15 12:41 - 2015-12-15 12:41 - 00000733 _____ C:\Users\TO\Desktop\ZHPCleaner.lnk 2015-12-15 12:39 - 2015-12-15 12:39 - 01943552 _____ C:\Users\TO\Desktop\ZHPCleaner.exe 2015-12-15 08:10 - 2015-12-15 08:10 - 00000000 ____D C:\Users\TO\AppData\Local\Avg 2015-12-15 00:59 - 2015-01-29 02:35 - 00975360 _____ (Microsoft Corporation) C:\windows\system32\WindowsCodecs.dll 2015-12-15 00:59 - 2015-01-29 02:35 - 00369664 _____ (Microsoft Corporation) C:\windows\system32\WMPhoto.dll 2015-12-15 00:57 - 2014-06-15 23:18 - 01131664 _____ (Microsoft Corporation) C:\windows\system32\dfshim.dll 2015-12-15 00:57 - 2014-06-13 19:22 - 00156824 _____ (Microsoft Corporation) C:\windows\system32\mscorier.dll 2015-12-15 00:57 - 2014-06-13 19:22 - 00081560 _____ (Microsoft Corporation) C:\windows\system32\mscories.dll 2015-12-15 00:52 - 2014-10-10 02:01 - 00449536 _____ (Microsoft Corporation) C:\windows\system32\termsrv.dll 2015-12-15 00:52 - 2014-10-10 02:00 - 00146432 _____ (Microsoft Corporation) C:\windows\system32\msaudite.dll 2015-12-15 00:52 - 2014-10-10 00:22 - 00619520 _____ (Microsoft Corporation) C:\windows\system32\adtschema.dll 2015-12-15 00:51 - 2014-12-19 01:25 - 00115200 _____ (Microsoft Corporation) C:\windows\system32\Drivers\mrxdav.sys 2015-12-15 00:40 - 2014-08-27 01:55 - 00002048 _____ (Microsoft Corporation) C:\windows\system32\msxml3r.dll 2015-12-15 00:39 - 2014-10-24 02:04 - 00067072 _____ (Microsoft Corporation) C:\windows\system32\packager.dll 2015-12-15 00:38 - 2015-01-09 01:18 - 00064000 _____ (Microsoft Corporation) C:\windows\system32\smss.exe 2015-12-15 00:37 - 2015-01-21 03:02 - 00807936 _____ (Microsoft Corporation) C:\windows\system32\msctf.dll 2015-12-15 00:37 - 2014-08-12 03:25 - 00729600 _____ (Microsoft Corporation) C:\windows\system32\IMJP10K.DLL 2015-12-15 00:35 - 2014-10-10 02:00 - 01259008 _____ (Microsoft Corporation) C:\windows\system32\lsasrv.dll 2015-12-15 00:35 - 2014-10-03 02:18 - 00274432 _____ (Microsoft Corporation) C:\windows\system32\AUDIOKSE.dll 2015-12-15 00:35 - 2014-10-03 02:17 - 00396800 _____ (Microsoft Corporation) C:\windows\system32\AudioEng.dll 2015-12-15 00:35 - 2014-10-03 02:17 - 00316928 _____ (Microsoft Corporation) C:\windows\system32\audiosrv.dll 2015-12-15 00:35 - 2014-10-03 02:17 - 00170496 _____ (Microsoft Corporation) C:\windows\system32\EncDump.dll 2015-12-15 00:34 - 2014-12-06 04:14 - 00174080 _____ (Microsoft Corporation) C:\windows\system32\nlasvc.dll 2015-12-15 00:34 - 2014-12-06 04:14 - 00093184 _____ (Microsoft Corporation) C:\windows\system32\ncsi.dll 2015-12-15 00:34 - 2014-12-06 04:14 - 00048640 _____ (Microsoft Corporation) C:\windows\system32\nlaapi.dll 2015-12-15 00:33 - 2014-10-18 02:08 - 00564224 _____ (Microsoft Corporation) C:\windows\system32\oleaut32.dll 2015-12-15 00:32 - 2014-12-08 02:59 - 00306176 _____ (Microsoft Corporation) C:\windows\system32\scesrv.dll 2015-12-15 00:14 - 2015-11-12 21:39 - 01814528 _____ (Microsoft Corporation) C:\windows\system32\jscript9.dll 2015-12-15 00:14 - 2015-11-12 21:37 - 12389376 _____ (Microsoft Corporation) C:\windows\system32\mshtml.dll 2015-12-15 00:14 - 2015-11-12 21:36 - 00367616 _____ (Microsoft Corporation) C:\windows\system32\html.iec 2015-12-15 00:14 - 2015-11-12 21:34 - 09753088 _____ (Microsoft Corporation) C:\windows\system32\ieframe.dll 2015-12-15 00:14 - 2015-11-12 21:34 - 01140224 _____ (Microsoft Corporation) C:\windows\system32\urlmon.dll 2015-12-15 00:14 - 2015-11-12 21:33 - 01129472 _____ (Microsoft Corporation) C:\windows\system32\wininet.dll 2015-12-15 00:14 - 2015-11-12 21:32 - 01804288 _____ (Microsoft Corporation) C:\windows\system32\iertutil.dll 2015-12-15 00:14 - 2015-11-12 21:32 - 01427968 _____ (Microsoft Corporation) C:\windows\system32\inetcpl.cpl 2015-12-15 00:14 - 2015-11-12 21:32 - 00718848 _____ (Microsoft Corporation) C:\windows\system32\jscript.dll 2015-12-15 00:14 - 2015-11-12 21:32 - 00607744 _____ (Microsoft Corporation) C:\windows\system32\msfeeds.dll 2015-12-15 00:14 - 2015-11-12 21:32 - 00424448 _____ (Microsoft Corporation) C:\windows\system32\vbscript.dll 2015-12-15 00:14 - 2015-11-12 21:32 - 00231936 _____ (Microsoft Corporation) C:\windows\system32\url.dll 2015-12-15 00:14 - 2015-11-12 21:32 - 00142848 _____ (Microsoft Corporation) C:\windows\system32\ieUnatt.exe 2015-12-15 00:14 - 2015-11-12 21:32 - 00065536 _____ (Microsoft Corporation) C:\windows\system32\jsproxy.dll 2015-12-15 00:14 - 2015-11-12 21:32 - 00041472 _____ (Microsoft Corporation) C:\windows\system32\msfeedsbs.dll 2015-12-15 00:14 - 2015-11-12 21:32 - 00011776 _____ (Microsoft Corporation) C:\windows\system32\mshta.exe 2015-12-15 00:14 - 2015-11-12 21:31 - 02382848 _____ (Microsoft Corporation) C:\windows\system32\mshtml.tlb 2015-12-15 00:14 - 2015-11-12 21:31 - 00353792 _____ (Microsoft Corporation) C:\windows\system32\dxtmsft.dll 2015-12-15 00:14 - 2015-11-12 21:31 - 00223232 _____ (Microsoft Corporation) C:\windows\system32\dxtrans.dll 2015-12-15 00:14 - 2015-11-12 21:31 - 00176640 _____ (Microsoft Corporation) C:\windows\system32\ieui.dll 2015-12-15 00:14 - 2015-11-12 21:31 - 00073216 _____ (Microsoft Corporation) C:\windows\system32\mshtmled.dll 2015-12-15 00:14 - 2015-11-12 21:31 - 00010752 _____ (Microsoft Corporation) C:\windows\system32\msfeedssync.exe 2015-12-14 20:23 - 2015-12-14 20:24 - 00170200 _____ (Malwarebytes) C:\windows\system32\Drivers\MBAMSwissArmy.sys 2015-12-14 20:17 - 2015-12-14 20:17 - 00000859 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk 2015-12-14 20:16 - 2015-12-14 20:17 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware 2015-12-14 20:14 - 2015-12-14 20:15 - 00000000 ____D C:\Program Files\Malwarebytes Anti-Malware 2015-12-14 20:14 - 2015-10-05 09:50 - 00094936 _____ (Malwarebytes) C:\windows\system32\Drivers\mbamchameleon.sys 2015-12-14 20:14 - 2015-10-05 09:50 - 00051928 _____ (Malwarebytes Corporation) C:\windows\system32\Drivers\mwac.sys 2015-12-14 20:14 - 2015-10-05 09:50 - 00023256 _____ (Malwarebytes) C:\windows\system32\Drivers\mbam.sys 2015-12-14 16:48 - 2015-12-14 16:48 - 00000000 ____D C:\Users\TO\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox 2015-12-14 16:44 - 2015-12-19 11:49 - 00001184 _____ C:\windows\Tasks\DropboxUpdateTaskUserS-1-5-21-1091579693-3492347612-461701170-1004UA.job 2015-12-14 16:44 - 2015-12-18 16:49 - 00001132 _____ C:\windows\Tasks\DropboxUpdateTaskUserS-1-5-21-1091579693-3492347612-461701170-1004Core.job 2015-12-14 16:43 - 2015-12-14 16:43 - 00000000 ____D C:\Users\TO\AppData\Local\Dropbox 2015-12-14 16:43 - 2015-12-14 16:43 - 00000000 ____D C:\ProgramData\Dropbox ==================== Un mois - Modifiés - fichiers et dossiers ======== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2015-12-19 12:28 - 2014-06-11 13:08 - 00001056 _____ C:\windows\Tasks\GoogleUpdateTaskMachineUA.job 2015-12-19 12:05 - 2013-11-18 23:47 - 00001002 _____ C:\windows\Tasks\Adobe Flash Player Updater.job 2015-12-19 11:47 - 2006-11-02 12:18 - 00000000 ____D C:\Windows 2015-12-19 11:14 - 2014-02-25 21:03 - 00000000 ____D C:\Users\TO\Desktop\Documents\Admin 2015-12-19 11:06 - 2006-11-02 13:45 - 00003616 _____ C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0 2015-12-19 11:06 - 2006-11-02 13:45 - 00003616 _____ C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0 2015-12-19 10:21 - 2013-09-14 03:56 - 00000000 ____D C:\ProgramData\MFAData 2015-12-19 09:15 - 2008-04-16 16:33 - 01683604 _____ C:\windows\system32\PerfStringBackup.INI 2015-12-19 09:15 - 2008-04-16 15:18 - 00747026 _____ C:\windows\system32\perfh00C.dat 2015-12-19 09:15 - 2008-04-16 15:18 - 00157346 _____ C:\windows\system32\perfc00C.dat 2015-12-19 09:15 - 2006-11-02 12:18 - 00000000 ____D C:\windows\inf 2015-12-19 09:13 - 2015-01-02 22:26 - 00000000 ____D C:\Program Files\Mozilla Firefox 2015-12-19 09:10 - 2014-01-12 16:26 - 00000000 ___RD C:\Users\TO\Dropbox 2015-12-19 09:09 - 2010-11-25 16:51 - 00000000 ____D C:\Users\TO\AppData\Roaming\Dropbox 2015-12-19 09:06 - 2014-06-11 13:08 - 00001052 _____ C:\windows\Tasks\GoogleUpdateTaskMachineCore.job 2015-12-19 09:06 - 2006-11-02 13:58 - 00000006 ____H C:\windows\Tasks\SA.DAT 2015-12-19 00:07 - 2006-11-02 13:58 - 00032476 _____ C:\windows\Tasks\SCHEDLGU.TXT 2015-12-18 17:13 - 2006-11-02 12:18 - 00000000 ____D C:\windows\rescache 2015-12-18 16:46 - 2014-10-14 09:11 - 00000000 ____D C:\Users\TO\AppData\Roaming\ZHP 2015-12-18 16:44 - 2009-03-01 16:29 - 00000000 ____D C:\Users\TO 2015-12-18 16:04 - 2014-08-17 10:54 - 02660640 _____ C:\windows\system32\FNTCACHE.DAT 2015-12-18 15:57 - 2006-11-02 13:35 - 00000000 ____D C:\windows\system32\XPSViewer 2015-12-18 15:11 - 2013-10-28 21:51 - 00000000 ____D C:\Users\TO\AppData\Roaming\Skype 2015-12-18 13:09 - 2013-10-28 21:50 - 00000000 ____D C:\ProgramData\Skype 2015-12-18 12:17 - 2013-08-14 18:58 - 00000000 ____D C:\windows\system32\MRT 2015-12-17 18:14 - 2009-07-21 22:22 - 00000000 ____D C:\Users\TO\AppData\Local\Google 2015-12-17 18:13 - 2009-07-21 22:22 - 00000000 ____D C:\Program Files\Google 2015-12-17 18:11 - 2014-06-11 13:21 - 00001929 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2015-12-15 08:14 - 2014-10-23 15:09 - 00000816 _____ C:\Users\Public\Desktop\AVG 2015.lnk 2015-12-15 08:14 - 2014-03-24 10:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG 2015-12-15 01:03 - 2014-01-03 21:54 - 00000000 ____D C:\windows\ERUNT 2015-12-14 18:05 - 2013-11-18 23:47 - 00796864 _____ (Adobe Systems Incorporated) C:\windows\system32\FlashPlayerApp.exe 2015-12-14 18:05 - 2013-11-18 23:47 - 00142528 _____ (Adobe Systems Incorporated) C:\windows\system32\FlashPlayerCPLApp.cpl 2015-11-23 19:09 - 2006-11-02 11:24 - 137798368 _____ (Microsoft Corporation) C:\windows\system32\mrt.exe ==================== Fichiers à la racine de certains dossiers ======= 2009-04-17 21:46 - 2009-04-17 21:47 - 19875528 _____ ( ) C:\Program Files\coolpaie_SP_3.3.0.68.exe 2013-10-12 02:38 - 2013-10-12 02:38 - 50053120 _____ () C:\Program Files\GUTCB89.tmp 2009-04-17 21:23 - 2009-04-17 21:23 - 7869591 _____ () C:\Program Files\Podmailing_Setup_0_11_2.exe 2009-03-12 13:07 - 2011-01-24 08:29 - 0193038 _____ () C:\Users\TO\AppData\Roaming\UserTile.png 2009-03-01 16:43 - 2009-03-01 16:43 - 0000000 _____ () C:\Users\TO\AppData\Local\AtStart.txt 2010-08-21 20:04 - 2014-06-27 17:48 - 0000680 _____ () C:\Users\TO\AppData\Local\d3d9caps.dat 2009-03-02 14:34 - 2009-10-20 19:58 - 0235008 _____ () C:\Users\TO\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini 2009-03-01 16:43 - 2009-03-01 16:43 - 0000000 _____ () C:\Users\TO\AppData\Local\DSwitch.txt 2009-03-05 11:52 - 2013-03-04 03:41 - 0000000 _____ () C:\Users\TO\AppData\Local\FnF4.txt 2013-12-20 18:47 - 2013-12-20 18:47 - 0000090 _____ () C:\Users\TO\AppData\Local\fusioncache.dat 2009-03-01 16:43 - 2009-03-01 16:43 - 0000000 _____ () C:\Users\TO\AppData\Local\QSwitch.txt 2008-02-05 12:28 - 2008-02-05 12:28 - 0000051 _____ () C:\Users\TO\AppData\Local\setup.txt 2014-03-19 12:25 - 2014-03-19 12:25 - 0000057 _____ () C:\ProgramData\Ament.ini 2013-08-12 19:09 - 2013-11-12 15:15 - 0005988 _____ () C:\ProgramData\hpzinstall.log Fichiers à déplacer ou supprimer: ==================== C:\Users\TO\ZHPDiag3.exe ==================== Bamital & volsnap ================= (Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.) C:\windows\explorer.exe => Le fichier est signé numériquement C:\windows\system32\winlogon.exe => Le fichier est signé numériquement C:\windows\system32\wininit.exe => Le fichier est signé numériquement C:\windows\system32\svchost.exe => Le fichier est signé numériquement C:\windows\system32\services.exe => Le fichier est signé numériquement C:\windows\system32\User32.dll => Le fichier est signé numériquement C:\windows\system32\userinit.exe => Le fichier est signé numériquement C:\windows\system32\rpcss.dll => Le fichier est signé numériquement C:\windows\system32\dnsapi.dll => Le fichier est signé numériquement C:\windows\system32\Drivers\volsnap.sys => Le fichier est signé numériquement