Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version:05-03-2016 01 Exécuté par Benjamin (administrateur) sur NOUS (04-04-2016 21:02:51) Exécuté depuis C:\Users\Benjamin\AppData\Local\Microsoft\Windows\INetCache\IE\NK7PRMGY Profils chargés: Benjamin (Profils disponibles: Benjamin) Platform: Windows 8.1 (X64) Langue: Français (France) Internet Explorer Version 11 (Navigateur par défaut: IE) Mode d'amorçage: Normal Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processus (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.) (AMD) C:\Windows\System32\atiesrxx.exe (AMD) C:\Windows\System32\atieclxx.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe (Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe (Windows (R) Win 7 DDK provider) C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\AdminService.exe () C:\Program Files (x86)\Orange\Business everywhere pro\{9793c2b3-a20c-4aee-a504-f8dfb853dd05}\BEWConfigSrv.exe (Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe (ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDService.exe (Garmin Ltd. or its subsidiaries) C:\Program Files (x86)\Garmin\Device Interaction Service\GarminService.exe (IObit) C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe (Acer Incorporate) C:\Program Files\Packard Bell\Packard Bell Launch Manager\LMSvc.exe (IObit) C:\Program Files (x86)\IObit\Start Menu 8\StartMenuServices.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe (ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe (IObit) C:\Program Files (x86)\IObit\Start Menu 8\StartMenu8.exe (ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDTouch.exe (ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe (Acer Incorporate) C:\Program Files\Packard Bell\Packard Bell Launch Manager\LMEvent.exe (Acer Incorporate) C:\Program Files\Packard Bell\Packard Bell Quick Access\QASvc.exe (Acer Incorporate) C:\Program Files\Packard Bell\Packard Bell Launch Manager\LMTray.exe (Acer Incorporate) C:\Program Files\Packard Bell\Packard Bell Quick Access\RMSvc.exe (IObit) C:\Program Files (x86)\IObit\Start Menu 8\StartMenu_Hook.exe (Acer Incorporate) C:\Program Files\Packard Bell\Packard Bell Quick Access\QAEvent.exe (Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe (IObit) C:\Program Files (x86)\IObit\Start Menu 8\InstallServices.exe (Acer Incorporate) C:\Program Files\Packard Bell\Packard Bell Quick Access\QAMsg.exe (Acer Incorporate) C:\Program Files\Packard Bell\Packard Bell Quick Access\QuickAccess.exe (Acer Incorporated) C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerTray.exe (Microsoft Corporation) C:\Windows\System32\SkyDrive.exe (Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe (Qualcomm®Atheros®) C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe () C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\ActivateDesktop.exe (Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe (Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe (Acer Incorporated) C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerSvc.exe (Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe () C:\Program Files (x86)\Orange\Business everywhere pro\{9793c2b3-a20c-4aee-a504-f8dfb853dd05}\BusinessEverywhere.exe (Acer Incorporated) C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerEvent.exe () C:\Program Files (x86)\Orange\Business everywhere pro\{9793c2b3-a20c-4aee-a504-f8dfb853dd05}\SMSNotifier.exe (Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe (Microsoft Corporation) C:\Windows\splwow64.exe (Microsoft Corporation) C:\Program Files (x86)\Windows Live\Mail\wlmail.exe (Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office12\WINWORD.EXE (Microsoft Corporation) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe ==================== Registre (Avec liste blanche) =========================== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.) HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [2890056 2013-09-06] (ELAN Microelectronics Corp.) HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13647576 2013-08-27] (Realtek Semiconductor) HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [170256 2015-08-13] (Apple Inc.) HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [766208 2013-09-25] (Advanced Micro Devices, Inc.) HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [6111312 2015-11-09] (AVAST Software) HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [597552 2015-08-04] (Oracle Corporation) HKLM-x32\...\Run: [Start_BusinessEverywhere_{9793c2b3-a20c-4aee-a504-f8dfb853dd05}] => C:\Program Files (x86)\Orange\Business everywhere pro\{9793c2b3-a20c-4aee-a504-f8dfb853dd05}\BusinessEverywhere.exe [5115872 2011-11-07] () HKLM-x32\...\Run: [Start_Update_{9793c2b3-a20c-4aee-a504-f8dfb853dd05}] => C:\Program Files (x86)\Orange\Business everywhere pro\{9793c2b3-a20c-4aee-a504-f8dfb853dd05}\UpdteApp.exe [950728 2011-11-07] () HKLM-x32\...\Run: [Start_SMSNotifier_{9793c2b3-a20c-4aee-a504-f8dfb853dd05}] => C:\Program Files (x86)\Orange\Business everywhere pro\{9793c2b3-a20c-4aee-a504-f8dfb853dd05}\SMSNotifier.exe [1575888 2011-11-07] () HKLM\...\Policies\Explorer\Run: [BtvStack] => C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe [132736 2013-09-07] (Qualcomm®Atheros®) HKU\S-1-5-21-2074194366-1924103451-35987768-1001\...\Run: [Screenpresso] => C:\Users\Benjamin\AppData\Local\Learnpulse\Screenpresso\Screenpresso.exe [10985488 2014-11-18] (Learnpulse) HKU\S-1-5-21-2074194366-1924103451-35987768-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [6501656 2014-10-30] (Piriform Ltd) HKU\S-1-5-21-2074194366-1924103451-35987768-1001\...\Run: [GarminExpressTrayApp] => C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe [1403304 2016-02-16] (Garmin Ltd. or its subsidiaries) HKU\S-1-5-21-2074194366-1924103451-35987768-1001\...\RunOnce: [Application Restart #1] => C:\Users\Benjamin\AppData\Local\Pokki\Engine\HostAppService.exe --disable-internal-flash --noerrdialogs --no-message-box --disable-extensions --disable-web-security --disable-web-resources --disable- (l'élément de données a 555 caractères en plus). HKU\S-1-5-21-2074194366-1924103451-35987768-1001\...\MountPoints2: {a55a60c5-acb5-11e5-8341-28e347c749a4} - "F:\Setup.exe" ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2015-08-02] (AVAST Software) CHR HKLM\SOFTWARE\Policies\Google: Restriction <======= ATTENTION ==================== Internet (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.) Hosts: Il y a plus d'un élément dans hosts. Voir la section Hosts de Addition.txt Tcpip\Parameters: [DhcpNameServer] 212.27.40.240 212.27.40.241 Tcpip\..\Interfaces\{41B2E4C5-1712-4F37-AC2B-FDB3B2BBB36A}: [DhcpNameServer] 192.11.128.24 Tcpip\..\Interfaces\{55BF9BA1-7D8A-4AEC-A519-4DE16CAB3CF9}: [NameServer] 8.8.8.8,8.8.4.4 Tcpip\..\Interfaces\{55BF9BA1-7D8A-4AEC-A519-4DE16CAB3CF9}: [DhcpNameServer] 212.27.40.240 212.27.40.241 ManualProxies: Internet Explorer: ================== HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.google.com/?trackid=sp-006 HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = www.google.com HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxps://www.google.com/search?trackid=sp-006&q={searchTerms} HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = HKU\S-1-5-21-2074194366-1924103451-35987768-1001\Software\Microsoft\Internet Explorer\Main,Search Page = hxxps://www.google.com/search?trackid=sp-006&q={searchTerms} HKU\S-1-5-21-2074194366-1924103451-35987768-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.google.com/ HKU\S-1-5-21-2074194366-1924103451-35987768-1001\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxps://www.google.com/?trackid=sp-006 SearchScopes: HKLM-x32 -> DefaultScope {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = hxxps://www.google.com/search?trackid=sp-006&q={searchTerms} SearchScopes: HKLM-x32 -> {9CB96984-43C3-4D44-90EF-01466EFCF7BB} URL = hxxps://fr.search.yahoo.com/yhs/search?type=avastbcl&hspart=avast&hsimp=yhs-001&p={searchTerms} SearchScopes: HKLM-x32 -> {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = hxxps://www.google.com/search?trackid=sp-006&q={searchTerms} SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-21-2074194366-1924103451-35987768-1001 -> DefaultScope {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = hxxps://www.google.com/search?trackid=sp-006&q={searchTerms} SearchScopes: HKU\S-1-5-21-2074194366-1924103451-35987768-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-21-2074194366-1924103451-35987768-1001 -> {9F1EF986-E4ED-4DA6-8F19-113D3D56E0EB} URL = hxxp://www.calendrier.dusportif.fr/recherche?partialsearch={searchTerms}&utm_medium=toolbar SearchScopes: HKU\S-1-5-21-2074194366-1924103451-35987768-1001 -> {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = hxxps://www.google.com/search?trackid=sp-006&q={searchTerms} BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2015-08-02] (AVAST Software) BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_60\bin\ssv.dll [2015-10-09] (Oracle Corporation) BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-08-02] (AVAST Software) BHO-x32: Windows Live Messenger Companion Helper -> {9FDDE16B-836F-4806-AB1F-1455CBEFF289} -> C:\Program Files (x86)\Windows Live\Companion\companioncore.dll [2012-03-08] (Microsoft Corporation) BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_60\bin\jp2ssv.dll [2015-10-09] (Oracle Corporation) Handler: livecall - {828030A1-22C1-4009-854F-8E305202313F} - Pas de fichier Handler: msnim - {828030A1-22C1-4009-854F-8E305202313F} - Pas de fichier StartMenuInternet: IEXPLORE.EXE - iexplore.exe FireFox: ======== FF ProfilePath: C:\Users\Benjamin\AppData\Roaming\Mozilla\Firefox\Profiles\wnjpnu22.default FF Homepage: hxxp://www.google.fr/ FF DefaultSearchEngine: Yahoo! FF SelectedSearchEngine: Yahoo! FF Plugin: @garmin.com/GpsControl -> C:\Program Files\Garmin GPS Plugin\npGarmin.dll [2014-03-31] (GARMIN Corp.) FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-12] ( Microsoft Corporation) FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2015-07-30] () FF Plugin-x32: @garmin.com/GpsControl -> C:\Program Files (x86)\Garmin GPS Plugin\npGarmin.dll [2014-03-31] (GARMIN Corp.) FF Plugin-x32: @java.com/DTPlugin,version=11.60.2 -> C:\Program Files (x86)\Java\jre1.8.0_60\bin\dtplugin\npDeployJava1.dll [2015-10-09] (Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=11.60.2 -> C:\Program Files (x86)\Java\jre1.8.0_60\bin\plugin2\npjp2.dll [2015-10-09] (Oracle Corporation) FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-12] ( Microsoft Corporation) FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation) FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3555.0308 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation) FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll [2013-07-13] () FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2015-12-11] Chrome: ======= CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2015-08-02] ==================== Services (Avec liste blanche) ======================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [77128 2015-05-29] (Apple Inc.) R2 AtherosSvc; C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\adminservice.exe [312448 2013-09-07] (Windows (R) Win 7 DDK provider) [Fichier non signé] R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [146600 2015-08-02] (AVAST Software) R2 BEWConfigSrv; C:\Program Files (x86)\Orange\Business everywhere pro\{9793c2b3-a20c-4aee-a504-f8dfb853dd05}\BEWConfigSrv.exe [165840 2011-11-07] () [Fichier non signé] R3 ePowerSvc; C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerSvc.exe [663592 2013-07-05] (Acer Incorporated) R2 ETDService; C:\Program Files\Elantech\ETDService.exe [101192 2013-09-06] (ELAN Microelectronics Corp.) R2 Garmin Device Interaction Service; C:\Program Files (x86)\Garmin\Device Interaction Service\GarminService.exe [846352 2016-02-16] (Garmin Ltd. or its subsidiaries) R2 LiveUpdateSvc; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2909472 2015-08-02] (IObit) R2 LMSvc; C:\Program Files\Packard Bell\Packard Bell Launch Manager\LMSvc.exe [457768 2013-08-03] (Acer Incorporate) S2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1135416 2015-10-05] (Malwarebytes) R2 Net Driver HPZ12; C:\Windows\System32\HPZinw12.dll [71680 2009-05-14] (Hewlett-Packard) [Fichier non signé] R2 Pml Driver HPZ12; C:\Windows\System32\HPZipm12.dll [89600 2009-05-14] (Hewlett-Packard) [Fichier non signé] R3 QASvc; C:\Program Files\Packard Bell\Packard Bell Quick Access\QASvc.exe [457768 2013-08-02] (Acer Incorporate) R3 RMSvc; C:\Program Files\Packard Bell\Packard Bell Quick Access\RMSvc.exe [448040 2013-08-02] (Acer Incorporate) R2 StartMenuService; C:\Program Files (x86)\IObit\Start Menu 8\StartMenuServices.exe [1056544 2015-01-08] (IObit) S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [366552 2015-07-07] (Microsoft Corporation) S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2015-07-07] (Microsoft Corporation) S2 SearchProtectionService; C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.SearchProtect.WinService.exe [X] ===================== Pilotes (Avec liste blanche) ========================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R2 APXACC; C:\Windows\system32\DRIVERS\appexDrv.sys [219360 2013-04-18] (AppEx Networks Corporation) R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [28656 2015-08-02] (AVAST Software) R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [90968 2015-08-02] (AVAST Software) R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93528 2015-08-02] (AVAST Software) R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65224 2015-08-02] (AVAST Software) R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1059656 2015-11-09] (AVAST Software) R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [449992 2015-11-09] (AVAST Software) R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [150672 2015-08-02] (AVAST Software) R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [274808 2015-08-02] (AVAST Software) R3 athr; C:\Windows\system32\DRIVERS\athwbx.sys [3859968 2013-08-15] (Qualcomm Atheros Communications, Inc.) R3 AtiHDAudioService; C:\Windows\system32\drivers\AtihdWB6.sys [138240 2013-06-23] (Advanced Micro Devices) S3 BTATH_LWFLT; C:\Windows\system32\DRIVERS\btath_lwflt.sys [77464 2013-09-07] (Qualcomm Atheros) S3 dot4; C:\Windows\system32\DRIVERS\Dot4.sys [151968 2012-10-19] (Windows (R) Win 7 DDK provider) S3 Dot4Print; C:\Windows\System32\drivers\Dot4Prt.sys [27040 2012-10-19] (Windows (R) Win 7 DDK provider) S0 ebdrv; C:\Windows\System32\drivers\evbda.sys [3357024 2013-08-22] (Broadcom Corporation) S3 ewusbnet; C:\Windows\system32\DRIVERS\ewusbnet.sys [271360 2011-11-07] (Huawei Technologies Co., Ltd.) R3 LMDriver; C:\Windows\System32\drivers\LMDriver.sys [21360 2013-07-17] (Acer Incorporated) R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2015-10-05] (Malwarebytes) S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [64216 2015-10-05] (Malwarebytes Corporation) R1 pcwtata; C:\Windows\System32\DRIVERS\pcwtata.sys [41536 2016-02-23] (Microsoft Corporation) R3 RadioShim; C:\Windows\System32\drivers\RadioShim.sys [14680 2013-07-17] (Acer Incorporated) S3 rimvndis; C:\Windows\System32\Drivers\rimvndis6_AMD64.sys [17920 2014-06-23] (Research in Motion Limited) S3 usbrndis6; C:\Windows\system32\DRIVERS\usb80236.sys [20992 2013-08-22] (Microsoft Corporation) S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44560 2015-07-07] (Microsoft Corporation) S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [270168 2015-07-07] (Microsoft Corporation) S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114520 2015-07-07] (Microsoft Corporation) S3 RimUsb; \SystemRoot\System32\Drivers\RimUsb_AMD64.sys [X] ==================== NetSvcs (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) ==================== Un mois - Créés - fichiers et dossiers ======== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2016-04-04 21:01 - 2016-04-04 21:02 - 00000000 ____D C:\FRST 2016-04-04 20:42 - 2016-04-04 20:42 - 00000000 ____D C:\Users\Benjamin\AppData\Local\{40DDBF67-9B2F-4634-9475-3CFA13EC7CB9} 2016-04-04 20:10 - 2016-04-04 20:19 - 00000000 ____D C:\AdwCleaner 2016-04-04 19:33 - 2016-04-04 19:33 - 00484136 _____ C:\Windows\system32\FNTCACHE.DAT 2016-04-03 13:53 - 2016-04-03 13:53 - 00000000 ____D C:\Users\Benjamin\AppData\Local\{2AC1812F-2531-4581-B2DC-C01FC79F54E9} 2016-04-02 22:06 - 2016-04-02 22:06 - 00000000 ____D C:\Users\Benjamin\AppData\Local\{F4838BED-B327-4682-9382-B051653E9D91} 2016-04-02 10:06 - 2016-04-02 10:06 - 00000000 ____D C:\Users\Benjamin\AppData\Local\{37D628F1-AEF7-4F68-AF3A-8696053C3A25} 2016-03-26 09:26 - 2016-03-26 09:27 - 00000000 ____D C:\Users\Benjamin\AppData\Local\{ABFA2503-EC4B-4ECD-BE9A-C1436059BB0E} 2016-03-20 12:50 - 2016-03-20 12:50 - 00000000 ____D C:\Users\Benjamin\AppData\LocalLow\uTorrent 2016-03-20 11:11 - 2016-03-20 11:11 - 00000000 ____D C:\Users\Benjamin\AppData\Local\{3385629F-C309-41E0-83FB-E9B24F097AE1} 2016-03-19 20:54 - 2016-03-19 20:54 - 00000000 ____D C:\Users\Benjamin\AppData\Local\Garmin_Ltd._or_its_subsid 2016-03-19 20:51 - 2016-03-19 20:51 - 00003556 _____ C:\Windows\System32\Tasks\GarminUpdaterTask 2016-03-19 20:51 - 2016-03-19 20:51 - 00001918 _____ C:\Users\Public\Desktop\Garmin Express.lnk 2016-03-19 20:51 - 2016-03-19 20:51 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Garmin 2016-03-15 23:00 - 2016-03-15 23:01 - 00000000 ____D C:\Users\Benjamin\AppData\Local\{7E2F6569-E039-4D89-A149-267D3F22BC79} 2016-03-14 22:42 - 2016-03-14 22:42 - 00000000 ____D C:\Users\Benjamin\AppData\Local\{9A84EBE2-5084-4193-BF53-DEEFD8E1043C} 2016-03-13 23:12 - 2016-03-13 23:12 - 00000000 ____D C:\Avenger 2016-03-13 21:25 - 2016-03-13 23:15 - 00000290 __RSH C:\ProgramData\ntuser.pol 2016-03-12 09:51 - 2014-02-22 18:00 - 00079192 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ref.dat 2016-03-12 09:48 - 2016-03-20 18:51 - 00000000 ____D C:\Users\Benjamin\Documents\00_Archives 2016-03-12 09:29 - 2016-03-12 09:29 - 00000000 ____D C:\Users\Benjamin\AppData\Local\{0C237553-AB98-4E91-ACF0-54DFC9A0EC04} 2016-03-09 20:30 - 2016-02-20 17:45 - 01373184 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll 2016-03-09 20:30 - 2016-02-20 17:45 - 01168896 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll 2016-03-09 20:30 - 2016-02-20 17:45 - 00696832 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll 2016-03-09 20:30 - 2016-02-20 17:45 - 00689152 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll 2016-03-09 20:30 - 2016-02-20 17:45 - 00499200 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll 2016-03-09 20:30 - 2016-02-20 17:45 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll 2016-03-09 20:30 - 2016-02-08 23:05 - 20352512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll 2016-03-09 20:30 - 2016-02-08 22:39 - 00496640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll 2016-03-09 20:30 - 2016-02-08 22:34 - 02280448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll 2016-03-09 20:30 - 2016-02-08 22:29 - 00099328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\hlink.dll 2016-03-09 20:30 - 2016-02-08 22:28 - 00663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll 2016-03-09 20:30 - 2016-02-08 22:10 - 04611072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll 2016-03-09 20:30 - 2016-02-08 22:07 - 00880128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll 2016-03-09 20:30 - 2016-02-08 22:05 - 25816576 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll 2016-03-09 20:30 - 2016-02-08 22:03 - 00230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll 2016-03-09 20:30 - 2016-02-08 22:02 - 13012480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll 2016-03-09 20:30 - 2016-02-08 22:02 - 00687104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll 2016-03-09 20:30 - 2016-02-08 22:01 - 02050560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl 2016-03-09 20:30 - 2016-02-08 21:43 - 02121216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll 2016-03-09 20:30 - 2016-02-08 21:39 - 01311744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll 2016-03-09 20:30 - 2016-02-08 21:38 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll 2016-03-09 20:30 - 2016-02-08 20:27 - 02887680 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll 2016-03-09 20:30 - 2016-02-08 20:26 - 00571904 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll 2016-03-09 20:30 - 2016-02-08 20:16 - 06052352 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll 2016-03-09 20:30 - 2016-02-08 20:14 - 00108544 _____ (Microsoft Corporation) C:\Windows\system32\hlink.dll 2016-03-09 20:30 - 2016-02-08 20:13 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll 2016-03-09 20:30 - 2016-02-08 19:51 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll 2016-03-09 20:30 - 2016-02-08 19:42 - 01032704 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll 2016-03-09 20:30 - 2016-02-08 19:37 - 00262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll 2016-03-09 20:30 - 2016-02-08 19:34 - 00798720 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll 2016-03-09 20:30 - 2016-02-08 19:33 - 14613504 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll 2016-03-09 20:30 - 2016-02-08 19:33 - 02123264 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl 2016-03-09 20:30 - 2016-02-08 19:19 - 02597376 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll 2016-03-09 20:30 - 2016-02-08 19:15 - 02880000 _____ (Microsoft Corporation) C:\Windows\system32\actxprxy.dll 2016-03-09 20:30 - 2016-02-08 19:07 - 01546752 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll 2016-03-09 20:30 - 2016-02-08 18:55 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll 2016-03-09 20:30 - 2016-02-05 21:06 - 00046768 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe 2016-03-09 20:30 - 2016-01-06 20:25 - 00416768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys 2016-03-09 20:30 - 2015-12-30 23:53 - 02017624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys 2016-03-09 20:28 - 2016-01-24 20:19 - 00419160 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\spaceport.sys 2016-03-09 20:28 - 2016-01-24 20:19 - 00378712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storport.sys 2016-03-09 20:28 - 2016-01-24 20:19 - 00331608 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Classpnp.sys 2016-03-09 20:28 - 2016-01-24 13:57 - 01335296 _____ (Microsoft Corporation) C:\Windows\system32\mispace.dll 2016-03-09 20:28 - 2016-01-24 13:45 - 01063424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mispace.dll 2016-03-09 20:28 - 2016-01-09 03:38 - 00091992 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys 2016-03-09 20:27 - 2016-02-12 21:14 - 00136904 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe 2016-03-09 20:27 - 2016-02-12 17:14 - 03708416 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll 2016-03-09 20:27 - 2016-02-12 16:55 - 00409088 _____ (Microsoft Corporation) C:\Windows\system32\WUSettingsProvider.dll 2016-03-09 20:27 - 2016-02-12 16:54 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll 2016-03-09 20:27 - 2016-02-12 16:54 - 00095744 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll 2016-03-09 20:27 - 2016-02-12 16:54 - 00035840 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe 2016-03-09 20:27 - 2016-02-12 16:51 - 00124928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll 2016-03-09 20:27 - 2016-02-12 16:51 - 00081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll 2016-03-09 20:27 - 2016-02-12 16:51 - 00029696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe 2016-03-09 20:27 - 2016-02-12 16:48 - 02244096 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll 2016-03-09 20:27 - 2016-02-12 16:47 - 00897024 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll 2016-03-09 20:27 - 2016-02-12 16:46 - 00726528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll 2016-03-09 20:27 - 2016-02-11 16:21 - 00869576 _____ (Microsoft Corporation) C:\Windows\system32\msvcr120_clr0400.dll 2016-03-09 20:27 - 2016-02-11 16:21 - 00678600 _____ (Microsoft Corporation) C:\Windows\system32\msvcp120_clr0400.dll 2016-03-09 20:27 - 2016-02-11 16:20 - 00875720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcr120_clr0400.dll 2016-03-09 20:27 - 2016-02-11 16:20 - 00536776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcp120_clr0400.dll 2016-03-09 20:27 - 2016-02-06 18:58 - 00987648 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll 2016-03-09 20:27 - 2016-02-06 18:32 - 00801792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll 2016-03-09 20:27 - 2016-02-05 16:59 - 07784960 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Data.Pdf.dll 2016-03-09 20:27 - 2016-02-05 16:55 - 05264384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Data.Pdf.dll 2016-03-09 20:27 - 2016-02-05 16:48 - 07075840 _____ (Microsoft Corporation) C:\Windows\system32\glcndFilter.dll 2016-03-09 20:27 - 2016-02-05 16:47 - 05268480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\glcndFilter.dll 2016-03-09 20:27 - 2016-02-03 22:37 - 01661576 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll 2016-03-09 20:27 - 2016-02-03 22:36 - 01212248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ole32.dll 2016-03-09 20:27 - 2016-02-03 17:09 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\olepro32.dll 2016-03-09 20:27 - 2016-02-03 17:00 - 00091136 _____ (Microsoft Corporation) C:\Windows\system32\asycfilt.dll 2016-03-09 20:27 - 2016-02-03 17:00 - 00077824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\asycfilt.dll 2016-03-09 20:27 - 2016-01-10 18:41 - 01707008 _____ (Microsoft Corporation) C:\Windows\system32\comsvcs.dll 2016-03-09 20:27 - 2016-01-10 18:31 - 01344512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comsvcs.dll 2016-03-09 20:27 - 2016-01-09 03:49 - 00218448 _____ (Microsoft Corporation) C:\Windows\system32\rsaenh.dll 2016-03-09 20:27 - 2016-01-09 03:49 - 00192120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rsaenh.dll 2016-03-09 20:27 - 2016-01-07 01:46 - 00148752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wscapi.dll 2016-03-09 20:27 - 2016-01-07 01:45 - 00177712 _____ (Microsoft Corporation) C:\Windows\system32\wscapi.dll 2016-03-09 20:27 - 2016-01-06 18:47 - 00146944 _____ (Microsoft Corporation) C:\Windows\system32\wscsvc.dll 2016-03-09 20:27 - 2015-11-19 16:33 - 00994760 _____ (Microsoft Corporation) C:\Windows\system32\ucrtbase.dll 2016-03-09 20:27 - 2015-11-19 16:26 - 00922432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ucrtbase.dll 2016-03-09 20:26 - 2016-02-06 20:08 - 00031744 _____ (Microsoft Corporation) C:\Windows\system32\seclogon.dll 2016-03-09 20:26 - 2016-02-05 21:07 - 00292696 _____ (Microsoft Corporation) C:\Windows\system32\WMASF.DLL 2016-03-09 20:26 - 2016-02-05 21:07 - 00243032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMASF.DLL 2016-03-09 20:26 - 2016-02-05 17:03 - 15432704 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll 2016-03-09 20:26 - 2016-02-05 17:00 - 13318144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll 2016-03-09 20:26 - 2016-02-04 20:18 - 04174336 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys 2016-03-09 20:26 - 2016-02-04 20:18 - 00358912 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll 2016-03-09 20:26 - 2016-02-04 20:12 - 00044032 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll 2016-03-09 20:26 - 2016-02-04 19:44 - 00301568 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll 2016-03-09 20:26 - 2016-02-04 19:39 - 00035840 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll 2016-03-09 20:26 - 2016-02-04 19:24 - 00603648 _____ (Microsoft Corporation) C:\Windows\system32\mfds.dll 2016-03-09 20:26 - 2016-02-04 19:02 - 00483328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfds.dll 2016-03-09 20:26 - 2016-01-31 21:16 - 00148832 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBSTOR.SYS 2016-03-09 20:26 - 2016-01-15 18:56 - 02487296 _____ (Microsoft Corporation) C:\Windows\system32\storagewmi.dll 2016-03-09 20:26 - 2016-01-15 18:45 - 01482240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\storagewmi.dll 2016-03-09 20:26 - 2016-01-05 17:00 - 00570880 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe 2016-03-09 20:26 - 2015-12-30 22:49 - 00470360 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys 2016-03-09 20:26 - 2015-12-20 16:57 - 00839168 _____ (Microsoft Corporation) C:\Windows\system32\netlogon.dll 2016-03-09 20:26 - 2015-12-20 16:56 - 00616960 _____ (Microsoft Corporation) C:\Windows\system32\msra.exe 2016-03-09 20:26 - 2015-12-20 16:43 - 00696320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netlogon.dll 2016-03-06 20:17 - 2016-03-06 20:18 - 00000000 ____D C:\Users\Benjamin\AppData\Local\{B55EF7ED-2D1E-4875-9AE6-97270E1FC5A1} ==================== Un mois - Modifiés - fichiers et dossiers ======== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2016-04-04 20:57 - 2014-06-21 22:14 - 00003596 _____ C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2074194366-1924103451-35987768-1001 2016-04-04 20:50 - 2014-06-21 22:21 - 00003932 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{DD4EA59B-59C8-4838-89BE-D69E3170A0B5} 2016-04-04 20:42 - 2014-06-29 19:59 - 00000000 ____D C:\Users\Benjamin\AppData\Local\Deployment 2016-04-04 20:33 - 2014-03-22 17:21 - 00812350 _____ C:\Windows\system32\perfh00C.dat 2016-04-04 20:33 - 2014-03-22 17:21 - 00159412 _____ C:\Windows\system32\perfc00C.dat 2016-04-04 20:32 - 2013-09-06 09:27 - 01824010 _____ C:\Windows\system32\PerfStringBackup.INI 2016-04-04 20:32 - 2013-08-22 15:36 - 00000000 ____D C:\Windows\Inf 2016-04-04 20:30 - 2014-07-06 12:47 - 00000000 ___DO C:\Users\Benjamin\OneDrive 2016-04-04 20:28 - 2013-08-22 16:45 - 00000006 ____H C:\Windows\Tasks\SA.DAT 2016-04-04 20:27 - 2015-08-15 11:25 - 00000000 ____D C:\ProgramData\Lavasoft 2016-04-04 20:27 - 2013-08-22 15:25 - 00524288 ___SH C:\Windows\system32\config\BBI 2016-04-04 20:20 - 2015-08-15 11:27 - 00000000 ____D C:\Users\Benjamin\AppData\Roaming\Lavasoft 2016-04-04 20:19 - 2015-08-15 11:25 - 00000000 ____D C:\Program Files (x86)\Lavasoft 2016-04-04 20:04 - 2014-08-31 20:03 - 00000000 ____D C:\Users\Benjamin\AppData\Local\CrashDumps 2016-04-04 19:35 - 2015-02-07 21:42 - 00000000 ____D C:\ProgramData\ProductData 2016-04-04 19:35 - 2014-06-22 17:37 - 00004182 _____ C:\Windows\System32\Tasks\avast! Emergency Update 2016-04-03 15:14 - 2014-11-23 18:54 - 00192216 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys 2016-04-03 10:20 - 2015-08-15 11:23 - 00000000 ____D C:\Users\Benjamin\AppData\Roaming\uTorrent 2016-04-03 09:19 - 2016-01-03 20:35 - 00460800 _____ C:\Users\Benjamin\Desktop\Suivi Comptes 2016.xls 2016-03-30 01:41 - 2014-03-22 08:52 - 00065536 _____ C:\Windows\system32\spu_storage.bin 2016-03-26 10:55 - 2015-04-10 20:34 - 00000000 ___SD C:\Windows\SysWOW64\GWX 2016-03-26 10:55 - 2015-04-10 20:34 - 00000000 ___SD C:\Windows\system32\GWX 2016-03-25 20:05 - 2013-08-22 17:20 - 00000000 ____D C:\Windows\CbsTemp 2016-03-22 20:04 - 2014-10-10 21:29 - 00000000 ____D C:\Users\Benjamin\Documents\Ben 2016-03-20 20:13 - 2015-02-24 22:08 - 00000000 ____D C:\Users\Benjamin\Documents\LIVRES 2016-03-20 03:24 - 2014-06-22 21:00 - 00000000 ____D C:\Users\Benjamin\AppData\Roaming\Skype 2016-03-19 20:54 - 2014-10-10 19:50 - 00000000 ____D C:\ProgramData\Garmin 2016-03-19 20:54 - 2014-10-10 19:50 - 00000000 ____D C:\Program Files (x86)\Garmin 2016-03-19 20:50 - 2014-03-22 08:51 - 00000000 ____D C:\ProgramData\Package Cache 2016-03-19 20:03 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\AppReadiness 2016-03-15 23:14 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\rescache 2016-03-13 23:17 - 2015-12-27 18:32 - 00001574 _____ C:\Users\Public\Desktop\Business everywhere pro.lnk 2016-03-13 23:17 - 2015-08-15 16:59 - 00001731 _____ C:\Users\Public\Desktop\iTunes.lnk 2016-03-13 23:17 - 2015-08-15 11:36 - 00000956 _____ C:\Users\Public\Desktop\TomTom MyDrive Connect.lnk 2016-03-13 23:17 - 2015-05-06 21:08 - 00002707 _____ C:\Users\Public\Desktop\Skype.lnk 2016-03-13 23:17 - 2015-02-26 22:37 - 00002206 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Digital Editions 4.0.lnk 2016-03-13 23:17 - 2015-02-26 22:37 - 00002200 _____ C:\Users\Public\Desktop\Adobe Digital Editions 4.0.lnk 2016-03-13 23:17 - 2015-02-08 23:57 - 00001990 _____ C:\Users\Public\Desktop\Avast Free Antivirus.lnk 2016-03-13 23:17 - 2014-11-23 18:48 - 00000844 _____ C:\Users\Public\Desktop\CCleaner.lnk 2016-03-13 23:17 - 2014-11-23 18:29 - 00001120 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk 2016-03-13 23:17 - 2014-10-09 21:30 - 00002523 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk 2016-03-13 23:17 - 2014-06-22 20:43 - 00001321 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live Movie Maker.lnk 2016-03-13 23:17 - 2014-06-22 20:42 - 00001390 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live Photo Gallery.lnk 2016-03-13 23:17 - 2014-06-22 20:40 - 00001474 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live Mail.lnk 2016-03-13 23:17 - 2014-03-22 09:18 - 00001982 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office.lnk 2016-03-13 23:17 - 2014-03-22 09:08 - 00001943 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spotify.lnk 2016-03-13 23:17 - 2013-09-06 09:27 - 00002588 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WildTangent Games App - acer.lnk 2016-03-13 23:17 - 2013-07-09 23:24 - 00002184 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Packard Bell Games.lnk 2016-03-13 23:16 - 2016-01-08 20:27 - 00001440 _____ C:\Users\Benjamin\Desktop\Internet Explorer.lnk 2016-03-13 23:16 - 2015-09-19 09:51 - 00001606 _____ C:\Users\Benjamin\Desktop\Programmes d'entrainement - Raccourci.lnk 2016-03-13 23:16 - 2015-08-15 11:24 - 00000908 _____ C:\Users\Benjamin\Desktop\µTorrent.lnk 2016-03-13 23:16 - 2015-05-06 21:10 - 00004000 _____ C:\Users\Benjamin\Desktop\L'étang.lnk 2016-03-13 23:16 - 2015-03-30 20:46 - 00001178 _____ C:\Users\Benjamin\Desktop\Calculator.lnk 2016-03-13 23:16 - 2015-01-20 22:37 - 00000924 _____ C:\Users\Benjamin\Desktop\Photos.lnk 2016-03-13 23:16 - 2015-01-20 21:47 - 00001884 _____ C:\Users\Benjamin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\avast! antivirus.lnk 2016-03-13 23:16 - 2014-11-23 18:50 - 00001261 _____ C:\Users\Benjamin\Desktop\Screenshut.lnk 2016-03-13 23:16 - 2014-11-18 21:56 - 00002267 _____ C:\Users\Benjamin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Screenpresso.lnk 2016-03-13 23:16 - 2014-09-03 20:47 - 00002260 _____ C:\Users\Benjamin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Packard Bell Games.lnk 2016-03-13 23:16 - 2014-06-21 22:10 - 00001284 _____ C:\Users\Benjamin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\RtkGUI.lnk 2016-03-13 23:16 - 2014-06-21 22:07 - 00001470 _____ C:\Users\Benjamin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk 2016-03-13 23:12 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\FileManager 2016-03-13 22:11 - 2015-08-25 20:26 - 00001872 _____ C:\Windows\SysWOW64\${LOGFILE} 2016-03-13 21:54 - 2013-08-22 17:36 - 00000000 ___HD C:\Program Files\WindowsApps 2016-03-13 21:08 - 2013-08-22 15:25 - 00000269 _____ C:\Windows\win.ini 2016-03-13 21:02 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\system32\GroupPolicy 2016-03-12 09:59 - 2014-03-22 09:19 - 00000000 ____D C:\ProgramData\boost_interprocess 2016-03-11 20:47 - 2014-12-16 22:33 - 00000000 ____D C:\Windows\system32\appraiser 2016-03-11 20:41 - 2014-07-05 12:05 - 00000000 ____D C:\Windows\system32\MRT 2016-03-11 20:35 - 2014-07-05 12:05 - 143659408 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe 2016-03-08 09:00 - 2016-02-13 22:37 - 00829944 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe 2016-03-08 09:00 - 2016-02-13 22:37 - 00176632 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl ==================== Fichiers à la racine de certains dossiers ======= 2014-12-22 20:39 - 2014-12-22 20:39 - 0004608 _____ () C:\Users\Benjamin\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini 2014-03-22 08:56 - 2014-03-22 08:56 - 0000000 ____H () C:\ProgramData\DP45977C.lfl 2014-09-30 20:24 - 2014-09-30 20:48 - 0002392 _____ () C:\ProgramData\hpzinstall.log Certains fichiers dans TEMP: ==================== C:\Users\Benjamin\AppData\Local\Temp\libeay32.dll C:\Users\Benjamin\AppData\Local\Temp\msvcr120.dll C:\Users\Benjamin\AppData\Local\Temp\sqlite3.dll ==================== Bamital & volsnap ================= (Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.) C:\Windows\system32\winlogon.exe => Le fichier est signé numériquement C:\Windows\system32\wininit.exe => Le fichier est signé numériquement C:\Windows\explorer.exe => Le fichier est signé numériquement C:\Windows\SysWOW64\explorer.exe => Le fichier est signé numériquement C:\Windows\system32\svchost.exe => Le fichier est signé numériquement C:\Windows\SysWOW64\svchost.exe => Le fichier est signé numériquement C:\Windows\system32\services.exe => Le fichier est signé numériquement C:\Windows\system32\User32.dll => Le fichier est signé numériquement C:\Windows\SysWOW64\User32.dll => Le fichier est signé numériquement C:\Windows\system32\userinit.exe => Le fichier est signé numériquement C:\Windows\SysWOW64\userinit.exe => Le fichier est signé numériquement C:\Windows\system32\rpcss.dll => Le fichier est signé numériquement C:\Windows\system32\dnsapi.dll => Le fichier est signé numériquement C:\Windows\SysWOW64\dnsapi.dll => Le fichier est signé numériquement C:\Windows\system32\Drivers\volsnap.sys => Le fichier est signé numériquement LastRegBack: 2016-03-20 18:59 ==================== Fin de FRST.txt ============================