Résultats d'analyse de Farbar Recovery Scan Tool (FRST) (x64) Version:10-04-2016 01 Exécuté par Vero (administrateur) sur PC-SHAMS (11-04-2016 15:25:10) Exécuté depuis C:\Users\Shams\Desktop Profils chargés: UpdatusUser & Vero (Profils disponibles: UpdatusUser & Vero) Platform: Windows 8.1 (X64) Langue: Français (France) Internet Explorer Version 11 (Navigateur par défaut: Chrome) Mode d'amorçage: Normal Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processus (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.) (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe (ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe (ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe (ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SynptSync64.exe (ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe (ASUS) C:\Program Files\ASUS\P4G\BatteryLife.exe (Qualcomm Atheros) C:\Program Files (x86)\Bluetooth Suite\BtTray.exe (Qualcomm Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe (ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\afwServ.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe (ASUS) C:\Program Files (x86)\ASUS\ASUS InstantOn\InsOnSrv.exe (Qualcomm Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\AdminService.exe (ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ASUS Fan Filter Checker\FanChkSrv.exe (Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe (ASUS) C:\Program Files (x86)\ASUS\ASUS InstantOn\InsOnWMI.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe (Razer Inc.) C:\Program Files (x86)\Razer\RzWizard\RzWizardService.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe (Atheros) C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe (Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe (ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe (ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe (ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe () C:\Program Files\Synaptics\SynTP\AsusNewUI35.exe (ASUS) C:\Program Files (x86)\ASUS\Splendid\ACMON.exe (ASUSTeK) C:\Windows\SysWOW64\ACEngSvr.exe (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe (Hewlett-Packard Co.) C:\Program Files\HP\HP Deskjet 3050A J611 series\Bin\ScanToPCActivationApp.exe (Razer Inc.) C:\Program Files (x86)\Razer\RzWizard\RzWizard.exe (Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe (CyberLink Corp.) C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe () C:\Program Files (x86)\ASUS Gaming Mouse\hid.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe (Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (Hewlett-Packard Co.) C:\Program Files\HP\HP Deskjet 3050A J611 series\Bin\HPNetworkCommunicator.exe (Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe (Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Microsoft Corporation) C:\Windows\System32\perfmon.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Microsoft Corporation) C:\Windows\System32\wimserv.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Farbar) C:\Users\Shams\Desktop\FRST64 (1).exe ==================== Registre (Avec liste blanche) =========================== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.) HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [1804432 2015-11-17] (NVIDIA Corporation) HKLM\...\Run: [BtPreLoad] => C:\Program Files (x86)\Bluetooth Suite\BtPreLoad.exe [64640 2012-08-31] () HKLM\...\Run: [SynAsusGestureAPIMgr] => C:\Program Files\Synaptics\SynTP\SynAsusGestureAPIMgr.exe [736568 2012-09-17] (Synaptics) HKLM\...\Run: [AsusNewUI] => C:\Program Files\Synaptics\SynTP\AsusNewUI35.exe [1367864 2012-09-17] () HKLM\...\Run: [ACMON] => C:\Program Files (x86)\ASUS\Splendid\ACMON.exe [107192 2012-09-11] (ASUS) HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2917688 2012-09-17] (Synaptics Incorporated) HKLM-x32\...\Run: [RzWizard] => C:\Program Files (x86)\Razer\RzWizard\RzWizard.exe [254976 2015-07-23] (Razer Inc.) HKLM-x32\...\Run: [Adobe Reader Speed Launcher] => C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe [40336 2015-09-24] (Adobe Systems Incorporated) HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1022152 2014-12-19] (Adobe Systems Incorporated) HKLM-x32\...\Run: [ASUSPRP] => C:\Program Files (x86)\ASUS\APRP\APRP.EXE [3187360 2012-11-27] (ASUSTek Computer Inc.) HKLM-x32\...\Run: [ASUSWebStorage] => C:\Program Files (x86)\ASUS\WebStorage Sync Agent\1.1.10.123\AsusWSPanel.exe [3423104 2012-08-31] (ASUS Cloud Corporation) HKLM-x32\...\Run: [RemoteControl10] => C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe [91432 2012-03-28] (CyberLink Corp.) HKLM-x32\...\Run: [ROGNB] => C:\Program Files (x86)\ASUS Gaming Mouse\hid.exe [466944 2011-09-19] () HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [7139256 2016-04-04] (AVAST Software) HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard) HKLM-x32\...\Run: [] => [X] HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [595480 2016-03-20] (Oracle Corporation) HKU\S-1-5-21-1568302973-988631590-2400571007-1001\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [516608 2014-11-21] (Microsoft Corporation) HKU\S-1-5-21-1568302973-988631590-2400571007-1002\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8591272 2015-11-16] (Piriform Ltd) HKU\S-1-5-21-1568302973-988631590-2400571007-1002\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [4179288 2015-11-30] (Disc Soft Ltd) HKU\S-1-5-21-1568302973-988631590-2400571007-1002\...\Run: [HP Deskjet 3050A J611 series (NET)] => C:\Program Files\HP\HP Deskjet 3050A J611 series\Bin\ScanToPCActivationApp.exe [2573416 2012-10-17] (Hewlett-Packard Co.) HKU\S-1-5-21-1568302973-988631590-2400571007-1002\...\MountPoints2: {05ed1197-a71a-11e5-be73-6c71d983ad36} - "F:\setup.exe" AppInit_DLLs: C:\PROGRA~2\NVIDIA~1\3DVISI~1\NVSTIN~1.DLL => C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvStInit64.dll [21864 2012-08-28] (NVIDIA Corporation) ShellIconOverlayIdentifiers: [ SkyDrive1] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => Pas de fichier ShellIconOverlayIdentifiers: [ SkyDrive2] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => Pas de fichier ShellIconOverlayIdentifiers: [ SkyDrive3] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => Pas de fichier ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2016-04-04] (AVAST Software) ShellIconOverlayIdentifiers: [AsusWSShellExt_B] -> {6D4133E5-0742-4ADC-8A8C-9303440F7190} => C:\Program Files (x86)\ASUS\WebStorage Sync Agent\1.1.10.123\ASUSWSShellExt64.dll [2012-03-13] (ASUS Cloud Corporation.) ShellIconOverlayIdentifiers: [AsusWSShellExt_O] -> {64174815-8D98-4CE6-8646-4C039977D808} => C:\Program Files (x86)\ASUS\WebStorage Sync Agent\1.1.10.123\ASUSWSShellExt64.dll [2012-03-13] (ASUS Cloud Corporation.) ShellIconOverlayIdentifiers: [AsusWSShellExt_U] -> {1C5AB7B1-0B38-4EC4-9093-7FD277E2AF4D} => C:\Program Files (x86)\ASUS\WebStorage Sync Agent\1.1.10.123\ASUSWSShellExt64.dll [2012-03-13] (ASUS Cloud Corporation.) ShellIconOverlayIdentifiers-x32: [ SkyDrive1] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => Pas de fichier ShellIconOverlayIdentifiers-x32: [ SkyDrive2] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => Pas de fichier ShellIconOverlayIdentifiers-x32: [ SkyDrive3] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => Pas de fichier ==================== Internet (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.) Winsock: Catalog5 01 C:\WINDOWS\SysWOW64\napinsp.dll [55296 2014-11-21] (Microsoft Corporation)ATTENTION: LibraryPath devrait être "%SystemRoot%\system32\napinsp.dll" Winsock: Catalog5 02 C:\WINDOWS\SysWOW64\pnrpnsp.dll [70144 2014-11-21] (Microsoft Corporation)ATTENTION: LibraryPath devrait être "%SystemRoot%\system32\pnrpnsp.dll" Winsock: Catalog5 03 C:\WINDOWS\SysWOW64\pnrpnsp.dll [70144 2014-11-21] (Microsoft Corporation)ATTENTION: LibraryPath devrait être "%SystemRoot%\system32\pnrpnsp.dll" Winsock: Catalog5 04 C:\WINDOWS\SysWOW64\NLAapi.dll [65536 2014-11-21] (Microsoft Corporation)ATTENTION: LibraryPath devrait être "%SystemRoot%\system32\NLAapi.dll" Winsock: Catalog5 05 C:\WINDOWS\SysWOW64\mswsock.dll [286208 2014-11-21] (Microsoft Corporation)ATTENTION: LibraryPath devrait être "%SystemRoot%\System32\mswsock.dll" Winsock: Catalog5 06 C:\WINDOWS\SysWOW64\winrnr.dll [23040 2014-11-21] (Microsoft Corporation)ATTENTION: LibraryPath devrait être "%SystemRoot%\System32\winrnr.dll" Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{6EE57217-B593-4D99-A4BA-EC7D3DCD5945}: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{87A02772-C10B-4CF5-B8B3-EC7C7C3F62D2}: [DhcpNameServer] 192.168.1.1 Internet Explorer: ================== HKU\S-1-5-21-1568302973-988631590-2400571007-1002\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://asus13.msn.com HKU\S-1-5-21-1568302973-988631590-2400571007-1002\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://asus13.msn.com URLSearchHook: [S-1-5-21-1568302973-988631590-2400571007-1001] ATTENTION => URLSearchHook par défaut est absent SearchScopes: HKU\S-1-5-21-1568302973-988631590-2400571007-1002 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-21-1568302973-988631590-2400571007-1002 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = BHO: CIESpeechBHO Class -> {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} -> C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll [2012-08-31] (Qualcomm Atheros Commnucations) BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2016-04-04] (AVAST Software) BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_77\bin\ssv.dll [2016-04-04] (Oracle Corporation) BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2016-04-04] (AVAST Software) BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_77\bin\jp2ssv.dll [2016-04-04] (Oracle Corporation) FireFox: ======== FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2012-06-06] (Intel Corporation) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2012-06-06] (Intel Corporation) FF Plugin-x32: @java.com/DTPlugin,version=11.77.2 -> C:\Program Files (x86)\Java\jre1.8.0_77\bin\dtplugin\npDeployJava1.dll [2016-04-04] (Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=11.77.2 -> C:\Program Files (x86)\Java\jre1.8.0_77\bin\plugin2\npjp2.dll [2016-04-04] (Oracle Corporation) FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3505.0912 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-09-12] (Microsoft Corporation) FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2015-08-07] (NVIDIA Corporation) FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2015-08-07] (NVIDIA Corporation) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-03] (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-03] (Google Inc.) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll [2015-09-24] (Adobe Systems Inc.) FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2016-04-04] FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF FF HKLM-x32\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF FF Extension: Avast SafePrice - C:\Program Files\AVAST Software\Avast\SafePrice\FF [2016-04-04] Chrome: ======= CHR HomePage: Default -> hxxp://google.com/ CHR StartupUrls: Default -> "hxxp://www.google.fr/" CHR Profile: C:\Users\Shams\AppData\Local\Google\Chrome\User Data\Default CHR Extension: (Google Slides) - C:\Users\Shams\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-12-03] CHR Extension: (Ad.Block Plus) - C:\Users\Shams\AppData\Local\Google\Chrome\User Data\Default\Extensions\akhejkfpfadlpbdhffkmebnnljfjholi [2015-12-03] CHR Extension: (Google Docs) - C:\Users\Shams\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-12-03] CHR Extension: (Google Drive) - C:\Users\Shams\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-12-03] CHR Extension: (Google Voice Search Hotword (Beta)) - C:\Users\Shams\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2015-12-03] CHR Extension: (YouTube) - C:\Users\Shams\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-12-03] CHR Extension: (Adblock Plus) - C:\Users\Shams\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2016-03-24] CHR Extension: (Recherche Google) - C:\Users\Shams\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-12-03] CHR Extension: (Google Sheets) - C:\Users\Shams\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-12-03] CHR Extension: (Google Docs hors connexion) - C:\Users\Shams\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-24] CHR Extension: (AdBlock) - C:\Users\Shams\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2016-03-24] CHR Extension: (Avast Online Security) - C:\Users\Shams\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2016-04-07] CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\Shams\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-04] CHR Extension: (Gmail) - C:\Users\Shams\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-12-03] CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2016-04-04] ==================== Services (Avec liste blanche) ======================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R2 ASUS InstantOn; C:\Program Files (x86)\ASUS\ASUS InstantOn\InsOnSrv.exe [277120 2012-04-13] (ASUS) R2 AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [216192 2012-08-31] (Qualcomm Atheros Commnucations) [Fichier non signé] R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [237096 2016-04-04] (AVAST Software) R2 avast! Firewall; C:\Program Files\AVAST Software\Avast\afwServ.exe [119128 2016-04-04] (AVAST Software) R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe [1368408 2015-11-30] (Disc Soft Ltd) R2 FanChkService; C:\Program Files (x86)\ASUS\ASUS Fan Filter Checker\FanChkSrv.exe [45696 2012-01-20] (ASUSTek Computer Inc.) R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [26168 2015-12-20] (Hewlett-Packard Company) R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [129856 2012-06-27] (Intel Corporation) R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [166720 2012-06-25] (Intel Corporation) R2 RzWizardService; C:\Program Files (x86)\Razer\RzWizard\RzWizardService.exe [368128 2015-07-23] (Razer Inc.) [Fichier non signé] S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [366552 2016-02-08] (Microsoft Corporation) S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2016-02-08] (Microsoft Corporation) R2 ZAtheros Bt and Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [323584 2012-08-31] (Atheros) [Fichier non signé] ===================== Pilotes (Avec liste blanche) ========================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [37656 2016-04-04] (AVAST Software) R1 aswKbd; C:\Windows\system32\drivers\aswKbd.sys [37144 2016-04-04] (AVAST Software) R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [107792 2016-04-04] (AVAST Software) R1 aswNetSec; C:\Windows\system32\drivers\aswNetSec.sys [552880 2016-04-04] (AVAST Software) R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [103064 2016-04-04] (AVAST Software) R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [74544 2016-04-04] (AVAST Software) R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1070904 2016-04-04] (AVAST Software) R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [463744 2016-04-04] (AVAST Software) R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [165344 2016-04-04] (AVAST Software) R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [287016 2016-04-04] (AVAST Software) R3 BTATH_LWFLT; C:\Windows\system32\DRIVERS\btath_lwflt.sys [76952 2012-08-31] (Qualcomm Atheros) R3 dtlitescsibus; C:\Windows\System32\drivers\dtlitescsibus.sys [30264 2015-12-20] (Disc Soft Ltd) R3 dtliteusbbus; C:\Windows\System32\drivers\dtliteusbbus.sys [46392 2015-12-20] (Disc Soft Ltd) S0 ebdrv; C:\Windows\System32\drivers\evbda.sys [3357024 2013-08-22] (Broadcom Corporation) R3 kbfiltr; C:\Windows\System32\drivers\kbfiltr.sys [14992 2012-08-02] ( ) R3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [43832 2012-09-17] (Synaptics Incorporated) S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44560 2016-02-08] (Microsoft Corporation) R0 WdFilter; C:\Windows\System32\drivers\WdFilter.sys [270168 2016-02-08] (Microsoft Corporation) S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114520 2016-02-08] (Microsoft Corporation) ==================== NetSvcs (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) ==================== Un mois - Créés - fichiers et dossiers ======== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2016-04-11 15:25 - 2016-04-11 15:25 - 00022334 _____ C:\Users\Shams\Desktop\FRST.txt 2016-04-11 15:25 - 2016-04-11 15:25 - 00000000 ____D C:\FRST 2016-04-11 15:24 - 2016-04-11 15:24 - 02375168 _____ (Farbar) C:\Users\Shams\Desktop\FRST64 (1).exe 2016-04-11 15:23 - 2016-04-11 15:23 - 02375168 _____ (Farbar) C:\Users\Shams\Downloads\FRST64.exe 2016-04-10 21:41 - 2016-04-10 21:41 - 00099386 _____ C:\Users\Shams\Desktop\ZHPDiag.txt 2016-04-10 21:36 - 2016-04-10 21:36 - 02179584 _____ C:\Users\Shams\ZHPDiag3.exe 2016-04-10 21:31 - 2016-04-10 21:31 - 00002044 _____ C:\Users\Shams\Desktop\AdwCleaner[C1].txt 2016-04-10 21:29 - 2016-04-10 21:41 - 00000000 ____D C:\AdwCleaner 2016-04-10 21:29 - 2016-04-10 21:30 - 03465280 _____ C:\Users\Shams\Desktop\adwcleaner_5.110.exe 2016-04-10 21:28 - 2016-04-10 21:28 - 00003547 _____ C:\Users\Shams\Desktop\ZHPCleaner.txt 2016-04-10 21:24 - 2016-04-10 21:24 - 00000880 _____ C:\Users\Shams\Desktop\ZHPCleaner.lnk 2016-04-10 21:23 - 2016-04-10 21:23 - 02233344 _____ C:\Users\Shams\Desktop\ZHPCleaner.exe 2016-04-05 14:26 - 2016-04-05 14:26 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_LocationProvider_01_11_00.Wdf 2016-04-05 13:50 - 2016-04-05 13:53 - 04208515 _____ C:\Users\Shams\Downloads\forge-1.9-12.16.0.1845-1.9-installer-win.exe 2016-04-05 13:35 - 2016-04-05 13:35 - 00000000 ____D C:\Users\Shams\AppData\Roaming\NVIDIA 2016-04-05 13:19 - 2016-04-05 13:19 - 00000000 ____D C:\Users\Shams\Downloads\runtime 2016-04-05 12:58 - 2016-04-05 15:26 - 00001066 _____ C:\Users\Shams\Downloads\nativelog.txt 2016-04-05 12:58 - 2016-04-05 13:21 - 00000000 ____D C:\Users\Shams\Downloads\game 2016-04-05 12:57 - 2016-04-05 12:58 - 01247112 _____ (Mojang) C:\Users\Shams\Desktop\Minecraft.exe 2016-04-05 12:49 - 2016-04-05 12:49 - 00102750 _____ C:\Users\Shams\Desktop\ZHPDiag1.txt 2016-04-05 12:44 - 2016-04-10 21:44 - 00000000 ____D C:\Users\Shams\AppData\Roaming\ZHP 2016-04-05 12:44 - 2016-04-10 21:36 - 00000701 _____ C:\Users\Shams\Desktop\ZHPDiag.lnk 2016-04-05 12:40 - 2016-04-05 12:41 - 02174464 _____ C:\Users\Shams\Downloads\ZHPDiag3.exe 2016-04-04 22:41 - 2016-04-05 12:49 - 00007603 _____ C:\Users\Shams\AppData\Local\Resmon.ResmonCfg 2016-04-04 22:15 - 2016-04-04 22:15 - 00000000 ____D C:\Users\Shams\AppData\Roaming\Sun 2016-04-04 22:15 - 2016-04-04 22:15 - 00000000 ____D C:\Users\Shams\AppData\LocalLow\Sun 2016-04-04 22:15 - 2016-04-04 22:15 - 00000000 ____D C:\Users\Shams\.oracle_jre_usage 2016-04-04 22:14 - 2016-04-04 22:14 - 00097856 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll 2016-04-04 22:14 - 2016-04-04 22:14 - 00000000 ____D C:\ProgramData\Oracle 2016-04-04 22:14 - 2016-04-04 22:14 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java 2016-04-04 22:14 - 2016-04-04 22:14 - 00000000 ____D C:\Program Files (x86)\Java 2016-04-04 21:57 - 2016-04-04 22:11 - 16267093 _____ C:\Users\Shams\Downloads\Non confirmé 802984.crdownload 2016-04-04 21:57 - 2016-04-04 22:11 - 01095744 _____ (NVIDIA Corporation) C:\Users\Shams\Downloads\Non confirmé 974467.crdownload 2016-04-04 21:57 - 2016-04-04 22:11 - 00797764 _____ C:\Users\Shams\Downloads\Non confirmé 685905.crdownload 2016-04-04 21:57 - 2016-04-04 22:11 - 00693729 _____ C:\Users\Shams\Downloads\Non confirmé 180265.crdownload 2016-04-04 21:57 - 2016-04-04 21:57 - 00212151 _____ C:\Users\Shams\Downloads\win81-l1c-2.1.0.21-whql.zip 2016-04-04 21:54 - 2016-04-05 15:30 - 00000974 _____ C:\Users\Shams\Desktop\nativelog.txt 2016-04-04 21:54 - 2016-04-04 21:54 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DriversCloud.com 2016-04-04 21:54 - 2016-04-04 21:54 - 00000000 ____D C:\ProgramData\DriversCloud.com 2016-04-04 21:54 - 2016-04-04 21:54 - 00000000 ____D C:\Program Files\DriversCloud.com 2016-04-04 21:53 - 2016-04-04 21:53 - 00000000 ____D C:\Users\Shams\AppData\LocalLow\Oracle 2016-04-04 21:52 - 2016-04-04 21:53 - 00734784 _____ (Oracle Corporation) C:\Users\Shams\Downloads\chromeinstall-8u77.exe 2016-04-04 21:47 - 2016-04-04 21:48 - 00255152 _____ C:\Users\Shams\Downloads\DriversCloud_Win.exe 2016-04-04 21:26 - 2016-04-05 14:39 - 00000000 ____D C:\Users\Shams\AppData\Roaming\.minecraft 2016-04-04 21:26 - 2016-04-04 21:26 - 00000000 ____D C:\Users\Shams\AppData\Roaming\java 2016-04-04 20:55 - 2016-04-04 21:24 - 00000000 ____D C:\Program Files (x86)\Minecraft 2016-04-04 20:55 - 2016-04-04 20:55 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Minecraft 2016-04-04 20:54 - 2016-04-04 20:54 - 00000000 ____D C:\Program Files\McAfee 2016-04-04 20:51 - 2016-04-04 20:53 - 02314240 _____ C:\Users\Shams\Downloads\MinecraftInstaller.msi 2016-04-04 20:48 - 2016-04-04 20:48 - 00003074 _____ C:\WINDOWS\System32\Tasks\SafeZone scheduled Autoupdate 1459795700 2016-04-04 20:48 - 2016-04-04 20:48 - 00001055 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast SafeZone Browser.lnk 2016-04-04 20:46 - 2016-04-04 20:46 - 00001940 _____ C:\Users\Public\Desktop\Avast Internet Security.lnk 2016-04-04 20:46 - 2016-04-04 20:46 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software 2016-04-04 20:45 - 2016-04-04 20:45 - 00552880 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswnetsec.sys 2016-04-04 20:45 - 2016-04-04 20:44 - 00037144 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys 2016-04-04 20:44 - 2016-04-04 20:44 - 00398152 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe 2016-04-04 20:44 - 2016-04-04 20:44 - 00052184 _____ (AVAST Software) C:\WINDOWS\avastSS.scr 2016-04-01 19:39 - 2015-12-30 23:53 - 02017624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys 2016-04-01 19:37 - 2016-02-20 17:45 - 01373184 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll 2016-04-01 19:37 - 2016-02-20 17:45 - 01168896 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll 2016-04-01 19:37 - 2016-02-20 17:45 - 00696832 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll 2016-04-01 19:37 - 2016-02-20 17:45 - 00689152 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll 2016-04-01 19:37 - 2016-02-20 17:45 - 00499200 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll 2016-04-01 19:37 - 2016-02-20 17:45 - 00076800 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll 2016-04-01 19:37 - 2016-02-08 23:05 - 20352512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll 2016-04-01 19:37 - 2016-02-08 22:39 - 00496640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll 2016-04-01 19:37 - 2016-02-08 22:34 - 02280448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll 2016-04-01 19:37 - 2016-02-08 22:29 - 00099328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hlink.dll 2016-04-01 19:37 - 2016-02-08 22:28 - 00663552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll 2016-04-01 19:37 - 2016-02-08 22:10 - 04611072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll 2016-04-01 19:37 - 2016-02-08 22:07 - 00880128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcomm.dll 2016-04-01 19:37 - 2016-02-08 22:05 - 25816576 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll 2016-04-01 19:37 - 2016-02-08 22:03 - 00230400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webcheck.dll 2016-04-01 19:37 - 2016-02-08 22:02 - 13012480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll 2016-04-01 19:37 - 2016-02-08 22:02 - 00687104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll 2016-04-01 19:37 - 2016-02-08 22:01 - 02050560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl 2016-04-01 19:37 - 2016-02-08 21:43 - 02121216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll 2016-04-01 19:37 - 2016-02-08 21:39 - 01311744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll 2016-04-01 19:37 - 2016-02-08 21:38 - 00710144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll 2016-04-01 19:37 - 2016-02-08 20:27 - 02887680 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll 2016-04-01 19:37 - 2016-02-08 20:26 - 00571904 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll 2016-04-01 19:37 - 2016-02-08 20:16 - 06052352 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll 2016-04-01 19:37 - 2016-02-08 20:14 - 00108544 _____ (Microsoft Corporation) C:\WINDOWS\system32\hlink.dll 2016-04-01 19:37 - 2016-02-08 20:13 - 00817664 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll 2016-04-01 19:37 - 2016-02-08 19:51 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll 2016-04-01 19:37 - 2016-02-08 19:42 - 01032704 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcomm.dll 2016-04-01 19:37 - 2016-02-08 19:37 - 00262144 _____ (Microsoft Corporation) C:\WINDOWS\system32\webcheck.dll 2016-04-01 19:37 - 2016-02-08 19:34 - 00798720 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll 2016-04-01 19:37 - 2016-02-08 19:33 - 14613504 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll 2016-04-01 19:37 - 2016-02-08 19:33 - 02123264 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl 2016-04-01 19:37 - 2016-02-08 19:19 - 02597376 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll 2016-04-01 19:37 - 2016-02-08 19:15 - 02880000 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll 2016-04-01 19:37 - 2016-02-08 19:07 - 01546752 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll 2016-04-01 19:37 - 2016-02-08 18:55 - 00800768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll 2016-04-01 19:37 - 2016-02-05 21:06 - 00046768 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe 2016-04-01 19:37 - 2016-01-06 20:25 - 00416768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv.sys 2016-04-01 19:36 - 2016-02-12 21:14 - 00136904 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe 2016-04-01 19:36 - 2016-02-12 17:14 - 03708416 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll 2016-04-01 19:36 - 2016-02-12 16:55 - 00409088 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUSettingsProvider.dll 2016-04-01 19:36 - 2016-02-12 16:54 - 00140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuwebv.dll 2016-04-01 19:36 - 2016-02-12 16:54 - 00095744 _____ (Microsoft Corporation) C:\WINDOWS\system32\wudriver.dll 2016-04-01 19:36 - 2016-02-12 16:54 - 00035840 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapp.exe 2016-04-01 19:36 - 2016-02-12 16:51 - 00124928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuwebv.dll 2016-04-01 19:36 - 2016-02-12 16:51 - 00081920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wudriver.dll 2016-04-01 19:36 - 2016-02-12 16:51 - 00029696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapp.exe 2016-04-01 19:36 - 2016-02-12 16:48 - 02244096 _____ (Microsoft Corporation) C:\WINDOWS\system32\wucltux.dll 2016-04-01 19:36 - 2016-02-12 16:47 - 00897024 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll 2016-04-01 19:36 - 2016-02-12 16:46 - 00726528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll 2016-04-01 19:36 - 2016-02-11 16:21 - 00869576 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcr120_clr0400.dll 2016-04-01 19:36 - 2016-02-11 16:21 - 00678600 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcp120_clr0400.dll 2016-04-01 19:36 - 2016-02-11 16:20 - 00875720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcr120_clr0400.dll 2016-04-01 19:36 - 2016-02-11 16:20 - 00536776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcp120_clr0400.dll 2016-04-01 19:36 - 2016-02-06 20:08 - 00031744 _____ (Microsoft Corporation) C:\WINDOWS\system32\seclogon.dll 2016-04-01 19:36 - 2016-02-06 18:58 - 00987648 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll 2016-04-01 19:36 - 2016-02-06 18:32 - 00801792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll 2016-04-01 19:36 - 2016-02-05 21:07 - 00292696 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMASF.DLL 2016-04-01 19:36 - 2016-02-05 21:07 - 00243032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMASF.DLL 2016-04-01 19:36 - 2016-02-05 17:03 - 15432704 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll 2016-04-01 19:36 - 2016-02-05 17:00 - 13318144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll 2016-04-01 19:36 - 2016-02-05 16:59 - 07784960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll 2016-04-01 19:36 - 2016-02-05 16:55 - 05264384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll 2016-04-01 19:36 - 2016-02-05 16:48 - 07075840 _____ (Microsoft Corporation) C:\WINDOWS\system32\glcndFilter.dll 2016-04-01 19:36 - 2016-02-05 16:47 - 05268480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\glcndFilter.dll 2016-04-01 19:36 - 2016-02-04 20:18 - 04174336 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys 2016-04-01 19:36 - 2016-02-04 20:18 - 00358912 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll 2016-04-01 19:36 - 2016-02-04 20:12 - 00044032 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll 2016-04-01 19:36 - 2016-02-04 19:44 - 00301568 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll 2016-04-01 19:36 - 2016-02-04 19:39 - 00035840 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll 2016-04-01 19:36 - 2016-02-04 19:24 - 00603648 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfds.dll 2016-04-01 19:36 - 2016-02-04 19:02 - 00483328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfds.dll 2016-04-01 19:36 - 2016-02-03 22:37 - 01661576 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll 2016-04-01 19:36 - 2016-02-03 22:36 - 01212248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll 2016-04-01 19:36 - 2016-02-03 17:09 - 00086016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\olepro32.dll 2016-04-01 19:36 - 2016-02-03 17:00 - 00091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\asycfilt.dll 2016-04-01 19:36 - 2016-02-03 17:00 - 00077824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\asycfilt.dll 2016-04-01 19:36 - 2016-01-31 21:16 - 00148832 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBSTOR.SYS 2016-04-01 19:36 - 2016-01-24 20:19 - 00419160 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys 2016-04-01 19:36 - 2016-01-24 20:19 - 00378712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys 2016-04-01 19:36 - 2016-01-24 20:19 - 00331608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Classpnp.sys 2016-04-01 19:36 - 2016-01-24 13:57 - 01335296 _____ (Microsoft Corporation) C:\WINDOWS\system32\mispace.dll 2016-04-01 19:36 - 2016-01-24 13:45 - 01063424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mispace.dll 2016-04-01 19:36 - 2016-01-10 18:41 - 01707008 _____ (Microsoft Corporation) C:\WINDOWS\system32\comsvcs.dll 2016-04-01 19:36 - 2016-01-10 18:31 - 01344512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comsvcs.dll 2016-04-01 19:36 - 2016-01-09 03:49 - 00218448 _____ (Microsoft Corporation) C:\WINDOWS\system32\rsaenh.dll 2016-04-01 19:36 - 2016-01-09 03:49 - 00192120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rsaenh.dll 2016-04-01 19:36 - 2016-01-09 03:38 - 00091992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbehci.sys 2016-04-01 19:36 - 2016-01-07 01:46 - 00148752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscapi.dll 2016-04-01 19:36 - 2016-01-07 01:45 - 00177712 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscapi.dll 2016-04-01 19:36 - 2016-01-06 18:47 - 00146944 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscsvc.dll 2016-04-01 19:36 - 2016-01-05 17:00 - 00570880 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe 2016-04-01 19:36 - 2015-12-30 22:49 - 00470360 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netio.sys 2016-04-01 19:36 - 2015-12-20 16:57 - 00839168 _____ (Microsoft Corporation) C:\WINDOWS\system32\netlogon.dll 2016-04-01 19:36 - 2015-12-20 16:56 - 00616960 _____ (Microsoft Corporation) C:\WINDOWS\system32\msra.exe 2016-04-01 19:36 - 2015-12-20 16:43 - 00696320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netlogon.dll 2016-04-01 19:36 - 2015-11-19 16:33 - 00994760 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase.dll 2016-04-01 19:36 - 2015-11-19 16:26 - 00922432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ucrtbase.dll 2016-04-01 19:35 - 2016-01-15 18:56 - 02487296 _____ (Microsoft Corporation) C:\WINDOWS\system32\storagewmi.dll 2016-04-01 19:35 - 2016-01-15 18:45 - 01482240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\storagewmi.dll 2016-03-24 22:00 - 2016-03-24 22:00 - 00000000 ____D C:\Users\Shams\AppData\Local\GWX ==================== Un mois - Modifiés - fichiers et dossiers ======== (Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.) 2016-04-11 14:56 - 2016-02-08 14:09 - 00000000 ___DC C:\WINDOWS\Panther 2016-04-11 14:53 - 2016-02-13 16:22 - 00000000 ___HD C:\$WINDOWS.~BT 2016-04-11 14:42 - 2015-12-03 19:26 - 00001094 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job 2016-04-11 13:42 - 2015-12-03 19:26 - 00001090 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job 2016-04-10 22:08 - 2015-12-03 19:29 - 00003598 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1568302973-988631590-2400571007-1002 2016-04-10 21:40 - 2014-11-21 00:46 - 01824010 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2016-04-10 21:40 - 2014-11-21 00:03 - 00812350 _____ C:\WINDOWS\system32\perfh00C.dat 2016-04-10 21:40 - 2014-11-21 00:03 - 00159412 _____ C:\WINDOWS\system32\perfc00C.dat 2016-04-10 21:40 - 2013-08-22 15:36 - 00000000 ____D C:\WINDOWS\Inf 2016-04-10 21:36 - 2016-02-08 14:21 - 00000000 ____D C:\Users\Shams 2016-04-10 21:34 - 2015-12-04 00:19 - 00004182 _____ C:\WINDOWS\System32\Tasks\avast! Emergency Update 2016-04-10 21:33 - 2015-12-03 19:24 - 00000401 _____ C:\Users\Shams\AppData\Roaming\sp_data.sys 2016-04-10 21:33 - 2013-08-22 16:45 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT 2016-04-10 21:32 - 2016-02-08 14:13 - 00000000 ____D C:\ProgramData\NVIDIA 2016-04-10 21:31 - 2016-02-08 14:21 - 00000000 ____D C:\Users\UpdatusUser 2016-04-07 19:04 - 2012-11-27 06:11 - 00000000 ____D C:\ProgramData\McAfee 2016-04-07 19:03 - 2015-12-04 00:11 - 00000000 ____D C:\Program Files\WinRAR 2016-04-05 12:28 - 2015-12-04 00:12 - 00000000 ____D C:\Users\Shams\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR 2016-04-05 12:28 - 2015-12-04 00:12 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR 2016-04-05 12:26 - 2016-01-30 11:48 - 00000000 ____D C:\Users\Shams\AppData\Local\CrashDumps 2016-04-04 20:47 - 2015-12-04 00:19 - 00000000 ____D C:\Program Files\Common Files\AV 2016-04-04 20:46 - 2015-12-04 00:19 - 01070904 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswsnx.sys 2016-04-04 20:46 - 2015-12-04 00:19 - 00463744 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswsp.sys 2016-04-04 20:46 - 2015-12-04 00:19 - 00107792 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswmonflt.sys 2016-04-04 20:45 - 2015-12-04 00:19 - 00287016 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswvmm.sys 2016-04-04 20:44 - 2015-12-04 00:19 - 00165344 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys 2016-04-04 20:44 - 2015-12-04 00:19 - 00103064 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys 2016-04-04 20:44 - 2015-12-04 00:19 - 00074544 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys 2016-04-04 20:44 - 2015-12-04 00:19 - 00037656 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswHwid.sys 2016-04-04 20:44 - 2015-12-04 00:18 - 00000000 ____D C:\ProgramData\AVAST Software 2016-04-04 20:44 - 2015-12-04 00:18 - 00000000 ____D C:\Program Files\AVAST Software 2016-04-04 20:34 - 2012-07-26 10:12 - 00000000 ___HD C:\WINDOWS\ELAMBKUP 2016-04-04 20:33 - 2012-07-26 07:37 - 00000000 ____D C:\Users\Default.migrated 2016-04-04 20:15 - 2013-08-22 17:36 - 00000000 ___HD C:\Program Files\WindowsApps 2016-04-04 20:15 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\AppReadiness 2016-04-03 20:06 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\rescache 2016-04-03 20:00 - 2016-02-08 12:23 - 00000000 ____D C:\Users\Shams\AppData\Local\ElevatedDiagnostics 2016-04-03 19:41 - 2013-08-22 16:44 - 00365016 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2016-04-03 19:40 - 2013-08-22 15:25 - 00262144 ___SH C:\WINDOWS\system32\config\BBI 2016-04-03 19:39 - 2016-03-04 09:08 - 00000000 ____D C:\WINDOWS\system32\appraiser 2016-04-03 18:50 - 2016-01-30 12:04 - 00000000 ____D C:\WINDOWS\system32\MRT 2016-04-03 18:50 - 2012-07-26 09:59 - 00000000 ____D C:\WINDOWS\CbsTemp 2016-04-03 18:47 - 2016-01-30 12:03 - 143659408 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2016-04-03 18:43 - 2016-02-28 13:17 - 00000000 ___SD C:\WINDOWS\SysWOW64\GWX 2016-04-03 18:43 - 2016-02-28 13:17 - 00000000 ___SD C:\WINDOWS\system32\GWX 2016-04-03 18:33 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\system32\NDF 2016-04-01 19:43 - 2015-12-03 19:26 - 00002215 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2016-04-01 19:43 - 2015-12-03 19:26 - 00002203 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2016-04-01 19:14 - 2013-08-22 15:25 - 00262144 ___SH C:\WINDOWS\system32\config\ELAM 2016-03-24 22:07 - 2015-12-03 19:21 - 00000000 ____D C:\Users\Shams\AppData\Local\Packages 2016-03-24 22:00 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\AppCompat ==================== Fichiers à la racine de certains dossiers ======= 2015-12-03 19:24 - 2016-04-10 21:33 - 0000401 _____ () C:\Users\Shams\AppData\Roaming\sp_data.sys 2016-04-04 22:41 - 2016-04-05 12:49 - 0007603 _____ () C:\Users\Shams\AppData\Local\Resmon.ResmonCfg 2016-02-15 12:29 - 2016-02-15 12:29 - 0000057 _____ () C:\ProgramData\Ament.ini 2012-11-27 06:08 - 2012-09-07 13:40 - 0000256 _____ () C:\ProgramData\SetStretch.cmd 2012-11-27 06:08 - 2009-07-22 12:04 - 0024576 _____ () C:\ProgramData\SetStretch.exe 2012-11-27 06:08 - 2012-09-07 13:37 - 0000103 _____ () C:\ProgramData\SetStretch.VBS Fichiers à déplacer ou supprimer: ==================== C:\Users\Shams\ZHPDiag3.exe Certains fichiers dans TEMP: ==================== C:\Users\Shams\AppData\Local\Temp\jansi-64-7425326876816175328.dll C:\Users\Shams\AppData\Local\Temp\libeay32.dll C:\Users\Shams\AppData\Local\Temp\mccspuninstall.exe C:\Users\Shams\AppData\Local\Temp\msvcr120.dll C:\Users\Shams\AppData\Local\Temp\sqlite3.dll ==================== Bamital & volsnap ================= (Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.) C:\WINDOWS\system32\winlogon.exe => Le fichier est signé numériquement C:\WINDOWS\system32\wininit.exe => Le fichier est signé numériquement C:\WINDOWS\explorer.exe => Le fichier est signé numériquement C:\WINDOWS\SysWOW64\explorer.exe => Le fichier est signé numériquement C:\WINDOWS\system32\svchost.exe => Le fichier est signé numériquement C:\WINDOWS\SysWOW64\svchost.exe => Le fichier est signé numériquement C:\WINDOWS\system32\services.exe => Le fichier est signé numériquement C:\WINDOWS\system32\User32.dll => Le fichier est signé numériquement C:\WINDOWS\SysWOW64\User32.dll => Le fichier est signé numériquement C:\WINDOWS\system32\userinit.exe => Le fichier est signé numériquement C:\WINDOWS\SysWOW64\userinit.exe => Le fichier est signé numériquement C:\WINDOWS\system32\rpcss.dll => Le fichier est signé numériquement C:\WINDOWS\system32\dnsapi.dll => Le fichier est signé numériquement C:\WINDOWS\SysWOW64\dnsapi.dll => Le fichier est signé numériquement C:\WINDOWS\system32\Drivers\volsnap.sys => Le fichier est signé numériquement LastRegBack: 2016-04-10 22:08 ==================== Fin de FRST.txt ============================